/
mkvyos.sh
201 lines (180 loc) · 6.34 KB
/
mkvyos.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
#!/bin/bash
export LIBGUESTFS_BACKEND=direct
which guestfish > /dev/null
if [ $? -ne 0 ]; then
echo "guestfish is not installed"
exit 1
fi
which qemu-img > /dev/null
if [ $? -ne 0 ]; then
echo "qemu-img is not installed"
exit 1
fi
usage() {
echo "
USAGE:
$0 path_to_image path_to_zvr_tar vyos_version"
}
if [ -z $1 ]; then
echo "missing parameter path_to_image"
usage
exit 1
fi
if [ ! -f $1 ]; then
echo "cannot find the image"
exit 1
fi
if [ -z $2 ]; then
echo "missing parameter path_to_zvr_tar"
usage
exit 1
fi
if [ ! -f $2 ]; then
echo "cannot find the zvr.tar.gz"
exit 1
fi
vyosVersion="1.1.7"
if [ ! -z $3 ]; then
vyosVersion=$3
echo "vyos version $vyosVersion"
if [ $vyosVersion != "1.1.7" ] && [ $vyosVersion != "1.2.0" ]; then
echo "vyos version must be 1.1.7 or 1.2.0"
usage
exit 1
fi
fi
set -e
imgfile=$1
isVmdk=0
if echo $1 | grep -q -i '\.vmdk$'; then
isVmdk=1
imgfile=${1%%.vmdk}.qcow2
qemu-img convert -f vmdk -O qcow2 "$1" "$imgfile"
fi
if [ $vyosVersion = "1.1.7" ]; then
ROOTPATH="/"
VyosPostScript="/opt/vyatta/etc/config/scripts/vyatta-postconfig-bootup.script"
else
ROOTPATH="/boot/zs_vyos/rw/"
VyosPostScript="/boot/zs_vyos/rw/config/scripts/vyos-postconfig-bootup.script"
fi
tmpdir=$(mktemp -d)
atexit() {
/bin/rm -fr $tmpdir
[ $isVmdk -eq 1 ] && /bin/rm -f $imgfile || true
}
trap atexit EXIT SIGHUP SIGINT SIGTERM
tar xzf $2 -C $tmpdir
ZVR=$tmpdir/zvr
ZVRBOOT=$tmpdir/zvrboot
ZVRSCRIPT=$tmpdir/zstack-virtualrouteragent
HAPROXY=$tmpdir/haproxy
GOBETWEEN=$tmpdir/gobetween
KEEPALIVED=$tmpdir/keepalived
HEALTHCHECK=$tmpdir/healthcheck.sh
PIMD=$tmpdir/pimd
UACCTD=$tmpdir/uacctd
SSHD=$tmpdir/sshd.sh
RSYSLOGD=$tmpdir/rsyslog.sh
ZVRMONITOR=$tmpdir/zvr-monitor.sh
FILEMONITOR=$tmpdir/file-monitor.sh
ZVRREBOOT=$tmpdir/zvr-reboot.sh
CPUMONITOR=$tmpdir/cpu-monitor
MAILMONITOR=$tmpdir/mail-monitor
SYSCTL=$tmpdir/sysctl.conf
CONNTRACKD=$tmpdir/conntrackd.conf
ZSN=$tmpdir/zsn-crontab.sh
SBIN_DIR=/opt/vyatta/sbin
VERSION=`date +%Y%m%d`
ZVR_VERSION=$tmpdir/version
GOPRLIMIT=$tmpdir/goprlimit
DATA=$tmpdir/data.tar.gz
guestfish <<_EOF_
add $imgfile
run
mount /dev/sda1 /
write $ROOTPATH/etc/version $VERSION
upload $ZVR $ROOTPATH/$SBIN_DIR/zvr
upload $ZVRBOOT $ROOTPATH$SBIN_DIR/zvrboot
upload $ZVRSCRIPT $ROOTPATH/etc/init.d/zstack-virtualrouteragent
upload $HAPROXY $ROOTPATH$SBIN_DIR/haproxy
upload $GOBETWEEN $ROOTPATH$SBIN_DIR/gobetween
upload $KEEPALIVED $ROOTPATH/usr/sbin/keepalived
mkdir-p $ROOTPATH/home/vyos/zvr/keepalived/script
upload $GOPRLIMIT $ROOTPATH$SBIN_DIR/goprlimit
upload $PIMD $ROOTPATH$SBIN_DIR/pimd
upload $UACCTD $ROOTPATH$SBIN_DIR/uacctd
upload $ZVR_VERSION $ROOTPATH/home/vyos/zvr/version
upload $HEALTHCHECK $ROOTPATH/usr/share/healthcheck.sh
mkdir-p $ROOTPATH/home/vyos/zvr/ssh
upload $SSHD $ROOTPATH/home/vyos/zvr/ssh/sshd.sh
upload $RSYSLOGD $ROOTPATH/home/vyos/zvr/ssh/rsyslog.sh
upload $ZVRMONITOR $ROOTPATH/home/vyos/zvr/ssh/zvr-monitor.sh
upload $FILEMONITOR $ROOTPATH/home/vyos/zvr/ssh/file-monitor.sh
upload $ZVRREBOOT $ROOTPATH/home/vyos/zvr/ssh/zvr-reboot.sh
upload $CPUMONITOR $ROOTPATH/etc/logrotate.d/cpu-monitor
upload $MAILMONITOR $ROOTPATH/etc/logrotate.d/mail-monitor
