feat: allow link scope routes in the machine config

They were supported internally, but never properly exposed in the
machine configuration.

Signed-off-by: Andrey Smirnov <andrey.smirnov@talos-systems.com>

Author: smira

internal/app/machined/pkg/controllers/network/route_config.go

@@ -204,7 +204,7 @@ func (ctrl *RouteConfigController) parseCmdline(logger *zap.Logger) (route netwo
 	return route
 }
 
-//nolint:gocyclo
+//nolint:gocyclo,cyclop
 func (ctrl *RouteConfigController) parseMachineConfiguration(logger *zap.Logger, cfgProvider talosconfig.Provider) (routes []network.RouteSpecSpec) {
 	convert := func(linkName string, in talosconfig.Route) (route network.RouteSpecSpec, err error) {
 		if in.Network() != "" {
@@ -214,9 +214,11 @@ func (ctrl *RouteConfigController) parseMachineConfiguration(logger *zap.Logger,
 			}
 		}
 
-		route.Gateway, err = netaddr.ParseIP(in.Gateway())
-		if err != nil {
-			return route, fmt.Errorf("error parsing route gateway: %w", err)
+		if in.Gateway() != "" {
+			route.Gateway, err = netaddr.ParseIP(in.Gateway())
+			if err != nil {
+				return route, fmt.Errorf("error parsing route gateway: %w", err)
+			}
 		}
 
 		if in.Source() != "" {
@@ -233,9 +235,12 @@ func (ctrl *RouteConfigController) parseMachineConfiguration(logger *zap.Logger,
 			route.Priority = DefaultRouteMetric
 		}
 
-		if route.Gateway.Is6() {
+		switch {
+		case !route.Gateway.IsZero() && route.Gateway.Is6():
 			route.Family = nethelpers.FamilyInet6
-		} else {
+		case !route.Destination.IsZero() && route.Destination.IP().Is6():
+			route.Family = nethelpers.FamilyInet6
+		default:
 			route.Family = nethelpers.FamilyInet4
 		}
 

internal/app/machined/pkg/controllers/network/route_config_test.go

@@ -141,6 +141,9 @@ func (suite *RouteConfigSuite) TestMachineConfiguration() {
 								RouteGateway: "192.168.0.25",
 								RouteMetric:  25,
 							},
+							{
+								RouteNetwork: "169.254.254.254/32",
+							},
 						},
 					},
 					{
@@ -212,6 +215,7 @@ func (suite *RouteConfigSuite) TestMachineConfiguration() {
 				"configuration/inet4/10.0.3.1/10.0.3.0/24/1024",
 				"configuration/inet4/192.168.0.25/192.168.0.0/18/25",
 				"configuration/inet4/192.244.0.1/192.244.0.0/24/1024",
+				"configuration/inet4//169.254.254.254/32/1024",
 			}, func(r *network.RouteSpec) error {
 				switch r.Metadata().ID() {
 				case "configuration/inet6/2001:470:6d:30e:8ed2:b60c:9d2f:803b//1024":
@@ -231,6 +235,12 @@ func (suite *RouteConfigSuite) TestMachineConfiguration() {
 					suite.Assert().Equal(nethelpers.FamilyInet4, r.TypedSpec().Family)
 					suite.Assert().EqualValues(netctrl.DefaultRouteMetric, r.TypedSpec().Priority)
 					suite.Assert().EqualValues(netaddr.MustParseIP("192.244.0.10"), r.TypedSpec().Source)
+				case "configuration/inet4//169.254.254.254/32/1024":
+					suite.Assert().Equal("eth3", r.TypedSpec().OutLinkName)
+					suite.Assert().Equal(nethelpers.FamilyInet4, r.TypedSpec().Family)
+					suite.Assert().EqualValues(netctrl.DefaultRouteMetric, r.TypedSpec().Priority)
+					suite.Assert().Equal(nethelpers.ScopeLink, r.TypedSpec().Scope)
+					suite.Assert().Equal("169.254.254.254/32", r.TypedSpec().Destination.String())
 				}
 
 				suite.Assert().Equal(network.ConfigMachineConfiguration, r.TypedSpec().ConfigLayer)

pkg/machinery/config/types/v1alpha1/v1alpha1_types.go

@@ -1927,9 +1927,9 @@ type Vlan struct {
 
 // Route represents a network route.
 type Route struct {
-	//   description: The route's network.
+	//   description: The route's network (destination).
 	RouteNetwork string `yaml:"network"`
-	//   description: The route's gateway.
+	//   description: The route's gateway (if empty, creates link scope route).
 	RouteGateway string `yaml:"gateway"`
 	//   description: The route's source address (optional).
 	RouteSource string `yaml:"source,omitempty"`

pkg/machinery/config/types/v1alpha1/v1alpha1_types_doc.go

@@ -681,6 +681,8 @@ func CheckDeviceAddressing(d *Device, bondedInterfaces map[string]string) ([]str
 }
 
 // CheckDeviceRoutes ensures that the specified routes are valid.
+//
+//nolint:gocyclo
 func CheckDeviceRoutes(d *Device, bondedInterfaces map[string]string) ([]string, error) {
 	var result *multierror.Error
 
@@ -699,8 +701,14 @@ func CheckDeviceRoutes(d *Device, bondedInterfaces map[string]string) ([]string,
 			}
 		}
 
