#!/bin/bash
#==============================================================================
# Copyright and license info is available in the LICENSE file included with
# the Server Deployment Package (SDP), and also available online:
# https://swarm.workshop.perforce.com/projects/perforce-software-sdp/view/main/LICENSE
#------------------------------------------------------------------------------
set -u
#------------------------------------------------------------------------------
# Declarations
declare Version=2.0.0
declare DownloadsDir="/opt/perforce/helix-sdp/downloads"
declare SDPUnixSetupDir="/opt/perforce/helix-sdp/p4/sdp/Server/Unix/setup"
declare SDPSetupDir="/opt/perforce/helix-sdp/p4/sdp/Server/setup"
declare TmpFile="/tmp/tmp.csd4sdp.$$.$RANDOM"
declare RunUser=perforce
declare ThisUser=
declare ThisHost=
declare CBIN=/p4/common/bin
declare ThisScript="${0##*/}"
declare CmdLine="$0 $*"
declare SDPInstance=Unset
declare PasswordFile=
declare P4DInitScript=
declare P4DSystemdServiceFile=
declare P4BrokerInitScript=
declare P4BrokerSystemdServiceFile=
declare -i MaxStartDelay=120
declare -i P4DStartVerified=0
declare -i P4BrokerStartVerified=0
declare -i UseSystemd=1
declare -i i=0
#------------------------------------------------------------------------------
# Function: usage (required function)
#
# Input:
# $1 - style, either -h (for short form) or -man (for man-page like format).
#------------------------------------------------------------------------------
function usage {
declare style=${1:--h}
msg "USAGE for $ThisScript v$Version:
$ThisScript -i <sdp_instance> [-d <data_dir>] [-u <osuser>] [-no_systemd]
or
$ThisScript [-h|-man]
"
if [[ $style == -man ]]; then
msg "
DESCRIPTION:
This script transforms a stock Sample Depot instance into
one that works with the SDP.
REQUIREMENTS:
A P4D process must be live and running with the stock
Sample Depot data set, on a sport
ARGUMENTS:
-i <sdp_instance>
Specify the SDP Instance in which the Sample Depot data set is
running. This argument is required.
-d <data_dir>
Specify the data directory where supporting files exist, such as the
*.p4s data files used by this script.
-u <osuser>
Specify the Linux operating system user account under which p4d runs.
If omitted, the default is 'perforce'.
-no_systemd
Specify '-no_systemd' to avoid using systemd, even if it
appears to be available. By default, systemd is used if it
appears to be available.
This is helpful in operating in containerized test environments
where systemd is not available.
-D Set extreme debugging verbosity.
HELP OPTIONS:
-h Display short help message
-man Display man-style help message
EXAMPLES:
Usage to configure Instance 1:
cd $SDPUnixSetupDir
$ThisScript 1 2>&1 | tee log.${ThisScript%.sh}.1
Usage to configure Instance abc:
cd $SDPUnixSetupDir
$ThisScript abc 2>&1 | tee log.${ThisScript%.sh}.abc
"
fi
exit 1
}
#------------------------------------------------------------------------------
# Function bail().
# Sample Usage:
# bail "Missing something important. Aborting."
# bail "Aborting with exit code 3." 3
function msg () { echo -e "$*"; }
function errmsg () { msg "\\nError: ${1:-Unknown Error}\\n"; ErrorCount+=1; }
function warnmsg () { msg "\\nWarning: ${1:-Unknown Warning}\\n"; WarningCount+=1; }
function bail () { errmsg "${1:-Unknown Error}"; exit "${2:-1}"; }
#------------------------------------------------------------------------------
# Functions. The runCmd() function is similar to functions defined in SDP core
# libraries, but we need to duplicate them here since this script runs before
# the SDP is available on the machine (and we want no dependencies for this
# script.
function runCmd {
declare cmd=${1:-echo Testing runCmd}
declare desc=${2:-""}
declare cmdToShow=$cmd
[[ "$cmdToShow" == *"<"* ]] && cmdToShow=${cmdToShow%%<*}
[[ "$cmdToShow" == *">"* ]] && cmdToShow=${cmdToShow%%>*}
[[ -n "$desc" ]] && msg "$desc"
msg "Running: $cmdToShow"
$cmd
return $?
