1 # Hey Emacs, this is a -*- shell-script -*- !!!
3 # utility functions for ctdb event scripts
5 if [ -z "$CTDB_BASE" ] ; then
6 echo 'CTDB_BASE unset in CTDB functions file'
11 # CTDB_VARDIR is used elsewhere
12 # shellcheck disable=SC2034
13 CTDB_VARDIR="/usr/local/var/lib/ctdb"
14 ctdb_rundir="/usr/local/var/run/ctdb"
16 CTDB="${CTDB:-/usr/local/bin/ctdb}"
18 # Only (and always) override these variables in test code
20 if [ -z "$CTDB_SCRIPT_VARDIR" ] ; then
21 CTDB_SCRIPT_VARDIR="/usr/local/var/lib/ctdb/state"
24 if [ -z "$CTDB_SYS_ETCDIR" ] ; then
25 CTDB_SYS_ETCDIR="/etc"
28 if [ -z "$CTDB_HELPER_BINDIR" ] ; then
29 CTDB_HELPER_BINDIR="/usr/local/libexec/ctdb"
32 #######################################
33 # pull in a system config file, if any
35 rewrite_ctdb_options ()
39 _opts_defaults="mode=700"
40 # Get any extra options specified after colon
41 if [ "$CTDB_DBDIR" = "tmpfs" ] ; then
44 _opts="${CTDB_DBDIR#tmpfs:}"
46 # It is OK to repeat mount options - last value wins.
47 # CTDB_DBDIR_TMPFS_OPTIONS is used by ctdbd_wrapper
48 # shellcheck disable=SC2034
49 CTDB_DBDIR_TMPFS_OPTIONS="${_opts_defaults}${_opts:+,}${_opts}"
51 CTDB_DBDIR="${ctdb_rundir}/CTDB_DBDIR"
54 # shellcheck disable=SC2034
55 CTDB_DBDIR_TMPFS_OPTIONS=""
62 foo="${service_config:-${service_name}}"
63 if [ -n "$foo" ] ; then
69 if [ "$1" != "ctdb" ] ; then
77 if [ -f "${CTDB_SYS_ETCDIR}/sysconfig/$1" ]; then
78 . "${CTDB_SYS_ETCDIR}/sysconfig/$1"
79 elif [ -f "${CTDB_SYS_ETCDIR}/default/$1" ]; then
80 . "${CTDB_SYS_ETCDIR}/default/$1"
81 elif [ -f "${CTDB_BASE}/sysconfig/$1" ]; then
82 . "${CTDB_BASE}/sysconfig/$1"
85 if [ "$1" = "ctdb" ] ; then
86 _config="${CTDBD_CONF:-${CTDB_BASE}/ctdbd.conf}"
87 if [ -r "$_config" ] ; then
98 ##############################################################
100 # CTDB_SCRIPT_DEBUGLEVEL can be overwritten by setting it in a
101 # configuration file.
104 if [ "${CTDB_SCRIPT_DEBUGLEVEL:-NOTICE}" = "DEBUG" ] ; then
105 # If there are arguments then echo them. Otherwise expect to
106 # use stdin, which allows us to pass lots of debug using a
108 if [ -n "$1" ] ; then
111 sed -e 's@^@DEBUG: @'
114 if [ -z "$1" ] ; then
129 # Log given message or stdin to either syslog or a CTDB log file
130 # $1 is the tag passed to logger if syslog is in use.
135 case "$CTDB_LOGGING" in
137 if [ -n "$CTDB_LOGGING" ] ; then
138 _file="${CTDB_LOGGING#file:}"
140 _file="/usr/local/var/log/log.ctdb"
143 if [ -n "$*" ] ; then
151 # Handle all syslog:* variants here too. There's no tool to do
152 # the lossy things, so just use logger.
