18794: Merge branch 'main'

author Tom Clegg <tom@curii.com>

Mon, 9 May 2022 13:49:36 +0000 (09:49 -0400)

committer Tom Clegg <tom@curii.com>

Mon, 9 May 2022 13:49:36 +0000 (09:49 -0400)
author Tom Clegg <tom@curii.com>
Mon, 9 May 2022 13:49:36 +0000 (09:49 -0400)
committer Tom Clegg <tom@curii.com>
Mon, 9 May 2022 13:49:36 +0000 (09:49 -0400)
diff --git a/build/run-build-packages.sh b/build/run-build-packages.sh

index adcbab8a09b9d50e2083ca05383c2312a82ac52a..26705c06646b732fdd9258c383e530a352ad8568 100755 (executable)
--- a/build/run-build-packages.sh
+++ b/build/run-build-packages.sh
@@ -256,7 +256,7 @@ package_go_binary services/crunchstat crunchstat "$FORMAT" "$ARCH" \
      "Gather cpu/memory/network statistics of running Crunch jobs"
  package_go_binary services/health arvados-health "$FORMAT" "$ARCH" \
      "Check health of all Arvados cluster services"
-package_go_binary services/keep-balance keep-balance "$FORMAT" "$ARCH" \
+package_go_binary cmd/arvados-server keep-balance "$FORMAT" "$ARCH" \
      "Rebalance and garbage-collect data blocks stored in Arvados Keep"
  package_go_binary cmd/arvados-server keepproxy "$FORMAT" "$ARCH" \
      "Make a Keep cluster accessible to clients that are not on the LAN"
diff --git a/build/run-tests.sh b/build/run-tests.sh

index d517e7e2c4d921bbc91d8edd31f1ecfcee9bb881..0f996f77e927b4c4d6e0eae6458c4d80f3229be7 100755 (executable)
--- a/build/run-tests.sh
+++ b/build/run-tests.sh
@@ -158,6 +158,8 @@ only_install=
  temp=
  temp_preserve=
  
+ignore_sigint=
+
  clear_temp() {
      if [[ -z "$temp" ]]; then
          # we did not even get as far as making a temp dir
@@ -473,6 +475,10 @@ stop_services() {
  }
  
  interrupt() {
+    if [[ -n "$ignore_sigint" ]]; then
+        echo >&2 "ignored SIGINT"
+        return
+    fi
      failures+=("($(basename $0) interrupted)")
      exit_cleanly
  }
@@ -1216,6 +1222,7 @@ else
      setnextcmd
      HISTFILE="$WORKSPACE/tmp/.history"
      history -r
+    ignore_sigint=1
      while read -p 'What next? ' -e -i "$nextcmd" nextcmd; do
          history -s "$nextcmd"
          history -w
diff --git a/cmd/arvados-server/cmd.go b/cmd/arvados-server/cmd.go

index 342446a811f228a2fffeff990056a09fe08b7704..ae1e3fbeee2d1e2d4310bb3f221b1f14bf77b17b 100644 (file)
--- a/cmd/arvados-server/cmd.go
+++ b/cmd/arvados-server/cmd.go
@@ -23,6 +23,7 @@ import (
         "git.arvados.org/arvados.git/lib/recovercollection"
         "git.arvados.org/arvados.git/sdk/go/health"
         "git.arvados.org/arvados.git/services/githttpd"
+       keepbalance "git.arvados.org/arvados.git/services/keep-balance"
         keepweb "git.arvados.org/arvados.git/services/keep-web"
         "git.arvados.org/arvados.git/services/keepproxy"
         "git.arvados.org/arvados.git/services/keepstore"
@@ -48,6 +49,7 @@ var (
                 "git-httpd":          githttpd.Command,
                 "install":            install.Command,
                 "init":               install.InitCommand,
+               "keep-balance":       keepbalance.Command,
                 "keep-web":           keepweb.Command,
                 "keepproxy":          keepproxy.Command,
                 "keepstore":          keepstore.Command,
diff --git a/services/keep-balance/keep-balance.service b/cmd/arvados-server/keep-balance.service

similarity index 87%

rename from services/keep-balance/keep-balance.service

rename to cmd/arvados-server/keep-balance.service

index 859d70724106f815ab9a990e0a9615c09a4a5189..1c5808288b38a4e0a1b5b4706cfa446f6a224841 100644 (file)
--- a/services/keep-balance/keep-balance.service
+++ b/cmd/arvados-server/keep-balance.service
@@ -6,12 +6,14 @@
  Description=Arvados Keep Balance
  Documentation=https://doc.arvados.org/
  After=network.target
+AssertPathExists=/etc/arvados/config.yml
  
