mirror/CumulusNetworks-ifupdown2
1
0
Fork 0
mirror of https://github.com/CumulusNetworks/ifupdown2.git synced 2024-05-06 15:54:50 +00:00
Code Activity
Files
4e2db079564a5055a03d2e7e97807b7956c6e110
CumulusNetworks-ifupdown2/addons/vxlan.py

279 lines
12 KiB
Python
Raw Normal View History

Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
#!/usr/bin/python
from ifupdown.iface import *
small easy: support (0|1) or (off|on) attribute while keeping backward compatibility Ticket: CM-8866 Reviewed By: Roopa Testing Done: added support for: * bond-lacp-bypass-allow (0|1) * bond-use-carrier (0|1) * bridge-mcqifaddr (0|1) * bridge-mcquerier (0|1) * bridge-mcrouter (0|1) * bridge-mcsnoop (0|1) * bridge-portmcrouter (0|1) * link-autoneg (off|on) * vxlan-learning (off|on) these 2 are not yet supported by ifupdown2: * bond-lacp-bypass-all-active (0|1) * bond-lacp-fallback-allow (0|1) This one is left untouched. yes/no doesn't make sense for this attribute. * bond-lacp-rate (0|1) Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-06-07 18:37:40 +01:00
from ifupdown.utils import utils
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
from ifupdownaddons.modulebase import moduleBase
from ifupdownaddons.iproute2 import iproute2
ifupdown: vxlan-remoteip not getting applied when vxrd is not configured to run Ticket: CM-7410 Reviewed By: CCR-3470 Testing Done: When vxrd is not enabled in /etc/default/vxrd, the 'service vxrd status' command returns 0, causing the vxlan-remoteip to be not applied even though it should have. Fix is to change to checking pidfile of vxrd.
2015-09-10 13:57:14 -07:00
from ifupdownaddons.systemutils import systemUtils
Replace rtnetlink modules with python-nlmanager calls Ticket: CM-7360 Reviewed By: CCR-4721 Testing Done: smoke / testifreload / Tested on amd64 platform (by Sam) This patch replaces all calls to rtnetlink with python-nlmanager. Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-05-29 18:04:23 +01:00
from ifupdown.netlink import netlink
Revert "addons: vxlan: support for multiple ip addresses for vxlan-remoteip keyword" This reverts commit 32e2363a694e5fdf535e45db7ef6baba8cab2ed4. I pushed this commit by mistake. It was a local commit waiting to be reviewed. Reverting it for now, might be applied later after positive review.
2016-11-28 17:46:57 +01:00
from ipaddr import IPv4Address
Replace rtnetlink modules with python-nlmanager calls Ticket: CM-7360 Reviewed By: CCR-4721 Testing Done: smoke / testifreload / Tested on amd64 platform (by Sam) This patch replaces all calls to rtnetlink with python-nlmanager. Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-05-29 18:04:23 +01:00
import ifupdown.ifupdownflags as ifupdownflags
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
import logging
vxlan: add new attribute vxlan-purge-remotes to make purging remotes explicit Ticket: CM-13815 Reviewed By: Testing Done: Tested remote purging vxlan purging remotes is a feature where we clean up existing fdb remote entries in favor of the ones specified in the interfaces file. Obviously in precense of an external controller like bgp or vxrd this is not a good thing because these remotes maybe installed by these external controller daemons. This patch makes the purgining behaviour explicit by a new attribute. We will ship with a default policy file which sets vxlan-purge-remotes to no. This also cleans up a bug introduced by fix to CM-13767 where we were trying to delete default remote entry pointing to the local ip. more details below. problem: for static configuration, ifupdown2 has some code to "purge" existing default remote fdb entries and install new ones corresponding to the ones specified in the interfaces file (with vxlan-remoteip). For non-static configuration (ie in presence of an external controller), it skips this "purge"...because these entries maybe added by an external controller. To detect that there is no external controller running..., today it checks if the vxrd process is running or not. We need to extend this check to now include bgp (for evpn)...and it gets trickier with bgp since just checking the quagga pid is not good. Solution: I would like to make this purging explicit with an attribute. This patch adds a 'vxlan-purge-remotes yes|no' attribute. vxlan remote address purging will take into affect when: vxlan-remoteip attribute is present in the interfaces file or vxlan-purge-remotes is set to 'yes' We will ship a ifupdown2 default policy file to disable purging by default (vxlan-purge-remotes no). For existing customer deployed static configs, since the interfaces file will already have remote entries, this change will behave as existing code (ie purge = yes). For existing vxrd deployments, as long as already deployed interfaces files have no vxlan-remoteip entries, this patch does not change any behavior (can people confirm that existing vxrd deployments have no vxlan-remoteip entries in their interfaces ?) Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2017-01-10 14:59:32 -08:00
import ifupdown.policymanager as policymanager
ifupdown2 changes for vxlan anycast_ip, head-end fdb entries, protodown Ticket: CM-7087 Reviewed By: CCR-3379 Testing Done: unit testing with clag_vxlan_clos_spec/cfg.py On clag pairing, clagd changes local address of vxlan device to anycast ip. If user does ifreload now, ifupdown2 will overwrite local address with individual ip contained in /etc/netwrok/interfaces. vxlan.py caches anycast_ip configuration so that ifquery -c can skip it from flagging error and ifreload skip overwriting vxlan device's local ip. vxrd provisions head-end replication endpoints by adding bridge fdb entries. If /etc/network/interfaces doesn't have remote-ip attribute, then on ifreload ifupdown2 will delete all vxrd provisioned entries. ifupdown will check for presence of vxrd service and skip add/delete bridge fdb entries for head-end replication On ifreload vxlan device are put in proto-down even if they are up and running. Check for operstate and put it in proto-down only if operstate transitions from down to up.
2015-09-04 00:32:15 -07:00
import os
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
from sets import Set
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
class vxlan(moduleBase):
_modinfo = {'mhelp' : 'vxlan module configures vxlan interfaces.',
'attrs' : {
'vxlan-id' :
{'help' : 'vxlan id',
addons: vxlan: fixing wrong vxlan-id range Ticket: None Reviewed By: Roopa, Daniel Testing Done: This is not affecting ifupdown2 yet the validvals attribute is only used by ifedit Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-11 20:36:18 +01:00
'validrange' : ['1', '16777214'],
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
'required' : True,
'example': ['vxlan-id 100']},
'vxlan-local-tunnelip' :
{'help' : 'vxlan local tunnel ip',
only ipv4 tunnel end points supported for Vxlan Signed-off-by: Daniel Walton <dwalton@cumulusnetworks.com> Reviewed-by: roopa@cumulusnetworks.com Ticket: CM-14197
2017-01-03 15:42:43 +00:00
'validvals' : ['<ipv4>'],
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
'example': ['vxlan-local-tunnelip 172.16.20.103']},
'vxlan-svcnodeip' :
{'help' : 'vxlan id',
only ipv4 tunnel end points supported for Vxlan Signed-off-by: Daniel Walton <dwalton@cumulusnetworks.com> Reviewed-by: roopa@cumulusnetworks.com Ticket: CM-14197
2017-01-03 15:42:43 +00:00
'validvals' : ['<ipv4>'],
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
'example': ['vxlan-svcnodeip 172.16.22.125']},
Modified ifupdown support for vxlan head end replication Ticket: CM-5637 Reviewed By: CCR-2755 Testing Done: Replaced vxlan-peernodeip attribute with vxlan-remoteip. Updated the vxlan and iproute2 modules to configure head end replication using bridge fdb commands.
