This repository has been archived by the owner on Aug 30, 2024. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathedu_setup.py
executable file
·451 lines (349 loc) · 14.6 KB
/
edu_setup.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
#!/usr/bin/python2.6
"""
This script will enable an instructor to quickly and easily reset the pods
in the education cloud setup. This should allow the instructor to run a couple
short commands and end up with a brand-new system setup.
Of course this will evolve over time with the needs and requirements that the
Eucalyptus Education Cloud creates
Andrew Hamilton
Systems Administrator
Eucalyptus Systems
12/14/11
"""
import xmlrpclib
import sys
from cryptacular.crypt import CRYPTPasswordManager
from fabric.api import *
import random
import string
import edu_config
from optparse import OptionParser
def modify_system(system_name, prop_name, prop_value, remote, token):
"""
Generic method to modify systems in cobbler.
system_name -- String with the name of the system
prop_name -- name of the property in cobbler to be changed
prop_value -- value to change the property in cobbler to
remote -- xmlrpclib server connection to the cobbler server
token -- Token to modify settings on the cobbler server
"""
handle = remote.get_system_handle(system_name, token)
remote.modify_system(handle, prop_name, prop_value, token)
return remote.save_system(handle, token)
def reboot_system(system_name, remote):
"""
Reboot the system so that a kickstart will happen.
system_name -- name of the system to perform the task on
remote -- XMLRPC handler to use for accessing the Cobbler API
"""
env.disable_known_hosts = True
interface, ip_address = get_ip(remote, system_name)
if ip_address != "No IP":
env.host_string = ip_address
run('/sbin/reboot')
else:
print "Issue getting IP address for %s" % (system)
def create_crypt(password):
"""
Create a basic crypted password hash to use on the system.
password -- password string that has not been crypted
"""
manager = CRYPTPasswordManager('$1$')
return manager.encode(password)
def remote_set_password(remote, system_name, crypt):
"""
Set the password on the remote machine using 'usermod' and the crypt that
that was created earlier.
remote -- Conection to the Cobbler server
system_name -- name of the system to perform the task on
crypt -- password crypted to be used
"""
env.disable_known_hosts = True
interface, ip_address = get_ip(remote, system_name)
if ip_address != "No IP":
env.host_string = ip_address
run('/usr/sbin/usermod -p \'' + crypt + '\' root')
else:
print "Issue getting IP address for %s" % (system)
def set_pod_passwords(remote, pods, password_size):
"""
Set the pod passwords. In this method we do all of the other steps that
are needed such as passphrase generation, crypt generation, and finally
modification of the remote system's root password. To keep consistent
passwords on both frontend and node machines we only allow for entire pod
passwords to be changed. This relieves the student from needing to remember
two passwords for his single pod.
remote -- Conection to the Cobbler server
pods -- Integer list of posts to be updated.
password_size -- Size of the passphrase to be generated.
"""
for frontend in pods:
if "frontend" in frontend:
node = frontend[0:5] + "-node"
print frontend + " " + node
password = edu_config.PASSWORD
print "Password given to the systems in Pod " + frontend[3:5] + ": " + password
print ""
crypt = create_crypt(password)
remote_set_password(remote, frontend, crypt)
remote_set_password(remote, node, crypt)
def print_pod_profiles(pods, remote):
"""
Print out the profiles of the pods given.
pods -- list of pods
remote -- xlmrpclib server connection to the cobbler server
"""
for pod in pods:
profile = remote.get_system(pod)['profile']
print "%s: %s" % (pod, profile)
def print_profiles(profiles):
"""
Print out the available profiles.
profiles -- a list of the available profiles for use on the pods
"""
print "Available profiles for the pods are the following:"
for profile in profiles:
print " %s" % (profile)
def get_profiles(remote):
"""
Get the available profiles for the pods
remote -- xmlrcplib server connection to the cobbler server
"""
profiles = remote.find_profile({"name": "edu-*-frontend"})
my_profiles = []
for profile in profiles:
my_profiles.append(profile[:(len(profile)-9)])
return my_profiles
def check_profile(profile, remote):
"""
Checks the validity of a profile
profile -- profile name
remote -- xmlrpclib server connection to the cobbler server
"""
return profile in get_profiles(remote)
def check_pods(pods):
"""
Check to make sure we are working with complete pods and not just random systems.
