1 // Copyright (C) The Arvados Authors. All rights reserved.
3 // SPDX-License-Identifier: AGPL-3.0
27 "git.arvados.org/arvados.git/lib/service"
28 "git.arvados.org/arvados.git/sdk/go/arvados"
29 "git.arvados.org/arvados.git/sdk/go/ctxlog"
30 "git.arvados.org/arvados.git/sdk/go/health"
31 "github.com/sirupsen/logrus"
34 type Supervisor struct {
35 SourcePath string // e.g., /home/username/src/arvados
36 SourceVersion string // e.g., acbd1324...
37 ClusterType string // e.g., production
38 ListenHost string // e.g., localhost
39 ControllerAddr string // e.g., 127.0.0.1:8000
40 OwnTemporaryDatabase bool
43 logger logrus.FieldLogger
44 cluster *arvados.Cluster
47 cancel context.CancelFunc
49 healthChecker *health.Aggregator
50 tasksReady map[string]chan bool
51 waitShutdown sync.WaitGroup
55 environ []string // for child processes
58 func (super *Supervisor) Start(ctx context.Context, cfg *arvados.Config) {
59 super.ctx, super.cancel = context.WithCancel(ctx)
60 super.done = make(chan struct{})
63 sigch := make(chan os.Signal)
64 signal.Notify(sigch, syscall.SIGINT, syscall.SIGTERM)
65 defer signal.Stop(sigch)
67 for sig := range sigch {
68 super.logger.WithField("signal", sig).Info("caught signal")
75 super.logger.WithError(err).Warn("supervisor shut down")
81 func (super *Supervisor) run(cfg *arvados.Config) error {
82 cwd, err := os.Getwd()
86 if !strings.HasPrefix(super.SourcePath, "/") {
87 super.SourcePath = filepath.Join(cwd, super.SourcePath)
89 super.SourcePath, err = filepath.EvalSymlinks(super.SourcePath)
94 super.tempdir, err = ioutil.TempDir("", "arvados-server-boot-")
98 defer os.RemoveAll(super.tempdir)
99 if err := os.Mkdir(filepath.Join(super.tempdir, "bin"), 0755); err != nil {
103 // Fill in any missing config keys, and write the resulting
104 // config in the temp dir for child services to use.
105 err = super.autofillConfig(cfg)
109 conffile, err := os.OpenFile(filepath.Join(super.tempdir, "config.yml"), os.O_CREATE|os.O_WRONLY, 0644)
113 defer conffile.Close()
114 err = json.NewEncoder(conffile).Encode(cfg)
118 err = conffile.Close()
122 super.configfile = conffile.Name()
124 super.environ = os.Environ()
125 super.cleanEnv([]string{"ARVADOS_"})
126 super.setEnv("ARVADOS_CONFIG", super.configfile)
127 super.setEnv("RAILS_ENV", super.ClusterType)
128 super.setEnv("TMPDIR", super.tempdir)
129 super.prependEnv("PATH", super.tempdir+"/bin:/var/lib/arvados/bin:")
131 super.cluster, err = cfg.GetCluster("")
135 // Now that we have the config, replace the bootstrap logger
136 // with a new one according to the logging config.
137 loglevel := super.cluster.SystemLogs.LogLevel
138 if s := os.Getenv("ARVADOS_DEBUG"); s != "" && s != "0" {
141 super.logger = ctxlog.New(super.Stderr, super.cluster.SystemLogs.Format, loglevel).WithFields(logrus.Fields{
145 if super.SourceVersion == "" {
146 // Find current source tree version.
