# Copyright (c) 2014 VMware, Inc. # All Rights Reserved. # # Licensed under the Apache License, Version 2.0 (the "License"); you may # not use this file except in compliance with the License. You may obtain # a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, WITHOUT # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the # License for the specific language governing permissions and limitations # under the License. """ Classes defining read and write handles for image transfer. This module defines various classes for reading and writing files including VMDK files in VMware servers. It also contains a class to read images from glance server. """ import logging import ssl import time from oslo_utils import excutils from oslo_utils import netutils import requests import urllib.parse as urlparse from urllib3 import connection as httplib from oslo_vmware._i18n import _ from oslo_vmware import exceptions from oslo_vmware import vim_util LOG = logging.getLogger(__name__) MIN_PROGRESS_DIFF_TO_LOG = 25 MIN_UPDATE_INTERVAL = 60 READ_CHUNKSIZE = 65536 USER_AGENT = 'OpenStack-ESX-Adapter' class FileHandle(object): """Base class for VMware server file (including VMDK) access over HTTP. This class wraps a backing file handle and provides utility methods for various sub-classes. """ def __init__(self, file_handle): """Initializes the file handle. :param file_handle: backing file handle """ self._eof = False self._file_handle = file_handle def _create_connection(self, url, method, cacerts=False, ssl_thumbprint=None, cookies=None): _urlparse = urlparse.urlparse(url) scheme, netloc, path, params, query, fragment = _urlparse if scheme == 'http': conn = httplib.HTTPConnection(netloc) elif scheme == 'https': conn = httplib.HTTPSConnection(netloc) cert_reqs = None # cacerts can be either True or False or contain # actual certificates. If it is a boolean, then # we need to set cert_reqs and clear the cacerts if isinstance(cacerts, bool): if cacerts: cert_reqs = ssl.CERT_REQUIRED else: cert_reqs = ssl.CERT_NONE cacerts = requests.certs.where() conn.set_cert(ca_certs=cacerts, cert_reqs=cert_reqs, assert_fingerprint=ssl_thumbprint) else: excep_msg = _("Invalid scheme: %s.") % scheme LOG.error(excep_msg) raise ValueError(excep_msg) if query: path = path + '?' + query conn.putrequest(method, path) conn.putheader('User-Agent', USER_AGENT) if cookies: vim_cookie = self._build_vim_cookie_header(cookies) conn.putheader('Cookie', vim_cookie) return conn def _create_read_connection(self, url, cookies=None, cacerts=False, ssl_thumbprint=None): LOG.debug("Opening URL: %s for reading.", url) try: conn = self._create_connection(url, 'GET', cacerts, ssl_thumbprint, cookies=cookies) conn.endheaders() return conn except Exception as excep: # TODO(vbala) We need to catch and raise specific exceptions # related to connection problems, invalid request and invalid # arguments. excep_msg = _("Error occurred while opening URL: %s for " "reading.") % url LOG.exception(excep_msg) raise exceptions.VimException(excep_msg, excep) def _create_write_connection(self, method, url, file_size=None, cookies=None, overwrite=None, content_type=None, cacerts=False, ssl_thumbprint=None): """Create HTTP connection to write to VMDK file.""" LOG.debug("Creating HTTP connection to write to file with " "size = %(file_size)d and URL = %(url)s.", {'file_size': file_size, 'url': url}) try: conn = self._create_connection(url, method, cacerts, ssl_thumbprint, cookies=cookies) if file_size: conn.putheader('Content-Length', str(file_size)) if overwrite: conn.putheader('Overwrite', overwrite) if content_type: conn.putheader('Content-Type', content_type) conn.endheaders() return conn except requests.RequestException as excep: excep_msg = _("Error occurred while creating HTTP connection " "to write to VMDK file with URL = %s.") % url LOG.exception(excep_msg) raise exceptions.VimConnectionException(excep_msg, excep) def close(self): """Close the file handle.""" try: self._file_handle.close() except Exception: LOG.warning("Error occurred while closing the file handle", exc_info=True) def _build_vim_cookie_header(self, vim_cookies): """Build ESX host session cookie header.""" # As returned from DatastoreURL.get_transfer_ticket if isinstance(vim_cookies, str): return vim_cookies for vim_cookie in vim_cookies: return vim_cookie.name + '=' + vim_cookie.value return "" def write(self, data): """Write data to the file. :param