pods -- list of pods given to the script
"""
all_pods = True
if len(pods) % 2 != 0:
return False
for system in pods:
if "frontend" in system:
if (system[:6] + "node") in pods:
all_pods = True
else:
all_pods = False
if "node" in system:
if (system[:6] + "frontend") in pods:
all_pods = True
else:
all_pods = False
return all_pods
def setup_bridge(remote, token, system):
"""
Setup the bridge interface when switching profiles to those that use KVM such as CentOS 6.
"""
interface, ip_address = get_ip(remote, system)
if interface != 'br0' and interface != "Not Found":
interface_info = remote.get_system(system)['interfaces'][interface]
rtn = modify_system(system, 'modify_interface', {
"interfacetype-" + interface: "bridge_slave",
"interfacemaster-" + interface: "br0",
}, remote, token)
rtn = modify_system(system, 'modify_interface', {
"macaddress-br0": interface_info['mac_address'],
"ipaddress-br0": interface_info['ip_address'],
"netmask-br0": interface_info['netmask'],
"static-br0": True,
"interfacetype-br0": "bridge",
}, remote, token)
return rtn
if interface == "Not Found":
return False
else:
return True
def destroy_bridge(remote, token, system):
"""
Remove a bridge interface that is created by a profile that uses KVM such as CentOS 6.
"""
interface, ip_address = get_ip(remote, system)
if interface == "br0" and interface != "Not Found":
for key,values in remote.get_system(system)['interfaces'].items():
if values['interface_type'] == "bridge_slave":
interface_name = key
rtn = modify_system(system, 'delete_interface', 'br0', remote, token)
rtn = modify_system(system, 'modify_interface', {
"interfacetype-" + interface_name: "na",
}, remote, token)
return rtn
if interface == "Not Found":
return False
else:
return True
def get_ip(remote, system):
"""
Get the IP address of the system. Will search through the available
interfaces in Cobbler and will discover the primary IP. edu_config.py has
a listing of interfaces that this checks from what is returned by Cobbler.
"""
system_info = remote.get_system(system)
if system_info == "~":
print "Error: System not found!"
return ("Not Fount", "No IP")
for interface in system_info['interfaces'].iterkeys():
if (interface in edu_config.INTERFACES and
system_info['interfaces'][interface]['interface_type'] != "bridge_slave"):
return (interface, system_info['interfaces'][interface]['ip_address'])
return ("Not Found", "No IP")
def get_all_pods(remote):
"""
A simple lookup for all hostnames that begin with "pod" on the cobbler
server. Cobbler allows for non-administrative actions to be token less
so we don't pass the token to this function.
remote -- xmlrpclib server connection to the cobbler server
TODO -- Make it work only on pod* systems. Should be easy but should test first
"""
return remote.find_system({"hostname":"pod*"})
def get_all_frontends(remote):
"""
A simple lookup for all frontend systems. Used when changing passwords.
remote -- xmlrpclib server connection to the cobbler server
"""
return remote.find_system({"hostname": "pod*-frontend"})
def connect_to_cobbler(server, username, password):
"""
Make the connection to the cobbler server that will be used for the
all operations on the system. This will keep from having to make a
connection everytime we perform an operation on the server and should
keep a (possible) huge connection load on the cobbler server
server -- The IP or FQDN of the cobbler server
username -- Username with admin rights on the cobbler server
password -- Password of the corresponding username above
"""
remote = xmlrpclib.Server("http://" + server + "/cobbler_api")
token = remote.login(username, password)
return remote, token
def get_pods(pods, frontends, nodes, start, end):
"""
Setup the pod, frontend, and node numbers that were parsed out of the
command line argument.
The return value is turned into a set and then back into a list to remove
any duplicate entires we might have.
pods -- The list of pods to add
frontends -- The list of frontends to add
nodes -- The list of nodes to add
start -- Beginning of a range of pods
end -- End of a range of pods to use
"""
new_pods = []
if (start < end):
if pods is None:
pods = []
for pod in xrange(start, end+1):
pods.append(str(pod))
if not pods is None:
for pod in pods:
if int(pod) < 10 and len(pod) < 2:
new_pods.append("pod0%s-frontend" % pod)
new_pods.append("pod0%s-node" %pod)
else:
new_pods.append("pod%s-frontend" % pod)
new_pods.append("pod%s-node" % pod)
if not frontends is None:
for frontend in frontends:
if int(frontend) < 10 and len(frontend) < 2:
new_pods.append("pod0%s-frontend" % frontend)
else:
new_pods.append("pod%s-frontend" % frontend)
if not nodes is None:
for node in nodes:
if int(node) < 10 and len(node) < 2:
new_pods.append("pod0%s-node" % node)
else:
new_pods.append("pod%s-node" % node)
return list(set(new_pods))
def main():
pods = []
password_size = edu_config.PASS_SIZE
remote, token = connect_to_cobbler(edu_config.CBLR_SERVER, edu_config.CBLR_USER,
edu_config.CBLR_PASS)
parser = OptionParser()
parser.add_option("--set-password", action="store_true", dest="set_password", default=False,
help="set the password of the pod to 'eucalyptus' and can only be used entire pods")
parser.add_option("--all-pods", action="store_true", dest="all_pods", default=False,
help="apply the operation to all pods")
parser.add_option("--pod", action="append", type="string", dest="pods",
help="used to select pods")
parser.add_option("--frontend", action="append", type="string", dest="frontends",
help="used to select frontends")
parser.add_option("--node", action="append", type="string", dest="nodes",
help="used to select nodes")
parser.add_option("--get-profiles", action="store_true", dest="get_profiles", default=False,
help="provide a list of available profiles")
parser.add_option("--set-profile", action="store", type="string", dest="profile",
help="set the lists systems with the profile provided")
parser.add_option("--start-range", action="store", type="int", dest="start_range",
help="starts a range of pods to use")
parser.add_option("--end-range", action="store", type="int", dest="end_range",
help="ends a range of pods to use")
parser.add_option("--debug", action="store_true", dest="debug", default=False,
help="show what the program has received from the command line")
(options, args) = parser.parse_args()
if options.all_pods:
pods = get_all_pods(remote)
else:
pods = get_pods(options.pods, options.frontends, options.nodes,
options.start_range, options.end_range)
pods.sort()
if not options.debug:
if options.set_password:
set_pod_passwords(remote, pods, password_size)
elif options.get_profiles:
if pods == []:
profiles = get_profiles(remote)
print_profiles(profiles)
else:
print_pod_profiles(pods, remote)
elif options.profile != None:
if not check_profile(options.profile, remote):
print "Profile does not exist. Please check the name with --get-profiles"
exit(2)
if not check_pods(pods):
print "Profiles should only be set on complete pods"
exit(2)
for system in pods:
if "frontend" in system:
result = modify_system(system, "profile", options.profile+"-frontend",
remote, token)
else:
result = modify_system(system, "profile", options.profile+"-node",
remote, token)
if options.profile in edu_config.PROFILES_NEED_BR0:
setup_bridge(remote, token, system)
else:
destroy_bridge(remote, token, system)
if result == True:
print "Profile Changed for %s" % (system)
else:
print "Error changing profile on %s" % (system)
elif len(pods) == 0:
parser.print_help()
else:
for system in pods:
result = modify_system(system, "netboot_enabled", True, remote, token)
if result == True:
print "Success for " + system
else:
print "Error for %s" % (system)
reboot_system(system, remote)
else:
get_ip(remote, "pod10-node")
print ""
print options
print ""
print pods
if __name__ == "__main__":
main()
exit