78ad376117
Currently, LBaaS V1 vip's connection_limit and LBaaS V2 listeners' connection_limit can be set to a value less than -1. This patch add a validation for V1 vip's and V2 listeners' connection_limit resource. Setting value less than -1 is not allowed. Closes-Bug: #1520138 Change-Id: I9332cfeda89b87dfda9cd16dcc8b1d78b6e1dc41
519 lines
20 KiB
Python
519 lines
20 KiB
Python
# Copyright 2012 OpenStack Foundation.
|
|
# All Rights Reserved.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
|
|
import abc
|
|
|
|
from oslo_config import cfg
|
|
import six
|
|
|
|
from neutron.api import extensions
|
|
from neutron.api.v2 import attributes as attr
|
|
from neutron.api.v2 import base
|
|
from neutron.api.v2 import resource_helper
|
|
from neutron.common import exceptions as nexception
|
|
from neutron import manager
|
|
from neutron.plugins.common import constants
|
|
from neutron.services import service_base
|
|
from neutron_lbaas.extensions import loadbalancerv2
|
|
from neutron_lbaas.services.loadbalancer import constants as lb_const
|
|
|
|
LOADBALANCER_PREFIX = "/lb"
|
|
|
|
|
|
# Loadbalancer Exceptions
|
|
class DelayOrTimeoutInvalid(nexception.BadRequest):
|
|
message = _("Delay must be greater than or equal to timeout")
|
|
|
|
|
|
class NoEligibleBackend(nexception.NotFound):
|
|
message = _("No eligible backend for pool %(pool_id)s")
|
|
|
|
|
|
class VipNotFound(nexception.NotFound):
|
|
message = _("Vip %(vip_id)s could not be found")
|
|
|
|
|
|
class VipExists(nexception.NeutronException):
|
|
message = _("Another Vip already exists for pool %(pool_id)s")
|
|
|
|
|
|
class PoolNotFound(nexception.NotFound):
|
|
message = _("Pool %(pool_id)s could not be found")
|
|
|
|
|
|
class MemberNotFound(nexception.NotFound):
|
|
message = _("Member %(member_id)s could not be found")
|
|
|
|
|
|
class HealthMonitorNotFound(nexception.NotFound):
|
|
message = _("Health_monitor %(monitor_id)s could not be found")
|
|
|
|
|
|
class PoolMonitorAssociationNotFound(nexception.NotFound):
|
|
message = _("Monitor %(monitor_id)s is not associated "
|
|
"with Pool %(pool_id)s")
|
|
|
|
|
|
class PoolMonitorAssociationExists(nexception.Conflict):
|
|
message = _('health_monitor %(monitor_id)s is already associated '
|
|
'with pool %(pool_id)s')
|
|
|
|
|
|
class StateInvalid(nexception.NeutronException):
|
|
message = _("Invalid state %(state)s of Loadbalancer resource %(id)s")
|
|
|
|
|
|
class PoolInUse(nexception.InUse):
|
|
message = _("Pool %(pool_id)s is still in use")
|
|
|
|
|
|
class HealthMonitorInUse(nexception.InUse):
|
|
message = _("Health monitor %(monitor_id)s still has associations with "
|
|
"pools")
|
|
|
|
|
|
class PoolStatsNotFound(nexception.NotFound):
|
|
message = _("Statistics of Pool %(pool_id)s could not be found")
|
|
|
|
|
|
class ProtocolMismatch(nexception.BadRequest):
|
|
message = _("Protocol %(vip_proto)s does not match "
|
|
"pool protocol %(pool_proto)s")
|
|
|
|
|
|
class MemberExists(nexception.NeutronException):
|
|
message = _("Member with address %(address)s and port %(port)s "
|
|
"already present in pool %(pool)s")
|
|
|
|
|
|
attr.validators['type:connection_limit'] = (
|
|
loadbalancerv2._validate_connection_limit)
|
|
|
|
|
|
RESOURCE_ATTRIBUTE_MAP = {
|
|
'vips': {
|
|
'id': {'allow_post': False, 'allow_put': False,
|
|
'validate': {'type:uuid': None},
|
|
'is_visible': True,
|
|
'primary_key': True},
|
|
'tenant_id': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:string': None},
|
|
'required_by_policy': True,
|
|
'is_visible': True},
|
|
'name': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:string': None},
|
|
'default': '',
|
|
'is_visible': True},
|
|
'description': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:string': None},
|
|
