Issue #450: Powervault Configurations

Signed-off-by: shubhangi_srivastava <shubhangi_srivastava@dell.com>

control_plane/input_params/base_vars.yml

@@ -118,10 +118,6 @@ host_network_nic: "eno3"
 host_network_dhcp_start_range: ""
 host_network_dhcp_end_range: ""
 
-dhcp_gateway: ""
-dhcp_dns1: ""
-dhcp_dns2: ""
-
 # The mapping file consists of the MAC address and its respective IP address and hostname.
 # The format of mapping file should be MAC,hostname,IP and must be a CSV file.
 # Eg: xx:yy:zz:aa:bb,server,172.17.0.5

control_plane/input_params/login_vars.yml

@@ -29,6 +29,18 @@ provision_password: ""
 # Mandatory value required
 cobbler_password: ""
 
+### Usage: provision_idrac ###
+
+# The username for idrac
+# The username must not contain -,\, ',"
+# Mandatory value required
+idrac_username: ""
+
+# Password used for idrac
+# The password must not contain -,\, ',"
+# Mandatory value required
+idrac_password: ""
+
 ### Usage: webui_awx ###
 
 # Password used for awx UI
@@ -43,7 +55,6 @@ cobbler_password: ""
 ethernet_switch_username: ""
 
 # Password used for ethernet switch
-# The Length of the password should be at least 8.
 # The password must not contain -,\, ',"
 ethernet_switch_password: ""
 
@@ -54,23 +65,9 @@ ethernet_switch_password: ""
 ib_username: ""
 
 # Password used for infiniband switch
-# The Length of the password should be at least 8.
 # The password must not contain -,\, ',"
 ib_password: ""
 
-### Usage: provision_idrac ###
-
-# The username for idrac
-# The username must not contain -,\, ',"
-# Mandatory value required
-idrac_username: ""
-
-# Password used for idrac
-# The Length of the password should be at least 8.
-# The password must not contain -,\, ',"
-# Mandatory value required
-idrac_password: ""
-
 ### Usage: powervault_me4 ###
 
 # The username for powervault_me4
@@ -78,6 +75,7 @@ idrac_password: ""
 powervault_me4_username: ""
 
 # Password used for powervault_me4
-# The Length of the password should be at least 8.
-# The password must not contain -,\, ',"
+# The password should have atleast one uppercase character, one lowercase character,
+# one numeric character and one non-alphanumeric character.
+# The password must not contain -,\, ',", . , < , comma(,)
 powervault_me4_password: ""

control_plane/input_params/powervault_me4_vars.yml

@@ -15,27 +15,18 @@
 
 ### Usage: powervault_me4 ###
 
-# User type of powervault_me4
-# The vaules supported are "standard" and "SNMPv3"
-# The default value is "standard"
-powervault_me4_usertype: "standard"
-
-# The user roles for managing and monitoring powervault_me4
-# The values supported are "monitor" and "manage"
-# The default value is "manage"
-# Only "manage" role allows - Addition of disk groups and creation of volumes 
-powervault_me4_roles: "manage"
-
 # This variable indicates the language selection
 # Currently only "English" is supported
 locale: "English"
 
 # Specify the system name to identify the system
-# By default it is set to "Uninitialized Name"
-powervault_me4_system_name: "Unintialized Name"
+# By default it is set to "Uninitialized_Name"
+# Length should be less than 30 and it should not contain space.
+# This is "optional"
+powervault_me4_system_name: "Unintialized_Name"
 
 # Specify the snmp notification level
-# critical: Sends notifications for Critical events only.
+# crit: Sends notifications for Critical events only.
 # error: Sends notifications for Error and Critical events.
 # warn: Sends notifications for Warning, Error, and Critical events.
 # resolved: Sends notifications for Resolved, Warning, Error, and Critical events.
@@ -43,26 +34,19 @@ powervault_me4_system_name: "Unintialized Name"
 # none: All events are excluded from trap notification and traps are disabled. 
 # However, Critical events and managed-logs events 400–402 are sent regardless of the notification setting.
 # Default value is "none"
+# Compulsory
 powervault_me4_snmp_notify_level: "none"
 
-# Specify the disk group name
-# If left blank, system automatically assigns the name
-powervault_me4_disk_group_name: ""
-
-# Specify the disk type
-# Values supported are "Virtual" and "Read Cache"
-powervault_me4_disk_type: "Virtual"
-
 # Specify the required RAID Level
 # The different RAID levels and the min and max number of disks supported for each RAID are
-# RAID1: 2
-# RAID5: 3-16
-# RAID6: 4-16
-# RAID10: 4-16
-# ADAPT: 12-128
-# Default value is "RAID1"
-# If Type "Read Cache" is selected, then RAID levels are not required
-powervault_me4_raid_levels: "RAID1"
+# r1/raid1: 2
+# r5/raid5: 3-16
+# r6/raid6: 4-16
+# r10/raid10: 4-16
+# adapt: 12-128
+# Default value is "raid1"
+# Compulsory
+powervault_me4_raid_levels: "raid1"
 
 # Specify the range of disks
 # Select a range of disks within an enclosure by entering a comma-separated list that contains 
@@ -70,13 +54,37 @@ powervault_me4_raid_levels: "RAID1"
 # Use the format enclosure-number.disk-range,enclosure-number.disk-range. 
 # For example, to select disks 3-12 in enclosure 1 and 5-23 in enclosure 2, enter 1.3-12,2.5-23.
 # For ME4012 - 0.0-0.11,1.0-1.11 are the allowed values
-powervault_me4_disk_range: ""
+# Default value is 0.1-2
+# Compulsory
+powervault_me4_disk_range: "0.1-2"
 
