provisioner.py 21.3 KB
Newer Older
1 2 3
from __future__ import (absolute_import, division,
                        print_function, unicode_literals)
import logging
4
import re
efikalti's avatar
efikalti committed
5
import argparse
6

7 8 9 10
logging.basicConfig(level=logging.INFO)
logger = logging.getLogger(__name__)

from kamaki.clients import astakos, cyclades
11 12 13
from kamaki.clients import ClientError
from kamaki.clients.utils import https
from kamaki.cli.config import Config as KamakiConfig
efikalti's avatar
efikalti committed
14
from kamaki import defaults
15
from cluster_error_constants import *
16 17
from Crypto.PublicKey import RSA
from base64 import b64encode
18

efikalti's avatar
efikalti committed
19 20
if not defaults.CACERTS_DEFAULT_PATH:
    https.patch_with_certs(CA_CERTS_PATH)
21

22
storage_templates = ['drdb', 'ext_vlmc']
23 24 25 26


class Provisioner:
    """
27
        provisions virtual machines on ~okeanos
28 29
    """

30
    def __init__(self, cloud_name):
31 32

        # Load .kamakirc configuration
33
        logger.info("Retrieving .kamakirc configuration")
34
        self.config = KamakiConfig()
35 36 37 38 39
        cloud_section = self.config._sections['cloud'].get(cloud_name)
        if not cloud_section:
            message = "Cloud '%s' was not found in you .kamakirc configuration file. " \
                      "Currently you have availablie in your configuration these clouds: %s"
            raise KeyError(message % (cloud_name, self.config._sections['cloud'].keys()))
40 41 42 43

        # Get the authentication url and token
        auth_url, auth_token = cloud_section['url'], cloud_section['token']

44
        logger.info("Initiating Astakos Client")
45 46
        self.astakos = astakos.AstakosClient(auth_url, auth_token)

47 48
        logger.info("Retrieving cyclades endpoint url")
        compute_url = self.astakos.get_endpoint_url(
49
            cyclades.CycladesComputeClient.service_type)
50 51
        logger.info("Initiating Cyclades client")
        self.cyclades = cyclades.CycladesComputeClient(compute_url, auth_token)
52

53 54 55 56 57 58 59 60 61
        # Create the network client
        networkURL = self.astakos.get_endpoint_url(
            cyclades.CycladesNetworkClient.service_type)
        self.network_client = cyclades.CycladesNetworkClient(networkURL, auth_token)

        # Constants
        self.Bytes_to_GB = 1024*1024*1024
        self.Bytes_to_MB = 1024*1024

62 63 64 65
        self.master = None
        self.ips = None
        self.slaves = None
        self.vpn = None
efikalti's avatar
efikalti committed
66
        self.subnet = None
67
        self.private_key = None
68
        self.image_id = 'c6f5adce-21ad-4ce3-8591-acfe7eb73c02'
69

70
    def find_flavor(self, **kwargs):
71 72
        """

73
        :param kwargs: should contains the keys that specify the specs
74
        :return: first flavor objects that matches the specs criteria
75
        """
76 77 78 79 80

        # Set all the default parameters
        kwargs.setdefault("vcpus", 1)
        kwargs.setdefault("ram", 1024)
        kwargs.setdefault("disk", 40)
81
        logger.info("Retrieving flavor")
82
        for flavor in self.cyclades.list_flavors(detail=True):
83 84
            if all([kwargs[key] == flavor[key] \
                    for key in set(flavor.keys()).intersection(kwargs.keys())]):
85 86 87
                return flavor
        return None

88
    def find_image(self, **kwargs):
89 90 91 92 93
        """
        :param image_name: Name of the image to filter by
        :param kwargs:
        :return: first image object that matches the name criteria
        """
94
        image_name = kwargs['image_name']
95 96

        logger.info("Retrieving image")
97
        for image in self.cyclades.list_images(detail=True):
98
            if image_name in image['name']:
99 100 101 102
                return image
        return None

    def find_project_id(self, **kwargs):
103 104 105 106
        """
        :param kwargs: name, state, owner and mode to filter project by
        :return: first project_id that matches the project name
        """
107
        filter = {
108 109 110 111
            'name': kwargs.get("project_name"),
            'state': kwargs.get("project_state"),
            'owner': kwargs.get("project_owner"),
            'mode': kwargs.get("project_mode"),
112
        }
113
        logger.info("Retrieving project")
114 115
        return self.astakos.get_projects(**filter)[0]

