Professional Documents
Culture Documents
OpenStack Mitaka
Lots of new projects, for one thing
www.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
A Few Introductions
Davanum Srinivas | Principal Software Engineer, Mirantis
Davanum Srinivas (a.k.a Dims) is Principal Software Engineer in the Mirantis Community Engineering team, working on
OpenStack Nova, Oslo and related projects. He previously worked on IBM PureApplication product as an Architect and lead
a team working on Web Services support in WebSphere. Dims has a long track record in open source projects including
Apache Cocoon, Axis2, Geronimo at the Apache Software foundation and he co-founded WSO2 based on the open source
business model.
A Little Housekeeping
Agenda
Agenda
Compute
Networking
Storage
Other DefCore
Programmability
Orchestration
Deployment
Containers
Monitoring
Data
Infrastructure
Other Awesome Stuff
Q&A
Copyright 2016 Mirantis, Inc. All rights reserved
Compute
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Nova
Services and associated libraries to provide massively scalable,
on-demand, self-service access to compute resources,
Including bare metal, virtual machines, and containers.
Copyright 2016 Mirantis, Inc. All rights reserved
Nova - Manageability
Simpler rolling upgrades
Automatic RPC version determination
New nova-manage Script for all online DB migrations
Support for libosinfo integration for injecting hardware
properties
New service.status notification for updates
Versioning for Notifications
Copyright 2016 Mirantis, Inc. All rights reserved
Nova - Scalability
New Nova API Database
New ec2-api project for EC2 support
Networking
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Neutron
OpenStack Networking Service
Neutron - Scalability
Retry failed ports bindings after L2 agent recovery
DVR-related improvements:
HA support for SNAT services on DVRs
Improve DVR's resiliency during VM live migration
Neutron - Manageability
Integration with external DNS
Integration with Designate or custom DNSaaS
Floating IPs and ports can have a dns_name
Networks can have a dns_domain
Neutron - Features
MTU-related improvements
end-to-end support for arbitrary MTUs
DHCP agent to provide a network MTU to instances
BGP support
announcement of tenant subnets and floating IPs
using centralized router gateway or floating IP agent gateway
(DVR case) ports as a next-hop
Neutron - Extensions
neutron-fwaas
Enable quotas for FWaaS
networking-bgpvpn
inter-connection between L3 VPNs and Neutron resources
Astara
An integrated network orchestration service (routing, firewall, load balancing,
VPN) for connecting and securing multi-tenant OpenStack environments.
Astara - Changes
Dropped support for a number of legacy convenience
hooks
No longer requires external network and subnet ID to be
specified
No longer adds external gateway to a router
automatically
Tacker
Network Function Virtualization (NFV) Orchestration services
and libraries for end-to-end life-cycle management of
Network Services and Virtual Network Functions (VNFs).
Tacker
Support for Topology and Orchestration Specification for
Cloud Applications (TOSCA)
MultiSite VNF placement
Enhanced VNF placement (using Nova NFV smarts)
host-passthru / host-model PCI pass through, NUMA awareness,
vhost, SR-IOV, etc.
Dragonflow
A distributed control plane implementation of Neutron. Its mission is to
implement advanced networking services driven by the Neutron API and
running on a distributed control plane. It's designed to support containers
networking and large scale production loads.
Copyright 2016 Mirantis, Inc. All rights reserved
Storage
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Cinder
Services and libraries to provide on-demand, self-service access to
Block Storage resources via abstraction and automation
on top of other block storage devices.
Cinder
Rolling upgrades (technical preview)
Microversions
A new replication interface (2.1 replaces the original
version)
As with all cycles, Cinder also sees new drivers, including
a driver to enable backups to Google Cloud Storage.
XML API is deprecated
Copyright 2016 Mirantis, Inc. All rights reserved
Cinder
Snapshot backups
Delete snapshots with a volume
cascade=True
Cinder
Ability to manage policy for volume type operations:
Add storage_type_admin role.
Add admin_or_storage_type_admin rule to policy.json, e.g.
"volume_extension:types_manage":"rule:
admin_or_storage_type_admin","volume_extension:
volume_type_access:addProjectAccess":"rule:
admin_or_storage_type_admin","volume_extension:
volume_type_access:removeProjectAccess":"rule:
admin_or_storage_type_admin",
Copyright 2016 Mirantis, Inc. All rights reserved
Glance
A service that allows users to upload and discover data assets
that are meant to be used with other services,
like images for Nova and templates for Heat.
Glance
Swift
OpenStack Object Storage
Swift
New ring rebalancing algorithm
More balanced rings
Better initial placement
More efficient capacity adjustments
Manila
A set of services for management of shared file systems
in a multitenant cloud environment, similar to how OpenStack provides
for block-based storage management through the Cinder project.
