Blame - cfg_checker/modules/network/mapper.py - mcp/cfg-checker

2019-04-23 18:51:23 -0500

[diff] [blame]

1

import ipaddress

2

import json

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

3

from copy import deepcopy

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

4

5

from cfg_checker.common import logger_cli

6

from cfg_checker.common.exception import InvalidReturnException

7

from cfg_checker.modules.network.network_errors import NetworkErrors

8

from cfg_checker.nodes import salt_master

9

10

# TODO: use templated approach

11

# net interface structure should be the same

12

_if_item = {

13

"name": "unnamed interface",

14

"mac": "",

15

"routes": {},

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

16

"proto": "",

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

"ip": [],

"parameters": {}

}

# collection of configurations

_network_item = {

"runtime": {},

"config": {},

"reclass": {}

}

class NetworkMapper(object):

RECLASS = "reclass"

CONFIG = "config"

RUNTIME = "runtime"

def __init__(self, errors_class=None):

35

logger_cli.info("# Initializing mapper")

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

36

# init networks and nodes

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

37

self.networks = {}

38

self.nodes = salt_master.get_nodes()

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

39

# init and pre-populate interfaces

40

self.interfaces = {k: {} for k in self.nodes}

41

# Init errors class

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

42

if errors_class:

43

self.errors = errors_class

44

else:

45

logger_cli.debug("... init error logs folder")

46

self.errors = NetworkErrors()

47

48

# adding net data to tree

49

def _add_data(self, _list, _n, _h, _d):

if _n not in _list:

_list[_n] = {}

_list[_n][_h] = [_d]

elif _h not in _list[_n]:

54

# there is no such host, just create it

55

_list[_n][_h] = [_d]

56

else:

57

# there is such host... this is an error

58

self.errors.add_error(

59

self.errors.NET_DUPLICATE_IF,

host=_h,

dup_if=_d['name']

)

_list[_n][_h].append(_d)

64

65

# TODO: refactor map creation. Build one map instead of two separate

66

def _map_network_for_host(self, host, if_class, net_list, data):

67

# filter networks for this IF IP

68

_nets = [n for n in net_list.keys() if if_class.ip in n]

69

_masks = [n.netmask for n in _nets]

70

if len(_nets) > 1:

71

# There a multiple network found for this IP, Error

72

self.errors.add_error(

73

self.errors.NET_SUBNET_INTERSECT,

74

host=host,

75

ip=str(if_class.exploded),

76

networks="; ".join([str(_n) for _n in _nets])

77

)

78

# check mask match

79

if len(_nets) > 0 and if_class.netmask not in _masks:

80

self.errors.add_error(

81

self.errors.NET_MASK_MISMATCH,

82

host=host,

83

if_name=data['name'],

84

if_cidr=if_class.exploded,

85

if_mapped_networks=", ".join([str(_n) for _n in _nets])

)

if len(_nets) < 1:

self._add_data(net_list, if_class.network, host, data)

else:

# add all data

for net in _nets:

self._add_data(net_list, net, host, data)

return net_list

def _map_reclass_networks(self):

98

# class uses nodes from self.nodes dict

99

_reclass = {}

100

# Get required pillars

101

salt_master.get_specific_pillar_for_nodes("linux:network")

102

for node in salt_master.nodes.keys():

103

# check if this node

104

if not salt_master.is_node_available(node):

105

continue

106

# get the reclass value

107

_pillar = salt_master.nodes[node]['pillars']['linux']['network']

108

# we should be ready if there is no interface in reclass for a node

Alex

92e07ce

2019-05-31 16:00:03 -0500

[diff] [blame]

109

# for example on APT node

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

110

if 'interface' in _pillar:

111

_pillar = _pillar['interface']

112

else:

113

logger_cli.info(

114

"... node '{}' skipped, no IF section in reclass".format(

node

)

