Skip to content
This repository has been archived by the owner on Nov 9, 2020. It is now read-only.

Commit

Permalink
Handling corner cases to add,remove, replace vms in a tenant
Browse files Browse the repository at this point in the history 
1. Ensuring VM already in a tenant cannot be added to another tenant through tenant_create, tenant_vm_add and tenant_vm_replace methods
2. Ensuring VM list in tenant_vm_add, tenant_vm_replace, tenant_vm_rm cannot be empty and doesn’t contain duplicates
3. Ensuring existing VM in a tenant cannot be replaced back into same tenant
4. Sequenced parameter processing and error message simplification

Resolves: #930, #994
  • Loading branch information
pshahzeb committed Mar 9, 2017
1 parent 6fea2ba commit 6c97da0
Show file tree
Hide file tree
Showing 3 changed files with 126 additions and 61 deletions.
17 changes: 16 additions & 1 deletion esx_service/cli/vmdkops_admin_test.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -640,6 +640,15 @@ def test_tenant_vm(self):
actual_output = rows
self.assertEqual(expected_output, actual_output)

# Trying to create tenant with duplicate vm names
error_info, tenant_dup = auth_api._tenant_create(
name="Tenant_dup",
description="tenant_duplicate",
vm_list=[self.vm1_name, self.vm1_name],
privileges=[])

self.assertEqual(error_code.ErrorCode.VM_DUPLICATE, error_info.code)

# tenant vm add to add two VMs to the tenant
error_info = auth_api._tenant_vm_add(
name=self.tenant1_name,
Expand Down Expand Up @@ -672,7 +681,13 @@ def test_tenant_vm(self):
vm_list=[self.vm1_name])
self.assertEqual(error_code.ErrorCode.VM_IN_ANOTHER_TENANT, error_info.code)

# tenant rm to remove the tenant3
# Replace should fail since vm1 is already a part of tenant1
error_info = auth_api._tenant_vm_replace(
name=tenant3.name,
vm_list=[self.vm1_name])
self.assertEqual(error_code.ErrorCode.VM_IN_ANOTHER_TENANT, error_info.code)

# remove the tenant3
error_info = auth_api._tenant_rm(name=tenant3.name)
self.assertEqual(None, error_info)

Expand Down
160 changes: 103 additions & 57 deletions esx_service/utils/auth_api.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -282,36 +282,48 @@ def is_tenant_name_valid(name):
else:
return False

def is_vm_duplicate(vm_list):
"""
Check if vm names in vm_list contain duplicates
"""

if len(vm_list) != len(set(vm_list)):
error_info = error_code.generate_error_info(ErrorCode.VM_DUPLICATE, vm_list)
logging.error(error_info.msg)
return error_info

return None

def _tenant_create(name, description="", vm_list=None, privileges=None):
""" API to create a tenant """
logging.debug("_tenant_create: name=%s description=%s vm_list=%s privileges=%s", name, description, vm_list, privileges)
if not is_tenant_name_valid(name):
error_info = error_code.generate_error_info(ErrorCode.TENANT_NAME_INVALID, name, VALID_TENANT_NAME_REGEXP)
return error_info, None

error_msg, vms, not_found_vms = generate_tuple_from_vm_list(vm_list)
if error_msg:
not_found_vm_list = ",".join(not_found_vms)
error_info = error_code.generate_error_info(ErrorCode.VM_NOT_FOUND, not_found_vm_list)
return error_info, None

# if param "description" is not set by caller, the default value is empty string
if not description:
description = ""

error_info, tenant_list = get_tenant_list_from_db()

if error_info:
return error_info, None
# VM list can be empty during tenant create. Validate only if it exists
vms_uuid_list = []
if vm_list:
error_info = is_vm_duplicate(vm_list)
if error_info:
return error_info, None

vms_uuid_list = [(vm_id) for (vm_id, vm_name) in vms]
error_msg, vms, not_found_vms = generate_tuple_from_vm_list(vm_list)
if error_msg:
not_found_vm_list = ",".join(not_found_vms)
error_info = error_code.generate_error_info(ErrorCode.VM_NOT_FOUND, not_found_vm_list)
return error_info, None

if vms_uuid_list and any_vm_part_of_another_tenant(vms_uuid_list, tenant_list):
error_info = error_code.generate_error_info(ErrorCode.VM_IN_ANOTHER_TENANT, vm_list, name)
logging.error("_tenant_create: %s", error_info.msg)
return error_info, None
error_info = vm_in_tenant(name, vms)
if error_info:
return error_info, None

logging.debug("_tenant_create: vms=%s", vms)
logging.debug("_tenant_create: vms=%s", vms)
vms_uuid_list = [(vm_id) for (vm_id, vm_name) in vms]

