vz-tools/trunk/vz-create.pl

#!/usr/bin/perl -w
#
# Dobrica Pavlinusic <dpavlin@rot13.org> 2007-01-07
# 
use strict;
use Shell qw/host mkdir vzsplit rm/;
use IO::Prompt;
use Regexp::Common qw/net/;

# default debian distribution
my $dist = 'etch';
# debian mirror to use
my $debian_mirror_uri = 'http://www.debian.org/debian';
# split physicial machine in how meny virtual ones?
my $ve_total = 4;
# swap size (Mb)
my $swap_size = 512;
# diskspace
my $diskspace = '2G:4G';

my $config_file = $0;
$config_file =~ s!-create.pl!-tools.conf!;
warn "## $config_file\n";
if (-e $config_file) {
        open(my $fh, '<', $config_file) || die "can't open $config_file: $!";
        eval join("\n", <$fh>);
        close($fh);
        die "Error in $config_file: $@" if ($@);
}

print "Creating new OpenVZ instance...\n";

my $arg = shift @ARGV || '';

my ($hostname, $ip) = ('localhost','');

if ($arg =~ m/$RE{net}{IPv4}/) {
        $ip = $arg;
        chomp($hostname);
        $hostname = host($arg);
        $hostname =~ s/^.*\s(\S+)$/$1/;
} elsif ($arg) {
        $hostname = $arg;
        $ip = host($arg);
        chomp($ip);
        $ip =~ s/^.*\s(\S+)$/$1/;
}

$ip ||= prompt('Enter IP: ', -require => {
        'Must be IP (e.g. 192.168.0.1): ' => qr/$RE{net}{IPv4}/,
}) unless ($ip =~ /$RE{net}{IPv4}/);

$hostname ||= prompt('Enter hostname: ') unless ($hostname);

my @ip_split = split(/\./,$ip);

my $ve_id = sprintf('%d%03d', $ip_split[2], $ip_split[3]);

my $vz_root = '/vz';

die "need to know vz_root, and $vz_root doesn't exist: $!\n" unless (-e $vz_root);

print "VEID: $ve_id hostname: $hostname ip: $ip\n";

warn ">> creating directories\n";

mkdir('-p', "$vz_root/root/$ve_id", "$vz_root/private/$ve_id");

warn ">> installing debian $dist from $debian_mirror_uri\n";

if (! -e "$vz_root/private/$ve_id/etc/debian_version") {

        my $debootstrap = "debootstrap --arch i386 $dist $vz_root/private/$ve_id $debian_mirror_uri";
        warn "# $debootstrap\n";
        system($debootstrap);

} else {
        warn "Debian allready installed in $vz_root/private/$ve_id\n";
}

sub vzctl {
        my @args = @_;
        warn "## vzctl ", join(" ",@args), "\n";
        system "vzctl", @args;
}

my $conf_path = "/etc/vz/conf/${ve_id}.conf";
warn ">> creating configuration file $conf_path\n";

if (-e $conf_path) {
        warn "$conf_path allready exists, not touching it\n";
} else {
        vzsplit('-n', $ve_total, '-s', $swap_size * 1024, '>', $conf_path);

        open(my $tmp, '>>', $conf_path) || die "can't open $conf_path: $!";
        print $tmp "OSTEMPLATE=debian-3.1\n";
        close($tmp);

#       vzctl('set', $ve_id, '--applyconfig', 'vps.basic', '--save');
        vzctl('set', $ve_id, '--ipadd', $ip, '--save');
        vzctl('set', $ve_id, '--hostname', $hostname, '--save');
        vzctl('set', $ve_id, '--diskspace', $diskspace, '--save');
}

sub create_file {
        my ($path, $code) = @_;
        if (! -e $path) {
                warn ">> creating $path\n";
                open(my $tmp, '>', $path) || die "can't create $path: $!";
                print $tmp $code->($path);
                close($tmp);
        }
}

create_file(
        "$vz_root/private/$ve_id/etc/apt/sources.list",
        "deb $debian_mirror_uri $dist main contrib non-free\n"
);

vzctl('start', $ve_id);

my $customize_sh = <<'__END_OF_SH__';

# use shadow passwords
pwconv

# upgrade to lastest version
apt-get -y update
apt-get -y upgrade

# install additional packages
apt-get -y --force-yes install vim less ssh sudo screen telnet finger

# remove unwanted packages
apt-get -y remove nano

# apt-iselect helper
wget -t 1 -T 5 -O /usr/local/bin/apt-iselect https://www.rot13.org/~dpavlin/projects/scripts/apt-iselect
chmod 755 /usr/local/bin/apt-iselect

