From f010d99afbc6095ad8fe218187fda306c59d3e1e Mon Sep 17 00:00:00 2001
From: Andrey Smirnov <smirnov.andrey@gmail.com>
Date: Wed, 9 Jun 2021 22:22:55 +0300
Subject: [PATCH] feat: implement operator framework with DHCP4 as the first
 example

There is nothing new in the DHCP4 operator, it's more or less adapted
code from networkd.

Other operators coming: DHCP6, VIP, WgLAN, etc.

Signed-off-by: Andrey Smirnov <smirnov.andrey@gmail.com>
---
 .../controllers/network/address_merge_test.go |   2 +-
 .../network/hostname_merge_test.go            |   4 +-
 .../controllers/network/link_merge_test.go    |   2 +-
 .../pkg/controllers/network/operator/dhcp4.go | 346 ++++++++++++++++++
 .../controllers/network/operator/operator.go  |  27 ++
 .../network/resolver_merge_test.go            |   4 +-
 .../controllers/network/route_merge_test.go   |   2 +-
 .../network/timeserver_merge_test.go          |   4 +-
 pkg/resources/network/configlayer.go          |   2 +-
 pkg/resources/network/configlayer_string.go   |   8 +-
 10 files changed, 387 insertions(+), 14 deletions(-)
 create mode 100644 internal/app/machined/pkg/controllers/network/operator/dhcp4.go
 create mode 100644 internal/app/machined/pkg/controllers/network/operator/operator.go

diff --git a/internal/app/machined/pkg/controllers/network/address_merge_test.go b/internal/app/machined/pkg/controllers/network/address_merge_test.go
index c1bab18e0..2059b44a2 100644
--- a/internal/app/machined/pkg/controllers/network/address_merge_test.go
+++ b/internal/app/machined/pkg/controllers/network/address_merge_test.go
@@ -128,7 +128,7 @@ func (suite *AddressMergeSuite) TestMerge() {
 		LinkName:    "eth0",
 		Family:      nethelpers.FamilyInet4,
 		Scope:       nethelpers.ScopeGlobal,
-		ConfigLayer: network.ConfigDHCP,
+		ConfigLayer: network.ConfigOperator,
 	}
 
 	static := network.NewAddressSpec(network.ConfigNamespaceName, "configuration/eth0/10.0.0.35/32")
diff --git a/internal/app/machined/pkg/controllers/network/hostname_merge_test.go b/internal/app/machined/pkg/controllers/network/hostname_merge_test.go
index 326c756b7..2edf8b00b 100644
--- a/internal/app/machined/pkg/controllers/network/hostname_merge_test.go
+++ b/internal/app/machined/pkg/controllers/network/hostname_merge_test.go
@@ -106,13 +106,13 @@ func (suite *HostnameMergeSuite) TestMerge() {
 	dhcp1 := network.NewHostnameSpec(network.ConfigNamespaceName, "dhcp/eth0")
 	*dhcp1.TypedSpec() = network.HostnameSpecSpec{
 		Hostname:    "eth-0",
-		ConfigLayer: network.ConfigDHCP,
+		ConfigLayer: network.ConfigOperator,
 	}
 
 	dhcp2 := network.NewHostnameSpec(network.ConfigNamespaceName, "dhcp/eth1")
 	*dhcp2.TypedSpec() = network.HostnameSpecSpec{
 		Hostname:    "eth-1",
-		ConfigLayer: network.ConfigDHCP,
+		ConfigLayer: network.ConfigOperator,
 	}
 
 	static := network.NewHostnameSpec(network.ConfigNamespaceName, "configuration/hostname")
diff --git a/internal/app/machined/pkg/controllers/network/link_merge_test.go b/internal/app/machined/pkg/controllers/network/link_merge_test.go
index 6a2939399..d73c2b6e8 100644
--- a/internal/app/machined/pkg/controllers/network/link_merge_test.go
+++ b/internal/app/machined/pkg/controllers/network/link_merge_test.go
@@ -123,7 +123,7 @@ func (suite *LinkMergeSuite) TestMerge() {
 		Name:        "eth0",
 		Up:          true,
 		MTU:         1450,
-		ConfigLayer: network.ConfigDHCP,
+		ConfigLayer: network.ConfigOperator,
 	}
 
