Gitiles
Code Review Sign In
gerrit.onosproject.org / onos / 46b7400f7baf469c1e06c4f40d858cf36738cdad / . / apps / openstacknetworking / app / src / main / java / org / onosproject / openstacknetworking / impl / OpenstackRoutingFloatingIpHandler.java
blob: 2c20f6a7af0d1abb110e394006f81e90744f81f9 [file] [log] [blame]
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]1/*
Brian O'Connora09fe5b2017-08-03 21:12:30 -0700[diff] [blame]2 * Copyright 2016-present Open Networking Foundation
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16package org.onosproject.openstacknetworking.impl;
17
18import com.google.common.base.Strings;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]19import com.google.common.collect.ImmutableSet;
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]20import com.google.common.collect.Maps;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]21import com.google.common.collect.Sets;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]22import org.apache.felix.scr.annotations.Activate;
23import org.apache.felix.scr.annotations.Component;
24import org.apache.felix.scr.annotations.Deactivate;
25import org.apache.felix.scr.annotations.Reference;
26import org.apache.felix.scr.annotations.ReferenceCardinality;
27import org.onlab.packet.Ethernet;
28import org.onlab.packet.IpAddress;
29import org.onlab.packet.MacAddress;
daniel parkee8700b2017-05-11 15:50:03 +0900[diff] [blame]30import org.onlab.packet.VlanId;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]31import org.onosproject.cluster.ClusterService;
32import org.onosproject.cluster.LeadershipService;
33import org.onosproject.cluster.NodeId;
34import org.onosproject.core.ApplicationId;
35import org.onosproject.core.CoreService;
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]36import org.onosproject.net.DeviceId;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]37import org.onosproject.net.PortNumber;
38import org.onosproject.net.device.DeviceService;
39import org.onosproject.net.flow.DefaultTrafficSelector;
40import org.onosproject.net.flow.DefaultTrafficTreatment;
41import org.onosproject.net.flow.TrafficSelector;
42import org.onosproject.net.flow.TrafficTreatment;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]43import org.onosproject.openstacknetworking.api.Constants;
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]44import org.onosproject.openstacknetworking.api.ExternalPeerRouter;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]45import org.onosproject.openstacknetworking.api.InstancePort;
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]46import org.onosproject.openstacknetworking.api.InstancePortAdminService;
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]47import org.onosproject.openstacknetworking.api.InstancePortEvent;
48import org.onosproject.openstacknetworking.api.InstancePortListener;
sanghodc375372017-06-08 10:41:30 +0900[diff] [blame]49import org.onosproject.openstacknetworking.api.OpenstackFlowRuleService;
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]50import org.onosproject.openstacknetworking.api.OpenstackNetworkEvent;
51import org.onosproject.openstacknetworking.api.OpenstackNetworkListener;
sanghodc375372017-06-08 10:41:30 +0900[diff] [blame]52import org.onosproject.openstacknetworking.api.OpenstackNetworkService;
Jian Lif3a28b02018-06-11 21:29:13 +0900[diff] [blame]53import org.onosproject.openstacknetworking.api.OpenstackRouterAdminService;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]54import org.onosproject.openstacknetworking.api.OpenstackRouterEvent;
55import org.onosproject.openstacknetworking.api.OpenstackRouterListener;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]56import org.onosproject.openstacknode.api.OpenstackNode;
57import org.onosproject.openstacknode.api.OpenstackNodeEvent;
58import org.onosproject.openstacknode.api.OpenstackNodeListener;
59import org.onosproject.openstacknode.api.OpenstackNodeService;
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]60import org.openstack4j.model.network.ExternalGateway;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]61import org.openstack4j.model.network.NetFloatingIP;
62import org.openstack4j.model.network.Network;
daniel parkee8700b2017-05-11 15:50:03 +0900[diff] [blame]63import org.openstack4j.model.network.NetworkType;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]64import org.openstack4j.model.network.Port;
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]65import org.openstack4j.model.network.Router;
66import org.openstack4j.model.network.RouterInterface;
67import org.openstack4j.model.network.Subnet;
Jian Lif3a28b02018-06-11 21:29:13 +0900[diff] [blame]68import org.openstack4j.openstack.networking.domain.NeutronFloatingIP;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]69import org.slf4j.Logger;
70import org.slf4j.LoggerFactory;
71
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]72import java.util.Map;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]73import java.util.Objects;
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]74import java.util.Set;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]75import java.util.concurrent.ExecutorService;
76
77import static java.util.concurrent.Executors.newSingleThreadExecutor;
78import static org.onlab.util.Tools.groupedThreads;
sanghodc375372017-06-08 10:41:30 +0900[diff] [blame]79import static org.onosproject.openstacknetworking.api.Constants.GW_COMMON_TABLE;
80import static org.onosproject.openstacknetworking.api.Constants.OPENSTACK_NETWORKING_APP_ID;
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]81import static org.onosproject.openstacknetworking.api.Constants.PRIORITY_EXTERNAL_FLOATING_ROUTING_RULE;
sanghodc375372017-06-08 10:41:30 +0900[diff] [blame]82import static org.onosproject.openstacknetworking.api.Constants.PRIORITY_FLOATING_EXTERNAL;
83import static org.onosproject.openstacknetworking.api.Constants.PRIORITY_FLOATING_INTERNAL;
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]84import static org.onosproject.openstacknetworking.api.Constants.ROUTING_TABLE;
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]85import static org.onosproject.openstacknetworking.api.InstancePort.State.PENDING_REMOVAL;
86import static org.onosproject.openstacknetworking.api.InstancePort.State.REMOVED;
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]87import static org.onosproject.openstacknetworking.api.InstancePortEvent.Type.OPENSTACK_INSTANCE_MIGRATION_ENDED;
88import static org.onosproject.openstacknetworking.api.InstancePortEvent.Type.OPENSTACK_INSTANCE_MIGRATION_STARTED;
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]89import static org.onosproject.openstacknetworking.util.OpenstackNetworkingUtil.associatedFloatingIp;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]90import static org.onosproject.openstacknetworking.util.OpenstackNetworkingUtil.getGwByComputeDevId;
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]91import static org.onosproject.openstacknetworking.util.OpenstackNetworkingUtil.isAssociatedWithVM;
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]92import static org.onosproject.openstacknetworking.util.OpenstackNetworkingUtil.swapStaleLocation;
Jian Li26949762018-03-30 15:46:37 +0900[diff] [blame]93import static org.onosproject.openstacknetworking.util.RulePopulatorUtil.buildExtension;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]94import static org.onosproject.openstacknode.api.OpenstackNode.NodeType.GATEWAY;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]95
96/**
97 * Handles OpenStack floating IP events.
