NationTech/harmony
6
0
Fork 1
Code Issues 32 Pull Requests 7 Actions Packages Projects Releases 1 Wiki Activity

WIP: configure-switch #159

Closed
johnride wants to merge 18 commits from configure-switch into master
pull from: configure-switch
merge into: NationTech:master
Conversation 0 Commits 18 Files Changed 26 +318 -167
1 changed files with 318 additions and 167 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit 1199564122 - Show all commits

485
brocade/src/lib.rs
View File

@ -2,17 +2,20 @@ use std::{
borrow::Cow, borrow::Cow,
fmt::{self, Display}, fmt::{self, Display},
sync::Arc, sync::Arc,
time::Duration,
}; };
use async_trait::async_trait; use async_trait::async_trait;
use harmony_types::net::{IpAddress, MacAddress}; use harmony_types::net::{IpAddress, MacAddress};
use log::{debug, info}; use log::{debug, info};
use russh::{ use russh::{
ChannelMsg,
client::{Handle, Handler}, client::{Handle, Handler},
kex::DH_G1_SHA1, kex::DH_G1_SHA1,
}; };
use russh_keys::key::{self, SSH_RSA}; use russh_keys::key::{self, SSH_RSA};
use std::str::FromStr; use std::str::FromStr;
use tokio::time::{Instant, timeout};
#[derive(Debug, PartialEq, Eq, PartialOrd, Ord, Clone)] #[derive(Debug, PartialEq, Eq, PartialOrd, Ord, Clone)]
pub struct MacAddressEntry { pub struct MacAddressEntry {
@ -23,13 +26,40 @@ pub struct MacAddressEntry {
pub struct BrocadeClient { pub struct BrocadeClient {
client: Handle<Client>, client: Handle<Client>,
elevated_user: UserConfig,
options: BrocadeOptions, options: BrocadeOptions,
} }
#[derive(Default, Clone, Debug)]
struct UserConfig {
username: String,
password: String,
}
#[derive(Default, Clone, Debug)] #[derive(Default, Clone, Debug)]
pub struct BrocadeOptions { pub struct BrocadeOptions {
pub dry_run: bool, pub dry_run: bool,
pub ssh: SshOptions, pub ssh: SshOptions,
pub timeouts: TimeoutConfig,
}
#[derive(Clone, Debug)]
pub struct TimeoutConfig {
pub shell_ready: Duration,
pub command_execution: Duration,
pub cleanup: Duration,
pub message_wait: Duration,
}
impl Default for TimeoutConfig {
fn default() -> Self {
Self {
shell_ready: Duration::from_secs(3),
command_execution: Duration::from_secs(10),
cleanup: Duration::from_secs(3),
message_wait: Duration::from_millis(500),
}
}
} }
#[derive(Clone, Debug)] #[derive(Clone, Debug)]
@ -56,87 +86,51 @@ impl BrocadeClient {
password: &str, password: &str,
options: Option<BrocadeOptions>, options: Option<BrocadeOptions>,
) -> Result<Self, Error> { ) -> Result<Self, Error> {
if ip_addresses.is_empty() { let ip = ip_addresses
return Err(Error::ConfigurationError( .first()
"No IP addresses provided".to_string(), .ok_or_else(|| Error::ConfigurationError("No IP addresses provided".to_string()))?;
));
}
let ip = ip_addresses[0]; // FIXME: Find a better way to get master switch IP address
let options = options.unwrap_or_default(); let options = options.unwrap_or_default();
let config = russh::client::Config { let config = russh::client::Config {
preferred: options.ssh.preferred_algorithms.clone(), preferred: options.ssh.preferred_algorithms.clone(),
..Default::default() ..Default::default()
}; };
let mut client = russh::client::connect(Arc::new(config), (ip, 22), Client {}).await?;
match client.authenticate_password(username, password).await? { let mut client = russh::client::connect(Arc::new(config), (*ip, 22), Client {}).await?;
true => Ok(Self { client, options }),
false => Err(Error::AuthenticationError( if !client.authenticate_password(username, password).await? {
return Err(Error::AuthenticationError(