153 logger -t "ctdbd: ${_tag}" "$*"
158 # When things are run in the background in an eventscript then logging
159 # output might get lost. This is the "solution". :-)
160 background_with_logging ()
163 "$@" 2>&1 </dev/null |
164 script_log "${script_name}&"
170 ##############################################################
171 # check number of args for different events
177 echo "ERROR: must supply interface, IP and maskbits"
183 echo "ERROR: must supply old interface, new interface, IP and maskbits"
190 ##############################################################
191 # determine on what type of system (init style) we are running
194 # only do detection if not already set:
195 [ -z "$CTDB_INIT_STYLE" ] || return
197 if [ -x /sbin/startproc ]; then
198 CTDB_INIT_STYLE="suse"
199 elif [ -x /sbin/start-stop-daemon ]; then
200 CTDB_INIT_STYLE="debian"
202 CTDB_INIT_STYLE="redhat"
206 ######################################################
207 # simulate /sbin/service on platforms that don't have it
208 # _service() makes it easier to hook the service() function for
215 # do nothing, when no service was specified
216 [ -z "$_service_name" ] && return
218 if [ -x /sbin/service ]; then
219 $_nice /sbin/service "$_service_name" "$_op"
220 elif [ -x /usr/sbin/service ]; then
221 $_nice /usr/sbin/service "$_service_name" "$_op"
222 elif [ -x /bin/systemctl ]; then
223 $_nice /bin/systemctl "$_op" "$_service_name"
224 elif [ -x "${CTDB_SYS_ETCDIR}/init.d/${_service_name}" ]; then
225 $_nice "${CTDB_SYS_ETCDIR}/init.d/${_service_name}" "$_op"
226 elif [ -x "${CTDB_SYS_ETCDIR}/rc.d/init.d/${_service_name}" ]; then
227 $_nice "${CTDB_SYS_ETCDIR}/rc.d/init.d/${_service_name}" "$_op"
237 ######################################################
238 # simulate /sbin/service (niced) on platforms that don't have it
245 ######################################################
246 # Cached retrieval of PNN from local node. This never changes so why
247 # open a client connection to the server each time this is needed?
250 _pnn_file="${CTDB_SCRIPT_VARDIR}/my-pnn"
251 if [ ! -f "$_pnn_file" ] ; then
252 $CTDB pnn >"$_pnn_file"
258 # Cached retrieval of private IP address from local node. This never
260 ctdb_get_ip_address ()
262 _ip_addr_file="${CTDB_SCRIPT_VARDIR}/my-ip-address"
263 if [ ! -f "$_ip_addr_file" ] ; then
264 $CTDB -X nodestatus |
265 awk -F '|' 'NR == 2 { print $3 }' >"$_ip_addr_file"
268 # ip_address is used by caller
269 # shellcheck disable=SC2034
273 ######################################################
274 # wrapper around /proc/ settings to allow them to be hooked
276 # 1st arg is relative path under /proc/, 2nd arg is value to set
279 echo "$2" >"/proc/$1"
284 if [ -w "/proc/$1" ] ; then
289 ######################################################
290 # wrapper around getting file contents from /proc/ to allow
291 # this to be hooked for testing
292 # 1st arg is relative path under /proc/
298 ######################################################
299 # Print up to $_max kernel stack traces for processes named $_program
300 program_stack_traces ()
306 for _pid in $(pidof "$_prog") ; do
307 [ "$_count" -le "$_max" ] || break
309 # Do this first to avoid racing with process exit
310 _stack=$(get_proc "${_pid}/stack" 2>/dev/null)
311 if [ -n "$_stack" ] ; then
312 echo "Stack trace for ${_prog}[${_pid}]:"
314 _count=$((_count + 1))
319 ######################################################
320 # Ensure $service_name is set
321 assert_service_name ()
323 [ -n "$service_name" ] || die "INTERNAL ERROR: \$service_name not set"
326 ######################################################
327 # check a set of directories is available
328 # return 1 on a missing directory
329 # directories are read from stdin
330 ######################################################
331 ctdb_check_directories_probe()
333 while IFS="" read d ; do
339 [ -d "${d}/." ] || return 1
344 ######################################################
345 # check a set of directories is available
346 # directories are read from stdin
347 ######################################################
348 ctdb_check_directories()
350 ctdb_check_directories_probe || {
351 echo "ERROR: $service_name directory \"$d\" not available"
356 ######################################################
357 # check a set of tcp ports
358 # usage: ctdb_check_tcp_ports <ports...>
359 ######################################################
361 # This flag file is created when a service is initially started. It
362 # is deleted the first time TCP port checks for that service succeed.
