3 # sfa Wraps PLCAPI into the SFA compliant API
5 # hopefully right after plc
6 # chkconfig: 2345 61 39
8 # description: Wraps PLCAPI into the SFA compliant API
11 # source function library
12 . /etc/init.d/functions
15 PGDATA=/var/lib/pgsql/data
16 postgresql_conf=$PGDATA/postgresql.conf
17 pghba_conf=$PGDATA/pg_hba.conf
18 postgresql_sysconfig=/etc/sysconfig/pgsql
20 # SFA consolidated (merged) config file
21 sfa_whole_config=/etc/sfa/sfa_config
22 # SFA default config (read-only template)
23 sfa_default_config=/etc/sfa/default_config.xml
24 # SFA local (site-dependent) file
25 sfa_local_config=/etc/sfa/configs/site
27 # Source sfa shell config if present
28 [ -f /etc/sfa/sfa_config.sh ] && . /etc/sfa/sfa_config.sh
30 # Export so that we do not have to specify -p to psql invocations
31 export PGPORT=$SFA_DB_PORT
34 # Total number of errors
37 # Count the exit status of the last command
40 ERRORS=$(($ERRORS+$?))
43 # can't trust the return of service postgresql start / nor status
44 function postgresql_check () {
46 # wait until postmaster is up and running - or 10s max
47 if status postmaster >& /dev/null && [ -f /var/lock/subsys/postgresql ] ; then
48 # The only way we can be sure is if we can access it
49 for i in $(seq 1 10) ; do
50 # Must do this as the postgres user initially (before we
51 # fix pg_hba.conf to passwordless localhost access).
52 su -c 'psql -U postgres -c "" template1' postgres && return 0
60 # use a single date of this script invocation for the dump_*_db functions.
61 DATE=$(date +"%Y-%m-%d-%H-%M-%S")
63 # Dumps the database - optional argument to specify filename suffix
64 function dump_sfa_db() {
65 if [ -n "$1" ] ; then suffix="-$1" ; else suffix="" ; fi
66 mkdir -p /usr/share/sfa/backups
67 dumpfile=/usr/share/sfa/backups/$(date +"${SFA_DB_NAME}.${DATE}${suffix}.sql")
68 pg_dump -U $SFA_DB_USER $SFA_DB_NAME > $dumpfile
69 echo "Saved sfa database in $dumpfile"
73 # Regenerate configuration files - almost verbatim from plc.init
77 # Regenerate the main configuration file from default values
78 # overlaid with site-specific and current values.
79 # Thierry -- 2007-07-05 : values in plc_config.xml are *not* taken into account here
80 files=( $sfa_default_config $sfa_local_config )
81 for file in "${files[@]}" ; do
82 if [ -n "$force" -o $file -nt $sfa_whole_config ] ; then
83 tmp=$(mktemp /tmp/sfa_config.XXXXXX)
84 sfa-config --python "${files[@]}" >$tmp
85 if [ $? -eq 0 ] ; then
86 mv $tmp $sfa_whole_config
87 chmod 444 $sfa_whole_config
89 echo "SFA: Warning: Invalid configuration file(s) detected"
96 # Convert configuration to various formats
97 if [ -n "$force" -o $sfa_local_config -nt $sfa_whole_config ] ; then
98 sfa-config --python $sfa_default_config $sfa_local_config > $sfa_whole_config
100 if [ -n "$force" -o $sfa_whole_config -nt /etc/sfa/sfa_config.sh ] ; then
101 sfa-config --shell $sfa_default_config $sfa_local_config > /etc/sfa/sfa_config.sh
103 # if [ -n "$force" -o $sfa_whole_config -nt /etc/sfa/php/sfa_config.php ] ; then
104 # mkdir -p /etc/sfa/php
105 # plc-config --php $sfa_whole_config >/etc/sfa/php/sfa_config.php
108 # [re]generate the sfa_component_config
109 # this is a server-side thing but produces a file that somehow needs to be pushed
110 # on the planetlab nodes; in the case where sfa and myplc run on different boxes
111 # (or there is no myplc at all) this should be turned off
112 # as the component manager is not operational yet we skip this for now
113 #gen-sfa-cm-config.py
115 # reload the shell version
116 [ -f /etc/sfa/sfa_config.sh ] && . /etc/sfa/sfa_config.sh
120 ### initialize DB (don't chkconfig postgresql on)
121 function db_start () {
124 [ "$SFA_DB_ENABLED" == 1 -o "$SFA_DB_ENABLED" == true ] || return
126 if ! rpm -q myplc >& /dev/null; then
128 ######## standalone deployment - no colocated myplc
131 # Set data directory and redirect startup output to /var/log/pgsql
132 mkdir -p $(dirname $postgresql_sysconfig)
133 # remove previous definitions
134 touch $postgresql_sysconfig
135 tmp=${postgresql_sysconfig}.new
136 ( egrep -v '^(PGDATA=|PGLOG=|PGPORT=)' $postgresql_sysconfig
137 echo "PGDATA=$PGDATA"
138 echo "PGLOG=/var/log/pgsql"
139 echo "PGPORT=$SFA_DB_PORT"
140 ) >> $tmp ; mv -f $tmp $postgresql_sysconfig
142 ######## /var/lib/pgsql/data
143 # Fix ownership (rpm installation may have changed it)
144 chown -R -H postgres:postgres $(dirname $PGDATA)
146 # PostgreSQL must be started at least once to bootstrap
