Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / mcp / mcp-common-scripts / 3535d2acd2f3a1353dd3ebe4e743a5741b080726 / . / config-drive / master_config.yaml
blob: 6ab14675944c260acac8aeb1fa0fd3d4d0929f87 [file] [log] [blame]
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]1#cloud-config
Ivan Berezovskiy39fa6562018-10-09 12:58:55 +0400[diff] [blame]2output:
3 all: '| tee -a /var/log/cloud-init-output.log /dev/tty0'
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]4write_files:
5 - owner: root:root
6 path: /etc/cloud/master_environment
7 permissions: '0644'
8 content: |
Dennis Dmitriev8fa33f92018-10-10 01:13:48 +0300[diff] [blame]9 [ -f /etc/cloud/master_environment_override ] && . /etc/cloud/master_environment_override
10 export SALT_MASTER_DEPLOY_IP=${SALT_MASTER_DEPLOY_IP:-"172.16.164.15"}
11 export SALT_MASTER_MINION_ID=${SALT_MASTER_MINION_ID:-"cfg01.deploy-name.local"}
azvyagintsev829bfd82018-12-19 12:58:17 +0200[diff] [blame]12
Dennis Dmitriev8fa33f92018-10-10 01:13:48 +0300[diff] [blame]13 export http_proxy=${http_proxy:-""}
14 export https_proxy=${https_proxy:-""}
azvyagintsev829bfd82018-12-19 12:58:17 +0200[diff] [blame]15
16 export MCP_VERSION=${MCP_VERSION:-"stable"}
17
Dennis Dmitriev8fa33f92018-10-10 01:13:48 +0300[diff] [blame]18 export PIPELINES_FROM_ISO=${PIPELINES_FROM_ISO:-"true"}
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]19 export MK_PIPELINES_URL=${MK_PIPELINES_URL:-"https://gerrit.mcp.mirantis.com/mk/mk-pipelines.git"}
20 export PIPELINE_LIB_URL=${PIPELINE_LIB_URL:-"https://gerrit.mcp.mirantis.com/mcp-ci/pipeline-library.git"}
azvyagintsev829bfd82018-12-19 12:58:17 +0200[diff] [blame]21
22 export MCP_SALT_REPO_URL=${MCP_SALT_REPO_URL:-"http://mirror.mirantis.com/"}
23 export MCP_SALT_REPO=${MCP_SALT_REPO:-"deb [arch=amd64] $MCP_SALT_REPO_URL/$MCP_VERSION/salt-formulas/xenial xenial main"}
azvyagintsevaa0c4842019-05-16 12:30:25 +0300[diff] [blame]24
25 export ENABLE_MCP_SALT_REPO_UPDATES=${ENABLE_MCP_SALT_REPO_UPDATES:-"true"}
azvyagintsev829bfd82018-12-19 12:58:17 +0200[diff] [blame]26 export MCP_SALT_REPO_UPDATES=${MCP_SALT_REPO_UPDATES:-"deb [arch=amd64] $MCP_SALT_REPO_URL/update/$MCP_VERSION/salt-formulas/xenial xenial main"}
27 export MCP_SALT_REPO_KEY=${MCP_SALT_REPO_KEY:-"${MCP_SALT_REPO_URL}/${MCP_VERSION}/salt-formulas/xenial/archive-salt-formulas.key"}
28
Dennis Dmitriev8fa33f92018-10-10 01:13:48 +0300[diff] [blame]29 export FORMULAS=${FORMULAS:-"salt-formula-*"}
azvyagintsev829bfd82018-12-19 12:58:17 +0200[diff] [blame]30 export SALT_OPTS=${SALT_OPTS:-"-l debug -t 30 --retcode-passthrough --no-color"}
Dennis Dmitriev8fa33f92018-10-10 01:13:48 +0300[diff] [blame]31 export CFG_BOOTSTRAP_DRIVE_URL=${CFG_BOOTSTRAP_DRIVE_URL:-""}
azvyagintsev017fb572019-06-11 16:15:58 +0300[diff] [blame]32 export WGET_OPTS=${WGET_OPTS:-"--progress=dot:mega --waitretry=15 --retry-connrefused"}
azvyagintsev829bfd82018-12-19 12:58:17 +0200[diff] [blame]33
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]34master_config:
35 - &master_config |
36 function _post_maas_cfg() {
azvyagintseva126bf12019-05-16 12:55:35 +0300[diff] [blame]37 # In newer maas version, apache2 disabled, so API avaible on direct service port only
38 if [[ ! $(systemctl is-active --quiet apache2) ]] ; then
39 sed -i 's/API_SERVER=.*/API_SERVER=localhost:5240/g' /var/lib/maas/.maas_login.sh
40 fi
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]41 source /var/lib/maas/.maas_login.sh
42 # disable backports for maas enlist pkg repo. Those operation enforce maas
43 # to re-create sources.list and drop [source] fetch-definition from it.
