provisioner.py 21.3 KB
Newer Older
1
2
3
from __future__ import (absolute_import, division,
                        print_function, unicode_literals)
import logging
4
import re
efikalti's avatar
efikalti committed
5
import argparse
6

7
8
9
10
logging.basicConfig(level=logging.INFO)
logger = logging.getLogger(__name__)

from kamaki.clients import astakos, cyclades
11
12
13
from kamaki.clients import ClientError
from kamaki.clients.utils import https
from kamaki.cli.config import Config as KamakiConfig
efikalti's avatar
efikalti committed
14
from kamaki import defaults
efikalti's avatar
efikalti committed
15
from fokia.cluster_error_constants import *
16
17
from Crypto.PublicKey import RSA
from base64 import b64encode
18

efikalti's avatar
efikalti committed
19
20
if not defaults.CACERTS_DEFAULT_PATH:
    https.patch_with_certs(CA_CERTS_PATH)
21

22
storage_templates = ['drdb', 'ext_vlmc']
23
24
25
26


class Provisioner:
    """
27
        provisions virtual machines on ~okeanos
28
29
    """

30
    def __init__(self, cloud_name):
31
32

        # Load .kamakirc configuration
33
        logger.info("Retrieving .kamakirc configuration")
34
        self.config = KamakiConfig()
35
36
37
38
39
        cloud_section = self.config._sections['cloud'].get(cloud_name)
        if not cloud_section:
            message = "Cloud '%s' was not found in you .kamakirc configuration file. " \
                      "Currently you have availablie in your configuration these clouds: %s"
            raise KeyError(message % (cloud_name, self.config._sections['cloud'].keys()))
40
41
42
43

        # Get the authentication url and token
        auth_url, auth_token = cloud_section['url'], cloud_section['token']

44
        logger.info("Initiating Astakos Client")
45
46
        self.astakos = astakos.AstakosClient(auth_url, auth_token)

47
48
        logger.info("Retrieving cyclades endpoint url")
        compute_url = self.astakos.get_endpoint_url(
49
            cyclades.CycladesComputeClient.service_type)
50
51
        logger.info("Initiating Cyclades client")
        self.cyclades = cyclades.CycladesComputeClient(compute_url, auth_token)
52

53
54
55
56
57
58
59
60
61
        # Create the network client
        networkURL = self.astakos.get_endpoint_url(
            cyclades.CycladesNetworkClient.service_type)
        self.network_client = cyclades.CycladesNetworkClient(networkURL, auth_token)

        # Constants
        self.Bytes_to_GB = 1024*1024*1024
        self.Bytes_to_MB = 1024*1024

62
63
64
65
        self.master = None
        self.ips = None
        self.slaves = None
        self.vpn = None
efikalti's avatar
efikalti committed
66
        self.subnet = None
67
        self.private_key = None
68
        self.image_id = 'c6f5adce-21ad-4ce3-8591-acfe7eb73c02'
69

70
    def find_flavor(self, **kwargs):
71
72
        """

73
        :param kwargs: should contains the keys that specify the specs
74
        :return: first flavor objects that matches the specs criteria
75
        """
76
77
78
79
80

        # Set all the default parameters
        kwargs.setdefault("vcpus", 1)
        kwargs.setdefault("ram", 1024)
        kwargs.setdefault("disk", 40)
81
        logger.info("Retrieving flavor")
82
        for flavor in self.cyclades.list_flavors(detail=True):
83
84
            if all([kwargs[key] == flavor[key] \
                    for key in set(flavor.keys()).intersection(kwargs.keys())]):
85
86
87
                return flavor
        return None

88
    def find_image(self, **kwargs):
89
90
91
92
93
        """
        :param image_name: Name of the image to filter by
        :param kwargs:
        :return: first image object that matches the name criteria
        """
94
        image_name = kwargs['image_name']
95
96

        logger.info("Retrieving image")
97
        for image in self.cyclades.list_images(detail=True):
98
            if image_name in image['name']:
99
100
101
102
                return image
        return None

    def find_project_id(self, **kwargs):
103
        """
104
105
106
        :param kwargs: name, state, owner and mode to filter project by
        :return: first project_id that matches the project name
        """
107
        filter = {
108
109
110
111
            'name': kwargs.get("project_name"),
            'state': kwargs.get("project_state"),
            'owner': kwargs.get("project_owner"),
            'mode': kwargs.get("project_mode"),
112
        }
113
        logger.info("Retrieving project")
114
115
        return self.astakos.get_projects(**filter)[0]