Manila
Network plumbing
Admin network
Share migration
Export location metadata
Export backends may have particular capabilities
Additional drivers
lvm
Ceph
ZFS on Linux
Copyright 2016 Mirantis, Inc. All rights reserved
Freezer
Integrated tools for backing up and restoring cloud data in
multiple use cases, including disaster recovery. These resources include
file systems, server instances, volumes, and databases.
Copyright 2016 Mirantis, Inc. All rights reserved
Freezer
New types of application-aware backup:
Pluggable backup mode abstraction layer
Oracle, Postgresql, Redis, Elasticsearch Database backup
SSL connections
Pluggable storage backend abstraction layer
Consistency check after a restore
Data deduplication
Showing the content of a backup
Copyright 2016 Mirantis, Inc. All rights reserved
Other DefCore
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Keystone
Facilitates API client authentication, service discovery,
distributed multi-tenant authorization, and auditing.
Keystone - Manageability
Keystone - Scalability
Horizon
An extensible unified web-based user interface
for all OpenStack services.
Horizon
Horizon search panel (plugin)
Unified search across:
Nova instances
Glance images, snapshots, metadefs
Cinder volumes, snapshots
Neutron networks, ports, subnets, routers
Designate (DNS) Zones, recordsets
Swift object search (Experimental)
Horizon
Horizon
https://www.youtube.com/watch?v=jr5iIs4zvbY
Copyright 2016 Mirantis, Inc. All rights reserved
Programmability
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Murano
An application catalog service that enables users to compose and
deploy composite environments on an application abstraction level
while managing the application lifecycle.
Copyright 2016 Mirantis, Inc. All rights reserved
Murano
Multi-Region Support
MuranoPL Language Improvements
YAQL 1.1, Metadata, Reflection, Static Methods
TOSCA assets
GLARE integration kickstart
Horizon plugin
App validation program
Mistral
A simple YAML-based language to write workflows (tasks and
transition rules) and a service that allows you to upload them, modify, run
them at scale and in a highly available manner, manage and monitor
workflow execution state and the state of individual tasks.
Copyright 2016 Mirantis, Inc. All rights reserved
Mistral
Mechanism for sharing resources between tenants
Actions for using Swift, Barbican, Ceilometer, Mistral
(Mistral from Mistral)
Docker image to quickly install Mistral
Plugin for openstackclient
Python 3 support
Congress
Governance as a service across any collection of cloud
services in order to monitor, enforce, and audit policy over
dynamic infrastructure.
Congress
Push data via REST API call other services can call.
New architecture for distributing Congress across multiple
hosts to achieve high availability and high throughput.
(Not yet complete)
Rally
A framework for performance analysis and benchmarking of
individual OpenStack components as well as
full production OpenStack cloud deployments
Copyright 2016 Mirantis, Inc. All rights reserved
Rally
Context api_versions
Call Scenario.add_ouput() method multiple times in
scenario.
New --html-static argument for rally task report
Support for workloads (launch via Heat, then benchmark)
xfail mechanism
Re-run failed tests.
DB schema versioning and migration
Copyright 2016 Mirantis, Inc. All rights reserved
Orchestration
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Heat
Orchestrating composite cloud applications using a declarative
template format through an OpenStack-native REST API.
Heat
Senlin
Provides a generic clustering service for an OpenStack cloud, capable of
managing the homogeneous objects exposed by other OpenStack
components, such as Nova, Heat, Cinder, etc.
Senlin
Policy checks
Cluster health management
Initiative actions
Delete a node from any region/availability zone
Service status
Deployment
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Fuel
Streamlining and accelerating the process of deploying, testing and
maintaining various configurations of OpenStack at scale.
Fuel - Features
Fuel is ready for LCM
Separate Fuel and Openstack
Optimized Fuels Tasks
Fuel - Features
Performance improvements
Deployments optimization
Daemons resource control
OVS-DPDK is supported (NFV use case)
SR-IOV & QoS are now supported
NUMA node topology & CPU pinning
VIPs configuration
Copyright 2016 Mirantis, Inc. All rights reserved
Ironic
An OpenStack service and associated libraries capable of managing and
provisioning physical machines in a security-aware and fault-tolerant manner.
Ironic
Manual cleaning
RAID support
Parallel tasks
TripleO
Tooling and infrastructure able to deploy OpenStack in production,
using OpenStack itself wherever possible.
TripleO
Upgrade Openstack components without Tenant
Downtime
Making the overcloud deployment use SSL (https)
IPv6 Support
OpenStack-Ansible
Deploying OpenStack from source in a way that makes it scalable
while also being simple to operate, upgrade, and grow.
OpenStack-Ansible
Increased modularity
Roles in their own repositories
Puppet OpenStack
Bringing scalable and reliable IT automation to OpenStack cloud deployments.
