stackhpc · markgoddard · Dec 7, 2022 · Dec 1, 2022
@@ -0,0 +1,296 @@
+================
+Cephadm & Kayobe
+================
+
+This section describes how to use the Cephadm integration included in StackHPC
+Kayobe configuration since Xena to deploy Ceph.
+
+The Cephadm integration takes the form of custom playbooks that wrap
+around the Ansible `stackhpc.cephadm collection
+<https://galaxy.ansible.com/stackhpc/cephadm>`_ and provide a means to
+create or modify Ceph cluster deployments. Supported features are:
+
+-  creating a new cluster from scratch (RedHat/Debian family distros
+   supported)
+-  creating pools, users, CRUSH rules and EC profiles
+-  modifying the OSD spec after initial deployment
+-  destroying the cluster
+
+Resources
+=========
+
+-  https://docs.ceph.com/en/pacific/cephadm/index.html
+-  https://docs.ceph.com/en/pacific/
+-  https://github.com/stackhpc/ansible-collection-cephadm
+
+Configuration
+=============
+
+Inventory
+---------
+
+The collection assumes a set of group entries in Ansible’s inventory.
+The following groups are defined in the Kayobe base configuration
+inventory ``groups`` file:
+
+-  ``ceph`` (parent for all Ceph nodes)
+-  ``mons``
+-  ``mgrs``
+-  ``osds``
+-  ``rgws`` (optional)
+
+Ceph hosts should be added to these groups as appropriate. Typically at
+least the ``mons``, ``mgrs``, and ``osds`` groups should be populated.
+
+Example: Separate monitors
+~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+For a system with separate monitor hosts, the following could be added
+to ``etc/kayobe/environments/<env>/inventory/groups``, to define two
+top-level Ceph host groups:
+
+.. code:: ini
+
+   [ceph-mons]
+   [ceph-osds]
+
+   [mons:children]
+   ceph-mons
+
+   [mgrs:children]
+   ceph-mons
+
+   [osds:children]
+   ceph-osds
+
+Then, populate the ``ceph-mons`` and ``ceph-osds`` groups with the
+necessary hosts, e.g. in
+``etc/kayobe/environments/<env>/inventory/hosts``.
+
+Example: Colocated monitors
+~~~~~~~~~~~~~~~~~~~~~~~~~~~
+
+For a system with only colocated monitor and OSD hosts, the following
+might be appropriate:
+
+NOTE: we are using ``storage`` rather than ``ceph``, since ``ceph``
+is already required by the cephadm collection, and redefining it would
+introduce a circular dependency between groups.
+
+.. code:: ini
+
+   [storage]
+
+   [mons:children]
+   storage
+
+   [mgrs:children]
+   storage
+
+   [osds:children]
+   storage
+
+Then populate the ``storage`` group with the necessary hosts,
+e.g. in ``etc/kayobe/environments/<env>/inventory/hosts``.
+
+Ceph deployment configuration
+-----------------------------
+
+Default variables for configuring Ceph are provided in
+``etc/kayobe/cephadm.yml``. Many of these defaults will be sufficient,
+but you will likely need to set ``cephadm_osd_spec`` to define the OSD
+specification.
+
+OSD specification
+~~~~~~~~~~~~~~~~~
+
+The following example is a basic OSD spec that adds OSDs for all
+available disks:
+
+.. code:: yaml
+
+   cephadm_osd_spec:
+     service_type: osd
+     service_id: osd_spec_default
+     placement:
+       host_pattern: "*"
+     data_devices:
+       all: true
+
+More information about OSD service placement is available
+`here <https://docs.ceph.com/en/pacific/cephadm/services/osd/#advanced-osd-service-specifications>`__.
+
+Container image
+~~~~~~~~~~~~~~~
+
+The container image to be deployed by Cephadm is defined by
+``cephadm_image``, and the tag by ``cephadm_image_tag``. The StackHPC
+Kayobe configuration provides defaults for both of these.
+
+Firewalld
+~~~~~~~~~
+
+If the Ceph storage hosts are running firewalld, it may be helpful to
+set ``cephadm_enable_firewalld`` to ``true`` to enable configuration of
+firewall rules for Ceph services.
+
+Ceph post-deployment configuration
+----------------------------------
+
+The ``stackhpc.cephadm`` collection also provides roles for
+post-deployment configuration of pools, users, CRUSH rules and EC
+profiles.
+
+EC profiles
+~~~~~~~~~~~
+
+An Erasure Coding (EC) profile is required in order to use Erasure Coded
+storage pools. Example EC profile:
+
+.. code:: yaml
+
+   # List of Ceph erasure coding profiles. See stackhpc.cephadm.ec_profiles role
+   # for format.
