Fix problems with new PasswordUtils, move ipmi.pm to using the refactored code
git-svn-id: https://svn.code.sf.net/p/xcat/code/xcat-core/trunk@14477 8638fb3e-16cb-4fca-ae20-7b5d299a9bcd
This commit is contained in:
jbjohnso
parent
143e0f3304
commit
1fdad5c12f
@ -1,9 +1,24 @@
|
||||
package xCAT::PasswordUtils;
|
||||
use xCAT::Table;
|
||||
my $ipmiuser = "USERID"; # default username to apply if nothing specified
|
||||
my $ipmipass = "PASSW0RD"; # default password to apply if nothing specified
|
||||
my $bladeuser = "USERID"; # default username to apply if nothing specified
|
||||
my $bladepass = "PASSW0RD"; # default password to apply if nothing specified
|
||||
# Picks the IPMI authentication to use with or deploy to a BMC
|
||||
# mandatory arguments:
|
||||
# noderange: a list reference to nodes (e..g. ["node1","node2"])
|
||||
# optional parameters:
|
||||
# ipmihash: a prefetched hash reference of relevant ipmi table data
|
||||
# mphash: a prefetched hash of relevent mp table
|
||||
# RETURNS:
|
||||
# A hash reference with usernames and passwords, e.g.: { 'node1' => { 'username' => 'admin', 'password' => 'reallysecure' }, 'node2' => { 'username' => 'admin', 'password' => 'reallysecure' } }
|
||||
sub getIPMIAuth {
|
||||
#the algorithm intended is as follows:
|
||||
#Should the target have a valid ipmi.username/ipmi.password, that is preferred above all else
|
||||
#Otherwise, if it is a blade topology, then synchronize with the management module password parameters in mpa by default
|
||||
#if still not defined, but it is a blade topology, then use 'blade' passwd table values
|
||||
#if still not defined, use 'ipmi' table values
|
||||
#if still not defined, use the defaults hardcoded into this file
|
||||
my %args = @_;
|
||||
my $noderange = $args{noderange};
|
||||
my $ipmihash = $args{ipmihash};
|
||||
@ -32,7 +47,7 @@ sub getIPMIAuth {
|
||||
}
|
||||
}
|
||||
my $mpatab;
|
||||
if ($mphash) { $mpatab = xCAT::Table->new('mp',-create=>0); }
|
||||
if ($mphash) { $mpatab = xCAT::Table->new('mpa',-create=>0); }
|
||||
my %mpaauth;
|
||||
foreach $node (@$noderange) {
|
||||
$authmap{$node}->{username}=$ipmiuser;
|
||||
@ -42,19 +57,20 @@ sub getIPMIAuth {
|
||||
if ($bladepass) { $authmap{$node}->{password}=$bladepass; }
|
||||
my $mpa = $mphash->{$node}->[0]->{mpa};
|
||||
if (not $mpaauth{$mpa} and $mpatab) {
|
||||
my $mpaent = $mpatab->getNodeAttribs($mpa,[qw/username password/],prefetchcache=>1);
|
||||
if (ref $mpaent and $mpaent->[0]->{username}) { $mpaauth{$mpa}->{username} = $mpaent->[0]->{username} }
|
||||
if (ref $mpaent and $mpaent->[0]->{password}) { $mpaauth{$mpa}->{password} = $mpaent->[0]->{password} }
|
||||
my $mpaent = $mpatab->getNodeAttribs($mpa,[qw/username password/],prefetchcache=>1); #TODO: this might make more sense to do as one retrieval, oh well
|
||||
if (ref $mpaent and $mpaent->{username}) { $mpaauth{$mpa}->{username} = $mpaent->{username} }
|
||||
if (ref $mpaent and $mpaent->{password}) { $mpaauth{$mpa}->{password} = $mpaent->{password} }
