Skc baremetal environment by claudia-lola · Pull Request #2023 · stackhpc/stackhpc-kayobe-config

claudia-lola · 2025-12-03T15:47:30Z

No description provided.

claudia-lola · 2025-12-08T10:47:13Z

+
+    - name: Undeploy baremetals in 'deploy failed' or 'error' state
+      ansible.builtin.command:
+        cmd: "{{ venv }}/bin/openstack baremetal node undeploy {{ inventory_hostname }}"


JohnG "Maybe lets move this into ./baremetal-4-clean.yml, at least for deploy failed."

jovial · 2026-02-19T15:54:19Z

+          - python3-devel
+        state: present
+
+    - name: Start and enable the QEMU service


We do actually have a role than configures a host for libvirt: https://github.com/stackhpc/ansible-role-libvirt-host. Ideally we'd use that, but is there a reason not to?

Possibly enable compute_libvirt_enabled?

Config is here https://github.com/stackhpc/stackhpc-kayobe-config/blob/stackhpc/2025.1/etc/kayobe/compute.yml

Maybe do kolla_enable_nova: true and kolla_enable_nova_libvirt_container: false in kolla.yml?

jovial · 2026-02-19T15:55:30Z

Still think these templates should be factor out in a sushy role:

roles/sushy/templates/sushy.conf.j2
...

I guess it would make sense to handle the tasks for sushy and skc-baremetal in roles though perhaps that's gonna delay this merge? Maybe a refactor for later?

…hpc-kayobe-config into skc-baremetal-environment

stackhpc-zuul · 2026-03-03T16:12:08Z

Build failed.
https://zuul.stackhpc.com/t/stackhpc/buildset/5b11ad8f45754ae994970939c90d8eb6

❌ openstack-tox-pep8 FAILURE in 2m 10s

Warning:
Failed to update check run stackhpc/check: 502 Server Error: Bad Gateway for url: https://api.github.com/repos/stackhpc/stackhpc-kayobe-config/check-runs/65583502413

assumptionsandg · 2026-03-18T15:46:54Z

+ironic_redfish_password: ""
+ironic_redfish_verify_ca: false
+
+ironic_resource_class: "example_resource_class"


Maybe everything from line 12 onwards should be in 'baremetal' group_vars rather than 'baremetal-redfish'?

assumptionsandg · 2026-03-18T15:47:21Z

+ironic_provision_image: "{{  stackhpc_overcloud_host_image_version   }}"
+ironic_provision_key_name: "stack"
+#new variables for baremetal-0
+ironic_boot_interface: "redfish-virtual-media"


Except from these 3 lines

Need to reconsider this now we need to support iPXE

Alex-Welsh · 2026-05-22T15:26:04Z

@claudia-lola @assumptionsandg could you outline the next steps for this change? It's a massive PR at the moment and I think it would make sense to break it down into some smaller steps.

…tal-environment

assumptionsandg · 2026-06-04T12:00:15Z

@claudia-lola @assumptionsandg could you outline the next steps for this change? It's a massive PR at the moment and I think it would make sense to break it down into some smaller steps.

We're dropping the Sushy environment for now... and will consider merging that later since it's a bit out-of-scope for this PR.

I've rebased this on Jack's work and have started the initial work needed to merge the two. We still have some outstanding complications... such as ensuring the 'redfish' groups work with all possible boot interfaces and resolving documentation conflicts.

I propose limiting our new scripts to running specifically on the 'redfish' groups since they have only been tested in this configuration and have BMC checks which specifically use the Redfish API. In addition to this... I will ensure the release note for this change mentions that existing users of this mixin will need to make sure nodes currently under 'baremetal-redfish' will need to be moved to 'baremetal-compute-redfish' due to overcloud baremetal support being merged in this change.

jackhodgkiss · 2026-06-04T12:06:53Z

What is wrong with kayobe baremetal compute register?

'kayobe baremetal compute register' is limited to only baremetal compute nodes... rather than including the overcloud. It's probably wise to keep a distinction between the two... while supporting both.

In addition to that... it's missing fields we need to configure interfaces individually on baremetal nodes compared to just relying on global Ironic configuration which hasn't been ideal at 6G... for instance when needing to set RAID interfaces etc.

dougszumski

Thanks @assumptionsandg for trimming this back
I think it largely looks good

dougszumski · 2026-06-04T12:26:38Z

+---
+
+- name: Register baremetal compute nodes


nit: Change to "Install OpenStack client"

dougszumski · 2026-06-04T12:32:21Z

+              {% endfor %}
+              --resource-class {{ ironic_resource_class }} \
+              {% if ironic_boot_interface %}
+              --boot-interface {{ ironic_boot_interface }} \


Please could we support --deploy-interface? We are going to need to start setting it to autodetect at some point for diskless. We can continue to set it to direct by default

dougszumski · 2026-06-04T12:34:39Z

+              {% for key, value in ironic_properties.items() %}
+              --property {{ key }}={{ value }} \
+              {% endfor %}
+              --resource-class {{ ironic_resource_class }} \


At this point - please can we use {{ ironic_resource_class }}_enroll for the resource class, and then change it back at the end. This is to make it clear that the node is not ready for scheduling.

