[pve-devel] [PATCH access-control/cluster/docs/gui-tests/manager/network/proxmox{, -firewall, -ve-rs, -perl-rs, -widget-toolkit} v3 00/75] Add SDN Fabrics
Stefan Hanreich
s.hanreich at proxmox.com
Thu May 22 18:16:16 CEST 2025
Overview
========
This series allows the user to easily use dynamic routing protocols such as
OpenFabric and OSPF in their clusters. It also integrates existing features,
such as Ceph with the new SDN fabrics feature to enable users simple
configuration of e.g. full-mesh Ceph clusters via the Web UI.
This patch series adds the initial support for two routing protocols:
* OpenFabric
* OSPF
In the future we plan on moving the existing IS-IS and BGP controllers into the
fabric structure. Christoph Heiss is also currently working on adding a new
Wireguard fabric, which can be combined with any other fabric types. This
feature allows layering different fabrics on top of each other, so adding
encryption to an existing fabric is as simple as just putting a Wireguard fabric
on top, or using a Wireguard fabric as the basis.
Packages are available on sani: packages/sdn-fabrics-v3
Implementation
==============
Every fabric consists of zero or more nodes, which themselves consist of zero or
more interfaces. Fabrics and nodes are modeled as different section config types
(which means two section types for each protocol), interfaces are an array
contained in a node section.
For now, nodes in the fabric configuration always represent PVE nodes, but in
the future nodes could also represent external members of the fabric (e.g. in a
potential Wireguard fabric). An example use case for this would be securely
connecting PBS or PDM instances to the PVE cluster via Wireguard.
Most of the functionality is implemented in Rust and exposed to the existing SDN
module via perlmod. This includes configuration reading / writing, FRR config
generation from the section config and API CRUD methods. Some functionality,
like digest matching and permission checking is still handled on the perl side,
due to the lack of facilities in Rust for that.
Configuration Format
--------------------
The whole configuration is now contained in just one configuration file
`/etc/pve/sdn/fabrics.cfg`. This makes handling the fabrics configuration easier
in many different areas: locking, digest calculation, validation.
For every protocol there are two different section types (fabric and node). As
an example the two section types for OSPF are 'ospf_fabric' and 'ospf_node'.
The ID of a fabric is a simple name, at most 8 alphanumeric characters since we
use it for generating network interfaces names with a prefix. This is analogous
to existing SDN entities, e.g. VNet. A node can only be uniquely identified by
its id (which is equivalent to the hostname of the node), as well as the
fabric_id. This is because a node can be part of multiple fabrics.
An example how the configuration looks like for a full-mesh 3-node Openfabric
fabric called 'example':
openfabric_fabric: example
csnp_interval 3
hello_interval 3
ip6_prefix 2001:db8::/64
ip_prefix 192.0.2.0/24
openfabric_node: example_deadeye
interfaces name=eth1,ip=198.51.100.0/31
interfaces name=eth2
ip 192.0.2.1
ip6 2001:db8::1
openfabric_node: example_pathfinder
interfaces name=eth1,ip=198.51.100.2/31
interfaces name=eth2
ip 192.0.2.2
ip6 2001:db8::2
openfabric_node: example_raider
interfaces name=eth1,ip=198.51.100.4/31
interfaces name=eth2
ip 192.0.2.3
ip6 2001:db8::3
We parse the configuration file flat in rust, and then afterwards split them
into Fabric / Node structs and store them hierarchically (fabric -> node) in a
dedicated FabricConfig struct. This struct provides the CRUD methods for
manipulating the FabricConfig safely as well as serializing the FabricConfig
back into its section config format.
To prevent having to duplicate common properties for every protocol, we
introduced a generic (Fabric|Node)Section<T> struct that contains all common
properties. Protocol-specific properties can be defined by the generic type
parameter T. This saves us from duplicating a lot of code (which was an initial
problem with the intermediate configuration) and conversions can be simplified
by providing a generic implementation that every protocol uses.
This design also means that adding new protocols to the configuration is quite
straightforward: It is only required to add structs with the protocol-specific
properties in Rust and add them to the enums defining the Section Config. The
commit adding OSPF support shows how simple it is to add a new protocol.
Validation
----------
The hierarchical nature of the configuration and the relationship between nodes
inside the fabrics requires validation of sections relative to other sections.
For this matter we introduced a new Validatable trait as well as a struct that
wraps valid configuration in a Valid<T> struct. For more information on that see
the respective commit.
API & Permissions
-----------------
The whole API is contained in the /cluster/sdn/fabrics subfolder and contains
submodules for fabric / node.
