c968f40967
This reverts commit28f3017a90
. Reason for revert: It breaks Neutron server to start if OVN database is large. Also Neutron server shouldn't be configuring other services, it should be done rather by an installer. Change-Id: Ia1dc8072ecec1c019dd02039dadd78d544dbd843 (cherry picked from commit30d1a40c50
)
616 lines
21 KiB
Python
616 lines
21 KiB
Python
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
|
|
import collections
|
|
import inspect
|
|
import os
|
|
import re
|
|
|
|
import netaddr
|
|
from neutron_lib.api.definitions import availability_zone as az_def
|
|
from neutron_lib.api.definitions import external_net
|
|
from neutron_lib.api.definitions import extra_dhcp_opt as edo_ext
|
|
from neutron_lib.api.definitions import l3
|
|
from neutron_lib.api.definitions import port_security as psec
|
|
from neutron_lib.api.definitions import portbindings
|
|
from neutron_lib.api import validators
|
|
from neutron_lib import constants as const
|
|
from neutron_lib import context as n_context
|
|
from neutron_lib import exceptions as n_exc
|
|
from neutron_lib.plugins import directory
|
|
from neutron_lib.utils import net as n_utils
|
|
from oslo_config import cfg
|
|
from oslo_log import log
|
|
from oslo_utils import netutils
|
|
from oslo_utils import strutils
|
|
from ovs.db import idl
|
|
from ovsdbapp.backend.ovs_idl import connection
|
|
from ovsdbapp.backend.ovs_idl import idlutils
|
|
from ovsdbapp import constants as ovsdbapp_const
|
|
|
|
from neutron._i18n import _
|
|
from neutron.common.ovn import constants
|
|
from neutron.common.ovn import exceptions as ovn_exc
|
|
from neutron.common import utils as common_utils
|
|
from neutron.conf.plugins.ml2.drivers.ovn import ovn_conf
|
|
|
|
LOG = log.getLogger(__name__)
|
|
|
|
CONF = cfg.CONF
|
|
|
|
DNS_RESOLVER_FILE = "/etc/resolv.conf"
|
|
|
|
AddrPairsDiff = collections.namedtuple(
|
|
'AddrPairsDiff', ['added', 'removed', 'changed'])
|
|
|
|
PortExtraDHCPValidation = collections.namedtuple(
|
|
'PortExtraDHCPValidation', ['failed', 'invalid_ipv4', 'invalid_ipv6'])
|
|
|
|
|
|
def ovn_name(id):
|
|
# The name of the OVN entry will be neutron-<UUID>
|
|
# This is due to the fact that the OVN application checks if the name
|
|
# is a UUID. If so then there will be no matches.
|
|
# We prefix the UUID to enable us to use the Neutron UUID when
|
|
# updating, deleting etc.
|
|
return 'neutron-%s' % id
|
|
|
|
|
|
def ovn_lrouter_port_name(id):
|
|
# The name of the OVN lrouter port entry will be lrp-<UUID>
|
|
# This is to distinguish with the name of the connected lswitch patch port,
|
|
# which is named with neutron port uuid, so that OVS patch ports are
|
|
# generated properly. The pairing patch port names will be:
|
|
# - patch-lrp-<UUID>-to-<UUID>
|
|
# - patch-<UUID>-to-lrp-<UUID>
|
|
# lrp stands for Logical Router Port
|
|
return constants.LRP_PREFIX + '%s' % id
|
|
|
|
|
|
def ovn_provnet_port_name(network_id):
|
|
# The name of OVN lswitch provider network port entry will be
|
|
# provnet-<Network-UUID>. The port is created for network having
|
|
# provider:physical_network attribute.
|
|
return constants.OVN_PROVNET_PORT_NAME_PREFIX + '%s' % network_id
|
|
|
|
|
|
def ovn_vhu_sockpath(sock_dir, port_id):
