stackhpc · Alex-Welsh · Aug 8, 2024 · Sep 6, 2024 · Sep 10, 2024 · Sep 11, 2024
@@ -98,15 +98,15 @@ jobs:
         run: |
           cat << EOF > terraform.tfvars
           ssh_public_key = "id_rsa.pub"
-          ssh_username = "rocky"
+          ssh_username = "ubuntu"
           aio_vm_name = "skc-host-image-builder"
-          # Must be a Rocky Linux 9 host to successfully build all images
+          # Must be an Ubuntu Jammy host to successfully build all images
           # This MUST NOT be an LVM image. It can cause confusing conficts with the built image.
-          aio_vm_image = "Rocky-9-GenericCloud-Base-9.3-20231113.0.x86_64.qcow2"
+          aio_vm_image = "Ubuntu-22.04"
           aio_vm_flavor = "en1.medium"
           aio_vm_network = "stackhpc-ci"
           aio_vm_subnet = "stackhpc-ci"
-          aio_vm_interface = "eth0"
+          aio_vm_interface = "ens3"
           EOF
         working-directory: ${{ github.workspace }}/src/kayobe-config/terraform/aio
 
@@ -184,14 +184,14 @@ jobs:
         run: |
           source venvs/kayobe/bin/activate &&
           source src/kayobe-config/kayobe-env --environment ci-builder &&
-          kayobe seed host configure -e seed_bootstrap_user=rocky --skip-tags network
+          kayobe seed host configure -e seed_bootstrap_user=ubuntu --skip-tags network
 
       - name: Install dependencies
         run: |
           source venvs/kayobe/bin/activate &&
           source src/kayobe-config/kayobe-env --environment ci-builder &&
           kayobe seed host command run \
-          --command "sudo dnf config-manager --set-enabled crb && sudo dnf -y install epel-release && sudo dnf -y install cloud-init debootstrap git kpartx zstd" --show-output
+          --command "sudo apt update && sudo apt -y install gcc git libffi-dev python3-dev python-is-python3 python3-venv" --show-output
         env:
           KAYOBE_VAULT_PASSWORD: ${{ secrets.KAYOBE_VAULT_PASSWORD }}
 
@@ -311,8 +311,8 @@ jobs:
         continue-on-error: true
         run: |
           mkdir logs
-          scp -r rocky@$(jq -r .access_ip_v4.value src/kayobe-config/etc/kayobe/environments/ci-builder/tf-outputs.yml):/opt/kayobe/images/*/*.std* ./logs/
-          scp -r rocky@$(jq -r .access_ip_v4.value src/kayobe-config/etc/kayobe/environments/ci-builder/tf-outputs.yml):/tmp/updated_images.txt ./logs/ || true
+          scp -r ubuntu@$(jq -r .access_ip_v4.value src/kayobe-config/etc/kayobe/environments/ci-builder/tf-outputs.yml):/opt/kayobe/images/*/*.std* ./logs/
+          scp -r ubuntu@$(jq -r .access_ip_v4.value src/kayobe-config/etc/kayobe/environments/ci-builder/tf-outputs.yml):/tmp/updated_images.txt ./logs/ || true
         if: always()
 
       - name: Fail if any overcloud host image builds failed

@@ -55,11 +55,6 @@ os_release: >-
           {{ (lookup('pipe', '. /etc/os-release && echo $VERSION_CODENAME') | trim) if os_distribution == 'ubuntu' else
              (lookup('pipe', '. /etc/os-release && echo $VERSION_ID') | trim | split('.') | first) if os_distribution == 'rocky' }}
 
-###############################################################################
-
-# Avoid a reboot.
-selinux_state: disabled
-
 ###############################################################################
 # Dummy variable to allow Ansible to accept this file.
 workaround_ansible_issue_8743: yes
@@ -7,9 +7,3 @@
 # OS distribution name. Valid options are "rocky", "ubuntu". Default is
 # "rocky".
 os_distribution: "{{ lookup('pipe', '. /etc/os-release && echo $ID') | trim }}"
-
-###############################################################################
-# SELinux.
-
-# Avoid a reboot.
-selinux_state: disabled
@@ -60,11 +60,6 @@ os_release: >-
 stackhpc_write_barbican_role_id_to_file: true
 stackhpc_barbican_role_id_file_path: "/tmp/barbican-role-id"
 
