OpenSDN source code
 All Classes Namespaces Files Functions Variables Typedefs Enumerations Enumerator Friends Macros Pages
cfg_filter.cc
Go to the documentation of this file.
1 /*
2  * Copyright (c) 2013 Juniper Networks, Inc. All rights reserved.
3  */
4 
5 #include <iostream>
6 #include <list>
7 #include <map>
8 
9 #include <boost/function.hpp>
10 
11 #include <base/logging.h>
12 
13 #include <ifmap/ifmap_link.h>
14 #include <ifmap/ifmap_table.h>
15 #include <ifmap/ifmap_agent_table.h>
16 #include <vnc_cfg_types.h>
17 
18 #include <base/parse_object.h>
19 
20 #include <cmn/agent_cmn.h>
21 #include <cmn/agent_db.h>
22 
23 #include <cfg/cfg_init.h>
24 #include <cfg/cfg_filter.h>
25 
26 using namespace std;
27 using namespace autogen;
28 
29 CfgFilter::CfgFilter(AgentConfig *cfg) : agent_cfg_(cfg) {
30 }
31 
32 CfgFilter::~CfgFilter() {
33 }
34 
35 bool CfgFilter::CheckIdPermsProperty(DBTable *table,
36  const IFMapIdentifier *req_id,
37  DBRequest *req,
38  int property_id) {
39  if (property_id < 0) {
40  return true;
41  }
42 
43  if (req_id->IsPropertySet(property_id)) {
44  return true;
45  }
46 
47  // When ID_PERMS is not present, ignore the request
48  IFMapAgentTable::RequestKey *key =
49  static_cast<IFMapAgentTable::RequestKey *>(req->key.get());
50  LOG(ERROR, "ID-PERM not set for object <" << key->id_name << "> Table <" <<
51  table->name() << ">. Ignoring it");
52  return false;
53 }
54 
55 int CfgFilter::GetIdPermsPropertyId(DBTable *table) const {
56  if (table == agent_cfg_->cfg_vm_table())
57  return VirtualMachine::ID_PERMS;
58  if (table == agent_cfg_->cfg_vn_table())
59  return VirtualNetwork::ID_PERMS;
60  if (table == agent_cfg_->cfg_vm_interface_table())
61  return VirtualMachineInterface::ID_PERMS;
62  if (table == agent_cfg_->cfg_acl_table())
63  return AccessControlList::ID_PERMS;
64  if (table == agent_cfg_->cfg_service_instance_table())
65  return ServiceInstance::ID_PERMS;
66  if (table == agent_cfg_->cfg_service_template_table())
67  return ServiceTemplate::ID_PERMS;
68  if (table == agent_cfg_->cfg_security_group_table())
69  return SecurityGroup::ID_PERMS;
70  if (table == agent_cfg_->cfg_logical_port_table())
71  return LogicalInterface::ID_PERMS;
72  if (table == agent_cfg_->cfg_physical_device_table())
73  return PhysicalRouter::ID_PERMS;
74  if (table == agent_cfg_->cfg_health_check_table())
75  return ServiceHealthCheck::ID_PERMS;
76  if (table == agent_cfg_->cfg_qos_table())
77  return autogen::QosConfig::ID_PERMS;
78  if (table == agent_cfg_->cfg_qos_queue_table())
79  return autogen::QosQueue::ID_PERMS;
80  if (table == agent_cfg_->cfg_forwarding_class_table())
81  return autogen::ForwardingClass::ID_PERMS;
82  if (table == agent_cfg_->cfg_bridge_domain_table())
83  return autogen::BridgeDomain::ID_PERMS;
84  if (table == agent_cfg_->cfg_slo_table())
85  return autogen::SecurityLoggingObject::ID_PERMS;
86  if (table == agent_cfg_->cfg_port_tuple_table())
87  return autogen::PortTuple::ID_PERMS;
88  if (table == agent_cfg_->cfg_policy_set_table())
89  return autogen::ApplicationPolicySet::ID_PERMS;
90  if (table == agent_cfg_->cfg_firewall_policy_table())
91  return autogen::FirewallPolicy::ID_PERMS;
92  if (table == agent_cfg_->cfg_firewall_rule_table())
93  return autogen::FirewallRule::ID_PERMS;
