Merge "Docs: Updated developer documentation to use -infra repo"

This commit is contained in:
Zuul 2017-12-07 02:42:51 +00:00 committed by Gerrit Code Review
commit eaadfa6e93
26 changed files with 1256 additions and 216 deletions

View File

@ -18,6 +18,8 @@
- openstack-helm-linter:
voting: true
- openstack-helm-dev-deploy:
voting: true
- openstack-helm-legacy-ubuntu-vm-ovs-radosgw:
voting: false
@ -39,6 +41,17 @@
run: tools/gate/playbooks/zuul-linter.yaml
nodeset: openstack-helm-single-node
- job:
timeout: 7200
name: openstack-helm-dev-deploy
zuul_osh_infra_relative_path: ../openstack-helm-infra/
run: tools/gate/playbooks/dev-deploy.yaml
post-run: tools/gate/playbooks/legacy-gate-post.yaml
- openstack/openstack-helm-infra
nodeset: openstack-helm-single-node
- job:
timeout: 7200

View File

@ -12,12 +12,17 @@
# See the License for the specific language governing permissions and
# limitations under the License.
# It's necessary to set this because some environments don't link sh -> bash.
SHELL := /bin/bash
HELM := helm
TASK := build
EXCLUDES := helm-toolkit doc tests tools logs
CHARTS := helm-toolkit $(filter-out $(EXCLUDES), $(patsubst %/.,%,$(wildcard */.)))
all: $(CHARTS)
@ -47,4 +52,5 @@ clean:
@./tools/ $(filter-out $@,$(MAKECMDGOALS))

