Skip to main content

Browse the archive

https://github.com/cilium/cilium
24 September 2024, 16:59:20 UTC
Raw File
Tip revision: 0392ea9b1ba1c2d57248cae3bdd72d7ea63ca5af authored by Thomas Graf on 15 February 2018, 01:36:12 UTC
kafka: Use policy identity cache to lookup identity for L3 dependant rules Fixes Issue: #2824
Tip revision: 0392ea9
spawn_netns.sh 
#!/bin/bash
#
# Copyright 2016-2017 Authors of Cilium
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.

# This script creates a network namespace, configures the network connectivity
# for it, then runs a command within the namespace and waits for the command
# to exit. Cleans up the namespace and device configuration on termination.
# Must be run as root.
#
# Example: $ spawn_netns.sh mynetns mynetns-dev host-dev "fc00::1/64" \
#            "192.168.0.100/24" ping "8.8.8.8"

NETNS=$1
HOSTDEV=$2
NETNSDEV=$3
IP6=$4
IP4=$5
TARGET=$6
TARGET_ARGS=$7

configure_netns()
{
	ip netns add ${NETNS}
	ip li set dev ${HOSTDEV} up
	ip li set dev ${NETNSDEV} netns ${NETNS}
	ip netns exec ${NETNS} ip li set dev ${NETNSDEV} up
	ip netns exec ${NETNS} ip addr add dev ${NETNSDEV} ${IP6}
	if [ "${IP4}" != "" ]; then
		ip netns exec ${NETNS} ip addr add dev ${NETNSDEV} ${IP4}
	fi
	ip netns exec ${NETNS} ip li set dev lo up
}

cleanup()
{
	ip netns exec ${NETNS} ip li set dev ${NETNSDEV} down
	ip netns exec ${NETNS} ip addr del dev ${NETNSDEV} ${IP6}
	if [ "${IP4}" != "" ]; then
		ip netns exec ${NETNS} ip addr del dev ${NETNSDEV} ${IP4}
	fi
	ip netns exec ${NETNS} ip li set dev ${NETNSDEV} netns 1
	ip netns del ${NETNS}
}

netns_exists()
{
	ip netns list | grep -q ${NETNS}
}

run_target()
{
	ip netns exec ${NETNS} ${TARGET} ${TARGET_ARGS}
}

invalid_ip()
{
	! echo $1 | grep -q "[0-9:.]*"
}

invalid_dev()
{
	! ip link show $1 2>&1 >/dev/null
}

validate_args()
{
	if [ $# -lt 6 ]; then
		echo "Usage: $0 <netns> <veth> <peer> <ip6/cidr> <ip4/cidr> <target> [<target-args>]" >&2
		exit 1
	fi
	if ip netns | grep "${NETNS}"; then
		ip netns del ${NETNS}
	fi
	if invalid_dev "${HOSTDEV}" || invalid_dev "${NETNSDEV}"; then
		echo "Cannot find interfaces ${HOSTDEV} and ${NETNSDEV}" >&2
		exit 1
	fi
	if invalid_ip "${IP4}" || invalid_ip "${IP6}"; then
		echo "IP must be specified as 'IP/CIDR', eg '192.168.0.1/24'" >&2
		exit 1
	fi
	if ! which ${TARGET} 2>&1 >/dev/null ; then
		echo "Cannot locate ${TARGET}" >&2
		exit 1
	fi
}

main()
{
	validate_args "$@"
	configure_netns
	while true; do
		if ! netns_exists || ! run_target; then
			break
		fi
	done
}

trap cleanup SIGINT SIGKILL
main "$@"
back to top