4 from StringIO import StringIO
5 from types import StringTypes
6 from copy import deepcopy
10 from sfa.util.sfalogging import sfa_logger
11 from sfa.util.rspecHelper import merge_rspecs
12 from sfa.util.xrn import Xrn, urn_to_hrn, hrn_to_urn
13 from sfa.util.plxrn import hrn_to_pl_slicename
14 from sfa.util.rspec import *
15 from sfa.util.specdict import *
16 from sfa.util.faults import *
17 from sfa.util.record import SfaRecord
18 from sfa.rspecs.pg_rspec import PGRSpec
19 from sfa.rspecs.sfa_rspec import SfaRSpec
20 from sfa.rspecs.rspec_converter import RSpecConverter
21 from sfa.rspecs.rspec_parser import parse_rspec
22 from sfa.rspecs.rspec_version import RSpecVersion
23 from sfa.rspecs.sfa_rspec import sfa_rspec_version
24 from sfa.rspecs.pg_rspec import pg_rspec_ad_version, pg_rspec_request_version
25 from sfa.util.policy import Policy
26 from sfa.util.prefixTree import prefixTree
27 from sfa.util.sfaticket import *
28 from sfa.trust.credential import Credential
29 from sfa.util.threadmanager import ThreadManager
30 import sfa.util.xmlrpcprotocol as xmlrpcprotocol
31 import sfa.plc.peers as peers
32 from sfa.util.version import version_core
33 from sfa.util.callids import Callids
36 def _call_id_supported(api, server):
38 Returns true if server support the optional call_id arg, false otherwise.
40 cache_key = server.url + "-version"
41 server_version = api.cache.get(cache_key)
42 if not server_version:
43 server_version = server.GetVersion()
44 # cache version for 24 hours
45 cache.add(cache_key, server_version, ttl= 60*60*24)
47 if 'sfa' in server_version:
48 code_tag = server_version['code_tag']
49 code_tag_parts = code_tag.split("-")
51 version_parts = code_tag_parts[0].split(".")
52 major, minor = version_parts[0], version_parts[1]
53 rev = code_tag_parts[1]
55 if int(minor) > 0 or int(rev) > 20:
59 # we have specialized xmlrpclib.ServerProxy to remember the input url
60 # OTOH it's not clear if we're only dealing with XMLRPCServerProxy instances
61 def get_serverproxy_url (server):
65 sfa_logger().warning("GetVersion, falling back to xmlrpclib.ServerProxy internals")
66 return server._ServerProxy__host + server._ServerProxy__handler
69 # peers explicitly in aggregates.xml
70 peers =dict ([ (peername,get_serverproxy_url(v)) for (peername,v) in api.aggregates.iteritems()
71 if peername != api.hrn])
73 request_rspec_versions = [dict(pg_rspec_request_version), dict(sfa_rspec_version)]
74 ad_rspec_versions = [dict(pg_rspec_ad_version), dict(sfa_rspec_version)]
75 version_more = {'interface':'slicemgr',
76 'hrn' : xrn.get_hrn(),
77 'urn' : xrn.get_urn(),
79 'request_rspec_versions': request_rspec_versions,
80 'ad_rspec_versions': ad_rspec_versions,
81 'default_ad_rspec': dict(sfa_rspec_version)
83 sm_version=version_core(version_more)
84 # local aggregate if present needs to have localhost resolved
85 if api.hrn in api.aggregates:
86 local_am_url=get_serverproxy_url(api.aggregates[api.hrn])
87 sm_version['peers'][api.hrn]=local_am_url.replace('localhost',sm_version['hostname'])
91 def ListResources(api, creds, options, call_id):
92 def _ListResources(server, credential, my_opts, call_id):
93 args = [credential, my_opts]
94 if _call_id_supported(api, server):
96 return server.ListResources(*args)
98 if Callids().already_handled(call_id): return ""
100 # get slice's hrn from options
101 xrn = options.get('geni_slice_urn', '')
102 (hrn, type) = urn_to_hrn(xrn)
103 my_opts = copy(options)
104 my_opts['geni_compressed'] = False
106 # get the rspec's return format from options
107 rspec_version = RSpecVersion(options.get('rspec_version'))
108 version_string = "rspec_%s" % (rspec_version.get_version_name())
110 # look in cache first
111 if caching and api.cache and not xrn:
112 rspec = api.cache.get(version_string)
116 # get the callers hrn
117 valid_cred = api.auth.checkCredentials(creds, 'listnodes', hrn)[0]
118 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