-# Specify the volume name
+# Specify the volume names
 # Cannot be left blank
-# the default value is "pv_omnia"
-powervault_me4_volume_name: "pv_omnia"
+# the default value is "k8s_volume" and "slurm_volume"
+# Compulsory
+powervault_me4_k8s_volume_name: "k8s_volume"
+powervault_me4_slurm_volume_name: "slurm_volume"
+
+# Specify the disk group name
+# If left blank, system automatically assigns the name
+powervault_me4_disk_group_name: "omnia"
+
+# Specify the percentage for partition in disk
+# Default value is "60%"
+# Compulsory
+powervault_me4_disk_partition_size: "60"
 
 # Specify the volume size
 # Format: 100GB <SizeGB>
-powervault_me4_volume_size: "100GB"
+# Compulsory
+powervault_me4_volume_size: "100GB"
+
+#Specify the pool for volume
+# Pool can either be  a/A or b/B.
+# Compulsory
+powervault_me4_pool: "a"
+
+# Specify the nic of the server with which Powervault is connected.
+# Default value is eno1.
+# Compulsory
+powervault_me4_server_nic: "eno1"

control_plane/roles/control_plane_common/tasks/password_config.yml

@@ -40,167 +40,140 @@
       idrac_username | length < 1 or
       idrac_password | length < 1
 
-- name: Assert provision_password
-  assert:
-    that:
-      - provision_password | length > min_length | int - 1
-      - provision_password | length < max_length | int + 1
-      - '"-" not in provision_password '
-      - '"\\" not in provision_password '
-      - '"\"" not in provision_password '
-      - " \"'\" not in provision_password "
-    success_msg: "{{ success_msg_provision_password }}"
-    fail_msg: "{{ fail_msg_provision_password }}"
-  register: provision_password_check
-
-- name: Assert cobbler_password
-  assert:
-    that:
-      - cobbler_password | length > min_length | int - 1
-      - cobbler_password | length < max_length | int + 1
-      - '"-" not in cobbler_password '
-      - '"\\" not in cobbler_password '
-      - '"\"" not in cobbler_password '
-      - " \"'\" not in cobbler_password "
-    success_msg: "{{ success_msg_cobbler_password }}"
-    fail_msg: "{{ fail_msg_cobbler_password }}"
-  register: cobbler_password_check
-
-- name: Assert idrac_username
-  assert:
-    that:
-      - idrac_username | length >= min_username_length
-      - idrac_username | length < max_length
-      - '"-" not in idrac_username '
-      - '"\\" not in idrac_username '
-      - '"\"" not in idrac_username '
-      - " \"'\" not in idrac_username "
-    success_msg: "{{ success_idrac_username }}"
-    fail_msg: "{{ fail_idrac_username }}"
-
-- name: Assert idrac_password
-  assert:
-    that:
-      - idrac_password | length > min_username_length | int - 1
-      - idrac_password | length < max_length | int + 1
-      - '"-" not in idrac_password '
-      - '"\\" not in idrac_password '
-      - '"\"" not in idrac_password '
-      - " \"'\" not in idrac_password "
-    success_msg: "{{ success_msg_idrac_password }}"
-    fail_msg: "{{ fail_msg_idrac_password }}"
-  register: idrac_password_check
-
-- name: Verify ethernet_switch_username and ethernet_switch_password are not empty
-  assert:
-    that:
-      - ethernet_switch_username | length > 0
-      - ethernet_switch_password | length > 0
-    success_msg: "{{ ethernet_params_success_msg }}"
-    fail_msg: "{{ ethernet_params_empty_fail_msg }}"
-  when: ethernet_switch_support
-
-- name: Assert ethernet_switch_username
-  assert:
-    that:
-      - ethernet_switch_username | length >= min_username_length
-      - ethernet_switch_username | length < max_length
-      - '"-" not in ethernet_switch_username '
-      - '"\\" not in ethernet_switch_username '
-      - '"\"" not in ethernet_switch_username '
-      - " \"'\" not in ethernet_switch_username "
-    success_msg: "{{ success_ethernet_switch_username }}"
-    fail_msg: "{{ fail_ethernet_switch_username }}"
-  when: ethernet_switch_support
-
-- name: Assert ethernet_switch_password
-  assert:
-    that:
-      - ethernet_switch_password | length > min_username_length | int - 1
-      - ethernet_switch_password | length < max_length | int + 1
-      - '"-" not in ethernet_switch_password '
-      - '"\\" not in ethernet_switch_password '
-      - '"\"" not in ethernet_switch_password '
-      - " \"'\" not in ethernet_switch_password "
-    success_msg: "{{ success_msg_ethernet_switch_password }}"
-    fail_msg: "{{ fail_msg_ethernet_switch_password }}"
+- name: Assert provision credentials
+  block:
+    - name: Assert provision_password
+      assert:
+        that:
+          - provision_password | length > min_length | int - 1
+          - provision_password | length < max_length | int + 1
+          - '"-" not in provision_password '
+          - '"\\" not in provision_password '
+          - '"\"" not in provision_password '
+          - " \"'\" not in provision_password "
+      no_log: true
+  rescue:
+    - name: Provision password validation check
+      fail:
+        msg: "{{ fail_msg_provision_password }}"
+
+- name: Assert cobbler credentials
+  block:
+    - name: Assert cobbler_password
+      assert:
+        that:
+          - cobbler_password | length > min_length | int - 1
+          - cobbler_password | length < max_length | int + 1
+          - '"-" not in cobbler_password '
+          - '"\\" not in cobbler_password '
+          - '"\"" not in cobbler_password '
+          - " \"'\" not in cobbler_password "
+      no_log: true
+  rescue:
+    - name: Cobbler password validation check
+      fail:
+        msg: "{{ fail_msg_cobbler_password }}"
+
+- name: Assert idrac credentials
+  block:
+    - name: Assert idrac_username and idrac_password
+      assert:
+        that:
+          - idrac_username | length >= min_username_length
+          - idrac_username | length < max_length
+          - '"-" not in idrac_username '
+          - '"\\" not in idrac_username '
+          - '"\"" not in idrac_username '
+          - " \"'\" not in idrac_username "
+          - idrac_password | length > min_username_length | int - 1
+          - idrac_password | length < max_length | int + 1
+          - '"-" not in idrac_password '
+          - '"\\" not in idrac_password '
+          - '"\"" not in idrac_password '
+          - " \"'\" not in idrac_password "
+      no_log: true
+  rescue:
+    - name: idrac credentials validation check
+      fail:
+        msg: "{{ fail_msg_idrac_credentials }}"
+
+- name: Assert username and password for ethernet switches
+  block:
+    - name: Verify ethernet_switch_username and ethernet_switch_password are not empty
+      assert:
+        that:
+          - ethernet_switch_username | length >= min_username_length
+          - ethernet_switch_username | length < max_length
+          - '"-" not in ethernet_switch_username '
+          - '"\\" not in ethernet_switch_username '
+          - '"\"" not in ethernet_switch_username '
+          - " \"'\" not in ethernet_switch_username "
+          - ethernet_switch_password | length > min_username_length | int - 1
+          - ethernet_switch_password | length < max_length | int + 1
+          - '"-" not in ethernet_switch_password '
+          - '"\\" not in ethernet_switch_password '
+          - '"\"" not in ethernet_switch_password '
+          - " \"'\" not in ethernet_switch_password "
+      no_log: true
+  rescue:
+    - name: ethernet switch credentials validation check
+      fail:
+        msg: "{{ fail_msg_ethernet_credentials }}"
   when: ethernet_switch_support
 
