Fuel Infrastructure is the set of systems (servers and services) which provide the following functionality:
Fuel Infrastructure servers are managed by Puppet from one Puppet Master node.
To add new server to the infrastructure you can either take any server with base Ubuntu 14.04 installed and connect it to the Puppet Master via puppet agent, or you can first set up the PXE-server with PXETool and then run server provisioning in automated way.
Your infrastructure must have a DNS service running in order to resolve the mandatory hosts like puppet-master.test.local or pxetool.test.local. There are at least two possible scenarios of using DNS in infra. Using DHCP service in your infra is optional, but can be more elastic and comfortable than static IP configuration.
Create own DNS service provided by dnsmasq in your infra.
Install base Ubuntu 14.04 with SSH service and set an appropriate FQDN
such as dns01.test.local and configure the Dnsmasq service:
apt-get update; apt-get install -y dnsmasq echo "addn-hosts=/etc/dnsmasq.d/hosts" >> /etc/dnsmasq.conf echo "192.168.50.2 puppet-master.test.local puppet-master" > /etc/dnsmasq.d/hosts echo "192.168.50.3 pxetool.test.local puppet-master" > /etc/dnsmasq.d/hosts service dnsmasq restart
If you use a static IP, verify that the /etc/resolv.conf file points
to your DNS.
If you use a dynamic IP, verify that the DHCP service is updated correspondingly.
Add a new zone to your current DNS setup or use an external, online DNS service.
test.local.puppet-master name (mandatory for deployment) at least./etc/resolv.conf file points
to your DNS,Our CI requires many jobs and configuration, it is not convenient to configure everything with jenkins GUI. We use dedicated repository and JJB to store and manage our jobs.
To begin work with jenkins job builder we need to install it and configure.
Install packages required to work with JJB
apt-get install -y git python-tox
# or
yum install git python-tox
Download git repository and install JJB
git clone https://github.com/fuel-infra/jenkins-jobs.git
cd jenkins-jobs
tox
Enable python environment, please replace <server> with server name, for example fuel-ci
source .tox/<server>/bin/activate
Create file jenkins_jobs.ini with JJB configuration. It could be created at any place, for this documentation we assume that it will be placed in conf/ directory, inside local copy of jenkins-jobs repository.
[jenkins]
user=<JENKINS USER>
password=<JENKINS PASSWORD OR API-TOKEN>
url=https://<JENKINS URL>/
[job_builder]
ignore_cache=True
keep_descriptions=False
recursive=True
include_path=.:scripts
Note
<JENKINS_USER> is the user already defined in Jenkins with an appropriate permissions set:
- Read - under the Global group of permissions
- Create, Delete, Configure and Read - under the Job group of permissions
When JJB is installed and configured you can upload jobs to jenkins master.
Note
We assume that you are in main directory of jenkins-jobs repository and you have enabled python environment.
Upload all jobs configured for one specified server, for example upload of fule-ci can be done in this way:
jenkins-jobs --conf conf/jenkins_jobs.ini update servers/fuel-ci:common
Upload only one job
jenkins-jobs --conf conf/jenkins_jobs.ini update servers/fuel-ci:common 8.0-community.all
For minimal environment we need 3 systems:
Jenkins master
Jenkins slave with enabled slave function for ISO building and deployment testing. This can be done in different ways. For instance, you can create hiera role for such server with the values provided below. Please keep in mind that you have to explicitely set run_test and build_fuel_iso variables to true, as ones are not enabled by default.
--- classes: - '::fuel_project::jenkins::slave' fuel_project::jenkins::slave::run_test: true fuel_project::jenkins::slave::build_fuel_iso: true
Note
Every slave which will be used for ISO deployment testing, like BVT, requires additional preparation.
Once puppet is applied, and slave is configured in Jenkins master, you need to run the prepare_env job on it. Job will setup the python virtual environment with fuel-devops installed (DevOps Guide).
If you build ISO newer than 6.1 there is no need to change default job parameters. For older versions you need to run build with update_devops_2_5_x option checked.
Seed server - it is the server where you plan to store built ISO
To build your own ISO you need to create job configurations for it, it requires a few steps:
Create your own jobs repository, for start we will use fuel-ci jobs
cd jenkins-jobs/servers
cp -pr fuel-ci test-ci
To build and test ISO we will use files:
In all files you need to make changes:
- job: ... publishers: ... - trigger-parameterized-builds: ... - project: fuel_community_build_reports
- job: ... publishers: ... - trigger-parameterized-builds: ... - project: 8.0.fuel_community.centos.bvt_2, 8.0.fuel_community.ubuntu.bvt_2 ... predefined-parameters: | ISO_TORRENT=http://seed.fuel-infra.org/fuelweb-iso/fuel-community-$ISO_ID.iso.torrent
sed -i 's/seed-us1.fuel-infra.org/seed.test.local/g' servers/test-ci/8.0/builders/publish_fuel_community_iso.sh sed -i 's/seed-cz1.fuel-infra.org/seed.test.local/g' servers/test-ci/8.0/builders/publish_fuel_community_iso.sh
Create jobs on jenkins master
Note
Please remember to:
jenkins-jobs --conf conf/jenkins_jobs.ini update servers/test-ci:common 8.0-community.all
jenkins-jobs --conf conf/jenkins_jobs.ini update servers/test-ci:common 8.0.publish_fuel_community_iso
jenkins-jobs --conf conf/jenkins_jobs.ini update servers/test-ci:common 8.0.fuel_community.centos.bvt_2
jenkins-jobs --conf conf/jenkins_jobs.ini update servers/test-ci:common 8.0.fuel_community.ubuntu.bvt_2
When you finish setting jobs up on jenkins master you will see project with name 8.0-community.all there, to start ISO build and test procedure you need to run mentioned project.
Build and test procedure have 3 steps:
Although fuel-* repositories are hosted by the OpenStack Gerrit, we use additional Gerrit instance to host OpenStack packages, internal projects and all the code related to Infrastructure itself.
Our Gerrit instance is installed and configured by Puppet, including specifying the exact Java WAR file that is used(link). To manage Gerrit instance we use Jeepyb - the tool written by Openstack Infra team, which allows to store projects configuration in YAML format.
To use Jeepyb with gerrit you need to create “projects.yaml” configuration file, where for each project you add the following information:
If “upstream” option is specified, Jeepyb will automaticaly import the upstream repository to this new project. To apply the configuration, use “manage-projects” command.
Every project has ACL file. One ACL file can be reused in several projects. In ACL file, access rights are defined based on the Gerrit user groups. For example, in this file you can allow certain group to use the Code-Review +/-2 marks.
In our gerrit, we have some global projects - <projects>/. The Core Reviewers for these projects are <one-core-group>.