评分并提供意见反馈 :
华为采用机器翻译与人工审校相结合的方式将此文档翻译成不同语言,希望能帮助您更容易理解此文档的内容。 请注意:即使是最好的机器翻译,其准确度也不及专业翻译人员的水平。 华为对于翻译的准确性不承担任何责任,并建议您参考英文文档(已提供链接)。
配置通过DHCP实现自动部署并建立堆叠示例
组网需求
如图2-7所示,某网络中新增两台空配置设备SwitchA和SwitchB,连接到现网设备SwitchC上。SwitchC作为SwitchA和SwitchB的出口网关。SwitchC与DHCP服务器、文件服务器之间路由可达。
用户希望空配置的SwitchA和SwitchB在上电启动后能够自动加载相应的系统软件和配置文件,同时自动建立堆叠,完成开局部署,以降低现场配置的人力、时间成本。
SwitchA和SwitchB的设备信息及待加载的文件信息如表2-11所示。
![]()
表2-11 设备及待加载的文件信息
新加入的设备 |
设备型号 |
设备序列号 |
需要加载的文件 |
|---|---|---|---|
SwitchA |
CE5850EI |
210235527210D4000028 |
|
SwitchB |
CE5850EI |
210235527210D4000046 |
|
SwitchA和SwitchB建立堆叠时,需要注意以下事项:
上电启动前,SwitchA和SwitchB之间的堆叠线缆已连接。
配置文件中必须已有该堆叠成员ID相关的堆叠配置(包括堆叠优先级、堆叠域编号、堆叠端口等),以确保设备加载该配置文件后可以成功建立堆叠。例如配置文件conf_210235527210D4000046.cfg中需要有堆叠成员ID为2的相关堆叠配置。
配置思路
采用如下的思路配置:
- 配置文件服务器,将文件服务器作为FTP Server,存放中间文件及系统软件、配置文件。
以FTP协议进行举例说明,使用FTP协议存在安全风险,建议使用SFTP进行文件传输。
编辑中间文件ztp_script.py、堆叠成员ID文件stack_memberid.txt,中间文件用来使不同的设备能够从中间文件获取相应的系统软件和配置文件;堆叠成员ID文件用来为SwitchA和SwitchB分配堆叠成员ID。
配置DHCP服务器和中继,使空配置设备可以获得DHCP服务器发送的DHCP信息。
将SwitchA和SwitchB上电,启动ZTP流程。
操作步骤
- 配置文件服务器。(文件服务器的配置以PC为例,如果是其他设备类型的文件服务器,请参照相应的操作指导进行配置。)
- 选择文件服务器(PC)为FTP服务器。在PC上可以运行FTP Server软件实现FTP Server功能(以wftpd32为例介绍)。如图2-8所示,依次选择菜单“Security > Users/rights”。在弹出的对话框中单击“New User”设置用户名为ftpuser和密码Pwd123。在“Home Directory”处设置PC上FTP的工作目录为D:\ztp,然后单击“Done”按钮完成设置并关闭对话框。
设置文件服务器的IP地址及网关,要求能够与SwitchA、SwitchB的网关之间路由可达。
文件服务器配置完成后,将设备需要加载的系统软件和配置文件放在D:\ztp目录下。
- 编辑中间文件
请按照Python格式的中间文件中的要求编辑中间文件,文件名称为ztp_script.py,内容请参见ztp_script.py文件和配置文件。
中间文件编辑完成后存放至文件服务器的D:\ztp目录下。
- 编辑堆叠成员ID文件
将SwitchA和SwitchB的堆叠成员ID信息写入stack_memberid.txt文件,格式如下:
ESN Stack group Stack member 210235527210D4000028 10 1 210235527210D4000046 10 2
ESN为设备的序列号,Stack member为设备的堆叠成员ID。
堆叠成员ID文件编辑完成后存放至文件服务器的D:\ztp目录下。
- 配置DHCP服务器
# 配置DHCP服务器分配给客户端的IP地址池,并参照表2-12配置DHCP服务器Option选项的值。本举例以交换机为例配置DHCP服务器。
表2-12 DHCP服务器Option选项取值Option编号
含义
取值
1
IP地址的子网掩码
255.255.225.0
3
DHCP客户端的出口网关
10.1.1.1
67
文件服务器地址及中间文件名
ftp://ftpuser:Pwd123@10.1.3.2/ztp_script.py
<HUAWEI> system-view [~HUAWEI] sysname dhcp_server [*HUAWEI] commit [~dhcp_server] dhcp enable [*dhcp_server] ip pool pool1 [*dhcp_server-ip-pool-pool1] gateway-list 10.1.1.1 [*dhcp_server-ip-pool-pool1] network 10.1.1.0 mask 255.255.255.0 [*dhcp_server-ip-pool-pool1] option 67 cipher ftp://ftpuser:Pwd123@10.1.3.2/ztp_script.py [*dhcp_server-ip-pool-pool1] quit
# 设置DHCP服务器的IP地址及网关,要求能够与SwitchA、SwitchB的网关之间路由可达。
- 配置DHCP中继
# 配置SwitchC的DHCP中继功能,同时配置SwitchC与SwitchA、SwitchB相连的接口IP地址为10.1.1.1,作为SwitchA、SwitchB的缺省网关。
<HUAWEI> system-view [~HUAWEI] sysname SwitchC [*HUAWEI] commit [~SwitchC] vlan batch 10 [*SwitchC] interface 10ge 1/0/1 [*SwitchC-10GE1/0/1] port link-type trunk [*SwitchC-10GE1/0/1] port trunk allow-pass vlan 10 [*SwitchC-10GE1/0/1] port trunk pvid vlan 10 [*SwitchC-10GE1/0/1] quit [*SwitchC] interface 10ge 1/0/2 [*SwitchC-10GE1/0/2] port link-type trunk [*SwitchC-10GE1/0/2] port trunk allow-pass vlan 10 [*SwitchC-10GE1/0/2] port trunk pvid vlan 10 [*SwitchC-10GE1/0/2] quit [*SwitchC] interface vlanif 10 [*SwitchC-Vlanif10] ip address 10.1.1.1 24 [*SwitchC-Vlanif10] quit [*SwitchC] dhcp enable [*SwitchC] interface vlanif 10 [*SwitchC-Vlanif10] dhcp select relay [*SwitchC-Vlanif10] dhcp relay binding server ip 10.1.2.2 [*SwitchC-Vlanif10] commit
- 将SwitchA、SwitchB上电,启动ZTP流程
- 验证配置结果# 设备上电后15分钟左右,完成ZTP流程。此时可以登录到堆叠系统后执行命令display startup查看当前的系统软件、配置文件是否与预期的一致。
<SwitchA> display startup MainBoard: Configured startup system software: flash:/CE5850EI-V200R019C10.cc Startup system software: flash:/CE5850EI-V200R019C10.cc Next startup system software: flash:/CE5850EI-V200R019C10.cc Startup saved-configuration file: flash:/conf_210235527210D4000028.cfg Next startup saved-configuration file: flash:/conf_210235527210D4000028.cfg Startup paf file: default Next startup paf file: default Startup patch package: NULL Next startup patch package: NULL SlaveBoard: Configured startup system software: flash:/CE5850EI-V200R019C10.cc Startup system software: flash:/CE5850EI-V200R019C10.cc Next startup system software: flash:/CE5850EI-V200R019C10.cc Startup saved-configuration file: flash:/conf_210235527210D4000028.cfg Next startup saved-configuration file: flash:/conf_210235527210D4000028.cfg Startup paf file: default Next startup paf file: default Startup patch package: NULL Next startup patch package: NULL
ztp_script.py文件和配置文件
ztp_script.py文件
ztp_script.py中的“#md5sum=”为该文件的MD5校验码,用户根据实际组网情况修改ztp_script.py的内容后,需要使用MD5计算工具(如md5sum)重新生成该文件的MD5校验码。
需要注意的是,生成MD5校验码时,文件中不能包含“#md5sum=”字段。请在生成MD5校验码后再将“#md5sum=”写入文件开头。
该脚本文件仅作为样例,用户可以根据实际开局场景进行修改。
#md5sum="96c89e148a8a4055cf3e9922379ae898"