-- name: Verify ib_username and ib_password are not empty
-  assert:
-    that:
-      - ib_username | length > 0
-      - ib_password | length > 0
-    success_msg: "{{ ib_params_success_msg }}"
-    fail_msg: "{{ ib_params_empty_fail_msg }}"
+- name: Assert username and password for IB switches
+  block:
+    - name: Assert ib_username and ib_password
+      assert:
+        that:
+          - ib_username | length >= min_username_length
+          - ib_username | length < max_length
+          - '"-" not in ib_username '
+          - '"\\" not in ib_username '
+          - '"\"" not in ib_username '
+          - " \"'\" not in ib_username "
+          - ib_password | length > min_username_length | int - 1
+          - ib_password | length < max_length | int + 1
+          - '"-" not in ib_password '
+          - '"\\" not in ib_password '
+          - '"\"" not in ib_password '
+          - " \"'\" not in ib_password "
+      no_log: true
+  rescue:
+    - name: IB switch credentials validation check
+      fail:
+        msg: "{{ fail_msg_ib_credentials }}"
   when: ib_switch_support
 
-- name: Assert ib_username
-  assert:
-    that:
-      - ib_username | length >= min_username_length
-      - ib_username | length < max_length
-      - '"-" not in ib_username '
-      - '"\\" not in ib_username '
-      - '"\"" not in ib_username '
-      - " \"'\" not in ib_username "
-    success_msg: "{{ success_ib_username }}"
-    fail_msg: "{{ fail_ib_username }}"
-  when: ib_switch_support
-
-- name: Assert ib_password
-  assert:
-    that:
-      - ib_password | length > min_username_length | int - 1
-      - ib_password | length < max_length | int + 1
-      - '"-" not in ib_password '
-      - '"\\" not in ib_password '
-      - '"\"" not in ib_password '
-      - " \"'\" not in ib_password "
-    success_msg: "{{ success_msg_ib_password }}"
-    fail_msg: "{{ fail_msg_ib_password }}"
-  when: ib_switch_support
-
-- name: Verify powervault_me4_username and powervault_me4_password are not empty
-  assert:
-    that:
-      - powervault_me4_username | length > 0
-      - powervault_me4_password | length > 0
-    success_msg: "{{ pv_params_success_msg }}"
-    fail_msg: "{{ pv_params_empty_fail_msg }}"
-  when: powervault_support
-
-- name: Assert powervault_me4_username
-  assert:
-    that:
-      - powervault_me4_username | length >= min_username_length
-      - powervault_me4_username | length < max_length
-      - '"-" not in powervault_me4_username '
-      - '"\\" not in powervault_me4_username '
-      - '"\"" not in powervault_me4_username '
-      - " \"'\" not in powervault_me4_username "
-    success_msg: "{{ success_powervault_me4_username }}"
-    fail_msg: "{{ fail_powervault_me4_username }}"
-  when: powervault_support
-
-- name: Assert powervault_me4_password
-  assert:
-    that:
-      - powervault_me4_password | length > min_length | int - 1
-      - powervault_me4_password | length < max_length | int + 1
-      - '"-" not in powervault_me4_password '
-      - '"," not in powervault_me4_password '
-      - '"." not in powervault_me4_password '
-      - '"<" not in powervault_me4_password '
-      - '"\\" not in powervault_me4_password '
-      - '"\"" not in powervault_me4_password '
-      - " \"'\" not in powervault_me4_password "
-      - powervault_me4_password | regex_search('^(?=.*[a-z]).+$')
-      - powervault_me4_password | regex_search('^(?=.*[A-Z]).+$')
-      - powervault_me4_password | regex_search('^(?=.*\\d).+$')
-      - powervault_me4_password | regex_search('^(?=.*[!#$%&()*+/:;=>?@^_`{} ~]).+$')
-    success_msg: "{{ success_msg_powervault_me4_password }}"
-    fail_msg: "{{ fail_msg_powervault_me4_password }}"
+- name: Assert username and password for powervault me4
+  block:
+    - name: Assert powervault_me4_username and powervault_me4_password
+      assert:
+        that:
+          - powervault_me4_username | length >= min_username_length
+          - powervault_me4_username | length < max_length
+          - '"-" not in powervault_me4_username '
+          - '"\\" not in powervault_me4_username '
+          - '"\"" not in powervault_me4_username '
+          - " \"'\" not in powervault_me4_username "
+          - powervault_me4_password | length > min_length | int - 1
+          - powervault_me4_password | length < max_length | int + 1
+          - '"-" not in powervault_me4_password '
+          - '"," not in powervault_me4_password '
+          - '"." not in powervault_me4_password '
+          - '"<" not in powervault_me4_password '
+          - '"\\" not in powervault_me4_password '
+          - '"\"" not in powervault_me4_password '
+          - " \"'\" not in powervault_me4_password "
+          - powervault_me4_password | regex_search('^(?=.*[a-z]).+$')
+          - powervault_me4_password | regex_search('^(?=.*[A-Z]).+$')
+          - powervault_me4_password | regex_search('^(?=.*\\d).+$')
+          - powervault_me4_password | regex_search('^(?=.*[!#$%&()*+/:;=>?@^_`{} ~]).+$')
+      no_log: true
+  rescue:
+    - name: Powervault me4 credentials validation check
+      fail:
+        msg: "{{ fail_msg_me4_credentials }}"
   when: powervault_support
 
