1 ### $Id: slices.py 15842 2009-11-22 09:56:13Z anil $
2 ### $URL: https://svn.planet-lab.org/svn/sfa/trunk/sfa/plc/slices.py $
6 from StringIO import StringIO
7 from types import StringTypes
8 from copy import deepcopy
10 from lxml import etree
12 from sfa.util.sfalogging import sfa_logger
13 from sfa.util.rspecHelper import merge_rspecs
14 from sfa.util.namespace import urn_to_hrn, hrn_to_urn
15 from sfa.util.rspec import *
16 from sfa.util.specdict import *
17 from sfa.util.faults import *
18 from sfa.util.record import SfaRecord
19 from sfa.util.policy import Policy
20 from sfa.util.prefixTree import prefixTree
21 from sfa.util.sfaticket import *
22 from sfa.trust.credential import Credential
23 from sfa.util.threadmanager import ThreadManager
24 import sfa.util.xmlrpcprotocol as xmlrpcprotocol
25 import sfa.plc.peers as peers
29 version['geni_api'] = 1
33 def slice_status(api, slice_xrn, creds ):
35 result['geni_urn'] = slice_xrn
36 result['geni_status'] = 'unknown'
37 result['geni_resources'] = {}
40 def create_slice(api, xrn, creds, rspec, users):
41 hrn, type = urn_to_hrn(xrn)
43 # Validate the RSpec against PlanetLab's schema --disabled for now
44 # The schema used here needs to aggregate the PL and VINI schemas
45 # schema = "/var/www/html/schemas/pl.rng"
49 tree = etree.parse(StringIO(rspec))
50 except etree.XMLSyntaxError:
51 message = str(sys.exc_info()[1])
52 raise InvalidRSpec(message)
54 relaxng_doc = etree.parse(schema)
55 relaxng = etree.RelaxNG(relaxng_doc)
58 error = relaxng.error_log.last_error
59 message = "%s (line %s)" % (error.message, error.line)
60 raise InvalidRSpec(message)
63 valid_cred = api.auth.checkCredentials(creds, 'createsliver', hrn)[0]
64 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
66 # attempt to use delegated credential first
67 credential = api.getDelegatedCredential(creds)
69 credential = api.getCredential()
70 threads = ThreadManager()
71 for aggregate in api.aggregates:
72 # prevent infinite loop. Dont send request back to caller
73 # unless the caller is the aggregate's SM
74 if caller_hrn == aggregate and aggregate != api.hrn:
77 # Just send entire RSpec to each aggregate
78 server = api.aggregates[aggregate]
79 threads.run(server.CreateSliver, xrn, credential, rspec, users)
81 results = threads.get_results()
82 merged_rspec = merge_rspecs(results)
85 def renew_slice(api, xrn, creds, expiration_time):
86 hrn, type = urn_to_hrn(xrn)
89 valid_cred = api.auth.checkCredentials(creds, 'renewesliver', hrn)[0]
90 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
92 # attempt to use delegated credential first
93 credential = api.getDelegatedCredential(creds)
95 credential = api.getCredential()
96 threads = ThreadManager()
97 for aggregate in api.aggregates:
98 # prevent infinite loop. Dont send request back to caller
99 # unless the caller is the aggregate's SM
100 if caller_hrn == aggregate and aggregate != api.hrn:
103 server = api.aggregates[aggregate]
104 threads.run(server.RenewSliver, xrn, credential, expiration_time)
105 threads.get_results()
108 def get_ticket(api, xrn, creds, rspec, users):
109 slice_hrn, type = urn_to_hrn(xrn)
110 # get the netspecs contained within the clients rspec
111 aggregate_rspecs = {}
112 tree= etree.parse(StringIO(rspec))
113 elements = tree.findall('./network')
114 for element in elements:
115 aggregate_hrn = element.values()[0]
116 aggregate_rspecs[aggregate_hrn] = rspec
118 # get the callers hrn
119 valid_cred = api.auth.checkCredentials(creds, 'getticket', slice_hrn)[0]
