error handling and other improvements in proxmox.sh

Author: abh1sar

extensions/Proxmox/proxmox.sh

@@ -26,6 +26,95 @@ urlencode() {
     echo "$encoded_data"
 }
 
+check_required_fields() {
+    local missing=()
+    for varname in "$@"; do
+        local value="${!varname}"
+        if [[ -z "$value" ]]; then
+            missing+=("$varname")
+        fi
+    done
+
+    if [[ ${#missing[@]} -gt 0 ]]; then
+        echo "{\"error\":\"Missing required fields: ${missing[*]}\"}"
+        exit 1
+    fi
+}
+
+cloudstack_vm_internal_name_to_proxmox_vmid() {
+    local vm_internal_name="$1"
+    if [[ -z "$vm_internal_name" || ! "$vm_internal_name" =~ ^i-[0-9]+-[0-9]+ ]]; then
+            echo "{\"error\":\"Invalid VM Internal Name: '$vm_internal_name'\"}"
+            exit 1
+        fi
+
+    local account id vmid
+    account=$(echo "$vm_internal_name" | cut -d '-' -f2)
+    id=$(echo "$vm_internal_name" | cut -d '-' -f3)
+    id=$(printf "%04d" "$id")
+    vmid="${account}${id}"
+    echo "$vmid"
+}
+
+validate_vm_name() {
+    local name="$1"
+
+    if [[ ! "$name" =~ ^[a-zA-Z0-9-]+$ ]]; then
+        echo "{\"error\":\"Invalid VM name '$name'. Only alphanumeric characters and dashes (-) are allowed.\"}"
+        exit 1
+    fi
+}
+
+parse_json() {
+    local json_string="$1"
+    echo "$json_string" | jq '.' > /dev/null || { echo '{"error":"Invalid JSON input"}'; exit 1; }
+
+    local -A details
+    while IFS="=" read -r key value; do
+        details[$key]="$value"
+    done < <(echo "$json_string" | jq -r '{
+        "url": (.externaldetails.extension.url // ""),
+        "user": (.externaldetails.extension.user // ""),
+        "token": (.externaldetails.extension.token // ""),
+        "secret": (.externaldetails.extension.secret // ""),
+        "node": (.externaldetails.host.node // ""),
+        "vm_name": (.externaldetails.virtualmachine.vm_name // ""),
+        "template_id": (.externaldetails.virtualmachine.template_id // ""),
+        "template_type": (.externaldetails.virtualmachine.template_type // ""),
+        "iso_path": (.externaldetails.virtualmachine.iso_path // ""),
+        "vm_internal_name": (."cloudstack.vm.details".name // ""),
+        "vmmemory": (."cloudstack.vm.details".minRam // ""),
+        "vmcpus": (."cloudstack.vm.details".cpus // ""),
+        "vlan": (."cloudstack.vm.details".nics[0].broadcastUri // "" | sub("vlan://"; "")),
+        "mac_address": (."cloudstack.vm.details".nics[0].mac // "")
+    } | to_entries | .[] | "\(.key)=\(.value)"')
+
+    for key in "${!details[@]}"; do
+        declare -g "$key=${details[$key]}"
+    done
+
+    check_required_fields vm_internal_name url user token secret node
+
+    if [[ -z "$vm_name" ]]; then
+        vm_name="$vm_internal_name"
+    fi
+    validate_vm_name "$vm_name"
+    vmid=$(cloudstack_vm_internal_name_to_proxmox_vmid "$vm_internal_name")
+}
+
+call_proxmox_api() {
+    local method=$1
+    local path=$2
+    local data=$3
+
+    echo "curl -sk --fail -X $method -H \"Authorization: PVEAPIToken=${user}!${token}=${secret}\" ${data:+-d \"$data\"} https://${url}:8006/api2/json${path}" >&2
+    response=$(curl -sk --fail -X "$method" \
+        -H "Authorization: PVEAPIToken=${user}!${token}=${secret}" \
+        ${data:+-d "$data"} \
+        "https://${url}:8006/api2/json${path}")
+    echo "$response"
+}
+
 wait_for_proxmox_task() {
     local upid="$1"
     local timeout="${2:-$wait_time}"
@@ -39,7 +128,7 @@ wait_for_proxmox_task() {
         now=$(date +%s)
         if (( now - start_time > timeout )); then
             echo '{"error":"Timeout while waiting for async task"}'
-            return 1
+            exit 1
         fi
 
         local status_response
@@ -49,7 +138,7 @@ wait_for_proxmox_task() {
             local msg
             msg=$(echo "$status_response" | jq -r '.message // "Unknown error"')
             echo "{\"error\":\"$msg\"}"
-            return 1
+            exit 1
         fi
 
         local task_status
@@ -58,81 +147,29 @@ wait_for_proxmox_task() {
         if [[ "$task_status" == "stopped" ]]; then
             local exit_status
             exit_status=$(echo "$status_response" | jq -r '.data.exitstatus')
-            echo "{\"exitstatus\":\"$exit_status\"}"
+            if [[ "$exit_status" != "OK" ]]; then
+                echo "{\"error\":\"Task failed with exit status: $exit_status\"}"
+                exit 1
+            fi
             return 0
         fi
 