A quick overview of the methods provided by the API:
GET /all - list fabrics & nodes
GET /fabric - list all fabrics
POST /fabric - create a fabric
GET /fabric/{fabric_id} - get a single fabric
PUT /fabric/{fabric_id} - update a fabric
DELETE /fabric/{fabric_id} - delete a fabric
GET /node - list all nodes (regardless of fabric)
GET /node/{fabric_id} - list all nodes belonging to fabric {fabric_id}
POST /node/{fabric_id} - create a node in fabric {fabric_id}
GET /node/{fabric_id}/{node_id} - get a single node
PUT /node/{fabric_id}/{node_id} - update a single node
DELETE /node/{fabric_id}/{node_id} - delete a single node
FRR Configuration
-----------------
For the FRR-specific functionality we introduced a new proxmox-frr crate that
models the different entities in the FRR configuration format (routers,
interfaces, route-maps, ...) and provides serializers for those structs. For
more information see the respective FRR commits. When applying the SDN
configuration, perl calls into perlmod to utilize the proxmox-frr crate for
generating the FRR configuration of the fabrics.
We also introduce a proxmox-sdn-types crate, where we extracted generic
fabric types (e.g., openfabric::HelloInterval), so we can reuse them across
multiple crates (proxmox-frr, proxmox-ve-config, ..).
UI
--
The UI allows users to easily create different types of fabrics. One can add
Nodes to the fabrics by selecting them from a dropdown which shows all the nodes
in the cluster. Additionally the user can then select the interfaces of the node
which should be added to the fabric. There are also protocol-specific options
such as "passive", "hello-interval" etc. available to select on the interface.
There are also options spanning whole fabrics: the "hello-interval" option on
openfabric for example, can be set on the fabric and will be applied to every
interface.
We are also working on the integration of status reporting into the sidebar,
which also includes an integration into pvestatd. The plan is to show the status
for each node, which routes are learned, neighbor status and possibly topology
from the POV of each node. Since this patch series is already quite huge and the
sidebar integration is still a work in progress it is not included here.
Integration with existing features
----------------------------------
We also provide a UI for the Ceph, Migration Network, VXLAN zone and EVPN
controller integrations. Users can configure fabrics for those components simply
by selecting them from a dropdown, providing a streamlined experience and nice
integration with existing features.
Refactoring
===========
This patch series required some rework of existing functionality, mostly how SDN
generates the FRR configuration and writes /etc/network/interfaces. Prior the
FRR configuration was generated exclusively from the controllers, but fabrics
need to write it as well. Same goes for the interfaces file, which got written
by the Zone plugin, but Fabrics need to write this file as well.
For this we moved the FRR and ifupdown config generation one level up to the SDN
module, which now calls into the respective child modules to generate the FRR /
ifupdown configuration.
Dependencies
============
This series relies on the FRR 10.2.2 backport series, since it fixes potential
issues with EVPN + Openfabric/OSPF:
https://lore.proxmox.com/all/20250418112114.2747673-1-s.hanreich@proxmox.com/
proxmox-frr depends on proxmox-network-types
proxmox-frr depends on proxmox-sdn-types
proxmox-ve-config depends on proxmox-frr
proxmox-ve-config depends on proxmox-network-types
proxmox-ve-config depends on proxmox-sdn-types
proxmox-ve-config depends on proxmox-serde
proxmox-ve-config depends on proxmox-api-macro
proxmox-firewall depends on proxmox-ve-config
proxmox-perl-rs depends on proxmox-ve-config
proxmox-perl-rs depends on proxmox-frr
proxmox-perl-rs depends on proxmox-network-types
pve-network depends on proxmox-perl-rs
pve-network depends on pve-cluster
pve-network depends on pve-access-control
pve-docs depends on pve-gui-tests
pve-manager depends on proxmox-widget-toolkit
pve-manager depends on pve-docs
pve-manager depends on pve-network
pve-manager depends on pve-access-control
pve-network commits 4-7 do not build independently, because it's one refactor
but split across multiple commits so it's easier to follow the steps during the
refactor. We could consider squashing those commits on applying, so each commit
still builds indepedently.
Shoutout to Gabriel for his great work on this patch series!
