Merge lp:~jason-hobbs/maas/ucs-xml-api into lp:~maas-committers/maas/trunk

1 === added file 'etc/maas/templates/power/ucsm.template'
2 --- etc/maas/templates/power/ucsm.template 1970-01-01 00:00:00 +0000
3 +++ etc/maas/templates/power/ucsm.template 2014-04-29 13:55:35 +0000
4 @@ -0,0 +1,8 @@
5 +# -*- mode: shell-script -*-
6 +#
7 +# Control a system via Cisco UCS Manager XML API.
8 +
9 +python - << END
10 +from provisioningserver.custom_hardware.ucsm import power_control_ucsm
11 +power_control_ucsm('{{power_address}}', '{{power_user}}', '{{power_pass}}', '{{uuid}}', '{{power_change}}')
12 +END

This is "hope quoting" (as Gavin calls it) and ripe for abuse with unchecked inputs. See the conversation in https://code.launchpad.net/~blake-rouse/maas/virsh-probe-and-enlist/+merge/216632

This is half a review. I have to go out, and I'll finish it later.

As for splitting it up, for one you could have added an empty add_ucsm()
function to NodeGroup, building the API calls around it, and writing
tests in which you mock the behaviour of add_ucsm().

[1]

Hope-quoting, as Julian has mentioned.

[2]

+    def add_ucsm(self, url, username, password):

This isn't a great name for this method. However, I see that it's
consistent with what's gone before.

[3]

+        children = map(Element, children_tags)
+        request_data = make_request_data('foo', fields, children)

Bear in mind that map() is lazy in Python 3. Will make_request_data()
deal with that? If not, make it explicit with a list comprehension.

[4]

+        self.assertEqual(set(children_tags), set([e.tag for e in root[:]]))

The list-comprehension is not needed:

        self.assertEqual(set(children_tags), set(e.tag for e in root[:]))

Not sure the slice is either?

        self.assertEqual(set(children_tags), set(e.tag for e in root))

Having said that, assertItemsEqual() is useful here:

        self.assertItemsEqual(children_tags, (e.tag for e in root))

[5]

+        self.assertRaises(UCSM_XML_API_Error, lambda: parse_response(xml))

assertRaises() allows arguments, so you can write this as:

        self.assertRaises(UCSM_XML_API_Error, parse_response, xml)

[6]

+    def make_test_api(self, url='http://url', user='u', password='p',
+                      cookie='foo', mock_call=True):
+
+        api = make_test_api(url, user, password, cookie)
+
+        if mock_call:
+            mock = self.patch(api, '_call')
+        else:
+            mock = None
+
+        return api, mock

Boolean arguments are a bit smelly, as is returning irrelevant
things. Can you split this into two methods?

    def make_test_api(
            self, url='http://url', user='u', password='p', cookie='foo'):
        return make_test_api(url, user, password, cookie)

    def make_test_api(
            self, url='http://url', user='u', password='p', cookie='foo'):
        api = make_test_api(url, user, password, cookie)
        return api, self.patch(api, '_call')

To be continued...

There's lots of good stuff here, well-factored, and with a very nice breakdown into coherent, low-complexity functions. But there's just so much of it that I can't complete this review all in one go!

I'll give you the notes I have now. I reviewed up to UCSM_XML_API, moving from the top of the diff downwards, except I skipped its tests for now.

.

The docstring for probe_and_enlist_hardware needs updating, and probe_and_enlist_ucsm should probably be a bit more specific about the hardware types it supports.

.

Typo: Cicso.

.

The test case for make_request_data is called TestGetRequestData — uncompleted change of name?

.

In TestUCSMXMLAPIError, I appreciate the sentiment of raising the exception and catching it before testing its properties, but I don't see it buying us anything: it basically tests that “raise” and assertRaises pass on the exception they received.

(Also, “raise” is a keyword, not a function — no parentheses needed when using it.)

.

In TestParseResponse.test_error:

        self.assertRaises(UCSM_XML_API_Error, lambda: parse_response(xml))

No need for the lambda. You can just pass additional arguments for the callable (as well as keyword arguments) to assertRaises:

        self.assertRaises(UCSM_XML_API_Error, parse_response, xml)

.

