Google Git
Sign in
fuchsia / fuchsia / refs/heads/sandbox/markdittmer/chunked-demand-paging / . / src / connectivity / management / network_manager / core / src / servicemgr.rs
blob: 2bf5280075c2824f07ef2b81bc0af866628bf214 [file] [log] [blame]
// Copyright 2019 The Fuchsia Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
//! Manages services
// TODO(dpradilla): remove allow
#![allow(dead_code)]
use {
crate::{address::LifIpAddr, error, hal::PortId, lifmgr::LIF, UUID},
std::collections::HashSet,
};
pub struct NatConfig {
pub enable: bool,
pub local_subnet: Option<LifIpAddr>,
pub global_ip: Option<LifIpAddr>,
pub pid: Option<PortId>,
}
struct SecurityFeatures {
nat: NatConfig,
}
/// `Manager` keeps track of interfaces where a service is enabled
/// and verifies conflicting services are not enabled.
pub struct Manager {
// dhcp_server has collection of interfaces where DHCP dhcp_server is enabled.
dhcp_server: std::collections::HashSet<UUID>,
// dhcp_client has collection of interfaces DHCP dhcp_client is enabled.
dhcp_client: std::collections::HashSet<UUID>,
// security features.
security: SecurityFeatures,
}
impl Manager {
//! Creates a new Manager.
pub fn new() -> Self {
Manager {
dhcp_server: HashSet::new(),
dhcp_client: HashSet::new(),
security: SecurityFeatures {
nat: NatConfig { enable: false, local_subnet: None, global_ip: None, pid: None },
},
}
}
/// Enables a DHCP server on the given interface.
///
/// # Errors
///
/// If the interface has a DHCP client enabled, returns [`error::Service::NotEnabled`].
pub fn enable_server(&mut self, lif: &LIF) -> error::Result<bool> {
if self.dhcp_client.contains(&lif.id().uuid) {
warn!(
"DHCP server cant be enabled, as there is an active DHCP client on {}",
lif.id().uuid
);
return Err(error::NetworkManager::Service(error::Service::NotEnabled));
}
Ok(self.dhcp_server.insert(lif.id().uuid))
}
/// Disables a DHCP server on the given interface.
pub fn disable_server(&mut self, lif: &LIF) -> bool {
self.dhcp_server.remove(&lif.id().uuid)
}
/// Returns `true` if the DHCP server is enabled on given interface.
pub fn is_server_enabled(&mut self, lif: &LIF) -> bool {
self.dhcp_server.contains(&lif.id().uuid)
}
/// Enables a DHCP client on the given interface.
pub fn enable_client(&mut self, lif: &LIF) -> error::Result<bool> {
if self.dhcp_server.contains(&lif.id().uuid) {
return Err(error::NetworkManager::Service(error::Service::NotEnabled));
}
Ok(self.dhcp_client.insert(lif.id().uuid))
}
/// Disables a DHCP client on the given interface.
pub fn disable_client(&mut self, lif: &LIF) -> bool {
self.dhcp_client.remove(&lif.id().uuid)
}
/// Returns `true` if the DHCP client is enabled on given interface.
pub fn is_client_enabled(&mut self, lif: &LIF) -> bool {
self.dhcp_client.contains(&lif.id().uuid)
}
/// Returns `true` if NAT is enabled.
pub(crate) fn is_nat_enabled(&self) -> bool {
self.security.nat.enable
}
/// Sets the NAT state to enabled.
pub(crate) fn enable_nat(&mut self) {
self.security.nat.enable = true;
}
/// Sets the NAT state to disabled.
pub(crate) fn disable_nat(&mut self) {
self.security.nat.enable = false;
}
/// Returns the current NAT configuration.
pub(crate) fn get_nat_config(&mut self) -> &mut NatConfig {
&mut self.security.nat
}
/// Sets the local subnet to be NATed.
pub(crate) fn set_local_subnet_nat(&mut self, s: LifIpAddr) {
self.security.nat.local_subnet = Some(s);
}
/// Sets the global IP to be NATed.
