Ordered ACL output actions

[mab68]

Allow ordered ACL output actions as mentioned in #3468 (Closes #3468).

acls:
    ordered_acl:
        - rule:
            dl_vlan: 100
            actions:
                output:
                    - port: 2
                    - pop_vlans: 1
                    - port: 3

Fix #3389

Allow defining a tunnel without requiring a VLAN, Faucet will pick an unused VID that is larger than the configured VIDs (Closes #3314).
e.g.: The following config will create a tunnel that will be encapsulated with VID 101

vlans:
  vlans:
    vlan100:
      vid: 100
acls:
  tunnel-to-host1:
    - rule:
      actions:
      output:
        tunnel:
          dp: sw1
          port: 1

Tunnel ACLs will pop off the encapsulation after the output action so rules can now be applied after a tunnel action. e.g.: The output to port 6 will not have the tunnel VID applied

acls:
  tunnel_acl:
    - rule:
      ip_proto: 1
      dl_type: 0x0800
      actions:
        output:
          - port: 5
          - tunnel: {dp: sw2, port: 1}
          - port: 6

[codecov]

Codecov Report

Merging #3476 into master will decrease coverage by 0.13%.
The diff coverage is 92.77%.

@@            Coverage Diff             @@
##           master    #3476      +/-   ##
==========================================
- Coverage   92.49%   92.36%   -0.13%     
==========================================
  Files          42       42              
  Lines        7878     8061     +183     
==========================================
+ Hits         7286     7445     +159     
- Misses        592      616      +24     

Impacted Files	Coverage Δ
faucet/port.py	94.46% <11.11%> (-2.37%)	⬇️
faucet/dp.py	95.70% <84.48%> (-0.80%)	⬇️
faucet/valve_acl.py	95.05% <95.92%> (-0.64%)	⬇️
faucet/acl.py	97.57% <97.73%> (-0.19%)	⬇️
faucet/valve.py	94.00% <100.00%> (+0.12%)	⬆️
faucet/valve_of.py	95.71% <0.00%> (-0.31%)	⬇️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update b73ec09...6781b29. Read the comment docs.

[anarkiwi]

Looking into the test failures now - looks like config change detection problems revealed by my refactoring.

[anarkiwi]

Will fix - sorry for the inconvenience.

[anarkiwi]

Should be all sorted now. The FaucetUntaggedPortSwapIPv4InterVLANRouteTest flake is fixed by #3487

[mab68]

This is all sorted on my part too.

[gizmoguy]

LGTM now 👍