stx-openstack: Live-migration traffic going through wrong networks

Reviewed: https://review.opendev.org/c/starlingx/openstack-armada-app/+/895730
Committed: https://opendev.org/starlingx/openstack-armada-app/commit/310f677d295abff792168ee860beba8c52b1c2ab
Submitter: "Zuul (22348)"
Branch: master

commit 310f677d295abff792168ee860beba8c52b1c2ab
Author: Thales Elero Cervi <email address hidden>
Date: Mon Sep 18 16:00:28 2023 -0300

    Move live-migration traffic to cluster-host-net

    This change updates the application plugins in order to ensure that all
    libvirt/live-migration related traffic is happening through the
    cluster-host-network. Currently most of the libvirt/live-migration
    addresses are being solved through INADDR_ANY (0.0.0.0), and this route
    resolution will vary between AIO, routes to oam-network, and Worker,
    routes to mgmt-network. Both resolutions are not correct since the
    correct network for such traffic should be the cluster-host-network.
    Actually, current platform firewall will block any traffic through not
    allowed oam-network ports.

    The goal will be achieved by setting to the node's cluster-host IP:
    * libvirt listen_addr
    * nova.conf "live_migration_inbound_addr"

    It is important to notice that in the current version of the
    openstack-helm nova helm chart, there is a problem with
    nova-compute-init.sh for this use case of ours, so an openstack-helm
    patch was required to fix it.

    Code that was previously implemented only for the Nova plugin and is now
    required by the Libvirt plugin, was moved to the parent OpenStack class.

    [1] https://github.com/openstack/openstack-helm/commit/31be86079d711c698b2560b4bed654e23373a596

    TEST PLAN:
    PASS - Build stx-openstack application
    PASS - Apply the application to an AIO-DX system
    PASS - "$ sudo netstat -ltnp | grep <libvirtd pid>" to ensure that
           libvirtd is listening on the correct cluster-host-net IP
    PASS - Verify that the nova-compute.sh script was populated correctly
    PASS - Test a VM live-migration on the controller+worker node
    PASS - Verify that live_migration data in LibvirtLiveMigrateData has the
           correct cluster-host-net IP address in its "target_connect_addr"
    PASS - Apply the application to a Standard system
    PASS - "$ sudo netstat -ltnp | grep <libvirtd pid>" to ensure that
           libvirtd is listening on the correct cluster-host-net IP
    PASS - Verify that the nova-compute.sh script was populated correctly
    PASS - Test a VM live-migration on the worker node
    PASS - Verify that live_migration data in LibvirtLiveMigrateData has the
           correct cluster-host-net IP address in its "target_connect_addr"

    Closes-Bug: 2037330

    Signed-off-by: Thales Elero Cervi <email address hidden>
    Change-Id: I37db601e4b1b0e397a1b8dbdad1a293ff25c2e55

Fix proposed to branch: f/antelope
Review: https://review.opendev.org/c/starlingx/openstack-armada-app/+/896539

Reviewed: https://review.opendev.org/c/starlingx/openstack-armada-app/+/896539
Committed: https://opendev.org/starlingx/openstack-armada-app/commit/190502fb6bd3361526a2500d2d83eaf48158954b
Submitter: "Zuul (22348)"
Branch: f/antelope

commit 190502fb6bd3361526a2500d2d83eaf48158954b
Author: Thales Elero Cervi <email address hidden>
Date: Mon Sep 18 16:00:28 2023 -0300

    Move live-migration traffic to cluster-host-net

    This change updates the application plugins in order to ensure that all
    libvirt/live-migration related traffic is happening through the
    cluster-host-network. Currently most of the libvirt/live-migration
    addresses are being solved through INADDR_ANY (0.0.0.0), and this route
    resolution will vary between AIO, routes to oam-network, and Worker,
    routes to mgmt-network. Both resolutions are not correct since the
    correct network for such traffic should be the cluster-host-network.
    Actually, current platform firewall will block any traffic through not
    allowed oam-network ports.

    The goal will be achieved by setting to the node's cluster-host IP:
    * libvirt listen_addr
    * nova.conf "live_migration_inbound_addr"

    It is important to notice that in the current version of the
    openstack-helm nova helm chart, there is a problem with
    nova-compute-init.sh for this use case of ours, so an openstack-helm
    patch was required to fix it.

    Code that was previously implemented only for the Nova plugin and is now
    required by the Libvirt plugin, was moved to the parent OpenStack class.

    [1] https://github.com/openstack/openstack-helm/commit/31be86079d711c698b2560b4bed654e23373a596

    TEST PLAN:
    PASS - Build stx-openstack application
    PASS - Apply the application to an AIO-DX system
    PASS - "$ sudo netstat -ltnp | grep <libvirtd pid>" to ensure that
           libvirtd is listening on the correct cluster-host-net IP
    PASS - Verify that the nova-compute.sh script was populated correctly
    PASS - Test a VM live-migration on the controller+worker node
    PASS - Verify that live_migration data in LibvirtLiveMigrateData has the
           correct cluster-host-net IP address in its "target_connect_addr"
    PASS - Apply the application to a Standard system
    PASS - "$ sudo netstat -ltnp | grep <libvirtd pid>" to ensure that
           libvirtd is listening on the correct cluster-host-net IP
    PASS - Verify that the nova-compute.sh script was populated correctly
    PASS - Test a VM live-migration on the worker node
    PASS - Verify that live_migration data in LibvirtLiveMigrateData has the
           correct cluster-host-net IP address in its "target_connect_addr"

    Closes-Bug: 2037330

    Signed-off-by: Thales Elero Cervi <email address hidden>
    Change-Id: I37db601e4b1b0e397a1b8dbdad1a293ff25c2e55
    (cherry picked from commit 310f677d295abff792168ee860beba8c52b1c2ab)