Changelog v3:
=============
* Improved dual-stack support considerably
* Completely reworked configuration format and the respective Rust
representation (see above for more details)
* Completely reworked API design (see above for more details)
* refactored UI code and split NodeEdit panels into protocol-specific components
* Adapted permission paths to represent API structure
* Integrated Fabrics with the VXLAN zone + EVPN controller
* Added UI integration for fabrics to the following components:
* Migration Network Settings
* Ceph Installation Wizard
* VXLAN Zone
* EVPN controller
* added some quality of life features to the UI (e.g. Create another Node)
* many smaller bug fixes
Changelog v2:
=============
* split proxmox-network-types (this is done in a separate series)
* move Cidr-types and hostname to proxmox-network-types in the proxmox repo
* rename the proxmox-ve-rs/proxmox-network-types crate to proxmox-sdn-types
and put all the openfabric/ospf common types There
* fix ospf route-map generation and loopback_prefixes
* fix integration tests and add some more
* add fabric_id to OSPF, which acts as a primary (but arbitrary) id. The area
also has to be unique, but is only a required property now.
* this makes permissions easier, as every protocol has a "fabric_id" property we can check
* the users can choose a arbitrary name for the fabric and are not limited just by numbers and ip-addresses
* improve documentation wording
* add screenshots to documentation
* implement permissions in pve-access-control and pve-network
* made CRUD order in API modules and Common module consistent
* improve pve-network API descriptions
* improve pve-network API return types
* add helpers for common options
* refactored duplicated API types into a single variable inside the API
modules
* rework FRR reload logic - it now reloads only when daemons file stayed the
same, otherwise it restarts
* add fabric_id and node_id properties to the node section in OpenFabric and
OSPF (this allows us to be more generic over both protocols, useful in e.g.
frontend and permissions)
* make frontend components generic over protocols
* drop similar-asserts and use insta instead for integration tests
* added missing htmlencodes to tooltips / warning messages / tree column outputs
* hide action icons when node / fabric gets deleted
* added directory index to the root fabric method
* add digest to update calls
* improved format for fabrics in running configuration
* improved logic of set_daemon_status
* check for existence of /etc/frr/daemons before trying to read it
* OSPF interfaces now must have an IP or be unnumbered
Open issues:
Directory index is still missing for the ospf/openfabric subfolders, since we don't have
a 'GET /' endpoint there - could be added in a followup?
Network interfaces that have an entry in the interfaces file with the manual
stanza, do not get their IPs deconfigured when deleting the interfaces from a
fabric. This issue is documented.
Changelog v1:
=============
proxmox-ve-rs
-------------
* remove intermediate-config, convert section-config directly to frr-types.
* add validation layer to validate the section-config
* simplify openfabric `net` to `router-id`
* add loopback prefixes to ensure that all router-ids are in a specific subnet
* generate router-map and access-lists to rewrite the source address of all
the routes received through openfabric and ospf
* add integration tests
* add option for ospf unnumbered
* only allow ipv4 on ospf
pve-network
-------------
* rework frr config generation
* rework etc/network/interfaces config generation
* revert "return loopback interface"
proxmox-perl-rs
-------------
* generate /etc/network/interfaces config to set ip-addresses
* auto-generate dummy interface for every fabric
pve-manager
-------------
* simplify a lot
* remove interface entries in tree
* hide specific openfabric/ospf options (hello-interval, passive etc.)
frr (external)
--------------
* fix --dummy_as_loopback bug (already on staging)
RFC
===
Changelog v2:
=============
proxmox-ve-rs
-------------
* serialize internal representation directly to the frr format
* add integration tests to proxmox-frr
* change internal representation to use BTreeMap instead of HashMap (so that
the test output is ordered)
* move some stuff from proxmox-frr and proxmox-ve-config to proxmox-network-types
pve-network
-----------
* generate frr config and append to running config directly (without going
through perl frr merging)
* check permissions on each fabric when listing
pve-manager
-----------
* autogenerate net and router-id when selecting the first interface
pve-cluster
-----------
* update the config files in status.c (pve-cluster) (thanks @Thomas)
frr (external)
--------------
* got this one merged: https://github.com/FRRouting/frr/pull/18242, so we
*could* automatically add dummy interfaces
Big thanks to Gabriel Goller for his help and support throughout this series!