)

continue

Alex

92e07ce

2019-05-31 16:00:03 -0500

[diff] [blame]

119

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

120

# build map based on IPs and save info too

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

121

for _if_name, _if_data in _pillar.iteritems():

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

122

if _if_name not in self.interfaces[node]:

123

self.interfaces[node][_if_name] = deepcopy(_network_item)

124

self.interfaces[node][_if_name]['reclass'] = deepcopy(_if_data)

125

# map network if any

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

126

if 'address' in _if_data:

127

_if = ipaddress.IPv4Interface(

128

_if_data['address'] + '/' + _if_data['netmask']

129

)

130

_if_data['name'] = _if_name

131

_if_data['ifs'] = [_if]

132

133

_reclass = self._map_network_for_host(

node,

_if,

_reclass,

_if_data

)

return _reclass

def _map_configured_networks(self):

143

# class uses nodes from self.nodes dict

144

_confs = {}

145

Alex

92e07ce

2019-05-31 16:00:03 -0500

[diff] [blame]

146

# TODO: parse /etc/network/interfaces

147

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

148

return _confs

149

150

def _map_runtime_networks(self):

151

# class uses nodes from self.nodes dict

152

_runtime = {}

153

logger_cli.info("# Mapping node runtime network data")

154

salt_master.prepare_script_on_active_nodes("ifs_data.py")

155

_result = salt_master.execute_script_on_active_nodes(

"ifs_data.py",

args=["json"]

)

for key in salt_master.nodes.keys():

160

# check if we are to work with this node

161

if not salt_master.is_node_available(key):

162

continue

163

# due to much data to be passed from salt_master,

164

# it is happening in order

165

if key in _result:

166

_text = _result[key]

167

if '{' in _text and '}' in _text:

168

_text = _text[_text.find('{'):]

169

else:

170

raise InvalidReturnException(

171

"Non-json object returned: '{}'".format(

_text

)

)

_dict = json.loads(_text[_text.find('{'):])

176

salt_master.nodes[key]['routes'] = _dict.pop("routes")

177

salt_master.nodes[key]['networks'] = _dict

178

else:

179

salt_master.nodes[key]['networks'] = {}

180

salt_master.nodes[key]['routes'] = {}

181

logger_cli.debug("... {} has {} networks".format(

182

key,

183

len(salt_master.nodes[key]['networks'].keys())

184

))

185

logger_cli.info("-> done collecting networks data")

186

187

logger_cli.info("-> mapping IPs")

188

# match interfaces by IP subnets

189

for host, node_data in salt_master.nodes.iteritems():

190

if not salt_master.is_node_available(host):

191

continue

192

193

for net_name, net_data in node_data['networks'].iteritems():

194

# get ips and calculate subnets

195

if net_name in ['lo']:

196

# skip the localhost

197

continue

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

198

else:

199

# add collected data to interface storage

200

if net_name not in self.interfaces[host]:

201

self.interfaces[host][net_name] = \

202

deepcopy(_network_item)

203

self.interfaces[host][net_name]['runtime'] = \

204

deepcopy(net_data)

205

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

206

# get data and make sure that wide mask goes first

207

_ip4s = sorted(

208

net_data['ipv4'],

209

key=lambda s: s[s.index('/'):]

210

)

211

for _ip_str in _ip4s:

212

# create interface class

213

_if = ipaddress.IPv4Interface(_ip_str)

214

# check if this is a VIP

215

# ...all those will have /32 mask

216

net_data['vip'] = None

217

if _if.network.prefixlen == 32:

218

net_data['vip'] = str(_if.exploded)

219

if 'name' not in net_data:

220

net_data['name'] = net_name

221

if 'ifs' not in net_data:

222

net_data['ifs'] = [_if]

223

# map it

224

_runtime = self._map_network_for_host(

host,

_if,

_runtime,

net_data

)

else:

# data is already there, just add VIP

232

net_data['ifs'].append(_if)

return _runtime

def map_network(self, source):