|
|
# Frame the socket path of a virtio socket
|
|
return os.path.join(
|
|
sock_dir,
|
|
# this parameter will become the virtio port name,
|
|
# so it should not exceed IFNAMSIZ(16).
|
|
(const.VHOST_USER_DEVICE_PREFIX + port_id)[:14])
|
|
|
|
|
|
def ovn_addrset_name(sg_id, ip_version):
|
|
# The name of the address set for the given security group id and ip
|
|
# version. The format is:
|
|
# as-<ip version>-<security group uuid>
|
|
# with all '-' replaced with '_'. This replacement is necessary
|
|
# because OVN doesn't support '-' in an address set name.
|
|
return ('as-%s-%s' % (ip_version, sg_id)).replace('-', '_')
|
|
|
|
|
|
def ovn_pg_addrset_name(sg_id, ip_version):
|
|
# The name of the address set for the given security group id modelled as a
|
|
# Port Group and ip version. The format is:
|
|
# pg-<security group uuid>-<ip version>
|
|
# with all '-' replaced with '_'. This replacement is necessary
|
|
# because OVN doesn't support '-' in an address set name.
|
|
return ('pg-%s-%s' % (sg_id, ip_version)).replace('-', '_')
|
|
|
|
|
|
def ovn_port_group_name(sg_id):
|
|
# The name of the port group for the given security group id.
|
|
# The format is: pg-<security group uuid>.
|
|
return ('pg-%s' % sg_id).replace('-', '_')
|
|
|
|
|
|
def is_network_device_port(port):
|
|
return port.get('device_owner', '').startswith(
|
|
const.DEVICE_OWNER_PREFIXES)
|
|
|
|
|
|
def _is_dhcp_disabled(dhcp_opt):
|
|
return (dhcp_opt['opt_name'] == constants.DHCP_DISABLED_OPT and
|
|
dhcp_opt.get('opt_value', '').lower() == 'true')
|
|
|
|
|
|
def validate_port_extra_dhcp_opts(port):
|
|
"""Validate port's extra DHCP options.
|
|
|
|
:param port: A neutron port.
|
|
:returns: A PortExtraDHCPValidation object.
|
|
"""
|
|
invalid = {const.IP_VERSION_4: [], const.IP_VERSION_6: []}
|
|
failed = False
|
|
for edo in port.get(edo_ext.EXTRADHCPOPTS, []):
|
|
ip_version = edo['ip_version']
|
|
opt_name = edo['opt_name']
|
|
|
|
# If DHCP is disabled for this port via this special option,
|
|
# always succeed the validation
|
|
if _is_dhcp_disabled(edo):
|
|
failed = False
|
|
break
|
|
|
|
if opt_name not in constants.SUPPORTED_DHCP_OPTS_MAPPING[ip_version]:
|
|
invalid[ip_version].append(opt_name)
|
|
failed = True
|
|
|
|
return PortExtraDHCPValidation(
|
|
failed=failed,
|
|
invalid_ipv4=invalid[const.IP_VERSION_4] if failed else [],
|
|
invalid_ipv6=invalid[const.IP_VERSION_6] if failed else [])
|
|
|
|
|
|
def is_dhcp_option_quoted(opt_value):
|
|
return opt_value.startswith('"') and opt_value.endswith('"')
|
|
|
|
|
|
def get_lsp_dhcp_opts(port, ip_version):
