Merge branch 'feature-l2vlan-final@@3' into '5.1.0'

<feature>[network]: add update l2 vlan&vni feature

See merge request zstackio/zstack-utility!4646

Author: gitlab

kvmagent/kvmagent/plugins/mevoco.py

@@ -84,18 +84,34 @@ class RemoveForwardDnsRsp(kvmagent.AgentResponse):
     def __init__(self):
         super(RemoveForwardDnsRsp, self).__init__()
 
-def get_phy_dev_from_bridge_name(bridge_name):
-    # for vlan, BR_NAME is "br_eth0_100", vlan sub interface: eth0.100,
-    # for vxlan, BR_NAME is "br_vx_7863", vxlan sub interface vxlan7863"
-    phy_dev = bridge_name.replace('br_', '', 1)
-    if phy_dev[:2] == "vx":
-        phy_dev = phy_dev.replace("vx", "vxlan").replace("_", "")
+def get_phy_dev_from_bridge_name(bridge_name, vlan_id=None):
+    phy_dev = ""
+
+    if vlan_id:
+        if vlan_id.startswith("vlan"):
+            vlan_number = vlan_id.replace("vlan", "")
+            phy_nic = linux.get_bridge_phy_nic_name_from_alias(bridge_name)
+            if not phy_nic:
+                phy_dev = bridge_name.replace('br_', '', 1) + "." + vlan_number
+            else:
+                if "." in phy_nic:
+                    phy_nic = phy_nic.rsplit('.', 1)[0]
+                phy_dev = "%s.%s" % (phy_nic, vlan_number)
+        elif vlan_id.startswith("vxlan"):
+            vxlan_number = vlan_id.replace("vxlan", "")
+            phy_dev = "vxlan" + vxlan_number
     else:
-        phy_nic = linux.get_bridge_phy_nic_name_from_alias(bridge_name)
-        if not phy_nic:
-            phy_dev = phy_dev.replace("_", ".")
+        # for vlan, BR_NAME is "br_eth0_100", vlan sub interface: eth0.100,
+        # for vxlan, BR_NAME is "br_vx_7863", vxlan sub interface vxlan7863"
+        phy_dev = bridge_name.replace('br_', '', 1)
+        if phy_dev[:2] == "vx":
+            phy_dev = phy_dev.replace("vx", "vxlan").replace("_", "")
         else:
-            phy_dev = re.sub(r"^.*_", "%s." % phy_nic, phy_dev)
+            phy_nic = linux.get_bridge_phy_nic_name_from_alias(bridge_name)
+            if not phy_nic:
+                phy_dev = phy_dev.replace("_", ".")
+            else:
+                phy_dev = re.sub(r"^.*_", "%s." % phy_nic, phy_dev)
 
     return phy_dev
 
@@ -110,9 +126,10 @@ def getDhcpEbtableChainName(dhcpIp):
         return "ZSTACK-%s" % dhcpIp
 
 class UserDataEnv(object):
-    def __init__(self, bridge_name, namespace_name):
+    def __init__(self, bridge_name, namespace_name, vlan_id):
         self.bridge_name = bridge_name
         self.namespace_name = namespace_name
+        self.vlan_id = vlan_id
         self.outer_dev = None
         self.inner_dev = None
 
@@ -126,7 +143,8 @@ def prepare(self):
         logger.debug('use id[%s] for the namespace[%s]' % (NAMESPACE_ID, NAMESPACE_NAME))
 
         BR_NAME = self.bridge_name
-        BR_PHY_DEV = get_phy_dev_from_bridge_name(self.bridge_name)
+        VLAN_ID = self.vlan_id
+        BR_PHY_DEV = get_phy_dev_from_bridge_name(self.bridge_name, self.vlan_id)
         OUTER_DEV = "outer%s" % NAMESPACE_ID
         INNER_DEV = "inner%s" % NAMESPACE_ID
         MAX_MTU = linux.MAX_MTU_OF_VNIC
@@ -166,6 +184,7 @@ class DhcpEnv(object):
 
     def __init__(self):
         self.bridge_name = None
+        self.vlan_id = None
         self.dhcp_server_ip = None
         self.dhcp_server6_ip = None
         self.dhcp_netmask = None
@@ -292,6 +311,8 @@ def _prepare_dhcp6_iptables(dualStack=True):
         logger.debug('use id[%s] for the namespace[%s]' % (NAMESPACE_ID, NAMESPACE_NAME))
 
