Skip to content

nexus-db-queries: replace BgpPeerConfig with BgpPeerFromDb #10086

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
jgallagher wants to merge 2 commits into
base: main
Choose a base branch
from
+160 −158
Open

nexus-db-queries: replace BgpPeerConfig with BgpPeerFromDb #10086

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
32d102f
DataStore: replace `BgpPeerConfig` with `BgpPeerFromDb`
jgallagher Mar 18, 2026
9cfd9ff
work around interface_name issue
jgallagher Mar 19, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
31 changes: 17 additions & 14 deletions nexus/db-queries/src/db/datastore/bgp.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,7 @@ use omicron_common::api::external::{
};
use ref_cast::RefCast;
use sled_agent_types::early_networking::SwitchSlot;
use std::net::IpAddr;
use uuid::Uuid;

impl DataStore {
Expand Down Expand Up @@ -839,14 +840,14 @@ impl DataStore {
opctx: &OpContext,
port_settings_id: Uuid,
interface_name: &str,
addr: Option<IpNetwork>,
addr: Option<IpAddr>,
) -> ListResultVec<SwitchPortBgpPeerConfigCommunity> {
use nexus_db_schema::schema::switch_port_settings_bgp_peer_config_communities::dsl;

// For unnumbered peers (addr is None), use UNSPECIFIED as sentinel
let db_addr: IpNetwork = addr.unwrap_or_else(|| {
std::net::IpAddr::V4(std::net::Ipv4Addr::UNSPECIFIED).into()
});
let db_addr: IpNetwork = addr
.unwrap_or_else(|| IpAddr::V4(std::net::Ipv4Addr::UNSPECIFIED))
.into();

let results = dsl::switch_port_settings_bgp_peer_config_communities
.filter(dsl::port_settings_id.eq(port_settings_id))
Expand All @@ -871,7 +872,7 @@ impl DataStore {
opctx: &OpContext,
port_settings_id: Uuid,
interface_name: &str,
addr: Option<IpNetwork>,
addr: Option<IpAddr>,
) -> LookupResult<Option<Vec<SwitchPortBgpPeerConfigAllowExport>>> {
use nexus_db_schema::schema::switch_port_settings_bgp_peer_config as db_peer;
use nexus_db_schema::schema::switch_port_settings_bgp_peer_config::dsl as peer_dsl;
Expand All @@ -880,9 +881,9 @@ impl DataStore {

// For unnumbered peers (addr is None), use UNSPECIFIED as sentinel
// for the allow_export table (which has non-nullable addr)
let db_addr: IpNetwork = addr.unwrap_or_else(|| {
std::net::IpAddr::V4(std::net::Ipv4Addr::UNSPECIFIED).into()
});
let db_addr: IpNetwork = addr
.unwrap_or_else(|| IpAddr::V4(std::net::Ipv4Addr::UNSPECIFIED))
.into();

let conn = self.pool_connection_authorized(opctx).await?;
let err = OptionalError::new();
Expand All @@ -892,7 +893,8 @@ impl DataStore {
async move {
// Query the main peer config table. For unnumbered peers,
// addr is NULL; for numbered peers, addr matches.
let active = if addr.is_some() {
let active = if let Some(addr) = addr {
let addr = IpNetwork::from(addr);
peer_dsl::switch_port_settings_bgp_peer_config
.filter(db_peer::port_settings_id.eq(port_settings_id))
.filter(db_peer::addr.eq(addr))
Expand Down Expand Up @@ -965,7 +967,7 @@ impl DataStore {
opctx: &OpContext,
port_settings_id: Uuid,
interface_name: &str,
addr: Option<IpNetwork>,
addr: Option<IpAddr>,
) -> LookupResult<Option<Vec<SwitchPortBgpPeerConfigAllowImport>>> {
use nexus_db_schema::schema::switch_port_settings_bgp_peer_config as db_peer;
use nexus_db_schema::schema::switch_port_settings_bgp_peer_config::dsl as peer_dsl;
Expand All @@ -974,9 +976,9 @@ impl DataStore {

