diff options
| author | Stefan Hanreich <s.hanreich@proxmox.com> | 2025-07-29 11:29:33 +0200 |
|---|---|---|
| committer | Thomas Lamprecht <t.lamprecht@proxmox.com> | 2025-07-29 12:59:51 +0200 |
| commit | ea6db24afdaf63dedcdd4d74ce97918f7f82b034 (patch) | |
| tree | 73ec2cb0bc40164ed85e855fea2608f023891c1a /src/PVE/API2/Network/SDN.pm | |
| parent | d6e50fb57ea7b4af47d7120d3066f19547bab81d (diff) | |
api: add rollback endpoint
This adds the functionality of rolling back the pending configuration
to the currently running configuration, resetting all changes made
since last applying the SDN configuration. This is mainly thought as
an escape hatch for failed PDM transactions.
You can invoke the endpoint via CLI:
pvesh create /cluster/sdn/rollback [--lock-token X [--release-lock]]
If a lock is currently held on the configuration and you want to
forcibly rollback, you need to release the lock first via the
lock_release API endpoint.
Co-authored-by: Gabriel Goller <g.goller@proxmox.com>
Signed-off-by: Stefan Hanreich <s.hanreich@proxmox.com>
Link: https://lore.proxmox.com/20250729092933.90118-6-g.goller@proxmox.com
Diffstat (limited to 'src/PVE/API2/Network/SDN.pm')
| -rw-r--r-- | src/PVE/API2/Network/SDN.pm | 57 |
1 files changed, 56 insertions, 1 deletions
diff --git a/src/PVE/API2/Network/SDN.pm b/src/PVE/API2/Network/SDN.pm index 9e59d08..7c91902 100644 --- a/src/PVE/API2/Network/SDN.pm +++ b/src/PVE/API2/Network/SDN.pm @@ -197,7 +197,62 @@ __PACKAGE__->register_method({ }, }); -__PACKAGE__->register_method ({ +__PACKAGE__->register_method({ + name => 'rollback', + protected => 1, + path => 'rollback', + method => 'POST', + description => "Rollback pending changes to SDN configuration", + permissions => { + check => ['perm', '/sdn', ['SDN.Allocate']], + }, + parameters => { + additionalProperties => 0, + properties => { + 'lock-token' => get_standard_option('pve-sdn-lock-token'), + 'release-lock' => { + type => 'boolean', + optional => 1, + default => 1, + description => + 'When lock-token has been provided and configuration successfully rollbacked, release the lock automatically afterwards', + }, + }, + }, + returns => { + type => 'null', + }, + code => sub { + my ($param) = @_; + + my $lock_token = extract_param($param, 'lock-token'); + my $release_lock = extract_param($param, 'release-lock'); + + my $rollback = sub { + my $running_config = PVE::Network::SDN::running_config(); + + PVE::Network::SDN::Zones::write_config($running_config->{zones}); + PVE::Network::SDN::Vnets::write_config($running_config->{vnets}); + PVE::Network::SDN::Subnets::write_config($running_config->{subnets}); + PVE::Network::SDN::Controllers::write_config($running_config->{controllers}); + + # if the config hasn't yet been applied after the introduction of + # fabrics then the key does not exist in the running config so we + # default to an empty hash + my $fabrics_config = $running_config->{fabrics}->{ids} // {}; + my $parsed_fabrics_config = PVE::RS::SDN::Fabrics->running_config($fabrics_config); + PVE::Network::SDN::Fabrics::write_config($parsed_fabrics_config); + + PVE::Network::SDN::delete_global_lock() if $lock_token && $release_lock; + }; + + PVE::Network::SDN::lock_sdn_config( + $rollback, "could not rollback SDN configuration", $lock_token, + ); + }, +}); + +__PACKAGE__->register_method({ name => 'reload', protected => 1, path => '', |