xos/synchronizers/base/ansible_helper.py - xos - Gitiles

 #!/usr/bin/env python
 import jinja2
 import tempfile
 import os
 import json
 import pdb
 import string
 import random
 import re
 import traceback
 import subprocess
 from xos.config import Config, XOS_DIR
 from xos.logger import observer_logger as logger
 from multiprocessing import Process, Queue


 step_dir = Config().observer_steps_dir
 sys_dir = Config().observer_sys_dir

 os_template_loader = jinja2.FileSystemLoader( searchpath=[step_dir, "/opt/xos/synchronizers/shared_templates"])
 os_template_env = jinja2.Environment(loader=os_template_loader)

 def id_generator(size=6, chars=string.ascii_uppercase + string.digits):
     return ''.join(random.choice(chars) for _ in range(size))

 def shellquote(s):
     return "'" + s.replace("'", "'\\''") + "'"

 def get_playbook_fn(opts, path):
     if not opts.get("ansible_tag", None):
         # if no ansible_tag is in the options, then generate a unique one
         objname= id_generator()
         opts = opts.copy()
         opts["ansible_tag"] = objname

     objname = opts["ansible_tag"]

     pathed_sys_dir = os.path.join(sys_dir, path)
     if not os.path.isdir(pathed_sys_dir):
         os.makedirs(pathed_sys_dir)

     # symlink steps/roles into sys/roles so that playbooks can access roles
     roledir = os.path.join(step_dir,"roles")
     rolelink = os.path.join(pathed_sys_dir, "roles")
     if os.path.isdir(roledir) and not os.path.islink(rolelink):
         os.symlink(roledir,rolelink)

     return (opts, os.path.join(pathed_sys_dir,objname))

 def run_playbook(ansible_hosts, ansible_config, fqp, opts, q):
     if ansible_config:
        os.environ["ANSIBLE_CONFIG"] = ansible_config
     else:
        try:
            del os.environ["ANSIBLE_CONFIG"]
        except KeyError:
            pass

     if ansible_hosts:
        os.environ["ANSIBLE_HOSTS"] = ansible_hosts
     else:
        try:
            del os.environ["ANSIBLE_HOSTS"]
        except KeyError:
            pass

     import ansible_runner
     reload(ansible_runner)

     # Dropped support for observer_pretend - to be redone
     runner = ansible_runner.Runner(
         playbook=fqp,
         run_data=opts,
         host_file=ansible_hosts)

     stats,aresults = runner.run()
     q.put([stats,aresults])

 def run_template(name, opts, path='', expected_num=None, ansible_config=None, ansible_hosts=None, run_ansible_script=None, object=None):
     template = os_template_env.get_template(name)
     buffer = template.render(opts)

     (opts, fqp) = get_playbook_fn(opts, path)

     f = open(fqp,'w')
     f.write(buffer)
     f.flush()

     q = Queue()
     p = Process(target=run_playbook, args=(ansible_hosts, ansible_config, fqp, opts, q,))
     p.start()
     stats,aresults = q.get()
     p.join()

     output_file = fqp + '.out'
     try:
         ok_results = []
         total_unreachable = 0
         failed = 0

         error_msg = []

         ofile = open(output_file, 'w')

         for x in aresults:
             if not x.is_failed() and not x.is_unreachable() and not x.is_skipped():
                 ok_results.append(x)
             elif x.is_unreachable():
                 failed+=1
                 total_unreachable+=1
                 try:
                     error_msg.append(x._result['msg'])
                 except:
                     pass
             elif x.is_failed():
                 failed+=1
                 try:
                     error_msg.append(x._result['msg'])
                 except:
                     pass

             # FIXME (zdw, 2017-02-19) - may not be needed with new callback logging

             ofile.write('%s: %s\n'%(x._task, str(x._result)))

 	    if (object):
 		oprops = object.tologdict()
 		ansible = x._result
 		oprops['xos_type']='ansible'
 		oprops['ansible_result']=json.dumps(ansible)

                 if failed == 0:
 		    oprops['ansible_status']='OK'
                 else:
 		    oprops['ansible_status']='FAILED'

                 logger.info(x._task, extra=oprops)


         ofile.close()

         if (expected_num is not None) and (len(ok_results) != expected_num):
             raise ValueError('Unexpected num %s!=%d' % (str(expected_num), len(ok_results)) )