94  if (table == agent_cfg_->cfg_tag_table())
95  return autogen::Tag::ID_PERMS;
96  if (table == agent_cfg_->cfg_multicast_policy_table())
97  return autogen::MulticastPolicy::ID_PERMS;
98  return -1;
99 }
100 
101 bool CfgFilter::CheckProperty(DBTable *table, IFMapNode *node, DBRequest *req) {
102  if (req->oper == DBRequest::DB_ENTRY_DELETE) {
103  return true;
104  }
105 
106  if (req->oper == DBRequest::DB_ENTRY_NOTIFY) {
107  return true;
108  }
109 
110  assert(req->oper == DBRequest::DB_ENTRY_ADD_CHANGE);
111 
112  IFMapAgentTable::IFMapAgentData *data =
113  static_cast<IFMapAgentTable::IFMapAgentData *>(req->data.get());
114  IFMapObject *req_obj = static_cast<IFMapObject *>(data->content.get());
115  const IFMapIdentifier *req_id = static_cast<const IFMapIdentifier *>(req_obj);
116 
117  if (CheckIdPermsProperty(table, req_id, req,
118  GetIdPermsPropertyId(table)) == false)
119  return false;
120 
121  //Table specific property checks
122  if ((table == agent_cfg_->cfg_vm_interface_table()) &&
123  (CheckVmInterfaceProperty(table, req_id, req) == false)) {
124  return false;
125  }
126 
127  return true;
128 }
129 
130 bool CfgFilter::CheckVmInterfaceProperty(DBTable *table,
131  const IFMapIdentifier *req_id,
132  DBRequest *req) {
133  if (req_id->IsPropertySet(VirtualMachineInterface::MAC_ADDRESSES) ==
134  false) {
135  return true;
136  }
137 
138  const VirtualMachineInterface *vmi =
139  dynamic_cast<const VirtualMachineInterface *>(req_id);
140  if ((vmi->mac_addresses().at(0) == MacAddress::ZeroMac().ToString()) ||
141  (vmi->mac_addresses().size() == 0)) {
142  return false;
143  }
144 
145  return true;
146 }
147 
148 void CfgFilter::Init() {
149  agent_cfg_->cfg_vm_table()->RegisterPreFilter
150  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
151 
152  agent_cfg_->cfg_vn_table()->RegisterPreFilter
153  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
154 
155  agent_cfg_->cfg_vm_interface_table()->RegisterPreFilter
156  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
157 
158  agent_cfg_->cfg_acl_table()->RegisterPreFilter
159  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
160 
161  agent_cfg_->cfg_service_instance_table()->RegisterPreFilter
162  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
163 
164  agent_cfg_->cfg_service_template_table()->RegisterPreFilter
165  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
166 
167  agent_cfg_->cfg_security_group_table()->RegisterPreFilter
168  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
169 
170  agent_cfg_->cfg_logical_port_table()->RegisterPreFilter
171  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
172 
173  agent_cfg_->cfg_physical_device_table()->RegisterPreFilter
174  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
175 
176  agent_cfg_->cfg_health_check_table()->RegisterPreFilter
177  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
178 
179  agent_cfg_->cfg_qos_table()->RegisterPreFilter
180  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
181 
182  agent_cfg_->cfg_forwarding_class_table()->RegisterPreFilter
183  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
184 
185  agent_cfg_->cfg_qos_queue_table()->RegisterPreFilter
186  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
187 
188  agent_cfg_->cfg_bridge_domain_table()->RegisterPreFilter
189  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
190 
191  agent_cfg_->cfg_slo_table()->RegisterPreFilter
192  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
193 
194  agent_cfg_->cfg_port_tuple_table()->RegisterPreFilter
195  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
196 
197  agent_cfg_->cfg_policy_set_table()->RegisterPreFilter
198  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
199 
200  agent_cfg_->cfg_firewall_policy_table()->RegisterPreFilter
201  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
202 
203  agent_cfg_->cfg_firewall_rule_table()->RegisterPreFilter
204  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
205 
206  agent_cfg_->cfg_tag_table()->RegisterPreFilter
207  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
208 
209  agent_cfg_->cfg_multicast_policy_table()->RegisterPreFilter
210  (boost::bind(&CfgFilter::CheckProperty, this, _1, _2, _3));
211 }
212 
213 void CfgFilter::Shutdown() {
214  agent_cfg_->cfg_vm_table()->RegisterPreFilter(NULL);
215  agent_cfg_->cfg_vn_table()->RegisterPreFilter(NULL);
216  agent_cfg_->cfg_vm_interface_table()->RegisterPreFilter(NULL);
217  agent_cfg_->cfg_acl_table()->RegisterPreFilter(NULL);
218  agent_cfg_->cfg_service_instance_table()->RegisterPreFilter(NULL);
219  agent_cfg_->cfg_service_template_table()->RegisterPreFilter(NULL);
220  agent_cfg_->cfg_security_group_table()->RegisterPreFilter(NULL);
221  agent_cfg_->cfg_logical_port_table()->RegisterPreFilter(NULL);
222  agent_cfg_->cfg_physical_device_table()->RegisterPreFilter(NULL);
223  agent_cfg_->cfg_health_check_table()->RegisterPreFilter(NULL);
224  agent_cfg_->cfg_qos_table()->RegisterPreFilter(NULL);
225  agent_cfg_->cfg_forwarding_class_table()->RegisterPreFilter(NULL);
226  agent_cfg_->cfg_qos_queue_table()->RegisterPreFilter(NULL);
227  agent_cfg_->cfg_bridge_domain_table()->RegisterPreFilter(NULL);
228  agent_cfg_->cfg_slo_table()->RegisterPreFilter(NULL);
229  agent_cfg_->cfg_port_tuple_table()->RegisterPreFilter(NULL);
230  agent_cfg_->cfg_policy_set_table()->RegisterPreFilter(NULL);
231  agent_cfg_->cfg_firewall_policy_table()->RegisterPreFilter(NULL);
232  agent_cfg_->cfg_firewall_rule_table()->RegisterPreFilter(NULL);
233  agent_cfg_->cfg_tag_table()->RegisterPreFilter(NULL);
234  agent_cfg_->cfg_multicast_policy_table()->RegisterPreFilter(NULL);
235 }
AgentConfig::cfg_port_tuple_table
IFMapAgentTable * cfg_port_tuple_table() const
Definition: cfg_init.h:154
AgentConfig::cfg_forwarding_class_table
IFMapAgentTable * cfg_forwarding_class_table() const
Definition: cfg_init.h:94
MacAddress::ZeroMac
static const MacAddress & ZeroMac()
Definition: mac_address.h:158
cfg_filter.h
IFMapIdentifier::IsPropertySet
bool IsPropertySet(int id) const
Definition: ifmap_object.h:99
CfgFilter::Shutdown
void Shutdown()
Definition: cfg_filter.cc:213
DBRequest::data
std::unique_ptr< DBRequestData > data
Definition: db_table.h:49
agent_db.h
AgentConfig::cfg_service_template_table
IFMapAgentTable * cfg_service_template_table() const
Definition: cfg_init.h:58
CfgFilter::GetIdPermsPropertyId
int GetIdPermsPropertyId(DBTable *table) const
Definition: cfg_filter.cc:55
MacAddress::ToString
