netlink/bridge_linux.go

package netlink

import (
	"errors"
	"fmt"

	"github.com/vishvananda/netlink/nl"
	"golang.org/x/sys/unix"
)

// BridgeVlanList gets a map of device id to bridge vlan infos.
// Equivalent to: `bridge vlan show`
//
// If the returned error is [ErrDumpInterrupted], results may be inconsistent
// or incomplete.
func BridgeVlanList() (map[int32][]*nl.BridgeVlanInfo, error) {
	return pkgHandle.BridgeVlanList()
}

// BridgeVlanList gets a map of device id to bridge vlan infos.
// Equivalent to: `bridge vlan show`
//
// If the returned error is [ErrDumpInterrupted], results may be inconsistent
// or incomplete.
func (h *Handle) BridgeVlanList() (map[int32][]*nl.BridgeVlanInfo, error) {
	req := h.newNetlinkRequest(unix.RTM_GETLINK, unix.NLM_F_DUMP)
	msg := nl.NewIfInfomsg(unix.AF_BRIDGE)
	req.AddData(msg)
	req.AddData(nl.NewRtAttr(unix.IFLA_EXT_MASK, nl.Uint32Attr(uint32(nl.RTEXT_FILTER_BRVLAN))))

	msgs, executeErr := req.Execute(unix.NETLINK_ROUTE, unix.RTM_NEWLINK)
	if executeErr != nil && !errors.Is(executeErr, ErrDumpInterrupted) {
		return nil, executeErr
	}
	ret := make(map[int32][]*nl.BridgeVlanInfo)
	for _, m := range msgs {
		msg := nl.DeserializeIfInfomsg(m)

		attrs, err := nl.ParseRouteAttr(m[msg.Len():])
		if err != nil {
			return nil, err
		}
		for _, attr := range attrs {
			switch attr.Attr.Type {
			case unix.IFLA_AF_SPEC:
				//nested attr
				nestAttrs, err := nl.ParseRouteAttr(attr.Value)
				if err != nil {
					return nil, fmt.Errorf("failed to parse nested attr %v", err)
				}
				for _, nestAttr := range nestAttrs {
					switch nestAttr.Attr.Type {
					case nl.IFLA_BRIDGE_VLAN_INFO:
						vlanInfo := nl.DeserializeBridgeVlanInfo(nestAttr.Value)
						ret[msg.Index] = append(ret[msg.Index], vlanInfo)
					}
				}
			}
		}
	}
	return ret, executeErr
}

// BridgeVlanAdd adds a new vlan filter entry
// Equivalent to: `bridge vlan add dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
func BridgeVlanAdd(link Link, vid uint16, pvid, untagged, self, master bool) error {
	return pkgHandle.BridgeVlanAdd(link, vid, pvid, untagged, self, master)
}

// BridgeVlanAdd adds a new vlan filter entry
// Equivalent to: `bridge vlan add dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
func (h *Handle) BridgeVlanAdd(link Link, vid uint16, pvid, untagged, self, master bool) error {
	return h.bridgeVlanModify(unix.RTM_SETLINK, link, vid, 0, pvid, untagged, self, master)
}

// BridgeVlanAddRange adds a new vlan filter entry
// Equivalent to: `bridge vlan add dev DEV vid VID-VIDEND [ pvid ] [ untagged ] [ self ] [ master ]`
func BridgeVlanAddRange(link Link, vid, vidEnd uint16, pvid, untagged, self, master bool) error {
	return pkgHandle.BridgeVlanAddRange(link, vid, vidEnd, pvid, untagged, self, master)
}

// BridgeVlanAddRange adds a new vlan filter entry
// Equivalent to: `bridge vlan add dev DEV vid VID-VIDEND [ pvid ] [ untagged ] [ self ] [ master ]`
func (h *Handle) BridgeVlanAddRange(link Link, vid, vidEnd uint16, pvid, untagged, self, master bool) error {
	return h.bridgeVlanModify(unix.RTM_SETLINK, link, vid, vidEnd, pvid, untagged, self, master)
}

