945 Commits

Author SHA1 Message Date
Dongcan Ye
a95edc8980 Trivial fix in ml2 conf
Fix alignment for ml2_type_gre section in ml2_conf.ini, using
two lines instead of one line.

Change-Id: I567b53e442d6393b9efc9c8b1e2d60786fbe584b
2015-11-15 15:41:13 +00:00
Jenkins
d8c07f1933 Merge "Move dhcp_lease_duration into DHCP agent config options list" 2015-11-13 22:31:42 +00:00
Jenkins
772b3e3df3 Merge "Replace subnetpool config options with admin-only API" 2015-11-13 16:08:38 +00:00
Ihar Hrachyshka
3101e2b62f Move dhcp_lease_duration into DHCP agent config options list
It is DHCP agent specific, and so it should not be present in
neutron.conf or be reported as a valid option for other services.

Also modified the help message slightly to avoid mentioning dnsmasq
since the option could in theory be used by alternative dhcp drivers.

Change-Id: I66bcea1c3a6ce6fa9ce56ea8137a94858f18dc5a
2015-11-13 12:21:44 +01:00
Ihar Hrachyshka
ce814a1c29 sriov: add extensions option to configuration file
The agent supports l2 agent extension manager, so the option should be
there.

Closes-Bug: #1515274
Change-Id: I4376c7422dba058c11bfaf10046bd97b17592ce3
2015-11-11 15:25:45 +01:00
Jenkins
87ce4868ca Merge "Add new config option for IPv6 Prefix Delegation" 2015-11-11 08:42:32 +00:00
Jenkins
73c804d1c5 Merge "Add track_quota_usage conf into neutron.conf" 2015-11-09 21:42:06 +00:00
John Davidge
6ee91e56c8 Replace subnetpool config options with admin-only API
This patch adds a new boolean 'is_default' property to subnetpools. This
allows the admin to set the default v4/v6 subnetpools via the API rather
than the existing neutron.conf options - which are deprecated by this patch.

Only one subnetpool per IP family can be set to default.

DocImpact
ApiImpact

Co-Authored-By: Carl Baldwin <carl@ecbaldwin.net>

Change-Id: I5daba2347cfb91fac0b155b2c1b459ee7d9e4505
Closes-Bug: 1501328
2015-11-06 17:16:31 +00:00
John Davidge
a3113c56c2 Add new config option for IPv6 Prefix Delegation
With the impending deprecation of the default subnetpool configuration
options, IPv6 PD needs to be enabled with a new config option.

This patch adds the 'ipv6_pd_enabled' option to neutron.conf, and makes
all of the necessary changes for its use.

DocImpact

Change-Id: I43486c5a13ee2ff0097355afe7e1f3ef8794b185
Closes-Bug: 1501835
2015-11-06 16:35:02 +00:00
Martin Hickey
cb712c5a9e Make '*' the default ml2 flat_networks configuration
Update the ml2 flat_networks configuration to set '*' as the
default because that has been effectively the default behavior due
to a bug with the empty list.

Also, fix the empty list configuration for disabling flat networks.

DocImpact
UpgradeImpact

Change-Id: I13eb22afd7c0d011154b58a1bd218fd4fa82a8d9
Closes-bug: #1437745
Co-Authored-By: Martin Hickey <martin.hickey@ie.ibm.com>
2015-11-06 14:16:32 +00:00
Jenkins
1bba4db6f0 Merge "PortOpt cleanups" 2015-11-04 20:00:12 +00:00
Gary Kotton
988048bf8f PortOpt cleanups
Commit 44d73d1ad3073958c8d5cce933deedc7e6ea5f83 added support
for oslo.config 2.6.

Commit 4d2cb851b7b7d6399163ca9f624f656a3e41ac34 added this to Neutron.

The patch adds a few missing items.

Change-Id: Id36515e28458c354ddb6fe3656f182d17df08f8a
2015-11-02 23:48:03 -08:00
Jenkins
6f4ba78a8a Merge "Decompose ML2 mechanism driver for Mellanox" 2015-11-02 09:03:10 +00:00
Jenkins
5fe2ab900f Merge "Remove deprecated nova_* options" 2015-11-01 09:43:32 +00:00
Cedric Brandily
26f008296b Remove deprecated nova_* options
Neutron nova_* options have been deprecated in Kilo in favour of options
in [nova] section.

This change removes these options in order to simplify code, clarify
configuration and avoid a warning in unittests.

