calico: experiment

Signed-off-by: Peter Mikus <peter.mikus@icloud.com>
Change-Id: If891479e1060f0fe613916bc4ea3771f60ac9624

Author: Peter Mikus

fdio.infra.ansible/roles/calico/defaults/main.yml

@@ -1,4 +1,8 @@
 ---
+cloudimg_url: https://cloud-images.ubuntu.com/noble/current/noble-server-cloudimg-amd64.img
+cloudimg_dest: /opt/noble-server-cloudimg-amd64.img
+cloudimg_checksum: sha256:00786c0936a7dd91a6b07941ca60bb56652975e0e72f9dacf73c887ada420966
+
 kubernetes_pod_network:
   # Calico CNI.
   cni: "calico"

fdio.infra.ansible/roles/calico/tasks/main.yml

@@ -1,18 +1,22 @@
 ---
 # file: tasks/main.yml
 
-- import_tasks: pre-action.yml
+- import_tasks: pre-setup.yml
   tags:
-    - calico-pre-action
+    - calico-pre-setup
 
-- import_tasks: deploy.yml
-  tags:
-    - calico-deploy
-
-- import_tasks: post-action.yml
-  tags:
-    - calico-post-action
-
-- import_tasks: cleanup.yml
-  tags:
-    - calico-cleanup
+#- import_tasks: pre-action.yml
+#  tags:
+#    - calico-pre-action
+#
+#- import_tasks: deploy.yml
+#  tags:
+#    - calico-deploy
+#
+#- import_tasks: post-action.yml
+#  tags:
+#    - calico-post-action
+#
+#- import_tasks: cleanup.yml
+#  tags:
+#    - calico-cleanup

fdio.infra.ansible/roles/calico/tasks/pre-setup.yml

@@ -0,0 +1,35 @@
+---
+# file: tasks/pre-setup.yml
+
+- name: download cloud image iso with check (sha256)
+  ansible.builtin.get_url:
+    url: "{{ cloudimg_url }}"
+    dest: "{{ cloudimg_dest }}"
+    checksum: "{{ cloudimg_checksum }}"
+  when:
+    - calico_sut is defined
+    - deploy_state == "present"
+  tags:
+    - calico-pre-setup
+
+- name: upload cloud init configuration to the host
+  ansible.builtin.template:
+    dest: "/tmp/{{ item }}"
+    src: "{{ item }}"
+  loop:
+    - "meta-data"
+    - "network-config"
+    - "user-data"
+  when:
+    - calico_sut is defined
+  tags:
+    - calico-pre-setup
+
+- name: create cloud init configuration iso
+  ansible.builtin.shell: |
+    genisoimage -output seed.img -volid cidata -rational-rock -joliet /tmp/user-data /tmp/meta-data /tmp/network-config
+  when:
+    - calico_sut is defined
+    - deploy_state == "present"
+  tags:
+    - calico-pre-setup

fdio.infra.ansible/roles/calico/templates/meta-data

@@ -0,0 +1,80 @@
+#cloud-config
+
+users:
+  - default
+  - name: testuser
+    groups: sudo
+    sudo: ['ALL=(ALL) NOPASSWD:ALL']
+    plain_text_passwd: Csit1234
+    lock_passwd: false
+chpasswd:
+  list: |
+    testuser:Csit1234
+  expire: False
+
+package_update: true
+package_upgrade: false
+package_reboot_if_required: false
+
+packages:
+ - gnupg2
+ - software-properties-common
+ - apt-transport-https
+ - ca-certificates
+ - jq
+ - containerd.io
+ - kubelet
+ - kubeadm
+ - kubectl
+
+write_files:
+  - path: /etc/sysctl.d/kubernetes.conf
+    content: |
+      net.bridge.bridge-nf-call-ip6tables = 1
+      net.bridge.bridge-nf-call-iptables = 1
+      net.ipv4.ip_forward = 1
+  - path: /etc/modules-load.d/containerd.conf
+    content: |
+      overlay
+      br_netfilter
+  - path: /etc/containerd/config.toml
+    content: |
+      version = 2
+      [plugins]
+      [plugins."io.containerd.grpc.v1.cri"]
+      [plugins."io.containerd.grpc.v1.cri".containerd]
+      [plugins."io.containerd.grpc.v1.cri".containerd.runtimes]
+      [plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc]
+      runtime_type = "io.containerd.runc.v2"
+      [plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc.options]
+      SystemdCgroup = true
+  - path: /etc/ssh/sshd_config.d/60-cloudimg-settings.conf
+    content: |
+      # Enabling password authentication
+      PasswordAuthentication yes
+
+runcmd:
+  - apt-mark hold kubelet kubeadm kubectl
+  - systemctl enable containerd
+  - ip -4 --json addr show | jq -r '.[] | select(.addr_info[0].local | startswith("10.1.0.")) .addr_info[0].local' > /etc/node-ip
+  - echo "KUBELET_EXTRA_ARGS='--node-ip=$(cat /etc/node-ip) --cloud-provider=external'" > /etc/default/kubelet
+  - systemctl daemon-reload
+  - systemctl enable kubelet
+  - kubeadm config images pull
+
+apt:
+  sources:
+    kubernetes.list:
+      source: deb https://apt.kubernetes.io/ kubernetes-xenial main
+      keyid: FEEA9169307EA071
+
+    docker.list:
+      source: deb [arch=amd64] https://download.docker.com/linux/ubuntu jammy stable
+      keyid: 8D81803C0EBFCD88
+
+cloud_config_modules:
+  - apt-configure
+  - apt-update-upgrade
+  - updates-check
+  - runcmd
+  - write-files