Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update docs/laptop #1984

Open
wants to merge 4 commits into
base: main
Choose a base branch
from
Open
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 6 additions & 2 deletions docs/laptop/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -52,7 +52,7 @@ docker network create paddles
Start postgres containers in order to use paddles:

```bash
mkdir $HOME/.teuthology/postgres
mkdir -p $HOME/.teuthology/postgres
docker run -d -p 5432:5432 --network paddles --name paddles-postgres \
-e POSTGRES_PASSWORD=secret \
-e POSTGRES_USER=paddles \
Expand All @@ -61,6 +61,10 @@ docker run -d -p 5432:5432 --network paddles --name paddles-postgres \
-v $HOME/.teuthology/postgres:/var/lib/postgresql/data postgres
```

NOTE. When running container on MacOS X using podman postgres may experience
troubles with volume directory binds because of podman machine, thus use regular
volumes like `-v paddlesdb:/var/lib/postrgresql/data`.

### Run paddles

Checkout paddles and build the image:
Expand All @@ -72,7 +76,7 @@ cd ~/paddles && docker build . --file Dockerfile --tag paddles
Run the container with previously created network:

```bash
docker run -d --network paddles --name api -p 80:8080 \
docker run -d --network paddles --name api -p 8080:8080 \
-e PADDLES_SERVER_HOST=0.0.0.0 \
-e PADDLES_SQLALCHEMY_URL=postgresql+psycopg2://paddles:secret@paddles-postgres/paddles \
paddles
Expand Down
11 changes: 11 additions & 0 deletions docs/siteconfig.rst
Original file line number Diff line number Diff line change
Expand Up @@ -255,6 +255,17 @@ Here is a sample configuration with many of the options set and documented::
endpoint: http://head.ses.suse.de:5000/
machine_types: ['type1', 'type2', 'type3']

# Define a list of ssh tunnels for a various group of test nodes.
# Notice: provided domain names for the nodes must be resolvable
# in your network and jump host (bastion) must be accessible.
tunnel:
- hosts: ['example1.domain', 'example2.domain', 'example3.domain']
bastion:
host: ssh_host_name # must be resolvable and reachable
user: ssh_user_name # (optional)
port: ssh_port # (optional)
identity: ~/.ssh/id_ed25519 # (optional)

# Do not allow more than that many jobs in a single run by default.
# To disable this check use 0.
job_threshold: 500
1 change: 1 addition & 0 deletions setup.cfg
Original file line number Diff line number Diff line change
Expand Up @@ -56,6 +56,7 @@ install_requires =
python-dateutil
requests>2.13.0
sentry-sdk
sshtunnel
types-psutil
urllib3>=1.25.4,<1.27 # For botocore
scripts =
Expand Down
5 changes: 5 additions & 0 deletions teuthology/misc.py
Original file line number Diff line number Diff line change
Expand Up @@ -1112,6 +1112,11 @@ def _ssh_keyscan(hostname):
:returns: The host key
"""
args = ['ssh-keyscan', '-T', '1', hostname]
if config.tunnel:
for tunnel in config.tunnel:
if hostname in tunnel.get('hosts'):
bastion = tunnel.get('bastion')
args = ['ssh', bastion.get('host')] + args
p = subprocess.Popen(
args=args,
stdout=subprocess.PIPE,
Expand Down
36 changes: 36 additions & 0 deletions teuthology/orchestra/connection.py
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,7 @@
from teuthology.config import config
from teuthology.contextutil import safe_while
from paramiko.hostkeys import HostKeyEntry
import sshtunnel

log = logging.getLogger(__name__)

Expand Down Expand Up @@ -50,7 +51,20 @@ def connect(user_at_host, host_key=None, keep_alive=False, timeout=60,
:param retry: Whether or not to retry failed connection attempts
(eventually giving up if none succeed). Default is True
:param key_filename: Optionally override which private key to use.

:return: ssh connection.

The connection is going to be established via tunnel if corresponding options
are provided in teuthology configuration file. For example:

tunnel:
- hosts: ['hostname1.domain', 'hostname2.domain']
bastion:
host: ssh_host_name
user: ssh_user_name
port: 22
identity: ~/.ssh/id_ed25519

"""
user, host = split_user(user_at_host)
if _SSHClient is None:
Expand Down Expand Up @@ -79,6 +93,28 @@ def connect(user_at_host, host_key=None, keep_alive=False, timeout=60,
timeout=timeout
)

if config.tunnel:
for tunnel in config.tunnel:
if host in tunnel.get('hosts'):
bastion = tunnel.get('bastion')
if not bastion:
log.error("The 'tunnel' config must include 'bastion' entry")
continue
bastion_host = bastion.get('host')
server = sshtunnel.SSHTunnelForwarder(
bastion_host,
ssh_username=bastion.get('user', None),
ssh_password=bastion.get('word', None),
ssh_pkey=bastion.get('identity'),
remote_bind_address=(host, 22))
log.info(f'Starting tunnel to {bastion_host} for host {host}')
server.start()
local_port = server.local_bind_port
log.debug(f"Local port for host {host} is {local_port}")
connect_args['hostname'] = '127.0.0.1'
connect_args['port'] = local_port
break

key_filename = key_filename or config.ssh_key
ssh_config_path = config.ssh_config_path or "~/.ssh/config"
ssh_config_path = os.path.expanduser(ssh_config_path)
Expand Down