ifxlookup/plugins/openvpn.py

from servicebase import ServiceBase
import paramiko
import datetime
import re

class ServiceDelegate(ServiceBase) :

	_connections = None

	def get_arguments(cls) :
		"""Returns an array of information used to construct an argumentparser argument."""
		return ['-r', '--vpn','store_true','Return VPN information about the subject (openvpn)']

	def startup(self) :
		for requirement in ['hosts','username','key'] :
			if requirement not in self._config or (requirement in self._config and self._config[requirement] == ''):
				self._error.append('Missing required config option ' + requirement)
				rself._error
		self.hosts = self._config['hosts']
		self.debug('Logging into OpenVPN servers...',1)
		connections = {}
		for host in self._config['hosts'] :
			try :
				sshclient = paramiko.SSHClient()
				sshclient.set_missing_host_key_policy(paramiko.AutoAddPolicy())
				sshclient.connect(host,22,username=self._config['username'],password=self._config['key'])
				connections.update({host:sshclient})
			except Exception as exception :
				self._error.append('Unable to ssh into ' + host + ': ' + str(exception))
		self._connections = connections


	def shutdown(self) :
		for connection in self._connections.values() :
			connection.close()

	def lookup(self,subject) :
		search_command = 'sudo -S cat /var/log/openvpn/openvpn.log | grep \'primary virtual IP for\' | grep -i \'' + subject + '\' | tail -n 1'
		final_dictionary = {}
		for host,connection in self._connections.items() :
			try:
				stdin,stdout,stderr=connection.exec_command(search_command)
				stdin.write(self._config['key'] + '\n')
				stdin.flush()
				result = stdout.readlines()
				if len(result) > 0 :
					self.debug('Retrieved line from ssh session: \n' + result[0].strip(),2)
					result = result[0]
				else :
					result = ''
				items = {'nat_address': r'.*\ ([0-9a-fA-F\.\:]*)$', 'source_address': r'.*/([0-9a-fA-F\.]*)\:.*', 'user_name': r'.*primary\ virtual\ IP\ for\ ([a-zA-Z0-9\.]*)/.*', 'timestamp': r'^([a-zA-Z]{3}\ +[0-9]{1,2}\ [0-9:]*)\ .*'}
				return_dictionary = {}
				for item in items.keys() :
					matches = re.match(items[item],result)
					if matches and len(matches.groups()) and matches[1] :
						return_dictionary.update({item: matches[1]})
				if len(return_dictionary) > 0 :
					return_dictionary.update({'host':host})

				epoch = None
				if 'timestamp' in final_dictionary.keys() and 'timestamp' in return_dictionary.keys() :
					epoch = int(datetime.datetime.strptime(return_dictionary['timestamp'] + ' ' + str(datetime.datetime.now().year), '%b %d %H:%M:%S %Y').strftime('%s'))
				if len(return_dictionary) > 0 :
					if epoch :
						if epoch > int(datetime.datetime.strptime(final_dictionary['timestamp'] + ' ' + str(datetime.datetime.now().year), '%b %d %H:%M:%S %Y').strftime('%s')) :
							final_dictionary = {}
							final_dictionary.update(return_dictionary)
					else :
						final_dictionary = return_dictionary
				else :
					self.debug('No results for ' + subject + ' on host ' + host,2)
			except Exception as exception :
				raise exception
				self._error.append('Unable to get results from ssh: ' + str(exception))
		if len(final_dictionary) > 0 :
			return final_dictionary
		else :
			return None
Finally making some progress here. We have basic plugin loading and IP/hostname distribution. We need to be careful about not consuming too much plugin functionality in the main file. 2019-12-03 20:27:13 +00:00			`from servicebase import ServiceBase`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`import paramiko`
More code cleanup 2020-05-26 18:26:01 +00:00			`import datetime`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`import re`
Finally making some progress here. We have basic plugin loading and IP/hostname distribution. We need to be careful about not consuming too much plugin functionality in the main file. 2019-12-03 20:27:13 +00:00
			`class ServiceDelegate(ServiceBase) :`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00
More code cleanup 2020-05-26 18:26:01 +00:00			`_connections = None`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00
Let's work on some plugins\! 2019-12-04 19:00:50 +00:00			`def get_arguments(cls) :`
Finally making some progress here. We have basic plugin loading and IP/hostname distribution. We need to be careful about not consuming too much plugin functionality in the main file. 2019-12-03 20:27:13 +00:00			`"""Returns an array of information used to construct an argumentparser argument."""`
More improvements 2020-05-22 18:28:13 +00:00			`return ['-r', '--vpn','store_true','Return VPN information about the subject (openvpn)']`
Finally making some progress here. We have basic plugin loading and IP/hostname distribution. We need to be careful about not consuming too much plugin functionality in the main file. 2019-12-03 20:27:13 +00:00
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`def startup(self) :`
			`for requirement in ['hosts','username','key'] :`
Removed CPython equalities (is, is not) for 3.8 compatibility 2020-07-14 21:36:46 +00:00			`if requirement not in self._config or (requirement in self._config and self._config[requirement] == ''):`
More code cleanup 2020-05-26 18:26:01 +00:00			`self._error.append('Missing required config option ' + requirement)`
			`rself._error`
			`self.hosts = self._config['hosts']`
More improvements 2020-05-22 18:28:13 +00:00			`self.debug('Logging into OpenVPN servers...',1)`
			`connections = {}`
More code cleanup 2020-05-26 18:26:01 +00:00			`for host in self._config['hosts'] :`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`try :`
			`sshclient = paramiko.SSHClient()`
			`sshclient.set_missing_host_key_policy(paramiko.AutoAddPolicy())`
More code cleanup 2020-05-26 18:26:01 +00:00			`sshclient.connect(host,22,username=self._config['username'],password=self._config['key'])`
More improvements 2020-05-22 18:28:13 +00:00			`connections.update({host:sshclient})`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`except Exception as exception :`
More code cleanup 2020-05-26 18:26:01 +00:00			`self._error.append('Unable to ssh into ' + host + ': ' + str(exception))`
			`self._connections = connections`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00

