# Copyright 2014 Huawei Technologies Co. Ltd # # Licensed under the Apache License, Version 2.0 (the "License"); # you may not use this file except in compliance with the License. # You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. # See the License for the specific language governing permissions and # limitations under the License. """Switch database operations.""" import logging import netaddr import re from compass.db.api import database from compass.db.api import permission from compass.db.api import user as user_api from compass.db.api import utils from compass.db import exception from compass.db import models from compass.utils import setting_wrapper as setting SUPPORTED_FIELDS = ['ip_int', 'vendor', 'state'] SUPPORTED_FILTER_FIELDS = ['ip_int', 'vendor', 'state'] SUPPORTED_SWITCH_MACHINES_FIELDS = [ 'switch_ip_int', 'port', 'vlans', 'mac', 'tag', 'location' ] SUPPORTED_MACHINES_FIELDS = [ 'port', 'vlans', 'mac', 'tag', 'location' ] SUPPORTED_SWITCH_MACHINES_HOSTS_FIELDS = [ 'switch_ip_int', 'port', 'vlans', 'mac', 'tag', 'location', 'os_name', 'os_id' ] SUPPORTED_MACHINES_HOSTS_FIELDS = [ 'port', 'vlans', 'mac', 'tag', 'location', 'os_name', 'os_id' ] ADDED_FIELDS = ['ip'] OPTIONAL_ADDED_FIELDS = ['credentials', 'vendor', 'state', 'err_msg'] UPDATED_FIELDS = ['credentials', 'vendor', 'state', 'err_msg'] PATCHED_FIELDS = ['patched_credentials'] UPDATED_FILTERS_FIELDS = ['filters'] PATCHED_FILTERS_FIELDS = ['patched_filters'] ADDED_MACHINES_FIELDS = ['mac', 'port'] OPTIONAL_ADDED_MACHINES_FIELDS = [ 'vlans', 'ipmi_credentials', 'tag', 'location' ] CHECK_FILTER_FIELDS = ['filter_name', 'filter_type'] OPTIONAL_CHECK_FILTER_FIELDS = [ 'ports', 'port_prefix', 'port_suffix', 'port_start', 'port_end' ] ADDED_SWITCH_MACHINES_FIELDS = ['port', 'vlans'] UPDATED_MACHINES_FIELDS = [ 'port', 'vlans', 'ipmi_credentials', 'tag', 'location' ] UPDATED_SWITCH_MACHINES_FIELDS = ['port', 'vlans'] PATCHED_MACHINES_FIELDS = [ 'patched_vlans', 'patched_ipmi_credentials', 'patched_tag', 'patched_location' ] PATCHED_SWITCH_MACHINES_FIELDS = ['patched_vlans'] RESP_FIELDS = [ 'id', 'ip', 'credentials', 'vendor', 'state', 'err_msg', 'created_at', 'updated_at' ] RESP_FILTERS_FIELDS = [ 'id', 'ip', 'filters', 'created_at', 'updated_at' ] RESP_ACTION_FIELDS = [ 'status', 'details' ] RESP_MACHINES_FIELDS = [ 'id', 'switch_id', 'switch_ip', 'machine_id', 'port', 'vlans', 'mac', 'ipmi_credentials', 'tag', 'location', 'created_at', 'updated_at' ] RESP_MACHINES_HOSTS_FIELDS = [ 'id', 'switch_id', 'switch_ip', 'machine_id', 'port', 'vlans', 'mac', 'ipmi_credentials', 'tag', 'location', 'name', 'os_name', 'clusters' ] RESP_CLUSTER_FIELDS = [ 'name', 'id' ] def _check_filters(switch_filters): for switch_filter in switch_filters: if not isinstance(switch_filter, dict): raise exception.InvalidParameter( 'filter %s is not dict' % switch_filter ) _check_filter_internal(**switch_filter) @utils.supported_filters( CHECK_FILTER_FIELDS, optional_support_keys=OPTIONAL_CHECK_FILTER_FIELDS ) def _check_filter_internal( filter_name, filter_type, **switch_filter ): if filter_type not in ['allow', 'deny']: raise exception.InvalidParameter( 'filter_type should be `allow` or `deny` in %s' % switch_filter ) if 'ports' in switch_filter: if not isinstance(switch_filter['ports'], list): raise exception.InvalidParameter( '`ports` is not list in filter %s' % switch_filter ) for key in ['port_start', 'port_end']: if key in switch_filter: if not isinstance(switch_filter[key], int): raise exception.InvalidParameter( '`key` is not int in filer %s' % switch_filter ) def _check_vlans(vlans): for vlan in vlans: if not isinstance(vlan, int): raise exception.InvalidParameter( 'vlan %s is not int' % vlan ) def add_switch_internal( session, ip_int, exception_when_existing=True, **kwargs ): with session.begin(subtransactions=True): return utils.add_db_object( session, models.Switch, exception_when_existing, ip_int, filters=setting.SWITCHES_DEFAULT_FILTERS, **kwargs ) def get_switch_internal( session, exception_when_missing=True, **kwargs ): """Get switch.""" with session.begin(subtransactions=True): return utils.get_db_object( session, models.Switch, exception_when_missing, **kwargs ) @utils.supported_filters([]) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_LIST_SWITCHES ) @utils.wrap_to_dict(RESP_FIELDS) def get_switch( session, getter, switch_id, exception_when_missing=True, **kwargs ): """get field dict of