237

# maps target network using given source

238

_networks = None

239

240

if source == self.RECLASS:

241

_networks = self._map_reclass_networks()

242

elif source == self.CONFIG:

243

_networks = self._map_configured_networks()

244

elif source == self.RUNTIME:

245

_networks = self._map_runtime_networks()

246

247

self.networks[source] = _networks

return _networks

def print_map(self):

"""

Create text report for CLI

:return: none

"""

_runtime = self.networks[self.RUNTIME]

257

_reclass = self.networks[self.RECLASS]

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

258

logger_cli.info("# Networks")

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

259

logger_cli.info(

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

260

" {0:8} {1:25} {2:25} {3:6} {4:10} {5:10} {6}/{7}".format(

261

"Host",

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

262

"IF",

263

"IP",

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

"Proto",

"MTU",

"State",

"Gate",

"Def.Gate"

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

269

)

270

)

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

271

# No matter of proto, at least one IP will be present for the network

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

272

for network in _reclass:

273

# shortcuts

274

_net = str(network)

275

logger_cli.info("-> {}".format(_net))

276

if network not in _runtime:

277

# reclass has network that not found in runtime

278

self.errors.add_error(

279

self.errors.NET_NO_RUNTIME_NETWORK,

280

reclass_net=str(network)

281

)

282

logger_cli.info(" {:-^50}".format(" No runtime network "))

283

continue

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

284

# hostnames

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

285

names = sorted(_runtime[network].keys())

286

for hostname in names:

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

287

node = hostname.split('.')[0]

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

288

if not salt_master.is_node_available(hostname, log=False):

289

logger_cli.info(

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

290

" {0:8} {1}".format(node, "node not available")

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

291

)

292

# add non-responsive node erorr

293

self.errors.add_error(

294

self.errors.NET_NODE_NON_RESPONSIVE,

295

host=hostname

296

)

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

297

continue

298

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

299

# lookup interface name on node using network CIDR

300

_if_name = _runtime[network][hostname][0]["name"]

301

# get proper reclass

302

_r = self.interfaces[hostname][_if_name]['reclass']

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

303

_if_rc = "" if _r else "*"

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

304

_if_name_suffix = ""

305

# get the proto value

306

if "proto" in _r:

307

_proto = _r['proto']

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

308

else:

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

309

_proto = "-"

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

310

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

311

if "type" in _r:

312

_if_name_suffix += _r["type"]

313

if "use_interfaces" in _r:

314

_if_name_suffix += "->" + ",".join(_r["use_interfaces"])

315

316

if _if_name_suffix:

317

_if_name_suffix = "({})".format(_if_name_suffix)

318

319

# check reclass has this interface

320

if _proto != "-" and not _r:

321

self.errors.add_error(

322

self.errors.NET_NODE_UNEXPECTED_IF,

323

host=hostname,

324

if_name=_if_name

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

325

)

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

326

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

327

# get gate and routes if proto is static

328

if _proto == 'static':

329

# get the gateway for current net

330

_routes = salt_master.nodes[hostname]['routes']

331

_route = _routes[_net] if _net in _routes else None

if not _route:

_gate = "no route!"

else:

_gate = _route['gateway'] if _route['gateway'] else "-"

336

337

# get the default gateway

338

if 'default' in _routes:

339

_d_gate = ipaddress.IPv4Address(

340

_routes['default']['gateway']

)

else:

_d_gate = None

_d_gate_str = _d_gate if _d_gate else "No default gateway!"

