etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge branch 'nsx-integration' of https://github.com/apache/cloudstack into nsx-integration

This commit is contained in:
Pearl Dsilva 2024-02-08 10:08:49 -05:00
parent 93c181dfd5 c1ae5ea2ac
commit eb916bfb32
22 changed files with 213 additions and 67 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
api/src/main/java/com/cloud/network/NetworkService.java
View File

@ -56,6 +56,7 @@ import com.cloud.utils.Pair;
import com.cloud.utils.exception.CloudRuntimeException; import com.cloud.utils.exception.CloudRuntimeException;
import com.cloud.vm.Nic; import com.cloud.vm.Nic;
import com.cloud.vm.NicSecondaryIp; import com.cloud.vm.NicSecondaryIp;
import org.apache.cloudstack.network.element.InternalLoadBalancerElementService;
/** /**
* The NetworkService interface is the "public" api to entities that make requests to the orchestration engine * The NetworkService interface is the "public" api to entities that make requests to the orchestration engine
@ -257,4 +258,9 @@ public interface NetworkService {
PublicIpQuarantine updatePublicIpAddressInQuarantine(UpdateQuarantinedIpCmd cmd); PublicIpQuarantine updatePublicIpAddressInQuarantine(UpdateQuarantinedIpCmd cmd);
void removePublicIpAddressFromQuarantine(RemoveQuarantinedIpCmd cmd); void removePublicIpAddressFromQuarantine(RemoveQuarantinedIpCmd cmd);
InternalLoadBalancerElementService getInternalLoadBalancerElementByType(VirtualRouterProvider.Type type);
InternalLoadBalancerElementService getInternalLoadBalancerElementByNetworkServiceProviderId(long networkProviderId);
InternalLoadBalancerElementService getInternalLoadBalancerElementById(long providerId);
List<InternalLoadBalancerElementService> getInternalLoadBalancerElements();
} }

3
api/src/main/java/com/cloud/network/element/NetworkACLServiceProvider.java
View File

@ -21,6 +21,7 @@ import java.util.List;
import com.cloud.exception.ResourceUnavailableException; import com.cloud.exception.ResourceUnavailableException;
import com.cloud.network.Network; import com.cloud.network.Network;
import com.cloud.network.vpc.NetworkACLItem; import com.cloud.network.vpc.NetworkACLItem;
import com.cloud.network.vpc.Vpc;
public interface NetworkACLServiceProvider extends NetworkElement { public interface NetworkACLServiceProvider extends NetworkElement {
@ -32,4 +33,6 @@ public interface NetworkACLServiceProvider extends NetworkElement {
*/ */
boolean applyNetworkACLs(Network config, List<? extends NetworkACLItem> rules) throws ResourceUnavailableException; boolean applyNetworkACLs(Network config, List<? extends NetworkACLItem> rules) throws ResourceUnavailableException;
boolean reorderAclRules(Vpc vpc, List<? extends Network> networks, List<? extends NetworkACLItem> networkACLItems);
} }

3
api/src/main/java/org/apache/cloudstack/api/BaseCmd.java
View File

@ -38,7 +38,6 @@ import org.apache.cloudstack.affinity.AffinityGroupService;
import org.apache.cloudstack.alert.AlertService; import org.apache.cloudstack.alert.AlertService;
import org.apache.cloudstack.annotation.AnnotationService; import org.apache.cloudstack.annotation.AnnotationService;
import org.apache.cloudstack.context.CallContext; import org.apache.cloudstack.context.CallContext;
import org.apache.cloudstack.network.element.InternalLoadBalancerElementService;
import org.apache.cloudstack.network.lb.ApplicationLoadBalancerService; import org.apache.cloudstack.network.lb.ApplicationLoadBalancerService;
import org.apache.cloudstack.network.lb.InternalLoadBalancerVMService; import org.apache.cloudstack.network.lb.InternalLoadBalancerVMService;
import org.apache.cloudstack.query.QueryService; import org.apache.cloudstack.query.QueryService;
@ -201,8 +200,6 @@ public abstract class BaseCmd {
@Inject @Inject
public AffinityGroupService _affinityGroupService; public AffinityGroupService _affinityGroupService;
@Inject @Inject
public InternalLoadBalancerElementService _internalLbElementSvc;
@Inject
public InternalLoadBalancerVMService _internalLbSvc; public InternalLoadBalancerVMService _internalLbSvc;
@Inject @Inject
public NetworkModel _ntwkModel; public NetworkModel _ntwkModel;

11
api/src/main/java/org/apache/cloudstack/api/command/admin/internallb/ConfigureInternalLoadBalancerElementCmd.java
View File