2015-04-15 09:48:12 -07:00
'vxlan-remoteip' :
{'help' : 'vxlan remote ip',
addons: vxlan: continue to add or delete fdb entry after catching exception Ticket: CM-13767 Reviewed By: Roopa, Purna, Nikhil G Testing Done: auto vx-1000 iface vx-1000 vxlan-id 1000 bridge-access 100 vxlan-local-tunnelip 27.0.0.2 vxlan-remoteip 27.0.0.1 vxlan-remoteip 27.0.0.2 vxlan-remoteip 27.0.0.3 mstpctl-portbpdufilter yes mstpctl-bpduguard yes Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-11-29 01:20:38 +01:00
'validvals' : ['<ipv4>'],
Modified ifupdown support for vxlan head end replication Ticket: CM-5637 Reviewed By: CCR-2755 Testing Done: Replaced vxlan-peernodeip attribute with vxlan-remoteip. Updated the vxlan and iproute2 modules to configure head end replication using bridge fdb commands.
2015-04-15 09:48:12 -07:00
'example': ['vxlan-remoteip 172.16.22.127']},
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
'vxlan-learning' :
small easy: support (0|1) or (off|on) attribute while keeping backward compatibility Ticket: CM-8866 Reviewed By: Roopa Testing Done: added support for: * bond-lacp-bypass-allow (0|1) * bond-use-carrier (0|1) * bridge-mcqifaddr (0|1) * bridge-mcquerier (0|1) * bridge-mcrouter (0|1) * bridge-mcsnoop (0|1) * bridge-portmcrouter (0|1) * link-autoneg (off|on) * vxlan-learning (off|on) these 2 are not yet supported by ifupdown2: * bond-lacp-bypass-all-active (0|1) * bond-lacp-fallback-allow (0|1) This one is left untouched. yes/no doesn't make sense for this attribute. * bond-lacp-rate (0|1) Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-06-07 18:37:40 +01:00
{'help' : 'vxlan learning yes/no',
'validvals' : ['yes', 'no', 'on', 'off'],
'example': ['vxlan-learning no'],
'default': 'yes'},
Added ifupdown2 support for vxlan-ageing config Ticket: CM-5105 Reviewed By: roopa Testing Done: tested configs before and after change We needed a configuration option to add vxlan-ageing to ifupdown2 configs. This patch adds the option to change the vxlan-ageing timer currently set with "ip link" commands. (cherry picked from commit 9832462c365bd2b900b98f5675d407d1b11c4a95) Conflicts: packages/ifupdown2/addons/vxlan.py packages/ifupdown2/ifupdownaddons/iproute2.py
2015-03-05 12:54:55 -05:00
'vxlan-ageing' :
{'help' : 'vxlan aging timer',
Add validvals to addons, to be used by iface/ifedit wrapper Ticket: CM-8669 Reviewed By: Julien Testing Done: <DETAILED DESCRIPTION (REPLACE)>
2016-05-31 13:12:21 -07:00
'validrange' : ['0', '4096'],
ifupdown2 fixes for svcnode, vxlan-ageing, bridge-vlan-aware Ticket: CM-6815, CM-6816, CM-6817 Reviewed By: CCR-3234 Testing Done: unit testing CM-6815 : ip link set syntax for svcnode has been changed. Absence of svcnode will retain the existing values. svcnode 0.0.0.0 is needed to wipe out service node addresses in vxlan device. Modified ifupdown2 to use svcnode 0.0.0.0 to clean up service node address. CM-6816: "bridge-clan-aware no" is not handled in query-check and hence ifquery on bridge interface with "bridge-vlan-aware no" fails. Modified bridge's query-check to take care of this. CM-6817: With default ageing value (300), if query -c <vxlan device> was failing. Set ageing to 300 if not specified and compare it with running config.
2015-07-23 12:15:16 -07:00
'example': ['vxlan-ageing 300'],
'default': '300'},
vxlan: add new attribute vxlan-purge-remotes to make purging remotes explicit Ticket: CM-13815 Reviewed By: Testing Done: Tested remote purging vxlan purging remotes is a feature where we clean up existing fdb remote entries in favor of the ones specified in the interfaces file. Obviously in precense of an external controller like bgp or vxrd this is not a good thing because these remotes maybe installed by these external controller daemons. This patch makes the purgining behaviour explicit by a new attribute. We will ship with a default policy file which sets vxlan-purge-remotes to no. This also cleans up a bug introduced by fix to CM-13767 where we were trying to delete default remote entry pointing to the local ip. more details below. problem: for static configuration, ifupdown2 has some code to "purge" existing default remote fdb entries and install new ones corresponding to the ones specified in the interfaces file (with vxlan-remoteip). For non-static configuration (ie in presence of an external controller), it skips this "purge"...because these entries maybe added by an external controller. To detect that there is no external controller running..., today it checks if the vxrd process is running or not. We need to extend this check to now include bgp (for evpn)...and it gets trickier with bgp since just checking the quagga pid is not good. Solution: I would like to make this purging explicit with an attribute. This patch adds a 'vxlan-purge-remotes yes|no' attribute. vxlan remote address purging will take into affect when: vxlan-remoteip attribute is present in the interfaces file or vxlan-purge-remotes is set to 'yes' We will ship a ifupdown2 default policy file to disable purging by default (vxlan-purge-remotes no). For existing customer deployed static configs, since the interfaces file will already have remote entries, this change will behave as existing code (ie purge = yes). For existing vxrd deployments, as long as already deployed interfaces files have no vxlan-remoteip entries, this patch does not change any behavior (can people confirm that existing vxrd deployments have no vxlan-remoteip entries in their interfaces ?) Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2017-01-10 14:59:32 -08:00
'vxlan-purge-remotes' :
{'help' : 'vxlan purge existing remote entries',
'validvals' : ['yes', 'no'],
'example': ['vxlan-purge-remotes yes']}
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
}}
ifupdown2 changes for vxlan anycast_ip, head-end fdb entries, protodown Ticket: CM-7087 Reviewed By: CCR-3379 Testing Done: unit testing with clag_vxlan_clos_spec/cfg.py On clag pairing, clagd changes local address of vxlan device to anycast ip. If user does ifreload now, ifupdown2 will overwrite local address with individual ip contained in /etc/netwrok/interfaces. vxlan.py caches anycast_ip configuration so that ifquery -c can skip it from flagging error and ifreload skip overwriting vxlan device's local ip. vxrd provisions head-end replication endpoints by adding bridge fdb entries. If /etc/network/interfaces doesn't have remote-ip attribute, then on ifreload ifupdown2 will delete all vxrd provisioned entries. ifupdown will check for presence of vxrd service and skip add/delete bridge fdb entries for head-end replication On ifreload vxlan device are put in proto-down even if they are up and running. Check for operstate and put it in proto-down only if operstate transitions from down to up.
