From f498c7b59b8a4784c14b3affcb2d796ab3814138 Mon Sep 17 00:00:00 2001 From: Stig Thormodsrud Date: Fri, 6 Jun 2008 13:47:36 -0700 Subject: Fix 787: Add a command to force vrrp state transition to backup --- Makefile.am | 3 + scripts/keepalived/VyattaKeepalived.pm | 36 +++- scripts/keepalived/vyatta-clear-vrrp.pl | 305 ++++++++++++++++++++++++++++++++ scripts/keepalived/vyatta-keepalived.pl | 58 +----- 4 files changed, 351 insertions(+), 51 deletions(-) create mode 100644 scripts/keepalived/vyatta-clear-vrrp.pl diff --git a/Makefile.am b/Makefile.am index 9e42f89c..ff8f646f 100644 --- a/Makefile.am +++ b/Makefile.am @@ -2,6 +2,7 @@ cfgdir = $(datadir)/vyatta-cfg/templates share_perl5dir = $(datarootdir)/perl5 libudevdir = /lib/udev etcudevdir = /etc/udev +bin_sudo_usersdir = $(bindir)/sudo-users bin_SCRIPTS = sbin_SCRIPTS = @@ -32,6 +33,8 @@ noinst_DATA = test_bootfile share_perl5_DATA = scripts/keepalived/VyattaKeepalived.pm +bin_sudo_users_SCRIPTS = scripts/keepalived/vyatta-clear-vrrp.pl + sysconf_DATA += sysconf/LICENSE sysconf_DATA += sysconf/logrotate_messages sysconf_DATA += sysconf/motd.tail diff --git a/scripts/keepalived/VyattaKeepalived.pm b/scripts/keepalived/VyattaKeepalived.pm index c9abe49e..6507d8f7 100755 --- a/scripts/keepalived/VyattaKeepalived.pm +++ b/scripts/keepalived/VyattaKeepalived.pm @@ -48,7 +48,7 @@ sub vrrp_log { sub is_running { if (-f $keepalived_pid) { my $pid = `cat $keepalived_pid`; - chomp $pid; + $pid =~ s/\s+$//; # chomp doesn't remove nl my $ps = `ps -p $pid -o comm=`; if (defined($ps) && $ps ne "") { @@ -70,6 +70,7 @@ sub start_daemon { sub stop_daemon { if (is_running()) { my $pid = `cat $keepalived_pid`; + $pid =~ s/\s+$//; # chomp doesn't remove nl system("kill $pid"); vrrp_log("stop_daemon"); } else { @@ -82,7 +83,7 @@ sub restart_daemon { if (VyattaKeepalived::is_running()) { my $pid = `cat $keepalived_pid`; - chomp $pid; + $pid =~ s/\s+$//; # chomp doesn't remove nl system("kill -1 $pid"); vrrp_log("restart_deamon"); } else { @@ -216,6 +217,7 @@ sub snoop_for_master { sub vrrp_state_parse { my ($file) = @_; + $file =~ s/\s+$//; # chomp doesn't remove nl if ( -f $file) { my $line = `cat $file`; chomp $line; @@ -226,4 +228,34 @@ sub vrrp_state_parse { } } +sub vrrp_get_init_state { + my ($intf, $group, $vips, $preempt) = @_; + + my $init_state; + if (VyattaKeepalived::is_running()) { + my @state_files = VyattaKeepalived::get_state_files($intf, $group); + chomp @state_files; + if (scalar(@state_files) > 0) { + my ($start_time, $f_intf, $f_group, $state, $ltime) = + VyattaKeepalived::vrrp_state_parse($state_files[0]); + if ($state eq "master") { + $init_state = 'MASTER'; + } else { + $init_state = 'BACKUP'; + } + return $init_state; + } + # fall through to logic below + } + + if ($preempt eq "false") { + $init_state = 'BACKUP'; + } else { + $init_state = 'MASTER'; + } + + return $init_state; +} + +1; #end of file diff --git a/scripts/keepalived/vyatta-clear-vrrp.pl b/scripts/keepalived/vyatta-clear-vrrp.pl new file mode 100644 index 00000000..be33f2b9 --- /dev/null +++ b/scripts/keepalived/vyatta-clear-vrrp.pl @@ -0,0 +1,305 @@ +#!