]> git.proxmox.com Git - pve-common.git/blame - src/PVE/JSONSchema.pm
projects / pve-common.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
cpuset: also split write methods
[pve-common.git] / src / PVE / JSONSchema.pm
CommitLineData
e143e9d8
DM		 1package PVE::JSONSchema;
2
e143e9d8 3use strict;
c36f332e 4use warnings;
e143e9d8
DM		 5use Storable; # for dclone
6use Getopt::Long;
24197a9f
DM		 7use Encode::Locale;
8use Encode;
e143e9d8 9use Devel::Cycle -quiet; # todo: remove?
e272bcb7 10use PVE::Tools qw(split_list $IPV6RE $IPV4RE);
e143e9d8
DM		 11use PVE::Exception qw(raise);
12use HTTP::Status qw(:constants);
23b56245 13use Net::IP qw(:PROC);
bf27456b 14use Data::Dumper;
e143e9d8
DM		 15
16use base 'Exporter';
17
18our @EXPORT_OK = qw(
9bbc4e17 19register_standard_option
e143e9d8
DM		 20get_standard_option
21);
22
9bbc4e17 23# Note: This class implements something similar to JSON schema, but it is not 100% complete.
e143e9d8
DM		 24# see: http://tools.ietf.org/html/draft-zyp-json-schema-02
25# see: http://json-schema.org/
26
27# the code is similar to the javascript parser from http://code.google.com/p/jsonschema/
28
29my $standard_options = {};
30sub register_standard_option {
31 my ($name, $schema) = @_;
32
9bbc4e17 33 die "standard option '$name' already registered\n"
e143e9d8
DM		 34 if $standard_options->{$name};
35
36 $standard_options->{$name} = $schema;
37}
38
39sub get_standard_option {
40 my ($name, $base) = @_;
41
42 my $std = $standard_options->{$name};
3432ae0c 43 die "no such standard option '$name'\n" if !$std;
e143e9d8
DM		 44
45 my $res = $base || {};
46
47 foreach my $opt (keys %$std) {
c38ac70f 48 next if defined($res->{$opt});
e143e9d8
DM		 49 $res->{$opt} = $std->{$opt};
50 }
51
52 return $res;
53};
54
55register_standard_option('pve-vmid', {
56 description => "The (unique) ID of the VM.",
57 type => 'integer', format => 'pve-vmid',
58 minimum => 1
59});
60
61register_standard_option('pve-node', {
62 description => "The cluster node name.",
63 type => 'string', format => 'pve-node',
64});
65
66register_standard_option('pve-node-list', {
67 description => "List of cluster node names.",
68 type => 'string', format => 'pve-node-list',
69});
70
71register_standard_option('pve-iface', {
72 description => "Network interface name.",
73 type => 'string', format => 'pve-iface',
74 minLength => 2, maxLength => 20,
75});
76
28a2669d 77register_standard_option('pve-storage-id', {
05e787c5
DM		 78 description => "The storage identifier.",
79 type => 'string', format => 'pve-storage-id',
9bbc4e17 80});
05e787c5 81
28a2669d 82register_standard_option('pve-config-digest', {
dc5eae7d
DM		 83 description => 'Prevent changes if current configuration file has different SHA1 digest. This can be used to prevent concurrent modifications.',
84 type => 'string',
85 optional => 1,
fb3a1b29 86 maxLength => 40, # sha1 hex digest length is 40
dc5eae7d
DM		 87});
88
26bcdf92
WB		 89register_standard_option('skiplock', {
90 description => "Ignore locks - only root is allowed to use this option.",
91 type => 'boolean',
92 optional => 1,
93});
94
28a2669d 95register_standard_option('extra-args', {
5851be88
WB		 96 description => "Extra arguments as array",
97 type => 'array',
98 items => { type => 'string' },
99 optional => 1
100});
101
b21cf575
TL		 102register_standard_option('fingerprint-sha256', {
103 description => "Certificate SHA 256 fingerprint.",
104 type => 'string',
105 pattern => '([A-Fa-f0-9]{2}:){31}[A-Fa-f0-9]{2}',
106});
107
ac15655f
DM		 108register_standard_option('pve-output-format', {
109 type => 'string',
110 description => 'Output format.',
ac6c61bf 111 enum => [ 'text', 'json', 'json-pretty', 'yaml' ],
ac15655f
DM		 112 optional => 1,
113 default => 'text',
114});
115
98d5b8cb
TL		 116register_standard_option('pve-snapshot-name', {
117 description => "The name of the snapshot.",
118 type => 'string', format => 'pve-configid',
119 maxLength => 40,
120});
121
e143e9d8
DM		 122my $format_list = {};
123
124sub register_format {
125 my ($format, $code) = @_;
126
9bbc4e17 127 die "JSON schema format '$format' already registered\n"
e143e9d8
DM		 128 if $format_list->{$format};
129
130 $format_list->{$format} = $code;
131}
132
2421fba1
WB		 133sub get_format {
134 my ($format) = @_;
135 return $format_list->{$format};
136}
137
b5212042
DM		 138my $renderer_hash = {};
139
140sub register_renderer {
141 my ($name, $code) = @_;
142
143 die "renderer '$name' already registered\n"
144 if $renderer_hash->{$name};
145
146 $renderer_hash->{$name} = $code;
147}
148
149sub get_renderer {
150 my ($name) = @_;
151 return $renderer_hash->{$name};
152}
153
e143e9d8 154# register some common type for pve
8ba7c72b
DM		 155
156register_format('string', sub {}); # allow format => 'string-list'
157
c77b4c96
WB		 158register_format('urlencoded', \&pve_verify_urlencoded);
159sub pve_verify_urlencoded {
160 my ($text, $noerr) = @_;
161 if ($text !~ /^[-%a-zA-Z0-9_.!~*'()]*$/) {
162 return undef if $noerr;
163 die "invalid urlencoded string: $text\n";
164 }
165 return $text;
166}
167
e143e9d8
DM		 168register_format('pve-configid', \&pve_verify_configid);
169sub pve_verify_configid {
170 my ($id, $noerr) = @_;
9bbc4e17 171
e143e9d8
DM		 172 if ($id !~ m/^[a-z][a-z0-9_]+$/i) {
173 return undef if $noerr;
9bbc4e17 174 die "invalid configuration ID '$id'\n";
e143e9d8
DM		 175 }
176 return $id;
177}
178
05e787c5
DM		 179PVE::JSONSchema::register_format('pve-storage-id', \&parse_storage_id);
180sub parse_storage_id {
181 my ($storeid, $noerr) = @_;
182
731950fd
WL		 183 return parse_id($storeid, 'storage', $noerr);
184}
185
a8117ff3
WL		 186PVE::JSONSchema::register_format('acme-plugin-id', \&parse_acme_plugin_id);
187sub parse_acme_plugin_id {
188 my ($pluginid, $noerr) = @_;
189
190 return parse_id($pluginid, 'ACME plugin', $noerr);
191}
192
731950fd
WL		 193sub parse_id {
194 my ($id, $type, $noerr) = @_;
195
196 if ($id !~ m/^[a-z][a-z0-9\-\_\.]*[a-z0-9]$/i) {
05e787c5 197 return undef if $noerr;
731950fd 198 die "$type ID '$id' contains illegal characters\n";
05e787c5 199 }
731950fd 200 return $id;
05e787c5
DM		 201}
202
e143e9d8
DM		 203register_format('pve-vmid', \&pve_verify_vmid);
204sub pve_verify_vmid {
205 my ($vmid, $noerr) = @_;
206
50ae94c9 207 if ($vmid !~ m/^[1-9][0-9]{2,8}$/) {
e143e9d8
DM		 208 return undef if $noerr;
209 die "value does not look like a valid VM ID\n";
210 }
211 return $vmid;
212}
213
214register_format('pve-node', \&pve_verify_node_name);
215sub pve_verify_node_name {
216 my ($node, $noerr) = @_;
217
e6db55c0 218 if ($node !~ m/^([a-zA-Z0-9]([a-zA-Z0-9\-]*[a-zA-Z0-9])?)$/) {
e143e9d8
DM		 219 return undef if $noerr;
220 die "value does not look like a valid node name\n";
221 }
222 return $node;
223}
224
14324ea8
CE		 225register_format('mac-addr', \&pve_verify_mac_addr);
226sub pve_verify_mac_addr {
227 my ($mac_addr, $noerr) = @_;
228
4fdf30c4
TL		 229 # don't allow I/G bit to be set, most of the time it breaks things, see:
230 # https://pve.proxmox.com/pipermail/pve-devel/2019-March/035998.html
a750d596 231 if ($mac_addr !~ m/^[a-f0-9][02468ace](?::[a-f0-9]{2}){5}$/i) {
14324ea8 232 return undef if $noerr;
a750d596 233 die "value does not look like a valid unicast MAC address\n";
14324ea8
CE		 234 }
235 return $mac_addr;
a750d596 236
14324ea8 237}
a750d596
SI		 238register_standard_option('mac-addr', {
239 type => 'string',
240 description => 'Unicast MAC address.',
4fdf30c4 241 verbose_description => 'A common MAC address with the I/G (Individual/Group) bit not set.',
a750d596
SI		 242 format_description => "XX:XX:XX:XX:XX:XX",
243 optional => 1,
244 format => 'mac-addr',
245});
14324ea8 246
e143e9d8
DM		 247register_format('ipv4', \&pve_verify_ipv4);
248sub pve_verify_ipv4 {
249 my ($ipv4, $noerr) = @_;
250
