Gitiles
Code Review Sign In
gerrit.onosproject.org / onos / 51b844ce9c38474a05e475af91ac119f567f7a58 / . / apps / openstacknetworking / app / src / main / java / org / onosproject / openstacknetworking / impl / OpenstackRoutingArpHandler.java
blob: 0319d401609b79eef7d47fe7df3df8834d93ff98 [file] [log] [blame]
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]1/*
Brian O'Connora09fe5b2017-08-03 21:12:30 -0700[diff] [blame]2 * Copyright 2016-present Open Networking Foundation
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
Hyunsun Moon05400872017-02-07 17:11:25 +0900[diff] [blame]16package org.onosproject.openstacknetworking.impl;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]17
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]18import com.google.common.base.Strings;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]19import com.google.common.collect.ImmutableSet;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]20import com.google.common.collect.Maps;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]21import com.google.common.collect.Sets;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]22import org.apache.felix.scr.annotations.Activate;
23import org.apache.felix.scr.annotations.Component;
24import org.apache.felix.scr.annotations.Deactivate;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]25import org.apache.felix.scr.annotations.Modified;
26import org.apache.felix.scr.annotations.Property;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]27import org.apache.felix.scr.annotations.Reference;
28import org.apache.felix.scr.annotations.ReferenceCardinality;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]29import org.onlab.packet.ARP;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]30import org.onlab.packet.EthType;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]31import org.onlab.packet.Ethernet;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]32import org.onlab.packet.Ip4Address;
33import org.onlab.packet.IpAddress;
34import org.onlab.packet.MacAddress;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]35import org.onlab.util.Tools;
36import org.onosproject.cfg.ComponentConfigService;
37import org.onosproject.cluster.ClusterService;
38import org.onosproject.cluster.LeadershipService;
39import org.onosproject.cluster.NodeId;
40import org.onosproject.core.ApplicationId;
41import org.onosproject.core.CoreService;
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]42import org.onosproject.net.ConnectPoint;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]43import org.onosproject.net.DeviceId;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]44import org.onosproject.net.Host;
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]45import org.onosproject.net.PortNumber;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]46import org.onosproject.net.flow.DefaultTrafficSelector;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]47import org.onosproject.net.flow.DefaultTrafficTreatment;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]48import org.onosproject.net.flow.TrafficSelector;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]49import org.onosproject.net.flow.TrafficTreatment;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]50import org.onosproject.net.host.HostEvent;
51import org.onosproject.net.host.HostListener;
52import org.onosproject.net.host.HostService;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]53import org.onosproject.net.packet.DefaultOutboundPacket;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]54import org.onosproject.net.packet.InboundPacket;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]55import org.onosproject.net.packet.PacketContext;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]56import org.onosproject.net.packet.PacketProcessor;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]57import org.onosproject.net.packet.PacketService;
Hyunsun Moon05400872017-02-07 17:11:25 +0900[diff] [blame]58import org.onosproject.openstacknetworking.api.Constants;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]59import org.onosproject.openstacknetworking.api.InstancePort;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]60import org.onosproject.openstacknetworking.api.InstancePortService;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]61import org.onosproject.openstacknetworking.api.OpenstackFlowRuleService;
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]62import org.onosproject.openstacknetworking.api.OpenstackNetworkAdminService;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]63import org.onosproject.openstacknetworking.api.OpenstackNetworkService;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]64import org.onosproject.openstacknetworking.api.OpenstackRouterEvent;
65import org.onosproject.openstacknetworking.api.OpenstackRouterListener;
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]66import org.onosproject.openstacknetworking.api.OpenstackRouterService;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]67import org.onosproject.openstacknode.api.OpenstackNode;
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]68import org.onosproject.openstacknode.api.OpenstackNodeEvent;
