Move 'docker_for_container' to a common module

This method is for obtaining a docker client that is used to communicate with a swarm bay. Pulling it out of docker conductor allows it to be reused later. Change-Id: I495835595ee049103f97ee8b5bfe9eb74fe9ad45 Partial-Bug: #1503460
2015-10-07 10:38:24 -04:00 · 2015-10-07 10:38:24 -04:00 · 49cf17c12d
parent 30d9ce3f81
commit 49cf17c12d
5 changed files with 225 additions and 195 deletions
--- a/magnum/common/docker_utils.py
+++ b/magnum/common/docker_utils.py
@ -11,8 +11,43 @@
 # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 # License for the specific language governing permissions and limitations
 # under the License.
+import contextlib
+
 import docker
 from docker.utils import utils
+from oslo_config import cfg
+
+from magnum.common import utils as magnum_utils
+from magnum.conductor.handlers.common import cert_manager
+from magnum.conductor.handlers.common import docker_client
+from magnum.conductor import utils as conductor_utils
+from magnum import objects
+
+
+docker_opts = [
+    cfg.StrOpt('docker_remote_api_version',
+               default=docker_client.DEFAULT_DOCKER_REMOTE_API_VERSION,
+               help='Docker remote api version. Override it according to '
+                    'specific docker api version in your environment.'),
+    cfg.IntOpt('default_timeout',
+               default=docker_client.DEFAULT_DOCKER_TIMEOUT,
+               help='Default timeout in seconds for docker client '
+                    'operations.'),
+    cfg.BoolOpt('api_insecure',
+                default=False,
+                help='If set, ignore any SSL validation issues'),
+    cfg.StrOpt('ca_file',
+               help='Location of CA certificates file for '
+                    'securing docker api requests (tlscacert).'),
+    cfg.StrOpt('cert_file',
+               help='Location of TLS certificate file for '
+                    'securing docker api requests (tlscert).'),
+    cfg.StrOpt('key_file',
+               help='Location of TLS private key file for '
+                    'securing docker api requests (tlskey).'),
+]
+CONF = cfg.CONF
+CONF.register_opts(docker_opts, 'docker')


 def parse_docker_image(image):
@ -31,3 +66,37 @@ def is_docker_library_version_atleast(version):
    if utils.compare_version(docker.version, version) <= 0:
        return True
    return False
+
+
+@contextlib.contextmanager
+def docker_for_container(context, container):
+    if magnum_utils.is_uuid_like(container):
+        container = objects.Container.get_by_uuid(context, container)
+    bay = conductor_utils.retrieve_bay(context, container)
+    baymodel = conductor_utils.retrieve_baymodel(context, bay)
+
+    tcp_url = 'tcp://%s:2376' % bay.api_address
+
+    ca_cert, magnum_key, magnum_cert = None, None, None
+    client_kwargs = dict()
+    if not baymodel.tls_disabled:
+        tcp_url = 'https://%s:2376' % bay.api_address
+        (ca_cert, magnum_key,
+         magnum_cert) = cert_manager.create_client_files(bay)
+        client_kwargs['ca_cert'] = ca_cert.name
+        client_kwargs['client_key'] = magnum_key.name
+        client_kwargs['client_cert'] = magnum_cert.name
+
+    yield docker_client.DockerHTTPClient(
+        tcp_url,
+        CONF.docker.docker_remote_api_version,
+        CONF.docker.default_timeout,
+        **client_kwargs
+    )
+
+    if ca_cert:
+        ca_cert.close()
+    if magnum_key:
+        magnum_key.close()
+    if magnum_cert:
+        magnum_cert.close()
--- a/magnum/conductor/handlers/docker_conductor.py
+++ b/magnum/conductor/handlers/docker_conductor.py
@ -11,51 +11,18 @@
 #    limitations under the License.

