From 1852b6cf92e0b08db26d3398faf41b2c8a20b400 Mon Sep 17 00:00:00 2001 From: Mike Gabriel Date: Fri, 24 Jan 2025 16:29:30 +0100 Subject: sbin/*puppet*: Rework puppet client/ca maintenance scripts. --- sbin/itzks-puppetserver-detect-broken-hosts | 84 +++++++++++++++++++++++++++++ 1 file changed, 84 insertions(+) create mode 100755 sbin/itzks-puppetserver-detect-broken-hosts (limited to 'sbin/itzks-puppetserver-detect-broken-hosts') diff --git a/sbin/itzks-puppetserver-detect-broken-hosts b/sbin/itzks-puppetserver-detect-broken-hosts new file mode 100755 index 0000000..ad13ea7 --- /dev/null +++ b/sbin/itzks-puppetserver-detect-broken-hosts @@ -0,0 +1,84 @@ +#!/bin/bash + +# Copyright (C) 2025 Mike Gabriel +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + +if [ $(id -u) -gt 0 ]; then + echo "ERROR: This script has to run as super-user root." + exit 1 +fi + +usage() { + echo "$(basename ${0}) [-t|--today] [--exclude=] [--include=]" + exit 1 +} + +for arg in "$@"; do + case "${arg}" in + -t|--today) + TODAY=true + ;; + --exclude=*) + EXCLUDE="${arg#*=}" + ;; + --include=*) + INCLUDE="${arg#*=}" + ;; + --include|--exclude) + # options used in wrong way + usage + ;; + *) + # unknown option + usage + ;; + esac +done + +TMPFILE=$(mktemp) + +if [[ ! $TODAY ]]; then + ls /var/log/puppetserver/puppetserver-access-*.log.gz | sort | while read file; do + zcat $file >> "${TMPFILE}" + done +fi +cat /var/log/puppetserver/puppetserver-access.log >> "${TMPFILE}" + +iplist_with_puppeterrors=$(cat ${TMPFILE} | grep -v ' 200 ' | awk '{ print $1 }' | sort | uniq) + +for ip in ${iplist_with_puppeterrors}; do + fqdn=$(dig +short -x "${ip}" | sed -e "s/.\$//g") + + if [ "${fqdn}" = "${HOSTNAME}" ]; then + continue + fi + + if [[ -n "${INCLUDE}" ]] && ! echo "${ip} ${fqdn}" | grep -q -E "${INCLUDE}"; then + continue + fi + + if [[ -n "${EXCLUDE}" ]] && ! echo "${ip} ${fqdn}" | grep -v -q -E "${EXCLUDE}"; then + continue + fi + + if [[ -n "$fqdn" ]]; then + echo -e "$fqdn\t-\t$ip" + else + echo -e "(unknown)\t-\t$ip" + fi +done + +rm "${TMPFILE}" -- cgit v1.2.3