2015-09-04 00:32:15 -07:00
_clagd_vxlan_anycast_ip = ""
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
def __init__(self, *args, **kargs):
moduleBase.__init__(self, *args, **kargs)
self.ipcmd = None
vxlan: add new attribute vxlan-purge-remotes to make purging remotes explicit Ticket: CM-13815 Reviewed By: Testing Done: Tested remote purging vxlan purging remotes is a feature where we clean up existing fdb remote entries in favor of the ones specified in the interfaces file. Obviously in precense of an external controller like bgp or vxrd this is not a good thing because these remotes maybe installed by these external controller daemons. This patch makes the purgining behaviour explicit by a new attribute. We will ship with a default policy file which sets vxlan-purge-remotes to no. This also cleans up a bug introduced by fix to CM-13767 where we were trying to delete default remote entry pointing to the local ip. more details below. problem: for static configuration, ifupdown2 has some code to "purge" existing default remote fdb entries and install new ones corresponding to the ones specified in the interfaces file (with vxlan-remoteip). For non-static configuration (ie in presence of an external controller), it skips this "purge"...because these entries maybe added by an external controller. To detect that there is no external controller running..., today it checks if the vxrd process is running or not. We need to extend this check to now include bgp (for evpn)...and it gets trickier with bgp since just checking the quagga pid is not good. Solution: I would like to make this purging explicit with an attribute. This patch adds a 'vxlan-purge-remotes yes|no' attribute. vxlan remote address purging will take into affect when: vxlan-remoteip attribute is present in the interfaces file or vxlan-purge-remotes is set to 'yes' We will ship a ifupdown2 default policy file to disable purging by default (vxlan-purge-remotes no). For existing customer deployed static configs, since the interfaces file will already have remote entries, this change will behave as existing code (ie purge = yes). For existing vxrd deployments, as long as already deployed interfaces files have no vxlan-remoteip entries, this patch does not change any behavior (can people confirm that existing vxrd deployments have no vxlan-remoteip entries in their interfaces ?) Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2017-01-10 14:59:32 -08:00
purge_remotes = policymanager.policymanager_api.get_module_globals(module_name=self.__class__.__name__, attr='vxlan-purge-remotes')
if purge_remotes:
self._purge_remotes = utils.get_boolean_from_string(purge_remotes)
else:
self._purge_remotes = False
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
Don't allow IP addresses on ports enslaved in bonds or bridges Ticket: CM-5146 Reviewed By: roopa,jtoppins Testing Done: built new ifupdown package and ran testifupdown2 suite of tests This patch prevents enslaved interfaces from having IP addresses. (cherry picked from commit 0c00606fbc76db11557a8e946310e93a2b376aa7) (cherry picked from commit dc30987acfc6af356b9e055db95d94ae45f0de9f)
2015-06-02 20:35:08 -04:00
def get_dependent_ifacenames(self, ifaceobj, ifaceobjs_all=None):
ifupdown2 changes for vxlan anycast_ip, head-end fdb entries, protodown Ticket: CM-7087 Reviewed By: CCR-3379 Testing Done: unit testing with clag_vxlan_clos_spec/cfg.py On clag pairing, clagd changes local address of vxlan device to anycast ip. If user does ifreload now, ifupdown2 will overwrite local address with individual ip contained in /etc/netwrok/interfaces. vxlan.py caches anycast_ip configuration so that ifquery -c can skip it from flagging error and ifreload skip overwriting vxlan device's local ip. vxrd provisions head-end replication endpoints by adding bridge fdb entries. If /etc/network/interfaces doesn't have remote-ip attribute, then on ifreload ifupdown2 will delete all vxrd provisioned entries. ifupdown will check for presence of vxrd service and skip add/delete bridge fdb entries for head-end replication On ifreload vxlan device are put in proto-down even if they are up and running. Check for operstate and put it in proto-down only if operstate transitions from down to up.
2015-09-04 00:32:15 -07:00
if self._is_vxlan_device(ifaceobj):
ifaceobj.link_kind |= ifaceLinkKind.VXLAN
elif ifaceobj.name == 'lo':
clagd_vxlan_list = ifaceobj.get_attr_value('clagd-vxlan-anycast-ip')
if clagd_vxlan_list:
if len(clagd_vxlan_list) != 1:
self.log_warn('%s: multiple clagd-vxlan-anycast-ip lines, using first one'
% (ifaceobj.name,))
vxlan._clagd_vxlan_anycast_ip = clagd_vxlan_list[0]
Don't allow IP addresses on ports enslaved in bonds or bridges Ticket: CM-5146 Reviewed By: roopa,jtoppins Testing Done: built new ifupdown package and ran testifupdown2 suite of tests This patch prevents enslaved interfaces from having IP addresses. (cherry picked from commit 0c00606fbc76db11557a8e946310e93a2b376aa7) (cherry picked from commit dc30987acfc6af356b9e055db95d94ae45f0de9f)
2015-06-02 20:35:08 -04:00
return None
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
def _is_vxlan_device(self, ifaceobj):
if ifaceobj.get_attr_value_first('vxlan-id'):
return True
return False
addons: moving vxlan creation from iproute2 to netlink (via nlmanager) Ticket: CM-8035 Reviewed By: CCR-4896 Testing Done: ifupdown smoke, -t vxlan tests Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-05 14:45:08 +02:00
def _vxlan_create(self, ifaceobj):
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
vxlanid = ifaceobj.get_attr_value_first('vxlan-id')
if vxlanid:
addons: vxlan: localtunnelip check before netlink call, prevent from overwriting the anycast ip Ticket: CM-11867 Reviewed By: Roopa, Balki, Nikhil G Testing Done: tests/l2/clag_vxlan_aa_test.py Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-21 01:56:27 +01:00
anycastip = self._clagd_vxlan_anycast_ip
addons: moving vxlan creation from iproute2 to netlink (via nlmanager) Ticket: CM-8035 Reviewed By: CCR-4896 Testing Done: ifupdown smoke, -t vxlan tests Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-05 14:45:08 +02:00
group = ifaceobj.get_attr_value_first('vxlan-svcnodeip')
addons: vxlan: localtunnelip check before netlink call, prevent from overwriting the anycast ip Ticket: CM-11867 Reviewed By: Roopa, Balki, Nikhil G Testing Done: tests/l2/clag_vxlan_aa_test.py Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-21 01:56:27 +01:00
local = ifaceobj.get_attr_value_first('vxlan-local-tunnelip')
ageing = ifaceobj.get_attr_value_first('vxlan-ageing')
learning = utils.get_onoff_bool(ifaceobj.get_attr_value_first('vxlan-learning'))
