3 # Deploy script to install provisioning server for OPNFV Apex
4 # author: Dan Radez (dradez@redhat.com)
5 # author: Tim Rozet (trozet@redhat.com)
7 # Based on RDO Manager http://www.rdoproject.org
12 if [ "$TERM" != "unknown" ]; then
27 ntp_server="pool.ntp.org"
28 net_isolation_enabled="TRUE"
32 declare -A deploy_options_array
35 SSH_OPTIONS=(-o StrictHostKeyChecking=no -o GlobalKnownHostsFile=/dev/null -o UserKnownHostsFile=/dev/null -o LogLevel=error)
37 RESOURCES=/var/opt/opnfv/stack
39 INSTACKENV=$CONFIG/instackenv.json
40 OPNFV_NETWORK_TYPES="admin_network private_network public_network storage_network"
41 # Netmap used to map networks to OVS bridge names
42 NET_MAP['admin_network']="brbm"
43 NET_MAP['private_network']="brbm1"
44 NET_MAP['public_network']="brbm2"
45 NET_MAP['storage_network']="brbm3"
48 source $CONFIG/lib/common-functions.sh
51 ##translates yaml into variables
52 ##params: filename, prefix (ex. "config_")
53 ##usage: parse_yaml opnfv_ksgen_settings.yml "config_"
56 local s='[[:space:]]*' w='[a-zA-Z0-9_]*' fs=$(echo @|tr @ '\034')
57 sed -ne "s|^\($s\)\($w\)$s:$s\"\(.*\)\"$s\$|\1$fs\2$fs\3|p" \
58 -e "s|^\($s\)\($w\)$s:$s\(.*\)$s\$|\1$fs\2$fs\3|p" $1 |
60 indent = length($1)/2;
62 for (i in vname) {if (i > indent) {delete vname[i]}}
64 vn=""; for (i=0; i<indent; i++) {vn=(vn)(vname[i])("_")}
65 printf("%s%s%s=%s\n", "'$prefix'",vn, $2, $3);
70 ##checks if prefix exists in string
71 ##params: string, prefix
72 ##usage: contains_prefix "deploy_setting_launcher=1" "deploy_setting"
76 if echo $mystr | grep -E "^$prefix.*$" > /dev/null; then
82 ##parses variable from a string with '='
83 ##and removes global prefix
84 ##params: string, prefix
85 ##usage: parse_setting_var 'deploy_myvar=2' 'deploy_'
89 if echo $mystr | grep -E "^.+\=" > /dev/null; then
90 echo $(echo $mystr | grep -Eo "^.+\=" | tr -d '=' | sed 's/^'"$prefix"'//')
95 ##parses value from a string with '='
97 ##usage: parse_setting_value
98 parse_setting_value() {
100 echo $(echo $mystr | grep -Eo "\=.*$" | tr -d '=')
102 ##parses network settings yaml into globals
103 parse_network_settings() {
104 local required_network_settings="cidr"
105 local common_optional_network_settings="usable_ip_range"
106 local admin_network_optional_settings="provisioner_ip dhcp_range introspection_range"
107 local public_network_optional_settings="floating_ip_range gateway provisioner_ip"
110 eval $(parse_yaml ${NETSETS})
111 for network in ${OPNFV_NETWORK_TYPES}; do
112 if [[ $(eval echo \${${network}_enabled}) == 'true' ]]; then
113 enabled_network_list+="${network} "
114 elif [ "${network}" == 'admin_network' ]; then
115 echo -e "${red}ERROR: You must enable admin_network and configure it explicitly or use auto-detection${reset}"
117 elif [ "${network}" == 'public_network' ]; then
118 echo -e "${red}ERROR: You must enable public_network and configure it explicitly or use auto-detection${reset}"
121 echo -e "${blue}INFO: Network: ${network} is disabled, will collapse into admin_network"
125 # check for enabled network values
126 for enabled_network in ${enabled_network_list}; do
127 # detect required settings first to continue
128 echo -e "${blue}INFO: Detecting Required settings for: ${enabled_network}${reset}"
129 for setting in ${required_network_settings}; do
130 eval "setting_value=\${${enabled_network}_${setting}}"
131 if [ -z "${setting_value}" ]; then
132 # if setting is missing we try to autodetect
133 eval "nic_value=\${${enabled_network}_bridged_interface}"
134 if [ -n "$nic_value" ]; then
135 setting_value=$(eval find_${setting} ${nic_value})
136 if [ -n "$setting_value" ]; then
137 eval "${enabled_network}_${setting}=${setting_value}"
138 echo -e "${blue}INFO: Auto-detection: ${enabled_network}_${setting}: ${setting_value}${reset}"
140 echo -e "${red}ERROR: Auto-detection failed: ${setting} not found using interface: ${nic_value}${reset}"
144 echo -e "${red}ERROR: Required setting: ${setting} not found, and bridge interface not provided\
145 for Auto-detection${reset}"
149 echo -e "${blue}INFO: ${enabled_network}_${setting}: ${setting_value}${reset}"
152 echo -e "${blue}INFO: Detecting Common settings for: ${enabled_network}${reset}"
153 # detect optional common settings
154 # these settings can be auto-generated if missing
