* update changes and SNMP::Info dep * Integrate netdisco-sshcollector into Worker::Plugin architecture (#489) * Initial integration of sshcollector into Worker::Plugin architecture * add NodesBySSH.pm * update Build.PL and config.yml to integrate the new module * Further integration of sshcollector into Worker::Plugin architecture * added App::Netdisco::Transport::CLI loosely based on ::SNMP counterpart * switched to the more prevalent two-space tabs style * removed various TBD items, some new ones * Further steps to integration of sshcollector into Worker::Plugin architecture * cleaned up code * added various error handling * warning for bin/netdisco-sshcollector deprecation * device_auth allows passing master_opts to Net::OpenSSH * netdisco-do -D also toggles Net::OpenSSH debug * Merged NodesBySSH.pm into Nodes.pm * see https://github.com/netdisco/netdisco/pull/489#pullrequestreview-205603516 * Further integration of sshcollector into Worker::Plugin architecture * add snmp_arpnip_also option to sshcollector device_auth * cleanup code * Remove big TBD: comment from CLI.pm as doc is updated now * add transport/cli.pm to manifest * revert some changes to allow simpler merging * silent exit legacy script unless explicitly requested * move ssh code into Transport, part one * rewrite the CLI transport to provide an API * merge in og-get_external_credentials Squashed commit of the following: commit3fe8f383a7Author: Oliver Gorwits <oliver@cpan.org> Date: Mon Mar 11 17:07:42 2019 +0000 add debug lines and tested commit3249739e42Author: Oliver Gorwits <oliver@cpan.org> Date: Mon Mar 11 16:54:11 2019 +0000 change config name to get_credentials commite78558397aAuthor: Oliver Gorwits <oliver@cpan.org> Date: Mon Mar 11 16:51:11 2019 +0000 separate out generic device auth to DeviceAuth module commit249f05165fAuthor: Oliver Gorwits <oliver@cpan.org> Date: Wed Mar 6 18:43:31 2019 +0000 release 2.040007 commite3af64df77Author: Oliver Gorwits <oliver@cpan.org> Date: Wed Mar 6 18:42:47 2019 +0000 #521-redux fix wifi date search commit48857ae300Author: Oliver Gorwits <oliver@cpan.org> Date: Mon Mar 4 12:03:31 2019 +0000 release 2.040006 commite09dab5362Author: Oliver Gorwits <oliver@cpan.org> Date: Mon Mar 4 11:39:12 2019 +0000 #527 update List::MoreUtils version requirement commit6e7de3fff3Author: Oliver Gorwits <oliver@cpan.org> Date: Mon Mar 4 09:59:41 2019 +0000 release 2.040005 commit0c98318a45Author: Oliver Gorwits <oliver@spike.local> Date: Mon Mar 4 09:57:18 2019 +0000 #526 fix discover syntax bug commite9efc45182Author: Oliver Gorwits <oliver@cpan.org> Date: Sun Mar 3 14:56:48 2019 +0000 release 2.040004 commit6cdfd80d10Author: Oliver Gorwits <oliver@cpan.org> Date: Sun Mar 3 14:34:00 2019 +0000 allow undiscovered neighbors report to use discover_{waps,phones} setting commitac381e0802Author: Oliver Gorwits <oliver@cpan.org> Date: Sun Mar 3 14:13:20 2019 +0000 #506 was a red herring commitb83e614c85Author: Oliver Gorwits <oliver@cpan.org> Date: Sun Mar 3 13:00:36 2019 +0000 make discover_{phones,waps} work with LLDP capabilities as well commit189d234b55Author: Oliver Gorwits <oliver@cpan.org> Date: Sun Mar 3 12:47:38 2019 +0000 check discover_no_type and friends earlier on in neighbors