View File

@ -7,7 +7,6 @@ Overview
Below are some instructions and suggestions to help you get started with a
Kubeadm All-in-One environment on Ubuntu 16.04.
*Also tested on Centos and Fedora.*
@ -15,195 +14,73 @@ Requirements
System Requirements
The minimum requirements for using the Kubeadm-AIO environment depend on the
desired backend for persistent volume claims.
For NFS, the minimum system requirements are:
- 8GB of RAM
- 4 Cores
- 48GB HDD
For Ceph, the minimum system requirements are:
The recommended minimum system requirements for a full deployment are:
- 16GB of RAM
- 8 Cores
- 48GB HDD
This guide covers the minimum number of requirements to get started. For most
users, the main prerequisites are to install the most recent versions of Kubectl
and Helm.
For a deployment without cinder and horizon the system requirements are:
Setup etc/hosts
- 8GB of RAM
- 4 Cores
- 48GB HDD
This guide covers the minimum number of requirements to get started.
HOST_IFACE=$(ip route | grep "^default" | head -1 | awk '{ print $5 }')
LOCAL_IP=$(ip addr | awk "/inet/ && /${HOST_IFACE}/{sub(/\/.*$/,\"\",\$2); print \$2}")
cat << EOF | sudo tee -a /etc/hosts
${LOCAL_IP} $(hostname)
Host Configuration
OpenStack-Helm uses the hosts networking namespace for many pods including,
Ceph, Neutron and Nova components. For this, to function, as expected pods need
to be able to resolve DNS requests correctly. Ubuntu Desktop and some other
distributions make use of ``mdns4_minimal`` which does not operate as Kubernetes
expects with its default TLD of ``.local``. To operate at expected either
change the ``hosts`` line in the ``/etc/nsswitch.conf``, or confirm that it
.. code-block:: ini
hosts: files dns
Install the latest versions of Docker, Network File System, Git, Make & Curl if
Install the latest versions of Git, CA Certs & Make if necessary
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
sudo apt-get update
sudo apt-get install --no-install-recommends -qq \
curl \ \
nfs-common \
git \
Clone the OpenStack-Helm Repos
Once the host has been configured the repos containing the OpenStack-Helm charts
should be cloned:
Download and install kubectl, the command line interface for running commands
against your Kubernetes cluster.
.. code-block:: shell
export KUBE_VERSION=v1.7.5
export HELM_VERSION=v2.6.1
export TMP_DIR=$(mktemp -d)
curl -sSL${KUBE_VERSION}/bin/linux/amd64/kubectl -o ${TMP_DIR}/kubectl
chmod +x ${TMP_DIR}/kubectl
sudo mv ${TMP_DIR}/kubectl /usr/local/bin/kubectl
Download and install Helm, the package manager for Kubernetes
curl -sSL${HELM_VERSION}-linux-amd64.tar.gz | tar -zxv --strip-components=1 -C ${TMP_DIR}
sudo mv ${TMP_DIR}/helm /usr/local/bin/helm
rm -rf ${TMP_DIR}
Using git, clone the repository that holds all of the OpenStack service charts.
set -xe
git clone
git clone
cd openstack-helm
Setup Helm client
Initialize the helm client and start listening on localhost:8879. Once the helm
client is available, add the local repository to the helm client. Use
``helm [command] --help`` for more information about the Helm commands.
helm init --client-only
helm serve &
helm repo add local http://localhost:8879/charts
helm repo remove stable
The provided Makefile in OpenStack-Helm will perform the following:
* **Lint:** Validate that your helm charts have no basic syntax errors
* **Package:** Each chart will be compiled into a helm package that will contain
all of the resource definitions necessary to run an application,tool, or service
inside of a Kubernetes cluster.
* **Push:** Push the Helm packages to your local Helm repository
Run ``make`` from the root of the openstack-helm repository:
Kubeadm-AIO Container
It is recommended to pull the kubeadm-aio container as it is stable
at the time it was built
export KUBEADM_IMAGE=openstackhelm/kubeadm-aio:v1.7.5
sudo docker pull ${KUBEADM_IMAGE}
Deploy Kubernetes & Helm
You may now deploy kubernetes, and helm onto your machine, first move into the
``openstack-helm`` directory and then run the following:
Optionally, using the Dockerfile defined in tools/kubeadm-aio directory, build the
'openstackhelm/kubeadm-aio:v1.7.5' image. Warning - this may pull packages that
have not been tested.
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
export KUBEADM_IMAGE=openstackhelm/kubeadm-aio:v1.7.5
sudo docker build --pull -t ${KUBEADM_IMAGE} tools/kubeadm-aio
CNI Configuration
Before deploying AIO, you may optionally set additional parameters which
control aspects of the CNI used:
export KUBE_CNI=calico # or "canal" "weave" "flannel"
export CNI_POD_CIDR=
After the image is built, execute the kubeadm-aio-launcher script which creates
a single node Kubernetes environment by default with Helm, Calico, an NFS PVC
provisioner with appropriate RBAC rules and node labels to start developing. The
following deploys the Kubeadm-AIO environment. It should be noted these
commands may take a few minutes to execute. The output of these commands is
displayed during execution.
export KUBE_VERSION=v1.7.5
export KUBECONFIG=${HOME}/.kubeadm-aio/admin.conf
mkdir -p ${HOME}/.kube
cat ${KUBECONFIG} > ${HOME}/.kube/config
Dummy Neutron Networks
If you wish to create dummy network devices for Neutron to manage there is a
helper script that can set them up for you:
sudo docker exec kubelet /usr/bin/openstack-helm-aio-network-prep
You can get the logs from your kubeadm-aio container by running:
sudo docker logs -f kubeadm-aio
This command will deploy a single node KubeADM administered cluster. This will
use the parameters in ``${OSH_INFRA_PATH}/tools/gate/playbooks/vars.yaml`` to control the
deployment, which can be over-ridden by adding entries to
Helm Chart Installation
@ -214,75 +91,258 @@ During installation, the helm client will print useful information about
resources created, the state of the Helm releases, and whether any additional
configuration steps are necessary.
Helm Install Examples
Install OpenStack-Helm
To install a helm chart, use the general command:
.. note:: The following commands all assume that they are run from the
