Skip to content

url: support IPv4 and IPv6 for IMDS #2052

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 4 commits into
base: main
Choose a base branch
from
Draft

url: support IPv4 and IPv6 for IMDS #2052

wants to merge 4 commits into from

Conversation

tormath1
Copy link
Contributor

@tormath1 tormath1 commented Apr 11, 2025
edited
Loading

Hi,

This PR is another approach to try solving the IPv4 / IPv6 question on Ignition for Scaleway and OpenStack providers. The idea is to implement a helper: resource.FetchConfigDualStack that will try to fetch Ignition configuration from multiple endpoints (IPv4 and IPv6). The first one to return a configuration will win the race.

This allows to have a common implementation as each provider can decide if it wants to use or not IPv4, IPv6 or both and by still implementing its own fetching logic.

Related to: #1897, flatcar/Flatcar#1696 and #1909

Locally tested on Scaleway and currently tested on Flatcar CI (flatcar/scripts#2824) but it's pointless as we don't have yet tests for IPv6 on Scaleway or OpenStack:

 # IPv4 ONLY
core@scw-confident-keldysh ~ $ sudo ./ignition --platform scaleway --log-to-stdout --stage fetch --config-cache ./config.json
INFO     : Ignition v2.21.0-4-gb111af12-dirty
INFO     : Stage: fetch
INFO     : no config dir at "/usr/lib/ignition/base.d"
INFO     : no config dir at "/usr/lib/ignition/base.platform.d/scaleway"
DEBUG    : parsed url from cmdline: ""
INFO     : no config URL provided
INFO     : reading system config file "/usr/lib/ignition/user.ign"
INFO     : no config at "/usr/lib/ignition/user.ign"
INFO     : GET http://169.254.42.42/user_data/cloud-init: attempt #1
INFO     : GET http://[fd00:42::42]/user_data/cloud-init: attempt #1
INFO     : GET error: Get "http://[fd00:42::42]/user_data/cloud-init": dial tcp :381->[fd00:42::42]:80: connect: network is unreachable
INFO     : GET result: OK
DEBUG    : got configuration from: http://169.254.42.42/user_data/cloud-init
DEBUG    : parsing config with SHA512: 7d25de56ceb1cb987792f3ceba9494086376e6b640421d3ffdae0cd29660bd8ae852bdd77040e205b4eeabbc0c899a6ac571e3f65d1a6753c84091766c8a2e81
INFO     : fetch: fetch complete
INFO     : fetch: fetch passed
INFO     : Ignition finished successfully


# IPv4 and IPv6
core@scw-confident-keldysh ~ $ sudo ./ignition --platform scaleway --log-to-stdout --stage fetch --config-cache ./config.json
INFO     : Ignition v2.21.0-4-gb111af12-dirty
INFO     : Stage: fetch
INFO     : no config dir at "/usr/lib/ignition/base.d"
INFO     : no config dir at "/usr/lib/ignition/base.platform.d/scaleway"
DEBUG    : parsed url from cmdline: ""
INFO     : no config URL provided
INFO     : reading system config file "/usr/lib/ignition/user.ign"
INFO     : no config at "/usr/lib/ignition/user.ign"
INFO     : GET http://169.254.42.42/user_data/cloud-init: attempt #1
INFO     : GET http://[fd00:42::42]/user_data/cloud-init: attempt #1
INFO     : GET result: OK
INFO     : GET result: OK
DEBUG    : got configuration from: http://169.254.42.42/user_data/cloud-init
DEBUG    : parsing config with SHA512: 7d25de56ceb1cb987792f3ceba9494086376e6b640421d3ffdae0cd29660bd8ae852bdd77040e205b4eeabbc0c899a6ac571e3f65d1a6753c84091766c8a2e81
INFO     : fetch: fetch complete
INFO     : fetch: fetch passed
INFO     : Ignition finished successfully
core@scw-confident-keldysh ~ $ sudo ./ignition --platform scaleway --log-to-stdout --stage fetch --config-cache ./config.json
INFO     : Ignition v2.21.0-4-gb111af12-dirty
INFO     : Stage: fetch
INFO     : no config dir at "/usr/lib/ignition/base.d"
INFO     : no config dir at "/usr/lib/ignition/base.platform.d/scaleway"
DEBUG    : parsed url from cmdline: ""
INFO     : no config URL provided
INFO     : reading system config file "/usr/lib/ignition/user.ign"
INFO     : no config at "/usr/lib/ignition/user.ign"
INFO     : GET http://[fd00:42::42]/user_data/cloud-init: attempt #1
INFO     : GET http://169.254.42.42/user_data/cloud-init: attempt #1
INFO     : GET error: Get "http://169.254.42.42/user_data/cloud-init": dial tcp :995->169.254.42.42:80: bind: address already in use
INFO     : GET result: OK
DEBUG    : got configuration from: http://[fd00:42::42]/user_data/cloud-init
DEBUG    : parsing config with SHA512: 7d25de56ceb1cb987792f3ceba9494086376e6b640421d3ffdae0cd29660bd8ae852bdd77040e205b4eeabbc0c899a6ac571e3f65d1a6753c84091766c8a2e81
INFO     : fetch: fetch complete
INFO     : fetch: fetch passed
INFO     : Ignition finished successfully

