4 # Provides a generic SFA wrapper based on the initial PlanetLab Implementation
6 # hopefully right after plc
7 # chkconfig: 2345 61 39
11 # Required-Start: postgresql
12 # Required-Stop: postgresql
13 # Default-Start: 2 3 4 5
15 # Short-Description: An implementation of the SFA Architecture
19 # borrowed from postgresql
20 function debian_get_postgresql_versions () {
22 for v in `ls /usr/lib/postgresql/ 2>/dev/null`; do
23 if [ -x /usr/lib/postgresql/$v/bin/pg_ctl ] && [ ! -x /etc/init.d/postgresql-$v ]; then
27 if [[ ${#versions[*]} == "0" ]]; then
28 echo "E: Missing postgresql installation. Aborting."
31 if [[ ${#versions[*]} != "1" ]]; then
32 echo "E: Too many postgresql versions installed. Aborting."
39 if [ -f /etc/redhat-release ] ; then
40 # source function library
41 . /etc/init.d/functions
42 PGDATA=/var/lib/pgsql/data/
44 PGLOCK=/var/lock/subsys/postgresql
45 SFALOCK=/var/lock/subsys/sfa-start.pid
46 elif [ -f /etc/debian_version ] ; then
47 . /etc/init.d/functions.sfa
48 debian_get_postgresql_versions
49 PGDATA=/etc/postgresql/$pgver/main/
51 PGLOCK=/var/run/postgresql/$pgver-main.pid
52 SFALOCK=/var/run/sfa-start.pid
54 echo "initscript can only handle redhat/fedora or debian/ubuntu systems"
59 postgresql_conf=$PGDATA/postgresql.conf
60 pg_hba_conf=$PGDATA/pg_hba.conf
61 postgresql_sysconfig=/etc/sysconfig/pgsql
63 # SFA consolidated (merged) config file
64 sfa_whole_config=/etc/sfa/sfa_config
65 # SFA default config (read-only template)
66 sfa_default_config=/etc/sfa/default_config.xml
67 # SFA local (site-dependent) file
68 sfa_local_config=/etc/sfa/configs/site_config
69 sfa_local_config_xml=/etc/sfa/configs/site_config.xml
71 # Source sfa shell config if present
72 [ -f /etc/sfa/sfa_config.sh ] && . /etc/sfa/sfa_config.sh
74 # Export so that we do not have to specify -p to psql invocations
75 export PGPORT=$SFA_DB_PORT
78 # Total number of errors
81 # Count the exit status of the last command
84 ERRORS=$(($ERRORS+$?))
87 # can't trust the return of service postgresql start / nor status
88 function postgresql_check () {
90 # wait until postmaster is up and running - or 10s max
91 if status $PGWATCH >& /dev/null && [ -f $PGLOCK ] ; then
92 # The only way we can be sure is if we can access it
93 for i in $(seq 1 10) ; do
94 # Must do this as the postgres user initially (before we
95 # fix pg_hba.conf to passwordless localhost access).
96 su -c 'psql -U postgres -c "" template1' postgres && return 0
104 # use a single date of this script invocation for the dump_*_db functions.
105 DATE=$(date +"%Y-%m-%d-%H-%M-%S")
107 # Dumps the database - optional argument to specify filename suffix
108 function dump_sfa_db() {
109 if [ -n "$1" ] ; then suffix="-$1" ; else suffix="" ; fi
110 mkdir -p /usr/share/sfa/backups
111 dumpfile=/usr/share/sfa/backups/$(date +"${SFA_DB_NAME}.${DATE}${suffix}.sql")
112 pg_dump -U $SFA_DB_USER $SFA_DB_NAME > $dumpfile
113 echo "Saved sfa database in $dumpfile"
117 # Regenerate configuration files - almost verbatim from plc.init
121 # Regenerate the main configuration file from default values
122 # overlaid with site-specific and current values.
