infra: kube.py annotate

annotate kube.py @ 12:15c5ce7c74b5

refactor, cleanup, split large deploys

author	drewp@bigasterisk.com
date	Thu, 11 Nov 2021 23:31:21 -0800
parents	226f3c8419b2
children	0c1496e11b8f

rev	line source
8 226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	1 from pyinfra import host
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	2 from pyinfra.facts.files import FindInFile
12 15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	3 from pyinfra.facts.server import Arch, LinuxDistribution
15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	4 from pyinfra.operations import files, server, systemd
8 226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	5
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	6 bang_is_old = True # remove after upgrade
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	7 is_pi = host.get_fact(LinuxDistribution)['name'] in ['Debian', 'Raspbian GNU/Linux']
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	8 is_wifi_pi = host.name in ['frontdoor', 'living']
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	9
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	10 k3s_version = 'v1.21.2+k3s1'
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	11 master_ip = "10.5.0.1"
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	12
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	13 server.sysctl(key='net.ipv4.ip_forward', value="1", persist=True)
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	14 server.sysctl(key='net.ipv6.conf.all.forwarding', value="1", persist=True)
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	15
12 15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	16 tail = 'k3s' if host.get_fact(Arch) == 'x86_64' else 'k3s-armhf'
15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	17 files.download(src=f'https://github.com/rancher/k3s/releases/download/{k3s_version}/{tail}',
15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	18 dest='/usr/local/bin/k3s',
15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	19 user='root',
15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	20 group='root',
15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	21 mode='755')
8 226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	22
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	23 if is_pi:
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	24 old_cmdline = host.get_fact(FindInFile, path='/boot/cmdline.txt', pattern=r'.*')[0]
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	25 print(repr(old_cmdline))
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	26 if 'cgroup' not in old_cmdline:
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	27 cmdline = old_cmdline + ' cgroup_enable=cpuset cgroup_memory=1 cgroup_enable=memory'
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	28 files.line(path='/boot/cmdline.txt', line='.*', replace=cmdline)
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	29 # pi needs reboot now
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	30
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	31 server.shell(commands=[
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	32 'update-alternatives --set iptables /usr/sbin/iptables-legacy',
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	33 'update-alternatives --set ip6tables /usr/sbin/ip6tables-legacy',
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	34 ])
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	35 # needs reboot if this changed
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	36
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	37 # See https://github.com/rancher/k3s/issues/1802 and https://rancher.com/docs/k3s/latest/en/installation/private-registry/
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	38 files.directory(path='/etc/rancher/k3s')
12 15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	39 files.template(src='templates/kube/registries.yaml.j2', dest='/etc/rancher/k3s/registries.yaml')
8 226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	40
12 15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	41 if host.name == 'bang': # master
8 226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	42 files.template(
12 15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	43 src='templates/kube/k3s-server.service.j2',
8 226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	44 dest='/etc/systemd/system/k3s.service',
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	45 master_ip=master_ip,
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	46 )
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	47 systemd.service(service='k3s.service', daemon_reload=True, enabled=True, restarted=True)
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	48
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	49 # one-time thing at cluster create time? not sure
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	50 # - name: Replace https://localhost:6443 by https://master-ip:6443
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	51 # command: >-
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	52 # k3s kubectl config set-cluster default
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	53 # --server=https://{{ master_ip }}:6443
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	54 # --kubeconfig ~{{ ansible_user }}/.kube/config
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	55
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	56 if host.name in ['slash', 'dash', 'frontbed', 'garage']: # nodes
12 15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	57 # /var/lib/rancher/k3s/server/node-token is the source of the string in secrets/k3s_token
15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	58 token = open('secrets/k3s_token', 'rt').read().strip()
15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	59
8 226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	60 files.template(
12 15c5ce7c74b5 refactor, cleanup, split large deploys drewp@bigasterisk.com parents: 8 diff changeset	61 src='templates/kube/k3s-node.service.j2',
8 226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	62 dest='/etc/systemd/system/k3s-node.service',
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	63 master_ip=master_ip,
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	64 token=token,
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	65 )
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	66
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	67 systemd.service(service='k3s-node.service', daemon_reload=True, enabled=True, restarted=True)
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	68
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	69 if host.name in ['bang', 'slash', 'dash']: # hosts to admin from
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	70 files.link(path='/usr/local/bin/kubectl', target='/usr/local/bin/k3s')
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	71 files.directory(path='/home/drewp/.kube', user='drewp', group='drewp')
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	72 files.line(path="/home/drewp/.zshrc", line="KUBECONFIG", replace='export KUBECONFIG=/etc/rancher/k3s/k3s.yaml')
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	73
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	74 files.chown(target='/etc/rancher/k3s/k3s.yaml', user='root', group='drewp')
226f3c8419b2 kube setup drewp@bigasterisk.com parents: diff changeset	75 files.chmod(target='/etc/rancher/k3s/k3s.yaml', mode='640')

Mercurial > code > home > repos > infra

annotate kube.py @ 12:15c5ce7c74b5