std::string ToString() const
Definition: mac_address.cc:53
AgentConfig::cfg_physical_device_table
IFMapAgentTable * cfg_physical_device_table() const
Definition: cfg_init.h:78
AgentConfig::cfg_vm_interface_table
IFMapAgentTable * cfg_vm_interface_table() const
Definition: cfg_init.h:22
CfgFilter::Init
void Init()
Definition: cfg_filter.cc:148
DBRequest::key
std::unique_ptr< DBRequestKey > key
Definition: db_table.h:48
AgentConfig::cfg_tag_table
IFMapAgentTable * cfg_tag_table() const
Definition: cfg_init.h:134
ifmap_table.h
AgentConfig::cfg_multicast_policy_table
IFMapAgentTable * cfg_multicast_policy_table() const
Definition: cfg_init.h:158
DBRequest::oper
DBOperation oper
Definition: db_table.h:42
CfgFilter::~CfgFilter
virtual ~CfgFilter()
Definition: cfg_filter.cc:32
CfgFilter::CheckVmInterfaceProperty
bool CheckVmInterfaceProperty(DBTable *table, const IFMapIdentifier *req_id, DBRequest *req)
Definition: cfg_filter.cc:130
DBTableBase::name
const std::string & name() const
Definition: db_table.h:110
CfgFilter::agent_cfg_
AgentConfig * agent_cfg_
Definition: cfg_filter.h:21
CfgFilter::CheckProperty
bool CheckProperty(DBTable *table, IFMapNode *node, DBRequest *req)
Definition: cfg_filter.cc:101
AgentConfig::cfg_firewall_rule_table
IFMapAgentTable * cfg_firewall_rule_table() const
Definition: cfg_init.h:118
AgentConfig::cfg_qos_queue_table
IFMapAgentTable * cfg_qos_queue_table() const
Definition: cfg_init.h:90
AgentConfig::cfg_policy_set_table
IFMapAgentTable * cfg_policy_set_table() const
Definition: cfg_init.h:110
AgentConfig::cfg_health_check_table
IFMapAgentTable * cfg_health_check_table() const
Definition: cfg_init.h:106
AgentConfig::cfg_logical_port_table
IFMapAgentTable * cfg_logical_port_table() const
Definition: cfg_init.h:66
AgentConfig::cfg_firewall_policy_table
IFMapAgentTable * cfg_firewall_policy_table() const
Definition: cfg_init.h:114
AgentConfig::cfg_qos_table
IFMapAgentTable * cfg_qos_table() const
Definition: cfg_init.h:82
ifmap_link.h
CfgFilter::CheckIdPermsProperty
bool CheckIdPermsProperty(DBTable *table, const IFMapIdentifier *req_id, DBRequest *req, int property_id)
Definition: cfg_filter.cc:35
AgentConfig::cfg_acl_table
IFMapAgentTable * cfg_acl_table() const
Definition: cfg_init.h:28
IFMapAgentTable::IFMapAgentData::content
std::unique_ptr< IFMapObject > content
Definition: ifmap_agent_table.h:34
CfgFilter::CfgFilter
CfgFilter(AgentConfig *cfg)
Definition: cfg_filter.cc:29
AgentConfig::cfg_bridge_domain_table
IFMapAgentTable * cfg_bridge_domain_table() const
Definition: cfg_init.h:98
LOG
#define LOG(_Level, _Msg)
Definition: logging.h:33
parse_object.h
AgentConfig::cfg_vn_table
IFMapAgentTable * cfg_vn_table() const
Definition: cfg_init.h:26
agent_cmn.h
AgentConfig::cfg_slo_table
IFMapAgentTable * cfg_slo_table() const
Definition: cfg_init.h:150
IFMapAgentTable::RegisterPreFilter
void RegisterPreFilter(PreFilterFn fn)
Definition: ifmap_agent_table.h:52
AgentConfig::cfg_vm_table
IFMapAgentTable * cfg_vm_table() const
Definition: cfg_init.h:25
AgentConfig::cfg_service_instance_table
IFMapAgentTable * cfg_service_instance_table() const
Definition: cfg_init.h:70
AgentConfig::cfg_security_group_table
IFMapAgentTable * cfg_security_group_table() const
Definition: cfg_init.h:74
cfg_init.h
ifmap_agent_table.h