upload $SYSCTL $ROOTPATH/etc/sysctl.conf
mkdir-p $ROOTPATH/etc/conntrackd
upload $CONNTRACKD $ROOTPATH/etc/conntrackd/conntrackd.conf
upload $ZSN $ROOTPATH/usr/local/zstack/zsn-agent/bin/zsn-crontab.sh
mkdir-p $ROOTPATH/home/vyos/zvr/data/
tar-in $DATA $ROOTPATH/home/vyos/zvr/data/ compress:gzip
mkdir-p $ROOTPATH/opt/vyatta/etc/config/scripts/
upload -<<END $VyosPostScript
#!/bin/bash
chmod +x $SBIN_DIR/zvrboot
chmod +x $SBIN_DIR/zvr
chmod +x /etc/init.d/zstack-virtualrouteragent
chmod +x $SBIN_DIR/haproxy
chmod +x $SBIN_DIR/gobetween
chmod +x /usr/sbin/keepalived
chmod +x $SBIN_DIR/goprlimit
chmod +x $SBIN_DIR/pimd
chmod +x $SBIN_DIR/uacctd
chmod +x /usr/share/healthcheck.sh
chmod +x /home/vyos/zvr/ssh/sshd.sh
chmod +x /home/vyos/zvr/ssh/rsyslog.sh
chmod +x /home/vyos/zvr/ssh/zvr-monitor.sh
chmod +x /home/vyos/zvr/ssh/file-monitor.sh
chmod +x /home/vyos/zvr/ssh/zvr-reboot.sh
chmod 644 /etc/sysctl.conf
chmod 644 /etc/conntrackd/conntrackd.conf
chmod +x /usr/local/zstack/zsn-agent/bin/zsn-crontab.sh
mkdir -p /home/vyos/zvr/keepalived/script/
chown vyos:users /home/vyos/ -R
chown vyos:users $SBIN_DIR/zvr
chown vyos:users $SBIN_DIR/haproxy
chown vyos:users $SBIN_DIR/gobetween
chown vyos:users $SBIN_DIR/pimd
chown vyos:users $SBIN_DIR/uacctd
chown vyos:users /usr/share/healthcheck.sh
chown vyos:users /home/vyos/zvr/ssh/sshd.sh
chown vyos:users /home/vyos/zvr/ssh/rsyslog.sh
chown vyos:users /home/vyos/zvr/ssh/zvr-monitor.sh
chown vyos:users /home/vyos/zvr/ssh/file-monitor.sh
chown vyos:users /home/vyos/zvr/ssh/zvr-reboot.sh
chown root:root /etc/sysctl.conf
chown root:root /etc/conntrackd/conntrackd.conf
chown vyos:users /usr/local/zstack/zsn-agent/bin/zsn-crontab.sh
ln -s /usr/local/lib/libcrypto.so.1.0.0 /usr/lib/libcrypto.so.1.0.0
$SBIN_DIR/zvrboot >/home/vyos/zvr/zvrboot.log 2>&1 < /dev/null &
exit 0
END
download /boot/grub/grub.cfg /tmp/grub.cfg
! sed -e 's/^set[[:space:]]\+timeout[[:space:]]*=[[:space:]]*[[:digit:]]\+/set timeout=0/g' -e '/^echo.*Grub menu/,/^fi$/d' /tmp/grub.cfg > /tmp/grub.cfg.new
upload /tmp/grub.cfg.new /boot/grub/grub.cfg
download $ROOTPATH/etc/security/limits.conf /tmp/limits.conf
! grep -w "vyos" /tmp/limits.conf | grep nofile | grep soft && sed -i 's/vyos soft nofile [0-9]*/vyos soft nofile 20971520/' /tmp/limits.conf || echo "vyos soft nofile 20971520" >> /tmp/limits.conf
! grep -w "vyos" /tmp/limits.conf | grep nofile | grep hard && sed -i 's/vyos hard nofile [0-9]*/vyos hard nofile 20971520/' /tmp/limits.conf || echo "vyos hard nofile 20971520" >> /tmp/limits.conf
#! grep -w "root" /tmp/limits.conf | grep nofile | grep soft && sed -i 's/root soft nofile [0-9]*/root soft nofile 20971520/' /tmp/limits.conf || echo "root soft nofile 20971520" >> /tmp/limits.conf
! grep -w "root" /tmp/limits.conf | grep nofile | grep hard && sed -i 's/root hard nofile [0-9]*/root hard nofile 20971520/' /tmp/limits.conf || echo "root hard nofile 20971520" >> /tmp/limits.conf
upload /tmp/limits.conf $ROOTPATH/etc/security/limits.conf
_EOF_
/bin/rm -rf $tmpdir
/bin/rm -rf /tmp/grub.cfg /tmp/limits.conf /tmp/sysctl.conf
if [ $isVmdk -eq 1 ]; then
/bin/rm -f "$1"
qemu-img convert -f qcow2 -O vmdk "$imgfile" "$1"
fi
echo "successfully installed $2 to vyos image $1"