Bug 1527908

Summary: [RFE] Ironic Ansible deploy in the Undercloud
Product: Red Hat OpenStack Reporter: Dmitry Tantsur <dtantsur>
Component: openstack-tripleo-heat-templatesAssignee: Dmitry Tantsur <dtantsur>
Status: CLOSED ERRATA QA Contact: bjacot
Severity: high Docs Contact:
Priority: medium    
Version: 14.0 (Rocky)CC: bfournie, bjacot, dbecker, dtantsur, mburns, morazi, owalsh, racedoro, rhel-osp-director-maint, sclewis
Target Milestone: Upstream M2Keywords: FutureFeature, TechPreview, Triaged
Target Release: 14.0 (Rocky)   
Hardware: Unspecified   
OS: Unspecified   
URL: https://blueprints.launchpad.net/tripleo/+spec/ansible-deploy-stabilization
Whiteboard:
Fixed In Version: openstack-tripleo-heat-templates-9.0.0-0.20180710202746.d2994ca.el7ost Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2019-01-11 11:48:37 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On: 1472360    
Bug Blocks:    

Description Dmitry Tantsur 2017-12-20 12:53:13 UTC 
We introduced the tech preview in OSP 13. This RFE tracks what is missing to provide full support of this feature.
Comment 1 Dmitry Tantsur 2017-12-20 12:58:43 UTC 
Potential missing bits:
* automatic generation of Swift temporary URL key for service project
* automatic generation of an SSH key to access the ramdisk
* support for containerized undercloud (TestOnly?)
* improved hook points for adding ansible code
* out-of-box support for LVM?

And of course QE coverage.
Comment 2 Ramon Acedo 2018-04-10 14:57:25 UTC 
This seems to depend on the temporary URLs. We need upstream patches.
Comment 5 Ramon Acedo 2018-04-25 07:42:35 UTC 
Leaving it as tech preview for OSP 14.
Comment 6 Dmitry Tantsur 2018-06-11 13:39:32 UTC 
Scope for 14: automatic temporary URL generation. Other problems remain unsolved.
Comment 10 bjacot 2018-12-13 19:16:48 UTC 
I have verified this RFE via steps documented from upstream.  There are steps that need to be updated.

http://tripleo.org/install/advanced_deployment/ansible_deploy_interface.html

Installing Undercloud
Step 5:
sudo chmod 0600 /var/lib/ironic/ipa-ssh -- TO --> sudo chmod 0666 /var/lib/ironic/ipa-ssh

Enabling temporary URLs
A note added that this step is not needed for OSP14 but is needed for OSP13.

Editing Playbooks:
Step 1:
dest: "{{ tmp_rootfs_mount }}/etc/default/grub" -- TO --> path: "{{ tmp_rootfs_mount }}/etc/default/grub"
Comment 11 bjacot 2018-12-13 19:49:44 UTC 
Verified with this RPM OSP14
(overcloud) [stack@undercloud-0 ~]$ sudo rpm -qa | grep openstack-tripleo-heat
openstack-tripleo-heat-templates-9.0.1-0.20181013060903.el7ost.noarch
Comment 12 Ramon Acedo 2018-12-14 09:51:31 UTC 
Wouldn't it be a bug the fact that we have to chmod with 0666 /var/lib/ironic/ipa-ssh making it writable by any user?
Comment 13 Dmitry Tantsur 2018-12-14 12:19:05 UTC 
Indeed, it's unpleasant. Even making it readable is not so nice. We need to talk to the containers team to figure out what to do about it, I don't know a way to map a file to a user that only exists inside a container. Maybe file a separate bug for it?
Comment 15 errata-xmlrpc 2019-01-11 11:48:37 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2019:0045