|
|
# Get dhcp options from Neutron port, for setting DHCP_Options row
|
|
# in OVN.
|
|
lsp_dhcp_disabled = False
|
|
lsp_dhcp_opts = {}
|
|
vnic_type = port.get(portbindings.VNIC_TYPE, portbindings.VNIC_NORMAL)
|
|
|
|
# NOTE(lucasagomes): Baremetal does not yet work with OVN's built-in
|
|
# DHCP server, disable it for now
|
|
if (is_network_device_port(port) or
|
|
vnic_type == portbindings.VNIC_BAREMETAL):
|
|
lsp_dhcp_disabled = True
|
|
else:
|
|
mapping = constants.SUPPORTED_DHCP_OPTS_MAPPING[ip_version]
|
|
for edo in port.get(edo_ext.EXTRADHCPOPTS, []):
|
|
if edo['ip_version'] != ip_version:
|
|
continue
|
|
|
|
if _is_dhcp_disabled(edo):
|
|
# OVN native DHCP is disabled on this port
|
|
lsp_dhcp_disabled = True
|
|
# Make sure return value behavior not depends on the order and
|
|
# content of the extra DHCP options for the port
|
|
lsp_dhcp_opts.clear()
|
|
break
|
|
|
|
if edo['opt_name'] not in mapping:
|
|
LOG.warning('The DHCP option %(opt_name)s on port %(port)s '
|
|
'is not suppported by OVN, ignoring it',
|
|
{'opt_name': edo['opt_name'], 'port': port['id']})
|
|
continue
|
|
|
|
opt = mapping[edo['opt_name']]
|
|
if (opt in constants.OVN_STR_TYPE_DHCP_OPTS and
|
|
not is_dhcp_option_quoted(edo['opt_value'])):
|
|
edo['opt_value'] = '"%s"' % edo['opt_value']
|
|
lsp_dhcp_opts[opt] = edo['opt_value']
|
|
|
|
return (lsp_dhcp_disabled, lsp_dhcp_opts)
|
|
|
|
|
|
def is_lsp_trusted(port):
|
|
return n_utils.is_port_trusted(port) if port.get('device_owner') else False
|
|
|
|
|
|
def is_lsp_ignored(port):
|
|
# Since the floating IP port is not bound to any chassis, packets from vm
|
|
# destined to floating IP will be dropped. To overcome this, we do not
|
|
# create/update floating IP port in OVN.
|
|
return port.get('device_owner') in [const.DEVICE_OWNER_FLOATINGIP]
|
|
|
|
|
|
def get_lsp_security_groups(port, skip_trusted_port=True):
|
|
# In other agent link OVS, skipping trusted port is processed in security
|
|
# groups RPC. We haven't that step, so we do it here.
|
|
return [] if (skip_trusted_port and is_lsp_trusted(port)
|
|
) else port.get('security_groups', [])
|
|
|
|
|
|
def is_snat_enabled(router):
|
|
return router.get(l3.EXTERNAL_GW_INFO, {}).get('enable_snat', True)
|
|
|
|
|
|
def is_port_security_enabled(port):
|
|
return port.get(psec.PORTSECURITY)
|
|
|
|
|
|
def is_security_groups_enabled(port):
|
|
return port.get(constants.PORT_SECURITYGROUPS)
|
|
|
|
|
|
def validate_and_get_data_from_binding_profile(port):
|
|
if (constants.OVN_PORT_BINDING_PROFILE not in port or
|
|
not validators.is_attr_set(
|
|
port[constants.OVN_PORT_BINDING_PROFILE])):
|
|
return {}
|
|
param_set = {}
|
|
param_dict = {}
|
|
for param_set in constants.OVN_PORT_BINDING_PROFILE_PARAMS:
|
|
param_keys = param_set.keys()
|
|
for param_key in param_keys:
|
|
try:
|
|
param_dict[param_key] = (port[
|
|
constants.OVN_PORT_BINDING_PROFILE][param_key])
|
|
except KeyError:
|
|
pass
|
|
if len(param_dict) == 0:
|
|
continue
|
|
if len(param_dict) != len(param_keys):
|
|
msg = _('Invalid binding:profile. %s are all '
|
|
'required.') % param_keys
|
|
raise n_exc.InvalidInput(error_message=msg)
|
|
if (len(port[constants.OVN_PORT_BINDING_PROFILE]) != len(
|
|
param_keys)):
|
|
msg = _('Invalid binding:profile. too many parameters')
|
|
raise n_exc.InvalidInput(error_message=msg)
|
|
break
|
|
|
|
if not param_dict:
|
|
return {}
|
|
|
|
for param_key, param_type in param_set.items():
|
|
if param_type is None:
|
|
continue
|
|
param_value = param_dict[param_key]
|
|
if not isinstance(param_value, param_type):
|
|
msg = _('Invalid binding:profile. %(key)s %(value)s '
|
|
'value invalid type') % {'key': param_key,
|
|
'value': param_value}
|
|
raise n_exc.InvalidInput(error_message=msg)