proxmox:
Stefan Hanreich (4):
network-types: initial commit
network-types: make cidr and mac-address types usable by the api
network-types: add api types for ipv4/6
api-macro: add allof schema to enum
Cargo.toml | 2 +
proxmox-api-macro/src/api/enums.rs | 1 +
proxmox-network-types/Cargo.toml | 22 +
proxmox-network-types/debian/changelog | 5 +
proxmox-network-types/debian/copyright | 18 +
proxmox-network-types/debian/debcargo.toml | 7 +
proxmox-network-types/src/ip_address.rs | 1572 ++++++++++++++++++++
proxmox-network-types/src/lib.rs | 5 +
proxmox-network-types/src/mac_address.rs | 146 ++
9 files changed, 1778 insertions(+)
create mode 100644 proxmox-network-types/Cargo.toml
create mode 100644 proxmox-network-types/debian/changelog
create mode 100644 proxmox-network-types/debian/copyright
create mode 100644 proxmox-network-types/debian/debcargo.toml
create mode 100644 proxmox-network-types/src/ip_address.rs
create mode 100644 proxmox-network-types/src/lib.rs
create mode 100644 proxmox-network-types/src/mac_address.rs
proxmox-firewall:
Stefan Hanreich (1):
firewall: nftables: migrate to proxmox-network-types
Cargo.toml | 1 +
proxmox-firewall/Cargo.toml | 1 +
proxmox-firewall/src/firewall.rs | 8 ++++----
proxmox-firewall/src/object.rs | 4 +++-
proxmox-firewall/src/rule.rs | 3 ++-
proxmox-nftables/Cargo.toml | 3 ++-
proxmox-nftables/src/expression.rs | 7 +++----
proxmox-nftables/src/types.rs | 2 +-
8 files changed, 17 insertions(+), 12 deletions(-)
proxmox-ve-rs:
Gabriel Goller (7):
frr: create proxmox-frr crate
frr: add common frr types
frr: add openfabric types
frr: add ospf types
frr: add route-map types
frr: add generic types over openfabric and ospf
ve-config: add integrations tests
Stefan Hanreich (14):
config: use proxmox_serde perl helpers
ve-config: move types to proxmox-network-types
sdn-types: initial commit
config: sdn: fabrics: add section types
config: sdn: fabrics: add node section types
config: sdn: fabrics: add interface name struct
config: sdn: fabrics: add openfabric properties
config: sdn: fabrics: add ospf properties
config: sdn: fabrics: add api types
config: sdn: fabrics: add section config
config: sdn: fabrics: add fabric config
common: sdn: fabrics: implement validation
sdn: fabrics: config: add conversion from / to section config
sdn: fabrics: implement FRR configuration generation
Cargo.toml | 14 +
proxmox-frr/Cargo.toml | 23 +
proxmox-frr/debian/changelog | 5 +
proxmox-frr/debian/control | 49 +
proxmox-frr/debian/copyright | 18 +
proxmox-frr/debian/debcargo.toml | 7 +
proxmox-frr/src/lib.rs | 231 +++
proxmox-frr/src/openfabric.rs | 114 ++
proxmox-frr/src/ospf.rs | 179 +++
proxmox-frr/src/route_map.rs | 233 +++
proxmox-frr/src/serializer.rs | 203 +++
proxmox-sdn-types/Cargo.toml | 19 +
proxmox-sdn-types/debian/changelog | 5 +
proxmox-sdn-types/debian/control | 53 +
proxmox-sdn-types/debian/copyright | 18 +
proxmox-sdn-types/debian/debcargo.toml | 7 +
proxmox-sdn-types/src/area.rs | 50 +
proxmox-sdn-types/src/lib.rs | 3 +
proxmox-sdn-types/src/net.rs | 329 ++++
proxmox-sdn-types/src/openfabric.rs | 72 +
proxmox-ve-config/Cargo.toml | 24 +-
proxmox-ve-config/debian/control | 41 +-
proxmox-ve-config/src/common/mod.rs | 2 +
proxmox-ve-config/src/common/valid.rs | 53 +
proxmox-ve-config/src/firewall/bridge.rs | 3 +-
proxmox-ve-config/src/firewall/cluster.rs | 9 +-
proxmox-ve-config/src/firewall/ct_helper.rs | 2 +-
proxmox-ve-config/src/firewall/guest.rs | 14 +-
proxmox-ve-config/src/firewall/host.rs | 30 +-
proxmox-ve-config/src/firewall/parse.rs | 80 -
.../src/firewall/types/address.rs | 1394 +----------------
proxmox-ve-config/src/firewall/types/alias.rs | 2 +-
