post-upgrade

container-status

Ensure container status.

Detect failed containers and raise an error.

  • hosts: undercloud, overcloud

  • groups: pre-upgrade, post-deployment, post-upgrade

  • parameters:

  • roles: container_status

Role documentation

image-serve

Verify image-serve service is working and answering.

Ensures image-serve vhost is configured and httpd is running.

  • hosts: undercloud

  • groups: pre-upgrade, post-deployment, post-upgrade

  • parameters:

  • roles: image_serve

Role documentation

openstack-endpoints

Check connectivity to various OpenStack services.

This validation gets the PublicVip address from the deployment and tries to access Horizon and get a Keystone token.

  • hosts: undercloud

  • groups: post-deployment, pre-upgrade, post-upgrade

  • parameters:

  • roles: openstack_endpoints

Role documentation

service-status

Ensure services state.

Detect services status on the target host and fails if we find a failed service.

  • hosts: undercloud, overcloud

  • groups: prep, pre-deployment, pre-upgrade, post-deployment, post-upgrade

  • parameters:

  • roles: service_status

Role documentation

stack-health

Stack Health Check.

Check if all stack resources are in a ‘COMPLETE’ state before starting an upgrade.

  • hosts: undercloud

  • groups: pre-upgrade, post-upgrade

  • parameters:

  • roles: stack_health

Role documentation

undercloud-service-status

Verify undercloud services state before running update or upgrade.

Check undercloud status before running a stack update - especially minor update and major upgrade.

  • hosts: undercloud

  • groups: post-upgrade, pre-upgrade

  • parameters:

  • roles: undercloud_service_status

Role documentation

validate-selinux

validate-selinux.

Ensures we don’t have any SELinux denials on the system

  • hosts: all

  • groups: pre-deployment, post-deployment, pre-upgrade, post-upgrade

  • parameters:

    • validate_selinux_working_dir: /var/log/validations

    • validate_selinux_audit_source: /var/log/audit/audit.log

    • validate_selinux_skip_list_dest: {{ validate_selinux_working_dir }}/denials-skip-list.txt

    • validate_selinux_filtered_denials_dest: {{ validate_selinux_working_dir }}/denials-filtered.log

    • validate_selinux_strict: False

    • validate_selinux_filter: None

    • validate_selinux_skip_list: {}

  • roles: validate_selinux

Role documentation