|
|
|
|
# Make sure we can successfully look up the port indicated by
|
|
# parent_name. Just let it raise the right exception if there is a
|
|
# problem.
|
|
if 'parent_name' in param_set:
|
|
plugin = directory.get_plugin()
|
|
plugin.get_port(n_context.get_admin_context(),
|
|
param_dict['parent_name'])
|
|
|
|
if 'tag' in param_set:
|
|
tag = int(param_dict['tag'])
|
|
if tag < 0 or tag > 4095:
|
|
msg = _('Invalid binding:profile. tag "%s" must be '
|
|
'an integer between 0 and 4095, inclusive') % tag
|
|
raise n_exc.InvalidInput(error_message=msg)
|
|
|
|
return param_dict
|
|
|
|
|
|
def is_dhcp_options_ignored(subnet):
|
|
# Don't insert DHCP_Options entry for v6 subnet with 'SLAAC' as
|
|
# 'ipv6_address_mode', since DHCPv6 shouldn't work for this mode.
|
|
return (subnet['ip_version'] == const.IP_VERSION_6 and
|
|
subnet.get('ipv6_address_mode') == const.IPV6_SLAAC)
|
|
|
|
|
|
def get_ovn_ipv6_address_mode(address_mode):
|
|
return constants.OVN_IPV6_ADDRESS_MODES[address_mode]
|
|
|
|
|
|
def get_revision_number(resource, resource_type):
|
|
"""Get the resource's revision number based on its type."""
|
|
if resource_type in (constants.TYPE_NETWORKS,
|
|
constants.TYPE_PORTS,
|
|
constants.TYPE_SECURITY_GROUP_RULES,
|
|
constants.TYPE_ROUTERS,
|
|
constants.TYPE_ROUTER_PORTS,
|
|
constants.TYPE_SECURITY_GROUPS,
|
|
constants.TYPE_FLOATINGIPS, constants.TYPE_SUBNETS):
|
|
return resource['revision_number']
|
|
else:
|
|
raise ovn_exc.UnknownResourceType(resource_type=resource_type)
|
|
|
|
|
|
def remove_macs_from_lsp_addresses(addresses):
|
|
"""Remove the mac addreses from the Logical_Switch_Port addresses column.
|
|
|
|
:param addresses: The list of addresses from the Logical_Switch_Port.
|
|
Example: ["80:fa:5b:06:72:b7 158.36.44.22",
|
|
"ff:ff:ff:ff:ff:ff 10.0.0.2"]
|
|
:returns: A list of IP addesses (v4 and v6)
|
|
"""
|
|
ip_list = []
|
|
for addr in addresses:
|
|
ip_list.extend([x for x in addr.split() if
|
|
(netutils.is_valid_ipv4(x) or
|
|
netutils.is_valid_ipv6(x))])
|
|
return ip_list
|
|
|
|
|
|
def get_allowed_address_pairs_ip_addresses(port):
|
|
"""Return a list of IP addresses from port's allowed_address_pairs.
|
|
|
|
:param port: A neutron port
|
|
:returns: A list of IP addesses (v4 and v6)
|
|
"""
|
|
return [x['ip_address'] for x in port.get('allowed_address_pairs', [])
|
|
if 'ip_address' in x]
|
|
|
|
|
|
def get_allowed_address_pairs_ip_addresses_from_ovn_port(ovn_port):
|
|
"""Return a list of IP addresses from ovn port.
|
|
|
|
Return a list of IP addresses equivalent of Neutron's port
|
|
allowed_address_pairs column using the data in the OVN port.