Unless you're in the process of adding more methods to APITestCase, I'd just drop it as a base class. Using inheritance to add features seems like a small thing, but consider how many test-case classes are suddenly tied together in a vague relationship! And once in place, these relationships tend to grow.

What to do with APITestCase.make_test_api? You could just pass the test-case object to the global make_test_api, and maybe skip the patching if testcase is None.

Actually, I'd probably just leave out the option to suppress the patching, and accept a slightly special case in the one call site where you use that option. This kind of boolean argument is almost always a constant, which means you've really got two similar-but-different functions, and the caller already knows exactly which one they want. You're almost always better off writing the two forms as separate functions. Often, one can call the other, or you can extract meaningful parts that will be called by both.

.

UCSM_XML_API is quite a test for naming conventions! The underscores are unusual in a class name for us, but these are unusual circumstances so you won't hear me complain. :)

I do wish I had a clearer understanding of the “children” that are being mentioned throughout. I understand that it's a domain term, so I'd probably need to read up on the UCSM API in order to understand. A very brief note might make it easier to deal with though. Setting the right expectations often helps prevents disasters.

Looks like you're getting multiple reviews. One of the risks of large branches! Reviewers' ability to spot problems drops off sharply after the first few hundred lines, so it's probably for the best. (The “sweet spot” for reviews seems to lie around 200 lines).

Some more notes:

.

Could you document what RO_KEYS and strip_ro_keys mean? I see how they fit together, but I lack context about the wider problem it solves.

.

In get_power_command, there's an if/elif without a final ‘else.’ So an unknown power state will just result in a None, which could produce failures that are hard to diagnose. You could avoid that hazard by adding an “else: raise AssertionError(...)” at the end.

.

Some identifiers have abbreviations whose meanings are a complete mystery to me, such as dn and bp. Long, verbose names can be unpleasant, but names with unknown meanings can be a positive menace!

.

In power_control_ucsm, you do:

        servers = get_servers(api, uuid)
        server = servers[0]

Why server[0]? Are you taking an arbitrary one? The latest? Something else? Would be worth a comment.

Or, if you are absolutely 100% totally completely certainly positive that there is exactly one item in that list, pattern-matching lets you write the assignment as:

        [server] = get_servers(api, uuid)

.

You document power_control_ucsm as “Power control template handler.” I think I sort of understand all of that, except the “template.” How does that word fit in? It may help to summarise what the function does in the imperative.

.

Similarly, probe_and_enlist_ucsm is documented as “Probe and enlist request handler.” I *think* this fails to state what the function does in the imperative, but I'm not sure. It's ambiguous: there is a request handler, and this function probes and enlists it? Or is the function a “Probe-and-enlist request handler”? If so, where does the request come in?

.

For the addition to src/provisioningserver/power_schema.py, might I suggest "double quotes" around free-form text? I'm not saying that “URL for XML API” should be changed to “XML API's URL” for example, but if anyone tried, the apostrophe would break the strings quoting!

.

In TestAddUCSM, a disadvantage of passing highly predictable fixed strings like “username” and “password” is that the test doesn't rule out silly bugs like “always passes ‘username’ instead of the actual user name.” Not saying that that is terribly likely in any given instance, but if we build the right habits, we won't need to make the mistake at all. These mistakes can happen in TDD when you try to write the simplest stub that will satisfy a test.

By the way, we deviate from PEP-8 in formatting. When linebreaking (except in def/class definitions) we only indent by 4 columns. We don't align to the opening brace/bracket/parenthesis.

So, where you wrote

        self.assertThat(mock, MockCalledOnceWith('configResolveClass', fields,
                                                 ANY))

...we might write:

        self.assertThat(
            mock, MockCalledOnceWith('configResolveClass', fields, ANY))

When we need to line-break an arguments list, we do make it a rule to start the first argument on a fresh line.

.

In further bikeshedding, method names “login” and “logout” look a bit strange for me — we generally prefer our function names to start with verbs, but these are the nouns.

.

At this point I'm a bit stuck. I'd like to review the tests in more detail, but it might not be much use because of my limited understanding of the API code's higher-level meaning. It would be nice to have that little bit more explanation!

