]> git.proxmox.com Git - pve-cluster.git/blame - data/PVE/Cluster.pm
projects / pve-cluster.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
bump version to 5.0-27
[pve-cluster.git] / data / PVE / Cluster.pm
CommitLineData
fe000966
DM		 1package PVE::Cluster;
2
3use strict;
7181f622 4use warnings;
7bac9ca5 5use POSIX qw(EEXIST ENOENT);
fe000966
DM		 6use File::stat qw();
7use Socket;
8use Storable qw(dclone);
9use IO::File;
10use MIME::Base64;
440121dc 11use Digest::SHA;
fe000966 12use Digest::HMAC_SHA1;
26784563 13use Net::SSLeay;
8fdd87f9 14use PVE::Tools qw(run_command);
fe000966
DM		 15use PVE::INotify;
16use PVE::IPCC;
17use PVE::SafeSyslog;
d0ad18e8 18use PVE::JSONSchema;
54d487bf 19use PVE::Network;
fe000966
DM		 20use JSON;
21use RRDs;
22use Encode;
ed8eb70d 23use UUID;
fe000966
DM		 24use base 'Exporter';
25
26our @EXPORT_OK = qw(
27cfs_read_file
28cfs_write_file
29cfs_register_file
30cfs_lock_file);
31
32use Data::Dumper; # fixme: remove
33
34# x509 certificate utils
35
36my $basedir = "/etc/pve";
37my $authdir = "$basedir/priv";
38my $lockdir = "/etc/pve/priv/lock";
39
68491de3 40# cfs and corosync files
e02bdaae
TL		 41my $dbfile = "/var/lib/pve-cluster/config.db";
42my $dbbackupdir = "/var/lib/pve-cluster/backup";
68491de3 43my $localclusterdir = "/etc/corosync";
e02bdaae 44my $localclusterconf = "$localclusterdir/corosync.conf";
68491de3
TL		 45my $authfile = "$localclusterdir/authkey";
46my $clusterconf = "$basedir/corosync.conf";
47
fe000966
DM		 48my $authprivkeyfn = "$authdir/authkey.key";
49my $authpubkeyfn = "$basedir/authkey.pub";
50my $pveca_key_fn = "$authdir/pve-root-ca.key";
51my $pveca_srl_fn = "$authdir/pve-root-ca.srl";
52my $pveca_cert_fn = "$basedir/pve-root-ca.pem";
53# this is just a secret accessable by the web browser
54# and is used for CSRF prevention
55my $pvewww_key_fn = "$basedir/pve-www.key";
56
57# ssh related files
58my $ssh_rsa_id_priv = "/root/.ssh/id_rsa";
59my $ssh_rsa_id = "/root/.ssh/id_rsa.pub";
60my $ssh_host_rsa_id = "/etc/ssh/ssh_host_rsa_key.pub";
61my $sshglobalknownhosts = "/etc/ssh/ssh_known_hosts";
62my $sshknownhosts = "/etc/pve/priv/known_hosts";
63my $sshauthkeys = "/etc/pve/priv/authorized_keys";
ac50b36d 64my $sshd_config_fn = "/etc/ssh/sshd_config";
fe000966 65my $rootsshauthkeys = "/root/.ssh/authorized_keys";
6056578e 66my $rootsshauthkeysbackup = "${rootsshauthkeys}.org";
f666cdde 67my $rootsshconfig = "/root/.ssh/config";
fe000966
DM		 68
69my $observed = {
e1735a61 70 'vzdump.cron' => 1,
fe000966
DM		 71 'storage.cfg' => 1,
72 'datacenter.cfg' => 1,
f6de131a 73 'replication.cfg' => 1,
cafc7309
DM		 74 'corosync.conf' => 1,
75 'corosync.conf.new' => 1,
fe000966
DM		 76 'user.cfg' => 1,
77 'domains.cfg' => 1,
78 'priv/shadow.cfg' => 1,
79 '/qemu-server/' => 1,
f71eee41 80 '/openvz/' => 1,
7f66b436 81 '/lxc/' => 1,
5a5417e6
DM		 82 'ha/crm_commands' => 1,
83 'ha/manager_status' => 1,
84 'ha/resources.cfg' => 1,
85 'ha/groups.cfg' => 1,
e9af3eb7 86 'ha/fence.cfg' => 1,
9d4f69ff 87 'status.cfg' => 1,
fe000966
DM		 88};
89
90# only write output if something fails
91sub run_silent_cmd {
92 my ($cmd) = @_;
93
94 my $outbuf = '';
95
96 my $record_output = sub {
97 $outbuf .= shift;
98 $outbuf .= "\n";
99 };
100
101 eval {
c53b111f 102 PVE::Tools::run_command($cmd, outfunc => $record_output,
fe000966
DM		 103 errfunc => $record_output);
104 };
105
106 my $err = $@;
107
108 if ($err) {
109 print STDERR $outbuf;
110 die $err;
111 }
112}
113
114sub check_cfs_quorum {
01dddfb9
DM		 115 my ($noerr) = @_;
116
fe000966
DM		 117 # note: -w filename always return 1 for root, so wee need
118 # to use File::lstat here
119 my $st = File::stat::lstat("$basedir/local");
01dddfb9
DM		 120 my $quorate = ($st && (($st->mode & 0200) != 0));
121
122 die "cluster not ready - no quorum?\n" if !$quorate && !$noerr;
123
124 return $quorate;
fe000966
DM		 125}
126
127sub check_cfs_is_mounted {
128 my ($noerr) = @_;
129
130 my $res = -l "$basedir/local";
131
132 die "pve configuration filesystem not mounted\n"
133 if !$res && !$noerr;
134
135 return $res;
136}
137
138sub gen_local_dirs {
139 my ($nodename) = @_;
140
141 check_cfs_is_mounted();
142
143 my @required_dirs = (
144 "$basedir/priv",
c53b111f 145 "$basedir/nodes",
fe000966 146 "$basedir/nodes/$nodename",
7f66b436 147 "$basedir/nodes/$nodename/lxc",
a1c08cfa
DM		 148 "$basedir/nodes/$nodename/qemu-server",
149 "$basedir/nodes/$nodename/openvz",
fe000966 150 "$basedir/nodes/$nodename/priv");
c53b111f 151
fe000966
DM		 152 foreach my $dir (@required_dirs) {
153 if (! -d $dir) {
62613060 154 mkdir($dir) || $! == EEXIST || die "unable to create directory '$dir' - $!\n";
fe000966
DM		 155 }
156 }
157}
158
159sub gen_auth_key {
160
161 return if -f "$authprivkeyfn";
162
163 check_cfs_is_mounted();
164
62613060 165 mkdir $authdir || $! == EEXIST || die "unable to create dir '$authdir' - $!\n";
fe000966 166
2d899b19 167 run_silent_cmd(['openssl', 'genrsa', '-out', $authprivkeyfn, '2048']);
fe000966 168
de4b4155 169 run_silent_cmd(['openssl', 'rsa', '-in', $authprivkeyfn, '-pubout', '-out', $authpubkeyfn]);
fe000966
DM		 170}
171
172sub gen_pveca_key {
173
174 return if -f $pveca_key_fn;
175
176 eval {
147661a8 177 run_silent_cmd(['openssl', 'genrsa', '-out', $pveca_key_fn, '4096']);
fe000966
DM		 178 };
179
180 die "unable to generate pve ca key:\n$@" if $@;
181}
182
183sub gen_pveca_cert {
184
185 if (-f $pveca_key_fn && -f $pveca_cert_fn) {
186 return 0;
187 }
188
189 gen_pveca_key();
190
191 # we try to generate an unique 'subject' to avoid browser problems
192 # (reused serial numbers, ..)
