Support multiple VDE interfaces; let the user override the default name

jandubois · jandubois · commit 3ec2ee185cff · 2021-08-01T02:23:17.000-07:00
Signed-off-by: Jan Dubois &lt;jan.dubois@suse.com&gt;
diff --git a/cmd/limactl/start.go b/cmd/limactl/start.go
@@ -114,7 +114,9 @@ func loadOrCreateInstance(clicontext *cli.Context) (*store.Instance, error) {
 	} else {
 		logrus.Info("Terminal is not available, proceeding without opening an editor")
 	}
-	y, err := limayaml.Load(yBytes)
+	// limayaml.Load() needs to pass the store file path to limayaml.FillDefault() to calculate default MAC addresses
+	filePath := filepath.Join(instDir, filenames.LimaYAML)
+	y, err := limayaml.Load(yBytes, filePath)
 	if err != nil {
 		return nil, err
 	}
@@ -131,7 +133,7 @@ func loadOrCreateInstance(clicontext *cli.Context) (*store.Instance, error) {
 	if err := os.MkdirAll(instDir, 0700); err != nil {
 		return nil, err
 	}
-	if err := os.WriteFile(filepath.Join(instDir, filenames.LimaYAML), yBytes, 0644); err != nil {
+	if err := os.WriteFile(filePath, yBytes, 0644); err != nil {
 		return nil, err
 	}
 	return store.Inspect(instName)
diff --git a/pkg/cidata/cidata.TEMPLATE.d/network-config b/pkg/cidata/cidata.TEMPLATE.d/network-config
@@ -1,9 +1,9 @@
 version: 2
 ethernets:
-  {{- range $i, $addr := .MACAddresses}}
-  eth{{$i}}:
+  {{- range $nw := .Networks}}
+  {{$nw.Name}}:
     match:
-      macaddress: '{{$addr}}'
+      macaddress: '{{$nw.MACAddress}}'
     dhcp4: true
-    set-name: eth{{$i}}
+    set-name: {{$nw.Name}}
   {{- end }}
diff --git a/pkg/cidata/cidata.go b/pkg/cidata/cidata.go
@@ -35,7 +35,7 @@ var (
 )
 
 func GenerateISO9660(instDir, name string, y *limayaml.LimaYAML) error {
-	if err := limayaml.ValidateRaw(*y); err != nil {
+	if err := limayaml.Validate(*y); err != nil {
 		return err
 	}
 	u, err := user.Current()
@@ -72,9 +72,9 @@ func GenerateISO9660(instDir, name string, y *limayaml.LimaYAML) error {
 		args.Mounts = append(args.Mounts, expanded)
 	}
 
-	args.MACAddresses = append(args.MACAddresses, qemu.SlirpMACAddress)
-	if y.Network.VDE.URL != "" {
-		args.MACAddresses = append(args.MACAddresses, qemu.MACAddress(instDir, y))
+	args.Networks = append(args.Networks, Network{MACAddress: qemu.SlirpMACAddress, Name: "eth0"})
+	for _, vde := range y.Network.VDE {
+		args.Networks = append(args.Networks, Network{MACAddress: vde.MACAddress, Name: vde.Name})
 	}
 
 	if err := ValidateTemplateArgs(args); err != nil {
diff --git a/pkg/cidata/template.go b/pkg/cidata/template.go
@@ -23,14 +23,18 @@ type Containerd struct {
 	System bool
 	User   bool
 }
+type Network struct {
+	MACAddress string
+	Name       string
+}
 type TemplateArgs struct {
-	Name         string // instance name
-	User         string // user name
-	UID          int
-	SSHPubKeys   []string
-	Mounts       []string // abs path, accessible by the User
-	Containerd   Containerd
-	MACAddresses []string
+	Name       string // instance name
+	User       string // user name
+	UID        int
+	SSHPubKeys []string
+	Mounts     []string // abs path, accessible by the User
+	Containerd Containerd
+	Networks   []Network
 }
 
 func ValidateTemplateArgs(args TemplateArgs) error {
diff --git a/pkg/limayaml/default.yaml b/pkg/limayaml/default.yaml
@@ -32,17 +32,18 @@ memory: "4GiB"
 disk: "100GiB"
 
