1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
|
# Copyright 2017: Mirantis Inc.
# All Rights Reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import inspect
import os
import re
import yaml
from rally.common import logging
from rally.common import validation
from rally import exceptions
from rally.plugins.common import validators
from rally.task import types
from rally_openstack.common import consts
from rally_openstack.task.contexts.keystone import roles
from rally_openstack.task.contexts.nova import flavors as flavors_ctx
from rally_openstack.task import types as openstack_types
LOG = logging.getLogger(__name__)
@validation.configure("required_platform", platform="openstack")
class RequiredOpenStackValidator(validation.RequiredPlatformValidator):
def __init__(self, admin=False, users=False):
"""Validates credentials for OpenStack platform.
This allows us to create 3 kind of tests cases:
1) requires platform with admin
2) requires platform with admin + users
3) requires platform with users
:param admin: requires admin credential
:param users: requires user credentials
"""
super(RequiredOpenStackValidator, self).__init__(platform="openstack")
self.admin = admin
self.users = users
def validate(self, context, config, plugin_cls, plugin_cfg):
if not (self.admin or self.users):
self.fail("You should specify admin=True or users=True or both.")
context = context["platforms"].get(self.platform, {})
if self.admin and context.get("admin") is None:
self.fail("No admin credentials for openstack")
if self.users and len(context.get("users", ())) == 0:
if context.get("admin") is None:
self.fail("No user credentials for openstack")
else:
# NOTE(andreykurilin): It is a case when the plugin requires
# 'users' for launching, but there are no specified users in
# deployment. Let's assume that 'users' context can create
# them via admin user and do not fail."
pass
def with_roles_ctx():
"""Add roles to users for validate
"""
def decorator(func):
def wrapper(*args, **kw):
func_type = inspect.getcallargs(func, *args, **kw)
config = func_type.get("config", {})
context = func_type.get("context", {})
if config.get("contexts", {}).get("roles") \
and context.get("admin", {}):
context["config"] = config["contexts"]
rolegenerator = roles.RoleGenerator(context)
with rolegenerator:
rolegenerator.setup()
func(*args, **kw)
else:
func(*args, **kw)
return wrapper
return decorator
@validation.add("required_platform", platform="openstack", users=True)
@validation.configure(name="image_exists", platform="openstack")
class ImageExistsValidator(validation.Validator):
def __init__(self, param_name, nullable):
"""Validator checks existed image or not
:param param_name: defines which variable should be used
to get image id value.
:param nullable: defines image id param is required
"""
super(ImageExistsValidator, self).__init__()
self.param_name = param_name
self.nullable = nullable
@with_roles_ctx()
def validate(self, context, config, plugin_cls, plugin_cfg):
from glanceclient import exc as glance_exc
image_args = config.get("args", {}).get(self.param_name)
if not image_args and self.nullable:
return
image_context = config.get("contexts", {}).get("images", {})
image_ctx_name = image_context.get("image_name")
if not image_args:
self.fail("Parameter %s is not specified." % self.param_name)
if "image_name" in image_context:
# NOTE(rvasilets) check string is "exactly equal to" a regex
# or image name from context equal to image name from args
if "regex" in image_args:
match = re.match(image_args.get("regex"), image_ctx_name)
if image_ctx_name == image_args.get("name") or (
"regex" in image_args and match):
return
try:
for user in context["users"]:
image_processor = openstack_types.GlanceImage(
context={"admin": {"credential": user["credential"]}})
image_id = image_processor.pre_process(image_args, config={})
user["credential"].clients().glance().images.get(image_id)
except (glance_exc.HTTPNotFound, exceptions.InvalidScenarioArgument):
self.fail("Image '%s' not found" % image_args)
@validation.add("required_platform", platform="openstack", users=True)
@validation.configure(name="external_network_exists", platform="openstack")
class ExternalNetworkExistsValidator(validation.Validator):
def __init__(self, param_name):
"""Validator checks that external network with given name exists.