Puppet OpenStack
Identity:
Federation with Mellon support
Support for multiple LDAP backends
Usage of keystone-manage bootstrap
Neutron:
Support of LBaaSv2
More SDN integrations: OpenDayLight, PlugGrid, Midonet
Use modern parameters for Nova notifications
Copyright 2016 Mirantis, Inc. All rights reserved
Puppet OpenStack
Nova:
Manage Nova API database
Nova cells support with host aggregates
Remove EC2 support
Glance:
Support multi-backend
Puppet OpenStack
Cinder:
Block Device backend
Allow to deploy Cinder API v3
General features:
IPv6 deployment support
CI continues to have more use-cases coverage (SSL, IPv6, more
services)
Copyright 2016 Mirantis, Inc. All rights reserved
Puppet OpenStack
New modules:
puppet-mistral
puppet-zaqar
Chef OpenStack
Automating the building, operation and consumption of
OpenStack cloud deployments.
Chef OpenStack
Cookbook refactoring (Templates, Attributes,
Libraries)
Core service cookbooks:
openstack-identity
openstack-compute
openstack-network
openstack-block-storage
openstack-image
Copyright 2016 Mirantis, Inc. All rights reserved
Containers
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Magnum
Makes container orchestration engines such as Docker and Kubernetes
available as first-class resources in OpenStack. It uses Heat to orchestrate an
OS image which contains Docker and Kubernetes and runs that image in
either VMs or bare metal in a cluster configuration.
Copyright 2016 Mirantis, Inc. All rights reserved
Magnum
Kuryr
Bridges between containers frameworks networking models to
OpenStack networking abstraction
Kuryr
Full support for
Docker
Docker Swarm
Kolla
Provides production-ready containers and deployment tools
for operating OpenStack clouds
Kolla
Monitoring
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Ceilometer
Reliably collects measurements of the utilization of the physical and virtual
resources comprising deployed clouds, persists these data for subsequent
retrieval and analysis, and triggers actions when defined criteria are met.
Ceilometer
Keystone v3 support
Aodh
support for composite alarm rules
ability to evaluate across multiple alarms with OR/AND
Ceilometer:
Batch messaging support
Custom instance discovery polling support (minimise nova load)
Gnocchi:
Timesplit aggregated time series storage with lz4 compression
Copyright 2016 Mirantis, Inc. All rights reserved
Monasca
A multi-tenant, highly scalable, performant, fault-tolerant monitoring-as-aservice solution for metrics, complex event processing and logging. To build
an extensible platform for advanced monitoring services that can be used by
both operators and tenants to gain operational insight and visibility, ensuring
availability and stability.
Copyright 2016 Mirantis, Inc. All rights reserved
Data
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Sahara
A scalable data processing stack and associated management interfaces.
Sahara
sahara-api as WSGI application
sahara-wsgi-api
Trove
Scalable and reliable Cloud Database as a Service functionality for both
relational and non-relational database engines, and to continue to improve its
fully-featured and extensible open source framework.
Copyright 2016 Mirantis, Inc. All rights reserved
Trove
Infrastructure
training.mirantis.com
Copyright 2016 Mirantis, Inc. All rights reserved
Oslo
A set of python libraries containing code shared by OpenStack projects. The
APIs provided by these libraries should be high quality, stable, consistent,
documented and generally applicable.
Drivers
Support for ZMQ as messaging transport instead of RabbitMQ
New RabbitMQ driver using Pika python library
Kafka based Notification driver
New Features
Documentation
Documentation for core OpenStack projects to promote OpenStack.
Develop and maintain tools and processes to ensure quality, accurate
documentation. Treat documentation like OpenStack code.
Barbican
A secret storage and generation system capable of providing key management
for services wishing to enable encryption features.
Barbican
Support for user metadata to secrets
Geolocation
Rate
Allowed time-access
Etc
Zaqar
An OpenStack messaging service that affords a variety of distributed
application patterns in an efficient, scalable and highly-available manner, and
to create and maintain associated Python libraries and documentation.
Zaqar
Websocket binary support
More reserved attributes for queue
_max_messages_post_size
_default_message_ttl
Zaqar
Projects using Zaqar
Aodh: users can be notified of alarm notification
Mistral: users can execute Zaqar actions
Puppet Zaqar
RefStack
A test result collection and reporting service to support
the DefCore interoperability testing process.
RefStack
Vendor registration at RefStack to link vendors to test data
Implemented option with subunit data format as input for
data upload
Associated test data to users instead of user keys
Associated specific DefCore Guideline and OpenStack
Target Program to a test result set
Removed RefStack dependency on Keystone client
Ability to perform tests that are not in Tempest but are
implemented as Tempest plugin
Copyright 2016 Mirantis, Inc. All rights reserved
Thank You!
Q&A
Download the slides from:
http://bit.ly/openstack-mitaka_webcast
Well email you links to the slides and recording later this week.
Copyright 2016 Mirantis, Inc. All rights reserved