|
|
|
|
:param ovn_port: A OVN port
|
|
:returns: A list of IP addesses (v4 and v6)
|
|
"""
|
|
addresses = remove_macs_from_lsp_addresses(ovn_port.addresses)
|
|
port_security = remove_macs_from_lsp_addresses(ovn_port.port_security)
|
|
return [x for x in port_security if x not in addresses]
|
|
|
|
|
|
def get_ovn_port_security_groups(ovn_port, skip_trusted_port=True):
|
|
info = {'security_groups': ovn_port.external_ids.get(
|
|
constants.OVN_SG_IDS_EXT_ID_KEY, '').split(),
|
|
'device_owner': ovn_port.external_ids.get(
|
|
constants.OVN_DEVICE_OWNER_EXT_ID_KEY, '')}
|
|
return get_lsp_security_groups(info, skip_trusted_port=skip_trusted_port)
|
|
|
|
|
|
def get_ovn_port_addresses(ovn_port):
|
|
addresses = remove_macs_from_lsp_addresses(ovn_port.addresses)
|
|
port_security = remove_macs_from_lsp_addresses(ovn_port.port_security)
|
|
return list(set(addresses + port_security))
|
|
|
|
|
|
def get_virtual_port_parents(nb_idl, virtual_ip, network_id, port_id):
|
|
ls = nb_idl.ls_get(ovn_name(network_id)).execute(check_error=True)
|
|
return [lsp.name for lsp in ls.ports
|
|
if lsp.name != port_id and
|
|
virtual_ip in get_ovn_port_addresses(lsp)]
|
|
|
|
|
|
def sort_ips_by_version(addresses):
|
|
ip_map = {'ip4': [], 'ip6': []}
|
|
for addr in addresses:
|
|
ip_version = netaddr.IPNetwork(addr).version
|
|
ip_map['ip%d' % ip_version].append(addr)
|
|
return ip_map
|
|
|
|
|
|
def is_lsp_router_port(port):
|
|
return port.get('device_owner') in const.ROUTER_PORT_OWNERS
|
|
|
|
|
|
def get_lrouter_ext_gw_static_route(ovn_router):
|
|
# TODO(lucasagomes): Remove the try...except block after OVS 2.8.2
|
|
# is tagged.
|
|
try:
|
|
return [route for route in getattr(ovn_router, 'static_routes', []) if
|
|
strutils.bool_from_string(getattr(
|
|
route, 'external_ids', {}).get(
|
|
constants.OVN_ROUTER_IS_EXT_GW, 'false'))]
|
|
except KeyError:
|
|
pass
|
|
|
|
|
|
def get_lrouter_snats(ovn_router):
|
|
return [n for n in getattr(ovn_router, 'nat', []) if n.type == 'snat']
|
|
|
|
|
|
def get_lrouter_non_gw_routes(ovn_router):
|
|
routes = []
|
|
# TODO(lucasagomes): Remove the try...except block after OVS 2.8.2
|
|
# is tagged.
|
|
try:
|
|
for route in getattr(ovn_router, 'static_routes', []):
|
|
external_ids = getattr(route, 'external_ids', {})
|
|
if strutils.bool_from_string(
|
|
external_ids.get(constants.OVN_ROUTER_IS_EXT_GW, 'false')):
|
|
continue
|
|
|
|
routes.append({'destination': route.ip_prefix,
|
|
'nexthop': route.nexthop})
|
|
except KeyError:
|
|
pass
|
|
return routes
|
|
|
|
|
|
def is_ovn_l3(l3_plugin):
|
|
return hasattr(l3_plugin, '_ovn_client_inst')
|
|
|
|
|
|
def get_system_dns_resolvers(resolver_file=DNS_RESOLVER_FILE):
|
|
resolvers = []
|
|
if not os.path.exists(resolver_file):
|
|
return resolvers
|
|
|
|
with open(resolver_file, 'r') as rconf:
|
|
for line in rconf.readlines():
|
|
if not line.startswith('nameserver'):
|
|
continue
|
|
|
|
line = line.split('nameserver')[1].strip()
|
|
ipv4 = re.search(r'^(?:[0-9]{1,3}\.){3}[0-9]{1,3}', line)
|
|
if ipv4:
|
|
resolvers.append(ipv4.group(0))
|
|
elif netutils.is_valid_ipv6(line):
|
|
resolvers.append(line)
|
|
|
|
return resolvers
|
|
|
|
|
|
def get_dhcp_dns_servers(subnet, ip_version=const.IP_VERSION_4):
|
|
"""Retrieve the DHCP option DNS servers
|
|
|
|
The DHCP should not announce any DNS resolver at all on the subnet if any
|
|
configured DNS server is "0.0.0.0" (IPv4) or "::" (IPv6).