 """Magnum Docker RPC handler."""
-import contextlib
-
 from docker import errors
 import functools
-from oslo_config import cfg
 from oslo_log import log as logging
 import six

 from magnum.common import docker_utils
 from magnum.common import exception
-from magnum.common import utils
-from magnum.conductor.handlers.common import cert_manager
-from magnum.conductor.handlers.common import docker_client
-from magnum.conductor import utils as conductor_utils
 from magnum.i18n import _LE
 from magnum import objects
 from magnum.objects import fields

 LOG = logging.getLogger(__name__)
-CONF = cfg.CONF
-
-docker_opts = [
-    cfg.StrOpt('docker_remote_api_version',
-               default=docker_client.DEFAULT_DOCKER_REMOTE_API_VERSION,
-               help='Docker remote api version. Override it according to '
-                    'specific docker api version in your environment.'),
-    cfg.IntOpt('default_timeout',
-               default=docker_client.DEFAULT_DOCKER_TIMEOUT,
-               help='Default timeout in seconds for docker client '
-                    'operations.'),
-    cfg.BoolOpt('api_insecure',
-                default=False,
-                help='If set, ignore any SSL validation issues'),
-    cfg.StrOpt('ca_file',
-               help='Location of CA certificates file for '
-                    'securing docker api requests (tlscacert).'),
-    cfg.StrOpt('cert_file',
-               help='Location of TLS certificate file for '
-                    'securing docker api requests (tlscert).'),
-    cfg.StrOpt('key_file',
-               help='Location of TLS private key file for '
-                    'securing docker api requests (tlskey).'),
-]
-
-CONF.register_opts(docker_opts, 'docker')


 def wrap_container_exception(f):
@ -74,40 +41,6 @@ def wrap_container_exception(f):
    return functools.wraps(f)(wrapped)


-@contextlib.contextmanager
-def docker_for_container(context, container):
-    if utils.is_uuid_like(container):
-        container = objects.Container.get_by_uuid(context, container)
-    bay = conductor_utils.retrieve_bay(context, container)
-    baymodel = conductor_utils.retrieve_baymodel(context, bay)
-
-    tcp_url = 'tcp://%s:2376' % bay.api_address
-
-    ca_cert, magnum_key, magnum_cert = None, None, None
-    client_kwargs = dict()
-    if not baymodel.tls_disabled:
-        tcp_url = 'https://%s:2376' % bay.api_address
-        (ca_cert, magnum_key,
-         magnum_cert) = cert_manager.create_client_files(bay)
-        client_kwargs['ca_cert'] = ca_cert.name
-        client_kwargs['client_key'] = magnum_key.name
-        client_kwargs['client_cert'] = magnum_cert.name
-
-    yield docker_client.DockerHTTPClient(
-        tcp_url,
-        CONF.docker.docker_remote_api_version,
-        CONF.docker.default_timeout,
-        **client_kwargs
-    )
-
-    if ca_cert:
-        ca_cert.close()
-    if magnum_key:
-        magnum_key.close()
-    if magnum_cert:
-        magnum_cert.close()
-
-
 class Handler(object):

    def __init__(self):
@ -133,7 +66,7 @@ class Handler(object):

