@@ -49,7 +49,7 @@ source $TOP_DIR/lib/cinder

 source $TOP_DIR/lib/swift

 source $TOP_DIR/lib/ceilometer

 source $TOP_DIR/lib/heat

-source $TOP_DIR/lib/neutron

+source $TOP_DIR/lib/neutron-legacy

 source $TOP_DIR/lib/ironic

 source $TOP_DIR/lib/trove

@@ -166,7 +166,7 @@ Scripts

 * `lib/ironic <lib/ironic.html>`__

 * `lib/keystone <lib/keystone.html>`__

 * `lib/ldap <lib/ldap.html>`__

-* `lib/neutron <lib/neutron.html>`__

+* `lib/neutron-legacy <lib/neutron-legacy.html>`__

 * `lib/nova <lib/nova.html>`__

 * `lib/oslo <lib/oslo.html>`__

 * `lib/rpc\_backend <lib/rpc_backend.html>`__

@@ -32,7 +32,7 @@ source $TOP_DIR/functions

 # Import project functions

 source $TOP_DIR/lib/cinder

-source $TOP_DIR/lib/neutron

+source $TOP_DIR/lib/neutron-legacy

 # Import configuration

 source $TOP_DIR/openrc

@@ -37,7 +37,7 @@ source $TOP_DIR/eucarc

 source $TOP_DIR/exerciserc

 # Import project functions

-source $TOP_DIR/lib/neutron

+source $TOP_DIR/lib/neutron-legacy

 # If nova api is not enabled we exit with exitcode 55 so that

 # the exercise is skipped

@@ -31,7 +31,7 @@ source $TOP_DIR/functions

 source $TOP_DIR/openrc

 # Import project functions

-source $TOP_DIR/lib/neutron

+source $TOP_DIR/lib/neutron-legacy

 # Import exercise configuration

 source $TOP_DIR/exerciserc

@@ -49,7 +49,7 @@ source $TOP_DIR/functions

 source $TOP_DIR/openrc

 # Import neutron functions

-source $TOP_DIR/lib/neutron

+source $TOP_DIR/lib/neutron-legacy

 # If neutron is not enabled we exit with exitcode 55, which means exercise is skipped.

 neutron_plugin_check_adv_test_requirements || exit 55

@@ -32,7 +32,7 @@ source $TOP_DIR/openrc

 # Import project functions

 source $TOP_DIR/lib/cinder

-source $TOP_DIR/lib/neutron

+source $TOP_DIR/lib/neutron-legacy

 # Import exercise configuration

 source $TOP_DIR/exerciserc

deleted file mode 100755

@@ -1,1467 +0,0 @@

-#!/bin/bash

-#

-# lib/neutron

-# functions - functions specific to neutron

-

-# Dependencies:

-# ``functions`` file

-# ``DEST`` must be defined

-# ``STACK_USER`` must be defined

-

-# ``stack.sh`` calls the entry points in this order:

-#

-# - install_neutron_agent_packages

-# - install_neutronclient

-# - install_neutron

-# - install_neutron_third_party

-# - configure_neutron

-# - init_neutron

-# - configure_neutron_third_party

-# - init_neutron_third_party

-# - start_neutron_third_party

-# - create_nova_conf_neutron

-# - start_neutron_service_and_check

-# - check_neutron_third_party_integration

-# - start_neutron_agents

-# - create_neutron_initial_network

-# - setup_neutron_debug

-#

-# ``unstack.sh`` calls the entry points in this order:

-#

-# - teardown_neutron_debug

-# - stop_neutron

-# - stop_neutron_third_party

-# - cleanup_neutron

-

-# Functions in lib/neutron are classified into the following categories:

-#

-# - entry points (called from stack.sh or unstack.sh)

-# - internal functions

-# - neutron exercises

-# - 3rd party programs

-

-

-# Neutron Networking

-# ------------------

-

-# Make sure that neutron is enabled in ``ENABLED_SERVICES``.  If you want

-# to run Neutron on this host, make sure that q-svc is also in

-# ``ENABLED_SERVICES``.

-#

-# See "Neutron Network Configuration" below for additional variables

-# that must be set in localrc for connectivity across hosts with

-# Neutron.

-#

-# With Neutron networking the NETWORK_MANAGER variable is ignored.

-

-# Settings

-# --------

-

-# Timeout value in seconds to wait for IPv6 gateway configuration

-GATEWAY_TIMEOUT=30

-

-

-# Neutron Network Configuration

-# -----------------------------

-

-# Subnet IP version

-IP_VERSION=${IP_VERSION:-4}

-# Validate IP_VERSION

-if [[ $IP_VERSION != "4" ]] && [[ $IP_VERSION != "6" ]] && [[ $IP_VERSION != "4+6" ]]; then

-    die $LINENO "IP_VERSION must be either 4, 6, or 4+6"

-fi

-# Gateway and subnet defaults, in case they are not customized in localrc

-NETWORK_GATEWAY=${NETWORK_GATEWAY:-10.0.0.1}

-PUBLIC_NETWORK_GATEWAY=${PUBLIC_NETWORK_GATEWAY:-172.24.4.1}

-PRIVATE_SUBNET_NAME=${PRIVATE_SUBNET_NAME:-"private-subnet"}

-PUBLIC_SUBNET_NAME=${PUBLIC_SUBNET_NAME:-"public-subnet"}

-

-if is_ssl_enabled_service "neutron" || is_service_enabled tls-proxy; then

-    Q_PROTOCOL="https"

