X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=NodeUpdate.py;h=6696bfb684a3883d2bcbc8ca71e7311b46d08f90;hb=37c2bd1ad7db31d123a5057d9a78076ad2188214;hp=614c6206adaf5f3131e48f99ae6e108d0bd5ec01;hpb=86fd7f3de56ef3496d94cc13db7e4672e340f925;p=nodeupdate.git diff --git a/NodeUpdate.py b/NodeUpdate.py index 614c620..6696bfb 100644 --- a/NodeUpdate.py +++ b/NodeUpdate.py @@ -55,15 +55,18 @@ import string NODEUPDATE_PID_FILE= "/var/run/NodeUpdate.pid" # variables for cron file creation -TARGET_SCRIPT = '/usr/local/planetlab/bin/NodeUpdate.py' +TARGET_SCRIPT = '(echo && date && echo && /usr/bin/NodeUpdate.py start) >>/var/log/NodeUpdate.log 2>&1' TARGET_DESC = 'Update node RPMs periodically' TARGET_USER = 'root' +TARGET_SHELL = '/bin/bash' CRON_FILE = '/etc/cron.d/NodeUpdate.cron' YUM_PATH = "/usr/bin/yum" RPM_PATH = "/bin/rpm" +RPM_GPG_PATH = "/etc/pki/rpm-gpg" + # location of file containing http/https proxy info, if needed PROXY_FILE = '/etc/planetlab/http_proxy' @@ -98,16 +101,21 @@ def Error(Str): print Str -# create an entry in /etc/cron.d so we run periodically -# we will be run once an hour at a 0-59 random offset +# create an entry in /etc/cron.d so we run periodically. +# we will be run once a day at a 0-59 minute random offset +# into a 0-23 random hour def UpdateCronFile(): try: + randomMinute= Random().randrange( 0, 59, 1 ); + randomHour= Random().randrange( 0, 23, 1 ); f = open( CRON_FILE, 'w' ); f.write( "# %s\n" % (TARGET_DESC) ); f.write( "MAILTO=%s\n" % (TARGET_USER) ); - f.write( "%s * * * * %s %s\n\n" % (randomMinute, TARGET_USER, TARGET_SCRIPT) ); + f.write( "SHELL=%s\n" % (TARGET_SHELL) ); + f.write( "%s %s * * * %s %s\n\n" % + (randomMinute, randomHour, TARGET_USER, TARGET_SCRIPT) ); f.close() print( "Created new cron.d entry." ) @@ -148,6 +156,14 @@ class NodeUpdate: return 0 + def InstallKeys( self ): + Message( "\nRemoving any existing GPG signing keys from the RPM database" ) + os.system( "%s --allmatches -e gpg-pubkey" % RPM_PATH ) + + Message( "\nInstalling all GPG signing keys in %s" % RPM_GPG_PATH ) + os.system( "%s --import %s/*" % (RPM_PATH, RPM_GPG_PATH) ) + + def ClearRebootFlag( self ): os.system( "/bin/rm -rf %s" % REBOOT_FLAG ) @@ -159,14 +175,22 @@ class NodeUpdate: if self.doReboot == 0: Message( "\nIgnoring any reboot flags set by RPMs" ); + + Message( "\nChecking if yum supports SSL certificate checks" ) + if os.system( "%s --help | grep -q sslcertdir" % YUM_PATH ) == 0: + Message( "Yes, using --sslcertdir option" ) + sslcertdir = "--sslcertdir=" + SSL_CERT_DIR + else: + Message( "No, not using --sslcertdir option" ) + sslcertdir = "" Message( "\nUpdating PlanetLab group" ) - os.system( "%s --sslcertdir=%s -y groupupdate \"PlanetLab\"" % - (YUM_PATH,SSL_CERT_DIR) ) + os.system( "%s %s -y groupupdate \"PlanetLab\"" % + (YUM_PATH, sslcertdir) ) Message( "\nUpdating rest of system" ) - os.system( "%s --sslcertdir=%s -y update" % - (YUM_PATH,SSL_CERT_DIR) ) + os.system( "%s %s -y update" % + (YUM_PATH, sslcertdir) ) Message( "\nChecking for extra groups to update" ) if os.access(EXTRA_GROUPS_FILE, os.R_OK) and \ @@ -178,8 +202,8 @@ class NodeUpdate: else: for group in string.split(extra_groups_contents,"\n"): Message( "\nUpdating %s group" % group ) - os.system( "%s --sslcertdir=%s -y groupupdate \"%s\"" % - (YUM_PATH,SSL_CERT_DIR,group) ) + os.system( "%s %s -y groupupdate \"%s\"" % + (YUM_PATH, sslcertdir, group) ) else: Message( "No extra groups file found" ) @@ -272,6 +296,7 @@ if __name__ == "__main__": Error( "Unable to initialize." ) else: nodeupdate.RemoveRPMS() + nodeupdate.InstallKeys() nodeupdate.CheckForUpdates() Message( "\nUpdate complete." )