a switch.""" return utils.get_db_object( session, models.Switch, exception_when_missing, id=switch_id ) @utils.supported_filters(optional_support_keys=SUPPORTED_FIELDS) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_LIST_SWITCHES ) @utils.wrap_to_dict(RESP_FIELDS) def list_switches(session, lister, **filters): """List switches.""" switches = utils.list_db_objects( session, models.Switch, **filters ) if 'ip_int' in filters: return switches else: return [ switch for switch in switches if switch.ip != setting.DEFAULT_SWITCH_IP ] @utils.supported_filters([]) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_DEL_SWITCH ) @utils.wrap_to_dict(RESP_FIELDS) def del_switch(session, deleter, switch_id, **kwargs): """Delete a switch.""" switch = utils.get_db_object(session, models.Switch, id=switch_id) return utils.del_db_object(session, switch) @utils.supported_filters( ADDED_FIELDS, optional_support_keys=OPTIONAL_ADDED_FIELDS ) @utils.input_validates( ip=utils.check_ip, credentials=utils.check_switch_credentials ) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_ADD_SWITCH ) @utils.wrap_to_dict(RESP_FIELDS) def add_switch( session, creator, exception_when_existing=True, ip=None, **kwargs ): """Create a switch.""" ip_int = long(netaddr.IPAddress(ip)) return add_switch_internal( session, ip_int, exception_when_existing, **kwargs ) def update_switch_internal(session, switch, **kwargs): """update switch.""" return utils.update_db_object( session, switch, **kwargs ) @user_api.check_user_permission_in_session( permission.PERMISSION_ADD_SWITCH ) @utils.wrap_to_dict(RESP_FIELDS) def _update_switch(session, updater, switch_id, **kwargs): """Update a switch.""" switch = utils.get_db_object( session, models.Switch, id=switch_id ) return utils.update_db_object(session, switch, **kwargs) @utils.supported_filters(optional_support_keys=UPDATED_FIELDS) @utils.input_validates( credentials=utils.check_switch_credentials ) @database.run_in_session() def update_switch(session, updater, switch_id, **kwargs): return _update_switch(session, updater, switch_id, **kwargs) @utils.replace_filters( credentials='patched_credentials' ) @utils.supported_filters(optional_support_keys=PATCHED_FIELDS) @database.run_in_session() @utils.output_validates( credentials=utils.check_switch_credentials ) def patch_switch(session, updater, switch_id, **kwargs): return _update_switch(session, updater, switch_id, **kwargs) @utils.supported_filters(optional_support_keys=SUPPORTED_FILTER_FIELDS) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_LIST_SWITCH_FILTERS ) @utils.wrap_to_dict(RESP_FILTERS_FIELDS) def list_switch_filters(session, lister, **filters): """list switch filters.""" return utils.list_db_objects( session, models.Switch, **filters ) @utils.supported_filters() @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_LIST_SWITCH_FILTERS ) @utils.wrap_to_dict(RESP_FILTERS_FIELDS) def get_switch_filters( session, getter, switch_id, **kwargs ): """get switch filter.""" return utils.get_db_object( session, models.Switch, id=switch_id ) @utils.supported_filters(optional_support_keys=UPDATED_FILTERS_FIELDS) @utils.input_validates(filters=_check_filters) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_UPDATE_SWITCH_FILTERS ) @utils.wrap_to_dict(RESP_FILTERS_FIELDS) def update_switch_filters(session, updater, switch_id, **kwargs): """Update a switch filter.""" switch = utils.get_db_object(session, models.Switch, id=switch_id) return utils.update_db_object(session, switch, **kwargs) @utils.replace_filters( filters='patched_filters' ) @utils.supported_filters(optional_support_keys=PATCHED_FILTERS_FIELDS) @utils.input_validates(patched_filters=_check_filters) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_UPDATE_SWITCH_FILTERS ) @utils.wrap_to_dict(RESP_FILTERS_FIELDS) def patch_switch_filter(session, updater, switch_id, **kwargs): """Patch a switch filter.""" switch = utils.get_db_object(session, models.Switch, id=switch_id) return utils.update_db_object(session, switch, **kwargs) def filter_machine_internal(filters, port): for port_filter in filters: logging.debug('apply filter %s on port %s', port_filter, port) filter_allowed = port_filter['filter_type'] == 'allow' if 'ports' in port_filter: if port in port_filter['ports']: logging.debug('port is allowed? %s', filter_allowed) return filter_allowed else: logging.debug('port is allowed? %s', not filter_allowed) return not filter_allowed