[perso/Immae/Config/Nix.git] / modules / private / buildbot / projects / test / __init__.py

from buildbot.plugins import *
from buildbot_common.build_helpers import *
import buildbot_common.libvirt as ilibvirt
import os
from buildbot.util import bytes2unicode
import json

__all__ = [ "configure", "E" ]

class E():
    PROJECT       = "test"
    BUILDBOT_URL  = "https://git.immae.eu/buildbot/{}/".format(PROJECT)
    SOCKET        = "unix:/run/buildbot/{}.sock".format(PROJECT)
    PB_SOCKET     = os.environ["BUILDBOT_WORKER_PORT"]
    WORKER_HOST   = "{}:{}".format(os.environ["BUILDBOT_HOST"], PB_SOCKET)
    RELEASE_PATH  = "/var/lib/ftp/release.immae.eu/{}".format(PROJECT)
    RELEASE_URL   = "https://release.immae.eu/{}".format(PROJECT)
    GIT_URL       = "https://git.immae.eu/perso/Immae/TestProject.git"
    SSH_KEY_PATH  = "/var/lib/buildbot/buildbot_key"
    LIBVIRT_URL   = os.environ["BUILDBOT_VIRT_URL"] + "?keyfile=" + SSH_KEY_PATH
    PUPPET_HOST   = "root@backup-1.v.immae.eu"
    LDAP_HOST     = "ldap.immae.eu"
    LDAP_DN       = "cn=buildbot,ou=services,dc=immae,dc=eu"
    LDAP_ROLES_BASE = "ou=roles,ou=hosts,dc=immae,dc=eu"
    XMPP_RECIPIENTS = os.environ["BUILDBOT_XMPP_RECIPIENTS"].split(" ")

    # master.cfg
    SECRETS_FILE       = os.getcwd() + "/secrets"
    LDAP_URL           = "ldaps://ldap.immae.eu:636"
    LDAP_ADMIN_USER    = "cn=buildbot,ou=services,dc=immae,dc=eu"
    LDAP_BASE          = "dc=immae,dc=eu"
    LDAP_PATTERN       = "(uid=%(username)s)"
    LDAP_GROUP_PATTERN = "(&(memberOf=cn=groups,ou=test,cn=buildbot,ou=services,dc=immae,dc=eu)(member=%(dn)s))"
    TITLE_URL          = "https://git.immae.eu/?p=perso/Immae/TestProject.git;a=summary"
    TITLE              = "Test project"

class CustomBase(webhooks.base):
    def getChanges(self, request):
        try:
            content = request.content.read()
            args = json.loads(bytes2unicode(content))
        except Exception as e:
            raise ValueError("Error loading JSON: " + str(e))

        args.setdefault("comments", "")
        args.setdefault("repository", "")
        args.setdefault("author", args.get("who", "unknown"))

        if args["category"] == "deploy_webhook":
            args = {
                    "category": "deploy_webhook",
                    "comments": "",
                    "repository": "",
                    "author": "unknown",
                    "project": "TestProject",
                    "properties": {
                        "environment": args.get("environment", "integration"),
                        "build": "test_{}.tar.gz".format(args.get("branch", "master"))
                        }
                    }

        return ([args], None)

def deploy_hook_scheduler(project, timer=1):
    return schedulers.AnyBranchScheduler(
            change_filter=util.ChangeFilter(category="deploy_webhook", project=project),
            name="{}_deploy".format(project), treeStableTimer=timer, builderNames=["{}_deploy".format(project)])

def configure(c):
    c["buildbotURL"] = E.BUILDBOT_URL
    c["www"]["port"] = E.SOCKET

    c["www"]["change_hook_dialects"]["base"] = {
            "custom_class": CustomBase
            }
    c['workers'].append(ilibvirt.LibVirtWorker("test-build",
                                             open(E.SECRETS_FILE + "/worker_password", "r").read().rstrip(),
                                             ilibvirt.Connection(E.LIBVIRT_URL),
                                             E.WORKER_HOST))
    c['workers'].append(ilibvirt.LibVirtWorker("test-deploy",
                                             open(E.SECRETS_FILE + "/worker_password", "r").read().rstrip(),
                                             ilibvirt.Connection(E.LIBVIRT_URL),
                                             E.WORKER_HOST))