  # systemd>=230 (debian:9) obeys StartLimitIntervalSec in the [Unit] section
  StartLimitIntervalSec=0
  
  [Service]
-Type=simple
+Type=notify
+EnvironmentFile=-/etc/arvados/environment
  ExecStart=/usr/bin/keep-balance -commit-pulls -commit-trash
  # Set a reasonable default for the open file limit
  LimitNOFILE=65536
diff --git a/lib/boot/supervisor.go b/lib/boot/supervisor.go

index 143529487b315391aa07901427deb7cd19085491..a5d61b4a1c25e75cae8aa0b0b035dab0ba7e08e1 100644 (file)
--- a/lib/boot/supervisor.go
+++ b/lib/boot/supervisor.go
@@ -388,7 +388,7 @@ func (super *Supervisor) runCluster() error {
         if super.ClusterType != "test" {
                 tasks = append(tasks,
                         runServiceCommand{name: "dispatch-cloud", svc: super.cluster.Services.DispatchCloud},
-                       runGoProgram{src: "services/keep-balance", svc: super.cluster.Services.Keepbalance},
+                       runServiceCommand{name: "keep-balance", svc: super.cluster.Services.Keepbalance},
                 )
         }
         super.tasksReady = map[string]chan bool{}
diff --git a/sdk/python/tests/run_test_server.py b/sdk/python/tests/run_test_server.py

index 76893ac84217d9fbd576723a19e9aaaa06be72db..2c01b35aeac79b1642b18c7af7d166ef2cffdc3c 100644 (file)
--- a/sdk/python/tests/run_test_server.py
+++ b/sdk/python/tests/run_test_server.py
@@ -974,6 +974,9 @@ if __name__ == "__main__":
                format(args.action, actions),
                file=sys.stderr)
          sys.exit(1)
+    # Create a new process group so our child processes don't exit on
+    # ^C in run-tests.sh interactive mode.
+    os.setpgid(0, 0)
      if args.action == 'start':
          stop(force=('ARVADOS_TEST_API_HOST' not in os.environ))
          run(leave_running_atexit=True)
diff --git a/services/api/app/views/static/intro.html.erb b/services/api/app/views/static/intro.html.erb

index 8bab0b2ac64d8b217ffa22d0584a8e7b30e48018..3e0b40794ef1e69c8244444d9da9775ef306e024 100644 (file)
--- a/services/api/app/views/static/intro.html.erb
+++ b/services/api/app/views/static/intro.html.erb
@@ -8,7 +8,7 @@ $(function(){
  });
  <% end %>
  <div id="intropage">
-  <img class="arvados-logo" src="<%= asset_path('logo.png') %>" style="display:block; margin:2em auto"/>
+  <img class="arvados-logo" src="<%= asset_path('logo.png') %>" style="display:block; margin:2em auto" alt="arvados logo"/>
    <div style="width:30em; margin:2em auto 0 auto">
      <h1>Welcome</h1>
      <h4>ARVADOS</h4>
diff --git a/services/api/app/views/static/login_failure.html.erb b/services/api/app/views/static/login_failure.html.erb

index 6b81a33e875b135a3fabdb12b458ad23386a78c3..d3f7111b5bfc52a76c4502fc1b11d603c09e54f8 100644 (file)
--- a/services/api/app/views/static/login_failure.html.erb
+++ b/services/api/app/views/static/login_failure.html.erb
@@ -10,7 +10,7 @@ $(function(){
  
