f4eae5dabd
sonic-cfggen call is slow and this is taking place in the SONiC boot up process. The change uses templates to assemble all required vars into single template file. With this change, telemetry now calls once into sonic-cfggen. signed-off-by: Tamer Ahmed <tamer.ahmed@microsoft.com>
66 lines
1.9 KiB
Bash
Executable File
66 lines
1.9 KiB
Bash
Executable File
#!/usr/bin/env bash
|
|
|
|
# Try to read telemetry and certs config from ConfigDB.
|
|
# Use default value if no valid config exists
|
|
TELEMETRY_VARS=$(sonic-cfggen -d -t telemetry_vars.j2)
|
|
TELEMETRY_VARS=${TELEMETRY_VARS//[\']/\"}
|
|
X509=$(echo $TELEMETRY_VARS | jq -r '.x509')
|
|
GNMI=$(echo $TELEMETRY_VARS | jq -r '.gnmi')
|
|
CERTS=$(echo $TELEMETRY_VARS | jq -r '.certs')
|
|
|
|
TELEMETRY_ARGS=" -logtostderr"
|
|
export CVL_SCHEMA_PATH=/usr/sbin/schema
|
|
|
|
if [ -n "$CERTS" ]; then
|
|
SERVER_CRT=$(echo $CERTS | jq -r '.server_crt')
|
|
SERVER_KEY=$(echo $CERTS | jq -r '.server_key')
|
|
if [ -z $SERVER_CRT ] || [ -z $SERVER_KEY ]; then
|
|
TELEMETRY_ARGS+=" --insecure"
|
|
else
|
|
TELEMETRY_ARGS+=" --server_crt $SERVER_CRT --server_key $SERVER_KEY "
|
|
fi
|
|
|
|
CA_CRT=$(echo $CERTS | jq -r '.ca_crt')
|
|
if [ ! -z $CA_CRT ]; then
|
|
TELEMETRY_ARGS+=" --ca_crt $CA_CRT"
|
|
fi
|
|
elif [ -n "$X509" ]; then
|
|
SERVER_CRT=$(echo $X509 | jq -r '.server_crt')
|
|
SERVER_KEY=$(echo $X509 | jq -r '.server_key')
|
|
if [ -z $SERVER_CRT ] || [ -z $SERVER_KEY ]; then
|
|
TELEMETRY_ARGS+=" --insecure"
|
|
else
|
|
TELEMETRY_ARGS+=" --server_crt $SERVER_CRT --server_key $SERVER_KEY "
|
|
fi
|
|
|
|
CA_CRT=$(echo $X509 | jq -r '.ca_crt')
|
|
if [ ! -z $CA_CRT ]; then
|
|
TELEMETRY_ARGS+=" --ca_crt $CA_CRT"
|
|
fi
|
|
else
|
|
TELEMETRY_ARGS+=" --insecure"
|
|
fi
|
|
|
|
# If no configuration entry exists for TELEMETRY, create one default port
|
|
if [ -z "$GNMI" ]; then
|
|
PORT=8080
|
|
sonic-db-cli CONFIG_DB hset "TELEMETRY|gnmi" port $PORT
|
|
else
|
|
PORT=$(echo $GNMI | jq -r '.port')
|
|
fi
|
|
TELEMETRY_ARGS+=" --port $PORT"
|
|
|
|
CLIENT_AUTH=$(echo $GNMI | jq -r '.client_auth')
|
|
if [ -z $CLIENT_AUTH ] || [ $CLIENT_AUTH == "false" ]; then
|
|
TELEMETRY_ARGS+=" --allow_no_client_auth"
|
|
fi
|
|
|
|
LOG_LEVEL=$(echo $GNMI | jq -r '.log_level')
|
|
if [ ! -z $LOG_LEVEL ]; then
|
|
TELEMETRY_ARGS+=" -v=$LOG_LEVEL"
|
|
else
|
|
TELEMETRY_ARGS+=" -v=2"
|
|
fi
|
|
|
|
exec /usr/sbin/telemetry ${TELEMETRY_ARGS}
|