-###############################################################################
-
-# Avoid a reboot.
-selinux_state: disabled
-
 ###############################################################################
 # Dummy variable to allow Ansible to accept this file.
 workaround_ansible_issue_8743: yes
@@ -5,15 +5,14 @@
 kolla_image_tags:
   openstack:
     rocky-9: 2024.1-rocky-9-20240903T113235
-    ubuntu-jammy: 2024.1-ubuntu-jammy-20240725T165045
+    ubuntu-jammy: 2024.1-ubuntu-jammy-20240912T142033
   heat:
     rocky-9: 2024.1-rocky-9-20240805T142526
-    ubuntu-jammy: 2024.1-ubuntu-jammy-20240805T142526
   horizon:
     rocky-9: 2024.1-rocky-9-20240909T144917
-    ubuntu-jammy: 2024.1-ubuntu-jammy-20240909T144917
+  ironic:
+    rocky-9: 2024.1-rocky-9-20240912T131024
   bifrost_deploy:
     rocky-9: 2024.1-rocky-9-20240725T165045
   prometheus:
     rocky-9: 2024.1-rocky-9-20240910T072617
-    ubuntu-jammy: 2024.1-ubuntu-jammy-20240910T072617
@@ -67,7 +67,7 @@ overcloud_dib_host_packages_extra:
 overcloud_dib_git_elements_extra:
   - repo: "https://github.com/stackhpc/stackhpc-image-elements"
     local: "{{ source_checkout_path }}/stackhpc-image-elements"
-    version: "v1.6.1"
+    version: "fix_rocky_cloud_init"
     elements_path: "elements"
 