-fi

-

-# Generate 40-bit IPv6 Global ID to comply with RFC 4193

-IPV6_GLOBAL_ID=`uuidgen | sed s/-//g | cut -c 23- | sed -e "s/\(..\)\(....\)\(....\)/\1:\2:\3/"`

-

-# IPv6 gateway and subnet defaults, in case they are not customized in localrc

-IPV6_RA_MODE=${IPV6_RA_MODE:-slaac}

-IPV6_ADDRESS_MODE=${IPV6_ADDRESS_MODE:-slaac}

-IPV6_PUBLIC_SUBNET_NAME=${IPV6_PUBLIC_SUBNET_NAME:-ipv6-public-subnet}

-IPV6_PRIVATE_SUBNET_NAME=${IPV6_PRIVATE_SUBNET_NAME:-ipv6-private-subnet}

-FIXED_RANGE_V6=${FIXED_RANGE_V6:-fd$IPV6_GLOBAL_ID::/64}

-IPV6_PRIVATE_NETWORK_GATEWAY=${IPV6_PRIVATE_NETWORK_GATEWAY:-fd$IPV6_GLOBAL_ID::1}

-IPV6_PUBLIC_RANGE=${IPV6_PUBLIC_RANGE:-fe80:cafe:cafe::/64}

-IPV6_PUBLIC_NETWORK_GATEWAY=${IPV6_PUBLIC_NETWORK_GATEWAY:-fe80:cafe:cafe::2}

-# IPV6_ROUTER_GW_IP must be defined when IP_VERSION=4+6 as it cannot be

-# obtained conventionally until the l3-agent has support for dual-stack

-# TODO (john-davidge) Remove once l3-agent supports dual-stack

-IPV6_ROUTER_GW_IP=${IPV6_ROUTER_GW_IP:-fe80:cafe:cafe::1}

-

-# Set up default directories

-GITDIR["python-neutronclient"]=$DEST/python-neutronclient

-

-

-NEUTRON_DIR=$DEST/neutron

-NEUTRON_FWAAS_DIR=$DEST/neutron-fwaas

-NEUTRON_LBAAS_DIR=$DEST/neutron-lbaas

-NEUTRON_VPNAAS_DIR=$DEST/neutron-vpnaas

-NEUTRON_AUTH_CACHE_DIR=${NEUTRON_AUTH_CACHE_DIR:-/var/cache/neutron}

-

-# Support entry points installation of console scripts

-if [[ -d $NEUTRON_DIR/bin/neutron-server ]]; then

-    NEUTRON_BIN_DIR=$NEUTRON_DIR/bin

-else

-    NEUTRON_BIN_DIR=$(get_python_exec_prefix)

-fi

-

-NEUTRON_CONF_DIR=/etc/neutron

-NEUTRON_CONF=$NEUTRON_CONF_DIR/neutron.conf

-export NEUTRON_TEST_CONFIG_FILE=${NEUTRON_TEST_CONFIG_FILE:-"$NEUTRON_CONF_DIR/debug.ini"}

-

-# Agent binaries.  Note, binary paths for other agents are set in per-service

-# scripts in lib/neutron_plugins/services/

-AGENT_DHCP_BINARY="$NEUTRON_BIN_DIR/neutron-dhcp-agent"

-AGENT_L3_BINARY=${AGENT_L3_BINARY:-"$NEUTRON_BIN_DIR/neutron-l3-agent"}

-AGENT_META_BINARY="$NEUTRON_BIN_DIR/neutron-metadata-agent"

-

-# Agent config files. Note, plugin-specific Q_PLUGIN_CONF_FILE is set and

-# loaded from per-plugin  scripts in lib/neutron_plugins/

-Q_DHCP_CONF_FILE=$NEUTRON_CONF_DIR/dhcp_agent.ini

-Q_L3_CONF_FILE=$NEUTRON_CONF_DIR/l3_agent.ini

-Q_FWAAS_CONF_FILE=$NEUTRON_CONF_DIR/fwaas_driver.ini

-Q_VPN_CONF_FILE=$NEUTRON_CONF_DIR/vpn_agent.ini

-Q_META_CONF_FILE=$NEUTRON_CONF_DIR/metadata_agent.ini

-

-# Default name for Neutron database

-Q_DB_NAME=${Q_DB_NAME:-neutron}

-# Default Neutron Plugin

-Q_PLUGIN=${Q_PLUGIN:-ml2}

-# Default Neutron Port

-Q_PORT=${Q_PORT:-9696}

-# Default Neutron Internal Port when using TLS proxy

-Q_PORT_INT=${Q_PORT_INT:-19696}

-# Default Neutron Host

-Q_HOST=${Q_HOST:-$SERVICE_HOST}

-# Default protocol

-Q_PROTOCOL=${Q_PROTOCOL:-$SERVICE_PROTOCOL}

-# Default admin username

-Q_ADMIN_USERNAME=${Q_ADMIN_USERNAME:-neutron}

-# Default auth strategy

-Q_AUTH_STRATEGY=${Q_AUTH_STRATEGY:-keystone}

-# Use namespace or not

-Q_USE_NAMESPACE=${Q_USE_NAMESPACE:-True}

-# RHEL's support for namespaces requires using veths with ovs

-Q_OVS_USE_VETH=${Q_OVS_USE_VETH:-False}

-Q_USE_ROOTWRAP=${Q_USE_ROOTWRAP:-True}

-Q_USE_ROOTWRAP_DAEMON=$(trueorfalse True Q_USE_ROOTWRAP_DAEMON)

