[pve-network.git] / PVE / Network / SDN / Zones / Plugin.pm

package PVE::Network::SDN::Zones::Plugin;

use strict;
use warnings;

use PVE::Tools qw(run_command);
use PVE::JSONSchema;
use PVE::Cluster;

use Data::Dumper;
use PVE::JSONSchema qw(get_standard_option);
use base qw(PVE::SectionConfig);

PVE::Cluster::cfs_register_file('sdn/zones.cfg',
				 sub { __PACKAGE__->parse_config(@_); });

PVE::Cluster::cfs_register_file('sdn/zones.cfg.new',
				 sub { __PACKAGE__->parse_config(@_); },
				 sub { __PACKAGE__->write_config(@_); });

PVE::JSONSchema::register_standard_option('pve-sdn-zone-id', {
    description => "The SDN zone object identifier.",
    type => 'string', format => 'pve-sdn-zone-id',
});

PVE::JSONSchema::register_format('pve-sdn-zone-id', \&parse_sdn_zone_id);
sub parse_sdn_zone_id {
    my ($id, $noerr) = @_;

    if ($id !~ m/^[a-z][a-z0-9]*[a-z0-9]$/i) {
	return undef if $noerr;
	die "zone ID '$id' contains illegal characters\n";
    }
    die "zone ID '$id' can't be more length than 10 characters\n" if length($id) > 10;
    return $id;
}

my $defaultData = {

    propertyList => {
	type => {
	    description => "Plugin type.",
	    type => 'string', format => 'pve-configid',
	    type => 'string',
	},
        nodes => get_standard_option('pve-node-list', { optional => 1 }),
        zone => get_standard_option('pve-sdn-zone-id',
            { completion => \&PVE::Network::SDN::Zones::complete_sdn_zone }),
    },
};

sub private {
    return $defaultData;
}

sub decode_value {
    my ($class, $type, $key, $value) = @_;

    if ($key eq 'nodes') {
        my $res = {};

        foreach my $node (PVE::Tools::split_list($value)) {
            if (PVE::JSONSchema::pve_verify_node_name($node)) {
                $res->{$node} = 1;
            }
        }

        return $res;
    } 

   return $value;
}

sub encode_value {
    my ($class, $type, $key, $value) = @_;

    if ($key eq 'nodes') {
        return join(',', keys(%$value));
    }

    return $value;
}

sub parse_section_header {
    my ($class, $line) = @_;

    if ($line =~ m/^(\S+):\s*(\S+)\s*$/) {
        my ($type, $id) = (lc($1), $2);
	my $errmsg = undef; # set if you want to skip whole section
	eval { PVE::JSONSchema::pve_verify_configid($type); };
	$errmsg = $@ if $@;
	my $config = {}; # to return additional attributes
	return ($type, $id, $errmsg, $config);
    }
    return undef;
}

sub generate_sdn_config {
    my ($class, $plugin_config, $zoneid, $vnetid, $vnet, $controller, $interfaces_config, $config) = @_;

    die "please implement inside plugin";
}

sub generate_controller_config {
    my ($class, $plugin_config, $controller, $id, $uplinks, $config) = @_;

    die "please implement inside plugin";
}

sub generate_controller_vnet_config {
    my ($class, $plugin_config, $controller, $zoneid, $vnetid, $config) = @_;

}

sub write_controller_config {
    my ($class, $plugin_config, $config) = @_;

    die "please implement inside plugin";
}

sub controller_reload {
    my ($class) = @_;

    die "please implement inside plugin";
}

sub on_delete_hook {
    my ($class, $zoneid, $vnet_cfg) = @_;

    # verify that no vnet are associated to this zone
    foreach my $id (keys %{$vnet_cfg->{ids}}) {
	my $vnet = $vnet_cfg->{ids}->{$id};
	die "zone $zoneid is used by vnet $id"
	    if ($vnet->{type} eq 'vnet' && defined($vnet->{zone}) && $vnet->{zone} eq $zoneid);
    }
}

sub on_update_hook {
    my ($class, $zoneid, $zone_cfg, $controller_cfg) = @_;