98 */
99@Component(immediate = true)
100public class OpenstackRoutingFloatingIpHandler {
101
102 private final Logger log = LoggerFactory.getLogger(getClass());
103
104 private static final String ERR_FLOW = "Failed set flows for floating IP %s: ";
Ray Milkeyc6c9b172018-02-26 09:36:31 -0800[diff] [blame]105 private static final String ERR_UNSUPPORTED_NET_TYPE = "Unsupported network type %s";
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]106
107 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
108 protected CoreService coreService;
109
110 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
111 protected DeviceService deviceService;
112
113 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]114 protected LeadershipService leadershipService;
115
116 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
117 protected ClusterService clusterService;
118
119 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
120 protected OpenstackNodeService osNodeService;
121
122 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]123 protected InstancePortAdminService instancePortService;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]124
125 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Jian Lif3a28b02018-06-11 21:29:13 +0900[diff] [blame]126 protected OpenstackRouterAdminService osRouterAdminService;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]127
128 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
129 protected OpenstackNetworkService osNetworkService;
130
sanghodc375372017-06-08 10:41:30 +0900[diff] [blame]131 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
132 protected OpenstackFlowRuleService osFlowRuleService;
133
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]134 private final ExecutorService eventExecutor = newSingleThreadExecutor(
135 groupedThreads(this.getClass().getSimpleName(), "event-handler", log));
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]136 private final OpenstackRouterListener floatingIpListener = new InternalFloatingIpListener();
137 private final InstancePortListener instancePortListener = new InternalInstancePortListener();
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]138 private final OpenstackNodeListener osNodeListener = new InternalNodeListener();
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]139 private final OpenstackNetworkListener osNetworkListener = new InternalOpenstackNetworkListener();
140 private final InstancePortListener instPortListener = new InternalInstancePortListener();
141
142 private Map<String, Port> terminatedOsPorts = Maps.newConcurrentMap();
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]143
144 private ApplicationId appId;
145 private NodeId localNodeId;
146
147 @Activate
148 protected void activate() {
149 appId = coreService.registerApplication(OPENSTACK_NETWORKING_APP_ID);
150 localNodeId = clusterService.getLocalNode().id();
151 leadershipService.runForLeadership(appId.name());
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]152 osRouterAdminService.addListener(floatingIpListener);
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]153 osNodeService.addListener(osNodeListener);
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]154 instancePortService.addListener(instancePortListener);
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]155 osNodeService.addListener(osNodeListener);
156 osNetworkService.addListener(osNetworkListener);
157 instancePortService.addListener(instPortListener);
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]158
159 log.info("Started");
160 }
161
162 @Deactivate
163 protected void deactivate() {
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]164 instancePortService.removeListener(instancePortListener);
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]165 instancePortService.removeListener(instPortListener);
166 osNetworkService.removeListener(osNetworkListener);
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]167 osNodeService.removeListener(osNodeListener);
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]168 osRouterAdminService.removeListener(floatingIpListener);
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]169 leadershipService.withdraw(appId.name());
170 eventExecutor.shutdown();
171
172 log.info("Stopped");
173 }
174
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]175 private void setFloatingIpRules(NetFloatingIP floatingIp, Port osPort,
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]176 OpenstackNode gateway, boolean install) {
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]177 Network osNet = osNetworkService.network(osPort.getNetworkId());
178 if (osNet == null) {
Jian Li71670d12018-03-02 21:31:07 +0900[diff] [blame]179 final String errorFormat = ERR_FLOW + "no network(%s) exists";
180 final String error = String.format(errorFormat,
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]181 floatingIp.getFloatingIpAddress(),
182 osPort.getNetworkId());
183 throw new IllegalStateException(error);
184 }
185
186 MacAddress srcMac = MacAddress.valueOf(osPort.getMacAddress());
daniel parkc2a2ed62018-04-10 15:17:42 +0900[diff] [blame]187 log.trace("Mac address of openstack port: {}", srcMac);
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]188 InstancePort instPort = instancePortService.instancePort(srcMac);
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]189
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]190 if (instPort == null) {
Jian Li71670d12018-03-02 21:31:07 +0900[diff] [blame]191 final String errorFormat = ERR_FLOW + "no host(MAC:%s) found";
192 final String error = String.format(errorFormat,
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]193 floatingIp.getFloatingIpAddress(), srcMac);
194 throw new IllegalStateException(error);
195 }
196
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]197 if (instPort.state() == PENDING_REMOVAL) {
198 instancePortService.updateInstancePort(instPort.updateState(REMOVED));
199 }
200
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]201 ExternalPeerRouter externalPeerRouter = externalPeerRouter(osNet);
202 if (externalPeerRouter == null) {
daniel parkc2a2ed62018-04-10 15:17:42 +0900[diff] [blame]203 final String errorFormat = ERR_FLOW + "no external peer router found";
204 throw new IllegalStateException(errorFormat);
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]205 }
206
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]207 updateComputeNodeRules(instPort, osNet, gateway, install);
208 updateGatewayNodeRules(floatingIp, instPort, osNet, externalPeerRouter, gateway, install);
209
210 // FIXME: downstream internal rules are still duplicated in all gateway nodes
211 // need to make the internal rules de-duplicated sooner or later
212 setDownstreamInternalRules(floatingIp, osNet, instPort, install);
213
214 // TODO: need to refactor setUpstreamRules if possible
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]215 setUpstreamRules(floatingIp, osNet, instPort, externalPeerRouter, install);
daniel parkc2a2ed62018-04-10 15:17:42 +0900[diff] [blame]216 log.trace("Succeeded to set flow rules for floating ip {}:{} and install: {}",
217 floatingIp.getFloatingIpAddress(),
218 floatingIp.getFixedIpAddress(),
219 install);
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]220 }
221
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]222 private synchronized void updateGatewayNodeRules(NetFloatingIP fip,
223 InstancePort instPort,
224 Network osNet,
225 ExternalPeerRouter router,
226 OpenstackNode gateway,
227 boolean install) {
228
229 Set<OpenstackNode> completedGws = osNodeService.completeNodes(GATEWAY);
230 Set<OpenstackNode> finalGws = Sets.newConcurrentHashSet();
231 finalGws.addAll(ImmutableSet.copyOf(completedGws));
232
Jian Lia171a432018-06-11 11:52:11 +0900[diff] [blame]233
234 if (gateway == null) {
235 // these are floating IP related cases...
