bootstrap/vagrant-minimal-onap/Vagrantfile

   1 # -*- mode: ruby -*-
   2 # -*- coding: utf-8 -*-
   3
   4 host_ip = "192.168.121.1"
   5 operator_key = "${HOME}/.ssh/onap-key"
   6 vagrant_user = "vagrant"
   7 vagrant_password = "vagrant"
   8 synced_folder_main = "/vagrant"
   9 synced_folder_config = "#{synced_folder_main}/config"
  10 synced_folder_tools_config = "#{synced_folder_main}/tools/config"
  11 os_config = "#{synced_folder_config}/local.conf"
  12 os_env = "#{synced_folder_config}/dot_env"
  13 cluster_yml = "cluster.yml"
  14 apt_prefs_dir = "/etc/apt/apt.conf.d"
  15 apt_prefs = "95silent-approval"
  16 helm_timeout = "1800"
  17 helm_master_password = "vagrant"
  18
  19 vm_memory = 1 * 1024
  20 vm_memory_os = 4 * 1024
  21 vm_memory_onap = 64 * 1024
  22 vm_cpu = 1
  23 vm_cpus = 8
  24 vm_box = "generic/ubuntu1804"
  25 vm_box_op = "generic/ubuntu2004"
  26 vm_disk = 32
  27 vm_disk_onap = 64
  28 vm_storage_pool = "default"
  29
  30 operation = {
  31   name: 'operator',
  32   hostname: 'operator',
  33   ip: '172.17.4.254',
  34   box: vm_box_op,
  35   cpus: vm_cpu,
  36   memory: vm_memory,
  37   disk: vm_disk,
  38   pool: vm_storage_pool
  39 }
  40 devstack = {
  41   name: 'devstack',
  42   hostname: 'devstack',
  43   ip: '172.17.4.200',
  44   box: vm_box,
  45   cpus: vm_cpu,
  46   memory: vm_memory_os,
  47   disk: vm_disk,
  48   pool: vm_storage_pool
  49 }
  50 control = {
  51   name: 'control',
  52   hostname: 'control',
  53   ip: '172.17.4.100',
  54   box: vm_box,
  55   cpus: vm_cpu,
  56   memory: vm_memory,
  57   disk: vm_disk,
  58   pool: vm_storage_pool
  59 }
  60 worker = {
  61   name: 'worker',
  62   hostname: 'worker',
  63   ip: '172.17.4.101',
  64   box: vm_box,
  65   cpus: vm_cpus,
  66   memory: vm_memory_onap,
  67   disk: vm_disk_onap,
  68   pool: vm_storage_pool
  69 }
  70
  71 cluster = [] << control << worker
  72 all = cluster.dup << operation << devstack
  73
  74 operation_post_msg = "Run: \"vagrant provision #{operation[:name]} --provision-with=rke_up,setup_kubectl,setup_helm_cluster,setup_helm_repo,deploy_onap\" to complete ONAP deployment"
  75
  76 $replace_dns = <<-SCRIPT
  77   HOST_IP="$1"
  78   rm -f /etc/resolv.conf # drop its dynamic management by systemd-resolved
  79   echo nameserver "$HOST_IP" | tee /etc/resolv.conf
  80 SCRIPT
  81
  82 $enable_ipv6 = <<-SCRIPT
  83   sed -i'' 's/net.ipv6.conf.all.disable_ipv6.*$/net.ipv6.conf.all.disable_ipv6 = 0/' /etc/sysctl.conf
  84   sysctl -p
  85 SCRIPT
  86
  87 $setup_devstack = <<-SCRIPT
  88   CONFIG="$1"
  89   git clone https://opendev.org/openstack/devstack
  90   cd devstack
  91   cp "$CONFIG" .
