Gitiles
Code Review Sign In
gerrit.onosproject.org / onos / a171a4351987c44255b4586f671f2e2d08cc44d1 / . / apps / openstacknetworking / app / src / main / java / org / onosproject / openstacknetworking / impl / OpenstackRoutingArpHandler.java
blob: e938a90d73f777bc252495663226116b2fa92985 [file] [log] [blame]
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]1/*
Brian O'Connora09fe5b2017-08-03 21:12:30 -0700[diff] [blame]2 * Copyright 2016-present Open Networking Foundation
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
Hyunsun Moon05400872017-02-07 17:11:25 +0900[diff] [blame]16package org.onosproject.openstacknetworking.impl;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]17
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]18import com.google.common.base.Strings;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]19import com.google.common.collect.ImmutableSet;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]20import com.google.common.collect.Maps;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]21import com.google.common.collect.Sets;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]22import org.apache.felix.scr.annotations.Activate;
23import org.apache.felix.scr.annotations.Component;
24import org.apache.felix.scr.annotations.Deactivate;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]25import org.apache.felix.scr.annotations.Modified;
26import org.apache.felix.scr.annotations.Property;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]27import org.apache.felix.scr.annotations.Reference;
28import org.apache.felix.scr.annotations.ReferenceCardinality;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]29import org.onlab.packet.ARP;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]30import org.onlab.packet.EthType;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]31import org.onlab.packet.Ethernet;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]32import org.onlab.packet.Ip4Address;
33import org.onlab.packet.IpAddress;
34import org.onlab.packet.MacAddress;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]35import org.onlab.util.Tools;
36import org.onosproject.cfg.ComponentConfigService;
37import org.onosproject.cluster.ClusterService;
38import org.onosproject.cluster.LeadershipService;
39import org.onosproject.cluster.NodeId;
40import org.onosproject.core.ApplicationId;
41import org.onosproject.core.CoreService;
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]42import org.onosproject.net.ConnectPoint;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]43import org.onosproject.net.DeviceId;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]44import org.onosproject.net.Host;
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]45import org.onosproject.net.PortNumber;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]46import org.onosproject.net.flow.DefaultTrafficSelector;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]47import org.onosproject.net.flow.DefaultTrafficTreatment;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]48import org.onosproject.net.flow.TrafficSelector;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]49import org.onosproject.net.flow.TrafficTreatment;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]50import org.onosproject.net.host.HostEvent;
51import org.onosproject.net.host.HostListener;
52import org.onosproject.net.host.HostService;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]53import org.onosproject.net.packet.DefaultOutboundPacket;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]54import org.onosproject.net.packet.InboundPacket;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]55import org.onosproject.net.packet.PacketContext;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]56import org.onosproject.net.packet.PacketProcessor;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]57import org.onosproject.net.packet.PacketService;
Hyunsun Moon05400872017-02-07 17:11:25 +0900[diff] [blame]58import org.onosproject.openstacknetworking.api.Constants;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]59import org.onosproject.openstacknetworking.api.InstancePort;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]60import org.onosproject.openstacknetworking.api.InstancePortService;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]61import org.onosproject.openstacknetworking.api.OpenstackFlowRuleService;
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]62import org.onosproject.openstacknetworking.api.OpenstackNetworkAdminService;
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]63import org.onosproject.openstacknetworking.api.OpenstackNetworkService;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]64import org.onosproject.openstacknetworking.api.OpenstackRouterEvent;
65import org.onosproject.openstacknetworking.api.OpenstackRouterListener;
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]66import org.onosproject.openstacknetworking.api.OpenstackRouterService;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]67import org.onosproject.openstacknode.api.OpenstackNode;
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]68import org.onosproject.openstacknode.api.OpenstackNodeEvent;