ed5880ac
DM		 251 if ($ipv4 !~ m/^(?:$IPV4RE)$/) {
252 return undef if $noerr;
253 die "value does not look like a valid IPv4 address\n";
e143e9d8
DM		 254 }
255 return $ipv4;
256}
a13c6f08 257
ed5880ac 258register_format('ipv6', \&pve_verify_ipv6);
93276209 259sub pve_verify_ipv6 {
ed5880ac
DM		 260 my ($ipv6, $noerr) = @_;
261
262 if ($ipv6 !~ m/^(?:$IPV6RE)$/) {
263 return undef if $noerr;
264 die "value does not look like a valid IPv6 address\n";
265 }
266 return $ipv6;
267}
268
269register_format('ip', \&pve_verify_ip);
270sub pve_verify_ip {
271 my ($ip, $noerr) = @_;
272
273 if ($ip !~ m/^(?:(?:$IPV4RE)|(?:$IPV6RE))$/) {
274 return undef if $noerr;
275 die "value does not look like a valid IP address\n";
276 }
277 return $ip;
278}
279
283ac2ba
DC		 280PVE::JSONSchema::register_format('ldap-simple-attr', \&verify_ldap_simple_attr);
281sub verify_ldap_simple_attr {
282 my ($attr, $noerr) = @_;
283
284 if ($attr =~ m/^[a-zA-Z0-9]+$/) {
285 return $attr;
286 }
287
288 die "value '$attr' does not look like a simple ldap attribute name\n" if !$noerr;
289
290 return undef;
291}
292
a13c6f08 293my $ipv4_mask_hash = {
aad3582e 294 '0.0.0.0' => 0,
a13c6f08
DM		 295 '128.0.0.0' => 1,
296 '192.0.0.0' => 2,
297 '224.0.0.0' => 3,
298 '240.0.0.0' => 4,
299 '248.0.0.0' => 5,
300 '252.0.0.0' => 6,
301 '254.0.0.0' => 7,
302 '255.0.0.0' => 8,
303 '255.128.0.0' => 9,
304 '255.192.0.0' => 10,
305 '255.224.0.0' => 11,
306 '255.240.0.0' => 12,
307 '255.248.0.0' => 13,
308 '255.252.0.0' => 14,
309 '255.254.0.0' => 15,
310 '255.255.0.0' => 16,
311 '255.255.128.0' => 17,
312 '255.255.192.0' => 18,
313 '255.255.224.0' => 19,
314 '255.255.240.0' => 20,
315 '255.255.248.0' => 21,
316 '255.255.252.0' => 22,
317 '255.255.254.0' => 23,
318 '255.255.255.0' => 24,
319 '255.255.255.128' => 25,
320 '255.255.255.192' => 26,
321 '255.255.255.224' => 27,
322 '255.255.255.240' => 28,
323 '255.255.255.248' => 29,
e43faad9
WB		 324 '255.255.255.252' => 30,
325 '255.255.255.254' => 31,
326 '255.255.255.255' => 32,
a13c6f08
DM		 327};
328
aad3582e
DC		 329sub get_netmask_bits {
330 my ($mask) = @_;
331 return $ipv4_mask_hash->{$mask};
332}
333
e143e9d8
DM		 334register_format('ipv4mask', \&pve_verify_ipv4mask);
335sub pve_verify_ipv4mask {
336 my ($mask, $noerr) = @_;
337
a13c6f08 338 if (!defined($ipv4_mask_hash->{$mask})) {
e143e9d8
DM		 339 return undef if $noerr;
340 die "value does not look like a valid IP netmask\n";
341 }
342 return $mask;
343}
344
703c1f88
WB		 345register_format('CIDRv6', \&pve_verify_cidrv6);
346sub pve_verify_cidrv6 {
e272bcb7
DM		 347 my ($cidr, $noerr) = @_;
348
70ea2250 349 if ($cidr =~ m!^(?:$IPV6RE)(?:/(\d+))$! && ($1 > 7) && ($1 <= 128)) {
e272bcb7 350 return $cidr;
703c1f88
WB		 351 }
352
353 return undef if $noerr;
354 die "value does not look like a valid IPv6 CIDR network\n";
355}
356
357register_format('CIDRv4', \&pve_verify_cidrv4);
358sub pve_verify_cidrv4 {
359 my ($cidr, $noerr) = @_;
360
0526cc2d 361 if ($cidr =~ m!^(?:$IPV4RE)(?:/(\d+))$! && ($1 > 7) && ($1 <= 32)) {
e272bcb7
DM		 362 return $cidr;
363 }
364
365 return undef if $noerr;
703c1f88
WB		 366 die "value does not look like a valid IPv4 CIDR network\n";
367}
368
369register_format('CIDR', \&pve_verify_cidr);
370sub pve_verify_cidr {
371 my ($cidr, $noerr) = @_;
372
373 if (!(pve_verify_cidrv4($cidr, 1) ||
374 pve_verify_cidrv6($cidr, 1)))
375 {
376 return undef if $noerr;
377 die "value does not look like a valid CIDR network\n";
378 }
379
380 return $cidr;
381}
382
383register_format('pve-ipv4-config', \&pve_verify_ipv4_config);
384sub pve_verify_ipv4_config {
385 my ($config, $noerr) = @_;
386
387 return $config if $config =~ /^(?:dhcp|manual)$/ ||
388 pve_verify_cidrv4($config, 1);
389 return undef if $noerr;
390 die "value does not look like a valid ipv4 network configuration\n";
391}
392
393register_format('pve-ipv6-config', \&pve_verify_ipv6_config);
394sub pve_verify_ipv6_config {
395 my ($config, $noerr) = @_;
396
397 return $config if $config =~ /^(?:auto|dhcp|manual)$/ ||
398 pve_verify_cidrv6($config, 1);
399 return undef if $noerr;
400 die "value does not look like a valid ipv6 network configuration\n";
e272bcb7
DM		 401}
402
e143e9d8
DM		 403register_format('email', \&pve_verify_email);
404sub pve_verify_email {
405 my ($email, $noerr) = @_;
406
4cd6dc0a 407 if ($email !~ /^[\w\+\-\~]+(\.[\w\+\-\~]+)*@[a-zA-Z0-9\-]+(\.[a-zA-Z0-9\-]+)*$/) {
e143e9d8
DM		 408 return undef if $noerr;
409 die "value does not look like a valid email address\n";
410 }
411 return $email;
412}
413
34ebb226
DM		 414register_format('dns-name', \&pve_verify_dns_name);
415sub pve_verify_dns_name {
416 my ($name, $noerr) = @_;
417
ce33e978 418 my $namere = "([a-zA-Z0-9]([a-zA-Z0-9\-]*[a-zA-Z0-9])?)";
34ebb226
DM		 419
420 if ($name !~ /^(${namere}\.)*${namere}$/) {
421 return undef if $noerr;
422 die "value does not look like a valid DNS name\n";
423 }
424 return $name;
425}
426
e143e9d8
DM		 427# network interface name
428register_format('pve-iface', \&pve_verify_iface);
429sub pve_verify_iface {
430 my ($id, $noerr) = @_;
9bbc4e17 431
e143e9d8
DM		 432 if ($id !~ m/^[a-z][a-z0-9_]{1,20}([:\.]\d+)?$/i) {
433 return undef if $noerr;
9bbc4e17 434 die "invalid network interface name '$id'\n";
e143e9d8
DM		 435 }
436 return $id;
437}
438
d07b7084
WB		 439# general addresses by name or IP
440register_format('address', \&pve_verify_address);
441sub pve_verify_address {
442 my ($addr, $noerr) = @_;
443
444 if (!(pve_verify_ip($addr, 1) ||
445 pve_verify_dns_name($addr, 1)))
446 {
447 return undef if $noerr;
448 die "value does not look like a valid address: $addr\n";
449 }
450 return $addr;
451}
452
b944a22a
WB		 453register_format('disk-size', \&pve_verify_disk_size);
454sub pve_verify_disk_size {
455 my ($size, $noerr) = @_;
456 if (!defined(parse_size($size))) {
457 return undef if $noerr;
458 die "value does not look like a valid disk size: $size\n";
459 }
460 return $size;
461}
462
f0a10afc 463register_standard_option('spice-proxy', {
fb3a1b29 464 description => "SPICE proxy server. This can be used by the client to specify the proxy server. All nodes in a cluster runs 'spiceproxy', so it is up to the client to choose one. By default, we return the node where the VM is currently running. As reasonable setting is to use same node you use to connect to the API (This is window.location.hostname for the JS GUI).",
d07b7084 465 type => 'string', format => 'address',
9bbc4e17 466});
f0a10afc
DM		 467
468register_standard_option('remote-viewer-config', {
469 description => "Returned values can be directly passed to the 'remote-viewer' application.",
470 additionalProperties => 1,
471 properties => {
472 type => { type => 'string' },
473 password => { type => 'string' },
474 proxy => { type => 'string' },
475 host => { type => 'string' },
476 'tls-port' => { type => 'integer' },
477 },
478});
479
c70c3bbc 480register_format('pve-startup-order', \&pve_verify_startup_order);
b0edd8e6
DM		 481sub pve_verify_startup_order {
482 my ($value, $noerr) = @_;
483
484 return $value if pve_parse_startup_order($value);
485
486 return undef if $noerr;
487
488 die "unable to parse startup options\n";
489}
490
2d167ad0
WB		 491my %bwlimit_opt = (
492 optional => 1,
493 type => 'number', minimum => '0',
494 format_description => 'LIMIT',
495);
496
497my $bwlimit_format = {
498 default => {
499 %bwlimit_opt,
34e75688 500 description => 'default bandwidth limit in KiB/s',
2d167ad0
WB		 501 },
502 restore => {
503 %bwlimit_opt,
34e75688 504 description => 'bandwidth limit in KiB/s for restoring guests from backups',
2d167ad0
WB		 505 },
506 migration => {
507 %bwlimit_opt,
34e75688 508 description => 'bandwidth limit in KiB/s for migrating guests (including moving local disks)',
2d167ad0
WB		 509 },
510 clone => {