#!/usr/bin/env python
#
# Copyright (C) Huawei Technologies Co., Ltd. 2008-2013. All rights reserved.
# ----------------------------------------------------------------------------------------------------------------------
# History:
# Date Author Modification
# 20130629 Author created file.
# ----------------------------------------------------------------------------------------------------------------------
"""
Zero Touch Provisioning (ZTP) enables devices to automatically load version files including system software,
patch files, configuration files when the device starts up, the devices to be configured must be new devices
or have no configuration files.
This is a sample of Zero Touch Provisioning user script. You can customize it to meet the requirements of
your network environment.
"""
import http.client
import urllib.request, urllib.parse, urllib.error
import string
import re
import xml.etree.ElementTree as etree
import os
import stat
import logging
import traceback
import hashlib
import sys
from urllib.parse import urlparse
from urllib.parse import urlunparse
from time import sleep
# error code
OK = 0
ERR = 1
# File server in which stores the necessary system software, configuration and patch files:
# 1) Specify the file server which supports the following format.
# tftp://hostname
# ftp://[username[:password]@]hostname[:port]
# sftp://[username[:password]@]hostname[:port]
# http://hostname[:port]
# 2) Do not add a trailing slash at the end of file server path.
FILE_SERVER = 'ftp://ftpuser:Pwd123@10.1.3.2'
# Remote file paths:
# 1) The path may include directory name and file name.
# 2) If file name is not specified, indicate the procedure can be skipped.
# File paths of system software on file server, filename extension is '.cc'.
REMOTE_PATH_IMAGE = {
'CE5850EI' : '/CE5850EI-V200R019C10.cc',
'CE6850EI' : '/CE6850EI-V200R019C10.cc',
}
# File path of configuration file on file server, filename extension is '.cfg', '.zip' or '.dat'.
REMOTE_PATH_CONFIG = '/conf_%s.cfg'
# File path of patch file on file server, filename extension is '.pat'
REMOTE_PATH_PATCH = {
'CE5850EI' : '',
'CE6850EI' : '',
}
# File path of stack member ID file on file server, filename extension is '.txt'
REMOTE_PATH_MEMID = '/stack_memberid.txt'
# File path of license list file, filename extension is '.xml'
REMOTE_PATH_LICLIST = ''
# File path of md5 file, contains md5 value of image / patch / memid / license file, file extension is '.txt'
REMOTE_PATH_MD5 = ''
# File path of python file on file server, filename extension is '.py'
REMOTE_PATH_PYTHON = ''
# Max times to retry get startup when no query result
GET_STARTUP_INTERVAL = 15 # seconds
MAX_TIMES_GET_STARTUP = 120 # Max times to retry
# Max times to retry when download file faild
MAX_TIMES_RETRY_DOWNLOAD = 3
class OPSConnection(object):
"""Make an OPS connection instance."""
def __init__(self, host, port = 80):
self.host = host
self.port = port
self.headers = {
"Content-type": "application/xml",
"Accept": "application/xml"
}
self.conn = http.client.HTTPConnection(self.host, self.port)
def close(self):
"""Close the connection"""
self.conn.close()
def create(self, uri, req_data):
"""Create a resource on the server"""
ret = self._rest_call("POST", uri, req_data)
return ret
def delete(self, uri, req_data):
"""Delete a resource on the server"""
ret = self._rest_call("DELETE", uri, req_data)
return ret
def get(self, uri, req_data = None):
"""Retrieve a resource from the server"""
ret = self._rest_call("GET", uri, req_data)
return ret
def set(self, uri, req_data):
"""Update a resource on the server"""
ret = self._rest_call("PUT", uri, req_data)
return ret
def _rest_call(self, method, uri, req_data):
"""REST call"""
if req_data == None:
body = ""
else:
body = req_data
logging.info('HTTP request: %s %s HTTP/1.1', method, uri)
self.conn.request(method, uri, body, self.headers)
response = self.conn.getresponse()
ret = (response.status, response.reason, response.read())
if response.status != http.client.OK:
logging.info('%s', body)
logging.error('HTTP response: HTTP/1.1 %s %s\n%s', ret[0], ret[1], ret[2])
return ret
class OPIExecError(Exception):
"""OPI executes error."""
pass
class ZTPErr(Exception):
"""ZTP error."""
pass
def get_addr_by_hostname(ops_conn, host, addr_type = '1'):
"""Translate a host name to IPv4 address format. The IPv4 address is returned as a string."""
logging.info("Get IP address by host name...")
uri = "/dns/dnsNameResolution"
root_elem = etree.Element('dnsNameResolution')
etree.SubElement(root_elem, 'host').text = host
etree.SubElement(root_elem, 'addrType').text = addr_type
req_data = etree.tostring(root_elem, "UTF-8")
ret, _, rsp_data = ops_conn.get(uri, req_data)
if ret != http.client.OK:
raise OPIExecError('Failed to get address by host name')
root_elem = etree.fromstring(rsp_data)
namespaces = {'vrp' : 'http://www.huawei.com/netconf/vrp'}
uri = 'data' + uri.replace('/', '/vrp:') + '/vrp:'
elem = root_elem.find(uri + "ipv4Addr", namespaces)
if elem is None:
raise OPIExecError('Failed to get IP address by host name')
return elem.text
def _http_download_file(ops_conn, url, local_path):
"""Download file using HTTP."""
logging.info('HTTP download "%s" to "%s".', url, local_path)
url_tuple = urlparse(url)
if not re.match(r"\d+\.\d+\.\d+\.\d+", url_tuple.hostname):
netloc = get_addr_by_hostname(ops_conn, url_tuple.hostname)
if url_tuple.port:
netloc += ':' + str(url_tuple.port)
url = urlunparse((url_tuple.scheme, netloc, url_tuple.path, url_tuple.params, url_tuple.query,
url_tuple.fragment))
ret = OK
opener = urllib.request.URLopener()
try:
dst_file_path = "%s/%s" % (os.getcwd(), os.path.basename(url))
dst_file_path = os.path.abspath(dst_file_path)
logging.info('HTTP download destination file=%s.', dst_file_path)
opener.retrieve(url, dst_file_path)
os.chmod(dst_file_path, stat.S_IRWXU | stat.S_IRGRP | stat.S_IXGRP | stat.S_IROTH | stat.S_IXOTH)
except (KeyboardInterrupt, Exception) as reason:
if os.path.exists(dst_file_path):
os.remove(dst_file_path) # Remove incomplete file
logging.error(reason)
print(('Error: Failed to download file "%s" using HTTP' % os.path.basename(url)))
sys.stdout.flush()
ret = ERR
return ret
def _ftp_download_file(ops_conn, url, local_path):
"""Download file using FTP."""