148 err = super.RunProgram(super.ctx, ".", &buf, nil, "git", "diff", "--shortstat")
152 dirty := buf.Len() > 0
154 err = super.RunProgram(super.ctx, ".", &buf, nil, "git", "log", "-n1", "--format=%H")
158 super.SourceVersion = strings.TrimSpace(buf.String())
160 super.SourceVersion += "+uncommitted"
163 return errors.New("specifying a version to run is not yet supported")
166 _, err = super.installGoProgram(super.ctx, "cmd/arvados-server")
170 err = super.setupRubyEnv()
175 tasks := []supervisedTask{
176 createCertificates{},
179 runServiceCommand{name: "controller", svc: super.cluster.Services.Controller, depends: []supervisedTask{runPostgreSQL{}}},
180 runGoProgram{src: "services/arv-git-httpd", svc: super.cluster.Services.GitHTTP},
181 runGoProgram{src: "services/health", svc: super.cluster.Services.Health},
182 runGoProgram{src: "services/keepproxy", svc: super.cluster.Services.Keepproxy, depends: []supervisedTask{runPassenger{src: "services/api"}}},
183 runGoProgram{src: "services/keepstore", svc: super.cluster.Services.Keepstore},
184 runGoProgram{src: "services/keep-web", svc: super.cluster.Services.WebDAV},
185 runServiceCommand{name: "ws", svc: super.cluster.Services.Websocket, depends: []supervisedTask{runPostgreSQL{}}},
186 installPassenger{src: "services/api"},
187 runPassenger{src: "services/api", svc: super.cluster.Services.RailsAPI, depends: []supervisedTask{createCertificates{}, runPostgreSQL{}, installPassenger{src: "services/api"}}},
188 installPassenger{src: "apps/workbench", depends: []supervisedTask{installPassenger{src: "services/api"}}}, // dependency ensures workbench doesn't delay api startup
189 runPassenger{src: "apps/workbench", svc: super.cluster.Services.Workbench1, depends: []supervisedTask{installPassenger{src: "apps/workbench"}}},
192 if super.ClusterType != "test" {
193 tasks = append(tasks,
194 runServiceCommand{name: "dispatch-cloud", svc: super.cluster.Services.Controller},
195 runGoProgram{src: "services/keep-balance"},
198 super.tasksReady = map[string]chan bool{}
199 for _, task := range tasks {
200 super.tasksReady[task.String()] = make(chan bool)
202 for _, task := range tasks {
204 fail := func(err error) {
205 if super.ctx.Err() != nil {
209 super.logger.WithField("task", task.String()).WithError(err).Error("task failed")
212 super.logger.WithField("task", task.String()).Info("starting")
213 err := task.Run(super.ctx, fail, super)
218 close(super.tasksReady[task.String()])
221 err = super.wait(super.ctx, tasks...)
225 super.logger.Info("all startup tasks are complete; starting health checks")
226 super.healthChecker = &health.Aggregator{Cluster: super.cluster}
228 super.logger.Info("shutting down")
229 super.waitShutdown.Wait()
230 return super.ctx.Err()
233 func (super *Supervisor) wait(ctx context.Context, tasks ...supervisedTask) error {
234 for _, task := range tasks {
235 ch, ok := super.tasksReady[task.String()]
237 return fmt.Errorf("no such task: %s", task)
239 super.logger.WithField("task", task.String()).Info("waiting")
242 super.logger.WithField("task", task.String()).Info("ready")
244 super.logger.WithField("task", task.String()).Info("task was never ready")
251 func (super *Supervisor) Stop() {
256 func (super *Supervisor) WaitReady() (*arvados.URL, bool) {
257 ticker := time.NewTicker(time.Second)
259 for waiting := "all"; waiting != ""; {
262 case <-super.ctx.Done():
265 if super.healthChecker == nil {
269 resp := super.healthChecker.ClusterHealth()
270 // The overall health check (resp.Health=="OK") might
271 // never pass due to missing components (like
272 // arvados-dispatch-cloud in a test cluster), so
273 // instead we wait for all configured components to
276 for target, check := range resp.Checks {
277 if check.Health != "OK" {
278 waiting += " " + target
282 super.logger.WithField("targets", waiting[1:]).Info("waiting")
285 u := super.cluster.Services.Controller.ExternalURL
289 func (super *Supervisor) prependEnv(key, prepend string) {
290 for i, s := range super.environ {
291 if strings.HasPrefix(s, key+"=") {
292 super.environ[i] = key + "=" + prepend + s[len(key)+1:]
296 super.environ = append(super.environ, key+"="+prepend)
299 func (super *Supervisor) cleanEnv(prefixes []string) {
301 for _, s := range super.environ {
303 for _, p := range prefixes {
304 if strings.HasPrefix(s, p) {
310 cleaned = append(cleaned, s)
313 super.environ = cleaned
316 func (super *Supervisor) setEnv(key, val string) {
317 for i, s := range super.environ {
318 if strings.HasPrefix(s, key+"=") {
319 super.environ[i] = key + "=" + val
323 super.environ = append(super.environ, key+"="+val)
326 // Remove all but the first occurrence of each env var.
