rahulait
diff --git a/‎Makefile‎
Lines changed: 2 additions & 2 deletions b/‎Makefile‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎cloud/linode/client/client.go‎
Lines changed: 1 addition & 0 deletions b/‎cloud/linode/client/client.go‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎cloud/linode/client/client_with_metrics.go‎
Lines changed: 13 additions & 0 deletions b/‎cloud/linode/client/client_with_metrics.go‎
Lines changed: 13 additions & 0 deletions
diff --git a/‎cloud/linode/client/mocks/mock_client.go‎
Lines changed: 15 additions & 0 deletions b/‎cloud/linode/client/mocks/mock_client.go‎
Lines changed: 15 additions & 0 deletions
diff --git a/‎cloud/linode/cloud.go‎
Lines changed: 7 additions & 0 deletions b/‎cloud/linode/cloud.go‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎cloud/linode/vpc.go‎
Lines changed: 72 additions & 1 deletion b/‎cloud/linode/vpc.go‎
Lines changed: 72 additions & 1 deletion
diff --git a/‎cloud/linode/vpc_test.go‎
Lines changed: 76 additions & 0 deletions b/‎cloud/linode/vpc_test.go‎
Lines changed: 76 additions & 0 deletions
diff --git a/‎deploy/chart/templates/daemonset.yaml‎
Lines changed: 7 additions & 0 deletions b/‎deploy/chart/templates/daemonset.yaml‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎deploy/chart/values.yaml‎
Lines changed: 3 additions & 1 deletion b/‎deploy/chart/values.yaml‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎e2e/bgp-test/lb-cilium-bgp/chainsaw-test.yaml‎
Lines changed: 2 additions & 0 deletions b/‎e2e/bgp-test/lb-cilium-bgp/chainsaw-test.yaml‎
Lines changed: 2 additions & 0 deletions
@@ -193,7 +193,7 @@ e2e-test:
 	KUBECONFIG=$(KUBECONFIG_PATH) \
 	REGION=$(LINODE_REGION) \
 	LINODE_TOKEN=$(LINODE_TOKEN) \
-	chainsaw test e2e/test --parallel 2
+	chainsaw test e2e/test --parallel 2 $(E2E_FLAGS)
 
 .PHONY: e2e-test-bgp
 e2e-test-bgp:
@@ -204,7 +204,7 @@ e2e-test-bgp:
 		KUBECONFIG=$(KUBECONFIG_PATH) \
 		REGION=$(LINODE_REGION) \
 		LINODE_TOKEN=$(LINODE_TOKEN) \
-		chainsaw test e2e/bgp-test/lb-cilium-bgp
+		chainsaw test e2e/bgp-test/lb-cilium-bgp $(E2E_FLAGS)
 
 #####################################################################
 # OS / ARCH
 
@@ -35,6 +35,7 @@ type Client interface {
 
 	ListVPCs(context.Context, *linodego.ListOptions) ([]linodego.VPC, error)
 	ListVPCIPAddresses(context.Context, int, *linodego.ListOptions) ([]linodego.VPCIP, error)
+	ListVPCSubnets(context.Context, int, *linodego.ListOptions) ([]linodego.VPCSubnet, error)
 
 	CreateNodeBalancer(context.Context, linodego.NodeBalancerCreateOptions) (*linodego.NodeBalancer, error)
 	GetNodeBalancer(context.Context, int) (*linodego.NodeBalancer, error)
 
@@ -41,6 +41,7 @@ var Options struct {
 	// Deprecated: use VPCNames instead
 	VPCName               string
 	VPCNames              string
+	SubnetNames           string
 	LoadBalancerType      string
 	BGPNodeSelector       string
 	IpHolderSuffix        string
@@ -132,6 +133,12 @@ func newCloud() (cloudprovider.Interface, error) {
 		Options.VPCNames = Options.VPCName
 	}
 
+	// SubnetNames can't be used without VPCNames also being set
+	if Options.SubnetNames != "" && Options.VPCNames == "" {
+		klog.Warningf("failed to set flag subnet-names: vpc-names must be set to a non-empty value")
+		Options.SubnetNames = ""
+	}
+
 	instanceCache = newInstances(linodeClient)
 	routes, err := newRoutes(linodeClient, instanceCache)
 	if err != nil {
 
@@ -2,8 +2,10 @@ package linode
 
 import (
 	"context"
+	"encoding/json"
 	"fmt"
 	"net/http"
+	"strconv"
 	"strings"
 	"sync"
 
@@ -16,16 +18,30 @@ var (
 	Mu sync.RWMutex
 	// vpcIDs map stores vpc id's for given vpc labels
 	vpcIDs = make(map[string]int, 0)
+	// subnetIDs map stores subnet id's for given subnet labels
+	subnetIDs = make(map[string]int, 0)
 )
 
 type vpcLookupError struct {
 	value string
 }
 
+type subnetLookupError struct {
+	value string
+}
+
+type subnetFilter struct {
+	SubnetID string `json:"subnet_id"`
+}
+
 func (e vpcLookupError) Error() string {
 	return fmt.Sprintf("failed to find VPC: %q", e.value)
 }
 
