1 // Copyright (C) The Arvados Authors. All rights reserved.
3 // SPDX-License-Identifier: AGPL-3.0
24 "git.arvados.org/arvados.git/lib/cmd"
25 "git.arvados.org/arvados.git/sdk/go/ctxlog"
29 var Command cmd.Handler = &installCommand{}
31 const devtestDatabasePassword = "insecure_arvados_test"
33 type installCommand struct {
39 func (inst *installCommand) RunCommand(prog string, args []string, stdin io.Reader, stdout, stderr io.Writer) int {
40 logger := ctxlog.New(stderr, "text", "info")
41 ctx := ctxlog.Context(context.Background(), logger)
42 ctx, cancel := context.WithCancel(ctx)
48 logger.WithError(err).Info("exiting")
52 flags := flag.NewFlagSet(prog, flag.ContinueOnError)
53 flags.SetOutput(stderr)
54 versionFlag := flags.Bool("version", false, "Write version information to stdout and exit 0")
55 flags.StringVar(&inst.ClusterType, "type", "production", "cluster `type`: development, test, production, or package")
56 flags.StringVar(&inst.SourcePath, "source", "/arvados", "source tree location (required for -type=package)")
57 flags.StringVar(&inst.PackageVersion, "package-version", "0.0.0", "version string to embed in executable files")
58 err = flags.Parse(args)
59 if err == flag.ErrHelp {
62 } else if err != nil {
64 } else if *versionFlag {
65 return cmd.Version.RunCommand(prog, args, stdin, stdout, stderr)
66 } else if len(flags.Args()) > 0 {
67 err = fmt.Errorf("unrecognized command line arguments: %v", flags.Args())
71 var dev, test, prod, pkg bool
72 switch inst.ClusterType {
82 err = fmt.Errorf("invalid cluster type %q (must be 'development', 'test', 'production', or 'package')", inst.ClusterType)
87 err = errors.New("production install is not yet implemented")
91 osv, err := identifyOS()
96 listdir, err := os.Open("/var/lib/apt/lists")
98 logger.Warnf("error while checking whether to run apt-get update: %s", err)
99 } else if names, _ := listdir.Readdirnames(1); len(names) == 0 {
100 // Special case for a base docker image where the
101 // package cache has been deleted and all "apt-get
102 // install" commands will fail unless we fetch repos.
103 cmd := exec.CommandContext(ctx, "apt-get", "update")
112 pkgs := prodpkgs(osv)
121 if dev || test || pkg {
130 "daemontools", // lib/boot uses setuidgid to drop privileges when running as root
131 "default-jdk-headless",
132 "default-jre-headless",
136 "libcrypt-ssleay-perl",
156 "postgresql-contrib",
159 "python3-virtualenv",
172 case osv.Debian && osv.Major >= 10:
173 pkgs = append(pkgs, "libcurl4")
175 pkgs = append(pkgs, "libcurl3")
177 cmd := exec.CommandContext(ctx, "apt-get", "install", "--yes", "--no-install-recommends")
178 cmd.Args = append(cmd.Args, pkgs...)
179 cmd.Env = append(os.Environ(), "DEBIAN_FRONTEND=noninteractive")
188 os.Mkdir("/var/lib/arvados", 0755)
189 os.Mkdir("/var/lib/arvados/tmp", 0700)
191 os.Mkdir("/var/lib/arvados/wwwtmp", 0700)
192 u, er := user.Lookup("www-data")
194 err = fmt.Errorf("user.Lookup(%q): %w", "www-data", er)
197 uid, _ := strconv.Atoi(u.Uid)
198 gid, _ := strconv.Atoi(u.Gid)
199 err = os.Chown("/var/lib/arvados/wwwtmp", uid, gid)
204 rubyversion := "2.5.7"
205 if haverubyversion, err := exec.Command("/var/lib/arvados/bin/ruby", "-v").CombinedOutput(); err == nil && bytes.HasPrefix(haverubyversion, []byte("ruby "+rubyversion)) {
206 logger.Print("ruby " + rubyversion + " already installed")
209 tmp=/var/lib/arvados/tmp/ruby-`+rubyversion+`
210 trap "rm -r ${tmp}" ERR
211 wget --progress=dot:giga -O- https://cache.ruby-lang.org/pub/ruby/2.5/ruby-`+rubyversion+`.tar.gz | tar -C /var/lib/arvados/tmp -xzf -
213 ./configure --disable-install-static-library --enable-shared --disable-install-doc --prefix /var/lib/arvados
216 /var/lib/arvados/bin/gem install bundler --no-ri --no-rdoc
217 # "gem update --system" can be removed when we use ruby ≥2.6.3: https://bundler.io/blog/2019/05/14/solutions-for-cant-find-gem-bundler-with-executable-bundle.html
218 /var/lib/arvados/bin/gem update --system --no-ri --no-rdoc
228 if havegoversion, err := exec.Command("/usr/local/bin/go", "version").CombinedOutput(); err == nil && bytes.HasPrefix(havegoversion, []byte("go version go"+goversion+" ")) {