155 for setting in ${common_optional_network_settings}; do
156 eval "setting_value=\${${enabled_network}_${setting}}"
157 if [ -z "${setting_value}" ]; then
158 setting_value=$(eval find_${setting} ${nic_value})
159 if [ -n "$setting_value" ]; then
160 eval "${enabled_network}_${setting}=${setting_value}"
161 echo -e "${blue}INFO: Auto-detection: ${enabled_network}_${setting}: ${setting_value}${reset}"
163 # if Auto-detection fails we can auto-generate with CIDR
164 eval "cidr=\${${enabled_network}_cidr}"
165 setting_value=$(eval generate_${setting} ${cidr})
166 if [ -n "$setting_value" ]; then
167 eval "${enabled_network}_${setting}=${setting_value}"
168 echo -e "${blue}INFO: Auto-generated: ${enabled_network}_${setting}: ${setting_value}${reset}"
170 echo -e "${red}ERROR: Auto-generation failed: ${setting} not found${reset}"
175 echo -e "${blue}INFO: ${enabled_network}_${setting}: ${setting_value}${reset}"
178 echo -e "${blue}INFO: Detecting Network Specific settings for: ${enabled_network}${reset}"
179 # detect network specific settings
180 if [ -n $(eval echo \${${network}_optional_settings}) ]; then
181 eval "network_specific_settings=\${${enabled_network}_optional_settings}"
182 for setting in ${network_specific_settings}; do
183 eval "setting_value=\${${enabled_network}_${setting}}"
184 if [ -z "${setting_value}" ]; then
185 setting_value=$(eval find_${setting} ${nic_value})
186 if [ -n "$setting_value" ]; then
187 eval "${enabled_network}_${setting}=${setting_value}"
188 echo -e "${blue}INFO: Auto-detection: ${enabled_network}_${setting}: ${setting_value}${reset}"
190 eval "cidr=\${${enabled_network}_cidr}"
191 setting_value=$(eval generate_${setting} ${cidr})
192 if [ -n "$setting_value" ]; then
193 eval "${enabled_network}_${setting}=${setting_value}"
194 echo -e "${blue}INFO: Auto-generated: ${enabled_network}_${setting}: ${setting_value}${reset}"
196 echo -e "${red}ERROR: Auto-generation failed: ${setting} not found${reset}"
201 echo -e "${blue}INFO: ${enabled_network}_${setting}: ${setting_value}${reset}"
207 ##parses deploy settings yaml into globals and options array
209 ##usage: parse_deploy_settings
210 parse_deploy_settings() {
211 local global_prefix="deploy_global_params_"
212 local options_prefix="deploy_deploy_options_"
214 local settings=$(parse_yaml $DEPLOY_SETTINGS_FILE "deploy_")
216 for this_setting in $settings; do
217 if contains_prefix $this_setting $global_prefix; then
218 myvar=$(parse_setting_var $this_setting $global_prefix)
219 if [ -z "$myvar" ]; then
220 echo -e "${red}ERROR: while parsing ${DEPLOY_SETTINGS_FILE} for setting: ${this_setting}${reset}"
222 myvalue=$(parse_setting_value $this_setting)
223 # Do not override variables set by cmdline
224 if [ -z "$(eval echo \$$myvar)" ]; then
225 eval "$myvar=\$myvalue"
226 echo -e "${blue}Global parameter set: ${myvar}:${myvalue}${reset}"
228 echo -e "${blue}Global parameter already set: ${myvar}${reset}"
230 elif contains_prefix $this_setting $options_prefix; then
231 myvar=$(parse_setting_var $this_setting $options_prefix)
232 if [ -z "$myvar" ]; then
233 echo -e "${red}ERROR: while parsing ${DEPLOY_SETTINGS_FILE} for setting: ${this_setting}${reset}"
235 myvalue=$(parse_setting_value $this_setting)
236 deploy_options_array[$myvar]=$myvalue
237 echo -e "${blue}Deploy option set: ${myvar}:${myvalue}${reset}"
241 ##parses baremetal yaml settings into compatible json
242 ##writes the json to $CONFIG/instackenv_tmp.json
244 ##usage: parse_inventory_file
245 parse_inventory_file() {
246 local inventory=$(parse_yaml $INVENTORY_FILE)
248 local node_prefix="node"
253 # detect number of nodes
254 for entry in $inventory; do
255 if echo $entry | grep -Eo "^nodes_node[0-9]+_" > /dev/null; then
256 this_node=$(echo $entry | grep -Eo "^nodes_node[0-9]+_")
257 if [[ $inventory_list != *"$this_node"* ]]; then
258 inventory_list+="$this_node "
263 inventory_list=$(echo $inventory_list | sed 's/ $//')
265 for node in $inventory_list; do
269 node_total=$node_count
271 if [[ "$node_total" -lt 5 && ha_enabled == "TRUE" ]]; then
272 echo -e "${red}ERROR: You must provide at least 5 nodes for HA baremetal deployment${reset}"
274 elif [[ "$node_total" -lt 2 ]]; then
275 echo -e "${red}ERROR: You must provide at least 2 nodes for non-HA baremetal deployment${reset}"
279 eval $(parse_yaml $INVENTORY_FILE)