logging.info('FTP download "%s" to "%s".', url, local_path)
uri = "/ftpc/ftpcTransferFiles/ftpcTransferFile"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<ftpcTransferFile>
<serverIpv4Address>$serverIp</serverIpv4Address>
<commandType>get</commandType>
<userName>$username</userName>
<password>$password</password>
<localFileName>$localPath</localFileName>
<remoteFileName>$remotePath</remoteFileName>
</ftpcTransferFile>
''')
url_tuple = urlparse(url)
if re.match(r"\d+\.\d+\.\d+\.\d+", url_tuple.hostname):
server_ip = url_tuple.hostname
else:
server_ip = get_addr_by_hostname(ops_conn, url_tuple.hostname)
req_data = str_temp.substitute(serverIp = server_ip, username = url_tuple.username, password = url_tuple.password,
remotePath = url_tuple.path[1:], localPath = local_path)
ret, _, _ = ops_conn.create(uri, req_data)
if ret != http.client.OK:
print(('Failed to download file "%s" using FTP' % os.path.basename(local_path)))
sys.stdout.flush()
return ERR
return OK
def _del_rsa_peer_key(ops_conn, key_name):
"""Delete RSA peer key configuration"""
logging.info("Delete RSA peer key %s", key_name)
uri = "/rsa/rsaPeerKeys/rsaPeerKey"
root_elem = etree.Element('rsaPeerKey')
etree.SubElement(root_elem, 'keyName').text = key_name
req_data = etree.tostring(root_elem, "UTF-8")
try:
ret, _, _ = ops_conn.delete(uri, req_data)
if ret != http.client.OK:
raise OPIExecError('Failed to delete RSA peer key')
except Exception as reason:
logging.error(reason)
def _del_sshc_rsa_key(ops_conn, server_name, key_type = 'RSA'):
"""Delete SSH client RSA key configuration"""
logging.debug("Delete SSH client RSA key for %s", server_name)
uri = "/sshc/sshCliKeyCfgs/sshCliKeyCfg"
root_elem = etree.Element('sshCliKeyCfg')
etree.SubElement(root_elem, 'serverName').text = server_name
etree.SubElement(root_elem, 'pubKeyType').text = key_type
req_data = etree.tostring(root_elem, "UTF-8")
try:
ret, _, _ = ops_conn.delete(uri, req_data)
if ret != http.client.OK:
raise OPIExecError('Failed to delete SSH client RSA key')
except Exception as reason:
logging.error(reason)
_del_rsa_peer_key(ops_conn, server_name)
def _set_sshc_first_time(ops_conn, switch):
"""Set SSH client attribute of authenticating user for the first time access"""
if switch not in ['Enable', 'Disable']:
return ERR
logging.info('Set SSH client first-time enable switch = %s', switch)
uri = "/sshc/sshClient"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<sshClient>
<firstTimeEnable>$enable</firstTimeEnable>
</sshClient>
''')
req_data = str_temp.substitute(enable = switch)
ret, _, _ = ops_conn.set(uri, req_data)
if ret != http.client.OK:
if switch == 'Enable':
raise OPIExecError('Failed to enable SSH client first-time')
else:
raise OPIExecError('Failed to disable SSH client first-time')
return OK
def _sftp_download_file(ops_conn, url, local_path):
"""Download file using SFTP."""
_set_sshc_first_time(ops_conn, 'Enable')
logging.info('SFTP download "%s" to "%s".', url, local_path)
uri = "/sshc/sshcConnects/sshcConnect"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<sshcConnect>
<HostAddrIPv4>$serverIp</HostAddrIPv4>
<commandType>get</commandType>
<userName>$username</userName>
<password>$password</password>
<localFileName>$localPath</localFileName>
<remoteFileName>$remotePath</remoteFileName>
<identityKey>ssh-rsa</identityKey>
<transferType>SFTP</transferType>
</sshcConnect>
''')
url_tuple = urlparse(url)
if re.match(r"\d+\.\d+\.\d+\.\d+", url_tuple.hostname):
server_ip = url_tuple.hostname
else:
server_ip = get_addr_by_hostname(ops_conn, url_tuple.hostname)
req_data = str_temp.substitute(serverIp = server_ip, username = url_tuple.username, password = url_tuple.password,
remotePath = url_tuple.path[1:], localPath = local_path)
ret, _, _ = ops_conn.create(uri, req_data)
if ret != http.client.OK:
print(('Failed to download file "%s" using SFTP' % os.path.basename(local_path)))
sys.stdout.flush()
ret = ERR
else:
ret = OK
_del_sshc_rsa_key(ops_conn, server_ip)
_set_sshc_first_time(ops_conn, 'Disable')
return ret
def _tftp_download_file(ops_conn, url, local_path):
"""Download file using TFTP."""
logging.info('TFTP download "%s" to "%s".', url, local_path)
uri = "/tftpc/tftpcTransferFiles/tftpcTransferFile"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<tftpcTransferFile>
<serverIpv4Address>$serverIp</serverIpv4Address>
<commandType>get_cmd</commandType>
<localFileName>$localPath</localFileName>
<remoteFileName>$remotePath</remoteFileName>
</tftpcTransferFile>
''')
url_tuple = urlparse(url)
if re.match(r"\d+\.\d+\.\d+\.\d+", url_tuple.hostname):
server_ip = url_tuple.hostname
else:
server_ip = get_addr_by_hostname(ops_conn, url_tuple.hostname)
req_data = str_temp.substitute(serverIp = server_ip, remotePath = url_tuple.path[1:], localPath = local_path)
ret, _, _ = ops_conn.create(uri, req_data)
if ret != http.client.OK:
print(('Failed to download file "%s" using TFTP' % os.path.basename(local_path)))
sys.stdout.flush()
return ERR
return OK
def _usb_download_file(ops_conn, url, local_path):
"""Download file using usb"""
logging.info('USB download "%s" to "%s".', url, local_path)
url_tuple = urlparse(url, allow_fragments=False)
src_path = url_tuple.path[1:]
try:
copy_file(ops_conn, src_path, local_path)
except:
print(('Failed to download file "%s" using USB' % os.path.basename(local_path)))
sys.stdout.flush()
return ERR
return OK
def download_file(ops_conn, url, local_path, retry_times = 0):
"""Download file, support TFTP, FTP, SFTP and HTTP.
tftp://hostname/path
ftp://[username[:password]@]hostname[:port]/path
sftp://[username[:password]@]hostname[:port]/path
http://hostname[:port]/path
Args:
ops_conn: OPS connection instance
url: URL of remote file
local_path: local path to put the file
Returns:
A integer of return code
"""
url_tuple = urlparse(url)
print(("Info: Download %s to %s" % (url_tuple.path[1:], local_path)))
sys.stdout.flush()
func_dict = {'tftp': _tftp_download_file,
'ftp': _ftp_download_file,
'sftp': _sftp_download_file,
'http': _http_download_file,
'file': _usb_download_file}
scheme = url_tuple.scheme
if scheme not in list(func_dict.keys()):
raise ZTPErr('Unknown file transfer scheme %s' % scheme)
ret = OK
cnt = 0
while (cnt < 1 + retry_times):
if cnt:
print('Retry downloading...')
sys.stdout.flush()
logging.info('Retry downloading...')
