simonmenke-capricorn 0.2.00

data/lib/capricorn/server/daemon.rb

@@ -0,0 +1,88 @@
+
+module Capricorn
+  class Server
+    
+    module Daemon # :nodoc:
+      
+      def self.included(base)
+        base.extend Capricorn::Server::Daemon::ClassMethods
+      end
+      
+      # all a daemon needs to run
+      module ClassMethods
+        
+        # construct a Capricorn uri from a DRb uri
+        def construct_uri(uri)
+          uri        = URI.parse(uri)
+          uri.scheme = ( Capricorn.system.use_ssl? ? 'ssl+capricorn' : 'capricorn')
+          uri.to_s
+        end
+        
+        # stop the server
+        def stop
+          Capricorn.client.stop_server
+        end
+        
+        # start the server
+        def start
+          start_with_failsafe
+        end
+        
+        # start the failsafe runner.
+        def start_with_failsafe
+          $master = true
+          stop_server = false
+          wait_before_start = 0
+          retries = 0
+          until stop_server
+            if wait_before_start > 0
+              sleep(wait_before_start)
+              wait_before_start = 0
+            end
+            
+            pid = Process.fork { self.run_server }
+            return unless pid
+            Process.waitpid(pid, 0)
+            case $?.exitstatus
+            when Capricorn::STOP_STATUS
+              stop_server = true
+              retries     = 0
+            when Capricorn::RESTART_STATUS
+              wait_before_start = 2
+              retries     = 0
+            when Capricorn::RELOAD_STATUS
+              stop_server = true
+              retries     = 0
+              Capricorn::Daemon::PidFile.destroy
+              Capricorn.system.run %{#{Capricorn::BIN_PATH} #{ORIGINAL_ARGV.join(' ')}}
+            else
+              retries += 1
+              stop_server = true if retries >= 3
+            end
+          end
+        end
+        
+        # start the actual DRb server
+        def run_server
+          $master = false
+          Dir.chdir(Capricorn.system.root)
+          
+          Capricorn.log "Server started"
+          uri = "druby://#{Capricorn.system.server_hostname}:#{Capricorn.system.server_port}"
+          DRb.start_service uri, self.proxy, self.options_for_server
+          Capricorn.log "listening at #{self.construct_uri(uri)}"
+          make_client_cert_public!
+          
+          at_exit do
+            Capricorn.system.queue.stop!
+            Capricorn.log "Server stopped"
+          end
+          
+          DRb.thread.join
+          exit($exitstatus || Capricorn::STOP_STATUS)
+        end
+        
+      end
+    end
+  end
+end

data/lib/capricorn/server/proxy.rb

@@ -0,0 +1,25 @@
+
+module Capricorn
+  class Server
+    # the proxy object hides all the server internals from the clients.
+    class Proxy
+      
+      def initialize(server)
+        @server = server
+      end
+      
+      def self.allow(*methods)
+        methods.each do |method|
+          module_eval %{ def #{method}(*args,&block) ; @server.#{method}(*args,&block) ; end }
+        end
+      end
+      
+      allow :stop_server, :restart_server, :reload_server, :server_version, :update_server, :install_satellite, :uninstall_satellite, :install_engine, :update_engine, :uninstall_engine, :satellites, :queued_jobs, :cancel_job, :immediate_job
+      
+      class << self
+        undef_method :allow
+      end
+      
+    end
+  end
+end

