135/netdisco
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Correct *_only and *_no setting logic

Browse Source
This commit is contained in:
Oliver Gorwits
2013-10-08 11:10:22 +01:00
parent 5905f94500
commit d3e9aa28d3
2 changed files with 88 additions and 37 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
Netdisco/Changes
View File

@@ -22,6 +22,7 @@
* OK to include device ports when doing arpnip (jeneric) * OK to include device ports when doing arpnip (jeneric)
* Correct bulkwalk_off logic * Correct bulkwalk_off logic
* Silence warnings when ports don't support i_lastchange * Silence warnings when ports don't support i_lastchange
* Correct *_only and *_no setting logic
2.017000 - 2013-09-23 2.017000 - 2013-09-23

124
Netdisco/lib/App/Netdisco/Util/Device.pm
View File

@@ -10,6 +10,7 @@ our @EXPORT = ();
our @EXPORT_OK = qw/ our @EXPORT_OK = qw/
get_device get_device
check_no check_no
check_only
is_discoverable is_discoverable
is_arpnipable is_arpnipable
can_nodenames can_nodenames
@@ -58,42 +59,11 @@ sub get_device {
->find_or_new({ip => $ip}); ->find_or_new({ip => $ip});
} }
=head2 check_no( $ip, $setting_name ) sub _check_acl {
my ($ip, $config) = @_;
Given the IP address of a device, returns true if the configuration setting
C<$setting_name> matches that device, else returns false.
There are several options for what C<$setting_name> can contain:
=over 4
=item *
Hostname, IP address, IP prefix
=item *
C<"model:regex"> - matched against the device model
=item *
C<"vendor:regex"> - matched against the device vendor
=back
To simply match all devices, use IP Prefix "C<0.0.0.0/0>". All regular
expressions are anchored (that is, they must match the whole string).
=cut
sub check_no {
my ($ip, $setting_name) = @_;
my $device = get_device($ip) or return 0; my $device = get_device($ip) or return 0;
my $addr = NetAddr::IP::Lite->new($device->ip); my $addr = NetAddr::IP::Lite->new($device->ip);
my $config = setting($setting_name) || [];
return 0 unless scalar @$config;
foreach my $item (@$config) { foreach my $item (@$config) {
if ($item =~ m/^(.*)\s*:\s*(.*)$/) { if ($item =~ m/^(.*)\s*:\s*(.*)$/) {
my $prop = $1; my $prop = $1;
@@ -117,6 +87,86 @@ sub check_no {
return 0; return 0;
} }
=head2 check_no( $ip, $setting_name )
Given the IP address of a device, returns true if the configuration setting
C<$setting_name> matches that device, else returns false.
print "rejected!" if check_no($ip, 'discover_no');
There are several options for what C<$setting_name> can contain:
=over 4
=item *
Hostname, IP address, IP prefix
=item *
C<"model:regex"> - matched against the device model
=item *
C<"vendor:regex"> - matched against the device vendor
=back
To simply match all devices, use "C<any>" or IP Prefix "C<0.0.0.0/0>". All
regular expressions are anchored (that is, they must match the whole string).
To match no devices we recommend an entry of "C<localhost>" in the setting.
=cut
sub check_no {
my ($ip, $setting_name) = @_;
my $config = setting($setting_name) || [];
return 0 unless scalar @$config;
return _check_acl($ip, $config);
}
=head2 check_only( $ip, $setting_name )
Given the IP address of a device, returns false if the configuration setting
C<$setting_name> matches that device, else returns true.
print "rejected!" unless check_only($ip, 'discover_only');
There are several options for what C<$setting_name> can contain:
=over 4
=item *
Hostname, IP address, IP prefix
=item *
C<"model:regex"> - matched against the device model
=item *
C<"vendor:regex"> - matched against the device vendor
=back
To simply match all devices, use "C<any>" or IP Prefix "C<0.0.0.0/0>". All
regular expressions are anchored (that is, they must match the whole string).
To match no devices we recommend an entry of "C<localhost>" in the setting.
=cut
sub check_only {
my ($ip, $setting_name) = @_;
my $config = setting($setting_name) || [];
return 1 unless scalar @$config;
return _check_acl($ip, $config);
}
=head2 is_discoverable( $ip, $device_type? ) =head2 is_discoverable( $ip, $device_type? )
Given an IP address, returns C<true> if Netdisco on this host is permitted by Given an IP address, returns C<true> if Netdisco on this host is permitted by
@@ -148,7 +198,7 @@ sub is_discoverable {
if check_no($device, 'discover_no'); if check_no($device, 'discover_no');
return _bail_msg("is_discoverable: device failed to match discover_only") return _bail_msg("is_discoverable: device failed to match discover_only")
if check_no($device, 'discover_only'); unless check_only($device, 'discover_only');
# cannot check last_discover for as yet undiscovered devices :-) # cannot check last_discover for as yet undiscovered devices :-)
return 1 if not $device->in_storage; return 1 if not $device->in_storage;
@@ -182,7 +232,7 @@ sub is_arpnipable {
if check_no($device, 'arpnip_no'); if check_no($device, 'arpnip_no');
return _bail_msg("is_arpnipable: device failed to match arpnip_only") return _bail_msg("is_arpnipable: device failed to match arpnip_only")
if check_no($device, 'arpnip_only'); unless check_only($device, 'arpnip_only');
return _bail_msg("is_arpnipable: cannot arpnip an undiscovered device") return _bail_msg("is_arpnipable: cannot arpnip an undiscovered device")
if not $device->in_storage; if not $device->in_storage;
@@ -217,7 +267,7 @@ sub can_nodenames {
if check_no($device, 'nodenames_no'); if check_no($device, 'nodenames_no');
return _bail_msg("can_nodenames: device failed to match nodenames_only") return _bail_msg("can_nodenames: device failed to match nodenames_only")
if check_no($device, 'nodenames_only'); unless check_only($device, 'nodenames_only');
return 1; return 1;
} }
@@ -242,7 +292,7 @@ sub is_macsuckable {
if check_no($device, 'macsuck_no'); if check_no($device, 'macsuck_no');
return _bail_msg("is_macsuckable: device failed to match macsuck_only") return _bail_msg("is_macsuckable: device failed to match macsuck_only")
if check_no($device, 'macsuck_only'); unless check_only($device, 'macsuck_only');
return _bail_msg("is_macsuckable: cannot macsuck an undiscovered device") return _bail_msg("is_macsuckable: cannot macsuck an undiscovered device")
if not $device->in_storage; if not $device->in_storage;