69import org.onosproject.openstacknode.api.OpenstackNodeListener;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]70import org.onosproject.openstacknode.api.OpenstackNodeService;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]71import org.openstack4j.model.network.ExternalGateway;
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]72import org.openstack4j.model.network.IP;
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]73import org.openstack4j.model.network.NetFloatingIP;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]74import org.openstack4j.model.network.Port;
75import org.openstack4j.model.network.Router;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]76import org.osgi.service.component.ComponentContext;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]77import org.slf4j.Logger;
78
79import java.nio.ByteBuffer;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]80import java.util.Dictionary;
81import java.util.Map;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]82import java.util.Objects;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]83import java.util.Set;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]84import java.util.concurrent.ExecutorService;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]85import java.util.stream.Collectors;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]86
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]87import static java.util.concurrent.Executors.newSingleThreadExecutor;
88import static org.onlab.util.Tools.groupedThreads;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]89import static org.onosproject.openstacknetworking.api.Constants.ARP_BROADCAST_MODE;
90import static org.onosproject.openstacknetworking.api.Constants.ARP_PROXY_MODE;
91import static org.onosproject.openstacknetworking.api.Constants.DEFAULT_ARP_MODE_STR;
92import static org.onosproject.openstacknetworking.api.Constants.DEFAULT_GATEWAY_MAC_STR;
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]93import static org.onosproject.openstacknetworking.api.Constants.DHCP_ARP_TABLE;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]94import static org.onosproject.openstacknetworking.api.Constants.GW_COMMON_TABLE;
95import static org.onosproject.openstacknetworking.api.Constants.OPENSTACK_NETWORKING_APP_ID;
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]96import static org.onosproject.openstacknetworking.api.Constants.PRIORITY_ARP_CONTROL_RULE;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]97import static org.onosproject.openstacknetworking.api.Constants.PRIORITY_ARP_GATEWAY_RULE;
98import static org.onosproject.openstacknetworking.impl.HostBasedInstancePort.ANNOTATION_NETWORK_ID;
99import static org.onosproject.openstacknetworking.impl.HostBasedInstancePort.ANNOTATION_PORT_ID;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]100import static org.onosproject.openstacknetworking.util.OpenstackNetworkingUtil.getGwByComputeDevId;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]101import static org.onosproject.openstacknode.api.OpenstackNode.NodeType.GATEWAY;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]102import static org.slf4j.LoggerFactory.getLogger;
103
104/**
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]105 * Handle ARP requests from gateway nodes.
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]106 */
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]107@Component(immediate = true)
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]108public class OpenstackRoutingArpHandler {
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]109
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]110 private final Logger log = getLogger(getClass());
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]111
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]112 private static final String DEVICE_OWNER_ROUTER_GW = "network:router_gateway";
113 private static final String DEVICE_OWNER_FLOATING_IP = "network:floatingip";
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]114 private static final String ARP_MODE = "arpMode";
115
116 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
117 protected CoreService coreService;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]118
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]119 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
120 protected PacketService packetService;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]121
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]122 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]123 protected OpenstackNetworkAdminService osNetworkAdminService;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]124
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]125 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]126 protected OpenstackRouterService osRouterService;
127
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]128 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
daniel parke49eb382017-04-05 16:48:28 +0900[diff] [blame]129 protected OpenstackNodeService osNodeService;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]130
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]131 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]132 protected InstancePortService instancePortService;
133
134 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]135 protected ClusterService clusterService;