  
  <div id="intropage">
-  <img class="arvados-logo" src="<%= asset_path('logo.png') rescue '/logo.png' %>" style="display:block; margin:2em auto"/>
+  <img class="arvados-logo" src="<%= asset_path('logo.png') rescue '/logo.png' %>" style="display:block; margin:2em auto" alt="arvados logo" />
    <div style="width:30em; margin:2em auto 0 auto">
  
      <h1>Error</h1>
diff --git a/services/keep-balance/balance.go b/services/keep-balance/balance.go

index eb6f580f435c56072ad381f984703e229c524f29..1dedb409a4a2de5c4f414959b024e291007d42b1 100644 (file)
--- a/services/keep-balance/balance.go
+++ b/services/keep-balance/balance.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "bytes"
diff --git a/services/keep-balance/balance_run_test.go b/services/keep-balance/balance_run_test.go

index 0d1b6b5912d2820be5a40f1000871b02c1321e0e..2db7bea173c17dc41f6943b4fe579cbc7d15a24f 100644 (file)
--- a/services/keep-balance/balance_run_test.go
+++ b/services/keep-balance/balance_run_test.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "bytes"
diff --git a/services/keep-balance/balance_test.go b/services/keep-balance/balance_test.go

index df04145b9dd15e3d1066b0a1d5a71c57ba27a5f8..6626609b5769f55bdb7d32385afffc443df8712c 100644 (file)
--- a/services/keep-balance/balance_test.go
+++ b/services/keep-balance/balance_test.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "crypto/md5"
diff --git a/services/keep-balance/block_state.go b/services/keep-balance/block_state.go

index e30b4ff7943d4c4a041ec71924000a48a856c4d4..07c9952f906d7e57dfca21d0007c01d96f42294b 100644 (file)
--- a/services/keep-balance/block_state.go
+++ b/services/keep-balance/block_state.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "sync"
diff --git a/services/keep-balance/block_state_test.go b/services/keep-balance/block_state_test.go

index aaf2c18e297c206b2aa8f3de54df6878b6c7235b..8a58be288ff1832a3799224510d04d5d581d2455 100644 (file)
--- a/services/keep-balance/block_state_test.go
+++ b/services/keep-balance/block_state_test.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "time"
diff --git a/services/keep-balance/change_set.go b/services/keep-balance/change_set.go

index 85d03d409b681626bdee480f7b7c2260047385c2..8e0ba028acd801e182a9b475f47b658c86e250e1 100644 (file)
--- a/services/keep-balance/change_set.go
+++ b/services/keep-balance/change_set.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "encoding/json"
diff --git a/services/keep-balance/change_set_test.go b/services/keep-balance/change_set_test.go

index baf7ab6dc45665b6fc4e7690da2085a6c7452a9c..5474d29fb57e2d64a67286382b1d53907afe3ae7 100644 (file)
--- a/services/keep-balance/change_set_test.go
+++ b/services/keep-balance/change_set_test.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "encoding/json"
diff --git a/services/keep-balance/collection.go b/services/keep-balance/collection.go

index 1e1e51abe7ebcd55e5d0ed7ca55eae02a8b56504..ccb01bdd10c5fb7f777d868a2aeefa175d494ace 100644 (file)
--- a/services/keep-balance/collection.go
+++ b/services/keep-balance/collection.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "context"
diff --git a/services/keep-balance/collection_test.go b/services/keep-balance/collection_test.go

index f749bad6ad1865a30670d0fe2978dfe8ebd2764c..ca67d1617d6fb110a6c90646f46ca8977c5569d8 100644 (file)
--- a/services/keep-balance/collection_test.go
+++ b/services/keep-balance/collection_test.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "context"
diff --git a/services/keep-balance/integration_test.go b/services/keep-balance/integration_test.go

index a6cc3281042739191921dcc8cda04d3a4e938d59..3cfb5cdeda5039fb37f414f5cd0b095eea0e772d 100644 (file)
--- a/services/keep-balance/integration_test.go
+++ b/services/keep-balance/integration_test.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "bytes"
diff --git a/services/keep-balance/keep_service.go b/services/keep-balance/keep_service.go