``openstack-helm`` directory and the repos have been cloned as above.
Setup Clients on the host and assemble the charts
The OpenStack clients and Kubernetes RBAC rules, along with assembly of the
charts can be performed by running the following commands:
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
helm install --name=${NAME} ${PATH_TO_CHART}/${NAME} --namespace=${NAMESPACE}
The below snippet will install the given chart name from the local repository
using the default values. These services must be installed first, as the
OpenStack services depend upon them.
Deploy the ingress controller
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
helm install --name=mariadb ./mariadb --namespace=openstack
helm install --name=memcached ./memcached --namespace=openstack
helm install --name=etcd-rabbitmq ./etcd --namespace=openstack
helm install --name=rabbitmq ./rabbitmq --namespace=openstack
helm install --name=ingress ./ingress --namespace=openstack
helm install --name=openvswitch ./openvswitch --namespace=openstack
Libvirt backs persistent volume claims with Ceph by default. To run libvirt
in an all-in-one environment without Ceph, ceph for libvirt must be disabled.
Deploy Ceph
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
helm install --name=libvirt ./libvirt --namespace=openstack \
--set ceph.enabled=false
If Ceph is included as part of an all-in-one deployment, libvirt can be
installed as normal.
Activate the openstack namespace to be able to use Ceph
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
helm install --name=libvirt ./libvirt --namespace=openstack
Once the OpenStack infrastructure components are installed and running, the
OpenStack services can be installed. In the below examples the default values
that would be used in a production-like environment have been overridden with
more sensible values for the All-in-One environment using the ``--values`` and
``--set`` options.
Deploy MariaDB
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
helm install --name=keystone ./keystone --namespace=openstack
helm install --name=glance ./glance --namespace=openstack \
--set storage=pvc
helm install --name=nova ./nova --namespace=openstack \
--values=./tools/overrides/mvp/nova.yaml \
--set conf.nova.libvirt.virt_type=qemu
helm install --name=neutron ./neutron \
--namespace=openstack --values=./tools/overrides/mvp/neutron-ovs.yaml
helm install --name=horizon ./horizon --namespace=openstack \
--set network.enable_node_port=true
Once the install commands have been issued, executing the following will provide
insight into the services' deployment status.
Deploy RabbitMQ
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
watch kubectl get pods --namespace=openstack
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Once the pods all register as Ready, the OpenStack services should be ready to
receive requests.
Deploy Memcached
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Deploy Keystone
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Create Ceph endpoints and service account for use with keystone
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Deploy Horizon
.. warning:: Horizon deployment is not tested in the OSH development environment
community gates
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Deploy Glance
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Deploy OpenvSwitch
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Deploy Libvirt
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Deploy Compute Kit (Nova and Neutron)
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Setup the gateway to the public network
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Deploy Cinder
.. warning:: Cinder deployment is not tested in the OSH development environment
community gates
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Deploy Heat
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Exercise the cloud
.. literalinclude:: ../../../../tools/deployment/developer/
:language: shell
:lines: 1,17-
Alternatively, this step can be performed by running the script directly:
.. code-block:: shell
Removing Helm Charts
To delete an installed helm chart, use the following command:
@ -291,14 +351,33 @@ To delete an installed helm chart, use the following command:
helm delete ${RELEASE_NAME} --purge
This will delete all Kubernetes resources generated when the chart was
instantiated. However for Openstack charts, by default, this will not delete
instantiated. However for OpenStack charts, by default, this will not delete
the database and database users that were created when the chart was installed.
All OpenStack projects can be configured such that upon deletion, their database
will also be removed. To delete the database when the chart is deleted the database
drop job must be enabled before installing the chart. There are two ways to enable
the job, set the job_db_drop value to true in the chart's values.yaml file, or override
the value using the helm install command as follows:
will also be removed. To delete the database when the chart is deleted the
database drop job must be enabled before installing the chart. There are two
ways to enable the job, set the job_db_drop value to true in the chart's
values.yaml file, or override the value using the helm install command as
.. code-block:: shell
helm install ${RELEASE_NAME} --set manifests.job_db_drop=true
Environment tear-down
To tear-down, the development environment charts should be removed firstly from
the 'openstack' namespace and then the 'ceph' namespace using the commands from
the `Removing Helm Charts`_ section. Once this has been done the namespaces
themselves can be cleaned by running:
.. code-block:: shell
kubectl delete namespace <namespace_name>
Final cleanup of the development environment is then performed by removing the
``/var/lib/openstack-helm`` directory from the host. This will restore the
environment back to a clean Kubernetes deployment, that can either be manually
removed or over-written by restarting the deployment process.

