ncm-opennebula: Open vSwitch support and VNET pools

ncm-opennebula/src/main/pan/components/opennebula/schema.pan

@@ -9,6 +9,7 @@ include 'quattor/schema';
 include 'pan/types';
 
 type uuid = string with match(SELF,'[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}');
+type macaddr = string with match(SELF, '([0-9A-F]{2}[:-]){5}([0-9A-F]{2})');
 
 type directory = string with match(SELF,'[^/]+/?$');
 
@@ -133,6 +134,19 @@ type opennebula_ceph_datastore = {
     "rbd_format"                ? long(1..2)
 };
 
+@{ 
+type for vnet ars specific attributes. 
+type and size are mandatory 
+@}
+type opennebula_ar = {
+    "type"                      : string with match(SELF, "^(IP4|IP6|IP4_6|ETHER)$")
+    "ip"                        ? type_ipv4
+    "size"                      : long (1..)
+    "mac"                       ? macaddr
+    "global_prefix"             ? string
+    "ula_prefix"                ? string
+};
+
 @{ type for an opennebula datastore. Defaults to a ceph datastore (ds_mad is ceph) @}
 type opennebula_datastore = {
     include opennebula_ceph_datastore
@@ -147,11 +161,14 @@ type opennebula_datastore = {
 
 type opennebula_vnet = {
     "name" : string
-    "type" : string  = 'FIXED'
     "bridge" : string
     "gateway" : type_ipv4
     "dns" : type_ipv4
     "network_mask" : type_ipv4
+    "bridge_ovs" ? string
+    "vlan" ? boolean
+    "vlan_id" ? long(0..4095)
+    "ar" ? opennebula_ar
 };
 
 type opennebula_user = {
@@ -207,7 +224,7 @@ type opennebula_oned = {
     "image_restricted_attr" : string = 'SOURCE'
     "inherit_datastore_attr" : string[] = list("CEPH_HOST", "CEPH_SECRET", "CEPH_USER", 
                                                "RBD_FORMAT", "GLUSTER_HOST", "GLUSTER_VOLUME")
-    "inherit_vnet_attr" : string = 'VLAN_TAGGED_ID'
+    "inherit_vnet_attr" : string[] = list("VLAN_TAGGED_ID", "BRIDGE_OVS")
 };
 
 @{ 
@@ -247,6 +264,8 @@ type component_opennebula = {
     'untouchables'  : opennebula_untouchables
     'oned'          : opennebula_oned
     'ssh_multiplex' : boolean = true
+    'host_ovs'      ? boolean
+    'host_hyp'      : string = 'kvm' with match (SELF, '^(kvm|xen)$')
     'tm_system_ds'  ? string with match(SELF, "^(shared|ssh|vmfs)$")
 } = nlist();
 

ncm-opennebula/src/main/pan/components/opennebula/sudo.pan

@@ -18,7 +18,11 @@ include 'components/sudo/config';
          "/sbin/service libvirtd restart",
          "/sbin/service libvirt-guests restart",
          '/usr/bin/virsh secret-set-value *',
-         '/usr/bin/virsh secret-define *'
+         '/usr/bin/virsh secret-define *',
+         '/usr/sbin/iptables',
+         '/usr/sbin/ebtables',
+         '/usr/bin/ovs-vsctl',
+         '/usr/bin/ovs-ofctl'
      );
      foreach (i; cmd; sudolist){
          nl = nlist("host", "ALL",

ncm-opennebula/src/main/perl/opennebula.pm

@@ -361,11 +361,22 @@ sub manage_something
 sub manage_hosts
 {
     my ($self, $one, $type, $resources, %protected) = @_;
-    my $new;
+    my ($new, $vnm_mad);
     my $hosts = $resources->{hosts};
     my @existhost = $one->get_hosts();
     my %newhosts = map { $_ => 1 } @$hosts;
     my (@rmhosts, @failedhost);
+
+    if (exists($resources->{host_ovs}) and $resources->{host_ovs}) {
+        if ($type eq "kvm") {
+            $vnm_mad = "ovswitch";
+        } elsif ($type eq "xen") {
+            $vnm_mad = "ovswitch_brcompat";
+        }
+    } else {
+        $vnm_mad = "dummy";
+    }
+
     foreach my $t (@existhost) {
         # Remove the host only if there are no VMs running on it
         if (exists($protected{$t->name})) {
@@ -389,7 +400,7 @@ sub manage_hosts
             'name'    => $host, 
             'im_mad'  => $type, 
             'vmm_mad' => $type, 
-            'vnm_mad' => "dummy"
+            'vnm_mad' => $vnm_mad
         );
         # to keep the record of our cloud infrastructure
         # we include the host in ONE db even if it fails
@@ -586,6 +597,8 @@ sub Configure
     my $tm_system_ds = $tree->{tm_system_ds};
     # untouchables resources
     my $untouchables = $tree->{untouchables};
+    # hypervisor type
+    my $hypervisor = $tree->{host_hyp};
 
     # We must change oneadmin pass first
     if (exists $tree->{rpc}->{password}) {
@@ -617,7 +630,6 @@ sub Configure
         $self->info("Updated system datastore TM_MAD = $tm_system_ds");
     }
 
-    my $hypervisor = "kvm";
     $self->manage_something($one, $hypervisor, $tree, $untouchables->{hosts});
 
     $self->manage_something($one, "user", $tree->{users}, $untouchables->{users});

ncm-opennebula/src/main/perl/opennebula.pod

@@ -77,6 +77,28 @@ be described in this section.
 
 Set ssh multiplex options
 
+=item * host_hyp : string
+
+Set host hypervisor type
+
+=over 5
+
+=item * kvm
+
+Set KVM hypervisor
+
+=item * xen
+
+Set XEN hypervisor
+
+=back
+
+=item * host_ovs : boolean (optional)
+
+Includes the Open vSwitch network drives in your hypervisors. (OVS must be installed in each host)
+Open vSwitch replaces Linux bridges, Linux bridges must be disabled.
+More info: http://docs.opennebula.org/4.4/administration/networking/openvswitch.html
+
 =item * tm_system_ds : string (optional)
 
 Set system datastore TM_MAD value (shared by default). Valid values:

ncm-opennebula/src/main/resources/oned.tt

@@ -3,7 +3,7 @@
 [%- digits = ['monitoring_interval', 'monitoring_threads', 
               'port', 'vnc_base_port', 'network_size', 'session_expiration_time', 
               'default_umask'] -%]
-[%- oned_attr_list = ['vm_restricted_attr', 'inherit_datastore_attr'] -%]
+[%- oned_attr_list = ['vm_restricted_attr', 'inherit_datastore_attr', 'inherit_vnet_attr'] -%]
 [%- FOR pair IN oned.pairs -%]
 [%-    SWITCH pair.key -%]
 [%         CASE oned_section -%]              

ncm-opennebula/src/main/resources/tests/profiles/oned.pan

@@ -15,5 +15,9 @@ prefix "/metaconfig/contents/oned";
     "passwd", "my-fancy-pass",
     "db_name", "opennebula",
 );
+"log" = nlist(
+    "system", "syslog",
+    "debug_level", 3,
+);
 "default_device_prefix" = "vd";
 "onegate_endpoint" = "http://hyp004.cubone.os:5030";

ncm-opennebula/src/main/resources/tests/profiles/vnet_br100.pan

@@ -8,7 +8,6 @@ bind "/metaconfig/contents/vnet" = opennebula_vnet;
 
 prefix "/metaconfig/contents/vnet";
 "name" = "node.cubone.os";
-"type" = "FIXED";
 "bridge" = "br100";
 "gateway" = "10.141.10.250";
 "dns" = "10.141.10.250";

ncm-opennebula/src/main/resources/tests/profiles/vnet_br101.pan

@@ -8,7 +8,6 @@ bind "/metaconfig/contents/vnet" = opennebula_vnet;
 
 prefix "/metaconfig/contents/vnet";
 "name" = "node2.cubone.os";
-"type" = "FIXED";
 "bridge" = "br101";
 "gateway" = "10.141.10.250";
 "dns" = "10.141.10.250";

ncm-opennebula/src/main/resources/tests/profiles/vnet_ovsbr0.pan

@@ -0,0 +1,22 @@
+object template vnet_ovsbr0;
+
+include 'components/opennebula/schema';
+
+bind "/metaconfig/contents/vnet" = opennebula_vnet;
+
+"/metaconfig/module" = "vnet";
+
+prefix "/metaconfig/contents/vnet";
+"name" = "node3.cubone.os";
+"bridge" = "br100";
+"bridge_ovs" = "ovsbr0";
+"gateway" = "10.141.3.250";
+"dns" = "10.141.3.250";
+"network_mask" = "255.255.0.0";
+"vlan" = true;
+"vlan_id" = 0;
+"ar" = nlist(
+    "type", "IP4",
+    "ip", "10.141.14.100",
+    "size", 29,
+);

ncm-opennebula/src/main/resources/tests/regexps/oned/oned_template

@@ -54,9 +54,10 @@ multiline
 ^INHERIT_DATASTORE_ATTR\s?=\s?"GLUSTER_HOST"$
 ^INHERIT_DATASTORE_ATTR\s?=\s?"GLUSTER_VOLUME"$
 ^INHERIT_VNET_ATTR\s?=\s?"VLAN_TAGGED_ID"$
+^INHERIT_VNET_ATTR\s?=\s?"BRIDGE_OVS"$
 ^LOG\s?=\s?\[$
 ^\s{4}debug_level\s?=\s?3,$
-^\s{4}system\s?=\s?"file"$
+^\s{4}system\s?=\s?"syslog"$
 ^\]$
 ^MAC_PREFIX\s?=\s?"02:00"$
 ^MONITORING_INTERVAL\s?=\s?60$

ncm-opennebula/src/main/resources/tests/regexps/oned/simple

@@ -16,6 +16,7 @@ multiline
 ^DEFAULT_UMASK\s?=\s*\d+\s*$
 ^IMAGE_RESTRICTED_ATTR\s?=\s?".+"\s*$
 ^INHERIT_DATASTORE_ATTR\s?=\s?".+"\s*$
+^INHERIT_VNET_ATTR\s?=\s?".+"\s*$
 ^LOG\s?=\s?\[$
 ^\s*debug_level\s?=\s*\d+,\s*$
 ^\s*system\s?=\s*".+"\s*$

ncm-opennebula/src/main/resources/tests/regexps/vnet_br100/simple

@@ -7,5 +7,4 @@ multiline
 ^GATEWAY\s?=\s?".+"\s*$
 ^NAME\s?=\s?".+"\s*$
 ^NETWORK_MASK\s?=\s?".+"\s*$
-^TYPE\s?=\s?".+"\s*$
 ^QUATTOR\s?=\s?\d+\s*$

ncm-opennebula/src/main/resources/tests/regexps/vnet_br101/simple

@@ -7,5 +7,4 @@ multiline
 ^GATEWAY\s?=\s?".+"\s*$
 ^NAME\s?=\s?".+"\s*$
 ^NETWORK_MASK\s?=\s?".+"\s*$
-^TYPE\s?=\s?".+"\s*$
 ^QUATTOR\s?=\s?\d+\s*$

ncm-opennebula/src/main/resources/tests/regexps/vnet_ovsbr0/simple

@@ -0,0 +1,18 @@
+Opennebular vnet test
+---
+multiline
+---
+^AR\s?=\s?\[$
+^\s*ip\s?=\s*".+",\s*$
+^\s*size\s?=\s*".+",\s*$
+^\s*type\s?=\s*".+"\s*$
+^\]$
+^BRIDGE\s?=\s?".+"\s*$
+^BRIDGE_OVS\s?=\s?".+"\s*$
+^DNS\s?=\s?".+"\s*$
+^GATEWAY\s?=\s?".+"\s*$
+^NAME\s?=\s?".+"\s*$
+^NETWORK_MASK\s?=\s?".+"\s*$
+^VLAN\s?=\s?".+"\s*$
+^VLAN_ID\s?=\s?".+"\s*$
+^QUATTOR\s?=\s?\d+\s*$

ncm-opennebula/src/main/resources/vnet.tt

@@ -1,4 +1,14 @@
+[%- booleans = ['vlan'] -%]
+[%- ar_section = ['ar'] -%]
 [% FOR pair IN vnet.pairs -%]
-[%    pair.key.upper %] = "[% pair.value %]"
-[% END -%]
+[%-    SWITCH pair.key -%]
+[%         CASE booleans -%]
+[%             pair.key.upper %] = "[% pair.value ? "YES" : "NO" %]"
+[%         CASE ar_section -%]
+[%             pair.key.upper %] = [% INCLUDE 'opennebula/oned_level1.tt' 
+                                      data=vnet.${pair.key} -%]
+[%         CASE -%]
+[%             pair.key.upper %] = "[% pair.value %]"
+[%     END -%]
+[%- END -%]
 QUATTOR = 1

ncm-opennebula/src/test/perl/opennebula.t

@@ -37,7 +37,7 @@ is($NCM::Component::opennebula::ONED_CONF_FILE, "/etc/one/oned.conf", "expected
 
 my $fh = get_file($NCM::Component::opennebula::ONED_CONF_FILE);
 isa_ok($fh, "CAF::FileWriter", "oned.conf CAF::FileWriter instance");
-# only test one entry, the remainder is verified with teh TT unittests
+# only test one entry, the remainder is verified with the TT unittests
 like("$fh", qr{^DB\s?=\s?\[$}m, "oned.conf has expected content");
 
 done_testing();