proxmox-ve-config/src/firewall/types/ipset.rs | 8 +-
proxmox-ve-config/src/firewall/types/mod.rs | 1 -
proxmox-ve-config/src/firewall/types/rule.rs | 5 +-
.../src/firewall/types/rule_match.rs | 6 +-
proxmox-ve-config/src/guest/vm.rs | 96 +-
proxmox-ve-config/src/host/utils.rs | 2 +-
proxmox-ve-config/src/sdn/config.rs | 9 +-
proxmox-ve-config/src/sdn/fabric/frr.rs | 390 +++++
proxmox-ve-config/src/sdn/fabric/mod.rs | 732 +++++++++
.../src/sdn/fabric/section_config/fabric.rs | 256 +++
.../sdn/fabric/section_config/interface.rs | 22 +
.../src/sdn/fabric/section_config/mod.rs | 109 ++
.../src/sdn/fabric/section_config/node.rs | 397 +++++
.../sdn/fabric/section_config/protocol/mod.rs | 2 +
.../section_config/protocol/openfabric.rs | 141 ++
.../fabric/section_config/protocol/ospf.rs | 130 ++
proxmox-ve-config/src/sdn/frr.rs | 42 +
proxmox-ve-config/src/sdn/ipam.rs | 11 +-
proxmox-ve-config/src/sdn/mod.rs | 6 +-
.../fabric/cfg/openfabric_default/fabrics.cfg | 18 +
.../cfg/openfabric_dualstack/fabrics.cfg | 22 +
.../cfg/openfabric_ipv6_only/fabrics.cfg | 18 +
.../cfg/openfabric_loopback/fabrics.cfg | 18 +
.../fabrics.cfg | 25 +
.../cfg/openfabric_multi_fabric/fabrics.cfg | 25 +
.../fabrics.cfg | 25 +
.../openfabric_verification_fail/fabrics.cfg | 12 +
.../tests/fabric/cfg/ospf_default/fabrics.cfg | 13 +
.../cfg/ospf_loopback_prefix_fail/fabrics.cfg | 17 +
.../fabric/cfg/ospf_multi_fabric/fabrics.cfg | 25 +
.../cfg/ospf_verification_fail/fabrics.cfg | 13 +
proxmox-ve-config/tests/fabric/helper.rs | 43 +
proxmox-ve-config/tests/fabric/main.rs | 141 ++
.../fabric__openfabric_default_pve.snap | 34 +
.../fabric__openfabric_default_pve1.snap | 33 +
.../fabric__openfabric_dualstack_pve.snap | 46 +
.../fabric__openfabric_ipv6_only_pve.snap | 34 +
.../fabric__openfabric_multi_fabric_pve1.snap | 49 +
.../snapshots/fabric__ospf_default_pve.snap | 32 +
.../snapshots/fabric__ospf_default_pve1.snap | 28 +
.../fabric__ospf_multi_fabric_pve1.snap | 45 +
proxmox-ve-config/tests/sdn/main.rs | 11 +-
74 files changed, 4765 insertions(+), 1613 deletions(-)
create mode 100644 proxmox-frr/Cargo.toml
create mode 100644 proxmox-frr/debian/changelog
create mode 100644 proxmox-frr/debian/control
create mode 100644 proxmox-frr/debian/copyright
create mode 100644 proxmox-frr/debian/debcargo.toml
create mode 100644 proxmox-frr/src/lib.rs
create mode 100644 proxmox-frr/src/openfabric.rs
create mode 100644 proxmox-frr/src/ospf.rs
create mode 100644 proxmox-frr/src/route_map.rs
create mode 100644 proxmox-frr/src/serializer.rs
create mode 100644 proxmox-sdn-types/Cargo.toml
create mode 100644 proxmox-sdn-types/debian/changelog
create mode 100644 proxmox-sdn-types/debian/control
create mode 100644 proxmox-sdn-types/debian/copyright
create mode 100644 proxmox-sdn-types/debian/debcargo.toml
create mode 100644 proxmox-sdn-types/src/area.rs
create mode 100644 proxmox-sdn-types/src/lib.rs
create mode 100644 proxmox-sdn-types/src/net.rs
create mode 100644 proxmox-sdn-types/src/openfabric.rs
create mode 100644 proxmox-ve-config/src/common/valid.rs
create mode 100644 proxmox-ve-config/src/sdn/fabric/frr.rs
create mode 100644 proxmox-ve-config/src/sdn/fabric/mod.rs
create mode 100644 proxmox-ve-config/src/sdn/fabric/section_config/fabric.rs
create mode 100644 proxmox-ve-config/src/sdn/fabric/section_config/interface.rs
create mode 100644 proxmox-ve-config/src/sdn/fabric/section_config/mod.rs
create mode 100644 proxmox-ve-config/src/sdn/fabric/section_config/node.rs
create mode 100644 proxmox-ve-config/src/sdn/fabric/section_config/protocol/mod.rs
create mode 100644 proxmox-ve-config/src/sdn/fabric/section_config/protocol/openfabric.rs