 network:
-  # The instance can get a routable IP address from the vmnet framework using
+  # The instance can get routable IP addresses from the vmnet framework using
   # https://github.com/AkihiroSuda/vde_vmnet. Both vde_switch and vde_vmnet
   # daemons must be running before the instance is started. The interface type
   # (host, shared, or bridged) is configured in vde_vmnet and not lima.
   vde:
-    # vde_switch socket directory, normally /var/run/vde.ctl
-    # Default: "" (vmnet is not being used)
-    url: ""
-    # MAC address of the instance; lima will pick one based on the instance name,
-    # so DHCP assigned ip addresses should remain constant over instance restarts.
-    macAddress: ""
+    # url points to the vde_switch socket directory
+    # - url: "/var/run/vde.ctl"
+    #   # MAC address of the instance; lima will pick one based on the instance name,
+    #   # so DHCP assigned ip addresses should remain constant over instance restarts.
+    #   macAddress: ""
+    #   # Interface name, defaults to "vde0", "vde1", etc.
+    #   name: ""
 
 # Expose host directories to the guest
 # Default: none
diff --git a/pkg/limayaml/defaults.go b/pkg/limayaml/defaults.go
@@ -1,13 +1,16 @@
 package limayaml
 
 import (
+	"crypto/sha256"
 	"fmt"
+	"net"
 	"runtime"
+	"strconv"
 
 	"github.com/AkihiroSuda/lima/pkg/guestagent/api"
 )
 
-func FillDefault(y *LimaYAML) {
+func FillDefault(y *LimaYAML, filePath string) {
 	y.Arch = resolveArch(y.Arch)
 	for i := range y.Images {
 		img := &y.Images[i]
@@ -55,6 +58,21 @@ func FillDefault(y *LimaYAML) {
 		FillPortForwardDefaults(&y.PortForwards[i])
 		// After defaults processing the singular HostPort and GuestPort values should not be used again.
 	}
+	for i := range y.Network.VDE {
+		vde := &y.Network.VDE[i]
+		if vde.MACAddress == "" {
+			// every interface in every limayaml file must get its own unique MAC address
+			uniqueID := fmt.Sprintf("%s#%d", filePath, i)
+			sha := sha256.Sum256([]byte(uniqueID))
+			// According to https://gitlab.com/wireshark/wireshark/-/blob/master/manuf
+			// no well-known MAC addresses start with 0x22.
+			hw := append(net.HardwareAddr{0x22}, sha[0:5]...)
+			vde.MACAddress = hw.String()
+		}
+		if vde.Name == "" {
+			vde.Name = "vde" + strconv.Itoa(i)
+		}
+	}
 }
 
 func FillPortForwardDefaults(rule *PortForward) {
diff --git a/pkg/limayaml/limayaml.go b/pkg/limayaml/limayaml.go
@@ -108,9 +108,10 @@ type PortForward struct {
 }
 
 type Network struct {
-	VDE VDE `yaml:"vde,omitempty"`
+	VDE []VDE `yaml:"vde,omitempty"`
 }
 type VDE struct {
 	URL        string `yaml:"url,omitempty"`
 	MACAddress string `yaml:"macAddress,omitempty"`
+	Name       string `yaml:"name,omitempty"`
 }
diff --git a/pkg/limayaml/load.go b/pkg/limayaml/load.go
@@ -7,11 +7,11 @@ import (
 // Load loads the yaml and fulfills unspecified fields with the default values.
 //
 // Load does not validate. Use Validate for validation.
-func Load(b []byte) (*LimaYAML, error) {
+func Load(b []byte, filePath string) (*LimaYAML, error) {
 	var y LimaYAML
 	if err := yaml.Unmarshal(b, &y); err != nil {
 		return nil, err
 	}
-	FillDefault(&y)
+	FillDefault(&y, filePath)
 	return &y, nil
 }
diff --git a/pkg/limayaml/template_test.go b/pkg/limayaml/template_test.go
@@ -7,7 +7,7 @@ import (
 )
 
 func TestDefaultTemplateYAML(t *testing.T) {
-	_, err := Load(DefaultTemplate)
+	_, err := Load(DefaultTemplate, "does-not-exist")
 	assert.NilError(t, err)
 	// Do not call Validate(y) here, as it fails when `~/lima` is missing
 }
diff --git a/pkg/limayaml/validate.go b/pkg/limayaml/validate.go
@@ -14,11 +14,6 @@ import (
 )
 
 func Validate(y LimaYAML) error {
-	FillDefault(&y)
-	return ValidateRaw(y)
-}
-
-func ValidateRaw(y LimaYAML) error {
 	switch y.Arch {
 	case X8664, AARCH64:
 	default:
@@ -155,7 +150,7 @@ func ValidateRaw(y LimaYAML) error {
 		if rule.HostPortRange[0] > rule.HostPortRange[1] {
 			return errors.Errorf("field `%s.hostPortRange[1]` must be greater than or equal to field `%s.hostPortRange[0]`", field, field)
 		}
-		if rule.GuestPortRange[1] - rule.GuestPortRange[0] != rule.HostPortRange[1] - rule.HostPortRange[0] {
+		if rule.GuestPortRange[1]-rule.GuestPortRange[0] != rule.HostPortRange[1]-rule.HostPortRange[0] {
 			return errors.Errorf("field `%s.hostPortRange` must specify the same number of ports as field `%s.guestPortRange`", field, field)
 		}
 		if rule.Proto != TCP {
@@ -164,33 +159,36 @@ func ValidateRaw(y LimaYAML) error {
 		// Not validating that the various GuestPortRanges and HostPortRanges are not overlapping. Rules will be
 		// processed sequentially and the first matching rule for a guest port determines forwarding behavior.
 	}
-	if y.Network.VDE.URL != "" {
-		fieldRef := "field `network.vde.url`"
+	for i, vde := range y.Network.VDE {
+		field := fmt.Sprintf("network.vde[%d]", i)
+		if vde.URL == "" {
+			return errors.Errorf("field `%s.url` must not be empty", field)
+		}
 		// The field is called VDE.URL in anticipation of QEMU upgrading VDE2 to VDEplug4,
 		// but right now the only valid value is a path to the vde_switch socket directory.
-		fi, err := os.Stat(y.Network.VDE.URL)
+		fi, err := os.Stat(vde.URL)
 		if err != nil {
-			return errors.Wrapf(err, "%s %q failed stat", fieldRef, y.Network.VDE.URL)
+			return errors.Wrapf(err, "field `%s.url` %q failed stat", field, vde.URL)
 		}
 		if !fi.IsDir() {
-			return errors.Wrapf(err, "%s %q is not a directory", fieldRef, y.Network.VDE.URL)
+			return errors.Wrapf(err, "field `%s.url` %q is not a directory", field, vde.URL)
 		}
-		ctlSocket := filepath.Join(y.Network.VDE.URL, "ctl")
+		ctlSocket := filepath.Join(vde.URL, "ctl")
 		fi, err = os.Stat(ctlSocket)
 		if err != nil {
-			return errors.Wrapf(err, "%s control socket %q failed stat", fieldRef, ctlSocket)
-		}
-		if fi.Mode() & os.ModeSocket == 0 {
-			return errors.Errorf("%s file %q is not a UNIX socket", fieldRef, ctlSocket)
+			return errors.Wrapf(err, "field `%s.url` control socket %q failed stat", field, ctlSocket)
 		}
-	}
-	if y.Network.VDE.MACAddress != "" {
-		hw, err := net.ParseMAC(y.Network.VDE.MACAddress)
-		if err != nil {
-			return errors.Wrap(err,"field `vmnet.mac` invalid")
+		if fi.Mode()&os.ModeSocket == 0 {
+			return errors.Errorf("field `%s.url` file %q is not a UNIX socket", field, ctlSocket)
 		}
-		if len(hw) != 6 {
-			return errors.Errorf("field `vmnet.mac` must be a 48 bit (6 bytes) MAC address; actual length of %q is %d bytes", y.Network.VDE.MACAddress, len(hw))
+		if vde.MACAddress != "" {
+			hw, err := net.ParseMAC(vde.MACAddress)
+			if err != nil {
+				return errors.Wrap(err, "field `vmnet.mac` invalid")
+			}
+			if len(hw) != 6 {
+				return errors.Errorf("field `%s.macAddress` must be a 48 bit (6 bytes) MAC address; actual length of %q is %d bytes", field, vde.MACAddress, len(hw))
+			}
 		}
 	}
 	return nil
diff --git a/pkg/qemu/qemu.go b/pkg/qemu/qemu.go
@@ -1,9 +1,7 @@
 package qemu
 
 import (
-	"crypto/sha256"
 	"fmt"
-	"net"
 	"os"
 	"os/exec"
 	"path/filepath"
@@ -137,18 +135,6 @@ const (
 	SlirpMACAddress = "22:11:11:11:11:11"
 )
 
