Code Review / integration.git / blob
? search:


e8aae2ea1f85a1ebd264d2e5ef4d4a05d29b145b
[integration.git] / deployment / heat / onap-oom / rancher_vm_entrypoint.sh
1 #!/bin/bash -x
2 #
3 # Copyright 2018 Huawei Technologies Co., Ltd.
4 #
5 # Licensed under the Apache License, Version 2.0 (the "License");
6 # you may not use this file except in compliance with the License.
7 # You may obtain a copy of the License at
8 #
9 #     http://www.apache.org/licenses/LICENSE-2.0
10 #
11
12 export DEBIAN_FRONTEND=noninteractive
13 HOST_IP=$(hostname -I)
14 echo $HOST_IP `hostname` >> /etc/hosts
15 printenv
16
17 mkdir -p /opt/config
18 echo "__rancher_ip_addr__" > /opt/config/rancher_ip_addr.txt
19 echo "__k8s_vm_ips__" > /opt/config/k8s_vm_ips.txt
20 echo "__k8s_private_ips__" > /opt/config/k8s_private_ips.txt
21 echo "__public_net_id__" > /opt/config/public_net_id.txt
22 echo "__oam_network_cidr__" > /opt/config/oam_network_cidr.txt
23 echo "__oam_network_id__" > /opt/config/oam_network_id.txt
24 echo "__oam_subnet_id__" > /opt/config/oam_subnet_id.txt
25 echo "__sec_group__" > /opt/config/sec_group.txt
26 echo "__integration_gerrit_branch__" > /opt/config/integration_gerrit_branch.txt
27 echo "__integration_gerrit_refspec__" > /opt/config/integration_gerrit_refspec.txt
28 echo "__oom_gerrit_branch__" > /opt/config/oom_gerrit_branch.txt
29 echo "__oom_gerrit_refspec__" > /opt/config/oom_gerrit_refspec.txt
30 echo "__docker_manifest__" > /opt/config/docker_manifest.txt
31 echo "__docker_proxy__" > /opt/config/docker_proxy.txt
32 echo "__docker_version__" > /opt/config/docker_version.txt
33 echo "__rancher_version__" > /opt/config/rancher_version.txt
34 echo "__rancher_agent_version__" > /opt/config/rancher_agent_version.txt
35 echo "__kubectl_version__" > /opt/config/kubectl_version.txt
36 echo "__helm_version__" > /opt/config/helm_version.txt
37
38 cat <<EOF > /opt/config/integration-override.yaml
39 __integration_override_yaml__
40 EOF
41 sed -i 's/\_\_public_net_id__/__public_net_id__/g' /opt/config/integration-override.yaml
42 sed -i 's|\_\_oam_network_cidr__|__oam_network_cidr__|g' /opt/config/integration-override.yaml
43 sed -i 's/\_\_oam_network_id__/__oam_network_id__/g' /opt/config/integration-override.yaml
44 sed -i 's/\_\_oam_subnet_id__/__oam_subnet_id__/g' /opt/config/integration-override.yaml
45 sed -i 's/\_\_sec_group__/__sec_group__/g' /opt/config/integration-override.yaml
46 sed -i 's/\_\_rancher_ip_addr__/__rancher_ip_addr__/g' /opt/config/integration-override.yaml
47 sed -i 's/\_\_k8s_1_vm_ip__/__k8s_1_vm_ip__/g' /opt/config/integration-override.yaml
48 sed -i 's/\_\_docker_proxy__/__docker_proxy__/g' /opt/config/integration-override.yaml
49 cp /opt/config/integration-override.yaml /root
50 cat /root/integration-override.yaml
51
52 echo `hostname -I` `hostname` >> /etc/hosts
53 mkdir -p /etc/docker
54 if [ ! -z "__docker_proxy__" ]; then
55     cat > /etc/docker/daemon.json <<EOF
56 {
57   "insecure-registries" : ["__docker_proxy__"]
58 }
59 EOF
60 fi
61 if [ ! -z "__apt_proxy__" ]; then
62     cat > /etc/apt/apt.conf.d/30proxy<<EOF
63 Acquire::http { Proxy "http://__apt_proxy__"; };
