]> git.proxmox.com Git - pve-storage.git/blob - PVE/Storage.pm
projects / pve-storage.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
storage migration: insecure: improve logging
[pve-storage.git] / PVE / Storage.pm
1 package PVE::Storage;
2
3 use strict;
4 use warnings;
5 use Data::Dumper;
6
7 use POSIX;
8 use IO::Select;
9 use IO::File;
10 use IO::Socket::IP;
11 use IPC::Open3;
12 use File::Basename;
13 use File::Path;
14 use Cwd 'abs_path';
15 use Socket;
16 use Time::Local qw(timelocal);
17
18 use PVE::Tools qw(run_command file_read_firstline dir_glob_foreach $IPV6RE);
19 use PVE::Cluster qw(cfs_read_file cfs_write_file cfs_lock_file);
20 use PVE::DataCenterConfig;
21 use PVE::Exception qw(raise_param_exc raise);
22 use PVE::JSONSchema;
23 use PVE::INotify;
24 use PVE::RPCEnvironment;
25 use PVE::SSHInfo;
26
27 use PVE::Storage::Plugin;
28 use PVE::Storage::DirPlugin;
29 use PVE::Storage::LVMPlugin;
30 use PVE::Storage::LvmThinPlugin;
31 use PVE::Storage::NFSPlugin;
32 use PVE::Storage::CIFSPlugin;
33 use PVE::Storage::ISCSIPlugin;
34 use PVE::Storage::RBDPlugin;
35 use PVE::Storage::CephFSPlugin;
36 use PVE::Storage::ISCSIDirectPlugin;
37 use PVE::Storage::GlusterfsPlugin;
38 use PVE::Storage::ZFSPoolPlugin;
39 use PVE::Storage::ZFSPlugin;
40 use PVE::Storage::DRBDPlugin;
41 use PVE::Storage::PBSPlugin;
42
43 # Storage API version. Increment it on changes in storage API interface.
44 use constant APIVER => 8;
45 # Age is the number of versions we're backward compatible with.
46 # This is like having 'current=APIVER' and age='APIAGE' in libtool,
47 # see https://www.gnu.org/software/libtool/manual/html_node/Libtool-versioning.html
48 use constant APIAGE => 7;
49
50 # load standard plugins
51 PVE::Storage::DirPlugin->register();
52 PVE::Storage::LVMPlugin->register();
53 PVE::Storage::LvmThinPlugin->register();
54 PVE::Storage::NFSPlugin->register();
55 PVE::Storage::CIFSPlugin->register();
56 PVE::Storage::ISCSIPlugin->register();
57 PVE::Storage::RBDPlugin->register();
58 PVE::Storage::CephFSPlugin->register();
59 PVE::Storage::ISCSIDirectPlugin->register();
60 PVE::Storage::GlusterfsPlugin->register();
61 PVE::Storage::ZFSPoolPlugin->register();
62 PVE::Storage::ZFSPlugin->register();
63 PVE::Storage::DRBDPlugin->register();
64 PVE::Storage::PBSPlugin->register();
65
66 # load third-party plugins
67 if ( -d '/usr/share/perl5/PVE/Storage/Custom' ) {
68 dir_glob_foreach('/usr/share/perl5/PVE/Storage/Custom', '.*\.pm$', sub {
69 my ($file) = @_;
70 my $modname = 'PVE::Storage::Custom::' . $file;
71 $modname =~ s!\.pm$!!;
72 $file = 'PVE/Storage/Custom/' . $file;
73
74 eval {
75 require $file;
76
77 # Check perl interface:
78 die "not derived from PVE::Storage::Plugin\n"
79 if !$modname->isa('PVE::Storage::Plugin');
80 die "does not provide an api() method\n"
81 if !$modname->can('api');
82 # Check storage API version and that file is really storage plugin.
83 my $version = $modname->api();
84 die "implements an API version newer than current ($version > " . APIVER . ")\n"
85 if $version > APIVER;
86 my $min_version = (APIVER - APIAGE);
87 die "API version too old, please update the plugin ($version < $min_version)\n"
88 if $version < $min_version;
89 import $file;
90 $modname->register();
91
92 # If we got this far and the API version is not the same, make some
93 # noise:
94 warn "Plugin \"$modname\" is implementing an older storage API, an upgrade is recommended\n"
95 if $version != APIVER;
96 };
97 if ($@) {
98 warn "Error loading storage plugin \"$modname\": $@";
99 }
100 });
101 }
102
103 # initialize all plugins
104 PVE::Storage::Plugin->init();
105
106 our $iso_extension_re = qr/\.(?:iso|img)/i;
107
108 # PVE::Storage utility functions
109
110 sub config {
111 return cfs_read_file("storage.cfg");
112 }
113
114 sub write_config {
115 my ($cfg) = @_;
116
117 cfs_write_file('storage.cfg', $cfg);
118 }
119
120 sub lock_storage_config {
121 my ($code, $errmsg) = @_;
122
123 cfs_lock_file("storage.cfg", undef, $code);
124 my $err = $@;
125 if ($err) {
126 $errmsg ? die "$errmsg: $err" : die $err;
127 }
128 }
129
130 # FIXME remove maxfiles for PVE 7.0
131 my $convert_maxfiles_to_prune_backups = sub {
132 my ($scfg) = @_;
133
134 return if !$scfg;
135
136 my $maxfiles = delete $scfg->{maxfiles};
137
138 if (!defined($scfg->{'prune-backups'}) && defined($maxfiles)) {
139 my $prune_backups;
140 if ($maxfiles) {
141 $prune_backups = { 'keep-last' => $maxfiles };
142 } else { # maxfiles 0 means no limit
143 $prune_backups = { 'keep-all' => 1 };
144 }
145 $scfg->{'prune-backups'} = PVE::JSONSchema::print_property_string(
146 $prune_backups,
147 'prune-backups'
148 );
149 }
150 };
151
152 sub storage_config {
153 my ($cfg, $storeid, $noerr) = @_;
154
155 die "no storage ID specified\n" if !$storeid;
156
157 my $scfg = $cfg->{ids}->{$storeid};
158
159 die "storage '$storeid' does not exist\n" if (!$noerr && !$scfg);
160
161 $convert_maxfiles_to_prune_backups->($scfg);
162
163 return $scfg;
164 }
165
166 sub storage_check_node {
167 my ($cfg, $storeid, $node, $noerr) = @_;
168
169 my $scfg = storage_config($cfg, $storeid);
170
171 if ($scfg->{nodes}) {
172 $node = PVE::INotify::nodename() if !$node || ($node eq 'localhost');
173 if (!$scfg->{nodes}->{$node}) {
174 die "storage '$storeid' is not available on node '$node'\n" if !$noerr;
175 return undef;
176 }
177 }
178
179 return $scfg;
180 }
181
182 sub storage_check_enabled {
183 my ($cfg, $storeid, $node, $noerr) = @_;
184
185 my $scfg = storage_config($cfg, $storeid);
186
187 if ($scfg->{disable}) {
188 die "storage '$storeid' is disabled\n" if !$noerr;
189 return undef;
190 }
191
192 return storage_check_node($cfg, $storeid, $node, $noerr);
193 }
194
195 # storage_can_replicate:
196 # return true if storage supports replication
197 # (volumes alocated with vdisk_alloc() has replication feature)
198 sub storage_can_replicate {
199 my ($cfg, $storeid, $format) = @_;
200
201 my $scfg = storage_config($cfg, $storeid);
202 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
203 return $plugin->storage_can_replicate($scfg, $storeid, $format);
204 }
205
206 sub storage_ids {
207 my ($cfg) = @_;
208
209 return keys %{$cfg->{ids}};
210 }
211
212 sub file_size_info {
213 my ($filename, $timeout) = @_;
214
215 return PVE::Storage::Plugin::file_size_info($filename, $timeout);
216 }
217
218 sub get_volume_notes {
219 my ($cfg, $volid, $timeout) = @_;
220
221 my ($storeid, $volname) = parse_volume_id($volid);
222 my $scfg = storage_config($cfg, $storeid);
223 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
224
225 return $plugin->get_volume_notes($scfg, $storeid, $volname, $timeout);
226 }
227
228 sub update_volume_notes {
229 my ($cfg, $volid, $notes, $timeout) = @_;
230
231 my ($storeid, $volname) = parse_volume_id($volid);
232 my $scfg = storage_config($cfg, $storeid);
233 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
234
235 $plugin->update_volume_notes($scfg, $storeid, $volname, $notes, $timeout);
236 }
237
238 sub volume_size_info {
239 my ($cfg, $volid, $timeout) = @_;
240
241 my ($storeid, $volname) = parse_volume_id($volid, 1);
242 if ($storeid) {
243 my $scfg = storage_config($cfg, $storeid);
244 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
245 return $plugin->volume_size_info($scfg, $storeid, $volname, $timeout);
246 } elsif ($volid =~ m|^(/.+)$| && -e $volid) {
247 return file_size_info($volid, $timeout);
248 } else {
249 return 0;
250 }
251 }
252
253 sub volume_resize {
254 my ($cfg, $volid, $size, $running) = @_;
255
256 my $padding = (1024 - $size % 1024) % 1024;
257 $size = $size + $padding;
258
259 my ($storeid, $volname) = parse_volume_id($volid, 1);
260 if ($storeid) {
261 my $scfg = storage_config($cfg, $storeid);
262 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