+func (e subnetLookupError) Error() string {
+	return fmt.Sprintf("failed to find subnet: %q", e.value)
+}
+
 // GetAllVPCIDs returns vpc ids stored in map
 func GetAllVPCIDs() []int {
 	Mu.Lock()
@@ -59,13 +75,68 @@ func GetVPCID(ctx context.Context, client client.Client, vpcName string) (int, e
 	return 0, vpcLookupError{vpcName}
 }
 
+// GetSubnetID returns the subnet ID of given subnet label
+func GetSubnetID(ctx context.Context, client client.Client, vpcID int, subnetName string) (int, error) {
+	Mu.Lock()
+	defer Mu.Unlock()
+
+	// Check if map contains the id for the given label
+	if subnetid, ok := subnetIDs[subnetName]; ok {
+		return subnetid, nil
+	}
+	// Otherwise, get it from linodego.ListVPCSubnets()
+	subnets, err := client.ListVPCSubnets(ctx, vpcID, &linodego.ListOptions{})
+	if err != nil {
+		return 0, err
+	}
+	for _, subnet := range subnets {
+		if subnet.Label == subnetName {
+			subnetIDs[subnetName] = subnet.ID
+			return subnet.ID, nil
+		}
+	}
+
+	return 0, subnetLookupError{subnetName}
+}
+
 // GetVPCIPAddresses returns vpc ip's for given VPC label
 func GetVPCIPAddresses(ctx context.Context, client client.Client, vpcName string) ([]linodego.VPCIP, error) {
 	vpcID, err := GetVPCID(ctx, client, strings.TrimSpace(vpcName))
 	if err != nil {
 		return nil, err
 	}
-	resp, err := client.ListVPCIPAddresses(ctx, vpcID, linodego.NewListOptions(0, ""))
+
+	resultFilter := ""
+
+	// Get subnet ID(s) from name(s) if subnet-names is specified
+	if Options.SubnetNames != "" {
+		// Get the IDs and store them
+		// subnetIDList is a slice of strings for ease of use with resultFilter
+		subnetNames := strings.Split(Options.SubnetNames, ",")
+		subnetIDList := []string{}
+
+		for _, name := range subnetNames {
+			// For caching
+			subnetID, err := GetSubnetID(ctx, client, vpcID, name)
+			// Don't filter subnets we can't find
+			if err != nil {
+				klog.Errorf("subnet %s not found due to error: %v. Skipping.", name, err)
+				continue
+			}
+
+			// For use with the JSON filter
+			subnetIDList = append(subnetIDList, strconv.Itoa(subnetID))
+		}
+
+		// Assign the list of IDs to a stringified JSON filter
+		filter, err := json.Marshal(subnetFilter{SubnetID: strings.Join(subnetIDList, ",")})
+		if err != nil {
+			klog.Error("could not create JSON filter for subnet_id")
+		}
+		resultFilter = string(filter)
+	}
+
+	resp, err := client.ListVPCIPAddresses(ctx, vpcID, linodego.NewListOptions(0, resultFilter))
 	if err != nil {
 		if linodego.ErrHasStatus(err, http.StatusNotFound) {
 			Mu.Lock()
 