         #total_unreachable = stats.unreachable

 	if (failed):
 		raise ValueError('Ansible playbook failed.')

     except ValueError,e:
         try:
             error = ' // '.join(error_msg)
         except:
             pass
         raise Exception(error)


     processed_results = map(lambda x:x._result, ok_results)
     return processed_results[1:] # 0 is setup

 def run_template_ssh(name, opts, path='', expected_num=None, object=None):
     instance_name = opts["instance_name"]
     hostname = opts["hostname"]
     private_key = opts["private_key"]
     baremetal_ssh = opts.get("baremetal_ssh",False)
     if baremetal_ssh:
         # no instance_id or ssh_ip for baremetal
         # we never proxy to baremetal
         proxy_ssh = False
     else:
         instance_id = opts["instance_id"]
         ssh_ip = opts["ssh_ip"]
         try:
             proxy_ssh = Config().observer_proxy_ssh
         except:
             proxy_ssh = True

         if (not ssh_ip):
             raise Exception('IP of ssh proxy not available. Synchronization deferred')

     (opts, fqp) = get_playbook_fn(opts, path)
     private_key_pathname = fqp + ".key"
     config_pathname = fqp + ".config"
     hosts_pathname = fqp + ".hosts"

     f = open(private_key_pathname, "w")
     f.write(private_key)
     f.close()

     f = open(config_pathname, "w")
     f.write("[ssh_connection]\n")
     if proxy_ssh:
         proxy_ssh_key = getattr(Config(), "observer_proxy_ssh_key", None)
         proxy_ssh_user = getattr(Config(), "observer_proxy_ssh_user", "root")
         if proxy_ssh_key:
             # If proxy_ssh_key is known, then we can proxy into the compute
             # node without needing to have the OpenCloud sshd machinery in
             # place.
             proxy_command = "ProxyCommand ssh -q -i %s -o StrictHostKeyChecking=no %s@%s nc %s 22" % (proxy_ssh_key, proxy_ssh_user, hostname, ssh_ip)
         else:
             proxy_command = "ProxyCommand ssh -q -i %s -o StrictHostKeyChecking=no %s@%s" % (private_key_pathname, instance_id, hostname)
         f.write('ssh_args = -o "%s"\n' % proxy_command)
     f.write('scp_if_ssh = True\n')
     f.write('pipelining = True\n')
     f.write('\n[defaults]\n')
     f.write('host_key_checking = False\n')
     f.write('timeout = 30\n')
     f.close()

     f = open(hosts_pathname, "w")
     f.write("[%s]\n" % instance_name)
     if proxy_ssh or baremetal_ssh:
         f.write("%s ansible_ssh_private_key_file=%s\n" % (hostname, private_key_pathname))
     else:
         # acb: Login user is hardcoded, this is not great
         f.write("%s ansible_ssh_private_key_file=%s ansible_ssh_user=ubuntu\n" % (ssh_ip, private_key_pathname))
     f.close()

     # SSH will complain if private key is world or group readable
     os.chmod(private_key_pathname, 0600)

     print "ANSIBLE_CONFIG=%s" % config_pathname
     print "ANSIBLE_HOSTS=%s" % hosts_pathname

     return run_template(name, opts, path, ansible_config = config_pathname, ansible_hosts = hosts_pathname, run_ansible_script="/opt/xos/synchronizers/base/run_ansible_verbose", object=object)


