Wallaby Series Release Notes


New Features

  • When nova_virtlogd container gets restarted the instance console auth files will not be reopened again by virtlogd. As a result either instances need to be restarted or live migrated to a different compute node to get new console logs messages logged again. Usually on receipt of SIGUSR1, virtlogd will re-exec() its binary, while maintaining all current logs and clients. This allows for live upgrades of the virtlogd service on non containerized environments where updates just by doing an RPM update. To reduce the likelihood in a containerized environment virtlogd should only be restarted on manual request, or on compute node reboot. It should not be restarted on a minor update without migration off instances. This introduces a nova_virtlogd_wrapper container and virtlogd wrapper script, to only restart virtlogd on either manual or compute node restart.

  • New hiera setting rbd_disk_cachemodes allows to override the disk cache modes for RBD. Defaults to [‘network=writeback’].

  • Added “scripts” parameters for class tripleo::profile::base::metrics::collectd::sensubility enabling download of various scripts for usage within sensubility check definitions. Supported transfer method is HTTP only currently.


New Features

  • Add ability to specify the memcache_security_strategy and memcache_secret_key for keystone authtoken middleware. The keys used by individual services are hashed with a salt (the service name), to isolate them.

  • New tripleo::profile::base::cinder::backup::gcs and tripleo::profile::base::cinder::backup::s3 classes add support for configuring the cinder backup service’s GCS (Google Cloud service) and Amazon S3 backends.

  • Add support for configuring multiple cinder RBD backends, each associated with a different ceph cluster.

  • Add parameter for setting monitor interval for ovndbs (default is 30s)

  • Add posibilities to configure replication_probe_interval for ovsdb-server. It configure probe interval for connection for ovsdb-server when it is in backup mode and connects to the active ovsdb-server for replication

Upgrade Notes

  • The following deprecated parameters in the tripleo::profile::base::nova::api class have been removed.

    • nova_metadata_network

    • metadata_tls_proxy_bind_ip

    • metadata_tls_proxy_fqdn

    • metadata_tls_proxy_port

  • Remove deprecated tripleo::profile::base::cinder::volume::dellemc_xtremio_iscsi. Use tripleo::profile::base::cinder::volume::dellemc_xtremio instead.

Deprecation Notes

  • Remove support for puppet_certmonger. All certificates are now managed by the linux-system-roles.certificate ansible role configured from each service’s heat template. ::tripleo::certmonger puppet files are removed.

Bug Fixes

  • libvirt 6.8.0 introduces virt-ssh-helper which prepends the libvirt ssh command with a “which virt-ssh-helper”. libvirt used to first check for nc (netcat). But these two libvirt commits[1][2] have now changed it to first look for virt-ssh-helper, if it not available, then fall back to nc. This trips up the ‘nova-migration-wrapper’ as it does not support virt-ssh-helper atm. Until this is implemented, this change force to use “netcat” (nc) by appending to the migration URI: “&proxy=netcat” [1] https://libvirt.org/git/?p=libvirt.git;a=commit;h=f8ec7c842d (rpc: use new virt-ssh-helper binary for remote tunnelling, 2020-07-08) [2] https://libvirt.org/git/?p=libvirt.git;a=commit;h=7d959c302d (rpc: Fix virt-ssh-helper detection, 2020-10-27)

  • Bug #1915800: Add support for ports filtering in XtremIO driver.


New Features

  • Add ability to specify memcached port for all services. The port defaults to hiera(‘memcached_authtoken_port’, 11211) for authtoken middleware and hiera(‘memcached_port’, 11211) for other uses.

  • This change introduces two hiera keys that allow an operator to specify which NIC (or NICs) the VIPs will be bound to. One hiera key has global effect (tripleo::pacemaker::force_nic) and forces all VIPs to listen to that NIC. There is also the possibility to override that for specific VIPs with the force_vip_nic_overrides hiera hash. This change is only useful for deployments where BGP is used to advertise IP addresses from the host across multiple L3 networks.

Upgrade Notes

  • Management of login.defs file has been removed because now the file is managed by ansible.