}
#==============================================================================
# Command Line Processing
declare -i shiftArgs=0
declare -i ErrorCount=0
declare -i WarningCount=0
declare DataDir="$PWD"
set +u
while [[ $# -gt 0 ]]; do
case $1 in
(-no_systemd) UseSystemd=0;;
(-i) SDPInstance=$2; shiftArgs=1;;
(-d) DataDir="$2"; shiftArgs=1;;
(-u) RunUser="$2"; shiftArgs=1;;
(-h) usage -h;;
(-man) usage -man;;
(-D) set -x;; # Debug; use 'set -x' mode.
esac
# Shift (modify $#) the appropriate number of times.
shift; while [[ $shiftArgs -gt 0 ]]; do
[[ $# -eq 0 ]] && bail "Usage Error: Wrong numbers of args or flags to args."
shiftArgs=$shiftArgs-1
shift
done
done
set -u
#------------------------------------------------------------------------------
# Usage Validation
[[ $SDPInstance == Unset ]] && \
bail "Bad Usage: The '<sdp_instance>' argument is required."
[[ ! -r $CBIN/p4_vars ]] && \
bail "Missing SDP Environment File [$CBIN/p4_vars]. Aborting."
#------------------------------------------------------------------------------
# Main Program
ThisUser=$(whoami)
ThisHost=${HOSTNAME%%.*}
msg "Started $ThisScript v$Version on host $ThisHost as user $ThisUser at $(date), called as:\\n\\t$CmdLine"
if [[ "$ThisUser" != "$RunUser" ]]; then
bail "Run as $RunUser, not $ThisUser."
else
msg "Verified: Running as user $RunUser."
fi
# Load SDP environment and variable definitions.
# shellcheck disable=SC1090 disable=SC1091
source "$CBIN/p4_vars" "$SDPInstance" ||\
bail "Failed to load SDP environment. Aborting."
export P4ENVIRO=/dev/null/.p4enviro
export P4CONFIG=.p4config
PasswordFile="$SDP_ADMIN_PASSWORD_FILE"
P4DInitScript="${P4DBIN}_init"
P4BrokerInitScript="${P4BROKERBIN}_init"
if [[ "$UseSystemd" -eq 1 ]]; then
P4DSystemdServiceFile="/etc/systemd/system/${P4DBIN##*/}.service"
P4BrokerSystemdServiceFile="/etc/systemd/system/${P4BROKERBIN##*/}.service"
else
P4DSystemdServiceFile=
P4BrokerSystemdServiceFile=
fi
cd "$SDPUnixSetupDir" ||\
bail "Could not do: cd $SDPUnixSetupDir"
msg "Operating in SDP server setup area [$PWD]."
runCmd "$P4BIN -u bruno -s info -s" "Verifying server is offline." &&\
bail "Perforce server is unexpectedly online. Aborting."
runCmd "/p4/${SDPInstance}/bin/p4d_${SDPInstance} -jr $DownloadsDir/PerforceSample/checkpoint" \
"Loading the Sample Depot metadata in instance ${SDPInstance}." ||\
bail "Failed to load Sample Depot checkpoint."
runCmd "/p4/${SDPInstance}/bin/p4d_${SDPInstance} -xu" \
"Upgrading databases (p4d -xu) for instance ${SDPInstance}." ||\
bail "Failed to upgrade databases."
if [[ $P4PORT == "ssl:"* ]]; then
if [[ -r /p4/ssl/certificate.txt ]]; then
msg "Using existing OpenSSL certs in /p4/ssl"
else
runCmd "/p4/${SDPInstance}/bin/p4d_${SDPInstance} -Gc" \
"Generating OpenSSL Certificates." ||\
bail "Failed to generate OpenSSL Certs."