236 setDownstreamExternalRulesHelper(fip, osNet, instPort, router,
237 ImmutableSet.copyOf(finalGws), install);
238
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]239 } else {
Jian Lia171a432018-06-11 11:52:11 +0900[diff] [blame]240 // these are openstack node related cases...
241 if (install) {
242 if (completedGws.contains(gateway)) {
243 if (completedGws.size() > 1) {
244 finalGws.remove(gateway);
245 if (fip.getPortId() != null) {
246 setDownstreamExternalRulesHelper(fip, osNet, instPort, router,
247 ImmutableSet.copyOf(finalGws), false);
248 finalGws.add(gateway);
249 }
250 }
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]251 if (fip.getPortId() != null) {
252 setDownstreamExternalRulesHelper(fip, osNet, instPort, router,
253 ImmutableSet.copyOf(finalGws), true);
254 }
Jian Lia171a432018-06-11 11:52:11 +0900[diff] [blame]255 } else {
256 log.warn("Detected node should be included in completed gateway set");
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]257 }
258 } else {
Jian Lia171a432018-06-11 11:52:11 +0900[diff] [blame]259 if (!completedGws.contains(gateway)) {
260 if (completedGws.size() >= 1) {
261 if (fip.getPortId() != null) {
262 setDownstreamExternalRulesHelper(fip, osNet, instPort, router,
263 ImmutableSet.copyOf(finalGws), true);
264 }
265 }
266 } else {
267 log.warn("Detected node should NOT be included in completed gateway set");
268 }
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]269 }
270 }
271 }
272
273 private synchronized void updateComputeNodeRules(InstancePort instPort,
274 Network osNet,
275 OpenstackNode gateway,
276 boolean install) {
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]277
278 Set<OpenstackNode> completedGws = osNodeService.completeNodes(GATEWAY);
279 Set<OpenstackNode> finalGws = Sets.newConcurrentHashSet();
280 finalGws.addAll(ImmutableSet.copyOf(completedGws));
281
282 if (gateway == null) {
283 // these are floating IP related cases...
284 setComputeNodeToGatewayHelper(instPort, osNet,
285 ImmutableSet.copyOf(finalGws), install);
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]286
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]287 } else {
288 // these are openstack node related cases...
289 if (install) {
290 if (completedGws.contains(gateway)) {
291 if (completedGws.size() > 1) {
292 finalGws.remove(gateway);
293 setComputeNodeToGatewayHelper(instPort, osNet,
294 ImmutableSet.copyOf(finalGws), false);
295 finalGws.add(gateway);
296 }
297
298 setComputeNodeToGatewayHelper(instPort, osNet,
299 ImmutableSet.copyOf(finalGws), true);
300 } else {
301 log.warn("Detected node should be included in completed gateway set");
302 }
303 } else {
304 if (!completedGws.contains(gateway)) {
305 finalGws.add(gateway);
306 setComputeNodeToGatewayHelper(instPort, osNet,
307 ImmutableSet.copyOf(finalGws), false);
308 finalGws.remove(gateway);
309 if (completedGws.size() >= 1) {
310 setComputeNodeToGatewayHelper(instPort, osNet,
311 ImmutableSet.copyOf(finalGws), true);
312 }
313 } else {
314 log.warn("Detected node should NOT be included in completed gateway set");
315 }
316 }
317 }
318 }
319
320 // a helper method
321 private void setComputeNodeToGatewayHelper(InstancePort instPort,
322 Network osNet,
323 Set<OpenstackNode> gateways,
324 boolean install) {
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]325 TrafficTreatment treatment;
326
327 TrafficSelector.Builder sBuilder = DefaultTrafficSelector.builder()
328 .matchEthType(Ethernet.TYPE_IPV4)
329 .matchIPSrc(instPort.ipAddress().toIpPrefix())
330 .matchEthDst(Constants.DEFAULT_GATEWAY_MAC);
331
332 switch (osNet.getNetworkType()) {
333 case VXLAN:
334 sBuilder.matchTunnelId(Long.parseLong(osNet.getProviderSegID()));
335 break;
336 case VLAN:
337 sBuilder.matchVlanId(VlanId.vlanId(osNet.getProviderSegID()));
338 break;
339 default:
340 final String error = String.format(
Ray Milkeyc6c9b172018-02-26 09:36:31 -0800[diff] [blame]341 ERR_UNSUPPORTED_NET_TYPE,
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]342 osNet.getNetworkType().toString());
343 throw new IllegalStateException(error);
344 }
345
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]346 OpenstackNode selectedGatewayNode = getGwByComputeDevId(gateways, instPort.deviceId());
347
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]348 if (selectedGatewayNode == null) {
daniel parkc2a2ed62018-04-10 15:17:42 +0900[diff] [blame]349 final String errorFormat = ERR_FLOW + "no gateway node selected";
350 throw new IllegalStateException(errorFormat);
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]351 }
352 treatment = DefaultTrafficTreatment.builder()
353 .extension(buildExtension(
354 deviceService,
355 instPort.deviceId(),
356 selectedGatewayNode.dataIp().getIp4Address()),
357 instPort.deviceId())
358 .setOutput(osNodeService.node(instPort.deviceId()).tunnelPortNum())
359 .build();
360
361 osFlowRuleService.setRule(
362 appId,
363 instPort.deviceId(),
364 sBuilder.build(),
365 treatment,
366 PRIORITY_EXTERNAL_FLOATING_ROUTING_RULE,
367 ROUTING_TABLE,
368 install);
daniel parkc2a2ed62018-04-10 15:17:42 +0900[diff] [blame]369 log.trace("Succeeded to set flow rules from compute node to gateway on compute node");
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]370 }
371
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]372 private void setDownstreamInternalRules(NetFloatingIP floatingIp,
373 Network osNet,
374 InstancePort instPort,
375 boolean install) {
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]376 OpenstackNode cNode = osNodeService.node(instPort.deviceId());
377 if (cNode == null) {
378 final String error = String.format("Cannot find openstack node for device %s",
379 instPort.deviceId());
380 throw new IllegalStateException(error);
381 }
382 if (osNet.getNetworkType() == NetworkType.VXLAN && cNode.dataIp() == null) {
