Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.
First Last Prev Next    This bug is not in your last search results.
Bug 1335995 - [RFE] Multi-tenant bare metal to tenant with Ironic [advanced use case]
[RFE] Multi-tenant bare metal to tenant with Ironic [advanced use case]
Status: CLOSED ERRATA
Product: Red Hat OpenStack
Classification: Red Hat
Component: openstack-tripleo-heat-templates (Show other bugs)
10.0 (Newton)
Unspecified Unspecified
high Severity high
: Upstream M1
: 13.0 (Queens)
Assigned To: Dmitry Tantsur
mlammon
https://docs.openstack.org/ironic/lat...
: FutureFeature, Reopened, TechPreview, TestOnly, Triaged
: 1340231 (view as bug list)
Depends On: 1242593
Blocks: 1419948 1422243 1442136 1562171 1286164 1330826 1337767 1337988 1340231 1399441
  Show dependency treegraph
 
Reported: 2016-05-13 14:49 EDT by Keith Basil
Modified: 2018-08-20 10:22 EDT (History)
20 users (show)

See Also:
Fixed In Version: openstack-tripleo-heat-templates-8.0.0-0.20180227121938.e0f59ee.el7ost
Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2018-06-27 09:26:26 EDT
Type: Feature Request
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
OpenStack gerrit 452837 None master: MERGED tripleo-heat-templates: Add support for "neutron" Ironic networking plugin (I20ea994fec36d73e618107b5c3594ec1c0f8cb93) 2018-02-28 08:18 EST
Red Hat Product Errata RHEA-2018:2086 normal SHIPPED_LIVE Red Hat OpenStack Platform 13.0 Enhancement Advisory 2018-06-28 15:51:39 EDT

  None (edit)
Description Keith Basil 2016-05-13 14:49:54 EDT 
Description of problem:
Ironic is not multi-tenant out of the box. If you use Ironic to manage 100% of infrastructure that instance of Ironic would see all hardware with root privileges. If you expose that to the overcloud at root level, the fear is that tenants may have exposure to hardware. Additionally, the scheduler within an overcloud may not know which machines are for tenant usage only. We need to support one instance of Ironic within the undercloud for OSP component host deployment AND then a separate instance or Ironic that is exposed to Nova and services within the overcloud.

The problem can be summed up as follows:
- No traffic isolation
- Compute instances would have access to the provisioning plane
- All nodes are in a single L2 domain
- No tenant isolation
Comment 3 Dmitry Tantsur 2016-08-17 05:00:19 EDT 
The actual feature has landed upstream in Newton, so it will be usable with some level of manual configuration. I'm not sure we'll have documentation and potential TripleO bits in time though.
Comment 4 Dmitry Tantsur 2016-08-17 05:19:38 EDT 
Can we close this as a duplicate of https://bugzilla.redhat.com/show_bug.cgi?id=1330826?
Comment 5 Lucas Alvares Gomes 2016-08-18 04:47:13 EDT 
Duplicated of https://bugzilla.redhat.com/show_bug.cgi?id=1242593 as well
Comment 8 Keith Basil 2016-11-28 08:32:20 EST 
*** Bug 1340231 has been marked as a duplicate of this bug. ***
Comment 9 fj-lsoft-ofuku@dl.jp.fujitsu.com 2017-02-06 08:40:57 EST 
Hello Red Hat,

Could you clarify what is required for this feature to be supported in OSP?

Regards,
Tatsuya Kitamura
Comment 10 fj-lsoft-ofuku@dl.jp.fujitsu.com 2017-02-07 04:15:03 EST 
The previous comment was supported to be for BZ#1330826. Sorry.

Tatsuya Kitamura
Comment 11 Dan Sneddon 2017-03-03 19:02:33 EST 

*** This bug has been marked as a duplicate of bug 1330826 ***
Comment 17 Dmitry Tantsur 2017-04-11 10:59:09 EDT 
Support for neutron networking plugin and provisioning networks landed in https://review.openstack.org/#/c/452837/. Now we're ready to test this feature. A suitable ML2 plugin (not covered by this RFE) is required to actually use this feature.
Comment 29 Bob Fournier 2018-02-12 09:36:09 EST 
Marking this as TechPreview
Comment 30 Shang Wu 2018-05-11 02:32:30 EDT 
What is the latest status for this. Does it make it into OSP13?
Comment 34 errata-xmlrpc 2018-06-27 09:26:26 EDT 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2018:2086
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.