X-Git-Url: https://git.proxmox.com/?p=pve-storage.git;a=blobdiff_plain;f=PVE%2FStorage.pm;h=6ad88d3d41b92b9a975a91d8b89af3578a78c0c1;hp=55af5ee47efdf014d544eab4b7db76ff6a8c11f4;hb=775fdc697df0673805b91ae58653d6e5b006e889;hpb=d73060becde037ef30a977960610255fbed8a588 diff --git a/PVE/Storage.pm b/PVE/Storage.pm index 55af5ee..6ad88d3 100755 --- a/PVE/Storage.pm +++ b/PVE/Storage.pm @@ -2,17 +2,19 @@ package PVE::Storage; use strict; use warnings; +use Data::Dumper; use POSIX; use IO::Select; use IO::File; +use IO::Socket::IP; use File::Basename; use File::Path; use Cwd 'abs_path'; use Socket; -use PVE::Tools qw(run_command file_read_firstline); -use PVE::Cluster qw(cfs_read_file cfs_lock_file); +use PVE::Tools qw(run_command file_read_firstline dir_glob_foreach $IPV6RE); +use PVE::Cluster qw(cfs_read_file cfs_write_file cfs_lock_file); use PVE::Exception qw(raise_param_exc); use PVE::JSONSchema; use PVE::INotify; @@ -21,9 +23,12 @@ use PVE::RPCEnvironment; use PVE::Storage::Plugin; use PVE::Storage::DirPlugin; use PVE::Storage::LVMPlugin; +use PVE::Storage::LvmThinPlugin; use PVE::Storage::NFSPlugin; +use PVE::Storage::CIFSPlugin; use PVE::Storage::ISCSIPlugin; use PVE::Storage::RBDPlugin; +use PVE::Storage::CephFSPlugin; use PVE::Storage::SheepdogPlugin; use PVE::Storage::ISCSIDirectPlugin; use PVE::Storage::GlusterfsPlugin; @@ -31,18 +36,67 @@ use PVE::Storage::ZFSPoolPlugin; use PVE::Storage::ZFSPlugin; use PVE::Storage::DRBDPlugin; -# load and initialize all plugins +# Storage API version. Icrement it on changes in storage API interface. +use constant APIVER => 2; +# Age is the number of versions we're backward compatible with. +# This is like having 'current=APIVER' and age='APIAGE' in libtool, +# see https://www.gnu.org/software/libtool/manual/html_node/Libtool-versioning.html +use constant APIAGE => 1; + +# load standard plugins PVE::Storage::DirPlugin->register(); PVE::Storage::LVMPlugin->register(); +PVE::Storage::LvmThinPlugin->register(); PVE::Storage::NFSPlugin->register(); +PVE::Storage::CIFSPlugin->register(); PVE::Storage::ISCSIPlugin->register(); PVE::Storage::RBDPlugin->register(); +PVE::Storage::CephFSPlugin->register(); PVE::Storage::SheepdogPlugin->register(); PVE::Storage::ISCSIDirectPlugin->register(); PVE::Storage::GlusterfsPlugin->register(); PVE::Storage::ZFSPoolPlugin->register(); PVE::Storage::ZFSPlugin->register(); PVE::Storage::DRBDPlugin->register(); + +# load third-party plugins +if ( -d '/usr/share/perl5/PVE/Storage/Custom' ) { + dir_glob_foreach('/usr/share/perl5/PVE/Storage/Custom', '.*\.pm$', sub { + my ($file) = @_; + my $modname = 'PVE::Storage::Custom::' . $file; + $modname =~ s!\.pm$!!; + $file = 'PVE/Storage/Custom/' . $file; + + eval { + require $file; + + # Check perl interface: + die "not derived from PVE::Storage::Plugin\n" + if !$modname->isa('PVE::Storage::Plugin'); + die "does not provide an api() method\n" + if !$modname->can('api'); + # Check storage API version and that file is really storage plugin. + my $version = $modname->api(); + die "implements an API version newer than current ($version > " . APIVER . ")\n" + if $version > APIVER; + my $min_version = (APIVER - APIAGE); + die "API version too old, please update the plugin ($version < $min_version)\n" + if $version < $min_version; + import $file; + $modname->register(); + + # If we got this far and the API version is not the same, make some + # noise: + warn "Plugin \"$modname\" is implementing an older storage API, an upgrade is recommended\n" + if $version != APIVER; + }; + if ($@) { + warn "Error loading storage plugin \"$modname\": $@"; + } + }); +} + +# initialize all plugins PVE::Storage::Plugin->init(); my $UDEVADM = '/sbin/udevadm'; @@ -53,6 +107,12 @@ sub config { return cfs_read_file("storage.cfg"); } +sub write_config { + my ($cfg) = @_; + + cfs_write_file('storage.cfg', $cfg); +} + sub lock_storage_config { my ($code, $errmsg) = @_; @@ -66,7 +126,7 @@ sub lock_storage_config { sub storage_config { my ($cfg, $storeid, $noerr) = @_; - die "no storage id specified\n" if !$storeid; + die "no storage ID specified\n" if !