"ssh authentication failed".to_string(), "ssh authentication failed".to_string(),
)), ));
} }
Ok(Self {
client,
options,
elevated_user: UserConfig {
username: username.to_string(),
password: password.to_string(),
},
})
} }
pub async fn show_mac_address_table(&self) -> Result<Vec<MacAddressEntry>, Error> { pub async fn show_mac_address_table(&self) -> Result<Vec<MacAddressEntry>, Error> {
let output = self.run_command("show mac-address").await?; let output = self.run_command("show mac-address").await?;
let mut entries = Vec::new();
// The Brocade output usually has a header and then one entry per line. output
// We will skip the header and parse each line. .lines()
// Sample line: "1234 AA:BB:CC:DD:EE:F1 GigabitEthernet1/1/1" .skip(1)
for line in output.lines().skip(1) { .filter_map(|line| self.parse_mac_entry(line))
// Skip the header row .collect()
let parts: Vec<&str> = line.split_whitespace().collect();
if parts.len() >= 3 {
// Assuming the format is: <VLAN> <MAC> <Port>
if let Ok(vlan) = u16::from_str(parts[0]) {
let mac = MacAddress::try_from(parts[1].to_string());
let port = parts[2].to_string();
if let Ok(mac_address) = mac {
entries.push(MacAddressEntry {
vlan,
mac_address,
port_name: port,
});
}
}
}
}
Ok(entries)
} }
pub async fn configure_port_channel(&self, ports: &[String]) -> Result<u8, Error> { pub async fn configure_port_channel(&self, ports: &[String]) -> Result<u8, Error> {
info!("[Brocade] Configuring port-channel with ports: {ports:?}"); info!("[Brocade] Configuring port-channel with ports: {ports:?}");
let channel_id = self.find_available_channel_id().await?; let channel_id = self.find_available_channel_id().await?;
let mut commands = Vec::new(); let commands = self.build_port_channel_commands(channel_id, ports);
// Start configuration mode.
commands.push("configure terminal".to_string());
// Create the port channel interface.
commands.push(format!("interface Port-channel {channel_id}"));
commands.push("no ip address".to_string());
commands.push("exit".to_string());
// Configure each physical port to join the channel.
for port in ports {
commands.push(format!("interface {port}"));
// 'channel-group' command to add the interface to the port channel.
// Using 'mode active' enables LACP.
commands.push(format!("channel-group {channel_id} mode active"));
commands.push("exit".to_string());
}
// Save the configuration.
commands.push("write memory".to_string());
self.run_commands(commands).await?; self.run_commands(commands).await?;
Ok(channel_id) Ok(channel_id)
} }
@ -144,150 +138,305 @@ impl BrocadeClient {
debug!("[Brocade] Finding next available channel id..."); debug!("[Brocade] Finding next available channel id...");
let output = self.run_command("show lag").await?; let output = self.run_command("show lag").await?;
let mut used_ids = Vec::new(); let mut used_ids: Vec<u8> = output
.lines()
// Sample output line: "3 Po3(SU) LACP Eth Yes 128/128 active " .filter_map(|line| {
// We're looking for the ID, which is the first number. if line.trim_start().chars().next()?.is_ascii_digit() {
for line in output.lines() { u8::from_str(line.split_whitespace().next()?).ok()
if line.trim().starts_with(|c: char| c.is_ascii_digit()) { } else {
let parts: Vec<&str> = line.split_whitespace().collect(); None
if let Ok(id) = u8::from_str(parts[0]) {
used_ids.push(id);
} }
} })
} .collect();
// Sort the used IDs to find the next available number. used_ids.sort_unstable();
used_ids.sort();
let mut next_id = 0;
for &id in &used_ids {
if id == next_id {
next_id += 1;
} else {
// Found a gap, so this is our ID.
return Ok(next_id);
}
}
let next_id = (0u8..)