// BridgeVlanDel adds a new vlan filter entry
// Equivalent to: `bridge vlan del dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
func BridgeVlanDel(link Link, vid uint16, pvid, untagged, self, master bool) error {
	return pkgHandle.BridgeVlanDel(link, vid, pvid, untagged, self, master)
}

// BridgeVlanDel adds a new vlan filter entry
// Equivalent to: `bridge vlan del dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
func (h *Handle) BridgeVlanDel(link Link, vid uint16, pvid, untagged, self, master bool) error {
	return h.bridgeVlanModify(unix.RTM_DELLINK, link, vid, 0, pvid, untagged, self, master)
}

// BridgeVlanDelRange adds a new vlan filter entry
// Equivalent to: `bridge vlan del dev DEV vid VID-VIDEND [ pvid ] [ untagged ] [ self ] [ master ]`
func BridgeVlanDelRange(link Link, vid, vidEnd uint16, pvid, untagged, self, master bool) error {
	return pkgHandle.BridgeVlanDelRange(link, vid, vidEnd, pvid, untagged, self, master)
}

// BridgeVlanDelRange adds a new vlan filter entry
// Equivalent to: `bridge vlan del dev DEV vid VID-VIDEND [ pvid ] [ untagged ] [ self ] [ master ]`
func (h *Handle) BridgeVlanDelRange(link Link, vid, vidEnd uint16, pvid, untagged, self, master bool) error {
	return h.bridgeVlanModify(unix.RTM_DELLINK, link, vid, vidEnd, pvid, untagged, self, master)
}

func (h *Handle) bridgeVlanModify(cmd int, link Link, vid, vidEnd uint16, pvid, untagged, self, master bool) error {
	base := link.Attrs()
	h.ensureIndex(base)
	req := h.newNetlinkRequest(cmd, unix.NLM_F_ACK)

	msg := nl.NewIfInfomsg(unix.AF_BRIDGE)
	msg.Index = int32(base.Index)
	req.AddData(msg)

	br := nl.NewRtAttr(unix.IFLA_AF_SPEC, nil)
	var flags uint16
	if self {
		flags |= nl.BRIDGE_FLAGS_SELF
	}
	if master {
		flags |= nl.BRIDGE_FLAGS_MASTER
	}
	if flags > 0 {
		br.AddRtAttr(nl.IFLA_BRIDGE_FLAGS, nl.Uint16Attr(flags))
	}
	vlanInfo := &nl.BridgeVlanInfo{Vid: vid}
	if pvid {
		vlanInfo.Flags |= nl.BRIDGE_VLAN_INFO_PVID
	}
	if untagged {
		vlanInfo.Flags |= nl.BRIDGE_VLAN_INFO_UNTAGGED
	}

	if vidEnd != 0 {
		vlanEndInfo := &nl.BridgeVlanInfo{Vid: vidEnd}
		vlanEndInfo.Flags = vlanInfo.Flags

		vlanInfo.Flags |= nl.BRIDGE_VLAN_INFO_RANGE_BEGIN
		br.AddRtAttr(nl.IFLA_BRIDGE_VLAN_INFO, vlanInfo.Serialize())

		vlanEndInfo.Flags |= nl.BRIDGE_VLAN_INFO_RANGE_END
		br.AddRtAttr(nl.IFLA_BRIDGE_VLAN_INFO, vlanEndInfo.Serialize())
	} else { 
		br.AddRtAttr(nl.IFLA_BRIDGE_VLAN_INFO, vlanInfo.Serialize())
	}

	req.AddData(br)
	_, err := req.Execute(unix.NETLINK_ROUTE, 0)
	return err
}
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`package netlink`