'is_visible': True, 'default': ''},
|
|
'subnet_id': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:uuid': None},
|
|
'is_visible': True},
|
|
'address': {'allow_post': True, 'allow_put': False,
|
|
'default': attr.ATTR_NOT_SPECIFIED,
|
|
'validate': {'type:ip_address_or_none': None},
|
|
'is_visible': True},
|
|
'port_id': {'allow_post': False, 'allow_put': False,
|
|
'validate': {'type:uuid': None},
|
|
'is_visible': True},
|
|
'protocol_port': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:range': [0, 65535]},
|
|
'convert_to': attr.convert_to_int,
|
|
'is_visible': True},
|
|
'protocol': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:values': ['TCP', 'HTTP', 'HTTPS']},
|
|
'is_visible': True},
|
|
'pool_id': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:uuid': None},
|
|
'is_visible': True},
|
|
'session_persistence': {'allow_post': True, 'allow_put': True,
|
|
'convert_to': attr.convert_none_to_empty_dict,
|
|
'default': {},
|
|
'validate': {
|
|
'type:dict_or_empty': {
|
|
'type': {'type:values': ['APP_COOKIE',
|
|
'HTTP_COOKIE',
|
|
'SOURCE_IP'],
|
|
'required': True},
|
|
'cookie_name': {'type:string': None,
|
|
'required': False}}},
|
|
'is_visible': True},
|
|
'connection_limit': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:connection_limit':
|
|
lb_const.MIN_CONNECT_VALUE},
|
|
'default': lb_const.MIN_CONNECT_VALUE,
|
|
'convert_to': attr.convert_to_int,
|
|
'is_visible': True},
|
|
'admin_state_up': {'allow_post': True, 'allow_put': True,
|
|
'default': True,
|
|
'convert_to': attr.convert_to_boolean,
|
|
'is_visible': True},
|
|
'status': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True},
|
|
'status_description': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True}
|
|
},
|
|
'pools': {
|
|
'id': {'allow_post': False, 'allow_put': False,
|
|
'validate': {'type:uuid': None},
|
|
'is_visible': True,
|
|
'primary_key': True},
|
|
'tenant_id': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:string': None},
|
|
'required_by_policy': True,
|
|
'is_visible': True},
|
|
'vip_id': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True},
|
|
'name': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:string': None},
|
|
'default': '',
|
|
'is_visible': True},
|
|
'description': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:string': None},
|
|
'is_visible': True, 'default': ''},
|
|
'subnet_id': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:uuid': None},
|
|
'is_visible': True},
|
|
'protocol': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:values': ['TCP', 'HTTP', 'HTTPS']},
|
|
'is_visible': True},
|
|
'provider': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:string': None},
|
|
'is_visible': True, 'default': attr.ATTR_NOT_SPECIFIED},
|
|
'lb_method': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:values': ['ROUND_ROBIN',
|
|
'LEAST_CONNECTIONS',
|
|
'SOURCE_IP']},
|
|
'is_visible': True},
|
|
'members': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True},
|
|
'health_monitors': {'allow_post': True, 'allow_put': True,
|
|
'default': None,
|
|
'validate': {'type:uuid_list': None},
|
|
'convert_to': attr.convert_to_list,
|
|
'is_visible': True},
|
|
'health_monitors_status': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True},
|
|
'admin_state_up': {'allow_post': True, 'allow_put': True,
|
|
'default': True,
|
|
'convert_to': attr.convert_to_boolean,
|
|
'is_visible': True},
|
|
'status': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True},
|
|
'status_description': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True}
|
|
},
|
|
'members': {
|
|
'id': {'allow_post': False, 'allow_put': False,
|
|
'validate': {'type:uuid': None},
|
|
'is_visible': True,
|
|
'primary_key': True},
|
|
