[pve-network.git] / PVE / Network / SDN / Zones / VlanPlugin.pm

package PVE::Network::SDN::Zones::VlanPlugin;

use strict;
use warnings;
use PVE::Network::SDN::Zones::Plugin;
use PVE::Exception qw(raise raise_param_exc);

use base('PVE::Network::SDN::Zones::Plugin');

sub type {
    return 'vlan';
}

PVE::JSONSchema::register_format('pve-sdn-vlanrange', \&pve_verify_sdn_vlanrange);
sub pve_verify_sdn_vlanrange {
   my ($vlanstr) = @_;

   PVE::Network::SDN::Zones::Plugin::parse_tag_number_or_range($vlanstr, '4096');

   return $vlanstr;
}

sub properties {
    return {
	'bridge' => {
	    type => 'string',
	},
	'bridge-disable-mac-learning' => {
	    type => 'boolean',
            description => "Disable auto mac learning.",
	}
    };
}

sub options {

    return {
	nodes => { optional => 1},
	'bridge' => { optional => 0 },
	'bridge-disable-mac-learning' => { optional => 1 },
	mtu => { optional => 1 },
	dns => { optional => 1 },
	reversedns => { optional => 1 },
	dnszone => { optional => 1 },
	ipam => { optional => 1 },
    };
}

# Plugin implementation
sub generate_sdn_config {
    my ($class, $plugin_config, $zoneid, $vnetid, $vnet, $controller, $controller_cfg, $subnet_cfg, $interfaces_config, $config) = @_;

    my $bridge = $plugin_config->{bridge};
    PVE::Network::SDN::Zones::Plugin::find_bridge($bridge);

    my $vlan_aware = PVE::Network::SDN::Zones::Plugin::is_vlanaware($bridge);
    my $is_ovs = PVE::Network::SDN::Zones::Plugin::is_ovs($bridge);

    my $tag = $vnet->{tag};
    my $alias = $vnet->{alias};
    my $mtu = $plugin_config->{mtu};

    my $vnet_uplink = "ln_".$vnetid;
    my $vnet_uplinkpeer = "pr_".$vnetid;

    my @iface_config = ();

    if($is_ovs) {

        # keep vmbrXvY for compatibility with existing network
        # eth0----ovs vmbr0--(ovsintport tag)---->vnet---->vm

	@iface_config = ();
	push @iface_config, "ovs_type OVSIntPort";
	push @iface_config, "ovs_bridge $bridge";
	push @iface_config, "ovs_mtu $mtu" if $mtu;
	if($vnet->{vlanaware}) {
	    push @iface_config, "ovs_options vlan_mode=dot1q-tunnel other_config:qinq-ethtype=802.1q tag=$tag";
	} else {
	    push @iface_config, "ovs_options tag=$tag";
	}
	push(@{$config->{$vnet_uplink}}, @iface_config) if !$config->{$vnet_uplink};

	#redefine main ovs bridge, ifupdown2 will merge ovs_ports
	@iface_config = ();
	push @iface_config, "ovs_ports $vnet_uplink";
	push(@{$config->{$bridge}}, @iface_config);

    } elsif ($vlan_aware) {
        # eth0----vlanaware bridge vmbr0--(vmbr0.X tag)---->vnet---->vm
	$vnet_uplink = "$bridge.$tag";
    } else {

        # keep vmbrXvY for compatibility with existing network
        # eth0<---->eth0.X----vmbr0v10------vnet---->vm

	my $bridgevlan = $bridge."v".$tag;

	my @bridge_ifaces = PVE::Network::SDN::Zones::Plugin::get_bridge_ifaces($bridge);

	my $bridge_ports = "";
	foreach my $bridge_iface (@bridge_ifaces) {
	    $bridge_ports .= " $bridge_iface.$tag";
	}

	@iface_config = ();
	push @iface_config, "link-type veth";
	push @iface_config, "veth-peer-name $vnet_uplinkpeer";
	push(@{$config->{$vnet_uplink}}, @iface_config) if !$config->{$vnet_uplink};

	@iface_config = ();
	push @iface_config, "link-type veth";
	push @iface_config, "veth-peer-name $vnet_uplink";
	push(@{$config->{$vnet_uplinkpeer}}, @iface_config) if !$config->{$vnet_uplinkpeer};

	@iface_config = ();
	push @iface_config, "bridge_ports $bridge_ports $vnet_uplinkpeer";
	push @iface_config, "bridge_stp off";
	push @iface_config, "bridge_fd 0";
	push(@{$config->{$bridgevlan}}, @iface_config) if !$config->{$bridgevlan};
    }

    #vnet bridge
    @iface_config = ();
    push @iface_config, "bridge_ports $vnet_uplink";
    push @iface_config, "bridge_stp off";
    push @iface_config, "bridge_fd 0";
    if($vnet->{vlanaware}) {
        push @iface_config, "bridge-vlan-aware yes";
        push @iface_config, "bridge-vids 2-4094";
    }
    push @iface_config, "mtu $mtu" if $mtu;
    push @iface_config, "alias $alias" if $alias;
    push(@{$config->{$vnetid}}, @iface_config) if !$config->{$vnetid};

    return $config;
}

sub status {
    my ($class, $plugin_config, $zone, $vnetid, $vnet, $status) = @_;

    my $bridge = $plugin_config->{bridge};

    my $err_msg = [];
    if (!-d "/sys/class/net/$bridge") {
        push @$err_msg, "missing $bridge";
	return $err_msg;
    }

    my $vlan_aware = PVE::Network::SDN::Zones::Plugin::is_vlanaware($bridge);
    my $is_ovs = PVE::Network::SDN::Zones::Plugin::is_ovs($bridge);

    my $tag = $vnet->{tag};
    my $vnet_uplink = "ln_".$vnetid;
    my $vnet_uplinkpeer = "pr_".$vnetid;

    # ifaces to check
    my $ifaces = [ $vnetid, $bridge ];
    if($is_ovs) {
	push @$ifaces, $vnet_uplink;
    } elsif (!$vlan_aware) {
	my $bridgevlan = $bridge."v".$tag;
	push @$ifaces, $bridgevlan;
	push @$ifaces, $vnet_uplink;
	push @$ifaces, $vnet_uplinkpeer;
    }

    foreach my $iface (@{$ifaces}) {
	if (!$status->{$iface}->{status}) {
	    push @$err_msg, "missing $iface";
        } elsif ($status->{$iface}->{status} ne 'pass') {
	    push @$err_msg, "error iface $iface";
	}
    }
    return $err_msg;
}

sub vnet_update_hook {
    my ($class, $vnet_cfg, $vnetid, $zone_cfg) = @_;

    my $vnet = $vnet_cfg->{ids}->{$vnetid};
    my $tag = $vnet->{tag};

    raise_param_exc({ tag => "missing vlan tag"}) if !defined($vnet->{tag});
    raise_param_exc({ tag => "vlan tag max value is 4096"}) if $vnet->{tag} > 4096;

    # verify that tag is not already defined in another vnet on same zone
    foreach my $id (keys %{$vnet_cfg->{ids}}) {
	next if $id eq $vnetid;
	my $othervnet = $vnet_cfg->{ids}->{$id};
	my $other_tag = $othervnet->{tag};
	next if $vnet->{zone} ne $othervnet->{zone};
	raise_param_exc({ tag => "tag $tag already exist in vnet $id"}) if $other_tag && $tag eq $other_tag;
    }
}

1;
Commit	Line	Data
f5eabba0	1	package PVE::Network::SDN::Zones::VlanPlugin;
f8140d53 AD	2
	3	use strict;
	4	use warnings;
f5eabba0	5	use PVE::Network::SDN::Zones::Plugin;
1d44ce70	6	use PVE::Exception qw(raise raise_param_exc);
f8140d53	7
f5eabba0	8	use base('PVE::Network::SDN::Zones::Plugin');
f8140d53 AD	9
	10	sub type {
	11	return 'vlan';
	12	}
	13
6bffe819 AD	14	PVE::JSONSchema::register_format('pve-sdn-vlanrange', \&pve_verify_sdn_vlanrange);
6bffe819 AD	15	sub pve_verify_sdn_vlanrange {
f8140d53 AD	16	my ($vlanstr) = @_;
f8140d53 AD	17
f5eabba0	18	PVE::Network::SDN::Zones::Plugin::parse_tag_number_or_range($vlanstr, '4096');
f8140d53 AD	19
	20	return $vlanstr;
	21	}
	22
	23	sub properties {
	24	return {
938ebef7 AD	25	'bridge' => {
938ebef7 AD	26	type => 'string',
eec580bf	27	},
56a9e2b3 AD	28	'bridge-disable-mac-learning' => {
	29	type => 'boolean',
	30	description => "Disable auto mac learning.",
	31	}
f8140d53 AD	32	};
	33	}
	34
	35	sub options {
	36
	37	return {
65cb893e	38	nodes => { optional => 1},
938ebef7	39	'bridge' => { optional => 0 },
56a9e2b3	40	'bridge-disable-mac-learning' => { optional => 1 },
4ad78442 AD	41	mtu => { optional => 1 },
	42	dns => { optional => 1 },
	43	reversedns => { optional => 1 },
	44	dnszone => { optional => 1 },
57a335c4	45	ipam => { optional => 1 },
f8140d53 AD	46	};
	47	}
	48
	49	# Plugin implementation
6bffe819	50	sub generate_sdn_config {
efffa0ff	51	my ($class, $plugin_config, $zoneid, $vnetid, $vnet, $controller, $controller_cfg, $subnet_cfg, $interfaces_config, $config) = @_;
7d1035b2 AD	52
7d1035b2 AD	53	my $bridge = $plugin_config->{bridge};
fdf22d5f	54	PVE::Network::SDN::Zones::Plugin::find_bridge($bridge);
ae3f4de8	55
fdf22d5f AD	56	my $vlan_aware = PVE::Network::SDN::Zones::Plugin::is_vlanaware($bridge);
fdf22d5f AD	57	my $is_ovs = PVE::Network::SDN::Zones::Plugin::is_ovs($bridge);
7d1035b2 AD	58
	59	my $tag = $vnet->{tag};
	60	my $alias = $vnet->{alias};
c559eac1	61	my $mtu = $plugin_config->{mtu};
7d1035b2	62
0be2f7ec AD	63	my $vnet_uplink = "ln_".$vnetid;
0be2f7ec AD	64	my $vnet_uplinkpeer = "pr_".$vnetid;
7d1035b2	65
0be2f7ec AD	66	my @iface_config = ();
	67
	68	if($is_ovs) {
	69
	70	# keep vmbrXvY for compatibility with existing network
	71	# eth0----ovs vmbr0--(ovsintport tag)---->vnet---->vm
	72
	73	@iface_config = ();
	74	push @iface_config, "ovs_type OVSIntPort";
	75	push @iface_config, "ovs_bridge $bridge";
82159388	76	push @iface_config, "ovs_mtu $mtu" if $mtu;
607db889	77	if($vnet->{vlanaware}) {
f2239836	78	push @iface_config, "ovs_options vlan_mode=dot1q-tunnel other_config:qinq-ethtype=802.1q tag=$tag";
607db889 AD	79	} else {
	80	push @iface_config, "ovs_options tag=$tag";
	81	}
0be2f7ec AD	82	push(@{$config->{$vnet_uplink}}, @iface_config) if !$config->{$vnet_uplink};
0be2f7ec AD	83
880f6d61 AD	84	#redefine main ovs bridge, ifupdown2 will merge ovs_ports
	85	@iface_config = ();
	86	push @iface_config, "ovs_ports $vnet_uplink";
	87	push(@{$config->{$bridge}}, @iface_config);
	88
0be2f7ec AD	89	} elsif ($vlan_aware) {
0be2f7ec AD	90	# eth0----vlanaware bridge vmbr0--(vmbr0.X tag)---->vnet---->vm
0f700635	91	$vnet_uplink = "$bridge.$tag";
0be2f7ec AD	92	} else {
	93
	94	# keep vmbrXvY for compatibility with existing network
	95	# eth0<---->eth0.X----vmbr0v10------vnet---->vm
	96
	97	my $bridgevlan = $bridge."v".$tag;
	98
fdf22d5f	99	my @bridge_ifaces = PVE::Network::SDN::Zones::Plugin::get_bridge_ifaces($bridge);
0be2f7ec AD	100
	101	my $bridge_ports = "";
	102	foreach my $bridge_iface (@bridge_ifaces) {
	103	$bridge_ports .= " $bridge_iface.$tag";
	104	}
	105
	106	@iface_config = ();
	107	push @iface_config, "link-type veth";
	108	push @iface_config, "veth-peer-name $vnet_uplinkpeer";
	109	push(@{$config->{$vnet_uplink}}, @iface_config) if !$config->{$vnet_uplink};
	110
	111	@iface_config = ();
	112	push @iface_config, "link-type veth";
	113	push @iface_config, "veth-peer-name $vnet_uplink";
	114	push(@{$config->{$vnet_uplinkpeer}}, @iface_config) if !$config->{$vnet_uplinkpeer};
	115
	116	@iface_config = ();
	117	push @iface_config, "bridge_ports $bridge_ports $vnet_uplinkpeer";
	118	push @iface_config, "bridge_stp off";
	119	push @iface_config, "bridge_fd 0";
	120	push(@{$config->{$bridgevlan}}, @iface_config) if !$config->{$bridgevlan};
7d1035b2 AD	121	}
7d1035b2 AD	122
0be2f7ec AD	123	#vnet bridge
	124	@iface_config = ();
	125	push @iface_config, "bridge_ports $vnet_uplink";
7d1035b2 AD	126	push @iface_config, "bridge_stp off";
7d1035b2 AD	127	push @iface_config, "bridge_fd 0";
912fb443 AD	128	if($vnet->{vlanaware}) {
	129	push @iface_config, "bridge-vlan-aware yes";
	130	push @iface_config, "bridge-vids 2-4094";
	131	}
7d1035b2 AD	132	push @iface_config, "mtu $mtu" if $mtu;
7d1035b2 AD	133	push @iface_config, "alias $alias" if $alias;
0be2f7ec	134	push(@{$config->{$vnetid}}, @iface_config) if !$config->{$vnetid};
7d1035b2 AD	135
7d1035b2 AD	136	return $config;
f8140d53 AD	137	}
f8140d53 AD	138
6ed053c1	139	sub status {
4d7cc94f	140	my ($class, $plugin_config, $zone, $vnetid, $vnet, $status) = @_;
6ed053c1 AD	141
6ed053c1 AD	142	my $bridge = $plugin_config->{bridge};
4d7cc94f AD	143
	144	my $err_msg = [];
	145	if (!-d "/sys/class/net/$bridge") {
	146	push @$err_msg, "missing $bridge";
	147	return $err_msg;
6ed053c1	148	}
4d7cc94f	149
fdf22d5f AD	150	my $vlan_aware = PVE::Network::SDN::Zones::Plugin::is_vlanaware($bridge);
fdf22d5f AD	151	my $is_ovs = PVE::Network::SDN::Zones::Plugin::is_ovs($bridge);
4d7cc94f AD	152
	153	my $tag = $vnet->{tag};
	154	my $vnet_uplink = "ln_".$vnetid;
	155	my $vnet_uplinkpeer = "pr_".$vnetid;
	156
	157	# ifaces to check
	158	my $ifaces = [ $vnetid, $bridge ];
	159	if($is_ovs) {
	160	push @$ifaces, $vnet_uplink;
	161	} elsif (!$vlan_aware) {
	162	my $bridgevlan = $bridge."v".$tag;
	163	push @$ifaces, $bridgevlan;
	164	push @$ifaces, $vnet_uplink;
	165	push @$ifaces, $vnet_uplinkpeer;
	166	}
	167
	168	foreach my $iface (@{$ifaces}) {
	169	if (!$status->{$iface}->{status}) {
	170	push @$err_msg, "missing $iface";
	171	} elsif ($status->{$iface}->{status} ne 'pass') {
	172	push @$err_msg, "error iface $iface";
	173	}
0f700635	174	}
4d7cc94f	175	return $err_msg;
6ed053c1 AD	176	}
6ed053c1 AD	177
5ca07ed9	178	sub vnet_update_hook {
88d9562b AD	179	my ($class, $vnet_cfg, $vnetid, $zone_cfg) = @_;
	180
	181	my $vnet = $vnet_cfg->{ids}->{$vnetid};
	182	my $tag = $vnet->{tag};
1d44ce70	183
5ca07ed9 AD	184	raise_param_exc({ tag => "missing vlan tag"}) if !defined($vnet->{tag});
5ca07ed9 AD	185	raise_param_exc({ tag => "vlan tag max value is 4096"}) if $vnet->{tag} > 4096;
88d9562b AD	186
	187	# verify that tag is not already defined in another vnet on same zone
	188	foreach my $id (keys %{$vnet_cfg->{ids}}) {
	189	next if $id eq $vnetid;
	190	my $othervnet = $vnet_cfg->{ids}->{$id};
	191	my $other_tag = $othervnet->{tag};
	192	next if $vnet->{zone} ne $othervnet->{zone};
	193	raise_param_exc({ tag => "tag $tag already exist in vnet $id"}) if $other_tag && $tag eq $other_tag;
	194	}
1d44ce70 AD	195	}
1d44ce70 AD	196
f8140d53 AD	197	1;
	198
	199