alex_p/yt-dlp-dags
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
yt-dlp-dags/ansible/playbook-full-install.yml

401 lines
16 KiB
YAML
Raw Blame History

---
# -------------------------------------------------------------------------------------------------
# PHASE 0: Fix Python Dependencies
# Ensures remote hosts have compatible Python libraries to prevent module failures.
# -------------------------------------------------------------------------------------------------
- name: "PHASE 0: Upgrade Python SSL libraries"
hosts: all
gather_facts: no
tasks:
- name: Attempt to upgrade pyOpenSSL, cryptography and urllib3
ansible.builtin.shell:
cmd: "pip3 install --upgrade pyOpenSSL cryptography urllib3"
become: yes
register: pip_upgrade_result
changed_when: "'Successfully installed' in pip_upgrade_result.stdout"
failed_when: false
- name: Retry upgrade with --break-system-packages on specific error
ansible.builtin.shell:
cmd: "pip3 install --upgrade pyOpenSSL cryptography urllib3 --break-system-packages"
become: yes
register: pip_upgrade_result_retry
changed_when: "'Successfully installed' in pip_upgrade_result_retry.stdout"
when: pip_upgrade_result.rc != 0 and 'externally-managed-environment' in pip_upgrade_result.stderr
- name: Fail if package upgrade did not succeed
ansible.builtin.fail:
msg: "Failed to upgrade Python packages after retry. Last error: {{ pip_upgrade_result_retry.stderr | default(pip_upgrade_result.stderr) }}"
when: >
pip_upgrade_result.rc != 0 and
(pip_upgrade_result_retry is not defined or pip_upgrade_result_retry.rc != 0)
# This playbook provides a complete installation for fresh nodes.
# It can install either master or worker roles, or both on the same machine.
#
# Usage examples:
# # Install everything on all nodes
# ansible-playbook ansible/playbook-full-install.yml
#
# # Install only on workers
# ansible-playbook ansible/playbook-full-install.yml --limit workers
#
# # Install only on master
# ansible-playbook ansible/playbook-full-install.yml --limit master
#
# # Install both roles on a single machine
# ansible-playbook ansible/playbook-full-install.yml --limit specific-host -e "install_master=true install_worker=true"
# -------------------------------------------------------------------------------------------------
# PHASE 1: Base System Configuration
# Ensures all nodes have the necessary base packages, user configurations, and Docker installed.
# -------------------------------------------------------------------------------------------------
- name: "PHASE 1: Import base system setup playbook"
import_playbook: playbook-base-system.yml
# -------------------------------------------------------------------------------------------------
# PHASE 2: Generate Environment Configuration
# Creates .env files needed by all subsequent steps
# -------------------------------------------------------------------------------------------------
- name: "PHASE 2: Generate .env configuration"
import_playbook: playbook-stress-generate-env.yml
# -------------------------------------------------------------------------------------------------
# PHASE 3: Docker Network Setup
# Ensures the shared Docker network exists before building containers
# -------------------------------------------------------------------------------------------------
- name: "PHASE 3: Ensure Docker network exists"
hosts: all
gather_facts: no
vars_files:
- "group_vars/all/vault.yml"
pre_tasks:
- name: Set inventory_env fact
ansible.builtin.set_fact:
inventory_env: "{{ inventory_file | basename | splitext | first | replace('inventory.', '') }}"
- name: Load environment-specific variables
ansible.builtin.include_vars: "{{ item }}"
with_fileglob:
- "group_vars/all/generated_vars{{ '.' + inventory_env if inventory_env else '' }}.yml"
tasks:
- name: Create shared Docker network
community.docker.docker_network:
name: "{{ docker_network_name }}"