69import org.onosproject.openstacknode.api.OpenstackNodeListener;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]70import org.onosproject.openstacknode.api.OpenstackNodeService;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]71import org.openstack4j.model.network.ExternalGateway;
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]72import org.openstack4j.model.network.IP;
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]73import org.openstack4j.model.network.NetFloatingIP;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]74import org.openstack4j.model.network.Port;
75import org.openstack4j.model.network.Router;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]76import org.osgi.service.component.ComponentContext;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]77import org.slf4j.Logger;
78
79import java.nio.ByteBuffer;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]80import java.util.Dictionary;
81import java.util.Map;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]82import java.util.Objects;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]83import java.util.Set;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]84import java.util.concurrent.ExecutorService;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]85import java.util.stream.Collectors;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]86
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]87import static java.util.concurrent.Executors.newSingleThreadExecutor;
88import static org.onlab.util.Tools.groupedThreads;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]89import static org.onosproject.openstacknetworking.api.Constants.ARP_BROADCAST_MODE;
90import static org.onosproject.openstacknetworking.api.Constants.ARP_PROXY_MODE;
91import static org.onosproject.openstacknetworking.api.Constants.DEFAULT_ARP_MODE_STR;
92import static org.onosproject.openstacknetworking.api.Constants.DEFAULT_GATEWAY_MAC_STR;
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]93import static org.onosproject.openstacknetworking.api.Constants.DHCP_ARP_TABLE;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]94import static org.onosproject.openstacknetworking.api.Constants.GW_COMMON_TABLE;
95import static org.onosproject.openstacknetworking.api.Constants.OPENSTACK_NETWORKING_APP_ID;
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]96import static org.onosproject.openstacknetworking.api.Constants.PRIORITY_ARP_CONTROL_RULE;
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]97import static org.onosproject.openstacknetworking.api.Constants.PRIORITY_ARP_GATEWAY_RULE;
98import static org.onosproject.openstacknetworking.impl.HostBasedInstancePort.ANNOTATION_NETWORK_ID;
99import static org.onosproject.openstacknetworking.impl.HostBasedInstancePort.ANNOTATION_PORT_ID;
Jian Lia171a432018-06-11 11:52:11 +0900[diff] [blame^]100import static org.onosproject.openstacknetworking.util.OpenstackNetworkingUtil.getGwByInstancePort;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]101import static org.onosproject.openstacknode.api.OpenstackNode.NodeType.GATEWAY;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]102import static org.slf4j.LoggerFactory.getLogger;
103
104/**
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]105 * Handle ARP requests from gateway nodes.
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]106 */
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]107@Component(immediate = true)
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]108public class OpenstackRoutingArpHandler {
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]109
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]110 private final Logger log = getLogger(getClass());
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]111
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]112 private static final String DEVICE_OWNER_ROUTER_GW = "network:router_gateway";
113 private static final String DEVICE_OWNER_FLOATING_IP = "network:floatingip";
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]114 private static final String ARP_MODE = "arpMode";
115
116 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
117 protected CoreService coreService;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]118
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]119 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
120 protected PacketService packetService;
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]121
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]122 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]123 protected OpenstackNetworkAdminService osNetworkAdminService;
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]124
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]125 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]126 protected OpenstackRouterService osRouterService;
127
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]128 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
daniel parke49eb382017-04-05 16:48:28 +0900[diff] [blame]129 protected OpenstackNodeService osNodeService;
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]130
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]131 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]132 protected InstancePortService instancePortService;
133
134 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]135 protected ClusterService clusterService;
