Current File : //proc/985914/root/data/old/home/stash/atlassian/stash/3.7.1/bin/setenv.sh
#!/usr/bin/env bash
#
# One way to set the STASH HOME path is here via this variable. Simply uncomment it and set a valid path like
# /stash/home. You can of course set it outside in the command terminal; that will also work.
#
if [ "x${STASH_HOME}" = "x" ]; then
export STASH_HOME=/home/stash/stash-home
fi
if [ "x${JAVA_HOME}" = "x" ]; then
export JAVA_HOME= /usr/lib/jvm/jre
fi
#
# Native libraries, such as the Tomcat native library, can be placed here for use by Stash. Alternatively, native
# libraries can also be placed in $STASH_HOME/lib/native, where they will also be included in the library path used
# by the JVM. By placing libraries in $STASH_HOME, they can be preserved across Stash upgrades.
#
# NOTE: You must choose the library architecture, x86 or x64, based on the JVM you'll be running, _not_ based on the OS.
#
JVM_LIBRARY_PATH="$CATALINA_HOME/lib/native:$STASH_HOME/lib/native"
#
# Occasionally Atlassian Support may recommend that you set some specific JVM arguments. You can use this variable
# below to do that.
#
JVM_SUPPORT_RECOMMENDED_ARGS=""
#
# The following 2 settings control the minimum and maximum given to the Atlassian Stash Java virtual machine.
# In larger Stash instances, the maximum amount will need to be increased.
#
JVM_MINIMUM_MEMORY="512m"
JVM_MAXIMUM_MEMORY="768m"
#
# File encoding passed into the Atlassian Stash Java virtual machine
#
JVM_FILE_ENCODING="UTF-8"
#
# The following are the required arguments needed for Atlassian Stash.
#
JVM_REQUIRED_ARGS="-Djava.awt.headless=true -Dfile.encoding=${JVM_FILE_ENCODING} -Datlassian.standalone=STASH -Dorg.apache.jasper.runtime.BodyContentImpl.LIMIT_BUFFER=true -Dmail.mime.decodeparameters=true -Dorg.apache.catalina.connector.Response.ENFORCE_ENCODING_IN_GET_WRITER=false"
#
# Uncommenting the following will set the umask for the Atlassian Stash application. If can be used to override
# the default settings of the Stash user is they are not sufficiently secure.
#
# umask 0027
#-----------------------------------------------------------------------------------
# JMX
#
# JMX is enabled by selecting an authentication method value for JMX_REMOTE_AUTH and then configuring related the
# variables.
#
# See http://docs.oracle.com/javase/7/docs/technotes/guides/management/agent.html for more information on JMX
# configuration in general.
#-----------------------------------------------------------------------------------
#
# Set the authentication to use for remote JMX access. Anything other than "password" or "ssl" will cause remote JMX
# access to be disabled.
#
JMX_REMOTE_AUTH=
#
# The port for remote JMX support if enabled
#
JMX_REMOTE_PORT=3333
#
# If `hostname -i` returns a local address then JMX-RMI communication may fail because the address returned by JMX for
# the RMI-JMX stub will not resolve for non-local clients. To fix this you will need to explicitly specify the
# IP address / host name of this server that is reachable / resolvable by JMX clients. e.g.
# RMI_SERVER_HOSTNAME="-Djava.rmi.server.hostname=non.local.name.of.my.stash.server"
#
#RMI_SERVER_HOSTNAME="-Djava.rmi.server.hostname="
#-----------------------------------------------------------------------------------
# JMX username/password support
#-----------------------------------------------------------------------------------
#
# The full path to the JMX username/password file used to authenticate remote JMX clients
#
#JMX_PASSWORD_FILE=
#-----------------------------------------------------------------------------------
# JMX SSL support
#-----------------------------------------------------------------------------------
#
# The full path to the Java keystore which must contain Stash's key pair used for SSL authentication for JMX
#
#JAVA_KEYSTORE=
#
# The password for JAVA_KEYSTORE
#
#JAVA_KEYSTORE_PASSWORD=
#
# The full path to the Java truststore which must contain the client certificates accepted by Stash for SSL authentication
# of JMX
#
#JAVA_TRUSTSTORE=
#
# The password for JAVA_TRUSTSTORE
#
#JAVA_TRUSTSTORE_PASSWORD=
#-----------------------------------------------------------------------------------
#
# In general don't make changes below here
#
#-----------------------------------------------------------------------------------
PRGDIR=`dirname "$0"`
if [ -z "$STASH_HOME" ]; then
echo ""
echo "-------------------------------------------------------------------------------"
echo " Stash doesn't know where to store its data. Please configure the STASH_HOME"
echo " environment variable with the directory where Stash should store its data."