 	static := network.NewLinkSpec(network.ConfigNamespaceName, "configuration/eth0")
diff --git a/internal/app/machined/pkg/controllers/network/operator/dhcp4.go b/internal/app/machined/pkg/controllers/network/operator/dhcp4.go
new file mode 100644
index 000000000..1f3f5e318
--- /dev/null
+++ b/internal/app/machined/pkg/controllers/network/operator/dhcp4.go
@@ -0,0 +1,346 @@
+// This Source Code Form is subject to the terms of the Mozilla Public
+// License, v. 2.0. If a copy of the MPL was not distributed with this
+// file, You can obtain one at http://mozilla.org/MPL/2.0/.
+
+package operator
+
+import (
+	"context"
+	"errors"
+	"fmt"
+	"net"
+	"strings"
+	"sync"
+	"time"
+
+	"github.com/insomniacslk/dhcp/dhcpv4"
+	"github.com/insomniacslk/dhcp/dhcpv4/nclient4"
+	"go.uber.org/zap"
+	"inet.af/netaddr"
+
+	"github.com/talos-systems/talos/internal/app/machined/pkg/runtime"
+	"github.com/talos-systems/talos/pkg/machinery/nethelpers"
+	"github.com/talos-systems/talos/pkg/resources/network"
+)
+
+// DHCP4 implements the DHCPv4 network operator.
+type DHCP4 struct {
+	logger *zap.Logger
+
+	linkName    string
+	routeMetric uint32
+	requestMTU  bool
+
+	offer *dhcpv4.DHCPv4
+
+	mu          sync.Mutex
+	addresses   []network.AddressSpecSpec
+	links       []network.LinkSpecSpec
+	routes      []network.RouteSpecSpec
+	hostname    []network.HostnameSpecSpec
+	resolvers   []network.ResolverSpecSpec
+	timeservers []network.TimeServerSpecSpec
+}
+
+// NewDHCP4 creates DHCPv4 operator.
+func NewDHCP4(logger *zap.Logger, linkName string, routeMetric uint32, platform runtime.Platform) *DHCP4 {
+	return &DHCP4{
+		logger:      logger,
+		linkName:    linkName,
+		routeMetric: routeMetric,
+		// <3 azure
+		// When including dhcp.OptionInterfaceMTU we don't get a dhcp offer back on azure.
+		// So we'll need to explicitly exclude adding this option for azure.
+		requestMTU: platform.Name() != "azure",
+	}
+}
+
+// Prefix returns unique operator prefix which gets prepended to each spec.
+func (d *DHCP4) Prefix() string {
+	return fmt.Sprintf("dhcp4/%s", d.linkName)
+}
+
+// Run the operator loop.
+//
+//nolint:gocyclo
+func (d *DHCP4) Run(ctx context.Context, notifyCh chan<- struct{}) {
+	const minRenewDuration = 5 * time.Second // protect from renewing too often
+
+	renewInterval := minRenewDuration
+
+	for {
+		leaseTime, err := d.renew(ctx)
+		if err != nil && !errors.Is(err, context.Canceled) {
+			d.logger.Warn("renew failed", zap.Error(err), zap.String("link", d.linkName))
+		}
+
+		if err == nil {
+			select {
+			case notifyCh <- struct{}{}:
+			case <-ctx.Done():
+				return
+			}
+		}
+
+		if leaseTime > 0 {
+			renewInterval = leaseTime / 2
+		} else {
+			renewInterval /= 2
+		}
+
+		if renewInterval < minRenewDuration {
+			renewInterval = minRenewDuration
+		}
+
+		select {
+		case <-ctx.Done():
+			return
+		case <-time.After(renewInterval):
+		}
+	}
+}
+
+// AddressSpecs implements Operator interface.
+func (d *DHCP4) AddressSpecs() []network.AddressSpecSpec {
+	d.mu.Lock()
+	defer d.mu.Unlock()
+
+	return d.addresses
+}
+
+// LinkSpecs implements Operator interface.
+func (d *DHCP4) LinkSpecs() []network.LinkSpecSpec {
+	d.mu.Lock()
+	defer d.mu.Unlock()
+
+	return d.links
+}
+
+// RouteSpecs implements Operator interface.
+func (d *DHCP4) RouteSpecs() []network.RouteSpecSpec {
+	d.mu.Lock()
+	defer d.mu.Unlock()
+
+	return d.routes
+}
+
+// HostnameSpecs implements Operator interface.
+func (d *DHCP4) HostnameSpecs() []network.HostnameSpecSpec {