363 # Until then ctdb_check_tcp_ports() prints a more subtle "error"
364 # message if a port check fails.
365 _ctdb_check_tcp_common ()
368 _d="${CTDB_SCRIPT_VARDIR}/failcount"
369 _ctdb_service_started_file="${_d}/${service_name}.started"
372 ctdb_check_tcp_init ()
374 _ctdb_check_tcp_common
375 mkdir -p "${_ctdb_service_started_file%/*}" # dirname
376 touch "$_ctdb_service_started_file"
379 # Check whether something is listening on all of the given TCP ports
380 # using the "ctdb checktcpport" command.
381 ctdb_check_tcp_ports()
383 if [ -z "$1" ] ; then
384 echo "INTERNAL ERROR: ctdb_check_tcp_ports - no ports specified"
388 for _p ; do # process each function argument (port)
389 _cmd="$CTDB checktcpport $_p"
394 echo "$service_name not listening on TCP port $_p"
398 # Couldn't bind, something already listening, next port
402 echo "unexpected error (${_ret}) running \"${_cmd}\""
403 if [ -n "$_out" ] ; then
411 # All ports listening
415 ######################################################
416 # check a unix socket
417 # usage: ctdb_check_unix_socket SERVICE_NAME <socket_path>
418 ######################################################
419 ctdb_check_unix_socket() {
421 [ -z "$socket_path" ] && return
423 if ! netstat --unix -a -n | grep -q "^unix.*LISTEN.*${socket_path}$"; then
424 echo "ERROR: $service_name socket $socket_path not found"
429 ######################################################
430 # check a command returns zero status
431 # usage: ctdb_check_command <command>
432 ######################################################
433 ctdb_check_command ()
435 _out=$("$@" 2>&1) || {
436 echo "ERROR: $* returned error"
437 if [ -n "$_out" ] ; then
444 ################################################
445 # kill off any TCP connections with the given IP
446 ################################################
447 kill_tcp_connections ()
453 if [ "$3" = "oneway" ] ; then
457 get_tcp_connections_for_ip "$_ip" | {
462 while read _dst _src; do
463 _destport="${_dst##*:}"
466 # we only do one-way killtcp for CIFS
467 139|445) __oneway=true ;;
470 echo "Killing TCP connection $_src $_dst"
471 _connections="${_connections}${_nl}${_src} ${_dst}"
472 if ! $__oneway ; then
473 _connections="${_connections}${_nl}${_dst} ${_src}"
476 _killcount=$((_killcount + 1))
479 if [ $_killcount -eq 0 ] ; then
483 echo "$_connections" | \
484 "${CTDB_HELPER_BINDIR}/ctdb_killtcp" "$_iface" || {
485 echo "Failed to kill TCP connections"
489 _remaining=$(get_tcp_connections_for_ip "$_ip" | wc -l)
491 if [ "$_remaining" -eq 0 ] ; then
492 echo "Killed $_killcount TCP connections to released IP $_ip"
496 _t="${_remaining}/${_killcount}"
497 echo "Failed to kill TCP connections for IP $_ip (${_t} remaining)"
501 ##################################################################
502 # kill off the local end for any TCP connections with the given IP
503 ##################################################################
504 kill_tcp_connections_local_only ()
506 kill_tcp_connections "$@" "oneway"
509 ##################################################################
510 # tickle any TCP connections with the given IP
511 ##################################################################
512 tickle_tcp_connections ()
516 # Get connections, both directions
517 _conns=$(get_tcp_connections_for_ip "$_ip" | \
518 awk '{ print $1, $2 ; print $2, $1 }')
520 echo "$_conns" | awk '{ print "Tickle TCP connection", $1, $2 }'
521 echo "$_conns" | ctdb tickle
524 get_tcp_connections_for_ip ()
528 ss -tn state established "src [$_ip]" | awk 'NR > 1 {print $3, $4}'
531 ########################################################
539 # Ensure interface is up
540 ip link set "$_iface" up || \
541 die "Failed to bringup interface $_iface"
543 # Only need to define broadcast for IPv4
549 # Intentionally unquoted multi-word value here
550 # shellcheck disable=SC2086
551 ip addr add "$_ip/$_maskbits" $_bcast dev "$_iface" || {
552 echo "Failed to add $_ip/$_maskbits on dev $_iface"
556 # Wait 5 seconds for IPv6 addresses to stop being tentative...
