kotovalexarian-likes-github/moby--moby
1
0
Fork 0
mirror of https://github.com/moby/moby.git synced 2022-11-09 12:21:53 -05:00
Code Releases Activity

Merge pull request #2317 from gsomlo/gls-bridge-inhibit-ipv4

Browse source 
Allow bridge net driver to skip IPv4 configuration of bridge interface
This commit is contained in:
Arko Dasgupta 2020-02-14 14:47:24 -08:00 committed by GitHub
commit b5b12d8bec
4 changed files with 28 additions and 16 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
libnetwork/drivers/bridge/bridge.go
View file

@ -68,6 +68,7 @@ type networkConfiguration struct {
EnableIPv6 bool EnableIPv6 bool
EnableIPMasquerade bool EnableIPMasquerade bool
EnableICC bool EnableICC bool
InhibitIPv4 bool
Mtu int Mtu int
DefaultBindingIP net.IP DefaultBindingIP net.IP
DefaultBridge bool DefaultBridge bool
@ -243,6 +244,10 @@ func (c *networkConfiguration) fromLabels(labels map[string]string) error {
if c.EnableICC, err = strconv.ParseBool(value); err != nil { if c.EnableICC, err = strconv.ParseBool(value); err != nil {
return parseErr(label, value, err.Error()) return parseErr(label, value, err.Error())
} }
case InhibitIPv4:
if c.InhibitIPv4, err = strconv.ParseBool(value); err != nil {
return parseErr(label, value, err.Error())
}
case DefaultBridge: case DefaultBridge:
if c.DefaultBridge, err = strconv.ParseBool(value); err != nil { if c.DefaultBridge, err = strconv.ParseBool(value); err != nil {
return parseErr(label, value, err.Error()) return parseErr(label, value, err.Error())
@ -699,7 +704,7 @@ func (d *driver) createNetwork(config *networkConfiguration) (err error) {
// We ensure that the bridge has the expectedIPv4 and IPv6 addresses in // We ensure that the bridge has the expectedIPv4 and IPv6 addresses in
// the case of a previously existing device. // the case of a previously existing device.
{bridgeAlreadyExists, setupVerifyAndReconcile}, {bridgeAlreadyExists && !config.InhibitIPv4, setupVerifyAndReconcile},
// Enable IPv6 Forwarding // Enable IPv6 Forwarding
{enableIPv6Forwarding, setupIPv6Forwarding}, {enableIPv6Forwarding, setupIPv6Forwarding},

2
libnetwork/drivers/bridge/bridge_store.go
View file

@ -137,6 +137,7 @@ func (ncfg *networkConfiguration) MarshalJSON() ([]byte, error) {
nMap["EnableIPv6"] = ncfg.EnableIPv6 nMap["EnableIPv6"] = ncfg.EnableIPv6
nMap["EnableIPMasquerade"] = ncfg.EnableIPMasquerade nMap["EnableIPMasquerade"] = ncfg.EnableIPMasquerade
nMap["EnableICC"] = ncfg.EnableICC nMap["EnableICC"] = ncfg.EnableICC
nMap["InhibitIPv4"] = ncfg.InhibitIPv4
nMap["Mtu"] = ncfg.Mtu nMap["Mtu"] = ncfg.Mtu
nMap["Internal"] = ncfg.Internal nMap["Internal"] = ncfg.Internal
nMap["DefaultBridge"] = ncfg.DefaultBridge nMap["DefaultBridge"] = ncfg.DefaultBridge
@ -192,6 +193,7 @@ func (ncfg *networkConfiguration) UnmarshalJSON(b []byte) error {
ncfg.EnableIPv6 = nMap["EnableIPv6"].(bool) ncfg.EnableIPv6 = nMap["EnableIPv6"].(bool)
ncfg.EnableIPMasquerade = nMap["EnableIPMasquerade"].(bool) ncfg.EnableIPMasquerade = nMap["EnableIPMasquerade"].(bool)
ncfg.EnableICC = nMap["EnableICC"].(bool) ncfg.EnableICC = nMap["EnableICC"].(bool)
ncfg.InhibitIPv4 = nMap["InhibitIPv4"].(bool)
ncfg.Mtu = int(nMap["Mtu"].(float64)) ncfg.Mtu = int(nMap["Mtu"].(float64))
if v, ok := nMap["Internal"]; ok { if v, ok := nMap["Internal"]; ok {
ncfg.Internal = v.(bool) ncfg.Internal = v.(bool)

3
libnetwork/drivers/bridge/labels.go
View file

@ -10,6 +10,9 @@ const (
// EnableICC label // EnableICC label
EnableICC = "com.docker.network.bridge.enable_icc" EnableICC = "com.docker.network.bridge.enable_icc"
// InhibitIPv4 label
InhibitIPv4 = "com.docker.network.bridge.inhibit_ipv4"
// DefaultBindingIP label // DefaultBindingIP label
DefaultBindingIP = "com.docker.network.bridge.host_binding_ipv4" DefaultBindingIP = "com.docker.network.bridge.host_binding_ipv4"

32
libnetwork/drivers/bridge/setup_ipv4.go
View file

@ -27,22 +27,24 @@ func selectIPv4Address(addresses []netlink.Addr, selector *net.IPNet) (netlink.A
} }
func setupBridgeIPv4(config *networkConfiguration, i *bridgeInterface) error { func setupBridgeIPv4(config *networkConfiguration, i *bridgeInterface) error {
addrv4List, _, err := i.addresses() if !config.InhibitIPv4 {
if err != nil { addrv4List, _, err := i.addresses()
return fmt.Errorf("failed to retrieve bridge interface addresses: %v", err) if err != nil {
} return fmt.Errorf("failed to retrieve bridge interface addresses: %v", err)
addrv4, _ := selectIPv4Address(addrv4List, config.AddressIPv4)
if !types.CompareIPNet(addrv4.IPNet, config.AddressIPv4) {
if addrv4.IPNet != nil {
if err := i.nlh.AddrDel(i.Link, &addrv4); err != nil {
return fmt.Errorf("failed to remove current ip address from bridge: %v", err)
}
} }
logrus.Debugf("Assigning address to bridge interface %s: %s", config.BridgeName, config.AddressIPv4)
if err := i.nlh.AddrAdd(i.Link, &netlink.Addr{IPNet: config.AddressIPv4}); err != nil { addrv4, _ := selectIPv4Address(addrv4List, config.AddressIPv4)
return &IPv4AddrAddError{IP: config.AddressIPv4, Err: err}
if !types.CompareIPNet(addrv4.IPNet, config.AddressIPv4) {
if addrv4.IPNet != nil {
if err := i.nlh.AddrDel(i.Link, &addrv4); err != nil {
return fmt.Errorf("failed to remove current ip address from bridge: %v", err)
}
}
logrus.Debugf("Assigning address to bridge interface %s: %s", config.BridgeName, config.AddressIPv4)
if err := i.nlh.AddrAdd(i.Link, &netlink.Addr{IPNet: config.AddressIPv4}); err != nil {
return &IPv4AddrAddError{IP: config.AddressIPv4, Err: err}
}
} }
} }