2019-12-17 16:40:10 +01:00
|
|
|
#!/usr/bin/env python3
|
2014-10-09 16:02:46 -07:00
|
|
|
#
|
2018-12-13 11:43:32 -08:00
|
|
|
# Copyright 2014-2017 Cumulus Networks, Inc. All rights reserved.
|
2014-10-09 16:02:46 -07:00
|
|
|
# Author: Roopa Prabhu, roopa@cumulusnetworks.com
|
|
|
|
|
#
|
|
|
|
|
|
|
|
|
|
import os
|
|
|
|
|
import glob
|
2020-01-07 16:58:56 +01:00
|
|
|
import ipaddress
|
2019-12-17 01:04:54 +01:00
|
|
|
import subprocess
|
2014-10-09 16:02:46 -07:00
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
from collections import deque
|
2018-12-13 11:43:32 -08:00
|
|
|
|
|
|
|
|
try:
|
2019-12-17 01:04:54 +01:00
|
|
|
from ifupdown2.lib.addon import Addon
|
2018-12-13 11:43:32 -08:00
|
|
|
from ifupdown2.ifupdown.iface import *
|
2018-06-18 16:51:51 +02:00
|
|
|
from ifupdown2.ifupdown.utils import utils
|
2018-12-13 11:43:32 -08:00
|
|
|
|
2019-03-07 19:22:09 +01:00
|
|
|
from ifupdown2.nlmanager.nlpacket import Link
|
|
|
|
|
|
2018-12-13 11:43:32 -08:00
|
|
|
from ifupdown2.ifupdownaddons.modulebase import moduleBase
|
|
|
|
|
|
2020-01-07 16:58:56 +01:00
|
|
|
import ifupdown2.nlmanager.ipnetwork as ipnetwork
|
|
|
|
|
|
2018-12-13 11:43:32 -08:00
|
|
|
import ifupdown2.ifupdown.statemanager as statemanager
|
2018-06-25 16:36:26 +02:00
|
|
|
import ifupdown2.ifupdown.policymanager as policymanager
|
2018-12-13 11:43:32 -08:00
|
|
|
import ifupdown2.ifupdown.ifupdownflags as ifupdownflags
|
|
|
|
|
import ifupdown2.ifupdown.ifupdownconfig as ifupdownconfig
|
2019-12-17 17:25:32 +01:00
|
|
|
except (ImportError, ModuleNotFoundError):
|
2019-12-17 01:04:54 +01:00
|
|
|
from lib.addon import Addon
|
2018-12-13 11:43:32 -08:00
|
|
|
from ifupdown.iface import *
|
2018-06-18 16:51:51 +02:00
|
|
|
from ifupdown.utils import utils
|
2018-12-13 11:43:32 -08:00
|
|
|
|
2019-03-07 19:22:09 +01:00
|
|
|
from nlmanager.nlpacket import Link
|
|
|
|
|
|
2018-12-13 11:43:32 -08:00
|
|
|
from ifupdownaddons.modulebase import moduleBase
|
|
|
|
|
|
2020-01-07 16:58:56 +01:00
|
|
|
import nlmanager.ipnetwork as ipnetwork
|
|
|
|
|
|
2018-12-13 11:43:32 -08:00
|
|
|
import ifupdown.statemanager as statemanager
|
2018-06-25 16:36:26 +02:00
|
|
|
import ifupdown.policymanager as policymanager
|
2018-12-13 11:43:32 -08:00
|
|
|
import ifupdown.ifupdownflags as ifupdownflags
|
|
|
|
|
import ifupdown.ifupdownconfig as ifupdownconfig
|
|
|
|
|
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
class addressvirtual(Addon, moduleBase):
|
2014-10-09 16:02:46 -07:00
|
|
|
""" ifupdown2 addon module to configure virtual addresses """
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
_modinfo = {
|
|
|
|
|
"mhelp": "address module configures virtual addresses for interfaces. "
|
|
|
|
|
"It creates a macvlan interface for every mac ip address-virtual line",
|
|
|
|
|
"attrs": {
|
|
|
|
|
"address-virtual": {
|
|
|
|
|
"help": "bridge router virtual mac and ips",
|
|
|
|
|
"multivalue": True,
|
|
|
|
|
"validvals": ["<mac-ip/prefixlen-list>", ],
|
|
|
|
|
"example": ["address-virtual 00:11:22:33:44:01 11.0.1.1/24 11.0.1.2/24"]
|
|
|
|
|
},
|
|
|
|
|
"address-virtual-ipv6-addrgen": {
|
|
|
|
|
"help": "enable disable ipv6 link addrgenmode",
|
|
|
|
|
"validvals": ["on", "off"],
|
|
|
|
|
"default": "on",
|
|
|
|
|
"example": [
|
|
|
|
|
"address-virtual-ipv6-addrgen on",
|
|
|
|
|
"address-virtual-ipv6-addrgen off"
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"vrrp": {
|
|
|
|
|
"help": "VRRP support",
|
|
|
|
|
"multivalue": True,
|
|
|
|
|
"example": [
|
|
|
|
|
"vrrp 1 10.0.0.15/24 2001:0db8::0370:7334/64",
|
|
|
|
|
"vrrp 42 10.0.0.42/24"
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2014-10-09 16:02:46 -07:00
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
DEFAULT_IP_METRIC = 1024
|
|
|
|
|
ADDR_METRIC_SUPPORT = None
|
2014-11-03 17:55:51 -08:00
|
|
|
|
2014-10-09 16:02:46 -07:00
|
|
|
def __init__(self, *args, **kargs):
|
2019-12-17 01:04:54 +01:00
|
|
|
Addon.__init__(self)
|
2014-10-09 16:02:46 -07:00
|
|
|
moduleBase.__init__(self, *args, **kargs)
|
2014-11-03 17:55:51 -08:00
|
|
|
self._bridge_fdb_query_cache = {}
|
2018-06-25 16:36:26 +02:00
|
|
|
self.addressvirtual_with_route_metric = utils.get_boolean_from_string(
|
|
|
|
|
policymanager.policymanager_api.get_module_globals(
|
|
|
|
|
module_name=self.__class__.__name__,
|
|
|
|
|
attr='addressvirtual_with_route_metric'
|
|
|
|
|
),
|
|
|
|
|
default=True
|
|
|
|
|
)
|
2014-10-09 16:02:46 -07:00
|
|
|
|
2018-07-23 10:38:29 +02:00
|
|
|
self.address_virtual_ipv6_addrgen_value_dict = {'on': 0, 'yes': 0, '0': 0, 'off': 1, 'no': 1, '1': 1}
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if addressvirtual.ADDR_METRIC_SUPPORT is None:
|
|
|
|
|
try:
|
|
|
|
|
cmd = [utils.ip_cmd, 'addr', 'help']
|
|
|
|
|
self.logger.info('executing %s addr help' % utils.ip_cmd)
|
|
|
|
|
|
|
|
|
|
process = subprocess.Popen(cmd, stdout=subprocess.PIPE, stderr=subprocess.PIPE)
|
|
|
|
|
stdout, stderr = process.communicate()
|
2020-04-08 18:34:18 +02:00
|
|
|
addressvirtual.ADDR_METRIC_SUPPORT = '[ metric METRIC ]' in stderr.decode() or ''
|
2019-12-17 01:04:54 +01:00
|
|
|
self.logger.info('address metric support: %s' % ('OK' if addressvirtual.ADDR_METRIC_SUPPORT else 'KO'))
|
|
|
|
|
except Exception:
|
|
|
|
|
addressvirtual.ADDR_METRIC_SUPPORT = False
|
|
|
|
|
self.logger.info('address metric support: KO')
|
|
|
|
|
|
|
|
|
|
@classmethod
|
|
|
|
|
def addr_metric_support(cls):
|
|
|
|
|
return cls.ADDR_METRIC_SUPPORT
|
|
|
|
|
|
|
|
|
|
@classmethod
|
|
|
|
|
def get_default_ip_metric(cls):
|
|
|
|
|
return cls.DEFAULT_IP_METRIC
|
|
|
|
|
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
def get_dependent_ifacenames(self, ifaceobj, ifacenames_all=None):
|
2019-01-25 09:58:25 +08:00
|
|
|
if ifaceobj.get_attr_value('address-virtual') or ifaceobj.get_attr_value("vrrp"):
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
ifaceobj.link_privflags |= ifaceLinkPrivFlags.ADDRESS_VIRTUAL_SLAVE
|
2014-10-09 16:02:46 -07:00
|
|
|
|
2014-11-08 06:29:26 -08:00
|
|
|
def _get_macvlan_prefix(self, ifaceobj):
|
|
|
|
|
return '%s-v' %ifaceobj.name[0:13].replace('.', '-')
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
def get_vrrp_prefix(self, ifname, family):
|
|
|
|
|
return "vrrp%s-%s-" % (family, self.cache.get_ifindex(ifname))
|
2019-02-19 23:14:03 +01:00
|
|
|
|
2014-10-28 16:10:00 -07:00
|
|
|
def _add_addresses_to_bridge(self, ifaceobj, hwaddress):
|
2014-11-03 17:55:51 -08:00
|
|
|
# XXX: batch the addresses
|
2018-12-13 11:43:32 -08:00
|
|
|
if ifaceobj.link_kind & ifaceLinkKind.VLAN:
|
|
|
|
|
bridgename = ifaceobj.lowerifaces[0]
|
|
|
|
|
vlan = self._get_vlan_id(ifaceobj)
|
2019-12-17 01:04:54 +01:00
|
|
|
if self.cache.bridge_is_vlan_aware(bridgename):
|
|
|
|
|
[self.iproute2.bridge_fdb_add(bridgename, addr,
|
2014-10-28 16:10:00 -07:00
|
|
|
vlan) for addr in hwaddress]
|
2019-12-17 01:04:54 +01:00
|
|
|
elif self.cache.link_is_bridge(ifaceobj.name):