// For unnumbered peers (addr is None), use UNSPECIFIED as sentinel
// for the allow_import table (which has non-nullable addr)
let db_addr: IpNetwork = addr.unwrap_or_else(|| {
std::net::IpAddr::V4(std::net::Ipv4Addr::UNSPECIFIED).into()
});
let db_addr: IpNetwork = addr
.unwrap_or_else(|| IpAddr::V4(std::net::Ipv4Addr::UNSPECIFIED))
.into();

let err = OptionalError::new();
let conn = self.pool_connection_authorized(opctx).await?;
Expand All @@ -987,7 +989,8 @@ impl DataStore {
async move {
// Query the main peer config table. For unnumbered peers,
// addr is NULL; for numbered peers, addr matches.
let active = if addr.is_some() {
let active = if let Some(addr) = addr {
let addr = IpNetwork::from(addr);
peer_dsl::switch_port_settings_bgp_peer_config
.filter(db_peer::port_settings_id.eq(port_settings_id))
.filter(db_peer::addr.eq(addr))
Expand Down
229 changes: 113 additions & 116 deletions nexus/db-queries/src/db/datastore/switch_port.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,7 +30,7 @@ use nexus_db_errors::ErrorHandler;
use nexus_db_errors::OptionalError;
use nexus_db_errors::public_error_from_diesel;
use nexus_db_model::{
AddressLot, BgpConfig, DbSwitchSlot, SqlU8, SqlU16, SqlU32,
AddressLot, BgpConfig, DbSwitchSlot, SqlU16,
SwitchPortBgpPeerConfigAllowExport, SwitchPortBgpPeerConfigAllowImport,
SwitchPortBgpPeerConfigCommunity,
};
Expand All @@ -47,59 +47,89 @@ use sled_agent_types::early_networking::ImportExportPolicy;
use sled_agent_types::early_networking::SwitchSlot;
use uuid::Uuid;

#[derive(Clone, Debug, Serialize, Deserialize)]
pub struct BgpPeerConfig {
pub port_settings_id: Uuid,
pub bgp_config_id: Uuid,
pub interface_name: Name,
pub addr: Option<IpNetwork>,
pub hold_time: SqlU32,
pub idle_hold_time: SqlU32,
pub delay_open: SqlU32,
pub connect_retry: SqlU32,
pub keepalive: SqlU32,
pub remote_asn: Option<SqlU32>,
pub min_ttl: Option<SqlU8>,
pub md5_auth_key: Option<String>,
pub multi_exit_discriminator: Option<SqlU32>,
pub local_pref: Option<SqlU32>,
pub enforce_first_as: bool,
pub allowed_import: ImportExportPolicy,
pub allowed_export: ImportExportPolicy,
pub communities: Vec<u32>,
pub vlan_id: Option<SqlU16>,
pub router_lifetime: SqlU16,
/// This is a wrapper around [`networking::BgpPeer`], with two additions:
///
/// * [`BgpPeerFromDb::bgp_config_id`] is guaranteed to be an ID, unlike the
/// inner [`networking::BgpPeer::bgp_config`] which might be an ID or might be
/// a [`Name`].
/// * Adds [`BgpPeerFromDb::port_settings_id`], which doesn't exist in
/// inner [`networking::BgpPeer`].
#[derive(Clone, Debug)]
pub struct BgpPeerFromDb {
port_settings_id: Uuid,
bgp_config_id: Uuid,
inner: networking::BgpPeer,
}

impl Into<networking::BgpPeer> for BgpPeerConfig {
fn into(self) -> networking::BgpPeer {
networking::BgpPeer {
bgp_config: self.bgp_config_id.into(),
interface_name: self.interface_name.into(),
addr: self.addr.map(|a| a.ip()),
hold_time: self.hold_time.into(),
idle_hold_time: self.idle_hold_time.into(),
delay_open: self.delay_open.into(),
connect_retry: self.connect_retry.into(),
keepalive: self.keepalive.into(),
remote_asn: self.remote_asn.map(Into::into),
min_ttl: self.min_ttl.map(Into::into),
md5_auth_key: self.md5_auth_key.clone(),
multi_exit_discriminator: self
.multi_exit_discriminator
.map(Into::into),
communities: self.communities,
local_pref: self.local_pref.map(Into::into),
enforce_first_as: self.enforce_first_as,
allowed_import: self.allowed_import,
allowed_export: self.allowed_export,
vlan_id: self.vlan_id.map(Into::into),
router_lifetime: self.router_lifetime.into(),
impl From<BgpPeerFromDb> for networking::BgpPeer {
fn from(value: BgpPeerFromDb) -> Self {
value.inner
}
}

impl BgpPeerFromDb {
pub fn port_settings_id(&self) -> Uuid {
self.port_settings_id
}

pub fn bgp_config_id(&self) -> Uuid {
self.bgp_config_id
}

pub fn as_bgp_peer(&self) -> &networking::BgpPeer {
&self.inner
}
}

// Helper to build a `BgpPeerFromDb`. This is a struct instead of a function so
// we get named arguments, particularly for the import/export policy values that
// have the same type.
struct BgpPeerFromDbBuilder<'a> {
peer_config: &'a SwitchPortBgpPeerConfig,
communities: Vec<u32>,
allowed_import: ImportExportPolicy,
allowed_export: ImportExportPolicy,
}