ed8eb70d
FG		 193 my $uuid;
194 UUID::generate($uuid);
195 my $uuid_str;
196 UUID::unparse($uuid, $uuid_str);
fe000966
DM		 197
198 eval {
f5566fc6
FG		 199 # wrap openssl with faketime to prevent bug #904
200 run_silent_cmd(['faketime', 'yesterday', 'openssl', 'req', '-batch',
201 '-days', '3650', '-new', '-x509', '-nodes', '-key',
fe000966 202 $pveca_key_fn, '-out', $pveca_cert_fn, '-subj',
ed8eb70d 203 "/CN=Proxmox Virtual Environment/OU=$uuid_str/O=PVE Cluster Manager CA/"]);
fe000966
DM		 204 };
205
206 die "generating pve root certificate failed:\n$@" if $@;
207
208 return 1;
209}
210
211sub gen_pve_ssl_key {
212 my ($nodename) = @_;
213
214 die "no node name specified" if !$nodename;
215
216 my $pvessl_key_fn = "$basedir/nodes/$nodename/pve-ssl.key";
217
218 return if -f $pvessl_key_fn;
219
220 eval {
221 run_silent_cmd(['openssl', 'genrsa', '-out', $pvessl_key_fn, '2048']);
222 };
223
224 die "unable to generate pve ssl key for node '$nodename':\n$@" if $@;
225}
226
227sub gen_pve_www_key {
228
229 return if -f $pvewww_key_fn;
230
231 eval {
232 run_silent_cmd(['openssl', 'genrsa', '-out', $pvewww_key_fn, '2048']);
233 };
234
235 die "unable to generate pve www key:\n$@" if $@;
236}
237
238sub update_serial {
239 my ($serial) = @_;
240
241 PVE::Tools::file_set_contents($pveca_srl_fn, $serial);
242}
243
244sub gen_pve_ssl_cert {
245 my ($force, $nodename, $ip) = @_;
246
247 die "no node name specified" if !$nodename;
248 die "no IP specified" if !$ip;
249
250 my $pvessl_cert_fn = "$basedir/nodes/$nodename/pve-ssl.pem";
251
252 return if !$force && -f $pvessl_cert_fn;
253
8acde170 254 my $names = "IP:127.0.0.1,IP:::1,DNS:localhost";
fe000966
DM		 255
256 my $rc = PVE::INotify::read_file('resolvconf');
257
258 $names .= ",IP:$ip";
c53b111f 259
fe000966
DM		 260 my $fqdn = $nodename;
261
262 $names .= ",DNS:$nodename";
263
264 if ($rc && $rc->{search}) {
265 $fqdn = $nodename . "." . $rc->{search};
266 $names .= ",DNS:$fqdn";
267 }
268
269 my $sslconf = <<__EOD;
270RANDFILE = /root/.rnd
271extensions = v3_req
272
273[ req ]
274default_bits = 2048
275distinguished_name = req_distinguished_name
276req_extensions = v3_req
277prompt = no
278string_mask = nombstr
279
280[ req_distinguished_name ]
281organizationalUnitName = PVE Cluster Node
282organizationName = Proxmox Virtual Environment
283commonName = $fqdn
284
285[ v3_req ]
286basicConstraints = CA:FALSE
e544d064 287extendedKeyUsage = serverAuth
fe000966
DM		 288subjectAltName = $names
289__EOD
290
291 my $cfgfn = "/tmp/pvesslconf-$$.tmp";
292 my $fh = IO::File->new ($cfgfn, "w");
293 print $fh $sslconf;
294 close ($fh);
295
296 my $reqfn = "/tmp/pvecertreq-$$.tmp";
297 unlink $reqfn;
298
299 my $pvessl_key_fn = "$basedir/nodes/$nodename/pve-ssl.key";
300 eval {
301 run_silent_cmd(['openssl', 'req', '-batch', '-new', '-config', $cfgfn,
302 '-key', $pvessl_key_fn, '-out', $reqfn]);
303 };
304
305 if (my $err = $@) {
306 unlink $reqfn;
307 unlink $cfgfn;
308 die "unable to generate pve certificate request:\n$err";
309 }
310
311 update_serial("0000000000000000") if ! -f $pveca_srl_fn;
312
313 eval {
f5566fc6
FG		 314 # wrap openssl with faketime to prevent bug #904
315 run_silent_cmd(['faketime', 'yesterday', 'openssl', 'x509', '-req',
316 '-in', $reqfn, '-days', '3650', '-out', $pvessl_cert_fn,
317 '-CAkey', $pveca_key_fn, '-CA', $pveca_cert_fn,
318 '-CAserial', $pveca_srl_fn, '-extfile', $cfgfn]);
fe000966
DM		 319 };
320
321 if (my $err = $@) {
322 unlink $reqfn;
323 unlink $cfgfn;
324 die "unable to generate pve ssl certificate:\n$err";
325 }
326
327 unlink $cfgfn;
328 unlink $reqfn;
329}
330
331sub gen_pve_node_files {
332 my ($nodename, $ip, $opt_force) = @_;
333
334 gen_local_dirs($nodename);
335
336 gen_auth_key();
337
338 # make sure we have a (cluster wide) secret
339 # for CSRFR prevention
340 gen_pve_www_key();
341
342 # make sure we have a (per node) private key
343 gen_pve_ssl_key($nodename);
344
345 # make sure we have a CA
346 my $force = gen_pveca_cert();
347
348 $force = 1 if $opt_force;
349
350 gen_pve_ssl_cert($force, $nodename, $ip);
351}
352
bd0ae7ff
DM		 353my $vzdump_cron_dummy = <<__EOD;
354# cluster wide vzdump cron schedule
355# Atomatically generated file - do not edit
356
357PATH="/usr/sbin:/usr/bin:/sbin:/bin"
358
359__EOD
360
361sub gen_pve_vzdump_symlink {
362
e1735a61 363 my $filename = "/etc/pve/vzdump.cron";
bd0ae7ff
DM		 364
365 my $link_fn = "/etc/cron.d/vzdump";
366
367 if ((-f $filename) && (! -l $link_fn)) {
368 rename($link_fn, "/root/etc_cron_vzdump.org"); # make backup if file exists
369 symlink($filename, $link_fn);
370 }
371}
372
373sub gen_pve_vzdump_files {
374
e1735a61 375 my $filename = "/etc/pve/vzdump.cron";
bd0ae7ff
DM		 376
377 PVE::Tools::file_set_contents($filename, $vzdump_cron_dummy)
378 if ! -f $filename;
379
380 gen_pve_vzdump_symlink();
381};
382
fe000966
DM		 383my $versions = {};
384my $vmlist = {};
385my $clinfo = {};
386
387my $ipcc_send_rec = sub {
388 my ($msgid, $data) = @_;
389
390 my $res = PVE::IPCC::ipcc_send_rec($msgid, $data);
391
dd856b4d 392 die "ipcc_send_rec[$msgid] failed: $!\n" if !defined($res) && ($! != 0);
fe000966
DM		 393
394 return $res;
395};
396
397my $ipcc_send_rec_json = sub {
398 my ($msgid, $data) = @_;
399
400 my $res = PVE::IPCC::ipcc_send_rec($msgid, $data);
401
dd856b4d 402 die "ipcc_send_rec[$msgid] failed: $!\n" if !defined($res) && ($! != 0);
fe000966
DM		 403
404 return decode_json($res);
405};
406
407my $ipcc_get_config = sub {
408 my ($path) = @_;
409
410 my $bindata = pack "Z*", $path;
2db32d95
DM		 411 my $res = PVE::IPCC::ipcc_send_rec(6, $bindata);
412 if (!defined($res)) {
7bac9ca5
WB		 413 if ($! != 0) {
414 return undef if $! == ENOENT;
415 die "$!\n";
416 }
2db32d95
DM		 417 return '';
418 }
419
420 return $res;
fe000966
DM		 421};
422
423my $ipcc_get_status = sub {
424 my ($name, $nodename) = @_;
425
426 my $bindata = pack "Z[256]Z[256]", $name, ($nodename || "");
427 return PVE::IPCC::ipcc_send_rec(5, $bindata);
428};
429
430my $ipcc_update_status = sub {
431 my ($name, $data) = @_;
432
433 my $raw = ref($data) ? encode_json($data) : $data;
434 # update status
435 my $bindata = pack "Z[256]Z*", $name, $raw;
436
437 return &$ipcc_send_rec(4, $bindata);
438};
439
440my $ipcc_log = sub {
441 my ($priority, $ident, $tag, $msg) = @_;
442
443 my $bindata = pack "CCCZ*Z*Z*", $priority, bytes::length($ident) + 1,
444 bytes::length($tag) + 1, $ident, $tag, $msg;
445
446 return &$ipcc_send_rec(7, $bindata);
447};
448
449my $ipcc_get_cluster_log = sub {
450 my ($user, $max) = @_;
451
452 $max = 0 if !defined($max);
453
454 my $bindata = pack "VVVVZ*", $max, 0, 0, 0, ($user || "");
455 return &$ipcc_send_rec(8, $bindata);
456};
457
458my $ccache = {};
459
460sub cfs_update {
686801e4 461 my ($fail) = @_;
fe000966
DM		 462 eval {
463 my $res = &$ipcc_send_rec_json(1);
464 #warn "GOT1: " . Dumper($res);
465 die "no starttime\n" if !$res->{starttime};
466
467 if (!$res->{starttime} || !$versions->{starttime} ||
468 $res->{starttime} != $versions->{starttime}) {
469 #print "detected changed starttime\n";
470 $vmlist = {};
471 $clinfo = {};
472 $ccache = {};
473 }
474
475 $versions = $res;
476 };
477 my $err = $@;
478 if ($err) {
479 $versions = {};
480 $vmlist = {};
481 $clinfo = {};
482 $ccache = {};
686801e4 483 die $err if $fail;
fe000966
DM		 484 warn $err;
485 }
486
487 eval {
488 if (!$clinfo->{version} || $clinfo->{version} != $versions->{clinfo}) {