    @wrap_container_exception
    def container_create(self, context, container):
-        with docker_for_container(context, container) as docker:
+        with docker_utils.docker_for_container(context, container) as docker:
            name = container.name
            container_uuid = container.uuid
            image = container.image
@ -158,7 +91,8 @@ class Handler(object):
    @wrap_container_exception
    def container_delete(self, context, container_uuid):
        LOG.debug("container_delete %s" % container_uuid)
-        with docker_for_container(context, container_uuid) as docker:
+        with docker_utils.docker_for_container(context,
+                                               container_uuid) as docker:
            docker_id = self._find_container_by_name(docker,
                                                     container_uuid)
            if not docker_id:
@ -168,7 +102,8 @@ class Handler(object):
    @wrap_container_exception
    def container_show(self, context, container_uuid):
        LOG.debug("container_show %s" % container_uuid)
-        with docker_for_container(context, container_uuid) as docker:
+        with docker_utils.docker_for_container(context,
+                                               container_uuid) as docker:
            container = objects.Container.get_by_uuid(context, container_uuid)
            try:
                docker_id = self._find_container_by_name(docker,
@ -204,7 +139,8 @@ class Handler(object):
    @wrap_container_exception
    def _container_action(self, context, container_uuid, status, docker_func):
        LOG.debug("%s container %s ..." % (docker_func, container_uuid))
-        with docker_for_container(context, container_uuid) as docker:
+        with docker_utils.docker_for_container(context,
+                                               container_uuid) as docker:
            docker_id = self._find_container_by_name(docker,
                                                     container_uuid)
            result = getattr(docker, docker_func)(docker_id)
@ -239,7 +175,8 @@ class Handler(object):
    @wrap_container_exception
    def container_logs(self, context, container_uuid):
        LOG.debug("container_logs %s" % container_uuid)
-        with docker_for_container(context, container_uuid) as docker:
+        with docker_utils.docker_for_container(context,
+                                               container_uuid) as docker:
            docker_id = self._find_container_by_name(docker,
                                                     container_uuid)
            return {'output': docker.get_container_logs(docker_id)}
@ -248,7 +185,8 @@ class Handler(object):
    def container_exec(self, context, container_uuid, command):
        LOG.debug("container_exec %s command %s" %
                  (container_uuid, command))
-        with docker_for_container(context, container_uuid) as docker:
+        with docker_utils.docker_for_container(context,
+                                               container_uuid) as docker:
            docker_id = self._find_container_by_name(docker,
                                                     container_uuid)
            if docker_utils.is_docker_library_version_atleast('1.2.0'):
--- a/magnum/opts.py
+++ b/magnum/opts.py
@ -44,7 +44,7 @@ def list_opts():
        ('bay', magnum.conductor.template_definition.template_def_opts),
        ('conductor', magnum.conductor.config.SERVICE_OPTS),
        ('database', magnum.db.sql_opts),
-        ('docker', magnum.conductor.handlers.docker_conductor.docker_opts),
+        ('docker', magnum.common.docker_utils.docker_opts),
        ('magnum_client', magnum.common.clients.magnum_client_opts),
        ('heat_client', magnum.common.clients.heat_client_opts),
        ('glance_client', magnum.common.clients.glance_client_opts),
--- a/magnum/tests/unit/common/test_docker_utils.py
+++ b/magnum/tests/unit/common/test_docker_utils.py
@ -0,0 +1,142 @@
+# Copyright 2015 Huawei Technologies Co.,LTD.
+#
+# Licensed under the Apache License, Version 2.0 (the "License"); you may
+# not use this file except in compliance with the License. You may obtain
+# a copy of the License at
+#
+#      http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+# License for the specific language governing permissions and limitations
+# under the License.
+
+import mock
+from oslo_config import cfg
+
+from magnum.common import docker_utils
+from magnum.tests import base
+
+
+CONF = cfg.CONF
+
+
+class TestDockerUtils(base.BaseTestCase):
+    @mock.patch.object(docker_utils, 'docker_client')
+    @mock.patch.object(docker_utils, 'cert_manager')
+    @mock.patch.object(docker_utils.objects.BayModel, 'get_by_uuid')
+    @mock.patch.object(docker_utils.objects.Bay, 'get_by_uuid')
+    def test_docker_for_container(self, mock_get_bay_by_uuid,
+                                  mock_get_baymodel_by_uuid,
+                                  mock_cert_manager,
+                                  mock_docker_client):
+        mock_container = mock.MagicMock()
+        mock_bay = mock.MagicMock()
+        mock_bay.api_address = '1.2.3.4'
+        mock_get_bay_by_uuid.return_value = mock_bay
+        mock_baymodel = mock.MagicMock()
+        mock_baymodel.tls_disabled = False
+        mock_get_baymodel_by_uuid.return_value = mock_baymodel
