apiVersion: v1 data: authorized_keys: ZWNkc2Etc2hhMi1uaXN0cDUyMSBBQUFBRTJWalpITmhMWE5vWVRJdGJtbHpkSEExTWpFQUFBQUlibWx6ZEhBMU1qRUFBQUNGQkFEL1B4R09aUzdxdk1LZmNGR25TemdNKzYwaGZUMSt3WWIvYXpDKy9yeC9WUXpMSkhWdFViRDlHRkU1WS9aZ2lFTHlMbWFObzZHdEFXbWttNUsyaEVmVkF3R0cvZWgyRGt2RWcvMkZ3QnJKMmoweTlLcDR6ZTFyNmxUZ2ZhYXFhU3d4WlQ4TWovOEpOOWZQSGdrdUZaVGlWVE5wTmFOL1h4NUdLdXlveGpETSt6UUxSUT09IEVEUE0gZGVwbG95IGtleQo= ssh-privatekey: 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 ssh-publickey: ZWNkc2Etc2hhMi1uaXN0cDUyMSBBQUFBRTJWalpITmhMWE5vWVRJdGJtbHpkSEExTWpFQUFBQUlibWx6ZEhBMU1qRUFBQUNGQkFEL1B4R09aUzdxdk1LZmNGR25TemdNKzYwaGZUMSt3WWIvYXpDKy9yeC9WUXpMSkhWdFViRDlHRkU1WS9aZ2lFTHlMbWFObzZHdEFXbWttNUsyaEVmVkF3R0cvZWgyRGt2RWcvMkZ3QnJKMmoweTlLcDR6ZTFyNmxUZ2ZhYXFhU3d4WlQ4TWovOEpOOWZQSGdrdUZaVGlWVE5wTmFOL1h4NUdLdXlveGpETSt6UUxSUT09IEVEUE0gZGVwbG95IGtleQo= kind: Secret metadata: name: dataplane-ansible-ssh-private-key-secret namespace: openstack type: Opaque --- apiVersion: v1 data: LibvirtPassword: MTIzNDU2Nzg= kind: Secret metadata: name: libvirt-secret namespace: openstack type: Opaque --- apiVersion: v1 data: ssh-privatekey: LS0tLS1CRUdJTiBPUEVOU1NIIFBSSVZBVEUgS0VZLS0tLS0KYjNCbGJuTnphQzFyWlhrdGRqRUFBQUFBQkc1dmJtVUFBQUFFYm05dVpRQUFBQUFBQUFBQkFBQUFyQUFBQUJObFkyUnpZUwoxemFHRXlMVzVwYzNSd05USXhBQUFBQ0c1cGMzUndOVEl4QUFBQWhRUUE3OEpqTEdEV2lKWFhwYURhbW1nYzFQNjJPK1JrCk5OM21iRDV2UW8wVFFjZWxsck10ZU12bzBQcGFseURyRGR6b3I1NXZ3bjFWZTE5azVqc25yOG9reEFRQjRianNjSW1xT24KWW1zMzI2SExjaWdiWnc5NEJRZlZzZ1N5NzZaM2R5VVUvYktzdkVwOHlNbkc5T0RRdmtlQ1E5T05UejVlQmhOQkNlTWtVNAoydm1GcWY4QUFBRVFjRUUvK25CQlAvb0FBQUFUWldOa2MyRXRjMmhoTWkxdWFYTjBjRFV5TVFBQUFBaHVhWE4wY0RVeU1RCkFBQUlVRUFPL0NZeXhnMW9pVjE2V2cycHBvSE5UK3RqdmtaRFRkNW13K2IwS05FMEhIcFphekxYakw2TkQ2V3BjZzZ3M2MKNksrZWI4SjlWWHRmWk9ZN0o2L0tKTVFFQWVHNDdIQ0pxanAySnJOOXVoeTNJb0cyY1BlQVVIMWJJRXN1K21kM2NsRlAyeQpyTHhLZk1qSnh2VGcwTDVIZ2tQVGpVOCtYZ1lUUVFuakpGT05yNWhhbi9BQUFBUWdGOWV6Mkl3Y1pxU09zcndFb3EybThMCjEzR1Roc0JUa0J6TWtkaXhJR3I2SEtLc3Z1NWJGNmhaZDJoTWV1Uzk2cjZrZGRRVTlSR3ptK2VRdy9LblFCaWVvd0FBQUEKNU9iM1poSUcxcFozSmhkR2x2YmdFQ0F3UT0KLS0tLS1FTkQgT1BFTlNTSCBQUklWQVRFIEtFWS0tLS0tCg== ssh-publickey: ZWNkc2Etc2hhMi1uaXN0cDUyMSBBQUFBRTJWalpITmhMWE5vWVRJdGJtbHpkSEExTWpFQUFBQUlibWx6ZEhBMU1qRUFBQUNGQkFEdndtTXNZTmFJbGRlbG9OcWFhQnpVL3JZNzVHUTAzZVpzUG05Q2pSTkJ4NldXc3kxNHkralErbHFYSU9zTjNPaXZubS9DZlZWN1gyVG1PeWV2eWlURUJBSGh1T3h3aWFvNmRpYXpmYm9jdHlLQnRuRDNnRkI5V3lCTEx2cG5kM0pSVDlzcXk4U256SXljYjA0TkMrUjRKRDA0MVBQbDRHRTBFSjR5UlRqYStZV3Avdz09IE5vdmEgbWlncmF0aW9uCg== kind: Secret metadata: name: nova-migration-ssh-key namespace: openstack type: kubernetes.io/ssh-auth --- apiVersion: dataplane.openstack.org/v1beta1 kind: OpenStackDataPlaneNodeSet metadata: name: openstack-edpm namespace: openstack spec: env: - name: ANSIBLE_FORCE_COLOR value: "True" networkAttachments: - ctlplane nodeTemplate: ansible: ansiblePort: 22 ansibleUser: zuul ansibleVars: edpm_ceph_hci_pre_enabled_services: - ceph_mon - ceph_mgr - ceph_osd - ceph_rgw - ceph_nfs - ceph_rgw_frontend - ceph_nfs_frontend edpm_fips_mode: check edpm_network_config_hide_sensitive_logs: false edpm_network_config_os_net_config_mappings: edpm-compute-0: nic2: "52:54:00:17:05:43" edpm-compute-1: nic2: "52:54:00:17:05:44" edpm-compute-2: nic2: "52:54:00:17:05:46" edpm_network_config_template: | --- {% set mtu_list = [ctlplane_mtu] %} {% for network in nodeset_networks %} {% set _ = mtu_list.append(lookup('vars', networks_lower[network] ~ '_mtu')) %} {%- endfor %} {% set min_viable_mtu = mtu_list | max %} network_config: - type: interface name: nic1 use_dhcp: true mtu: {{ min_viable_mtu }} - type: ovs_bridge name: {{ neutron_physical_bridge_name }} mtu: {{ min_viable_mtu }} use_dhcp: false dns_servers: {{ ctlplane_dns_nameservers }} domain: {{ dns_search_domains }} addresses: - ip_netmask: {{ ctlplane_ip }}/{{ ctlplane_cidr }} routes: {{ ctlplane_host_routes }} members: - type: interface name: nic2 mtu: {{ min_viable_mtu }} # force the MAC address of the bridge to this interface primary: true {% for network in nodeset_networks %} - type: vlan mtu: {{ lookup('vars', networks_lower[network] ~ '_mtu') }} vlan_id: {{ lookup('vars', networks_lower[network] ~ '_vlan_id') }} addresses: - ip_netmask: {{ lookup('vars', networks_lower[network] ~ '_ip') }}/{{ lookup('vars', networks_lower[network] ~ '_cidr') }} routes: {{ lookup('vars', networks_lower[network] ~ '_host_routes') }} {% endfor %} edpm_nodes_validation_validate_controllers_icmp: false edpm_nodes_validation_validate_gateway_icmp: false edpm_sshd_allowed_ranges: - 192.168.122.0/24 edpm_sshd_configure_firewall: true gather_facts: false neutron_physical_bridge_name: br-ex neutron_public_interface_name: eth0 storage_mgmt_cidr: "24" storage_mgmt_host_routes: [] storage_mgmt_mtu: 9000 storage_mgmt_vlan_id: 23 storage_mtu: 9000 timesync_ntp_servers: - hostname: pool.ntp.org ansibleSSHPrivateKeySecret: dataplane-ansible-ssh-private-key-secret managementNetwork: ctlplane networks: - defaultRoute: true name: ctlplane subnetName: subnet1 - name: internalapi subnetName: subnet1 - name: storage subnetName: subnet1 - name: tenant subnetName: subnet1 nodes: edpm-compute-0: ansible: ansibleHost: 192.168.122.100 hostName: compute-0 networks: - defaultRoute: true fixedIP: 192.168.122.100 name: ctlplane subnetName: subnet1 - fixedIP: 172.17.0.100 name: internalapi subnetName: subnet1 - fixedIP: 172.18.0.100 name: storage subnetName: subnet1 - fixedIP: 172.19.0.100 name: tenant subnetName: subnet1 edpm-compute-1: ansible: ansibleHost: 192.168.122.101 hostName: compute-1 networks: - defaultRoute: true fixedIP: 192.168.122.101 name: ctlplane subnetName: subnet1 - fixedIP: 172.17.0.101 name: internalapi subnetName: subnet1 - fixedIP: 172.18.0.101 name: storage subnetName: subnet1 - fixedIP: 172.19.0.101 name: tenant subnetName: subnet1 edpm-compute-2: ansible: ansibleHost: 192.168.122.102 hostName: compute-2 networks: - defaultRoute: true fixedIP: 192.168.122.102 name: ctlplane subnetName: subnet1 - fixedIP: 172.17.0.102 name: internalapi subnetName: subnet1 - fixedIP: 172.18.0.102 name: storage subnetName: subnet1 - fixedIP: 172.19.0.102 name: tenant subnetName: subnet1 preProvisioned: true services: - bootstrap - configure-network - validate-network - install-os - ceph-hci-pre - configure-os - ssh-known-hosts - run-os - reboot-os - install-certs - ceph-client - ovn - neutron-metadata - libvirt