Enforce distinct hostnames network

[vishesh92]

Description

Fixes #9775

This PR adds check to ensure we check for unique hostname for other networks in the VPC as well.

This PR also adds another global setting vm.distinct.hostname.scope which sets the scope of resources for which the VMs should have a unique hostname. Default value is network.

Details

This pull request includes several changes to enhance the network domain search functionality and improve the configuration management for VM hostname uniqueness. The most important changes include adding new methods for network domain searches, updating the search builder initialization, and modifying the hostname uniqueness check logic.

Enhancements to network domain search functionality:

• engine/schema/src/main/java/com/cloud/network/dao/NetworkDao.java: Added new methods listByNetworkDomains, listByNetworkDomainsAndAccountIds, and listByNetworkDomainsAndDomainIds to the NetworkDao interface.
• engine/schema/src/main/java/com/cloud/network/dao/NetworkDaoImpl.java: Added NetworkDomainSearch to the NetworkDaoImpl class and initialized it in the init method. Implemented the new methods for network domain searches. [1] [2] [3]

Improvements to VM hostname uniqueness check:

• server/src/main/java/com/cloud/vm/UserVmManager.java: Introduced a new configuration key VmDistinctHostNameScope to manage the scope of hostname uniqueness checks.
• server/src/main/java/com/cloud/vm/UserVmManagerImpl.java: Updated the logic for checking hostname uniqueness to use the new network domain search methods and the VmDistinctHostNameScope configuration. [1] [2]

Mock implementation updates:

• server/src/test/java/com/cloud/vpc/dao/MockNetworkDaoImpl.java: Added mock implementations for the new network domain search methods.

Types of changes

• Breaking change (fix or feature that would cause existing functionality to change)
• New feature (non-breaking change which adds functionality)
• Bug fix (non-breaking change which fixes an issue)
• Enhancement (improves an existing feature and functionality)
• Cleanup (Code refactoring and cleanup, that may add test cases)
• build/CI
• test (unit or integration test code)

Feature/Enhancement Scale or Bug Severity

Feature/Enhancement Scale

• Major
• Minor

Bug Severity

• BLOCKER
• Critical
• Major
• Minor
• Trivial

Screenshots (if appropriate):

How Has This Been Tested?

How did you try to break this feature and the system with this change?

[vishesh92]

@blueorangutan package

[blueorangutan]

@vishesh92 a [SL] Jenkins job has been kicked to build packages. It will be bundled with KVM, XenServer and VMware SystemVM templates. I'll keep you posted as I make progress.

[codecov]

Codecov Report

❌ Patch coverage is 1.25000% with 79 lines in your changes missing coverage. Please review.
✅ Project coverage is 17.54%. Comparing base (f67b738) to head (03f8c2f).
⚠️ Report is 8 commits behind head on main.

Files with missing lines	Patch %	Lines
.../src/main/java/com/cloud/vm/UserVmManagerImpl.java	0.00%	57 Missing ⚠️
...ain/java/com/cloud/network/dao/NetworkDaoImpl.java	0.00%	22 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff              @@
##               main   #10212      +/-   ##
============================================
- Coverage     17.54%   17.54%   -0.01%     
+ Complexity    15483    15482       -1     
============================================
  Files          5897     5897              
  Lines        527484   527554      +70     
  Branches      64432    64441       +9     
============================================
  Hits          92566    92566              
- Misses       424508   424578      +70     
  Partials      10410    10410              

Flag	Coverage Δ
uitests	3.60% <ø> (ø)
unittests	18.60% <1.25%> (-0.01%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[blueorangutan]

Packaging result [SF]: ✔️ el8 ✔️ el9 ✔️ debian ✔️ suse15. SL-JID 12125

[vishesh92]

@blueorangutan package

[blueorangutan]

@vishesh92 a [SL] Jenkins job has been kicked to build packages. It will be bundled with KVM, XenServer and VMware SystemVM templates. I'll keep you posted as I make progress.

[blueorangutan]

Packaging result [SF]: ✔️ el8 ✔️ el9 ✔️ debian ✔️ suse15. SL-JID 12130

[vishesh92]

@blueorangutan package

[blueorangutan]

@vishesh92 a [SL] Jenkins job has been kicked to build packages. It will be bundled with KVM, XenServer and VMware SystemVM templates. I'll keep you posted as I make progress.

[blueorangutan]

Packaging result [SF]: ✔️ el8 ✔️ el9 ✔️ debian ✔️ suse15. SL-JID 12144

[vishesh92]

@blueorangutan test

[blueorangutan]

@vishesh92 a [SL] Trillian-Jenkins test job (ol8 mgmt + kvm-ol8) has been kicked to run smoke tests

[blueorangutan]

[SF] Trillian test result (tid-12146)
Environment: kvm-ol8 (x2), Advanced Networking with Mgmt server ol8
Total time taken: 44378 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr10212-t12146-kvm-ol8.zip
Smoke tests completed. 132 look OK, 1 have errors, 0 did not run
Only failed and skipped tests results shown below:

Test	Result	Time (s)	Test File
test_01_secure_vm_migration	Error	134.42	test_vm_life_cycle.py
test_01_secure_vm_migration	Error	134.42	test_vm_life_cycle.py
test_10_attachAndDetach_iso	Error	12.63	test_vm_life_cycle.py

[DaanHoogland]

clgtm

[Pearl1594]

Could you please help me understand what's the purpose of this global setting, if VM names have to be unique within a network domain?

