puppet 0.9.2

data/bin/puppetd

@@ -0,0 +1,246 @@
+#!/usr/bin/ruby
+# == Synopsis 
+#
+# Retrieve the client configuration from the central puppet server and apply
+# it to the local host.
+#
+# Currently must be run out periodically, using cron or something similar.
+#
+# = Usage
+#
+#   puppetd  [-h|--help] [-V|--version] [-d|--debug] [-v|--verbose]
+#               [--ssldir <cert directory>] [-l|--logdest <syslog|<file>|console>]
+#               [--fqdn <host name>] [-p|--port <port>] [-s|--server <server>]
+#               [-w|--waitforcert <seconds>] [-c|--confdir <configuration directory>]
+#               [--vardir <var directory>] [--centrallogging]
+#
+# = Description
+#
+# This is the main puppet client.  Its job is to retrieve the local machine's
+# configuration from a remote server and apply it.  In order to successfully
+# communicate with the remote server, the client must have a certificate signed
+# by a certificate authority that the server trusts; the recommended method
+# for this, at the moment, is to run a certificate authority as part of the
+# puppet server (which is the default).  The client will connect and request
+# a signed certificate, and will continue connecting until it receives one.
+#
+# Once the client has a signed certificate, it will retrieve its configuration
+# and apply it.
+#
+# = Options
+#
+# centrallogging::
+#   Send all produced logs to the central puppetmasterd system.  This currently
+#   results in a significant slowdown, so it is not recommended.
+#
+# confdir::
+#   The configuration root directory, where +puppetmasterd+ defaults to looking
+#   for all of its configuration files.  Defaults to +/etc/puppet+.
+#
+# debug::
+#   Enable full debugging.
+#
+# fqdn::
+#   Set the fully-qualified domain name of the client.  This is only used for
+#   certificate purposes, but can be used to override the discovered hostname.
+#   If you need to use this flag, it is generally an indication of a setup problem.
+#
+# help::
+#   Print this help message
+#
+# logdest::
+#   Where to send messages.  Choose between syslog, the console, and a log file.
+#   Defaults to sending messages to /var/puppet/log/puppet.log, or the console
+#   if debugging or verbosity is enabled.
+#
+# port::
+#   The port to which to connect on the remote server.  Currently defaults to 8139.
+#
+# server::
+#   The remote server from whom to receive the local configuration.  Currently
+#   must also be the certificate authority.  Currently defaults to 'puppet'.
+#
+# ssldir::
+#   Where to store and find certificates.  Defaults to /etc/puppet/ssl.
+#
+# vardir::
+#   The variable-size directory, used for storing state.  Defaults to
+#   /var/puppet.
+#
+# verbose::
+#   Turn on verbose reporting.
+#
+# version::
+#   Print the puppet version number and exit.
+#
+# waitforcert::
+#   Have the process wait around, continuously retrying for the certificate
+#   each <argument> seconds.