$storeid; my $scfg = $cfg->{ids}->{$storeid}; @@ -104,6 +164,17 @@ sub storage_check_enabled { return storage_check_node($cfg, $storeid, $node, $noerr); } +# storage_can_replicate: +# return true if storage supports replication +# (volumes alocated with vdisk_alloc() has replication feature) +sub storage_can_replicate { + my ($cfg, $storeid, $format) = @_; + + my $scfg = storage_config($cfg, $storeid); + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + return $plugin->storage_can_replicate($scfg, $storeid, $format); +} + sub storage_ids { my ($cfg) = @_; @@ -222,6 +293,22 @@ sub volume_has_feature { } } +sub volume_snapshot_list { + my ($cfg, $volid) = @_; + + my ($storeid, $volname) = parse_volume_id($volid, 1); + if ($storeid) { + my $scfg = storage_config($cfg, $storeid); + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + return $plugin->volume_snapshot_list($scfg, $storeid, $volname); + } elsif ($volid =~ m|^(/.+)$| && -e $volid) { + die "send file/device '$volid' is not possible\n"; + } else { + die "unable to parse volume ID '$volid'\n"; + } + # return an empty array if dataset does not exist. +} + sub get_image_dir { my ($cfg, $storeid, $vmid) = @_; @@ -281,6 +368,9 @@ sub parse_vmid { return int($vmid); } +# NOTE: basename and basevmid are always undef for LVM-thin, where the +# clone -> base reference is not encoded in the volume ID. +# see note in PVE::Storage::LvmThinPlugin for details. sub parse_volname { my ($cfg, $volid) = @_; @@ -289,6 +379,9 @@ sub parse_volname { my $scfg = storage_config($cfg, $storeid); my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + + # returns ($vtype, $name, $vmid, $basename, $basevmid, $isBase, $format) + return $plugin->parse_volname($volname); } @@ -298,25 +391,72 @@ sub parse_volume_id { return PVE::Storage::Plugin::parse_volume_id($volid, $noerr); } -sub volume_is_base { - my ($cfg, $volid) = @_; +# test if we have read access to volid +sub check_volume_access { + my ($rpcenv, $user, $cfg, $vmid, $volid) = @_; my ($sid, $volname) = parse_volume_id($volid, 1); - return 0 if !$sid; - - if (my $scfg = $cfg->{ids}->{$sid}) { - my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); - my ($vtype, $name, $vmid, $basename, $basevmid, $isBase) = - $plugin->parse_volname($volname); - return $isBase ? 1 : 0; - } else { - # stale volid with undefined storage - so we can just guess - if ($volid =~ m/base-/) { - return 1; + if ($sid) { + my ($vtype, undef, $ownervm) = parse_volname($cfg, $volid); + if ($vtype eq 'iso' || $vtype eq 'vztmpl') { + # require at least read access to storage, (custom) templates/ISOs could be sensitive + $rpcenv->check_any($user, "/storage/$sid", ['Datastore.AllocateSpace', 'Datastore.Audit']); + } elsif (defined($ownervm) && defined($vmid) && ($ownervm == $vmid)) { + # we are owner - allow access + } elsif ($vtype eq 'backup' && $ownervm) { + $rpcenv->check($user, "/storage/$sid", ['Datastore.AllocateSpace']); + $rpcenv->check($user, "/vms/$ownervm", ['VM.Backup']); + } else { + # allow if we are Datastore administrator + $rpcenv->check($user, "/storage/$sid", ['Datastore.Allocate']); } + } else { + die "Only root can pass arbitrary filesystem paths." + if $user ne 'root@pam'; } + return undef; +} + +my $volume_is_base_and_used__no_lock = sub { + my ($scfg, $storeid, $plugin, $volname) = @_; + + my ($vtype, $name, $vmid, undef, undef, $isBase, undef) = + $plugin->parse_volname($volname); + + if ($isBase) { + my $vollist = $plugin->list_images($storeid, $scfg); + foreach my $info (@$vollist) { + my (undef, $tmpvolname) = parse_volume_id($info->{volid}); + my $basename = undef; + my $basevmid = undef; + + eval{ + (undef, undef, undef, $basename, $basevmid) = + $plugin->parse_volname($tmpvolname); + }; + + if ($basename && defined($basevmid) && $basevmid == $vmid && $basename eq $name) { + return 1; + } + } + } return 0; +}; + +# NOTE: this check does not work for LVM-thin, where the clone -> base +# reference is not encoded in the volume ID. +# see note in PVE::Storage::LvmThinPlugin for details. +sub volume_is_base_and_used { + my ($cfg, $volid) = @_; + + my ($storeid, $volname) = parse_volume_id($volid); + my $scfg = storage_config($cfg, $storeid); + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + + $plugin->cluster_lock_storage($storeid, $scfg->{shared}, undef, sub { + return &$volume_is_base_and_used__no_lock($scfg, $storeid, $plugin, $volname); + }); } # try to map a filesystem path to a volume identifier @@ -416,7 +556,7 @@ sub abs_filesystem_path { } sub storage_migrate { - my ($cfg, $volid, $target_host, $target_storeid, $target_volname) = @_; + my ($cfg, $volid, $target_sshinfo, $target_storeid, $target_volname, $base_snapshot, $snapshot, $ratelimit_bps, $insecure, $with_snapshots, $logfunc) = @_; my ($storeid, $volname) = parse_volume_id($volid); $target_volname = $volname if !