44 main_arch_id=$(maas ${PROFILE} package-repositories read | jq -r ".[] | select(.name==\"main_archive\") | .id")
45 maas ${PROFILE} package-repository update ${main_arch_id} "disabled_pockets=backports" || true
46 maas ${PROFILE} package-repository update ${main_arch_id} "disabled_components=multiverse" || true
47 maas ${PROFILE} package-repository update ${main_arch_id} "arches=amd64" || true
48 # Remove stale notifications, which appear during sources configuration.
49 for i in $(maas ${PROFILE} notifications read | jq ".[]| .id"); do
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]50 maas ${PROFILE} notification delete ${i} || true
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]51 done
52 }
53
54 function process_formulas(){
55 local RECLASS_ROOT=${RECLASS_ROOT:-/srv/salt/reclass/}
56 local FORMULAS_PATH=${FORMULAS_PATH:-/usr/share/salt-formulas}
azvyagintsev017fb572019-06-11 16:15:58 +0300[diff] [blame]57 local _tname="/tmp/archive-salt-formulas_${RANDOM}.key"
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]58
azvyagintsev017fb572019-06-11 16:15:58 +0300[diff] [blame]59 wget ${WGET_OPTS} -O ${_tname} ${MCP_SALT_REPO_KEY}
60 apt-key add ${_tname}
61
azvyagintsev829bfd82018-12-19 12:58:17 +0200[diff] [blame]62 echo "${MCP_SALT_REPO}" > /etc/apt/sources.list.d/mcp_salt.list
azvyagintsevaa0c4842019-05-16 12:30:25 +0300[diff] [blame]63 if [[ "${ENABLE_MCP_SALT_REPO_UPDATES}" == "true" ]] ; then
64 echo "${MCP_SALT_REPO_UPDATES}" >> /etc/apt/sources.list.d/mcp_salt.list
65 fi
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]66 apt update && apt install -y "${FORMULAS}"
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]67
68 [ ! -d ${RECLASS_ROOT}/classes/service ] && mkdir -p ${RECLASS_ROOT}/classes/service
69 for formula_service in $(ls /usr/share/salt-formulas/reclass/service/); do
70 #Since some salt formula names contain "-" and in symlinks they should contain "_" adding replacement
71 formula_service=${formula_service//-/$"_"}
72 if [ ! -L "${RECLASS_ROOT}/classes/service/${formula_service}" ]; then
73 ln -sf ${FORMULAS_PATH}/reclass/service/${formula_service} ${RECLASS_ROOT}/classes/service/${formula_service}
74 fi
75 done
76 }
77
78 function enable_services(){
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]79 local services="salt-api salt-master salt-minion"
80 if [ ! -f /opt/postgresql_in_docker ]; then
81 local services="${services} postgresql.service"
82 fi
83 for s in ${services} ; do
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]84 systemctl enable ${s} || true
85 systemctl restart ${s} || true
86 done
87 }
88
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]89 function process_maas(){
Ivan Berezovskiya4691402019-03-12 14:18:01 +0400[diff] [blame]90 maas_cluster_enabled=$(salt-call --out=newline_values_only pillar.get maas:cluster:enabled | tr "[:upper:]" "[:lower:]" )
91 _region=$(salt-call --out=newline_values_only pillar.get maas:region:enabled | tr "[:upper:]" "[:lower:]" )
Stanislav Riazanov450ceaa2018-12-18 20:17:07 +0400[diff] [blame]92 if ([ -f /opt/postgresql_in_docker ] && ([[ "${maas_cluster_enabled}" == "true" ]] || [[ "${_region}" == "true" ]])); then
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]93 systemctl disable postgresql.service
94 wait_for_postgresql
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]95 salt-call ${SALT_OPTS} state.apply postgresql.client
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]96 else
Ivan Berezovskiya4691402019-03-12 14:18:01 +0400[diff] [blame]97 postgres_enabled=$(salt-call --out=newline_values_only pillar.get postgresql:server:enabled | tr "[:upper:]" "[:lower:]")
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]98 if [[ "${postgres_enabled}" == "true" ]]; then
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]99 salt-call ${SALT_OPTS} state.apply postgresql.server
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]100 fi
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]101 fi
102
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]103 if [[ "${maas_cluster_enabled}" == "true" ]]; then
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]104 salt-call ${SALT_OPTS} state.apply maas.cluster
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]105 else
106 echo "WARNING: maas.cluster skipped!"