327 func dedupEnv(in []string) []string {
328 saw := map[string]bool{}
330 for _, kv := range in {
331 if split := strings.Index(kv, "="); split < 1 {
332 panic("invalid environment var: " + kv)
333 } else if saw[kv[:split]] {
336 saw[kv[:split]] = true
337 out = append(out, kv)
343 func (super *Supervisor) installGoProgram(ctx context.Context, srcpath string) (string, error) {
344 _, basename := filepath.Split(srcpath)
345 bindir := filepath.Join(super.tempdir, "bin")
346 binfile := filepath.Join(bindir, basename)
347 err := super.RunProgram(ctx, filepath.Join(super.SourcePath, srcpath), nil, []string{"GOBIN=" + bindir}, "go", "install", "-ldflags", "-X git.arvados.org/arvados.git/lib/cmd.version="+super.SourceVersion+" -X main.version="+super.SourceVersion)
351 func (super *Supervisor) usingRVM() bool {
352 return os.Getenv("rvm_path") != ""
355 func (super *Supervisor) setupRubyEnv() error {
356 if !super.usingRVM() {
357 // (If rvm is in use, assume the caller has everything
358 // set up as desired)
359 super.cleanEnv([]string{
364 if _, err := os.Stat("/var/lib/arvados/bin/gem"); err == nil {
365 gem = "/var/lib/arvados/bin/gem"
367 cmd := exec.Command(gem, "env", "gempath")
368 cmd.Env = super.environ
369 buf, err := cmd.Output() // /var/lib/arvados/.gem/ruby/2.5.0/bin:...
370 if err != nil || len(buf) == 0 {
371 return fmt.Errorf("gem env gempath: %v", err)
373 gempath := string(bytes.Split(buf, []byte{':'})[0])
374 super.prependEnv("PATH", gempath+"/bin:")
375 super.setEnv("GEM_HOME", gempath)
376 super.setEnv("GEM_PATH", gempath)
378 // Passenger install doesn't work unless $HOME is ~user
379 u, err := user.Current()
383 super.setEnv("HOME", u.HomeDir)
387 func (super *Supervisor) lookPath(prog string) string {
388 for _, val := range super.environ {
389 if strings.HasPrefix(val, "PATH=") {
390 for _, dir := range filepath.SplitList(val[5:]) {
391 path := filepath.Join(dir, prog)
392 if fi, err := os.Stat(path); err == nil && fi.Mode()&0111 != 0 {
401 // Run prog with args, using dir as working directory. If ctx is
402 // cancelled while the child is running, RunProgram terminates the
403 // child, waits for it to exit, then returns.
405 // Child's environment will have our env vars, plus any given in env.
407 // Child's stdout will be written to output if non-nil, otherwise the
408 // boot command's stderr.
409 func (super *Supervisor) RunProgram(ctx context.Context, dir string, output io.Writer, env []string, prog string, args ...string) error {
410 cmdline := fmt.Sprintf("%s", append([]string{prog}, args...))
411 super.logger.WithField("command", cmdline).WithField("dir", dir).Info("executing")
414 if logprefix == "setuidgid" && len(args) >= 3 {
417 logprefix = strings.TrimPrefix(logprefix, super.tempdir+"/bin/")
418 if logprefix == "bundle" && len(args) > 2 && args[0] == "exec" {
420 } else if logprefix == "arvados-server" && len(args) > 1 {
423 if !strings.HasPrefix(dir, "/") {
424 logprefix = dir + ": " + logprefix
427 cmd := exec.Command(super.lookPath(prog), args...)