+   cephadm_ec_profiles:
+     - name: ec_4_2_hdd
+       k: 4
+       m: 2
+       crush_device_class: hdd
+
+CRUSH rules
+~~~~~~~~~~~
+
+CRUSH rules may not be required in a simple setup with a homogeneous
+pool of storage. They are useful when there are different tiers of
+storage. The following example CRUSH rules define separate tiers for
+Hard Disk Drives (HDDs) and Solid State Drives (SSDs).
+
+.. code:: yaml
+
+   # List of Ceph CRUSH rules. See stackhpc.cephadm.crush_rules role for format.
+   cephadm_crush_rules:
+     - name: replicated_hdd
+       bucket_root: default
+       bucket_type: host
+       device_class: hdd
+       rule_type: replicated
+       state: present
+     - name: replicated_ssd
+       bucket_root: default
+       bucket_type: host
+       device_class: ssd
+       rule_type: replicated
+       state: present
+
+Pools
+~~~~~
+
+The following example pools should be sufficient to work with the
+default `external Ceph
+configuration <https://docs.openstack.org/kolla-ansible/latest/reference/storage/external-ceph-guide.html>`__
+for Cinder, Cinder backup, Glance, and Nova in Kolla Ansible.
+
+.. code:: yaml
+
+   # List of Ceph pools. See stackhpc.cephadm.pools role for format.
+   cephadm_pools:
+     - name: backups
+       application: rbd
+       state: present
+     - name: images
+       application: rbd
+       state: present
+     - name: volumes
+       application: rbd
+       state: present
+     - name: vms
+       application: rbd
+       state: present
+
+If a pool needs to use a particular CRUSH rule, this can be defined via
+``rule_name: <rule>``.
+
+Keys
+~~~~
+
+The following example keys should be sufficient to work with the default
+`external Ceph
+configuration <https://docs.openstack.org/kolla-ansible/latest/reference/storage/external-ceph-guide.html>`__
+for Cinder, Cinder backup, Glance, and Nova in Kolla Ansible.
+
+.. code:: yaml
+
+   # List of Cephx keys. See stackhpc.cephadm.keys role for format.
+   cephadm_keys:
+     - name: client.cinder
+       caps:
+         mon: "profile rbd"
+         osd: "profile rbd pool=volumes, profile rbd pool=vms, profile rbd-read-only pool=images"
+         mgr: "profile rbd pool=volumes, profile rbd pool=vms"
+     - name: client.cinder-backup
+       caps:
+         mon: "profile rbd"
+         osd: "profile rbd pool=volumes, profile rbd pool=backups"
+         mgr: "profile rbd pool=volumes, profile rbd pool=backups"
+     - name: client.glance
+       caps:
+         mon: "profile rbd"
+         osd: "profile rbd pool=images"
+         mgr: "profile rbd pool=images"
+       state: present
+
+Deployment
+==========
+
+Host configuration
+------------------
+
+Configure the Ceph hosts:
+
+.. code:: bash
+
+   kayobe overcloud host configure --limit storage --kolla-limit storage
+
+Ceph deployment
+---------------
+
+..
+  **FIXME**: Wait for Ceph to come up, so that we can just run cephadm.yml
+
+Deploy the Ceph services:
+
+.. code:: bash
+
+   kayobe playbook run $KAYOBE_CONFIG_PATH/ansible/cephadm-deploy.yml
+
+You can check the status of Ceph via Cephadm on the storage nodes:
+
+.. code:: bash
+
+   sudo cephadm shell -- ceph -s
+
+Once the Ceph cluster has finished initialising, run the full
+cephadm.yml playbook to perform post-deployment configuration:
+
+.. code:: bash
+
+   kayobe playbook run $KAYOBE_CONFIG_PATH/ansible/cephadm.yml
+
+The ``cephadm.yml`` playbook imports various other playbooks, which may
+also be run individually to perform specific tasks.
+
+Configuration generation
+------------------------
+
+Generate keys and configuration for Kolla Ansible:
+
+.. code:: bash
+
+   kayobe playbook run $KAYOBE_CONFIG_PATH/ansible/cephadm-gather-keys.yml
+
+This will generate Ceph keys and configuration under
+``etc/kayobe/environments/<env>/kolla/config/``, which should be
+committed to the configuration.
+
+This configuration will be used during
+``kayobe overcloud service deploy``.
@@ -9,4 +9,5 @@ the various features provided.
    :maxdepth: 1
 
    release-train
+   cephadm
    monitoring