CORD-239 refactor of harvester uservice
Change-Id: I0fdb587267b6c5fb1c53bb35d77cd5921b937b6d
diff --git a/API.md b/API.md
index 34090e9..3977edf 100644
--- a/API.md
+++ b/API.md
@@ -299,38 +299,36 @@
**Docker image:** cord-dhcp-harvester
### Configuration
-|Command Line Flag|Default|Description|
+|Environment Variable|Default|Description|
|-|-|-|
-|'-l', '--leases'|'/dhcp/dhcpd.leases'|specifies the DHCP lease file from which to harvest|
-|'-x', '--reservations'|'/etc/dhcp/dhcpd.reservations'|specified the reservation file as ISC DHCP doesn't update the lease file for fixed addresses|
-|'-d', '--dest'|'/bind/dhcp_harvest.inc'|specifies the file to write the additional DNS information|
-|'-i', '--include'|None|list of hostnames to include when harvesting DNS information|
-|'-f', '--filter'|None|list of regex expressions to use as an include filter|
-|'-r', '--repeat'|None|continues to harvest DHCP information every specified interval|
-|'-c', '--command'|'rndc'|shell command to execute to cause reload|
-|'-k', '--key'|None|rndc key file to use to access DNS server|
-|'-s', '--server'|'127.0.0.1'|server to reload after generating updated dns information|
-|'-p', '--port'|'954'|port on server to contact to reload server|
-|'-z', '--zone'|None|zone to reload after generating updated dns information|
-|'-u', '--update'|False, action='store_true'|update the DNS server, by reloading the zone|
-|'-y', '--verify'|False, action='store_true'|verify the hosts with a ping before pushing them to DNS|
-|'-t', '--timeout'|'1s'|specifies the duration to wait for a verification ping from a host|
-|'-a', '--apiserver'|'0.0.0.0'|specifies the interfaces on which to listen for API requests|
-|'-e', '--apiport'|'8954'|specifies the port on which to listen for API requests|
-|'-q', '--quiet'|'1m'|specifieds a minimum quiet period between actually harvest times.|
-|'-w', '--workers'|5|specifies the number of workers to use when verifying IP addresses|
+| HARVESTER_PORT | 4246 | port on which the service will listen for requests |
+| HARVESTER_LISTEN | 0.0.0.0 | IP on which the service will listen for requests |
+| HARVESTER_LOG_LEVEL | warning | log output level |
+| HARVESTER_LOG_FORMAT | text | format of log messages |
+| HARVESTER_DHCP_LEASE_FILE | /harvester/dhcpd.leases | lease file to parse for lease information |
+| HARVESTER_OUTPUT_FILE | | name of file to output discovered lease in bind9 format |
+| HARVESTER_OUTPUT_FORMAT | {{.ClientHostname}}\tIN A {{.IPAddress}}\t; {{.HardwareAddress}} | specifies the single entry format when outputing to a file |
+| HARVESTER_VERIFY_LEASES | true | verifies leases with a ping |
+| HARVESTER_VERIFY_TIMEOUT | 1s | max timeout (RTT) to wait for verification pings |
+| HARVESTER_VERIFY_WITH_UDP | false | use UDP instead of raw sockets for ping verification |
+| HARVESTER_QUERY_PERIOD | 30s | period at which the DHCP lease file is processed |
+| HARVESTER_QUIET_PERIOD | 2s | period to wait between accepting parse requests |
+| HARVESTER_REQUEST_TIMEOUT | 10s | period to wait for processing when requesting a DHCP lease database parsing |
+| HARVESTER_RNDC_UPDATE | false | determines if the harvester reloads the DNS servers after harvest |
+| HARVESTER_RNDC_ADDRESS | 127.0.0.1 | IP address of the DNS server to contact via RNDC |
+| HARVESTER_RNDC_PORT | 954 | port of the DNS server to contact via RNDC |
+| HARVESTER_RNDC_KEY_FILE | /key/rndc.conf.maas | key file, with default, to contact DNS server |
+| HARVESTER_RNDC_ZONE | cord.lab | zone to reload |
### REST Resources
|URI|Operation|Description|
|-|-|-|
-|/harvest|POST|Forces the service to perform an IP harvest against the DHCP
-server and update DNS|
-
-##### POST /harvest
-The service periodically harvests IP information from the specified DHCP
-server and updates DNS zones accordingly. This request force an harvest to
-be performed immediately.
+| /harvest | POST | Requests the processing of the DHCP lease database |
+| /lease | GET | Returns the list of DHCP leases harvested from the DHCP server |
+| /lease/{ip} | GET | Returns a single DHCP lease associated with the given IP |
+| /lease/hostname/{name} | GET | Returns a single DHCP lease associated with the given client hostname |
+| /lease/hardware/{mac} | GET | Returns a single DHCP lease associated with the given hardware addreaa |
## config-generator
**Docker image:** cord-config-generator
diff --git a/harvester/Dockerfile b/harvester/Dockerfile
index 18bac9d..360b39d 100644
--- a/harvester/Dockerfile
+++ b/harvester/Dockerfile
@@ -11,12 +11,19 @@
## WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
## See the License for the specific language governing permissions and
## limitations under the License.
-FROM python:2.7-alpine
+FROM golang:1.6-alpine
MAINTAINER Open Networking Laboratory <info@onlab.us>
-RUN apk update && apk add bind
+RUN apk --update add openssh-client git bind
-ADD dhcpharvester.py /dhcpharvester.py
+RUN go get github.com/tools/godep
+ADD . /go/src/gerrit.opencord.com/maas/harvester
+
+WORKDIR /go/src/gerrit.opencord.com/maas/harvester
+RUN /go/bin/godep restore || true
+
+WORKDIR /go
+RUN go install gerrit.opencord.com/maas/harvester
LABEL org.label-schema.name="harvester" \
org.label-schema.description="Provides DHCP havesting and insertion into DNS" \
@@ -24,4 +31,4 @@
org.label-schema.vendor="Open Networking Labratory" \
org.label-schema.schema-version="1.0"
-ENTRYPOINT [ "python", "/dhcpharvester.py" ]
+ENTRYPOINT ["/go/bin/harvester"]
diff --git a/harvester/Godeps/Godeps.json b/harvester/Godeps/Godeps.json
new file mode 100644
index 0000000..bda40ad
--- /dev/null
+++ b/harvester/Godeps/Godeps.json
@@ -0,0 +1,54 @@
+{
+ "ImportPath": "gerrit.opencord.org/maas/cord-provisioner",
+ "GoVersion": "go1.6",
+ "GodepVersion": "v72",
+ "Deps": [
+ {
+ "ImportPath": "github.com/tatsushid/go-fastping",
+ "Rev": "d7bb493dee3e090e2ffb6914adddf17c1e7c026c"
+ },
+ {
+ "ImportPath": "github.com/gorilla/context",
+ "Comment": "v1.1-4-gaed02d1",
+ "Rev": "aed02d124ae4a0e94fea4541c8effd05bf0c8296"
+ },
+ {
+ "ImportPath": "github.com/gorilla/mux",
+ "Comment": "v1.1-13-g9fa818a",
+ "Rev": "9fa818a44c2bf1396a17f9d5a3c0f6dd39d2ff8e"
+ },
+ {
+ "ImportPath": "github.com/kelseyhightower/envconfig",
+ "Comment": "1.1.0-17-g91921eb",
+ "Rev": "91921eb4cf999321cdbeebdba5a03555800d493b"
+ },
+ {
+ "ImportPath": "github.com/Sirupsen/logrus",
+ "Rev": "f3cfb454f4c209e6668c95216c4744b8fddb2356"
+ },
+ {
+ "ImportPath": "golang.org/x/net/icmp",
+ "Rev": "88c1a61b3dd4d98651f24775ca288fac5d2544ce"
+ },
+ {
+ "ImportPath": "golang.org/x/net/internal/iana",
+ "Rev": "88c1a61b3dd4d98651f24775ca288fac5d2544ce"
+ },
+ {
+ "ImportPath": "golang.org/x/net/internal/netreflect",
+ "Rev": "88c1a61b3dd4d98651f24775ca288fac5d2544ce"
+ },
+ {
+ "ImportPath": "golang.org/x/net/internal/nettest",
+ "Rev": "88c1a61b3dd4d98651f24775ca288fac5d2544ce"
+ },
+ {
+ "ImportPath": "golang.org/x/net/ipv4",
+ "Rev": "88c1a61b3dd4d98651f24775ca288fac5d2544ce"
+ },
+ {
+ "ImportPath": "golang.org/x/net/ipv6",
+ "Rev": "88c1a61b3dd4d98651f24775ca288fac5d2544ce"
+ }
+ ]
+}
diff --git a/harvester/README.md b/harvester/README.md
index 509c26d..d247528 100644
--- a/harvester/README.md
+++ b/harvester/README.md
@@ -1,14 +1,20 @@
# DHCP/DNS Name and IP Harvester
-This Python application and Docker image provide an utility that periodically parses the DHCP leases files and updates the `bind9` DNS configuration so that hosts
-that are assigned IP addresses dynamically from DHCP can be looked up via DNS.
