initial hostmask support and documentation

c-robinson · Jan 9, 2024 · 4aae85c · 4aae85c
1 parent 1391bcd
commit 4aae85c
Show file tree

Hide file tree

Showing 3 changed files with 117 additions and 7 deletions.
diff --git a/cmd/hostmask.go b/cmd/hostmask.go
@@ -0,0 +1,70 @@
+package cmd
+
+import "github.com/spf13/cobra"
+
+var hostmaskCmd = &cobra.Command{
+	Use:   "hostmask",
+	Short: "documentation about IPv6 hostmasks",
+	Long: `
+HostMask is a mask that can be applied to IPv6 addresses to mask out bits
+from the right side of the address instead of the left (which is the
+purview of a netmask), the intended use-case is for situations where there
+is a desire to reserve a portion of the address for some other purpose and
+only allow iplib to manage the remainder. A concrete example would be 
+IPv6 Interface Identifiers as described in RFC4291, RFC4941 or RFC7217 in 
+which the final 64bits of the address are used to construct a unique host
+identifier and the allocator only has control of the first 64bits. So the
+next IP from 2001:db8:1234:5678:: would be 2001:db8:1234:5679 instead of 
+2001:db8:1234:5678::1. Here is a sample view of an IPv6 netblock without
+a hostmask:
+
+    % ipfool net view 2001:db8::/56    
+    Address            2001:db8::      
+    Netmask            ffff:ffff:ffff:ff00:0000:0000:0000:0000
+    First              2001:0db8:0000:0000:0000:0000:0000:0000
+    Last               2001:0db8:0000:00ff:ffff:ffff:ffff:ffff
+    Count              4722366482869645213696
+    Registered in: RFC3849
+    Network may not be forwarded, is private, is not reserved
+
+This creates a block with 4.7 sextillion usable addresses. Below is he same
+block with a hostmask of 60, created by appending ':60' after the netmask.
+The mask is applied from the rightmost byte, leaving 12 unmasked bits for a
+total of 4096 allocatable addresses:
+
+    % ipfool net view 2001:db8::/56:60
+    Address            2001:db8::      
+    Netmask            ffff:ffff:ffff:ff00:0000:0000:0000:0000
+    Hostmask           0000:0000:0000:0000:f0ff:ffff:ffff:ffff
+    First              2001:0db8:0000:0000:0000:0000:0000:0000
+    Last               2001:0db8:0000:00ff:0f00:0000:0000:0000
+    Count              4096            
+    Registered in: RFC3849
+    Network may not be forwarded, is private, is not reserved
+
+In the first example the second IP address of the netblock is 2001:db8::1,
+in the second example it is 2001:db8:0:1::
+
+One important note: even though bytes are filled in from the right the bits
+within those bytes are still blocked out left-to-right, so that address
+incrementing/decrementing makes sense to the end user, as shown here:
+
+    BINARY      Base16  Base10  Example Max16  Max10
+    0000 0000     0x00       0      /56  0xFF    255
+    1000 0000     0x80     128      /57  0x7F    127
+    1100 0000     0xC0     192      /58  0x3F     63
+    1110 0000     0xE0     224      /59  0x1F     31
+    1111 0000     0xF0     240      /60  0x0F     15
+    1111 1000     0xF8     248      /61  0x07      7
+    1111 1100     0xFC     252      /62  0x03      3
+    1111 1110     0xFE     254      /63  0x01      1
+
+A hostmask of /1 will block out the left-most bit of the 16th byte
+while a /8 will block the entire 16th byte.
+`,
+}
+
+func init() {
+	netRootCmd.AddCommand(hostmaskCmd)
+	rootCmd.AddCommand(hostmaskCmd)
+}
diff --git a/cmd/net_view.go b/cmd/net_view.go
@@ -103,15 +103,19 @@ func netViewIPv4Address(ipnet iplib.Net4) {
 }
 
 func netViewIPv6Address(ipnet iplib.Net6) {
+	size, _ := ipnet.Hostmask.Size()
 	data := map[string]string{
-		"Address": ipnet.IP().String(),
-		"Netmask": putSeperatorsAroundIPv6Netmask(ipnet.Mask().String()),
-		"First":   iplib.ExpandIP6(ipnet.FirstAddress()),
-		"Last":    iplib.ExpandIP6(ipnet.LastAddress()),
-		"Count":   fmt.Sprintf("%s", ipnet.Count().String()),
+		"Address":  ipnet.IP().String(),
+		"Netmask":  putSeperatorsAroundIPv6Netmask(ipnet.Mask().String()),
+		"First":    iplib.ExpandIP6(ipnet.FirstAddress()),
+		"Last":     iplib.ExpandIP6(ipnet.LastAddress()),
+		"Hostmask": putSeperatorsAroundIPv6Netmask(ipnet.Hostmask.String()),
+		"Count":    fmt.Sprintf("%s", ipnet.Count().String()),
 	}
-
-	for _, k := range []string{"Address", "Netmask", "First", "Last", "Count"} {
+	for _, k := range []string{"Address", "Netmask", "Hostmask", "First", "Last", "Count"} {
+		if k == "Hostmask" && size == 0 {
+			continue
+		}
 		fmt.Printf("%-18s %-16s\n", k, data[k])
 	}
 	rfclist := iana.GetRFCsForNetwork(ipnet)

diff --git a/cmd/validations.go b/cmd/validations.go
@@ -4,6 +4,8 @@ import (
 	"fmt"
 	"net"
 	"os"
+	"regexp"
+	"strconv"
 
 	"github.com/c-robinson/iplib/v2"
 )
@@ -45,6 +47,11 @@ func retrieveIPAddress(s string, t addrType) net.IP {
 }
 
 func retrieveIPNetwork(s string, t addrType) iplib.Net {
+	ipnet := retrieveIPNetwork6WithHostmask(s)
+	if ipnet.IP() != nil {
+		return ipnet
+	}
+
 	_, ipnet, err := iplib.ParseCIDR(s)
 	if err != nil {
 		fmt.Println("supplied value is not a valid IP netblock")
@@ -53,3 +60,32 @@ func retrieveIPNetwork(s string, t addrType) iplib.Net {
 
 	return ipnet
 }
+
+func retrieveIPNetwork6WithHostmask(s string) iplib.Net {
+	// if there's a hostmask this regex will match it, returning
+	// 0: the whole string	2001:db8::/64:24
+	// 1: the IP address	2001:db8::
+	// 2: the netmask		64
+	// 3: the hostmask		24
+	r := regexp.MustCompile(`([A-Fa-f0-9:].*)\/([0-9].*):([0-9]{0,3})`)
+
+	ipregex := r.FindStringSubmatch(s)
+	if len(ipregex) != 4 {
+		return iplib.Net6{}
+	}
+	address := net.ParseIP(ipregex[1])
+	netmask, err := strconv.Atoi(ipregex[2])
+	if err != nil {
+		return iplib.Net6{}
+	}
+	hostmask, err := strconv.Atoi(ipregex[3])
+	if err != nil {
+		return iplib.Net6{}
+	}
+	if hostmask+netmask > 128 {
+		fmt.Printf("total mask size cannot exceed 128 bits (%d + %d = %d)\n", netmask, hostmask, netmask+hostmask)
+		os.Exit(1)
+	}
+
+	return iplib.NewNet6(address, netmask, hostmask)
+}