511 %bwlimit_opt,
34e75688 512 description => 'bandwidth limit in KiB/s for cloning disks',
2d167ad0
WB		 513 },
514 move => {
515 %bwlimit_opt,
34e75688 516 description => 'bandwidth limit in KiB/s for moving disks',
2d167ad0
WB		 517 },
518};
519register_format('bwlimit', $bwlimit_format);
520register_standard_option('bwlimit', {
521 description => "Set bandwidth/io limits various operations.",
522 optional => 1,
523 type => 'string',
524 format => $bwlimit_format,
525});
484b6b39
DC		 526
527# used for pve-tag-list in e.g., guest configs
528register_format('pve-tag', \&pve_verify_tag);
529sub pve_verify_tag {
530 my ($value, $noerr) = @_;
531
532 return $value if $value =~ m/^[a-z0-9_][a-z0-9_\-\+\.]*$/i;
533
534 return undef if $noerr;
535
536 die "invalid characters in tag\n";
537}
2d167ad0 538
b0edd8e6
DM		 539sub pve_parse_startup_order {
540 my ($value) = @_;
541
542 return undef if !$value;
543
544 my $res = {};
545
546 foreach my $p (split(/,/, $value)) {
547 next if $p =~ m/^\s*$/;
548
549 if ($p =~ m/^(order=)?(\d+)$/) {
550 $res->{order} = $2;
551 } elsif ($p =~ m/^up=(\d+)$/) {
552 $res->{up} = $1;
553 } elsif ($p =~ m/^down=(\d+)$/) {
554 $res->{down} = $1;
555 } else {
556 return undef;
557 }
558 }
559
31b5a3a7 560 return $res;
b0edd8e6
DM		 561}
562
563PVE::JSONSchema::register_standard_option('pve-startup-order', {
564 description => "Startup and shutdown behavior. Order is a non-negative number defining the general startup order. Shutdown in done with reverse ordering. Additionally you can set the 'up' or 'down' delay in seconds, which specifies a delay to wait before the next VM is started or stopped.",
565 optional => 1,
566 type => 'string', format => 'pve-startup-order',
567 typetext => '[[order=]\d+] [,up=\d+] [,down=\d+] ',
568});
569
6e234325
WB		 570register_format('pve-tfa-secret', \&pve_verify_tfa_secret);
571sub pve_verify_tfa_secret {
572 my ($key, $noerr) = @_;
573
574 # The old format used 16 base32 chars or 40 hex digits. Since they have a common subset it's
575 # hard to distinguish them without the our previous length constraints, so add a 'v2' of the
576 # format to support arbitrary lengths properly:
577 if ($key =~ /^v2-0x[0-9a-fA-F]{16,128}$/ || # hex
578 $key =~ /^v2-[A-Z2-7=]{16,128}$/ || # base32
579 $key =~ /^(?:[A-Z2-7=]{16}|[A-Fa-f0-9]{40})$/) # and the old pattern copy&pasted
580 {
581 return $key;
582 }
583
584 return undef if $noerr;
585
586 die "unable to decode TFA secret\n";
587}
588
e143e9d8 589sub check_format {
2f9e609a 590 my ($format, $value, $path) = @_;
e143e9d8 591
2f9e609a 592 return parse_property_string($format, $value, $path) if ref($format) eq 'HASH';
e143e9d8
DM		 593 return if $format eq 'regex';
594
23dc9401 595 if ($format =~ m/^(.*)-a?list$/) {
9bbc4e17 596
e143e9d8
DM		 597 my $code = $format_list->{$1};
598
599 die "undefined format '$format'\n" if !$code;
600
601 # Note: we allow empty lists
602 foreach my $v (split_list($value)) {
603 &$code($v);
604 }
605
606 } elsif ($format =~ m/^(.*)-opt$/) {
607
608 my $code = $format_list->{$1};
609
610 die "undefined format '$format'\n" if !$code;
611
612 return if !$value; # allow empty string
613
614 &$code($value);
615
616 } else {
617
618 my $code = $format_list->{$format};
619
620 die "undefined format '$format'\n" if !$code;
621
2f9e609a 622 return parse_property_string($code, $value, $path) if ref($code) eq 'HASH';
e143e9d8
DM		 623 &$code($value);
624 }
9bbc4e17 625}
e143e9d8 626
878fea8e
WB		 627sub parse_size {
628 my ($value) = @_;
629
630 return undef if $value !~ m/^(\d+(\.\d+)?)([KMGT])?$/;
631 my ($size, $unit) = ($1, $3);
632 if ($unit) {
633 if ($unit eq 'K') {
634 $size = $size * 1024;
635 } elsif ($unit eq 'M') {
636 $size = $size * 1024 * 1024;
637 } elsif ($unit eq 'G') {
638 $size = $size * 1024 * 1024 * 1024;
639 } elsif ($unit eq 'T') {
640 $size = $size * 1024 * 1024 * 1024 * 1024;
641 }
642 }
643 return int($size);
644};
645
646sub format_size {
647 my ($size) = @_;
648
649 $size = int($size);
650
651 my $kb = int($size/1024);
652 return $size if $kb*1024 != $size;
653
654 my $mb = int($kb/1024);
655 return "${kb}K" if $mb*1024 != $kb;
656
657 my $gb = int($mb/1024);
658 return "${mb}M" if $gb*1024 != $mb;
659
660 my $tb = int($gb/1024);
661 return "${gb}G" if $tb*1024 != $gb;
662
663 return "${tb}T";
664};
665
1b71e564
WB		 666sub parse_boolean {
667 my ($bool) = @_;
668 return 1 if $bool =~ m/^(1|on|yes|true)$/i;
669 return 0 if $bool =~ m/^(0|off|no|false)$/i;
670 return undef;
671}
672
095b88fd 673sub parse_property_string {
d1e490c1
WB		 674 my ($format, $data, $path, $additional_properties) = @_;
675
676 # In property strings we default to not allowing additional properties
677 $additional_properties = 0 if !defined($additional_properties);
095b88fd 678
7c1617b0
WB		 679 # Support named formats here, too:
680 if (!ref($format)) {
681 if (my $desc = $format_list->{$format}) {
682 $format = $desc;
683 } else {
684 die "unknown format: $format\n";
685 }
686 } elsif (ref($format) ne 'HASH') {
687 die "unexpected format value of type ".ref($format)."\n";
688 }
689
095b88fd
WB		 690 my $default_key;
691
692 my $res = {};
693 foreach my $part (split(/,/, $data)) {
694 next if $part =~ /^\s*$/;
695
696 if ($part =~ /^([^=]+)=(.+)$/) {
697 my ($k, $v) = ($1, $2);
2d468b1a 698 die "duplicate key in comma-separated list property: $k\n" if defined($res->{$k});
095b88fd 699 my $schema = $format->{$k};
303a9b34 700 if (my $alias = $schema->{alias}) {
bf27456b
DM		 701 if (my $key_alias = $schema->{keyAlias}) {
702 die "key alias '$key_alias' is already defined\n" if defined($res->{$key_alias});
703 $res->{$key_alias} = $k;
704 }
303a9b34
WB		 705 $k = $alias;
706 $schema = $format->{$k};
707 }
bf27456b 708
2d468b1a 709 die "invalid key in comma-separated list property: $k\n" if !$schema;
095b88fd 710 if ($schema->{type} && $schema->{type} eq 'boolean') {
1b71e564 711 $v = parse_boolean($v) // $v;
095b88fd
WB		 712 }
713 $res->{$k} = $v;
714 } elsif ($part !~ /=/) {
2d468b1a 715 die "duplicate key in comma-separated list property: $default_key\n" if $default_key;
095b88fd
WB		 716 foreach my $key (keys %$format) {
717 if ($format->{$key}->{default_key}) {
718 $default_key = $key;
719 if (!$res->{$default_key}) {
720 $res->{$default_key} = $part;
721 last;
722 }
2d468b1a 723 die "duplicate key in comma-separated list property: $default_key\n";
095b88fd
WB		 724 }
725 }
f0ba41a1 726 die "value without key, but schema does not define a default key\n" if !$default_key;
095b88fd 727 } else {
2d468b1a 728 die "missing key in comma-separated list property\n";
095b88fd
WB		 729 }
730 }
731
732 my $errors = {};
d1e490c1 733 check_object($path, $format, $res, $additional_properties, $errors);
095b88fd 734 if (scalar(%$errors)) {
2d468b1a 735 raise "format error\n", errors => $errors;
095b88fd
WB		 736 }
737
738 return $res;
739}
740
e143e9d8
DM		 741sub add_error {
742 my ($errors, $path, $msg) = @_;
743
744 $path = '_root' if !$path;
9bbc4e17 745
e143e9d8
DM		 746 if ($errors->{$path}) {
747 $errors->{$path} = join ('\n', $errors->{$path}, $msg);
748 } else {
749 $errors->{$path} = $msg;
750 }
751}
752
753sub is_number {
754 my $value = shift;
755
756 # see 'man perlretut'
9bbc4e17 757 return $value =~ /^[+-]?(\d+\.\d+|\d+\.|\.\d+|\d+)([eE][+-]?\d+)?$/;
e143e9d8
DM		 758}
759
760sub is_integer {
761 my $value = shift;
762
763 return $value =~ m/^[+-]?\d+$/;
764}
765
766sub check_type {
767 my ($path, $type, $value, $errors) = @_;
768
769 return 1 if !$type;
770
771 if (!defined($value)) {
772 return 1 if $type eq 'null';
9bbc4e17 773 die "internal error"
e143e9d8
DM		 774 }
775
776 if (my $tt = ref($type)) {
777 if ($tt eq 'ARRAY') {
778 foreach my $t (@$type) {
779 my $tmperr = {};
780 check_type($path, $t, $value, $tmperr);
