WarlockFish/fedora-infra_ansible
1
0
Fork 0
mirror of https://pagure.io/fedora-infra/ansible.git synced 2026-04-30 21:41:53 +08:00
Code Issues Packages Projects Releases Wiki Activity
43,401 Commits 9 Branches 0 Tags
7aa7553b84af5dc8efa78e9d8a4e50dde369052d
Commit Graph

4285 Commits

Author SHA1 Message Date
Kevin Fenzi
5abc226b99 batcave: where batman hangs out working on the batcomputer 
Add a batcave01 in rdu3. Note that any changes made to this host before
the cutover may be wiped out by syncing content from the old one, so
probibly you shouldn't use it yet.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 15:41:41 -07:00
Kevin Fenzi
a3e074ecbc openshift / staging / rdu3: set correct ocp version 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 13:46:25 -07:00
Greg Sutcliffe
176d62edc3 OCP: Add host/group vars for staging RDU3 ocp cluster 
Signed-off-by: Greg Sutcliffe <fedora@emeraldreverie.org>
 2025-06-24 18:28:00 +00:00
Kevin Fenzi
545dfcf84e buildvm_aarch64_rdu3: fedora 42 here 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-24 10:27:16 -07:00
Aurélien Bompard
a3d07546d5 Fix typo 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-24 18:21:39 +02:00
Aurélien Bompard
0ca9152d61 Open firewall for rabbitmq in RDU3 
Signed-off-by: Aurélien Bompard <aurelien@bompard.org>
 2025-06-24 18:18:31 +02:00
Kevin Fenzi
eb0237711d builders / rdu3: add a pile of x86 and a64 builders, with some x86-riscv 
It should be ok to deploy these before koji exists there.
kojid won't start without intervention, so we should be able to deploy
and start it when koji is ready.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-23 16:58:20 -07:00
Kevin Fenzi
58bdf975c0 dns: actually serve the rdu3 mgmt zone to requests for it instead of the iad2 one 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-23 15:53:20 -07:00
Michal Konecny
f1102f6b54 [ipa] Add VMs for RDU3 
Add VM definitions for IPA machines in RDU3.
 2025-06-23 13:06:51 +00:00
Kevin Fenzi
45b2e9d93b sundries/stg: 2gb is not enough anymore 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-22 13:34:00 -07:00
Kevin Fenzi
1456630b4f staging rdu3 vars: fix numbering on dns rules 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-21 13:39:41 -07:00
Kevin Fenzi
afc6dc2d3a inventory: update dns info for rdu3 staging instances 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-21 13:36:30 -07:00
Kevin Fenzi
f71e7f4189 group vars: fix typo in staging group vars 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-21 13:09:36 -07:00
Kevin Fenzi
7d0b266757 inventory rework to split rdu3 and iad2 more 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-21 13:05:49 -07:00
Kevin Fenzi
be37bd19c6 rdu3 production hosts should search rdu3 first 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-21 11:50:52 -07:00
Kevin Fenzi
8b974e3dda nagios: try and set datacenter for aarch64 buildvms to try and avoid a nagios template issue 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-20 22:04:02 -07:00
Kevin Fenzi
9cc7fce540 nagios: add rdu3_management hosts 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-20 21:13:25 -07:00
Kevin Fenzi
a15935f6ac tang: setup tang for rdu3 virthosts 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-19 15:16:36 -07:00
Jakub Kadlcik
0b74481da2 copr-be: update x86_64 HV images 
The previous one didn't have a fix for make_srpm
 2025-06-19 23:14:36 +02:00
Kevin Fenzi
987aad289e inventory: rework things to have iad2 and rdu3 groups for most everything 
This will allow us to use a group_vars/rdu3_production/staging to set
variables for all those hosts and more clearly allow us to see whats in
which datacenter (hopefully).

