internal/routing/outboundsubnets.go

package routing

import (
	"errors"
	"fmt"
	"net"
)

var (
	ErrAddOutboundSubnet = errors.New("cannot add outbound subnet to routes")
)

func (r *routing) SetOutboundRoutes(outboundSubnets []net.IPNet) error {
	defaultInterface, defaultGateway, err := r.DefaultRoute()
	if err != nil {
		return err
	}
	return r.setOutboundRoutes(outboundSubnets, defaultInterface, defaultGateway)
}

func (r *routing) setOutboundRoutes(outboundSubnets []net.IPNet,
	defaultInterfaceName string, defaultGateway net.IP) error {
	r.stateMutex.Lock()
	defer r.stateMutex.Unlock()

	subnetsToRemove := findSubnetsToRemove(r.outboundSubnets, outboundSubnets)
	subnetsToAdd := findSubnetsToAdd(r.outboundSubnets, outboundSubnets)

	if len(subnetsToAdd) == 0 && len(subnetsToRemove) == 0 {
		return nil
	}

	r.removeOutboundSubnets(subnetsToRemove, defaultInterfaceName, defaultGateway)
	return r.addOutboundSubnets(subnetsToAdd, defaultInterfaceName, defaultGateway)
}

func (r *routing) removeOutboundSubnets(subnets []net.IPNet,
	defaultInterfaceName string, defaultGateway net.IP) {
	for _, subnet := range subnets {
		const table = 0
		if err := r.deleteRouteVia(subnet, defaultGateway, defaultInterfaceName, table); err != nil {
			r.logger.Error("cannot remove outdated outbound subnet from routing: " + err.Error())
			continue
		}
		r.outboundSubnets = removeSubnetFromSubnets(r.outboundSubnets, subnet)
	}
}

func (r *routing) addOutboundSubnets(subnets []net.IPNet,
	defaultInterfaceName string, defaultGateway net.IP) error {
	for _, subnet := range subnets {
		const table = 0
		if err := r.addRouteVia(subnet, defaultGateway, defaultInterfaceName, table); err != nil {
			return fmt.Errorf("%w: %s: %s", ErrAddOutboundSubnet, subnet, err)
		}
		r.outboundSubnets = append(r.outboundSubnets, subnet)
	}
	return nil
}
Fix #273 (#277), adding FIREWALL_OUTBOUND_SUBNETS 2020-10-29 19:23:44 -04:00			`package routing`

			`import (`
Maintenance: improve error codes in IP routing 2021-05-10 17:33:31 +00:00			`"errors"`
Fix #273 (#277), adding FIREWALL_OUTBOUND_SUBNETS 2020-10-29 19:23:44 -04:00			`"fmt"`
			`"net"`
			`)`

Maintenance: improve error codes in IP routing 2021-05-10 17:33:31 +00:00			`var (`
			`ErrAddOutboundSubnet = errors.New("cannot add outbound subnet to routes")`
			`)`

Fix #273 (#277), adding FIREWALL_OUTBOUND_SUBNETS 2020-10-29 19:23:44 -04:00			`func (r *routing) SetOutboundRoutes(outboundSubnets []net.IPNet) error {`
			`defaultInterface, defaultGateway, err := r.DefaultRoute()`
			`if err != nil {`
Maintenance: improve error codes in IP routing 2021-05-10 17:33:31 +00:00			`return err`
Fix #273 (#277), adding FIREWALL_OUTBOUND_SUBNETS 2020-10-29 19:23:44 -04:00			`}`
			`return r.setOutboundRoutes(outboundSubnets, defaultInterface, defaultGateway)`
			`}`

			`func (r *routing) setOutboundRoutes(outboundSubnets []net.IPNet,`
			`defaultInterfaceName string, defaultGateway net.IP) error {`
			`r.stateMutex.Lock()`
			`defer r.stateMutex.Unlock()`

			`subnetsToRemove := findSubnetsToRemove(r.outboundSubnets, outboundSubnets)`
			`subnetsToAdd := findSubnetsToAdd(r.outboundSubnets, outboundSubnets)`

			`if len(subnetsToAdd) == 0 && len(subnetsToRemove) == 0 {`
			`return nil`
			`}`

			`r.removeOutboundSubnets(subnetsToRemove, defaultInterfaceName, defaultGateway)`
Maintenance: add revive linter 2021-06-20 16:12:39 +00:00			`return r.addOutboundSubnets(subnetsToAdd, defaultInterfaceName, defaultGateway)`
Fix #273 (#277), adding FIREWALL_OUTBOUND_SUBNETS 2020-10-29 19:23:44 -04:00			`}`

			`func (r *routing) removeOutboundSubnets(subnets []net.IPNet,`
			`defaultInterfaceName string, defaultGateway net.IP) {`
			`for _, subnet := range subnets {`
			`const table = 0`
			`if err := r.deleteRouteVia(subnet, defaultGateway, defaultInterfaceName, table); err != nil {`
Maint: pass only single strings to logger methods - Do not assume formatting from logger's interface - Allow to change golibs in the future to accept only strings for logger methods 2021-07-23 17:36:08 +00:00			`r.logger.Error("cannot remove outdated outbound subnet from routing: " + err.Error())`
Fix #273 (#277), adding FIREWALL_OUTBOUND_SUBNETS 2020-10-29 19:23:44 -04:00			`continue`
			`}`
			`r.outboundSubnets = removeSubnetFromSubnets(r.outboundSubnets, subnet)`
			`}`
			`}`

			`func (r *routing) addOutboundSubnets(subnets []net.IPNet,`
			`defaultInterfaceName string, defaultGateway net.IP) error {`
			`for _, subnet := range subnets {`
			`const table = 0`
			`if err := r.addRouteVia(subnet, defaultGateway, defaultInterfaceName, table); err != nil {`
Maintenance: improve error codes in IP routing 2021-05-10 17:33:31 +00:00			`return fmt.Errorf("%w: %s: %s", ErrAddOutboundSubnet, subnet, err)`
Fix #273 (#277), adding FIREWALL_OUTBOUND_SUBNETS 2020-10-29 19:23:44 -04:00			`}`
			`r.outboundSubnets = append(r.outboundSubnets, subnet)`
			`}`
			`return nil`
			`}`