Gitiles
Code Review Sign In
review.vexxhost.dev / atmosphere / refs/heads/stable/zed / . / charts / ceph-provisioners / values.yaml
blob: f8d33810c03cb8dbfb353da339f26cfee7d990f2 [file] [log] [blame]
Mohammed Naserf3f59a72023-01-15 21:02:04 -0500[diff] [blame]1# Licensed under the Apache License, Version 2.0 (the "License");
2# you may not use this file except in compliance with the License.
3# You may obtain a copy of the License at
4#
5# http://www.apache.org/licenses/LICENSE-2.0
6#
7# Unless required by applicable law or agreed to in writing, software
8# distributed under the License is distributed on an "AS IS" BASIS,
9# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
10# See the License for the specific language governing permissions and
11# limitations under the License.
12
13# Default values for ceph-client.
14# This is a YAML-formatted file.
15# Declare name/value pairs to be passed into your templates.
16# name: value
17
18---
19deployment:
20 ceph: true
21 client_secrets: false
22 # Original rbd_provisioner is now DEPRECATED. It will be removed in the
23 # next release; CSI RBD provisioner should be used instead.
24 rbd_provisioner: true
25 csi_rbd_provisioner: true
26 cephfs_provisioner: true
27
28release_group: null
29
30images:
31 pull_policy: IfNotPresent
32 tags:
33 ceph_bootstrap: 'docker.io/openstackhelm/ceph-daemon:change_770201_ubuntu_bionic-20210113'
34 ceph_cephfs_provisioner: 'docker.io/openstackhelm/ceph-cephfs-provisioner:ubuntu_bionic-20200521'
35 ceph_config_helper: 'docker.io/openstackhelm/ceph-config-helper:change_770201_ubuntu_bionic-20210113'
36 ceph_rbd_provisioner: 'docker.io/openstackhelm/ceph-rbd-provisioner:change_770201_ubuntu_bionic-20210113'
37 csi_provisioner: 'quay.io/k8scsi/csi-provisioner:v1.6.0'
38 csi_snapshotter: 'quay.io/k8scsi/csi-snapshotter:v2.1.1'
39 csi_attacher: 'quay.io/k8scsi/csi-attacher:v2.1.1'
40 csi_resizer: 'quay.io/k8scsi/csi-resizer:v0.4.0'
41 csi_registrar: 'quay.io/k8scsi/csi-node-driver-registrar:v1.2.0'
42 cephcsi: 'quay.io/cephcsi/cephcsi:v3.1.0'
43 dep_check: 'quay.io/airshipit/kubernetes-entrypoint:v1.0.0'
44 image_repo_sync: 'docker.io/library/docker:17.07.0'
45 local_registry:
46 active: false
47 exclude:
48 - dep_check
49 - image_repo_sync
50
51labels:
52 job:
53 node_selector_key: openstack-control-plane
54 node_selector_value: enabled
55 test:
56 node_selector_key: openstack-control-plane
57 node_selector_value: enabled
58 provisioner:
59 node_selector_key: openstack-control-plane
60 node_selector_value: enabled
61 csi_rbd_plugin:
62 node_selector_key: openstack-control-plane
63 node_selector_value: enabled
64
65pod:
66 test_pod:
67 wait_timeout: 600
68 rbd:
69 name: rbd-prov-test-pod
70 pvc_name: rbd-prov-test-pvc
71 csi_rbd:
72 name: csi-rbd-prov-test-pod
73 pvc_name: csi-rbd-prov-test-pvc
74 cephfs:
75 name: cephfs-prov-test-pod
76 pvc_name: cephfs-prov-test-pvc
77 security_context:
78 provisioner:
79 pod:
80 runAsUser: 0
81 container:
82 ceph_cephfs_provisioner:
83 allowPrivilegeEscalation: false
84 readOnlyRootFilesystem: true
85 ceph_rbd_provisioner:
86 allowPrivilegeEscalation: false
87 readOnlyRootFilesystem: true
88 ceph_rbd_snapshotter:
89 privileged: true
90 ceph_rbd_attacher:
91 privileged: true
92 ceph_rbd_resizer:
93 privileged: true
94 ceph_rbd_cephcsi:
95 privileged: true
96 capabilities:
97 add: ["SYS_ADMIN"]
98 plugin:
99 pod:
100 runAsUser: 0
101 container:
102 ceph_rbd_registrar:
103 privileged: true
104 capabilities:
105 add: ["SYS_ADMIN"]
106 ceph_csi_rbd_plugin:
107 privileged: true
108 capabilities:
109 add: ["SYS_ADMIN"]
110 allowPrivilegeEscalation: true
111 bootstrap:
112 pod:
113 runAsUser: 99
114 container:
115 ceph_client_bootstrap:
116 allowPrivilegeEscalation: false
117 readOnlyRootFilesystem: true
118 cephfs_client_key_generator:
119 pod:
120 runAsUser: 99
121 container:
122 ceph_storage_keys_generator:
123 allowPrivilegeEscalation: false
