Charm Helpers

Merge lp:~james-page/charm-helpers/ovs-helper into lp:charm-helpers

ovs-helper
Merge into devel

Proposed by James Page on 2013-07-01

Status:	Merged
Merged at revision:	39
Proposed branch:	lp:~james-page/charm-helpers/ovs-helper
Merge into:	lp:charm-helpers
Diff against target:	288 lines (+274/-0) 2 files modified charmhelpers/contrib/network/ovs/__init__.py (+72/-0) tests/contrib/network/test_ovs.py (+202/-0)
To merge this branch:	bzr merge lp:~james-page/charm-helpers/ovs-helper
Related bugs:	Link a bug report

Reviewer	Review Type	Date Requested	Status
Adam Gandelman (community)		2013-07-01	Approve on 2013-07-02
Review via email: mp+172296@code.launchpad.net

Description of the change

Various helpers for interacting with OpenvSwitch.

Revision history for this message

Adam Gandelman (gandelman-a) wrote on 2013-07-02:

Simple utility wrappers for OVS CLI commands with good tests. LGTM

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk

Subscribers

People subscribed via source and target branches

to all changes:

Corey Bryant

James Page

Nobuto Murata

Stuart Bishop

Yoshi Kadokawa

charmers

james beedy

 === added directory 'charmhelpers/contrib/network'
 === added file 'charmhelpers/contrib/network/__init__.py'
 === added directory 'charmhelpers/contrib/network/ovs'
 === added file 'charmhelpers/contrib/network/ovs/__init__.py'
 --- charmhelpers/contrib/network/ovs/__init__.py	1970-01-01 00:00:00 +0000
 +++ charmhelpers/contrib/network/ovs/__init__.py	2013-07-01 10:37:46 +0000
@@ -0,0 +1,72 @@
++''' Helpers for interacting with OpenvSwitch '''
++import subprocess
++import os
++from charmhelpers.core.hookenv import (
++    log, WARNING
++)
++from charmhelpers.core.host import (
++    service
++)
++
++
++def add_bridge(name):
++    ''' Add the named bridge to openvswitch '''
++    log('Creating bridge {}'.format(name))
++    subprocess.check_call(["ovs-vsctl", "--", "--may-exist", "add-br", name])
++
++
++def del_bridge(name):
++    ''' Delete the named bridge from openvswitch '''
++    log('Deleting bridge {}'.format(name))
++    subprocess.check_call(["ovs-vsctl", "--", "--if-exists", "del-br", name])
++
++
++def add_bridge_port(name, port):
++    ''' Add a port to the named openvswitch bridge '''
++    log('Adding port {} to bridge {}'.format(port, name))
++    subprocess.check_call(["ovs-vsctl", "--", "--may-exist", "add-port",
++                           name, port])
++    subprocess.check_call(["ip", "link", "set", port, "up"])
++
++
++def del_bridge_port(name, port):
++    ''' Delete a port from the named openvswitch bridge '''
++    log('Deleting port {} from bridge {}'.format(port, name))
++    subprocess.check_call(["ovs-vsctl", "--", "--if-exists", "del-port",
++                           name, port])
++    subprocess.check_call(["ip", "link", "set", port, "down"])
++
++
++def set_manager(manager):
++    ''' Set the controller for the local openvswitch '''
++    log('Setting manager for local ovs to {}'.format(manager))
++    subprocess.check_call(['ovs-vsctl', 'set-manager',
++                           'ssl:{}'.format(manager)])
++
++
++CERT_PATH = '/etc/openvswitch/ovsclient-cert.pem'
++
++
++def get_certificate():
