319 lines
10 KiB
Python
319 lines
10 KiB
Python
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
|
|
import logging
|
|
import os
|
|
import subprocess # nosec
|
|
import sys
|
|
|
|
from kolla_ansible import utils
|
|
from typing import List
|
|
from typing import Tuple
|
|
|
|
|
|
DEFAULT_CONFIG_PATH = "/etc/kolla"
|
|
|
|
CONFIG_PATH_ENV = "KOLLA_CONFIG_PATH"
|
|
|
|
LOG = logging.getLogger(__name__)
|
|
|
|
|
|
def add_ansible_args(parser):
|
|
"""Add arguments required for running Ansible playbooks to a parser."""
|
|
parser.add_argument(
|
|
"-b",
|
|
"--become",
|
|
action="store_true",
|
|
help="run operations with become (nopasswd implied)",
|
|
)
|
|
parser.add_argument(
|
|
"-C",
|
|
"--check",
|
|
action="store_true",
|
|
help="don't make any changes; instead, try to predict "
|
|
"some of the changes that may occur",
|
|
)
|
|
parser.add_argument(
|
|
"-D",
|
|
"--diff",
|
|
action="store_true",
|
|
help="when changing (small) files and templates, show "
|
|
"the differences in those files; works great "
|
|
"with --check",
|
|
)
|
|
parser.add_argument(
|
|
"-e",
|
|
"--extra-vars",
|
|
metavar="EXTRA_VARS",
|
|
action="append",
|
|
help="set additional variables as key=value or "
|
|
"YAML/JSON",
|
|
)
|
|
parser.add_argument(
|
|
"-i",
|
|
"--inventory",
|
|
metavar="INVENTORY",
|
|
action="append",
|
|
help="specify inventory host path ",
|
|
)
|
|
parser.add_argument(
|
|
"-l",
|
|
"--limit",
|
|
metavar="SUBSET",
|
|
help="further limit selected hosts to an additional "
|
|
"pattern",
|
|
)
|
|
parser.add_argument(
|
|
"--skip-tags",
|
|
metavar="TAGS",
|
|
help="only run plays and tasks whose tags do not "
|
|
"match these values",
|
|
)
|
|
parser.add_argument(
|
|
"-t",
|
|
"--tags",
|
|
metavar="TAGS",
|
|
help="only run plays and tasks tagged with these "
|
|
"values",
|
|
)
|
|
parser.add_argument(
|
|
"-lt",
|
|
"--list-tasks",
|
|
action="store_true",
|
|
help="only print names of tasks, don't run them, "
|
|
"note this has no affect on kolla-ansible.",
|
|
)
|
|
parser.add_argument(
|
|
"-p", "--playbook",
|
|
metavar="PLAYBOOKS",
|
|
action="append",
|
|
help="Specify custom playbooks for kolla ansible "
|
|
"to use"
|
|
),
|
|
parser.add_argument(
|
|
"--vault-id",
|
|
metavar="VAULT_IDS",
|
|
action="append",
|
|
help="the vault identity to use. "
|
|
"This argument may be specified multiple times.",
|
|
default=[]
|
|
),
|
|
parser.add_argument(
|
|
"--vault-password-file",
|
|
"--vault-pass-file",
|
|
metavar="VAULT_PASSWORD_FILES",
|
|
action="append",
|
|
help="vault password file",
|
|
default=[]
|
|
),
|
|
parser.add_argument(
|
|
"-J",
|
|
"--ask-vault-password",
|
|
"--ask-vault-pass",
|
|
action="store_true",
|
|
help="ask for vault password"
|
|
)
|
|
|
|
|
|
def add_kolla_ansible_args(parser):
|
|
"""Add arguments required for running Kolla Ansible to a parser."""
|
|
default_config_path = os.getenv(CONFIG_PATH_ENV, DEFAULT_CONFIG_PATH)
|
|
parser.add_argument(
|
|
"--configdir",
|
|
default=default_config_path,
|
|
dest="kolla_config_path",
|
|
help="path to Kolla configuration."