136
137 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
138 protected LeadershipService leadershipService;
139
140 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
141 protected OpenstackFlowRuleService osFlowRuleService;
142
143 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]144 protected OpenstackNetworkService osNetworkService;
145
146 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]147 protected ComponentConfigService configService;
148
149 @Reference(cardinality = ReferenceCardinality.MANDATORY_UNARY)
150 protected HostService hostService;
151
152 // TODO: need to find a way to unify aprMode and gatewayMac variables with
153 // that in SwitchingArpHandler
154 @Property(name = ARP_MODE, value = DEFAULT_ARP_MODE_STR,
Jian Li1478f292018-05-28 17:10:59 +0900[diff] [blame]155 label = "ARP processing mode, broadcast (default) | proxy ")
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]156 protected String arpMode = DEFAULT_ARP_MODE_STR;
157
158 protected String gatewayMac = DEFAULT_GATEWAY_MAC_STR;
159
160 private final OpenstackRouterListener osRouterListener = new InternalRouterEventListener();
161 private final HostListener hostListener = new InternalHostListener();
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]162 private final OpenstackNodeListener osNodeListener = new InternalNodeEventListener();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]163
164 private ApplicationId appId;
165 private NodeId localNodeId;
166 private Map<String, String> floatingIpMacMap = Maps.newConcurrentMap();
167
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]168 private final ExecutorService eventExecutor = newSingleThreadExecutor(
169 groupedThreads(this.getClass().getSimpleName(), "event-handler", log));
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]170
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]171 private final PacketProcessor packetProcessor = new InternalPacketProcessor();
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]172
173 @Activate
174 protected void activate() {
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]175 appId = coreService.registerApplication(OPENSTACK_NETWORKING_APP_ID);
176 configService.registerProperties(getClass());
177 localNodeId = clusterService.getLocalNode().id();
178 osRouterService.addListener(osRouterListener);
179 hostService.addListener(hostListener);
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]180 osNodeService.addListener(osNodeListener);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]181 leadershipService.runForLeadership(appId.name());
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]182 packetService.addProcessor(packetProcessor, PacketProcessor.director(1));
183 log.info("Started");
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]184 }
185
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]186 @Deactivate
187 protected void deactivate() {
188 packetService.removeProcessor(packetProcessor);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]189 hostService.removeListener(hostListener);
190 osRouterService.removeListener(osRouterListener);
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]191 osNodeService.removeListener(osNodeListener);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]192 leadershipService.withdraw(appId.name());
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]193 eventExecutor.shutdown();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]194 configService.unregisterProperties(getClass(), false);
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]195 log.info("Stopped");
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]196 }
197
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]198 // TODO: need to find a way to unify aprMode and gatewayMac variables with
199 // that in SwitchingArpHandler
200 @Modified
201 void modified(ComponentContext context) {
202 Dictionary<?, ?> properties = context.getProperties();
203 String updateArpMode;
204
205 updateArpMode = Tools.get(properties, ARP_MODE);
206 if (!Strings.isNullOrEmpty(updateArpMode) && !updateArpMode.equals(arpMode)) {
207 arpMode = updateArpMode;
208 }
209
210 log.info("Modified");
211 }
212
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]213 private void processArpPacket(PacketContext context, Ethernet ethernet) {
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]214 ARP arp = (ARP) ethernet.getPayload();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]215
216 if (arp.getOpCode() == ARP.OP_REQUEST && arpMode.equals(ARP_PROXY_MODE)) {
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]217 if (log.isTraceEnabled()) {
218 log.trace("ARP request received from {} for {}",
219 Ip4Address.valueOf(arp.getSenderProtocolAddress()).toString(),
220 Ip4Address.valueOf(arp.getTargetProtocolAddress()).toString());
221 }
222
223 IpAddress targetIp = Ip4Address.valueOf(arp.getTargetProtocolAddress());
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]224
225 MacAddress targetMac = null;
226
227 NetFloatingIP floatingIP = osRouterService.floatingIps().stream()
228 .filter(ip -> ip.getFloatingIpAddress().equals(targetIp.toString()))
229 .findAny().orElse(null);
230
daniel park576969a2018-03-09 07:07:41 +0900[diff] [blame]231 //In case target ip is for associated floating ip, sets target mac to vm's.