+        mock_ca_cert = mock.MagicMock()
+        mock_magnum_key = mock.MagicMock()
+        mock_magnum_cert = mock.MagicMock()
+        mock_cert_manager.create_client_files.return_value = (
+            mock_ca_cert, mock_magnum_key, mock_magnum_cert
+        )
+
+        mock_docker = mock.MagicMock()
+        mock_docker_client.DockerHTTPClient.return_value = mock_docker
+
+        with docker_utils.docker_for_container(mock.sentinel.context,
+                                               mock_container) as docker:
+            self.assertEqual(docker, mock_docker)
+
+        mock_get_bay_by_uuid.assert_called_once_with(mock.sentinel.context,
+                                                     mock_container.bay_uuid)
+        mock_get_baymodel_by_uuid.assert_called_once_with(
+            mock.sentinel.context, mock_bay.baymodel_id)
+        mock_docker_client.DockerHTTPClient.assert_called_once_with(
+            'https://1.2.3.4:2376',
+            CONF.docker.docker_remote_api_version,
+            CONF.docker.default_timeout,
+            ca_cert=mock_ca_cert.name,
+            client_key=mock_magnum_key.name,
+            client_cert=mock_magnum_cert.name)
+
+    @mock.patch.object(docker_utils, 'docker_client')
+    @mock.patch.object(docker_utils, 'cert_manager')
+    @mock.patch.object(docker_utils.objects.BayModel, 'get_by_uuid')
+    @mock.patch.object(docker_utils.objects.Bay, 'get_by_uuid')
+    @mock.patch.object(docker_utils.objects.Container, 'get_by_uuid')
+    def test_docker_for_container_uuid(self, mock_get_container_by_uuid,
+                                       mock_get_bay_by_uuid,
+                                       mock_get_baymodel_by_uuid,
+                                       mock_cert_manager,
+                                       mock_docker_client):
+        mock_container = mock.MagicMock()
+        mock_container.uuid = '8e48ffb1-754d-4f21-bdd0-1a39bf796389'
+        mock_get_container_by_uuid.return_value = mock_container
+        mock_bay = mock.MagicMock()
+        mock_bay.api_address = '1.2.3.4'
+        mock_get_bay_by_uuid.return_value = mock_bay
+        mock_baymodel = mock.MagicMock()
+        mock_baymodel.tls_disabled = False
+        mock_get_baymodel_by_uuid.return_value = mock_baymodel
+        mock_ca_cert = mock.MagicMock()
+        mock_magnum_key = mock.MagicMock()
+        mock_magnum_cert = mock.MagicMock()
+        mock_cert_manager.create_client_files.return_value = (
+            mock_ca_cert, mock_magnum_key, mock_magnum_cert
+        )
+
+        mock_docker = mock.MagicMock()
+        mock_docker_client.DockerHTTPClient.return_value = mock_docker
+
+        with docker_utils.docker_for_container(
+                mock.sentinel.context, mock_container.uuid) as docker:
+            self.assertEqual(docker, mock_docker)
+
+        mock_get_container_by_uuid.assert_called_once_with(
+            mock.sentinel.context, mock_container.uuid
+        )
+        mock_get_bay_by_uuid.assert_called_once_with(mock.sentinel.context,
+                                                     mock_container.bay_uuid)
+        mock_get_baymodel_by_uuid.assert_called_once_with(
+            mock.sentinel.context, mock_bay.baymodel_id)
+        mock_docker_client.DockerHTTPClient.assert_called_once_with(
+            'https://1.2.3.4:2376',
+            CONF.docker.docker_remote_api_version,
+            CONF.docker.default_timeout,
+            ca_cert=mock_ca_cert.name,
+            client_key=mock_magnum_key.name,
+            client_cert=mock_magnum_cert.name)
+
+    @mock.patch.object(docker_utils, 'docker_client')
+    @mock.patch.object(docker_utils.objects.BayModel, 'get_by_uuid')
+    @mock.patch.object(docker_utils.objects.Bay, 'get_by_uuid')
+    def test_docker_for_container_tls_disabled(self, mock_get_bay_by_uuid,
+                                               mock_get_baymodel_by_uuid,
+                                               mock_docker_client):
+        mock_container = mock.MagicMock()
+        mock_bay = mock.MagicMock()
+        mock_bay.api_address = '1.2.3.4'
+        mock_get_bay_by_uuid.return_value = mock_bay
+        mock_baymodel = mock.MagicMock()
+        mock_baymodel.tls_disabled = True
+        mock_get_baymodel_by_uuid.return_value = mock_baymodel
+        mock_docker = mock.MagicMock()
+        mock_docker_client.DockerHTTPClient.return_value = mock_docker
+
+        with docker_utils.docker_for_container(mock.sentinel.context,
+                                               mock_container) as docker:
+            self.assertEqual(docker, mock_docker)
+
+        mock_get_bay_by_uuid.assert_called_once_with(mock.sentinel.context,
+                                                     mock_container.bay_uuid)
+        mock_get_baymodel_by_uuid.assert_called_once_with(
+            mock.sentinel.context, mock_bay.baymodel_id)
+        mock_docker_client.DockerHTTPClient.assert_called_once_with(
+            'tcp://1.2.3.4:2376',
+            CONF.docker.docker_remote_api_version,
+            CONF.docker.default_timeout)
--- a/magnum/tests/unit/conductor/handlers/test_docker_conductor.py
+++ b/magnum/tests/unit/conductor/handlers/test_docker_conductor.py
@ -17,6 +17,7 @@ import mock
 from oslo_config import cfg
 import six

