NSX|P: Limit one ipv6 subnet per network

Change-Id: I41414ab5aab4856e892f6860e5660445409c8d6e
This commit is contained in:
Anna Khmelnitsky 2019-03-28 17:20:58 -07:00 committed by Adit Sarfaty
parent 8b48578f69
commit 58d9f658d4
3 changed files with 35 additions and 4 deletions

View File

@ -1875,10 +1875,26 @@ class NsxPluginV3Base(agentschedulers_db.AZDhcpAgentSchedulerDbMixin,
"""Should be implemented by each plugin""" """Should be implemented by each plugin"""
pass pass
def _get_ipv6_subnet(self, context, network):
for subnet in network.subnets:
if subnet.ip_version == 6:
return subnet
def _validate_single_ipv6_subnet(self, context, network, subnet):
if subnet.get('ip_version') == 6:
if self._get_ipv6_subnet(context, network):
msg = (_("Only one ipv6 subnet per network is supported"))
LOG.error(msg)
raise n_exc.InvalidInput(error_message=msg)
def _create_subnet(self, context, subnet): def _create_subnet(self, context, subnet):
self._validate_number_of_subnet_static_routes(subnet) self._validate_number_of_subnet_static_routes(subnet)
self._validate_host_routes_input(subnet) self._validate_host_routes_input(subnet)
network = self._get_network(
context, subnet['subnet']['network_id'])
self._validate_single_ipv6_subnet(context, network, subnet['subnet'])
# TODO(berlin): public external subnet announcement # TODO(berlin): public external subnet announcement
native_metadata = self._has_native_dhcp_metadata() native_metadata = self._has_native_dhcp_metadata()
if (native_metadata and subnet['subnet'].get('enable_dhcp', False)): if (native_metadata and subnet['subnet'].get('enable_dhcp', False)):
@ -1892,8 +1908,6 @@ class NsxPluginV3Base(agentschedulers_db.AZDhcpAgentSchedulerDbMixin,
# Check if it is on an overlay network and is the first # Check if it is on an overlay network and is the first
# DHCP-enabled subnet to create. # DHCP-enabled subnet to create.
if ddi_support: if ddi_support:
network = self._get_network(
context, subnet['subnet']['network_id'])
if self._has_no_dhcp_enabled_subnet(context, network): if self._has_no_dhcp_enabled_subnet(context, network):
created_subnet = super( created_subnet = super(
NsxPluginV3Base, self).create_subnet(context, NsxPluginV3Base, self).create_subnet(context,
@ -2117,6 +2131,13 @@ class NsxPluginV3Base(agentschedulers_db.AZDhcpAgentSchedulerDbMixin,
subnet, subnet,
orig_enable_dhcp=orig_subnet['enable_dhcp'], orig_enable_dhcp=orig_subnet['enable_dhcp'],
orig_host_routes=orig_subnet['host_routes']) orig_host_routes=orig_subnet['host_routes'])
network = self._get_network(context, orig_subnet['network_id'])
if (subnet['subnet'].get('ip_version') !=
orig_subnet.get('ip_version')):
self._validate_single_ipv6_subnet(
context, network, subnet['subnet'])
if self._has_native_dhcp_metadata(): if self._has_native_dhcp_metadata():
enable_dhcp = subnet['subnet'].get('enable_dhcp') enable_dhcp = subnet['subnet'].get('enable_dhcp')
if (enable_dhcp is not None and if (enable_dhcp is not None and
@ -2124,8 +2145,6 @@ class NsxPluginV3Base(agentschedulers_db.AZDhcpAgentSchedulerDbMixin,
self._ensure_native_dhcp() self._ensure_native_dhcp()
lock = 'nsxv3_network_' + orig_subnet['network_id'] lock = 'nsxv3_network_' + orig_subnet['network_id']
with locking.LockManager.get_lock(lock): with locking.LockManager.get_lock(lock):
network = self._get_network(
context, orig_subnet['network_id'])
if enable_dhcp: if enable_dhcp:
(ddi_support, (ddi_support,
ddi_type) = self._is_ddi_supported_on_net_with_type( ddi_type) = self._is_ddi_supported_on_net_with_type(

View File

@ -1735,6 +1735,12 @@ class TestPortsV2(test_plugin.TestPortsV2, NsxV3PluginTestCaseMixin,
def test_create_port_anticipating_allocation(self): def test_create_port_anticipating_allocation(self):
self.skipTest('Multiple fixed ips on a port are not supported') self.skipTest('Multiple fixed ips on a port are not supported')
def test_ip_allocation_for_ipv6_2_subnet_slaac_mode(self):
self.skipTest('Only one ipv6 subnet per network is supported')
def test_create_port_with_multiple_ipv4_and_ipv6_subnets(self):
self.skipTest('Only one ipv6 subnet per network is supported')
def test_create_compute_port_with_relay_no_router(self): def test_create_compute_port_with_relay_no_router(self):
"""Compute port creation should fail """Compute port creation should fail

View File

@ -150,3 +150,9 @@ class TestNsxv3IpamPorts(test_plugin.TestPortsV2, MockIPPools):
def test_update_port_invalid_fixed_ip_address_v6_pd_slaac(self): def test_update_port_invalid_fixed_ip_address_v6_pd_slaac(self):
self.skipTest('Update ipam subnet is not supported') self.skipTest('Update ipam subnet is not supported')
def test_ip_allocation_for_ipv6_2_subnet_slaac_mode(self):
self.skipTest('Only one ipv6 subnet per network is supported')
def test_create_port_with_multiple_ipv4_and_ipv6_subnets(self):
self.skipTest('Only one ipv6 subnet per network is supported')