driver: bridge
become: yes
# -------------------------------------------------------------------------------------------------
# PHASE 4: Build yt-dlp Docker Image
# Builds the yt-dlp container on each worker node using the dedicated playbook.
# -------------------------------------------------------------------------------------------------
- name: "PHASE 4: Build yt-dlp Docker image on workers"
import_playbook: playbook-update-yt-dlp-docker.yml
# -------------------------------------------------------------------------------------------------
# PHASE 5: Sync Code and Install Dependencies
# Copies application code and installs Python dependencies
# -------------------------------------------------------------------------------------------------
- name: "PHASE 5.1: Sync application code"
import_playbook: playbook-stress-sync-code.yml
- name: "PHASE 5.2: Install Python dependencies"
import_playbook: playbook-stress-install-deps.yml
# -------------------------------------------------------------------------------------------------
# PHASE 6: Deploy Shadowsocks Proxies
# Configures and starts proxy services
# -------------------------------------------------------------------------------------------------
- name: "PHASE 6: Deploy proxy services"
import_playbook: playbook-proxies.yml
# -------------------------------------------------------------------------------------------------
# PHASE 7: Install bgutils
# Note: Currently bgutils is deployed on master via docker-compose
# -------------------------------------------------------------------------------------------------
- name: "PHASE 7: Install bgutils"
import_playbook: playbook-install-bgutils.yml
# -------------------------------------------------------------------------------------------------
# PHASE 8: Master-Specific Services Setup
# Starts Redis, MinIO, and other master-only services
# -------------------------------------------------------------------------------------------------
- name: "PHASE 8: Master Node Services Setup"
hosts: master
gather_facts: no
vars:
inventory_env: "{{ inventory_file | basename | splitext | first | replace('inventory.', '') }}"
vars_files:
- "group_vars/all/vault.yml"
pre_tasks:
- name: Load environment-specific variables
ansible.builtin.include_vars: "{{ item }}"
with_fileglob:
- "group_vars/all/generated_vars{{ '.' + inventory_env if inventory_env else '' }}.yml"
tasks:
- name: Install redis-tools
ansible.builtin.apt:
name: redis-tools
state: present
become: yes
- name: Configure system performance and kernel settings
ansible.builtin.copy:
src: "configs/etc/sysctl.d/99-system-limits.conf"
dest: "/etc/sysctl.d/99-system-limits.conf"
owner: root
group: root
mode: '0644'
become: yes
register: sysctl_config_copy
- name: Apply sysctl settings
ansible.builtin.command: sysctl --system
become: yes
when: sysctl_config_copy.changed
- name: Ensure MinIO data directory exists
ansible.builtin.file:
path: "{{ airflow_master_dir }}/minio-data"
state: directory
owner: "{{ ansible_user }}"
group: "{{ deploy_group }}"
mode: '0755'
become: yes
- name: Template Docker Compose file for master services
ansible.builtin.template:
src: docker-compose.stress-master.j2
dest: "{{ airflow_master_dir }}/docker-compose.stress.yml"
owner: "{{ ansible_user }}"
group: "{{ deploy_group }}"
mode: '0644'
become: yes
- name: Stop and remove existing containers before starting services
ansible.builtin.shell:
cmd: |
docker ps -a --filter "name=bgutil-provider" --format "{{ '{{.ID}}' }}" | xargs -r docker rm -f
become: yes
changed_when: false
ignore_errors: yes
- name: Start master services (Redis, MinIO)
community.docker.docker_compose_v2:
project_src: "{{ airflow_master_dir }}"
files:
- docker-compose.stress.yml
state: present
remove_orphans: true
become: yes
- name: Wait for Redis service to be ready
ansible.builtin.wait_for:
host: localhost
port: "{{ redis_port }}"
delay: 5
timeout: 60
delegate_to: "{{ inventory_hostname }}"
- name: Wait for MinIO service to be ready
ansible.builtin.wait_for:
host: "{{ hostvars[inventory_hostname].ansible_host }}"
port: 9000
delay: 5
timeout: 60
delegate_to: localhost
- name: Download MinIO Client (mc) if not present
ansible.builtin.command:
cmd: wget https://dl.min.io/client/mc/release/linux-amd64/mc -O /usr/local/bin/mc
creates: /usr/local/bin/mc
become: yes
- name: Ensure MinIO Client (mc) is executable
ansible.builtin.file:
path: /usr/local/bin/mc
mode: '0755'
become: yes
- name: Configure mc alias for local MinIO
ansible.builtin.command: >
mc alias set local http://localhost:9000 {{ vault_s3_access_key_id }} {{ vault_s3_secret_access_key }}
become: yes
become_user: "{{ ansible_user }}"
changed_when: false
environment:
HOME: "/home/{{ ansible_user }}"
- name: Ensure S3 buckets exist in MinIO using mc
ansible.builtin.command: >
mc mb local/{{ item }}
loop:
- "stress-inputs"
- "stress-jsons"
become: yes
become_user: "{{ ansible_user }}"
register: mc_mb_result
failed_when: >
mc_mb_result.rc != 0 and
"already own it" not in mc_mb_result.stderr
changed_when: mc_mb_result.rc == 0
environment:
HOME: "/home/{{ ansible_user }}"
# -------------------------------------------------------------------------------------------------
# PHASE 9: Worker-Specific Services Setup
# Starts worker-only services if needed
# -------------------------------------------------------------------------------------------------
- name: "PHASE 9: Worker Node Services Setup"