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]232 if (floatingIP != null && floatingIP.getPortId() != null) {
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]233 targetMac = MacAddress.valueOf(osNetworkAdminService.port(
234 floatingIP.getPortId()).getMacAddress());
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]235 }
236
237 if (isExternalGatewaySourceIp(targetIp.getIp4Address())) {
238 targetMac = Constants.DEFAULT_GATEWAY_MAC;
239 }
240
241 if (targetMac == null) {
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]242 log.trace("Unknown target ARP request for {}, ignore it", targetIp);
243 return;
244 }
245
Jian Lia171a432018-06-11 11:52:11 +0900[diff] [blame^]246 InstancePort instPort = instancePortService.instancePort(targetMac);
247
248 OpenstackNode gw = getGwByInstancePort(osNodeService.completeNodes(GATEWAY), instPort);
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]249
250 if (gw == null) {
251 return;
252 }
253
254 // if the ARP packet_in received from non-relevant GWs, we simply ignore it
255 if (!Objects.equals(gw.intgBridge(), context.inPacket().receivedFrom().deviceId())) {
256 return;
257 }
258
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]259 Ethernet ethReply = ARP.buildArpReply(targetIp.getIp4Address(),
260 targetMac, ethernet);
261
262 TrafficTreatment treatment = DefaultTrafficTreatment.builder()
daniel park576969a2018-03-09 07:07:41 +0900[diff] [blame]263 .setOutput(context.inPacket().receivedFrom().port()).build();
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]264
265 packetService.emit(new DefaultOutboundPacket(
266 context.inPacket().receivedFrom().deviceId(),
267 treatment,
268 ByteBuffer.wrap(ethReply.serialize())));
269
270 context.block();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]271 }
272
273 if (arp.getOpCode() == ARP.OP_REPLY) {
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]274 ConnectPoint cp = context.inPacket().receivedFrom();
275 PortNumber receivedPortNum = cp.port();
276 IpAddress spa = Ip4Address.valueOf(arp.getSenderProtocolAddress());
277 MacAddress sha = MacAddress.valueOf(arp.getSenderHardwareAddress());
278
279 log.debug("ARP reply ip: {}, mac: {}", spa, sha);
280
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]281 try {
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]282
Jian Lid4066ea2018-06-07 01:44:45 +0900[diff] [blame]283 Set<String> extRouterIps = osNetworkService.externalPeerRouters().
284 stream().map(r -> r.externalPeerRouterIp().toString()).collect(Collectors.toSet());
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]285
Jian Lid4066ea2018-06-07 01:44:45 +0900[diff] [blame]286 // if SPA is NOT contained in existing external router IP set, we ignore it
287 if (!extRouterIps.contains(spa.toString())) {
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]288 return;
289 }
290
291 OpenstackNode node = osNodeService.node(cp.deviceId());
292
293 if (node == null) {
294 return;
295 }
296
297 // we only handles the ARP-Reply message received by gateway node
298 if (node.type() != GATEWAY) {
299 return;
300 }
301
302 if (receivedPortNum.equals(node.uplinkPortNum())) {
303 osNetworkAdminService.updateExternalPeerRouterMac(spa, sha);
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]304 }
305 } catch (Exception e) {
Jian Li14a79f22018-06-05 03:44:22 +0900[diff] [blame]306 log.error("Exception occurred because of {}", e);
daniel parkb5817102018-02-15 00:18:51 +0900[diff] [blame]307 }
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]308 }
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]309 }
310
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]311 private class InternalPacketProcessor implements PacketProcessor {
312
313 @Override
314 public void process(PacketContext context) {
315 if (context.isHandled()) {
316 return;
Hyunsun Moon0d457362017-06-27 17:19:41 +0900[diff] [blame]317 }
318
319 Set<DeviceId> gateways = osNodeService.completeNodes(GATEWAY)
320 .stream().map(OpenstackNode::intgBridge)
321 .collect(Collectors.toSet());
322
323 if (!gateways.contains(context.inPacket().receivedFrom().deviceId())) {
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]324 // return if the packet is not from gateway nodes
325 return;
326 }
327
328 InboundPacket pkt = context.inPacket();
329 Ethernet ethernet = pkt.parsed();
330 if (ethernet != null &&
331 ethernet.getEtherType() == Ethernet.TYPE_ARP) {
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]332 eventExecutor.execute(() -> processArpPacket(context, ethernet));
Hyunsun Moonb3eb84d2016-07-27 19:10:52 -0700[diff] [blame]333 }
334 }
335 }
336
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]337 private boolean isExternalGatewaySourceIp(IpAddress targetIp) {
daniel park32b42202018-03-14 16:53:44 +0900[diff] [blame]338 return osNetworkAdminService.ports().stream()
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]339 .filter(osPort -> Objects.equals(osPort.getDeviceOwner(),
daniel parkeeb8e042018-02-21 14:06:58 +0900[diff] [blame]340 DEVICE_OWNER_ROUTER_GW))
Hyunsun Moon44aac662017-02-18 02:07:01 +0900[diff] [blame]341 .flatMap(osPort -> osPort.getFixedIps().stream())
342 .anyMatch(ip -> IpAddress.valueOf(ip.getIpAddress()).equals(targetIp));
Kyuhwi Choi92d9ea42016-06-13 17:28:00 +0900[diff] [blame]343 }
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]344
345 // FIXME: need to find a way to invoke this method during node initialization
346 private void initFloatingIpMacMap() {
347 osRouterService.floatingIps().forEach(f -> {
348 if (f.getPortId() != null && f.getFloatingIpAddress() != null) {
349 Port port = osNetworkAdminService.port(f.getPortId());
350 if (port != null && port.getMacAddress() != null) {
351 floatingIpMacMap.put(f.getFloatingIpAddress(), port.getMacAddress());
352 }
353 }
354 });
355 }
356
357 /**
358 * Installs static ARP rules used in ARP BROAD_CAST mode.
