[moira.git] / afssync / INSTRUCTIONS

The executables are in /moira/bin/ on the moira server, with sources
in /mit/moiradev/src/afssync/.  Most of the commands are run on the
Moira server.

####	Set up a workspace						####

mkdir -p /moira/sync
cd /moira/sync

####	This is preparation for the resync, to save non-Moira users.    ####
First, get a recent copy of the prdb, and extract non-Moira entries:

	/moira/bin/udebug aggy -port 7002
	rcp -px root@aggy:/usr/afs/db/prdb.DB0 prdb.old
	/moira/bin/udebug aggy -port 7002
If the two udebugs show that the version changed, lather-rinse-repeat.
(udebug can be found in afsuser; "aggy" here and below is some DB server)
(Also check for "0 of them for write" at the end.  It might matter.)

	/moira/bin/pt_util -x -m -u -g -d prdb.extra -p prdb.old
	perl /moira/bin/pt_util.pl < prdb.extra > prdb.extra.sort
to extract and prepare the personal groups and special user entries in
the old prdb for being reincorporated into the new prdb.

	awk -F\| '$9 == 3 {print $1}' /backup/backup_1/users > /tmp/deactivated

and the following perl script:

#!/usr/athena/bin/perl -w

open(OUT, ">prdb.extra.trimmed");

for ( `cat /tmp/deactivated` ) {
    chop;
    $ex{$_} = 1;
}

$punt = 0;

foreach $L ( `cat prdb.extra.sort` ) {
    @w = split(/ /,$L);
    $_ = $w[0];
    if ( /:/ ) {
        @x = split(/:/,$w[0]);
        if ($ex{$x[0]}) {
            $punt=1;
        } else {
            $punt=0;
        }
    } else {
	# If we got here, we're either a user, a prefixless
	# group, or a group member.
	$punt = 0 if $w[0];
    }
    print OUT $L unless $punt == 1;
}

close(OUT);
exit 0;

to remove the personal groups for users who are deactivated

	awk '/^[^ ][^:]*@/ {printf "KERBEROS:%s\n",$1}' prdb.extra.trimmed \
		> foreign
	blanche afs-foreign-users -f foreign
Get a list of all the @andrew.cmu.edu type (non- athena.mit.edu cell)
users, and sync the Moira list afs-foreign-users to this list.
Moira then adds those entries to the group system:afs-foreign-users,
thus keeping them from being lost in the prdb resync.
Sanity checking the diffs before running the blanche command is recommended.

	awk '/^[^ 0-9][^:@]*$/ {printf "KERBEROS:%s@ATHENA.MIT.EDU\n",$1}' \
		prdb.extra.trimmed > oddities
	awk '/^[^ ][0-9.]* .*$/ {printf "KERBEROS:%s\n",$1}' prdb.extra.trimmed\
		 >> oddities
	echo "LIST:afs-foreign-users" >> oddities
	blanche afs-odd-entities -f oddities
Do the equivalent of afs-foreign-users for domestic users.  We make
the afs-foreign-users list a member of the more general afs-odd-entities.
Sanity checking the diffs before running the blanche command is recommended.

WAIT for the incremental updates from the `blanche` changes to complete.

####   Now the actual resync begins.  Incremental updates must stop.   ####

	touch /moira/afs/noafs
to disable AFS incremental updates during the synchronization.  The
afs.incr (?) will wait 30 minutes on an incremental update before
timing out, so the resync should complete in that time, or list
changes in Moira might need to be propagated by hand.

	/moira/bin/afssync prdb.moira
to dump the prdb data that is in Moira (users, groups, and group
memberships).  This step takes about ten minutes, but can be done
concurrently with the next few steps.

REPEAT the above commands, thus regenerating prdb.trimmed from a now
completely-up-to-date prdb.

*** Make sure the "afssync" command has completed ***

	cp prdb.moira prdb.new
	/moira/bin/pt_util -w -d prdb.extra.trimmed -p prdb.new \
		>& prdb.extra.err
This use of pt_util will presumably log errors about failed user
creations and list additions.  (To start over, do both the `cp` and
`pt_util` again.)  You can filter out the "User or group doesn't exist"
type of lines that were caused by a user deactivation with something
like:
	awk -F\| '$9 == 3 {print $1}' /backup/backup_1/users > /tmp/deactivated
	perl -e 'for(`cat /tmp/deactivated`){ chop; $ex{$_}=1;} \
		foreach $L (`cat prdb.extra.err`){ $f=0; \
		@w=split(/[ :]/,$L); for(@w){ $f=1 if $ex{$_}; } \
		next if $f; print $L; }'
Now, back to the resync.

