blob: bd39963de29751d9e3ada6bbbbd414877bea4cf5 [file] [log] [blame]
Gary Wu1ff56672018-01-17 20:51:45 -08001#!/bin/bash -x
Gary Wua3fb86f2018-06-04 16:23:54 -07002#
3# Copyright 2018 Huawei Technologies Co., Ltd.
4#
5# Licensed under the Apache License, Version 2.0 (the "License");
6# you may not use this file except in compliance with the License.
7# You may obtain a copy of the License at
8#
9# http://www.apache.org/licenses/LICENSE-2.0
10#
11
Gary Wu3fd6c2a2018-10-28 21:44:00 -070012export DEBIAN_FRONTEND=noninteractive
Gary Wu895a4ac2018-10-31 12:30:54 -070013HOST_IP=$(hostname -I)
14echo $HOST_IP `hostname` >> /etc/hosts
Gary Wu1ff56672018-01-17 20:51:45 -080015printenv
16
Gary Wu14a6b302018-05-01 15:59:28 -070017mkdir -p /opt/config
18echo "__rancher_ip_addr__" > /opt/config/rancher_ip_addr.txt
19echo "__k8s_vm_ips__" > /opt/config/k8s_vm_ips.txt
Gary Wuad513722018-07-26 13:08:47 -070020echo "__k8s_private_ips__" > /opt/config/k8s_private_ips.txt
Gary Wu978171e2018-07-24 11:56:01 -070021echo "__public_net_id__" > /opt/config/public_net_id.txt
22echo "__oam_network_cidr__" > /opt/config/oam_network_cidr.txt
Gary Wu11c98742018-05-02 16:19:04 -070023echo "__oam_network_id__" > /opt/config/oam_network_id.txt
24echo "__oam_subnet_id__" > /opt/config/oam_subnet_id.txt
Gary Wu17440fe2018-10-22 15:12:07 -070025echo "__sec_group__" > /opt/config/sec_group.txt
Gary Wu87aa8b52018-08-09 08:10:24 -070026echo "__integration_gerrit_branch__" > /opt/config/integration_gerrit_branch.txt
27echo "__integration_gerrit_refspec__" > /opt/config/integration_gerrit_refspec.txt
28echo "__oom_gerrit_branch__" > /opt/config/oom_gerrit_branch.txt
29echo "__oom_gerrit_refspec__" > /opt/config/oom_gerrit_refspec.txt
Gary Wu81836d22018-06-22 13:48:50 -070030echo "__docker_manifest__" > /opt/config/docker_manifest.txt
Gary Wu978171e2018-07-24 11:56:01 -070031echo "__docker_proxy__" > /opt/config/docker_proxy.txt
Gary Wu7a04b3d2018-08-15 12:31:46 -070032echo "__docker_version__" > /opt/config/docker_version.txt
33echo "__rancher_version__" > /opt/config/rancher_version.txt
34echo "__rancher_agent_version__" > /opt/config/rancher_agent_version.txt
35echo "__kubectl_version__" > /opt/config/kubectl_version.txt
36echo "__helm_version__" > /opt/config/helm_version.txt
Gary Wu48a32942018-11-08 07:34:49 -080037echo "__helm_deploy_delay__" > /opt/config/helm_deploy_delay.txt
Gary Wub8be70a2018-11-17 17:14:38 -080038echo "__mtu__" > /opt/config/mtu.txt
Gary Wu11c98742018-05-02 16:19:04 -070039
40cat <<EOF > /opt/config/integration-override.yaml
41__integration_override_yaml__
42EOF
Gary Wu978171e2018-07-24 11:56:01 -070043sed -i 's/\_\_public_net_id__/__public_net_id__/g' /opt/config/integration-override.yaml
44sed -i 's|\_\_oam_network_cidr__|__oam_network_cidr__|g' /opt/config/integration-override.yaml
Gary Wu11c98742018-05-02 16:19:04 -070045sed -i 's/\_\_oam_network_id__/__oam_network_id__/g' /opt/config/integration-override.yaml
46sed -i 's/\_\_oam_subnet_id__/__oam_subnet_id__/g' /opt/config/integration-override.yaml
Gary Wu17440fe2018-10-22 15:12:07 -070047sed -i 's/\_\_sec_group__/__sec_group__/g' /opt/config/integration-override.yaml
Gary Wued95ca72018-07-26 10:24:51 -070048sed -i 's/\_\_rancher_ip_addr__/__rancher_ip_addr__/g' /opt/config/integration-override.yaml
