tyler.durden
/
icinga2
mirror of https://github.com/Icinga/icinga2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #7423 from Icinga/bugfix/cluster-config-object-create-ignore-on-error 

Fix and improve logging for runtime object sync
This commit is contained in:
Michael Friedrich 2019-08-15 10:23:22 +02:00 committed by GitHub
parent ada7c3d80e 2760748d78
commit 6ef6c0951f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 63 additions and 27 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

75
lib/remote/apilistener-configsync.cpp
View File

@ -39,7 +39,7 @@ void ApiListener::ConfigUpdateObjectHandler(const ConfigObject::Ptr& object, con
Value ApiListener::ConfigUpdateObjectAPIHandler(const MessageOrigin::Ptr& origin, const Dictionary::Ptr& params) Value ApiListener::ConfigUpdateObjectAPIHandler(const MessageOrigin::Ptr& origin, const Dictionary::Ptr& params)
{ {
Log(LogNotice, "ApiListener") Log(LogNotice, "ApiListener")
<< "Received update for object: " << JsonEncode(params); << "Received config update for object: " << JsonEncode(params);
/* check permissions */ /* check permissions */
ApiListener::Ptr listener = ApiListener::GetInstance(); ApiListener::Ptr listener = ApiListener::GetInstance();
@ -52,26 +52,32 @@ Value ApiListener::ConfigUpdateObjectAPIHandler(const MessageOrigin::Ptr& origin
Endpoint::Ptr endpoint = origin->FromClient->GetEndpoint(); Endpoint::Ptr endpoint = origin->FromClient->GetEndpoint();
String identity = origin->FromClient->GetIdentity();
/* discard messages if the client is not configured on this node */ /* discard messages if the client is not configured on this node */
if (!endpoint) { if (!endpoint) {
Log(LogNotice, "ApiListener") Log(LogNotice, "ApiListener")
<< "Discarding 'config update object' message from '" << origin->FromClient->GetIdentity() << "': Invalid endpoint origin (client not allowed)."; << "Discarding 'config update object' message from '" << identity << "': Invalid endpoint origin (client not allowed).";
return Empty; return Empty;
} }
Zone::Ptr endpointZone = endpoint->GetZone();
/* discard messages if the sender is in a child zone */ /* discard messages if the sender is in a child zone */
if (!Zone::GetLocalZone()->IsChildOf(endpoint->GetZone())) { if (!Zone::GetLocalZone()->IsChildOf(endpointZone)) {
Log(LogNotice, "ApiListener") Log(LogNotice, "ApiListener")
<< "Discarding 'config update object' message from '" << "Discarding 'config update object' message"
<< origin->FromClient->GetIdentity() << "' for object '" << " from '" << identity << "' (endpoint: '" << endpoint->GetName() << "', zone: '" << endpointZone->GetName() << "')"
<< objName << "' of type '" << objType << "'. Sender is in a child zone."; << " for object '" << objName << "' of type '" << objType << "'. Sender is in a child zone.";
return Empty; return Empty;
} }
/* ignore messages if the endpoint does not accept config */ /* ignore messages if the endpoint does not accept config */
if (!listener->GetAcceptConfig()) { if (!listener->GetAcceptConfig()) {
Log(LogWarning, "ApiListener") Log(LogWarning, "ApiListener")
<< "Ignoring config update from '" << origin->FromClient->GetIdentity() << "' for object '" << objName << "' of type '" << objType << "'. '" << listener->GetName() << "' does not accept config."; << "Ignoring config update"
<< " from '" << identity << "' (endpoint: '" << endpoint->GetName() << "', zone: '" << endpointZone->GetName() << "')"
<< " for object '" << objName << "' of type '" << objType << "'. '" << listener->GetName() << "' does not accept config.";
return Empty; return Empty;
} }
@ -82,6 +88,7 @@ Value ApiListener::ConfigUpdateObjectAPIHandler(const MessageOrigin::Ptr& origin
auto *ctype = dynamic_cast<ConfigType *>(ptype.get()); auto *ctype = dynamic_cast<ConfigType *>(ptype.get());
if (!ctype) { if (!ctype) {
// This never happens with icinga cluster endpoints, only with development errors.
Log(LogCritical, "ApiListener") Log(LogCritical, "ApiListener")
<< "Config type '" << objType << "' does not exist."; << "Config type '" << objType << "' does not exist.";
return Empty; return Empty;
@ -130,7 +137,9 @@ Value ApiListener::ConfigUpdateObjectAPIHandler(const MessageOrigin::Ptr& origin
/* update object attributes if version was changed or if this is a new object */ /* update object attributes if version was changed or if this is a new object */
if (newObject || objVersion <= object->GetVersion()) { if (newObject || objVersion <= object->GetVersion()) {
Log(LogNotice, "ApiListener") Log(LogNotice, "ApiListener")
<< "Discarding config update for object '" << object->GetName() << "Discarding config update"
<< " from '" << identity << "' (endpoint: '" << endpoint->GetName() << "', zone: '" << endpointZone->GetName() << "')"
<< " for object '" << object->GetName()
<< "': Object version " << std::fixed << object->GetVersion() << "': Object version " << std::fixed << object->GetVersion()
<< " is more recent than the received version " << std::fixed << objVersion << "."; << " is more recent than the received version " << std::fixed << objVersion << ".";
