# Copyright (C) 2009 Red Hat, Inc., Joey Boggs # Copyright (C) 2012 Rackspace US, Inc., # Justin Shepherd # Copyright (C) 2013 Red Hat, Inc., Flavio Percoco # Copyright (C) 2013 Red Hat, Inc., Jeremy Agee # This file is part of the sos project: https://github.com/sosreport/sos # # This copyrighted material is made available to anyone wishing to use, # modify, copy, or redistribute it subject to the terms and conditions of # version 2 of the GNU General Public License. # # See the LICENSE file in the source distribution for further information. from sos.plugins import Plugin, RedHatPlugin, DebianPlugin, UbuntuPlugin class OpenStackCinder(Plugin): """OpenStack cinder """ plugin_name = "openstack_cinder" profiles = ('openstack', 'openstack_controller') var_puppet_gen = "/var/lib/config-data/puppet-generated/cinder" def setup(self): cinder_config = "" cinder_config_opt = "--config-dir %s/etc/cinder/" # check if either standalone (cinder-api) or httpd wsgi (cinder_wsgi) # is up and running cinder_process = ["cinder_wsgi", "cinder-api"] in_ps = False for process in cinder_process: in_ps = self.check_process_by_name(process) if in_ps: break in_container = self.running_in_container() if in_container: cinder_config = cinder_config_opt % self.var_puppet_gen # collect commands output if the standalone, wsgi or container is up if in_ps or in_container: self.add_cmd_output( "cinder-manage " + cinder_config + " db version", suggest_filename="cinder_db_version" ) self.add_copy_spec([ "/etc/cinder/", self.var_puppet_gen + "/etc/cinder/", self.var_puppet_gen + "/etc/httpd/conf/", self.var_puppet_gen + "/etc/httpd/conf.d/", self.var_puppet_gen + "/etc/httpd/conf.modules.d/*.conf", self.var_puppet_gen + "/etc/my.cnf.d/tripleo.cnf", self.var_puppet_gen + "/etc/sysconfig/", ]) if self.get_option("all_logs"): self.add_copy_spec([ "/var/log/cinder/", "/var/log/httpd/cinder*", "/var/log/containers/cinder/", "/var/log/containers/httpd/cinder-api/" ]) else: self.add_copy_spec([ "/var/log/cinder/*.log", "/var/log/httpd/cinder*.log", "/var/log/containers/cinder/*.log", "/var/log/containers/httpd/cinder-api/*log" ]) if self.get_option("verify"): self.add_cmd_output("rpm -V %s" % ' '.join(self.packages)) def running_in_container(self): for runtime in ["docker", "podman"]: container_status = self.get_command_output(runtime + " ps") if container_status['status'] == 0: for line in container_status['output'].splitlines(): if line.endswith("cinder_api"): return True return False def apply_regex_sub(self, regexp, subst): self.do_path_regex_sub("/etc/cinder/*", regexp, subst) self.do_path_regex_sub( self.var_puppet_gen + "/etc/cinder/*", regexp, subst ) def postproc(self): protect_keys = [ "admin_password", "backup_tsm_password", "chap_password", "nas_password", "cisco_fc_fabric_password", "coraid_password", "eqlx_chap_password", "fc_fabric_password", "hitachi_auth_password", "hitachi_horcm_password", "hp3par_password", "hplefthand_password", "memcache_secret_key", "netapp_password", "netapp_sa_password", "nexenta_password", "password", "qpid_password", "rabbit_password", "san_password", "ssl_key_password", "vmware_host_password", "zadara_password", "zfssa_initiator_password", "hmac_keys", "zfssa_target_password", "os_privileged_user_password", "transport_url" ] connection_keys = ["connection"] self.apply_regex_sub( r"((?m)^\s*(%s)\s*=\s*)(.*)" % "|".join(protect_keys), r"\1*********" ) self.apply_regex_sub( r"((?m)^\s*(%s)\s*=\s*(.*)://(\w*):)(.*)(@(.*))" % "|".join(connection_keys), r"\1*********\6" ) class DebianCinder(OpenStackCinder, DebianPlugin, UbuntuPlugin): cinder = False packages = ( 'cinder-api', 'cinder-backup', 'cinder-common', 'cinder-scheduler', 'cinder-volume', 'python-cinder', 'python-cinderclient' ) def setup(self): super(DebianCinder, self).setup() class RedHatCinder(OpenStackCinder, RedHatPlugin): cinder = False packages = ('openstack-selinux',) def setup(self): super(RedHatCinder, self).setup() self.add_copy_spec(["/etc/sudoers.d/cinder"]) # vim: set et ts=4 sw=4 :