centostrano 0.1

data/lib/deprec/recipes/ssh.rb

@@ -0,0 +1,93 @@
+# Copyright 2006-2008 by Mike Bailey. All rights reserved.
+Capistrano::Configuration.instance(:must_exist).load do 
+  namespace :centos do
+    namespace :ssh do
+      
+      SYSTEM_CONFIG_FILES[:ssh] = [
+        
+        {:template => "sshd_config.erb",
+         :path => '/etc/ssh/sshd_config',
+         :mode => 0644,
+         :owner => 'root:root'},
+         
+        {:template => "ssh_config.erb",
+         :path => '/etc/ssh/ssh_config',
+         :mode => 0644,
+         :owner => 'root:root'}
+      ]
+      
+      task :config_gen do        
+        SYSTEM_CONFIG_FILES[:ssh].each do |file|
+          deprec2.render_template(:ssh, file)
+        end
+        auth_keys_dir = 'config/ssh/authorized_keys'
+        if ! File.directory?(auth_keys_dir)
+          puts "Creating #{auth_keys_dir}"
+          Dir.mkdir(auth_keys_dir)
+        end
+      end
+      
+      desc "Push ssh config files to server"
+      task :config do
+        deprec2.push_configs(:ssh, SYSTEM_CONFIG_FILES[:ssh])
+        restart
+      end
+
+      desc "Start ssh"
+      task :start do
+        send(run_method, "/etc/init.d/sshd reload")
+      end
+    
+      desc "Stop ssh"
+      task :stop do
+        send(run_method, "/etc/init.d/sshd reload")
+      end
+    
+      desc "Restart ssh"
+      task :restart do
+        send(run_method, "/etc/init.d/sshd restart")
+      end
+    
+      desc "Reload ssh"
+      task :reload do
+        send(run_method, "/etc/init.d/sshd reload")
+      end
+      
+      desc "Sets up authorized_keys file on remote server"
+      task :setup_keys do
+        
+        default(:target_user) { 
+          Capistrano::CLI.ui.ask "Setup keys for which user?" do |q|
+            q.default = user
+          end
+        }
+        
+        if target_user == user
+          
+          unless ssh_options[:keys]  
+            puts <<-ERROR
+
+            You need to define the name of your SSH key(s)
+            e.g. ssh_options[:keys] = %w(/Users/your_username/.ssh/id_rsa)
+
+            You can put this in your .caprc file in your home directory.
+
+            ERROR
+            exit
+          end
+        
+          deprec2.mkdir '.ssh', :mode => 0700
+          put(ssh_options[:keys].collect{|key| File.read(key+'.pub')}.join("\n"), '.ssh/authorized_keys', :mode => 0600 )
+          
+        else  
+          
+          deprec2.mkdir "/home/#{target_user}/.ssh", :mode => 0700, :owner => "#{target_user}.users", :via => :sudo
+          std.su_put File.read("config/ssh/authorized_keys/#{target_user}"), "/home/#{target_user}/.ssh/authorized_keys", '/tmp/', :mode => 0600
+          sudo "chown #{target_user}.users /home/#{target_user}/.ssh/authorized_keys"
+          
+        end
+      end
+      
+    end
+  end
+end

data/lib/deprec/recipes/svn.rb

@@ -0,0 +1,167 @@
+# Copyright 2006-2008 by Mike Bailey. All rights reserved.
+require 'fileutils'
+require 'uri'
+
+# http://svnbook.red-bean.com/en/1.4/svn-book.html#svn.serverconfig.choosing.apache
+
+Capistrano::Configuration.instance(:must_exist).load do 
+  namespace :centos do namespace :svn do
+  
+  set :scm_group, 'scm'
+  
+  # Extract svn attributes from :repository URL
+  # 
+  # Two examples of :repository entries are:
+  #
+  #   set :repository, 'svn+ssh://scm.deprecated.org/var/svn/deprec/trunk'
+  #   set :repository, 'file:///tmp/svn/deprec/trunk'
+  #
+  # This has only been tested with svn+ssh but file: should work.
