Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / mcp / mcp-common-scripts / e00716b436edf216a624c79ab7f1a6baa1a958c7 / . / config-drive / master_config.sh
blob: 9039ba5356478e4c278125ec3282d88713b49dcb [file] [log] [blame]
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]1#!/bin/bash -xe
alexzd90608b2018-04-12 23:49:03 +0200[diff] [blame]2
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]3#==============================================================================
4# Required packages:
5# apt-get install -y jq
6#==============================================================================
Petr Ruzicka6f9aea02018-06-19 16:46:01 +0200[diff] [blame]7export SALT_MASTER_DEPLOY_IP=${SALT_MASTER_DEPLOY_IP:-"172.16.164.15"}
8export SALT_MASTER_MINION_ID=${SALT_MASTER_MINION_ID:-"cfg01.deploy-name.local"}
9export DEPLOY_NETWORK_GW=${DEPLOY_NETWORK_GW:-"172.16.164.1"}
10export DEPLOY_NETWORK_NETMASK=${DEPLOY_NETWORK_NETMASK:-"255.255.255.192"}
Petr Ruzickaa5407452018-07-03 12:30:16 +0200[diff] [blame]11export DEPLOY_NETWORK_MTU=${DEPLOY_NETWORK_MTU:-"1500"}
Petr Ruzicka6f9aea02018-06-19 16:46:01 +0200[diff] [blame]12export DNS_SERVERS=${DNS_SERVERS:-"8.8.8.8"}
13export http_proxy=${http_proxy:-""}
14export https_proxy=${https_proxy:-""}
15export PIPELINES_FROM_ISO=${PIPELINES_FROM_ISO:-"true"}
16export PIPELINE_REPO_URL=${PIPELINE_REPO_URL:-"https://github.com/Mirantis"}
17export MCP_VERSION=${MCP_VERSION:-"stable"}
18export MCP_SALT_REPO_KEY=${MCP_SALT_REPO_KEY:-"http://apt.mirantis.com/public.gpg"}
19export MCP_SALT_REPO_URL=${MCP_SALT_REPO_URL:-"http://apt.mirantis.com/xenial"}
Richard Felkl98b45342018-04-06 13:30:28 +0200[diff] [blame]20export MCP_SALT_REPO="deb [arch=amd64] $MCP_SALT_REPO_URL $MCP_VERSION salt"
21export FORMULAS="salt-formula-*"
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]22# for cloning from aptly image use port 8088
Jiri Broulikcee20532018-01-08 13:30:15 +0100[diff] [blame]23#export PIPELINE_REPO_URL=http://172.16.47.182:8088
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]24#
25SALT_OPTS="-l debug -t 10 --retcode-passthrough --no-color"
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]26
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]27# Funcs =======================================================================
alexzd90608b2018-04-12 23:49:03 +0200[diff] [blame]28function _post_maas_cfg(){
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]29 chmod 0755 /var/lib/maas/.maas_login.sh
30 source /var/lib/maas/.maas_login.sh
31 # disable backports for maas enlist pkg repo. Those operation enforce maas
32 # to re-create sources.list and drop [source] fetch-definition from it.
33 main_arch_id=$(maas ${PROFILE} package-repositories read | jq -r '.[] | select(.name=="main_archive") | .id')
34 maas ${PROFILE} package-repository update ${main_arch_id} "disabled_pockets=backports" || true
35 maas ${PROFILE} package-repository update ${main_arch_id} "disabled_components=multiverse" || true
36 maas ${PROFILE} package-repository update ${main_arch_id} "arches=amd64" || true
37 # Remove stale notifications, which appear during sources configuration.
38 for i in $(maas ${PROFILE} notifications read | jq '.[]| .id'); do
39 maas ${PROFILE} notification delete ${i} || true
Pavel Cizinsky5f8fb092018-05-30 17:27:19 +0200[diff] [blame]40 done
alexzd90608b2018-04-12 23:49:03 +0200[diff] [blame]41}
42
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]43function process_formulas(){
44 local RECLASS_ROOT=${RECLASS_ROOT:-/srv/salt/reclass/}
45 local FORMULAS_PATH=${FORMULAS_PATH:-/usr/share/salt-formulas}
46
47 echo "Configuring formulas ..."
