netlinkrb/README

Ruby Netlink
============

This library provides an API for using a Linux Netlink socket, for doing
things things like manipulating IP interfaces and routes programmatically,
and capturing packets from ULOG.

Example
=======

    require 'linux/netlink/route'
    ip = Linux::Netlink::Route::Socket.new

    # Info about eth0 interface
    p ip.link["eth0"]

    # Addresses on eth0 interface
    ip.addr.list(:index=>"eth0") do |addr|
      puts addr.address
    end

See the examples/ and test/ directories for more examples.

Requirements
============

ruby 1.9 (tested with ruby 1.9.2), OR ruby 1.8.7 with the ffi library.

Code organisation
=================

There are separate classes for each Netlink protocol providing a high-level
API. These all in turn use the NLSocket class, which has methods for adding
the headers to messages and sending them over a socket. The messages
themselves are built using class Message or RtattrMessage, which in turn are
subclasses of CStruct, which performs the low-level packing and unpacking of
the message bodies.

      LinkHandler/
      AddrHandler/
      VlanHandler/
      RouteHandler
           |
           v
         Route  Firewall  NFLog  ...etc
           |       |       |
           +-------+-------+
                   |
                   v
                NLSocket
                   |
                   v
        Message / RtattrMessage
                   |
                   v
                CStruct

Useful reference material
=========================

* http://www.linuxjournal.com/article/7356
* http://people.redhat.com/nhorman/papers/netlink.pdf
* apt-get source iproute

Note there are some errors in the nhorman paper. On page 8/9, it says

    nlmsg_pid ... Also note that it is
    imperative that any program receiving netlink socket messages from
    the kernel verify that this ﬁeld is set to zero, or it is possible to expose
    the software to unexpected inﬂuences from other non-privlidged user
    space programs.

However, what really needs to be checked is the pid in the sockaddr_nl
structure returned by recvmsg msghdr, as shown by this code in
lib/libnetlink.c:

        struct msghdr msg = {
                .msg_name = &nladdr,
                .msg_namelen = sizeof(nladdr),
                .msg_iov = &iov,
                .msg_iovlen = 1,
        };
...
                status = recvmsg(rth->fd, &msg, 0);
...
                                if (nladdr.nl_pid != 0 ||
                                    h->nlmsg_pid != rth->local.nl_pid ||
                                    h->nlmsg_seq != rth->dump) {

TODO
====

* Exception hierarchy
* More tests
* More netlink protocols

Copyright
=========

Copyright (C) 2011 Bytemark Computer Consulting Ltd
Initial commit, work in progress 2011-04-29 11:51:10 +01:00			`Ruby Netlink`
			`============`

			`This library provides an API for using a Linux Netlink socket, for doing`
Update README 2011-05-08 11:58:02 +01:00			`things things like manipulating IP interfaces and routes programmatically,`
			`and capturing packets from ULOG.`

			`Example`
			`=======`

			`require 'linux/netlink/route'`
			`ip = Linux::Netlink::Route::Socket.new`

			`# Info about eth0 interface`
			`p ip.link["eth0"]`

			`# Addresses on eth0 interface`
			`ip.addr.list(:index=>"eth0") do \|addr\|`
			`puts addr.address`
			`end`

			`See the examples/ and test/ directories for more examples.`
Initial commit, work in progress 2011-04-29 11:51:10 +01:00
Reorganise under Linux:: 2011-05-06 09:49:47 +01:00			`Requirements`
			`============`

			`ruby 1.9 (tested with ruby 1.9.2), OR ruby 1.8.7 with the ffi library.`

Another little reorg; we are quite tightly bound to implementation of CStruct 2011-05-02 18:17:24 +01:00			`Code organisation`
			`=================`

			`There are separate classes for each Netlink protocol providing a high-level`
			`API. These all in turn use the NLSocket class, which has methods for adding`
			`the headers to messages and sending them over a socket. The messages`
			`themselves are built using class Message or RtattrMessage, which in turn are`
			`subclasses of CStruct, which performs the low-level packing and unpacking of`
			`the message bodies.`

More handler separation: e.g. RouteHandler or VlanHandler can call LinkHandler 2011-05-03 15:59:07 +01:00			`LinkHandler/`
			`AddrHandler/`
			`VlanHandler/`
			`RouteHandler`
			`\|`
			`v`
			`Route Firewall NFLog ...etc`
			`\| \| \|`
			`+-------+-------+`
			`\|`
			`v`
			`NLSocket`
			`\|`
			`v`
			`Message / RtattrMessage`
			`\|`
			`v`
			`CStruct`
Another little reorg; we are quite tightly bound to implementation of CStruct 2011-05-02 18:17:24 +01:00
Initial commit, work in progress 2011-04-29 11:51:10 +01:00			`Useful reference material`
			`=========================`

			`* http://www.linuxjournal.com/article/7356`
			`* http://people.redhat.com/nhorman/papers/netlink.pdf`
			`* apt-get source iproute`

			`Note there are some errors in the nhorman paper. On page 8/9, it says`

			`nlmsg_pid ... Also note that it is`
			`imperative that any program receiving netlink socket messages from`
			`the kernel verify that this ﬁeld is set to zero, or it is possible to expose`
			`the software to unexpected inﬂuences from other non-privlidged user`
			`space programs.`

			`However, what really needs to be checked is the pid in the sockaddr_nl`
			`structure returned by recvmsg msghdr, as shown by this code in`
			`lib/libnetlink.c:`

			`struct msghdr msg = {`
			`.msg_name = &nladdr,`
			`.msg_namelen = sizeof(nladdr),`
			`.msg_iov = &iov,`
			`.msg_iovlen = 1,`
			`};`
			`...`
			`status = recvmsg(rth->fd, &msg, 0);`
			`...`
			`if (nladdr.nl_pid != 0 \|\|`
			`h->nlmsg_pid != rth->local.nl_pid \|\|`
			`h->nlmsg_seq != rth->dump) {`

Pack ifmap, convert MAC addr to hex, tag some more attrs 2011-04-29 21:05:56 +01:00			`TODO`
			`====`

			`* Exception hierarchy`
Update README 2011-05-08 11:58:02 +01:00			`* More tests`
			`* More netlink protocols`
Pack ifmap, convert MAC addr to hex, tag some more attrs 2011-04-29 21:05:56 +01:00
Initial commit, work in progress 2011-04-29 11:51:10 +01:00			`Copyright`
			`=========`

			`Copyright (C) 2011 Bytemark Computer Consulting Ltd`