vxlan: add new attribute vxlan-purge-remotes to make purging remotes explicit Ticket: CM-13815 Reviewed By: Testing Done: Tested remote purging vxlan purging remotes is a feature where we clean up existing fdb remote entries in favor of the ones specified in the interfaces file. Obviously in precense of an external controller like bgp or vxrd this is not a good thing because these remotes maybe installed by these external controller daemons. This patch makes the purgining behaviour explicit by a new attribute. We will ship with a default policy file which sets vxlan-purge-remotes to no. This also cleans up a bug introduced by fix to CM-13767 where we were trying to delete default remote entry pointing to the local ip. more details below. problem: for static configuration, ifupdown2 has some code to "purge" existing default remote fdb entries and install new ones corresponding to the ones specified in the interfaces file (with vxlan-remoteip). For non-static configuration (ie in presence of an external controller), it skips this "purge"...because these entries maybe added by an external controller. To detect that there is no external controller running..., today it checks if the vxrd process is running or not. We need to extend this check to now include bgp (for evpn)...and it gets trickier with bgp since just checking the quagga pid is not good. Solution: I would like to make this purging explicit with an attribute. This patch adds a 'vxlan-purge-remotes yes|no' attribute. vxlan remote address purging will take into affect when: vxlan-remoteip attribute is present in the interfaces file or vxlan-purge-remotes is set to 'yes' We will ship a ifupdown2 default policy file to disable purging by default (vxlan-purge-remotes no). For existing customer deployed static configs, since the interfaces file will already have remote entries, this change will behave as existing code (ie purge = yes). For existing vxrd deployments, as long as already deployed interfaces files have no vxlan-remoteip entries, this patch does not change any behavior (can people confirm that existing vxrd deployments have no vxlan-remoteip entries in their interfaces ?) Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2017-01-10 14:59:32 -08:00
purge_remotes = ifaceobj.get_attr_value_first('vxlan-purge-remotes')
if purge_remotes:
purge_remotes = utils.get_boolean_from_string(purge_remotes)
else:
purge_remotes = self._purge_remotes
addons: vxlan: localtunnelip check before netlink call, prevent from overwriting the anycast ip Ticket: CM-11867 Reviewed By: Roopa, Balki, Nikhil G Testing Done: tests/l2/clag_vxlan_aa_test.py Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-21 01:56:27 +01:00
if self.ipcmd.link_exists(ifaceobj.name):
vxlanattrs = self.ipcmd.get_vxlandev_attrs(ifaceobj.name)
# on ifreload do not overwrite anycast_ip to individual ip
# if clagd has modified
if vxlanattrs:
running_localtunnelip = vxlanattrs.get('local')
if (anycastip and running_localtunnelip and
anycastip == running_localtunnelip):
local = running_localtunnelip
addons: moving vxlan creation from iproute2 to netlink (via nlmanager) Ticket: CM-8035 Reviewed By: CCR-4896 Testing Done: ifupdown smoke, -t vxlan tests Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-05 14:45:08 +02:00
netlink.link_add_vxlan(ifaceobj.name, vxlanid,
addons: vxlan: localtunnelip check before netlink call, prevent from overwriting the anycast ip Ticket: CM-11867 Reviewed By: Roopa, Balki, Nikhil G Testing Done: tests/l2/clag_vxlan_aa_test.py Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-21 01:56:27 +01:00
local=local,
learning=learning,
ageing=ageing,
addons: moving vxlan creation from iproute2 to netlink (via nlmanager) Ticket: CM-8035 Reviewed By: CCR-4896 Testing Done: ifupdown smoke, -t vxlan tests Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-05 14:45:08 +02:00
group=group)
vxlan: add new attribute vxlan-purge-remotes to make purging remotes explicit Ticket: CM-13815 Reviewed By: Testing Done: Tested remote purging vxlan purging remotes is a feature where we clean up existing fdb remote entries in favor of the ones specified in the interfaces file. Obviously in precense of an external controller like bgp or vxrd this is not a good thing because these remotes maybe installed by these external controller daemons. This patch makes the purgining behaviour explicit by a new attribute. We will ship with a default policy file which sets vxlan-purge-remotes to no. This also cleans up a bug introduced by fix to CM-13767 where we were trying to delete default remote entry pointing to the local ip. more details below. problem: for static configuration, ifupdown2 has some code to "purge" existing default remote fdb entries and install new ones corresponding to the ones specified in the interfaces file (with vxlan-remoteip). For non-static configuration (ie in presence of an external controller), it skips this "purge"...because these entries maybe added by an external controller. To detect that there is no external controller running..., today it checks if the vxrd process is running or not. We need to extend this check to now include bgp (for evpn)...and it gets trickier with bgp since just checking the quagga pid is not good. Solution: I would like to make this purging explicit with an attribute. This patch adds a 'vxlan-purge-remotes yes|no' attribute. vxlan remote address purging will take into affect when: vxlan-remoteip attribute is present in the interfaces file or vxlan-purge-remotes is set to 'yes' We will ship a ifupdown2 default policy file to disable purging by default (vxlan-purge-remotes no). For existing customer deployed static configs, since the interfaces file will already have remote entries, this change will behave as existing code (ie purge = yes). For existing vxrd deployments, as long as already deployed interfaces files have no vxlan-remoteip entries, this patch does not change any behavior (can people confirm that existing vxrd deployments have no vxlan-remoteip entries in their interfaces ?) Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2017-01-10 14:59:32 -08:00
remoteips = ifaceobj.get_attr_value('vxlan-remoteip')
if purge_remotes or remoteips:
addons: moving vxlan creation from iproute2 to netlink (via nlmanager) Ticket: CM-8035 Reviewed By: CCR-4896 Testing Done: ifupdown smoke, -t vxlan tests Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-05 14:45:08 +02:00
# figure out the diff for remotes and do the bridge fdb updates
vxlan: add new attribute vxlan-purge-remotes to make purging remotes explicit Ticket: CM-13815 Reviewed By: Testing Done: Tested remote purging vxlan purging remotes is a feature where we clean up existing fdb remote entries in favor of the ones specified in the interfaces file. Obviously in precense of an external controller like bgp or vxrd this is not a good thing because these remotes maybe installed by these external controller daemons. This patch makes the purgining behaviour explicit by a new attribute. We will ship with a default policy file which sets vxlan-purge-remotes to no. This also cleans up a bug introduced by fix to CM-13767 where we were trying to delete default remote entry pointing to the local ip. more details below. problem: for static configuration, ifupdown2 has some code to "purge" existing default remote fdb entries and install new ones corresponding to the ones specified in the interfaces file (with vxlan-remoteip). For non-static configuration (ie in presence of an external controller), it skips this "purge"...because these entries maybe added by an external controller. To detect that there is no external controller running..., today it checks if the vxrd process is running or not. We need to extend this check to now include bgp (for evpn)...and it gets trickier with bgp since just checking the quagga pid is not good. Solution: I would like to make this purging explicit with an attribute. This patch adds a 'vxlan-purge-remotes yes|no' attribute. vxlan remote address purging will take into affect when: vxlan-remoteip attribute is present in the interfaces file or vxlan-purge-remotes is set to 'yes' We will ship a ifupdown2 default policy file to disable purging by default (vxlan-purge-remotes no). For existing customer deployed static configs, since the interfaces file will already have remote entries, this change will behave as existing code (ie purge = yes). For existing vxrd deployments, as long as already deployed interfaces files have no vxlan-remoteip entries, this patch does not change any behavior (can people confirm that existing vxrd deployments have no vxlan-remoteip entries in their interfaces ?) Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2017-01-10 14:59:32 -08:00