ret = func_dict[scheme](ops_conn, url, local_path)
if ret is OK:
break
cnt += 1
if ret is not OK:
raise ZTPErr('Failed to download file "%s"' % os.path.basename(url))
return OK
class StartupInfo(object):
"""Startup configuration information
image: startup system software
config: startup saved-configuration file
patch: startup patch package
"""
def __init__(self, image = None, config = None, patch = None):
self.image = image
self.config = config
self.patch = patch
class Startup(object):
"""Startup configuration information
current: current startup configuration
next: current next startup configuration
"""
def __init__(self, ops_conn):
self.ops_conn = ops_conn
self.current, self.next = self._get_startup_info()
def _get_startup_info(self):
"""Get the startup information."""
logging.info("Get the startup information...")
uri = "/cfg/startupInfos/startupInfo"
req_'<?xml version="1.0" encoding="UTF-8"?>
<startupInfo>
<position/>
<configedSysSoft/>
<curSysSoft/>
<nextSysSoft/>
<curStartupFile/>
<nextStartupFile/>
<curPatchFile/>
<nextPatchFile/>
</startupInfo>'''
cnt = 0
while (cnt < MAX_TIMES_GET_STARTUP):
ret, _, rsp_data = self.ops_conn.get(uri, req_data)
if ret != http.client.OK or rsp_data is '':
cnt += 1
logging.warning('Failed to get the startup information')
continue
root_elem = etree.fromstring(rsp_data)
namespaces = {'vrp' : 'http://www.huawei.com/netconf/vrp'}
mpath = 'data' + uri.replace('/', '/vrp:') # match path
nslen = len(namespaces['vrp'])
elem = root_elem.find(mpath, namespaces)
if elem is not None:
break
logging.warning('No query result while getting startup info')
sleep(GET_STARTUP_INTERVAL) # sleep to wait for system ready when no query result
cnt += 1
if elem is None:
raise OPIExecError('Failed to get the startup information')
current = StartupInfo() # current startup info
curnext = StartupInfo() # next startup info
for child in elem:
tag = child.tag[nslen + 2:] # skip the namespace, '{namespace}text'
if tag == 'curSysSoft':
current.image = child.text
elif tag == 'nextSysSoft':
curnext.image = child.text
elif tag == 'curStartupFile' and child.text != 'NULL':
current.config = child.text
elif tag == 'nextStartupFile' and child.text != 'NULL':
curnext.config = child.text
elif tag == 'curPatchFile' and child.text != 'NULL':
current.patch = child.text
elif tag == 'nextPatchFile' and child.text != 'NULL':
curnext.patch = child.text
else:
continue
return current, curnext
def _set_startup_image_file(self, file_path):
"""Set the next startup system software"""
logging.info("Set the next startup system software to %s...", file_path)
uri = "/sum/startupbymode"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<startupbymode>
<softwareName>$fileName</softwareName>
<mode>STARTUP_MODE_ALL</mode>
</startupbymode>
''')
req_data = str_temp.substitute(fileName = file_path)
# it is a action operation, so use create for HTTP POST
ret, _, _ = self.ops_conn.create(uri, req_data)
if ret != http.client.OK:
raise OPIExecError("Failed to set startup system software")
def _set_startup_config_file(self, file_path):
"""Set the next startup saved-configuration file"""
logging.info("Set the next startup saved-configuration file to %s...", file_path)
uri = "/cfg/setStartup"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<setStartup>
<fileName>$fileName</fileName>
</setStartup>
''')
req_data = str_temp.substitute(fileName = file_path)
# it is a action operation, so use create for HTTP POST
ret, _, _ = self.ops_conn.create(uri, req_data)
if ret != http.client.OK:
raise OPIExecError("Failed to set startup configuration file")
def _del_startup_config_file(self):
"""Delete startup config file"""
logging.info("Delete the next startup config file...")
uri = "/cfg/clearStartup"
req_data = '''<?xml version="1.0" encoding="UTF-8"?>
<clearStartup>
</clearStartup>
'''
# it is a action operation, so use create for HTTP POST
ret, _, _ = self.ops_conn.create(uri, req_data)
if ret != http.client.OK:
raise OPIExecError("Failed to delete startup configuration file")
def _set_startup_patch_file(self, file_path):
"""Set the next startup patch file"""
logging.info("Set the next startup patch file to %s...", file_path)
uri = "/patch/startup"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<startup>
<packageName>$fileName</packageName>
</startup>
''')
req_data = str_temp.substitute(fileName = file_path)
# it is a action operation, so use create for HTTP POST
ret, _, _ = self.ops_conn.create(uri, req_data)
if ret != http.client.OK:
raise OPIExecError("Failed to set startup patch file")
def _get_cur_stack_member_id(self):
"""rest api: Get current stack member id"""
logging.info("Get current stack member ID...")
uri = "/stack/stackMemberInfos/stackMemberInfo"
req_data = \
'''<?xml version="1.0" encoding="UTF-8"?>
<stackMemberInfo>
<memberID></memberID>
</stackMemberInfo>
'''
ret, _, rsp_data = self.ops_conn.get(uri, req_data)
if ret != http.client.OK or rsp_data is '':
raise OPIExecError('Failed to get current stack member id, rsp not ok')
root_elem = etree.fromstring(rsp_data)
namespaces = {'vrp' : 'http://www.huawei.com/netconf/vrp'}
uri = 'data' + uri.replace('/', '/vrp:') + '/vrp:'
elem = root_elem.find(uri + "memberID", namespaces)
if elem is None:
raise OPIExecError('Failed to get the current stack member id for no "memberID" element')
return elem.text
def _set_stack_member_id(self, file_path, esn):
"""Set the next stack member ID"""
def get_stackid_from_file(fname, esn):
"""parse esn_id.txt file and get stack id according to esn num
format of esn_stackid file is like below:
sn Irf group Irf number
Sdddg 100 1
Sddde 100 2
"""
# fname must exist, guaranteed by caller
fname = os.path.basename(fname)
with open(fname, 'r') as item:
for line in item:
token = line.strip('[\r\n]')
token = token.split()
if token[0] == esn:
return token[2]
return None
logging.info('Set the next stack member ID, filename %s', file_path)
uri = "/stack/stackMemberInfos/stackMemberInfo"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<stackMemberInfo>
<memberID>$curmemberid</memberID>
<nextMemberID>$memberid</nextMemberID>
</stackMemberInfo>
''')
cur_memid = self._get_cur_stack_member_id()
next_memid = get_stackid_from_file(file_path, esn)
if not next_memid:
logging.error('Failed to get stack id from %s, esn %s', file_path, esn)
return
req_data = str_temp.substitute(curmemberid = cur_memid, memberid = next_memid)
ret, _, _ = self.ops_conn.set(uri, req_data)
if ret != http.client.OK:
raise OPIExecError('Failed to set stack id {}'.format(next_memid))
return OK
def _reset_stack_member_id(self):
"""rest api: reset stack member id"""
logging.info('Reset the next stack member ID')
uri = "/stack/stackMemberInfos/stackMemberInfo"
req_data = \
'''<?xml version="1.0" encoding="UTF-8"?>
<stackMemberInfo>
<memberID>1</memberID>
<nextMemberID>1</nextMemberID>
</stackMemberInfo>
'''
ret, _, _ = self.ops_conn.set(uri, req_data)
if ret != http.client.OK:
raise OPIExecError('Failed to reset stack id ')
return OK
def _reset_startup_patch_file(self):
"""Rest patch file for system to startup"""
logging.info("Reset the next startup patch file...")
uri = "/patch/resetpatch"
req_data = '''<?xml version="1.0" encoding="UTF-8"?>
<resetpatch>
</resetpatch>
'''
# it is a action operation, so use create for HTTP POST
ret, _, _ = self.ops_conn.create(uri, req_data)
if ret != http.client.OK:
raise OPIExecError('Failed to reset patch')
def reset_startup_info(self, slave):
"""Reset startup info and delete the downloaded files"""
logging.info("Reset the next startup information...")