120 # attempt to use delegated credential first
121 credential = api.getDelegatedCredential(creds)
123 credential = api.getCredential()
124 threads = ThreadManager()
125 for aggregate in api.aggregates:
126 # prevent infinite loop. Dont send request back to caller
127 # unless the caller is the aggregate's SM
128 if caller_hrn == aggregate and aggregate != api.hrn:
130 # get the rspec from the aggregate
131 server = api.aggregates[aggregate]
132 #threads.run(server.ListResources, credential, my_opts, call_id)
133 threads.run(_ListResources, server, credential, my_opts, call_id)
135 results = threads.get_results()
136 rspec_version = RSpecVersion(my_opts.get('rspec_version'))
137 if rspec_version['type'] == pg_rspec_ad_version['type']:
141 for result in results:
145 api.logger.info("SM.ListResources: Failed to merge aggregate rspec")
148 if caching and api.cache and not xrn:
149 api.cache.add(version_string, rspec.toxml())
154 def CreateSliver(api, xrn, creds, rspec_str, users, call_id):
156 def _CreateSliver(server, xrn, credential, rspec, users, call_id):
157 # Need to call GetVersion at an aggregate to determine the supported
158 # rspec type/format beofre calling CreateSliver at an Aggregate.
159 server_version = _get_server_version(api, server)
160 if 'sfa' not in aggregate_version and 'geni_api' in aggregate_version:
161 # sfa aggregtes support both sfa and pg rspecs, no need to convert
162 # if aggregate supports sfa rspecs. othewise convert to pg rspec
163 rspec = RSpecConverter.to_pg_rspec(rspec)
164 args = [xrn, credential, rspec, users]
165 if _call_id_supported(api, server):
167 return server.CreateSliver(*args)
169 if Callids().already_handled(call_id): return ""
170 # Validate the RSpec against PlanetLab's schema --disabled for now
171 # The schema used here needs to aggregate the PL and VINI schemas
172 # schema = "/var/www/html/schemas/pl.rng"
173 rspec = parse_rspec(rspec_str)
176 rspec.validate(schema)
178 # attempt to use delegated credential first
179 credential = api.getDelegatedCredential(creds)
181 credential = api.getCredential()
183 # get the callers hrn
184 hrn, type = urn_to_hrn(xrn)
185 valid_cred = api.auth.checkCredentials(creds, 'createsliver', hrn)[0]
186 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
187 threads = ThreadManager()
188 for aggregate in api.aggregates:
189 # prevent infinite loop. Dont send request back to caller
190 # unless the caller is the aggregate's SM
191 if caller_hrn == aggregate and aggregate != api.hrn:
193 server = api.aggregates[aggregate]
194 # Just send entire RSpec to each aggregate
195 threads.run(_CreateSliver, server, xrn, credential, rspec.toxml(), users, call_id)
197 results = threads.get_results()
199 for result in results:
203 def RenewSliver(api, xrn, creds, expiration_time, call_id):
204 def _RenewSliver(server, xrn, creds, expiration_time, call_id):
205 server_version = _get_server_version(api, server)
206 args = [xrn, creds, expiration_time, call_id]
207 if _call_id_supported(api, server):
209 return server.RenewSliver(*args)
211 if Callids().already_handled(call_id): return True
213 (hrn, type) = urn_to_hrn(xrn)
214 # get the callers hrn
215 valid_cred = api.auth.checkCredentials(creds, 'renewsliver', hrn)[0]
216 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
218 # attempt to use delegated credential first
219 credential = api.getDelegatedCredential(creds)
221 credential = api.getCredential()
222 threads = ThreadManager()
223 for aggregate in api.aggregates:
224 # prevent infinite loop. Dont send request back to caller
225 # unless the caller is the aggregate's SM
226 if caller_hrn == aggregate and aggregate != api.hrn:
228 server = api.aggregates[aggregate]
229 threads.run(_RenewSliver, server, xrn, [credential], expiration_time, call_id)
231 return reduce (lambda x,y: x and y, threads.get_results() , True)
233 def DeleteSliver(api, xrn, creds, call_id):
