fix: Adding a constant hardware address to the veth (#1524)

* Adding constant hardware address to the veth

* update the variable and error log message

* Removing the shadow variable

* Removing the shadow variable

* Adding the hardware ad address while endpoint creation

* Refactoring based on the comments

* Updated based on comments

* removing merge conflicts

* update the function parameter

* Addressing comments

* go lint errors

* updating the IPAddr variable

* updating the state to NUD PROBE for transparent endpoint

Co-authored-by: root <[email protected]>

Author: vipul-21

netlink/link_linux.go

@@ -51,6 +51,8 @@ type LinkInfo struct {
 	MTU         uint
 	TxQLen      uint
 	ParentIndex int
+	MacAddress  net.HardwareAddr
+	IPAddr      net.IP
 }
 
 func (linkInfo *LinkInfo) Info() *LinkInfo {
@@ -123,6 +125,11 @@ func (Netlink) AddLink(link Link) error {
 		req.addPayload(newAttributeUint32(unix.IFLA_LINK, uint32(info.ParentIndex)))
 	}
 
+	// Set the mac address on the interface
+	if info.MacAddress != nil {
+		req.addPayload(newRtAttr(unix.IFLA_ADDRESS, []byte(info.MacAddress)))
+	}
+
 	// Set link info.
 	attrLinkInfo := newAttribute(unix.IFLA_LINKINFO, nil)
 	attrLinkInfo.addNested(newAttributeString(IFLA_INFO_KIND, info.Type))
@@ -415,8 +422,8 @@ func (Netlink) SetLinkHairpin(bridgeName string, on bool) error {
 	return s.sendAndWaitForAck(req)
 }
 
-// AddOrRemoveStaticArp sets/removes static arp entry based on mode
-func (Netlink) AddOrRemoveStaticArp(mode int, name string, ipaddr net.IP, mac net.HardwareAddr, isProxy bool) error {
+// SetOrRemoveLinkAddress sets/removes static arp entry based on mode
+func (Netlink) SetOrRemoveLinkAddress(linkInfo LinkInfo, mode, linkState int) error {
 	s, err := getSocket()
 	if err != nil {
 		return err
@@ -426,39 +433,33 @@ func (Netlink) AddOrRemoveStaticArp(mode int, name string, ipaddr net.IP, mac ne
 	state := 0
 	if mode == ADD {
 		req = newRequest(unix.RTM_NEWNEIGH, unix.NLM_F_CREATE|unix.NLM_F_REPLACE|unix.NLM_F_ACK)
-		state = NUD_PERMANENT
 	} else {
 		req = newRequest(unix.RTM_DELNEIGH, unix.NLM_F_ACK)
-		state = NUD_INCOMPLETE
 	}
+	state = linkState
 
-	iface, err := net.InterfaceByName(name)
+	iface, err := net.InterfaceByName(linkInfo.Name)
 	if err != nil {
 		return err
 	}
 
 	msg := neighMsg{
-		Family: uint8(GetIPAddressFamily(ipaddr)),
+		Family: uint8(GetIPAddressFamily(linkInfo.IPAddr)),
 		Index:  uint32(iface.Index),
 		State:  uint16(state),
 	}
 
-	// NTF_PROXY is for setting neighbor proxy
-	if isProxy {
-		msg.Flags = msg.Flags | NTF_PROXY
-	}
-
 	req.addPayload(&msg)
 
-	ipData := ipaddr.To4()
+	ipData := linkInfo.IPAddr.To4()
 	if ipData == nil {
-		ipData = ipaddr.To16()
+		ipData = linkInfo.IPAddr.To16()
 	}
 
 	dstData := newRtAttr(NDA_DST, ipData)
 	req.addPayload(dstData)
 
-	hwData := newRtAttr(NDA_LLADDR, []byte(mac))
+	hwData := newRtAttr(NDA_LLADDR, []byte(linkInfo.MacAddress))
 	req.addPayload(hwData)
 
 	return s.sendAndWaitForAck(req)

netlink/mocknetlink.go

@@ -72,7 +72,7 @@ func (f *MockNetlink) SetLinkHairpin(string, bool) error {
 	return f.error()
 }
 