@ -17,11 +17,6 @@
package org.apache.cloudstack.api.command.admin.internallb; package org.apache.cloudstack.api.command.admin.internallb;
import java.util.List;
import javax.inject.Inject;
import org.apache.cloudstack.api.APICommand; import org.apache.cloudstack.api.APICommand;
import org.apache.cloudstack.api.ApiConstants; import org.apache.cloudstack.api.ApiConstants;
import org.apache.cloudstack.api.ApiErrorCode; import org.apache.cloudstack.api.ApiErrorCode;
@ -47,9 +42,6 @@ import com.cloud.user.Account;
responseHasSensitiveInfo = false) responseHasSensitiveInfo = false)
public class ConfigureInternalLoadBalancerElementCmd extends BaseAsyncCmd { public class ConfigureInternalLoadBalancerElementCmd extends BaseAsyncCmd {
@Inject
private List<InternalLoadBalancerElementService> _service;
///////////////////////////////////////////////////// /////////////////////////////////////////////////////
//////////////// API parameters ///////////////////// //////////////// API parameters /////////////////////
///////////////////////////////////////////////////// /////////////////////////////////////////////////////
@ -98,7 +90,8 @@ public class ConfigureInternalLoadBalancerElementCmd extends BaseAsyncCmd {
@Override @Override
public void execute() throws ConcurrentOperationException, ResourceUnavailableException, InsufficientCapacityException { public void execute() throws ConcurrentOperationException, ResourceUnavailableException, InsufficientCapacityException {
CallContext.current().setEventDetails("Internal load balancer element: " + id); CallContext.current().setEventDetails("Internal load balancer element: " + id);
VirtualRouterProvider result = _service.get(0).configureInternalLoadBalancerElement(getId(), getEnabled()); InternalLoadBalancerElementService service = _networkService.getInternalLoadBalancerElementById(id);
VirtualRouterProvider result = service.configureInternalLoadBalancerElement(getId(), getEnabled());
if (result != null) { if (result != null) {
InternalLoadBalancerElementResponse routerResponse = _responseGenerator.createInternalLbElementResponse(result); InternalLoadBalancerElementResponse routerResponse = _responseGenerator.createInternalLbElementResponse(result);
routerResponse.setResponseName(getCommandName()); routerResponse.setResponseName(getCommandName());

14
api/src/main/java/org/apache/cloudstack/api/command/admin/internallb/CreateInternalLoadBalancerElementCmd.java
View File

@ -16,11 +16,6 @@
// under the License. // under the License.
package org.apache.cloudstack.api.command.admin.internallb; package org.apache.cloudstack.api.command.admin.internallb;
import java.util.List;
import javax.inject.Inject;
import org.apache.cloudstack.api.APICommand; import org.apache.cloudstack.api.APICommand;
import org.apache.cloudstack.api.ApiConstants; import org.apache.cloudstack.api.ApiConstants;
import org.apache.cloudstack.api.ApiErrorCode; import org.apache.cloudstack.api.ApiErrorCode;
@ -45,9 +40,6 @@ import com.cloud.user.Account;
responseHasSensitiveInfo = false) responseHasSensitiveInfo = false)
public class CreateInternalLoadBalancerElementCmd extends BaseAsyncCreateCmd { public class CreateInternalLoadBalancerElementCmd extends BaseAsyncCreateCmd {
@Inject
private List<InternalLoadBalancerElementService> _service;
///////////////////////////////////////////////////// /////////////////////////////////////////////////////
//////////////// API parameters ///////////////////// //////////////// API parameters /////////////////////
///////////////////////////////////////////////////// /////////////////////////////////////////////////////
@ -83,7 +75,8 @@ public class CreateInternalLoadBalancerElementCmd extends BaseAsyncCreateCmd {
@Override @Override
public void execute() { public void execute() {
CallContext.current().setEventDetails("Virtual router element Id: " + getEntityId()); CallContext.current().setEventDetails("Virtual router element Id: " + getEntityId());
VirtualRouterProvider result = _service.get(0).getInternalLoadBalancerElement(getEntityId()); InternalLoadBalancerElementService service = _networkService.getInternalLoadBalancerElementByNetworkServiceProviderId(getNspId());
VirtualRouterProvider result = service.getInternalLoadBalancerElement(getEntityId());
if (result != null) { if (result != null) {
InternalLoadBalancerElementResponse response = _responseGenerator.createInternalLbElementResponse(result); InternalLoadBalancerElementResponse response = _responseGenerator.createInternalLbElementResponse(result);
response.setResponseName(getCommandName()); response.setResponseName(getCommandName());
@ -95,7 +88,8 @@ public class CreateInternalLoadBalancerElementCmd extends BaseAsyncCreateCmd {
@Override @Override
public void create() throws ResourceAllocationException { public void create() throws ResourceAllocationException {
VirtualRouterProvider result = _service.get(0).addInternalLoadBalancerElement(getNspId()); InternalLoadBalancerElementService service = _networkService.getInternalLoadBalancerElementByNetworkServiceProviderId(getNspId());
VirtualRouterProvider result = service.addInternalLoadBalancerElement(getNspId());
if (result != null) { if (result != null) {
setEntityId(result.getId()); setEntityId(result.getId());
setEntityUuid(result.getUuid()); setEntityUuid(result.getUuid());

24
api/src/main/java/org/apache/cloudstack/api/command/admin/internallb/ListInternalLoadBalancerElementsCmd.java
View File