123 files=( $sfa_default_config $sfa_local_config )
124 for file in "${files[@]}" ; do
125 if [ -n "$force" -o $file -nt $sfa_whole_config ] ; then
126 tmp=$(mktemp /tmp/sfa_config.XXXXXX)
127 sfa-config --python "${files[@]}" >$tmp
128 if [ $? -eq 0 ] ; then
129 mv $tmp $sfa_whole_config
130 chmod 444 $sfa_whole_config
132 echo "SFA: Warning: Invalid configuration file(s) detected"
139 # Convert configuration to various formats
140 if [ -f $sfa_local_config_xml ] ; then
141 sfa-config --python $sfa_local_config_xml > $sfa_local_config
142 rm $sfa_local_config_xml
144 if [ -n "$force" -o $sfa_local_config -nt $sfa_whole_config ] ; then
145 sfa-config --python $sfa_default_config $sfa_local_config > $sfa_whole_config
147 if [ -n "$force" -o $sfa_whole_config -nt /etc/sfa/sfa_config.sh ] ; then
148 sfa-config --shell $sfa_default_config $sfa_local_config > /etc/sfa/sfa_config.sh
151 # [re]generate the sfa_component_config
152 # this is a server-side thing but produces a file that somehow needs to be pushed
153 # on the planetlab nodes; in the case where sfa and myplc run on different boxes
154 # (or there is no myplc at all) this should be turned off
155 # as the component manager is not operational yet we skip this for now
156 #gen-sfa-cm-config.py
158 # reload the shell version
159 [ -f /etc/sfa/sfa_config.sh ] && . /etc/sfa/sfa_config.sh
163 ### initialize DB (don't chkconfig postgresql on)
164 function db_start () {
167 [ "$SFA_DB_ENABLED" == 1 -o "$SFA_DB_ENABLED" == True ] || return
170 # Set data directory and redirect startup output to /var/log/pgsql
171 mkdir -p $(dirname $postgresql_sysconfig)
172 # remove previous definitions
173 touch $postgresql_sysconfig
174 tmp=${postgresql_sysconfig}.new
175 ( egrep -v '^(PGDATA=|PGLOG=|PGPORT=)' $postgresql_sysconfig
176 echo "PGDATA=$PGDATA"
177 echo "PGLOG=/var/log/pgsql"
178 echo "PGPORT=$SFA_DB_PORT"
179 ) >> $tmp ; mv -f $tmp $postgresql_sysconfig
181 ######## /var/lib/pgsql/data
182 # Fix ownership (rpm installation may have changed it)
183 chown -R -H postgres:postgres $(dirname $PGDATA)
185 # PostgreSQL must be started at least once to bootstrap
186 # /var/lib/pgsql/data
187 if [ ! -f $postgresql_conf ] ; then
188 service postgresql initdb &> /dev/null || :
192 ######## /var/lib/pgsql/data/postgresql.conf
194 foo=$(python -c "import socket; print socket.gethostbyname(\"$SFA_REGISTRY_HOST\")") && registry_ip="$foo"
195 # Enable DB server. drop Postgresql<=7.x
196 # PostgreSQL >=8.0 defines listen_addresses
197 # listen on a specific IP + localhost, more robust when run within a vserver
198 sed -i -e '/^listen_addresses/d' $postgresql_conf
199 if [ -z "$registry_ip" ] ; then
200 echo "listen_addresses = 'localhost'" >> $postgresql_conf
202 echo "listen_addresses = '${registry_ip},localhost'" >> $postgresql_conf
204 # tweak timezone to be 'UTC'
205 sed -i -e '/^timezone=/d' $postgresql_conf
206 echo "timezone='UTC'" >> $postgresql_conf
208 ######## /var/lib/pgsql/data/pg_hba.conf
209 # Disable access to all DBs from all hosts
210 sed -i -e '/^\(host\|local\)/d' $pg_hba_conf
212 # Enable passwordless localhost access
213 echo "local all all trust" >>$pg_hba_conf