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]359 *
360 * @param gateway gateway node
361 * @param install flow rule installation flag
362 */
363 private void setFloatingIpArpRuleForGateway(OpenstackNode gateway, boolean install) {
364 if (arpMode.equals(ARP_BROADCAST_MODE)) {
365
366 Set<OpenstackNode> completedGws = osNodeService.completeNodes(GATEWAY);
367 Set<OpenstackNode> finalGws = Sets.newConcurrentHashSet();
368 finalGws.addAll(ImmutableSet.copyOf(completedGws));
369
370 if (install) {
371 if (completedGws.contains(gateway)) {
372 if (completedGws.size() > 1) {
373 finalGws.remove(gateway);
374 osRouterService.floatingIps().forEach(fip -> {
375 if (fip.getPortId() != null) {
376 setFloatingIpArpRule(fip, finalGws, false);
377 finalGws.add(gateway);
378 }
379 });
380 }
381 osRouterService.floatingIps().forEach(fip -> {
382 if (fip.getPortId() != null) {
383 setFloatingIpArpRule(fip, finalGws, true);
384 }
385 });
386 } else {
387 log.warn("Detected node should be included in completed gateway set");
388 }
389 } else {
390 if (!completedGws.contains(gateway)) {
391 finalGws.add(gateway);
392 osRouterService.floatingIps().forEach(fip -> {
393 if (fip.getPortId() != null) {
394 setFloatingIpArpRule(fip, finalGws, false);
395 }
396 });
397 finalGws.remove(gateway);
398 if (completedGws.size() >= 1) {
399 osRouterService.floatingIps().forEach(fip -> {
400 if (fip.getPortId() != null) {
401 setFloatingIpArpRule(fip, finalGws, true);
402 }
403 });
404 }
405 } else {
406 log.warn("Detected node should NOT be included in completed gateway set");
407 }
408 }
409 }
410 }
411
412 /**
413 * Installs static ARP rules used in ARP BROAD_CAST mode.
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]414 * Note that, those rules will be only matched ARP_REQUEST packets,
415 * used for telling gateway node the mapped MAC address of requested IP,
416 * without the helps from controller.
417 *
418 * @param fip floating IP address
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]419 * @param gateways a set of gateway nodes
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]420 * @param install flow rule installation flag
421 */
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]422 private synchronized void setFloatingIpArpRule(NetFloatingIP fip,
423 Set<OpenstackNode> gateways,
424 boolean install) {
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]425 if (arpMode.equals(ARP_BROADCAST_MODE)) {
426
427 if (fip == null) {
428 log.warn("Failed to set ARP broadcast rule for floating IP");
429 return;
430 }
431
432 String macString;
433
434 if (install) {
435 if (fip.getPortId() != null) {
436 macString = osNetworkAdminService.port(fip.getPortId()).getMacAddress();
437 floatingIpMacMap.put(fip.getFloatingIpAddress(), macString);
438 } else {
439 log.trace("Unknown target ARP request for {}, ignore it",
440 fip.getFloatingIpAddress());
441 return;
442 }
443 } else {
444 macString = floatingIpMacMap.get(fip.getFloatingIpAddress());
445 }
446
447 MacAddress targetMac = MacAddress.valueOf(macString);
Jian Lia171a432018-06-11 11:52:11 +0900[diff] [blame^]448 InstancePort instPort = instancePortService.instancePort(targetMac);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]449
Jian Lia171a432018-06-11 11:52:11 +0900[diff] [blame^]450 OpenstackNode gw = getGwByInstancePort(gateways, instPort);
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]451
452 if (gw == null) {
453 return;
454 }
455