|
|
|
|
|
[self.iproute2.bridge_fdb_add(ifaceobj.name, addr)
|
2014-11-03 17:55:51 -08:00
|
|
|
for addr in hwaddress]
|
2014-10-28 16:10:00 -07:00
|
|
|
|
|
|
|
|
def _remove_addresses_from_bridge(self, ifaceobj, hwaddress):
|
2014-11-03 17:55:51 -08:00
|
|
|
# XXX: batch the addresses
|
2018-12-13 11:43:32 -08:00
|
|
|
if ifaceobj.link_kind & ifaceLinkKind.VLAN:
|
|
|
|
|
bridgename = ifaceobj.lowerifaces[0]
|
|
|
|
|
vlan = self._get_vlan_id(ifaceobj)
|
2019-12-17 01:04:54 +01:00
|
|
|
if self.cache.bridge_is_vlan_aware(bridgename):
|
2015-07-23 15:43:45 -04:00
|
|
|
for addr in hwaddress:
|
|
|
|
|
try:
|
2019-12-17 01:04:54 +01:00
|
|
|
self.iproute2.bridge_fdb_del(bridgename, addr, vlan)
|
2019-12-17 16:55:49 +01:00
|
|
|
except Exception as e:
|
2015-07-23 15:43:45 -04:00
|
|
|
self.logger.debug("%s: %s" %(ifaceobj.name, str(e)))
|
|
|
|
|
pass
|
2019-12-17 01:04:54 +01:00
|
|
|
elif self.cache.link_is_bridge(ifaceobj.name):
|
2015-07-23 15:43:45 -04:00
|
|
|
for addr in hwaddress:
|
|
|
|
|
try:
|
2019-12-17 01:04:54 +01:00
|
|
|
self.iproute2.bridge_fdb_del(ifaceobj.name, addr)
|
2019-12-17 16:55:49 +01:00
|
|
|
except Exception as e:
|
2015-07-23 15:43:45 -04:00
|
|
|
self.logger.debug("%s: %s" %(ifaceobj.name, str(e)))
|
|
|
|
|
pass
|
2014-11-03 17:55:51 -08:00
|
|
|
|
|
|
|
|
def _get_bridge_fdbs(self, bridgename, vlan):
|
|
|
|
|
fdbs = self._bridge_fdb_query_cache.get(bridgename)
|
|
|
|
|
if not fdbs:
|
2019-12-17 01:04:54 +01:00
|
|
|
fdbs = self.iproute2.bridge_fdb_show_dev(bridgename)
|
2014-11-03 17:55:51 -08:00
|
|
|
if not fdbs:
|
|
|
|
|
return
|
|
|
|
|
self._bridge_fdb_query_cache[bridgename] = fdbs
|
|
|
|
|
return fdbs.get(vlan)
|
|
|
|
|
|
|
|
|
|
def _check_addresses_in_bridge(self, ifaceobj, hwaddress):
|
|
|
|
|
""" If the device is a bridge, make sure the addresses
|
|
|
|
|
are in the bridge """
|
2018-12-13 11:43:32 -08:00
|
|
|
if ifaceobj.link_kind & ifaceLinkKind.VLAN:
|
|
|
|
|
bridgename = ifaceobj.lowerifaces[0]
|
|
|
|
|
vlan = self._get_vlan_id(ifaceobj)
|
2019-12-17 01:04:54 +01:00
|
|
|
if self.cache.bridge_is_vlan_aware(bridgename):
|
2018-12-13 11:43:32 -08:00
|
|
|
fdb_addrs = self._get_bridge_fdbs(bridgename, str(vlan))
|
2019-01-25 09:58:25 +08:00
|
|
|
if not fdb_addrs:
|
2014-11-03 17:55:51 -08:00
|
|
|
return False
|
2019-12-17 01:04:54 +01:00
|
|
|
hwaddress_int = utils.mac_str_to_int(hwaddress)
|
2019-01-25 09:58:25 +08:00
|
|
|
for mac in fdb_addrs:
|
2019-12-17 01:04:54 +01:00
|
|
|
if utils.mac_str_to_int(mac) == hwaddress_int:
|
2019-01-25 09:58:25 +08:00
|
|
|
return True
|
|
|
|
|
return False
|
2014-11-03 17:55:51 -08:00
|
|
|
return True
|
2014-10-28 16:10:00 -07:00
|
|
|
|
2014-12-31 23:43:27 -08:00
|
|
|
def _fix_connected_route(self, ifaceobj, vifacename, addr):
|
|
|
|
|
#
|
2018-12-13 11:43:32 -08:00
|
|
|
# XXX: Hack to make sure the primary address
|
2014-12-31 23:43:27 -08:00
|
|
|
# is the first in the routing table.
|
|
|
|
|
#
|
|
|
|
|
# We use `ip route get` on the vrr network to see which
|
|
|
|
|
# device the kernel returns. if it is the mac vlan device,
|
|
|
|
|
# flap the macvlan device to adjust the routing table entry.
|
2018-12-13 11:43:32 -08:00
|
|
|
#
|
2014-12-31 23:43:27 -08:00
|
|
|
# flapping the macvlan device makes sure the macvlan
|
|
|
|
|
# connected route goes through delete + add, hence adjusting
|
|
|
|
|
# the order in the routing table.
|
|
|
|
|
#
|
|
|
|
|
try:
|
|
|
|
|
self.logger.info('%s: checking route entry ...' %ifaceobj.name)
|
2020-01-07 16:58:56 +01:00
|
|
|
|
|
|
|
|
# here we need to convert the ip address using the standard IPNetwork
|
|
|
|
|
# object from the ipaddress not the custom IPNetwork object from
|
|
|
|
|
# python3-nlmanager, because the standard IPNetwork will automatically
|
|
|
|
|
# convert our ip address with prefixlen:
|
|
|
|
|
# >>> ipaddress.ip_network("10.10.10.242/10", False)
|
|
|
|
|
# IPv4Network('10.0.0.0/10')
|
|
|
|
|
ip = ipaddress.ip_network(addr, False)
|
2018-12-13 11:43:32 -08:00
|
|
|
|
|
|
|
|
# we don't support ip6 route fix yet
|
2020-01-07 16:58:56 +01:00
|
|
|
if ip.version == 6:
|
2018-12-13 11:43:32 -08:00
|
|
|
return
|
|
|
|
|
|
2018-06-15 17:59:19 +02:00
|
|
|
if ifaceobj.link_privflags & ifaceLinkPrivFlags.VRF_SLAVE:
|
2019-12-17 01:04:54 +01:00
|
|
|
vrf_master = self.cache.get_master(ifaceobj.name)
|
2018-06-15 17:59:19 +02:00
|
|
|
else:
|
|
|
|
|
vrf_master = None
|
|
|
|
|
|
2020-01-07 16:58:56 +01:00
|
|
|
dev = self.iproute2.ip_route_get_dev(ip.with_prefixlen, vrf_master=vrf_master)
|
2018-06-15 17:59:19 +02:00
|
|
|
|
2018-12-13 11:43:32 -08:00
|
|
|
if dev and dev != ifaceobj.name:
|
2014-12-31 23:43:27 -08:00
|
|
|
self.logger.info('%s: preferred routing entry ' %ifaceobj.name +
|
|
|
|
|
'seems to be of the macvlan dev %s'
|
|
|
|
|
%vifacename +
|
|
|
|
|
' .. flapping macvlan dev to fix entry.')
|
2019-12-17 01:04:54 +01:00
|
|
|
self.iproute2.link_down(vifacename)
|
|
|
|
|
self.iproute2.link_up(vifacename)
|
2019-12-17 16:55:49 +01:00
|
|
|
except Exception as e:
|
2014-12-31 23:43:27 -08:00
|
|
|
self.logger.debug('%s: fixing route entry failed (%s)'
|
2018-12-13 11:43:32 -08:00
|
|
|
% (ifaceobj.name, str(e)))
|
2014-12-31 23:43:27 -08:00
|
|
|
pass
|
|
|
|
|
|
2015-07-23 15:43:45 -04:00
|
|
|
def _get_macs_from_old_config(self, ifaceobj=None):
|
|
|
|
|
""" This method returns a list of the mac addresses
|
|
|
|
|
in the address-virtual attribute for the bridge. """
|
|
|
|
|
maclist = []
|
|
|
|
|
saved_ifaceobjs = statemanager.statemanager_api.get_ifaceobjs(ifaceobj.name)
|
|
|
|
|
if not saved_ifaceobjs:
|
|
|
|
|
return maclist
|
|
|
|
|
# we need the old saved configs from the statemanager
|
|
|
|
|
for oldifaceobj in saved_ifaceobjs:
|
|
|
|
|
if not oldifaceobj.get_attr_value('address-virtual'):
|
|
|
|
|
continue
|
|
|
|
|
for av in oldifaceobj.get_attr_value('address-virtual'):
|
|
|
|
|
macip = av.split()
|
|
|
|
|
if len(macip) < 2:
|
|
|
|
|
self.logger.debug("%s: incorrect old address-virtual attrs '%s'"
|
|
|
|
|
%(oldifaceobj.name, av))
|
|
|
|
|
continue
|
|
|
|
|
maclist.append(macip[0])
|
|
|
|
|
return maclist
|
|
|
|
|
|
2018-06-18 16:51:51 +02:00
|
|
|
def get_addressvirtual_ipv6_addrgen_user_conf(self, ifaceobj):
|
|
|
|
|
ipv6_addrgen = ifaceobj.get_attr_value_first('address-virtual-ipv6-addrgen')
|
|
|
|
|
|
|
|
|
|
if ipv6_addrgen:
|
2018-07-10 00:18:39 +02:00
|
|
|
# IFLA_INET6_ADDR_GEN_MODE values:
|
|
|
|
|
# 0 = eui64
|
|
|
|
|
# 1 = none
|
2018-07-23 10:38:29 +02:00
|
|
|
ipv6_addrgen_nl = self.address_virtual_ipv6_addrgen_value_dict.get(ipv6_addrgen.lower(), None)
|
2018-07-10 00:18:39 +02:00
|
|
|
|
|
|
|
|
if ipv6_addrgen_nl is None:
|
|
|
|
|
self.logger.warning('%s: invalid value "%s" for attribute address-virtual-ipv6-addrgen' % (ifaceobj.name, ipv6_addrgen))
|
|
|
|
|
else:
|
|
|
|
|
return True, ipv6_addrgen_nl
|
2018-06-18 16:51:51 +02:00
|
|
|
|
2018-07-23 10:38:29 +02:00
|
|
|
else:
|
|
|
|
|
# if user didn't configure ipv6-addrgen, should we reset to default?
|
|
|
|
|
ipv6_addrgen_nl = self.address_virtual_ipv6_addrgen_value_dict.get(
|
|
|
|
|
self.get_attr_default_value('address-virtual-ipv6-addrgen'),
|
|
|
|
|
None
|
|
|
|
|
)
|
|
|
|
|
if ipv6_addrgen_nl is not None:
|
|
|
|
|
return True, ipv6_addrgen_nl
|
|
|
|
|
|
2018-06-18 16:51:51 +02:00
|
|
|
return False, None
|
|
|
|
|
|
2014-10-28 16:10:00 -07:00
|
|
|
def _remove_running_address_config(self, ifaceobj):
|
2019-12-17 01:04:54 +01:00
|
|
|
if not self.cache.link_exists(ifaceobj.name):
|
2014-10-09 16:02:46 -07:00
|
|
|
return
|
2014-10-28 16:10:00 -07:00
|
|
|
hwaddress = []
|
2019-12-17 01:04:54 +01:00
|
|
|
|
2019-02-15 11:29:43 +01:00
|
|
|
for macvlan_prefix in [
|
|
|
|
|
self._get_macvlan_prefix(ifaceobj),
|
2019-02-26 18:30:25 +01:00
|
|
|
self.get_vrrp_prefix(ifaceobj.name, "4"),
|
|
|
|
|
self.get_vrrp_prefix(ifaceobj.name, "6")
|
2019-02-15 11:29:43 +01:00
|
|
|
]:
|
|
|
|
|
for macvlan_ifacename in glob.glob("/sys/class/net/%s*" % macvlan_prefix):
|
|
|
|
|
macvlan_ifacename = os.path.basename(macvlan_ifacename)
|
2019-12-17 01:04:54 +01:00
|
|
|
if not self.cache.link_exists(macvlan_ifacename):
|
2019-02-15 11:29:43 +01:00
|
|
|
continue
|
2019-12-17 01:04:54 +01:00
|
|
|
hwaddress.append(self.cache.get_link_address(macvlan_ifacename))
|
|
|
|
|
self.netlink.link_del(os.path.basename(macvlan_ifacename))
|
2019-02-15 11:29:43 +01:00
|
|
|
# XXX: Also delete any fdb addresses. This requires, checking mac address
|
|
|
|
|
# on individual macvlan interfaces and deleting the vlan from that.
|
2019-12-17 01:04:54 +01:00
|
|
|
|
2014-10-28 16:10:00 -07:00
|
|
|
if any(hwaddress):
|
|
|
|
|
self._remove_addresses_from_bridge(ifaceobj, hwaddress)
|
2014-10-09 16:02:46 -07:00
|
|
|
|
2014-10-28 16:10:00 -07:00
|
|
|
def _remove_address_config(self, ifaceobj, address_virtual_list=None):
|
|
|
|
|
if not address_virtual_list:
|
|
|
|
|
self._remove_running_address_config(ifaceobj)
|
|
|
|
|
return
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if not self.cache.link_exists(ifaceobj.name):
|
2014-10-28 16:10:00 -07:00
|
|
|
return
|
|
|
|
|
hwaddress = []
|
|
|
|
|
av_idx = 0
|
2014-11-08 06:29:26 -08:00
|
|
|
macvlan_prefix = self._get_macvlan_prefix(ifaceobj)
|
2014-10-28 16:10:00 -07:00
|
|
|
for av in address_virtual_list:
|
|
|
|
|
av_attrs = av.split()
|
|
|
|
|
|
|
|
|
|
# Delete the macvlan device on this device
|
2014-10-28 23:04:40 -07:00
|
|
|
macvlan_ifacename = '%s%d' %(macvlan_prefix, av_idx)
|
2019-12-17 01:04:54 +01:00
|
|
|
self.netlink.link_del(os.path.basename(macvlan_ifacename))
|
2014-10-28 16:10:00 -07:00
|
|
|
if av_attrs[0] != 'None':
|
|
|
|
|
hwaddress.append(av_attrs[0])
|
|
|
|
|
av_idx += 1
|
|
|
|
|
self._remove_addresses_from_bridge(ifaceobj, hwaddress)
|
2014-10-09 16:02:46 -07:00
|
|
|
|
2016-03-17 13:01:26 -07:00
|
|
|
def check_mac_address(self, ifaceobj, mac):
|
2019-01-25 09:58:25 +08:00
|
|
|
if mac == 'none':
|
2018-12-13 11:43:32 -08:00
|
|
|
return True
|
2016-03-17 13:01:26 -07:00
|
|
|
try:
|
2016-03-30 16:56:37 -07:00
|
|
|
if int(mac.split(":")[0], 16) & 1 :
|
2018-07-02 12:20:07 +02:00
|
|
|
self.log_error("%s: Multicast bit is set in the virtual mac address '%s'"
|
|
|
|
|
% (ifaceobj.name, mac), ifaceobj=ifaceobj)
|
2016-03-17 13:01:26 -07:00
|
|
|
return False
|
|
|
|
|
return True
|
2018-07-02 12:20:07 +02:00
|
|
|
except ValueError:
|
2016-03-17 13:01:26 -07:00
|
|
|
return False
|
|
|
|
|
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
def _fixup_vrf_enslavements(self, ifaceobj, ifaceobj_getfunc=None):
|
|
|
|
|
""" This function fixes up address virtual interfaces
|
|
|
|
|
(macvlans) on vrf slaves. Since this fixup is an overhead,
|
|
|
|
|
this must be called only in cases when ifupdown2 is
|
|
|
|
|
called on the vrf device or its slave and not when
|
|
|
|
|
ifupdown2 is called for all devices. When all
|
|
|
|
|
interfaces are brought up, the expectation is that
|
|
|
|
|
the normal path will fix up a vrf device or its slaves"""
|
|
|
|
|
|
|
|
|
|
if not ifaceobj_getfunc:
|
|
|
|
|
return
|
|
|
|
|
if ((ifaceobj.link_kind & ifaceLinkKind.VRF) and
|
2019-12-17 01:04:54 +01:00
|
|
|
self.cache.link_exists(ifaceobj.name)):
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
# if I am a vrf device and I have slaves
|
|
|
|
|
# that have address virtual config,
|
|
|
|
|
# enslave the slaves 'address virtual
|
|
|
|
|
# interfaces (macvlans)' to myself:
|
2019-12-17 01:04:54 +01:00
|
|
|
running_slaves = self.sysfs.link_get_lowers(ifaceobj.name)
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
if running_slaves:
|
|
|
|
|
# pick up any existing slaves of a vrf device and
|
|
|
|
|
# look for their upperdevices and enslave them to the
|
|
|
|
|
# vrf device:
|
|
|
|
|
for s in running_slaves:
|
|
|
|
|
sobjs = ifaceobj_getfunc(s)
|
|
|
|
|
if (sobjs and
|
|
|
|
|
(sobjs[0].link_privflags & ifaceLinkPrivFlags.ADDRESS_VIRTUAL_SLAVE)):
|
|
|
|
|
# enslave all its upper devices to
|
|
|
|
|
# the vrf device
|
2019-12-17 01:04:54 +01:00
|
|
|
upperdevs = self.sysfs.link_get_uppers(sobjs[0].name)
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
if not upperdevs:
|
|
|
|
|
continue
|
|
|
|
|
for u in upperdevs:
|
|
|
|
|
# skip vrf device which
|
|
|
|
|
# will also show up in the
|
|
|
|
|
# upper device list
|
|
|
|
|
if u == ifaceobj.name:
|
|
|
|
|
continue
|
2019-12-17 01:04:54 +01:00
|
|
|
self.netlink.link_set_master(u, ifaceobj.name)
|
|
|
|
|
self.netlink.link_up(u)
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
elif ((ifaceobj.link_privflags & ifaceLinkPrivFlags.ADDRESS_VIRTUAL_SLAVE) and
|
|
|
|
|
(ifaceobj.link_privflags & ifaceLinkPrivFlags.VRF_SLAVE) and
|
2019-12-17 01:04:54 +01:00
|
|
|
self.cache.link_exists(ifaceobj.name)):
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
# If I am a vrf slave and I have 'address virtual'
|
|
|
|
|
# config, make sure my addrress virtual interfaces
|
|
|
|
|
# (macvlans) are also enslaved to the vrf device
|
|
|
|
|
vrfname = ifaceobj.get_attr_value_first('vrf')
|
2019-12-17 01:04:54 +01:00
|
|
|
if not vrfname or not self.cache.link_exists(vrfname):
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
return
|
2019-12-17 01:04:54 +01:00
|
|
|
running_uppers = self.sysfs.link_get_uppers(ifaceobj.name)
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
