virtinst: add nwfilter support

This allows to make use of libvirt network filtering support with virt-install. With the additional option "filterref" in the --network parameter one can configure any defined nwfilter per network interface, i.e.: virt-install ... --network network=mynet,model=virtio,filterref=clean-traffic (crobinso: add an xmlparse test case)
2013-08-28 17:36:25 +02:00 · 2013-08-28 17:36:25 +02:00 · 1730a8e5ff
parent f238abfe4d
commit 1730a8e5ff
5 changed files with 14 additions and 2 deletions
--- a/man/virt-install.pod
+++ b/man/virt-install.pod
@ -614,6 +614,12 @@ Xen virtual machines it is required that the first 3 pairs in the MAC address
 be the sequence '00:16:3e', while for QEMU or KVM virtual machines it must
 be '52:54:00'.

+=item B<filterref>
+
+Controlling firewall and network filtering in libvirt. Value can be any nwfilter
+defined by the C<virsh> 'nwfilter' subcommands. Available filters can be listed
+by running 'virsh nwfilter-list', e.g.: 'clean-traffic', 'no-mac-spoofing', ...
+
 =back

 =item --nonetworks
--- a/tests/xmlparse-xml/change-nics-out.xml
+++ b/tests/xmlparse-xml/change-nics-out.xml
@ -22,6 +22,7 @@
      <mac address="AA:AA:AA:AA:AA:AA"/>
      <source bridge="br0" network="route"/>
      <model type="testmodel"/>
+      <filterref filter="foo"/>
    </interface>
    <interface type="bridge">
      <source bridge="newbr0"/>
--- a/tests/xmlparse.py
+++ b/tests/xmlparse.py
@ -410,6 +410,7 @@ class XMLParseTest(unittest.TestCase):
        check("bridge", None, "br0")
        check("network", None, "route")
        check("macaddr", "22:11:11:11:11:11", "AA:AA:AA:AA:AA:AA")
+        check("filterref", None, "foo")
        self.assertEquals(dev1.get_source(), None)

        check = self._make_checker(dev2)
--- a/virtinst/cli.py
+++ b/virtinst/cli.py
@ -993,7 +993,8 @@ def add_net_option(devg):
      help=_("Configure a guest network interface. Ex:\n"
             "--network bridge=mybr0\n"
             "--network network=my_libvirt_virtual_net\n"
-             "--network network=mynet,model=virtio,mac=00:11..."))
+             "--network network=mynet,model=virtio,mac=00:11...\n"
+             "--network network=mynet,filterref=clean-traffic,model=virtio"))


 def add_device_options(devg):
@ -1578,6 +1579,7 @@ def parse_network(guest, optstring, dev=None, mac=None):
    set_param("bridge", "bridge")
    set_param("model", "model")
    set_param("macaddr", "mac")
+    set_param("filterref", "filterref")

    if opts:
        raise ValueError(_("Unknown options %s") % opts.keys())
--- a/virtinst/deviceinterface.py
+++ b/virtinst/deviceinterface.py
@ -198,7 +198,8 @@ class VirtualNetworkInterface(VirtualDevice):

    _XML_PROP_ORDER = [
        "bridge", "network", "source_dev", "source_mode",
-        "macaddr", "target_dev", "model", "virtualport"]
+        "macaddr", "target_dev", "model", "virtualport",
+        "filterref"]

    type = XMLProperty(xpath="./@type",
                       default_cb=lambda s: s.TYPE_BRIDGE)
@ -233,6 +234,7 @@ class VirtualNetworkInterface(VirtualDevice):
                              default_cb=_default_source_mode)
    model = XMLProperty(xpath="./model/@type")
    target_dev = XMLProperty(xpath="./target/@dev")
+    filterref = XMLProperty(xpath="./filterref/@filter")


 VirtualNetworkInterface.register_type()