commit c51f1872e3840acc2cfedd1e8d42b0ff151f7b05
author Jian Li <pyguni@gmail.com> Tue Dec 24 15:02:05 2019 +0900
committer Jian Li <pyguni@gmail.com> Tue Dec 24 06:28:24 2019 +0000
tree 8318cbb28a4ebe42aa1eccfbceb540d251f72f95
parent afe47c2eaee57bcde5d6394eee590c3fb17c9dbc

Fix: do not install k8s ns ACL rules if cluster IP has invalid value

Change-Id: I18cc9351f953444d1ec48e0042e1556f0115a8dc

apps/k8s-networking/api/src/main/java/org/onosproject/k8snetworking/api/Constants.java

diff --git a/apps/k8s-networking/api/src/main/java/org/onosproject/k8snetworking/api/Constants.java b/apps/k8s-networking/api/src/main/java/org/onosproject/k8snetworking/api/Constants.java
index 4a69e10..503ab08 100644
--- a/apps/k8s-networking/api/src/main/java/org/onosproject/k8snetworking/api/Constants.java
+++ b/apps/k8s-networking/api/src/main/java/org/onosproject/k8snetworking/api/Constants.java
@@ -53,6 +53,9 @@
     public static final String A_CLASS = "a";
     public static final String B_CLASS = "b";
 
+    public static final String DEFAULT_SERVICE_IP_CIDR = "10.96.0.0/12";
+    public static final String DEFAULT_SERVICE_IP_NONE = "none";
+
     public static final String PORT_NAME_PREFIX_CONTAINER = "veth";
 
     public static final String ANNOTATION_NETWORK_ID = "networkId";

apps/k8s-networking/app/src/main/java/org/onosproject/k8snetworking/impl/K8sNetworkPolicyHandler.java

diff --git a/apps/k8s-networking/app/src/main/java/org/onosproject/k8snetworking/impl/K8sNetworkPolicyHandler.java b/apps/k8s-networking/app/src/main/java/org/onosproject/k8snetworking/impl/K8sNetworkPolicyHandler.java
index b67858a..7125d06 100644
--- a/apps/k8s-networking/app/src/main/java/org/onosproject/k8snetworking/impl/K8sNetworkPolicyHandler.java
+++ b/apps/k8s-networking/app/src/main/java/org/onosproject/k8snetworking/impl/K8sNetworkPolicyHandler.java
@@ -84,6 +84,7 @@
 import static org.onosproject.k8snetworking.api.Constants.DEFAULT_METADATA_MASK;
 import static org.onosproject.k8snetworking.api.Constants.DEFAULT_NAMESPACE_HASH;
 import static org.onosproject.k8snetworking.api.Constants.DEFAULT_SEGMENT_ID;
+import static org.onosproject.k8snetworking.api.Constants.DEFAULT_SERVICE_IP_NONE;
 import static org.onosproject.k8snetworking.api.Constants.GROUPING_TABLE;
 import static org.onosproject.k8snetworking.api.Constants.K8S_NETWORKING_APP_ID;
 import static org.onosproject.k8snetworking.api.Constants.NAMESPACE_TABLE;
@@ -812,6 +813,12 @@
             return;
         }
 
+        // one the creating of new service, the cluster IP will be configured as None
+        // in this case, we will NOT install any namespace related rules
+        if (DEFAULT_SERVICE_IP_NONE.equalsIgnoreCase(clusterIp)) {
+            return;
+        }
+
         setNamespaceRulesBase(clusterIp, namespaceHashByServiceIp(k8sServiceService,
                 k8sNamespaceService, clusterIp), install);
     }