116
    def create_vm(self, vm_name=None, image_id=None, ip=None, personality=None, **kwargs):
117
118
        """
        :param vm_name: Name of the virtual machine to create
119
        :param image_id: image id if you want another image than the default
120
121
122
        :param kwargs: passed to the functions called for detail options
        :return:
        """
123
        flavor_id = self.find_flavor(**kwargs)['id']
124
125
126
127
        # Get image
        if image_id == None:
            image_id = self.image_id
        else:
128
            image_id = self.find_image(**kwargs)['id']
129
        project_id = self.find_project_id(**kwargs)['id']
efikalti's avatar
efikalti committed
130
        networks = list()
131
132
133
134
135
        if ip != None:
            ip_obj = dict()
            ip_obj['uuid'] = ip['floating_network_id']
            ip_obj['fixed_ip'] = ip['floating_ip_address']
            networks.append(ip_obj)
efikalti's avatar
efikalti committed
136
        networks.append({'uuid': kwargs['net_id']})
137
138
        if personality == None:
            personality = []
139
        try:
140
            okeanos_response = self.cyclades.create_server(name=vm_name, flavor_id=flavor_id,
141
142
                                                           image_id=image_id,
                                                           project_id=project_id,
143
                                                           networks=networks, personality=personality)
144
        except ClientError as ex:
145
146
            raise ex
        return okeanos_response
147

148
    def create_lambda_cluster(self, vm_name, **kwargs):
149
150
151
        """
        :param vm_name: hostname of the master
        :param kwargs: contains specifications of the vms.
152
        :return: dictionary object with the nodes of the cluster if it was successfully created
153
154
155
156
157
        """
        quotas = self.get_quotas()
        vcpus = kwargs['slaves'] * kwargs['vcpus_slave'] + kwargs['vcpus_master']
        ram = kwargs['slaves'] * kwargs['ram_slave'] + kwargs['ram_master']
        disk = kwargs['slaves'] * kwargs['disk_slave'] + kwargs['disk_master']
158
        project_id = self.find_project_id(**kwargs)['id']
159
160
161
162
163
164
165
166
        response = self.check_all_resources(quotas, cluster_size=kwargs['cluster_size'],
                                              vcpus=vcpus,
                                              ram=ram,
                                              disk=disk,
                                              ip_request=kwargs['ip_request'],
                                              network_request=kwargs['network_request'],
                                              project_name=kwargs['project_name'])
        if response:
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
            # Get ssh keys
            key = RSA.generate(2048)
            self.private_key = key.exportKey('PEM')
            pub_key = key.publickey().exportKey('OpenSSH') + ' root'
            public = dict(contents=b64encode(pub_key),
                          path='/root/.ssh/id_rsa.pub',
                          owner='root', group='root', mode=0600)
            authorized = dict(contents=b64encode(pub_key),
                          path='/root/.ssh/authorized_keys',
                          owner='root', group='root', mode=0600)
            private = dict(contents=b64encode(self.private_key),
                          path='/root/.ssh/id_rsa',
                          owner='root', group='root', mode=0600)

            master_personality = []
            master_personality.append(authorized)
            master_personality.append(public)
            master_personality.append(private)
            slave_personality = []
            slave_personality.append(authorized)
            print(master_personality)
            print(slave_personality)

190
            # Create private network for cluster
191
192
            self.vpn = self.create_vpn('lambda-vpn', project_id=project_id)
            vpn_id = self.vpn['id']
193
194
195
196
            self.create_private_subnet(vpn_id)

            #reserve ip
            ip_request=kwargs['ip_request']
197
            self.ips = list()
efikalti's avatar
efikalti committed
198
            for i in range(ip_request):
199
                ip = self.reserve_ip(project_id=project_id)
200
                self.ips.append(ip)
201

202
203
            ip = None
            # Create master
204
205
            if len(self.ips) > 0:
                ip = self.ips[0]
206
207
208
209
210
211
212
            self.master = self.create_vm(vm_name=vm_name, ip=ip,
                                         net_id=vpn_id,
                                         vcpus=kwargs['vcpus_master'],
                                         ram=kwargs['ram_master'],
                                         disk=kwargs['disk_master'],
                                         personality=master_personality,
                                         **kwargs)
213
214