216 echo "host $SFA_DB_NAME $SFA_DB_USER 127.0.0.1/32 password"
217 [ -n "$registry_ip" ] && echo "host $SFA_DB_NAME $SFA_DB_USER ${registry_ip}/32 password"
220 if [ "$SFA_GENERIC_FLAVOUR" == "openstack" ] ; then
221 [ -n "$registry_ip" ] && echo "host nova nova ${registry_ip}/32 password" >> $pg_hba_conf
224 # Fix ownership (sed -i changes it)
225 chown postgres:postgres $postgresql_conf $pg_hba_conf
227 ######## compute a password if needed
228 if [ -z "$SFA_DB_PASSWORD" ] ; then
229 SFA_DB_PASSWORD=$(uuidgen)
230 sfa-config --category=sfa_db --variable=password --value="$SFA_DB_PASSWORD" --save=$sfa_local_config $sfa_local_config >& /dev/null
234 ######## Start up the server
235 # not too nice, but.. when co-located with myplc we'll let it start/stop postgresql
236 if [ ! -f /etc/myplc-release ] ; then
238 service postgresql start >& /dev/null
243 ######## make sure we have the user and db created
245 if ! psql -U $SFA_DB_USER -c "" template1 >/dev/null 2>&1 ; then
246 psql -U postgres -c "CREATE USER $SFA_DB_USER PASSWORD '$SFA_DB_PASSWORD'" template1 >& /dev/null
248 psql -U postgres -c "ALTER USER $SFA_DB_USER WITH PASSWORD '$SFA_DB_PASSWORD'" template1 >& /dev/null
253 if ! psql -U $SFA_DB_USER -c "" $SFA_DB_NAME >/dev/null 2>&1 ; then
254 createdb -U postgres --template=template0 --encoding=UNICODE --owner=$SFA_DB_USER $SFA_DB_NAME
258 # mention sfaadmin.py instead of just sfaadmin for safety
259 sfaadmin.py reg sync_db
261 MESSAGE=$"SFA: Checking for PostgreSQL server"
263 [ "$ERRORS" == 0 ] && success "$MESSAGE" || failure "$MESSAGE" ; echo
267 function db_stop () {
270 [ "$SFA_DB_ENABLED" == 1 -o "$SFA_DB_ENABLED" == True ] || return
272 # not too nice, but.. when co-located with myplc we'll let it start/stop postgresql
273 if [ ! -f /etc/myplc-release ] ; then
274 service postgresql stop >& /dev/null
276 MESSAGE=$"Stopping PostgreSQL server"
278 [ "$ERRORS" == 0 ] && success "$MESSAGE" || failure "$MESSAGE" ; echo
287 # migrations are now handled in the code by sfa.storage.dbschema
290 action $"SFA: installing peer certs" daemon /usr/bin/sfa-start.py -t -d $OPTIONS
292 [ "$SFA_REGISTRY_ENABLED" == 1 -o "$SFA_REGISTRY_ENABLED" == True ] && action $"SFA: Registry" daemon /usr/bin/sfa-start.py -r -d $OPTIONS
294 [ "$SFA_AGGREGATE_ENABLED" == 1 -o "$SFA_AGGREGATE_ENABLED" == True ] && action $"SFA: Aggregate" daemon /usr/bin/sfa-start.py -a -d $OPTIONS
296 [ "$SFA_SM_ENABLED" == 1 -o "$SFA_SM_ENABLED" == True ] && action "SFA: SliceMgr" daemon /usr/bin/sfa-start.py -s -d $OPTIONS
298 [ "$SFA_FLASHPOLICY_ENABLED" == 1 -o "$SFA_FLASHPOLICY_ENABLED" == True ] && \
299 action "Flash Policy Server" daemon /usr/bin/sfa_flashpolicy.py --file="$SFA_FLASHPOLICY_CONFIG_FILE" --port=$SFA_FLASHPOLICY_PORT -d
306 action $"Shutting down SFA" killproc sfa-start.py
307 # a possible alternative reads; esp. as we remove lock manually below
308 # echo $"Shutting down SFA" ; pkill '^sfa-start'
319 reload) reload force ;;
320 restart) stop; start ;;
322 if [ -f $SFALOCK ]; then
329 # possible alternative for debian
330 # pids=$(pgrep '^sfa-start'); [ -n "$pids" ] && ps $pids
338 echo $"Usage: $0 {start|stop|reload|restart|condrestart|status|dbdump}"