if not running_uppers:
|
|
|
|
|
return
|
|
|
|
|
macvlan_prefix = self._get_macvlan_prefix(ifaceobj)
|
|
|
|
|
if not macvlan_prefix:
|
|
|
|
|
return
|
|
|
|
|
for u in running_uppers:
|
|
|
|
|
if u == vrfname:
|
|
|
|
|
continue
|
|
|
|
|
if u.startswith(macvlan_prefix):
|
2019-12-17 01:04:54 +01:00
|
|
|
self.netlink.link_set_master(u, vrfname)
|
|
|
|
|
self.netlink.link_up(u)
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
|
2019-03-07 19:22:09 +01:00
|
|
|
def create_macvlan_and_apply_config(self, ifaceobj, intf_config_list, vrrp=False):
|
2019-12-17 01:04:54 +01:00
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
"""
|
|
|
|
|
intf_config_list = [
|
|
|
|
|
{
|
|
|
|
|
"ifname": "macvlan_ifname",
|
|
|
|
|
"hwaddress": "macvlan_hwaddress",
|
|
|
|
|
"ips": [str(IPNetwork), ]
|
|
|
|
|
},
|
|
|
|
|
]
|
|
|
|
|
"""
|
2019-12-17 01:04:54 +01:00
|
|
|
hw_address_list = []
|
|
|
|
|
|
|
|
|
|
if not intf_config_list:
|
|
|
|
|
return hw_address_list
|
|
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
user_configured_ipv6_addrgenmode, ipv6_addrgen_user_value = self.get_addressvirtual_ipv6_addrgen_user_conf(ifaceobj)
|
|
|
|
|
purge_existing = False if ifupdownflags.flags.PERFMODE else True
|
|
|
|
|
ifname = ifaceobj.name
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
update_mtu = lower_iface_mtu = lower_iface_mtu_str = None
|
2019-01-25 09:58:25 +08:00
|
|
|
if ifupdownconfig.config.get("adjust_logical_dev_mtu", "1") != "0":
|
|
|
|
|
if ifaceobj.lowerifaces and intf_config_list:
|
|
|
|
|
update_mtu = True
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if update_mtu:
|
|
|
|
|
lower_iface_mtu = self.cache.get_link_mtu(ifaceobj.name)
|
|
|
|
|
lower_iface_mtu_str = str(lower_iface_mtu)
|
|
|
|
|
|
|
|
|
|
self.iproute2.batch_start() # TODO: make sure we only do 1 ip link set down and set up (only one flap in the batch)
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
for intf_config_dict in intf_config_list:
|
|
|
|
|
link_created = False
|
|
|
|
|
macvlan_ifname = intf_config_dict.get("ifname")
|
|
|
|
|
macvlan_hwaddr = intf_config_dict.get("hwaddress")
|
2019-02-26 18:58:22 +01:00
|
|
|
macvlan_mode = intf_config_dict.get("mode")
|
2019-01-25 09:58:25 +08:00
|
|
|
ips = intf_config_dict.get("ips")
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if not self.cache.link_exists(macvlan_ifname):
|
|
|
|
|
# When creating VRRP macvlan with bridge mode, the kernel
|
|
|
|
|
# return an error: 'Invalid argument' (22)
|
|
|
|
|
# so for now we should only use the iproute2 API.
|
|
|
|
|
# try:
|
|
|
|
|
# self.netlink.link_add_macvlan(ifname, macvlan_ifname)
|
|
|
|
|
# except:
|
|
|
|
|
self.iproute2.link_add_macvlan(ifname, macvlan_ifname, macvlan_mode)
|
2019-01-25 09:58:25 +08:00
|
|
|
link_created = True
|
|
|
|
|
|
|
|
|
|
# first thing we need to handle vrf enslavement
|
|
|
|
|
if ifaceobj.link_privflags & ifaceLinkPrivFlags.VRF_SLAVE:
|
2019-12-17 01:04:54 +01:00
|
|
|
vrf_ifname = self.cache.get_master(ifaceobj.name)
|
|
|
|
|
if vrf_ifname:
|
|
|
|
|
self.iproute2.link_set_master(macvlan_ifname, vrf_ifname)
|
2019-01-25 09:58:25 +08:00
|
|
|
|
2019-03-19 17:26:45 +00:00
|
|
|
# if we are dealing with a VRRP macvlan we need to set addrgenmode
|
|
|
|
|
# to RANDOM, and protodown on
|
2019-03-07 19:22:09 +01:00
|
|
|
if vrrp:
|
|
|
|
|
try:
|
2019-12-17 01:04:54 +01:00
|
|
|
self.iproute2.link_set_ipv6_addrgen(
|
2019-03-07 19:22:09 +01:00
|
|
|
macvlan_ifname,
|
|
|
|
|
Link.IN6_ADDR_GEN_MODE_RANDOM,
|
|
|
|
|
link_created
|
|
|
|
|
)
|
|
|
|
|
except Exception as e:
|
|
|
|
|
self.logger.warning("%s: %s: ip link set dev %s addrgenmode random: "
|
|
|
|
|
"operation not supported: %s" % (ifname, macvlan_ifname, macvlan_ifname, str(e)))
|
2019-03-19 17:26:45 +00:00
|
|
|
try:
|
2019-05-02 18:01:47 +00:00
|
|
|
if link_created:
|
2019-12-17 01:04:54 +01:00
|
|
|
self.netlink.link_set_protodown_on(macvlan_ifname)
|
2019-03-19 17:26:45 +00:00
|
|
|
except Exception as e:
|
|
|
|
|
self.logger.warning("%s: %s: ip link set dev %s protodown on: operation not supported: %s" % (ifname, macvlan_ifname, macvlan_ifname, str(e)))
|
2019-03-07 19:22:09 +01:00
|
|
|
elif user_configured_ipv6_addrgenmode:
|
2019-12-17 01:04:54 +01:00
|
|
|
self.iproute2.link_set_ipv6_addrgen(macvlan_ifname, ipv6_addrgen_user_value, link_created)
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
if macvlan_hwaddr:
|
2019-12-17 01:04:54 +01:00
|
|
|
self.iproute2.link_set_address_and_keep_down(
|
|
|
|
|
macvlan_ifname,
|
|
|
|
|
macvlan_hwaddr,
|
|
|
|
|
keep_down=ifaceobj.link_privflags & ifaceLinkPrivFlags.KEEP_LINK_DOWN
|
|
|
|
|
)
|
2019-01-25 09:58:25 +08:00
|
|
|
hw_address_list.append(macvlan_hwaddr)
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if self.addressvirtual_with_route_metric and self.addr_metric_support():
|
|
|
|
|
metric = self.get_default_ip_metric()
|
2019-01-25 09:58:25 +08:00
|
|
|
else:
|
|
|
|
|
metric = None
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
self.iproute2.add_addresses(
|
2019-01-25 09:58:25 +08:00
|
|
|
ifaceobj,
|
|
|
|
|
macvlan_ifname,
|
|
|
|
|
ips,
|
|
|
|
|
purge_existing,
|
|
|
|
|
metric=metric
|
|
|
|
|
)
|
|
|
|
|
|
2019-06-20 15:52:09 +08:00
|
|
|
if ifaceobj.link_privflags & ifaceLinkPrivFlags.KEEP_LINK_DOWN:
|
|
|
|
|
self.logger.info("%s: keeping macvlan down - link-down yes on lower device %s" % (macvlan_ifname, ifname))
|
2019-12-17 01:04:54 +01:00
|
|
|
self.netlink.link_down(macvlan_ifname)
|
2019-06-20 15:52:09 +08:00
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
# If link existed before, flap the link
|
|
|
|
|
if not link_created:
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if not self.addressvirtual_with_route_metric or not self.addr_metric_support():
|
2019-01-25 09:58:25 +08:00
|
|
|
# if the system doesn't support ip addr set METRIC
|
|
|
|
|
# we need to do manually check the ordering of the ip4 routes
|
|
|
|
|
self._fix_connected_route(ifaceobj, macvlan_ifname, ips[0])
|
|
|
|
|
|
|
|
|
|
if update_mtu:
|
|
|
|
|
update_mtu = False
|
|
|
|
|
|
|
|
|
|
try:
|
2019-12-17 01:04:54 +01:00
|
|
|
self.sysfs.link_set_mtu(macvlan_ifname, mtu_str=lower_iface_mtu_str, mtu_int=lower_iface_mtu)
|
2019-01-25 09:58:25 +08:00
|
|
|
except Exception as e:
|
2019-12-17 01:04:54 +01:00
|
|
|
self.logger.info('%s: failed to set mtu %s: %s' % (macvlan_ifname, lower_iface_mtu, e))
