blob: c6f665cd51de17f03dc73756f1c432a0126b6637 [file] [log] [blame]
#!/bin/bash
#
# Copyright 2018 Huawei Technologies Co., Ltd.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
stack_name="onap"
portal_hostname="portal.api.simpledemo.onap.org"
full_deletion=false
# default branch for cloning integration repo
integration_gerrit_branch=$(git rev-parse --abbrev-ref HEAD)
# default branch for cloning oom repo
# by default, assume oom branch is the same as integration branch
oom_gerrit_branch=$(git rev-parse --abbrev-ref HEAD)
if [ -z "$WORKSPACE" ]; then
export WORKSPACE=$(git rev-parse --show-toplevel)
fi
usage() {
echo "Usage: $0 [ -n <number of VMs {2-15}> ][ -s <stack name> ][ -d <domain> ][ -i <integration_branch> ][ -o <oom_branch> ][ -r ][ -q ] <env>" 1>&2;
echo "n: Number of worker VMs to deploy. This number must be between 2 and 15." 1>&2;
echo "s: Stack name. This name will be used for naming of resources." 1>&2;
echo "d: Base domain name to be used in portal UI URLs." 1>&2;
echo "i: Branch of integration repo to clone." 1>&2;
echo "o: Branch of oom repo to clone." 1>&2;
echo "r: Delete all ONAP resource within tenant." 1>&2;
echo "q: Quiet delete of all ONAP resources within tenant." 1>&2;
exit 1;
}
while getopts ":n:s:d:i:o:rq" o; do
case "${o}" in
n)
if [[ ${OPTARG} =~ ^[0-9]+$ ]];then
if [ ${OPTARG} -ge 2 -a ${OPTARG} -le 15 ]; then
vm_num=${OPTARG}
else
usage
fi
else
usage
fi
;;
s)
if [[ ! ${OPTARG} =~ ^[0-9]+$ ]];then
stack_name=${OPTARG}
else
usage
fi
;;
d)
if [[ ! ${OPTARG} =~ ^[0-9]+$ ]];then
portal_hostname=${OPTARG}
else
usage
fi
;;
i)
integration_gerrit_branch=${OPTARG}
;;
o)
oom_gerrit_branch=${OPTARG}
;;
r)
echo "The following command will delete all information relating to onap within your enviroment"
read -p "Are you certain this is what you want? (type y to confirm):" answer
if [ $answer = "y" ] || [ $answer = "Y" ] || [ $answer = "yes" ] || [ $answer = "Yes"]; then
echo "This may delete the work of other colleages within the same enviroment"
read -p "Are you certain this is what you want? (type y to confirm):" answer2
if [ $answer2 = "y" ] || [ $answer2 = "Y" ] || [ $answer2 = "yes" ] || [ $answer2 = "Yes"]; then
full_deletion=true
else
echo "Ending program"
exit 1
fi
else
echo "Ending program"
exit 1
fi
;;
q)
full_deletion=true
;;
*)
usage
;;
esac
done
shift $((OPTIND-1))
if [ "$#" -ne 1 ]; then
usage
fi
ENV_FILE=$1
if [ ! -f $ENV_FILE ];then
echo ENV file does not exist or was not given
exit 1
fi
set -x
SSH_KEY=~/.ssh/onap_key
if ! hash openstack jq java
then
echo "ERROR: Required commands not found; please install openstack CLI, jq, java."
exit 2
fi
SO_ENCRYPTION_KEY=aa3871669d893c7fb8abbcda31b88b4f
export OS_PASSWORD_ENCRYPTED_FOR_ROBOT=$(echo -n "$OS_PASSWORD" | openssl aes-128-ecb -e -K "$SO_ENCRYPTION_KEY" -nosalt | xxd -c 256 -p)
#Use new encryption method
pushd $WORKSPACE/deployment/heat/onap-rke/scripts
javac Crypto.java
#SO_ENCRYPTION_KEY=aa3871669d893c7fb8abbcda31b88b4f
export OS_PASSWORD_ENCRYPTED=$(java Crypto "$OS_PASSWORD" "$SO_ENCRYPTION_KEY")
popd
for n in $(seq 1 5); do
if [ $full_deletion = true ] ; then
$WORKSPACE/deployment/heat/onap-rke/scripts/teardown-onap.sh -n $stack_name -q
else
$WORKSPACE/deployment/heat/onap-rke/scripts/teardown-onap.sh -n $stack_name
fi
cd $WORKSPACE/deployment/heat/onap-rke
envsubst < $ENV_FILE > $ENV_FILE~
if [ -z "$vm_num" ]; then
cp onap-oom.yaml onap-oom.yaml~
else
./scripts/gen-onap-oom-yaml.sh $vm_num > onap-oom.yaml~
fi