428 stdout, err := cmd.StdoutPipe()
432 stderr, err := cmd.StderrPipe()
436 logwriter := &service.LogPrefixer{Writer: super.Stderr, Prefix: []byte("[" + logprefix + "] ")}
437 var copiers sync.WaitGroup
440 io.Copy(logwriter, stderr)
446 io.Copy(logwriter, stdout)
448 io.Copy(output, stdout)
453 if strings.HasPrefix(dir, "/") {
456 cmd.Dir = filepath.Join(super.SourcePath, dir)
458 env = append([]string(nil), env...)
459 env = append(env, super.environ...)
460 cmd.Env = dedupEnv(env)
463 defer func() { exited = true }()
466 log := ctxlog.FromContext(ctx).WithFields(logrus.Fields{"dir": dir, "cmdline": cmdline})
468 if cmd.Process == nil {
469 log.Debug("waiting for child process to start")
470 time.Sleep(time.Second / 2)
472 log.WithField("PID", cmd.Process.Pid).Debug("sending SIGTERM")
473 cmd.Process.Signal(syscall.SIGTERM)
474 time.Sleep(5 * time.Second)
478 log.WithField("PID", cmd.Process.Pid).Warn("still waiting for child process to exit 5s after SIGTERM")
490 if ctx.Err() != nil {
491 // Return "context canceled", instead of the "killed"
492 // error that was probably caused by the context being
495 } else if err != nil {
496 return fmt.Errorf("%s: error: %v", cmdline, err)
501 func (super *Supervisor) autofillConfig(cfg *arvados.Config) error {
502 cluster, err := cfg.GetCluster("")
506 usedPort := map[string]bool{}
507 nextPort := func(host string) string {
509 port, err := availablePort(host)
516 usedPort[port] = true
520 if cluster.Services.Controller.ExternalURL.Host == "" {
521 h, p, err := net.SplitHostPort(super.ControllerAddr)
531 cluster.Services.Controller.ExternalURL = arvados.URL{Scheme: "https", Host: net.JoinHostPort(h, p)}
533 for _, svc := range []*arvados.Service{
534 &cluster.Services.Controller,
535 &cluster.Services.DispatchCloud,
536 &cluster.Services.GitHTTP,
537 &cluster.Services.Health,
538 &cluster.Services.Keepproxy,
539 &cluster.Services.Keepstore,
540 &cluster.Services.RailsAPI,
541 &cluster.Services.WebDAV,
542 &cluster.Services.WebDAVDownload,
543 &cluster.Services.Websocket,
544 &cluster.Services.Workbench1,
546 if svc == &cluster.Services.DispatchCloud && super.ClusterType == "test" {
549 if svc.ExternalURL.Host == "" {
550 if svc == &cluster.Services.Controller ||
551 svc == &cluster.Services.GitHTTP ||
552 svc == &cluster.Services.Keepproxy ||
553 svc == &cluster.Services.WebDAV ||
554 svc == &cluster.Services.WebDAVDownload ||
555 svc == &cluster.Services.Workbench1 {
556 svc.ExternalURL = arvados.URL{Scheme: "https", Host: fmt.Sprintf("%s:%s", super.ListenHost, nextPort(super.ListenHost))}
557 } else if svc == &cluster.Services.Websocket {
558 svc.ExternalURL = arvados.URL{Scheme: "wss", Host: fmt.Sprintf("%s:%s", super.ListenHost, nextPort(super.ListenHost))}
561 if len(svc.InternalURLs) == 0 {
562 svc.InternalURLs = map[arvados.URL]arvados.ServiceInstance{
563 arvados.URL{Scheme: "http", Host: fmt.Sprintf("%s:%s", super.ListenHost, nextPort(super.ListenHost))}: arvados.ServiceInstance{},
567 if cluster.SystemRootToken == "" {
568 cluster.SystemRootToken = randomHexString(64)
570 if cluster.ManagementToken == "" {
571 cluster.ManagementToken = randomHexString(64)
573 if cluster.API.RailsSessionSecretToken == "" {
574 cluster.API.RailsSessionSecretToken = randomHexString(64)
576 if cluster.Collections.BlobSigningKey == "" {
577 cluster.Collections.BlobSigningKey = randomHexString(64)
579 if super.ClusterType != "production" && cluster.Containers.DispatchPrivateKey == "" {
580 buf, err := ioutil.ReadFile(filepath.Join(super.SourcePath, "lib", "dispatchcloud", "test", "sshkey_dispatch"))
584 cluster.Containers.DispatchPrivateKey = string(buf)
586 if super.ClusterType != "production" {
587 cluster.TLS.Insecure = true
589 if super.ClusterType == "test" {
590 // Add a second keepstore process.