    c['schedulers'].append(hook_scheduler("TestProject", timer=1))
    c['schedulers'].append(force_scheduler("force_test", ["TestProject_build"]))
    c['schedulers'].append(deploy_scheduler("deploy_test", ["TestProject_deploy"]))
    c['schedulers'].append(deploy_hook_scheduler("TestProject", timer=1))

    c['builders'].append(factory())
    c['builders'].append(deploy_factory())

    c['services'].append(SlackStatusPush(
        name="slack_status_test_project",
        builders=["TestProject_build", "TestProject_deploy"],
        serverUrl=open(E.SECRETS_FILE + "/slack_webhook", "r").read().rstrip()))
    c['services'].append(XMPPStatusPush(
        name="xmpp_status_test_project",
        builders=["TestProject_build", "TestProject_deploy"],
        recipients=E.XMPP_RECIPIENTS,
        password=open(E.SECRETS_FILE + "/notify_xmpp_password", "r").read().rstrip()))

def factory():
    package = util.Interpolate("test_%(kw:clean_branch)s.tar.gz", clean_branch=clean_branch)
    package_dest = util.Interpolate("{}/test_%(kw:clean_branch)s.tar.gz".format(E.RELEASE_PATH), clean_branch=clean_branch)
    package_url = util.Interpolate("{}/test_%(kw:clean_branch)s.tar.gz".format(E.RELEASE_URL), clean_branch=clean_branch)

    factory = util.BuildFactory()
    factory.addStep(steps.Git(logEnviron=False,
        repourl=E.GIT_URL, mode="full", method="copy"))
    factory.addStep(steps.ShellCommand(name="env",
        logEnviron=False, command=["env"]))
    factory.addStep(steps.ShellCommand(name="pwd",
        logEnviron=False, command=["pwd"]))
    factory.addStep(steps.ShellCommand(name="true",
        logEnviron=False, command=["true"]))
    factory.addStep(steps.ShellCommand(name="echo",
        logEnviron=False, command=["echo", package]))
    factory.addSteps(package_and_upload(package, package_dest, package_url))

    return util.BuilderConfig(name="TestProject_build", workernames=["test-build"], factory=factory)


def compute_build_infos():
    @util.renderer
    def compute(props):
        import re, hashlib
        build_file = props.getProperty("build")
        package_dest = "{}/{}".format(E.RELEASE_PATH, build_file)
        version = re.match(r"{0}_(.*).tar.gz".format("test"), build_file).group(1)
        with open(package_dest, "rb") as f:
            sha = hashlib.sha256(f.read()).hexdigest()
        return {
                "build_version": version,
                "build_hash": sha,
                }
    return compute

@util.renderer
def puppet_host(props):
    return E.PUPPET_HOST

def deploy_factory():
    package_dest = util.Interpolate("{}/%(prop:build)s".format(E.RELEASE_PATH))

    factory = util.BuildFactory()
    factory.addStep(steps.MasterShellCommand(command=["test", "-f", package_dest]))
    factory.addStep(steps.SetProperties(properties=compute_build_infos()))
    factory.addStep(LdapPush(environment=util.Property("environment"),
        build_version=util.Property("build_version"),
        build_hash=util.Property("build_hash"),
        ldap_password=util.Secret("ldap")))
    factory.addStep(steps.MasterShellCommand(command=[
        "ssh", "-o", "UserKnownHostsFile=/dev/null", "-o", "StrictHostKeyChecking=no", "-o", "CheckHostIP=no", "-i", E.SSH_KEY_PATH, puppet_host]))
    return util.BuilderConfig(name="TestProject_deploy", workernames=["test-deploy"], factory=factory)

from twisted.internet import defer
from buildbot.process.buildstep import FAILURE
from buildbot.process.buildstep import SUCCESS
from buildbot.process.buildstep import BuildStep

class LdapPush(BuildStep):
    name = "LdapPush"
    renderables = ["environment", "build_version", "build_hash", "ldap_password"]

