Adding a fixed_ip to an instance with neutron only updates the first port using the first subnet

OK, so up front that multinic plugin is horrible - it's really intended for nova-network with multiple networks and an explicit interface for every network in the system. It's also short on documentation: I can't find mention on http://developer.openstack.org/api-ref-compute-v2-ext.html and http://docs.openstack.org/developer/nova/devref/multinic.html is one of a number of examples of documentation with a complete emphasis on nova-network configurations and no mention of fixed IPs. I didn't find any documentation that it worked with Neutron at all, though the code is present and it clearly does make the attempt (though in reality it's a wrapper around neutron port-update, and, I suspect, not a very good one if you happen to be using multiple subnets).

I think we have two options:

1. rewrite add-fixed-ip to add a new address to every port (question: what happens when we run out of addresses? Hard to unwind the partial work done...)
2. rewrite add-fixed-ip it to not work when multiple interfaces share a subnet (noting that (a) it's not intended for this use case and (b) neutron port-update is available as a much more flexible and precise alternative)

I don't think doing (2) is unfair. It's never worked in this case before, because multiple NICs on one network was never previously possible. It doesn't exclude behaviour because other APIs are available. And it doesn't change nova-network behaviour where multiple NICs on one network still aren't possible.

Also, I'm not sure that adding additional fixed IPs to multiple NICs makes any more sense in the context of the API call (seems unlikely this is what the tenant would want or expect).

I somehow agree with both API calls for expecting not very different results at the end: I guess it is probably more flexible and precise to have the choice of what level of detailed API wrapper to choose from for different types of apps tenants:

1. ”neutron port-update <port_id> —fixed_ips type=dict list=true subnet_id=<subnet_id>,ip_address=<fixed_ip>"
—> Dealing with the precise details of what exact subnet_id (as well as port_id) you want to add the fixed_ip to;

2. “nova remove-fixed-ip <server_name> <fixed_ip>” and ”nova add-fixed-ip <server_name> <network_name>”
—> Not dealing with these details and still removing/adding fixed-ip to (a) the same interface as what neutron ports allow you to do or to (b) a different interface in different subnet in same neutron network as with what multiple-if-1-net BP provided.

Regarding choice (2): it seems that even if the requested network still have some fixed IPs available in one of its other subnets, if the first subnet ran out of fixed IPs, you cannot add a new fixed IP to the instance.
nova add-fixed-ip API call returns HTTP 202 Accepted with empty body and nova-compute logs displays a thing similar to this:
"Unable to update port f6cffe78-c183-4a72-8831-f19235117a6b on subnet 5c190dbd-7753-44e6-8aae-48811b5bce99 with failure: No more IP addresses available on network 95f6fb2d-10cc-4b77-8db6-652600e35d43."

So I guess it is not impossible to do (a) to rewrite add-fixed-ip to handle the case of IP exhaustion in "first" subnet. Also it seems that API call "add-fixed-ip" list_subnets() uses a different order of subnets in same requested network different from the API call "nova boot --nic net-id", ... i.e. order of "first" subnet is relative to what API call is used.

Besides, it is not impossible to do (b) to rewrite to remove/add fixed-ip from different interface in different subnets in same neutron network... Among other things, if the network backend implementation (using overlays for instance) doesn't broadcast one subnet to another one in same network, then it should be less inefficient to have multiple NICs on different subnets on same network for the same instance.

Note that the add/remove fixed_ips stuff was added to the neutronv2 (then quantum) API in Nova back in Grizzly via a simple bug report saying it wasn't implemented:

https://review.openstack.org/#/c/19627/

There aren't really any details in there, and the code is busted for the same reasons pointed out here, it's just that no one has ever seemed to care about it (or use it I guess). We can't just raise NotImplemented now though since that would be a backwards incompatible change to the multinic API extension.

Fix proposed to branch: master
Review: https://review.openstack.org/163864

I have a number of things to add here:
1. Not sure if anyone actually uses the multi nic. I have added support that enables more than one fixed IP - https://review.openstack.org/163864
2. do we still want to support these extensions

I don't know about everyone else but we definitely appreciate the existing functionality of nova add-fixed-ip.

Take for instance the following example (port / subnet / ips changed for demonstration):

+----------------------------------------------------------------+---------+---------------------------+----------------------------------------------------------------------------------------+
| id | name | mac_address | fixed_ips |
+----------------------------------------------------------------+---------+--------------------------+-----------------------------------------------------------------------------------------+
| 9e1bcee0-beca-4723-9e68-fa88912cc291 | | fa:16:3e:08:c2:b9 | {"subnet_id": "23ae97b5-f213-4287-a2eb-48753f50a40a", \ "ip_address": "192.160.251.113"} |
| | | | {"subnet_id": "490dbebc-0674-4326-b20e-209940024d86", \ "ip_address": "195.152.250.88"} |
+---------------------------------------------------------------+-----------+--------------------------+----------------------------------------------------------------------------------------+

We have a use case where we are running CentOS cPanel instances in which we just need to append a fixed ip to a port as needed. The existing neutron port-update removes the ip's and adds a new ip or in the case you wanted to re add all your existing ips you must specify them as well. The existing nova add-fixed-ip is perfect for this appending use case.

One feature that lacks however with nova add-fixed-ip is the ability to specify a port_id, ip, and subnet_id. We have modified novaclient and nova api to allow this to work, but it would be nice if it was up streamed to the community. The end result would look something like this from the novaclient perspective:

usage: nova add-fixed-ip [--network_id <network-id>] [--port_id <port-id>]
                         [--ip_address <ip-address>] [--subnet_id <subnet-id>]
                         <server-id>

Add new IP address to network.

Positional arguments:
  <server-id> Name or ID of server.

Optional arguments:
  --network_id <network-id>
                        Network ID.
  --port_id <port-id> Port ID.
  --ip_address <ip-address>
                        IP Address.
  --subnet_id <subnet-id>
                        Subnet ID.

What do you all think?

it doesn't feel like this should block the kilo release, removing from kilo-rc1 for now.

Change abandoned by Joe Gordon (<email address hidden>) on branch: master
Review: https://review.openstack.org/163864
Reason: This review is > 4 weeks without comment, and failed Jenkins the last time it was checked. We are abandoning this for now. Feel free to reactivate the review by pressing the restore button and leaving a 'recheck' comment to get fresh test results.

Change abandoned by garyk (<email address hidden>) on branch: master
Review: https://review.openstack.org/163864
Reason: Not sure that these flows are even invoked any more. If you guys feel that this is relevant then please ping me and I'll rebase. Just feels futile at the moment