#!/bin/bash
# vim: set ft=sh :
set -ue
ROOT=$(pwd)
# resolve $0
self=$0
while [ -L $self ]; do
tgt=$(readlink $self)
if [ "${tgt:0:1}" == "/" ]; then
self=$tgt
else
self=$(dirname $self)/$tgt
fi
done
# bin dir
BIN=$(dirname $self)
PROCESS_ZONE=$BIN/process-zone
EXPAND_ZONE=$BIN/expand-zone
UPDATE_SERIAL=$BIN/update-serial
# data files
DATA=settings
ZONES=zones
SERIALS=$DATA
REPO=
# data args
PROCESS_ARGS='--input-charset latin-1'
FORWARD_MX=mail
REVERSE_ZONE=194.197.235
REVERSE_DOMAIN=paivola.fi
# external progs
NAMED_CHECKZONE=/usr/sbin/named-checkzone
HG=/usr/bin/hg
RNDC=/usr/sbin/rndc
## options
IS_TTY=
LOG_WARN=y
LOG=y
LOG_INFO=
LOG_DEBUG=
LOG_CMD=
UPDATE_FORCE=
UPDATE_NOOP=
UPDATE_DIFF=
SERIAL_NOUPDATE=
COMMIT_SKIP=
COMMIT_FORCE=
COMMIT_MSG=' '
DEPLOY_SKIP=
function help_args {
local prog=$1
cat <<END
Usage: $prog [options]
General:
-h display this help text
-d DIR datadir
Logging:
-q quiet
-v verbose
-D debug
-V debug commands
Updates:
-p show changes
-F force-updates without checking src mtime
-S do not update serial
-n no-op/mock-update; don't actually change anything; implies -SpC
Commit
-C do not commit changes
-c commit changes
-m MSG commit message
END
}
function parse_args {
OPTIND=1
while getopts 'hd:qvDVpFSnCcm:' opt "$@"; do
case $opt in
h)
help_args $0
exit 0
;;
d) ROOT="$OPTARG" ;;
q)
LOG=
LOG_WARN=
;;
v) LOG_INFO=y ;;
D)
LOG_DEBUG=y
LOG_INFO=y
;;
V) LOG_CMD=y ;;
p) UPDATE_DIFF=y ;;
F) UPDATE_FORCE=y ;;
S) SERIAL_NOUPDATE=y ;;
n)
UPDATE_NOOP=y
# implies -Sp
UPDATE_DIFF=y
SERIAL_NOUPDATE=y
COMMIT_SKIP=y
DEPLOY_SKIP=y
;;
C) COMMIT_SKIP=y ;;
c) COMMIT_FORCE=y ;;
m) COMMIT_MSG="$OPTARG" ;;
?)
die
;;
esac
done
}
## lib
function log_msg {
echo "$*" >&2
}
function log_color {
local code=$1; shift
if [ $IS_TTY ]; then
echo $'\e[0;'${code}'m'"$*"$'\e[00m' >&2
else
echo "$*" >&2
fi
}
function log_error {
log_color 31 "$*"
}
function log_warn {
[ $LOG_WARN ] && log_color 33 "$*" || true
}
function log {
[ $LOG ] && log_msg "$*" || true
}
function log_info {
[ $LOG_INFO ] && log_color 36 " $*" || true
}
function log_debug {
[ $LOG_DEBUG ] && log_color 32 " $*" || true
}
function log_cmd {
[ $LOG_CMD ] && log_color 35 " \$ $*" || true
}
# XXX: broken
function log_stack {
local level=1
while info=$(caller $level); do
echo $info | read line sub file
log_msg "$file:$lineno $sub()"
level=$(($level + 1))
done
}
function fail {
func=$(caller 1 | cut -d ' ' -f 2)
log_error "$func: $*"
exit 2
}
function die {
log_error "$*"
exit 1
}
function cmd {
log_cmd "$@"
"$@" || die "Failed"
}
function run_cmd {
local msg=$1; shift
log_info "$msg... "
cmd "$@"
}
function indent () {
local indent=$1; shift
log_cmd "$@"
"$@" | sed "s/^/$indent/"
return ${PIPESTATUS[0]}
}
function abspath () {
echo "$ROOT/$1"
}
## hg
function hg {
local repo=$REPO; shift
cmd $HG -R $ROOT/$repo "$@"
}
function hg_modified {
hg id | grep -q '+'
}
function hg_user {
if [ ${SUDO_USER:-} ]; then
echo '-u' "$SUDO_USER"
elif [ $HOME ] && [ -e $HOME/.hgrc ]; then
log_debug "using .hgrc user"
echo ''
else
echo '-u' "$USER"
fi
}
function hg_diff {
hg diff
}
function hg_commit {
local msg=$2
local user_opt=$(hg_user)
log_debug "commit: $user_opt: $msg"
hg commit $user_opt -m "$msg"
}
## functions
function check_update {
# target
local dst=$1; shift
log_debug "check_update: $dst"
