Skip to content

Fix error 400 when updating the mac address of a network interface #370

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Jun 28, 2018
Merged

Fix error 400 when updating the mac address of a network interface #370

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
a08f664
Fix network interfaces API updates before boot
Jun 19, 2018
4b2d745
Integration tests for all network update use cases
Jun 19, 2018
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
53 changes: 51 additions & 2 deletions tests/functional/test_api.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -143,16 +143,65 @@ def test_api_put_update_pre_boot(test_microvm_with_api):
assert (response_json['mem_size_mib'] == str(microvm_config_json['mem_size_mib']))
assert (response_json['cpu_template'] == str(microvm_config_json['cpu_template']))

second_if_name = 'second_tap'
response = test_microvm.api_session.put(
test_microvm.net_cfg_url + '/2',
json={
'iface_id': '2',
'host_dev_name': test_microvm.slot.make_tap(name=second_if_name),
'guest_mac': '07:00:00:00:00:01',
'state': 'Attached'
}
)
""" Adding new network interfaces is allowed. """
assert(test_microvm.api_session.is_good_response(response.status_code))

response = test_microvm.api_session.put(
test_microvm.net_cfg_url + '/2',
json={
'iface_id': '2',
'host_dev_name': second_if_name,
'guest_mac': '06:00:00:00:00:01',
'state': 'Attached'
}
)
""" Updates to a network interface with an unavailable MAC are not allowed. """
assert(not test_microvm.api_session.is_good_response(response.status_code))

response = test_microvm.api_session.put(
test_microvm.net_cfg_url + '/2',
json={
'iface_id': '2',
'host_dev_name': second_if_name,
'guest_mac': '08:00:00:00:00:01',
'state': 'Attached'
}
)
""" Updates to a network interface with an available MAC are allowed. """
assert(test_microvm.api_session.is_good_response(response.status_code))

response = test_microvm.api_session.put(
test_microvm.net_cfg_url + '/1',
json={
'iface_id': '1',
'host_dev_name': test_microvm.slot.make_tap(name='newtap'),
'host_dev_name': second_if_name,
'guest_mac': '06:00:00:00:00:01',
'state': 'Attached'
}
)
""" Updates to a network interface with an unavailable name are not allowed. """
assert(not test_microvm.api_session.is_good_response(response.status_code))

response = test_microvm.api_session.put(
test_microvm.net_cfg_url + '/1',
json={
'iface_id': '1',
'host_dev_name': test_microvm.slot.make_tap(),
'guest_mac': '06:00:00:00:00:01',
'state': 'Attached'
}
)
""" Valid updates to the network `host_dev_name` are allowed. """
""" Updates to a network interface with an available name are allowed. """
assert(test_microvm.api_session.is_good_response(response.status_code))


Expand Down
2 changes: 1 addition & 1 deletion tests/microvm.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -353,7 +353,7 @@ def basic_config(
)
responses.append(response)

for net_iface_index in range(0, net_iface_count):
for net_iface_index in range(1, net_iface_count + 1):
response = self.api_session.put(
self.net_cfg_url + '/' + str(net_iface_index),
json={
Expand Down
150 changes: 106 additions & 44 deletions vmm/src/device_config/net.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,3 @@
use std::collections::linked_list::{self, LinkedList};
use std::mem;
use std::rc::Rc;
use std::result;
Expand Down Expand Up @@ -43,6 +42,13 @@ impl NetworkInterfaceConfig {
})
}

fn update_from_body(&mut self, mut body: NetworkInterfaceBody) {
self.id = Rc::new(mem::replace(&mut body.iface_id, String::new()));
self.rx_rate_limiter = body.rx_rate_limiter.take();
self.tx_rate_limiter = body.tx_rate_limiter.take();
self.body = body;
}

pub fn id_as_str(&self) -> &str {
self.id.as_str()
}
Expand All @@ -57,36 +63,61 @@ impl NetworkInterfaceConfig {
}

pub struct NetworkInterfaceConfigs {
// We use just a list for now, since we only add interfaces as this point.
if_list: LinkedList<NetworkInterfaceConfig>,
if_list: Vec<NetworkInterfaceConfig>,
}

impl NetworkInterfaceConfigs {
pub fn new() -> Self {
NetworkInterfaceConfigs {
if_list: LinkedList::new(),
if_list: Vec::new(),
}
}

pub fn put(&mut self, body: NetworkInterfaceBody) -> result::Result<SyncOkStatus, SyncError> {
match self.if_list
.iter()
.position(|netif| netif.id.as_str() == body.iface_id.as_str())
{
Some(index) => self.update(index, body),
None => self.create(body),
}
}

pub fn iter_mut(&mut self) -> ::std::slice::IterMut<NetworkInterfaceConfig> {
self.if_list.iter_mut()
}

fn create(&mut self, body: NetworkInterfaceBody) -> result::Result<SyncOkStatus, SyncError> {
self.validate_unique_mac(&body.guest_mac)?;
let cfg = NetworkInterfaceConfig::try_from_body(body).map_err(SyncError::OpenTap)?;
for device_config in self.if_list.iter_mut() {
if device_config.id_as_str() == cfg.id_as_str() {
device_config.tap = cfg.tap;
device_config.body = cfg.body.clone();
return Ok(SyncOkStatus::Updated);
}
self.if_list.push(cfg);
Ok(SyncOkStatus::Created)
}