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]456 TrafficSelector selector = DefaultTrafficSelector.builder()
457 .matchEthType(EthType.EtherType.ARP.ethType().toShort())
458 .matchArpOp(ARP.OP_REQUEST)
459 .matchArpTpa(Ip4Address.valueOf(fip.getFloatingIpAddress()))
460 .build();
461
462 TrafficTreatment treatment = DefaultTrafficTreatment.builder()
463 .setArpOp(ARP.OP_REPLY)
464 .setArpSha(targetMac)
465 .setArpSpa(Ip4Address.valueOf(fip.getFloatingIpAddress()))
466 .setOutput(PortNumber.IN_PORT)
467 .build();
468
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]469 osFlowRuleService.setRule(
470 appId,
471 gw.intgBridge(),
472 selector,
473 treatment,
474 PRIORITY_ARP_GATEWAY_RULE,
475 GW_COMMON_TABLE,
476 install
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]477 );
478
479 if (install) {
480 log.info("Install ARP Rule for Floating IP {}",
481 fip.getFloatingIpAddress());
482 } else {
483 log.info("Uninstall ARP Rule for Floating IP {}",
484 fip.getFloatingIpAddress());
485 }
486 }
487 }
488
489 /**
490 * An internal router event listener, intended to install/uninstall
491 * ARP rules for forwarding packets created from floating IPs.
492 */
493 private class InternalRouterEventListener implements OpenstackRouterListener {
494
495 @Override
496 public boolean isRelevant(OpenstackRouterEvent event) {
497 // do not allow to proceed without leadership
498 NodeId leader = leadershipService.getLeader(appId.name());
499 return Objects.equals(localNodeId, leader);
500 }
501
502 @Override
503 public void event(OpenstackRouterEvent event) {
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]504
505 Set<OpenstackNode> completedGws = osNodeService.completeNodes(GATEWAY);
506
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]507 switch (event.type()) {
508 case OPENSTACK_ROUTER_CREATED:
509 eventExecutor.execute(() ->
510 // add a router with external gateway
511 setFakeGatewayArpRule(event.subject(), true)
512 );
513 break;
514 case OPENSTACK_ROUTER_REMOVED:
515 eventExecutor.execute(() ->
516 // remove a router with external gateway
517 setFakeGatewayArpRule(event.subject(), false)
518 );
519 break;
520 case OPENSTACK_ROUTER_GATEWAY_ADDED:
521 eventExecutor.execute(() ->
522 // add a gateway manually after adding a router
523 setFakeGatewayArpRule(event.externalGateway(), true)
524 );
525 break;
526 case OPENSTACK_ROUTER_GATEWAY_REMOVED:
527 eventExecutor.execute(() ->
528 // remove a gateway from an existing router
529 setFakeGatewayArpRule(event.externalGateway(), false)
530 );
531 break;
532 case OPENSTACK_FLOATING_IP_ASSOCIATED:
533 eventExecutor.execute(() ->
534 // associate a floating IP with an existing VM
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]535 setFloatingIpArpRule(event.floatingIp(), completedGws, true)
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]536 );
537 break;
538 case OPENSTACK_FLOATING_IP_DISASSOCIATED:
539 eventExecutor.execute(() ->
540 // disassociate a floating IP with the existing VM
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]541 setFloatingIpArpRule(event.floatingIp(), completedGws, false)
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]542 );
543 break;
544 case OPENSTACK_FLOATING_IP_CREATED:
545 eventExecutor.execute(() -> {
546 NetFloatingIP osFip = event.floatingIp();
547
548 // during floating IP creation, if the floating IP is
549 // associated with any port of VM, then we will set
550 // floating IP related ARP rules to gateway node