            # Create slaves
215
            self.slaves = list()
216
            for i in range(kwargs['slaves']):
217
                ip = None
efikalti's avatar
efikalti committed
218
219
                if len(self.ips) > i+1:
                    ip = self.ips[i+1]
220
                slave_name = 'lambda-node' + str(i+1)
221
222
223
224
225
226
227
228
                slave = self.create_vm(vm_name=slave_name,
                                       ip=ip,
                                       net_id=vpn_id,
                                       vcpus=kwargs['vcpus_slave'],
                                       ram=kwargs['ram_slave'],
                                       disk=kwargs['disk_slave'],
                                       personality=slave_personality,
                                       **kwargs)
229
                self.slaves.append(slave)
230

231
232
233
234
235
            # Wait for VMs to complete being built
            self.cyclades.wait_server(server_id=self.master['id'])
            for slave in self.slaves:
                self.cyclades.wait_server(slave['id'])

236
237
            # Create cluster dictionary object
            inventory = dict()
238
239
            inventory["master"] = self.master
            inventory["slaves"] = self.slaves
240
241
            return inventory

242
    def get_cluster_details(self):
243
244
245
        """
        :returns: dictionary of basic details for the cluster
        """
246
247
        details = dict()

248
        nodes = dict()
249
250
251
        master = dict()
        master['id'] = self.master['id']
        master['name'] = self.master['name']
252
        master['adminPass'] = self.master['adminPass']
253
        nodes['master'] = master
254

255
        slaves = list()
256
257
258
259
260
        for slave in self.slaves:
            slave_obj = dict()
            slave_obj['id'] = slave['id']
            slave_obj['name'] = slave['name']
            name = slave_obj['name']
261
262
            slaves.append(slave_obj)
        nodes['slaves'] = slaves
263

264
        details['nodes'] = nodes
265
266
267
268
269
270
        vpn = dict()
        vpn['id'] = self.vpn['id']
        vpn['type'] = self.vpn['type']
        details['vpn'] = vpn

        details['ips'] = self.ips
efikalti's avatar
efikalti committed
271
272
273
274
275
276
        ips_list = list()
        for ip in self.ips:
            ip_obj = dict()
            ip_obj['floating_network_id'] = ip['floating_network_id']
            ip_obj['floating_ip_address'] = ip['floating_ip_address']
            ip_obj['id'] = ip['id']
efikalti's avatar
efikalti committed
277
            ips_list.append(ip_obj)
efikalti's avatar
efikalti committed
278
        details['ips'] = ips_list
efikalti's avatar
efikalti committed
279
280
281
282
283
284

        subnet = dict()
        subnet['id'] = self.subnet['id']
        subnet['cidr'] = self.subnet['cidr']
        subnet['gateway_ip'] = self.subnet['gateway_ip']
        details['subnet'] = subnet
285
286
        return details

287
288
289
290
291
    def get_private_key(self):
        """
        :returns: Private key of master
        """
        return self.private_key
292

293
    def create_vpn(self, network_name, project_id):
294
295
296
        """
        Creates a virtual private network
        :param network_name: name of the network
297
        :return: the virtual network object
298
299
300
301
302
        """
        try:
            # Create vpn with custom type and the name given as argument
            vpn = self.network_client.create_network(
                        type=self.network_client.network_types[1],
303
304
                        name=network_name,
                        project_id=project_id)
305
            return vpn
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
        except ClientError as ex:
            raise ex
        return okeanos_response

    def destroy_vpn(self, id):
        """
        Destroy a virtual private network
        :param id: id of the network we want to destroy
        :return: True if successfull
        """
        try:
            self.network_client.delete_network(id)
            return True
        except ClientError as ex:
            raise ex
        return okeanos_response

323
    def reserve_ip(self,project_id):
324
325
326
327
328
        """
        Reserve ip
        :return: the ip object if successfull
        """
        try:
329
            ip = self.network_client.create_floatingip(project_id=project_id)
330
331
332
333
334
            return ip
        except ClientError as ex:
            raise ex
        return okeanos_response

