truenas/charts
1
0
Fork 0
mirror of https://ghproxy.com/https://github.com/truecharts/charts.git synced 2026-06-17 12:26:15 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
dependencies
charts/clustertool/pkg/gencmd/bootstrap.go

221 lines
8.6 KiB
Go
Raw Permalink Blame History

package gencmd
import (
"context"
"os"
"path/filepath"
"github.com/rs/zerolog/log"
"github.com/truecharts/public/clustertool/pkg/fluxhandler"
"github.com/truecharts/public/clustertool/pkg/helper"
"github.com/truecharts/public/clustertool/pkg/kubectlcmds"
"github.com/truecharts/public/clustertool/pkg/nodestatus"
"github.com/truecharts/public/clustertool/pkg/sops"
"github.com/truecharts/public/clustertool/pkg/talassist"
)
var HelmRepos map[string]*fluxhandler.HelmRepo
var manifestPaths = []string{
filepath.Join(helper.KubernetesPath, "flux-system", "flux", "sopssecret.secret.yaml"),
filepath.Join(helper.KubernetesPath, "flux-system", "flux", "deploykey.secret.yaml"),
filepath.Join(helper.KubernetesPath, "flux-system", "flux", "clustersettings.secret.yaml"),
}
func RunBootstrap(args []string) {
var extraArgs []string
if len(args) > 1 {
extraArgs = args[1:]
}
if err := sops.DecryptFiles(); err != nil {
log.Info().Msgf("Error decrypting files: %v\n", err)
}
bootstrapNode := talassist.TalConfig.Nodes[0].IPAddress
nodestatus.WaitForHealth(bootstrapNode, []string{"maintenance"})
taloscmds := GenApply(bootstrapNode, extraArgs)
ExecCmds(taloscmds, false)
nodestatus.WaitForHealth(bootstrapNode, []string{"booting"})
log.Info().Msgf("Bootstrap: At this point your system is installed to disk, please make sure not to reboot into the installer ISO/USB %s", bootstrapNode)
log.Info().Msgf("Bootstrap: running bootstrap on node: %s", bootstrapNode)
bootstrapcmds := GenPlain("bootstrap", bootstrapNode, extraArgs)
ExecCmd(bootstrapcmds[0])
log.Info().Msgf("Bootstrap: waiting for VIP %v to come online...", helper.TalEnv["VIP_IP"])
nodestatus.WaitForHealth(helper.TalEnv["VIP_IP"], []string{"running"})
log.Info().Msgf("Bootstrap: Configuring kubeconfig/kubectl for VIP: %v", helper.TalEnv["VIP_IP"])
// Ensure kubeconfig is loaded
kubeconfigcmds := GenPlain("kubeconfig", helper.TalEnv["VIP_IP"], []string{"-f"})
ExecCmd(kubeconfigcmds[0])
// Desired pod names
requiredPods := []string{
"kube-controller-manager",
"kube-scheduler",
"kube-apiserver",
}
log.Info().Msgf("Bootstrap: Waiting for system Pods to be running for: %v", helper.TalEnv["VIP_IP"])
if err := kubectlcmds.CheckStatus(requiredPods, []string{}, 600); err != nil {
log.Error().Err(err).Msgf("Error: %v\n", err)
os.Exit(1)
}
log.Info().Msg("Bootstrap: Starting Cluster configuration...")
// Start process to approve any cert requests till our manifests are loaded
// Set up a signal handler to handle termination gracefully
stopCh := make(chan struct{})
// Get Kubernetes clientset
clientset, err := kubectlcmds.GetClientset()
if err != nil {
log.Info().Msgf("Error getting Kubernetes clientset: %v", err)
return
}
ctx := context.Background()
helmRepoPath := filepath.Join("./repositories", "helm")
HelmRepos, err = fluxhandler.LoadAllHelmRepos(helmRepoPath)
// Call ApprovePendingCertificates with clientset and stopCh
go kubectlcmds.ApprovePendingCertificates(clientset, stopCh)
baseCharts := []fluxhandler.HelmChart{
// Pulled directly from upstream, due to this being very complex and important
{filepath.Join(helper.ClusterPath, "/kubernetes/kube-system/cilium/app"), false, true},
{filepath.Join(helper.ClusterPath, "/kubernetes/kube-system/kubelet-csr-approver/app"), false, true},
{filepath.Join(helper.ClusterPath, "/kubernetes/system/traefik-crds/app"), false, false},
{filepath.Join(helper.ClusterPath, "/kubernetes/system/prometheus-operator/app"), false, false},
}
fluxhandler.InstallCharts(baseCharts, HelmRepos, true)
log.Info().Msg("Bootstrap: Creating Namespaces...")