+  #
+  set (:svn_scheme) { URI.parse(repository).scheme }  
+  set (:svn_host)   { URI.parse(repository).host }
+  set (:repos_path) { URI.parse(repository).path }
+  set (:repos_root) { 
+    URI.parse(repository).path.sub(/\/(trunk|tags|branches)$/, '') 
+  }
+  
+  # account name to perform actions on (such as granting access to an account)
+  # this is a hack to allow us to optionally pass a variable to tasks 
+  set (:svn_account) do
+    Capistrano::CLI.ui.ask 'account name'
+  end
+  
+  set(:svn_backup_dir) { File.join(backup_dir, 'svn') }
+  
+  desc "Install Subversion"
+  task :install, :roles => :scm do
+    install_deps
+    # XXX should really check if apache has already been installed
+    # XXX can do that when we move to rake
+    # deprec2.download_src(src_package, src_dir)
+    # deprec2.install_from_src(src_package, src_dir)
+  end
+  
+  desc "install dependencies for Subversion"
+  task :install_deps do
+    yum.enable_repository(:rpmforge)
+    apt.install( {:base => %w(subversion)}, :stable )
+    # XXX deprec1 - was building from source to get subversion-1.4.5 onto dapper. Compiled swig bindings for trac
+    # apt.install( {:base => %w(build-essential wget libneon25 libneon25-dev swig python-dev libexpat1-dev)}, :stable )
+  end
+  
+  desc "grant a user access to svn repos"
+  task :grant_user_access, :roles => :scm do
+    # creates account, scm_group and adds account to group
+    deprec2.useradd(svn_account)
+    deprec2.groupadd(scm_group) 
+    deprec2.add_user_to_group(svn_account, scm_group)
+  end
+  
+  desc "Create subversion repository and import project into it"
+  task :setup, :roles => :scm do 
+    create_repos
+    import
+  end
+  
+  desc "Create a subversion repository"
+  task :create_repos, :roles => :scm do
+    set :svn_account, top.user
+    grant_user_access
+    deprec2.mkdir(repos_root, :mode => 02775, :group => scm_group, :via => :sudo)
+    sudo "svnadmin verify #{repos_root} > /dev/null 2>&1 || sudo svnadmin create #{repos_root}"
+    sudo "chmod -R g+w #{repos_root}"
+  end
+  
+  # Adapted from code in Bradley Taylors RailsMachine gem
+  desc "Import project into subversion repository."
+  task :import, :roles => :scm do 
+    new_path = "../#{application}"
+    tags = repository.sub("trunk", "tags")
+    branches = repository.sub("trunk", "branches")
+    puts "Adding branches and tags"
+    system "svn mkdir -m 'Adding tags and branches directories' #{tags} #{branches}"
+    puts "Importing application."
+    system "svn import #{repository} -m 'Import'"
+    cwd = Dir.getwd
+    puts "Moving application to new directory"
+    Dir.chdir '../'
+    system "mv #{cwd} #{cwd}.imported"
+    puts "Checking out application."
+    system "svn co #{repository} #{application}"
+    Dir.chdir application
+    remove_log_and_tmp
+    puts "Your repository is: #{repository}" 
+  end
+  
+  # Lifted from Bradley Taylors RailsMachine gem
+  desc "remove and ignore log files and tmp from subversion"
+  task :remove_log_and_tmp, :roles => :scm  do
+    puts "removing log directory contents from svn"
+    system "svn remove log/*"
+    puts "ignoring log directory"
+    system "svn propset svn:ignore '*.log' log/"
+    system "svn update log/"
+    puts "removing contents of tmp sub-directorys from svn"
+    system "svn remove tmp/cache/*"
+    system "svn remove tmp/pids/*"
+    system "svn remove tmp/sessions/*"
+    system "svn remove tmp/sockets/*"
+    puts "ignoring tmp directory"
+    system "svn propset svn:ignore '*' tmp/cache"
+    system "svn propset svn:ignore '*' tmp/pids"
+    system "svn propset svn:ignore '*' tmp/sessions"
+    system "svn propset svn:ignore '*' tmp/sockets"
+    system "svn update tmp/"
+    puts "committing changes"
+    system "svn commit -m 'Removed and ignored log files and tmp'"
+  end
+  
+  # desc "Cache svn name and password on the server. Useful for http-based repositories."
