forked from cerc-io/stack-orchestrator
		
	Compare commits
	
		
			6 Commits
		
	
	
		
			ag-check-p
			...
			main
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
| 34f3b719e4 | |||
| 0e814bd4da | |||
| 873a6d472c | |||
| 39df4683ac | |||
| 23ca4c4341 | |||
| f64ef5d128 | 
| @ -26,8 +26,14 @@ fi | ||||
| SCRIPT_DIR=$( cd -- "$( dirname -- "${BASH_SOURCE[0]}" )" &> /dev/null && pwd ) | ||||
| WORK_DIR="${1:-/app}" | ||||
| 
 | ||||
| if [ -f "${WORK_DIR}/build-webapp.sh" ]; then | ||||
|   echo "Building webapp with ${WORK_DIR}/build-webapp.sh ..." | ||||
| cd "${WORK_DIR}" || exit 1 | ||||
| 
 | ||||
|   ./build-webapp.sh || exit 1 | ||||
|   exit 0 | ||||
| fi | ||||
| 
 | ||||
| if [ -f "next.config.mjs" ]; then | ||||
|   NEXT_CONFIG_JS="next.config.mjs" | ||||
|   IMPORT_OR_REQUIRE="import" | ||||
|  | ||||
| @ -30,36 +30,44 @@ fi | ||||
| CERC_WEBAPP_FILES_DIR="${CERC_WEBAPP_FILES_DIR:-/app}" | ||||
| cd "$CERC_WEBAPP_FILES_DIR" | ||||
| 
 | ||||
| "$SCRIPT_DIR/apply-runtime-env.sh" "`pwd`" .next .next-r | ||||
| mv .next .next.old | ||||
| mv .next-r/.next . | ||||
| if [ -f "./run-webapp.sh" ]; then | ||||
|   echo "Running webapp with run-webapp.sh ..." | ||||
|   cd "${WORK_DIR}" || exit 1 | ||||
|   ./run-webapp.sh & | ||||
|   tpid=$! | ||||
|   wait $tpid | ||||
| else  | ||||
|   "$SCRIPT_DIR/apply-runtime-env.sh" "`pwd`" .next .next-r | ||||
|   mv .next .next.old | ||||
|   mv .next-r/.next . | ||||
| 
 | ||||
| if [ "$CERC_NEXTJS_SKIP_GENERATE" != "true" ]; then | ||||
|   jq -e '.scripts.cerc_generate' package.json >/dev/null | ||||
|   if [ $? -eq 0 ]; then | ||||
|     npm run cerc_generate > gen.out 2>&1 & | ||||
|     tail -f gen.out & | ||||
|     tpid=$! | ||||
|   if [ "$CERC_NEXTJS_SKIP_GENERATE" != "true" ]; then | ||||
|     jq -e '.scripts.cerc_generate' package.json >/dev/null | ||||
|     if [ $? -eq 0 ]; then | ||||
|       npm run cerc_generate > gen.out 2>&1 & | ||||
|       tail -f gen.out & | ||||
|       tpid=$! | ||||
| 
 | ||||
|     count=0 | ||||
|     generate_done="false" | ||||
|     while [ $count -lt $CERC_MAX_GENERATE_TIME ] && [ "$generate_done" == "false" ]; do | ||||
|       sleep 1 | ||||
|       count=$((count + 1)) | ||||
|       grep 'rendered as static' gen.out > /dev/null | ||||
|       if [ $? -eq 0 ]; then | ||||
|         generate_done="true" | ||||
|       count=0 | ||||
|       generate_done="false" | ||||
|       while [ $count -lt $CERC_MAX_GENERATE_TIME ] && [ "$generate_done" == "false" ]; do | ||||
|         sleep 1 | ||||
|         count=$((count + 1)) | ||||
|         grep 'rendered as static' gen.out > /dev/null | ||||
|         if [ $? -eq 0 ]; then | ||||
|           generate_done="true" | ||||
|         fi | ||||
|       done | ||||
| 
 | ||||
|       if [ $generate_done != "true" ]; then | ||||
|         echo "ERROR: 'npm run cerc_generate' not successful within CERC_MAX_GENERATE_TIME" 1>&2 | ||||
|         exit 1 | ||||
|       fi | ||||
|     done | ||||
| 
 | ||||
|     if [ $generate_done != "true" ]; then | ||||
|       echo "ERROR: 'npm run cerc_generate' not successful within CERC_MAX_GENERATE_TIME" 1>&2 | ||||
|       exit 1 | ||||
|       kill $tpid $(ps -ef | grep node | grep next | grep generate | awk '{print $2}') 2>/dev/null | ||||
|       tpid="" | ||||
|     fi | ||||
| 
 | ||||
|     kill $tpid $(ps -ef | grep node | grep next | grep generate | awk '{print $2}') 2>/dev/null | ||||
|     tpid="" | ||||
|   fi | ||||
| fi | ||||
| 
 | ||||
| $CERC_BUILD_TOOL start . -- -p ${CERC_LISTEN_PORT:-80} | ||||
|   $CERC_BUILD_TOOL start . -- -p ${CERC_LISTEN_PORT:-80} | ||||
| fi | ||||
|  | ||||
| @ -56,9 +56,8 @@ class DeploymentContext: | ||||
