mirror of
https://github.com/apache/cloudstack.git
synced 2025-10-26 08:42:29 +01:00
d949302d0f
* DB : Add support for MySQL 8
- Splits commands to create user and grant access on database, the old
statement is no longer supported by MySQL 8.x
- `NO_AUTO_CREATE_USER` is no longer supported by MySQL 8.x so remove
that from db.properties conn parameters
For mysql-server 8.x setup the following changes were added/tested to
make it work with CloudStack in /etc/mysql/mysql.conf.d/mysqld.cnf and
then restart the mysql-server process:
server_id = 1
sql-mode="STRICT_TRANS_TABLES,NO_ENGINE_SUBSTITUTION,ERROR_FOR_DIVISION_BY_ZERO,NO_ZERO_DATE,NO_ZERO_IN_DATE,NO_ENGINE_SUBSTITUTION"
innodb_rollback_on_timeout=1
innodb_lock_wait_timeout=600
max_connections=1000
log-bin=mysql-bin
binlog-format = 'ROW'
default-authentication-plugin=mysql_native_password
Notice the last line above, this is to reset the old password based
authentication used by MySQL 5.x.
Developers can set empty password as follows:
> sudo mysql -u root
ALTER USER 'root'@'localhost' IDENTIFIED BY '';
In libvirt repository, there are two related commits
2019-08-23 13:13 Daniel P. Berrangé ● rpm: don't enable socket activation in upgrade if --listen present
2019-08-22 14:52 Daniel P. Berrangé ● remote: forbid the --listen arg when systemd socket activation
In libvirt.spec.in
/bin/systemctl mask libvirtd.socket >/dev/null 2>&1 || :
/bin/systemctl mask libvirtd-ro.socket >/dev/null 2>&1 || :
/bin/systemctl mask libvirtd-admin.socket >/dev/null 2>&1 || :
/bin/systemctl mask libvirtd-tls.socket >/dev/null 2>&1 || :
/bin/systemctl mask libvirtd-tcp.socket >/dev/null 2>&1 || :
Co-authored-by: Wei Zhou <w.zhou@global.leaseweb.com>
Co-authored-by: Abhishek Kumar <abhishek.mrt22@gmail.com>
Co-authored-by: Rohit Yadav <rohit.yadav@shapeblue.com>
98 lines
4.5 KiB
Python
98 lines
4.5 KiB
Python
# Licensed to the Apache Software Foundation (ASF) under one
|
|
# or more contributor license agreements. See the NOTICE file
|
|
# distributed with this work for additional information
|
|
# regarding copyright ownership. The ASF licenses this file
|
|
# to you under the Apache License, Version 2.0 (the
|
|
# "License"); you may not use this file except in compliance
|
|
# with the License. You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing,
|
|
# software distributed under the License is distributed on an
|
|
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
|
|
# KIND, either express or implied. See the License for the
|
|
# specific language governing permissions and limitations
|
|
# under the License.
|
|
from .db import Database
|
|
from .configFileOps import configFileOps
|
|
from .serviceConfig import serviceCfgBase
|
|
from .cloudException import CloudRuntimeException, CloudInternalException
|
|
from .utilities import bash
|
|
import os
|
|
|
|
class cloudManagementConfig(serviceCfgBase):
|
|
def __init__(self, syscfg):
|
|
super(cloudManagementConfig, self).__init__(syscfg)
|
|
self.serviceName = "CloudStack Management Server"
|
|
|
|
def config(self):
|
|
def checkHostName():
|
|
ret = bash("hostname --fqdn")
|
|
if not ret.isSuccess():
|
|
raise CloudInternalException("Cannot get hostname, 'hostname --fqdn failed'")
|
|
|
|
if self.syscfg.env.svrMode == "mycloud":
|
|
cfo = configFileOps("/usr/share/cloudstack-management/conf/environment.properties", self)
|
|
cfo.addEntry("cloud-stack-components-specification", "components-cloudzones.xml")
|
|
cfo.save()
|
|
|
|
cfo = configFileOps("/usr/share/cloudstack-management/conf/db.properties", self)
|
|
dbHost = cfo.getEntry("db.cloud.host")
|
|
dbPort = cfo.getEntry("db.cloud.port")
|
|
dbUser = cfo.getEntry("db.cloud.username")
|
|
dbPass = cfo.getEntry("db.cloud.password")
|
|
if dbPass.strip() == "":
|
|
dbPass = None
|
|
dbName = cfo.getEntry("db.cloud.name")
|
|
db = Database(dbUser, dbPass, dbHost, dbPort, dbName)
|
|
|
|
try:
|
|
db.testConnection()
|
|
except CloudRuntimeException as e:
|
|
raise e
|
|
except:
|
|
raise CloudInternalException("Failed to connect to Mysql server")
|
|
|
|
try:
|
|
statement = """ UPDATE configuration SET value='%s' WHERE name='%s'"""
|
|
|
|
db.execute(statement%('true','use.local.storage'))
|
|
db.execute(statement%('20','max.template.iso.size'))
|
|
|
|
statement = """ UPDATE vm_template SET url='%s',checksum='%s' WHERE id='%s' """
|
|
db.execute(statement%('https://rightscale-cloudstack.s3.amazonaws.com/kvm/RightImage_CentOS_5.4_x64_v5.6.28.qcow2.bz2', '90fcd2fa4d3177e31ff296cecb9933b7', '4'))
|
|
|
|
statement="""UPDATE disk_offering set use_local_storage=1"""
|
|
db.execute(statement)
|
|
except:
|
|
raise e
|
|
|
|
#add DNAT 443 to 8250
|
|
if not bash("iptables-save |grep PREROUTING | grep 8250").isSuccess():
|
|
bash("iptables -A PREROUTING -t nat -p tcp --dport 443 -j REDIRECT --to-port 8250 ")
|
|
elif self.syscfg.env.svrMode == "HttpsServer":
|
|
if not bash("iptables-save |grep PREROUTING | grep 8443").isSuccess():
|
|
bash("iptables -A PREROUTING -t nat -p tcp --dport 443 -j REDIRECT --to-port 8443")
|
|
bash("touch /var/run/cloudstack-management.pid")
|
|
bash("chown cloud.cloud /var/run/cloudstack-management.pid")
|
|
checkHostName()
|
|
bash("mkdir -p /var/lib/cloudstack/")
|
|
bash("chown cloud:cloud -R /var/lib/cloudstack/")
|
|
#set max process per account is unlimited
|
|
if os.path.exists("/etc/security/limits.conf"):
|
|
cfo = configFileOps("/etc/security/limits.conf")
|
|
cfo.add_lines("cloud soft nproc -1\n")
|
|
cfo.add_lines("cloud hard nproc -1\n")
|
|
cfo.save()
|
|
|
|
if self.syscfg.env.noStart == False:
|
|
self.syscfg.svo.stopService("cloudstack-management")
|
|
if self.syscfg.svo.enableService("cloudstack-management"):
|
|
return True
|
|
else:
|
|
raise CloudRuntimeException("Failed to configure %s, please see the /var/log/cloudstack/management/setupManagement.log for detail"%self.serviceName)
|
|
else:
|
|
print("Configured successfully, but not starting management server.")
|
|
return True
|