add --mac-address to podman play kube

Add a new --mac-address flag to podman play kube. This is used to specify
a static MAC address which should be used for the pod. This option can be
specified several times because play kube can create more than one pod.

Fixes #9731

Signed-off-by: Paul Holzinger <paul.holzinger@web.de>

cmd/podman/play/kube.go

@@ -2,6 +2,7 @@ package pods
 
 import (
 	"fmt"
+	"net"
 	"os"
 
 	"github.com/containers/common/pkg/auth"
@@ -27,6 +28,7 @@ type playKubeOptionsWrapper struct {
 }
 
 var (
+	macs []string
 	// https://kubernetes.io/docs/reference/command-line-tools-reference/kubelet/
 	defaultSeccompRoot = "/var/lib/kubelet/seccomp"
 	kubeOptions        = playKubeOptionsWrapper{}
@@ -61,6 +63,10 @@ func init() {
 	flags.StringVar(&kubeOptions.CredentialsCLI, credsFlagName, "", "`Credentials` (USERNAME:PASSWORD) to use for authenticating to a registry")
 	_ = kubeCmd.RegisterFlagCompletionFunc(credsFlagName, completion.AutocompleteNone)
 
+	staticMACFlagName := "mac-address"
+	flags.StringSliceVar(&macs, staticMACFlagName, nil, "Static MAC addresses to assign to the pods")
+	_ = kubeCmd.RegisterFlagCompletionFunc(staticMACFlagName, completion.AutocompleteNone)
+
 	networkFlagName := "network"
 	flags.StringVar(&kubeOptions.Network, networkFlagName, "", "Connect pod to CNI network(s)")
 	_ = kubeCmd.RegisterFlagCompletionFunc(networkFlagName, common.AutocompleteNetworkFlag)
@@ -128,6 +134,15 @@ func kube(cmd *cobra.Command, args []string) error {
 	if yamlfile == "-" {
 		yamlfile = "/dev/stdin"
 	}
+
+	for _, mac := range macs {
+		m, err := net.ParseMAC(mac)
+		if err != nil {
+			return err
+		}
+		kubeOptions.StaticMACs = append(kubeOptions.StaticMACs, m)
+	}
+
 	report, err := registry.ContainerEngine().PlayKube(registry.GetContext(), yamlfile, kubeOptions.PlayKubeOptions)
 	if err != nil {
 		return err

docs/source/markdown/podman-play-kube.1.md

@@ -70,6 +70,10 @@ Assign a static ip address to the pod. This option can be specified several time
 
 Set logging driver for all created containers.
 
+#### **\-\-mac-address**=*MAC address*
+
+Assign a static mac address to the pod. This option can be specified several times when play kube creates more than one pod.
+
 #### **\-\-network**=*networks*, **\-\-net**
 
 A comma-separated list of the names of CNI networks the pod should join.

pkg/api/handlers/libpod/play.go

@@ -26,6 +26,7 @@ func PlayKube(w http.ResponseWriter, r *http.Request) {
 		LogDriver  string   `schema:"logDriver"`
 		Start      bool     `schema:"start"`
 		StaticIPs  []string `schema:"staticIPs"`
+		StaticMACs []string `schema:"staticMACs"`
 	}{
 		TLSVerify: true,
 		Start:     true,
@@ -48,6 +49,17 @@ func PlayKube(w http.ResponseWriter, r *http.Request) {
 		staticIPs = append(staticIPs, ip)
 	}
 
+	staticMACs := make([]net.HardwareAddr, 0, len(query.StaticMACs))
+	for _, macString := range query.StaticMACs {
+		mac, err := net.ParseMAC(macString)
+		if err != nil {
+			utils.Error(w, http.StatusText(http.StatusBadRequest), http.StatusBadRequest,
+				err)
+			return
+		}
+		staticMACs = append(staticMACs, mac)
+	}
+
 	// Fetch the K8s YAML file from the body, and copy it to a temp file.
 	tmpfile, err := ioutil.TempFile("", "libpod-play-kube.yml")
 	if err != nil {
@@ -85,6 +97,7 @@ func PlayKube(w http.ResponseWriter, r *http.Request) {
 		Quiet:      true,
 		LogDriver:  query.LogDriver,
 		StaticIPs:  staticIPs,
+		StaticMACs: staticMACs,
 	}
 	if _, found := r.URL.Query()["tlsVerify"]; found {
 		options.SkipTLSVerify = types.NewOptionalBool(!query.TLSVerify)

pkg/api/server/register_play.go

@@ -40,6 +40,12 @@ func (s *APIServer) registerPlayHandlers(r *mux.Router) error {
 	//    description: Static IPs used for the pods.
 	//    items:
 	//      type: string
+	//  - in: query
+	//    name: staticMACs
+	//    type: array
+	//    description: Static MACs used for the pods.
+	//    items:
+	//      type: string
 	//  - in: body
 	//    name: request
 	//    description: Kubernetes YAML file.