View File

@ -0,0 +1,26 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
sudo apt-get update
sudo apt-get install --no-install-recommends -y \
ca-certificates \
git \
make \
jq \
nmap \

View File

@ -0,0 +1,22 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
: ${OSH_INFRA_PATH:="../openstack-helm-infra"}
make dev-deploy setup-host
make dev-deploy k8s

View File

@ -0,0 +1,41 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
sudo -H pip install python-openstackclient python-heatclient
sudo -H mkdir -p /etc/openstack
cat << EOF | sudo -H tee -a /etc/openstack/clouds.yaml
region_name: RegionOne
identity_api_version: 3
username: 'admin'
password: 'password'
project_name: 'admin'
project_domain_name: 'default'
user_domain_name: 'default'
auth_url: 'http://keystone.openstack.svc.cluster.local/v3'
sudo -H chown -R $(id -un): /etc/openstack
kubectl replace -f ./tools/kubeadm-aio/assets/opt/rbac/dev.yaml
#NOTE: Build charts
make all

View File

@ -0,0 +1,31 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images ingress
#NOTE: Deploy command
helm install ./ingress \
--namespace=openstack \
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Display info
helm status ingress

View File

@ -0,0 +1,48 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images ceph
#NOTE: Deploy command
helm install --namespace=ceph ${WORK_DIR}/ceph --name=ceph \
--set endpoints.identity.namespace=openstack \
--set endpoints.object_store.namespace=ceph \
--set endpoints.ceph_mon.namespace=ceph \
--set ceph.rgw_keystone_auth=true \
--set network.public= \
--set network.cluster= \
--set deployment.storage_secrets=true \
--set deployment.ceph=true \
--set deployment.rbd_provisioner=true \
--set deployment.client_secrets=false \
--set deployment.rgw_keystone_user_and_endpoints=false \
--set bootstrap.enabled=true \
#NOTE: Wait for deploy
./tools/deployment/developer/ ceph
#NOTE: Validate deploy
MON_POD=$(kubectl get pods \
--namespace=ceph \
--selector="application=ceph" \
--selector="component=mon" \
--no-headers | awk '{ print $1; exit }')
kubectl exec -n ceph ${MON_POD} -- ceph -s

View File

@ -0,0 +1,44 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images ceph
#NOTE: Deploy command
helm install --namespace=openstack ${WORK_DIR}/ceph --name=ceph-openstack-config \
--set endpoints.identity.namespace=openstack \
--set endpoints.object_store.namespace=ceph \
--set endpoints.ceph_mon.namespace=ceph \
--set ceph.rgw_keystone_auth=true \
--set network.public= \
--set network.cluster= \
--set deployment.storage_secrets=false \
--set deployment.ceph=false \
--set deployment.rbd_provisioner=false \
--set deployment.client_secrets=true \
--set deployment.rgw_keystone_user_and_endpoints=false \
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
kubectl get -n openstack jobs --show-all
kubectl get -n openstack secrets
kubectl get -n openstack configmaps

View File

@ -0,0 +1,32 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images mariadb
#NOTE: Deploy command
helm install ./mariadb \
--namespace=openstack \
--name=mariadb \
--set pod.replicas.server=1
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
helm status mariadb

View File

@ -0,0 +1,37 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images etcd
make pull-images rabbitmq
#NOTE: Deploy command
helm install ./etcd \
--namespace=openstack \
helm install ./rabbitmq \
--namespace=openstack \
--name=rabbitmq \
--set pod.replicas.server=1
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
helm status etcd-rabbitmq
helm status rabbitmq

View File

@ -0,0 +1,31 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images memcached
#NOTE: Deploy command
helm install ./memcached \
--namespace=openstack \
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
helm status memcached

View File

@ -0,0 +1,33 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images keystone
#NOTE: Deploy command
helm install ./keystone \
--namespace=openstack \
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
helm status keystone
export OS_CLOUD=openstack_helm
openstack endpoint list

View File

@ -0,0 +1,47 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images ceph
#NOTE: Deploy command
helm install --namespace=openstack ${WORK_DIR}/ceph --name=radosgw-openstack \
--set endpoints.identity.namespace=openstack \
--set endpoints.object_store.namespace=ceph \
--set endpoints.ceph_mon.namespace=ceph \
--set ceph.rgw_keystone_auth=true \
--set network.public= \
--set network.cluster= \
--set deployment.storage_secrets=false \
--set deployment.ceph=false \
--set deployment.rbd_provisioner=false \
--set deployment.client_secrets=false \
--set deployment.rgw_keystone_user_and_endpoints=true \
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
helm status radosgw-openstack
export OS_CLOUD=openstack_helm
openstack service list
openstack container create 'mygreatcontainer'
curl -L -o /tmp/important-file.jpg
openstack object create --name 'superimportantfile.jpg' 'mygreatcontainer' /tmp/important-file.jpg