$target_volname; @@ -430,102 +570,85 @@ sub storage_migrate { my $target_volid = "${target_storeid}:${target_volname}"; - my $errstr = "unable to migrate '$volid' to '${target_volid}' on host '$target_host'"; - - my $sshoptions = "-o 'BatchMode=yes'"; - my $ssh = "/usr/bin/ssh $sshoptions"; - - local $ENV{RSYNC_RSH} = $ssh; + my $target_ip = $target_sshinfo->{ip}; + my $errstr = "unable to migrate '$volid' to '${target_volid}' on host '$target_sshinfo->{name}'"; - # only implemented for file system based storage - if ($scfg->{path}) { - if ($tcfg->{path}) { + my $ssh = PVE::Cluster::ssh_info_to_command($target_sshinfo); + my $ssh_base = PVE::Cluster::ssh_info_to_command_base($target_sshinfo); + local $ENV{RSYNC_RSH} = PVE::Tools::cmd2string($ssh_base); - my $src_plugin = PVE::Storage::Plugin->lookup($scfg->{type}); - my $dst_plugin = PVE::Storage::Plugin->lookup($tcfg->{type}); - my $src = $src_plugin->path($scfg, $volname, $storeid); - my $dst = $dst_plugin->path($tcfg, $target_volname, $target_storeid); + my @cstream = ([ '/usr/bin/cstream', '-t', $ratelimit_bps ]) + if defined($ratelimit_bps); - my $dirname = dirname($dst); - - if ($tcfg->{shared}) { # we can do a local copy - - run_command(['/bin/mkdir', '-p', $dirname]); - - run_command(['/bin/cp', $src, $dst]); - - } else { - - run_command(['/usr/bin/ssh', "root\@${target_host}", - '/bin/mkdir', '-p', $dirname]); + my $migration_snapshot; + if (!defined($snapshot)) { + if ($scfg->{type} eq 'zfspool') { + $migration_snapshot = 1; + $snapshot = '__migration__'; + } + } - # we use rsync with --sparse, so we can't use --inplace, - # so we remove file on the target if it already exists to - # save space - my ($size, $format) = PVE::Storage::Plugin::file_size_info($src); - if ($format && ($format eq 'raw') && $size) { - run_command(['/usr/bin/ssh', "root\@${target_host}", - 'rm', '-f', $dst], - outfunc => sub {}); - } + my @formats = volume_transfer_formats($cfg, $volid, $volid, $snapshot, $base_snapshot, $with_snapshots); + die "cannot migrate from storage type '$scfg->{type}' to '$tcfg->{type}'\n" if !@formats; + my $format = $formats[0]; - my $cmd = ['/usr/bin/rsync', '--progress', '--sparse', '--whole-file', - $src, "root\@${target_host}:$dst"]; + my @insecurecmd; + if ($insecure) { + @insecurecmd = ('pvecm', 'mtunnel', '-run-command', 1); + if (my $network = $target_sshinfo->{network}) { + push @insecurecmd, '-migration_network', $network; + } + } - my $percent = -1; + $with_snapshots = $with_snapshots ? 1 : 0; # sanitize for passing as cli parameter + my $send = ['pvesm', 'export', $volid, $format, '-', '-with-snapshots', $with_snapshots]; + my $recv = [@$ssh, @insecurecmd, '--', 'pvesm', 'import', $volid, $format, '-', '-with-snapshots', $with_snapshots]; + if (defined($snapshot)) { + push @$send, '-snapshot', $snapshot + } + if ($migration_snapshot) { + push @$recv, '-delete-snapshot', $snapshot; + } - run_command($cmd, outfunc => sub { - my $line = shift; + if (defined($base_snapshot)) { + # Check if the snapshot exists on the remote side: + push @$send, '-base', $base_snapshot; + push @$recv, '-base', $base_snapshot; + } - if ($line =~ m/^\s*(\d+\s+(\d+)%\s.*)$/) { - if ($2 > $percent) { - $percent = $2; - print "rsync status: $1\n"; - *STDOUT->flush(); - } - } else { - print "$line\n"; - *STDOUT->flush(); - } - }); + volume_snapshot($cfg, $volid, $snapshot) if $migration_snapshot; + eval { + if ($insecure) { + open(my $info, '-|', @$recv) + or die "receive command failed: $!\n"; + my ($ip) = <$info> =~ /^($PVE::Tools::IPRE)$/ or die "no tunnel IP received\n"; + my ($port) = <$info> =~ /^(\d+)$/ or die "no tunnel port received\n"; + my $socket = IO::Socket::IP->new(PeerHost => $ip, PeerPort => $port, Type => SOCK_STREAM) + or die "failed to connect to tunnel at $ip:$port\n"; + # we won't be reading from the socket + shutdown($socket, 0); + run_command([$send, @cstream], output => '>&'.fileno($socket)); + # don't close the connection entirely otherwise the receiving end + # might not get all buffered data (and fails with 'connection reset by peer') + shutdown($socket, 1); + 1 while <$info>; # wait for the remote process to finish + # now close the socket + close($socket); + if (!close($info)) { # does waitpid() + die "import failed: $!\n" if $!; + die "import failed: exit code ".($?>>8)."