Move calls to netlinksafe

These are functions identified as potentially receiving ErrDumpInterrupted and needing to retry

Signed-off-by: Adrian Moisey <adrian@changeover.za.net>

Author: adrianmoisey

pkg/ip/addr_linux.go

@@ -20,6 +20,8 @@ import (
 	"time"
 
 	"github.com/vishvananda/netlink"
+
+	"github.com/containernetworking/plugins/pkg/netlinksafe"
 )
 
 const SETTLE_INTERVAL = 50 * time.Millisecond
@@ -30,14 +32,14 @@ const SETTLE_INTERVAL = 50 * time.Millisecond
 // addresses are no longer tentative.
 // If any addresses are still tentative after timeout seconds, then error.
 func SettleAddresses(ifName string, timeout int) error {
-	link, err := netlink.LinkByName(ifName)
+	link, err := netlinksafe.LinkByName(ifName)
 	if err != nil {
 		return fmt.Errorf("failed to retrieve link: %v", err)
 	}
 
 	deadline := time.Now().Add(time.Duration(timeout) * time.Second)
 	for {
-		addrs, err := netlink.AddrList(link, netlink.FAMILY_ALL)
+		addrs, err := netlinksafe.AddrList(link, netlink.FAMILY_ALL)
 		if err != nil {
 			return fmt.Errorf("could not list addresses: %v", err)
 		}

pkg/ip/link_linux.go

@@ -24,6 +24,7 @@ import (
 	"github.com/safchain/ethtool"
 	"github.com/vishvananda/netlink"
 
+	"github.com/containernetworking/plugins/pkg/netlinksafe"
 	"github.com/containernetworking/plugins/pkg/ns"
 	"github.com/containernetworking/plugins/pkg/utils/sysctl"
 )
@@ -52,7 +53,7 @@ func makeVethPair(name, peer string, mtu int, mac string, hostNS ns.NetNS) (netl
 		return nil, err
 	}
 	// Re-fetch the container link to get its creation-time parameters, e.g. index and mac
-	veth2, err := netlink.LinkByName(name)
+	veth2, err := netlinksafe.LinkByName(name)
 	if err != nil {
 		netlink.LinkDel(veth) // try and clean up the link if possible.
 		return nil, err
@@ -62,7 +63,7 @@ func makeVethPair(name, peer string, mtu int, mac string, hostNS ns.NetNS) (netl
 }
 
 func peerExists(name string) bool {
-	if _, err := netlink.LinkByName(name); err != nil {
+	if _, err := netlinksafe.LinkByName(name); err != nil {
 		return false
 	}
 	return true
@@ -114,7 +115,7 @@ func RandomVethName() (string, error) {
 }
 
 func RenameLink(curName, newName string) error {
-	link, err := netlink.LinkByName(curName)
+	link, err := netlinksafe.LinkByName(curName)
 	if err == nil {
 		err = netlink.LinkSetName(link, newName)
 	}
@@ -145,7 +146,7 @@ func SetupVethWithName(contVethName, hostVethName string, mtu int, contVethMac s
 
 	var hostVeth netlink.Link
 	err = hostNS.Do(func(_ ns.NetNS) error {
-		hostVeth, err = netlink.LinkByName(hostVethName)
+		hostVeth, err = netlinksafe.LinkByName(hostVethName)
 		if err != nil {
 			return fmt.Errorf("failed to lookup %q in %q: %v", hostVethName, hostNS.Path(), err)
 		}
@@ -174,7 +175,7 @@ func SetupVeth(contVethName string, mtu int, contVethMac string, hostNS ns.NetNS
 
 // DelLinkByName removes an interface link.
 func DelLinkByName(ifName string) error {
-	iface, err := netlink.LinkByName(ifName)
+	iface, err := netlinksafe.LinkByName(ifName)
 	if err != nil {
 		if _, ok := err.(netlink.LinkNotFoundError); ok {
 			return ErrLinkNotFound
@@ -191,15 +192,15 @@ func DelLinkByName(ifName string) error {
 