data: data to be written :raises: NotImplementedError """ raise NotImplementedError() def read(self, chunk_size): """Read a chunk of data. :param chunk_size: read chunk size :raises: NotImplementedError """ raise NotImplementedError() def tell(self): """Get the position of File Handle :return: position """ raise NotImplementedError() def fileno(self): """returns the integer file descriptor by default this is not supported and raises IOError """ raise IOError() def seek(self, offset): """sets the file's current position at the offset :param offset: offset """ pass def flush(self): """flushes the internal buffer """ pass def get_size(self): """Get size of the file to be read. :raises: NotImplementedError """ raise NotImplementedError() def _get_soap_url(self, scheme, host, port): """Returns the IPv4/v6 compatible SOAP URL for the given host.""" if netutils.is_valid_ipv6(host): return '%s://[%s]:%d' % (scheme, host, port) return '%s://%s:%d' % (scheme, host, port) class FileWriteHandle(FileHandle): """Write handle for a file in VMware server.""" def __init__(self, host_or_url, port=None, data_center_name=None, datastore_name=None, cookies=None, file_path=None, file_size=None, scheme='https', cacerts=False, thumbprint=None): """Initializes the write handle with given parameters. :param host_or_url: ESX/VC server IP address or host name or a complete DatastoreURL :param port: port for connection :param data_center_name: name of the data center in the case of a VC server :param datastore_name: name of the datastore where the file is stored :param cookies: cookies to build the vim cookie header, or a string with the prebuild vim cookie header (See: DatastoreURL.get_transfer_ticket()) :param file_path: datastore path where the file is written :param file_size: size of the file in bytes :param scheme: protocol-- http or https :param cacerts: CA bundle file to use for SSL verification :param thumbprint: expected SHA1 thumbprint of server's certificate :raises: VimConnectionException, ValueError """ if not port and not data_center_name and not datastore_name: self._url = host_or_url else: soap_url = self._get_soap_url(scheme, host_or_url, port) param_list = {'dcPath': data_center_name, 'dsName': datastore_name} self._url = '%s/folder/%s' % (soap_url, file_path) self._url = self._url + '?' + urlparse.urlencode(param_list) self._conn = self._create_write_connection('PUT', self._url, file_size, cookies=cookies, cacerts=cacerts, ssl_thumbprint=thumbprint) FileHandle.__init__(self, self._conn) def write(self, data): """Write data to the file. :param data: data to be written :raises: VimConnectionException, VimException """ try: self._file_handle.send(data) except requests.RequestException as excep: excep_msg = _("Connection error occurred while writing data to" " %s.") % self._url LOG.exception(excep_msg) raise exceptions.VimConnectionException(excep_msg, excep) except Exception as excep: # TODO(vbala) We need to catch and raise specific exceptions # related to connection problems, invalid request and invalid # arguments. excep_msg = _("Error occurred while writing data to" " %s.") % self._url LOG.exception(excep_msg) raise exceptions.VimException(excep_msg, excep) def close(self): """Get the response and close the connection.""" LOG.debug("Closing write handle for %s.", self._url) try: self._conn.getresponse() except Exception: LOG.warning("Error occurred while reading the HTTP response.", exc_info=True) super(FileWriteHandle, self).close() def __str__(self): return "File write handle for %s" % self._url class FileReadHandle(FileHandle): """Read handle for a file in VMware server.""" def __init__(self, host_or_url, port=None, data_center_name=None, datastore_name=None, cookies=None, file_path=None, scheme='https', cacerts=False, thumbprint=None): """Initializes the read handle with given parameters. :param host_or_url: ESX/VC server IP address or host name or a complete DatastoreURL :param port: port for connection :param data_center_name: name of the data center in the case of a VC server :param datastore_name: name of the datastore where the file is stored :param cookies: cookies to build the vim cookie header, or a string with the prebuild vim cookie header (See: DatastoreURL.get_transfer_ticket()) :param file_path: datastore path where the file is written :param scheme: protocol-- http or https :param cacerts: CA bundle file to use for SSL verification :param thumbprint: expected SHA1 thumbprint of server's certificate :raises: VimConnectionException, ValueError """ if not port and not data_center_name and not datastore_name: self._url = host_or_url else: soap_url = self._get_soap_url(scheme, host_or_url, port) param_list = {'dcPath': data_center_name, 'dsName': datastore_name} self._url = '%s/folder/%s' % (soap_url, file_path) self._url = self._url + '?' + urlparse.urlencode(param_list) self._conn = self._create_read_connection(self._url, cookies=cookies, cacerts=cacerts, ssl_thumbprint=thumbprint) FileHandle.