|  | #!/bin/bash | 
|  | export OS_INTERFACE='admin' | 
|  |  | 
|  | # Prepare clouds.yaml file for the future cleanup, with original admin creds | 
|  | sed -i "s#AUTH_URL#${OS_AUTH_URL}#g; s#USERNAME#${OS_USERNAME}#g; s#USER_PASSWORD#${OS_PASSWORD}#g; s#PROJECT_NAME#${OS_PROJECT_NAME}#g; s#PROJECT_DOMAIN_NAME#${OS_PROJECT_DOMAIN_NAME}#g; s#USER_DOMAIN_NAME#${OS_USER_DOMAIN_NAME}#g; s#REGION_NAME#${OS_REGION_NAME}#g" /opt/res-files/clouds.yaml | 
|  |  | 
|  | # local vars | 
|  | name_prefix=cvp | 
|  | filename=${name_prefix}.manifest | 
|  | rcfile=${name_prefix}rc | 
|  | huge_pages=false | 
|  | set_gw_heat_router=false | 
|  | raw_disk_format=false | 
|  | logfile=prepare.log | 
|  | working_folder=$(pwd) | 
|  |  | 
|  | # Cloud admin details | 
|  | admin_username=${OS_USERNAME} | 
|  |  | 
|  | # Project, User, Roles | 
|  | project=${name_prefix}.project | 
|  | user=${name_prefix}.user | 
|  | admin=${name_prefix}.admin | 
|  | password=mcp1234 | 
|  | domain=${OS_PROJECT_DOMAIN_NAME} | 
|  |  | 
|  | # Security group | 
|  | sg_all=${name_prefix}.sg.all | 
|  | sg_icmp=${name_prefix}.sg.icmp | 
|  | sg_ssh=${name_prefix}.sg.ssh | 
|  | sg_iperf=${name_prefix}.sg.perf | 
|  |  | 
|  | # Testkey | 
|  | key=${name_prefix}_testkey | 
|  |  | 
|  | # Flavors: tiny, small (cirrus and migration), medium (ubuntu and volume/stress activities) | 
|  | flavor_t=${name_prefix}.tiny | 
|  | flavor_s=${name_prefix}.small | 
|  | flavor_m=${name_prefix}.medium | 
|  | flavor_h=${name_prefix}.high | 
|  |  | 
|  | # Fixed Networks (2, for testing router interconnection) | 
|  | net_left=${name_prefix}.net.1 | 
|  | net_right=${name_prefix}.net.2 | 
|  | subnet1=${name_prefix}.subnet.1 | 
|  | subnet2=${name_prefix}.subnet.2 | 
|  |  | 
|  | # Router | 
|  | router=${name_prefix}.router | 
|  |  | 
|  | # Images: cirros (6.0, 6.2), ubuntu (16.04, 20.04) | 
|  | cirros61=${name_prefix}.cirros.61 | 
|  | cirros62=${name_prefix}.cirros.62 | 
|  | ubuntu16=${name_prefix}.ubuntu.1604 | 
|  | ubuntu20=${name_prefix}.ubuntu.2004 | 
|  |  | 
|  | cirros61_link=https://download.cirros-cloud.net/0.6.1/cirros-0.6.1-x86_64-disk.img | 
|  | cirros62_link=https://download.cirros-cloud.net/0.6.2/cirros-0.6.2-x86_64-disk.img | 
|  | ubuntu16_link=https://cloud-images.ubuntu.com/xenial/current/xenial-server-cloudimg-amd64-disk1.img | 
|  | ubuntu20_link=https://cloud-images.ubuntu.com/focal/current/focal-server-cloudimg-amd64.img | 
|  |  | 
|  | # Volume (2GB) | 
|  | volume=${name_prefix}.volume | 
|  |  | 
|  | function show_help { | 
|  | printf "QA verification: Resources creation script\n\t-h, -?\t\tShow this help\n" | 
|  | printf "\t-H\t\tAdds '--property hw:mem_page_size=large' to flavors, i.e. huge_pages for DPDK\n" | 
|  | printf "\t-w <path>\tSets working folder (default: ${working_folder})\n" | 
|  | printf "\t-g\t\tTo set external_gateway_info to heat-router with the external network (if not set yet)\n" | 
|  | printf "\t-r\t\tTo create the images in RAW disk format instead of the QCOW2\n" | 
|  | } | 
|  |  | 
|  | OPTIND=1 # Reset in case getopts has been used previously in the shell. | 
|  | while getopts ":grHw:h?"  opt; do | 
|  | case "$opt" in | 
|  | h|\?) | 
|  | show_help | 
|  | exit 0 | 
|  | ;; | 