DocImpact
UpgradeImpact
Closes-Bug: #1509092
Related-Bug: #1403686
Change-Id: I950f72ad7d7d41cfa006f8c7105934301cd56faa
2015-11-01 00:13:10 +01:00
Cedric Brandily
82a2d72cbe Decompose ML2 mechanism driver for Mellanox
This change removes Mellanox ML2 mechanism driver after its definition in
networking-mlnx.

DocImpact
Closes-Bug: #1511234
Change-Id: Ie48ac22d8e7477c22ad1d48aa0c44153a01eb242
2015-10-30 06:37:45 +00:00
Cedric Brandily
d5faf0eb76 Decompose ML2 mechanism driver for OVSvApp
This change removes OVSvApp ML2 mechanism driver after its definition in
networking-vsphere.

DocImpact
Closes-Bug: #1511198
Depends-On: Ib7b2852f3d4dc35a837a425366c5bf0135725a74
Change-Id: I5e310f0596f3ea206800ac9d4daca1c292a234f1
2015-10-29 22:52:41 +09:00
Jenkins
9f770a4a60 Merge "Remove deprecated namespace deletion options" 2015-10-23 15:45:28 +00:00
Jenkins
6c1afa5d6f Merge "Spawn dedicated rpc workers for state reports queue" 2015-10-22 07:45:04 +00:00
Eugene Nikanorov
678b431ba4 Spawn dedicated rpc workers for state reports queue
By default spawn one additional rpc worker to process
state report queue.
State report queue will also be processed by regular
rpc workers, but in case these workers are busy with
processing heavy requests, state reports queue will
automatically be consumed by dedicated rpc workers.

This change applies to ML2 plugin only.
Other plugins should implement start_rpc_state_reports_listener
to enable additional rpc workers.

Change-Id: I5f8df6a478f7c82382049274b34b07109eeafbdb
Closes-Bug: #1505217
2015-10-21 17:55:25 +04:00
Cedric Brandily
83c9578fcc Remove deprecated sriov agent_required option
The SR-IOV option agent_required has been deprecated in Liberty.

This change removes it and from now agents are mandatory for SR-IOV
mechanism in order to support extended features: QoS, port security.

DocImpact
Closes-Bug: #1508182
Related-Bug: #1488807
Change-Id: I4e6497da6b287531a211084a5208028c84112a83
2015-10-21 13:41:19 +02:00
Cedric Brandily
bd0e8af34c Remove deprecated namespace deletion options
dhcp/router_delete_namespaces[1] options have been defined as a
workaround to an iproute2 limitation[1] corrected 2 years ago.

That's why the change removes these options after their deprecation
in Liberty.

[1] in neutron.agent.dhcp/l3.config

DocImpact
Closes-Bug: #1508189
Related-Bug: #1418079
Change-Id: I2a879213c3b095a007a4531f430a33cea9fdf1bd
2015-10-21 12:53:14 +02:00
Martin Hickey
c5db6050e5 Add stevedore aliases for interface_driver configuration
Changed the interface_driver configure for agents from class
imports to stevedor aliases. The loading method needed to be
updated to load as a DriverManager. Backward compatability
for configuration as class import.

DocImpact

Change-Id: Ic349691989484286cd7c60eaf3ad1454c5852d1f
Closes-Bug: #1504536
2015-10-19 22:10:53 +01:00
Jenkins
b88cd283a1 Merge "Remove the embrane plugin" 2015-10-16 22:06:28 +00:00
Assaf Muller
7acaff0dfb Add ml2 extension drivers examples
DocImpact
Change-Id: Idf8fcbd6f47ab91996d843575b66ad749cb9a3e0
2015-10-13 17:04:26 -04:00
Henry Gessau
44950383ac Remove the embrane plugin
The embrane plugin is EOL.
Users have been transitioned to other solutions.

Closes-Bug: #1504670

Depends-On: Ic13a101f04086af84251c98d775d75334504007d

Change-Id: Ibc336db310d051cae65291724ea5becadc3d3d45
2015-10-10 00:15:54 -04:00
Jenkins
0afd4d6c39 Merge "Removed neutronclient option from metadata agent" 2015-10-09 12:38:00 +00:00
gong yong sheng
eb6a41743c Add track_quota_usage conf into neutron.conf
track_quota_usage is missing in neutron configuration files. This
patch adds it into neutron.conf so that deployers know it.