index 17f8418f622f992a7025db9b9214e60c5a39f2ca..f50fbfd946775e86fa667de2a89eddb1e728acc4 100644 (file)
--- a/services/keep-balance/keep_service.go
+++ b/services/keep-balance/keep_service.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "context"
diff --git a/services/keep-balance/main.go b/services/keep-balance/main.go

index 8a95d389c8292f04c8479f0c21abdcf5c84932a3..f0b0df5bd331d6a97a2cdaab0a8d968cfdbfc550 100644 (file)
--- a/services/keep-balance/main.go
+++ b/services/keep-balance/main.go
@@ -2,16 +2,15 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
+       "bytes"
         "context"
         "flag"
         "fmt"
         "io"
-       "net/http"
         _ "net/http/pprof"
-       "os"
  
         "git.arvados.org/arvados.git/lib/cmd"
         "git.arvados.org/arvados.git/lib/config"
@@ -22,16 +21,13 @@ import (
         "github.com/jmoiron/sqlx"
         _ "github.com/lib/pq"
         "github.com/prometheus/client_golang/prometheus"
-       "github.com/sirupsen/logrus"
  )
  
-func main() {
-       os.Exit(runCommand(os.Args[0], os.Args[1:], os.Stdin, os.Stdout, os.Stderr))
-}
+type command struct{}
  
-func runCommand(prog string, args []string, stdin io.Reader, stdout, stderr io.Writer) int {
-       logger := ctxlog.FromContext(context.Background())
+var Command = command{}
  
+func (command) RunCommand(prog string, args []string, stdin io.Reader, stdout, stderr io.Writer) int {
         var options RunOptions
         flags := flag.NewFlagSet(prog, flag.ContinueOnError)
         flags.BoolVar(&options.Once, "once", false,
@@ -42,34 +38,21 @@ func runCommand(prog string, args []string, stdin io.Reader, stdout, stderr io.W
                 "send trash requests (delete unreferenced old blocks, and excess replicas of overreplicated blocks)")
         flags.BoolVar(&options.CommitConfirmedFields, "commit-confirmed-fields", true,
                 "update collection fields (replicas_confirmed, storage_classes_confirmed, etc.)")
-       dumpFlag := flags.Bool("dump", false, "dump details for each block to stdout")
-       pprofAddr := flags.String("pprof", "", "serve Go profile data at `[addr]:port`")
-       // "show version" is implemented by service.Command, so we
-       // don't need the var here -- we just need the -version flag
+       // These options are implemented by service.Command, so we
+       // don't need the vars here -- we just need the flags
         // to pass flags.Parse().
+       flags.Bool("dump", false, "dump details for each block to stdout")
+       flags.String("pprof", "", "serve Go profile data at `[addr]:port`")
         flags.Bool("version", false, "Write version information to stdout and exit 0")
  
-       if *pprofAddr != "" {
-               go func() {
-                       logrus.Println(http.ListenAndServe(*pprofAddr, nil))
-               }()
-       }
-
-       loader := config.NewLoader(os.Stdin, logger)
+       logger := ctxlog.New(stderr, "json", "info")
+       loader := config.NewLoader(&bytes.Buffer{}, logger)
         loader.SetupFlags(flags)
-
         munged := loader.MungeLegacyConfigArgs(logger, args, "-legacy-keepbalance-config")
         if ok, code := cmd.ParseFlags(flags, prog, munged, "", stderr); !ok {
                 return code
         }
  
-       if *dumpFlag {
-               dumper := logrus.New()
-               dumper.Out = os.Stdout
-               dumper.Formatter = &logrus.TextFormatter{}
-               options.Dumper = dumper
-       }
-
         // Drop our custom args that would be rejected by the generic
         // service.Command
         args = nil
diff --git a/services/keep-balance/main_test.go b/services/keep-balance/main_test.go

index 820f35216637626d7e543fb5781b613294f2dd91..26002eca986c3d2c60c7c20e035e7b32b474c22c 100644 (file)
--- a/services/keep-balance/main_test.go
+++ b/services/keep-balance/main_test.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "bytes"
@@ -25,7 +25,7 @@ type mainSuite struct{}
  