\n"; } } else { - die "$errstr - target type '$tcfg->{type}' not implemented\n"; + run_command([$send, @cstream, $recv], logfunc => $logfunc); } - - } elsif ($scfg->{type} eq 'zfspool') { - - if ($tcfg->{type} eq 'zfspool') { - - die "$errstr - pool on target has not same name as source!" - if $tcfg->{pool} ne $scfg->{pool}; - - my (undef, $volname) = parse_volname($cfg, $volid); - - my $zfspath = "$scfg->{pool}\/$volname"; - - my $snap = "zfs snapshot $zfspath\@__migration__"; - - my $send = "zfs send -v $zfspath\@__migration__ \| ssh root\@$target_host zfs recv $zfspath"; - - my $destroy_target = "ssh root\@$target_host zfs destroy $zfspath\@__migration__"; - run_command($snap); - eval{ - run_command($send); - }; - my $err; - if ($err = $@){ - run_command("zfs destroy $zfspath\@__migration__"); - die $err; - } - run_command($destroy_target); - - } else { - die "$errstr - target type $tcfg->{type} is not valid\n"; - } - } else { - die "$errstr - source type '$scfg->{type}' not implemented\n"; + }; + my $err = $@; + warn "send/receive failed, cleaning up snapshot(s)..\n" if $err; + if ($migration_snapshot) { + eval { volume_snapshot_delete($cfg, $volid, $snapshot, 0) }; + warn "could not remove source snapshot: $@\n" if $@; } + die $err if $err; } sub vdisk_clone { @@ -564,10 +687,34 @@ sub vdisk_create_base { }); } +sub map_volume { + my ($cfg, $volid, $snapname) = @_; + + my ($storeid, $volname) = parse_volume_id($volid); + + my $scfg = storage_config($cfg, $storeid); + + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + + return $plugin->map_volume($storeid, $scfg, $volname, $snapname); +} + +sub unmap_volume { + my ($cfg, $volid, $snapname) = @_; + + my ($storeid, $volname) = parse_volume_id($volid); + + my $scfg = storage_config($cfg, $storeid); + + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + + return $plugin->unmap_volume($storeid, $scfg, $volname, $snapname); +} + sub vdisk_alloc { my ($cfg, $storeid, $vmid, $fmt, $name, $size) = @_; - die "no storage id specified\n" if !$storeid; + die "no storage ID specified\n" if !$storeid; PVE::JSONSchema::parse_storage_id($storeid); @@ -600,9 +747,7 @@ sub vdisk_free { my ($cfg, $volid) = @_; my ($storeid, $volname) = parse_volume_id($volid); - my $scfg = storage_config($cfg, $storeid); - my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); activate_storage($cfg, $storeid); @@ -611,28 +756,13 @@ sub vdisk_free { # lock shared storage $plugin->cluster_lock_storage($storeid, $scfg->{shared}, undef, sub { + # LVM-thin allows deletion of still referenced base volumes! + die "base volume '$volname' is still in use by linked clones\n" + if &$volume_is_base_and_used__no_lock($scfg, $storeid, $plugin, $volname); - my ($vtype, $name, $vmid, undef, undef, $isBase) = + my (undef, undef, undef, undef, undef, $isBase, $format) = $plugin->parse_volname($volname); - if ($isBase) { - my $vollist = $plugin->list_images($storeid, $scfg); - foreach my $info (@$vollist) { - my (undef, $tmpvolname) = parse_volume_id($info->{volid}); - my $basename = undef; - my $basevmid = undef; - - eval{ - (undef, undef, undef, $basename, $basevmid) = - $plugin->parse_volname($tmpvolname); - }; - - if ($basename && defined($basevmid) && $basevmid == $vmid && $basename eq $name) { - die "base volume '$volname' is still in use " . - "(use by '$tmpvolname')\n"; - } - } - } - $cleanup_worker = $plugin->free_image($storeid, $scfg, $volname, $isBase); + $cleanup_worker = $plugin->free_image($storeid, $scfg, $volname, $isBase, $format); }); return if !$cleanup_worker; @@ -643,6 +773,48 @@ sub vdisk_free { $rpcenv->fork_worker('imgdel', undef, $authuser, $cleanup_worker); } +# lists all files in the snippets directory +sub snippets_list { + my ($cfg, $storeid) = @_; + + my $ids = $cfg->{ids}; + + storage_check_enabled($cfg, $storeid) if ($storeid); + + my $res = {}; + + foreach my $sid (keys %$ids) { + next if $storeid && $storeid ne $sid; + next if !storage_check_enabled($cfg, $sid, undef, 1); + + my $scfg = $ids->{$sid}; + next if !