Added support for networking/ and vpcs/ endpoint changs for VPC Linodes Enhanced Interfaces (#727)

* Added support for networking/firewalls related changes

* Added support for Networking IPs and VPC changes

* Addressed PR comments

Author: ezilber-akamai

firewall_devices.go

@@ -15,6 +15,7 @@ type FirewallDeviceType string
 const (
 	FirewallDeviceLinode       FirewallDeviceType = "linode"
 	FirewallDeviceNodeBalancer FirewallDeviceType = "nodebalancer"
+	FirewallDeviceInterface    FirewallDeviceType = "interface"
 )
 
 // FirewallDevice represents a device governed by a Firewall

firewalls.go

@@ -33,6 +33,7 @@ type Firewall struct {
 type DevicesCreationOptions struct {
 	Linodes       []int `json:"linodes,omitempty"`
 	NodeBalancers []int `json:"nodebalancers,omitempty"`
+	Interfaces    []int `json:"interfaces,omitempty"`
 }
 
 // FirewallCreateOptions fields are those accepted by CreateFirewall
@@ -50,6 +51,31 @@ type FirewallUpdateOptions struct {
 	Tags   *[]string      `json:"tags,omitempty"`
 }
 
+// FirewallSettings represents the default firewalls for Linodes,
+// Linode VPC and public interfaces, and NodeBalancers.
+type FirewallSettings struct {
+	DefaultFirewallIDs DefaultFirewallIDs `json:"default_firewall_ids"`
+}
+
+type DefaultFirewallIDs struct {
+	Linode          int `json:"linode"`
+	NodeBalancer    int `json:"nodebalancer"`
+	PublicInterface int `json:"public_interface"`
+	VPCInterface    int `json:"vpc_interface"`
+}
+
+// FirewallSettingsUpdateOptions is an options struct used when Updating FirewallSettings
+type FirewallSettingsUpdateOptions struct {
+	DefaultFirewallIDs DefaultFirewallIDsOptions `json:"default_firewall_ids"`
+}
+
+type DefaultFirewallIDsOptions struct {
+	Linode          *int `json:"linode,omitempty"`
+	NodeBalancer    *int `json:"nodebalancer,omitempty"`
+	PublicInterface *int `json:"public_interface,omitempty"`
+	VPCInterface    *int `json:"vpc_interface,omitempty"`
+}
+
 // GetUpdateOptions converts a Firewall to FirewallUpdateOptions for use in Client.UpdateFirewall.
 func (f *Firewall) GetUpdateOptions() FirewallUpdateOptions {
 	return FirewallUpdateOptions{
@@ -107,3 +133,13 @@ func (c *Client) DeleteFirewall(ctx context.Context, firewallID int) error {
 	e := formatAPIPath("networking/firewalls/%d", firewallID)
 	return doDELETERequest(ctx, c, e)
 }
+
+// GetFirewallSettings returns default firewalls for Linodes, Linode VPC and public interfaces, and NodeBalancers.
+func (c *Client) GetFirewallSettings(ctx context.Context) (*FirewallSettings, error) {
+	return doGETRequest[FirewallSettings](ctx, c, "networking/firewalls/settings")
+}
+
+// UpdateFirewallSettings updates the default firewalls for Linodes, Linode VPC and public interfaces, and NodeBalancers.
+func (c *Client) UpdateFirewallSettings(ctx context.Context, opts FirewallSettingsUpdateOptions) (*FirewallSettings, error) {
+	return doPUTRequest[FirewallSettings](ctx, c, "networking/firewalls/settings", opts)
+}

