2022-10-20 19:59:46 +00:00
|
|
|
package main
|
2022-10-16 20:17:26 +00:00
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
|
|
|
|
crypticnet "cryptic-net"
|
2022-10-26 21:21:31 +00:00
|
|
|
"cryptic-net/daemon"
|
2022-10-16 20:17:26 +00:00
|
|
|
"cryptic-net/garage"
|
|
|
|
|
"fmt"
|
|
|
|
|
"net"
|
|
|
|
|
"os"
|
|
|
|
|
"path/filepath"
|
|
|
|
|
"strconv"
|
|
|
|
|
|
2022-10-20 18:57:26 +00:00
|
|
|
"code.betamike.com/cryptic-io/pmux/pmuxlib"
|
2022-10-16 20:17:26 +00:00
|
|
|
)
|
|
|
|
|
|
2022-10-26 21:21:31 +00:00
|
|
|
// newGarageAdminClient will return an AdminClient for a local garage instance,
|
|
|
|
|
// or it will _panic_ if there is no local instance configured.
|
|
|
|
|
func newGarageAdminClient(
|
|
|
|
|
env crypticnet.Env, daemonConfig daemon.Config,
|
|
|
|
|
) *garage.AdminClient {
|
2022-10-19 14:20:26 +00:00
|
|
|
|
2022-10-26 21:21:31 +00:00
|
|
|
thisHost := env.Bootstrap.ThisHost()
|
|
|
|
|
|
|
|
|
|
return garage.NewAdminClient(
|
|
|
|
|
net.JoinHostPort(
|
|
|
|
|
thisHost.Nebula.IP,
|
|
|
|
|
strconv.Itoa(daemonConfig.Storage.Allocations[0].AdminPort),
|
|
|
|
|
),
|
|
|
|
|
env.Bootstrap.GarageAdminToken,
|
|
|
|
|
)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func waitForGarageAndNebula(
|
|
|
|
|
ctx context.Context, env crypticnet.Env, daemonConfig daemon.Config,
|
|
|
|
|
) error {
|
|
|
|
|
|
|
|
|
|
allocs := daemonConfig.Storage.Allocations
|
2022-10-20 19:59:46 +00:00
|
|
|
|
|
|
|
|
// if this host doesn't have any allocations specified then fall back to
|
|
|
|
|
// waiting for nebula
|
|
|
|
|
if len(allocs) == 0 {
|
|
|
|
|
return waitForNebula(ctx, env)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for _, alloc := range allocs {
|
2022-10-19 14:20:26 +00:00
|
|
|
|
|
|
|
|
adminAddr := net.JoinHostPort(
|
|
|
|
|
env.Bootstrap.ThisHost().Nebula.IP,
|
|
|
|
|
strconv.Itoa(alloc.AdminPort),
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
adminClient := garage.NewAdminClient(
|
|
|
|
|
adminAddr,
|
|
|
|
|
env.Bootstrap.GarageAdminToken,
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
if err := adminClient.Wait(ctx); err != nil {
|
|
|
|
|
return fmt.Errorf("waiting for instance %q to start up: %w", adminAddr, err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
2022-10-26 21:21:31 +00:00
|
|
|
func garageWriteChildConfig(
|
2022-10-19 14:20:26 +00:00
|
|
|
env crypticnet.Env,
|
2022-10-26 21:21:31 +00:00
|
|
|
alloc daemon.ConfigStorageAllocation,
|
2022-10-16 20:17:26 +00:00
|
|
|
) (
|
|
|
|
|
string, error,
|
|
|
|
|
) {
|
|
|
|
|
|
|
|
|
|
if err := os.MkdirAll(alloc.MetaPath, 0750); err != nil {
|
|
|
|
|
return "", fmt.Errorf("making directory %q: %w", alloc.MetaPath, err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
thisHost := env.Bootstrap.ThisHost()
|
|
|
|
|
|
|
|
|
|
peer := garage.Peer{
|
|
|
|
|
IP: thisHost.Nebula.IP,
|
|
|
|
|
RPCPort: alloc.RPCPort,
|
|
|
|
|
S3APIPort: alloc.S3APIPort,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pubKey, privKey := peer.RPCPeerKey()
|
|
|
|
|
|
|
|
|
|
nodeKeyPath := filepath.Join(alloc.MetaPath, "node_key")
|
|
|
|
|
nodeKeyPubPath := filepath.Join(alloc.MetaPath, "node_keypub")
|
|
|
|
|
|
|
|
|
|
if err := os.WriteFile(nodeKeyPath, privKey, 0400); err != nil {
|
|
|
|
|
return "", fmt.Errorf("writing private key to %q: %w", nodeKeyPath, err)
|
|
|
|
|
|
|
|
|
|
} else if err := os.WriteFile(nodeKeyPubPath, pubKey, 0440); err != nil {
|
|
|
|
|