@ -17,11 +17,9 @@
package org.apache.cloudstack.api.command.admin.internallb; package org.apache.cloudstack.api.command.admin.internallb;
import java.util.ArrayList; import java.util.ArrayList;
import java.util.Collections;
import java.util.List; import java.util.List;
import javax.inject.Inject;
import org.apache.cloudstack.api.APICommand; import org.apache.cloudstack.api.APICommand;
import org.apache.cloudstack.api.ApiConstants; import org.apache.cloudstack.api.ApiConstants;
import org.apache.cloudstack.api.BaseListCmd; import org.apache.cloudstack.api.BaseListCmd;
@ -46,9 +44,6 @@ import com.cloud.network.VirtualRouterProvider;
responseHasSensitiveInfo = false) responseHasSensitiveInfo = false)
public class ListInternalLoadBalancerElementsCmd extends BaseListCmd { public class ListInternalLoadBalancerElementsCmd extends BaseListCmd {
@Inject
private InternalLoadBalancerElementService _service;
///////////////////////////////////////////////////// /////////////////////////////////////////////////////
//////////////// API parameters ///////////////////// //////////////// API parameters /////////////////////
///////////////////////////////////////////////////// /////////////////////////////////////////////////////
@ -86,12 +81,21 @@ public class ListInternalLoadBalancerElementsCmd extends BaseListCmd {
@Override @Override
public void execute() throws ResourceUnavailableException, InsufficientCapacityException, ServerApiException, ConcurrentOperationException, public void execute() throws ResourceUnavailableException, InsufficientCapacityException, ServerApiException, ConcurrentOperationException,
ResourceAllocationException { ResourceAllocationException {
List<? extends VirtualRouterProvider> providers = _service.searchForInternalLoadBalancerElements(getId(), getNspId(), getEnabled()); List<InternalLoadBalancerElementService> services;
if (id == null && nspId == null) {
services = _networkService.getInternalLoadBalancerElements();
} else {
InternalLoadBalancerElementService elementService = id != null ? _networkService.getInternalLoadBalancerElementById(id) : _networkService.getInternalLoadBalancerElementByNetworkServiceProviderId(nspId);
services = Collections.singletonList(elementService);
}
ListResponse<InternalLoadBalancerElementResponse> response = new ListResponse<InternalLoadBalancerElementResponse>(); ListResponse<InternalLoadBalancerElementResponse> response = new ListResponse<InternalLoadBalancerElementResponse>();
List<InternalLoadBalancerElementResponse> providerResponses = new ArrayList<InternalLoadBalancerElementResponse>(); List<InternalLoadBalancerElementResponse> providerResponses = new ArrayList<InternalLoadBalancerElementResponse>();
for (VirtualRouterProvider provider : providers) { for (InternalLoadBalancerElementService service : services) {
InternalLoadBalancerElementResponse providerResponse = _responseGenerator.createInternalLbElementResponse(provider); List<? extends VirtualRouterProvider> providers = service.searchForInternalLoadBalancerElements(getId(), getNspId(), getEnabled());
providerResponses.add(providerResponse); for (VirtualRouterProvider provider : providers) {
InternalLoadBalancerElementResponse providerResponse = _responseGenerator.createInternalLbElementResponse(provider);
providerResponses.add(providerResponse);
}
} }
response.setResponses(providerResponses); response.setResponses(providerResponses);
response.setResponseName(getCommandName()); response.setResponseName(getCommandName());

2
api/src/main/java/org/apache/cloudstack/network/element/InternalLoadBalancerElementService.java
View File

@ -52,4 +52,6 @@ public interface InternalLoadBalancerElementService extends PluggableService {
* @return * @return
*/ */
List<? extends VirtualRouterProvider> searchForInternalLoadBalancerElements(Long id, Long ntwkSvsProviderId, Boolean enabled); List<? extends VirtualRouterProvider> searchForInternalLoadBalancerElements(Long id, Long ntwkSvsProviderId, Boolean enabled);
VirtualRouterProvider.Type getProviderType();
} }

8
core/src/main/resources/META-INF/cloudstack/core/spring-core-registry-core-context.xml
View File

@ -350,4 +350,12 @@
<bean id="clusterDrsAlgorithmRegistry" <bean id="clusterDrsAlgorithmRegistry"
class="org.apache.cloudstack.spring.lifecycle.registry.ExtensionRegistry"> class="org.apache.cloudstack.spring.lifecycle.registry.ExtensionRegistry">
</bean> </bean>
<bean id="internalLoadBalancerElementServiceRegistry" class="org.apache.cloudstack.spring.lifecycle.registry.ExtensionRegistry">
<property name="preRegistered">
<list>
<ref bean="InternalLbVm" />
</list>
</property>
</bean>
</beans> </beans>

5
core/src/main/resources/META-INF/cloudstack/network/spring-core-lifecycle-network-context-inheritable.xml
View File

@ -103,4 +103,9 @@
<property name="typeClass" <property name="typeClass"
value="org.apache.cloudstack.region.gslb.GslbServiceProvider" /> value="org.apache.cloudstack.region.gslb.GslbServiceProvider" />
</bean> </bean>
<bean class="org.apache.cloudstack.spring.lifecycle.registry.RegistryLifecycle">
<property name="registry" ref="internalLoadBalancerElementServiceRegistry" />
<property name="typeClass" value="org.apache.cloudstack.network.element.InternalLoadBalancerElementService" />
</bean>
</beans> </beans>

3
engine/components-api/src/main/java/com/cloud/network/vpc/NetworkACLManager.java
View File