Gary Wu48a32942018-11-08 07:34:49 -080049sed -i 's/\_\_k8s_01_vm_ip__/__k8s_01_vm_ip__/g' /opt/config/integration-override.yaml
Gary Wu978171e2018-07-24 11:56:01 -070050sed -i 's/\_\_docker_proxy__/__docker_proxy__/g' /opt/config/integration-override.yaml
Gary Wu11c98742018-05-02 16:19:04 -070051cp /opt/config/integration-override.yaml /root
Gary Wu978171e2018-07-24 11:56:01 -070052cat /root/integration-override.yaml
Gary Wu14a6b302018-05-01 15:59:28 -070053
Gary Wu1ff56672018-01-17 20:51:45 -080054mkdir -p /etc/docker
Gary Wu3ad596f2018-02-08 07:16:37 -080055if [ ! -z "__docker_proxy__" ]; then
56 cat > /etc/docker/daemon.json <<EOF
Gary Wu1ff56672018-01-17 20:51:45 -080057{
Gary Wub8be70a2018-11-17 17:14:38 -080058 "mtu": __mtu__,
Gary Wu1ff56672018-01-17 20:51:45 -080059 "insecure-registries" : ["__docker_proxy__"]
60}
61EOF
Gary Wub8be70a2018-11-17 17:14:38 -080062else
63 cat > /etc/docker/daemon.json <<EOF
64{
65 "mtu": __mtu__
66}
67EOF
Gary Wu3ad596f2018-02-08 07:16:37 -080068fi
69if [ ! -z "__apt_proxy__" ]; then
70 cat > /etc/apt/apt.conf.d/30proxy<<EOF
Gary Wu1ff56672018-01-17 20:51:45 -080071Acquire::http { Proxy "http://__apt_proxy__"; };
72Acquire::https::Proxy "DIRECT";
73EOF
Gary Wu3ad596f2018-02-08 07:16:37 -080074fi
Gary Wu14a6b302018-05-01 15:59:28 -070075
Gary Wu675eb152018-10-26 10:50:27 -070076# workaround for OpenStack intermittent failure to change default apt mirrors
77sed -i 's|http://archive.ubuntu.com|http://nova.clouds.archive.ubuntu.com|g' /etc/apt/sources.list
78
Gary Wub0e36502018-10-16 11:01:07 -070079while ! hash jq &> /dev/null; do
80 apt-get -y update
Gary Wu675eb152018-10-26 10:50:27 -070081 apt-get -y install linux-image-extra-$(uname -r) apt-transport-https ca-certificates curl software-properties-common jq make nfs-kernel-server moreutils
Gary Wub0e36502018-10-16 11:01:07 -070082 sleep 10
83done
Gary Wu14a6b302018-05-01 15:59:28 -070084
Gary Wu48a32942018-11-08 07:34:49 -080085mkdir -p /dockerdata-nfs
Gary Wuc4749702018-06-26 14:27:41 -070086
Gary Wu48a32942018-11-08 07:34:49 -080087# use RAM disk for /dockerdata-nfs for testing
88if [ "__use_ramdisk__" = "true" ]; then
89 echo "tmpfs /dockerdata-nfs tmpfs noatime,size=75% 1 2" >> /etc/fstab
90 mount /dockerdata-nfs
91fi
Gary Wu14a6b302018-05-01 15:59:28 -070092# version control the persistence volume to see what's happening
Gary Wu14a6b302018-05-01 15:59:28 -070093chmod 777 /dockerdata-nfs/
94chown nobody:nogroup /dockerdata-nfs/
95cd /dockerdata-nfs/
96git init
Gary Wu11c98742018-05-02 16:19:04 -070097git config user.email "root@onap"
Gary Wu14a6b302018-05-01 15:59:28 -070098git config user.name "root"
99git add -A
100git commit -m "initial commit"
101
102# export NFS mount
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700103echo "/dockerdata-nfs *(rw,fsid=1,async,no_root_squash,no_subtree_check)" | tee /etc/exports
Gary Wu14a6b302018-05-01 15:59:28 -0700104
105
106exportfs -a
107systemctl restart nfs-kernel-server
108
109cd ~
110
Gary Wu7a04b3d2018-08-15 12:31:46 -0700111# install docker __docker_version__
Gary Wub0e36502018-10-16 11:01:07 -0700112while ! hash docker &> /dev/null; do
113 curl -s https://releases.rancher.com/install-docker/__docker_version__.sh | sh