+This µservice and Docker image provide an utility that periodically parses the
+DHCP leases database file and updates the `bind9` DNS configuration so that
+hosts that are assigned IP addresses dynamically from DHCP can be looked up via
+DNS.
### Integration
-There are several keys to making all this work. The utility needs to be able to read the DHCP lease file as well as write a file to a location that can be read
-by the DNS server; so more than likely this utility should be run on the same host that is running DHCP and DNS. Additionally, this utility needs to be able to
-run the bind9 utility `rndc` to reload the DNS zone. This means that it needs a `DNSSEC` key and secret to access the DNS server.
+There are several keys to making all this work. The utility needs to be able to
+read the DHCP lease database file as well as write a file to a location that
+can be read by the DNS server; so more than likely this utility should be run
+on the same host that is running DHCP and DNS. Additionally, this utility needs
+to be able to run the bind9 utility `rndc` to reload the DNS zone. This means
+that it needs a `DNSSEC` key and secret to access the DNS server.
-Lastly, this utility generates a file that can be `$include`-ed into a bind9 zone file, so the original zone file needs to be augmented with a `$INCLUDE` statement
-that includes the files to which the uility is configured to write via the `-dest` command line option.
+Lastly, this utility generates a file that can be `$include`-ed into a bind9
+zone file, so the original zone file needs to be augmented with a `$INCLUDE`
+statement that includes the files to which the uility is configured to write.
### Docker Build
To build the docker image use the command:
@@ -16,29 +22,55 @@
docker build -t harvester .
```
+### configuration
+The utility is configured the environment following the 12 factor application
+principles. The available configuration settings are:
+
+| OPTION | DEFAULT | DESCRIPTION |
+| --- | --- | --- |
+| PORT | 4246 | port on which the service will listen for requests |
+| LISTEN | 0.0.0.0 | IP on which the service will listen for requests |
+| LOG_LEVEL | warning | log output level |
+| LOG_FORMAT | text | format of log messages |
+| DHCP_LEASE_FILE | /harvester/dhcpd.leases | lease file to parse for lease information |
+| OUTPUT_FILE | | name of file to output discovered lease in bind9 format |
+| OUTPUT_FORMAT | {{.ClientHostname}}\tIN A {{.IPAddress}}\t; {{.HardwareAddress}} | specifies the single entry format when outputing to a file |
+| VERIFY_LEASES | true | verifies leases with a ping |
+| VERIFY_TIMEOUT | 1s | max timeout (RTT) to wait for verification pings |
+| VERIFY_WITH_UDP | false | use UDP instead of raw sockets for ping verification |
+| QUERY_PERIOD | 30s | period at which the DHCP lease file is processed |
+| QUIET_PERIOD | 2s | period to wait between accepting parse requests |
+| REQUEST_TIMEOUT | 10s | period to wait for processing when requesting a DHCP lease database parsing |
+| RNDC_UPDATE | false | determines if the harvester reloads the DNS servers after harvest |
+| RNDC_ADDRESS | 127.0.0.1 | IP address of the DNS server to contact via RNDC |
+| RNDC_PORT | 954 | port of the DNS server to contact via RNDC |
+| RNDC_KEY_FILE | /key/rndc.conf.maas | key file, with default, to contact DNS server |
+| RNDC_ZONE | cord.lab | zone to reload |
+
+When configuring the µservice via the environment the name of the option should
+be prefixed with `HARVESTER_`.
+
### Docker Run
To run the utility, a docker command similar to what is below may be used
```
-docker run -d --name=dhcpharvester \
- -v `pwd`/key:/key -v /var/lib/maas/dhcp:/dhcp -v /etc/bind/maas:/bind harvester \
- -f '^(?!cord)' -u -s 192.168.42.231 -p 954 -k /key/mykey.conf -z cord.lab -r 5m \
- -y -t 1s
+docker run -d --name=harvester
```
-### API
-There is a simple REST API on this utility so that an external client can asynchronously invoke the DHCP harvest behavior. The REST API is
-synchronous in that the request will not return a response until the harvest is complete. To invoke the request a `HTTP PUT` request needs
-be sent to the utility, such as by curl:
-```
-curl -XPOST http://<apiserver>:<apiport>/harvest
-```
-Currently there is not security around this so it could be abused. There is some protection so that if the system is sent multple request
-if won't actually reharvest until a quiet period has expired. The purpose is to not allow the system to be overloaded.
+### REST API
+
+| RESOURCE | METHOD | DESCRIPTION |
+| --- | --- | --- |
+| /harvest | POST | Requests the processing of the DHCP lease database |
+| /lease | GET | Returns the list of DHCP leases harvested from the DHCP server |
+| /lease/{ip} | GET | Returns a single DHCP lease associated with the given IP |
+| /lease/hostname/{name} | GET | Returns a single DHCP lease associated with the given client hostname |
+| /lease/hardware/{mac} | GET | Returns a single DHCP lease associated with the given hardware addreaa |
+
+Currently there is no security around this so it could be abused. There is some
+protection so that if the system is sent multiple requests it won't actually
+re-harvest until a quiet period has expired. The purpose is to not allow the
+system to be overloaded.
### Implementation Details
-Internally the implementation uses threads and queues to communicate between the threads when the utility is in the mode to periodically
-harvest.
-
-For the verification of IP addresses, i.e. pinging the hosts, worker threads are used to support concurrency, thus making the verification
-process faster.
+Verification of leases is performed by doing an ICMP ping to the host.
diff --git a/harvester/dhcpharvester.py b/harvester/dhcpharvester.py
deleted file mode 100755
index 95e69a6..0000000
--- a/harvester/dhcpharvester.py
+++ /dev/null
@@ -1,627 +0,0 @@
-#!/usr/bin/python
-## Copyright 2016 Open Networking Laboratory
-##
-## Licensed under the Apache License, Version 2.0 (the "License");
-## you may not use this file except in compliance with the License.
-## You may obtain a copy of the License at
-##
-## http://www.apache.org/licenses/LICENSE-2.0
-##
-## Unless required by applicable law or agreed to in writing, software
-## distributed under the License is distributed on an "AS IS" BASIS,
-## WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-## See the License for the specific language governing permissions and
-## limitations under the License.
