Inicio Explorar Axuda
Iniciar sesión
vpn
/
nebula
réplica de https://github.com/slackhq/nebula.git
2
0
Fork 0
Ficheiros Incidencias 0 Wiki
Explorar o código

Fix netbsd routes

Nate Brown hai 5 meses
pai
6a96df18cc
achega
f8fe454972
Modificáronse 3 ficheiros con 33 adicións e 19 borrados
Dividir vista Mostrar estatísticas de Diff
  1. 0 1
      overlay/tun_darwin.go
  2. 33 17
      overlay/tun_netbsd.go
  3. 0 1
      pki.go

+ 0 - 1
overlay/tun_darwin.go
Ver ficheiro 

@@ -294,7 +294,6 @@ func (t *tun) activate6(network netip.Prefix) error {
 
 			Vltime: 0xffffffff,
 
 			Pltime: 0xffffffff,
 
 		},
 
-		//TODO: CERT-V2 should we disable DAD (duplicate address detection) and mark this as a secured address?
 
 		Flags: _IN6_IFF_NODAD,
 
 	}

+ 33 - 17
overlay/tun_netbsd.go
Ver ficheiro 

@@ -108,26 +108,34 @@ func (t *tun) addIp(cidr netip.Prefix) error {
 
 	var err error
 
 
 	// TODO use syscalls instead of exec.Command
 
-	cmd := exec.Command("/sbin/ifconfig", t.Device, cidr.String(), cidr.Addr().String())
 
-	t.l.Debug("command: ", cmd.String())
 
-	if err = cmd.Run(); err != nil {
 
-		return fmt.Errorf("failed to run 'ifconfig': %s", err)
 
-	}
 
+	if cidr.Addr().Is6() {
 
+		cmd := exec.Command("/sbin/ifconfig", t.Device, "inet6", cidr.Addr().String(), "prefixlen", strconv.Itoa(cidr.Bits()), "alias")
 
+		t.l.Debug("command: ", cmd.String())
 
+		if err = cmd.Run(); err != nil {
 
+			return fmt.Errorf("failed to run 'ifconfig': %s", err)
 
+		}
 
 
-	cmd = exec.Command("/sbin/route", "-n", "add", "-net", cidr.String(), cidr.Addr().String())
 
-	t.l.Debug("command: ", cmd.String())
 
-	if err = cmd.Run(); err != nil {
 
-		return fmt.Errorf("failed to run 'route add': %s", err)
 
-	}
 
+		cmd = exec.Command("/sbin/route", "-n", "add", "-net", cidr.String(), cidr.Addr().String())
 
+		t.l.Debug("command: ", cmd.String())
 
+		if err = cmd.Run(); err != nil {
 
+			return fmt.Errorf("failed to run 'route add': %s", err)
 
+		}
 
 
-	cmd = exec.Command("/sbin/ifconfig", t.Device, "mtu", strconv.Itoa(t.MTU))
 
-	t.l.Debug("command: ", cmd.String())
 
-	if err = cmd.Run(); err != nil {
 
-		return fmt.Errorf("failed to run 'ifconfig': %s", err)
 
+	} else {
 
+		cmd := exec.Command("/sbin/ifconfig", t.Device, cidr.String(), cidr.Addr().String())
 
+		t.l.Debug("command: ", cmd.String())
 
+		if err = cmd.Run(); err != nil {
 
+			return fmt.Errorf("failed to run 'ifconfig': %s", err)
 
+		}
 
+
 
+		cmd = exec.Command("/sbin/route", "-n", "add", "-net", cidr.String(), cidr.Addr().String())
 
+		t.l.Debug("command: ", cmd.String())
 
+		if err = cmd.Run(); err != nil {
 
+			return fmt.Errorf("failed to run 'route add': %s", err)
 
+		}
 
 	}
 
 
-	// Unsafe path routes
 
-	return t.addRoutes(false)
 
+	return nil
 
 }
 
 
 func (t *tun) Activate() error {
 
@@ -137,7 +145,15 @@ func (t *tun) Activate() error {
 
 			return err
 
 		}
 
 	}
 
-	return nil
 
+
 
+	cmd := exec.Command("/sbin/ifconfig", t.Device, "mtu", strconv.Itoa(t.MTU))
 
+	t.l.Debug("command: ", cmd.String())
 
+	if err := cmd.Run(); err != nil {
 
+		return fmt.Errorf("failed to run '%s': %s", cmd, err)
 
+	}
 
+
 
+	// Unsafe path routes
 
+	return t.addRoutes(false)
 
 }
 
 
 func (t *tun) reload(c *config.C, initial bool) error {

+ 0 - 1
pki.go
Ver ficheiro 

@@ -173,7 +173,6 @@ func (p *PKI) reloadCerts(c *config.C, initial bool) *util.ContextualError {
 
 
 	p.cs.Store(newState)
 
 
-	//TODO: CERT-V2 newState needs a stringer that does json
 
 	if initial {
 
 		p.l.WithField("cert", newState).Debug("Client nebula certificate(s)")
 
 	} else {