263 return $plugin->volume_resize($scfg, $storeid, $volname, $size, $running);
264 } elsif ($volid =~ m|^(/.+)$| && -e $volid) {
265 die "resize file/device '$volid' is not possible\n";
266 } else {
267 die "unable to parse volume ID '$volid'\n";
268 }
269 }
270
271 sub volume_rollback_is_possible {
272 my ($cfg, $volid, $snap) = @_;
273
274 my ($storeid, $volname) = parse_volume_id($volid, 1);
275 if ($storeid) {
276 my $scfg = storage_config($cfg, $storeid);
277 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
278 return $plugin->volume_rollback_is_possible($scfg, $storeid, $volname, $snap);
279 } elsif ($volid =~ m|^(/.+)$| && -e $volid) {
280 die "snapshot rollback file/device '$volid' is not possible\n";
281 } else {
282 die "unable to parse volume ID '$volid'\n";
283 }
284 }
285
286 sub volume_snapshot {
287 my ($cfg, $volid, $snap) = @_;
288
289 my ($storeid, $volname) = parse_volume_id($volid, 1);
290 if ($storeid) {
291 my $scfg = storage_config($cfg, $storeid);
292 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
293 return $plugin->volume_snapshot($scfg, $storeid, $volname, $snap);
294 } elsif ($volid =~ m|^(/.+)$| && -e $volid) {
295 die "snapshot file/device '$volid' is not possible\n";
296 } else {
297 die "unable to parse volume ID '$volid'\n";
298 }
299 }
300
301 sub volume_snapshot_rollback {
302 my ($cfg, $volid, $snap) = @_;
303
304 my ($storeid, $volname) = parse_volume_id($volid, 1);
305 if ($storeid) {
306 my $scfg = storage_config($cfg, $storeid);
307 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
308 $plugin->volume_rollback_is_possible($scfg, $storeid, $volname, $snap);
309 return $plugin->volume_snapshot_rollback($scfg, $storeid, $volname, $snap);
310 } elsif ($volid =~ m|^(/.+)$| && -e $volid) {
311 die "snapshot rollback file/device '$volid' is not possible\n";
312 } else {
313 die "unable to parse volume ID '$volid'\n";
314 }
315 }
316
317 sub volume_snapshot_delete {
318 my ($cfg, $volid, $snap, $running) = @_;
319
320 my ($storeid, $volname) = parse_volume_id($volid, 1);
321 if ($storeid) {
322 my $scfg = storage_config($cfg, $storeid);
323 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
324 return $plugin->volume_snapshot_delete($scfg, $storeid, $volname, $snap, $running);
325 } elsif ($volid =~ m|^(/.+)$| && -e $volid) {
326 die "snapshot delete file/device '$volid' is not possible\n";
327 } else {
328 die "unable to parse volume ID '$volid'\n";
329 }
330 }
331
332 # check if a filesystem on top of a volume needs to flush its journal for
333 # consistency (see fsfreeze(8)) before a snapshot is taken - needed for
334 # container mountpoints
335 sub volume_snapshot_needs_fsfreeze {
336 my ($cfg, $volid) = @_;
337
338 my ($storeid, $volname) = parse_volume_id($volid);
339 my $scfg = storage_config($cfg, $storeid);
340 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
341 return $plugin->volume_snapshot_needs_fsfreeze();
342 }
343
344 # check if a volume or snapshot supports a given feature
345 # $feature - one of:
346 # clone - linked clone is possible
347 # copy - full clone is possible
348 # replicate - replication is possible
349 # snapshot - taking a snapshot is possible
350 # sparseinit - volume is sparsely initialized
351 # template - conversion to base image is possible
352 # $snap - check if the feature is supported for a given snapshot
353 # $running - if the guest owning the volume is running
354 # $opts - hash with further options:
355 # valid_target_formats - list of formats for the target of a copy/clone
356 # operation that the caller could work with. The
357 # format of $volid is always considered valid and if
358 # no list is specified, all formats are considered valid.
359 sub volume_has_feature {
360 my ($cfg, $feature, $volid, $snap, $running, $opts) = @_;
361
362 my ($storeid, $volname) = parse_volume_id($volid, 1);
363 if ($storeid) {
364 my $scfg = storage_config($cfg, $storeid);
365 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
366 return $plugin->volume_has_feature($scfg, $feature, $storeid, $volname, $snap, $running, $opts);
367 } elsif ($volid =~ m|^(/.+)$| && -e $volid) {
368 return undef;
369 } else {
370 return undef;
371 }
372 }
373
374 sub volume_snapshot_list {
375 my ($cfg, $volid) = @_;
376
377 my ($storeid, $volname) = parse_volume_id($volid, 1);
378 if ($storeid) {
379 my $scfg = storage_config($cfg, $storeid);
380 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
381 return $plugin->volume_snapshot_list($scfg, $storeid, $volname);
382 } elsif ($volid =~ m|^(/.+)$| && -e $volid) {
383 die "send file/device '$volid' is not possible\n";
384 } else {
385 die "unable to parse volume ID '$volid'\n";
386 }
387 # return an empty array if dataset does not exist.
388 }
389
390 sub get_image_dir {
391 my ($cfg, $storeid, $vmid) = @_;
392
393 my $scfg = storage_config($cfg, $storeid);
394 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
395
396 my $path = $plugin->get_subdir($scfg, 'images');
397
398 return $vmid ? "$path/$vmid" : $path;
399 }
400
401 sub get_private_dir {
402 my ($cfg, $storeid, $vmid) = @_;
403
404 my $scfg = storage_config($cfg, $storeid);
405 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
406
407 my $path = $plugin->get_subdir($scfg, 'rootdir');
408
409 return $vmid ? "$path/$vmid" : $path;
410 }
411
412 sub get_iso_dir {
413 my ($cfg, $storeid) = @_;
414
415 my $scfg = storage_config($cfg, $storeid);
416 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
417
418 return $plugin->get_subdir($scfg, 'iso');
419 }
420
421 sub get_vztmpl_dir {
422 my ($cfg, $storeid) = @_;
423
424 my $scfg = storage_config($cfg, $storeid);
425 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
426
427 return $plugin->get_subdir($scfg, 'vztmpl');
428 }
429
430 sub get_backup_dir {
431 my ($cfg, $storeid) = @_;
432
433 my $scfg = storage_config($cfg, $storeid);
434 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
435
436 return $plugin->get_subdir($scfg, 'backup');
437 }
438
439 # library implementation
440
441 sub parse_vmid {
442 my $vmid = shift;
443
444 die "VMID '$vmid' contains illegal characters\n" if $vmid !~ m/^\d+$/;
445
446 return int($vmid);
447 }
448
449 # NOTE: basename and basevmid are always undef for LVM-thin, where the
450 # clone -> base reference is not encoded in the volume ID.
451 # see note in PVE::Storage::LvmThinPlugin for details.
452 sub parse_volname {
453 my ($cfg, $volid) = @_;
454
455 my ($storeid, $volname) = parse_volume_id($volid);
456
457 my $scfg = storage_config($cfg, $storeid);
458
459 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
460
461 # returns ($vtype, $name, $vmid, $basename, $basevmid, $isBase, $format)
462
463 return $plugin->parse_volname($volname);
464 }
465
466 sub parse_volume_id {
467 my ($volid, $noerr) = @_;
468
469 return PVE::Storage::Plugin::parse_volume_id($volid, $noerr);
470 }
471
472 # test if we have read access to volid
473 sub check_volume_access {
474 my ($rpcenv, $user, $cfg, $vmid, $volid) = @_;
475
476 my ($sid, $volname) = parse_volume_id($volid, 1);
477 if ($sid) {
478 my ($vtype, undef, $ownervm) = parse_volname($cfg, $volid);
479 if ($vtype eq 'iso' || $vtype eq 'vztmpl') {
480 # require at least read access to storage, (custom) templates/ISOs could be sensitive
481 $rpcenv->check_any($user, "/storage/$sid", ['Datastore.AllocateSpace', 'Datastore.Audit']);
482 } elsif (defined($ownervm) && defined($vmid) && ($ownervm == $vmid)) {
483 # we are owner - allow access
484 } elsif ($vtype eq 'backup' && $ownervm) {
485 $rpcenv->check($user, "/storage/$sid", ['Datastore.AllocateSpace']);
486 $rpcenv->check($user, "/vms/$ownervm", ['VM.Backup']);
487 } else {
488 # allow if we are Datastore administrator
489 $rpcenv->check($user, "/storage/$sid", ['Datastore.Allocate']);
490 }
491 } else {
492 die "Only root can pass arbitrary filesystem paths."
493 if $user ne 'root@pam';
494 }
495
496 return undef;
497 }
498
499 # NOTE: this check does not work for LVM-thin, where the clone -> base
500 # reference is not encoded in the volume ID.
501 # see note in PVE::Storage::LvmThinPlugin for details.
502 sub volume_is_base_and_used {
503 my ($cfg, $volid) = @_;
504
505 my ($storeid, $volname) = parse_volume_id($volid);
506 my $scfg = storage_config($cfg, $storeid);
507 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
508
509 my ($vtype, $name, $vmid, undef, undef, $isBase, undef) =
510 $plugin->parse_volname($volname);
511
512 if ($isBase) {
513 my $vollist = $plugin->list_images($storeid, $scfg);
514 foreach my $info (@$vollist) {
515 my (undef, $tmpvolname) = parse_volume_id($info->{volid});
516 my $basename = undef;
517 my $basevmid = undef;
518
519 eval{
520 (undef, undef, undef, $basename, $basevmid) =
521 $plugin->parse_volname($tmpvolname);
522 };
523
524 if ($basename && defined($basevmid) && $basevmid == $vmid && $basename eq $name) {
525 return 1;
526 }
527 }
528 }
529 return 0;
530 }
531
532 # try to map a filesystem path to a volume identifier
533 sub path_to_volume_id {
534 my ($cfg, $path) = @_;
535
536 my $ids = $cfg->{ids};
537
538 my ($sid, $volname) = parse_volume_id($path, 1);
539 if ($sid) {
540 if (my $scfg = $ids->{$sid}) {
541 if ($scfg->{path}) {
542 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
543 my ($vtype, $name, $vmid) = $plugin->parse_volname($volname);
544 return ($vtype, $path);
545 }
546 }
547 return ('');
548 }
549
550 # Note: abs_path() return undef if $path doesn not exist
551 # for example when nfs storage is not mounted
552 $path = abs_path($path) || $path;
553
554 foreach my $sid (keys %$ids) {
555 my $scfg = $ids->{$sid};
556 next if !$scfg->{path};
557 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
558 my $imagedir = $plugin->get_subdir($scfg, 'images');
559 my $isodir = $plugin->get_subdir($scfg, 'iso');
560 my $tmpldir = $plugin->get_subdir($scfg, 'vztmpl');
561 my $backupdir = $plugin->get_subdir($scfg, 'backup');
562 my $privatedir = $plugin->get_subdir($scfg, 'rootdir');
563 my $snippetsdir = $plugin->get_subdir($scfg, 'snippets');
564
565 if ($path =~ m!^$imagedir/(\d+)/([^/\s]+)$!) {
566 my $vmid = $1;
567 my $name = $2;
568
569 my $vollist = $plugin->list_images($sid, $scfg, $vmid);
570 foreach my $info (@$vollist) {
571 my ($storeid, $volname) = parse_volume_id($info->{volid});
572 my $volpath = $plugin->path($scfg, $volname, $storeid);
573 if ($volpath eq $path) {
574 return ('images', $info->{volid});
575 }
576 }
577 } elsif ($path =~ m!^$isodir/([^/]+$iso_extension_re)$!) {
578 my $name = $1;
579 return ('iso', "$sid:iso/$name");
580 } elsif ($path =~ m!^$tmpldir/([^/]+\.tar\.gz)$!) {
581 my $name = $1;
582 return ('vztmpl', "$sid:vztmpl/$name");
583 } elsif ($path =~ m!^$privatedir/(\d+)$!) {
584 my $vmid = $1;
585 return ('rootdir', "$sid:rootdir/$vmid");
586 } elsif ($path =~ m!^$backupdir/([^/]+\.(?:tgz|(?:(?:tar|vma)(?:\.(?:${\PVE::Storage::Plugin::COMPRESSOR_RE}))?)))$!) {
587 my $name = $1;
588 return ('backup', "$sid:backup/$name");
589 } elsif ($path =~ m!^$snippetsdir/([^/]+)$!) {
590 my $name = $1;
591 return ('snippets', "$sid:snippets/$name");
592 }
593 }
594
595 # can't map path to volume id
596 return ('');
597 }
598
599 sub path {
600 my ($cfg, $volid, $snapname) = @_;
601
602 my ($storeid, $volname) = parse_volume_id($volid);
603
604 my $scfg = storage_config($cfg, $storeid);
605
606 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
607 my ($path, $owner, $vtype) = $plugin->path($scfg, $volname, $storeid, $snapname);
608 return wantarray ? ($path, $owner, $vtype) : $path;
609 }
610
611 sub abs_filesystem_path {
612 my ($cfg, $volid) = @_;
613
614 my $path;
615 if (parse_volume_id ($volid, 1)) {
616 activate_volumes($cfg, [ $volid ]);
617 $path = PVE::Storage::path($cfg, $volid);
618 } else {
619 if (-f $volid) {
620 my $abspath = abs_path($volid);
621 if ($abspath && $abspath =~ m|^(/.+)$|) {
622 $path = $1; # untaint any path
623 }
624 }
625 }
626
627 die "can't find file '$volid'\n" if !($path && -f $path);
628
629 return $path;
630 }
631
632 my $volname_for_storage = sub {
633 my ($cfg, $volid, $target_storeid) = @_;
634
635 my (undef, $name, $vmid, undef, undef, undef, $format) = parse_volname($cfg, $volid);
636 my $target_scfg = storage_config($cfg, $target_storeid);
637
638 my (undef, $valid_formats) = PVE::Storage::Plugin::default_format($target_scfg);
639 my $format_is_valid = grep { $_ eq $format } @$valid_formats;
640 die "unsupported format '$format' for storage type $target_scfg->{type}\n" if !$format_is_valid;
641
642 (my $name_without_extension = $name) =~ s/\.$format$//;
643
644 if ($target_scfg->{path}) {
645 return "$vmid/$name_without_extension.$format";
646 } else {
647 return "$name_without_extension";
648 }
649 };
650
651 sub storage_migrate {
652 my ($cfg, $volid, $target_sshinfo, $target_storeid, $opts, $logfunc) = @_;
653
654 my $base_snapshot = $opts->{base_snapshot};
655 my $snapshot = $opts->{snapshot};
656 my $ratelimit_bps = $opts->{ratelimit_bps};
657 my $insecure = $opts->{insecure};
658 my $with_snapshots = $opts->{with_snapshots} ? 1 : 0;
659 my $allow_rename = $opts->{allow_rename} ? 1 : 0;
660
661 my ($storeid, $volname) = parse_volume_id($volid);
662
663 my $scfg = storage_config($cfg, $storeid);
664
665 # no need to migrate shared content
666 return $volid if $storeid eq $target_storeid && $scfg->{shared};
667
668 my $tcfg = storage_config($cfg, $target_storeid);
669
670 my $target_volname;
671 if ($opts->{target_volname}) {
672 $target_volname = $opts->{target_volname};
673 } elsif ($scfg->{type} eq $tcfg->{type}) {
674 $target_volname = $volname;
675 } else {
676 $target_volname = $volname_for_storage->($cfg, $volid, $target_storeid);
677 }
678
679 my $target_volid = "${target_storeid}:${target_volname}";
680
681 my $target_ip = $target_sshinfo->{ip};
682
683 my $ssh = PVE::SSHInfo::ssh_info_to_command($target_sshinfo);
684 my $ssh_base = PVE::SSHInfo::ssh_info_to_command_base($target_sshinfo);
685 local $ENV{RSYNC_RSH} = PVE::Tools::cmd2string($ssh_base);
686
687 my @cstream;
688 if (defined($ratelimit_bps)) {
689 @cstream = ([ '/usr/bin/cstream', '-t', $ratelimit_bps ]);
690 $logfunc->("using a bandwidth limit of $ratelimit_bps bps for transferring '$volid'") if $logfunc;
691 }
692
693 my $migration_snapshot;
694 if (!defined($snapshot)) {
695 if ($scfg->{type} eq 'zfspool') {
696 $migration_snapshot = 1;
697 $snapshot = '__migration__';
698 }
699 }
700
701 my @formats = volume_transfer_formats($cfg, $volid, $target_volid, $snapshot, $base_snapshot, $with_snapshots);