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-19 12:17:50 -07:00
Kevin Fenzi
1ec215d64e sundries / rdu3: 2g of memory is not enough anymore 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-17 15:22:21 -07:00
Kevin Fenzi
634b116925 virt-install: use dns1 and dns2 for dns servers for virt-installs 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-17 11:53:10 -07:00
Kevin Fenzi
03656f0288 proxies / rdu3: make most proxies use vpn but rdu3 goes direct 
We need this because the cluster needs to be able to access api in order
to pull images, etc. So, in rdu3 proxies we go direct to the cluster
nodes, but in all the other proxies we go via the vpn.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 15:42:12 -07:00
Kevin Fenzi
f9c8e842b7 download / rdu3: add rdu3 download servers 
This will allow us to test ro mounts from the rdu3 netapp.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 14:02:36 -07:00
Kevin Fenzi
0194b383af proxies: switch rdu3 openshift balancers to use direct path instead of vpn 
We need the rdu3 proxies to directly talk to the openshift compute
nodes, as it needs this to work to pull images.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 13:56:27 -07:00
Kevin Fenzi
b7abca9804 proxies: default ocp4_rdu3 to false for now 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-16 12:26:55 -07:00
Kevin Fenzi
5361223938 openvpn: set ccd files for rdu3 worker nodes, add them to the var so proxies will use them, still need to get openvpn working on workers 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-15 16:57:28 -07:00
Kevin Fenzi
fd99080952 openshift / openvpn: setup things to deploy openvpn on rdu3 nodes 
Add the rest of the rdu3 workers in and setup openvpn role to setup on
them.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-15 15:15:31 -07:00
Kevin Fenzi
880e83dd43 proxies / rdu3: fix ca filename 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 14:51:21 -07:00
Kevin Fenzi
dceab488bd proxies: change the nft rules instead of the no longer used iptables 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 14:33:18 -07:00
Kevin Fenzi
e7e6db8d8d proxies: rename ocp4-rdu3 to ocp4_rdu3 to hopefully get jinja2 to leave it alone 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 14:30:00 -07:00
Kevin Fenzi
8fb26137d6 proxies: add a stg var to prevent traceback on undefined var 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 13:24:18 -07:00
Kevin Fenzi
e1132667d3 proxies: add a ocp-rdu3 site/endpoint to get to the new rdu3 prod openshift 
We can't use easily the existing hostname/site, as that goes to the
current iad2 cluster, so setup a -rdu3 version for now.
After we switch we can drop this and repoint the main one to the new
cluster.

Hopefully this all works and does the right thing.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-14 12:35:20 -07:00
Michal Konecny
fe975ec339 [ipa] Prepare the VMs for RDU3 staging 2025-06-14 08:23:02 +02:00
Kevin Fenzi
f2a5e7b6a4 koji: revert riscv channel config partly 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-13 11:30:26 -07:00
Kevin Fenzi
bb08cbd834 ocp virt-installs: try and set eth0 so connectivity works on boot 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-12 15:17:36 -07:00
Kevin Fenzi
b4baaac6fb virt-install: apparently rhel9 is not pickable, so picking rhel9.5 (the latest one it has) 
Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-12 14:57:47 -07:00
Kevin Fenzi
eb3178f55d openshift in prod rdu3: initial cut at setting up control plane 
Added host vars for all the control plane vm's and bootstrap node.
Set latest version for downloading and setting things up.
Setup haproxy in rdu3 prod to load balance the ocp api and internal api.

Signed-off-by: Kevin Fenzi <kevin@scrye.com>
 2025-06-12 14:33:37 -07:00
Jakub Kadlcik
ea8a3d1751 copr-be: upgrade builder images to F42 (bootc) 2025-06-08 14:27:20 +02:00
Jakub Kadlcik
c1f845fe80 copr-be-dev: remove old, commented-out builder images 
Not worth tracking n-0 and n-1 images for the STG instance. In the rare
situation when rolling-back is needed, we have a git history. Also, we cannot
remove the older images from AWS just yet, because they are still referenced by
n-1 comment in the production config. That's why I am leaving the
warning only in production.
 2025-06-08 13:53:53 +02:00
Jakub Kadlcik
f70276591f copr-be-dev: update x86_64 builder images 
The previous ones didn't spawn because of a missing swap for some reason
 2025-06-06 07:32:53 +02:00
Adam Williamson
c58b603416 check-compose: set up subvariant error emails for ELN 
And get rid of the ancient "AtomicHost" one that's doing nobody
any good.

Signed-off-by: Adam Williamson <awilliam@redhat.com>
 2025-06-05 16:38:46 -07:00
Jakub Kadlcik
5018033454 copr-be-dev: fresh set of copr-builder bootc images 2025-06-04 12:26:40 +02:00
Adam Williamson
4c997fbe70 Enable nftables on openQA prod workers 
Signed-off-by: Adam Williamson <awilliam@redhat.com>
 2025-05-30 14:52:42 -07:00
Jakub Kadlcik
cd0fa54b5e copr-be-dev: update aarch64 bootc image 
We found a cross-arch uploading bug
https://github.com/osbuild/image-builder-cli/pull/218
so I had to reupload directly from the builder
 2025-05-27 11:19:09 +02:00
Jakub Kadlcik
8254b70300 copr-be-dev: bootc images for clouds 2025-05-27 00:20:34 +02:00
Jakub Kadlcik
cd5d94ce67 copr-be-dev: bootc images for everything except for AWS 2025-05-23 11:08:20 +02:00
Jakub Kadlcik
8e1dc2c39e copr-be-dev: back to previous builder images, these are broken 2025-05-22 19:27:39 +02:00
Jakub Kadlcik
fdfb14225b copr-be-dev: bootc images for everything except for AWS 2025-05-22 18:16:05 +02:00
Jakub Kadlcik
7cb8ed7d3b copr-be-dev: deploy experimental ppc64le bootc images 2025-05-18 20:24:17 +02:00