3 # /etc/init.d/openflow-switch
5 # Written by Miquel van Smoorenburg <miquels@cistron.nl>.
6 # Modified for Debian by Ian Murdock <imurdock@gnu.ai.mit.edu>.
7 # Further changes by Javier Fernandez-Sanguino <jfs@debian.org>
8 # Modified for openflow-switch.
10 # Version: @(#)skeleton 1.9 26-Feb-2001 miquels@cistron.nl
13 # Provides: openflow-switch
14 # Required-Start: $network $named $remote_fs $syslog
16 # Default-Start: 2 3 4 5
18 # Short-Description: OpenFlow switch
21 PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
22 DAEMON=/usr/sbin/secchan
26 test -x $DAEMON || exit 0
28 LOGDIR=/var/log/openflow
29 PIDFILE=/var/run/$NAME.pid
30 DHCLIENT_PIDFILE=/var/run/dhclient.of0.pid
31 DODTIME=1 # Time to wait for the server to die, in seconds
32 # If this value is set too low you might not
33 # let some servers to die gracefully and
34 # 'restart' will not work
36 # Include secchan defaults if available
49 default=/etc/default/openflow-switch
50 if [ -f $default ] ; then
58 # Check if a given process pid's cmdline matches a given name
61 [ -z "$pid" ] && return 1
62 [ ! -d /proc/$pid ] && return 1
63 cmd=`cat /proc/$pid/cmdline | tr "\000" "\n"|head -n 1 |cut -d : -f 1`
64 # Is this the expected child?
77 # Check if the process is running looking at /proc
78 # (works for all users)
80 # No pidfile, probably no daemon present
81 [ ! -f "$PIDFILE" ] && return 1
82 # Obtain the pid and check it against the binary name
84 running_pid $pid $NAME || return 1
89 # Forcefully kill the process
90 [ ! -f "$PIDFILE" ] && return
94 [ -n "$DODTIME" ] && sleep "$DODTIME"s
97 [ -n "$DODTIME" ] && sleep "$DODTIME"s
99 echo "Cannot kill $NAME (pid=$pid)!"
130 if (test "$CACERT_MODE" != secure && test "$CACERT_MODE" != bootstrap) \
131 || test ! -e "$PRIVKEY" || test ! -e "$CERT" \
132 || (test ! -e "$CACERT" && test "$CACERT_MODE" != bootstrap); then
133 if test "$CACERT_MODE" != secure && test "$CACERT_MODE" != bootstrap
135 echo "CACERT_MODE is not set to 'secure' or 'bootstrap'"
137 if test ! -e "$PRIVKEY"; then
138 echo "$PRIVKEY: private key missing" >&2
140 if test ! -e "$CERT"; then
141 echo "$CERT: certificate for private key missing" >&2
143 if test ! -e "$CACERT" && test "$CACERT_MODE" != bootstrap; then
144 echo "$CACERT: CA certificate missing (and CA certificate bootstrapping not enabled)" >&2
146 echo "Run ofp-switch-setup (in the openflow-switch-config package) or edit /etc/default/openflow-switch to configure" >&2
147 if test "$MODE" = discovery; then
148 echo "You may also delete or rename $PRIVKEY to disable SSL requirement" >&2
153 SSL_OPTS="--private-key=$PRIVKEY --certificate=$CERT"
154 if test ! -e "$CACERT" && test "$CACERT_MODE" = bootstrap; then
155 SSL_OPTS="$SSL_OPTS --bootstrap-ca-cert=$CACERT"
157 SSL_OPTS="$SSL_OPTS --ca-cert=$CACERT"
163 if test -z "$NETDEVS"; then
164 echo "$default: No network devices configured, switch disabled" >&2
165 echo "Run ofp-switch-setup (in the openflow-switch-config package) or edit /etc/default/openflow-switch to configure" >&2
168 if test "$MODE" = discovery; then
170 elif test "$MODE" = in-band || test "$MODE" = out-of-band; then
171 if test -z "$CONTROLLER"; then
172 echo "$default: No controller configured and not configured for discovery, switch disabled" >&2
173 echo "Run ofp-switch-setup (in the openflow-switch-config package) or edit /etc/default/openflow-switch to configure" >&2
177 echo "$default: MODE must set to 'discovery', 'in-band', or 'out-of-band'" >&2
178 echo "Run ofp-switch-setup (in the openflow-switch-config package) or edit /etc/default/openflow-switch to configure" >&2
181 : ${PRIVKEY:=/etc/openflow-switch/of0-privkey.pem}
182 : ${CERT:=/etc/openflow-switch/of0-cert.pem}
183 : ${CACERT:=/etc/openflow-switch/cacert.pem}
187 if test -e "$PRIVKEY"; then
197 echo "$default: CONTROLLER must be in the form 'ssl:HOST[:PORT]' or 'tcp:HOST[:PORT]' when not in discovery mode" >&2
198 echo "Run ofp-switch-setup (in the openflow-switch-config package) or edit /etc/default/openflow-switch to configure" >&2
202 echo -n "Loading openflow_mod: "
203 if grep -q '^openflow_mod$' /proc/modules; then
204 echo "already loaded, nothing to do."
