root / snf-cyclades-app / synnefo / logic / subnets.py @ 883c1f94
History | View | Annotate | Download (10.9 kB)
1 | 9eb0710b | Dionysis Grigoropoulos | # Copyright 2013 GRNET S.A. All rights reserved.
|
---|---|---|---|
2 | 9eb0710b | Dionysis Grigoropoulos | #
|
3 | 9eb0710b | Dionysis Grigoropoulos | # Redistribution and use in source and binary forms, with or
|
4 | 9eb0710b | Dionysis Grigoropoulos | # without modification, are permitted provided that the following
|
5 | 9eb0710b | Dionysis Grigoropoulos | # conditions are met:
|
6 | 9eb0710b | Dionysis Grigoropoulos | #
|
7 | 9eb0710b | Dionysis Grigoropoulos | # 1. Redistributions of source code must retain the above
|
8 | 9eb0710b | Dionysis Grigoropoulos | # copyright notice, this list of conditions and the following
|
9 | 9eb0710b | Dionysis Grigoropoulos | # disclaimer.
|
10 | 9eb0710b | Dionysis Grigoropoulos | #
|
11 | 9eb0710b | Dionysis Grigoropoulos | # 2. Redistributions in binary form must reproduce the above
|
12 | 9eb0710b | Dionysis Grigoropoulos | # copyright notice, this list of conditions and the following
|
13 | 9eb0710b | Dionysis Grigoropoulos | # disclaimer in the documentation and/or other materials
|
14 | 9eb0710b | Dionysis Grigoropoulos | # provided with the distribution.
|
15 | 9eb0710b | Dionysis Grigoropoulos | #
|
16 | 9eb0710b | Dionysis Grigoropoulos | # THIS SOFTWARE IS PROVIDED BY GRNET S.A. ``AS IS'' AND ANY EXPRESS
|
17 | 9eb0710b | Dionysis Grigoropoulos | # OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
|
18 | 9eb0710b | Dionysis Grigoropoulos | # WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
|
19 | 9eb0710b | Dionysis Grigoropoulos | # PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL GRNET S.A OR
|
20 | 9eb0710b | Dionysis Grigoropoulos | # CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
21 | 9eb0710b | Dionysis Grigoropoulos | # SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
|
22 | 9eb0710b | Dionysis Grigoropoulos | # LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF
|
23 | 9eb0710b | Dionysis Grigoropoulos | # USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
|
24 | 9eb0710b | Dionysis Grigoropoulos | # AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
25 | 9eb0710b | Dionysis Grigoropoulos | # LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
|
26 | 9eb0710b | Dionysis Grigoropoulos | # ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
|
27 | 9eb0710b | Dionysis Grigoropoulos | # POSSIBILITY OF SUCH DAMAGE.
|
28 | 9eb0710b | Dionysis Grigoropoulos | #
|
29 | 9eb0710b | Dionysis Grigoropoulos | # The views and conclusions contained in the software and
|
30 | 9eb0710b | Dionysis Grigoropoulos | # documentation are those of the authors and should not be
|
31 | 9eb0710b | Dionysis Grigoropoulos | # interpreted as representing official policies, either expressed
|
32 | 9eb0710b | Dionysis Grigoropoulos | # or implied, of GRNET S.A.