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
# set macvlan device to up in anycase.
|
|
|
|
|
# since we auto create them here..we are responsible
|
|
|
|
|
# to bring them up here in the case they were brought down
|
|
|
|
|
# by some other entity in the system.
|
2019-06-20 15:52:09 +08:00
|
|
|
if not ifaceobj.link_privflags & ifaceLinkPrivFlags.KEEP_LINK_DOWN:
|
2019-12-17 01:04:54 +01:00
|
|
|
self.netlink.link_up(macvlan_ifname)
|
2019-01-25 09:58:25 +08:00
|
|
|
else:
|
|
|
|
|
try:
|
2019-12-17 01:04:54 +01:00
|
|
|
if not self.addressvirtual_with_route_metric or not self.addr_metric_support():
|
2019-01-25 09:58:25 +08:00
|
|
|
# if the system doesn't support ip addr set METRIC
|
|
|
|
|
# we need to do manually check the ordering of the ip6 routes
|
2019-12-17 01:04:54 +01:00
|
|
|
self.iproute2.fix_ipv6_route_metric(ifaceobj, macvlan_ifname, ips)
|
2019-01-25 09:58:25 +08:00
|
|
|
except Exception as e:
|
|
|
|
|
self.logger.debug('fix_vrf_slave_ipv6_route_metric: failed: %s' % e)
|
|
|
|
|
|
|
|
|
|
# Disable IPv6 duplicate address detection on VRR interfaces
|
2019-12-17 01:04:54 +01:00
|
|
|
sysctl_prefix = "net.ipv6.conf.%s" % macvlan_ifname
|
|
|
|
|
|
|
|
|
|
try:
|
|
|
|
|
syskey = "%s.%s" % (sysctl_prefix, "enhanced_dad")
|
|
|
|
|
if self.sysctl_get(syskey) != "0":
|
|
|
|
|
self.sysctl_set(syskey, "0")
|
|
|
|
|
except Exception as e:
|
|
|
|
|
self.logger.info("sysctl failure: operation not supported: %s" % str(e))
|
|
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
for key, sysval in {
|
|
|
|
|
"accept_dad": "0",
|
|
|
|
|
"dad_transmits": "0"
|
2019-12-17 16:55:49 +01:00
|
|
|
}.items():
|
2019-12-17 01:04:54 +01:00
|
|
|
syskey = "%s.%s" % (sysctl_prefix, key)
|
2019-01-25 09:58:25 +08:00
|
|
|
if self.sysctl_get(syskey) != sysval:
|
|
|
|
|
self.sysctl_set(syskey, sysval)
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
self.iproute2.batch_commit()
|
2019-01-25 09:58:25 +08:00
|
|
|
return hw_address_list
|
|
|
|
|
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
def _up(self, ifaceobj, ifaceobj_getfunc=None):
|
|
|
|
|
if not ifupdownflags.flags.ALL:
|
|
|
|
|
self._fixup_vrf_enslavements(ifaceobj, ifaceobj_getfunc)
|
2019-01-25 09:58:25 +08:00
|
|
|
|
2014-10-09 16:02:46 -07:00
|
|
|
address_virtual_list = ifaceobj.get_attr_value('address-virtual')
|
2019-01-25 09:58:25 +08:00
|
|
|
vrr_config_list = ifaceobj.get_attr_value("vrrp")
|
|
|
|
|
|
|
|
|
|
if not address_virtual_list and not vrr_config_list:
|
2014-10-09 16:02:46 -07:00
|
|
|
# XXX: address virtual is not present. In which case,
|
2014-12-31 23:43:27 -08:00
|
|
|
# delete stale macvlan devices.
|
2019-01-25 09:58:25 +08:00
|
|
|
self._remove_running_address_config(ifaceobj)
|
2014-10-09 16:02:46 -07:00
|
|
|
return
|
|
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
if ifaceobj.upperifaces and not ifaceobj.link_privflags & ifaceLinkPrivFlags.VRF_SLAVE:
|
|
|
|
|
self.log_error("%s: invalid placement of address-virtual/vrrp lines "
|
|
|
|
|
"(must be configured under an interface "
|
|
|
|
|
"with no upper interfaces or parent interfaces)"
|
|
|
|
|
% ifaceobj.name, ifaceobj)
|
2016-04-25 17:39:57 +02:00
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if not self.cache.link_exists(ifaceobj.name):
|
2014-10-09 16:02:46 -07:00
|
|
|
return
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
addr_virtual_macs = self.create_macvlan_and_apply_config(
|
|
|
|
|
ifaceobj,
|
|
|
|
|
self.translate_addrvirtual_user_config_to_list(
|
|
|
|
|
ifaceobj,
|
|
|
|
|
address_virtual_list
|
|
|
|
|
)
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
vrr_macs = self.create_macvlan_and_apply_config(
|
|
|
|
|
ifaceobj,
|
|
|
|
|
self.translate_vrr_user_config_to_list(
|
|
|
|
|
ifaceobj,
|
|
|
|
|
vrr_config_list
|
2019-03-07 19:22:09 +01:00
|
|
|
),
|
|
|
|
|
vrrp=True
|
2019-01-25 09:58:25 +08:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
hw_address_list = addr_virtual_macs + vrr_macs
|
|
|
|
|
|
|
|
|
|
# check the statemanager for old configs.
|
|
|
|
|
# We need to remove only the previously configured FDB entries
|
|
|
|
|
oldmacs = self._get_macs_from_old_config(ifaceobj)
|
|
|
|
|
# get a list of fdbs in old that are not in new config meaning they should
|
|
|
|
|
# be removed since they are gone from the config
|
|
|
|
|
removed_macs = [mac for mac in oldmacs if mac.lower() not in hw_address_list]
|
|
|
|
|
self._remove_addresses_from_bridge(ifaceobj, removed_macs)
|
|
|
|
|
# if ifaceobj is a bridge and bridge is a vlan aware bridge
|
|
|
|
|
# add the vid to the bridge
|
|
|
|
|
self._add_addresses_to_bridge(ifaceobj, hw_address_list)
|
|
|
|
|
|
|
|
|
|
def translate_vrr_user_config_to_list(self, ifaceobj, vrr_config_list, ifquery=False):
|
|
|
|
|
"""
|
|
|
|
|
If (IPv4 addresses provided):
|
|
|
|
|
00:00:5e:00:01:<V>
|
|
|
|
|
else if (IPv6 addresses provided):
|
|
|
|
|
00:00:5e:00:02:<V>
|
|
|
|
|
|
|
|
|
|
vrrp 1 10.0.0.15/24
|
|
|
|
|
vrrp 1 2001:0db8::0370:7334/64
|
|
|
|
|
|
|
|
|
|
# Translate:
|
|
|
|
|
# vrrp 255 10.0.0.15/24 10.0.0.2/1
|
|
|
|
|
# To:
|
|
|
|
|
# [
|
|
|
|
|
# {
|
|
|
|
|
# "ifname": "macvlan_ifname",
|
|
|
|
|
# "hwaddress": "macvlan_hwaddress",
|
2019-02-26 18:58:22 +01:00
|
|
|
# "mode": "macvlan_mode",
|
2019-01-25 09:58:25 +08:00
|
|
|
# "ips": [str(IPNetwork), ]
|
|
|
|
|
# },
|
|
|
|
|
# ]
|
|
|
|
|
"""
|
|
|
|
|
ifname = ifaceobj.name
|
|
|
|
|
user_config_list = []
|
|
|
|
|
|
2019-02-19 23:14:03 +01:00
|
|
|
for index, config in enumerate(vrr_config_list or []):
|
2019-01-25 09:58:25 +08:00
|
|
|
vrrp_id, ip_addrs = config.split(" ", 1)
|
|
|
|
|
hex_id = '%02x' % int(vrrp_id)
|
|
|
|
|
ip4 = []
|
|
|
|
|
ip6 = []
|
|
|
|
|
|
|
|
|
|
for ip_addr in ip_addrs.split():
|
2020-01-07 16:58:56 +01:00
|
|
|
ip_network_obj = ipnetwork.IPNetwork(ip_addr)
|
|
|
|
|
is_ip6 = ip_network_obj.version == 6
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
if is_ip6:
|
2020-01-21 08:56:10 +01:00
|
|
|
ip6.append(ip_network_obj)
|
2019-01-25 09:58:25 +08:00
|
|
|
else:
|
2020-01-21 08:56:10 +01:00
|
|
|
ip4.append(ip_network_obj)
|
2019-01-25 09:58:25 +08:00
|
|
|
|
2019-03-05 18:44:57 +01:00
|
|
|
macvlan_ip4_ifname = "%s%s" % (self.get_vrrp_prefix(ifname, "4"), vrrp_id)
|
|
|
|
|
macvlan_ip6_ifname = "%s%s" % (self.get_vrrp_prefix(ifname, "6"), vrrp_id)
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
if ip4 or ifquery:
|
2019-03-07 18:43:10 +01:00
|
|
|
merged_with_existing_obj = False
|
2019-01-25 09:58:25 +08:00
|
|
|
macvlan_ip4_mac = "00:00:5e:00:01:%s" % hex_id
|
2019-12-17 01:04:54 +01:00
|
|
|
macvlan_ip4_mac_int = utils.mac_str_to_int(macvlan_ip4_mac)
|
2019-03-07 18:43:10 +01:00
|
|
|
# if the vrr config is defined in different lines for the same ID
|
