|
@@ -47,12 +47,12 @@ func NewWithPortAllocator(allocator *portallocator.PortAllocator, proxyPath stri
|
|
|
}
|
|
}
|
|
|
|
|
|
|
|
// Map maps the specified container transport address to the host's network address and transport port
|
|
// Map maps the specified container transport address to the host's network address and transport port
|
|
|
-func (pm *PortMapper) Map(container net.Addr, hostIP net.IP, hostPort int, useProxy bool) (host net.Addr, err error) {
|
|
|
|
|
|
|
+func (pm *PortMapper) Map(container net.Addr, hostIP net.IP, hostPort int, useProxy bool) (host net.Addr, _ error) {
|
|
|
return pm.MapRange(container, hostIP, hostPort, hostPort, useProxy)
|
|
return pm.MapRange(container, hostIP, hostPort, hostPort, useProxy)
|
|
|
}
|
|
}
|
|
|
|
|
|
|
|
// MapRange maps the specified container transport address to the host's network address and transport port range
|
|
// MapRange maps the specified container transport address to the host's network address and transport port range
|
|
|
-func (pm *PortMapper) MapRange(container net.Addr, hostIP net.IP, hostPortStart, hostPortEnd int, useProxy bool) (host net.Addr, err error) {
|
|
|
|
|
|
|
+func (pm *PortMapper) MapRange(container net.Addr, hostIP net.IP, hostPortStart, hostPortEnd int, useProxy bool) (host net.Addr, retErr error) {
|
|
|
pm.lock.Lock()
|
|
pm.lock.Lock()
|
|
|
defer pm.lock.Unlock()
|
|
defer pm.lock.Unlock()
|
|
|
|
|
|
|
@@ -65,9 +65,17 @@ func (pm *PortMapper) MapRange(container net.Addr, hostIP net.IP, hostPortStart,
|
|
|
switch t := container.(type) {
|
|
switch t := container.(type) {
|
|
|
case *net.TCPAddr:
|
|
case *net.TCPAddr:
|
|
|
proto = "tcp"
|
|
proto = "tcp"
|
|
|
- if allocatedHostPort, err = pm.allocator.RequestPortInRange(hostIP, proto, hostPortStart, hostPortEnd); err != nil {
|
|
|
|
|
|
|
+
|
|
|
|
|
+ var err error
|
|
|
|
|
+ allocatedHostPort, err = pm.allocator.RequestPortInRange(hostIP, proto, hostPortStart, hostPortEnd)
|
|
|
|
|
+ if err != nil {
|
|
|
return nil, err
|
|
return nil, err
|
|
|
}
|
|
}
|
|
|
|
|
+ defer func() {
|
|
|
|
|
+ if retErr != nil {
|
|
|
|
|
+ pm.allocator.ReleasePort(hostIP, proto, allocatedHostPort)
|
|
|
|
|
+ }
|
|
|
|
|
+ }()
|
|
|
|
|
|
|
|
m = &mapping{
|
|
m = &mapping{
|
|
|
proto: proto,
|
|
proto: proto,
|
|
@@ -88,9 +96,17 @@ func (pm *PortMapper) MapRange(container net.Addr, hostIP net.IP, hostPortStart,
|
|
|
}
|
|
}
|
|
|
case *net.UDPAddr:
|
|
case *net.UDPAddr:
|
|
|
proto = "udp"
|
|
proto = "udp"
|
|
|
- if allocatedHostPort, err = pm.allocator.RequestPortInRange(hostIP, proto, hostPortStart, hostPortEnd); err != nil {
|
|
|
|
|
|
|
+
|
|
|
|
|
+ var err error
|
|
|
|
|
+ allocatedHostPort, err = pm.allocator.RequestPortInRange(hostIP, proto, hostPortStart, hostPortEnd)
|
|
|
|
|
+ if err != nil {
|
|
|
return nil, err
|
|
return nil, err
|
|
|
}
|
|
}
|
|
|
|
|
+ defer func() {
|
|
|
|
|
+ if retErr != nil {
|
|
|
|
|
+ pm.allocator.ReleasePort(hostIP, proto, allocatedHostPort)