+#
+# = Example
+#
+#   puppet -s puppet.domain.com
+#
+# = Author
+#
+# Luke Kanies
+#
+# = Copyright
+#
+# Copyright (c) 2005 Reductive Labs, LLC
+# Licensed under the GNU Public License
+
+
+require 'puppet'
+require 'puppet/server'
+require 'puppet/client'
+require 'getoptlong'
+
+$haveusage = true
+begin
+    require 'rdoc/usage'
+rescue LoadError
+    $haveusage = false
+end
+
+result = GetoptLong.new(
+	[ "--centrallogging",			GetoptLong::NO_ARGUMENT ],
+	[ "--confdir",	"-c",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--debug",	"-d",			GetoptLong::NO_ARGUMENT ],
+	[ "--fqdn",     "-f",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--help",		"-h",			GetoptLong::NO_ARGUMENT ],
+	[ "--logdest",	"-l",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--noop",	    "-n",			GetoptLong::NO_ARGUMENT ],
+	[ "--port",	    "-p",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--server",	"-s",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--ssldir",   				GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--verbose",	"-v",			GetoptLong::NO_ARGUMENT ],
+	[ "--version",	"-V",			GetoptLong::NO_ARGUMENT ],
+	[ "--vardir",	    			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--waitforcert",	"-w",		GetoptLong::REQUIRED_ARGUMENT ]
+)
+
+server = "puppet"
+fqdn = nil
+args = {}
+
+waitforcert = false
+
+centrallogs = false
+begin
+    result.each { |opt,arg|
+        case opt
+            when "--centrallogging"
+                centrallogs = true
+            when "--confdir"
+                Puppet[:puppetconf] = arg
+            when "--help"
+                if $haveusage
+                    RDoc::usage && exit
+                else
+                    puts "No help available unless you have RDoc::usage installed"
+                    exit
+                end
+            when "--version"
+                puts "%s" % Puppet.version
+                exit
+            when "--verbose"
+                Puppet[:loglevel] = :info
+                Puppet[:logdest] = :console
+            when "--debug"
+                Puppet[:loglevel] = :debug
+                Puppet[:logdest] = :console
+            when "--noop"
+                Puppet[:noop] = true
+            when "--ssldir"
+                Puppet[:ssldir] = arg
+            when "--fqdn"
+                fqdn = arg
+            when "--server"
+                server = arg
+            when "--port"
+                args[:Port] = arg
+            when "--logdest"
+                begin
+                    Puppet[:logdest] = arg
+                rescue => detail
+                    $stderr.puts detail.to_s
+                end
+            when "--vardir"
+                Puppet[:puppetvar] = arg
+            when "--waitforcert"
+                waitforcert = arg
+        end
+    }
+rescue GetoptLong::InvalidOption => detail
+    $stderr.puts "Try '#{$0} --help'"
+    #$stderr.puts detail
+    # FIXME RDoc::usage doesn't seem to work
+    #if $haveusage
+    #    RDoc::usage(1,'usage')
+    #end
+    exit(1)
+end
+
+bg = false
+
+if Puppet[:loglevel] == :debug or Puppet[:loglevel] == :info
+    args[:Daemonize] = false
+else
+    args[:Daemonize] = true
+end
+
+args[:Server] = server
+if fqdn
+    args[:FQDN] = fqdn
+end
+
+if centrallogs
+    logdest = args[:Server]
+
+    if args.include?(:Port)
+        logdest += ":" + args[:Port]
+    end
+    Puppet[:logdest] = logdest
+end
+
+
+client = Puppet::Client::MasterClient.new(args)
+
+
+unless client.readcert
+    if waitforcert
+        begin
+            while ! client.requestcert do
+                Puppet.notice "Did not receive certificate"
+                sleep waitforcert
+            end
+        rescue => detail
+            Puppet.err "Could not request certificate: %s" % detail.to_s
+            exit(23)
+        end
+    else
+        unless client.requestcert
+            Puppet.notice "No certificates; exiting"
+            exit(1)
+        end
+    end
+end
+
+if bg
+    client.daemonize
+end
+
+# now set up the network client with the certs, now that we have them
+client.setcerts
+
+# and then retrieve and apply our configuration
+begin
+    client.getconfig
+    client.apply
+rescue => detail
+    Puppet.err detail.to_s
+    exit(13)
+end
+
+# $Id: puppetd 733 2005-10-28 21:28:59Z luke $

data/bin/puppetdoc

@@ -0,0 +1,184 @@
+#!/usr/bin/ruby
+
+#
+# = Synopsis
+#
+# Generate a reference for all Puppet types.  Largely meant for internal Reductive
+# Labs use.
+#
+# = Usage
+#
+#   puppetdoc [-h|--help]
+#
+# = Description
+#
+# This command generates a restructured-text document describing all installed
+# Puppet types.  It is largely meant for internal use and is used to generate
+# the reference document available on the Reductive Labs web site.