			`def shutdown(self) :`
More code cleanup 2020-05-26 18:26:01 +00:00			`for connection in self._connections.values() :`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`connection.close()`

Some good progress on making it a module 2020-05-22 02:34:56 +00:00			`def lookup(self,subject) :`
Made VPN search case-insensitive 2020-07-20 22:55:56 +00:00			`search_command = 'sudo -S cat /var/log/openvpn/openvpn.log \| grep \'primary virtual IP for\' \| grep -i \'' + subject + '\' \| tail -n 1'`
More code cleanup 2020-05-26 18:26:01 +00:00			`final_dictionary = {}`
			`for host,connection in self._connections.items() :`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`try:`
			`stdin,stdout,stderr=connection.exec_command(search_command)`
More code cleanup 2020-05-26 18:26:01 +00:00			`stdin.write(self._config['key'] + '\n')`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`stdin.flush()`
			`result = stdout.readlines()`
			`if len(result) > 0 :`
More code cleanup 2020-05-26 18:26:01 +00:00			`self.debug('Retrieved line from ssh session: \n' + result[0].strip(),2)`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`result = result[0]`
			`else :`
More improvements 2020-05-22 18:28:13 +00:00			`result = ''`
			`items = {'nat_address': r'.\ ([0-9a-fA-F\.\:])$', 'source_address': r'./([0-9a-fA-F\.])\:.', 'user_name': r'.primary\ virtual\ IP\ for\ ([a-zA-Z0-9\.])/.', 'timestamp': r'^([a-zA-Z]{3}\ +[0-9]{1,2}\ [0-9:])\ .'}`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`return_dictionary = {}`
			`for item in items.keys() :`
			`matches = re.match(items[item],result)`
			`if matches and len(matches.groups()) and matches[1] :`
			`return_dictionary.update({item: matches[1]})`
More improvements 2020-05-22 18:28:13 +00:00			`if len(return_dictionary) > 0 :`
			`return_dictionary.update({'host':host})`
More code cleanup 2020-05-26 18:26:01 +00:00
			`epoch = None`
			`if 'timestamp' in final_dictionary.keys() and 'timestamp' in return_dictionary.keys() :`
			`epoch = int(datetime.datetime.strptime(return_dictionary['timestamp'] + ' ' + str(datetime.datetime.now().year), '%b %d %H:%M:%S %Y').strftime('%s'))`
			`if len(return_dictionary) > 0 :`
			`if epoch :`
			`if epoch > int(datetime.datetime.strptime(final_dictionary['timestamp'] + ' ' + str(datetime.datetime.now().year), '%b %d %H:%M:%S %Y').strftime('%s')) :`
			`final_dictionary = {}`
			`final_dictionary.update(return_dictionary)`
			`else :`
			`final_dictionary = return_dictionary`
Some good progress on making it a module 2020-05-22 02:34:56 +00:00			`else :`
More code cleanup 2020-05-26 18:26:01 +00:00			`self.debug('No results for ' + subject + ' on host ' + host,2)`
Fixed typo on f5 and got basic openvpn working 2019-12-13 23:21:01 +00:00			`except Exception as exception :`
More code cleanup 2020-05-26 18:26:01 +00:00			`raise exception`
			`self._error.append('Unable to get results from ssh: ' + str(exception))`
			`if len(final_dictionary) > 0 :`
			`return final_dictionary`
			`else :`
			`return None`