eayunstack
diff --git a/‎doc/source/index.rst‎
Lines changed: 13 additions & 0 deletions b/‎doc/source/index.rst‎
Lines changed: 13 additions & 0 deletions
diff --git a/‎ironic_python_agent/agent.py‎
Lines changed: 7 additions & 1 deletion b/‎ironic_python_agent/agent.py‎
Lines changed: 7 additions & 1 deletion
diff --git a/‎ironic_python_agent/cmd/agent.py‎
Lines changed: 14 additions & 0 deletions b/‎ironic_python_agent/cmd/agent.py‎
Lines changed: 14 additions & 0 deletions
diff --git a/‎ironic_python_agent/errors.py‎
Lines changed: 6 additions & 0 deletions b/‎ironic_python_agent/errors.py‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎ironic_python_agent/hardware.py‎
Lines changed: 1 addition & 14 deletions b/‎ironic_python_agent/hardware.py‎
Lines changed: 1 addition & 14 deletions
diff --git a/‎ironic_python_agent/inspector.py‎
Lines changed: 219 additions & 0 deletions b/‎ironic_python_agent/inspector.py‎
Lines changed: 219 additions & 0 deletions
diff --git a/‎ironic_python_agent/tests/unit/test_agent.py‎
Lines changed: 42 additions & 0 deletions b/‎ironic_python_agent/tests/unit/test_agent.py‎
Lines changed: 42 additions & 0 deletions
@@ -63,6 +63,19 @@ After the agent heartbeats, the conductor performs any actions needed against
 the node, including querying status of an already run command. For example,
 initiating in-band cleaning tasks or deploying an image to the node.
 
+Inspection
+~~~~~~~~~~
+IPA can conduct hardware inspection on start up and post data to the `Ironic
+Inspector`_. Edit your default PXE/iPXE configuration or kernel command
+options baked in the image, and set ``ipa-inspection-callback-url`` to the
+full endpoint of Ironic Inspector, for example::
+
+    ipa-inspection-callback-url=http://IP:5050/v1/continue
+
+Make sure your DHCP environment is set to boot IPA by default.
+
+.. _Ironic Inspector: https://github.com/openstack/ironic-inspector
+
 Image Builders
 --------------
 Unlike most other python software, you must build an IPA ramdisk image before
 
@@ -28,6 +28,7 @@
 from ironic_python_agent import errors
 from ironic_python_agent.extensions import base
 from ironic_python_agent import hardware
+from ironic_python_agent import inspector
 from ironic_python_agent import ironic_api_client
 
 
@@ -280,11 +281,16 @@ def run(self):
         hardware.load_managers()
 
         if not self.standalone:
+            # Inspection should be started before call to lookup, otherwise
+            # lookup will fail due to unknown MAC.
+            uuid = inspector.inspect()
+
             content = self.api_client.lookup_node(
                 hardware_info=hardware.dispatch_to_managers(
                                   'list_hardware_info'),
                 timeout=self.lookup_timeout,
-                starting_interval=self.lookup_interval)
+                starting_interval=self.lookup_interval,
+                node_uuid=uuid)
 
             self.node = content['node']
             self.heartbeat_timeout = content['heartbeat_timeout']
 
@@ -18,6 +18,7 @@
 from oslo_log import log
 
 from ironic_python_agent import agent
+from ironic_python_agent import inspector
 from ironic_python_agent import utils
 
 CONF = cfg.CONF
@@ -99,6 +100,19 @@
                 default=APARAMS.get('ipa-standalone', False),
                 help='Note: for debugging only. Start the Agent but suppress '
                      'any calls to Ironic API.'),
+
+    cfg.StrOpt('inspection_callback_url',
+               default=APARAMS.get('ipa-inspection-callback-url'),
+               help='Endpoint of ironic-inspector. If set, hardware inventory '
+                    'will be collected and sent to ironic-inspector '
+                    'on start up.'),
+
+    cfg.StrOpt('inspection_collectors',
+               default=APARAMS.get('ipa-inspection-collectors',
+                                   inspector.DEFAULT_COLLECTOR),
+               help='Comma-separated list of plugins providing additional '
+                    'hardware data for inspection, empty value gives '
+                    'a minimum required set of plugins.'),
 ]
 