pkg/bindings/play/types.go

@@ -27,6 +27,8 @@ type KubeOptions struct {
 	SeccompProfileRoot *string
 	// StaticIPs - Static IP address used by the pod(s).
 	StaticIPs *[]net.IP
+	// StaticMACs - Static MAC address used by the pod(s).
+	StaticMACs *[]net.HardwareAddr
 	// ConfigMaps - slice of pathnames to kubernetes configmap YAMLs.
 	ConfigMaps *[]string
 	// LogDriver for the container. For example: journald

pkg/bindings/play/types_kube_options.go

@@ -181,6 +181,22 @@ func (o *KubeOptions) GetStaticIPs() []net.IP {
 	return *o.StaticIPs
 }
 
+// WithStaticMACs
+func (o *KubeOptions) WithStaticMACs(value []net.HardwareAddr) *KubeOptions {
+	v := &value
+	o.StaticMACs = v
+	return o
+}
+
+// GetStaticMACs
+func (o *KubeOptions) GetStaticMACs() []net.HardwareAddr {
+	var staticMACs []net.HardwareAddr
+	if o.StaticMACs == nil {
+		return staticMACs
+	}
+	return *o.StaticMACs
+}
+
 // WithConfigMaps
 func (o *KubeOptions) WithConfigMaps(value []string) *KubeOptions {
 	v := &value

pkg/domain/entities/play.go

@@ -30,6 +30,8 @@ type PlayKubeOptions struct {
 	SeccompProfileRoot string
 	// StaticIPs - Static IP address used by the pod(s).
 	StaticIPs []net.IP
+	// StaticMACs - Static MAC address used by the pod(s).
+	StaticMACs []net.HardwareAddr
 	// ConfigMaps - slice of pathnames to kubernetes configmap YAMLs.
 	ConfigMaps []string
 	// LogDriver for the container. For example: journald

pkg/domain/infra/abi/play.go

@@ -199,11 +199,17 @@ func (ic *ContainerEngine) playKubePod(ctx context.Context, podName string, podY
 	}
 	if len(options.StaticIPs) > *ipIndex {
 		p.StaticIP = &options.StaticIPs[*ipIndex]
-		*ipIndex++
 	} else if len(options.StaticIPs) > 0 {
-		// only warn if the user has set at least one ip ip
+		// only warn if the user has set at least one ip
 		logrus.Warn("No more static ips left using a random one")
 	}
+	if len(options.StaticMACs) > *ipIndex {
+		p.StaticMAC = &options.StaticMACs[*ipIndex]
+	} else if len(options.StaticIPs) > 0 {
+		// only warn if the user has set at least one mac
+		logrus.Warn("No more static macs left using a random one")
+	}
+	*ipIndex++
 
 	// Create the Pod
 	pod, err := generate.MakePod(p, ic.Libpod)

pkg/domain/infra/tunnel/play.go

@@ -11,7 +11,8 @@ import (
 func (ic *ContainerEngine) PlayKube(ctx context.Context, path string, opts entities.PlayKubeOptions) (*entities.PlayKubeReport, error) {
 	options := new(play.KubeOptions).WithAuthfile(opts.Authfile).WithUsername(opts.Username).WithPassword(opts.Password)
 	options.WithCertDir(opts.CertDir).WithQuiet(opts.Quiet).WithSignaturePolicy(opts.SignaturePolicy).WithConfigMaps(opts.ConfigMaps)
-	options.WithLogDriver(opts.LogDriver).WithNetwork(opts.Network).WithSeccompProfileRoot(opts.SeccompProfileRoot).WithStaticIPs(opts.StaticIPs)
+	options.WithLogDriver(opts.LogDriver).WithNetwork(opts.Network).WithSeccompProfileRoot(opts.SeccompProfileRoot)
+	options.WithStaticIPs(opts.StaticIPs).WithStaticMACs(opts.StaticMACs)
 
 	if s := opts.SkipTLSVerify; s != types.OptionalBoolUndefined {
 		options.WithSkipTLSVerify(s == types.OptionalBoolTrue)

test/e2e/play_kube_test.go

@@ -1717,7 +1717,7 @@ spec:
 		}
 	})
 
-	It("podman play kube --ip", func() {
+	It("podman play kube --ip and --mac-address", func() {
 		var i, numReplicas int32
 		numReplicas = 3
 		deployment := getDeployment(withReplicas(numReplicas))
@@ -1735,6 +1735,10 @@ spec:
 		for _, ip := range ips {
 			playArgs = append(playArgs, "--ip", ip)
 		}
+		macs := []string{"e8:d8:82:c9:80:40", "e8:d8:82:c9:80:50", "e8:d8:82:c9:80:60"}
+		for _, mac := range macs {
+			playArgs = append(playArgs, "--mac-address", mac)
+		}
 
 		kube := podmanTest.Podman(append(playArgs, kubeYaml))
 		kube.WaitWithDefaultTimeout()
@@ -1747,6 +1751,13 @@ spec:
 			Expect(inspect.ExitCode()).To(Equal(0))
 			Expect(inspect.OutputToString()).To(Equal(ips[i]))
 		}
+
+		for i = 0; i < numReplicas; i++ {
+			inspect := podmanTest.Podman([]string{"inspect", getCtrNameInPod(&podNames[i]), "--format", "{{ .NetworkSettings.Networks." + net + ".MacAddress }}"})
+			inspect.WaitWithDefaultTimeout()
+			Expect(inspect.ExitCode()).To(Equal(0))
+			Expect(inspect.OutputToString()).To(Equal(macs[i]))
+		}
 	})
 
 	It("podman play kube test with network portbindings", func() {