@@ -146,4 +146,80 @@ func TestGetVPCIPAddresses(t *testing.T) {
 		_, exists := vpcIDs["test10"]
 		assert.True(t, exists, "test10 key should be present in vpcIDs map")
 	})
+
+	t.Run("vpc id found and ip addresses found with subnet filtering", func(t *testing.T) {
+		ctrl := gomock.NewController(t)
+		defer ctrl.Finish()
+		client := mocks.NewMockClient(ctrl)
+		sn := Options.SubnetNames
+		defer func() { Options.SubnetNames = sn }()
+		Options.SubnetNames = "subnet4"
+		vpcIDs = map[string]int{"test1": 1}
+		subnetIDs = map[string]int{"subnet1": 1}
+		client.EXPECT().ListVPCs(gomock.Any(), gomock.Any()).Times(1).Return([]linodego.VPC{{ID: 10, Label: "test10"}}, nil)
+		client.EXPECT().ListVPCSubnets(gomock.Any(), gomock.Any(), gomock.Any()).Times(1).Return([]linodego.VPCSubnet{{ID: 4, Label: "subnet4"}}, nil)
+		client.EXPECT().ListVPCIPAddresses(gomock.Any(), gomock.Any(), gomock.Any()).Times(1).Return([]linodego.VPCIP{}, nil)
+		_, err := GetVPCIPAddresses(context.TODO(), client, "test10")
+		assert.NoError(t, err)
+		_, exists := subnetIDs["subnet4"]
+		assert.True(t, exists, "subnet4 should be present in subnetIDs map")
+	})
+}
+
+func TestGetSubnetID(t *testing.T) {
+	t.Run("subnet in cache", func(t *testing.T) {
+		ctrl := gomock.NewController(t)
+		defer ctrl.Finish()
+		client := mocks.NewMockClient(ctrl)
+		subnetIDs = map[string]int{"test1": 1, "test2": 2, "test3": 3}
+		got, err := GetSubnetID(context.TODO(), client, 0, "test3")
+		if err != nil {
+			t.Errorf("GetSubnetID() error = %v", err)
+			return
+		}
+		if got != subnetIDs["test3"] {
+			t.Errorf("GetSubnetID() = %v, want %v", got, subnetIDs["test3"])
+		}
+	})
+
+	t.Run("subnetID not in cache and listVPCSubnets return error", func(t *testing.T) {
+		ctrl := gomock.NewController(t)
+		defer ctrl.Finish()
+		client := mocks.NewMockClient(ctrl)
+		subnetIDs = map[string]int{"test1": 1, "test2": 2, "test3": 3}
+		client.EXPECT().ListVPCSubnets(gomock.Any(), gomock.Any(), gomock.Any()).Times(1).Return([]linodego.VPCSubnet{}, errors.New("error"))
+		got, err := GetSubnetID(context.TODO(), client, 0, "test4")
+		assert.Error(t, err)
+		if got != 0 {
+			t.Errorf("GetSubnetID() = %v, want %v", got, 0)
+		}
+		_, exists := subnetIDs["test4"]
+		assert.False(t, exists, "subnet4 should not be present in subnetIDs")
+	})
+
+	t.Run("subnetID not in cache and listVPCSubnets return nothing", func(t *testing.T) {
+		ctrl := gomock.NewController(t)
+		defer ctrl.Finish()
+		client := mocks.NewMockClient(ctrl)
+		subnetIDs = map[string]int{"test1": 1, "test2": 2, "test3": 3}
+		client.EXPECT().ListVPCSubnets(gomock.Any(), gomock.Any(), gomock.Any()).Times(1).Return([]linodego.VPCSubnet{}, nil)
+		got, err := GetSubnetID(context.TODO(), client, 0, "test4")
+		assert.ErrorIs(t, err, subnetLookupError{"test4"})
+		if got != 0 {
+			t.Errorf("GetSubnetID() = %v, want %v", got, 0)
+		}
+	})
+
+	t.Run("subnetID not in cache and listVPCSubnets return subnet info", func(t *testing.T) {
+		ctrl := gomock.NewController(t)
+		defer ctrl.Finish()
+		client := mocks.NewMockClient(ctrl)
+		subnetIDs = map[string]int{"test1": 1, "test2": 2, "test3": 3}
+		client.EXPECT().ListVPCSubnets(gomock.Any(), gomock.Any(), gomock.Any()).Times(1).Return([]linodego.VPCSubnet{{ID: 4, Label: "test4"}}, nil)
+		got, err := GetSubnetID(context.TODO(), client, 0, "test4")
+		assert.NoError(t, err)
+		if got != 4 {
+			t.Errorf("GetSubnetID() = %v, want %v", got, 4)
+		}
+	})
 }
@@ -55,6 +55,10 @@ spec:
             {{- if and $vpcName $vpcNames }}
             {{- fail "Both vpcName and vpcNames are set. Please use only vpcNames." }}
             {{- end }}
+            {{- $subnetNames := .Values.subnetNames }}
+            {{- if and .Values.routeController .Values.routeController.subnetNames }}
+            {{- $subnetNames = .Values.routeController.subnetNames }}
+            {{- end }}
             {{- if .Values.routeController }}
             - --enable-route-controller=true
             {{- if not (or $vpcName $vpcNames) }}
@@ -72,6 +76,9 @@ spec:
             {{- with $vpcName }}
             - --vpc-name={{ . }}
             {{- end }}
+            {{- with $subnetNames }}
+            - --subnet-names={{ . }}
+            {{ end }}
             {{- if .Values.sharedIPLoadBalancing }}
             {{- with .Values.sharedIPLoadBalancing.bgpNodeSelector }}
             - --bgp-node-selector={{ . }}
 
@@ -71,12 +71,14 @@ tolerations:
 # routeController:
 #   vpcName: <name of VPC> [Deprecated: use vpcNames instead]
 #   vpcNames: <comma separated list of vpc names>
+#   subnetNames: <comma separated list of subnet names>
 #   clusterCIDR: 10.0.0.0/8
 #   configureCloudRoutes: true
 
-# vpcs that node internal IPs will be assigned from (not required if already specified in routeController)
+# vpcs and subnets that node internal IPs will be assigned from (not required if already specified in routeController)
 # vpcName: <name of VPC> [Deprecated: use vpcNames instead]
 # vpcNames: <comma separated list of vpc names>
+# subnetNames: <comma separated list of subnet names>
 
 # Enable Linode token health checker
 # tokenHealthChecker: true
 
@@ -3,6 +3,8 @@ apiVersion: chainsaw.kyverno.io/v1alpha1
 kind: Test
 metadata:
   name: cilium-bgp-test
+  labels:
+    all:
 spec:
   namespace: "cilium-bgp-test"
   steps: