git://git.onelab.eu / sfa.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
no longer use caller's plauth
[sfa.git] / sfa / managers / aggregate_manager_pl.py
1 ### $Id: slices.py 15842 2009-11-22 09:56:13Z anil $
2 ### $URL: https://svn.planet-lab.org/svn/sfa/trunk/sfa/plc/slices.py $
3
4 import datetime
5 import time
6 import traceback
7 import sys
8
9 from types import StringTypes
10 from sfa.util.namespace import *
11 from sfa.util.rspec import *
12 from sfa.util.specdict import *
13 from sfa.util.faults import *
14 from sfa.util.record import SfaRecord
15 from sfa.util.policy import Policy
16 from sfa.util.record import *
17 from sfa.util.sfaticket import SfaTicket
18 from sfa.util.debug import log
19 from sfa.plc.slices import Slices
20 from sfa.trust.credential import Credential
21 import sfa.plc.peers as peers
22 from sfa.plc.network import *
23 from sfa.plc.api import SfaAPI
24 from sfa.plc.slices import *
25
26
27 def __get_registry_objects(slice_xrn, creds, users):
28     """
29
30     """
31     hrn, type = urn_to_hrn(slice_xrn)
32
33     hrn_auth = get_authority(hrn)
34
35     # Build up objects that an SFA registry would return if SFA
36     # could contact the slice's registry directly
37     reg_objects = None
38
39     if users:
40         reg_objects = {}
41
42         site = {}
43         site['site_id'] = 0
44         site['name'] = 'geni.%s' % hrn_auth[:20]
45         site['enabled'] = True
46         site['max_slices'] = 100
47
48         # Note:
49         # Is it okay if this login base is the same as one already at this myplc site?
50         # Do we need uniqueness?  Should use hrn_auth instead of just the leaf perhaps?
51         site['login_base'] = hrn_auth[:20]
52         site['abbreviated_name'] = hrn_auth[:20]
53         site['max_slivers'] = 1000
54         reg_objects['site'] = site
55
56         slice = {}
57         slice['expires'] = int(time.mktime(Credential(string=creds[0]).get_lifetime().timetuple()))
58         slice['hrn'] = hrn
59         slice['name'] = site['login_base'] + "_" +  get_leaf(hrn)
60         slice['url'] = hrn
61         slice['description'] = hrn
62         slice['pointer'] = 0
63         reg_objects['slice_record'] = slice
64
65         reg_objects['users'] = {}
66         for user in users:
67             user['key_ids'] = []
68             hrn, _ = urn_to_hrn(user['urn'])
69             user['email'] = hrn + "@geni.net"
70             user['first_name'] = hrn
71             user['last_name'] = hrn
72             reg_objects['users'][user['email']] = user
73
74         return reg_objects
75
76 def __get_hostnames(nodes):
77     hostnames = []
78     for node in nodes:
79         hostnames.append(node.hostname)
80     return hostnames
81
82 def get_version():
83     version = {}
84     version['geni_api'] = 1
85     version['sfa'] = 1
86     return version
87
88 def slice_status(api, slice_xrn, creds):
89     result = {}
90     result['geni_urn'] = slice_xrn
91     result['geni_status'] = 'unknown'
92     result['geni_resources'] = {}
93     return result
94
95 def create_slice(api, slice_xrn, creds, rspec, users):
96     """