         sleep "$interval"
     done
 }
 
-cloudstack_vmname_to_proxmox_vmid() {
-    local vmname="$1"
-    account=$(echo "$vmname" | cut -d '-' -f2)
-    id=$(echo "$vmname" | cut -d '-' -f3)
-    id=$(printf "%04d" "$id")
-    vmid="${account}${id}"
-    echo "$vmid"
-}
-
-parse_json() {
-    local json_string="$1"
-    echo "$json_string" | jq '.' > /dev/null || { echo '{"error":"Invalid JSON input"}'; exit 1; }
-
-    local -A details
-    while IFS="=" read -r key value; do
-        details[$key]="$value"
-    done < <(echo "$json_string" | jq -r '{
-        "url": .external.extensionid.url,
-        "user": .external.extensionid.user,
-        "token": .external.extensionid.token,
-        "secret": .external.extensionid.secret,
-        "node": .external.hostid.node,
-        "templateid": .external.virtualmachineid.templateid,
-        "templatetype": .external.virtualmachineid.isiso,
-        "vmname": ."cloudstack.vm.details".name,
-        "vmmemory": ."cloudstack.vm.details".minRam,
-        "vmcpus": ."cloudstack.vm.details".cpus,
-        "vlan": (."cloudstack.vm.details".nics[0].broadcastUri | sub("vlan://"; "")),
-        "mac_address": ."cloudstack.vm.details".nics[0].mac
-    } | to_entries | .[] | "\(.key)=\(.value)"')
-
-    for key in "${!details[@]}"; do
-        declare -g "$key=${details[$key]}"
-    done
-
-    if [[ "$vmname" == "null" || "$url" == "null" || "$user" == "null" || "$token" == "null" || "$secret" == "null" || "$node" == "null" ]]; then
-        echo '{"error":"Missing required fields in JSON input"}'
-        exit 1
-    fi
-
-    vmid=$(cloudstack_vmname_to_proxmox_vmid "$vmname")
-}
-
-call_proxmox_api() {
-    local method=$1
-    local path=$2
-    local data=$3
-
-    curl -sk -X "$method" \
-        -H "Authorization: PVEAPIToken=${user}!${token}=${secret}" \
-        ${data:+-d "$data"} \
-        "https://${url}:8006/api2/json${path}"
-}
-
 execute_and_wait() {
     local method="$1"
     local path="$2"
     local data="$3"
+    local response upid msg
 
-    local response
     response=$(call_proxmox_api "$method" "$path" "$data")
+    upid=$(echo "$response" | jq -r '.data // ""')
 
-    local upid
-    upid=$(echo "$response" | jq -r '.data')
-
-    if [[ -z "$upid" || "$upid" == "null" ]]; then
-        echo '{"error":"Failed to execute API or retrieve UPID"}'
+    if [[ -z "$upid" ]]; then
+        msg=$(echo "$response" | jq -r '.message // "Unknown error"')
+        echo "{\"error\":\"Failed to execute API or retrieve UPID. Message: $msg\"}"
         exit 1
     fi
 
@@ -155,29 +192,32 @@ prepare() {
 create() {
     parse_json "$1" || exit 1
 
-    if [[ "$templatetype" == "ISO" ]]; then
+    check_required_fields vm_name vlan mac_address
+    if [[ "${template_type^^}" == "ISO" ]]; then
+        check_required_fields iso_path vmcpus vmmemory
         local data="vmid=$vmid"
-        data+="&name=$name"
+        data+="&name=$vm_name"
         data+="&ide2=$(urlencode "$iso_path,media=cdrom")"
         data+="&ostype=l26"
         data+="&scsihw=virtio-scsi-single"
-        data+="&scsi0=$(urlencode "local-lvm:32,iothread=on")"
+        data+="&scsi0=$(urlencode "local-lvm:64,iothread=on")"
         data+="&sockets=1"
         data+="&cores=$vmcpus"
         data+="&numa=0"
         data+="&cpu=x86-64-v2-AES"
-        data+="&memory=$vmmemory"
+        data+="&memory=$((vmmemory / 1024 / 1024))"
         execute_and_wait POST "/nodes/${node}/qemu/" "$data"
     else
+        check_required_fields template_id
         local data="newid=$vmid"
-        data+="&name=$name"
-        execute_and_wait POST "/nodes/${node}/qemu/${templateid}/clone" "$data"
+        data+="&name=\"$vm_name\""
+        execute_and_wait POST "/nodes/${node}/qemu/${template_id}/clone" "$data"
     fi
 
     network="net0=$(urlencode "virtio=${mac_address},bridge=vmbr0,tag=${vlan},firewall=1")"
-    call_proxmox_api PUT "/nodes/${node}/qemu/${vmid}/config/" "$network"
+    call_proxmox_api PUT "/nodes/${node}/qemu/${vmid}/config/" "$network" > /dev/null
 
-    start "$1"
+    execute_and_wait POST "/nodes/${node}/qemu/${vmid}/status/start"
 
     echo '{"status": "success", "message": "Instance created"}'
 }