			`import (`
Add ErrDumpInterrupted Add a specific error to report that a netlink response had NLM_F_DUMP_INTR set, indicating that the set of results may be incomplete or inconsistent. unix.EINTR was previously returned (with no results) when the NLM_F_DUMP_INTR flag was set. Now, errors.Is(err, unix.EINTR) will still work. But, this will be a breaking change for any code that's checking for equality with unix.EINTR. Return results with ErrDumpInterrupted. Results may be incomplete or inconsistent, but give the caller the option of using them. Look for NLM_F_DUMP_INTR in more places: - linkSubscribeAt, neighSubscribeAt, routeSubscribeAt - can do an initial dump, which may report inconsistent results -> if there's an error callback, call it with ErrDumpInterrupted - socketDiagXDPExecutor - makes an NLM_F_DUMP request, without using Execute() -> give it the same behaviour as functions that do use Execute() Signed-off-by: Rob Murray <rob.murray@docker.com> 2024-09-05 08:25:13 +00:00			`"errors"`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`"fmt"`

			`"github.com/vishvananda/netlink/nl"`
replace syscall with golang.org/x/sys/unix 2017-10-20 20:38:07 +00:00			`"golang.org/x/sys/unix"`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`)`

			`// BridgeVlanList gets a map of device id to bridge vlan infos.`
			// Equivalent to: `bridge vlan show`
Add ErrDumpInterrupted Add a specific error to report that a netlink response had NLM_F_DUMP_INTR set, indicating that the set of results may be incomplete or inconsistent. unix.EINTR was previously returned (with no results) when the NLM_F_DUMP_INTR flag was set. Now, errors.Is(err, unix.EINTR) will still work. But, this will be a breaking change for any code that's checking for equality with unix.EINTR. Return results with ErrDumpInterrupted. Results may be incomplete or inconsistent, but give the caller the option of using them. Look for NLM_F_DUMP_INTR in more places: - linkSubscribeAt, neighSubscribeAt, routeSubscribeAt - can do an initial dump, which may report inconsistent results -> if there's an error callback, call it with ErrDumpInterrupted - socketDiagXDPExecutor - makes an NLM_F_DUMP request, without using Execute() -> give it the same behaviour as functions that do use Execute() Signed-off-by: Rob Murray <rob.murray@docker.com> 2024-09-05 08:25:13 +00:00			`//`
			`// If the returned error is [ErrDumpInterrupted], results may be inconsistent`
			`// or incomplete.`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`func BridgeVlanList() (map[int32][]*nl.BridgeVlanInfo, error) {`
			`return pkgHandle.BridgeVlanList()`
			`}`