_, configured = self._get_startup_info()
# 1. Reset next startup config file and delete it
try:
if configured.config != self.next.config:
if self.next.config is None:
self._del_startup_config_file()
else:
self._set_startup_config_file(self.next.config)
if configured.config is not None:
del_file_all(self.ops_conn, configured.config, slave)
except Exception as reason:
logging.error(reason)
# 2. Reset next startup patch file
try:
if configured.patch != self.next.patch:
if self.next.patch is None:
self._reset_startup_patch_file()
else:
self._set_startup_patch_file(self.next.patch)
if configured.patch is not None:
del_file_all(self.ops_conn, configured.patch, slave)
except Exception as reason:
logging.error(reason)
# 3. Reset next startup system software and delete it
try:
if configured.image != self.next.image:
self._set_startup_image_file(self.next.image)
del_file_all(self.ops_conn, configured.image, slave)
except Exception as reason:
logging.error(reason)
# 4. reset stack member id
try:
self._reset_stack_member_id()
except Exception as reason:
logging.error(reason)
def set_startup_info(self, image_file, config_file, patch_file, memid_file, slave, esn_str):
"""Set the next startup information."""
logging.info("Set the next startup information...")
# 1. Set next startup system software
if image_file is not None:
try:
self._set_startup_image_file(image_file)
except Exception as reason:
logging.error(reason)
del_file_all(self.ops_conn, image_file, slave)
self.reset_startup_info(slave)
raise
# 2. Set next startup config file
if config_file is not None:
try:
self._set_startup_config_file(config_file)
except Exception as reason:
logging.error(reason)
del_file_all(self.ops_conn, config_file, slave)
self.reset_startup_info(slave)
raise
# 3. Set next startup patch file
if patch_file is not None:
try:
self._set_startup_patch_file(patch_file)
except Exception as reason:
logging.error(reason)
del_file_all(self.ops_conn, patch_file, slave)
self.reset_startup_info(slave)
raise
# 4. Set next member id
if memid_file is not None:
try:
self._set_stack_member_id(memid_file, esn_str)
except Exception as reason:
logging.error(reason)
del_file_all(self.ops_conn, memid_file, None)
self.reset_startup_info(slave)
raise
def get_cwd(ops_conn):
"""Get the full filename of the current working directory"""
logging.info("Get the current working directory...")
uri = "/vfm/pwds/pwd"
req_data = \
'''<?xml version="1.0" encoding="UTF-8"?>
<pwd>
<dictionaryName/>
</pwd>
'''
ret, _, rsp_data = ops_conn.get(uri, req_data)
if ret != http.client.OK or rsp_data is '':
raise OPIExecError('Failed to get the current working directory')
root_elem = etree.fromstring(rsp_data)
namespaces = {'vrp' : 'http://www.huawei.com/netconf/vrp'}
uri = 'data' + uri.replace('/', '/vrp:') + '/vrp:'
elem = root_elem.find(uri + "dictionaryName", namespaces)
if elem is None:
raise OPIExecError('Failed to get the current working directory for no "directoryName" element')
return elem.text
def file_exist(ops_conn, file_path):
"""Returns True if file_path refers to an existing file, otherwise returns False"""
uri = "/vfm/dirs/dir"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<dir>
<fileName>$fileName</fileName>
</dir>
''')
req_data = str_temp.substitute(fileName = file_path)
ret, _, rsp_data = ops_conn.get(uri, req_data)
if ret != http.client.OK or rsp_data is '':
raise OPIExecError('Failed to list information about the file "%s"' % file_path)
root_elem = etree.fromstring(rsp_data)
namespaces = {'vrp' : 'http://www.huawei.com/netconf/vrp'}
uri = 'data' + uri.replace('/', '/vrp:') + '/vrp:'
elem = root_elem.find(uri + "fileName", namespaces)
if elem is None:
return False
return True
def del_file(ops_conn, file_path):
"""Delete a file permanently"""
if file_path is None or file_path is '':
return
logging.info("Delete file %s permanently", file_path)
uri = "/vfm/deleteFileUnRes"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<deleteFileUnRes>
<fileName>$filePath</fileName>
</deleteFileUnRes>
''')
req_data = str_temp.substitute(filePath = file_path)
try:
# it is a action operation, so use create for HTTP POST
ret, _, _ = ops_conn.create(uri, req_data)
if ret != http.client.OK:
raise OPIExecError('Failed to delete the file "%s" permanently' % file_path)
except Exception as reason:
logging.error(reason)
def del_file_noerror(ops_conn, file_path):
"""Delete a file permanently"""
if file_path is None or file_path is '':
return
logging.info("Delete file %s permanently", file_path)
uri = "/vfm/deleteFileUnRes"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<deleteFileUnRes>
<fileName>$filePath</fileName>
</deleteFileUnRes>
''')
req_data = str_temp.substitute(filePath = file_path)
try:
# it is a action operation, so use create for HTTP POST
ret, _, _ = ops_conn.create(uri, req_data)
if ret != http.client.OK:
logging.info("file not exist")
except Exception as reason:
logging.error(reason)
def del_file_all(ops_conn, file_path, slave):
"""Delete a file permanently on all main boards"""
if file_path:
del_file(ops_conn, file_path)
if slave:
del_file(ops_conn, 'slave#' + file_path)
def del_file_all_noerror(ops_conn, file_path, slave):
"""Delete a file permanently on all main boards"""
if file_path:
del_file_noerror(ops_conn, file_path)
if slave:
del_file_noerror(ops_conn, 'slave#' + file_path)
def copy_file(ops_conn, src_path, dest_path):
"""Copy a file"""
print(('Info: Copy file %s to %s...' % (src_path, dest_path)))
sys.stdout.flush()
logging.info('Copy file %s to %s...', src_path, dest_path)
uri = "/vfm/copyFile"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<copyFile>
<srcFileName>$src</srcFileName>
<desFileName>$dest</desFileName>
</copyFile>
''')
req_data = str_temp.substitute(src = src_path, dest = dest_path)
# it is a action operation, so use create for HTTP POST
ret, _, _ = ops_conn.create(uri, req_data)
if ret != http.client.OK:
raise OPIExecError('Failed to copy "%s" to "%s"' % (src_path, dest_path))
def has_slave_mpu(ops_conn):
"""Whether device has slave MPU, returns a bool value"""
logging.info("Test whether device has slave MPU...")
uri = "/devm/phyEntitys"
req_data = \
'''<?xml version="1.0" encoding="UTF-8"?>
<phyEntitys>
<phyEntity>
<entClass>mpuModule</entClass>
<entStandbyState/>
<position/>
</phyEntity>
</phyEntitys>
'''
ret, _, rsp_data = ops_conn.get(uri, req_data)
if ret != http.client.OK or rsp_data is '':
raise OPIExecError('Failed to get the device slave information')
root_elem = etree.fromstring(rsp_data)
namespaces = {'vrp' : 'http://www.huawei.com/netconf/vrp'}
uri = 'data' + uri.replace('/', '/vrp:') + '/vrp:'
for entity in root_elem.findall(uri + 'phyEntity', namespaces):
elem = entity.find("vrp:entStandbyState", namespaces)
if elem is not None and elem.text == 'slave':
return True
return False
def get_system_info(ops_conn):
"""Get system info, returns a dict"""
logging.info("Get the system information...")