impl BgpPeerFromDbBuilder<'_> {
fn build(self) -> BgpPeerFromDb {
let Self {
peer_config: p,
communities,
allowed_import,
allowed_export,
} = self;
BgpPeerFromDb {
port_settings_id: p.port_settings_id,
bgp_config_id: p.bgp_config_id,
inner: networking::BgpPeer {
bgp_config: p.bgp_config_id.into(),
interface_name: p.interface_name.clone().into(),
addr: p.addr.map(|a| a.ip()),
hold_time: p.hold_time.into(),
idle_hold_time: p.idle_hold_time.into(),
delay_open: p.delay_open.into(),
connect_retry: p.connect_retry.into(),
keepalive: p.keepalive.into(),
remote_asn: p.remote_asn.map(From::from),
min_ttl: p.min_ttl.map(From::from),
md5_auth_key: p.md5_auth_key.clone(),
multi_exit_discriminator: p
.multi_exit_discriminator
.map(From::from),
local_pref: p.local_pref.map(From::from),
enforce_first_as: p.enforce_first_as,
vlan_id: p.vlan_id.map(From::from),
router_lifetime: p.router_lifetime.into(),
communities,
allowed_import,
allowed_export,
},
}
}
}

#[derive(Clone, Debug, Deserialize, Serialize)]
#[derive(Clone, Debug)]
pub struct SwitchPortSettingsCombinedResult {
pub settings: SwitchPortSettings,
pub groups: Vec<SwitchPortSettingsGroups>,
Expand All @@ -110,7 +140,7 @@ pub struct SwitchPortSettingsCombinedResult {
pub interfaces: Vec<SwitchInterfaceConfig>,
pub vlan_interfaces: Vec<SwitchVlanInterfaceConfig>,
pub routes: Vec<SwitchPortRouteConfig>,
pub bgp_peers: Vec<BgpPeerConfig>,
pub bgp_peers: Vec<BgpPeerFromDb>,
pub addresses: Vec<SwitchPortAddressView>,
}

Expand Down Expand Up @@ -662,30 +692,15 @@ impl DataStore {
.load_async::<SwitchPortBgpPeerConfigCommunity>(&conn)
.await?;

let view = BgpPeerConfig {
port_settings_id: p.port_settings_id,
bgp_config_id: p.bgp_config_id,
interface_name: p.interface_name.clone(),
addr: p.addr,
hold_time: p.hold_time,
idle_hold_time: p.idle_hold_time,
delay_open: p.delay_open,
connect_retry: p.connect_retry,
keepalive: p.keepalive,
remote_asn: p.remote_asn,
min_ttl: p.min_ttl,
md5_auth_key: p.md5_auth_key.clone(),
multi_exit_discriminator: p.multi_exit_discriminator,
local_pref: p.local_pref,
enforce_first_as: p.enforce_first_as,
vlan_id: p.vlan_id,
router_lifetime: p.router_lifetime,
communities: communities.into_iter().map(|c| c.community.0).collect(),
result.bgp_peers.push(BgpPeerFromDbBuilder {
peer_config: p,
communities: communities
.into_iter()
.map(|c| c.community.0)
.collect(),
allowed_import,
allowed_export,
};

result.bgp_peers.push(view);
}.build());
}

// get the address configs
Expand Down Expand Up @@ -1535,29 +1550,15 @@ async fn do_switch_port_settings_create(
.map(|x| x.communities.clone())
.unwrap_or(Vec::new()),
);
let view = BgpPeerConfig {
port_settings_id: p.port_settings_id,
bgp_config_id: p.bgp_config_id,
interface_name: p.interface_name,
addr: p.addr,
hold_time: p.hold_time,
idle_hold_time: p.idle_hold_time,
delay_open: p.delay_open,
connect_retry: p.connect_retry,
keepalive: p.keepalive,
remote_asn: p.remote_asn,
min_ttl: p.min_ttl,
md5_auth_key: p.md5_auth_key,
multi_exit_discriminator: p.multi_exit_discriminator,
local_pref: p.local_pref,
enforce_first_as: p.enforce_first_as,
vlan_id: p.vlan_id,
router_lifetime: p.router_lifetime,
allowed_import,
allowed_export,
communities,
};
result.bgp_peers.push(view);
result.bgp_peers.push(
BgpPeerFromDbBuilder {
peer_config: &p,
communities,
allowed_import,
allowed_export,
}
.build(),
);
}