list build commit9c956466f3Author: Oliver Gorwits <oliver@cpan.org> Date: Sun Mar 3 12:32:07 2019 +0000 also update default config for new discover_phones and discover_waps settings commit09d29954d2Author: Oliver Gorwits <oliver@cpan.org> Date: Sun Mar 3 12:26:50 2019 +0000 #512 fix regression in phone/wap discovery exclusion commit2bae91f1b6Author: Oliver Gorwits <oliver@cpan.org> Date: Sun Mar 3 12:01:34 2019 +0000 rename match_devicetype() to match_to_setting() commit57cb6ddb70Author: Oliver Gorwits <oliver@cpan.org> Date: Sun Mar 3 09:19:39 2019 +0000 fix for over-eager fix to #506 commitef560fb59aAuthor: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 22:41:40 2019 +0000 #506 relax device renumber so it works for an alias commit7a8bcb094eAuthor: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 22:23:39 2019 +0000 #521 Search Node Date Range not working commita643820a62Author: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 21:54:27 2019 +0000 #428 Port-Channels not showing in netmap commit5ba5bcd295Merge:e7aacddba1f95028Author: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 20:04:11 2019 +0000 Merge branch 'master' of github.com:netdisco/netdisco commite7aacddbc6Author: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 20:01:05 2019 +0000 #498 Map with VLAN filter omits unconnected devices commita1f95028caAuthor: nick n <39005454+inphobia@users.noreply.github.com> Date: Sat Mar 2 19:54:22 2019 +0100 catch up with changes noticed that rc-sshcollector-core received updates to changes, add them here as well. didn't mention #499 & #522 commitce1b847ceaAuthor: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 18:47:44 2019 +0000 fix bug showing no nodes when only one matches in netmap commit78e30a7926Author: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 16:28:15 2019 +0000 #500 filtering in device/ports on native vlan duplicates entries commit9952f0c6c7Author: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 15:02:12 2019 +0000 #499 netdisco-do renumber reports wrong ip (inphobia) commitca3fd8f466Author: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 15:00:18 2019 +0000 #505 device renumber should update device port properties and device skips commit1265bc8470Author: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 14:52:21 2019 +0000 #520 catch slave ports defined without a master commitd4c7579c10Author: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 14:47:49 2019 +0000 #522 TypeAhead.pm can reference empty data (inphobia) commit77decc23b7Author: Oliver Gorwits <oliver@cpan.org> Date: Sat Mar 2 14:45:37 2019 +0000 #514 inconsistent results in ip inventory (inphobia) commit3f211650b8Author: nick n <39005454+inphobia@users.noreply.github.com> Date: Fri Mar 1 12:34:42 2019 +0100 last pieces for db schema upgrade last piece of #510 * import legacy sshcollector config * add default use_legacy_sshcollector config * remove unneeded deps * various fixes and now tested * enable sshcollector platform tests
This commit is contained in:
Oliver Gorwits
GitHub
4
Build.PL
4
Build.PL
@@ -37,6 +37,7 @@ Module::Build->new(
|
||||
'Dancer::Plugin::Auth::Extensible' => '0.30',
|
||||
'Dancer::Plugin::Passphrase' => '2.0.1',
|
||||
