diff --git a/bundle/bin/rke2-uninstall.ps1 b/bundle/bin/rke2-uninstall.ps1 new file mode 100644 index 0000000000..f8cef43a12 --- /dev/null +++ b/bundle/bin/rke2-uninstall.ps1 @@ -0,0 +1,301 @@ +#Requires -RunAsAdministrator +<# +.SYNOPSIS + Uninstalls the RKE2 Windows service and cleans the RKE2 Windows Agent (Worker) Node. Backup your data. Use at your own risk. +.DESCRIPTION + Run the script to uninstall the RKE2 Windows service and cleans the RKE2 Windows Agent (Worker) node of all RKE2 related data. +.NOTES + This script needs to be run with Elevated permissions to allow for the complete collection of information. + Backup your data. + Use at your own risk. +.EXAMPLE + rke2-uninstall.ps1 + Uninstalls the RKE2 Windows service and cleans the RKE2 Windows Agent (Worker) Node +#> + +[CmdletBinding()] +param ( + [Parameter()] + [String] + $Rke2Path +) + +function Get-Args { + if ($Rke2Path) { + $env:RKE2_PATH = $Rke2Path + } +} + +function Set-Environment { + if (-Not $env:RKE2_PATH) { + $env:RKE2_PATH = "c:/usr/local/bin" + } +} + +$ErrorActionPreference = 'Stop' +$WarningPreference = 'SilentlyContinue' +$VerbosePreference = 'SilentlyContinue' +$DebugPreference = 'SilentlyContinue' +$InformationPreference = 'SilentlyContinue' + +function Check-Command($cmdname) +{ + return [bool](Get-Command -Name $cmdname -ErrorAction SilentlyContinue) +} + +function Write-LogInfo { + Write-Host -NoNewline -ForegroundColor Blue "INFO: " + Write-Host -ForegroundColor Gray ("{0,-44}" -f ($args -join " ")) +} +function Write-LogWarn { + Write-Host -NoNewline -ForegroundColor DarkYellow "WARN: " + Write-Host -ForegroundColor Gray ("{0,-44}" -f ($args -join " ")) +} +function Write-LogError { + Write-Host -NoNewline -ForegroundColor DarkRed "ERROR: " + Write-Host -ForegroundColor Gray ("{0,-44}" -f ($args -join " ")) +} +function Write-LogFatal { + Write-Host -NoNewline -ForegroundColor DarkRed "FATA: " + Write-Host -ForegroundColor Gray ("{0,-44}" -f ($args -join " ")) + exit 255 +} + +function Get-VmComputeNativeMethods() +{ + $ret = 'VmCompute.PrivatePInvoke.NativeMethods' -as [type] + if (-not $ret) { + $signature = @' +[DllImport("vmcompute.dll")] +public static extern void HNSCall([MarshalAs(UnmanagedType.LPWStr)] string method, [MarshalAs(UnmanagedType.LPWStr)] string path, [MarshalAs(UnmanagedType.LPWStr)] string request, [MarshalAs(UnmanagedType.LPWStr)] out string response); +'@ + $ret = Add-Type -MemberDefinition $signature -Namespace VmCompute.PrivatePInvoke -Name "NativeMethods" -PassThru + } + return $ret +} + +function Invoke-HNSRequest +{ + param + ( + [ValidateSet('GET', 'DELETE')] + [parameter(Mandatory = $true)] [string] $Method, + [ValidateSet('networks', 'endpoints', 'activities', 'policylists', 'endpointstats', 'plugins')] + [parameter(Mandatory = $true)] [string] $Type, + [parameter(Mandatory = $false)] [string] $Action, + [parameter(Mandatory = $false)] [string] $Data = "", + [parameter(Mandatory = $false)] [Guid] $Id = [Guid]::Empty + ) + + $hnsPath = "/$Type" + if ($id -ne [Guid]::Empty) { + $hnsPath += "/$id" + } + if ($Action) { + $hnsPath += "/$Action" + } + + $response = "" + $hnsApi = Get-VmComputeNativeMethods + $hnsApi::HNSCall($Method, $hnsPath, "$Data", [ref]$response) + + $output = @() + if ($response) { + try { + $output = ($response | ConvertFrom-Json) + if ($output.Error) { + Write-LogError $output; + } else { + $output = $output.Output; + } + } catch { + Write-LogError $_. + } + } + + return $output; +} + +# cleanup +Write-Host "Beginning the uninstall process" + +Get-Process -ErrorAction Ignore -Name "rke2*" | ForEach-Object { + Write-LogInfo "Stopping process $($_.Name) ..." + $_ | Stop-Process -ErrorAction Ignore -Force +} + +Get-Process -ErrorAction Ignore -Name "kube-proxy*" | ForEach-Object { + Write-LogInfo "Stopping process $($_.Name) ..." + $_ | Stop-Process -ErrorAction Ignore -Force +} + +Get-Process -ErrorAction Ignore -Name "kubelet*" | ForEach-Object { + Write-LogInfo "Stopping process $($_.Name) ..." + $_ | Stop-Process -ErrorAction Ignore -Force +} + +Get-Process -ErrorAction Ignore -Name "containerd*" | ForEach-Object { + Write-LogInfo "Stopping process $($_.Name) ..." + $_ | Stop-Process -ErrorAction Ignore -Force +} + +# clean up firewall rules +Get-NetFirewallRule -PolicyStore ActiveStore -Name "rke2*" -ErrorAction Ignore | ForEach-Object { + Write-LogInfo "Cleaning up firewall rule $($_.Name) ..." + $_ | Remove-NetFirewallRule -ErrorAction Ignore | Out-Null +} + +# clean up rke2 service +Get-Service -Name "rke2" -ErrorAction Ignore | Where-Object {$_.Status -eq "Running"} | ForEach-Object { + if ($_.Status -eq "Running") { + Write-LogInfo "Stopping rke2 service ..." + $_ | Stop-Service -Force -ErrorAction Ignore + Write-LogInfo "Removing the rke2 service ..." + if (($PSVersionTable.PSVersion.Major) -ge 6) { + Remove-Service rke2 + } + else { + sc.exe delete rke2 + } + } + else { + Write-LogInfo "Removing the rke2 service ..." + if (($PSVersionTable.PSVersion.Major) -ge 6) { + Remove-Service rke2 + } + else { + sc.exe delete rke2 + } + } + +} + +function Clean-HNS () { +try { + Get-HnsNetwork | Where-Object { $_.Name -eq 'Calico' -or $_.Name -eq 'vxlan0' -or $_.Name -eq 'nat' -or $_.Name -eq 'External'} | Select-Object Name, ID | ForEach-Object { + Write-LogInfo "Cleaning up HnsNetwork $($_.Name) ..." + hnsdiag delete networks ($_.ID) + } + + Invoke-HNSRequest -Method "GET" -Type "policylists" | Where-Object {-not [string]::IsNullOrEmpty($_.Id)} | ForEach-Object { + Write-LogInfo "Cleaning up HNSPolicyList `$(`$_.Id) ..." + Invoke-HNSRequest -Method "DELETE" -Type "policylists" -Id `$_.Id + } + + Get-HnsEndpoint | Select-Object Name, ID | ForEach-Object { + Write-LogInfo "Cleaning up HnsEndpoint $($_.Name) ..." + hnsdiag delete endpoints ($_.ID) + } + + Get-HnsNamespace | Select-Object ID | ForEach-Object { + Write-LogInfo "Cleaning up HnsEndpoint $($_.ID) ..." + hnsdiag delete namespace ($_.ID) + } +} +catch { + Write-LogWarn "Could not clean: $($_)" + } +} + +# clean up data +function Clean-Data () { + $cleanDirs = @( + "c:/usr" + "c:/etc" + "c:/run" + "c:/var" + ) + foreach ($dir in $cleanDirs) { + Write-LogInfo "Cleaning $dir..." + if (Test-Path $dir) { + $symLinkCheck = "Get-ChildItem -Path $dir -Recurse -Attributes ReparsePoint" + if (!([string]::IsNullOrEmpty($symLinkCheck))) { + Get-ChildItem -Path $dir -Recurse -Attributes ReparsePoint | ForEach-Object { $_.Delete() } + } + Remove-Item -Path $dir -Recurse -Force -ErrorAction SilentlyContinue + } + else { + Write-LogInfo "$dir is empty, moving on" + } + } +} + +function Clean-Containerd () { + if (Check-Command ctr) { + $namespaces = $(List-Namespaces) + foreach ($ns in $namespaces) { + $tasks = $(List-Tasks $ns) + foreach ($task in $tasks){ + Delete-Task $ns $task + } + $containers = $(List-ContainersInNamespace $ns) + foreach ($container in $containers) { + Delete-Container $ns $container + } + + $images = $(List-Images $ns) + foreach ($image in $images) { + Delete-Image $ns $image + } + Delete-Namespace $ns + } + } + else { + Write-LogError "PATH is misconfigured or ctr is missing from PATH" + Write-LogWarn "Cannot clean up containerd resources" + } +} + +function List-Namespaces () { + "$RKE2_PATH/ctr --namespace=$namespace namespace list -q" +} + +function List-ContainersInNamespace() { + $namespace = $1 + "$RKE2_PATH/ctr --namespace=$namespace container list -q" +} + +function List-Tasks() { + $namespace = $1 + "$RKE2_PATH/ctr -n $namespace task list -q" +} + +function List-Images() { + $namespace = $1 + "$RKE2_PATH/ctr -n $namespace image list -q" +} + +function Delete-Image() { + $namespace = $1 + $image = $2 + "$RKE2_PATH/ctr -n $namespace image rm $image" +} + +function Delete-Task() { + $namespace = $1 + $task = $2 + "$RKE2_PATH/ctr -n $namespace task delete --force $task" +} + +function Delete-Container() { + $namespace = $1 + $container = $2 + "$RKE2_PATH/ctr --namespace=$namespace container delete $container" +} + +function Delete-Namespace() { + $namespace = $1 + "$RKE2_PATH/ctr namespace remove $namespace" +} + +function RKE2-Uninstall () { + Get-Args + Set-Environment + Clean-Containerd + Clean-HNS + Clean-Data + Write-LogInfo "Finished!" +} + +RKE2-Uninstall +exit 0