mirror of
https://github.com/qdm12/gluetun.git
synced 2026-05-07 12:30:11 +02:00
Quentin McGaw
99 lines
2.2 KiB
Go
99 lines
2.2 KiB
Go
package routing
|
|
|
|
import (
|
|
"fmt"
|
|
"net/netip"
|
|
|
|
"github.com/qdm12/gluetun/internal/netlink"
|
|
)
|
|
|
|
func (r *Routing) addIPRule(src, dst netip.Prefix, table, priority uint32) error {
|
|
family := netlink.FamilyV4
|
|
if (src.IsValid() && src.Addr().Is6()) || (dst.IsValid() && dst.Addr().Is6()) {
|
|
family = netlink.FamilyV6
|
|
}
|
|
rule := netlink.Rule{
|
|
Priority: &priority,
|
|
Family: family,
|
|
Table: table,
|
|
Src: src,
|
|
Dst: dst,
|
|
Action: netlink.ActionToTable,
|
|
}
|
|
|
|
existingRules, err := r.netLinker.RuleList(netlink.FamilyAll)
|
|
if err != nil {
|
|
return fmt.Errorf("listing rules: %w", err)
|
|
}
|
|
for i := range existingRules {
|
|
if !rulesAreEqual(existingRules[i], rule) {
|
|
continue
|
|
}
|
|
return nil // already exists
|
|
}
|
|
|
|
if err := r.netLinker.RuleAdd(rule); err != nil {
|
|
return fmt.Errorf("adding %s: %w", rule, err)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func (r *Routing) deleteIPRule(src, dst netip.Prefix, table uint32, priority uint32) error {
|
|
family := netlink.FamilyV4
|
|
if (src.IsValid() && src.Addr().Is6()) || (dst.IsValid() && dst.Addr().Is6()) {
|
|
family = netlink.FamilyV6
|
|
}
|
|
rule := netlink.Rule{
|
|
Priority: &priority,
|
|
Family: family,
|
|
Table: table,
|
|
Src: src,
|
|
Dst: dst,
|
|
Action: netlink.ActionToTable,
|
|
}
|
|
|
|
existingRules, err := r.netLinker.RuleList(netlink.FamilyAll)
|
|
if err != nil {
|
|
return fmt.Errorf("listing rules: %w", err)
|
|
}
|
|
for i := range existingRules {
|
|
if !rulesAreEqual(existingRules[i], rule) {
|
|
continue
|
|
}
|
|
if err := r.netLinker.RuleDel(rule); err != nil {
|
|
return fmt.Errorf("deleting rule %s: %w", rule, err)
|
|
}
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// rulesAreEqual checks whether two rules are equal
|
|
// only according to src, dst, priority and table.
|
|
func rulesAreEqual(a, b netlink.Rule) bool {
|
|
return ipPrefixesAreEqual(a.Src, b.Src) &&
|
|
ipPrefixesAreEqual(a.Dst, b.Dst) &&
|
|
ptrsEqual(a.Priority, b.Priority) &&
|
|
a.Table == b.Table
|
|
}
|
|
|
|
func ipPrefixesAreEqual(a, b netip.Prefix) bool {
|
|
if !a.IsValid() && !b.IsValid() {
|
|
return true
|
|
}
|
|
if !a.IsValid() || !b.IsValid() {
|
|
return false
|
|
}
|
|
return a.Bits() == b.Bits() &&
|
|
a.Addr().Compare(b.Addr()) == 0
|
|
}
|
|
|
|
func ptrsEqual(a, b *uint32) bool {
|
|
if a == nil && b == nil {
|
|
return true
|
|
}
|
|
if a == nil || b == nil {
|
|
return false
|
|
}
|
|
return *a == *b
|
|
}
|