|
||||
$mpaauth{$mpa}->{checked} = 1; #remember we already looked this up, to save lookup time even if search was fruitless
|
||||
}
|
||||
if ($mpaauth{$mpa}->{username}) { $authmap{$node}->{username} = $mpa->{username} }
|
||||
if ($mpaauth{$mpa}->{password}) { $authmap{$node}->{password} = $mpa->{password} }
|
||||
if ($mpaauth{$mpa}->{username}) { $authmap{$node}->{username} = $mpaauth{$mpa}->{username} }
|
||||
if ($mpaauth{$mpa}->{password}) { $authmap{$node}->{password} = $mpaauth{$mpa}->{password} }
|
||||
}
|
||||
unless (ref $ipmihash and ref $ipmihash->{$node}) {
|
||||
next;
|
||||
}
|
||||
if ($ipmihash->{$node}->[0]->{username}) { $authmap{$node}->{username}=$ipmihash->{$node}->[0]->{username} }
|
||||
if ($ipmihash->{$node}->[0]->{password}) { $authmap{$node}->{username}=$ipmihash->{$node}->[0]->{password} }
|
||||
if ($ipmihash->{$node}->[0]->{password}) { $authmap{$node}->{password}=$ipmihash->{$node}->[0]->{password} }
|
||||
}
|
||||
return \%authmap;
|
||||
}
|
||||
|
||||
|
||||
@ -16,6 +16,7 @@ use xCAT::GlobalDef;
|
||||
use xCAT_monitoring::monitorctrl;
|
||||
use xCAT::SPD qw/decode_spd/;
|
||||
use xCAT::IPMI;
|
||||
use xCAT::PasswordUtils;
|
||||
my %needbladeinv;
|
||||
|
||||
use POSIX qw(ceil floor);
|
||||
@ -5954,14 +5955,6 @@ sub process_request {
|
||||
if ($::XCATSITEVALS{ipmitimeout}) { $ipmitimeout = $::XCATSITEVALS{ipmitimeout} };
|
||||
if ($::XCATSITEVALS{ipmiretries}) { $ipmitrys = $::XCATSITEVALS{ipmitretries} };
|
||||
if ($::XCATSITEVALS{ipmisdrcache}) { $enable_cache = $::XCATSITEVALS{ipmisdrcache} };
|
||||
my $passtab = xCAT::Table->new('passwd');
|
||||
if ($passtab) {
|
||||
($tmp)=$passtab->getAttribs({'key'=>'ipmi'},'username','password');
|
||||
if (defined($tmp)) {
|
||||
$ipmiuser = $tmp->{username};
|
||||
$ipmipass = $tmp->{password};
|
||||
}
|
||||
}
|
||||
|
||||
#my @threads;
|
||||
my @donargs=();
|
||||
@ -5970,17 +5963,16 @@ sub process_request {
|
||||
$vpdhash = $vpdtab->getNodesAttribs($noderange,[qw(serial mtm asset)]);
|
||||
}
|
||||
my $ipmihash = $ipmitab->getNodesAttribs($noderange,['bmc','username','password']) ;
|
||||
my $authdata = xCAT::PasswordUtils::getIPMIAuth(noderange=>$noderange,ipmihash=>$ipmihash);
|
||||
foreach(@$noderange) {
|
||||
my $node=$_;
|
||||
my $nodeuser=$ipmiuser;
|
||||
my $nodepass=$ipmipass;
|
||||
my $nodeuser=$authdata->{$node}->{username};
|
||||
my $nodepass=$authdata->{$node}->{password};
|
||||
my $nodeip = $node;
|
||||
my $ent;
|
||||
if (defined($ipmitab)) {
|
||||
$ent=$ipmihash->{$node}->[0];
|
||||
if (ref($ent) and defined $ent->{bmc}) { $nodeip = $ent->{bmc}; }
|
||||
if (ref($ent) and defined $ent->{username}) { $nodeuser = $ent->{username}; }
|
||||
if (ref($ent) and defined $ent->{password}) { $nodepass = $ent->{password}; }
|
||||
}
|
||||
if ($nodeip =~ /,/ and grep ({ $_ eq $request->{command}->[0] } qw/rinv reventlog rvitals rspconfig/)) { #multi-node x3950 X5, for example
|
||||
my $bmcnum=1;
|
||||
|
||||
Loading…
Reference in New Issue
Block a user