2023.1: zed merge #823
Merged
2023.1: zed merge #823
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Contributor
markgoddard
commented
Dec 7, 2023
markgoddard
commented
- Add DWPD to Hardware Overview dashboard
- Add DWPD alerts
- Add release note
- docs: Add in-place upgrade to RL9 migration
- docs: RL9 migration in-place updates
- docs: RL9 migration in place fix
- Bump nova images
- Fix Grafana HAProxy dashboard (again)
- Adds Ubuntu Jammy & Rocky 9 CIS benchmark hardening playbooks (Adds Ubuntu Jammy & Rocky 9 CIS benchmark hardening playbooks #685)
- docs: Add info on purge-command-not-found.yml custom playbook
- CI: Don't fail fast on container image build job failure
- docs: Add overcloud host image to RL9 migration guide
- Rocky9: Add section on routing rules (Rocky9: Add section on routing rules #788)
- Further additions to RL9 migration docs
- Add more services to the rabbitmq-reset playbook
- Configure SELinux in permissive mode on RL9 hosts
- Document new issues seen with Storage hosts
- Converge on the right spelling of converge
- Use python3 -m venv for nova playbooks
- Fixes various issues with the cis.yml playbook (Fixes various issues with the cis.yml playbook #791)
- Enable hypervisor after RL9 compute migration
- Tox lint fixes
- Update doc/source/operations/rocky-linux-9.rst
- Enable hypervisor after RL9 compute migration
- Fix cluster health in Grafana Elasticsearch dashboard
- Add rekey-hosts.yml playbook
- Rekey playbook misc improvements
- Change rekey playbook to use existing ssh vars
- Rework rekey-hosts.yml playbook
- rekey-host.yml remove-key tag
- Fix Wazuh agent playbook w/o using custom policies
- Fix link to Release Train docs
- Fix opensearch-migration command
- Fix link to Release Train docs (really)
- Drop CentOS/Rocky 8 from CIS security hardening
- Remove SELinux overrides
- Fix OpenSearch reno
Adds the DWPD (Drive Writes Per Day) to the Hardware Overview dashboard in Grafana. This is useful for monitoring the wear on NVMEs.
Nova hasn't been rebuilt since: 1cfefbd So this switches back to the upstream code.
Xena: Bump nova images
The previous commit to this file [1] added port numbers to the instance
label regex. This is compatible with the default Prometheus targets
generated by Kolla Ansible, which look like this:
192.168.1.1:9101
However, when using a non-default instance label [2], the port number is
absent, which breaks the dashboard (all panels are empty).
Modify the regex to make the port number optional, which should support
all possible instance labels.
Note: I first tried using `$host:([0-9]+)?` but it does not appear to be
supported by Prometheus, which uses RE2 [3].
[1] eceee82
[2] https://docs.openstack.org/kolla-ansible/latest/reference/logging-and-monitoring/prometheus-guide.html#metric-instance-labels
[3] https://github.com/google/re2/wiki/Syntax
Fix Grafana HAProxy dashboard (again)
* Adds Ubuntu Jammy CIS benchmark hardening playbooks Co-authored-by: "Dawud <[email protected]>" * Use fork of role to support inject_facts_as_vars=False * Add support for Rocky 9 CIS hardening Co-authored-by: Michał Nasiadka <[email protected]> * Whitespace fix * Whitespace fix * Matt's code review Co-authored-by: Matt Crees <[email protected]> * Add rhel9 auditd configuration * Move auditd config to new location * ... * Update cis * Apply suggestions from code review Co-authored-by: Alex-Welsh <[email protected]> Co-authored-by: Mark Goddard <[email protected]> Co-authored-by: Matt Crees <[email protected]> * Apply suggestions from code review * Apply suggestions from code review * Rename section * Fix indentation * Apply suggestions from code review * Remove instructions to enable inject_facts_as_vars --------- Co-authored-by: Michał Nasiadka <[email protected]> Co-authored-by: Matt Crees <[email protected]> Co-authored-by: Alex-Welsh <[email protected]> Co-authored-by: Mark Goddard <[email protected]>
zed: yoga merge
Previously if one of the container image build jobs (CS8, Ubuntu) failed, the other would be cancelled. This is not necessarily helpful, since the other job may complete successfully. This change disables this fail fast behaviour.
docs: Add info on purge-command-not-found.yml custom playbook
yoga rl9 in place docs
docs: Add overcloud host image to RL9 migration guide
…-fast CI: Don't fail fast on container image build job failure
Further additions to RL9 migration docs
Add DWPD to Hardware Overview dashboard
This change adds services that we often deploy: Barbican, Blazar, CloudKitty, Designate, Manila and Octavia.
This makes the host match the target configuration in Zed and avoids a later reboot to change the SELinux mode. RL9 hosts that have SELinux disabled are rebooted only if disable_selinux_do_reboot is changed to true.
Cotinues with our ongoing switch from virtualenv to python3 -m venv.
When Elasticsearch/OpenSearch was in yellow state, the number 23 was displayed instead of Yellow.
Fix cluster health in Grafana Elasticsearch dashboard
Enable hypervisor after RL9 compute migration
Co-Authored-By: Alex Welsh <[email protected]>
Fix link to Release Train docs
…-again Fix Wazuh agent playbook w/o using custom policies
Fix opensearch-migration command
Fix link to Release Train docs (really)
Add rekey playbook
yoga: xena merge
These OS versions are no longer supported.
These were added for transitional support for Rocky 9 in Yoga, and are not required in Zed because the default changed in Kayobe.
Alex-Welsh
approved these changes
Dec 7, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.