Bitnami/containers
2
0
Fork 0
mirror of https://github.com/bitnami/containers.git synced 2026-03-20 14:58:20 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
ee01f555fa664d441bcce259b54a43e46ff17e6a
containers/bitnami/solr/9/debian-12/rootfs/opt/bitnami/scripts/libsolr.sh
Mateusz Mikuła ee01f555fa Add configurable timeout to netcat calls with 10s default (#78370) 
Add configurable timeout to netcat calls with 10s default

Without any timeout, netcat can get stuck forever (until Kubernetes
kills unhealthy Pod) when configured address and port combination is
wrong, or the connection gets stuck.
For example `nc -z bitnami.com 12345` doesn't seem to ever finish.

In the case when an attempt gets stuck, the timeout will allow further
attempts to be performed, instead of waiting until Pod is killed.

Signed-off-by: Mateusz Mikuła <oss@mateuszmikula.dev>
2025-03-13 17:48:09 +01:00

681 lines
20 KiB
Bash
Raw Blame History

#!/bin/bash
# Copyright Broadcom, Inc. All Rights Reserved.
# SPDX-License-Identifier: APACHE-2.0
#
# Bitnami Solr library
# shellcheck disable=SC1091
# Load Generic Libraries
. /opt/bitnami/scripts/libfile.sh
. /opt/bitnami/scripts/liblog.sh
. /opt/bitnami/scripts/libos.sh
. /opt/bitnami/scripts/libpersistence.sh
. /opt/bitnami/scripts/libservice.sh
. /opt/bitnami/scripts/libvalidations.sh
########################
# Create initial security.json
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_generate_initial_security() {
info "Generating initial security file"
cat >"${SOLR_BASE_DIR}/server/solr/security.json" <<EOF
{
"authentication":{
"blockUnknown": true,
"class":"solr.BasicAuthPlugin",
"credentials":{"${SOLR_ADMIN_USERNAME}":"IV0EHq1OnNrj6gvRCwvFwTrZ1+z1oBbnQdiVC3otuq0= Ndd7LKvVBAaZIF0QAVi1ekCfAJXr1GGfLtRUXhgrF8c="},
"forwardCredentials": false
},
"authorization":{
"class":"solr.RuleBasedAuthorizationPlugin",
"permissions":[{"name":"security-edit",
"role":"admin"}],
"user-role":{"${SOLR_ADMIN_USERNAME}":"admin"}
}}
EOF
if am_i_root; then
configure_permissions_ownership "${SOLR_BASE_DIR}/server/solr/security.json" -u "$SOLR_DAEMON_USER" -g "$SOLR_DAEMON_GROUP"
fi
}
########################
# Configure Solr Heap Size
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_set_heap_size() {
local heap_ms_size
local heap_mx_size
local machine_mem=""
debug "Calculating appropriate Xmx and Xms values..."
machine_mem="$(get_total_memory)"
if [[ "$machine_mem" -lt 512 ]]; then
heap_ms_size=256
heap_mx_size=256
elif [[ "$machine_mem" -lt 4096 ]]; then
heap_ms_size=256
heap_mx_size=$((machine_mem - 512))
else
heap_ms_size=512
heap_mx_size="$((machine_mem - 1024))"
fi
info "Setting '-Xms${heap_ms_size}m -Xmx${heap_mx_size}m' heap options..."
replace_in_file "$SOLR_BIN_DIR"/solr.in.sh ".*SOLR_JAVA_MEM=.*" "SOLR_JAVA_MEM=\"-Xms${heap_ms_size}m -Xmx${heap_mx_size}m\""
}
########################
# Validate settings in SOLR_* env. variables
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_validate() {
info "Validating settings in SOLR_* env vars..."