@ -19,6 +19,7 @@ package com.cloud.network.vpc;
import java.util.List; import java.util.List;
import com.cloud.exception.ResourceUnavailableException; import com.cloud.exception.ResourceUnavailableException;
import com.cloud.network.Network;
import com.cloud.network.dao.NetworkVO; import com.cloud.network.dao.NetworkVO;
public interface NetworkACLManager { public interface NetworkACLManager {
@ -91,4 +92,6 @@ public interface NetworkACLManager {
boolean revokeACLItemsForPrivateGw(PrivateGateway gateway) throws ResourceUnavailableException; boolean revokeACLItemsForPrivateGw(PrivateGateway gateway) throws ResourceUnavailableException;
boolean applyACLToPrivateGw(PrivateGateway gateway) throws ResourceUnavailableException; boolean applyACLToPrivateGw(PrivateGateway gateway) throws ResourceUnavailableException;
boolean reorderAclRules(VpcVO vpc, List<? extends Network> networks, List<? extends NetworkACLItem> networkACLItems);
} }

5
plugins/network-elements/bigswitch/src/main/java/com/cloud/network/element/BigSwitchBcfElement.java
View File

@ -698,6 +698,11 @@ NetworkACLServiceProvider, FirewallServiceProvider, ResourceStateAdapter {
return true; return true;
} }
@Override
public boolean reorderAclRules(Vpc vpc, List<? extends Network> networks, List<? extends NetworkACLItem> networkACLItems) {
return true;
}
@Override @Override
public boolean applyFWRules(Network network, public boolean applyFWRules(Network network,
List<? extends FirewallRule> rules) List<? extends FirewallRule> rules)

16
plugins/network-elements/internal-loadbalancer/src/main/java/org/apache/cloudstack/network/element/InternalLoadBalancerElement.java
View File

@ -83,7 +83,9 @@ import com.cloud.vm.VirtualMachine;
import com.cloud.vm.VirtualMachineProfile; import com.cloud.vm.VirtualMachineProfile;
import com.cloud.vm.dao.DomainRouterDao; import com.cloud.vm.dao.DomainRouterDao;
import com.cloud.network.router.NetworkHelper; import com.cloud.network.router.NetworkHelper;
import org.springframework.stereotype.Component;
@Component
public class InternalLoadBalancerElement extends AdapterBase implements LoadBalancingServiceProvider, InternalLoadBalancerElementService, IpDeployer { public class InternalLoadBalancerElement extends AdapterBase implements LoadBalancingServiceProvider, InternalLoadBalancerElementService, IpDeployer {
protected static final Map<Service, Map<Capability, String>> capabilities = setCapabilities(); protected static final Map<Service, Map<Capability, String>> capabilities = setCapabilities();
private static InternalLoadBalancerElement internalLbElement = null; private static InternalLoadBalancerElement internalLbElement = null;
@ -112,14 +114,7 @@ public class InternalLoadBalancerElement extends AdapterBase implements LoadBala
@Qualifier("networkHelper") @Qualifier("networkHelper")
protected NetworkHelper _networkHelper; protected NetworkHelper _networkHelper;
protected InternalLoadBalancerElement() { public InternalLoadBalancerElement() {
}
public static InternalLoadBalancerElement getInstance() {
if (internalLbElement == null) {
internalLbElement = new InternalLoadBalancerElement();
}
return internalLbElement;
} }
private boolean canHandle(Network config, Scheme lbScheme) { private boolean canHandle(Network config, Scheme lbScheme) {
@ -517,6 +512,11 @@ public class InternalLoadBalancerElement extends AdapterBase implements LoadBala
return sc.list(); return sc.list();
} }
@Override
public Type getProviderType() {
return Type.InternalLbVm;
}
@Override @Override
public boolean applyIps(Network network, List<? extends PublicIpAddress> ipAddress, Set<Service> services) throws ResourceUnavailableException { public boolean applyIps(Network network, List<? extends PublicIpAddress> ipAddress, Set<Service> services) throws ResourceUnavailableException {
//do nothing here; this element just has to extend the ip deployer //do nothing here; this element just has to extend the ip deployer

5
plugins/network-elements/juniper-contrail/src/main/java/org/apache/cloudstack/network/contrail/management/ContrailVpcElementImpl.java
View File

@ -182,6 +182,11 @@ public class ContrailVpcElementImpl extends ContrailElementImpl implements Netwo
return true; return true;
} }
@Override
public boolean reorderAclRules(Vpc vpc, List<? extends Network> networks, List<? extends NetworkACLItem> networkACLItems) {
return true;
}
@Override @Override
public boolean applyACLItemsToPrivateGw(PrivateGateway privateGateway, public boolean applyACLItemsToPrivateGw(PrivateGateway privateGateway,
List<? extends NetworkACLItem> rules) List<? extends NetworkACLItem> rules)

52
plugins/network-elements/nsx/src/main/java/org/apache/cloudstack/service/NsxElement.java
View File