-import sys, threading, thread, subprocess, re, time, datetime, bisect, BaseHTTPServer
-from optparse import OptionParser
-from Queue import Queue
-
-def parse_timestamp(raw_str):
- tokens = raw_str.split()
-
- if len(tokens) == 1:
- if tokens[0].lower() == 'never':
- return 'never';
-
- else:
- raise Exception('Parse error in timestamp')
-
- elif len(tokens) == 3:
- return datetime.datetime.strptime(' '.join(tokens[1:]),
- '%Y/%m/%d %H:%M:%S')
-
- else:
- raise Exception('Parse error in timestamp')
-
-def timestamp_is_ge(t1, t2):
- if t1 == 'never':
- return True
-
- elif t2 == 'never':
- return False
-
- else:
- return t1 >= t2
-
-
-def timestamp_is_lt(t1, t2):
- if t1 == 'never':
- return False
-
- elif t2 == 'never':
- return t1 != 'never'
-
- else:
- return t1 < t2
-
-
-def timestamp_is_between(t, tstart, tend):
- return timestamp_is_ge(t, tstart) and timestamp_is_lt(t, tend)
-
-
-def parse_hardware(raw_str):
- tokens = raw_str.split()
-
- if len(tokens) == 2:
- return tokens[1]
-
- else:
- raise Exception('Parse error in hardware')
-
-
-def strip_endquotes(raw_str):
- return raw_str.strip('"')
-
-
-def identity(raw_str):
- return raw_str
-
-
-def parse_binding_state(raw_str):
- tokens = raw_str.split()
-
- if len(tokens) == 2:
- return tokens[1]
-
- else:
- raise Exception('Parse error in binding state')
-
-
-def parse_next_binding_state(raw_str):
- tokens = raw_str.split()
-
- if len(tokens) == 3:
- return tokens[2]
-
- else:
- raise Exception('Parse error in next binding state')
-
-
-def parse_rewind_binding_state(raw_str):
- tokens = raw_str.split()
-
- if len(tokens) == 3:
- return tokens[2]
-
- else:
- raise Exception('Parse error in next binding state')
-
-def parse_res_fixed_address(raw_str):
- return raw_str
-
-def parse_res_hardware(raw_str):
- tokens = raw_str.split()
- return tokens[1]
-
-def parse_reservation_file(res_file):
- valid_keys = {
- 'hardware' : parse_res_hardware,
- 'fixed-address' : parse_res_fixed_address,
- }
-
- res_db = {}
- res_rec = {}
- in_res = False
- for line in res_file:
- if line.lstrip().startswith('#'):
- continue
- tokens = line.split()
-
- if len(tokens) == 0:
- continue
-
- key = tokens[0].lower()
-
- if key == 'host':
- if not in_res:
- res_rec = {'hostname' : tokens[1]}
- in_res = True
-
- else:
- raise Exception("Parse error in reservation file")
- elif key == '}':
- if in_res:
- for k in valid_keys:
- if callable(valid_keys[k]):
- res_rec[k] = res_rec.get(k, '')
- else:
- res_rec[k] = False
-
- hostname = res_rec['hostname']
-
- if hostname in res_db:
- res_db[hostname].insert(0, res_rec)
-
- else:
- res_db[hostname] = [res_rec]
-
- res_rec = {}
- in_res = False
-
- else:
- raise Exception('Parse error in reservation file')
-
- elif key in valid_keys:
- if in_res:
- value = line[(line.index(key) + len(key)):]
- value = value.strip().rstrip(';').rstrip()
-
- if callable(valid_keys[key]):
- res_rec[key] = valid_keys[key](value)
- else:
- res_rec[key] = True
-
- else:
- raise Exception('Parse error in reservation file')
-
- else:
- if in_res:
- raise Exception('Parse error in reservation file')
-
- if in_res:
- raise Exception('Parse error in reservation file')
-
- # Turn the leases into an array
- results = []
- for res in res_db:
- results.append({
- 'client-hostname' : res_db[res][0]['hostname'],
- 'hardware' : res_db[res][0]['hardware'],
- 'ip_address' : res_db[res][0]['fixed-address'],
- })
- return results
-
-
-def parse_leases_file(leases_file):
- valid_keys = {
- 'starts': parse_timestamp,
- 'ends': parse_timestamp,
- 'tstp': parse_timestamp,
- 'tsfp': parse_timestamp,
- 'atsfp': parse_timestamp,
- 'cltt': parse_timestamp,
- 'hardware': parse_hardware,
- 'binding': parse_binding_state,
- 'next': parse_next_binding_state,
- 'rewind': parse_rewind_binding_state,
- 'uid': strip_endquotes,
- 'client-hostname': strip_endquotes,
- 'option': identity,
- 'set': identity,
- 'on': identity,
- 'abandoned': None,
- 'bootp': None,
- 'reserved': None,
- }
-
- leases_db = {}
-
- lease_rec = {}
- in_lease = False
- in_failover = False
-
- for line in leases_file:
- if line.lstrip().startswith('#'):
- continue
-
- tokens = line.split()
-
- if len(tokens) == 0:
- continue
-
- key = tokens[0].lower()
-
- if key == 'lease':
- if not in_lease:
- ip_address = tokens[1]
-
- lease_rec = {'ip_address' : ip_address}
- in_lease = True
-
- else:
- raise Exception('Parse error in leases file')
-
- elif key == 'failover':
- in_failover = True
- elif key == '}':
- if in_lease:
- for k in valid_keys:
- if callable(valid_keys[k]):
- lease_rec[k] = lease_rec.get(k, '')
- else:
- lease_rec[k] = False
-
- ip_address = lease_rec['ip_address']
-
- if ip_address in leases_db:
- leases_db[ip_address].insert(0, lease_rec)
-
- else:
- leases_db[ip_address] = [lease_rec]
-
- lease_rec = {}
- in_lease = False
-
- elif in_failover:
- in_failover = False
- continue
- else:
- raise Exception('Parse error in leases file')
-
- elif key in valid_keys:
- if in_lease:
- value = line[(line.index(key) + len(key)):]
- value = value.strip().rstrip(';').rstrip()
-
- if callable(valid_keys[key]):
- lease_rec[key] = valid_keys[key](value)
- else:
- lease_rec[key] = True
-
- else:
- raise Exception('Parse error in leases file')
-
- else:
- if in_lease:
- raise Exception('Parse error in leases file')
-
- if in_lease:
- raise Exception('Parse error in leases file')
-
- return leases_db
-
-
-def round_timedelta(tdelta):
- return datetime.timedelta(tdelta.days,
- tdelta.seconds + (0 if tdelta.microseconds < 500000 else 1))
-
-
-def timestamp_now():
- n = datetime.datetime.utcnow()
- return datetime.datetime(n.year, n.month, n.day, n.hour, n.minute,
- n.second)# + (0 if n.microsecond < 500000 else 1))
-
-
-def lease_is_active(lease_rec, as_of_ts):
- return lease_rec['binding'] != 'free' and timestamp_is_between(as_of_ts, lease_rec['starts'],
- lease_rec['ends'])
-
-
-def ipv4_to_int(ipv4_addr):
- parts = ipv4_addr.split('.')
