Wallaby Series (10.0.0 - 10.2.x) Release Notes¶
Moves installation of package dependencies for Diskimage Builder (DIB) from the
bifrost-create-dib-imagerole to the
bifrost-install-ironicrole. This provides a cleaner separation between installation and image creation.
Password files (
htpasswd) are no longer world-readable.
Works around the
libvirt module is not importableerror by installing libvirt-python from source install of a wheel.
Fixes a failure when building an Ubuntu image due to a missing
Installs sushy-oem-idrac when the
idrachardware type is enabled.
Fixes the iptables rule for PXE on systems not using firewalld (use port UDP/67 and UDP/69 instead of TCP/68 and TCP/69).
./bifrost-cli installto disable the integrated dhcp configuration.
The dynamic DHCP inventory hostsdir is now created and enabled by default, even when
An additional DNS hosts directory is no longer created by default in
true. Set the new variable
dnsmasq_additional_hostsdirto keep the previous behavior (you’ll need
dnsmasq_enable_dns=trueto actually use it).
disable_dnsmasq_dnshas been deprecated in favor of the new parameter
No longer passes
--no-cache-dirto pip by default.
Adds a new command
bifrost-cli enrollto simplify enrolling nodes.
ramdiskdeploy interface is now enabled by default.
Supports automatically configuring required hardware interfaces for the
idrachardware type. The Redfish implementations are used.
iscsideploy interface is no longer enabled by default, use
Discovery of nodes via the ironic-inspector is now disabled by default. If you wish to enable this, set
trueand re-execute the installation playbook.
Debug logging is now enabled in ironic by default, set the new
Fixes fast-track after inspection: the
power_off_after_inspectionoptions are now correctly handled.
Fixes passing parameters with spaces to
Set the new boolean parameter
Trueto configure an ability to log into ramdisk with the current user’s SSH key. Only works for DIB-based ramdisks built with the
Ansible 2.10 is now supported and used by default (2.9 is still supported).
./bifrost-cli testenvto make testing VMs boot in the UEFI mode.
./bifrost-cli installto make ironic use UEFI by default.
Enables support for
redfish-virtual-mediain legacy (BIOS) boot mode.
Adds support for testing bifrost with UEFI secure boot enabled in VMs. Requires an IPA ramdisk with kernel signed by a key recognized by GRUB2 on the host machine.
Adds support for emulating UEFI bare metal machines in the testing environment. Pass
Adds support for Redfish virtual media in UEFI mode.
UEFI testing with network boot does not work on Ubuntu Focal because of TFTP issues.
Following an announcement by the CentOS project, Bifrost has switched to CentOS Stream for testing. Regular CentOS is no longer tested in the CI, meaning that both it and RHEL will only be tested indirectly and supported on the best effort basis.
bifrost-create-bootable-image, marked as legacy since 2015, has been removed. Please use diskimage-builder or other external tools to build your images.
Bifrost now uses HTTP basic authentication by default. The generated credentials will be stored in
enable_keystone=falseto disable authentication.
Fedora 30 has reached end-of-life and is no longer explicitly tested. Its support will be removed in one of the future releases.
openSUSE Leap 15.1 is reaching end-of-life and is no longer explicitly tested. Its support will be removed in one of the future releases.
OS_CLOUDvariable in the generated
OS_AUTH_TYPEis now always set in the generated
FirewallD is now used on Fedora 32 and newer to fix firewall issues.
Fixes an issue with the Bifrost inventory plugin when used with
BIFROST_INVENTORY_SOURCE=ironic. All node fields are now returned as facts, as in Ussuri and earlier releases. See story 2008394 for details.
Copies ironic-lib rootwrap.d filters to the correct location.
Correctly copies rootwrap.d filters on upgrade.
Fixes SELinux context not being applied to /httpboot and /tftpboot. This renders the
ironic_policymodule unnecessary, and it has been removed.
Ensures that the checksums file has the correct ownership.
Explicitly opens ports 68 and 69 in firewall on systems not using firewalld (e.g. Ubuntu).
PATHto always include the virtual environment when running validations.
Fedora 32 and openSUSE Leap 15.2 have been added to the supported OS list.