go.work.sum

@@ -56,6 +56,7 @@ golang.org/x/crypto v0.33.0/go.mod h1:bVdXmD7IV/4GdElGPozy6U7lWdRXA4qyRVGJV57uQ5
 golang.org/x/crypto v0.35.0/go.mod h1:dy7dXNW32cAb/6/PRuTNsix8T+vJAqvuIy5Bli/x0YQ=
 golang.org/x/crypto v0.36.0 h1:AnAEvhDddvBdpY+uR+MyHmuZzzNqXSe/GvuDeob5L34=
 golang.org/x/crypto v0.36.0/go.mod h1:Y4J0ReaxCR1IMaabaSMugxJES1EpwhBHhv2bDHklZvc=
+golang.org/x/crypto v0.37.0 h1:kJNSjF/Xp7kU0iB2Z+9viTPMW4EqqsrywMXLJOOsXSE=
 golang.org/x/crypto v0.37.0/go.mod h1:vg+k43peMZ0pUMhYmVAWysMK35e6ioLh3wB8ZCAfbVc=
 golang.org/x/mod v0.17.0 h1:zY54UmvipHiNd+pm+m0x9KhZ9hl1/7QNMyxXbc6ICqA=
 golang.org/x/mod v0.17.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
@@ -77,17 +78,16 @@ golang.org/x/sync v0.11.0 h1:GGz8+XQP4FvTTrjZPzNKTMFtSXH80RAzG+5ghFPgK9w=
 golang.org/x/sync v0.11.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sync v0.12.0 h1:MHc5BpPuC30uJk597Ri8TV3CNZcTLu6B6z4lJy+g6Jw=
 golang.org/x/sync v0.12.0/go.mod h1:1dzgHSNfp02xaA81J2MS99Qcpr2w7fw1gpm99rleRqA=
+golang.org/x/sync v0.13.0 h1:AauUjRAJ9OSnvULf/ARrrVywoJDy0YS2AwQ98I37610=
 golang.org/x/sync v0.13.0/go.mod h1:1dzgHSNfp02xaA81J2MS99Qcpr2w7fw1gpm99rleRqA=
 golang.org/x/sys v0.25.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.32.0/go.mod h1:BJP2sWEmIv4KK5OTEluFJCKSidICx8ciO85XgH3Ak8k=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2 h1:IRJeR9r1pYWsHKTRe/IInb7lYvbBVIqOgsX/u0mbOWY=
 golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2/go.mod h1:TeRTkGYfJXctD9OcfyVLyj2J3IxLnKwHJR8f4D8a3YE=
 golang.org/x/telemetry v0.0.0-20240521205824-bda55230c457 h1:zf5N6UOrA487eEFacMePxjXAJctxKmyjKUsjA11Uzuk=
 golang.org/x/telemetry v0.0.0-20240521205824-bda55230c457/go.mod h1:pRgIJT+bRLFKnoM1ldnzKoxTIn14Yxz928LQRYYgIN0=
 golang.org/x/term v0.24.0/go.mod h1:lOBK/LVxemqiMij05LGJ0tzNr8xlmwBRJ81PX6wVLH8=
 golang.org/x/term v0.27.0/go.mod h1:iMsnZpn0cago0GOrHO2+Y7u7JPn5AylBrcoWkElMTSM=
-golang.org/x/term v0.31.0/go.mod h1:R4BeIy7D95HzImkxGkTW1UQTtP54tio2RyHz7PwK0aw=
 golang.org/x/text v0.19.0/go.mod h1:BuEKDfySbSR4drPmRPG/7iBdf8hvFMuRexcpahXilzY=
 golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
 golang.org/x/tools v0.29.0/go.mod h1:KMQVMRsVxU6nHCFXrBPhDB8XncLNLM0lIy/F14RP588=

instance_ips.go

@@ -21,17 +21,18 @@ type InstanceIPv4Response struct {
 
 // InstanceIP represents an Instance IP with additional DNS and networking details
 type InstanceIP struct {
-	Address    string             `json:"address"`
-	Gateway    string             `json:"gateway"`
-	SubnetMask string             `json:"subnet_mask"`
-	Prefix     int                `json:"prefix"`
-	Type       InstanceIPType     `json:"type"`
-	Public     bool               `json:"public"`
-	RDNS       string             `json:"rdns"`
-	LinodeID   int                `json:"linode_id"`
-	Region     string             `json:"region"`
-	VPCNAT1To1 *InstanceIPNAT1To1 `json:"vpc_nat_1_1"`
-	Reserved   bool               `json:"reserved"`
+	Address     string             `json:"address"`
+	Gateway     string             `json:"gateway"`
+	SubnetMask  string             `json:"subnet_mask"`
+	Prefix      int                `json:"prefix"`
+	Type        InstanceIPType     `json:"type"`
+	Public      bool               `json:"public"`
+	RDNS        string             `json:"rdns"`
+	LinodeID    int                `json:"linode_id"`
+	InterfaceID *int               `json:"interface_id"`
+	Region      string             `json:"region"`
+	VPCNAT1To1  *InstanceIPNAT1To1 `json:"vpc_nat_1_1"`
+	Reserved    bool               `json:"reserved"`
 }
 
 // VPCIP represents a private IP address in a VPC subnet with additional networking details

regions.go

@@ -22,6 +22,7 @@ const (
 	CapabilityEdgePlans                     string = "Edge Plans"
 	CapabilityGPU                           string = "GPU Linodes"
 	CapabilityKubernetesEnterprise          string = "Kubernetes Enterprise"
+	CapabilityLinodeInterfaces              string = "Linode Interfaces"
 	CapabilityLKE                           string = "Kubernetes"
 	CapabilityLKEControlPlaneACL            string = "LKE Network Access Control List (IP ACL)"
 	CapabilityLinodes                       string = "Linodes"

test/unit/firewalls_test.go

@@ -98,6 +98,9 @@ func TestFirewall_Create(t *testing.T) {
 			},
 		},
 		Tags: []string{"example tag", "another example"},
+		Devices: linodego.DevicesCreationOptions{
+			Interfaces: []int{1, 2, 3},
+		},
 	}
 
