diff options
Diffstat (limited to 'packer/provision')
-rw-r--r-- | packer/provision/basebuild.sh | 117 | ||||
-rw-r--r-- | packer/provision/baseline.sh | 219 | ||||
-rw-r--r-- | packer/provision/memcached.sh | 42 | ||||
-rw-r--r-- | packer/provision/redis.sh | 57 | ||||
-rw-r--r-- | packer/provision/system_reseal.sh | 38 |
5 files changed, 0 insertions, 473 deletions
diff --git a/packer/provision/basebuild.sh b/packer/provision/basebuild.sh deleted file mode 100644 index aba8b19ce..000000000 --- a/packer/provision/basebuild.sh +++ /dev/null @@ -1,117 +0,0 @@ -#!/bin/bash - -# vim: ts=4 sw=4 sts=4 et tw=72 : - -# force any errors to cause the script and job to end in failure -set -xeu -o pipefail - -rh_systems() { - # Install python dependencies - yum install -y python-{devel,virtualenv,setuptools,pip} - - # Build dependencies for Python packages - yum install -y openssl-devel mysql-devel gcc - - # Autorelease support packages - yum install -y firefox python-tox xmlstarlet xvfb crudini maven - - # Install chrome to support ChromeDriver - cat << EOF > /etc/yum.repos.d/google-chrome.repo -[google-chrome] -name=google-chrome - \$basearch -baseurl=http://dl.google.com/linux/chrome/rpm/stable/\$basearch -enabled=1 -gpgcheck=1 -gpgkey=https://dl-ssl.google.com/linux/linux_signing_key.pub -EOF - - yum -y update - yum -y install google-chrome-stable - - # Additional libraries for Python ncclient - yum install -y libxml2 libxslt libxslt-devel libffi libffi-devel - - # Packer builds happen from the centos flavor images - PACKERDIR=$(mktemp -d) - # disable double quote checking - # shellcheck disable=SC2086 - cd $PACKERDIR - wget https://releases.hashicorp.com/packer/0.12.2/packer_0.12.2_linux_amd64.zip - unzip packer_0.12.2_linux_amd64.zip -d /usr/local/bin/ - # rename packer to avoid conflicts with cracklib - mv /usr/local/bin/packer /usr/local/bin/packer.io - - # cleanup from the installation - # disable double quote checking - # shellcheck disable=SC2086 - rm -rf $PACKERDIR - # cleanup from previous install process - if [ -d /tmp/packer ] - then - rm -rf /tmp/packer - fi -} - -ubuntu_systems() { - # Install python3.6 - sudo add-apt-repository -y ppa:jonathonf/python-3.6 - sudo apt-get update - sudo apt-get install -y python3.6 python3.6-dev - - # Install python dependencies - apt-get install -y python-{dev,virtualenv,setuptools,pip} - - # Build dependencies for Python packages - apt-get install -y libssl-dev libmysqlclient-dev gcc - - # Autorelease support packages - apt-get install -y firefox python-tox xmlstarlet xvfb crudini maven - - # Install chrome to support ChromeDriver - wget -q -O - https://dl-ssl.google.com/linux/linux_signing_key.pub | apt-key add - - echo "deb [arch=amd64] http://dl.google.com/linux/chrome/deb/ stable main" >> /etc/apt/sources.list.d/google-chrome.list - apt-get update -y - apt-get install -y google-chrome-stable - - # Additional libraries for Python ncclient - apt-get install -y wget unzip python-ncclient - - # Add graphviz for documentation building - apt-get install -y graphviz - - # Erlang and Rebar packages needed for DCAEGEN2 - apt-get install -y libwxgtk3.0-0v5 libsctp1 - wget https://packages.erlang-solutions.com/erlang/esl-erlang/FLAVOUR_1_general/esl-erlang_19.3.6-1~ubuntu~trusty_amd64.deb - dpkg -i esl-erlang_19.3.6-1~ubuntu~trusty_amd64.deb - apt-get install -y libwxbase3.0-0v5 - apt-get -f install -y - git clone https://github.com/erlang/rebar3.git - cd rebar3 - ./bootstrap - mv rebar3 /usr/bin/rebar3 - cd .. -} - -all_systems() { - echo 'No common distribution configuration to perform' -} - -echo "---> Detecting OS" -ORIGIN=$(facter operatingsystem | tr '[:upper:]' '[:lower:]') - -case "${ORIGIN}" in - fedora|centos|redhat) - echo "---> RH type system detected" - rh_systems - ;; - ubuntu) - echo "---> Ubuntu system detected" - ubuntu_systems - ;; - *) - echo "---> Unknown operating system" - ;; -esac - -# execute steps for all systems -all_systems diff --git a/packer/provision/baseline.sh b/packer/provision/baseline.sh deleted file mode 100644 index cae373e60..000000000 --- a/packer/provision/baseline.sh +++ /dev/null @@ -1,219 +0,0 @@ -#!/bin/bash - -# vim: ts=4 sw=4 sts=4 et tw=72 : - -# force any errors to cause the script and job to end in failure -set -xeu -o pipefail - -rh_systems() { - # Handle the occurance where SELINUX is actually disabled - SELINUX=$(grep -E '^SELINUX=(disabled|permissive|enforcing)$' /etc/selinux/config) - MODE=$(echo "$SELINUX" | cut -f 2 -d '=') - case "$MODE" in - permissive) - echo "************************************" - echo "** SYSTEM ENTERING ENFORCING MODE **" - echo "************************************" - # make sure that the filesystem is properly labelled. - # it could be not fully labeled correctly if it was just switched - # from disabled, the autorelabel misses some things - # skip relabelling on /dev as it will generally throw errors - restorecon -R -e /dev / - - # enable enforcing mode from the very start - setenforce enforcing - - # configure system for enforcing mode on next boot - sed -i 's/SELINUX=permissive/SELINUX=enforcing/' /etc/selinux/config - ;; - disabled) - sed -i 's/SELINUX=disabled/SELINUX=permissive/' /etc/selinux/config - touch /.autorelabel - - echo "*******************************************" - echo "** SYSTEM REQUIRES A RESTART FOR SELINUX **" - echo "*******************************************" - ;; - enforcing) - echo "*********************************" - echo "** SYSTEM IS IN ENFORCING MODE **" - echo "*********************************" - ;; - esac - - echo "---> Updating operating system" - yum clean all - yum install -y deltarpm - yum update -y - - # add in components we need or want on systems - echo "---> Installing base packages" - yum install -y @base https://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm - # separate group installs from package installs since a non-existing - # group with dnf based systems (F21+) will fail the install if such - # a group does not exist - yum install -y unzip xz puppet git git-review perl-XML-XPath wget make npm - - # All of our systems require Java (because of Jenkins) - # Install all versions of the OpenJDK devel but force 1.7.0 to be the - # default - - echo "---> Configuring OpenJDK" - yum install -y 'java-*-openjdk-devel' - - FACTER_OS=$(/usr/bin/facter operatingsystem) - FACTER_OSVER=$(/usr/bin/facter operatingsystemrelease) - case "$FACTER_OS" in - Fedora) - if [ "$FACTER_OSVER" -ge "21" ] - then - echo "---> not modifying java alternatives as OpenJDK 1.7.0 does not exist" - else - alternatives --set java /usr/lib/jvm/jre-1.7.0-openjdk.x86_64/bin/java - alternatives --set java_sdk_openjdk /usr/lib/jvm/java-1.7.0-openjdk.x86_64 - fi - ;; - RedHat|CentOS) - if [ "$(echo $FACTER_OSVER | cut -d'.' -f1)" -ge "7" ] - then - echo "---> not modifying java alternatives as OpenJDK 1.7.0 does not exist" - else - alternatives --set java /usr/lib/jvm/jre-1.7.0-openjdk.x86_64/bin/java - alternatives --set java_sdk_openjdk /usr/lib/jvm/java-1.7.0-openjdk.x86_64 - fi - ;; - *) - alternatives --set java /usr/lib/jvm/jre-1.7.0-openjdk.x86_64/bin/java - alternatives --set java_sdk_openjdk /usr/lib/jvm/java-1.7.0-openjdk.x86_64 - ;; - esac - - # Needed to parse OpenStack commands used by infra stack commands - # to initialize Heat template based