@ -138,7 +147,9 @@ Value ApiListener::ConfigUpdateObjectAPIHandler(const MessageOrigin::Ptr& origin
} }
Log(LogNotice, "ApiListener") Log(LogNotice, "ApiListener")
<< "Processing config update for object '" << object->GetName() << "Processing config update"
<< " from '" << identity << "' (endpoint: '" << endpoint->GetName() << "', zone: '" << endpointZone->GetName() << "')"
<< " for object '" << object->GetName()
<< "': Object version " << object->GetVersion() << "': Object version " << object->GetVersion()
<< " is older than the received version " << objVersion << "."; << " is older than the received version " << objVersion << ".";
@ -186,7 +197,7 @@ Value ApiListener::ConfigUpdateObjectAPIHandler(const MessageOrigin::Ptr& origin
Value ApiListener::ConfigDeleteObjectAPIHandler(const MessageOrigin::Ptr& origin, const Dictionary::Ptr& params) Value ApiListener::ConfigDeleteObjectAPIHandler(const MessageOrigin::Ptr& origin, const Dictionary::Ptr& params)
{ {
Log(LogNotice, "ApiListener") Log(LogNotice, "ApiListener")
<< "Received delete for object: " << JsonEncode(params); << "Received config delete for object: " << JsonEncode(params);
/* check permissions */ /* check permissions */
ApiListener::Ptr listener = ApiListener::GetInstance(); ApiListener::Ptr listener = ApiListener::GetInstance();
@ -194,52 +205,68 @@ Value ApiListener::ConfigDeleteObjectAPIHandler(const MessageOrigin::Ptr& origin
if (!listener) if (!listener)
return Empty; return Empty;
if (!listener->GetAcceptConfig()) { String objType = params->Get("type");
Log(LogWarning, "ApiListener") String objName = params->Get("name");
<< "Ignoring config delete. '" << listener->GetName() << "' does not accept config.";
return Empty;
}
Endpoint::Ptr endpoint = origin->FromClient->GetEndpoint(); Endpoint::Ptr endpoint = origin->FromClient->GetEndpoint();
String identity = origin->FromClient->GetIdentity();
if (!endpoint) { if (!endpoint) {
Log(LogNotice, "ApiListener") Log(LogNotice, "ApiListener")
<< "Discarding 'config delete object' message from '" << origin->FromClient->GetIdentity() << "': Invalid endpoint origin (client not allowed)."; << "Discarding 'config delete object' message from '" << identity << "': Invalid endpoint origin (client not allowed).";
return Empty; return Empty;
} }
Zone::Ptr endpointZone = endpoint->GetZone();
/* discard messages if the sender is in a child zone */ /* discard messages if the sender is in a child zone */
if (!Zone::GetLocalZone()->IsChildOf(endpoint->GetZone())) { if (!Zone::GetLocalZone()->IsChildOf(endpointZone)) {
Log(LogNotice, "ApiListener") Log(LogNotice, "ApiListener")
<< "Discarding 'config delete object' message from '" << "Discarding 'config delete object' message"
<< origin->FromClient->GetIdentity() << "'."; << " from '" << identity << "' (endpoint: '" << endpoint->GetName() << "', zone: '" << endpointZone->GetName() << "')"
<< " for object '" << objName << "' of type '" << objType << "'. Sender is in a child zone.";
return Empty;
}
if (!listener->GetAcceptConfig()) {
Log(LogWarning, "ApiListener")
<< "Ignoring config delete"
<< " from '" << identity << "' (endpoint: '" << endpoint->GetName() << "', zone: '" << endpointZone->GetName() << "')"
<< " for object '" << objName << "' of type '" << objType << "'. '" << listener->GetName() << "' does not accept config.";
return Empty; return Empty;
} }
/* delete the object */ /* delete the object */
Type::Ptr ptype = Type::GetByName(params->Get("type")); Type::Ptr ptype = Type::GetByName(objType);
auto *ctype = dynamic_cast<ConfigType *>(ptype.get()); auto *ctype = dynamic_cast<ConfigType *>(ptype.get());
if (!ctype) { if (!ctype) {
// This never happens with icinga cluster endpoints, only with development errors.
Log(LogCritical, "ApiListener") Log(LogCritical, "ApiListener")
<< "Config type '" << params->Get("type") << "' does not exist."; << "Config type '" << objType << "' does not exist.";
return Empty; return Empty;
} }
ConfigObject::Ptr object = ctype->GetObject(params->Get("name")); ConfigObject::Ptr object = ctype->GetObject(objName);
if (!object) { if (!object) {
Log(LogNotice, "ApiListener") Log(LogNotice, "ApiListener")
<< "Could not delete non-existent object '" << params->Get("name") << "' with type '" << params->Get("type") << "'."; << "Could not delete non-existent object '" << objName << "' with type '" << params->Get("type") << "'.";
return Empty; return Empty;
} }
if (object->GetPackage() != "_api") { if (object->GetPackage() != "_api") {
Log(LogCritical, "ApiListener") Log(LogCritical, "ApiListener")
<< "Could not delete object '" << object->GetName() << "': Not created by the API."; << "Could not delete object '" << objName << "': Not created by the API.";
return Empty; return Empty;
} }
Log(LogNotice, "ApiListener")
<< "Processing config delete"
<< " from '" << identity << "' (endpoint: '" << endpoint->GetName() << "', zone: '" << endpointZone->GetName() << "')"
<< " for object '" << object->GetName() << "'.";
Array::Ptr errors = new Array(); Array::Ptr errors = new Array();
/* /*