echo " Ensure that the path to STASH_HOME does not contain spaces. STASH_HOME may"
echo " be configured in setenv.sh, if preferred, rather than exporting it as an"
echo " environment variable."
echo "-------------------------------------------------------------------------------"
exit 1
fi
echo $STASH_HOME | grep -q " "
if [ $? -eq 0 ]; then
echo ""
echo "-------------------------------------------------------------------------------"
echo " STASH_HOME \"$STASH_HOME\" contains spaces."
echo " Using a directory with spaces is likely to cause unexpected behaviour and is"
echo " not supported. Please use a directory which does not contain spaces."
echo "-------------------------------------------------------------------------------"
exit 1
fi
UMASK=`umask`
UMASK_SYMBOLIC=`umask -S`
if echo $UMASK | grep -qv '0[2367]7$'; then
FORCE_EXIT=false
echo ""
echo "-------------------------------------------------------------------------------"
echo "Stash is being run with a umask that contains potentially unsafe settings."
echo "The following issues were found with the mask \"$UMASK_SYMBOLIC\" ($UMASK):"
if echo $UMASK | grep -qv '7$'; then
echo " - access is allowed to 'others'. It is recommended that 'others' be denied"
echo " all access for security reasons."
fi
if echo $UMASK | grep -qv '[2367][0-9]$'; then
echo " - write access is allowed to 'group'. It is recommend that 'group' be"
echo " denied write access. Read access to a restricted group is recommended"
echo " to allow access to the logs."
fi
if echo $UMASK | grep -qv '0[0-9][0-9]$'; then
echo " - full access has been denied to 'user'. Stash cannot be run without full"
echo " access being allowed."
FORCE_EXIT=true
fi
echo ""
echo "The recommended umask for Stash is \"u=,g=w,o=rwx\" (0027) and can be"
echo "configured in setenv.sh"
echo "-------------------------------------------------------------------------------"
if [ "x${FORCE_EXIT}" = "xtrue" ]; then
exit 1;
fi
fi
if [ "x$JMX_REMOTE_AUTH" = "xpassword" ]; then
number='^[0-9]+$'
if ! [[ $JMX_REMOTE_PORT =~ $number ]]; then
echo ""
echo "-------------------------------------------------------------------------------"
echo " Remote JMX is enabled. "
echo " "
echo " You must specify a valid port number. This is done by specifying "
echo " JMX_REMOTE_PORT in setenv.sh. "
echo "-------------------------------------------------------------------------------"
exit 1
fi
if [ -z "$JMX_PASSWORD_FILE" ] || [ ! -f "$JMX_PASSWORD_FILE" ]; then
echo ""
echo "-------------------------------------------------------------------------------"
echo " Remote JMX with username/password authentication is enabled. "
echo " "
echo " You must specify a valid path to the password file used by Stash. "
echo " This is done by specifying JMX_PASSWORD_FILE in setenv.sh. "
echo "-------------------------------------------------------------------------------"
exit 1
fi
JMX_OPTS="-Dcom.sun.management.jmxremote.port=${JMX_REMOTE_PORT} ${RMI_SERVER_HOSTNAME} -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.password.file=${JMX_PASSWORD_FILE}"
elif [ "x$JMX_REMOTE_AUTH" = "xssl" ]; then
number='^[0-9]+$'
if ! [[ $JMX_REMOTE_PORT =~ $number ]]; then
echo ""
echo "-------------------------------------------------------------------------------"
echo " Remote JMX is enabled. "
echo " "
echo " You must specify a valid port number. This is done by specifying "
echo " JMX_REMOTE_PORT in setenv.sh. "
echo "-------------------------------------------------------------------------------"
