Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-formulas / neutron / a1c1522121a0918094a9884f4f1d1db8406ad49f / . / neutron / compute.sls
blob: 770f2ba93487c858a5dd749644c3a7420fd133b1 [file] [log] [blame]
{% from "neutron/map.jinja" import compute, fwaas with context %}
{%- if compute.enabled %}
{% if compute.backend.engine == "ml2" %}
neutron_compute_packages:
pkg.installed:
- names: {{ compute.pkgs }}
{% if compute.get('bgp_vpn', {}).get('enabled', False) %}
{% if compute.bgp_vpn.driver == "bagpipe" %}
bagpipe_packages:
pkg.installed:
- names: {{ compute.pkgs_bagpipe }}
{% endif %}
{% endif %}
/etc/neutron/neutron.conf:
file.managed:
- source: salt://neutron/files/{{ compute.version }}/neutron-generic.conf.{{ grains.os_family }}
- template: jinja
- require:
- pkg: neutron_compute_packages
{% if compute.backend.sriov is defined %}
neutron_sriov_package:
pkg.installed:
- name: neutron-sriov-agent
/etc/neutron/plugins/ml2/sriov_agent.ini:
file.managed:
- source: salt://neutron/files/{{ compute.version }}/sriov_agent.ini
- template: jinja
- watch_in:
- service: neutron_compute_services
- require:
- pkg: neutron_compute_packages
- pkg: neutron_sriov_package
neutron_sriov_service:
service.running:
- name: neutron-sriov-agent
- enable: true
{%- if grains.get('noservices') %}
- onlyif: /bin/false
{%- endif %}
- watch_in:
- service: neutron_compute_services
- watch:
- file: /etc/neutron/neutron.conf
- file: /etc/neutron/plugins/ml2/openvswitch_agent.ini
- file: /etc/neutron/plugins/ml2/sriov_agent.ini
{%- if compute.message_queue.get('ssl',{}).get('enabled', False) %}
- file: rabbitmq_ca_neutron_compute
{%- endif %}
{% endif %}
{% if compute.get('dhcp_agent_enabled', False) %}
neutron_dhcp_agent_packages:
pkg.installed:
- names:
- neutron-dhcp-agent
neutron_dhcp_agent:
service.running:
- enable: true
- names:
- neutron-dhcp-agent
- watch:
- file: /etc/neutron/dhcp_agent.ini
- require:
- pkg: neutron_dhcp_agent_packages
/etc/neutron/dhcp_agent.ini:
file.managed:
- source: salt://neutron/files/{{ compute.version }}/dhcp_agent.ini
- template: jinja
- require:
- pkg: neutron_dhcp_agent_packages
{% endif %}
{% if compute.dvr %}
{%- if fwaas.get('enabled', False) %}
include:
- neutron.fwaas
{%- endif %}
neutron_dvr_packages:
pkg.installed:
- names:
- neutron-l3-agent
- neutron-metadata-agent
neutron_dvr_agents:
service.running:
- enable: true
- names:
- neutron-l3-agent
- neutron-metadata-agent
- watch:
- file: /etc/neutron/neutron.conf
- file: /etc/neutron/l3_agent.ini
- file: /etc/neutron/metadata_agent.ini
{%- if fwaas.get('enabled', False) %}
- file: /etc/neutron/fwaas_driver.ini
{% endif %}
{%- if compute.message_queue.get('ssl',{}).get('enabled', False) %}
- file: rabbitmq_ca_neutron_compute
{%- endif %}
- require:
- pkg: neutron_dvr_packages
/etc/neutron/l3_agent.ini:
file.managed:
- source: salt://neutron/files/{{ compute.version }}/l3_agent.ini
- template: jinja
- watch_in:
- service: neutron_compute_services
- require:
- pkg: neutron_dvr_packages
/etc/neutron/metadata_agent.ini:
file.managed:
- source: salt://neutron/files/{{ compute.version }}/metadata_agent.ini
- template: jinja
- watch_in:
- service: neutron_compute_services
- require:
- pkg: neutron_dvr_packages
{% endif %}
/etc/neutron/plugins/ml2/openvswitch_agent.ini:
file.managed:
- source: salt://neutron/files/{{ compute.version }}/openvswitch_agent.ini
- template: jinja
- require:
- pkg: neutron_compute_packages
neutron_compute_services:
service.running:
- names: {{ compute.services }}
- enable: true
- watch:
- file: /etc/neutron/neutron.conf
- file: /etc/neutron/plugins/ml2/openvswitch_agent.ini
{%- if compute.message_queue.get('ssl',{}).get('enabled', False) %}
- file: rabbitmq_ca_neutron_compute
{%- endif %}