if ! openstack stack create -t ./onap-oom.yaml~ -e $ENV_FILE~ $stack_name --parameter integration_gerrit_branch=$integration_gerrit_branch --parameter oom_gerrit_branch=$oom_gerrit_branch -parameter portal_hostname=$portal_hostname; then
break
fi
while [ "CREATE_IN_PROGRESS" == "$(openstack stack show -c stack_status -f value $stack_name)" ]; do
sleep 20
done
STATUS=$(openstack stack show -c stack_status -f value $stack_name)
echo $STATUS
if [ "CREATE_COMPLETE" != "$STATUS" ]; then
break
fi
for i in $(seq 1 30); do
sleep 30
NFS_IP=$(openstack stack output show $stack_name nfs_vm_ip -c output_value -f value)
K8S_IP=$(openstack stack output show $stack_name k8s_01_vm_ip -c output_value -f value)
timeout 1 ping -c 1 "$NFS_IP" && break
done
timeout 1 ping -c 1 "$NFS_IP" && break
echo Error: OpenStack infrastructure issue: unable to reach NFS server "$NFS_IP"
sleep 10
done
if ! timeout 1 ping -c 1 "$NFS_IP"; then
exit 2
fi
# wait until all k8s VMs have fully initialized
for VM_NAME in $(grep _vm: ./onap-oom.yaml~ | cut -d: -f1); do
echo $VM_NAME
VM_IP=$(openstack stack output show $stack_name ${VM_NAME}_ip -c output_value -f value)
ssh-keygen -R $VM_IP
until ssh -o StrictHostKeychecking=no -i $SSH_KEY ubuntu@$VM_IP ls -ad /dockerdata-nfs/.git; do
sleep 1m
done
done
cat > ./cluster.yml~ <<EOF
# GENERATED for $stack_name
nodes:
EOF
for VM_NAME in $(grep -E 'k8s_.+_vm:' ./onap-oom.yaml~ | cut -d: -f1); do
echo $VM_NAME
VM_IP=$(openstack stack output show $stack_name ${VM_NAME}_ip -c output_value -f value)
VM_PRIVATE_IP=$(openstack stack output show $stack_name ${VM_NAME}_private_ip -c output_value -f value)
VM_HOSTNAME=$stack_name-$(echo $VM_NAME | tr '_' '-' | cut -d- -f1,2)
cat >> ./cluster.yml~ <<EOF
- address: $VM_IP
port: "22"
internal_address: $VM_PRIVATE_IP
role:
- worker
hostname_override: "$VM_HOSTNAME"
user: ubuntu
ssh_key_path: "$SSH_KEY"
EOF
done
for VM_NAME in $(grep -E 'orch_.+_vm:' ./onap-oom.yaml~ | cut -d: -f1); do
echo $VM_NAME
VM_IP=$(openstack stack output show $stack_name ${VM_NAME}_ip -c output_value -f value)
VM_PRIVATE_IP=$(openstack stack output show $stack_name ${VM_NAME}_private_ip -c output_value -f value)
VM_HOSTNAME=$stack_name-$(echo $VM_NAME | tr '_' '-' | cut -d- -f1,2)
cat >> ./cluster.yml~ <<EOF
- address: $VM_IP
port: "22"
internal_address: $VM_PRIVATE_IP
role:
- controlplane
- etcd
hostname_override: "$VM_HOSTNAME"
user: ubuntu
ssh_key_path: "$SSH_KEY"
EOF
done
DOCKER_PROXY=$(openstack stack output show $stack_name docker_proxy -c output_value -f value)
cat >> ./cluster.yml~ <<EOF
services:
kube-api:
service_cluster_ip_range: 10.43.0.0/16
pod_security_policy: false
always_pull_images: false
kube-controller:
cluster_cidr: 10.42.0.0/16
service_cluster_ip_range: 10.43.0.0/16
kubelet:
cluster_domain: cluster.local
cluster_dns_server: 10.43.0.10
fail_swap_on: false
network:
plugin: canal
authentication:
strategy: x509
ssh_key_path: "$SSH_KEY"
ssh_agent_auth: false
authorization:
mode: rbac
ignore_docker_version: false
kubernetes_version: "v1.13.5-rancher1-2"
private_registries:
- url: $DOCKER_PROXY
is_default: true
cluster_name: "$stack_name"
restore:
restore: false
snapshot_name: ""
EOF
rm -rf ./target
mkdir -p ./target
cp ./cluster.yml~ ./target/cluster.yml
pushd ./target
wget https://github.com/rancher/rke/releases/download/v0.2.1/rke_linux-amd64
mv rke_linux-amd64 rke
chmod +x rke
# spin up k8s with RKE
until ./rke up; do
sleep 1m
./rke remove
done
scp -i $SSH_KEY ./kube_config_cluster.yml root@$NFS_IP:/root/.kube/config
popd
sleep 2m
ssh -o StrictHostKeychecking=no -i $SSH_KEY ubuntu@$NFS_IP "sed -u '/Cloud-init.*finished/q' <(tail -n+0 -f /var/log/cloud-init-output.log)"
exit 0