$scfg->{content}->{snippets}; + + activate_storage($cfg, $sid); + + if ($scfg->{path}) { + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + my $path = $plugin->get_subdir($scfg, 'snippets'); + + foreach my $fn (<$path/*>) { + next if -d $fn; + + push @{$res->{$sid}}, { + volid => "$sid:snippets/". basename($fn), + format => 'snippet', + size => -s $fn, + }; + } + } + + if ($res->{$sid}) { + @{$res->{$sid}} = sort {$a->{volid} cmp $b->{volid} } @{$res->{$sid}}; + } + } + + return $res; +} + #list iso or openvz template ($tt = ) sub template_list { my ($cfg, $storeid, $tt) = @_; @@ -755,6 +927,46 @@ sub vdisk_list { return $res; } +sub volume_list { + my ($cfg, $storeid, $vmid, $content) = @_; + + my @ctypes = qw(images vztmpl iso backup snippets); + + my $cts = $content ? [ $content ] : [ @ctypes ]; + + my $scfg = PVE::Storage::storage_config($cfg, $storeid); + + my $res = []; + foreach my $ct (@$cts) { + my $data; + if ($ct eq 'images') { + $data = vdisk_list($cfg, $storeid, $vmid); + } elsif ($ct eq 'iso' && !defined($vmid)) { + $data = template_list($cfg, $storeid, 'iso'); + } elsif ($ct eq 'vztmpl'&& !defined($vmid)) { + $data = template_list ($cfg, $storeid, 'vztmpl'); + } elsif ($ct eq 'backup') { + $data = template_list ($cfg, $storeid, 'backup'); + foreach my $item (@{$data->{$storeid}}) { + if (defined($vmid)) { + @{$data->{$storeid}} = grep { $_->{volid} =~ m/\S+-$vmid-\S+/ } @{$data->{$storeid}}; + } + } + } elsif ($ct eq 'snippets') { + $data = snippets_list($cfg, $storeid); + } + + next if !$data || !$data->{$storeid}; + + foreach my $item (@{$data->{$storeid}}) { + $item->{content} = $ct; + push @$res, $item; + } + } + + return $res; +} + sub uevent_seqnum { my $filename = "/sys/kernel/uevent_seqnum"; @@ -827,7 +1039,7 @@ sub deactivate_storage { } sub activate_volumes { - my ($cfg, $vollist, $exclusive) = @_; + my ($cfg, $vollist, $snapname) = @_; return if !($vollist && scalar(@$vollist)); @@ -845,12 +1057,12 @@ sub activate_volumes { my ($storeid, $volname) = parse_volume_id($volid); my $scfg = storage_config($cfg, $storeid); my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); - $plugin->activate_volume($storeid, $scfg, $volname, $exclusive, $cache); + $plugin->activate_volume($storeid, $scfg, $volname, $snapname, $cache); } } sub deactivate_volumes { - my ($cfg, $vollist) = @_; + my ($cfg, $vollist, $snapname) = @_; return if !($vollist && scalar(@$vollist)); @@ -864,7 +1076,7 @@ sub deactivate_volumes { my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); eval { - $plugin->deactivate_volume($storeid, $scfg, $volname, $cache); + $plugin->deactivate_volume($storeid, $scfg, $volname, $snapname, $cache); }; if (my $err = $@) { warn $err; @@ -872,23 +1084,22 @@ sub deactivate_volumes { } } - die "volume deativation failed: " . join(' ', @errlist) + die "volume deactivation failed: " . join(' ', @errlist) if scalar(@errlist); } sub storage_info { - my ($cfg, $content) = @_; + my ($cfg, $content, $includeformat) = @_; my $ids = $cfg->{ids}; my $info = {}; - + my @ctypes = PVE::Tools::split_list($content); - + my $slist = []; foreach my $storeid (keys %$ids) { - - next if !storage_check_enabled($cfg, $storeid, undef, 1); + my $storage_enabled = defined(storage_check_enabled($cfg, $storeid, undef, 1)); if (defined($content)) { my $want_ctype = 0; @@ -898,9 +1109,9 @@ sub storage_info { last; } } - next if !$want_ctype; + next if !$want_ctype || !$storage_enabled; } - + my $type = $ids->{$storeid}->{type}; $info->{$storeid} = { @@ -911,6 +1122,7 @@ sub storage_info { shared => $ids->{$storeid}->{shared} ? 1 : 0, content => PVE::Storage::Plugin::content_hash_to_string($ids->{$storeid}->{content}), active => 0, + enabled => $storage_enabled ? 1 : 0, }; push @$slist, $storeid; @@ -920,7 +1132,18 @@ sub storage_info { foreach my $storeid (keys %$ids) { my $scfg = $ids->{$storeid}; + next if !$info->{$storeid}; + next if !$info->{$storeid}->{enabled}; + + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + if ($includeformat) { + my $pd = $plugin->plugindata(); + $info->{$storeid}->{format} = $pd->{format} + if $pd->{format}; + $info->{$storeid}->{select_existing} = $pd->{select_existing} + if $pd->{select_existing}; + } eval { activate_storage($cfg, $storeid, $cache); }; if (my $err = $@) { @@ -928,14 +1151,12 @@ sub storage_info { next; } - my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); - my ($total, $avail, $used, $active); - eval { ($total, $avail, $used, $active) = $plugin->status($storeid, $scfg, $cache); }; + my ($total, $avail, $used, $active) = eval { $plugin->status($storeid, $scfg, $cache); }; warn $@ if $@; next if !$active; - $info->{$storeid}->{total} = $total; - $info->{$storeid}->{avail} = $avail; - $info->{$storeid}->{used} = $used; + $info->{$storeid}->{total} = int($total); + $info->{$storeid}->{avail} = int($avail); + $info->{$storeid}->{used} = int($used); $info->{$storeid}->{active} = $active; } @@ -980,19 +1201,57 @@ sub scan_nfs { return $res; } +sub scan_cifs { + my ($server_in, $user, $password, $domain) = @_; + + my $server; + if (!