+  task :cache_credentials do
+    run_with_input "svn list #{repository}"
+  end
+  
+  desc "create backup of trac repository"
+  task :backup, :roles => :scm do
+    # http://svnbook.red-bean.com/nightly/en/svn.reposadmin.maint.html#svn.reposadmin.maint.backup
+    # XXX do we need this? insane!
+    # echo "REPOS_BASE=/var/svn" > ~/.svntoolsrc
+    timestamp = Time.now.utc.strftime("%Y%m%d%H%M%S")
+    dest_dir = File.join(svn_backup_dir, "svn_#{application}_#{timestamp}")
+    run "svn-dump #{application} #{dest_dir}"
+  end
+
+  task :restore, :roles => :scm do
+    # prompt user to select from list of locally stored backups
+    # tracd_stop
+    # copy out backup
+  end
+  
+  
+  # XXX TODO
+  # desc "backup repository" 
+  # task :svn_backup_respository, :roles => :scm do
+  #   puts "read http://svnbook.red-bean.com/nightly/en/svn-book.html#svn.reposadmin.maint.backup"
+  # end
+
+  end end
+end
+
+# svnserve setup
+# I've previously used ssh exclusively I've decided svnserve is a reasonable choice for collaboration on open source projects.
+# It's easier to setup than apache/ssl webdav access.
+#
+# sudo useradd svn
+# sudo mkdir -p /var/svn/deprec_svnserve_root
+# sudo ln -sf /var/www/apps/deprec/repos /var/svn/deprec_svnserve_root/deprec
+# sudo chown -R svn /var/svn/deprec_svnserve_root/deprec
+
+#
+# XXX put password file into svn and command to push it
+# 
+# # run svnserve
+# sudo -u svn svnserve --daemon --root /var/svn/deprec_svnserve_root
+# 
+# # check it out now
+# svn co svn://scm.deprecated.org/deprec/trunk deprec

data/lib/deprec/recipes/users.rb

@@ -0,0 +1,90 @@
+# Copyright 2006-2008 by Mike Bailey. All rights reserved.
+Capistrano::Configuration.instance(:must_exist).load do 
+  namespace :centos do
+    namespace :users do
+      
+      # desc "Create user account"
+      # task :add do
+      #   target_user = Capistrano::CLI.ui.ask "Enter userid for new user" do |q|
+      #     q.default = user
+      #   end
+      #   deprec2.useradd(target_user, :shell => '/bin/bash')
+      #   puts "Setting password for new account"
+      #   deprec2.invoke_with_input("passwd #{target_user}", /UNIX password/)
+      # end
+      
+      desc "Create account"
+      task :add do
+        target_user = Capistrano::CLI.ui.ask "Enter userid for new user" do |q|
+          q.default = user
+        end 
+        make_admin = Capistrano::CLI.ui.ask "Should this be an admin account?" do |q|
+          q.default = 'no'
+        end
+        copy_keys = false
+        if File.readable?("config/ssh/authorized_keys/#{target_user}")
+          copy_keys = Capistrano::CLI.ui.ask "I've found an authorized_keys file for #{target_user}. Should I copy it out?" do |q|
+            q.default = 'yes'
+          end
+        end
+        
+        new_password = Capistrano::CLI.ui.ask("Enter new password for #{target_user}") { |q| q.echo = false }
+        
+        deprec2.useradd(target_user, :shell => '/bin/bash')
+
+        deprec2.invoke_with_input("passwd #{target_user}", /UNIX password/, new_password)
+        
+        if make_admin.grep(/y/i)
+          deprec2.groupadd('admin')
+          deprec2.add_user_to_group(target_user, 'admin')
+          deprec2.append_to_file_if_missing('/etc/sudoers', '%admin ALL=(ALL) ALL')
+        end
+        
+        if copy_keys && copy_keys.grep(/y/i)
+          set :target_user, target_user
+          top.centos.ssh.setup_keys
