Merge branch 'joeyconfig'

This commit is contained in:
Joey Hess 2014-05-14 19:47:17 -04:00
commit 39217c5569
64 changed files with 39 additions and 41 deletions

View File

@ -58,7 +58,7 @@ hosts = -- (o) `
& alias "openid.kitenet.net" & alias "openid.kitenet.net"
& Docker.docked hosts "openid-provider" & Docker.docked hosts "openid-provider"
`requires` Apt.installed ["ntp"] `requires` Apt.serviceInstalledRunning "ntp"
& alias "ancient.kitenet.net" & alias "ancient.kitenet.net"
& Docker.docked hosts "ancient-kitenet" & Docker.docked hosts "ancient-kitenet"

View File

@ -6,7 +6,8 @@ are satisfied.
Propellor is configured via a git repository, which typically lives Propellor is configured via a git repository, which typically lives
in `~/.propellor/` on your development machine. Propellor clones the in `~/.propellor/` on your development machine. Propellor clones the
repository to each host it manages, in a repository to each host it manages, in a
[secure](http://propellor.branchable.com/security/) way. [secure](http://propellor.branchable.com/security/) way. The git repository
contains the full source code to Propellor, along with its config file.
Properties are defined using Haskell. Edit `~/.propellor/config.hs` Properties are defined using Haskell. Edit `~/.propellor/config.hs`
to get started. There is fairly complete to get started. There is fairly complete
@ -40,11 +41,12 @@ see [configuration for the Haskell newbie](https://propellor.branchable.com/hask
`apt-get install propellor` `apt-get install propellor`
2. Run propellor for the first time. It will set up a `~/.propellor/` git 2. Run propellor for the first time. It will set up a `~/.propellor/` git
repository for you. repository for you.
3. `cd ~/.propellor/`; use git to push the repository to a central 3. If you don't have a gpg private key already, generate one: `gpg --gen-key`
4. Run: `propellor --add-key $KEYID`, which will make propellor trust
your gpg key, and will sign your `~/.propellor` repository using it.
5. `cd ~/.propellor/`; use git to push the repository to a central
server (github, or your own git server). Configure that central server (github, or your own git server). Configure that central
server as the origin remote of the repository. server as the origin remote of the repository.
4. If you don't have a gpg private key, generate one: `gpg --gen-key`
5. Run: `propellor --add-key $KEYID`
6. Edit `~/.propellor/config.hs`, and add a host you want to manage. 6. Edit `~/.propellor/config.hs`, and add a host you want to manage.
You can start by not adding any properties, or only a few. You can start by not adding any properties, or only a few.
7. Pick a host and run: `propellor --spin $HOST` 7. Pick a host and run: `propellor --spin $HOST`

View File

@ -6,8 +6,3 @@
need ntp installed for a good date source. need ntp installed for a good date source.
* Docking a container in a host should add to the host any cnames that * Docking a container in a host should add to the host any cnames that
are assigned to the container. are assigned to the container.
* It seems that provisionContainer sometimes hangs when the container
is already running. This seems likely to be a problem with the simpleSh
socket hack. (I think this was an uncaught exception crashing the
simpleSh server thread, and if so, it's fixed. Waiting some weeks to see,
as this bug rarely occurred..)

View File

@ -33,9 +33,10 @@ Description:
. .
It is configured using haskell. It is configured using haskell.
Executable propellor Executable wrapper
Main-Is: wrapper.hs Main-Is: wrapper.hs
GHC-Options: -Wall -threaded GHC-Options: -Wall -threaded
Hs-Source-Dirs: src
Build-Depends: MissingH, directory, filepath, base >= 4.5, base < 5, Build-Depends: MissingH, directory, filepath, base >= 4.5, base < 5,
IfElse, process, bytestring, hslogger, unix-compat, ansi-terminal, IfElse, process, bytestring, hslogger, unix-compat, ansi-terminal,
containers, network, async, time, QuickCheck, mtl, containers, network, async, time, QuickCheck, mtl,
@ -47,6 +48,7 @@ Executable propellor
Executable config Executable config
Main-Is: config.hs Main-Is: config.hs
GHC-Options: -Wall -threaded GHC-Options: -Wall -threaded
Hs-Source-Dirs: src
Build-Depends: MissingH, directory, filepath, base >= 4.5, base < 5, Build-Depends: MissingH, directory, filepath, base >= 4.5, base < 5,
IfElse, process, bytestring, hslogger, unix-compat, ansi-terminal, IfElse, process, bytestring, hslogger, unix-compat, ansi-terminal,
containers, network, async, time, QuickCheck, mtl, containers, network, async, time, QuickCheck, mtl,
@ -57,6 +59,7 @@ Executable config
Library Library
GHC-Options: -Wall GHC-Options: -Wall
Hs-Source-Dirs: src
Build-Depends: MissingH, directory, filepath, base >= 4.5, base < 5, Build-Depends: MissingH, directory, filepath, base >= 4.5, base < 5,
IfElse, process, bytestring, hslogger, unix-compat, ansi-terminal, IfElse, process, bytestring, hslogger, unix-compat, ansi-terminal,
containers, network, async, time, QuickCheck, mtl, containers, network, async, time, QuickCheck, mtl,