136
137 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
138 protected LeadershipService leadershipService;
139
140 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
141 protected OpenstackFlowRuleService osFlowRuleService;
142
143 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]144 protected OpenstackNetworkService osNetworkService;
145
146 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]147 protected ComponentConfigService configService;
148
149 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
150 protected HostService hostService;
151
152 // TODO: need to find a way to unify aprMode and gatewayMac variables with
153 // that in SwitchingArpHandler
154 @Property(name = ARP_MODE, value = DEFAULT_ARP_MODE_STR,
Jian Li1478f292018-05-28 17:10:59 +0900[diff] [blame]155 label = "ARP processing mode, broadcast (default) | proxy ")
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]156 protected String arpMode = DEFAULT_ARP_MODE_STR;
157
158 protected String gatewayMac = DEFAULT_GATEWAY_MAC_STR;
159
160 private final OpenstackRouterListener osRouterListener = new InternalRouterEventListener();
161 private final HostListener hostListener = new InternalHostListener();
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]162 private final OpenstackNodeListener osNodeListener = new InternalNodeEventListener();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]163
164 private ApplicationId appId;
165 private NodeId localNodeId;
166 private Map<String, String> floatingIpMacMap = Maps.newConcurrentMap();
167
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]168 private final ExecutorService eventExecutor = newSingleThreadExecutor(
169 groupedThreads(this.getClass().getSimpleName(), "event-handler", log));
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]170
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]171 private final PacketProcessor packetProcessor = new InternalPacketProcessor();
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]172
173 @Activate
174 protected void activate() {
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]175 appId = coreService.registerApplication(OPENSTACK_NETWORKING_APP_ID);
176 configService.registerProperties(getClass());
177 localNodeId = clusterService.getLocalNode().id();
178 osRouterService.addListener(osRouterListener);
179 hostService.addListener(hostListener);
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]180 osNodeService.addListener(osNodeListener);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]181 leadershipService.runForLeadership(appId.name());
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]182 packetService.addProcessor(packetProcessor, PacketProcessor.director(1));
183 log.info("Started");
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]184 }
185
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]186 @Deactivate
187 protected void deactivate() {
188 packetService.removeProcessor(packetProcessor);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]189 hostService.removeListener(hostListener);
190 osRouterService.removeListener(osRouterListener);
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]191 osNodeService.removeListener(osNodeListener);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]192 leadershipService.withdraw(appId.name());
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]193 eventExecutor.shutdown();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]194 configService.unregisterProperties(getClass(), false);
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]195 log.info("Stopped");
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]196 }
197
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]198 // TODO: need to find a way to unify aprMode and gatewayMac variables with
199 // that in SwitchingArpHandler
200 @Modified
201 void modified(ComponentContext context) {
202 Dictionary<?, ?> properties = context.getProperties();
203 String updateArpMode;
204
205 updateArpMode = Tools.get(properties, ARP_MODE);
206 if (!Strings.isNullOrEmpty(updateArpMode) && !updateArpMode.equals(arpMode)) {
207 arpMode = updateArpMode;
208 }
209
210 log.info("Modified");
211 }
212
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]213 private void processArpPacket(PacketContext context, Ethernet ethernet) {
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]214 ARP arp = (ARP) ethernet.getPayload();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]215
216 if (arp.getOpCode() == ARP.OP_REQUEST && arpMode.equals(ARP_PROXY_MODE)) {
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]217 if (log.isTraceEnabled()) {
218 log.trace("ARP request received from {} for {}",
219 Ip4Address.valueOf(arp.getSenderProtocolAddress()).toString(),
220 Ip4Address.valueOf(arp.getTargetProtocolAddress()).toString());
221 }
222
223 IpAddress targetIp = Ip4Address.valueOf(arp.getTargetProtocolAddress());
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]224
225 MacAddress targetMac = null;
226
227 NetFloatingIP floatingIP = osRouterService.floatingIps().stream()
228 .filter(ip -> ip.getFloatingIpAddress().equals(targetIp.toString()))
229 .findAny().orElse(null);
230
daniel park576969a2018-03-09 07:07:41 +0900[diff] [blame]231 //In case target ip is for associated floating ip, sets target mac to vm's.