($server = resolv_server ($server_in))) { + die "unable to resolve address for server '${server_in}'\n"; + } + + # we support only Windows grater than 2012 cifsscan so use smb3 + my $cmd = ['/usr/bin/smbclient', '-m', 'smb3', '-d', '0', '-L', $server]; + if (defined($user)) { + die "password is required" if !defined($password); + push @$cmd, '-U', "$user\%$password"; + push @$cmd, '-W', $domain if defined($domain); + } else { + push @$cmd, '-N'; + } + + my $res = {}; + run_command($cmd, + outfunc => sub { + my $line = shift; + if ($line =~ m/(\S+)\s*Disk\s*(\S*)/) { + $res->{$1} = $2; + } elsif ($line =~ m/(NT_STATUS_(\S*))/) { + $res->{$1} = ''; + } + }, + errfunc => sub {}, + noerr => 1 + ); + + return $res; +} + sub scan_zfs { - my $cmd = ['zpool', 'list', '-H', '-o', 'name,size,free']; + my $cmd = ['zfs', 'list', '-t', 'filesystem', '-H', '-o', 'name,avail,used']; my $res = []; run_command($cmd, outfunc => sub { my $line = shift; if ($line =~m/^(\S+)\s+(\S+)\s+(\S+)$/) { - my ($pool, $size_str, $free_str) = ($1, $2, $3); + my ($pool, $size_str, $used_str) = ($1, $2, $3); my $size = PVE::Storage::ZFSPoolPlugin::zfs_parse_size($size_str); - my $free = PVE::Storage::ZFSPoolPlugin::zfs_parse_size($free_str); - push @$res, { pool => $pool, size => $size, free => $free }; + my $used = PVE::Storage::ZFSPoolPlugin::zfs_parse_size($used_str); + # ignore subvolumes generated by our ZFSPoolPlugin + return if $pool =~ m!/subvol-\d+-[^/]+$!; + return if $pool =~ m!/basevol-\d+-[^/]+$!; + push @$res, { pool => $pool, size => $size, free => $size-$used }; } }); @@ -1002,12 +1261,11 @@ sub scan_zfs { sub resolv_portal { my ($portal, $noerr) = @_; - if ($portal =~ m/^([^:]+)(:(\d+))?$/) { - my $server = $1; - my $port = $3; - + my ($server, $port) = PVE::Tools::parse_host_and_port($portal); + if ($server) { if (my $ip = resolv_server($server)) { $server = $ip; + $server = "[$server]" if $server =~ /^$IPV6RE$/; return $port ? "$server:$port" : $server; } } @@ -1016,62 +1274,6 @@ sub resolv_portal { raise_param_exc({ portal => "unable to resolve portal address '$portal'" }); } -# idea is from usbutils package (/usr/bin/usb-devices) script -sub __scan_usb_device { - my ($res, $devpath, $parent, $level) = @_; - - return if ! -d $devpath; - return if $level && $devpath !~ m/^.*[-.](\d+)$/; - my $port = $level ? int($1 - 1) : 0; - - my $busnum = int(file_read_firstline("$devpath/busnum")); - my $devnum = int(file_read_firstline("$devpath/devnum")); - - my $d = { - port => $port, - level => $level, - busnum => $busnum, - devnum => $devnum, - speed => file_read_firstline("$devpath/speed"), - class => hex(file_read_firstline("$devpath/bDeviceClass")), - vendid => file_read_firstline("$devpath/idVendor"), - prodid => file_read_firstline("$devpath/idProduct"), - }; - - if ($level) { - my $usbpath = $devpath; - $usbpath =~ s|^.*/\d+\-||; - $d->{usbpath} = $usbpath; - } - - my $product = file_read_firstline("$devpath/product"); - $d->{product} = $product if $product; - - my $manu = file_read_firstline("$devpath/manufacturer"); - $d->{manufacturer} = $manu if $manu; - - my $serial => file_read_firstline("$devpath/serial"); - $d->{serial} = $serial if $serial; - - push @$res, $d; - - foreach my $subdev (<$devpath/$busnum-*>) { - next if $subdev !~ m|/$busnum-[0-9]+(\.[0-9]+)*$|; - __scan_usb_device($res, $subdev, $devnum, $level + 1); - } - -}; - -sub scan_usb { - - my $devlist = []; - - foreach my $device () { - __scan_usb_device($devlist, $device, 0, 0); - } - - return $devlist; -} sub scan_iscsi { my ($portal_in) = @_; @@ -1162,4 +1364,327 @@ sub foreach_volid { } } +sub extract_vzdump_config_tar { + my ($archive, $conf_re) = @_; + + die "ERROR: file '$archive' does not exist\n" if ! -f $archive; + + my $pid = open(my $fh, '-|', 'tar', 'tf', $archive) || + die "unable to open file '$archive'\n"; + + my $file; + while (defined($file = <$fh>)) { + if ($file =~ $conf_re) { + $file = $1; # untaint + last; + } + } + + kill 15, $pid; + waitpid $pid, 0; + close $fh; + + die "ERROR: archive contains no configuration file\n" if !$file; + chomp $file; + + my $raw = ''; + my $out = sub { + my $output = shift; + $raw .