search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
docs: tweak formatting in pmrep(1) archive folio example
[pcp.git] / qa / 272
blobe255559b062af7ce762e2c29ea8ab7b1f3882470
1 #! /bin/sh
2 # PCP QA Test No. 272
3 # pmcd access control tests (used to be the second half of 051)
4 #
5 # Copyright (c) 1995-2002 Silicon Graphics, Inc. All Rights Reserved.
6 #
7
8 seq=`basename $0`
9 echo "QA output created by $seq"
10
11 # preliminary check
12 #
13 ./getpmcdhosts -n 2 -L -a sample -v 'pcp>=2' -s IRIX64 2>$seq.notrun >/dev/null
14 if [ $? -eq 1 ]; then
15 echo "$seq: [not run] `cat $seq.notrun`"
16 exit
17 fi
18 rm -f $seq.notrun
19
20 # get standard filters
21 . ./common.product
22 . ./common.filter
23 . ./common.check
24
25 rsignal=pmsignal
26 status=1 # failure is the default!
27
28 # pmcd may be quite some distance away
29 #
30 PMCD_CONNECT_TIMEOUT=30
31 PMCD_REQUEST_TIMEOUT=30
32
33 NETSTAT=netstat
34
35 export PMCD_CONNECT_TIMEOUT PMCD_REQUEST_TIMEOUT NETSTAT
36
37 # real QA test starts here
38
39 config=$PCP_PMCDCONF_PATH
40 oconfig=$tmp.config
41
42 # get FQDN
43 #
44 host=`hostname`
45 me=`_host_to_fqdn $host`
46 if [ -z "$me" ]
47 then
48 echo "Cannot get fully qualified domain name for $host"
49 exit
50 fi
51
52 _needclean=true
53
54 # _wait_for_pmcd_from_remote remote-host [max-wait]
55 #
56 _wait_for_pmcd_from_remote()
57 {
58 # 20 seconds default seems like a reasonble max time to get going
59 can_wait=${2-20}
60 i=0
61 dead=true
62 while [ $i -lt $can_wait ]
63 do
64 clients=`ssh $1 -q -n -l pcpqa "sh -c 'PMCD_PORT=$port pmprobe -h $me pmcd.numclients'" 2>/dev/null | sed -e 's/.* //'`
65 if [ $i -eq 0 ]
66 then
67 echo >>$seq.full
68 echo "+ ssh $1 -q -n -l pcpqa \"sh -c 'PMCD_PORT=$port pmprobe -h $me pmcd.numclients'\"" >>$seq.full
69 ssh $1 -q -n -l pcpqa "sh -c 'PMCD_PORT=$port pmprobe -h $me pmcd.numclients'" >>$seq.full 2>&1
70 echo "clients=\"$clients\"" >>$seq.full
71 fi
72 if [ ! -z "$clients" ]
73 then
74 if [ "$clients" -gt 0 ]
75 then
76 dead=false
77 break
78 fi
79 fi
80 sleep 1
81 i=`expr $i + 1`
82 done
83 if $dead
84 then
85 echo "Arrgghhh ... pmcd failed to start after $can_wait seconds"
86 ssh $1 -q -n -l pcpqa cat $PCP_PMCDLOG_PATH
87 ps $PCP_PS_ALL_FLAGS
88 status=2
89 exit $status
90 fi
91 }
92
93 cleanup()
94 {
95 if $_needclean
96 then
97 unset PMCD_PORT
98 [ -f $oconfig ] && $sudo cp $oconfig $config
99 # _change_config pmlogger on
100 $sudo $PCP_RC_DIR/pcp restart | _filter_pcp_start
101 _wait_for_pmcd
102 _wait_for_pmlogger
103 _needclean=false
104 fi
105 $sudo rm -f $tmp.*
106 }
107
108 trap "cleanup; exit \$status" 0 1 2 3 15
109
110 rm -f $seq.full
111 touch $seq.full
112
113 # real QA test starts here
114 port=`_get_port tcp 6060 6070`
115 if [ -z "$port" ]
116 then
117 echo "Arrggh ... no free TCP port in the range 6060 ... 6070"
118 $NETSTAT -a
119 exit 1
120 fi
121 echo "port=$port" >>$seq.full
122
123 # _change_config pmlogger off
124 $sudo $PCP_RC_DIR/pcp stop | _filter_pcp_stop
125
126 $sudo cp $config $oconfig
127
128 other1=bogus
129 other2=bogus
130
131 eval `./getpmcdhosts -n 2 -L -a sample -v 'pcp>=2' -s IRIX64 2>/dev/null \
132 | $PCP_AWK_PROG '{ if (NF >= 2) printf("other1=%s other2=%s\n",$1,$2); }'`
133
134 if [ "X$other1" = Xbogus -o "X$other2" = Xbogus ]
135 then
136 echo "Error: Unable to find two hosts configured with the sample PMDA"
137 echo "+ ./getpmcdhosts -D -n 2 -L -a sample -v 'pcp>=2' -s IRIX64 "
138 ./getpmcdhosts -D -n 2 -L -a sample -v 'pcp>=2' -s IRIX64
139 echo "Desperate: check all hosts in qa_hosts ..."