97     Create the sliver[s] (slice) at this aggregate.    
98     Verify HRN and initialize the slice record in PLC if necessary.
99     """
100
101     reg_objects = __get_registry_objects(slice_xrn, creds, users)
102
103     hrn, type = urn_to_hrn(slice_xrn)
104     peer = None
105     slices = Slices(api)
106     peer = slices.get_peer(hrn)
107     sfa_peer = slices.get_sfa_peer(hrn)
108     registry = api.registries[api.hrn]
109     credential = api.getCredential()
110     site_id, remote_site_id = slices.verify_site(registry, credential, hrn, 
111                                                  peer, sfa_peer, reg_objects)
112
113     slice_record = slices.verify_slice(registry, credential, hrn, site_id, 
114                                 remote_site_id, peer, sfa_peer, reg_objects)
115      
116     network = Network(api)
117
118     slice = network.get_slice(api, hrn)
119     slice.peer_id = slice_record['peer_slice_id']
120     current = __get_hostnames(slice.get_nodes())
121     
122     network.addRSpec(rspec, api.config.SFA_AGGREGATE_RSPEC_SCHEMA)
123     request = __get_hostnames(network.nodesWithSlivers())
124     
125     # remove nodes not in rspec
126     deleted_nodes = list(set(current).difference(request))
127
128     # add nodes from rspec
129     added_nodes = list(set(request).difference(current))
130
131     try:
132         if peer:
133             api.plshell.UnBindObjectFromPeer(api.plauth, 'slice', slice.id, peer)
134
135         api.plshell.AddSliceToNodes(api.plauth, slice.name, added_nodes) 
136         api.plshell.DeleteSliceFromNodes(api.plauth, slice.name, deleted_nodes)
137
138         network.updateSliceTags()
139
140     finally:
141         if peer:
142             api.plshell.BindObjectToPeer(api.plauth, 'slice', slice.id, peer, 
143                                          slice.peer_id)
144
145     # print network.toxml()
146
147     return True
148
149
150 def renew_slice(api, xrn, creds, exipration_time):
151     hrn, type = urn_to_hrn(xrn)
152     slicename = hrn_to_pl_slicename(hrn)
153     slices = api.plshell.GetSlices(api.plauth, {'name': slicename}, ['slice_id'])
154     if not slices:
155         raise RecordNotFound(hrn)
156     slice = slices[0]
157     slice['expires'] = expiration_time
158     api.plshell.UpdateSlice(api.plauth, slice['slice_id'], slice)
159     return 1         
160
161 def start_slice(api, xrn, creds):
162     hrn, type = urn_to_hrn(xrn)
163     slicename = hrn_to_pl_slicename(hrn)
164     slices = api.plshell.GetSlices(api.plauth, {'name': slicename}, ['slice_id'])
165     if not slices:
166         raise RecordNotFound(hrn)
167     slice_id = slices[0]['slice_id']
168     slice_tags = api.plshell.GetSliceTags(api.plauth, {'slice_id': slice_id, 'tagname': 'enabled'}, ['slice_tag_id'])
169     # just remove the tag if it exists
170     if slice_tags:
171         api.plshell.DeleteSliceTag(api.plauth, slice_tags[0]['slice_tag_id'])
172
173     return 1
174  
175 def stop_slice(api, xrn, creds):
176     hrn, type = urn_to_hrn(xrn)
177     slicename = hrn_to_pl_slicename(hrn)
178     slices = api.plshell.GetSlices(api.plauth, {'name': slicename}, ['slice_id'])
179     if not slices:
180         raise RecordNotFound(hrn)
181     slice_id = slices[0]['slice_id']
182     slice_tags = api.plshell.GetSliceTags(api.plauth, {'slice_id': slice_id, 'tagname': 'enabled'})
183     if not slice_tags:
184         api.plshell.AddSliceTag(api.plauth, slice_id, 'enabled', '0')
185     elif slice_tags[0]['value'] != "0":
186         tag_id = attributes[0]['slice_tag_id']
187         api.plshell.UpdateSliceTag(api.plauth, tag_id, '0')
188     return 1
189
190 def reset_slice(api, xrn):
191     # XX not implemented at this interface
192     return 1
193
194 def delete_slice(api, xrn, creds):
195     hrn, type = urn_to_hrn(xrn)
196     slicename = hrn_to_pl_slicename(hrn)
197     slices = api.plshell.GetSlices(api.plauth, {'name': slicename})
198     if not slices:
199         return 1
200     slice = slices[0]
201
202     # determine if this is a peer slice
203     peer = peers.get_peer(api, hrn)
204     try:
205         if peer:
206             api.plshell.UnBindObjectFromPeer(api.plauth, 'slice', slice['slice_id'], peer)
