pelagos 0.60.6

Fast Linux container runtime — OCI-compatible, namespaces, cgroups v2, seccomp, networking, image management
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309

//! Pelagos daemon/CLI configuration.
//!
//! Config file locations:
//! - Rootless: `$XDG_CONFIG_HOME/pelagos/config.toml`
//!   (default `~/.config/pelagos/config.toml`)
//! - Root: `/etc/pelagos/config.toml`
//!
//! A missing or unparseable file is silently ignored — built-in defaults
//! are always used as the fallback so the file is fully optional.
//!
//! # Example
//! ```toml
//! [network]
//! # Subnet assigned to the default pelagos0 bridge on first bootstrap.
//! # Has no effect once pelagos0 already exists.
//! default_subnet = "10.88.0.0/24"
//!
//! # Pool from which /24 blocks are carved when `pelagos network create`
//! # is called without an explicit --subnet.
//! auto_alloc_pool = "10.99.0.0/16"
//!
//! # DNS servers injected into bridge-networked containers when --dns is
//! # not passed.  Default is Cloudflare dual-stack (IPv4 + IPv6).
//! # Set to [] to disable auto-injection.
//! # Override at runtime: PELAGOS_DEFAULT_DNS=9.9.9.9,2620:fe::fe
//! default_dns = ["1.1.1.1", "2606:4700:4700::1111"]
//! ```

use serde::Deserialize;

use crate::network::Ipv4Net;

/// Default DNS servers injected into bridge-networked containers when no
/// `--dns` flag is passed.  Cloudflare dual-stack: works for both IPv4 and
/// IPv6 hosts.
const DEFAULT_DNS: &[&str] = &["1.1.1.1", "2606:4700:4700::1111"];

// ── Top-level config ──────────────────────────────────────────────────────────

#[derive(Debug, Clone, Deserialize, Default)]
pub struct PelagosConfig {
    #[serde(default)]
    pub network: NetworkConfig,
}

impl PelagosConfig {
    /// Load config from the platform-appropriate path.
    ///
    /// Returns built-in defaults if the file does not exist or cannot be
    /// parsed — config is always optional.
    pub fn load() -> Self {
        Self::load_from(&crate::paths::config_file())
    }

    /// Load config from an explicit path. Useful for tests and overrides.
    pub fn load_from(path: &std::path::Path) -> Self {
        let data = match std::fs::read_to_string(path) {
            Ok(s) => s,
            Err(_) => return Self::default(),
        };
        match toml::from_str::<Self>(&data) {
            Ok(cfg) => cfg,
            Err(e) => {
                log::warn!(
                    "config: failed to parse {}: {} — using defaults",
                    path.display(),
                    e
                );
                Self::default()
            }
        }
    }
}

// ── [network] section ─────────────────────────────────────────────────────────

#[derive(Debug, Clone, Deserialize)]
pub struct NetworkConfig {
    /// Subnet for the `pelagos0` bridge on **first** bootstrap.
    ///
    /// Has no effect once the network has already been created and persisted
    /// to disk — use `pelagos network rm pelagos0` then restart to change it.
    #[serde(default = "NetworkConfig::default_subnet_str")]
    pub default_subnet: String,

    /// Pool from which /24 blocks are carved for named networks created
    /// without an explicit `--subnet`.  Must be a /16 or larger.
    #[serde(default = "NetworkConfig::default_alloc_pool_str")]
    pub auto_alloc_pool: String,

    /// DNS servers injected into bridge-networked containers when `--dns` is
    /// not passed explicitly.  Overridable via `PELAGOS_DEFAULT_DNS`
    /// (comma-separated, env takes precedence over config file).
    ///
    /// Set to an empty list to disable auto-injection entirely:
    /// `default_dns = []`
    #[serde(default = "NetworkConfig::default_dns_list")]
    pub default_dns: Vec<String>,
}

impl Default for NetworkConfig {
    fn default() -> Self {
        Self {
            default_subnet: Self::default_subnet_str(),
            auto_alloc_pool: Self::default_alloc_pool_str(),
            default_dns: Self::default_dns_list(),
        }
    }
}

impl NetworkConfig {
    fn default_subnet_str() -> String {
        "172.19.0.0/24".to_string()
    }

    fn default_alloc_pool_str() -> String {
        "10.99.0.0/16".to_string()
    }

    fn default_dns_list() -> Vec<String> {
        DEFAULT_DNS.iter().map(|s| s.to_string()).collect()
    }