 def main():
     run_template('ansible/sync_user_deployments.yaml',{ "endpoint" : "http://172.31.38.128:5000/v2.0/",
              "name" : "Sapan Bhatia",
              "email": "gwsapan@gmail.com",
              "password": "foobar",
              "admin_user":"admin",
              "admin_password":"6a789bf69dd647e2",
              "admin_tenant":"admin",
              "tenant":"demo",
              "roles":['user','admin'] })
	#!/usr/bin/env python
	import jinja2
	import tempfile
	import os
	import json
	import pdb
	import string
	import random
	import re
	import traceback
	import subprocess
	from xos.config import Config, XOS_DIR
	from xos.logger import observer_logger as logger
	from multiprocessing import Process, Queue


	step_dir = Config().observer_steps_dir
	sys_dir = Config().observer_sys_dir

	os_template_loader = jinja2.FileSystemLoader( searchpath=[step_dir, "/opt/xos/synchronizers/shared_templates"])
	os_template_env = jinja2.Environment(loader=os_template_loader)

	def id_generator(size=6, chars=string.ascii_uppercase + string.digits):
	return ''.join(random.choice(chars) for _ in range(size))

	def shellquote(s):
	return "'" + s.replace("'", "'\\''") + "'"

	def get_playbook_fn(opts, path):
	if not opts.get("ansible_tag", None):
	# if no ansible_tag is in the options, then generate a unique one
	objname= id_generator()
	opts = opts.copy()
	opts["ansible_tag"] = objname

	objname = opts["ansible_tag"]

	pathed_sys_dir = os.path.join(sys_dir, path)
	if not os.path.isdir(pathed_sys_dir):
	os.makedirs(pathed_sys_dir)

	# symlink steps/roles into sys/roles so that playbooks can access roles
	roledir = os.path.join(step_dir,"roles")
	rolelink = os.path.join(pathed_sys_dir, "roles")
	if os.path.isdir(roledir) and not os.path.islink(rolelink):
	os.symlink(roledir,rolelink)

	return (opts, os.path.join(pathed_sys_dir,objname))

	def run_playbook(ansible_hosts, ansible_config, fqp, opts, q):
	if ansible_config:
	os.environ["ANSIBLE_CONFIG"] = ansible_config
	else:
	try:
	del os.environ["ANSIBLE_CONFIG"]
	except KeyError:
	pass

	if ansible_hosts:
	os.environ["ANSIBLE_HOSTS"] = ansible_hosts
	else:
	try:
	del os.environ["ANSIBLE_HOSTS"]
	except KeyError:
	pass

	import ansible_runner
	reload(ansible_runner)

	# Dropped support for observer_pretend - to be redone
	runner = ansible_runner.Runner(
	playbook=fqp,
	run_data=opts,
	host_file=ansible_hosts)

	stats,aresults = runner.run()
	q.put([stats,aresults])

	def run_template(name, opts, path='', expected_num=None, ansible_config=None, ansible_hosts=None, run_ansible_script=None, object=None):
	template = os_template_env.get_template(name)
	buffer = template.render(opts)

	(opts, fqp) = get_playbook_fn(opts, path)

	f = open(fqp,'w')
	f.write(buffer)
	f.flush()

	q = Queue()
	p = Process(target=run_playbook, args=(ansible_hosts, ansible_config, fqp, opts, q,))
	p.start()
	stats,aresults = q.get()
	p.join()

	output_file = fqp + '.out'
	try:
	ok_results = []
	total_unreachable = 0
	failed = 0

	error_msg = []

	ofile = open(output_file, 'w')

	for x in aresults:
	if not x.is_failed() and not x.is_unreachable() and not x.is_skipped():
	ok_results.append(x)
	elif x.is_unreachable():
	failed+=1
	total_unreachable+=1
	try:
	error_msg.append(x._result['msg'])
	except:
	pass
	elif x.is_failed():
	failed+=1
	try:
	error_msg.append(x._result['msg'])
	except:
	pass

	# FIXME (zdw, 2017-02-19) - may not be needed with new callback logging

	ofile.write('%s: %s\n'%(x._task, str(x._result)))

	if (object):
	oprops = object.tologdict()
	ansible = x._result
	oprops['xos_type']='ansible'
	oprops['ansible_result']=json.dumps(ansible)

	if failed == 0:
	oprops['ansible_status']='OK'
	else:
	oprops['ansible_status']='FAILED'

	logger.info(x._task, extra=oprops)


	ofile.close()

	if (expected_num is not None) and (len(ok_results) != expected_num):
	raise ValueError('Unexpected num %s!=%d' % (str(expected_num), len(ok_results)) )