489 #warn "detected new clinfo\n";
490 $clinfo = &$ipcc_send_rec_json(2);
491 }
492 };
493 $err = $@;
494 if ($err) {
495 $clinfo = {};
686801e4 496 die $err if $fail;
fe000966
DM		 497 warn $err;
498 }
499
500 eval {
501 if (!$vmlist->{version} || $vmlist->{version} != $versions->{vmlist}) {
502 #warn "detected new vmlist1\n";
503 $vmlist = &$ipcc_send_rec_json(3);
504 }
505 };
506 $err = $@;
507 if ($err) {
508 $vmlist = {};
686801e4 509 die $err if $fail;
fe000966
DM		 510 warn $err;
511 }
512}
513
514sub get_vmlist {
515 return $vmlist;
516}
517
518sub get_clinfo {
519 return $clinfo;
520}
521
9ddd4ae9
DM		 522sub get_members {
523 return $clinfo->{nodelist};
524}
525
fe000966
DM		 526sub get_nodelist {
527
528 my $nodelist = $clinfo->{nodelist};
529
530 my $result = [];
531
532 my $nodename = PVE::INotify::nodename();
533
534 if (!$nodelist || !$nodelist->{$nodename}) {
535 return [ $nodename ];
536 }
537
538 return [ keys %$nodelist ];
539}
540
1b36b6b1 541# $data must be a chronological descending ordered array of tasks
fe000966
DM		 542sub broadcast_tasklist {
543 my ($data) = @_;
544
1b36b6b1
TL		 545 # the serialized list may not get bigger than 32kb (CFS_MAX_STATUS_SIZE
546 # from pmxcfs) - drop older items until we satisfy this constraint
547 my $size = length(encode_json($data));
548 while ($size >= (32 * 1024)) {
549 pop @$data;
550 $size = length(encode_json($data));
551 }
552
fe000966
DM		 553 eval {
554 &$ipcc_update_status("tasklist", $data);
555 };
556
557 warn $@ if $@;
558}
559
560my $tasklistcache = {};
561
562sub get_tasklist {
563 my ($nodename) = @_;
564
565 my $kvstore = $versions->{kvstore} || {};
566
567 my $nodelist = get_nodelist();
568
569 my $res = [];
570 foreach my $node (@$nodelist) {
571 next if $nodename && ($nodename ne $node);
572 eval {
573 my $ver = $kvstore->{$node}->{tasklist} if $kvstore->{$node};
574 my $cd = $tasklistcache->{$node};
c53b111f 575 if (!$cd || !$ver || !$cd->{version} ||
cebe16ec 576 ($cd->{version} != $ver)) {
fe000966
DM		 577 my $raw = &$ipcc_get_status("tasklist", $node) || '[]';
578 my $data = decode_json($raw);
579 push @$res, @$data;
580 $cd = $tasklistcache->{$node} = {
581 data => $data,
582 version => $ver,
583 };
584 } elsif ($cd && $cd->{data}) {
585 push @$res, @{$cd->{data}};
586 }
587 };
588 my $err = $@;
589 syslog('err', $err) if $err;
590 }
591
592 return $res;
593}
594
595sub broadcast_rrd {
596 my ($rrdid, $data) = @_;
597
598 eval {
599 &$ipcc_update_status("rrd/$rrdid", $data);
600 };
601 my $err = $@;
602
603 warn $err if $err;
604}
605
606my $last_rrd_dump = 0;
607my $last_rrd_data = "";
608
609sub rrd_dump {
610
611 my $ctime = time();
612
613 my $diff = $ctime - $last_rrd_dump;
614 if ($diff < 2) {
615 return $last_rrd_data;
616 }
617
618 my $raw;
619 eval {
620 $raw = &$ipcc_send_rec(10);
621 };
622 my $err = $@;
623
624 if ($err) {
625 warn $err;
626 return {};
627 }
628
629 my $res = {};
630
c3fabca7
DM		 631 if ($raw) {
632 while ($raw =~ s/^(.*)\n//) {
633 my ($key, @ela) = split(/:/, $1);
634 next if !$key;
635 next if !(scalar(@ela) > 1);
d2aae33e 636 $res->{$key} = [ map { $_ eq 'U' ? undef : $_ } @ela ];
c3fabca7 637 }
fe000966
DM		 638 }
639
640 $last_rrd_dump = $ctime;
641 $last_rrd_data = $res;
642
643 return $res;
644}
645
646sub create_rrd_data {
647 my ($rrdname, $timeframe, $cf) = @_;
648
649 my $rrddir = "/var/lib/rrdcached/db";
650
651 my $rrd = "$rrddir/$rrdname";
652
653 my $setup = {
654 hour => [ 60, 70 ],
655 day => [ 60*30, 70 ],
656 week => [ 60*180, 70 ],
657 month => [ 60*720, 70 ],
658 year => [ 60*10080, 70 ],
659 };
660
661 my ($reso, $count) = @{$setup->{$timeframe}};
662 my $ctime = $reso*int(time()/$reso);
663 my $req_start = $ctime - $reso*$count;
664
665 $cf = "AVERAGE" if !$cf;
666
667 my @args = (
668 "-s" => $req_start,
669 "-e" => $ctime - 1,
670 "-r" => $reso,
671 );
672
673 my $socket = "/var/run/rrdcached.sock";
674 push @args, "--daemon" => "unix:$socket" if -S $socket;
675
676 my ($start, $step, $names, $data) = RRDs::fetch($rrd, $cf, @args);
677
678 my $err = RRDs::error;
679 die "RRD error: $err\n" if $err;
c53b111f
DM		 680
681 die "got wrong time resolution ($step != $reso)\n"
fe000966
DM		 682 if $step != $reso;
683
684 my $res = [];
685 my $fields = scalar(@$names);
686 for my $line (@$data) {
687 my $entry = { 'time' => $start };
688 $start += $step;
fe000966
DM		 689 for (my $i = 0; $i < $fields; $i++) {
690 my $name = $names->[$i];
691 if (defined(my $val = $line->[$i])) {
692 $entry->{$name} = $val;
693 } else {
fba7c78c
DC		 694 # leave empty fields undefined
695 # maybe make this configurable?
fe000966
DM		 696 }
697 }
fba7c78c 698 push @$res, $entry;
fe000966
DM		 699 }
700
701 return $res;
702}
703
704sub create_rrd_graph {
705 my ($rrdname, $timeframe, $ds, $cf) = @_;
706
707 # Using RRD graph is clumsy - maybe it
708 # is better to simply fetch the data, and do all display
709 # related things with javascript (new extjs html5 graph library).
c53b111f 710
fe000966
DM		 711 my $rrddir = "/var/lib/rrdcached/db";
712
713 my $rrd = "$rrddir/$rrdname";
714
31938ad4
DM		 715 my @ids = PVE::Tools::split_list($ds);
716
717 my $ds_txt = join('_', @ids);
718
719 my $filename = "${rrd}_${ds_txt}.png";
fe000966
DM		 720
721 my $setup = {
722 hour => [ 60, 60 ],
723 day => [ 60*30, 70 ],
724 week => [ 60*180, 70 ],
725 month => [ 60*720, 70 ],
726 year => [ 60*10080, 70 ],
727 };
728
729 my ($reso, $count) = @{$setup->{$timeframe}};
730
731 my @args = (
732 "--imgformat" => "PNG",
733 "--border" => 0,
734 "--height" => 200,
735 "--width" => 800,
736 "--start" => - $reso*$count,
737 "--end" => 'now' ,
8daa8f04 738 "--lower-limit" => 0,
fe000966
DM		 739 );
740
741 my $socket = "/var/run/rrdcached.sock";
742 push @args, "--daemon" => "unix:$socket" if -S $socket;
743
fe000966
DM		 744 my @coldef = ('#00ddff', '#ff0000');
745
746 $cf = "AVERAGE" if !$cf;
747
748 my $i = 0;
749 foreach my $id (@ids) {
750 my $col = $coldef[$i++] || die "fixme: no color definition";
751 push @args, "DEF:${id}=$rrd:${id}:$cf";
752 my $dataid = $id;
753 if ($id eq 'cpu' || $id eq 'iowait') {
754 push @args, "CDEF:${id}_per=${id},100,*";
755 $dataid = "${id}_per";
756 }
757 push @args, "LINE2:${dataid}${col}:${id}";
758 }
759
a665376e
DM		 760 push @args, '--full-size-mode';
761
31938ad4 762 # we do not really store data into the file
f7baa598 763 my $res = RRDs::graphv('-', @args);
fe000966
DM		 764
765 my $err = RRDs::error;
766 die "RRD error: $err\n" if $err;
767
31938ad4 768 return { filename => $filename, image => $res->{image} };
fe000966
DM		 769}
770
771# a fast way to read files (avoid fuse overhead)
772sub get_config {
773 my ($path) = @_;
774
d3a92ba7 775 return &$ipcc_get_config($path);
fe000966
DM		 776}
777
778sub get_cluster_log {
779 my ($user, $max) = @_;
780
781 return &$ipcc_get_cluster_log($user, $max);
782}
783
784my $file_info = {};
785
786sub cfs_register_file {
787 my ($filename, $parser, $writer) = @_;
788
789 $observed->{$filename} || die "unknown file '$filename'";
790
791 die "file '$filename' already registered" if $file_info->{$filename};
792
793 $file_info->{$filename} = {
794 parser => $parser,
795 writer => $writer,
796 };
797}
798
799my $ccache_read = sub {
800 my ($filename, $parser, $version) = @_;
801
802 $ccache->{$filename} = {} if !$ccache->{$filename};
803
804 my $ci = $ccache->{$filename};
805
d3a92ba7
DM		 806 if (!$ci->{version} || !$version || $ci->{version} != $version) {
