릴리스 노트 Red Hat OpenStack Platform 16.0

$ sudo openstack tripleo container image push docker.io/library/centos
$ openstack tripleo container image list
$ sudo openstack tripleo container image delete
$ openstack tripleo container image show
parameter_defaults:
   NovaLocalMetadataPerCell: True
network_config:
  -
    type: route_table
    name: custom
    table_id: 200
  -
    type: interface
    name: em1
    use_dhcp: false
    addresses:
    -
      ip_netmask: 192.0.2.1/24
    routes:
      -
        ip_netmask: 10.1.3.0/24
        next_hop: 192.0.2.5
        table: 200  # Use table ID or table name
    rules:
      - rule: "iif em1 table 200"
        comment: "Route incoming traffic to em1 with table 200"
      - rule: "from 192.0.2.0/24 table 200"
        comment: "Route all traffic from 192.0.2.0/24 with table 200"
      - rule: "add blackhole from 172.19.40.0/24 table 200"
      - rule: "add unreachable iif em1 from 192.168.1.0/24"
$ source ./stackrc
$ openstack workflow execution create tripleo.plan_management.v1.rotate_passwords '{"container": "overcloud"}'
$ openstack workflow execution create tripleo.plan_management.v1.rotate_passwords '{"container": "overcloud", "password_list": ["BarbicanPassword", "SaharaPassword", "ManilaPassword"]}'
$ ./overcloud-deploy.sh
$ openstack workflow execution create tripleo.plan_management.v1.get_passwords '{"container": "overcloud"}'
+--------------------+---------------------------------------------+
| Field              | Value                                       |
+--------------------+---------------------------------------------+
| ID                 | edcf9103-e1a8-42f9-85c1-e505c055e0ed        |
| Workflow ID        | 8aa2ac9b-22ee-4e7d-8240-877237ef0d0a        |
| Workflow name      | tripleo.plan_management.v1.rotate_passwords |
| Workflow namespace |                                             |
| Description        |                                             |
| Task Execution ID  | <none>                                      |
| Root Execution ID  | <none>                                      |
| State              | RUNNING                                     |
| State info         | None                                        |
| Created at         | 2020-01-22 15:47:57                         |
| Updated at         | 2020-01-22 15:47:57                         |
+--------------------+---------------------------------------------+
$ openstack workflow execution show edcf9103-e1a8-42f9-85c1-e505c055e0ed
+--------------------+---------------------------------------------+
| Field              | Value                                       |
+--------------------+---------------------------------------------+
| ID                 | edcf9103-e1a8-42f9-85c1-e505c055e0ed        |
| Workflow ID        | 8aa2ac9b-22ee-4e7d-8240-877237ef0d0a        |
| Workflow name      | tripleo.plan_management.v1.rotate_passwords |
| Workflow namespace |                                             |
| Description        |                                             |
| Task Execution ID  | <none>                                      |
| Root Execution ID  | <none>                                      |
| State              | SUCCESS                                     |
| State info         | None                                        |
| Created at         | 2020-01-22 15:47:57                         |
| Updated at         | 2020-01-22 15:48:39                         |
+--------------------+---------------------------------------------+
$ openstack workflow execution output show edcf9103-e1a8-42f9-85c1-e505c055e0ed
{
    "status": "SUCCESS",
    "message": {
        "AdminPassword": "FSn0sS1aAHp8YK2fU5niM3rxu",
        "AdminToken": "dTP0Wdy7DtblG80M54r4a2yoC",
        "AodhPassword": "fB5NQdRe37BaBVEWDHVuj4etk",
        "BarbicanPassword": "rn7yk7KPafKw2PWN71MvXpnBt",
        "BarbicanSimpleCryptoKek": "lrC3sGlV7-D7-V_PI4vbDfF1Ujm5OjnAVFcnihOpbCg=",
        "CeilometerMeteringSecret": "DQ69HdlJobhnGWoBC0jM3drPF",
        "CeilometerPassword": "qI6xOpofuiXZnG95iUe8Oxv5d",
        "CephAdminKey": "AQDGVPpdAAAAABAAZMP56/VY+zCVcDT81+TOjg==",
        "CephClientKey": "AQDGVPpdAAAAABAAanYtA0ggpcoCbS1nLeDN7w==",
        "CephClusterFSID": "141a5ede-21b4-11ea-8132-52540031f76b",
        "CephDashboardAdminPassword": "AQDGVPpdAAAAABAAKhsx630YKDhQrocS4o4KzA==",
        "CephGrafanaAdminPassword": "AQDGVPpdAAAAABAAKBojG+CO72B0TdBRR0paEg==",
        "CephManilaClientKey": "AQDGVPpdAAAAABAAA1TVHrTVCC8xQ4skG4+d5A=="
    }
}
deploy_steps_tasks:
  # rabbitmq container is supposed to be started during step 1
  # so we want to ensure it's running during step 2
  - name: validate rabbitmq state
    when: step|int == 2
    tags:
      - opendev-validation
      - opendev-validation-rabbitmq
    wait_for_connection:
      host: {get_param: [ServiceNetMap, RabbitmqNetwork]}
      port: 5672
      delay: 10
deploy_steps_tasks:
  - name: some validation
    when: step|int == 2
    tags:
      - opendev-validation
      - opendev-validation-rabbitmq
    include_role:
      role: rabbitmq-limits
    # We can pass vars to included role, in this example
    # we override the default min_fd_limit value:
    vars:
      min_fd_limit: 32768
deploy_steps_tasks:
  # rabbitmq container is supposed to be started during step 1
  # so we want to ensure it's running during step 2
  - name: validate rabbitmq state
    when: step|int == 2
    tags:
      - opendev-validation
      - opendev-validation-rabbitmq
    command: >
      podman exec rabbitmq /openstack/healthcheck
openstack floating ip port forwarding create
--internal-ip-address <internal-ip-address>
--port <port>
--internal-protocol-port <port-number>
--external-protocol-port <port-number>
--protocol <protocol>
<floating-ip>
openstack floating ip port forwarding create \
    --internal-ip-address 192.168.1.2 \
    --port f7a08fe4-e79e-4b67-bbb8-a5002455a493 \
    --internal-protocol-port 18343 \
    --external-protocol-port 8343 \
    --protocol tcp \
    10.0.0.100
[ironic]
api_max_retries = 180
(undercloud) [stack@undercloud-0 ~]$ source stackrc
(undercloud) [stack@undercloud-0 ~]$ nova list
...
| 3fab687e-99c2-4e66-805f-3106fb41d868 | controller-1 | ACTIVE | -          | Running     | ctlplane=192.168.24.17 |
| a87276ea-8682-4f27-9426-6b272955b486 | controller-2 | ACTIVE | -          | Running     | ctlplane=192.168.24.38 |
| a000b156-9adc-4d37-8169-c1af7800788b | controller-3 | ACTIVE | -          | Running     | ctlplane=192.168.24.35 |
...