287 for node in $inventory_list; do
291 \"pm_password\": \"$(eval echo \${${node}ipmi_pass})\",
292 \"pm_type\": \"pxe_ipmitool\",
294 \"$(eval echo \${${node}mac_address})\"
296 \"cpu\": \"$(eval echo \${${node}cpus})\",
297 \"memory\": \"$(eval echo \${${node}memory})\",
298 \"disk\": \"$(eval echo \${${node}disk})\",
299 \"arch\": \"$(eval echo \${${node}arch})\",
300 \"pm_user\": \"$(eval echo \${${node}ipmi_user})\",
301 \"pm_addr\": \"$(eval echo \${${node}ipmi_ip})\",
302 \"capabilities\": \"$(eval echo \${${node}capabilities})\"
304 instack_env_output+=${node_output}
305 if [ $node_count -lt $node_total ]; then
306 instack_env_output+=" },"
308 instack_env_output+=" }"
312 instack_env_output+='
316 #Copy instackenv.json to undercloud for baremetal
317 echo -e "{blue}Parsed instackenv JSON:\n${instack_env_output}${reset}"
318 ssh -T ${SSH_OPTIONS[@]} "stack@$UNDERCLOUD" <<EOI
319 cat > instackenv.json << EOF
325 ##verify internet connectivity
327 function verify_internet {
328 if ping -c 2 $ping_site > /dev/null; then
329 if ping -c 2 www.google.com > /dev/null; then
330 echo "${blue}Internet connectivity detected${reset}"
333 echo "${red}Internet connectivity detected, but DNS lookup failed${reset}"
337 echo "${red}No internet connectivity detected${reset}"
342 ##download dependencies if missing and configure host
344 function configure_deps {
345 if ! verify_internet; then
346 echo "${red}Will not download dependencies${reset}"
350 # verify ip forwarding
351 if sysctl net.ipv4.ip_forward | grep 0; then
352 sudo sysctl -w net.ipv4.ip_forward=1
353 sudo sh -c "echo 'net.ipv4.ip_forward = 1' >> /etc/sysctl.conf"
356 # ensure no dhcp server is running on jumphost
357 if ! sudo systemctl status dhcpd | grep dead; then
358 echo "${red}WARN: DHCP Server detected on jumphost, disabling...${reset}"
359 sudo systemctl stop dhcpd
360 sudo systemctl disable dhcpd
363 # ensure networks are configured
364 systemctl start openvswitch
366 # If flat we only use admin network
367 if [[ "$net_isolation_enabled" == "FALSE" ]]; then
368 virsh_enabled_networks="admin_network"
369 # For baremetal we only need to create/attach instack to admin and public
370 elif [ "$virtual" == "FALSE" ]; then
371 virsh_enabled_networks="admin_network public_network"
373 virsh_enabled_neworks=$enabled_network_list
376 for network in ${OPNFV_NETWORK_TYPES}; do
377 ovs-vsctl list-br | grep ${NET_MAP[$network]} > /dev/null || ovs-vsctl add-br ${NET_MAP[$network]}
378 virsh net-list --all | grep ${NET_MAP[$network]} > /dev/null || virsh net-create $CONFIG/${NET_MAP[$network]}-net.xml
379 virsh net-list | grep -E "${NET_MAP[$network]}\s+active" > /dev/null || virsh net-start ${NET_MAP[$network]}
382 echo -e "${blue}INFO: Bridges set: ${reset}"
384 echo -e "${blue}INFO: virsh networks set: ${reset}"
387 if [[ -z "$virtual" || "$virtual" == "FALSE" ]]; then
388 # bridge interfaces to correct OVS instances for baremetal deployment
389 for network in ${enabled_network_list}; do
390 this_interface=$(eval echo \${${network}_bridged_interface})
391 # check if this a bridged interface for this network
392 if [[ ! -z "$this_interface" || "$this_interface" != "none" ]]; then
393 if ! attach_interface_to_ovs ${NET_MAP[$network]} ${this_interface} ${network}; then
394 echo -e "${red}ERROR: Unable to bridge interface ${this_interface} to bridge ${NET_MAP[$network]} for enabled network: ${network}${reset}"
397 echo -e "${blue}INFO: Interface ${this_interface} bridged to bridge ${NET_MAP[$network]} for enabled network: ${network}${reset}"
400 echo "${red}ERROR: Unable to determine interface to bridge to for enabled network: ${network}${reset}"
406 # ensure storage pool exists and is started
407 virsh pool-list --all | grep default > /dev/null || virsh pool-create $CONFIG/default-pool.xml
408 virsh pool-list | grep -Eo "default\s+active" > /dev/null || virsh pool-start default
410 if virsh net-list | grep default > /dev/null; then
411 num_ints_same_subnet=$(ip addr show | grep "inet 192.168.122" | wc -l)
412 if [ "$num_ints_same_subnet" -gt 1 ]; then
413 virsh net-destroy default
414 ##go edit /etc/libvirt/qemu/networks/default.xml
415 sed -i 's/192.168.122/192.168.123/g' /etc/libvirt/qemu/networks/default.xml
416 sed -i 's/192.168.122/192.168.123/g' instackenv-virt.json