64 Acquire::https::Proxy "DIRECT";
65 EOF
66 fi
67
68 # workaround for OpenStack intermittent failure to change default apt mirrors
69 sed -i 's|http://archive.ubuntu.com|http://nova.clouds.archive.ubuntu.com|g' /etc/apt/sources.list
70
71 while ! hash jq &> /dev/null; do
72     apt-get -y update
73     apt-get -y install linux-image-extra-$(uname -r) apt-transport-https ca-certificates curl software-properties-common jq make nfs-kernel-server moreutils
74     sleep 10
75 done
76
77 # use RAM disk for /dockerdata-nfs for testing
78 echo "tmpfs /dockerdata-nfs tmpfs noatime,size=75% 1 2" >> /etc/fstab
79 mkdir -pv /dockerdata-nfs
80 mount /dockerdata-nfs
81
82 # version control the persistence volume to see what's happening
83 chmod 777 /dockerdata-nfs/
84 chown nobody:nogroup /dockerdata-nfs/
85 cd /dockerdata-nfs/
86 git init
87 git config user.email "root@onap"
88 git config user.name "root"
89 git add -A
90 git commit -m "initial commit"
91
92 # export NFS mount
93 echo "/dockerdata-nfs *(rw,fsid=1,async,no_root_squash,no_subtree_check)" | tee /etc/exports
94
95
96 exportfs -a
97 systemctl restart nfs-kernel-server
98
99 cd ~
100
101 # install docker __docker_version__
102 while ! hash docker &> /dev/null; do
103     curl -s https://releases.rancher.com/install-docker/__docker_version__.sh | sh
104     usermod -aG docker ubuntu
105     sleep 10
106 done
107 apt-mark hold docker-ce
108
109 # install rancher __rancher_version__
110 docker run --name rancher-server --restart unless-stopped -d -p 8080:8080 -e CATTLE_BOOTSTRAP_REQUIRED_IMAGE=__docker_proxy__/rancher/agent:v__rancher_agent_version__ __docker_proxy__/rancher/server:v__rancher_version__
111
112 # install kubectl __kubectl_version__
113 curl -s -LO https://storage.googleapis.com/kubernetes-release/release/v__kubectl_version__/bin/linux/amd64/kubectl
114 chmod +x ./kubectl
115 sudo mv ./kubectl /usr/local/bin/kubectl
116 mkdir ~/.kube
117
118 # install helm __helm_version__
119 mkdir -p helm
120 pushd helm
121 wget -q http://storage.googleapis.com/kubernetes-helm/helm-v__helm_version__-linux-amd64.tar.gz
122 tar -zxvf helm-v__helm_version__-linux-amd64.tar.gz
123 sudo cp linux-amd64/helm /usr/local/bin/helm
124 popd
125
126 mkdir -p rancher
127 pushd rancher
128 echo export RANCHER_IP=__rancher_private_ip_addr__ > api-keys-rc
129 source api-keys-rc
130
131 until curl -s -o projects.json -H "Accept: application/json" http://$RANCHER_IP:8080/v2-beta/projects; do
132     sleep 30
133 done
134 OLD_PID=$(jq -r '.data[0].id' projects.json)
135
136 curl -s -H "Accept: application/json" -H "Content-Type: application/json" -d '{"accountId":"1a1"}' http://$RANCHER_IP:8080/v2-beta/apikeys > apikeys.json
137 echo export CATTLE_ACCESS_KEY=`jq -r '.publicValue' apikeys.json` >> api-keys-rc
138 echo export CATTLE_SECRET_KEY=`jq -r '.secretValue' apikeys.json` >> api-keys-rc
139 source api-keys-rc
140
141
142 curl -u "${CATTLE_ACCESS_KEY}:${CATTLE_SECRET_KEY}" -X PUT -H 'Accept: application/json' -H 'Content-Type: application/json' -d '{"id":"registry.default","type":"activeSetting","baseType":"setting","name":"registry.default","activeValue":"__docker_proxy__","inDb":true,"source":"Database","value":"__docker_proxy__"}'  http://$RANCHER_IP:8080/v2-beta/settings/registry.default
