X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=init.d%2Fsfa;h=08e6893e8527f8a53423ffe7bd76b6d2308bd90b;hb=1cc8e9613cab8b5b22478de369f259e591c54e6d;hp=3e733eedd471e8c5c8c1e38c41797ff2ce2c24ca;hpb=9b9ffbbb64ae96d969005cffd1d65aa993731f56;p=sfa.git diff --git a/init.d/sfa b/init.d/sfa index 3e733eed..08e6893e 100755 --- a/init.d/sfa +++ b/init.d/sfa @@ -1,33 +1,75 @@ #!/bin/bash # -# sfa Wraps PLCAPI into the SFA compliant API +# sfa +# Provides a generic SFA wrapper based on the initial PlanetLab Implementation # # hopefully right after plc # chkconfig: 2345 61 39 # -# description: Wraps PLCAPI into the SFA compliant API -# +### BEGIN INIT INFO +# Provides: sfa +# Required-Start: postgresql +# Required-Stop: postgresql +# Default-Start: 2 3 4 5 +# Default-Stop: 0 1 6 +# Short-Description: An implementation of the SFA Architecture +### END INIT INFO + +#################### +# borrowed from postgresql +function debian_get_postgresql_versions () { + versions=() + for v in `ls /usr/lib/postgresql/ 2>/dev/null`; do + if [ -x /usr/lib/postgresql/$v/bin/pg_ctl ] && [ ! -x /etc/init.d/postgresql-$v ]; then + versions+=($v) + fi + done + if [[ ${#versions[*]} == "0" ]]; then + echo "E: Missing postgresql installation. Aborting." + exit + fi + if [[ ${#versions[*]} != "1" ]]; then + echo "E: Too many postgresql versions installed. Aborting." + exit + fi + pgver=${versions[0]} +} + +#################### +if [ -f /etc/redhat-release ] ; then + # source function library + . /etc/init.d/functions + PGDATA=/var/lib/pgsql/data/ + PGWATCH=postmaster + PGLOCK=/var/lock/subsys/postgresql + SFALOCK=/var/lock/subsys/sfa-start.pid +elif [ -f /etc/debian_version ] ; then + . /etc/init.d/functions.sfa + debian_get_postgresql_versions + PGDATA=/etc/postgresql/$pgver/main/ + PGWATCH=postgres + PGLOCK=/var/run/postgresql/$pgver-main.pid + SFALOCK=/var/run/sfa-start.pid +else + echo "initscript can only handle redhat/fedora or debian/ubuntu systems" + exit 1 +fi -# source function library -. /etc/init.d/functions -# Default locations -PGDATA=/var/lib/pgsql/data postgresql_conf=$PGDATA/postgresql.conf -pghba_conf=$PGDATA/pg_hba.conf +pg_hba_conf=$PGDATA/pg_hba.conf postgresql_sysconfig=/etc/sysconfig/pgsql -# PLC consolidated (merged) config file -plc_whole_config=/etc/planetlab/plc_config.xml # SFA consolidated (merged) config file -sfa_whole_config=/etc/sfa/sfa_config.xml +sfa_whole_config=/etc/sfa/sfa_config # SFA default config (read-only template) sfa_default_config=/etc/sfa/default_config.xml # SFA local (site-dependent) file -sfa_local_config=/etc/sfa/configs/site.xml +sfa_local_config=/etc/sfa/configs/site_config +sfa_local_config_xml=/etc/sfa/configs/site_config.xml # Source sfa shell config if present -[ -f /etc/sfa/sfa_config ] && . /etc/sfa/sfa_config +[ -f /etc/sfa/sfa_config.sh ] && . /etc/sfa/sfa_config.sh # Export so that we do not have to specify -p to psql invocations export PGPORT=$SFA_DB_PORT @@ -46,7 +88,7 @@ check () function postgresql_check () { # wait until postmaster is up and running - or 10s max - if status postmaster >& /dev/null && [ -f /var/lock/subsys/postgresql ] ; then + if status $PGWATCH >& /dev/null && [ -f $PGLOCK ] ; then # The only way we can be sure is if we can access it for i in $(seq 1 10) ; do # Must do this as the postgres user initially (before we @@ -59,6 +101,18 @@ function postgresql_check () { return 1 } +# use a single date of this script invocation for the dump_*_db functions. +DATE=$(date +"%Y-%m-%d-%H-%M-%S") + +# Dumps the database - optional argument to specify filename suffix +function dump_sfa_db() { + if [ -n "$1" ] ; then suffix="-$1" ; else suffix="" ; fi + mkdir -p /usr/share/sfa/backups + dumpfile=/usr/share/sfa/backups/$(date +"${SFA_DB_NAME}.${DATE}${suffix}.sql") + pg_dump -U $SFA_DB_USER $SFA_DB_NAME > $dumpfile + echo "Saved sfa database in $dumpfile" + check +} # Regenerate configuration files - almost verbatim from plc.init function reload () { @@ -66,12 +120,11 @@ function reload () { # Regenerate the main configuration file from default values # overlaid with site-specific and current values. - # Thierry -- 2007-07-05 : values in plc_config.xml are *not* taken into account here files=( $sfa_default_config $sfa_local_config ) for file in "${files[@]}" ; do if [ -n "$force" -o $file -nt $sfa_whole_config ] ; then - tmp=$(mktemp /tmp/sfa_config.xml.XXXXXX) - plc-config --xml "${files[@]}" >$tmp + tmp=$(mktemp /tmp/sfa_config.XXXXXX) + sfa-config --python "${files[@]}" >$tmp if [ $? -eq 0 ] ; then mv $tmp $sfa_whole_config chmod 444 $sfa_whole_config @@ -84,16 +137,16 @@ function reload () { done # Convert configuration to various formats - if [ -n "$force" -o $sfa_whole_config -nt /etc/sfa/sfa_config ] ; then - plc-config --shell $sfa_whole_config > /etc/sfa/sfa_config + if [ -f $sfa_local_config_xml ] ; then + sfa-config --python $sfa_local_config_xml > $sfa_local_config + rm $sfa_local_config_xml + fi + if [ -n "$force" -o $sfa_local_config -nt $sfa_whole_config ] ; then + sfa-config --python $sfa_default_config $sfa_local_config > $sfa_whole_config fi - if [ -n "$force" -o $sfa_whole_config -nt /etc/sfa/sfa_config.py ] ; then - plc-config --python $sfa_whole_config > /etc/sfa/sfa_config.py + if [ -n "$force" -o $sfa_whole_config -nt /etc/sfa/sfa_config.sh ] ; then + sfa-config --shell $sfa_default_config $sfa_local_config > /etc/sfa/sfa_config.sh fi -# if [ -n "$force" -o $sfa_whole_config -nt /etc/sfa/php/sfa_config.php ] ; then -# mkdir -p /etc/sfa/php -# plc-config --php $sfa_whole_config >/etc/sfa/php/sfa_config.php -# fi # [re]generate the sfa_component_config # this is a server-side thing but produces a file that somehow needs to be pushed @@ -103,7 +156,7 @@ function reload () { #gen-sfa-cm-config.py # reload the shell version - [ -f /etc/sfa/sfa_config ] && . /etc/sfa/sfa_config + [ -f /etc/sfa/sfa_config.sh ] && . /etc/sfa/sfa_config.sh } @@ -111,89 +164,96 @@ function reload () { function db_start () { # only if enabled - [ "$SFA_DB_ENABLED" == 1 ] || return - - if ! rpm -q myplc >& /dev/null; then - - ######## standalone deployment - no colocated myplc - - ######## sysconfig - # Set data directory and redirect startup output to /var/log/pgsql - mkdir -p $(dirname $postgresql_sysconfig) - # remove previous definitions - touch $postgresql_sysconfig - tmp=${postgresql_sysconfig}.new - ( egrep -v '^(PGDATA=|PGLOG=|PGPORT=)' $postgresql_sysconfig - echo "PGDATA=$PGDATA" - echo "PGLOG=/var/log/pgsql" - echo "PGPORT=$PLC_DB_PORT" - ) >> $tmp ; mv -f $tmp $postgresql_sysconfig - - ######## /var/lib/pgsql/data - # Fix ownership (rpm installation may have changed it) - chown -R -H postgres:postgres $(dirname $PGDATA) - - # PostgreSQL must be started at least once to bootstrap - # /var/lib/pgsql/data - if [ ! -f $postgresql_conf ] ; then - service postgresql initdb &> /dev/null || : - check - fi + [ "$SFA_DB_ENABLED" == 1 -o "$SFA_DB_ENABLED" == True ] || return + + #if ! rpm -q myplc >& /dev/null; then + + ######## standalone deployment - no colocated myplc + + ######## sysconfig + # Set data directory and redirect startup output to /var/log/pgsql + mkdir -p $(dirname $postgresql_sysconfig) + # remove previous definitions + touch $postgresql_sysconfig + tmp=${postgresql_sysconfig}.new + ( egrep -v '^(PGDATA=|PGLOG=|PGPORT=)' $postgresql_sysconfig + echo "PGDATA=$PGDATA" + echo "PGLOG=/var/log/pgsql" + echo "PGPORT=$SFA_DB_PORT" + ) >> $tmp ; mv -f $tmp $postgresql_sysconfig + + ######## /var/lib/pgsql/data + # Fix ownership (rpm installation may have changed it) + chown -R -H postgres:postgres $(dirname $PGDATA) + + # PostgreSQL must be started at least once to bootstrap + # /var/lib/pgsql/data + if [ ! -f $postgresql_conf ] ; then + service postgresql initdb &> /dev/null || : + check + fi + + ######## /var/lib/pgsql/data/postgresql.conf + registry_ip="" + foo=$(python -c "import socket; print socket.gethostbyname(\"$SFA_REGISTRY_HOST\")") && registry_ip="$foo" + # Enable DB server. drop Postgresql<=7.x + # PostgreSQL >=8.0 defines listen_addresses + # listen on a specific IP + localhost, more robust when run within a vserver + sed -i -e '/^listen_addresses/d' $postgresql_conf + if [ -z "$registry_ip" ] ; then + echo "listen_addresses = 'localhost'" >> $postgresql_conf + else + echo "listen_addresses = '${registry_ip},localhost'" >> $postgresql_conf + fi + # tweak timezone to be 'UTC' + sed -i -e '/^timezone=/d' $postgresql_conf + echo "timezone='UTC'" >> $postgresql_conf + + ######## /var/lib/pgsql/data/pg_hba.conf + # Disable access to all DBs from all hosts + sed -i -e '/^\(host\|local\)/d' $pghba_conf + + # Enable passwordless localhost access + echo "local all all trust" >>$pghba_conf + # grant access + ( + echo "host $SFA_DB_NAME $SFA_DB_USER 127.0.0.1/32 password" + [ -n "$registry_ip" ] && echo "host $SFA_DB_NAME $SFA_DB_USER ${registry_ip}/32 password" + ) >>$pghba_conf + + if [ "$SFA_GENERIC_FLAVOUR" == "openstack" ] ; then + [ -n "$registry_ip" ] && echo "host nova nova ${registry_ip}/32 password" >> $pghba_conf + fi + + # Fix ownership (sed -i changes it) + chown postgres:postgres $postgresql_conf $pghba_conf - ######## /var/lib/pgsql/data/postgresql.conf - registry_ip="" - foo=$(python -c "import socket; print socket.gethostbyname(\"$SFA_REGISTRY_HOST\")") && registry_ip="$foo" - # Enable