/usr/bin/perl +# +# Module: vyatta-clear-vrrp.pl +# +# **** License **** +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License version 2 as +# published by the Free Software Foundation. +# +# This program is distributed in the hope that it will be useful, but +# WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU +# General Public License for more details. +# +# This code was originally developed by Vyatta, Inc. +# Portions created by Vyatta are Copyright (C) 2007 Vyatta, Inc. +# All Rights Reserved. +# +# Author: Stig Thormodsrud +# Date: May 2008 +# Description: Script to clear vrrp +# +# **** End License **** +# + +use lib "/opt/vyatta/share/perl5/"; +use VyattaKeepalived; +use Getopt::Long; +use Sys::Syslog qw(:standard :macros); + +use strict; +use warnings; + +my $conf_file = VyattaKeepalived::get_conf_file(); + + +sub keepalived_write_file { + my ($file, $data) = @_; + + open(my $fh, '>', $file) || die "Couldn't open $file - $!"; + print $fh $data; + close $fh; +} + +sub set_instance_inital_state { + my ($instance, $init) = @_; + + if ($init eq "MASTER" and $instance =~ /state \s+ BACKUP/ix) { + if ($instance !~ s/state \s+ BACKUP/state MASTER/ix) { + print "Error: unable to replace BACKUP/MASTER\n"; + } + } elsif ($init eq "BACKUP" and $instance =~ /state \s+ MASTER/ix) { + if ($instance !~ s/state \s+ MASTER/state BACKUP/ix) { + print "Error: unable to replace MASTER/BACKUP\n"; + } + } + return $instance; +} + +my $brace_block; + +sub vrrp_extract_instance { + my ($conf, $instance) = @_; + + # + # regex to find a balanced group of squiggly braces {{{ }}} + # + $brace_block = qr/ + \{ # 1st brace + ( + [^\{\}]+ # anything but brace + | # or + (??{ $brace_block }) # another brace_block + )* + \} # matching brace + /x; + + # + # regex to match instance: + # + # vrrp_instance vyatta-eth1.100-15 { + # state MASTER + # interface eth1 + # virtual_router_id 15 + # virtual_ipaddress { + # 1.1.1.1 + # } + # } + # + my $instance_regex = qr/(vrrp_instance \s+ $instance \s+ $brace_block)/x; + + # + # replace the instance with nothing + # + my $match_instance; + if ($conf =~ s/($instance_regex)//) { + $match_instance = $1; + } else { + return ($conf, undef); + } + + return ($conf, $match_instance); +} + +sub get_vrrp_intf_group { + my @array; + + # + # return an array of hashes that contains all the intf/group pairs + # + + my $config = new VyattaConfig; + $config->setLevel("interfaces ethernet"); + my @eths = $config->listOrigNodes(); + foreach my $eth (@eths) { + my $path = "interfaces ethernet $eth"; + $config->setLevel($path); + if ($config->existsOrig("vrrp")) { + $path = "$path vrrp vrrp-group"; + $config->setLevel($path); + my @groups = $config->listOrigNodes(); + foreach my $group (@groups) { + my %hash; + $hash{'intf'} = $eth; + $hash{'group'} = $group; + $hash{'path'} = "$path $group"; + push @array, {%hash}; + } + } + + $path = "interfaces ethernet $eth"; + $config->setLevel($path); + if ($config->existsOrig("vif")) { + my $path = "$path vif"; + $config->setLevel($path); + my @vifs = $config->listOrigNodes(); + foreach my $vif (@vifs) { + my $vif_intf = $eth . "." . $vif; + my $vif_path = "$path $vif"; + $config->setLevel($vif_path); + if ($config->existsOrig("vrrp")) { + $vif_path = "$vif_path vrrp vrrp-group"; + $config->setLevel($vif_path); + my @groups = $config->listOrigNodes(); + foreach my $group (@groups) { + my %hash; + $hash{'intf'} = $vif_intf; + $hash{'group'} = $group; + $hash{'path'} = "$path $group"; + push @array, {%hash}; + } + } + } + } + } + + return @array; +} + +sub set_inital_state { + my $conf = shift; + + my $new_conf = ''; + + # + # find all intf/groups, extract instance, set init state + # + my @vrrp_instances = get_vrrp_intf_group(); + + foreach my $hash (@vrrp_instances) { + my $intf = $hash->{'intf'}; + my $group = $hash->{'group'}; + my $instance = "vyatta-" . "$intf" . "-" . "$group"; + my ($tmp_conf, $match_instance) = + vrrp_extract_instance($conf, $instance); + if (defined $match_instance) { + my $init = VyattaKeepalived::vrrp_get_init_state($intf, $group, + "", "false"); + $match_instance = set_instance_inital_state($match_instance, $init); + $new_conf .= $match_instance . "\n\n"; + } + } + + return $new_conf; +} + + +# +# main +# +my ($action, $vrrp_intf, $vrrp_group); + +GetOptions("vrrp-action=s" => \$action, + "intf=s" => \$vrrp_intf, + "group=s" => \$vrrp_group); + +if (! defined $action) { + print "no action\n"; + exit 1; +} + +openlog($0, "", LOG_USER); +my $login = getlogin(); + +# +# clear_process +# +if ($action eq "clear_process") { + syslog("warning", "clear vrrp process requested by $login"); + if (VyattaKeepalived::is_running()) { + print "Restarting VRRP...\n"; + VyattaKeepalived::restart_daemon(VyattaKeepalived::get_conf_file()); + } else { + print "Starting VRRP...\n"; + VyattaKeepalived::start_daemon(VyattaKeepalived::get_conf_file()); + } + exit 0; +} + +# +# clear_master +# +if ($action eq "clear_master") { + + # + # The kludge here to force a vrrp instance to switch from master to + # backup is to read the keepalived config, remove the instance to be + # cleared, signal the daemon to reread it's config. This will cause + # keepalived to see the old instance missing and send a priorty 0 + # advert to cause the backup to immediately take over master. Once + # that is done we put back the orginal config and signal the daemon + # again. Note: if the instance if preempt=true, then it may immediately + # try to become master again. + # + + if (! defined $vrrp_intf || ! defined $vrrp_group) { + print "must include interface & group\n"; + exit 1; + } + + my $instance = "vyatta-" . "$vrrp_intf" . "-" . "$vrrp_group"; + my $state_file = VyattaKeepalived::get_state_file($vrrp_intf, $vrrp_group); + if (! -f $state_file) { + print "Invalid interface/group [$vrrp_intf][$vrrp_group]\n"; + exit 1; + } + + my ($start_time, $intf, $group, $state, $ltime) = + VyattaKeepalived::vrrp_state_parse($state_file); + if ($state ne "master") { + print "vrrp group $vrrp_group on $vrrp_intf is already in backup\n"; + exit 1; + } + + syslog("warning", "clear vrrp master [$instance] requested by $login"); + VyattaKeepalived::vrrp_log("vrrp clear_master $vrrp_intf $vrrp_group"); + + # should add a file lock + local($/, *FILE); # slurp mode + open FILE, "<", $conf_file or die "Couldn't open $conf_file\n"; + my $conf = ; + close FILE; + + my ($new_conf, $match_instance) = vrrp_extract_instance($conf, $instance); + if ($match_instance !~ /nopreempt/) { + print "Warning: $instance is in preempt mode"; + print " and may retake master\n"; + } + $match_instance = set_instance_inital_state($match_instance, "BACKUP"); + + # + # need to set the correct initial state for the remaining instances + # + $new_conf = set_inital_state($new_conf); + + # + # create the temporary config file + # + my $tmp_conf_file = $conf_file . ".