(2.10) RAPI: Make use of request_body in Reboot/Remove

[ganeti-local] / lib / config.py
diff --git a/lib/config.py b/lib/config.py

index 678e6bd..a3cd9fd 100644 (file)
--- a/lib/config.py
+++ b/lib/config.py
@@ -1,7 +1,7 @@
  #
  #
  
  #
  #
  
-# Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012 Google Inc.
+# Copyright (C) 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013 Google Inc.
  #
  # This program is free software; you can redistribute it and/or modify
  # it under the terms of the GNU General Public License as published by
  #
  # This program is free software; you can redistribute it and/or modify
  # it under the terms of the GNU General Public License as published by
@@ -34,6 +34,7 @@ much memory.
  # pylint: disable=R0904
  # R0904: Too many public methods
  
  # pylint: disable=R0904
  # R0904: Too many public methods
  
+import copy
  import os
  import random
  import logging
  import os
  import random
  import logging
@@ -50,6 +51,8 @@ from ganeti import serializer
  from ganeti import uidpool
  from ganeti import netutils
  from ganeti import runtime
  from ganeti import uidpool
  from ganeti import netutils
  from ganeti import runtime
+from ganeti import pathutils
+from ganeti import network
  
  
  _config_lock = locking.SharedLock("ConfigWriter")
  
  
  _config_lock = locking.SharedLock("ConfigWriter")
@@ -106,6 +109,17 @@ class TemporaryReservationManager:
        all_reserved.update(holder_reserved)
      return all_reserved
  
        all_reserved.update(holder_reserved)
      return all_reserved
  
+  def GetECReserved(self, ec_id):
+    """ Used when you want to retrieve all reservations for a specific
+        execution context. E.g when commiting reserved IPs for a specific
+        network.
+
+    """
+    ec_reserved = set()
+    if ec_id in self._ec_reserved:
+      ec_reserved.update(self._ec_reserved[ec_id])
+    return ec_reserved
+
    def Generate(self, existing, generate_one_fn, ec_id):
      """Generate a new resource of this type
  
    def Generate(self, existing, generate_one_fn, ec_id):
      """Generate a new resource of this type
  
@@ -167,7 +181,7 @@ class ConfigWriter:
      self._config_data = None
      self._offline = offline
      if cfg_file is None:
      self._config_data = None
      self._offline = offline
      if cfg_file is None:
-      self._cfg_file = constants.CLUSTER_CONF_FILE
+      self._cfg_file = pathutils.CLUSTER_CONF_FILE
      else:
        self._cfg_file = cfg_file
      self._getents = _getents
      else:
        self._cfg_file = cfg_file
      self._getents = _getents
@@ -176,8 +190,10 @@ class ConfigWriter:
      self._temporary_macs = TemporaryReservationManager()
      self._temporary_secrets = TemporaryReservationManager()
      self._temporary_lvs = TemporaryReservationManager()
      self._temporary_macs = TemporaryReservationManager()
      self._temporary_secrets = TemporaryReservationManager()
      self._temporary_lvs = TemporaryReservationManager()
+    self._temporary_ips = TemporaryReservationManager()
      self._all_rms = [self._temporary_ids, self._temporary_macs,
      self._all_rms = [self._temporary_ids, self._temporary_macs,
-                     self._temporary_secrets, self._temporary_lvs]
+                     self._temporary_secrets, self._temporary_lvs,
+                     self._temporary_ips]
      # Note: in order to prevent errors when resolving our name in
      # _DistributeConfig, we compute it here once and reuse it; it's
      # better to raise an error before starting to modify the config
      # Note: in order to prevent errors when resolving our name in
      # _DistributeConfig, we compute it here once and reuse it; it's
      # better to raise an error before starting to modify the config
@@ -206,18 +222,7 @@ class ConfigWriter:
      """Check if the cluster is configured.
  
      """
      """Check if the cluster is configured.
  
      """
-    return os.path.exists(constants.CLUSTER_CONF_FILE)
-
-  def _GenerateOneMAC(self):
-    """Generate one mac address
-
-    """
-    prefix = self._config_data.cluster.mac_prefix
-    byte1 = random.randrange(0, 256)
-    byte2 = random.randrange(0, 256)
-    byte3 = random.randrange(0, 256)
-    mac = "%s:%02x:%02x:%02x" % (prefix, byte1, byte2, byte3)
-    return mac
+    return os.path.exists(pathutils.CLUSTER_CONF_FILE)
  
    @locking.ssynchronized(_config_lock, shared=1)
    def GetNdParams(self, node):
  
    @locking.ssynchronized(_config_lock, shared=1)
    def GetNdParams(self, node):
@@ -265,15 +270,47 @@ class ConfigWriter:
      """
      return self._config_data.cluster.SimpleFillDP(group.diskparams)
  
      """
      return self._config_data.cluster.SimpleFillDP(group.diskparams)
  
+  def _UnlockedGetNetworkMACPrefix(self, net_uuid):
+    """Return the network mac prefix if it exists or the cluster level default.
+
+    """
+    prefix = None
+    if net_uuid:
+      nobj = self._UnlockedGetNetwork(net_uuid)
+      if nobj.mac_prefix:
+        prefix = nobj.mac_prefix
+
+    return prefix
+
+  def _GenerateOneMAC(self, prefix=None):
+    """Return a function that randomly generates a MAC suffic
+       and appends it to the given prefix. If prefix is not given get
+       the cluster level default.
+
+    """
+    if not prefix:
+      prefix = self._config_data.cluster.mac_prefix
+
+    def GenMac():
+      byte1 = random.randrange(0, 256)
+      byte2 = random.randrange(0, 256)
+      byte3 = random.randrange(0, 256)
+      mac = "%s:%02x:%02x:%02x" % (prefix, byte1, byte2, byte3)
+      return mac
+
+    return GenMac
+
    @locking.ssynchronized(_config_lock, shared=1)
    @locking.ssynchronized(_config_lock, shared=1)
-  def GenerateMAC(self, ec_id):
+  def GenerateMAC(self, net_uuid, ec_id):
      """Generate a MAC for an instance.
  