Closes-bug: #1504370
DocImpact

Change-Id: Ibaff5ac60cd69958eb981d2058d946cc88f799f1
2015-10-09 11:49:26 +08:00
Jenkins
e739ba36ee Merge "Consume sslutils and wsgi modules from oslo.service" 2015-10-08 22:20:42 +00:00
Elena Ezhova
216d2d0b75 Consume sslutils and wsgi modules from oslo.service
sslutils and basic WSGI functionality have been moved to
oslo.service and now Neutron can reuse them.

Marked ssl options that were renamed in oslo.service as
deprecated.

Added a note about possible implications for out-of-tree plugins
to neutron_api.rst

Bumped oslo.service version to 0.9.0.

Related-Bug: #1482633

Depends-On: I0424a6c261fae447dbc25b3abf00258c860a88f5
Change-Id: Ibfdf07e665fcfcd093a0e31274e1a6116706aec2
2015-10-08 17:58:53 +00:00
Ihar Hrachyshka
e5cd4a9f54 Removed neutronclient option from metadata agent
The new RPC interface has proved itself for two cycles, I don't
recollect any serious issues with it, so let's just clean up the
obsolete neutronclient based fallback mechanism.

The metadata agent configuration documentation should be updated
to not require API configuration values for the agent to talk to
neutron-server.

DocImpact
Change-Id: I254c575c66214f50fb93a94c46c4c9caebfc2937
Closes-Bug: #1502947
2015-10-07 18:27:07 +02:00
Jenkins
371c37f2f6 Merge "Remove OneConvergence plugin from the source tree" 2015-10-07 01:39:08 +00:00
Jenkins
3829ec5b80 Merge "Deprecate max_fixed_ips_per_port" 2015-10-06 00:27:31 +00:00
armando-migliaccio
42b78de3ed Remove OneConvergence plugin from the source tree
This plugin didn't decompose in the last two cycles, I failed
to spot a functional CI, and there hasn't been any meaningful
activity done in the subtree for the past couple of cycles

I think it is time to implement the eviction.

Related-blueprint: core-vendor-decomposition

Change-Id: I949a51873ee5af654b577952d423dd29a6ced8e7
2015-10-05 16:49:22 -07:00
Kevin Benton
37277cf416 Deprecate max_fixed_ips_per_port
This option does not have a clear use case since we prevent
users from setting their own IP addresses on shared networks.

DocImpact
Change-Id: I211e87790c955ba5c3904ac27b177acb2847539d
Closes-Bug: #1502356
2015-10-05 16:49:15 +00:00
Jenkins
51b8b19ef2 Merge "Decomposition phase2 for MidoNet plugin" 2015-10-03 00:55:14 +00:00
YAMAMOTO Takashi
a3cb179ffa Decomposition phase2 for MidoNet plugin
Remove the rest of MidoNet plugin from Neutron tree.

Closes-Bug: #1490852

Change-Id: I260ec3e19c74928390c8e5e4e32629357c184361
2015-10-02 19:26:37 +00:00
Hirofumi Ichihara
9c2c3021a6 Add availability_zone support base
This patch adds the availability_zone attribute to agents and
supports availability_zone API.
Availability_zone support for resources (network/router) and
the schedulers are included in subsequent patches.

APIImpact
DocImpact

Co-Authored-By: IWAMOTO Toshihiro <iwamoto@valinux.co.jp>
Change-Id: Id7a62000ab0484412b3970199df8c374568fe70d
Partially-implements: blueprint add-availability-zone
2015-10-02 10:14:10 +09:00
armando-migliaccio
b8a3eec02e Remove OpenContrail plugin from the source tree
This plugin didn't decompose in the last two cycles, the CI has
stopped working for a while and it seems there is no pulse since
March 2015.

I think it is time to implement the eviction.

Change-Id: Ib2cb1e3f05330c7808177b0312506d0e56254aa8
Related-blueprint: core-vendor-decomposition
2015-09-30 18:17:57 -07:00
Sean Mooney
58c0e498b4 Adds configurable agent type
This change introduces a new agent_type config option which
allows the ovs agent to be reused by out of tree
mechanism drivers.

DocImpact
Change-Id: I48f4be4b1d51bcff62e86e5814c12bd9bfa3c902
Closes-Bug: #1469871
2015-09-22 13:01:58 +01:00
Jakub Libosvar
53c64ff1ac Revert "AsyncProcess: try to kill tender"
This change introduced bug 1495937.

This reverts commit 470a7d8a106a274e06fb1311c6738f333a98f59c.