data/lib/capricorn/server/security.rb

@@ -0,0 +1,113 @@
+
+module Capricorn
+  class Server
+    module Security # :nodoc:
+      
+      def self.included(base)
+        base.extend Capricorn::Server::Security::ClassMethods
+      end
+      
+      module ClassMethods
+        
+        def options_for_server
+          
+          config = {}
+          if Capricorn.system.use_ssl?
+            install_quick_cert!
+            dump_quick_cert_config!
+            run_quick_cert!
+            
+            keypair = Capricorn.system.path('quick_cert', 'capricorn', 'capricorn_keypair.pem')
+            cert    = Capricorn.system.path('quick_cert', 'capricorn', 'cert_capricorn.pem')
+            
+            config = {
+              :SSLPrivateKey  => OpenSSL::PKey::RSA.new(File.read(keypair)),
+              :SSLCertificate => OpenSSL::X509::Certificate.new(File.read(cert)),
+              :SSLVerifyMode  => OpenSSL::SSL::VERIFY_PEER | OpenSSL::SSL::VERIFY_FAIL_IF_NO_PEER_CERT,
+              :SSLCACertificateFile => Capricorn.system.path('quick_cert', 'CA', 'cacert.pem')
+            }
+          end
+          
+          config
+        end
+        
+        def install_quick_cert!
+          unless Capricorn.system.find_bin('QuickCert')
+            FileUtils.mkdir_p('/tmp/quick_cert')
+            File.chmod(0700, '/tmp/quick_cert')
+            
+            Dir.chdir('/tmp/quick_cert') do
+              Capricorn.system.run "curl -O #{Capricorn::QUICK_CERT}"
+              Capricorn.system.run "tar xzf QuickCert-1.0.2.tar.gz"
+              
+              Dir.chdir('/tmp/quick_cert/QuickCert-1.0.2') do
+                Capricorn.system.run "#{Capricorn.system.ruby_path} ./setup.rb config"
+                Capricorn.system.run "#{Capricorn.system.ruby_path} ./setup.rb setup"
+                Capricorn.system.run "#{Capricorn.system.ruby_path} ./setup.rb install"
+              end
+            end
+            
+            FileUtils.rm_rf('/tmp/quick_cert')
+          end
+        end
+        
+        def dump_quick_cert_config!
+          return if File.file? Capricorn.system.path('quick_cert', 'qc_config')
+          
+          config = %{
+full_hostname = `hostname`.strip
+domainname = full_hostname.split('.')[1..-1].join('.')
+hostname = full_hostname.split('.')[0]
+
+CA[:hostname] = hostname
+CA[:domainname] = domainname
+CA[:CA_dir] = File.join Dir.pwd, "CA"
+CA[:password] = '#{rand(100_000)}'
+
+CERTS << {
+:type => 'server',
+:hostname => 'capricorn',
+# :password => '#{rand(100_000)}',
+}
+
+CERTS << {
+:type => 'client',
+:user => 'core',
+:email => 'core@mrhenry.be',
+}
+}
+          FileUtils.mkdir_p(Capricorn.system.path('quick_cert'))
+          File.chmod(0700, Capricorn.system.path('quick_cert'))
+          File.open(Capricorn.system.path('quick_cert', 'qc_config'), 'w+') { |f| f.write config }
+        end
+        
+        def run_quick_cert!
+          return if File.directory? Capricorn.system.path('quick_cert', 'CA')
+          
+          Dir.chdir(Capricorn.system.path('quick_cert')) do
+            Capricorn.system.run Capricorn.system.find_bin('QuickCert')
+          end
+        end
+        
+        def make_client_cert_public!
+          token = nil
+          if Capricorn.system.use_ssl?
+            token = Capricorn::Client::AuthToken.new(
+              :target_uri => self.construct_uri(DRb.uri),
+              :verify_mode => OpenSSL::SSL::VERIFY_PEER,
+              :private_key_data => File.read(Capricorn.system.path('quick_cert', 'core', 'core_keypair.pem')),
+              :certificate_data => File.read(Capricorn.system.path('quick_cert', 'core', 'cert_core.pem')),
+              :ca_certificate_data => File.read(Capricorn.system.path('quick_cert', 'CA', 'cacert.pem'))
+            )
+          else
+            token = Capricorn::Client::AuthToken.new(
+              :target_uri => self.construct_uri(DRb.uri))
+          end
+          token.dump_file(Capricorn.system.path('core.token'))
+          FileUtils.chmod_R(0775, Capricorn.system.path('core.token'))
+        end
+        
+      end
+    end
+  end
+end