      This should check the current instances for duplicates.
  
      """
      existing = self._AllMACs()
      """Generate a MAC for an instance.
  
      This should check the current instances for duplicates.
  
      """
      existing = self._AllMACs()
-    return self._temporary_ids.Generate(existing, self._GenerateOneMAC, ec_id)
+    prefix = self._UnlockedGetNetworkMACPrefix(net_uuid)
+    gen_mac = self._GenerateOneMAC(prefix)
+    return self._temporary_ids.Generate(existing, gen_mac, ec_id)
  
    @locking.ssynchronized(_config_lock, shared=1)
    def ReserveMAC(self, mac, ec_id):
  
    @locking.ssynchronized(_config_lock, shared=1)
    def ReserveMAC(self, mac, ec_id):
@@ -289,6 +326,92 @@ class ConfigWriter:
      else:
        self._temporary_macs.Reserve(ec_id, mac)
  
      else:
        self._temporary_macs.Reserve(ec_id, mac)
  
+  def _UnlockedCommitTemporaryIps(self, ec_id):
+    """Commit all reserved IP address to their respective pools
+
+    """
+    for action, address, net_uuid in self._temporary_ips.GetECReserved(ec_id):
+      self._UnlockedCommitIp(action, net_uuid, address)
+
+  def _UnlockedCommitIp(self, action, net_uuid, address):
+    """Commit a reserved IP address to an IP pool.
+
+    The IP address is taken from the network's IP pool and marked as reserved.
+
+    """
+    nobj = self._UnlockedGetNetwork(net_uuid)
+    pool = network.AddressPool(nobj)
+    if action == constants.RESERVE_ACTION:
+      pool.Reserve(address)
+    elif action == constants.RELEASE_ACTION:
+      pool.Release(address)
+
+  def _UnlockedReleaseIp(self, net_uuid, address, ec_id):
+    """Give a specific IP address back to an IP pool.
+
+    The IP address is returned to the IP pool designated by pool_id and marked
+    as reserved.
+
+    """
+    self._temporary_ips.Reserve(ec_id,
+                                (constants.RELEASE_ACTION, address, net_uuid))
+
+  @locking.ssynchronized(_config_lock, shared=1)
+  def ReleaseIp(self, net_uuid, address, ec_id):
+    """Give a specified IP address back to an IP pool.
+
+    This is just a wrapper around _UnlockedReleaseIp.
+
+    """
+    if net_uuid:
+      self._UnlockedReleaseIp(net_uuid, address, ec_id)
+
+  @locking.ssynchronized(_config_lock, shared=1)
+  def GenerateIp(self, net_uuid, ec_id):
+    """Find a free IPv4 address for an instance.
+
+    """
+    nobj = self._UnlockedGetNetwork(net_uuid)
+    pool = network.AddressPool(nobj)
+
+    def gen_one():
+      try:
+        ip = pool.GenerateFree()
+      except errors.AddressPoolError:
+        raise errors.ReservationError("Cannot generate IP. Network is full")
+      return (constants.RESERVE_ACTION, ip, net_uuid)
+
+    _, address, _ = self._temporary_ips.Generate([], gen_one, ec_id)
+    return address
+
+  def _UnlockedReserveIp(self, net_uuid, address, ec_id, check=True):
+    """Reserve a given IPv4 address for use by an instance.
+
+    """
+    nobj = self._UnlockedGetNetwork(net_uuid)
+    pool = network.AddressPool(nobj)
+    try:
+      isreserved = pool.IsReserved(address)
+      isextreserved = pool.IsReserved(address, external=True)
+    except errors.AddressPoolError:
+      raise errors.ReservationError("IP address not in network")
+    if isreserved:
+      raise errors.ReservationError("IP address already in use")
+    if check and isextreserved:
+      raise errors.ReservationError("IP is externally reserved")
+
+    return self._temporary_ips.Reserve(ec_id,
+                                       (constants.RESERVE_ACTION,
+                                        address, net_uuid))
+
+  @locking.ssynchronized(_config_lock, shared=1)
+  def ReserveIp(self, net_uuid, address, ec_id, check=True):
+    """Reserve a given IPv4 address for use by an instance.
+
+    """
+    if net_uuid:
+      return self._UnlockedReserveIp(net_uuid, address, ec_id, check)
+
    @locking.ssynchronized(_config_lock, shared=1)
    def ReserveLV(self, lv_name, ec_id):
      """Reserve an VG/LV pair for an instance.
    @locking.ssynchronized(_config_lock, shared=1)
    def ReserveLV(self, lv_name, ec_id):
      """Reserve an VG/LV pair for an instance.
@@ -325,6 +448,35 @@ class ConfigWriter:
          lvnames.update(lv_list)
      return lvnames
  