9bbc4e17 781 return 1 if !scalar(%$tmperr);
e143e9d8
DM		 782 }
783 my $ttext = join ('|', @$type);
9bbc4e17 784 add_error($errors, $path, "type check ('$ttext') failed");
e143e9d8
DM		 785 return undef;
786 } elsif ($tt eq 'HASH') {
787 my $tmperr = {};
788 check_prop($value, $type, $path, $tmperr);
9bbc4e17
TL		 789 return 1 if !scalar(%$tmperr);
790 add_error($errors, $path, "type check failed");
e143e9d8
DM		 791 return undef;
792 } else {
793 die "internal error - got reference type '$tt'";
794 }
795
796 } else {
797
798 return 1 if $type eq 'any';
799
800 if ($type eq 'null') {
801 if (defined($value)) {
802 add_error($errors, $path, "type check ('$type') failed - value is not null");
803 return undef;
804 }
805 return 1;
806 }
807
808 my $vt = ref($value);
809
810 if ($type eq 'array') {
811 if (!$vt || $vt ne 'ARRAY') {
812 add_error($errors, $path, "type check ('$type') failed");
813 return undef;
814 }
815 return 1;
816 } elsif ($type eq 'object') {
817 if (!$vt || $vt ne 'HASH') {
818 add_error($errors, $path, "type check ('$type') failed");
819 return undef;
820 }
821 return 1;
822 } elsif ($type eq 'coderef') {
823 if (!$vt || $vt ne 'CODE') {
824 add_error($errors, $path, "type check ('$type') failed");
825 return undef;
826 }
827 return 1;
88a490ff
WB		 828 } elsif ($type eq 'string' && $vt eq 'Regexp') {
829 # qr// regexes can be used as strings and make sense for format=regex
830 return 1;
e143e9d8
DM		 831 } else {
832 if ($vt) {
833 add_error($errors, $path, "type check ('$type') failed - got $vt");
834 return undef;
835 } else {
836 if ($type eq 'string') {
837 return 1; # nothing to check ?
838 } elsif ($type eq 'boolean') {
839 #if ($value =~ m/^(1|true|yes|on)$/i) {
840 if ($value eq '1') {
841 return 1;
842 #} elsif ($value =~ m/^(0|false|no|off)$/i) {
843 } elsif ($value eq '0') {
79501b2a 844 return 1; # return success (not value)
e143e9d8
DM		 845 } else {
846 add_error($errors, $path, "type check ('$type') failed - got '$value'");
847 return undef;
848 }
849 } elsif ($type eq 'integer') {
850 if (!is_integer($value)) {
851 add_error($errors, $path, "type check ('$type') failed - got '$value'");
852 return undef;
853 }
854 return 1;
855 } elsif ($type eq 'number') {
856 if (!is_number($value)) {
857 add_error($errors, $path, "type check ('$type') failed - got '$value'");
858 return undef;
859 }
860 return 1;
861 } else {
862 return 1; # no need to verify unknown types
863 }
864 }
865 }
9bbc4e17 866 }
e143e9d8
DM		 867
868 return undef;
869}
870
871sub check_object {
872 my ($path, $schema, $value, $additional_properties, $errors) = @_;
873
874 # print "Check Object " . Dumper($value) . "\nSchema: " . Dumper($schema);
875
876 my $st = ref($schema);
877 if (!$st || $st ne 'HASH') {
878 add_error($errors, $path, "Invalid schema definition.");
879 return;
880 }
881
882 my $vt = ref($value);
883 if (!$vt || $vt ne 'HASH') {
884 add_error($errors, $path, "an object is required");
885 return;
886 }
887
888 foreach my $k (keys %$schema) {
bf27456b 889 check_prop($value->{$k}, $schema->{$k}, $path ? "$path.$k" : $k, $errors);
e143e9d8
DM		 890 }
891
892 foreach my $k (keys %$value) {
893
894 my $newpath = $path ? "$path.$k" : $k;
895
896 if (my $subschema = $schema->{$k}) {
897 if (my $requires = $subschema->{requires}) {
898 if (ref($requires)) {
899 #print "TEST: " . Dumper($value) . "\n", Dumper($requires) ;
900 check_prop($value, $requires, $path, $errors);
901 } elsif (!defined($value->{$requires})) {
9bbc4e17 902 add_error($errors, $path ? "$path.$requires" : $requires,
8b6e737a 903 "missing property - '$newpath' requires this property");
e143e9d8
DM		 904 }
905 }
906
907 next; # value is already checked above
908 }
909
910 if (defined ($additional_properties) && !$additional_properties) {
911 add_error($errors, $newpath, "property is not defined in schema " .
912 "and the schema does not allow additional properties");
913 next;
914 }
915 check_prop($value->{$k}, $additional_properties, $newpath, $errors)
916 if ref($additional_properties);
917 }
918}
919
86425a09
WB		 920sub check_object_warn {
921 my ($path, $schema, $value, $additional_properties) = @_;
922 my $errors = {};
923 check_object($path, $schema, $value, $additional_properties, $errors);
924 if (scalar(%$errors)) {
925 foreach my $k (keys %$errors) {
926 warn "parse error: $k: $errors->{$k}\n";
927 }
928 return 0;
929 }
930 return 1;
931}
932
e143e9d8
DM		 933sub check_prop {
934 my ($value, $schema, $path, $errors) = @_;
935
936 die "internal error - no schema" if !$schema;
937 die "internal error" if !$errors;
938
939 #print "check_prop $path\n" if $value;
940
941 my $st = ref($schema);
942 if (!$st || $st ne 'HASH') {
943 add_error($errors, $path, "Invalid schema definition.");
944 return;
945 }
946
947 # if it extends another schema, it must pass that schema as well
948 if($schema->{extends}) {
949 check_prop($value, $schema->{extends}, $path, $errors);
950 }
951
952 if (!defined ($value)) {
953 return if $schema->{type} && $schema->{type} eq 'null';
445e8267 954 if (!$schema->{optional} && !$schema->{alias} && !$schema->{group}) {
e143e9d8
DM		 955 add_error($errors, $path, "property is missing and it is not optional");
956 }
957 return;
958 }
959
960 return if !check_type($path, $schema->{type}, $value, $errors);
961
962 if ($schema->{disallow}) {
963 my $tmperr = {};
964 if (check_type($path, $schema->{disallow}, $value, $tmperr)) {
965 add_error($errors, $path, "disallowed value was matched");
966 return;
967 }
968 }
969
970 if (my $vt = ref($value)) {
971
972 if ($vt eq 'ARRAY') {
973 if ($schema->{items}) {
974 my $it = ref($schema->{items});
975 if ($it && $it eq 'ARRAY') {
976 #die "implement me $path: $vt " . Dumper($schema) ."\n". Dumper($value);
977 die "not implemented";
978 } else {
979 my $ind = 0;
980 foreach my $el (@$value) {
981 check_prop($el, $schema->{items}, "${path}[$ind]", $errors);
982 $ind++;
983 }
984 }
985 }
9bbc4e17 986 return;
e143e9d8
DM		 987 } elsif ($schema->{properties} || $schema->{additionalProperties}) {
988 check_object($path, defined($schema->{properties}) ? $schema->{properties} : {},
989 $value, $schema->{additionalProperties}, $errors);
990 return;
991 }
992
993 } else {
994
995 if (my $format = $schema->{format}) {
2f9e609a 996 eval { check_format($format, $value, $path); };
e143e9d8
DM		 997 if ($@) {
998 add_error($errors, $path, "invalid format - $@");
999 return;
1000 }
1001 }
1002
1003 if (my $pattern = $schema->{pattern}) {
1004 if ($value !~ m/^$pattern$/) {
1005 add_error($errors, $path, "value does not match the regex pattern");
1006 return;
1007 }
1008 }
1009
1010 if (defined (my $max = $schema->{maxLength})) {
1011 if (length($value) > $max) {
1012 add_error($errors, $path, "value may only be $max characters long");
1013 return;
1014 }
1015 }
1016
1017 if (defined (my $min = $schema->{minLength})) {
1018 if (length($value) < $min) {
1019 add_error($errors, $path, "value must be at least $min characters long");
1020 return;
1021 }
1022 }
9bbc4e17 1023
e143e9d8
DM		 1024 if (is_number($value)) {
1025 if (defined (my $max = $schema->{maximum})) {
9bbc4e17 1026 if ($value > $max) {
e143e9d8
DM		 1027 add_error($errors, $path, "value must have a maximum value of $max");
1028 return;
1029 }
1030 }
1031
1032 if (defined (my $min = $schema->{minimum})) {
9bbc4e17 1033 if ($value < $min) {
e143e9d8
DM		 1034 add_error($errors, $path, "value must have a minimum value of $min");
1035 return;
1036 }
1037 }
1038 }
1039
1040 if (my $ea = $schema->{enum}) {
1041
1042 my $found;
1043 foreach my $ev (@$ea) {
1044 if ($ev eq $value) {
1045 $found = 1;
1046 last;
1047 }
1048 }
1049 if (!$found) {
1050 add_error($errors, $path, "value '$value' does not have a value in the enumeration '" .
