3d747b7200
This patch is removing chrony package from docker host when containerized chrony is enabled. It is also fixing issue with chrony container running under Ubuntu docker host as noted below. + exec /usr/sbin/chronyd -d -f /etc/chrony/chrony.conf 2020-06-08T08:19:09Z chronyd version 3.4 starting (+CMDMON +NTP +REFCLOCK +RTC +PRIVDROP +SCFILTER +SIGND +ASYNCDNS +SECHASH +IPV6 -DEBUG) 2020-06-08T08:19:09Z Fatal error : Could not open configuration file /etc/chrony/chrony.conf : Permission denied Added also removal apparmor profile for ubuntu when containerized chrony is enabled, as chrony's package is not removing apparmor profile, and therefore containerized chrony is not working. Change-Id: Icf3bbae38b9f5630b69d5c8cf6a8bee11786a836 Closes-Bug: #1882513
79 lines
2.2 KiB
YAML
79 lines
2.2 KiB
YAML
---
|
|
# Whether to enable a package repository for Docker.
|
|
enable_docker_repo: true
|
|
|
|
# Docker APT repository configuration.
|
|
docker_apt_url: "https://download.docker.com/linux/{{ ansible_distribution | lower }}"
|
|
docker_apt_repo: "deb {{ docker_apt_url }} {{ ansible_lsb.codename }} stable"
|
|
docker_apt_key_file: "gpg"
|
|
docker_apt_key_id: "0EBFCD88"
|
|
docker_apt_package: "docker-ce"
|
|
|
|
# Docker Yum repository configuration.
|
|
docker_yum_url: "https://download.docker.com/linux/{{ ansible_distribution | lower }}"
|
|
# FIXME(mgoddard): $releasever rather than 7.
|
|
docker_yum_baseurl: "{{ docker_yum_url }}/7/$basearch/stable"
|
|
docker_yum_gpgkey: "{{ docker_yum_url }}/gpg"
|
|
docker_yum_gpgcheck: true
|
|
docker_yum_package: "docker-ce"
|
|
|
|
customize_etc_hosts: True
|
|
|
|
create_kolla_user: True
|
|
create_kolla_user_sudoers: "{{ create_kolla_user }}"
|
|
|
|
kolla_user: "kolla"
|
|
kolla_group: "kolla"
|
|
|
|
enable_host_ntp: False
|
|
|
|
change_selinux: True
|
|
|
|
selinux_state: "permissive"
|
|
|
|
docker_storage_driver: ""
|
|
docker_custom_option: ""
|
|
docker_custom_config: {}
|
|
|
|
# Version of python used to execute Ansible modules.
|
|
host_python_version: "{{ ansible_python.version.major }}.{{ ansible_python.version.minor }}"
|
|
|
|
debian_pkg_install:
|
|
- "{{ docker_apt_package }}"
|
|
- git
|
|
- "python3-setuptools"
|
|
- "python3-pip"
|
|
- "{% if virtualenv is not none %}python3-virtualenv{% endif %}"
|
|
- "{% if enable_host_ntp | bool %}ntp{% endif %}"
|
|
- "{% if enable_multipathd|bool %}sg3-utils-udev{% endif %}"
|
|
|
|
redhat_pkg_install:
|
|
- "{{ docker_yum_package }}"
|
|
- git
|
|
- "python3-pip"
|
|
- "{% if virtualenv is not none %}python3-virtualenv{% endif %}"
|
|
- "{% if enable_host_ntp | bool %}ntp{% endif %}"
|
|
- sudo
|
|
|
|
ubuntu_pkg_removals:
|
|
- lxd
|
|
- lxc
|
|
- libvirt-bin
|
|
- open-iscsi
|
|
- "{% if enable_chrony | bool %}chrony{% endif %}"
|
|
|
|
redhat_pkg_removals:
|
|
- libvirt
|
|
- libvirt-daemon
|
|
- iscsi-initiator-utils
|
|
- "{% if enable_chrony | bool %}chrony{% endif %}"
|
|
|
|
# Path to a virtualenv in which to install python packages. If None, a
|
|
# virtualenv will not be used.
|
|
virtualenv:
|
|
|
|
# Whether the virtualenv will inherit packages from the global site-packages
|
|
# directory. This is typically required for modules such as yum and apt which
|
|
# are not available on PyPI.
|
|
virtualenv_site_packages: True
|