116
    def create_vm(self, vm_name=None, image_id=None, ip=None, personality=None, **kwargs):
117 118
        """
        :param vm_name: Name of the virtual machine to create
119
        :param image_id: image id if you want another image than the default
120 121 122
        :param kwargs: passed to the functions called for detail options
        :return:
        """
123
        flavor_id = self.find_flavor(**kwargs)['id']
124 125 126 127
        # Get image
        if image_id == None:
            image_id = self.image_id
        else:
128
            image_id = self.find_image(**kwargs)['id']
129
        project_id = self.find_project_id(**kwargs)['id']
130 131 132 133 134
        if ip != None:
            ip_obj = dict()
            ip_obj['uuid'] = ip['floating_network_id']
            ip_obj['fixed_ip'] = ip['floating_ip_address']
            networks.append(ip_obj)
135 136 137
        networks = [{'uuid': kwargs['net_id']}]
        if personality == None:
            personality = []
138
        try:
139
            okeanos_response = self.cyclades.create_server(name=vm_name, flavor_id=flavor_id,
140 141
                                                           image_id=image_id,
                                                           project_id=project_id,
142
                                                           networks=networks, personality=personality)
143
        except ClientError as ex:
144 145
            raise ex
        return okeanos_response
146

147
    def create_lambda_cluster(self, vm_name, **kwargs):
148 149 150
        """
        :param vm_name: hostname of the master
        :param kwargs: contains specifications of the vms.
151
        :return: dictionary object with the nodes of the cluster if it was successfully created
152 153 154 155 156
        """
        quotas = self.get_quotas()
        vcpus = kwargs['slaves'] * kwargs['vcpus_slave'] + kwargs['vcpus_master']
        ram = kwargs['slaves'] * kwargs['ram_slave'] + kwargs['ram_master']
        disk = kwargs['slaves'] * kwargs['disk_slave'] + kwargs['disk_master']
157
        project_id = self.find_project_id(**kwargs)['id']
158 159 160 161 162 163 164 165
        response = self.check_all_resources(quotas, cluster_size=kwargs['cluster_size'],
                                              vcpus=vcpus,
                                              ram=ram,
                                              disk=disk,
                                              ip_request=kwargs['ip_request'],
                                              network_request=kwargs['network_request'],
                                              project_name=kwargs['project_name'])
        if response:
166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188
            # Get ssh keys
            key = RSA.generate(2048)
            self.private_key = key.exportKey('PEM')
            pub_key = key.publickey().exportKey('OpenSSH') + ' root'
            public = dict(contents=b64encode(pub_key),
                          path='/root/.ssh/id_rsa.pub',
                          owner='root', group='root', mode=0600)
            authorized = dict(contents=b64encode(pub_key),
                          path='/root/.ssh/authorized_keys',
                          owner='root', group='root', mode=0600)
            private = dict(contents=b64encode(self.private_key),
                          path='/root/.ssh/id_rsa',
                          owner='root', group='root', mode=0600)

            master_personality = []
            master_personality.append(authorized)
            master_personality.append(public)
            master_personality.append(private)
            slave_personality = []
            slave_personality.append(authorized)
            print(master_personality)
            print(slave_personality)

189
            # Create private network for cluster
190 191
            self.vpn = self.create_vpn('lambda-vpn', project_id=project_id)
            vpn_id = self.vpn['id']
192 193 194 195
            self.create_private_subnet(vpn_id)

            #reserve ip
            ip_request=kwargs['ip_request']
196
            self.ips = list()
efikalti's avatar
efikalti committed
197
            for i in range(ip_request):
198
                ip = self.reserve_ip(project_id=project_id)
199
                self.ips.append(ip)
200

201 202
            ip = None
            # Create master
203 204
            if len(self.ips) > 0:
                ip = self.ips[0]
205 206 207 208 209 210 211
            self.master = self.create_vm(vm_name=vm_name, ip=ip,
                                         net_id=vpn_id,
                                         vcpus=kwargs['vcpus_master'],
                                         ram=kwargs['ram_master'],
                                         disk=kwargs['disk_master'],
                                         personality=master_personality,
                                         **kwargs)
212 213