			`// BridgeVlanList gets a map of device id to bridge vlan infos.`
			// Equivalent to: `bridge vlan show`
Add ErrDumpInterrupted Add a specific error to report that a netlink response had NLM_F_DUMP_INTR set, indicating that the set of results may be incomplete or inconsistent. unix.EINTR was previously returned (with no results) when the NLM_F_DUMP_INTR flag was set. Now, errors.Is(err, unix.EINTR) will still work. But, this will be a breaking change for any code that's checking for equality with unix.EINTR. Return results with ErrDumpInterrupted. Results may be incomplete or inconsistent, but give the caller the option of using them. Look for NLM_F_DUMP_INTR in more places: - linkSubscribeAt, neighSubscribeAt, routeSubscribeAt - can do an initial dump, which may report inconsistent results -> if there's an error callback, call it with ErrDumpInterrupted - socketDiagXDPExecutor - makes an NLM_F_DUMP request, without using Execute() -> give it the same behaviour as functions that do use Execute() Signed-off-by: Rob Murray <rob.murray@docker.com> 2024-09-05 08:25:13 +00:00			`//`
			`// If the returned error is [ErrDumpInterrupted], results may be inconsistent`
			`// or incomplete.`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`func (h Handle) BridgeVlanList() (map[int32][]nl.BridgeVlanInfo, error) {`
replace syscall with golang.org/x/sys/unix 2017-10-20 20:38:07 +00:00			`req := h.newNetlinkRequest(unix.RTM_GETLINK, unix.NLM_F_DUMP)`
			`msg := nl.NewIfInfomsg(unix.AF_BRIDGE)`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`req.AddData(msg)`
Use IFLA_* constants from x/sys/unix The IFLA_* constants in in x/sys/unix were updated to Linux 4.15 in golang/sys@88d2dcc51026, so use these instead of locally duplicating them. Signed-off-by: Tobias Klauser <tklauser@distanz.ch> 2018-02-23 16:59:06 +00:00			`req.AddData(nl.NewRtAttr(unix.IFLA_EXT_MASK, nl.Uint32Attr(uint32(nl.RTEXT_FILTER_BRVLAN))))`
Add bridge vlan support 2017-06-06 09:09:16 +00:00
Add ErrDumpInterrupted Add a specific error to report that a netlink response had NLM_F_DUMP_INTR set, indicating that the set of results may be incomplete or inconsistent. unix.EINTR was previously returned (with no results) when the NLM_F_DUMP_INTR flag was set. Now, errors.Is(err, unix.EINTR) will still work. But, this will be a breaking change for any code that's checking for equality with unix.EINTR. Return results with ErrDumpInterrupted. Results may be incomplete or inconsistent, but give the caller the option of using them. Look for NLM_F_DUMP_INTR in more places: - linkSubscribeAt, neighSubscribeAt, routeSubscribeAt - can do an initial dump, which may report inconsistent results -> if there's an error callback, call it with ErrDumpInterrupted - socketDiagXDPExecutor - makes an NLM_F_DUMP request, without using Execute() -> give it the same behaviour as functions that do use Execute() Signed-off-by: Rob Murray <rob.murray@docker.com> 2024-09-05 08:25:13 +00:00			`msgs, executeErr := req.Execute(unix.NETLINK_ROUTE, unix.RTM_NEWLINK)`
			`if executeErr != nil && !errors.Is(executeErr, ErrDumpInterrupted) {`
			`return nil, executeErr`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`}`
			`ret := make(map[int32][]*nl.BridgeVlanInfo)`
			`for _, m := range msgs {`
			`msg := nl.DeserializeIfInfomsg(m)`

			`attrs, err := nl.ParseRouteAttr(m[msg.Len():])`
			`if err != nil {`
			`return nil, err`
			`}`
			`for _, attr := range attrs {`
			`switch attr.Attr.Type {`
Use IFLA_* constants from x/sys/unix The IFLA_* constants in in x/sys/unix were updated to Linux 4.15 in golang/sys@88d2dcc51026, so use these instead of locally duplicating them. Signed-off-by: Tobias Klauser <tklauser@distanz.ch> 2018-02-23 16:59:06 +00:00			`case unix.IFLA_AF_SPEC:`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`//nested attr`
			`nestAttrs, err := nl.ParseRouteAttr(attr.Value)`
			`if err != nil {`
			`return nil, fmt.Errorf("failed to parse nested attr %v", err)`
			`}`
			`for _, nestAttr := range nestAttrs {`
			`switch nestAttr.Attr.Type {`
			`case nl.IFLA_BRIDGE_VLAN_INFO:`
			`vlanInfo := nl.DeserializeBridgeVlanInfo(nestAttr.Value)`
			`ret[msg.Index] = append(ret[msg.Index], vlanInfo)`
			`}`
			`}`
			`}`
			`}`
			`}`
Add ErrDumpInterrupted Add a specific error to report that a netlink response had NLM_F_DUMP_INTR set, indicating that the set of results may be incomplete or inconsistent. unix.EINTR was previously returned (with no results) when the NLM_F_DUMP_INTR flag was set. Now, errors.Is(err, unix.EINTR) will still work. But, this will be a breaking change for any code that's checking for equality with unix.EINTR. Return results with ErrDumpInterrupted. Results may be incomplete or inconsistent, but give the caller the option of using them. Look for NLM_F_DUMP_INTR in more places: - linkSubscribeAt, neighSubscribeAt, routeSubscribeAt - can do an initial dump, which may report inconsistent results -> if there's an error callback, call it with ErrDumpInterrupted - socketDiagXDPExecutor - makes an NLM_F_DUMP request, without using Execute() -> give it the same behaviour as functions that do use Execute() Signed-off-by: Rob Murray <rob.murray@docker.com> 2024-09-05 08:25:13 +00:00			`return ret, executeErr`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`}`