fi
fi
if [[ -x "$P4DInitScript" ]]; then
if [[ -f "$P4DSystemdServiceFile" ]]; then
msg "Starting p4d as user $ThisUser with: sudo systemctl start p4d_${SDPInstance}"
if sudo systemctl start "p4d_${SDPInstance}"; then
msg "Service p4d_${SDPInstance} started with systemd."
else
warnmsg "Non-zero exit code $? starting p4d service with systemd."
if [[ -r "$LOGS/p4d_init.log" ]]; then
msg "Contents of $LOGS/p4d_init.log:\\n$(cat "$LOGS/p4d_init.log")"
else
warnmsg "No $LOGS/p4d_init.log file found."
fi
fi
elif [[ -f "/etc/init.d/p4d_${SDPInstance}_init" ]]; then
msg "Starting p4d as user $ThisUser with: sudo service p4d_${SDPInstance}_init start"
if sudo service "p4d_${SDPInstance}_init" start; then
msg "Service p4d_${SDPInstance}_init started with SysV init."
else
warnmsg "Non-zero exit code $? starting p4d service with SysV init."
if [[ -r "$LOGS/p4d_init.log" ]]; then
msg "Contents of $LOGS/p4d_init.log:\\n$(cat "$LOGS/p4d_init.log")"
else
warnmsg "No $LOGS/p4d_init.log file found."
fi
fi
else
msg "Starting p4d as user $ThisUser with: $P4DInitScript start"
if "$P4DInitScript" start; then
msg "Service p4d_${SDPInstance}_init started with no init mechanism."
else
warnmsg "Non-zero exit code $? starting p4d service with no init mechanism."
if [[ -r "$LOGS/p4d_init.log" ]]; then
msg "Contents of $LOGS/p4d_init.log:\\n$(cat "$LOGS/p4d_init.log")"
else
warnmsg "No $LOGS/p4d_init.log file found."
fi
fi
fi
else
bail "Init script is missing or not executable: $P4DInitScript"
fi
P4DStartVerified=0
i=0; while [[ "$i" -lt "$MaxStartDelay" ]]; do
if "$P4BIN" -p "$P4PORT" info -s > "$TmpFile" 2>&1; then
msg "Verified: p4d has started."
P4DStartVerified=1
rm -f "$TmpFile"
break
else
# If we get an SSL trust error, then the server is indeed online.
if grep -lq 'The authenticity of' "$TmpFile"; then
msg "Verified: p4d has started."
P4DStartVerified=1
"$P4BIN" -p "$P4PORT" trust -f -y > /dev/null 2>&1
rm -f "$TmpFile"
break
else
sleep 1
fi
fi
i+=1
done
[[ "$P4DStartVerified" -eq 1 ]] || \
bail "p4d start attempted but could not be verified after $MaxStartDelay seconds.\\nTail of server log $P4LOG:\\n$(tail "$P4LOG")\\n\\n"
if [[ -x "$P4BrokerInitScript" ]]; then
if [[ -f "$P4BrokerSystemdServiceFile" ]]; then
msg "Starting p4broker as user $ThisUser with: sudo systemctl start p4broker_${SDPInstance}"
if sudo systemctl start "p4broker_${SDPInstance}"; then
msg "Service p4broker_${SDPInstance} started with systemd."
else
warnmsg "Non-zero exit code $? starting broker service with systemd."
fi
elif [[ -f "/etc/init.d/p4broker_${SDPInstance}_init" ]]; then
msg "Starting p4broker as user $ThisUser with: sudo service p4broker_${SDPInstance}_init start"
if sudo service "p4broker_${SDPInstance}_init" start; then
msg "Service p4broker_${SDPInstance}_init started with SysV init."
else
warnmsg "Non-zero exit code $? starting broker service with SysV init."
fi
else
msg "Starting p4broker as user $ThisUser with: $P4BrokerInitScript start"
if "$P4BrokerInitScript" start; then
msg "Service p4broker_${SDPInstance}_init started with no init mechanism."
else
warnmsg "Non-zero exit code $? starting broker service with no init mechanism."
fi
fi
else
bail "Init script is missing or not executable: $P4BrokerInitScript"
fi
P4BrokerStartVerified=0
i=0; while [[ "$i" -lt "$MaxStartDelay" ]]; do
if "$P4BIN" -p "$P4BROKERPORT" info -s > "$TmpFile" 2>&1; then
msg "Verified: p4broker has started."