114 usermod -aG docker ubuntu
115 sleep 10
116done
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700117apt-mark hold docker-ce
Gary Wu14a6b302018-05-01 15:59:28 -0700118
Gary Wu7a04b3d2018-08-15 12:31:46 -0700119# install rancher __rancher_version__
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700120docker run --name rancher-server --restart unless-stopped -d -p 8080:8080 -e CATTLE_BOOTSTRAP_REQUIRED_IMAGE=__docker_proxy__/rancher/agent:v__rancher_agent_version__ __docker_proxy__/rancher/server:v__rancher_version__
Gary Wu14a6b302018-05-01 15:59:28 -0700121
Gary Wu7a04b3d2018-08-15 12:31:46 -0700122# install kubectl __kubectl_version__
123curl -s -LO https://storage.googleapis.com/kubernetes-release/release/v__kubectl_version__/bin/linux/amd64/kubectl
Gary Wu14a6b302018-05-01 15:59:28 -0700124chmod +x ./kubectl
125sudo mv ./kubectl /usr/local/bin/kubectl
126mkdir ~/.kube
127
Gary Wu7a04b3d2018-08-15 12:31:46 -0700128# install helm __helm_version__
Gary Wu895a4ac2018-10-31 12:30:54 -0700129mkdir -p helm
130pushd helm
Gary Wu7a04b3d2018-08-15 12:31:46 -0700131wget -q http://storage.googleapis.com/kubernetes-helm/helm-v__helm_version__-linux-amd64.tar.gz
132tar -zxvf helm-v__helm_version__-linux-amd64.tar.gz
Gary Wu895a4ac2018-10-31 12:30:54 -0700133sudo cp linux-amd64/helm /usr/local/bin/helm
134popd
Gary Wu14a6b302018-05-01 15:59:28 -0700135
Gary Wu895a4ac2018-10-31 12:30:54 -0700136mkdir -p rancher
137pushd rancher
Gary Wuad513722018-07-26 13:08:47 -0700138echo export RANCHER_IP=__rancher_private_ip_addr__ > api-keys-rc
Gary Wu14a6b302018-05-01 15:59:28 -0700139source api-keys-rc
140
Gary Wu14a6b302018-05-01 15:59:28 -0700141until curl -s -o projects.json -H "Accept: application/json" http://$RANCHER_IP:8080/v2-beta/projects; do
Gary Wub0e36502018-10-16 11:01:07 -0700142 sleep 30
Gary Wu14a6b302018-05-01 15:59:28 -0700143done
144OLD_PID=$(jq -r '.data[0].id' projects.json)
145
146curl -s -H "Accept: application/json" -H "Content-Type: application/json" -d '{"accountId":"1a1"}' http://$RANCHER_IP:8080/v2-beta/apikeys > apikeys.json
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700147echo export CATTLE_ACCESS_KEY=`jq -r '.publicValue' apikeys.json` >> api-keys-rc
148echo export CATTLE_SECRET_KEY=`jq -r '.secretValue' apikeys.json` >> api-keys-rc
Gary Wu14a6b302018-05-01 15:59:28 -0700149source api-keys-rc
150
151
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700152curl -u "${CATTLE_ACCESS_KEY}:${CATTLE_SECRET_KEY}" -X PUT -H 'Accept: application/json' -H 'Content-Type: application/json' -d '{"id":"registry.default","type":"activeSetting","baseType":"setting","name":"registry.default","activeValue":"__docker_proxy__","inDb":true,"source":"Database","value":"__docker_proxy__"}' http://$RANCHER_IP:8080/v2-beta/settings/registry.default
Gary Wu14a6b302018-05-01 15:59:28 -0700153
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700154curl -s -u "${CATTLE_ACCESS_KEY}:${CATTLE_SECRET_KEY}" -X DELETE -H 'Content-Type: application/json' "http://$RANCHER_IP:8080/v2-beta/projects/$OLD_PID"
Gary Wu14a6b302018-05-01 15:59:28 -0700155
156until [ ! -z "$TEMPLATE_ID" ] && [ "$TEMPLATE_ID" != "null" ]; do
157 sleep 5
158 curl -s -H "Accept: application/json" http://$RANCHER_IP:8080/v2-beta/projectTemplates?name=Kubernetes > projectTemplatesKubernetes.json