The only remaining errors should be errors creating system:foo groups,
be cause they already exist.  These generally mean that that group has
an odd user on it (root instance, IP acl, etc.) and can safely be
ignored.

Errors of the form:
Error while creating dcctdw:foo: Badly formed name (group prefix doesn't match owner?)
are probably an indication that a user with personal groups had a
username change (in the past they have also meant that a user with
personal groups was deactivated and the uid was re-used (this was
becasue we didn't trim the prdb.extra.sort file in the past.))
Assuming htese errors are due to a username change, the groups should
be renamed, and you should regenerate prdb.extra.trimmed starting with
a fresh prdb from aggy.  (You may want to abort and
rm /moira/afs/noafs and try again later.)

	pts listmax > prdb.listmax
	foreach i ( <db servers> )
	    rsh $i -l root -x /bin/athena/detach -a 	# detach packs
	    rsh $i -l root -x rm -f /usr/afs/db/{prdb.new,pre-resync-prdb}
	    rcp -px prdb.new root@${i}:/usr/afs/db/prdb.new
	end						# staging
	foreach i ( <db servers> )
	    bos shutdown $i ptserver -wait
	    bos exec $i "mv /usr/afs/db/prdb.DB0 /usr/afs/db/pre-resync-prdb; rm /usr/afs/db/prdb.DB*; mv /usr/afs/db/prdb.new /usr/afs/db/prdb.DB0"
	end
	foreach i ( <db servers> )
	    bos restart $i ptserver
	end

	/moira/bin/udebug prill -port 7002
to watch the status of the servers to make sure things are going well,
where "prill" is preferred db server (the sync site).

Make sure the beacons are working, and that once quorum is established
(~90 seconds) that the servers are resynchronizing their notions of
the databases and that the "dbcurrent" and "up" fields all become set
and the state goes to "1f".  Also, if "sdi" isn't running, watch out
for large rx packet queues on port 7002 using rxdebug, as the
fileservers may get excessively backlogged, and restart servers, if
necessary, if the congestion remains excessive.

	pts listmax
	cat prdb.listmax
and if the id maxima are lower than the saved ones, reset them
appropriately to the saved ones using `pts setmax`.

	pts ex system:administrators
as a good spot check, especially since it has special people.
(also spot check one of the personal groups and perhaps, something like
the membership of rcmd.reynelda)

	rm /moira/afs/noafs
to remove the lock file and let Moira's afs incrementals continue.

	The afssync program doesn't deal with null instance KERBEROS
members of lists which are groups (example: if LIST zacheiss contains
KERBEROS zacheiss@ATHENA.MIT.EDU).  To get around this, run:

/moira/bin/sync.pl

Which will create /var/tmp/sync.out, which contains the pts commands
needed to add all the null instance KERBEROS members back to the pts
groups they belong in.  If it looks sane, run:

sh /var/tmp/sync.out

Any failed additions are probably from lists that contain both USER
username and KERBEROS username@ATHENA.MIT.EDU.