807 # we always call the parser, even when the file does not exists
808 # (in that case $data is undef)
fe000966 809 my $data = get_config($filename);
fe000966
DM		 810 $ci->{data} = &$parser("/etc/pve/$filename", $data);
811 $ci->{version} = $version;
812 }
813
814 my $res = ref($ci->{data}) ? dclone($ci->{data}) : $ci->{data};
815
816 return $res;
817};
818
819sub cfs_file_version {
820 my ($filename) = @_;
821
822 my $version;
823 my $infotag;
6e73d5c2 824 if ($filename =~ m!^nodes/[^/]+/(openvz|lxc|qemu-server)/(\d+)\.conf$!) {
f71eee41 825 my ($type, $vmid) = ($1, $2);
fe000966
DM		 826 if ($vmlist && $vmlist->{ids} && $vmlist->{ids}->{$vmid}) {
827 $version = $vmlist->{ids}->{$vmid}->{version};
828 }
f71eee41 829 $infotag = "/$type/";
fe000966
DM		 830 } else {
831 $infotag = $filename;
832 $version = $versions->{$filename};
833 }
834
835 my $info = $file_info->{$infotag} ||
836 die "unknown file type '$filename'\n";
837
838 return wantarray ? ($version, $info) : $version;
839}
840
841sub cfs_read_file {
842 my ($filename) = @_;
843
c53b111f 844 my ($version, $info) = cfs_file_version($filename);
fe000966
DM		 845 my $parser = $info->{parser};
846
847 return &$ccache_read($filename, $parser, $version);
848}
849
850sub cfs_write_file {
851 my ($filename, $data) = @_;
852
c53b111f 853 my ($version, $info) = cfs_file_version($filename);
fe000966
DM		 854
855 my $writer = $info->{writer} || die "no writer defined";
856
857 my $fsname = "/etc/pve/$filename";
858
859 my $raw = &$writer($fsname, $data);
860
861 if (my $ci = $ccache->{$filename}) {
862 $ci->{version} = undef;
863 }
864
865 PVE::Tools::file_set_contents($fsname, $raw);
866}
867
868my $cfs_lock = sub {
869 my ($lockid, $timeout, $code, @param) = @_;
870
00ea8428
TL		 871 my $prev_alarm = alarm(0); # suspend outer alarm early
872
fe000966 873 my $res;
bcdb1b3a 874 my $got_lock = 0;
fe000966
DM		 875
876 # this timeout is for aquire the lock
877 $timeout = 10 if !$timeout;
878
879 my $filename = "$lockdir/$lockid";
880
fe000966
DM		 881 eval {
882
883 mkdir $lockdir;
884
885 if (! -d $lockdir) {
6e13e20a 886 die "pve cluster filesystem not online.\n";
fe000966
DM		 887 }
888
6e13e20a 889 my $timeout_err = sub { die "got lock request timeout\n"; };
bcdb1b3a 890 local $SIG{ALRM} = $timeout_err;
fe000966 891
bcdb1b3a
TL		 892 while (1) {
893 alarm ($timeout);
894 $got_lock = mkdir($filename);
3fb23b5b 895 $timeout = alarm(0) - 1; # we'll sleep for 1s, see down below
bcdb1b3a
TL		 896
897 last if $got_lock;
898
3fb23b5b 899 $timeout_err->() if $timeout <= 0;
fe000966 900
02cd5e00 901 print STDERR "trying to aquire cfs lock '$lockid' ...\n";
bcdb1b3a
TL		 902 utime (0, 0, $filename); # cfs unlock request
903 sleep(1);
fe000966
DM		 904 }
905
906 # fixed command timeout: cfs locks have a timeout of 120
907 # using 60 gives us another 60 seconds to abort the task
fe000966 908 local $SIG{ALRM} = sub { die "got lock timeout - aborting command\n"; };
00ea8428 909 alarm(60);
fe000966 910
9c206b2b
DM		 911 cfs_update(); # make sure we read latest versions inside code()
912
fe000966
DM		 913 $res = &$code(@param);
914
915 alarm(0);
916 };
917
918 my $err = $@;
919
6e13e20a 920 $err = "no quorum!\n" if !$got_lock && !check_cfs_quorum(1);
fe000966 921
96857ee4 922 rmdir $filename if $got_lock; # if we held the lock always unlock again
fe000966 923
00ea8428
TL		 924 alarm($prev_alarm);
925
fe000966 926 if ($err) {
6e13e20a 927 $@ = "error with cfs lock '$lockid': $err";
fe000966
DM		 928 return undef;
929 }
930
931 $@ = undef;
932
933 return $res;
934};
935
936sub cfs_lock_file {
937 my ($filename, $timeout, $code, @param) = @_;
938
939 my $info = $observed->{$filename} || die "unknown file '$filename'";
940
941 my $lockid = "file-$filename";
942 $lockid =~ s/[.\/]/_/g;
943
944 &$cfs_lock($lockid, $timeout, $code, @param);
945}
946
947sub cfs_lock_storage {
948 my ($storeid, $timeout, $code, @param) = @_;
949
950 my $lockid = "storage-$storeid";
951
952 &$cfs_lock($lockid, $timeout, $code, @param);
953}
954
78897707
TL		 955sub cfs_lock_domain {
956 my ($domainname, $timeout, $code, @param) = @_;
957
958 my $lockid = "domain-$domainname";
959
960 &$cfs_lock($lockid, $timeout, $code, @param);
961}
962
4790f9f4
FG		 963sub cfs_lock_acme {
964 my ($account, $timeout, $code, @param) = @_;
965
966 my $lockid = "acme-$account";
967
968 &$cfs_lock($lockid, $timeout, $code, @param);
969}
970
fe000966
DM		 971my $log_levels = {
972 "emerg" => 0,
973 "alert" => 1,
974 "crit" => 2,
975 "critical" => 2,
976 "err" => 3,
977 "error" => 3,
978 "warn" => 4,
979 "warning" => 4,
980 "notice" => 5,
981 "info" => 6,
982 "debug" => 7,
983};
984
985sub log_msg {
986 my ($priority, $ident, $msg) = @_;
987
988 if (my $tmp = $log_levels->{$priority}) {
989 $priority = $tmp;
990 }
991
992 die "need numeric log priority" if $priority !~ /^\d+$/;
993
994 my $tag = PVE::SafeSyslog::tag();
995
996 $msg = "empty message" if !$msg;
997
998 $ident = "" if !$ident;
8f2d54ff 999 $ident = encode("ascii", $ident,
fe000966
DM		 1000 sub { sprintf "\\u%04x", shift });
1001
8f2d54ff 1002 my $ascii = encode("ascii", $msg, sub { sprintf "\\u%04x", shift });
fe000966
DM		 1003
1004 if ($ident) {
1005 syslog($priority, "<%s> %s", $ident, $ascii);
1006 } else {
1007 syslog($priority, "%s", $ascii);
1008 }
1009
1010 eval { &$ipcc_log($priority, $ident, $tag, $ascii); };
1011
1012 syslog("err", "writing cluster log failed: $@") if $@;
1013}
1014
9d76a1bb
DM		 1015sub check_vmid_unused {
1016 my ($vmid, $noerr) = @_;
c53b111f 1017
9d76a1bb
DM		 1018 my $vmlist = get_vmlist();
1019
1020 my $d = $vmlist->{ids}->{$vmid};
1021 return 1 if !defined($d);
c53b111f 1022
9d76a1bb
DM		 1023 return undef if $noerr;
1024
4f66b109 1025 my $vmtypestr = $d->{type} eq 'qemu' ? 'VM' : 'CT';
e75ccbee 1026 die "$vmtypestr $vmid already exists on node '$d->{node}'\n";
9d76a1bb
DM		 1027}
1028
65ff467f
DM		 1029sub check_node_exists {
1030 my ($nodename, $noerr) = @_;
1031
1032 my $nodelist = $clinfo->{nodelist};
1033 return 1 if $nodelist && $nodelist->{$nodename};
1034
1035 return undef if $noerr;
1036
1037 die "no such cluster node '$nodename'\n";
1038}
1039
fe000966
DM		 1040# this is also used to get the IP of the local node
1041sub remote_node_ip {
1042 my ($nodename, $noerr) = @_;
1043
1044 my $nodelist = $clinfo->{nodelist};
1045 if ($nodelist && $nodelist->{$nodename}) {
1046 if (my $ip = $nodelist->{$nodename}->{ip}) {
fc31f517
WB		 1047 return $ip if !wantarray;
1048 my $family = $nodelist->{$nodename}->{address_family};
1049 if (!$family) {
1050 $nodelist->{$nodename}->{address_family} =
1051 $family =
1052 PVE::Tools::get_host_address_family($ip);
1053 }
14830160 1054 return wantarray ? ($ip, $family) : $ip;
fe000966
DM		 1055 }
1056 }
1057
1058 # fallback: try to get IP by other means
e064c9b0 1059 return PVE::Network::get_ip_from_hostname($nodename, $noerr);
fe000966
DM		 1060}
1061
54d487bf
TL		 1062sub get_local_migration_ip {
1063 my ($migration_network, $noerr) = @_;
1064
1065 my $cidr = $migration_network;
1066
1067 if (!defined($cidr)) {
1068 my $dc_conf = cfs_read_file('datacenter.cfg');
1069 $cidr = $dc_conf->{migration}->{network}
1070 if defined($dc_conf->{migration}->{network});
1071 }
1072
1073 if (defined($cidr)) {
1074 my $ips = PVE::Network::get_local_ip_from_cidr($cidr);
1075
cb8c3bc6
TL		 1076 die "could not get migration ip: no IP address configured on local " .
