blob: 81a87149e25bd6597bc60b9e14eff67f44099035 [file] [log] [blame]
Richard Felkl4c4829d2017-11-11 00:12:20 +01001#!/bin/bash -xe
alexzd90608b2018-04-12 23:49:03 +02002
azvyagintsevb2a55792018-06-05 17:38:17 +03003#==============================================================================
4# Required packages:
5# apt-get install -y jq
6#==============================================================================
Petr Ruzicka6f9aea02018-06-19 16:46:01 +02007export SALT_MASTER_DEPLOY_IP=${SALT_MASTER_DEPLOY_IP:-"172.16.164.15"}
8export SALT_MASTER_MINION_ID=${SALT_MASTER_MINION_ID:-"cfg01.deploy-name.local"}
9export DEPLOY_NETWORK_GW=${DEPLOY_NETWORK_GW:-"172.16.164.1"}
10export DEPLOY_NETWORK_NETMASK=${DEPLOY_NETWORK_NETMASK:-"255.255.255.192"}
Petr Ruzickaa5407452018-07-03 12:30:16 +020011export DEPLOY_NETWORK_MTU=${DEPLOY_NETWORK_MTU:-"1500"}
Petr Ruzicka6f9aea02018-06-19 16:46:01 +020012export DNS_SERVERS=${DNS_SERVERS:-"8.8.8.8"}
13export http_proxy=${http_proxy:-""}
14export https_proxy=${https_proxy:-""}
15export PIPELINES_FROM_ISO=${PIPELINES_FROM_ISO:-"true"}
16export PIPELINE_REPO_URL=${PIPELINE_REPO_URL:-"https://github.com/Mirantis"}
17export MCP_VERSION=${MCP_VERSION:-"stable"}
18export MCP_SALT_REPO_KEY=${MCP_SALT_REPO_KEY:-"http://apt.mirantis.com/public.gpg"}
19export MCP_SALT_REPO_URL=${MCP_SALT_REPO_URL:-"http://apt.mirantis.com/xenial"}
Richard Felkl98b45342018-04-06 13:30:28 +020020export MCP_SALT_REPO="deb [arch=amd64] $MCP_SALT_REPO_URL $MCP_VERSION salt"
21export FORMULAS="salt-formula-*"
azvyagintsevb2a55792018-06-05 17:38:17 +030022# for cloning from aptly image use port 8088
Jiri Broulikcee20532018-01-08 13:30:15 +010023#export PIPELINE_REPO_URL=http://172.16.47.182:8088
azvyagintsevb2a55792018-06-05 17:38:17 +030024#
25SALT_OPTS="-l debug -t 10 --retcode-passthrough --no-color"
Richard Felkl4c4829d2017-11-11 00:12:20 +010026
azvyagintsevb2a55792018-06-05 17:38:17 +030027# Funcs =======================================================================
alexzd90608b2018-04-12 23:49:03 +020028function _post_maas_cfg(){
azvyagintsevb2a55792018-06-05 17:38:17 +030029 chmod 0755 /var/lib/maas/.maas_login.sh
30 source /var/lib/maas/.maas_login.sh
31 # disable backports for maas enlist pkg repo. Those operation enforce maas
32 # to re-create sources.list and drop [source] fetch-definition from it.
33 main_arch_id=$(maas ${PROFILE} package-repositories read | jq -r '.[] | select(.name=="main_archive") | .id')
34 maas ${PROFILE} package-repository update ${main_arch_id} "disabled_pockets=backports" || true
35 maas ${PROFILE} package-repository update ${main_arch_id} "disabled_components=multiverse" || true
36 maas ${PROFILE} package-repository update ${main_arch_id} "arches=amd64" || true
37 # Remove stale notifications, which appear during sources configuration.
38 for i in $(maas ${PROFILE} notifications read | jq '.[]| .id'); do
39 maas ${PROFILE} notification delete ${i} || true
Pavel Cizinsky5f8fb092018-05-30 17:27:19 +020040 done
alexzd90608b2018-04-12 23:49:03 +020041}
42
azvyagintsevb2a55792018-06-05 17:38:17 +030043function process_formulas(){
44 local RECLASS_ROOT=${RECLASS_ROOT:-/srv/salt/reclass/}
45 local FORMULAS_PATH=${FORMULAS_PATH:-/usr/share/salt-formulas}
46
47 echo "Configuring formulas ..."