 CONF.register_cli_opts(cli_opts)
 
@@ -321,3 +321,9 @@ class DeviceNotFound(NotFound):
 
     def __init__(self, details):
         super(DeviceNotFound, self).__init__(details)
+
+
+# This is not something we return to a user, so we don't inherit it from
+# RESTError.
+class InspectionError(Exception):
+    """Failure during inspection."""
@@ -391,20 +391,7 @@ def get_os_install_device(self):
         root_device_hints = utils.parse_root_device_hints()
 
         if not root_device_hints:
-            # If no hints are passed find the first device larger than
-            # 4GiB, assume it is the OS disk
-            min_size_required = 4 * units.Gi
-            # TODO(russellhaering): This isn't a valid assumption in
-            # all cases, is there a more reasonable default behavior?
-            block_devices.sort(key=lambda device: device.size)
-            if block_devices[-1].size < min_size_required:
-                raise errors.DeviceNotFound("No suitable device was found "
-                    "for deployment - root device hints were not provided "
-                    "and all found block devices are smaller than %iB."
-                                            % min_size_required)
-            for device in block_devices:
-                if device.size >= min_size_required:
-                    return device.name
+            return utils.guess_root_disk(block_devices).name
         else:
 
             def match(hint, current_value, device):
 
@@ -0,0 +1,219 @@
+# Copyright 2015 Red Hat, Inc.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#    http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+# implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+import logging
+
+from oslo_concurrency import processutils
+from oslo_config import cfg
+from oslo_utils import excutils
+from oslo_utils import units
+import requests
+import stevedore
+
+from ironic_python_agent import encoding
+from ironic_python_agent import errors
+from ironic_python_agent import hardware
+from ironic_python_agent import utils
+
+
+LOG = logging.getLogger(__name__)
+CONF = cfg.CONF
+DEFAULT_COLLECTOR = 'default'
+_COLLECTOR_NS = 'ironic_python_agent.inspector.collectors'
+
+
+def extension_manager(names):
+    try:
+        return stevedore.NamedExtensionManager(_COLLECTOR_NS,
+                                               names=names,
+                                               name_order=True)
+    except KeyError as exc:
+        raise errors.InspectionError('Failed to load collector %s' % exc)
+
+
+def inspect():
+    """Optionally run inspection on the current node.
+
+    If ``inspection_callback_url`` is set in the configuration, get
+    the hardware inventory from the node and post it back to the inspector.
+
+    :return: node UUID if inspection was successful, None if associated node
+             was not found in inspector cache. None is also returned if
+             inspector support is not enabled.
+    """
+    if not CONF.inspection_callback_url:
+        LOG.info('Inspection is disabled, skipping')
+        return
+    collector_names = [x.strip() for x in CONF.inspection_collectors.split(',')
+                       if x.strip()]
+    LOG.info('inspection is enabled with collectors %s', collector_names)
+
+    # NOTE(dtantsur): inspection process tries to delay raising any exceptions
+    # until after we posted some data back to inspector. This is because
+    # inspection is run automatically on (mostly) unknown nodes, so if it
+    # fails, we don't have much information for debugging.
+    failures = utils.AccumulatedFailures(exc_class=errors.InspectionError)
+    data = {}
+
+    try:
+        ext_mgr = extension_manager(collector_names)
+        collectors = [(ext.name, ext.plugin) for ext in ext_mgr]
+    except Exception as exc:
+        with excutils.save_and_reraise_exception():
+            failures.add(exc)
+            call_inspector(data, failures)
+
+    for name, collector in collectors:
+        try:
+            collector(data, failures)
+        except Exception as exc:
+            # No reraise here, try to keep going
+            failures.add('collector %s failed: %s', name, exc)
+
+    resp = call_inspector(data, failures)
+
+    # Now raise everything we were delaying
+    failures.raise_if_needed()
+
+    if resp is None:
+        LOG.info('stopping inspection, as inspector returned an error')
+        return
+
+    # Optionally update IPMI credentials
+    setup_ipmi_credentials(resp)
+
+    LOG.info('inspection finished successfully')
+    return resp.get('uuid')