data/lib/capricorn/server.rb

@@ -0,0 +1,113 @@
+
+module Capricorn
+  
+  # the Server is supposed to be a simple DRb interface to the System.
+  class Server < Capricorn::Daemon::Base
+    include DRbUndumped
+    
+    autoload :Proxy,    File.dirname(__FILE__)+'/server/proxy'
+    autoload :Daemon,   File.dirname(__FILE__)+'/server/daemon'
+    autoload :Security, File.dirname(__FILE__)+'/server/security'
+    
+    include Capricorn::Server::Daemon
+    include Capricorn::Server::Security
+    
+    def self.shared
+      @shared ||= new
+    end
+    
+    def self.proxy
+      @proxy ||= Capricorn::Server::Proxy.new(self.shared)
+    end
+    
+    def stop_server
+      Capricorn.log "stopping the server..."
+      $exitstatus = Capricorn::STOP_STATUS
+      DRb.stop_service
+    end
+    
+    def restart_server
+      Capricorn.log "restarting the server..."
+      $exitstatus = Capricorn::RESTART_STATUS
+      DRb.stop_service
+    end
+    
+    def reload_server
+      Capricorn.log "reloading the server..."
+      $exitstatus = Capricorn::RELOAD_STATUS
+      DRb.stop_service
+    end
+    
+    def server_version
+      Capricorn.version
+    end
+    
+    def update_server
+      if Capricorn.system.gem_update('capricorn', :user => 'root')
+        reload_server
+      end
+    end
+    
+    def install_satellite(domain)
+      Capricorn.system.install_satellite(domain)
+    end
+    
+    def uninstall_satellite(domain)
+      satellite = Capricorn.system.find_satellite(domain)
+      if satellite
+        Capricorn.system.uninstall_satellite(satellite)
+      else
+        Capricorn.log "Satellite not found (#{domain})"
+      end
+    end
+    
+    def install_engine(domain, name, options={})
+      satellite = Capricorn.system.find_satellite(domain)
+      if satellite
+        Capricorn.system.install_engine(satellite, name, options)
+      else
+        Capricorn.log "Satellite not found (#{domain})"
+      end
+    end
+    
+    def update_engine(domain, name, options={})
+      satellite = Capricorn.system.find_satellite(domain)
+      if satellite
+        Capricorn.system.update_engine(satellite, name, options)
+      else
+        Capricorn.log "Satellite not found (#{domain})"
+      end
+    end
+    
+    def uninstall_engine(domain, name)
+      satellite = Capricorn.system.find_satellite(domain)
+      if satellite
+        Capricorn.system.uninstall_engine(satellite, name)
+      else
+        Capricorn.log "Satellite not found (#{domain})"
+      end
+    end
+    
+    def satellites
+      Capricorn.system.satellites
+    end
+    
+    def queued_jobs
+      queued_jobs = []
+      Capricorn.system.queue.each do |job, canceled, immediated|
+        job_delay = job.delay
+        queued_jobs.push([job.id, job.name, canceled, immediated, job.running?, job.waiting?, job_delay])
+      end
+      queued_jobs
+    end
+    
+    def cancel_job(id)
+      Capricorn.system.queue.cancel(id)
+    end
+    
+    def immediate_job(id)
+      Capricorn.system.queue.immediate(id)
+    end
+    
+  end
+end

data/lib/capricorn/system/config.rb

@@ -0,0 +1,49 @@
+
+module Capricorn
+  class System
+    module Config
+      
+      def use_development!
+        environment { 'development' }
+      end
+      
+      def development?
+        environment == 'development'
+      end
+      
+      def use_production!
+        environment { 'production' }
+      end
+      
+      def production?
+        environment == 'production'
+      end
+      
+      def environment(&block)
+        option(:environment, block) { |s,v| v or 'production' }
+      end
+      
+      def use_ssl!
+        option(:use_ssl, lambda { true })
+      end
+      
+      def use_ssl?
+        option(:use_ssl, nil)
+      end
+      
+      def bind(hostname=nil, port=nil)
+        server_hostname { hostname }
+        server_port     { port }
+      end
+      
+      def server_hostname(&block)
+        option(:server_hostname, block) { |v| v or 'localhost' }
+      end
+      
+      def server_port(&block)
+        option(:server_port, block) { |v| v or 5000 }
+      end
+      
+    end
+  end
+end