[vishesh92]

So, the network domain can be same for networks in different domain, account, etc. If a user a launches a VM with the same name in these networks, there can be conflict. This global setting allows the user to set scope for what all networks we need to check when creating a vm.

[harikrishna-patnala]

@vishesh92 can you please add "project" and "vpc" to the scope

[vishesh92]

For project, we specify account_id as the project id. So, this is covered by the account scope. Adding project will make the check complicated.
For networks in a VPC, the network domain is same for all.

[vishesh92]

@blueorangutan package

[blueorangutan]

@vishesh92 a [SL] Jenkins job has been kicked to build packages. It will be bundled with KVM, XenServer and VMware SystemVM templates. I'll keep you posted as I make progress.

[blueorangutan]

Packaging result [SF]: ✖️ el8 ✖️ el9 ✔️ debian ✖️ suse15. SL-JID 15252

[vishesh92]

@blueorangutan package

[blueorangutan]

@vishesh92 a [SL] Jenkins job has been kicked to build packages. It will be bundled with KVM, XenServer and VMware SystemVM templates. I'll keep you posted as I make progress.

[blueorangutan]

Packaging result [SF]: ✔️ el8 ✔️ el9 ✔️ el10 ✔️ debian ✔️ suse15. SL-JID 15273

[vishesh92]

@blueorangutan test

[blueorangutan]

@vishesh92 a [SL] Trillian-Jenkins test job (ol8 mgmt + kvm-ol8) has been kicked to run smoke tests

[blueorangutan]

[SF] Trillian test result (tid-14515)
Environment: kvm-ol8 (x2), zone: Advanced Networking with Mgmt server ol8
Total time taken: 56923 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr10212-t14515-kvm-ol8.zip
Smoke tests completed. 144 look OK, 3 have errors, 0 did not run
Only failed and skipped tests results shown below:

Test	Result	Time (s)	Test File
test_13_retrieve_vr_default_files	Error	1.11	test_diagnostics.py
test_14_retrieve_vr_one_file	Error	1.10	test_diagnostics.py
test_15_retrieve_ssvm_default_files	Error	1.12	test_diagnostics.py
test_16_retrieve_ssvm_single_file	Error	1.14	test_diagnostics.py
test_17_retrieve_cpvm_default_files	Error	1.13	test_diagnostics.py
test_18_retrieve_cpvm_single_file	Error	1.12	test_diagnostics.py
ContextSuite context=TestClusterDRS>:setup	Error	0.00	test_cluster_drs.py
test_list_system_vms_metrics_history	Failure	0.29	test_metrics_api.py

[github-actions]

This pull request has merge conflicts. Dear author, please fix the conflicts and sync your branch with the base branch.

[nvazquez]

@blueorangutan package

[blueorangutan]

@nvazquez a [SL] Jenkins job has been kicked to build packages. It will be bundled with KVM, XenServer and VMware SystemVM templates. I'll keep you posted as I make progress.

[blueorangutan]

Packaging result [SF]: ✔️ el8 ✔️ el9 ✔️ el10 ✔️ debian ✔️ suse15. SL-JID 15364

[nvazquez]

@blueorangutan test

[blueorangutan]

@nvazquez a [SL] Trillian-Jenkins test job (ol8 mgmt + kvm-ol8) has been kicked to run smoke tests

[nvazquez]

LGTM - manually tested these cases:

• Default value: vm.distinct.hostname.scope = network:

  • Created a project and VPC1 and VPC2 under the project with one tier each
  • Created VM with name 'vm1' on VPC1 tier 1
  • Created VM with name 'vm1' on VPC2 tier 1 -> OK (previous behavior preserved)

• Set vm.distinct.hostname.scope = global:

  • Created VPC2 tier 2
  • Tried creating VM with name 'vm1' -> Fails with error: The vm with hostName vm1 already exists in the network domain: cs130cloud.internal; network=Vpc1-Tier1

• Set vm.distinct.hostname.scope = domain:

  • Created subdomain D1 and a domain admin on the new domain, log in as the domain admin:
  • Created Isolated network D1N1 on D1
  • Created VM on D1N1 with name 'vm1'
  • Created Isolated network D1N2 on D1
  • Tried creating VM with name 'vm1' on D1N2 -> Fails with error: The vm with hostName vm1 already exists in the network domain: cs131cloud.internal; network=Isolated-Dom1

• Set vm.distinct.hostname.scope = account:

  • Login as the ROOT admin
  • Create Isolated network
  • Create VM with name 'vm1' on the network
  • Create Isolated network 2
  • Try to create VM with name 'vm1' on Isolated Network 2 -> Fails with error: The vm with hostName vm1 already exists in the network domain: cs2cloud.internal; network=Isolated1-Admin
  • Set vm.distinct.hostname.scope = network
  • Create VM with name 'vm1' on Isolated Network 2 -> OK

[DaanHoogland]

@harikrishna-patnala @Pearl1594 are you ok to merge this?

[blueorangutan]

[SF] Trillian test result (tid-14603)
Environment: kvm-ol8 (x2), zone: Advanced Networking with Mgmt server ol8
Total time taken: 60276 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr10212-t14603-kvm-ol8.zip
Smoke tests completed. 149 look OK, 0 have errors, 0 did not run
Only failed and skipped tests results shown below:

Test	Result	Time (s)	Test File