= "$output\n"; + }; + + PVE::Tools::run_command(['tar', '-xpOf', $archive, $file, '--occurrence'], outfunc => $out); + + return wantarray ? ($raw, $file) : $raw; +} + +sub extract_vzdump_config_vma { + my ($archive, $comp) = @_; + + my $cmd; + my $raw = ''; + my $out = sub { + my $output = shift; + $raw .= "$output\n"; + }; + + + if ($comp) { + my $uncomp; + if ($comp eq 'gz') { + $uncomp = ["zcat", $archive]; + } elsif ($comp eq 'lzo') { + $uncomp = ["lzop", "-d", "-c", $archive]; + } else { + die "unknown compression method '$comp'\n"; + } + $cmd = [$uncomp, ["vma", "config", "-"]]; + + # in some cases, lzop/zcat exits with 1 when its stdout pipe is + # closed early by vma, detect this and ignore the exit code later + my $broken_pipe; + my $errstring; + my $err = sub { + my $output = shift; + if ($output =~ m/lzop: Broken pipe: / || $output =~ m/gzip: stdout: Broken pipe/) { + $broken_pipe = 1; + } elsif (!defined ($errstring) && $output !~ m/^\s*$/) { + $errstring = "Failed to extract config from VMA archive: $output\n"; + } + }; + + # in other cases, the pipeline will exit with exit code 141 + # because of the broken pipe, handle / ignore this as well + my $rc; + eval { + $rc = PVE::Tools::run_command($cmd, outfunc => $out, errfunc => $err, noerr => 1); + }; + my $rerr = $@; + + # use exit code if no stderr output and not just broken pipe + if (!$errstring && !$broken_pipe && $rc != 0 && $rc != 141) { + die "$rerr\n" if $rerr; + die "config extraction failed with exit code $rc\n"; + } + die "$errstring\n" if $errstring; + } else { + # simple case without compression and weird piping behaviour + PVE::Tools::run_command(["vma", "config", $archive], outfunc => $out); + } + + return wantarray ? ($raw, undef) : $raw; +} + +sub extract_vzdump_config { + my ($cfg, $volid) = @_; + + my $archive = abs_filesystem_path($cfg, $volid); + + if ($volid =~ /vzdump-(lxc|openvz)-\d+-(\d{4})_(\d{2})_(\d{2})-(\d{2})_(\d{2})_(\d{2})\.(tgz|(tar(\.(gz|lzo))?))$/) { + return extract_vzdump_config_tar($archive, qr!^(\./etc/vzdump/(pct|vps)\.conf)$!); + } elsif ($volid =~ /vzdump-qemu-\d+-(\d{4})_(\d{2})_(\d{2})-(\d{2})_(\d{2})_(\d{2})\.(tgz|((tar|vma)(\.(gz|lzo))?))$/) { + my $format; + my $comp; + if ($7 eq 'tgz') { + $format = 'tar'; + $comp = 'gz'; + } else { + $format = $9; + $comp = $11 if defined($11); + } + + if ($format eq 'tar') { + return extract_vzdump_config_tar($archive, qr!\(\./qemu-server\.conf\)!); + } else { + return extract_vzdump_config_vma($archive, $comp); + } + } else { + die "cannot determine backup guest type for backup archive '$volid'\n"; + } +} + +sub volume_export { + my ($cfg, $fh, $volid, $format, $snapshot, $base_snapshot, $with_snapshots) = @_; + + my ($storeid, $volname) = parse_volume_id($volid, 1); + die "cannot export volume '$volid'\n" if !$storeid; + my $scfg = storage_config($cfg, $storeid); + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + return $plugin->volume_export($scfg, $storeid, $fh, $volname, $format, + $snapshot, $base_snapshot, $with_snapshots); +} + +sub volume_import { + my ($cfg, $fh, $volid, $format, $base_snapshot, $with_snapshots) = @_; + + my ($storeid, $volname) = parse_volume_id($volid, 1); + die "cannot import into volume '$volid'\n" if !$storeid; + my $scfg = storage_config($cfg, $storeid); + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + return $plugin->volume_import($scfg, $storeid, $fh, $volname, $format, + $base_snapshot, $with_snapshots); +} + +sub volume_export_formats { + my ($cfg, $volid, $snapshot, $base_snapshot, $with_snapshots) = @_; + + my ($storeid, $volname) = parse_volume_id($volid, 1); + return if !$storeid; + my $scfg = storage_config($cfg, $storeid); + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + return $plugin->volume_export_formats($scfg, $storeid, $volname, + $snapshot, $base_snapshot, + $with_snapshots); +} + +sub volume_import_formats { + my ($cfg, $volid, $base_snapshot, $with_snapshots) = @_; + + my ($storeid, $volname) = parse_volume_id($volid, 1); + return if !