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]232 if (floatingIP != null && floatingIP.getPortId() != null) {
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]233 targetMac = MacAddress.valueOf(osNetworkAdminService.port(
234 floatingIP.getPortId()).getMacAddress());
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]235 }
236
237 if (isExternalGatewaySourceIp(targetIp.getIp4Address())) {
238 targetMac = Constants.DEFAULT_GATEWAY_MAC;
239 }
240
241 if (targetMac == null) {
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]242 log.trace("Unknown target ARP request for {}, ignore it", targetIp);
243 return;
244 }
245
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]246 OpenstackNode gw = getGwByTargetMac(osNodeService.completeNodes(GATEWAY), targetMac);
247
248 if (gw == null) {
249 return;
250 }
251
252 // if the ARP packet_in received from non-relevant GWs, we simply ignore it
253 if (!Objects.equals(gw.intgBridge(), context.inPacket().receivedFrom().deviceId())) {
254 return;
255 }
256
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]257 Ethernet ethReply = ARP.buildArpReply(targetIp.getIp4Address(),
258 targetMac, ethernet);
259
260 TrafficTreatment treatment = DefaultTrafficTreatment.builder()
daniel park576969a2018-03-09 07:07:41 +0900[diff] [blame]261 .setOutput(context.inPacket().receivedFrom().port()).build();
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]262
263 packetService.emit(new DefaultOutboundPacket(
264 context.inPacket().receivedFrom().deviceId(),
265 treatment,
266 ByteBuffer.wrap(ethReply.serialize())));
267
268 context.block();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]269 }
270
271 if (arp.getOpCode() == ARP.OP_REPLY) {
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]272 ConnectPoint cp = context.inPacket().receivedFrom();
273 PortNumber receivedPortNum = cp.port();
274 IpAddress spa = Ip4Address.valueOf(arp.getSenderProtocolAddress());
275 MacAddress sha = MacAddress.valueOf(arp.getSenderHardwareAddress());
276
277 log.debug("ARP reply ip: {}, mac: {}", spa, sha);
278
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]279 try {
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]280
Jian Lid4066ea2018-06-07 01:44:45 +0900[diff] [blame]281 Set<String> extRouterIps = osNetworkService.externalPeerRouters().
282 stream().map(r -> r.externalPeerRouterIp().toString()).collect(Collectors.toSet());
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]283
Jian Lid4066ea2018-06-07 01:44:45 +0900[diff] [blame]284 // if SPA is NOT contained in existing external router IP set, we ignore it
285 if (!extRouterIps.contains(spa.toString())) {
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]286 return;
287 }
288
289 OpenstackNode node = osNodeService.node(cp.deviceId());
290
291 if (node == null) {
292 return;
293 }
294
295 // we only handles the ARP-Reply message received by gateway node
296 if (node.type() != GATEWAY) {
297 return;
298 }
299
300 if (receivedPortNum.equals(node.uplinkPortNum())) {
301 osNetworkAdminService.updateExternalPeerRouterMac(spa, sha);
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]302 }
303 } catch (Exception e) {
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]304 log.error("Exception occurred because of {}", e);
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]305 }
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]306 }
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]307 }
308
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]309 private class InternalPacketProcessor implements PacketProcessor {
310
311 @Override
312 public void process(PacketContext context) {
313 if (context.isHandled()) {
314 return;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]315 }
316
317 Set<DeviceId> gateways = osNodeService.completeNodes(GATEWAY)
318 .stream().map(OpenstackNode::intgBridge)
319 .collect(Collectors.toSet());
320
321 if (!gateways.contains(context.inPacket().receivedFrom().deviceId())) {
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]322 // return if the packet is not from gateway nodes
323 return;
324 }
325
326 InboundPacket pkt = context.inPacket();
327 Ethernet ethernet = pkt.parsed();
328 if (ethernet != null &&
329 ethernet.getEtherType() == Ethernet.TYPE_ARP) {
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]330 eventExecutor.execute(() -> processArpPacket(context, ethernet));
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]331 }
332 }
333 }
334
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]335 private boolean isExternalGatewaySourceIp(IpAddress targetIp) {
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]336 return osNetworkAdminService.ports().stream()
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]337 .filter(osPort -> Objects.equals(osPort.getDeviceOwner(),
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]338 DEVICE_OWNER_ROUTER_GW))
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]339 .flatMap(osPort -> osPort.getFixedIps().stream())
340 .anyMatch(ip -> IpAddress.valueOf(ip.getIpAddress()).equals(targetIp));
Kyuhwi Choi92d9ea42016-06-13 17:28:00 +0900[diff] [blame]341 }
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]342
343 // FIXME: need to find a way to invoke this method during node initialization
344 private void initFloatingIpMacMap() {
345 osRouterService.floatingIps().forEach(f -> {
346 if (f.getPortId() != null && f.getFloatingIpAddress() != null) {
347 Port port = osNetworkAdminService.port(f.getPortId());
348 if (port != null && port.getMacAddress() != null) {
349 floatingIpMacMap.put(f.getFloatingIpAddress(), port.getMacAddress());
350 }
351 }
352 });
353 }
354
355 /**
356 * Installs static ARP rules used in ARP BROAD_CAST mode.