Change-Id: I84fea4fdac71141da335ccd9e0d4c9d6174dfd86
2015-09-15 11:52:34 +00:00
IWAMOTO Toshihiro
470a7d8a10 AsyncProcess: try to kill tender
_kill_process kills processes with SIGKILL, which prevents the
processes' cleanup from running.  Issue SIGTERM first and wait a bit.

Change-Id: Ie7b94011bbd11b1d672c95e3be19bb3c84ef77ec
Closes-bug: 1494363
2015-09-14 17:17:29 +09:00
armando-migliaccio
e5f635ee4f Switch scheduler drivers to load based schedulers
Cloud deployed at scale most likely will use these scheduler
drivers because they allow a fairer resource allocation compared
to chance schedulers (which randomly place resources on the hosts).

Because of their importance, it's only wise to test them in
the gate on a continuous basis, so that we do not get surprised
by accidental regressions.

Rather than pushing this down through devstack-gate/project-config
patches, this chance alters the default of the scheduler
drivers, so that users can also pick these up out of the box.

This means that after an upgrade they would observe a change in
the scheduling behavior, if they relied on the default config.

DocImpact
UpgradeImpact

Closes-bug: #1494667

Change-Id: I5927914cb88eff66bc7a045340ff68cb8da95ad6
2015-09-12 23:01:47 -07:00
Jenkins
08aa07292c Merge "Remove ebtables_driver/manager dead code" 2015-09-09 18:30:25 +00:00
Cedric Brandily
b62b92da9b Remove ebtables_driver/manager dead code
Previous changes[1] have been merged as enablers[2] to fix the bug
1274034 but an alternative solution has been choosen and now we can
consider the introduced code as dead code.

This changes removes [2], associated tests and rootwrap filters.

[1] I9ef57a86b1a1c1fa4ba1a034c920f23cb40072c0
    I3c66e92cbe8883dcad843ad243388def3a96dbe5
[2] neutron.agent.linux.ebtables_driver
    neutron.agent.linux.ebtables_manager

Closes-Bug: #1493422
Related-Bug: #1274034
Change-Id: I61e38fc0d8cf8e79252aabc19a70240be57e4a32
2015-09-08 15:24:28 +00:00
Kevin Benton
bbca973986 Stop device_owner from being set to 'network:*'
This patch adjusts the FieldCheck class in the policy engine to
allow a regex rule. It then leverages that to prevent users from
setting the device_owner field to anything that starts with
'network:' on networks which they do not own.

This policy adjustment is necessary because any ports with a
device_owner that starts with 'network:' will not have any security
group rules applied because it is assumed they are trusted network
devices (e.g. router ports, DHCP ports, etc). These security rules
include the anti-spoofing protection for DHCP, IPv6 ICMP messages,
and IP headers.

Without this policy adjustment, tenants can abuse this trust when
connected to a shared network with other tenants by setting their
VM port's device_owner field to 'network:<anything>' and hijack other
tenants' traffic via DHCP spoofing or MAC/IP spoofing.

Closes-Bug: #1489111
Change-Id: Ia64cf16142e0e4be44b5b0ed72c8e00792d770f9
2015-09-08 15:00:13 +00:00
Jenkins
fee48aa108 Merge "Adds support to provide the csum option for the OVS tunnels" 2015-09-06 22:14:46 +00:00
root
b89879c286 Adds support to provide the csum option for the OVS tunnels
The new option for the ovs agent will enable to set/unset the
csum option for the vxlan/gre tunnels. The default is maintained as False.

Change-Id: I18dcd8946b585e70f8890a5c222ea37059c4a0c5
Implements: bp ovs-tunnel-csum-option
Closes-bug: #1492111
2015-09-06 10:49:32 -07:00
Shweta P
b61cd4eaed Final decomposition of Cisco plugin
This patch follows the previous patch(listed as dependent) and moves
the remaining cisco db models from neutron to networking-cisco.
The patch deletes l3_model and cisco_router_plugin and their associated
config and helper files from neutron

Change-Id: I5b71e1dfb683e633e1cd11386dfb7c2ed7cc7d62
Partial-Bug: #1489609
2015-09-05 04:59:08 +00:00
Abhishek Raut
d12017ad51 Remove Cisco Meta and N1KV monolithic plugins
This patch removes the Cisco meta plugin and the Cisco
Nexus1000V monolithic plugin as they were deprecated in the
previous cycle.

Closes-bug: #1473217

Change-Id: Id170b9512b2f52a971264336d83b083d487359ee
2015-09-05 00:53:36 -04:00