          lvnames.update(lv_list)
      return lvnames
  
+  def _AllDisks(self):
+    """Compute the list of all Disks (recursively, including children).
+
+    """
+    def DiskAndAllChildren(disk):
+      """Returns a list containing the given disk and all of his children.
+
+      """
+      disks = [disk]
+      if disk.children:
+        for child_disk in disk.children:
+          disks.extend(DiskAndAllChildren(child_disk))
+      return disks
+
+    disks = []
+    for instance in self._config_data.instances.values():
+      for disk in instance.disks:
+        disks.extend(DiskAndAllChildren(disk))
+    return disks
+
+  def _AllNICs(self):
+    """Compute the list of all NICs.
+
+    """
+    nics = []
+    for instance in self._config_data.instances.values():
+      nics.extend(instance.nics)
+    return nics
+
    def _AllIDs(self, include_temporary):
      """Compute the list of all UUIDs and names we have.
  
    def _AllIDs(self, include_temporary):
      """Compute the list of all UUIDs and names we have.
  
@@ -457,13 +609,21 @@ class ConfigWriter:
      invalid_hvs = set(cluster.enabled_hypervisors) - constants.HYPER_TYPES
      if invalid_hvs:
        result.append("enabled hypervisors contains invalid entries: %s" %
      invalid_hvs = set(cluster.enabled_hypervisors) - constants.HYPER_TYPES
      if invalid_hvs:
        result.append("enabled hypervisors contains invalid entries: %s" %
-                    invalid_hvs)
+                    utils.CommaJoin(invalid_hvs))
      missing_hvp = (set(cluster.enabled_hypervisors) -
                     set(cluster.hvparams.keys()))
      if missing_hvp:
        result.append("hypervisor parameters missing for the enabled"
                      " hypervisor(s) %s" % utils.CommaJoin(missing_hvp))
  
      missing_hvp = (set(cluster.enabled_hypervisors) -
                     set(cluster.hvparams.keys()))
      if missing_hvp:
        result.append("hypervisor parameters missing for the enabled"
                      " hypervisor(s) %s" % utils.CommaJoin(missing_hvp))
  
+    if not cluster.enabled_disk_templates:
+      result.append("enabled disk templates list doesn't have any entries")
+    invalid_disk_templates = set(cluster.enabled_disk_templates) \
+                               - constants.DISK_TEMPLATES
+    if invalid_disk_templates:
+      result.append("enabled disk templates list contains invalid entries:"
+                    " %s" % utils.CommaJoin(invalid_disk_templates))
+
      if cluster.master_node not in data.nodes:
        result.append("cluster has invalid primary node '%s'" %
                      cluster.master_node)
      if cluster.master_node not in data.nodes:
        result.append("cluster has invalid primary node '%s'" %
                      cluster.master_node)
@@ -480,17 +640,18 @@ class ConfigWriter:
        except errors.ConfigurationError, err:
          result.append("%s has invalid nicparams: %s" % (owner, err))
  
        except errors.ConfigurationError, err:
          result.append("%s has invalid nicparams: %s" % (owner, err))
  
-    def _helper_ipolicy(owner, params, check_std):
+    def _helper_ipolicy(owner, ipolicy, iscluster):
        try:
        try:
-        objects.InstancePolicy.CheckParameterSyntax(params, check_std)
+        objects.InstancePolicy.CheckParameterSyntax(ipolicy, iscluster)
        except errors.ConfigurationError, err:
          result.append("%s has invalid instance policy: %s" % (owner, err))
        except errors.ConfigurationError, err:
          result.append("%s has invalid instance policy: %s" % (owner, err))
-
-    def _helper_ispecs(owner, params):
-      for key, value in params.items():
-        if key in constants.IPOLICY_ISPECS:
-          fullkey = "ipolicy/" + key
-          _helper(owner, fullkey, value, constants.ISPECS_PARAMETER_TYPES)
+      for key, value in ipolicy.items():
+        if key == constants.ISPECS_MINMAX:
+          for k in range(len(value)):
+            _helper_ispecs(owner, "ipolicy/%s[%s]" % (key, k), value[k])
+        elif key == constants.ISPECS_STD:
+          _helper(owner, "ipolicy/" + key, value,
+                  constants.ISPECS_PARAMETER_TYPES)
          else:
            # FIXME: assuming list type
            if key in constants.IPOLICY_PARAMETERS:
          else:
            # FIXME: assuming list type
            if key in constants.IPOLICY_PARAMETERS:
@@ -502,6 +663,11 @@ class ConfigWriter:
                            " expecting %s, got %s" %
                            (owner, key, exp_type.__name__, type(value)))
  
                            " expecting %s, got %s" %
                            (owner, key, exp_type.__name__, type(value)))
  
+    def _helper_ispecs(owner, parentkey, params):
+      for (key, value) in params.items():
+        fullkey = "/".join([parentkey, key])
+        _helper(owner, fullkey, value, constants.ISPECS_PARAMETER_TYPES)
+
      # check cluster parameters
      _helper("cluster", "beparams", cluster.SimpleFillBE({}),
              constants.BES_PARAMETER_TYPES)
      # check cluster parameters
      _helper("cluster", "beparams", cluster.SimpleFillBE({}),
              constants.BES_PARAMETER_TYPES)
@@ -510,8 +676,7 @@ class ConfigWriter:
      _helper_nic("cluster", cluster.SimpleFillNIC({}))
      _helper("cluster", "ndparams", cluster.SimpleFillND({}),
              constants.NDS_PARAMETER_TYPES)
      _helper_nic("cluster", cluster.SimpleFillNIC({}))
      _helper("cluster", "ndparams", cluster.SimpleFillND({}),
              constants.NDS_PARAMETER_TYPES)
-    _helper_ipolicy("cluster", cluster.SimpleFillIPolicy({}), True)
-    _helper_ispecs("cluster", cluster.SimpleFillIPolicy({}))
+    _helper_ipolicy("cluster", cluster.ipolicy, True)
  
