2 # -*- coding: utf-8 -*-
4 host_ip = "192.168.121.1"
5 operator_key = "${HOME}/.ssh/onap-key"
6 vagrant_user = "vagrant"
7 vagrant_password = "vagrant"
8 synced_folder_main = "/vagrant"
9 synced_folder_config = "#{synced_folder_main}/config"
10 synced_folder_tools_config = "#{synced_folder_main}/tools/config"
11 os_config = "#{synced_folder_config}/local.conf"
12 os_env = "#{synced_folder_config}/dot_env"
13 cluster_yml = "cluster.yml"
14 apt_prefs_dir = "/etc/apt/apt.conf.d"
15 apt_prefs = "95silent-approval"
17 helm_master_password = "vagrant"
20 vm_memory_os = 4 * 1024
21 vm_memory_onap = 64 * 1024
24 vm_box = "generic/ubuntu1804"
25 vm_box_op = "generic/ubuntu2004"
28 vm_storage_pool = "default"
66 memory: vm_memory_onap,
71 cluster = [] << control << worker
72 all = cluster.dup << operation << devstack
74 operation_post_msg = "Run: \"vagrant provision #{operation[:name]} --provision-with=rke_up,setup_kubectl,setup_helm_cluster,setup_helm_repo,deploy_onap\" to complete ONAP deployment"
76 $replace_dns = <<-SCRIPT
78 rm -f /etc/resolv.conf # drop its dynamic management by systemd-resolved
79 echo nameserver "$HOST_IP" | tee /etc/resolv.conf
82 $enable_ipv6 = <<-SCRIPT
83 sed -i'' 's/net.ipv6.conf.all.disable_ipv6.*$/net.ipv6.conf.all.disable_ipv6 = 0/' /etc/sysctl.conf
87 $setup_devstack = <<-SCRIPT
89 git clone https://opendev.org/openstack/devstack
95 $add_to_docker_group = <<-SCRIPT
97 echo "Adding ${USER} to 'docker' group"
98 usermod -aG docker "$USER"
101 $setup_debconf = <<-SCRIPT
102 echo "Setting debconf frontend to noninteractive"
103 sed -i'.orig' '/^Config:/a Frontend: noninteractive' /etc/debconf.conf
106 $install_sshpass = <<-SCRIPT
108 echo "Installing 'sshpass'"
109 apt-get install sshpass
112 $install_make = <<-SCRIPT
114 echo "Installing 'make'"
118 $resize_disk = <<-SCRIPT
121 echo ", +" | sfdisk -N "$PART" "/dev/$DEV" --no-reread
123 resize2fs "/dev/${DEV}${PART}"
126 $generate_key = <<-SCRIPT
128 echo "Generating SSH key (${KEY_FILE})"
129 ssh-keygen -q -b 4096 -t rsa -f "$KEY_FILE" -N ""
132 $deploy_key = <<-SCRIPT
137 echo "Deploying ${KEY} for ${USER}"
140 sshpass -p "$PASS" ssh-copy-id -o StrictHostKeyChecking=no -i "$KEY" "${USER}@${ip}"
144 $link_dotfiles = <<-SCRIPT
146 for rc in ${SYNC_DIR}/dot_*; do
148 dst="${HOME}/.${rc##*dot_}"
149 echo "Symlinking ${src} to ${dst}"
154 $link_file = <<-SCRIPT
157 src="${SYNC_DIR}/${FILE}"
159 echo "Symlinking ${src} to ${dst}"
164 $rke_down = "rke remove --force || true" # best effort
167 BRANCH="${1:-5.0.1-ONAP}"
168 REPO="${2:-https://git.onap.org/oom}"
169 git clone -b "$BRANCH" "$REPO" --recurse-submodules
172 $get_helm_plugins = "mkdir -p ${HOME}/.helm && cp -R ${HOME}/oom/kubernetes/helm/plugins/ ${HOME}/.helm"
174 $setup_helm_cluster = <<-SCRIPT
175 export KUBECONFIG="${HOME}/.kube/config.onap"
176 kubectl config use-context onap
177 kubectl -n kube-system create serviceaccount tiller
178 kubectl create clusterrolebinding tiller --clusterrole=cluster-admin --serviceaccount=kube-system:tiller
179 helm init --service-account tiller
180 kubectl -n kube-system rollout status deploy/tiller-deploy
183 # FIXME: replace sleep command with helm repo readiness probe
184 $setup_helm_repo = <<-SCRIPT
187 helm repo add local http://127.0.0.1:8879
188 make -e SKIP_LINT=TRUE -C ${HOME}/oom/kubernetes all
191 $deploy_onap = <<-SCRIPT
192 OVERRIDE="${1:-${HOME}/oom/kubernetes/onap/resources/environments/core-onap.yaml}"
194 ENV="${2:-#{os_env}}"
195 export $(cat "$ENV" | xargs)
197 TIMEOUT="${3:-#{helm_timeout}}"
198 MASTER_PASSWORD="${4:-#{helm_master_password}}"
201 KEY="${HOME}/oom/kubernetes/so/resources/config/mso/encryption.key"
203 | openssl aes-128-ecb -e -K `cat "$KEY"` -nosalt \
207 export OPENSTACK_ENCRYPTED_PASSWORD="$(encrypt $OPENSTACK_PASSWORD)"
209 export KUBECONFIG="${HOME}/.kube/config.onap"
211 helm deploy core local/onap --verbose \
212 --set global.masterPassword="$MASTER_PASSWORD" \
213 --namespace onap --timeout "$TIMEOUT" -f "$OVERRIDE"
216 Vagrant.configure('2') do |config|
217 all.each do |machine|
218 config.vm.define machine[:name] do |config|
219 config.vm.box = machine[:box]
220 config.vm.hostname = machine[:hostname]