systems. - yum install -y jq -} - -ubuntu_systems() { - # Ignore SELinux since slamming that onto Ubuntu leads to - # frustration - - export DEBIAN_FRONTEND=noninteractive - cat <<EOF >> /etc/apt/apt.conf -APT { - Get { - Assume-Yes "true"; - allow-change-held-packages "true"; - allow-downgrades "true"; - allow-remove-essential "true"; - }; -}; - -Dpkg::Options { - "--force-confdef"; - "--force-confold"; -}; - -EOF - - echo "---> Updating operating system" - apt-get update - apt-get upgrade - - # add in stuff we know we need - echo "---> Installing base packages" - apt-get install -y unzip xz-utils puppet git git-review libxml-xpath-perl make wget npm - - # install Java 7 - echo "---> Configuring OpenJDK" - FACTER_OSVER=$(/usr/bin/facter operatingsystemrelease) - case "$FACTER_OSVER" in - 14.04) - apt-get install openjdk-7-jdk - # make jdk8 available - add-apt-repository -y ppa:openjdk-r/ppa - apt-get update - # We need to force openjdk-8-jdk to install - apt-get install openjdk-8-jdk - # make sure that we still default to openjdk 7 - update-alternatives --set java /usr/lib/jvm/java-7-openjdk-amd64/jre/bin/java - update-alternatives --set javac /usr/lib/jvm/java-7-openjdk-amd64/bin/javac - - # disable auto-update service? - if [ -f /etc/cron.daily/apt ] - then - rm -rf /etc/cron.daily/apt - fi - ;; - 16.04) - apt-get install openjdk-8-jdk - - # force auto-update services off and mask them so they can't - # be started - for i in apt-daily.{service,timer} - do - systemctl disable ${i} - systemctl mask ${i} - done - ;; - *) - echo "---> Unknown Ubuntu version $FACTER_OSVER" - exit 1 - ;; - esac - - - - # Needed to parse OpenStack commands used by infra stack commands - # to initialize Heat template based systems. - apt-get install jq - - # disable unattended upgrades & daily updates - echo '---> Disabling automatic daily upgrades' - grep -lR 'APT::Periodic' /etc/apt/apt.conf.d/ | perl -pi -e 's/"1"/"0"/g' - -} - -all_systems() { - # Allow jenkins access to update-alternatives command to switch java version - cat <<EOF >/etc/sudoers.d/89-jenkins-user-defaults -Defaults:jenkins !requiretty -jenkins ALL = NOPASSWD: /usr/bin/update-alternatives -EOF - - # Do any Distro specific installations here - echo "Checking distribution" - FACTER_OS=$(/usr/bin/facter operatingsystem) - case "$FACTER_OS" in - *) - echo "---> $FACTER_OS found" - echo "No extra steps for $FACTER_OS" - ;; - esac -} - -echo "---> Attempting to detect OS" -# upstream cloud images use the distro name as the initial user -ORIGIN=$(if [ -e /etc/redhat-release ] - then - echo redhat - else - echo ubuntu - fi) -#ORIGIN=$(logname) - -case "${ORIGIN}" in - fedora|centos|redhat) - echo "---> RH type system detected" - rh_systems - ;; - ubuntu) - echo "---> Ubuntu system detected" - ubuntu_systems - ;; - *) - echo "---> Unknown operating system" - ;; -esac - -# execute steps for all systems -all_systems diff --git a/packer/provision/memcached.sh b/packer/provision/memcached.sh deleted file mode 100644 index 4f2923722..000000000 --- a/packer/provision/memcached.sh +++ /dev/null @@ -1,42 +0,0 @@ -#!/bin/bash -# This particular environment was created specifically for MultiCloud - -# vim: ts=4 sw=4 sts=4 et tw=72 : - -# force any errors to cause the script and job to end in failure -set -xeu -o pipefail - -rh_systems() { - # memcached - yum install -y memcached - systemctl enable memcached -} - -ubuntu_systems() { - # memcached - apt-get install memcached -} - -all_systems() { - echo 'No common distribution configuration to perform' -} - -echo "---> Detecting OS" -ORIGIN=$(facter operatingsystem | tr '[:upper:]' '[:lower:]') - -case "${ORIGIN}" in - fedora|centos|redhat) - echo "---> RH type system detected" - rh_systems - ;; - ubuntu) - echo "---> Ubuntu system detected" - ubuntu_systems - ;; - *) - echo "---> Unknown operating system" - ;; -esac - -# execute steps for all systems -all_systems diff --git a/packer/provision/redis.sh b/packer/provision/redis.sh deleted file mode 100644 index c940c0ac8..000000000 --- a/packer/provision/redis.sh +++ /dev/null @@ -1,57 +0,0 @@ -#!