pub(crate) fn set_global_ip_nat(&mut self, g: LifIpAddr, p: PortId) {
self.security.nat.global_ip = Some(g);
self.security.nat.pid = Some(p);
}
}
#[cfg(test)]
mod tests {
use super::*;
use crate::address::LifIpAddr;
use crate::lifmgr::{LIFType, LIF};
use crate::portmgr::PortId;
use crate::portmgr::{Port, PortManager};
fn create_lifs() -> (LIF, LIF) {
let mut pm = PortManager::new();
pm.add_port(Port::new(PortId::from(1), "port1", 1));
pm.add_port(Port::new(PortId::from(2), "port2", 1));
let l1 =
LIF::new(1, LIFType::WAN, "name1", PortId::from(0), vec![PortId::from(1)], 0, None)
.unwrap();
let l2 =
LIF::new(2, LIFType::LAN, "name2", PortId::from(0), vec![PortId::from(2)], 0, None)
.unwrap();
(l1, l2)
}
#[test]
fn test_service_manager_new() {
let m = Manager::new();
assert_eq!(m.dhcp_server.len(), 0);
assert_eq!(m.dhcp_client.len(), 0);
}
#[test]
fn test_server_enable() {
let mut m = Manager::new();
let (l, _) = create_lifs();
assert!(m.enable_server(&l).unwrap_or(false));
assert_eq!(m.dhcp_server.len(), 1);
}
#[test]
fn test_server_double_enable() {
let mut m = Manager::new();
let (l, _) = create_lifs();
assert!(m.enable_server(&l).unwrap_or(false));
assert!(!m.enable_server(&l).unwrap_or(false));
assert_eq!(m.dhcp_server.len(), 1);
}
#[test]
fn test_disable_server() {
let mut m = Manager::new();
let (l, l2) = create_lifs();
assert!(m.enable_server(&l).unwrap_or(false));
assert_eq!(m.dhcp_server.len(), 1);
assert!(m.disable_server(&l));
assert_eq!(m.dhcp_server.len(), 0);
assert!(m.enable_server(&l).unwrap_or(false));
assert!(m.enable_server(&l2).unwrap_or(false));
assert_eq!(m.dhcp_server.len(), 2);
assert!(m.disable_server(&l));
assert_eq!(m.dhcp_server.len(), 1);
}
#[test]
fn test_server_disable_already_disabled() {
let mut m = Manager::new();
let (l, _) = create_lifs();
assert!(!m.disable_server(&l));
assert_eq!(m.dhcp_server.len(), 0);
}
#[test]
fn test_client_enable() {
let mut m = Manager::new();
let (l, _) = create_lifs();
assert!(m.enable_client(&l).unwrap_or(false));
assert_eq!(m.dhcp_client.len(), 1);
}
#[test]
fn test_client_double_enable() {
let mut m = Manager::new();
let (l, _) = create_lifs();
assert!(m.enable_client(&l).unwrap_or(false));
assert!(!m.enable_client(&l).unwrap_or(false));
assert_eq!(m.dhcp_client.len(), 1);
}
#[test]
fn test_disable_client() {
let mut m = Manager::new();
let (l, l2) = create_lifs();
assert!(m.enable_client(&l).unwrap_or(false));
assert_eq!(m.dhcp_client.len(), 1);
assert!(m.disable_client(&l));
assert_eq!(m.dhcp_client.len(), 0);
assert!(m.enable_client(&l).unwrap_or(false));
assert!(m.enable_client(&l2).unwrap_or(false));
assert_eq!(m.dhcp_client.len(), 2);
assert!(m.disable_client(&l));
assert_eq!(m.dhcp_client.len(), 1);
}
#[test]
fn test_client_disable_already_disabled() {
let mut m = Manager::new();
let (l, _) = create_lifs();
assert!(!m.disable_client(&l));
assert_eq!(m.dhcp_client.len(), 0);
}
#[test]
fn test_enable_server_with_client_enabled() {
let mut m = Manager::new();
let (l, _) = create_lifs();
assert!(m.enable_client(&l).unwrap_or(false));
assert_eq!(m.dhcp_client.len(), 1);
assert!(!m.enable_server(&l).unwrap_or(false));
assert_eq!(m.dhcp_server.len(), 0);
}
#[test]
fn test_enable_client_with_server_enabled() {
let mut m = Manager::new();
let (l, _) = create_lifs();
assert!(m.enable_server(&l).unwrap_or(false));
assert_eq!(m.dhcp_server.len(), 1);
assert!(!m.enable_client(&l).unwrap_or(false));
assert_eq!(m.dhcp_client.len(), 0);
}
#[test]
fn test_nat_config() {
let mut m = Manager::new();
assert_eq!(m.get_nat_config().enable, false);
assert_eq!(m.is_nat_enabled(), false);
m.enable_nat();
assert_eq!(m.is_nat_enabled(), true);
m.disable_nat();
assert_eq!(m.is_nat_enabled(), false);
let lifip = LifIpAddr { address: "169.254.0.1".parse().unwrap(), prefix: 32 };
m.set_local_subnet_nat(lifip.clone());
assert_eq!(m.get_nat_config().local_subnet.as_ref().unwrap(), &lifip);
let pid = PortId::from(1);
m.set_global_ip_nat(lifip.clone(), pid);
assert_eq!(m.get_nat_config().pid.unwrap(), pid);
}
}