Mercurial Mercurial > upstream > oracle > userland-gate / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
components/openstack/neutron/files/agent/solaris/ipfilters_manager.py
author Drew Fisher <drew.fisher@oracle.com>
Wed, 11 Jun 2014 17:13:12 -0700
changeset 1944 56ac2df1785b
parent 1760 353323c7bdc1
child 2083 87196737f09f
permissions -rw-r--r--
PSARC/2014/207 OpenStack Glance Update to Havana PSARC/2014/208 OpenStack Cinder Update to Havana PSARC/2014/209 OpenStack Keystone Update to Havana PSARC/2014/210 OpenStack Nova Update to Havana 18416146 Neutron agents (L3 and DHCP) should cleanup resources when they are disabled 18562372 Failed to create a new project under Horizon 18645763 ZFSSA Cinder Driver support 18686327 evs agent silently ignores user-specified pool allocation ranges 18702697 fibre channel volumes should be supported in the cinder volume driver 18734289 nova won't terminate failed kz deployments 18738371 cinder-volume:setup should account for commented-out zfs_volume_base 18738374 cinder-volume:setup should check for existence of configuration file 18826190 nova-compute fails due to nova.utils.to_bytes 18855698 Update OpenStack to Havana 2013.2.3 18855710 Update python-cinderclient to 1.0.9 18855743 Update python-keystoneclient to 0.8.0 18855754 Update python-neutronclient to 2.3.4 18855764 Update python-novaclient to 2.17.0 18855793 Update python-swiftclient to 2.1.0 18856992 External networks can be deleted even when floating IP addresses are in use 18857784 bake in some more openstack configuration 18884923 Incorrect locale facets in python modules for openstack 18913890 the error in _get_view_and_lun may cause the failure of deleting volumes 18943044 Disable 'Security Groups' tab in Horizon dashboard
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
1760
353323c7bdc1 PSARC/2013/350 OpenStack for Solaris (Umbrella)
Drew Fisher <drew.fisher@oracle.com>
parents:
diff changeset 
     1
 
# vim: tabstop=4 shiftwidth=4 softtabstop=4
353323c7bdc1 PSARC/2013/350 OpenStack for Solaris (Umbrella)
Drew Fisher <drew.fisher@oracle.com>
parents:
diff changeset 
     2
 












353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     3


# Copyright (c) 2014, Oracle and/or its affiliates. All rights reserved.













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     4


#













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     5


#    Licensed under the Apache License, Version 2.0 (the "License"); you may













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     6


#    not use this file except in compliance with the License. You may obtain













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     7


#    a copy of the License at













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     8


#













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     9


#         http://www.apache.org/licenses/LICENSE-2.0













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    10


#













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    11


#    Unless required by applicable law or agreed to in writing, software













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    12


#    distributed under the License is distributed on an "AS IS" BASIS, WITHOUT













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    13


#    WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    14


#    License for the specific language governing permissions and limitations













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    15


#    under the License.













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    16


#













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    17


# @author: Girish Moodalbail, Oracle, Inc.













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    18


#













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    19














353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    20


"""Implements ipfilter and ipnat rules using Solaris utilities."""













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    21









1944






56ac2df1785b
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 
1760

diff
changeset




    22


from neutron.agent.solaris import net_lib








1760






353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    23














353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    24









1944






56ac2df1785b
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 
1760

diff
changeset




    25


class IPfiltersManager(object):








1760






353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    26


    """Wrapper for Solaris IPF commands -- ipf(1m), ipnat(1m),













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    27


    and ippool(1m)."""













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    28














353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    29


    def __init__(self):













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    30


        self.ipv4 = {'filter': [], 'nat': []}













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    31


        self.ipv6 = {'filter': [], 'nat': []}













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    32














353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    33


    def add_ippool(self, number, ip_cidrs):








1944






56ac2df1785b
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 
1760

diff
changeset




    34


        ippool = net_lib.IPpoolCommand(number)








1760






353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    35


        if ip_cidrs:













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    36


            ippool.add_pool_nodes(ip_cidrs)













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    37


        else:













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    38


            ippool.add_pool()













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    39














353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    40


    def remove_ippool(self, number, ip_cidrs):








1944






56ac2df1785b
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 
1760

diff
changeset




    41


        ippool = net_lib.IPpoolCommand(number)








1760






353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    42


        if ip_cidrs:













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    43


            ippool.remove_pool_nodes(ip_cidrs)













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    44


        else:













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    45


            ippool.remove_pool()













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    46














353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    47


    def add_nat_rules(self, rules, version='4'):













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    48


        # Solaris doesn't support IPv6 NAT rules













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    49


        assert version == '4'








1944






56ac2df1785b
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 
1760

diff
changeset




    50


        ipnat = net_lib.IPnatCommand()








1760






353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    51


        ipnat.add_rules(rules)













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    52


        # we successfully added the nat rules, update the local copy













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    53


        for rule in rules:













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    54


            self.ipv4['nat'].append(rule)













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    55














353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    56


    def remove_nat_rules(self, rules, version='4'):













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    57


        # Solaris doesn't support IPv6 NAT rules













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    58


        assert version == '4'








1944






56ac2df1785b
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 
1760

diff
changeset




    59


        ipnat = net_lib.IPnatCommand()








1760






353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    60


        ipnat.remove_rules(rules)













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    61


        # we successfully removed the nat rules, update the local copy













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    62


        for rule in rules:













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    63


            self.ipv4['nat'].remove(rule)













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    64














353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    65


    def add_ipf_rules(self, rules, version='4'):








1944






56ac2df1785b
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 
1760

diff
changeset




    66


        ipf = net_lib.IPfilterCommand()








1760






353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    67


        ipf.add_rules(rules, version)













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    68


        version_rules = (self.ipv4['filter'] if version == '4' else













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    69


                         self.ipv6['filter'])













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    70


        for rule in rules:













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    71


            version_rules.append(rule)













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    72














353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    73


    def remove_ipf_rules(self, rules, version='4'):








1944






56ac2df1785b
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 
1760

diff
changeset




    74


        ipf = net_lib.IPfilterCommand()








1760






353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    75


        ipf.remove_rules(rules, version)













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    76


        version_rules = (self.ipv4['filter'] if version == '4' else













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    77


                         self.ipv6['filter'])













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    78


        for rule in rules:













353323c7bdc1
PSARC/2013/350 OpenStack for Solaris (Umbrella)



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    79


            version_rules.remove(rule)















upstream/oracle/userland-gate