.find(|&id| used_ids.binary_search(&id).is_err())
.unwrap_or(0);
debug!("[Brocade] Found channel id '{next_id}'"); debug!("[Brocade] Found channel id '{next_id}'");
Ok(next_id) Ok(next_id)
} }
async fn run_command(&self, command: &str) -> Result<String, Error> { async fn run_command(&self, command: &str) -> Result<String, Error> {
if !command.starts_with("show") && self.options.dry_run { if self.should_skip_command(command) {
info!("[Brocade] Dry-run mode enabled, skipping command: {command}"); return Ok(String::new());
return Ok("".into());
} }
debug!("[Brocade] Running command: '{command}'...");
let mut channel = self.client.channel_open_session().await?; let mut channel = self.client.channel_open_session().await?;
let mut output = Vec::new(); self.setup_channel(&mut channel).await?;
self.wait_for_shell_ready(&mut channel).await?;
channel.exec(true, command).await?; let output = self
.execute_command_in_session(&mut channel, command)
.await?;
let cleaned = self.clean_brocade_output(&output, command);
loop { debug!("[Brocade] Command output:\n{cleaned}");
let Some(msg) = channel.wait().await else { self.cleanup_channel(&mut channel).await; // Cleanup/close the channel
break;
};
match msg { Ok(cleaned)
russh::ChannelMsg::ExtendedData { ref data, .. }
| russh::ChannelMsg::Data { ref data } => {
output.append(&mut data.to_vec());
}
russh::ChannelMsg::ExitStatus { exit_status } => {
if exit_status != 0 {
let output_str = String::from_utf8(output).unwrap_or_default();
return Err(Error::CommandError(format!(
"Command failed with exit status {exit_status}, output {output_str}",
)));
}
}
russh::ChannelMsg::Eof => {
channel.close().await?;
}
russh::ChannelMsg::Close => {
break;
}
russh::ChannelMsg::Success | russh::ChannelMsg::WindowAdjusted { .. } => {}
_ => {
return Err(Error::UnexpectedError(format!(
"Russh got unexpected msg {msg:?}"
)));
}
}
}
let output = String::from_utf8(output).expect("Output should be UTF-8 compatible");
debug!("[Brocade] Command output:\n{output}");
Ok(output)
} }
async fn run_commands(&self, commands: Vec<String>) -> Result<(), Error> { async fn run_commands(&self, commands: Vec<String>) -> Result<(), Error> {
// Execute commands sequentially and check for errors immediately. if commands.is_empty() {
return Ok(());
}
let mut channel = self.client.channel_open_session().await?;
self.setup_channel(&mut channel).await?;
self.wait_for_shell_ready(&mut channel).await?;
for command in commands { for command in commands {
if !command.starts_with("show") && self.options.dry_run { if self.should_skip_command(&command) {
info!("[Brocade] Dry-run mode enabled, skipping command: {command}");
continue; continue;
} }
debug!("[Brocade] Running command: '{command}'..."); let output = self
.execute_command_in_session(&mut channel, &command)
.await?;
let cleaned = self.clean_brocade_output(&output, &command);
let mut channel = self.client.channel_open_session().await?; debug!("[Brocade] Command output:\n{cleaned}");
let mut output = Vec::new(); self.check_for_command_errors(&cleaned, &command)?;
let mut close_received = false; }
channel.exec(true, command.as_str()).await?; channel.data(&b"exit\n"[..]).await?;
self.cleanup_channel(&mut channel).await;
loop { Ok(())
let Some(msg) = channel.wait().await else { }
break;
};
match msg { async fn setup_channel(
russh::ChannelMsg::ExtendedData { ref data, .. } &self,
| russh::ChannelMsg::Data { ref data } => { channel: &mut russh::Channel<russh::client::Msg>,
output.append(&mut data.to_vec()); ) -> Result<(), Error> {
} // Setup PTY and shell