335
    def create_private_subnet(self, net_id, cidr='192.168.0.0/24', gateway_ip='192.168.0.1'):
336
337
338
339
340
341
342
343
344
        """
        Creates a private subnets and connects it with this network
        :param net_id: id of the network
        :return: the id of the subnet if successfull
        """
        try:
            subnet = self.network_client.create_subnet(net_id, cidr,
                                                       gateway_ip=gateway_ip,
                                                       enable_dhcp=True)
efikalti's avatar
efikalti committed
345
            self.subnet = subnet
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
            return subnet['id']
        except ClientError as ex:
            raise ex
        return okeanos_response

    def connect_vm(self, vm_id, net_id):
        """
        Connects the vm with this id to the network with the net_id
        :param vm_id: id of the vm
        :param net_id: id of the network
        :return: returns True if successfull
        """
        try:
            port = self.network_client.create_port(network_id=net_id,
                                                   device_id=vm_id)
            return True
        except ClientError as ex:
            raise ex
        return okeanos_response

366
    def attach_authorized_ip(self, ip, vm_id):
367
        """
368
        Attach the authorized ip with this id to the vm
369
370
371
372
373
374
375
376
377
378
379
380
381
        :param fnet_id: id of the floating network of the ip
        :param vm_id: id of the vm
        :return: returns True if successfull
        """
        try:
            port = self.network_client.create_port(network_id=ip['floating_network_id'],
                                                   device_id=vm_id,
                                                   fixed_ips=[dict(ip_address=ip['floating_ip_address']), ])
            return True
        except ClientError as ex:
            raise ex
        return okeanos_response

382
383
384
385
386
387
388
    def get_quotas(self, **kwargs):
        """
        Get the user quotas for the defined project.
        :return: user quotas object
        """
        return self.astakos.get_quotas()

389
390
391
392
393
    def get_server_info(self, server_id):
        """
        """
        return self.cyclades.get_server_details(server_id=server_id)

394
    def get_server_authorized_ip(self, server_id):
395
396
        """
        :param server_id: id of the server
397
        :returns: the authorized ip of the server if it has one,else None
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
        """
        addresses =  self.get_server_info(server_id=server_id)['addresses']
        for key in list(addresses.keys()):
            ip = addresses[key][0]['addr']
            if '192.168.0' not in ip and not re.search('[a-zA-Z]', ip):
                return ip
        return None

    def get_server_private_ip(self, server_id):
        """
        :param server_id: id of the server
        :returns: the private ip of the server if it has one,else None
        """
        addresses =  self.get_server_info(server_id=server_id)['addresses']
        for key in list(addresses.keys()):
            ip = addresses[key][0]['addr']
            if '192.168.0' in ip:
                return ip
        return None

418
419
420
421
422
423
424
425
426
427
    def check_all_resources(self, quotas, **kwargs):
        """
        Checks user's quota for every requested resource.
        Returns True if everything available.
        :param **kwargs: arguments
        """
        project_id = self.find_project_id(**kwargs)['id']
        # quotas = self.get_quotas()