create mode 100644 proxmox-ve-config/src/sdn/fabric/section_config/protocol/ospf.rs
create mode 100644 proxmox-ve-config/src/sdn/frr.rs
create mode 100644 proxmox-ve-config/tests/fabric/cfg/openfabric_default/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/openfabric_dualstack/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/openfabric_ipv6_only/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/openfabric_loopback/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/openfabric_loopback_prefix_fail/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/openfabric_multi_fabric/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/openfabric_same_net_on_same_node/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/openfabric_verification_fail/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/ospf_default/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/ospf_loopback_prefix_fail/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/ospf_multi_fabric/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/cfg/ospf_verification_fail/fabrics.cfg
create mode 100644 proxmox-ve-config/tests/fabric/helper.rs
create mode 100644 proxmox-ve-config/tests/fabric/main.rs
create mode 100644 proxmox-ve-config/tests/fabric/snapshots/fabric__openfabric_default_pve.snap
create mode 100644 proxmox-ve-config/tests/fabric/snapshots/fabric__openfabric_default_pve1.snap
create mode 100644 proxmox-ve-config/tests/fabric/snapshots/fabric__openfabric_dualstack_pve.snap
create mode 100644 proxmox-ve-config/tests/fabric/snapshots/fabric__openfabric_ipv6_only_pve.snap
create mode 100644 proxmox-ve-config/tests/fabric/snapshots/fabric__openfabric_multi_fabric_pve1.snap
create mode 100644 proxmox-ve-config/tests/fabric/snapshots/fabric__ospf_default_pve.snap
create mode 100644 proxmox-ve-config/tests/fabric/snapshots/fabric__ospf_default_pve1.snap
create mode 100644 proxmox-ve-config/tests/fabric/snapshots/fabric__ospf_multi_fabric_pve1.snap
proxmox-perl-rs:
Stefan Hanreich (5):
pve-rs: Add PVE::RS::SDN::Fabrics module
pve-rs: sdn: fabrics: add api methods
pve-rs: sdn: fabrics: add frr config generation
pve-rs: sdn: fabrics: add helper to generate ifupdown2 configuration
pve-rs: sdn: fabrics: add helper for network API endpoint
pve-rs/Cargo.toml | 5 +-
pve-rs/Makefile | 1 +
pve-rs/debian/control | 2 +
pve-rs/src/bindings/mod.rs | 3 +
pve-rs/src/bindings/sdn/fabrics.rs | 506 +++++++++++++++++++++++++++++
pve-rs/src/bindings/sdn/mod.rs | 1 +
6 files changed, 517 insertions(+), 1 deletion(-)
create mode 100644 pve-rs/src/bindings/sdn/fabrics.rs
create mode 100644 pve-rs/src/bindings/sdn/mod.rs
pve-cluster:
Stefan Hanreich (1):
cfs: add fabrics.cfg to observed files
debian/pve-cluster.postinst | 24 ++++++++++++++++++++++++
src/PVE/Cluster.pm | 3 +--
src/pmxcfs/status.c | 3 +--
3 files changed, 26 insertions(+), 4 deletions(-)
create mode 100644 debian/pve-cluster.postinst
pve-access-control:
Stefan Hanreich (1):
permissions: add ACL paths for SDN fabrics
src/PVE/AccessControl.pm | 2 ++
1 file changed, 2 insertions(+)
pve-network:
Gabriel Goller (1):
debian: add dependency to proxmox-perl-rs
Stefan Hanreich (20):
sdn: fix value returned by pending_config
fabrics: add fabrics module
refactor: controller: move frr methods into helper
frr: add new helpers for reloading frr configuration
controllers: define new api for frr config generation
sdn: add frr config generation helpers
sdn: api: add check for rewriting frr configuration
test: isis: add test for standalone configuration
sdn: frr: add daemon status to frr helper
sdn: commit fabrics config to running configuration
fabrics: generate ifupdown configuration
fabrics: add jsonschema for fabrics and nodes
