Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #! /usr/bin/perl
- ##
- ## $Id: mrvrancid.in 2246 2010-09-08 01:36:07Z heas $
- ##
- ## rancid 2.3.6
- ## Copyright (c) 1997-2008 by Terrapin Communications, Inc.
- ## All rights reserved.
- ##
- ## This code is derived from software contributed to and maintained by
- ## Terrapin Communications, Inc. by Henry Kilmer, John Heasley, Andrew Partan,
- ## Pete Whiting, Austin Schutz, and Andrew Fort.
- ##
- ## Redistribution and use in source and binary forms, with or without
- ## modification, are permitted provided that the following conditions
- ## are met:
- ## 1. Redistributions of source code must retain the above copyright
- ## notice, this list of conditions and the following disclaimer.
- ## 2. Redistributions in binary form must reproduce the above copyright
- ## notice, this list of conditions and the following disclaimer in the
- ## documentation and/or other materials provided with the distribution.
- ## 3. All advertising materials mentioning features or use of this software
- ## must display the following acknowledgement:
- ## This product includes software developed by Terrapin Communications,
- ## Inc. and its contributors for RANCID.
- ## 4. Neither the name of Terrapin Communications, Inc. nor the names of its
- ## contributors may be used to endorse or promote products derived from
- ## this software without specific prior written permission.
- ## 5. It is requested that non-binding fixes and modifications be contributed
- ## back to Terrapin Communications, Inc.
- ##
- ## THIS SOFTWARE IS PROVIDED BY Terrapin Communications, INC. AND CONTRIBUTORS
- ## ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED
- ## TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
- ## PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COMPANY OR CONTRIBUTORS
- ## BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
- ## CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
- ## SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
- ## INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
- ## CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
- ## ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
- ## POSSIBILITY OF SUCH DAMAGE.
- #
- # Amazingly hacked version of Hank's rancid - this one tries to
- # deal with MegaVision MRV.
- #
- # RANCID - Really Awesome New Cisco confIg Differ
- #
- # usage: rancid [-dV] [-l] [-f filename | hostname]
- #
- use Getopt::Std;
- getopts('dflV');
- if ($opt_V) {
- print "rancid 2.3.6\n";
- exit(0);
- }
- $log = $opt_l;
- $debug = $opt_d;
- $file = $opt_f;
- $host = $ARGV[0];
- $ios = "IOS";
- $clean_run = 0;
- $found_end = 0;
- $found_version = 0;
- $found_env = 0;
- $found_diag = 0;
- $timeo = 90; # clogin timeout in seconds
- # force a terminal type so as not to confuse the POS
- $ENV{'TERM'} = "vt100";
- my(@commandtable, %commands, @commands);# command lists
- my($aclsort) = ("ipsort"); # ACL sorting mode
- my($filter_commstr); # SNMP community string filtering
- my($filter_pwds); # password filtering mode
- # This routine is used to print out the router configuration
- sub ProcessHistory {
- my($new_hist_tag,$new_command,$command_string,@string) = (@_);
- if ((($new_hist_tag ne $hist_tag) || ($new_command ne $command))
- && scalar(%history)) {
- print eval "$command \%history";
- undef %history;
- }
- if (($new_hist_tag) && ($new_command) && ($command_string)) {
- if ($history{$command_string}) {
- $history{$command_string} = "$history{$command_string}@string";
- } else {
- $history{$command_string} = "@string";
- }
- } elsif (($new_hist_tag) && ($new_command)) {
- $history{++$#history} = "@string";
- } else {
- print "@string";
- }
- $hist_tag = $new_hist_tag;
- $command = $new_command;
- 1;
- }
- sub numerically { $a <=> $b; }
- # This is a sort routine that will sort numerically on the
- # keys of a hash as if it were a normal array.
- sub keynsort {
- local(%lines) = @_;
- local($i) = 0;
- local(@sorted_lines);
- foreach $key (sort numerically keys(%lines)) {
- $sorted_lines[$i] = $lines{$key};
- $i++;
- }
- @sorted_lines;
- }
- # This is a sort routine that will sort on the
- # keys of a hash as if it were a normal array.
- sub keysort {
- local(%lines) = @_;
- local($i) = 0;
- local(@sorted_lines);
- foreach $key (sort keys(%lines)) {
- $sorted_lines[$i] = $lines{$key};
- $i++;
- }
- @sorted_lines;
- }
- # This is a sort routine that will sort on the
- # values of a hash as if it were a normal array.