View File

@ -290,17 +290,26 @@ boot attr ps = do
mainProperties attr ps mainProperties attr ps
addKey :: String -> IO () addKey :: String -> IO ()
addKey keyid = exitBool =<< allM id [ gpg, gitadd, gitcommit ] addKey keyid = exitBool =<< allM id [ gpg, gitadd, gitconfig, gitcommit ]
where where
gpg = boolSystem "sh" gpg = do
[ Param "-c" createDirectoryIfMissing True privDataDir
, Param $ "gpg --export " ++ keyid ++ " | gpg " ++ boolSystem "sh"
unwords (gpgopts ++ ["--import"]) [ Param "-c"
] , Param $ "gpg --export " ++ keyid ++ " | gpg " ++
unwords (gpgopts ++ ["--import"])
]
gitadd = boolSystem "git" gitadd = boolSystem "git"
[ Param "add" [ Param "add"
, File keyring , File keyring
] ]
gitconfig = boolSystem "git"
[ Param "config"
, Param "user.signingkey"
, Param keyid
]
gitcommit = gitCommit gitcommit = gitCommit
[ File keyring [ File keyring
, Param "-m" , Param "-m"
@ -340,11 +349,11 @@ checkDebugMode = go =<< getEnv "PROPELLOR_DEBUG"
where where
go (Just s) go (Just s)
| s == "1" = do | s == "1" = do
f <- setFormatter f <- setFormatter
<$> streamHandler stderr DEBUG <$> streamHandler stderr DEBUG
<*> pure (simpleLogFormatter "[$time] $msg") <*> pure (simpleLogFormatter "[$time] $msg")
updateGlobalLogger rootLoggerName $ updateGlobalLogger rootLoggerName $
setLevel DEBUG . setHandlers [f] setLevel DEBUG . setHandlers [f]
go _ = noop go _ = noop
-- Parameters can be passed to both ssh and scp, to enable a ssh connection -- Parameters can be passed to both ssh and scp, to enable a ssh connection

View File

@ -335,29 +335,19 @@ provisionContainer cid = containerDesc cid $ property "provision" $ liftIO $ do
go lastline (v:rest) = case v of go lastline (v:rest) = case v of
StdoutLine s -> do StdoutLine s -> do
debug ["stdout: ", show s]
maybe noop putStrLn lastline maybe noop putStrLn lastline
hFlush stdout hFlush stdout
go (Just s) rest go (Just s) rest
StderrLine s -> do StderrLine s -> do
debug ["stderr: ", show s]
maybe noop putStrLn lastline maybe noop putStrLn lastline
hFlush stdout hFlush stdout
hPutStrLn stderr s hPutStrLn stderr s
hFlush stderr hFlush stderr
go Nothing rest go Nothing rest
Done -> do Done -> ret lastline
debug ["reached Done"] go lastline [] = ret lastline
ret lastline
go lastline [] = do
debug ["reached end of output"]
ret lastline
ret lastline = do ret lastline = pure $ fromMaybe FailedChange $ readish =<< lastline
let v = fromMaybe FailedChange $
readish =<< lastline
debug ["provisionContainer returning", show v]
return v
stopContainer :: ContainerId -> IO Bool stopContainer :: ContainerId -> IO Bool
stopContainer cid = boolSystem dockercmd [Param "stop", Param $ fromContainerId cid ] stopContainer cid = boolSystem dockercmd [Param "stop", Param $ fromContainerId cid ]

View File

@ -6,7 +6,7 @@
module Propellor.SimpleSh where module Propellor.SimpleSh where
import Network.Socket import Network.Socket
import Control.Concurrent.Chan import Control.Concurrent
import Control.Concurrent.Async import Control.Concurrent.Async
import System.Process (std_in, std_out, std_err) import System.Process (std_in, std_out, std_err)
@ -31,8 +31,9 @@ simpleSh namedpipe = do
listen s 2 listen s 2
forever $ do forever $ do
(client, _addr) <- accept s (client, _addr) <- accept s
h <- socketToHandle client ReadWriteMode forkIO $ do
maybe noop (run h) . readish =<< hGetLine h h <- socketToHandle client ReadWriteMode
maybe noop (run h) . readish =<< hGetLine h
where where
run h (Cmd cmd params) = do run h (Cmd cmd params) = do
chan <- newChan chan <- newChan
@ -71,16 +72,13 @@ simpleSh namedpipe = do
simpleShClient :: FilePath -> String -> [String] -> ([Resp] -> IO a) -> IO a simpleShClient :: FilePath -> String -> [String] -> ([Resp] -> IO a) -> IO a
simpleShClient namedpipe cmd params handler = do simpleShClient namedpipe cmd params handler = do
debug ["simplesh connecting"]
s <- socket AF_UNIX Stream defaultProtocol s <- socket AF_UNIX Stream defaultProtocol
connect s (SockAddrUnix namedpipe) connect s (SockAddrUnix namedpipe)
h <- socketToHandle s ReadWriteMode h <- socketToHandle s ReadWriteMode
hPutStrLn h $ show $ Cmd cmd params hPutStrLn h $ show $ Cmd cmd params
hFlush h hFlush h
debug ["simplesh sent command"]
resps <- catMaybes . map readish . lines <$> hGetContents h resps <- catMaybes . map readish . lines <$> hGetContents h
v <- hClose h `after` handler resps v <- hClose h `after` handler resps
debug ["simplesh processed response"]
return v return v
simpleShClientRetry :: Int -> FilePath -> String -> [String] -> ([Resp] -> IO a) -> IO a simpleShClientRetry :: Int -> FilePath -> String -> [String] -> ([Resp] -> IO a) -> IO a

1
src/config.hs Symbolic link
View File

@ -0,0 +1 @@
../config.hs