48 curl -s $MCP_SALT_REPO_KEY | apt-key add -
49 echo $MCP_SALT_REPO > /etc/apt/sources.list.d/mcp_salt.list
50 apt-get update
51 apt-get install -y $FORMULAS
52
53 [ ! -d ${RECLASS_ROOT}/classes/service ] && mkdir -p ${RECLASS_ROOT}/classes/service
54 for formula_service in $(ls /usr/share/salt-formulas/reclass/service/); do
55 #Since some salt formula names contain "-" and in symlinks they should contain "_" adding replacement
56 formula_service=${formula_service//-/$'_'}
Dennis Dmitrieve00716b2018-07-05 14:50:45 +030057 if [ ! -L "${RECLASS_ROOT}/classes/service/${formula_service}" ]; then
azvyagintsevb2a55792018-06-05 17:38:17 +030058 ln -sf ${FORMULAS_PATH}/reclass/service/${formula_service} ${RECLASS_ROOT}/classes/service/${formula_service}
Dennis Dmitrieve00716b2018-07-05 14:50:45 +030059 fi
azvyagintsevb2a55792018-06-05 17:38:17 +030060 done
61}
62
63function enable_services(){
64 local services="postgresql.service salt-api salt-master salt-minion jenkins"
65 for s in ${services} ; do
66 systemctl enable ${s} || true
67 systemctl restart ${s} || true
68 done
69}
70
71function process_network(){
72 echo "Configuring network interfaces"
73 find /etc/network/interfaces.d/ -type f -delete
74 kill $(pidof /sbin/dhclient) || /bin/true
75 envsubst < /root/interfaces > /etc/network/interfaces
76 ip a flush dev ens3
77 rm -f /var/run/network/ifstate.ens3
78 if [[ $(grep -E '^\ *gateway\ ' /etc/network/interfaces) ]]; then
79 (ip r s | grep ^default) && ip r d default || /bin/true
80 fi;
81 ifup ens3
82}
83
azvyagintsev42a47622018-07-06 13:12:08 +030084function process_maas(){
85 _region=$(salt-call --out=text pillar.get maas:region:enabled | awk '{print $2}' | tr "[:upper:]" "[:lower:]" )
86 if [[ "${maas_cluster_enabled}" == 'true' ]]; then
87 salt-call ${SALT_OPTS} state.sls maas.cluster
88 else
89 echo 'WARNING: maas.cluster skipped!'
90 fi
91 if [[ "$_region" == 'true' ]]; then
92 salt-call ${SALT_OPTS} state.sls maas.region
93 else
94 echo 'WARNING: maas.region skipped!'
95 fi
96 # Don't move it under first cluster-only check!
97 if [[ "${maas_cluster_enabled}" == 'true' ]]; then
98 _post_maas_cfg
99 fi
100}
101
102function process_jenkins(){
103 _jjobs=$(salt-call --out=text pillar.get jenkins:client:job | awk '{print $2}')
104 if [[ "${_jjobs}" != '' ]]; then
105 salt-call ${SALT_OPTS} state.sls jenkins.client
106 fi
107}
108
azvyagintsevb2a55792018-06-05 17:38:17 +0300109# Body ========================================================================
110process_network
Richard Felkl4c4829d2017-11-11 00:12:20 +0100111
112echo "Preparing metadata model"
113mount /dev/cdrom /mnt/
Leontii Istomin68553f12018-02-21 18:10:12 +0100114cp -rT /mnt/model/model /srv/salt/reclass
azvyagintsevb2a55792018-06-05 17:38:17 +0300115chown -R root:root /srv/salt/reclass/* || true
alexzd90608b2018-04-12 23:49:03 +0200116chown -R root:root /srv/salt/reclass/.git* || true
117chmod -R 644 /srv/salt/reclass/classes/cluster/* || true
118chmod -R 644 /srv/salt/reclass/classes/system/* || true
Richard Felkl4c4829d2017-11-11 00:12:20 +0100119
Richard Felkl4c4829d2017-11-11 00:12:20 +0100120echo "Configuring salt"
Richard Felkl4c4829d2017-11-11 00:12:20 +0100121envsubst < /root/minion.conf > /etc/salt/minion.d/minion.conf
azvyagintsevb2a55792018-06-05 17:38:17 +0300122enable_services
Dennis Dmitrieve00716b2018-07-05 14:50:45 +0300123
124# Wait for salt-master and salt-minion to wake up after restart
125salt-call --timeout=120 test.ping
126
Richard Felkl4c4829d2017-11-11 00:12:20 +0100127while true; do
128 salt-key | grep "$SALT_MASTER_MINION_ID" && break
129 sleep 5
130done
