[DNM] Implements IP utilization tracking for networks

[aepifanov]

- What I did

This PR introduces IP utilization tracking for Docker networks by extending the network inspection API to include IPAM state. This enhancement allows users to monitor how many IP addresses are allocated per subnet and IP range pool within a network.
It covers only IPv4.

- How I did it

Design IP-utilization

1. Added IP allocation counters to track usage within:
   • The entire subnet
   • The defined IP range pool
2. Introduced new API types to represent network State, including nested IPAM state information
3. Implemented support and test coverage for the following network drivers:
   • bridge
   • macvlan
   • ipvlan
   • overlay

Example output from docker network inspect:

> docker network inspect my
[
    {
        "Name": "my",
....
        "IPAM": {
            "Driver": "default",
            "Options": {},
            "Config": [
                {
                    "Subnet": "192.168.10.0/24",
                    "IPRange": "192.168.10.128/31",
                    "Gateway": "192.168.10.1",
                    "AuxiliaryAddresses": {
                        "my-host": "192.168.10.128"
                    }
                }
            ]
        },
        "State": {
            "IPAM": {
                "192.168.10.0/24": {
                    "AllocatedIPsInSubnet": 4,
                    "AvailableIPsInIPRangePool": 1
                }
            }
        },
....
    }
]

• AllocatedIPsInSubnet: Number of addresses allocated in the subnet. If the value exceeds uint64, it is capped at the maximum uint64 value.

• AvailableIPsInIPRangePool: Number of available addresses for allocating in the IP range pool.

Depends on:

IP utilization in Swarm

- How to verify it

Run docker network inspect <network> and verify the new State.IPAM section reflects real-time allocation counts for each subnet configuration.

- Human readable description for the release notes

Implements IP utilization tracking for Docker networks.
Adds IP allocation counters to network inspect responses.

- A picture of a cute animal (not mandatory but encouraged)

[corhere]

How come you need both the PoolData.allocatedIPsInPool counters and (*addrset.AddrSet).Selected()? Aren't all reserved IPs added to an AddrSet? I would have expected .Selected() to be sufficient.

[aepifanov]

@corhere

How come you need both the PoolData.allocatedIPsInPool counters and (*addrset.AddrSet).Selected()? Aren't all reserved IPs added to an AddrSet? I would have expected .Selected() to be sufficient.

allocatedIPsInPool counts the IP addresses allocated specifically from the IP range pool
allocatedIPsInSubnet tracks allocations from the entire subnet

[corhere]

allocatedIPsInPool counts the IP addresses allocated specifically from the IP range pool
allocatedIPsInSubnet tracks allocations from the entire subnet

Could you please elaborate further? I still do not understand why the information from the AddrSet is incomplete.

[aepifanov]

allocatedIPsInPool counts the IP addresses allocated specifically from the IP range pool
allocatedIPsInSubnet tracks allocations from the entire subnet

Could you please elaborate further? I still do not understand why the information from the AddrSet is incomplete.

allocatedIPsInSubnet matches 1:1 with .Selected() from the AddrSet, as it counts all IPs allocated from the entire subnet.
allocatedIPsInPool is calculated based on matches against the configured ip-range, which is defined at the PoolData level and stored as a children map:

moby/daemon/libnetwork/ipams/defaultipam/structures.go

Lines 18 to 25 in addc373

	// PoolData contains the configured pool data
	type PoolData struct {
	addrs *addrset.AddrSet
	children map[netip.Prefix]struct{}
	// Whether to implicitly release the pool once it no longer has any children.
	autoRelease bool
	}

[corhere]

Okay, I think I understand. I am not entirely thrilled with there being two sources of truth for the IP address allocations, but you may have had a good reason to take this approach. Which alternative solutions did you consider and why did the approach of maintaining a running counter win out?

[aepifanov]

@corhere I've done the following changes from the last your review:

1. removed ipv6 support
2. reversed the counter for ip-range pool from used to available
3. extened the integratio tests with using aux-addresses
4. changed the State.IPAM format to:

        "State": {
            "IPAM": {
                "192.168.10.0/24": {
                    "AllocatedIPsInSubnet": 5,
                    "AvailableIPsInIPRangePool": 1
                }
        },

[corhere]

It does not look like the tests cover all the corner cases.

[corhere]

What's the purpose of the bits and bms variables? Neither one is used in the summation.

[aepifanov]

Outdated code. Removed.

[corhere]

Nit: premature optimization. The loop body would execute zero times, leading to the correct answer of zero addresses selected without any wasted cycles.

[corhere]

What is the rationale behind changing the signature of newPoolData?

[aepifanov]

The idea was to handle usedInRangePool counter during the PoolData initialization steps, which required the sub info as well.
But it's outdated code for now.

[corhere]

How is this equivalent to pd.addrs.Add(pool.Addr()) when you aren't passing pool.Addr() as a parameter?

[aepifanov]

After re-implementation of usedInIPRangePool calculation it's returned back.

