mirror of
				https://github.com/gravitl/netmaker.git
				synced 2025-10-26 14:06:15 +08:00 
			
		
		
		
	
		
			
				
	
	
		
			79 lines
		
	
	
	
		
			2.5 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			79 lines
		
	
	
	
		
			2.5 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| package local
 | |
| 
 | |
| import (
 | |
| 	"net"
 | |
| 
 | |
| 	"github.com/gravitl/netmaker/logger"
 | |
| 	"github.com/gravitl/netmaker/netclient/ncutils"
 | |
| 	"golang.zx2c4.com/wireguard/wgctrl/wgtypes"
 | |
| )
 | |
| 
 | |
| // TODO handle ipv6 in future
 | |
| 
 | |
| // SetPeerRoutes - sets/removes ip routes for each peer on a network
 | |
| func SetPeerRoutes(iface string, oldPeers map[string][]net.IPNet, newPeers []wgtypes.PeerConfig) {
 | |
| 	// traverse through all recieved peers
 | |
| 	for _, peer := range newPeers {
 | |
| 		// if pubkey found in existing peers, check against existing peer
 | |
| 		currPeerAllowedIPs := oldPeers[peer.PublicKey.String()]
 | |
| 		if currPeerAllowedIPs != nil {
 | |
| 			// traverse IPs, check to see if old peer contains each IP
 | |
| 			for _, allowedIP := range peer.AllowedIPs { // compare new ones (if any) to old ones
 | |
| 				if !ncutils.IPNetSliceContains(currPeerAllowedIPs, allowedIP) {
 | |
| 					if err := setRoute(iface, &allowedIP, allowedIP.IP.String()); err != nil {
 | |
| 						logger.Log(1, err.Error())
 | |
| 					}
 | |
| 				}
 | |
| 			}
 | |
| 			for _, allowedIP := range currPeerAllowedIPs { // compare old ones (if any) to new ones
 | |
| 				if !ncutils.IPNetSliceContains(peer.AllowedIPs, allowedIP) {
 | |
| 					if err := deleteRoute(iface, &allowedIP, allowedIP.IP.String()); err != nil {
 | |
| 						logger.Log(1, err.Error())
 | |
| 					}
 | |
| 				}
 | |
| 			}
 | |
| 			delete(oldPeers, peer.PublicKey.String()) // remove peer as it was found and processed
 | |
| 		} else {
 | |
| 			for _, allowedIP := range peer.AllowedIPs { // add all routes as peer doesn't exist
 | |
| 				if err := setRoute(iface, &allowedIP, allowedIP.String()); err != nil {
 | |
| 					logger.Log(1, err.Error())
 | |
| 				}
 | |
| 			}
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	// traverse through all remaining existing peers
 | |
| 	for _, allowedIPs := range oldPeers {
 | |
| 		for _, allowedIP := range allowedIPs {
 | |
| 			deleteRoute(iface, &allowedIP, allowedIP.IP.String())
 | |
| 		}
 | |
| 	}
 | |
| }
 | |
| 
 | |
| // SetCurrentPeerRoutes - sets all the current peers
 | |
| func SetCurrentPeerRoutes(iface, currentAddr string, peers []wgtypes.PeerConfig) {
 | |
| 	for _, peer := range peers {
 | |
| 		for _, allowedIP := range peer.AllowedIPs {
 | |
| 			setRoute(iface, &allowedIP, currentAddr)
 | |
| 		}
 | |
| 	}
 | |
| }
 | |
| 
 | |
| // FlushPeerRoutes - removes all current peer routes
 | |
| func FlushPeerRoutes(iface, currentAddr string, peers []wgtypes.Peer) {
 | |
| 	for _, peer := range peers {
 | |
| 		for _, allowedIP := range peer.AllowedIPs {
 | |
| 			deleteRoute(iface, &allowedIP, currentAddr)
 | |
| 		}
 | |
| 	}
 | |
| }
 | |
| 
 | |
| // SetCIDRRoute - sets the CIDR route, used on join and restarts
 | |
| func SetCIDRRoute(iface, currentAddr string, cidr *net.IPNet) {
 | |
| 	setCidr(iface, currentAddr, cidr)
 | |
| }
 | |
| 
 | |
| // RemoveCIDRRoute - removes a static cidr route
 | |
| func RemoveCIDRRoute(iface, currentAddr string, cidr *net.IPNet) {
 | |
| 	removeCidr(iface, cidr, currentAddr)
 | |
| }
 |