# IPv6 only
$ sudo ./ignition --platform scaleway --log-to-stdout --stage fetch --config-cache ./config.json
INFO     : Ignition v2.21.0-4-gb111af12-dirty
INFO     : Stage: fetch
INFO     : no config dir at "/usr/lib/ignition/base.d"
INFO     : no config dir at "/usr/lib/ignition/base.platform.d/scaleway"
DEBUG    : parsed url from cmdline: ""
INFO     : no config URL provided
INFO     : reading system config file "/usr/lib/ignition/user.ign"
INFO     : no config at "/usr/lib/ignition/user.ign"
INFO     : GET http://169.254.42.42/user_data/cloud-init: attempt #1
INFO     : GET error: Get "http://169.254.42.42/user_data/cloud-init": dial tcp :731->169.254.42.42:80: connect: network is unreachable
INFO     : GET http://[fd00:42::42]/user_data/cloud-init: attempt #1
INFO     : GET result: OK
DEBUG    : got configuration from: http://[fd00:42::42]/user_data/cloud-init
DEBUG    : parsing config with SHA512: 7d25de56ceb1cb987792f3ceba9494086376e6b640421d3ffdae0cd29660bd8ae852bdd77040e205b4eeabbc0c899a6ac571e3f65d1a6753c84091766c8a2e81
INFO     : fetch: fetch complete
INFO     : fetch: fetch passed
INFO     : Ignition finished successfully

This was referenced Apr 11, 2025
Draft
Open
prestist
prestist reviewed Apr 14, 2025
View reviewed changes
internal/resource/url.go Outdated
}

// Wait for one success. (i.e wait for the first configuration to be available)
ip := <-success
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sorry if this is a dumb question, If neither succeed what happens? is there a default timeout?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not yet, the PR is still in "draft" as I wanted first to have users feedback before on the overall logic. I still need to polish the error handling and the case you mentioned. I'm thinking of having something similar to the OpenStack dispatch implementation here:

ignition/internal/providers/openstack/openstack.go

Line 117 in 2e40256

if dispatchCount == 0 {

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No worries :) I was just making sure I was not missing it. Yeah I think that would work well here.

@prestist
Copy link
Collaborator

@tormath1 this looks really good; thank you for working on this.

These changes make a lot of sense.

@yasminvalim
Copy link
Contributor

Hey @tormath1, nice work! Thanks for working on that! I cherry-picked your commit that implement the helper resource.FetchConfigDualStack and will use it in my PR for Openstack #1909. WDYT?

@tormath1
Copy link
Contributor Author

Hey @tormath1, nice work! Thanks for working on that! I cherry-picked your commit that implement the helper resource.FetchConfigDualStack and will use it in my PR for Openstack #1909. WDYT?

Your call on this, that would be good indeed to see how it fits on OpenStack - maybe you can create separate branch to keep your initial proposal around?

tormath1 added 3 commits April 16, 2025 15:09
@tormath1
url: support both IPv4 and IPv6
d9fc7db 
This defines a wrapper that will try in paralell both IPv4 and IPv6 when
the provider declares those two IPs.

Signed-off-by: Mathieu Tortuyaux <[email protected]>
@tormath1
url: try local port on both IP stacks
fa262aa 
Signed-off-by: Mathieu Tortuyaux <[email protected]>
@tormath1
release-notes: add entry
5d16a3a 
Signed-off-by: Mathieu Tortuyaux <[email protected]>
@yasminvalim
Copy link
Contributor

yasminvalim commented Apr 17, 2025
edited
Loading

Hey @tormath1, nice work! Thanks for working on that! I cherry-picked your commit that implement the helper resource.FetchConfigDualStack and will use it in my PR for Openstack #1909. WDYT?

Your call on this, that would be good indeed to see how it fits on OpenStack - maybe you can create separate branch to keep your initial proposal around?

Hey! I have a local backup with the initial proposal, but I think yours might be a better fit for what we need. I went ahead and updated my PR to use the helper Still working on it, but feel free to take a look :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@prestist prestist prestist left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@tormath1 @prestist @yasminvalim