 	base.MockPost(formatMockAPIPath("networking/firewalls"), fixtureData)
@@ -250,3 +253,54 @@ func TestFirewall_Delete(t *testing.T) {
 		t.Fatal(err)
 	}
 }
+
+func TestDefaultFirewall_Get(t *testing.T) {
+	fixtureData, err := fixtures.GetFixture("default_firewalls_get")
+	assert.NoError(t, err)
+
+	var base ClientBaseCase
+	base.SetUp(t)
+	defer base.TearDown(t)
+
+	base.MockGet(formatMockAPIPath("networking/firewalls/settings"), fixtureData)
+
+	defaultFirewalls, err := base.Client.GetFirewallSettings(context.Background())
+
+	assert.NoError(t, err)
+	assert.NotNil(t, defaultFirewalls)
+
+	assert.Equal(t, 101, defaultFirewalls.DefaultFirewallIDs.NodeBalancer)
+	assert.Equal(t, 100, defaultFirewalls.DefaultFirewallIDs.Linode)
+	assert.Equal(t, 200, defaultFirewalls.DefaultFirewallIDs.PublicInterface)
+	assert.Equal(t, 200, defaultFirewalls.DefaultFirewallIDs.VPCInterface)
+}
+
+func TestDefaultFirewall_Update(t *testing.T) {
+	fixtureData, err := fixtures.GetFixture("default_firewalls_update")
+	assert.NoError(t, err)
+
+	var base ClientBaseCase
+	base.SetUp(t)
+	defer base.TearDown(t)
+
+	base.MockPut(formatMockAPIPath("networking/firewalls/settings"), fixtureData)
+
+	requestData := linodego.FirewallSettingsUpdateOptions{
+		DefaultFirewallIDs: linodego.DefaultFirewallIDsOptions{
+			Linode:          linodego.Pointer(1),
+			NodeBalancer:    linodego.Pointer(1),
+			VPCInterface:    linodego.Pointer(1),
+			PublicInterface: linodego.Pointer(1),
+		},
+	}
+
+	defaultFirewalls, err := base.Client.UpdateFirewallSettings(context.Background(), requestData)
+
+	assert.NoError(t, err)
+	assert.NotNil(t, defaultFirewalls)
+
+	assert.Equal(t, 1, defaultFirewalls.DefaultFirewallIDs.NodeBalancer)
+	assert.Equal(t, 1, defaultFirewalls.DefaultFirewallIDs.Linode)
+	assert.Equal(t, 1, defaultFirewalls.DefaultFirewallIDs.PublicInterface)
+	assert.Equal(t, 1, defaultFirewalls.DefaultFirewallIDs.VPCInterface)
+}

test/unit/fixtures/default_firewalls_get.json

@@ -0,0 +1,8 @@
+{
+  "default_firewall_ids": {
+    "linode": 100,
+    "nodebalancer": 101,
+    "public_interface": 200,
+    "vpc_interface": 200
+  }
+}

test/unit/fixtures/default_firewalls_update.json

@@ -0,0 +1,8 @@
+{
+  "default_firewall_ids": {
+    "linode": 1,
+    "nodebalancer": 1,
+    "public_interface": 1,
+    "vpc_interface": 1
+  }
+}

test/unit/fixtures/network_ip_address_get.json

@@ -1,5 +1,17 @@
 {
-    "address": "192.168.1.1",
-    "linode_id": 12345,
-    "reserved": false
-}
+    "address": "97.107.143.141",
+    "gateway": "97.107.143.1",
+    "interface_id": 456,
+    "linode_id": 123,
+    "prefix": 24,
+    "public": true,
+    "rdns": "test.example.org",
+    "region": "us-east",
+    "subnet_mask": "255.255.255.0",
+    "type": "ipv4",
+    "vpc_nat_1_1": {
+        "address": "192.168.0.42",
+        "subnet_id": 101,
+        "vpc_id": 111
+    }
+}

test/unit/fixtures/network_ip_addresses_list.json

@@ -1,16 +1,24 @@
 {
     "data": [
         {
-            "address": "192.168.1.1",
-            "linode_id": 12345,
-            "reserved": false
-        },
-        {
-            "address": "192.168.1.2",
-            "linode_id": 67890,
-            "reserved": true
+            "address": "197.1O7.143.141",
+            "gateway": "197.1O7.143.1",
+            "interface_id": 456,
+            "linode_id": 123,
+            "prefix": 24,
+            "public": true,
+            "rdns": "test.example.org",
+            "region": "us-east",
+            "subnet_mask": "192.0.2.139",
+            "type": "ipv4",
+            "vpc_nat_1_1": {
+                "address": "192.0.2.1",
+                "subnet_id": 101,
+                "vpc_id": 111
+            }
         }
     ],
+    "page": 1,
     "pages": 1,
-    "results": 2
-}
+    "results": 1
+}