-# Meta data IP

-Q_META_DATA_IP=${Q_META_DATA_IP:-$SERVICE_HOST}

-# Allow Overlapping IP among subnets

-Q_ALLOW_OVERLAPPING_IP=${Q_ALLOW_OVERLAPPING_IP:-True}

-# Use neutron-debug command

-Q_USE_DEBUG_COMMAND=${Q_USE_DEBUG_COMMAND:-False}

-# The name of the default q-l3 router

-Q_ROUTER_NAME=${Q_ROUTER_NAME:-router1}

-# nova vif driver that all plugins should use

-NOVA_VIF_DRIVER=${NOVA_VIF_DRIVER:-"nova.virt.libvirt.vif.LibvirtGenericVIFDriver"}

-Q_NOTIFY_NOVA_PORT_STATUS_CHANGES=${Q_NOTIFY_NOVA_PORT_STATUS_CHANGES:-True}

-Q_NOTIFY_NOVA_PORT_DATA_CHANGES=${Q_NOTIFY_NOVA_PORT_DATA_CHANGES:-True}

-VIF_PLUGGING_IS_FATAL=${VIF_PLUGGING_IS_FATAL:-True}

-VIF_PLUGGING_TIMEOUT=${VIF_PLUGGING_TIMEOUT:-300}

-# Specify if the initial private and external networks should be created

-NEUTRON_CREATE_INITIAL_NETWORKS=${NEUTRON_CREATE_INITIAL_NETWORKS:-True}

-

-## Provider Network Information

-PROVIDER_SUBNET_NAME=${PROVIDER_SUBNET_NAME:-"provider_net"}

-

-# Use flat providernet for public network

-#

-# If Q_USE_PROVIDERNET_FOR_PUBLIC=True, use a flat provider network

-# for external interface of neutron l3-agent.  In that case,

-# PUBLIC_PHYSICAL_NETWORK specifies provider:physical_network value

-# used for the network.  In case of ofagent, you should add the

-# corresponding entry to your OFAGENT_PHYSICAL_INTERFACE_MAPPINGS.

-# For openvswitch agent, you should add the corresponding entry to

-# your OVS_BRIDGE_MAPPINGS.

-#

-# eg.  (ofagent)

-#    Q_USE_PROVIDERNET_FOR_PUBLIC=True

-#    Q_USE_PUBLIC_VETH=True

-#    PUBLIC_PHYSICAL_NETWORK=public

-#    OFAGENT_PHYSICAL_INTERFACE_MAPPINGS=public:veth-pub-int

-#

-# eg.  (openvswitch agent)

-#    Q_USE_PROVIDERNET_FOR_PUBLIC=True

-#    PUBLIC_PHYSICAL_NETWORK=public

-#    OVS_BRIDGE_MAPPINGS=public:br-ex

-Q_USE_PROVIDERNET_FOR_PUBLIC=${Q_USE_PROVIDERNET_FOR_PUBLIC:-False}

-PUBLIC_PHYSICAL_NETWORK=${PUBLIC_PHYSICAL_NETWORK:-public}

-

-# If Q_USE_PUBLIC_VETH=True, create and use a veth pair instead of

-# PUBLIC_BRIDGE.  This is intended to be used with

-# Q_USE_PROVIDERNET_FOR_PUBLIC=True.

-Q_USE_PUBLIC_VETH=${Q_USE_PUBLIC_VETH:-False}

-Q_PUBLIC_VETH_EX=${Q_PUBLIC_VETH_EX:-veth-pub-ex}

-Q_PUBLIC_VETH_INT=${Q_PUBLIC_VETH_INT:-veth-pub-int}

-

-# The next two variables are configured by plugin

-# e.g.  _configure_neutron_l3_agent or lib/neutron_plugins/*

-#

-# The plugin supports L3.

-Q_L3_ENABLED=${Q_L3_ENABLED:-False}

-# L3 routers exist per tenant

-Q_L3_ROUTER_PER_TENANT=${Q_L3_ROUTER_PER_TENANT:-False}

-

-# List of config file names in addition to the main plugin config file

-# See _configure_neutron_common() for details about setting it up

-declare -a Q_PLUGIN_EXTRA_CONF_FILES

-

-# List of (optional) config files for VPN device drivers to use with

-# the neutron-q-vpn agent

-declare -a Q_VPN_EXTRA_CONF_FILES

-

-

-Q_RR_CONF_FILE=$NEUTRON_CONF_DIR/rootwrap.conf

-if [[ "$Q_USE_ROOTWRAP" == "False" ]]; then

-    Q_RR_COMMAND="sudo"

-else

-    NEUTRON_ROOTWRAP=$(get_rootwrap_location neutron)

-    Q_RR_COMMAND="sudo $NEUTRON_ROOTWRAP $Q_RR_CONF_FILE"

-    if [[ "$Q_USE_ROOTWRAP_DAEMON" == "True" ]]; then

-        Q_RR_DAEMON_COMMAND="sudo $NEUTRON_ROOTWRAP-daemon $Q_RR_CONF_FILE"

-    fi

-fi

-

-

-# Distributed Virtual Router (DVR) configuration

-# Can be:

-# - ``legacy``   - No DVR functionality

-# - ``dvr_snat`` - Controller or single node DVR

-# - ``dvr``      - Compute node in multi-node DVR

-#

-Q_DVR_MODE=${Q_DVR_MODE:-legacy}

-if [[ "$Q_DVR_MODE" != "legacy" ]]; then

-    Q_ML2_PLUGIN_MECHANISM_DRIVERS=openvswitch,linuxbridge,l2population

-fi

-

-# Provider Network Configurations

-# --------------------------------

-

-# The following variables control the Neutron ML2 plugins' allocation

-# of tenant networks and availability of provider networks. If these

-# are not configured in ``localrc``, tenant networks will be local to

-# the host (with no remote connectivity), and no physical resources

-# will be available for the allocation of provider networks.