|
|
|
|
# we need to save the ip4 and ip6 in the objects we previously
|
|
|
|
|
# created, example:
|
|
|
|
|
# vrrp 255 10.0.0.15/24 10.0.0.2/15
|
|
|
|
|
# vrrp 255 fe80::a00:27ff:fe04:42/64
|
|
|
|
|
for obj in user_config_list:
|
|
|
|
|
if obj.get("hwaddress_int") == macvlan_ip4_mac_int:
|
|
|
|
|
obj["ips"] += ip4
|
|
|
|
|
merged_with_existing_obj = True
|
|
|
|
|
|
|
|
|
|
if not merged_with_existing_obj:
|
|
|
|
|
# if ip4 config wasn't merge with an existing object
|
|
|
|
|
# we need to insert it in our list
|
|
|
|
|
user_config_list.append({
|
|
|
|
|
"ifname": macvlan_ip4_ifname,
|
|
|
|
|
"hwaddress": macvlan_ip4_mac,
|
|
|
|
|
"hwaddress_int": macvlan_ip4_mac_int,
|
|
|
|
|
"mode": "bridge",
|
|
|
|
|
"ips": ip4,
|
|
|
|
|
"id": vrrp_id
|
|
|
|
|
})
|
2019-02-27 22:40:55 +01:00
|
|
|
elif not ip4 and not ifquery:
|
|
|
|
|
# special check to see if all ipv4 were removed from the vrrp
|
|
|
|
|
# configuration, if so we need to remove the associated macvlan
|
2019-12-17 01:04:54 +01:00
|
|
|
if self.cache.link_exists(macvlan_ip4_ifname):
|
|
|
|
|
self.netlink.link_del(macvlan_ip4_ifname)
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
if ip6 or ifquery:
|
2019-03-07 18:43:10 +01:00
|
|
|
merged_with_existing_obj = False
|
2019-01-25 09:58:25 +08:00
|
|
|
macvlan_ip6_mac = "00:00:5e:00:02:%s" % hex_id
|
2019-12-17 01:04:54 +01:00
|
|
|
macvlan_ip6_mac_int = utils.mac_str_to_int(macvlan_ip6_mac)
|
2019-03-07 18:43:10 +01:00
|
|
|
# if the vrr config is defined in different lines for the same ID
|
|
|
|
|
# we need to save the ip4 and ip6 in the objects we previously
|
|
|
|
|
# created, example:
|
|
|
|
|
# vrrp 255 10.0.0.15/24 10.0.0.2/15
|
|
|
|
|
# vrrp 255 fe80::a00:27ff:fe04:42/64
|
|
|
|
|
|
|
|
|
|
for obj in user_config_list:
|
|
|
|
|
if obj.get("hwaddress_int") == macvlan_ip6_mac_int:
|
|
|
|
|
obj["ips"] += ip6
|
|
|
|
|
merged_with_existing_obj = True
|
|
|
|
|
|
|
|
|
|
if not merged_with_existing_obj:
|
|
|
|
|
# if ip6 config wasn't merge with an existing object
|
|
|
|
|
# we need to insert it in our list
|
|
|
|
|
user_config_list.append({
|
|
|
|
|
"ifname": macvlan_ip6_ifname,
|
|
|
|
|
"hwaddress": macvlan_ip6_mac,
|
|
|
|
|
"hwaddress_int": macvlan_ip6_mac_int,
|
|
|
|
|
"mode": "bridge",
|
|
|
|
|
"ips": ip6,
|
|
|
|
|
"id": vrrp_id
|
|
|
|
|
})
|
2019-02-27 22:40:55 +01:00
|
|
|
elif not ip6 and not ifquery:
|
|
|
|
|
# special check to see if all ipv6 were removed from the vrrp
|
|
|
|
|
# configuration, if so we need to remove the associated macvlan
|
2019-12-17 01:04:54 +01:00
|
|
|
if self.cache.link_exists(macvlan_ip6_ifname):
|
|
|
|
|
self.netlink.link_del(macvlan_ip6_ifname)
|
2019-01-25 09:58:25 +08:00
|
|
|
|
2019-04-24 18:43:24 +08:00
|
|
|
if not ifquery:
|
|
|
|
|
# check if vrrp attribute was removed/re-assigned
|
|
|
|
|
old_vrr_ids = set()
|
|
|
|
|
|
|
|
|
|
try:
|
|
|
|
|
for old_ifaceobj in statemanager.statemanager_api.get_ifaceobjs(ifname) or []:
|
|
|
|
|
for vrr_config in old_ifaceobj.get_attr_value("vrrp") or []:
|
|
|
|
|
try:
|
|
|
|
|
old_vrr_ids.add(vrr_config.split()[0])
|
|
|
|
|
except:
|
|
|
|
|
continue
|
|
|
|
|
|
|
|
|
|
if old_vrr_ids:
|
|
|
|
|
|
|
|
|
|
for config in user_config_list:
|
|
|
|
|
try:
|
|
|
|
|
old_vrr_ids.remove(config["id"])
|
|
|
|
|
except KeyError:
|
|
|
|
|
pass
|
|
|
|
|
|
|
|
|
|
for id_to_remove in old_vrr_ids:
|
|
|
|
|
macvlan_ip4_ifname = "%s%s" % (self.get_vrrp_prefix(ifname, "4"), id_to_remove)
|
|
|
|
|
macvlan_ip6_ifname = "%s%s" % (self.get_vrrp_prefix(ifname, "6"), id_to_remove)
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if self.cache.link_exists(macvlan_ip4_ifname):
|
|
|
|
|
self.netlink.link_del(macvlan_ip4_ifname)
|
2019-04-24 18:43:24 +08:00
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if self.cache.link_exists(macvlan_ip6_ifname):
|
|
|
|
|
self.netlink.link_del(macvlan_ip6_ifname)
|
2019-04-24 18:43:24 +08:00
|
|
|
|
|
|
|
|
except Exception as e:
|
|
|
|
|
self.logger.debug("%s: vrrp: failure while removing unused macvlan(s)" % ifname)
|
|
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
return user_config_list
|
|
|
|
|
|
|
|
|
|
def translate_addrvirtual_user_config_to_list(self, ifaceobj, address_virtual_list):
|
|
|
|
|
"""
|
|
|
|
|
# Translate:
|
|
|
|
|
# address-virtual 00:11:22:33:44:01 2001:0db8::0370:7334/64 11.0.1.1/24 11.0.1.2/24
|
|
|
|
|
# To:
|
|
|
|
|
# [
|
|
|
|
|
# {
|
|
|
|
|
# "ifname": "macvlan_ifname",
|
|
|
|
|
# "hwaddress": "macvlan_hwaddress",
|
|
|
|
|
# "ips": [str(IPNetwork), ]
|
|
|
|
|
# },
|
|
|
|
|
# ]
|
|
|
|
|
"""
|
|
|
|
|
user_config_list = []
|
|
|
|
|
|
|
|
|
|
if not address_virtual_list:
|
|
|
|
|
return user_config_list
|
|
|
|
|
|
|
|
|
|
macvlan_prefix = self._get_macvlan_prefix(ifaceobj)
|
|
|
|
|
|
|
|
|
|
for index, addr_virtual in enumerate(address_virtual_list):
|
|
|
|
|
av_attrs = addr_virtual.split()
|
|
|
|
|
mac = av_attrs[0]
|
|
|
|
|
if mac:
|
|
|
|
|
mac = mac.lower()
|
|
|
|
|
|
|
|
|
|
if not self.check_mac_address(ifaceobj, mac):
|
|
|
|
|
continue
|
|
|
|
|
|
2019-02-26 18:58:22 +01:00
|
|
|
config = {
|
|
|
|
|
"ifname": "%s%d" % (macvlan_prefix, index),
|
|
|
|
|
"mode": "private"
|
|
|
|
|
}
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
if mac != "none":
|
|
|
|
|
config["hwaddress"] = mac
|
2019-12-17 01:04:54 +01:00
|
|
|
config["hwaddress_int"] = utils.mac_str_to_int(mac)
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
ip_network_obj_list = []
|
|
|
|
|
for ip in av_attrs[1:]:
|
2020-01-07 16:58:56 +01:00
|
|
|
ip_network_obj_list.append(ipnetwork.IPNetwork(ip))
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
config["ips"] = ip_network_obj_list
|
|
|
|
|
user_config_list.append(config)
|
|
|
|
|
|
|
|
|
|
return user_config_list
|
|
|
|
|
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
def _down(self, ifaceobj, ifaceobj_getfunc=None):
|
2014-10-09 16:02:46 -07:00
|
|
|
try:
|
2014-10-28 23:04:40 -07:00
|
|
|
self._remove_address_config(ifaceobj,
|
|
|
|
|
ifaceobj.get_attr_value('address-virtual'))
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
#### VRR
|
|
|
|
|
hwaddress = []
|
2019-02-26 18:30:25 +01:00
|
|
|
for vrr_prefix in [self.get_vrrp_prefix(ifaceobj.name, "4"), self.get_vrrp_prefix(ifaceobj.name, "6")]:
|
2019-01-25 09:58:25 +08:00
|
|
|
for macvlan_ifacename in glob.glob("/sys/class/net/%s*" % vrr_prefix):
|
|
|
|
|
macvlan_ifacename = os.path.basename(macvlan_ifacename)
|
2019-12-17 01:04:54 +01:00
|
|
|
if not self.cache.link_exists(macvlan_ifacename):
|
2019-01-25 09:58:25 +08:00
|
|
|
continue
|
2019-12-17 01:04:54 +01:00
|
|
|
hwaddress.append(self.cache.get_link_address(macvlan_ifacename))
|
|
|
|
|
self.netlink.link_del(macvlan_ifacename)