Jian Li71670d12018-03-02 21:31:07 +0900[diff] [blame]383 final String errorFormat = ERR_FLOW + "VXLAN mode is not ready for %s";
384 final String error = String.format(errorFormat, floatingIp, cNode.hostname());
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]385 throw new IllegalStateException(error);
386 }
387 if (osNet.getNetworkType() == NetworkType.VLAN && cNode.vlanIntf() == null) {
Jian Li71670d12018-03-02 21:31:07 +0900[diff] [blame]388 final String errorFormat = ERR_FLOW + "VLAN mode is not ready for %s";
389 final String error = String.format(errorFormat, floatingIp, cNode.hostname());
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]390 throw new IllegalStateException(error);
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]391 }
392
393 IpAddress floating = IpAddress.valueOf(floatingIp.getFloatingIpAddress());
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]394
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]395 // TODO: following code snippet will be refactored sooner or later
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]396 osNodeService.completeNodes(GATEWAY).forEach(gNode -> {
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]397 // access from one VM to the others via floating IP
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]398 TrafficSelector internalSelector = DefaultTrafficSelector.builder()
399 .matchEthType(Ethernet.TYPE_IPV4)
400 .matchIPDst(floating.toIpPrefix())
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]401 .matchInPort(gNode.tunnelPortNum())
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]402 .build();
403
daniel parkee8700b2017-05-11 15:50:03 +0900[diff] [blame]404 TrafficTreatment.Builder internalBuilder = DefaultTrafficTreatment.builder()
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]405 .setEthSrc(Constants.DEFAULT_GATEWAY_MAC)
406 .setEthDst(instPort.macAddress())
daniel parkee8700b2017-05-11 15:50:03 +0900[diff] [blame]407 .setIpDst(instPort.ipAddress().getIp4Address());
408
409 switch (osNet.getNetworkType()) {
410 case VXLAN:
411 internalBuilder.setTunnelId(Long.valueOf(osNet.getProviderSegID()))
412 .extension(buildExtension(
413 deviceService,
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]414 gNode.intgBridge(),
415 cNode.dataIp().getIp4Address()),
416 gNode.intgBridge())
daniel parkee8700b2017-05-11 15:50:03 +0900[diff] [blame]417 .setOutput(PortNumber.IN_PORT);
418 break;
419 case VLAN:
420 internalBuilder.pushVlan()
421 .setVlanId(VlanId.vlanId(osNet.getProviderSegID()))
422 .setOutput(PortNumber.IN_PORT);
423 break;
424 default:
Ray Milkeyc6c9b172018-02-26 09:36:31 -0800[diff] [blame]425 final String error = String.format(ERR_UNSUPPORTED_NET_TYPE,
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]426 osNet.getNetworkType());
daniel parkee8700b2017-05-11 15:50:03 +0900[diff] [blame]427 throw new IllegalStateException(error);
428 }
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]429
sanghodc375372017-06-08 10:41:30 +0900[diff] [blame]430 osFlowRuleService.setRule(
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]431 appId,
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]432 gNode.intgBridge(),
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]433 internalSelector,
daniel parkee8700b2017-05-11 15:50:03 +0900[diff] [blame]434 internalBuilder.build(),
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]435 PRIORITY_FLOATING_INTERNAL,
sanghodc375372017-06-08 10:41:30 +0900[diff] [blame]436 GW_COMMON_TABLE,
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]437 install);
438 });
daniel parkc2a2ed62018-04-10 15:17:42 +0900[diff] [blame]439 log.trace("Succeeded to set flow rules for downstream on gateway nodes");
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]440 }
441
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]442 private void setDownstreamExternalRulesHelper(NetFloatingIP floatingIp,
443 Network osNet,
444 InstancePort instPort,
445 ExternalPeerRouter externalPeerRouter,
446 Set<OpenstackNode> gateways, boolean install) {
447 OpenstackNode cNode = osNodeService.node(instPort.deviceId());
448 if (cNode == null) {
449 final String error = String.format("Cannot find openstack node for device %s",
450 instPort.deviceId());
451 throw new IllegalStateException(error);
452 }
453 if (osNet.getNetworkType() == NetworkType.VXLAN && cNode.dataIp() == null) {
454 final String errorFormat = ERR_FLOW + "VXLAN mode is not ready for %s";
455 final String error = String.format(errorFormat, floatingIp, cNode.hostname());
456 throw new IllegalStateException(error);
457 }
458 if (osNet.getNetworkType() == NetworkType.VLAN && cNode.vlanIntf() == null) {
459 final String errorFormat = ERR_FLOW + "VLAN mode is not ready for %s";
460 final String error = String.format(errorFormat, floatingIp, cNode.hostname());
461 throw new IllegalStateException(error);
462 }
463
464 IpAddress floating = IpAddress.valueOf(floatingIp.getFloatingIpAddress());
465
466 OpenstackNode selectedGatewayNode = getGwByComputeDevId(gateways, instPort.deviceId());
467
468 if (selectedGatewayNode == null) {
469 final String errorFormat = ERR_FLOW + "no gateway node selected";
470 throw new IllegalStateException(errorFormat);
471 }
472
473 TrafficSelector.Builder externalSelectorBuilder = DefaultTrafficSelector.builder()
474 .matchEthType(Ethernet.TYPE_IPV4)
475 .matchIPDst(floating.toIpPrefix());
476
477 TrafficTreatment.Builder externalTreatmentBuilder = DefaultTrafficTreatment.builder()
478 .setEthSrc(Constants.DEFAULT_GATEWAY_MAC)
479 .setEthDst(instPort.macAddress())
480 .setIpDst(instPort.ipAddress().getIp4Address());
481
482 if (!externalPeerRouter.externalPeerRouterVlanId().equals(VlanId.NONE)) {
483 externalSelectorBuilder.matchVlanId(externalPeerRouter.externalPeerRouterVlanId()).build();
484 externalTreatmentBuilder.popVlan();
485 }
486
487 switch (osNet.getNetworkType()) {