 - name: Create ansible vault key

control_plane/roles/control_plane_common/tasks/verify_omnia_params.yml

@@ -91,6 +91,14 @@
     docker_password: "{{ docker_password }}"
   no_log: True
 
+- name: Validate the domain name
+  assert:
+    that:
+      - domain_name is regex("^(?!-)[A-Za-z0-9-]+([\\-\\.]{1}[a-z0-9]+)*\\.[A-Za-z]{2,6}$")
+    success_msg: "{{ domain_name_success_msg }}"
+    fail_msg: "{{ domain_name_fail_msg }}"
+  when: domain_name | length > 0
+
 - name: Encrypt input config file
   command: >-
     ansible-vault encrypt {{ role_path }}/../../../{{ config_filename }}

control_plane/roles/control_plane_common/vars/main.yml

@@ -59,31 +59,11 @@ vault_file_perm: '0644'
 nic_min_length: 3
 input_config_failure_msg: "Please provide all the required parameters in login_vars.yml"
 fail_msg_provision_password: "Failed. Incorrect provision_password format provided in login_vars.yml"
-success_msg_provision_password: "provision_password validated"
 fail_msg_cobbler_password: "Failed. Incorrect cobbler_password format provided in login_vars.yml file"
-success_msg_cobbler_password: "cobbler_password validated"
-success_idrac_username: "idrac username validated"
-fail_idrac_username: "Failed. Incorrect idrac_username format provided in base_vars.yml"
-success_msg_idrac_password: "idrac password validated"
-fail_msg_idrac_password: "Failed. Incorrect idrac_password format provided in base_vars.yml"
-ethernet_params_success_msg: "Ethernet switch username and password are not blank"
-ethernet_params_empty_fail_msg: "Failed. ethernet switch username or password cannot be empty when ethernet_switch_support is true"
-success_ethernet_switch_username: "Ethernet switch username validated"
-fail_ethernet_switch_username: "Failed. Incorrect ethernet_switch_username format provided in base_vars.yml"
-success_msg_ethernet_switch_password: "Ethernet password validated"
-fail_msg_ethernet_switch_password: "Failed. Incorrect ethernet_switch_password format provided in base_vars.yml"
-ib_params_success_msg: "InfiniBand switch username and password are not blank"
-ib_params_empty_fail_msg: "Failed. InfiniBand username or password cannot be empty when ib_switch_support is true"
-success_ib_username: "ib username validated"
-fail_ib_username: "Failed. Incorrect ib_username format provided in base_vars.yml"
-success_msg_ib_password: "ib password validated"
-fail_msg_ib_password: "Failed. Incorrect ib_password format provided in base_vars.yml"
-pv_params_success_msg: "Powervault switch username and password are not blank"
-pv_params_empty_fail_msg: "Failed. Powervault username or password cannot be empty when powervault_support is true"
-success_powervault_me4_username: "powervault username validated"
-fail_powervault_me4_username: "Failed. Incorrect powervault_username format provided in base_vars.yml"
-success_msg_powervault_me4_password: "powervault password validated"
-fail_msg_powervault_me4_password: "Failed. Incorrect powervault_password format provided in base_vars.yml"
+fail_msg_idrac_credentials: "Failed. Incorrect idrac_username or idrac_password format provided in login_vars.yml"
+fail_msg_ethernet_credentials: "Failed. Incorrect ethernet_switch_username or ethernet_switch_password format provided in login_vars.yml"
+fail_msg_ib_credentials: "Failed. Incorrect ib_username or ib_password format provided in login_vars.yml"
+fail_msg_me4_credentials: "Failed. Incorrect powervault_me4_username or powervault_me4_password format provided in login_vars.yml"
 
 # Usage: verify_omnia_params.yml
 config_filename: "omnia_config.yml"
@@ -152,7 +132,7 @@ idrac_tools_vars_filename: input_params/idrac_tools_vars.yml
 # Usage: nfs_server_setup.yml
 nfs_share_offline_repo: /var/nfs_repo
 nfs_share_awx: /var/nfs_awx
-nfs_share_dir_mode: 0644
+nfs_share_dir_mode: 0777
 exports_file_path: /etc/exports
 nfs_services:
   - mountd

control_plane/roles/control_plane_ib/tasks/main.yml

@@ -15,47 +15,47 @@
 
 # Tasks file for infiniband
 
-- name: Check infiniband_container status on machine
-  include_tasks: check_prerequisites.yml
-
-- name: Include common variables
-  include_vars:  ../../control_plane_common/vars/main.yml
-  when: not infiniband_container_status
-
-- name: Internet validation
-  include_tasks:  ../../control_plane_common/tasks/internet_validation.yml
-  when: not infiniband_container_status
-
-#- name: Fetch base inputs
-#  include_tasks: ../../control_plane_common/tasks/fetch_base_inputs.yml
-#  when: not infiniband_container_status
+- name: Check if IB switch is supported
+  block:
+    - name: Check infiniband_container status on machine
+      include_tasks: check_prerequisites.yml
 
-- name: Include variable file base_vars.yml
-  include_vars: "{{ ib_base_file }}"
+    - name: Include common variables
+      include_vars:  ../../control_plane_common/vars/main.yml
+      when: not infiniband_container_status
 