++    ''' Read openvswitch certificate from disk '''
++    if os.path.exists(CERT_PATH):
++        log('Reading ovs certificate from {}'.format(CERT_PATH))
++        with open(CERT_PATH, 'r') as cert:
++            full_cert = cert.read()
++            begin_marker = "-----BEGIN CERTIFICATE-----"
++            end_marker = "-----END CERTIFICATE-----"
++            begin_index = full_cert.find(begin_marker)
++            end_index = full_cert.rfind(end_marker)
++            if end_index == -1 or begin_index == -1:
++                raise RuntimeError("Certificate does not contain valid begin"
++                                   " and end markers.")
++            full_cert = full_cert[begin_index:(end_index + len(end_marker))]
++            return full_cert
++    else:
++        log('Certificate not found', level=WARNING)
++        return None
++
++
++def full_restart():
++    ''' Full restart and reload of openvswitch '''
++    service('force-reload-kmod', 'openvswitch-switch')
 === added directory 'tests/contrib/network'
 === added file 'tests/contrib/network/__init__.py'
 === added file 'tests/contrib/network/test_ovs.py'
 --- tests/contrib/network/test_ovs.py	1970-01-01 00:00:00 +0000
 +++ tests/contrib/network/test_ovs.py	2013-07-01 10:37:46 +0000
@@ -0,0 +1,202 @@
++from contextlib import contextmanager
++from mock import patch, call, MagicMock
++from testtools import TestCase
++
++import charmhelpers.contrib.network.ovs as ovs
++
++
++@contextmanager
++def patch_open():
++    '''Patch open() to allow mocking both open() itself and the file that is
++    yielded.
++
++    Yields the mock for "open" and "file", respectively.'''
++    mock_open = MagicMock(spec=open)
++    mock_file = MagicMock(spec=file)
++
++    @contextmanager
++    def stub_open(*args, **kwargs):
++        mock_open(*args, **kwargs)
++        yield mock_file
++
++    with patch('__builtin__.open', stub_open):
++        yield mock_open, mock_file
++
++GOOD_CERT = '''Certificate:
++    Data:
++        Version: 1 (0x0)
++        Serial Number: 13798680962510501282 (0xbf7ec33a136235a2)
++    Signature Algorithm: sha1WithRSAEncryption
++        Issuer: C=US, ST=CA, L=Palo Alto, O=Open vSwitch, OU=Open vSwitch
++        Validity
++            Not Before: Jun 28 17:02:19 2013 GMT
++            Not After : Jun 28 17:02:19 2019 GMT
++        Subject: C=US, ST=CA, L=Palo Alto, O=Open vSwitch, OU=Open vSwitch
++        Subject Public Key Info:
++            Public Key Algorithm: rsaEncryption
++                Public-Key: (2048 bit)
++                Modulus:
++                    00:e8:a7:db:0a:6d:c0:16:4a:14:96:1d:74:91:15:
++                    64:3f:ae:2a:54:be:2a:fe:10:14:9a:73:39:d8:58:
++                    74:7f:ab:d5:f2:39:aa:9a:27:7c:31:82:f8:74:42:
++                    46:8d:c5:3b:42:55:52:be:75:7f:a5:b1:ec:d5:29:
++                    9f:62:0e:de:31:27:2b:95:1f:24:0d:ca:8c:48:30:
++                    96:9f:ba:b7:9d:eb:c1:bd:93:05:e3:d8:ca:66:5a:
++                    e9:cb:a5:7a:3a:8d:27:e2:05:9d:88:fc:a9:ef:af:
++                    47:4c:66:ce:c6:43:73:1a:85:f4:5f:b9:53:5b:29:
++                    f3:c3:23:1f:0c:20:95:11:50:71:b2:f6:01:23:3f:
++                    66:0f:5c:43:c2:90:fb:e5:98:73:98:e9:38:bb:1f:
++                    1b:89:97:1e:dc:d7:98:07:68:32:ec:da:1d:69:0b:
++                    e2:df:40:fb:64:52:e5:e9:40:27:b0:ca:73:21:51:
++                    f6:8f:00:20:c0:2b:1a:d4:01:c2:32:38:9d:d1:8d:
++                    88:71:46:a9:42:0d:ee:3b:1c:88:db:27:69:49:f9:
++                    60:34:70:61:3d:60:df:7e:e4:e1:1d:c6:16:89:05:
++                    ba:31:06:eb:88:b5:78:94:5d:8c:9d:88:fe:f2:c2:
++                    80:a1:04:15:d3:84:85:d3:aa:5a:1d:53:5c:f8:57:
++                    ae:61
++                Exponent: 65537 (0x10001)
++    Signature Algorithm: sha1WithRSAEncryption
++         14:7e:ca:c3:fc:93:60:9f:80:e0:65:2e:ef:41:2d:f9:af:77:
++         da:6d:e2:e0:11:70:17:fb:e5:67:4c:f0:ad:39:ec:96:ef:fe:
++         d5:95:94:70:e5:52:31:68:63:8c:ea:b3:a1:8e:02:e2:91:4b:
++         a8:8c:07:86:fd:80:98:a2:b1:90:2b:9c:2e:ab:f4:73:9d:8f:
++         fd:31:b9:8f:fe:6c:af:d6:bf:72:44:89:08:93:19:ef:2b:c3:
++         7c:ab:ba:bc:57:ca:f1:17:e4:e8:81:40:ca:65:df:84:be:10:
++         2c:42:46:af:d2:e0:0d:df:5d:56:53:65:13:e0:20:55:b4:ee:
++         cd:5e:b5:c4:97:1d:3e:a6:c1:9c:7e:b8:87:ee:64:78:a5:59:
++         e5:b2:79:47:9a:8e:59:fa:c4:18:ea:27:fd:a2:d5:76:d0:ae:
++         d9:05:f6:0e:23:ca:7d:66:a1:ba:18:67:f5:6d:bb:51:5a:f5:
++         52:e9:17:bb:63:15:24:b4:61:25:9f:d9:9c:89:58:93:9a:c3:
++         74:55:72:3e:f9:ff:ef:54:7d:e8:28:78:ba:3c:c7:15:ba:b9:
++         c6:e3:8c:61:cb:a9:ed:8d:07:16:0d:8d:f6:1c:36:11:69:08:
++         b8:45:7d:fc:fd:d1:ab:2d:9b:4e:9c:dd:11:78:50:c7:87:9f:
++         4a:24:9c:a0
++-----BEGIN CERTIFICATE-----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++-----END CERTIFICATE-----
++'''
++
++PEM_ENCODED = '''-----BEGIN CERTIFICATE-----
++MIIDwjCCAqoCCQC/fsM6E2I1ojANBgkqhkiG9w0BAQUFADCBojELMAkGA1UEBhMC
++VVMxCzAJBgNVBAgTAkNBMRIwEAYDVQQHEwlQYWxvIEFsdG8xFTATBgNVBAoTDE9w
++ZW4gdlN3aXRjaDEfMB0GA1UECxMWT3BlbiB2U3dpdGNoIGNlcnRpZmllcjE6MDgG
++A1UEAxMxb3ZzY2xpZW50IGlkOjU4MTQ5N2E1LWJjMDAtNGVjYy1iNzkwLTU3NTZj
++ZWUxNmE0ODAeFw0xMzA2MjgxNzAyMTlaFw0xOTA2MjgxNzAyMTlaMIGiMQswCQYD
++VQQGEwJVUzELMAkGA1UECBMCQ0ExEjAQBgNVBAcTCVBhbG8gQWx0bzEVMBMGA1UE
++ChMMT3BlbiB2U3dpdGNoMR8wHQYDVQQLExZPcGVuIHZTd2l0Y2ggY2VydGlmaWVy
++MTowOAYDVQQDEzFvdnNjbGllbnQgaWQ6NTgxNDk3YTUtYmMwMC00ZWNjLWI3OTAt
++NTc1NmNlZTE2YTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Kfb
++Cm3AFkoUlh10kRVkP64qVL4q/hAUmnM52Fh0f6vV8jmqmid8MYL4dEJGjcU7QlVS
++vnV/pbHs1SmfYg7eMScrlR8kDcqMSDCWn7q3nevBvZMF49jKZlrpy6V6Oo0n4gWd
++iPyp769HTGbOxkNzGoX0X7lTWynzwyMfDCCVEVBxsvYBIz9mD1xDwpD75ZhzmOk4
++ux8biZce3NeYB2gy7NodaQvi30D7ZFLl6UAnsMpzIVH2jwAgwCsa1AHCMjid0Y2I
++cUapQg3uOxyI2ydpSflgNHBhPWDffuThHcYWiQW6MQbriLV4lF2MnYj+8sKAoQQV
++04SF06paHVNc+FeuYQIDAQABMA0GCSqGSIb3DQEBBQUAA4IBAQAUfsrD/JNgn4Dg
++ZS7vQS35r3fabeLgEXAX++VnTPCtOeyW7/7VlZRw5VIxaGOM6rOhjgLikUuojAeG
++/YCYorGQK5wuq/RznY/9MbmP/myv1r9yRIkIkxnvK8N8q7q8V8rxF+TogUDKZd+E
++vhAsQkav0uAN311WU2UT4CBVtO7NXrXElx0+psGcfriH7mR4pVnlsnlHmo5Z+sQY
++6if9otV20K7ZBfYOI8p9ZqG6GGf1bbtRWvVS6Re7YxUktGEln9mciViTmsN0VXI+
+++f/vVH3oKHi6PMcVurnG44xhy6ntjQcWDY32HDYRaQi4RX38/dGrLZtOnN0ReFDH
++h59KJJyg
++-----END CERTIFICATE-----'''
++
++BAD_CERT = ''' NO MARKERS '''
++
++
++class OVSHelpersTest(TestCase):
++
++    @patch.object(ovs, 'log')