api: fabrics: add root-level module
api: fabrics: add fabric submodule
api: fabrics: add node submodule
api: fabrics: add fabricnode submodule
controller: evpn: add fabrics integration
zone: vxlan: add fabrics integration
test: fabrics: add test cases for ospf and openfabric + evpn
frr: bump frr config version to 10.2.2
debian/control | 17 +-
src/PVE/API2/Network/SDN.pm | 22 +-
src/PVE/API2/Network/SDN/Fabrics.pm | 180 +++++++
src/PVE/API2/Network/SDN/Fabrics/Fabric.pm | 248 ++++++++++
.../API2/Network/SDN/Fabrics/FabricNode.pm | 242 +++++++++
src/PVE/API2/Network/SDN/Fabrics/Makefile | 8 +
src/PVE/API2/Network/SDN/Fabrics/Node.pm | 113 +++++
src/PVE/API2/Network/SDN/Makefile | 3 +-
src/PVE/Network/SDN.pm | 158 +++++-
src/PVE/Network/SDN/Controllers.pm | 67 +--
src/PVE/Network/SDN/Controllers/BgpPlugin.pm | 21 +-
src/PVE/Network/SDN/Controllers/EvpnPlugin.pm | 441 +++++------------
src/PVE/Network/SDN/Controllers/IsisPlugin.pm | 21 +-
src/PVE/Network/SDN/Controllers/Plugin.pm | 31 +-
src/PVE/Network/SDN/Fabrics.pm | 290 +++++++++++
src/PVE/Network/SDN/Frr.pm | 465 ++++++++++++++++++
src/PVE/Network/SDN/Makefile | 2 +-
src/PVE/Network/SDN/Zones.pm | 10 -
src/PVE/Network/SDN/Zones/EvpnPlugin.pm | 56 ++-
src/PVE/Network/SDN/Zones/VxlanPlugin.pm | 58 ++-
src/test/run_test_zones.pl | 11 +-
.../expected_controller_config | 2 +-
.../expected_controller_config | 2 +-
.../evpn/ebgp/expected_controller_config | 2 +-
.../ebgp_loopback/expected_controller_config | 2 +-
.../evpn/exitnode/expected_controller_config | 2 +-
.../expected_controller_config | 2 +-
.../expected_controller_config | 2 +-
.../exitnode_snat/expected_controller_config | 2 +-
.../expected_controller_config | 2 +-
.../evpn/ipv4/expected_controller_config | 2 +-
.../evpn/ipv4ipv6/expected_controller_config | 2 +-
.../expected_controller_config | 2 +-
.../evpn/ipv6/expected_controller_config | 2 +-
.../ipv6underlay/expected_controller_config | 2 +-
.../evpn/isis/expected_controller_config | 2 +-
.../isis_loopback/expected_controller_config | 2 +-
.../expected_controller_config | 22 +
.../isis_standalone/expected_sdn_interfaces | 1 +
.../zones/evpn/isis_standalone/interfaces | 12 +
.../zones/evpn/isis_standalone/sdn_config | 21 +
.../expected_controller_config | 2 +-
.../multiplezones/expected_controller_config | 2 +-
.../expected_controller_config | 74 +++
.../openfabric_fabric/expected_sdn_interfaces | 56 +++
.../zones/evpn/openfabric_fabric/interfaces | 6 +
.../zones/evpn/openfabric_fabric/sdn_config | 79 +++
.../ospf_fabric/expected_controller_config | 68 +++
.../evpn/ospf_fabric/expected_sdn_interfaces | 53 ++
src/test/zones/evpn/ospf_fabric/interfaces | 6 +
src/test/zones/evpn/ospf_fabric/sdn_config | 76 +++
.../evpn/rt_import/expected_controller_config | 2 +-
.../evpn/vxlanport/expected_controller_config | 2 +-
53 files changed, 2454 insertions(+), 524 deletions(-)
create mode 100644 src/PVE/API2/Network/SDN/Fabrics.pm
create mode 100644 src/PVE/API2/Network/SDN/Fabrics/Fabric.pm
create mode 100644 src/PVE/API2/Network/SDN/Fabrics/FabricNode.pm
create mode 100644 src/PVE/API2/Network/SDN/Fabrics/Makefile
create mode 100644 src/PVE/API2/Network/SDN/Fabrics/Node.pm
create mode 100644 src/PVE/Network/SDN/Fabrics.pm
create mode 100644 src/PVE/Network/SDN/Frr.pm
create mode 100644 src/test/zones/evpn/isis_standalone/expected_controller_config
create mode 100644 src/test/zones/evpn/isis_standalone/expected_sdn_interfaces
create mode 100644 src/test/zones/evpn/isis_standalone/interfaces
create mode 100644 src/test/zones/evpn/isis_standalone/sdn_config
create mode 100644 src/test/zones/evpn/openfabric_fabric/expected_controller_config