- sub valsort{
- local(%lines) = @_;
- local($i) = 0;
- local(@sorted_lines);
- foreach $key (sort values %lines) {
- $sorted_lines[$i] = $key;
- $i++;
- }
- @sorted_lines;
- }
- # This is a numerical sort routine (ascending).
- sub numsort {
- local(%lines) = @_;
- local($i) = 0;
- local(@sorted_lines);
- foreach $num (sort {$a <=> $b} keys %lines) {
- $sorted_lines[$i] = $lines{$num};
- $i++;
- }
- @sorted_lines;
- }
- # This is a sort routine that will sort on the
- # ip address when the ip address is anywhere in
- # the strings.
- sub ipsort {
- local(%lines) = @_;
- local($i) = 0;
- local(@sorted_lines);
- foreach $addr (sort sortbyipaddr keys %lines) {
- $sorted_lines[$i] = $lines{$addr};
- $i++;
- }
- @sorted_lines;
- }
- # These two routines will sort based upon IP addresses
- sub ipaddrval {
- my(@a) = ($_[0] =~ m#^(\d+)\.(\d+)\.(\d+)\.(\d+)$#);
- $a[3] + 256 * ($a[2] + 256 * ($a[1] +256 * $a[0]));
- }
- sub sortbyipaddr {
- &ipaddrval($a) <=> &ipaddrval($b);
- }
- # This routine parses "show version"
- #sub ShowVersion {
- # print STDERR " In ShowVersion: $_" if ($debug);
- #
- # while (<INPUT>) {
- # tr/\015//d;
- # if (/^$prompt/) { $found_version = 1; last};
- # next if (/^(\s*|\s*$cmd\s*)$/);
- # return(1) if /(Invalid input detected|Type help or )/;
- # return(0) if ($found_version); # Only do this routine once
- # return(-1) if (/command authorization failed/i);
- #
- # /copyright/i && next;
- # /^up/ && next;
- # # skip voltage
- # /\s+\d+V\s*\:\s*\d+\.?\d*/ && next;
- # /Internal\ Temperature/i && next;
- # /u-boot/i &&
- # ProcessHistory("COMMENTS","keysort","C1", "!ROM: $_") && next;
- #
- # ProcessHistory("COMMENTS","keysort","B1", "!Image: $_") && next;
- # }
- # ProcessHistory("COMMENTS","","","!\n");
- # return(0);
- #}
- # This routine parses "show chassis" for the gsr
- # This will create arrays for hw info.
- sub ShowChassis {
- # Skip if this is not a 1200n.
- print STDERR " In ShowChassis: $_" if ($debug);
- while (<INPUT>) {
- tr/\015//d;
- if (/^$prompt/) { $found_version = 1; last};
- next if (/^(\s*|\s*$cmd\s*)$/);
- return(1) if /(Invalid input detected|Type help or )/;
- return(0) if ($found_version); # Only do this routine once
- return(-1) if (/command authorization failed/i);
- #/u-boot/i &&
- # ProcessHistory("COMMENTS","keysort","C1", "!ROM: $_") && next;
- ProcessHistory("COMMENTS","keysort","C1", "! $_") && next;
- }
- ProcessHistory("COMMENTS","","","!\n");
- return(0);
- }
- sub ShowSoftware {
- # Skip if this is not a 1200n.
- print STDERR " In ShowSoftware: $_" if ($debug);
- while (<INPUT>) {
- tr/\015//d;
- last if (/^$prompt/);
- next if (/^(\s*|\s*$cmd\s*)$/);
- return(1) if /(Invalid input detected|Type help or )/;
- return(-1) if (/command authorization failed/i);
- if (/Chassis +Model/ || /=======/) {
- ProcessHistory("COMMENTS","keysort","C1","!$_");
- next;
- }
- # Trim the temp from the end of the slot line
- # chomp; s/\s+$//;
- # s/\S+$//;
- ProcessHistory("COMMENTS","keysort","C1","! $_");
- }
- # ! Zeichen vor jede Zeile setzen!
- ProcessHistory("COMMENTS","","","!\n");
- return(0);
- }
- sub ShowLicense {
- # Skip if this is not a 1200n.
- print STDERR " In ShowSoftware: $_" if ($debug);
- while (<INPUT>) {
- tr/\015//d;
- last if (/^$prompt/);
- next if (/^(\s*|\s*$cmd\s*)$/);
- return(1) if /(Invalid input detected|Type help or )/;
- return(-1) if (/command authorization failed/i);
- if (/Chassis +Model/ || /=======/) {
- ProcessHistory("COMMENTS","keysort","C1","!$_");
- next;
- }
- # Trim the temp from the end of the slot line
- # chomp; s/\s+$//;
- # s/\S+$//;
- ProcessHistory("COMMENTS","keysort","C1","! $_");
- }
- # ! Zeichen vor jede Zeile setzen!