russh::ChannelMsg::ExitStatus { exit_status } => { channel
if exit_status != 0 { .request_pty(false, "vt100", 80, 24, 0, 0, &[])
let output_str = String::from_utf8(output).unwrap_or_default(); .await?;
return Err(Error::CommandError(format!( channel.request_shell(false).await?;
"Command failed with exit status {exit_status}: {output_str}", Ok(())
))); }
}
} async fn execute_command_in_session(
russh::ChannelMsg::Eof => { &self,
channel.close().await?; channel: &mut russh::Channel<russh::client::Msg>,
} command: &str,
russh::ChannelMsg::Close => { ) -> Result<String, Error> {
close_received = true; debug!("[Brocade] Running command: '{command}'...");
break;
} channel.data(format!("{}\n", command).as_bytes()).await?;
russh::ChannelMsg::Success | russh::ChannelMsg::WindowAdjusted { .. } => {} tokio::time::sleep(Duration::from_millis(100)).await;
_ => {
return Err(Error::UnexpectedError(format!( let output = self.collect_command_output(channel).await?;
"Russh got unexpected msg {msg:?}"
))); String::from_utf8(output)
.map_err(|_| Error::UnexpectedError("Invalid UTF-8 in command output".to_string()))
}
async fn wait_for_shell_ready(
&self,
channel: &mut russh::Channel<russh::client::Msg>,
) -> Result<(), Error> {
let mut buffer = Vec::new();
let start = Instant::now();
while start.elapsed() < self.options.timeouts.shell_ready {
match timeout(self.options.timeouts.message_wait, channel.wait()).await {
Ok(Some(ChannelMsg::Data { data })) => {
buffer.extend_from_slice(&data);
let output = String::from_utf8_lossy(&buffer);
if output.contains('>') || output.contains('#') {
debug!("[Brocade] Shell ready: {}", output.trim());
return Ok(());
} }
} }
Ok(Some(_)) => continue,
Ok(None) => break,
Err(_) => continue,
}
}
Ok(())
}
async fn collect_command_output(
&self,
channel: &mut russh::Channel<russh::client::Msg>,
) -> Result<Vec<u8>, Error> {
let mut output = Vec::new();
let start = Instant::now();
let mut command_complete = false;
while start.elapsed() < self.options.timeouts.command_execution && !command_complete {
match timeout(Duration::from_secs(2), channel.wait()).await {
Ok(Some(ChannelMsg::Data { data } | ChannelMsg::ExtendedData { data, .. })) => {
output.extend_from_slice(&data);
let current = String::from_utf8_lossy(&output);
if current.ends_with('>') || current.ends_with("# ") {
command_complete = true;
}
}
Ok(Some(ChannelMsg::Eof | ChannelMsg::Close)) => {
command_complete = true;
}
Ok(Some(ChannelMsg::ExitStatus { exit_status })) => {
debug!("[Brocade] Command exit status: {exit_status}");
}
Ok(Some(_)) => continue,
Ok(None) => break,
Err(_) => break,
}
}
Ok(output)
}
async fn cleanup_channel(&self, channel: &mut russh::Channel<russh::client::Msg>) {
let start = Instant::now();
while start.elapsed() < self.options.timeouts.cleanup {
match timeout(self.options.timeouts.message_wait, channel.wait()).await {
Ok(Some(ChannelMsg::Close)) => break,
Ok(Some(_)) => continue,
Ok(None) | Err(_) => break,
}
}
}
fn should_skip_command(&self, command: &str) -> bool {
if !command.starts_with("show") && self.options.dry_run {
info!("[Brocade] Dry-run mode enabled, skipping command: {command}");
return true;
}
false
}
fn parse_mac_entry(&self, line: &str) -> Option<Result<MacAddressEntry, Error>> {
let parts: Vec<&str> = line.split_whitespace().collect();
if parts.len() < 3 {
return None;
}
let vlan = u16::from_str(parts[0]).ok()?;
let mac_address = MacAddress::try_from(parts[1].to_string()).ok()?;
let port_name = parts[2].to_string();
Some(Ok(MacAddressEntry {
vlan,
mac_address,
port_name,
}))
}