|
33 | 9eb0710b | Dionysis Grigoropoulos | |
34 | f82dfec6 | Christos Stavrakakis | import ipaddr |
35 | 9eb0710b | Dionysis Grigoropoulos | from logging import getLogger |
36 | f82dfec6 | Christos Stavrakakis | from functools import wraps |
37 | f82dfec6 | Christos Stavrakakis | |
38 | f82dfec6 | Christos Stavrakakis | from django.conf import settings |
39 | f82dfec6 | Christos Stavrakakis | from django.db import transaction |
40 | 3549cb2f | Dionysis Grigoropoulos | from django.db.models import Q |
41 | 3549cb2f | Dionysis Grigoropoulos | |
42 | 9eb0710b | Dionysis Grigoropoulos | from snf_django.lib import api |
43 | 9eb0710b | Dionysis Grigoropoulos | from snf_django.lib.api import faults |
44 | ba6ad346 | Dionysis Grigoropoulos | from synnefo.logic import utils |
45 | 9eb0710b | Dionysis Grigoropoulos | |
46 | 9eb0710b | Dionysis Grigoropoulos | from synnefo.db.models import Subnet, Network, IPPoolTable |
47 | 9eb0710b | Dionysis Grigoropoulos | |
48 | 9eb0710b | Dionysis Grigoropoulos | log = getLogger(__name__) |
49 | 9eb0710b | Dionysis Grigoropoulos | |
50 | 9eb0710b | Dionysis Grigoropoulos | |
51 | 9eb0710b | Dionysis Grigoropoulos | def subnet_command(action): |
52 | 9eb0710b | Dionysis Grigoropoulos | def decorator(func): |
53 | 9eb0710b | Dionysis Grigoropoulos | @wraps(func)
|
54 | 9eb0710b | Dionysis Grigoropoulos | @transaction.commit_on_success()
|
55 | 9eb0710b | Dionysis Grigoropoulos | def wrapper(subnet, *args, **kwargs): |
56 | 9eb0710b | Dionysis Grigoropoulos | return func(subnet, *args, **kwargs)
|
57 | 9eb0710b | Dionysis Grigoropoulos | return wrapper
|
58 | 9eb0710b | Dionysis Grigoropoulos | return decorator
|
59 | 9eb0710b | Dionysis Grigoropoulos | |
60 | 9eb0710b | Dionysis Grigoropoulos | |
61 | 9eb0710b | Dionysis Grigoropoulos | def list_subnets(user_id): |
62 | 9eb0710b | Dionysis Grigoropoulos | """List all subnets of a user"""
|
63 | 3549cb2f | Dionysis Grigoropoulos | log.debug('list_subnets %s', user_id)
|
64 | 9eb0710b | Dionysis Grigoropoulos | |
65 | 91430ce0 | Dionysis Grigoropoulos | query = (((Q(network__userid=user_id) & Q(network__public=False)) |
|
66 | 91430ce0 | Dionysis Grigoropoulos | Q(network__public=True)) & Q(deleted=False)) |
67 | 91430ce0 | Dionysis Grigoropoulos | user_subnets = Subnet.objects.filter(query) |
68 | 5d83d2ff | Dionysis Grigoropoulos | return user_subnets
|
69 | 9eb0710b | Dionysis Grigoropoulos | |
70 | 9eb0710b | Dionysis Grigoropoulos | |
71 | 9eb0710b | Dionysis Grigoropoulos | @transaction.commit_on_success
|
72 | f82dfec6 | Christos Stavrakakis | def create_subnet(*args, **kwargs): |
73 | f82dfec6 | Christos Stavrakakis | return _create_subnet(*args, **kwargs)
|
74 | f82dfec6 | Christos Stavrakakis | |
75 | f82dfec6 | Christos Stavrakakis | |
76 | f82dfec6 | Christos Stavrakakis | def _create_subnet(network_id, user_id, cidr, name, ipversion=4, gateway=None, |
77 | b7311f3d | Dionysis Grigoropoulos | dhcp=True, slaac=True, dns_nameservers=None, |
78 | f82dfec6 | Christos Stavrakakis | allocation_pools=None, host_routes=None): |
79 | 316787ab | Dionysis Grigoropoulos | """Create a subnet
|
80 | f82dfec6 | Christos Stavrakakis |
|
81 | 9eb0710b | Dionysis Grigoropoulos | network_id and the desired cidr are mandatory, everything else is optional
|
82 | 316787ab | Dionysis Grigoropoulos |
|
83 | 9eb0710b | Dionysis Grigoropoulos | """
|