        # Check for VMs
efikalti's avatar
efikalti committed
428
429
430
        pending_vm = quotas[project_id]['cyclades.vm']['project_pending']
        limit_vm = quotas[project_id]['cyclades.vm']['project_limit']
        usage_vm = quotas[project_id]['cyclades.vm']['project_usage']
431
432
433
434
435
436
        available_vm = limit_vm - usage_vm - pending_vm
        if available_vm < kwargs['cluster_size']:
            msg = 'Cyclades VMs out of limit'
            raise ClientError(msg, error_quotas_cluster_size)
            return False
        # Check for CPUs
efikalti's avatar
efikalti committed
437
438
439
        pending_cpu = quotas[project_id]['cyclades.cpu']['project_pending']
        limit_cpu = quotas[project_id]['cyclades.cpu']['project_limit']
        usage_cpu = quotas[project_id]['cyclades.cpu']['project_usage']
440
441
442
443
444
445
        available_cpu = limit_cpu - usage_cpu - pending_cpu
        if available_cpu < kwargs['vcpus']:
            msg = 'Cyclades cpu out of limit'
            raise ClientError(msg, error_quotas_cpu)
            return False
        # Check for RAM
efikalti's avatar
efikalti committed
446
447
448
        pending_ram = quotas[project_id]['cyclades.ram']['project_pending']
        limit_ram = quotas[project_id]['cyclades.ram']['project_limit']
        usage_ram = quotas[project_id]['cyclades.ram']['project_usage']
449
450
451
452
453
454
        available_ram = (limit_ram - usage_ram - pending_ram) / self.Bytes_to_MB
        if available_ram < kwargs['ram']:
            msg = 'Cyclades ram out of limit'
            raise ClientError(msg, error_quotas_ram)
            return False
        # Check for Disk space
efikalti's avatar
efikalti committed
455
456
457
        pending_cd = quotas[project_id]['cyclades.ram']['project_pending']
        limit_cd = quotas[project_id]['cyclades.disk']['project_limit']
        usage_cd = quotas[project_id]['cyclades.disk']['project_usage']
458
459
460
461
462
        available_cyclades_disk_GB = (limit_cd - usage_cd - pending_cd) / self.Bytes_to_GB
        if available_cyclades_disk_GB < kwargs['disk']:
            msg = 'Cyclades disk out of limit'
            raise ClientError(msg, error_quotas_cyclades_disk)
            return False
463
        # Check for authorized IPs
464
        list_float_ips = self.network_client.list_floatingips()
efikalti's avatar
efikalti committed
465
466
467
        pending_ips = quotas[project_id]['cyclades.floating_ip']['project_pending']
        limit_ips = quotas[project_id]['cyclades.floating_ip']['project_limit']
        usage_ips = quotas[project_id]['cyclades.floating_ip']['project_usage']
468
469
470
471
472
        available_ips = limit_ips - usage_ips - pending_ips
        for d in list_float_ips:
            if d['instance_id'] is None and d['port_id'] is None:
                available_ips += 1
        if available_ips < kwargs['ip_request']:
473
            msg = 'authorized IPs out of limit'
efikalti's avatar
efikalti committed
474
            raise ClientError(msg, error_get_ip)
475
476
477
478
479
480
481
482
            return False
        # Check for networks
        pending_net = quotas[project_id]['cyclades.network.private']['project_pending']
        limit_net = quotas[project_id]['cyclades.network.private']['project_limit']
        usage_net = quotas[project_id]['cyclades.network.private']['project_usage']
        available_networks = limit_net - usage_net - pending_net
        if available_networks < kwargs['network_request']:
            msg = 'Private Network out of limit'
efikalti's avatar
efikalti committed
483
            raise ClientError(msg, error_get_network_quota)
484
485
486
            return False
        return True

487
488
489

if __name__ == "__main__":
    parser = argparse.ArgumentParser(description="Okeanos VM provisioning")
490
    parser.add_argument('--cloud', type=str, dest="cloud", default="~okeanos")
491
492
493
    parser.add_argument('--project-name', type=str, dest="project_name",
                        default="lambda.grnet.gr")
    parser.add_argument('--name', type=str, dest='name', default="to mikro debian sto livadi")
494

495
496
497
498
499
500
501
502

    parser.add_argument('--slaves', type=int, dest='slaves', default=1)
    parser.add_argument('--vcpus_master', type=int, dest='vcpus_master', default=4)
    parser.add_argument('--vcpus_slave', type=int, dest='vcpus_slave', default=4)
    parser.add_argument('--ram_master', type=int, dest='ram_master', default=4096)  # in MB
    parser.add_argument('--ram_slave', type=int, dest='ram_slave', default=4096)  # in MB
    parser.add_argument('--disk_master', type=int, dest='disk_master', default=40)  # in GB
    parser.add_argument('--disk_slave', type=int, dest='disk_slave', default=40)  # in GB
503
    parser.add_argument('--ip_request', type=int, dest='ip_request', default=1)
504
505
506
507
    parser.add_argument('--network_request', type=int, dest='network_request', default=1)
    parser.add_argument('--image_name', type=str, dest='image_name', default="debian")
    parser.add_argument('--cluster_size', type=int, dest='cluster_size', default=2)

508
    args = parser.parse_args()
509
510

    provisioner = Provisioner(cloud_name=args.cloud)
511
    """
512
513
514
    print(provisioner.create_vm(vm_name=args.name, project_name=args.project_name,
                             image_name="debian"))
    """
515

516

517
    response = provisioner.create_lambda_cluster(vm_name="lambda-master" , slaves=args.slaves,
518
519
520
521
522
523
524
525
526
527
                                          cluster_size=args.cluster_size,
                                          vcpus_master=args.vcpus_master,
                                          vcpus_slave=args.vcpus_slave,
                                          ram_master=args.ram_master,
                                          ram_slave=args.ram_slave,
                                          disk_master=args.disk_master,
                                          disk_slave=args.disk_slave,
                                          ip_request=args.ip_request,
                                          network_request=args.network_request,
                                          project_name=args.project_name)
528
    # print(response)
efikalti's avatar
efikalti committed
529
530
    # print(provisioner.get_cluster_details())
    # print(provisioner.get_private_key())