|
|
|
|
|
+ }
|
|
|
|
|
+ }()
|
|
|
|
|
|
|
|
m = &mapping{
|
|
m = &mapping{
|
|
|
proto: proto,
|
|
proto: proto,
|
|
@@ -111,9 +127,17 @@ func (pm *PortMapper) MapRange(container net.Addr, hostIP net.IP, hostPortStart,
|
|
|
}
|
|
}
|
|
|
case *sctp.SCTPAddr:
|
|
case *sctp.SCTPAddr:
|
|
|
proto = "sctp"
|
|
proto = "sctp"
|
|
|
- if allocatedHostPort, err = pm.allocator.RequestPortInRange(hostIP, proto, hostPortStart, hostPortEnd); err != nil {
|
|
|
|
|
|
|
+
|
|
|
|
|
+ var err error
|
|
|
|
|
+ allocatedHostPort, err = pm.allocator.RequestPortInRange(hostIP, proto, hostPortStart, hostPortEnd)
|
|
|
|
|
+ if err != nil {
|
|
|
return nil, err
|
|
return nil, err
|
|
|
}
|
|
}
|
|
|
|
|
+ defer func() {
|
|
|
|
|
+ if retErr != nil {
|
|
|
|
|
+ pm.allocator.ReleasePort(hostIP, proto, allocatedHostPort)
|
|
|
|
|
+ }
|
|
|
|
|
+ }()
|
|
|
|
|
|
|
|
m = &mapping{
|
|
m = &mapping{
|
|
|
proto: proto,
|
|
proto: proto,
|
|
@@ -140,13 +164,6 @@ func (pm *PortMapper) MapRange(container net.Addr, hostIP net.IP, hostPortStart,
|
|
|
return nil, ErrUnknownBackendAddressType
|
|
return nil, ErrUnknownBackendAddressType
|
|
|
}
|
|
}
|
|
|
|
|
|
|
|
- // release the allocated port on any further error during return.
|
|
|
|
|
- defer func() {
|
|
|
|
|
- if err != nil {
|
|
|
|
|
- pm.allocator.ReleasePort(hostIP, proto, allocatedHostPort)
|
|
|
|
|
- }
|
|
|
|
|
- }()
|
|
|
|
|
-
|
|
|
|
|
key := getKey(m.host)
|
|
key := getKey(m.host)
|
|
|
if _, exists := pm.currentMappings[key]; exists {
|
|
if _, exists := pm.currentMappings[key]; exists {
|
|
|
return nil, ErrPortMappedForIP
|
|
return nil, ErrPortMappedForIP
|
|
@@ -157,21 +174,11 @@ func (pm *PortMapper) MapRange(container net.Addr, hostIP net.IP, hostPortStart,
|
|
|
return nil, err
|
|
return nil, err
|
|
|
}
|
|
}
|
|
|
|
|
|
|
|
- cleanup := func() error {
|
|
|
|
|
- // need to undo the iptables rules before we return
|
|
|
|
|
|
|
+ if err := m.userlandProxy.Start(); err != nil {
|
|
|
|
|
+ // FIXME(thaJeztah): both stopping the proxy and deleting iptables rules can produce an error, and both are not currently handled.
|
|
|
m.userlandProxy.Stop()
|
|
m.userlandProxy.Stop()
|
|
|
|
|
+ // need to undo the iptables rules before we return
|
|
|
pm.DeleteForwardingTableEntry(m.proto, hostIP, allocatedHostPort, containerIP.String(), containerPort)
|
|
pm.DeleteForwardingTableEntry(m.proto, hostIP, allocatedHostPort, containerIP.String(), containerPort)
|
|
|
- if err := pm.allocator.ReleasePort(hostIP, m.proto, allocatedHostPort); err != nil {
|
|
|
|
|
- return err
|
|
|
|
|
- }
|
|
|
|
|
-
|
|
|
|
|
- return nil
|
|
|
|
|
- }
|
|
|
|
|
-
|
|
|
|
|
- if err := m.userlandProxy.Start(); err != nil {
|
|
|
|
|
- if err := cleanup(); err != nil {
|
|
|
|
|
- return nil, fmt.Errorf("Error during port allocation cleanup: %v", err)
|
|
|
|
|
- }
|
|
|
|
|
return nil, err
|
|
return nil, err
|
|
|
}
|
|
}
|
|
|
|
|
|
Sebastiaan van Stijn