neutron-mapper/src/main/java/org/opendaylight/groupbasedpolicy/neutron/mapper/mapping/NeutronSecurityGroupAware.java

   1 /*
   2  * Copyright (c) 2015 Cisco Systems, Inc. and others. All rights reserved.
   3  *
   4  * This program and the accompanying materials are made available under the
   5  * terms of the Eclipse Public License v1.0 which accompanies this distribution,
   6  * and is available at http://www.eclipse.org/legal/epl-v10.html
   7  */
   8 package org.opendaylight.groupbasedpolicy.neutron.mapper.mapping;
   9
  10 import static com.google.common.base.Preconditions.checkNotNull;
  11
  12 import org.opendaylight.controller.md.sal.binding.api.DataBroker;
  13 import org.opendaylight.controller.md.sal.binding.api.ReadWriteTransaction;
  14 import org.opendaylight.controller.md.sal.common.api.data.LogicalDatastoreType;
  15 import org.opendaylight.groupbasedpolicy.neutron.mapper.util.MappingUtils;
  16 import org.opendaylight.groupbasedpolicy.util.DataStoreHelper;
  17 import org.opendaylight.groupbasedpolicy.util.IidFactory;
  18 import org.opendaylight.yang.gen.v1.urn.opendaylight.groupbasedpolicy.common.rev140421.Description;
  19 import org.opendaylight.yang.gen.v1.urn.opendaylight.groupbasedpolicy.common.rev140421.EndpointGroupId;
  20 import org.opendaylight.yang.gen.v1.urn.opendaylight.groupbasedpolicy.common.rev140421.Name;
  21 import org.opendaylight.yang.gen.v1.urn.opendaylight.groupbasedpolicy.common.rev140421.TenantId;
  22 import org.opendaylight.yang.gen.v1.urn.opendaylight.groupbasedpolicy.policy.rev140421.tenants.tenant.policy.EndpointGroup;
  23 import org.opendaylight.yang.gen.v1.urn.opendaylight.groupbasedpolicy.policy.rev140421.tenants.tenant.policy.EndpointGroup.IntraGroupPolicy;
  24 import org.opendaylight.yang.gen.v1.urn.opendaylight.groupbasedpolicy.policy.rev140421.tenants.tenant.policy.EndpointGroupBuilder;
  25 import org.opendaylight.yang.gen.v1.urn.opendaylight.groupbasedpolicy.policy.rev140421.tenants.tenant.policy.ExternalImplicitGroup;
  26 import org.opendaylight.yang.gen.v1.urn.opendaylight.groupbasedpolicy.policy.rev140421.tenants.tenant.policy.ExternalImplicitGroupBuilder;
  27 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.rev150712.Neutron;
  28 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.secgroups.rev150712.security.groups.attributes.SecurityGroups;
  29 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.secgroups.rev150712.security.groups.attributes.security.groups.SecurityGroup;
  30 import org.opendaylight.yangtools.yang.binding.InstanceIdentifier;
  31 import org.slf4j.Logger;
  32 import org.slf4j.LoggerFactory;
  33
  34 import com.google.common.base.Optional;
  35 import com.google.common.base.Strings;
  36
  37 public class NeutronSecurityGroupAware implements NeutronAware<SecurityGroup> {
  38
  39     private static final Logger LOG = LoggerFactory.getLogger(NeutronSecurityGroupAware.class);
  40     public static final InstanceIdentifier<SecurityGroup> SECURITY_GROUP_WILDCARD_IID =
  41             InstanceIdentifier.builder(Neutron.class).child(SecurityGroups.class).child(SecurityGroup.class).build();
  42     private final DataBroker dataProvider;
  43
  44     public NeutronSecurityGroupAware(DataBroker dataProvider) {
  45         this.dataProvider = checkNotNull(dataProvider);
  46     }
  47
  48     @Override
  49     public void onCreated(SecurityGroup createdSecGroup, Neutron neutron) {
  50         LOG.trace("created securityGroup - {}", createdSecGroup);
