Current Series Release Notes

20.0.0-44

New Features

  • TLS support for MariaDB connections has been enabled for all services when using ProxySQL.

  • bootstrap-servers now always uses the system Python interpreter via auto_silent autodetection.

    octavia-certificates now use the same Python interpreter as the one running the kolla-ansible command itself.

Upgrade Notes

  • Changes haproxy and rabbitmq default trusted CA store path on EL systems to ca-bundle.crt from ca-bundle.trust.crt.

Bug Fixes

  • Fixes handler invocation failure in the ovs-dpdk role. LP#2088197

  • In the kolla-toolbox configuration with external rabbitmq an unnecessary “comma” is generated, which is why the container does not want to start. LP#2111267

  • Fixes invalid use of drain on single-node RabbitMQ setups by using stop_app instead. LP#2111916

  • Improves query routing in ProxySQL by setting default_hostgroup for all database users and by adding user-based routing rules in addition to schema-based rules. This enhancement also fixes incorrect routing of queries that are executed before a schema is selected, such as SET AUTOCOMMIT or ROLLBACK, which could otherwise be sent to a non-existent hostgroup. LP#2112339

  • Fixed certificate script rendering in Let’s Encrypt role. LP#2115230

  • Fixes a bug where Cinder endpoint that Nova uses does not get overridden because of the use of invalid option. LP#2115064

  • Fixes a bug where K-A can fail service deployment because it tries to copy backend TLS certificates of some hosts to containers when both hosts and containers are not part of backend TLS and do not have certificates to copy. LP#2105505

  • Allow operators to run kolla-ansible post-deploy without escalating privileges on the deploy node when node_config is writable for that user.