-- name: Dhcp Configuration
-  import_tasks: dhcp_configure.yml
-  when: (not infiniband_container_image_status) or ( infiniband_backup_map_status == true)
+    - name: Internet validation
+      include_tasks:  ../../control_plane_common/tasks/internet_validation.yml
+      when: not infiniband_container_status
 
-#- name: Mapping file validation
-#  import_tasks: mapping_file.yml
-#  when: (not infiniband_container_image_status) and (mapping_file == true) or ( backup_map_status == true)
+    - name: Include variable file base_vars.yml
+      include_vars: "{{ base_file }}"
 
-- name: infiniband_container image creation
-  import_tasks: infiniband_container_image.yml
-  when: not infiniband_container_status
+    - name: Dhcp Configuration
+      import_tasks: dhcp_configure.yml
+      when: (not infiniband_container_image_status) or ( infiniband_backup_map_status == true)
 
-- name: infiniband_container configuration
-  import_tasks: configure_infiniband_container.yml
+    #- name: Mapping file validation
+    #  import_tasks: mapping_file.yml
+    #  when: (not infiniband_container_image_status) and (mapping_file == true) or ( backup_map_status == true)
 
-- name: infiniband_container container status message
-  block:
-    - debug:
-        msg: "{{ infiniband_message_skipped }}"
-        verbosity: 2
-      when: infiniband_container_status
-    - debug:
-        msg: "{{ infiniband_message_installed }}"
-        verbosity: 2
+    - name: infiniband_container image creation
+      import_tasks: infiniband_container_image.yml
       when: not infiniband_container_status
-  tags: install
+
+    - name: infiniband_container configuration
+      import_tasks: configure_infiniband_container.yml
+
+    - name: infiniband_container container status message
+      block:
+        - debug:
+            msg: "{{ infiniband_message_skipped }}"
+            verbosity: 2
+          when: infiniband_container_status
+        - debug:
+            msg: "{{ infiniband_message_installed }}"
+            verbosity: 2
+          when: not infiniband_container_status
+      tags: install
+
+  when: ib_switch_support

control_plane/roles/powervault_me4/tasks/main.yml

@@ -1,4 +1,4 @@
-# Copyright 2021 Dell Inc. or its subsidiaries. All Rights Reserved.
+#  Copyright 2021 Dell Inc. or its subsidiaries. All Rights Reserved.
 #
 #  Licensed under the Apache License, Version 2.0 (the "License");
 #  you may not use this file except in compliance with the License.
@@ -13,7 +13,33 @@
 #  limitations under the License.
 ---
 
-# Will be updated later in each PR
-- name: Pass
-  debug:
-    msg: "Pass"
+- name: Set powervault credentials
+  set_fact:
+    powervault_me4_username: "{{ lookup('env','ANSIBLE_NET_USERNAME') }}"
+    powervault_me4_password: "{{ lookup('env','ANSIBLE_NET_PASSWORD') }}"
+  no_log: true
+  run_once: true
+
+- name: Include variable file base_vars.yml
+  include_vars: "{{ base_pv_file }}"
+  no_log: true
+
+- name: Include variable file for powervault
+  include_vars: "{{ pv_file }}"
+  no_log: true
+
+- name: Include common variables
+  include_vars: ../../control_plane_common/vars/main.yml
+
+- name: Validation of powervault vars
+  include: pv_validation.yml
+
+- name: Check powervault pre-requisite
+  include_tasks: pv_me4_prereq.yml
+
+- name: Create volume
+  include_tasks: volume.yml
+
+- name: Set snmp parameters
+  include_tasks: set_snmp.yml
+  when: snmp_trap_destination != ""

control_plane/roles/powervault_me4/tasks/map_volume.yml

@@ -0,0 +1,96 @@
+# Copyright 2021 Dell Inc. or its subsidiaries. All Rights Reserved.
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+---
+
+- name: Include powervault_me4_vars.yml
+  include_vars: "{{ playbook_dir }}/control_plane/input_params/powervault_me4_vars.yml"
+
+- name: Include powervault_me4 role variables
+  include_vars: "{{ playbook_dir }}/control_plane/roles/powervault_me4/vars/main.yml"
+
+- name: Check if login_vars.yml file is encrypted
+  command: cat {{ login_pv_file }}
+  changed_when: false
+  no_log: true
+  register: config_content
+  run_once: true
+
+- name: Decrpyt login_vars.yml
+  command: >-
+    ansible-vault decrypt {{ login_pv_file }}
+    --vault-password-file {{ login_pv_vault_file }}
+  changed_when: false
+  run_once: true
+  when: "'$ANSIBLE_VAULT;' in config_content.stdout"
+
+- name: Include variable file login_vars.yml
+  include_vars: "{{ login_pv_file }}"
+  no_log: true
+
+- name: Get auth string
+  shell: echo -n {{ powervault_me4_username }}_{{ powervault_me4_password }}  | sha256sum
+  register: map_auth_string
+  changed_when: false
+  ignore_errors: yes
+  delegate_to: localhost
+  tags: install
+
+- name: Get session key
+  uri:
+    url: https://{{ groups['powervault_me4'][0] }}/api/login/{{ map_auth_string.stdout | replace(" -", "") }}
+    method: GET
+    headers:
+      {'datatype': 'json'}
+    validate_certs: no
+  register: map_session_key
+  delegate_to: localhost
+  tags: install
+
+- name: Map volume
+  uri:
+    url: https://{{ groups['powervault_me4'][0] }}/api/map/volume/{{ powervault_me4_k8s_volume_name }}/access/{{ access }}/ports/{{ item.0 }}/lun/{{ lun1 }}/initiator/{{ hostvars['server_iqdn_id']['server_iqdn'] }}
+    method: GET
+    body_format: json
+    validate_certs: no
+    use_proxy: no
+    headers:
+      {'sessionKey': "{{ map_session_key.json.status[0].response }}", 'datatype':'json'}
+  register: map_vol1
+  with_together:
+    - "{{ up_port }}"
+  delegate_to: localhost
+  tags: install
+
+- name: Map volume
+  uri:
+    url: https://{{ groups['powervault_me4'][0] }}/api/map/volume/{{ powervault_me4_slurm_volume_name }}/access/{{ access }}/ports/{{ item.0 }}/lun/{{ lun2 }}/initiator/{{ hostvars['server_iqdn_id']['server_iqdn']  }}
+    method: GET
+    body_format: json
+    validate_certs: no
+    use_proxy: no
+    headers:
+      {'sessionKey': "{{ map_session_key.json.status[0].response }}", 'datatype':'json'}
+  register: map_vol2
+  with_together:
+    - "{{ up_port }}"
+  delegate_to: localhost
+  tags: install
+
+- name: Encypt login_vars.yml
+  command: >-
+    ansible-vault encrypt {{ login_pv_file }}
+    --vault-password-file {{ login_pv_vault_file }}
+  changed_when: false
+  run_once: true
+  when: "'$ANSIBLE_VAULT;' in config_content.stdout"

