fix: Refine MAC validation using interface name

When a user provides both an interface name and a MAC address, the current validation process retrieves sysfs link info separately using the interface name and the MAC address, then compares the results. If the information doesn't match, an error is raised. However, this approach may trigger false alarms because retrieving the link info by MAC might return the link info that only matches the current MAC instead of the permanent MAC. Since the interface name is unique within the kernel, a more robust validation method is to fetch the MAC address using the interface name and then compare it directly with the user-provided MAC address. Resolves: https://issues.redhat.com/browse/RHEL-84362 Signed-off-by: Wen Liang <liangwen12year@gmail.com>
2026-01-23 02:15:17 +00:00 · 2025-03-10 15:29:15 -04:00 · 2025-03-10 15:29:15 -04:00 · fe7c6c6fd5
commit fe7c6c6fd5
parent cac2bbb43e
5 changed files with 129 additions and 9 deletions
--- a/tests/ensure_provider_tests.py
+++ b/tests/ensure_provider_tests.py
@ -74,6 +74,7 @@ ibution_major_version | int < 9",
    },
    "playbooks/tests_ignore_auto_dns.yml": {},
    "playbooks/tests_bond_options.yml": {},
+    "playbooks/tests_bond_port_match_by_mac.yml": {},
    "playbooks/tests_eth_dns_support.yml": {},
    "playbooks/tests_dummy.yml": {},  # wokeignore:rule=dummy
    "playbooks/tests_infiniband.yml": {},
--- a/tests/playbooks/tests_bond_port_match_by_mac.yml
+++ b/tests/playbooks/tests_bond_port_match_by_mac.yml
@ -0,0 +1,40 @@
+# SPDX-License-Identifier: BSD-3-Clause
+---
+- name: Play for creating the connection to match the port device
+    based on the perm_hwaddr
+  hosts: all
+  vars:
+    controller_profile: bond0
+    controller_device: nm-bond
+    port1_profile: bond0.0
+    dhcp_interface1: test1
+    port2_profile: bond0.1
+    dhcp_interface2: test2
+    profile: test2conn
+    interface: test2
+  tasks:
+    - name: Test creating the connection to match the port device
+        based on the perm_hwaddr
+      tags:
+        - tests::bond:create
+      block:
+        - name: Include the task 'run_test.yml'
+          include_tasks: tasks/run_test.yml
+          vars:
+            lsr_description: Given two DHCP-enabled network interfaces,
+              when creating a bond profile with them,
+              then we can still create the connection to match the port device
+              based on the perm_hwaddr
+            lsr_setup:
+              - tasks/create_test_interfaces_with_dhcp.yml
+              - tasks/assert_dhcp_device_present.yml
+            lsr_test:
+              - tasks/create_bond_profile.yml
+              - tasks/create_bond_port_match_by_mac.yml
+            lsr_assert:
+              - tasks/assert_controller_device_present.yml
+              - tasks/assert_profile_present.yml
+            lsr_cleanup:
+              - tasks/cleanup_bond_profile+device.yml
+              - tasks/remove_test_interfaces_with_dhcp.yml
+              - tasks/check_network_dns.yml
--- a/tests/tasks/create_bond_port_match_by_mac.yml
+++ b/tests/tasks/create_bond_port_match_by_mac.yml
@ -0,0 +1,25 @@
+# SPDX-License-Identifier: BSD-3-Clause
+---
+- name: Retrieve perm_hwaddr using ethtool
+  # wokeignore:rule=slave
+  command: cat /sys/class/net/{{ interface }}/bonding_slave/perm_hwaddr
+  register: mac_address_result
+  changed_when: false
+  failed_when: mac_address_result.rc != 0
+- name: Set the MAC address variable
+  set_fact:
+    mac: "{{ mac_address_result.stdout_lines[-1].split(' ')[-1] }}"
+- name: Display the retrieved MAC address
+  debug:
+    msg: "Retrieved MAC address for {{ interface }}: {{ mac }}"
+- name: Test matching the port device based on the perm_hwaddr
+  import_role:
+    name: linux-system-roles.network
+  vars:
+    network_connections:
+      - name: "{{ profile }}"
+        state: up
+        type: ethernet
+        interface_name: "{{ interface }}"
+        mac: "{{ mac }}"
+...
--- a/tests/tests_bond_port_match_by_mac_nm.yml
+++ b/tests/tests_bond_port_match_by_mac_nm.yml
@ -0,0 +1,23 @@
+# SPDX-License-Identifier: BSD-3-Clause
+# This file was generated by ensure_provider_tests.py
+---
+# set network provider and gather facts
+# yamllint disable rule:line-length
+- name: Run playbook 'playbooks/tests_bond_port_match_by_mac.yml' with nm as provider
+  hosts: all
+  tasks:
+    - name: Include the task 'el_repo_setup.yml'
+      include_tasks: tasks/el_repo_setup.yml
+    - name: Set network provider to 'nm'
+      set_fact:
+        network_provider: nm
+      tags:
+        - always
+
+
+# The test requires or should run with NetworkManager, therefore it cannot run
+# on RHEL/CentOS 6
+- name: Import the playbook 'playbooks/tests_bond_port_match_by_mac.yml'
+  import_playbook: playbooks/tests_bond_port_match_by_mac.yml
+  when:
+    - ansible_distribution_major_version != '6'