			`// BridgeVlanAdd adds a new vlan filter entry`
			// Equivalent to: `bridge vlan add dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
			`func BridgeVlanAdd(link Link, vid uint16, pvid, untagged, self, master bool) error {`
			`return pkgHandle.BridgeVlanAdd(link, vid, pvid, untagged, self, master)`
			`}`

			`// BridgeVlanAdd adds a new vlan filter entry`
			// Equivalent to: `bridge vlan add dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
			`func (h *Handle) BridgeVlanAdd(link Link, vid uint16, pvid, untagged, self, master bool) error {`
bridge: add/del vlan range Signed-off-by: Date Huang <tjjh89017@hotmail.com> 2023-04-16 08:44:53 +00:00			`return h.bridgeVlanModify(unix.RTM_SETLINK, link, vid, 0, pvid, untagged, self, master)`
			`}`

			`// BridgeVlanAddRange adds a new vlan filter entry`
			// Equivalent to: `bridge vlan add dev DEV vid VID-VIDEND [ pvid ] [ untagged ] [ self ] [ master ]`
			`func BridgeVlanAddRange(link Link, vid, vidEnd uint16, pvid, untagged, self, master bool) error {`
			`return pkgHandle.BridgeVlanAddRange(link, vid, vidEnd, pvid, untagged, self, master)`
			`}`

			`// BridgeVlanAddRange adds a new vlan filter entry`
			// Equivalent to: `bridge vlan add dev DEV vid VID-VIDEND [ pvid ] [ untagged ] [ self ] [ master ]`
			`func (h *Handle) BridgeVlanAddRange(link Link, vid, vidEnd uint16, pvid, untagged, self, master bool) error {`
			`return h.bridgeVlanModify(unix.RTM_SETLINK, link, vid, vidEnd, pvid, untagged, self, master)`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`}`

			`// BridgeVlanDel adds a new vlan filter entry`
			// Equivalent to: `bridge vlan del dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
			`func BridgeVlanDel(link Link, vid uint16, pvid, untagged, self, master bool) error {`
			`return pkgHandle.BridgeVlanDel(link, vid, pvid, untagged, self, master)`
			`}`

			`// BridgeVlanDel adds a new vlan filter entry`
			// Equivalent to: `bridge vlan del dev DEV vid VID [ pvid ] [ untagged ] [ self ] [ master ]`
			`func (h *Handle) BridgeVlanDel(link Link, vid uint16, pvid, untagged, self, master bool) error {`
bridge: add/del vlan range Signed-off-by: Date Huang <tjjh89017@hotmail.com> 2023-04-16 08:44:53 +00:00			`return h.bridgeVlanModify(unix.RTM_DELLINK, link, vid, 0, pvid, untagged, self, master)`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`}`

bridge: add/del vlan range Signed-off-by: Date Huang <tjjh89017@hotmail.com> 2023-04-16 08:44:53 +00:00			`// BridgeVlanDelRange adds a new vlan filter entry`
			// Equivalent to: `bridge vlan del dev DEV vid VID-VIDEND [ pvid ] [ untagged ] [ self ] [ master ]`
			`func BridgeVlanDelRange(link Link, vid, vidEnd uint16, pvid, untagged, self, master bool) error {`
			`return pkgHandle.BridgeVlanDelRange(link, vid, vidEnd, pvid, untagged, self, master)`
			`}`