dougszumski · 2026-06-04T12:36:45Z

+    controller_host: "{{ groups['controllers'][0] }}"
+
+  tasks:
+    - name: Check Ironic variables are defined


nit:L This check task could be split out into a separate playbook and included here and in other playbooks via an include task to avoid repeating it.

dougszumski · 2026-06-04T12:39:37Z

+            url: "{{ ironic_redfish_address + '/redfish/v1' }}"
+            method: GET
+            status_code: 200
+            validate_certs: false


validate_certs should be {{ redfish_verify_ca | bool }} given we define it above?

dougszumski · 2026-06-04T13:31:33Z

+
+Baremetal nodes are defined in the inventory located ``stackhpc-baremetal/inventory/hosts`` file.
+This inventory can be hand-written or generated (e.g. from a Python script).
+Each node must have the required Ironic and Redfish variables.


We now need to consider the various other hardware types - even if we simply tell people not to use the groups - they are there for legacy reasons.

dougszumski · 2026-06-04T13:32:21Z

+    dependencies:
+      - ci-aio
+
+Activate the environment using ``source kayobe-config/kayobe-env --environment stackhpc-baremetal``


s/stackhpc-baremetal/baremetal

dougszumski · 2026-06-04T13:32:29Z

+Run the full baremetal workflow using::
+
+  kayobe playbook run \
+    etc/kayobe/environments/stackhpc-baremetal/ansible/baremetal-all.yml


dougszumski · 2026-06-04T13:33:53Z

  - stackhpc_radosgw_usage_exporter_frontend_port
  - stackhpc_radosgw_usage_exporter_backend_port
+  - internal_net_name
+  - "{{ internal_net_name }}_ips"


I think we need- "{{ oob_oc_net_name }}_ips" here too

dougszumski · 2026-06-04T13:34:18Z

  - gpu_group_map
  - stackhpc_radosgw_usage_exporter_frontend_port
  - stackhpc_radosgw_usage_exporter_backend_port
+  - internal_net_name


where is internal_net_name used?

dougszumski · 2026-06-04T13:42:09Z

+
+[baremetal-overcloud-idrac]
+[baremetal-overcloud-ipmi]
+[baremetal-overcloud-redfish]


should we create baremetal-overcloud-redfish-vmedia] and `baremetal-overcloud-redfish-ipxe] groups to support both mechanisms?

dougszumski · 2026-06-04T13:42:54Z

 # Default is 60 seconds
 heartbeat_timeout = 360
 sync_local_state_interval = 360
+# Neccesary for virtual media boot


This comes via Kolla now, which is neat

dougszumski · 2026-06-04T16:29:40Z

+            - node_show.rc != 0
+          changed_when: false
+
+        # NOTE: The openstack.cloud.baremetal_node module cannot be used in this


We shifted chunks of this into the Kayobe node commands:

https://github.com/openstack/kayobe/blob/master/ansible/baremetal-compute-register.yml#L52

I think we should switch over to using those and extend wherever needed.

We can use groups to make a distinction between hypervisors and user facing Ironic nodes.

The end goal should be that this all lives in the Kayobe upstream code base, and we can test it there.

github-actions · 2026-06-05T14:07:55Z

Happy Friday @claudia-lola, this is a friendly reminder that this PR is waiting for your changes or response. Please take a look when you have a moment!

Note: Once your changes are ready, remove the waiting-author-response label and add the waiting-review label.

jovial · 2026-06-11T15:42:14Z

@@ -1,2 +1,4 @@
 ---
 kolla_enable_ironic: true
+kolla_enable_ironic_dnsmasq: false # NOTE(hollie): need to double check this since it could break iPXE.


This is a little controversial in 2025.1 as people could be using inspection rules, but is the default in 2026.1 with kolla_inspector_enable_discovery: false.

If no one is using the environment, then it doesn't matter. Perhaps we could do a company survery.

claudia-lola closed this Dec 3, 2025

claudia-lola temporarily deployed to SMS Lab December 3, 2025 15:54 — with GitHub Actions Inactive

claudia-lola temporarily deployed to Leafcloud December 3, 2025 15:54 — with GitHub Actions Inactive

claudia-lola temporarily deployed to SMS Lab December 3, 2025 15:54 — with GitHub Actions Inactive

claudia-lola temporarily deployed to Leafcloud December 3, 2025 15:54 — with GitHub Actions Inactive

claudia-lola temporarily deployed to SMS Lab December 3, 2025 15:54 — with GitHub Actions Inactive

claudia-lola temporarily deployed to Leafcloud December 3, 2025 15:54 — with GitHub Actions Inactive

claudia-lola had a problem deploying to SMS Lab December 3, 2025 15:54 — with GitHub Actions Failure

claudia-lola had a problem deploying to Leafcloud December 3, 2025 15:54 — with GitHub Actions Failure

claudia-lola had a problem deploying to SMS Lab December 3, 2025 15:54 — with GitHub Actions Failure

claudia-lola had a problem deploying to Leafcloud December 3, 2025 15:54 — with GitHub Actions Failure

claudia-lola reopened this Dec 8, 2025