147 # /var/lib/pgsql/data
148 if [ ! -f $postgresql_conf ] ; then
149 service postgresql initdb &> /dev/null || :
153 ######## /var/lib/pgsql/data/postgresql.conf
155 foo=$(python -c "import socket; print socket.gethostbyname(\"$SFA_REGISTRY_HOST\")") && registry_ip="$foo"
156 # Enable DB server. drop Postgresql<=7.x
157 # PostgreSQL >=8.0 defines listen_addresses
158 # listen on a specific IP + localhost, more robust when run within a vserver
159 sed -i -e '/^listen_addresses/d' $postgresql_conf
160 if [ -z "$registry_ip" ] ; then
161 echo "listen_addresses = 'localhost'" >> $postgresql_conf
163 echo "listen_addresses = '${registry_ip},localhost'" >> $postgresql_conf
165 # tweak timezone to be 'UTC'
166 sed -i -e '/^timezone=/d' $postgresql_conf
167 echo "timezone='UTC'" >> $postgresql_conf
169 ######## /var/lib/pgsql/data/pg_hba.conf
170 # Disable access to all DBs from all hosts
171 sed -i -e '/^\(host\|local\)/d' $pghba_conf
173 # Enable passwordless localhost access
174 echo "local all all trust" >>$pghba_conf
177 echo "host $SFA_DB_NAME $SFA_DB_USER 127.0.0.1/32 password"
178 [ -n "$registry_ip" ] && echo "host $SFA_DB_NAME $SFA_DB_USER ${registry_ip}/32 password"
181 if [ "$SFA_GENERIC_FLAVOUR" == "openstack" ] ; then
182 [ -n "$registry_ip" ] && echo "host nova nova ${registry_ip}/32 password" >> $pghba_conf
185 # Fix ownership (sed -i changes it)
186 chown postgres:postgres $postgresql_conf $pghba_conf
188 ######## compute a password if needed
189 if [ -z "$SFA_DB_PASSWORD" ] ; then
190 SFA_DB_PASSWORD=$(uuidgen)
191 sfa-config --category=sfa_db --variable=password --value="$SFA_DB_PASSWORD" --save=$sfa_local_config $sfa_local_config >& /dev/null
197 ######## we are colocated with a myplc
198 # no need to worry about the pgsql setup (see /etc/plc.d/postgresql)
199 # myplc enforces the password for its user
200 PLC_DB_USER=$(plc-config --category=plc_db --variable=user)
201 PLC_DB_PASSWORD=$(plc-config --category=plc_db --variable=password)
202 # store this as the SFA user/password
203 sfa-config --category=sfa_db --variable=user --value=$PLC_DB_USER --save=$sfa_local_config $sfa_local_config >& /dev/null
204 sfa-config --category=sfa_db --variable=password --value=$PLC_DB_PASSWORD --save=$sfa_local_config $sfa_local_config >& /dev/null
208 ######## Start up the server
209 # not too nice, but.. when co-located with myplc we'll let it start/stop postgresql
210 if ! rpm -q myplc >& /dev/null ; then
212 service postgresql start >& /dev/null
217 ######## make sure we have the user and db created
219 if ! psql -U $SFA_DB_USER -c "" template1 >/dev/null 2>&1 ; then
220 psql -U postgres -c "CREATE USER $SFA_DB_USER PASSWORD '$SFA_DB_PASSWORD'" template1 >& /dev/null
222 psql -U postgres -c "ALTER USER $SFA_DB_USER WITH PASSWORD '$SFA_DB_PASSWORD'" template1 >& /dev/null
227 if ! psql -U $SFA_DB_USER -c "" $SFA_DB_NAME >/dev/null 2>&1 ; then
228 createdb -U postgres --template=template0 --encoding=UNICODE --owner=$SFA_DB_USER $SFA_DB_NAME
233 MESSAGE=$"SFA: Checking for PostgreSQL server"
235 [ "$ERRORS" == 0 ] && success "$MESSAGE" || failure "$MESSAGE" ; echo
239 function db_stop () {
242 [ "$SFA_DB_ENABLED" == 1 ] || return
244 # not too nice, but.. when co-located with myplc we'll let it start/stop postgresql
245 if ! rpm -q myplc >& /dev/null ; then
246 service postgresql stop >& /dev/null
248 MESSAGE=$"Stopping PostgreSQL server"
250 [ "$ERRORS" == 0 ] && success "$MESSAGE" || failure "$MESSAGE" ; echo
259 # migrations are now handled in the code by sfa.storage.dbschema
262 action $"SFA: installing peer certs" daemon /usr/bin/sfa-start.py -t -d $OPTIONS
264 [ "$SFA_REGISTRY_ENABLED" == 1 ] && action $"SFA: Registry" daemon /usr/bin/sfa-start.py -r -d $OPTIONS
266 [ "$SFA_AGGREGATE_ENABLED" == 1 ] && action $"SFA: Aggregate" daemon /usr/bin/sfa-start.py -a -d $OPTIONS
268 [ "$SFA_SM_ENABLED" == 1 ] && action "SFA: SliceMgr" daemon /usr/bin/sfa-start.py -s -d $OPTIONS
270 [ "$SFA_FLASHPOLICY_ENABLED" == 1 ] && \
271 action "Flash Policy Server" daemon /usr/bin/sfa_flashpolicy.py --file="$SFA_FLASHPOLICY_CONFIG_FILE" --port=$SFA_FLASHPOLICY_PORT -d
273 touch /var/lock/subsys/sfa-start.py
278 action $"Shutting down SFA" killproc sfa-start.py
282 rm -f /var/lock/subsys/sfa-start.py
289 reload) reload force ;;
290 restart) stop; start ;;
292 if [ -f /var/lock/subsys/sfa-start.py ]; then
305 echo $"Usage: $0 {start|stop|reload|restart|condrestart|status|dbdump}"