			`// BridgeVlanDelRange adds a new vlan filter entry`
			// Equivalent to: `bridge vlan del dev DEV vid VID-VIDEND [ pvid ] [ untagged ] [ self ] [ master ]`
			`func (h *Handle) BridgeVlanDelRange(link Link, vid, vidEnd uint16, pvid, untagged, self, master bool) error {`
			`return h.bridgeVlanModify(unix.RTM_DELLINK, link, vid, vidEnd, pvid, untagged, self, master)`
			`}`

			`func (h *Handle) bridgeVlanModify(cmd int, link Link, vid, vidEnd uint16, pvid, untagged, self, master bool) error {`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`base := link.Attrs()`
			`h.ensureIndex(base)`
replace syscall with golang.org/x/sys/unix 2017-10-20 20:38:07 +00:00			`req := h.newNetlinkRequest(cmd, unix.NLM_F_ACK)`
Add bridge vlan support 2017-06-06 09:09:16 +00:00
replace syscall with golang.org/x/sys/unix 2017-10-20 20:38:07 +00:00			`msg := nl.NewIfInfomsg(unix.AF_BRIDGE)`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`msg.Index = int32(base.Index)`
			`req.AddData(msg)`

Use IFLA_* constants from x/sys/unix The IFLA_* constants in in x/sys/unix were updated to Linux 4.15 in golang/sys@88d2dcc51026, so use these instead of locally duplicating them. Signed-off-by: Tobias Klauser <tklauser@distanz.ch> 2018-02-23 16:59:06 +00:00			`br := nl.NewRtAttr(unix.IFLA_AF_SPEC, nil)`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`var flags uint16`
			`if self {`
			`flags \|= nl.BRIDGE_FLAGS_SELF`
			`}`
			`if master {`
			`flags \|= nl.BRIDGE_FLAGS_MASTER`
			`}`
			`if flags > 0 {`
Replace nl.NewRtAttrChild with method on struct 2018-09-30 20:46:00 +00:00			`br.AddRtAttr(nl.IFLA_BRIDGE_FLAGS, nl.Uint16Attr(flags))`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`}`
			`vlanInfo := &nl.BridgeVlanInfo{Vid: vid}`
			`if pvid {`
			`vlanInfo.Flags \|= nl.BRIDGE_VLAN_INFO_PVID`
			`}`
			`if untagged {`
			`vlanInfo.Flags \|= nl.BRIDGE_VLAN_INFO_UNTAGGED`
			`}`
bridge: add/del vlan range Signed-off-by: Date Huang <tjjh89017@hotmail.com> 2023-04-16 08:44:53 +00:00
			`if vidEnd != 0 {`
			`vlanEndInfo := &nl.BridgeVlanInfo{Vid: vidEnd}`
			`vlanEndInfo.Flags = vlanInfo.Flags`

			`vlanInfo.Flags \|= nl.BRIDGE_VLAN_INFO_RANGE_BEGIN`
			`br.AddRtAttr(nl.IFLA_BRIDGE_VLAN_INFO, vlanInfo.Serialize())`

			`vlanEndInfo.Flags \|= nl.BRIDGE_VLAN_INFO_RANGE_END`
			`br.AddRtAttr(nl.IFLA_BRIDGE_VLAN_INFO, vlanEndInfo.Serialize())`
			`} else {`
			`br.AddRtAttr(nl.IFLA_BRIDGE_VLAN_INFO, vlanInfo.Serialize())`
			`}`

Add bridge vlan support 2017-06-06 09:09:16 +00:00			`req.AddData(br)`
replace syscall with golang.org/x/sys/unix 2017-10-20 20:38:07 +00:00			`_, err := req.Execute(unix.NETLINK_ROUTE, 0)`
code simplification 2018-11-14 09:26:18 +00:00			`return err`
Add bridge vlan support 2017-06-06 09:09:16 +00:00			`}`