229 logger.Print("go " + goversion + " already installed")
233 wget --progress=dot:giga -O- https://storage.googleapis.com/golang/go`+goversion+`.linux-amd64.tar.gz | tar -C /var/lib/arvados -xzf -
234 ln -sf /var/lib/arvados/go/bin/* /usr/local/bin/
243 pjsversion := "1.9.8"
244 if havepjsversion, err := exec.Command("/usr/local/bin/phantomjs", "--version").CombinedOutput(); err == nil && string(havepjsversion) == "1.9.8\n" {
245 logger.Print("phantomjs " + pjsversion + " already installed")
248 PJS=phantomjs-`+pjsversion+`-linux-x86_64
249 wget --progress=dot:giga -O- https://bitbucket.org/ariya/phantomjs/downloads/$PJS.tar.bz2 | tar -C /var/lib/arvados -xjf -
250 ln -sf /var/lib/arvados/$PJS/bin/phantomjs /usr/local/bin/
257 geckoversion := "0.24.0"
258 if havegeckoversion, err := exec.Command("/usr/local/bin/geckodriver", "--version").CombinedOutput(); err == nil && strings.Contains(string(havegeckoversion), " "+geckoversion+" ") {
259 logger.Print("geckodriver " + geckoversion + " already installed")
263 wget --progress=dot:giga -O- https://github.com/mozilla/geckodriver/releases/download/$GD/geckodriver-$GD-linux64.tar.gz | tar -C /var/lib/arvados/bin -xzf - geckodriver
264 ln -sf /var/lib/arvados/bin/geckodriver /usr/local/bin/
271 nodejsversion := "v8.15.1"
272 if havenodejsversion, err := exec.Command("/usr/local/bin/node", "--version").CombinedOutput(); err == nil && string(havenodejsversion) == nodejsversion+"\n" {
273 logger.Print("nodejs " + nodejsversion + " already installed")
276 NJS=`+nodejsversion+`
277 wget --progress=dot:giga -O- https://nodejs.org/dist/${NJS}/node-${NJS}-linux-x64.tar.xz | sudo tar -C /var/lib/arvados -xJf -
278 ln -sf /var/lib/arvados/node-${NJS}-linux-x64/bin/{node,npm} /usr/local/bin/
285 gradleversion := "5.3.1"
286 if havegradleversion, err := exec.Command("/usr/local/bin/gradle", "--version").CombinedOutput(); err == nil && strings.Contains(string(havegradleversion), "Gradle "+gradleversion+"\n") {
287 logger.Print("gradle " + gradleversion + " already installed")
291 zip=/var/lib/arvados/tmp/gradle-${G}-bin.zip
293 wget --progress=dot:giga -O${zip} https://services.gradle.org/distributions/gradle-${G}-bin.zip
294 unzip -o -d /var/lib/arvados ${zip}
295 ln -sf /var/lib/arvados/gradle-${G}/bin/gradle /usr/local/bin/
303 // The entry in /etc/locale.gen is "en_US.UTF-8"; once
304 // it's installed, locale -a reports it as
306 wantlocale := "en_US.UTF-8"
307 if havelocales, err := exec.Command("locale", "-a").CombinedOutput(); err == nil && bytes.Contains(havelocales, []byte(strings.Replace(wantlocale+"\n", "UTF-", "utf", 1))) {
308 logger.Print("locale " + wantlocale + " already installed")
310 err = runBash(`sed -i 's/^# *\(`+wantlocale+`\)/\1/' /etc/locale.gen && locale-gen`, stdout, stderr)
325 if pgLsclusters, err2 := exec.Command("pg_lsclusters", "--no-header").CombinedOutput(); err2 != nil {
326 err = fmt.Errorf("pg_lsclusters: %s", err2)
328 } else if pgclusters := strings.Split(strings.TrimSpace(string(pgLsclusters)), "\n"); len(pgclusters) != 1 {
329 logger.Warnf("pg_lsclusters returned %d postgresql clusters -- skipping postgresql initdb/startup, hope that's ok", len(pgclusters))
330 } else if _, err = fmt.Sscanf(pgclusters[0], "%s %s %d %s %s %s %s", &pgc.Version, &pgc.Cluster, &pgc.Port, &pgc.Status, &pgc.Owner, &pgc.DataDirectory, &pgc.LogFile); err != nil {
331 err = fmt.Errorf("error parsing pg_lsclusters output: %s", err)
333 } else if pgc.Status == "online" {
334 logger.Infof("postgresql cluster %s-%s is online", pgc.Version, pgc.Cluster)
336 logger.Infof("postgresql cluster %s-%s is %s; trying to start", pgc.Version, pgc.Cluster, pgc.Status)
337 cmd := exec.Command("pg_ctlcluster", "--foreground", pgc.Version, pgc.Cluster, "start")
345 cmd.Process.Signal(syscall.SIGTERM)
346 logger.Info("sent SIGTERM; waiting for postgres to shut down")
349 err = waitPostgreSQLReady()
355 if os.Getpid() == 1 {
356 // We are the init process (presumably in a
357 // docker container) so although postgresql is
358 // installed, it's not running, and initdb
359 // might never have been run.