591 cluster.Services.Keepstore.InternalURLs[arvados.URL{Scheme: "http", Host: fmt.Sprintf("%s:%s", super.ListenHost, nextPort(super.ListenHost))}] = arvados.ServiceInstance{}
593 // Create a directory-backed volume for each keepstore
595 cluster.Volumes = map[string]arvados.Volume{}
596 for url := range cluster.Services.Keepstore.InternalURLs {
597 volnum := len(cluster.Volumes)
598 datadir := fmt.Sprintf("%s/keep%d.data", super.tempdir, volnum)
599 if _, err = os.Stat(datadir + "/."); err == nil {
600 } else if !os.IsNotExist(err) {
602 } else if err = os.Mkdir(datadir, 0755); err != nil {
605 cluster.Volumes[fmt.Sprintf(cluster.ClusterID+"-nyw5e-%015d", volnum)] = arvados.Volume{
607 DriverParameters: json.RawMessage(fmt.Sprintf(`{"Root":%q}`, datadir)),
608 AccessViaHosts: map[arvados.URL]arvados.VolumeAccess{
614 if super.OwnTemporaryDatabase {
615 cluster.PostgreSQL.Connection = arvados.PostgreSQLConnection{
616 "client_encoding": "utf8",
618 "port": nextPort(super.ListenHost),
619 "dbname": "arvados_test",
621 "password": "insecure_arvados_test",
625 cfg.Clusters[cluster.ClusterID] = *cluster
629 func addrIsLocal(addr string) (bool, error) {
631 listener, err := net.Listen("tcp", addr)
635 } else if strings.Contains(err.Error(), "cannot assign requested address") {
642 func randomHexString(chars int) string {
643 b := make([]byte, chars/2)
644 _, err := rand.Read(b)
648 return fmt.Sprintf("%x", b)
651 func internalPort(svc arvados.Service) (string, error) {
652 if len(svc.InternalURLs) > 1 {
653 return "", errors.New("internalPort() doesn't work with multiple InternalURLs")
655 for u := range svc.InternalURLs {
656 if _, p, err := net.SplitHostPort(u.Host); err != nil {
660 } else if u.Scheme == "https" {
666 return "", fmt.Errorf("service has no InternalURLs")
669 func externalPort(svc arvados.Service) (string, error) {
670 if _, p, err := net.SplitHostPort(svc.ExternalURL.Host); err != nil {
674 } else if svc.ExternalURL.Scheme == "https" {
681 func availablePort(host string) (string, error) {
682 ln, err := net.Listen("tcp", net.JoinHostPort(host, "0"))
687 _, port, err := net.SplitHostPort(ln.Addr().String())
694 // Try to connect to addr until it works, then close ch. Give up if
696 func waitForConnect(ctx context.Context, addr string) error {
697 dialer := net.Dialer{Timeout: time.Second}
698 for ctx.Err() == nil {
699 conn, err := dialer.DialContext(ctx, "tcp", addr)
701 time.Sleep(time.Second / 10)
projects / arvados.git / blob