Mercurial > hg > release > thermostat-0.5
view agent/cli/src/main/java/com/redhat/thermostat/agent/cli/impl/db/MongoProcessRunner.java @ 899:40be72a1345c
Add SSL (option) to storage command.
This is the first step towards adding TLS to mongo<-->agent|client|webservice
communication. It adds appropriate options to the mongod command if thermostat
is so configured. In order to test this better, I've refactored
MongoProcessRunner a bit. Also, DBStartupConfiguration does the parsing of the
db.properties file now. As such it's also easier to test. Tests have been added
for it too. Finally, I've renamed the c.r.t.agent.cli.db package to
c.r.t.agent.cli.impl.db to better reflect in the package name that it is an
internal package.
Note that you'll need to have a mongod available on your system which
understands --ssl* options in order to be able to fire mongod up with SSL
enabled. These options are only added if appropriate config is in place in
db.properties. Since it defaults to false, it should be OK to be pushed now
without breaking existing behaviour.
What comes next is adding support on agent/client/webservice side so that they
can talk SSL over the mongodb channel as well.
Reviewed-by: vanaltj, rkennke
Review-thread: http://icedtea.classpath.org/pipermail/thermostat/2012-December/004940.html
PR1243
| author | Severin Gehwolf <sgehwolf@redhat.com> |
|---|---|
| date | Fri, 21 Dec 2012 14:19:06 +0100 |
| parents | agent/cli/src/main/java/com/redhat/thermostat/agent/cli/db/MongoProcessRunner.java@5a2d3c43b551 |
| children | ccac9bcabaa0 |
line wrap: on
line source
/* * Copyright 2012 Red Hat, Inc. * * This file is part of Thermostat. * * Thermostat is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published * by the Free Software Foundation; either version 2, or (at your * option) any later version. * * Thermostat is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * General Public License for more details. * * You should have received a copy of the GNU General Public License * along with Thermostat; see the file COPYING. If not see * <http://www.gnu.org/licenses/>. * * Linking this code with other modules is making a combined work * based on this code. Thus, the terms and conditions of the GNU * General Public License cover the whole combination. * * As a special exception, the copyright holders of this code give * you permission to link this code with independent modules to * produce an executable, regardless of the license terms of these * independent modules, and to copy and distribute the resulting * executable under terms of your choice, provided that you also * meet, for each linked independent module, the terms and conditions * of the license of that module. An independent module is a module * which is not derived from or based on this code. If you modify * this code, you may extend this exception to your version of the * library, but you are not obligated to do so. If you do not wish * to do so, delete this exception statement from your version. */ package com.redhat.thermostat.agent.cli.impl.db; import java.io.BufferedReader; import java.io.File; import java.io.IOException; import java.io.InputStream; import java.io.InputStreamReader; import java.nio.charset.Charset; import java.nio.file.Files; import java.util.ArrayList; import java.util.Arrays; import java.util.List; import java.util.logging.Level; import java.util.logging.Logger; import com.redhat.thermostat.agent.cli.impl.locale.LocaleResources; import com.redhat.thermostat.common.config.InvalidConfigurationException; import com.redhat.thermostat.common.locale.Translate; import com.redhat.thermostat.common.tools.ApplicationException; import com.redhat.thermostat.common.utils.LoggedExternalProcess; import com.redhat.thermostat.common.utils.LoggingUtils; import com.redhat.thermostat.service.process.UnixProcessUtilities; public class MongoProcessRunner { private static final Translate<LocaleResources> translator = LocaleResources.createLocalizer(); private static final Logger logger = LoggingUtils.getLogger(MongoProcessRunner.class); private static final String MONGO_PROCESS = "mongod"; private static final String [] MONGO_BASIC_ARGS = { "mongod", "--quiet", "--fork", "--auth", "--nohttpinterface", "--bind_ip" }; private static final String [] MONGO_SHUTDOWN_ARGS = { "kill", "-s", "TERM" }; private static final String NO_JOURNAL_ARGUMENT = "--nojournal"; private static final String NO_JOURNAL_FIRST_VERSION = "1.9.2"; private DBStartupConfiguration configuration; private boolean isQuiet; public MongoProcessRunner(DBStartupConfiguration configuration, boolean quiet) { this.configuration = configuration; this.isQuiet = quiet; } private String getPid() { String pid = null; File pidfile = configuration.getPidFile(); Charset charset = Charset.defaultCharset(); if (pidfile.exists()) { try (BufferedReader reader = Files.newBufferedReader(pidfile.toPath(), charset)) { pid = reader.readLine(); if (pid == null || pid.isEmpty()) { pid = null; } } catch (IOException ex) { logger.log(Level.WARNING, "Exception while reading pid file", ex); pid = null; } } return pid; } public void