488 case VXLAN:
489 externalTreatmentBuilder.setTunnelId(Long.valueOf(osNet.getProviderSegID()))
490 .extension(buildExtension(
491 deviceService,
492 selectedGatewayNode.intgBridge(),
493 cNode.dataIp().getIp4Address()),
494 selectedGatewayNode.intgBridge())
495 .setOutput(selectedGatewayNode.tunnelPortNum());
496 break;
497 case VLAN:
498 externalTreatmentBuilder.pushVlan()
499 .setVlanId(VlanId.vlanId(osNet.getProviderSegID()))
500 .setOutput(selectedGatewayNode.vlanPortNum());
501 break;
502 default:
503 final String error = String.format(ERR_UNSUPPORTED_NET_TYPE,
504 osNet.getNetworkType());
505 throw new IllegalStateException(error);
506 }
507
508 osFlowRuleService.setRule(
509 appId,
510 selectedGatewayNode.intgBridge(),
511 externalSelectorBuilder.build(),
512 externalTreatmentBuilder.build(),
513 PRIORITY_FLOATING_EXTERNAL,
514 GW_COMMON_TABLE,
515 install);
516 }
517
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]518 private void setUpstreamRules(NetFloatingIP floatingIp, Network osNet,
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]519 InstancePort instPort, ExternalPeerRouter externalPeerRouter,
520 boolean install) {
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]521 IpAddress floating = IpAddress.valueOf(floatingIp.getFloatingIpAddress());
daniel parkee8700b2017-05-11 15:50:03 +0900[diff] [blame]522 TrafficSelector.Builder sBuilder = DefaultTrafficSelector.builder()
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]523 .matchEthType(Ethernet.TYPE_IPV4)
daniel parkee8700b2017-05-11 15:50:03 +0900[diff] [blame]524 .matchIPSrc(instPort.ipAddress().toIpPrefix());
525
526 switch (osNet.getNetworkType()) {
527 case VXLAN:
528 sBuilder.matchTunnelId(Long.valueOf(osNet.getProviderSegID()));
529 break;
530 case VLAN:
531 sBuilder.matchVlanId(VlanId.vlanId(osNet.getProviderSegID()));
532 break;
533 default:
Ray Milkeyc6c9b172018-02-26 09:36:31 -0800[diff] [blame]534 final String error = String.format(ERR_UNSUPPORTED_NET_TYPE,
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]535 osNet.getNetworkType());
daniel parkee8700b2017-05-11 15:50:03 +0900[diff] [blame]536 throw new IllegalStateException(error);
537 }
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]538
Daniel Park75e3d7f2018-05-29 14:43:53 +0900[diff] [blame]539 TrafficSelector selector = sBuilder.build();
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]540
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]541 osNodeService.completeNodes(GATEWAY).forEach(gNode -> {
Daniel Park75e3d7f2018-05-29 14:43:53 +0900[diff] [blame]542 TrafficTreatment.Builder tBuilder = DefaultTrafficTreatment.builder()
543 .setIpSrc(floating.getIp4Address())
544 .setEthSrc(instPort.macAddress())
545 .setEthDst(externalPeerRouter.externalPeerRouterMac());
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]546
Daniel Park75e3d7f2018-05-29 14:43:53 +0900[diff] [blame]547 if (osNet.getNetworkType().equals(NetworkType.VLAN)) {
548 tBuilder.popVlan();
549 }
550
551 if (!externalPeerRouter.externalPeerRouterVlanId().equals(VlanId.NONE)) {
552 tBuilder.pushVlan().setVlanId(externalPeerRouter.externalPeerRouterVlanId());
553 }
sanghodc375372017-06-08 10:41:30 +0900[diff] [blame]554 osFlowRuleService.setRule(
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]555 appId,
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]556 gNode.intgBridge(),
Daniel Park75e3d7f2018-05-29 14:43:53 +0900[diff] [blame]557 selector,
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]558 tBuilder.setOutput(gNode.uplinkPortNum()).build(),
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]559 PRIORITY_FLOATING_EXTERNAL,
sanghodc375372017-06-08 10:41:30 +0900[diff] [blame]560 GW_COMMON_TABLE,
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]561 install);
Daniel Park75e3d7f2018-05-29 14:43:53 +0900[diff] [blame]562 });
daniel parkc2a2ed62018-04-10 15:17:42 +0900[diff] [blame]563 log.trace("Succeeded to set flow rules for upstream on gateway nodes");
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]564 }
565
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]566 private ExternalPeerRouter externalPeerRouter(Network network) {
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]567 if (network == null) {
568 return null;
569 }
570
571 Subnet subnet = osNetworkService.subnets(network.getId()).stream().findAny().orElse(null);
572
573 if (subnet == null) {
574 return null;
575 }
576
Jian Lif3a28b02018-06-11 21:29:13 +0900[diff] [blame]577 RouterInterface osRouterIface = osRouterAdminService.routerInterfaces().stream()
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]578 .filter(i -> Objects.equals(i.getSubnetId(), subnet.getId()))
579 .findAny().orElse(null);
580 if (osRouterIface == null) {
581 return null;
582 }
583
Jian Lif3a28b02018-06-11 21:29:13 +0900[diff] [blame]584 Router osRouter = osRouterAdminService.router(osRouterIface.getId());
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]585 if (osRouter == null) {
586 return null;
587 }
588 if (osRouter.getExternalGatewayInfo() == null) {
589 return null;
590 }
591
592 ExternalGateway exGatewayInfo = osRouter.getExternalGatewayInfo();
daniel park65e1c202018-04-03 13:15:28 +0900[diff] [blame]593 return osNetworkService.externalPeerRouter(exGatewayInfo);
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]594 }
daniel park65e1c202018-04-03 13:15:28 +0900[diff] [blame]595
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]596 private void associateFloatingIp(NetFloatingIP osFip) {
597 Port osPort = osNetworkService.port(osFip.getPortId());
598 if (osPort == null) {
599 final String errorFormat = ERR_FLOW + "port(%s) not found";
600 final String error = String.format(errorFormat,
601 osFip.getFloatingIpAddress(), osFip.getPortId());
602 throw new IllegalStateException(error);
603 }
