a99a33d290
While plugging vif, VIFDriver in Nova follows "ovs_hybrid_plug" and "port_filter" in "binding:vif_detail" which is passed from Neutron, but those are always true. This patch make ML2 OVS mech driver set those param depends on enable_security_group flag. It enables users to avoid ovs_hybrid plugging. This patch also fixes the same issue in the following plugins/drivers: * NEC Plugin * BigSwitch Plugin * Ryu Plugin * ML2 Plugin - OFAgent Mech Driver Closes-Bug: #1336624 Change-Id: I2b7fb526a6f1b730ad65289307b24fd28b996e1b
73 lines
3.1 KiB
Python
73 lines
3.1 KiB
Python
# Copyright (C) 2014 VA Linux Systems Japan K.K.
|
|
# Copyright (C) 2014 Fumihiko Kakuma <kakuma at valinux co jp>
|
|
# All Rights Reserved.
|
|
#
|
|
# Based on openvswitch mechanism driver.
|
|
#
|
|
# Copyright (c) 2013 OpenStack Foundation
|
|
# All Rights Reserved.
|
|
#
|
|
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
|
|
from neutron.agent import securitygroups_rpc
|
|
from neutron.common import constants
|
|
from neutron.extensions import portbindings
|
|
from neutron.openstack.common import log
|
|
from neutron.plugins.common import constants as p_const
|
|
from neutron.plugins.ml2 import driver_api as api
|
|
from neutron.plugins.ml2.drivers import mech_agent
|
|
|
|
LOG = log.getLogger(__name__)
|
|
|
|
|
|
class OfagentMechanismDriver(mech_agent.SimpleAgentMechanismDriverBase):
|
|
"""Attach to networks using ofagent L2 agent.
|
|
|
|
The OfagentMechanismDriver integrates the ml2 plugin with the
|
|
ofagent L2 agent. Port binding with this driver requires the
|
|
ofagent agent to be running on the port's host, and that agent
|
|
to have connectivity to at least one segment of the port's
|
|
network.
|
|
"""
|
|
|
|
def __init__(self):
|
|
sg_enabled = securitygroups_rpc.is_firewall_enabled()
|
|
vif_details = {portbindings.CAP_PORT_FILTER: sg_enabled,
|
|
portbindings.OVS_HYBRID_PLUG: sg_enabled}
|
|
super(OfagentMechanismDriver, self).__init__(
|
|
constants.AGENT_TYPE_OFA,
|
|
portbindings.VIF_TYPE_OVS,
|
|
vif_details)
|
|
|
|
def check_segment_for_agent(self, segment, agent):
|
|
bridge_mappings = agent['configurations'].get('bridge_mappings', {})
|
|
interface_mappings = agent['configurations'].get('interface_mappings',
|
|
{})
|
|
tunnel_types = agent['configurations'].get('tunnel_types', [])
|
|
LOG.debug("Checking segment: %(segment)s "
|
|
"for bridge_mappings: %(bridge_mappings)s "
|
|
"and interface_mappings: %(interface_mappings)s "
|
|
"with tunnel_types: %(tunnel_types)s",
|
|
{'segment': segment,
|
|
'bridge_mappings': bridge_mappings,
|
|
'interface_mappings': interface_mappings,
|
|
'tunnel_types': tunnel_types})
|
|
network_type = segment[api.NETWORK_TYPE]
|
|
return (
|
|
network_type == p_const.TYPE_LOCAL or
|
|
network_type in tunnel_types or
|
|
(network_type in [p_const.TYPE_FLAT, p_const.TYPE_VLAN] and
|
|
(segment[api.PHYSICAL_NETWORK] in bridge_mappings
|
|
or segment[api.PHYSICAL_NETWORK] in interface_mappings))
|
|
)
|