Skip to content
Snippets Groups Projects
Select Git revision
  • debian-jessie-2.10-bpo2
  • debian-2.10-bpo2
  • stable-2.10-bpo2
  • master default
  • stable-2.10-grnet-rebased
  • stable-2.10-bpo
  • stable-2.8-grnet
  • debian-2.6
  • stable-2.6-ippool-hotplug-esi-nolvm-netxen
  • stable-2.6-debian
  • grnet-2.4-ippool-devel
  • v2.12.5
  • v2.13.2
  • v2.14.1
  • v2.13.1
  • v2.15.0rc1
  • v2.14.0
  • v2.14.0rc2
  • v2.12.4
  • v2.15.0beta1
  • v2.14.0rc1
  • v2.12.3
  • v2.13.0
  • v2.11.7
  • v2.14.0beta2
  • v2.13.0rc1
  • v2.12.2
  • debian/2.10.7.1+grnet1+bpo2+rmext-1
  • v2.14.0beta1
  • v2.12.1
  • v2.13.0beta1
31 results
Blame History Permalink
ensure-dirs.in 4.49 KiB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169 






#!/bin/bash

set -e

LIBDIR="@LOCALSTATEDIR@/lib"
DATADIR="${LIBDIR}/ganeti"
RUNDIR="@LOCALSTATEDIR@/run"
GNTRUNDIR="${RUNDIR}/ganeti"
LOGDIR="@LOCALSTATEDIR@/log"
GNTLOGDIR="${LOGDIR}/ganeti"
LOCKDIR="@LOCALSTATEDIR@/lock"

_fileset_owner() {
  case "$1" in
    masterd)
      echo "@GNTMASTERUSER@:@GNTMASTERDGROUP@"
      ;;
    confd)
      echo "@GNTCONFDUSER@:@GNTCONFDGROUP@"
      ;;
    rapi)
      echo "@GNTRAPIUSER@:@GNTRAPIGROUP@"
      ;;
    noded)
      echo "root:@GNTMASTERDGROUP@"
      ;;
    daemons)
      echo "@GNTMASTERUSER@:@GNTDAEMONSGROUP@"
      ;;
    masterd-confd)
      echo "@GNTMASTERUSER@:@GNTCONFDGROUP@"
      ;;
    *)
      echo "root:root"
      ;;
  esac
}

_ensure_file() {
  local file="$1"
  local perm="$2"
  local owner="$3"

  [[ -e "${file}" ]] || return 1
  chmod ${perm} "${file}"

  if ! [[ -z "${owner}" ]]; then
    chown ${owner} "${file}"
  fi

  return 0
}

_ensure_dir() {
  local dir="$1"
  local perm="$2"
  local owner="$3"

  [[ -d "${dir}" ]] || mkdir "${dir}"

  _ensure_file "${dir}" "${perm}" "${owner}"
}

_gather_files() {
  local path="$1"
  local perm="$2"
  local user="$3"
  local group="$4"

  shift 4

  find "${path}" -type f "(" "!" -perm ${perm} -or "(" "!" -user ${user} -or \
       "!" -group ${group} ")" ")" "$@"
}

_ensure_datadir() {
  local full_run="$1"

  _ensure_dir ${DATADIR} 0755 "$(_fileset_owner masterd)"
  _ensure_dir ${DATADIR}/queue 0700 "$(_fileset_owner masterd)"
  _ensure_dir ${DATADIR}/queue/archive 0700 "$(_fileset_owner masterd)"
  _ensure_dir ${DATADIR}/uidpool 0750 "$(_fileset_owner noded)"
  _ensure_dir ${DATADIR}/rapi 0750 "$(_fileset_owner rapi)"