551 if (!Strings.isNullOrEmpty(osFip.getPortId())) {
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]552 setFloatingIpArpRule(osFip, completedGws, true);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]553 }
554 });
555 break;
556 case OPENSTACK_FLOATING_IP_REMOVED:
557 eventExecutor.execute(() -> {
558 NetFloatingIP osFip = event.floatingIp();
559
560 // during floating IP deletion, if the floating IP is
561 // still associated with any port of VM, then we will
562 // remove floating IP related ARP rules from gateway node
563 if (!Strings.isNullOrEmpty(osFip.getPortId())) {
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]564 setFloatingIpArpRule(event.floatingIp(), completedGws, false);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]565 }
566 });
567 break;
568 default:
569 // do nothing for the other events
570 break;
571 }
572 }
573
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]574 private Set<IP> getExternalGatewaySnatIps(ExternalGateway extGw) {
575 return osNetworkAdminService.ports().stream()
576 .filter(port ->
577 Objects.equals(port.getNetworkId(), extGw.getNetworkId()))
578 .filter(port ->
579 Objects.equals(port.getDeviceOwner(), DEVICE_OWNER_ROUTER_GW))
580 .flatMap(port -> port.getFixedIps().stream())
581 .collect(Collectors.toSet());
582 }
583
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]584 private void setFakeGatewayArpRule(ExternalGateway extGw, boolean install) {
585 if (arpMode.equals(ARP_BROADCAST_MODE)) {
586
587 if (extGw == null) {
588 return;
589 }
590
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]591 Set<IP> ips = getExternalGatewaySnatIps(extGw);
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]592
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]593 ips.forEach(ip -> {
594 TrafficSelector selector = DefaultTrafficSelector.builder()
595 .matchEthType(EthType.EtherType.ARP.ethType().toShort())
596 .matchArpOp(ARP.OP_REQUEST)
597 .matchArpTpa(Ip4Address.valueOf(ip.getIpAddress()))
598 .build();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]599
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]600 TrafficTreatment treatment = DefaultTrafficTreatment.builder()
601 .setArpOp(ARP.OP_REPLY)
602 .setArpSha(MacAddress.valueOf(gatewayMac))
603 .setArpSpa(Ip4Address.valueOf(ip.getIpAddress()))
604 .setOutput(PortNumber.IN_PORT)
605 .build();
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]606
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]607 osNodeService.completeNodes(GATEWAY).forEach(n ->
608 osFlowRuleService.setRule(
609 appId,
610 n.intgBridge(),
611 selector,
612 treatment,
613 PRIORITY_ARP_GATEWAY_RULE,
614 GW_COMMON_TABLE,
615 install
616 )
617 );
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]618
Jian Li4df657b2018-05-29 16:39:00 +0900[diff] [blame]619 if (install) {
620 log.info("Install ARP Rule for Gateway Snat {}", ip.getIpAddress());
621 } else {
622 log.info("Uninstall ARP Rule for Gateway Snat {}", ip.getIpAddress());
623 }
624 });
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]625 }
626 }
627
628 private void setFakeGatewayArpRule(Router router, boolean install) {
629 setFakeGatewayArpRule(router.getExternalGatewayInfo(), install);
630 }
631 }
632
633 /**
634 * An internal host event listener, intended to uninstall
635 * ARP rules during host removal. Note that this is only valid when users
636 * remove host without disassociating floating IP with existing VM.
