X-Git-Url: http://git.onelab.eu/?a=blobdiff_plain;f=plugins%2Fsliverauth.py;h=ce17b0cb54dbb57aa533eea456dc4024fbdedcbd;hb=74a8cfb9d2eac39ae02e5323e1fb5b1d33297981;hp=0cbc8abc5cc1e0aa951a5811f1ecc686f0b40130;hpb=7acb378c1b5448d23bd1eb0e6583a530604d0511;p=nodemanager.git diff --git a/plugins/sliverauth.py b/plugins/sliverauth.py index 0cbc8ab..ce17b0c 100644 --- a/plugins/sliverauth.py +++ b/plugins/sliverauth.py @@ -1,5 +1,9 @@ #!/usr/bin/python -tt # vim:set ts=4 sw=4 expandtab: +# +# $Id$ +# $URL$ +# # NodeManager plugin to empower slivers to make API calls """ @@ -12,36 +16,48 @@ import os import random import string import tempfile +import time import logger import tools def start(options, conf): - # XXX REMOVE ME - return - - logger.log("sliverauth plugin starting up...") + logger.log("sliverauth: plugin starting up...") def SetSliverTag(plc, slice, tagname, value): node_id = tools.node_id() - slivertags=plc.GetSliceTags({"name":slice,"node_id":node_id}) + slivertags=plc.GetSliceTags({"name":slice,"node_id":node_id,"tagname":tagname}) if len(slivertags)==0: - slivertag_id=plc.AddSliceTag(slice,tagname,value,node_id) + # looks like GetSlivers reports about delegated/nm-controller slices that do *not* belong to this node + # and this is something that AddSliceTag does not like + try: + slivertag_id=plc.AddSliceTag(slice,tagname,value,node_id) + except: + logger.log ("sliverauth: SetSliverTag - CAUGHT exception for (probably delegated) slice=%(slice)s tag=%(tagname)s node_id=%(node_id)d"%locals()) + pass else: slivertag_id=slivertags[0]['slice_tag_id'] plc.UpdateSliceTag(slivertag_id,value) def GetSlivers(data, config, plc): - # XXX REMOVE ME - logger.log("sliverauth: DISABLED!") - return + if 'OVERRIDES' in dir(config): + if config.OVERRIDES.get('sliverauth') == '-1': + logger.log("sliverauth: Disabled", 2) + return if 'slivers' not in data: - logger.log("sliverauth: getslivers data lack's sliver information. IGNORING!") + logger.log_missing_data("sliverauth.GetSlivers", 'slivers') return - random.seed(42) for sliver in data['slivers']: + path = '/vservers/%s' % sliver['name'] + if not os.path.exists(path): + # ignore all non-plc-instantiated slivers + instantiation = sliver.get('instantiation','') + if instantiation == 'plc-instantiated': + logger.log("sliverauth: plc-instantiated slice %s does not yet exist. IGNORING!" % sliver['name']) + continue + found_hmac = False for attribute in sliver['attributes']: name = attribute.get('tagname',attribute.get('name','')) @@ -51,9 +67,12 @@ def GetSlivers(data, config, plc): break if not found_hmac: + # XXX need a better random seed?! + random.seed(time.time()) d = [random.choice(string.letters) for x in xrange(32)] hmac = "".join(d) SetSliverTag(plc,sliver['name'],'hmac',hmac) + logger.log("sliverauth: setting %s hmac" % sliver['name']) path = '/vservers/%s/etc/planetlab' % sliver['name'] if os.path.exists(path): @@ -72,6 +91,7 @@ def GetSlivers(data, config, plc): if os.path.exists(keyfile): os.unlink(keyfile) os.rename(name,keyfile) + logger.log("sliverauth: writing hmac to %s " % keyfile) os.chmod(keyfile,0400)