Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / mcp / tcp-qa / 6ba4fc410d8951d7bf025e3ea4cd2cf287ec857d / . / tcp_tests / templates / salt / virtual_mcp10_ovs-salt.yaml
blob: 68ffb5ff898546cd3dd417916aa728a6cc121cab [file] [log] [blame]
Tatyana Leontovich055b5062017-04-03 13:17:25 +0300[diff] [blame]1{% from 'virtual_mcp10_ovs.jinja' import HOSTNAME_CFG01 with context %}
2
3# Install salt to the config node
4
5
6- description: Configure tcpcloud repository on the cfg01 node
7 cmd: echo 'deb [arch=amd64] http://apt.tcpcloud.eu/nightly/ xenial main security extra tcp tcp-salt' > /etc/apt/sources.list;
8 echo 'deb [arch=amd64] http://apt.tcpcloud.eu/nightly/ trusty tcp-salt' >> /etc/apt/sources.list;
9 wget -O - http://apt.tcpcloud.eu/public.gpg | apt-key add -;
10 echo "deb http://repo.saltstack.com/apt/ubuntu/16.04/amd64/2016.3 xenial main" > /etc/apt/sources.list.d/saltstack.list;
11 wget -O - https://repo.saltstack.com/apt/ubuntu/16.04/amd64/2016.3/SALTSTACK-GPG-KEY.pub | apt-key add -;
12 #echo "deb http://repo.saltstack.com/apt/ubuntu/16.04/amd64/latest xenial main" > /etc/apt/sources.list.d/saltstack.list;
13 #wget -O - https://repo.saltstack.com/apt/ubuntu/16.04/amd64/latest/SALTSTACK-GPG-KEY.pub | apt-key add -;
14 node_name: {{ HOSTNAME_CFG01 }}
15 retry: {count: 1, delay: 1}
16 skip_fail: false
17
18#- description: Configure tcpcloud and saltstack repositories on the rest of nodes
19# cmd: echo 'deb [arch=amd64] http://apt.tcpcloud.eu/nightly/ trusty main security extra tcp tcp-salt' > /etc/apt/sources.list;
20# wget -O - http://apt.tcpcloud.eu/public.gpg | apt-key add - ;
21# echo 'deb http://repo.saltstack.com/apt/ubuntu/14.04/amd64/latest trusty main' > /etc/apt/sources.list.d/saltstack.list;
22# wget -O - https://repo.saltstack.com/apt/ubuntu/14.04/amd64/latest/SALTSTACK-GPG-KEY.pub | apt-key add -
23# node_name: ***
24# retry: {count: 1, delay: 1}
25# skip_fail: false
26
27- description: Update packages on cfg01
28 cmd: apt-get clean; apt-get update && apt-get -y upgrade
29 node_name: {{ HOSTNAME_CFG01 }}
30 retry: {count: 3, delay: 10}
31 skip_fail: false
32
33- description: Install common packages on cfg01
34 cmd: apt-get install -y python-pip wget curl tmux byobu iputils-ping traceroute htop tree
35 node_name: {{ HOSTNAME_CFG01 }}
36 retry: {count: 3, delay: 10}
37 skip_fail: false
38
39- description: Install salt formulas, master and minion on cfg01
40 # cmd: apt-get install -y salt-formula-* salt-master salt-minion reclass
41 cmd: apt-get install -y
42 salt-master
43 salt-minion
44 reclass
45 salt-formula-linux
46 salt-formula-reclass
47 salt-formula-salt
48 salt-formula-openssh
49 salt-formula-ntp
50 salt-formula-git
51 salt-formula-nginx
52 salt-formula-collectd
53 salt-formula-sensu
54 salt-formula-heka
55 salt-formula-sphinx
56 salt-formula-keystone
57 salt-formula-mysql
58 salt-formula-grafana
59 salt-formula-haproxy
60 node_name: {{ HOSTNAME_CFG01 }}
61 retry: {count: 3, delay: 10}
62 skip_fail: false
63
64- description: Configure salt-master on cfg01
65 cmd: |
66 cat << 'EOF' >> /etc/salt/master.d/master.conf
67 file_roots:
68 base:
69 - /usr/share/salt-formulas/env
70 pillar_opts: False
71 open_mode: True
72 reclass: &reclass
73 storage_type: yaml_fs
74 inventory_base_uri: /srv/salt/reclass