- ProcessHistory("COMMENTS","","","!\n");
- return(0);
- }
- sub ShowXcvr {
- # Skip if this is not a 1200n.
- print STDERR " In ShowXcvr: $_" if ($debug);
- while (<INPUT>) {
- tr/\015//d;
- last if (/^$prompt/);
- next if (/^(\s*|\s*$cmd\s*)$/);
- return(1) if /(Invalid input detected|Type help or )/;
- return(-1) if (/command authorization failed/i);
- if (/Chassis +Model/ || /=======/) {
- ProcessHistory("COMMENTS","keysort","C1","!$_");
- next;
- }
- # Trim the temp from the end of the slot line
- # chomp; s/\s+$//;
- # s/\S+$//;
- ProcessHistory("COMMENTS","keysort","C1","! $_");
- }
- ProcessHistory("COMMENTS","","","!\n");
- return(0);
- }
- # This routine parses "show slots".
- sub ShowSlots {
- print STDERR " In ShowSlots: $_" if ($debug);
- while (<INPUT>) {
- tr/\015//d;
- return if (/^\s*\^$/);
- last if (/online diag status/i);
- last if (/^$prompt/);
- next if (/^(\s*|\s*$cmd\s*)$/);
- return(-1) if (/command authorization failed/i);
- ProcessHistory("SLOTS","","","!$_");
- next;
- }
- ProcessHistory("SLOTS","","","!\n");
- return(0);
- }
- # This routine processes a "write term"
- sub WriteTerm {
- print STDERR " In WriteTerm: $_"; # if ($debug);
- my($lineauto,$comment,$linecnt) = (0,0,0);
- while (<INPUT>) {
- tr/\015//d;
- last if (/^$prompt/);
- return(1) if /Line has invalid autocommand /;
- return(1) if (/(Invalid input detected|Type help or )/i);
- return(0) if ($found_end); # Only do this routine once
- return(-1) if (/command authorization failed/i);
- /Non-Volatile memory is in use/ && return(-1); # NvRAM is locked
- $linecnt++;
- $lineauto = 0 if (/^[^ ]/);
- # skip the crap
- #if (/^(##+$|(Building|Current) configuration)/i) {
- # while (<INPUT>) {
- # next if (/^Current configuration\s*:/i);
- # next if (/^:/);
- # next if (/^([%!].*|\s*)$/);
- # last;
- # }
- # tr/\015//d;
- # }
- # skip consecutive comment lines to avoid oscillating extra comment
- # line on some access servers. grrr.
- if (/^!/) {
- next if ($comment);
- ProcessHistory("","","",$_);
- $comment++;
- next;
- }
- $comment = 0;
- # Dog gone Cool matches to process the rest of the config
- /^tftp-server flash / && next; # kill any tftp remains
- /^ntp clock-period / && next; # kill ntp clock-period
- /^ length / && next; # kill length on serial lines
- /^ width / && next; # kill width on serial lines
- $lineauto = 1 if /^ modem auto/;
- /^ speed / && $lineauto && next; # kill speed on serial lines
- if (/^(enable )?(password|passwd)( level \d+)? / && $filter_pwds >= 1) {
- ProcessHistory("ENABLE","","","!$1$2$3 <removed>\n");
- next;
- }
- if (/^(enable secret) / && $filter_pwds >= 2) {
- ProcessHistory("ENABLE","","","!$1 <removed>\n");
- next;
- }
- if (/^username (\S+)(\s.*)? password (encrypted \S+|\S+)(\sclass .*$)/){
- if ($filter_pwds >= 2) {
- ProcessHistory("USER","keysort","$1",
- "!username $1$2 password <removed>$4\n");
- } else {
- ProcessHistory("USER","keysort","$1","$_");
- }
- next;
- }
- if (/^(\s*)password / && $filter_pwds >= 1) {
- ProcessHistory("LINE-PASS","","","!$1password <removed>\n");
- next;
- }
- # filter out any RCS/CVS tags to avoid confusing local CVS storage
- s/\$(Revision|Id):/ $1:/;
- # order access-lists
- /^access-list\s+(\d\d?)\s+(\S+)\s+(\S+)/ &&
- ProcessHistory("ACL $1 $2","$aclsort","$3","$_") && next;