(undercloud) [stack@undercloud-0 ~]$ for ip in 192.168.24.17 192.168.24.38 192.168.24.35; do ssh $ip 'sudo podman restart swift_copy_rings ; sudo podman restart $(sudo podman ps -a --format="{{.Names}}" --filter="name=swift_*")'; done
`ansible -b <nodes> -i /usr/bin/tripleo-ansible-inventory -m shell -a "status=`sudo systemctl is-active tripleo_ovn_metadata_agent`; if test \"$status\" == \"active\"; then sudo systemctl restart tripleo_ovn_metadata_agent; echo restarted; fi"`
`ansible -b compute* -i /usr/bin/tripleo-ansible-inventory -m shell -a "status=`sudo systemctl is-active tripleo_ovn_metadata_agent`; if test \"$status\" == \"active\"; then sudo systemctl restart tripleo_ovn_metadata_agent; echo restarted; fi"`
service_config_settings:
     placement:
         neutron::server::placement::password: <Nova password>
  neutron::server::placement::www_authenticate_uri: <Keystone Internal API URL>
  neutron::server::placement::project_domain_name: 'Default'
  neutron::server::placement::project_name: 'service'
  neutron::server::placement::user_domain_name: 'Default'
  neutron::server::placement::username: nova
  neutron::server::placement::auth_url: <Keystone Internal API URL>
  neutron::server::placement::auth_type: 'password'
  neutron::server::placement::region_name: <Keystone Region>
d /var/run/octavia 0755 root root - -
`ansible -b <nodes> -i /usr/bin/tripleo-ansible-inventory -m shell -a "podman ps -a --format {{'{{'}}.ID{{'}}'}} -f name=haproxy,status=created | xargs podman rm -f || :"`
`ansible -b compute-0 -i /usr/bin/tripleo-ansible-inventory -m shell -a "podman ps -a --format {{'{{'}}.ID{{'}}'}} -f name=haproxy,status=created | xargs podman rm -f || :"`
openstack floating ip port forwarding create
--internal-ip-address <internal-ip-address>
--port <port>
--internal-protocol-port <port-number>
--external-protocol-port <port-number>
--protocol <protocol>
<floating-ip>
$ source ./stackrc
$ openstack workflow execution create tripleo.plan_management.v1.rotate_passwords '{"container": "overcloud"}'
This command generates new passwords for all passwords except for BarbicanSimpleCryptoKek and KeystoneFernet* and KeystoneCredential*. There are special procedures to rotate these passwords.
It is also possible to specify specific passwords to be rotated. The following command rotates only the specified passwords.
$ openstack workflow execution create tripleo.plan_management.v1.rotate_passwords '{"container": "overcloud", "password_list": ["BarbicanPassword", "SaharaPassword", "ManilaPassword"]}'
$ ./overcloud-deploy.sh
$ openstack workflow execution create tripleo.plan_management.v1.get_passwords '{"container": "overcloud"}'
You should see output from the command, similar to the following:
+--------------------+---------------------------------------------+
| Field              | Value                                       |
+--------------------+---------------------------------------------+
| ID                 | edcf9103-e1a8-42f9-85c1-e505c055e0ed        |
| Workflow ID        | 8aa2ac9b-22ee-4e7d-8240-877237ef0d0a        |
| Workflow name      | tripleo.plan_management.v1.rotate_passwords |
| Workflow namespace |                                             |
| Description        |                                             |
| Task Execution ID  | <none>                                      |
| Root Execution ID  | <none>                                      |
| State              | RUNNING                                     |
| State info         | None                                        |
| Created at         | 2020-01-22 15:47:57                         |
| Updated at         | 2020-01-22 15:47:57                         |
+--------------------+---------------------------------------------+
In the earlier example output, the value of State is RUNNING. State should eventually read SUCCESS.
$ openstack workflow execution show edcf9103-e1a8-42f9-85c1-e505c055e0ed
+--------------------+---------------------------------------------+
| Field              | Value                                       |
+--------------------+---------------------------------------------+
| ID                 | edcf9103-e1a8-42f9-85c1-e505c055e0ed        |
| Workflow ID        | 8aa2ac9b-22ee-4e7d-8240-877237ef0d0a        |
| Workflow name      | tripleo.plan_management.v1.rotate_passwords |
| Workflow namespace |                                             |
| Description        |                                             |
| Task Execution ID  | <none>                                      |
| Root Execution ID  | <none>                                      |
| State              | SUCCESS                                     |
| State info         | None                                        |
| Created at         | 2020-01-22 15:47:57                         |
| Updated at         | 2020-01-22 15:48:39                         |
+--------------------+---------------------------------------------+
$ openstack workflow execution output show edcf9103-e1a8-42f9-85c1-e505c055e0ed
You should see output similar to the following:
   {
       "status": "SUCCESS",
       "message": {
           "AdminPassword": "FSn0sS1aAHp8YK2fU5niM3rxu",
           "AdminToken": "dTP0Wdy7DtblG80M54r4a2yoC",
           "AodhPassword": "fB5NQdRe37BaBVEWDHVuj4etk",
           "BarbicanPassword": "rn7yk7KPafKw2PWN71MvXpnBt",
           "BarbicanSimpleCryptoKek": "lrC3sGlV7-D7-V_PI4vbDfF1Ujm5OjnAVFcnihOpbCg=",
           "CeilometerMeteringSecret": "DQ69HdlJobhnGWoBC0jM3drPF",
           "CeilometerPassword": "qI6xOpofuiXZnG95iUe8Oxv5d",
           "CephAdminKey": "AQDGVPpdAAAAABAAZMP56/VY+zCVcDT81+TOjg==",
           "CephClientKey": "AQDGVPpdAAAAABAAanYtA0ggpcoCbS1nLeDN7w==",
           "CephClusterFSID": "141a5ede-21b4-11ea-8132-52540031f76b",
           "CephDashboardAdminPassword": "AQDGVPpdAAAAABAAKhsx630YKDhQrocS4o4KzA==",
           "CephGrafanaAdminPassword": "AQDGVPpdAAAAABAAKBojG+CO72B0TdBRR0paEg==",
           "CephManilaClientKey": "AQDGVPpdAAAAABAAA1TVHrTVCC8xQ4skG4+d5A=="
       }
   }
(BZ#1600967)
[ironic]
api_max_retries = 180
parameter_defaults:
   NovaLocalMetadataPerCell: True
$ sudo openstack tripleo container image push docker.io/library/centos
$ openstack tripleo container image list
$ sudo openstack tripleo container image delete
$ openstack tripleo container image show (BZ#1545855)

