mirror of
https://github.com/ceph/ceph
synced 2025-01-22 11:05:02 +00:00
b474d2827b
Signed-off-by: Zack Cerza <zack.cerza@inktank.com>
212 lines
7.7 KiB
Python
212 lines
7.7 KiB
Python
#!/usr/bin/env python
|
|
import contextlib
|
|
import logging
|
|
from cStringIO import StringIO
|
|
import textwrap
|
|
from configparser import ConfigParser
|
|
|
|
from ..orchestra import run
|
|
from teuthology import misc
|
|
|
|
"""
|
|
https://github.com/openstack-dev/devstack/blob/master/README.md
|
|
http://ceph.com/docs/master/rbd/rbd-openstack/
|
|
"""
|
|
log = logging.getLogger(__name__)
|
|
|
|
DEVSTACK_GIT_REPO = 'https://github.com/openstack-dev/devstack.git'
|
|
|
|
|
|
@contextlib.contextmanager
|
|
def task(ctx, config):
|
|
"""
|
|
Install OpenStack DevStack and configure it to use a Ceph cluster for
|
|
Glance and Cinder.
|
|
|
|
Requires one node with a role 'devstack'
|
|
"""
|
|
if config is None:
|
|
config = {}
|
|
if not isinstance(config, dict):
|
|
raise TypeError("config must be a dict")
|
|
|
|
# SETUP
|
|
is_devstack_node = lambda role: role.startswith('devstack')
|
|
is_osd_node = lambda role: role.startswith('osd')
|
|
devstack_node = ctx.cluster.only(is_devstack_node).remotes.keys()[0]
|
|
an_osd_node = ctx.cluster.only(is_osd_node).remotes.keys()[0]
|
|
install_devstack(devstack_node)
|
|
try:
|
|
configure_devstack_and_ceph(ctx, config, devstack_node, an_osd_node)
|
|
yield
|
|
#except Exception as e:
|
|
# FAIL
|
|
#pass
|
|
finally:
|
|
# CLEANUP
|
|
pass
|
|
|
|
|
|
def install_devstack(devstack_node):
|
|
log.info("Cloning devstack repo...")
|
|
args = ['git', 'clone', DEVSTACK_GIT_REPO]
|
|
devstack_node.run(args=args)
|
|
|
|
log.info("Installing devstack...")
|
|
args = ['cd', 'devstack', run.Raw('&&'), './stack.sh']
|
|
devstack_node.run(args=args)
|
|
|
|
|
|
def configure_devstack_and_ceph(ctx, config, devstack_node, ceph_node):
|
|
pool_size = config.get('pool_size', '128')
|
|
create_pools(ceph_node, pool_size)
|
|
distribute_ceph_conf(devstack_node, ceph_node)
|
|
# This is where we would install python-ceph and ceph-common but it appears
|
|
# the ceph task does that for us.
|
|
generate_ceph_keys(ceph_node)
|
|
distribute_ceph_keys(devstack_node, ceph_node)
|
|
secret_uuid = set_libvirt_secret(devstack_node, ceph_node)
|
|
update_devstack_config_files(devstack_node, secret_uuid)
|
|
|
|
|
|
def create_pools(ceph_node, pool_size):
|
|
### Create pools on Ceph cluster
|
|
for pool_name in ['volumes', 'images', 'backups']:
|
|
args = ['ceph', 'osd', 'pool', 'create', pool_name, pool_size]
|
|
ceph_node.run(args=args)
|
|
|
|
|
|
def distribute_ceph_conf(devstack_node, ceph_node):
|
|
### Copy ceph.conf to devstack node
|
|
ceph_conf_path = '/etc/ceph/ceph.conf'
|
|
ceph_conf = misc.get_file(ceph_node, ceph_conf_path, sudo=True)
|
|
misc.sudo_write_file(devstack_node, ceph_conf_path, ceph_conf)
|
|
|
|
|
|
def generate_ceph_keys(ceph_node):
|
|
ceph_auth_cmds = [
|
|
['ceph', 'auth', 'get-or-create', 'client.cinder', 'mon',
|
|
'allow r', 'osd', 'allow class-read object_prefix rbd_children, allow rwx pool=volumes, allow rx pool=images'], # noqa
|
|
['ceph', 'auth', 'get-or-create', 'client.glance', 'mon',
|
|
'allow r', 'osd', 'allow class-read object_prefix rbd_children, allow rwx pool=images'], # noqa
|
|
['ceph', 'auth', 'get-or-create', 'client.cinder-backup', 'mon',
|
|
'allow r', 'osd', 'allow class-read object_prefix rbd_children, allow rwx pool=backups'], # noqa
|
|
]
|
|
for cmd in ceph_auth_cmds:
|
|
ceph_node.run(args=cmd)
|
|
|
|
|
|
def distribute_ceph_keys(devstack_node, ceph_node):
|
|
### Copy ceph auth keys to devstack node
|
|
def copy_key(from_remote, key_name, to_remote, dest_path, owner):
|
|
key_stringio = StringIO()
|
|
from_remote.run(
|
|