557 if [ -z "$_bcast" ] ; then
558 for _x in $(seq 1 10) ; do
559 ip addr show to "${_ip}/128" | grep -q "tentative" || break
563 # If the address was a duplicate then it won't be on the
564 # interface so flag an error.
565 _t=$(ip addr show to "${_ip}/128")
568 echo "Failed to add $_ip/$_maskbits on dev $_iface"
571 *tentative*|*dadfailed*)
572 echo "Failed to add $_ip/$_maskbits on dev $_iface"
573 ip addr del "$_ip/$_maskbits" dev "$_iface"
580 delete_ip_from_iface()
586 # This could be set globally for all interfaces but it is probably
587 # better to avoid surprises, so limit it the interfaces where CTDB
588 # has public IP addresses. There isn't anywhere else convenient
589 # to do this so just set it each time. This is much cheaper than
590 # remembering and re-adding secondaries.
591 set_proc "sys/net/ipv4/conf/${_iface}/promote_secondaries" 1
593 ip addr del "$_ip/$_maskbits" dev "$_iface" || {
594 echo "Failed to del $_ip on dev $_iface"
599 # If the given IP is hosted then print 2 items: maskbits and iface
608 ip addr show to "${_addr}/${_bits}" 2>/dev/null | \
609 awk 'NR == 1 { iface = $2; sub(":$", "", iface) ;
610 sub("@.*", "", iface) }
611 $1 ~ /inet/ { mask = $2; sub(".*/", "", mask);
617 _addr="${1%/*}" # Remove optional maskbits
619 # Intentional word splitting here
620 # shellcheck disable=SC2046
621 set -- $(ip_maskbits_iface "$_addr")
622 if [ -n "$1" ] ; then
625 echo "Removing public address $_addr/$_maskbits from device $_iface"
626 delete_ip_from_iface "$_iface" "$_addr" "$_maskbits" >/dev/null 2>&1
630 drop_all_public_ips ()
632 # _x is intentionally ignored
633 # shellcheck disable=SC2034
634 while read _ip _x ; do
636 done <"${CTDB_PUBLIC_ADDRESSES:-/dev/null}"
641 set_proc_maybe sys/net/ipv4/route/flush 1
642 set_proc_maybe sys/net/ipv6/route/flush 1
645 ########################################################
646 # Interface monitoring
648 # If the interface is a virtual one (e.g. VLAN) then get the
649 # underlying interface
650 interface_get_real ()
652 # Output of "ip link show <iface>"
655 # Extract the full interface description to see if it is a VLAN
656 _t=$(echo "$_iface_info" |
657 awk 'NR == 1 { iface = $2; sub(":$", "", iface) ;
661 # VLAN: use the underlying interface, after the '@'
665 # Not a regular VLAN. For backward compatibility, assume
666 # there is some other sort of VLAN that doesn't have the
667 # '@' in the output and only use what is before a '.'. If
668 # there is no '.' then this will be the whole interface
674 # Check whether an interface is operational
679 _iface_info=$(ip link show "$_iface" 2>&1) || {
680 echo "ERROR: Monitored interface ${_iface} does not exist"
685 # If the interface is a virtual one (e.g. VLAN) then get the
686 # underlying interface.