702 die "cannot migrate from storage type '$scfg->{type}' to '$tcfg->{type}'\n" if !@formats;
703 my $format = $formats[0];
704
705 my $import_fn = '-'; # let pvesm import read from stdin per default
706 if ($insecure) {
707 my $net = $target_sshinfo->{network} // $target_sshinfo->{ip};
708 $import_fn = "tcp://$net";
709 }
710
711 my $target_apiver = 1; # if there is no apiinfo call, assume 1
712 my $get_api_version = [@$ssh, 'pvesm', 'apiinfo'];
713 my $match_api_version = sub { $target_apiver = $1 if $_[0] =~ m!^APIVER (\d+)$!; };
714 eval { run_command($get_api_version, logfunc => $match_api_version); };
715
716 my $send = ['pvesm', 'export', $volid, $format, '-', '-with-snapshots', $with_snapshots];
717 my $recv = [@$ssh, '--', 'pvesm', 'import', $target_volid, $format, $import_fn, '-with-snapshots', $with_snapshots];
718 if (defined($snapshot)) {
719 push @$send, '-snapshot', $snapshot
720 }
721 if ($migration_snapshot) {
722 push @$recv, '-delete-snapshot', $snapshot;
723 }
724 push @$recv, '-allow-rename', $allow_rename if $target_apiver >= 5;
725
726 if (defined($base_snapshot)) {
727 # Check if the snapshot exists on the remote side:
728 push @$send, '-base', $base_snapshot;
729 push @$recv, '-base', $base_snapshot;
730 }
731
732 my $new_volid;
733 my $pattern = volume_imported_message(undef, 1);
734 my $match_volid_and_log = sub {
735 my $line = shift;
736
737 $new_volid = $1 if ($line =~ $pattern);
738
739 if ($logfunc) {
740 chomp($line);
741 $logfunc->($line);
742 }
743 };
744
745 volume_snapshot($cfg, $volid, $snapshot) if $migration_snapshot;
746
747 if (defined($snapshot)) {
748 activate_volumes($cfg, [$volid], $snapshot);
749 } else {
750 activate_volumes($cfg, [$volid]);
751 }
752
753 eval {
754 if ($insecure) {
755 my $input = IO::File->new();
756 my $info = IO::File->new();
757 open3($input, $info, $info, @{$recv})
758 or die "receive command failed: $!\n";
759 close($input);
760
761 my $try_ip = <$info> // '';
762 my ($ip) = $try_ip =~ /^($PVE::Tools::IPRE)$/ # untaint
763 or die "no tunnel IP received, got '$try_ip'\n";
764
765 my $try_port = <$info> // '';
766 my ($port) = $try_port =~ /^(\d+)$/ # untaint
767 or die "no tunnel port received, got '$try_port'\n";
768
769 my $socket = IO::Socket::IP->new(PeerHost => $ip, PeerPort => $port, Type => SOCK_STREAM)
770 or die "failed to connect to tunnel at $ip:$port\n";
771 # we won't be reading from the socket
772 shutdown($socket, 0);
773
774 eval { run_command([$send, @cstream], output => '>&'.fileno($socket), errfunc => $logfunc); };
775 my $send_error = $@;
776
777 # don't close the connection entirely otherwise the receiving end
778 # might not get all buffered data (and fails with 'connection reset by peer')
779 shutdown($socket, 1);
780
781 # wait for the remote process to finish
782 while (my $line = <$info>) {
783 $match_volid_and_log->("[$target_sshinfo->{name}] $line");
784 }
785
786 # now close the socket
787 close($socket);
788 if (!close($info)) { # does waitpid()
789 die "import failed: $!\n" if $!;
790 die "import failed: exit code ".($?>>8)."\n";
791 }
792
793 die $send_error if $send_error;
794 } else {
795 run_command([$send, @cstream, $recv], logfunc => $match_volid_and_log);
796 }
797
798 die "unable to get ID of the migrated volume\n"
799 if !defined($new_volid) && $target_apiver >= 5;
800 };
801 my $err = $@;
802 warn "send/receive failed, cleaning up snapshot(s)..\n" if $err;
803 if ($migration_snapshot) {
804 eval { volume_snapshot_delete($cfg, $volid, $snapshot, 0) };
805 warn "could not remove source snapshot: $@\n" if $@;
806 }
807 die $err if $err;
808
809 return $new_volid // $target_volid;
810 }
811
812 sub vdisk_clone {
813 my ($cfg, $volid, $vmid, $snap) = @_;
814
815 my ($storeid, $volname) = parse_volume_id($volid);
816
817 my $scfg = storage_config($cfg, $storeid);
818
819 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
820
821 activate_storage($cfg, $storeid);
822
823 # lock shared storage
824 return $plugin->cluster_lock_storage($storeid, $scfg->{shared}, undef, sub {
825 my $volname = $plugin->clone_image($scfg, $storeid, $volname, $vmid, $snap);
826 return "$storeid:$volname";
827 });
828 }
829
830 sub vdisk_create_base {
831 my ($cfg, $volid) = @_;
832
833 my ($storeid, $volname) = parse_volume_id($volid);
834
835 my $scfg = storage_config($cfg, $storeid);
836
837 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
838
839 activate_storage($cfg, $storeid);
840
841 # lock shared storage
842 return $plugin->cluster_lock_storage($storeid, $scfg->{shared}, undef, sub {
843 my $volname = $plugin->create_base($storeid, $scfg, $volname);
844 return "$storeid:$volname";
845 });
846 }
847
848 sub map_volume {
849 my ($cfg, $volid, $snapname) = @_;
850
851 my ($storeid, $volname) = parse_volume_id($volid);
852
853 my $scfg = storage_config($cfg, $storeid);
854
855 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
856
857 return $plugin->map_volume($storeid, $scfg, $volname, $snapname);
858 }
859
860 sub unmap_volume {
861 my ($cfg, $volid, $snapname) = @_;
862
863 my ($storeid, $volname) = parse_volume_id($volid);
864
865 my $scfg = storage_config($cfg, $storeid);
866
867 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
868
869 return $plugin->unmap_volume($storeid, $scfg, $volname, $snapname);
870 }
871
872 sub vdisk_alloc {
873 my ($cfg, $storeid, $vmid, $fmt, $name, $size) = @_;
874
875 die "no storage ID specified\n" if !$storeid;
876
877 PVE::JSONSchema::parse_storage_id($storeid);
878
879 my $scfg = storage_config($cfg, $storeid);
880
881 die "no VMID specified\n" if !$vmid;
882
883 $vmid = parse_vmid($vmid);
884
885 my $defformat = PVE::Storage::Plugin::default_format($scfg);
886
887 $fmt = $defformat if !$fmt;
888
889 activate_storage($cfg, $storeid);
890
891 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
892
893 # lock shared storage
894 return $plugin->cluster_lock_storage($storeid, $scfg->{shared}, undef, sub {
895 my $old_umask = umask(umask|0037);
896 my $volname = eval { $plugin->alloc_image($storeid, $scfg, $vmid, $fmt, $name, $size) };
897 my $err = $@;
898 umask $old_umask;
899 die $err if $err;
900 return "$storeid:$volname";
901 });
902 }
903
904 sub vdisk_free {
905 my ($cfg, $volid) = @_;
906
907 my ($storeid, $volname) = parse_volume_id($volid);
908 my $scfg = storage_config($cfg, $storeid);
909 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
910
911 activate_storage($cfg, $storeid);
912
913 my $cleanup_worker;
914
915 # lock shared storage
916 $plugin->cluster_lock_storage($storeid, $scfg->{shared}, undef, sub {
917 # LVM-thin allows deletion of still referenced base volumes!