48 curl -s $MCP_SALT_REPO_KEY | apt-key add -
49 echo $MCP_SALT_REPO > /etc/apt/sources.list.d/mcp_salt.list
50 apt-get update
51 apt-get install -y $FORMULAS
52
53 [ ! -d ${RECLASS_ROOT}/classes/service ] && mkdir -p ${RECLASS_ROOT}/classes/service
54 for formula_service in $(ls /usr/share/salt-formulas/reclass/service/); do
55 #Since some salt formula names contain "-" and in symlinks they should contain "_" adding replacement
56 formula_service=${formula_service//-/$'_'}
Dennis Dmitrieve00716b2018-07-05 14:50:45 +0300[diff] [blame^]57 if [ ! -L "${RECLASS_ROOT}/classes/service/${formula_service}" ]; then
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]58 ln -sf ${FORMULAS_PATH}/reclass/service/${formula_service} ${RECLASS_ROOT}/classes/service/${formula_service}
Dennis Dmitrieve00716b2018-07-05 14:50:45 +0300[diff] [blame^]59 fi
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]60 done
61}
62
63function enable_services(){
64 local services="postgresql.service salt-api salt-master salt-minion jenkins"
65 for s in ${services} ; do
66 systemctl enable ${s} || true
67 systemctl restart ${s} || true
68 done
69}
70
71function process_network(){
72 echo "Configuring network interfaces"
73 find /etc/network/interfaces.d/ -type f -delete
74 kill $(pidof /sbin/dhclient) || /bin/true
75 envsubst < /root/interfaces > /etc/network/interfaces
76 ip a flush dev ens3
77 rm -f /var/run/network/ifstate.ens3
78 if [[ $(grep -E '^\ *gateway\ ' /etc/network/interfaces) ]]; then
79 (ip r s | grep ^default) && ip r d default || /bin/true
80 fi;
81 ifup ens3
82}
83
84# Body ========================================================================
85process_network
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]86
87echo "Preparing metadata model"
88mount /dev/cdrom /mnt/
Leontii Istomin68553f12018-02-21 18:10:12 +0100[diff] [blame]89cp -rT /mnt/model/model /srv/salt/reclass
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]90chown -R root:root /srv/salt/reclass/* || true
alexzd90608b2018-04-12 23:49:03 +0200[diff] [blame]91chown -R root:root /srv/salt/reclass/.git* || true
92chmod -R 644 /srv/salt/reclass/classes/cluster/* || true
93chmod -R 644 /srv/salt/reclass/classes/system/* || true
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]94
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]95echo "Configuring salt"
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]96envsubst < /root/minion.conf > /etc/salt/minion.d/minion.conf
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]97enable_services
Dennis Dmitrieve00716b2018-07-05 14:50:45 +0300[diff] [blame^]98
99# Wait for salt-master and salt-minion to wake up after restart
100salt-call --timeout=120 test.ping
101
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]102while true; do
103 salt-key | grep "$SALT_MASTER_MINION_ID" && break
104 sleep 5
105done
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]106
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]107sleep 5
alexzd90608b2018-04-12 23:49:03 +0200[diff] [blame]108for i in $(salt-key -l accepted | grep -v Accepted | grep -v "$SALT_MASTER_MINION_ID"); do
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]109 salt-key -d $i -y
110done
111
112find /var/lib/jenkins/jenkins.model.JenkinsLocationConfiguration.xml -type f -print0 | xargs -0 sed -i -e 's/10.167.4.15/'$SALT_MASTER_DEPLOY_IP'/g'
113