            # Create slaves
214
            self.slaves = list()
215
            for i in range(kwargs['slaves']):
216
                ip = None
efikalti's avatar
efikalti committed
217 218
                if len(self.ips) > i+1:
                    ip = self.ips[i+1]
219
                slave_name = 'lambda-node' + str(i+1)
220 221 222 223 224 225 226 227
                slave = self.create_vm(vm_name=slave_name,
                                       ip=ip,
                                       net_id=vpn_id,
                                       vcpus=kwargs['vcpus_slave'],
                                       ram=kwargs['ram_slave'],
                                       disk=kwargs['disk_slave'],
                                       personality=slave_personality,
                                       **kwargs)
228
                self.slaves.append(slave)
229

230 231 232 233 234
            # Wait for VMs to complete being built
            self.cyclades.wait_server(server_id=self.master['id'])
            for slave in self.slaves:
                self.cyclades.wait_server(slave['id'])

235 236
            # Create cluster dictionary object
            inventory = dict()
237 238
            inventory["master"] = self.master
            inventory["slaves"] = self.slaves
239 240
            return inventory

241
    def get_cluster_details(self):
242 243 244
        """
        :returns: dictionary of basic details for the cluster
        """
245 246
        details = dict()

247
        nodes = dict()
248 249 250
        master = dict()
        master['id'] = self.master['id']
        master['name'] = self.master['name']
251
        master['adminPass'] = self.master['adminPass']
252
        nodes['master'] = master
253

254
        slaves = list()
255 256 257 258 259
        for slave in self.slaves:
            slave_obj = dict()
            slave_obj['id'] = slave['id']
            slave_obj['name'] = slave['name']
            name = slave_obj['name']
260 261
            slaves.append(slave_obj)
        nodes['slaves'] = slaves
262

263
        details['nodes'] = nodes
264 265 266 267 268 269
        vpn = dict()
        vpn['id'] = self.vpn['id']
        vpn['type'] = self.vpn['type']
        details['vpn'] = vpn

        details['ips'] = self.ips
efikalti's avatar
efikalti committed
270 271 272 273 274 275
        ips_list = list()
        for ip in self.ips:
            ip_obj = dict()
            ip_obj['floating_network_id'] = ip['floating_network_id']
            ip_obj['floating_ip_address'] = ip['floating_ip_address']
            ip_obj['id'] = ip['id']
efikalti's avatar
efikalti committed
276
            ips_list.append(ip_obj)
efikalti's avatar
efikalti committed
277
        details['ips'] = ips_list
efikalti's avatar
efikalti committed
278 279 280 281 282 283

        subnet = dict()
        subnet['id'] = self.subnet['id']
        subnet['cidr'] = self.subnet['cidr']
        subnet['gateway_ip'] = self.subnet['gateway_ip']
        details['subnet'] = subnet
284 285
        return details

286 287 288 289 290
    def get_private_key(self):
        """
        :returns: Private key of master
        """
        return self.private_key
291

292
    def create_vpn(self, network_name, project_id):
293 294 295
        """
        Creates a virtual private network
        :param network_name: name of the network
296
        :return: the virtual network object
297 298 299 300 301
        """
        try:
            # Create vpn with custom type and the name given as argument
            vpn = self.network_client.create_network(
                        type=self.network_client.network_types[1],
302 303
                        name=network_name,
                        project_id=project_id)
304
            return vpn
305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321
        except ClientError as ex:
            raise ex
        return okeanos_response

    def destroy_vpn(self, id):
        """
        Destroy a virtual private network
        :param id: id of the network we want to destroy
        :return: True if successfull
        """
        try:
            self.network_client.delete_network(id)
            return True
        except ClientError as ex:
            raise ex
        return okeanos_response

322
    def reserve_ip(self,project_id):
323 324 325 326 327
        """
        Reserve ip
        :return: the ip object if successfull
        """
        try:
328
            ip = self.network_client.create_floatingip(project_id=project_id)
329 330 331 332 333
            return ip
        except ClientError as ex:
            raise ex
        return okeanos_response

