| // +build linux |
| |
| package ipvs |
| |
| import ( |
| "net" |
| "syscall" |
| |
| "github.com/vishvananda/netlink/nl" |
| "github.com/vishvananda/netns" |
| ) |
| |
| // Service defines an IPVS service in its entirety. |
| type Service struct { |
| // Virtual service address. |
| Address net.IP |
| Protocol uint16 |
| Port uint16 |
| FWMark uint32 // Firewall mark of the service. |
| |
| // Virtual service options. |
| SchedName string |
| Flags uint32 |
| Timeout uint32 |
| Netmask uint32 |
| AddressFamily uint16 |
| PEName string |
| } |
| |
| // Destination defines an IPVS destination (real server) in its |
| // entirety. |
| type Destination struct { |
| Address net.IP |
| Port uint16 |
| Weight int |
| ConnectionFlags uint32 |
| AddressFamily uint16 |
| UpperThreshold uint32 |
| LowerThreshold uint32 |
| } |
| |
| // Handle provides a namespace specific ipvs handle to program ipvs |
| // rules. |
| type Handle struct { |
| sock *nl.NetlinkSocket |
| } |
| |
| // New provides a new ipvs handle in the namespace pointed to by the |
| // passed path. It will return a valid handle or an error in case an |
| // error occured while creating the handle. |
| func New(path string) (*Handle, error) { |
| setup() |
| |
| n := netns.None() |
| if path != "" { |
| var err error |
| n, err = netns.GetFromPath(path) |
| if err != nil { |
| return nil, err |
| } |
| } |
| defer n.Close() |
| |
| sock, err := nl.GetNetlinkSocketAt(n, netns.None(), syscall.NETLINK_GENERIC) |
| if err != nil { |
| return nil, err |
| } |
| |
| return &Handle{sock: sock}, nil |
| } |
| |
| // Close closes the ipvs handle. The handle is invalid after Close |
| // returns. |
| func (i *Handle) Close() { |
| if i.sock != nil { |
| i.sock.Close() |
| } |
| } |
| |
| // NewService creates a new ipvs service in the passed handle. |
| func (i *Handle) NewService(s *Service) error { |
| return i.doCmd(s, nil, ipvsCmdNewService) |
| } |
| |
| // UpdateService updates an already existing service in the passed |
| // handle. |
| func (i *Handle) UpdateService(s *Service) error { |
| return i.doCmd(s, nil, ipvsCmdSetService) |
| } |
| |
| // DelService deletes an already existing service in the passed |
| // handle. |
| func (i *Handle) DelService(s *Service) error { |
| return i.doCmd(s, nil, ipvsCmdDelService) |
| } |
| |
| // NewDestination creates an new real server in the passed ipvs |
| // service which should already be existing in the passed handle. |
| func (i *Handle) NewDestination(s *Service, d *Destination) error { |
| return i.doCmd(s, d, ipvsCmdNewDest) |
| } |
| |
| // UpdateDestination updates an already existing real server in the |
| // passed ipvs service in the passed handle. |
| func (i *Handle) UpdateDestination(s *Service, d *Destination) error { |
| return i.doCmd(s, d, ipvsCmdSetDest) |
| } |
| |
| // DelDestination deletes an already existing real server in the |
| // passed ipvs service in the passed handle. |
| func (i *Handle) DelDestination(s *Service, d *Destination) error { |
| return i.doCmd(s, d, ipvsCmdDelDest) |
| } |