mirror of https://github.com/apache/cloudstack.git
105 lines
4.6 KiB
Java
105 lines
4.6 KiB
Java
// Licensed to the Apache Software Foundation (ASF) under one
|
|
// or more contributor license agreements. See the NOTICE file
|
|
// distributed with this work for additional information
|
|
// regarding copyright ownership. The ASF licenses this file
|
|
// to you under the Apache License, Version 2.0 (the
|
|
// "License"); you may not use this file except in compliance
|
|
// with the License. You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing,
|
|
// software distributed under the License is distributed on an
|
|
// "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
|
|
// KIND, either express or implied. See the License for the
|
|
// specific language governing permissions and limitations
|
|
// under the License.
|
|
package com.cloud.vm;
|
|
|
|
import com.cloud.agent.api.Answer;
|
|
import com.cloud.agent.manager.Commands;
|
|
import com.cloud.deploy.DeployDestination;
|
|
import com.cloud.exception.ResourceUnavailableException;
|
|
import com.cloud.utils.PasswordGenerator;
|
|
import com.cloud.utils.exception.CloudRuntimeException;
|
|
import org.apache.cloudstack.ca.CAManager;
|
|
import org.apache.cloudstack.framework.ca.Certificate;
|
|
import org.apache.cloudstack.framework.config.ConfigKey;
|
|
import org.apache.cloudstack.utils.security.CertUtils;
|
|
import org.apache.cloudstack.utils.security.KeyStoreUtils;
|
|
|
|
import java.io.IOException;
|
|
import java.nio.charset.StandardCharsets;
|
|
import java.util.Base64;
|
|
|
|
/**
|
|
* A VirtualMachineGuru knows how to process a certain type of virtual machine.
|
|
*
|
|
*/
|
|
public interface VirtualMachineGuru {
|
|
|
|
static final ConfigKey<String> NTPServerConfig = new ConfigKey<String>(String.class, "ntp.server.list", "Advanced", null,
|
|
"Comma separated list of NTP servers to configure in System VMs", true, ConfigKey.Scope.Global, null, null, null, null, null, ConfigKey.Kind.CSV, null);
|
|
|
|
boolean finalizeVirtualMachineProfile(VirtualMachineProfile profile, DeployDestination dest, ReservationContext context);
|
|
|
|
/**
|
|
* finalize the virtual machine deployment.
|
|
* @param cmds commands that were created.
|
|
* @param profile virtual machine profile.
|
|
* @param dest destination to send the command.
|
|
* @return true if everything checks out. false if not and we should try again.
|
|
*/
|
|
boolean finalizeDeployment(Commands cmds, VirtualMachineProfile profile, DeployDestination dest, ReservationContext context) throws ResourceUnavailableException;
|
|
|
|
/**
|
|
* Check the deployment results.
|
|
* @param cmds commands and answers that were sent.
|
|
* @param profile virtual machine profile.
|
|
* @param dest destination it was sent to.
|
|
* @return true if deployment was fine; false if it didn't go well.
|
|
*/
|
|
boolean finalizeStart(VirtualMachineProfile profile, long hostId, Commands cmds, ReservationContext context);
|
|
|
|
boolean finalizeCommandsOnStart(Commands cmds, VirtualMachineProfile profile);
|
|
|
|
void finalizeStop(VirtualMachineProfile profile, Answer answer);
|
|
|
|
void finalizeExpunge(VirtualMachine vm);
|
|
|
|
/**
|
|
* Prepare Vm for Stop
|
|
* @param profile
|
|
* @return
|
|
*/
|
|
void prepareStop(VirtualMachineProfile profile);
|
|
|
|
void finalizeUnmanage(VirtualMachine vm);
|
|
|
|
static String getEncodedMsPublicKey(String pubKey) {
|
|
String base64EncodedPublicKey = null;
|
|
if (pubKey != null) {
|
|
base64EncodedPublicKey = Base64.getEncoder().encodeToString(pubKey.getBytes(StandardCharsets.UTF_8));
|
|
}
|
|
return base64EncodedPublicKey;
|
|
}
|
|
|
|
public static String getEncodedString(String certificate) {
|
|
return Base64.getEncoder().encodeToString(certificate.replace("\n", KeyStoreUtils.CERT_NEWLINE_ENCODER).replace(" ", KeyStoreUtils.CERT_SPACE_ENCODER).getBytes(StandardCharsets.UTF_8));
|
|
}
|
|
|
|
static void appendCertificateDetails(StringBuilder buf, Certificate certificate) {
|
|
try {
|
|
buf.append(" certificate=").append(getEncodedString(CertUtils.x509CertificateToPem(certificate.getClientCertificate())));
|
|
buf.append(" cacertificate=").append(getEncodedString(CertUtils.x509CertificatesToPem(certificate.getCaCertificates())));
|
|
if (certificate.getPrivateKey() != null) {
|
|
buf.append(" privatekey=").append(getEncodedString(CertUtils.privateKeyToPem(certificate.getPrivateKey())));
|
|
}
|
|
} catch (IOException e) {
|
|
throw new CloudRuntimeException("Failed to transform X509 cert to PEM format", e);
|
|
}
|
|
buf.append(" keystore_password=").append(getEncodedString(PasswordGenerator.generateRandomPassword(16)));
|
|
buf.append(" validity=").append(CAManager.CertValidityPeriod.value());
|
|
}
|
|
}
|