1051 join(", ", @$ea) . "'");
1052 }
1053 }
1054 }
1055}
1056
1057sub validate {
1058 my ($instance, $schema, $errmsg) = @_;
1059
1060 my $errors = {};
1061 $errmsg = "Parameter verification failed.\n" if !$errmsg;
1062
1063 # todo: cycle detection is only needed for debugging, I guess
1064 # we can disable that in the final release
1065 # todo: is there a better/faster way to detect cycles?
1066 my $cycles = 0;
1067 find_cycle($instance, sub { $cycles = 1 });
1068 if ($cycles) {
1069 add_error($errors, undef, "data structure contains recursive cycles");
1070 } elsif ($schema) {
1071 check_prop($instance, $schema, '', $errors);
1072 }
9bbc4e17 1073
e143e9d8
DM		 1074 if (scalar(%$errors)) {
1075 raise $errmsg, code => HTTP_BAD_REQUEST, errors => $errors;
1076 }
1077
1078 return 1;
1079}
1080
1081my $schema_valid_types = ["string", "object", "coderef", "array", "boolean", "number", "integer", "null", "any"];
1082my $default_schema_noref = {
1083 description => "This is the JSON Schema for JSON Schemas.",
1084 type => [ "object" ],
1085 additionalProperties => 0,
1086 properties => {
1087 type => {
1088 type => ["string", "array"],
1089 description => "This is a type definition value. This can be a simple type, or a union type",
1090 optional => 1,
1091 default => "any",
1092 items => {
1093 type => "string",
1094 enum => $schema_valid_types,
1095 },
1096 enum => $schema_valid_types,
1097 },
1098 optional => {
1099 type => "boolean",
1100 description => "This indicates that the instance property in the instance object is not required.",
1101 optional => 1,
1102 default => 0
1103 },
1104 properties => {
1105 type => "object",
1106 description => "This is a definition for the properties of an object value",
1107 optional => 1,
1108 default => {},
1109 },
1110 items => {
1111 type => "object",
1112 description => "When the value is an array, this indicates the schema to use to validate each item in an array",
1113 optional => 1,
1114 default => {},
1115 },
1116 additionalProperties => {
1117 type => [ "boolean", "object"],
1118 description => "This provides a default property definition for all properties that are not explicitly defined in an object type definition.",
1119 optional => 1,
1120 default => {},
1121 },
1122 minimum => {
1123 type => "number",
1124 optional => 1,
1125 description => "This indicates the minimum value for the instance property when the type of the instance value is a number.",
1126 },
1127 maximum => {
1128 type => "number",
1129 optional => 1,
1130 description => "This indicates the maximum value for the instance property when the type of the instance value is a number.",
1131 },
1132 minLength => {
1133 type => "integer",
1134 description => "When the instance value is a string, this indicates minimum length of the string",
1135 optional => 1,
1136 minimum => 0,
1137 default => 0,
9bbc4e17 1138 },
e143e9d8
DM		 1139 maxLength => {
1140 type => "integer",
1141 description => "When the instance value is a string, this indicates maximum length of the string.",
1142 optional => 1,
1143 },
1144 typetext => {
1145 type => "string",
1146 optional => 1,
1147 description => "A text representation of the type (used to generate documentation).",
1148 },
1149 pattern => {
1150 type => "string",
1151 format => "regex",
166e27c7 1152 description => "When the instance value is a string, this provides a regular expression that a instance string value should match in order to be valid.",
e143e9d8
DM		 1153 optional => 1,
1154 default => ".*",
166e27c7 1155 },
e143e9d8
DM		 1156 enum => {
1157 type => "array",
1158 optional => 1,
1159 description => "This provides an enumeration of possible values that are valid for the instance property.",
1160 },
1161 description => {
1162 type => "string",
1163 optional => 1,
1164 description => "This provides a description of the purpose the instance property. The value can be a string or it can be an object with properties corresponding to various different instance languages (with an optional default property indicating the default description).",
1165 },
32f8e0c7
DM		 1166 verbose_description => {
1167 type => "string",
1168 optional => 1,
1169 description => "This provides a more verbose description.",
1170 },
d5d10f85
WB		 1171 format_description => {
1172 type => "string",
1173 optional => 1,
1174 description => "This provides a shorter (usually just one word) description for a property used to generate descriptions for comma separated list property strings.",
1175 },
166e27c7
WB		 1176 title => {
1177 type => "string",
e143e9d8 1178 optional => 1,
166e27c7
WB		 1179 description => "This provides the title of the property",
1180 },
03c1e2a0
DM		 1181 renderer => {
1182 type => "string",
1183 optional => 1,
1184 description => "This is used to provide rendering hints to format cli command output.",
1185 },
166e27c7
WB		 1186 requires => {
1187 type => [ "string", "object" ],
e143e9d8 1188 optional => 1,
166e27c7
WB		 1189 description => "indicates a required property or a schema that must be validated if this property is present",
1190 },
1191 format => {
2f9e609a 1192 type => [ "string", "object" ],
e143e9d8 1193 optional => 1,
166e27c7
WB		 1194 description => "This indicates what format the data is among some predefined formats which may include:\n\ndate - a string following the ISO format \naddress \nschema - a schema definition object \nperson \npage \nhtml - a string representing HTML",
1195 },
095b88fd
WB		 1196 default_key => {
1197 type => "boolean",
1198 optional => 1,
1199 description => "Whether this is the default key in a comma separated list property string.",
1200 },
303a9b34
WB		 1201 alias => {
1202 type => 'string',
1203 optional => 1,
1204 description => "When a key represents the same property as another it can be an alias to it, causing the parsed datastructure to use the other key to store the current value under.",
1205 },
bf27456b 1206 keyAlias => {
445e8267
WB		 1207 type => 'string',
1208 optional => 1,
bf27456b
DM		 1209 description => "Allows to store the current 'key' as value of another property. Only valid if used together with 'alias'.",
1210 requires => 'alias',
445e8267 1211 },
e143e9d8
DM		 1212 default => {
1213 type => "any",
1214 optional => 1,
1215 description => "This indicates the default for the instance property."