- # order extended access-lists
- /^access-list\s+(\d\d\d)\s+(\S+)\s+ip\s+host\s+(\S+)/ &&
- ProcessHistory("EACL $1 $2","$aclsort","$3","$_") && next;
- /^access-list\s+(\d\d\d)\s+(\S+)\s+ip\s+(\d\S+)/ &&
- ProcessHistory("EACL $1 $2","$aclsort","$3","$_") && next;
- /^access-list\s+(\d\d\d)\s+(\S+)\s+ip\s+any/ &&
- ProcessHistory("EACL $1 $2","$aclsort","0.0.0.0","$_") && next;
- # order arp lists
- /^arp\s+(\d+\.\d+\.\d+\.\d+)\s+/ &&
- ProcessHistory("ARP","$aclsort","$1","$_") && next;
- /^ip prefix-list\s+(\S+)\s+seq\s+(\d+)\s+(permit|deny)\s+(\d\S+)(\/.*)$/ &&
- ProcessHistory("PACL $1 $3","$aclsort","$4","ip prefix-list $1 $3 $4$5\n")
- && next;
- # order logging statements
- /^logging (\d+\.\d+\.\d+\.\d+)/ &&
- ProcessHistory("LOGGING","ipsort","$1","$_") && next;
- # order/prune snmp-server host statements
- # we only prune lines of the form
- # snmp-server host a.b.c.d <community>
- if (/^snmp-server host (\d+\.\d+\.\d+\.\d+) /) {
- if ($filter_commstr) {
- my($ip) = $1;
- my($line) = "snmp-server host $ip";
- my(@tokens) = split(' ', $');
- my($token);
- while ($token = shift(@tokens)) {
- if ($token eq 'version') {
- $line .= " " . join(' ', ($token, shift(@tokens)));
- if ($token eq '3') {
- $line .= " " . join(' ', ($token, shift(@tokens)));
- }
- } elsif ($token eq 'vrf') {
- $line .= " " . join(' ', ($token, shift(@tokens)));
- } elsif ($token =~ /^(informs?|traps?|(no)?auth)$/) {
- $line .= " " . $token;
- } else {
- $line = "!$line " . join(' ', ("<removed>", join(' ',@tokens)));
- last;
- }
- }
- ProcessHistory("SNMPSERVERHOST","ipsort","$ip","$line\n");
- } else {
- ProcessHistory("SNMPSERVERHOST","ipsort","$1","$_");
- }
- next;
- }
- if (/^(snmp-server community) (\S+)/) {
- if ($filter_commstr) {
- ProcessHistory("SNMPSERVERCOMM","keysort","$_",
- "!$1 <removed>$'") && next;
- } else {
- ProcessHistory("SNMPSERVERCOMM","keysort","$_","$_") && next;
- }
- }
- # prune tacacs/radius server keys
- # radius-server host <1-5> IP SECRET [<ip port> [TIMEOUT [RETRY]]]
- if (/^((tacacs|radius)-server)\s(\d+\.\d+\.\d+\.\d+)\s(\w*)/
- && $filter_pwds >= 1) {
- ProcessHistory("","","","!$1 $2 <removed>$'"); next;
- }
- # order ntp peers/servers
- if (/^ntp (server|peer) (\d+)\.(\d+)\.(\d+)\.(\d+)/) {
- $sortkey = sprintf("$1 %03d%03d%03d%03d",$2,$3,$4,$5);
- ProcessHistory("NTP","keysort",$sortkey,"$_");
- next;
- }
- # catch anything that wasnt matched above.
- ProcessHistory("","","","$_");
- }
- # The MRV MCC lacks a definitive "end of config" marker. If we have seen
- # at least 5 lines of show config output, we can be reasonably sure that
- # we got the config.
- warn "$linecnt<<<<---- Line Count!!\n";
- if ($linecnt > 2) {
- $found_end = 1;
- # return(0);
- }
- # $found_end = 1;
- return(0);
- }
- # dummy function
- sub DoNothing {print STDOUT;}
- # Main
- @commandtable = (
- {'chassis show attributes' => 'ShowChassis'},
- {'software license show' => 'ShowLicense'},
- {'software show' => 'ShowSoftware'},
- {'port xcvr show' => 'ShowXcvr'},
- {'configuration show' => 'WriteTerm'},
- {'software show' => 'ShowSoftware'},
- );
- # Use an array to preserve the order of the commands and a hash for mapping
- # commands to the subroutine and track commands that have been completed.
