Have persistent DHCP leases file on VRs and cleanup /etc/hosts on VM deletion

[nvazquez]

Description

Since the CloudStack virtual router was redesigned on version 4.6 it has been observed that the DHCP leases file is not persistent across network operations. This causes conflicts on guest VMs static IPs, causing these static IPs to not be renewed by the DHCP server running on isolated and VPC networks' virtual routers (dnsmasq). On stopping or destroying a VM, its dhcp/dns records are not removed from the virtual router causing ghost effects.

Fixes #3272
Fixes #3354

Types of changes

• Breaking change (fix or feature that would cause existing functionality to change)
• New feature (non-breaking change which adds functionality)
• Bug fix (non-breaking change which fixes an issue)
• Enhancement (improves an existing feature and functionality)
• Cleanup (Code refactoring and cleanup, that may add test cases)

Screenshots (if appropriate):

How Has This Been Tested?

Tested on local environment, 1x KVM host, Isolated network

• Create VMs on isolated network
• Restart network

[rohityadavcloud]

@blueorangutan package

[blueorangutan]

@rhtyd a Jenkins job has been kicked to build packages. I'll keep you posted as I make progress.

[blueorangutan]

Packaging result: ✖centos6 ✔centos7 ✔debian. JID-2782

[DaanHoogland]

@blueorangutan package

[blueorangutan]

@DaanHoogland a Jenkins job has been kicked to build packages. I'll keep you posted as I make progress.

[blueorangutan]

Packaging result: ✔centos6 ✔centos7 ✔debian. JID-2787

[DaanHoogland]

@blueorangutan test

[blueorangutan]

@DaanHoogland a Trillian-Jenkins test job (centos7 mgmt + kvm-centos7) has been kicked to run smoke tests

[blueorangutan]

Trillian test result (tid-3584)
Environment: kvm-centos7 (x2), Advanced Networking with Mgmt server 7
Total time taken: 30405 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr3351-t3584-kvm-centos7.zip
Smoke tests completed. 68 look OK, 0 have error(s)
Only failed tests results shown below:

Test	Result	Time (s)	Test File

[rohityadavcloud]

@blueorangutan test matrix

[blueorangutan]

@rhtyd a Trillian-Jenkins matrix job (centos6 mgmt + xs71, centos7 mgmt + vmware65, centos7 mgmt + kvmcentos7) has been kicked to run smoke tests

[blueorangutan]

Trillian test result (tid-3587)
Environment: xenserver-71 (x2), Advanced Networking with Mgmt server 7
Total time taken: 34342 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr3351-t3587-xenserver-71.zip
Intermittent failure detected: /marvin/tests/smoke/test_scale_vm.py
Intermittent failure detected: /marvin/tests/smoke/test_volumes.py
Intermittent failure detected: /marvin/tests/smoke/test_vpc_redundant.py
Intermittent failure detected: /marvin/tests/smoke/test_vpc_router_nics.py
Smoke tests completed. 66 look OK, 2 have error(s)
Only failed tests results shown below:

Test	Result	Time (s)	Test File
test_01_scale_vm	Error	17.43	test_scale_vm.py
test_01_create_redundant_VPC_2tiers_4VMs_4IPs_4PF_ACL	Failure	562.10	test_vpc_redundant.py
test_05_rvpc_multi_tiers	Failure	528.05	test_vpc_redundant.py
test_05_rvpc_multi_tiers	Error	567.24	test_vpc_redundant.py

[blueorangutan]

Trillian test result (tid-3589)
Environment: vmware-65u2 (x2), Advanced Networking with Mgmt server 7
Total time taken: 40124 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr3351-t3589-vmware-65u2.zip
Intermittent failure detected: /marvin/tests/smoke/test_public_ip_range.py
Intermittent failure detected: /marvin/tests/smoke/test_templates.py
Intermittent failure detected: /marvin/tests/smoke/test_usage.py
Intermittent failure detected: /marvin/tests/smoke/test_volumes.py
Smoke tests completed. 65 look OK, 3 have error(s)
Only failed tests results shown below:

Test	Result	Time (s)	Test File
test_04_extract_template	Failure	136.54	test_templates.py
ContextSuite context=TestISOUsage>:setup	Error	0.00	test_usage.py
test_06_download_detached_volume	Failure	167.45	test_volumes.py

[onitake]

Is the fix implemented by this PR ready to be tested?
The WIP tag is slightly confusing...
I'd like to test it on one of our affected networks, if possible.