107 fi
108 if [[ "$_region" == "true" ]]; then
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]109 salt-call ${SALT_OPTS} state.apply maas.region
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]110 else
111 echo "WARNING: maas.region skipped!"
112 fi
113 # Do not move it under first cluster-only check!
114 if [[ "${maas_cluster_enabled}" == "true" ]]; then
115 _post_maas_cfg
116 fi
117 }
118
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]119 function wait_for_postgresql() {
120 salt_string="salt-call --out=text pillar.get postgresql:client:server:server01:admin"
azvyagintsevf2576472019-05-21 20:06:34 +0300[diff] [blame]121 local pg_port=$(${salt_string}:port | awk '{print $2}')
122 local pg_host=$(${salt_string}:host | awk '{print $2}')
123 local wait_time=0
124 until [[ $(/usr/bin/pg_isready -h ${pg_host} -p ${pg_port} | awk '{ print $3 }' ) == 'accepting' ]]; do
125 if [[ $wait_time -gt 20 ]]; then
126 echo "ERROR: wait_for_postgresql failed" ; exit 1
127 fi
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]128 echo "Waiting for postgres at: ${pg_host}:${pg_port}"
129 sleep $(( wait_time++ ));
130 done
131 }
132
Ivan Berezovskiy11d374b2018-11-26 18:00:23 +0400[diff] [blame]133 function wait_for_jenkins() {
134 # Wait for jenkins to be functional
azvyagintsevf2576472019-05-21 20:06:34 +0300[diff] [blame]135 local j_host=$(salt-call --out=newline_values_only pillar.get jenkins:client:master:host)
136 local j_host=${j_host:-"localhost"}
137 local j_port=$(salt-call --out=newline_values_only pillar.get jenkins:client:master:port)
138 local j_port=${j_port:-"8081"}
139 local j_prefix=$(salt-call --out=newline_values_only pillar.get jenkins:client:master:url_prefix)
140 local j_prefix=${j_prefix:-""}
141 local wait_time=0
142 until [[ $(curl -sL -w "%{http_code}" ${j_host}:${j_port}${j_prefix} -o /dev/null) == 200 ]]; do
143 if [[ $wait_time -gt 20 ]]; then
144 echo "ERROR: wait_for_jenkins failed" ; exit 1
145 fi
Ivan Berezovskiy11d374b2018-11-26 18:00:23 +0400[diff] [blame]146 sleep $(( wait_time++ ))
147 done
148 }
149
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]150 function process_swarm() {
azvyagintsevf2576472019-05-21 20:06:34 +0300[diff] [blame]151 local _swarm=$(salt-call --out=newline_values_only pillar.get docker:swarm:advertise_addr)
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]152 if [[ "${_swarm}" != "" ]]; then
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]153 salt-call ${SALT_OPTS} state.apply docker.swarm
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]154 fi
Ivan Berezovskiya4691402019-03-12 14:18:01 +0400[diff] [blame]155 _docker_enabled=$(salt-call --out=newline_values_only pillar.get docker:client:enabled | tr "[:upper:]" "[:lower:]")
156 if [[ "${_docker_enabled}" == "true" ]]; then
157 salt-call ${SALT_OPTS} state.apply docker.client.images
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]158 salt-call ${SALT_OPTS} state.apply docker.client
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]159 fi
Ivan Berezovskiy5f7a80f2018-12-17 18:08:31 +0400[diff] [blame]160 }
161
Ivan Berezovskiyfba80942018-11-16 13:11:44 +0400[diff] [blame]162 function process_jenkins() {
163 # INFO: jenkins is in docker in 2019.x releases
Ivan Berezovskiy040c3c62018-11-30 16:48:49 +0400[diff] [blame]164 if [ -f /opt/jenkins_in_docker ]; then
165 rm -v /opt/jenkins_in_docker
Ivan Berezovskiyfba80942018-11-16 13:11:44 +0400[diff] [blame]166 export JENKINS_HOME=/srv/volumes/jenkins