+	d.mu.Lock()
+	defer d.mu.Unlock()
+
+	return d.hostname
+}
+
+// ResolverSpecs implements Operator interface.
+func (d *DHCP4) ResolverSpecs() []network.ResolverSpecSpec {
+	d.mu.Lock()
+	defer d.mu.Unlock()
+
+	return d.resolvers
+}
+
+// TimeServerSpecs implements Operator interface.
+func (d *DHCP4) TimeServerSpecs() []network.TimeServerSpecSpec {
+	d.mu.Lock()
+	defer d.mu.Unlock()
+
+	return d.timeservers
+}
+
+func (d *DHCP4) parseAck(ack *dhcpv4.DHCPv4) {
+	d.mu.Lock()
+	defer d.mu.Unlock()
+
+	addr, _ := netaddr.FromStdIPNet(&net.IPNet{
+		IP:   ack.YourIPAddr,
+		Mask: ack.SubnetMask(),
+	})
+
+	d.addresses = []network.AddressSpecSpec{
+		{
+			Address:     addr,
+			LinkName:    d.linkName,
+			Family:      nethelpers.FamilyInet4,
+			Scope:       nethelpers.ScopeGlobal,
+			Flags:       nethelpers.AddressFlags(nethelpers.AddressPermanent),
+			ConfigLayer: network.ConfigOperator,
+		},
+	}
+
+	mtu, err := dhcpv4.GetUint16(dhcpv4.OptionInterfaceMTU, ack.Options)
+	if err == nil {
+		d.links = []network.LinkSpecSpec{
+			{
+				Name: d.linkName,
+				MTU:  uint32(mtu),
+				Up:   true,
+			},
+		}
+	} else {
+		d.links = nil
+	}
+
+	// rfc3442:
+	//   If the DHCP server returns both a Classless Static Routes option and
+	//   a Router option, the DHCP client MUST ignore the Router option.
+	d.routes = nil
+
+	if len(ack.ClasslessStaticRoute()) > 0 {
+		for _, route := range ack.ClasslessStaticRoute() {
+			gw, _ := netaddr.FromStdIP(route.Router)
+			dst, _ := netaddr.FromStdIPNet(route.Dest)
+
+			d.routes = append(d.routes, network.RouteSpecSpec{
+				Family:      nethelpers.FamilyInet4,
+				Destination: dst,
+				Gateway:     gw,
+				OutLinkName: d.linkName,
+				Table:       nethelpers.TableMain,
+				Priority:    d.routeMetric,
+				Scope:       nethelpers.ScopeGlobal,
+				Type:        nethelpers.TypeUnicast,
+				Protocol:    nethelpers.ProtocolBoot,
+				ConfigLayer: network.ConfigOperator,
+			})
+		}
+	} else {
+		for _, router := range ack.Router() {
+			gw, _ := netaddr.FromStdIP(router)
+
+			d.routes = append(d.routes, network.RouteSpecSpec{
+				Family:      nethelpers.FamilyInet4,
+				Gateway:     gw,
+				OutLinkName: d.linkName,
+				Table:       nethelpers.TableMain,
+				Priority:    d.routeMetric,
+				Scope:       nethelpers.ScopeGlobal,
+				Type:        nethelpers.TypeUnicast,
+				Protocol:    nethelpers.ProtocolBoot,
+				ConfigLayer: network.ConfigOperator,
+			})
+		}
+	}
+
+	if len(ack.DNS()) > 0 {
+		dns := make([]netaddr.IP, len(ack.DNS()))
+
+		for i := range dns {
+			dns[i], _ = netaddr.FromStdIP(ack.DNS()[i])
+		}
+
+		d.resolvers = []network.ResolverSpecSpec{
+			{
+				DNSServers:  dns,
+				ConfigLayer: network.ConfigOperator,
+			},
+		}
+	} else {
+		d.resolvers = nil
+	}
+
+	if ack.HostName() != "" {
+		d.hostname = []network.HostnameSpecSpec{
+			{
+				Hostname:    ack.HostName(),
+				Domainname:  ack.DomainName(),
+				ConfigLayer: network.ConfigOperator,
+			},
+		}
+	} else {
+		d.hostname = nil
+	}
+
+	if len(ack.NTPServers()) > 0 {
+		ntp := make([]string, len(ack.NTPServers()))
+
+		for i := range ntp {
+			ip, _ := netaddr.FromStdIP(ack.NTPServers()[i])
+			ntp[i] = ip.String()
+		}
+
+		d.timeservers = []network.TimeServerSpecSpec{
+			{
+				NTPServers:  ntp,
+				ConfigLayer: network.ConfigOperator,
+			},
+		}
+	} else {
+		d.timeservers = nil
+	}
+}
+
+func (d *DHCP4) renew(ctx context.Context) (time.Duration, error) {
+	opts := []dhcpv4.OptionCode{
+		dhcpv4.OptionClasslessStaticRoute,