+#
+# = Options
+#
+# help::
+#   Print this help message
+#
+# = Example
+#
+#   $ puppetdoc > /tmp/reference.rst
+#
+# = Author
+#
+# Luke Kanies
+#
+# = Copyright
+#
+# Copyright (c) 2005 Reductive Labs, LLC
+# Licensed under the GNU Public License
+
+require 'puppet'
+require 'getoptlong'
+
+$haveusage = true
+
+begin
+    require 'rdoc/usage'
+rescue LoadError
+    $haveusage = false
+end
+
+def tab(num)
+    return $tab * num
+end
+
+result = GetoptLong.new(
+	[ "--help",		"-h",			GetoptLong::NO_ARGUMENT ]
+)
+
+debug = false
+
+$tab = "   "
+
+begin
+    result.each { |opt,arg|
+        case opt
+            when "--help"
+                if $haveusage
+                    RDoc::usage && exit
+                else
+                    puts "No help available unless you have RDoc::usage installed"
+                    exit
+                end
+        end
+    }
+rescue GetoptLong::InvalidOption => detail
+    $stderr.puts "Try '#{$0} --help'"
+    #if $haveusage
+    #    RDoc::usage_no_exit('usage')
+    #end
+    exit(1)
+end
+
+puts %{
+==============
+Type Reference
+==============
+
+}
+
+types = {}
+Puppet::Type.eachtype { |type|
+    types[type.name] = type
+}
+puts %{
+---------------
+Meta-Parameters
+---------------
+
+}
+params = []
+Puppet::Type.eachmetaparam { |param|
+    params << param
+}
+
+params.sort { |a,b|
+    a.to_s <=> b.to_s
+}.each { |param|
+    puts "- **" + param.to_s + "**"
+    puts tab(1) + Puppet::Type.metaparamdoc(param).gsub(/\n\s*/,' ')
+}
+
+puts %{
+-----
+Types
+-----
+
+- *namevar* is the parameter used to uniquely identify a type instance.
+  This is the parameter that gets assigned when a string is provided before
+  the colon in a type declaration.
+- *parameters* determine the specific configuration of the instance.
+
+
+}
+
+types.sort { |a,b|
+    a.to_s <=> b.to_s
+}.each { |name,type|
+    next if name == :puppet
+    next if name == :component
+
+    puts "
+
+----------------
+
+"
+
+    puts "
+%s
+%s" % [name, "=" * (name.to_s.length + 4)]
+    #String.new('n%s\n') % name.to_s
+    #puts "**" + type.doc.gsub(/\n\s*/, ' ') + "**\n\n"
+    puts type.doc.gsub(/\n\s*/, ' ') + "\n\n"
+    type.buildstatehash
+    #puts tab(1) + "* namevar: %s" % type.namevar
+    docs = {}
+    #puts "%s States\n'''''''''''''''''''''''''''''''" % name.to_s.capitalize
+    type.validstates.sort { |a,b|
+        a.to_s <=> b.to_s
+    }.reject { |sname|
+        state = type.statebyname(sname)
+        state.nodoc
+    }.each { |sname|
+        state = type.statebyname(sname)
+        docs[sname] = state.doc.gsub(/\n\s*/,' ')
+        #puts "- **%s**" % sname
+        #puts tab(1) + state.doc.gsub(/\n\s*/,' ')
+    }
+
+    puts "\n%s Parameters\n''''''''''''''''''''''''''''''" % name.to_s.capitalize
+    type.parameters.sort { |a,b|
+        a.to_s <=> b.to_s
+    }.each { |name,param|
+        docs[name] = type.paramdoc(name).gsub(/\n\s*/,' ')
+    }
+
+    docs.sort { |a, b|
+        a[0].to_s <=> b[0].to_s
+    }.each { |name, doc|
+        print "- **%s**" % name
+        if type.namevar == name and name != :name
+            puts " (*namevar*)"
+        else
+            puts ""
+        end
+        puts tab(1) + doc
+    }
+    puts "\n"
+}
+
+puts "
+
+----------------
+
+"
+
+puts "\n*This page autogenerated on %s*" % Time.now
+# $Id: puppetdoc 742 2005-11-16 17:12:11Z luke $

data/bin/puppetmasterd

@@ -0,0 +1,258 @@
+#!/usr/bin/ruby
+
+#
+# = Synopsis
+#
+# The central puppet server.  Can also function as a certificate authority.