687 _realiface=$(interface_get_real "$_iface_info")
689 if _bi=$(get_proc "net/bonding/${_realiface}" 2>/dev/null) ; then
690 # This is a bond: various monitoring strategies
691 echo "$_bi" | grep -q 'Currently Active Slave: None' && {
692 echo "ERROR: No active slaves for bond device ${_realiface}"
695 echo "$_bi" | grep -q '^MII Status: up' || {
696 echo "ERROR: public network interface ${_realiface} is down"
699 echo "$_bi" | grep -q '^Bonding Mode: IEEE 802.3ad Dynamic link aggregation' && {
700 # This works around a bug in the driver where the
701 # overall bond status can be up but none of the actual
702 # physical interfaces have a link.
703 echo "$_bi" | grep 'MII Status:' | tail -n +2 | grep -q '^MII Status: up' || {
704 echo "ERROR: No active slaves for 802.ad bond device ${_realiface}"
714 # loopback is always working
718 # we don't know how to test ib links
722 ethtool "$_iface" | grep -q 'Link detected: yes' || {
723 # On some systems, this is not successful when a
724 # cable is plugged but the interface has not been
725 # brought up previously. Bring the interface up
727 ip link set "$_iface" up
728 ethtool "$_iface" | grep -q 'Link detected: yes' || {
729 echo "ERROR: No link on the public network interface ${_iface}"
739 ########################################################
741 _ctdb_counter_common () {
742 _service_name="${1:-${service_name:-${script_name}}}"
743 _counter_file="${CTDB_SCRIPT_VARDIR}/failcount/${_service_name}"
744 mkdir -p "${_counter_file%/*}" # dirname
746 # Some code passes an argument
747 # shellcheck disable=SC2120
748 ctdb_counter_init () {
749 _ctdb_counter_common "$1"
753 ctdb_counter_incr () {
754 _ctdb_counter_common "$1"
756 # unary counting using newlines!
757 echo >>"$_counter_file"
759 ctdb_counter_get () {
760 _ctdb_counter_common "$1"
762 stat -c "%s" "$_counter_file" 2>/dev/null || echo 0
765 ########################################################
767 ctdb_setup_service_state_dir ()
769 _s="${1:-${service_name}}"
771 _service_state_dir="${CTDB_SCRIPT_VARDIR}/service_state/${_s}"
772 mkdir -p "$_service_state_dir" ||
773 die "Error creating state dir \"${_service_state_dir}\""
775 echo "$_service_state_dir"
778 ########################################################
779 # Managed status history, for auto-start/stop
781 _ctdb_managed_common ()
783 _ctdb_managed_file="${CTDB_SCRIPT_VARDIR}/managed_history/${service_name}"
786 ctdb_service_managed ()
789 mkdir -p "${_ctdb_managed_file%/*}" # dirname
790 touch "$_ctdb_managed_file"
793 ctdb_service_unmanaged ()
796 rm -f "$_ctdb_managed_file"
799 is_ctdb_previously_managed_service ()
802 [ -f "$_ctdb_managed_file" ]
805 ##################################################################
806 # Reconfigure a service on demand
808 _ctdb_service_reconfigure_common ()
810 _d="${CTDB_SCRIPT_VARDIR}/service_status/${service_name}"
812 _ctdb_service_reconfigure_flag="$_d/reconfigure"
815 ctdb_service_needs_reconfigure ()
817 _ctdb_service_reconfigure_common
818 [ -e "$_ctdb_service_reconfigure_flag" ]
821 ctdb_service_set_reconfigure ()
823 _ctdb_service_reconfigure_common
824 >"$_ctdb_service_reconfigure_flag"
827 ctdb_service_unset_reconfigure ()
829 _ctdb_service_reconfigure_common
830 rm -f "$_ctdb_service_reconfigure_flag"
833 ctdb_service_reconfigure ()
835 echo "Reconfiguring service \"${service_name}\"..."
836 ctdb_service_unset_reconfigure
837 service_reconfigure || return $?
838 # Intentionally have this use $service_name as default
839 # shellcheck disable=SC2119
843 # Default service_reconfigure() function does nothing.