124 readOnlyRootFilesystem: true
125 client_key_cleaner:
126 pod:
127 runAsUser: 99
128 container:
129 ceph_namespace_client_keys_cleaner:
130 allowPrivilegeEscalation: false
131 readOnlyRootFilesystem: true
132 client_key_generator:
133 pod:
134 runAsUser: 99
135 container:
136 ceph_storage_keys_generator:
137 allowPrivilegeEscalation: false
138 readOnlyRootFilesystem: true
139 test:
140 pod:
141 runAsUser: 0
142 container:
143 test:
144 readOnlyRootFilesystem: true
145 dns_policy: "ClusterFirstWithHostNet"
146 replicas:
147 cephfs_provisioner: 2
148 rbd_provisioner: 2
149 csi_rbd_provisioner: 2
150 lifecycle:
151 upgrades:
152 deployments:
153 pod_replacement_strategy: Recreate
154 daemonsets:
155 pod_replacement_strategy: RollingUpdate
156 plugin:
157 enabled: true
158 min_ready_seconds: 0
159 max_unavailable: 1
160 affinity:
161 anti:
162 type:
163 default: preferredDuringSchedulingIgnoredDuringExecution
164 topologyKey:
165 default: kubernetes.io/hostname
166 weight:
167 default: 10
168 resources:
169 enabled: false
170 rbd_provisioner:
171 requests:
172 memory: "5Mi"
173 cpu: "250m"
174 limits:
175 memory: "50Mi"
176 cpu: "500m"
177 csi_rbd_provisioner:
178 requests:
179 memory: "5Mi"
180 cpu: "250m"
181 limits:
182 memory: "50Mi"
183 cpu: "500m"
184 cephfs_provisioner:
185 requests:
186 memory: "5Mi"
187 cpu: "250m"
188 limits:
189 memory: "50Mi"
190 cpu: "500m"
191 rbd_attacher:
192 requests:
193 memory: "5Mi"
194 cpu: "250m"
195 limits:
196 memory: "50Mi"
197 cpu: "500m"
198 rbd_registrar:
199 requests:
200 memory: "5Mi"
201 cpu: "250m"
202 limits:
203 memory: "50Mi"
204 cpu: "500m"
205 rbd_resizer:
206 requests:
207 memory: "5Mi"
208 cpu: "250m"
209 limits:
210 memory: "50Mi"
211 cpu: "500m"
212 rbd_snapshotter:
213 requests:
214 memory: "5Mi"
215 cpu: "250m"
216 limits:
217 memory: "50Mi"
218 cpu: "500m"
219 rbd_cephcsi:
220 requests:
221 memory: "5Mi"
222 cpu: "250m"
223 limits:
224 memory: "50Mi"
225 cpu: "500m"
226 jobs:
227 bootstrap:
228 limits:
229 memory: "1024Mi"
230 cpu: "2000m"
231 requests:
232 memory: "128Mi"
233 cpu: "500m"
234 image_repo_sync:
235 requests:
236 memory: "128Mi"
237 cpu: "100m"
238 limits:
239 memory: "1024Mi"
240 cpu: "2000m"
241 tolerations:
242 rbd_provisioner:
243 tolerations:
244 - effect: NoExecute
245 key: node.kubernetes.io/not-ready
246 operator: Exists
247 tolerationSeconds: 60
248 - effect: NoExecute
249 key: node.kubernetes.io/unreachable
250 operator: Exists
251 tolerationSeconds: 60
252 csi_rbd_provisioner:
253 tolerations:
254 - effect: NoExecute
255 key: node.kubernetes.io/not-ready
256 operator: Exists
257 tolerationSeconds: 60
258 - effect: NoExecute
259 key: node.kubernetes.io/unreachable
260 operator: Exists
261 tolerationSeconds: 60
262 cephfs_provisioner:
263 tolerations:
264 - effect: NoExecute
265 key: node.kubernetes.io/not-ready
266 operator: Exists
267 tolerationSeconds: 60
268 - effect: NoExecute
269 key: node.kubernetes.io/unreachable
270 operator: Exists
271 tolerationSeconds: 60
272
273secrets:
274 keyrings:
275 admin: ceph-client-admin-keyring
276 prov_adminSecretName: pvc-ceph-conf-combined-storageclass
277
278network:
279 public: 192.168.0.0/16
280 cluster: 192.168.0.0/16
281
282conf:
283 ceph:
284 global:
285 # auth
286 cephx: true
287 cephx_require_signatures: false
288 cephx_cluster_require_signatures: true
289 cephx_service_require_signatures: false
290 objecter_inflight_op_bytes: "1073741824"
291 objecter_inflight_ops: 10240
292 debug_ms: "0/0"
293 log_file: /dev/stdout
294 mon_cluster_log_file: /dev/stdout
295 osd:
296 osd_mkfs_type: xfs
297 osd_mkfs_options_xfs: -f -i size=2048
298 osd_max_object_name_len: 256
299 ms_bind_port_min: 6800
300 ms_bind_port_max: 7100
301
302dependencies:
303 dynamic:
304 common:
305 local_image_registry:
306 jobs:
307 - ceph-provisioners-image-repo-sync
308 services:
309 - endpoint: node
310 service: local_image_registry
311 static:
312 bootstrap:
313 jobs: null
314 services:
315 - endpoint: internal
316 service: ceph_mon
317 cephfs_client_key_generator:
318 jobs: null
319 cephfs_provisioner:
320 jobs:
321 - ceph-rbd-pool
322 services:
323 - endpoint: internal
324 service: ceph_mon
325 namespace_client_key_cleaner:
326 jobs: null
327 namespace_client_key_generator:
328 jobs: null
329 rbd_provisioner:
330 jobs:
331 - ceph-rbd-pool
332 services:
333 - endpoint: internal
334 service: ceph_mon
335 csi_rbd_provisioner:
336 jobs:
337 - ceph-rbd-pool
338 services:
339 - endpoint: internal
340 service: ceph_mon
341 image_repo_sync:
342 services:
343 - endpoint: internal
344 service: local_image_registry
345
346bootstrap:
347 enabled: false
348 script: |
349 ceph -s
350 function ensure_pool () {
351 ceph osd pool stats $1 || ceph osd pool create $1 $2
352 if [[ $(ceph mon versions | awk '/version/{print $3}' | cut -d. -f1) -ge 12 ]]; then
353 ceph osd pool application enable $1 $3
354 fi
355 }
356 #ensure_pool volumes 8 cinder
357
358# if you change provision_storage_class to false
359# it is presumed you manage your own storage
360# class definition externally
361# NOTE(kranthikirang) We iterate over each storageclass parameters
362# and derive the manifest.
363storageclass:
364 rbd:
365 provision_storage_class: true
366 provisioner: ceph.com/rbd
367 ceph_configmap_name: ceph-etc
368 metadata:
369 name: general-rbd
370 parameters:
371 pool: rbd
372 adminId: admin
373 adminSecretName: pvc-ceph-conf-combined-storageclass
374 adminSecretNamespace: ceph
375 userId: admin
376 userSecretName: pvc-ceph-client-key
377 imageFormat: "2"
378 imageFeatures: layering
379 csi_rbd:
380 provision_storage_class: true
381 provisioner: ceph.rbd.csi.ceph.com
382 ceph_configmap_name: ceph-etc
383 metadata:
384 default_storage_class: true
385 name: general
386 parameters:
387 clusterID: ceph
388 csi.storage.k8s.io/controller-expand-secret-name: pvc-ceph-conf-combined-storageclass
389 csi.storage.k8s.io/controller-expand-secret-namespace: ceph
390 csi.storage.k8s.io/fstype: ext4
391 csi.storage.k8s.io/node-stage-secret-name: pvc-ceph-conf-combined-storageclass
392 csi.storage.k8s.io/node-stage-secret-namespace: ceph
393 csi.storage.k8s.io/provisioner-secret-name: pvc-ceph-conf-combined-storageclass
394 csi.storage.k8s.io/provisioner-secret-namespace: ceph
395 imageFeatures: layering
396 imageFormat: "2"
397 pool: rbd
398 adminId: admin
399 adminSecretName: pvc-ceph-conf-combined-storageclass
400 adminSecretNamespace: ceph
401 userId: admin
402 userSecretName: pvc-ceph-client-key
403 cephfs:
404 provision_storage_class: true
405 provisioner: ceph.com/cephfs
406 metadata:
407 name: cephfs
408 parameters:
409 adminId: admin
410 adminSecretName: pvc-ceph-cephfs-client-key
411 adminSecretNamespace: ceph
412
413endpoints:
414 cluster_domain_suffix: cluster.local
415 local_image_registry:
416 name: docker-registry
417 namespace: docker-registry
418 hosts:
419 default: localhost
420 internal: docker-registry
421 node: localhost
422 host_fqdn_override:
423 default: null
424 port:
425 registry:
426 node: 5000
427 ceph_mon:
428 namespace: null
429 hosts:
430 default: ceph-mon
431 discovery: ceph-mon-discovery
432 host_fqdn_override:
433 default: null
434 port:
435 mon:
436 default: 6789
437 mon_msgr2:
438 default: 3300
439
440
441manifests:
442 configmap_bin: true
443 configmap_bin_common: true
444 configmap_etc: true
445 deployment_rbd_provisioner: true
446 # Original rbd_provisioner is now DEPRECATED. It will be removed in the
447 # next release; CSI RBD provisioner should be used instead.
448 deployment_csi_rbd_provisioner: true
449 deployment_cephfs_provisioner: true
450 job_bootstrap: false
451 job_cephfs_client_key: true
452 job_image_repo_sync: true
453 job_namespace_client_key_cleaner: true
454 job_namespace_client_key: true
455 job_namespace_client_ceph_config: true
456 storageclass: true
457 helm_tests: true
458...