etch 3.12

data/Rakefile

@@ -0,0 +1,16 @@
+require 'rake/gempackagetask'
+spec = Gem::Specification.new do |s|
+  s.name	= 'etch'
+  s.summary	= 'Etch system configuration management client'
+  s.add_dependency('facter')
+  s.version = '3.12'
+  s.author = 'Jason Heiss'
+  s.email = 'etch-users@lists.sourceforge.net'
+  s.homepage = 'http://etch.sourceforge.net'
+  s.platform = Gem::Platform::RUBY
+  s.required_ruby_version = '>=1.8'
+  s.files	= Dir['**/**']
+  s.executables = [ 'etch', 'etch_to_trunk', 'etch_cron_wrapper' ]
+end
+Rake::GemPackageTask.new(spec).define
+

data/bin/etch

@@ -0,0 +1,101 @@
+#!/usr/bin/ruby -w
+##############################################################################
+# Etch configuration file management tool
+##############################################################################
+
+# Ensure we can find etchclient.rb
+$:.unshift(File.dirname(__FILE__))
+
+require 'optparse'
+require 'etchclient'
+
+#
+# Parse the command line options
+#
+
+options = {}
+@generateall = nil
+
+opts = OptionParser.new(nil, 24, '  ')
+opts.banner = 'Usage: etch [options] [/path/to/config/file | command] [otherfile ...]'
+opts.on('--generate-all', 'Request all configuration.') do |opt|
+  @generateall = opt
+end
+opts.on('--dry-run', '-n', 'Make no changes.') do |opt|
+  options[:dryrun] = opt
+end
+opts.on('--damp-run', "Perform a dry run but run 'setup' entries for files.") do |opt|
+  # Rather than sprinkle checks of two different variables throught the code, if
+  # we're asked to do a damp run then just set the dry run flag to a unique
+  # value.  Then we can just check for that specific value at the one place where
+  # the two modes differ:  enabling or disabling the execution of 'setup'
+  # entries.
+  options[:dryrun] = 'damp'
+end
+opts.on('--interactive', 'Prompt for confirmation before each change.') do |opt|
+  options[:interactive] = opt
+end
+opts.on('--full-file', 'Display full new file contents instead of a diff.') do |opt|
+  options[:fullfile] = opt
+end
+opts.on('--filename-only', 'Display filename of changed files instead of a diff.') do |opt|
+  options[:filenameonly] = opt
+end
+opts.on('--disable-force', 'Ignore the disable_etch file.  Use with caution.') do |opt|
+  options[:disableforce] = opt
+end
+opts.on('--lock-force', 'Force the removal of any existing lockfiles.') do |opt|
+  options[:lockforce] = opt
+end
+opts.on('--local DIR', 'Read configuration from local directory, not server.') do |opt|
+  options[:local] = opt
+end
+opts.on('--server SERVER', 'Point etch to an alternate server.') do |opt|
+  options[:server] = opt
+end
+opts.on('--tag TAG', 'Request a specific repository tag from the server.') do |opt|
+  options[:tag] = opt
+end
+opts.on('--key PRIVATE_KEY', 'Use this private key for signing messages to server.') do |opt|
+  options[:key] = opt
+end
+opts.on('--test-base TESTDIR', 'Use an alternate local working directory.') do |opt|
+  options[:varbase] = opt
+end
+opts.on('--debug', 'Print lots of messages about what etch is doing.') do |opt|
+  options[:debug] = opt
+end
+opts.on('--version', 'Show etch client version.') do |opt|
+  puts Etch::Client::VERSION
+  exit
+end
+opts.on_tail('-h', '--help', 'Show this message.') do
+  puts opts
+  exit
+end
+
+leftovers = opts.parse(ARGV)
+files = []
+commands = []
+leftovers.each do |leftover|
+  if leftover[0,1] == File::SEPARATOR
+    files << leftover
+  else
+    commands << leftover
+  end
+end
+
+# Display a usage message if the user did not specify a valid action to perform.
+if files.empty? && commands.empty? && !@generateall
+  puts opts
+  exit
+end
+
+#
+# Do stuff
+#
+
+etchclient = Etch::Client.new(options)
+status = etchclient.process_until_done(files, commands)
+exit status
+

data/bin/etch_cron_wrapper

@@ -0,0 +1,18 @@
+#!/usr/bin/ruby -w
+
+require 'socket'
+require 'digest/sha1'
+
+# Seed the random number generator with the hostname of this box so that
+# we get a consistent random number.  We want to run the registration at a
+# consistent time on each individual box, but randomize the runs across
+# the environment.
+srand(Digest::SHA1.hexdigest(Socket.gethostname)[0,7].hex)
+
+# Cron job is set to run every hour
+MAX_SLEEP = 60 * 60
+
+sleep(rand(MAX_SLEEP))
+
+exec('/usr/sbin/etch', '--generate-all')
+

data/bin/etch_to_trunk

@@ -0,0 +1,45 @@
+#!/usr/bin/ruby -w
+
+require 'nventory'
+
+@username = ENV['LOGNAME']
+
+if ARGV.length == 0
+  abort "Usage: #{File.basename($0)} <server1> [<server2> <server3>]"
+end
+
+# The etch servers run in UTC
+ENV['TZ'] = 'UTC'
+currentheadtag = Time.now.strftime('trunk-%Y%m%d-%H00')
+
+# Find the requested clients
+nvclient = NVentory::Client.new
+results = nvclient.get_objects('nodes', {}, { 'name' => ARGV }, {}, {})
+ARGV.each do |name|
+  if results.empty? && results[name].nil?
+    abort "No entry found for #{name}"
+  else
+    if !results[name]['config_mgmt_tag'].nil? &&
+       !results[name]['config_mgmt_tag'].empty?
+      puts "Changing #{name} from #{results[name]['config_mgmt_tag']} to #{currentheadtag}"
+    else
+      puts "Setting #{name} to #{currentheadtag}"
+    end
+  end
+end
+
+while true
+  print "Proceed? [y|n] "
+  response = $stdin.gets.chomp
+  if response == 'y'
+    break
+  elsif response == 'n'
+    exit
+  end
+end
+
+# Update the clients
+successcount = nvclient.set_objects('nodes', results, {'config_mgmt_tag' => currentheadtag}, @username)
+
+puts "#{File.basename($0)} operation succeeded for #{successcount} of #{results.size} nodes"
+

data/etc/ca.pem

@@ -0,0 +1 @@
+# Add your SSL certificate authority's cert(s) to this file

data/etc/dhparams

@@ -0,0 +1,9 @@
+-----BEGIN DH PARAMETERS-----
+MIIBCAKCAQEA3HySq1WdL67BCSRCJCZYMUIojAWAsvK63D3cOGk0wI9UeM/yeVhz
+jTswvHOVPZFKIBg1Aeo2eAEdPryDnmjVTgvLbuWkCPouQhBCVsQ1El9ZcXPix1rC
+tYsg4Kll1jgnwFoHf4xvjPnD/SqsASAiDxYlh4CFVyT1gLgSiUU0rIdudgO3agI5
+NgiyGOKwyHmNOOQSKA62M/JnoxcBDC7Nou3lqtHpR5yWsUz+csyk+hXZeUba97bm
+M8OB0PmfK4Vo6JpdO+yc8hjeYBoMsH7g/l3Gm1JqUxxctcY/OuJ+2nkXwsD66E3D
+yZCoiVd3u4OqAxNO/GG0iUmskjIvokMhUwIBAg==
+-----END DH PARAMETERS-----
+