NOTES

1. Don't do this when you're tired...  There may be no cleanup procedure
available, with certain mistakes.

2. /moira/afs/noafs is only good for 30 minutes.  Keep track of the
critical log, and you may have to do some operations by hand when the
operation is complete.  Also, if requests depend on other requests, they
may be processed out of order, and fail, and may need to be done by hand.
Commit	Line	Data
26efe406	1	The executables are in /moira/bin/ on the moira server, with sources
	2	in /mit/moiradev/src/afssync/. Most of the commands are run on the
	3	Moira server.
	4
a46edefa	5	#### Set up a workspace ####
	6
	7	mkdir -p /moira/sync
	8	cd /moira/sync
	9
26efe406	10	#### This is preparation for the resync, to save non-Moira users. ####
	11	First, get a recent copy of the prdb, and extract non-Moira entries:
	12
a46edefa	13	/moira/bin/udebug aggy -port 7002
9eba5bbc	14	rcp -px root@aggy:/usr/afs/db/prdb.DB0 prdb.old
a46edefa	15	/moira/bin/udebug aggy -port 7002
26efe406	16	If the two udebugs show that the version changed, lather-rinse-repeat.
a46edefa	17	(udebug can be found in afsuser; "aggy" here and below is some DB server)
26efe406	18	(Also check for "0 of them for write" at the end. It might matter.)
26efe406	19
a46edefa	20	/moira/bin/pt_util -x -m -u -g -d prdb.extra -p prdb.old
a46edefa	21	perl /moira/bin/pt_util.pl < prdb.extra > prdb.extra.sort
26efe406	22	to extract and prepare the personal groups and special user entries in
	23	the old prdb for being reincorporated into the new prdb.
	24
d93d3bb6	25	awk -F\\| '$9 == 3 {print $1}' /backup/backup_1/users > /tmp/deactivated
e3d53038	26
	27	and the following perl script:
	28
	29	#!/usr/athena/bin/perl -w
	30
	31	open(OUT, ">prdb.extra.trimmed");
	32
	33	for ( `cat /tmp/deactivated` ) {
	34	chop;
	35	$ex{$_} = 1;
	36	}
	37
	38	$punt = 0;
	39
	40	foreach $L ( `cat prdb.extra.sort` ) {
	41	@w = split(/ /,$L);
	42	$_ = $w[0];
	43	if ( /:/ ) {
	44	@x = split(/:/,$w[0]);
	45	if ($ex{$x[0]}) {
	46	$punt=1;
	47	} else {
	48	$punt=0;
	49	}
	50	} else {
	51	# If we got here, we're either a user, a prefixless
	52	# group, or a group member.
	53	$punt = 0 if $w[0];
	54	}
	55	print OUT $L unless $punt == 1;
	56	}
	57
	58	close(OUT);
	59	exit 0;
	60
7827a830	61	to remove the personal groups for users who are deactivated
7827a830	62
9dbd9d2b	63	awk '/^[^ ][^:]*@/ {printf "KERBEROS:%s\n",$1}' prdb.extra.trimmed \
9dbd9d2b	64	> foreign
26efe406	65	blanche afs-foreign-users -f foreign
	66	Get a list of all the @andrew.cmu.edu type (non- athena.mit.edu cell)
	67	users, and sync the Moira list afs-foreign-users to this list.
	68	Moira then adds those entries to the group system:afs-foreign-users,
	69	thus keeping them from being lost in the prdb resync.
7827a830	70	Sanity checking the diffs before running the blanche command is recommended.
26efe406	71
7827a830	72	awk '/^[^ 0-9][^:@]*$/ {printf "KERBEROS:%s@ATHENA.MIT.EDU\n",$1}' \
9dbd9d2b	73	prdb.extra.trimmed > oddities
	74	awk '/^[^ ][0-9.]* .*$/ {printf "KERBEROS:%s\n",$1}' prdb.extra.trimmed\
	75	>> oddities
26efe406	76	echo "LIST:afs-foreign-users" >> oddities
	77	blanche afs-odd-entities -f oddities
	78	Do the equivalent of afs-foreign-users for domestic users. We make
	79	the afs-foreign-users list a member of the more general afs-odd-entities.
7827a830	80	Sanity checking the diffs before running the blanche command is recommended.
7827a830	81
26efe406	82	WAIT for the incremental updates from the `blanche` changes to complete.
	83
	84	#### Now the actual resync begins. Incremental updates must stop. ####
	85
	86	touch /moira/afs/noafs
	87	to disable AFS incremental updates during the synchronization. The
	88	afs.incr (?) will wait 30 minutes on an incremental update before
	89	timing out, so the resync should complete in that time, or list
	90	changes in Moira might need to be propagated by hand.
	91
a46edefa	92	/moira/bin/afssync prdb.moira
26efe406	93	to dump the prdb data that is in Moira (users, groups, and group
	94	memberships). This step takes about ten minutes, but can be done
	95	concurrently with the next few steps.
	96
7827a830	97	REPEAT the above commands, thus regenerating prdb.trimmed from a now
7827a830	98	completely-up-to-date prdb.
3d8d4b36	99
3d8d4b36	100	* Make sure the "afssync" command has completed *
3d8d4b36	101
a46edefa	102	cp prdb.moira prdb.new
7827a830	103	/moira/bin/pt_util -w -d prdb.extra.trimmed -p prdb.new \
7827a830	104	>& prdb.extra.err