918 die "base volume '$volname' is still in use by linked clones\n"
919 if volume_is_base_and_used($cfg, $volid);
920
921 my (undef, undef, undef, undef, undef, $isBase, $format) =
922 $plugin->parse_volname($volname);
923 $cleanup_worker = $plugin->free_image($storeid, $scfg, $volname, $isBase, $format);
924 });
925
926 return if !$cleanup_worker;
927
928 my $rpcenv = PVE::RPCEnvironment::get();
929 my $authuser = $rpcenv->get_user();
930
931 $rpcenv->fork_worker('imgdel', undef, $authuser, $cleanup_worker);
932 }
933
934 sub vdisk_list {
935 my ($cfg, $storeid, $vmid, $vollist) = @_;
936
937 my $ids = $cfg->{ids};
938
939 storage_check_enabled($cfg, $storeid) if ($storeid);
940
941 my $res = {};
942
943 # prepare/activate/refresh all storages
944
945 my $storage_list = [];
946 if ($vollist) {
947 foreach my $volid (@$vollist) {
948 my ($sid, undef) = parse_volume_id($volid);
949 next if !defined($ids->{$sid});
950 next if !storage_check_enabled($cfg, $sid, undef, 1);
951 push @$storage_list, $sid;
952 }
953 } else {
954 foreach my $sid (keys %$ids) {
955 next if $storeid && $storeid ne $sid;
956 next if !storage_check_enabled($cfg, $sid, undef, 1);
957 my $content = $ids->{$sid}->{content};
958 next if !($content->{rootdir} || $content->{images});
959 push @$storage_list, $sid;
960 }
961 }
962
963 my $cache = {};
964
965 activate_storage_list($cfg, $storage_list, $cache);
966
967 foreach my $sid (keys %$ids) {
968 next if $storeid && $storeid ne $sid;
969 next if !storage_check_enabled($cfg, $sid, undef, 1);
970
971 my $scfg = $ids->{$sid};
972 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
973 $res->{$sid} = $plugin->list_images($sid, $scfg, $vmid, $vollist, $cache);
974 @{$res->{$sid}} = sort {lc($a->{volid}) cmp lc ($b->{volid}) } @{$res->{$sid}} if $res->{$sid};
975 }
976
977 return $res;
978 }
979
980 sub template_list {
981 my ($cfg, $storeid, $tt) = @_;
982
983 die "unknown template type '$tt'\n"
984 if !($tt eq 'iso' || $tt eq 'vztmpl' || $tt eq 'backup' || $tt eq 'snippets');
985
986 my $ids = $cfg->{ids};
987
988 storage_check_enabled($cfg, $storeid) if ($storeid);
989
990 my $res = {};
991
992 # query the storage
993 foreach my $sid (keys %$ids) {
994 next if $storeid && $storeid ne $sid;
995
996 my $scfg = $ids->{$sid};
997 my $type = $scfg->{type};
998
999 next if !$scfg->{content}->{$tt};
1000
1001 next if !storage_check_enabled($cfg, $sid, undef, 1);
1002
1003 $res->{$sid} = volume_list($cfg, $sid, undef, $tt);
1004 }
1005
1006 return $res;
1007 }
1008
1009 sub volume_list {
1010 my ($cfg, $storeid, $vmid, $content) = @_;
1011
1012 my @ctypes = qw(rootdir images vztmpl iso backup snippets);
1013
1014 my $cts = $content ? [ $content ] : [ @ctypes ];
1015
1016 my $scfg = PVE::Storage::storage_config($cfg, $storeid);
1017
1018 $cts = [ grep { defined($scfg->{content}->{$_}) } @$cts ];
1019
1020 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1021
1022 activate_storage($cfg, $storeid);
1023
1024 my $res = $plugin->list_volumes($storeid, $scfg, $vmid, $cts);
1025
1026 @$res = sort {lc($a->{volid}) cmp lc ($b->{volid}) } @$res;
1027
1028 return $res;
1029 }
1030
1031 sub uevent_seqnum {
1032
1033 my $filename = "/sys/kernel/uevent_seqnum";
1034
1035 my $seqnum = 0;
1036 if (my $fh = IO::File->new($filename, "r")) {
1037 my $line = <$fh>;
1038 if ($line =~ m/^(\d+)$/) {
1039 $seqnum = int($1);
1040 }
1041 close ($fh);
1042 }
1043 return $seqnum;
1044 }
1045
1046 sub activate_storage {
1047 my ($cfg, $storeid, $cache) = @_;
1048
1049 $cache = {} if !$cache;
1050
1051 my $scfg = storage_check_enabled($cfg, $storeid);
1052
1053 return if $cache->{activated}->{$storeid};
1054
1055 $cache->{uevent_seqnum} = uevent_seqnum() if !$cache->{uevent_seqnum};
1056
1057 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1058
1059 if ($scfg->{base}) {
1060 my ($baseid, undef) = parse_volume_id ($scfg->{base});
1061 activate_storage($cfg, $baseid, $cache);
1062 }
1063
1064 if (!$plugin->check_connection($storeid, $scfg)) {
1065 die "storage '$storeid' is not online\n";
1066 }
1067
1068 $plugin->activate_storage($storeid, $scfg, $cache);
1069
1070 my $newseq = uevent_seqnum ();
1071
1072 # only call udevsettle if there are events
1073 if ($newseq > $cache->{uevent_seqnum}) {
1074 system ("udevadm settle --timeout=30"); # ignore errors
1075 $cache->{uevent_seqnum} = $newseq;
1076 }
1077
1078 $cache->{activated}->{$storeid} = 1;
1079 }
1080
1081 sub activate_storage_list {
1082 my ($cfg, $storeid_list, $cache) = @_;
1083
1084 $cache = {} if !$cache;
1085
1086 foreach my $storeid (@$storeid_list) {
1087 activate_storage($cfg, $storeid, $cache);
1088 }
1089 }
1090
1091 sub deactivate_storage {
1092 my ($cfg, $storeid) = @_;
1093
1094 my $scfg = storage_config ($cfg, $storeid);
1095 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1096
1097 my $cache = {};
1098 $plugin->deactivate_storage($storeid, $scfg, $cache);
1099 }
1100
1101 sub activate_volumes {
1102 my ($cfg, $vollist, $snapname) = @_;
1103
1104 return if !($vollist && scalar(@$vollist));
1105
1106 my $storagehash = {};
1107 foreach my $volid (@$vollist) {
1108 my ($storeid, undef) = parse_volume_id($volid);
1109 $storagehash->{$storeid} = 1;
1110 }
1111
1112 my $cache = {};
1113
1114 activate_storage_list($cfg, [keys %$storagehash], $cache);
1115
1116 foreach my $volid (@$vollist) {
1117 my ($storeid, $volname) = parse_volume_id($volid);
1118 my $scfg = storage_config($cfg, $storeid);
1119 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1120 $plugin->activate_volume($storeid, $scfg, $volname, $snapname, $cache);
1121 }
1122 }
1123
1124 sub deactivate_volumes {
1125 my ($cfg, $vollist, $snapname) = @_;
1126
1127 return if !($vollist && scalar(@$vollist));
1128
1129 my $cache = {};
1130
1131 my @errlist = ();
1132 foreach my $volid (@$vollist) {
1133 my ($storeid, $volname) = parse_volume_id($volid);
1134
1135 my $scfg = storage_config($cfg, $storeid);
1136 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1137
1138 eval {
1139 $plugin->deactivate_volume($storeid, $scfg, $volname, $snapname, $cache);
1140 };
1141 if (my $err = $@) {
1142 warn $err;
1143 push @errlist, $volid;
1144 }
1145 }
1146
1147 die "volume deactivation failed: " . join(' ', @errlist)
1148 if scalar(@errlist);
1149 }
1150
1151 sub storage_info {
1152 my ($cfg, $content, $includeformat) = @_;
1153
1154 my $ids = $cfg->{ids};
1155
1156 my $info = {};
1157
1158 my @ctypes = PVE::Tools::split_list($content);
1159
1160 my $slist = [];
1161 foreach my $storeid (keys %$ids) {
1162 my $storage_enabled = defined(storage_check_enabled($cfg, $storeid, undef, 1));
1163
1164 if (defined($content)) {
1165 my $want_ctype = 0;
1166 foreach my $ctype (@ctypes) {
1167 if ($ids->{$storeid}->{content}->{$ctype}) {
1168 $want_ctype = 1;
1169 last;
1170 }
1171 }
1172 next if !$want_ctype || !$storage_enabled;
1173 }
1174
1175 my $type = $ids->{$storeid}->{type};
1176
1177 $info->{$storeid} = {
1178 type => $type,
1179 total => 0,
1180 avail => 0,
1181 used => 0,
1182 shared => $ids->{$storeid}->{shared} ? 1 : 0,
1183 content => PVE::Storage::Plugin::content_hash_to_string($ids->{$storeid}->{content}),
1184 active => 0,
1185 enabled => $storage_enabled ? 1 : 0,
1186 };
1187
1188 push @$slist, $storeid;
1189 }
1190
1191 my $cache = {};
1192
1193 foreach my $storeid (keys %$ids) {
1194 my $scfg = $ids->{$storeid};
1195
1196 next if !$info->{$storeid};
1197 next if !$info->{$storeid}->{enabled};
1198
1199 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1200 if ($includeformat) {
1201 my $pd = $plugin->plugindata();
1202 $info->{$storeid}->{format} = $pd->{format}
1203 if $pd->{format};
1204 $info->{$storeid}->{select_existing} = $pd->{select_existing}
1205 if $pd->{select_existing};
1206 }
1207
1208 eval { activate_storage($cfg, $storeid, $cache); };
1209 if (my $err = $@) {
1210 warn $err;
1211 next;
1212 }
1213
1214 my ($total, $avail, $used, $active) = eval { $plugin->status($storeid, $scfg, $cache); };
1215 warn $@ if $@;
1216 next if !$active;
1217 $info->{$storeid}->{total} = int($total);
1218 $info->{$storeid}->{avail} = int($avail);
1219 $info->{$storeid}->{used} = int($used);
1220 $info->{$storeid}->{active} = $active;
1221 }
1222
1223 return $info;
1224 }
1225
1226 sub resolv_server {
1227 my ($server) = @_;
1228
1229 my ($packed_ip, $family);
1230 eval {
1231 my @res = PVE::Tools::getaddrinfo_all($server);
1232 $family = $res[0]->{family};
1233 $packed_ip = (PVE::Tools::unpack_sockaddr_in46($res[0]->{addr}))[2];
1234 };
1235 if (defined $packed_ip) {
1236 return Socket::inet_ntop($family, $packed_ip);
1237 }
1238 return undef;
1239 }
1240
1241 sub scan_nfs {
1242 my ($server_in) = @_;
1243
1244 my $server;
1245 if (!($server = resolv_server ($server_in))) {
1246 die "unable to resolve address for server '${server_in}'\n";
1247 }
1248
1249 my $cmd = ['/sbin/showmount', '--no-headers', '--exports', $server];
1250
1251 my $res = {};
1252 run_command($cmd, outfunc => sub {
1253 my $line = shift;
1254
1255 # note: howto handle white spaces in export path??