create mode 100644 src/test/zones/evpn/openfabric_fabric/expected_sdn_interfaces
create mode 100644 src/test/zones/evpn/openfabric_fabric/interfaces
create mode 100644 src/test/zones/evpn/openfabric_fabric/sdn_config
create mode 100644 src/test/zones/evpn/ospf_fabric/expected_controller_config
create mode 100644 src/test/zones/evpn/ospf_fabric/expected_sdn_interfaces
create mode 100644 src/test/zones/evpn/ospf_fabric/interfaces
create mode 100644 src/test/zones/evpn/ospf_fabric/sdn_config
proxmox-widget-toolkit:
Stefan Hanreich (1):
network selector: add type parameter
src/form/NetworkSelector.js | 14 ++++++++++++--
1 file changed, 12 insertions(+), 2 deletions(-)
pve-manager:
Gabriel Goller (3):
api: use new sdn config generation functions
fabrics: Add main FabricView
utils: avoid line-break in pending changes message
Stefan Hanreich (15):
ui: fabrics: add model definitions for fabrics
fabric: add common interface panel
fabric: add OpenFabric interface properties
fabric: add OSPF interface properties
fabric: add generic node edit panel
fabric: add OpenFabric node edit
fabric: add OSPF node edit
fabric: add generic fabric edit panel
fabric: add OpenFabric fabric edit panel
fabric: add OSPF fabric edit panel
ui: permissions: add ACL path for fabrics
api: network: add include_sdn / fabric type
ui: add sdn networks to ceph / migration
ui: sdn: add evpn controller fabric integration
ui: sdn: vxlan: add fabric property
PVE/API2/Network.pm | 56 ++-
www/manager6/Makefile | 11 +
www/manager6/Utils.js | 2 +-
www/manager6/ceph/CephInstallWizard.js | 2 +
www/manager6/data/PermPathStore.js | 1 +
www/manager6/dc/Config.js | 8 +
www/manager6/dc/OptionView.js | 1 +
www/manager6/sdn/FabricsView.js | 464 ++++++++++++++++++
www/manager6/sdn/controllers/Base.js | 17 +
www/manager6/sdn/controllers/EvpnEdit.js | 35 +-
www/manager6/sdn/fabrics/Common.js | 36 ++
www/manager6/sdn/fabrics/FabricEdit.js | 57 +++
www/manager6/sdn/fabrics/InterfacePanel.js | 220 +++++++++
www/manager6/sdn/fabrics/NodeEdit.js | 224 +++++++++
.../sdn/fabrics/openfabric/FabricEdit.js | 47 ++
.../sdn/fabrics/openfabric/InterfacePanel.js | 34 ++
.../sdn/fabrics/openfabric/NodeEdit.js | 22 +
www/manager6/sdn/fabrics/ospf/FabricEdit.js | 20 +
.../sdn/fabrics/ospf/InterfacePanel.js | 3 +
www/manager6/sdn/fabrics/ospf/NodeEdit.js | 8 +
www/manager6/sdn/zones/VxlanEdit.js | 52 +-
21 files changed, 1303 insertions(+), 17 deletions(-)
create mode 100644 www/manager6/sdn/FabricsView.js
create mode 100644 www/manager6/sdn/fabrics/Common.js
create mode 100644 www/manager6/sdn/fabrics/FabricEdit.js
create mode 100644 www/manager6/sdn/fabrics/InterfacePanel.js
create mode 100644 www/manager6/sdn/fabrics/NodeEdit.js
create mode 100644 www/manager6/sdn/fabrics/openfabric/FabricEdit.js
create mode 100644 www/manager6/sdn/fabrics/openfabric/InterfacePanel.js
create mode 100644 www/manager6/sdn/fabrics/openfabric/NodeEdit.js
create mode 100644 www/manager6/sdn/fabrics/ospf/FabricEdit.js
create mode 100644 www/manager6/sdn/fabrics/ospf/InterfacePanel.js
create mode 100644 www/manager6/sdn/fabrics/ospf/NodeEdit.js
pve-gui-tests:
Gabriel Goller (1):
pve: add sdn/fabrics screenshots
create_fabrics_screenshots | 198 +++++++++++++++++++++++++++++++++++++
1 file changed, 198 insertions(+)
create mode 100755 create_fabrics_screenshots
pve-docs:
Gabriel Goller (1):
fabrics: add initial documentation for sdn fabrics
pvesdn.adoc | 227 ++++++++++++++++++++++++++++++++++++++++++++++++++++
1 file changed, 227 insertions(+)
Summary over all repositories:
178 files changed, 11299 insertions(+), 2173 deletions(-)
--
Generated by git-murpp 0.8.0
More information about the pve-devel
mailing list