9
lib/remote/configobjectutility.cpp
View File

@ -240,8 +240,17 @@ bool ConfigObjectUtility::CreateObject(const Type::Ptr& type, const String& full
if (type->GetName() != "Comment" && type->GetName() != "Downtime") if (type->GetName() != "Comment" && type->GetName() != "Downtime")
ApiListener::UpdateObjectAuthority(); ApiListener::UpdateObjectAuthority();
// At this stage we should have a config object already. If not, it was ignored before.
auto *ctype = dynamic_cast<ConfigType *>(type.get());
ConfigObject::Ptr obj = ctype->GetObject(fullName);
if (obj) {
Log(LogInformation, "ConfigObjectUtility") Log(LogInformation, "ConfigObjectUtility")
<< "Created and activated object '" << fullName << "' of type '" << type->GetName() << "'."; << "Created and activated object '" << fullName << "' of type '" << type->GetName() << "'.";
} else {
Log(LogNotice, "ConfigObjectUtility")
<< "Object '" << fullName << "' was not created but ignored due to errors.";
}
} catch (const std::exception& ex) { } catch (const std::exception& ex) {
Utility::Remove(path); Utility::Remove(path);

2
lib/remote/jsonrpcconnection.cpp
View File

@ -277,7 +277,7 @@ void JsonRpcConnection::MessageHandler(const String& jsonString)
String method = vmethod; String method = vmethod;
Log(LogNotice, "JsonRpcConnection") Log(LogNotice, "JsonRpcConnection")
<< "Received '" << method << "' message from '" << m_Identity << "'"; << "Received '" << method << "' message from identity '" << m_Identity << "'.";
Dictionary::Ptr resultMessage = new Dictionary(); Dictionary::Ptr resultMessage = new Dictionary();