3 from planetstack.config import Config
4 from core.models import Controller
7 from openstack.client import OpenStackClient
12 manager_enabled = Config().api_nova_enabled
14 class OpenStackDriver:
16 def __init__(self, config = None, client=None):
18 self.config = Config(config)
20 self.config = Config()
25 self.enabled = manager_enabled
26 self.has_openstack = has_openstack
27 self.controller = None
28 self.admin_user = None
30 def client_driver(self, caller=None, tenant=None, controller=None):
32 auth = {'username': caller.email,
33 'password': hashlib.md5(caller.password).hexdigest()[:6],
35 client = OpenStackClient(controller=controller, cacert=self.config.nova_ca_ssl_cert, **auth)
37 admin_driver = self.admin_driver(tenant=tenant, controller=controller)
38 client = OpenStackClient(tenant=tenant, controller=admin_driver.controller)
40 driver = OpenStackDriver(client=client)
41 #driver.admin_user = admin_driver.admin_user
42 #driver.controller = admin_driver.controller
45 def admin_driver(self, tenant=None, controller=None):
46 if isinstance(controller, int):
47 controller = Controller.objects.get(id=controller.id)
48 client = OpenStackClient(tenant=tenant, controller=controller, cacert=self.config.nova_ca_ssl_cert)
49 driver = OpenStackDriver(client=client)
50 driver.admin_user = client.keystone.users.find(name=controller.admin_user)
51 driver.controller = controller
54 def create_role(self, name):
55 roles = self.shell.keystone.roles.findall(name=name)
56 roles_title = self.shell.keystone.roles.findall(name=name.title())
57 roles_found = roles + roles_title
59 role = self.shell.keystone.roles.create(name)
64 def delete_role(self, filter):
65 roles = self.shell.keystone.roles.findall(**filter)
67 self.shell.keystone.roles.delete(role)
70 def create_tenant(self, tenant_name, enabled, description):
71 """Create keystone tenant. Suggested fields: name, description, enabled"""
72 tenants = self.shell.keystone.tenants.findall(name=tenant_name)
74 fields = {'tenant_name': tenant_name, 'enabled': enabled,
75 'description': description}
76 tenant = self.shell.keystone.tenants.create(**fields)
80 # always give the admin user the admin role to any tenant created
82 self.add_user_role(self.admin_user.id, tenant.id, 'admin')
85 def update_tenant(self, id, **kwds):
86 return self.shell.keystone.tenants.update(id, **kwds)
88 def delete_tenant(self, id):
89 ctx = self.shell.nova_db.ctx
90 tenants = self.shell.keystone.tenants.findall(id=id)
91 for tenant in tenants:
92 # nova does not automatically delete the tenant's instances
93 # so we manually delete instances before deleteing the tenant
94 instances = self.shell.nova_db.instance_get_all_by_filters(ctx,
95 {'project_id': tenant.id}, 'id', 'asc')
96 client = OpenStackClient(tenant=tenant.name)
97 driver = OpenStackDriver(client=client)
98 for instance in instances:
99 driver.destroy_instance(instance.id)
100 self.shell.keystone.tenants.delete(tenant)
103 def create_user(self, name, email, password, enabled):
104 users = self.shell.keystone.users.findall(email=email)
106 fields = {'name': name, 'email': email, 'password': password,
108 user = self.shell.keystone.users.create(**fields)
113 def delete_user(self, id):
114 users = self.shell.keystone.users.findall(id=id)
117 keys = self.shell.nova.keypairs.findall()
119 self.shell.nova.keypairs.delete(key)
120 self.shell.keystone.users.delete(user)
123 def get_admin_role(self):
125 for admin_role_name in ['admin', 'Admin']:
126 roles = self.shell.keystone.roles.findall(name=admin_role_name)
132 def add_user_role(self, kuser_id, tenant_id, role_name):
133 user = self.shell.keystone.users.find(id=kuser_id)
134 tenant = self.shell.keystone.tenants.find(id=tenant_id)
135 # admin role can be lowercase or title. Look for both
137 if role_name.lower() == 'admin':
138 role = self.get_admin_role()
140 # look up non admin role or force exception when admin role isnt found
141 role = self.shell.keystone.roles.find(name=role_name)
144 user_roles = user.list_roles(tenant.id)
145 for user_role in user_roles:
146 if user_role.name == role.name:
149 tenant.add_user(user, role)
153 def delete_user_role(self, kuser_id, tenant_id, role_name):
154 user = self.shell.keystone.users.find(id=kuser_id)
155 tenant = self.shell.keystone.tenants.find(id=tenant_id)
156 # admin role can be lowercase or title. Look for both
158 if role_name.lower() == 'admin':
159 role = self.get_admin_role()
161 # look up non admin role or force exception when admin role isnt found
162 role = self.shell.keystone.roles.find(name=role_name)
165 user_roles = user.list_roles(tenant.id)
166 for user_role in user_roles:
167 if user_role.name == role.name:
170 tenant.remove_user(user, role)