84 | 9eb0710b | Dionysis Grigoropoulos | try:
|
85 | 9eb0710b | Dionysis Grigoropoulos | network = Network.objects.get(id=network_id) |
86 | 9eb0710b | Dionysis Grigoropoulos | except Network.DoesNotExist:
|
87 | b7311f3d | Dionysis Grigoropoulos | raise api.faults.ItemNotFound("No network found with that id") |
88 | 9eb0710b | Dionysis Grigoropoulos | |
89 | 784a3f1e | Dionysis Grigoropoulos | if network.deleted:
|
90 | 784a3f1e | Dionysis Grigoropoulos | raise api.faults.BadRequest("Network has been deleted") |
91 | 784a3f1e | Dionysis Grigoropoulos | |
92 | 5d83d2ff | Dionysis Grigoropoulos | if user_id != network.userid:
|
93 | 5d83d2ff | Dionysis Grigoropoulos | raise api.faults.Unauthorized("Unauthorized operation") |
94 | 5d83d2ff | Dionysis Grigoropoulos | |
95 | 9eb0710b | Dionysis Grigoropoulos | if ipversion not in [4, 6]: |
96 | 9eb0710b | Dionysis Grigoropoulos | raise api.faults.BadRequest("Malformed IP version type") |
97 | 9eb0710b | Dionysis Grigoropoulos | |
98 | 99718617 | Dionysis Grigoropoulos | check_number_of_subnets(network, ipversion) |
99 | 99718617 | Dionysis Grigoropoulos | |
100 | 1709a768 | Dionysis Grigoropoulos | if network.backend_networks.exists():
|
101 | 1709a768 | Dionysis Grigoropoulos | raise api.faults.BadRequest("Cannot create subnet in network %s, VMs" |
102 | 1709a768 | Dionysis Grigoropoulos | " are already connected to this network" %
|
103 | 1709a768 | Dionysis Grigoropoulos | network_id) |
104 | 1709a768 | Dionysis Grigoropoulos | |
105 | 99718617 | Dionysis Grigoropoulos | try:
|
106 | f82dfec6 | Christos Stavrakakis | cidr_ip = ipaddr.IPNetwork(cidr) |
107 | 99718617 | Dionysis Grigoropoulos | except ValueError: |
108 | 99718617 | Dionysis Grigoropoulos | raise api.faults.BadRequest("Malformed CIDR") |
109 | 5d83d2ff | Dionysis Grigoropoulos | |
110 | 9eb0710b | Dionysis Grigoropoulos | if ipversion == 6: |
111 | f23fbacf | Christos Stavrakakis | validate_subnet_params(subnet6=cidr, gateway6=gateway) |
112 | 9eb0710b | Dionysis Grigoropoulos | else:
|
113 | f23fbacf | Christos Stavrakakis | validate_subnet_params(subnet=cidr, gateway=gateway) |
114 | 9eb0710b | Dionysis Grigoropoulos | |
115 | ba6ad346 | Dionysis Grigoropoulos | name = utils.check_name_length(name, Subnet.SUBNET_NAME_LENGTH, "Subnet "
|
116 | ba6ad346 | Dionysis Grigoropoulos | "name is too long")
|
117 | 9eb0710b | Dionysis Grigoropoulos | sub = Subnet.objects.create(name=name, network=network, cidr=cidr, |
118 | 9eb0710b | Dionysis Grigoropoulos | ipversion=ipversion, gateway=gateway, |
119 | 5d83d2ff | Dionysis Grigoropoulos | dhcp=dhcp, host_routes=host_routes, |
120 | 5d83d2ff | Dionysis Grigoropoulos | dns_nameservers=dns_nameservers) |
121 | 9eb0710b | Dionysis Grigoropoulos | |
122 | b7311f3d | Dionysis Grigoropoulos | gateway_ip = ipaddr.IPAddress(gateway) if gateway else None |
123 | b7311f3d | Dionysis Grigoropoulos | |
124 | 9eb0710b | Dionysis Grigoropoulos | if allocation_pools is not None: |
125 | 9eb0710b | Dionysis Grigoropoulos | if ipversion == 6: |
126 | 9eb0710b | Dionysis Grigoropoulos | raise api.faults.Conflict("Can't allocate an IP Pool in IPv6") |
127 | f23fbacf | Christos Stavrakakis | elif ipversion == 4: |
128 | eb5f7eb0 | Dionysis Grigoropoulos | # Check if the gateway is the first IP of the subnet, or the last. In
|
129 | eb5f7eb0 | Dionysis Grigoropoulos | # that case create a single ip pool.