/bin/bash -# This particular environment was created specifically for vfc-nfvo-lcm - -# vim: ts=4 sw=4 sts=4 et tw=72 : - -# force any errors to cause the script and job to end in failure -set -xeu -o pipefail - -rh_systems() { - # redis - yum install -y redis - systemctl enable redis.service -} - -ubuntu_systems() { - # redis - - # 1. download and install redis - cd /tmp - wget http://download.redis.io/releases/redis-4.0.1.tar.gz - tar -zxf redis-4.0.1.tar.gz - cd /tmp/redis-4.0.1 - make - make install - - # 2. set conf file and init script - cp /tmp/redis-4.0.1/src/redis-server /etc/init.d/redis-server - chmod +x /etc/init.d/redis-server - cp /tmp/redis-4.0.1/redis.conf /etc/redis.conf - - # 3. set auto start when start system - update-rc.d redis-server defaults -} - -all_systems() { - echo 'No common distribution configuration to perform' -} - -echo "---> Detecting OS" -ORIGIN=$(facter operatingsystem | tr '[:upper:]' '[:lower:]') - -case "${ORIGIN}" in - fedora|centos|redhat) - echo "---> RH type system detected" - rh_systems - ;; - ubuntu) - echo "---> Ubuntu system detected" - ubuntu_systems - ;; - *) - echo "---> Unknown operating system" - ;; -esac - -# execute steps for all systems -all_systems diff --git a/packer/provision/system_reseal.sh b/packer/provision/system_reseal.sh deleted file mode 100644 index f8bc7dc5f..000000000 --- a/packer/provision/system_reseal.sh +++ /dev/null @@ -1,38 +0,0 @@ -#!/bin/bash - -# vim: sw=2 ts=2 sts=2 et : - -rm -rf /etc/Pegasus/*.cnf /etc/Pegasus/*.crt /etc/Pegasus/*.csr \ - /etc/Pegasus/*.pem /etc/Pegasus/*.srl /root/anaconda-ks.cfg \ - /root/anaconda-post.log /root/initial-setup-ks.cfg /root/install.log \ - /root/install.log.syslog /var/cache/fontconfig/* /var/cache/gdm/* \ - /var/cache/man/* /var/lib/AccountService/users/* /var/lib/fprint/* \ - /var/lib/logrotate.status /var/log/*.log* /var/log/BackupPC/LOG \ - /var/log/ConsoleKit/* /var/log/anaconda.syslog /var/log/anaconda/* \ - /var/log/apache2/*_log /var/log/apache2/*_log-* /var/log/apt/* \ - /var/log/aptitude* /var/log/audit/* /var/log/btmp* /var/log/ceph/*.log \ - /var/log/chrony/*.log /var/log/cron* /var/log/cups/*_log /var/log/debug* \ - /var/log/dmesg* /var/log/exim4/* /var/log/faillog* /var/log/gdm/* \ - /var/log/glusterfs/*glusterd.vol.log /var/log/glusterfs/glusterfs.log \ - /var/log/httpd/*log /var/log/installer/* /var/log/jetty/jetty-console.log \ - /var/log/journal/* /var/log/lastlog* /var/log/libvirt/libvirtd.log \ - /var/log/libvirt/lxc/*.log /var/log/libvirt/qemu/*.log \ - /var/log/libvirt/uml/*.log /var/log/lightdm/* /var/log/mail/* \ - /var/log/maillog* /var/log/messages* /var/log/ntp /var/log/ntpstats/* \ - /var/log/ppp/connect-errors /var/log/rhsm/* /var/log/sa/* /var/log/secure* \ - /var/log/setroubleshoot/*.log /var/log/spooler* /var/log/squid/*.log \ - /var/log/syslog* /var/log/tallylog* /var/log/tuned/tuned.log /var/log/wtmp* \ - /var/named/data/named.run - -rm -rf ~/.viminfo /etc/ssh/ssh*key* /root/.ssh/* - -# kill any cloud-init related bits -rm -rf /var/lib/cloud/* - -# clean-up any manual packer uploads -rm -rf /tmp/packer - -# Force a system sync and sleep to get around any SSD issues -echo "Forcing sync and sleep for 10sec" -sync -sleep 10 |