if cfg.guest_mac().is_some() && device_config.guest_mac() == cfg.guest_mac() {
return Err(SyncError::GuestMacAddressInUse);
}
fn update(
&mut self,
index: usize,
body: NetworkInterfaceBody,
) -> result::Result<SyncOkStatus, SyncError> {
if self.if_list[index].body.host_dev_name != body.host_dev_name {
// This is a new tap device which replaces the one at the specified ID.
self.if_list.remove(index);
self.create(body)?;
} else {
// The same tap device is being updated.
self.validate_unique_mac(&body.guest_mac)?;
self.if_list[index].update_from_body(body);
}
self.if_list.push_back(cfg);
Ok(SyncOkStatus::Created)
Ok(SyncOkStatus::Updated)
}

pub fn iter_mut(&mut self) -> linked_list::IterMut<NetworkInterfaceConfig> {
self.if_list.iter_mut()
fn validate_unique_mac(&self, mac: &Option<MacAddr>) -> result::Result<(), SyncError> {
for device_config in self.if_list.iter() {
if mac.is_some() && mac == &device_config.body.guest_mac {
return Err(SyncError::GuestMacAddressInUse);
}
}
Ok(())
}
}

Expand All @@ -96,37 +127,68 @@ mod tests {
use api_server::request::sync::DeviceState;
use net_util::MacAddr;

fn make_netif(id: &str, name: &str, mac: MacAddr) -> NetworkInterfaceBody {
NetworkInterfaceBody {
iface_id: String::from(id),
state: DeviceState::Attached,
host_dev_name: String::from(name),
guest_mac: Some(mac),
rx_rate_limiter: Some(RateLimiterDescription::default()),
tx_rate_limiter: Some(RateLimiterDescription::default()),
}
}

fn make_netif_cfg(body: NetworkInterfaceBody, id: &str) -> NetworkInterfaceConfig {
NetworkInterfaceConfig {
body: body,
id: Rc::new(String::from(id)),
tap: None,
tx_rate_limiter: None,
rx_rate_limiter: None,
}
}

#[test]
fn test_put() {
let mut netif_configs = NetworkInterfaceConfigs::new();
assert!(netif_configs.if_list.is_empty());

if let Ok(mac) = MacAddr::parse_str("01:23:45:67:89:0A") {
let mut netif_body = NetworkInterfaceBody {
iface_id: String::from("foo"),
state: DeviceState::Attached,
host_dev_name: String::from("bar"),
guest_mac: Some(mac.clone()),
rx_rate_limiter: Some(RateLimiterDescription::default()),
tx_rate_limiter: Some(RateLimiterDescription::default()),
};
assert!(netif_configs.put(netif_body.clone()).is_ok());
assert_eq!(netif_configs.if_list.len(), 1);

netif_body.host_dev_name = String::from("baz");
assert!(netif_configs.put(netif_body).is_ok());
assert_eq!(netif_configs.if_list.len(), 1);

let other_netif_body = NetworkInterfaceBody {
iface_id: String::from("bar"),
state: DeviceState::Attached,
host_dev_name: String::from("foo"),
guest_mac: Some(mac.clone()),
rx_rate_limiter: None,
tx_rate_limiter: None,
};
assert!(netif_configs.put(other_netif_body).is_err());
assert_eq!(netif_configs.if_list.len(), 1);
}
let mac1 = MacAddr::parse_str("01:23:45:67:89:0A").unwrap();
let mac2 = MacAddr::parse_str("23:45:67:89:0A:01").unwrap();
let mac3 = MacAddr::parse_str("45:67:89:0A:01:23").unwrap();

// Add an interface.
let mut netif_body = make_netif("foo", "bar", mac1);
netif_configs
.if_list
.push(make_netif_cfg(netif_body.clone(), "foo"));
assert_eq!(netif_configs.if_list.len(), 1);

// Update MAC.
netif_body.guest_mac = Some(mac2.clone());
assert!(netif_configs.put(netif_body).is_ok());
assert_eq!(netif_configs.if_list.len(), 1);

// Try to add another interface with the same MAC.
let mut other_netif_body = make_netif("bar", "foo", mac2.clone());
assert!(netif_configs.put(other_netif_body.clone()).is_err());
assert_eq!(netif_configs.if_list.len(), 1);

// Add another interface.
other_netif_body.guest_mac = Some(mac3);
netif_configs
.if_list
.push(make_netif_cfg(other_netif_body.clone(), "foo"));
assert_eq!(netif_configs.if_list.len(), 2);

// Try to update with an unavailable name.
other_netif_body.host_dev_name = String::from("baz");
assert!(netif_configs.put(other_netif_body.clone()).is_err());
assert_eq!(netif_configs.if_list.len(), 2);

// Try to update with an unavailable MAC.
other_netif_body.guest_mac = Some(mac2);
assert!(netif_configs.put(other_netif_body).is_err());
assert_eq!(netif_configs.if_list.len(), 2);
}
}