@ -112,7 +112,6 @@ import javax.inject.Inject;
import javax.naming.ConfigurationException; import javax.naming.ConfigurationException;
import java.util.ArrayList; import java.util.ArrayList;
import java.util.Arrays; import java.util.Arrays;
import java.util.Comparator;
import java.util.HashMap; import java.util.HashMap;
import java.util.List; import java.util.List;
import java.util.Locale; import java.util.Locale;
@ -712,18 +711,7 @@ public class NsxElement extends AdapterBase implements DhcpServiceProvider, Dns
boolean success = true; boolean success = true;
for (NetworkACLItem rule : rules) { for (NetworkACLItem rule : rules) {
String privatePort = getPrivatePortRangeForACLRule(rule); String privatePort = getPrivatePortRangeForACLRule(rule);
NsxNetworkRule networkRule = new NsxNetworkRule.Builder() NsxNetworkRule networkRule = getNsxNetworkRuleForAcl(rule, privatePort);
.setRuleId(rule.getId())
.setSourceCidrList(Objects.nonNull(rule.getSourceCidrList()) ? transformCidrListValues(rule.getSourceCidrList()) : List.of("ANY"))
.setAclAction(transformActionValue(rule.getAction()))
.setTrafficType(rule.getTrafficType().toString())
.setProtocol(rule.getProtocol().toUpperCase())
.setPublicPort(String.valueOf(rule.getSourcePortStart()))
.setPrivatePort(privatePort)
.setIcmpCode(rule.getIcmpCode())
.setIcmpType(rule.getIcmpType())
.setService(Network.Service.NetworkACL)
.build();
if (Arrays.asList(NetworkACLItem.State.Active, NetworkACLItem.State.Add).contains(rule.getState())) { if (Arrays.asList(NetworkACLItem.State.Active, NetworkACLItem.State.Add).contains(rule.getState())) {
success = success && nsxService.addFirewallRules(network, List.of(networkRule)); success = success && nsxService.addFirewallRules(network, List.of(networkRule));
} else if (NetworkACLItem.State.Revoke == rule.getState()) { } else if (NetworkACLItem.State.Revoke == rule.getState()) {
@ -740,9 +728,38 @@ public class NsxElement extends AdapterBase implements DhcpServiceProvider, Dns
return success; return success;
} }
private void reorderRules(List<? extends NetworkACLItem> rules) { @Override
rules.sort((Comparator) (r1, r2) -> ((NetworkACLItem) r2).getNumber() - ((NetworkACLItem) r1).getNumber()); public boolean reorderAclRules(Vpc vpc, List<? extends Network> networks, List<? extends NetworkACLItem> networkACLItems) {
List<NsxNetworkRule> aclRulesList = new ArrayList<>();
for (NetworkACLItem rule : networkACLItems) {
String privatePort = getPrivatePortRangeForACLRule(rule);
aclRulesList.add(getNsxNetworkRuleForAcl(rule, privatePort));
}
for (Network network: networks) {
nsxService.deleteFirewallRules(network, aclRulesList);
}
boolean success = true;
for (Network network : networks) {
for (NsxNetworkRule aclRule : aclRulesList) {
success = success && nsxService.addFirewallRules(network, List.of(aclRule));
}
}
return success;
}
private NsxNetworkRule getNsxNetworkRuleForAcl(NetworkACLItem rule, String privatePort) {
return new NsxNetworkRule.Builder()
.setRuleId(rule.getId())
.setSourceCidrList(Objects.nonNull(rule.getSourceCidrList()) ? transformCidrListValues(rule.getSourceCidrList()) : List.of("ANY"))
.setAclAction(transformActionValue(rule.getAction()))
.setTrafficType(rule.getTrafficType().toString())
.setProtocol(rule.getProtocol().toUpperCase())
.setPublicPort(String.valueOf(rule.getSourcePortStart()))
.setPrivatePort(privatePort)
.setIcmpCode(rule.getIcmpCode())
.setIcmpType(rule.getIcmpType())
.setService(Network.Service.NetworkACL)
.build();
} }
@Override @Override
public boolean applyFWRules(Network network, List<? extends FirewallRule> rules) throws ResourceUnavailableException { public boolean applyFWRules(Network network, List<? extends FirewallRule> rules) throws ResourceUnavailableException {
@ -872,6 +889,11 @@ public class NsxElement extends AdapterBase implements DhcpServiceProvider, Dns
return sc.list(); return sc.list();
} }
@Override
public VirtualRouterProvider.Type getProviderType() {
return VirtualRouterProvider.Type.Nsx;
}
@Override @Override
public List<Class<?>> getCommands() { public List<Class<?>> getCommands() {
List<Class<?>> cmdList = new ArrayList<Class<?>>(); List<Class<?>> cmdList = new ArrayList<Class<?>>();

2
plugins/network-elements/nsx/src/test/java/org/apache/cloudstack/utils/NsxControllerUtilsTest.java
View File

@ -30,7 +30,7 @@ import org.mockito.InjectMocks;
import org.mockito.Mock; import org.mockito.Mock;
import org.mockito.Mockito; import org.mockito.Mockito;
import org.mockito.Spy; import org.mockito.Spy;
import org.mockito.runners.MockitoJUnitRunner; import org.mockito.junit.MockitoJUnitRunner;
@RunWith(MockitoJUnitRunner.class) @RunWith(MockitoJUnitRunner.class)
public class NsxControllerUtilsTest { public class NsxControllerUtilsTest {