174 def update_user(self, id, fields):
175 if 'password' in fields:
176 self.shell.keystone.users.update_password(id, fields['password'])
177 if 'enabled' in fields:
178 self.shell.keystone.users.update_enabled(id, fields['enabled'])
181 def create_router(self, name, set_gateway=True):
182 routers = self.shell.quantum.list_routers(name=name)['routers']
186 router = self.shell.quantum.create_router({'router': {'name': name}})['router']
187 # add router to external network
189 nets = self.shell.quantum.list_networks()['networks']
191 if net['router:external'] == True:
192 self.shell.quantum.add_gateway_router(router['id'],
193 {'network_id': net['id']})
197 def delete_router(self, id):
198 routers = self.shell.quantum.list_routers(id=id)['routers']
199 for router in routers:
200 self.shell.quantum.delete_router(router['id'])
201 # remove router form external network
202 #nets = self.shell.quantum.list_networks()['networks']
204 # if net['router:external'] == True:
205 # self.shell.quantum.remove_gateway_router(router['id'])
207 def add_router_interface(self, router_id, subnet_id):
208 router = self.shell.quantum.show_router(router_id)['router']
209 subnet = self.shell.quantum.show_subnet(subnet_id)['subnet']
210 if router and subnet:
211 self.shell.quantum.add_interface_router(router_id, {'subnet_id': subnet_id})
213 def delete_router_interface(self, router_id, subnet_id):
214 router = self.shell.quantum.show_router(router_id)
215 subnet = self.shell.quantum.show_subnet(subnet_id)
216 if router and subnet:
217 self.shell.quantum.remove_interface_router(router_id, {'subnet_id': subnet_id})
219 def create_network(self, name, shared=False):
220 nets = self.shell.quantum.list_networks(name=name)['networks']
224 net = self.shell.quantum.create_network({'network': {'name': name, 'shared': shared}})['network']
227 def delete_network(self, id):
228 nets = self.shell.quantum.list_networks()['networks']
232 self.delete_network_ports(net['id'])
233 # delete all subnets:
234 for subnet_id in net['subnets']:
235 self.delete_subnet(subnet_id)
236 self.shell.quantum.delete_network(net['id'])
239 def delete_network_ports(self, network_id):
240 ports = self.shell.quantum.list_ports()['ports']
242 if port['network_id'] == network_id:
243 self.shell.quantum.delete_port(port['id'])
246 def delete_subnet_ports(self, subnet_id):
247 ports = self.shell.quantum.list_ports()['ports']
250 for fixed_ip in port['fixed_ips']:
251 if fixed_ip['subnet_id'] == subnet_id:
255 self.shell.quantum.delete_port(port['id'])
258 def create_subnet(self, name, network_id, cidr_ip, ip_version, start, end):
259 #nets = self.shell.quantum.list_networks(name=network_name)['networks']
261 # raise Exception, "No such network: %s" % network_name
265 subnets = self.shell.quantum.list_subnets()['subnets']
267 if snet['cidr'] == cidr_ip and snet['network_id'] == network_id:
271 # HACK: Add metadata route -- Neutron does not reliably supply this
272 metadata_ip = cidr_ip.replace("0/24", "3")
274 allocation_pools = [{'start': start, 'end': end}]
275 subnet = {'subnet': {'name': name,
276 'network_id': network_id,
277 'ip_version': ip_version,
279 #'dns_nameservers': ['8.8.8.8', '8.8.4.4'],
280 'host_routes': [{'destination':'169.254.169.254/32','nexthop':metadata_ip}],
282 'allocation_pools': allocation_pools}}
283 subnet = self.shell.quantum.create_subnet(subnet)['subnet']
284 # self.add_external_route(subnet)
288 def update_subnet(self, id, fields):
289 return self.shell.quantum.update_subnet(id, fields)
291 def delete_subnet(self, id):
292 #return self.shell.quantum.delete_subnet(id=id)
293 # inefficient but fault tolerant
294 subnets = self.shell.quantum.list_subnets()['subnets']
295 for subnet in subnets:
296 if subnet['id'] == id:
297 self.delete_subnet_ports(subnet['id'])
298 self.shell.quantum.delete_subnet(id)
299 self.delete_external_route(subnet)
302 def get_external_routes(self):
303 status, output = commands.getstatusoutput('route')
304 routes = output.split('\n')[3:]
307 def add_external_route(self, subnet, routes=[]):
309 routes = self.get_external_routes()
311 ports = self.shell.quantum.list_ports()['ports']
313 gw_ip = subnet['gateway_ip']
314 subnet_id = subnet['id']
316 # 1. Find the port associated with the subnet's gateway
317 # 2. Find the router associated with that port
318 # 3. Find the port associated with this router and on the external net
319 # 4. Set up route to the subnet through the port from step 3
322 for fixed_ip in port['fixed_ips']:
323 if fixed_ip['subnet_id'] == subnet_id and fixed_ip['ip_address'] == gw_ip:
325 router_id = gw_port['device_id']
326 router = self.shell.quantum.show_router(router_id)['router']