      # per-instance checks
      for instance_name in data.instances:
  
      # per-instance checks
      for instance_name in data.instances:
@@ -539,6 +704,11 @@ class ConfigWriter:
                    filled, constants.NICS_PARAMETER_TYPES)
            _helper_nic(owner, filled)
  
                    filled, constants.NICS_PARAMETER_TYPES)
            _helper_nic(owner, filled)
  
+      # disk template checks
+      if not instance.disk_template in data.cluster.enabled_disk_templates:
+        result.append("instance '%s' uses the disabled disk template '%s'." %
+                      (instance_name, instance.disk_template))
+
        # parameter checks
        if instance.beparams:
          _helper("instance %s" % instance.name, "beparams",
        # parameter checks
        if instance.beparams:
          _helper("instance %s" % instance.name, "beparams",
@@ -620,6 +790,10 @@ class ConfigWriter:
          _helper("node %s" % node.name, "ndparams",
                  cluster.FillND(node, data.nodegroups[node.group]),
                  constants.NDS_PARAMETER_TYPES)
          _helper("node %s" % node.name, "ndparams",
                  cluster.FillND(node, data.nodegroups[node.group]),
                  constants.NDS_PARAMETER_TYPES)
+      used_globals = constants.NDC_GLOBALS.intersection(node.ndparams)
+      if used_globals:
+        result.append("Node '%s' has some global parameters set: %s" %
+                      (node.name, utils.CommaJoin(used_globals)))
  
      # nodegroups checks
      nodegroups_names = set()
  
      # nodegroups checks
      nodegroups_names = set()
@@ -638,7 +812,6 @@ class ConfigWriter:
        group_name = "group %s" % nodegroup.name
        _helper_ipolicy(group_name, cluster.SimpleFillIPolicy(nodegroup.ipolicy),
                        False)
        group_name = "group %s" % nodegroup.name
        _helper_ipolicy(group_name, cluster.SimpleFillIPolicy(nodegroup.ipolicy),
                        False)
-      _helper_ispecs(group_name, cluster.SimpleFillIPolicy(nodegroup.ipolicy))
        if nodegroup.ndparams:
          _helper(group_name, "ndparams",
                  cluster.SimpleFillND(nodegroup.ndparams),
        if nodegroup.ndparams:
          _helper(group_name, "ndparams",
                  cluster.SimpleFillND(nodegroup.ndparams),
@@ -680,7 +853,7 @@ class ConfigWriter:
          else:
            raise errors.ProgrammerError("NIC mode '%s' not handled" % nic_mode)
  
          else:
            raise errors.ProgrammerError("NIC mode '%s' not handled" % nic_mode)
  
-        _AddIpAddress("%s/%s" % (link, nic.ip),
+        _AddIpAddress("%s/%s/%s" % (link, nic.ip, nic.network),
                        "instance:%s/nic:%d" % (instance.name, idx))
  
      for ip, owners in ips.items():
                        "instance:%s/nic:%d" % (instance.name, idx))
  
      for ip, owners in ips.items():
@@ -1020,7 +1193,7 @@ class ConfigWriter:
      return self._config_data.cluster.enabled_hypervisors[0]
  
    @locking.ssynchronized(_config_lock, shared=1)
      return self._config_data.cluster.enabled_hypervisors[0]
  
    @locking.ssynchronized(_config_lock, shared=1)
-  def GetHostKey(self):
+  def GetRsaHostKey(self):
      """Return the rsa hostkey from the config.
  
      @rtype: string
      """Return the rsa hostkey from the config.
  
      @rtype: string
@@ -1030,6 +1203,16 @@ class ConfigWriter:
      return self._config_data.cluster.rsahostkeypub
  
    @locking.ssynchronized(_config_lock, shared=1)
      return self._config_data.cluster.rsahostkeypub
  
    @locking.ssynchronized(_config_lock, shared=1)
+  def GetDsaHostKey(self):
+    """Return the dsa hostkey from the config.
+
+    @rtype: string
+    @return: the dsa hostkey
+
+    """
+    return self._config_data.cluster.dsahostkeypub
+
+  @locking.ssynchronized(_config_lock, shared=1)
    def GetDefaultIAllocator(self):
      """Get the default instance allocator for this cluster.
  
    def GetDefaultIAllocator(self):
      """Get the default instance allocator for this cluster.
  