- return (int(parts[0]) << 24) + (int(parts[1]) << 16) + \
- (int(parts[2]) << 8) + int(parts[3])
-
-def select_active_leases(leases_db, as_of_ts):
- retarray = []
- sortedarray = []
-
- for ip_address in leases_db:
- lease_rec = leases_db[ip_address][0]
-
- if lease_is_active(lease_rec, as_of_ts):
- ip_as_int = ipv4_to_int(ip_address)
- insertpos = bisect.bisect(sortedarray, ip_as_int)
- sortedarray.insert(insertpos, ip_as_int)
- retarray.insert(insertpos, lease_rec)
-
- return retarray
-
-def matched(list, target):
- if list == None:
- return False
-
- for r in list:
- if re.match(r, target) != None:
- return True
- return False
-
-def convert_to_seconds(time_val):
- num = int(time_val[:-1])
- if time_val.endswith('s'):
- return num
- elif time_val.endswith('m'):
- return num * 60
- elif time_val.endswith('h'):
- return num * 60 * 60
- elif time_val.endswith('d'):
- return num * 60 * 60 * 24
-
-def ping(ip, timeout):
- cmd = ['ping', '-c', '1', '-w', timeout, ip]
- try:
- out = subprocess.check_output(cmd)
- return True
- except subprocess.CalledProcessError as e:
- return False
-
-def ping_worker(list, to, respQ):
- for lease in list:
- respQ.put(
- {
- 'verified': ping(lease['ip_address'], to),
- 'lease' : lease,
- })
-
-def interruptable_get(q):
- r = None
- while True:
- try:
- return q.get(timeout=1000)
- except Queue.Empty:
- pass
-
-##############################################################################
-
-def harvest(options):
-
- ifilter = None
- if options.include != None:
- ifilter = options.include.translate(None, ' ').split(',')
-
- rfilter = None
- if options.filter != None:
- rfilter = options.filter.split(',')
-
- myfile = open(options.leases, 'r')
- leases = parse_leases_file(myfile)
- myfile.close()
-
- reservations = []
- try:
- with open(options.reservations, 'r') as res_file:
- reservations = parse_reservation_file(res_file)
- res_file.close()
- except (IOError) as e:
- pass
-
- now = timestamp_now()
- report_dataset = select_active_leases(leases, now) + reservations
-
- verified = []
- if options.verify:
-
- # To verify is lease information is valid, i.e. that the host which got the lease still responding
- # we ping the host. Not perfect, but good for the main use case. As the lease file can get long
- # a little concurrency is used. The lease list is divided amoung workers and each worker takes
- # a share.
- respQ = Queue()
- to = str(convert_to_seconds(options.timeout))
- share = int(len(report_dataset) / options.worker_count)
- extra = len(report_dataset) % options.worker_count
- start = 0
- for idx in range(0, options.worker_count):
- end = start + share
- if extra > 0:
- end = end + 1
- extra = extra - 1
- worker = threading.Thread(target=ping_worker, args=(report_dataset[start:end], to, respQ))
- worker.daemon = True
- worker.start()
- start = end
-
- # All the verification work has been farmed out to worker threads, so sit back and wait for reponses.
- # Once all responses are received we are done. Probably should put a time out here as well, but for
- # now we expect a response for every lease, either positive or negative
- count = 0
- while count != len(report_dataset):
- resp = interruptable_get(respQ)
- count = count + 1
- if resp['verified']:
- print("INFO: verified host '%s' with address '%s'" % (resp['lease']['client-hostname'], resp['lease']['ip_address']))
- verified.append(resp['lease'])
- else:
- print("INFO: dropping host '%s' with address '%s' (not verified)" % (resp['lease']['client-hostname'], resp['lease']['ip_address']))
- else:
- verified = report_dataset
-
- # Look for duplicate names and add the compressed MAC as a suffix
- names = {}
- for lease in verified:
- # If no client hostname use MAC
- name = lease['client-hostname']
- if 'client-hostname' not in lease or len(name) == 0:
- name = "UNK-" + lease['hardware'].translate(None, ':').upper()
-
- if name in names:
- names[name] = '+'
- else:
- names[name] = '-'
-
- size = 0
- count = 0
- for lease in verified:
- name = lease['client-hostname']
- if 'client-hostname' not in lease or len(name) == 0:
- name = "UNK-" + lease['hardware'].translate(None, ':').upper()
-
- if (ifilter != None and name in ifilter) or matched(rfilter, name):
- if names[name] == '+':
- lease['client-hostname'] = name + '-' + lease['hardware'].translate(None, ':').upper()
- size = max(size, len(lease['client-hostname']))
- count += 1
-
- if options.dest == '-':
- out=sys.stdout
- else:
- out=open(options.dest, 'w+')
-
- for lease in verified:
- name = lease['client-hostname']
- if 'client-hostname' not in lease or len(name) == 0:
- name = "UNK-" + lease['hardware'].translate(None, ':').upper()
-
- if ifilter != None and name in ifilter or matched(rfilter, name):
- out.write(format(name, '<'+str(size)) + ' IN A ' + lease['ip_address'] + ' ; ' + lease['hardware'] +'\n')
- if options.dest != '-':
- out.close()
- return count
-
-def reload_zone(rndc, server, port, key, zone):
- cmd = [rndc, '-s', server]
- if key != None:
- cmd.extend(['-c', key])
- cmd.extend(['-p', port, 'reload'])
- if zone != None:
- cmd.append(zone)
-
- try:
- out = subprocess.check_output(cmd)
- print("INFO: [%s UTC] updated DNS sever" % time.asctime(time.gmtime()))
- except subprocess.CalledProcessError as e:
- print("ERROR: failed to update DNS server, exit code %d" % e.returncode)
- print(e.output)
-
-def handleRequestsUsing(requestQ):
- return lambda *args: ApiHandler(requestQ, *args)
-
-class ApiHandler(BaseHTTPServer.BaseHTTPRequestHandler):
- def __init__(s, requestQ, *args):
- s.requestQ = requestQ
- BaseHTTPServer.BaseHTTPRequestHandler.__init__(s, *args)
-
- def do_HEAD(s):
- s.send_response(200)
- s.send_header("Content-type", "application/json")
- s.end_headers()
-
- def do_POST(s):
- if s.path == '/harvest':
- waitQ = Queue()
- s.requestQ.put(waitQ)
- resp = waitQ.get(block=True, timeout=None)
- s.send_response(200)
- s.send_header('Content-type', 'application/json')
- s.end_headers()
-
- if resp == "QUIET":
- s.wfile.write('{ "response" : "QUIET" }')
- else:
- s.wfile.write('{ "response" : "OK" }')
-
- else:
- s.send_response(404)
-
- def do_GET(s):
- """Respond to a GET request."""