1216 },
166e27c7 1217 completion => {
7829989f
DM		 1218 type => 'coderef',
1219 description => "Bash completion function. This function should return a list of possible values.",
1220 optional => 1,
166e27c7
WB		 1221 },
1222 disallow => {
1223 type => "object",
e143e9d8 1224 optional => 1,
166e27c7 1225 description => "This attribute may take the same values as the \"type\" attribute, however if the instance matches the type or if this value is an array and the instance matches any type or schema in the array, then this instance is not valid.",
e143e9d8 1226 },
166e27c7
WB		 1227 extends => {
1228 type => "object",
e143e9d8 1229 optional => 1,
166e27c7 1230 description => "This indicates the schema extends the given schema. All instances of this schema must be valid to by the extended schema also.",
e143e9d8 1231 default => {},
166e27c7
WB		 1232 },
1233 # this is from hyper schema
1234 links => {
1235 type => "array",
1236 description => "This defines the link relations of the instance objects",
1237 optional => 1,
e143e9d8 1238 items => {
166e27c7
WB		 1239 type => "object",
1240 properties => {
1241 href => {
1242 type => "string",
1243 description => "This defines the target URL for the relation and can be parameterized using {propertyName} notation. It should be resolved as a URI-reference relative to the URI that was used to retrieve the instance document",
1244 },
1245 rel => {
1246 type => "string",
1247 description => "This is the name of the link relation",
1248 optional => 1,
1249 default => "full",
1250 },
e143e9d8 1251 method => {
166e27c7
WB		 1252 type => "string",
1253 description => "For submission links, this defines the method that should be used to access the target resource",
1254 optional => 1,
1255 default => "GET",
e143e9d8
DM		 1256 },
1257 },
1258 },
1259 },
f8d4eff9
SI		 1260 print_width => {
1261 type => "integer",
1262 description => "For CLI context, this defines the maximal width to print before truncating",
1263 optional => 1,
1264 },
9bbc4e17 1265 }
e143e9d8
DM		 1266};
1267
1268my $default_schema = Storable::dclone($default_schema_noref);
1269
1270$default_schema->{properties}->{properties}->{additionalProperties} = $default_schema;
1271$default_schema->{properties}->{additionalProperties}->{properties} = $default_schema->{properties};
1272
1273$default_schema->{properties}->{items}->{properties} = $default_schema->{properties};
1274$default_schema->{properties}->{items}->{additionalProperties} = 0;
1275
1276$default_schema->{properties}->{disallow}->{properties} = $default_schema->{properties};
1277$default_schema->{properties}->{disallow}->{additionalProperties} = 0;
1278
1279$default_schema->{properties}->{requires}->{properties} = $default_schema->{properties};
1280$default_schema->{properties}->{requires}->{additionalProperties} = 0;
1281
1282$default_schema->{properties}->{extends}->{properties} = $default_schema->{properties};
1283$default_schema->{properties}->{extends}->{additionalProperties} = 0;
1284
1285my $method_schema = {
1286 type => "object",
1287 additionalProperties => 0,
1288 properties => {
1289 description => {
1290 description => "This a description of the method",
1291 optional => 1,
1292 },
1293 name => {
1294 type => 'string',
1295 description => "This indicates the name of the function to call.",
1296 optional => 1,
1297 requires => {
1298 additionalProperties => 1,
1299 properties => {
1300 name => {},
1301 description => {},
1302 code => {},
1303 method => {},
1304 parameters => {},
1305 path => {},
1306 parameters => {},
1307 returns => {},
9bbc4e17 1308 }
e143e9d8
DM		 1309 },
1310 },
1311 method => {
1312 type => 'string',
1313 description => "The HTTP method name.",
1314 enum => [ 'GET', 'POST', 'PUT', 'DELETE' ],
1315 optional => 1,
1316 },
1317 protected => {
1318 type => 'boolean',
9bbc4e17 1319 description => "Method needs special privileges - only pvedaemon can execute it",
e143e9d8
DM		 1320 optional => 1,
1321 },
4c72ade0
FG		 1322 allowtoken => {
1323 type => 'boolean',
1324 description => "Method is available for clients authenticated using an API token.",
1325 optional => 1,
1326 default => 1,
1327 },
62a8f27b
DM		 1328 download => {
1329 type => 'boolean',
1330 description => "Method downloads the file content (filename is the return value of the method).",
1331 optional => 1,
1332 },
e143e9d8
DM		 1333 proxyto => {
1334 type => 'string',
1335 description => "A parameter name. If specified, all calls to this method are proxied to the host contained in that parameter.",
1336 optional => 1,
1337 },
031efdd0
DM		 1338 proxyto_callback => {
1339 type => 'coderef',
fb3a1b29 1340 description => "A function which is called to resolve the proxyto attribute. The default implementation returns the value of the 'proxyto' parameter.",
031efdd0
DM		 1341 optional => 1,
1342 },
e143e9d8
DM		 1343 permissions => {
1344 type => 'object',
1345 description => "Required access permissions. By default only 'root' is allowed to access this method.",
1346 optional => 1,
1347 additionalProperties => 0,
1348 properties => {
b18d1722
DM		 1349 description => {
1350 description => "Describe access permissions.",
1351 optional => 1,
1352 },
e143e9d8 1353 user => {
9bbc4e17
TL		 1354 description => "A simply way to allow access for 'all' authenticated users. Value 'world' is used to allow access without credentials.",
1355 type => 'string',
b18d1722 1356 enum => ['all', 'world'],
e143e9d8
DM		 1357 optional => 1,
1358 },
b18d1722
DM		 1359 check => {
1360 description => "Array of permission checks (prefix notation).",
9bbc4e17
TL		 1361 type => 'array',
1362 optional => 1
b18d1722 1363 },
e143e9d8
DM		 1364 },
1365 },
1366 match_name => {
1367 description => "Used internally",
1368 optional => 1,
1369 },
1370 match_re => {
1371 description => "Used internally",
1372 optional => 1,
1373 },
1374 path => {
1375 type => 'string',
1376 description => "path for URL matching (uri template)",
1377 },
1378 fragmentDelimiter => {
1379 type => 'string',
fb3a1b29 1380 description => "A way to override the default fragment delimiter '/'. This only works on a whole sub-class. You can set this to the empty string to match the whole rest of the URI.",
e143e9d8
DM		 1381 optional => 1,
1382 },
1383 parameters => {
1384 type => 'object',
1385 description => "JSON Schema for parameters.",
1386 optional => 1,
1387 },
1388 returns => {
1389 type => 'object',
1390 description => "JSON Schema for return value.",
1391 optional => 1,
1392 },
1393 code => {
1394 type => 'coderef',
fb3a1b29 1395 description => "method implementation (code reference)",
e143e9d8
DM		 1396 optional => 1,
1397 },
1398 subclass => {
1399 type => 'string',
1400 description => "Delegate call to this class (perl class string).",
1401 optional => 1,
1402 requires => {
1403 additionalProperties => 0,
1404 properties => {
1405 subclass => {},
1406 path => {},
1407 match_name => {},
1408 match_re => {},
1409 fragmentDelimiter => { optional => 1 }
9bbc4e17 1410 }
e143e9d8 1411 },
9bbc4e17 1412 },
e143e9d8
DM		 1413 },
1414
1415};
1416
1417sub validate_schema {
9bbc4e17 1418 my ($schema) = @_;
e143e9d8
DM		 1419
1420 my $errmsg = "internal error - unable to verify schema\n";
1421 validate($schema, $default_schema, $errmsg);
1422}
1423
1424sub validate_method_info {
1425 my $info = shift;
1426
1427 my $errmsg = "internal error - unable to verify method info\n";
1428 validate($info, $method_schema, $errmsg);
9bbc4e17 1429
e143e9d8
DM		 1430 validate_schema($info->{parameters}) if $info->{parameters};
1431 validate_schema($info->{returns}) if $info->{returns};
1432}
1433
1434# run a self test on load
9bbc4e17 1435# make sure we can verify the default schema
e143e9d8
DM		 1436validate_schema($default_schema_noref);
1437validate_schema($method_schema);
1438
1439# and now some utility methods (used by pve api)
1440sub method_get_child_link {
1441 my ($info) = @_;
1442
1443 return undef if !$info;
1444
1445 my $schema = $info->{returns};
1446 return undef if !$schema || !$schema->{type} || $schema->{type} ne 'array';
1447
1448 my $links = $schema->{links};
1449 return undef if !$links;
1450
1451 my $found;
1452 foreach my $lnk (@$links) {
1453 if ($lnk->{href} && $lnk->{rel} && ($lnk->{rel} eq 'child')) {
1454 $found = $lnk;
1455 last;
1456 }
1457 }
1458
1459 return $found;
1460}
1461
9bbc4e17 1462# a way to parse command line parameters, using a
e143e9d8
DM		 1463# schema to configure Getopt::Long
1464sub get_options {
4842b651 1465 my ($schema, $args, $arg_param, $fixed_param, $param_mapping_hash) = @_;
e143e9d8
DM		 1466
1467 if (!$schema || !$schema->{properties}) {
1468 raise("too many arguments\n", code => HTTP_BAD_REQUEST)
1469 if scalar(@$args) != 0;
1470 return {};
1471 }
1472
0ce82909
DM		 1473 my $list_param;
1474 if ($arg_param && !ref($arg_param)) {
1475 my $pd = $schema->{properties}->{$arg_param};
1476 die "expected list format $pd->{format}"
1477 if !($pd && $pd->{format} && $pd->{format} =~ m/-list/);
1478 $list_param = $arg_param;
1479 }
1480
c7171ff2 1481 my @interactive = ();
e143e9d8
DM		 1482 my @getopt = ();
1483 foreach my $prop (keys %{$schema->{properties}}) {
1484 my $pd = $schema->{properties}->{$prop};
aab47b58 1485 next if $list_param && $prop eq $list_param;
0ce82909 1486 next if defined($fixed_param->{$prop});
e143e9d8 1487
c7171ff2
WB		 1488 my $mapping = $param_mapping_hash->{$prop};
1489 if ($mapping && $mapping->{interactive}) {
1490 # interactive parameters such as passwords: make the argument
1491 # optional and call the mapping function afterwards.