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]357 *
358 * @param gateway gateway node
359 * @param install flow rule installation flag
360 */
361 private void setFloatingIpArpRuleForGateway(OpenstackNode gateway, boolean install) {
362 if (arpMode.equals(ARP_BROADCAST_MODE)) {
363
364 Set<OpenstackNode> completedGws = osNodeService.completeNodes(GATEWAY);
365 Set<OpenstackNode> finalGws = Sets.newConcurrentHashSet();
366 finalGws.addAll(ImmutableSet.copyOf(completedGws));
367
368 if (install) {
369 if (completedGws.contains(gateway)) {
370 if (completedGws.size() > 1) {
371 finalGws.remove(gateway);
372 osRouterService.floatingIps().forEach(fip -> {
373 if (fip.getPortId() != null) {
374 setFloatingIpArpRule(fip, finalGws, false);
375 finalGws.add(gateway);
376 }
377 });
378 }
379 osRouterService.floatingIps().forEach(fip -> {
380 if (fip.getPortId() != null) {
381 setFloatingIpArpRule(fip, finalGws, true);
382 }
383 });
384 } else {
385 log.warn("Detected node should be included in completed gateway set");
386 }
387 } else {
388 if (!completedGws.contains(gateway)) {
389 finalGws.add(gateway);
390 osRouterService.floatingIps().forEach(fip -> {
391 if (fip.getPortId() != null) {
392 setFloatingIpArpRule(fip, finalGws, false);
393 }
394 });
395 finalGws.remove(gateway);
396 if (completedGws.size() >= 1) {
397 osRouterService.floatingIps().forEach(fip -> {
398 if (fip.getPortId() != null) {
399 setFloatingIpArpRule(fip, finalGws, true);
400 }
401 });
402 }
403 } else {
404 log.warn("Detected node should NOT be included in completed gateway set");
405 }
406 }
407 }
408 }
409
410 /**
411 * Installs static ARP rules used in ARP BROAD_CAST mode.
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]412 * Note that, those rules will be only matched ARP_REQUEST packets,
413 * used for telling gateway node the mapped MAC address of requested IP,
414 * without the helps from controller.
415 *
416 * @param fip floating IP address
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]417 * @param gateways a set of gateway nodes
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]418 * @param install flow rule installation flag
419 */
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]420 private synchronized void setFloatingIpArpRule(NetFloatingIP fip,
421 Set<OpenstackNode> gateways,
422 boolean install) {
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]423 if (arpMode.equals(ARP_BROADCAST_MODE)) {
424
425 if (fip == null) {
426 log.warn("Failed to set ARP broadcast rule for floating IP");
427 return;
428 }
429
430 String macString;
431
432 if (install) {
433 if (fip.getPortId() != null) {
434 macString = osNetworkAdminService.port(fip.getPortId()).getMacAddress();
435 floatingIpMacMap.put(fip.getFloatingIpAddress(), macString);
436 } else {
437 log.trace("Unknown target ARP request for {}, ignore it",
438 fip.getFloatingIpAddress());
439 return;
440 }
441 } else {
442 macString = floatingIpMacMap.get(fip.getFloatingIpAddress());
443 }
444
445 MacAddress targetMac = MacAddress.valueOf(macString);
446
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]447 OpenstackNode gw = getGwByTargetMac(gateways, targetMac);
448
449 if (gw == null) {
450 return;
451 }
452
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]453 TrafficSelector selector = DefaultTrafficSelector.builder()
454 .matchEthType(EthType.EtherType.ARP.ethType().toShort())
455 .matchArpOp(ARP.OP_REQUEST)
456 .matchArpTpa(Ip4Address.valueOf(fip.getFloatingIpAddress()))
457 .build();
458