:param param_name: name of validated network
"""
super(ExternalNetworkExistsValidator, self).__init__()
self.param_name = param_name
@with_roles_ctx()
def validate(self, context, config, plugin_cls, plugin_cfg):
ext_network = config.get("args", {}).get(self.param_name)
if not ext_network:
return
result = []
for user in context["users"]:
creds = user["credential"]
networks = creds.clients().neutron().list_networks()["networks"]
external_networks = [net["name"] for net in networks if
net.get("router:external", False)]
if ext_network not in external_networks:
message = ("External (floating) network with name {1} "
"not found by user {0}. "
"Available networks: {2}").format(creds.username,
ext_network,
networks)
result.append(message)
if result:
self.fail("\n".join(result))
@validation.add("required_platform", platform="openstack", users=True)
@validation.configure(name="required_neutron_extensions", platform="openstack")
class RequiredNeutronExtensionsValidator(validation.Validator):
def __init__(self, extensions, *args):
"""Validator checks if the specified Neutron extension is available
:param extensions: list of Neutron extensions
"""
super(RequiredNeutronExtensionsValidator, self).__init__()
if isinstance(extensions, (list, tuple)):
# services argument is a list, so it is a new way of validators
# usage, args in this case should not be provided
self.req_ext = extensions
if args:
LOG.warning("Positional argument is not what "
"'required_neutron_extensions' decorator expects. "
"Use `extensions` argument instead")
else:
# it is old way validator
self.req_ext = [extensions]
self.req_ext.extend(args)
@with_roles_ctx()
def validate(self, context, config, plugin_cls, plugin_cfg):
clients = context["users"][0]["credential"].clients()
extensions = clients.neutron().list_extensions()["extensions"]
aliases = [x["alias"] for x in extensions]
for extension in self.req_ext:
if extension not in aliases:
self.fail("Neutron extension %s is not configured" % extension)
@validation.add("required_platform", platform="openstack", users=True)
@validation.configure(name="flavor_exists", platform="openstack")
class FlavorExistsValidator(validation.Validator):
def __init__(self, param_name):
"""Returns validator for flavor
:param param_name: defines which variable should be used
to get flavor id value.
"""
super(FlavorExistsValidator, self).__init__()
self.param_name = param_name
def _get_flavor_from_context(self, config, flavor_value):
if "flavors" not in config.get("contexts", {}):
self.fail("No flavors context")
flavors = [flavors_ctx.FlavorConfig(**f)
for f in config["contexts"]["flavors"]]
resource = types.obj_from_name(resource_config=flavor_value,
resources=flavors, typename="flavor")
flavor = flavors_ctx.FlavorConfig(**resource)
flavor.id = "<context flavor: %s>" % flavor.name
return flavor
def _get_validated_flavor(self, config, clients, param_name):
from novaclient import exceptions as nova_exc
flavor_value = config.get("args", {}).get(param_name)
if not flavor_value:
self.fail("Parameter %s is not specified." % param_name)
try:
flavor_processor = openstack_types.Flavor(
context={"admin": {"credential": clients.credential}})
flavor_id = flavor_processor.pre_process(flavor_value, config={})
flavor = clients.nova().flavors.get(flavor=flavor_id)
return flavor
except (nova_exc.NotFound, exceptions.InvalidScenarioArgument):
try:
return self._get_flavor_from_context(config, flavor_value)
except validation.ValidationError:
pass
self.fail("Flavor '%s' not found" % flavor_value)
@with_roles_ctx()
def validate(self, context, config, plugin_cls, plugin_cfg):
# flavors do not depend on user or tenant, so checking for one user
# should be enough
clients = context["users"][0]["credential"].clients()
self._get_validated_flavor(config=config,
clients=clients,
param_name=self.param_name)
@validation.add("required_platform", platform="openstack", users=True)
@validation.configure(name="image_valid_on_flavor", platform="openstack")
class ImageValidOnFlavorValidator(FlavorExistsValidator):
def __init__(self, flavor_param, image_param,
fail_on_404_image=True, validate_disk=True):
"""Returns validator for image could be used for current flavor
:param flavor_param: defines which variable should be used
to get flavor id value.