[nvazquez]

Hi @onitake the WIP tag stands for 'Work in progress' which means this is still not ready. Having said that, you can test it now but you may expect new changes

[gildegoma]

@nvazquez the dhcp_release <interface> parameter is missing here

See https://manpages.debian.org/stretch/dnsmasq-utils/dhcp_release.1.en.html

[nvazquez]

Thanks I'll fix this

[rohityadavcloud]

Fixed @gildegoma @nvazquez

[rohityadavcloud]

@nvazquez can you address review comments and also advise if this PR is ready for review and testing?

[rohityadavcloud]

@nvazquez while you're on it, can you also look at another similar issue related to VRs - #3273?

[rohityadavcloud]

@nvazquez can you also fix pylint error:

************* Module cleanuphosts
E: 75,78: Instance of 'Exception' has no 'strerror' member (no-member)
-----------------------------------
Your code has been rated at 9.99/10
+'[' 2 -gt 0 ']'
+echo 'Pylint failed, please check your code'
Pylint failed, please check your code

[rohityadavcloud]

@nvazquez fixes for #3272 and #3354 LGTM, but I found a weird issue:

• Deploy two small VMs
• Destroy one of the small VMs, verify that their entries are not seen in /etc/hosts and /etc/dhcphosts.txt
• Deploy another new small VM
• Verify that the new small VM's entry exists, but not the delete VM's entry suddenly show up as well (possibly something to do with CsDhcp.py and databags, we probably need to either fix in /etc/cloudstack/dhcpentry.json in the VR via the cleanup script, or see DhcpEntryCommand, command setup helper:: createDhcpEntryCommand)

Please continue with the investigation and fix for the above edge-case and also fix for #3273

[nvazquez]

@rhtyd changed the implementation, no need for a new script. Marking entries as 'remove=True' on dhcpentry.json solves the issue. This solves #3272 and #3354.
Fix for #3273 is the only remaining

[rohityadavcloud]

@blueorangutan package

[blueorangutan]

@rhtyd a Jenkins job has been kicked to build packages. I'll keep you posted as I make progress.

[blueorangutan]

Packaging result: ✔centos6 ✔centos7 ✔debian. JID-2826

[rohityadavcloud]

@blueorangutan test

[blueorangutan]

@rhtyd a Trillian-Jenkins test job (centos7 mgmt + kvm-centos7) has been kicked to run smoke tests

[blueorangutan]

Trillian test result (tid-3631)
Environment: kvm-centos7 (x2), Advanced Networking with Mgmt server 7
Total time taken: 32583 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr3351-t3631-kvm-centos7.zip
Intermittent failure detected: /marvin/tests/smoke/test_vpc_redundant.py
Smoke tests completed. 67 look OK, 1 have error(s)
Only failed tests results shown below:

Test	Result	Time (s)	Test File
test_05_rvpc_multi_tiers	Failure	407.69	test_vpc_redundant.py
test_05_rvpc_multi_tiers	Error	433.89	test_vpc_redundant.py

[rohityadavcloud]

Tested Nicolas's latest changes, LGTM for both the bugs. The third one is not started yet.

[rohityadavcloud]

Let's do #3273 in a separate PR.

[anuragaw]

LGTM - Based on code read and test results

[server24]

@nvazquez @rhtyid this breaks Basic Networking (#3497) whenever a VM is stopped or expunged.

[rohityadavcloud]

Can you check and possibly send a PR @nvazquez ? Thanks.

[nvazquez]

Sure I'll take a look tonight

[GabrielBrascher]

@nvazquez has this PR been tested on a shared guest network within a Basic Network Zone? I am facing a null pointer when trying to remove the DHCP entry rule from a VM that is being stopped.

ACS version: 4.11.3

java.lang.NullPointerException
        at org.apache.cloudstack.network.topology.BasicNetworkVisitor.visit(BasicNetworkVisitor.java:201)
        at com.cloud.network.rules.DhcpEntryRules.accept(DhcpEntryRules.java:64)
        at org.apache.cloudstack.network.topology.BasicNetworkTopology.applyRules(BasicNetworkTopology.java:390)
        at org.apache.cloudstack.network.topology.BasicNetworkTopology.removeDhcpEntry(BasicNetworkTopology.java:464)
        at com.cloud.network.element.VirtualRouterElement.removeDhcpEntry(VirtualRouterElement.java:972)
        at org.apache.cloudstack.engine.orchestration.NetworkOrchestrator.cleanupNicDhcpDnsEntry(NetworkOrchestrator.java:2933)

[GabrielBrascher]

Please ignore the message above, just saw the PR #3501 fixing it.

Thanks for the PR @nvazquez.