[Bug] hot fix to enable L3 E2E

[er1cthe0ne]

This is the change to enable L3 E2E, with this change, we confirmed the L3 routing E2E is working through the horizon UI.

This PR includes the follow changes:

1. added setup_ovs_bridges_if_need in aca_main which will work nicely when there is no ovs bridge when aca starts
2. allow neighbor state to be create/update/info, since we are getting neighbor state update during L3 E2E
3. enable process of neighbor state with fixed_ips_size > 1
4. fixed the path issue with ovs-ctl

[xieus]

@er1cthe0ne Thanks for pushing the remaining fixes promptly. I left a few minor comments to the coding part.

Regarding the openflow table doc, let us review it together today.

[xieus]

Although we allow more than fixed IPs, we process the first one only as the primary IP. As a next step, it would be awesome to start thinking about storing the secondary IPs so that when customers add IPs in the VM (manually as limited by current networking stack), Control Plane has the knowledge to grant or reject customers' traffic, depending on whether customers configure the VM in the right way.

[er1cthe0ne]

got it. The current port creation code doesn't consume the virtual IP address(s). It would be consumed in security group code to allow traffic come out from the VM with certain virtual IPs and virtual mac (it also should look at the allow_address_pairs in PortConfiguration).

[xieus]

Let me rephrase the question: if an interface has more than 1 ports, the current ACA would only process and store the first ip, and other ips are ignored. We will need to handle other ips too.

[er1cthe0ne]

@cj-chung please take a look to confirm this approach is okay for our environment.