Send IPv4 GARP and IPv6 Unsolicited NA in "cmdAdd"

[wizhaoredhat]

In "cmdAdd", SRIOV-CNI would construct and send IPv4 Gratuitous ARP
and/or Unsolicited Neighbor Advertisement depending on the IP
addresses configured by IPAM. The reason why this change is needed
is for the scenario when an IP address is reused by IPAM with
different interfaces (with different link-layer addresses). This can
occur when pods are deleted and created. For performance reasons,
sending of GARP and/or Unsolicited NA would update invalid ARP/Neighbor
caches in other neighbors/nodes.

Also we set IPv4 ARP Notify and IPv6 Neighbor Discovery Notify in sysfs
for each interface. This will send GARP and/or Unsolicited NA when the
interface is either brought up or the link-layer address changes. This
is useful in cases where an application reenables the interface or the
MAC address configuration is changed.

Some new packages were added, thus go.mod and go.sum were modified
accordingly.

Mocked PciUtils for sriov tests since sriov.go would call PciUtils to
set IPv4 ARP Notify and IPv6 Neighbor Discovery.

Fixes #177

Signed-off-by: William Zhao wizhao@redhat.com

[wizhaoredhat]

@adrianchiris @martinkennelly @zshi-redhat @bn222 @Eoghan1232 @s1061123 @SchSeba : When you have an opportunity it would be much appreciated if you reviewed these changes in my PR.

[wizhaoredhat]

I believe there was an intermittent problem with checking out some golang libraries. I hope that is what caused the kubernetes ci to fail. Could someone help with reruning the workflow?

[coveralls]

Pull Request Test Coverage Report for Build 3010912126

Warning: This coverage report may be inaccurate.

This pull request's base commit is no longer the HEAD commit of its target branch. This means it includes changes from outside the original pull request, including, potentially, unrelated coverage changes.

• For more information on this, see Tracking coverage changes with pull request builds.
• To avoid this issue with future PRs, see these Recommended CI Configurations.
• For a quick fix, rebase this PR at GitHub. Your next report should be accurate.

Details

• 126 of 450 (28.0%) changed or added relevant lines in 6 files are covered.
• No unchanged relevant lines lost coverage.
• Overall coverage decreased (-2.4%) to 34.347%

---

Changes Missing Coverage	Covered Lines	Changed/Added Lines	%
pkg/sriov/sriov.go	3	10	30.0%
pkg/utils/mocks/netlink_manager_mock.go	114	143	79.72%
pkg/utils/netlink_manager.go	0	39	0.0%
pkg/utils/utils.go	0	39	0.0%
pkg/sriov/mocks/pci_utils_mock.go	9	65	13.85%
pkg/utils/packet.go	0	154	0.0%

Totals
Change from base Build 2992024059:	-2.4%
Covered Lines:	339
Relevant Lines:	987

---

💛 - Coveralls

[SchSeba]

The PR looks good thanks for the contribution!

I have a general question if we change the sys/net file and then change the nic to up the kernel should send the request for us no?

base on (https://sysctl-explorer.net/net/ipv6/ndisc_notify/)

[wizhaoredhat]

The PR looks good thanks for the contribution!

I have a general question if we change the sys/net file and then change the nic to up the kernel should send the request for us no?

base on (https://sysctl-explorer.net/net/ipv6/ndisc_notify/)

@SchSeba
Glad to be able to contribute!

To your question, yes that is correct. This is the method that Zenghui was first prototyping. However after some debugging and testing. We found some issues:

1. The interface must be up for IPAM to function correctly. E.g. dhcp IPAM.
   (Thus we have to down the interface after IPAM config and bring it back up)
2. IP addresses can be lost or changed. E.g By default sysctl "keep_addr_on_down" for IPv6 is set to zero. This means that if the interface is "downed", the IPv6 address(es) configured statically are lost.
3. Also flapping a interface link when the majority of the network configuration was completed by SRIOV-CNI and IPAM to send a gratuitous ARP or unsolicited NA seemed a bit hacky in my opinion.

Constructing the packets manually and sending them seemed like the correct path to go.

[wizhaoredhat]

@adrianchiris @zshi-redhat @bn222 @s1061123 @SchSeba : Please review again at your convenience. I would like to have this feature in soon. Thanks!

[adrianchiris]

Thanks for working on this @wizhaoredhat !

apologies for the late review.

[bn222]

The commit has become quite large. Would it be possible to split it up a bit?

[wizhaoredhat]

Hi All,
Could this PR be merged? I think I addressed everyone's comments. Regarding the checks being not successful, I think the Linter has some issues, the problem area doesn't seem to be with my changes.

@adrianchiris @zshi-redhat @bn222 @s1061123 @SchSeba

[SchSeba]

For the CI issue I have an open PR for it

#223

[adrianchiris]

Overall looks good, once @SchSeba comments are addressed and PR rebased im LGTM

[adrianchiris]

/retest

[adrianchiris]

lets wait for CI to pass, otherwise LGTM

thanks for addressing my comments !

[Eoghan1232]

/retest

@adrianchiris could you kick off ci again ?

[wizhaoredhat]

I am not sure why the Mellanox CI is failing when we only changed the test file and mocks... Any idea @adrianchiris ?

[adrianchiris]

/retest

[adrianchiris]

it should run properly now

[wizhaoredhat]

it should run properly now

@adrianchiris
Great, could we merge this pull request now?

[Eoghan1232]

lgtm

[bn222]

/lgtm

[Eoghan1232]

Merging now.