    /// Resolve the effective default DNS list, applying the `PELAGOS_DEFAULT_DNS`
    /// environment variable override if set.  Returns an empty vec if the env
    /// var is set to an empty string (opt-out).
    pub fn effective_default_dns(&self) -> Vec<String> {
        self.effective_default_dns_with_env(std::env::var("PELAGOS_DEFAULT_DNS").ok().as_deref())
    }

    /// Inner implementation — accepts the env value explicitly so tests can
    /// exercise it without mutating the process environment.
    fn effective_default_dns_with_env(&self, env_val: Option<&str>) -> Vec<String> {
        match env_val {
            Some("") => vec![],
            Some(val) => val
                .split(',')
                .map(|s| s.trim().to_string())
                .filter(|s| !s.is_empty())
                .collect(),
            None => self.default_dns.clone(),
        }
    }

    /// Parse `default_subnet` as an [`Ipv4Net`], falling back to the
    /// built-in default on error.
    pub fn default_subnet_parsed(&self) -> Ipv4Net {
        Ipv4Net::from_cidr(&self.default_subnet).unwrap_or_else(|e| {
            log::warn!(
                "config: invalid default_subnet '{}': {} — using 172.19.0.0/24",
                self.default_subnet,
                e
            );
            Ipv4Net::from_cidr("172.19.0.0/24").unwrap()
        })
    }

    /// Parse `auto_alloc_pool` as an [`Ipv4Net`], falling back to the
    /// built-in default on error.
    pub fn auto_alloc_pool_parsed(&self) -> Ipv4Net {
        Ipv4Net::from_cidr(&self.auto_alloc_pool).unwrap_or_else(|e| {
            log::warn!(
                "config: invalid auto_alloc_pool '{}': {} — using 10.99.0.0/16",
                self.auto_alloc_pool,
                e
            );
            Ipv4Net::from_cidr("10.99.0.0/16").unwrap()
        })
    }
}

// ── Tests ─────────────────────────────────────────────────────────────────────

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_default_config_values() {
        let cfg = PelagosConfig::default();
        assert_eq!(cfg.network.default_subnet, "172.19.0.0/24");
        assert_eq!(cfg.network.auto_alloc_pool, "10.99.0.0/16");
        assert_eq!(
            cfg.network.default_dns,
            vec!["1.1.1.1", "2606:4700:4700::1111"]
        );
    }

    #[test]
    fn test_parse_full_config() {
        let toml = r#"
[network]
default_subnet = "10.88.0.0/24"
auto_alloc_pool = "10.200.0.0/16"
"#;
        let cfg: PelagosConfig = toml::from_str(toml).unwrap();
        assert_eq!(cfg.network.default_subnet, "10.88.0.0/24");
        assert_eq!(cfg.network.auto_alloc_pool, "10.200.0.0/16");
    }

    #[test]
    fn test_parse_partial_config_uses_defaults() {
        let toml = "[network]\nauto_alloc_pool = \"10.200.0.0/16\"\n";
        let cfg: PelagosConfig = toml::from_str(toml).unwrap();
        assert_eq!(cfg.network.default_subnet, "172.19.0.0/24");
        assert_eq!(cfg.network.auto_alloc_pool, "10.200.0.0/16");
    }

    #[test]
    fn test_parse_empty_config_uses_defaults() {
        let cfg: PelagosConfig = toml::from_str("").unwrap();
        assert_eq!(cfg.network.default_subnet, "172.19.0.0/24");
        assert_eq!(cfg.network.auto_alloc_pool, "10.99.0.0/16");
    }