error_info, tenant = create_tenant_in_db(
name=name,
Expand Down Expand Up @@ -398,36 +410,57 @@ def _tenant_ls(name=None):
error_info, tenant_list = get_tenant_list_from_db(name)
return error_info, tenant_list

def any_vm_already_exist(existing_vms, vms):
def vm_already_exist(name, vms):
"""
Check whehter any vm in @param "vms" already exist in @param "existing_vms"
Check whether any vm in @param "vms" already exists in tenant @param "name"
"""
for vm in vms:
if vm[0] in existing_vms:
return True
error_info, existing_vms = _tenant_vm_ls(name)
if error_info:
return error_info

return False
for vm_id, vm_name in vms:
if vm_id in existing_vms:
error_info = error_code.generate_error_info(ErrorCode.VM_ALREADY_IN_TENANT,
vm_name, name)
logging.error(error_info.msg)
return error_info

return None

def any_vm_not_exist(existing_vms, vms):
def vm_not_exist(name, vms):
"""
Check whehter any vm in @param "vms" does not exist in @param "existing_vms"
Check whether any vm in @param "vms" does not exist in tenant @param "name"
"""
for vm in vms:
if not vm[0] in existing_vms:
return True
error_info, existing_vms = _tenant_vm_ls(name)
if error_info:
return error_info

return False
for vm_id, vm_name in vms:
if not vm_id in existing_vms:
error_info = error_code.generate_error_info(ErrorCode.VM_NOT_IN_TENANT, vm_name, name)
logging.error(error_info.msg)
return error_info

return None


def any_vm_part_of_another_tenant(vm_list, tenant_list):
def vm_in_tenant(name, vms):
"""
Check if any vm in vm_list is a part of any tenant in tenant_list
Check if any vm in @param "vms" is a part of another tenant
"""
error_info, tenant_list = get_tenant_list_from_db()
if error_info:
return error_info

for tenant in tenant_list:
for vm_uuid in vm_list:
if vm_uuid in tenant.vms:
return True
return False
for vm_id, vm_name in vms:
if vm_id in tenant.vms:
error_info = error_code.generate_error_info(ErrorCode.VM_IN_ANOTHER_TENANT,
vm_name, name)
logging.error(error_info.msg)
return error_info

return None

def _tenant_vm_add(name, vm_list):
""" API to add vms for a tenant """
Expand All @@ -440,30 +473,26 @@ def _tenant_vm_add(name, vm_list):
error_info = error_code.generate_error_info(ErrorCode.TENANT_NOT_EXIST, name)
return error_info

error_msg, vms, not_found_vms = generate_tuple_from_vm_list(vm_list)
if error_msg:
not_found_vm_list = ",".join(not_found_vms)
error_info = error_code.generate_error_info(ErrorCode.VM_NOT_FOUND, not_found_vm_list)
if not vm_list:
error_info = error_code.generate_error_info(ErrorCode.VM_LIST_EMPTY)
return error_info

error_info, existing_vms = _tenant_vm_ls(name)
error_info = is_vm_duplicate(vm_list)
if error_info:
return error_info

if any_vm_already_exist(existing_vms, vms):
error_info = error_code.generate_error_info(ErrorCode.VM_ALREADY_IN_TENANT, vm_list, name)
error_msg, vms, not_found_vms = generate_tuple_from_vm_list(vm_list)
if error_msg:
not_found_vm_list = ",".join(not_found_vms)
error_info = error_code.generate_error_info(ErrorCode.VM_NOT_FOUND, not_found_vm_list)
return error_info

error_info, tenant_list = get_tenant_list_from_db()

error_info = vm_already_exist(name, vms)
if error_info:
return error_info

vms_uuid_list = [(vm_id) for (vm_id, vm_name) in vms]

if vms_uuid_list and any_vm_part_of_another_tenant(vms_uuid_list, tenant_list):
error_info = error_code.generate_error_info(ErrorCode.VM_IN_ANOTHER_TENANT, vm_list, name)
logging.error("_tenant_vm_add: %s", error_info.msg)
error_info = vm_in_tenant(name, vms)
if error_info:
return error_info

error_info, auth_mgr = get_auth_mgr_object()
Expand All @@ -472,6 +501,7 @@ def _tenant_vm_add(name, vm_list):
return error_info

logging.debug("_tenant_vm_add: vms=%s", vms)
vms_uuid_list = [(vm_id) for (vm_id, vm_name) in vms]
error_msg = tenant.add_vms(auth_mgr.conn, vms_uuid_list)
if error_msg:
error_info = error_code.generate_error_info(ErrorCode.INTERNAL_ERROR, error_msg)
Expand All @@ -488,6 +518,14 @@ def _tenant_vm_rm(name, vm_list):
error_info = error_code.generate_error_info(ErrorCode.TENANT_NOT_EXIST, name)
return error_info