-func (f *MockNetlink) AddOrRemoveStaticArp(int, string, net.IP, net.HardwareAddr, bool) error {
+func (f *MockNetlink) SetOrRemoveLinkAddress(LinkInfo, int, int) error {
 	return f.error()
 }
 

netlink/netlink_test.go

@@ -284,12 +284,24 @@ func TestAddRemoveStaticArp(t *testing.T) {
 	mac, _ := net.ParseMAC("aa:b3:4d:5e:e2:4a")
 	nl := NewNetlink()
 
-	err = nl.AddOrRemoveStaticArp(ADD, ifName, ip, mac, false)
+	linkInfo := LinkInfo{
+		Name:       ifName,
+		IPAddr:     ip,
+		MacAddress: mac,
+	}
+
+	err = nl.SetOrRemoveLinkAddress(linkInfo, ADD, NUD_PERMANENT)
 	if err != nil {
 		t.Errorf("ret val %v", err)
 	}
 
-	err = nl.AddOrRemoveStaticArp(REMOVE, ifName, ip, mac, false)
+	linkInfo = LinkInfo{
+		Name:       ifName,
+		IPAddr:     ip,
+		MacAddress: mac,
+	}
+
+	err = nl.SetOrRemoveLinkAddress(linkInfo, REMOVE, NUD_INCOMPLETE)
 	if err != nil {
 		t.Errorf("ret val %v", err)
 	}

netlink/netlink_windows.go

@@ -62,7 +62,7 @@ func (Netlink) SetLinkHairpin(bridgeName string, on bool) error {
 	return nil
 }
 
-func (Netlink) AddOrRemoveStaticArp(mode int, name string, ipaddr net.IP, mac net.HardwareAddr, isProxy bool) error {
+func (Netlink) SetOrRemoveLinkAddress(linkInfo LinkInfo, mode, linkState int) error {
 	return nil
 }
 

netlink/netlinkinterface.go

@@ -18,7 +18,7 @@ type NetlinkInterface interface {
 	SetLinkAddress(ifName string, hwAddress net.HardwareAddr) error
 	SetLinkPromisc(ifName string, on bool) error
 	SetLinkHairpin(bridgeName string, on bool) error
-	AddOrRemoveStaticArp(mode int, name string, ipaddr net.IP, mac net.HardwareAddr, isProxy bool) error
+	SetOrRemoveLinkAddress(linkInfo LinkInfo, mode, linkState int) error
 	AddIPAddress(ifName string, ipAddress net.IP, ipNet *net.IPNet) error
 	DeleteIPAddress(ifName string, ipAddress net.IP, ipNet *net.IPNet) error
 	GetIPRoute(filter *Route) ([]*Route, error)

netlink/socket.go

@@ -1,6 +1,7 @@
 // Copyright 2017 Microsoft. All rights reserved.
 // MIT License
 
+//go:build linux
 // +build linux
 
 package netlink

network/bridge_endpointclient_linux.go

@@ -60,7 +60,7 @@ func NewLinuxBridgeEndpointClient(
 }
 
 func (client *LinuxBridgeEndpointClient) AddEndpoints(epInfo *EndpointInfo) error {
-	if err := client.nuc.CreateEndpoint(client.hostVethName, client.containerVethName); err != nil {
+	if err := client.nuc.CreateEndpoint(client.hostVethName, client.containerVethName, nil); err != nil {
 		return err
 	}
 
@@ -98,7 +98,13 @@ func (client *LinuxBridgeEndpointClient) AddEndpointRules(epInfo *EndpointInfo)
 
 		if client.mode != opModeTunnel && ipAddr.IP.To4() != nil {
 			log.Printf("[net] Adding static arp for IP address %v and MAC %v in VM", ipAddr.String(), client.containerMac.String())
-			if err := client.netlink.AddOrRemoveStaticArp(netlink.ADD, client.bridgeName, ipAddr.IP, client.containerMac, false); err != nil {
+			linkInfo := netlink.LinkInfo{
+				Name:       client.bridgeName,
+				IPAddr:     ipAddr.IP,
+				MacAddress: client.containerMac,
+			}
+
+			if err := client.netlink.SetOrRemoveLinkAddress(linkInfo, netlink.ADD, netlink.NUD_PERMANENT); err != nil {
 				log.Printf("Failed setting arp in vm: %v", err)
 			}
 		}
@@ -136,7 +142,12 @@ func (client *LinuxBridgeEndpointClient) DeleteEndpointRules(ep *endpoint) {
 