|  | w)  working_folder=${OPTARG} | 
|  | printf "# Working folder is ${working_folder}\n" | 
|  | ;; | 
|  | H)  huge_pages=true | 
|  | printf "# Using 'huge_pages' property in flavors\n" | 
|  | ;; | 
|  | g)  set_gw_heat_router=true | 
|  | printf "# Setting external_gateway_info to heat-router with the external network (if not set yet)\n\n" | 
|  | ;; | 
|  | r)  raw_disk_format=true | 
|  | printf "# Creating the images in RAW disk format instead of the QCOW2\n" | 
|  | ;; | 
|  | esac | 
|  | done | 
|  |  | 
|  | shift $((OPTIND-1)) | 
|  | [ "${1:-}" = "--" ] && shift | 
|  |  | 
|  | function put() { | 
|  | echo "$1=$2" | tee -a ${filename} | 
|  | } | 
|  |  | 
|  | # now, some hard to understand stuff... | 
|  | # f1 $(<command with output to cut>) | 
|  | function f1() { echo $1 | cut -d' ' -f1; }; | 
|  | # <commands with output to cut> | p1 | 
|  | function p1() { while read input; do echo ${input} | cut -d' ' -f1; done; }; | 
|  | # ol1 is short for openstack list with 1 param. Also grep and cut | 
|  | # "ol1 network public" will list all networks, grep by name public and return IDs | 
|  | function ol1() { echo $(openstack $1 list -c ID -c Name -f value | grep $2 | cut -d' ' -f1); } | 
|  | # same as ol1 but with 2 initial commands before list | 
|  | function ol2() { echo $(openstack $1 $2 list -c ID -c Name -f value | grep $3 | cut -d' ' -f1); } | 
|  |  | 
|  | function print_manifest() { | 
|  | touch ./${filename} | 
|  | truncate -s 0 ${filename} | 
|  | printf "\n\n# Checking and filling manifest: $(pwd)/${filename}\n" | 
|  | put project_name ${project} | 
|  | put project_id $(ol1 project ${project}) | 
|  | put user_name ${user} | 
|  | put user_id $(ol1 user ${user}) | 
|  | put admin_name ${admin} | 
|  | put admin_id $(ol1 user ${admin}) | 
|  | # sg | 
|  | put secgroup_all_name ${sg_all} | 
|  | put secgroup_all_id $(ol2 security group ${sg_all}) | 
|  | put secgroup_icmp_name ${sg_icmp} | 
|  | put secgroup_icmp_id $(ol2 security group ${sg_icmp}) | 
|  | put secgroup_ssh_name ${sg_ssh} | 
|  | put secgroup_ssh_id $(ol2 security group ${sg_ssh}) | 
|  | put secgroup_iperf_name ${sg_iperf} | 
|  | put secgroup_iperf_id $(ol2 security group ${sg_iperf}) | 
|  |  | 
|  | # keypair | 
|  | put keypair_name ${key} | 
|  | put keypair_id $(ol1 keypair ${key}) | 
|  |  | 
|  | # flavors | 
|  | put flavor_tiny_name ${flavor_t} | 
|  | put flavor_tiny_id $(ol1 flavor ${flavor_t}) | 
|  | put flavor_small_name ${flavor_s} | 
|  | put flavor_small_id $(ol1 flavor ${flavor_s}) | 
|  | put flavor_medium_name ${flavor_m} | 
|  | put flavor_medium_id $(ol1 flavor ${flavor_m}) | 
|  | put flavor_high_name ${flavor_h} | 
|  | put flavor_high_id $(ol1 flavor ${flavor_h}) | 
|  |  | 
|  | # fixed nets | 
|  | put fixed_net_left_name ${net_left} | 
|  | put fixed_net_left_id $(ol1 network ${net_left}) | 
|  | put fixed_net_right_name ${net_right} | 
|  | put fixed_net_right_id $(ol1 network ${net_right}) | 
|  | put fixed_net_left_subnet_name ${subnet1} | 
|  | put fixed_net_left_subnet_id $(openstack subnet list --network ${net_left} -c ID -f value | p1) | 
|  | put fixed_net_right_subnet_name ${subnet2} | 
|  | put fixed_net_right_subnet_id $(openstack subnet list --network ${net_right} -c ID -f value | p1) | 