26efe406	105	This use of pt_util will presumably log errors about failed user
	106	creations and list additions. (To start over, do both the `cp` and
	107	`pt_util` again.) You can filter out the "User or group doesn't exist"
	108	type of lines that were caused by a user deactivation with something
	109	like:
d93d3bb6	110	awk -F\\| '$9 == 3 {print $1}' /backup/backup_1/users > /tmp/deactivated
7827a830	111	perl -e 'for(`cat /tmp/deactivated`){ chop; $ex{$_}=1;} \
26efe406	112	foreach $L (`cat prdb.extra.err`){ $f=0; \
	113	@w=split(/[ :]/,$L); for(@w){ $f=1 if $ex{$_}; } \
	114	next if $f; print $L; }'
	115	Now, back to the resync.
	116
7827a830	117	The only remaining errors should be errors creating system:foo groups,
	118	be cause they already exist. These generally mean that that group has
	119	an odd user on it (root instance, IP acl, etc.) and can safely be
	120	ignored.
	121
	122	Errors of the form:
	123	Error while creating dcctdw:foo: Badly formed name (group prefix doesn't match owner?)
	124	are probably an indication that a user with personal groups had a
	125	username change (in the past they have also meant that a user with
	126	personal groups was deactivated and the uid was re-used (this was
	127	becasue we didn't trim the prdb.extra.sort file in the past.))
	128	Assuming htese errors are due to a username change, the groups should
	129	be renamed, and you should regenerate prdb.extra.trimmed starting with
	130	a fresh prdb from aggy. (You may want to abort and
	131	rm /moira/afs/noafs and try again later.)
	132
9eba5bbc	133	pts listmax > prdb.listmax
26efe406	134	foreach i ( <db servers> )
7827a830	135	rsh $i -l root -x /bin/athena/detach -a # detach packs
	136	rsh $i -l root -x rm -f /usr/afs/db/{prdb.new,pre-resync-prdb}
	137	rcp -px prdb.new root@${i}:/usr/afs/db/prdb.new
	138	end # staging
	139	foreach i ( <db servers> )
	140	bos shutdown $i ptserver -wait
	141	bos exec $i "mv /usr/afs/db/prdb.DB0 /usr/afs/db/pre-resync-prdb; rm /usr/afs/db/prdb.DB*; mv /usr/afs/db/prdb.new /usr/afs/db/prdb.DB0"
26efe406	142	end
	143	foreach i ( <db servers> )
	144	bos restart $i ptserver
	145	end
	146
	147	/moira/bin/udebug prill -port 7002
	148	to watch the status of the servers to make sure things are going well,
	149	where "prill" is preferred db server (the sync site).
	150
d93d3bb6	151	Make sure the beacons are working, and that once quorum is established
26efe406	152	(~90 seconds) that the servers are resynchronizing their notions of
	153	the databases and that the "dbcurrent" and "up" fields all become set
	154	and the state goes to "1f". Also, if "sdi" isn't running, watch out
	155	for large rx packet queues on port 7002 using rxdebug, as the
	156	fileservers may get excessively backlogged, and restart servers, if
	157	necessary, if the congestion remains excessive.
	158
	159	pts listmax
9eba5bbc	160	cat prdb.listmax
26efe406	161	and if the id maxima are lower than the saved ones, reset them
	162	appropriately to the saved ones using `pts setmax`.
	163
	164	pts ex system:administrators
	165	as a good spot check, especially since it has special people.
3d8d4b36	166	(also spot check one of the personal groups and perhaps, something like
d93d3bb6	167	the membership of rcmd.reynelda)
3d8d4b36	168
26efe406	169	rm /moira/afs/noafs
26efe406	170	to remove the lock file and let Moira's afs incrementals continue.
3d8d4b36	171
983926ee	172	The afssync program doesn't deal with null instance KERBEROS
	173	members of lists which are groups (example: if LIST zacheiss contains
	174	KERBEROS zacheiss@ATHENA.MIT.EDU). To get around this, run:
	175
	176	/moira/bin/sync.pl
	177
	178	Which will create /var/tmp/sync.out, which contains the pts commands
	179	needed to add all the null instance KERBEROS members back to the pts
	180	groups they belong in. If it looks sane, run:
	181
	182	sh /var/tmp/sync.out
	183
	184	Any failed additions are probably from lists that contain both USER
	185	username and KERBEROS username@ATHENA.MIT.EDU.
3d8d4b36	186
26efe406	187	NOTES
3d8d4b36	188
26efe406	189	1. Don't do this when you're tired... There may be no cleanup procedure
3d8d4b36	190	available, with certain mistakes.
3d8d4b36	191
26efe406	192	2. /moira/afs/noafs is only good for 30 minutes. Keep track of the
3d8d4b36	193	critical log, and you may have to do some operations by hand when the
	194	operation is complete. Also, if requests depend on other requests, they
	195	may be processed out of order, and fail, and may need to be done by hand.