blob: 33b88777685068ae77a4f0908ebbd308cd9ee865 [file] [log] [blame]
# Copyright 2017-present Open Networking Foundation
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
from synchronizers.new_base.modelaccessor import *
from synchronizers.new_base.model_policies.model_policy_tenantwithcontainer import TenantWithContainerPolicy, LeastLoadedNodeScheduler
from synchronizers.new_base.exceptions import *
class VSGTenantPolicy(TenantWithContainerPolicy):
model_name = "VSGTenant"
def handle_create(self, tenant):
return self.handle_update(tenant)
def handle_update(self, tenant):
if (tenant.link_deleted_count>0) and (not tenant.provided_links.exists()):
# if the last provided_link has just gone away, then self-destruct
self.logger.info("The last provided link has been deleted -- self-destructing.");
# TODO: We shouldn't have to call handle_delete ourselves. The model policy framework should handle this
# for us, but it isn't. I think that's happening is that tenant.delete() isn't setting a new
# updated timestamp, since there's no way to pass `always_update_timestamp`, and therefore the
# policy framework doesn't know that the object has changed and needs new policies. For now, the
# workaround is to just call handle_delete ourselves.
self.handle_delete(tenant)
# Note that if we deleted the Instance in handle_delete, then django may have cascade-deleted the tenant
# by now. Thus we have to guard our delete, to check that the tenant still exists.
if VSGTenant.objects.filter(id=tenant.id).exists():
tenant.delete()
else:
self.logger.info("Tenant %s is already deleted" % tenant)
return
self.manage_container(tenant)
self.manage_address_service_instance(tenant)
self.cleanup_orphans(tenant)
def handle_delete(self, tenant):
if tenant.instance and (not tenant.instance.deleted):
all_tenants_this_instance = VSGTenant.objects.filter(instance_id=tenant.instance.id)
other_tenants_this_instance = [x for x in all_tenants_this_instance if x.id != tenant.id]
if (not other_tenants_this_instance):
self.logger.info("VSG Instance %s is now unused -- deleting" % tenant.instance)
self.delete_instance(tenant, tenant.instance)
else:
self.logger.info("VSG Instance %s has %d other service instances attached" % (tenant.instance, len(other_tenants_this_instance)))
def manage_address_service_instance(self, tenant):
if tenant.deleted:
return
if tenant.address_service_instance is None:
address_service_instance = self.allocate_public_service_instance(address_pool_name="addresses_vsg", subscriber_tenant=tenant)
address_service_instance.save()
def cleanup_orphans(self, tenant):
# ensure vSG only has one AddressManagerServiceInstance
cur_asi = tenant.address_service_instance
for link in tenant.subscribed_links.all():
# TODO: hardcoded dependency
# cast from ServiceInstance to AddressManagerServiceInstance
asis = AddressManagerServiceInstance.objects.filter(id = link.provider_service_instance.id)
for asi in asis:
if (not cur_asi) or (asi.id != cur_asi.id):
asi.delete()
def get_vsg_service(self, tenant):
return VSGService.objects.get(id=tenant.owner.id)
def find_instance_for_s_tag(self, s_tag):
tags = Tag.objects.filter(name="s_tag", value=s_tag)
if tags:
return tags[0].content_object
return None
def find_or_make_instance_for_s_tag(self, tenant, s_tag):
instance = self.find_instance_for_s_tag(tenant.volt.s_tag)
if instance:
if instance.no_sync:
# if no_sync is still set, then perhaps we failed while saving it and need to retry.
self.save_instance(tenant, instance)
return instance
desired_image = self.get_image(tenant)
flavors = Flavor.objects.filter(name="m1.small")
if not flavors:
raise SynchronizerConfigurationError("No m1.small flavor")
slice = tenant.owner.slices.first()
(node, parent) = LeastLoadedNodeScheduler(slice, label=self.get_vsg_service(tenant).node_label).pick()
assert (slice is not None)
assert (node is not None)
assert (desired_image is not None)
assert (tenant.creator is not None)
assert (node.site_deployment.deployment is not None)
assert (desired_image is not None)
instance = Instance(slice=slice,
node=node,
image=desired_image,
creator=tenant.creator,
deployment=node.site_deployment.deployment,
flavor=flavors[0],
isolation=slice.default_isolation,
parent=parent)
self.save_instance(tenant, instance)
return instance
def manage_container(self, tenant):
if tenant.deleted:
return
if not tenant.volt:
raise SynchronizerConfigurationError("This VSG container has no volt")
if tenant.instance:
# We're good.
return
instance = self.find_or_make_instance_for_s_tag(tenant, tenant.volt.s_tag)
tenant.instance = instance
# TODO: possible for partial failure here?
tenant.save()
def find_or_make_port(self, instance, network, **kwargs):
port = Port.objects.filter(instance_id=instance.id, network_id=network.id)
if port:
port = port[0]
else:
port = Port(instance=instance, network=network, **kwargs)
port.save()
return port
def get_lan_network(self, tenant, instance):
slice = tenant.owner.slices.all()[0]
# there should only be one network private network, and its template should not be the management template
lan_networks = [x for x in slice.networks.all() if
x.template.visibility == "private" and (not "management" in x.template.name)]
if len(lan_networks) > 1:
raise SynchronizerProgrammingError("The vSG slice should only have one non-management private network")
if not lan_networks:
raise SynchronizerProgrammingError("No lan_network")
return lan_networks[0]
def port_set_parameter(self, port, name, value):
pt = NetworkParameterType.objects.get(name=name)
existing_params = NetworkParameter.objects.filter(parameter_id=pt.id, content_type=port.self_content_type_id, object_id=port.id)
if existing_params:
p = existing_params[0]
p.value = str(value)
p.save()
else:
p = NetworkParameter(parameter=pt, content_type=port.self_content_type_id, object_id=port.id, value=str(value))
p.save()
def delete_instance(self, tenant, instance):
# delete the `s_tag` tags
tags = Tag.objects.filter(service_id=tenant.owner.id, content_type=instance.self_content_type_id,
object_id=instance.id, name="s_tag")
for tag in tags:
tag.delete()
tags = Tag.objects.filter(content_type=instance.self_content_type_id, object_id=instance.id,
name="vm_vrouter_tenant")
for tag in tags:
address_manager_instances = list(ServiceInstance.objects.filter(id=tag.value))
tag.delete()
# TODO: Potential partial failure
for address_manager_instance in address_manager_instances:
self.logger.info("Deleting address_manager_instance %s" % address_manager_instance)
address_manager_instance.delete()
instance.delete()
def save_instance(self, tenant, instance):
instance.volumes = "/etc/dnsmasq.d,/etc/ufw"
instance.no_sync = True # prevent instance from being synced until we're done with it
super(VSGTenantPolicy, self).save_instance(instance)
try:
if instance.isolation in ["container", "container_vm"]:
raise Exception("Not supported")
if instance.isolation in ["vm"]:
lan_network = self.get_lan_network(tenant, instance)
port = self.find_or_make_port(instance, lan_network)
self.port_set_parameter(port, "c_tag", tenant.volt.c_tag)
self.port_set_parameter(port, "s_tag", tenant.volt.s_tag)
self.port_set_parameter(port, "neutron_port_name", "stag-%s" % tenant.volt.s_tag)
port.save()
# tag the instance with the s-tag, so we can easily find the
# instance later
if tenant.volt and tenant.volt.s_tag:
tags = Tag.objects.filter(name="s_tag", value=tenant.volt.s_tag)
if not tags:
tag = Tag(service=tenant.owner, content_type=instance.self_content_type_id, object_id=instance.id, name="s_tag", value=str(tenant.volt.s_tag))
tag.save()
# VTN-CORD needs a WAN address for the VM, so that the VM can
# be configured.
tags = Tag.objects.filter(content_type=instance.self_content_type_id, object_id=instance.id, name="vm_vrouter_tenant")
if not tags:
address_service_instance = self.allocate_public_service_instance(address_pool_name="addresses_vsg",
subscriber_service=tenant.owner)
address_service_instance.set_attribute("tenant_for_instance_id", instance.id)
address_service_instance.save()
# TODO: potential partial failure
tag = Tag(service=tenant.owner, content_type=instance.self_content_type_id, object_id=instance.id, name="vm_vrouter_tenant", value="%d" % address_service_instance.id)
tag.save()
instance.no_sync = False # allow the synchronizer to run now
super(VSGTenantPolicy, self).save_instance(instance)
except:
# need to clean up any failures here
raise