159 TEMPLATE_ID=$(jq -r '.data[0].id' projectTemplatesKubernetes.json)
160done
161
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700162
163curl -s -u "${CATTLE_ACCESS_KEY}:${CATTLE_SECRET_KEY}" \
164-X PUT \
165-H 'Accept: application/json' \
166-H 'Content-Type: application/json' \
Gary Wub8be70a2018-11-17 17:14:38 -0800167-d '{"stacks":[{"type":"catalogTemplate", "answers":{"CONSTRAINT_TYPE":"required"}, "name":"kubernetes", "templateVersionId":"library:infra*k8s:52"}, {"type":"catalogTemplate", "name":"network-services", "templateId":"library:infra*network-services"}, {"type":"catalogTemplate", "name":"ipsec", "templateId":"library:infra*ipsec", "answers":{"MTU":"__mtu__"}}, {"type":"catalogTemplate", "name":"healthcheck", "templateId":"library:infra*healthcheck"}]}' \
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700168"http://$RANCHER_IP:8080/v2-beta/projecttemplates/$TEMPLATE_ID"
169
170curl -s -u "${CATTLE_ACCESS_KEY}:${CATTLE_SECRET_KEY}" -X POST -H 'Content-Type: application/json' -d '{ "name":"oom", "projectTemplateId":"'$TEMPLATE_ID'" }' "http://$RANCHER_IP:8080/v2-beta/projects" > project.json
Gary Wu14a6b302018-05-01 15:59:28 -0700171PID=`jq -r '.id' project.json`
172echo export RANCHER_URL=http://$RANCHER_IP:8080/v1/projects/$PID >> api-keys-rc
173source api-keys-rc
174
175until [ $(jq -r '.state' project.json) == "active" ]; do
176 sleep 5
177 curl -s -H "Accept: application/json" http://$RANCHER_IP:8080/v1/projects/$PID > project.json
178done
179
180
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700181curl -s -u $CATTLE_ACCESS_KEY:$CATTLE_SECRET_KEY -X POST -H 'Accept: application/json' -H 'Content-Type: application/json' -d '{"name":"docker-proxy", "serverAddress":"__docker_proxy__"}' $RANCHER_URL/registries > registry.json
Gary Wu14a6b302018-05-01 15:59:28 -0700182RID=$(jq -r '.id' registry.json)
183
184
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700185curl -u "${CATTLE_ACCESS_KEY}:${CATTLE_SECRET_KEY}" -X POST -H 'Accept: application/json' -H 'Content-Type: application/json' -d '{"publicValue":"docker", "registryId":"'$RID'", "secretValue":"docker", "type":"registryCredential"}' "http://$RANCHER_IP:8080/v2-beta/projects/$PID/registrycredential"
Gary Wu14a6b302018-05-01 15:59:28 -0700186
187
188
189TID=$(curl -s -X POST -H "Accept: application/json" -H "Content-Type: application/json" http://$RANCHER_IP:8080/v1/projects/$PID/registrationTokens | jq -r '.id')
190touch token.json
191while [ $(jq -r .command token.json | wc -c) -lt 10 ]; do
192 sleep 5
193 curl -s -X GET -H "Accept: application/json" http://$RANCHER_IP:8080/v1/projects/$PID/registrationToken/$TID > token.json
194done
195jq -r .command token.json > rancher_agent_cmd.sh
196chmod +x rancher_agent_cmd.sh
197cp rancher_agent_cmd.sh /dockerdata-nfs
Gary Wu895a4ac2018-10-31 12:30:54 -0700198popd
199
Gary Wu11c98742018-05-02 16:19:04 -0700200cd /dockerdata-nfs
201git add -A
202git commit -a -m "Add rancher agent command file"
203cd ~
Gary Wu14a6b302018-05-01 15:59:28 -0700204
Gary Wu89f67232018-11-01 13:45:31 -0700205
206# Uncomment this section to run orchestration plane on the Rancher VM
207#
208# cp /dockerdata-nfs/rancher_agent_cmd.sh .