-

-# To disable tunnels (GRE or VXLAN) for tenant networks,

-# set to False in ``local.conf``.

-# GRE tunnels are only supported by the openvswitch.

-ENABLE_TENANT_TUNNELS=${ENABLE_TENANT_TUNNELS:-True}

-

-# If using GRE tunnels for tenant networks, specify the range of

-# tunnel IDs from which tenant networks are allocated. Can be

-# overriden in ``localrc`` in necesssary.

-TENANT_TUNNEL_RANGES=${TENANT_TUNNEL_RANGES:-1:1000}

-

-# To use VLANs for tenant networks, set to True in localrc. VLANs

-# are supported by the ML2 plugins, requiring additional configuration

-# described below.

-ENABLE_TENANT_VLANS=${ENABLE_TENANT_VLANS:-False}

-

-# If using VLANs for tenant networks, set in ``localrc`` to specify

-# the range of VLAN VIDs from which tenant networks are

-# allocated. An external network switch must be configured to

-# trunk these VLANs between hosts for multi-host connectivity.

-#

-# Example: ``TENANT_VLAN_RANGE=1000:1999``

-TENANT_VLAN_RANGE=${TENANT_VLAN_RANGE:-}

-

-# If using VLANs for tenant networks, or if using flat or VLAN

-# provider networks, set in ``localrc`` to the name of the physical

-# network, and also configure ``OVS_PHYSICAL_BRIDGE`` for the

-# openvswitch agent or ``LB_PHYSICAL_INTERFACE`` for the linuxbridge

-# agent, as described below.

-#

-# Example: ``PHYSICAL_NETWORK=default``

-PHYSICAL_NETWORK=${PHYSICAL_NETWORK:-}

-

-# With the openvswitch agent, if using VLANs for tenant networks,

-# or if using flat or VLAN provider networks, set in ``localrc`` to

-# the name of the OVS bridge to use for the physical network. The

-# bridge will be created if it does not already exist, but a

-# physical interface must be manually added to the bridge as a

-# port for external connectivity.

-#

-# Example: ``OVS_PHYSICAL_BRIDGE=br-eth1``

-OVS_PHYSICAL_BRIDGE=${OVS_PHYSICAL_BRIDGE:-}

-

-# With the linuxbridge agent, if using VLANs for tenant networks,

-# or if using flat or VLAN provider networks, set in ``localrc`` to

-# the name of the network interface to use for the physical

-# network.

-#

-# Example: ``LB_PHYSICAL_INTERFACE=eth1``

-LB_PHYSICAL_INTERFACE=${LB_PHYSICAL_INTERFACE:-}

-

-# When Neutron tunnels are enabled it is needed to specify the

-# IP address of the end point in the local server. This IP is set

-# by default to the same IP address that the HOST IP.

-# This variable can be used to specify a different end point IP address

-# Example: ``TUNNEL_ENDPOINT_IP=1.1.1.1``

-TUNNEL_ENDPOINT_IP=${TUNNEL_ENDPOINT_IP:-$HOST_IP}

-

-# With the openvswitch plugin, set to True in ``localrc`` to enable

-# provider GRE tunnels when ``ENABLE_TENANT_TUNNELS`` is False.

-#

-# Example: ``OVS_ENABLE_TUNNELING=True``

-OVS_ENABLE_TUNNELING=${OVS_ENABLE_TUNNELING:-$ENABLE_TENANT_TUNNELS}

-

-# Use DHCP agent for providing metadata service in the case of

-# without L3 agent (No Route Agent), set to True in localrc.

-ENABLE_ISOLATED_METADATA=${ENABLE_ISOLATED_METADATA:-False}

-

-# Add a static route as dhcp option, so the request to 169.254.169.254

-# will be able to reach through a route(DHCP agent)

-# This option require ENABLE_ISOLATED_METADATA = True

-ENABLE_METADATA_NETWORK=${ENABLE_METADATA_NETWORK:-False}

-# Neutron plugin specific functions

-# ---------------------------------

-

-# Please refer to ``lib/neutron_plugins/README.md`` for details.

-source $TOP_DIR/lib/neutron_plugins/$Q_PLUGIN

-

-# Agent loadbalancer service plugin functions

-# -------------------------------------------

-

-# Hardcoding for 1 service plugin for now

-source $TOP_DIR/lib/neutron_plugins/services/loadbalancer

-

-# Agent metering service plugin functions

-# -------------------------------------------

-

-# Hardcoding for 1 service plugin for now

-source $TOP_DIR/lib/neutron_plugins/services/metering

-

-# VPN service plugin functions

-# -------------------------------------------

-# Hardcoding for 1 service plugin for now

-source $TOP_DIR/lib/neutron_plugins/services/vpn

-

-# Firewall Service Plugin functions

-# ---------------------------------

-source $TOP_DIR/lib/neutron_plugins/services/firewall

-

-# Use security group or not

-if has_neutron_plugin_security_group; then

-    Q_USE_SECGROUP=${Q_USE_SECGROUP:-True}

-else

-    Q_USE_SECGROUP=False

-fi

-

-# Tell Tempest this project is present

-TEMPEST_SERVICES+=,neutron

-

-

-# Save trace setting

-XTRACE=$(set +o | grep xtrace)

-set +o xtrace

-

-

-# Functions

-# ---------

-

-function _determine_config_server {

-    local cfg_file

-    local opts="--config-file $NEUTRON_CONF --config-file /$Q_PLUGIN_CONF_FILE"

-    for cfg_file in ${Q_PLUGIN_EXTRA_CONF_FILES[@]}; do

-        opts+=" --config-file /$cfg_file"

-    done

-    echo "$opts"

-}

-

-function _determine_config_vpn {

-    local cfg_file

-    local opts="--config-file $NEUTRON_CONF --config-file=$Q_L3_CONF_FILE --config-file=$Q_VPN_CONF_FILE"

-    if is_service_enabled q-fwaas; then

-        opts+=" --config-file $Q_FWAAS_CONF_FILE"

-    fi

-    for cfg_file in ${Q_VPN_EXTRA_CONF_FILES[@]}; do

-        opts+=" --config-file $cfg_file"

-    done

-    echo "$opts"

-

-}

-

-function _determine_config_l3 {

-    local opts="--config-file $NEUTRON_CONF --config-file=$Q_L3_CONF_FILE"

-    if is_service_enabled q-fwaas; then

-        opts+=" --config-file $Q_FWAAS_CONF_FILE"

-    fi

-    echo "$opts"

-}

-

-# For services and agents that require it, dynamically construct a list of

-# --config-file arguments that are passed to the binary.

-function determine_config_files {

-    local opts=""

-    case "$1" in

-        "neutron-server") opts="$(_determine_config_server)" ;;

-        "neutron-vpn-agent") opts="$(_determine_config_vpn)" ;;

-        "neutron-l3-agent") opts="$(_determine_config_l3)" ;;

-    esac

-    if [ -z "$opts" ] ; then

-        die $LINENO "Could not determine config files for $1."

-    fi

-    echo "$opts"

-}

-

-# Test if any Neutron services are enabled

-# is_neutron_enabled

-function is_neutron_enabled {

-    [[ ,${ENABLED_SERVICES} =~ ,"q-" ]] && return 0

-    return 1

-}

-

-# configure_neutron()

-# Set common config for all neutron server and agents.

-function configure_neutron {

-    _configure_neutron_common

-    iniset_rpc_backend neutron $NEUTRON_CONF

-

-    # goes before q-svc to init Q_SERVICE_PLUGIN_CLASSES

-    if is_service_enabled q-lbaas; then

-        _configure_neutron_lbaas

-    fi

-    if is_service_enabled q-metering; then

-        _configure_neutron_metering

-    fi

-    if is_service_enabled q-vpn; then

-        _configure_neutron_vpn

-    fi

-    if is_service_enabled q-fwaas; then

-        _configure_neutron_fwaas

-    fi

-    if is_service_enabled q-agt q-svc; then

-        _configure_neutron_service

-    fi

-    if is_service_enabled q-agt; then

-        _configure_neutron_plugin_agent

-    fi

-    if is_service_enabled q-dhcp; then

-        _configure_neutron_dhcp_agent

-    fi

-    if is_service_enabled q-l3; then

-        _configure_neutron_l3_agent

-    fi

-    if is_service_enabled q-meta; then

-        _configure_neutron_metadata_agent

-    fi

-

-    if [[ "$Q_DVR_MODE" != "legacy" ]]; then

-        _configure_dvr

-    fi

-    if is_service_enabled ceilometer; then

-        _configure_neutron_ceilometer_notifications

-    fi

-

-    _configure_neutron_debug_command

-}

-

-function create_nova_conf_neutron {

-    iniset $NOVA_CONF DEFAULT network_api_class "nova.network.neutronv2.api.API"

-    iniset $NOVA_CONF neutron admin_username "$Q_ADMIN_USERNAME"

-    iniset $NOVA_CONF neutron admin_password "$SERVICE_PASSWORD"

-    iniset $NOVA_CONF neutron admin_auth_url "$KEYSTONE_SERVICE_PROTOCOL://$KEYSTONE_SERVICE_HOST:$KEYSTONE_AUTH_PORT/v2.0"

-    iniset $NOVA_CONF neutron auth_strategy "$Q_AUTH_STRATEGY"

-    iniset $NOVA_CONF neutron admin_tenant_name "$SERVICE_TENANT_NAME"

-    iniset $NOVA_CONF neutron region_name "$REGION_NAME"

-    iniset $NOVA_CONF neutron url "${Q_PROTOCOL}://$Q_HOST:$Q_PORT"

-

-    if [[ "$Q_USE_SECGROUP" == "True" ]]; then

-        LIBVIRT_FIREWALL_DRIVER=nova.virt.firewall.NoopFirewallDriver

-        iniset $NOVA_CONF DEFAULT firewall_driver $LIBVIRT_FIREWALL_DRIVER

-        iniset $NOVA_CONF DEFAULT security_group_api neutron

-    fi

-

-    # set NOVA_VIF_DRIVER and optionally set options in nova_conf

-    neutron_plugin_create_nova_conf

-

-    iniset $NOVA_CONF libvirt vif_driver "$NOVA_VIF_DRIVER"

-    iniset $NOVA_CONF DEFAULT linuxnet_interface_driver "$LINUXNET_VIF_DRIVER"

-    if is_service_enabled q-meta; then

-        iniset $NOVA_CONF neutron service_metadata_proxy "True"

-    fi

-

-    iniset $NOVA_CONF DEFAULT vif_plugging_is_fatal "$VIF_PLUGGING_IS_FATAL"

-    iniset $NOVA_CONF DEFAULT vif_plugging_timeout "$VIF_PLUGGING_TIMEOUT"

-}

-

-# create_neutron_cache_dir() - Part of the _neutron_setup_keystone() process

-function create_neutron_cache_dir {

-    # Create cache dir

-    sudo install -d -o $STACK_USER $NEUTRON_AUTH_CACHE_DIR

-    rm -f $NEUTRON_AUTH_CACHE_DIR/*

-}

-

-# create_neutron_accounts() - Set up common required neutron accounts

-

-# Tenant               User       Roles

-# ------------------------------------------------------------------

-# service              neutron    admin        # if enabled

-

-# Migrated from keystone_data.sh

-function create_neutron_accounts {

-    if [[ "$ENABLED_SERVICES" =~ "q-svc" ]]; then

-

-        create_service_user "neutron"

-

-        if [[ "$KEYSTONE_CATALOG_BACKEND" = 'sql' ]]; then

-

-            local neutron_service=$(get_or_create_service "neutron" \

-                "network" "Neutron Service")

-            get_or_create_endpoint $neutron_service \

-                "$REGION_NAME" \

-                "$Q_PROTOCOL://$SERVICE_HOST:$Q_PORT/" \

-                "$Q_PROTOCOL://$SERVICE_HOST:$Q_PORT/" \

-                "$Q_PROTOCOL://$SERVICE_HOST:$Q_PORT/"

-        fi

-    fi

-}

-

-function create_neutron_initial_network {

-    TENANT_ID=$(openstack project list | grep " demo " | get_field 1)

-    die_if_not_set $LINENO TENANT_ID "Failure retrieving TENANT_ID for demo"

-

-    # Allow drivers that need to create an initial network to do so here

-    if type -p neutron_plugin_create_initial_network_profile > /dev/null; then

-        neutron_plugin_create_initial_network_profile $PHYSICAL_NETWORK

-    fi

-

-    if is_provider_network; then

-        die_if_not_set $LINENO PHYSICAL_NETWORK "You must specify the PHYSICAL_NETWORK"

-        die_if_not_set $LINENO PROVIDER_NETWORK_TYPE "You must specifiy the PROVIDER_NETWORK_TYPE"

-        NET_ID=$(neutron net-create $PHYSICAL_NETWORK --tenant_id $TENANT_ID --provider:network_type $PROVIDER_NETWORK_TYPE --provider:physical_network "$PHYSICAL_NETWORK" ${SEGMENTATION_ID:+--provider:segmentation_id $SEGMENTATION_ID} --shared | grep ' id ' | get_field 2)

-        die_if_not_set $LINENO NET_ID "Failure creating NET_ID for $PHYSICAL_NETWORK $TENANT_ID"

-

-        if [[ "$IP_VERSION" =~ 4.* ]]; then

-            SUBNET_ID=$(neutron subnet-create --tenant_id $TENANT_ID --ip_version 4 ${ALLOCATION_POOL:+--allocation-pool $ALLOCATION_POOL} --name $PROVIDER_SUBNET_NAME --gateway $NETWORK_GATEWAY $NET_ID $FIXED_RANGE | grep ' id ' | get_field 2)

-            die_if_not_set $LINENO SUBNET_ID "Failure creating SUBNET_ID for $PROVIDER_SUBNET_NAME $TENANT_ID"

-        fi

-

-        if [[ "$IP_VERSION" =~ .*6 ]]; then

-            SUBNET_V6_ID=$(neutron subnet-create --tenant_id $TENANT_ID --ip_version 6 --ipv6-address-mode slaac --gateway $V6_NETWORK_GATEWAY --name $PROVIDER_SUBNET_NAME_V6 $NET_ID $FIXED_RANGE_V6 | grep 'id' | get_field 2)

-            die_if_not_set $LINENO SUBNET_V6_ID "Failure creating SUBNET_V6_ID for $PROVIDER_SUBNET_NAME_V6 $TENANT_ID"

-        fi

-

-        sudo ip link set $OVS_PHYSICAL_BRIDGE up

-        sudo ip link set br-int up

-        sudo ip link set $PUBLIC_INTERFACE up

-    else

-        NET_ID=$(neutron net-create --tenant-id $TENANT_ID "$PRIVATE_NETWORK_NAME" | grep ' id ' | get_field 2)

-        die_if_not_set $LINENO NET_ID "Failure creating NET_ID for $PRIVATE_NETWORK_NAME $TENANT_ID"

-

-        if [[ "$IP_VERSION" =~ 4.* ]]; then

-            # Create IPv4 private subnet

-            SUBNET_ID=$(_neutron_create_private_subnet_v4)

-        fi

-

-        if [[ "$IP_VERSION" =~ .*6 ]]; then

-            # Create IPv6 private subnet

-            IPV6_SUBNET_ID=$(_neutron_create_private_subnet_v6)

-        fi

-    fi

-

-    if [[ "$Q_L3_ENABLED" == "True" ]]; then

-        # Create a router, and add the private subnet as one of its interfaces

-        if [[ "$Q_L3_ROUTER_PER_TENANT" == "True" ]]; then

-            # create a tenant-owned router.

-            ROUTER_ID=$(neutron router-create --tenant-id $TENANT_ID $Q_ROUTER_NAME | grep ' id ' | get_field 2)

-            die_if_not_set $LINENO ROUTER_ID "Failure creating ROUTER_ID for $TENANT_ID $Q_ROUTER_NAME"

-        else

-            # Plugin only supports creating a single router, which should be admin owned.