View File

@ -0,0 +1,33 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images horizon
#NOTE: Deploy command
helm install ./horizon \
--namespace=openstack \
--name=horizon \
--set network.node_port.enabled=true \
--set network.node_port.port=31000
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
helm status horizon

View File

@ -0,0 +1,38 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images glance
#NOTE: Deploy command
GLANCE_BACKEND="radosgw" # NOTE(portdirect), this could be: radosgw, rbd, swift or pvc
helm install ./glance \
--namespace=openstack \
--name=glance \
--set storage=${GLANCE_BACKEND}
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
helm status glance
export OS_CLOUD=openstack_helm
openstack service list
sleep 15
openstack image list
openstack image show 'Cirros 0.3.5 64-bit'

View File

@ -0,0 +1,30 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images openvswitch
#NOTE: Deploy command
helm install ./openvswitch \
--namespace=openstack \
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
helm status openvswitch

View File

@ -0,0 +1,30 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images libvirt
#NOTE: Deploy command
helm install ./libvirt \
--namespace=openstack \
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
helm status libvirt

View File

@ -0,0 +1,40 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images nova
make pull-images neutron
#NOTE: Deploy command
helm install ./nova \
--namespace=openstack \
--name=nova \
--set conf.nova.libvirt.virt_type=qemu
helm install ./neutron \
--namespace=openstack \
--name=neutron \
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
export OS_CLOUD=openstack_helm
openstack service list
sleep 15
openstack hypervisor list
openstack network agent list

View File

@ -0,0 +1,26 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
# Assign IP address to br-ex
sudo ip addr add ${OSH_BR_EX_ADDR} dev br-ex
sudo ip link set br-ex up
# Setup masquerading on default route dev to public subnet

View File

@ -0,0 +1,33 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images cinder
#NOTE: Deploy command
helm install ./cinder \
--namespace=openstack \
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
export OS_CLOUD=openstack_helm
openstack service list
sleep 15
openstack volume type list

View File

@ -0,0 +1,33 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
#NOTE: Pull images and lint chart
make pull-images heat
#NOTE: Deploy command
helm install ./heat \
--namespace=openstack \
#NOTE: Wait for deploy
./tools/deployment/developer/ openstack
#NOTE: Validate Deployment info
export OS_CLOUD=openstack_helm
openstack service list
sleep 15
openstack orchestration service list

View File

@ -0,0 +1,99 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -xe
export OS_CLOUD=openstack_helm
export OSH_EXT_NET_NAME="public"
export OSH_EXT_SUBNET_NAME="public-subnet"
export OSH_EXT_SUBNET=""
export OSH_BR_EX_ADDR=""
openstack stack create --wait \
--parameter network_name=${OSH_EXT_NET_NAME} \
--parameter physical_network_name=public \
--parameter subnet_name=${OSH_EXT_SUBNET_NAME} \
--parameter subnet_cidr=${OSH_EXT_SUBNET} \
--parameter subnet_gateway=${OSH_BR_EX_ADDR%/*} \
-t ./tools/gate/files/heat-public-net-deployment.yaml \
export OSH_PRIVATE_SUBNET_POOL_NAME="shared-default-subnetpool"
openstack stack create --wait \
--parameter subnet_pool_name=${OSH_PRIVATE_SUBNET_POOL_NAME} \
--parameter subnet_pool_prefixes=${OSH_PRIVATE_SUBNET_POOL} \
--parameter subnet_pool_default_prefix_length=${OSH_PRIVATE_SUBNET_POOL_DEF_PREFIX} \
-t ./tools/gate/files/heat-subnet-pool-deployment.yaml \
export OSH_EXT_NET_NAME="public"
export OSH_VM_FLAVOR="m1.tiny"
export OSH_VM_KEY_STACK="heat-vm-key"
# NOTE(portdirect): We do this fancy, and seemingly pointless, footwork to get
# the full image name for the cirros Image without having to be explicit.
export IMAGE_NAME=$(openstack image show -f value -c name \
$(openstack image list -f csv | awk -F ',' '{ print $2 "," $1 }' | \
grep "^\"Cirros" | head -1 | awk -F ',' '{ print $2 }' | tr -d '"'))
# Setup SSH Keypair in Nova
mkdir -p ${HOME}/.ssh
openstack keypair create --private-key ${HOME}/.ssh/osh_key ${OSH_VM_KEY_STACK}
chmod 600 ${HOME}/.ssh/osh_key
openstack stack create --wait \
--parameter public_net=${OSH_EXT_NET_NAME} \
--parameter image="${IMAGE_NAME}" \
--parameter flavor=${OSH_VM_FLAVOR} \
--parameter ssh_key=${OSH_VM_KEY_STACK} \
--parameter cidr=${OSH_PRIVATE_SUBNET} \
-t ./tools/gate/files/heat-basic-vm-deployment.yaml \
FLOATING_IP=$(openstack floating ip show \
$(openstack stack resource show \
heat-basic-vm-deployment \
server_floating_ip \
-f value -c physical_resource_id) \
-f value -c floating_ip_address)
function wait_for_ssh_port {
# Default wait timeout is 180 seconds
set +x
end=$(date +%s)
if ! [ -z $2 ]; then
end=$((end + $2))
end=$((end + 180))
while true; do
# Use Nmap as its the same on Ubuntu and RHEL family distros
nmap -Pn -p22 $1 | awk '$1 ~ /22/ {print $2}' | grep -q 'open' && \
break || true
sleep 1
now=$(date +%s)
[ $now -gt $end ] && echo "Could not connect to $1 port 22 in time" && exit -1
set -x
wait_for_ssh_port $FLOATING_IP
# SSH into the VM and check it can reach the outside world
ssh-keyscan "$FLOATING_IP" >> ~/.ssh/known_hosts
ssh -i ${HOME}/.ssh/osh_key cirros@${FLOATING_IP} ping -q -c 1 -W 2 ${OSH_BR_EX_ADDR%/*}

