1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
|
# Common variables and functions
# Source the common.bash file from the same path as the script
source $(dirname "$0")/ansi_clean.bash
#MANUAL_PROJECT_NAME=project_name
DOCKER_PORT=9200
LOCAL_PORT=9200
URL_HOST=127.0.0.1
ESUSR=elastic
ENVFILE=.env
CURLFILE=.kurl
REPODOCKER=/media
REPOJSON=createrepo.json
REPONAME=testing
LIMIT=30 # How many seconds to wait to obtain the credentials
IMAGE=docker.elastic.co/elasticsearch/elasticsearch
MEMORY=1GB # The heap will be half of this
#############################
### Function declarations ###
#############################
docker_logline () {
# Return the line number that contains "${1}"
echo $(docker logs ${NAME} | grep -n "${1}" | awk -F\: '{print $1}')
}
get_espw () {
# Start with an empty value
linenum=''
# Make a pretty spinner
spin='-\|/'
# spin modulo tracker
s=0
# tenths incrementer (of a second)
tenths=0
# tenths modulo tracker
t=0
# seconds incrementer
seconds=0
# Loop until we get a valid line number, or LIMIT tries
while [ "x${linenum}" == "x" ] && [ $seconds -lt $LIMIT ]; do
# increment $s and modulo 4
s=$(( (s+1) %4 ))
# increment $tenths
((++tenths))
# increment $t and modulo 10
t=$(( (t+1) %10 ))
# if $t is 0 (it was evenly divisible by 10)
if [ $t -eq 0 ]; then
# we increment seconds, because 1 second has elapsed
((++seconds))
# Get the docker log line associated with elasticsearch-reset-password
linenum=$(docker_logline "elasticsearch-reset-password")
fi
# Print the spinner to stderr (so it shows up)
printf "\r${spin:$s:1} ${seconds}s elapsed (typically 15s - 25s)..." >&2
# wait 1/10th of a second before looping again
sleep 0.1
done
# end while loop
# Error out if we didn't get it
if [ "x${linenum}" == "x" ] || [ $seconds -ge $LIMIT ]; then
echo "ERROR: Unable to get password for user ${ESUSR}. Unable to continue. Exiting..."
exit 1
fi
# Increment the linenum (because we want the next line)
((++linenum))
# Get the (next) line, i.e. incremented and tailed to isolate
retval=$(docker logs ${NAME} | head -n ${linenum} | tail -1 | awk '{print $1}')
# Strip the ANSI color/bold here. External function because of the control-M sequence
ESPWD=$(ansi_clean "${retval}")
}
change_espw () {
# To shorten the command-line, we put this as a variable
exec_cmd=/usr/share/elasticsearch/bin/elasticsearch-reset-password
#################################################
# The change password command: #
# docker exec -it ${1} ${exec_cmd} -b -u $ESUSR #
#################################################
#############################################################################
# Output 1: Not ready response: #
# ERROR: Failed to determine the health of the cluster. , with exit code 69 #
#############################################################################
#######################################################
# Output 2: Successful response: #
# Password for the [elastic] user successfully reset. #
# New value: NEW_PASSWORD #
#######################################################
# awk '{print $3}' of the "Not ready response" is "to"
# So we start with retval='to'
retval='to'
# We're only going to try this to the $LIMIT
count=0
# Loop until we get the expected response, or LIMIT tries
while [ "x$retval" == "xto" ] && [ $count -lt $LIMIT ]; do
retval=$(docker exec -it ${NAME} $exec_cmd -b -u ${ESUSR} | tail -1 | awk '{print $3}')
((++count))
sleep 1
done
# If we still don't have a value, send an empty reponse back, rather than "to"
if [ "x${retval}" == "xto" ]; then
echo ''
else
echo ${retval}
fi
}
xpack_fork () {
echo
echo "Getting Elasticsearch credentials from container \"${NAME}\"..."