143
144 curl -s -u "${CATTLE_ACCESS_KEY}:${CATTLE_SECRET_KEY}" -X DELETE -H 'Content-Type: application/json' "http://$RANCHER_IP:8080/v2-beta/projects/$OLD_PID"
145
146 until [ ! -z "$TEMPLATE_ID" ] && [ "$TEMPLATE_ID" != "null" ]; do
147     sleep 5
148     curl -s -H "Accept: application/json" http://$RANCHER_IP:8080/v2-beta/projectTemplates?name=Kubernetes > projectTemplatesKubernetes.json
149     TEMPLATE_ID=$(jq -r '.data[0].id' projectTemplatesKubernetes.json)
150 done
151
152
153 curl -s -u "${CATTLE_ACCESS_KEY}:${CATTLE_SECRET_KEY}" \
154 -X PUT \
155 -H 'Accept: application/json' \
156 -H 'Content-Type: application/json' \
157 -d '{"stacks":[{"type":"catalogTemplate", "answers":{"CONSTRAINT_TYPE":"required"}, "name":"kubernetes", "templateVersionId":"library:infra*k8s:52"}, {"type":"catalogTemplate", "name":"network-services", "templateId":"library:infra*network-services"}, {"type":"catalogTemplate", "name":"ipsec", "templateId":"library:infra*ipsec"}, {"type":"catalogTemplate", "name":"healthcheck", "templateId":"library:infra*healthcheck"}]}' \
158 "http://$RANCHER_IP:8080/v2-beta/projecttemplates/$TEMPLATE_ID"
159
160 curl -s -u "${CATTLE_ACCESS_KEY}:${CATTLE_SECRET_KEY}" -X POST -H 'Content-Type: application/json' -d '{ "name":"oom", "projectTemplateId":"'$TEMPLATE_ID'" }' "http://$RANCHER_IP:8080/v2-beta/projects" > project.json
161 PID=`jq -r '.id' project.json`
162 echo export RANCHER_URL=http://$RANCHER_IP:8080/v1/projects/$PID >> api-keys-rc
163 source api-keys-rc
164
165 until [ $(jq -r '.state' project.json) == "active" ]; do
166     sleep 5
167     curl -s -H "Accept: application/json" http://$RANCHER_IP:8080/v1/projects/$PID > project.json
168 done
169
170
171 curl -s -u $CATTLE_ACCESS_KEY:$CATTLE_SECRET_KEY -X POST -H 'Accept: application/json' -H 'Content-Type: application/json' -d '{"name":"docker-proxy", "serverAddress":"__docker_proxy__"}' $RANCHER_URL/registries > registry.json
172 RID=$(jq -r '.id' registry.json)
173
174
175 curl -u "${CATTLE_ACCESS_KEY}:${CATTLE_SECRET_KEY}" -X POST -H 'Accept: application/json' -H 'Content-Type: application/json' -d '{"publicValue":"docker", "registryId":"'$RID'", "secretValue":"docker", "type":"registryCredential"}' "http://$RANCHER_IP:8080/v2-beta/projects/$PID/registrycredential"
176
177
178
179 TID=$(curl -s -X POST -H "Accept: application/json" -H "Content-Type: application/json" http://$RANCHER_IP:8080/v1/projects/$PID/registrationTokens | jq -r '.id')
180 touch token.json
181 while [ $(jq -r .command token.json | wc -c) -lt 10 ]; do
182     sleep 5
183     curl -s -X GET -H "Accept: application/json" http://$RANCHER_IP:8080/v1/projects/$PID/registrationToken/$TID > token.json
184 done
185 jq -r .command token.json > rancher_agent_cmd.sh
186 chmod +x rancher_agent_cmd.sh
187 cp rancher_agent_cmd.sh /dockerdata-nfs
188 popd
189
190 cd /dockerdata-nfs
191 git add -A
192 git commit -a -m "Add rancher agent command file"
193 cd ~
194
195 cp /dockerdata-nfs/rancher_agent_cmd.sh .