stopService() throws IOException, InterruptedException, InvalidConfigurationException, ApplicationException { List<String> commands = new ArrayList<>(Arrays.asList(MONGO_SHUTDOWN_ARGS)); commands.add(getPid()); LoggedExternalProcess process = new LoggedExternalProcess(commands); int status = process.runAndReturnResult(); if (status == 0) { display(translator.localize(LocaleResources.SERVER_SHUTDOWN_COMPLETE, configuration.getDBPath().toString())); display(translator.localize(LocaleResources.LOG_FILE_AT, configuration.getLogFile().toString())); // all went well, make sure to remove pid file. try { Files.delete(configuration.getPidFile().toPath()); } catch (IOException e) { // ignore } } else { String message = translator.localize(LocaleResources.CANNOT_SHUTDOWN_SERVER, configuration.getDBPath().toString(), String.valueOf(status)); display(message); throw new StorageStopException(configuration.getDBPath(), status, message); } } private boolean checkExistingProcess() { String pid = getPid(); if (pid == null) return false; String processName = UnixProcessUtilities.getInstance().getProcessName(getPid()); // TODO: check if we want mongos or mongod from the configs return processName != null && processName.equalsIgnoreCase(MONGO_PROCESS); } public void startService() throws IOException, InterruptedException, ApplicationException, InvalidConfigurationException { String pid = getPid(); if (pid != null) { String message = null; if (!checkExistingProcess()) { message = translator.localize(LocaleResources.STALE_PID_FILE_NO_MATCHING_PROCESS, configuration.getPidFile().toString(), MONGO_PROCESS); // Mongo didn't remove its PID file? Work around the issue. Log // the event, remove the stale pid file and continue. logger.log(Level.WARNING, message); try { Files.delete(configuration.getPidFile().toPath()); } catch (IOException benign) { // ignore this benign error } } else { message = translator.localize(LocaleResources.STORAGE_ALREADY_RUNNING_WITH_PID, String.valueOf(pid)); display(message); throw new StorageAlreadyRunningException(Integer.valueOf(pid), message); } } String dbVersion = getDBVersion(); List<String> commands = null; commands = getStartupCommand(dbVersion); display(translator.localize(LocaleResources.STARTING_STORAGE_SERVER)); LoggedExternalProcess process = new LoggedExternalProcess(commands); int status = -1; try { status = process.runAndReturnResult(); } catch (ApplicationException ae) { String message = translator.localize(LocaleResources.CANNOT_EXECUTE_PROCESS, MONGO_PROCESS); display(message); throw ae; } Thread.sleep(500); if (status == 0) { pid = getPid(); if (pid == null) status = -1; } if (status == 0) { display(translator.localize(LocaleResources.SERVER_LISTENING_ON, configuration.getDBConnectionString())); display(translator.localize(LocaleResources.LOG_FILE_AT, configuration.getLogFile().toString())); display(translator.localize(LocaleResources.PID_IS, String.valueOf(pid))); } else { String message = translator.localize(LocaleResources.CANNOT_START_SERVER, configuration.getDBPath().toString(), String.valueOf(status)); display(message); throw new StorageStartException(configuration.getDBPath(), status, message); } } List<String> getStartupCommand(String dbVersion) throws IOException, InvalidConfigurationException { List<String> commands = new ArrayList<>(Arrays.asList(MONGO_BASIC_ARGS)); if (dbVersion.compareTo(NO_JOURNAL_FIRST_VERSION) >= 0) { commands.add(1, NO_JOURNAL_ARGUMENT); } commands.add(configuration.getBindIP()); commands.add("--dbpath"); commands.add(configuration.getDBPath().getCanonicalPath()); commands.add("--logpath"); commands.add(configuration.getLogFile().getCanonicalPath()); commands.add("--pidfilepath"); commands.add(configuration.getPidFile().getCanonicalPath()); commands.add("--port"); commands.add(Long.toString(configuration.getPort())); if (configuration.isSslEnabled()) { // check for configuration which has a chance of working :) if (configuration.getSslPemFile() == null) { throw new InvalidConfigurationException("No SSL PEM file specified!"); } else if (configuration.getSslKeyPassphrase() == null) { throw new InvalidConfigurationException("No SSL key passphrase set!"); } commands.add("--sslOnNormalPorts"); commands.add("--sslPEMKeyFile"); commands.add(configuration.getSslPemFile().getCanonicalPath()); commands.add("--sslPEMKeyPassword"); commands.add(configuration.getSslKeyPassphrase()); } return commands; } private String getDBVersion() throws IOException { Process process; try { process = new ProcessBuilder(Arrays.asList("mongod", "--version")) .start(); } catch (IOException e) { String message = translator.localize( LocaleResources.CANNOT_EXECUTE_PROCESS, MONGO_PROCESS); display(message); throw e; } InputStream out = process.getInputStream(); InputStreamReader reader = new InputStreamReader(out); BufferedReader bufReader = new BufferedReader(reader); String firstLine = bufReader.readLine(); int commaIdx = firstLine.indexOf(",", 12); String versionString = firstLine.substring(12, commaIdx); return versionString; } private void display(String message) { if (!isQuiet) { System.out.println(message); } } }