-		if ip := net.ParseIP(route.Gateway()); ip == nil {
-			result = multierror.Append(result, fmt.Errorf("[%s] %q: %w", "networking.os.device.route["+strconv.Itoa(idx)+"].gateway", route.Gateway(), ErrInvalidAddress))
+		if route.Gateway() != "" {
+			if ip := net.ParseIP(route.Gateway()); ip == nil {
+				result = multierror.Append(result, fmt.Errorf("[%s] %q: %w", "networking.os.device.route["+strconv.Itoa(idx)+"].gateway", route.Gateway(), ErrInvalidAddress))
+			}
+		}
+
+		if route.Gateway() == "" && route.Network() == "" {
+			result = multierror.Append(result, fmt.Errorf("[%s]: %s", "networking.os.device.route["+strconv.Itoa(idx)+"]", "either network or gateway should be set"))
 		}
 
 		if route.Source() != "" {

pkg/machinery/config/types/v1alpha1/v1alpha1_validation.go

@@ -737,6 +737,12 @@ func TestValidate(t *testing.T) {
 										RouteGateway: "10.0.0.1",
 										RouteSource:  "10.0.0.3/32",
 									},
+									{
+										RouteNetwork: "169.254.254.254/32",
+									},
+									{
+										RouteSource: "10.0.0.3",
+									},
 								},
 							},
 						},
@@ -750,9 +756,10 @@ func TestValidate(t *testing.T) {
 					},
 				},
 			},
-			expectedError: "3 errors occurred:\n\t* [networking.os.device.route[3].gateway] \"172.0.0.x\": invalid network address\n" +
+			expectedError: "4 errors occurred:\n\t* [networking.os.device.route[3].gateway] \"172.0.0.x\": invalid network address\n" +
 				"\t* [networking.os.device.route[4].network] \"10.0.0.0\": invalid network address\n" +
-				"\t* [networking.os.device.route[5].source] \"10.0.0.3/32\": invalid network address\n\n",
+				"\t* [networking.os.device.route[5].source] \"10.0.0.3/32\": invalid network address\n" +
+				"\t* [networking.os.device.route[7]]: either network or gateway should be set\n\n",
 		},
 		{
 			name: "KubeSpanNoDiscovery",

pkg/machinery/config/types/v1alpha1/v1alpha1_validation_test.go

@@ -374,8 +374,8 @@ network:
             - 192.168.2.0/24
           # A list of routes associated with the interface.
           routes:
-            - network: 0.0.0.0/0 # The route's network.
-              gateway: 192.168.2.1 # The route's gateway.
+            - network: 0.0.0.0/0 # The route's network (destination).
+              gateway: 192.168.2.1 # The route's gateway (if empty, creates link scope route).
               metric: 1024 # The optional metric for the route.
           mtu: 1500 # The interface's MTU.
 
@@ -1813,8 +1813,8 @@ interfaces:
         - 192.168.2.0/24
       # A list of routes associated with the interface.
       routes:
-        - network: 0.0.0.0/0 # The route's network.
-          gateway: 192.168.2.1 # The route's gateway.
+        - network: 0.0.0.0/0 # The route's network (destination).
+          gateway: 192.168.2.1 # The route's gateway (if empty, creates link scope route).
           metric: 1024 # The optional metric for the route.
       mtu: 1500 # The interface's MTU.
 
@@ -1918,8 +1918,8 @@ interfaces:
         - 192.168.2.0/24
       # A list of routes associated with the interface.
       routes:
-        - network: 0.0.0.0/0 # The route's network.
-          gateway: 192.168.2.1 # The route's gateway.
+        - network: 0.0.0.0/0 # The route's network (destination).
+          gateway: 192.168.2.1 # The route's gateway (if empty, creates link scope route).
           metric: 1024 # The optional metric for the route.
       mtu: 1500 # The interface's MTU.
 
@@ -3977,8 +3977,8 @@ Appears in:
     - 192.168.2.0/24
   # A list of routes associated with the interface.
   routes:
-    - network: 0.0.0.0/0 # The route's network.
-      gateway: 192.168.2.1 # The route's gateway.
+    - network: 0.0.0.0/0 # The route's network (destination).
+      gateway: 192.168.2.1 # The route's gateway (if empty, creates link scope route).
       metric: 1024 # The optional metric for the route.
   mtu: 1500 # The interface's MTU.
 
@@ -4094,10 +4094,10 @@ Examples:
 
 ``` yaml
 routes:
-    - network: 0.0.0.0/0 # The route's network.
-      gateway: 10.5.0.1 # The route's gateway.
-    - network: 10.2.0.0/16 # The route's network.
-      gateway: 10.2.0.1 # The route's gateway.
+    - network: 0.0.0.0/0 # The route's network (destination).
+      gateway: 10.5.0.1 # The route's gateway (if empty, creates link scope route).
+    - network: 10.2.0.0/16 # The route's network (destination).
+      gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
 ```
 
 
@@ -5083,10 +5083,10 @@ Appears in:
 
 
 ``` yaml
-- network: 0.0.0.0/0 # The route's network.
-  gateway: 10.5.0.1 # The route's gateway.
-- network: 10.2.0.0/16 # The route's network.
-  gateway: 10.2.0.1 # The route's gateway.
+- network: 0.0.0.0/0 # The route's network (destination).
+  gateway: 10.5.0.1 # The route's gateway (if empty, creates link scope route).
+- network: 10.2.0.0/16 # The route's network (destination).
+  gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
 ```
 
 <hr />
@@ -5098,7 +5098,7 @@ Appears in:
 </div>
 <div class="dt">
 
-The route's network.
+The route's network (destination).
 
 </div>
 
@@ -5110,7 +5110,7 @@ The route's network.
 </div>
 <div class="dt">
 
-The route's gateway.
+The route's gateway (if empty, creates link scope route).
 
 </div>