|
|
"(default=$%s or %s)" % (CONFIG_PATH_ENV, DEFAULT_CONFIG_PATH),
|
|
)
|
|
parser.add_argument(
|
|
"--passwords",
|
|
dest="kolla_passwords",
|
|
help="Path to the kolla ansible passwords file"
|
|
)
|
|
|
|
|
|
def _get_inventory_paths(parsed_args) -> List[str]:
|
|
"""Return path to the Kolla Ansible inventory."""
|
|
if parsed_args.inventory:
|
|
return parsed_args.inventory
|
|
|
|
default_inventory = os.path.join(
|
|
os.path.abspath(parsed_args.kolla_config_path),
|
|
"ansible", "inventory", "all-in-one")
|
|
return [default_inventory]
|
|
|
|
|
|
def _validate_args(parsed_args, playbooks: list) -> None:
|
|
"""Validate Kolla Ansible arguments."""
|
|
result = utils.is_readable_dir(
|
|
os.path.abspath(parsed_args.kolla_config_path))
|
|
if not result["result"]:
|
|
LOG.error(
|
|
"Kolla Ansible configuration path %s is invalid: %s",
|
|
os.path.abspath(parsed_args.kolla_config_path),
|
|
result["message"],
|
|
)
|
|
sys.exit(1)
|
|
|
|
inventories = _get_inventory_paths(parsed_args)
|
|
for inventory in inventories:
|
|
result = utils.is_readable_dir(inventory)
|
|
if not result["result"]:
|
|
# NOTE(mgoddard): Previously the inventory was a file, now it is a
|
|
# directory to allow us to support inventory host_vars. Support
|
|
# both formats for now.
|
|
result_f = utils.is_readable_file(inventory)
|
|
if not result_f["result"]:
|
|
LOG.error(
|
|
"Kolla inventory %s is invalid: %s",
|
|
inventory, result["message"]
|
|
)
|
|
sys.exit(1)
|
|
|
|
for playbook in playbooks:
|
|
result = utils.is_readable_file(playbook)
|
|
if not result["result"]:
|
|
LOG.error(
|
|
"Kolla Ansible playbook %s is invalid: %s",
|
|
playbook, result["message"]
|
|
)
|
|
sys.exit(1)
|
|
|
|
if parsed_args.kolla_passwords:
|
|
passwd_file = parsed_args.kolla_passwords
|
|
else:
|
|
passwd_file = os.path.join(
|
|
os.path.abspath(parsed_args.kolla_config_path), "passwords.yml")
|
|
result = utils.is_readable_file(passwd_file)
|
|
if not result["result"]:
|
|
LOG.error("Kolla Ansible passwords file %s is invalid: %s",
|
|
passwd_file, result["message"])
|
|
|
|
globals_file = os.path.join(os.path.abspath(
|
|
os.path.abspath(parsed_args.kolla_config_path)), "globals.yml")
|
|
result = utils.is_readable_file(globals_file)
|
|
if not result["result"]:
|
|
LOG.error("Kolla ansible globals file %s is invalid %s",
|
|
globals_file, result["message"])
|
|
|
|
|
|
def _get_vars_files(config_path: os.path) -> List[str]:
|
|
"""Return a list of Kolla Ansible configuration variable files.
|
|
|
|
The globals.d directory in config path is searched to create the list of
|
|
variable files. The files will be sorted alphabetically by name for each
|
|
file, but ordering of file is kept to allow overrides.
|
|
"""
|
|
vars_path = os.path.join(config_path, "globals.d")
|
|
result = utils.is_readable_dir(vars_path)
|
|
if not result["result"]:
|
|
return []
|
|
|
|
vars_files = []
|
|
for vars_file in os.listdir(vars_path):
|
|
abs_path = os.path.join(vars_path, vars_file)
|
|
if utils.is_readable_file(abs_path)["result"]:
|
|
root, ext = os.path.splitext(vars_file)
|
|
if ext in (".yml", ".yaml", ".json"):
|
|
vars_files.append(abs_path)
|
|
|
|
return sorted(vars_files)
|
|
|
|
|
|
def build_args(parsed_args,
|
|
playbooks: list,
|
|
extra_vars: dict = {},
|
|
verbose_level: int = None) -> Tuple[str, List[str]]:
|
|
"""Build arguments required for running Ansible playbooks."""