{%- set neutron_compute_services_list = compute.services %}
{%- if compute.backend.sriov is defined %}
{%- do neutron_compute_services_list.append('neutron-sriov-agent') %}
{%- endif %}
{%- if compute.dvr %}
{%- do neutron_compute_services_list.extend(['neutron-l3-agent', 'neutron-metadata-agent']) %}
{%- endif %}
{%- if compute.get('dhcp_agent_enabled', False) %}
{%- do neutron_compute_services_list.append('neutron-dhcp-agent') %}
{%- endif %}
{%- for service_name in neutron_compute_services_list %}
{{ service_name }}_default:
file.managed:
- name: /etc/default/{{ service_name }}
- source: salt://neutron/files/default
- template: jinja
- defaults:
service_name: {{ service_name }}
values: {{ compute }}
- require:
- pkg: neutron_compute_packages
{% if compute.backend.sriov is defined %}
- pkg: neutron_sriov_package
{% endif %}
{% if compute.dvr %}
- pkg: neutron_dvr_packages
{% endif %}
- watch_in:
- service: neutron_compute_services
{% if compute.backend.sriov is defined %}
- service: neutron_sriov_service
{% endif %}
{% if compute.dvr %}
- service: neutron_dvr_agents
{% endif %}
{% endfor %}
{%- if compute.logging.log_appender %}
{%- if compute.logging.log_handlers.get('fluentd', {}).get('enabled', False) %}
neutron_compute_fluentd_logger_package:
pkg.installed:
- name: python-fluent-logger
{%- endif %}
{% for service_name in neutron_compute_services_list %}
{{ service_name }}_logging_conf:
file.managed:
- name: /etc/neutron/logging/logging-{{ service_name }}.conf
- source: salt://neutron/files/logging.conf
- template: jinja
- makedirs: True
- user: neutron
- group: neutron
- defaults:
service_name: {{ service_name }}
values: {{ compute }}
- require:
- pkg: neutron_compute_packages
{% if compute.backend.sriov is defined %}
- pkg: neutron_sriov_package
{% endif %}
{% if compute.dvr %}
- pkg: neutron_dvr_packages
{% endif %}
{%- if compute.logging.log_handlers.get('fluentd', {}).get('enabled', False) %}
- pkg: neutron_compute_fluentd_logger_package
{%- endif %}
- watch_in:
- service: neutron_compute_services
{% if compute.backend.sriov is defined %}
- service: neutron_sriov_service
{% endif %}
{% if compute.dvr %}
- service: neutron_dvr_agents
{% endif %}
{% endfor %}
{% endif %}
{%- if compute.message_queue.get('ssl',{}).get('enabled', False) %}
rabbitmq_ca_neutron_compute:
{%- if compute.message_queue.ssl.cacert is defined %}
file.managed:
- name: {{ compute.message_queue.ssl.cacert_file }}
- contents_pillar: neutron:compute:message_queue:ssl:cacert
- mode: 0444
- makedirs: true
{%- else %}
file.exists:
- name: {{ compute.message_queue.ssl.get('cacert_file', compute.cacert_file) }}
{%- endif %}
{%- endif %}
{%- if compute.opendaylight is defined %}
include:
- .opendaylight.client
{%- endif %}
{%- elif compute.backend.engine == "ovn" %}
ovn_packages:
pkg.installed:
- names: {{ compute.pkgs_ovn }}
{%- if not grains.get('noservices', False) %}
remote_ovsdb_access:
cmd.run:
- name: "ovs-vsctl set open .
external-ids:ovn-remote=tcp:{{ compute.controller_vip }}:6642"
enable_overlays:
cmd.run:
- name: "ovs-vsctl set open . external-ids:ovn-encap-type=geneve,vxlan"
configure_local_endpoint:
cmd.run:
- name: "ovs-vsctl set open .
external-ids:ovn-encap-ip={{ compute.local_ip }}"
{%- if compute.get('external_access', True) %}
set_bridge_external_id:
cmd.run:
- name: "ovs-vsctl --no-wait br-set-external-id
{{ compute.external_bridge }} bridge-id {{ compute.external_bridge }}"
set_bridge_mapping:
cmd.run:
- name: "ovs-vsctl set open .
external-ids:ovn-bridge-mappings=physnet1:{{ compute.external_bridge }}"
{%- endif %}
ovn_services:
service.running:
- names: {{ compute.services_ovn }}
- enable: true
{%- if grains.get('noservices') %}
- onlyif: /bin/false
{%- endif %}
- require:
- pkg: ovn_packages
{%- endif %}
{%- endif %}
{%- endif %}