334
    def create_private_subnet(self, net_id, cidr='192.168.0.0/24', gateway_ip='192.168.0.1'):
335 336 337 338 339 340 341 342 343
        """
        Creates a private subnets and connects it with this network
        :param net_id: id of the network
        :return: the id of the subnet if successfull
        """
        try:
            subnet = self.network_client.create_subnet(net_id, cidr,
                                                       gateway_ip=gateway_ip,
                                                       enable_dhcp=True)
efikalti's avatar
efikalti committed
344
            self.subnet = subnet
345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364
            return subnet['id']
        except ClientError as ex:
            raise ex
        return okeanos_response

    def connect_vm(self, vm_id, net_id):
        """
        Connects the vm with this id to the network with the net_id
        :param vm_id: id of the vm
        :param net_id: id of the network
        :return: returns True if successfull
        """
        try:
            port = self.network_client.create_port(network_id=net_id,
                                                   device_id=vm_id)
            return True
        except ClientError as ex:
            raise ex
        return okeanos_response

365
    def attach_authorized_ip(self, ip, vm_id):
366
        """
367
        Attach the authorized ip with this id to the vm
368 369 370 371 372 373 374 375 376 377 378 379 380
        :param fnet_id: id of the floating network of the ip
        :param vm_id: id of the vm
        :return: returns True if successfull
        """
        try:
            port = self.network_client.create_port(network_id=ip['floating_network_id'],
                                                   device_id=vm_id,
                                                   fixed_ips=[dict(ip_address=ip['floating_ip_address']), ])
            return True
        except ClientError as ex:
            raise ex
        return okeanos_response

381 382 383 384 385 386 387
    def get_quotas(self, **kwargs):
        """
        Get the user quotas for the defined project.
        :return: user quotas object
        """
        return self.astakos.get_quotas()

388 389 390 391 392
    def get_server_info(self, server_id):
        """
        """
        return self.cyclades.get_server_details(server_id=server_id)

393
    def get_server_authorized_ip(self, server_id):
394 395
        """
        :param server_id: id of the server
396
        :returns: the authorized ip of the server if it has one,else None
397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416
        """
        addresses =  self.get_server_info(server_id=server_id)['addresses']
        for key in list(addresses.keys()):
            ip = addresses[key][0]['addr']
            if '192.168.0' not in ip and not re.search('[a-zA-Z]', ip):
                return ip
        return None

    def get_server_private_ip(self, server_id):
        """
        :param server_id: id of the server
        :returns: the private ip of the server if it has one,else None
        """
        addresses =  self.get_server_info(server_id=server_id)['addresses']
        for key in list(addresses.keys()):
            ip = addresses[key][0]['addr']
            if '192.168.0' in ip:
                return ip
        return None

417 418 419 420 421 422 423 424 425 426
    def check_all_resources(self, quotas, **kwargs):
        """
        Checks user's quota for every requested resource.
        Returns True if everything available.
        :param **kwargs: arguments
        """
        project_id = self.find_project_id(**kwargs)['id']
        # quotas = self.get_quotas()