+
+
+def call_inspector(data, failures):
+    """Post data to inspector."""
+    data['error'] = failures.get_error()
+
+    LOG.info('posting collected data to %s', CONF.inspection_callback_url)
+    LOG.debug('collected data: %s', data)
+
+    encoder = encoding.RESTJSONEncoder()
+    data = encoder.encode(data)
+
+    resp = requests.post(CONF.inspection_callback_url, data=data)
+    if resp.status_code >= 400:
+        LOG.error('inspector error %d: %s, proceeding with lookup',
+                  resp.status_code, resp.content.decode('utf-8'))
+        return
+
+    return resp.json()
+
+
+def setup_ipmi_credentials(resp):
+    """Setup IPMI credentials, if requested.
+
+    :param resp: JSON response from inspector.
+    """
+    if not resp.get('ipmi_setup_credentials'):
+        LOG.info('setting IPMI credentials was not requested')
+        return
+
+    user, password = resp['ipmi_username'], resp['ipmi_password']
+    LOG.debug('setting IPMI credentials: user %s', user)
+
+    commands = [
+        ('user', 'set', 'name', '2', user),
+        ('user', 'set', 'password', '2', password),
+        ('user', 'enable', '2'),
+        ('channel', 'setaccess', '1', '2',
+         'link=on', 'ipmi=on', 'callin=on', 'privilege=4'),
+    ]
+
+    for cmd in commands:
+        try:
+            utils.execute('ipmitool', *cmd)
+        except processutils.ProcessExecutionError:
+            LOG.exception('failed to update IPMI credentials')
+            raise errors.InspectionError('failed to update IPMI credentials')
+
+    LOG.info('successfully set IPMI credentials: user %s', user)
+
+
+def discover_network_properties(inventory, data, failures):
+    """Discover network and BMC related properties.
+
+    Populates 'boot_interface', 'ipmi_address' and 'interfaces' keys.
+    """
+    # Both boot interface and IPMI address might not be present,
+    # we don't count it as failure
+    data['boot_interface'] = utils.get_agent_params().get('BOOTIF')
+    LOG.info('boot devices was %s', data['boot_interface'])
+    data['ipmi_address'] = inventory.get('bmc_address')
+    LOG.info('BMC IP address: %s', data['ipmi_address'])
+
+    data.setdefault('interfaces', {})
+    for iface in inventory['interfaces']:
+        if iface.name == 'lo' or iface.ipv4_address == '127.0.0.1':
+            LOG.debug('ignoring local network interface %s', iface.name)
+            continue
+
+        LOG.debug('found network interface %s', iface.name)
+
+        if not iface.mac_address:
+            LOG.debug('no link information for interface %s', iface.name)
+            continue
+
+        if not iface.ipv4_address:
+            LOG.debug('no IP address for interface %s', iface.name)
+
+        data['interfaces'][iface.name] = {'mac': iface.mac_address,
+                                          'ip': iface.ipv4_address}
+
+    if data['interfaces']:
+        LOG.info('network interfaces: %s', data['interfaces'])
+    else:
+        failures.add('no network interfaces found')
+
+
+def discover_scheduling_properties(inventory, data):
+    data['cpus'] = inventory['cpu'].count
+    data['cpu_arch'] = inventory['cpu'].architecture
+    data['memory_mb'] = inventory['memory'].physical_mb
+
+    # Replicate the same logic as in deploy. This logic will be moved to
+    # inspector itself, but we need it for backward compatibility.
+    try:
+        disk = utils.guess_root_disk(inventory['disks'])
+    except errors.DeviceNotFound:
+        LOG.warn('no suitable root device detected')
+    else:
+        # -1 is required to give Ironic some spacing for partitioning
+        data['local_gb'] = disk.size / units.Gi - 1
+
+    for key in ('cpus', 'local_gb', 'memory_mb'):
+        try:
+            data[key] = int(data[key])
+        except (KeyError, ValueError, TypeError):
+            LOG.warn('value for %s is missing or malformed: %s',
+                     key, data.get(key))
+        else:
+            LOG.info('value for %s is %s', key, data[key])
+
+
+def collect_default(data, failures):
+    inventory = hardware.dispatch_to_managers('list_hardware_info')
+    # These 2 calls are required for backward compatibility and should be
+    # dropped after inspector is ready (probably in Mitaka cycle).
+    discover_network_properties(inventory, data, failures)
+    discover_scheduling_properties(inventory, data)
+    # In the future we will only need the current version of inventory,
+    # everything else will be done by inspector itself and its plugins
+    data['inventory'] = inventory
@@ -16,6 +16,7 @@
 import time
 