- s.send_response(404)
-
-def do_api(hostname, port, requestQ):
- server_class = BaseHTTPServer.HTTPServer
- httpd = server_class((hostname, int(port)), handleRequestsUsing(requestQ))
- print("INFO: [%s UTC] Start API server on %s:%s" % (time.asctime(time.gmtime()), hostname, port))
- try:
- httpd.serve_forever()
- except KeyboardInterrupt:
- pass
- httpd.server_close()
- print("INFO: [%s UTC] Stop API server on %s:%s" % (time.asctime(time.gmtime()), hostname, port))
-
-def harvester(options, requestQ):
- quiet = convert_to_seconds(options.quiet)
- last = -1
- resp = "OK"
- while True:
- responseQ = requestQ.get(block=True, timeout=None)
- if last == -1 or (time.time() - last) > quiet:
- work_field(options)
- last = time.time()
- resp = "OK"
- else:
- resp = "QUIET"
-
- if responseQ != None:
- responseQ.put(resp)
-
-def work_field(options):
- start = datetime.datetime.now()
- print("INFO: [%s UTC] starting to harvest hosts from DHCP" % (time.asctime(time.gmtime())))
- count = harvest(options)
- end = datetime.datetime.now()
- delta = end - start
- print("INFO: [%s UTC] harvested %d hosts, taking %d seconds" % (time.asctime(time.gmtime()), count, delta.seconds))
- if options.update:
- reload_zone(options.rndc, options.server, options.port, options.key, options.zone)
-
-def main():
- parser = OptionParser()
- parser.add_option('-l', '--leases', dest='leases', default='/dhcp/dhcpd.leases',
- help="specifies the DHCP lease file from which to harvest")
- parser.add_option('-x', '--reservations', dest='reservations', default='/etc/dhcp/dhcpd.reservations',
- help="specified the reservation file as ISC DHCP doesn't update the lease file for fixed addresses")
- parser.add_option('-d', '--dest', dest='dest', default='/bind/dhcp_harvest.inc',
- help="specifies the file to write the additional DNS information")
- parser.add_option('-i', '--include', dest='include', default=None,
- help="list of hostnames to include when harvesting DNS information")
- parser.add_option('-f', '--filter', dest='filter', default=None,
- help="list of regex expressions to use as an include filter")
- parser.add_option('-r', '--repeat', dest='repeat', default=None,
- help="continues to harvest DHCP information every specified interval")
- parser.add_option('-c', '--command', dest='rndc', default='rndc',
- help="shell command to execute to cause reload")
- parser.add_option('-k', '--key', dest='key', default=None,
- help="rndc key file to use to access DNS server")
- parser.add_option('-s', '--server', dest='server', default='127.0.0.1',
- help="server to reload after generating updated dns information")
- parser.add_option('-p', '--port', dest='port', default='954',
- help="port on server to contact to reload server")
- parser.add_option('-z', '--zone', dest='zone', default=None,
- help="zone to reload after generating updated dns information")
- parser.add_option('-u', '--update', dest='update', default=False, action='store_true',
- help="update the DNS server, by reloading the zone")
- parser.add_option('-y', '--verify', dest='verify', default=False, action='store_true',
- help="verify the hosts with a ping before pushing them to DNS")
- parser.add_option('-t', '--timeout', dest='timeout', default='1s',
- help="specifies the duration to wait for a verification ping from a host")
- parser.add_option('-a', '--apiserver', dest='apiserver', default='0.0.0.0',
- help="specifies the interfaces on which to listen for API requests")
- parser.add_option('-e', '--apiport', dest='apiport', default='8954',
- help="specifies the port on which to listen for API requests")
- parser.add_option('-q', '--quiet', dest='quiet', default='1m',
- help="specifieds a minimum quiet period between actually harvest times.")
- parser.add_option('-w', '--workers', dest='worker_count', type='int', default=5,
- help="specifies the number of workers to use when verifying IP addresses")
-
- (options, args) = parser.parse_args()
-
- # Kick off a thread to listen for HTTP requests to force a re-evaluation
- requestQ = Queue()
- api = threading.Thread(target=do_api, args=(options.apiserver, options.apiport, requestQ))
- api.daemon = True
- api.start()
-
- if options.repeat == None:
- work_field(options)
- else:
- secs = convert_to_seconds(options.repeat)
- farmer = threading.Thread(target=harvester, args=(options, requestQ))
- farmer.daemon = True
- farmer.start()
- while True:
- cropQ = Queue()
- requestQ.put(cropQ)
- interruptable_get(cropQ)
- time.sleep(secs)
-
-if __name__ == "__main__":
- main()
diff --git a/harvester/handlers.go b/harvester/handlers.go
new file mode 100644
index 0000000..56316eb
--- /dev/null
+++ b/harvester/handlers.go
@@ -0,0 +1,136 @@
+// Copyright 2016 Open Networking Laboratory
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+package main
+
+import (
+ "encoding/json"
+ "github.com/gorilla/mux"
+ "net/http"
+ "strings"
+ "time"
+)
+
+// listLeaseHandler returns a list of all known leases
+func (app *application) listLeasesHandler(w http.ResponseWriter, r *http.Request) {
+
+ // convert data map of leases to a slice
+ app.interchange.RLock()
+ leases := make([]Lease, len(app.leases))
+ i := 0
+ for _, lease := range app.leases {
+ leases[i] = *lease
+ i += 1
+ }
+ app.interchange.RUnlock()
+
+ w.Header().Set("Content-Type", "application/json")
+ encoder := json.NewEncoder(w)
+ encoder.Encode(leases)
+}
+
+// getLeaseHandler return a single known lease
+func (app *application) getLeaseHandler(w http.ResponseWriter, r *http.Request) {
+ vars := mux.Vars(r)
+ ip, ok := vars["ip"]
+ if !ok || strings.TrimSpace(ip) == "" {
+ w.WriteHeader(http.StatusBadRequest)
+ return
+ }
+ app.interchange.RLock()
+ lease, ok := app.leases[ip]
+ app.interchange.RUnlock()
+ if !ok {
+ w.WriteHeader(http.StatusNotFound)
+ return
+ }
+
+ w.Header().Set("Content-Type", "application/json")
+ encoder := json.NewEncoder(w)
+ encoder.Encode(lease)
+}
+
+// getLeaseByHardware return a single known lease by its MAC address
+func (app *application) getLeaseByHardware(w http.ResponseWriter, r *http.Request) {
+ vars := mux.Vars(r)
+ mac, ok := vars["mac"]
+ if !ok || strings.TrimSpace(mac) == "" {
+ w.WriteHeader(http.StatusBadRequest)
+ return
+ }
+ app.interchange.RLock()
+ lease, ok := app.byHardware[mac]
+ app.interchange.RUnlock()
+ if !ok {
+ w.WriteHeader(http.StatusNotFound)
+ return
+ }
+
+ w.Header().Set("Content-Type", "application/json")
+ encoder := json.NewEncoder(w)
+ encoder.Encode(lease)
+}
+
+// getLeaseByHostname return a single known lease by its hostname
+func (app *application) getLeaseByHostname(w http.ResponseWriter, r *http.Request) {
+ vars := mux.Vars(r)
+ name, ok := vars["name"]