# lock root user
usermod -L root

# disable getty
sed -i -e '/getty/d' /etc/inittab

# sane permissions for /root directory
chmod 700 /root

# disable sync() for syslog
sed -i -e 's@\([[:space:]]\)\(/var/log/\)@\1-\2@' /etc/syslog.conf

# fix /etc/mtab
rm -f /etc/mtab
ln -s /proc/mounts /etc/mtab

# remove unneeded packages
dpkg --purge modutils
dpkg --purge ppp pppoeconf pppoe pppconfig

# disable services
update-rc.d -f klogd remove
update-rc.d -f quotarpc remove
update-rc.d -f exim4 remove
update-rc.d -f inetd remove

# clean packages
apt-get clean

__END_OF_SH__

foreach my $l (split(/\n/, $customize_sh)) {
        next if ($l =~ /^\s*$/);
        if ($l =~ /^#\s+(.+)$/) {
                warn ">> $1\n";
        } else {
                vzctl('exec', $ve_id, $l);
        }
}

#vzctl('stop', $ve_id);

my $passwd = prompt('root passwd: ', -echo=>'*');
vzctl('set', $ve_id, '--userpasswd', 'root:' . $passwd ) if ($passwd);

my $login = prompt('create login: ');
if ($login) {
        $passwd = prompt("$login passwd: ", -echo=>'*');
        vzctl('exec', $ve_id, "useradd --create-home $login");
        vzctl('set', $ve_id, '--userpasswd', "$login:$passwd" );
}
1	dpavlin	4	#!/usr/bin/perl -w
2			#
3			# Dobrica Pavlinusic <dpavlin@rot13.org> 2007-01-07
4			#
5			use strict;
6			use Shell qw/host mkdir vzsplit rm/;
7			use IO::Prompt;
8			use Regexp::Common qw/net/;
9
10			# default debian distribution
11			my $dist = 'etch';
12			# debian mirror to use
13	dpavlin	18	my $debian_mirror_uri = 'http://www.debian.org/debian';
14	dpavlin	4	# split physicial machine in how meny virtual ones?
15	dpavlin	11	my $ve_total = 4;
16	dpavlin	4	# swap size (Mb)
17			my $swap_size = 512;
18	dpavlin	9	# diskspace
19			my $diskspace = '2G:4G';
20	dpavlin	4
21	dpavlin	18	my $config_file = $0;
22			$config_file =~ s!-create.pl!-tools.conf!;
23			warn "## $config_file\n";
24			if (-e $config_file) {
25			open(my $fh, '<', $config_file) \|\| die "can't open $config_file: $!";
26			eval join("\n", <$fh>);
27			close($fh);
28			die "Error in $config_file: $@" if ($@);
29			}
30
31	dpavlin	4	print "Creating new OpenVZ instance...\n";
32
33	dpavlin	10	my $arg = shift @ARGV \|\| '';
34	dpavlin	4
35	dpavlin	10	my ($hostname, $ip) = ('localhost','');
36	dpavlin	4
37			if ($arg =~ m/$RE{net}{IPv4}/) {
38			$ip = $arg;
39			chomp($hostname);
40			$hostname = host($arg);
41			$hostname =~ s/^.*\s(\S+)$/$1/;
42	dpavlin	10	} elsif ($arg) {
43	dpavlin	4	$hostname = $arg;
44			$ip = host($arg);
45			chomp($ip);
46			$ip =~ s/^.*\s(\S+)$/$1/;
47			}
48
49			$ip \|\|= prompt('Enter IP: ', -require => {
50			'Must be IP (e.g. 192.168.0.1): ' => qr/$RE{net}{IPv4}/,
51			}) unless ($ip =~ /$RE{net}{IPv4}/);
52
53			$hostname \|\|= prompt('Enter hostname: ') unless ($hostname);
54
55			my @ip_split = split(/\./,$ip);
56
57	dpavlin	16	my $ve_id = sprintf('%d%03d', $ip_split[2], $ip_split[3]);
58	dpavlin	4
59			my $vz_root = '/vz';
60
61			die "need to know vz_root, and $vz_root doesn't exist: $!\n" unless (-e $vz_root);
62
63			print "VEID: $ve_id hostname: $hostname ip: $ip\n";
64
65			warn ">> creating directories\n";
66
67			mkdir('-p', "$vz_root/root/$ve_id", "$vz_root/private/$ve_id");
68
69	dpavlin	18	warn ">> installing debian $dist from $debian_mirror_uri\n";
70	dpavlin	4
71			if (! -e "$vz_root/private/$ve_id/etc/debian_version") {
72
73			my $debootstrap = "debootstrap --arch i386 $dist $vz_root/private/$ve_id $debian_mirror_uri";