Neat, nice stuff. My comments are almost all about style, not approach.
I think my only real problems with this branch are [1] and the lack of
commentary about how things work. If it's biting me now, it'll bite you
in 3 months when you've long moved on from this.

[7]

+        self.assertEqual([filter_element], in_filters[0][:])

What's the [:] slice for?

[8]

+    def test_parameters(self):
...
+        in_configs = mock.call_args[0][2]
+        self.assertEqual(config_items, in_configs[0][:])

I don't know what this is demonstrating. Can you add a comment, or
perhaps make it more intrinsically clear. There's a mock.ANY object
which you can use when you don't care what an argument is (e.g. so you
can use one of the Mock* matchers but only test one argument of
several), which may or may not be useful here.

[9]

+        self.assertThat(mock_make_request_data,
+                        MockCalledOnceWith(name, fields, children))

Fwiw, and it's a minor thing, the MAAS core team (former Red Squad) long
ago chose to not indent after braces like this. For one, it gets silly
when the function name is long and all the arguments get smashed against
the right margin. Prefer starting a new line:

        self.assertThat(
            mock_make_request_data,
            MockCalledOnceWith(name, fields, children))

For functions, it might be worth indenting twice:

    def this_is_a_function(
            with_a_long, argument_list, foo, bar):
        do_something(...)

or using a docstring or comment to delineate arguments from body:

    def this_is_a_function(
        with_a_long, argument_list, foo, bar):
        """Docstring, oh docstring, where art thou o docstring?"""
        do_something(...)

I'm definitely not going to block on this though.

[10]

+    def test_uses_uuid(self):
+        uuid = factory.getRandomUUID()
+        api = make_test_api()
+        mock = self.patch(api, 'config_resolve_class')
+        get_servers(api, uuid)
+        filters = mock.call_args[0][1]
+        attrib = {'class': 'computeItem', 'property': 'uuid', 'value': uuid}
+        self.assertEqual(attrib, filters[0].attrib)

There could have been multiple calls to config_resolve_class. Consider
using MockCalledOnceWith() and mock.ANY here, and elsewhere, to tighten
up the test, and make the test clearer and more concise.

[11]

+    def login(self):
...
+        UCS Manager allows a limited number of active cookies at any
+        point in time, so it's important to free the cookie up when
+        finished by logging out via the ``logout`` method.

Consider making UCSM_XML_API a context manager, where __enter__ logs-in,
and __exit__ logs-out.

[12]

+    def config_resolve_class(self, class_id, filters=None):
+        """Issue a configResolveClass request."""

What does configResolveClass do? Either comment here, or provide a
(stable, preferably) link to the UCS API documentation. Extra beer for
both. The same goes for most of the other methods, if not all.

[13]

+def get_servers(api, uuid=None):
+    """Retrieve a list of servers from the UCS Manager."""
+    if uuid:
+        attrs = {'class': 'computeItem', 'property': 'uuid', 'value': uuid}
+        fil...

I've addressed what I think are the critical feedback items, along with some others. There is time sensitivity in getting this in, so I want to repost for review again before all of the feedback items are addressed. I will post a summary of what is left to address, after I get my laptop on a charger!

Here's the review comments I haven't addressed yet.

From Jeroen:
In TestUCSMXMLAPIError, I appreciate the sentiment of raising the exception and catching it before testing its properties, but I don't see it buying us anything: it basically tests that “raise” and assertRaises pass on the exception they received.

In TestAddUCSM, a disadvantage of passing highly predictable fixed strings like “username” and “password” is that the test doesn't rule out silly bugs like “always passes ‘username’ instead of the actual user name.” Not saying that that is terribly likely in any given instance, but if we build the right habits, we won't need to make the mistake at all. These mistakes can happen in TDD when you try to write the simplest stub that will satisfy a test.

By the way, we deviate from PEP-8 in formatting. When linebreaking (except in def/class definitions) we only indent by 4 columns. We don't align to the opening brace/bracket/parenthesis.

In further bikeshedding, method names “login” and “logout” look a bit strange for me — we generally prefer our function names to start with verbs, but these are the nouns.