362 var needcoll []string
363 // If the en_US.UTF-8 locale wasn't installed when
364 // postgresql initdb ran, it needs to be added
365 // explicitly before we can use it in our test suite.
366 for _, collname := range []string{"en_US", "en_US.UTF-8"} {
367 cmd := exec.Command("sudo", "-u", "postgres", "psql", "-t", "-c", "SELECT 1 FROM pg_catalog.pg_collation WHERE collname='"+collname+"' AND collcollate IN ('en_US.UTF-8', 'en_US.utf8')")
369 out, err2 := cmd.CombinedOutput()
371 err = fmt.Errorf("error while checking postgresql collations: %s", err2)
374 if strings.Contains(string(out), "1") {
375 logger.Infof("postgresql supports collation %s", collname)
377 needcoll = append(needcoll, collname)
380 if len(needcoll) > 0 && os.Getpid() != 1 {
381 // In order for the CREATE COLLATION statement
382 // below to work, the locale must have existed
383 // when PostgreSQL started up. If we're
384 // running as init, we must have started
385 // PostgreSQL ourselves after installing the
386 // locales. Otherwise, it might need a
387 // restart, so we attempt to restart it with
389 if err = runBash(`sudo systemctl restart postgresql`, stdout, stderr); err != nil {
390 logger.Warn("`systemctl restart postgresql` failed; hoping postgresql does not need to be restarted")
391 } else if err = waitPostgreSQLReady(); err != nil {
395 for _, collname := range needcoll {
396 cmd := exec.Command("sudo", "-u", "postgres", "psql", "-c", "CREATE COLLATION \""+collname+"\" (LOCALE = \"en_US.UTF-8\")")
402 err = fmt.Errorf("error adding postgresql collation %s: %s", collname, err)
407 withstuff := "WITH LOGIN SUPERUSER ENCRYPTED PASSWORD " + pq.QuoteLiteral(devtestDatabasePassword)
408 cmd := exec.Command("sudo", "-u", "postgres", "psql", "-c", "ALTER ROLE arvados "+withstuff)
410 if err := cmd.Run(); err == nil {
411 logger.Print("arvados role exists; superuser privileges added, password updated")
413 cmd := exec.Command("sudo", "-u", "postgres", "psql", "-c", "CREATE ROLE arvados "+withstuff)
425 // Install Rails apps to /var/lib/arvados/{railsapi,workbench1}/
426 for dstdir, srcdir := range map[string]string{
427 "railsapi": "services/api",
428 "workbench1": "apps/workbench",
430 fmt.Fprintf(stderr, "building %s...\n", srcdir)
431 cmd := exec.Command("rsync",
432 "-a", "--no-owner", "--delete-after", "--delete-excluded",
433 "--exclude", "/coverage",
436 "--exclude", "/vendor",
437 "./", "/var/lib/arvados/"+dstdir+"/")
438 cmd.Dir = filepath.Join(inst.SourcePath, srcdir)
445 for _, cmdline := range [][]string{
446 {"mkdir", "-p", "log", "tmp", ".bundle", "/var/www/.gem", "/var/www/.bundle", "/var/www/.passenger"},
447 {"touch", "log/production.log"},
448 {"chown", "-R", "--from=root", "www-data:www-data", "/var/www/.gem", "/var/www/.bundle", "/var/www/.passenger", "log", "tmp", ".bundle", "Gemfile.lock", "config.ru", "config/environment.rb"},
449 {"sudo", "-u", "www-data", "/var/lib/arvados/bin/gem", "install", "--user", "--conservative", "--no-document", "bundler:1.16.6", "bundler:1.17.3", "bundler:2.0.2"},
450 {"sudo", "-u", "www-data", "/var/lib/arvados/bin/bundle", "install", "--deployment", "--jobs", "8", "--path", "/var/www/.gem"},
451 {"sudo", "-u", "www-data", "/var/lib/arvados/bin/bundle", "exec", "passenger-config", "build-native-support"},
452 {"sudo", "-u", "www-data", "/var/lib/arvados/bin/bundle", "exec", "passenger-config", "install-standalone-runtime"},
454 cmd = exec.Command(cmdline[0], cmdline[1:]...)