75 ext_pillar:
76 - reclass: *reclass
77 master_tops:
78 reclass: *reclass
79 EOF
80 node_name: {{ HOSTNAME_CFG01 }}
81 retry: {count: 1, delay: 1}
82 skip_fail: false
83
84- description: Configure GIT settings and certificates
85 cmd: touch /root/.git_trusted_certs.pem;
86 for server in git.tcpcloud.eu github.com; do
87 openssl s_client -showcerts -connect $server:443 </dev/null
88 | openssl x509 -outform PEM
89 >> /root/.git_trusted_certs.pem;
90 done;
91 HOME=/root git config --global http.sslCAInfo /root/.git_trusted_certs.pem;
92 HOME=/root git config --global user.email "tcp-qa@example.com";
93 HOME=/root git config --global user.name "TCP QA";
94 node_name: {{ HOSTNAME_CFG01 }}
95 retry: {count: 1, delay: 1}
96 skip_fail: false
97
98- description: Clone reclass models and perform a workaround for https://mirantis.jira.com/browse/PROD-8078
99 cmd: |
100 git clone https://gerrit.mcp.mirantis.net/salt-models/mcp-virtual-lab /srv/salt/reclass;
101 cd /srv/salt/reclass;
102 git checkout master;
Tatyana Leontovich055b5062017-04-03 13:17:25 +0300[diff] [blame]103 node_name: {{ HOSTNAME_CFG01 }}
104 retry: {count: 1, delay: 1}
105 skip_fail: false
106
107- description: Configure reclass
108 cmd: |
109 mkdir -p /srv/salt/reclass/classes/service;
110 for i in /usr/share/salt-formulas/reclass/service/*; do
111 ln -s $i /srv/salt/reclass/classes/service/;
112 done;
113 [ ! -d /etc/reclass ] && mkdir /etc/reclass;
114 cat << 'EOF' >> /etc/reclass/reclass-config.yml
115 storage_type: yaml_fs
116 pretty_print: True
117 output: yaml
118 inventory_base_uri: /srv/salt/reclass
119 EOF
120 node_name: {{ HOSTNAME_CFG01 }}
121 retry: {count: 1, delay: 1}
122 skip_fail: false
123
124- description: Configure salt-minion on cfg01
125 cmd: |
126 [ ! -d /etc/salt/minion.d ] && mkdir -p /etc/salt/minion.d;
127 cat << "EOF" >> /etc/salt/minion.d/minion.conf
128 id: {{ HOSTNAME_CFG01 }}
129 master: localhost
130 EOF
131 node_name: {{ HOSTNAME_CFG01 }}
132 retry: {count: 1, delay: 1}
133 skip_fail: false
134
135
136# Prepare salt services and nodes settings
137- description: Run 'linux' formula on cfg01
138 cmd: salt --hard-crash --state-output=mixed --state-verbose=False
139 -C 'I@salt:master' state.sls linux
140 node_name: {{ HOSTNAME_CFG01 }}
141 retry: {count: 3, delay: 5}
142 skip_fail: false
143
144- description: Run 'openssh' formula on cfg01
145 cmd: salt --hard-crash --state-output=mixed --state-verbose=False
146 -C 'I@salt:master' state.sls openssh;
147 salt --hard-crash --state-output=mixed --state-verbose=False
148 -C 'I@salt:master' cmd.run "sed -i 's/PasswordAuthentication no/PasswordAuthentication
149 yes/' /etc/ssh/sshd_config && service ssh restart";
150 node_name: {{ HOSTNAME_CFG01 }}
151 retry: {count: 3, delay: 5}
152 skip_fail: false
153
154- description: '*Workaround* of the bug https://mirantis.jira.com/browse/PROD-7962'
155 cmd: salt --hard-crash --state-output=mixed --state-verbose=False
156 '*' cmd.run "echo ' StrictHostKeyChecking no' >> /root/.ssh/config"
157 node_name: {{ HOSTNAME_CFG01 }}
158 retry: {count: 1, delay: 1}
159 skip_fail: false
160
161- description: Run 'salt' formula on cfg01
162 cmd: timeout 120 salt --hard-crash --state-output=mixed --state-verbose=False
163 -C 'I@salt:master' state.sls salt.master