:param image_param: defines which variable should be used
to get image id value.
:param validate_disk: flag to indicate whether to validate flavor's
disk. Should be True if instance is booted from
image. Should be False if instance is booted
from volume. Default value is True.
:param fail_on_404_image: flag what indicate whether to validate image
or not.
"""
super(ImageValidOnFlavorValidator, self).__init__(flavor_param)
self.image_name = image_param
self.fail_on_404_image = fail_on_404_image
self.validate_disk = validate_disk
def _get_validated_image(self, config, clients, param_name):
from glanceclient import exc as glance_exc
image_context = config.get("contexts", {}).get("images", {})
image_args = config.get("args", {}).get(param_name)
image_ctx_name = image_context.get("image_name")
if not image_args:
self.fail("Parameter %s is not specified." % param_name)
if "image_name" in image_context:
# NOTE(rvasilets) check string is "exactly equal to" a regex
# or image name from context equal to image name from args
if "regex" in image_args:
match = re.match(image_args.get("regex"), image_ctx_name)
if image_ctx_name == image_args.get("name") or ("regex"
in image_args
and match):
image = {
"size": image_context.get("min_disk", 0),
"min_ram": image_context.get("min_ram", 0),
"min_disk": image_context.get("min_disk", 0)
}
return image
try:
image_processor = openstack_types.GlanceImage(
context={"admin": {"credential": clients.credential}})
image_id = image_processor.pre_process(image_args, config={})
image = clients.glance().images.get(image_id)
if hasattr(image, "to_dict"):
# NOTE(stpierre): Glance v1 images are objects that can be
# converted to dicts; Glance v2 images are already
# dict-like
image = image.to_dict()
if not image.get("size"):
image["size"] = 0
if not image.get("min_ram"):
image["min_ram"] = 0
if not image.get("min_disk"):
image["min_disk"] = 0
return image
except (glance_exc.HTTPNotFound, exceptions.InvalidScenarioArgument):
self.fail("Image '%s' not found" % image_args)
@with_roles_ctx()
def validate(self, context, config, plugin_cls, plugin_cfg):
flavor = None
for user in context["users"]:
clients = user["credential"].clients()
if not flavor:
flavor = self._get_validated_flavor(
config, clients, self.param_name)
try:
image = self._get_validated_image(config, clients,
self.image_name)
except validation.ValidationError:
if not self.fail_on_404_image:
return
raise
if flavor.ram < image["min_ram"]:
self.fail("The memory size for flavor '%s' is too small "
"for requested image '%s'." %
(flavor.id, image["id"]))
if flavor.disk and self.validate_disk:
if flavor.disk * (1024 ** 3) < image["size"]:
self.fail("The disk size for flavor '%s' is too small "
"for requested image '%s'." %
(flavor.id, image["id"]))
if flavor.disk < image["min_disk"]:
self.fail("The minimal disk size for flavor '%s' is "
"too small for requested image '%s'." %
(flavor.id, image["id"]))
@validation.add("required_platform", platform="openstack", users=True)
@validation.configure(name="required_services", platform="openstack")
class RequiredServicesValidator(validation.Validator):
def __init__(self, services, *args):
"""Validator checks if specified OpenStack services are available.