$storeid; + my $scfg = storage_config($cfg, $storeid); + my $plugin = PVE::Storage::Plugin->lookup($scfg->{type}); + return $plugin->volume_import_formats($scfg, $storeid, $volname, + $base_snapshot, $with_snapshots); +} + +sub volume_transfer_formats { + my ($cfg, $src_volid, $dst_volid, $snapshot, $base_snapshot, $with_snapshots) = @_; + my @export_formats = volume_export_formats($cfg, $src_volid, $snapshot, $base_snapshot, $with_snapshots); + my @import_formats = volume_import_formats($cfg, $dst_volid, $base_snapshot, $with_snapshots); + my %import_hash = map { $_ => 1 } @import_formats; + my @common = grep { $import_hash{$_} } @export_formats; + return @common; +} + +# bash completion helper + +sub complete_storage { + my ($cmdname, $pname, $cvalue) = @_; + + my $cfg = PVE::Storage::config(); + + return $cmdname eq 'add' ? [] : [ PVE::Storage::storage_ids($cfg) ]; +} + +sub complete_storage_enabled { + my ($cmdname, $pname, $cvalue) = @_; + + my $res = []; + + my $cfg = PVE::Storage::config(); + foreach my $sid (keys %{$cfg->{ids}}) { + next if !storage_check_enabled($cfg, $sid, undef, 1); + push @$res, $sid; + } + return $res; +} + +sub complete_content_type { + my ($cmdname, $pname, $cvalue) = @_; + + return [qw(rootdir images vztmpl iso backup snippets)]; +} + +sub complete_volume { + my ($cmdname, $pname, $cvalue) = @_; + + my $cfg = config(); + + my $storage_list = complete_storage_enabled(); + + if ($cvalue =~ m/^([^:]+):/) { + $storage_list = [ $1 ]; + } else { + if (scalar(@$storage_list) > 1) { + # only list storage IDs to avoid large listings + my $res = []; + foreach my $storeid (@$storage_list) { + # Hack: simply return 2 artificial values, so that + # completions does not finish + push @$res, "$storeid:volname", "$storeid:..."; + } + return $res; + } + } + + my $res = []; + foreach my $storeid (@$storage_list) { + my $vollist = PVE::Storage::volume_list($cfg, $storeid); + + foreach my $item (@$vollist) { + push @$res, $item->{volid}; + } + } + + return $res; +} + +# Various io-heavy operations require io/bandwidth limits which can be +# configured on multiple levels: The global defaults in datacenter.cfg, and +# per-storage overrides. When we want to do a restore from storage A to storage +# B, we should take the smaller limit defined for storages A and B, and if no +# such limit was specified, use the one from datacenter.cfg. +sub get_bandwidth_limit { + my ($operation, $storage_list, $override) = @_; + + # called for each limit (global, per-storage) with the 'default' and the + # $operation limit and should udpate $override for every limit affecting + # us. + my $use_global_limits = 0; + my $apply_limit = sub { + my ($bwlimit) = @_; + if (defined($bwlimit)) { + my $limits = PVE::JSONSchema::parse_property_string('bwlimit', $bwlimit); + my $limit = $limits->{$operation} // $limits->{default}; + if (defined($limit)) { + if (!$override || $limit < $override) { + $override = $limit; + } + return; + } + } + # If there was no applicable limit, try to apply the global ones. + $use_global_limits = 1; + }; + + my ($rpcenv, $authuser); + if (defined($override)) { + $rpcenv = PVE::RPCEnvironment->get(); + $authuser = $rpcenv->get_user(); + } + + # Apply per-storage limits - if there are storages involved. + if (@$storage_list) { + my $config = config(); + + # The Datastore.Allocate permission allows us to modify the per-storage + # limits, therefore it also allows us to override them. + # Since we have most likely multiple storages to check, do a quick check on + # the general '/storage' path to see if we can skip the checks entirely: + return $override if $rpcenv && $rpcenv->check($authuser, '/storage', ['Datastore.Allocate'], 1); + + my %done; + foreach my $storage (@$storage_list) { + # Avoid duplicate checks: + next if $done{$storage}; + $done{$storage} = 1; + + # Otherwise we may still have individual /storage/$ID permissions: + if (!$rpcenv || !$rpcenv->check($authuser, "/storage/$storage", ['Datastore.Allocate'], 1)) { + # And if not: apply the limits. + my $storecfg = storage_config($config, $storage); + $apply_limit->($storecfg->{bwlimit}); + } + } + + # Storage limits take precedence over the datacenter defaults, so if + # a limit was applied: + return $override if !$use_global_limits; + } + + # Sys.Modify on '/' means we can change datacenter.cfg which contains the + # global default limits. + if (!$rpcenv || !$rpcenv->check($authuser, '/', ['Sys.Modify'], 1)) { + # So if we cannot modify global limits, apply them to our currently + # requested override. + my $dc = cfs_read_file('datacenter.cfg'); + $apply_limit->($dc->{bwlimit}); + } + + return $override; +} + +# checks if the storage id is available and dies if not +sub assert_sid_unused { + my ($sid) = @_; + + my $cfg = config(); + if (my $scfg = storage_config($cfg, $sid, 1)) { + die "storage ID '$sid' already defined\n"; + } + + return undef; +} + 1;