-            ROUTER_ID=$(neutron router-create $Q_ROUTER_NAME | grep ' id ' | get_field 2)

-            die_if_not_set $LINENO ROUTER_ID "Failure creating ROUTER_ID for $Q_ROUTER_NAME"

-        fi

-

-        # Create an external network, and a subnet. Configure the external network as router gw

-        if [ "$Q_USE_PROVIDERNET_FOR_PUBLIC" = "True" ]; then

-            EXT_NET_ID=$(neutron net-create "$PUBLIC_NETWORK_NAME" -- --router:external=True --provider:network_type=flat --provider:physical_network=${PUBLIC_PHYSICAL_NETWORK} | grep ' id ' | get_field 2)

-        else

-            EXT_NET_ID=$(neutron net-create "$PUBLIC_NETWORK_NAME" -- --router:external=True | grep ' id ' | get_field 2)

-        fi

-        die_if_not_set $LINENO EXT_NET_ID "Failure creating EXT_NET_ID for $PUBLIC_NETWORK_NAME"

-

-        if [[ "$IP_VERSION" =~ 4.* ]]; then

-            # Configure router for IPv4 public access

-            _neutron_configure_router_v4

-        fi

-

-        if [[ "$IP_VERSION" =~ .*6 ]]; then

-            # Configure router for IPv6 public access

-            _neutron_configure_router_v6

-        fi

-    fi

-}

-

-# init_neutron() - Initialize databases, etc.

-function init_neutron {

-    recreate_database $Q_DB_NAME

-    # Run Neutron db migrations

-    $NEUTRON_BIN_DIR/neutron-db-manage --config-file $NEUTRON_CONF --config-file /$Q_PLUGIN_CONF_FILE upgrade head

-    for svc in fwaas lbaas vpnaas; do

-        if [ "$svc" = "vpnaas" ]; then

-            q_svc="q-vpn"

-        else

-            q_svc="q-$svc"

-        fi

-        if is_service_enabled $q_svc; then

-            $NEUTRON_BIN_DIR/neutron-db-manage --service $svc --config-file $NEUTRON_CONF --config-file /$Q_PLUGIN_CONF_FILE upgrade head

-        fi

-    done

-}

-

-# install_neutron() - Collect source and prepare

-function install_neutron {

-    git_clone $NEUTRON_REPO $NEUTRON_DIR $NEUTRON_BRANCH

-    setup_develop $NEUTRON_DIR

-    if is_service_enabled q-fwaas; then

-        git_clone $NEUTRON_FWAAS_REPO $NEUTRON_FWAAS_DIR $NEUTRON_FWAAS_BRANCH

-        setup_develop $NEUTRON_FWAAS_DIR

-    fi

-    if is_service_enabled q-lbaas; then

-        git_clone $NEUTRON_LBAAS_REPO $NEUTRON_LBAAS_DIR $NEUTRON_LBAAS_BRANCH

-        setup_develop $NEUTRON_LBAAS_DIR

-    fi

-    if is_service_enabled q-vpn; then

-        git_clone $NEUTRON_VPNAAS_REPO $NEUTRON_VPNAAS_DIR $NEUTRON_VPNAAS_BRANCH

-        setup_develop $NEUTRON_VPNAAS_DIR

-    fi

-

-    if [ "$VIRT_DRIVER" == 'xenserver' ]; then

-        local dom0_ip

-        dom0_ip=$(echo "$XENAPI_CONNECTION_URL" | cut -d "/" -f 3-)

-

-        local ssh_dom0

-        ssh_dom0="sudo -u $DOMZERO_USER ssh -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null root@$dom0_ip"

-

-        # Find where the plugins should go in dom0

-        local xen_functions

-        xen_functions=$(cat $TOP_DIR/tools/xen/functions)

-        local plugin_dir

-        plugin_dir=$($ssh_dom0 "$xen_functions; set -eux; xapi_plugin_location")

-

-        # install neutron plugins to dom0

-        tar -czf - -C $NEUTRON_DIR/neutron/plugins/openvswitch/agent/xenapi/etc/xapi.d/plugins/ ./ |

-            $ssh_dom0 "tar -xzf - -C $plugin_dir && chmod a+x $plugin_dir/*"

-    fi

-}

-

-# install_neutronclient() - Collect source and prepare

-function install_neutronclient {

-    if use_library_from_git "python-neutronclient"; then

-        git_clone_by_name "python-neutronclient"

-        setup_dev_lib "python-neutronclient"

-        sudo install -D -m 0644 -o $STACK_USER {${GITDIR["python-neutronclient"]}/tools/,/etc/bash_completion.d/}neutron.bash_completion

-    fi

-}

-

-# install_neutron_agent_packages() - Collect source and prepare

-function install_neutron_agent_packages {

-    # radvd doesn't come with the OS. Install it if the l3 service is enabled.

-    if is_service_enabled q-l3; then

-        install_package radvd

-    fi

-    # install packages that are specific to plugin agent(s)

-    if is_service_enabled q-agt q-dhcp q-l3; then

-        neutron_plugin_install_agent_packages

-    fi

-

-    if is_service_enabled q-lbaas; then

-        neutron_agent_lbaas_install_agent_packages

-    fi

-}

-

-# Start running processes, including screen

-function start_neutron_service_and_check {

-    local cfg_file_options="$(determine_config_files neutron-server)"

-    local service_port=$Q_PORT

-    local service_protocol=$Q_PROTOCOL

-    if is_service_enabled tls-proxy; then

-        service_port=$Q_PORT_INT

-        service_protocol="http"

-    fi

-    # Start the Neutron service

-    run_process q-svc "python $NEUTRON_BIN_DIR/neutron-server $cfg_file_options"

-    echo "Waiting for Neutron to start..."