@@ -1143,7 +1326,7 @@ class ConfigWriter:
      if target is None:
        if len(self._config_data.nodegroups) != 1:
          raise errors.OpPrereqError("More than one node group exists. Target"
      if target is None:
        if len(self._config_data.nodegroups) != 1:
          raise errors.OpPrereqError("More than one node group exists. Target"
-                                   " group must be specified explicitely.")
+                                   " group must be specified explicitly.")
        else:
          return self._config_data.nodegroups.keys()[0]
      if target in self._config_data.nodegroups:
        else:
          return self._config_data.nodegroups.keys()[0]
      if target in self._config_data.nodegroups:
@@ -1261,6 +1444,7 @@ class ConfigWriter:
      self._config_data.instances[instance.name] = instance
      self._config_data.cluster.serial_no += 1
      self._UnlockedReleaseDRBDMinors(instance.name)
      self._config_data.instances[instance.name] = instance
      self._config_data.cluster.serial_no += 1
      self._UnlockedReleaseDRBDMinors(instance.name)
+    self._UnlockedCommitTemporaryIps(ec_id)
      self._WriteConfig()
  
    def _EnsureUUID(self, item, ec_id):
      self._WriteConfig()
  
    def _EnsureUUID(self, item, ec_id):
@@ -1276,19 +1460,27 @@ class ConfigWriter:
        raise errors.ConfigurationError("Cannot add '%s': UUID %s already"
                                        " in use" % (item.name, item.uuid))
  
        raise errors.ConfigurationError("Cannot add '%s': UUID %s already"
                                        " in use" % (item.name, item.uuid))
  
-  def _SetInstanceStatus(self, instance_name, status):
+  def _SetInstanceStatus(self, instance_name, status, disks_active):
      """Set the instance's status to a given value.
  
      """
      """Set the instance's status to a given value.
  
      """
-    assert status in constants.ADMINST_ALL, \
-           "Invalid status '%s' passed to SetInstanceStatus" % (status,)
-
      if instance_name not in self._config_data.instances:
        raise errors.ConfigurationError("Unknown instance '%s'" %
                                        instance_name)
      instance = self._config_data.instances[instance_name]
      if instance_name not in self._config_data.instances:
        raise errors.ConfigurationError("Unknown instance '%s'" %
                                        instance_name)
      instance = self._config_data.instances[instance_name]
-    if instance.admin_state != status:
+
+    if status is None:
+      status = instance.admin_state
+    if disks_active is None:
+      disks_active = instance.disks_active
+
+    assert status in constants.ADMINST_ALL, \
+           "Invalid status '%s' passed to SetInstanceStatus" % (status,)
+
+    if instance.admin_state != status or \
+       instance.disks_active != disks_active:
        instance.admin_state = status
        instance.admin_state = status
+      instance.disks_active = disks_active
        instance.serial_no += 1
        instance.mtime = time.time()
        self._WriteConfig()
        instance.serial_no += 1
        instance.mtime = time.time()
        self._WriteConfig()
@@ -1297,15 +1489,19 @@ class ConfigWriter:
    def MarkInstanceUp(self, instance_name):
      """Mark the instance status to up in the config.
  
    def MarkInstanceUp(self, instance_name):
      """Mark the instance status to up in the config.
  
+    This also sets the instance disks active flag.
+
      """
      """
-    self._SetInstanceStatus(instance_name, constants.ADMINST_UP)
+    self._SetInstanceStatus(instance_name, constants.ADMINST_UP, True)
  
    @locking.ssynchronized(_config_lock)
    def MarkInstanceOffline(self, instance_name):
      """Mark the instance status to down in the config.
  
  
    @locking.ssynchronized(_config_lock)
    def MarkInstanceOffline(self, instance_name):
      """Mark the instance status to down in the config.
  
+    This also clears the instance disks active flag.
+
      """
      """
-    self._SetInstanceStatus(instance_name, constants.ADMINST_OFFLINE)
+    self._SetInstanceStatus(instance_name, constants.ADMINST_OFFLINE, False)
  
    @locking.ssynchronized(_config_lock)
    def RemoveInstance(self, instance_name):
  
    @locking.ssynchronized(_config_lock)
    def RemoveInstance(self, instance_name):
@@ -1322,6 +1518,13 @@ class ConfigWriter:
      if network_port is not None:
        self._config_data.cluster.tcpudp_port_pool.add(network_port)
  
      if network_port is not None:
        self._config_data.cluster.tcpudp_port_pool.add(network_port)
  
+    instance = self._UnlockedGetInstanceInfo(instance_name)
+
+    for nic in instance.nics:
+      if nic.network and nic.ip:
+        # Return all IP addresses to the respective address pools
+        self._UnlockedCommitIp(constants.RELEASE_ACTION, nic.network, nic.ip)
+
      del self._config_data.instances[instance_name]
      self._config_data.cluster.serial_no += 1
      self._WriteConfig()
      del self._config_data.instances[instance_name]
      self._config_data.cluster.serial_no += 1
      self._WriteConfig()
@@ -1364,8 +1567,25 @@ class ConfigWriter:
    def MarkInstanceDown(self, instance_name):
      """Mark the status of an instance to down in the configuration.
  
    def MarkInstanceDown(self, instance_name):
      """Mark the status of an instance to down in the configuration.
  