418 virsh net-start default
419 virsh net-autostart default
423 if ! egrep '^flags.*(vmx|svm)' /proc/cpuinfo > /dev/null; then
424 echo "${red}virtualization extensions not found, kvm kernel module insertion may fail.\n \
425 Are you sure you have enabled vmx in your bios or hypervisor?${reset}"
428 if ! lsmod | grep kvm > /dev/null; then modprobe kvm; fi
429 if ! lsmod | grep kvm_intel > /dev/null; then modprobe kvm_intel; fi
431 if ! lsmod | grep kvm > /dev/null; then
432 echo "${red}kvm kernel modules not loaded!${reset}"
437 if [ ! -e ~/.ssh/id_rsa.pub ]; then
438 ssh-keygen -t rsa -N "" -f ~/.ssh/id_rsa
441 echo "${blue}All dependencies installed and running${reset}"
444 ##verify vm exists, an has a dhcp lease assigned to it
446 function setup_instack_vm {
447 if ! virsh list --all | grep instack > /dev/null; then
448 #virsh vol-create default instack.qcow2.xml
449 virsh define $CONFIG/instack.xml
451 #Upload instack image
452 #virsh vol-create default --file instack.qcow2.xml
453 virsh vol-create-as default instack.qcow2 30G --format qcow2
455 ### this doesn't work for some reason I was getting hangup events so using cp instead
456 #virsh vol-upload --pool default --vol instack.qcow2 --file $CONFIG/stack/instack.qcow2
457 #2015-12-05 12:57:20.569+0000: 8755: info : libvirt version: 1.2.8, package: 16.el7_1.5 (CentOS BuildSystem <http://bugs.centos.org>, 2015-11-03-13:56:46, worker1.bsys.centos.org)
458 #2015-12-05 12:57:20.569+0000: 8755: warning : virKeepAliveTimerInternal:143 : No response from client 0x7ff1e231e630 after 6 keepalive messages in 35 seconds
459 #2015-12-05 12:57:20.569+0000: 8756: warning : virKeepAliveTimerInternal:143 : No response from client 0x7ff1e231e630 after 6 keepalive messages in 35 seconds
460 #error: cannot close volume instack.qcow2
461 #error: internal error: received hangup / error event on socket
462 #error: Reconnected to the hypervisor
464 instack_dst=/var/lib/libvirt/images/instack.qcow2
465 cp -f $RESOURCES/instack.qcow2 $instack_dst
467 # resize instack machine
468 echo "Checking if instack needs to be resized..."
469 instack_size=$(LIBGUESTFS_BACKEND=direct virt-filesystems --long -h --all -a $instack_dst |grep device | grep -Eo "[0-9\.]+G" | sed -n 's/\([0-9][0-9]*\).*/\1/p')
470 if [ "$instack_size" -lt 30 ]; then
471 qemu-img resize /var/lib/libvirt/images/instack.qcow2 +25G
472 LIBGUESTFS_BACKEND=direct virt-resize --expand /dev/sda1 $RESOURCES/instack.qcow2 $instack_dst
473 LIBGUESTFS_BACKEND=direct virt-customize -a $instack_dst --run-command 'xfs_growfs -d /dev/sda1 || true'
474 new_size=$(LIBGUESTFS_BACKEND=direct virt-filesystems --long -h --all -a $instack_dst |grep filesystem | grep -Eo "[0-9\.]+G" | sed -n 's/\([0-9][0-9]*\).*/\1/p')
475 if [ "$new_size" -lt 30 ]; then
476 echo "Error resizing instack machine, disk size is ${new_size}"
479 echo "instack successfully resized"
482 echo "skipped instack resize, upstream is large enough"
486 echo "Found Instack VM, using existing VM"
489 # if the VM is not running update the authkeys and start it
490 if ! virsh list | grep instack > /dev/null; then
491 echo "Injecting ssh key to instack VM"
492 virt-customize -c qemu:///system -d instack --run-command "mkdir /root/.ssh/" \
493 --upload ~/.ssh/id_rsa.pub:/root/.ssh/authorized_keys \
494 --run-command "chmod 600 /root/.ssh/authorized_keys && restorecon /root/.ssh/authorized_keys" \
495 --run-command "cp /root/.ssh/authorized_keys /home/stack/.ssh/" \
496 --run-command "chown stack:stack /home/stack/.ssh/authorized_keys && chmod 600 /home/stack/.ssh/authorized_keys"
500 sleep 3 # let DHCP happen
503 echo -n "${blue}Waiting for instack's dhcp address${reset}"
504 while ! grep instack /var/lib/libvirt/dnsmasq/default.leases > /dev/null && [ $CNT -gt 0 ]; do
510 # get the instack VM IP
511 UNDERCLOUD=$(grep instack /var/lib/libvirt/dnsmasq/default.leases | awk '{print $3}' | head -n 1)
512 if [ -z "$UNDERCLOUD" ]; then
513 #if not found then dnsmasq may be using leasefile-ro
514 instack_mac=$(virsh domiflist instack | grep default | \
515 grep -Eo "[0-9a-f\]+:[0-9a-f\]+:[0-9a-f\]+:[0-9a-f\]+:[0-9a-f\]+:[0-9a-f\]+")
516 UNDERCLOUD=$(/usr/sbin/arp -e | grep ${instack_mac} | awk {'print $1'})
518 if [ -z "$UNDERCLOUD" ]; then
519 echo "\n\nNever got IP for Instack. Can Not Continue."