+from magnum.common import docker_utils
 from magnum.common import exception
 from magnum.conductor.handlers import docker_conductor
 from magnum import objects
@ -27,131 +28,11 @@ from mock import patch
 CONF = cfg.CONF


-class TestDockerConductor(base.BaseTestCase):
-    @mock.patch.object(docker_conductor, 'docker_client')
-    @mock.patch.object(docker_conductor, 'cert_manager')
-    @mock.patch.object(docker_conductor.objects.BayModel, 'get_by_uuid')
-    @mock.patch.object(docker_conductor.objects.Bay, 'get_by_uuid')
-    def test_docker_for_container(self, mock_get_bay_by_uuid,
-                                  mock_get_baymodel_by_uuid,
-                                  mock_cert_manager,
-                                  mock_docker_client):
-        mock_container = mock.MagicMock()
-        mock_bay = mock.MagicMock()
-        mock_bay.api_address = '1.2.3.4'
-        mock_get_bay_by_uuid.return_value = mock_bay
-        mock_baymodel = mock.MagicMock()
-        mock_baymodel.tls_disabled = False
-        mock_get_baymodel_by_uuid.return_value = mock_baymodel
-        mock_ca_cert = mock.MagicMock()
-        mock_magnum_key = mock.MagicMock()
-        mock_magnum_cert = mock.MagicMock()
-        mock_cert_manager.create_client_files.return_value = (
-            mock_ca_cert, mock_magnum_key, mock_magnum_cert
-        )
-
-        mock_docker = mock.MagicMock()
-        mock_docker_client.DockerHTTPClient.return_value = mock_docker
-
-        with docker_conductor.docker_for_container(mock.sentinel.context,
-                                                   mock_container) as docker:
-            self.assertEqual(docker, mock_docker)
-
-        mock_get_bay_by_uuid.assert_called_once_with(mock.sentinel.context,
-                                                     mock_container.bay_uuid)
-        mock_get_baymodel_by_uuid.assert_called_once_with(
-            mock.sentinel.context, mock_bay.baymodel_id)
-        mock_docker_client.DockerHTTPClient.assert_called_once_with(
-            'https://1.2.3.4:2376',
-            CONF.docker.docker_remote_api_version,
-            CONF.docker.default_timeout,
-            ca_cert=mock_ca_cert.name,
-            client_key=mock_magnum_key.name,
-            client_cert=mock_magnum_cert.name)
-
-    @mock.patch.object(docker_conductor, 'docker_client')
-    @mock.patch.object(docker_conductor, 'cert_manager')
-    @mock.patch.object(docker_conductor.objects.BayModel, 'get_by_uuid')
-    @mock.patch.object(docker_conductor.objects.Bay, 'get_by_uuid')
-    @mock.patch.object(docker_conductor.objects.Container, 'get_by_uuid')
-    def test_docker_for_container_uuid(self, mock_get_container_by_uuid,
-                                       mock_get_bay_by_uuid,
-                                       mock_get_baymodel_by_uuid,
-                                       mock_cert_manager,
-                                       mock_docker_client):
-        mock_container = mock.MagicMock()
-        mock_container.uuid = '8e48ffb1-754d-4f21-bdd0-1a39bf796389'
-        mock_get_container_by_uuid.return_value = mock_container
-        mock_bay = mock.MagicMock()
-        mock_bay.api_address = '1.2.3.4'
-        mock_get_bay_by_uuid.return_value = mock_bay
-        mock_baymodel = mock.MagicMock()
-        mock_baymodel.tls_disabled = False