Ivan Berezovskiya4691402019-03-12 14:18:01 +0400[diff] [blame]167 _jenkins_enabled=$(salt-call --out=newline_values_only pillar.get jenkins:client:enabled | tr "[:upper:]" "[:lower:]")
168 if [[ "${_jenkins_enabled}" == "true" ]]; then
Ivan Berezovskiy11d374b2018-11-26 18:00:23 +0400[diff] [blame]169 wait_for_jenkins
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]170 salt-call ${SALT_OPTS} state.apply jenkins.client
Ivan Berezovskiyfba80942018-11-16 13:11:44 +0400[diff] [blame]171 fi
172 else
173 export JENKINS_HOME=/var/lib/jenkins
174 systemctl enable jenkins
175 systemctl start jenkins
Ivan Berezovskiy11d374b2018-11-26 18:00:23 +0400[diff] [blame]176 wait_for_jenkins
Ivan Berezovskiya4691402019-03-12 14:18:01 +0400[diff] [blame]177 _jenkins_enabled=$(salt-call --out=newline_values_only pillar.get jenkins:client:enabled | tr "[:upper:]" "[:lower:]")
178 if [[ "${_jenkins_enabled}" == "true" ]]; then
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]179 salt-call ${SALT_OPTS} state.apply jenkins.client
Ivan Berezovskiyfba80942018-11-16 13:11:44 +0400[diff] [blame]180 fi
181 systemctl stop jenkins
182 find ${JENKINS_HOME}/jenkins.model.JenkinsLocationConfiguration.xml -type f -print0 | xargs -0 sed -i -e "s/10.167.4.15/$SALT_MASTER_DEPLOY_IP/g"
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]183 fi
Ivan Berezovskiyfba80942018-11-16 13:11:44 +0400[diff] [blame]184
Ivan Berezovskiy73cad8e2018-11-23 18:53:13 +0400[diff] [blame]185 ssh-keyscan cfg01 > ${JENKINS_HOME}/.ssh/known_hosts && chmod a+r ${JENKINS_HOME}/.ssh/known_hosts || true
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]186 }
187
azvyagintsevf2576472019-05-21 20:06:34 +0300[diff] [blame]188 function wait_for_salt(){
189 local wait_time=0
190 until $(salt-call --timeout=30 test.ping &> /dev/null ); do
191 if [[ $wait_time -gt 15 ]]; then
192 echo "ERROR: wait_for_salt failed" ; exit 1
193 fi
194 sleep $(( wait_time++ ))
195 done
196 }
197
azvyagintsev9a0d7e52018-10-17 20:15:22 +0300[diff] [blame]198 function process_salt_base(){
199 # PROD-21179| PROD-21792 : To describe such trick's around salt.XX state ordering
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]200 salt-call ${SALT_OPTS} state.apply salt.master
azvyagintsev9a0d7e52018-10-17 20:15:22 +0300[diff] [blame]201 # Wait for salt-master to wake up after restart
202 sleep 5
azvyagintsevf2576472019-05-21 20:06:34 +0300[diff] [blame]203 wait_for_salt
azvyagintsev9a0d7e52018-10-17 20:15:22 +0300[diff] [blame]204 # Run salt.minion.ca to prepare CA certificate before salt.minion.cert is used
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]205 salt-call ${SALT_OPTS} state.apply salt.minion.ca
Ann Taraday5a63afc2018-12-20 23:00:11 +0400[diff] [blame]206 # Add sleep for completion of postponed restart of salt-minion. PROD-25986
207 sleep 15
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]208 salt-call ${SALT_OPTS} state.apply salt.minion
azvyagintsev9a0d7e52018-10-17 20:15:22 +0300[diff] [blame]209 # Wait for salt-minion to wake up after restart
azvyagintsevf2576472019-05-21 20:06:34 +0300[diff] [blame]210 wait_for_salt
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]211 salt-call ${SALT_OPTS} state.apply salt
212 salt-call ${SALT_OPTS} state.apply reclass
azvyagintsev9a0d7e52018-10-17 20:15:22 +0300[diff] [blame]213 }
214 #== Body ==================================================================#
215
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]216 . /etc/cloud/master_environment
217 printenv | sort -u
azvyagintsevf2576472019-05-21 20:06:34 +0300[diff] [blame]218 # WA for https://gerrit.mcp.mirantis.com/#/c/34514/