522 echo -e "${blue}\rInstack VM has IP $UNDERCLOUD${reset}"
525 echo -e "${blue}\rInstack VM has IP $UNDERCLOUD${reset}"
529 echo -en "${blue}\rValidating instack VM connectivity${reset}"
530 while ! ping -c 1 $UNDERCLOUD > /dev/null && [ $CNT -gt 0 ]; do
535 if [ "$CNT" -eq 0 ]; then
536 echo "Failed to contact Instack. Can Not Continue"
540 while ! ssh -T ${SSH_OPTIONS[@]} "root@$UNDERCLOUD" "echo ''" 2>&1> /dev/null && [ $CNT -gt 0 ]; do
545 if [ "$CNT" -eq 0 ]; then
546 echo "Failed to connect to Instack. Can Not Continue"
550 # extra space to overwrite the previous connectivity output
551 echo -e "${blue}\r ${reset}"
553 #add the instack public interface if net isolation is enabled (more than just admin network)
554 if [[ "$net_isolation_enabled" == "TRUE" ]]; then
555 virsh attach-interface --domain instack --type network --source ${NET_MAP['public_network']} --model rtl8139 --config --live
557 ssh -T ${SSH_OPTIONS[@]} "root@$UNDERCLOUD" "if ! ip a s eth2 | grep ${public_network_provisioner_ip} > /dev/null; then ip a a ${public_network_provisioner_ip}/${public_network_cidr##*/} dev eth2; ip link set up dev eth2; fi"
559 # ssh key fix for stack user
560 ssh -T ${SSH_OPTIONS[@]} "root@$UNDERCLOUD" "restorecon -r /home/stack"
563 ##Create virtual nodes in virsh
565 function setup_virtual_baremetal {
566 for i in $(seq 0 $vm_index); do
567 if ! virsh list --all | grep baremetalbrbm_brbm1_brbm2_brbm3_${i} > /dev/null; then
568 if [ ! -e $CONFIG/baremetalbrbm_brbm1_brbm2_brbm3_${i}.xml ]; then
569 define_virtual_node baremetalbrbm_brbm1_brbm2_brbm3_${i}
571 # Fix for ramdisk using wrong pxeboot interface
572 # TODO: revisit this and see if there's a more proper fix
573 sed -i "/^\s*<source network='brbm2'\/>/{
575 s/^\(.*\)virtio\(.*\)$/\1rtl8139\2/
576 }" $CONFIG/baremetalbrbm_brbm1_brbm2_brbm3_${i}.xml
577 virsh define $CONFIG/baremetalbrbm_brbm1_brbm2_brbm3_${i}.xml
579 echo "Found Baremetal ${i} VM, using existing VM"
581 virsh vol-list default | grep baremetalbrbm_brbm1_brbm2_brbm3_${i} 2>&1> /dev/null || virsh vol-create-as default baremetalbrbm_brbm1_brbm2_brbm3_${i}.qcow2 40G --format qcow2
586 ##Set network-environment settings
587 ##params: network-environment file to edit
588 function configure_network_environment {
589 sed -i '/ControlPlaneSubnetCidr/c\\ ControlPlaneSubnetCidr: "'${admin_network_cidr##*/}'"' $1
590 sed -i '/ControlPlaneDefaultRoute/c\\ ControlPlaneDefaultRoute: '${admin_network_provisioner_ip}'' $1
591 sed -i '/ExternalNetCidr/c\\ ExternalNetCidr: '${public_network_cidr}'' $1
592 sed -i "/ExternalAllocationPools/c\\ ExternalAllocationPools: [{'start': '${public_network_usable_ip_range%%,*}', 'end': '${public_network_usable_ip_range##*,}'}]" $1
593 sed -i '/ExternalInterfaceDefaultRoute/c\\ ExternalInterfaceDefaultRoute: '${public_network_gateway}'' $1
