ec2_init revision 1.4
1 1.1 jmcneill #!/bin/sh 2 1.1 jmcneill # 3 1.4 rhialto # $NetBSD: ec2_init,v 1.4 2021/07/20 19:31:23 rhialto Exp $ 4 1.1 jmcneill # 5 1.1 jmcneill # PROVIDE: ec2_init 6 1.1 jmcneill # REQUIRE: NETWORKING 7 1.1 jmcneill # BEFORE: LOGIN 8 1.1 jmcneill 9 1.1 jmcneill $_rc_subr_loaded . /etc/rc.subr 10 1.1 jmcneill 11 1.1 jmcneill name="ec2_init" 12 1.1 jmcneill rcvar=${name} 13 1.1 jmcneill start_cmd="ec2_init" 14 1.1 jmcneill stop_cmd=":" 15 1.1 jmcneill 16 1.2 jmcneill EC2_USER="ec2-user" 17 1.1 jmcneill METADATA_URL="http://169.254.169.254/latest/meta-data/" 18 1.1 jmcneill SSH_KEY_URL="public-keys/0/openssh-key" 19 1.1 jmcneill HOSTNAME_URL="hostname" 20 1.1 jmcneill 21 1.2 jmcneill SSH_KEY_FILE="/home/${EC2_USER}/.ssh/authorized_keys" 22 1.2 jmcneill 23 1.3 rhialto OS_METADATA_URL="http://169.254.169.254/openstack/latest/meta_data.json" 24 1.3 rhialto 25 1.2 jmcneill ec2_newuser() 26 1.2 jmcneill { 27 1.2 jmcneill echo "Creating EC2 user account ${EC2_USER}" 28 1.2 jmcneill useradd -g users -G wheel,operator -m "${EC2_USER}" 29 1.2 jmcneill } 30 1.1 jmcneill 31 1.4 rhialto extract_random_seed() 32 1.4 rhialto { 33 1.4 rhialto sed -n -e '/random_seed/s/.*"random_seed": *"\([A-Za-z0-9+/=]*\)".*/\1/p' 34 1.4 rhialto } 35 1.4 rhialto 36 1.1 jmcneill ec2_init() 37 1.1 jmcneill { 38 1.1 jmcneill ( 39 1.1 jmcneill umask 022 40 1.2 jmcneill 41 1.3 rhialto # set hostname; it may be 5-10 seconds for the metadata service 42 1.3 rhialto # to become reachable. 43 1.3 rhialto try=0 44 1.3 rhialto while [ $((try++)) -lt 20 ] 45 1.3 rhialto do 46 1.4 rhialto HOSTNAME=$(ftp -o - -q 2 "${METADATA_URL}${HOSTNAME_URL}") 47 1.3 rhialto if [ -n "$HOSTNAME" ]; then 48 1.3 rhialto echo "Setting EC2 hostname: ${HOSTNAME}" 49 1.3 rhialto echo "$HOSTNAME" > /etc/myname 50 1.3 rhialto hostname "$HOSTNAME" 51 1.3 rhialto break 52 1.3 rhialto fi 53 1.3 rhialto echo "EC2 hostname not available yet (try $try)" 54 1.3 rhialto sleep 1 55 1.3 rhialto done 56 1.3 rhialto 57 1.2 jmcneill # create EC2 user 58 1.2 jmcneill id "${EC2_USER}" >/dev/null 2>&1 || ec2_newuser 59 1.2 jmcneill 60 1.3 rhialto # fetch the public key from Amazon Web Services 61 1.4 rhialto EC2_SSH_KEY=$(ftp -o - -q 2 "${METADATA_URL}${SSH_KEY_URL}") 62 1.1 jmcneill 63 1.1 jmcneill if [ -n "$EC2_SSH_KEY" ]; then 64 1.1 jmcneill # A key pair is associated with this instance, add it 65 1.2 jmcneill # to EC2_USER's 'authorized_keys' file 66 1.1 jmcneill mkdir -p $(dirname "$SSH_KEY_FILE") 67 1.2 jmcneill chown "${EC2_USER}:users" $(dirname "$SSH_KEY_FILE") 68 1.1 jmcneill touch "$SSH_KEY_FILE" 69 1.2 jmcneill chown "${EC2_USER}:users" "$SSH_KEY_FILE" 70 1.1 jmcneill cd $(dirname "$SSH_KEY_FILE") 71 1.1 jmcneill 72 1.1 jmcneill grep -q "$EC2_SSH_KEY" "$SSH_KEY_FILE" 73 1.1 jmcneill if [ $? -ne 0 ]; then 74 1.3 rhialto echo "Setting EC2 SSH public key for user ${EC2_USER}: ${EC2_SSH_KEY##* }" 75 1.1 jmcneill echo "$EC2_SSH_KEY" >> "$SSH_KEY_FILE" 76 1.1 jmcneill fi 77 1.1 jmcneill fi 78 1.1 jmcneill 79 1.4 rhialto # May contain a "random_seed". 80 1.4 rhialto OS_METADATA="$(ftp -o - -q 2 ${OS_METADATA_URL})" 81 1.3 rhialto if echo "$OS_METADATA" | grep -q random_seed; then 82 1.4 rhialto echo "$OS_METADATA" | extract_random_seed | 83 1.4 rhialto base64 -di >> /dev/urandom 84 1.3 rhialto fi 85 1.1 jmcneill ) 86 1.1 jmcneill } 87 1.1 jmcneill 88 1.1 jmcneill load_rc_config $name 89 1.1 jmcneill run_rc_command "$1" 90
Indexes created Tue Sep 23 02:09:52 GMT 2025