 # List of git repositories containing Diskimage Builder (DIB) elements. See

@@ -1,5 +1,5 @@
 ---
 # Overcloud host image versioning tags
 # These images must be in SMS, since they are used by our AIO CI runners
-stackhpc_rocky_9_overcloud_host_image_version: "2023.1-20240126T093158"
-stackhpc_ubuntu_jammy_overcloud_host_image_version: "2023.1-20240325T130221"
+stackhpc_rocky_9_overcloud_host_image_version: "2024.1-20240912T145502"
+stackhpc_ubuntu_jammy_overcloud_host_image_version: "2024.1-20240911T124950"
@@ -1,19 +1,19 @@
 ---
 # Do not edit! This file is autogenerated by Ansible.
-stackhpc_pulp_repo_centos_stream_9_docker_version: 20240829T093746
+stackhpc_pulp_repo_centos_stream_9_docker_version: 20240910T001721
 stackhpc_pulp_repo_centos_stream_9_nfv_openvswitch_version: 20240829T093746
 stackhpc_pulp_repo_centos_stream_9_openstack_caracal_version: 20240902T080424
 stackhpc_pulp_repo_centos_stream_9_opstools_version: 20231213T031318
-stackhpc_pulp_repo_centos_stream_9_storage_ceph_reef_version: 20240502T000614
+stackhpc_pulp_repo_centos_stream_9_storage_ceph_reef_version: 20240904T073948
 stackhpc_pulp_repo_docker_ce_ubuntu_jammy_version: 20240829T093746
-stackhpc_pulp_repo_elrepo_9_version: 20240902T122220
-stackhpc_pulp_repo_epel_9_version: 20240902T080424
-stackhpc_pulp_repo_grafana_version: 20240902T080424
+stackhpc_pulp_repo_elrepo_9_version: 20240911T001022
+stackhpc_pulp_repo_epel_9_version: 20240911T001022
+stackhpc_pulp_repo_grafana_version: 20240910T013512
 stackhpc_pulp_repo_opensearch_2_x_version: 20240807T235120
 stackhpc_pulp_repo_opensearch_dashboards_2_x_version: 20240807T235120
-stackhpc_pulp_repo_rhel9_rabbitmq_erlang_version: 20240711T091318
+stackhpc_pulp_repo_rhel9_rabbitmq_erlang_version: 20240905T235323
 stackhpc_pulp_repo_rhel9_rabbitmq_server_version: 20240829T093746
-stackhpc_pulp_repo_rhel_9_influxdb_version: 20240817T001913
+stackhpc_pulp_repo_rhel_9_influxdb_version: 20240910T013512
 stackhpc_pulp_repo_rhel_9_mariadb_10_11_version: 20240810T001640
 stackhpc_pulp_repo_rhel_9_rabbitmq_erlang_version: 20240711T091318
 stackhpc_pulp_repo_rhel_9_rabbitmq_server_version: 20240711T091318
@@ -33,11 +33,11 @@ stackhpc_pulp_repo_rocky_9_3_baseos_version: 20240509T005935
 stackhpc_pulp_repo_rocky_9_3_crb_version: 20240429T003818
 stackhpc_pulp_repo_rocky_9_3_extras_version: 20240506T000343
 stackhpc_pulp_repo_rocky_9_3_highavailability_version: 20240510T001129
-stackhpc_pulp_repo_rocky_9_4_appstream_version: 20240816T002610
-stackhpc_pulp_repo_rocky_9_4_baseos_version: 20240816T002610
-stackhpc_pulp_repo_rocky_9_4_crb_version: 20240816T002610
-stackhpc_pulp_repo_rocky_9_4_extras_version: 20240816T002610
-stackhpc_pulp_repo_rocky_9_4_highavailability_version: 20240816T002610
+stackhpc_pulp_repo_rocky_9_4_appstream_version: 20240911T005739
+stackhpc_pulp_repo_rocky_9_4_baseos_version: 20240911T012448
+stackhpc_pulp_repo_rocky_9_4_crb_version: 20240911T005739
+stackhpc_pulp_repo_rocky_9_4_extras_version: 20240911T005739
+stackhpc_pulp_repo_rocky_9_4_highavailability_version: 20240905T234126
 stackhpc_pulp_repo_rocky_9_sig_security_common_version: 20240718T001130
 stackhpc_pulp_repo_ubuntu_cloud_archive_version: 20240902T130724
 stackhpc_pulp_repo_ubuntu_jammy_security_version: 20240901T094519

@@ -23,7 +23,7 @@ stackhpc_overcloud_dib_name: "deployment_image"
 stackhpc_overcloud_dib_elements:
   - "{{ os_distribution }}-{% if os_distribution == 'rocky' %}container-stackhpc{% else %}minimal{% endif %}"
   - "cloud-init-datasources"
-  - "{% if os_distribution == 'rocky' %}disable-selinux{% endif %}"
+  - "{% if os_distribution == 'rocky' %}selinux-permissive{% endif %}"
   - "enable-serial-console"
   - "{% if kayobe_environment == 'ci-builder' %}etc-hosts{% endif %}"
   - "vm"
@@ -47,6 +47,8 @@ stackhpc_overcloud_dib_env_vars:
   # sometimes).
   # DIB_DISTRIBUTION_MIRROR: "{{ stackhpc_repo_ubuntu_focal_url if os_distribution == 'ubuntu' else '' }}"
   DIB_DRACUT_ENABLED_MODULES_DEFAULT_CONFIG: "{{ stackhpc_overcloud_dib_dracut_enabled_modules_default_config }}"
+  # NOTE: DIB_ETC_HOSTS_EXTRA must be defined and cannot be an empty string
+  DIB_ETC_HOSTS_EXTRA: "#"
   DIB_RELEASE: "{{ overcloud_dib_os_release }}"
   DIB_SUDOERS_FILENAME: "no-fqdn"
   # Avoid DNS queries during sudo commands, since we might not always have working DNS.

@@ -0,0 +1,4 @@
+---
+features:
+  - |
+    StackHPC overcloud host images have been rebuilt for the Caracal release.
@@ -0,0 +1,5 @@
+---
+upgrade:
+  - |
+    Enables SELinux in permissive mode in the overcloud host image. This
+    matches the default configuration for SELinux in StackHPC Kayobe Configuration.