120 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
122 # attempt to use delegated credential first
123 credential = api.getDelegatedCredential(creds)
125 credential = api.getCredential()
126 threads = ThreadManager()
127 for aggregate, aggregate_rspec in aggregate_rspecs.items():
128 # prevent infinite loop. Dont send request back to caller
129 # unless the caller is the aggregate's SM
130 if caller_hrn == aggregate and aggregate != api.hrn:
133 if aggregate in api.aggregates:
134 server = api.aggregates[aggregate]
136 net_urn = hrn_to_urn(aggregate, 'authority')
137 # we may have a peer that knows about this aggregate
138 for agg in api.aggregates:
139 target_aggs = api.aggregates[agg].get_aggregates(credential, net_urn)
140 if not target_aggs or not 'hrn' in target_aggs[0]:
142 # send the request to this address
143 url = target_aggs[0]['url']
144 server = xmlrpcprotocol.get_server(url, api.key_file, api.cert_file)
145 # aggregate found, no need to keep looping
149 threads.run(server.GetTicket, xrn, credential, aggregate_rspec, users)
151 results = threads.get_results()
153 # gather information from each ticket
158 for result in results:
159 agg_ticket = SfaTicket(string=result)
160 attrs = agg_ticket.get_attributes()
162 object_gid = agg_ticket.get_gid_object()
163 rspecs.append(agg_ticket.get_rspec())
164 initscripts.extend(attrs.get('initscripts', []))
165 slivers.extend(attrs.get('slivers', []))
168 attributes = {'initscripts': initscripts,
170 merged_rspec = merge_rspecs(rspecs)
172 # create a new ticket
173 ticket = SfaTicket(subject = slice_hrn)
174 ticket.set_gid_caller(api.auth.client_gid)
175 ticket.set_issuer(key=api.key, subject=api.hrn)
176 ticket.set_gid_object(object_gid)
177 ticket.set_pubkey(object_gid.get_pubkey())
178 #new_ticket.set_parent(api.auth.hierarchy.get_auth_ticket(auth_hrn))
179 ticket.set_attributes(attributes)
180 ticket.set_rspec(merged_rspec)
183 return ticket.save_to_string(save_parents=True)
186 def delete_slice(api, xrn, creds):
187 hrn, type = urn_to_hrn(xrn)
189 # get the callers hrn
190 valid_cred = api.auth.checkCredentials(creds, 'deletesliver', hrn)[0]
191 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
193 # attempt to use delegated credential first
194 credential = api.getDelegatedCredential(creds)
196 credential = api.getCredential()
197 threads = ThreadManager()
198 for aggregate in api.aggregates:
199 # prevent infinite loop. Dont send request back to caller
200 # unless the caller is the aggregate's SM
201 if caller_hrn == aggregate and aggregate != api.hrn:
203 server = api.aggregates[aggregate]
204 threads.run(server.DeleteSliver, xrn, credential)
205 threads.get_results()
208 def start_slice(api, xrn, creds):
209 hrn, type = urn_to_hrn(xrn)
211 # get the callers hrn
212 valid_cred = api.auth.checkCredentials(creds, 'startslice', hrn)[0]
213 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
215 # attempt to use delegated credential first
216 credential = api.getDelegatedCredential(creds)
218 credential = api.getCredential()
219 threads = ThreadManager()
220 for aggregate in api.aggregates:
221 # prevent infinite loop. Dont send request back to caller
222 # unless the caller is the aggregate's SM
223 if caller_hrn == aggregate and aggregate != api.hrn:
225 server = api.aggregates[aggregate]
226 threads.run(server.Start, xrn, credential)
227 threads.get_results()
230 def stop_slice(api, xrn, creds):
231 hrn, type = urn_to_hrn(xrn)
233 # get the callers hrn
234 valid_cred = api.auth.checkCredentials(creds, 'stopslice', hrn)[0]