'Dancer::Session::Cookie' => '0.27',
|
||||
'Expect' => '0',
|
||||
'File::ShareDir' => '1.03',
|
||||
'File::Slurper' => '0.009',
|
||||
'Guard' => '1.022',
|
||||
@@ -54,6 +55,7 @@ Module::Build->new(
|
||||
'Net::Domain' => '1.23',
|
||||
'Net::DNS' => '0.72',
|
||||
'Net::LDAP' => '0',
|
||||
'Net::OpenSSH' => '0',
|
||||
'NetAddr::MAC' => '0.93',
|
||||
'NetAddr::IP' => '4.068',
|
||||
'Opcode' => '1.07',
|
||||
@@ -90,8 +92,6 @@ Module::Build->new(
|
||||
recommends => {
|
||||
'Graph' => '0',
|
||||
'GraphViz' => '0',
|
||||
'Net::OpenSSH' => '0',
|
||||
'Expect' => '0',
|
||||
},
|
||||
test_requires => {
|
||||
'Test::More' => '1.302083',
|
||||
|
||||
@@ -74,6 +74,9 @@ $ENV{DBIC_TRACE} ||= $sqltrace;
|
||||
# reconfigure logging to force console output
|
||||
Dancer::Logger->init('console', $CONFIG);
|
||||
|
||||
# silent exit unless explicitly requested
|
||||
exit(0) unless setting('use_legacy_sshcollector');
|
||||
|
||||
if ($opensshdebug){
|
||||
$Net::OpenSSH::debug = ~0;
|
||||
}
|
||||
|
||||
@@ -84,6 +84,7 @@ if ((setting('snmp_auth') and 0 == scalar @{ setting('snmp_auth') })
|
||||
config->{'community_rw'} = [ @{setting('community_rw')}, 'private' ];
|
||||
}
|
||||
# fix up device_auth (or create it from old snmp_auth and community settings)
|
||||
# also imports legacy sshcollcetor config
|
||||
config->{'device_auth'}
|
||||
= [ App::Netdisco::Util::DeviceAuth::fixup_device_auth() ];
|
||||
|
||||
|
||||
115
lib/App/Netdisco/Transport/CLI.pm
Normal file
115
lib/App/Netdisco/Transport/CLI.pm
Normal file
@@ -0,0 +1,115 @@
|
||||
package App::Netdisco::Transport::CLI;
|
||||
|
||||
use Dancer qw/:syntax :script/;
|
||||
|
||||
use App::Netdisco::Util::Device 'get_device';
|
||||
use Module::Load ();
|
||||
use Net::OpenSSH;
|
||||
use Try::Tiny;
|
||||
|
||||
use base 'Dancer::Object::Singleton';
|
||||
|
||||
=head1 NAME
|
||||
|
||||
App::Netdisco::Transport::CLI
|
||||
|
||||
=head1 DESCRIPTION
|
||||
|
||||
Returns an object which has an active SSH connection which can be used
|
||||
for some actions such as arpnip.
|
||||
|
||||
my $cli = App::Netdisco::Transport::CLI->session_for( ... );
|
||||
|
||||
=cut
|
||||
|
||||
__PACKAGE__->attributes(qw/ sessions /);
|
||||
|
||||
sub init {
|
||||
my ( $class, $self ) = @_;
|
||||
$self->sessions( {} );
|
||||
return $self;
|
||||
}
|
||||
|
||||
=head1 session_for( $ip )
|
||||
|
||||
Given an IP address, returns an object instance configured for and connected
|
||||
to that device.
|
||||
|
||||
Returns C<undef> if the connection fails.
|
||||
|
||||
=cut
|
||||
|
||||
{
|
||||
package MySession;
|
||||
use Moo;
|
||||
|
||||
has 'ssh' => ( is => 'rw' );
|
||||
has 'auth' => ( is => 'rw' );
|
||||
has 'host' => ( is => 'rw' );
|
||||
has 'platform' => ( is => 'rw' );
|
||||
|
||||
sub arpnip {
|
||||
my $self = shift;
|
||||
$self->platform->arpnip(@_, $self->host, $self->ssh, $self->auth);
|
||||
}
|
||||
}
|
||||
|
||||
sub session_for {
|
||||
my ($class, $ip) = @_;
|
||||
|
||||
my $device = get_device($ip) or return undef;
|
||||
my $sessions = $class->instance->sessions or return undef;
|
||||
|
||||
return $sessions->{$device->ip} if exists $sessions->{$device->ip};
|
||||