|
130 | b7311f3d | Dionysis Grigoropoulos | if gateway_ip:
|
131 | b7311f3d | Dionysis Grigoropoulos | if int(gateway_ip) - int(cidr_ip) == 1: |
132 | f23fbacf | Christos Stavrakakis | allocation_pools = [(gateway_ip + 1, cidr_ip.broadcast - 1)] |
133 | eb5f7eb0 | Dionysis Grigoropoulos | elif int(cidr_ip.broadcast) - int(gateway_ip) == 1: |
134 | eb5f7eb0 | Dionysis Grigoropoulos | allocation_pools = [(cidr_ip.network + 1, gateway_ip - 1)] |
135 | b7311f3d | Dionysis Grigoropoulos | else:
|
136 | b7311f3d | Dionysis Grigoropoulos | # If the gateway isn't the first available ip, create two
|
137 | b7311f3d | Dionysis Grigoropoulos | # different ip pools adjacent to said ip
|
138 | f23fbacf | Christos Stavrakakis | allocation_pools = [(cidr_ip.network + 1, gateway_ip - 1), |
139 | f23fbacf | Christos Stavrakakis | (gateway_ip + 1, cidr_ip.broadcast - 1)] |
140 | 9eb0710b | Dionysis Grigoropoulos | else:
|
141 | f23fbacf | Christos Stavrakakis | allocation_pools = [(cidr_ip.network + 1, cidr_ip.broadcast - 1)] |
142 | 9eb0710b | Dionysis Grigoropoulos | |
143 | 5d83d2ff | Dionysis Grigoropoulos | if allocation_pools:
|
144 | f23fbacf | Christos Stavrakakis | # Validate the allocation pools
|
145 | f23fbacf | Christos Stavrakakis | validate_pools(allocation_pools, cidr_ip, gateway_ip) |
146 | 5d83d2ff | Dionysis Grigoropoulos | create_ip_pools(allocation_pools, cidr_ip, sub) |
147 | 9eb0710b | Dionysis Grigoropoulos | |
148 | 9eb0710b | Dionysis Grigoropoulos | return sub
|
149 | 9eb0710b | Dionysis Grigoropoulos | |
150 | 9eb0710b | Dionysis Grigoropoulos | |
151 | 883c1f94 | Christos Stavrakakis | def get_subnet(sub_id, prefetch_related=False): |
152 | 9eb0710b | Dionysis Grigoropoulos | """Show info of a specific subnet"""
|
153 | 9eb0710b | Dionysis Grigoropoulos | log.debug('get_subnet %s', sub_id)
|
154 | 9eb0710b | Dionysis Grigoropoulos | try:
|
155 | 883c1f94 | Christos Stavrakakis | subnets = Subnet.objects |
156 | 883c1f94 | Christos Stavrakakis | if prefetch_related:
|
157 | 883c1f94 | Christos Stavrakakis | subnets = subnets.select_related("network")
|
158 | 883c1f94 | Christos Stavrakakis | subnets = subnets.prefetch_related("ip_pools")
|
159 | 883c1f94 | Christos Stavrakakis | return subnets.get(id=sub_id)
|
160 | 9eb0710b | Dionysis Grigoropoulos | except Subnet.DoesNotExist:
|
161 | 9eb0710b | Dionysis Grigoropoulos | raise api.faults.ItemNotFound("Subnet not found") |
162 | 9eb0710b | Dionysis Grigoropoulos | |
163 | 9eb0710b | Dionysis Grigoropoulos | |
164 | 9eb0710b | Dionysis Grigoropoulos | def delete_subnet(): |
165 | 316787ab | Dionysis Grigoropoulos | """Delete a subnet, raises BadRequest
|
166 | 9eb0710b | Dionysis Grigoropoulos | A subnet is deleted ONLY when the network that it belongs to is deleted
|
167 | 316787ab | Dionysis Grigoropoulos |
|
168 | 9eb0710b | Dionysis Grigoropoulos | """
|
169 | 9eb0710b | Dionysis Grigoropoulos | raise api.faults.BadRequest("Deletion of a subnet is not supported") |
170 | 9eb0710b | Dionysis Grigoropoulos | |
171 | 9eb0710b | Dionysis Grigoropoulos | |
172 | 9eb0710b | Dionysis Grigoropoulos | @transaction.commit_on_success
|