hosts: workers
gather_facts: no
vars:
inventory_env: "{{ inventory_file | basename | splitext | first | replace('inventory.', '') }}"
vars_files:
- "group_vars/all/vault.yml"
pre_tasks:
- name: Load environment-specific variables
ansible.builtin.include_vars: "{{ item }}"
with_fileglob:
- "group_vars/all/generated_vars{{ '.' + inventory_env if inventory_env else '' }}.yml"
tasks:
- name: Template Docker Compose file for worker services
ansible.builtin.template:
src: docker-compose.stress-master.j2
dest: "{{ airflow_worker_dir }}/docker-compose.stress.yml"
owner: "{{ ansible_user }}"
group: "{{ deploy_group }}"
mode: '0644'
become: yes
- name: Stop and remove existing containers before starting services
ansible.builtin.shell:
cmd: |
docker ps -a --filter "name=bgutil-provider" --format "{{ '{{.ID}}' }}" | xargs -r docker rm -f
docker ps -a --filter "name=redis-stress" --format "{{ '{{.ID}}' }}" | xargs -r docker rm -f
docker ps -a --filter "name=minio-stress" --format "{{ '{{.ID}}' }}" | xargs -r docker rm -f
become: yes
changed_when: false
ignore_errors: yes
- name: Start worker services
community.docker.docker_compose_v2:
project_src: "{{ airflow_worker_dir }}"
files:
- docker-compose.stress.yml
state: present
remove_orphans: true
become: yes
# -------------------------------------------------------------------------------------------------
# PHASE 10: Shared Storage Setup (s3fs)
# Mounts S3 buckets on all nodes
# -------------------------------------------------------------------------------------------------
- name: "PHASE 10: Shared Storage Setup (s3fs)"
hosts: master:workers
gather_facts: no
vars:
inventory_env: "{{ inventory_file | basename | splitext | first | replace('inventory.', '') }}"
vars_files:
- "group_vars/all/vault.yml"
pre_tasks:
- name: Load environment-specific variables
ansible.builtin.include_vars: "{{ item }}"
with_fileglob:
- "group_vars/all/generated_vars{{ '.' + inventory_env if inventory_env else '' }}.yml"
tasks:
- name: Define base directory for node
ansible.builtin.set_fact:
base_dir: "{{ airflow_master_dir if inventory_hostname in groups['master'] else airflow_worker_dir }}"
- name: Mount S3 buckets via s3fs
block:
- name: Install s3fs for mounting S3 buckets
ansible.builtin.apt:
name: s3fs
state: present
become: yes
- name: Configure s3fs credentials
ansible.builtin.copy:
content: "{{ vault_s3_access_key_id }}:{{ vault_s3_secret_access_key }}"
dest: "/home/{{ ansible_user }}/.passwd-s3fs"
owner: "{{ ansible_user }}"
group: "{{ deploy_group }}"
mode: '0600'
become: yes
- name: Check if mount points are already mounted
ansible.builtin.shell:
cmd: "mount | grep -q '{{ item.path }}'"
loop:
- { bucket: 'stress-inputs', path: '{{ base_dir }}/inputfiles' }
- { bucket: 'stress-jsons', path: '{{ base_dir }}/run/docker_mount/fetched_info_jsons' }
register: mount_check
changed_when: false
failed_when: false
- name: Ensure mount point directories exist (only if not mounted)
ansible.builtin.file:
path: "{{ item.item.path }}"
state: directory
owner: "{{ ansible_user }}"
group: "{{ deploy_group }}"
mode: '0755'
loop: "{{ mount_check.results }}"
when: item.rc != 0
become: yes
- name: Mount S3 buckets for stress testing
ansible.posix.mount:
src: "s3fs#{{ item.bucket }}"
path: "{{ item.path }}"
fstype: fuse
opts: "_netdev,allow_other,use_path_request_style,nonempty,url=http://{{ hostvars[groups['master'][0]].ansible_host }}:9000,passwd_file=/home/{{ ansible_user }}/.passwd-s3fs"
state: mounted
loop:
- { bucket: 'stress-inputs', path: '{{ base_dir }}/inputfiles' }
- { bucket: 'stress-jsons', path: '{{ base_dir }}/run/docker_mount/fetched_info_jsons' }
become: yes
# -------------------------------------------------------------------------------------------------
# PHASE 11: Initialize Redis (Master Only)
# Sets up profiles and policies in Redis
# -------------------------------------------------------------------------------------------------
- name: "PHASE 11: Initialize Redis profiles"
import_playbook: playbook-stress-init-redis.yml
# -------------------------------------------------------------------------------------------------
# PHASE 12: Final Status and Next Steps
# -------------------------------------------------------------------------------------------------
- name: "PHASE 12: Installation Complete"
hosts: localhost
gather_facts: no
tasks:
- name: Display installation completion message
ansible.builtin.debug:
msg: |
========================================
Full installation complete!
========================================
Next steps:
1. Start monitoring and enforcer (on master):
ansible-playbook ansible/playbook-stress-manage-processes.yml \
-e "start_monitor=true start_enforcer=true"
2. Start auth generator (on master):
ansible-playbook ansible/playbook-stress-auth-generator.yml \
-e "start_generator=true dummy_batch=true auth_min_seconds=2 auth_max_seconds=3"
3. Start download simulation (on workers):
ansible-playbook ansible/playbook-stress-download-simulation.yml \
-e "start_download=true profile_prefix=user1 download_min_seconds=2 download_max_seconds=5" \
--limit workers
4. Check status:
ansible-playbook ansible/playbook-stress-control.yml -e "action=status"
5. Monitor profiles:
ansible-playbook ansible/playbook-stress-control.yml -e "action=profile-status"
Reference in New Issue View Git Blame Copy Permalink