-
Notifications
You must be signed in to change notification settings - Fork 278
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
e9f1483
commit 34787ad
Showing
1 changed file
with
301 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,301 @@ | ||
#Requires -RunAsAdministrator | ||
<# | ||
.SYNOPSIS | ||
Uninstalls the RKE2 Windows service and cleans the RKE2 Windows Agent (Worker) Node. Backup your data. Use at your own risk. | ||
.DESCRIPTION | ||
Run the script to uninstall the RKE2 Windows service and cleans the RKE2 Windows Agent (Worker) node of all RKE2 related data. | ||
.NOTES | ||
This script needs to be run with Elevated permissions to allow for the complete collection of information. | ||
Backup your data. | ||
Use at your own risk. | ||
.EXAMPLE | ||
rke2-uninstall.ps1 | ||
Uninstalls the RKE2 Windows service and cleans the RKE2 Windows Agent (Worker) Node | ||
#> | ||
|
||
[CmdletBinding()] | ||
param ( | ||
[Parameter()] | ||
[String] | ||
$Rke2Path | ||
) | ||
|
||
function Get-Args { | ||
if ($Rke2Path) { | ||
$env:RKE2_PATH = $Rke2Path | ||
} | ||
} | ||
|
||
function Set-Environment { | ||
if (-Not $env:RKE2_PATH) { | ||
$env:RKE2_PATH = "c:/usr/local/bin" | ||
} | ||
} | ||
|
||
$ErrorActionPreference = 'Stop' | ||
$WarningPreference = 'SilentlyContinue' | ||
$VerbosePreference = 'SilentlyContinue' | ||
$DebugPreference = 'SilentlyContinue' | ||
$InformationPreference = 'SilentlyContinue' | ||
|
||
function Check-Command($cmdname) | ||
{ | ||
return [bool](Get-Command -Name $cmdname -ErrorAction SilentlyContinue) | ||
} | ||
|
||
function Write-LogInfo { | ||
Write-Host -NoNewline -ForegroundColor Blue "INFO: " | ||
Write-Host -ForegroundColor Gray ("{0,-44}" -f ($args -join " ")) | ||
} | ||
function Write-LogWarn { | ||
Write-Host -NoNewline -ForegroundColor DarkYellow "WARN: " | ||
Write-Host -ForegroundColor Gray ("{0,-44}" -f ($args -join " ")) | ||
} | ||
function Write-LogError { | ||
Write-Host -NoNewline -ForegroundColor DarkRed "ERRO: " | ||
Write-Host -ForegroundColor Gray ("{0,-44}" -f ($args -join " ")) | ||
} | ||
function Write-LogFatal { | ||
Write-Host -NoNewline -ForegroundColor DarkRed "FATA: " | ||
Write-Host -ForegroundColor Gray ("{0,-44}" -f ($args -join " ")) | ||
exit 255 | ||
} | ||
|
||
function Get-VmComputeNativeMethods() | ||
{ | ||
$ret = 'VmCompute.PrivatePInvoke.NativeMethods' -as [type] | ||
if (-not $ret) { | ||
$signature = @' | ||
[DllImport("vmcompute.dll")] | ||
public static extern void HNSCall([MarshalAs(UnmanagedType.LPWStr)] string method, [MarshalAs(UnmanagedType.LPWStr)] string path, [MarshalAs(UnmanagedType.LPWStr)] string request, [MarshalAs(UnmanagedType.LPWStr)] out string response); | ||
'@ | ||
$ret = Add-Type -MemberDefinition $signature -Namespace VmCompute.PrivatePInvoke -Name "NativeMethods" -PassThru | ||
} | ||
return $ret | ||
} | ||
|
||
function Invoke-HNSRequest | ||
{ | ||
param | ||
( | ||
[ValidateSet('GET', 'DELETE')] | ||
[parameter(Mandatory = $true)] [string] $Method, | ||
[ValidateSet('networks', 'endpoints', 'activities', 'policylists', 'endpointstats', 'plugins')] | ||
