Ensure default IP policy on subnets

* Added API validation * Added database migrations RM7212
2014-07-26 14:55:33 -05:00
parent 005dd2ccc4
commit c57582bd21
11 changed files with 780 additions and 55 deletions
--- a/quark/db/migration/alembic/versions/45a07fac3d38_ensure_default_policy_with_policy.py
+++ b/quark/db/migration/alembic/versions/45a07fac3d38_ensure_default_policy_with_policy.py
@@ -0,0 +1,106 @@
+"""Ensure default IP policy for subnets with IP policies
+
+Revision ID: 45a07fac3d38
+Revises: 2748e48cee3a
+Create Date: 2014-07-05 12:49:51.815631
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = '45a07fac3d38'
+down_revision = '2748e48cee3a'
+
+import logging
+
+from alembic import op
+from sqlalchemy.sql import column, select, table
+import netaddr
+from neutron.openstack.common import timeutils
+from neutron.openstack.common import uuidutils
+import sqlalchemy as sa
+
+LOG = logging.getLogger("alembic.migration")
+
+
+def upgrade():
+    ip_policy = table('quark_ip_policy',
+                      column('id', sa.String(length=36)),
+                      column('tenant_id', sa.String(length=255)),
+                      column('created_at', sa.DateTime()))
+    ip_policy_cidrs = table('quark_ip_policy_cidrs',
+                            column('id', sa.String(length=36)),
+                            column('created_at', sa.DateTime()),
+                            column('ip_policy_id', sa.String(length=36)),
+                            column('cidr', sa.String(length=64)))
+    subnets = table('quark_subnets',
+                    column('_cidr', sa.String(length=64)),
+                    column('ip_policy_id', sa.String(length=36)))
+
+    connection = op.get_bind()
+
+    # 1. Get all ip_policy_cidrs for subnets with an ip_policy.
+    j = subnets.outerjoin(
+        ip_policy_cidrs,
+        subnets.c.ip_policy_id == ip_policy_cidrs.c.ip_policy_id)
+    q = select([subnets.c.ip_policy_id, subnets.c._cidr,
+                ip_policy_cidrs.c.id, ip_policy_cidrs.c.cidr]).select_from(
+                    j).where(subnets.c.ip_policy_id != None).order_by(  # noqa
+                        subnets.c.ip_policy_id)
+    data = connection.execute(q).fetchall()
+    if data is None:
+        return
+
+    # 2. Check ip_policy_cidrs contains default ip policy for subnet.
+    ipp_to_update = dict()
+
+    def _test_change_needed(ipp_id, s, ipp):
+        if s is None or ipp is None:
+            return
+        updated = False
+        last = netaddr.IPAddress(subnet.broadcast)
+        first = netaddr.IPAddress(subnet.network)
+        if last not in ipp:
+            updated = True
+            ipp.add(last)
+        if first not in ipp:
+            updated = True
+            ipp.add(first)
+        if updated:
+            ipp_to_update[ipp_id] = ipp
+
+    prev_ip_policy_id = ''
+    subnet, ip_policy = None, None
+    for ip_policy_id, cidr, ippc_id, ippc_cidr in data:
+        if ip_policy_id != prev_ip_policy_id:
+            _test_change_needed(prev_ip_policy_id, subnet, ip_policy)
+            subnet, ip_policy = netaddr.IPNetwork(cidr), netaddr.IPSet()
+        ip_policy |= netaddr.IPSet([ippc_cidr] if ippc_cidr else [])
+        prev_ip_policy_id = ip_policy_id
+    _test_change_needed(prev_ip_policy_id, subnet, ip_policy)
+
+    if not ipp_to_update.keys():
+        return
+
+    LOG.info("IP Policy IDs to update: %s", ipp_to_update.keys())
+
+    # 3. Delete ip_policy_cidrs for ip_policy_ids to be updated.
+    connection.execute(ip_policy_cidrs.delete().where(
+        ip_policy_cidrs.c.ip_policy_id.in_(ipp_to_update.keys())))
+
+    # 4. Insert ip_policy_cidrs for ip_policy_ids to be updated.
