1
0
mirror of https://github.com/OpenNebula/one.git synced 2025-01-06 13:17:42 +03:00

F #1473: Update SSH socket cleaner

- replace timer with a inotify service

Signed-off-by: Petr Ospalý <pospaly@opennebula.io>
This commit is contained in:
Petr Ospalý 2020-05-20 10:17:12 +02:00
parent 2a47ced3b2
commit 214f61a3ee
No known key found for this signature in database
GPG Key ID: 96B7C54C30DA9F72
4 changed files with 39 additions and 26 deletions

View File

@ -1,8 +1,14 @@
[Unit]
Description=OpenNebula SSH persistent connection cleaner
After=remote-fs.target
[Service]
Group=oneadmin
User=oneadmin
Type=oneshot
Type=simple
Restart=on-failure
RestartSec=1
ExecStart=/usr/lib/one/sh/ssh-socks-cleaner
[Install]
WantedBy=default.target

View File

@ -1,11 +0,0 @@
[Unit]
Description=OpenNebula SSH persistent connection cleaner
After=remote-fs.target
[Timer]
OnActiveSec=0s
OnUnitActiveSec=30s
AccuracySec=1s
[Install]
WantedBy=default.target

View File

@ -5,7 +5,7 @@ After=mariadb.service mysql.service
After=opennebula-ssh-agent.service
Wants=opennebula-scheduler.service opennebula-hem.service
Wants=opennebula-ssh-agent.service
Wants=opennebula-ssh-socks-cleaner.timer
Wants=opennebula-ssh-socks-cleaner.service
[Service]
Type=notify

View File

@ -28,18 +28,36 @@
# closing of the master sockets.
# Possibly related to: https://bugzilla.mindrot.org/show_bug.cgi?id=3067
find /var/run/one/ssh-socks \
-maxdepth 1 \
-type s \
-name 'ctl-M-*.sock' \
-mmin +1 \
-print | while read -r sockname ; do
# atomic operation - no other ssh client should be disrupted
mv -f "$sockname" "$sockname"~todelete
SSH_SOCKS_DIR="${SSH_SOCKS_DIR:-/var/run/one/ssh-socks}"
# stop the multiplexing ('this' is just unnecessary gibberish)
ssh -S "$sockname"~todelete -O stop this </dev/null >/dev/null
trap 'echo "waiting for cleanup jobs to finish..." && wait && exit' INT QUIT TERM EXIT
# delete the old socket
rm -f "$sockname"~todelete
done
while true ; do
# wait for new socket to emerge and spawn a background job to clean it up
# when it reach its age (one minute)
if inotifywait "$SSH_SOCKS_DIR" >/dev/null 2>&1 ; then
# we run background job for basically one and each socket...
# VERY INEFFICIENT...
(
# no point to try to delete anything while the socket is still young
sleep 1m
# now we can start cleanup
find "$SSH_SOCKS_DIR" \
-maxdepth 1 \
-type s \
-name 'ctl-M-*.sock' \
-mmin +1 \
-print | while read -r sockname ; do
# atomic operation - no other ssh client should be disrupted
mv -f "$sockname" "$sockname"~todelete
# stop the multiplexing ('this' is just unnecessary gibberish)
ssh -S "$sockname"~todelete -O stop this </dev/null >/dev/null
# delete the old socket
rm -f "$sockname"~todelete
done
) &
fi
done