604 // set floating IP rules only if the port is associated to a VM
605 if (!Strings.isNullOrEmpty(osPort.getDeviceId())) {
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]606
607 if (instancePortService.instancePort(osPort.getId()) == null) {
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]608 return;
609 }
610
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]611 setFloatingIpRules(osFip, osPort, null, true);
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]612 }
613 }
614
615 private void disassociateFloatingIp(NetFloatingIP osFip, String portId) {
616 Port osPort = osNetworkService.port(portId);
617 if (osPort == null) {
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]618 osPort = terminatedOsPorts.get(portId);
619 terminatedOsPorts.remove(portId);
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]620 }
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]621
622 if (osPort == null) {
623 final String errorFormat = ERR_FLOW + "port(%s) not found";
624 final String error = String.format(errorFormat,
625 osFip.getFloatingIpAddress(), osFip.getPortId());
626 throw new IllegalStateException(error);
627 }
628
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]629 // set floating IP rules only if the port is associated to a VM
630 if (!Strings.isNullOrEmpty(osPort.getDeviceId())) {
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]631
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]632 if (instancePortService.instancePort(osPort.getId()) == null) {
Jian Li46b74002018-07-15 18:39:08 +0900[diff] [blame^]633 return;
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]634 }
635
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]636 setFloatingIpRules(osFip, osPort, null, false);
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]637 }
638 }
639
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]640 private class InternalFloatingIpListener implements OpenstackRouterListener {
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]641
642 @Override
643 public boolean isRelevant(OpenstackRouterEvent event) {
644 // do not allow to proceed without leadership
645 NodeId leader = leadershipService.getLeader(appId.name());
646 if (!Objects.equals(localNodeId, leader)) {
647 return false;
648 }
649 return event.floatingIp() != null;
650 }
651
652 @Override
653 public void event(OpenstackRouterEvent event) {
654 switch (event.type()) {
655 case OPENSTACK_FLOATING_IP_ASSOCIATED:
Hyunsun Moon7a5f9042017-05-11 18:19:01 +0900[diff] [blame]656 eventExecutor.execute(() -> {
Hyunsun Moonb720e632017-05-16 15:41:36 +0900[diff] [blame]657 NetFloatingIP osFip = event.floatingIp();
658 associateFloatingIp(osFip);
659 log.info("Associated floating IP {}:{}",
660 osFip.getFloatingIpAddress(), osFip.getFixedIpAddress());
Hyunsun Moon7a5f9042017-05-11 18:19:01 +0900[diff] [blame]661 });
662 break;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]663 case OPENSTACK_FLOATING_IP_DISASSOCIATED:
664 eventExecutor.execute(() -> {
Hyunsun Moonb720e632017-05-16 15:41:36 +0900[diff] [blame]665 NetFloatingIP osFip = event.floatingIp();
666 disassociateFloatingIp(osFip, event.portId());
667 log.info("Disassociated floating IP {}:{}",
668 osFip.getFloatingIpAddress(), osFip.getFixedIpAddress());
Hyunsun Moon7a5f9042017-05-11 18:19:01 +0900[diff] [blame]669 });
670 break;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]671 case OPENSTACK_FLOATING_IP_CREATED:
Hyunsun Moonb720e632017-05-16 15:41:36 +0900[diff] [blame]672 eventExecutor.execute(() -> {
673 NetFloatingIP osFip = event.floatingIp();
674 if (!Strings.isNullOrEmpty(osFip.getPortId())) {
675 associateFloatingIp(event.floatingIp());
676 }
677 log.info("Created floating IP {}", osFip.getFloatingIpAddress());
678 });
679 break;
Jian Lia171a432018-06-11 11:52:11 +0900[diff] [blame]680 case OPENSTACK_FLOATING_IP_REMOVED:
681 eventExecutor.execute(() -> {
682 NetFloatingIP osFip = event.floatingIp();
683 if (!Strings.isNullOrEmpty(osFip.getPortId())) {
684 disassociateFloatingIp(osFip, osFip.getPortId());
685 }
686 log.info("Removed floating IP {}", osFip.getFloatingIpAddress());
687 });
688 break;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]689 case OPENSTACK_FLOATING_IP_UPDATED:
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]690 case OPENSTACK_ROUTER_CREATED:
691 case OPENSTACK_ROUTER_UPDATED:
692 case OPENSTACK_ROUTER_REMOVED:
693 case OPENSTACK_ROUTER_INTERFACE_ADDED:
694 case OPENSTACK_ROUTER_INTERFACE_UPDATED:
695 case OPENSTACK_ROUTER_INTERFACE_REMOVED:
696 default:
697 // do nothing for the other events
698 break;
699 }
700 }
701 }
702
703 private class InternalNodeListener implements OpenstackNodeListener {
704
705 @Override
706 public boolean isRelevant(OpenstackNodeEvent event) {
707 // do not allow to proceed without leadership
708 NodeId leader = leadershipService.getLeader(appId.name());
709 if (!Objects.equals(localNodeId, leader)) {
710 return false;
711 }
712 return event.subject().type() == GATEWAY;
713 }
714
715 @Override
716 public void event(OpenstackNodeEvent event) {
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]717
718 switch (event.type()) {
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]719 case OPENSTACK_NODE_COMPLETE:
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]720 eventExecutor.execute(() -> {
Jian Lif3a28b02018-06-11 21:29:13 +0900[diff] [blame]721 for (NetFloatingIP fip : osRouterAdminService.floatingIps()) {
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]722
Hyunsun Moon7a5f9042017-05-11 18:19:01 +0900[diff] [blame]723 if (Strings.isNullOrEmpty(fip.getPortId())) {
724 continue;
725 }
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]726
Hyunsun Moon7a5f9042017-05-11 18:19:01 +0900[diff] [blame]727 Port osPort = osNetworkService.port(fip.getPortId());
728 if (osPort == null) {
729 log.warn("Failed to set floating IP {}", fip.getId());
