diff --git a/etc/kayobe/apt.yml b/etc/kayobe/apt.yml index e4dd72e29..57bbd56ec 100644 --- a/etc/kayobe/apt.yml +++ b/etc/kayobe/apt.yml @@ -35,6 +35,8 @@ apt_keys: filename: docker.asc # A list of Apt repositories. Each item is a dict with the following keys: +# * name: the .sources filename part. Optional. Default is 'kayobe' and +# the default filename is 'kayobe.sources'. # * types: whitespace-separated list of repository types, e.g. deb or deb-src # (optional, default is 'deb') # * url: URL of the repository diff --git a/etc/kayobe/compute.yml b/etc/kayobe/compute.yml index 850a4e899..a6794fc51 100644 --- a/etc/kayobe/compute.yml +++ b/etc/kayobe/compute.yml @@ -76,7 +76,9 @@ #compute_lvm_groups_extra: # Whether a 'data' LVM volume group should exist on compute hosts. By default -# this contains a 'docker-volumes' logical volume for Docker volume storage. +# this contains a 'docker-volumes' logical volume for container volume storage +# if using the docker container engine, or a 'podman-volumes' logical volume +# for container volume storage if using the podman container engine. # Default is false. #compute_lvm_group_data_enabled: @@ -88,18 +90,33 @@ # invalid value to require configuration. #compute_lvm_group_data_disks: +# List of LVM logical volumes for the data volume group when using docker. +#compute_lvm_group_data_docker_lvs: + +# List of LVM logical volumes for the data volume group when using podman. +#compute_lvm_group_data_podman_lvs: + # List of LVM logical volumes for the data volume group. #compute_lvm_group_data_lvs: # Docker volumes LVM backing volume. #compute_lvm_group_data_lv_docker_volumes: +# Podman volumes LVM backing volume. +#compute_lvm_group_data_lv_podman_volumes: + # Size of docker volumes LVM backing volume. #compute_lvm_group_data_lv_docker_volumes_size: # Filesystem for docker volumes LVM backing volume. ext4 allows for shrinking. #compute_lvm_group_data_lv_docker_volumes_fs: +# Size of podman volumes LVM backing volume. +#compute_lvm_group_data_lv_podman_volumes_size: + +# Filesystem for podman volumes LVM backing volume. ext4 allows for shrinking. +#compute_lvm_group_data_lv_podman_volumes_fs: + ############################################################################### # Compute node sysctl configuration. diff --git a/etc/kayobe/docker.yml b/etc/kayobe/container-engine.yml similarity index 50% rename from etc/kayobe/docker.yml rename to etc/kayobe/container-engine.yml index 26fac1346..02f50de62 100644 --- a/etc/kayobe/docker.yml +++ b/etc/kayobe/container-engine.yml @@ -1,4 +1,14 @@ --- +############################################################################### +# Container engine configuration + +# Configures the container engine. Default is 'docker'. +#container_engine: + +# Path to container volumes. Default is '{{ podman_volumes_path }}' if +# 'container_engine' is set to podman, otherwise '{{ docker_volumes_path }}'. +#container_engine_volumes_path: + ############################################################################### # Docker configuration. @@ -38,6 +48,33 @@ docker_registry_insecure: "{{ 'https' not in stackhpc_repo_mirror_url }}" # Enable live-restore on docker daemon docker_daemon_live_restore: true +# Path to docker runtime directory. Default is "", which means to use the +# default location: '/var/lib/docker'. +#docker_runtime_directory: + +# Path to docker volumes. Default is '{{ docker_runtime_directory | +# default('/var/lib/docker', true) ~ '/volumes' }}"'. +#docker_volumes_path: + +############################################################################### +# Podman configuration. + +# URL of podman container registry +#podman_registry: + +# Whether podman should be configured to use an insecure registry. +# Default is false, unless docker_registry_enabled is true and +# docker_registry_enable_tls is false. +#podman_registry_insecure: + +# Path to podman runtime directory. Default is None, which means to use the +# default location: '/var/lib/containers/storage'. +#podman_runtime_directory: + +# Path to podman volumes. Default is '{{ podman_runtime_directory | +# default('/var/lib/containers/storage', true) ~ '/volumes' }}"'. +#podman_volumes_path: + ############################################################################### # Dummy variable to allow Ansible to accept this file. workaround_ansible_issue_8743: yes diff --git a/etc/kayobe/globals.yml b/etc/kayobe/globals.yml index 