fix(topology/allocator): widen default subnet base to /12 for mass-scale

A 30-LAN generate request already fits in 172.20.0.0/16, but trees with depth/branching that multiply past 256 (e.g. depth=6, branching=4 ≈ 5k LANs) hit AllocatorExhausted before the first write. SubnetAllocator now accepts a full CIDR base ("172.16.0.0/12" → 4096 /24s) in addition to the legacy two-octet shorthand ("172.20", auto-lifted to /16). The parent must be ≤/24; a /24 base yields exactly one slot. Iteration order is preserved for /16 bases so existing topologies keep their third-octet sweep; /12 adds a second-octet dimension underneath. Defaults bumped to 172.16.0.0/12: TopologyConfig.subnet_base_prefix, /next-subnet query param, and the mutator's add-LAN fallback. The field pattern widens to accept CIDR. create-blank and manual LAN CRUD still use "10.0" (lifts to /16) — one DMZ LAN per topology, 256 is plenty.
2026-04-24 18:57:55 -04:00
parent 207f791684
commit f3408d5e62
5 changed files with 100 additions and 15 deletions
--- a/tests/topology/test_allocator.py
+++ b/tests/topology/test_allocator.py
@@ -86,6 +86,49 @@ def test_subnet_allocator_exhaustion_raises():
        s.next_free()


+def test_subnet_allocator_accepts_cidr_base():
+    """Full-CIDR base form is equivalent to the legacy two-octet form."""
+    s = SubnetAllocator("172.20.0.0/16")
+    assert s.next_free() == "172.20.0.0/24"
+    assert s.next_free() == "172.20.1.0/24"
+
+
+def test_subnet_allocator_slash12_yields_more_than_256_slots():
+    """The whole point of widening: a /12 base must outlast a single /16."""
+    s = SubnetAllocator("172.16.0.0/12")
+    # Burn the first 256 /24s.  With a /16 base this is exhaustion; with
+    # /12 we should roll into 172.17.x.x without raising.
+    for _ in range(256):
+        s.next_free()
+    nxt = s.next_free()
+    assert nxt.startswith("172.17.")
+    assert nxt.endswith(".0/24")
+
+
+def test_subnet_allocator_slash12_total_capacity_is_4096():
+    s = SubnetAllocator("172.16.0.0/12")
+    count = 0
+    try:
+        while True:
+            s.next_free()
+            count += 1
+    except AllocatorExhausted:
+        pass
+    assert count == 4096
+
+
+def test_subnet_allocator_rejects_narrower_than_slash24():
+    with pytest.raises(ValueError, match="narrower than /24"):
+        SubnetAllocator("192.168.1.0/25")
+
+
+def test_subnet_allocator_exhausted_message_uses_parent_cidr():
+    s = SubnetAllocator("172.20.0.0/24")  # exactly one slot
+    s.next_free()
+    with pytest.raises(AllocatorExhausted, match="172.20.0.0/24"):
+        s.next_free()
+
+
 # --------------------------------------------------------------------- reserved_subnets