    # do nothing by default
}

#helpers
sub parse_tag_number_or_range {
    my ($str, $max, $tag) = @_;

    my @elements = split(/,/, $str);
    my $count = 0;
    my $allowed = undef;

    die "extraneous commas in list\n" if $str ne join(',', @elements);
    foreach my $item (@elements) {
	if ($item =~ m/^([0-9]+)-([0-9]+)$/) {
	    $count += 2;
	    my ($port1, $port2) = ($1, $2);
	    die "invalid port '$port1'\n" if $port1 > $max;
	    die "invalid port '$port2'\n" if $port2 > $max;
	    die "backwards range '$port1:$port2' not allowed, did you mean '$port2:$port1'?\n" if $port1 > $port2;

	    if ($tag && $tag >= $port1 && $tag <= $port2){
		$allowed = 1;
		last;
	    }

	} elsif ($item =~ m/^([0-9]+)$/) {
	    $count += 1;
	    my $port = $1;
	    die "invalid port '$port'\n" if $port > $max;

	    if ($tag && $tag == $port){
		$allowed = 1;
		last;
	    }
	}
    }
    die "tag $tag is not allowed" if $tag && !$allowed;

    return (scalar(@elements) > 1);
}

sub status {
    my ($class, $plugin_config, $zone, $id, $vnet, $err_config, $status, $vnet_status, $zone_status) = @_;

    $vnet_status->{$id}->{zone} = $zone;
    $zone_status->{$zone}->{status} = 'available' if !defined($zone_status->{$zone}->{status});

    if($err_config) {
	$vnet_status->{$id}->{status} = 'pending';
	$vnet_status->{$id}->{statusmsg} = $err_config;
	$zone_status->{$zone}->{status} = 'pending';
    } elsif ($status->{$id}->{status} && $status->{$id}->{status} eq 'pass') {
	$vnet_status->{$id}->{status} = 'available';
	my $bridgeport = $status->{$id}->{config}->{'bridge-ports'};

	if ($bridgeport && $status->{$bridgeport}->{status} && $status->{$bridgeport}->{status} ne 'pass') {
	    $vnet_status->{$id}->{status} = 'error';
	    $vnet_status->{$id}->{statusmsg} = 'configuration not fully applied';
	    $zone_status->{$zone}->{status} = 'error';
	}

    } else {
	$vnet_status->{$id}->{status} = 'error';
	$vnet_status->{$id}->{statusmsg} = 'missing';
	$zone_status->{$zone}->{status} = 'error';
    }
}

#helper

sub get_uplink_iface {
    my ($interfaces_config, $uplink) = @_;

    my $iface = undef;
    foreach my $id (keys %{$interfaces_config->{ifaces}}) {
        my $interface = $interfaces_config->{ifaces}->{$id};
        if (my $iface_uplink = $interface->{'uplink-id'}) {
	    next if $iface_uplink ne $uplink;
            if($interface->{type} ne 'eth' && $interface->{type} ne 'bond') {
                warn "uplink $uplink is not a physical or bond interface";
                next;
            }
	    $iface = $id;
        }
    }

    #create a dummy uplink interface if no uplink found
    if(!$iface) {
        warn "can't find uplink $uplink in physical interface";
        $iface = "uplink${uplink}";
    }

    return $iface;
}

sub get_local_route_ip {
    my ($targetip) = @_;

    my $ip = undef;
    my $interface = undef;

    run_command(['/sbin/ip', 'route', 'get', $targetip], outfunc => sub {
        if ($_[0] =~ m/src ($PVE::Tools::IPRE)/) {
            $ip = $1;
        }
        if ($_[0] =~ m/dev (\S+)/) {
            $interface = $1;
        }

    });
    return ($ip, $interface);
}


sub find_local_ip_interface_peers {
    my ($peers) = @_;

    my $network_config = PVE::INotify::read_file('interfaces');
    my $ifaces = $network_config->{ifaces};
    #is a local ip member of peers list ?
    foreach my $address (@{$peers}) {
	while (my $interface = each %$ifaces) {
	    my $ip = $ifaces->{$interface}->{address};
	    if ($ip && $ip eq $address) {
		return ($ip, $interface);
	    }
	}
    }

    #if peer is remote, find source with ip route
    foreach my $address (@{$peers}) {
	my ($ip, $interface) = get_local_route_ip($address);
	return ($ip, $interface);
    }
}

1;
Commit	Line	Data
f5eabba0	1	package PVE::Network::SDN::Zones::Plugin;
6939693f AD	2
	3	use strict;
	4	use warnings;
	5
1f543c5f	6	use PVE::Tools qw(run_command);
6939693f AD	7	use PVE::JSONSchema;
	8	use PVE::Cluster;
	9
	10	use Data::Dumper;
eec580bf	11	use PVE::JSONSchema qw(get_standard_option);
6939693f AD	12	use base qw(PVE::SectionConfig);
6939693f AD	13
f5eabba0	14	PVE::Cluster::cfs_register_file('sdn/zones.cfg',
39d04c82 AD	15	sub { __PACKAGE__->parse_config(@_); });
39d04c82 AD	16
f5eabba0	17	PVE::Cluster::cfs_register_file('sdn/zones.cfg.new',
6939693f AD	18	sub { __PACKAGE__->parse_config(@_); },
	19	sub { __PACKAGE__->write_config(@_); });
	20
f5eabba0 AD	21	PVE::JSONSchema::register_standard_option('pve-sdn-zone-id', {
	22	description => "The SDN zone object identifier.",
	23	type => 'string', format => 'pve-sdn-zone-id',
fe61b14c AD	24	});
fe61b14c AD	25
f5eabba0 AD	26	PVE::JSONSchema::register_format('pve-sdn-zone-id', \&parse_sdn_zone_id);
	27	sub parse_sdn_zone_id {
	28	my ($id, $noerr) = @_;
fe61b14c	29
7c5b0f6d AD	30	if ($id !~ m/^[a-z][a-z0-9]*[a-z0-9]$/i) {
	31	return undef if $noerr;
	32	die "zone ID '$id' contains illegal characters\n";
fe61b14c	33	}
7c5b0f6d	34	die "zone ID '$id' can't be more length than 10 characters\n" if length($id) > 10;
f5eabba0	35	return $id;
fe61b14c AD	36	}
fe61b14c AD	37
6939693f AD	38	my $defaultData = {
	39
	40	propertyList => {
7d35eaf5	41	type => {
6939693f AD	42	description => "Plugin type.",
	43	type => 'string', format => 'pve-configid',
	44	type => 'string',
	45	},
c2b9c173	46	nodes => get_standard_option('pve-node-list', { optional => 1 }),
f5eabba0 AD	47	zone => get_standard_option('pve-sdn-zone-id',
f5eabba0 AD	48	{ completion => \&PVE::Network::SDN::Zones::complete_sdn_zone }),
6939693f AD	49	},
	50	};
	51
	52	sub private {
	53	return $defaultData;
	54	}
	55
c2b9c173 AD	56	sub decode_value {
	57	my ($class, $type, $key, $value) = @_;
	58
	59	if ($key eq 'nodes') {
	60	my $res = {};
	61
	62	foreach my $node (PVE::Tools::split_list($value)) {
	63	if (PVE::JSONSchema::pve_verify_node_name($node)) {
	64	$res->{$node} = 1;
	65	}
	66	}
	67
	68	return $res;
	69	}
	70
	71	return $value;
	72	}
	73
	74	sub encode_value {
	75	my ($class, $type, $key, $value) = @_;
	76
	77	if ($key eq 'nodes') {
	78	return join(',', keys(%$value));
	79	}
	80
	81	return $value;
	82	}
	83
6939693f AD	84	sub parse_section_header {
	85	my ($class, $line) = @_;
	86
	87	if ($line =~ m/^(\S+):\s(\S+)\s$/) {
f5eabba0	88	my ($type, $id) = (lc($1), $2);
6939693f AD	89	my $errmsg = undef; # set if you want to skip whole section
	90	eval { PVE::JSONSchema::pve_verify_configid($type); };
	91	$errmsg = $@ if $@;
	92	my $config = {}; # to return additional attributes
f5eabba0	93	return ($type, $id, $errmsg, $config);
6939693f AD	94	}
	95	return undef;
	96	}
	97
6bffe819	98	sub generate_sdn_config {
ba7ac021	99	my ($class, $plugin_config, $zoneid, $vnetid, $vnet, $controller, $interfaces_config, $config) = @_;
6939693f AD	100
	101	die "please implement inside plugin";
	102	}
	103
8fb1ee7f	104	sub generate_controller_config {
56cdcac9	105	my ($class, $plugin_config, $controller, $id, $uplinks, $config) = @_;
32602a38 AD	106
	107	die "please implement inside plugin";
	108	}
	109
ad03c543	110	sub generate_controller_vnet_config {
56cdcac9	111	my ($class, $plugin_config, $controller, $zoneid, $vnetid, $config) = @_;
ad03c543 AD	112
	113	}
	114
8fb1ee7f AD	115	sub write_controller_config {
	116	my ($class, $plugin_config, $config) = @_;
	117
	118	die "please implement inside plugin";
	119	}
	120
fa609bdd AD	121	sub controller_reload {
	122	my ($class) = @_;
	123
	124	die "please implement inside plugin";
	125	}
	126
fe0c6b9e	127	sub on_delete_hook {
56cdcac9	128	my ($class, $zoneid, $vnet_cfg) = @_;
e8d5906e	129
56cdcac9 AD	130	# verify that no vnet are associated to this zone
	131	foreach my $id (keys %{$vnet_cfg->{ids}}) {
	132	my $vnet = $vnet_cfg->{ids}->{$id};
	133	die "zone $zoneid is used by vnet $id"
	134	if ($vnet->{type} eq 'vnet' && defined($vnet->{zone}) && $vnet->{zone} eq $zoneid);
	135	}
e8d5906e AD	136	}
	137
	138	sub on_update_hook {
a2b32a94	139	my ($class, $zoneid, $zone_cfg, $controller_cfg) = @_;
fe0c6b9e AD	140
	141	# do nothing by default
	142	}
	143
6939693f AD	144	#helpers
	145	sub parse_tag_number_or_range {
	146	my ($str, $max, $tag) = @_;
	147
	148	my @elements = split(/,/, $str);
	149	my $count = 0;
	150	my $allowed = undef;
	151
	152	die "extraneous commas in list\n" if $str ne join(',', @elements);
	153	foreach my $item (@elements) {
	154	if ($item =~ m/^([0-9]+)-([0-9]+)$/) {
	155	$count += 2;
	156	my ($port1, $port2) = ($1, $2);
	157	die "invalid port '$port1'\n" if $port1 > $max;
	158	die "invalid port '$port2'\n" if $port2 > $max;
	159	die "backwards range '$port1:$port2' not allowed, did you mean '$port2:$port1'?\n" if $port1 > $port2;
	160
	161	if ($tag && $tag >= $port1 && $tag <= $port2){
	162	$allowed = 1;
	163	last;
	164	}
	165
	166	} elsif ($item =~ m/^([0-9]+)$/) {
	167	$count += 1;
	168	my $port = $1;
	169	die "invalid port '$port'\n" if $port > $max;
	170
	171	if ($tag && $tag == $port){
	172	$allowed = 1;
	173	last;
	174	}
	175	}
	176	}
	177	die "tag $tag is not allowed" if $tag && !$allowed;
	178
	179	return (scalar(@elements) > 1);
	180	}
	181
627b1694 AD	182	sub status {
	183	my ($class, $plugin_config, $zone, $id, $vnet, $err_config, $status, $vnet_status, $zone_status) = @_;
	184
	185	$vnet_status->{$id}->{zone} = $zone;
	186	$zone_status->{$zone}->{status} = 'available' if !defined($zone_status->{$zone}->{status});
	187
	188	if($err_config) {
	189	$vnet_status->{$id}->{status} = 'pending';
	190	$vnet_status->{$id}->{statusmsg} = $err_config;
	191	$zone_status->{$zone}->{status} = 'pending';
	192	} elsif ($status->{$id}->{status} && $status->{$id}->{status} eq 'pass') {
	193	$vnet_status->{$id}->{status} = 'available';
	194	my $bridgeport = $status->{$id}->{config}->{'bridge-ports'};
	195
	196	if ($bridgeport && $status->{$bridgeport}->{status} && $status->{$bridgeport}->{status} ne 'pass') {
	197	$vnet_status->{$id}->{status} = 'error';
	198	$vnet_status->{$id}->{statusmsg} = 'configuration not fully applied';
	199	$zone_status->{$zone}->{status} = 'error';
	200	}
	201
	202	} else {
	203	$vnet_status->{$id}->{status} = 'error';
	204	$vnet_status->{$id}->{statusmsg} = 'missing';
	205	$zone_status->{$zone}->{status} = 'error';
	206	}
	207	}
	208
3794e429 AD	209	#helper
	210
	211	sub get_uplink_iface {
	212	my ($interfaces_config, $uplink) = @_;
	213
	214	my $iface = undef;
	215	foreach my $id (keys %{$interfaces_config->{ifaces}}) {
	216	my $interface = $interfaces_config->{ifaces}->{$id};
	217	if (my $iface_uplink = $interface->{'uplink-id'}) {
	218	next if $iface_uplink ne $uplink;
	219	if($interface->{type} ne 'eth' && $interface->{type} ne 'bond') {
	220	warn "uplink $uplink is not a physical or bond interface";
	221	next;
	222	}
	223	$iface = $id;
	224	}
	225	}
	226
	227	#create a dummy uplink interface if no uplink found
	228	if(!$iface) {
	229	warn "can't find uplink $uplink in physical interface";
	230	$iface = "uplink${uplink}";
	231	}
	232
	233	return $iface;
	234	}
1f543c5f AD	235
	236	sub get_local_route_ip {
	237	my ($targetip) = @_;
	238
	239	my $ip = undef;
	240	my $interface = undef;
	241
	242	run_command(['/sbin/ip', 'route', 'get', $targetip], outfunc => sub {
	243	if ($_[0] =~ m/src ($PVE::Tools::IPRE)/) {
	244	$ip = $1;
	245	}
	246	if ($_[0] =~ m/dev (\S+)/) {
	247	$interface = $1;
	248	}
	249
	250	});
	251	return ($ip, $interface);
	252	}
	253
	254
	255	sub find_local_ip_interface_peers {
	256	my ($peers) = @_;
	257
	258	my $network_config = PVE::INotify::read_file('interfaces');
	259	my $ifaces = $network_config->{ifaces};
	260	#is a local ip member of peers list ?
	261	foreach my $address (@{$peers}) {
	262	while (my $interface = each %$ifaces) {
	263	my $ip = $ifaces->{$interface}->{address};
	264	if ($ip && $ip eq $address) {
	265	return ($ip, $interface);
	266	}
	267	}
	268	}
	269
	270	#if peer is remote, find source with ip route
	271	foreach my $address (@{$peers}) {
	272	my ($ip, $interface) = get_local_route_ip($address);
	273	return ($ip, $interface);
	274	}
	275	}
	276
6939693f	277	1;