return "", fmt.Errorf("writing public key to %q: %w", nodeKeyPubPath, err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
garageTomlPath := filepath.Join(
|
|
|
|
|
env.RuntimeDirPath, fmt.Sprintf("garage-%d.toml", alloc.RPCPort),
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
err := garage.WriteGarageTomlFile(garageTomlPath, garage.GarageTomlData{
|
|
|
|
|
MetaPath: alloc.MetaPath,
|
|
|
|
|
DataPath: alloc.DataPath,
|
|
|
|
|
|
|
|
|
|
RPCSecret: env.Bootstrap.GarageRPCSecret,
|
|
|
|
|
AdminToken: env.Bootstrap.GarageAdminToken,
|
|
|
|
|
|
|
|
|
|
RPCAddr: net.JoinHostPort(thisHost.Nebula.IP, strconv.Itoa(alloc.RPCPort)),
|
|
|
|
|
APIAddr: net.JoinHostPort(thisHost.Nebula.IP, strconv.Itoa(alloc.S3APIPort)),
|
|
|
|
|
AdminAddr: net.JoinHostPort(thisHost.Nebula.IP, strconv.Itoa(alloc.AdminPort)),
|
|
|
|
|
|
|
|
|
|
BootstrapPeers: env.Bootstrap.GarageRPCPeerAddrs(),
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return "", fmt.Errorf("creating garage.toml file at %q: %w", garageTomlPath, err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return garageTomlPath, nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-10-26 21:21:31 +00:00
|
|
|
func garagePmuxProcConfigs(
|
|
|
|
|
env crypticnet.Env, daemonConfig daemon.Config,
|
|
|
|
|
) (
|
|
|
|
|
[]pmuxlib.ProcessConfig, error,
|
|
|
|
|
) {
|
2022-10-16 20:17:26 +00:00
|
|
|
|
|
|
|
|
var pmuxProcConfigs []pmuxlib.ProcessConfig
|
|
|
|
|
|
2022-10-26 21:21:31 +00:00
|
|
|
for _, alloc := range daemonConfig.Storage.Allocations {
|
2022-10-16 20:17:26 +00:00
|
|
|
|
2022-10-26 21:21:31 +00:00
|
|
|
childConfigPath, err := garageWriteChildConfig(env, alloc)
|
2022-10-16 20:17:26 +00:00
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, fmt.Errorf("writing child config file for alloc %+v: %w", alloc, err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pmuxProcConfigs = append(pmuxProcConfigs, pmuxlib.ProcessConfig{
|
2022-10-20 19:59:46 +00:00
|
|
|
Name: fmt.Sprintf("garage-%d", alloc.RPCPort),
|
|
|
|
|
Cmd: "garage",
|
2022-10-26 21:21:31 +00:00
|
|
|
Args: []string{"-c", childConfigPath, "server"},
|
2022-10-20 19:59:46 +00:00
|
|
|
StartAfterFunc: func(ctx context.Context) error {
|
|
|
|
|
return waitForNebula(ctx, env)
|
|
|
|
|
},
|
2022-10-16 20:17:26 +00:00
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return pmuxProcConfigs, nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-10-26 21:21:31 +00:00
|
|
|
func garageInitializeGlobalBucket(
|
|
|
|
|
ctx context.Context, env crypticnet.Env, daemonConfig daemon.Config,
|
|
|
|
|
) error {
|
2022-10-19 14:20:26 +00:00
|
|
|
|
|
|
|
|
var (
|
2022-10-26 21:21:31 +00:00
|
|
|
adminClient = newGarageAdminClient(env, daemonConfig)
|
2022-10-19 14:20:26 +00:00
|
|
|
globalBucketCreds = env.Bootstrap.GarageGlobalBucketS3APICredentials
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// first attempt to import the key
|
|
|
|
|
err := adminClient.Do(ctx, nil, "POST", "/v0/key/import", map[string]string{
|
|
|
|
|
"accessKeyId": globalBucketCreds.ID,
|
|
|
|
|
"secretAccessKey": globalBucketCreds.Secret,
|
|
|
|
|
"name": "shared-global-bucket-key",
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("importing global bucket key into garage: %w", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// create global bucket
|
|
|
|
|
err = adminClient.Do(ctx, nil, "POST", "/v0/bucket", map[string]string{
|
|
|
|
|
"globalAlias": garage.GlobalBucket,