844 service_reconfigure ()
849 ##################################################################
850 # Does CTDB manage this service? - and associated auto-start/stop
852 ctdb_compat_managed_service ()
854 if [ "$1" = "yes" -a "$2" = "$service_name" ] ; then
855 CTDB_MANAGED_SERVICES="$CTDB_MANAGED_SERVICES $2"
859 is_ctdb_managed_service ()
863 # $t is used just for readability and to allow better accurate
864 # matching via leading/trailing spaces
865 t=" $CTDB_MANAGED_SERVICES "
867 # Return 0 if "<space>$service_name<space>" appears in $t
868 if [ "${t#* ${service_name} }" != "${t}" ] ; then
872 # If above didn't match then update $CTDB_MANAGED_SERVICES for
873 # backward compatibility and try again.
874 ctdb_compat_managed_service "$CTDB_MANAGES_VSFTPD" "vsftpd"
875 ctdb_compat_managed_service "$CTDB_MANAGES_SAMBA" "samba"
876 ctdb_compat_managed_service "$CTDB_MANAGES_WINBIND" "winbind"
877 ctdb_compat_managed_service "$CTDB_MANAGES_HTTPD" "apache2"
878 ctdb_compat_managed_service "$CTDB_MANAGES_HTTPD" "httpd"
879 ctdb_compat_managed_service "$CTDB_MANAGES_ISCSI" "iscsi"
880 ctdb_compat_managed_service "$CTDB_MANAGES_CLAMD" "clamd"
881 ctdb_compat_managed_service "$CTDB_MANAGES_NFS" "nfs"
883 t=" $CTDB_MANAGED_SERVICES "
885 # Return 0 if "<space>$service_name<space>" appears in $t
886 [ "${t#* ${service_name} }" != "${t}" ]
889 ctdb_service_start ()
891 # The service is marked managed if we've ever tried to start it.
894 service_start || return $?
896 # Intentionally have this use $service_name as default
897 # shellcheck disable=SC2119
904 ctdb_service_unmanaged
908 # Default service_start() and service_stop() functions.
910 # These may be overridden in an eventscript.
913 service "$service_name" start
918 service "$service_name" stop
921 ##################################################################
923 # This exists only for backward compatibility with 3rd party scripts
925 ctdb_standard_event_handler ()
933 if [ "$_family" = "inet6" ] ; then
934 _iptables_cmd="ip6tables"
936 _iptables_cmd="iptables"
939 # iptables doesn't like being re-entered, so flock-wrap it.
940 flock -w 30 "${CTDB_SCRIPT_VARDIR}/iptables.flock" "$_iptables_cmd" "$@"
943 # AIX (and perhaps others?) doesn't have mktemp
944 # type is commonly supported and more portable than which(1)
945 # shellcheck disable=SC2039
946 if ! type mktemp >/dev/null 2>&1 ; then
950 if [ "$1" = "-d" ] ; then
955 _hex10=$(dd if=/dev/urandom count=20 2>/dev/null | \
957 sed -e 's@\(..........\).*@\1@')
958 _t="${_d}/tmp.${_hex10}"
971 ######################################################################
972 # NFS callout handling
978 if [ -z "$CTDB_NFS_CALLOUT" ] ; then
979 CTDB_NFS_CALLOUT="${CTDB_BASE}/nfs-linux-kernel-callout"
981 # Always export, for statd callout
982 export CTDB_NFS_CALLOUT
984 # If the callout wants to use this then it must create it
985 export CTDB_NFS_CALLOUT_STATE_DIR="${_state_dir}/callout-state"
987 # Export, if set, for use by clustered NFS callouts
988 if [ -n "$CTDB_NFS_STATE_FS_TYPE" ] ; then
989 export CTDB_NFS_STATE_FS_TYPE
991 if [ -n "$CTDB_NFS_STATE_MNT" ] ; then
992 export CTDB_NFS_STATE_MNT
995 nfs_callout_cache="${_state_dir}/nfs_callout_cache"
996 nfs_callout_cache_callout="${nfs_callout_cache}/CTDB_NFS_CALLOUT"
997 nfs_callout_cache_ops="${nfs_callout_cache}/ops"
1000 nfs_callout_register ()
1002 mkdir -p "$nfs_callout_cache_ops"
1003 rm -f "$nfs_callout_cache_ops"/*
1005 echo "$CTDB_NFS_CALLOUT" >"$nfs_callout_cache_callout"
1007 _t=$(eval "$CTDB_NFS_CALLOUT" "register")
1008 if [ -n "$_t" ] ; then
1010 while IFS="" read _op ; do
1011 touch "${nfs_callout_cache_ops}/${_op}"
1014 touch "${nfs_callout_cache_ops}/ALL"
1020 # Re-run registration if $CTDB_NFS_CALLOUT has changed
1022 if [ -r "$nfs_callout_cache_callout" ] ; then
1023 read _prev <"$nfs_callout_cache_callout"
1025 if [ "$CTDB_NFS_CALLOUT" != "$_prev" ] ; then
1026 nfs_callout_register
1029 # Run the operation if it is registered...