 		if client.mode != opModeTunnel && ipAddr.IP.To4() != nil {
 			log.Printf("[net] Removing static arp for IP address %v and MAC %v from VM", ipAddr.String(), ep.MacAddress.String())
-			err := client.netlink.AddOrRemoveStaticArp(netlink.REMOVE, client.bridgeName, ipAddr.IP, ep.MacAddress, false)
+			linkInfo := netlink.LinkInfo{
+				Name:       client.bridgeName,
+				IPAddr:     ipAddr.IP,
+				MacAddress: ep.MacAddress,
+			}
+			err := client.netlink.SetOrRemoveLinkAddress(linkInfo, netlink.REMOVE, netlink.NUD_INCOMPLETE)
 			if err != nil {
 				log.Printf("Failed removing arp from vm: %v", err)
 			}
@@ -290,8 +301,12 @@ func (client *LinuxBridgeEndpointClient) setIPV6NeighEntry(epInfo *EndpointInfo)
 		log.Printf("[net] Add neigh entry for host gw ip")
 		hardwareAddr, _ := net.ParseMAC(defaultHostGwMac)
 		hostGwIp := net.ParseIP(defaultV6HostGw)
-		if err := client.netlink.AddOrRemoveStaticArp(netlink.ADD, client.containerVethName,
-			hostGwIp, hardwareAddr, false); err != nil {
+		linkInfo := netlink.LinkInfo{
+			Name:       client.containerVethName,
+			IPAddr:     hostGwIp,
+			MacAddress: hardwareAddr,
+		}
+		if err := client.netlink.SetOrRemoveLinkAddress(linkInfo, netlink.ADD, netlink.NUD_PERMANENT); err != nil {
 			log.Printf("Failed setting neigh entry in container: %v", err)
 			return err
 		}

network/networkutils/networkutils_linux.go

@@ -55,13 +55,14 @@ func NewNetworkUtils(nl netlink.NetlinkInterface, plClient platform.ExecClient)
 	}
 }
 
-func (nu NetworkUtils) CreateEndpoint(hostVethName, containerVethName string) error {
+func (nu NetworkUtils) CreateEndpoint(hostVethName, containerVethName string, macAddress net.HardwareAddr) error {
 	log.Printf("[net] Creating veth pair %v %v.", hostVethName, containerVethName)
 
 	link := netlink.VEthLink{
 		LinkInfo: netlink.LinkInfo{
-			Type: netlink.LINK_TYPE_VETH,
-			Name: hostVethName,
+			Type:       netlink.LINK_TYPE_VETH,
+			Name:       hostVethName,
+			MacAddress: macAddress,
 		},
 		PeerName: containerVethName,
 	}

network/ovs_endpointclient_linux.go

@@ -79,7 +79,7 @@ func NewOVSEndpointClient(
 
 func (client *OVSEndpointClient) AddEndpoints(epInfo *EndpointInfo) error {
 	epc := networkutils.NewNetworkUtils(client.netlink, client.plClient)
-	if err := epc.CreateEndpoint(client.hostVethName, client.containerVethName); err != nil {
+	if err := epc.CreateEndpoint(client.hostVethName, client.containerVethName, nil); err != nil {
 		return err
 	}
 

network/ovsinfravnet/infravnet_linux.go

@@ -49,7 +49,7 @@ func NewInfraVnetClient(hostIfName, contIfName string, nl netlink.NetlinkInterfa
 func (client *OVSInfraVnetClient) CreateInfraVnetEndpoint(bridgeName string) error {
 	ovs := ovsctl.NewOvsctl()
 	epc := networkutils.NewNetworkUtils(client.netlink, client.plClient)
-	if err := epc.CreateEndpoint(client.hostInfraVethName, client.ContainerInfraVethName); err != nil {
+	if err := epc.CreateEndpoint(client.hostInfraVethName, client.ContainerInfraVethName, nil); err != nil {
 		log.Printf("Creating infraep failed with error %v", err)
 		return err
 	}