196 sed -i "s/docker run/docker run -e CATTLE_HOST_LABELS='orchestration=true' -e CATTLE_AGENT_IP=${HOST_IP}/g" rancher_agent_cmd.sh
197 source rancher_agent_cmd.sh
198
199
200
201 KUBETOKEN=$(echo -n 'Basic '$(echo -n "$CATTLE_ACCESS_KEY:$CATTLE_SECRET_KEY" | base64 -w 0) | base64 -w 0)
202
203 # create .kube/config
204 cat > ~/.kube/config <<EOF
205 apiVersion: v1
206 kind: Config
207 clusters:
208 - cluster:
209     api-version: v1
210     insecure-skip-tls-verify: true
211     server: "https://__rancher_ip_addr__:8080/r/projects/$PID/kubernetes:6443"
212   name: "oom"
213 contexts:
214 - context:
215     cluster: "oom"
216     user: "oom"
217   name: "oom"
218 current-context: "oom"
219 users:
220 - name: "oom"
221   user:
222     token: "$KUBETOKEN"
223 EOF
224
225 export KUBECONFIG=/root/.kube/config
226 kubectl config view
227
228
229
230 # Enable auto-completion for kubectl
231 echo "source <(kubectl completion bash)" >> ~/.bashrc
232
233
234 # wait for kubernetes to initialze
235 sleep 3m
236 until [ $(kubectl get pods --namespace kube-system | tail -n +2 | grep -c Running) -ge 6 ]; do
237     sleep 1m
238 done
239
240
241 # Install using OOM
242 export HOME=/root
243 mkdir -p ~/.ssh
244 cp ~ubuntu/.ssh/authorized_keys ~/.ssh
245
246
247 # update and initialize git
248 apt-get -y install git
249 git config --global user.email root@rancher
250 git config --global user.name root@rancher
251 git config --global log.decorate auto
252
253 # Clone OOM:
254 cd ~
255 git clone -b __oom_gerrit_branch__ https://gerrit.onap.org/r/oom
256 cd oom
257 git fetch https://gerrit.onap.org/r/oom __oom_gerrit_refspec__
258 git checkout FETCH_HEAD
259 git checkout -b workarounds
260 git log -1
261
262 # Clone integration
263 cd ~
264 git clone -b __integration_gerrit_branch__ https://gerrit.onap.org/r/integration
265 cd integration
266 git fetch https://gerrit.onap.org/r/integration __integration_gerrit_refspec__
267 git checkout FETCH_HEAD
268
269 if [ ! -z "__docker_manifest__" ]; then
270     cd version-manifest/src/main/scripts
271     ./update-oom-image-versions.sh ../resources/__docker_manifest__ ~/oom/
272 fi
273
274 cd ~/oom
275 git diff
276 git commit -a -m "apply manifest versions"
277 git tag -a "deploy0" -m "initial deployment"
278
279
280 # Run ONAP:
281 cd ~/oom/kubernetes/
282 helm init --client-only
283 helm init --upgrade
284 helm serve &
285 sleep 10
286 helm repo add local http://127.0.0.1:8879
287 helm repo list
288 make all
289 rsync -avt ~/oom/kubernetes/helm/plugins ~/.helm/
290 helm search -l | grep local
291 helm deploy dev local/onap -f ~/oom/kubernetes/onap/resources/environments/public-cloud.yaml -f ~/integration-override.yaml --namespace onap | tee ~/helm-deploy.log
292 helm list
293
294
295 # Check ONAP status:
296 sleep 10
297 kubectl get pods --all-namespaces
298 kubectl get nodes
299 kubectl top nodes
Integration framework, automated tools, code and scripts, best practice guidance related to cross-project Continuous System Integration Testing (CSIT), and delivery of ONAP.