debug sprintf 'cli session cache warm: [%s]', $device->ip;
|
||||
|
||||
my $auth = (setting('device_auth') || []);
|
||||
if (1 != scalar @$auth) {
|
||||
error sprintf " [%s] require only one matching auth stanza", $device->ip;
|
||||
return undef;
|
||||
}
|
||||
$auth = $auth->[0];
|
||||
|
||||
my @master_opts = qw(-o BatchMode=no);
|
||||
push(@master_opts, @{$auth->{ssh_master_opts}})
|
||||
if $auth->{ssh_master_opts};
|
||||
|
||||
$Net::OpenSSH::debug = $ENV{SSH_TRACE};
|
||||
my $ssh = Net::OpenSSH->new(
|
||||
$device->ip,
|
||||
user => $auth->{username},
|
||||
password => $auth->{password},
|
||||
timeout => 30,
|
||||
async => 0,
|
||||
default_stderr_file => '/dev/null',
|
||||
master_opts => \@master_opts
|
||||
);
|
||||
|
||||
if ($ssh->error) {
|
||||
error sprintf " [%s] ssh connection error [%s]", $device->ip, $ssh->error;
|
||||
return undef;
|
||||
}
|
||||
elsif (! $ssh) {
|
||||
error sprintf " [%s] Net::OpenSSH instantiation error", $device->ip;
|
||||
return undef;
|
||||
}
|
||||
|
||||
my $platform = "App::Netdisco::SSHCollector::Platform::" . $auth->{platform};
|
||||
my $happy = false;
|
||||
try {
|
||||
Module::Load::load $platform;
|
||||
$happy = true;
|
||||
} catch { error $_ };
|
||||
return unless $happy;
|
||||
|
||||
my $sess = MySession->new(
|
||||
ssh => $ssh,
|
||||
auth => $auth,
|
||||
host => $device->ip,
|
||||
platform => $platform->new(),
|
||||
);
|
||||
|
||||
return ($sessions->{$device->ip} = $sess);
|
||||
}
|
||||
|
||||
true;
|
||||
@@ -25,7 +25,7 @@ App::Netdisco::Transport::SNMP
|
||||
Singleton for SNMP connections. Returns cached L<SNMP::Info> instance for a
|
||||
given device IP, or else undef. All methods are class methods, for example:
|
||||
|
||||
App::Netdisco::Transport::SNMP->reader_for( ... );
|
||||
my $snmp = App::Netdisco::Transport::SNMP->reader_for( ... );
|
||||
|
||||
=cut
|
||||
|
||||
|
||||
@@ -63,7 +63,23 @@ sub fixup_device_auth {
|
||||
die "error: config: stanza in device_auth must have a tag\n"
|
||||
if not $stanza->{tag} and exists $stanza->{user};
|
||||
|
||||
push @new_stanzas, $stanza
|
||||
push @new_stanzas, $stanza;
|
||||
}
|
||||
|
||||
# import legacy sshcollector configuration
|
||||
my $sshcollector = (setting('sshcollector') || []);
|
||||
foreach my $stanza (@$sshcollector) {
|
||||
# defaults
|
||||
$stanza->{driver} = 'cli';
|
||||
$stanza->{read} = 1;
|
||||
$stanza->{no} ||= [];
|
||||
|
||||
# fixups
|
||||
$stanza->{only} ||= [ scalar delete $stanza->{ip} ||
|
||||
scalar delete $stanza->{hostname} ];
|
||||
$stanza->{username} = scalar delete $stanza->{user};
|
||||
|
||||
push @new_stanzas, $stanza;
|
||||
}
|
||||
|
||||
# legacy config
|
||||
|
||||
@@ -3,7 +3,7 @@ package App::Netdisco::Worker::Plugin::Arpnip::Nodes;
|
||||
use Dancer ':syntax';
|
||||
use App::Netdisco::Worker::Plugin;
|
||||
use aliased 'App::Netdisco::Worker::Status';
|
||||
|
||||
use App::Netdisco::Transport::CLI ();
|
||||
use App::Netdisco::Transport::SNMP ();
|
||||
use App::Netdisco::Util::Node qw/check_mac store_arp/;
|
||||
use App::Netdisco::Util::FastResolver 'hostnames_resolve_async';
|
||||
@@ -18,9 +18,9 @@ register_worker({ phase => 'main', driver => 'snmp' }, sub {
|
||||
or return Status->defer("arpnip failed: could not SNMP connect to $device");
|
||||
|
||||
# get v4 arp table
|
||||
my $v4 = get_arps($device, $snmp->at_paddr, $snmp->at_netaddr);
|
||||
my $v4 = get_arps_snmp($device, $snmp->at_paddr, $snmp->at_netaddr);
|
||||
# get v6 neighbor cache
|
||||
my $v6 = get_arps($device, $snmp->ipv6_n2p_mac, $snmp->ipv6_n2p_addr);
|
||||
my $v6 = get_arps_snmp($device, $snmp->ipv6_n2p_mac, $snmp->ipv6_n2p_addr);
|
||||
|
||||
# would be possible just to use now() on updated records, but by using this
|
||||
# same value for them all, we _can_ if we want add a job at the end to
|
||||
@@ -41,7 +41,7 @@ register_worker({ phase => 'main', driver => 'snmp' }, sub {
|
||||
});
|
||||
|
||||
# get an arp table (v4 or v6)
|
||||
sub get_arps {
|
||||
sub get_arps_snmp {
|
||||
my ($device, $paddr, $netaddr) = @_;
|
||||
my @arps = ();
|
||||
|
||||
@@ -63,4 +63,45 @@ sub get_arps {
|
||||
return $resolved_ips;
|
||||
}
|
||||
|
||||
register_worker({ phase => 'main', driver => 'cli' }, sub {
|
||||
my ($job, $workerconf) = @_;
|
||||
|
||||
my $device = $job->device;
|
||||
my $cli = App::Netdisco::Transport::CLI->session_for($device)
|
||||
or return Status->defer("arpnip failed: could not SSH connect to $device");
|
||||
|
||||
# should be both v4 and v6
|
||||
my $arps = get_arps_cli($device, [$cli->arpnip]);
|
||||
|
||||
# update node_ip with ARP and Neighbor Cache entries
|
||||
my $now = 'to_timestamp('. (join '.', gettimeofday) .')';
|
||||
store_arp(\%$_, $now) for @$arps;
|
||||
debug sprintf ' [%s] arpnip - processed %s ARP / IPv6 Neighbor Cache entries',
|
||||
$device->ip, scalar @$arps;
|
||||
|
||||
$device->update({last_arpnip => \$now});
|
||||
return Status->done("Ended arpnip for $device");
|
||||
});
|
||||
|
||||
sub get_arps_cli {
|
||||
my ($device, $entries) = @_;
|
||||
my @arps = ();
|
||||
$entries ||= [];
|
||||
|
||||
foreach my $entry (@$entries) {
|
||||
next unless check_mac($entry->{mac}, $device);
|
||||
push @arps, {
|
||||
node => $entry->{mac},
|
||||
ip => $entry->{ip},
|
||||
dns => $entry->{dns},
|
||||
};
|
||||
}
|
||||
|
||||
debug sprintf ' resolving %d ARP entries with max %d outstanding requests',
|
||||
scalar @arps, $ENV{'PERL_ANYEVENT_MAX_OUTSTANDING_DNS'};
|
||||
my $resolved_ips = hostnames_resolve_async(\@arps);
|
||||
|
||||
return $resolved_ips;
|
||||
}
|
||||
|
||||
true;
|
||||
|
||||
@@ -216,6 +216,7 @@ device_identity: []
|
||||
community: []
|
||||
community_rw: []
|
||||
device_auth: []
|
||||
use_legacy_sshcollector: false
|
||||
get_credentials: ""
|
||||
bulkwalk_off: false
|
||||
bulkwalk_no: []
|
||||
|
||||
@@ -21,8 +21,8 @@ use Test::Compile;
|
||||
|
||||
my $test = Test::Compile->new();
|
||||
|
||||
my @plfiles = grep {$_ !~ m/(?:sshcollector|graph)/i} $test->all_pl_files();
|
||||
my @pmfiles = grep {$_ !~ m/(?:sshcollector|graph)/i} $test->all_pm_files();
|
||||
my @plfiles = grep {$_ !~ m/(?:graph)/i} $test->all_pl_files();
|
||||
my @pmfiles = grep {$_ !~ m/(?:graph)/i} $test->all_pm_files();
|
||||
|
||||
$test->ok($test->pl_file_compiles($_), "$_ compiles") for @plfiles;
|
||||
$test->ok($test->pm_file_compiles($_), "$_ compiles") for @pmfiles;
|
||||
|
||||
Reference in New Issue
Block a user