164 node_name: {{ HOSTNAME_CFG01 }}
165 retry: {count: 3, delay: 5}
166 skip_fail: true
167
168- description: Accept salt keys from all the nodes
169 cmd: salt-key -A -y
170 node_name: {{ HOSTNAME_CFG01 }}
171 retry: {count: 1, delay: 5}
172 skip_fail: false
173
174- description: Generate inventory for all the nodes to the /srv/salt/reclass/nodes/_generated
175 cmd: salt --hard-crash --state-output=mixed --state-verbose=False
176 -C 'I@salt:master' state.sls reclass
177 node_name: {{ HOSTNAME_CFG01 }}
178 retry: {count: 3, delay: 5}
179 skip_fail: false
180
181- description: Refresh pillars on all minions
182 cmd: salt --hard-crash --state-output=mixed --state-verbose=False '*' saltutil.refresh_pillar
183 node_name: {{ HOSTNAME_CFG01 }}
184 retry: {count: 3, delay: 5}
185 skip_fail: false
186
187- description: Sync all salt resources
188 cmd: salt --hard-crash --state-output=mixed --state-verbose=False '*' saltutil.sync_all
189 node_name: {{ HOSTNAME_CFG01 }}
190 retry: {count: 3, delay: 5}
191 skip_fail: false
192
193
194# Bootstrap all nodes
195
196- description: Workaround for missing kernel modules
197 cmd: salt '*' cmd.run "for module in nf_conntrack_ipv4 ip_tables
198 x_tables nf_defrag_ipv4 nf_nat_ipv4 nf_nat
199 iptable_filter iptable_mangle iptable_nat;
200 do
201 modprobe \$module;
202 echo \$module >> /etc/modules;
203 done"
204 node_name: {{ HOSTNAME_CFG01 }}
205 retry: {count: 1, delay: 1}
206 skip_fail: false
207
208
209- description: Configure linux on all nodes
210 cmd: salt --hard-crash --state-output=mixed --state-verbose=False '*' state.sls
211 linux
212 node_name: {{ HOSTNAME_CFG01 }}
213 retry: {count: 5, delay: 5}
214 skip_fail: false
215
216- description: Configure openssh on all nodes
217 cmd: salt --hard-crash --state-output=mixed --state-verbose=False -C '* and not
218 cfg*' state.sls openssh;salt --hard-crash --state-output=mixed --state-verbose=False
219 -C '* and not cfg*' cmd.run "sed -i 's/PasswordAuthentication no/PasswordAuthentication
220 yes/' /etc/ssh/sshd_config && service ssh restart"
221 node_name: {{ HOSTNAME_CFG01 }}
222 retry: {count: 3, delay: 5}
223 skip_fail: false
224
225- description: '*Workaround* for the bug https://mirantis.jira.com/browse/PROD-8021'
226 cmd: salt --hard-crash --state-output=mixed --state-verbose=False '*' cmd.run 'apt-get
227 -y install linux-image-extra-$(uname -r)'
228 node_name: {{ HOSTNAME_CFG01 }}
229 retry: {count: 3, delay: 5}
230 skip_fail: false
231
232- description: Configure salt.minion on controllers
233 cmd: salt --hard-crash --state-output=mixed --state-verbose=False '*' state.sls salt.minion
234 node_name: {{ HOSTNAME_CFG01 }}
235 retry: {count: 3, delay: 5}
236 skip_fail: false
237
238- description: Check salt minion versions on slaves
239 cmd: salt '*' test.version
240 node_name: {{ HOSTNAME_CFG01 }}
241 retry: {count: 3, delay: 5}
242 skip_fail: false
243
244- description: Check salt minion versions on slaves
245 cmd: salt '*' state.show_top
246 node_name: {{ HOSTNAME_CFG01 }}
247 retry: {count: 3, delay: 5}
248 skip_fail: false
249
250- description: Configure ntp on controllers
251 cmd: salt --hard-crash --state-output=mixed --state-verbose=False '*' state.sls ntp
252 node_name: {{ HOSTNAME_CFG01 }}
253 retry: {count: 5, delay: 10}
254 skip_fail: false
255