  92   ./stack.sh
  93 SCRIPT
  94
  95 $add_to_docker_group = <<-SCRIPT
  96   USER="$1"
  97   echo "Adding ${USER} to 'docker' group"
  98   usermod -aG docker "$USER"
  99 SCRIPT
 100
 101 $setup_debconf = <<-SCRIPT
 102   echo "Setting debconf frontend to noninteractive"
 103   sed -i'.orig' '/^Config:/a Frontend: noninteractive' /etc/debconf.conf
 104 SCRIPT
 105
 106 $install_sshpass = <<-SCRIPT
 107   apt-get update
 108   echo "Installing 'sshpass'"
 109   apt-get install sshpass
 110 SCRIPT
 111
 112 $install_make = <<-SCRIPT
 113   apt-get update
 114   echo "Installing 'make'"
 115   apt-get install make
 116 SCRIPT
 117
 118 $resize_disk = <<-SCRIPT
 119   DEV=${1:-vda}
 120   PART=${2:-3}
 121   echo ", +" | sfdisk -N "$PART" "/dev/$DEV" --no-reread
 122   partprobe
 123   resize2fs "/dev/${DEV}${PART}"
 124 SCRIPT
 125
 126 $generate_key = <<-SCRIPT
 127   KEY_FILE="$1"
 128   echo "Generating SSH key (${KEY_FILE})"
 129   ssh-keygen -q -b 4096 -t rsa -f "$KEY_FILE" -N ""
 130 SCRIPT
 131
 132 $deploy_key = <<-SCRIPT
 133   KEY="$1"
 134   USER="$2"
 135   PASS="$PASSWORD"
 136   IPS="$3"
 137   echo "Deploying ${KEY} for ${USER}"
 138   for ip in $IPS; do
 139     echo "on ${ip}"
 140     sshpass -p "$PASS" ssh-copy-id -o StrictHostKeyChecking=no -i "$KEY" "${USER}@${ip}"
 141   done
 142 SCRIPT
 143
 144 $link_dotfiles = <<-SCRIPT
 145   SYNC_DIR="$1"
 146   for rc in ${SYNC_DIR}/dot_*; do
 147     src="$rc"
 148     dst="${HOME}/.${rc##*dot_}"
 149     echo "Symlinking ${src} to ${dst}"
 150     ln -sf "$src" "$dst"
 151   done
 152 SCRIPT
 153
 154 $link_file = <<-SCRIPT
 155   SYNC_DIR="$1"
 156   FILE="$2"
 157   src="${SYNC_DIR}/${FILE}"
 158   dst="$3"
 159   echo "Symlinking ${src} to ${dst}"
 160   ln -sf "$src" "$dst"
 161 SCRIPT
 162
 163 $rke_up = "rke up"
 164 $rke_down = "rke remove --force || true" # best effort
 165
 166 $get_oom = <<-SCRIPT
 167   BRANCH="${1:-5.0.1-ONAP}"
 168   REPO="${2:-https://git.onap.org/oom}"
 169   git clone -b "$BRANCH" "$REPO" --recurse-submodules
 170 SCRIPT
 171
 172 $get_helm_plugins = "mkdir -p ${HOME}/.helm && cp -R ${HOME}/oom/kubernetes/helm/plugins/ ${HOME}/.helm"
 173
 174 $setup_helm_cluster = <<-SCRIPT
 175   export KUBECONFIG="${HOME}/.kube/config.onap"
 176   kubectl config use-context onap
 177   kubectl -n kube-system create serviceaccount tiller
 178   kubectl create clusterrolebinding tiller --clusterrole=cluster-admin --serviceaccount=kube-system:tiller
 179   helm init --service-account tiller
 180   kubectl -n kube-system rollout status deploy/tiller-deploy
 181 SCRIPT
 182
 183 # FIXME: replace sleep command with helm repo readiness probe
 184 $setup_helm_repo = <<-SCRIPT
 185   helm serve &
 186   sleep 3
 187   helm repo add local http://127.0.0.1:8879
 188   make -e SKIP_LINT=TRUE -C ${HOME}/oom/kubernetes all
 189 SCRIPT
 190
 191 $deploy_onap = <<-SCRIPT
 192   OVERRIDE="${1:-${HOME}/oom/kubernetes/onap/resources/environments/core-onap.yaml}"
 193
 194   ENV="${2:-#{os_env}}"
 195   export $(cat "$ENV" | xargs)
 196
 197   TIMEOUT="${3:-#{helm_timeout}}"
 198   MASTER_PASSWORD="${4:-#{helm_master_password}}"
 199
 200   encrypt () {
 201     KEY="${HOME}/oom/kubernetes/so/resources/config/mso/encryption.key"
 202     echo -n "$1" \
 203     | openssl aes-128-ecb -e -K `cat "$KEY"` -nosalt \
 204     | xxd -c 256 -p
 205   }
 206
 207   export OPENSTACK_ENCRYPTED_PASSWORD="$(encrypt $OPENSTACK_PASSWORD)"
 208
 209   export KUBECONFIG="${HOME}/.kube/config.onap"
 210
 211   helm deploy core local/onap --verbose \
 212     --set global.masterPassword="$MASTER_PASSWORD" \
 213     --namespace onap --timeout "$TIMEOUT" -f "$OVERRIDE"
 214 SCRIPT
 215
 216 Vagrant.configure('2') do |config|
 217   all.each do |machine|
 218     config.vm.define machine[:name] do |config|
 219       config.vm.box = machine[:box]
 220       config.vm.hostname = machine[:hostname]
 221
 222       config.vm.provider :virtualbox do |v|
 223         v.name = machine[:name]
 224         v.memory = machine[:memory]
 225         v.cpus = machine[:cpus]
 226       end
 227
 228       config.vm.provider :libvirt do |v|
 229         v.memory = machine[:memory]
 230         v.cpus = machine[:cpus]
 231         v.machine_virtual_size = machine[:disk] # set at VM creation
 232         v.storage_pool_name = machine[:pool]
 233       end
 234
 235       config.vm.network :private_network, ip: machine[:ip]
 236       config.vm.provision "replace_dns", type: :shell, run: "always", inline: $replace_dns, args: host_ip
 237
 238       if machine[:name] == 'devstack'