173 | 8646e606 | Dionysis Grigoropoulos | def update_subnet(sub_id, name, user_id): |
174 | 316787ab | Dionysis Grigoropoulos | """Update the fields of a subnet
|
175 | 9eb0710b | Dionysis Grigoropoulos | Only the name can be updated
|
176 | 316787ab | Dionysis Grigoropoulos |
|
177 | 9eb0710b | Dionysis Grigoropoulos | """
|
178 | 5d83d2ff | Dionysis Grigoropoulos | log.info('Update subnet %s, name %s' % (sub_id, name))
|
179 | 9eb0710b | Dionysis Grigoropoulos | |
180 | 9eb0710b | Dionysis Grigoropoulos | try:
|
181 | 9eb0710b | Dionysis Grigoropoulos | subnet = Subnet.objects.get(id=sub_id) |
182 | 9eb0710b | Dionysis Grigoropoulos | except:
|
183 | 9eb0710b | Dionysis Grigoropoulos | raise api.faults.ItemNotFound("Subnet not found") |
184 | 9eb0710b | Dionysis Grigoropoulos | |
185 | 8646e606 | Dionysis Grigoropoulos | if user_id != subnet.network.userid:
|
186 | 8646e606 | Dionysis Grigoropoulos | raise api.faults.Unauthorized("Unauthorized operation") |
187 | 8646e606 | Dionysis Grigoropoulos | |
188 | ba6ad346 | Dionysis Grigoropoulos | utils.check_name_length(name, Subnet.SUBNET_NAME_LENGTH, "Subnet name is "
|
189 | ba6ad346 | Dionysis Grigoropoulos | " too long")
|
190 | 9eb0710b | Dionysis Grigoropoulos | |
191 | 9eb0710b | Dionysis Grigoropoulos | subnet.name = name |
192 | 9eb0710b | Dionysis Grigoropoulos | subnet.save() |
193 | 9eb0710b | Dionysis Grigoropoulos | |
194 | 9eb0710b | Dionysis Grigoropoulos | return subnet
|
195 | 9eb0710b | Dionysis Grigoropoulos | |
196 | 9eb0710b | Dionysis Grigoropoulos | |
197 | 9eb0710b | Dionysis Grigoropoulos | #Utility functions
|
198 | 9eb0710b | Dionysis Grigoropoulos | def create_ip_pools(pools, cidr, subnet): |
199 | 9eb0710b | Dionysis Grigoropoulos | """Create IP Pools in the database"""
|
200 | f23fbacf | Christos Stavrakakis | return [_create_ip_pool(pool, cidr, subnet) for pool in pools] |
201 | f23fbacf | Christos Stavrakakis | |
202 | f23fbacf | Christos Stavrakakis | |
203 | f23fbacf | Christos Stavrakakis | def _create_ip_pool(pool, cidr, subnet): |
204 | f23fbacf | Christos Stavrakakis | size = int(pool[1]) - int(pool[0]) + 1 |
205 | f23fbacf | Christos Stavrakakis | base = str(cidr)
|
206 | f23fbacf | Christos Stavrakakis | offset = int(pool[0]) - int(cidr.network) |
207 | f23fbacf | Christos Stavrakakis | return IPPoolTable.objects.create(size=size, offset=offset,
|
208 | f23fbacf | Christos Stavrakakis | base=base, subnet=subnet) |
209 | 9eb0710b | Dionysis Grigoropoulos | |
210 | 9eb0710b | Dionysis Grigoropoulos | |
211 | 9eb0710b | Dionysis Grigoropoulos | def check_number_of_subnets(network, version): |
212 | 9eb0710b | Dionysis Grigoropoulos | """Check if a user can add a subnet in a network"""
|
213 | 9eb0710b | Dionysis Grigoropoulos | if network.subnets.filter(ipversion=version):
|
214 | 9eb0710b | Dionysis Grigoropoulos | raise api.faults.BadRequest("Only one subnet of IPv4/IPv6 per " |
215 | 9eb0710b | Dionysis Grigoropoulos | "network is allowed")
|
216 | 9eb0710b | Dionysis Grigoropoulos | |
217 | 9eb0710b | Dionysis Grigoropoulos | |
218 | f23fbacf | Christos Stavrakakis | def validate_pools(pool_list, cidr, gateway): |