         BR_NAME = self.bridge_name
+        # VLAN_ID sample: vlan100, vxlan200
+        VLAN_ID = self.vlan_id
         DHCP_IP = self.dhcp_server_ip
         DHCP6_IP = self.dhcp_server6_ip
         DHCP_NETMASK = self.dhcp_netmask
@@ -300,7 +321,7 @@ def _prepare_dhcp6_iptables(dualStack=True):
             PREFIX_LEN = linux.netmask_to_cidr(DHCP_NETMASK)
         PREFIX6_LEN = self.prefixLen
         ADDRESS_MODE = self.addressMode
-        BR_PHY_DEV = get_phy_dev_from_bridge_name(self.bridge_name)
+        BR_PHY_DEV = get_phy_dev_from_bridge_name(self.bridge_name, VLAN_ID)
         OUTER_DEV = "outer%s" % NAMESPACE_ID
         INNER_DEV = "inner%s" % NAMESPACE_ID
         if DHCP_IP is not None:
@@ -891,7 +912,7 @@ def prepare_br_connect_ns(ns, ns_inner_dev, ns_outer_dev):
 
             iproute.IpNetnsShell(ns).set_link_up(userdata_br_inner_dev)
 
-        p = UserDataEnv(to.bridgeName, to.namespaceName)
+        p = UserDataEnv(to.bridgeName, to.namespaceName, to.vlanId)
         INNER_DEV = None
         DHCP_IP = None
         NS_NAME = to.namespaceName
@@ -921,7 +942,8 @@ def prepare_br_connect_ns(ns, ns_inner_dev, ns_outer_dev):
 
         # set ebtables
         BR_NAME = to.bridgeName
-        ETH_NAME = get_phy_dev_from_bridge_name(BR_NAME)
+        VLAN_ID = to.vlanId
+        ETH_NAME = get_phy_dev_from_bridge_name(BR_NAME, VLAN_ID)
 
         MAC = iproute.IpNetnsShell(NS_NAME).get_mac(INNER_DEV)
         CHAIN_NAME="USERDATA-%s" % BR_NAME
@@ -1323,6 +1345,7 @@ def prepare_dhcp(self, req):
         cmd = jsonobject.loads(req[http.REQUEST_BODY])
         p = DhcpEnv()
         p.bridge_name = cmd.bridgeName
+        p.vlan_id = cmd.vlanId
         p.dhcp_server_ip = cmd.dhcpServerIp
         p.dhcp_server6_ip = cmd.dhcp6ServerIp
         p.dhcp_netmask = cmd.dhcpNetmask
@@ -1357,6 +1380,7 @@ def batch_prepare_dhcp(self, req):
         for info in cmd.dhcpInfos:
             p = DhcpEnv()
             p.bridge_name = info.bridgeName
+            p.vlan_id = info.vlanId
             p.dhcp_server_ip = info.dhcpServerIp
             p.dhcp_server6_ip = info.dhcp6ServerIp
             p.dhcp_netmask = info.dhcpNetmask

kvmagent/kvmagent/plugins/network_plugin.py

@@ -31,6 +31,8 @@
 KVM_CHANGE_LLDP_MODE_PATH = '/network/lldp/changemode'
 KVM_GET_LLDP_INFO_PATH = '/network/lldp/get'
 KVM_APPLY_LLDP_CONFIG_PATH = '/network/lldp/apply'
+KVM_UPDATE_L2VLAN_NETWORK_PATH = "/network/l2vlan/updatebridge"
+KVM_UPDATE_L2VXLAN_NETWORK_PATH = "/network/l2vxlan/updatebridge"
 KVM_REALIZE_L2NOVLAN_NETWORK_PATH = "/network/l2novlan/createbridge"
 KVM_REALIZE_L2VLAN_NETWORK_PATH = "/network/l2vlan/createbridge"
 KVM_CHECK_L2NOVLAN_NETWORK_PATH = "/network/l2novlan/checkbridge"
@@ -943,6 +945,94 @@ def apply_lldp_config(self, req):
 
         return jsonobject.dumps(rsp)
 