[parameter(Mandatory = $true)] [string] $Type, | ||
[parameter(Mandatory = $false)] [string] $Action, | ||
[parameter(Mandatory = $false)] [string] $Data = "", | ||
[parameter(Mandatory = $false)] [Guid] $Id = [Guid]::Empty | ||
) | ||
|
||
$hnsPath = "/$Type" | ||
if ($id -ne [Guid]::Empty) { | ||
$hnsPath += "/$id" | ||
} | ||
if ($Action) { | ||
$hnsPath += "/$Action" | ||
} | ||
|
||
$response = "" | ||
$hnsApi = Get-VmComputeNativeMethods | ||
$hnsApi::HNSCall($Method, $hnsPath, "$Data", [ref]$response) | ||
|
||
$output = @() | ||
if ($response) { | ||
try { | ||
$output = ($response | ConvertFrom-Json) | ||
if ($output.Error) { | ||
Write-LogError $output; | ||
} else { | ||
$output = $output.Output; | ||
} | ||
} catch { | ||
Write-LogError $_. | ||
} | ||
} | ||
|
||
return $output; | ||
} | ||
|
||
# cleanup | ||
Write-Host "Beginning the uninstall process" | ||
|
||
Get-Process -ErrorAction Ignore -Name "rke2*" | ForEach-Object { | ||
Write-LogInfo "Stopping process $($_.Name) ..." | ||
$_ | Stop-Process -ErrorAction Ignore -Force | ||
} | ||
|
||
Get-Process -ErrorAction Ignore -Name "kube-proxy*" | ForEach-Object { | ||
Write-LogInfo "Stopping process $($_.Name) ..." | ||
$_ | Stop-Process -ErrorAction Ignore -Force | ||
} | ||
|
||
Get-Process -ErrorAction Ignore -Name "kubelet*" | ForEach-Object { | ||
Write-LogInfo "Stopping process $($_.Name) ..." | ||
$_ | Stop-Process -ErrorAction Ignore -Force | ||
} | ||
|
||
Get-Process -ErrorAction Ignore -Name "containerd*" | ForEach-Object { | ||
Write-LogInfo "Stopping process $($_.Name) ..." | ||
$_ | Stop-Process -ErrorAction Ignore -Force | ||
} | ||
|
||
# clean up firewall rules | ||
Get-NetFirewallRule -PolicyStore ActiveStore -Name "rke2*" -ErrorAction Ignore | ForEach-Object { | ||
Write-LogInfo "Cleaning up firewall rule $($_.Name) ..." | ||
$_ | Remove-NetFirewallRule -ErrorAction Ignore | Out-Null | ||
} | ||
|
||
# clean up rke2 service | ||
Get-Service -Name "rke2" -ErrorAction Ignore | Where-Object {$_.Status -eq "Running"} | ForEach-Object { | ||
if ($_.Status -eq "Running") { | ||
Write-LogInfo "Stopping rke2 service ..." | ||
$_ | Stop-Service -Force -ErrorAction Ignore | ||
Write-LogInfo "Removing the rke2 service ..." | ||
if (($PSVersionTable.PSVersion.Major) -ge 6) { | ||
Remove-Service rke2 | ||
} | ||
else { | ||
sc.exe delete rke2 | ||
} | ||
} | ||
else { | ||
Write-LogInfo "Removing the rke2 service ..." | ||
if (($PSVersionTable.PSVersion.Major) -ge 6) { | ||
Remove-Service rke2 | ||
} | ||
else { | ||
sc.exe delete rke2 | ||
} | ||
} | ||
|
||
} | ||
|
||
function Clean-HNS () { | ||
try { | ||
Get-HnsNetwork | Where-Object { $_.Name -eq 'Calico' -or $_.Name -eq 'vxlan0' -or $_.Name -eq 'nat' -or $_.Name -eq 'External'} | Select-Object Name, ID | ForEach-Object { | ||
Write-LogInfo "Cleaning up HnsNetwork $($_.Name) ..." | ||
hnsdiag delete networks ($_.ID) | ||
} | ||
|
||
Invoke-HNSRequest -Method "GET" -Type "policylists" | Where-Object {-not [string]::IsNullOrEmpty($_.Id)} | ForEach-Object { | ||
