aboutsummaryrefslogtreecommitdiff
path: root/manifests
diff options
context:
space:
mode:
Diffstat (limited to 'manifests')
-rw-r--r--manifests/init.pp9
-rw-r--r--manifests/vserver.pp194
-rw-r--r--manifests/xen.pp38
3 files changed, 241 insertions, 0 deletions
diff --git a/manifests/init.pp b/manifests/init.pp
new file mode 100644
index 0000000..ff2df80
--- /dev/null
+++ b/manifests/init.pp
@@ -0,0 +1,9 @@
+# virtual/init.pp -- miscellaneous stuff for virtual hosts and guests
+# Copyright (C) 2007 David Schmitt <david@schmitt.edv-bus.at>
+# See LICENSE for the full license granted to you.
+# Based on the work of abnormaliti on http://reductivelabs.com/trac/puppet/wiki/VirtualRecipe
+
+modules_dir{ "virtual": }
+
+import "vserver.pp"
+import "xen.pp"
diff --git a/manifests/vserver.pp b/manifests/vserver.pp
new file mode 100644
index 0000000..42c1fdf
--- /dev/null
+++ b/manifests/vserver.pp
@@ -0,0 +1,194 @@
+# virtual/vserver.pp -- manage vserver specifica
+# Copyright (C) 2007 David Schmitt <david@schmitt.edv-bus.at>
+# See LICENSE for the full license granted to you.
+
+modules_dir{ "virtual/contexts": }
+
+class vserver::host {
+
+ package { [ 'util-vserver', debootstrap ]: ensure => installed, }
+
+ file {
+ "/usr/local/bin/build_vserver":
+ source => "puppet://$servername/virtual/build_vserver",
+ mode => 0755, owner => root, group => root,
+ require => [ Package['util-vserver'], Package[debootstrap],
+ # this comes from dbp module and is the most current puppet deb
+ File["/var/lib/puppet/modules/dbp/puppet_current.deb"] ];
+ "/etc/vservers/local-interfaces/":
+ ensure => directory,
+ mode => 0755, owner => root, group => root;
+ }
+
+}
+
+define vs_create($in_domain, $legacy = false) {
+ $vs_name = $legacy ? { true => $name, false => $in_domain ? { '' => $name, default => "${name}.${in_domain}" } }
+
+ case $vs_name { '': { fail ( "Cannot create VServer with empty name" ) } }
+
+ case $legacy {
+ true: {
+ exec { "/usr/local/bin/build_vserver \"${vs_name}\" \"${in_domain}\"":
+ creates => "/etc/vservers/${vs_name}",
+ require => File["/usr/local/bin/build_vserver"],
+ alias => "vs_create_${vs_name}"
+ }
+ }
+ false: {
+ exec { "/usr/local/bin/build_vserver \"${vs_name}\" \"\"":
+ creates => "/etc/vservers/${vs_name}",
+ require => File["/usr/local/bin/build_vserver"],
+ alias => "vs_create_${vs_name}"
+ }
+ }
+ }
+}
+
+
+# ensure: present, stopped, running
+define vserver($ensure, $context, $in_domain = '', $mark = '', $legacy = false) {
+ case $in_domain { '': {}
+ default: { err("${fqdn}: vserver ${name} uses deprecated \$in_domain" ) }
+ }
+ $vs_name = $legacy ? { true => $name, false => $in_domain ? { '' => $name, default => "${name}.${in_domain}" } }
+ $if_dir = "/etc/vservers/${vs_name}/interfaces/"
+ $mark_file = "/etc/vservers/${vs_name}/apps/init/mark"
+
+ case $vs_name { '': { fail ( "Cannot create VServer with empty name" ) } }
+
+ # TODO: wasn't there a syntax for using arrays as case selectors??
+ case $ensure {
+ present: { vs_create{$name: in_domain => $in_domain, legacy => $legacy, } }
+ running: { vs_create{$name: in_domain => $in_domain, legacy => $legacy, } }
+ stopped: { vs_create{$name: in_domain => $in_domain, legacy => $legacy, } }
+ default: { err("${fqdn}: vserver(${vs_name}): unknown ensure '${ensure}'") }
+ }
+
+ file {
+ $if_dir:
+ ensure => directory, checksum => mtime,
+ require => Exec["vs_create_${vs_name}"];
+ }
+
+ config_file {
+ "/etc/vservers/${vs_name}/context":
+ content => "${context}\n",
+ notify => Exec["vs_restart_${vs_name}"],
+ require => Exec["vs_create_${vs_name}"];
+ # create illegal configuration, when two vservers have the same context
+ # number
+ "/var/lib/puppet/modules/virtual/contexts/${context}":
+ content => "\n";
+ "/etc/vservers/${vs_name}/uts/nodename":
+ content => "${vs_name}\n",
+ notify => Exec["vs_restart_${vs_name}"],
+ require => Exec["vs_create_${vs_name}"];
+ "/etc/vservers/${vs_name}/name":
+ content => "${vs_name}\n",
+ # Changing this needs no restart
+ # notify => Exec["vs_restart_${vs_name}"],
+ require => Exec["vs_create_${vs_name}"];
+ }
+
+ case $ensure {
+ stopped: {
+ exec { "vserver ${vs_name} stop":
+ onlyif => "test -e \$(readlink -f /etc/vservers/${vs_name}/run || echo /doesntexist )",
+ require => Exec["vs_create_${vs_name}"],
+ # fake the restart exec in the stopped case, so the dependencies are fulfilled
+ alias => "vs_restart_${vs_name}",
+ }
+ file { $mark_file: ensure => absent, }
+ }
+ running: {
+ exec { "vserver ${vs_name} start":
+ unless => "test -e \$(readlink -f /etc/vservers/${vs_name}/run)",
+ require => Exec["vs_create_${vs_name}"],
+ }
+
+ exec { "vserver ${vs_name} restart":
+ refreshonly => true,
+ require => Exec["vs_create_${vs_name}"],
+ alias => "vs_restart_${vs_name}",
+ subscribe => File[$if_dir],
+ }
+
+ case $mark {
+ '': {
+ err("${fqdn}: vserver ${vs_name} set to running, but won't be started on reboot without mark!")