+        end
+        
+      end
+      
+      desc "Create account"
+      task :add_admin do
+        puts 'deprecated! use deprec:users:add'
+        add
+      end
+  
+      desc "Change user password"
+      task :passwd do
+        target_user = Capistrano::CLI.ui.ask "Enter user to change password for" do |q|
+          q.default = user if user.is_a?(String)
+        end
+        new_password = Capistrano::CLI.ui.ask("Enter new password for #{target_user}") { |q| q.echo = false }
+  
+        deprec2.invoke_with_input("passwd #{target_user}", /UNIX password/, new_password) 
+      end
+      
+      desc "Add user to group"
+      task :add_user_to_group do
+        target_user = Capistrano::CLI.ui.ask "Which user?" do |q|
+          q.default = user if user.is_a?(String)
+        end
+        target_group = Capistrano::CLI.ui.ask "Add to which group?" do |q|
+          q.default = 'deploy'
+        end
+        deprec2.add_user_to_group(target_user, target_group)
+      end
+
+      # desc "Create group"
+      # task :add_group do
+      #   target_group = Capistrano::CLI.ui.ask "Enter name for new group" 
+      #   deprec2.groupadd(target_group)
+      # end
+      # 
+      # desc "Add user to group"
+      # task :add_user_to_group do
+      #   # XXX not yet implemented
+      # end
+
+    end
+  end
+end

data/lib/deprec/recipes.rb

@@ -0,0 +1,33 @@
+# Copyright 2006-2008 by Mike Bailey. All rights reserved.
+unless Capistrano::Configuration.respond_to?(:instance)
+  abort "Centostrano requires Capistrano 2"
+end
+require "#{File.dirname(__FILE__)}/recipes/deprec"
+require "#{File.dirname(__FILE__)}/recipes/deprecated"
+# require "#{File.dirname(__FILE__)}/recipes/canonical"
+require "#{File.dirname(__FILE__)}/recipes/users"
+require "#{File.dirname(__FILE__)}/recipes/ssh"
+require "#{File.dirname(__FILE__)}/recipes/nginx"
+require "#{File.dirname(__FILE__)}/recipes/apache"
+#require "#{File.dirname(__FILE__)}/recipes/php"
+require "#{File.dirname(__FILE__)}/recipes/svn"
+#require "#{File.dirname(__FILE__)}/recipes/trac"
+require "#{File.dirname(__FILE__)}/recipes/ruby"
+require "#{File.dirname(__FILE__)}/recipes/rails"
+require "#{File.dirname(__FILE__)}/recipes/mongrel"
+require "#{File.dirname(__FILE__)}/recipes/mysql"
+#require "#{File.dirname(__FILE__)}/recipes/postfix"
+require "#{File.dirname(__FILE__)}/recipes/memcache"
+require "#{File.dirname(__FILE__)}/recipes/monit"
+#require "#{File.dirname(__FILE__)}/recipes/network"
+#require "#{File.dirname(__FILE__)}/recipes/aoe"
+#require "#{File.dirname(__FILE__)}/recipes/ntp"
+#require "#{File.dirname(__FILE__)}/recipes/nagios"
+#require "#{File.dirname(__FILE__)}/recipes/heartbeat"
+#require "#{File.dirname(__FILE__)}/recipes/xen"
+require "#{File.dirname(__FILE__)}/recipes/sphinx"
+require "#{File.dirname(__FILE__)}/recipes/git"
+require "#{File.dirname(__FILE__)}/recipes/gitosis"
+require "#{File.dirname(__FILE__)}/recipes/postgresql"
+require "#{File.dirname(__FILE__)}/recipes/logrotate"
+require "#{File.dirname(__FILE__)}/recipes/merb"

data/lib/deprec/templates/aoe/aoe-init

@@ -0,0 +1,55 @@
+#! /bin/sh
+# aoe-init - example init script for ATA over Ethernet storage
+# 
+#   Edit this script for your purposes.  (Changing "eth1" to the
+#   appropriate interface name, adding commands, etc.)  You might
+#   need to tune the sleep times.
+#
+#   Install this script in /etc/init.d with the other init scripts.