1030 if [ -e "${nfs_callout_cache_ops}/${1}" ] || \
1031 [ -e "${nfs_callout_cache_ops}/ALL" ]; then
1032 eval "$CTDB_NFS_CALLOUT" "$@"
1036 ########################################################
1038 ########################################################
1044 tickledir="${CTDB_SCRIPT_VARDIR}/tickles"
1045 mkdir -p "$tickledir"
1047 # What public IPs do I hold?
1048 _pnn=$(ctdb_get_pnn)
1049 _ips=$($CTDB -X ip | awk -F'|' -v pnn="$_pnn" '$3 == pnn {print $2}')
1051 # IPs and port as ss filters
1053 for _ip in $_ips ; do
1054 _ip_filter="${_ip_filter}${_ip_filter:+ || }src [${_ip}]"
1056 _port_filter="sport == :${_port}"
1058 # Record connections to our public IPs in a temporary file.
1059 # This temporary file is in CTDB's private state directory and
1060 # $$ is used to avoid a very rare race involving CTDB's script
1061 # debugging. No security issue, nothing to see here...
1062 _my_connections="${tickledir}/${_port}.connections.$$"
1063 # Parentheses are needed around the filters for precedence but
1064 # the parentheses can't be empty!
1065 ss -tn state established \
1066 "${_ip_filter:+( ${_ip_filter} )}" \
1067 "${_port_filter:+( ${_port_filter} )}" |
1068 awk 'NR > 1 {print $4, $3}' |
1069 sort >"$_my_connections"
1071 # Record our current tickles in a temporary file
1072 _my_tickles="${tickledir}/${_port}.tickles.$$"
1073 for _i in $_ips ; do
1074 $CTDB -X gettickles "$_i" "$_port" |
1075 awk -F'|' 'NR > 1 { printf "%s:%s %s:%s\n", $2, $3, $4, $5 }'
1077 sort >"$_my_tickles"
1079 # Add tickles for connections that we haven't already got tickles for
1080 comm -23 "$_my_connections" "$_my_tickles" | \
1083 # Remove tickles for connections that are no longer there
1084 comm -13 "$_my_connections" "$_my_tickles" | \
1087 rm -f "$_my_connections" "$_my_tickles"
1089 # Remove stale files from killed scripts
1090 # Files can't have spaces in name, more portable than -print0/-0
1091 # shellcheck disable=SC2038
1092 (cd "$tickledir" && find . -type f -mmin +10 | xargs -r rm)
1095 ########################################################
1096 # load a site local config file
1097 ########################################################
1099 [ -n "$CTDB_RC_LOCAL" -a -x "$CTDB_RC_LOCAL" ] && {
1103 [ -x "${CTDB_BASE}/rc.local" ] && {
1104 . "${CTDB_BASE}/rc.local"
1107 [ -d "${CTDB_BASE}/rc.local.d" ] && {
1108 for i in "${CTDB_BASE}/rc.local.d"/* ; do
1109 [ -x "$i" ] && . "$i"
1113 script_name="${0##*/}" # basename