594 sed -i '/EC2MetadataIp/c\\ EC2MetadataIp: '${admin_network_provisioner_ip}'' $1
596 ##Copy over the glance images and instack json file
598 function configure_undercloud {
601 echo "Copying configuration file and disk images to instack"
602 scp ${SSH_OPTIONS[@]} $RESOURCES/overcloud-full.qcow2 "stack@$UNDERCLOUD":
603 if [[ "$net_isolation_enabled" == "TRUE" ]]; then
604 configure_network_environment $CONFIG/network-environment.yaml
605 echo -e "${blue}Network Environment set for Deployment: ${reset}"
606 cat $CONFIG/network-environment.yaml
607 scp ${SSH_OPTIONS[@]} $CONFIG/network-environment.yaml "stack@$UNDERCLOUD":
609 scp ${SSH_OPTIONS[@]} -r $CONFIG/nics/ "stack@$UNDERCLOUD":
611 # ensure stack user on instack machine has an ssh key
612 ssh -T ${SSH_OPTIONS[@]} "stack@$UNDERCLOUD" "if [ ! -e ~/.ssh/id_rsa.pub ]; then ssh-keygen -t rsa -N '' -f ~/.ssh/id_rsa; fi"
614 if [ "$virtual" == "TRUE" ]; then
616 # copy the instack vm's stack user's pub key to
617 # root's auth keys so that instack can control
618 # vm power on the hypervisor
619 ssh ${SSH_OPTIONS[@]} "stack@$UNDERCLOUD" "cat /home/stack/.ssh/id_rsa.pub" >> /root/.ssh/authorized_keys
621 # fix MACs to match new setup
622 for i in $(seq 0 $vm_index); do
623 pyscript="import json
624 data = json.load(open('$CONFIG/instackenv-virt.json'))
625 print data['nodes'][$i]['mac'][0]"
627 old_mac=$(python -c "$pyscript")
628 new_mac=$(virsh dumpxml baremetalbrbm_brbm1_brbm2_brbm3_$i | grep "mac address" | cut -d = -f2 | grep -Eo "[0-9a-f:]+")
629 # this doesn't work with multiple vnics on the vms
630 #if [ "$old_mac" != "$new_mac" ]; then
631 # echo "${blue}Modifying MAC for node from $old_mac to ${new_mac}${reset}"
632 # sed -i 's/'"$old_mac"'/'"$new_mac"'/' $CONFIG/instackenv-virt.json
636 DEPLOY_OPTIONS+=" --libvirt-type qemu"
637 INSTACKENV=$CONFIG/instackenv-virt.json
639 # upload instackenv file to Instack for virtual deployment
640 scp ${SSH_OPTIONS[@]} $INSTACKENV "stack@$UNDERCLOUD":instackenv.json
643 # allow stack to control power management on the hypervisor via sshkey
644 # only if this is a virtual deployment
645 if [ "$virtual" == "TRUE" ]; then
646 ssh -T ${SSH_OPTIONS[@]} "stack@$UNDERCLOUD" <<EOI
647 while read -r line; do
648 stack_key=\${stack_key}\\\\\\\\n\${line}
649 done < <(cat ~/.ssh/id_rsa)
650 stack_key=\$(echo \$stack_key | sed 's/\\\\\\\\n//')
651 sed -i 's~INSERT_STACK_USER_PRIV_KEY~'"\$stack_key"'~' instackenv.json
655 # copy stack's ssh key to this users authorized keys
656 ssh -T ${SSH_OPTIONS[@]} "root@$UNDERCLOUD" "cat /home/stack/.ssh/id_rsa.pub" >> ~/.ssh/authorized_keys
658 # disable requiretty for sudo
659 ssh -T ${SSH_OPTIONS[@]} "root@$UNDERCLOUD" "sed -i 's/Defaults\s*requiretty//'" /etc/sudoers
661 # configure undercloud on Undercloud VM
662 echo "Running undercloud configuration."