+    @lock.lock('bridge')
+    @kvmagent.replyerror
+    def update_vlan_bridge(self, req):
+        rsp = CreateBridgeResponse()
+        cmd = jsonobject.loads(req[http.REQUEST_BODY])
+        try:
+            self.update_bridge_vlan(cmd, rsp)
+        except Exception as e:
+            logger.warning(traceback.format_exc())
+            rsp.error = 'unable to update vlan bridge[%s], because %s' % (
+                cmd.bridgeName, str(e))
+            rsp.success = False
+        return jsonobject.dumps(rsp)
+
+    @lock.lock('bridge')
+    @kvmagent.replyerror
+    def update_vxlan_bridge(self, req):
+        rsp = CreateBridgeResponse()
+        cmd = jsonobject.loads(req[http.REQUEST_BODY])
+        try:
+            self.update_bridge_vxlan(cmd, rsp)
+        except Exception as e:
+            logger.warning(traceback.format_exc())
+            rsp.error = 'unable to update vxlan bridge[%s], because %s' % (
+                cmd.bridgeName, str(e))
+            rsp.success = False
+        return jsonobject.dumps(rsp)
+
+    def update_bridge_vxlan(self, cmd, rsp):
+        if not cmd.oldVlan or not cmd.newVlan:
+            error_msg = 'both oldVlan and newVlan must be provided.'
+            logger.warning(error_msg)
+            rsp.error = error_msg
+            rsp.success = False
+            return jsonobject.dumps(rsp)
+        new_vxlan_interface = None
+        old_vxlan_interface = None
+        if cmd.newVlan:
+            new_vxlan_interface = 'vxlan%s' % cmd.newVlan
+        if cmd.oldVlan:
+            old_vxlan_interface = 'vxlan%s' % cmd.oldVlan
+        try:
+            if cmd.peers:
+                linux.delete_vxlan_fdbs([old_vxlan_interface], cmd.peers)
+            linux.change_vxlan_interface(cmd.oldVlan, cmd.newVlan)
+            linux.update_bridge_interface_configuration(old_vxlan_interface, new_vxlan_interface,
+                                                        cmd.bridgeName, cmd.l2NetworkUuid)
+            if cmd.peers:
+                linux.populate_vxlan_fdbs([new_vxlan_interface], cmd.peers)
+            logger.debug('successfully update bridge[%s] vxlan interface from device[%s] to device[%s]'
+                % (cmd.bridgeName, cmd.oldVlanInterface, cmd.newVlanInterface))
+        except Exception as e:
+            logger.warning(traceback.format_exc())
+            rsp.error = ('unable to update bridge[%s] vxlan interface from device[%s] to device[%s], because %s'
+                         % (cmd.bridgeName, old_vxlan_interface, new_vxlan_interface, str(e)))
+            rsp.success = False
+        return jsonobject.dumps(rsp)
+
+    def update_bridge_vlan(self, cmd, rsp):
+        self._ifup_device_if_down(cmd.physicalInterfaceName)
+        if cmd.newVlan:
+            new_vlan_interface = '%s.%s' % (cmd.physicalInterfaceName, cmd.newVlan)
+        else:
+            new_vlan_interface = '%s' % cmd.physicalInterfaceName
+        if cmd.oldVlan:
+            old_vlan_interface = '%s.%s' % (cmd.physicalInterfaceName, cmd.oldVlan)
+        else:
+            old_vlan_interface = '%s' % cmd.physicalInterfaceName
+        try:
+            if cmd.newVlan:
+                linux.create_vlan_eth(cmd.physicalInterfaceName, cmd.newVlan)
+            linux.update_bridge_interface_configuration(old_vlan_interface, new_vlan_interface,
+                                                        cmd.bridgeName, cmd.l2NetworkUuid)
+            # switch to NoVlan Network need keep physical dev ip and route in bridge
+            if not cmd.newVlan and cmd.oldVlan:
+                linux.move_dev_route(cmd.physicalInterfaceName, cmd.bridgeName)
+            # switch to Vlan Network will return bridge ip and route to physical dev
+            if cmd.newVlan and not cmd.oldVlan:
+                linux.move_dev_route(cmd.bridgeName, cmd.physicalInterfaceName)
+            logger.debug('successfully update bridge[%s] vlan interface from device[%s] to device[%s]'
+                % (cmd.bridgeName, cmd.oldVlanInterface, cmd.newVlanInterface))
+        except Exception as e:
+            logger.warning(traceback.format_exc())
+            rsp.error = ('unable to update bridge[%s] vlan interface from device[%s] to device[%s], because %s'
+                         % (cmd.bridgeName, old_vlan_interface, new_vlan_interface, str(e)))
+            rsp.success = False
+        return jsonobject.dumps(rsp)
+
     @lock.lock('bridge')
     @kvmagent.replyerror
     def create_bridge(self, req):
@@ -1475,6 +1565,8 @@ def start(self):
         http_server.register_async_uri(KVM_CHANGE_LLDP_MODE_PATH, self.change_lldp_mode)
         http_server.register_async_uri(KVM_GET_LLDP_INFO_PATH, self.get_lldp_info)
         http_server.register_async_uri(KVM_APPLY_LLDP_CONFIG_PATH, self.apply_lldp_config)
+        http_server.register_async_uri(KVM_UPDATE_L2VLAN_NETWORK_PATH, self.update_vlan_bridge)
+        http_server.register_async_uri(KVM_UPDATE_L2VXLAN_NETWORK_PATH, self.update_vxlan_bridge)
         http_server.register_async_uri(KVM_REALIZE_L2NOVLAN_NETWORK_PATH, self.create_bridge)
         http_server.register_async_uri(KVM_REALIZE_L2VLAN_NETWORK_PATH, self.create_vlan_bridge)
         http_server.register_async_uri(KVM_REALIZE_MACVLAN_L2VLAN_NETWORK_PATH, self.create_mac_vlan_eth)