234 def _DeleteSliver(server, xrn, creds, call_id):
235 server_version = _get_server_version(api, server)
237 if _call_id_supported(api, server):
239 return server.DeleteSliver(*args)
241 if Callids().already_handled(call_id): return ""
242 (hrn, type) = urn_to_hrn(xrn)
243 # get the callers hrn
244 valid_cred = api.auth.checkCredentials(creds, 'deletesliver', hrn)[0]
245 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
247 # attempt to use delegated credential first
248 credential = api.getDelegatedCredential(creds)
250 credential = api.getCredential()
251 threads = ThreadManager()
252 for aggregate in api.aggregates:
253 # prevent infinite loop. Dont send request back to caller
254 # unless the caller is the aggregate's SM
255 if caller_hrn == aggregate and aggregate != api.hrn:
257 server = api.aggregates[aggregate]
258 threads.run(_DeleteSliver, server, xrn, credential, call_id)
259 threads.get_results()
263 # first draft at a merging SliverStatus
264 def SliverStatus(api, slice_xrn, creds, call_id):
265 def _SliverStatus(server, xrn, creds, call_id):
266 server_version = _get_server_version(api, server)
268 if _call_id_supported(api, server):
270 return server.SliverStatus(*args)
272 if Callids().already_handled(call_id): return {}
273 # attempt to use delegated credential first
274 credential = api.getDelegatedCredential(creds)
276 credential = api.getCredential()
277 threads = ThreadManager()
278 for aggregate in api.aggregates:
279 server = api.aggregates[aggregate]
280 threads.run (_SliverStatus, server, slice_xrn, credential, call_id)
281 results = threads.get_results()
283 # get rid of any void result - e.g. when call_id was hit where by convention we return {}
284 results = [ result for result in results if result and result['geni_resources']]
286 # do not try to combine if there's no result
287 if not results : return {}
289 # otherwise let's merge stuff
292 # mmh, it is expected that all results carry the same urn
293 overall['geni_urn'] = results[0]['geni_urn']
294 overall['pl_login'] = results[0]['pl_login']
295 # append all geni_resources
296 overall['geni_resources'] = \
297 reduce (lambda x,y: x+y, [ result['geni_resources'] for result in results] , [])
298 overall['status'] = 'unknown'
299 if overall['geni_resources']:
300 overall['status'] = 'ready'
306 def ListSlices(api, creds, call_id):
307 def _ListSlices(server, creds, call_id):
308 server_version = _get_server_version(api, server)
310 if _call_id_supported(api, server):
312 return server.ListSlices(*args)
314 if Callids().already_handled(call_id): return []
316 # look in cache first
317 if caching and api.cache:
318 slices = api.cache.get('slices')
322 # get the callers hrn
323 valid_cred = api.auth.checkCredentials(creds, 'listslices', None)[0]
324 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
326 # attempt to use delegated credential first
327 credential = api.getDelegatedCredential(creds)
329 credential = api.getCredential()
330 threads = ThreadManager()
331 # fetch from aggregates
332 for aggregate in api.aggregates:
333 # prevent infinite loop. Dont send request back to caller
334 # unless the caller is the aggregate's SM
335 if caller_hrn == aggregate and aggregate != api.hrn:
337 server = api.aggregates[aggregate]
338 threads.run(_ListSlices, server, credential, call_id)
341 results = threads.get_results()
343 for result in results:
344 slices.extend(result)
347 if caching and api.cache:
348 api.cache.add('slices', slices)
353 if rspec_version['type'] == pg_rspec_ad_version['type']:
357 for result in results:
361 api.logger.info("SM.ListResources: Failed to merge aggregate rspec")
364 if caching and api.cache and not xrn:
365 api.cache.add(version_string, rspec.toxml())
370 def get_ticket(api, xrn, creds, rspec, users):
371 slice_hrn, type = urn_to_hrn(xrn)
372 # get the netspecs contained within the clients rspec
373 aggregate_rspecs = {}