data/lib/capricorn/system/helper.rb

@@ -0,0 +1,21 @@
+
+module Capricorn
+  class System
+    module Helper
+      
+      def use(actor)
+        actor_klass  = (Capricorn::Actors.const_get(actor) rescue nil)
+        raise "Actor not found! (#{actor})" unless actor_klass
+        
+        actor_helper = (actor_klass.const_get('Helper') rescue nil)
+        extend actor_helper if actor_helper
+        
+        actor_config = (actor_klass.const_get('Config') rescue nil)
+        extend actor_config if actor_config
+        
+        @actors.push(actor_klass)
+      end
+      
+    end
+  end
+end

data/lib/capricorn/system/options.rb

@@ -0,0 +1,79 @@
+
+module Capricorn
+  class System
+    module Options
+      
+      def option(name, proc, &handler)
+        if proc
+          @option_descriptors.push({
+            :name => name.to_sym,
+            :proc => proc,
+            :handler => handler
+          })
+        else
+          if handler && !@options.key?(name.to_sym)
+            @options[name.to_sym] = handler.call(nil)
+          end
+          @options[name.to_sym]
+        end
+      end
+      
+      def satellite_option(name, proc, &handler)
+        if proc
+          @satellite_option_descriptors.push({
+            :name => name.to_sym,
+            :proc => proc,
+            :handler => handler
+          })
+        else
+          if handler && !@satellite_options.key?(name.to_sym)
+            @satellite_options[name.to_sym] = handler.call(@current_satellite, nil)
+          end
+          @satellite_options[name.to_sym]
+        end
+      end
+      
+      def set_satellite_option(name, value)
+        @satellite_options[name.to_sym] = value
+      end
+      
+      def resolve_options_with(satellite)
+        @current_satellite = satellite
+        resolve_options!
+        
+        result = yield
+        
+        @current_satellite = nil
+        resolve_options!
+        
+        result
+      end
+      
+      def resolve_options!
+        resolve_options_for_system!
+        resolve_options_for_satellite!
+      end
+      
+      def resolve_options_for_system!
+        @options = {}
+        @option_descriptors.each do |option|
+          value = option[:proc].call           if option[:proc]
+          value = option[:handler].call(value) if option[:handler]
+          @options[option[:name]] = value
+        end
+      end
+      
+      def resolve_options_for_satellite!
+        @satellite_options = {}
+        if @current_satellite
+          @satellite_option_descriptors.each do |option|
+            value = option[:proc].call(@current_satellite)           if option[:proc]
+            value = option[:handler].call(@current_satellite, value) if option[:handler]
+            @satellite_options[option[:name]] = value
+          end
+        end
+      end
+      
+    end
+  end
+end

data/lib/capricorn/system/process_user.rb

@@ -0,0 +1,73 @@
+
+module Capricorn
+  class System
+    module ProcessUser
+      
+      # get the uid for a user name
+      def get_uid(username)
+        return username if Numeric === username
+        Etc.getpwnam(username).uid
+      end
+      
+      # get the gid for a group name
+      def get_gid(groupname)
+        return groupname if Numeric === groupname
+        Etc.getgrnam(groupname).gid
+      end
+      
+      # get the user name for a uid (or the current process user)
+      def get_user_name(uid=Process.uid)
+        return uid if String === uid
+        Etc.getpwuid(uid).name
+      end
+      
+      # get the group name for a gid (or the current process group)
+      def get_group_name(gid=Process.gid)
+        return gid if String === gid
+        Etc.getgrgid(gid).name
+      end
+      
+      # is this process running as this user?
+      def is_user(username)
+        uid = get_uid(username)
+        Process.euid == uid and Process.uid == uid
+      end
+      
+      # is this process running as this group?
+      def is_group(groupname)
+        gid = get_gid(groupname)
+        Process.egid == gid and Process.gid == gid
+      end
+      
+      # switch this user to the specified user and group
+      def switch_to_user(username, groupname=nil)
+        different_uid = (Process.euid != get_uid(username))
+        different_gid = (Process.egid != get_gid(groupname)) if groupname
+        
+        if groupname and different_gid
+          Process.gid = Process.egid = get_gid(groupname)
+        end
+        
+        if different_uid
+          Process.uid = Process.euid = get_uid(username)
+        end
+      end
+      
+      # run the passed block as the specified user and group
+      def as_user(username, groupname=nil, &block)
+        euid = Process.euid
+        egid = Process.egid
+        
+        value = nil
+        begin
+          switch_to_user(username, groupname)
+          value = block.call
+        ensure
+          switch_to_user(euid, egid)
+        end
+        value
+      end
+      
+    end
+  end
+end