 // DelLinkByNameAddr remove an interface and returns its addresses
 func DelLinkByNameAddr(ifName string) ([]*net.IPNet, error) {
-	iface, err := netlink.LinkByName(ifName)
+	iface, err := netlinksafe.LinkByName(ifName)
 	if err != nil {
 		if _, ok := err.(netlink.LinkNotFoundError); ok {
 			return nil, ErrLinkNotFound
 		}
 		return nil, fmt.Errorf("failed to lookup %q: %v", ifName, err)
 	}
 
-	addrs, err := netlink.AddrList(iface, netlink.FAMILY_ALL)
+	addrs, err := netlinksafe.AddrList(iface, netlink.FAMILY_ALL)
 	if err != nil {
 		return nil, fmt.Errorf("failed to get IP addresses for %q: %v", ifName, err)
 	}
@@ -222,7 +223,7 @@ func DelLinkByNameAddr(ifName string) ([]*net.IPNet, error) {
 // veth, or an error. This peer ifindex will only be valid in the peer's
 // network namespace.
 func GetVethPeerIfindex(ifName string) (netlink.Link, int, error) {
-	link, err := netlink.LinkByName(ifName)
+	link, err := netlinksafe.LinkByName(ifName)
 	if err != nil {
 		return nil, -1, fmt.Errorf("could not look up %q: %v", ifName, err)
 	}

pkg/ip/link_linux_test.go

@@ -22,9 +22,9 @@ import (
 
 	. "github.com/onsi/ginkgo/v2"
 	. "github.com/onsi/gomega"
-	"github.com/vishvananda/netlink"
 
 	"github.com/containernetworking/plugins/pkg/ip"
+	"github.com/containernetworking/plugins/pkg/netlinksafe"
 	"github.com/containernetworking/plugins/pkg/ns"
 	"github.com/containernetworking/plugins/pkg/testutils"
 )
@@ -127,7 +127,7 @@ var _ = Describe("Link", func() {
 		_ = containerNetNS.Do(func(ns.NetNS) error {
 			defer GinkgoRecover()
 
-			containerVethFromName, err := netlink.LinkByName(containerVethName)
+			containerVethFromName, err := netlinksafe.LinkByName(containerVethName)
 			Expect(err).NotTo(HaveOccurred())
 			Expect(containerVethFromName.Attrs().Index).To(Equal(containerVeth.Index))
 
@@ -137,7 +137,7 @@ var _ = Describe("Link", func() {
 		_ = hostNetNS.Do(func(ns.NetNS) error {
 			defer GinkgoRecover()
 
-			hostVethFromName, err := netlink.LinkByName(hostVethName)
+			hostVethFromName, err := netlinksafe.LinkByName(hostVethName)
 			Expect(err).NotTo(HaveOccurred())
 			Expect(hostVethFromName.Attrs().Index).To(Equal(hostVeth.Index))
 
@@ -207,7 +207,7 @@ var _ = Describe("Link", func() {
 			_ = containerNetNS.Do(func(ns.NetNS) error {
 				defer GinkgoRecover()
 
-				_, err := netlink.LinkByName(containerVethName)
+				_, err := netlinksafe.LinkByName(containerVethName)
 				Expect(err).NotTo(HaveOccurred())
 
 				return nil
@@ -216,7 +216,7 @@ var _ = Describe("Link", func() {
 			_ = hostNetNS.Do(func(ns.NetNS) error {
 				defer GinkgoRecover()
 
-				_, err := netlink.LinkByName(hostVethName)
+				_, err := netlinksafe.LinkByName(hostVethName)
 				Expect(err).NotTo(HaveOccurred())
 
 				return nil
@@ -232,7 +232,7 @@ var _ = Describe("Link", func() {
 				Expect(err).NotTo(HaveOccurred())
 				hostVethName = hostVeth.Name
 
-				link, err := netlink.LinkByName(containerVethName)
+				link, err := netlinksafe.LinkByName(containerVethName)
 				Expect(err).NotTo(HaveOccurred())
 				Expect(link.Attrs().HardwareAddr.String()).To(Equal(mac))
 
@@ -242,7 +242,7 @@ var _ = Describe("Link", func() {
 			_ = hostNetNS.Do(func(ns.NetNS) error {
 				defer GinkgoRecover()
 
-				link, err := netlink.LinkByName(hostVethName)
+				link, err := netlinksafe.LinkByName(hostVethName)
 				Expect(err).NotTo(HaveOccurred())
 				Expect(link.Attrs().HardwareAddr.String()).NotTo(Equal(mac))
 
