source: fedkit/smbmount.Linux.pl @ 5ae9d94

compt_changes
Last change on this file since 5ae9d94 was 66a8e6d, checked in by Ted Faber <faber@…>, 14 years ago

be marginally more careful about file permissions.

  • Property mode set to 100755
File size: 3.3 KB
Line 
1#!/usr/bin/perl
2
3#############################################################################
4# smbmounts.pl: Setup Automounter to mount via SMB for federated experiments
5# $Id: smbmount.Linux.pl,v 1.1 2008-05-18 00:09:31 faber Exp $
6#
7
8$SHARE=shift || "USERS";
9$ADDR=shift || `cat /usr/local/etc/emulab/bossnode`;
10$PUSER=shift || "jhickey";
11$PNAME=shift || "emulab-ops";
12$FSTYPE=shift || 'cifs';
13$FSTAB="/etc/fstab";
14$HOMEROOT="/users";
15$PROJROOT="/proj";
16
17my $share = 0;
18
19chomp $ADDR;
20
21# ADDR is probably a DNS name (and we assume so if it has letters.  mount cifs
22# wants an IP address, so this hex dereferences the DNS name and converts the
23# first address into the string representation of the IP.  It is, perhaps, a
24# but terse.
25if ($ADDR =~ /[a-z]/ ) {
26    my @addrs = (gethostbyname($ADDR))[4];
27    $ADDR = join(".", unpack("C4", @addrs[0]))
28        if @addrs;
29}
30
31
32$TMCC="/usr/local/etc/emulab/tmcc";
33$UMOUNT="/bin/umount";
34$MOUNT="/bin/mount";
35$MKDIR="/bin/mkdir";
36$CP="/bin/cp";
37
38print "Unmounting all nfs and cifs filesystems.\n";
39system("$UMOUNT -a -f -t nfs,cifs"); # or die("Failed to unmount NFS");
40
41# Backup the fstab so we can run multiple times
42if (! -f "$FSTAB.bak") {
43        system("$CP $FSTAB $FSTAB.bak") && die("Unable to backup $FSTAB");
44} else {
45        system("$CP $FSTAB.bak $FSTAB") && die("Unable to restore $FSTAB");
46}
47
48# open(TM, "$TMCC accounts windows |") or die("Failed to execute TMCC");
49open(TM, "/usr/local/federation/etc/userconf")or die("Failed to open userconf");
50open(FSTAB,">>$FSTAB") or die("Cannot Open File $FSTAB");
51
52print FSTAB "\n# SMB Configuration Generated by smbmount.pl\n";
53
54while(<TM>) {
55    /ADDUSER/ && do {
56        /LOGIN=(\S+)/ && do { $user = $1; };
57        /WPSWD=(\S+)/ && do { $pswd = $1; };
58        /UID=(\S+)/ && do { $uid = $1; };
59        /GID=(\S+)/ && do { $gid = $1; };
60        /HOMEDIR=(\S+)/ && do { $homedir = $1; };
61        my $ids = $FSTYPE == 'smbfs' ? ",uid=$uid,gid=$gid" : "";
62
63        #We should be even more careful about creating these files securely,
64        #confirming ownership, etc., but this is run in an restricted
65        #environment.
66        open(PWDFILE, ">/tmp/$user.cifs_creds") || 
67            warn "Can't create credentials for $user:$!\n";
68        chmod(0600, "/tmp/$user.cifs_creds") == 1 || 
69            warn "Credential file /tmp/$user.cifs_creds may have " .
70                "bad permissions:$!\n";
71        print PWDFILE "username=$user\npassword=$pswd\n";
72        close(PWDFILE);
73
74        print FSTAB "//$SHARE/$user\t";
75        print FSTAB "$homedir\t$FSTYPE\t";
76        print FSTAB "auto,rw,credentials=/tmp/$user.cifs_creds$ids,ip=$ADDR\t0\t0\n";
77
78        #
79        # If we are PUSER, the user assigned to mount the project
80        # directory, then we add in the mount for that.  The share is
81        # called proj-$PNAME where PNAME is the name of the project at
82        # the mothership.  We need a second map for this since we will
83        # be mounting under /proj.  We should really not use share in
84        # federation.
85        #
86
87        if($user =~ m/$PUSER/i) {
88            print FSTAB "//$SHARE/proj-$PNAME\t";
89            print FSTAB "$PROJROOT/$PNAME\t$FSTYPE\t";
90            print FSTAB "rw,credentials=/tmp/$user.cifs_creds$ids,ip=$ADDR\t0\t0\n";
91            mkdir("/$PROJROOT/$PNAME") unless -d "/$PROJROOT/$PNAME";
92            if ( $share) {
93                print FSTAB "//$SHARE/share\t";
94                print FSTAB "/share\t$FSTYPE\t";
95                print FSTAB "rw,credentials=/tmp/$user.cifs_creds$ids,ip=$ADDR\t0\t0\n";
96
97                mkdir("/share") unless -d "/share";
98            }
99        }
100    }
101}
102
103close(FSTAB);
104
105print("Mounting the $FSTYPE versions of everything\n");
106system("$MOUNT -a -t $FSTYPE");
Note: See TracBrowser for help on using the repository browser.