  func (s *mainSuite) TestVersionFlag(c *check.C) {
         var stdout, stderr bytes.Buffer
-       runCommand("keep-balance", []string{"-version"}, nil, &stdout, &stderr)
+       Command.RunCommand("keep-balance", []string{"-version"}, nil, &stdout, &stderr)
         c.Check(stderr.String(), check.Equals, "")
         c.Log(stdout.String())
         c.Check(stdout.String(), check.Matches, `keep-balance.*\(go1.*\)\n`)
@@ -51,7 +51,7 @@ func (s *mainSuite) TestHTTPServer(c *check.C) {
         c.Assert(err, check.IsNil)
  
         var stdout bytes.Buffer
-       go runCommand("keep-balance", []string{"-config", "-"}, bytes.NewBuffer(config), &stdout, &stdout)
+       go Command.RunCommand("keep-balance", []string{"-config", "-"}, bytes.NewBuffer(config), &stdout, &stdout)
         done := make(chan struct{})
         go func() {
                 defer close(done)
diff --git a/services/keep-balance/metrics.go b/services/keep-balance/metrics.go

index ce1b1811cc69f28f3fad955a5525b35a666baf3a..4683b67b9860052d97d8fa77e92141ae29bdcef1 100644 (file)
--- a/services/keep-balance/metrics.go
+++ b/services/keep-balance/metrics.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "fmt"
diff --git a/services/keep-balance/server.go b/services/keep-balance/server.go

index 5299b96c1caf2ac3aaa28c639e71d501ddbbd637..e485f5b2061f28134306d1d897b22cb62e4190e9 100644 (file)
--- a/services/keep-balance/server.go
+++ b/services/keep-balance/server.go
@@ -2,7 +2,7 @@
  //
  // SPDX-License-Identifier: AGPL-3.0
  
-package main
+package keepbalance
  
  import (
         "net/http"
diff --git a/tools/salt-install/config_examples/multi_host/aws/pillars/nginx_passenger.sls b/tools/salt-install/config_examples/multi_host/aws/pillars/nginx_passenger.sls

index fbd42bd7a36fba39680d629f46ad91b2da04bc1e..2b6b96c3a47cf84f764c9648ece1a5c80621df62 100644 (file)
--- a/tools/salt-install/config_examples/multi_host/aws/pillars/nginx_passenger.sls
+++ b/tools/salt-install/config_examples/multi_host/aws/pillars/nginx_passenger.sls
@@ -25,6 +25,8 @@ nginx:
    ### SERVER
    server:
      config:
+      # Needed for RVM, harmless otherwise. Cf. https://dev.arvados.org/issues/19015
+      env: GEM_HOME
        # As we now differentiate where passenger is required or not, we need to
        # load this module conditionally, so we add this conditional just to use
        # the same pillar file
diff --git a/tools/salt-install/config_examples/multi_host/aws/states/passenger_rvm.sls b/tools/salt-install/config_examples/multi_host/aws/states/passenger_rvm.sls

new file mode 100644 (file)

index 0000000..cb4bc1a
--- /dev/null
+++ b/tools/salt-install/config_examples/multi_host/aws/states/passenger_rvm.sls
@@ -0,0 +1,43 @@
+# Copyright (C) The Arvados Authors. All rights reserved.
+#
+# SPDX-License-Identifier: Apache-2.0
+
+{%- if grains.os_family in ('RedHat',) %}
+  {%- set group = 'nginx' %}
+{%- else %}
+  {%- set group = 'www-data' %}
+{%- endif %}
+
+# Make sure that /var/www/.passenger exists with the proper ownership
+# so that passenger can build passenger_native_support.so
+extra_var_www_passenger:
+  file.directory:
+    - name: /var/www/.passenger
+    - user: {{ group }}
+    - group: {{ group }}
+    - mode: '0755'
+    - makedirs: True
+
+{%- if grains.osfinger in ('CentOS Linux-7', 'Ubuntu-18.04', 'Debian-10') %}
+# Work around passenger issue when RVM is in use, cf
+# https://dev.arvados.org/issues/19015
+extra_nginx_set_gem_home:
+  file.managed:
+    - name: /etc/systemd/system/nginx.service.d/override.conf
+    - mode: '0644'
+    - user: root
+    - group: root
+    - makedirs: True
+    - replace: False
+    - contents: |
+        [Service]
+        ExecStart=
+        ExecStart=/bin/bash -a -c "GEM_HOME=`[ -x /usr/local/rvm/bin/rvm-exec ] && /usr/local/rvm/bin/rvm-exec default env |grep GEM_HOME=|cut -f2 -d= || true` && /usr/sbin/nginx -g 'daemon on; master_process on;'"
+  cmd.run:
+    - name: systemctl daemon-reload
+    - require:
+      - file: extra_nginx_set_gem_home
+      - file: extra_var_www_passenger
+    - onchanges:
+      - file: extra_nginx_set_gem_home
+{%- endif -%}
diff --git a/tools/salt-install/config_examples/single_host/multiple_hostnames/pillars/nginx_passenger.sls b/tools/salt-install/config_examples/single_host/multiple_hostnames/pillars/nginx_passenger.sls