140 cat $tmp.hosts \
141 | while read host
142 do
143 echo "=== $host ==="
144 pminfo -b 1 -f -h $host pmcd.numagents pmcd.agent.status sample.seconds
145 done
146 exit 1
147 fi
148
149 list1=`_all_hostnames $other1`
150 if [ -z "$list1" ]
151 then
152 echo "Arrgh ... failed to expand other1=\"$other1\" to all hostnames"
153 echo "netstat reports ..."
154 ssh -q </dev/null $other1 -n -l pcpqa $NETSTAT -in
155 exit
156 fi
157 list2=`_all_hostnames $other2`
158 if [ -z "$list2" ]
159 then
160 echo "Arrgh ... failed to expand other2=\"$other2\" to all hostnames"
161 echo "netstat reports ..."
162 ssh -q </dev/null $other2 -n -l pcpqa $NETSTAT -in
163 exit
164 fi
165 echo "other1=$other1 list1=$list1" >>$seq.full
166 echo "other2=$other2 list2=$list2" >>$seq.full
167
168 cat >$tmp.access <<End-Of-File
169
170 [access]
171 allow $list1 : all;
172 disallow $list2 : all except fetch;
173 allow $list2 : maximum 1 connections;
174 End-Of-File
175
176 $sudo "sed -e '/\[access]/q' $oconfig | sed -e '/\[access]/d' >$config"
177 $sudo "cat $tmp.access >>$config"
178
179 echo >>$seq.full
180 echo "=== First pmcd.conf ===" >>$seq.full
181 cat $config >>$seq.full
182
183 # don'use the regular port ...
184 #
185 PMCD_PORT=$port
186 export PMCD_PORT
187
188 $sudo $PCP_RC_DIR/pcp restart | _filter_pcp_start
189 _wait_for_pmcd
190
191 #DEBUG# pmstore pmcd.control.traceconn 1
192 #DEBUG# pmstore pmcd.control.tracepdu 1
193 #DEBUG# pmstore pmcd.control.tracenobuf 1
194 #DEBUG# pmstore pmcd.control.debug 1
195
196 echo " checking default access for this host ..."
197 pminfo -f sample.long.million
198 pmstore sample.write_me 111
199
200 echo
201 echo " checking access for OTHERHOST1 (both should succeed)"
202 ssh -q $other1 -n -l pcpqa "sh -c 'PMCD_PORT=$port pminfo -h $me -f sample.long.million'"
203 ssh -q $other1 -n -l pcpqa "sh -c 'PMCD_PORT=$port pmstore -h $me sample.write_me 222'"
204
205 echo
206 echo " checking access for OTHERHOST2 (store should fail)"
207 ssh -q $other2 -n -l pcpqa "sh -c 'PMCD_PORT=$port pminfo -h $me -f sample.long.hundred'"
208 ssh -q $other2 -n -l pcpqa "sh -c 'PMCD_PORT=$port pmstore -h $me sample.write_me 333'"
209
210 echo
211 echo " checking connection limit for OTHERHOST2 (will exceed connection limit)"
212 ssh -q $other2 -n -l pcpqa "sh -c 'PMCD_PORT=$port pmval -h $me -t 666 sample.long.ten'" >/dev/null 2>&1 &
213 # guess at delay
214 #
215 sleep `expr $PMCD_CONNECT_TIMEOUT / 2`
216 # note on sed ... some systems appear to be able to deliver the socket
217 # reset by peer state ahead of completing the read() on the receiver side,
218 # so we never get the PCP error PDU ... there has been extensive analysis
219 # of this for pmcd on a Linux host and $other2 being an IRIX host, and it
220 # is _not_ a PCP protocol failure.