219 echo "INFO: stopping orphaned maas"
220 systemctl stop maas-rackd.service maas-dhcpd.service maas-dhcpd6.service || true
221 systemctl disable maas-rackd.service maas-dhcpd.service maas-dhcpd6.service || true
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]222
223 echo "Preparing metadata model"
224 if [[ -n "${CFG_BOOTSTRAP_DRIVE_URL}" ]]; then
azvyagintsev829bfd82018-12-19 12:58:17 +0200[diff] [blame]225 echo "CFG_BOOTSTRAP_DRIVE_URL detected,downloading..."
226 _tname="cfg01_${RANDOM}.iso"
azvyagintsev017fb572019-06-11 16:15:58 +0300[diff] [blame]227 wget ${WGET_OPTS} -O /${_tname} "${CFG_BOOTSTRAP_DRIVE_URL}"
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]228 mount -o loop /${_tname} /mnt
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]229 else
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]230 mount $(blkid -t TYPE=iso9660 -o device) /mnt
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]231 fi
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]232 rsync -av /mnt/mcp/model/ /srv/salt/reclass/
233 chown -R root:root /srv/salt/reclass/ || true
234 find /srv/salt/reclass/classes/ -type d -exec chmod 0755 {} \;
235 find /srv/salt/reclass/classes/ -type f -exec chmod 0644 {} \;
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]236
237 echo "Configuring salt"
238 envsubst < /root/minion.conf > /etc/salt/minion.d/minion.conf
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]239 if [ -f /mnt/mcp/gpg/salt_master_pillar.asc ]; then
azvyagintsevf2576472019-05-21 20:06:34 +0300[diff] [blame]240 mkdir -p /etc/salt/gpgkeys
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]241 chmod 0700 /etc/salt/gpgkeys
242 GNUPGHOME=/etc/salt/gpgkeys gpg --import /mnt/mcp/gpg/salt_master_pillar.asc
Dmitry Pyzhov15c0ac42018-12-11 17:10:08 +0300[diff] [blame]243 fi
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]244 enable_services
245
246 # Wait for salt-master and salt-minion to wake up after restart
azvyagintsevf2576472019-05-21 20:06:34 +0300[diff] [blame]247 wait_for_salt
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]248
249 while true; do
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]250 salt-key | grep -w "$SALT_MASTER_MINION_ID" && break
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]251 sleep 5
252 done
253
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]254 echo "updating local git repos"
255 if [[ "$PIPELINES_FROM_ISO" == "true" ]] ; then
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]256 rsync -av /mnt/mcp/mk-pipelines/ /home/repo/mk/mk-pipelines/
257 rsync -av /mnt/mcp/pipeline-library/ /home/repo/mcp-ci/pipeline-library/
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]258 umount /mnt || true
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]259 chown -R git:www-data /home/repo/mk/mk-pipelines /home/repo/mcp-ci/pipeline-library
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]260 else
261 umount /mnt || true
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]262 git clone --mirror "${MK_PIPELINES_URL}" /home/repo/mk/mk-pipelines/
263 git clone --mirror "${PIPELINE_LIB_URL}" /home/repo/mcp-ci/pipeline-library/
264 chown -R git:www-data /home/repo/mk/mk-pipelines /home/repo/mcp-ci/pipeline-library
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]265 fi
266
267 process_formulas
268
269 salt-call saltutil.refresh_pillar
270 salt-call saltutil.sync_all
271 if ! $(reclass -n ${SALT_MASTER_MINION_ID} > /dev/null ) ; then
272 echo "ERROR: Reclass render failed!"