 import mock
+from oslo_config import cfg
 from oslotest import base as test_base
 import pkg_resources
 from stevedore import extension
@@ -26,9 +27,12 @@
 from ironic_python_agent import errors
 from ironic_python_agent.extensions import base
 from ironic_python_agent import hardware
+from ironic_python_agent import inspector
 
 EXPECTED_ERROR = RuntimeError('command execution failed')
 
+CONF = cfg.CONF
+
 
 def foo_execute(*args, **kwargs):
     if kwargs['fail']:
@@ -164,6 +168,7 @@ def test_get_status(self):
     @mock.patch('wsgiref.simple_server.make_server', autospec=True)
     @mock.patch.object(hardware.HardwareManager, 'list_hardware_info')
     def test_run(self, mocked_list_hardware, wsgi_server_cls):
+        CONF.set_override('inspection_callback_url', '')
         wsgi_server = wsgi_server_cls.return_value
         wsgi_server.start.side_effect = KeyboardInterrupt()
 
@@ -187,6 +192,43 @@ def test_run(self, mocked_list_hardware, wsgi_server_cls):
 
         self.agent.heartbeater.start.assert_called_once_with()
 
+    @mock.patch.object(inspector, 'inspect', autospec=True)
+    @mock.patch('wsgiref.simple_server.make_server', autospec=True)
+    @mock.patch.object(hardware.HardwareManager, 'list_hardware_info')
+    def test_run_with_inspection(self, mocked_list_hardware, wsgi_server_cls,
+                                 mocked_inspector):
+        CONF.set_override('inspection_callback_url', 'http://foo/bar')
+
+        wsgi_server = wsgi_server_cls.return_value
+        wsgi_server.start.side_effect = KeyboardInterrupt()
+
+        mocked_inspector.return_value = 'uuid'
+
+        self.agent.heartbeater = mock.Mock()
+        self.agent.api_client.lookup_node = mock.Mock()
+        self.agent.api_client.lookup_node.return_value = {
+            'node': {
+                'uuid': 'deadbeef-dabb-ad00-b105-f00d00bab10c'
+            },
+            'heartbeat_timeout': 300,
+        }
+        self.agent.run()
+
+        listen_addr = ('192.0.2.1', 9999)
+        wsgi_server_cls.assert_called_once_with(
+            listen_addr[0],
+            listen_addr[1],
+            self.agent.api,
+            server_class=simple_server.WSGIServer)
+        wsgi_server.serve_forever.assert_called_once_with()
+        mocked_inspector.assert_called_once_with()
+        self.assertEqual(1, self.agent.api_client.lookup_node.call_count)
+        self.assertEqual(
+            'uuid',
+            self.agent.api_client.lookup_node.call_args[1]['node_uuid'])
+
+        self.agent.heartbeater.start.assert_called_once_with()
+
     @mock.patch('os.read')
     @mock.patch('select.poll')
     @mock.patch('time.sleep', return_value=None)