control_plane/roles/powervault_me4/tasks/ports.yml

@@ -0,0 +1,98 @@
+# Copyright 2021 Dell Inc. or its subsidiaries. All Rights Reserved.
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+---
+
+- name: Include powervault_me4_vars.yml
+  include_vars: "{{ playbook_dir }}/control_plane/input_params/powervault_me4_vars.yml"
+
+- name: Include powervault_me4 role variables
+  include_vars: "{{ playbook_dir }}/control_plane/roles/powervault_me4/vars/main.yml"
+
+- name: Check if login_vars.yml file is encrypted
+  command: cat {{ login_pv_file }}
+  changed_when: false
+  no_log: true
+  register: config_content
+  run_once: true
+
+- name: Decrpyt login_vars.yml
+  command: >-
+    ansible-vault decrypt {{ login_pv_file }}
+    --vault-password-file {{ login_pv_vault_file }}
+  changed_when: false
+  run_once: true
+  when: "'$ANSIBLE_VAULT;' in config_content.stdout"
+
+- name: Include variable file login_vars.yml
+  include_vars: "{{ login_pv_file }}"
+  no_log: true
+
+- name: Get auth string
+  shell: echo -n {{ powervault_me4_username }}_{{ powervault_me4_password }}  | sha256sum
+  register: port_auth_string
+  changed_when: false
+  ignore_errors: yes
+  tags: install
+
+- name: Get session key
+  uri:
+    url: https://{{ groups['powervault_me4'][0] }}/api/login/{{ port_auth_string.stdout | replace(" -", "") }}
+    method: GET
+    headers:
+      {'datatype': 'json'}
+    validate_certs: no
+  register: port_session_key
+  tags: install
+
+- name: Show ports
+  uri:
+    url: https://{{ groups['powervault_me4'][0] }}/api/show/ports
+    method: GET
+    body_format: json
+    validate_certs: no
+    use_proxy: no
+    headers:
+      {'sessionKey': "{{ port_session_key.json.status[0].response }}", 'datatype':'json'}
+  register: show_ports
+  tags: install
+
+- name: Up ports
+  set_fact:
+    up_port: "{{ up_port + [item.port] }}"
+    target_id: "{{ item.get('target-id') }}"
+  when: item.status == "Up"
+  loop: "{{ show_ports.json.port }}"
+  loop_control:
+    label: "{{ item.port }}"
+
+- name: Set ip
+  set_fact:
+    set_port_ip: "{{ set_port_ip+['{{ port_ip }}{{ temp|int }}'] }}"
+    temp: "{{ temp|int+t|int }}"
+  loop: "{{ up_port }}"
+
+- name: Assign ip to ports
+  uri:
+    url: https://{{ groups['powervault_me4'][0] }}/api/set/host-parameters/gateway/{{ port_gateway }}/ip/{{ item.0 }}/netmask/{{ port_netmask }}/ports/{{ item.1 }}/prompt/yes/noprompt
+    method: GET
+    body_format: json
+    validate_certs: no
+    use_proxy: no
+    headers:
+      {'sessionKey': "{{ port_session_key.json.status[0].response }}", 'datatype':'json'}
+  register: set_ports
+  with_together: 
+    - "{{ set_port_ip }}"
+    - "{{ up_port }}"
+  tags: install

control_plane/roles/powervault_me4/tasks/pv_me4_prereq.yml

@@ -0,0 +1,80 @@
+# Copyright 2021 Dell Inc. or its subsidiaries. All Rights Reserved.
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+---
+
+- name: Ping the powervault device to validate connectivity
+  command: ping -c1 {{ inventory_hostname }}
+  register: validate_login
+  changed_when: false
+  ignore_errors: yes
+  tags: install
+
+- name: Get auth string
+  shell: echo -n {{ powervault_me4_username }}_{{ powervault_me4_password }} | sha256sum
+  register: auth_string
+  changed_when: false
+  ignore_errors: yes
+  tags: install
+
+- name: Get session key
+  uri:
+    url: https://{{ inventory_hostname }}/api/login/{{ auth_string.stdout | replace(" -", "") }}
+    method: GET
+    headers:
+      {'datatype': 'json'}
+    validate_certs: no
+  register: session_key
+  tags: install
+
+- name: Set powervault ip
+  add_host:
+    name: "pv_ip"
+    powervault_ip: "{{ inventory_hostname }}"
+  tags: install
+
+- name: Execute show system command
+  uri:
+    url: https://{{ inventory_hostname }}/api/show/system
+    method: GET
+    body_format: json
+    validate_certs: no
+    use_proxy: no
+    headers:
+      {'sessionKey': "{{ session_key.json.status[0].response }}", 'datatype':'json'}
+  register: system_info
+  tags: install
+
+- name: Get the product id
+  set_fact:
+    pv_id: system_info.json.system[0]['product-id']
+
+- name: Verify the product id and model no. of device
+  fail:
+    msg: "{{ fail_pv_support }}"
+  when:
+    - scsi_product_id in system_info.json.system[0]['scsi-product-id']
+    - pv_id  == "ME4084" or pv_id == "ME4024"  or pv_id == "ME4012"
+
+- name: Set system name
+  uri:
+    url: https://{{ inventory_hostname }}/api/set/system/name/{{ powervault_me4_system_name }}
+    method: GET
+    body_format: json
+    validate_certs: no
+    use_proxy: no
+    headers:
+      {'sessionKey': "{{ session_key.json.status[0].response }}", 'datatype':'json'}
+  register: system_name
+  when: powervault_me4_system_name != ""
+  tags: install