data/lib/capricorn/system/satellites.rb

@@ -0,0 +1,44 @@
+
+module Capricorn
+  class System
+    module Satellites
+      
+      def satellites_hash
+        @satellites || load_satellites
+      end
+      
+      def satellites
+        satellites_hash.values
+      end
+      
+      def find_satellite(domain)
+        satellites_hash[domain]
+      end
+      
+      def save_satellite!(satellite)
+        satellites_hash[satellite.domain] = satellite
+        satellite.dump_file(self.path('satellites', "#{satellite.domain}.yml"))
+      end
+      
+      def destroy_satellite!(satellite)
+        satellites_hash.delete(satellite.domain)
+        FileUtils.rm_f(self.path('satellites', "#{satellite.domain}.yml"))
+      end
+      
+      private
+      
+      def load_satellites
+        @satellites = {}
+        
+        FileUtils.mkdir_p(self.path('satellites'))
+        Dir.glob(self.path('satellites', '*.yml')).each do |yml|
+          satellite = Capricorn::Satellite.load_file(yml)
+          @satellites[satellite.domain] = satellite
+        end
+        
+        @satellites
+      end
+      
+    end
+  end
+end

data/lib/capricorn/system/shell.rb

@@ -0,0 +1,80 @@
+
+module Capricorn
+  class System
+    module Shell
+      
+      def run(cmd)
+        as_user 'root', 'wheel' do
+          Capricorn.log "[#{get_user_name}]> "+cmd
+          cmd = "bash -l -c #{cmd.inspect}"
+          output = %x[#{cmd} 2>&1]
+          Capricorn.log output if development?
+          output
+        end
+      end
+      
+      def user_run(username, cmd)
+        as_user 'root', 'wheel' do
+          Capricorn.log "[#{username}]> "+cmd
+          cmd = "su #{username} -l -c #{cmd.inspect}"
+          output = %x[#{cmd} 2>&1]
+          Capricorn.log output if development?
+          output
+        end
+      end
+      
+      def popen(cmd, *args, &block)
+        as_user 'root', 'wheel' do
+          Capricorn.log cmd
+          cmd = "bash -l -c #{cmd.inspect}"
+          IO.popen(cmd, *args, &block)
+        end
+      end
+      
+      def user_popen(username, cmd, *args, &block)
+        as_user 'root', 'wheel' do
+          Capricorn.log cmd
+          cmd = "su #{username} -l -c #{cmd.inspect}"
+          IO.popen(cmd, *args, &block)
+        end
+      end
+      
+      def find_bin(*names)
+        names = names.flatten.compact.uniq
+        unless names.empty?
+          names = names.join(' ')
+          popen("which #{names}", 'r') do |f|
+            
+            until f.eof?
+              path = f.readline
+              next unless path
+              path = path.strip
+              next if path =~ /(Last login)|(You have new)|(Using ruby)/
+              return path
+            end
+            
+          end
+        end
+      end
+      
+      def user_find_bin(username, *names)
+        names = names.flatten.compact.uniq
+        unless names.empty?
+          names = names.join(' ')
+          user_popen(username, "which #{names}", 'r') do |f|
+            
+            until f.eof?
+              path = f.readline
+              next unless path
+              path = path.strip
+              next if path =~ /(Last login)|(You have new)|(Using ruby)/
+              return path
+            end
+            
+          end
+        end
+      end
+      
+    end
+  end
+end