459 TrafficTreatment treatment = DefaultTrafficTreatment.builder()
460 .setArpOp(ARP.OP_REPLY)
461 .setArpSha(targetMac)
462 .setArpSpa(Ip4Address.valueOf(fip.getFloatingIpAddress()))
463 .setOutput(PortNumber.IN_PORT)
464 .build();
465
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]466 osFlowRuleService.setRule(
467 appId,
468 gw.intgBridge(),
469 selector,
470 treatment,
471 PRIORITY_ARP_GATEWAY_RULE,
472 GW_COMMON_TABLE,
473 install
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]474 );
475
476 if (install) {
477 log.info("Install ARP Rule for Floating IP {}",
478 fip.getFloatingIpAddress());
479 } else {
480 log.info("Uninstall ARP Rule for Floating IP {}",
481 fip.getFloatingIpAddress());
482 }
483 }
484 }
485
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]486 // a helper method
487 private OpenstackNode getGwByTargetMac(Set<OpenstackNode> gateways,
488 MacAddress targetMac) {
489 InstancePort instPort = instancePortService.instancePort(targetMac);
490 OpenstackNode gw = null;
491 if (instPort != null && instPort.deviceId() != null) {
492 gw = getGwByComputeDevId(gateways, instPort.deviceId());
493 }
494 return gw;
495 }
496
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]497 /**
498 * An internal router event listener, intended to install/uninstall
499 * ARP rules for forwarding packets created from floating IPs.
500 */
501 private class InternalRouterEventListener implements OpenstackRouterListener {
502
503 @Override
504 public boolean isRelevant(OpenstackRouterEvent event) {
505 // do not allow to proceed without leadership
506 NodeId leader = leadershipService.getLeader(appId.name());
507 return Objects.equals(localNodeId, leader);
508 }
509
510 @Override
511 public void event(OpenstackRouterEvent event) {
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]512
513 Set<OpenstackNode> completedGws = osNodeService.completeNodes(GATEWAY);
514
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]515 switch (event.type()) {
516 case OPENSTACK_ROUTER_CREATED:
517 eventExecutor.execute(() ->
518 // add a router with external gateway
519 setFakeGatewayArpRule(event.subject(), true)
520 );
521 break;
522 case OPENSTACK_ROUTER_REMOVED:
523 eventExecutor.execute(() ->
524 // remove a router with external gateway
525 setFakeGatewayArpRule(event.subject(), false)
526 );
527 break;
528 case OPENSTACK_ROUTER_GATEWAY_ADDED:
529 eventExecutor.execute(() ->
530 // add a gateway manually after adding a router
531 setFakeGatewayArpRule(event.externalGateway(), true)
532 );
533 break;
534 case OPENSTACK_ROUTER_GATEWAY_REMOVED:
535 eventExecutor.execute(() ->
536 // remove a gateway from an existing router
537 setFakeGatewayArpRule(event.externalGateway(), false)
538 );
539 break;
540 case OPENSTACK_FLOATING_IP_ASSOCIATED:
541 eventExecutor.execute(() ->
542 // associate a floating IP with an existing VM
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]543 setFloatingIpArpRule(event.floatingIp(), completedGws, true)
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]544 );
545 break;
546 case OPENSTACK_FLOATING_IP_DISASSOCIATED:
547 eventExecutor.execute(() ->
548 // disassociate a floating IP with the existing VM
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]549 setFloatingIpArpRule(event.floatingIp(), completedGws, false)
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]550 );
551 break;
552 case OPENSTACK_FLOATING_IP_CREATED:
553 eventExecutor.execute(() -> {
554 NetFloatingIP osFip = event.floatingIp();
555
556 // during floating IP creation, if the floating IP is