+ if !ok || strings.TrimSpace(name) == "" {
+ w.WriteHeader(http.StatusBadRequest)
+ return
+ }
+ app.interchange.RLock()
+ lease, ok := app.byHostname[name]
+ app.interchange.RUnlock()
+ if !ok {
+ w.WriteHeader(http.StatusNotFound)
+ return
+ }
+
+ w.Header().Set("Content-Type", "application/json")
+ encoder := json.NewEncoder(w)
+ encoder.Encode(lease)
+}
+
+// doHarvestHandler request a harvest of lease information and return if it was completed or during the quiet period
+func (app *application) doHarvestHandler(w http.ResponseWriter, r *http.Request) {
+ app.log.Info("Manual harvest invocation")
+ responseChan := make(chan uint)
+ app.requests <- &responseChan
+ select {
+ case response := <-responseChan:
+ switch response {
+ case responseOK:
+ w.Header().Set("Content-Type", "application/json")
+ encoder := json.NewEncoder(w)
+ encoder.Encode(struct {
+ Response string `json:"response"`
+ }{
+ Response: "OK",
+ })
+ case responseQuiet:
+ w.Header().Set("Content-Type", "application/json")
+ encoder := json.NewEncoder(w)
+ encoder.Encode(struct {
+ Response string `json:"response"`
+ }{
+ Response: "QUIET",
+ })
+ default:
+ w.WriteHeader(http.StatusInternalServerError)
+ }
+ case <-time.After(app.RequestTimeout):
+ app.log.Error("Request to process DHCP lease file timed out")
+ w.WriteHeader(http.StatusInternalServerError)
+ }
+}
diff --git a/harvester/harvest-compose.yml b/harvester/harvest-compose.yml
deleted file mode 100644
index c21504d..0000000
--- a/harvester/harvest-compose.yml
+++ /dev/null
@@ -1,13 +0,0 @@
-harvester:
- image: cord/dhcpharvester
- container_name: harvester
- restart: never
- labels:
- - "lab.cord.component=Controller"
- volumes:
- - "/var/lib/maas/dhcp:/dhcp"
- - "/etc/bind/maas:/bind"
- - "/home/ubuntu/compose-services/dhcpharvester/key:/key"
- ports:
- - "8954:8954"
- command: [ "--server", "192.168.42.231", "--port", "954", "--key", "/key/mykey.conf", "--zone", "cord.lab", "--update", "--verify", "--timeout", "1s", "--repeat", "5m", "--quiet", "2s", "--workers", "10", "--filter", "^" ]
diff --git a/harvester/harvester.go b/harvester/harvester.go
new file mode 100644
index 0000000..9d47830
--- /dev/null
+++ b/harvester/harvester.go
@@ -0,0 +1,135 @@
+// Copyright 2016 Open Networking Laboratory
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+package main
+
+import (
+ "fmt"
+ "github.com/Sirupsen/logrus"
+ "github.com/gorilla/mux"
+ "github.com/kelseyhightower/envconfig"
+ "net/http"
+ "strconv"
+ "sync"
+ "text/template"
+ "time"
+)
+
+// application application configuration and internal state
+type application struct {
+ Port int `default:"4246" desc:"port on which the service will listen for requests"`
+ Listen string `default:"0.0.0.0" desc:"IP on which the service will listen for requests"`
+ LogLevel string `default:"warning" envconfig:"LOG_LEVEL" desc:"log output level"`
+ LogFormat string `default:"text" envconfig:"LOG_FORMAT" desc:"format of log messages"`
+ DHCPLeaseFile string `default:"/harvester/dhcpd.leases" envconfig:"DHCP_LEASE_FILE" desc:"lease file to parse for lease information"`
+ OutputFile string `envconfig:"OUTPUT_FILE" desc:"name of file to output discovered lease in bind9 format"`
+ OutputFormat string `default:"{{.ClientHostname}}\tIN A {{.IPAddress}}\t; {{.HardwareAddress}}" envconfig:"OUTPUT_FORMAT" desc:"specifies the single entry format when outputing to a file"`
+ VerifyLeases bool `default:"true" envconfig:"VERIFY_LEASES" desc:"verifies leases with a ping"`
+ VerifyTimeout time.Duration `default:"1s" envconfig:"VERIFY_TIMEOUT" desc:"max timeout (RTT) to wait for verification pings"`
+ VerifyWithUDP bool `default:"false" envconfig:"VERIFY_WITH_UDP" desc:"use UDP instead of raw sockets for ping verification"`
+ QueryPeriod time.Duration `default:"30s" envconfig:"QUERY_PERIOD" desc:"period at which the DHCP lease file is processed"`
+ QuietPeriod time.Duration `default:"2s" envconfing:"QUIET_PERIOD" desc:"period to wait between accepting parse requests"`
+ RequestTimeout time.Duration `default:"10s" envconfig:"REQUEST_TIMEOUT" desc:"period to wait for processing when requesting a DHCP lease database parsing"`
+ RNDCUpdate bool `default:"false" envconfig:"RNDC_UPDATE" desc:"determines if the harvester reloads the DNS servers after harvest"`
+ RNDCAddress string `default:"127.0.0.1" envconfig:"RNDC_ADDRESS" desc:"IP address of the DNS server to contact via RNDC"`
+ RNDCPort int `default:"954" envconfig:"RNDC_PORT" desc:"port of the DNS server to contact via RNDC"`
+ RNDCKeyFile string `default:"/key/rndc.conf.maas" envconfig:"RNDC_KEY_FILE" desc:"key file, with default, to contact DNS server"`
+ RNDCZone string `default:"cord.lab" envconfig:"RNDC_ZONE" desc:"zone to reload"`
+
+ log *logrus.Logger `ignored:"true"`
+ interchange sync.RWMutex `ignored:"true"`
+ leases map[string]*Lease `ignored:"true"`
+ byHardware map[string]*Lease `ignored:"true"`
+ byHostname map[string]*Lease `ignored:"true"`
+ outputTemplate *template.Template `ignored:"true"`
+ requests chan *chan uint `ignored:"true"`
+}
+
+func main() {
+ // initialize application state
+ app := &application{
+ log: logrus.New(),
+ requests: make(chan *chan uint, 100),
+ }
+
+ // process and validate the application configuration
+ err := envconfig.Process("HARVESTER", app)
+ if err != nil {
+ app.log.Fatalf("unable to parse configuration options : %s", err)
+ }
+ switch app.LogFormat {
+ case "json":
+ app.log.Formatter = &logrus.JSONFormatter{}
+ default:
+ app.log.Formatter = &logrus.TextFormatter{
+ FullTimestamp: true,
+ ForceColors: true,
+ }
+ }
+ level, err := logrus.ParseLevel(app.LogLevel)
+ if err != nil {
+ level = logrus.WarnLevel
+ }
+ app.log.Level = level
+
+ app.outputTemplate, err = template.New("harvester").Parse(app.OutputFormat)
+ if err != nil {
+ app.log.Fatalf("invalid output file format specified : %s", err)
+ }
+
+ // output the configuration
+ app.log.Infof(`Configuration:
+ LISTEN: %s
+ PORT: %d
+ LOG_LEVEL: %s
+ LOG_FORMAT: %s
+ DHCP_LEASE_FILE: %s
+ OUTPUT_FILE: %s
+ OUTPUT_FORMAT: %s
+ VERIFY_LEASES: %t
+ VERIFY_TIMEOUT: %s
+ VERIFY_WITH_UDP: %t
+ QUERY_PERIOD: %s
+ QUIET_PERIOD: %s
+ REQUEST_TIMEOUT: %s
+ RNDC_UPDATE: %t
+ RNDC_ADDRESS: %s
+ RNDC_PORT: %d
+ RNDC_KEY_FILE: %s
+ RNDC_ZONE: %s`,
+ app.Listen, app.Port,
+ app.LogLevel, app.LogFormat,
+ app.DHCPLeaseFile, app.OutputFile, strconv.Quote(app.OutputFormat),
+ app.VerifyLeases, app.VerifyTimeout, app.VerifyWithUDP,
+ app.QueryPeriod, app.QuietPeriod, app.RequestTimeout,
+ app.RNDCUpdate, app.RNDCAddress, app.RNDCPort, app.RNDCKeyFile, app.RNDCZone)
+
+ // establish REST end points
+ router := mux.NewRouter()
+ router.HandleFunc("/lease/", app.listLeasesHandler).Methods("GET")