local error_code=0
# Auxiliary functions
print_validation_error() {
error "$1"
error_code=1
}
! is_yes_no_value "$SOLR_ENABLE_AUTHENTICATION" && print_validation_error "SOLR_ENABLE_AUTHENTICATION possible values are yes or no"
if is_boolean_yes "$SOLR_ENABLE_AUTHENTICATION"; then
[[ -z "$SOLR_ADMIN_USERNAME" ]] && print_validation_error "You need to provide an username in SOLR_USERNAME"
[[ -z "$SOLR_ADMIN_PASSWORD" ]] && print_validation_error "You need to provide a password for the user: ${SOLR_ADMIN_USERNAME}"
fi
! is_yes_no_value "$SOLR_SSL_ENABLED" && print_validation_error "SOLR_SSL_ENABLED possible values are yes or no"
if is_boolean_yes "$SOLR_SSL_ENABLED"; then
[[ -z "$SOLR_SSL_KEY_STORE" ]] && print_validation_error "You need to provide a key store file in SOLR_SSL_KEY_STORE"
[[ -z "$SOLR_SSL_TRUST_STORE" ]] && print_validation_error "You need to provide a trust store file in SOLR_SSL_TRUST_STORE"
[[ -z "$SOLR_SSL_KEY_STORE_PASSWORD" ]] && print_validation_error "You need to provide a password in SOLR_SSL_KEY_STORE_PASSWORD"
[[ -z "$SOLR_SSL_TRUST_STORE_PASSWORD" ]] && print_validation_error "You need to provide a password file in SOLR_SSL_TRUST_STORE_PASSWORD"
fi
! is_yes_no_value "$SOLR_ENABLE_CLOUD_MODE" && print_validation_error "SOLR_ENABLE_CLOUD_MODE possible values are yes or no"
is_boolean_yes "$SOLR_ENABLE_CLOUD_MODE" && [[ -z "$SOLR_ZK_HOSTS" ]] && print_validation_error "You need to provide the Zookeper node list in SOLR_ZK_HOSTS"
[[ -n "$SOLR_ZK_CHROOT" ]] && [[ "${SOLR_ZK_CHROOT:0:1}" != "/" ]] && print_validation_error "SOLR_ZK_CHROOT has to start with '/' char"
! is_boolean_yes "$SOLR_CLOUD_BOOTSTRAP" && is_boolean_yes "$SOLR_ENABLE_CLOUD_MODE" && [[ -n "$SOLR_CORES" ]] && info "This node is not a boostrap node and will not create the collection"
! is_true_false_value "$SOLR_SSL_CHECK_PEER_NAME" && print_validation_error "SOLR_SSL_CHECK_PEER_NAME possible values are true or false"
[[ "$SOLR_NUMBER_OF_NODES" -lt $(("$SOLR_COLLECTION_REPLICAS" * "$SOLR_COLLECTION_SHARDS")) ]] && print_validation_error "Not enough nodes for the replicas and shards indicated"
[[ "$error_code" -eq 0 ]] || exit "$error_code"
}
########################
# Wait for solr root to exists in zookeeper
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_wait_for_zk_root() {
info "Waiting for solr root in zookeeper"
if ! retry_while solr_zk_root_exists; then
error "Failed to connect to the zookeeper"
exit 1
fi
}
########################
# Wait for Zookeeper to be up
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_wait_for_zookeeper() {
local host
local port
info "Waiting for Zookeeper to be up"
read -r -a zoo_nodes <<<"$(tr ',' ' ' <<<"${SOLR_ZK_HOSTS}")"
for zoo_node in "${zoo_nodes[@]}"; do
if [[ "$zoo_node" =~ (.*):([0-9]*) ]]; then
host="${BASH_REMATCH[1]}"
port="${BASH_REMATCH[2]}"
debug "Trying: $host:$port"
if ! retry_while "debug_execute nc -w $SOLR_ZK_CONNECTION_ATTEMPT_TIMEOUT -z ${host} ${port}" "$SOLR_ZK_MAX_RETRIES" "$SOLR_ZK_SLEEP_TIME"; then
error "Failed to connect to the zookeeper node at ${host}:${port}"
return 1
fi
fi
done
}
#########################
# Create SOLR core
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_create_cores() {
local -r exec="curl"
local command_args=("--silent" "--fail")
local protocol="http"
is_boolean_yes "$SOLR_SSL_ENABLED" && protocol="https" && command_args+=("-k")
is_boolean_yes "$SOLR_ENABLE_AUTHENTICATION" && command_args+=("--user" "${SOLR_ADMIN_USERNAME}:${SOLR_ADMIN_PASSWORD}")
read -r -a cores <<<"$(tr ',;' ' ' <<<"${SOLR_CORES}")"
info "Creating cores..."
