We use cookies to ensure you get the best experience on our website
Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
0ct0pu5
/
moby
1
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu kéo về 0 Wiki
Tree: 704da9d865
Branches Tags
moby
/
libnetwork
/
sandbox
/
configure_linux.go

configure_linux.go 4.2 KB
Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176 
  1. package sandbox
    2. 

  2. 

  3. import (
    4. 

  4. 	"fmt"
    5. 

  5. 	"net"
    6. 

  6. 	"os"
    7. 

  7. 	"runtime"
    8. 

  8. 

  9. 	"github.com/vishvananda/netlink"
    10. 

  10. 	"github.com/vishvananda/netns"
    11. 

  11. )
    12. 

  12. 

  13. func configureInterface(iface netlink.Link, settings *Interface) error {
    14. 

  14. 	ifaceName := iface.Attrs().Name
    15. 

  15. 	ifaceConfigurators := []struct {
    16. 

  16. 		Fn         func(netlink.Link, *Interface) error
    17. 

  17. 		ErrMessage string
    18. 

  18. 	}{
    19. 

  19. 		{setInterfaceName, fmt.Sprintf("error renaming interface %q to %q", ifaceName, settings.DstName)},
    20. 

  20. 		{setInterfaceIP, fmt.Sprintf("error setting interface %q IP to %q", ifaceName, settings.Address)},
    21. 

  21. 		{setInterfaceIPv6, fmt.Sprintf("error setting interface %q IPv6 to %q", ifaceName, settings.AddressIPv6)},
    22. 

  22. 		{setInterfaceRoutes, fmt.Sprintf("error setting interface %q routes to %q", ifaceName, settings.Routes)},
    23. 

  23. 	}
    24. 

  24. 

  25. 	for _, config := range ifaceConfigurators {
    26. 

  26. 		if err := config.Fn(iface, settings); err != nil {
    27. 

  27. 			return fmt.Errorf("%s: %v", config.ErrMessage, err)
    28. 

  28. 		}
    29. 

  29. 	}
    30. 

  30. 	return nil
    31. 

  31. }
    32. 

  32. 

  33. func programGateway(path string, gw net.IP, isAdd bool) error {
    34. 

  34. 	runtime.LockOSThread()
    35. 

  35. 	defer runtime.UnlockOSThread()
    36. 

  36. 

  37. 	origns, err := netns.Get()
    38. 

  38. 	if err != nil {
    39. 

  39. 		return err
    40. 

  40. 	}
    41. 

  41. 	defer origns.Close()
    42. 

  42. 

  43. 	f, err := os.OpenFile(path, os.O_RDONLY, 0)
    44. 

  44. 	if err != nil {
    45. 

  45. 		return fmt.Errorf("failed get network namespace %q: %v", path, err)
    46. 

  46. 	}
    47. 

  47. 	defer f.Close()
    48. 

  48. 

  49. 	nsFD := f.Fd()
    50. 

  50. 	if err = netns.Set(netns.NsHandle(nsFD)); err != nil {
    51. 

  51. 		return err
    52. 

  52. 	}
    53. 

  53. 	defer netns.Set(origns)
    54. 

  54. 

  55. 	gwRoutes, err := netlink.RouteGet(gw)
    56. 

  56. 	if err != nil {
    57. 

  57. 		return fmt.Errorf("route for the gateway could not be found: %v", err)
    58. 

  58. 	}
    59. 

  59. 

  60. 	if isAdd {
    61. 

  61. 		return netlink.RouteAdd(&netlink.Route{
    62. 

  62. 			Scope:     netlink.SCOPE_UNIVERSE,
    63. 

  63. 			LinkIndex: gwRoutes[0].LinkIndex,
    64. 

  64. 			Gw:        gw,
    65. 

  65. 		})
    66. 

  66. 	}
    67. 

  67. 

  68. 	return netlink.RouteDel(&netlink.Route{
    69. 

  69. 		Scope:     netlink.SCOPE_UNIVERSE,
    70. 

  70. 		LinkIndex: gwRoutes[0].LinkIndex,
    71. 

  71. 		Gw:        gw,
    72. 

  72. 	})
    73. 

  73. }
    74. 

  74. 

  75. // Program a route in to the namespace routing table.
    76. 

  76. func programRoute(path string, dest *net.IPNet, nh net.IP) error {
    77. 

  77. 	runtime.LockOSThread()
    78. 

  78. 	defer runtime.UnlockOSThread()
    79. 

  79. 

  80. 	origns, err := netns.Get()
    81. 

  81. 	if err != nil {
    82. 

  82. 		return err
    83. 

  83. 	}
    84. 

  84. 	defer origns.Close()
    85. 

  85. 

  86. 	f, err := os.OpenFile(path, os.O_RDONLY, 0)
    87. 