control_plane/roles/powervault_me4/tasks/pv_validation.yml

@@ -0,0 +1,136 @@
+# Copyright 2021 Dell Inc. or its subsidiaries. All Rights Reserved.
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+---
+
+- name: Get auth string
+  shell: echo -n {{ powervault_me4_username }}_{{ powervault_me4_password }} | sha256sum
+  register: val_auth_string
+  changed_when: false
+  ignore_errors: yes
+  tags: install
+
+- name: Get session key
+  uri:
+    url: https://{{ inventory_hostname }}/api/login/{{ val_auth_string.stdout | replace(" -", "") }}
+    method: GET
+    headers:
+      {'datatype': 'json'}
+    validate_certs: no
+  register: val_session_key
+  tags: install
+
+- name: Check if system name has space
+  shell: echo {{ powervault_me4_system_name }} | grep '\s' -c
+  register: space_count
+  ignore_errors: true
+  tags: install
+
+- name: Fail if system name has space
+  assert:
+    that:
+      - space_count.stdout|int == 0
+      - powervault_me4_system_name | length < 30
+    msg: "{{ system_name_wrong }}"
+
+- name: Check if volume name has space
+  shell: echo {{ powervault_me4_k8s_volume_name }} | grep '\s' -c
+  register: vol_count1
+  ignore_errors: true
+  tags: install
+
+- name: Fail if volume name has space
+  assert:
+    that:
+      - vol_count1.stdout == "0"
+      - powervault_me4_k8s_volume_name | length < 30
+    msg: "{{ system_name_wrong }}"
+
+- name: Check if volume name has space
+  shell: echo {{ powervault_me4_slurm_volume_name }} | grep '\s' -c
+  register: vol_count2
+  ignore_errors: true
+  tags: install
+
+- name: Assert if volume name has space
+  assert:
+    that:
+      - vol_count2.stdout == "0"
+      - powervault_me4_slurm_volume_name | length < 30
+    msg: "{{ system_name_wrong }}"
+
+- name: Check if disk name has space
+  shell: echo {{ powervault_me4_disk_group_name }} | grep '\s' -c
+  register: disk_count
+  when: powervault_me4_disk_group_name | length > 1
+  ignore_errors: true
+  tags: install
+
+- name: Assert if disk name has space
+  assert:
+    that:
+      - disk_count.stdout == "0"
+      - powervault_me4_disk_group_name | length < 30
+    msg: "{{ system_name_wrong }}" 
+
+- name: Assert snmp notification level
+  assert:
+    that:
+      - powervault_me4_snmp_notify_level | length >1
+      - powervault_me4_snmp_notify_level == "crit" or powervault_me4_snmp_notify_level == "error" or powervault_me4_snmp_notify_level == "warn" or powervault_me4_snmp_notify_level == "resolved" or powervault_me4_snmp_notify_level == "info" or powervault_me4_snmp_notify_level == "none"
+    fail_msg: "{{ snmp_wrong_value }}"
+    success_msg: "{{ snmp_success }}" 
+
+- name: Assert RAID value
+  assert:
+    that: >
+      powervault_me4_raid_levels| lower == "r1" or powervault_me4_raid_levels| lower == "raid1" or
+      powervault_me4_raid_levels| lower == "r5" or powervault_me4_raid_levels| lower == "raid5" or
+      powervault_me4_raid_levels| lower == "r6" or powervault_me4_raid_levels| lower == "raid6" or
+      powervault_me4_raid_levels| lower == "r10" or powervault_me4_raid_levels| lower == "raid10" or
+      powervault_me4_raid_levels| lower == "adapt"
+    msg: "{{ raid_level_wrong }}"
+
+- name: Assert disk range
+  assert:
+    that:
+      - powervault_me4_disk_range | length >1
+    fail_msg: "{{ wrong_disk_range }}"
+    success_msg: "{{ correct_disk_range }}"
+
+- name: Check pool value
+  assert: 
+    that: 
+      - powervault_me4_pool == "a" or powervault_me4_pool == "A" or powervault_me4_pool == "b" or powervault_me4_pool == "B"
+    msg: "{{ wrong_pool }}"
+
+- name: Check parition percentage
+  assert:
+    that:
+      - powervault_me4_disk_partition_size|int
+      - powervault_me4_disk_partition_size|int < 99
+      - powervault_me4_disk_partition_size|int > 5
+    msg: "{{ wrong_partition }}"
+
+- name: Check the volume size
+  assert:
+    that: >
+      'GB' in powervault_me4_volume_size or 'TB' in powervault_me4_volume_size or 
+      'MB' in powervault_me4_volume_size or 
+      'B' in powervault_me4_volume_size 
+    msg: "{{ wrong_vol_size  }}"
+
+- name: Assert the nic provided
+  assert:
+    that:
+      - powervault_me4_server_nic | length > 2