-    if is_ssl_enabled_service "neutron"; then

-        ssl_ca="--ca-certificate=${SSL_BUNDLE_FILE}"

-    fi

-    if ! timeout $SERVICE_TIMEOUT sh -c "while ! wget ${ssl_ca} --no-proxy -q -O- $service_protocol://$Q_HOST:$service_port; do sleep 1; done"; then

-        die $LINENO "Neutron did not start"

-    fi

-    # Start proxy if enabled

-    if is_service_enabled tls-proxy; then

-        start_tls_proxy '*' $Q_PORT $Q_HOST $Q_PORT_INT &

-    fi

-}

-

-# Start running processes, including screen

-function start_neutron_agents {

-    # Start up the neutron agents if enabled

-    run_process q-agt "python $AGENT_BINARY --config-file $NEUTRON_CONF --config-file /$Q_PLUGIN_CONF_FILE"

-    run_process q-dhcp "python $AGENT_DHCP_BINARY --config-file $NEUTRON_CONF --config-file=$Q_DHCP_CONF_FILE"

-

-    if is_provider_network; then

-        sudo ovs-vsctl --no-wait -- --may-exist add-port $OVS_PHYSICAL_BRIDGE $PUBLIC_INTERFACE

-        sudo ip link set $OVS_PHYSICAL_BRIDGE up

-        sudo ip link set br-int up

-        sudo ip link set $PUBLIC_INTERFACE up

-        if is_ironic_hardware; then

-            for IP in $(ip addr show dev $PUBLIC_INTERFACE | grep ' inet ' | awk '{print $2}'); do

-                sudo ip addr del $IP dev $PUBLIC_INTERFACE

-                sudo ip addr add $IP dev $OVS_PHYSICAL_BRIDGE

-            done

-            sudo route add -net $FIXED_RANGE gw $NETWORK_GATEWAY dev $OVS_PHYSICAL_BRIDGE

-        fi

-    fi

-

-    if is_service_enabled q-vpn; then

-        run_process q-vpn "$AGENT_VPN_BINARY $(determine_config_files neutron-vpn-agent)"

-    else

-        run_process q-l3 "python $AGENT_L3_BINARY $(determine_config_files neutron-l3-agent)"

-    fi

-

-    run_process q-meta "python $AGENT_META_BINARY --config-file $NEUTRON_CONF --config-file=$Q_META_CONF_FILE"

-

-    if [ "$VIRT_DRIVER" = 'xenserver' ]; then

-        # For XenServer, start an agent for the domU openvswitch

-        run_process q-domua "python $AGENT_BINARY --config-file $NEUTRON_CONF --config-file /$Q_PLUGIN_CONF_FILE.domU"

-    fi

-

-    if is_service_enabled q-lbaas; then

-        run_process q-lbaas "python $AGENT_LBAAS_BINARY --config-file $NEUTRON_CONF --config-file=$LBAAS_AGENT_CONF_FILENAME"

-    fi

-

-    if is_service_enabled q-metering; then

-        run_process q-metering "python $AGENT_METERING_BINARY --config-file $NEUTRON_CONF --config-file $METERING_AGENT_CONF_FILENAME"

-    fi

-}

-

-# stop_neutron() - Stop running processes (non-screen)

-function stop_neutron {

-    if is_service_enabled q-dhcp; then

-        stop_process q-dhcp

-        pid=$(ps aux | awk '/[d]nsmasq.+interface=(tap|ns-)/ { print $2 }')

-        [ ! -z "$pid" ] && sudo kill -9 $pid

-    fi

-

-    stop_process q-svc

-    stop_process q-l3

-

-    if is_service_enabled q-meta; then

-        sudo pkill -9 -f neutron-ns-metadata-proxy || :

-        stop_process q-meta

-    fi

-

-    stop_process q-agt

-

-    if is_service_enabled q-lbaas; then

-        neutron_lbaas_stop

-    fi

-    if is_service_enabled q-fwaas; then

-        neutron_fwaas_stop

-    fi

-    if is_service_enabled q-vpn; then

-        neutron_vpn_stop

-    fi

-    if is_service_enabled q-metering; then

-        neutron_metering_stop

-    fi

-}

-

-# cleanup_neutron() - Remove residual data files, anything left over from previous

-# runs that a clean run would need to clean up

-function cleanup_neutron {

-    if is_provider_network && is_ironic_hardware; then

-        for IP in $(ip addr show dev $OVS_PHYSICAL_BRIDGE | grep ' inet ' | awk '{print $2}'); do

-            sudo ip addr del $IP dev $OVS_PHYSICAL_BRIDGE

-            sudo ip addr add $IP dev $PUBLIC_INTERFACE

-        done

-        sudo route del -net $FIXED_RANGE gw $NETWORK_GATEWAY dev $OVS_PHYSICAL_BRIDGE

-    fi

-

-    if is_neutron_ovs_base_plugin; then

-        neutron_ovs_base_cleanup

-    fi

-

-    # delete all namespaces created by neutron

-    for ns in $(sudo ip netns list | grep -o -E '(qdhcp|qrouter|qlbaas|fip|snat)-[0-9a-f-]*'); do

-        sudo ip netns delete ${ns}

-    done

-}

-

-

-function _create_neutron_conf_dir {