Update postgresql to latest and enable it to run without root permissions

[irvingpop]

This PR updates postgresql and postgis to the latest (9.6.6 and 2.4.2 respectively) and also enables it to run without root permissions. In order to accomplish that I had to:

• reorganize svc_data_path to include the pgdata and archive subfolders
• remove all chown/chmod commands that require root permissions
• remove all chpst statements which are no longer needed

[thesentinels]

Thanks for the pull request! Here is what will happen next:

1. Your PR will be reviewed by the maintainers
2. If everything looks good, one of them will approve it, and your PR will be merged.

Thank you for contributing!

[irvingpop]

cc: folks who have touched this plan recently: @themightychris @bodymindarts @eeyun for review

[irvingpop]

Note: we should put some kind of guard around this, in case {{cfg.data_directory}} evaluates to "" and we blow away /

[irvingpop]

typo here, I got it

[irvingpop]

update: reworked the data path stuff after feedback form @elliott-davis

[elliott-davis]

My only other concern here is what happens to your data on upgrade?

[irvingpop]

super good point - this would totally break anyone who's upgrading their postgresql plan. argh!

As an alternative, what if we keep the postgres data in svc_data_path and then put the archive dir into svc_var_path? I'm unclear how much it matters for the archive directory to survive a container stop/start

[elliott-davis]

@irvingpop I feel like you were on to the right solution about creating a pgdata dir in data but maybe just check to see if that directory exists and if not just create and move it in the init/reconfigure hook?

[irvingpop]

pseudo-coding out a couple options here for the init hook, thoughts?

1. Auto-detect pg data in the root of svc_data_path, attempt to move it for you

if [[ -f "{{pkg.svc_data_path}}/PG_VERSION" ]]; then
  echo "PGDATA detected in the root of the data path ( {{pkg.svc_data_path}} ), relocating...."
  mkdir -p {{pkg.svc_data_path}}/pgdata
  # bash extended globbing can cleanly move everything under a subfolder http://www.linuxjournal.com/content/bash-extended-globbing
  mv {{pkg.svc_data_path}}/!(pgdata) {{pkg.svc_data_path}}/pgdata/
else
  mkdir -p {{pkg.svc_data_path}}/pgdata
fi

2. Auto-detect pg data in the root of svc_data_path, and exit if it exists:

if [[  -f "{{pkg.svc_data_path}}/PG_VERSION" ]]; then
  echo "PGDATA detected in the root of the data path ( {{pkg.svc_data_path}} ), please manually move it to {{pkg.svc_data_path}}/pgdata before attempting to start the service"
  exit 1
fi

[irvingpop]

lingering question: does the init hook have any assurances that a hab supervised service isn't running?

Update: yes, it does. we can safely relocate the data

[irvingpop]

okay @elliott-davis @fnichol the latest commit should make life easier for existing installations that are upgrading. In testing:

postgresql_1  | postgresql.default(SR): Initializing
postgresql_1  | postgresql.default hook[init]:(HK): PGDATA detected in the root of the data path ( /hab/svc/postgresql/data ), relocating it to /hab/svc/postgresql/data/pgdata
postgresql_1  | postgresql.default hook[init]:(HK): Making sure hab user owns var and data paths
postgresql_1  | postgresql.default(SV): Starting service as user=hab, group=hab
postgresql_1  | postgresql.default(O): Executing run hook
postgresql_1  | postgresql.default(O): Writing postgresql.local.conf file based on memory settings
postgresql_1  | postgresql.default(O): Making sure hab user owns var and data paths
postgresql_1  | postgresql.default(O): Starting PostgreSQL
postgresql_1  | postgresql.default(O): 2017-11-20 21:37:40 GMT [63]: [1-1] user=,db=,client=  (0:00000)LOG:  redirecting log output to logging collector process
postgresql_1  | postgresql.default(O): 2017-11-20 21:37:40 GMT [63]: [2-1] user=,db=,client=  (0:00000)HINT:  Future log output will appear in directory "/hab/svc/postgresql/var/pg_log".

[stevendanna]

What kind of guard are you imagining? If there isn't a blocker, let's add it now. This rm -rf rightfully makes us nervous but it is a necessary evil with pg_basebackup.

[irvingpop]

ah, that TODO comment is probably safe to delete now that it isn't simply rm -rf {{pkg.svc_data_path}}/*.

I was thinking of this issue 🤦‍♀️ and I think the correct way to guard that is suggested by ShellCheck: https://github.com/koalaman/shellcheck/wiki/SC2115

Regardless this seems safer to me as-is now that there's the /pgdata part in the argument. even in the highly unlikely situation that Habitat goes crazy and {{pkg.svc_data_path}} evaluates to an empty string

[irvingpop]

tl;dr - removed that comment

[fnichol]

Okay, I'll get on trying this out--looking really good!

[robbkidd]

What would the origin be here after merge?

[irvingpop]

ah, I just realized that something (bldr?) is publishing official versions of this plan to https://hub.docker.com/r/habitat/postgresql/ so that would make more sense here

[irvingpop]

fixed!

[stevendanna]

Not blocking: a basebackup can take a long time for real-world databases. -v -P will give you some more output that can be reassuring when you are on minute 5-6 (or 20-21) of bootstrapping :D.

[irvingpop]

great idea! done

[rsertelon]

Will this fix #887 ?

[irvingpop]

@rsertelon not directly because this is for the postgresql plan and that issue was filed against the postgresql94 plan. but likely these fixes are applicable.

[irvingpop]

[fnichol]

Left a couple of comments, but nothing show stopping. We're close to get this merged now, testing in a couple of hours. So sorry this took so long.

[fnichol]

We should be able to get rid of this one now

[fnichol]

Same here

[fnichol]

While this will work, if anyone automatically updates their core/postgresql* package, the data dir will have moved. Something we'll want to think on, but despite that, I like this change.

[fnichol]

Nevermind, I missed the init hook fix

[fnichol]

As we'll be testing and can resolve any issues, let's merge!