730 continue;
731 }
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]732
Jian Li46b74002018-07-15 18:39:08 +0900[diff] [blame^]733 if (instancePortService.instancePort(fip.getPortId()) == null) {
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]734 continue;
735 }
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]736
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]737 setFloatingIpRules(fip, osPort, event.subject(), true);
Hyunsun Moon7a5f9042017-05-11 18:19:01 +0900[diff] [blame]738 }
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]739 });
740 break;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]741 case OPENSTACK_NODE_INCOMPLETE:
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]742 eventExecutor.execute(() -> {
Jian Lif3a28b02018-06-11 21:29:13 +0900[diff] [blame]743 for (NetFloatingIP fip : osRouterAdminService.floatingIps()) {
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]744 if (Strings.isNullOrEmpty(fip.getPortId())) {
745 continue;
746 }
747 Port osPort = osNetworkService.port(fip.getPortId());
748 if (osPort == null) {
749 log.warn("Failed to set floating IP {}", fip.getId());
750 continue;
751 }
752 Network osNet = osNetworkService.network(osPort.getNetworkId());
753 if (osNet == null) {
754 final String errorFormat = ERR_FLOW + "no network(%s) exists";
755 final String error = String.format(errorFormat,
756 fip.getFloatingIpAddress(),
757 osPort.getNetworkId());
758 throw new IllegalStateException(error);
759 }
760 MacAddress srcMac = MacAddress.valueOf(osPort.getMacAddress());
761 log.trace("Mac address of openstack port: {}", srcMac);
762 InstancePort instPort = instancePortService.instancePort(srcMac);
763
764 if (instPort == null) {
765 final String errorFormat = ERR_FLOW + "no host(MAC:%s) found";
766 final String error = String.format(errorFormat,
767 fip.getFloatingIpAddress(), srcMac);
768 throw new IllegalStateException(error);
769 }
770
Jian Lide679782018-06-05 01:41:29 +0900[diff] [blame]771 ExternalPeerRouter externalPeerRouter = externalPeerRouter(osNet);
772 if (externalPeerRouter == null) {
773 final String errorFormat = ERR_FLOW + "no external peer router found";
774 throw new IllegalStateException(errorFormat);
775 }
776
777 updateComputeNodeRules(instPort, osNet, event.subject(), false);
778 updateGatewayNodeRules(fip, instPort, osNet,
779 externalPeerRouter, event.subject(), false);
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]780 }
781 });
782 break;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]783 default:
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]784 // do nothing
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]785 break;
786 }
787 }
788 }
Jian Li99892e92018-04-13 14:59:39 +0900[diff] [blame]789
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]790 private class InternalInstancePortListener implements InstancePortListener {
791
792 @Override
793 public boolean isRelevant(InstancePortEvent event) {
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]794
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]795 if (event.type() == OPENSTACK_INSTANCE_MIGRATION_ENDED ||
796 event.type() == OPENSTACK_INSTANCE_MIGRATION_STARTED) {
797 Set<NetFloatingIP> ips = osRouterAdminService.floatingIps();
798 NetFloatingIP fip = associatedFloatingIp(event.subject(), ips);
799
800 // we check the possible NPE to avoid duplicated null check
801 // for OPENSTACK_INSTANCE_MIGRATION_ENDED and
802 // OPENSTACK_INSTANCE_MIGRATION_STARTED cases
803 if (fip == null || !isAssociatedWithVM(osNetworkService, fip)) {
804 return false;
805 }
806 }
807
808 // do not allow to proceed without leadership
809 NodeId leader = leadershipService.getLeader(appId.name());
810
811 return Objects.equals(localNodeId, leader);
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]812 }
813
814 @Override
815 public void event(InstancePortEvent event) {
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]816 InstancePort instPort = event.subject();
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]817 Set<OpenstackNode> gateways = osNodeService.completeNodes(GATEWAY);
818
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]819 Set<NetFloatingIP> ips = osRouterAdminService.floatingIps();
820 NetFloatingIP fip;
821 Port osPort;
822 Network osNet;
823 ExternalPeerRouter externalPeerRouter;
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]824
825 switch (event.type()) {
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]826 case OPENSTACK_INSTANCE_PORT_DETECTED:
Jian Li77323c52018-06-24 01:26:18 +0900[diff] [blame]827 if (instPort != null && instPort.portId() != null) {
828 String portId = instPort.portId();
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]829
Jian Li77323c52018-06-24 01:26:18 +0900[diff] [blame]830 terminatedOsPorts.remove(portId);
831
832 Port port = osNetworkService.port(portId);
833
Jian Li46b74002018-07-15 18:39:08 +0900[diff] [blame^]834 osRouterAdminService.floatingIps().stream()
835 .filter(f -> f.getPortId() != null)
836 .filter(f -> f.getPortId().equals(instPort.portId()))
837 .forEach(f -> setFloatingIpRules(f, port, null, true));
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]838 }
839
840 break;
841
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]842 case OPENSTACK_INSTANCE_MIGRATION_STARTED:
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]843
844 fip = associatedFloatingIp(event.subject(), ips);
845
846 if (fip == null) {
847 return;
848 }
849
850 osPort = osNetworkService.port(fip.getPortId());
851 osNet = osNetworkService.network(osPort.getNetworkId());
852 externalPeerRouter = externalPeerRouter(osNet);
853
854 if (externalPeerRouter == null) {
855 final String errorFormat = ERR_FLOW + "no external peer router found";
856 throw new IllegalStateException(errorFormat);
857 }
858
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]859 eventExecutor.execute(() -> {