663 echo "Logging undercloud configuration to instack:/home/stack/apex-undercloud-install.log"
664 ssh -T ${SSH_OPTIONS[@]} "stack@$UNDERCLOUD" << EOI
665 if [[ "$net_isolation_enabled" == "TRUE" ]]; then
666 sed -i 's/#local_ip/local_ip/' undercloud.conf
667 sed -i 's/#network_gateway/network_gateway/' undercloud.conf
668 sed -i 's/#network_cidr/network_cidr/' undercloud.conf
669 sed -i 's/#dhcp_start/dhcp_start/' undercloud.conf
670 sed -i 's/#dhcp_end/dhcp_end/' undercloud.conf
671 sed -i 's/#inspection_iprange/inspection_iprange/' undercloud.conf
672 sed -i 's/#undercloud_debug/undercloud_debug/' undercloud.conf
674 openstack-config --set undercloud.conf DEFAULT local_ip ${admin_network_provisioner_ip}/${admin_network_cidr##*/}
675 openstack-config --set undercloud.conf DEFAULT network_gateway ${admin_network_provisioner_ip}
676 openstack-config --set undercloud.conf DEFAULT network_cidr ${admin_network_cidr}
677 openstack-config --set undercloud.conf DEFAULT dhcp_start ${admin_network_dhcp_range%%,*}
678 openstack-config --set undercloud.conf DEFAULT dhcp_end ${admin_network_dhcp_range##*,}
679 openstack-config --set undercloud.conf DEFAULT inspection_iprange ${admin_network_introspection_range}
680 openstack-config --set undercloud.conf DEFAULT undercloud_debug false
684 sudo sed -i '/CephClusterFSID:/c\\ CephClusterFSID: \\x27$(cat /proc/sys/kernel/random/uuid)\\x27' /usr/share/openstack-tripleo-heat-templates/environments/storage-environment.yaml
685 sudo sed -i '/CephMonKey:/c\\ CephMonKey: \\x27'"\$(ceph-authtool --gen-print-key)"'\\x27' /usr/share/openstack-tripleo-heat-templates/environments/storage-environment.yaml
686 sudo sed -i '/CephAdminKey:/c\\ CephAdminKey: \\x27'"\$(ceph-authtool --gen-print-key)"'\\x27' /usr/share/openstack-tripleo-heat-templates/environments/storage-environment.yaml
688 openstack undercloud install &> apex-undercloud-install.log
690 sudo systemctl restart openstack-glance-api
691 sudo systemctl restart openstack-nova-conductor
692 sudo systemctl restart openstack-nova-compute
694 # WORKAROUND: must restart the above services to fix sync problem with nova compute manager
695 # TODO: revisit and file a bug if necessary. This should eventually be removed
696 # as well as glance api problem
697 echo -e "${blue}INFO: Sleeping 15 seconds while services come back from restart${reset}"
699 #TODO Fill in the rest of the network-environment values for other networks
703 ##preping it for deployment and launch the deploy
705 function undercloud_prep_overcloud_deploy {
707 if [[ ${#deploy_options_array[@]} -eq 0 || ${deploy_options_array['sdn_controller']} == 'opendaylight' ]]; then
708 DEPLOY_OPTIONS+=" -e /usr/share/openstack-tripleo-heat-templates/environments/opendaylight.yaml"
709 elif [ ${deploy_options_array['sdn_controller']} == 'opendaylight-external' ]; then
710 DEPLOY_OPTIONS+=" -e /usr/share/openstack-tripleo-heat-templates/environments/opendaylight-external.yaml"
711 elif [ ${deploy_options_array['sdn_controller']} == 'onos' ]; then
712 DEPLOY_OPTIONS+=" -e /usr/share/openstack-tripleo-heat-templates/environments/onos.yaml"
713 elif [ ${deploy_options_array['sdn_controller']} == 'opencontrail' ]; then
714 echo -e "${red}ERROR: OpenContrail is currently unsupported...exiting${reset}"
718 # make sure ceph is installed
719 DEPLOY_OPTIONS+=" -e /usr/share/openstack-tripleo-heat-templates/environments/storage-environment.yaml"
721 # check if HA is enabled
722 if [[ "$ha_enabled" == "TRUE" ]]; then
723 DEPLOY_OPTIONS+=" --control-scale 3 --compute-scale 2"
724 DEPLOY_OPTIONS+=" -e /usr/share/openstack-tripleo-heat-templates/environments/puppet-pacemaker.yaml"
727 if [[ "$net_isolation_enabled" == "TRUE" ]]; then
728 #DEPLOY_OPTIONS+=" -e /usr/share/openstack-tripleo-heat-templates/environments/network-isolation.yaml"
729 DEPLOY_OPTIONS+=" -e network-environment.yaml"
732 if [[ "$ha_enabled" == "TRUE" ]] || [[ "$net_isolation_enabled" == "TRUE" ]]; then
733 DEPLOY_OPTIONS+=" --ntp-server $ntp_server"
736 if [[ ! "$virtual" == "TRUE" ]]; then
737 DEPLOY_OPTIONS+=" --control-flavor control --compute-flavor compute"
740 ssh -T ${SSH_OPTIONS[@]} "stack@$UNDERCLOUD" <<EOI
743 echo "Uploading overcloud glance images"
744 openstack overcloud image upload
745 echo "Configuring undercloud and discovering nodes"
746 openstack baremetal import --json instackenv.json
747 openstack baremetal configure boot
748 openstack baremetal introspection bulk start
749 echo "Configuring flavors"
750 for flavor in baremetal control compute; do
751 echo -e "${blue}INFO: Updating flavor: \${flavor}${reset}"
752 if openstack flavor list | grep \${flavor}; then
753 openstack flavor delete \${flavor}
755 openstack flavor create --id auto --ram 4096 --disk 39 --vcpus 1 \${flavor}
756 if ! openstack flavor list | grep \${flavor}; then
757 echo -e "${red}ERROR: Unable to create flavor \${flavor}${reset}"
760 openstack flavor set --property "cpu_arch"="x86_64" --property "capabilities:boot_option"="local" baremetal
761 openstack flavor set --property "cpu_arch"="x86_64" --property "capabilities:boot_option"="local" --property "capabilities:profile"="control" control
762 openstack flavor set --property "cpu_arch"="x86_64" --property "capabilities:boot_option"="local" --property "capabilities:profile"="compute" compute
763 echo "Configuring nameserver on ctlplane network"
764 neutron subnet-update \$(neutron subnet-list | grep -v id | grep -v \\\\-\\\\- | awk {'print \$2'}) --dns-nameserver 8.8.8.8
765 echo "Executing overcloud deployment, this should run for an extended period without output."