DB server. drop Postgresql<=7.x - # PostgreSQL >=8.0 defines listen_addresses - # listen on a specific IP + localhost, more robust when run within a vserver - sed -i -e '/^listen_addresses/d' $postgresql_conf - if [ -z "$registry_ip" ] ; then - echo "listen_addresses = 'localhost'" >> $postgresql_conf - else - echo "listen_addresses = '${registry_ip},localhost'" >> $postgresql_conf - fi - # tweak timezone to be 'UTC' - sed -i -e '/^timezone=/d' $postgresql_conf - echo "timezone='UTC'" >> $postgresql_conf - - ######## /var/lib/pgsql/data/pg_hba.conf - # Disable access to all DBs from all hosts - sed -i -e '/^\(host\|local\)/d' $pghba_conf - - # Enable passwordless localhost access - echo "local all all trust" >>$pghba_conf - # grant access - ( - echo "host $SFA_DB_NAME $SFA_DB_USER 127.0.0.1/32 password" - [ -n "$registry_ip" ] && echo "host $SFA_DB_NAME $SFA_DB_USER ${registry_ip}/32 password" - ) >>$pghba_conf - - # Fix ownership (sed -i changes it) - chown postgres:postgres $postgresql_conf $pghba_conf - - ######## compute a password if needed - if [ -z "$SFA_DB_PASSWORD" ] ; then - SFA_DB_PASSWORD=$(uuidgen) - plc-config --category=sfa_db --variable=password --value="$SFA_DB_PASSWORD" --save=$sfa_local_config $sfa_local_config >& /dev/null - reload force - fi + ######## compute a password if needed + if [ -z "$SFA_DB_PASSWORD" ] ; then + SFA_DB_PASSWORD=$(uuidgen) + sfa-config --category=sfa_db --variable=password --value="$SFA_DB_PASSWORD" --save=$sfa_local_config $sfa_local_config >& /dev/null + reload force + fi - else + #else ######## we are colocated with a myplc - # no need to worry about the pgsql setup (see /etc/plc.d/postgresql) - # myplc enforces the password for its user - PLC_DB_USER=$(plc-config --category=plc_db --variable=user) - PLC_DB_PASSWORD=$(plc-config --category=plc_db --variable=password) - # store this as the SFA user/password - plc-config --category=sfa_db --variable=user --value=$PLC_DB_USER --save=$sfa_local_config $sfa_local_config >& /dev/null - plc-config --category=sfa_db --variable=password --value=$PLC_DB_PASSWORD --save=$sfa_local_config $sfa_local_config >& /dev/null - reload force - fi + # no need to worry about the pgsql setup (see /etc/plc.d/postgresql) + # myplc enforces the password for its user + + # The code below overwrites the site specific sfa db info with myplc db info. + # This is most likely unncecessary and wrong so I'm commenting it out for now. + # PLC_DB_USER=$(plc-config --category=plc_db --variable=user) + # PLC_DB_PASSWORD=$(plc-config --category=plc_db --variable=password) + # store this as the SFA user/password + # sfa-config --category=sfa_db --variable=user --value=$PLC_DB_USER --save=$sfa_local_config $sfa_local_config >& /dev/null + # sfa-config --category=sfa_db --variable=password --value=$PLC_DB_PASSWORD --save=$sfa_local_config $sfa_local_config >& /dev/null + # reload force + #fi ######## Start up the server # not too nice, but.. when co-located with myplc we'll let it start/stop postgresql - if ! rpm -q myplc >& /dev/null ; then + if [ ! -f /etc/myplc-release ] ; then echo