+#
+# = Usage
+#
+#   puppetmasterd [-h|--help] [-d|--debug] [-v|--verbose] [-V|--version]
+#               [-l|--logdest <syslog|console|<file>>] [--httplog <file>]
+#               [-m|--manifest <site manifest>] [--noca] [-p|--port <port>]
+#               [--parseonly] [-s|--ssldir <cert directory>]
+#               [-c|--confdir <configuration directory>] [--vardir <var dir>]
+#
+# = Description
+#
+# This is the standalone puppet execution script; use it to execute
+# individual scripts that you write.  If you need to execute site-wide
+# scripts, use +puppetd+ and +puppetmasterd+.
+#
+# = Options
+#
+# autosign::
+#   Enable autosign (which presents a potential security problem).  If enabled,
+#   refers to the autosign configuration file at /etc/puppet/autosign.conf to
+#   determine which hosts should have their certificates signed.
+#
+# confdir::
+#   The configuration root directory, where +puppetmasterd+ defaults to looking
+#   for all of its configuration files.  Defaults to +/etc/puppet+.
+#
+# debug::
+#   Enable full debugging.  Causes the daemon not to go into the background.
+#
+# fsconfig::
+#   Where to find the fileserver configuration file.  Defaults to
+#   /etc/puppet/fileserver.conf.  If the fileserver config file exists,
+#   the puppetmasterd daemon will automatically also become a fileserver.
+#
+# help::
+#   Print this help message.
+#
+# httplog::
+#   Where to send http logs (which are currently separate from Puppet logs).
+#   Defaults to /var/puppet/log/http.log.
+#
+# logdest::
+#   Where to send messages.  Choose between syslog, the console, and a log file.
+#   Defaults to sending messages to /var/puppet/log/puppet.log, or the console
+#   if debugging or verbosity is enabled.
+#
+# manifest::
+#   The central site manifest to use for providing clients with their individual
+#   configurations.  Defaults to /etc/puppet/manifests/site.pp.
+#
+# noca::
+#   Do not function as a certificate authority.
+#
+# nonodes::
+#   Do not use individual node designations; each node will receive the result
+#   of evaluating the entire configuration.
+#
+# parseonly::
+#   Just parse the central manifest to verify it is syntactically correct.
+#
+# port::
+#   The port on which to listen.  Defaults to 8139.
+#
+# ssldir::
+#   The directory in which to store certificates.  Defaults to /etc/puppet/ssl.
+#
+# vardir::
+#   The variable-size directory, used for storing state.  Defaults to
+#   /var/puppet.
+#
+# verbose::
+#   Enable verbosity.  Causes the daemon not to go into the background.
+#
+# version::
+#   Print the puppet version number and exit.