54
server/src/main/java/com/cloud/network/NetworkServiceImpl.java
View File

@ -46,7 +46,9 @@ import com.cloud.dc.VlanDetailsVO;
import com.cloud.dc.dao.VlanDetailsDao; import com.cloud.dc.dao.VlanDetailsDao;
import com.cloud.network.dao.NsxProviderDao; import com.cloud.network.dao.NsxProviderDao;
import com.cloud.network.dao.PublicIpQuarantineDao; import com.cloud.network.dao.PublicIpQuarantineDao;
import com.cloud.network.dao.VirtualRouterProviderDao;
import com.cloud.network.element.NsxProviderVO; import com.cloud.network.element.NsxProviderVO;
import com.cloud.network.element.VirtualRouterProviderVO;
import com.cloud.offering.ServiceOffering; import com.cloud.offering.ServiceOffering;
import com.cloud.service.dao.ServiceOfferingDao; import com.cloud.service.dao.ServiceOfferingDao;
import org.apache.cloudstack.acl.ControlledEntity.ACLType; import org.apache.cloudstack.acl.ControlledEntity.ACLType;
@ -84,6 +86,7 @@ import org.apache.cloudstack.network.NetworkPermissionVO;
import org.apache.cloudstack.network.dao.NetworkPermissionDao; import org.apache.cloudstack.network.dao.NetworkPermissionDao;
import org.apache.cloudstack.network.element.InternalLoadBalancerElementService; import org.apache.cloudstack.network.element.InternalLoadBalancerElementService;
import org.apache.commons.collections.CollectionUtils; import org.apache.commons.collections.CollectionUtils;
import org.apache.commons.collections.MapUtils;
import org.apache.commons.lang3.EnumUtils; import org.apache.commons.lang3.EnumUtils;
import org.apache.commons.lang3.ObjectUtils; import org.apache.commons.lang3.ObjectUtils;
import org.apache.commons.lang3.StringUtils; import org.apache.commons.lang3.StringUtils;
@ -356,8 +359,6 @@ public class NetworkServiceImpl extends ManagerBase implements NetworkService, C
@Inject @Inject
HostDao _hostDao; HostDao _hostDao;
@Inject @Inject
InternalLoadBalancerElementService _internalLbElementSvc;
@Inject
DataCenterVnetDao _dcVnetDao; DataCenterVnetDao _dcVnetDao;
@Inject @Inject
AccountGuestVlanMapDao _accountGuestVlanMapDao; AccountGuestVlanMapDao _accountGuestVlanMapDao;
@ -413,6 +414,10 @@ public class NetworkServiceImpl extends ManagerBase implements NetworkService, C
PublicIpQuarantineDao publicIpQuarantineDao; PublicIpQuarantineDao publicIpQuarantineDao;
@Inject @Inject
NsxProviderDao nsxProviderDao; NsxProviderDao nsxProviderDao;
@Inject
private VirtualRouterProviderDao virtualRouterProviderDao;
List<InternalLoadBalancerElementService> internalLoadBalancerElementServices = new ArrayList<>();
Map<String, InternalLoadBalancerElementService> internalLoadBalancerElementServiceMap = new HashMap<>();
@Autowired @Autowired
@Qualifier("networkHelper") @Qualifier("networkHelper")
@ -820,9 +825,19 @@ public class NetworkServiceImpl extends ManagerBase implements NetworkService, C
@Override @Override
public boolean start() { public boolean start() {
initializeInternalLoadBalancerElementsMap();
return true; return true;
} }
private void initializeInternalLoadBalancerElementsMap() {
if (MapUtils.isEmpty(internalLoadBalancerElementServiceMap) && CollectionUtils.isNotEmpty(internalLoadBalancerElementServices)) {
for (InternalLoadBalancerElementService service : internalLoadBalancerElementServices) {
internalLoadBalancerElementServiceMap.put(service.getProviderType().name(), service);
}
s_logger.debug(String.format("Discovered internal loadbalancer elements configured on NetworkServiceImpl"));
}
}
@Override @Override
public boolean stop() { public boolean stop() {
return true; return true;
@ -5420,7 +5435,8 @@ public class NetworkServiceImpl extends ManagerBase implements NetworkService, C
throw new CloudRuntimeException("Unable to find the Network Element implementing the " + Network.Provider.InternalLbVm.getName() + " Provider"); throw new CloudRuntimeException("Unable to find the Network Element implementing the " + Network.Provider.InternalLbVm.getName() + " Provider");
} }
_internalLbElementSvc.addInternalLoadBalancerElement(nsp.getId()); InternalLoadBalancerElementService service = getInternalLoadBalancerElementByNetworkServiceProviderId(nsp.getId());
service.addInternalLoadBalancerElement(nsp.getId());
return nsp; return nsp;
} }
@ -5741,6 +5757,10 @@ public class NetworkServiceImpl extends ManagerBase implements NetworkService, C
_networkGurus = networkGurus; _networkGurus = networkGurus;
} }
public void setInternalLoadBalancerElementServices(List<InternalLoadBalancerElementService> services) {
this.internalLoadBalancerElementServices = services;
}
@Override @Override
@ActionEvent(eventType = EventTypes.EVENT_NET_IP_UPDATE, eventDescription = "updating public ip address", async = true) @ActionEvent(eventType = EventTypes.EVENT_NET_IP_UPDATE, eventDescription = "updating public ip address", async = true)
public IpAddress updateIP(Long id, String customId, Boolean displayIp) { public IpAddress updateIP(Long id, String customId, Boolean displayIp) {
@ -6082,6 +6102,34 @@ public class NetworkServiceImpl extends ManagerBase implements NetworkService, C
_ipAddrMgr.removePublicIpAddressFromQuarantine(publicIpQuarantine.getId(), removalReason); _ipAddrMgr.removePublicIpAddressFromQuarantine(publicIpQuarantine.getId(), removalReason);
} }
@Override
public InternalLoadBalancerElementService getInternalLoadBalancerElementByType(Type type) {
return internalLoadBalancerElementServiceMap.getOrDefault(type.name(), null);
}
@Override
public InternalLoadBalancerElementService getInternalLoadBalancerElementByNetworkServiceProviderId(long networkProviderId) {
PhysicalNetworkServiceProviderVO provider = _pNSPDao.findById(networkProviderId);
if (provider == null) {
String msg = String.format("Cannot find a network service provider with ID %s", networkProviderId);
s_logger.error(msg);
throw new CloudRuntimeException(msg);
}
Type type = provider.getProviderName().equalsIgnoreCase("nsx") ? Type.Nsx : Type.InternalLbVm;
return getInternalLoadBalancerElementByType(type);
}
@Override
public InternalLoadBalancerElementService getInternalLoadBalancerElementById(long providerId) {
VirtualRouterProviderVO provider = virtualRouterProviderDao.findById(providerId);
return getInternalLoadBalancerElementByType(provider.getType());
}
@Override
public List<InternalLoadBalancerElementService> getInternalLoadBalancerElements() {
return new ArrayList<>(this.internalLoadBalancerElementServiceMap.values());
}
/** /**
* Retrieves the active quarantine for the given public IP address. It can find by the ID of the quarantine or the address of the public IP. * Retrieves the active quarantine for the given public IP address. It can find by the ID of the quarantine or the address of the public IP.
* @throws CloudRuntimeException if it does not find an active quarantine for the given public IP. * @throws CloudRuntimeException if it does not find an active quarantine for the given public IP.