uri = "/system/systemInfo"
req_data = \
'''<?xml version="1.0" encoding="UTF-8"?>
<systemInfo>
<productName/>
<esn/>
<mac/>
</systemInfo>
'''
ret, _, rsp_data = ops_conn.get(uri, req_data)
if ret != http.client.OK or rsp_data is '':
raise OPIExecError('Failed to get the system information')
sys_info = {}.fromkeys(('productName', 'esn', 'mac'))
root_elem = etree.fromstring(rsp_data)
namespaces = {'vrp' : 'http://www.huawei.com/netconf/vrp'}
uri = 'data' + uri.replace('/', '/vrp:')
nslen = len(namespaces['vrp'])
elem = root_elem.find(uri, namespaces)
if elem is not None:
for child in elem:
tag = child.tag[nslen + 2:] # skip the namespace, '{namespace}esn'
if tag in list(sys_info.keys()):
sys_info[tag] = child.text
return sys_info
def test_file_paths(image, config, patch, stack_memid, md5_file, license_list_file):
"""Test whether argument paths are valid."""
logging.info("Test whether argument paths are valid...")
# check image file path
file_name = os.path.basename(image)
if file_name is not '' and not file_name.lower().endswith('.cc'):
print('Error: Invalid filename extension of system software')
sys.stdout.flush()
return False
# check config file path
file_name = os.path.basename(config)
file_name = file_name.lower()
_, ext = os.path.splitext(file_name)
if file_name is not '' and ext not in ['.cfg', '.zip', '.dat']:
print('Error: Invalid filename extension of configuration file')
sys.stdout.flush()
return False
# check patch file path
file_name = os.path.basename(patch)
if file_name is not '' and not file_name.lower().endswith('.pat'):
print('Error: Invalid filename extension of patch file')
sys.stdout.flush()
return False
# check stack member id file path
file_name = os.path.basename(stack_memid)
if file_name is not '' and not file_name.lower().endswith('.txt'):
print('Error: Invalid filename extension of stack member ID file')
sys.stdout.flush()
return False
# check md5 file path
file_name = os.path.basename(md5_file)
if file_name is not '' and not file_name.lower().endswith('.txt'):
print('Error: Invalid filename extension of md5 file')
sys.stdout.flush()
return False
# check license list file path
file_name = os.path.basename(license_list_file)
if file_name is not '' and not file_name.lower().endswith('.xml'):
print('Error: Invalid filename extension of license list file')
sys.stdout.flush()
return False
return True
def md5sum(fname, need_skip_first_line = False):
"""
Calculate md5 num for this file.
"""
def read_chunks(fhdl):
'''read chunks'''
chunk = fhdl.read(8096)
while chunk:
yield chunk
chunk = fhdl.read(8096)
else:
fhdl.seek(0)
md5_obj = hashlib.md5()
if isinstance(fname, str) and os.path.exists(fname):
with open(fname, "rb") as fhdl:
#skip the first line
fhdl.seek(0)
if need_skip_first_line:
fhdl.readline()
for chunk in read_chunks(fhdl):
md5_obj.update(chunk)
elif fname.__class__.__name__ in ["StringIO", "StringO"] or isinstance(fname, file):
for chunk in read_chunks(fname):
md5_obj.update(chunk)
else:
pass
return md5_obj.hexdigest()
def md5_get_from_file(fname):
"""Get md5 num form file, stored in first line"""
with open(fname, "r") as fhdl:
fhdl.seek(0)
line_first = fhdl.readline()
# if not match pattern, the format of this file is not supported
if not re.match('^#md5sum="[\\w]{32}"[\r\n]+$', line_first):
return 'None'
return line_first[9:41]
def md5_check_with_first_line(fname):
"""Validate md5 for this file"""
fname = os.path.basename(fname)
md5_calc = md5sum(fname, True)
md5_file = md5_get_from_file(fname)
if md5_file.lower() != md5_calc:
logging.warning('MD5 check failed, file %s', fname)
print(('MD5 checksum of the file "%s" is %s' % (fname, md5_calc)))
sys.stdout.flush()
logging.warning('MD5 checksum of the file "%s" is %s', fname, md5_calc)
print(('MD5 checksum received from the file "%s" is %s' % (fname, md5_file)))
sys.stdout.flush()
logging.warning('MD5 checksum received from the file "%s" is %s', fname, md5_file)
return False
return True
def md5_check_with_dic(md5_dic, fname):
"""md5 check with dic"""
if fname not in md5_dic:
logging.info('md5_dic does not has key %s, no need to do md5 verification', fname)
return True
md5sum_result = md5sum(fname, False)
if md5_dic[fname] == md5sum_result:
return True
print(('MD5 checksum of the file "%s" is %s' % (fname, md5sum_result)))
sys.stdout.flush()
print(('MD5 checksum received for the file "%s" is %s' % (fname, md5_dic[fname])))
sys.stdout.flush()
logging.warning('MD5 check failed, file %s', fname)
logging.warning('MD5 checksum of the file "%s" is %s', fname, md5sum_result)
logging.warning('MD5 checksum received for the file "%s" is %s', fname, md5_dic[fname])
return False
def parse_md5_file(fname):
"""parse md5 file"""
def read_line(fhdl):
"""read a line by loop"""
line = fhdl.readline()
while line:
yield line
line = fhdl.readline()
else:
fhdl.seek(0)
md5_dic = {}
with open(fname, "rb") as fhdl:
for line in read_line(fhdl):
line_spilt = line.split()
if 2 != len(line_spilt):
continue
dic_tmp = {line_spilt[0]: line_spilt[1]}
md5_dic.update(dic_tmp)
return md5_dic
def verify_and_parse_md5_file(fname):
"""
vefiry data integrity of md5 file and parse this file
format of this file is like:
------------------------------------------------------------------
#md5sum="517cf194e2e1960429c6aedc0e4dba37"
file-name md5
conf_5618642831132.cfg c0ace0f0542950beaacb39cd1c3b5716
------------------------------------------------------------------
"""
if not md5_check_with_first_line(fname):
return ERR, None
return OK, parse_md5_file(fname)
def check_parameter(aset):
seq = ['&', '>', '<', '"', "'"]
if aset:
for c in seq:
if c in aset:
return True
return False
def check_filename(ops_conn):
sys_info = get_system_info(ops_conn)
url_tuple = urlparse(FILE_SERVER)
if check_parameter(url_tuple.username) or check_parameter(url_tuple.password):
raise ZTPErr('Invalid username or password, the name should not contain: '+'&'+' >'+' <'+' "'+" '.")
file_name = os.path.basename(REMOTE_PATH_IMAGE.get(sys_info['productName'], ''))
if file_name is not '' and check_parameter(file_name):
raise ZTPErr('Invalid filename of system software, the name should not contain: '+'&'+' >'+' <'+' "'+" '.")
file_name = os.path.basename(REMOTE_PATH_CONFIG)
if file_name is not '' and check_parameter(file_name):
raise ZTPErr('Invalid filename of configuration file, the name should not contain: '+'&'+' >'+' <'+' "'+" '.")