860
861 // since downstream internal rules are located in all gateway
862 // nodes, therefore, we simply update the rules with new compute node info
863 setDownstreamInternalRules(fip, osNet, event.subject(), true);
864
865 // since DownstreamExternal rules should only be placed in
866 // corresponding gateway node, we need to install new rule to
867 // the corresponding gateway node
868 setDownstreamExternalRulesHelper(fip, osNet,
869 event.subject(), externalPeerRouter, gateways, true);
870
871 // since ComputeNodeToGateway rules should only be placed in
872 // corresponding compute node, we need to install new rule to
873 // the target compute node, and remove rules from original node
874 setComputeNodeToGatewayHelper(event.subject(), osNet, gateways, true);
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]875 });
876 break;
877 case OPENSTACK_INSTANCE_MIGRATION_ENDED:
878
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]879 InstancePort revisedInstPort = swapStaleLocation(event.subject());
880
881 fip = associatedFloatingIp(revisedInstPort, ips);
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]882
883 if (fip == null) {
884 return;
885 }
886
887 osPort = osNetworkService.port(fip.getPortId());
888 osNet = osNetworkService.network(osPort.getNetworkId());
889 externalPeerRouter = externalPeerRouter(osNet);
890
891 if (externalPeerRouter == null) {
892 final String errorFormat = ERR_FLOW + "no external peer router found";
893 throw new IllegalStateException(errorFormat);
894 }
895
896 // If we only have one gateway, we simply do not remove any
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]897 // flow rules from either gateway or compute node
898 if (gateways.size() == 1) {
899 return;
900 }
901
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]902 // Checks whether the destination compute node's device id
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]903 // has identical gateway hash or not
904 // if it is true, we simply do not remove the rules, as
905 // it has been overwritten at port detention event
906 // if it is false, we will remove the rules
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]907 DeviceId newDeviceId = event.subject().deviceId();
908 DeviceId oldDeviceId = revisedInstPort.deviceId();
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]909
910 OpenstackNode oldGateway = getGwByComputeDevId(gateways, oldDeviceId);
911 OpenstackNode newGateway = getGwByComputeDevId(gateways, newDeviceId);
912
913 if (oldGateway != null && oldGateway.equals(newGateway)) {
914 return;
915 }
916
917 eventExecutor.execute(() -> {
918
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]919 // We need to remove the old ComputeNodeToGateway rules from
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]920 // original compute node
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]921 setComputeNodeToGatewayHelper(revisedInstPort, osNet, gateways, false);
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]922
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]923 // Since DownstreamExternal rules should only be placed in
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]924 // corresponding gateway node, we need to remove old rule from
925 // the corresponding gateway node
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]926 setDownstreamExternalRulesHelper(fip, osNet, revisedInstPort,
927 externalPeerRouter, gateways, false);
Jian Li24ec59f2018-05-23 19:01:25 +0900[diff] [blame]928 });
929 break;
930 default:
931 break;
932 }
933 }
934 }
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]935
936 private class InternalOpenstackNetworkListener implements OpenstackNetworkListener {
937
938 @Override
939 public boolean isRelevant(OpenstackNetworkEvent event) {
940 // do not allow to proceed without leadership
941 NodeId leader = leadershipService.getLeader(appId.name());
942 return Objects.equals(localNodeId, leader);
943 }
944
945 @Override
946 public void event(OpenstackNetworkEvent event) {
947 switch (event.type()) {
948 case OPENSTACK_PORT_REMOVED:
Jian Liec5c32b2018-07-13 14:28:58 +0900[diff] [blame]949 String portId = event.port().getId();
950 terminatedOsPorts.put(portId, event.port());
951
952 InstancePort instPort = instancePortService.instancePort(portId);
953 InstancePort updated = instPort.updateState(PENDING_REMOVAL);
954 instancePortService.updateInstancePort(updated);
955
956 updateFipStore(instPort);
957
958 // we will hold the instance port in its store, until its
959 // state is changed to REMOVED
960 while (true) {
961 if (instancePortService.instancePort(portId).state() ==
962 REMOVED) {
963 instancePortService.removeInstancePort(portId);
964 break;
965 }
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]966 }
967 break;
968 default:
969 break;
970 }
971 }
972
973 private void updateFipStore(InstancePort port) {
974
975 if (port == null) {
976 return;
977 }
978
979 Set<NetFloatingIP> ips = osRouterAdminService.floatingIps();
980 for (NetFloatingIP fip : ips) {
981 if (Strings.isNullOrEmpty(fip.getFixedIpAddress())) {
982 continue;
983 }
984 if (Strings.isNullOrEmpty(fip.getFloatingIpAddress())) {
985 continue;
986 }
987 if (fip.getFixedIpAddress().equals(port.ipAddress().toString())) {
988 NeutronFloatingIP neutronFip = (NeutronFloatingIP) fip;
989 // invalidate bound fixed IP and port
990 neutronFip.setFixedIpAddress(null);
991 neutronFip.setPortId(null);
Jian Lie1a39032018-06-19 21:49:36 +0900[diff] [blame]992
993 // Following update will in turn trigger
994 // OPENSTACK_FLOATING_IP_DISASSOCIATED event
995 osRouterAdminService.updateFloatingIp(neutronFip);
996 log.info("Updated floating IP {}, due to host removal",
997 neutronFip.getFloatingIpAddress());
998 }
999 }
1000 }
1001 }
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]1002}