echo
# Get the password from the change_espw function. It sets ESPWD
get_espw
# If we have an empty value, that's a problem
if [ "x${ESPWD}" == "x" ]; then
echo "ERROR: Unable to get password for user ${ESUSR}. Unable to continue. Exiting..."
exit 1
fi
# Put envvars in ${ENVCFG}
echo "export ESCLIENT_USERNAME=${ESUSR}" >> ${ENVCFG}
echo "export TEST_USER=${ESUSR}" >> ${ENVCFG}
# We escape the quotes so we can include them in case of special characters
echo "export ESCLIENT_PASSWORD=\"${ESPWD}\"" >> ${ENVCFG}
echo "export TEST_PASS=\"${ESPWD}\"" >> ${ENVCFG}
# Get the CA certificate and copy it to the PROJECT_ROOT
docker cp -q ${NAME}:/usr/share/elasticsearch/config/certs/http_ca.crt ${PROJECT_ROOT}
# Put the credentials into ${CURLCFG}
echo "-u ${ESUSR}:${ESPWD}" >> ${CURLCFG}
echo "--cacert ${CACRT}" >> ${CURLCFG}
# Complete
echo "Credentials captured!"
}
# Save original execution path
EXECPATH=$(pwd)
# Extract the path for the script
SCRIPTPATH="$(cd -- "$(dirname "$0")" >/dev/null 2>&1 ; pwd -P)"
# Ensure we are in the script path
cd ${SCRIPTPATH}
# Get the directory name
SCRIPTPATH_NAME=$(pwd | awk -F\/ '{print $NF}')
# Go up a level
cd ../
# Find out what the last part of this directory is called
PROJECT_NAME=$(pwd | awk -F\/ '{print $NF}')
# Manually override the project name, if specified
if [ "x${MANUAL_PROJECT_NAME}" != "x" ]; then
PROJECT_NAME=${MANUAL_PROJECT_NAME}
fi
# We should be at the project root dir now
PROJECT_ROOT=$(pwd)
if [ "${SCRIPTPATH_NAME}" != "docker_test" ]; then
echo "$0 is not in parent directory 'docker_test'"
echo "This could cause issues as that is expected."
echo "PROJECT_ROOT is now set to ${SCRIPTPATH}"
echo "You may want to set MANUAL_PROJECT_NAME in common.bash"
PROJECT_ROOT=${SCRIPTPATH}
fi
# If we have a tests/integration path, then we'll use that
if [ -d "tests/integration" ]; then
TESTPATH=${PROJECT_ROOT}/tests/integration
else
# Otherwise we will just dump it into the $SCRIPTPATH
TESTPATH=${SCRIPTPATH}
fi
# Set the CACRT var
CACRT=${PROJECT_ROOT}/http_ca.crt
# Set the .env file
ENVCFG=${PROJECT_ROOT}/${ENVFILE}
rm -rf ${ENVCFG}
# Set the curl config file and ensure we're not reusing an old one
CURLCFG=${SCRIPTPATH}/${CURLFILE}
rm -rf ${CURLCFG}
# Determine local IPs
OS=$(uname -a | awk '{print $1}')
if [[ "$OS" = "Linux" ]]; then
IPLIST=$(ip -4 -o addr show scope global | grep -v docker |awk '{gsub(/\/.*/,"",$4); print $4}')
elif [[ "$OS" = "Darwin" ]]; then
IPLIST=$(ifconfig | awk -F "[: ]+" '/inet / { if ($2 != "127.0.0.1") print $2 }')
else
echo "Could not determine local IPs for assigning environment variables..."
echo "Please manually determine your local non-loopback IP address and assign it,"
echo "e.g. TEST_ES_SERVER=https://A.B.C.D:${LOCAL_PORT}"
exit 0
fi
#######################
### Set Docker vars ###
#######################
# Set the Docker container name
NAME=${PROJECT_NAME}-test
# Set the bind mount path for the snapshot repository
REPOLOCAL=${SCRIPTPATH}/repo
# Navigate back to the script path
cd ${SCRIPTPATH}
###################
### END COMMON ###
###################
|