-func MACAddress(instanceDir string, y *limayaml.LimaYAML) string {
-	addr := y.Network.VDE.MACAddress
-	if addr == "" {
-		sha := sha256.Sum256([]byte(instanceDir))
-		// According to https://gitlab.com/wireshark/wireshark/-/blob/master/manuf
-		// no well-known MAC addresses start with 0x22.
-		hw := append(net.HardwareAddr{0x22}, sha[0:5]...)
-		addr = hw.String()
-	}
-	return addr
-}
-
 func Cmdline(cfg Config) (string, []string, error) {
 	y := cfg.LimaYAML
 	exe, args, err := getExe(y.Arch)
@@ -212,15 +198,15 @@ func Cmdline(cfg Config) (string, []string, error) {
 	args = append(args, "-cdrom", filepath.Join(cfg.InstanceDir, filenames.CIDataISO))
 
 	// Network
-	if y.Network.VDE.URL != "" {
-		args = append(args, "-netdev", fmt.Sprintf("vde,id=net0,sock=%s", y.Network.VDE.URL))
-		args = append(args, "-device", fmt.Sprintf("virtio-net-pci,netdev=net0,mac=%s", MACAddress(cfg.InstanceDir, y)))
-	}
 	// CIDR is intentionally hardcoded to 192.168.5.0/24, as each of QEMU has its own independent slirp network.
-	args = append(args, "-netdev", fmt.Sprintf("user,id=net1,net=192.168.5.0/24,hostfwd=tcp:127.0.0.1:%d-:22", y.SSH.LocalPort))
-	args = append(args, "-device", "virtio-net-pci,netdev=net1,mac="+SlirpMACAddress)
+	args = append(args, "-netdev", fmt.Sprintf("user,id=net0,net=192.168.5.0/24,hostfwd=tcp:127.0.0.1:%d-:22", y.SSH.LocalPort))
+	args = append(args, "-device", "virtio-net-pci,netdev=net0,mac="+SlirpMACAddress)
+	for i, vde := range y.Network.VDE {
+			args = append(args, "-netdev", fmt.Sprintf("vde,id=net%d,sock=%s", i+1, vde.URL))
+			args = append(args, "-device", fmt.Sprintf("virtio-net-pci,netdev=net%d,mac=%s", i+1, vde.MACAddress))
+	}
 
-	// virtio-rng-pci acceralates starting up the OS, according to https://wiki.gentoo.org/wiki/QEMU/Options
+	// virtio-rng-pci accelerates starting up the OS, according to https://wiki.gentoo.org/wiki/QEMU/Options
 	args = append(args, "-device", "virtio-rng-pci")
 
 	// Graphics
diff --git a/pkg/store/store.go b/pkg/store/store.go
@@ -79,7 +79,7 @@ func LoadYAMLByFilePath(filePath string) (*limayaml.LimaYAML, error) {
 	if err != nil {
 		return nil, err
 	}
-	y, err := limayaml.Load(yContent)
+	y, err := limayaml.Load(yContent, filePath)
 	if err != nil {
 		return nil, err
 	}