zstacklib/zstacklib/utils/linux.py

@@ -405,6 +405,15 @@ def set_bridge_alias_using_phy_nic_name(bridge_name, nic_name):
 def get_bridge_phy_nic_name_from_alias(bridge_name):
     return shell.call("ip link show %s | awk '/alias/{ print $NF; exit }'" % bridge_name).strip()
 
+def get_bridge_alias_related_slave(bridge_name):
+    phy_nic_alias = get_bridge_phy_nic_name_from_alias(bridge_name)
+    slaves = shell.call("bridge link show | grep 'master %s'"
+                        " | awk '{print $2}' | sed 's/://' | sed 's/@.*$//'" % bridge_name).strip().split('\n')
+    for slave in slaves:
+        if slave.startswith(phy_nic_alias):
+            return slave
+    return None
+
 def get_total_disk_size(dir_path):
     stat = os.statvfs(dir_path)
     return stat.f_blocks * stat.f_frsize
@@ -1432,6 +1441,20 @@ def delete_bridge(bridge_name):
     shell.run("ip link set %s down" % bridge_name)
     shell.run("brctl delbr %s" % bridge_name)
 
+def check_bridge_with_interface(vlan_interface, expected_bridge_name):
+    bridge_name = find_bridge_having_physical_interface(vlan_interface)
+    if bridge_name and bridge_name != expected_bridge_name:
+        raise Exception('failed to check vlan interface[%s], it has been occupied by bridge[%s]'
+                        % (vlan_interface, bridge_name))
+
+def update_bridge_interface_configuration(old_interface, new_interface, bridge_name, l2_network_uuid):
+    check_bridge_with_interface(old_interface, bridge_name)
+    ip_link_set_net_device_nomaster(old_interface)
+    ip_link_set_net_device_master(new_interface, bridge_name)
+    set_bridge_alias_using_phy_nic_name(bridge_name, new_interface)
+    set_device_uuid_alias(new_interface, l2_network_uuid)
+
+
 def find_bridge_having_physical_interface(ifname):
     if is_bridge_slave(ifname):
         br_name = shell.call("cat /sys/class/net/%s/master/uevent | grep 'INTERFACE' | awk -F '=' '{printf $2}'" % ifname)
@@ -1476,6 +1499,14 @@ def ip_link_set_net_device_master(net_device, master):
     if not actual_result or actual_result != master:
         raise Exception("set net device[%s] master to [%s] failed, try again now" % (net_device, master))
 
+@retry(times=2, sleep_time=1)
+def ip_link_set_net_device_nomaster(net_device):
+    shell.call("ip link set %s nomaster" % net_device)
+    # Double check, because sometimes the master might not be removed successfully
+    actual_result = shell.call("cat /sys/class/net/%s/master/uevent | grep 'INTERFACE'" % net_device, exception=False).strip('\n')
+    if actual_result:
+        raise Exception("set net device[%s] nomaster failed, try again now" % net_device)
+
 def delete_novlan_bridge(bridge_name, interface, move_route=True):
     if not is_network_device_existing(bridge_name):
         logger.debug("can not find bridge %s" % bridge_name)
@@ -1546,30 +1577,40 @@ def modify_device_state_in_networkmanager(device_name, state):
     # MAC address.
     shell.call("ip link set %s address `cat /sys/class/net/%s/address`" % (bridge_name, interface))
 
-    if not move_route:
-        return
+    if move_route:
+        move_dev_route(interface, bridge_name)
+
+
+def move_dev_route(src_dev, dest_dev):
+    """
+    Move IP address and routes from one network device (src_dev) to another (dest_dev).
 