P4BrokerStartVerified=1
rm -f "$TmpFile"
break
else
if grep -lq 'The authenticity of' "$TmpFile"; then
msg "Verified: p4d has started."
P4BrokerStartVerified=1
"$P4BIN" -p "$P4BROKERPORT" trust -f -y > /dev/null 2>&1
rm -f "$TmpFile"
break
else
sleep 1
fi
fi
i+=1
done
[[ "$P4BrokerStartVerified" -eq 1 ]] || \
bail "p4broker start attempted but could not be verified after $MaxStartDelay seconds.\\n\\nTail of broker log $LOGS/p4broker.log:\\n$(tail "$LOGS/p4broker.log")\\n\\n"
if [[ $P4PORT == "ssl:"* ]]; then
# Note: Automating a 'p4 trust -y' (especially with '-f') may not be appropriate
# in a production environment, as it defeats the purpose of the Open SSL trust
# mechanism. But for our purposes here, where scripts spin up throw-away data
# sets for testing or training purposes, it's just dandy.
runCmd "/p4/${SDPInstance}/bin/p4_${SDPInstance} -p $P4PORT trust -y -f" \
"Trusting the OpenSSL Cert of the server." ||\
bail "Failed to trust the server."
runCmd "/p4/${SDPInstance}/bin/p4_${SDPInstance} -p $P4BROKERPORT trust -y -f" \
"Trusting the OpenSSL Cert of the broker." ||\
bail "Failed to trust the broker."
fi
runCmd "$P4BIN -s info -s" "Verifying direct connection to Perforce server." ||\
bail "Could not connect to Perforce server."
runCmd "$P4BIN -u bruno -s -p $P4BROKERPORT info -s" "Verifying via-broker connection to Perforce server." ||\
bail "Could not connect to Perforce server via broker."
[[ "$($P4BIN -u bruno protects -m)" == super ]] ||\
bail "Could not verify super user access for $P4USER on port $P4PORT. Is this the Sample depot? Aborting."
msg "Super user access for bruno verified."
msg "Creating user $P4USER."
sed "s:__EDITME_ADMIN_P4USER__:$P4USER:g" "$DataDir/admin.user.p4s" > "$TmpFile"
"$P4BIN" -u bruno user -f -i < "$TmpFile"
msg "Adding user to NoTicketExpiration group."
sed "s:__EDITME_ADMIN_P4USER__:$P4USER:g" "$DataDir/NoTicketExpiration.group.p4s" > "$TmpFile"
"$P4BIN" -u bruno group -i < "$TmpFile"
msg "Promoting user $P4USER to super user."
"$P4BIN" -u bruno protect -o > "$TmpFile"
msg "\\tsuper user $P4USER * //...\\n" >> "$TmpFile"
"$P4BIN" -u bruno protect -i < "$TmpFile"
cat "$PasswordFile" > "$TmpFile"
cat "$PasswordFile" >> "$TmpFile"
"$P4BIN" -u bruno passwd "$P4USER" < "$TmpFile"
runCmd "/p4/common/bin/p4login" "Logging in $P4USER super user." ||\
bail "Failed to login super user $P4USER. Aborting."