+#
+#   Make it executable:
+#     chmod 755 /etc/init.d/aoe-init
+#
+#   Install symlinks for boot time:
+#     cd /etc/rc3.d && ln -s ../init.d/aoe-init S99aoe-init
+#     cd /etc/rc5.d && ln -s ../init.d/aoe-init S99aoe-init
+#
+#   Install symlinks for shutdown time:
+#     cd /etc/rc0.d && ln -s ../init.d/aoe-init K01aoe-init
+#     cd /etc/rc1.d && ln -s ../init.d/aoe-init K01aoe-init
+#     cd /etc/rc2.d && ln -s ../init.d/aoe-init K01aoe-init
+#     cd /etc/rc6.d && ln -s ../init.d/aoe-init K01aoe-init
+#
+
+case "$1" in
+        "start")
+                # load any needed network drivers here
+
+                # replace "eth1" with your aoe network interface
+                ifconfig eth1 up
+
+                # time for network interface to come up
+                sleep 4
+
+                modprobe aoe
+
+                # time for AoE discovery and udev
+                sleep 7
+
+                # add your raid assemble commands here
+                # add any LVM commands if needed (e.g. vgchange)
+                # add your filesystem mount commands here
+
+                test -d /var/lock/subsys && touch /var/lock/subsys/aoe-init
+                ;;
+        "stop")
+                # add your filesystem umount commands here
+                # deactivate LVM volume groups if needed
+                # add your raid stop commands here
+                rmmod aoe
+                rm -f /var/lock/subsys/aoe-init
+                ;;
+        *)
+                echo "usage: `basename $0` {start|stop}" 1>&2
+                ;;
+esac

data/lib/deprec/templates/aoe/fence_aoemask

@@ -0,0 +1,351 @@
+#!/usr/bin/perl
+
+#
+# Wrapper to aoemask for use in a cluster fence.
+# Copyright (C) 2007 Brian Weck (bweck@weck.net)
+#
+# This script utilizes the 'aoemask' utility from:
+#   http://www.coraid.com/support/sr/
+# which is written by Sam Hopkins.
+#
+# =======================================================================
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+# 
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+# 
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+# =======================================================================
+#
+# ~~~~~ REVISION HISTORY ~~~~~
+# 2007-08-17 - v1 - Brian Weck 
+#   Initial release.
+#
+# ~~~~~ OVERVIEW ~~~~~
+#  Initial mask settings on the AoE device should contain the set of all 
+#  MAC addresses using the AoE device from the cluster.
+#  
+#  When a fence operation occurs on a node, the fenced node's mac address is 
+#  removed from the mask list on the AoE device. This method is conceptually 
+#  the same as fencing via a fabric switch.
+#  
+#  Once a node is fenced, the MAC address is removed from the mask list on 
+#  the AoE device. When the fenced node is ready to rejoin the cluster,
+#  the MAC address must be added to the device's mask list using this 
+#  script or using aoemask.
+#
+#  Script returns 0 on SUCCESS and non-zero otherwise.
+#
+# ~~~~~ INSTALLATION ~~~~~
+#  Add this file as /sbin/fence_aoemask directory and ensure the file has 
+#  simliar permissions as the other fence_* agents. 
+#
+# ~~~~~ CONFIGURATION ~~~~~
+#  This software operates on a single shelf / slot at a time. In order to 
+#  fence multiple shelf and slots the user should create multiple fences. 
+#
+#  e.g. a cluster.conf snippet.