1077 "node for network '$cidr'\n" if !$noerr && (scalar(@$ips) == 0);
54d487bf 1078
cb8c3bc6
TL		 1079 die "could not get migration ip: multiple IP address configured for " .
1080 "network '$cidr'\n" if !$noerr && (scalar(@$ips) > 1);
54d487bf
TL		 1081
1082 return @$ips[0];
1083 }
1084
1085 return undef;
1086};
1087
fe000966
DM		 1088# ssh related utility functions
1089
1090sub ssh_merge_keys {
1091 # remove duplicate keys in $sshauthkeys
1092 # ssh-copy-id simply add keys, so the file can grow to large
1093
1094 my $data = '';
1095 if (-f $sshauthkeys) {
1096 $data = PVE::Tools::file_get_contents($sshauthkeys, 128*1024);
1097 chomp($data);
1098 }
1099
6056578e
DM		 1100 my $found_backup;
1101 if (-f $rootsshauthkeysbackup) {
404343d7 1102 $data .= "\n";
6056578e
DM		 1103 $data .= PVE::Tools::file_get_contents($rootsshauthkeysbackup, 128*1024);
1104 chomp($data);
1105 $found_backup = 1;
1106 }
1107
fe000966
DM		 1108 # always add ourself
1109 if (-f $ssh_rsa_id) {
1110 my $pub = PVE::Tools::file_get_contents($ssh_rsa_id);
1111 chomp($pub);
1112 $data .= "\n$pub\n";
1113 }
1114
1115 my $newdata = "";
1116 my $vhash = {};
2055b0a9
DM		 1117 my @lines = split(/\n/, $data);
1118 foreach my $line (@lines) {
7eb37d8d
SP		 1119 if ($line !~ /^#/ && $line =~ m/(^|\s)ssh-(rsa|dsa)\s+(\S+)\s+\S+$/) {
1120 next if $vhash->{$3}++;
fe000966 1121 }
2055b0a9 1122 $newdata .= "$line\n";
fe000966 1123 }
fe000966
DM		 1124
1125 PVE::Tools::file_set_contents($sshauthkeys, $newdata, 0600);
6056578e
DM		 1126
1127 if ($found_backup && -l $rootsshauthkeys) {
1128 # everything went well, so we can remove the backup
1129 unlink $rootsshauthkeysbackup;
1130 }
fe000966
DM		 1131}
1132
ac50b36d 1133sub setup_sshd_config {
99fc0847 1134 my () = @_;
ac50b36d
DM		 1135
1136 my $conf = PVE::Tools::file_get_contents($sshd_config_fn);
c53b111f 1137
ac50b36d
DM		 1138 return if $conf =~ m/^PermitRootLogin\s+yes\s*$/m;
1139
1140 if ($conf !~ s/^#?PermitRootLogin.*$/PermitRootLogin yes/m) {
1141 chomp $conf;
1142 $conf .= "\nPermitRootLogin yes\n";
c53b111f 1143 }
ac50b36d
DM		 1144
1145 PVE::Tools::file_set_contents($sshd_config_fn, $conf);
1146
99fc0847 1147 PVE::Tools::run_command(['systemctl', 'reload-or-restart', 'sshd']);
ac50b36d
DM		 1148}
1149
f666cdde
SP		 1150sub setup_rootsshconfig {
1151
39df71df
DM		 1152 # create ssh key if it does not exist
1153 if (! -f $ssh_rsa_id) {
1154 mkdir '/root/.ssh/';
1155 system ("echo|ssh-keygen -t rsa -N '' -b 2048 -f ${ssh_rsa_id_priv}");
1156 }
1157
f666cdde
SP		 1158 # create ssh config if it does not exist
1159 if (! -f $rootsshconfig) {
9aabc24b
DM		 1160 mkdir '/root/.ssh';
1161 if (my $fh = IO::File->new($rootsshconfig, O_CREAT|O_WRONLY|O_EXCL, 0640)) {
61fa3c34
FG		 1162 # this is the default ciphers list from Debian's OpenSSH package (OpenSSH_7.4p1 Debian-10, OpenSSL 1.0.2k 26 Jan 2017)
1163 # changed order to put AES before Chacha20 (most hardware has AESNI)
4833829a 1164 print $fh "Ciphers aes128-ctr,aes192-ctr,aes256-ctr,aes128-gcm\@openssh.com,aes256-gcm\@openssh.com,chacha20-poly1305\@openssh.com\n";
f666cdde
SP		 1165 close($fh);
1166 }
1167 }
1168}
1169
fe000966
DM		 1170sub setup_ssh_keys {
1171
fe000966
DM		 1172 mkdir $authdir;
1173
6056578e
DM		 1174 my $import_ok;
1175
fe000966 1176 if (! -f $sshauthkeys) {
6056578e
DM		 1177 my $old;
1178 if (-f $rootsshauthkeys) {
1179 $old = PVE::Tools::file_get_contents($rootsshauthkeys, 128*1024);
1180 }
fe000966 1181 if (my $fh = IO::File->new ($sshauthkeys, O_CREAT|O_WRONLY|O_EXCL, 0400)) {
6056578e 1182 PVE::Tools::safe_print($sshauthkeys, $fh, $old) if $old;
fe000966 1183 close($fh);
6056578e 1184 $import_ok = 1;
fe000966
DM		 1185 }
1186 }
1187
c53b111f 1188 warn "can't create shared ssh key database '$sshauthkeys'\n"
fe000966
DM		 1189 if ! -f $sshauthkeys;
1190
404343d7 1191 if (-f $rootsshauthkeys && ! -l $rootsshauthkeys) {
6056578e
DM		 1192 if (!rename($rootsshauthkeys , $rootsshauthkeysbackup)) {
1193 warn "rename $rootsshauthkeys failed - $!\n";
1194 }
fe000966
DM		 1195 }
1196
1197 if (! -l $rootsshauthkeys) {
1198 symlink $sshauthkeys, $rootsshauthkeys;
1199 }
fe000966 1200
6056578e
DM		 1201 if (! -l $rootsshauthkeys) {
1202 warn "can't create symlink for ssh keys '$rootsshauthkeys' -> '$sshauthkeys'\n";
1203 } else {
1204 unlink $rootsshauthkeysbackup if $import_ok;
1205 }
fe000966
DM		 1206}
1207
1208sub ssh_unmerge_known_hosts {
1209 return if ! -l $sshglobalknownhosts;
1210
1211 my $old = '';
1212 $old = PVE::Tools::file_get_contents($sshknownhosts, 128*1024)
1213 if -f $sshknownhosts;
1214
1215 PVE::Tools::file_set_contents($sshglobalknownhosts, $old);
1216}
1217
1218sub ssh_merge_known_hosts {
1219 my ($nodename, $ip_address, $createLink) = @_;
1220
1221 die "no node name specified" if !$nodename;
1222 die "no ip address specified" if !$ip_address;
c53b111f 1223
e4f92a20
TL		 1224 # ssh lowercases hostnames (aliases) before comparision, so we need too
1225 $nodename = lc($nodename);
1226 $ip_address = lc($ip_address);
1227
fe000966
DM		 1228 mkdir $authdir;
1229
1230 if (! -f $sshknownhosts) {
1231 if (my $fh = IO::File->new($sshknownhosts, O_CREAT|O_WRONLY|O_EXCL, 0600)) {
1232 close($fh);
1233 }
1234 }
1235
c53b111f
DM		 1236 my $old = PVE::Tools::file_get_contents($sshknownhosts, 128*1024);
1237
fe000966 1238 my $new = '';
c53b111f 1239
fe000966
DM		 1240 if ((! -l $sshglobalknownhosts) && (-f $sshglobalknownhosts)) {
1241 $new = PVE::Tools::file_get_contents($sshglobalknownhosts, 128*1024);
1242 }
1243
1244 my $hostkey = PVE::Tools::file_get_contents($ssh_host_rsa_id);
1d182ad3
DM		 1245 # Note: file sometimes containe emty lines at start, so we use multiline match
1246 die "can't parse $ssh_host_rsa_id" if $hostkey !~ m/^(ssh-rsa\s\S+)(\s.*)?$/m;
fe000966
DM		 1247 $hostkey = $1;
1248
1249 my $data = '';
1250 my $vhash = {};
1251
1252 my $found_nodename;
1253 my $found_local_ip;
1254
1255 my $merge_line = sub {
1256 my ($line, $all) = @_;
1257
53922f63
TL		 1258 return if $line =~ m/^\s*$/; # skip empty lines
1259 return if $line =~ m/^#/; # skip comments
1260
fe000966
DM		 1261 if ($line =~ m/^(\S+)\s(ssh-rsa\s\S+)(\s.*)?$/) {
1262 my $key = $1;
1263 my $rsakey = $2;