# only if provisioned by user and not by an vxlan external
# controller.
addons: vxlan: remove vxlan-local-tunnel-ip from bridge fdb add list Ticket: None Reviewed By: Roopa Testing Done: This was discover while working on CM-13767 and some other vxlan issues Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-11-29 01:43:14 +01:00
peers = self.ipcmd.get_vxlan_peers(ifaceobj.name, group)
vxlan: add new attribute vxlan-purge-remotes to make purging remotes explicit Ticket: CM-13815 Reviewed By: Testing Done: Tested remote purging vxlan purging remotes is a feature where we clean up existing fdb remote entries in favor of the ones specified in the interfaces file. Obviously in precense of an external controller like bgp or vxrd this is not a good thing because these remotes maybe installed by these external controller daemons. This patch makes the purgining behaviour explicit by a new attribute. We will ship with a default policy file which sets vxlan-purge-remotes to no. This also cleans up a bug introduced by fix to CM-13767 where we were trying to delete default remote entry pointing to the local ip. more details below. problem: for static configuration, ifupdown2 has some code to "purge" existing default remote fdb entries and install new ones corresponding to the ones specified in the interfaces file (with vxlan-remoteip). For non-static configuration (ie in presence of an external controller), it skips this "purge"...because these entries maybe added by an external controller. To detect that there is no external controller running..., today it checks if the vxrd process is running or not. We need to extend this check to now include bgp (for evpn)...and it gets trickier with bgp since just checking the quagga pid is not good. Solution: I would like to make this purging explicit with an attribute. This patch adds a 'vxlan-purge-remotes yes|no' attribute. vxlan remote address purging will take into affect when: vxlan-remoteip attribute is present in the interfaces file or vxlan-purge-remotes is set to 'yes' We will ship a ifupdown2 default policy file to disable purging by default (vxlan-purge-remotes no). For existing customer deployed static configs, since the interfaces file will already have remote entries, this change will behave as existing code (ie purge = yes). For existing vxrd deployments, as long as already deployed interfaces files have no vxlan-remoteip entries, this patch does not change any behavior (can people confirm that existing vxrd deployments have no vxlan-remoteip entries in their interfaces ?) Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2017-01-10 14:59:32 -08:00
if local and remoteips and local in remoteips:
remoteips.remove(local)
addons: vxlan: remove vxlan-local-tunnel-ip from bridge fdb add list Ticket: None Reviewed By: Roopa Testing Done: This was discover while working on CM-13767 and some other vxlan issues Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-11-29 01:43:14 +01:00
cur_peers = set(peers)
addons: moving vxlan creation from iproute2 to netlink (via nlmanager) Ticket: CM-8035 Reviewed By: CCR-4896 Testing Done: ifupdown smoke, -t vxlan tests Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-05 14:45:08 +02:00
if remoteips:
new_peers = set(remoteips)
del_list = cur_peers.difference(new_peers)
add_list = new_peers.difference(cur_peers)
else:
del_list = cur_peers
add_list = []
addons: vxlan: continue to add or delete fdb entry after catching exception Ticket: CM-13767 Reviewed By: Roopa, Purna, Nikhil G Testing Done: auto vx-1000 iface vx-1000 vxlan-id 1000 bridge-access 100 vxlan-local-tunnelip 27.0.0.2 vxlan-remoteip 27.0.0.1 vxlan-remoteip 27.0.0.2 vxlan-remoteip 27.0.0.3 mstpctl-portbpdufilter yes mstpctl-bpduguard yes Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-11-29 01:20:38 +01:00
for addr in del_list:
try:
addons: moving vxlan creation from iproute2 to netlink (via nlmanager) Ticket: CM-8035 Reviewed By: CCR-4896 Testing Done: ifupdown smoke, -t vxlan tests Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-05 14:45:08 +02:00
self.ipcmd.bridge_fdb_del(ifaceobj.name,
'00:00:00:00:00:00',
None, True, addr)
Revert "addons: vxlan: log info when bridge add/del fails" This reverts commit 6a7f69a5a64d8fad400b72bd0cb73d5dab8d58d8.
2016-12-06 04:37:18 +01:00
except:
pass
addons: moving vxlan creation from iproute2 to netlink (via nlmanager) Ticket: CM-8035 Reviewed By: CCR-4896 Testing Done: ifupdown smoke, -t vxlan tests Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-05 14:45:08 +02:00
addons: vxlan: continue to add or delete fdb entry after catching exception Ticket: CM-13767 Reviewed By: Roopa, Purna, Nikhil G Testing Done: auto vx-1000 iface vx-1000 vxlan-id 1000 bridge-access 100 vxlan-local-tunnelip 27.0.0.2 vxlan-remoteip 27.0.0.1 vxlan-remoteip 27.0.0.2 vxlan-remoteip 27.0.0.3 mstpctl-portbpdufilter yes mstpctl-bpduguard yes Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-11-29 01:20:38 +01:00
for addr in add_list:
try:
addons: moving vxlan creation from iproute2 to netlink (via nlmanager) Ticket: CM-8035 Reviewed By: CCR-4896 Testing Done: ifupdown smoke, -t vxlan tests Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-05 14:45:08 +02:00
self.ipcmd.bridge_fdb_append(ifaceobj.name,
'00:00:00:00:00:00',
None, True, addr)
Revert "addons: vxlan: log info when bridge add/del fails" This reverts commit 6a7f69a5a64d8fad400b72bd0cb73d5dab8d58d8.
2016-12-06 04:37:18 +01:00
except:
pass
addons: moving vxlan creation from iproute2 to netlink (via nlmanager) Ticket: CM-8035 Reviewed By: CCR-4896 Testing Done: ifupdown smoke, -t vxlan tests Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-07-05 14:45:08 +02:00
def _up(self, ifaceobj):
self._vxlan_create(ifaceobj)
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
def _down(self, ifaceobj):
try:
self.ipcmd.link_delete(ifaceobj.name)
except Exception, e:
self.log_warn(str(e))
addons: vxlan: fix ifquery --check failure on vxlan-svcnodeip Ticket: CM-10336 Reviewed By: Roopa Prabhu Testing Done: yes, by installing ifupdown .deb file onto dell-s3000-02 Signed-off-by: Nikhil <nikhil@cumulusnetworks.com>
2016-04-08 15:59:42 -07:00
def _query_check_n_update(self, ifaceobj, ifaceobjcurr, attrname, attrval,
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
running_attrval):
addons: vxlan: fix ifquery --check failure on vxlan-svcnodeip Ticket: CM-10336 Reviewed By: Roopa Prabhu Testing Done: yes, by installing ifupdown .deb file onto dell-s3000-02 Signed-off-by: Nikhil <nikhil@cumulusnetworks.com>
2016-04-08 15:59:42 -07:00
if not ifaceobj.get_attr_value_first(attrname):
return
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
if running_attrval and attrval == running_attrval:
ifaceobjcurr.update_config_with_status(attrname, attrval, 0)
else:
ifaceobjcurr.update_config_with_status(attrname, running_attrval, 1)
def _query_check_n_update_addresses(self, ifaceobjcurr, attrname,
addresses, running_addresses):
if addresses:
for a in addresses:
if a in running_addresses:
ifaceobjcurr.update_config_with_status(attrname, a, 0)
else:
ifaceobjcurr.update_config_with_status(attrname, a, 1)
running_addresses = Set(running_addresses).difference(
Set(addresses))
[ifaceobjcurr.update_config_with_status(attrname, a, 1)
for a in running_addresses]
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
def _query_check(self, ifaceobj, ifaceobjcurr):
if not self.ipcmd.link_exists(ifaceobj.name):
return
# Update vxlan object
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
vxlanattrs = self.ipcmd.get_vxlandev_attrs(ifaceobj.name)
if not vxlanattrs:
Multiple fixes and cleanup Ticket: CM-3346 Reviewed By: Testing Done: Tested ifupdown2 sanity - moved 'admin up' delays that we introduced recently to be configurable via two ifupdown2.conf attributes # Let link master (bridges, bonds) own the link state of slaves link_master_slave=1 # Delay admin state change till the end delay_admin_state_change=0 - reduced some redundant traversal of dependency trees - fixed a few bugs in query check
2014-12-17 12:39:38 -08:00
ifaceobjcurr.check_n_update_config_with_status_many(ifaceobj,
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
self.get_mod_attrs(), -1)
return
addons: vxlan: fix ifquery --check failure on vxlan-svcnodeip Ticket: CM-10336 Reviewed By: Roopa Prabhu Testing Done: yes, by installing ifupdown .deb file onto dell-s3000-02 Signed-off-by: Nikhil <nikhil@cumulusnetworks.com>
2016-04-08 15:59:42 -07:00
self._query_check_n_update(ifaceobj, ifaceobjcurr, 'vxlan-id',
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
ifaceobj.get_attr_value_first('vxlan-id'),
vxlanattrs.get('vxlanid'))
ifupdown2 changes for vxlan anycast_ip, head-end fdb entries, protodown Ticket: CM-7087 Reviewed By: CCR-3379 Testing Done: unit testing with clag_vxlan_clos_spec/cfg.py On clag pairing, clagd changes local address of vxlan device to anycast ip. If user does ifreload now, ifupdown2 will overwrite local address with individual ip contained in /etc/netwrok/interfaces. vxlan.py caches anycast_ip configuration so that ifquery -c can skip it from flagging error and ifreload skip overwriting vxlan device's local ip. vxrd provisions head-end replication endpoints by adding bridge fdb entries. If /etc/network/interfaces doesn't have remote-ip attribute, then on ifreload ifupdown2 will delete all vxrd provisioned entries. ifupdown will check for presence of vxrd service and skip add/delete bridge fdb entries for head-end replication On ifreload vxlan device are put in proto-down even if they are up and running. Check for operstate and put it in proto-down only if operstate transitions from down to up.
2015-09-04 00:32:15 -07:00
running_attrval = vxlanattrs.get('local')
attrval = ifaceobj.get_attr_value_first('vxlan-local-tunnelip')
if running_attrval == self._clagd_vxlan_anycast_ip:
# if local ip is anycast_ip, then let query_check to go through
attrval = self._clagd_vxlan_anycast_ip
addons: vxlan: fix ifquery --check failure on vxlan-svcnodeip Ticket: CM-10336 Reviewed By: Roopa Prabhu Testing Done: yes, by installing ifupdown .deb file onto dell-s3000-02 Signed-off-by: Nikhil <nikhil@cumulusnetworks.com>
2016-04-08 15:59:42 -07:00
self._query_check_n_update(ifaceobj, ifaceobjcurr, 'vxlan-local-tunnelip',
ifupdown2 changes for vxlan anycast_ip, head-end fdb entries, protodown Ticket: CM-7087 Reviewed By: CCR-3379 Testing Done: unit testing with clag_vxlan_clos_spec/cfg.py On clag pairing, clagd changes local address of vxlan device to anycast ip. If user does ifreload now, ifupdown2 will overwrite local address with individual ip contained in /etc/netwrok/interfaces. vxlan.py caches anycast_ip configuration so that ifquery -c can skip it from flagging error and ifreload skip overwriting vxlan device's local ip. vxrd provisions head-end replication endpoints by adding bridge fdb entries. If /etc/network/interfaces doesn't have remote-ip attribute, then on ifreload ifupdown2 will delete all vxrd provisioned entries. ifupdown will check for presence of vxrd service and skip add/delete bridge fdb entries for head-end replication On ifreload vxlan device are put in proto-down even if they are up and running. Check for operstate and put it in proto-down only if operstate transitions from down to up.
2015-09-04 00:32:15 -07:00
attrval, running_attrval)
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
addons: vxlan: fix ifquery --check failure on vxlan-svcnodeip Ticket: CM-10336 Reviewed By: Roopa Prabhu Testing Done: yes, by installing ifupdown .deb file onto dell-s3000-02 Signed-off-by: Nikhil <nikhil@cumulusnetworks.com>
2016-04-08 15:59:42 -07:00
self._query_check_n_update(ifaceobj, ifaceobjcurr, 'vxlan-svcnodeip',
service node address config for vxlan device using "remote" attribute Ticket: CM-9520 Reviewed By: CCR-4152 Testing Done: verified service node configuration Use "remote" attribute in iproute2 command to provision service node address for service node based replication. Changes also include allowing only one service node per vxlan device, so its user's responsiblity to select one service node per vxlan device if there are multiple nodes to distribute the load.
2016-02-25 21:53:05 -08:00
ifaceobj.get_attr_value_first('vxlan-svcnodeip'),
vxlanattrs.get('svcnode'))
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
ifupdown: vxlan-remoteip not getting applied when vxrd is not configured to run Ticket: CM-7410 Reviewed By: CCR-3470 Testing Done: When vxrd is not enabled in /etc/default/vxrd, the 'service vxrd status' command returns 0, causing the vxlan-remoteip to be not applied even though it should have. Fix is to change to checking pidfile of vxrd.
2015-09-10 13:57:14 -07:00
if not systemUtils.is_service_running(None, '/var/run/vxrd.pid'):
ifupdown2 changes for vxlan anycast_ip, head-end fdb entries, protodown Ticket: CM-7087 Reviewed By: CCR-3379 Testing Done: unit testing with clag_vxlan_clos_spec/cfg.py On clag pairing, clagd changes local address of vxlan device to anycast ip. If user does ifreload now, ifupdown2 will overwrite local address with individual ip contained in /etc/netwrok/interfaces. vxlan.py caches anycast_ip configuration so that ifquery -c can skip it from flagging error and ifreload skip overwriting vxlan device's local ip. vxrd provisions head-end replication endpoints by adding bridge fdb entries. If /etc/network/interfaces doesn't have remote-ip attribute, then on ifreload ifupdown2 will delete all vxrd provisioned entries. ifupdown will check for presence of vxrd service and skip add/delete bridge fdb entries for head-end replication On ifreload vxlan device are put in proto-down even if they are up and running. Check for operstate and put it in proto-down only if operstate transitions from down to up.
2015-09-04 00:32:15 -07:00
# vxlan-remoteip config is allowed only if vxrd is not running
addons: vxlan: fixing error: _query_check_n_update_addresses() takes exactly 5 arguments (6 given) Ticket: None Reviewed By: Roopa Testing Done: This error happened when running ifquery -c -a with auto vx-42 iface vx-42 vxlan-id 42 vxlan-local-tunnelip 27.0.0.11 mtu 1500
2016-04-18 16:50:56 +02:00
self._query_check_n_update_addresses(ifaceobjcurr, 'vxlan-remoteip',
Revert "addons: vxlan: support for multiple ip addresses for vxlan-remoteip keyword" This reverts commit 32e2363a694e5fdf535e45db7ef6baba8cab2ed4. I pushed this commit by mistake. It was a local commit waiting to be reviewed. Reverting it for now, might be applied later after positive review.
2016-11-28 17:46:57 +01:00
ifaceobj.get_attr_value('vxlan-remoteip'),
ifupdown2 changes for vxlan anycast_ip, head-end fdb entries, protodown Ticket: CM-7087 Reviewed By: CCR-3379 Testing Done: unit testing with clag_vxlan_clos_spec/cfg.py On clag pairing, clagd changes local address of vxlan device to anycast ip. If user does ifreload now, ifupdown2 will overwrite local address with individual ip contained in /etc/netwrok/interfaces. vxlan.py caches anycast_ip configuration so that ifquery -c can skip it from flagging error and ifreload skip overwriting vxlan device's local ip. vxrd provisions head-end replication endpoints by adding bridge fdb entries. If /etc/network/interfaces doesn't have remote-ip attribute, then on ifreload ifupdown2 will delete all vxrd provisioned entries. ifupdown will check for presence of vxrd service and skip add/delete bridge fdb entries for head-end replication On ifreload vxlan device are put in proto-down even if they are up and running. Check for operstate and put it in proto-down only if operstate transitions from down to up.
2015-09-04 00:32:15 -07:00
vxlanattrs.get('remote', []))
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
learning = ifaceobj.get_attr_value_first('vxlan-learning')
Modified ifupdown support for vxlan head end replication Ticket: CM-5637 Reviewed By: CCR-2755 Testing Done: Replaced vxlan-peernodeip attribute with vxlan-remoteip. Updated the vxlan and iproute2 modules to configure head end replication using bridge fdb commands.
2015-04-15 09:48:12 -07:00
if not learning:
learning = 'on'
small easy: support (0|1) or (off|on) attribute while keeping backward compatibility Ticket: CM-8866 Reviewed By: Roopa Testing Done: added support for: * bond-lacp-bypass-allow (0|1) * bond-use-carrier (0|1) * bridge-mcqifaddr (0|1) * bridge-mcquerier (0|1) * bridge-mcrouter (0|1) * bridge-mcsnoop (0|1) * bridge-portmcrouter (0|1) * link-autoneg (off|on) * vxlan-learning (off|on) these 2 are not yet supported by ifupdown2: * bond-lacp-bypass-all-active (0|1) * bond-lacp-fallback-allow (0|1) This one is left untouched. yes/no doesn't make sense for this attribute. * bond-lacp-rate (0|1) Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-06-07 18:37:40 +01:00
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
running_learning = vxlanattrs.get('learning')
small easy: support (0|1) or (off|on) attribute while keeping backward compatibility Ticket: CM-8866 Reviewed By: Roopa Testing Done: added support for: * bond-lacp-bypass-allow (0|1) * bond-use-carrier (0|1) * bridge-mcqifaddr (0|1) * bridge-mcquerier (0|1) * bridge-mcrouter (0|1) * bridge-mcsnoop (0|1) * bridge-portmcrouter (0|1) * link-autoneg (off|on) * vxlan-learning (off|on) these 2 are not yet supported by ifupdown2: * bond-lacp-bypass-all-active (0|1) * bond-lacp-fallback-allow (0|1) This one is left untouched. yes/no doesn't make sense for this attribute. * bond-lacp-rate (0|1) Signed-off-by: Julien Fortin <julien@cumulusnetworks.com>
2016-06-07 18:37:40 +01:00
if learning == 'yes' and running_learning == 'on':
running_learning = 'yes'
elif learning == 'no' and running_learning == 'off':
running_learning = 'no'
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
if learning == running_learning:
ifaceobjcurr.update_config_with_status('vxlan-learning',
running_learning, 0)
else:
ifaceobjcurr.update_config_with_status('vxlan-learning',
running_learning, 1)
ifupdown2 fixes for svcnode, vxlan-ageing, bridge-vlan-aware Ticket: CM-6815, CM-6816, CM-6817 Reviewed By: CCR-3234 Testing Done: unit testing CM-6815 : ip link set syntax for svcnode has been changed. Absence of svcnode will retain the existing values. svcnode 0.0.0.0 is needed to wipe out service node addresses in vxlan device. Modified ifupdown2 to use svcnode 0.0.0.0 to clean up service node address. CM-6816: "bridge-clan-aware no" is not handled in query-check and hence ifquery on bridge interface with "bridge-vlan-aware no" fails. Modified bridge's query-check to take care of this. CM-6817: With default ageing value (300), if query -c <vxlan device> was failing. Set ageing to 300 if not specified and compare it with running config.
2015-07-23 12:15:16 -07:00
ageing = ifaceobj.get_attr_value_first('vxlan-ageing')
if not ageing:
ageing = self.get_mod_subattr('vxlan-ageing', 'default')
addons: vxlan: fix ifquery --check failure on vxlan-svcnodeip Ticket: CM-10336 Reviewed By: Roopa Prabhu Testing Done: yes, by installing ifupdown .deb file onto dell-s3000-02 Signed-off-by: Nikhil <nikhil@cumulusnetworks.com>
2016-04-08 15:59:42 -07:00
self._query_check_n_update(ifaceobj, ifaceobjcurr, 'vxlan-ageing',
ifupdown2 fixes for svcnode, vxlan-ageing, bridge-vlan-aware Ticket: CM-6815, CM-6816, CM-6817 Reviewed By: CCR-3234 Testing Done: unit testing CM-6815 : ip link set syntax for svcnode has been changed. Absence of svcnode will retain the existing values. svcnode 0.0.0.0 is needed to wipe out service node addresses in vxlan device. Modified ifupdown2 to use svcnode 0.0.0.0 to clean up service node address. CM-6816: "bridge-clan-aware no" is not handled in query-check and hence ifquery on bridge interface with "bridge-vlan-aware no" fails. Modified bridge's query-check to take care of this. CM-6817: With default ageing value (300), if query -c <vxlan device> was failing. Set ageing to 300 if not specified and compare it with running config.
2015-07-23 12:15:16 -07:00
ageing, vxlanattrs.get('ageing'))
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
def _query_running(self, ifaceobjrunning):
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
vxlanattrs = self.ipcmd.get_vxlandev_attrs(ifaceobjrunning.name)
if not vxlanattrs:
return
Fix vxlan query running Ticket: CM-3346 Reviewed By: Testing Done: vxlan query running
2014-11-03 21:47:22 -08:00
attrval = vxlanattrs.get('vxlanid')
if attrval:
ifaceobjrunning.update_config('vxlan-id', vxlanattrs.get('vxlanid'))
addons: vxlan: fix ifquery running to not proceed when vxlan-id is not available Ticket: CM-12378 Reviewed By: julien, nikhil Testing Done: tested ifquery running with examples in the bug Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-08-11 16:35:01 -07:00
else:
# if there is no vxlan id, this is not a vxlan port
return
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
attrval = vxlanattrs.get('local')
if attrval:
ifaceobjrunning.update_config('vxlan-local-tunnelip', attrval)
attrval = vxlanattrs.get('svcnode')
if attrval:
service node address config for vxlan device using "remote" attribute Ticket: CM-9520 Reviewed By: CCR-4152 Testing Done: verified service node configuration Use "remote" attribute in iproute2 command to provision service node address for service node based replication. Changes also include allowing only one service node per vxlan device, so its user's responsiblity to select one service node per vxlan device if there are multiple nodes to distribute the load.
2016-02-25 21:53:05 -08:00
ifaceobjrunning.update_config('vxlan-svcnode', attrval)
ifupdown: vxlan-remoteip not getting applied when vxrd is not configured to run Ticket: CM-7410 Reviewed By: CCR-3470 Testing Done: When vxrd is not enabled in /etc/default/vxrd, the 'service vxrd status' command returns 0, causing the vxlan-remoteip to be not applied even though it should have. Fix is to change to checking pidfile of vxrd.
2015-09-10 13:57:14 -07:00
if not systemUtils.is_service_running(None, '/var/run/vxrd.pid'):
ifupdown2 changes for vxlan anycast_ip, head-end fdb entries, protodown Ticket: CM-7087 Reviewed By: CCR-3379 Testing Done: unit testing with clag_vxlan_clos_spec/cfg.py On clag pairing, clagd changes local address of vxlan device to anycast ip. If user does ifreload now, ifupdown2 will overwrite local address with individual ip contained in /etc/netwrok/interfaces. vxlan.py caches anycast_ip configuration so that ifquery -c can skip it from flagging error and ifreload skip overwriting vxlan device's local ip. vxrd provisions head-end replication endpoints by adding bridge fdb entries. If /etc/network/interfaces doesn't have remote-ip attribute, then on ifreload ifupdown2 will delete all vxrd provisioned entries. ifupdown will check for presence of vxrd service and skip add/delete bridge fdb entries for head-end replication On ifreload vxlan device are put in proto-down even if they are up and running. Check for operstate and put it in proto-down only if operstate transitions from down to up.
2015-09-04 00:32:15 -07:00
# vxlan-remoteip config is allowed only if vxrd is not running
attrval = vxlanattrs.get('remote')
if attrval:
[ifaceobjrunning.update_config('vxlan-remoteip', a)
for a in attrval]
some more ifquery support (for vxlan devices etc) Ticket: CM-3784 Reviewed By: Testing Done: Tested ifquery check/running and sanity
2014-10-31 11:28:07 -07:00
attrval = vxlanattrs.get('learning')
if attrval and attrval == 'on':
ifaceobjrunning.update_config('vxlan-learning', 'on')
Added ifupdown2 support for vxlan-ageing config Ticket: CM-5105 Reviewed By: roopa Testing Done: tested configs before and after change We needed a configuration option to add vxlan-ageing to ifupdown2 configs. This patch adds the option to change the vxlan-ageing timer currently set with "ip link" commands. (cherry picked from commit 9832462c365bd2b900b98f5675d407d1b11c4a95) Conflicts: packages/ifupdown2/addons/vxlan.py packages/ifupdown2/ifupdownaddons/iproute2.py
2015-03-05 12:54:55 -05:00
attrval = vxlanattrs.get('ageing')
if attrval:
ifaceobjrunning.update_config('vxlan-ageing', vxlanattrs.get('ageing'))
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
_run_ops = {'pre-up' : _up,
'post-down' : _down,
'query-checkcurr' : _query_check,
'query-running' : _query_running}
def get_ops(self):
return self._run_ops.keys()
def _init_command_handlers(self):
if not self.ipcmd:
ifupdown: add new ifupdownflags class to carry ifupdown flags Ticket: cleanup Reviewed By: Testing Done: Tested ifupdown sanity This gets rid of some ugly previous flag handling which was passed through modules. This creates a global instance of flags that all addon modules and helper modules can use. Signed-off-by: Roopa Prabhu <roopa@cumulusnetworks.com>
2016-04-14 14:45:47 -07:00
self.ipcmd = iproute2()
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
First phase checkin for new format for vlan aware bridge Ticket: CM-3346 Reviewed By: Testing Done: Sanity test + test new bridge format There are a bunch of open issues with `vlan` interface handling. Below is the format. auto swp1 iface swp1 bridge-access 300 mstpctl-pathcost 0 mstpctl-adminedge yes mstpctl-autoedge yes mstpctl-p2p yes mstpctl-bpduguard yes mstpctl-treeprio 64 mstpctl-network yes mstpctl-bpdufilter yes auto swp2 iface swp2 bridge-vids 301 bridge-pvid 302 bridge-pathcost 10 bridge-priority 10 bridge-multicast-router 0 bridge-multicast-fast-leave 1 auto br0 iface br0 bridge-vlan-aware yes bridge-stp on bridge-ports swp1 swp2 bridge-vids 2001 auto br0.2001 iface br0.2001 address 10.0.14.2 hwaddress 00:03:00:00:00:12 address-virtual 00:00:5e:00:01:01 11.0.4.1/24 auto br0.2001 vlan br0.2001 bridge-igmp-querier-src 172.16.101.1
2014-10-24 10:11:07 -07:00
def run(self, ifaceobj, operation, query_ifaceobj=None, **extra_args):
Move ifupdown2addons into ifupdown2 pacakge Ticket: CM-3864 Reviewed By: Testing Done: Tested build and install open item: - cleanup stale ifupdown2-addons package files
2014-10-09 16:02:46 -07:00
op_handler = self._run_ops.get(operation)
if not op_handler:
return
if (operation != 'query-running' and
not self._is_vxlan_device(ifaceobj)):
return
self._init_command_handlers()
if operation == 'query-checkcurr':
op_handler(self, ifaceobj, query_ifaceobj)
else:
op_handler(self, ifaceobj)
Copy Permalink