  51         ReadWriteTransaction rwTx = dataProvider.newReadWriteTransaction();
  52         boolean isSecGroupCreated = addNeutronSecurityGroup(createdSecGroup, rwTx);
  53         if (isSecGroupCreated) {
  54             DataStoreHelper.submitToDs(rwTx);
  55         } else {
  56             rwTx.cancel();
  57         }
  58     }
  59
  60     public boolean addNeutronSecurityGroup(SecurityGroup secGroup, ReadWriteTransaction rwTx) {
  61         TenantId tId = new TenantId(secGroup.getTenantId().getValue());
  62         EndpointGroupId epgId = new EndpointGroupId(secGroup.getUuid().getValue());
  63         if (epgId.getValue().equals(MappingUtils.EIG_UUID.getValue())) {
  64             ExternalImplicitGroup eig = new ExternalImplicitGroupBuilder().setId(epgId).build();
  65             rwTx.put(LogicalDatastoreType.CONFIGURATION, IidFactory.externalImplicitGroupIid(tId, epgId), eig, true);
  66         }
  67         EndpointGroupBuilder epgBuilder = new EndpointGroupBuilder().setId(epgId);
  68         if (!Strings.isNullOrEmpty(secGroup.getName())) {
  69             try {
  70                 epgBuilder.setName(new Name(secGroup.getName()));
  71             } catch (Exception e) {
  72                 LOG.info("Name '{}' of Neutron Security-group '{}' is ignored.", secGroup.getName(),
  73                         secGroup.getUuid().getValue());
  74                 LOG.debug("Name exception", e);
  75             }
  76         }
  77         if (!Strings.isNullOrEmpty(secGroup.getDescription())) {
  78             try {
  79                 epgBuilder.setDescription(new Description(secGroup.getDescription()));
  80             } catch (Exception e) {
  81                 LOG.info("Description '{}' of Neutron Security-group '{}' is ignored.",
  82                         secGroup.getDescription(), secGroup.getUuid().getValue());
  83                 LOG.debug("Description exception", e);
  84             }
  85         }
  86         epgBuilder.setIntraGroupPolicy(IntraGroupPolicy.RequireContract);
  87         rwTx.put(LogicalDatastoreType.CONFIGURATION, IidFactory.endpointGroupIid(tId, epgId),
  88                 epgBuilder.build(), true);
  89         return true;
  90     }
  91
  92     @Override
  93     public void onUpdated(SecurityGroup oldItem, SecurityGroup newItem, Neutron oldNeutron, Neutron newNeutron) {
  94         LOG.warn("updated securityGroup - Never should be called "
  95                 + "- neutron API does not allow UPDATE on neutron security group. \nSecurity group: {}", newItem);
  96     }
  97
  98     @Override
  99     public void onDeleted(SecurityGroup deletedSecGroup, Neutron oldNeutron, Neutron newNeutron) {
 100         LOG.trace("deleted securityGroup - {}", deletedSecGroup);
 101         ReadWriteTransaction rwTx = dataProvider.newReadWriteTransaction();
 102         TenantId tenantId = new TenantId(deletedSecGroup.getTenantId().getValue());
 103         EndpointGroupId epgId = new EndpointGroupId(deletedSecGroup.getUuid().getValue());
 104         Optional<EndpointGroup> potentialEpg = DataStoreHelper.removeIfExists(LogicalDatastoreType.CONFIGURATION,
 105                 IidFactory.endpointGroupIid(tenantId, epgId), rwTx);
 106         if (!potentialEpg.isPresent()) {
 107             LOG.warn("Illegal state - Endpoint group {} does not exist.", epgId.getValue());
 108             rwTx.cancel();
 109             return;
 110         }
 111
 112         DataStoreHelper.submitToDs(rwTx);
 113     }
 114
 115 }