이름	리포지토리	요구 사항 설명
Red Hat Enterprise Linux 8 for x86_64 - BaseOS(RPM)	`rhel-8-for-x86_64-baseos-rpms`	x86_64 시스템용 기본 운영 체제 리포지토리
Red Hat Enterprise Linux 8 for x86_64 - AppStream(RPM)	`rhel-8-for-x86_64-appstream-rpms`	Red Hat OpenStack Platform 종속 패키지를 포함
Red Hat Enterprise Linux 8 for x86_64 - High Availability(RPM)	`rhel-8-for-x86_64-highavailability-rpms`	Red Hat Enterprise Linux용 고가용성 툴. Controller 노드 고가용성에 사용
Red Hat Ansible Engine 2.8 for RHEL 8 x86_64(RPM)	`ansible-2.8-for-rhel-8-x86_64-rpms`	Ansible Engine for Red Hat Enterprise Linux. 최신 버전의 Ansible을 제공하는 데 사용
Red Hat Satellite Tools for RHEL 8 Server RPMs x86_64	`satellite-tools-6.5-for-rhel-8-x86_64-rpms`	Red Hat Satellite 6 호스트 관리 툴
Red Hat OpenStack Platform 16.0 for RHEL 8(RPM)	`openstack-16-for-rhel-8-x86_64-rpms`	Red Hat OpenStack Platform 코어 리포지토리로 Red Hat OpenStack Platform director용 패키지를 포함
Red Hat Fast Datapath for RHEL 8(RPMS)	`fast-datapath-for-rhel-8-x86_64-rpms`	OpenStack Platform용 Open vSwitch(OVS) 패키지를 제공

