mirror of
https://github.com/kairos-io/provider-kairos.git
synced 2025-08-19 07:47:41 +00:00
4703feefd8
If we keep the API started, we want to keep streaming roles in case of completely disconnection between the nodes. This guarantees that we keep streaming out our roles nevertheless of what happens Signed-off-by: Ettore Di Giacinto <mudler@mocaccino.org>
243 lines
6.8 KiB
Go
243 lines
6.8 KiB
Go
package provider
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"fmt"
|
|
"strings"
|
|
|
|
"github.com/kairos-io/kairos/sdk/bus"
|
|
|
|
logging "github.com/ipfs/go-log"
|
|
edgeVPNClient "github.com/mudler/edgevpn/api/client"
|
|
"go.uber.org/zap"
|
|
|
|
"github.com/kairos-io/kairos/pkg/machine"
|
|
"github.com/kairos-io/kairos/pkg/machine/openrc"
|
|
"github.com/kairos-io/kairos/pkg/machine/systemd"
|
|
"github.com/kairos-io/kairos/pkg/utils"
|
|
sdk "github.com/kairos-io/kairos/sdk/bus"
|
|
providerConfig "github.com/kairos-io/provider-kairos/internal/provider/config"
|
|
"github.com/kairos-io/provider-kairos/internal/role"
|
|
p2p "github.com/kairos-io/provider-kairos/internal/role/p2p"
|
|
|
|
"github.com/kairos-io/provider-kairos/internal/services"
|
|
|
|
"github.com/kairos-io/kairos/pkg/config"
|
|
"github.com/mudler/edgevpn/api/client/service"
|
|
"github.com/mudler/go-pluggable"
|
|
)
|
|
|
|
func Bootstrap(e *pluggable.Event) pluggable.EventResponse {
|
|
cfg := &bus.BootstrapPayload{}
|
|
err := json.Unmarshal([]byte(e.Data), cfg)
|
|
if err != nil {
|
|
return ErrorEvent("Failed reading JSON input: %s input '%s'", err.Error(), e.Data)
|
|
}
|
|
|
|
c := &config.Config{}
|
|
providerConfig := &providerConfig.Config{}
|
|
err = config.FromString(cfg.Config, c)
|
|
if err != nil {
|
|
return ErrorEvent("Failed reading JSON input: %s input '%s'", err.Error(), cfg.Config)
|
|
}
|
|
|
|
err = config.FromString(cfg.Config, providerConfig)
|
|
if err != nil {
|
|
return ErrorEvent("Failed reading JSON input: %s input '%s'", err.Error(), cfg.Config)
|
|
}
|
|
// TODO: this belong to a systemd service that is started instead
|
|
|
|
kairosBlockisDefined := providerConfig.Kairos != nil
|
|
tokenNotDefined := (kairosBlockisDefined && providerConfig.Kairos.NetworkToken == "")
|
|
skipAuto := (kairosBlockisDefined && providerConfig.Kairos.SkipAuto)
|
|
|
|
if providerConfig.Kairos == nil && !providerConfig.K3s.Enabled && !providerConfig.K3sAgent.Enabled {
|
|
return pluggable.EventResponse{State: fmt.Sprintf("no kairos or k3s configuration. nothing to do: %s", cfg.Config)}
|
|
}
|
|
|
|
utils.SH("elemental run-stage kairos-agent.bootstrap") //nolint:errcheck
|
|
sdk.RunHookScript("/usr/bin/kairos-agent.bootstrap.hook") //nolint:errcheck
|
|
|
|
logLevel := "debug"
|
|
|
|
if providerConfig.Kairos != nil && providerConfig.Kairos.LogLevel != "" {
|
|
logLevel = providerConfig.Kairos.LogLevel
|
|
}
|
|
|
|
lvl, err := logging.LevelFromString(logLevel)
|
|
if err != nil {
|
|
return ErrorEvent("Failed setup logger: %s", err.Error())
|
|
}
|
|
|
|
// TODO: Fixup Logging to file
|
|
loggerCfg := zap.NewProductionConfig()
|
|
loggerCfg.OutputPaths = []string{
|
|
cfg.Logfile,
|
|
}
|
|
logger, err := loggerCfg.Build()
|
|
if err != nil {
|
|
return ErrorEvent("Failed setup logger: %s", err.Error())
|
|
}
|
|
|
|
logging.SetAllLoggers(lvl)
|
|
|
|
log := &logging.ZapEventLogger{SugaredLogger: *logger.Sugar()}
|
|
|
|
// Do onetimebootstrap if K3s or K3s-agent are enabled.
|
|
// Those blocks are not required to be enabled in case of a kairos
|
|
// full automated setup. Otherwise, they must be explicitly enabled.
