puppet-modules/modules/akvorado.py at f67aba8428dca736e8b0efc4d7a9682f7d85f05c · dhtech/puppet-modules · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
# vim: ts=4: sts=4: sw=4: expandtab
# Copyright 2024 dhtech
#
# Use of this source code is governed by a BSD-style
# license that can be found in the LICENSE file
import lib
import os
import sqlite3
import yaml

DB_FILE = '/etc/ipplan.db'

def get_sflow_clients():
    if os.path.isfile(DB_FILE):
        try:
            conn = sqlite3.connect(DB_FILE)
            db = conn.cursor()
        except sqlite3.Error as e:
            print("An error occurred: {}".format(e.args[0]))
            exit(2)
    else:
        print("No database file found: {}".format(DB_FILE))
        exit(3)
    db.execute(
            "SELECT h.name AS hostname, h.ipv4_addr_txt AS ipv4_addr ,h.ipv6_addr_txt AS ipv6_addr, o2.value AS layer "
            "FROM host h "
            "INNER JOIN option o1 ON h.node_id = o1.node_id "
            "INNER JOIN option o2 ON h.node_id = o2.node_id "
            "WHERE o1.name='pkg' AND o1.value='sflowclient' "
            "AND o2.name='layer';"
            )
    res = db.fetchall()
    if not res:
        return None

    column_names = [description[0] for description in db.description]
    conn.close()
    rows_dict = [dict(zip(column_names, row)) for row in res]

    return rows_dict

def get_snmpv2_providers():
    providers = []
    clients = get_sflow_clients()
    if not clients:
        return providers
    current_event = lib.get_current_event()
    for client in clients:
        key = current_event+'-mgmt/snmpv2:'+client['layer']
        secrets = lib.read_secret(key)
        if not secrets:
            return providers
        if "community" in secrets:
            provider = {
                    "ipv4": client["ipv4_addr"],
                    "community": secrets["community"],
                    }
            providers.append(provider)
    return providers

def get_snmpv3_providers():
    providers = []
    clients = get_sflow_clients()
    if not clients:
        return providers
    current_event = lib.get_current_event()
    for client in clients:
        key = current_event+'-mgmt/snmpv3:'+client['layer']
        secrets = lib.read_secret(key)
        if not secrets:
            return providers
        if "user" in secrets:
            provider = {
                    "ipv4": client["ipv4_addr"],
                    "authentication-passphrase": secrets["auth"],
                    "authentication-protocol": secrets["authtype"].replace(" ","").upper(),
                    "privacy-passphrase": secrets["priv"],
                    "privacy-protocol": secrets["privtype"].replace(" ","").replace("128","").upper(),
                    "user": secrets["user"],
                    }
            providers.append(provider)
    return providers

def get_prefixes(ipversion):
    if os.path.isfile(DB_FILE):
        try:
            conn = sqlite3.connect(DB_FILE)
            db = conn.cursor()
        except sqlite3.Error as e:
            print("An error occurred: {}".format(e.args[0]))
            exit(2)
    else:
        print("No database file found: {}".format(DB_FILE))
        exit(3)

    if ipversion == "4":
        db.execute(
            'SELECT SUBSTR(name,1, INSTR(name, "@")-1) AS location, name, short_name, ipv4_txt'
            ' FROM network'
            ' WHERE node_id NOT IN (SELECT option.node_id FROM option WHERE name = "no-akv")'
            ' AND name LIKE "%@%" AND ipv4_txt IS NOT NULL'
            )

    elif ipversion == "6":
        db.execute(
            'SELECT SUBSTR(name,1, INSTR(name, "@")-1) AS location, name, short_name, ipv6_txt'
            ' FROM network'
            ' WHERE node_id NOT IN (SELECT option.node_id FROM option WHERE name = "no-akv")'
            ' AND name LIKE "%@%" AND ipv6_txt IS NOT NULL'
            ' AND NOT (name = "BOGAL@DREAMHACK" AND ipv6_txt = "2a05:2240:5000::/48")'
            )
    else:
        raise NetworkTypeNotFoundError('network type must be 4 or 6')

    res = db.fetchall()
    if not res:
        raise NetworkNotFoundError('network not found')

    column_names = [description[0] for description in db.description]
    conn.close()
    rows_dict = [dict(zip(column_names, row)) for row in res]

    return rows_dict


def requires(host, *args):
    return ['apache(ldap)']


def generate(host, *args):

    info = {}
    info['snmpv3_providers'] = get_snmpv3_providers()
    info['snmpv2_providers'] = get_snmpv2_providers()
    info['current_event'] = lib.get_current_event()
    info['ipv6_prefixes'] = get_prefixes('6')
    info['ipv4_prefixes'] = get_prefixes('4')
    return {'akvorado': info}