Category: Système | Technews

Commands tips & tricks

févr. 20, 2020

Système

Infos Reseau

1 2	IP=$(ip -4 -o a \| sed -e '/^2:/!d;s/^.inet //;s/\/.$//g') HOSTNAME=$(hostname -s)

Modification des hosts et dns

1	[[ $(grep -E "$IP(.)$(hostname -s)(.)" /etc/hosts) ]] \|\| echo -e "$IP $(hostname -s)" >> /etc/hosts

Verification execution en root

1	[[ $(whoami) != root ]] && { echo "ERREUR : Veuillez exécuter ce script en tant que root avec la commande sudo !"; exit 1; }

Proxy

APT:

1	echo -e "Acquire::http::Proxy \"${PROXY_URL}/\";" > /etc/apt/apt.conf.d/proxy.conf

System:

PROXY_URL="http://USER:PASS@HOST:PORT"
echo -e "export http_proxy='${PROXY_URL}'\n
	     export https_proxy='${PROXY_URL}'\n
	     export no_proxy=EXCLUDED_DOMAIN.fr,localhost,127.0.0.1,${HOSTNAME}" > /etc/profile.d/proxy.sh
source /etc/profile.d/proxy.sh

Maven:

1
2

mkdir -p ~/.m2
echo ${http_proxy} | tr "/:@" " " | awk '{print "<settings>\n<proxies>\n<proxy>\n<id>proxy</id>\n<active>true</active>\n<protocol>"$1"</protocol>\n<host>"$4"</host>\n<port>"$5"</port>\n<username>"$2"</username>\n<password>"$3"</password>\n</proxy>\n</proxies>\n</settings>"}' > ~/.m2/settings.xml

Curl:

1	echo "proxy = ${http_proxy}" > ~/.curlrc

Decompresser à la volée

1 2	curl -s $PACKAGE_REGISTRY/stedolan/jq/1.6/jq-1.6.tar.gz \| tar xz -C /usr/bin/ && chmod +x /usr/bin/jq

Add Iptables

1	iptables -A INPUT -p tcp -m tcp --dport 443 -j ACCEPT && iptables -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT && iptables-save 2> /dev/null > /etc/sysconfig/iptables

Optimisation memoire Java (java heap size)

1	-Xmx2048m -Xms512m -XX:MaxPermSize=2048m -XX:+UseConcMarkSweepGC -XX:ReservedCodeCacheSize=128m -XX:+HeapDumpOnOutOfMemoryError

Changement de cible binaire

update-alternatives --set php /usr/bin/php5.6

Alias alternative from vars:
echo "[[ \${php}  ]] && alias php='update-alternatives --set php /usr/bin/php\${php} > /dev/null; php' \
	\n[[ \${node} ]] && alias node='nvm use \${node} >/dev/null; node'" >> ~/.bashrc

Manipulation de variables

Variable avec nom dynamique (shell): 
varname="toto"
varcontent="content"
$varname=$varcontent

name=${varname}
data=${!varname}

Variable avec nom dynamique (Groovy): 
def OC_CONFIG_PATH="OC_CONFIG_AA"
evaluate("env.${OC_CONFIG_PATH} = \"--config='/tmp/$OC_CONFIG_PATH/config'\" ")
env.OC_CONFIG_PATH="$OC_CONFIG_PATH"
OC_CONFIG_PATH=\${!OC_CONFIG_PATH}
env.KUBECONFIG="/tmp/AA/oc_config_${JOB_BASE_NAME}"

Sed tricks

change maven version
sed -i -r -e 's#<source>(.*)</source>#<source>1.8</source>#g' -e 's#<target>(.*)</target>#<target>1.8</target>#g' pom.xml

# Export 'exist*' groovy vars outside this shell
echo "\$(env | grep -E '_exist|_version' |sed 's/^/env./')" | tee ${WORKSPACE}/vars.groovy

Find tricks

1
2
3

find ${builder.buildDir}/ -name "*.sh" -exec chmod +x {} \\;
find ${builder.buildDir}/ -name "*.sh" -exec chmod 755 {} \\;

Import propre sql

1	mysql -u root -e "source /db.sql;"