+    This does not touch the instance disks active flag, as shut down instances
+    can still have active disks.
+
+    """
+    self._SetInstanceStatus(instance_name, constants.ADMINST_DOWN, None)
+
+  @locking.ssynchronized(_config_lock)
+  def MarkInstanceDisksActive(self, instance_name):
+    """Mark the status of instance disks active.
+
+    """
+    self._SetInstanceStatus(instance_name, None, True)
+
+  @locking.ssynchronized(_config_lock)
+  def MarkInstanceDisksInactive(self, instance_name):
+    """Mark the status of instance disks inactive.
+
      """
      """
-    self._SetInstanceStatus(instance_name, constants.ADMINST_DOWN)
+    self._SetInstanceStatus(instance_name, None, False)
  
    def _UnlockedGetInstanceList(self):
      """Get the list of instances.
  
    def _UnlockedGetInstanceList(self):
      """Get the list of instances.
@@ -1439,6 +1659,24 @@ class ConfigWriter:
                       for node_name in nodes)
  
    @locking.ssynchronized(_config_lock, shared=1)
                       for node_name in nodes)
  
    @locking.ssynchronized(_config_lock, shared=1)
+  def GetInstanceNetworks(self, instance_name):
+    """Returns set of network UUIDs for instance's nics.
+
+    @rtype: frozenset
+
+    """
+    instance = self._UnlockedGetInstanceInfo(instance_name)
+    if not instance:
+      raise errors.ConfigurationError("Unknown instance '%s'" % instance_name)
+
+    networks = set()
+    for nic in instance.nics:
+      if nic.network:
+        networks.add(nic.network)
+
+    return frozenset(networks)
+
+  @locking.ssynchronized(_config_lock, shared=1)
    def GetMultiInstanceInfo(self, instances):
      """Get the configuration of multiple instances.
  
    def GetMultiInstanceInfo(self, instances):
      """Get the configuration of multiple instances.
  
@@ -1871,6 +2109,9 @@ class ConfigWriter:
      return (self._config_data.instances.values() +
              self._config_data.nodes.values() +
              self._config_data.nodegroups.values() +
      return (self._config_data.instances.values() +
              self._config_data.nodes.values() +
              self._config_data.nodegroups.values() +
+            self._config_data.networks.values() +
+            self._AllDisks() +
+            self._AllNICs() +
              [self._config_data.cluster])
  
    def _OpenConfig(self, accept_foreign):
              [self._config_data.cluster])
  
    def _OpenConfig(self, accept_foreign):
@@ -1899,24 +2140,22 @@ class ConfigWriter:
               (data.cluster.master_node, self._my_hostname))
        raise errors.ConfigurationError(msg)
  
               (data.cluster.master_node, self._my_hostname))
        raise errors.ConfigurationError(msg)
  
-    # Upgrade configuration if needed
-    data.UpgradeConfig()
-
      self._config_data = data
      # reset the last serial as -1 so that the next write will cause
      # ssconf update
      self._last_cluster_serial = -1
  
      self._config_data = data
      # reset the last serial as -1 so that the next write will cause
      # ssconf update
      self._last_cluster_serial = -1
  
-    # And finally run our (custom) config upgrade sequence
+    # Upgrade configuration if needed
      self._UpgradeConfig()
  
      self._cfg_id = utils.GetFileID(path=self._cfg_file)
  
    def _UpgradeConfig(self):
      self._UpgradeConfig()
  
      self._cfg_id = utils.GetFileID(path=self._cfg_file)
  
    def _UpgradeConfig(self):
-    """Run upgrade steps that cannot be done purely in the objects.
+    """Run any upgrade steps.
  
  
-    This is because some data elements need uniqueness across the
-    whole configuration, etc.
+    This method performs both in-object upgrades and also update some data
+    elements that need uniqueness across the whole configuration or interact
+    with other objects.
  
      @warning: this function will call L{_WriteConfig()}, but also
          L{DropECReservations} so it needs to be called only from a
  
      @warning: this function will call L{_WriteConfig()}, but also
          L{DropECReservations} so it needs to be called only from a
@@ -1925,31 +2164,42 @@ class ConfigWriter:
          created first, to avoid causing deadlock.
  
      """
          created first, to avoid causing deadlock.
  
      """
-    modified = False
+    # Keep a copy of the persistent part of _config_data to check for changes
+    # Serialization doesn't guarantee order in dictionaries
+    oldconf = copy.deepcopy(self._config_data.ToDict())
+
+    # In-object upgrades
+    self._config_data.UpgradeConfig()
+
      for item in self._AllUUIDObjects():
        if item.uuid is None:
          item.uuid = self._GenerateUniqueID(_UPGRADE_CONFIG_JID)
      for item in self._AllUUIDObjects():
        if item.uuid is None:
          item.uuid = self._GenerateUniqueID(_UPGRADE_CONFIG_JID)
-        modified = True
      if not self._config_data.nodegroups:
        default_nodegroup_name = constants.INITIAL_NODE_GROUP_NAME
        default_nodegroup = objects.NodeGroup(name=default_nodegroup_name,
                                              members=[])
        self._UnlockedAddNodeGroup(default_nodegroup, _UPGRADE_CONFIG_JID, True)
      if not self._config_data.nodegroups:
        default_nodegroup_name = constants.INITIAL_NODE_GROUP_NAME
        default_nodegroup = objects.NodeGroup(name=default_nodegroup_name,
                                              members=[])
        self._UnlockedAddNodeGroup(default_nodegroup, _UPGRADE_CONFIG_JID, True)
-      modified = True
      for node in self._config_data.nodes.values():
        if not node.group:
          node.group = self.LookupNodeGroup(None)
      for node in self._config_data.nodes.values():
        if not node.group:
          node.group = self.LookupNodeGroup(None)
-        modified = True
        # This is technically *not* an upgrade, but needs to be done both when
        # nodegroups are being added, and upon normally loading the config,
        # because the members list of a node group is discarded upon
        # serializing/deserializing the object.
        self._UnlockedAddNodeToGroup(node.name, node.group)
        # This is technically *not* an upgrade, but needs to be done both when
        # nodegroups are being added, and upon normally loading the config,
        # because the members list of a node group is discarded upon
        # serializing/deserializing the object.
        self._UnlockedAddNodeToGroup(node.name, node.group)
+
+    modified = (oldconf != self._config_data.ToDict())
      if modified:
        self._WriteConfig()
        # This is ok even if it acquires the internal lock, as _UpgradeConfig is
        # only called at config init time, without the lock held
        self.DropECReservations(_UPGRADE_CONFIG_JID)
      if modified:
        self._WriteConfig()
        # This is ok even if it acquires the internal lock, as _UpgradeConfig is
        # only called at config init time, without the lock held
        self.DropECReservations(_UPGRADE_CONFIG_JID)
+    else:
+      config_errors = self._UnlockedVerifyConfig()
+      if config_errors:
+        errmsg = ("Loaded configuration data is not consistent: %s" %
+                  (utils.CommaJoin(config_errors)))
+        logging.critical(errmsg)
  