fn build_port_channel_commands(&self, channel_id: u8, ports: &[String]) -> Vec<String> {
let mut commands = vec![
"configure terminal".to_string(),
format!("interface Port-channel {channel_id}"),
"no ip address".to_string(),
"exit".to_string(),
];
for port in ports {
commands.extend([
format!("interface {port}"),
format!("channel-group {channel_id} mode active"),
"exit".to_string(),
]);
}
commands.push("write memory".to_string());
commands
}
fn clean_brocade_output(&self, raw_output: &str, command: &str) -> String {
debug!("[Brocade] Received command output:\n{raw_output}");
let lines: Vec<&str> = raw_output.lines().collect();
let mut cleaned_lines = Vec::new();
let mut output_started = false;
let mut command_echo_found = false;
for line in lines {
let trimmed = line.trim();
if !output_started && trimmed.is_empty() {
continue;
} }
if !close_received { if !command_echo_found && trimmed.contains(command) {
return Err(Error::UnexpectedError(format!( command_echo_found = true;
"Channel closed without receiving a final CLOSE message for command: {}", output_started = true;
command continue;
)));
} }
if self.is_prompt_line(trimmed) {
if output_started && !cleaned_lines.is_empty() {
break;
}
continue;
}
if trimmed == "exit" {
break;
}
if output_started && !trimmed.is_empty() {
cleaned_lines.push(line);
}
}
// Remove trailing empty lines
while cleaned_lines.last() == Some(&"") {
cleaned_lines.pop();
}
cleaned_lines.join("\n")
}
fn is_prompt_line(&self, line: &str) -> bool {
line.ends_with('#') || line.ends_with('>') || line.starts_with("SSH@")
}
fn check_for_command_errors(&self, output: &str, command: &str) -> Result<(), Error> {
const ERROR_PATTERNS: &[&str] = &[
"invalid input",
"syntax error",
"command not found",
"unknown command",
"permission denied",
"access denied",
"authentication failed",
"configuration error",
"failed to",
"error:",
"warning:",
];
let output_lower = output.to_lowercase();
if let Some(pattern) = ERROR_PATTERNS.iter().find(|&&p| output_lower.contains(p)) {
return Err(Error::CommandError(format!(
"Command '{}' failed with error containing '{}': {}",
command,
pattern,
output.trim()
)));
}
if !command.starts_with("show") && output.trim().is_empty() {
return Err(Error::CommandError(format!(
"Command '{}' produced no output, which may indicate an error",
command
)));
} }
Ok(()) Ok(())
} }
} }
struct Client {} struct Client;
#[async_trait] #[async_trait]
impl Handler for Client { impl Handler for Client {
@ -306,6 +455,7 @@ pub enum Error {
NetworkError(String), NetworkError(String),
AuthenticationError(String), AuthenticationError(String),
ConfigurationError(String), ConfigurationError(String),
TimeoutError(String),
UnexpectedError(String), UnexpectedError(String),
CommandError(String), CommandError(String),
} }
@ -316,6 +466,7 @@ impl Display for Error {
Error::NetworkError(msg) => write!(f, "Network error: {msg}"), Error::NetworkError(msg) => write!(f, "Network error: {msg}"),
Error::AuthenticationError(msg) => write!(f, "Authentication error: {msg}"), Error::AuthenticationError(msg) => write!(f, "Authentication error: {msg}"),
Error::ConfigurationError(msg) => write!(f, "Configuration error: {msg}"), Error::ConfigurationError(msg) => write!(f, "Configuration error: {msg}"),
Error::TimeoutError(msg) => write!(f, "Timeout error: {msg}"),
Error::UnexpectedError(msg) => write!(f, "Unexpected error: {msg}"), Error::UnexpectedError(msg) => write!(f, "Unexpected error: {msg}"),
Error::CommandError(msg) => write!(f, "Command failed: {msg}"), Error::CommandError(msg) => write!(f, "Command failed: {msg}"),
} }