2 ### $Id: interface.py 17583 2010-04-06 15:01:08Z tmack $
3 ### $URL: https://svn.planet-lab.org/svn/sfa/trunk/sfa/server/interface.py $
6 from sfa.util.faults import *
7 from sfa.util.storage import *
8 from sfa.util.namespace import *
9 from sfa.trust.gid import GID
10 from sfa.util.table import SfaTable
11 from sfa.util.record import SfaRecord
13 import sfa.util.xmlrpcprotocol as xmlrpcprotocol
14 import sfa.util.soapprotocol as soapprotocol
17 # GeniLight client support is optional
19 from egeni.geniLight_client import *
21 GeniClientLight = None
25 # In is a dictionary of registry connections keyed on the registry
28 class Interfaces(dict):
30 Interfaces is a base class for managing information on the
31 peers we are federated with. It is responsible for the following:
33 1) Makes sure a record exist in the local registry for the each
35 2) Attepts to fetch and install trusted gids
36 3) Provides connections (xmlrpc or soap) to federated peers
39 # fields that must be specified in the config file
46 # defined by the class
52 def __init__(self, api, conf_file, type):
53 if type not in self.types:
54 raise SfaInfaildArgument('Invalid type %s: must be in %s' % (type, self.types))
55 dict.__init__(self, {})
59 self.interface_info = XmlStorage(conf_file, self.default_dict)
60 self.interface_info.load()
61 interfaces = self.interface_info.values()[0].values()[0]
62 if not isinstance(interfaces, list):
63 interfaces = [self.interfaces]
65 for interface in interfaces:
66 self.interfaces[interface['hrn']] = interface
69 self.update(self.get_connections(self.interfaces))
71 def sync_interfaces(self):
73 Install missing trusted gids and db records for our federated
76 # Attempt to get any missing peer gids
77 # There should be a gid file in /etc/sfa/trusted_roots for every
78 # peer registry found in in the registries.xml config file. If there
79 # are any missing gids, request a new one from the peer registry.
80 gids_current = self.api.auth.trusted_cert_list
81 hrns_current = [gid.get_hrn() for gid in gids_current]
82 hrns_expected = self.interfaces.keys()
83 new_hrns = set(hrns_expected).difference(hrns_current)
84 gids = self.get_peer_gids(new_hrns)
85 # update the local db records for these registries
86 self.update_db_records(self.type, gids)
88 def get_peer_gids(self, new_hrns):
90 Install trusted gids from the specified interfaces.
95 trusted_certs_dir = self.api.config.get_trustedroots_dir()
96 for new_hrn in new_hrns:
97 # the gid for this interface should already be installed
98 if new_hrn == self.api.config.SFA_INTERFACE_HRN:
101 # get gid from the registry
102 interface_info = self.interfaces[new_hrn]
103 interface = self.get_connections(self.interfaces[new_hrn])[new_hrn]
104 trusted_gids = interface.get_trusted_certs()
106 message = "interface: %s\tunable to install trusted gid for %s" % \
107 (self.api.interface, new_hrn)
109 # the gid we want shoudl be the first one in the list,
111 for trusted_gid in trusted_gids:
112 gid = GID(string=trusted_gids[0])
113 peer_gids.append(gid)
114 if gid.get_hrn() == new_hrn:
115 gid_filename = os.path.join(trusted_certs_dir, '%s.gid' % new_hrn)
116 gid.save_to_file(gid_filename, save_parents=True)
117 message = "interface: %s\tinstalled trusted gid for %s" % \
118 (self.api.interface, new_hrn)
120 self.api.logger.info(message)
122 message = "interface: %s\tunable to install trusted gid for %s" % \
123 (self.api.interface, new_hrn)
124 self.api.logger.info(message)
125 traceback.print_exc()
127 # reload the trusted certs list
128 self.api.auth.load_trusted_certs()
131 def update_db_records(self, type, gids):
133 Make sure there is a record in the local db for allowed registries
134 defined in the config file (registries.xml). Removes old records from
139 # get hrns we expect to find
140 # ignore records for local interfaces
141 ignore_interfaces = [self.api.config.SFA_INTERFACE_HRN]
142 hrns_expected = [gid.get_hrn() for gid in gids \
143 if gid.get_hrn() not in ignore_interfaces]
145 # get hrns that actually exist in the db
147 records = table.find({'type': type})
148 hrns_found = [record['hrn'] for record in records]
151 for record in records:
152 if record['hrn'] not in hrns_expected:
158 if hrn not in hrns_found:
163 'authority': get_authority(hrn),
164 'gid': gid.save_to_string(save_parents=True),
166 record = SfaRecord(dict=record)
169 def get_connections(self, interfaces):
171 read connection details for the trusted peer registries from file return
172 a dictionary of connections keyed on interface hrn.
175 required_fields = self.default_fields.keys()
176 if not isinstance(interfaces, list):
177 interfaces = [interfaces]
178 for interface in interfaces:
179 # make sure the required fields are present and not null
180 if not all([interface.get(key) for key in required_fields]):
183 hrn, address, port = interface['hrn'], interface['addr'], interface['port']
184 url = 'http://%(address)s:%(port)s' % locals()
185 # check which client we should use
186 # sfa.util.xmlrpcprotocol is default
187 client_type = 'xmlrpcprotocol'
188 if interface.has_key('client') and \
189 interface['client'] in ['geniclientlight'] and \
191 client_type = 'geniclientlight'
192 connections[hrn] = GeniClientLight(url, self.api.key_file, self.api.cert_file)
194 connections[hrn] = xmlrpcprotocol.get_server(url, self.api.key_file, self.api.cert_file)