# need update?
local update=
if [ ! -e $dst ] || [ $UPDATE_FORCE ]; then
log_debug " update forced"
update=y
fi
# check deps
for dep in "$@"; do
# don't bother checking if already figured out
[ $update ] && continue
# check
if [ $ROOT/$dst -ot $ROOT/$dep ]; then
log_debug " changed: $dep"
update=y
fi
done
[ ! $update ] && log_debug " up-to-date"
# return
[ $update ]
}
function do_update {
local dst=$1; shift
local tmp=$dst.new
log_debug "update: $dst"
cmd "$@" > $ROOT/$tmp
# compare
if [ -e $ROOT/$dst ] && [ $UPDATE_DIFF ]; then
log_debug " changes:"
# terse
indent " " diff --unified=1 $ROOT/$dst $ROOT/$tmp || true
fi
if [ $UPDATE_NOOP ]; then
# cleanup
log_debug " no-op"
cmd rm $ROOT/$tmp
else
# commit
log_debug " update"
cmd mv $ROOT/$tmp $ROOT/$dst
fi
}
function update {
local dst=$1; shift;
local sep=
local dep=()
local cmd=()
for arg in "$@"; do
if [ $arg == '--' ]; then
sep=y
fi
if [ $sep ]; then
cmd=("${cmd[@]:-}" "$arg")
else
dep=("${dep[@]:-}" "$arg")
fi
done
[ ! $sep ] && fail "Invalid args given: $@"
check_update $dst "${dep[@]}" && do_update $dst "${cmd[@]}" || true
}
function check_link {
local lnk=$1
local tgt=$2
[ ! -e $ROOT/$lnk ] || [ $(readlink $ROOT/$lnk) != $ROOT/$tgt ]
}
function do_link {
local lnk=$1
local tgt=$2
cmd ln -sf $ROOT/$tgt $ROOT/$lnk
}
## hosts
# copy hosts input zone verbatim
function copy_hosts {
local zone=$1
local base=$2
log_debug "base: $base"
if check_update $zone $base; then
log_info "Copying hosts $zone <- $base..."
do_update $zone \
cat $ROOT/$base
else
log_info "Copying hosts $zone <- $base: not changed"
fi
}
# generate hosts zone from input zone
function update_hosts {
local zone=$1; shift
local base=$1; shift
if check_update $zone $base; then
log_info "Generating hosts $zone <- $base..."
do_update $zone \
$PROCESS_ZONE $PROCESS_ARGS $ROOT/$base "$@"
else
log_info "Generating hosts $zone <- $base: not changed"
fi
}
## actions
# serial
function update_serial {
local zone=$1; shift
local serial=$SERIALS/$zone.serial
local old=$(test -e $ROOT/$serial && cat $ROOT/$serial || echo '')
log_info "Updating $serial..."
cmd $UPDATE_SERIAL $* $ROOT/$serial
local new=$(cat $ROOT/$serial)
log_debug " $old -> $new"
}
function link_serial {
local zone=$1
local base=$2
local lnk=$SERIALS/$zone.serial
local tgt=$SERIALS/$base.serial
if check_link $lnk $tgt; then
log_info "Linking $lnk -> $tgt..."
do_link $lnk $tgt
else
log_info "Linking $lnk -> $tgt: not changed"
fi
}
# zone
function copy_zone {
local view=$1
local zone=$2
local base=${3:-$zone}
local out=$ZONES/$view/$zone
local src=$DATA/$base
if check_update $out $src; then
log_info "Copying $out <- $src..."
do_update $out cat $ROOT/$src
else
log_info "Copying $out <- $src: not changed"
fi
}
function update_zone {
local view=$1
local zone=$2
local base=${3:-$zone}
local out=$ZONES/$view/$zone
local src=$DATA/$base.zone
local lnk=$ZONES/$base
local serial=$SERIALS/$base.serial
log_debug "$out: from src $src"
if [ ! -e $src ]; then
fail "Missing source: $src"
elif check_update $out $src $serial; then
log_info "Generating $out <- $src..."
do_update $out \
$EXPAND_ZONE $ROOT/$src \
--serial $ROOT/$serial \
--expand zones=$(abspath $ZONES) \
--expand view=$view
else
log_info "Generating $out <- $src: not changed"
fi
}
function link_zone {
local view=$1
local zone=$2
local base=${3:-$zone}
local out=$ZONES/$view/$zone
for tgt in $ZONES/$view/$base $ZONES/common/$base; do
[ $tgt != $out ] && [ -e $tgt ] && break
done
log_debug "$out: from "
if check_link $out $tgt; then
log_info "Linking $out -> $tgt..."
