1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
|
#!/usr/bin/env python
# $Id$
#
# Copyright (C) 2014 Dragon Research Labs ("DRL")
# Portions copyright (C) 2009--2013 Internet Systems Consortium ("ISC")
# Portions copyright (C) 2007--2008 American Registry for Internet Numbers ("ARIN")
#
# Permission to use, copy, modify, and distribute this software for any
# purpose with or without fee is hereby granted, provided that the above
# copyright notices and this permission notice appear in all copies.
#
# THE SOFTWARE IS PROVIDED "AS IS" AND DRL, ISC, AND ARIN DISCLAIM ALL
# WARRANTIES WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED
# WARRANTIES OF MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL DRL,
# ISC, OR ARIN BE LIABLE FOR ANY SPECIAL, DIRECT, INDIRECT, OR
# CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM LOSS
# OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT,
# NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION
# WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
"""
Start servers, using config file to figure out which servers the user
wants started.
"""
import os
import pwd
import sys
import time
import signal
import logging
import argparse
import subprocess
import rpki.log
import rpki.config
import rpki.autoconf
import rpki.daemonize
from logging.handlers import SysLogHandler
logger = logging.getLogger(__name__)
signames = dict((getattr(signal, sig), sig)
for sig in dir(signal)
if sig.startswith("SIG")
and sig.isalnum()
and sig.isupper()
and isinstance(getattr(signal, sig), int))
# TODO:
#
# * Logging configuration is a mess. Daemons should be handling this
# for themselves, from rpki.conf, and there should be a way to configure
# logging for rpki-nanny itself.
#
# * Perhaps we should re-read the config file so we can turn individual
# daemons on and off? Or is that unnecessary complexity?
#
# * rpki-nanny should probably daemonize itself before forking.
class Daemon(object):
"""
Representation and control of one daemon under our care.
"""
def __init__(self, name):
self.name = name
self.proc = None
self.next_restart = 0
if cfg.getboolean("start_" + name, False):
log_file = os.path.join(args.log_directory, name + ".log")
self.cmd = (os.path.join(rpki.autoconf.libexecdir, name),
"--foreground",
"--log-level", args.log_level)
if args.log_file:
self.cmd += ("--log-file", log_file)
elif args.log_rotating_file_kbytes:
self.cmd += ("--log-rotating-file", log_file,
args.log_rotating_file_kbytes, args.log_backup_count)
elif args.log_rotating_file_hours:
self.cmd += ("--log-timed-rotating-file", log_file,
args.log_rotating_file_hours, args.log_backup_count)
else:
self.cmd += ("--log-syslog", args.log_syslog)
else:
self.cmd = ()
def start_maybe(self, output):
if self.cmd and self.proc is None and time.time() > self.next_restart:
try:
self.proc = subprocess.Popen(self.cmd, stdout = output, stderr = output)
self.next_restart = int(time.time() + args.restart_delay)
logger.debug("Started %s[%s]", self.name, self.proc.pid)
except:
logger.exception("Trouble starting %s", self.name)
def terminate(self):
if self.proc is not None:
try:
logger.debug("Terminating daemon %s[%s]", self.name, self.proc.pid)
self.proc.terminate()
except:
logger.exception("Trouble terminating %s[%s]", self.name, self.proc.pid)
def delay(self):
return max(0, int(self.next_restart - time.time())) if self.cmd and self.proc is None else 0
def reap(self):
if self.proc is not None and self.proc.poll() is not None:
code = self.proc.wait()
if code < 0:
logger.warn("%s[%s] exited on signal %s",
self.name, self.proc.pid, signames.get(-code, "???"))
else:
logger.warn("%s[%s] exited with status %s",
self.name, self.proc.pid, code)
self.proc = None
class Signals(object):
"""
Convert POSIX signals into something we can use in a loop at main
program level. Assumes that we use signal.pause() to block, so
simply receiving the signal is enough to wake us up.
Calling the constructed Signals object with one or more signal
numbers returns True if any of those signals have been received,
and clears the internal flag for the first such signal.