for core in "${cores[@]}"; do
mkdir -p "${SOLR_SERVER_DIR}/solr/${core}/data"
mkdir -p "${SOLR_SERVER_DIR}/solr/${core}/conf"
cp -Lr "${SOLR_CORE_CONF_DIR}"/* "${SOLR_SERVER_DIR}/solr/${core}/conf/"
command_args+=("${protocol}://localhost:${SOLR_PORT_NUMBER}/solr/admin/cores?action=CREATE&name=${core}&instanceDir=${core}&dataDir=data")
info "Creating solr core: ${core}"
if ! debug_execute "$exec" "${command_args[@]}"; then
error "There was an error when creating the core"
exit 1
else
info "Core created"
fi
done
}
#########################
# Update user password
# Globals:
# SOLR_*
# Arguments:
# $1 - username
# $2 - password
# Returns:
# None
#########################
solr_update_password() {
local -r exec="curl"
local -r default_password="SolrRocks"
local -r username="${1:?user is required}"
local -r password="${2:?password is required}"
local protocol="http"
local command_args=()
is_boolean_yes "$SOLR_SSL_ENABLED" && protocol="https" && command_args+=("-k")
command_args+=("--silent" "--user" "${username}:${default_password}" "${protocol}://localhost:${SOLR_PORT_NUMBER}/api/cluster/security/authentication" "-H" "'Content-type:application/json'" "-d" "{\"set-user\":{\"${username}\":\"${password}\"}}")
info "Updating user password"
if ! debug_execute "$exec" "${command_args[@]}"; then
error "There was an error when updating the user password"
exit 1
else
info "Password updated"
fi
}
#########################
# Check if the API is ready
# Globals:
# SOLR_*
# Arguments:
# $1 - username
# $2 - password
# Returns:
# Boolean
#########################
solr_check_api() {
local -r exec="curl"
local -r username="${1:?user is required}"
local -r password="${2:?password is required}"
local protocol="http"
local command_args=()
debug "Checking if the API is ready"
is_boolean_yes "$SOLR_SSL_ENABLED" && protocol="https" && command_args+=("-k")
command_args+=("--silent" "--user" "${username}:${password}" "${protocol}://localhost:${SOLR_PORT_NUMBER}/api/" "-H" "'Content-type:application/json'")
if ! debug_execute "$exec" "${command_args[@]}"; then
return 1
fi
}
#########################
# Wait for api
# Globals:
# SOLR_*
# Arguments:
# $1 - username
# $2 - password
# Returns:
# None
#########################
solr_wait_for_api() {
local -r username="${1:?user is required}"
local -r password="${2:?password is required}"
info "Wait for Solr API"
if ! retry_while "solr_check_api ${username} ${password}"; then
error "Solr API not available"
exit 1
fi
}
#########################
# Check if SOLR Cloud auth is already enabled
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# Boolean
#########################
solr_auth_already_enabled() {
local temp_file_name="/tmp/zk-security.json"
local -r exec="${SOLR_BIN_DIR}/solr"
local command_args=("zk" "cp" "zk:${SOLR_ZK_CHROOT}/security.json" "$temp_file_name" "-z" "$SOLR_ZK_HOSTS")
debug "Checking if auth already enabled in ZK"
"$exec" "${command_args[@]}"
local result=1
if grep -q solr.BasicAuthPlugin "$temp_file_name"; then
result=0
fi
rm "$temp_file_name"
return $result
}
#########################
# Create SOLR cloud user
# Globals:
# SOLR_*
# Arguments:
# $1 - username
# $2 - password
# Returns:
# None
#########################
solr_create_cloud_user() {
local -r exec="${SOLR_BIN_DIR}/solr"
local -r username="${1:?user is required}"
local -r password="${2:?password is required}"
local command_args=("auth" "enable" "-type" "basicAuth" "-credentials" "${username}:${password}" "-blockUnknown" "true" "-z" "${SOLR_ZK_HOSTS}${SOLR_ZK_CHROOT}")
info "Creating user: ${username}"
if ! solr_auth_already_enabled; then
if ! debug_execute "$exec" "${command_args[@]}"; then
error "There was an error when creating the user"
exit 1
else
info "User created"
fi
else
info "Skipping. Security is already enabled."
fi
}
#########################
# Create SOLR collection
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_create_collection() {
local -r exec="curl"
local command_args=("--silent")
local protocol="http"
info "Creating collection:${SOLR_COLLECTION} with ${SOLR_COLLECTION_REPLICAS} replicas and ${SOLR_COLLECTION_SHARDS} shards"
is_boolean_yes "$SOLR_ENABLE_AUTHENTICATION" && command_args+=("--user" "${SOLR_ADMIN_USERNAME}:${SOLR_ADMIN_PASSWORD}")
is_boolean_yes "$SOLR_SSL_ENABLED" && protocol="https" && command_args+=("-k")
command_args+=("${protocol}://localhost:${SOLR_PORT_NUMBER}/solr/admin/collections?action=CREATE&name=${SOLR_COLLECTION}&numShards=${SOLR_COLLECTION_SHARDS}&replicationFactor=${SOLR_COLLECTION_REPLICAS}")
#Check if the collection exists before creating it
if ! solr_collection_exists "$SOLR_COLLECTION"; then
# Will wait for other nodes to join before creating a collection with shards and/or replicas
if [[ "$SOLR_COLLECTION_REPLICAS" -gt 1 ]] || [[ "$SOLR_COLLECTION_SHARDS" -gt 1 ]]; then
info "Waiting for other nodes to be available"
if ! retry_while "solr_check_number_of_nodes ${SOLR_NUMBER_OF_NODES}" "$SOLR_ZK_MAX_RETRIES" "$SOLR_ZK_SLEEP_TIME"; then
error "There are not enough nodes to create the collection"
fi
fi
if ! debug_execute "$exec" "${command_args[@]}"; then
error "There was an error when creating the collection"
exit 1
else
info "Collection created"
fi
else
info "Skipping. Collection already exists."