STARTING... service postgresql start >& /dev/null fi @@ -213,13 +273,12 @@ function db_start () { if ! psql -U $SFA_DB_USER -c "" $SFA_DB_NAME >/dev/null 2>&1 ; then createdb -U postgres --template=template0 --encoding=UNICODE --owner=$SFA_DB_USER $SFA_DB_NAME check - # install db schema - psql -U $SFA_DB_USER -f /usr/share/sfa/sfa.sql $SFA_DB_NAME - check fi check + # mention sfaadmin.py instead of just sfaadmin for safety + sfaadmin.py reg sync_db - MESSAGE=$"Checking for PostgreSQL server" + MESSAGE=$"SFA: Checking for PostgreSQL server" echo -n "$MESSAGE" [ "$ERRORS" == 0 ] && success "$MESSAGE" || failure "$MESSAGE" ; echo } @@ -228,10 +287,10 @@ function db_start () { function db_stop () { # only if enabled - [ "$SFA_DB_ENABLED" == 1 ] || return + [ "$SFA_DB_ENABLED" == 1 -o "$SFA_DB_ENABLED" == True ] || return # not too nice, but.. when co-located with myplc we'll let it start/stop postgresql - if ! rpm -q myplc >& /dev/null ; then + if [ ! -f /etc/myplc-release ] ; then service postgresql stop >& /dev/null check MESSAGE=$"Stopping PostgreSQL server" @@ -245,29 +304,32 @@ function start() { reload db_start + # migrations are now handled in the code by sfa.storage.dbschema # install peer certs - action $"SFA installing peer certs" daemon /usr/bin/sfa-start.py -t -d $OPTIONS + action $"SFA: installing peer certs" daemon /usr/bin/sfa-start.py -t -d $OPTIONS - [ "$SFA_REGISTRY_ENABLED" == 1 ] && action $"SFA Registry" daemon /usr/bin/sfa-start.py -r -d $OPTIONS + [ "$SFA_REGISTRY_ENABLED" == 1 -o "$SFA_REGISTRY_ENABLED" == True ] && action $"SFA: Registry" daemon /usr/bin/sfa-start.py -r -d $OPTIONS - [ "$SFA_AGGREGATE_ENABLED" == 1 ] && action $"SFA Aggregate" daemon /usr/bin/sfa-start.py -a -d $OPTIONS + [ "$SFA_AGGREGATE_ENABLED" == 1 -o "$SFA_AGGREGATE_ENABLED" == True ] && action $"SFA: Aggregate" daemon /usr/bin/sfa-start.py -a -d $OPTIONS - [ "$SFA_SM_ENABLED" == 1 ] && action "SFA SliceMgr" daemon /usr/bin/sfa-start.py -s -d $OPTIONS + [ "$SFA_SM_ENABLED" == 1 -o "$SFA_SM_ENABLED" == True ] && action "SFA: SliceMgr" daemon /usr/bin/sfa-start.py -s -d $OPTIONS [ "$SFA_FLASHPOLICY_ENABLED" == 1 ] && \ action "Flash Policy Server" daemon /usr/bin/sfa_flashpolicy.py --file="$SFA_FLASHPOLICY_CONFIG_FILE" --port=$SFA_FLASHPOLICY_PORT -d - touch /var/lock/subsys/sfa-start.py + touch $SFALOCK } function stop() { action $"Shutting down SFA" killproc sfa-start.py +# a possible alternative reads; esp. as we remove lock manually below +# echo $"Shutting down SFA" ; pkill '^sfa-start' db_stop - rm -f /var/lock/subsys/sfa-start.py + rm -f $SFALOCK } @@ -277,17 +339,23 @@ case "$1" in reload) reload force ;; restart) stop; start ;; condrestart) - if [ -f /var/lock/subsys/sfa-start.py ]; then + if [ -f $SFALOCK ]; then stop start fi ;; status) status sfa-start.py +# possible alternative for debian +# pids=$(pgrep '^sfa-start'); [ -n "$pids" ] && ps $pids + RETVAL=$? ;; + dbdump) + dump_sfa_db + ;; *) - echo $"Usage: $0 {start|stop|reload|restart|condrestart|status}" + echo $"Usage: $0 {start|stop|reload|restart|condrestart|status|dbdump}" exit 1 ;; esac