570181d872
bug #1039400 - make quantumv2/api.py fetch actual DHCP server address, which is needed by firewall layer (otherwise, the gateway IP is incorrectly used and all DHCP traffic is dropped). - add missing call from quantumv2/api.py to the security groups API when a VM is allocated/deallocated. - Add a vif-driver that is a hybrid of the existing Open vswitch + linux bridge drivers, which allows OVS quantum plugins to be compatible with iptables based filtering, in particular, nova security groups. - Also clean-up some docstrings in virt/libvirt/vif.py Change-Id: I7cf5cf09583202a12785b616d18db3ee4bbffee0
173 lines
5.6 KiB
Python
173 lines
5.6 KiB
Python
# vim: tabstop=4 shiftwidth=4 softtabstop=4
|
|
#
|
|
# Copyright 2012 Nicira, Inc
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
|
|
from lxml import etree
|
|
|
|
from nova import flags
|
|
from nova import test
|
|
from nova import utils
|
|
from nova.virt.libvirt import config
|
|
from nova.virt.libvirt import vif
|
|
|
|
FLAGS = flags.FLAGS
|
|
|
|
|
|
class LibvirtVifTestCase(test.TestCase):
|
|
|
|
net = {
|
|
'cidr': '101.168.1.0/24',
|
|
'cidr_v6': '101:1db9::/64',
|
|
'gateway_v6': '101:1db9::1',
|
|
'netmask_v6': '64',
|
|
'netmask': '255.255.255.0',
|
|
'bridge': 'br0',
|
|
'bridge_interface': 'eth0',
|
|
'vlan': 99,
|
|
'gateway': '101.168.1.1',
|
|
'broadcast': '101.168.1.255',
|
|
'dns1': '8.8.8.8'
|
|
}
|
|
|
|
mapping = {
|
|
'mac': 'ca:fe:de:ad:be:ef',
|
|
'gateway_v6': net['gateway_v6'],
|
|
'ips': [{'ip': '101.168.1.9'}],
|
|
'dhcp_server': '191.168.1.1',
|
|
'vif_uuid': 'vif-xxx-yyy-zzz'
|
|
}
|
|
|
|
instance = {
|
|
'name': 'instance-name',
|
|
'uuid': 'instance-uuid'
|
|
}
|
|
|
|
def setUp(self):
|
|
super(LibvirtVifTestCase, self).setUp()
|
|
self.flags(allow_same_net_traffic=True)
|
|
self.executes = []
|
|
|
|
def fake_execute(*cmd, **kwargs):
|
|
self.executes.append(cmd)
|
|
return None, None
|
|
|
|
self.stubs.Set(utils, 'execute', fake_execute)
|
|
|
|
def _get_instance_xml(self, driver):
|
|
conf = config.LibvirtConfigGuest()
|
|
conf.virt_type = "qemu"
|
|
conf.name = "fake-name"
|
|
conf.uuid = "fake-uuid"
|
|
conf.memory = 100 * 1024
|
|
conf.vcpus = 4
|
|
|
|
nic = driver.plug(self.instance, (self.net, self.mapping))
|
|
conf.add_device(nic)
|
|
return conf.to_xml()
|
|
|
|
def test_bridge_driver(self):
|
|
d = vif.LibvirtBridgeDriver()
|
|
xml = self._get_instance_xml(d)
|
|
|
|
doc = etree.fromstring(xml)
|
|
ret = doc.findall('./devices/interface')
|
|
self.assertEqual(len(ret), 1)
|
|
node = ret[0]
|
|
self.assertEqual(node.get("type"), "bridge")
|
|
br_name = node.find("source").get("bridge")
|
|
self.assertEqual(br_name, self.net['bridge'])
|
|
mac = node.find("mac").get("address")
|
|
self.assertEqual(mac, self.mapping['mac'])
|
|
|
|
d.unplug(None, (self.net, self.mapping))
|
|
|
|
def test_ovs_ethernet_driver(self):
|
|
d = vif.LibvirtOpenVswitchDriver()
|
|
xml = self._get_instance_xml(d)
|
|
|
|
doc = etree.fromstring(xml)
|
|
ret = doc.findall('./devices/interface')
|
|
self.assertEqual(len(ret), 1)
|
|
node = ret[0]
|
|
self.assertEqual(node.get("type"), "ethernet")
|
|
dev_name = node.find("target").get("dev")
|
|
self.assertTrue(dev_name.startswith("tap"))
|
|
mac = node.find("mac").get("address")
|
|
self.assertEqual(mac, self.mapping['mac'])
|
|
script = node.find("script").get("path")
|
|
self.assertEquals(script, "")
|
|
|
|
d.unplug(None, (self.net, self.mapping))
|
|
|
|
def test_ovs_virtualport_driver(self):
|
|
d = vif.LibvirtOpenVswitchVirtualPortDriver()
|
|
xml = self._get_instance_xml(d)
|
|
|
|
doc = etree.fromstring(xml)
|
|
ret = doc.findall('./devices/interface')
|
|
self.assertEqual(len(ret), 1)
|
|
node = ret[0]
|
|
self.assertEqual(node.get("type"), "bridge")
|
|
|
|
br_name = node.find("source").get("bridge")
|
|
self.assertEqual(br_name, FLAGS.libvirt_ovs_bridge)
|
|
mac = node.find("mac").get("address")
|
|
self.assertEqual(mac, self.mapping['mac'])
|
|
vp = node.find("virtualport")
|
|
self.assertEqual(vp.get("type"), "openvswitch")
|
|
iface_id_found = False
|
|
for p_elem in vp.findall("parameters"):
|
|
iface_id = p_elem.get("interfaceid", None)
|
|
if iface_id:
|
|
self.assertEqual(iface_id, self.mapping['vif_uuid'])
|
|
iface_id_found = True
|
|
|
|
self.assertTrue(iface_id_found)
|
|
d.unplug(None, (self.net, self.mapping))
|
|
|
|
def test_quantum_bridge_ethernet_driver(self):
|
|
d = vif.QuantumLinuxBridgeVIFDriver()
|
|
xml = self._get_instance_xml(d)
|
|
|
|
doc = etree.fromstring(xml)
|
|
ret = doc.findall('./devices/interface')
|
|
self.assertEqual(len(ret), 1)
|
|
node = ret[0]
|
|
self.assertEqual(node.get("type"), "ethernet")
|
|
dev_name = node.find("target").get("dev")
|
|
self.assertTrue(dev_name.startswith("tap"))
|
|
mac = node.find("mac").get("address")
|
|
self.assertEqual(mac, self.mapping['mac'])
|
|
script = node.find("script").get("path")
|
|
self.assertEquals(script, "")
|
|
|
|
d.unplug(None, (self.net, self.mapping))
|
|
|
|
def test_quantum_hybrid_driver(self):
|
|
d = vif.LibvirtHybridOVSBridgeDriver()
|
|
xml = self._get_instance_xml(d)
|
|
|
|
doc = etree.fromstring(xml)
|
|
ret = doc.findall('./devices/interface')
|
|
self.assertEqual(len(ret), 1)
|
|
node = ret[0]
|
|
self.assertEqual(node.get("type"), "bridge")
|
|
br_name = node.find("source").get("bridge")
|
|
self.assertEqual(br_name, self.net['bridge'])
|
|
mac = node.find("mac").get("address")
|
|
self.assertEqual(mac, self.mapping['mac'])
|
|
|
|
d.unplug(None, (self.net, self.mapping))
|