From Gavin:
[8], [9], [10], [11], [13], [14]

Great, thanks. I see no reason why this shouldn't be allowed in at this point. I think the remaining things are pretty much all non-essential cleanups that will just happen organically if they bother us again.

The attempt to merge lp:~jason-hobbs/maas/ucs-xml-api into lp:maas failed. Below is the output from the failed tests.

Ign http://security.ubuntu.com trusty-security InRelease
Get:1 http://security.ubuntu.com trusty-security Release.gpg [933 B]
Get:2 http://security.ubuntu.com trusty-security Release [58.5 kB]
Ign http://nova.clouds.archive.ubuntu.com trusty InRelease
Ign http://nova.clouds.archive.ubuntu.com trusty-updates InRelease
Hit http://nova.clouds.archive.ubuntu.com trusty Release.gpg
Get:3 http://nova.clouds.archive.ubuntu.com trusty-updates Release.gpg [933 B]
Hit http://nova.clouds.archive.ubuntu.com trusty Release
Get:4 http://nova.clouds.archive.ubuntu.com trusty-updates Release [58.5 kB]
Get:5 http://security.ubuntu.com trusty-security/main Sources [11.3 kB]
Hit http://nova.clouds.archive.ubuntu.com trusty/main Sources
Get:6 http://security.ubuntu.com trusty-security/universe Sources [1,785 B]
Hit http://nova.clouds.archive.ubuntu.com trusty/universe Sources
Get:7 http://security.ubuntu.com trusty-security/main amd64 Packages [36.5 kB]
Hit http://nova.clouds.archive.ubuntu.com trusty/main amd64 Packages
Hit http://nova.clouds.archive.ubuntu.com trusty/universe amd64 Packages
Hit http://nova.clouds.archive.ubuntu.com trusty/main Translation-en
Get:8 http://security.ubuntu.com trusty-security/universe amd64 Packages [9,525 B]
Hit http://nova.clouds.archive.ubuntu.com trusty/universe Translation-en
Get:9 http://security.ubuntu.com trusty-security/main Translation-en [16.2 kB]
Get:10 http://security.ubuntu.com trusty-security/universe Translation-en [5,005 B]
Ign http://nova.clouds.archive.ubuntu.com trusty/main Translation-en_US
Ign http://security.ubuntu.com trusty-security/main Translation-en_US
Ign http://nova.clouds.archive.ubuntu.com trusty/universe Translation-en_US
Ign http://security.ubuntu.com trusty-security/universe Translation-en_US
Get:11 http://nova.clouds.archive.ubuntu.com trusty-updates/main Sources [19.4 kB]
Get:12 http://nova.clouds.archive.ubuntu.com trusty-updates/universe Sources [9,282 B]
Get:13 http://nova.clouds.archive.ubuntu.com trusty-updates/main amd64 Packages [55.4 kB]
Get:14 http://nova.clouds.archive.ubuntu.com trusty-updates/universe amd64 Packages [26.2 kB]
Get:15 http://nova.clouds.archive.ubuntu.com trusty-updates/main Translation-en [25.3 kB]
Get:16 http://nova.clouds.archive.ubuntu.com trusty-updates/universe Translation-en [13.1 kB]
Ign http://nova.clouds.archive.ubuntu.com trusty-updates/main Translation-en_US
Ign http://nova.clouds.archive.ubuntu.com trusty-updates/universe Translation-en_US
Fetched 348 kB in 1s (285 kB/s)
Reading package lists...
sudo DEBIAN_FRONTEND=noninteractive apt-get -y \
     --no-install-recommends install apache2 bind9 bind9utils build-essential bzr-builddeb curl daemontools debhelper dh-apport distro-info dnsutils firefox freeipmi-tools ipython isc-dhcp-common libjs-raphael libjs-yui3-full libjs-yui3-min libpq-dev make postgresql python-amqplib python-bzrlib python-celery python-convoy python-crochet python-cssselect python-curtin python-dev python-distro-info python-django python-django-piston python-django-south python-djorm-ext-pgarray python-docutils python-...

I haven't gone through the changes but Jeroen has, and I doubt I can add much.