'tenant_id': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:string': None},
|
|
'required_by_policy': True,
|
|
'is_visible': True},
|
|
'pool_id': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:uuid': None},
|
|
'is_visible': True},
|
|
'address': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:ip_address': None},
|
|
'is_visible': True},
|
|
'protocol_port': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:range': [0, 65535]},
|
|
'convert_to': attr.convert_to_int,
|
|
'is_visible': True},
|
|
'weight': {'allow_post': True, 'allow_put': True,
|
|
'default': 1,
|
|
'validate': {'type:range': [0, 256]},
|
|
'convert_to': attr.convert_to_int,
|
|
'is_visible': True},
|
|
'admin_state_up': {'allow_post': True, 'allow_put': True,
|
|
'default': True,
|
|
'convert_to': attr.convert_to_boolean,
|
|
'is_visible': True},
|
|
'status': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True},
|
|
'status_description': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True}
|
|
},
|
|
'health_monitors': {
|
|
'id': {'allow_post': False, 'allow_put': False,
|
|
'validate': {'type:uuid': None},
|
|
'is_visible': True,
|
|
'primary_key': True},
|
|
'tenant_id': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:string': None},
|
|
'required_by_policy': True,
|
|
'is_visible': True},
|
|
'type': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:values': ['PING', 'TCP', 'HTTP', 'HTTPS']},
|
|
'is_visible': True},
|
|
'delay': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:non_negative': None},
|
|
'convert_to': attr.convert_to_int,
|
|
'is_visible': True},
|
|
'timeout': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:non_negative': None},
|
|
'convert_to': attr.convert_to_int,
|
|
'is_visible': True},
|
|
'max_retries': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:range': [1, 10]},
|
|
'convert_to': attr.convert_to_int,
|
|
'is_visible': True},
|
|
'http_method': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:string': None},
|
|
'default': 'GET',
|
|
'is_visible': True},
|
|
'url_path': {'allow_post': True, 'allow_put': True,
|
|
'validate': {'type:string': None},
|
|
'default': '/',
|
|
'is_visible': True},
|
|
'expected_codes': {'allow_post': True, 'allow_put': True,
|
|
'validate': {
|
|
'type:regex':
|
|
r'^(\d{3}(\s*,\s*\d{3})*)$|^(\d{3}-\d{3})$'},
|
|
'default': '200',
|
|
'is_visible': True},
|
|
'admin_state_up': {'allow_post': True, 'allow_put': True,
|
|
'default': True,
|
|
'convert_to': attr.convert_to_boolean,
|
|
'is_visible': True},
|
|
'status': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True},
|
|
'status_description': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True},
|
|
'pools': {'allow_post': False, 'allow_put': False,
|
|
'is_visible': True}
|
|
}
|
|
}
|
|
|
|
SUB_RESOURCE_ATTRIBUTE_MAP = {
|
|
'health_monitors': {
|
|
'parent': {'collection_name': 'pools',
|
|
'member_name': 'pool'},
|
|
'parameters': {'id': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:uuid': None},
|
|
'is_visible': True},
|
|
'tenant_id': {'allow_post': True, 'allow_put': False,
|
|
'validate': {'type:string': None},
|
|
'required_by_policy': True,
|
|
'is_visible': True},
|
|
}
|
|
}
|
|
}
|
|
|
|
lbaas_quota_opts = [
|
|
cfg.IntOpt('quota_vip',
|
|
default=10,
|
|
help=_('Number of vips allowed per tenant. '
|
|
'A negative value means unlimited.')),
|
|
cfg.IntOpt('quota_pool',
|
|
default=10,
|
|
help=_('Number of pools allowed per tenant. '
|
|
'A negative value means unlimited.')),
|
|
cfg.IntOpt('quota_member',
|
|
default=-1,
|
|
help=_('Number of pool members allowed per tenant. '
|
|
'A negative value means unlimited.')),
|
|
cfg.IntOpt('quota_health_monitor',
|
|
default=-1,
|
|
help=_('Number of health monitors allowed per tenant. '
|
|
'A negative value means unlimited.'))