exit 1
fi
if [ -z "$JAVA_KEYSTORE" ] || [ ! -f "$JAVA_KEYSTORE" ]; then
echo ""
echo "-------------------------------------------------------------------------------"
echo " Remote JMX with SSL authentication is enabled. "
echo " "
echo " You must specify a valid path to the keystore used by Stash. This is done by "
echo " specifying JAVA_KEYSTORE in setenv.sh. "
echo "-------------------------------------------------------------------------------"
exit 1
fi
if [ -z "$JAVA_KEYSTORE_PASSWORD" ]; then
echo ""
echo "-------------------------------------------------------------------------------"
echo " Remote JMX with SSL authentication is enabled. "
echo " "
echo " You must specify a password to the keystore used by Stash. This is done by "
echo " specifying JAVA_KEYSTORE_PASSWORD in setenv.sh. "
echo "-------------------------------------------------------------------------------"
exit 1
fi
if [ -z "$JAVA_TRUSTSTORE" ] || [ ! -f "$JAVA_TRUSTSTORE" ]; then
echo ""
echo "-------------------------------------------------------------------------------"
echo " Remote JMX with SSL authentication is enabled. "
echo " "
echo " You must specify a valid path to the keystore used by Stash. This is done by "
echo " specifying JAVA_TRUSTSTORE in setenv.sh. "
echo "-------------------------------------------------------------------------------"
exit 1
fi
if [ -z "$JAVA_TRUSTSTORE_PASSWORD" ]; then
echo ""
echo "-------------------------------------------------------------------------------"
echo " Remote JMX with SSL authentication enabled. "
echo " "
echo " You must specify a password to the truststore used by Stash. This is done by "
echo " specifying JAVA_TRUSTSTORE_PASSWORD in setenv.sh. "
echo "-------------------------------------------------------------------------------"
exit 1
fi
JMX_OPTS="-Dcom.sun.management.jmxremote.port=${JMX_REMOTE_PORT} ${RMI_SERVER_HOSTNAME} -Dcom.sun.management.jmxremote.authenticate=false -Dcom.sun.management.jmxremote.ssl.need.client.auth=true -Djavax.net.ssl.keyStore=${JAVA_KEYSTORE} -Djavax.net.ssl.keyStorePassword=${JAVA_KEYSTORE_PASSWORD} -Djavax.net.ssl.trustStore=${JAVA_TRUSTSTORE} -Djavax.net.ssl.trustStorePassword=${JAVA_TRUSTSTORE_PASSWORD}"
fi
STASH_HOME_MINUSD=-Dstash.home=$STASH_HOME
if [ "x$JVM_LIBRARY_PATH" != "x" ]; then
JVM_LIBRARY_PATH_MINUSD=-Djava.library.path=$JVM_LIBRARY_PATH
JVM_REQUIRED_ARGS="${JVM_REQUIRED_ARGS} ${JVM_LIBRARY_PATH_MINUSD}"
fi
JAVA_OPTS="-Xms${JVM_MINIMUM_MEMORY} -Xmx${JVM_MAXIMUM_MEMORY} ${JMX_OPTS} ${JAVA_OPTS} ${JVM_REQUIRED_ARGS} ${JVM_SUPPORT_RECOMMENDED_ARGS} ${STASH_HOME_MINUSD}"
# PermGen size needs to be increased if encountering OutOfMemoryError: PermGen problems. Specifying PermGen size is
# not valid on IBM JDKs
STASH_MAX_PERM_SIZE=256m
if [ -f "${PRGDIR}/permgen.sh" ]; then
echo "Detecting JVM PermGen support..."
. "${PRGDIR}/permgen.sh"
if [ $JAVA_PERMGEN_SUPPORTED = "true" ]; then
echo "PermGen switch is supported. Setting to ${STASH_MAX_PERM_SIZE}\n"
JAVA_OPTS="-XX:MaxPermSize=${STASH_MAX_PERM_SIZE} ${JAVA_OPTS}"
else
echo "PermGen switch is NOT supported and will NOT be set automatically.\n"
fi
fi
export JAVA_OPTS
if [ "x$STASH_HOME_MINUSD" != "x" ]; then
echo "Using STASH_HOME: $STASH_HOME"
fi
# set the location of the pid file
if [ -z "$CATALINA_PID" ] ; then
if [ -n "$CATALINA_BASE" ] ; then
CATALINA_PID="$CATALINA_BASE"/work/catalina.pid
elif [ -n "$CATALINA_HOME" ] ; then
CATALINA_PID="$CATALINA_HOME"/work/catalina.pid
fi
fi
export CATALINA_PID
Mini Shell