:param services: list with names of required services
"""
super(RequiredServicesValidator, self).__init__()
if isinstance(services, (list, tuple)):
# services argument is a list, so it is a new way of validators
# usage, args in this case should not be provided
self.services = services
if args:
LOG.warning("Positional argument is not what "
"'required_services' decorator expects. "
"Use `services` argument instead")
else:
# it is old way validator
self.services = [services]
self.services.extend(args)
def validate(self, context, config, plugin_cls, plugin_cfg):
if consts.Service.NOVA_NET in self.services:
self.fail("We are sorry, but Nova-network was deprecated for a "
"long time and latest novaclient doesn't support it, so "
"we too.")
creds = (context.get("admin", {}).get("credential", None)
or context["users"][0]["credential"])
if "api_versions" in config.get("contexts", {}):
api_versions = config["contexts"]["api_versions"]
else:
api_versions = config.get("contexts", {}).get(
"api_versions@openstack", {})
available_services = creds.clients().services().values()
for service in self.services:
service_config = api_versions.get(service, {})
if ("service_type" in service_config
or "service_name" in service_config):
# NOTE(andreykurilin): validator should ignore services
# configured via api_versions@openstack since the context
# plugin itself should perform a proper validation
continue
if service not in available_services:
self.fail(
("'{0}' service is not available. Hint: If '{0}' "
"service has non-default service_type, try to setup "
"it via 'api_versions@openstack' context."
).format(service))
@validation.add("required_platform", platform="openstack", users=True)
@validation.configure(name="validate_heat_template", platform="openstack")
class ValidateHeatTemplateValidator(validation.Validator):
def __init__(self, params, *args):
"""Validates heat template.
:param params: list of parameters to be validated.
"""
super(ValidateHeatTemplateValidator, self).__init__()
if isinstance(params, (list, tuple)):
# services argument is a list, so it is a new way of validators
# usage, args in this case should not be provided
self.params = params
if args:
LOG.warning("Positional argument is not what "
"'validate_heat_template' decorator expects. "
"Use `params` argument instead")
else:
# it is old way validator
self.params = [params]
self.params.extend(args)
@with_roles_ctx()
def validate(self, context, config, plugin_cls, plugin_cfg):
for param_name in self.params:
template_path = config.get("args", {}).get(param_name)
if not template_path:
msg = ("Path to heat template is not specified. Its needed "
"for heat template validation. Please check the "
"content of `{}` scenario argument.")
return self.fail(msg.format(param_name))
template_path = os.path.expanduser(template_path)
if not os.path.exists(template_path):
self.fail("No file found by the given path %s" % template_path)
with open(template_path, "r") as f:
try:
template_file = f.read()
for user in context["users"]:
clients = user["credential"].clients()
clients.heat().stacks.validate(template=template_file)
except Exception as e:
self.fail("Heat template validation failed on %(path)s. "
"Original error message: %(msg)s." %
{"path": template_path, "msg": str(e)})
@validation.add("required_platform", platform="openstack", admin=True)
@validation.configure(name="required_cinder_services", platform="openstack")
class RequiredCinderServicesValidator(validation.Validator):
def __init__(self, services):
"""Validator checks that specified Cinder service is available.
It uses Cinder client with admin permissions to call
'cinder service-list' call
:param services: Cinder service name
"""
super(RequiredCinderServicesValidator, self).__init__()
self.services = services
@with_roles_ctx()
def validate(self, context, config, plugin_cls, plugin_cfg):
clients = context["admin"]["credential"].clients()
for service in clients.cinder().services.list():
if (service.binary == str(self.services)
and service.state == str("up")):
return
self.fail("%s service is not available" % self.services)
@validation.add("required_platform", platform="openstack", users=True)
@validation.configure(name="required_api_versions", platform="openstack")
class RequiredAPIVersionsValidator(validation.Validator):
def __init__(self, component, versions):
"""Validator checks component API versions.
