Gitiles
Code Review Sign In
gerrit.cesnet.cz / github / openstack-infra / zuul / 8cc4618084ab96cc1bccb9ea932e54edfd7e79ce^1..8cc4618084ab96cc1bccb9ea932e54edfd7e79ce / .
commit8cc4618084ab96cc1bccb9ea932e54edfd7e79ce[log] [tgz]
authorJenkins <jenkins@review.openstack.org>Fri Jun 17 19:25:12 2016 +0000
committerGerrit Code Review <review@openstack.org>Fri Jun 17 19:25:12 2016 +0000
tree32e634d73a365cb1fa2b8d03396a981c1523750a
parent19dd834814593e5a76c077b6b72f90696e37eca5 [diff]
parent8c2bd786d98ab25b8321e4620e9f38dad4afae0b [diff]
Merge "Enabled host_key_checking"
diff --git a/zuul/launcher/ansiblelaunchserver.py b/zuul/launcher/ansiblelaunchserver.py
index c1cf16d..32fc832 100644
--- a/zuul/launcher/ansiblelaunchserver.py
+++ b/zuul/launcher/ansiblelaunchserver.py

@@ -105,6 +105,7 @@
         self.root = tempfile.mkdtemp()
         self.ansible_root = os.path.join(self.root, 'ansible')
         os.makedirs(self.ansible_root)
+        self.known_hosts = os.path.join(self.ansible_root, 'known_hosts')
         self.inventory = os.path.join(self.ansible_root, 'inventory')
         self.playbook = os.path.join(self.ansible_root, 'playbook')
         self.post_playbook = os.path.join(self.ansible_root, 'post_playbook')
@@ -1098,9 +1099,16 @@
             parameters[timeout_var] = str(timeout * 1000)
 
         with open(jobdir.playbook, 'w') as playbook:
+            pre_tasks = []
             tasks = []
             main_block = []
             error_block = []
+
+            shellargs = "ssh-keyscan %s > %s" % (
+                self.host, jobdir.known_hosts)
+            pre_tasks.append(dict(shell=shellargs,
+                             delegate_to='127.0.0.1'))
+
             tasks.append(dict(block=main_block,
                               rescue=error_block))
 
@@ -1134,7 +1142,7 @@
             error_block.append(dict(fail=dict(msg='FAILURE')))
 
             play = dict(hosts='node', name='Job body',
-                        tasks=tasks)
+                        pre_tasks=pre_tasks, tasks=tasks)
             playbook.write(yaml.safe_dump([play], default_flow_style=False))
 
         early_publishers, late_publishers = self._transformPublishers(jjb_job)
@@ -1167,7 +1175,6 @@
         with open(jobdir.config, 'w') as config:
             config.write('[defaults]\n')
             config.write('hostfile = %s\n' % jobdir.inventory)
-            config.write('host_key_checking = False\n')
             config.write('private_key_file = %s\n' % self.private_key_file)
             config.write('retry_files_enabled = False\n')
             config.write('log_path = %s\n' % os.path.join(
@@ -1182,7 +1189,12 @@
             library_path = zuul.ansible.library.__file__
             library_path = os.path.abspath(library_path)
             library_path = os.path.dirname(library_path)
-            config.write('library = %s\n' % library_path)
+            config.write('library = %s\n\n' % library_path)
+
+            config.write('[ssh_connection]\n')
+            ssh_args = "-o ControlMaster=auto -o ControlPersist=60s " \
+                "-o UserKnownHostsFile=%s" % jobdir.known_hosts
+            config.write('ssh_args = %s\n' % ssh_args)
 
         return timeout