index dbf21c265129d9721fa50e63b17bb5a3bfd612b6..e51ec21eb919278215d37bc37f46755017a7ea36 100644 (file)
--- a/tools/salt-install/config_examples/single_host/multiple_hostnames/pillars/nginx_passenger.sls
+++ b/tools/salt-install/config_examples/single_host/multiple_hostnames/pillars/nginx_passenger.sls
@@ -25,6 +25,8 @@ nginx:
    ### SERVER
    server:
      config:
+      # Needed for RVM, harmless otherwise. Cf. https://dev.arvados.org/issues/19015
+      env: GEM_HOME
        # As we now differentiate where passenger is required or not, we need to
        # load this module conditionally, so we add this conditional just to use
        # the same pillar file
diff --git a/tools/salt-install/config_examples/single_host/multiple_hostnames/states/passenger_rvm.sls b/tools/salt-install/config_examples/single_host/multiple_hostnames/states/passenger_rvm.sls

new file mode 100644 (file)

index 0000000..cb4bc1a
--- /dev/null
+++ b/tools/salt-install/config_examples/single_host/multiple_hostnames/states/passenger_rvm.sls
@@ -0,0 +1,43 @@
+# Copyright (C) The Arvados Authors. All rights reserved.
+#
+# SPDX-License-Identifier: Apache-2.0
+
+{%- if grains.os_family in ('RedHat',) %}
+  {%- set group = 'nginx' %}
+{%- else %}
+  {%- set group = 'www-data' %}
+{%- endif %}
+
+# Make sure that /var/www/.passenger exists with the proper ownership
+# so that passenger can build passenger_native_support.so
+extra_var_www_passenger:
+  file.directory:
+    - name: /var/www/.passenger
+    - user: {{ group }}
+    - group: {{ group }}
+    - mode: '0755'
+    - makedirs: True
+
+{%- if grains.osfinger in ('CentOS Linux-7', 'Ubuntu-18.04', 'Debian-10') %}
+# Work around passenger issue when RVM is in use, cf
+# https://dev.arvados.org/issues/19015
+extra_nginx_set_gem_home:
+  file.managed:
+    - name: /etc/systemd/system/nginx.service.d/override.conf
+    - mode: '0644'
+    - user: root
+    - group: root
+    - makedirs: True
+    - replace: False
+    - contents: |
+        [Service]
+        ExecStart=
+        ExecStart=/bin/bash -a -c "GEM_HOME=`[ -x /usr/local/rvm/bin/rvm-exec ] && /usr/local/rvm/bin/rvm-exec default env |grep GEM_HOME=|cut -f2 -d= || true` && /usr/sbin/nginx -g 'daemon on; master_process on;'"
+  cmd.run:
+    - name: systemctl daemon-reload
+    - require:
+      - file: extra_nginx_set_gem_home
+      - file: extra_var_www_passenger
+    - onchanges:
+      - file: extra_nginx_set_gem_home
+{%- endif -%}
diff --git a/tools/salt-install/config_examples/single_host/single_hostname/pillars/nginx_passenger.sls b/tools/salt-install/config_examples/single_host/single_hostname/pillars/nginx_passenger.sls