View File

@ -0,0 +1,43 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
set -e
# From Kolla-Kubernetes, orginal authors Kevin Fox & Serguei Bezverkhi
# Default wait timeout is 300 seconds
end=$(date +%s)
if ! [ -z $2 ]; then
end=$((end + $2))
end=$((end + 300))
while true; do
kubectl get pods --namespace=$1 -o json | jq -r \
'.items[].status.phase' | grep Pending > /dev/null && \
kubectl get pods --namespace=$1 -o json | jq -r "$query" | \
grep false > /dev/null && READY="False" || READY="True"
kubectl get jobs -o json --namespace=$1 | jq -r \
'.items[] | .spec.completions == .status.succeeded' | \
grep false > /dev/null && JOBR="False" || JOBR="True"
[ $PENDING == "False" -a $READY == "True" -a $JOBR == "True" ] && \
break || true
sleep 1
now=$(date +%s)
[ $now -gt $end ] && echo containers failed to start. && \
kubectl get pods --namespace $1 -o wide && exit -1

View File

@ -0,0 +1,138 @@
# Copyright 2017 The Openstack-Helm Authors.
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# See the License for the specific language governing permissions and
# limitations under the License.
- hosts: primary
- name: Deploy Required packages
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy Required packages
shell: |
set -xe;
OSH_INFRA_PATH: "{{ zuul_osh_infra_relative_path | default('') }}"
chdir: "{{ zuul.project.src_dir }}"
- name: Setup OS and K8s Clients
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy Ingress
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy Ceph
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy Ceph NS Activate
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy Mariadb
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy RabbitMQ
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy Memcached
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy Keystone
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy Ceph Keystone RadosGW
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
# - name: Deploy Horizon
# shell: |
# set -xe;
# ./tools/deployment/developer/
# args:
# chdir: "{{ zuul.project.src_dir }}"
- name: Deploy Glance
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy openvswitch
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy libvirt
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy compute kit
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy setup gateway
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
# - name: Deploy cinder
# shell: |
# set -xe;
# ./tools/deployment/developer/
# args:
# chdir: "{{ zuul.project.src_dir }}"
- name: Deploy heat
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"
- name: Deploy use the cloud
shell: |
set -xe;
chdir: "{{ zuul.project.src_dir }}"

View File

@ -1,6 +1,13 @@
set -x
for CHART_DIR in ./*/ ; do
if [ "x$1" == "x" ]; then
CHART_DIRS="$(echo ./*/)"
CHART_DIRS="$(echo ./$1/)"
for CHART_DIR in ${CHART_DIRS} ; do
if [ -e ${CHART_DIR}values.yaml ]; then
for IMAGE in $(cat ${CHART_DIR}values.yaml | yq '.images.tags | map(.) | join(" ")' | tr -d '"'); do
sudo docker inspect $IMAGE >/dev/null|| sudo docker pull $IMAGE