+		dhcpv4.OptionDomainNameServer,
+		dhcpv4.OptionDNSDomainSearchList,
+		dhcpv4.OptionHostName,
+		dhcpv4.OptionNTPServers,
+		dhcpv4.OptionDomainName,
+	}
+
+	if d.requestMTU {
+		opts = append(opts, dhcpv4.OptionInterfaceMTU)
+	}
+
+	mods := []dhcpv4.Modifier{dhcpv4.WithRequestedOptions(opts...)}
+	clientOpts := []nclient4.ClientOpt{}
+
+	if d.offer != nil {
+		// do not use broadcast, but send the packet to DHCP server directly
+		addr, err := net.ResolveUDPAddr("udp", d.offer.ServerIPAddr.String()+":67")
+		if err != nil {
+			return 0, err
+		}
+
+		// by default it's set to 0.0.0.0 which actually breaks lease renew
+		d.offer.ClientIPAddr = d.offer.YourIPAddr
+
+		clientOpts = append(clientOpts, nclient4.WithServerAddr(addr))
+	}
+
+	cli, err := nclient4.New(d.linkName, clientOpts...)
+	if err != nil {
+		return 0, err
+	}
+
+	//nolint:errcheck
+	defer cli.Close()
+
+	var lease *nclient4.Lease
+
+	if d.offer != nil {
+		lease, err = cli.RequestFromOffer(ctx, d.offer, mods...)
+	} else {
+		lease, err = cli.Request(ctx, mods...)
+	}
+
+	if err != nil {
+		// clear offer if request fails to start with discover sequence next time
+		d.offer = nil
+
+		return 0, err
+	}
+
+	d.logger.Debug("DHCP ACK", zap.String("link", d.linkName), zap.String("dhcp", collapseSummary(lease.ACK.Summary())))
+
+	d.offer = lease.Offer
+	d.parseAck(lease.ACK)
+
+	return lease.ACK.IPAddressLeaseTime(time.Minute * 30), nil
+}
+
+func collapseSummary(summary string) string {
+	lines := strings.Split(summary, "\n")[1:]
+
+	for i := range lines {
+		lines[i] = strings.TrimSpace(lines[i])
+	}
+
+	if len(lines) > 0 && lines[len(lines)-1] == "" {
+		lines = lines[:len(lines)-1]
+	}
+
+	return strings.Join(lines, ", ")
+}
diff --git a/internal/app/machined/pkg/controllers/network/operator/operator.go b/internal/app/machined/pkg/controllers/network/operator/operator.go
new file mode 100644
index 000000000..b6eb11d04
--- /dev/null
+++ b/internal/app/machined/pkg/controllers/network/operator/operator.go
@@ -0,0 +1,27 @@
+// This Source Code Form is subject to the terms of the Mozilla Public
+// License, v. 2.0. If a copy of the MPL was not distributed with this
+// file, You can obtain one at http://mozilla.org/MPL/2.0/.
+
+// Package operator implements network operators.
+package operator
+
+import (
+	"context"
+
+	"github.com/talos-systems/talos/pkg/resources/network"
+)
+
+// Operator describes common interface of the operators.
+type Operator interface {
+	Run(ctx context.Context, notifyCh chan<- struct{})
+
+	Prefix() string
+
+	AddressSpecs() []network.AddressSpecSpec
+	RouteSpecs() []network.RouteSpecSpec
+	LinkSpecs() []network.LinkSpecSpec
+
+	HostnameSpecs() []network.HostnameSpecSpec
+	ResolverSpecs() []network.ResolverSpecSpec
+	TimeServerSpecs() []network.TimeServerSpecSpec
+}
diff --git a/internal/app/machined/pkg/controllers/network/resolver_merge_test.go b/internal/app/machined/pkg/controllers/network/resolver_merge_test.go
index ce64a8035..11fcd1893 100644
--- a/internal/app/machined/pkg/controllers/network/resolver_merge_test.go
+++ b/internal/app/machined/pkg/controllers/network/resolver_merge_test.go
@@ -108,13 +108,13 @@ func (suite *ResolverMergeSuite) TestMerge() {
 	dhcp1 := network.NewResolverSpec(network.ConfigNamespaceName, "dhcp/eth0")
 	*dhcp1.TypedSpec() = network.ResolverSpecSpec{
 		DNSServers:  []netaddr.IP{netaddr.MustParseIP("1.1.2.0")},
-		ConfigLayer: network.ConfigDHCP,
+		ConfigLayer: network.ConfigOperator,
 	}
 