이름	리포지토리	요구 사항 설명
Red Hat Enterprise Linux for IBM Power, little endian - BaseOS(RPM)	`rhel-8-for-ppc64le-baseos-rpms`	ppc64le 시스템용 기본 운영 체제 리포지토리
Red Hat Enterprise Linux 8 for IBM Power, little endian - AppStream(RPM)	`rhel-8-for-ppc64le-appstream-rpms`	Red Hat OpenStack Platform 종속 패키지를 포함
Red Hat Enterprise Linux 8 for IBM Power, little endian - High Availability(RPM)	`rhel-8-for-ppc64le-highavailability-rpms`	Red Hat Enterprise Linux용 고가용성 툴. Controller 노드 고가용성에 사용
Red Hat Ansible Engine 2.8 for RHEL 8 IBM Power, little endian(RPM)	`ansible-2.8-for-rhel-8-ppc64le-rpms`	Ansible Engine for Red Hat Enterprise Linux. 최신 버전의 Ansible을 제공하는 데 사용
Red Hat OpenStack Platform 16.0 for RHEL 8(RPM)	`openstack-16-for-rhel-8-ppc64le-rpms`	ppc64le 시스템용 Red Hat OpenStack Platform 코어 리포지토리

이름	리포지토리	요구 사항 설명
Red Hat Enterprise Linux 8 for x86_64 - BaseOS(RPM)	`rhel-8-for-x86_64-baseos-rpms`	x86_64 시스템용 기본 운영 체제 리포지토리
Red Hat Enterprise Linux 8 for x86_64 - AppStream(RPM)	`rhel-8-for-x86_64-appstream-rpms`	Red Hat OpenStack Platform 종속 패키지를 포함
Red Hat Enterprise Linux 8 for x86_64 - High Availability(RPM)	`rhel-8-for-x86_64-highavailability-rpms`	Red Hat Enterprise Linux용 고가용성 툴. Controller 노드 고가용성에 사용
Red Hat Ansible Engine 2.8 for RHEL 8 x86_64(RPM)	`ansible-2.8-for-rhel-8-x86_64-rpms`	Ansible Engine for Red Hat Enterprise Linux. 최신 버전의 Ansible을 제공하는 데 사용
Advanced Virtualization for RHEL 8 x86_64(RPM)	`advanced-virt-for-rhel-8-x86_64-rpms`	OpenStack Platform용 가상화 패키지를 제공
Red Hat Satellite Tools for RHEL 8 Server RPMs x86_64	`satellite-tools-6.5-for-rhel-8-x86_64-rpms`	Red Hat Satellite 6 호스트 관리 툴
Red Hat OpenStack Platform 16.0 for RHEL 8(RPM)	`openstack-16-for-rhel-8-x86_64-rpms`	코어 Red Hat OpenStack Platform 리포지토리
Red Hat Fast Datapath for RHEL 8(RPMS)	`fast-datapath-for-rhel-8-x86_64-rpms`	OpenStack Platform용 Open vSwitch(OVS) 패키지를 제공