74			warn "# $debootstrap\n";
75			system($debootstrap);
76
77			} else {
78			warn "Debian allready installed in $vz_root/private/$ve_id\n";
79			}
80
81			sub vzctl {
82			my @args = @_;
83			warn "## vzctl ", join(" ",@args), "\n";
84			system "vzctl", @args;
85			}
86
87			my $conf_path = "/etc/vz/conf/${ve_id}.conf";
88			warn ">> creating configuration file $conf_path\n";
89
90			if (-e $conf_path) {
91			warn "$conf_path allready exists, not touching it\n";
92			} else {
93			vzsplit('-n', $ve_total, '-s', $swap_size * 1024, '>', $conf_path);
94
95			open(my $tmp, '>>', $conf_path) \|\| die "can't open $conf_path: $!";
96			print $tmp "OSTEMPLATE=debian-3.1\n";
97			close($tmp);
98
99	dpavlin	11	# vzctl('set', $ve_id, '--applyconfig', 'vps.basic', '--save');
100	dpavlin	4	vzctl('set', $ve_id, '--ipadd', $ip, '--save');
101			vzctl('set', $ve_id, '--hostname', $hostname, '--save');
102	dpavlin	9	vzctl('set', $ve_id, '--diskspace', $diskspace, '--save');
103	dpavlin	4	}
104
105			sub create_file {
106			my ($path, $code) = @_;
107			if (! -e $path) {
108			warn ">> creating $path\n";
109			open(my $tmp, '>', $path) \|\| die "can't create $path: $!";
110			print $tmp $code->($path);
111			close($tmp);
112			}
113			}
114
115			create_file(
116			"$vz_root/private/$ve_id/etc/apt/sources.list",
117			"deb $debian_mirror_uri $dist main contrib non-free\n"
118			);
119
120	dpavlin	11	vzctl('start', $ve_id);
121	dpavlin	4
122			my $customize_sh = <<'__END_OF_SH__';
123
124			# use shadow passwords
125			pwconv
126
127			# upgrade to lastest version
128	dpavlin	11	apt-get -y update
129			apt-get -y upgrade
130	dpavlin	4
131			# install additional packages
132	dpavlin	19	apt-get -y --force-yes install vim less ssh sudo screen telnet finger
133	dpavlin	4
134	dpavlin	5	# remove unwanted packages
135			apt-get -y remove nano
136
137	dpavlin	8	# apt-iselect helper
138	dpavlin	17	wget -t 1 -T 5 -O /usr/local/bin/apt-iselect https://www.rot13.org/~dpavlin/projects/scripts/apt-iselect
139	dpavlin	11	chmod 755 /usr/local/bin/apt-iselect
140	dpavlin	8
141	dpavlin	4	# lock root user
142			usermod -L root
143
144			# disable getty
145			sed -i -e '/getty/d' /etc/inittab
146
147			# sane permissions for /root directory
148			chmod 700 /root
149
150			# disable sync() for syslog
151			sed -i -e 's@\([[:space:]]\)\(/var/log/\)@\1-\2@' /etc/syslog.conf
152
153			# fix /etc/mtab
154			rm -f /etc/mtab
155			ln -s /proc/mounts /etc/mtab
156
157			# remove unneeded packages
158			dpkg --purge modutils
159			dpkg --purge ppp pppoeconf pppoe pppconfig
160
161			# disable services
162			update-rc.d -f klogd remove
163			update-rc.d -f quotarpc remove
164			update-rc.d -f exim4 remove
165			update-rc.d -f inetd remove
166
167			# clean packages
168			apt-get clean
169
170			__END_OF_SH__
171
172			foreach my $l (split(/\n/, $customize_sh)) {
173			next if ($l =~ /^\s*$/);
174			if ($l =~ /^#\s+(.+)$/) {
175			warn ">> $1\n";
176			} else {
177			vzctl('exec', $ve_id, $l);
178			}
179			}
180
181			#vzctl('stop', $ve_id);
182
183	dpavlin	11	my $passwd = prompt('root passwd: ', -echo=>'*');
184			vzctl('set', $ve_id, '--userpasswd', 'root:' . $passwd ) if ($passwd);
185
186			my $login = prompt('create login: ');
187			if ($login) {
188			$passwd = prompt("$login passwd: ", -echo=>'*');
189			vzctl('exec', $ve_id, "useradd --create-home $login");
190			vzctl('set', $ve_id, '--userpasswd', "$login:$passwd" );
191			}