diff options
| author | Lennart Poettering <lennart@poettering.net> | 2021-02-16 23:41:35 +0100 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-02-16 23:41:35 +0100 |
| commit | b1b4e9204c8260956825e2b9733c95903e215e31 (patch) | |
| tree | 7be4306eb4e6c39aa94358c47a24ed8b23a5414f /src/nspawn/nspawn.c | |
| parent | bb1296b55a222cbab24d533006e730529009258c (diff) | |
| parent | 79dd22409325e99f255806ddf874173615628cfe (diff) | |
| download | systemd-b1b4e9204c8260956825e2b9733c95903e215e31.tar.gz | |
Merge pull request #18007 from fw-strlen/ipv6_masq_and_dnat
Support ipv6 for masquerade and dnat in nspawn and networkd
Diffstat (limited to 'src/nspawn/nspawn.c')
| -rw-r--r-- | src/nspawn/nspawn.c | 15 |
1 files changed, 10 insertions, 5 deletions
diff --git a/src/nspawn/nspawn.c b/src/nspawn/nspawn.c index c50e635196..f38f8c2a87 100644 --- a/src/nspawn/nspawn.c +++ b/src/nspawn/nspawn.c @@ -2467,7 +2467,8 @@ static int setup_kmsg(int kmsg_socket) { } struct ExposeArgs { - union in_addr_union address; + union in_addr_union address4; + union in_addr_union address6; struct FirewallContext *fw_ctx; }; @@ -2478,7 +2479,8 @@ static int on_address_change(sd_netlink *rtnl, sd_netlink_message *m, void *user assert(m); assert(args); - expose_port_execute(rtnl, &args->fw_ctx, arg_expose_ports, &args->address); + expose_port_execute(rtnl, &args->fw_ctx, arg_expose_ports, AF_INET, &args->address4); + expose_port_execute(rtnl, &args->fw_ctx, arg_expose_ports, AF_INET6, &args->address6); return 0; } @@ -4900,7 +4902,8 @@ static int run_container( if (r < 0) return r; - (void) expose_port_execute(rtnl, &expose_args->fw_ctx, arg_expose_ports, &expose_args->address); + (void) expose_port_execute(rtnl, &expose_args->fw_ctx, arg_expose_ports, AF_INET, &expose_args->address4); + (void) expose_port_execute(rtnl, &expose_args->fw_ctx, arg_expose_ports, AF_INET6, &expose_args->address6); } rtnl_socket_pair[0] = safe_close(rtnl_socket_pair[0]); @@ -5027,7 +5030,8 @@ static int run_container( return 0; /* finito */ } - expose_port_flush(&expose_args->fw_ctx, arg_expose_ports, &expose_args->address); + expose_port_flush(&expose_args->fw_ctx, arg_expose_ports, AF_INET, &expose_args->address4); + expose_port_flush(&expose_args->fw_ctx, arg_expose_ports, AF_INET6, &expose_args->address6); (void) remove_veth_links(veth_name, arg_network_veth_extra); *veth_created = false; @@ -5582,7 +5586,8 @@ finish: (void) rm_rf(p, REMOVE_ROOT); } - expose_port_flush(&fw_ctx, arg_expose_ports, &expose_args.address); + expose_port_flush(&fw_ctx, arg_expose_ports, AF_INET, &expose_args.address4); + expose_port_flush(&fw_ctx, arg_expose_ports, AF_INET6, &expose_args.address6); if (veth_created) (void) remove_veth_links(veth_name, arg_network_veth_extra); |