|  |  | 
|  | # router | 
|  | put router_name ${router} | 
|  | put router_id $(ol1 router ${router}) | 
|  |  | 
|  | # volumes | 
|  | put volume_name ${volume} | 
|  | put volume_id $(ol1 volume ${volume}) | 
|  |  | 
|  | # images | 
|  | put cirros61_name ${cirros61} | 
|  | put cirros61_id $(ol1 image ${cirros61}) | 
|  | put cirros62_name ${cirros62} | 
|  | put cirros62_id $(ol1 image ${cirros62}) | 
|  | put ubuntu16_name ${ubuntu16} | 
|  | put ubuntu16_id $(ol1 image ${ubuntu16}) | 
|  | put ubuntu20_name ${ubuntu20} | 
|  | put ubuntu20_id $(ol1 image ${ubuntu20}) | 
|  | } | 
|  |  | 
|  | # create rc file out of current ENV vars | 
|  | function putrc() { | 
|  | printf "# Saving ${1} file\n" | 
|  | echo "export OS_IDENTITY_API_VERSION=${OS_IDENTITY_API_VERSION:-3}" >${1} | 
|  | echo "export OS_AUTH_URL=${OS_AUTH_URL}" >>${1} | 
|  | echo "export OS_PROJECT_DOMAIN_NAME=${OS_PROJECT_DOMAIN_NAME}" >>${1} | 
|  | echo "export OS_USER_DOMAIN_NAME=${OS_USER_DOMAIN_NAME}" >>${1} | 
|  | echo "export OS_PROJECT_NAME=${OS_PROJECT_NAME}" >>${1} | 
|  | echo "export OS_TENANT_NAME=${OS_TENANT_NAME}" >>${1} | 
|  | echo "export OS_USERNAME=${OS_USERNAME}" >>${1} | 
|  | echo "export OS_PASSWORD=${OS_PASSWORD}" >>${1} | 
|  | echo "export OS_REGION_NAME=${OS_REGION_NAME}" >>${1} | 
|  | echo "export OS_INTERFACE=${OS_INTERFACE}" >>${1} | 
|  | echo "export OS_ENDPOINT_TYPE=${OS_ENDPOINT_TYPE}" >>${1} | 
|  | echo "export OS_CACERT=${OS_CACERT}" >>${1} | 
|  | } | 
|  |  | 
|  | # update ENV vars to newly created project | 
|  | function updatesession() { | 
|  | export OS_PROJECT_NAME=${project} | 
|  | export OS_TENANT_NAME=${project} | 
|  | export OS_USERNAME=${admin} | 
|  | export OS_PASSWORD=${password} | 
|  | } | 
|  |  | 
|  | function process_cmds() { | 
|  | if [ -s ${cmds} ]; then | 
|  | cat ${cmds} | tr '\n' '\0' | xargs -P 1 -n 1 -0 echo | tee /dev/tty | openstack -v 2>&1 >>${logfile} | 
|  | truncate -s 0 ${cmds} | 
|  | fi | 
|  | } | 
|  |  | 
|  | function _project() { | 
|  | echo project create ${project} >>${cmds} | 
|  | # admin_username=$(openstack user list --project admin --domain ${domain} -c Name -f value | grep admin) | 
|  | # user admin_username from the initial env vars of the pod | 
|  | echo role add --user ${admin_username} --project ${project} admin >>${cmds} | 
|  | } | 
|  |  | 
|  | function _users() { | 
|  | echo user create --project ${project} --password ${password} ${user} >>${cmds} | 
|  | echo user create --project ${project} --password ${password} ${admin} >>${cmds} | 
|  | echo role add --user ${admin} --project ${project} admin >>${cmds} | 
|  | echo role add --user ${admin} --project ${project} creator >>${cmds} | 
|  | echo role add --user ${user} --project ${project} member >>${cmds} | 
|  | echo role add --user ${user} --project ${project} creator >>${cmds} | 
|  | echo role add --user ${user} --project ${project} load-balancer_member >>${cmds} | 
|  |  | 
|  | } | 
|  |  | 
|  | function _sg_all() { | 
|  | echo security group create --project ${project} ${sg_all} >>${cmds} | 
|  | # icmp | 
|  | echo security group rule create --protocol icmp ${sg_all} >>${cmds} | 
|  | # ssh | 
|  | echo security group rule create --protocol tcp --dst-port 22 ${sg_all} >>${cmds} | 