do_link $out $tgt
else
log_info "Linking $out -> $tgt: not changed"
fi
}
## Tests
function check_hosts {
local hosts=$1; shift 1
local cmd=($PROCESS_ZONE $PROCESS_ARGS $ROOT/$hosts --check-hosts "$@")
if "${cmd[@]}" -q; then
log_info "Check $hosts: OK"
else
log_error " Check $hosts: Failed"
indent " " "${cmd[@]}"
exit 1
fi
}
function check_zone {
local view=$1
local zone=$2
local origin=$3
local src=$ZONES/$view/$zone
local cmd=($NAMED_CHECKZONE $origin $ROOT/$src)
# test
# XXX: checkzone is very specific about the order of arguments, -q must be first
if $NAMED_CHECKZONE -q $origin $ROOT/$src; then
log_info "Check $src ($origin): OK"
else
log_error " Check $src ($origin): Failed:"
indent " " "${cmd[@]}"
exit 1
fi
}
## Deploy
# deploy new zone data to bind
function deploy_zones {
indent " rndc: " $RNDC reload
}
# commit data changes
function commit_data {
local repo=$REPO
if hg_modified; then
log_info "Commit changes in $repo:"
indent " " hg_diff
hg_commit "$COMMIT_MSG"
else
log_info "Commit changes in $repo: no changes"
fi
}
function ensure_dir {
local dir=$1
if [ ! -d $ROOT/$dir ]; then
log_warn "Creating output dir: $dir"
cmd mkdir $ROOT/$dir
fi
}
function main {
# test tty
[ -t 1 ] && IS_TTY=y
parse_args "$@"
## test env
[ -d $ROOT/$DATA ] || die "Missing data: $ROOT/$DATA"
ensure_dir $ZONES
# output dirs
local views=(internal external)
for view in "${views[@]}" "common" "hosts" "includes"; do
ensure_dir $ZONES/$view
done
## hosts
# test
log "Testing hosts..."
check_hosts $DATA/paivola.txt --check-exempt ufc
# update
log "Generating host zones..."
# zone base *args
update_hosts $ZONES/hosts/paivola:internal $DATA/paivola.txt --forward-zone --forward-txt --forward-mx $FORWARD_MX
update_hosts $ZONES/hosts/paivola:external $DATA/paivola.txt --forward-zone
update_hosts $ZONES/hosts/194.197.235 $DATA/paivola.txt --reverse-zone $REVERSE_ZONE --reverse-domain $REVERSE_DOMAIN
update_hosts $ZONES/hosts/10 $DATA/pvl.txt --reverse-zone 10 --reverse-domain pvl -q
update_hosts $ZONES/hosts/192.168 $DATA/pvl.txt --reverse-zone 192.168 --reverse-domain pvl -q
# XXX: unsupported --forward-zone with pvl.txt
# update_hosts $ZONES/hosts/pvl $DATA/pvl.txt --forward-zone
copy_hosts $ZONES/hosts/pvl $DATA/pvl.txt
## zones
# parts
log "Copying zone includes..."
# view zone base
copy_zone includes paivola:internal paivola.zone.internal
copy_zone includes paivola:external paivola.zone.external
copy_zone includes paivola.auto paivola.zone.auto
copy_zone includes paivola.services paivola.zone.services
# serials
if [ $SERIAL_NOUPDATE ]; then
log "Updating serials: skipped"
else
log "Updating serials..."
# zone base
update_serial pvl
link_serial 10 pvl
link_serial 192.168 pvl
update_serial paivola
update_serial 194.197.235
fi
# zones
log "Updating zones..."
# view zone base
update_zone internal pvl
update_zone internal paivola
update_zone external paivola
update_zone internal 10
update_zone internal 192.168
update_zone common 194.197.235
link_zone internal 194.197.235
link_zone external 194.197.235
# test
log "Testing zones..."
# view zone origin
check_zone internal paivola paivola.fi
check_zone external paivola paivola.fi
check_zone internal 10 10.in-addr.arpa
check_zone internal 192.168 192.168.in-addr.arpa
check_zone common 194.197.235 235.197.194.in-addr.arpa
# extra zones...
local base=paivola
local link_zones=(paivola.fi paivola.net paivola.org paivola.info paivola.mobi xn--pivl-load8j.fi)
log "Linking zones..."
for view in "${views[@]}"; do
for zone in "${link_zones[@]}"; do
link_zone $view $zone $base
check_zone $view $zone $zone
done
done
## deploy
if [ $DEPLOY_SKIP ]; then
log "Deploy zones: skipped"
else
log "Deploy zones..."
deploy_zones
fi
## commit
if [ $COMMIT_SKIP ] && [ ! $COMMIT_FORCE ]; then
log "Commit data: skipped"
else
log "Commit data..."
commit_data
fi
}
main "$@"