|
|
if (tokenNotDefined && (providerConfig.K3s.Enabled || providerConfig.K3sAgent.Enabled)) || skipAuto {
|
|
err := oneTimeBootstrap(log, providerConfig, func() error {
|
|
return SetupVPN(services.EdgeVPNDefaultInstance, cfg.APIAddress, "/", true, providerConfig)
|
|
})
|
|
if err != nil {
|
|
return ErrorEvent("Failed setup: %s", err.Error())
|
|
}
|
|
return pluggable.EventResponse{}
|
|
} else if tokenNotDefined {
|
|
return ErrorEvent("No network token provided, or `k3s` block configured. Exiting")
|
|
}
|
|
|
|
// We might still want a VPN, but not to route traffic into
|
|
if kairosBlockisDefined && (!providerConfig.Kairos.Hybrid || providerConfig.Kairos.HybridVPN) {
|
|
logger.Info("Configuring VPN")
|
|
if err := SetupVPN(services.EdgeVPNDefaultInstance, cfg.APIAddress, "/", true, providerConfig); err != nil {
|
|
return ErrorEvent("Failed setup VPN: %s", err.Error())
|
|
}
|
|
} else {
|
|
logger.Info("Configuring API")
|
|
if err := SetupAPI(cfg.APIAddress, "/", true, providerConfig); err != nil {
|
|
return ErrorEvent("Failed setup VPN: %s", err.Error())
|
|
}
|
|
}
|
|
|
|
networkID := "kairos"
|
|
|
|
if kairosBlockisDefined && providerConfig.Kairos.NetworkID != "" {
|
|
networkID = providerConfig.Kairos.NetworkID
|
|
}
|
|
|
|
cc := service.NewClient(
|
|
networkID,
|
|
edgeVPNClient.NewClient(edgeVPNClient.WithHost(cfg.APIAddress)))
|
|
|
|
nodeOpts := []service.Option{
|
|
service.WithLogger(log),
|
|
service.WithClient(cc),
|
|
service.WithUUID(machine.UUID()),
|
|
service.WithStateDir("/usr/local/.kairos/state"),
|
|
service.WithNetworkToken(providerConfig.Kairos.NetworkToken),
|
|
service.WithPersistentRoles("auto"),
|
|
service.WithRoles(
|
|
service.RoleKey{
|
|
Role: "master",
|
|
RoleHandler: p2p.Master(c, providerConfig, false, false, "master"),
|
|
},
|
|
service.RoleKey{
|
|
Role: "master/clusterinit",
|
|
RoleHandler: p2p.Master(c, providerConfig, true, true, "master/clusterinit"),
|
|
},
|
|
service.RoleKey{
|
|
Role: "master/ha",
|
|
RoleHandler: p2p.Master(c, providerConfig, false, true, "master/ha"),
|
|
},
|
|
service.RoleKey{
|
|
Role: "worker",
|
|
RoleHandler: p2p.Worker(c, providerConfig),
|
|
},
|
|
service.RoleKey{
|
|
Role: "auto",
|
|
RoleHandler: role.Auto(c, providerConfig),
|
|
},
|
|
),
|
|
}
|
|
|
|
// Optionally set up a specific node role if the user has defined so
|
|
if providerConfig.Kairos.Role != "" {
|
|
nodeOpts = append(nodeOpts, service.WithDefaultRoles(providerConfig.Kairos.Role))
|
|
}
|
|
|
|
k, err := service.NewNode(nodeOpts...)
|
|
if err != nil {
|
|
return ErrorEvent("Failed creating node: %s", err.Error())
|
|
}
|
|
err = k.Start(context.Background())
|
|
if err != nil {
|
|
return ErrorEvent("Failed start: %s", err.Error())
|
|
}
|
|
|
|
return pluggable.EventResponse{
|
|
State: "",
|
|
Data: "",
|
|
Error: "shouldn't return here",
|
|
}
|
|
}
|
|
|
|
func oneTimeBootstrap(l logging.StandardLogger, c *providerConfig.Config, vpnSetupFN func() error) error {
|
|
if role.SentinelExist() {
|
|
l.Info("Sentinel exists, nothing to do. exiting.")
|
|
return nil
|
|
}
|
|
l.Info("One time bootstrap starting")
|
|
|
|
var svc machine.Service
|
|
k3sConfig := providerConfig.K3s{}
|
|
svcName := "k3s"
|
|
svcRole := "server"
|
|
|
|
if c.K3s.Enabled {
|
|
k3sConfig = c.K3s
|
|
} else if c.K3sAgent.Enabled {
|
|
k3sConfig = c.K3sAgent
|
|
svcName = "k3s-agent"
|
|
svcRole = "agent"
|
|
}
|
|
|
|
if utils.IsOpenRCBased() {
|
|
svc, _ = openrc.NewService(
|
|
openrc.WithName(svcName),
|
|
)
|
|
} else {
|
|
svc, _ = systemd.NewService(
|
|
systemd.WithName(svcName),
|
|
)
|
|
}
|
|
|
|
envFile := machine.K3sEnvUnit(svcName)
|
|
if svc == nil {
|
|
return fmt.Errorf("could not detect OS")
|
|
}
|
|
|
|
// Setup systemd unit and starts it
|
|
if err := utils.WriteEnv(envFile,
|
|
k3sConfig.Env,
|
|
); err != nil {
|
|
return err
|
|
}
|
|
|
|
k3sbin := utils.K3sBin()
|
|
if k3sbin == "" {
|
|
return fmt.Errorf("no k3s binary found (?)")
|
|
}
|
|
if err := svc.OverrideCmd(fmt.Sprintf("%s %s %s", k3sbin, svcRole, strings.Join(k3sConfig.Args, " "))); err != nil {
|
|
return err
|
|
}
|
|
|
|
if err := svc.Start(); err != nil {
|
|
return err
|
|
}
|
|
|
|
if err := svc.Enable(); err != nil {
|
|
return err
|
|
}
|
|
|
|
if len(c.VPN) > 0 {
|
|
if err := vpnSetupFN(); err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
return role.CreateSentinel()
|
|
}
|