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]114echo "updating local git repos"
alexzd90608b2018-04-12 23:49:03 +0200[diff] [blame]115if [[ "$PIPELINES_FROM_ISO" == "true" ]] ; then
Jiri Broulikcee20532018-01-08 13:30:15 +0100[diff] [blame]116 cp -r /mnt/mk-pipelines/* /home/repo/mk/mk-pipelines/
117 cp -r /mnt/pipeline-library/* /home/repo/mcp-ci/pipeline-library/
alexzd90608b2018-04-12 23:49:03 +0200[diff] [blame]118 umount /dev/cdrom || true
Jiri Broulikcee20532018-01-08 13:30:15 +0100[diff] [blame]119 chown -R git:www-data /home/repo/mk/mk-pipelines/*
120 chown -R git:www-data /home/repo/mcp-ci/pipeline-library/*
121else
alexzd90608b2018-04-12 23:49:03 +0200[diff] [blame]122 umount /dev/cdrom || true
123 git clone --mirror "${PIPELINE_REPO_URL}/mk-pipelines.git" /home/repo/mk/mk-pipelines/
124 git clone --mirror "${PIPELINE_REPO_URL}/pipeline-library.git" /home/repo/mcp-ci/pipeline-library/
Jiri Broulikcee20532018-01-08 13:30:15 +0100[diff] [blame]125 chown -R git:www-data /home/repo/mk/mk-pipelines/*
126 chown -R git:www-data /home/repo/mcp-ci/pipeline-library/*
127fi
128
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]129process_formulas
Richard Felkl98b45342018-04-06 13:30:28 +0200[diff] [blame]130
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]131salt-call saltutil.refresh_pillar
132salt-call saltutil.sync_all
alexzd90608b2018-04-12 23:49:03 +0200[diff] [blame]133if ! $(reclass -n ${SALT_MASTER_MINION_ID} > /dev/null ) ; then
134 echo "ERROR: Reclass render failed!"
135 exit 1
Jiri Broulik0173a272018-04-11 10:56:35 +0200[diff] [blame]136fi
137
Dennis Dmitrieve00716b2018-07-05 14:50:45 +0300[diff] [blame^]138# PROD-21179: Run salt.minion.ca to prepare CA certificate before salt.minion.cert is used
139salt-call ${SALT_OPTS} state.sls salt.minion.ca
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]140salt-call ${SALT_OPTS} state.sls linux.network,linux,openssh,salt
141salt-call ${SALT_OPTS} pkg.install salt-master,salt-minion
Dennis Dmitrieve00716b2018-07-05 14:50:45 +0300[diff] [blame^]142
Jiri Broulik6b7ca672018-04-19 13:16:32 +0200[diff] [blame]143sleep 5
Dennis Dmitrieve00716b2018-07-05 14:50:45 +0300[diff] [blame^]144# Wait for salt-master and salt-minion to wake up after restart
145salt-call --timeout=120 test.ping
146
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]147salt-call ${SALT_OPTS} state.sls salt
148salt-call ${SALT_OPTS} state.sls maas.cluster,maas.region
149salt-call ${SALT_OPTS} state.sls reclass
Jiri Broulik1261ca32018-01-18 15:30:25 +0100[diff] [blame]150
alexzd90608b2018-04-12 23:49:03 +0200[diff] [blame]151_post_maas_cfg
152
153ssh-keyscan cfg01 > /var/lib/jenkins/.ssh/known_hosts || true
154
155pillar=$(salt-call pillar.data jenkins:client)
Jiri Broulike40813f2018-01-16 13:35:19 +0100[diff] [blame]156
157if [[ $pillar == *"job"* ]]; then
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]158 salt-call ${SALT_OPTS} state.sls jenkins.client
Jiri Broulike40813f2018-01-16 13:35:19 +0100[diff] [blame]159fi
Richard Felkl4c4829d2017-11-11 00:12:20 +0100[diff] [blame]160
azvyagintsevb2a55792018-06-05 17:38:17 +0300[diff] [blame]161stop_services="salt-api salt-master salt-minion jenkins maas-rackd.service maas-regiond.service postgresql.service"
162for s in ${stop_services} ; do
163 systemctl stop ${s} || true
164 sleep 1
165done
166sync
Dmitry Stremkouskia94b5f32017-12-02 00:41:54 +0300[diff] [blame]167reboot