5
server/src/main/java/com/cloud/network/element/VpcVirtualRouterElement.java
View File

@ -529,6 +529,11 @@ public class VpcVirtualRouterElement extends VirtualRouterElement implements Vpc
return result; return result;
} }
@Override
public boolean reorderAclRules(Vpc vpc, List<? extends Network> networks, List<? extends NetworkACLItem> networkACLItems) {
return true;
}
@Override @Override
protected Type getVirtualRouterProvider() { protected Type getVirtualRouterProvider() {
return Type.VPCVirtualRouter; return Type.VPCVirtualRouter;

14
server/src/main/java/com/cloud/network/vpc/NetworkACLManagerImpl.java
View File

@ -368,6 +368,20 @@ public class NetworkACLManagerImpl extends ManagerBase implements NetworkACLMana
return applyACLToPrivateGw(gateway, rules); return applyACLToPrivateGw(gateway, rules);
} }
@Override
public boolean reorderAclRules(VpcVO vpc, List<? extends Network> networks, List<? extends NetworkACLItem> networkACLItems) {
List<NetworkACLServiceProvider> nsxElements = new ArrayList<>();
nsxElements.add((NetworkACLServiceProvider) _ntwkModel.getElementImplementingProvider(Network.Provider.Nsx.getName()));
try {
for (final NetworkACLServiceProvider provider : nsxElements) {
return provider.reorderAclRules(vpc, networks, networkACLItems);
}
} catch (final Exception ex) {
s_logger.debug("Failed to reorder ACLs on NSX due to: " + ex.getLocalizedMessage());
}
return false;
}
private boolean applyACLToPrivateGw(final PrivateGateway gateway, final List<? extends NetworkACLItem> rules) throws ResourceUnavailableException { private boolean applyACLToPrivateGw(final PrivateGateway gateway, final List<? extends NetworkACLItem> rules) throws ResourceUnavailableException {
List<VpcProvider> vpcElements = new ArrayList<VpcProvider>(); List<VpcProvider> vpcElements = new ArrayList<VpcProvider>();
vpcElements.add((VpcProvider)_ntwkModel.getElementImplementingProvider(Network.Provider.VPCVirtualRouter.getName())); vpcElements.add((VpcProvider)_ntwkModel.getElementImplementingProvider(Network.Provider.VPCVirtualRouter.getName()));

22
server/src/main/java/com/cloud/network/vpc/NetworkACLServiceImpl.java
View File

@ -991,14 +991,26 @@ public class NetworkACLServiceImpl extends ManagerBase implements NetworkACLServ
NetworkACLVO lockedAcl = _networkACLDao.acquireInLockTable(ruleBeingMoved.getAclId()); NetworkACLVO lockedAcl = _networkACLDao.acquireInLockTable(ruleBeingMoved.getAclId());
List<NetworkACLItemVO> allAclRules = getAllAclRulesSortedByNumber(lockedAcl.getId()); List<NetworkACLItemVO> allAclRules = getAllAclRulesSortedByNumber(lockedAcl.getId());
validateAclConsistency(moveNetworkAclItemCmd, lockedAcl, allAclRules); validateAclConsistency(moveNetworkAclItemCmd, lockedAcl, allAclRules);
NetworkACLItem networkACLItem = null;
if (previousRule == null) { if (previousRule == null) {
return moveRuleToTheTop(ruleBeingMoved, allAclRules); networkACLItem = moveRuleToTheTop(ruleBeingMoved, allAclRules);
} else if (nextRule == null) {
networkACLItem = moveRuleToTheBottom(ruleBeingMoved, allAclRules);
} else {
networkACLItem = moveRuleBetweenAclRules(ruleBeingMoved, allAclRules, previousRule, nextRule);
} }
if (nextRule == null) { VpcVO vpc = _vpcDao.findById(lockedAcl.getVpcId());
return moveRuleToTheBottom(ruleBeingMoved, allAclRules); if (Objects.isNull(vpc)) {
return networkACLItem;
} }
return moveRuleBetweenAclRules(ruleBeingMoved, allAclRules, previousRule, nextRule); final DataCenter dc = _entityMgr.findById(DataCenter.class, vpc.getZoneId());
final NsxProviderVO nsxProvider = nsxProviderDao.findByZoneId(dc.getId());
List<NetworkVO> networks = _networkDao.listByAclId(lockedAcl.getId());
if (Objects.nonNull(nsxProvider) && !networks.isEmpty()) {
allAclRules = getAllAclRulesSortedByNumber(lockedAcl.getId());
_networkAclMgr.reorderAclRules(vpc, networks, allAclRules);
}
return networkACLItem;
} finally { } finally {
_networkACLDao.releaseFromLockTable(ruleBeingMoved.getAclId()); _networkACLDao.releaseFromLockTable(ruleBeingMoved.getAclId());
} }