+    vals = [dict(id=uuidutils.generate_uuid(),
+                 created_at=timeutils.utcnow(),
+                 ip_policy_id=key,
+                 cidr=str(x.cidr))
+            for key in ipp_to_update.keys()
+            for x in ipp_to_update[key].iter_cidrs()]
+    if not vals:
+        return
+
+    LOG.info("IP Policy CIDR IDs to insert: %s", [v["id"] for v in vals])
+
+    connection.execute(ip_policy_cidrs.insert(), *vals)
+
+
+def downgrade():
+    raise NotImplementedError()
--- a/quark/db/migration/alembic/versions/552b213c2b8c_default_policy_without_policy.py
+++ b/quark/db/migration/alembic/versions/552b213c2b8c_default_policy_without_policy.py
@@ -0,0 +1,84 @@
+"""Ensure default IP policy exists for subnets without IP policies
+
+Revision ID: 552b213c2b8c
+Revises: 45a07fac3d38
+Create Date: 2014-07-25 15:07:07.418971
+
+"""
+
+# revision identifiers, used by Alembic.
+revision = '552b213c2b8c'
+down_revision = '45a07fac3d38'
+
+import logging
+
+from quark.plugin_modules import ip_policies
+
+from alembic import op
+from sqlalchemy.sql import column, select, table
+from neutron.openstack.common import timeutils
+from neutron.openstack.common import uuidutils
+import sqlalchemy as sa
+
+LOG = logging.getLogger("alembic.migration")
+
+
+def upgrade():
+    ip_policy = table('quark_ip_policy',
+                      column('id', sa.String(length=36)),
+                      column('tenant_id', sa.String(length=255)),
+                      column('created_at', sa.DateTime()))
+    ip_policy_cidrs = table('quark_ip_policy_cidrs',
+                            column('id', sa.String(length=36)),
+                            column('created_at', sa.DateTime()),
+                            column('ip_policy_id', sa.String(length=36)),
+                            column('cidr', sa.String(length=64)))
+    subnets = table('quark_subnets',
+                    column('id', sa.String(length=36)),
+                    column('_cidr', sa.String(length=64)),
+                    column('tenant_id', sa.String(length=255)),
+                    column('ip_policy_id', sa.String(length=36)))
+
+    connection = op.get_bind()
+
+    # 1. Find all subnets without ip_policy.
+    data = connection.execute(select([
+        subnets.c.id, subnets.c._cidr, subnets.c.tenant_id]).where(
+            subnets.c.ip_policy_id == None)).fetchall()  # noqa
+    if not data:
+        return
+
+    LOG.info("Subnet IDs without IP policies: %s", [d[0] for d in data])
+
+    # 2. Insert ip_policy rows with id.
+    vals = [dict(id=uuidutils.generate_uuid(),
+                 created_at=timeutils.utcnow(),
+                 tenant_id=tenant_id)
+            for id, cidr, tenant_id in data]
+
+    LOG.info("IP Policy IDs to insert: %s", [v["id"] for v in vals])
+    connection.execute(ip_policy.insert(), *vals)
+
+    # 3. Insert default ip_policy_cidrs for those ip_policy's.
+    vals2 = []
+    for ((id, cidr, tenant_id), ip_policy) in zip(data, vals):
+        cidrs = []
+        ip_policies.ensure_default_policy(cidrs, [dict(cidr=cidr)])
+        for cidr in cidrs:
+            vals2.append(dict(id=uuidutils.generate_uuid(),
+                              created_at=timeutils.utcnow(),
+                              ip_policy_id=ip_policy["id"],
+                              cidr=str(cidr)))
+
+    LOG.info("IP Policy CIDR IDs to insert: %s", [v["id"] for v in vals2])
+    connection.execute(ip_policy_cidrs.insert(), *vals2)
+
+    # 4. Set ip_policy_id rows in quark_subnets.
+    for ((id, cidr, tenant_id), ip_policy) in zip(data, vals):
+        connection.execute(subnets.update().values(
+            ip_policy_id=ip_policy["id"]).where(
+                subnets.c.id == id))
+
+
+def downgrade():
+    raise NotImplementedError()
--- a/quark/db/migration/alembic/versions/HEAD
+++ b/quark/db/migration/alembic/versions/HEAD
@@ -1 +1 @@
-2748e48cee3a
+552b213c2b8c