  # We ignore these files if they don't exists (incomplete setup)
  _ensure_file ${DATADIR}/cluster-domain-secret 0640 \
               "$(_fileset_owner masterd)" || :
  _ensure_file ${DATADIR}/config.data 0640 "$(_fileset_owner masterd-confd)" || :
  _ensure_file ${DATADIR}/hmac.key 0440 "$(_fileset_owner confd)" || :
  _ensure_file ${DATADIR}/known_hosts 0644 "$(_fileset_owner masterd)" || :
  _ensure_file ${DATADIR}/rapi.pem 0440 "$(_fileset_owner rapi)" || :
  _ensure_file ${DATADIR}/rapi/users 0640 "$(_fileset_owner rapi)" || :
  _ensure_file ${DATADIR}/server.pem 0440 "$(_fileset_owner masterd)" || :
  _ensure_file ${DATADIR}/queue/serial 0600 "$(_fileset_owner masterd)" || :

  # To not change the utils.LockFile object
  touch ${DATADIR}/queue/lock
  _ensure_file ${DATADIR}/queue/lock 0600 "$(_fileset_owner masterd)"

  if ! [[ -z "${full_run}" ]]; then
    local queue_owner="$(_fileset_owner masterd)"
    local ssconf_owner="$(_fileset_owner noded)"

    _gather_files ${DATADIR}/queue 0600 @GNTMASTERUSER@ @GNTMASTERDGROUP@ | \
    while read path; do
      _ensure_file "$path" 0600 "$queue_owner"
    done

    _gather_files ${DATADIR} 0600 root @GNTMASTERDGROUP@ -name 'ssconf_*' | \
    while read path; do
      _ensure_file "$path" 0444 "$ssconf_owner"
    done
  fi
}

_ensure_rundir() {
  _ensure_dir ${GNTRUNDIR} 0775 "$(_fileset_owner daemons)"
  _ensure_dir ${GNTRUNDIR}/socket 0750 "$(_fileset_owner daemons)"
  _ensure_dir ${GNTRUNDIR}/bdev-cache 0755 "$(_fileset_owner noded)"
  _ensure_dir ${GNTRUNDIR}/instance-disks 0755 "$(_fileset_owner noded)"
  _ensure_dir ${GNTRUNDIR}/crypto 0700 "$(_fileset_owner noded)"
  _ensure_dir ${GNTRUNDIR}/import-export 0755 "$(_fileset_owner noded)"

  # We ignore this file if it don't exists (not yet start up)
  _ensure_file ${GNTRUNDIR}/socket/ganeti-master 0770 \
               "$(_fileset_owner daemons)" || :
}

_ensure_logdir() {
  _ensure_dir ${GNTLOGDIR} 0770 "$(_fileset_owner daemons)"
  _ensure_dir ${GNTLOGDIR}/os 0750 "$(_fileset_owner daemons)"

  # We ignore these files if they don't exists (incomplete setup)
  _ensure_file ${GNTLOGDIR}/master-daemon.log 0600 "$(_fileset_owner masterd)" || :
  _ensure_file ${GNTLOGDIR}/conf-daemon.log 0600 "$(_fileset_owner confd)" || :
  _ensure_file ${GNTLOGDIR}/node-daemon.log 0600 "$(_fileset_owner noded)" || :
  _ensure_file ${GNTLOGDIR}/rapi-daemon.log 0600 "$(_fileset_owner rapi)" || :
}

_ensure_lockdir() {
  _ensure_dir ${LOCKDIR} 1777 ""
}

_operate_while_hold() {
  local fn=$1
  local path=$2
  shift 2

  (cd ${path};
   ${fn} "$@")
}

main() {
  local full_run

  while getopts "f" OPTION; do
    case ${OPTION} in
      f) full_run=1 ;;
    esac
  done

  _operate_while_hold "_ensure_datadir" ${DATADIR} ${full_run}
  _operate_while_hold "_ensure_rundir" ${RUNDIR}
  _operate_while_hold "_ensure_logdir" ${LOGDIR}
  _operate_while_hold "_ensure_lockdir" @LOCALSTATEDIR@
}

main "$@"