OpenStack Zed : Trove 設定 (Network ノード)2023/06/30

OpenStack Database Service（Trove）をインストールします。

当例では以下のような環境を例に Trove をインストールします。
Network ノードに Trove サービス一式をインストールします。

------------+--------------------------+--------------------------+------------
            |                          |                          |
        eth0|10.0.0.30             eth0|10.0.0.50             eth0|10.0.0.51
+-----------+-----------+  +-----------+-----------+  +-----------+-----------+
|   [ dlp.srv.world ]   |  | [ network.srv.world ] |  |  [ node01.srv.world ] |
|     (Control Node)    |  |     (Network Node)    |  |     (Compute Node)    |
|                       |  |                       |  |                       |
|  MariaDB    RabbitMQ  |  |  Neutron L2/L3 Agent  |  |        Libvirt        |
|  Memcached  Nginx     |  |   Neutron Metadata    |  |      Nova Compute     |
|  Keystone   httpd     |  |     Open vSwitch      |  |    Neutron L2 Agent   |
|  Glance     Nova API  |  |     iSCSI Target      |  |      Open vSwitch     |
|  Neutron Server       |  |     Cinder Volume     |  |                       |
|  Neutron Metadata     |  |     Trove Services    |  |                       |
|  Cinder API           |  |         Nginx         |  |                       |
+-----------------------+  +-----------------------+  +-----------------------+

[1]	Network ノードで Trove サービスをインストールします。インストール中の問いには全て [No] で OK です。

root@network:~#

apt -y install trove-api trove-conductor trove-taskmanager python3-troveclient nginx libnginx-mod-stream

[2]	Trove の設定です。

root@network:~#

mv /etc/trove/trove.conf /etc/trove/trove.conf.org

root@network:~#

vi /etc/trove/trove.conf

# 新規作成

[DEFAULT]
bind_host = 127.0.0.1
bind_port = 8779
log_dir = /var/log/trove
# RabbitMQ 接続情報
transport_url = rabbit://openstack:password@dlp.srv.world
control_exchange = trove
default_datastore = mysql
cinder_volume_type = lvm-trove
cloudinit_location = /etc/trove/cloudinit

# MariaDB 接続情報
[database]
connection = mysql+pymysql://trove:password@dlp.srv.world/trove

[mariadb]
tcp_ports = 3306,4444,4567,4568

[mysql]
tcp_ports = 3306

[postgresql]
tcp_ports = 5432

[redis]
tcp_ports = 6379,16379

# Keystone 認証情報
[keystone_authtoken]
www_authenticate_uri = https://dlp.srv.world:5000
auth_url = https://dlp.srv.world:5000
memcached_servers = dlp.srv.world:11211
auth_type = password
project_domain_name = default
user_domain_name = default
project_name = service
username = trove
password = servicepassword

[service_credentials]
auth_url = https://dlp.srv.world:5000
region_name = RegionOne
project_domain_name = default
user_domain_name = default
project_name = service
username = trove
password = servicepassword

root@network:~#

vi /etc/trove/trove-guestagent.conf

# 新規作成

[DEFAULT]
log_dir = /var/log/trove
log_file = trove-guestagent.log
ignore_users = os_admin
control_exchange = trove
transport_url = rabbit://openstack:password@dlp.srv.world
use_syslog = False

[service_credentials]
auth_url = https://dlp.srv.world:5000
region_name = RegionOne
project_domain_name = default
user_domain_name = default
project_name = service
username = trove
password = servicepassword

root@network:~#

chmod 640 /etc/trove/{trove.conf,trove-guestagent.conf}

root@network:~#

chgrp trove /etc/trove/{trove.conf,trove-guestagent.conf}

root@network:~#

sed -i -e "s/inspect.getargspec/inspect.getfullargspec/" /usr/lib/python3/dist-packages/trove/cmd/manage.py

[3]	ネットワークノード用の SSL/TLS 証明書を取得または自己署名の証明書を作成して、Nginx にプロキシの設定をします。

root@network:~#

unlink /etc/nginx/sites-enabled/default

root@network:~#

vi /etc/nginx/nginx.conf

# 最終行に追記

stream {
    upstream trove-api {
        server 127.0.0.1:8779;
    }
    server {
        listen 10.0.0.50:8779 ssl;
        proxy_pass trove-api;
    }
    ssl_certificate "/etc/letsencrypt/live/network.srv.world/fullchain.pem";
    ssl_certificate_key "/etc/letsencrypt/live/network.srv.world/privkey.pem";
}

[4]	データベースにデータを追加して Trove サービスを起動します。

root@network:~#

su -s /bin/bash trove -c "trove-manage db_sync"

root@network:~#

systemctl restart trove-api trove-taskmanager trove-conductor nginx

root@network:~#

systemctl enable trove-api trove-taskmanager trove-conductor

[5]	Control ノードでステータスを確認します。エラーが表示されなければ OK です。

root@dlp ~(keystone)#

apt -y install python3-troveclient

root@dlp ~(keystone)#

trove list

+----+------+-----------+-------------------+--------+-----------+------+--------+
| ID | Name | Datastore | Datastore Version | Status | Flavor ID | Size | Region |
+----+------+-----------+-------------------+--------+-----------+------+--------+
+----+------+-----------+-------------------+--------+-----------+------+--------+