    def _DistributeConfig(self, feedback_fn):
      """Distribute the configuration to the other nodes.
  
    def _DistributeConfig(self, feedback_fn):
      """Distribute the configuration to the other nodes.
@@ -2093,6 +2343,9 @@ class ConfigWriter:
      nodegroups = ["%s %s" % (nodegroup.uuid, nodegroup.name) for nodegroup in
                    self._config_data.nodegroups.values()]
      nodegroups_data = fn(utils.NiceSort(nodegroups))
      nodegroups = ["%s %s" % (nodegroup.uuid, nodegroup.name) for nodegroup in
                    self._config_data.nodegroups.values()]
      nodegroups_data = fn(utils.NiceSort(nodegroups))
+    networks = ["%s %s" % (net.uuid, net.name) for net in
+                self._config_data.networks.values()]
+    networks_data = fn(utils.NiceSort(networks))
  
      ssconf_values = {
        constants.SS_CLUSTER_NAME: cluster.cluster_name,
  
      ssconf_values = {
        constants.SS_CLUSTER_NAME: cluster.cluster_name,
@@ -2117,6 +2370,7 @@ class ConfigWriter:
        constants.SS_MAINTAIN_NODE_HEALTH: str(cluster.maintain_node_health),
        constants.SS_UID_POOL: uid_pool,
        constants.SS_NODEGROUPS: nodegroups_data,
        constants.SS_MAINTAIN_NODE_HEALTH: str(cluster.maintain_node_health),
        constants.SS_UID_POOL: uid_pool,
        constants.SS_NODEGROUPS: nodegroups_data,
+      constants.SS_NETWORKS: networks_data,
        }
      bad_values = [(k, v) for k, v in ssconf_values.items()
                    if not isinstance(v, (str, basestring))]
        }
      bad_values = [(k, v) for k, v in ssconf_values.items()
                    if not isinstance(v, (str, basestring))]
@@ -2190,7 +2444,7 @@ class ConfigWriter:
      return self._config_data.HasAnyDiskOfType(dev_type)
  
    @locking.ssynchronized(_config_lock)
      return self._config_data.HasAnyDiskOfType(dev_type)
  
    @locking.ssynchronized(_config_lock)
-  def Update(self, target, feedback_fn):
+  def Update(self, target, feedback_fn, ec_id=None):
      """Notify function to be called after updates.
  
      This function must be called when an object (as returned by
      """Notify function to be called after updates.
  
      This function must be called when an object (as returned by
@@ -2218,6 +2472,8 @@ class ConfigWriter:
        test = target in self._config_data.instances.values()
      elif isinstance(target, objects.NodeGroup):
        test = target in self._config_data.nodegroups.values()
        test = target in self._config_data.instances.values()
      elif isinstance(target, objects.NodeGroup):
        test = target in self._config_data.nodegroups.values()
+    elif isinstance(target, objects.Network):
+      test = target in self._config_data.networks.values()
      else:
        raise errors.ProgrammerError("Invalid object type (%s) passed to"
                                     " ConfigWriter.Update" % type(target))
      else:
        raise errors.ProgrammerError("Invalid object type (%s) passed to"
                                     " ConfigWriter.Update" % type(target))
@@ -2235,6 +2491,10 @@ class ConfigWriter:
      if isinstance(target, objects.Instance):
        self._UnlockedReleaseDRBDMinors(target.name)
  
      if isinstance(target, objects.Instance):
        self._UnlockedReleaseDRBDMinors(target.name)
  
+    if ec_id is not None:
+      # Commit all ips reserved by OpInstanceSetParams and OpGroupSetParams
+      self._UnlockedCommitTemporaryIps(ec_id)
+
      self._WriteConfig(feedback_fn=feedback_fn)
  
    @locking.ssynchronized(_config_lock)
      self._WriteConfig(feedback_fn=feedback_fn)
  
