2 * Copyright (c) 2019 Ericsson India Global Services Pvt Ltd. and others. All rights reserved.
4 * This program and the accompanying materials are made available under the
5 * terms of the Eclipse Public License v1.0 which accompanies this distribution,
6 * and is available at http://www.eclipse.org/legal/epl-v10.html
8 package org.opendaylight.netvirt.neutronvpn;
10 import static org.opendaylight.genius.infra.Datastore.CONFIGURATION;
12 import java.util.ArrayList;
13 import java.util.Collections;
14 import javax.annotation.PreDestroy;
15 import javax.inject.Inject;
16 import javax.inject.Singleton;
17 import org.opendaylight.genius.infra.ManagedNewTransactionRunner;
18 import org.opendaylight.genius.infra.ManagedNewTransactionRunnerImpl;
19 import org.opendaylight.infrautils.jobcoordinator.JobCoordinator;
20 import org.opendaylight.infrautils.utils.concurrent.Executors;
21 import org.opendaylight.mdsal.binding.api.DataBroker;
22 import org.opendaylight.mdsal.common.api.LogicalDatastoreType;
23 import org.opendaylight.serviceutils.tools.listener.AbstractAsyncDataTreeChangeListener;
24 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.AccessLists;
25 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.Acl;
26 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.AclBuilder;
27 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.AclKey;
28 import org.opendaylight.yang.gen.v1.urn.ietf.params.xml.ns.yang.ietf.access.control.list.rev160218.access.lists.acl.AccessListEntriesBuilder;
29 import org.opendaylight.yang.gen.v1.urn.opendaylight.netvirt.aclservice.rev160608.AclserviceAugmentation;
30 import org.opendaylight.yang.gen.v1.urn.opendaylight.netvirt.aclservice.rev160608.AclserviceAugmentationBuilder;
31 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.rev150712.Neutron;
32 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.secgroups.rev150712.security.groups.attributes.SecurityGroups;
33 import org.opendaylight.yang.gen.v1.urn.opendaylight.neutron.secgroups.rev150712.security.groups.attributes.security.groups.SecurityGroup;
34 import org.opendaylight.yangtools.yang.binding.InstanceIdentifier;
35 import org.slf4j.Logger;
36 import org.slf4j.LoggerFactory;
39 public class NeutronSecurityGroupListener extends AbstractAsyncDataTreeChangeListener<SecurityGroup> {
40 private static final Logger LOG = LoggerFactory.getLogger(NeutronSecurityGroupListener.class);
41 private final DataBroker dataBroker;
42 private final ManagedNewTransactionRunner txRunner;
43 private final JobCoordinator jobCoordinator;
44 private final NeutronSecurityGroupUtils neutronSecurityGroupUtils;
47 public NeutronSecurityGroupListener(DataBroker dataBroker, JobCoordinator jobCoordinator,
48 final NeutronSecurityGroupUtils neutronSecurityGroupUtils) {
49 super(dataBroker, LogicalDatastoreType.CONFIGURATION, InstanceIdentifier.create(Neutron.class)
50 .child(SecurityGroups.class).child(SecurityGroup.class),
51 Executors.newSingleThreadExecutor("NeutronSecurityGroupListener", LOG));
52 this.dataBroker = dataBroker;
53 this.jobCoordinator = jobCoordinator;
54 this.txRunner = new ManagedNewTransactionRunnerImpl(dataBroker);
55 this.neutronSecurityGroupUtils = neutronSecurityGroupUtils;
60 LOG.info("{} init", getClass().getSimpleName());
61 neutronSecurityGroupUtils.createAclIdPool();
68 Executors.shutdownAndAwaitTermination(getExecutorService());
72 public void remove(InstanceIdentifier<SecurityGroup> key, SecurityGroup securityGroup) {
73 LOG.trace("Removing securityGroup: {}", securityGroup);
74 InstanceIdentifier<Acl> identifier = getAclInstanceIdentifier(securityGroup);
75 String securityGroupId = securityGroup.key().getUuid().getValue();
76 jobCoordinator.enqueueJob(securityGroupId, () -> {
77 neutronSecurityGroupUtils.releaseAclTag(securityGroupId);
78 return Collections.singletonList(txRunner.callWithNewWriteOnlyTransactionAndSubmit(CONFIGURATION,
79 tx -> tx.delete(identifier)));
84 public void update(InstanceIdentifier<SecurityGroup> key, SecurityGroup dataObjectModificationBefore,
85 SecurityGroup dataObjectModificationAfter) {
86 LOG.debug("Do nothing");
90 public void add(InstanceIdentifier<SecurityGroup> instanceIdentifier, SecurityGroup securityGroup) {
91 LOG.trace("Adding securityGroup: {}", securityGroup);
92 String securityGroupId = securityGroup.key().getUuid().getValue();
93 InstanceIdentifier<Acl> identifier = getAclInstanceIdentifier(securityGroup);
94 jobCoordinator.enqueueJob(securityGroupId, () -> {
95 Integer aclTag = neutronSecurityGroupUtils.allocateAclTag(securityGroupId);
96 Acl acl = toAclBuilder(securityGroup, aclTag).build();
97 return Collections.singletonList(txRunner.callWithNewWriteOnlyTransactionAndSubmit(CONFIGURATION,
98 tx -> tx.mergeParentStructurePut(identifier, acl)));
102 private InstanceIdentifier<Acl> getAclInstanceIdentifier(SecurityGroup securityGroup) {
103 return InstanceIdentifier
104 .builder(AccessLists.class).child(Acl.class,
105 new AclKey(securityGroup.key().getUuid().getValue(), NeutronSecurityGroupConstants.ACLTYPE))
109 private AclBuilder toAclBuilder(SecurityGroup securityGroup, Integer aclTag) {
110 AclBuilder aclBuilder = new AclBuilder();
111 aclBuilder.setAclName(securityGroup.key().getUuid().getValue());
112 aclBuilder.setAclType(NeutronSecurityGroupConstants.ACLTYPE);
113 aclBuilder.setAccessListEntries(new AccessListEntriesBuilder().setAce(new ArrayList<>()).build());
114 if (aclTag != NeutronSecurityGroupConstants.INVALID_ACL_TAG) {
115 AclserviceAugmentationBuilder aclserviceAugmentationBuilder = new AclserviceAugmentationBuilder();
116 aclserviceAugmentationBuilder.setAclTag(aclTag);
117 aclBuilder.addAugmentation(AclserviceAugmentation.class, aclserviceAugmentationBuilder.build());