        # Check for VMs
efikalti's avatar
efikalti committed
427 428 429
        pending_vm = quotas[project_id]['cyclades.vm']['project_pending']
        limit_vm = quotas[project_id]['cyclades.vm']['project_limit']
        usage_vm = quotas[project_id]['cyclades.vm']['project_usage']
430 431 432 433 434 435
        available_vm = limit_vm - usage_vm - pending_vm
        if available_vm < kwargs['cluster_size']:
            msg = 'Cyclades VMs out of limit'
            raise ClientError(msg, error_quotas_cluster_size)
            return False
        # Check for CPUs
efikalti's avatar
efikalti committed
436 437 438
        pending_cpu = quotas[project_id]['cyclades.cpu']['project_pending']
        limit_cpu = quotas[project_id]['cyclades.cpu']['project_limit']
        usage_cpu = quotas[project_id]['cyclades.cpu']['project_usage']
439 440 441 442 443 444
        available_cpu = limit_cpu - usage_cpu - pending_cpu
        if available_cpu < kwargs['vcpus']:
            msg = 'Cyclades cpu out of limit'
            raise ClientError(msg, error_quotas_cpu)
            return False
        # Check for RAM
efikalti's avatar
efikalti committed
445 446 447
        pending_ram = quotas[project_id]['cyclades.ram']['project_pending']
        limit_ram = quotas[project_id]['cyclades.ram']['project_limit']
        usage_ram = quotas[project_id]['cyclades.ram']['project_usage']
448 449 450 451 452 453
        available_ram = (limit_ram - usage_ram - pending_ram) / self.Bytes_to_MB
        if available_ram < kwargs['ram']:
            msg = 'Cyclades ram out of limit'
            raise ClientError(msg, error_quotas_ram)
            return False
        # Check for Disk space
efikalti's avatar
efikalti committed
454 455 456
        pending_cd = quotas[project_id]['cyclades.ram']['project_pending']
        limit_cd = quotas[project_id]['cyclades.disk']['project_limit']
        usage_cd = quotas[project_id]['cyclades.disk']['project_usage']
457 458 459 460 461
        available_cyclades_disk_GB = (limit_cd - usage_cd - pending_cd) / self.Bytes_to_GB
        if available_cyclades_disk_GB < kwargs['disk']:
            msg = 'Cyclades disk out of limit'
            raise ClientError(msg, error_quotas_cyclades_disk)
            return False
462
        # Check for authorized IPs
463
        list_float_ips = self.network_client.list_floatingips()
efikalti's avatar
efikalti committed
464 465 466
        pending_ips = quotas[project_id]['cyclades.floating_ip']['project_pending']
        limit_ips = quotas[project_id]['cyclades.floating_ip']['project_limit']
        usage_ips = quotas[project_id]['cyclades.floating_ip']['project_usage']
467 468 469 470 471
        available_ips = limit_ips - usage_ips - pending_ips
        for d in list_float_ips:
            if d['instance_id'] is None and d['port_id'] is None:
                available_ips += 1
        if available_ips < kwargs['ip_request']:
472
            msg = 'authorized IPs out of limit'
efikalti's avatar
efikalti committed
473
            raise ClientError(msg, error_get_ip)
474 475 476 477 478 479 480 481
            return False
        # Check for networks
        pending_net = quotas[project_id]['cyclades.network.private']['project_pending']
        limit_net = quotas[project_id]['cyclades.network.private']['project_limit']
        usage_net = quotas[project_id]['cyclades.network.private']['project_usage']
        available_networks = limit_net - usage_net - pending_net
        if available_networks < kwargs['network_request']:
            msg = 'Private Network out of limit'
efikalti's avatar
efikalti committed
482
            raise ClientError(msg, error_get_network_quota)
483 484 485
            return False
        return True

486 487 488

if __name__ == "__main__":
    parser = argparse.ArgumentParser(description="Okeanos VM provisioning")
489
    parser.add_argument('--cloud', type=str, dest="cloud", default="~okeanos")
490 491 492
    parser.add_argument('--project-name', type=str, dest="project_name",
                        default="lambda.grnet.gr")
    parser.add_argument('--name', type=str, dest='name', default="to mikro debian sto livadi")
493

494 495 496 497 498 499 500 501

    parser.add_argument('--slaves', type=int, dest='slaves', default=1)
    parser.add_argument('--vcpus_master', type=int, dest='vcpus_master', default=4)
    parser.add_argument('--vcpus_slave', type=int, dest='vcpus_slave', default=4)
    parser.add_argument('--ram_master', type=int, dest='ram_master', default=4096)  # in MB
    parser.add_argument('--ram_slave', type=int, dest='ram_slave', default=4096)  # in MB
    parser.add_argument('--disk_master', type=int, dest='disk_master', default=40)  # in GB
    parser.add_argument('--disk_slave', type=int, dest='disk_slave', default=40)  # in GB
502
    parser.add_argument('--ip_request', type=int, dest='ip_request', default=1)
503 504 505 506
    parser.add_argument('--network_request', type=int, dest='network_request', default=1)
    parser.add_argument('--image_name', type=str, dest='image_name', default="debian")
    parser.add_argument('--cluster_size', type=int, dest='cluster_size', default=2)

507
    args = parser.parse_args()
508 509

    provisioner = Provisioner(cloud_name=args.cloud)
510
    """
511 512 513
    print(provisioner.create_vm(vm_name=args.name, project_name=args.project_name,
                             image_name="debian"))
    """
514

515

516
    response = provisioner.create_lambda_cluster(vm_name="lambda-master" , slaves=args.slaves,
517 518 519 520 521 522 523 524 525 526
                                          cluster_size=args.cluster_size,
                                          vcpus_master=args.vcpus_master,
                                          vcpus_slave=args.vcpus_slave,
                                          ram_master=args.ram_master,
                                          ram_slave=args.ram_slave,
                                          disk_master=args.disk_master,
                                          disk_slave=args.disk_slave,
                                          ip_request=args.ip_request,
                                          network_request=args.network_request,
                                          project_name=args.project_name)
527 528
    # print(response)
    print(provisioner.get_cluster_details())
529
    print(provisioner.get_private_key())