|
|
https://docs.openstack.org/neutron/latest/admin/config-dns-res.html
|
|
"""
|
|
def filter_ips(ips, ip_version=const.IP_VERSION_4):
|
|
return [ip for ip in ips
|
|
if netaddr.IPAddress(ip).version == ip_version]
|
|
|
|
dns_servers = (subnet.get('dns_nameservers') or
|
|
filter_ips(ovn_conf.get_dns_servers(), ip_version) or
|
|
filter_ips(get_system_dns_resolvers(), ip_version))
|
|
|
|
if common_utils.is_dns_servers_any_address(dns_servers, ip_version):
|
|
return []
|
|
|
|
return dns_servers
|
|
|
|
|
|
def get_port_subnet_ids(port):
|
|
fixed_ips = list(port['fixed_ips'])
|
|
return [f['subnet_id'] for f in fixed_ips]
|
|
|
|
|
|
def get_ovsdb_connection(connection_string, schema, timeout, tables=None):
|
|
helper = idlutils.get_schema_helper(connection_string, schema)
|
|
if tables:
|
|
for table in tables:
|
|
helper.register_table(table)
|
|
else:
|
|
helper.register_all()
|
|
return connection.Connection(idl.Idl(connection_string, helper), timeout)
|
|
|
|
|
|
def get_method_class(method):
|
|
if not inspect.ismethod(method):
|
|
return
|
|
return method.__self__.__class__
|
|
|
|
|
|
def ovn_metadata_name(id_):
|
|
"""Return the OVN metadata name based on an id."""
|
|
return 'metadata-%s' % id_
|
|
|
|
|
|
def is_gateway_chassis_invalid(chassis_name, gw_chassis,
|
|
physnet, chassis_physnets):
|
|
"""Check if gateway chassis is invalid
|
|
|
|
@param chassis_name: gateway chassis name
|
|
@type chassis_name: string
|
|
@param gw_chassis: List of gateway chassis in the system
|
|
@type gw_chassis: []
|
|
@param physnet: physical network associated to chassis_name
|
|
@type physnet: string
|
|
@param chassis_physnets: Dictionary linking chassis with their physnets
|
|
@type chassis_physnets: {}
|
|
@return Boolean
|
|
"""
|
|
|
|
if chassis_name == constants.OVN_GATEWAY_INVALID_CHASSIS:
|
|
return True
|
|
elif chassis_name not in chassis_physnets:
|
|
return True
|
|
elif physnet and physnet not in chassis_physnets.get(chassis_name):
|
|
return True
|
|
elif gw_chassis and chassis_name not in gw_chassis:
|
|
return True
|
|
return False
|
|
|
|
|
|
def is_provider_network(network):
|
|
return network.get(external_net.EXTERNAL, False)
|
|
|
|
|
|
def is_neutron_dhcp_agent_port(port):
|
|
"""Check if the given DHCP port belongs to Neutron DHCP agents
|
|
|
|
The DHCP ports with the device_id equals to 'reserved_dhcp_port'
|
|
or starting with the word 'dhcp' belongs to the Neutron DHCP agents.