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("creating global bucket: %w", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// retrieve newly created bucket's id
|
|
|
|
|
var getBucketRes struct {
|
|
|
|
|
ID string `json:"id"`
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err = adminClient.Do(
|
|
|
|
|
ctx, &getBucketRes,
|
|
|
|
|
"GET", "/v0/bucket?globalAlias="+garage.GlobalBucket, nil,
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("fetching global bucket id: %w", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// allow shared global bucket key to perform all operations
|
|
|
|
|
err = adminClient.Do(ctx, nil, "POST", "/v0/bucket/allow", map[string]interface{}{
|
|
|
|
|
"bucketId": getBucketRes.ID,
|
|
|
|
|
"accessKeyId": globalBucketCreds.ID,
|
|
|
|
|
"permissions": map[string]bool{
|
|
|
|
|
"read": true,
|
|
|
|
|
"write": true,
|
|
|
|
|
},
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("granting permissions to shared global bucket key: %w", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-10-26 21:21:31 +00:00
|
|
|
func garageApplyLayout(
|
|
|
|
|
ctx context.Context, env crypticnet.Env, daemonConfig daemon.Config,
|
|
|
|
|
) error {
|
2022-10-19 14:20:26 +00:00
|
|
|
|
|
|
|
|
var (
|
2022-10-26 21:21:31 +00:00
|
|
|
adminClient = newGarageAdminClient(env, daemonConfig)
|
2022-10-19 14:20:26 +00:00
|
|
|
thisHost = env.Bootstrap.ThisHost()
|
|
|
|
|
hostName = thisHost.Name
|
|
|
|
|
ip = thisHost.Nebula.IP
|
2022-10-26 21:21:31 +00:00
|
|
|
allocs = daemonConfig.Storage.Allocations
|
2022-10-19 14:20:26 +00:00
|
|
|
)
|
2022-10-16 20:17:26 +00:00
|
|
|
|
|
|
|
|
type peerLayout struct {
|
|
|
|
|
Capacity int `json:"capacity"`
|
|
|
|
|
Zone string `json:"zone"`
|
|
|
|
|
Tags []string `json:"tags"`
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
clusterLayout := map[string]peerLayout{}
|
|
|
|
|
|
|
|
|
|
for _, alloc := range allocs {
|
|
|
|
|
|
|
|
|
|
peer := garage.Peer{
|
2022-10-19 14:20:26 +00:00
|
|
|
IP: ip,
|
2022-10-16 20:17:26 +00:00
|
|
|
RPCPort: alloc.RPCPort,
|
|
|
|
|
S3APIPort: alloc.S3APIPort,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
clusterLayout[peer.RPCPeerID()] = peerLayout{
|
|
|
|
|
Capacity: alloc.Capacity / 100,
|
|
|
|
|
Zone: hostName,
|
2022-10-25 19:15:09 +00:00
|
|
|
Tags: []string{},
|
2022-10-16 20:17:26 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err := adminClient.Do(ctx, nil, "POST", "/v0/layout", clusterLayout)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("staging layout changes: %w", err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var clusterLayout struct {
|
|
|
|
|
Version int `json:"version"`
|
|
|
|
|
StagedRoleChanges map[string]peerLayout `json:"stagedRoleChanges"`
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if err := adminClient.Do(ctx, &clusterLayout, "GET", "/v0/layout", nil); err != nil {
|
|
|
|
|
return fmt.Errorf("retrieving staged layout change: %w", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if len(clusterLayout.StagedRoleChanges) == 0 {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
applyClusterLayout := struct {
|
|
|
|
|
Version int `json:"version"`
|
|
|
|
|
}{
|
|
|
|
|
Version: clusterLayout.Version + 1,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err := adminClient.Do(ctx, nil, "POST", "/v0/layout/apply", applyClusterLayout)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return fmt.Errorf("applying new layout (new version:%d): %w", applyClusterLayout.Version, err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