|         self.stack.init_from_file(self.get_stack_file()) | ||||
|         deployment_file_path = self.get_deployment_file() | ||||
|         if deployment_file_path.exists(): | ||||
|             with deployment_file_path: | ||||
|                 obj = get_yaml().load(open(deployment_file_path, "r")) | ||||
|                 self.id = obj[constants.cluster_id_key] | ||||
|             obj = get_yaml().load(open(deployment_file_path, "r")) | ||||
|             self.id = obj[constants.cluster_id_key] | ||||
|         # Handle the case of a legacy deployment with no file | ||||
|         # Code below is intended to match the output from _make_default_cluster_name() | ||||
|         # TODO: remove when we no longer need to support legacy deployments | ||||
|  | ||||
| @ -92,9 +92,8 @@ class Spec: | ||||
|         return self.obj.get(item, default) | ||||
| 
 | ||||
|     def init_from_file(self, file_path: Path): | ||||
|         with file_path: | ||||
|             self.obj = get_yaml().load(open(file_path, "r")) | ||||
|             self.file_path = file_path | ||||
|         self.obj = get_yaml().load(open(file_path, "r")) | ||||
|         self.file_path = file_path | ||||
| 
 | ||||
|     def get_image_registry(self): | ||||
|         return self.obj.get(constants.image_registry_key) | ||||
|  | ||||
| @ -27,5 +27,4 @@ class Stack: | ||||
|         self.name = name | ||||
| 
 | ||||
|     def init_from_file(self, file_path: Path): | ||||
|         with file_path: | ||||
|             self.obj = get_yaml().load(open(file_path, "r")) | ||||
|         self.obj = get_yaml().load(open(file_path, "r")) | ||||
|  | ||||
| @ -54,6 +54,7 @@ def process_app_deployment_request( | ||||
|     deployment_record_namespace, | ||||
|     dns_record_namespace, | ||||
|     default_dns_suffix, | ||||
|     dns_value, | ||||
|     deployment_parent_dir, | ||||
|     kube_config, | ||||
|     image_registry, | ||||
| @ -251,6 +252,7 @@ def process_app_deployment_request( | ||||
|         dns_record, | ||||
|         dns_lrn, | ||||
|         deployment_dir, | ||||
|         dns_value, | ||||
|         app_deployment_request, | ||||
|         webapp_deployer_record, | ||||
|         logger, | ||||
| @ -304,6 +306,7 @@ def dump_known_requests(filename, requests, status="SEEN"): | ||||
|     help="How to handle requests with an FQDN: prohibit, allow, preexisting", | ||||
|     default="prohibit", | ||||
| ) | ||||
| @click.option("--ip", help="IP address of the k8s deployment (to be set in DNS record)", default=None) | ||||
| @click.option("--record-namespace-dns", help="eg, lrn://laconic/dns", required=True) | ||||
| @click.option( | ||||
|     "--record-namespace-deployments", | ||||
| @ -381,6 +384,7 @@ def command(  # noqa: C901 | ||||
|     only_update_state, | ||||
|     dns_suffix, | ||||
|     fqdn_policy, | ||||
|     ip, | ||||
|     record_namespace_dns, | ||||
|     record_namespace_deployments, | ||||
|     dry_run, | ||||
| @ -429,6 +433,13 @@ def command(  # noqa: C901 | ||||
|         ) | ||||
|         sys.exit(2) | ||||
| 
 | ||||
|     if fqdn_policy == "allow" and not ip: | ||||
|         print( | ||||
|             "--ip is required with 'allow' fqdn-policy", | ||||
|             file=sys.stderr, | ||||
|         ) | ||||
|         sys.exit(2) | ||||
| 
 | ||||
|     tempdir = tempfile.mkdtemp() | ||||
|     gpg = gnupg.GPG(gnupghome=tempdir) | ||||
| 
 | ||||
| @ -665,6 +676,7 @@ def command(  # noqa: C901 | ||||
|                         record_namespace_deployments, | ||||
|                         record_namespace_dns, | ||||
|                         dns_suffix, | ||||
|                         ip, | ||||