|
2019-01-25 09:58:25 +08:00
|
|
|
# XXX: Also delete any fdb addresses. This requires, checking mac address
|
|
|
|
|
# on individual macvlan interfaces and deleting the vlan from that.
|
|
|
|
|
if any(hwaddress):
|
|
|
|
|
self._remove_addresses_from_bridge(ifaceobj, hwaddress)
|
2019-12-17 16:55:49 +01:00
|
|
|
except Exception as e:
|
2019-01-25 09:58:25 +08:00
|
|
|
import traceback
|
|
|
|
|
traceback.print_exc()
|
2014-10-09 16:02:46 -07:00
|
|
|
self.log_warn(str(e))
|
|
|
|
|
|
|
|
|
|
def _query_check(self, ifaceobj, ifaceobjcurr):
|
2019-01-25 09:58:25 +08:00
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if not self.cache.link_exists(ifaceobj.name):
|
2014-10-28 23:04:40 -07:00
|
|
|
return
|
2018-07-10 00:18:39 +02:00
|
|
|
|
|
|
|
|
user_config_address_virtual_ipv6_addr = ifaceobj.get_attr_value_first('address-virtual-ipv6-addrgen')
|
|
|
|
|
if user_config_address_virtual_ipv6_addr and user_config_address_virtual_ipv6_addr not in utils._string_values:
|
|
|
|
|
ifaceobjcurr.update_config_with_status('address-virtual-ipv6-addrgen', user_config_address_virtual_ipv6_addr, 1)
|
|
|
|
|
user_config_address_virtual_ipv6_addr = None
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
address_virtual_list = ifaceobj.get_attr_value('address-virtual')
|
|
|
|
|
|
|
|
|
|
macvlans_running_ipv6_addr_virtual = self.query_check_macvlan_config(
|
|
|
|
|
ifaceobj,
|
|
|
|
|
ifaceobjcurr,
|
|
|
|
|
"address-virtual",
|
|
|
|
|
user_config_address_virtual_ipv6_addr,
|
|
|
|
|
virtual_addr_list_raw=address_virtual_list,
|
|
|
|
|
macvlan_config_list=self.translate_addrvirtual_user_config_to_list(
|
|
|
|
|
ifaceobj,
|
|
|
|
|
address_virtual_list
|
|
|
|
|
)
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
vrr_config_list = ifaceobj.get_attr_value("vrrp")
|
|
|
|
|
|
|
|
|
|
macvlans_running_ipv6_addr_vrr = self.query_check_macvlan_config(
|
|
|
|
|
ifaceobj,
|
|
|
|
|
ifaceobjcurr,
|
|
|
|
|
"vrrp",
|
|
|
|
|
user_config_address_virtual_ipv6_addr,
|
|
|
|
|
virtual_addr_list_raw=vrr_config_list,
|
|
|
|
|
macvlan_config_list=self.translate_vrr_user_config_to_list(
|
|
|
|
|
ifaceobj,
|
|
|
|
|
vrr_config_list,
|
|
|
|
|
ifquery=True
|
|
|
|
|
)
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
macvlans_running_ipv6_addr = macvlans_running_ipv6_addr_virtual + macvlans_running_ipv6_addr_vrr
|
|
|
|
|
if user_config_address_virtual_ipv6_addr:
|
|
|
|
|
bool_user_ipv6_addrgen = utils.get_boolean_from_string(user_config_address_virtual_ipv6_addr)
|
|
|
|
|
for running_ipv6_addrgen in macvlans_running_ipv6_addr:
|
|
|
|
|
if (not bool_user_ipv6_addrgen) != running_ipv6_addrgen:
|
|
|
|
|
ifaceobjcurr.update_config_with_status('address-virtual-ipv6-addrgen', user_config_address_virtual_ipv6_addr, 1)
|
|
|
|
|
return
|
|
|
|
|
ifaceobjcurr.update_config_with_status('address-virtual-ipv6-addrgen', user_config_address_virtual_ipv6_addr, 0)
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
@staticmethod
|
|
|
|
|
def compare_user_config_vs_running_state(running_addrs, user_addrs):
|
|
|
|
|
ip4 = []
|
|
|
|
|
ip6 = []
|
|
|
|
|
|
|
|
|
|
for ip in user_addrs or []:
|
2020-01-07 16:58:56 +01:00
|
|
|
if ip.version == 6:
|
|
|
|
|
ip6.append(ip)
|
2019-12-17 01:04:54 +01:00
|
|
|
else:
|
2020-01-07 16:58:56 +01:00
|
|
|
ip4.append(ip)
|
2019-12-17 01:04:54 +01:00
|
|
|
|
|
|
|
|
running_ipobj = []
|
|
|
|
|
for ip in running_addrs or []:
|
2020-01-07 16:58:56 +01:00
|
|
|
running_ipobj.append(ip)
|
2019-12-17 01:04:54 +01:00
|
|
|
|
|
|
|
|
return running_ipobj == (ip4 + ip6)
|
|
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
def query_check_macvlan_config(self, ifaceobj, ifaceobjcurr, attr_name, user_config_address_virtual_ipv6_addr, virtual_addr_list_raw, macvlan_config_list):
|
|
|
|
|
"""
|
|
|
|
|
macvlan_config_list = [
|
|
|
|
|
{
|
|
|
|
|
"ifname": "macvlan_ifname",
|
|
|
|
|
"hwaddress": "macvlan_hwaddress",
|
|
|
|
|
"ips": [str(IPNetwork), ]
|
|
|
|
|
},
|
|
|
|
|
]
|
|
|
|
|
"""
|
|
|
|
|
is_vrr = attr_name == "vrrp"
|
2018-07-10 00:18:39 +02:00
|
|
|
macvlans_running_ipv6_addr = []
|
|
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
if not virtual_addr_list_raw:
|
|
|
|
|
return macvlans_running_ipv6_addr
|
|
|
|
|
|
|
|
|
|
macvlan_config_queue = deque(macvlan_config_list)
|
|
|
|
|
|
|
|
|
|
while macvlan_config_queue:
|
|
|
|
|
|
|
|
|
|
ip4_config = None
|
|
|
|
|
ip6_config = None
|
|
|
|
|
|
|
|
|
|
config = macvlan_config_queue.popleft()
|
|
|
|
|
|
|
|
|
|
if is_vrr:
|
|
|
|
|
ip4_config = config
|
|
|
|
|
ip6_config = macvlan_config_queue.popleft()
|
|
|
|
|
|
|
|
|
|
macvlan_ifacename = config.get("ifname")
|
2014-10-09 16:02:46 -07:00
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if not self.cache.link_exists(macvlan_ifacename):
|
2019-01-25 09:58:25 +08:00
|
|
|
ifaceobjcurr.update_config_with_status(attr_name, "", 1)
|
2014-10-28 23:04:40 -07:00
|
|
|
continue
|
2018-07-10 00:18:39 +02:00
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
macvlan_hwaddress = config.get("hwaddress")
|
|
|
|
|
macvlan_hwaddress_int = config.get("hwaddress_int")
|
|
|
|
|
|
2018-07-10 00:18:39 +02:00
|
|
|
if user_config_address_virtual_ipv6_addr:
|
2019-12-17 01:04:54 +01:00
|
|
|
macvlans_running_ipv6_addr.append(self.cache.get_link_ipv6_addrgen_mode(macvlan_ifacename))
|
2018-07-10 00:18:39 +02:00
|
|
|
|
2014-10-28 23:04:40 -07:00
|
|
|
# Check mac and ip address
|
2019-12-17 01:04:54 +01:00
|
|
|
rhwaddress = ip4_macvlan_hwaddress = self.cache.get_link_address(macvlan_ifacename)
|
2020-01-07 16:58:56 +01:00
|
|
|
raddrs = ip4_running_addrs = self.cache.get_managed_ip_addresses(
|
2018-12-13 11:43:32 -08:00
|
|
|
ifname=macvlan_ifacename,
|
2019-12-17 01:04:54 +01:00
|
|
|
ifaceobj_list=[ifaceobj],
|
|
|
|
|
with_address_virtual=True
|
2020-01-07 16:58:56 +01:00
|
|
|
)
|
2018-07-10 00:18:39 +02:00
|
|
|
|
2019-01-25 09:58:25 +08:00
|
|
|
if not is_vrr:
|
|
|
|
|
ips = config.get("ips")
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
if not rhwaddress:
|
2019-01-25 09:58:25 +08:00
|
|
|
ifaceobjcurr.update_config_with_status(attr_name, "", 1)
|
|
|
|
|
continue
|
|
|
|
|
|
|
|
|
|
try:
|
2019-12-17 01:04:54 +01:00
|
|
|
if utils.mac_str_to_int(rhwaddress) == macvlan_hwaddress_int \
|
|
|
|
|
and self.compare_user_config_vs_running_state(raddrs, ips) \
|
2019-01-25 09:58:25 +08:00
|
|
|
and self._check_addresses_in_bridge(ifaceobj, macvlan_hwaddress):
|
|
|
|
|
ifaceobjcurr.update_config_with_status(
|
|
|
|
|
attr_name,
|
|
|
|
|
" ".join(virtual_addr_list_raw),
|
|
|
|
|
0
|
|
|
|
|
)
|
|
|
|
|
else:
|
2019-12-10 17:35:16 +01:00
|
|
|
if raddrs:
|
|
|
|
|
address_virtual_value = "%s %s" % (rhwaddress, " ".join(raddrs))
|
|
|
|
|
else:
|
|
|
|
|
address_virtual_value = rhwaddress
|
|
|
|
|
ifaceobjcurr.update_config_with_status(attr_name, address_virtual_value, 1)
|
2020-01-07 16:58:56 +01:00
|
|
|
except Exception as e:
|
|
|
|
|
self.logger.debug("addressvirtual: %s" % str(e))
|
2019-12-10 17:35:16 +01:00
|
|
|
if raddrs:
|
|
|
|
|
address_virtual_value = "%s %s" % (rhwaddress, " ".join(raddrs))
|
|
|
|
|
else:
|
|
|
|
|
address_virtual_value = rhwaddress
|
|
|
|
|
|
|
|
|
|
ifaceobjcurr.update_config_with_status(attr_name, address_virtual_value, 1)
|
2019-01-25 09:58:25 +08:00
|
|
|
else:
|
|
|
|
|
# VRRP
|
|
|
|
|
|
|
|
|
|
ok = False
|
|
|
|
|
# check macvlan ip4 hwaddress (only if ip4 were provided by the user)
|
|
|
|
|