이름	리포지토리	요구 사항 설명
Red Hat Enterprise Linux 8 for x86_64 - Real Time(RPM)	`rhel-8-for-x86_64-rt-rpms`	실시간 KVM(RT-KVM) 리포지토리. 실시간 커널을 활성화하는 패키지가 포함되어 있음. 이 리포지토리는 RT-KVM을 대상으로 하는 모든 컴퓨팅 노드에서 활성화해야 함. 참고: 이 리포지토리에 액세스하려면 별도의 `Red Hat OpenStack Platform for Real Time` SKU 서브스크립션이 필요함.
Red Hat Enterprise Linux 8 for x86_64 - Real Time for NFV(RPM)	`rhel-8-for-x86_64-nfv-rpms`	NFV용 실시간 KVM(RT-KVM) 리포지토리. 실시간 커널을 활성화하는 패키지가 포함되어 있음. 이 리포지토리는 RT-KVM을 대상으로 하는 모든 NFV Compute 노드에 대해 활성화해야 함. 참고: 이 리포지토리에 액세스하려면 별도의 `Red Hat OpenStack Platform for Real Time` SKU 서브스크립션이 필요함.

이름	리포지토리	요구 사항 설명
Red Hat Enterprise Linux for IBM Power, little endian - BaseOS(RPM)	`rhel-8-for-ppc64le-baseos-rpms`	ppc64le 시스템용 기본 운영 체제 리포지토리
Red Hat Enterprise Linux 8 for IBM Power, little endian - AppStream(RPM)	`rhel-8-for-ppc64le-appstream-rpms`	Red Hat OpenStack Platform 종속 패키지를 포함
Red Hat Enterprise Linux 8 for IBM Power, little endian - High Availability(RPM)	`rhel-8-for-ppc64le-highavailability-rpms`	Red Hat Enterprise Linux용 고가용성 툴. Controller 노드 고가용성에 사용
Red Hat Ansible Engine 2.8 for RHEL 8 IBM Power, little endian(RPM)	`ansible-2.8-for-rhel-8-ppc64le-rpms`	Ansible Engine for Red Hat Enterprise Linux. 최신 버전의 Ansible을 제공하는 데 사용
Red Hat OpenStack Platform 16.0 for RHEL 8(RPM)	`openstack-16-for-rhel-8-ppc64le-rpms`	ppc64le 시스템용 Red Hat OpenStack Platform 코어 리포지토리

Language and Page Formatting Options

릴리스 노트

Red Hat OpenStack Platform 16.0 릴리스 세부 정보

OpenStack Documentation Team

1장. 소개

1.1. 릴리스 정보

1.2. 요구 사항

1.3. 배포 제한

1.4. 데이터베이스 크기 관리

1.5. 인증 드라이버 및 플러그인

1.6. 인증된 게스트 운영 체제

1.7. 제품 인증 카탈로그

1.8. Bare Metal Provisioning 운영 체제

1.9. 하이퍼바이저 지원

1.10. CDN(Content Delivery Network) 리포지토리

1.10.1. 언더클라우드 리포지토리

1.10.2. 오버클라우드 리포지토리

1.11. 제품 지원

2장. 새로운 주요 기능

2.1. Compute

2.2. Networking

2.3. 스토리지

2.4. Ceph Storage

2.5. 기술 프리뷰

2.5.1. 새로운 기술 프리뷰

3장. 릴리스 정보

3.1. Red Hat OpenStack Platform 16.0 GA

3.1.1. 버그 수정

3.1.2. 기능 개선

3.1.3. 기술 프리뷰

3.1.4. 릴리스 노트

3.1.5. 알려진 문제

3.1.6. 제거된 기능

4장. 기술 노트

4.1. RHEA-2020:0283 - Red Hat OpenStack Platform 16.0 일반 가용성 권고

Quick Links

Help

Site Info

Related Sites

Systems Status

About

Red Hat legal and privacy links

Red Hat legal and privacy links