455 cmd.Env = append([]string{}, os.Environ()...)
456 cmd.Dir = "/var/lib/arvados/" + dstdir
459 fmt.Fprintf(stderr, "... %s\n", cmd.Args)
465 cmd = exec.Command("sudo", "-u", "www-data", "/var/lib/arvados/bin/bundle", "exec", "passenger-config", "validate-install")
466 cmd.Dir = "/var/lib/arvados/" + dstdir
470 if err != nil && !strings.Contains(err.Error(), "exit status 2") {
471 // Exit code 2 indicates there were warnings (like
472 // "other passenger installations have been detected",
473 // which we can't expect to avoid) but no errors.
474 // Other non-zero exit codes (1, 9) indicate errors.
479 // Install Go programs to /var/lib/arvados/bin/
480 for _, srcdir := range []string{
481 "cmd/arvados-client",
482 "cmd/arvados-server",
483 "services/arv-git-httpd",
484 "services/crunch-dispatch-local",
485 "services/crunch-dispatch-slurm",
487 "services/keep-balance",
489 "services/keepproxy",
490 "services/keepstore",
493 fmt.Fprintf(stderr, "building %s...\n", srcdir)
494 cmd := exec.Command("go", "install", "-ldflags", "-X git.arvados.org/arvados.git/lib/cmd.version="+inst.PackageVersion+" -X main.version="+inst.PackageVersion)
495 cmd.Env = append([]string{"GOBIN=/var/lib/arvados/bin"}, os.Environ()...)
496 cmd.Dir = filepath.Join(inst.SourcePath, srcdir)
505 // Copy assets from source tree to /var/lib/arvados/share
506 cmd := exec.Command("install", "-v", "-t", "/var/lib/arvados/share", filepath.Join(inst.SourcePath, "sdk/python/tests/nginx.conf"))
518 type osversion struct {
525 func identifyOS() (osversion, error) {
527 f, err := os.Open("/etc/os-release")
533 kv := map[string]string{}
534 scanner := bufio.NewScanner(f)
536 line := strings.TrimSpace(scanner.Text())
537 if strings.HasPrefix(line, "#") {
540 toks := strings.SplitN(line, "=", 2)
542 return osv, fmt.Errorf("invalid line in /etc/os-release: %q", line)
545 v := strings.Trim(toks[1], `"`)
547 v = strings.Trim(v, `'`)
551 if err = scanner.Err(); err != nil {
562 return osv, fmt.Errorf("unsupported ID in /etc/os-release: %q", kv["ID"])
564 vstr := kv["VERSION_ID"]
565 if i := strings.Index(vstr, "."); i > 0 {
568 osv.Major, err = strconv.Atoi(vstr)
570 return osv, fmt.Errorf("incomprehensible VERSION_ID in /etc/os-release: %q", kv["VERSION_ID"])
575 func waitPostgreSQLReady() error {
576 for deadline := time.Now().Add(10 * time.Second); ; {
577 output, err := exec.Command("pg_isready").CombinedOutput()
580 } else if time.Now().After(deadline) {
581 return fmt.Errorf("timed out waiting for pg_isready (%q)", output)
583 time.Sleep(time.Second)
588 func runBash(script string, stdout, stderr io.Writer) error {
589 cmd := exec.Command("bash", "-")
590 cmd.Stdin = bytes.NewBufferString("set -ex -o pipefail\n" + script)
596 func prodpkgs(osv osversion) []string {
611 if osv.Debian || osv.Ubuntu {
612 if osv.Debian && osv.Major == 8 {
613 pkgs = append(pkgs, "libgnutls-deb0-28") // sdk/cwl
614 } else if osv.Debian && osv.Major >= 10 || osv.Ubuntu && osv.Major >= 16 {
615 pkgs = append(pkgs, "python3-distutils") // sdk/cwl
619 "libcurl4-openssl-dev", // services/api
621 "libpython2.7", // services/fuse
622 "mime-support", // keep-web
623 "zlib1g-dev", // services/api
625 } else if osv.Centos {
627 "fuse-libs", // services/fuse
630 "libcurl-devel", // services/api
631 "mailcap", // keep-web
632 "postgresql-devel", // services/api
635 panic("os version not supported")
639 func ProductionDependencies() ([]string, error) {
640 osv, err := identifyOS()
644 return prodpkgs(osv), nil