209# sed -i "s/docker run/docker run -e CATTLE_HOST_LABELS='orchestration=true' -e CATTLE_AGENT_IP=${HOST_IP}/g" rancher_agent_cmd.sh
210# source rancher_agent_cmd.sh
Gary Wu895a4ac2018-10-31 12:30:54 -0700211
212
Gary Wu14a6b302018-05-01 15:59:28 -0700213
Gary Wu3fd6c2a2018-10-28 21:44:00 -0700214KUBETOKEN=$(echo -n 'Basic '$(echo -n "$CATTLE_ACCESS_KEY:$CATTLE_SECRET_KEY" | base64 -w 0) | base64 -w 0)
Gary Wu14a6b302018-05-01 15:59:28 -0700215
Gary Wue7f33612018-11-02 13:10:06 -0700216NAMESPACE=onap
217
Gary Wu14a6b302018-05-01 15:59:28 -0700218# create .kube/config
219cat > ~/.kube/config <<EOF
220apiVersion: v1
221kind: Config
222clusters:
223- cluster:
224 api-version: v1
225 insecure-skip-tls-verify: true
Gary Wuad513722018-07-26 13:08:47 -0700226 server: "https://__rancher_ip_addr__:8080/r/projects/$PID/kubernetes:6443"
Gary Wu14a6b302018-05-01 15:59:28 -0700227 name: "oom"
228contexts:
229- context:
230 cluster: "oom"
Gary Wue7f33612018-11-02 13:10:06 -0700231 namespace: "$NAMESPACE"
Gary Wu14a6b302018-05-01 15:59:28 -0700232 user: "oom"
233 name: "oom"
234current-context: "oom"
235users:
236- name: "oom"
237 user:
238 token: "$KUBETOKEN"
239EOF
240
241export KUBECONFIG=/root/.kube/config
242kubectl config view
243
Gary Wu895a4ac2018-10-31 12:30:54 -0700244
245
Gary Wub0e36502018-10-16 11:01:07 -0700246# Enable auto-completion for kubectl
247echo "source <(kubectl completion bash)" >> ~/.bashrc
248
249
Gary Wu14a6b302018-05-01 15:59:28 -0700250# wait for kubernetes to initialze
Gary Wub0e36502018-10-16 11:01:07 -0700251sleep 3m
Gary Wu14a6b302018-05-01 15:59:28 -0700252until [ $(kubectl get pods --namespace kube-system | tail -n +2 | grep -c Running) -ge 6 ]; do
Gary Wub0e36502018-10-16 11:01:07 -0700253 sleep 1m
Gary Wu14a6b302018-05-01 15:59:28 -0700254done
255
256
257# Install using OOM
258export HOME=/root
Gary Wu978171e2018-07-24 11:56:01 -0700259mkdir -p ~/.ssh
260cp ~ubuntu/.ssh/authorized_keys ~/.ssh
261
Gary Wu14a6b302018-05-01 15:59:28 -0700262
Gary Wu0dfbea32018-05-12 09:27:44 -0700263# update and initialize git
264apt-get -y install git
265git config --global user.email root@rancher
266git config --global user.name root@rancher
267git config --global log.decorate auto
268
Gary Wu14a6b302018-05-01 15:59:28 -0700269# Clone OOM:
270cd ~
Gary Wu87aa8b52018-08-09 08:10:24 -0700271git clone -b __oom_gerrit_branch__ https://gerrit.onap.org/r/oom
Gary Wu14a6b302018-05-01 15:59:28 -0700272cd oom
Gary Wu87aa8b52018-08-09 08:10:24 -0700273git fetch https://gerrit.onap.org/r/oom __oom_gerrit_refspec__
274git checkout FETCH_HEAD