    def __init__(self, **kwargs):
        self.environment = kwargs.pop("environment")
        self.build_version = kwargs.pop("build_version")
        self.build_hash = kwargs.pop("build_hash")
        self.ldap_password = kwargs.pop("ldap_password")
        self.ldap_host = kwargs.pop("ldap_host", E.LDAP_HOST)
        super().__init__(**kwargs)

    def run(self):
        import json
        from ldap3 import Reader, Writer, Server, Connection, ObjectDef
        server = Server(self.ldap_host)
        conn = Connection(server,
                user=E.LDAP_DN,
                password=self.ldap_password)
        conn.bind()
        obj = ObjectDef("immaePuppetClass", conn)
        r = Reader(conn, obj,
                "cn=test.{},{}".format(self.environment, E.LDAP_ROLES_BASE))
        r.search()
        if len(r) > 0:
            w = Writer.from_cursor(r)
            for value in w[0].immaePuppetJson.values:
                config = json.loads(value)
                if "test_version" in config:
                    config["test_version"] = self.build_version
                    config["test_sha256"] = self.build_hash
                    w[0].immaePuppetJson -= value
                    w[0].immaePuppetJson += json.dumps(config, indent="  ")
                    w.commit()
                    return defer.succeed(SUCCESS)
        return defer.succeed(FAILURE)
Commit	Line	Data
9fb4205e IB	1	from buildbot.plugins import *
9fb4205e IB	2	from buildbot_common.build_helpers import *
200690c9	3	import buildbot_common.libvirt as ilibvirt
9fb4205e	4	import os
85817848 IB	5	from buildbot.util import bytes2unicode
85817848 IB	6	import json
9fb4205e IB	7
	8	__all__ = [ "configure", "E" ]
	9
	10	class E():
	11	PROJECT = "test"
	12	BUILDBOT_URL = "https://git.immae.eu/buildbot/{}/".format(PROJECT)
	13	SOCKET = "unix:/run/buildbot/{}.sock".format(PROJECT)
200690c9 IB	14	PB_SOCKET = os.environ["BUILDBOT_WORKER_PORT"]
200690c9 IB	15	WORKER_HOST = "{}:{}".format(os.environ["BUILDBOT_HOST"], PB_SOCKET)
9fb4205e IB	16	RELEASE_PATH = "/var/lib/ftp/release.immae.eu/{}".format(PROJECT)
	17	RELEASE_URL = "https://release.immae.eu/{}".format(PROJECT)
	18	GIT_URL = "https://git.immae.eu/perso/Immae/TestProject.git"
e2b96bf5	19	SSH_KEY_PATH = "/var/lib/buildbot/buildbot_key"
200690c9	20	LIBVIRT_URL = os.environ["BUILDBOT_VIRT_URL"] + "?keyfile=" + SSH_KEY_PATH
9fb4205e IB	21	PUPPET_HOST = "root@backup-1.v.immae.eu"
	22	LDAP_HOST = "ldap.immae.eu"
	23	LDAP_DN = "cn=buildbot,ou=services,dc=immae,dc=eu"
	24	LDAP_ROLES_BASE = "ou=roles,ou=hosts,dc=immae,dc=eu"
256d607c	25	XMPP_RECIPIENTS = os.environ["BUILDBOT_XMPP_RECIPIENTS"].split(" ")
9fb4205e IB	26
	27	# master.cfg
	28	SECRETS_FILE = os.getcwd() + "/secrets"
	29	LDAP_URL = "ldaps://ldap.immae.eu:636"
	30	LDAP_ADMIN_USER = "cn=buildbot,ou=services,dc=immae,dc=eu"
	31	LDAP_BASE = "dc=immae,dc=eu"
	32	LDAP_PATTERN = "(uid=%(username)s)"
e2b96bf5	33	LDAP_GROUP_PATTERN = "(&(memberOf=cn=groups,ou=test,cn=buildbot,ou=services,dc=immae,dc=eu)(member=%(dn)s))"
9fb4205e IB	34	TITLE_URL = "https://git.immae.eu/?p=perso/Immae/TestProject.git;a=summary"
	35	TITLE = "Test project"
	36
85817848 IB	37	class CustomBase(webhooks.base):
	38	def getChanges(self, request):
	39	try:
	40	content = request.content.read()
	41	args = json.loads(bytes2unicode(content))
	42	except Exception as e:
	43	raise ValueError("Error loading JSON: " + str(e))
	44
	45	args.setdefault("comments", "")
	46	args.setdefault("repository", "")
	47	args.setdefault("author", args.get("who", "unknown"))
	48
	49	if args["category"] == "deploy_webhook":
	50	args = {
	51	"category": "deploy_webhook",
	52	"comments": "",
	53	"repository": "",
	54	"author": "unknown",
	55	"project": "TestProject",
	56	"properties": {
	57	"environment": args.get("environment", "integration"),
	58	"build": "test_{}.tar.gz".format(args.get("branch", "master"))
	59	}
	60	}
	61
	62	return ([args], None)
	63
	64	def deploy_hook_scheduler(project, timer=1):
	65	return schedulers.AnyBranchScheduler(
	66	change_filter=util.ChangeFilter(category="deploy_webhook", project=project),
	67	name="{}_deploy".format(project), treeStableTimer=timer, builderNames=["{}_deploy".format(project)])
	68
9fb4205e IB	69	def configure(c):
	70	c["buildbotURL"] = E.BUILDBOT_URL
	71	c["www"]["port"] = E.SOCKET
	72
85817848 IB	73	c["www"]["change_hook_dialects"]["base"] = {
	74	"custom_class": CustomBase
	75	}
200690c9 IB	76	c['workers'].append(ilibvirt.LibVirtWorker("test-build",
	77	open(E.SECRETS_FILE + "/worker_password", "r").read().rstrip(),
	78	ilibvirt.Connection(E.LIBVIRT_URL),
	79	E.WORKER_HOST))
	80	c['workers'].append(ilibvirt.LibVirtWorker("test-deploy",
	81	open(E.SECRETS_FILE + "/worker_password", "r").read().rstrip(),
	82	ilibvirt.Connection(E.LIBVIRT_URL),
	83	E.WORKER_HOST))
9fb4205e IB	84
	85	c['schedulers'].append(hook_scheduler("TestProject", timer=1))
	86	c['schedulers'].append(force_scheduler("force_test", ["TestProject_build"]))
	87	c['schedulers'].append(deploy_scheduler("deploy_test", ["TestProject_deploy"]))
85817848	88	c['schedulers'].append(deploy_hook_scheduler("TestProject", timer=1))
9fb4205e IB	89
	90	c['builders'].append(factory())
	91	c['builders'].append(deploy_factory())
	92
	93	c['services'].append(SlackStatusPush(
	94	name="slack_status_test_project",
	95	builders=["TestProject_build", "TestProject_deploy"],
	96	serverUrl=open(E.SECRETS_FILE + "/slack_webhook", "r").read().rstrip()))
256d607c IB	97	c['services'].append(XMPPStatusPush(
	98	name="xmpp_status_test_project",
	99	builders=["TestProject_build", "TestProject_deploy"],
	100	recipients=E.XMPP_RECIPIENTS,
	101	password=open(E.SECRETS_FILE + "/notify_xmpp_password", "r").read().rstrip()))
9fb4205e IB	102
	103	def factory():
	104	package = util.Interpolate("test_%(kw:clean_branch)s.tar.gz", clean_branch=clean_branch)
	105	package_dest = util.Interpolate("{}/test_%(kw:clean_branch)s.tar.gz".format(E.RELEASE_PATH), clean_branch=clean_branch)
	106	package_url = util.Interpolate("{}/test_%(kw:clean_branch)s.tar.gz".format(E.RELEASE_URL), clean_branch=clean_branch)
	107
	108	factory = util.BuildFactory()
	109	factory.addStep(steps.Git(logEnviron=False,
	110	repourl=E.GIT_URL, mode="full", method="copy"))
	111	factory.addStep(steps.ShellCommand(name="env",
	112	logEnviron=False, command=["env"]))
	113	factory.addStep(steps.ShellCommand(name="pwd",
	114	logEnviron=False, command=["pwd"]))
	115	factory.addStep(steps.ShellCommand(name="true",
	116	logEnviron=False, command=["true"]))