:param component: name of required component
:param versions: version of required component
"""
super(RequiredAPIVersionsValidator, self).__init__()
self.component = component
self.versions = versions
def validate(self, context, config, plugin_cls, plugin_cfg):
versions = [str(v) for v in self.versions]
versions_str = ", ".join(versions)
msg = ("Task was designed to be used with %(component)s "
"V%(version)s, but V%(found_version)s is "
"selected.")
for user in context["users"]:
clients = user["credential"].clients()
if self.component == "keystone":
if "2.0" not in versions and hasattr(
clients.keystone(), "tenants"):
self.fail(msg % {"component": self.component,
"version": versions_str,
"found_version": "2.0"})
if "3" not in versions and hasattr(
clients.keystone(), "projects"):
self.fail(msg % {"component": self.component,
"version": versions_str,
"found_version": "3"})
else:
av_ctx = config.get("contexts", {}).get(
"api_versions@openstack", {})
default_version = getattr(clients,
self.component).choose_version()
used_version = av_ctx.get(self.component, {}).get(
"version", default_version)
if not used_version:
self.fail("Unable to determine the API version.")
if str(used_version) not in versions:
self.fail(msg % {"component": self.component,
"version": versions_str,
"found_version": used_version})
@validation.add("required_platform", platform="openstack", users=True)
@validation.configure(name="volume_type_exists", platform="openstack")
class VolumeTypeExistsValidator(validation.Validator):
def __init__(self, param_name, nullable=True):
"""Returns validator for volume types.
:param param_name: defines variable to be used as the flag to
determine if volume types should be checked for
existence.
:param nullable: defines volume_type param is required
"""
super(VolumeTypeExistsValidator, self).__init__()
self.param = param_name
self.nullable = nullable
@with_roles_ctx()
def validate(self, context, config, plugin_cls, plugin_cfg):
volume_type = config.get("args", {}).get(self.param, False)
if not volume_type:
if self.nullable:
return
self.fail("The parameter '%s' is required and should not be empty."
% self.param)
for user in context["users"]:
clients = user["credential"].clients()
vt_names = [vt.name for vt in
clients.cinder().volume_types.list()]
ctx = config.get("contexts", {}).get("volume_types", [])
vt_names += ctx
if volume_type not in vt_names:
self.fail("Specified volume type %s not found for user %s."
" List of available types: %s" %
(volume_type, user, vt_names))
@validation.configure(name="workbook_contains_workflow", platform="openstack")
class WorkbookContainsWorkflowValidator(validators.FileExistsValidator):
def __init__(self, workbook_param, workflow_param):
"""Validate that workflow exist in workbook when workflow is passed
:param workbook_param: parameter containing the workbook definition
:param workflow_param: parameter containing the workflow name
"""
super(WorkbookContainsWorkflowValidator, self).__init__(workflow_param)
self.workbook = workbook_param
self.workflow = workflow_param
def validate(self, context, config, plugin_cls, plugin_cfg):
wf_name = config.get("args", {}).get(self.workflow)
if wf_name:
wb_path = config.get("args", {}).get(self.workbook)
wb_path = os.path.expanduser(wb_path)
self._file_access_ok(wb_path, mode=os.R_OK,
param_name=self.workbook)
with open(wb_path, "r") as wb_def:
wb_def = yaml.safe_load(wb_def)
if wf_name not in wb_def["workflows"]:
self.fail("workflow '%s' not found in the definition '%s'"
% (wf_name, wb_def))
@validation.configure(name="required_context_config", platform="openstack")
class RequiredContextConfigValidator(validation.Validator):
def __init__(self, context_name, context_config):
"""Validate that context is configured according to requirements.
:param context_name: string efining context name
:param context_config: dictionary of required key/value pairs
"""
super(RequiredContextConfigValidator, self).__init__()
self.context_name = context_name
self.context_config = context_config
def validate(self, context, config, plugin_cls, plugin_cfg):
if self.context_name not in config.get("contexts", {}):
# fail silently. if it is required context,
# `required_contexts` validator should raise proper error
return
ctx_config = config["contexts"].get(self.context_name)
for key, value in self.context_config.items():
if key not in ctx_config or ctx_config[key] != value:
self.fail(
f"The '{self.context_name}' context "
f"expects '{self.context_config}'")
|