file_name = os.path.basename(REMOTE_PATH_PATCH.get(sys_info['productName'], ''))
if file_name is not '' and check_parameter(file_name):
raise ZTPErr('Invalid filename of patch file, the name should not contain: '+'&'+' >'+' <'+' "'+" '.")
file_name = os.path.basename(REMOTE_PATH_MEMID)
if file_name is not '' and check_parameter(file_name):
raise ZTPErr('Invalid filename of member ID file, the name should not contain: '+'&'+' >'+' <'+' "'+" '.")
file_name = os.path.basename(REMOTE_PATH_MD5)
if file_name is not '' and check_parameter(file_name):
raise ZTPErr('Invalid filename of md5 file, the name should not contain: '+'&'+' >'+' <'+' "'+" '.")
file_name = os.path.basename(REMOTE_PATH_LICLIST)
if file_name is not '' and check_parameter(file_name):
raise ZTPErr('Invalid filename of license list file, the name should not contain: '+'&'+' >'+' <'+' "'+" '.")
return OK
def active_license(ops_conn, license_name):
if license_name:
uri = "/lcs/lcsActive"
str_temp = string.Template(
'''<?xml version="1.0" encoding="UTF-8"?>
<lcsActive>
<lcsFileName>$lcsFileName</lcsFileName>
</lcsActive>
''')
req_data = str_temp.substitute(lcsFileName = license_name)
ret, _, _ = ops_conn.create(uri, req_data)
if ret != http.client.OK:
logging.error('Error: Failed to active license.')
return ERR
return OK
def main_proc(ops_conn):
"""Main processing"""
sys_info = get_system_info(ops_conn) # Get system info, such as esn and system mac
cwd = get_cwd(ops_conn) # Get the current working directory
startup = Startup(ops_conn)
slave = has_slave_mpu(ops_conn) # Check whether slave MPU board exists or not
chg_flag = False
check_filename(ops_conn)
# check remote file paths
if not test_file_paths(REMOTE_PATH_IMAGE.get(sys_info['productName'], ''), REMOTE_PATH_CONFIG,
REMOTE_PATH_PATCH.get(sys_info['productName'], ''), REMOTE_PATH_MEMID, REMOTE_PATH_MD5,
REMOTE_PATH_LICLIST):
return ERR
# download md5 file first, used to verify data integrity of files which will be downloaded next
local_path_md5 = None
file_path = REMOTE_PATH_MD5
if not file_path.startswith('/'):
file_path = '/' + file_path
file_name = os.path.basename(file_path)
if file_name is not '':
url = FILE_SERVER + file_path
local_path_md5 = cwd + file_name
ret = download_file(ops_conn, url, local_path_md5, MAX_TIMES_RETRY_DOWNLOAD)
if ret is ERR or not file_exist(ops_conn, file_name):
print(('Error: Failed to download MD5 file "%s"' % file_name))
sys.stdout.flush()
return ERR
print('Info: Download MD5 file successfully')
sys.stdout.flush()
ret, md5_dic = verify_and_parse_md5_file(file_name)
# delete the file immediately
del_file_all(ops_conn, local_path_md5, None)
if ret is ERR:
print(('Error: MD5 check failed, file "%s"' % file_name))
sys.stdout.flush()
return ERR
else:
md5_dic = {}
# download configuration file
local_path_config = None
file_path = REMOTE_PATH_CONFIG
if "%s" in file_path:
file_path = REMOTE_PATH_CONFIG % sys_info['esn']
if not file_path.startswith('/'):
file_path = '/' + file_path
file_name = os.path.basename(file_path)
if file_name is not '':
url = FILE_SERVER + file_path
local_path_config = cwd + file_name
del_file_noerror(ops_conn, local_path_config)
ret = download_file(ops_conn, url, local_path_config, MAX_TIMES_RETRY_DOWNLOAD)
if ret is ERR or not file_exist(ops_conn, file_name):
print(('Error: Failed to download configuration file "%s"' % file_name))
sys.stdout.flush()
return ERR
print('Info: Download configuration file successfully')
sys.stdout.flush()
if not md5_check_with_dic(md5_dic, file_name):
print(('Error: MD5 check failed, file "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
return ERR
if slave:
del_file_noerror(ops_conn, 'slave#' + local_path_config)
copy_file(ops_conn, local_path_config, 'slave#' + local_path_config)
chg_flag = True
# download patch file
local_path_patch = None
file_path = REMOTE_PATH_PATCH.get(sys_info['productName'], '')
if not file_path.startswith('/'):
file_path = '/' + file_path
file_name = os.path.basename(file_path)
if startup.current.patch:
cur_pat = os.path.basename(startup.current.patch).lower()
else:
cur_pat = ''
if file_name is not '' and file_name.lower() != cur_pat:
url = FILE_SERVER + file_path
local_path_patch = cwd + file_name
del_file_noerror(ops_conn, local_path_patch)
ret = download_file(ops_conn, url, local_path_patch, MAX_TIMES_RETRY_DOWNLOAD)
if ret is ERR or not file_exist(ops_conn, file_name):
print(('Error: Failed to download patch file "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
return ERR
print('Info: Download patch file successfully')
sys.stdout.flush()
if not md5_check_with_dic(md5_dic, file_name):
print(('Error: MD5 check failed, file "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
return ERR
if slave:
del_file_noerror(ops_conn, 'slave#' + local_path_patch)
copy_file(ops_conn, local_path_patch, 'slave#' + local_path_patch)
chg_flag = True
# download stack member ID file
local_path_memid = None
file_path = REMOTE_PATH_MEMID
if not file_path.startswith('/'):
file_path = '/' + file_path
file_name = os.path.basename(file_path)
if file_name is not '':
url = FILE_SERVER + file_path
local_path_memid = cwd + file_name
del_file_noerror(ops_conn,local_path_memid)
ret = download_file(ops_conn, url, local_path_memid, MAX_TIMES_RETRY_DOWNLOAD)
if ret is ERR or not file_exist(ops_conn, file_name):
print(('Error: Failed to download system software "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
return ERR
print('Info: Download stack member ID file successfully')
sys.stdout.flush()
if not md5_check_with_dic(md5_dic, file_name):
print(('Error: MD5 check failed, file "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
del_file_all(ops_conn, local_path_memid, slave)
return ERR
chg_flag = True
#no need copy to slave board
# download system software
local_path_image = None
file_path = REMOTE_PATH_IMAGE.get(sys_info['productName'], '')
if not file_path.startswith('/'):
file_path = '/' + file_path
file_name = os.path.basename(file_path)
if startup.current.image:
cur_image = os.path.basename(startup.current.image).lower()
else:
cur_image = ''
if file_name is not '' and file_name.lower() != cur_image:
url = FILE_SERVER + file_path
local_path_image = cwd + file_name
del_file_noerror(ops_conn, local_path_image)
ret = download_file(ops_conn, url, local_path_image, MAX_TIMES_RETRY_DOWNLOAD)
if ret is ERR or not file_exist(ops_conn, file_name):
if file_exist(ops_conn, file_name):
del_file_all(ops_conn, local_path_image, slave)
print(('Error: Failed to download system software "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
del_file_all(ops_conn, local_path_memid, slave)
return ERR
print('Info: Download system software file successfully')
sys.stdout.flush()
if not md5_check_with_dic(md5_dic, file_name):
print(('Error: MD5 check failed, file "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
del_file_all(ops_conn, local_path_memid, slave)