$$"; + keepalived_write_file($tmp_conf_file, $new_conf); + + my $conf_file_bak = $conf_file . ".bak"; + system("mv $conf_file $conf_file_bak"); + system("cp $tmp_conf_file $conf_file"); + + VyattaKeepalived::restart_daemon($conf_file); + + print "Forcing $vrrp_intf-$group to BACKUP...\n"; + sleep(3); + + # + # add modified instance back and restart + # + $new_conf .= "\n" . $match_instance . "\n"; + + keepalived_write_file($conf_file, $new_conf); + VyattaKeepalived::restart_daemon($conf_file); + + system("rm $conf_file_bak $tmp_conf_file"); + exit 0; +} + +exit 0; + +# end of file diff --git a/scripts/keepalived/vyatta-keepalived.pl b/scripts/keepalived/vyatta-keepalived.pl index ac92ca8e..e40c737a 100755 --- a/scripts/keepalived/vyatta-keepalived.pl +++ b/scripts/keepalived/vyatta-keepalived.pl @@ -36,33 +36,6 @@ my $conf_file = VyattaKeepalived::get_conf_file(); my %HoA_sync_groups; -sub vrrp_get_init_state { - my ($intf, $group, $vips, $preempt) = @_; - - my $init_state; - if (VyattaKeepalived::is_running()) { - my @state_files = VyattaKeepalived::get_state_files($intf, $group); - if (scalar(@state_files) > 0) { - my ($start_time, $f_intf, $f_group, $state, $ltime) = - VyattaKeepalived::vrrp_state_parse($state_files[0]); - if ($state eq "master") { - $init_state = 'MASTER'; - } else { - $init_state = 'BACKUP'; - } - return $init_state; - } - # fall through to logic below - } - - if ($preempt eq "false") { - $init_state = 'BACKUP'; - } else { - $init_state = 'MASTER'; - } - - return $init_state; -} sub keepalived_get_values { my ($intf, $path) = @_; @@ -132,7 +105,9 @@ sub keepalived_get_values { } $output .= "vrrp_instance $vrrp_instance \{\n"; - my $init_state = vrrp_get_init_state($intf, $group, $vips[0], $preempt); + my $init_state; + $init_state = VyattaKeepalived::vrrp_get_init_state($intf, $group, + $vips[0], $preempt); $output .= "\tstate $init_state\n"; $output .= "\tinterface $intf\n"; $output .= "\tvirtual_router_id $group\n"; @@ -151,12 +126,12 @@ sub keepalived_get_values { $output .= "\t\t$vip\n"; } $output .= "\t\}\n"; - $output .= "\tnotify_master "; - $output .= "\"$state_transition_script master $intf $group $run_master_script @vips\" \n"; - $output .= "\tnotify_backup "; - $output .= "\"$state_transition_script backup $intf $group $run_backup_script @vips\" \n"; - $output .= "\tnotify_fault "; - $output .= "\"$state_transition_script fault $intf $group $run_fault_script @vips\" \n"; + $output .= "\tnotify_master \"$state_transition_script master "; + $output .= "$intf $group $run_master_script @vips\" \n"; + $output .= "\tnotify_backup \"$state_transition_script backup "; + $output .= "$intf $group $run_backup_script @vips\" \n"; + $output .= "\tnotify_fault \"$state_transition_script fault "; + $output .= "$intf $group $run_fault_script @vips\" \n"; $output .= "\}\n\n"; } @@ -408,21 +383,6 @@ if ($action eq "delete") { exit 0; } -if ($action eq "clear") { - if (VyattaKeepalived::is_running()) { - print "Restarting VRRP...\n"; - VyattaKeepalived::restart_daemon(VyattaKeepalived::get_conf_file()); - } else { - print "Starting VRRP...\n"; - VyattaKeepalived::start_daemon(VyattaKeepalived::get_conf_file()); - } - exit 0; -} - exit 0; # end of file - - - - -- cgit v1.2.3