557 // associated with any port of VM, then we will set
558 // floating IP related ARP rules to gateway node
559 if (!Strings.isNullOrEmpty(osFip.getPortId())) {
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]560 setFloatingIpArpRule(osFip, completedGws, true);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]561 }
562 });
563 break;
564 case OPENSTACK_FLOATING_IP_REMOVED:
565 eventExecutor.execute(() -> {
566 NetFloatingIP osFip = event.floatingIp();
567
568 // during floating IP deletion, if the floating IP is
569 // still associated with any port of VM, then we will
570 // remove floating IP related ARP rules from gateway node
571 if (!Strings.isNullOrEmpty(osFip.getPortId())) {
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]572 setFloatingIpArpRule(event.floatingIp(), completedGws, false);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]573 }
574 });
575 break;
576 default:
577 // do nothing for the other events
578 break;
579 }
580 }
581
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]582 private Set<IP> getExternalGatewaySnatIps(ExternalGateway extGw) {
583 return osNetworkAdminService.ports().stream()
584 .filter(port ->
585 Objects.equals(port.getNetworkId(), extGw.getNetworkId()))
586 .filter(port ->
587 Objects.equals(port.getDeviceOwner(), DEVICE_OWNER_ROUTER_GW))
588 .flatMap(port -> port.getFixedIps().stream())
589 .collect(Collectors.toSet());
590 }
591
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]592 private void setFakeGatewayArpRule(ExternalGateway extGw, boolean install) {
593 if (arpMode.equals(ARP_BROADCAST_MODE)) {
594
595 if (extGw == null) {
596 return;
597 }
598
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]599 Set<IP> ips = getExternalGatewaySnatIps(extGw);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]600
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]601 ips.forEach(ip -> {
602 TrafficSelector selector = DefaultTrafficSelector.builder()
603 .matchEthType(EthType.EtherType.ARP.ethType().toShort())
604 .matchArpOp(ARP.OP_REQUEST)
605 .matchArpTpa(Ip4Address.valueOf(ip.getIpAddress()))
606 .build();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]607
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]608 TrafficTreatment treatment = DefaultTrafficTreatment.builder()
609 .setArpOp(ARP.OP_REPLY)
610 .setArpSha(MacAddress.valueOf(gatewayMac))
611 .setArpSpa(Ip4Address.valueOf(ip.getIpAddress()))
612 .setOutput(PortNumber.IN_PORT)
613 .build();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]614
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]615 osNodeService.completeNodes(GATEWAY).forEach(n ->
616 osFlowRuleService.setRule(
617 appId,
618 n.intgBridge(),
619 selector,
620 treatment,
621 PRIORITY_ARP_GATEWAY_RULE,
622 GW_COMMON_TABLE,
623 install
624 )
625 );
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]626
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]627 if (install) {
628 log.info("Install ARP Rule for Gateway Snat {}", ip.getIpAddress());
629 } else {
630 log.info("Uninstall ARP Rule for Gateway Snat {}", ip.getIpAddress());
631 }
632 });
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]633 }
634 }
635
636 private void setFakeGatewayArpRule(Router router, boolean install) {
637 setFakeGatewayArpRule(router.getExternalGatewayInfo(), install);
638 }
639 }
640
641 /**
642 * An internal host event listener, intended to uninstall
643 * ARP rules during host removal. Note that this is only valid when users
644 * remove host without disassociating floating IP with existing VM.