1264 if (!$vhash->{$key}) {
1265 $vhash->{$key} = 1;
1266 if ($key =~ m/\|1\|([^\|\s]+)\|([^\|\s]+)$/) {
1267 my $salt = decode_base64($1);
1268 my $digest = $2;
1269 my $hmac = Digest::HMAC_SHA1->new($salt);
1270 $hmac->add($nodename);
1271 my $hd = $hmac->b64digest . '=';
1272 if ($digest eq $hd) {
1273 if ($rsakey eq $hostkey) {
1274 $found_nodename = 1;
1275 $data .= $line;
1276 }
1277 return;
1278 }
1279 $hmac = Digest::HMAC_SHA1->new($salt);
1280 $hmac->add($ip_address);
1281 $hd = $hmac->b64digest . '=';
1282 if ($digest eq $hd) {
1283 if ($rsakey eq $hostkey) {
1284 $found_local_ip = 1;
1285 $data .= $line;
1286 }
1287 return;
1288 }
e4f92a20
TL		 1289 } else {
1290 $key = lc($key); # avoid duplicate entries, ssh compares lowercased
1291 if ($key eq $ip_address) {
fe129500 1292 $found_local_ip = 1 if $rsakey eq $hostkey;
e4f92a20 1293 } elsif ($key eq $nodename) {
fe129500 1294 $found_nodename = 1 if $rsakey eq $hostkey;
e4f92a20 1295 }
fe000966
DM		 1296 }
1297 $data .= $line;
1298 }
1299 } elsif ($all) {
1300 $data .= $line;
1301 }
1302 };
1303
1304 while ($old && $old =~ s/^((.*?)(\n|$))//) {
1305 my $line = "$2\n";
fe000966
DM		 1306 &$merge_line($line, 1);
1307 }
1308
1309 while ($new && $new =~ s/^((.*?)(\n|$))//) {
1310 my $line = "$2\n";
fe000966
DM		 1311 &$merge_line($line);
1312 }
1313
53922f63
TL		 1314 # add our own key if not already there
1315 $data .= "$nodename $hostkey\n" if !$found_nodename;
1316 $data .= "$ip_address $hostkey\n" if !$found_local_ip;
fe000966
DM		 1317
1318 PVE::Tools::file_set_contents($sshknownhosts, $data);
1319
1320 return if !$createLink;
1321
1322 unlink $sshglobalknownhosts;
1323 symlink $sshknownhosts, $sshglobalknownhosts;
c53b111f
DM		 1324
1325 warn "can't create symlink for ssh known hosts '$sshglobalknownhosts' -> '$sshknownhosts'\n"
fe000966
DM		 1326 if ! -l $sshglobalknownhosts;
1327
1328}
1329
bba12ad7
TL		 1330my $migration_format = {
1331 type => {
1332 default_key => 1,
1333 type => 'string',
1334 enum => ['secure', 'insecure'],
1335 description => "Migration traffic is encrypted using an SSH tunnel by " .
1336 "default. On secure, completely private networks this can be " .
1337 "disabled to increase performance.",
1338 default => 'secure',
bba12ad7
TL		 1339 },
1340 network => {
1341 optional => 1,
1342 type => 'string', format => 'CIDR',
1343 format_description => 'CIDR',
1344 description => "CIDR of the (sub) network that is used for migration."
1345 },
1346};
1347
fe000966
DM		 1348my $datacenter_schema = {
1349 type => "object",
1350 additionalProperties => 0,
1351 properties => {
1352 keyboard => {
1353 optional => 1,
1354 type => 'string',
1355 description => "Default keybord layout for vnc server.",
c59334cb 1356 enum => PVE::Tools::kvmkeymaplist(),
fe000966
DM		 1357 },
1358 language => {
1359 optional => 1,
1360 type => 'string',
1361 description => "Default GUI language.",
1362 enum => [ 'en', 'de' ],
1363 },
1364 http_proxy => {
1365 optional => 1,
1366 type => 'string',
1367 description => "Specify external http proxy which is used for downloads (example: 'http://username:password\@host:port/')",
1368 pattern => "http://.*",
1369 },
a9323ef0
SP		 1370 migration_unsecure => {
1371 optional => 1,
1372 type => 'boolean',
bba12ad7
TL		 1373 description => "Migration is secure using SSH tunnel by default. " .
1374 "For secure private networks you can disable it to speed up " .
1375 "migration. Deprecated, use the 'migration' property instead!",
1376 },
1377 migration => {
1378 optional => 1,
1379 type => 'string', format => $migration_format,
1380 description => "For cluster wide migration settings.",
a9323ef0 1381 },
dce47328
DM		 1382 console => {
1383 optional => 1,
1384 type => 'string',
a9d03528 1385 description => "Select the default Console viewer. You can either use the builtin java applet (VNC; deprecated and maps to html5), an external virt-viewer comtatible application (SPICE), an HTML5 based vnc viewer (noVNC), or an HTML5 based console client (xtermjs). If the selected viewer is not available (e.g. SPICE not activated for the VM), the fallback is noVNC.",
3e19544b 1386 enum => ['applet', 'vv', 'html5', 'xtermjs'],
dce47328 1387 },
8548bd87
SGE		 1388 email_from => {
1389 optional => 1,
1390 type => 'string',
a05baf53 1391 format => 'email-opt',
8548bd87
SGE		 1392 description => "Specify email address to send notification from (default is root@\$hostname)",
1393 },
66c2b1e9
TL		 1394 max_workers => {
1395 optional => 1,
1396 type => 'integer',
1397 minimum => 1,
1398 description => "Defines how many workers (per node) are maximal started ".
1399 " on actions like 'stopall VMs' or task from the ha-manager.",
1400 },
8d762bd6
TL		 1401 fencing => {
1402 optional => 1,
1403 type => 'string',
1404 default => 'watchdog',
1405 enum => [ 'watchdog', 'hardware', 'both' ],
1406 description => "Set the fencing mode of the HA cluster. Hardware mode " .
1407 "needs a valid configuration of fence devices in /etc/pve/ha/fence.cfg." .
bd0c003a
FG		 1408 " With both all two modes are used." .
1409 "\n\nWARNING: 'hardware' and 'both' are EXPERIMENTAL & WIP",
8d762bd6 1410 },
329da63d
WB		 1411 mac_prefix => {
1412 optional => 1,
1413 type => 'string',
1414 pattern => qr/[a-f0-9]{2}(?::[a-f0-9]{2}){0,2}:?/i,
1415 description => 'Prefix for autogenerated MAC addresses.',
1416 },
bcbb9f1d 1417 bwlimit => PVE::JSONSchema::get_standard_option('bwlimit'),
fe000966
DM		 1418 },
1419};
1420
1421# make schema accessible from outside (for documentation)
1422sub get_datacenter_schema { return $datacenter_schema };
1423
1424sub parse_datacenter_config {
1425 my ($filename, $raw) = @_;
1426
bba12ad7
TL		 1427 my $res = PVE::JSONSchema::parse_config($datacenter_schema, $filename, $raw // '');
1428
1429 if (my $migration = $res->{migration}) {
1430 $res->{migration} = PVE::JSONSchema::parse_property_string($migration_format, $migration);
1431 }
1432
1433 # for backwards compatibility only, new migration property has precedence
1434 if (defined($res->{migration_unsecure})) {
1435 if (defined($res->{migration}->{type})) {
1436 warn "deprecated setting 'migration_unsecure' and new 'migration: type' " .