Gary Wu0dfbea32018-05-12 09:27:44 -0700275git checkout -b workarounds
Gary Wu87aa8b52018-08-09 08:10:24 -0700276git log -1
Gary Wu14a6b302018-05-01 15:59:28 -0700277
Gary Wu81836d22018-06-22 13:48:50 -0700278# Clone integration
279cd ~
Gary Wu87aa8b52018-08-09 08:10:24 -0700280git clone -b __integration_gerrit_branch__ https://gerrit.onap.org/r/integration
Gary Wu81836d22018-06-22 13:48:50 -0700281cd integration
Gary Wu87aa8b52018-08-09 08:10:24 -0700282git fetch https://gerrit.onap.org/r/integration __integration_gerrit_refspec__
Gary Wu81836d22018-06-22 13:48:50 -0700283git checkout FETCH_HEAD
284
Gary Wu48a32942018-11-08 07:34:49 -0800285
Gary Wu87aa8b52018-08-09 08:10:24 -0700286if [ ! -z "__docker_manifest__" ]; then
287 cd version-manifest/src/main/scripts
288 ./update-oom-image-versions.sh ../resources/__docker_manifest__ ~/oom/
289fi
Gary Wu81836d22018-06-22 13:48:50 -0700290
291cd ~/oom
292git diff
Gary Wu87aa8b52018-08-09 08:10:24 -0700293git commit -a -m "apply manifest versions"
294git tag -a "deploy0" -m "initial deployment"
Gary Wu81836d22018-06-22 13:48:50 -0700295
296
Gary Wu14a6b302018-05-01 15:59:28 -0700297# Run ONAP:
298cd ~/oom/kubernetes/
Gary Wu14a6b302018-05-01 15:59:28 -0700299helm init --client-only
300helm init --upgrade
301helm serve &
Gary Wub0e36502018-10-16 11:01:07 -0700302sleep 10
Gary Wu14a6b302018-05-01 15:59:28 -0700303helm repo add local http://127.0.0.1:8879
304helm repo list
305make all
306helm search -l | grep local
Gary Wu48a32942018-11-08 07:34:49 -0800307
308# install helm deploy plugin
309rsync -avt ~/oom/kubernetes/helm/plugins ~/.helm/
310# temporary workaround to throttle the helm deploy to alleviate startup disk contention issues
311if [ ! -z "__helm_deploy_delay__" ]; then
312 sed -i "/\^enabled:/a\ echo sleep __helm_deploy_delay__\n sleep __helm_deploy_delay__" ~/.helm/plugins/deploy/deploy.sh
313fi
314
315helm deploy dev local/onap -f ~/oom/kubernetes/onap/resources/environments/public-cloud.yaml -f ~/integration-override.yaml --namespace $NAMESPACE --verbose
316
317# re-install original helm deploy plugin
318rsync -avt ~/oom/kubernetes/helm/plugins ~/.helm/
319
Gary Wu389aa902018-09-17 13:53:54 -0700320helm list
Gary Wu14a6b302018-05-01 15:59:28 -0700321
322
Gary Wu48a32942018-11-08 07:34:49 -0800323
Gary Wu14a6b302018-05-01 15:59:28 -0700324# Check ONAP status:
Gary Wub0e36502018-10-16 11:01:07 -0700325sleep 10
Gary Wu14a6b302018-05-01 15:59:28 -0700326kubectl get pods --all-namespaces
Gary Wub0e36502018-10-16 11:01:07 -0700327kubectl get nodes
328kubectl top nodes