374 tree= etree.parse(StringIO(rspec))
375 elements = tree.findall('./network')
376 for element in elements:
377 aggregate_hrn = element.values()[0]
378 aggregate_rspecs[aggregate_hrn] = rspec
380 # get the callers hrn
381 valid_cred = api.auth.checkCredentials(creds, 'getticket', slice_hrn)[0]
382 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
384 # attempt to use delegated credential first
385 credential = api.getDelegatedCredential(creds)
387 credential = api.getCredential()
388 threads = ThreadManager()
389 for (aggregate, aggregate_rspec) in aggregate_rspecs.iteritems():
390 # prevent infinite loop. Dont send request back to caller
391 # unless the caller is the aggregate's SM
392 if caller_hrn == aggregate and aggregate != api.hrn:
395 if aggregate in api.aggregates:
396 server = api.aggregates[aggregate]
398 net_urn = hrn_to_urn(aggregate, 'authority')
399 # we may have a peer that knows about this aggregate
400 for agg in api.aggregates:
401 target_aggs = api.aggregates[agg].get_aggregates(credential, net_urn)
402 if not target_aggs or not 'hrn' in target_aggs[0]:
404 # send the request to this address
405 url = target_aggs[0]['url']
406 server = xmlrpcprotocol.get_server(url, api.key_file, api.cert_file)
407 # aggregate found, no need to keep looping
411 threads.run(server.GetTicket, xrn, credential, aggregate_rspec, users)
413 results = threads.get_results()
415 # gather information from each ticket
420 for result in results:
421 agg_ticket = SfaTicket(string=result)
422 attrs = agg_ticket.get_attributes()
424 object_gid = agg_ticket.get_gid_object()
425 rspecs.append(agg_ticket.get_rspec())
426 initscripts.extend(attrs.get('initscripts', []))
427 slivers.extend(attrs.get('slivers', []))
430 attributes = {'initscripts': initscripts,
432 merged_rspec = merge_rspecs(rspecs)
434 # create a new ticket
435 ticket = SfaTicket(subject = slice_hrn)
436 ticket.set_gid_caller(api.auth.client_gid)
437 ticket.set_issuer(key=api.key, subject=api.hrn)
438 ticket.set_gid_object(object_gid)
439 ticket.set_pubkey(object_gid.get_pubkey())
440 #new_ticket.set_parent(api.auth.hierarchy.get_auth_ticket(auth_hrn))
441 ticket.set_attributes(attributes)
442 ticket.set_rspec(merged_rspec)
445 return ticket.save_to_string(save_parents=True)
447 def start_slice(api, xrn, creds):
448 hrn, type = urn_to_hrn(xrn)
450 # get the callers hrn
451 valid_cred = api.auth.checkCredentials(creds, 'startslice', hrn)[0]
452 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
454 # attempt to use delegated credential first
455 credential = api.getDelegatedCredential(creds)
457 credential = api.getCredential()
458 threads = ThreadManager()
459 for aggregate in api.aggregates:
460 # prevent infinite loop. Dont send request back to caller
461 # unless the caller is the aggregate's SM
462 if caller_hrn == aggregate and aggregate != api.hrn:
464 server = api.aggregates[aggregate]
465 threads.run(server.Start, xrn, credential)
466 threads.get_results()
469 def stop_slice(api, xrn, creds):
470 hrn, type = urn_to_hrn(xrn)
472 # get the callers hrn
473 valid_cred = api.auth.checkCredentials(creds, 'stopslice', hrn)[0]
474 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
476 # attempt to use delegated credential first
477 credential = api.getDelegatedCredential(creds)
479 credential = api.getCredential()
480 threads = ThreadManager()
481 for aggregate in api.aggregates:
482 # prevent infinite loop. Dont send request back to caller
483 # unless the caller is the aggregate's SM
484 if caller_hrn == aggregate and aggregate != api.hrn:
486 server = api.aggregates[aggregate]
487 threads.run(server.Stop, xrn, credential)
488 threads.get_results()
491 def reset_slice(api, xrn):
497 def shutdown(api, xrn, creds):
503 def status(api, xrn, creds):
511 r.parseFile(sys.argv[1])
513 CreateSliver(None,'plc.princeton.tmacktestslice',rspec,'create-slice-tmacktestslice')
515 if __name__ == "__main__":