__init__(self, self._conn.getresponse()) def read(self, length): """Read data from the file. :param length: amount of data to be read :raises: VimConnectionException, VimException """ try: return self._file_handle.read(length) except requests.RequestException as excep: excep_msg = _("Connection error occurred while reading data from" " %s.") % self._url LOG.exception(excep_msg) raise exceptions.VimConnectionException(excep_msg, excep) except Exception as excep: # TODO(vbala) We need to catch and raise specific exceptions # related to connection problems, invalid request and invalid # arguments. excep_msg = _("Error occurred while writing data to" " %s.") % self._url LOG.exception(excep_msg) raise exceptions.VimException(excep_msg, excep) def close(self): """Closes the connection. """ self._conn.close() super(FileReadHandle, self).close() LOG.debug("Closed File read handle for %s.", self._url) def get_size(self): return self._file_handle.getheader('Content-Length') def __str__(self): return "File read handle for %s" % self._url class VmdkHandle(FileHandle): """VMDK handle based on HttpNfcLease.""" def __init__(self, session, lease, url, file_handle): self._session = session self._lease = lease self._url = url self._last_logged_progress = 0 self._last_progress_udpate = 0 super(VmdkHandle, self).__init__(file_handle) def _log_progress(self, progress): """Log data transfer progress.""" if (progress == 100 or (progress - self._last_logged_progress >= MIN_PROGRESS_DIFF_TO_LOG)): LOG.debug("Data transfer progress is %d%%.", progress) self._last_logged_progress = progress def _get_progress(self): """Get current progress for updating progress to lease.""" pass def update_progress(self): """Updates progress to lease. This call back to the lease is essential to keep the lease alive across long running write/read operations. :raises: VimException, VimFaultException, VimAttributeException, VimSessionOverLoadException, VimConnectionException """ now = time.time() if (now - self._last_progress_udpate < MIN_UPDATE_INTERVAL): return self._last_progress_udpate = now progress = int(self._get_progress()) self._log_progress(progress) try: self._session.invoke_api(self._session.vim, 'HttpNfcLeaseProgress', self._lease, percent=progress) except exceptions.VimException: with excutils.save_and_reraise_exception(): LOG.exception("Error occurred while updating the " "write/read progress of VMDK file " "with URL = %s.", self._url) def _release_lease(self): """Release the lease :raises: VimException, VimFaultException, VimAttributeException, VimSessionOverLoadException, VimConnectionException """ LOG.debug("Getting lease state for %s.", self._url) state = self._session.invoke_api(vim_util, 'get_object_property', self._session.vim, self._lease, 'state') LOG.debug("Lease for %(url)s is in state: %(state)s.", {'url': self._url, 'state': state}) if self._get_progress() < 100: LOG.error("Aborting lease for %s due to incomplete transfer.", self._url) self._session.invoke_api(self._session.vim, 'HttpNfcLeaseAbort', self._lease) elif state == 'ready': LOG.debug("Releasing lease for %s.", self._url) self._session.invoke_api(self._session.vim, 'HttpNfcLeaseComplete', self._lease) else: LOG.debug("Lease for %(url)s is in state: %(state)s; no " "need to release.", {'url': self._url, 'state': state}) @staticmethod def _create_import_vapp_lease(session, rp_ref, import_spec, vm_folder_ref): """Create and wait for HttpNfcLease lease for vApp import.""" LOG.debug("Creating HttpNfcLease lease for vApp import into resource" " pool: %s.", rp_ref) lease = session.invoke_api(session.vim, 'ImportVApp', rp_ref, spec=import_spec, folder=vm_folder_ref) LOG.debug("Lease: %(lease)s obtained for vApp import into resource" " pool %(rp_ref)s.", {'lease': lease, 'rp_ref': rp_ref}) session.wait_for_lease_ready(lease) LOG.debug("Invoking VIM API for reading info of lease: %s.", lease) lease_info = session.invoke_api(vim_util, 'get_object_property', session.vim, lease, 'info') return lease, lease_info @staticmethod def _create_export_vm_lease(session, vm_ref): """Create and wait for HttpNfcLease lease for VM export.""" LOG.debug("Creating HttpNfcLease lease for exporting VM: %s.", vm_ref) lease = session.invoke_api(session.vim, 'ExportVm', vm_ref) LOG.debug("Lease: %(lease)s obtained for exporting VM: %(vm_ref)s.", {'lease': lease, 'vm_ref': vm_ref}) session.wait_for_lease_ready(lease) LOG.debug("Invoking VIM API for reading info of lease: %s.", lease) lease_info = session.invoke_api(vim_util, 'get_object_property', session.vim, lease, 'info') return lease, lease_info @staticmethod def _fix_esx_url(url, host, port): """Fix netloc in the case of an ESX host. In the case of an ESX host, the netloc is set to '*' in the URL returned in HttpNfcLeaseInfo. It should be replaced with host name or IP address. """ urlp = urlparse.urlparse(url) if urlp.netloc == '*': scheme, netloc, path, params, query, fragment = urlp if netutils.is_valid_ipv6(host): netloc = '[%s]:%d' % (host, port) else: netloc = "%s:%d" % (host, port) url = urlparse.urlunparse((scheme, netloc, path, params, query, fragment)) return url @staticmethod def _find_vmdk_url(lease_info, host, port): """Find the URL corresponding to a VMDK file in lease info.""" url = None ssl_thumbprint = None for deviceUrl in lease_info.deviceUrl: if deviceUrl.disk: url = VmdkHandle._fix_esx_url(deviceUrl.url, host, port) ssl_thumbprint = deviceUrl.sslThumbprint break if not url: excep_msg = _("Could not retrieve VMDK URL from lease info.") LOG.error(excep_msg) raise exceptions.VimException(excep_msg) LOG.debug("Found VMDK URL: %s from lease info.", url) return url, ssl_thumbprint class VmdkWriteHandle(VmdkHandle): """VMDK write handle based on HttpNfcLease. This class creates a vApp in the specified resource pool and uploads the virtual disk contents. """ def __init__(self, session, host, port, rp_ref, vm_folder_ref, import_spec, vmdk_size, http_method='PUT'): """Initializes the VMDK write handle with input parameters. :param session: valid API session to ESX/VC server :param host: ESX/VC server IP address or host name :param port: port for connection :param rp_ref: resource pool into which the backing VM is imported :param vm_folder_ref: VM folder in ESX/VC inventory to use as parent of backing VM :param import_spec: import specification of the backing VM :param vmdk_size: size of the backing VM's VMDK file :param http_method: either PUT or POST :raises: VimException, VimFaultException, VimAttributeException, VimSessionOverLoadException, VimConnectionException, ValueError """ self._vmdk_size = vmdk_size self._bytes_written = 0 # Get lease and its info for vApp import lease, lease_info = self._create_import_vapp_lease(session, rp_ref, import_spec, vm_folder_ref) # Find VMDK URL where data is to be written url, thumbprint = self._find_vmdk_url(lease_info, host, port) self._vm_ref = lease_info.entity cookies = session.vim.client.cookiejar # Create HTTP connection to write to VMDK URL if http_method == 'PUT': overwrite = 't' content_type = 'binary/octet-stream' elif http_method == 'POST': overwrite = None content_type = 'application/x-vnd.vmware-streamVmdk' else: raise ValueError('http_method must be either PUT or POST') self._conn = self._create_write_connection(http_method, url, vmdk_size, cookies=cookies, overwrite=overwrite, content_type=content_type, ssl_thumbprint=thumbprint) super(VmdkWriteHandle, self).__init__(session, lease, url, self._conn) def get_imported_vm(self): """"Get managed object reference of the VM created for import. :raises: VimException """ if self._get_progress() < 100: excep_msg = _("Incomplete VMDK upload to %s.") % self._url LOG.exception(excep_msg) raise exceptions.ImageTransferException(excep_msg) return self._vm_ref def tell(self): return self._bytes_written def write(self, data): """Write data to the file. :param data: data to be written :raises: VimConnectionException, VimException """ try: self._file_handle.send(data) self._bytes_written += len(data) except requests.RequestException as excep: excep_msg = _("Connection error occurred while writing data to" " %s.") % self._url LOG.exception(excep_msg) raise exceptions.VimConnectionException(excep_msg, excep) except Exception as excep: # TODO(vbala) We need to catch and raise specific exceptions # related to connection problems, invalid request and invalid # arguments. excep_msg = _("Error occurred while writing data to" " %s.") % self._url LOG.exception(excep_msg) raise exceptions.VimException(excep_msg, excep) def close(self): """Releases the lease and close the connection. :raises: VimAttributeException, VimSessionOverLoadException, VimConnectionException """ try: self._release_lease() except exceptions.ManagedObjectNotFoundException: LOG.info("Lease for %(url)s not found. No need to release.", {'url': self._url}) return except exceptions.VimException: LOG.warning("Error occurred while releasing the lease " "for %s.", self._url, exc_info=True) super(VmdkWriteHandle, self).close() LOG.debug("Closed VMDK write handle for %s.", self._url) def _get_progress(self): return float(self._bytes_written) / self._vmdk_size * 100 def __str__(self): return "VMDK write handle for %s" % self._url class VmdkReadHandle(VmdkHandle): """VMDK read handle based on HttpNfcLease.""" def __init__(self, session, host, port, vm_ref, vmdk_path, vmdk_size): """Initializes the VMDK read handle with the given parameters. During the read (export) operation, the VMDK file is converted to a stream-optimized sparse disk format. Therefore, the size of the VMDK file read may be smaller than the actual VMDK size. :param session: valid api session to ESX/VC server :param host: ESX/VC server IP address or host name :param port: port for connection :param vm_ref: managed object reference of the backing VM whose VMDK is to be exported :param vmdk_path: path of the VMDK file to be exported :param vmdk_size: actual size of the VMDK file :raises: VimException, VimFaultException, VimAttributeException, VimSessionOverLoadException, VimConnectionException """ self._vmdk_size = vmdk_size self._bytes_read = 0 # Obtain lease for VM export lease, lease_info = self._create_export_vm_lease(session, vm_ref) # find URL of the VMDK file to be read and open connection url, thumbprint = self._find_vmdk_url(lease_info, host, port) cookies = session.vim.client.cookiejar self._conn = self._create_read_connection(url, cookies=cookies, ssl_thumbprint=thumbprint) super(VmdkReadHandle, self).__init__(session, lease, url, self._conn.getresponse()) def read(self, chunk_size=READ_CHUNKSIZE): """Read a chunk of data from the VMDK file. :param chunk_size: size of read chunk :returns: the data :raises: VimException """ try: data = self._file_handle.read(chunk_size) self._bytes_read += len(data) return data except Exception as excep: # TODO(vbala) We need to catch and raise specific exceptions # related to connection problems, invalid request and invalid # arguments. excep_msg = _("Error occurred while reading data from" " %s.") % self._url LOG.exception(excep_msg) raise exceptions.VimException(excep_msg, excep) def tell(self): return self._bytes_read def close(self): """Releases the lease and close the connection. :raises: VimException, VimFaultException, VimAttributeException, VimSessionOverLoadException, VimConnectionException """ self._conn.close() try: self._release_lease() except exceptions.ManagedObjectNotFoundException: LOG.info("Lease for %(url)s not found. No need to release.", {'url': self._url}) return except exceptions.VimException: LOG.warning("Error occurred while releasing the lease " "for %s.", self._url, exc_info=True) raise finally: super(VmdkReadHandle, self).close() LOG.debug("Closed VMDK read handle for %s.", self._url) def _get_progress(self): return float(self._bytes_read) / self._vmdk_size * 100 def __str__(self): return "VMDK read handle for %s" % self._url class ImageReadHandle(object): """Read handle for glance images.""" def __init__(self, glance_read_iter): """Initializes the read handle with given parameters. :param glance_read_iter: iterator to read data from glance image """ self._glance_read_iter = glance_read_iter self._iter = self.get_next() def read(self, chunk_size): """Read an item from the image data iterator. The input chunk size is ignored since the client ImageBodyIterator uses its own chunk size. """ try: data = next(self._iter) return data except StopIteration: LOG.debug("Completed reading data from the image iterator.") return "" def get_next(self): """Get the next item from the image iterator.""" for data in self._glance_read_iter: yield data def close(self): """Close the read handle. This is a NOP. """ pass def __str__(self): return "Image read handle"