327 if router and router.get('external_gateway_info'):
328 ext_net = router['external_gateway_info']['network_id']
330 if port['device_id'] == router_id and port['network_id'] == ext_net:
331 ip_address = port['fixed_ips'][0]['ip_address']
334 # check if external route already exists
338 if subnet['cidr'] in route and ip_address in route:
341 cmd = "route add -net %s dev br-ex gw %s" % (subnet['cidr'], ip_address)
342 s, o = commands.getstatusoutput(cmd)
343 #print cmd, "\n", s, o
347 def delete_external_route(self, subnet):
348 ports = self.shell.quantum.list_ports()['ports']
350 gw_ip = subnet['gateway_ip']
351 subnet_id = subnet['id']
353 # 1. Find the port associated with the subnet's gateway
354 # 2. Find the router associated with that port
355 # 3. Find the port associated with this router and on the external net
356 # 4. Set up route to the subnet through the port from step 3
359 for fixed_ip in port['fixed_ips']:
360 if fixed_ip['subnet_id'] == subnet_id and fixed_ip['ip_address'] == gw_ip:
362 router_id = gw_port['device_id']
363 router = self.shell.quantum.show_router(router_id)['router']
364 ext_net = router['external_gateway_info']['network_id']
366 if port['device_id'] == router_id and port['network_id'] == ext_net:
367 ip_address = port['fixed_ips'][0]['ip_address']
370 cmd = "route delete -net %s" % (subnet['cidr'])
371 commands.getstatusoutput(cmd)
375 def create_keypair(self, name, public_key):
376 keys = self.shell.nova.keypairs.findall(name=name)
380 if key.public_key != public_key:
381 self.delete_keypair(key.id)
382 key = self.shell.nova.keypairs.create(name=name, public_key=public_key)
384 key = self.shell.nova.keypairs.create(name=name, public_key=public_key)
387 def delete_keypair(self, id):
388 keys = self.shell.nova.keypairs.findall(id=id)
390 self.shell.nova.keypairs.delete(key)
393 def get_private_networks(self, tenant=None):
395 tenant = self.shell.nova.tenant
396 tenant = self.shell.keystone.tenants.find(name=tenant)
397 search_opts = {"tenant_id": tenant.id, "shared": False}
398 private_networks = self.shell.quantum.list_networks(**search_opts)
399 return private_networks
401 def get_shared_networks(self):
402 search_opts = {"shared": True}
403 shared_networks = self.shell.quantum.list_networks(**search_opts)
404 return shared_networks
406 def get_network_subnet(self, network_id):
410 os_networks = self.shell.quantum.list_networks(id=network_id)["networks"]
412 os_network = os_networks[0]
413 if os_network['subnets']:
414 subnet_id = os_network['subnets'][0]
415 os_subnets = self.shell.quantum.list_subnets(id=subnet_id)['subnets']
417 subnet = os_subnets[0]['cidr']
419 return (subnet_id, subnet)
421 def spawn_instance(self, name, key_name=None, availability_zone=None, hostname=None, image_id=None, security_group=None, pubkeys=[], nics=None, metadata=None, userdata=None, flavor_name=None):
423 flavor_name = self.config.nova_default_flavor
425 flavor = self.shell.nova.flavors.find(name=flavor_name)
427 if not security_group:
428 security_group = self.config.nova_default_security_group
432 # files["/root/.ssh/authorized_keys"] = "\n".join(pubkeys).encode('base64')
435 # determine availability zone and compute host
436 availability_zone_filter = None
437 if availability_zone is None or not availability_zone:
438 availability_zone_filter = 'nova'
440 availability_zone_filter = availability_zone
442 availability_zone_filter += ':%s' % hostname
444 server = self.shell.nova.servers.create(
449 security_group = security_group,
451 scheduler_hints=hints,
452 availability_zone=availability_zone_filter,
459 def destroy_instance(self, id):
460 if (self.shell.nova.tenant=="admin"):
461 # findall() is implemented as a list() followed by a python search of the
462 # list. Since findall() doesn't accept "all_tenants", we do this using
463 # list() ourselves. This allows us to delete an instance as admin.
464 servers = self.shell.nova.servers.list(search_opts={"all_tenants": True})
466 servers = self.shell.nova.servers.list()
467 for server in servers:
469 result=self.shell.nova.servers.delete(server)
471 def update_instance_metadata(self, id, metadata):
472 servers = self.shell.nova.servers.findall(id=id)
473 for server in servers:
474 self.shell.nova.servers.set_meta(server, metadata)
475 # note: set_meta() returns a broken Server() object. Don't try to
476 # print it in the shell or it will fail in __repr__.
478 def delete_instance_metadata(self, id, metadata):
479 # note: metadata is a dict. Only the keys matter, not the values.
480 servers = self.shell.nova.servers.findall(id=id)
481 for server in servers:
482 self.shell.nova.servers.delete_meta(server, metadata)
git://git.onelab.eu / plstackapi.git / blob