 	dhcp2 := network.NewResolverSpec(network.ConfigNamespaceName, "dhcp/eth1")
 	*dhcp2.TypedSpec() = network.ResolverSpecSpec{
 		DNSServers:  []netaddr.IP{netaddr.MustParseIP("1.1.2.1")},
-		ConfigLayer: network.ConfigDHCP,
+		ConfigLayer: network.ConfigOperator,
 	}
 
 	static := network.NewResolverSpec(network.ConfigNamespaceName, "configuration/resolvers")
diff --git a/internal/app/machined/pkg/controllers/network/route_merge_test.go b/internal/app/machined/pkg/controllers/network/route_merge_test.go
index a0580731b..a80f19a2b 100644
--- a/internal/app/machined/pkg/controllers/network/route_merge_test.go
+++ b/internal/app/machined/pkg/controllers/network/route_merge_test.go
@@ -132,7 +132,7 @@ func (suite *RouteMergeSuite) TestMerge() {
 		Scope:       nethelpers.ScopeGlobal,
 		Type:        nethelpers.TypeUnicast,
 		Priority:    50,
-		ConfigLayer: network.ConfigDHCP,
+		ConfigLayer: network.ConfigOperator,
 	}
 
 	static := network.NewRouteSpec(network.ConfigNamespaceName, "configuration/10.0.0.35/32/10.0.0.34")
diff --git a/internal/app/machined/pkg/controllers/network/timeserver_merge_test.go b/internal/app/machined/pkg/controllers/network/timeserver_merge_test.go
index f0baf60ec..706017dc8 100644
--- a/internal/app/machined/pkg/controllers/network/timeserver_merge_test.go
+++ b/internal/app/machined/pkg/controllers/network/timeserver_merge_test.go
@@ -107,13 +107,13 @@ func (suite *TimeServerMergeSuite) TestMerge() {
 	dhcp1 := network.NewTimeServerSpec(network.ConfigNamespaceName, "dhcp/eth0")
 	*dhcp1.TypedSpec() = network.TimeServerSpecSpec{
 		NTPServers:  []string{"ntp.eth0"},
-		ConfigLayer: network.ConfigDHCP,
+		ConfigLayer: network.ConfigOperator,
 	}
 
 	dhcp2 := network.NewTimeServerSpec(network.ConfigNamespaceName, "dhcp/eth1")
 	*dhcp2.TypedSpec() = network.TimeServerSpecSpec{
 		NTPServers:  []string{"ntp.eth1"},
-		ConfigLayer: network.ConfigDHCP,
+		ConfigLayer: network.ConfigOperator,
 	}
 
 	static := network.NewTimeServerSpec(network.ConfigNamespaceName, "configuration/timeservers")
diff --git a/pkg/resources/network/configlayer.go b/pkg/resources/network/configlayer.go
index d9e345534..84d576789 100644
--- a/pkg/resources/network/configlayer.go
+++ b/pkg/resources/network/configlayer.go
@@ -13,8 +13,8 @@ type ConfigLayer int
 const (
 	ConfigDefault              ConfigLayer = iota // default
 	ConfigCmdline                                 // cmdline
-	ConfigDHCP                                    // dhcp
 	ConfigPlatform                                // platform
+	ConfigOperator                                // operator
 	ConfigMachineConfiguration                    // configuration
 )
 
diff --git a/pkg/resources/network/configlayer_string.go b/pkg/resources/network/configlayer_string.go
index 9c5b6ed22..e7cb7d8be 100644
--- a/pkg/resources/network/configlayer_string.go
+++ b/pkg/resources/network/configlayer_string.go
@@ -10,14 +10,14 @@ func _() {
 	var x [1]struct{}
 	_ = x[ConfigDefault-0]
 	_ = x[ConfigCmdline-1]
-	_ = x[ConfigDHCP-2]
-	_ = x[ConfigPlatform-3]
+	_ = x[ConfigPlatform-2]
+	_ = x[ConfigOperator-3]
 	_ = x[ConfigMachineConfiguration-4]
 }
 
-const _ConfigLayer_name = "defaultcmdlinedhcpplatformconfiguration"
+const _ConfigLayer_name = "defaultcmdlineplatformoperatorconfiguration"
 
-var _ConfigLayer_index = [...]uint8{0, 7, 14, 18, 26, 39}
+var _ConfigLayer_index = [...]uint8{0, 7, 14, 22, 30, 43}
 
 func (i ConfigLayer) String() string {
 	if i < 0 || i >= ConfigLayer(len(_ConfigLayer_index)-1) {