+#
+# = Example
+#
+#   puppetmasterd
+#
+# = Author
+#
+# Luke Kanies
+#
+# = Copyright
+#
+# Copyright (c) 2005 Reductive Labs, LLC
+# Licensed under the GNU Public License
+
+require 'getoptlong'
+require 'puppet'
+require 'puppet/server'
+
+result = GetoptLong.new(
+	[ "--autosign", "-a",			GetoptLong::NO_ARGUMENT ],
+	[ "--confdir",	"-c",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--debug",	"-d",			GetoptLong::NO_ARGUMENT ],
+	[ "--fsconfig",	"-f",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--help",		"-h",			GetoptLong::NO_ARGUMENT ],
+	[ "--httplog",					GetoptLong::NO_ARGUMENT ],
+	[ "--logdest",	"-l",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--manifest",	"-m",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--noca",         			GetoptLong::NO_ARGUMENT ],
+	[ "--nonodes",         			GetoptLong::NO_ARGUMENT ],
+	[ "--parseonly",   			    GetoptLong::NO_ARGUMENT ],
+	[ "--port",	    "-p",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--ssldir",	"-s",			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--vardir",	    			GetoptLong::REQUIRED_ARGUMENT ],
+	[ "--verbose",	"-v",			GetoptLong::NO_ARGUMENT ],
+    [ "--version",  "-V",           GetoptLong::NO_ARGUMENT ]
+)
+
+$haveusage = true
+
+begin
+    require 'rdoc/usage'
+rescue LoadError
+    $haveusage = false
+end
+
+haveca = true
+master = {}
+ca = {}
+fs = {}
+args = {}
+
+parseonly = false
+
+begin
+    result.each { |opt,arg|
+        case opt
+            when "--autosign"
+                ca[:autosign] = Puppet[:autosign]
+            when "--confdir"
+                Puppet[:puppetconf] = arg
+            when "--debug"
+                Puppet[:debug] = true
+                Puppet[:logdest] = :console
+            when "--fsconfig"
+                unless FileTest.exists?(arg)
+                    $stderr.puts "File server configuration file %s does not exist" %
+                        arg
+                    exit(23)
+                end
+                fs[:Config] = arg
+            when "--help"
+                if $haveusage
+                    RDoc::usage && exit
+                else
+                    puts "No help available unless you have RDoc::usage installed"
+                    exit
+                end
+            when "--httplog"
+                args[:AccessLog] = arg
+            when "--manifest"
+                master[:File] = arg
+            when "--noca"
+                haveca = false
+            when "--nonodes"
+                master[:UseNodes] = false
+            when "--parseonly"
+                parseonly = true
+            when "--port"
+                args[:Port] = arg
+            when "--ssldir"
+                Puppet[:ssldir] = arg
+            when "--logdest"
+                begin
+                    Puppet[:logdest] = arg
+                rescue => detail
+                    $stderr.puts detail.to_s
+                end
+            when "--vardir"
+                Puppet[:puppetvar] = arg
+            when "--version"
+                puts "%s" % Puppet.version
+                exit
+            when "--verbose"
+                Puppet[:loglevel] = :info
+                Puppet[:logdest] = :console
+            else
+                $stderr.puts "Invalid option '#{opt}'"
+                exit(1)
+        end
+    }
+rescue GetoptLong::InvalidOption => detail
+    $stderr.puts "Try '#{$0} --help'"
+    #$stderr.puts detail
+    # FIXME RDoc::usage doesn't seem to work
+    #if $haveusage
+    #    RDoc::usage(1,'usage')
+    #end
+    exit(1)
+end
+
+if Puppet[:loglevel] == :debug or Puppet[:loglevel] == :info or parseonly
+    args[:Daemonize] = false
+else
+    args[:Daemonize] = true
+end
+
+handlers = {
+    :Master => master,
+    :Status => {},
+    :Logger => {}
+}
+
+
+if haveca
+    handlers[:CA] = ca
+end
+
+unless fs.include?(:Config)
+    if File.exists?(Puppet[:fileserverconfig])
+        fs[:Config] = Puppet[:fileserverconfig]
+    #else
+    #    Puppet.notice "File server config %s does not exist; skipping file serving" %
+    #        Puppet[:fileserverconfig]
+    end
+end
+
+if fs.include?(:Config)
+    handlers[:FileServer] = fs
+end
+
+args[:Handlers] = handlers
+
+begin
+    # use the default, um, everything
+    #server = Puppet::Server.new(:CA => ca)
+    server = Puppet::Server.new(args)
+rescue => detail
+    $stderr.puts detail
+    exit(1)
+end
+
+if parseonly
+    # we would have already exited if the file weren't syntactically correct
+    exit(0)
+end
+
+trap(:INT) {
+    server.shutdown
+}
+begin
+    server.start
+rescue => detail
+    Puppet.err "Could not start puppetmaster: %s" % detail
+    exit(1)
+end
+
+# $Id: puppetmasterd 732 2005-10-28 05:39:59Z luke $