index c25720c60a5fb17bc7aa3d5199a6ba79b82066db..2b764eb2c25b69bc1c03097b7987077da425678d 100644 (file)
--- a/tools/salt-install/config_examples/single_host/single_hostname/pillars/nginx_passenger.sls
+++ b/tools/salt-install/config_examples/single_host/single_hostname/pillars/nginx_passenger.sls
@@ -25,6 +25,8 @@ nginx:
    ### SERVER
    server:
      config:
+      # Needed for RVM, harmless otherwise. Cf. https://dev.arvados.org/issues/19015
+      env: GEM_HOME
        # As we now differentiate where passenger is required or not, we need to
        # load this module conditionally, so we add this conditional just to use
        # the same pillar file
diff --git a/tools/salt-install/config_examples/single_host/single_hostname/states/passenger_rvm.sls b/tools/salt-install/config_examples/single_host/single_hostname/states/passenger_rvm.sls

new file mode 100644 (file)

index 0000000..cb4bc1a
--- /dev/null
+++ b/tools/salt-install/config_examples/single_host/single_hostname/states/passenger_rvm.sls
@@ -0,0 +1,43 @@
+# Copyright (C) The Arvados Authors. All rights reserved.
+#
+# SPDX-License-Identifier: Apache-2.0
+
+{%- if grains.os_family in ('RedHat',) %}
+  {%- set group = 'nginx' %}
+{%- else %}
+  {%- set group = 'www-data' %}
+{%- endif %}
+
+# Make sure that /var/www/.passenger exists with the proper ownership
+# so that passenger can build passenger_native_support.so
+extra_var_www_passenger:
+  file.directory:
+    - name: /var/www/.passenger
+    - user: {{ group }}
+    - group: {{ group }}
+    - mode: '0755'
+    - makedirs: True
+
+{%- if grains.osfinger in ('CentOS Linux-7', 'Ubuntu-18.04', 'Debian-10') %}
+# Work around passenger issue when RVM is in use, cf
+# https://dev.arvados.org/issues/19015
+extra_nginx_set_gem_home:
+  file.managed:
+    - name: /etc/systemd/system/nginx.service.d/override.conf
+    - mode: '0644'
+    - user: root
+    - group: root
+    - makedirs: True
+    - replace: False
+    - contents: |
+        [Service]
+        ExecStart=
+        ExecStart=/bin/bash -a -c "GEM_HOME=`[ -x /usr/local/rvm/bin/rvm-exec ] && /usr/local/rvm/bin/rvm-exec default env |grep GEM_HOME=|cut -f2 -d= || true` && /usr/sbin/nginx -g 'daemon on; master_process on;'"
+  cmd.run:
+    - name: systemctl daemon-reload
+    - require:
+      - file: extra_nginx_set_gem_home
+      - file: extra_var_www_passenger
+    - onchanges:
+      - file: extra_nginx_set_gem_home
+{%- endif -%}
diff --git a/tools/salt-install/provision.sh b/tools/salt-install/provision.sh

index 669d04d92fa250dbe6a17978add5d5b88d3706e5..be1506c620e7aec8dbc5e58910c982aecd5b6f14 100755 (executable)
--- a/tools/salt-install/provision.sh
+++ b/tools/salt-install/provision.sh
@@ -274,7 +274,7 @@ if [ ! -z "${HOSTNAME_EXT}" ] ; then
    # Make sure that the value configured as IP_INT is a real IP on the system.
    # If we don't error out early here when there is a mismatch, the formula will
    # fail with hard to interpret nginx errors later on.
-  ip addr list |grep -q "${IP_INT}/"
+  ip addr list |grep "${IP_INT}/" >/dev/null
    if [[ $? -ne 0 ]]; then
      echo "Unable to find the IP_INT address '${IP_INT}' on the system, please correct the value in local.params. Exiting..."
      exit 1
@@ -302,7 +302,10 @@ else
        yum install -y  curl git jq
        ;;
      "debian"|"ubuntu")
-      DEBIAN_FRONTEND=noninteractive apt update
+      # Wait 2 minutes for any apt locks to clear
+      # This option is supported from apt 1.9.1 and ignored in older apt versions.
+      # Cf. https://blog.sinjakli.co.uk/2021/10/25/waiting-for-apt-locks-without-the-hacky-bash-scripts/
+      DEBIAN_FRONTEND=noninteractive apt -o DPkg::Lock::Timeout=120 update
        DEBIAN_FRONTEND=noninteractive apt install -y curl git jq
        ;;
    esac
@@ -565,6 +568,7 @@ if [ -z "${ROLES}" ]; then
    echo "    - arvados" >> ${S_DIR}/top.sls
    echo "    - extra.shell_sudo_passwordless" >> ${S_DIR}/top.sls
    echo "    - extra.shell_cron_add_login_sync" >> ${S_DIR}/top.sls
+  echo "    - extra.passenger_rvm" >> ${S_DIR}/top.sls
  
