nlink 0.13.0

Async netlink library for Linux network configuration
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149

//! Work with network namespaces.
//!
//! This example demonstrates how to list namespaces and query
//! interfaces within a specific namespace.
//!
//! For sync protocols (Route, Nftables, etc.), use `connection_for()`.
//! For GENL protocols (WireGuard, MACsec, MPTCP, Ethtool, nl80211, Devlink),
//! use `connection_for_async()` which handles async family resolution.
//!
//! Run with: cargo run -p nlink --example namespaces
//!
//! Query a specific namespace:
//!   cargo run -p nlink --example namespaces -- myns
//!
//! First create a namespace with: sudo ip netns add myns

use std::env;

use nlink::netlink::{Connection, Route, namespace};

#[tokio::main]
async fn main() -> nlink::netlink::Result<()> {
    let args: Vec<String> = env::args().collect();

    match args.get(1).map(|s| s.as_str()) {
        Some("--pid") => {
            // Query namespace by PID
            let pid: u32 = args
                .get(2)
                .expect("usage: --pid <pid>")
                .parse()
                .expect("invalid PID");

            query_namespace_by_pid(pid).await?;
        }
        Some(ns_name) => {
            // Query a specific namespace
            query_namespace(ns_name).await?;
        }
        None => {
            // List all namespaces
            list_namespaces()?;
        }
    }

    Ok(())
}

fn list_namespaces() -> nlink::netlink::Result<()> {
    println!("Network namespaces:");
    println!("{}", "-".repeat(40));

    match namespace::list() {
        Ok(namespaces) => {
            if namespaces.is_empty() {
                println!("(none found in /var/run/netns/)");
            } else {
                for ns in namespaces {
                    println!("  {}", ns);
                }
            }
        }
        Err(e) if e.is_not_found() => {
            println!("(no namespaces - /var/run/netns/ does not exist)");
        }
        Err(e) => return Err(e),
    }

    Ok(())
}

async fn query_namespace(name: &str) -> nlink::netlink::Result<()> {
    println!("Interfaces in namespace '{}':", name);
    println!("{}", "-".repeat(50));

    let conn = match namespace::connection_for(name) {
        Ok(c) => c,
        Err(e) if e.is_not_found() => {
            eprintln!("Namespace '{}' not found", name);
            eprintln!("Create it with: sudo ip netns add {}", name);
            return Err(e);
        }
        Err(e) => return Err(e),
    };

    print_interfaces(&conn).await
}

async fn query_namespace_by_pid(pid: u32) -> nlink::netlink::Result<()> {
    println!("Interfaces in namespace of PID {}:", pid);
    println!("{}", "-".repeat(50));

    let conn = match namespace::connection_for_pid(pid) {
        Ok(c) => c,
        Err(e) if e.is_not_found() => {
            eprintln!("Process {} not found or no access to its namespace", pid);
            return Err(e);
        }
        Err(e) => return Err(e),
    };

    print_interfaces(&conn).await
}

async fn print_interfaces(conn: &Connection<Route>) -> nlink::netlink::Result<()> {
    let links = conn.get_links().await?;
    let addrs = conn.get_addresses().await?;

    println!(
        "{:<4} {:<16} {:<6} {:<40}",
        "IDX", "NAME", "STATE", "ADDRESSES"
    );

    for link in &links {
        let name = link.name_or("?");
        // OperState implements Display (lowercase: "up", "down", "unknown", etc.)
        let state = link
            .operstate()
            .map(|s| s.to_string())
            .unwrap_or_else(|| "?".into());

        // Collect addresses for this interface
        let link_addrs: Vec<String> = addrs
            .iter()
            .filter(|a| a.ifindex() == link.ifindex())
            .filter_map(|a| {
                a.address()
                    .or(a.local())
                    .map(|ip| format!("{}/{}", ip, a.prefix_len()))
            })
            .collect();

        let addr_str = if link_addrs.is_empty() {
            "-".to_string()
        } else {
            link_addrs.join(", ")
        };

        println!(
            "{:<4} {:<16} {:<6} {:<40}",
            link.ifindex(),
            name,
            state,
            addr_str
        );
    }

    Ok(())
}