|                         os.path.abspath(deployment_parent_dir), | ||||
|                         kube_config, | ||||
|                         image_registry, | ||||
|  | ||||
| @ -1,8 +1,59 @@ | ||||
| import fcntl | ||||
| from functools import wraps | ||||
| import os | ||||
| import time | ||||
| 
 | ||||
| # Define default file path for the lock | ||||
| DEFAULT_LOCK_FILE_PATH = "/tmp/registry_mutex_lock_file" | ||||
| LOCK_TIMEOUT = 30 | ||||
| LOCK_RETRY_INTERVAL = 3 | ||||
| 
 | ||||
| 
 | ||||
| def acquire_lock(client, lock_file_path, timeout): | ||||
|     # Lock alreay acquired by the current client | ||||
|     if client.mutex_lock_acquired: | ||||
|         return | ||||
| 
 | ||||
|     while True: | ||||
|         try: | ||||
|             # Check if lock file exists and is potentially stale | ||||
|             if os.path.exists(lock_file_path): | ||||
|                 with open(lock_file_path, 'r') as lock_file: | ||||
|                     timestamp = float(lock_file.read().strip()) | ||||
| 
 | ||||
|                 # If lock is stale, remove the lock file | ||||
|                 if time.time() - timestamp > timeout: | ||||
|                     print(f"Stale lock detected, removing lock file {lock_file_path}") | ||||
|                     os.remove(lock_file_path) | ||||
|                 else: | ||||
|                     print(f"Lock file {lock_file_path} exists and is recent, waiting...") | ||||
|                     time.sleep(LOCK_RETRY_INTERVAL) | ||||
|                     continue | ||||
| 
 | ||||
|             # Try to create a new lock file with the current timestamp | ||||
|             fd = os.open(lock_file_path, os.O_CREAT | os.O_EXCL | os.O_RDWR) | ||||
|             with os.fdopen(fd, 'w') as lock_file: | ||||
|                 lock_file.write(str(time.time())) | ||||
| 
 | ||||
|             client.mutex_lock_acquired = True | ||||
|             print(f"Registry lock acquired, {lock_file_path}") | ||||
| 
 | ||||
|             # Lock successfully acquired | ||||
|             return | ||||
| 
 | ||||
|         except FileExistsError: | ||||
|             print(f"Lock file {lock_file_path} exists, waiting...") | ||||
|             time.sleep(LOCK_RETRY_INTERVAL) | ||||
| 
 | ||||
| 
 | ||||
| def release_lock(client, lock_file_path): | ||||
|     try: | ||||
|         os.remove(lock_file_path) | ||||
| 
 | ||||
|         client.mutex_lock_acquired = False | ||||
|         print(f"Registry lock released, {lock_file_path}") | ||||
|     except FileNotFoundError: | ||||
|         # Lock file already removed | ||||
|         pass | ||||
| 
 | ||||
| 
 | ||||
| def registry_mutex(): | ||||
| @ -13,18 +64,13 @@ def registry_mutex(): | ||||
|             if self.mutex_lock_file: | ||||
|                 lock_file_path = self.mutex_lock_file | ||||
| 
 | ||||
|             with open(lock_file_path, 'w') as lock_file: | ||||
|                 try: | ||||
|                     # Try to acquire the lock | ||||
|                     fcntl.flock(lock_file, fcntl.LOCK_EX) | ||||
| 
 | ||||
|                     # Call the actual function | ||||
|                     result = func(self, *args, **kwargs) | ||||
|                 finally: | ||||
|                     # Always release the lock | ||||
|                     fcntl.flock(lock_file, fcntl.LOCK_UN) | ||||
| 
 | ||||
|             return result | ||||
|             # Acquire the lock before running the function | ||||
|             acquire_lock(self, lock_file_path, LOCK_TIMEOUT) | ||||
|             try: | ||||
|                 return func(self, *args, **kwargs) | ||||
|             finally: | ||||
|                 # Release the lock after the function completes | ||||