+#  <clusternode name="node1-name" nodeid="1" votes="1">
+#     <fence>
+#        <method name="1">
+#           <device name="fence-e0.0" mac="56:f7:0c:da:e2:2f" />
+#           <device name="fence-e0.1" mac="56:f7:0c:da:e2:2f" />
+#        </method>
+#     </fence>
+#  </clusternode>
+#  <clusternode name="node2-name" nodeid="2" votes="1">
+#     <fence>
+#        <method name="1">
+#           <device name="fence-e0.0" mac="ec:fc:96:3b:69:5a" />
+#           <device name="fence-e0.1" mac="ec:fc:96:3b:69:5a" />
+#        </method>
+#     </fence>
+#  </clusternode>
+#  <fencedevices>
+#     <fencedevice agent="fence_aoemask" name="fence-e0.0" shelf="0" slot="0" interface="eth1"/>
+#     <fencedevice agent="fence_aoemask" name="fence-e0.1" shelf="0" slot="1" interface="eth1"/>
+#  </fencedevices>
+#
+# 
+#  Command line options:
+#     see man aoemask.8
+# 
+#  stdin options (passed from fenced):
+#     shelf=<num>                 |
+#     slot=<num>                  |
+#     interface=<if-name>         |
+#     mac=<mac-addr>              |
+#   [ action=(disable|enable) ]   | default is defined in $opt_action
+#   [ debug=<ignored-value> ]     |
+#   [ exclusive=<ignored-value> ] |
+#   [ list=<ignored-value> ]      |
+#   [ spoof=<mac-addr> ]          | Spoof behavior is to assume success always.
+#   [ timeout=<wait-seconds> ]    |
+#   [ verbose=<ignored-value> ]   | Option is used to increase logging of fence agent.
+# 
+
+# Define where you aoemask binary lives if it is not in the path.
+my $aoemask_prog="/usr/local/sbin/aoemask";
+my $opt_action = 'disable';        # Default fence action
+
+# Get the script name from $0 and strip directory names
+$_=$0;
+s/.*\///;
+my $proggy = $_;
+
+#
+#
+#
+my $aoemask=$aoemask_prog;
+my $opt_list = 1;
+my $opt_debug = 1;
+my $opt_verbose = 0;
+
+#
+sub _log
+{
+  ($msg)=@_;
+  print STDOUT $msg;
+}
+
+#
+sub exit_success
+{
+  my $rc = 0;
+  _log "$proggy returning $rc\n" if $opt_verbose;
+  exit $rc;
+}
+
+#
+sub exit_fail
+{
+  my $rc = 1;
+  _log "$proggy returning $rc\n" if $opt_verbose;
+  exit $rc;
+}
+
+#
+sub fail_usage
+{
+  ($msg)=@_;
+  _log $msg."\n" if $msg;
+  _log "Please use see usage.\n";
+  exit_fail();
+}
+
+#
+# If running command line, pass args as specified directly to aoemask
+if (@ARGV > 0) 
+{
+   # Check for min number of args, 5
+   if( @ARGV < 5 )
+   {
+      $aoemask .= " -h";
+   }
+   else
+   {
+      # stub in the args
+      foreach $i (0 .. $#ARGV) 
+      {
+        $aoemask .= " $ARGV[$i]";
+      }
+   }
+}
+else # Running via fenced, read the args in from stdin
+{
+   read_stdin_as_options();
+
+   # validate required args are present
+   fail_usage "No shelf specified." unless defined $opt_shelf;
+   fail_usage "No slot specified." unless defined $opt_slot;
+   fail_usage "No interface specified." unless defined $opt_interface;
+   fail_usage "No mac specified." unless defined $opt_mac;
+
+   $aoemask .= " -d" if defined $opt_debug;
+   $aoemask .= " -e" if defined $opt_exclusive;
+   $aoemask .= " -l" if defined $opt_list;
+   $aoemask .= " -s $opt_spoof" if defined $opt_spoof;
+   $aoemask .= " -w $opt_timeout" if defined $opt_timeout;
+   $aoemask .= " $opt_shelf $opt_slot $opt_interface";
+
+   $_=$opt_action;
+   if (/enable/) { $aoemask .= " +$opt_mac"; }
+   elsif (/disable/) { $aoemask .= " -$opt_mac"; }
+   else
+   {
+      # This would only be reached if in the cluster.conf one specified action=
+      fail_usage "Unknown action: $_";
+   }
+}
+
+_log "$proggy executing '$aoemask'\n" if $opt_verbose;
+
+#
+# aoemask (release 1) always returns an exit code of 1
+# if aoemask returned success or failure based on the response; could as follows:
+#
+#    system($aoemask);
+#    $rc = ($? >> 8) & 0xff;
+#    exit $rc;
+#
+
+# therefore, we must ensure the listing function is performed and grep'd
+open(FH, "$aoemask 2>&1 |");
+@lines = <FH>;
+close FH;
+
+#
+if ($opt_verbose) 
+{ 
+   _log "-- begin read response --\n";
+   foreach $line (@lines) { chop $line; _log "$line\n"; } 
+   _log "--  end  read response --\n";
+}
+
+#
+if ($opt_user_says_list)
+{
+   @x = grep { /$opt_shelf\.$opt_slot/ } @lines;
+   _log foreach @x;
+}
+
+#
+# If spoofing, nothing is returned, we assume success.