221 #
222 ssh -q $other2 -n -l pcpqa "sh -c 'PMCD_PORT=$port pminfo -h $me -f sample.long.one'" 2>&1 \
223 | sed \
224 -e 's/".*"/"OTHERHOST2"/' \
225 -e 's/IPC protocol failure/PMCD connection limit for this host exceeded/'
226 #DEBUG# echo "Trying connection limit pminfo again ..." >>$seq.full
227 #DEBUG# ssh -q $other2 -n -l pcpqa "sh -c 'PMCD_PORT=$port par -s -SS pminfo -Dall -h $me -f sample.long.one'" >>$seq.full 2>&1
228 ssh -q $other2 -n -l pcpqa $rsignal -a pmval > /dev/null 2>&1
229
230 echo "pmcd.log:======="
231 sed -n <$PCP_PMCDLOG_PATH -e '/endclient/{
232 s/\[[0-9]*]/[M]/
233 s/(fd [0-9]*)/(fd N)/
234 p
235 }'
236 echo "================"
237
238 echo "pmcd.log ..." >>$seq.full
239 cat $PCP_PMCDLOG_PATH >>$seq.full
240
241 iplist1=`_all_ipaddrs $other1`
242 if [ -z "$iplist1" ]
243 then
244 echo "QA Error: cannot generate all ip addrs from \"$other1\""
245 status=3
246 exit
247 fi
248 iplist2=`_all_ipaddrs $other2`
249 if [ -z "$iplist2" ]
250 then
251 echo "QA Error: cannot generate all ip addrs from \"$other2\""
252 status=3
253 exit
254 fi
255 iplist3=`_all_ipaddrs localhost`
256 if [ -z "$iplist3" ]
257 then
258 echo "QA Error: cannot generate all ip addrs from localhost"
259 status=3
260 exit
261 fi
262 echo "other1=$other1 iplist1=$iplist1" >>$seq.full
263 echo "other2=$other2 iplist2=$iplist2" >>$seq.full
264 echo "localhost iplist3=$iplist3" >>$seq.full
265
266 netlist2=`echo $iplist2,$iplist3 | sed -e 's/$/,/' -e 's/[0-9][0-9]*\.[0-9][0-9]*,/*,/g' -e 's/,$//'`
267
268 cat >$tmp.access <<End-Of-File
269
270 [access]
271 allow $iplist1 : all;
272 disallow $netlist2 : all except fetch;
273 disallow * : all;
274 End-Of-File
275
276 $sudo "sed -e '/\[access]/q' $oconfig | sed -e '/\[access]/d' >$config"
277 $sudo "cat $tmp.access >>$config"
278
279 echo >>$seq.full
280 echo "=== Second pmcd.conf ===" >>$seq.full
281 cat $config >>$seq.full
282
283 $sudo $PCP_RC_DIR/pcp restart | _filter_pcp_start
284 _wait_for_pmcd_from_remote $other1
285 ssh -q $other1 -n -l pcpqa "sh -c 'PMCD_PORT=$port pmstore -h $me pmcd.control.debug 4096'"
286
287 echo " checking default access for this host (store should fail) ..."
288
289 pminfo -f sample.long.million
290 pmstore sample.write_me 444
291
292 echo
293 echo " checking access for OTHERHOST1 (both should succeed)"
294 ssh -q $other1 -n -l pcpqa "sh -c 'PMCD_PORT=$port pminfo -h $me -f sample.long.million'"
295 ssh -q $other1 -n -l pcpqa "sh -c 'PMCD_PORT=$port pmstore -h $me sample.write_me 555'"
296
297 echo
298 echo " checking access for OTHERHOST2 (store should fail)"
299 ssh -q $other2 -n -l pcpqa "sh -c 'PMCD_PORT=$port pminfo -h $me -f sample.long.hundred'"
300 ssh -q $other2 -n -l pcpqa "sh -c 'PMCD_PORT=$port pmstore -h $me sample.write_me 666'"
301
302 echo
303 echo " checking default access for explicit/localhost (both should fail)"
304 pmstore -h localhost sample.write_me 21
305 pmstore -h $me sample.write_me 42
306
307 echo "pmcd.log:======="
308 sed -n <$PCP_PMCDLOG_PATH -e '/endclient/{
309 s/\[[0-9]*]/[M]/
310 s/(fd [0-9]*)/(fd N)/
311 p
312 }'
313 echo "================"
314
315 echo "pmcd.log ..." >>$seq.full
316 cat $PCP_PMCDLOG_PATH >>$seq.full
317
318 # success, all done
319 status=0
320 exit
Performance Co-Pilot is a system performance and analysis framework.