|
|
"""
|
|
return (port['device_owner'] == const.DEVICE_OWNER_DHCP and
|
|
(port['device_id'] == const.DEVICE_ID_RESERVED_DHCP_PORT or
|
|
port['device_id'].startswith('dhcp')))
|
|
|
|
|
|
def compute_address_pairs_diff(ovn_port, neutron_port):
|
|
"""Compute the differences in the allowed_address_pairs field."""
|
|
ovn_ap = get_allowed_address_pairs_ip_addresses_from_ovn_port(
|
|
ovn_port)
|
|
neutron_ap = get_allowed_address_pairs_ip_addresses(neutron_port)
|
|
added = set(neutron_ap) - set(ovn_ap)
|
|
removed = set(ovn_ap) - set(neutron_ap)
|
|
return AddrPairsDiff(added, removed, changed=any(added or removed))
|
|
|
|
|
|
def get_ovn_cms_options(chassis):
|
|
"""Return the list of CMS options in a Chassis."""
|
|
return [opt.strip() for opt in chassis.external_ids.get(
|
|
constants.OVN_CMS_OPTIONS, '').split(',')]
|
|
|
|
|
|
def is_gateway_chassis(chassis):
|
|
"""Check if the given chassis is a gateway chassis"""
|
|
return constants.CMS_OPT_CHASSIS_AS_GW in get_ovn_cms_options(chassis)
|
|
|
|
|
|
def get_port_capabilities(port):
|
|
"""Return a list of port's capabilities"""
|
|
return port.get(portbindings.PROFILE, {}).get('capabilities', [])
|
|
|
|
|
|
def get_port_id_from_gwc_row(row):
|
|
"""Return a port_id from gwc row
|
|
|
|
The Gateway_Chassis row stores router port_id in
|
|
the row name attribute:
|
|
|
|
<prefix>-<port_id>_<chassis_id>
|
|
|
|
:param row: A Gateway_Chassis table row.
|
|
:returns: String containing router port_id.
|
|
"""
|
|
return constants.RE_PORT_FROM_GWC.search(row.name).group(2)
|
|
|
|
|
|
def get_az_hints(resource):
|
|
"""Return the availability zone hints from a given resource."""
|
|
return (resource.get(az_def.AZ_HINTS) or CONF.default_availability_zones)
|
|
|
|
|
|
def get_chassis_availability_zones(chassis):
|
|
"""Return a list of availability zones from a given OVN Chassis."""
|
|
azs = []
|
|
if not chassis:
|
|
return azs
|
|
|
|
opt_key = constants.CMS_OPT_AVAILABILITY_ZONES + '='
|
|
for opt in get_ovn_cms_options(chassis):
|
|
if not opt.startswith(opt_key):
|
|
continue
|
|
values = opt.split('=')[1]
|
|
azs = [az.strip() for az in values.split(':') if az.strip()]
|
|
break
|
|
return azs
|
|
|
|
|
|
def parse_ovn_lb_port_forwarding(ovn_rtr_lb_pfs):
|
|
"""Return a dictionary compatible with port forwarding from OVN lb."""
|
|
result = {}
|
|
for ovn_lb in ovn_rtr_lb_pfs:
|
|
ext_ids = ovn_lb.external_ids
|
|
fip_id = ext_ids.get(constants.OVN_FIP_EXT_ID_KEY)
|
|
protocol = (ovn_lb.protocol[0]
|
|
if ovn_lb.protocol else ovsdbapp_const.PROTO_TCP)
|
|
fip_dict = result.get(fip_id, {})
|
|
fip_dict_proto = fip_dict.get(protocol, set())
|
|
ovn_vips = ovn_lb.vips
|
|
for vip, ips in ovn_vips.items():
|
|
for ip in ips.split(','):
|
|
fip_dict_proto.add("{} {}".format(vip, ip))
|
|
fip_dict[protocol] = fip_dict_proto
|
|
result[fip_id] = fip_dict
|
|
return result
|
|
|
|
|
|
def get_network_name_from_datapath(datapath):
|
|
return datapath.external_ids['name'].replace('neutron-', '')
|