+ router.HandleFunc("/lease/{ip}", app.getLeaseHandler).Methods("GET")
+ router.HandleFunc("/lease/hardware/{mac}", app.getLeaseByHardware).Methods("GET")
+ router.HandleFunc("/lease/hostname/{name}", app.getLeaseByHostname).Methods("GET")
+ router.HandleFunc("/harvest/", app.doHarvestHandler).Methods("POST")
+ router.HandleFunc("/harvest", app.doHarvestHandler).Methods("POST")
+ http.Handle("/", router)
+
+ // start DHCP lease file synchronization handler
+ go app.syncRequestHandler(app.requests)
+
+ // start loop to periodically synchronize DHCP lease file
+ go app.syncFromDHCPLeaseFileLoop(app.requests)
+
+ // listen for REST requests
+ http.ListenAndServe(fmt.Sprintf("%s:%d", app.Listen, app.Port), nil)
+}
diff --git a/harvester/key/mykey.conf b/harvester/key/mykey.conf
deleted file mode 100644
index 5c1ee5a..0000000
--- a/harvester/key/mykey.conf
+++ /dev/null
@@ -1,8 +0,0 @@
-key "rndc-maas-key" {
- algorithm hmac-md5;
- secret "3wUD5ethlazwlMKLGe2PViPJoPl2Cen5r9BePqwyHac=";
-};
-
-options {
- default-key "rndc-maas-key";
-};
diff --git a/harvester/lease.go b/harvester/lease.go
new file mode 100644
index 0000000..109f5cc
--- /dev/null
+++ b/harvester/lease.go
@@ -0,0 +1,123 @@
+// Copyright 2016 Open Networking Laboratory
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+package main
+
+import (
+ "encoding/json"
+ "fmt"
+ "net"
+ "strings"
+ "time"
+)
+
+// BindingState type used to maintain lease state
+type BindingState uint
+
+// constant values of lease binding state
+const (
+ Unknown BindingState = 0
+ Free BindingState = 1
+ Active BindingState = 2
+ Expired BindingState = 3
+ Released BindingState = 4
+ Abandoned BindingState = 5
+ Reset BindingState = 6
+ Backup BindingState = 7
+ Reserved BindingState = 8
+ Bootp BindingState = 9
+)
+
+// String return a string value for a lease binding state
+func (s *BindingState) String() string {
+ switch *s {
+ case 1:
+ return "Free"
+ case 2:
+ return "Active"
+ case 3:
+ return "Expired"
+ case 4:
+ return "Released"
+ case 5:
+ return "Abandoned"
+ case 6:
+ return "Reset"
+ case 7:
+ return "Backup"
+ case 8:
+ return "Reserved"
+ case 9:
+ return "Bootp"
+ default:
+ return "Unknown"
+ }
+}
+
+// Lease DHCP lease information
+type Lease struct {
+ BindingState BindingState `json:"binding-state"`
+ IPAddress net.IP `json:"ip-address"`
+ ClientHostname string `json:"client-hostname"`
+ HardwareAddress net.HardwareAddr `json:"hardware-address"`
+ Starts time.Time `json:"starts"`
+ Ends time.Time `json:"ends"`
+}
+
+// MarshalJSON custom marshaller for DHCP lease
+func (l *Lease) MarshalJSON() ([]byte, error) {
+
+ // a custom marshaller is required because the net.Hardware marshals to a string
+ // that is not in the standard MAC address format by default as well as the
+ // binding state is marshalled to a human readable string
+ type Alias Lease
+ return json.Marshal(&struct {
+ HardwareAddress string `json:"hardware-address"`
+ BindingState string `json:"binding-state"`
+ *Alias
+ }{
+ HardwareAddress: l.HardwareAddress.String(),
+ BindingState: l.BindingState.String(),
+ Alias: (*Alias)(l),
+ })
+}
+
+// parseBindingState conversts from a string to a valid binding state constant
+func parseBindingState(bindingState string) (BindingState, error) {
+ switch strings.ToLower(bindingState) {
+ case "free":
+ return Free, nil
+ case "active":
+ return Active, nil
+ case "expired":
+ return Expired, nil
+ case "released":
+ return Released, nil
+ case "abandoned":
+ return Abandoned, nil
+ case "reset":
+ return Reset, nil
+ case "backup":
+ return Backup, nil
+ case "reserved":
+ return Reserved, nil
+ case "bootp":
+ return Bootp, nil
+ case "unknown":
+ fallthrough
+ default:
+ return Unknown, nil
+ }
+
+ return 0, fmt.Errorf("Unknown lease binding state '%s'", bindingState)
+}
diff --git a/harvester/parse.go b/harvester/parse.go
new file mode 100644
index 0000000..d61e791
--- /dev/null
+++ b/harvester/parse.go
@@ -0,0 +1,237 @@
+// Copyright 2016 Open Networking Laboratory
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+package main
+
+import (
+ "bufio"
+ "fmt"
+ "net"
+ "os"
+ "os/exec"
+ "strconv"
+ "strings"
+ "text/tabwriter"
+ "time"
+)
+
+// leaseFilterFunc provides a mechanism to filter which leases are returned by lease file parser
+type leaseFilterFunc func(lease *Lease) bool
+
+const (
+ // returns if a parse requests is processed or denied because of quiet period
+ responseQuiet uint = 0
+ responseOK uint = 1
+
+ // time format for parsing time stamps in lease file
+ dateTimeLayout = "2006/1/2 15:04:05"
+
+ bindFileFormat = "{{.ClientHostname}}\tIN A {{.IPAddress}}\t; {{.HardwareAddress}}"
+)
+
+// parseLease parses a single lease from the lease file
+func parseLease(scanner *bufio.Scanner, lease *Lease) error {
+ var err error
+ for scanner.Scan() {
+ fields := strings.Fields(scanner.Text())
+ if len(fields) > 0 {
+ switch fields[0] {
+ case "}":
+ // If no client-hostname was specified, generate one
+ if len(lease.ClientHostname) == 0 {
+ lease.ClientHostname = strings.ToUpper("UNK-" +
+ strings.Replace(lease.HardwareAddress.String(), ":", "", -1))
+ }
+ return nil
+ case "client-hostname":
+ lease.ClientHostname = strings.Trim(fields[1], "\";")
+ case "hardware":
+ lease.HardwareAddress, err = net.ParseMAC(strings.Trim(fields[2], ";"))
+ if err != nil {
+ return err
+ }
+ case "binding":
+ lease.BindingState, err = parseBindingState(strings.Trim(fields[2], ";"))
+ if err != nil {
+ return err
+ }
+ case "starts":
+ lease.Starts, err = time.Parse(dateTimeLayout,
+ fields[2]+" "+strings.Trim(fields[3], ";"))
+ if err != nil {
+ return err
+ }
+ case "ends":
+ lease.Ends, err = time.Parse(dateTimeLayout,
+ fields[2]+" "+strings.Trim(fields[3], ";"))
+ if err != nil {
+ return err
+ }
+ }
+ }
+ }
+ return nil
+}
+
+// parseLeaseFile parses the entire lease file
+func parseLeaseFile(filename string, filterFunc leaseFilterFunc) (map[string]*Lease, error) {
+ leases := make(map[string]*Lease)
+
+ file, err := os.Open(filename)
+ if err != nil {
+ return nil, err
+ }
+ defer file.Close()
+
+ scanner := bufio.NewScanner(file)
+ scanner.Split(bufio.ScanLines)
+ for scanner.Scan() {
+ fields := strings.Fields(scanner.Text())
+ if len(fields) > 0 && fields[0] == "lease" {
+ lease := Lease{}
+ lease.IPAddress = net.ParseIP(fields[1])
+ parseLease(scanner, &lease)
+ if filterFunc(&lease) {
+ leases[lease.IPAddress.String()] = &lease
+ }
+ }
+ }
+
+ if err = scanner.Err(); err != nil {
+ return nil, err
+ }
+
+ return leases, nil
+}
+
+// syncRequestHandler accepts requests to parse the lease file and either processes or ignores because of quiet period