  87. 	if err != nil {
    88. 

  88. 		return fmt.Errorf("failed get network namespace %q: %v", path, err)
    89. 

  89. 	}
    90. 

  90. 	defer f.Close()
    91. 

  91. 

  92. 	nsFD := f.Fd()
    93. 

  93. 	if err = netns.Set(netns.NsHandle(nsFD)); err != nil {
    94. 

  94. 		return err
    95. 

  95. 	}
    96. 

  96. 	defer netns.Set(origns)
    97. 

  97. 

  98. 	gwRoutes, err := netlink.RouteGet(nh)
    99. 

  99. 	if err != nil {
    100. 

  100. 		return fmt.Errorf("route for the next hop could not be found: %v", err)
    101. 

  101. 	}
    102. 

  102. 

  103. 	return netlink.RouteAdd(&netlink.Route{
    104. 

  104. 		Scope:     netlink.SCOPE_UNIVERSE,
    105. 

  105. 		LinkIndex: gwRoutes[0].LinkIndex,
    106. 

  106. 		Gw:        gwRoutes[0].Gw,
    107. 

  107. 		Dst:       dest,
    108. 

  108. 	})
    109. 

  109. }
    110. 

  110. 

  111. // Delete a route from the namespace routing table.
    112. 

  112. func removeRoute(path string, dest *net.IPNet, nh net.IP) error {
    113. 

  113. 	runtime.LockOSThread()
    114. 

  114. 	defer runtime.UnlockOSThread()
    115. 

  115. 

  116. 	origns, err := netns.Get()
    117. 

  117. 	if err != nil {
    118. 

  118. 		return err
    119. 

  119. 	}
    120. 

  120. 	defer origns.Close()
    121. 

  121. 

  122. 	f, err := os.OpenFile(path, os.O_RDONLY, 0)
    123. 

  123. 	if err != nil {
    124. 

  124. 		return fmt.Errorf("failed get network namespace %q: %v", path, err)
    125. 

  125. 	}
    126. 

  126. 	defer f.Close()
    127. 

  127. 

  128. 	nsFD := f.Fd()
    129. 

  129. 	if err = netns.Set(netns.NsHandle(nsFD)); err != nil {
    130. 

  130. 		return err
    131. 

  131. 	}
    132. 

  132. 	defer netns.Set(origns)
    133. 

  133. 

  134. 	gwRoutes, err := netlink.RouteGet(nh)
    135. 

  135. 	if err != nil {
    136. 

  136. 		return fmt.Errorf("route for the next hop could not be found: %v", err)
    137. 

  137. 	}
    138. 

  138. 

  139. 	return netlink.RouteDel(&netlink.Route{
    140. 

  140. 		Scope:     netlink.SCOPE_UNIVERSE,
    141. 

  141. 		LinkIndex: gwRoutes[0].LinkIndex,
    142. 

  142. 		Gw:        gwRoutes[0].Gw,
    143. 

  143. 		Dst:       dest,
    144. 

  144. 	})
    145. 

  145. }
    146. 

  146. 

  147. func setInterfaceIP(iface netlink.Link, settings *Interface) error {
    148. 

  148. 	ipAddr := &netlink.Addr{IPNet: settings.Address, Label: ""}
    149. 

  149. 	return netlink.AddrAdd(iface, ipAddr)
    150. 

  150. }
    151. 

  151. 

  152. func setInterfaceIPv6(iface netlink.Link, settings *Interface) error {
    153. 

  153. 	if settings.AddressIPv6 == nil {
    154. 

  154. 		return nil
    155. 

  155. 	}
    156. 

  156. 	ipAddr := &netlink.Addr{IPNet: settings.AddressIPv6, Label: ""}
    157. 

  157. 	return netlink.AddrAdd(iface, ipAddr)
    158. 

  158. }
    159. 

  159. 

  160. func setInterfaceName(iface netlink.Link, settings *Interface) error {
    161. 

  161. 	return netlink.LinkSetName(iface, settings.DstName)
    162. 

  162. }
    163. 

  163. 

  164. func setInterfaceRoutes(iface netlink.Link, settings *Interface) error {
    165. 

  165. 	for _, route := range settings.Routes {
    166. 

  166. 		err := netlink.RouteAdd(&netlink.Route{
    167. 

  167. 			Scope:     netlink.SCOPE_LINK,
    168. 

  168. 			LinkIndex: iface.Attrs().Index,
    169. 

  169. 			Dst:       route,
    170. 

  170. 		})
    171. 

  171. 		if err != nil {
    172. 

  172. 			return err
    173. 

  173. 		}
    174. 

  174. 	}
    175. 

  175. 	return nil
    176. 

  176. }
    177.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5