let mut address_config = Vec::new();
Expand Down Expand Up @@ -2146,15 +2147,15 @@ mod test {
let mut db_peers = HashMap::new();

for peer in db_settings.bgp_peers {
db_peers.insert(peer.interface_name.clone(), peer);
db_peers.insert(peer.inner.interface_name.clone(), peer);
}

for config in settings.bgp_peers {
let db_peer = db_peers
.get(&config.link_name.into())
.get(&config.link_name)
.expect("requested peer should be present");

for peer in config.peers {
for mut peer in config.peers {
match peer.bgp_config {
NameOrId::Id(id) => {
assert_eq!(db_peer.bgp_config_id, id);
Expand All @@ -2175,25 +2176,21 @@ mod test {
}
}

assert_eq!(db_peer.addr.map(|a| a.ip()), peer.addr);
assert_eq!(*db_peer.hold_time, peer.hold_time);
assert_eq!(*db_peer.idle_hold_time, peer.idle_hold_time);
assert_eq!(*db_peer.delay_open, peer.delay_open);
assert_eq!(*db_peer.connect_retry, peer.connect_retry);
assert_eq!(*db_peer.keepalive, peer.keepalive);
assert_eq!(db_peer.remote_asn.map(|asn| *asn), peer.remote_asn);
assert_eq!(db_peer.min_ttl.map(|ttl| *ttl), peer.min_ttl);
assert_eq!(db_peer.md5_auth_key, peer.md5_auth_key);
assert_eq!(
db_peer.multi_exit_discriminator.map(|med| *med),
peer.multi_exit_discriminator
);
assert_eq!(db_peer.communities, peer.communities);
assert_eq!(db_peer.local_pref.map(|lp| *lp), peer.local_pref);
assert_eq!(db_peer.enforce_first_as, peer.enforce_first_as);
assert_eq!(db_peer.allowed_export, peer.allowed_export);
assert_eq!(db_peer.allowed_import, peer.allowed_import);
assert_eq!(db_peer.vlan_id.map(|vid| *vid), peer.vlan_id);
// We now know `db_peer.bgp_config_id` is correct; set
// `peer.bgp_config` to an ID (potentially replacing a Name) so
// we can compare the rest of the struct at once, since
// `db_peer.inner.bgp_config` is always populated with an ID.
peer.bgp_config = NameOrId::Id(db_peer.bgp_config_id);

// TODO-correctness We don't faithfully persist
// `interface_name`, and should probably remove the field
// entirely
// (https://github.com/oxidecomputer/omicron/issues/10104).
// For now, manually set the field to match so we can assert_eq
// over the entire struct below.
peer.interface_name = db_peer.inner.interface_name.clone();

assert_eq!(peer, db_peer.inner);
Copy link
Contributor Author

@jgallagher jgallagher Mar 19, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It looks like the test failing in CI is because these two disagree on the value of interface_name:

interface_name: Name("qsfp0")
interface_name: Name("phy0")

I don't think I changed the behavior here - it looks like the test as written before omitted checking this field. Was that intentional, and there's a reason they're different? Or is the fact that they're different a bug that's just now surfacing?

Copy link
Contributor Author

@jgallagher jgallagher Mar 19, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this mismatch is also present on main. SwitchPortBgpPeerConfig takes an explicit interface_name: Name argument:

omicron/nexus/db-model/src/switch_port.rs

Lines 780 to 786 in afe86cb

impl SwitchPortBgpPeerConfig {
pub fn new(
port_settings_id: Uuid,
bgp_config_id: Uuid,
interface_name: Name,
p: &networking_types::BgpPeer,
) -> Self {

and it ignores p.interface_name (the interface name inside the networking_types::BgpPeer it's given). When we call this from do_switch_port_settings_create(), we pass the link_name, not the interface_name:

omicron/nexus/db-queries/src/db/datastore/switch_port.rs

Lines 1503 to 1508 in afe86cb

bgp_peer_config.push(SwitchPortBgpPeerConfig::new(
psid,
bgp_config_id,
peer_config.link_name.clone().into(),
p,
));

That explains why when we query this BGP config back after inserting it, we see an interface name of phy0 (the link name), not qsfp0 (the interface name inside the BgpPeer struct, which is ignored AFAICT).

I don't know what to make of this, though. Bug? Not bug just surprising behavior? More complex than either of those?

Copy link
Contributor Author

@jgallagher jgallagher Mar 19, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Filed #10104 for this, and pushed a workaround to this test (since this PR doesn't introduce this bug and is just a general cleanup/refactoring) in 9cfd9ff.

}
}

Expand Down
Loading
Loading