766 sleep 60 #wait for Hypervisor stats to check-in to nova
767 # save deploy command so it can be used for debugging
768 cat > deploy_command << EOF
769 openstack overcloud deploy --templates $DEPLOY_OPTIONS
771 openstack overcloud deploy --templates $DEPLOY_OPTIONS
777 echo -e "Usage:\n$0 [arguments] \n"
778 echo -e " -c|--config : Directory to configuration files. Optional. Defaults to /var/opt/opnfv/ \n"
779 echo -e " -d|--deploy-settings : Full path to deploy settings yaml file. Optional. Defaults to null \n"
780 echo -e " -i|--inventory : Full path to inventory yaml file. Required only for baremetal \n"
781 echo -e " -n|--net-settings : Full path to network settings file. Optional. \n"
782 echo -e " -p|--ping-site : site to use to verify IP connectivity. Optional. Defaults to 8.8.8.8 \n"
783 echo -e " -r|--resources : Directory to deployment resources. Optional. Defaults to /var/opt/opnfv/stack \n"
784 echo -e " -v|--virtual : Virtualize overcloud nodes instead of using baremetal. \n"
785 echo -e " --no-ha : disable High Availability deployment scheme, this assumes a single controller and single compute node \n"
786 echo -e " --flat : disable Network Isolation and use a single flat network for the underlay network."
789 ##translates the command line parameters into variables
790 ##params: $@ the entire command line is passed
791 ##usage: parse_cmd_line() "$@"
793 echo -e "\n\n${blue}This script is used to deploy the Apex Installer and Provision OPNFV Target System${reset}\n\n"
794 echo "Use -h to display help"
797 while [ "${1:0:1}" = "-" ]
806 echo "Deployment Configuration Directory Overridden to: $2"
809 -d|--deploy-settings)
810 DEPLOY_SETTINGS_FILE=$2
811 echo "Deployment Configuration file: $2"
820 echo "Network Settings Configuration file: $2"
825 echo "Using $2 as the ping site"
830 echo "Deployment Resources Directory Overridden to: $2"
835 echo "Executing a Virtual Deployment"
840 echo "HA Deployment Disabled"
844 net_isolation_enabled="FALSE"
845 echo "Underlay Network Isolation Disabled: using flat configuration"
855 if [[ ! -z "$NETSETS" && "$net_isolation_enabled" == "FALSE" ]]; then
856 echo -e "${red}INFO: Single flat network requested. Ignoring any network settings!${reset}"
857 elif [[ -z "$NETSETS" && "$net_isolation_enabled" == "TRUE" ]]; then
858 echo -e "${red}ERROR: You must provide a network_settings file with -n or use --flat to force a single flat network{reset}"
861 if [[ -n "$virtual" && -n "$INVENTORY_FILE" ]]; then
862 echo -e "${red}ERROR: You should not specify an inventory with virtual deployments${reset}"
866 if [[ ! -z "$DEPLOY_SETTINGS_FILE" && ! -f "$DEPLOY_SETTINGS_FILE" ]]; then
867 echo -e "${red}ERROR: ${DEPLOY_SETTINGS_FILE} does not exist! Exiting...${reset}"
871 if [[ ! -z "$NETSETS" && ! -f "$NETSETS" ]]; then
872 echo -e "${red}ERROR: ${NETSETS} does not exist! Exiting...${reset}"
876 if [[ ! -z "$INVENTORY_FILE" && ! -f "$INVENTORY_FILE" ]]; then
877 echo -e "{$red}ERROR: ${DEPLOY_SETTINGS_FILE} does not exist! Exiting...${reset}"
881 if [[ -z "$virtual" && -z "$INVENTORY_FILE" ]]; then
882 echo -e "${red}ERROR: You must specify an inventory file for baremetal deployments! Exiting...${reset}"
891 if [[ "$net_isolation_enabled" == "TRUE" ]]; then
892 echo -e "${blue}INFO: Parsing network settings file...${reset}"
893 parse_network_settings
895 if ! configure_deps; then
896 echo -e "${red}Dependency Validation Failed, Exiting.${reset}"
899 if [ -n "$DEPLOY_SETTINGS_FILE" ]; then
900 parse_deploy_settings
903 if [ "$virtual" == "TRUE" ]; then
904 setup_virtual_baremetal
905 elif [ -n "$INVENTORY_FILE" ]; then
909 undercloud_prep_overcloud_deploy