222 config.vm.provider :virtualbox do |v|
223 v.name = machine[:name]
224 v.memory = machine[:memory]
225 v.cpus = machine[:cpus]
228 config.vm.provider :libvirt do |v|
229 v.memory = machine[:memory]
230 v.cpus = machine[:cpus]
231 v.machine_virtual_size = machine[:disk] # set at VM creation
232 v.storage_pool_name = machine[:pool]
235 config.vm.network :private_network, ip: machine[:ip]
236 config.vm.provision "replace_dns", type: :shell, run: "always", inline: $replace_dns, args: host_ip
238 if machine[:name] == 'devstack'
239 config.vm.synced_folder ".", synced_folder_main, type: "rsync", rsync__exclude: "Vagrantfile"
241 config.vm.provision "enable_ipv6", type: :shell, run: "always", inline: $enable_ipv6
242 config.vm.provision "setup_devstack", type: :shell, privileged: false, inline: $setup_devstack, args: os_config
245 if machine[:name] == 'control'
246 config.vm.provision "customize_control", type: :shell, path: "tools/imported/openstack-k8s-controlnode.sh"
247 config.vm.provision "fix_groups_control", type: :shell, inline: $add_to_docker_group, args: vagrant_user
250 if machine[:name] == 'worker'
251 config.vm.provision "customize_worker", type: :shell, path: "tools/imported/openstack-k8s-workernode.sh"
252 config.vm.provision "fix_group_worker", type: :shell, inline: $add_to_docker_group, args: vagrant_user
253 config.vm.provision "resize_disk", type: :shell, inline: $resize_disk
256 if machine[:name] == 'operator'
257 config.vm.synced_folder ".", synced_folder_main, type: "rsync", rsync__exclude: ["Vagrantfile", "operator"]
258 config.vm.synced_folder "~/.ssh", "/home/#{vagrant_user}/.ssh", type: "rsync", rsync__exclude: "authorized_keys"
259 config.vm.synced_folder "./operator", "/home/#{vagrant_user}", type: "sshfs", reverse: true, sshfs_opts_append: "-o nonempty"
261 config.vm.provision "setup_debconf", type: :shell, inline: $setup_debconf
262 config.vm.provision "link_apt_prefs", type: :shell, run: "always" do |s|
263 s.inline = $link_file
264 s.args = [synced_folder_tools_config, apt_prefs, apt_prefs_dir]
266 config.vm.provision "link_dotfiles_root", type: :shell, run: "always" do |s|
267 s.inline = $link_dotfiles
268 s.args = synced_folder_tools_config
270 config.vm.provision "link_dotfiles_user", type: :shell, run: "always" do |s|
272 s.inline = $link_dotfiles
273 s.args = synced_folder_tools_config
276 config.vm.provision "install_sshpass", type: :shell, inline: $install_sshpass
277 config.vm.provision "generate_key", type: :shell, privileged: false, inline: $generate_key, args: operator_key
280 cluster.each { |node| ips << node[:ip] << " " }
281 config.vm.provision "deploy_key", type: :shell do |s|
283 s.inline = $deploy_key
284 s.args = [operator_key, vagrant_user, ips]
285 s.env = {'PASSWORD': vagrant_password}
288 config.vm.provision "get_rke", type: :shell, path: "tools/get_rke.sh"
289 config.vm.provision "link_cluster_yml", type: :shell, run: "always" do |s|
291 s.inline = $link_file
292 s.args = [synced_folder_config, cluster_yml, "$HOME"]
295 config.vm.post_up_message = operation_post_msg
296 config.vm.provision "rke_up", type: :shell, run: "never", privileged: false, inline: $rke_up
297 config.trigger.before :destroy do |trigger|
298 trigger.warn = "Removing cluster"
299 trigger.run_remote = {privileged: false, inline: $rke_down}
302 config.vm.provision "get_kubectl", type: :shell, path: "tools/get_kubectl.sh"
303 config.vm.provision "setup_kubectl", type: :shell, run: "never" do |s|
305 s.path = "tools/setup_kubectl.sh"
307 config.vm.provision "get_helm", type: :shell, path: "tools/get_helm.sh"
308 config.vm.provision "get_oom", type: :shell do |s|
312 config.vm.provision "get_helm_plugins", type: :shell, privileged: false, inline: $get_helm_plugins
313 config.vm.provision "install_make", type: :shell, inline: $install_make
314 config.vm.provision "setup_helm_cluster", type: :shell, run: "never", privileged: false, inline: $setup_helm_cluster
315 config.vm.provision "setup_helm_repo", type: :shell, run: "never", privileged: false, inline: $setup_helm_repo
316 config.vm.provision "deploy_onap", type: :shell, run: "never" do |s|
318 s.inline = $deploy_onap