Merge "OpenStack HTTPS Endpoints support"

commit: a56d8ae0804c524cb039c53adea073a478361d76 [log] [tgz]
author: Marek Celoud <mceloud@mirantis.com> Thu Dec 14 13:22:50 2017 +0000
committer: Gerrit Code Review <gerrit2@e9aa877068d1> Thu Dec 14 13:22:50 2017 +0000
tree: 112d7d0a03ca44a0b3a317d982cbc02cf472cd9c
parent: 1ce6df0b2e01c65c8fc8e05faa8e9dc4463159d1 [diff]
parent: a0eaca770026cc6ce88650385590e6bd242150a3 [diff]
diff --git a/.kitchen.travis.yml b/.kitchen.travis.yml
index 12d5cdf..dd501b9 100644
--- a/.kitchen.travis.yml
+++ b/.kitchen.travis.yml

@@ -4,3 +4,8 @@
     provisioner:
       pillars-from-files:
         nova.sls: tests/pillar/<%= ENV['SUITE'] %>.sls
+      pillars:
+        release.sls:
+          nova:
+            controller:
+              version: <%= ENV['OS_VERSION'] || 'ocata' %>

diff --git a/README.rst b/README.rst
index 7aaedd9..3353131 100644
--- a/README.rst
+++ b/README.rst

@@ -302,6 +302,19 @@
           max_processes: 4096
         host: node-12.domain.tld
 
+Group and user to be used for QEMU processes run by the system instance
+
+.. code-block:: yaml
+
+    nova:
+      compute:
+        enabled: true
+        ...
+        qemu:
+          user: nova
+          group: cinder
+          dynamic_ownership: 1
+
 Group membership for user nova (upgrade related)
 
 .. code-block:: yaml

diff --git a/nova/files/ocata/qemu.conf.Debian b/nova/files/ocata/qemu.conf.Debian
index 5b039c4..6212dda 100644
--- a/nova/files/ocata/qemu.conf.Debian
+++ b/nova/files/ocata/qemu.conf.Debian

@@ -238,6 +238,19 @@
 # Set to 0 to disable file ownership changes.
 #dynamic_ownership = 1
 
+{%- if compute.qemu is defined %}
+{%- if compute.qemu.user is defined %}
+user = "{{ compute.qemu.user }}"
+{%- endif %}
+
+{%- if compute.qemu.group is defined %}
+group = "{{ compute.qemu.group }}"
+{%- endif %}
+
+{%- if compute.qemu.dynamic_ownership is defined %}
+dynamic_ownership = "{{ compute.qemu.dynamic_ownership }}"
+{%- endif %}
+{%- endif %}
 
 # What cgroup controllers to make use of with QEMU guests
 #

diff --git a/tests/pillar/compute_cluster.sls b/tests/pillar/compute_cluster.sls
index 824a569..b6ad010 100644
--- a/tests/pillar/compute_cluster.sls
+++ b/tests/pillar/compute_cluster.sls

@@ -78,3 +78,7 @@
       volume_clear_size: 0
     barbican:
       enabled: true
+    qemu:
+      user: nova
+      group: cinder
+      dynamic_ownership: 1

diff --git a/tests/pillar/compute_single.sls b/tests/pillar/compute_single.sls
index 9357d15..bba29a0 100644
--- a/tests/pillar/compute_single.sls
+++ b/tests/pillar/compute_single.sls

@@ -48,3 +48,7 @@
       members:
       - host: 127.0.0.1
         port: 11211
+    qemu:
+      user: nova
+      group: cinder
+      dynamic_ownership: 1
commit	a56d8ae0804c524cb039c53adea073a478361d76	[log] [tgz]
author	Marek Celoud <mceloud@mirantis.com>	Thu Dec 14 13:22:50 2017 +0000
committer	Gerrit Code Review <gerrit2@e9aa877068d1>	Thu Dec 14 13:22:50 2017 +0000
tree	112d7d0a03ca44a0b3a317d982cbc02cf472cd9c
parent	1ce6df0b2e01c65c8fc8e05faa8e9dc4463159d1 [diff]
parent	a0eaca770026cc6ce88650385590e6bd242150a3 [diff]