-    out = shell.call('ip addr show dev %s | grep "inet "' % interface, exception=False)
+    Args:
+    - src_dev: The source device from which the IP and routes will be moved.
+    - dest_dev: The destination device to which the IP and routes will be moved.
+    """
+    # Check if the source device has an IP address set
+    out = shell.call('ip addr show dev %s | grep "inet "' % src_dev, exception=False)
     if not out:
-        logger.debug("Interface %s doesn't set ip address yet. No need to move route. " % interface)
+        logger.debug("Source device %s doesn't have an IP address set. No need to move routes." % src_dev)
         return
 
-    #record old routes
+    # Record old routes associated with the source device
     routes = []
-    r_out = shell.call("ip route show dev %s | grep via | sed 's/onlink//g'" % interface)
+    r_out = shell.call("ip route show dev %s | grep via | sed 's/onlink//g'" % src_dev)
     for line in r_out.split('\n'):
         if line != "":
             routes.append(line)
             shell.call('ip route del %s' % line)
 
-    #mv ip on interface to bridge
+    # Move IP address from the source device to the destination device
     ip = out.strip().split()[1]
-    shell.call('ip addr del %s dev %s' % (ip, interface))
-    r_out = shell.call('ip addr show dev %s | grep "inet %s"' % (bridge_name, ip), exception=False)
+    shell.call('ip addr del %s dev %s' % (ip, src_dev))
+    r_out = shell.call('ip addr show dev %s | grep "inet %s"' % (dest_dev, ip), exception=False)
     if not r_out:
-        shell.call('ip addr add %s dev %s' % (ip, bridge_name))
+        shell.call('ip addr add %s dev %s' % (ip, dest_dev))
 
-    #restore routes on bridge
+    # Restore routes on the destination device
     for r in routes:
         shell.call('ip route add %s' % r)
 
@@ -2405,6 +2446,37 @@ def get_nics_by_cidr(cidr):
 
     return nics
 
+def get_vxlan_details(vxlan_interface):
+    cmd = shell.ShellCmd("ip -d link show dev {name}".format(name=vxlan_interface))
+    cmd(is_exception=False)
+    if cmd.return_code == 0:
+        for line in cmd.stdout.split("\n"):
+            if "vxlan id" in line:
+                vtep_ip = line.split("local ")[1].split(" ")[0]
+                dst_port = line.split("dstport ")[1].split(" ")[0]
+                return vtep_ip, dst_port
+    return None, None
+
+
+def change_vxlan_interface(old_vni, new_vni):
+    old_vxlan = "vxlan" + str(old_vni)
+    vtep_ip, dst_port = get_vxlan_details(old_vxlan)
+    if not vtep_ip or not dst_port:
+        raise Exception("Failed to get details for VXLAN interface: {}".format(old_vxlan))
+    new_vxlan = "vxlan" + str(new_vni)
+    create_vxlan_interface(new_vni, vtep_ip, dst_port)
+    cmd = shell.ShellCmd("ip link set %s address `cat /sys/class/net/%s/address`" % (new_vxlan, old_vxlan))
+    cmd(is_exception=False)
+    cmd = shell.ShellCmd("ip link set {name} down".format(name=old_vxlan))
+    cmd(is_exception=False)
+    cmd = shell.ShellCmd("ip link set {name} up".format(name=new_vxlan))
+    cmd(is_exception=False)
+    if cmd.return_code != 0:
+        raise Exception("Failed to set new VXLAN interface up: {}".format(new_vxlan))
+
+    logger.debug("Successfully changed VXLAN interface from {old} to {new}.".format(old=old_vxlan, new=new_vxlan))
+
+
 def create_vxlan_interface(vni, vtepIp,dstport):
     vni = str(vni)
     cmd = shell.ShellCmd("ip -d -o link show dev {name} | grep -w {ip} ".format(**{"name": "vxlan" + vni, "ip": vtepIp}))