273 exit 1
274 fi
275
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]276 salt-call ${SALT_OPTS} state.apply linux.system.repo,linux.network,linux.system,linux,openssh
azvyagintsev9a0d7e52018-10-17 20:15:22 +0300[diff] [blame]277 process_salt_base
Stanislav Riazanov450ceaa2018-12-18 20:17:07 +0400[diff] [blame]278
Ivan Berezovskiya4691402019-03-12 14:18:01 +0400[diff] [blame]279 systemctl stop apache2 || true
280 systemctl disable apache2 || true
281 chmod 0 /etc/init.d/apache2
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]282
Ivan Berezovskiya4691402019-03-12 14:18:01 +0400[diff] [blame]283 _kfg_enabled=$(salt-call --out=newline_values_only pillar.get kubernetes:master:enabled | tr "[:upper:]" "[:lower:]")
284 if [ "${_kfg_enabled}" != "true" ]; then
Martin Polreich6a64e542019-05-29 15:02:32 +0200[diff] [blame]285 _nginx_enabled=$(salt-call --out=newline_values_only pillar.get nginx:server:enabled | tr "[:upper:]" "[:lower:]")
286 if [[ "${_nginx_enabled}" == "true" ]]; then
287 salt-call ${SALT_OPTS} state.apply nginx.server
288 fi
Ivan Berezovskiya4691402019-03-12 14:18:01 +0400[diff] [blame]289 if [ -f /opt/jenkins_in_docker ] || [ -f /opt/postgresql_in_docker ]; then
290 process_swarm
291 fi
292 if [ -f /opt/jenkins_in_docker ] && [ ! -f /opt/postgresql_in_docker ]; then
293 docker stack rm postgresql || true
294 fi
295 else
Ivan Berezovskiya4691402019-03-12 14:18:01 +0400[diff] [blame]296 salt-call ${SALT_OPTS} state.apply etcd.server.service
297 salt-call ${SALT_OPTS} state.apply kubernetes.master.kube-addons
298 _images=$(salt-call --out=newline_values_only pillar.get kubernetes:pool:images)
299 if [ -n "${_images}" ]; then
300 salt-call ${SALT_OPTS} state.apply kubernetes.pool.images
301 fi
302 salt-call ${SALT_OPTS} state.apply kubernetes exclude=kubernetes.master.setup,kubernetes.client
303 salt-call ${SALT_OPTS} state.apply kubernetes.master
304 salt-call ${SALT_OPTS} state.apply nginx.server
305 _ldap_enabled=$(salt-call --out=newline_values_only pillar.get openldap:client:enabled | tr "[:upper:]" "[:lower:]")
306 if [ "${_ldap_enabled}" == "true" ]; then
307 salt-call ${SALT_OPTS} state.apply openldap.client
308 fi
309 _gerrit_enabled=$(salt-call --out=newline_values_only pillar.get gerrit:client:enabled | tr "[:upper:]" "[:lower:]")
310 if [ "${_gerrit_enabled}" == "true" ]; then
311 salt-call ${SALT_OPTS} state.apply gerrit.client
312 fi
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]313 fi
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]314
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]315 process_jenkins
Stanislav Riazanovc69bfc02018-12-07 16:52:14 +0400[diff] [blame]316 process_maas
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]317
Ivan Berezovskiyfba80942018-11-16 13:11:44 +0400[diff] [blame]318 stop_services="salt-api salt-master salt-minion maas-rackd.service maas-regiond.service postgresql.service"
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]319 for s in ${stop_services} ; do
320 systemctl stop ${s} || true
321 sleep 1
322 done
azvyagintsevc1c62042018-09-26 11:47:49 +0300[diff] [blame]323 # Set bootstrap-done flag for future
324 mkdir -p /var/log/mcp/
325 touch /var/log/mcp/.bootstrap_done
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]326 sync
Dzmitry Stremkouski9dd6a1b2019-01-24 12:03:58 +0100[diff] [blame]327 shutdown -r now
Ivan Berezovskiy77187172018-09-14 15:47:36 +0400[diff] [blame]328runcmd:
azvyagintsevc1c62042018-09-26 11:47:49 +0300[diff] [blame]329 - [bash, -cex, *master_config]