|                 release_lock(self, lock_file_path) | ||||
| 
 | ||||
|         return wrapper | ||||
| 
 | ||||
|  | ||||
| @ -117,7 +117,6 @@ class LaconicRegistryClient: | ||||
|     def __init__(self, config_file, log_file=None, mutex_lock_file=None): | ||||
|         self.config_file = config_file | ||||
|         self.log_file = log_file | ||||
|         self.mutex_lock_file = mutex_lock_file | ||||
|         self.cache = AttrDict( | ||||
|             { | ||||
|                 "name_or_id": {}, | ||||
| @ -126,6 +125,9 @@ class LaconicRegistryClient: | ||||
|             } | ||||
|         ) | ||||
| 
 | ||||
|         self.mutex_lock_file = mutex_lock_file | ||||
|         self.mutex_lock_acquired = False | ||||
| 
 | ||||
|     def whoami(self, refresh=False): | ||||
|         if not refresh and "whoami" in self.cache: | ||||
|             return self.cache["whoami"] | ||||
| @ -687,6 +689,7 @@ def publish_deployment( | ||||
|     dns_record, | ||||
|     dns_lrn, | ||||
|     deployment_dir, | ||||
|     dns_value=None, | ||||
|     app_deployment_request=None, | ||||
|     webapp_deployer_record=None, | ||||
|     logger=None, | ||||
| @ -719,6 +722,8 @@ def publish_deployment( | ||||
|     } | ||||
|     if app_deployment_request: | ||||
|         new_dns_record["record"]["request"] = app_deployment_request.id | ||||
|     if dns_value: | ||||
|         new_dns_record["record"]["value"] = dns_value | ||||
| 
 | ||||
|     if logger: | ||||
|         logger.log("Publishing DnsRecord.") | ||||
| @ -844,16 +849,21 @@ def confirm_payment(laconic: LaconicRegistryClient, record, payment_address, min | ||||
|         ) | ||||
|         return False | ||||
| 
 | ||||
|     # Check if the payment was already used on a | ||||
|     # Check if the payment was already used on a deployment | ||||
|     used = laconic.app_deployments( | ||||
|         {"deployer": payment_address, "payment": tx.hash}, all=True | ||||
|         {"deployer": record.attributes.deployer, "payment": tx.hash}, all=True | ||||
|     ) | ||||
|     if len(used): | ||||
|         logger.log(f"{record.id}: payment {tx.hash} already used on deployment {used}") | ||||
|         return False | ||||
|         # Fetch the app name from request record | ||||
|         used_request = laconic.get_record(used[0].attributes.request, require=True) | ||||
| 
 | ||||
|         # Check that payment was used for deployment of same application | ||||
|         if record.attributes.application != used_request.attributes.application: | ||||
|             logger.log(f"{record.id}: payment {tx.hash} already used on a different application deployment {used}") | ||||
|             return False | ||||
| 
 | ||||
|     used = laconic.app_deployment_removals( | ||||
|         {"deployer": payment_address, "payment": tx.hash}, all=True | ||||
|         {"deployer": record.attributes.deployer, "payment": tx.hash}, all=True | ||||
|     ) | ||||
|     if len(used): | ||||
|         logger.log( | ||||
|  | ||||
| @ -180,9 +180,7 @@ def get_k8s_dir(): | ||||
| def get_parsed_deployment_spec(spec_file): | ||||
|     spec_file_path = Path(spec_file) | ||||
|     try: | ||||
|         with spec_file_path: | ||||
|             deploy_spec = get_yaml().load(open(spec_file_path, "r")) | ||||
|             return deploy_spec | ||||
|         return get_yaml().load(open(spec_file_path, "r")) | ||||
|     except FileNotFoundError as error: | ||||
|         # We try here to generate a useful diagnostic error | ||||
|         print(f"Error: spec file: {spec_file_path} does not exist") | ||||
|  | ||||
		Loading…
	
		Reference in New Issue
	
	Block a user