args=['ceph', 'auth', 'get-or-create', key_name],
|
|
stdout=key_stringio)
|
|
misc.sudo_write_file(to_remote, dest_path,
|
|
key_stringio, owner=owner)
|
|
keys = [
|
|
dict(name='client.glance',
|
|
path='/etc/ceph/ceph.client.glance.keyring',
|
|
# devstack appears to just want root:root
|
|
#owner='glance:glance',
|
|
),
|
|
dict(name='client.cinder',
|
|
path='/etc/ceph/ceph.client.cinder.keyring',
|
|
# devstack appears to just want root:root
|
|
#owner='cinder:cinder',
|
|
),
|
|
dict(name='client.cinder-backup',
|
|
path='/etc/ceph/ceph.client.cinder-backup.keyring',
|
|
# devstack appears to just want root:root
|
|
#owner='cinder:cinder',
|
|
),
|
|
]
|
|
for key_dict in keys:
|
|
copy_key(ceph_node, key_dict['name'], devstack_node,
|
|
key_dict['path'], key_dict.get('owner'))
|
|
|
|
|
|
def set_libvirt_secret(devstack_node, ceph_node):
|
|
cinder_key_stringio = StringIO()
|
|
ceph_node.run(args=['ceph', 'auth', 'get-key', 'client.cinder'],
|
|
stdout=cinder_key_stringio)
|
|
cinder_key = cinder_key_stringio.read().strip()
|
|
|
|
uuid_stringio = StringIO()
|
|
devstack_node.run(args=['uuidgen'], stdout=uuid_stringio)
|
|
uuid = uuid_stringio.read().strip()
|
|
|
|
secret_path = '/tmp/secret.xml'
|
|
secret_template = textwrap.dedent("""
|
|
<secret ephemeral='no' private='no'>
|
|
<uuid>{uuid}</uuid>
|
|
<usage type='ceph'>
|
|
<name>client.cinder secret</name>
|
|
</usage>
|
|
</secret>""")
|
|
misc.sudo_write_file(devstack_node, secret_path,
|
|
secret_template.format(uuid=uuid))
|
|
devstack_node.run(args=['sudo', 'virsh', 'secret-define', '--file',
|
|
secret_path])
|
|
devstack_node.run(args=['sudo', 'virsh', 'secret-set-value', '--secret',
|
|
uuid, '--base64', cinder_key])
|
|
return uuid
|
|
|
|
|
|
def update_devstack_config_files(devstack_node, secret_uuid):
|
|
def backup_config(node, file_name, backup_ext='.orig.teuth'):
|
|
node.run(args=['cp', '-f', file_name, file_name + backup_ext])
|
|
|
|
def update_config(config_name, config_stream, update_dict):
|
|
parser = ConfigParser()
|
|
parser.read_file(config_stream, filename=config_name)
|
|
parser.update(update_dict)
|
|
out_stream = StringIO()
|
|
parser.write(out_stream)
|
|
return out_stream
|
|
|
|
updates = [
|
|
dict(name='/etc/glance/glance-api.conf', options=dict(
|
|
default_store='rbd',
|
|
rbd_store_user='glance',
|
|
rbd_store_pool='images',
|
|
show_image_direct_url='True',)),
|
|
dict(name='/etc/cinder/cinder.conf', options=dict(
|
|
volume_driver='cinder.volume.drivers.rbd.RBDDriver',
|
|
rbd_pool='volumes',
|
|
rbd_ceph_conf='/etc/ceph/ceph.conf',
|
|
rbd_flatten_volume_from_snapshot='false',
|
|
rbd_max_clone_depth='5',
|
|
glance_api_version='2',
|
|
rbd_user='cinder',
|
|
rbd_secret_uuid=secret_uuid,
|
|
backup_driver='cinder.backup.drivers.ceph',
|
|
backup_ceph_conf='/etc/ceph/ceph.conf',
|
|
backup_ceph_user='cinder-backup',
|
|
backup_ceph_chunk_size='134217728',
|
|
backup_ceph_pool='backups',
|
|
backup_ceph_stripe_unit='0',
|
|
backup_ceph_stripe_count='0',
|
|
restore_discard_excess_bytes='true',
|
|
)),
|
|
dict(name='/etc/nova/nova.conf', options=dict(
|
|
libvirt_images_type='rbd',
|
|
libvirt_images_rbd_pool='volumes',
|
|
libvirt_images_rbd_ceph_conf='/etc/ceph/ceph.conf',
|
|
rbd_user='cinder',
|
|
rbd_secret_uuid=secret_uuid,
|
|
libvirt_inject_password='false',
|
|
libvirt_inject_key='false',
|
|
libvirt_inject_partition='-2',
|
|
)),
|
|
]
|
|
|
|
for update in updates:
|
|
file_name = update['name']
|
|
options = update['options']
|
|
config_stream = misc.get_file(devstack_node, file_name, sudo=True)
|
|
backup_config(devstack_node, file_name)
|
|
new_config_stream = update_config(file_name, config_stream, options)
|
|
misc.sudo_write_file(devstack_node, file_name, new_config_stream)
|