port_prefix = port_filter.get('port_prefix', '') port_suffix = port_filter.get('port_suffix', '') pattern = re.compile(r'%s(\d+)%s' % (port_prefix, port_suffix)) match = pattern.match(port) if match: logging.debug( 'port %s matches pattern %s', port, pattern.pattern ) port_number = match.group(1) if ( 'port_start' not in port_filter or port_number >= port_filter['port_start'] ) and ( 'port_end' not in port_filter or port_number <= port_filter['port_end'] ): logging.debug('port is allowed? %s', filter_allowed) return filter_allowed else: logging.debug( 'port %s does not match pattern %s', port, pattern.pattern ) return True def get_switch_machines_internal(session, **filters): return utils.list_db_objects( session, models.SwitchMachine, **filters ) def _filter_port(port_filter, obj): port_prefix = port_filter.get('startswith', '') port_suffix = port_filter.get('endswith', '') pattern = re.compile(r'%s(\d+)%s' % (port_prefix, port_suffix)) match = pattern.match(obj) if not match: return False port_number = int(match.group(1)) if ( 'resp_lt' in port_filter and port_number >= port_filter['resp_lt'] ): return False if ( 'resp_le' in port_filter and port_number > port_filter['resp_le'] ): return False if ( 'resp_gt' in port_filter and port_number <= port_filter['resp_gt'] ): return False if ( 'resp_ge' in port_filter and port_number < port_filter['resp_ge'] ): return False if 'resp_range' in port_filter: in_range = False for port_start, port_end in port_filter['resp_range']: if port_start <= port_number <= port_end: in_range = True break if not in_range: return False return True def _filter_vlans(vlan_filter, obj): vlans = set(obj) if 'resp_in' in vlan_filter: resp_vlans = set(vlan_filter['resp_in']) if not (vlans & resp_vlans): return False return True @user_api.check_user_permission_in_session( permission.PERMISSION_LIST_SWITCH_MACHINES ) @utils.output_filters( port=_filter_port, vlans=_filter_vlans, tag=utils.general_filter_callback, location=utils.general_filter_callback ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def _filter_switch_machines(session, user, switch_machines, **filters): return [ switch_machine for switch_machine in switch_machines if filter_machine_internal( switch_machine.switch.filters, switch_machine.port ) ] @user_api.check_user_permission_in_session( permission.PERMISSION_LIST_SWITCH_MACHINES ) @utils.output_filters( missing_ok=True, port=_filter_port, vlans=_filter_vlans, tag=utils.general_filter_callback, location=utils.general_filter_callback, os_name=utils.general_filter_callback, os_id=utils.general_filter_callback ) @utils.wrap_to_dict( RESP_MACHINES_HOSTS_FIELDS, clusters=RESP_CLUSTER_FIELDS ) def _filter_switch_machines_hosts(session, user, switch_machines, **filters): filtered_switch_machines = [ switch_machine for switch_machine in switch_machines if filter_machine_internal( switch_machine.switch.filters, switch_machine.port ) ] switch_machines_hosts = [] for switch_machine in filtered_switch_machines: switch_machine_host_dict = {} machine = switch_machine.machine host = machine.host if host: clusters = [ clusterhost.cluster for clusterhost in host.clusterhosts ] switch_machine_host_dict.update( host.to_dict() ) switch_machine_host_dict['clusters'] = [ cluster.to_dict() for cluster in clusters ] switch_machine_host_dict.update( switch_machine.to_dict() ) switch_machines_hosts.append(switch_machine_host_dict) return switch_machines_hosts @utils.supported_filters( optional_support_keys=SUPPORTED_MACHINES_FIELDS ) @database.run_in_session() def list_switch_machines(session, getter, switch_id, **filters): """Get switch machines.""" switch_machines = get_switch_machines_internal( session, switch_id=switch_id, **filters ) return _filter_switch_machines(session, getter, switch_machines, **filters) @utils.replace_filters( ip_int='switch_ip_int' ) @utils.supported_filters( optional_support_keys=SUPPORTED_SWITCH_MACHINES_FIELDS ) @database.run_in_session() def list_switchmachines(session, lister, **filters): """List switch machines.""" switch_machines = get_switch_machines_internal( session, **filters ) if 'ip_int' in filters: filtered_switch_machines = switch_machines else: filtered_switch_machines = [ switch_machine for switch_machine in switch_machines if switch_machine.switch_ip != setting.DEFAULT_SWITCH_IP ] return _filter_switch_machines( session, lister, filtered_switch_machines, **filters ) @utils.supported_filters( optional_support_keys=SUPPORTED_MACHINES_HOSTS_FIELDS ) @database.run_in_session() def list_switch_machines_hosts(session, getter, switch_id, **filters): """Get switch machines hosts.""" switch_machines = get_switch_machines_internal( session, switch_id=switch_id, **filters ) return _filter_switch_machines_hosts( session, getter, switch_machines, **filters ) @utils.replace_filters( ip_int='switch_ip_int' ) @utils.supported_filters( optional_support_keys=SUPPORTED_SWITCH_MACHINES_HOSTS_FIELDS ) @database.run_in_session() def list_switchmachines_hosts(session, lister, **filters): """List switch machines hosts.""" switch_machines = get_switch_machines_internal( session, **filters ) if 'ip_int' in filters: filtered_switch_machines = switch_machines else: filtered_switch_machines = [ switch_machine for switch_machine in switch_machines if switch_machine.switch_ip != setting.DEFAULT_SWITCH_IP ] return _filter_switch_machines_hosts( session, lister, filtered_switch_machines, **filters ) @utils.supported_filters( ADDED_MACHINES_FIELDS, optional_support_keys=OPTIONAL_ADDED_MACHINES_FIELDS ) @utils.input_validates(mac=utils.check_mac, vlans=_check_vlans) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_ADD_SWITCH_MACHINE ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def add_switch_machine( session, creator, switch_id, exception_when_existing=True, mac=None, **kwargs ): """Add switch machine.""" switch = utils.get_db_object( session, models.Switch, id=switch_id) switch_machine_dict = {} machine_dict = {} for key, value in kwargs.items(): if key in ADDED_SWITCH_MACHINES_FIELDS: switch_machine_dict[key] = value else: machine_dict[key] = value machine = utils.add_db_object( session, models.Machine, False, mac, **machine_dict) switches = [switch] if switch.ip != setting.DEFAULT_SWITCH_IP: switches.append(utils.get_db_object( session, models.Switch, ip_int=long(netaddr.IPAddress(setting.DEFAULT_SWITCH_IP)) )) switch_machines = [] for machine_switch in switches: switch_machines.append(utils.add_db_object( session, models.SwitchMachine, exception_when_existing, machine_switch.id, machine.id, **switch_machine_dict )) return switch_machines[0] @utils.supported_filters(optional_support_keys=['find_machines']) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_UPDATE_SWITCH_MACHINES ) @utils.wrap_to_dict(RESP_ACTION_FIELDS) def poll_switch_machines(session, poller, switch_id, **kwargs): """poll switch machines.""" from compass.tasks import client as celery_client switch = utils.get_db_object(session, models.Switch, id=switch_id) celery_client.celery.send_task( 'compass.tasks.pollswitch', (poller.email, switch.ip, switch.credentials) ) return { 'status': 'action %s sent' % kwargs, 'details': { } } @utils.supported_filters([]) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_LIST_SWITCH_MACHINES ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def get_switch_machine( session, getter, switch_id, machine_id, exception_when_missing=True, **kwargs ): """get field dict of a switch machine.""" return utils.get_db_object( session, models.SwitchMachine, exception_when_missing, switch_id=switch_id, machine_id=machine_id ) @utils.supported_filters([]) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_LIST_SWITCH_MACHINES ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def get_switchmachine( session, getter, switch_machine_id, exception_when_missing=True, **kwargs ): """get field dict of a switch machine.""" return utils.get_db_object( session, models.SwitchMachine, exception_when_missing, id=switch_machine_id ) def update_switch_machine_internal( session, switch_machine, switch_machines_fields, **kwargs ): """Update switch machine internal.""" switch_machine_dict = {} machine_dict = {} for key, value in kwargs.items(): if key in switch_machines_fields: switch_machine_dict[key] = value else: machine_dict[key] = value if machine_dict: utils.update_db_object( session, switch_machine.machine, **machine_dict ) return utils.update_db_object( session, switch_machine, **switch_machine_dict ) @utils.supported_filters(optional_support_keys=UPDATED_MACHINES_FIELDS) @utils.input_validates(vlans=_check_vlans) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_ADD_SWITCH_MACHINE ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def update_switch_machine(session, updater, switch_id, machine_id, **kwargs): """Update switch machine.""" switch_machine = utils.get_db_object( session, models.SwitchMachine, switch_id=switch_id, machine_id=machine_id ) return update_switch_machine_internal( session, switch_machine, UPDATED_SWITCH_MACHINES_FIELDS, **kwargs ) @utils.supported_filters(optional_support_keys=UPDATED_MACHINES_FIELDS) @utils.input_validates(vlans=_check_vlans) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_ADD_SWITCH_MACHINE ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def update_switchmachine(session, updater, switch_machine_id, **kwargs): """Update switch machine.""" switch_machine = utils.get_db_object( session, models.SwitchMachine, id=switch_machine_id ) return update_switch_machine_internal( session, switch_machine, UPDATED_SWITCH_MACHINES_FIELDS, **kwargs ) @utils.replace_filters( vlans='patched_vlans', ipmi_credentials='patched_ipmi_credentials', tag='patched_tag', location='patched_location' ) @utils.supported_filters(optional_support_keys=PATCHED_MACHINES_FIELDS) @utils.input_validates(patched_vlans=_check_vlans) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_ADD_SWITCH_MACHINE ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def patch_switch_machine(session, updater, switch_id, machine_id, **kwargs): """Patch switch machine.""" switch_machine = utils.get_db_object( session, models.SwitchMachine, switch_id=switch_id, machine_id=machine_id ) return update_switch_machine_internal( session, switch_machine, PATCHED_SWITCH_MACHINES_FIELDS, **kwargs ) @utils.replace_filters( vlans='patched_vlans', ipmi_credentials='patched_ipmi_credentials', tag='patched_tag', location='patched_location' ) @utils.supported_filters(optional_support_keys=PATCHED_MACHINES_FIELDS) @utils.input_validates(patched_vlans=_check_vlans) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_ADD_SWITCH_MACHINE ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def patch_switchmachine(session, updater, switch_machine_id, **kwargs): """Patch switch machine.""" switch_machine = utils.get_db_object( session, models.SwitchMachine, id=switch_machine_id ) return update_switch_machine_internal( session, switch_machine, PATCHED_SWITCH_MACHINES_FIELDS, **kwargs ) @utils.supported_filters() @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_DEL_SWITCH_MACHINE ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def del_switch_machine(session, deleter, switch_id, machine_id, **kwargs): """Delete switch machines.""" switch_machine = utils.get_db_object( session, models.SwitchMachine, switch_id=switch_id, machine_id=machine_id ) return utils.del_db_object(session, switch_machine) @utils.supported_filters() @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_DEL_SWITCH_MACHINE ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def del_switchmachine(session, deleter, switch_machine_id, **kwargs): """Delete switch machines.""" switch_machine = utils.get_db_object( session, models.SwitchMachine, id=switch_machine_id ) return utils.del_db_object(session, switch_machine) @utils.supported_filters( ['machine_id'], optional_support_keys=UPDATED_SWITCH_MACHINES_FIELDS ) def _update_machine_internal(session, switch_id, machine_id, **kwargs): utils.add_db_object( session, models.SwitchMachine, False, switch_id, machine_id, **kwargs ) def _add_machines(session, switch, machines): for machine in machines.items(): _update_machine_internal( session, switch.id, **machine ) def _remove_machines(session, switch, machines): utils.del_db_objects( session, models.SwitchMachine, switch_id=switch.id, machine_id=machines ) def _set_machines(session, switch, machines): utils.del_db_objects( session, models.SwitchMachine, switch_id=switch.id ) for switch_machine in machines.items(): _update_machine_internal( session, switch.id, **switch_machine ) @utils.supported_filters( optional_support_keys=[ 'add_machines', 'remove_machines', 'set_machines' ] ) @database.run_in_session() @user_api.check_user_permission_in_session( permission.PERMISSION_UPDATE_SWITCH_MACHINES ) @utils.wrap_to_dict(RESP_MACHINES_FIELDS) def update_switch_machines( session, updater, switch_id, add_machines=[], remove_machines=[], set_machines=None, **kwargs ): """update switch machines.""" switch = utils.get_db_object( session, models.Switch, id=switch_id ) if remove_machines: _remove_machines( session, switch, remove_machines ) if add_machines: _add_machines( session, switch, add_machines ) if set_machines is not None: _set_machines( session, switch, set_machines ) return switch.switch_machines