    # Pillars
    echo "    - docker" >> ${P_DIR}/top.sls
@@ -657,6 +661,7 @@ else
          else
            echo "    - nginx.passenger" >> ${S_DIR}/top.sls
          fi
+        echo "    - extra.passenger_rvm" >> ${S_DIR}/top.sls
          ### If we don't install and run LE before arvados-api-server, it fails and breaks everything
          ### after it. So we add this here as we are, after all, sharing the host for api and controller
          if [ "${SSL_MODE}" = "lets-encrypt" ]; then
author	Tom Clegg <tom@curii.com>
	Mon, 9 May 2022 13:49:36 +0000 (09:49 -0400)
committer	Tom Clegg <tom@curii.com>
	Mon, 9 May 2022 13:49:36 +0000 (09:49 -0400)
build/run-build-packages.sh		patch \| blob \| history
build/run-tests.sh		patch \| blob \| history
cmd/arvados-server/cmd.go		patch \| blob \| history
cmd/arvados-server/keep-balance.service	[moved from services/keep-balance/keep-balance.service with 87% similarity]	patch \| blob \| history
lib/boot/supervisor.go		patch \| blob \| history
sdk/python/tests/run_test_server.py		patch \| blob \| history
services/api/app/views/static/intro.html.erb		patch \| blob \| history
services/api/app/views/static/login_failure.html.erb		patch \| blob \| history
services/keep-balance/balance.go		patch \| blob \| history
services/keep-balance/balance_run_test.go		patch \| blob \| history
services/keep-balance/balance_test.go		patch \| blob \| history
services/keep-balance/block_state.go		patch \| blob \| history
services/keep-balance/block_state_test.go		patch \| blob \| history
services/keep-balance/change_set.go		patch \| blob \| history
services/keep-balance/change_set_test.go		patch \| blob \| history
services/keep-balance/collection.go		patch \| blob \| history
services/keep-balance/collection_test.go		patch \| blob \| history
services/keep-balance/integration_test.go		patch \| blob \| history
services/keep-balance/keep_service.go		patch \| blob \| history
services/keep-balance/main.go		patch \| blob \| history
services/keep-balance/main_test.go		patch \| blob \| history
services/keep-balance/metrics.go		patch \| blob \| history
services/keep-balance/server.go		patch \| blob \| history
tools/salt-install/config_examples/multi_host/aws/pillars/nginx_passenger.sls		patch \| blob \| history
tools/salt-install/config_examples/multi_host/aws/states/passenger_rvm.sls	[new file with mode: 0644]	patch \| blob
tools/salt-install/config_examples/single_host/multiple_hostnames/pillars/nginx_passenger.sls		patch \| blob \| history
tools/salt-install/config_examples/single_host/multiple_hostnames/states/passenger_rvm.sls	[new file with mode: 0644]	patch \| blob
tools/salt-install/config_examples/single_host/single_hostname/pillars/nginx_passenger.sls		patch \| blob \| history
tools/salt-install/config_examples/single_host/single_hostname/states/passenger_rvm.sls	[new file with mode: 0644]	patch \| blob
tools/salt-install/provision.sh		patch \| blob \| history