diff options
| author | Roman Smrž <roman.smrz@seznam.cz> | 2025-06-01 16:42:09 +0200 |
|---|---|---|
| committer | Roman Smrž <roman.smrz@seznam.cz> | 2025-06-01 16:56:21 +0200 |
| commit | b698fa819723635ddbdde15e592c3b7acc018024 (patch) | |
| tree | 11c7e543209a2bc6d93f32bb2c979736fba6eb26 /src/Network | |
| parent | 66de6b7e5ed20fb8b833ff267fe578e4716e83c7 (diff) | |
Execute shell commands in appropriate network namespace
Changelog: Execute shell commands in appropriate network namespace
Diffstat (limited to 'src/Network')
| -rw-r--r-- | src/Network/Ip.hs | 20 |
1 files changed, 20 insertions, 0 deletions
diff --git a/src/Network/Ip.hs b/src/Network/Ip.hs index 8f0887a..a4fdf50 100644 --- a/src/Network/Ip.hs +++ b/src/Network/Ip.hs @@ -17,6 +17,7 @@ module Network.Ip ( NetworkNamespace, HasNetns(..), addNetworkNamespace, + setNetworkNamespace, textNetnsName, callOn, @@ -33,6 +34,7 @@ module Network.Ip ( ) where import Control.Concurrent.STM +import Control.Exception import Control.Monad import Control.Monad.Writer @@ -42,6 +44,11 @@ import Data.Text qualified as T import Data.Typeable import Data.Word +import Foreign.C.Error +import Foreign.C.Types + +import System.Posix.IO +import System.Posix.Types import System.Process newtype IpPrefix = IpPrefix [Word8] @@ -122,6 +129,19 @@ addNetworkNamespace netnsName = do netnsRoutesActive <- liftSTM $ newTVar [] return $ NetworkNamespace {..} +setNetworkNamespace :: MonadIO m => NetworkNamespace -> m () +setNetworkNamespace netns = liftIO $ do + let path = "/var/run/netns/" <> T.unpack (textNetnsName netns) + open = openFd path ReadOnly defaultFileFlags { cloexec = True } + res <- bracket open closeFd $ \(Fd fd) -> do + c_setns fd c_CLONE_NEWNET + when (res /= 0) $ do + throwErrno "setns failed" + +foreign import ccall unsafe "sched.h setns" c_setns :: CInt -> CInt -> IO CInt +c_CLONE_NEWNET :: CInt +c_CLONE_NEWNET = 0x40000000 + textNetnsName :: NetworkNamespace -> Text textNetnsName = netnsName |