twh_eastasia/virtual-dsm
1
0
Fork 0
mirror of https://github.com/vdsm/virtual-dsm.git synced 2025-11-01 23:44:58 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

feat: Validate user port configuration (#1063)

Browse Source
This commit is contained in:
Kroese 2025-10-14 16:44:11 +02:00 committed by GitHub
parent b8e778a79d
commit ea49cb144b
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 54 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

64
src/network.sh
View File

@ -185,26 +185,68 @@ configureDNS() {
getHostPorts() {
local list="$1"
local list="${HOST_PORTS:-}"
list=$(echo "${list// /}" | sed 's/,*$//g')
list="${list//,,/,}"
[ -z "$list" ] && list="$MON_PORT" || list+=",$MON_PORT"
# Remove duplicates
list=$(echo "$list," | awk 'BEGIN{RS=ORS=","} !seen[$0]++' | sed 's/,*$//g')
echo "$list"
return 0
}
getUserPorts() {
local args=""
local list=$1
local list="${USER_PORTS:-}"
list=$(echo "${list// /}" | sed 's/,*$//g')
local ssh="22"
local dsm="5000"
local dsm="5000,5001"
[ -z "$list" ] && list="$ssh,$dsm" || list+=",$ssh,$dsm"
echo "$list"
list="${list//,,/,}"
list="${list//,/ }"
list="${list## }"
list="${list%% }"
local exclude
exclude=$(getHostPorts)
exclude="${exclude//,/ }"
exclude="${exclude## }"
exclude="${exclude%% }"
local ports=""
for userport in $list; do
local num="${userport///tcp}"
num="${num///udp}"
[ -z "$num" ] && continue
for hostport in $exclude; do
local val="${hostport///tcp}"
if [[ "$num" == "${val///udp}" ]]; then
num=""
warn "Could not assign port ${val///udp} to \"USER_PORTS\" because it is already in \"HOST_PORTS\"!"
fi
done
if [ -n "$num" ]; then
[ -z "$ports" ] && ports="$userport" || ports+=",$userport"
fi
done
# Remove duplicates
ports=$(echo "$ports," | awk 'BEGIN{RS=ORS=","} !seen[$0]++' | sed 's/,*$//g')
echo "$ports"
return 0
}
@ -213,15 +255,15 @@ getSlirp() {
local args=""
local list=""
list=$(getUserPorts "${USER_PORTS:-}")
list=$(getUserPorts)
list="${list//,/ }"
list="${list## }"
list="${list%% }"
for port in $list; do
proto="tcp"
num="${port%/tcp}"
local proto="tcp"
local num="${port%/tcp}"
if [[ "$port" == *"/udp" ]]; then
proto="udp"
@ -235,6 +277,8 @@ getSlirp() {
args+="hostfwd=$proto::$num-$VM_NET_IP:$num,"
done
args=$(echo "$args" | sed 's/,*$//g')
echo "${args%?}"
return 0
}
@ -299,7 +343,7 @@ configurePasst() {
[ -n "$PASST_MTU" ] && PASST_OPTS+=" -m $PASST_MTU"
local forward=""
forward=$(getUserPorts "${USER_PORTS:-}")
forward=$(getUserPorts)
forward="${forward///tcp}"
forward="${forward///udp}"
@ -447,7 +491,7 @@ configureNAT() {
update-alternatives --set ip6tables /usr/sbin/ip6tables-legacy > /dev/null
fi
exclude=$(getHostPorts "$HOST_PORTS")
exclude=$(getHostPorts)
if [ -n "$exclude" ]; then
if [[ "$exclude" != *","* ]]; then