    @locking.ssynchronized(_config_lock)
@@ -2244,3 +2504,193 @@ class ConfigWriter:
      """
      for rm in self._all_rms:
        rm.DropECReservations(ec_id)
      """
      for rm in self._all_rms:
        rm.DropECReservations(ec_id)
+
+  @locking.ssynchronized(_config_lock, shared=1)
+  def GetAllNetworksInfo(self):
+    """Get configuration info of all the networks.
+
+    """
+    return dict(self._config_data.networks)
+
+  def _UnlockedGetNetworkList(self):
+    """Get the list of networks.
+
+    This function is for internal use, when the config lock is already held.
+
+    """
+    return self._config_data.networks.keys()
+
+  @locking.ssynchronized(_config_lock, shared=1)
+  def GetNetworkList(self):
+    """Get the list of networks.
+
+    @return: array of networks, ex. ["main", "vlan100", "200]
+
+    """
+    return self._UnlockedGetNetworkList()
+
+  @locking.ssynchronized(_config_lock, shared=1)
+  def GetNetworkNames(self):
+    """Get a list of network names
+
+    """
+    names = [net.name
+             for net in self._config_data.networks.values()]
+    return names
+
+  def _UnlockedGetNetwork(self, uuid):
+    """Returns information about a network.
+
+    This function is for internal use, when the config lock is already held.
+
+    """
+    if uuid not in self._config_data.networks:
+      return None
+
+    return self._config_data.networks[uuid]
+
+  @locking.ssynchronized(_config_lock, shared=1)
+  def GetNetwork(self, uuid):
+    """Returns information about a network.
+
+    It takes the information from the configuration file.
+
+    @param uuid: UUID of the network
+
+    @rtype: L{objects.Network}
+    @return: the network object
+
+    """
+    return self._UnlockedGetNetwork(uuid)
+
+  @locking.ssynchronized(_config_lock)
+  def AddNetwork(self, net, ec_id, check_uuid=True):
+    """Add a network to the configuration.
+
+    @type net: L{objects.Network}
+    @param net: the Network object to add
+    @type ec_id: string
+    @param ec_id: unique id for the job to use when creating a missing UUID
+
+    """
+    self._UnlockedAddNetwork(net, ec_id, check_uuid)
+    self._WriteConfig()
+
+  def _UnlockedAddNetwork(self, net, ec_id, check_uuid):
+    """Add a network to the configuration.
+
+    """
+    logging.info("Adding network %s to configuration", net.name)
+
+    if check_uuid:
+      self._EnsureUUID(net, ec_id)
+
+    net.serial_no = 1
+    net.ctime = net.mtime = time.time()
+    self._config_data.networks[net.uuid] = net
+    self._config_data.cluster.serial_no += 1
+
+  def _UnlockedLookupNetwork(self, target):
+    """Lookup a network's UUID.
+
+    @type target: string
+    @param target: network name or UUID
+    @rtype: string
+    @return: network UUID
+    @raises errors.OpPrereqError: when the target network cannot be found
+
+    """
+    if target is None:
+      return None
+    if target in self._config_data.networks:
+      return target
+    for net in self._config_data.networks.values():
+      if net.name == target:
+        return net.uuid
+    raise errors.OpPrereqError("Network '%s' not found" % target,
+                               errors.ECODE_NOENT)
+
+  @locking.ssynchronized(_config_lock, shared=1)
+  def LookupNetwork(self, target):
+    """Lookup a network's UUID.
+
+    This function is just a wrapper over L{_UnlockedLookupNetwork}.
+
+    @type target: string
+    @param target: network name or UUID
+    @rtype: string
+    @return: network UUID
+
+    """
+    return self._UnlockedLookupNetwork(target)
+
+  @locking.ssynchronized(_config_lock)
+  def RemoveNetwork(self, network_uuid):
+    """Remove a network from the configuration.
+
+    @type network_uuid: string
+    @param network_uuid: the UUID of the network to remove
+
+    """
+    logging.info("Removing network %s from configuration", network_uuid)
+
+    if network_uuid not in self._config_data.networks:
+      raise errors.ConfigurationError("Unknown network '%s'" % network_uuid)
+
+    del self._config_data.networks[network_uuid]
+    self._config_data.cluster.serial_no += 1
+    self._WriteConfig()
+
+  def _UnlockedGetGroupNetParams(self, net_uuid, node):
+    """Get the netparams (mode, link) of a network.
+
+    Get a network's netparams for a given node.
+
+    @type net_uuid: string
+    @param net_uuid: network uuid
+    @type node: string
+    @param node: node name
+    @rtype: dict or None
+    @return: netparams
+
+    """
+    node_info = self._UnlockedGetNodeInfo(node)
+    nodegroup_info = self._UnlockedGetNodeGroup(node_info.group)
+    netparams = nodegroup_info.networks.get(net_uuid, None)
+
+    return netparams
+
+  @locking.ssynchronized(_config_lock, shared=1)
+  def GetGroupNetParams(self, net_uuid, node):
+    """Locking wrapper of _UnlockedGetGroupNetParams()
+
+    """
+    return self._UnlockedGetGroupNetParams(net_uuid, node)
+
+  @locking.ssynchronized(_config_lock, shared=1)
+  def CheckIPInNodeGroup(self, ip, node):
+    """Check IP uniqueness in nodegroup.
+
+    Check networks that are connected in the node's node group
+    if ip is contained in any of them. Used when creating/adding
+    a NIC to ensure uniqueness among nodegroups.
+
+    @type ip: string
+    @param ip: ip address
+    @type node: string
+    @param node: node name
+    @rtype: (string, dict) or (None, None)
+    @return: (network name, netparams)
+
+    """
+    if ip is None:
+      return (None, None)
+    node_info = self._UnlockedGetNodeInfo(node)
+    nodegroup_info = self._UnlockedGetNodeGroup(node_info.group)
+    for net_uuid in nodegroup_info.networks.keys():
+      net_info = self._UnlockedGetNetwork(net_uuid)
+      pool = network.AddressPool(net_info)
+      if pool.Contains(ip):
+        return (net_info.name, nodegroup_info.networks[net_uuid])
+
+    return (None, None)