1437 "set at same time! Ignore 'migration_unsecure'\n";
1438 } else {
1439 $res->{migration}->{type} = ($res->{migration_unsecure}) ? 'insecure' : 'secure';
1440 }
1441 }
1442
0949afa7
DC		 1443 # for backwards compatibility only, applet maps to html5
1444 if (defined($res->{console}) && $res->{console} eq 'applet') {
1445 $res->{console} = 'html5';
1446 }
1447
bba12ad7 1448 return $res;
fe000966
DM		 1449}
1450
1451sub write_datacenter_config {
1452 my ($filename, $cfg) = @_;
bba12ad7
TL		 1453
1454 # map deprecated setting to new one
8f706517 1455 if (defined($cfg->{migration_unsecure}) && !defined($cfg->{migration})) {
bba12ad7
TL		 1456 my $migration_unsecure = delete $cfg->{migration_unsecure};
1457 $cfg->{migration}->{type} = ($migration_unsecure) ? 'insecure' : 'secure';
1458 }
1459
0949afa7
DC		 1460 # map deprecated applet setting to html5
1461 if (defined($cfg->{console}) && $cfg->{console} eq 'applet') {
1462 $cfg->{console} = 'html5';
1463 }
1464
08115244
TL		 1465 if (my $migration = $cfg->{migration}) {
1466 $cfg->{migration} = PVE::JSONSchema::print_property_string($migration, $migration_format);
1467 }
1468
fe000966
DM		 1469 return PVE::JSONSchema::dump_config($datacenter_schema, $filename, $cfg);
1470}
1471
c53b111f
DM		 1472cfs_register_file('datacenter.cfg',
1473 \&parse_datacenter_config,
fe000966 1474 \&write_datacenter_config);
ec48ec22 1475
26784563
DM		 1476# X509 Certificate cache helper
1477
1478my $cert_cache_nodes = {};
1479my $cert_cache_timestamp = time();
1480my $cert_cache_fingerprints = {};
1481
1482sub update_cert_cache {
1483 my ($update_node, $clear) = @_;
1484
1485 syslog('info', "Clearing outdated entries from certificate cache")
1486 if $clear;
1487
1488 $cert_cache_timestamp = time() if !defined($update_node);
1489
1490 my $node_list = defined($update_node) ?
1491 [ $update_node ] : [ keys %$cert_cache_nodes ];
1492
1493 foreach my $node (@$node_list) {
1494 my $clear_old = sub {
1495 if (my $old_fp = $cert_cache_nodes->{$node}) {
1496 # distrust old fingerprint
1497 delete $cert_cache_fingerprints->{$old_fp};
1498 # ensure reload on next proxied request
1499 delete $cert_cache_nodes->{$node};
1500 }
1501 };
1502
1904862a
TL		 1503 my $fp = eval { get_node_fingerprint($node) };
1504 if (my $err = $@) {
1505 warn "$err\n";
26784563
DM		 1506 &$clear_old() if $clear;
1507 next;
1508 }
1509
1510 my $old_fp = $cert_cache_nodes->{$node};
1511 $cert_cache_fingerprints->{$fp} = 1;
1512 $cert_cache_nodes->{$node} = $fp;
1513
1514 if (defined($old_fp) && $fp ne $old_fp) {
1515 delete $cert_cache_fingerprints->{$old_fp};
1516 }
1517 }
1518}
1519
ab224148
DM		 1520# load and cache cert fingerprint once
1521sub initialize_cert_cache {
1522 my ($node) = @_;
1523
1524 update_cert_cache($node)
1525 if defined($node) && !defined($cert_cache_nodes->{$node});
1526}
1527
1904862a
TL		 1528sub read_ssl_cert_fingerprint {
1529 my ($cert_path) = @_;
1530
2a5f4bed
FG		 1531 my $bio = Net::SSLeay::BIO_new_file($cert_path, 'r')
1532 or die "unable to read '$cert_path' - $!\n";
1533
1534 my $cert = Net::SSLeay::PEM_read_bio_X509($bio);
1535 if (!$cert) {
1904862a 1536 Net::SSLeay::BIO_free($bio);
2a5f4bed
FG		 1537 die "unable to read certificate from '$cert_path'\n";
1538 }
1539
1540 my $fp = Net::SSLeay::X509_get_fingerprint($cert, 'sha256');
1541 Net::SSLeay::X509_free($cert);
1904862a 1542
1904862a
TL		 1543 die "unable to get fingerprint for '$cert_path' - got empty value\n"
1544 if !defined($fp) || $fp eq '';
1545
1546 return $fp;
1547}
1548
1549sub get_node_fingerprint {
1550 my ($node) = @_;
1551
1552 my $cert_path = "/etc/pve/nodes/$node/pve-ssl.pem";
1553 my $custom_cert_path = "/etc/pve/nodes/$node/pveproxy-ssl.pem";
1554
1555 $cert_path = $custom_cert_path if -f $custom_cert_path;
1556
1557 return read_ssl_cert_fingerprint($cert_path);
1558}
1559
1560
26784563
DM		 1561sub check_cert_fingerprint {
1562 my ($cert) = @_;
1563
1564 # clear cache every 30 minutes at least
1565 update_cert_cache(undef, 1) if time() - $cert_cache_timestamp >= 60*30;
1566
1567 # get fingerprint of server certificate
2a5f4bed
FG		 1568 my $fp = Net::SSLeay::X509_get_fingerprint($cert, 'sha256');
1569 return 0 if !defined($fp) || $fp eq ''; # error
26784563
DM		 1570
1571 my $check = sub {
1572 for my $expected (keys %$cert_cache_fingerprints) {
1573 return 1 if $fp eq $expected;
1574 }
1575 return 0;
1576 };
1577
1578 return 1 if &$check();
1579
1580 # clear cache and retry at most once every minute
1581 if (time() - $cert_cache_timestamp >= 60) {
1582 syslog ('info', "Could not verify remote node certificate '$fp' with list of pinned certificates, refreshing cache");
1583 update_cert_cache();
1584 return &$check();
1585 }
1586
1587 return 0;
1588}
1589
15df58e6
DM		 1590# bash completion helpers
1591
1592sub complete_next_vmid {
1593
1594 my $vmlist = get_vmlist() || {};
1595 my $idlist = $vmlist->{ids} || {};
1596
1597 for (my $i = 100; $i < 10000; $i++) {
1598 return [$i] if !defined($idlist->{$i});
1599 }
1600
1601 return [];
1602}
1603
87515b25
DM		 1604sub complete_vmid {
1605
1606 my $vmlist = get_vmlist();
1607 my $ids = $vmlist->{ids} || {};
1608
1609 return [ keys %$ids ];
1610}
1611
15df58e6
DM		 1612sub complete_local_vmid {
1613
1614 my $vmlist = get_vmlist();
1615 my $ids = $vmlist->{ids} || {};
1616
1617 my $nodename = PVE::INotify::nodename();
1618
1619 my $res = [];
1620 foreach my $vmid (keys %$ids) {
1621 my $d = $ids->{$vmid};
1622 next if !$d->{node} || $d->{node} ne $nodename;
1623 push @$res, $vmid;
1624 }
1625
1626 return $res;
1627}
1628
4dd189df
DM		 1629sub complete_migration_target {
1630
1631 my $res = [];
1632
1633 my $nodename = PVE::INotify::nodename();
1634
1635 my $nodelist = get_nodelist();
1636 foreach my $node (@$nodelist) {
1637 next if $node eq $nodename;
1638 push @$res, $node;
1639 }
1640
1641 return $res;
1642}
1643
aabeedfb
WB		 1644sub get_ssh_info {
1645 my ($node, $network_cidr) = @_;
1646
1647 my $ip;
1648 if (defined($network_cidr)) {
1649 # Use mtunnel via to get the remote node's ip inside $network_cidr.
1650 # This goes over the regular network (iow. uses get_ssh_info() with
1651 # $network_cidr undefined.
1652 # FIXME: Use the REST API client for this after creating an API entry
1653 # for get_migration_ip.