1492 push @getopt, "$prop:s";
1493 push @interactive, [$prop, $mapping->{func}];
e143e9d8
DM		 1494 } elsif ($pd->{type} eq 'boolean') {
1495 push @getopt, "$prop:s";
1496 } else {
23dc9401 1497 if ($pd->{format} && $pd->{format} =~ m/-a?list/) {
8ba7c72b
DM		 1498 push @getopt, "$prop=s@";
1499 } else {
1500 push @getopt, "$prop=s";
1501 }
e143e9d8
DM		 1502 }
1503 }
1504
1068aeb3
WB		 1505 Getopt::Long::Configure('prefix_pattern=(--|-)');
1506
e143e9d8
DM		 1507 my $opts = {};
1508 raise("unable to parse option\n", code => HTTP_BAD_REQUEST)
1509 if !Getopt::Long::GetOptionsFromArray($args, $opts, @getopt);
1d21344c 1510
5851be88 1511 if (@$args) {
0ce82909
DM		 1512 if ($list_param) {
1513 $opts->{$list_param} = $args;
1514 $args = [];
1515 } elsif (ref($arg_param)) {
5851be88
WB		 1516 foreach my $arg_name (@$arg_param) {
1517 if ($opts->{'extra-args'}) {
1518 raise("internal error: extra-args must be the last argument\n", code => HTTP_BAD_REQUEST);
1519 }
1520 if ($arg_name eq 'extra-args') {
1521 $opts->{'extra-args'} = $args;
1522 $args = [];
1523 next;
1524 }
1525 raise("not enough arguments\n", code => HTTP_BAD_REQUEST) if !@$args;
1526 $opts->{$arg_name} = shift @$args;
0ce82909 1527 }
5851be88 1528 raise("too many arguments\n", code => HTTP_BAD_REQUEST) if @$args;
0ce82909
DM		 1529 } else {
1530 raise("too many arguments\n", code => HTTP_BAD_REQUEST)
1531 if scalar(@$args) != 0;
1532 }
ff2bf45f
DM		 1533 } else {
1534 if (ref($arg_param)) {
1535 foreach my $arg_name (@$arg_param) {
1536 if ($arg_name eq 'extra-args') {
1537 $opts->{'extra-args'} = [];
1538 } else {
1539 raise("not enough arguments\n", code => HTTP_BAD_REQUEST);
1540 }
1541 }
1542 }
1d21344c
DM		 1543 }
1544
c7171ff2
WB		 1545 foreach my $entry (@interactive) {
1546 my ($opt, $func) = @$entry;
1547 my $pd = $schema->{properties}->{$opt};
1548 my $value = $opts->{$opt};
1549 if (defined($value) || !$pd->{optional}) {
1550 $opts->{$opt} = $func->($value);
1551 }
1552 }
1553
c9902568 1554 # decode after Getopt as we are not sure how well it handles unicode
24197a9f 1555 foreach my $p (keys %$opts) {
c9902568
TL		 1556 if (!ref($opts->{$p})) {
1557 $opts->{$p} = decode('locale', $opts->{$p});
1558 } elsif (ref($opts->{$p}) eq 'ARRAY') {
1559 my $tmp = [];
1560 foreach my $v (@{$opts->{$p}}) {
1561 push @$tmp, decode('locale', $v);
1562 }
1563 $opts->{$p} = $tmp;
1564 } elsif (ref($opts->{$p}) eq 'SCALAR') {
1565 $opts->{$p} = decode('locale', $$opts->{$p});
1566 } else {
1567 raise("decoding options failed, unknown reference\n", code => HTTP_BAD_REQUEST);
1568 }
24197a9f 1569 }
815b2aba 1570
e143e9d8
DM		 1571 foreach my $p (keys %$opts) {
1572 if (my $pd = $schema->{properties}->{$p}) {
1573 if ($pd->{type} eq 'boolean') {
1574 if ($opts->{$p} eq '') {
1575 $opts->{$p} = 1;
1b71e564
WB		 1576 } elsif (defined(my $bool = parse_boolean($opts->{$p}))) {
1577 $opts->{$p} = $bool;
e143e9d8
DM		 1578 } else {
1579 raise("unable to parse boolean option\n", code => HTTP_BAD_REQUEST);
1580 }
23dc9401 1581 } elsif ($pd->{format}) {
8ba7c72b 1582
23dc9401 1583 if ($pd->{format} =~ m/-list/) {
8ba7c72b 1584 # allow --vmid 100 --vmid 101 and --vmid 100,101
23dc9401 1585 # allow --dow mon --dow fri and --dow mon,fri
43479146 1586 $opts->{$p} = join(",", @{$opts->{$p}}) if ref($opts->{$p}) eq 'ARRAY';
23dc9401 1587 } elsif ($pd->{format} =~ m/-alist/) {
8ba7c72b
DM		 1588 # we encode array as \0 separated strings
1589 # Note: CGI.pm also use this encoding
1590 if (scalar(@{$opts->{$p}}) != 1) {
1591 $opts->{$p} = join("\0", @{$opts->{$p}});
1592 } else {
1593 # st that split_list knows it is \0 terminated
1594 my $v = $opts->{$p}->[0];
1595 $opts->{$p} = "$v\0";
1596 }
1597 }
e143e9d8 1598 }
9bbc4e17 1599 }
e143e9d8
DM		 1600 }
1601
0ce82909
DM		 1602 foreach my $p (keys %$fixed_param) {
1603 $opts->{$p} = $fixed_param->{$p};
e143e9d8
DM		 1604 }
1605
1606 return $opts;
1607}
1608
1609# A way to parse configuration data by giving a json schema
1610sub parse_config {
1611 my ($schema, $filename, $raw) = @_;
1612
1613 # do fast check (avoid validate_schema($schema))
9bbc4e17 1614 die "got strange schema" if !$schema->{type} ||
e143e9d8
DM		 1615 !$schema->{properties} || $schema->{type} ne 'object';
1616
1617 my $cfg = {};
1618
3c4d612a 1619 while ($raw =~ /^\s*(.+?)\s*$/gm) {
e143e9d8 1620 my $line = $1;
e143e9d8 1621
3c4d612a
WB		 1622 next if $line =~ /^#/;
1623
1624 if ($line =~ m/^(\S+?):\s*(.*)$/) {
e143e9d8
DM		 1625 my $key = $1;
1626 my $value = $2;
9bbc4e17 1627 if ($schema->{properties}->{$key} &&
e143e9d8
DM		 1628 $schema->{properties}->{$key}->{type} eq 'boolean') {
1629
1b71e564 1630 $value = parse_boolean($value) // $value;
e143e9d8
DM		 1631 }
1632 $cfg->{$key} = $value;
1633 } else {
1634 warn "ignore config line: $line\n"
1635 }
1636 }
1637
1638 my $errors = {};
1639 check_prop($cfg, $schema, '', $errors);
1640
1641 foreach my $k (keys %$errors) {
1642 warn "parse error in '$filename' - '$k': $errors->{$k}\n";
1643 delete $cfg->{$k};
9bbc4e17 1644 }
e143e9d8
DM		 1645
1646 return $cfg;
1647}
1648
1649# generate simple key/value file
1650sub dump_config {
1651 my ($schema, $filename, $cfg) = @_;
1652
1653 # do fast check (avoid validate_schema($schema))
9bbc4e17 1654 die "got strange schema" if !$schema->{type} ||
e143e9d8
DM		 1655 !$schema->{properties} || $schema->{type} ne 'object';
1656
1657 validate($cfg, $schema, "validation error in '$filename'\n");
1658
1659 my $data = '';
1660
821d408d 1661 foreach my $k (sort keys %$cfg) {
e143e9d8
DM		 1662 $data .= "$k: $cfg->{$k}\n";
1663 }
1664
1665 return $data;
1666}
1667
bf27456b
DM		 1668# helpers used to generate our manual pages
1669
1670my $find_schema_default_key = sub {
1671 my ($format) = @_;
1672
1673 my $default_key;
1674 my $keyAliasProps = {};
1675
1676 foreach my $key (keys %$format) {
1677 my $phash = $format->{$key};
1678 if ($phash->{default_key}) {
1679 die "multiple default keys in schema ($default_key, $key)\n"
1680 if defined($default_key);
1681 die "default key '$key' is an alias - this is not allowed\n"
1682 if defined($phash->{alias});
1683 die "default key '$key' with keyAlias attribute is not allowed\n"
1684 if $phash->{keyAlias};
bf27456b
DM		 1685 $default_key = $key;
1686 }
1687 my $key_alias = $phash->{keyAlias};
c88c582d
DM		 1688 die "found keyAlias without 'alias definition for '$key'\n"
1689 if $key_alias && !$phash->{alias};
1690
bf27456b
DM		 1691 if ($phash->{alias} && $key_alias) {
1692 die "inconsistent keyAlias '$key_alias' definition"
1693 if defined($keyAliasProps->{$key_alias}) &&
1694 $keyAliasProps->{$key_alias} ne $phash->{alias};
1695 $keyAliasProps->{$key_alias} = $phash->{alias};
1696 }
1697 }
1698
1699 return wantarray ? ($default_key, $keyAliasProps) : $default_key;
1700};
1701
1702sub generate_typetext {
