diff --git a/docs/openstack/edpm_adoption.md b/docs/openstack/edpm_adoption.md index 1b5a69344..89a7cfac0 100644 --- a/docs/openstack/edpm_adoption.md +++ b/docs/openstack/edpm_adoption.md @@ -104,6 +104,52 @@ EOF EOF ``` +* Generate an ssh key-pair `nova-migration-ssh-key` secret + + ```bash + cd "$(mktemp -d)" + ssh-keygen -f ./id -t ed25519 -N '' + oc create secret generic nova-migration-ssh-key \ + -n openstack \ + --from-file=ssh-privatekey=id \ + --from-file=ssh-publickey=id.pub \ + --type kubernetes.io/ssh-auth + rm -f id* + cd - + +* Create a Nova Compute Extra Config service + ```yaml + oc apply -f - <-compute-config`` is auto-generated for each + ``cell``. That secret, alongside ``nova-migration-ssh-key``, should + always be specified for each custom `OpenStackDataPlaneService` related to Nova. + * Deploy OpenStackDataPlaneNodeSet: ```yaml @@ -125,6 +171,7 @@ EOF - run-os - libvirt - nova + - nova-compute-extraconfig - ovn env: - name: ANSIBLE_CALLBACKS_ENABLED diff --git a/tests/roles/dataplane_adoption/tasks/main.yaml b/tests/roles/dataplane_adoption/tasks/main.yaml index b10ae91af..a5d952ac6 100644 --- a/tests/roles/dataplane_adoption/tasks/main.yaml +++ b/tests/roles/dataplane_adoption/tasks/main.yaml @@ -108,6 +108,53 @@ ssh-privatekey: "{{ edpm_encoded_privatekey | default(edpm_privatekey.content) }}" EOF + +- name: generate an ssh key-pair nova-migration-ssh-key secret + no_log: "{{ use_no_log }}" + ansible.builtin.shell: | + {{ shell_header }} + {{ oc_header }} + cd "$(mktemp -d)" + ssh-keygen -f ./id -t ed25519 -N '' + oc create secret generic nova-migration-ssh-key \ + -n openstack \ + --from-file=ssh-privatekey=id \ + --from-file=ssh-publickey=id.pub \ + --type kubernetes.io/ssh-auth + rm -f id* + cd - + +- name: create a Nova Compute Extra Config service + no_log: "{{ use_no_log }}" + ansible.builtin.shell: | + {{ shell_header }} + {{ oc_header }} + oc apply -f - <