	#total_unreachable = stats.unreachable

	if (failed):
	raise ValueError('Ansible playbook failed.')

	except ValueError,e:
	try:
	error = ' // '.join(error_msg)
	except:
	pass
	raise Exception(error)



	processed_results = map(lambda x:x._result, ok_results)
	return processed_results[1:] # 0 is setup

	def run_template_ssh(name, opts, path='', expected_num=None, object=None):
	instance_name = opts["instance_name"]
	hostname = opts["hostname"]
	private_key = opts["private_key"]
	baremetal_ssh = opts.get("baremetal_ssh",False)
	if baremetal_ssh:
	# no instance_id or ssh_ip for baremetal
	# we never proxy to baremetal
	proxy_ssh = False
	else:
	instance_id = opts["instance_id"]
	ssh_ip = opts["ssh_ip"]
	try:
	proxy_ssh = Config().observer_proxy_ssh
	except:
	proxy_ssh = True

	if (not ssh_ip):
	raise Exception('IP of ssh proxy not available. Synchronization deferred')

	(opts, fqp) = get_playbook_fn(opts, path)
	private_key_pathname = fqp + ".key"
	config_pathname = fqp + ".config"
	hosts_pathname = fqp + ".hosts"

	f = open(private_key_pathname, "w")
	f.write(private_key)
	f.close()

	f = open(config_pathname, "w")
	f.write("[ssh_connection]\n")
	if proxy_ssh:
	proxy_ssh_key = getattr(Config(), "observer_proxy_ssh_key", None)
	proxy_ssh_user = getattr(Config(), "observer_proxy_ssh_user", "root")
	if proxy_ssh_key:
	# If proxy_ssh_key is known, then we can proxy into the compute
	# node without needing to have the OpenCloud sshd machinery in
	# place.
	proxy_command = "ProxyCommand ssh -q -i %s -o StrictHostKeyChecking=no %s@%s nc %s 22" % (proxy_ssh_key, proxy_ssh_user, hostname, ssh_ip)
	else:
	proxy_command = "ProxyCommand ssh -q -i %s -o StrictHostKeyChecking=no %s@%s" % (private_key_pathname, instance_id, hostname)
	f.write('ssh_args = -o "%s"\n' % proxy_command)
	f.write('scp_if_ssh = True\n')
	f.write('pipelining = True\n')
	f.write('\n[defaults]\n')
	f.write('host_key_checking = False\n')
	f.write('timeout = 30\n')
	f.close()

	f = open(hosts_pathname, "w")
	f.write("[%s]\n" % instance_name)
	if proxy_ssh or baremetal_ssh:
	f.write("%s ansible_ssh_private_key_file=%s\n" % (hostname, private_key_pathname))
	else:
	# acb: Login user is hardcoded, this is not great
	f.write("%s ansible_ssh_private_key_file=%s ansible_ssh_user=ubuntu\n" % (ssh_ip, private_key_pathname))
	f.close()

	# SSH will complain if private key is world or group readable
	os.chmod(private_key_pathname, 0600)

	print "ANSIBLE_CONFIG=%s" % config_pathname
	print "ANSIBLE_HOSTS=%s" % hosts_pathname

	return run_template(name, opts, path, ansible_config = config_pathname, ansible_hosts = hosts_pathname, run_ansible_script="/opt/xos/synchronizers/base/run_ansible_verbose", object=object)



	def main():
	run_template('ansible/sync_user_deployments.yaml',{ "endpoint" : "http://172.31.38.128:5000/v2.0/",
	"name" : "Sapan Bhatia",
	"email": "gwsapan@gmail.com",
	"password": "foobar",
	"admin_user":"admin",
	"admin_password":"6a789bf69dd647e2",
	"admin_tenant":"admin",
	"tenant":"demo",
	"roles":['user','admin'] })