 239         config.vm.synced_folder ".", synced_folder_main, type: "rsync", rsync__exclude: "Vagrantfile"
 240
 241         config.vm.provision "enable_ipv6", type: :shell, run: "always", inline: $enable_ipv6
 242         config.vm.provision "setup_devstack", type: :shell, privileged: false, inline: $setup_devstack, args: os_config
 243       end
 244
 245       if machine[:name] == 'control'
 246         config.vm.provision "customize_control", type: :shell, path: "tools/imported/openstack-k8s-controlnode.sh"
 247         config.vm.provision "fix_groups_control", type: :shell, inline: $add_to_docker_group, args: vagrant_user
 248       end
 249
 250       if machine[:name] == 'worker'
 251         config.vm.provision "customize_worker", type: :shell, path: "tools/imported/openstack-k8s-workernode.sh"
 252         config.vm.provision "fix_group_worker", type: :shell, inline: $add_to_docker_group, args: vagrant_user
 253         config.vm.provision "resize_disk", type: :shell, inline: $resize_disk
 254       end
 255
 256       if machine[:name] == 'operator'
 257         config.vm.synced_folder ".", synced_folder_main, type: "rsync", rsync__exclude: ["Vagrantfile", "operator"]
 258         config.vm.synced_folder "~/.ssh", "/home/#{vagrant_user}/.ssh", type: "rsync", rsync__exclude: "authorized_keys"
 259         config.vm.synced_folder "./operator", "/home/#{vagrant_user}", type: "sshfs", reverse: true, sshfs_opts_append: "-o nonempty"
 260
 261         config.vm.provision "setup_debconf", type: :shell, inline: $setup_debconf
 262         config.vm.provision "link_apt_prefs", type: :shell, run: "always" do |s|
 263           s.inline = $link_file
 264           s.args = [synced_folder_tools_config, apt_prefs, apt_prefs_dir]
 265         end
 266         config.vm.provision "link_dotfiles_root", type: :shell, run: "always" do |s|
 267           s.inline = $link_dotfiles
 268           s.args = synced_folder_tools_config
 269         end
 270         config.vm.provision "link_dotfiles_user", type: :shell, run: "always" do |s|
 271           s.privileged = false
 272           s.inline = $link_dotfiles
 273           s.args = synced_folder_tools_config
 274         end
 275
 276         config.vm.provision "install_sshpass", type: :shell, inline: $install_sshpass
 277         config.vm.provision "generate_key", type: :shell, privileged: false, inline: $generate_key, args: operator_key
 278
 279         ips = ""
 280         cluster.each { |node| ips << node[:ip] << " " }
 281         config.vm.provision "deploy_key", type: :shell do |s|
 282           s.privileged = false
 283           s.inline = $deploy_key
 284           s.args = [operator_key, vagrant_user, ips]
 285           s.env = {'PASSWORD': vagrant_password}
 286         end
 287
 288         config.vm.provision "get_rke", type: :shell, path: "tools/get_rke.sh"
 289         config.vm.provision "link_cluster_yml", type: :shell, run: "always" do |s|
 290           s.privileged = false
 291           s.inline = $link_file
 292           s.args = [synced_folder_config, cluster_yml, "$HOME"]
 293         end
 294
 295         config.vm.post_up_message = operation_post_msg
 296         config.vm.provision "rke_up", type: :shell, run: "never", privileged: false, inline: $rke_up
 297         config.trigger.before :destroy do |trigger|
 298           trigger.warn = "Removing cluster"
 299           trigger.run_remote = {privileged: false, inline: $rke_down}
 300         end
 301
 302         config.vm.provision "get_kubectl", type: :shell, path: "tools/get_kubectl.sh"
 303         config.vm.provision "setup_kubectl", type: :shell, run: "never" do |s|
 304           s.privileged = false
 305           s.path = "tools/setup_kubectl.sh"
 306         end
 307         config.vm.provision "get_helm", type: :shell, path: "tools/get_helm.sh"
 308         config.vm.provision "get_oom", type: :shell do |s|
 309           s.privileged = false
 310           s.inline = $get_oom
 311         end
 312         config.vm.provision "get_helm_plugins", type: :shell, privileged: false, inline: $get_helm_plugins
 313         config.vm.provision "install_make", type: :shell, inline: $install_make
 314         config.vm.provision "setup_helm_cluster", type: :shell, run: "never", privileged: false, inline: $setup_helm_cluster
 315         config.vm.provision "setup_helm_repo", type: :shell, run: "never", privileged: false, inline: $setup_helm_repo
 316         config.vm.provision "deploy_onap", type: :shell, run: "never" do |s|
 317           s.privileged = false
 318           s.inline = $deploy_onap
 319         end
 320       end
 321     end
 322   end
 323 end