++    @patch('subprocess.check_call')
++    def test_add_bridge(self, check_call, log):
++        ovs.add_bridge('test')
++        check_call.assert_called_with(["ovs-vsctl", "--", "--may-exist",
++                                       "add-br", 'test'])
++        self.assertTrue(log.call_count == 1)
++
++    @patch.object(ovs, 'log')
++    @patch('subprocess.check_call')
++    def test_del_bridge(self, check_call, log):
++        ovs.del_bridge('test')
++        check_call.assert_called_with(["ovs-vsctl", "--", "--if-exists",
++                                       "del-br", 'test'])
++        self.assertTrue(log.call_count == 1)
++
++    @patch.object(ovs, 'log')
++    @patch('subprocess.check_call')
++    def test_add_bridge_port(self, check_call, log):
++        ovs.add_bridge_port('test', 'eth1')
++        check_call.assert_has_calls([
++            call(["ovs-vsctl", "--", "--may-exist", "add-port",
++                  'test', 'eth1']),
++            call(['ip', 'link', 'set', 'eth1', 'up'])
++        ])
++        self.assertTrue(log.call_count == 1)
++
++    @patch.object(ovs, 'log')
++    @patch('subprocess.check_call')
++    def test_del_bridge_port(self, check_call, log):
++        ovs.del_bridge_port('test', 'eth1')
++        check_call.assert_has_calls([
++            call(["ovs-vsctl", "--", "--if-exists", "del-port",
++                  'test', 'eth1']),
++            call(['ip', 'link', 'set', 'eth1', 'down'])
++        ])
++        self.assertTrue(log.call_count == 1)
++
++    @patch.object(ovs, 'log')
++    @patch('subprocess.check_call')
++    def test_set_manager(self, check_call, log):
++        ovs.set_manager('manager')
++        check_call.assert_called_with(['ovs-vsctl', 'set-manager',
++                                       'ssl:manager'])
++        self.assertTrue(log.call_count == 1)
++
++    @patch.object(ovs, 'log')
++    @patch('os.path.exists')
++    def test_get_certificate_good_cert(self, exists, log):
++        exists.return_value = True
++        with patch_open() as (mock_open, mock_file):
++            mock_file.read.return_value = GOOD_CERT
++            self.assertEqual(ovs.get_certificate(), PEM_ENCODED)
++        self.assertTrue(log.call_count == 1)
++
++    @patch.object(ovs, 'log')
++    @patch('os.path.exists')
++    def test_get_certificate_bad_cert(self, exists, log):
++        exists.return_value = True
++        with patch_open() as (mock_open, mock_file):
++            mock_file.read.return_value = BAD_CERT
++            self.assertRaises(RuntimeError, ovs.get_certificate)
++        self.assertTrue(log.call_count == 1)
++
++    @patch.object(ovs, 'log')
++    @patch('os.path.exists')
++    def test_get_certificate_missing(self, exists, log):
++        exists.return_value = False
++        self.assertIsNone(ovs.get_certificate())
++        self.assertTrue(log.call_count == 1)
++
++    @patch.object(ovs, 'service')
++    def test_full_restart(self, service):
++        ovs.full_restart()
++        service.assert_called_with('force-reload-kmod', 'openvswitch-switch')

Charm Helpers

Merge lp:~james-page/charm-helpers/ovs-helper into lp:charm-helpers

Commit message

Description of the change

Preview Diff

Subscribers