Windows Startup applications

1	%AppData%\Microsoft\Windows\Start Menu\Programs\Startup

Systemd Authorize execution from alternative PATH

1 2	semanage fcontext -a -t bin_t "/data/pgsql/bin(/.*)?" restorecon -RF /data/pgsql/bin

Tester la presence d’un executable:

1 2	command -v <BIN>

Pousser une commande en Background et la récupérer:

tail -f /dev/null 	#exemple
ctrl + z 			#stop le process
bg 					# le pousse en Background
fg 					# pour récupere le Process

shell show ip hostname proxy tips & tricks

GIT- Appliquer des changements d'une branche autonome à une autre

déc. 19, 2019

Système

Pour appliquer les changement d’une branche à une autre :

Comparer la liste des fichiers de master par rapport à une autre branche (demo) avec exclusion de fichier

1	git diff master..demo --stat ':(exclude)fichier1' ':(exclude)README.md'

Comparer le contenu des fichiers de master par rapport à demo

1	git diff master..demo

Appliquer les changement de master sur metro pour le fichier fichier_2.txt

1 2	git checkout demo git checkout --patch master fichier_2.txt

-> Options:
y: accepter les changements
n: refuser les changements
a: accepter tous les changements
e: editer manuellement le fichier (si la ligne à garder commence par - il faut juste le remplacer par un espace et supprimer la ligne correspondante qui commence par un +)

Cherrypick entre plusieurs repos

Preparation

git clone https://repoA.git repoA
git clone https://repoB.git repoB
git clone https://repoC.git repoC

cd repoB/
git remote add repoA ../repoA
git remote add repoC ../repoC

cd ..

cd repoC/
git remote add repoA ../repoA
git remote add repoB ../repoB

Utilisation

Recupération de un ou plusieurs commits de repoA vers repoB

cd repoB/
git fetch repoA

-> pour un seul commit:
git cherry-pick <commit_id>

-> pour un groupe de commits:
git cherry-pick <first_commit>..<last_commit>

git push

Application à grande échelle

1	for br in $(git branch --list \| tr -d '*' \| grep -v <SOURCE BRANCH>); do git checkout $br; git checkout --patch <SOURCE BRANCH> <FICHIER> ; done

Authentification

Personal/project/group access tokens

curl "https://gitlab.example.com/api/v4/projects?private_token=<your_access_token>"

curl --header "PRIVATE-TOKEN: <your_access_token>" "https://gitlab.example.com/api/v4/projects"

OAuth-compliant headers:

curl --header "Authorization: Bearer <your_access_token>" "https://gitlab.example.com/api/v4/projects"

curl "https://oauth2:${CI_JOB_TOKEN}@${CI_SERVER_HOST}/${CI_PROJECT_PATH}.git"

Pull and push back in Gitlab-ci

update_tree_on_git:
  stage: update_tree_on_git
  tags:
    - <target runner>
  variables:
    # Save Git token in CI/CD variables as GIT_PUSH_TOKEN
    CI_JOB_TOKEN: $GIT_PUSH_TOKEN
  before_script:
    # Set Git info
    - git config user.email "${GITLAB_USER_EMAIL}"
    - git config user.name "${GITLAB_USER_NAME}"
    - git remote add origin_push https://oauth2:${CI_JOB_TOKEN}@${CI_SERVER_HOST}/${CI_PROJECT_PATH}.git
  script:
    - **make some stuff**
  after_script:
    # Save changes
    - git add <files> && git commit -m "<commit message>"
    - git push origin_push HEAD:${CI_COMMIT_BRANCH} -o ci.skip # Prevent triggering pipeline again

Save git credential

1	git config --global credential.helper store

Git Branch

Docker tips & tricks

juin 27, 2019

Système

Install latest docker & docker-compose

1 2	curl -sSL https://get.docker.com/ \| sh curl -L "https://github.com/docker/compose/releases/download/1.24.0/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose

Configure proxy for docker

mkdir -p /etc/systemd/system/docker.service.d
PROXY_URL='http:/USER:PASS@PROXY:PORT'
echo -e "[Service] \nEnvironment=\"HTTPS_PROXY=${PROXY_URL}\"\nEnvironment=\"NO_PROXY=localhost,127.0.0.1,${HOSTNAME}\"" > /etc/systemd/system/docker.service.d/http-proxy.conf
systemctl daemon-reload && systemctl restart docker