-        mock_get_baymodel_by_uuid.return_value = mock_baymodel
-        mock_ca_cert = mock.MagicMock()
-        mock_magnum_key = mock.MagicMock()
-        mock_magnum_cert = mock.MagicMock()
-        mock_cert_manager.create_client_files.return_value = (
-            mock_ca_cert, mock_magnum_key, mock_magnum_cert
-        )
-
-        mock_docker = mock.MagicMock()
-        mock_docker_client.DockerHTTPClient.return_value = mock_docker
-
-        with docker_conductor.docker_for_container(
-                mock.sentinel.context, mock_container.uuid) as docker:
-            self.assertEqual(docker, mock_docker)
-
-        mock_get_container_by_uuid.assert_called_once_with(
-            mock.sentinel.context, mock_container.uuid
-        )
-        mock_get_bay_by_uuid.assert_called_once_with(mock.sentinel.context,
-                                                     mock_container.bay_uuid)
-        mock_get_baymodel_by_uuid.assert_called_once_with(
-            mock.sentinel.context, mock_bay.baymodel_id)
-        mock_docker_client.DockerHTTPClient.assert_called_once_with(
-            'https://1.2.3.4:2376',
-            CONF.docker.docker_remote_api_version,
-            CONF.docker.default_timeout,
-            ca_cert=mock_ca_cert.name,
-            client_key=mock_magnum_key.name,
-            client_cert=mock_magnum_cert.name)
-
-    @mock.patch.object(docker_conductor, 'docker_client')
-    @mock.patch.object(docker_conductor.objects.BayModel, 'get_by_uuid')
-    @mock.patch.object(docker_conductor.objects.Bay, 'get_by_uuid')
-    def test_docker_for_container_tls_disabled(self, mock_get_bay_by_uuid,
-                                               mock_get_baymodel_by_uuid,
-                                               mock_docker_client):
-        mock_container = mock.MagicMock()
-        mock_bay = mock.MagicMock()
-        mock_bay.api_address = '1.2.3.4'
-        mock_get_bay_by_uuid.return_value = mock_bay
-        mock_baymodel = mock.MagicMock()
-        mock_baymodel.tls_disabled = True
-        mock_get_baymodel_by_uuid.return_value = mock_baymodel
-        mock_docker = mock.MagicMock()
-        mock_docker_client.DockerHTTPClient.return_value = mock_docker
-
-        with docker_conductor.docker_for_container(mock.sentinel.context,
-                                                   mock_container) as docker:
-            self.assertEqual(docker, mock_docker)
-
-        mock_get_bay_by_uuid.assert_called_once_with(mock.sentinel.context,
-                                                     mock_container.bay_uuid)
-        mock_get_baymodel_by_uuid.assert_called_once_with(
-            mock.sentinel.context, mock_bay.baymodel_id)
-        mock_docker_client.DockerHTTPClient.assert_called_once_with(
-            'tcp://1.2.3.4:2376',
-            CONF.docker.docker_remote_api_version,
-            CONF.docker.default_timeout)
-
-
 class TestDockerHandler(base.BaseTestCase):
    def setUp(self):
        super(TestDockerHandler, self).setUp()
        self.conductor = docker_conductor.Handler()
-        dfc_patcher = mock.patch.object(docker_conductor,
+        dfc_patcher = mock.patch.object(docker_utils,
                                        'docker_for_container')
        docker_for_container = dfc_patcher.start()
        self.dfc_context_manager = docker_for_container.return_value