Original file line number	Diff line number	Diff line change
`@@ -114,7 +114,9 @@ func loadOrCreateInstance(clicontext cli.Context) (store.Instance, error) {`
`114`	`114`	`} else {`
`115`	`115`	`logrus.Info("Terminal is not available, proceeding without opening an editor")`
`116`	`116`	`}`
`117`		`- y, err := limayaml.Load(yBytes)`
	`117`	`+ // limayaml.Load() needs to pass the store file path to limayaml.FillDefault() to calculate default MAC addresses`
	`118`	`+ filePath := filepath.Join(instDir, filenames.LimaYAML)`
	`119`	`+ y, err := limayaml.Load(yBytes, filePath)`
`118`	`120`	`if err != nil {`
`119`	`121`	`return nil, err`
`120`	`122`	`}`
`@@ -131,7 +133,7 @@ func loadOrCreateInstance(clicontext cli.Context) (store.Instance, error) {`
`131`	`133`	`if err := os.MkdirAll(instDir, 0700); err != nil {`
`132`	`134`	`return nil, err`
`133`	`135`	`}`
`134`		`- if err := os.WriteFile(filepath.Join(instDir, filenames.LimaYAML), yBytes, 0644); err != nil {`
	`136`	`+ if err := os.WriteFile(filePath, yBytes, 0644); err != nil {`
`135`	`137`	`return nil, err`
`136`	`138`	`}`
`137`	`139`	`return store.Inspect(instName)`
Original file line number	Diff line number	Diff line change
`@@ -35,7 +35,7 @@ var (`
`35`	`35`	`)`
`36`	`36`
`37`	`37`	`func GenerateISO9660(instDir, name string, y *limayaml.LimaYAML) error {`
`38`		`- if err := limayaml.ValidateRaw(*y); err != nil {`
	`38`	`+ if err := limayaml.Validate(*y); err != nil {`
`39`	`39`	`return err`
`40`	`40`	`}`
`41`	`41`	`u, err := user.Current()`
`@@ -72,9 +72,9 @@ func GenerateISO9660(instDir, name string, y *limayaml.LimaYAML) error {`
`72`	`72`	`args.Mounts = append(args.Mounts, expanded)`
`73`	`73`	`}`
`74`	`74`
`75`		`- args.MACAddresses = append(args.MACAddresses, qemu.SlirpMACAddress)`
`76`		`- if y.Network.VDE.URL != "" {`
`77`		`- args.MACAddresses = append(args.MACAddresses, qemu.MACAddress(instDir, y))`
	`75`	`+ args.Networks = append(args.Networks, Network{MACAddress: qemu.SlirpMACAddress, Name: "eth0"})`
	`76`	`+ for _, vde := range y.Network.VDE {`
	`77`	`+ args.Networks = append(args.Networks, Network{MACAddress: vde.MACAddress, Name: vde.Name})`
`78`	`78`	`}`
`79`	`79`
`80`	`80`	`if err := ValidateTemplateArgs(args); err != nil {`
Original file line number	Diff line number	Diff line change
`@@ -108,9 +108,10 @@ type PortForward struct {`
`108`	`108`	`}`
`109`	`109`
`110`	`110`	`type Network struct {`
`111`		- VDE VDE `yaml:"vde,omitempty"`
	`111`	+ VDE []VDE `yaml:"vde,omitempty"`
`112`	`112`	`}`
`113`	`113`	`type VDE struct {`
`114`	`114`	URL string `yaml:"url,omitempty"`
`115`	`115`	MACAddress string `yaml:"macAddress,omitempty"`
	`116`	+ Name string `yaml:"name,omitempty"`
`116`	`117`	`}`
Original file line number	Diff line number	Diff line change
`@@ -7,11 +7,11 @@ import (`
`7`	`7`	`// Load loads the yaml and fulfills unspecified fields with the default values.`
`8`	`8`	`//`
`9`	`9`	`// Load does not validate. Use Validate for validation.`
`10`		`-func Load(b []byte) (*LimaYAML, error) {`
	`10`	`+func Load(b []byte, filePath string) (*LimaYAML, error) {`
`11`	`11`	`var y LimaYAML`
`12`	`12`	`if err := yaml.Unmarshal(b, &y); err != nil {`
`13`	`13`	`return nil, err`
`14`	`14`	`}`
`15`		`- FillDefault(&y)`
	`15`	`+ FillDefault(&y, filePath)`
`16`	`16`	`return &y, nil`
`17`	`17`	`}`
Original file line number	Diff line number	Diff line change
`@@ -7,7 +7,7 @@ import (`
`7`	`7`	`)`
`8`	`8`
`9`	`9`	`func TestDefaultTemplateYAML(t *testing.T) {`
`10`		`- _, err := Load(DefaultTemplate)`
	`10`	`+ _, err := Load(DefaultTemplate, "does-not-exist")`
`11`	`11`	`assert.NilError(t, err)`
`12`	`12`	// Do not call Validate(y) here, as it fails when `~/lima` is missing
`13`	`13`	`}`