+exit_success() if $opt_spoof;
+
+# check output of aoemask for proper values depending on action.
+if( ($opt_action =~ /enable/) && (grep { /$opt_mac/ } @lines) )
+{
+   _log "action is to enable and found mac $opt_mac in list"."\n" if $opt_verbose;
+   exit_success();
+}
+elsif( ($opt_action =~ /disable/) && !(grep { /$opt_mac/ } @lines) )
+{
+   # here's a caveat .. which requires the debug flag to be on.
+   # if one is performing a disable, and specify an invalid slot / shelf / interface
+   # a grep for the mac will not show and therfore a return success.
+   #
+   # Workaround: need to check for an additional string, of:
+   #   read -1 bytes
+   #
+   if( ! grep { /read -1 bytes/} @lines )
+   {
+      # did not read that string; all is ok.
+      _log "action is to disable and did not find mac $opt_mac in list"."\n" if $opt_verbose;
+      exit_success();
+   }
+   else
+   {
+      _log "No bytes were read from '$aoemask'.\n";
+      _log "Check the slot|shelf|interface configs.\n"
+   }
+}
+
+# If none of the above matched, we failed.
+exit_fail();
+
+
+#
+# Parse the stdin options
+#
+sub read_stdin_as_options()
+{
+    my $opt;
+    my $line = 0;
+    while( defined($in = <>) )
+    {
+        $_ = $in;
+        chomp;
+
+        # strip leading and trailing whitespace
+        s/^\s*//;
+        s/\s*$//;
+
+        # skip any comments
+        next if /^#/;
+
+        $line+=1;
+        $opt=$_;
+        next unless $opt;
+
+        ($name,$val)=split /\s*=\s*/, $opt;
+
+        if ( $name eq "" )
+        {  
+           _log "parse error: illegal name in option $line\n";
+           exit_fail();
+        }
+
+        # shelf=<num>
+        # slot=<num>
+        # interface=<if-name>
+        # mac=<mac-addr>
+        # action=(disable|enable)
+        elsif ($name eq "shelf" ) 
+        {
+            $opt_shelf = $val;
+        } 
+        elsif ($name eq "slot" ) 
+        {
+            $opt_slot = $val;
+        } 
+        elsif ($name eq "interface" )
+        {
+            $opt_interface = $val;
+        }
+        elsif ($name eq "mac" ) 
+        {
+            $opt_mac = $val;
+            # pull out any ':' if configured as such. 
+            # (even though aoemask can handle it)
+            $opt_mac =~ s/://g;
+            # uppercase the alphas
+            $opt_mac =~ tr/a-z/A-Z/;
+        } 
+        elsif ($name eq "action") 
+        {
+            $opt_action = $val;
+        }
+
+        # debug=<ignored-value>
+        # exclusive=<ignored-value>
+        # list=<ignored-value>
+        # spoof=<mac-addr>
+        # timeout=<wait-seconds>
+        elsif ($name eq "debug" ) 
+        {
+            $opt_debug = 1;
+        } 
+        elsif ($name eq "exclusive" ) 
+        {
+            $opt_exclusive = 1;
+        } 
+        elsif ($name eq "list" ) 
+        {
+            $opt_list = 1;
+            $opt_user_says_list = 1;
+        } 
+        elsif ($name eq "spoof" ) 
+        {
+            $opt_spoof = $val;
+        } 
+        elsif ($name eq "timeout" ) 
+        {
+            $opt_timeout = $val;
+        } 
+
+        # verbose=<ignored-value>
+        elsif ($name eq "verbose" ) 
+        {
+            $opt_verbose = 1;
+        } 
+    }
+}
+