|
|
]
|
|
cfg.CONF.register_opts(lbaas_quota_opts, 'QUOTAS')
|
|
|
|
|
|
class Loadbalancer(extensions.ExtensionDescriptor):
|
|
|
|
@classmethod
|
|
def get_name(cls):
|
|
return "LoadBalancing service"
|
|
|
|
@classmethod
|
|
def get_alias(cls):
|
|
return "lbaas"
|
|
|
|
@classmethod
|
|
def get_description(cls):
|
|
return "Extension for LoadBalancing service"
|
|
|
|
@classmethod
|
|
def get_namespace(cls):
|
|
return "http://wiki.openstack.org/neutron/LBaaS/API_1.0"
|
|
|
|
@classmethod
|
|
def get_updated(cls):
|
|
return "2012-10-07T10:00:00-00:00"
|
|
|
|
@classmethod
|
|
def get_resources(cls):
|
|
plural_mappings = resource_helper.build_plural_mappings(
|
|
{}, RESOURCE_ATTRIBUTE_MAP)
|
|
plural_mappings['health_monitors_status'] = 'health_monitor_status'
|
|
attr.PLURALS.update(plural_mappings)
|
|
action_map = {'pool': {'stats': 'GET'}}
|
|
resources = resource_helper.build_resource_info(plural_mappings,
|
|
RESOURCE_ATTRIBUTE_MAP,
|
|
constants.LOADBALANCER,
|
|
action_map=action_map,
|
|
register_quota=True)
|
|
plugin = manager.NeutronManager.get_service_plugins()[
|
|
constants.LOADBALANCER]
|
|
for collection_name in SUB_RESOURCE_ATTRIBUTE_MAP:
|
|
# Special handling needed for sub-resources with 'y' ending
|
|
# (e.g. proxies -> proxy)
|
|
resource_name = collection_name[:-1]
|
|
parent = SUB_RESOURCE_ATTRIBUTE_MAP[collection_name].get('parent')
|
|
params = SUB_RESOURCE_ATTRIBUTE_MAP[collection_name].get(
|
|
'parameters')
|
|
|
|
controller = base.create_resource(collection_name, resource_name,
|
|
plugin, params,
|
|
allow_bulk=True,
|
|
parent=parent)
|
|
|
|
resource = extensions.ResourceExtension(
|
|
collection_name,
|
|
controller, parent,
|
|
path_prefix=LOADBALANCER_PREFIX,
|
|
attr_map=params)
|
|
resources.append(resource)
|
|
|
|
return resources
|
|
|
|
@classmethod
|
|
def get_plugin_interface(cls):
|
|
return LoadBalancerPluginBase
|
|
|
|
def update_attributes_map(self, attributes, extension_attrs_map=None):
|
|
super(Loadbalancer, self).update_attributes_map(
|
|
attributes, extension_attrs_map=RESOURCE_ATTRIBUTE_MAP)
|
|
|
|
def get_extended_resources(self, version):
|
|
if version == "2.0":
|
|
return RESOURCE_ATTRIBUTE_MAP
|
|
else:
|
|
return {}
|
|
|
|
|
|
@six.add_metaclass(abc.ABCMeta)
|
|
class LoadBalancerPluginBase(service_base.ServicePluginBase):
|
|
|
|
def get_plugin_name(self):
|
|
return constants.LOADBALANCER
|
|
|
|
def get_plugin_type(self):
|
|
return constants.LOADBALANCER
|
|
|
|
def get_plugin_description(self):
|
|
return 'LoadBalancer service plugin'
|
|
|
|
@abc.abstractmethod
|
|
def get_vips(self, context, filters=None, fields=None):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def get_vip(self, context, id, fields=None):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def create_vip(self, context, vip):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def update_vip(self, context, id, vip):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def delete_vip(self, context, id):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def get_pools(self, context, filters=None, fields=None):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def get_pool(self, context, id, fields=None):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def create_pool(self, context, pool):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def update_pool(self, context, id, pool):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def delete_pool(self, context, id):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def stats(self, context, pool_id):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def create_pool_health_monitor(self, context, health_monitor, pool_id):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def get_pool_health_monitor(self, context, id, pool_id, fields=None):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def delete_pool_health_monitor(self, context, id, pool_id):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def get_members(self, context, filters=None, fields=None):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def get_member(self, context, id, fields=None):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def create_member(self, context, member):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def update_member(self, context, id, member):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def delete_member(self, context, id):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def get_health_monitors(self, context, filters=None, fields=None):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def get_health_monitor(self, context, id, fields=None):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def create_health_monitor(self, context, health_monitor):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def update_health_monitor(self, context, id, health_monitor):
|
|
pass
|
|
|
|
@abc.abstractmethod
|
|
def delete_health_monitor(self, context, id):
|
|
pass
|