Write-LogInfo "Cleaning up HNSPolicyList `$(`$_.Id) ..." | ||
Invoke-HNSRequest -Method "DELETE" -Type "policylists" -Id `$_.Id | ||
} | ||
|
||
Get-HnsEndpoint | Select-Object Name, ID | ForEach-Object { | ||
Write-LogInfo "Cleaning up HnsEndpoint $($_.Name) ..." | ||
hnsdiag delete endpoints ($_.ID) | ||
} | ||
|
||
Get-HnsNamespace | Select-Object ID | ForEach-Object { | ||
Write-LogInfo "Cleaning up HnsEndpoint $($_.ID) ..." | ||
hnsdiag delete namespace ($_.ID) | ||
} | ||
} | ||
catch { | ||
Write-LogWarn "Could not clean: $($_)" | ||
} | ||
} | ||
|
||
# clean up data | ||
function Clean-Data () { | ||
$cleanDirs = @( | ||
"c:/usr" | ||
"c:/etc" | ||
"c:/run" | ||
"c:/var" | ||
) | ||
foreach ($dir in $cleanDirs) { | ||
Write-LogInfo "Cleaning $dir..." | ||
if (Test-Path $dir) { | ||
$symLinkCheck = "Get-ChildItem -Path $dir -Recurse -Attributes ReparsePoint" | ||
if (!([string]::IsNullOrEmpty($symLinkCheck))) { | ||
Get-ChildItem -Path $dir -Recurse -Attributes ReparsePoint | ForEach-Object { $_.Delete() } | ||
} | ||
Remove-Item -Path $dir -Recurse -Force -ErrorAction SilentlyContinue | ||
} | ||
else { | ||
Write-LogInfo "$dir is empty, moving on" | ||
} | ||
} | ||
} | ||
|
||
function Clean-Containerd () { | ||
if (Check-Command ctr) { | ||
$namespaces = $(List-Namespaces) | ||
foreach ($ns in $namespaces) { | ||
$tasks = $(List-Tasks $ns) | ||
foreach ($task in $tasks){ | ||
Delete-Task $ns $task | ||
} | ||
$containers = $(List-ContainersInNamespace $ns) | ||
foreach ($container in $containers) { | ||
Delete-Container $ns $container | ||
} | ||
|
||
$images = $(List-Images $ns) | ||
foreach ($image in $images) { | ||
Delete-Image $ns $image | ||
} | ||
Delete-Namespace $ns | ||
} | ||
} | ||
else { | ||
Write-LogError "PATH is misconfigured or ctr is missing from PATH" | ||
Write-LogWarn "Cannot clean up containerd resources" | ||
} | ||
} | ||
|
||
function List-Namespaces () { | ||
"$RKE2_PATH/ctr --namespace=$namespace namespace list -q" | ||
} | ||
|
||
function List-ContainersInNamespace() { | ||
$namespace = $1 | ||
"$RKE2_PATH/ctr --namespace=$namespace container list -q" | ||
} | ||
|
||
function List-Tasks() { | ||
$namespace = $1 | ||
"$RKE2_PATH/ctr -n $namespace task list -q" | ||
} | ||
|
||
function List-Images() { | ||
$namespace = $1 | ||
"$RKE2_PATH/ctr -n $namespace image list -q" | ||
} | ||
|
||
function Delete-Image() { | ||
$namespace = $1 | ||
$image = $2 | ||
"$RKE2_PATH/ctr -n $namespace image rm $image" | ||
} | ||
|
||
function Delete-Task() { | ||
$namespace = $1 | ||
$task = $2 | ||
"$RKE2_PATH/ctr -n $namespace task delete --force $task" | ||
} | ||
|
||
function Delete-Container() { | ||
$namespace = $1 | ||
$container = $2 | ||
"$RKE2_PATH/ctr --namespace=$namespace container delete $container" | ||
} | ||
|
||
function Delete-Namespace() { | ||
$namespace = $1 | ||
"$RKE2_PATH/ctr namespace remove $namespace" | ||
} | ||
|
||
function RKE2-Uninstall () { | ||
Get-Args | ||
Set-Environment | ||
Clean-Containerd | ||
Clean-HNS | ||
Clean-Data | ||
Write-LogInfo "Finished!" | ||
} | ||
|
||
RKE2-Uninstall | ||
exit 0 |