|  | # iperf | 
|  | echo security group rule create --protocol tcp --dst-port 5001 ${sg_all} >>${cmds} | 
|  | # iperf3 | 
|  | echo security group rule create --protocol tcp --dst-port 5201 ${sg_all} >>${cmds} | 
|  | # nc connectivity | 
|  | echo security group rule create --protocol tcp --dst-port 3000 ${sg_all} >>${cmds} | 
|  | # http | 
|  | echo security group rule create --protocol tcp --dst-port 80 ${sg_all} >>${cmds} | 
|  | # https | 
|  | echo security group rule create --protocol tcp --dst-port 443 ${sg_all} >>${cmds} | 
|  | # fio | 
|  | echo security group rule create --protocol tcp --dst-port 8765 ${sg_all} >>${cmds} | 
|  | } | 
|  |  | 
|  | function _sg_icmp() { | 
|  | echo security group create --project ${project} ${sg_icmp} >>${cmds} | 
|  | echo security group rule create --protocol icmp ${sg_icmp} >>${cmds} | 
|  | } | 
|  |  | 
|  | function _sg_ssh() { | 
|  | echo security group create --project ${project} ${sg_ssh} >>${cmds} | 
|  | # icmp | 
|  | echo security group rule create --protocol icmp ${sg_ssh} >>${cmds} | 
|  | # ssh | 
|  | echo security group rule create --protocol tcp --dst-port 22 ${sg_ssh} >>${cmds} | 
|  | } | 
|  |  | 
|  | function _sg_iperf() { | 
|  | echo security group create --project ${project} ${sg_iperf} >>${cmds} | 
|  | # icmp | 
|  | echo security group rule create --protocol icmp ${sg_iperf} >>${cmds} | 
|  | # iperf | 
|  | echo security group rule create --protocol tcp --dst-port 5001 ${sg_iperf} >>${cmds} | 
|  | # iperf3 | 
|  | echo security group rule create --protocol tcp --dst-port 5201 ${sg_iperf} >>${cmds} | 
|  | } | 
|  |  | 
|  | function create_keypair() { | 
|  | echo "# Creating keypair" | 
|  | openstack keypair create ${key} >${key} | 
|  | chmod 600 ${key} | 
|  | echo "-> created keyfile: $(pwd)/${key}" | 
|  | } | 
|  |  | 
|  | function _flavors() { | 
|  | # huge paged flavors | 
|  | if [ "$huge_pages" = true ]; then | 
|  | echo flavor create --id 1 --ram 256 --disk 5 --vcpus 1 ${flavor_t} --property hw:mem_page_size=large >>${cmds} | 
|  | echo flavor create --id 2 --ram 512 --disk 10 --vcpus 2 ${flavor_s} --property hw:mem_page_size=large >>${cmds} | 
|  | echo flavor create --id 3 --ram 2048 --disk 20 --vcpus 4 ${flavor_m} --property hw:mem_page_size=large >>${cmds} | 
|  | echo flavor create --id 4 --ram 4096 --disk 30 --vcpus 6 ${flavor_h} --property hw:mem_page_size=large >>${cmds} | 
|  | else | 
|  | echo flavor create --id 1 --ram 256 --disk 5 --vcpus 1 ${flavor_t} >>${cmds} | 
|  | echo flavor create --id 2 --ram 512 --disk 10 --vcpus 2 ${flavor_s} >>${cmds} | 
|  | echo flavor create --id 3 --ram 2048 --disk 20 --vcpus 4 ${flavor_m} >>${cmds} | 
|  | echo flavor create --id 4 --ram 4096 --disk 30 --vcpus 6 ${flavor_h} >>${cmds} | 
|  | fi | 
|  | } | 
|  |  | 
|  | function _volumes() { | 
|  | echo volume create --size 2 ${volume} >>${cmds} | 
|  | } | 
|  |  | 
|  | function create_fixed_nets() { | 
|  | echo "# Creating fixed networks" | 
|  | echo network create --project ${project} ${net_left} >>${cmds} | 
|  | echo subnet create ${subnet1} --network ${net_left} --subnet-range 10.10.11.0/24 >>${cmds} | 
|  | echo network set --share ${net_left} >>${cmds} | 
|  | echo network create --project ${project} ${net_right} >>${cmds} | 
|  | echo subnet create ${subnet2} --network ${net_right} --subnet-range 10.10.12.0/24 >>${cmds} | 
|  | echo network set --share ${net_right} >>${cmds} | 
|  | process_cmds | 
|  |  | 
|  | # get subnet ids | 
|  | subnet1_id=$(openstack subnet list --network ${net_left} -c ID -f value) | 
|  | subnet2_id=$(openstack subnet list --network ${net_right} -c ID -f value) | 
|  |  | 
|  | echo router create --project ${project} ${router} >>${cmds} | 
|  | process_cmds | 
|  |  | 
|  | router_id=$(openstack router list -c ID -c Name -f value | grep ${router} | cut -d' ' -f1) | 
|  | echo router add subnet ${router_id} ${subnet1_id} >>${cmds} | 
|  | echo router add subnet ${router_id} ${subnet2_id} >>${cmds} | 
|  | process_cmds | 
|  |  | 
|  | # get external network name | 
|  | if [ -n "${CUSTOM_PUBLIC_NET_NAME:-}" ]; then | 
|  | # if CUSTOM_PUBLIC_NET_NAME is set to some specific net, check it is present on the cloud and use it | 
|  | echo "# Checking that the external network ${CUSTOM_PUBLIC_NET_NAME} is present on the cloud" | 
|  | network_exists=$(openstack network show "$CUSTOM_PUBLIC_NET_NAME" -c id -f value 2>/dev/null) | 
|  | if [ -n "$network_exists" ]; then | 
|  | TEST_PUBLIC_NET=${CUSTOM_PUBLIC_NET_NAME} | 
|  | echo router set ${router} --external-gateway ${CUSTOM_PUBLIC_NET_NAME} >>${cmds} | 
|  | process_cmds | 
|  | else | 
|  | echo "# The network ${CUSTOM_PUBLIC_NET_NAME} does not exist" | 
|  | CUSTOM_PUBLIC_NET_NAME="" | 
|  | fi | 
|  | fi | 
|  | if [ -z "${CUSTOM_PUBLIC_NET_NAME:-}" ]; then | 
|  | echo "# Selecting a random external network as an external gateway for the router" | 
|  | # if the custom network is not set or is empty, select the first external network | 
|  | external=$(openstack network list --external -c Name -f value | head -n1) | 
|  | TEST_PUBLIC_NET=${external} | 
|  | echo router set ${router} --external-gateway ${external} >>${cmds} | 
|  | process_cmds | 
|  | fi | 
|  |  | 
|  | if [ "$set_gw_heat_router" = true ]; then | 
|  | echo "# Variable 'set_gw_heat_router' is true; setting the external gateway info for heat-router (if not set yet)..." | 
|  | # set external gateway info for the Heat router if it is not set (required for Heat Tempest tests) | 
|  | external_gateway_info=$(openstack router show heat-router -f json -c external_gateway_info | jq -r '.external_gateway_info') | 
|  | if [[ "$external_gateway_info" == "null" ]]; then | 
|  | echo "# Setting external gw info for heat-router using ${TEST_PUBLIC_NET}" | 
|  | openstack router set --external-gateway ${TEST_PUBLIC_NET} heat-router | 
|  | if [[ $? -eq 0 ]]; then | 
|  | echo "# External gateway set successfully for heat-router" | 
|  | openstack router show heat-router -c external_gateway_info | 
|  | else | 
|  | echo "# Failed to set external gateway for heat-router" | 
|  | fi | 
|  | else | 
|  | echo "# Router heat-router already has an external gateway" | 
|  | openstack router show heat-router -c external_gateway_info | 
|  | fi | 
|  | else | 
|  | echo "# Variable 'set_gw_heat_router' is not true, skipping setting external_gateway_info for heat-router..." | 
|  | fi | 
|  | } | 
|  |  | 
|  | function _get_image() { | 
|  | # build vars for name and link | 