var namespaceFilePaths []string
var VSCfilePaths []string
// Walk through the directory recursively and find all namespace.yaml files
err = filepath.WalkDir(helper.ClusterPath, func(path string, d os.DirEntry, err error) error {
if err != nil {
return err
}
if d.IsDir() {
return nil
}
if filepath.Base(path) == "namespace.yaml" {
namespaceFilePaths = append(namespaceFilePaths, path)
}
if filepath.Base(path) == "volumeSnapshotClass.yaml" {
VSCfilePaths = append(VSCfilePaths, path)
}
return nil
})
if err != nil {
log.Info().Msgf("Error walking the path: %v\n", err)
return
}
for _, filePath := range namespaceFilePaths {
log.Info().Msgf("Bootstrap: Loading namespace: %v", filePath)
if err := kubectlcmds.KubectlApply(ctx, filePath); err != nil {
log.Info().Msgf("Error applying manifest for %s: %v\n", filepath.Base(filePath), err)
os.Exit(1)
}
}
for _, filePath := range manifestPaths {
log.Info().Msgf("Bootstrap: Loading Manifest: %v", filePath)
if err := kubectlcmds.KubectlApply(ctx, filePath); err != nil {
log.Info().Msgf("Error applying manifest for %s: %v\n", filepath.Base(filePath), err)
os.Exit(1)
}
}
log.Info().Msg("Bootstrap: Base Cluster Configuration Completed, continuing setup...")
log.Info().Msg("Bootstrap: Confirming cluster health...")
healthcmd := GenPlain("health", helper.TalEnv["VIP_IP"], []string{})
ExecCmd(healthcmd[0])
close(stopCh)
prioCharts := []fluxhandler.HelmChart{
{filepath.Join(helper.ClusterPath, "/kubernetes/system/spegel/app"), false, true},
{filepath.Join(helper.ClusterPath, "/kubernetes/system/cert-manager/app"), false, false},
{filepath.Join(helper.ClusterPath, "/kubernetes/system/kyverno/app"), false, false},
{filepath.Join(helper.ClusterPath, "/kubernetes/system/kubernetes-reflector/app"), false, false},
}
fluxhandler.InstallCharts(prioCharts, HelmRepos, false)
intermediateCharts := []fluxhandler.HelmChart{
{filepath.Join(helper.ClusterPath, "/kubernetes/system/metallb/app"), false, false},
{filepath.Join(helper.ClusterPath, "/kubernetes/core/clusterissuer/app"), false, false},
{filepath.Join(helper.ClusterPath, "/kubernetes/system/cloudnative-pg/app"), false, false},
{filepath.Join(helper.ClusterPath, "/kubernetes/kube-system/node-feature-discovery/app"), false, false},
{filepath.Join(helper.ClusterPath, "/kubernetes/kube-system/metrics-server/app"), false, false},
{filepath.Join(helper.ClusterPath, "/kubernetes/kube-system/descheduler/app"), false, false},
{filepath.Join(helper.ClusterPath, "/kubernetes/system/volsync/app"), false, true},
{filepath.Join(helper.ClusterPath, "/kubernetes/system/snapshot-controller/app"), false, true},
{filepath.Join(helper.ClusterPath, "/kubernetes/system/openebs/app"), false, true},
{filepath.Join(helper.ClusterPath, "/kubernetes/system/longhorn/app"), false, true},
}
fluxhandler.InstallCharts(intermediateCharts, HelmRepos, true)
// Desired pod names
requiredMLBPods := []string{
"metallb-controller",
"metallb-speaker",
}
log.Info().Msgf("Bootstrap: Waiting for MetalLB Pods to be running for: %v", helper.TalEnv["VIP_IP"])
if err := kubectlcmds.CheckStatus(requiredMLBPods, []string{}, 600); err != nil {
log.Error().Err(err).Msgf("Error: %v\n", err)
os.Exit(1)
}
lateCharts := []fluxhandler.HelmChart{
{filepath.Join(helper.ClusterPath, "/kubernetes/core/metallb-config/app"), false, false},
}
log.Info().Msgf("Bootstrap: Loading VolumeSnapshotClasses")
for _, filePath := range VSCfilePaths {
log.Info().Msgf("Bootstrap: Loading VolumeSnapshotClass: %v", filePath)
if err := kubectlcmds.KubectlApply(ctx, filePath); err != nil {
log.Info().Msgf("Error applying manifest for %s: %v\n", filepath.Base(filePath), err)
os.Exit(1)
}
}
fluxhandler.InstallCharts(lateCharts, HelmRepos, true)
log.Info().Msg("Bootstrap: Installing included applications")
postCharts := []fluxhandler.HelmChart{
{filepath.Join(helper.ClusterPath, "/kubernetes/core/traefik/app"), false, true},
{filepath.Join(helper.ClusterPath, "/kubernetes/core/blocky/app"), false, true},
{filepath.Join(helper.ClusterPath, "/kubernetes/apps/kubernetes-dashboard/app"), false, true},
}
fluxhandler.InstallCharts(postCharts, HelmRepos, true)
log.Info().Msg("------")
fluxhandler.FluxBootstrap(ctx)
log.Info().Msg("Bootstrap: Completed Successfully!")
}
Reference in New Issue View Git Blame Copy Permalink