205 elif modprobe openflow_mod; then
209 echo "openflow_mod has probably not been built for this kernel."
210 if ! test -d /usr/share/doc/openflow-datapath-source; then
211 echo "Install the openflow-datapath-source package, then read"
212 echo "/usr/share/doc/openflow-datapath-source/README.Debian"
214 echo "For instructions, read"
215 echo "/usr/share/doc/openflow-datapath-source/README.Debian"
220 must_succeed "Adding datapath" dpctl adddp nl:0
221 for netdev in $NETDEVS; do
222 must_succeed "Adding $netdev to datapath" dpctl addif nl:0 $netdev
225 if test "$MODE" = in-band; then
226 if test "$SWITCH_IP" = dhcp; then
227 must_succeed "Temporarily disabling of0" ifconfig of0 down
229 COMMAND="ifconfig of0 $SWITCH_IP"
230 if test -n "$SWITCH_NETMASK"; then
231 COMMAND="$COMMAND netmask $SWITCH_NETMASK"
233 must_succeed "Configuring of0: $COMMAND" $COMMAND
234 if test -n "$SWITCH_GATEWAY"; then
235 # This can fail because the route already exists,
236 # so we don't insist that it succeed.
237 COMMAND="route add default gw $SWITCH_GATEWAY"
238 check_op "Adding default route: $COMMAND" $COMMAND
242 must_succeed "Disabling of0" ifconfig of0 down
246 for vconn in $MGMT_VCONNS; do
247 MGMT_OPTS="$MGMT_OPTS --listen=$vconn"
251 if test -n "$MONITOR_VCONN"; then
252 MONITOR_OPT="--monitor=$MONITOR_VCONN"
256 if test -n "$COMMANDS"; then
257 COMMAND_OPT="--command-acl=$COMMANDS"
260 if test "$MODE" = out-of-band; then
261 DAEMON_OPTS="$DAEMON_OPTS --out-of-band"
264 if test -n "$CORE_LIMIT"; then
265 check_op "Setting core limit to $CORE_LIMIT" ulimit -c "$CORE_LIMIT"
268 echo -n "Starting $DESC: "
269 start-stop-daemon --start --quiet --pidfile $PIDFILE \
270 --exec $DAEMON -- nl:0 $CONTROLLER --detach --pidfile=$PIDFILE \
271 --verbose=ANY:console:emer --verbose=ANY:syslog:err --log-file \
272 $DAEMON_OPTS $MGMT_OPTS $MONITOR_OPT $SSL_OPTS "$COMMAND_OPT"
279 if test "$MODE" = in-band && test "$SWITCH_IP" = dhcp; then
280 echo -n "Starting dhclient on of0: "
281 start-stop-daemon --start --quiet --pidfile $DHCLIENT_PIDFILE \
282 --exec /sbin/dhclient -- -q -pf $DHCLIENT_PIDFILE of0
291 if test -e /var/run/dhclient.of0.pid; then
292 echo -n "Stopping dhclient on of0: "
293 start-stop-daemon --stop --quiet --oknodo \
294 --pidfile $DHCLIENT_PIDFILE --exec /sbin/dhclient
298 echo -n "Stopping $DESC: "
299 start-stop-daemon --stop --quiet --oknodo --pidfile $PIDFILE \
303 for netdev in $NETDEVS; do
304 check_op "Removing $netdev from datapath" dpctl delif nl:0 $netdev
306 check_op "Deleting datapath" dpctl deldp nl:0
307 check_op "Unloading kernel module" modprobe -r openflow_mod
310 echo -n "Forcefully stopping $DESC: "
321 start-stop-daemon --stop --test --quiet --pidfile \
322 $PIDFILE --exec $DAEMON \
341 echo "Usage: $N {start|stop|restart|force-reload|status|force-stop}" >&2