abc1afd8 1703 my ($format, $list_enums) = @_;
bf27456b 1704
d8c2b947 1705 my ($default_key, $keyAliasProps) = &$find_schema_default_key($format);
bf27456b
DM		 1706
1707 my $res = '';
1708 my $add_sep = 0;
1709
1710 my $add_option_string = sub {
1711 my ($text, $optional) = @_;
1712
1713 if ($add_sep) {
1714 $text = ",$text";
1715 $res .= ' ';
1716 }
1717 $text = "[$text]" if $optional;
1718 $res .= $text;
1719 $add_sep = 1;
1720 };
1721
1722 my $format_key_value = sub {
1723 my ($key, $phash) = @_;
1724
1725 die "internal error" if defined($phash->{alias});
1726
1727 my $keytext = $key;
1728
1729 my $typetext = '';
1730
1731 if (my $desc = $phash->{format_description}) {
1732 $typetext .= "<$desc>";
1733 } elsif (my $text = $phash->{typetext}) {
1734 $typetext .= $text;
1735 } elsif (my $enum = $phash->{enum}) {
abc1afd8
DM		 1736 if ($list_enums || (scalar(@$enum) <= 3)) {
1737 $typetext .= '<' . join('|', @$enum) . '>';
1738 } else {
1739 $typetext .= '<enum>';
1740 }
bf27456b
DM		 1741 } elsif ($phash->{type} eq 'boolean') {
1742 $typetext .= '<1|0>';
1743 } elsif ($phash->{type} eq 'integer') {
1744 $typetext .= '<integer>';
1745 } elsif ($phash->{type} eq 'number') {
1746 $typetext .= '<number>';
1747 } else {
1748 die "internal error: neither format_description nor typetext found for option '$key'";
1749 }
1750
1751 if (defined($default_key) && ($default_key eq $key)) {
1752 &$add_option_string("[$keytext=]$typetext", $phash->{optional});
1753 } else {
1754 &$add_option_string("$keytext=$typetext", $phash->{optional});
1755 }
1756 };
1757
d8c2b947 1758 my $done = {};
bf27456b 1759
d8c2b947
DM		 1760 my $cond_add_key = sub {
1761 my ($key) = @_;
1762
1763 return if $done->{$key}; # avoid duplicates
1764
1765 $done->{$key} = 1;
bf27456b
DM		 1766
1767 my $phash = $format->{$key};
1768
d8c2b947
DM		 1769 return if !$phash; # should not happen
1770
1771 return if $phash->{alias};
bf27456b
DM		 1772
1773 &$format_key_value($key, $phash);
1774
d8c2b947
DM		 1775 };
1776
1777 &$cond_add_key($default_key) if defined($default_key);
1778
1779 # add required keys first
1780 foreach my $key (sort keys %$format) {
1781 my $phash = $format->{$key};
1782 &$cond_add_key($key) if $phash && !$phash->{optional};
1783 }
1784
1785 # add the rest
1786 foreach my $key (sort keys %$format) {
1787 &$cond_add_key($key);
1788 }
1789
1790 foreach my $keyAlias (sort keys %$keyAliasProps) {
1791 &$add_option_string("<$keyAlias>=<$keyAliasProps->{$keyAlias }>", 1);
bf27456b
DM		 1792 }
1793
1794 return $res;
1795}
1796
1797sub print_property_string {
1798 my ($data, $format, $skip, $path) = @_;
1799
1800 if (ref($format) ne 'HASH') {
1801 my $schema = get_format($format);
1802 die "not a valid format: $format\n" if !$schema;
1803 $format = $schema;
1804 }
1805
1806 my $errors = {};
1807 check_object($path, $format, $data, undef, $errors);
1808 if (scalar(%$errors)) {
1809 raise "format error", errors => $errors;
1810 }
1811
1812 my ($default_key, $keyAliasProps) = &$find_schema_default_key($format);
1813
1814 my $res = '';
1815 my $add_sep = 0;
1816
1817 my $add_option_string = sub {
1818 my ($text) = @_;
1819
1820 $res .= ',' if $add_sep;
1821 $res .= $text;
1822 $add_sep = 1;
1823 };
1824
1825 my $format_value = sub {
1826 my ($key, $value, $format) = @_;
1827
1828 if (defined($format) && ($format eq 'disk-size')) {
1829 return format_size($value);
1830 } else {
1831 die "illegal value with commas for $key\n" if $value =~ /,/;
1832 return $value;
1833 }
1834 };
1835
2289890b 1836 my $done = { map { $_ => 1 } @$skip };
bf27456b
DM		 1837
1838 my $cond_add_key = sub {
971353e8 1839 my ($key, $isdefault) = @_;
bf27456b
DM		 1840
1841 return if $done->{$key}; # avoid duplicates
1842
1843 $done->{$key} = 1;
1844
1845 my $value = $data->{$key};
1846
1847 return if !defined($value);
1848
1849 my $phash = $format->{$key};
1850
1851 # try to combine values if we have key aliases
1852 if (my $combine = $keyAliasProps->{$key}) {
1853 if (defined(my $combine_value = $data->{$combine})) {
1854 my $combine_format = $format->{$combine}->{format};
1855 my $value_str = &$format_value($key, $value, $phash->{format});
1856 my $combine_str = &$format_value($combine, $combine_value, $combine_format);
1857 &$add_option_string("${value_str}=${combine_str}");
1858 $done->{$combine} = 1;
1859 return;
1860 }
1861 }
1862
1863 if ($phash && $phash->{alias}) {
1864 $phash = $format->{$phash->{alias}};
1865 }
1866
1867 die "invalid key '$key'\n" if !$phash;
1868 die "internal error" if defined($phash->{alias});
1869
1870 my $value_str = &$format_value($key, $value, $phash->{format});
971353e8
WB		 1871 if ($isdefault) {
1872 &$add_option_string($value_str);
1873 } else {
1874 &$add_option_string("$key=${value_str}");
1875 }
bf27456b
DM		 1876 };
1877
1878 # add default key first
971353e8 1879 &$cond_add_key($default_key, 1) if defined($default_key);
bf27456b 1880
d8c2b947
DM		 1881 # add required keys first
1882 foreach my $key (sort keys %$data) {
1883 my $phash = $format->{$key};
1884 &$cond_add_key($key) if $phash && !$phash->{optional};
1885 }
1886
1887 # add the rest
bf27456b
DM		 1888 foreach my $key (sort keys %$data) {
1889 &$cond_add_key($key);
1890 }
1891
1892 return $res;
1893}
1894
1895sub schema_get_type_text {
abc1afd8 1896 my ($phash, $style) = @_;
bf27456b 1897
32f8e0c7
DM		 1898 my $type = $phash->{type} || 'string';
1899
bf27456b
DM		 1900 if ($phash->{typetext}) {
1901 return $phash->{typetext};
1902 } elsif ($phash->{format_description}) {
1903 return "<$phash->{format_description}>";
1904 } elsif ($phash->{enum}) {
25d9bda9 1905 return "<" . join(' | ', sort @{$phash->{enum}}) . ">";
bf27456b
DM		 1906 } elsif ($phash->{pattern}) {
1907 return $phash->{pattern};
32f8e0c7 1908 } elsif ($type eq 'integer' || $type eq 'number') {
05185ea2 1909 # NOTE: always access values as number (avoid converion to string)
bf27456b 1910 if (defined($phash->{minimum}) && defined($phash->{maximum})) {
25d9bda9 1911 return "<$type> (" . ($phash->{minimum} + 0) . " - " .
05185ea2 1912 ($phash->{maximum} + 0) . ")";
bf27456b 1913 } elsif (defined($phash->{minimum})) {
25d9bda9 1914 return "<$type> (" . ($phash->{minimum} + 0) . " - N)";
bf27456b 1915 } elsif (defined($phash->{maximum})) {
25d9bda9 1916 return "<$type> (-N - " . ($phash->{maximum} + 0) . ")";
bf27456b 1917 }
32f8e0c7 1918 } elsif ($type eq 'string') {
bf27456b
DM		 1919 if (my $format = $phash->{format}) {
1920 $format = get_format($format) if ref($format) ne 'HASH';
1921 if (ref($format) eq 'HASH') {
abc1afd8
DM		 1922 my $list_enums = 0;
1923 $list_enums = 1 if $style && $style eq 'config-sub';
1924 return generate_typetext($format, $list_enums);
bf27456b
DM		 1925 }
1926 }
1927 }
1928
25d9bda9 1929 return "<$type>";
bf27456b
DM		 1930}
1931
e143e9d8 19321;
Common code