345

else:

346

# in case of manual and dhcp, no check possible

347

_gate = "-"

348

_d_gate = "-"

Alex

4067f00

2019-06-11 10:47:16 -0500

[diff] [blame^]

349

_d_gate_str = "-"

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

350

# iterate through interfaces

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

351

_a = _runtime[network][hostname]

352

for _host in _a:

353

for _if in _host['ifs']:

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

354

_ip_str = str(_if.exploded)

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

355

_gate_error = ""

356

_up_error = ""

357

_mtu_error = ""

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

358

359

# check if node is UP

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

360

# get proper network from reclass

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

361

if _proto == 'static':

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

362

# Lookup match for the ip

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

363

_r_gate = "-"

364

if "gateway" in _r:

365

_r_gate = _r["gateway"]

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

366

# if values not match, put *

367

if _gate != _r_gate:

368

_gate_error = "*"

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

369

370

# IF status in reclass

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

371

_e = "enabled"

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

372

if _e not in _r:

373

_up_error = "*"

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

374

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

375

_rc_mtu = _r['mtu'] if 'mtu' in _r else None

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

376

_rc_mtu_s = ""

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

377

if _rc_mtu:

378

# there is a reclass MTU, save it

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

379

_rc_mtu_s = "/" + str(_rc_mtu)

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

380

elif _host['mtu'] == 1500 \

381

or _proto == "-" \

382

or _proto == "dhcp":

383

# 1500 is a default value => reclass not have it

384

# or this is a fancy network

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

385

pass

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

386

else:

387

# this is an error

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

388

_mtu_error = "*"

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

389

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

390

# check if this is a VIP address

391

# no checks needed if yes.

392

if _host['vip'] != _ip_str:

393

if _rc_mtu:

394

# if there is an MTU value, match it

395

if _host['mtu'] != _rc_mtu_s:

396

self.errors.add_error(

397

self.errors.NET_MTU_MISMATCH,

398

host=hostname,

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

399

if_name=_if_name,

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

400

if_cidr=_ip_str,

401

reclass_mtu=_rc_mtu,

402

runtime_mtu=_host['mtu']

403

)

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

404

_mtu_error = "*"

405

else:

406

# empty the matched value

407

_rc_mtu_s = ""

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

408

elif _host['mtu'] != '1500':

409

# there is no MTU value in reclass

410

# and runtime value is not default

411

self.errors.add_error(

412

self.errors.NET_MTU_EMPTY,

413

host=hostname,

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

414

if_name=_if_name,

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

415

if_cidr=_ip_str,

416

if_mtu=_host['mtu']

417

)

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

418

_mtu_error = "*"

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

419

else:

420

# this is a VIP

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

421

_if_name = " "*7

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

422

_if_name_suffix = ""

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

423

_ip_str += " VIP"

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

424

# Host IF IP Proto MTU State Gate Def.Gate

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

425

_text = "{:7} {:17} {:25} {:6} {:10} " \

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

426

"{:10} {}/{}".format(

427

_if_name + _if_rc,

428

_if_name_suffix,

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

429

_ip_str,

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

430

_proto,

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

431

_host['mtu'] + _rc_mtu_s + _mtu_error,

432

_host['state'] + _up_error,

433

_gate + _gate_error,

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

434

_d_gate_str

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

435

)

436

logger_cli.info(

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

437

" {0:8} {1}".format(

438

node,

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

_text

)

)

logger_cli.info("\n# Other networks")

444

_other = [n for n in _runtime if n not in _reclass]

445

for network in _other:

446

logger_cli.info("-> {}".format(str(network)))

447

names = sorted(_runtime[network].keys())

448

449

for hostname in names:

450

for _n in _runtime[network][hostname]:

451

_ifs = [str(ifs.ip) for ifs in _n['ifs']]

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

452

_text = "{:25} {:25} {:6} {:10} {}".format(

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

453

_n['name'],

454

", ".join(_ifs),

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

455

"-",

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

_n['mtu'],

_n['state']

)

logger_cli.info(

Alex

2019-06-06 19:44:34 -0500

[diff] [blame]

460

" {0:8} {1}".format(hostname.split('.')[0], _text)

Alex

2019-04-23 18:51:23 -0500

[diff] [blame]

461

)

Alex