"""
def __init__(self, *sigs):
self._active = set()
for sig in sigs:
signal.signal(sig, self._handler)
def _handler(self, sig, frame):
self._active.add(sig)
#logger.debug("Received %s", signames.get(sig, "???"))
def __call__(self, *sigs):
for sig in sigs:
try:
self._active.remove(sig)
return True
except KeyError:
pass
return False
def non_negative_integer(s):
if int(s) < 0:
raise ValueError
return s
def positive_integer(s):
if int(s) <= 0:
raise ValueError
return s
if __name__ == "__main__":
os.environ.update(TZ = "UTC")
time.tzset()
cfg = rpki.config.argparser(section = "myrpki", doc = __doc__)
cfg.add_argument("--restart-delay", type = positive_integer, default = 60,
help = "how long to wait before restarting a crashed daemon")
cfg.add_argument("--pidfile",
default = os.path.join(rpki.daemonize.default_pid_directory, "rpki-nanny.pid"),
help = "override default location of pid file")
cfg.add_boolean_argument("--daemonize", default = True,
help = "whether to daemonize")
cfg.add_boolean_argument("--capture-stdout-stderr", default = True,
help = "whether to capture daemon output incorrectly sent to stdout or stderr")
# This stuff is a mess. Daemons should control their own logging
# via rpki.conf settings, but we haven't written that yet, and
# this script is meant to be a replacement for rpki-start-servers,
# so leave the mess in place for the moment and clean up later.
cfg.argparser.add_argument("--log-directory", default = ".",
help = "where to write write log files when not using syslog")
cfg.argparser.add_argument("--log-backup-count", default = "7", type = non_negative_integer,
help = "keep this many old log files when rotating")
cfg.argparser.add_argument("--log-level", default = "warning",
choices = ("debug", "info", "warning", "error", "critical"),
help = "how verbosely to log")
group = cfg.argparser.add_mutually_exclusive_group()
group.add_argument("--log-file", action = "store_true",
help = "log to files, reopening if rotated away")
group.add_argument("--log-rotating-file-kbytes",type = non_negative_integer,
help = "log to files, rotating after this many kbytes")
group.add_argument("--log-rotating-file-hours", type = non_negative_integer,
help = "log to files, rotating after this many hours")
group.add_argument("--log-syslog", default = "daemon", nargs = "?",
choices = sorted(SysLogHandler.facility_names.keys()),
help = "log syslog")
args = cfg.argparser.parse_args()
# Drop privs before daemonizing or opening log file
pw = pwd.getpwnam(rpki.autoconf.RPKI_USER)
os.setgid(pw.pw_gid)
os.setuid(pw.pw_uid)
# Log control mess here is continuation of log control mess above:
# all the good names are taken by the pass-through kludge, we'd
# have to reimplement all the common logic to use it ourselves
# too. Just wire to stderr or rotating log file for now, using
# same log file scheme as set in /etc/defaults/ on Debian/Ubuntu
# and the log level wired to DEBUG, fix the whole logging mess later.
if args.daemonize:
log_handler = lambda: logging.handlers.TimedRotatingFileHandler(
filename = os.path.join(args.log_directory, "rpki-nanny.log"),
interval = 3,
backupCount = 56,
when = "H",
utc = True)
else:
log_handler = logging.StreamHandler
rpki.log.init(ident = "rpki-nanny",
args = argparse.Namespace(log_level = logging.DEBUG,
log_handler = log_handler))
if args.daemonize:
rpki.daemonize.daemon(pidfile = args.pidfile)
if args.capture_stdout_stderr:
try:
logger_pipe = os.pipe()
logger_pid = os.fork()
if logger_pid == 0:
os.close(logger_pipe[1])
with os.fdopen(logger_pipe[0]) as f:
for line in f:
logger.warn("Captured: %s", line.rstrip())
# Should never get here, but just in case
logger.error("[Unexpected EOF in stdout/stderr capture logger]")
sys.exit(1)
else:
os.close(logger_pipe[0])
except:
logger.exception("Trouble setting up stdout/stderr capture process")
sys.exit(1)
daemon_output = logger_pipe[1] if args.capture_stdout_stderr else None
signals = Signals(signal.SIGALRM, signal.SIGCHLD, signal.SIGTERM, signal.SIGINT)
daemons = [Daemon(name) for name in ("irdbd", "rpkid", "pubd", "rootd")]
exiting = False
try:
while not exiting or not all(daemon.proc is None for daemon in daemons):
if not exiting and signals(signal.SIGTERM, signal.SIGINT):
logger.info("Received exit signal")
exiting = True
for daemon in daemons:
daemon.terminate()
if not exiting:
for daemon in daemons:
daemon.start_maybe(daemon_output)
alarms = tuple(daemon.delay() for daemon in daemons)
signal.alarm(min(a for a in alarms if a > 0) + 1 if any(alarms) else 0)
if not signals(signal.SIGCHLD, signal.SIGALRM):
signal.pause()
for daemon in daemons:
daemon.reap()
if args.capture_stdout_stderr:
os.kill(logger_pid, signal.SIGTERM)
except:
logger.exception("Unhandled exception in main loop")
for daemon in daemons:
daemon.terminate()
sys.exit(1)
|