[corhere]

From our earlier discussions I understand that this is not actually the count of addresses allocated in the nw as a whole, since that would be duplicating (PoolData).addrs.Selected(). What is counting, then? I don't see how a single integer could be used to report how many addresses are available for dynamic allocation in a specific sub without interference from other subs under the same nw shared with other container networks.

[aepifanov]

Nice catch!
I've re-implemented usedInIPRangePool handling method to the direct calculation of the selected addresses in a bitmap for a specified range, which allows to get the actual IPAM state for any range.

[corhere]

I don't see k.ChildSubnet consumed anywhere. How can the count of addresses allocated in that range be looked up without knowing which range to count?

[aepifanov]

In the current implementation the range is taken from the PoolID which contains it.

[corhere]

We can do better than hardcode a constant:

Suggested change

	return uint64(1) << (32 - cidr.Bits()), nil
	return uint64(1) << (cidr.Addr().BitLen() - cidr.Bits()), nil

[aepifanov]

Done

[corhere]

Where are you testing the cases with multiple ip-range allocations under a single subnet? Be sure to cover both the disjoint ranges (e.g. --subnet 192.168.0.0/24 --ip-range 192.168.0.0/25, --subnet 192.168.0.0/24 --ip-range 192.168.0.128/25) and overlapping ranges (e.g. --subnet 192.168.0.0/24 --ip-range 192.168.0.0/25, --subnet 192.168.0.0/24 --ip-range 192.168.0.64/26) cases

[aepifanov]

Added test-cases.

[corhere]

The daemon instance converting the swarmapi.Network to a network.Inspect might not be the same process, let alone the same version, as the one that produced the swarmapi.Network value. Could you please future-proof the conversion to gracefully handle network state values of unexpected types? Having the consumer assume a particular schema of the Any value hampers our flexibility to change how the network state is encoded.

[corhere]

Recent versions of Go now have convenient max and min builtins.

Suggested change

	for remaining > 0 {
	if cur.count <= remaining {
	selected += uint64(bits.OnesCount32(cur.block)) * cur.count
	remaining -= cur.count
	cur = cur.next
	} else {
	selected += uint64(bits.OnesCount32(cur.block)) * remaining
	remaining = 0
	}
	}
	for remaining > 0 {
	n := min(cur.count, remaining)
	selected += uint64(bits.OnesCount32(cur.block)) * n
	remaining -= n
	cur = cur.next
	}

[corhere]

Bikeshedding: name functions based on their outputs and side effects, not on irrelevant implementation details. It makes no difference to the caller whether the number of set bits is calculated on the fly, cached, memoized, indexed, etc., so long as it gets the correct answer.

Suggested change

	// CalculateSelected calculates the number of selected bits in the range [start, end].
	func (h *Bitmap) CalculateSelected(start, end uint64) (uint64, error) {
	// OnesCount calculates the number of selected bits in the range [start, end].
	func (h *Bitmap) OnesCount(start, end uint64) (uint64, error) {

[corhere]

Suggested change

	func hiBlockMask(bitPos uint64) uint32 {
	if bitPos >= uint64(blockLen) {
	return 0
	}
	if bitPos == 0 {
	return blockFull
	}
	return (blockFirstBit >> (bitPos - 1)) - 1
	}
	func hiBlockMask(bitPos uint64) uint32 {
	return blockFull >> bitPos
	}

[corhere]

I would trust the implementation a lot more if CalculateSelected was tested by setting up the preconditions through the public interface of bitmap. By directly constructing the sequences it's possible that an incorrect assumption in the code could be carried through to the test cases such that the tests don't catch the bug. This test as written would not catch if you mixed up the bit-endianness of the blocks, for instance.

[corhere]

Why is generic libnetwork code for any network calling a function from the default IPAM driver? What happens if the IPAM driver for the network is not defaultipam?

[corhere]

We can't merge this PR with the Swarmkit dependency replaced with your fork. Please convert this PR to draft.

[corhere]

What's the point of versioning the type if you're just going to proceed anyway? Why would we bump the version if it's backwards-compatible with v1? And if the type is not backwards-compatible, it's a different data type by definition, so changing the type name would be the more appropriate action than bumping the version.

[corhere]

How does the StringifyEnvelope help to enable us to switch to another codec, e.g. protobuf or msgpack, for the state value in the future? It looks like this will lock us into JSON forever.

[corhere]

What can we infer about how this manager node relates to the leader when this code path is taken? Is there something actionable we could include in the log message?

[corhere]

Please co-locate the marshalling code in the same package as the corresponding unmarshalling code. I recommend putting it in daemon/cluster/convert/network.go, the same file as the unmarshaller and same package as all the other code which converts between Engine and Swarm API types.

[corhere]

New fields added to API responses need to be gated on the API version so that people developing clients are forced to set the API version correctly and therefore have their clients fail fast when connecting to incompatible engines. Please modify the API endpoints to clear this field on API versions less than the latest (v1.52)

[corhere]

Please update the Swagger spec and API changelog with this addition

[corhere]

• Superseded by api, daemon: report IPAM status for local-scope networks #50917 and daemon: report IPAM status for Swarm networks #50946