azvyagintsevb2a55792018-06-05 17:38:17 +0300131
Richard Felkl4c4829d2017-11-11 00:12:20 +0100132sleep 5
alexzd90608b2018-04-12 23:49:03 +0200133for i in $(salt-key -l accepted | grep -v Accepted | grep -v "$SALT_MASTER_MINION_ID"); do
Richard Felkl4c4829d2017-11-11 00:12:20 +0100134 salt-key -d $i -y
135done
136
137find /var/lib/jenkins/jenkins.model.JenkinsLocationConfiguration.xml -type f -print0 | xargs -0 sed -i -e 's/10.167.4.15/'$SALT_MASTER_DEPLOY_IP'/g'
138
azvyagintsevb2a55792018-06-05 17:38:17 +0300139echo "updating local git repos"
alexzd90608b2018-04-12 23:49:03 +0200140if [[ "$PIPELINES_FROM_ISO" == "true" ]] ; then
Jiri Broulikcee20532018-01-08 13:30:15 +0100141 cp -r /mnt/mk-pipelines/* /home/repo/mk/mk-pipelines/
142 cp -r /mnt/pipeline-library/* /home/repo/mcp-ci/pipeline-library/
alexzd90608b2018-04-12 23:49:03 +0200143 umount /dev/cdrom || true
Jiri Broulikcee20532018-01-08 13:30:15 +0100144 chown -R git:www-data /home/repo/mk/mk-pipelines/*
145 chown -R git:www-data /home/repo/mcp-ci/pipeline-library/*
146else
alexzd90608b2018-04-12 23:49:03 +0200147 umount /dev/cdrom || true
148 git clone --mirror "${PIPELINE_REPO_URL}/mk-pipelines.git" /home/repo/mk/mk-pipelines/
149 git clone --mirror "${PIPELINE_REPO_URL}/pipeline-library.git" /home/repo/mcp-ci/pipeline-library/
Jiri Broulikcee20532018-01-08 13:30:15 +0100150 chown -R git:www-data /home/repo/mk/mk-pipelines/*
151 chown -R git:www-data /home/repo/mcp-ci/pipeline-library/*
152fi
153
azvyagintsevb2a55792018-06-05 17:38:17 +0300154process_formulas
Richard Felkl98b45342018-04-06 13:30:28 +0200155
Richard Felkl4c4829d2017-11-11 00:12:20 +0100156salt-call saltutil.refresh_pillar
157salt-call saltutil.sync_all
alexzd90608b2018-04-12 23:49:03 +0200158if ! $(reclass -n ${SALT_MASTER_MINION_ID} > /dev/null ) ; then
159 echo "ERROR: Reclass render failed!"
160 exit 1
Jiri Broulik0173a272018-04-11 10:56:35 +0200161fi
162
Dennis Dmitrievb5c17a02018-07-06 13:07:49 +0300163salt-call ${SALT_OPTS} state.sls linux.network,linux,openssh
Dennis Dmitrieve00716b2018-07-05 14:50:45 +0300164# PROD-21179: Run salt.minion.ca to prepare CA certificate before salt.minion.cert is used
165salt-call ${SALT_OPTS} state.sls salt.minion.ca
Dennis Dmitrievb5c17a02018-07-06 13:07:49 +0300166salt-call ${SALT_OPTS} state.sls salt
azvyagintsevb2a55792018-06-05 17:38:17 +0300167salt-call ${SALT_OPTS} pkg.install salt-master,salt-minion
Dennis Dmitrieve00716b2018-07-05 14:50:45 +0300168
Jiri Broulik6b7ca672018-04-19 13:16:32 +0200169sleep 5
Dennis Dmitrieve00716b2018-07-05 14:50:45 +0300170# Wait for salt-master and salt-minion to wake up after restart
171salt-call --timeout=120 test.ping
172
azvyagintsevb2a55792018-06-05 17:38:17 +0300173salt-call ${SALT_OPTS} state.sls salt
azvyagintsevb2a55792018-06-05 17:38:17 +0300174salt-call ${SALT_OPTS} state.sls reclass
Jiri Broulik1261ca32018-01-18 15:30:25 +0100175
azvyagintsev42a47622018-07-06 13:12:08 +0300176maas_cluster_enabled=$(salt-call --out=text pillar.get maas:cluster:enabled | awk '{print $2}' | tr "[:upper:]" "[:lower:]" )
177process_maas
alexzd90608b2018-04-12 23:49:03 +0200178
179ssh-keyscan cfg01 > /var/lib/jenkins/.ssh/known_hosts || true
180
azvyagintsev42a47622018-07-06 13:12:08 +0300181process_jenkins
Richard Felkl4c4829d2017-11-11 00:12:20 +0100182
azvyagintsevb2a55792018-06-05 17:38:17 +0300183stop_services="salt-api salt-master salt-minion jenkins maas-rackd.service maas-regiond.service postgresql.service"
184for s in ${stop_services} ; do
185 systemctl stop ${s} || true
186 sleep 1
187done
188sync
Dmitry Stremkouskia94b5f32017-12-02 00:41:54 +0300189reboot