Dobby/NetworkSetup_8h_source.html

/*

* If not stated otherwise in this file or this component's LICENSE file the

* following copyright and licenses apply:

*

* Copyright 2020 Sky UK

*

* Licensed under the Apache License, Version 2.0 (the "License");

* you may not use this file except in compliance with the License.

* You may obtain a copy of the License at

*

* http://www.apache.org/licenses/LICENSE-2.0

*

* Unless required by applicable law or agreed to in writing, software

* distributed under the License is distributed on an "AS IS" BASIS,

* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

* See the License for the specific language governing permissions and

* limitations under the License.

*/


#ifndef NETWORKSETUP_H

#define NETWORKSETUP_H


#include "Netfilter.h"

#include "NetworkingHelper.h"

#include "rt_dobby_schema.h"

#include <DobbyRdkPluginUtils.h>


#include <arpa/inet.h>

#include <map>

#include <list>

#include <string>

#include <memory>

#include <mutex>

#include <vector>


// -----------------------------------------------------------------------------

namespace NetworkSetup

{

    bool setupBridgeDevice(const std::shared_ptr<DobbyRdkPluginUtils> &utils,

                           const std::shared_ptr<Netfilter> &netfilter,

                           const std::vector<std::string> &extIfaces);


    bool createNetns(const std::string &containerId);


    bool setupVeth(const std::shared_ptr<DobbyRdkPluginUtils> &utils,

                   const std::shared_ptr<Netfilter> &netfilter,

                   const std::shared_ptr<NetworkingHelper> &helper,

                   const std::string &rootfsPath,

                   const std::string &containerId,

                   const NetworkType networkType);


    bool removeVethPair(const std::shared_ptr<Netfilter> &netfilter,

                        const std::shared_ptr<NetworkingHelper> &helper,

                        const std::string &vethName,

                        const NetworkType networkType,

                        const std::string &containerId);


    bool removeBridgeDevice(const std::shared_ptr<Netfilter> &netfilter,

                            const std::vector<std::string> &extIfaces);


    void addResolvMount(const std::shared_ptr<DobbyRdkPluginUtils> &utils,

                        const std::shared_ptr<rt_dobby_schema> &cfg);


    void addNetworkNamespace(const std::shared_ptr<rt_dobby_schema> &cfg);

};


bool setupContainerNet(const std::shared_ptr<NetworkingHelper> &helper);


pid_t spawnNetnsOwner(const std::string &containerId);


void deleteNetns(const std::string &containerId);


#endif // !defined(NETWORKSETUP_H)

NetworkSetup
Functions to set up networking for containers.

NetworkSetup::setupVeth
bool setupVeth(const std::shared_ptr< DobbyRdkPluginUtils > &utils, const std::shared_ptr< Netfilter > &netfilter, const std::shared_ptr< NetworkingHelper > &helper, const std::string &rootfsPath, const std::string &containerId, const NetworkType networkType)
Called from host namespace.
Definition NetworkSetup.cpp:716

NetworkSetup::removeBridgeDevice
bool removeBridgeDevice(const std::shared_ptr< Netfilter > &netfilter, const std::vector< std::string > &extIfaces)
Clear out the iptables rules set for the bridge device and brings the interface down.
Definition NetworkSetup.cpp:1002

NetworkSetup::addResolvMount
void addResolvMount(const std::shared_ptr< DobbyRdkPluginUtils > &utils, const std::shared_ptr< rt_dobby_schema > &cfg)
Adds a mount to /etc/resolv.conf.
Definition NetworkSetup.cpp:1077

NetworkSetup::setupBridgeDevice
bool setupBridgeDevice(const std::shared_ptr< DobbyRdkPluginUtils > &utils, const std::shared_ptr< Netfilter > &netfilter, const std::vector< std::string > &extIfaces)
Called from host namespace.
Definition NetworkSetup.cpp:355

NetworkSetup::addNetworkNamespace
void addNetworkNamespace(const std::shared_ptr< rt_dobby_schema > &cfg)
Adds the 'network' namespace to the OCI config.
Definition NetworkSetup.cpp:1106

NetworkSetup::removeVethPair
bool removeVethPair(const std::shared_ptr< Netfilter > &netfilter, const std::shared_ptr< NetworkingHelper > &helper, const std::string &vethName, const NetworkType networkType, const std::string &containerId)
Remove iptables entries for the container's veth and bring the veth pair down.
Definition NetworkSetup.cpp:916