637 */
638 private class InternalHostListener implements HostListener {
639
640 @Override
641 public boolean isRelevant(HostEvent event) {
642 Host host = event.subject();
643 if (!isValidHost(host)) {
644 log.debug("Invalid host detected, ignore it {}", host);
645 return false;
646 }
647 return true;
648 }
649
650 @Override
651 public void event(HostEvent event) {
652 InstancePort instPort = HostBasedInstancePort.of(event.subject());
653 switch (event.type()) {
654 case HOST_REMOVED:
655 removeArpRuleByInstancePort(instPort);
656 break;
657 case HOST_UPDATED:
658 case HOST_ADDED:
659 default:
660 break;
661 }
662 }
663
664 private void removeArpRuleByInstancePort(InstancePort port) {
665 Set<NetFloatingIP> ips = osRouterService.floatingIps();
666 for (NetFloatingIP fip : ips) {
667 if (Strings.isNullOrEmpty(fip.getFixedIpAddress())) {
668 continue;
669 }
670 if (Strings.isNullOrEmpty(fip.getFloatingIpAddress())) {
671 continue;
672 }
673 if (fip.getFixedIpAddress().equals(port.ipAddress().toString())) {
674 eventExecutor.execute(() ->
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]675 setFloatingIpArpRule(fip,
676 osNodeService.completeNodes(GATEWAY), false)
Jian Li60312252018-05-10 18:40:32 +0900[diff] [blame]677 );
678 }
679 }
680 }
681
682 // TODO: should be extracted as an utility helper method sooner
683 private boolean isValidHost(Host host) {
684 return !host.ipAddresses().isEmpty() &&
685 host.annotations().value(ANNOTATION_NETWORK_ID) != null &&
686 host.annotations().value(ANNOTATION_PORT_ID) != null;
687 }
688 }
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]689
690 private class InternalNodeEventListener implements OpenstackNodeListener {
691
692 @Override
693 public boolean isRelevant(OpenstackNodeEvent event) {
694 // do not allow to proceed without leadership
695 NodeId leader = leadershipService.getLeader(appId.name());
Jian Li51b844c2018-05-31 10:59:03 +0900[diff] [blame]696 return Objects.equals(localNodeId, leader) && event.subject().type() == GATEWAY;
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]697 }
698
699 @Override
700 public void event(OpenstackNodeEvent event) {
701 OpenstackNode osNode = event.subject();
702 switch (event.type()) {
703 case OPENSTACK_NODE_COMPLETE:
Jian Li51b844c2018-05-31 10:59:03 +0900[diff] [blame]704 setDefaultArpRule(osNode, true);
705 setFloatingIpArpRuleForGateway(osNode, true);
Jian Li1064e4f2018-05-29 16:16:53 +0900[diff] [blame]706
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]707 break;
708 case OPENSTACK_NODE_INCOMPLETE:
Jian Li51b844c2018-05-31 10:59:03 +0900[diff] [blame]709 setDefaultArpRule(osNode, false);
710 setFloatingIpArpRuleForGateway(osNode, false);
Jian Lif96685c2018-05-21 14:14:16 +0900[diff] [blame]711 break;
712 default:
713 break;
714 }
715 }
716
717 private void setDefaultArpRule(OpenstackNode osNode, boolean install) {
718 switch (arpMode) {
719 case ARP_PROXY_MODE:
720 setDefaultArpRuleForProxyMode(osNode, install);
721 break;
722 case ARP_BROADCAST_MODE:
723 setDefaultArpRuleForBroadcastMode(osNode, install);
724 break;
725 default:
726 log.warn("Invalid ARP mode {}. Please use either " +
727 "broadcast or proxy mode.", arpMode);
728 break;
729 }
730 }
731
732 private void setDefaultArpRuleForProxyMode(OpenstackNode osNode, boolean install) {
733 TrafficSelector selector = DefaultTrafficSelector.builder()
734 .matchEthType(EthType.EtherType.ARP.ethType().toShort())
735 .build();
736
737 TrafficTreatment treatment = DefaultTrafficTreatment.builder()
738 .punt()
739 .build();
740
741 osFlowRuleService.setRule(
742 appId,
743 osNode.intgBridge(),
744 selector,
745 treatment,
746 PRIORITY_ARP_CONTROL_RULE,
747 DHCP_ARP_TABLE,
748 install
749 );
750 }
751
752 private void setDefaultArpRuleForBroadcastMode(OpenstackNode osNode, boolean install) {
753 // we only match ARP_REPLY in gateway node, because controller
754 // somehow need to process ARP_REPLY which is issued from
755 // external router...
756 TrafficSelector selector = DefaultTrafficSelector.builder()
757 .matchEthType(EthType.EtherType.ARP.ethType().toShort())
758 .matchArpOp(ARP.OP_REPLY)
759 .build();
760
761 TrafficTreatment treatment = DefaultTrafficTreatment.builder()
762 .punt()
763 .build();
764
765 osFlowRuleService.setRule(
766 appId,
767 osNode.intgBridge(),
768 selector,
769 treatment,
770 PRIORITY_ARP_CONTROL_RULE,
771 DHCP_ARP_TABLE,
772 install
773 );
774 }
775 }
Daniel Park81a61a12016-02-26 08:24:44 +0900[diff] [blame]776}