del_file_all(ops_conn, local_path_image, slave)
return ERR
if slave:
del_file_noerror(ops_conn, 'slave#' + local_path_image)
copy_file(ops_conn, local_path_image, 'slave#' + local_path_image)
chg_flag = True
# download license list file
local_path_liclist = None
file_path = REMOTE_PATH_LICLIST
if not file_path.startswith('/'):
file_path = '/' + file_path
file_name = os.path.basename(file_path)
download_space = os.path.dirname(file_path)
if file_name is not '':
url = FILE_SERVER + file_path
local_path_liclist = cwd + file_name
del_file_noerror(ops_conn, local_path_liclist)
ret = download_file(ops_conn, url, local_path_liclist, MAX_TIMES_RETRY_DOWNLOAD)
if ret is ERR or not file_exist(ops_conn, file_name):
print(('Error: Failed to download license list file "%s"' % file_name))
sys.stdout.flush()
return ERR
print('Info: Download license list file successfully')
sys.stdout.flush()
if not md5_check_with_dic(md5_dic, file_name):
print(('Error: MD5 check failed, file "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
del_file_all(ops_conn, local_path_memid, slave)
del_file_all(ops_conn, local_path_image, slave)
del_file_all(ops_conn, local_path_liclist, slave)
return ERR
chg_flag = True
#execute license list file to get license file name which end with .dat
license_name = None
if local_path_liclist is not None:
tree = etree.parse(file_name)
root = tree.getroot()
for child in root.findall('Lic'):
name = child.get('name')
esn = child.find('Esn').text
if sys_info['esn'] in esn:
license_name = name
print(('Info: License file name is "%s"' % license_name))
sys.stdout.flush()
break
if license_name == None :
print('Warning: Esn of this device is not in the license list file')
sys.stdout.flush()
#del_file_all(ops_conn, local_path_config, slave)
#del_file_all(ops_conn, local_path_patch, slave)
#del_file_all(ops_conn, local_path_memid, slave)
#del_file_all(ops_conn, local_path_image, slave)
#del_file_all(ops_conn, local_path_liclist, slave)
#return ERR
# download license file
local_path_license = None
file_path = license_name
if file_path is not None:
if not file_path.startswith('/'):
file_path = '/' + file_path
file_path = download_space + file_path
file_name = os.path.basename(file_path)
if file_name is not '':
url = FILE_SERVER + file_path
local_path_license = cwd + file_name
ret = download_file(ops_conn, url, local_path_license, MAX_TIMES_RETRY_DOWNLOAD)
if ret is ERR or not file_exist(ops_conn, file_name):
print(('Error: Failed to download license file "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
del_file_all(ops_conn, local_path_memid, slave)
del_file_all(ops_conn, local_path_image, slave)
del_file_all(ops_conn, local_path_liclist, slave)
return ERR
print('Info: Download license file successfully')
sys.stdout.flush()
if not md5_check_with_dic(md5_dic, file_name):
print(('Error: MD5 check failed, file "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
del_file_all(ops_conn, local_path_memid, slave)
del_file_all(ops_conn, local_path_image, slave)
del_file_all(ops_conn, local_path_liclist, slave)
del_file_all(ops_conn, local_path_license, slave)
return ERR
chg_flag = True
#no need copy to slave board
# download python file
local_path_python = None
file_path = REMOTE_PATH_PYTHON
if not file_path.startswith('/'):
file_path = '/' + file_path
file_name = os.path.basename(file_path)
if file_name is not '':
url = FILE_SERVER + file_path
local_path_python = cwd + file_name
del_file_noerror(ops_conn, local_path_python)
ret = download_file(ops_conn, url, local_path_python, MAX_TIMES_RETRY_DOWNLOAD)
if ret is ERR or not file_exist(ops_conn, file_name):
print(('Error: Failed to download python file "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
del_file_all(ops_conn, local_path_memid, slave)
del_file_all(ops_conn, local_path_image, slave)
del_file_all(ops_conn, local_path_liclist, slave)
del_file_all(ops_conn, local_path_license, slave)
return ERR
print('Info: Download python file successfully')
sys.stdout.flush()
if not md5_check_with_dic(md5_dic, file_name):
print(('Error: MD5 check failed, file "%s"' % file_name))
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
del_file_all(ops_conn, local_path_memid, slave)
del_file_all(ops_conn, local_path_image, slave)
del_file_all(ops_conn, local_path_liclist, slave)
del_file_all(ops_conn, local_path_license, slave)
del_file_all(ops_conn, local_path_python, slave)
return ERR
if slave:
del_file_noerror(ops_conn, 'slave#' + local_path_python)
copy_file(ops_conn, local_path_python, 'slave#' + local_path_python)
chg_flag = True
if chg_flag is False:
return ERR
# active license file
if local_path_license is not None:
ret = active_license(ops_conn, local_path_license)
if ret is ERR:
print('Info: Active license failed')
sys.stdout.flush()
del_file_all(ops_conn, local_path_config, slave)
del_file_all(ops_conn, local_path_patch, slave)
del_file_all(ops_conn, local_path_memid, slave)
del_file_all(ops_conn, local_path_image, slave)
del_file_all(ops_conn, local_path_liclist, slave)
del_file_all(ops_conn, local_path_license, slave)
del_file_all(ops_conn, local_path_python, slave)
return ERR
print(('Info: Active license sucessfully, name: %s' % local_path_license))
sys.stdout.flush()
sleep(10)
# set startup info
startup.set_startup_info(local_path_image, local_path_config, local_path_patch,
local_path_memid, slave, sys_info['esn'])
# delete stack member ID file and license list file after used
del_file_all(ops_conn, local_path_memid, None)
del_file_all(ops_conn, local_path_liclist, None)
return OK
def main(usb_path = ''):
"""The main function of user script. It is called by ZTP frame, so do not remove or change this function.
Args:
Raises:
Returns: user script processing result
"""
host = "localhost"
if usb_path and len(usb_path):
logging.info('ztp_script usb_path: %s', usb_path)
global FILE_SERVER
FILE_SERVER = 'file:///' + usb_path
try:
# Make an OPS connection instance.
ops_conn = OPSConnection(host)
ret = main_proc(ops_conn)
except OPIExecError as reason:
logging.error('OPI execute error: %s', reason)
print(("Error: %s" % reason))
sys.stdout.flush()
ret = ERR
except ZTPErr as reason:
logging.error('ZTP error: %s', reason)
print(("Error: %s" % reason))
sys.stdout.flush()
ret = ERR
except IOError as reason:
print(("Error: %s" % reason))
sys.stdout.flush()
ret = ERR
except Exception as reason:
logging.error(reason)
traceinfo = traceback.format_exc()
logging.debug(traceinfo)
ret = ERR
finally:
# Close the OPS connection
ops_conn.close()
return ret
if __name__ == "__main__":
main()
配置文件
SwitchC的配置文件
# sysname SwitchC # vlan batch 10 # dhcp enable # interface Vlanif10 ip address 10.1.1.1 255.255.255.0 dhcp select relay dhcp relay binding server ip 10.1.2.2 # interface 10GE1/0/1 port link-type trunk port trunk pvid vlan 10 port trunk allow-pass vlan 10 # interface 10GE1/0/2 port link-type trunk port trunk pvid vlan 10 port trunk allow-pass vlan 10 # return