1256 if ($line =~ m!^(/\S+)\s+(.+)$!) {
1257 $res->{$1} = $2;
1258 }
1259 });
1260
1261 return $res;
1262 }
1263
1264 sub scan_cifs {
1265 my ($server_in, $user, $password, $domain) = @_;
1266
1267 my $server = resolv_server($server_in);
1268 die "unable to resolve address for server '${server_in}'\n" if !$server;
1269
1270 # we only support Windows 2012 and newer, so just use smb3
1271 my $cmd = ['/usr/bin/smbclient', '-m', 'smb3', '-d', '0', '-L', $server];
1272 push @$cmd, '-W', $domain if defined($domain);
1273
1274 push @$cmd, '-N' if !defined($password);
1275 local $ENV{USER} = $user if defined($user);
1276 local $ENV{PASSWD} = $password if defined($password);
1277
1278 my $res = {};
1279 my $err = '';
1280 run_command($cmd,
1281 noerr => 1,
1282 errfunc => sub {
1283 $err .= "$_[0]\n"
1284 },
1285 outfunc => sub {
1286 my $line = shift;
1287 if ($line =~ m/(\S+)\s*Disk\s*(\S*)/) {
1288 $res->{$1} = $2;
1289 } elsif ($line =~ m/(NT_STATUS_(\S+))/) {
1290 my $status = $1;
1291 $err .= "unexpected status: $1\n" if uc($1) ne 'SUCCESS';
1292 }
1293 },
1294 );
1295 # only die if we got no share, else it's just some followup check error
1296 # (like workgroup querying)
1297 raise($err) if $err && !%$res;
1298
1299 return $res;
1300 }
1301
1302 sub scan_zfs {
1303
1304 my $cmd = ['zfs', 'list', '-t', 'filesystem', '-Hp', '-o', 'name,avail,used'];
1305
1306 my $res = [];
1307 run_command($cmd, outfunc => sub {
1308 my $line = shift;
1309
1310 if ($line =~m/^(\S+)\s+(\S+)\s+(\S+)$/) {
1311 my ($pool, $size_str, $used_str) = ($1, $2, $3);
1312 my $size = $size_str + 0;
1313 my $used = $used_str + 0;
1314 # ignore subvolumes generated by our ZFSPoolPlugin
1315 return if $pool =~ m!/subvol-\d+-[^/]+$!;
1316 return if $pool =~ m!/basevol-\d+-[^/]+$!;
1317 push @$res, { pool => $pool, size => $size, free => $size-$used };
1318 }
1319 });
1320
1321 return $res;
1322 }
1323
1324 sub resolv_portal {
1325 my ($portal, $noerr) = @_;
1326
1327 my ($server, $port) = PVE::Tools::parse_host_and_port($portal);
1328 if ($server) {
1329 if (my $ip = resolv_server($server)) {
1330 $server = $ip;
1331 $server = "[$server]" if $server =~ /^$IPV6RE$/;
1332 return $port ? "$server:$port" : $server;
1333 }
1334 }
1335 return undef if $noerr;
1336
1337 raise_param_exc({ portal => "unable to resolve portal address '$portal'" });
1338 }
1339
1340
1341 sub scan_iscsi {
1342 my ($portal_in) = @_;
1343
1344 my $portal;
1345 if (!($portal = resolv_portal($portal_in))) {
1346 die "unable to parse/resolve portal address '${portal_in}'\n";
1347 }
1348
1349 return PVE::Storage::ISCSIPlugin::iscsi_discovery($portal);
1350 }
1351
1352 sub storage_default_format {
1353 my ($cfg, $storeid) = @_;
1354
1355 my $scfg = storage_config ($cfg, $storeid);
1356
1357 return PVE::Storage::Plugin::default_format($scfg);
1358 }
1359
1360 sub vgroup_is_used {
1361 my ($cfg, $vgname) = @_;
1362
1363 foreach my $storeid (keys %{$cfg->{ids}}) {
1364 my $scfg = storage_config($cfg, $storeid);
1365 if ($scfg->{type} eq 'lvm' && $scfg->{vgname} eq $vgname) {
1366 return 1;
1367 }
1368 }
1369
1370 return undef;
1371 }
1372
1373 sub target_is_used {
1374 my ($cfg, $target) = @_;
1375
1376 foreach my $storeid (keys %{$cfg->{ids}}) {
1377 my $scfg = storage_config($cfg, $storeid);
1378 if ($scfg->{type} eq 'iscsi' && $scfg->{target} eq $target) {
1379 return 1;
1380 }
1381 }
1382
1383 return undef;
1384 }
1385
1386 sub volume_is_used {
1387 my ($cfg, $volid) = @_;
1388
1389 foreach my $storeid (keys %{$cfg->{ids}}) {
1390 my $scfg = storage_config($cfg, $storeid);
1391 if ($scfg->{base} && $scfg->{base} eq $volid) {
1392 return 1;
1393 }
1394 }
1395
1396 return undef;
1397 }
1398
1399 sub storage_is_used {
1400 my ($cfg, $storeid) = @_;
1401
1402 foreach my $sid (keys %{$cfg->{ids}}) {
1403 my $scfg = storage_config($cfg, $sid);
1404 next if !$scfg->{base};
1405 my ($st) = parse_volume_id($scfg->{base});
1406 return 1 if $st && $st eq $storeid;
1407 }
1408
1409 return undef;
1410 }
1411
1412 sub foreach_volid {
1413 my ($list, $func) = @_;
1414
1415 return if !$list;
1416
1417 foreach my $sid (keys %$list) {
1418 foreach my $info (@{$list->{$sid}}) {
1419 my $volid = $info->{volid};
1420 my ($sid1, $volname) = parse_volume_id($volid, 1);
1421 if ($sid1 && $sid1 eq $sid) {
1422 &$func ($volid, $sid, $info);
1423 } else {
1424 warn "detected strange volid '$volid' in volume list for '$sid'\n";
1425 }
1426 }
1427 }
1428 }
1429
1430 sub decompressor_info {
1431 my ($format, $comp) = @_;
1432
1433 if ($format eq 'tgz' && !defined($comp)) {
1434 ($format, $comp) = ('tar', 'gz');
1435 }
1436
1437 my $decompressor = {
1438 tar => {
1439 gz => ['tar', '-z'],
1440 lzo => ['tar', '--lzop'],
1441 zst => ['tar', '--zstd'],
1442 },
1443 vma => {
1444 gz => ['zcat'],
1445 lzo => ['lzop', '-d', '-c'],
1446 zst => ['zstd', '-q', '-d', '-c'],
1447 },
1448 };
1449
1450 die "ERROR: archive format not defined\n"
1451 if !defined($decompressor->{$format});
1452
1453 my $decomp;
1454 $decomp = $decompressor->{$format}->{$comp} if $comp;
1455
1456 my $info = {
1457 format => $format,
1458 compression => $comp,
1459 decompressor => $decomp,
1460 };
1461
1462 return $info;
1463 }
1464
1465 sub archive_info {
1466 my ($archive) = shift;
1467 my $info;
1468
1469 my $volid = basename($archive);
1470 if ($volid =~ /^(vzdump-(lxc|openvz|qemu)-.+\.(tgz$|tar|vma)(?:\.(${\PVE::Storage::Plugin::COMPRESSOR_RE}))?)$/) {
1471 my $filename = "$1"; # untaint
1472 my ($type, $format, $comp) = ($2, $3, $4);
1473 my $format_re = defined($comp) ? "$format.$comp" : "$format";
1474 $info = decompressor_info($format, $comp);
1475 $info->{filename} = $filename;
1476 $info->{type} = $type;
1477
1478 if ($volid =~ /^(vzdump-${type}-([1-9][0-9]{2,8})-(\d{4})_(\d{2})_(\d{2})-(\d{2})_(\d{2})_(\d{2}))\.${format_re}$/) {
1479 $info->{logfilename} = "$1.log";
1480 $info->{vmid} = int($2);
1481 $info->{ctime} = timelocal($8, $7, $6, $5, $4 - 1, $3);
1482 $info->{is_std_name} = 1;
1483 } else {
1484 $info->{is_std_name} = 0;
1485 }
1486 } else {
1487 die "ERROR: couldn't determine archive info from '$archive'\n";
1488 }
1489
1490 return $info;
1491 }
1492
1493 sub archive_remove {
1494 my ($archive_path) = @_;
1495
1496 my $dirname = dirname($archive_path);
1497 my $archive_info = eval { archive_info($archive_path) } // {};
1498 my $logfn = $archive_info->{logfilename};
1499
1500 unlink $archive_path or die "removing archive $archive_path failed: $!\n";
1501
1502 if (defined($logfn)) {
1503 my $logpath = "$dirname/$logfn";
1504 if (-e $logpath) {
1505 unlink $logpath or warn "removing log file $logpath failed: $!\n";
1506 }
1507 }
1508 }
1509
1510 sub extract_vzdump_config_tar {
1511 my ($archive, $conf_re) = @_;
1512
1513 die "ERROR: file '$archive' does not exist\n" if ! -f $archive;
1514
1515 my $pid = open(my $fh, '-|', 'tar', 'tf', $archive) ||