207         api.plshell.DeleteSliceFromNodes(api.plauth, slicename, slice['node_ids'])
208     finally:
209         if peer:
210             api.plshell.BindObjectToPeer(api.plauth, 'slice', slice['slice_id'], peer, slice['peer_slice_id'])
211     return 1
212
213 def get_slices(api, creds):
214     # look in cache first
215     if api.cache:
216         slices = api.cache.get('slices')
217         if slices:
218             return slices
219
220     # get data from db 
221     slices = api.plshell.GetSlices(api.plauth, {'peer_id': None}, ['name'])
222     slice_hrns = [slicename_to_hrn(api.hrn, slice['name']) for slice in slices]
223     slice_urns = [hrn_to_urn(slice_hrn, 'slice') for slice_hrn in slice_hrns]
224
225     # cache the result
226     if api.cache:
227         api.cache.add('slices', slice_urns) 
228
229     return slice_urns
230     
231 def get_rspec(api, creds, options):
232     # get slice's hrn from options
233     xrn = options.get('geni_slice_urn', None)
234     hrn, type = urn_to_hrn(xrn)
235
236     # look in cache first
237     if api.cache and not xrn:
238         rspec = api.cache.get('nodes')
239         if rspec:
240             return rspec 
241
242     network = Network(api)
243     if (hrn):
244         if network.get_slice(api, hrn):
245             network.addSlice()
246
247     rspec = network.toxml()
248
249     # cache the result
250     if api.cache and not xrn:
251         api.cache.add('nodes', rspec)
252
253     return rspec
254
255
256 def get_ticket(api, xrn, creds, rspec, users):
257
258     reg_objects = __get_registry_objects(xrn, creds, users)
259
260     slice_hrn, type = urn_to_hrn(xrn)
261     slices = Slices(api)
262     peer = slices.get_peer(slice_hrn)
263     sfa_peer = slices.get_sfa_peer(slice_hrn)
264
265     # get the slice record
266     registry = api.registries[api.hrn]
267     credential = api.getCredential()
268     records = registry.Resolve(xrn, credential)
269
270     # similar to create_slice, we must verify that the required records exist
271     # at this aggregate before we can issue a ticket
272     site_id, remote_site_id = slices.verify_site(registry, credential, slice_hrn,
273                                                  peer, sfa_peer, reg_objects)
274     slice = slices.verify_slice(registry, credential, slice_hrn, site_id,
275                                 remote_site_id, peer, sfa_peer, reg_objects)
276
277     # make sure we get a local slice record
278     record = None
279     for tmp_record in records:
280         if tmp_record['type'] == 'slice' and \
281            not tmp_record['peer_authority']:
282             record = SliceRecord(dict=tmp_record)
283     if not record:
284         raise RecordNotFound(slice_hrn)
285
286     # get sliver info
287     slivers = Slices(api).get_slivers(slice_hrn)
288     if not slivers:
289         raise SliverDoesNotExist(slice_hrn)
290
291     # get initscripts
292     initscripts = []
293     data = {
294         'timestamp': int(time.time()),
295         'initscripts': initscripts,
296         'slivers': slivers
297     }
298
299     # create the ticket
300     object_gid = record.get_gid_object()
301     new_ticket = SfaTicket(subject = object_gid.get_subject())
302     new_ticket.set_gid_caller(api.auth.client_gid)
303     new_ticket.set_gid_object(object_gid)
304     new_ticket.set_issuer(key=api.key, subject=api.hrn)
305     new_ticket.set_pubkey(object_gid.get_pubkey())
306     new_ticket.set_attributes(data)
307     new_ticket.set_rspec(rspec)
308     #new_ticket.set_parent(api.auth.hierarchy.get_auth_ticket(auth_hrn))
309     new_ticket.encode()
310     new_ticket.sign()
311
312     return new_ticket.save_to_string(save_parents=True)
313
314
315
316 def main():
317     api = SfaAPI()
318     """
319     rspec = get_rspec(api, "plc.princeton.sapan", None)
320     #rspec = get_rspec(api, "plc.princeton.coblitz", None)
321     #rspec = get_rspec(api, "plc.pl.sirius", None)
322     print rspec
323     """
324     f = open(sys.argv[1])
325     xml = f.read()
326     f.close()
327     create_slice(api, "plc.princeton.sapan", xml)
328
329 if __name__ == "__main__":
330     main()
sfa