	117	factory.addStep(steps.ShellCommand(name="echo",
	118	logEnviron=False, command=["echo", package]))
	119	factory.addSteps(package_and_upload(package, package_dest, package_url))
	120
200690c9	121	return util.BuilderConfig(name="TestProject_build", workernames=["test-build"], factory=factory)
9fb4205e IB	122
	123
	124	def compute_build_infos():
	125	@util.renderer
	126	def compute(props):
	127	import re, hashlib
	128	build_file = props.getProperty("build")
	129	package_dest = "{}/{}".format(E.RELEASE_PATH, build_file)
	130	version = re.match(r"{0}_(.*).tar.gz".format("test"), build_file).group(1)
	131	with open(package_dest, "rb") as f:
	132	sha = hashlib.sha256(f.read()).hexdigest()
	133	return {
	134	"build_version": version,
	135	"build_hash": sha,
	136	}
	137	return compute
	138
	139	@util.renderer
	140	def puppet_host(props):
	141	return E.PUPPET_HOST
	142
	143	def deploy_factory():
	144	package_dest = util.Interpolate("{}/%(prop:build)s".format(E.RELEASE_PATH))
	145
	146	factory = util.BuildFactory()
	147	factory.addStep(steps.MasterShellCommand(command=["test", "-f", package_dest]))
	148	factory.addStep(steps.SetProperties(properties=compute_build_infos()))
	149	factory.addStep(LdapPush(environment=util.Property("environment"),
	150	build_version=util.Property("build_version"),
	151	build_hash=util.Property("build_hash"),
	152	ldap_password=util.Secret("ldap")))
	153	factory.addStep(steps.MasterShellCommand(command=[
	154	"ssh", "-o", "UserKnownHostsFile=/dev/null", "-o", "StrictHostKeyChecking=no", "-o", "CheckHostIP=no", "-i", E.SSH_KEY_PATH, puppet_host]))
200690c9	155	return util.BuilderConfig(name="TestProject_deploy", workernames=["test-deploy"], factory=factory)
9fb4205e IB	156
	157	from twisted.internet import defer
	158	from buildbot.process.buildstep import FAILURE
	159	from buildbot.process.buildstep import SUCCESS
	160	from buildbot.process.buildstep import BuildStep
	161
	162	class LdapPush(BuildStep):
	163	name = "LdapPush"
	164	renderables = ["environment", "build_version", "build_hash", "ldap_password"]
	165
	166	def __init__(self, **kwargs):
	167	self.environment = kwargs.pop("environment")
	168	self.build_version = kwargs.pop("build_version")
	169	self.build_hash = kwargs.pop("build_hash")
	170	self.ldap_password = kwargs.pop("ldap_password")
	171	self.ldap_host = kwargs.pop("ldap_host", E.LDAP_HOST)
	172	super().__init__(**kwargs)
	173
	174	def run(self):
	175	import json
	176	from ldap3 import Reader, Writer, Server, Connection, ObjectDef
	177	server = Server(self.ldap_host)
	178	conn = Connection(server,
	179	user=E.LDAP_DN,
	180	password=self.ldap_password)
	181	conn.bind()
	182	obj = ObjectDef("immaePuppetClass", conn)
	183	r = Reader(conn, obj,
	184	"cn=test.{},{}".format(self.environment, E.LDAP_ROLES_BASE))
	185	r.search()
	186	if len(r) > 0:
	187	w = Writer.from_cursor(r)
	188	for value in w[0].immaePuppetJson.values:
	189	config = json.loads(value)
	190	if "test_version" in config:
	191	config["test_version"] = self.build_version
	192	config["test_sha256"] = self.build_hash
	193	w[0].immaePuppetJson -= value
	194	w[0].immaePuppetJson += json.dumps(config, indent=" ")
	195	w.commit()
	196	return defer.succeed(SUCCESS)
	197	return defer.succeed(FAILURE)