645 */
646 private class InternalHostListener implements HostListener {
647
648 @Override
649 public boolean isRelevant(HostEvent event) {
650 Host host = event.subject();
651 if (!isValidHost(host)) {
652 log.debug("Invalid host detected, ignore it {}", host);
653 return false;
654 }
655 return true;
656 }
657
658 @Override
659 public void event(HostEvent event) {
660 InstancePort instPort = HostBasedInstancePort.of(event.subject());
661 switch (event.type()) {
662 case HOST_REMOVED:
663 removeArpRuleByInstancePort(instPort);
664 break;
665 case HOST_UPDATED:
666 case HOST_ADDED:
667 default:
668 break;
669 }
670 }
671
672 private void removeArpRuleByInstancePort(InstancePort port) {
673 Set<NetFloatingIP> ips = osRouterService.floatingIps();
674 for (NetFloatingIP fip : ips) {
675 if (Strings.isNullOrEmpty(fip.getFixedIpAddress())) {
676 continue;
677 }
678 if (Strings.isNullOrEmpty(fip.getFloatingIpAddress())) {
679 continue;
680 }
681 if (fip.getFixedIpAddress().equals(port.ipAddress().toString())) {
682 eventExecutor.execute(() ->
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]683 setFloatingIpArpRule(fip,
684 osNodeService.completeNodes(GATEWAY), false)
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]685 );
686 }
687 }
688 }
689
690 // TODO: should be extracted as an utility helper method sooner
691 private boolean isValidHost(Host host) {
692 return !host.ipAddresses().isEmpty() &&
693 host.annotations().value(ANNOTATION_NETWORK_ID) != null &&
694 host.annotations().value(ANNOTATION_PORT_ID) != null;
695 }
696 }
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]697
698 private class InternalNodeEventListener implements OpenstackNodeListener {
699
700 @Override
701 public boolean isRelevant(OpenstackNodeEvent event) {
702 // do not allow to proceed without leadership
703 NodeId leader = leadershipService.getLeader(appId.name());
Jian Li51b844c2018-05-31 10:59:03 +0900[diff] [blame^]704 return Objects.equals(localNodeId, leader) && event.subject().type() == GATEWAY;
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]705 }
706
707 @Override
708 public void event(OpenstackNodeEvent event) {
709 OpenstackNode osNode = event.subject();
710 switch (event.type()) {
711 case OPENSTACK_NODE_COMPLETE:
Jian Li51b844c2018-05-31 10:59:03 +0900[diff] [blame^]712 setDefaultArpRule(osNode, true);
713 setFloatingIpArpRuleForGateway(osNode, true);
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]714
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]715 break;
716 case OPENSTACK_NODE_INCOMPLETE:
Jian Li51b844c2018-05-31 10:59:03 +0900[diff] [blame^]717 setDefaultArpRule(osNode, false);
718 setFloatingIpArpRuleForGateway(osNode, false);
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]719 break;
720 default:
721 break;
722 }
723 }
724
725 private void setDefaultArpRule(OpenstackNode osNode, boolean install) {
726 switch (arpMode) {
727 case ARP_PROXY_MODE:
728 setDefaultArpRuleForProxyMode(osNode, install);
729 break;
730 case ARP_BROADCAST_MODE:
731 setDefaultArpRuleForBroadcastMode(osNode, install);
732 break;
733 default:
734 log.warn("Invalid ARP mode {}. Please use either " +
735 "broadcast or proxy mode.", arpMode);
736 break;
737 }
738 }
739
740 private void setDefaultArpRuleForProxyMode(OpenstackNode osNode, boolean install) {
741 TrafficSelector selector = DefaultTrafficSelector.builder()
742 .matchEthType(EthType.EtherType.ARP.ethType().toShort())
743 .build();
744
745 TrafficTreatment treatment = DefaultTrafficTreatment.builder()
746 .punt()
747 .build();
748
749 osFlowRuleService.setRule(
750 appId,
751 osNode.intgBridge(),
752 selector,
753 treatment,
754 PRIORITY_ARP_CONTROL_RULE,
755 DHCP_ARP_TABLE,
756 install
757 );
758 }
759
760 private void setDefaultArpRuleForBroadcastMode(OpenstackNode osNode, boolean install) {
761 // we only match ARP_REPLY in gateway node, because controller
762 // somehow need to process ARP_REPLY which is issued from
763 // external router...
764 TrafficSelector selector = DefaultTrafficSelector.builder()
765 .matchEthType(EthType.EtherType.ARP.ethType().toShort())
766 .matchArpOp(ARP.OP_REPLY)
767 .build();
768
769 TrafficTreatment treatment = DefaultTrafficTreatment.builder()
770 .punt()
771 .build();
772
773 osFlowRuleService.setRule(
774 appId,
775 osNode.intgBridge(),
776 selector,
777 treatment,
778 PRIORITY_ARP_CONTROL_RULE,
779 DHCP_ARP_TABLE,
780 install
781 );
782 }
783 }
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]784}