|  | name="${1}" | 
|  | link="${1}_link" | 
|  | which wget >/dev/null | 
|  | if [ $? -ne 0 ]; then | 
|  | printf "\nERROR: 'wget' not detected. Download skipped: ${!name}\n" | 
|  | else | 
|  | # no redownloads, quet, save named and show progress | 
|  | r=$(wget --no-check-certificate -nc -q -O ./${!name} --show-progress ${!link}) | 
|  | if [ $? -ne 0 ]; then | 
|  | # non-empty output on error | 
|  | echo ${r} | 
|  | fi | 
|  | fi | 
|  | } | 
|  |  | 
|  | function create_image() { | 
|  | name="${1}" | 
|  | # Check if image is in the cloud | 
|  | echo "# Checking image '${!name}'" | 
|  | ids=( $(ol1 image ${!name}) ) | 
|  | # if array is empty, download and upload it | 
|  | if [ ${#ids[@]} -eq 0 ]; then | 
|  | # check and download | 
|  | if [ ! -f ${!name} ]; then | 
|  | r=$(_get_image ${1}) | 
|  | else | 
|  | r="" | 
|  | fi | 
|  | # check if output is not empty | 
|  | if [ ${#r} -eq 0 ]; then | 
|  | if [ "$raw_disk_format" = true ]; then | 
|  | qemu-img convert -f qcow2 -O raw ${!name} ${!name}.raw | 
|  | image_id=$(openstack image create --public --disk-format raw --container-format bare --file ${!name}.raw ${!name} -c id -f value) | 
|  | echo "-> created ${!name} (${image_id})" | 
|  | rm ${!name}.raw | 
|  | else | 
|  | image_id=$(openstack image create --public --disk-format qcow2 --container-format bare --file ${!name} ${!name} -c id -f value) | 
|  | echo "-> created ${!name} (${image_id})" | 
|  | fi | 
|  | else | 
|  | printf "\n-> Error detected, creation skipped\n" | 
|  | fi | 
|  | else | 
|  | # image(s) already there, list them | 
|  | for id in ${ids[@]}; do | 
|  | echo "-> found ${!name} with ID of '${id}'" | 
|  | done | 
|  | fi | 
|  | } | 
|  |  | 
|  | ################### | 
|  | ### Main | 
|  | ################### | 
|  | echo "Using working folder: ${working_folder}" | 
|  | if [[ -z ${working_folder+x} ]]; then | 
|  | # cwd into working dir | 
|  | cd ${working_folder} | 
|  | fi | 
|  |  | 
|  | cmds=$(mktemp) | 
|  | trap "rm -f ${cmds}" EXIT | 
|  | echo "Using tempfile: '${cmds}'" | 
|  |  | 
|  | touch ${logfile} | 
|  | echo "Using log file: '${logfile}'" | 
|  |  | 
|  | # Create | 
|  | echo "# Creating project and users" | 
|  | _project | 
|  | _users | 
|  | process_cmds | 
|  |  | 
|  | echo "# Creating 'rc' and switching" | 
|  | putrc "./adminrc" | 
|  | updatesession | 
|  | putrc "./${rcfile}" | 
|  |  | 
|  | echo "# Creating basic resources" | 
|  | # not dependent stuff | 
|  | _sg_all | 
|  | _sg_icmp | 
|  | _sg_ssh | 
|  | _sg_iperf | 
|  | _flavors | 
|  | _volumes | 
|  | process_cmds | 
|  |  | 
|  | # sophisticated, step dependent stuff | 
|  | create_keypair | 
|  | create_fixed_nets | 
|  |  | 
|  | # images | 
|  | create_image cirros61 | 
|  | create_image cirros62 | 
|  | create_image ubuntu16 | 
|  | create_image ubuntu20 | 
|  |  | 
|  | ### Manifest and fall back to original rc | 
|  | print_manifest | 
|  | printf ="\n\nSetting quota\n" | 
|  | openstack quota set --cores -1 --ram -1 --instances -1 --volumes -1 --gigabytes -1 --server-groups -1 --server-group-members -1 cvp.project | 
|  | source "./adminrc" | 
|  | printf "\n\nOriginal rc preserved and backed up in 'adminrc'\nNew rc is '${rcfile}'\n" |