1516 die "unable to open file '$archive'\n";
1517
1518 my $file;
1519 while (defined($file = <$fh>)) {
1520 if ($file =~ $conf_re) {
1521 $file = $1; # untaint
1522 last;
1523 }
1524 }
1525
1526 kill 15, $pid;
1527 waitpid $pid, 0;
1528 close $fh;
1529
1530 die "ERROR: archive contains no configuration file\n" if !$file;
1531 chomp $file;
1532
1533 my $raw = '';
1534 my $out = sub {
1535 my $output = shift;
1536 $raw .= "$output\n";
1537 };
1538
1539 run_command(['tar', '-xpOf', $archive, $file, '--occurrence'], outfunc => $out);
1540
1541 return wantarray ? ($raw, $file) : $raw;
1542 }
1543
1544 sub extract_vzdump_config_vma {
1545 my ($archive, $comp) = @_;
1546
1547 my $raw = '';
1548 my $out = sub { $raw .= "$_[0]\n"; };
1549
1550 my $info = archive_info($archive);
1551 $comp //= $info->{compression};
1552 my $decompressor = $info->{decompressor};
1553
1554 if ($comp) {
1555 my $cmd = [ [@$decompressor, $archive], ["vma", "config", "-"] ];
1556
1557 # lzop/zcat exits with 1 when the pipe is closed early by vma, detect this and ignore the exit code later
1558 my $broken_pipe;
1559 my $errstring;
1560 my $err = sub {
1561 my $output = shift;
1562 if ($output =~ m/lzop: Broken pipe: <stdout>/ || $output =~ m/gzip: stdout: Broken pipe/ || $output =~ m/zstd: error 70 : Write error : Broken pipe/) {
1563 $broken_pipe = 1;
1564 } elsif (!defined ($errstring) && $output !~ m/^\s*$/) {
1565 $errstring = "Failed to extract config from VMA archive: $output\n";
1566 }
1567 };
1568
1569 my $rc = eval { run_command($cmd, outfunc => $out, errfunc => $err, noerr => 1) };
1570 my $rerr = $@;
1571
1572 $broken_pipe ||= $rc == 141; # broken pipe from vma POV
1573
1574 if (!$errstring && !$broken_pipe && $rc != 0) {
1575 die "$rerr\n" if $rerr;
1576 die "config extraction failed with exit code $rc\n";
1577 }
1578 die "$errstring\n" if $errstring;
1579 } else {
1580 run_command(["vma", "config", $archive], outfunc => $out);
1581 }
1582
1583 return wantarray ? ($raw, undef) : $raw;
1584 }
1585
1586 sub extract_vzdump_config {
1587 my ($cfg, $volid) = @_;
1588
1589 my ($storeid, $volname) = parse_volume_id($volid);
1590 if (defined($storeid)) {
1591 my $scfg = storage_config($cfg, $storeid);
1592 if ($scfg->{type} eq 'pbs') {
1593 storage_check_enabled($cfg, $storeid);
1594 return PVE::Storage::PBSPlugin->extract_vzdump_config($scfg, $volname, $storeid);
1595 }
1596 }
1597
1598 my $archive = abs_filesystem_path($cfg, $volid);
1599 my $info = archive_info($archive);
1600 my $format = $info->{format};
1601 my $comp = $info->{compression};
1602 my $type = $info->{type};
1603
1604 if ($type eq 'lxc' || $type eq 'openvz') {
1605 return extract_vzdump_config_tar($archive, qr!^(\./etc/vzdump/(pct|vps)\.conf)$!);
1606 } elsif ($type eq 'qemu') {
1607 if ($format eq 'tar') {
1608 return extract_vzdump_config_tar($archive, qr!\(\./qemu-server\.conf\)!);
1609 } else {
1610 return extract_vzdump_config_vma($archive, $comp);
1611 }
1612 } else {
1613 die "cannot determine backup guest type for backup archive '$volid'\n";
1614 }
1615 }
1616
1617 sub prune_backups {
1618 my ($cfg, $storeid, $keep, $vmid, $type, $dryrun, $logfunc) = @_;
1619
1620 my $scfg = storage_config($cfg, $storeid);
1621 die "storage '$storeid' does not support backups\n" if !$scfg->{content}->{backup};
1622
1623 if (!defined($keep)) {
1624 die "no prune-backups options configured for storage '$storeid'\n"
1625 if !defined($scfg->{'prune-backups'});
1626 $keep = PVE::JSONSchema::parse_property_string('prune-backups', $scfg->{'prune-backups'});
1627 }
1628
1629 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1630 return $plugin->prune_backups($scfg, $storeid, $keep, $vmid, $type, $dryrun, $logfunc);
1631 }
1632
1633 my $prune_mark = sub {
1634 my ($prune_entries, $keep_count, $id_func) = @_;
1635
1636 return if !$keep_count;
1637
1638 my $already_included = {};
1639 my $newly_included = {};
1640
1641 foreach my $prune_entry (@{$prune_entries}) {
1642 my $mark = $prune_entry->{mark};
1643 my $id = $id_func->($prune_entry->{ctime});
1644 $already_included->{$id} = 1 if defined($mark) && $mark eq 'keep';
1645 }
1646
1647 foreach my $prune_entry (@{$prune_entries}) {
1648 my $mark = $prune_entry->{mark};
1649 my $id = $id_func->($prune_entry->{ctime});
1650
1651 next if defined($mark) || $already_included->{$id};
1652
1653 if (!$newly_included->{$id}) {
1654 last if scalar(keys %{$newly_included}) >= $keep_count;
1655 $newly_included->{$id} = 1;
1656 $prune_entry->{mark} = 'keep';
1657 } else {
1658 $prune_entry->{mark} = 'remove';
1659 }
1660 }
1661 };
1662
1663 sub prune_mark_backup_group {
1664 my ($backup_group, $keep) = @_;
1665
1666 my $keep_all = delete $keep->{'keep-all'};
1667
1668 if ($keep_all || !scalar(grep {$_ > 0} values %{$keep})) {
1669 $keep = { 'keep-all' => 1 } if $keep_all;
1670 foreach my $prune_entry (@{$backup_group}) {
1671 $prune_entry->{mark} = 'keep';
1672 }
1673 return;
1674 }
1675
1676 my $prune_list = [ sort { $b->{ctime} <=> $a->{ctime} } @{$backup_group} ];
1677
1678 $prune_mark->($prune_list, $keep->{'keep-last'}, sub {
1679 my ($ctime) = @_;
1680 return $ctime;
1681 });
1682 $prune_mark->($prune_list, $keep->{'keep-hourly'}, sub {
1683 my ($ctime) = @_;
1684 my (undef, undef, $hour, $day, $month, $year) = localtime($ctime);
1685 return "$hour/$day/$month/$year";
1686 });
1687 $prune_mark->($prune_list, $keep->{'keep-daily'}, sub {
1688 my ($ctime) = @_;
1689 my (undef, undef, undef, $day, $month, $year) = localtime($ctime);
1690 return "$day/$month/$year";
1691 });
1692 $prune_mark->($prune_list, $keep->{'keep-weekly'}, sub {
1693 my ($ctime) = @_;
1694 my ($sec, $min, $hour, $day, $month, $year) = localtime($ctime);
1695 my $iso_week = int(strftime("%V", $sec, $min, $hour, $day, $month, $year));
1696 my $iso_week_year = int(strftime("%G", $sec, $min, $hour, $day, $month, $year));
1697 return "$iso_week/$iso_week_year";
1698 });
1699 $prune_mark->($prune_list, $keep->{'keep-monthly'}, sub {
1700 my ($ctime) = @_;
1701 my (undef, undef, undef, undef, $month, $year) = localtime($ctime);
1702 return "$month/$year";
1703 });
1704 $prune_mark->($prune_list, $keep->{'keep-yearly'}, sub {
1705 my ($ctime) = @_;
1706 my $year = (localtime($ctime))[5];
1707 return "$year";
1708 });
1709
1710 foreach my $prune_entry (@{$prune_list}) {
1711 $prune_entry->{mark} //= 'remove';
1712 }
1713 }
1714
1715 sub volume_export {
1716 my ($cfg, $fh, $volid, $format, $snapshot, $base_snapshot, $with_snapshots) = @_;
1717
1718 my ($storeid, $volname) = parse_volume_id($volid, 1);
1719 die "cannot export volume '$volid'\n" if !$storeid;
1720 my $scfg = storage_config($cfg, $storeid);
1721 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1722 return $plugin->volume_export($scfg, $storeid, $fh, $volname, $format,
1723 $snapshot, $base_snapshot, $with_snapshots);
1724 }
1725