|
|
args = list()
|
|
if verbose_level:
|
|
args += ["-" + "v" * verbose_level]
|
|
if parsed_args.list_tasks:
|
|
args += ["--list-tasks"]
|
|
inventories = _get_inventory_paths(parsed_args)
|
|
for inventory in inventories:
|
|
args += ["--inventory", inventory]
|
|
args += ["-e", "@%s" % os.path.join(
|
|
os.path.abspath(parsed_args.kolla_config_path),
|
|
"globals.yml")]
|
|
args += ["-e", "@%s" % os.path.join(
|
|
os.path.abspath(parsed_args.kolla_config_path),
|
|
"passwords.yml")]
|
|
for vault_id in parsed_args.vault_id:
|
|
args += ["--vault-id", vault_id]
|
|
for vault_pass_file in parsed_args.vault_password_file:
|
|
args += ["--vault-password-file", vault_pass_file]
|
|
if parsed_args.ask_vault_password:
|
|
args += "--ask-vault-password"
|
|
vars_files = _get_vars_files(
|
|
os.path.abspath(parsed_args.kolla_config_path))
|
|
for vars_file in vars_files:
|
|
args += ["-e", "@%s" % vars_file]
|
|
if parsed_args.extra_vars:
|
|
for extra_var in parsed_args.extra_vars:
|
|
args += ["-e", extra_var]
|
|
if extra_vars:
|
|
for extra_var_name, extra_var_value in extra_vars.items():
|
|
args += ["-e", "%s=%s" % (extra_var_name, extra_var_value)]
|
|
args += ["-e", "CONFIG_DIR=%s" %
|
|
os.path.abspath(parsed_args.kolla_config_path)]
|
|
if parsed_args.become:
|
|
args += ["--become"]
|
|
if parsed_args.check:
|
|
args += ["--check"]
|
|
if parsed_args.diff:
|
|
args += ["--diff"]
|
|
if parsed_args.limit:
|
|
args += ["--limit", parsed_args.limit]
|
|
if parsed_args.skip_tags:
|
|
args += ["--skip-tags", parsed_args.skip_tags]
|
|
if parsed_args.tags:
|
|
args += ["--tags", parsed_args.tags]
|
|
args += [" ".join(playbooks)]
|
|
return ("ansible-playbook", args)
|
|
|
|
|
|
def run_playbooks(parsed_args, playbooks: list, extra_vars: dict = {},
|
|
quiet: bool = False, verbose_level: int = 0) -> None:
|
|
"""Run a Kolla Ansible playbook."""
|
|
LOG.debug("Parsed arguments: %s" % parsed_args)
|
|
_validate_args(parsed_args, playbooks)
|
|
(executable, args) = build_args(
|
|
parsed_args,
|
|
playbooks,
|
|
extra_vars=extra_vars,
|
|
verbose_level=verbose_level,
|
|
)
|
|
|
|
try:
|
|
utils.run_command(executable, args, quiet=quiet)
|
|
except subprocess.CalledProcessError as e:
|
|
LOG.error(
|
|
"Kolla Ansible playbook(s) %s exited %d", ", ".join(
|
|
playbooks), e.returncode
|
|
)
|
|
sys.exit(e.returncode)
|
|
|
|
|
|
def install_galaxy_collections(force: bool = True) -> None:
|
|
"""Install Ansible Galaxy collection dependencies.
|
|
|
|
Installs collection dependencies specified in kolla-ansible,
|
|
and if present, in kolla-ansibnle configuration.
|
|
|
|
:param force: Whether to force reinstallation of roles.
|
|
"""
|
|
requirements = utils.get_data_files_path("requirements.yml")
|
|
requirements_core = utils.get_data_files_path("requirements-core.yml")
|
|
utils.galaxy_collection_install(requirements, force=force)
|
|
utils.galaxy_collection_install(requirements_core, force=force)
|