if not ip4_config.get("ips") or ip4_macvlan_hwaddress == ip4_config.get("hwaddress"):
|
|
|
|
|
ip6_macvlan_ifname = ip6_config.get("ifname")
|
|
|
|
|
ip6_macvlan_hwaddress = ip6_config.get("hwaddress")
|
|
|
|
|
|
|
|
|
|
# check macvlan ip6 hwaddress (only if ip6 were provided by the user)
|
2019-12-17 01:04:54 +01:00
|
|
|
if not ip6_config.get("ips") or self.cache.get_link_address_raw(ip6_macvlan_ifname) == ip6_config.get("hwaddress_int"):
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
# check all ip4
|
2019-12-17 01:04:54 +01:00
|
|
|
if self.compare_user_config_vs_running_state(
|
2019-01-25 09:58:25 +08:00
|
|
|
ip4_running_addrs,
|
|
|
|
|
ip4_config.get("ips")
|
|
|
|
|
) and self._check_addresses_in_bridge(ifaceobj, ip4_macvlan_hwaddress):
|
2020-01-07 16:58:56 +01:00
|
|
|
ip6_running_addrs = self.cache.get_managed_ip_addresses(
|
2019-01-25 09:58:25 +08:00
|
|
|
ifname=ip6_macvlan_ifname,
|
2019-12-17 01:04:54 +01:00
|
|
|
ifaceobj_list=[ifaceobj],
|
|
|
|
|
with_address_virtual=True
|
2020-01-07 16:58:56 +01:00
|
|
|
)
|
2019-01-25 09:58:25 +08:00
|
|
|
|
|
|
|
|
# check all ip6
|
2019-12-17 01:04:54 +01:00
|
|
|
if self.compare_user_config_vs_running_state(
|
2019-01-25 09:58:25 +08:00
|
|
|
ip6_running_addrs,
|
|
|
|
|
ip6_config.get("ips")
|
2019-12-17 01:04:54 +01:00
|
|
|
) and self._check_addresses_in_bridge(ifaceobj, ip6_macvlan_hwaddress):
|
2019-01-25 09:58:25 +08:00
|
|
|
ifaceobjcurr.update_config_with_status(
|
|
|
|
|
attr_name,
|
|
|
|
|
"%s %s" % (ip4_config.get("id"), " ".join(ip4_config.get("ips") + ip6_config.get("ips"))),
|
|
|
|
|
0
|
|
|
|
|
)
|
|
|
|
|
ok = True
|
|
|
|
|
|
|
|
|
|
if not ok:
|
|
|
|
|
ifaceobjcurr.update_config_with_status(
|
|
|
|
|
attr_name,
|
|
|
|
|
"%s %s" % (ip4_config.get("id"), " ".join(ip4_config.get("ips") + ip6_config.get("ips"))),
|
|
|
|
|
1
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
return macvlans_running_ipv6_addr
|
2014-10-09 16:02:46 -07:00
|
|
|
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
def _query_running(self, ifaceobjrunning, ifaceobj_getfunc=None):
|
2014-11-08 06:29:26 -08:00
|
|
|
macvlan_prefix = self._get_macvlan_prefix(ifaceobjrunning)
|
2019-12-17 01:04:54 +01:00
|
|
|
address_virtuals = glob.glob("/sys/class/net/%s*" %macvlan_prefix)
|
2018-07-10 00:18:39 +02:00
|
|
|
macvlans_ipv6_addrgen_list = []
|
2014-11-03 17:55:51 -08:00
|
|
|
for av in address_virtuals:
|
|
|
|
|
macvlan_ifacename = os.path.basename(av)
|
2019-12-17 01:04:54 +01:00
|
|
|
rhwaddress = self.cache.get_link_address(macvlan_ifacename)
|
2020-01-07 16:58:56 +01:00
|
|
|
raddress = self.cache.get_managed_ip_addresses(
|
2019-12-17 01:04:54 +01:00
|
|
|
ifname=ifaceobjrunning.name,
|
2020-01-07 16:58:56 +01:00
|
|
|
ifaceobj_list=ifaceobj_getfunc(ifaceobjrunning.name) or [],
|
2019-12-17 01:04:54 +01:00
|
|
|
with_address_virtual=True
|
2020-01-07 16:58:56 +01:00
|
|
|
)
|
2018-10-08 15:18:32 +02:00
|
|
|
|
|
|
|
|
raddress = list(set(raddress))
|
|
|
|
|
|
2014-11-03 17:55:51 -08:00
|
|
|
if not raddress:
|
2019-12-09 22:31:46 +01:00
|
|
|
self.logger.warning('%s: no running addresses'
|
2014-11-03 17:55:51 -08:00
|
|
|
%ifaceobjrunning.name)
|
|
|
|
|
raddress = []
|
|
|
|
|
ifaceobjrunning.update_config('address-virtual',
|
2018-10-08 15:18:32 +02:00
|
|
|
'%s %s' %(rhwaddress, ' '.join(raddress)))
|
2018-07-10 00:18:39 +02:00
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
macvlans_ipv6_addrgen_list.append((macvlan_ifacename, self.cache.get_link_ipv6_addrgen_mode(macvlan_ifacename)))
|
2018-07-10 00:18:39 +02:00
|
|
|
|
|
|
|
|
macvlan_count = len(address_virtuals)
|
|
|
|
|
if not macvlan_count:
|
|
|
|
|
return
|
|
|
|
|
ipv6_addrgen = macvlans_ipv6_addrgen_list[0][1]
|
|
|
|
|
|
|
|
|
|
for macvlan_ifname, macvlan_ipv6_addrgen in macvlans_ipv6_addrgen_list:
|
|
|
|
|
if macvlan_ipv6_addrgen != ipv6_addrgen:
|
|
|
|
|
# one macvlan has a different ipv6-addrgen configuration
|
|
|
|
|
# we simply return, ifquery-running will print the macvlan
|
|
|
|
|
# stanzas with the ipv6-addrgen on/off attribute
|
|
|
|
|
return
|
|
|
|
|
ifaceobjrunning.update_config('address-virtual-ipv6-addrgen', 'off' if ipv6_addrgen else 'on')
|
|
|
|
|
|
2019-12-17 01:04:54 +01:00
|
|
|
_run_ops = {
|
|
|
|
|
'up': _up,
|
|
|
|
|
'down': _down,
|
|
|
|
|
'query-checkcurr': _query_check,
|
|
|
|
|
'query-running': _query_running
|
|
|
|
|
}
|
2014-10-09 16:02:46 -07:00
|
|
|
|
|
|
|
|
def get_ops(self):
|
|
|
|
|
""" returns list of ops supported by this module """
|
2019-12-17 16:55:49 +01:00
|
|
|
return list(self._run_ops.keys())
|
2014-10-09 16:02:46 -07:00
|
|
|
|
|
|
|
|
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
def run(self, ifaceobj, operation, query_ifaceobj=None,
|
|
|
|
|
ifaceobj_getfunc=None, **extra_args):
|
2014-10-09 16:02:46 -07:00
|
|
|
""" run vlan configuration on the interface object passed as argument
|
|
|
|
|
|
|
|
|
|
Args:
|
|
|
|
|
**ifaceobj** (object): iface object
|
|
|
|
|
|
|
|
|
|
**operation** (str): any of 'pre-up', 'post-down', 'query-checkcurr',
|
|
|
|
|
'query-running'
|
|
|
|
|
Kwargs:
|
|
|
|
|
**query_ifaceobj** (object): query check ifaceobject. This is only
|
|
|
|
|
valid when op is 'query-checkcurr'. It is an object same as
|
|
|
|
|
ifaceobj, but contains running attribute values and its config
|
|
|
|
|
status. The modules can use it to return queried running state
|
|
|
|
|
of interfaces. status is success if the running state is same
|
|
|
|
|
as user required state in ifaceobj. error otherwise.
|
|
|
|
|
"""
|
2014-10-24 10:11:07 -07:00
|
|
|
if ifaceobj.type == ifaceType.BRIDGE_VLAN:
|
|
|
|
|
return
|
2014-10-09 16:02:46 -07:00
|
|
|
op_handler = self._run_ops.get(operation)
|
|
|
|
|
if not op_handler:
|
|
|
|
|
return
|
2019-12-17 01:04:54 +01:00
|
|
|
|
2014-10-09 16:02:46 -07:00
|
|
|
if operation == 'query-checkcurr':
|
|
|
|
|
op_handler(self, ifaceobj, query_ifaceobj)
|
|
|
|
|
else:
|
[PATCH ifupdown2] addons: addressvirtual: fixup macvlan device enslavements for vrfs
Ticket: CM-12988
Reviewed By: julien, nikhil, dsa
Testing Done: tested ifup and ifdown of vrf devices with address virtual
slaves
This patch fixes up macvlan device enslavements when vrf device
or vrf slave is brought down and up. address virtual macvlan
devices on vrf slaves need to enslaved to the vrf. This
patch checks and fixes up those vrf enslavements for the following
cases:
ifdown <vrf_device> && ifup <vrf_device>
ifdown <vrf_slave> && ifup <vrf_slave>
starting state:
------------
$ip -br link show
myvrf UP 46:c6:44:db:37:60 <NOARP,MASTER,UP,LOWER_UP>
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
$ifdown myvrf
$ip -br link show
bridge.901@bridge DOWN 44:38:39:00:77:88 <BROADCAST,MULTICAST>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST,M-DOWN>
before patch (macvlan device bridge-901-v0 did not come up:
----------------------------------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 DOWN 00:00:5e:00:01:81 <BROADCAST,MULTICAST>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
after patch:
------------
$ifup myvrf
$ip -br link show
bridge.901@bridge UP 44:38:39:00:77:88 <UP,BROADCAST,MULTICAST,UP>
bridge-901-v0@bridge.901 UP 00:00:5e:00:01:81 <UP,BROADCAST,MULTICAST,UP>
myvrf UP ce:a6:e1:85:75:73 <NOARP,MASTER,UP,LOWER_UP>
Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-10-19 10:43:45 -07:00
|
|
|
op_handler(self, ifaceobj, ifaceobj_getfunc=ifaceobj_getfunc)
|