219 | 316787ab | Dionysis Grigoropoulos | """Validate IP Pools
|
220 | 316787ab | Dionysis Grigoropoulos |
|
221 | 9eb0710b | Dionysis Grigoropoulos | Validate the given IP pools are inside the cidr range
|
222 | 9eb0710b | Dionysis Grigoropoulos | Validate there are no overlaps in the given pools
|
223 | 9eb0710b | Dionysis Grigoropoulos | Finally, validate the gateway isn't in the given ip pools
|
224 | 9eb0710b | Dionysis Grigoropoulos | Input must be a list containing a sublist with start/end ranges as
|
225 | 9eb0710b | Dionysis Grigoropoulos | ipaddr.IPAddress items eg.,
|
226 | 9eb0710b | Dionysis Grigoropoulos | [[IPv4Address('192.168.42.11'), IPv4Address('192.168.42.15')],
|
227 | 9eb0710b | Dionysis Grigoropoulos | [IPv4Address('192.168.42.30'), IPv4Address('192.168.42.60')]]
|
228 | 316787ab | Dionysis Grigoropoulos |
|
229 | 9eb0710b | Dionysis Grigoropoulos | """
|
230 | 9eb0710b | Dionysis Grigoropoulos | if pool_list[0][0] <= cidr.network: |
231 | 9eb0710b | Dionysis Grigoropoulos | raise api.faults.Conflict("IP Pool out of bounds") |
232 | 9eb0710b | Dionysis Grigoropoulos | elif pool_list[-1][1] >= cidr.broadcast: |
233 | 9eb0710b | Dionysis Grigoropoulos | raise api.faults.Conflict("IP Pool out of bounds") |
234 | 9eb0710b | Dionysis Grigoropoulos | |
235 | 9eb0710b | Dionysis Grigoropoulos | for start, end in pool_list: |
236 | 9eb0710b | Dionysis Grigoropoulos | if start > end:
|
237 | 9eb0710b | Dionysis Grigoropoulos | raise api.faults.Conflict("Invalid IP pool range") |
238 | 9eb0710b | Dionysis Grigoropoulos | # Raise BadRequest if gateway is inside the pool range
|
239 | b7311f3d | Dionysis Grigoropoulos | if gateway:
|
240 | b7311f3d | Dionysis Grigoropoulos | if not (gateway < start or gateway > end): |
241 | b7311f3d | Dionysis Grigoropoulos | raise api.faults.Conflict("Gateway cannot be in pool range") |
242 | 9eb0710b | Dionysis Grigoropoulos | |
243 | eb5f7eb0 | Dionysis Grigoropoulos | # Check if there is a conflict between the IP Pool ranges
|
244 | 9eb0710b | Dionysis Grigoropoulos | end = cidr.network |
245 | 9eb0710b | Dionysis Grigoropoulos | for pool in pool_list: |
246 | 9eb0710b | Dionysis Grigoropoulos | if end >= pool[0]: |
247 | 9eb0710b | Dionysis Grigoropoulos | raise api.faults.Conflict("IP Pool range conflict") |
248 | 9eb0710b | Dionysis Grigoropoulos | end = pool[1]
|
249 | f82dfec6 | Christos Stavrakakis | |
250 | f82dfec6 | Christos Stavrakakis | |
251 | f82dfec6 | Christos Stavrakakis | def validate_subnet_params(subnet=None, gateway=None, subnet6=None, |
252 | f82dfec6 | Christos Stavrakakis | gateway6=None):
|
253 | f82dfec6 | Christos Stavrakakis | if subnet:
|
254 | f82dfec6 | Christos Stavrakakis | try:
|
255 | f82dfec6 | Christos Stavrakakis | # Use strict option to not all subnets with host bits set
|
256 | f82dfec6 | Christos Stavrakakis | network = ipaddr.IPv4Network(subnet, strict=True)
|
257 | f82dfec6 | Christos Stavrakakis | except ValueError: |
258 | f82dfec6 | Christos Stavrakakis | raise faults.BadRequest("Invalid network IPv4 subnet") |
259 | f82dfec6 | Christos Stavrakakis | |
260 | f82dfec6 | Christos Stavrakakis | # Check that network size is allowed!