1726 sub volume_import {
1727 my ($cfg, $fh, $volid, $format, $base_snapshot, $with_snapshots, $allow_rename) = @_;
1728
1729 my ($storeid, $volname) = parse_volume_id($volid, 1);
1730 die "cannot import into volume '$volid'\n" if !$storeid;
1731 my $scfg = storage_config($cfg, $storeid);
1732 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1733 return $plugin->volume_import($scfg, $storeid, $fh, $volname, $format,
1734 $base_snapshot, $with_snapshots, $allow_rename) // $volid;
1735 }
1736
1737 sub volume_export_formats {
1738 my ($cfg, $volid, $snapshot, $base_snapshot, $with_snapshots) = @_;
1739
1740 my ($storeid, $volname) = parse_volume_id($volid, 1);
1741 return if !$storeid;
1742 my $scfg = storage_config($cfg, $storeid);
1743 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1744 return $plugin->volume_export_formats($scfg, $storeid, $volname,
1745 $snapshot, $base_snapshot,
1746 $with_snapshots);
1747 }
1748
1749 sub volume_import_formats {
1750 my ($cfg, $volid, $base_snapshot, $with_snapshots) = @_;
1751
1752 my ($storeid, $volname) = parse_volume_id($volid, 1);
1753 return if !$storeid;
1754 my $scfg = storage_config($cfg, $storeid);
1755 my $plugin = PVE::Storage::Plugin->lookup($scfg->{type});
1756 return $plugin->volume_import_formats($scfg, $storeid, $volname,
1757 $base_snapshot, $with_snapshots);
1758 }
1759
1760 sub volume_transfer_formats {
1761 my ($cfg, $src_volid, $dst_volid, $snapshot, $base_snapshot, $with_snapshots) = @_;
1762 my @export_formats = volume_export_formats($cfg, $src_volid, $snapshot, $base_snapshot, $with_snapshots);
1763 my @import_formats = volume_import_formats($cfg, $dst_volid, $base_snapshot, $with_snapshots);
1764 my %import_hash = map { $_ => 1 } @import_formats;
1765 my @common = grep { $import_hash{$_} } @export_formats;
1766 return @common;
1767 }
1768
1769 sub volume_imported_message {
1770 my ($volid, $want_pattern) = @_;
1771
1772 if ($want_pattern) {
1773 return qr/successfully imported '([^']*)'$/;
1774 } else {
1775 return "successfully imported '$volid'\n";
1776 }
1777 }
1778
1779 # bash completion helper
1780
1781 sub complete_storage {
1782 my ($cmdname, $pname, $cvalue) = @_;
1783
1784 my $cfg = PVE::Storage::config();
1785
1786 return $cmdname eq 'add' ? [] : [ PVE::Storage::storage_ids($cfg) ];
1787 }
1788
1789 sub complete_storage_enabled {
1790 my ($cmdname, $pname, $cvalue) = @_;
1791
1792 my $res = [];
1793
1794 my $cfg = PVE::Storage::config();
1795 foreach my $sid (keys %{$cfg->{ids}}) {
1796 next if !storage_check_enabled($cfg, $sid, undef, 1);
1797 push @$res, $sid;
1798 }
1799 return $res;
1800 }
1801
1802 sub complete_content_type {
1803 my ($cmdname, $pname, $cvalue) = @_;
1804
1805 return [qw(rootdir images vztmpl iso backup snippets)];
1806 }
1807
1808 sub complete_volume {
1809 my ($cmdname, $pname, $cvalue) = @_;
1810
1811 my $cfg = config();
1812
1813 my $storage_list = complete_storage_enabled();
1814
1815 if ($cvalue =~ m/^([^:]+):/) {
1816 $storage_list = [ $1 ];
1817 } else {
1818 if (scalar(@$storage_list) > 1) {
1819 # only list storage IDs to avoid large listings
1820 my $res = [];
1821 foreach my $storeid (@$storage_list) {
1822 # Hack: simply return 2 artificial values, so that
1823 # completions does not finish
1824 push @$res, "$storeid:volname", "$storeid:...";
1825 }
1826 return $res;
1827 }
1828 }
1829
1830 my $res = [];
1831 foreach my $storeid (@$storage_list) {
1832 my $vollist = PVE::Storage::volume_list($cfg, $storeid);
1833
1834 foreach my $item (@$vollist) {
1835 push @$res, $item->{volid};
1836 }
1837 }
1838
1839 return $res;
1840 }
1841
1842 # Various io-heavy operations require io/bandwidth limits which can be
1843 # configured on multiple levels: The global defaults in datacenter.cfg, and
1844 # per-storage overrides. When we want to do a restore from storage A to storage
1845 # B, we should take the smaller limit defined for storages A and B, and if no
1846 # such limit was specified, use the one from datacenter.cfg.
1847 sub get_bandwidth_limit {
1848 my ($operation, $storage_list, $override) = @_;
1849
1850 # called for each limit (global, per-storage) with the 'default' and the
1851 # $operation limit and should udpate $override for every limit affecting
1852 # us.
1853 my $use_global_limits = 0;
1854 my $apply_limit = sub {
1855 my ($bwlimit) = @_;
1856 if (defined($bwlimit)) {
1857 my $limits = PVE::JSONSchema::parse_property_string('bwlimit', $bwlimit);
1858 my $limit = $limits->{$operation} // $limits->{default};
1859 if (defined($limit)) {
1860 if (!$override || $limit < $override) {
1861 $override = $limit;
1862 }
1863 return;
1864 }
1865 }
1866 # If there was no applicable limit, try to apply the global ones.
1867 $use_global_limits = 1;
1868 };
1869
1870 my ($rpcenv, $authuser);
1871 if (defined($override)) {
1872 $rpcenv = PVE::RPCEnvironment->get();
1873 $authuser = $rpcenv->get_user();
1874 }
1875
1876 # Apply per-storage limits - if there are storages involved.
1877 if (defined($storage_list) && @$storage_list) {
1878 my $config = config();
1879
1880 # The Datastore.Allocate permission allows us to modify the per-storage
1881 # limits, therefore it also allows us to override them.
1882 # Since we have most likely multiple storages to check, do a quick check on
1883 # the general '/storage' path to see if we can skip the checks entirely:
1884 return $override if $rpcenv && $rpcenv->check($authuser, '/storage', ['Datastore.Allocate'], 1);
1885
1886 my %done;
1887 foreach my $storage (@$storage_list) {
1888 next if !defined($storage);
1889 # Avoid duplicate checks:
1890 next if $done{$storage};
1891 $done{$storage} = 1;
1892
1893 # Otherwise we may still have individual /storage/$ID permissions:
1894 if (!$rpcenv || !$rpcenv->check($authuser, "/storage/$storage", ['Datastore.Allocate'], 1)) {
1895 # And if not: apply the limits.
1896 my $storecfg = storage_config($config, $storage);
1897 $apply_limit->($storecfg->{bwlimit});
1898 }
1899 }
1900
1901 # Storage limits take precedence over the datacenter defaults, so if
1902 # a limit was applied:
1903 return $override if !$use_global_limits;
1904 }
1905
1906 # Sys.Modify on '/' means we can change datacenter.cfg which contains the
1907 # global default limits.
1908 if (!$rpcenv || !$rpcenv->check($authuser, '/', ['Sys.Modify'], 1)) {
1909 # So if we cannot modify global limits, apply them to our currently
1910 # requested override.
1911 my $dc = cfs_read_file('datacenter.cfg');
1912 $apply_limit->($dc->{bwlimit});
1913 }
1914
1915 return $override;
1916 }
1917
1918 # checks if the storage id is available and dies if not
1919 sub assert_sid_unused {
1920 my ($sid) = @_;
1921
1922 my $cfg = config();
1923 if (my $scfg = storage_config($cfg, $sid, 1)) {
1924 die "storage ID '$sid' already defined\n";
1925 }
1926
1927 return undef;
1928 }
1929
1930 1;
Storage library