93ebdb4f9..ce4570f39 100644 --- a/etc/kayobe/globals.yml +++ b/etc/kayobe/globals.yml @@ -68,6 +68,11 @@ # equivalent to a value of 100. #kayobe_max_fail_percentage: +# Whether or not we should try and escalate privileges on the control host. +# This allows us to install packages and create arbitrary directories that our +# user would not normally have permission to create. Default is true. +#kayobe_control_host_become: + ############################################################################### # Dummy variable to allow Ansible to accept this file. workaround_ansible_issue_8743: yes diff --git a/etc/kayobe/inventory/groups b/etc/kayobe/inventory/groups index d2c6570cc..dfaa264a4 100644 --- a/etc/kayobe/inventory/groups +++ b/etc/kayobe/inventory/groups @@ -83,7 +83,7 @@ vgpu # Service groups. [container-engine:children] -# Hosts in this group will have Docker installed. +# Hosts in this group will have Docker/Podman installed. seed controllers network diff --git a/etc/kayobe/ipa.yml b/etc/kayobe/ipa.yml index 30a1057e6..ad4ca707c 100644 --- a/etc/kayobe/ipa.yml +++ b/etc/kayobe/ipa.yml @@ -23,9 +23,10 @@ #ipa_build_dib_host_packages_extra: # List of default Diskimage Builder (DIB) elements to use when building IPA -# images. Default is ["centos", "enable-serial-console", +# images. Default is ["centos", "dynamic-login", "enable-serial-console", # "ironic-python-agent-ramdisk"] when os_distribution is "rocky", and -# ["ubuntu", "enable-serial-console", "ironic-python-agent-ramdisk"] otherwise. +# ["ubuntu", "dynamic-login", "enable-serial-console", +# "ironic-python-agent-ramdisk"] otherwise. #ipa_build_dib_elements_default: # List of additional Diskimage Builder (DIB) elements to use when building IPA diff --git a/etc/kayobe/kolla.yml b/etc/kayobe/kolla.yml index 2cf3e6290..d741627fe 100644 --- a/etc/kayobe/kolla.yml +++ b/etc/kayobe/kolla.yml @@ -573,6 +573,10 @@ kolla_overcloud_inventory_pass_through_host_vars_extra: # Primary group of Kolla SSH user. Default is 'kolla'. #kolla_ansible_group: +# Whether to use privilege escalation for operations on the control host. +# Default is {{ kayobe_control_host_become }}. +#kolla_ansible_control_host_become: + # Whether to use privilege escalation for all operations performed via Kolla # Ansible. Default is 'false'. #kolla_ansible_become: @@ -597,6 +601,7 @@ kolla_enable_central_logging: true #kolla_enable_ceph_rgw_loadbalancer: #kolla_enable_cinder: #kolla_enable_cinder_backend_iscsi: +#kolla_enable_cinder_backend_lightbits: #kolla_enable_cinder_backend_lvm: #kolla_enable_cinder_backend_nfs: #kolla_enable_cinder_backend_pure_fc: @@ -644,10 +649,13 @@ kolla_enable_heat: false #kolla_enable_horizon_octavia: #kolla_enable_horizon_tacker: #kolla_enable_horizon_trove: +#kolla_enable_horizon_venus: #kolla_enable_horizon_watcher: #kolla_enable_horizon_zun: #kolla_enable_influxdb: #kolla_enable_ironic: +#kolla_enable_ironic_dnsmasq: +#kolla_enable_ironic_inspector: #kolla_enable_ironic_neutron_agent: kolla_enable_ironic_prometheus_exporter: false #kolla_enable_iscsid: @@ -662,6 +670,7 @@ kolla_enable_ironic_prometheus_exporter: false #kolla_enable_manila: #kolla_enable_manila_backend_cephfs_native: #kolla_enable_manila_backend_cephfs_nfs: +#kolla_enable_manila_backend_flashblade: #kolla_enable_manila_backend_generic: #kolla_enable_manila_backend_glusterfs_nfs: #kolla_enable_manila_backend_hnas: diff --git a/etc/kayobe/time.yml b/etc/kayobe/time.yml index 8bfbd3391..652844c8d 100644 --- a/etc/kayobe/time.yml +++ b/etc/kayobe/time.yml @@ -33,6 +33,20 @@ # Synchronise hardware clock with system time. Default is true. #chrony_rtcsync_enabled: +# Force synchronisation from NTP sources. This methods may jump the clock by +# large values which can cause issues with some software. Disabled by default. +#ntp_force_sync: + +# Maximum number of tries used by the `chronyc waitsync` command. Only used +# when ntp_force_sync is true. Default is 60 which waits for a maximum of 10 +# minutes (60 times 10 seconds). +#chrony_waitsync_max_tries: + +# Maximum correction used by the `chronyc waitsync` command. Only used when +# ntp_force_sync is true. Default is 0.01 which waits for the remaining +# correction to be less than 10 milliseconds. +#chrony_waitsync_max_correction: + ############################################################################### # Dummy variable to allow Ansible to accept this file. workaround_ansible_issue_8743: yes