fi
}
#########################
# Check if the root of solr exists in zookeeper
# Globals:
# SOLR_*
# Arguments:
# $1 - Collection name
# Returns:
# None
#########################
solr_zk_root_exists() {
local -r exec="${SOLR_BIN_DIR}/solr"
local command_args=("zk" "ls" "/" "-z" "$SOLR_ZK_HOSTS")
debug "Checking if root of solr ($SOLR_ZK_CHROOT) exists in zookeeper"
"$exec" "${command_args[@]}" 2>/dev/null | grep -q "${SOLR_ZK_CHROOT:1}"
}
#########################
# Check if a collection already exists
# Globals:
# SOLR_*
# Arguments:
# $1 - Collection name
# Returns:
# None
#########################
solr_collection_exists() {
local -r collection="${1:?collection is required}"
local -r exec="${SOLR_BIN_DIR}/solr"
local command_args=("zk" "ls" "${SOLR_ZK_CHROOT}/collections" "-z" "$SOLR_ZK_HOSTS")
debug "Checking if ${collection} exists"
"$exec" "${command_args[@]}" | grep -q "$collection"
}
########################
# Check the number of nodes in the cluster
# Arguments:
# $1 - expected number of nodes
# Returns:
# Boolean
########################
solr_check_number_of_nodes() {
local -r nodes="${1:-1}"
local -r exec="${SOLR_BIN_DIR}/solr"
local command_args=("zk" "ls" "${SOLR_ZK_CHROOT}/live_nodes" "-z" "$SOLR_ZK_HOSTS")
[[ $("$exec" "${command_args[@]}" | wc -l) -ge "$nodes" ]]
}
########################
# Check if zookeeper has been initialized
# Arguments:
# None
# Returns:
# Boolean
########################
solr_is_zk_initialized() {
local -r exec="${SOLR_BIN_DIR}/solr"
local command_args=("zk" "ls" "${SOLR_ZK_CHROOT}" "-z" "$SOLR_ZK_HOSTS")
info "Checking if solr has been initialized in zookeeper"
if ! debug_execute "$exec" "${command_args[@]}"; then
info "Zookeeper was not initialized."
return 1
else
info "Zookeeper was initialized."
return 0
fi
}
#########################
# Start solr in background
# Globals:
# SOLR_*
# Arguments:
# $1 - Mode: cloud or empty
# Returns:
# None
#########################
solr_start_bg() {
local -r mode="${1:-}"
local -r exec="${SOLR_BIN_DIR}/solr"
local start_args=("start" "-p" "${SOLR_PORT_NUMBER}" "-d" "server")
info "Starting solr in background"
if [[ "$mode" == "cloud" ]]; then
start_args+=("-cloud" "-z" "${SOLR_ZK_HOSTS}${SOLR_ZK_CHROOT}")
fi
# Do not start as root, to avoid solr error message
if am_i_root; then
debug_execute "run_as_user" "$SOLR_DAEMON_USER" "$exec" "${start_args[@]}"
else
debug_execute "$exec" "${start_args[@]}"
fi
}
#########################
# Stop SOLR
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_stop() {
info "Stopping solr"
stop_service_using_pid "$SOLR_PID_FILE"
}
########################
# Check if Solr is running
# Globals:
# SOLR_PID_FILE
# Arguments:
# None
# Returns:
# Whether Solr is running
########################
is_solr_running() {
local pid
pid="$(get_pid_from_file "$SOLR_PID_FILE")"
if [[ -n "$pid" ]]; then
is_service_running "$pid"
else
false
fi
}
########################
# Check if Solr is running
# Globals:
# SOLR_PID_FILE
# Arguments:
# None
# Returns:
# Whether Solr is not running
########################
is_solr_not_running() {
! is_solr_running
}
#########################
# Create root in zookeeper
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_zk_initialize() {
local -r exec="${SOLR_BIN_DIR}/solr"
local command_args=("zk" "mkroot" "${SOLR_ZK_CHROOT}" "-z" "$SOLR_ZK_HOSTS")
if solr_is_zk_initialized; then
info "Zookeeper is already initialized"
else
info "Creating root in zookeeper"
debug_execute "$exec" "${command_args[@]}"
fi
}
#########################
# Set cluster properties in zookeeper
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_set_ssl_url_scheme() {
info "Initializing configuring Solr HTTPS in Zookeeper"
solr_wait_for_zk_root && "${SOLR_SERVER_DIR}/scripts/cloud-scripts/zkcli.sh" -zkhost "${SOLR_ZK_HOSTS}${SOLR_ZK_CHROOT}" -cmd clusterprop -name urlScheme -val https
}
#########################
# Create root in zookeeper
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_migrate_old_data() {
local -r exec="mv"
local command_args=("${SOLR_VOLUME_DIR}/data" "${SOLR_VOLUME_DIR}/server/solr")
if am_i_root; then
warn "Persisted data detected in old location. Migrating and changing permissions"
ensure_dir_exists "${SOLR_VOLUME_DIR}/server"
debug_execute "$exec" "${command_args[@]}"
configure_permissions_ownership "${SOLR_VOLUME_DIR}/server/solr" -d 775 -f 664 -g "root"
warn "Data migrated."