control_plane/roles/powervault_me4/tasks/set_snmp.yml

@@ -0,0 +1,43 @@
+#  Copyright 2021 Dell Inc. or its subsidiaries. All Rights Reserved.
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+---
+
+- name: Get auth string
+  shell: echo -n {{ powervault_me4_username }}_{{ powervault_me4_password }}  | sha256sum
+  register: snmp_auth_string
+  changed_when: false
+  ignore_errors: yes
+  tags: install
+
+- name: Get session key
+  uri:
+    url: https://{{ inventory_hostname }}/api/login/{{ snmp_auth_string.stdout | replace(" -", "") }}
+    method: GET
+    headers:
+      {'datatype': 'json'}
+    validate_certs: no
+  register: snmp_session_key
+  tags: install
+
+- name: Set snmp parameters
+  uri:
+    url: https://{{ inventory_hostname }}/api/set/snmp-parameters/enable/{{ powervault_me4_snmp_notify_level }}/add-trap-host/{{ snmp_trap_destination }}/read-community/{{ snmp_community_name }}
+    method: GET
+    body_format: json
+    validate_certs: no
+    use_proxy: no
+    headers:
+      {'sessionKey': "{{ snmp_session_key.json.status[0].response }}", 'datatype':'json'}
+  register: snmp
+  tags: install

control_plane/roles/powervault_me4/tasks/volume.yml

@@ -0,0 +1,82 @@
+#  Copyright 2021 Dell Inc. or its subsidiaries. All Rights Reserved.
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+---
+
+- name: Get auth string
+  shell: echo -n {{ powervault_me4_username }}_{{ powervault_me4_password }}  | sha256sum
+  register: vol_auth_string
+  changed_when: false
+  ignore_errors: yes
+  tags: install
+
+- name: Get session key
+  uri:
+    url: https://{{ inventory_hostname }}/api/login/{{ vol_auth_string.stdout | replace(" -", "") }}
+    method: GET
+    headers:
+      {'datatype': 'json'}
+    validate_certs: no
+  register: vol_session_key
+  tags: install
+
+- name: Add disk group
+  uri:
+    url: https://{{ inventory_hostname }}/api/add/disk-group/type/{{ type }}/disks/{{ powervault_me4_disk_range }}/level/{{ powervault_me4_raid_levels }}/pool/{{ powervault_me4_pool }}/{{ powervault_me4_disk_group_name }}
+    method: GET
+    body_format: json
+    validate_certs: no
+    use_proxy: no
+    headers:
+      {'sessionKey': "{{ vol_session_key.json.status[0].response }}", 'datatype':'json'}
+  register: pv_disk
+  tags: install
+
+- name: Assert if disk group created or not
+  fail:
+    msg: "{{ pv_disk.json.status[0].response }}"
+  when:  pv_disk.json.status[0] ['response-type'] == "Error"
+
+- name: Create volume1
+  uri:
+    url: https://{{ inventory_hostname }}/api/create/volume/size/{{ powervault_me4_volume_size }}/pool/{{ powervault_me4_pool }}/{{ powervault_me4_k8s_volume_name }}
+    method: GET
+    body_format: json
+    validate_certs: no
+    use_proxy: no
+    headers:
+      {'sessionKey': "{{ vol_session_key.json.status[0].response }}", 'datatype':'json'}
+  register: pv_vol1
+  tags: install
+
+- name: Create volume2
+  uri:
+    url: https://{{ inventory_hostname }}/api/create/volume/size/{{ powervault_me4_volume_size }}/pool/{{ powervault_me4_pool }}/{{ powervault_me4_slurm_volume_name }}
+    method: GET
+    body_format: json
+    validate_certs: no
+    use_proxy: no
+    headers:
+      {'sessionKey': "{{ vol_session_key.json.status[0].response }}", 'datatype':'json'}
+  register: pv_vol2
+  tags: install
+
+- name: Assert if k8s_volume created correctly
+  fail:
+    msg: "{{ pv_vol1.json.status[0].response }}"
+  when: pv_vol1.json.status[0]['response-type'] == "Error"
+
+- name: Assert if slurm_volume created correctly
+  fail:
+    msg: "{{ pv_vol2.json.status[0].response }}"
+  when: pv_vol2.json.status[0]['response-type'] == "Error"

control_plane/roles/powervault_me4/vars/main.yml

@@ -0,0 +1,54 @@
+# Copyright 2021 Dell Inc. or its subsidiaries. All Rights Reserved.
+#
+#  Licensed under the Apache License, Version 2.0 (the "License");
+#  you may not use this file except in compliance with the License.
+#  You may obtain a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+#  Unless required by applicable law or agreed to in writing, software
+#  distributed under the License is distributed on an "AS IS" BASIS,
+#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+#  See the License for the specific language governing permissions and
+#  limitations under the License.
+---
+
+# Usage: pv_validation.yml
+system_name_wrong: "Failed. Given name might be empty or it  containes space or is more than 30 in length"
+snmp_wrong_value: "Failed. Snmp value wrong"
+snmp_success: "Success: Snmp value correct"
+raid_level_wrong: "Failed: wrong raid level entered"
+wrong_disk_range: "Failed: disk range should not be empty"
+correct_disk_range: "Succes: Disk range is correct"
+wrong_pool: "Failed: Given pool value is wrong"
+wrong_partition: "Failed: Given partition is wrong"
+wrong_vol_size: "Failed: Given volume size is wrong"
+
+
+# Usage: pv_me4_prereq.yml
+scsi_product_id: ME4
+fail_pv_support: "Failed. Powervault not supported"
+success_pv_support: "Success. Powervault supported"
+
+# Usage: main.yml
+pv_file: "{{ role_path }}/../../input_params/powervault_me4_vars.yml"
+base_pv_file: "{{ role_path }}/../../input_params/base_vars.yml"
+
+# Usage: volume.yml
+lun1: 0
+lun2: 1
+type: virtual
+
+# Usage: ports.yml
+port_ip: 192.168.25.
+port_netmask: 255.255.255.0
+port_gateway: 192.168.25.1
+temp: 0
+t: 5
+set_port_ip: []
+up_port: []
+
+# Usage: map_volume.yml
+access: rw
+login_pv_file: "{{ playbook_dir }}/control_plane/input_params/login_vars.yml"
+login_pv_vault_file: "{{ playbook_dir }}/control_plane/input_params/.login_vault_key"