# Variable Format Sample Values
# P4PORT [ssl:]<P4DPortNum> ssl:1999, 1999
# P4BROKERPORT [ssl:]<BrokerPort> ssl:1666, 1666
for p in $P4PORT $P4BROKERPORT; do
if [[ $p == "ssl:"* ]]; then
runCmd "$P4BIN -p $p trust -y" "Trusting P4PORT=$p." ||\
bail "Failed to trust P4PORT=$p."
fi
cmd="$P4BIN -u $P4USER -p $p login -a"
msg "Running: $cmd < $PasswordFile"
$cmd < "$PasswordFile" ||\
bail "Login as perforce using P4PORT=$p failed. Aborting."
done
runCmd "cat $P4TICKETS" "Showing P4TICKETS:"
runCmd "$SDPSetupDir/configure_new_server.sh $SDPInstance" \
"Applying SDP configurables." ||\
bail "Failed to set SDP configurables. Aborting."
msg "Copying sample depots to SDP location."
for depot in $(/bin/ls -d "$DownloadsDir"/PerforceSample/*); do
[[ $depot == *"checkpoint"* ]] && continue
[[ $depot == *"README"* ]] && continue
[[ $depot == *"readme"* ]] && continue
if [[ $depot == *"spec"* ]]; then
runCmd "/usr/bin/rsync -a $depot/ /p4/$SDPInstance/depots/${depot##*/}" \
"Copying Sample Depot archive files for spec depot [${depot##*/}]." ||\
warnmsg "Non-zero exit code $? from rsync for depot ${depot##*/}."
else
runCmd "/usr/bin/rsync -a --delete $depot/ /p4/$SDPInstance/depots/${depot##*/}" \
"Copying Sample Depot archive files for depot [${depot##*/}]." ||\
warnmsg "Non-zero exit code $? from rsync for depot ${depot##*/}."
fi
done
runCmd "$P4BIN admin updatespecdepot -a" \
"Updating spec depot." || bail "Failed to udpate spec depot. Aborting."
runCmd "/usr/bin/rsync -a /p4/$SDPInstance/root/spec/ /p4/$SDPInstance/depots/spec" \
"Copying a few spec depot files." ||\
warnmsg "Non-zero exit code $? from rsync for spec depot."
runCmd "/bin/rm -rf /p4/$SDPInstance/root/spec" \
"Cleanup redundant copy of spec depot files." ||:
runCmd "/p4/common/bin/live_checkpoint.sh $SDPInstance" \
"Taking Live Checkpoint." || bail "Live checkpoint failed. Aborting."
msg "\\nSUCCESS: SDP Instance $SDPInstance loaded with sample depot data, live checkpoint done, and backup created. Good to go!\\n"
exit 0
| # | Change | User | Description | Committed | |
|---|---|---|---|---|---|
| #1 | 30782 | C. Thomas Tyler |
Added new install_sdp.sh script and supporting documentation. The new install_sdp.sh makes SDP independent of the separate Helix Installer software (the reset_sdp.sh script). The new script greatly improves the installation experience for new server machines. It is ground up rewrite of the reset_sdp.sh script. The new script preserves the desired behaviors of the original Helix Installer script, but is focused on the use case of a fresh install on a new server machine. With this focus, the scripts does not have any "reset" logic, making it completely safe. Added various files and functionalityfrom Helix Installer into SDP. * Added firewalld templates to SDP, and added ufw support. * Improved sudoers generation. * Added bash shell templates. This script also installs in the coming SDP Package structure. New installs use a modified SDP structure that makes it so the /p4/sdp and /p4/common now point to folders on the local OS volume rather than the /hxepots volume. The /hxdepots volume, which is often NFS mounted, is still used for depots and checkpoints, and for backups. The new structure uses a new /opt/perforce/helix-sdp structure under which /p4/sdp and /p4/common point. This structure also contains the expaneded SDP tarball, downloads, helix_binaries, etc. This change represents the first of 3-phase rollout of the new package structure. In this first phase, the "silent beta" phase, the new structure is used for new installations only. This phase requires no changes to released SDP scripts except for mkdirs.sh, and even that script remains backward-compatible with the old structure if used independently of install_sdp.sh. If used with install_sdp.sh, the new structure is used. In the second phase (targeted for SPD 2024.2 release), the sdp_upgrade.sh script will convert existing installations to the new structure. In the third phase (targeted for SDP 2025.x), this script will be incorporated into OS pacakge installations for the helix-sdp package. Perforce internal wikis have more detail on this change. #review-30783 |