+ file { $mark_file: ensure => absent, }
+ }
+ default: {
+ config_file { "/etc/vservers/${vs_name}/apps/init/mark":
+ content => "${mark}\n",
+ require => Exec["vs_create_${vs_name}"],
+ }
+ }
+ }
+ }
+ }
+
+}
+
+# Changeing stuff with this define won't do much good, since it relies on
+# restarting the vservers to do the work, which won't clean up orphaned
+# interfaces
+define vs_interface($prefix = 24, $dev = '') {
+
+ file {
+ "/etc/vservers/local-interfaces/${name}/":
+ ensure => directory,
+ mode => 0755, owner => root, group => root;
+ "/etc/vservers/local-interfaces/${name}/ip":
+ content => "${name}\n",
+ mode => 0644, owner => root, group => root;
+ "/etc/vservers/local-interfaces/${name}/prefix":
+ content => "${prefix}\n",
+ mode => 0644, owner => root, group => root;
+ }
+
+ case $dev {
+ '': {
+ file {
+ "/etc/vservers/local-interfaces/${name}/nodev":
+ ensure => present,
+ mode => 0644, owner => root, group => root;
+ "/etc/vservers/local-interfaces/${name}/dev":
+ ensure => absent;
+ }
+ }
+ default: {
+ config_file { "/etc/vservers/local-interfaces/${name}/dev": content => $dev, }
+ file { "/etc/vservers/local-interfaces/${name}/nodev": ensure => absent, }
+ }
+ }
+}
+
+define vs_ip($vserver, $ip, $ensure) {
+ err("$fqdn is using deprecated vs_ip instead of vs_ip_binding for $name")
+ vs_ip_binding { $name: vserver => $vserver, ip => $ip, ensure => $ensure }
+}
+
+define vs_ip_binding($vserver, $ip, $ensure) {
+ case $ensure {
+ connected: {
+ file { "/etc/vservers/${vserver}/interfaces/${name}":
+ ensure => "/etc/vservers/local-interfaces/${ip}/",
+ require => [ File["/etc/vservers/local-interfaces/${ip}/"], Exec["vs_create_${vserver}"] ],
+ notify => Exec["vs_restart_${vserver}"],
+ }
+ }
+ disconnected: {
+ file { "/etc/vservers/${vserver}/interfaces/${name}":
+ ensure => absent,
+ # TODO: fix message:
+ # warning: //ic/vs_ip[mailman_00]/File[/etc/vservers/mailman/interfaces/mailman_00]: Exec[vserver mailman restart] still depend on me -- not deleting
+ # notify => Exec["vs_restart_${vserver}"],
+ }
+ }
+ default: {
+ err( "${fqdn}: vs_ip: ${vserver} -> ${ip}: unknown ensure: '${ensure}'" )
+ }
+ }
+}
diff --git a/manifests/xen.pp b/manifests/xen.pp
new file mode 100644
index 0000000..afaa59c
--- /dev/null
+++ b/manifests/xen.pp
@@ -0,0 +1,38 @@
+# virtual/xen.pp -- XEN specifica
+# Copyright (C) 2007 David Schmitt <david@schmitt.edv-bus.at>
+# See LICENSE for the full license granted to you.
+
+class munin::plugins::xen {
+ munin::remoteplugin {
+ xen_mem:
+ source => "puppet://$servername/virtual/munin/xen_mem",
+ config => "user root";
+ xen_vm:
+ source => "puppet://$servername/virtual/munin/xen_vm",
+ config => "user root";
+ }
+}
+
+class xen::domain {
+ # install the special libc and parameters to enable it
+ $xen_ensure = $virtual ? {
+ 'xen0' => present,
+ 'xenu' => present,
+ default => 'absent'
+ }
+
+ case $ensure {
+ 'absent': { err("xen::domain configured, but not detected") }
+ }
+
+ package { libc6-xen:
+ ensure => $xen_ensure,
+ }
+
+ config_file {
+ "/etc/ld.so.conf.d/nosegneg.conf":
+ ensure => $xen_ensure,
+ content => "hwcap 0 nosegneg\n",
+ }
+
+}