mirror of
https://github.com/moby/moby.git
synced 2022-11-09 12:21:53 -05:00
4b549ce428
This PR adds netlink support to manipulate ipvs configuration. Signed-off-by: Jana Radhakrishnan <mrjana@docker.com>
113 lines
2.7 KiB
Go
113 lines
2.7 KiB
Go
// +build linux
|
|
|
|
package ipvs
|
|
|
|
import (
|
|
"net"
|
|
"syscall"
|
|
|
|
"github.com/vishvananda/netlink/nl"
|
|
"github.com/vishvananda/netns"
|
|
)
|
|
|
|
// Service defines an IPVS service in its entirety.
|
|
type Service struct {
|
|
// Virtual service address.
|
|
Address net.IP
|
|
Protocol uint16
|
|
Port uint16
|
|
FWMark uint32 // Firewall mark of the service.
|
|
|
|
// Virtual service options.
|
|
SchedName string
|
|
Flags uint32
|
|
Timeout uint32
|
|
Netmask uint32
|
|
AddressFamily uint16
|
|
PEName string
|
|
}
|
|
|
|
// Destination defines an IPVS destination (real server) in its
|
|
// entirety.
|
|
type Destination struct {
|
|
Address net.IP
|
|
Port uint16
|
|
Weight int
|
|
ConnectionFlags uint32
|
|
AddressFamily uint16
|
|
UpperThreshold uint32
|
|
LowerThreshold uint32
|
|
}
|
|
|
|
// Handle provides a namespace specific ipvs handle to program ipvs
|
|
// rules.
|
|
type Handle struct {
|
|
sock *nl.NetlinkSocket
|
|
}
|
|
|
|
// New provides a new ipvs handle in the namespace pointed to by the
|
|
// passed path. It will return a valid handle or an error in case an
|
|
// error occured while creating the handle.
|
|
func New(path string) (*Handle, error) {
|
|
setup()
|
|
|
|
n := netns.None()
|
|
if path != "" {
|
|
var err error
|
|
n, err = netns.GetFromPath(path)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
}
|
|
|
|
sock, err := nl.GetNetlinkSocketAt(n, netns.None(), syscall.NETLINK_GENERIC)
|
|
if err != nil {
|
|
n.Close()
|
|
return nil, err
|
|
}
|
|
|
|
return &Handle{sock: sock}, nil
|
|
}
|
|
|
|
// Close closes the ipvs handle. The handle is invalid after Close
|
|
// returns.
|
|
func (i *Handle) Close() {
|
|
if i.sock != nil {
|
|
i.sock.Close()
|
|
}
|
|
}
|
|
|
|
// NewService creates a new ipvs service in the passed handle.
|
|
func (i *Handle) NewService(s *Service) error {
|
|
return i.doCmd(s, nil, ipvsCmdNewService)
|
|
}
|
|
|
|
// UpdateService updates an already existing service in the passed
|
|
// handle.
|
|
func (i *Handle) UpdateService(s *Service) error {
|
|
return i.doCmd(s, nil, ipvsCmdSetService)
|
|
}
|
|
|
|
// DelService deletes an already existing service in the passed
|
|
// handle.
|
|
func (i *Handle) DelService(s *Service) error {
|
|
return i.doCmd(s, nil, ipvsCmdDelService)
|
|
}
|
|
|
|
// NewDestination creates an new real server in the passed ipvs
|
|
// service which should already be existing in the passed handle.
|
|
func (i *Handle) NewDestination(s *Service, d *Destination) error {
|
|
return i.doCmd(s, d, ipvsCmdNewDest)
|
|
}
|
|
|
|
// UpdateDestination updates an already existing real server in the
|
|
// passed ipvs service in the passed handle.
|
|
func (i *Handle) UpdateDestination(s *Service, d *Destination) error {
|
|
return i.doCmd(s, d, ipvsCmdSetDest)
|
|
}
|
|
|
|
// DelDestination deletes an already existing real server in the
|
|
// passed ipvs service in the passed handle.
|
|
func (i *Handle) DelDestination(s *Service, d *Destination) error {
|
|
return i.doCmd(s, d, ipvsCmdDelDest)
|
|
}
|