if not vm_list:
error_info = error_code.generate_error_info(ErrorCode.VM_LIST_EMPTY)
return error_info

error_info = is_vm_duplicate(vm_list)
if error_info:
return error_info

error_msg, vms, not_found_vms = generate_tuple_from_vm_list(vm_list)
if error_msg:
not_found_vm_list = ",".join(not_found_vms)
Expand All @@ -496,14 +534,10 @@ def _tenant_vm_rm(name, vm_list):

logging.debug("_tenant_vm_rm: vms=%s", vms)

error_info, existing_vms = _tenant_vm_ls(name)
error_info = vm_not_exist(name, vms)
if error_info:
return error_info

if any_vm_not_exist(existing_vms, vms):
error_info = error_code.generate_error_info(ErrorCode.VM_NOT_IN_TENANT, vm_list, name)
return error_info

error_info, auth_mgr = get_auth_mgr_object()
if error_info:
return error_info
Expand Down Expand Up @@ -531,10 +565,6 @@ def _tenant_vm_ls(name):
def _tenant_vm_replace(name, vm_list):
""" API to replace vms for a tenant """
logging.debug("_tenant_vm_replace: name=%s vm_list=%s", name, vm_list)
if not vm_list:
error_info = error_code.generate_error_info(ErrorCode.REPLACE_VM_EMPTY)
return error_info

error_info, tenant = get_tenant_from_db(name)
if error_info:
return error_info
Expand All @@ -543,13 +573,29 @@ def _tenant_vm_replace(name, vm_list):
error_info = error_code.generate_error_info(ErrorCode.TENANT_NOT_EXIST, name)
return error_info

if not vm_list:
error_info = error_code.generate_error_info(ErrorCode.REPLACE_VM_EMPTY)
return error_info

error_info = is_vm_duplicate(vm_list)
if error_info:
return error_info

error_msg, vms, not_found_vms = generate_tuple_from_vm_list(vm_list)

if error_msg:
not_found_vm_list = ",".join(not_found_vms)
error_info = error_code.generate_error_info(ErrorCode.VM_NOT_FOUND, not_found_vm_list)
return error_info

error_info = vm_already_exist(name, vms)
if error_info:
return error_info

error_info = vm_in_tenant(name, vms)
if error_info:
return error_info

logging.debug("_tenant_vm_replace: vms=%s", vms)
error_info, auth_mgr = get_auth_mgr_object()
if error_info:
Expand Down
10 changes: 7 additions & 3 deletions esx_service/utils/error_code.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,6 +31,8 @@ class ErrorCode:
VM_ALREADY_IN_TENANT = 103
VM_NOT_IN_TENANT = 104
VM_IN_ANOTHER_TENANT = 105
VM_LIST_EMPTY = 106
VM_DUPLICATE = 107
# VM related error code end

# Privilege related error code start
Expand Down Expand Up @@ -68,9 +70,11 @@ class ErrorCode:

ErrorCode.VM_NOT_FOUND : "Cannot find vm {0}",
ErrorCode.REPLACE_VM_EMPTY : "Replace VM cannot be empty",
ErrorCode.VM_ALREADY_IN_TENANT : "Some VMs in {0} have already been associated with tenant '{1}', cannot add them again",
ErrorCode.VM_NOT_IN_TENANT : "Some VMs in {0} have not been associated with tenant '{1}', cannot remove them",
ErrorCode.VM_IN_ANOTHER_TENANT : "Some VMs in {0} have already been associated with another tenants, can't add them to tenant '{1}'",
ErrorCode.VM_ALREADY_IN_TENANT : "VM '{0}' has already been associated with tenant '{1}', cannot add it again",
ErrorCode.VM_NOT_IN_TENANT : "VM '{0}' has not been associated with tenant '{1}', cannot remove it",
ErrorCode.VM_IN_ANOTHER_TENANT : "VM '{0}' has already been associated with another tenant, can't add it to tenant '{1}'",
ErrorCode.VM_LIST_EMPTY : "VM list cannot be empty",
ErrorCode.VM_DUPLICATE : "VMs {0} contain duplicates, they should be unique",

ErrorCode.PRIVILEGE_NOT_FOUND : "No privilege exists for ({0}, {1})",
ErrorCode.PRIVILEGE_ALREADY_EXIST : "Privilege for ({0}, {1}) already exists",
Expand Down

0 comments on commit 6c97da0

Please sign in to comment.