Change data directory & activate logrotate

1
2
3

mkdir -p /etc/docker/ /data
echo -e "{\"data-root\": \"/data/docker\",\"log-driver\": \"json-file\", \"log-opts\": { \"max-size\": \"100m\",\"max-file\": \"5\" }}}" | tee /etc/docker/daemon.json
systemctl daemon-reload && systemctl enable docker && systemctl restart docker

Clean by filter orphan images or regex container

1 2	docker rmi $(docker images -q -f 'dangling=true') 2> /dev/null \|\| true docker rm -f $(docker ps -aq -f 'name=NAME*') 2> /dev/null \|\| true

Import many images from directory, apply tag by date and latest, and push to registry

Livraisons="2018-10-10 2019-01-21 2019-03-21 2019-03-26 2019-04-10 2019-04-11"

for livraison in $Livraisons;do
	for image in $(ls $IMAGES_PATH/$livraison/*.tar); do 
		name=$(docker load -q -i $image | awk '{print $3}');
		newtag=$(basename $name | sed -e "s/:.*$/:$(basename $(dirname $image))/g")
		latesttag=$(basename $name | sed -e 's/:.*$/:latest/g')
		docker tag $name $DOCKER_REGISTRY/$newtag; 
		docker tag $name $DOCKER_REGISTRY/$latesttag
		docker push $DOCKER_REGISTRY/$newtag 
		docker push $DOCKER_REGISTRY/$latesttag
		docker rmi $name >/dev/null; 
		echo -e "\n==> image $DOCKER_REGISTRY/$newtag imported\n"; 
	done
done

Dockerfile exemple multi-tool container

### Input variables ##
ARG http_proxy
ARG https_proxy
ARG no_proxy 

## put arg as env for futur use
ENV http_proxy=$http_proxy
ENV https_proxy=$https_proxy
ENV no_proxy=$no_proxy

# System Env
ENV TERM=xterm
ENV LC_ALL=C.UTF-8
ENV DEBIAN_FRONTEND=noninteractive

# Package Env
ENV INSTALL="apt-utils software-properties-common vim dos2unix sqlite3 mysql-server mysql-client libpcre3-dev apache2 php-pear php-pecl-http maven"
ENV INSTALL_PHP="5.5 5.6 7.0 7.2"
ENV INSTALL_PHP_MODULES="xml mysql http mcrypt sqlite3 mbstring curl cli gd dev intl xsl memcache memcached zip apc"
ENV INSTALL_JAVA="openjdk-8-jdk openjdk-8-jre"
ENV INSTALL_NODEJS="8 9 10 11 12"

# Download others packages
RUN apt-get update -y && apt-get install -y software-properties-common apt-transport-https lsb-release

# Download the signing key for php repo
RUN wget -O /etc/apt/trusted.gpg.d/php.gpg https://packages.sury.org/php/apt.gpg

# Add repo for php packages
RUN echo "deb https://packages.sury.org/php/ $(lsb_release -sc) main" > /etc/apt/sources.list.d/php.list && apt-get update -y

# Add nvm for nodejs managing
RUN wget -O install.sh  https://raw.githubusercontent.com/creationix/nvm/v0.33.11/install.sh; bash install.sh

# Installing packages
# System packages
RUN /bin/bash -c 'for packages in ${INSTALL[@]};do apt-get install -y ${packages} ;done'

# Php & php modules packages
RUN /bin/bash -c 'for php_version in ${INSTALL_PHP[@]};do apt-get install -y php${php_version} ; for php_modules in ${INSTALL_PHP_MODULES[@]};do apt-get install -y php${php_version}-${php_modules} ;done ;done'

# Java packages
RUN /bin/bash -c 'for java_version in ${INSTALL_JAVA[@]};do apt-get install -y ${java_version} ;done'

# Nodejs packages
RUN /bin/bash -c 'source ~/.profile 2>/dev/null; for node_version in ${INSTALL_NODEJS[@]};do nvm install ${node_version} ;done'

tips & tricks docker