1654 my $default_remote = get_ssh_info($node, undef);
1655 my $default_ssh = ssh_info_to_command($default_remote);
1656 my $cmd =[@$default_ssh, 'pvecm', 'mtunnel',
1657 '-migration_network', $network_cidr,
1658 '-get_migration_ip'
1659 ];
1660 PVE::Tools::run_command($cmd, outfunc => sub {
1661 my ($line) = @_;
1662 chomp $line;
1663 die "internal error: unexpected output from mtunnel\n"
1664 if defined($ip);
1665 if ($line =~ /^ip: '(.*)'$/) {
1666 $ip = $1;
1667 } else {
1668 die "internal error: bad output from mtunnel\n"
1669 if defined($ip);
1670 }
1671 });
1672 die "failed to get ip for node '$node' in network '$network_cidr'\n"
1673 if !defined($ip);
1674 } else {
1675 $ip = remote_node_ip($node);
1676 }
1677
1678 return {
1679 ip => $ip,
d7d4c5b8
WB		 1680 name => $node,
1681 network => $network_cidr,
aabeedfb
WB		 1682 };
1683}
1684
1f1aef8b 1685sub ssh_info_to_command_base {
aabeedfb
WB		 1686 my ($info, @extra_options) = @_;
1687 return [
1688 '/usr/bin/ssh',
8529e536 1689 '-e', 'none',
aabeedfb
WB		 1690 '-o', 'BatchMode=yes',
1691 '-o', 'HostKeyAlias='.$info->{name},
1f1aef8b 1692 @extra_options
aabeedfb
WB		 1693 ];
1694}
1695
1f1aef8b
WB		 1696sub ssh_info_to_command {
1697 my ($info, @extra_options) = @_;
1698 my $cmd = ssh_info_to_command_base($info, @extra_options);
1699 push @$cmd, "root\@$info->{ip}";
1700 return $cmd;
1701}
1702
68491de3
TL		 1703sub assert_joinable {
1704 my ($ring0_addr, $ring1_addr, $force) = @_;
1705
42505be3
TL		 1706 my $errors = '';
1707 my $error = sub { $errors .= "* $_[0]\n"; };
68491de3 1708
42505be3
TL		 1709 if (-f $authfile) {
1710 $error->("authentication key '$authfile' already exists");
1711 }
68491de3 1712
42505be3
TL		 1713 if (-f $clusterconf) {
1714 $error->("cluster config '$clusterconf' already exists");
1715 }
68491de3 1716
42505be3
TL		 1717 my $vmlist = get_vmlist();
1718 if ($vmlist && $vmlist->{ids} && scalar(keys %{$vmlist->{ids}})) {
1719 $error->("this host already contains virtual guests");
1720 }
68491de3 1721
8fdd87f9 1722 if (run_command(['corosync-quorumtool', '-l'], noerr => 1, quiet => 1) == 0) {
42505be3 1723 $error->("corosync is already running, is this node already in a cluster?!");
68491de3
TL		 1724 }
1725
1726 # check if corosync ring IPs are configured on the current nodes interfaces
1727 my $check_ip = sub {
1728 my $ip = shift // return;
1729 if (!PVE::JSONSchema::pve_verify_ip($ip, 1)) {
1730 my $host = $ip;
1731 eval { $ip = PVE::Network::get_ip_from_hostname($host); };
1732 if ($@) {
42505be3 1733 $error->("cannot use '$host': $@\n") ;
68491de3
TL		 1734 return;
1735 }
1736 }
1737
1738 my $cidr = (Net::IP::ip_is_ipv6($ip)) ? "$ip/128" : "$ip/32";
1739 my $configured_ips = PVE::Network::get_local_ip_from_cidr($cidr);
1740
1741 $error->("cannot use IP '$ip', it must be configured exactly once on local node!\n")
1742 if (scalar(@$configured_ips) != 1);
1743 };
1744
1745 $check_ip->($ring0_addr);
1746 $check_ip->($ring1_addr);
1747
42505be3
TL		 1748 if ($errors) {
1749 warn "detected the following error(s):\n$errors";
1750 die "Check if node may join a cluster failed!\n" if !$force;
1751 }
68491de3
TL		 1752}
1753
a9965358 1754# NOTE: filesystem must be offline here, no DB changes allowed
e02bdaae
TL		 1755my $backup_cfs_database = sub {
1756 my ($dbfile) = @_;
1757
1758 mkdir $dbbackupdir;
1759
e02bdaae 1760 my $ctime = time();
a9965358 1761 my $backup_fn = "$dbbackupdir/config-$ctime.sql.gz";
e02bdaae 1762
a9965358 1763 print "backup old database to '$backup_fn'\n";
e02bdaae 1764
a9965358
TL		 1765 my $cmd = [ ['sqlite3', $dbfile, '.dump'], ['gzip', '-', \ ">${backup_fn}"] ];
1766 run_command($cmd, 'errmsg' => "cannot backup old database\n");
e02bdaae 1767
a9965358
TL		 1768 my $maxfiles = 10; # purge older backup
1769 my $backups = [ sort { $b cmp $a } <$dbbackupdir/config-*.sql.gz> ];
1770
1771 if ((my $count = scalar(@$backups)) > $maxfiles) {
1772 foreach my $f (@$backups[$maxfiles..$count-1]) {
ee0daa88 1773 next if $f !~ m/^(\S+)$/; # untaint
a9965358
TL		 1774 print "delete old backup '$1'\n";
1775 unlink $1;
1776 }
e02bdaae
TL		 1777 }
1778};
1779
6ed49eb1
TL		 1780sub join {
1781 my ($param) = @_;
1782
1783 my $nodename = PVE::INotify::nodename();
1784
1785 setup_sshd_config();
1786 setup_rootsshconfig();
1787 setup_ssh_keys();
1788
1789 # check if we can join with the given parameters and current node state
1790 my ($ring0_addr, $ring1_addr) = $param->@{'ring0_addr', 'ring1_addr'};
1791 assert_joinable($ring0_addr, $ring1_addr, $param->{force});
1792
1793 # make sure known_hosts is on local filesystem
1794 ssh_unmerge_known_hosts();
1795
1796 my $host = $param->{hostname};
072ba2e0 1797 my $local_ip_address = remote_node_ip($nodename);
6ed49eb1
TL		 1798
1799 my $conn_args = {
1800 username => 'root@pam',
1801 password => $param->{password},
1802 cookie_name => 'PVEAuthCookie',
1803 protocol => 'https',
1804 host => $host,
1805 port => 8006,
1806 };
1807
1808 if (my $fp = $param->{fingerprint}) {
1809 $conn_args->{cached_fingerprints} = { uc($fp) => 1 };
1810 } else {
1811 # API schema ensures that we can only get here from CLI handler
1812 $conn_args->{manual_verification} = 1;
1813 }
1814
1815 print "Etablishing API connection with host '$host'\n";
1816
1817 my $conn = PVE::APIClient::LWP->new(%$conn_args);
1818 $conn->login();
1819
1820 # login raises an exception on failure, so if we get here we're good
1821 print "Login succeeded.\n";
1822
1823 my $args = {};
1824 $args->{force} = $param->{force} if defined($param->{force});
1825 $args->{nodeid} = $param->{nodeid} if $param->{nodeid};
1826 $args->{votes} = $param->{votes} if defined($param->{votes});
072ba2e0 1827 $args->{ring0_addr} = $ring0_addr // $local_ip_address;
6ed49eb1
TL		 1828 $args->{ring1_addr} = $ring1_addr if defined($ring1_addr);
1829
1830 print "Request addition of this node\n";
1831 my $res = $conn->post("/cluster/config/nodes/$nodename", $args);
1832
1833 print "Join request OK, finishing setup locally\n";
1834
1835 # added successfuly - now prepare local node
1836 finish_join($nodename, $res->{corosync_conf}, $res->{corosync_authkey});
1837}
1838
e02bdaae
TL		 1839sub finish_join {
1840 my ($nodename, $corosync_conf, $corosync_authkey) = @_;
1841
1842 mkdir "$localclusterdir";
1843 PVE::Tools::file_set_contents($authfile, $corosync_authkey);
1844 PVE::Tools::file_set_contents($localclusterconf, $corosync_conf);
1845
1846 print "stopping pve-cluster service\n";
8fdd87f9
TL		 1847 my $cmd = ['systemctl', 'stop', 'pve-cluster'];
1848 run_command($cmd, errmsg => "can't stop pve-cluster service");
e02bdaae
TL		 1849
1850 $backup_cfs_database->($dbfile);
1851 unlink $dbfile;
1852
8fdd87f9
TL		 1853 $cmd = ['systemctl', 'start', 'corosync', 'pve-cluster'];
1854 run_command($cmd, errmsg => "starting pve-cluster failed");
e02bdaae
TL		 1855
1856 # wait for quorum
1857 my $printqmsg = 1;
1858 while (!check_cfs_quorum(1)) {
1859 if ($printqmsg) {
1860 print "waiting for quorum...";
1861 STDOUT->flush();
1862 $printqmsg = 0;
1863 }
1864 sleep(1);
1865 }
1866 print "OK\n" if !$printqmsg;
1867
8f64504c 1868 updatecerts_and_ssh(1);
e02bdaae 1869
8f64504c 1870 print "generated new node certificate, restart pveproxy and pvedaemon services\n";
8fdd87f9 1871 run_command(['systemctl', 'reload-or-restart', 'pvedaemon', 'pveproxy']);
e02bdaae
TL		 1872
1873 print "successfully added node '$nodename' to cluster.\n";
1874}
1875
8f64504c
TL		 1876sub updatecerts_and_ssh {
1877 my ($force_new_cert, $silent) = @_;
1878
1879 my $p = sub { print "$_[0]\n" if !$silent };
1880
1881 setup_rootsshconfig();
1882
1883 gen_pve_vzdump_symlink();
1884
1885 if (!check_cfs_quorum(1)) {
1886 return undef if $silent;
1887 die "no quorum - unable to update files\n";
1888 }
1889
1890 setup_ssh_keys();
1891
1892 my $nodename = PVE::INotify::nodename();
1893 my $local_ip_address = remote_node_ip($nodename);
1894
1895 $p->("(re)generate node files");
1896 $p->("generate new node certificate") if $force_new_cert;
1897 gen_pve_node_files($nodename, $local_ip_address, $force_new_cert);
1898
1899 $p->("merge authorized SSH keys and known hosts");
1900 ssh_merge_keys();
f3956026 1901 ssh_merge_known_hosts($nodename, $local_ip_address, 1);
8f64504c
TL		 1902 gen_pve_vzdump_files();
1903}
e02bdaae 1904
ac68281b 19051;
Cluster FS and Tools