+func (app *application) syncRequestHandler(requests chan *chan uint) {
+
+ // track the last time file was processed to enforce quiet period
+ var last *time.Time = nil
+
+ // process requests on the channel
+ for response := range requests {
+ now := time.Now()
+
+ // if the request is made during the quiet period then drop the request to prevent
+ // a storm
+ if last != nil && now.Sub(*last) < app.QuietPeriod {
+ app.log.Warn("Request received during query quiet period, will not harvest")
+ if response != nil {
+ *response <- responseQuiet
+ }
+ continue
+ }
+
+ // process the lease database
+ app.log.Infof("Synchronizing DHCP lease database")
+ leases, err := parseLeaseFile(app.DHCPLeaseFile,
+ func(lease *Lease) bool {
+ return lease.BindingState != Free &&
+ lease.Ends.After(now) &&
+ lease.Starts.Before(now)
+ })
+ if err != nil {
+ app.log.Errorf("Unable to parse DHCP lease file at '%s' : %s",
+ app.DHCPLeaseFile, err)
+ } else {
+ // if configured to verify leases with a ping do so
+ if app.VerifyLeases {
+ app.log.Infof("Verifing %d discovered leases", len(leases))
+ _, err := app.verifyLeases(leases)
+ if err != nil {
+ app.log.Errorf("unexpected error while verifing leases : %s", err)
+ app.log.Infof("Discovered %d active, not verified because of error, DHCP leases",
+ len(leases))
+ } else {
+ app.log.Infof("Discovered %d active and verified DHCP leases", len(leases))
+ }
+ } else {
+ app.log.Infof("Discovered %d active, not not verified, DHCP leases", len(leases))
+ }
+
+ // if configured to output the lease information to a file, do so
+ if len(app.OutputFile) > 0 {
+ app.log.Infof("Writing lease information to file '%s'", app.OutputFile)
+ out, err := os.Create(app.OutputFile)
+ if err != nil {
+ app.log.Errorf(
+ "unexpected error while attempting to open file `%s' for output : %s",
+ app.OutputFile, err)
+ } else {
+ table := tabwriter.NewWriter(out, 1, 0, 4, ' ', 0)
+ for _, lease := range leases {
+ if err := app.outputTemplate.Execute(table, lease); err != nil {
+ app.log.Errorf(
+ "unexpected error while writing leases to file '%s' : %s",
+ app.OutputFile, err)
+ break
+ }
+ fmt.Fprintln(table)
+ }
+ table.Flush()
+ }
+ out.Close()
+ }
+
+ // if configured to reload the DNS server, then use the RNDC command to do so
+ if app.RNDCUpdate {
+ cmd := exec.Command("rndc", "-s", app.RNDCAddress, "-p", strconv.Itoa(app.RNDCPort),
+ "-c", app.RNDCKeyFile, "reload", app.RNDCZone)
+ err := cmd.Run()
+ if err != nil {
+ app.log.Errorf("Unexplected error while attempting to reload zone '%s' on DNS server '%s:%d' : %s", app.RNDCZone, app.RNDCAddress, app.RNDCPort, err)
+ } else {
+ app.log.Infof("Successfully reloaded DNS zone '%s' on server '%s:%d' via RNDC command",
+ app.RNDCZone, app.RNDCAddress, app.RNDCPort)
+ }
+ }
+
+ // process the results of the parse to internal data structures
+ app.interchange.Lock()
+ app.leases = leases
+ app.byHostname = make(map[string]*Lease)
+ app.byHardware = make(map[string]*Lease)
+ for _, lease := range leases {
+ app.byHostname[lease.ClientHostname] = lease
+ app.byHardware[lease.HardwareAddress.String()] = lease
+ }
+ leases = nil
+ app.interchange.Unlock()
+ }
+ if last == nil {
+ last = &time.Time{}
+ }
+ *last = time.Now()
+
+ if response != nil {
+ *response <- responseOK
+ }
+ }
+}
+
+// syncFromDHCPLeaseFileLoop periodically request a lease file processing
+func (app *application) syncFromDHCPLeaseFileLoop(requests chan *chan uint) {
+ responseChan := make(chan uint)
+ for {
+ requests <- &responseChan
+ select {
+ case _ = <-responseChan:
+ // request completed
+ case <-time.After(app.RequestTimeout):
+ app.log.Error("request to process DHCP lease file timed out")
+ }
+ time.Sleep(app.QueryPeriod)
+ }
+}
diff --git a/harvester/verify.go b/harvester/verify.go
new file mode 100644
index 0000000..22ae332
--- /dev/null
+++ b/harvester/verify.go
@@ -0,0 +1,63 @@
+// Copyright 2016 Open Networking Laboratory
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+package main
+
+import (
+ "github.com/tatsushid/go-fastping"
+ "net"
+ "time"
+)
+
+// NOTE: the go-fastping utility calls its handlers (OnRecv, OnIdle) from a single thread as such
+// the code below does not have to serialize access to the "nonverified" array as access is
+// serialized the the fastping utility calling from a single thread.
+
+// verifyLeases verifies that the lease is valid by using an ICMP ping
+func (app *application) verifyLeases(leases map[string]*Lease) (map[string]*Lease, error) {
+ nonverified := make(map[string]bool)
+
+ // Populate the non-verified list from all the leases and then we will remove those
+ // that are verified
+ for ip, _ := range leases {
+ nonverified[ip] = true
+ }
+
+ pinger := fastping.NewPinger()
+ for _, lease := range leases {
+ pinger.AddIPAddr(&net.IPAddr{IP: lease.IPAddress})
+ }
+
+ if app.VerifyWithUDP {
+ pinger.Network("udp")
+ }
+ pinger.MaxRTT = app.VerifyTimeout
+
+ // when a ping response is received remove that lease from the non-verified list
+ pinger.OnRecv = func(addr *net.IPAddr, rtt time.Duration) {
+ app.log.Infof("Verified lease for IP address '%s' with RTT of '%s'", addr.String(), rtt)
+ delete(nonverified, addr.String())
+ }
+ err := pinger.Run()
+ if err != nil {
+ return nil, err
+ }
+
+ // Remove unverified leases from list
+ for ip, _ := range nonverified {
+ app.log.Infof("Discarding lease for IP address '%s', could not be verified", ip)
+ delete(leases, ip)
+ }
+
+ return leases, nil
+}
diff --git a/roles/maas/templates/harvest-compose.yml.j2 b/roles/maas/templates/harvest-compose.yml.j2
index 1fcd14b..c053413 100644
--- a/roles/maas/templates/harvest-compose.yml.j2
+++ b/roles/maas/templates/harvest-compose.yml.j2
@@ -9,11 +9,23 @@
- "lab.solution=cord"
- "lab.component=harvester"
volumes:
- - "/var/lib/maas/dhcp:/dhcp"
+ - "/var/lib/maas/dhcp:/harvester"
- "/etc/bind/maas:/bind"
- "/etc/bind/maas:/key"
- "/etc/dhcp:/etc/dhcp"
+ environment:
+ - "HARVESTER_LOG_LEVEL=debug"
+ - "HARVESTER_PORT=8954"
+ - "HARVESTER_OUTPUT_FILE=/bind/dhcp_harvest.inc"
+ - "HARVESTER_VERIFY_LEASES=true"
+ - "HARVESTER_VERIFY_TIME_OUT=2s"
+ - "HARVESTER_QUERY_PERIOD=2m"
+ - "HARVESTER_QUIET_PERIOD=2s"
+ - "HARVESTER_RNDC_ADDRESS={{ mgmt_ip_address.stdout }}"
+ - "HARVESTER_RNDC_PORT=954"
+ - "HARVESTER_RNDC_KEY_FILE=/key/rndc.conf.maas"
+ - "HARVESTER_RNDC_ZONE=cord.lab"
+ - "HARVESTER_RNDC_UPDATE=true"
ports:
- "8954:8954"
- command: [ "--server", "{{ mgmt_ip_address.stdout }}", "--port", "954", "--key", "/key/rndc.conf.maas", "--zone", "cord.lab", "--update", "--verify", "--timeout", "1s", "--repeat", "2m", "--quiet", "2s", "--workers", "10", "--filter", "^(?!cord)" ]
restart: unless-stopped