neutronvpn/impl/src/main/java/org/opendaylight/netvirt/neutronvpn/NeutronSecurityGroupListener.java

   1 /*
   2  * Copyright (c) 2019 Ericsson India Global Services Pvt Ltd. and others.  All rights reserved.
   3  *
   4  * This program and the accompanying materials are made available under the
   5  * terms of the Eclipse Public License v1.0 which accompanies this distribution,
   6  * and is available at http://www.eclipse.org/legal/epl-v10.html
   7  */
   8 package org.opendaylight.netvirt.neutronvpn;
   9
  10 import static org.opendaylight.genius.infra.Datastore.CONFIGURATION;
  11 import static org.opendaylight.mdsal.binding.api.WriteTransaction.CREATE_MISSING_PARENTS;
  12
  13 import java.util.ArrayList;
  14 import java.util.Collections;
  15
  16 import javax.annotation.PreDestroy;
  17 import javax.inject.Inject;
  18 import javax.inject.Singleton;
  19
  20 import org.opendaylight.genius.infra.ManagedNewTransactionRunner;
  21 import org.opendaylight.genius.infra.ManagedNewTransactionRunnerImpl;
  22 import org.opendaylight.infrautils.jobcoordinator.JobCoordinator;
  23 import org.opendaylight.infrautils.utils.concurrent.Executors;
  24 import org.opendaylight.mdsal.binding.api.DataBroker;
  25 import org.opendaylight.mdsal.common.api.LogicalDatastoreType;
  26 import org.opendaylight.serviceutils.tools.listener.AbstractAsyncDataTreeChangeListener;
  27 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.AccessLists;
  28 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.Acl;
  29 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.AclBuilder;
  30 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.AclKey;
  31 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.acl.AccessListEntriesBuilder;
  32 import org.opendaylight.yang.gen.v1.urn.opendaylight.netvirt.aclservice.rev160608.AclserviceAugmentation;
  33 import org.opendaylight.yang.gen.v1.urn.opendaylight.netvirt.aclservice.rev160608.AclserviceAugmentationBuilder;
  34 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.rev150712.Neutron;
  35 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.secgroups.rev150712.security.groups.attributes.SecurityGroups;
  36 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.secgroups.rev150712.security.groups.attributes.security.groups.SecurityGroup;
  37 import org.opendaylight.yangtools.yang.binding.InstanceIdentifier;
  38 import org.slf4j.Logger;
  39 import org.slf4j.LoggerFactory;
  40
  41 @Singleton
  42 public class NeutronSecurityGroupListener extends AbstractAsyncDataTreeChangeListener<SecurityGroup> {
  43     private static final Logger LOG = LoggerFactory.getLogger(NeutronSecurityGroupListener.class);
  44     private final DataBroker dataBroker;
  45     private final ManagedNewTransactionRunner txRunner;
  46     private final JobCoordinator jobCoordinator;
  47     private final NeutronSecurityGroupUtils neutronSecurityGroupUtils;
  48
  49     @Inject
  50     public NeutronSecurityGroupListener(DataBroker dataBroker, JobCoordinator jobCoordinator,
  51             final NeutronSecurityGroupUtils neutronSecurityGroupUtils) {
  52         super(dataBroker, LogicalDatastoreType.CONFIGURATION, InstanceIdentifier.create(Neutron.class)
  53                 .child(SecurityGroups.class).child(SecurityGroup.class),
  54                 Executors.newSingleThreadExecutor("NeutronSecurityGroupListener", LOG));
  55         this.dataBroker = dataBroker;
  56         this.jobCoordinator = jobCoordinator;
  57         this.txRunner = new ManagedNewTransactionRunnerImpl(dataBroker);
  58         this.neutronSecurityGroupUtils = neutronSecurityGroupUtils;
  59         init();
  60     }
  61
  62     public void init() {
  63         LOG.info("{} init", getClass().getSimpleName());
  64         neutronSecurityGroupUtils.createAclIdPool();
  65     }
  66
  67     @Override
  68     @PreDestroy
  69     public void close() {
  70         super.close();
  71         Executors.shutdownAndAwaitTermination(getExecutorService());
  72     }
  73
  74     @Override
  75     public void remove(InstanceIdentifier<SecurityGroup> key, SecurityGroup securityGroup) {
  76         LOG.trace("Removing securityGroup: {}", securityGroup);
  77         InstanceIdentifier<Acl> identifier = getAclInstanceIdentifier(securityGroup);
  78         String securityGroupId = securityGroup.key().getUuid().getValue();
  79         jobCoordinator.enqueueJob(securityGroupId, () -> {
  80             neutronSecurityGroupUtils.releaseAclTag(securityGroupId);
  81             return Collections.singletonList(txRunner.callWithNewWriteOnlyTransactionAndSubmit(CONFIGURATION,
  82                 tx -> tx.delete(identifier)));
  83         });
  84     }
  85
  86     @Override
  87     public void update(InstanceIdentifier<SecurityGroup> key, SecurityGroup dataObjectModificationBefore,
  88         SecurityGroup dataObjectModificationAfter) {
  89         LOG.debug("Do nothing");
  90     }
  91
  92     @Override
  93     public void add(InstanceIdentifier<SecurityGroup> instanceIdentifier, SecurityGroup securityGroup) {
  94         LOG.trace("Adding securityGroup: {}", securityGroup);
  95         String securityGroupId = securityGroup.key().getUuid().getValue();
  96         InstanceIdentifier<Acl> identifier = getAclInstanceIdentifier(securityGroup);
  97         jobCoordinator.enqueueJob(securityGroupId, () -> {
  98             Integer aclTag = neutronSecurityGroupUtils.allocateAclTag(securityGroupId);
  99             Acl acl = toAclBuilder(securityGroup, aclTag).build();
 100             return Collections.singletonList(txRunner.callWithNewWriteOnlyTransactionAndSubmit(CONFIGURATION,
 101                 tx -> tx.put(identifier, acl, CREATE_MISSING_PARENTS)));
 102         });
 103     }
 104
 105     private InstanceIdentifier<Acl> getAclInstanceIdentifier(SecurityGroup securityGroup) {
 106         return InstanceIdentifier
 107             .builder(AccessLists.class).child(Acl.class,
 108                 new AclKey(securityGroup.key().getUuid().getValue(), NeutronSecurityGroupConstants.ACLTYPE))
 109             .build();
 110     }
 111
 112     private AclBuilder toAclBuilder(SecurityGroup securityGroup, Integer aclTag) {
 113         AclBuilder aclBuilder = new AclBuilder();
 114         aclBuilder.setAclName(securityGroup.key().getUuid().getValue());
 115         aclBuilder.setAclType(NeutronSecurityGroupConstants.ACLTYPE);
 116         aclBuilder.setAccessListEntries(new AccessListEntriesBuilder().setAce(new ArrayList<>()).build());
 117         if (aclTag != NeutronSecurityGroupConstants.INVALID_ACL_TAG) {
 118             AclserviceAugmentationBuilder aclserviceAugmentationBuilder = new AclserviceAugmentationBuilder();
 119             aclserviceAugmentationBuilder.setAclTag(aclTag);
 120             aclBuilder.addAugmentation(AclserviceAugmentation.class, aclserviceAugmentationBuilder.build());
 121         }
 122
 123         return aclBuilder;
 124     }
 125 }