else
error "Persisted data detected in old location. You will need to run first the container as root to migrate the data"
exit 1
fi
}
#########################
# Initialize SOLR
# Globals:
# SOLR_*
# Arguments:
# None
# Returns:
# None
#########################
solr_initialize() {
info "Initializing Solr ..."
# Check if there is persisted data from old version and migrate it
! is_dir_empty "${SOLR_VOLUME_DIR}/data" && [[ -f "$SOLR_VOLUME_DIR/.initialized" ]] && solr_migrate_old_data
is_boolean_yes "$SOLR_SSL_ENABLED" && export SOLR_SSL_ENABLED=true
# Check if Solr has already been initialized and persisted in a previous run
local -r app_name="solr"
if ! is_app_initialized "$app_name"; then
# Ensure the solr base directory exists and has proper permissions
info "Configuring file permissions for Solr"
ensure_dir_exists "$SOLR_VOLUME_DIR"
rm -f "$SOLR_PID_FILE"
if is_boolean_yes "$SOLR_ENABLE_CLOUD_MODE"; then
info "Deploying Solr Cloud from scratch"
if ! solr_wait_for_zookeeper; then
error "Zookeeper not detected"
exit 1
fi
if is_boolean_yes "$SOLR_CLOUD_BOOTSTRAP"; then
solr_zk_initialize
solr_start_bg "cloud"
solr_wait_for_api "admin" "SolrRocks"
is_boolean_yes "$SOLR_SSL_ENABLED" && solr_set_ssl_url_scheme
[[ -n "$SOLR_COLLECTION" ]] && solr_create_collection
is_boolean_yes "$SOLR_ENABLE_AUTHENTICATION" && solr_create_cloud_user "$SOLR_ADMIN_USERNAME" "$SOLR_ADMIN_PASSWORD"
solr_stop
else
if is_boolean_yes "$SOLR_SSL_ENABLED"; then
solr_set_ssl_url_scheme
else
solr_wait_for_zk_root
fi
fi
else
info "Deploying Solr from scratch"
is_boolean_yes "$SOLR_ENABLE_AUTHENTICATION" && solr_generate_initial_security
solr_start_bg
solr_wait_for_api "admin" "SolrRocks"
is_boolean_yes "$SOLR_ENABLE_AUTHENTICATION" && solr_update_password "$SOLR_ADMIN_USERNAME" "$SOLR_ADMIN_PASSWORD"
[[ -n "$SOLR_CORES" ]] && solr_create_cores
solr_stop
fi
info "Persisting Solr installation"
persist_app "$app_name" "$SOLR_DATA_TO_PERSIST"
else
info "Restoring persisted Solr installation"
# Compatibility with previous container images
if [[ "$(ls "$SOLR_VOLUME_DIR")" = "data" ]]; then
warn "The persisted data for this Solr installation is located at '${SOLR_VOLUME_DIR}/data' instead of '${SOLR_VOLUME_DIR}'"
warn "This is deprecated and support for this may be removed in a future release"
rm "${SOLR_BASE_DIR}/server/solr"
ln -s "${SOLR_VOLUME_DIR}/data" "${SOLR_BASE_DIR}/server/solr"
fi
restore_persisted_app "$app_name" "$SOLR_DATA_TO_PERSIST"
fi
}
Reference in New Issue View Git Blame Copy Permalink