    #[test]
    fn test_default_subnet_parsed() {
        let cfg = NetworkConfig::default();
        let net = cfg.default_subnet_parsed();
        assert_eq!(net.addr.to_string(), "172.19.0.0");
        assert_eq!(net.prefix_len, 24);
    }

    #[test]
    fn test_auto_alloc_pool_parsed() {
        let cfg = NetworkConfig::default();
        let pool = cfg.auto_alloc_pool_parsed();
        assert_eq!(pool.addr.to_string(), "10.99.0.0");
        assert_eq!(pool.prefix_len, 16);
    }

    #[test]
    fn test_invalid_subnet_falls_back_to_default() {
        let cfg = NetworkConfig {
            default_subnet: "not-a-cidr".to_string(),
            auto_alloc_pool: "also-bad".to_string(),
            default_dns: vec![],
        };
        let net = cfg.default_subnet_parsed();
        assert_eq!(net.addr.to_string(), "172.19.0.0");
        let pool = cfg.auto_alloc_pool_parsed();
        assert_eq!(pool.addr.to_string(), "10.99.0.0");
    }

    #[test]
    fn test_default_dns_in_config_file() {
        let toml = r#"
[network]
default_dns = ["9.9.9.9", "2620:fe::fe"]
"#;
        let cfg: PelagosConfig = toml::from_str(toml).unwrap();
        assert_eq!(cfg.network.default_dns, vec!["9.9.9.9", "2620:fe::fe"]);
    }

    #[test]
    fn test_empty_default_dns_disables_injection() {
        let toml = "[network]\ndefault_dns = []\n";
        let cfg: PelagosConfig = toml::from_str(toml).unwrap();
        assert!(cfg.network.effective_default_dns().is_empty());
    }

    #[test]
    fn test_effective_default_dns_env_override() {
        let cfg = NetworkConfig::default();
        let dns = cfg.effective_default_dns_with_env(Some("8.8.8.8,8.8.4.4"));
        assert_eq!(dns, vec!["8.8.8.8", "8.8.4.4"]);
    }

    #[test]
    fn test_effective_default_dns_env_empty_opt_out() {
        let cfg = NetworkConfig::default();
        let dns = cfg.effective_default_dns_with_env(Some(""));
        assert!(dns.is_empty());
    }

    #[test]
    fn test_effective_default_dns_no_env_uses_config() {
        let cfg = NetworkConfig::default();
        let dns = cfg.effective_default_dns_with_env(None);
        assert_eq!(dns, vec!["1.1.1.1", "2606:4700:4700::1111"]);
    }

    #[test]
    fn test_load_missing_file_returns_defaults() {
        // Pass a path that does not exist — load_from must return defaults.
        let tmp = tempfile::tempdir().unwrap();
        let absent = tmp.path().join("pelagos/config.toml");
        let cfg = PelagosConfig::load_from(&absent);
        assert_eq!(cfg.network.default_subnet, "172.19.0.0/24");
        assert_eq!(cfg.network.auto_alloc_pool, "10.99.0.0/16");
    }

    #[test]
    fn test_load_from_xdg_config_home() {
        // Write a config file and load it directly via load_from — no env mutation.
        let tmp = tempfile::tempdir().unwrap();
        let cfg_dir = tmp.path().join("pelagos");
        std::fs::create_dir_all(&cfg_dir).unwrap();
        let cfg_path = cfg_dir.join("config.toml");
        std::fs::write(
            &cfg_path,
            "[network]\ndefault_subnet = \"10.77.0.0/24\"\nauto_alloc_pool = \"10.77.0.0/16\"\n",
        )
        .unwrap();
        let cfg = PelagosConfig::load_from(&cfg_path);
        assert_eq!(cfg.network.default_subnet, "10.77.0.0/24");
        assert_eq!(cfg.network.auto_alloc_pool, "10.77.0.0/16");
    }
}