- @commands = map(keys(%$_), @commandtable);
- %commands = map(%$_, @commandtable);
- $cisco_cmds = join(";",@commands);
- $cmds_regexp = join("|", map quotemeta($_), @commands);
- if (length($host) == 0) {
- if ($file) {
- print(STDERR "Too few arguments: file name required\n");
- exit(1);
- } else {
- print(STDERR "Too few arguments: host name required\n");
- exit(1);
- }
- }
- open(OUTPUT,">$host.new") || die "Can't open $host.new for writing: $!\n";
- select(OUTPUT);
- # make OUTPUT unbuffered if debugging
- if ($debug) { $| = 1; }
- if ($file) {
- print STDERR "opening file $host\n" if ($debug);
- print STDOUT "opening file $host\n" if ($log);
- open(INPUT,"<$host") || die "open failed for $host: $!\n";
- } else {
- print STDERR "executing cnlogin -t $timeo -c\"$cisco_cmds\" $host\n" if ($debug);
- print STDOUT "executing cnlogin -t $timeo -c\"$cisco_cmds\" $host\n" if ($log);
- if (defined($ENV{NOPIPE})) {
- system "/var/lib/rancid/bin/cnlogin -t $timeo -c \"$cisco_cmds\" $host </dev/null > $host.raw 2>&1" || die "cnlogin failed for $host: $!\n";
- open(INPUT, "< $host.raw") || die "cnlogin failed for $host: $!\n";
- } else {
- open(INPUT,"/var/lib/rancid/bin/cnlogin -t $timeo -c \"$cisco_cmds\" $host </dev/null |") || die "cnlogin failed for $host: $!\n";
- }
- }
- # determine ACL sorting mode
- if ($ENV{"ACLSORT"} =~ /no/i) {
- $aclsort = "";
- }
- # determine community string filtering mode
- if (defined($ENV{"NOCOMMSTR"}) &&
- ($ENV{"NOCOMMSTR"} =~ /yes/i || $ENV{"NOCOMMSTR"} =~ /^$/)) {
- $filter_commstr = 1;
- } else {
- $filter_commstr = 0;
- }
- # determine password filtering mode
- if ($ENV{"FILTER_PWDS"} =~ /no/i) {
- $filter_pwds = 0;
- } elsif ($ENV{"FILTER_PWDS"} =~ /all/i) {
- $filter_pwds = 2;
- } else {
- $filter_pwds = 1;
- }
- ProcessHistory("","","","!RANCID-CONTENT-TYPE: Ciena\n!\n");
- ProcessHistory("COMMENTS","keysort","B0","!\n");
- ProcessHistory("COMMENTS","keysort","C0","!\n");
- TOP: while(<INPUT>) {
- tr/\015//d;
- if (/^Error:/) {
- print STDOUT ("$host clogin error: $_");
- print STDERR ("$host clogin error: $_") if ($debug);
- $clean_run = 0;
- last;
- }
- while (/>\s*($cmds_regexp)\s*$/) {
- $cmd = $1;
- if (!defined($prompt)) {
- $prompt = ($_ =~ /^([^>]+>)/)[0];
- $prompt =~ s/([][}{)(\\])/\\$1/g;
- print STDERR ("PROMPT MATCH: $prompt\n") if ($debug);
- }
- print STDERR ("HIT COMMAND:$_") if ($debug);
- if (! defined($commands{$cmd})) {
- print STDERR "$host: found unexpected command - \"$cmd\"\n";
- $clean_run = 0;
- last TOP;
- }
- $rval = &{$commands{$cmd}};
- delete($commands{$cmd});
- if ($rval == -1) {
- $clean_run = 0;
- last TOP;
- }
- }
- if (/[>#]\s*exit$/) {
- $clean_run = 1;
- last;
- }
- }
- print STDOUT "Done $logincmd: $_\n" if ($log);
- # Flush History
- ProcessHistory("","","","");
- # Cleanup
- close(INPUT);
- close(OUTPUT);
- if (defined($ENV{NOPIPE})) {
- unlink("$host.raw") if (! $debug);
- }
- # check for completeness
- if (scalar(%commands) || !$clean_run || !$found_end) {
- if (scalar(%commands)) {
- printf(STDOUT "$host: missed cmd(s): %s\n", join(',', keys(%commands)));
- printf(STDERR "$host: missed cmd(s): %s\n", join(',', keys(%commands))) if ($debug);
- }
- if (!$clean_run || !$found_end) {
- print STDOUT "$host: End of run not found\n";
- print STDERR "$host: End of run not found\n" if ($debug);
- warn "$clean_run<<<<<<----- Clean Run!!";
- warn "$found_end<<<<<<<<<------- Found End!!!";
- system("/usr/bin/tail -1 $host.new");
- }
- unlink "$host.new" if (! $debug);
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement