2 * Copyright (c) 2019 Ericsson India Global Services Pvt Ltd. and others. All rights reserved.
4 * This program and the accompanying materials are made available under the
5 * terms of the Eclipse Public License v1.0 which accompanies this distribution,
6 * and is available at http://www.eclipse.org/legal/epl-v10.html
8 package org.opendaylight.netvirt.neutronvpn;
10 import static org.opendaylight.genius.infra.Datastore.CONFIGURATION;
11 import static org.opendaylight.mdsal.binding.api.WriteTransaction.CREATE_MISSING_PARENTS;
13 import java.util.ArrayList;
14 import java.util.Collections;
16 import javax.annotation.PreDestroy;
17 import javax.inject.Inject;
18 import javax.inject.Singleton;
20 import org.opendaylight.genius.infra.ManagedNewTransactionRunner;
21 import org.opendaylight.genius.infra.ManagedNewTransactionRunnerImpl;
22 import org.opendaylight.infrautils.jobcoordinator.JobCoordinator;
23 import org.opendaylight.infrautils.utils.concurrent.Executors;
24 import org.opendaylight.mdsal.binding.api.DataBroker;
25 import org.opendaylight.mdsal.common.api.LogicalDatastoreType;
26 import org.opendaylight.serviceutils.tools.listener.AbstractAsyncDataTreeChangeListener;
27 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.AccessLists;
28 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.Acl;
29 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.AclBuilder;
30 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.AclKey;
31 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.acl.AccessListEntriesBuilder;
32 import org.opendaylight.yang.gen.v1.urn.opendaylight.netvirt.aclservice.rev160608.AclserviceAugmentation;
33 import org.opendaylight.yang.gen.v1.urn.opendaylight.netvirt.aclservice.rev160608.AclserviceAugmentationBuilder;
34 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.rev150712.Neutron;
35 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.secgroups.rev150712.security.groups.attributes.SecurityGroups;
36 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.secgroups.rev150712.security.groups.attributes.security.groups.SecurityGroup;
37 import org.opendaylight.yangtools.yang.binding.InstanceIdentifier;
38 import org.slf4j.Logger;
39 import org.slf4j.LoggerFactory;
42 public class NeutronSecurityGroupListener extends AbstractAsyncDataTreeChangeListener<SecurityGroup> {
43 private static final Logger LOG = LoggerFactory.getLogger(NeutronSecurityGroupListener.class);
44 private final DataBroker dataBroker;
45 private final ManagedNewTransactionRunner txRunner;
46 private final JobCoordinator jobCoordinator;
47 private final NeutronSecurityGroupUtils neutronSecurityGroupUtils;
50 public NeutronSecurityGroupListener(DataBroker dataBroker, JobCoordinator jobCoordinator,
51 final NeutronSecurityGroupUtils neutronSecurityGroupUtils) {
52 super(dataBroker, LogicalDatastoreType.CONFIGURATION, InstanceIdentifier.create(Neutron.class)
53 .child(SecurityGroups.class).child(SecurityGroup.class),
54 Executors.newSingleThreadExecutor("NeutronSecurityGroupListener", LOG));
55 this.dataBroker = dataBroker;
56 this.jobCoordinator = jobCoordinator;
57 this.txRunner = new ManagedNewTransactionRunnerImpl(dataBroker);
58 this.neutronSecurityGroupUtils = neutronSecurityGroupUtils;
63 LOG.info("{} init", getClass().getSimpleName());
64 neutronSecurityGroupUtils.createAclIdPool();
71 Executors.shutdownAndAwaitTermination(getExecutorService());
75 public void remove(InstanceIdentifier<SecurityGroup> key, SecurityGroup securityGroup) {
76 LOG.trace("Removing securityGroup: {}", securityGroup);
77 InstanceIdentifier<Acl> identifier = getAclInstanceIdentifier(securityGroup);
78 String securityGroupId = securityGroup.key().getUuid().getValue();
79 jobCoordinator.enqueueJob(securityGroupId, () -> {
80 neutronSecurityGroupUtils.releaseAclTag(securityGroupId);
81 return Collections.singletonList(txRunner.callWithNewWriteOnlyTransactionAndSubmit(CONFIGURATION,
82 tx -> tx.delete(identifier)));
87 public void update(InstanceIdentifier<SecurityGroup> key, SecurityGroup dataObjectModificationBefore,
88 SecurityGroup dataObjectModificationAfter) {
89 LOG.debug("Do nothing");
93 public void add(InstanceIdentifier<SecurityGroup> instanceIdentifier, SecurityGroup securityGroup) {
94 LOG.trace("Adding securityGroup: {}", securityGroup);
95 String securityGroupId = securityGroup.key().getUuid().getValue();
96 InstanceIdentifier<Acl> identifier = getAclInstanceIdentifier(securityGroup);
97 jobCoordinator.enqueueJob(securityGroupId, () -> {
98 Integer aclTag = neutronSecurityGroupUtils.allocateAclTag(securityGroupId);
99 Acl acl = toAclBuilder(securityGroup, aclTag).build();
100 return Collections.singletonList(txRunner.callWithNewWriteOnlyTransactionAndSubmit(CONFIGURATION,
101 tx -> tx.put(identifier, acl, CREATE_MISSING_PARENTS)));
105 private InstanceIdentifier<Acl> getAclInstanceIdentifier(SecurityGroup securityGroup) {
106 return InstanceIdentifier
107 .builder(AccessLists.class).child(Acl.class,
108 new AclKey(securityGroup.key().getUuid().getValue(), NeutronSecurityGroupConstants.ACLTYPE))
112 private AclBuilder toAclBuilder(SecurityGroup securityGroup, Integer aclTag) {
113 AclBuilder aclBuilder = new AclBuilder();
114 aclBuilder.setAclName(securityGroup.key().getUuid().getValue());
115 aclBuilder.setAclType(NeutronSecurityGroupConstants.ACLTYPE);
116 aclBuilder.setAccessListEntries(new AccessListEntriesBuilder().setAce(new ArrayList<>()).build());
117 if (aclTag != NeutronSecurityGroupConstants.INVALID_ACL_TAG) {
118 AclserviceAugmentationBuilder aclserviceAugmentationBuilder = new AclserviceAugmentationBuilder();
119 aclserviceAugmentationBuilder.setAclTag(aclTag);
120 aclBuilder.addAugmentation(AclserviceAugmentation.class, aclserviceAugmentationBuilder.build());