|
261 | f82dfec6 | Christos Stavrakakis | prefixlen = network.prefixlen |
262 | f82dfec6 | Christos Stavrakakis | if prefixlen > 29 or prefixlen <= settings.MAX_CIDR_BLOCK: |
263 | f82dfec6 | Christos Stavrakakis | raise faults.OverLimit(
|
264 | f82dfec6 | Christos Stavrakakis | message="Unsupported network size",
|
265 | f82dfec6 | Christos Stavrakakis | details="Netmask must be in range: (%s, 29]" %
|
266 | f82dfec6 | Christos Stavrakakis | settings.MAX_CIDR_BLOCK) |
267 | f82dfec6 | Christos Stavrakakis | if gateway: # Check that gateway belongs to network |
268 | f82dfec6 | Christos Stavrakakis | try:
|
269 | f82dfec6 | Christos Stavrakakis | gateway = ipaddr.IPv4Address(gateway) |
270 | f82dfec6 | Christos Stavrakakis | except ValueError: |
271 | f82dfec6 | Christos Stavrakakis | raise faults.BadRequest("Invalid network IPv4 gateway") |
272 | f82dfec6 | Christos Stavrakakis | if not gateway in network: |
273 | f82dfec6 | Christos Stavrakakis | raise faults.BadRequest("Invalid network IPv4 gateway") |
274 | f82dfec6 | Christos Stavrakakis | |
275 | f82dfec6 | Christos Stavrakakis | if subnet6:
|
276 | f82dfec6 | Christos Stavrakakis | try:
|
277 | f82dfec6 | Christos Stavrakakis | # Use strict option to not all subnets with host bits set
|
278 | f82dfec6 | Christos Stavrakakis | network6 = ipaddr.IPv6Network(subnet6, strict=True)
|
279 | f82dfec6 | Christos Stavrakakis | except ValueError: |
280 | f82dfec6 | Christos Stavrakakis | raise faults.BadRequest("Invalid network IPv6 subnet") |
281 | f82dfec6 | Christos Stavrakakis | # Check that network6 is an /64 subnet, because this is imposed by
|
282 | f82dfec6 | Christos Stavrakakis | # 'mac2eui64' utiity.
|
283 | f82dfec6 | Christos Stavrakakis | if network6.prefixlen != 64: |
284 | f82dfec6 | Christos Stavrakakis | msg = ("Unsupported IPv6 subnet size. Network netmask must be"
|
285 | f82dfec6 | Christos Stavrakakis | " /64")
|
286 | f82dfec6 | Christos Stavrakakis | raise faults.BadRequest(msg)
|
287 | f82dfec6 | Christos Stavrakakis | if gateway6:
|
288 | f82dfec6 | Christos Stavrakakis | try:
|
289 | f82dfec6 | Christos Stavrakakis | gateway6 = ipaddr.IPv6Address(gateway6) |
290 | f82dfec6 | Christos Stavrakakis | except ValueError: |
291 | f82dfec6 | Christos Stavrakakis | raise faults.BadRequest("Invalid network IPv6 gateway") |
292 | f82dfec6 | Christos Stavrakakis | if not gateway6 in network6: |
293 | f82dfec6 | Christos Stavrakakis | raise faults.BadRequest("Invalid network IPv6 gateway") |
294 | 0d1f9117 | Dionysis Grigoropoulos | |
295 | 0d1f9117 | Dionysis Grigoropoulos | |
296 | 0d1f9117 | Dionysis Grigoropoulos | def parse_allocation_pools(allocation_pools): |
297 | 0d1f9117 | Dionysis Grigoropoulos | alloc = list()
|
298 | 0d1f9117 | Dionysis Grigoropoulos | for pool in allocation_pools: |
299 | 0d1f9117 | Dionysis Grigoropoulos | try:
|
300 | 0d1f9117 | Dionysis Grigoropoulos | start, end = pool.split(',')
|
301 | 0d1f9117 | Dionysis Grigoropoulos | alloc.append([ipaddr.IPv4Address(start), |
302 | 0d1f9117 | Dionysis Grigoropoulos | ipaddr.IPv4Address(end)]) |
303 | 0d1f9117 | Dionysis Grigoropoulos | except ValueError: |
304 | 44bd008a | Dionysis Grigoropoulos | raise faults.BadRequest("Malformed IPv4 address") |
305 | 0d1f9117 | Dionysis Grigoropoulos | |
306 | 0d1f9117 | Dionysis Grigoropoulos | return alloc |