235 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
237 # attempt to use delegated credential first
238 credential = api.getDelegatedCredential(creds)
240 credential = api.getCredential()
241 threads = ThreadManager()
242 for aggregate in api.aggregates:
243 # prevent infinite loop. Dont send request back to caller
244 # unless the caller is the aggregate's SM
245 if caller_hrn == aggregate and aggregate != api.hrn:
247 server = api.aggregates[aggregate]
248 threads.run(server.Stop, xrn, credential)
249 threads.get_results()
252 def reset_slice(api, xrn):
258 def shutdown(api, xrn, creds):
264 def status(api, xrn, creds):
270 def get_slices(api, creds):
272 # look in cache first
274 slices = api.cache.get('slices')
278 # get the callers hrn
279 valid_cred = api.auth.checkCredentials(creds, 'listslices', None)[0]
280 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
282 # attempt to use delegated credential first
283 credential = api.getDelegatedCredential(creds)
285 credential = api.getCredential()
286 threads = ThreadManager()
287 # fetch from aggregates
288 for aggregate in api.aggregates:
289 # prevent infinite loop. Dont send request back to caller
290 # unless the caller is the aggregate's SM
291 if caller_hrn == aggregate and aggregate != api.hrn:
293 server = api.aggregates[aggregate]
294 threads.run(server.ListSlices, credential)
297 results = threads.get_results()
299 for result in results:
300 slices.extend(result)
304 api.cache.add('slices', slices)
308 def get_rspec(api, creds, options):
310 # get slice's hrn from options
311 xrn = options.get('geni_slice_urn', None)
312 hrn, type = urn_to_hrn(xrn)
314 # get hrn of the original caller
315 origin_hrn = options.get('origin_hrn', None)
317 origin_hrn = Credential(string=creds[0]).get_gid_caller().get_hrn()
319 # look in cache first
320 if api.cache and not xrn:
321 rspec = api.cache.get('nodes')
325 hrn, type = urn_to_hrn(xrn)
328 # get the callers hrn
329 valid_cred = api.auth.checkCredentials(creds, 'listnodes', hrn)[0]
330 caller_hrn = Credential(string=valid_cred).get_gid_caller().get_hrn()
332 # attempt to use delegated credential first
333 credential = api.getDelegatedCredential(creds)
335 credential = api.getCredential()
336 threads = ThreadManager()
337 for aggregate in api.aggregates:
338 # prevent infinite loop. Dont send request back to caller
339 # unless the caller is the aggregate's SM
340 if caller_hrn == aggregate and aggregate != api.hrn:
342 # get the rspec from the aggregate
343 server = api.aggregates[aggregate]
344 my_opts = copy(options)
345 my_opts['geni_compressed'] = False
346 threads.run(server.ListResources, credential, my_opts)
347 #threads.run(server.get_resources, cred, xrn, origin_hrn)
349 results = threads.get_results()
350 # combine the rspecs into a single rspec
351 for agg_rspec in results:
353 tree = etree.parse(StringIO(agg_rspec))
354 except etree.XMLSyntaxError:
355 message = str(agg_rspec) + ": " + str(sys.exc_info()[1])
356 raise InvalidRSpec(message)
358 root = tree.getroot()
359 if root.get("type") in ["SFA"]:
363 for network in root.iterfind("./network"):
364 rspec.append(deepcopy(network))
365 for request in root.iterfind("./request"):
366 rspec.append(deepcopy(request))
368 sfa_logger().debug('get_rspec: rspec=%r'%rspec)
369 rspec = etree.tostring(rspec, xml_declaration=True, pretty_print=True)
371 if api.cache and not xrn:
372 api.cache.add('nodes', rspec)
378 r.parseFile(sys.argv[1])
380 create_slice(None,'plc.princeton.tmacktestslice',rspec)
382 if __name__ == "__main__":