1
server/src/main/resources/META-INF/cloudstack/core/spring-server-core-managers-context.xml
View File

@ -165,6 +165,7 @@
<bean id="networkServiceImpl" class="com.cloud.network.NetworkServiceImpl" > <bean id="networkServiceImpl" class="com.cloud.network.NetworkServiceImpl" >
<property name="networkGurus" value="#{networkGurusRegistry.registered}" /> <property name="networkGurus" value="#{networkGurusRegistry.registered}" />
<property name="internalLoadBalancerElementServices" value="#{internalLoadBalancerElementServiceRegistry.registered}" />
</bean> </bean>
<bean id="networkUsageManagerImpl" class="com.cloud.network.NetworkUsageManagerImpl" /> <bean id="networkUsageManagerImpl" class="com.cloud.network.NetworkUsageManagerImpl" />

3
server/src/test/java/com/cloud/network/vpc/NetworkACLServiceImplTest.java
View File

@ -34,7 +34,6 @@ import java.util.Map;
import com.cloud.dc.DataCenter; import com.cloud.dc.DataCenter;
import com.cloud.exception.PermissionDeniedException; import com.cloud.exception.PermissionDeniedException;
import com.cloud.network.dao.NsxProviderDao; import com.cloud.network.dao.NsxProviderDao;
import com.cloud.network.element.NsxProviderVO;
import com.cloud.network.vpc.dao.VpcDao; import com.cloud.network.vpc.dao.VpcDao;
import org.apache.cloudstack.acl.SecurityChecker.AccessType; import org.apache.cloudstack.acl.SecurityChecker.AccessType;
import org.apache.cloudstack.api.ServerApiException; import org.apache.cloudstack.api.ServerApiException;
@ -138,8 +137,6 @@ public class NetworkACLServiceImplTest {
private VpcVO vpcVOMock; private VpcVO vpcVOMock;
@Mock @Mock
DataCenter dataCenterVO; DataCenter dataCenterVO;
@Mock
NsxProviderVO nsxProviderVO;
@Mock @Mock
private Account accountMock; private Account accountMock;

22
server/src/test/java/com/cloud/vpc/MockNetworkManagerImpl.java
View File

@ -26,6 +26,7 @@ import javax.naming.ConfigurationException;
import com.cloud.dc.DataCenter; import com.cloud.dc.DataCenter;
import com.cloud.network.PublicIpQuarantine; import com.cloud.network.PublicIpQuarantine;
import com.cloud.network.VirtualRouterProvider;
import com.cloud.utils.fsm.NoTransitionException; import com.cloud.utils.fsm.NoTransitionException;
import org.apache.cloudstack.acl.ControlledEntity.ACLType; import org.apache.cloudstack.acl.ControlledEntity.ACLType;
import org.apache.cloudstack.api.command.admin.address.ReleasePodIpCmdByAdmin; import org.apache.cloudstack.api.command.admin.address.ReleasePodIpCmdByAdmin;
@ -46,6 +47,7 @@ import org.apache.cloudstack.api.command.user.network.UpdateNetworkCmd;
import org.apache.cloudstack.api.command.user.vm.ListNicsCmd; import org.apache.cloudstack.api.command.user.vm.ListNicsCmd;
import org.apache.cloudstack.api.response.AcquirePodIpCmdResponse; import org.apache.cloudstack.api.response.AcquirePodIpCmdResponse;
import org.apache.cloudstack.engine.orchestration.service.NetworkOrchestrationService; import org.apache.cloudstack.engine.orchestration.service.NetworkOrchestrationService;
import org.apache.cloudstack.network.element.InternalLoadBalancerElementService;
import org.springframework.stereotype.Component; import org.springframework.stereotype.Component;
import com.cloud.deploy.DataCenterDeployment; import com.cloud.deploy.DataCenterDeployment;
@ -1086,4 +1088,24 @@ public class MockNetworkManagerImpl extends ManagerBase implements NetworkOrches
public void removePublicIpAddressFromQuarantine(RemoveQuarantinedIpCmd cmd) { public void removePublicIpAddressFromQuarantine(RemoveQuarantinedIpCmd cmd) {
} }
@Override
public InternalLoadBalancerElementService getInternalLoadBalancerElementByType(VirtualRouterProvider.Type type) {
return null;
}
@Override
public InternalLoadBalancerElementService getInternalLoadBalancerElementByNetworkServiceProviderId(long networkProviderId) {
return null;
}
@Override
public InternalLoadBalancerElementService getInternalLoadBalancerElementById(long providerId) {
return null;
}
@Override
public List<InternalLoadBalancerElementService> getInternalLoadBalancerElements() {
return null;
}
} }