@@ -259,7 +259,7 @@ var _ = Describe("Link", func() {
 			err := ip.DelLinkByName(containerVethName)
 			Expect(err).NotTo(HaveOccurred())
 
-			_, err = netlink.LinkByName(containerVethName)
+			_, err = netlinksafe.LinkByName(containerVethName)
 			Expect(err).To(HaveOccurred())
 
 			return nil
@@ -268,7 +268,7 @@ var _ = Describe("Link", func() {
 		_ = hostNetNS.Do(func(ns.NetNS) error {
 			defer GinkgoRecover()
 
-			_, err := netlink.LinkByName(hostVethName)
+			_, err := netlinksafe.LinkByName(hostVethName)
 			Expect(err).To(HaveOccurred())
 
 			return nil

pkg/ip/utils_linux.go

@@ -25,6 +25,7 @@ import (
 
 	"github.com/containernetworking/cni/pkg/types"
 	current "github.com/containernetworking/cni/pkg/types/100"
+	"github.com/containernetworking/plugins/pkg/netlinksafe"
 )
 
 func ValidateExpectedInterfaceIPs(ifName string, resultIPs []*current.IPConfig) error {
@@ -33,12 +34,12 @@ func ValidateExpectedInterfaceIPs(ifName string, resultIPs []*current.IPConfig)
 		ourAddr := netlink.Addr{IPNet: &ips.Address}
 		match := false
 
-		link, err := netlink.LinkByName(ifName)
+		link, err := netlinksafe.LinkByName(ifName)
 		if err != nil {
 			return fmt.Errorf("Cannot find container link %v", ifName)
 		}
 
-		addrList, err := netlink.AddrList(link, netlink.FAMILY_ALL)
+		addrList, err := netlinksafe.AddrList(link, netlink.FAMILY_ALL)
 		if err != nil {
 			return fmt.Errorf("Cannot obtain List of IP Addresses")
 		}
@@ -67,7 +68,7 @@ func ValidateExpectedInterfaceIPs(ifName string, resultIPs []*current.IPConfig)
 			family = netlink.FAMILY_V4
 		}
 
-		gwy, err := netlink.RouteListFiltered(family, findGwy, routeFilter)
+		gwy, err := netlinksafe.RouteListFiltered(family, findGwy, routeFilter)
 		if err != nil {
 			return fmt.Errorf("Error %v trying to find Gateway %v for interface %v", err, ips.Gateway, ifName)
 		}
@@ -108,7 +109,7 @@ func ValidateExpectedRoute(resultRoutes []*types.Route) error {
 			return fmt.Errorf("Invalid static route found %v", route)
 		}
 
-		wasFound, err := netlink.RouteListFiltered(family, find, routeFilter)
+		wasFound, err := netlinksafe.RouteListFiltered(family, find, routeFilter)
 		if err != nil {
 			return fmt.Errorf("Expected Route %v not route table lookup error %v", route, err)
 		}

pkg/ipam/ipam_linux.go

@@ -23,6 +23,7 @@ import (
 
 	current "github.com/containernetworking/cni/pkg/types/100"
 	"github.com/containernetworking/plugins/pkg/ip"
+	"github.com/containernetworking/plugins/pkg/netlinksafe"
 	"github.com/containernetworking/plugins/pkg/utils/sysctl"
 )
 
@@ -38,7 +39,7 @@ func ConfigureIface(ifName string, res *current.Result) error {
 		return fmt.Errorf("no interfaces to configure")
 	}
 
-	link, err := netlink.LinkByName(ifName)
+	link, err := netlinksafe.LinkByName(ifName)
 	if err != nil {
 		return fmt.Errorf("failed to lookup %q: %v", ifName, err)
 	}

pkg/ipam/ipam_linux_test.go

@@ -24,6 +24,7 @@ import (
 
 	"github.com/containernetworking/cni/pkg/types"
 	current "github.com/containernetworking/cni/pkg/types/100"
+	"github.com/containernetworking/plugins/pkg/netlinksafe"
 	"github.com/containernetworking/plugins/pkg/ns"
 	"github.com/containernetworking/plugins/pkg/testutils"
 )
@@ -64,7 +65,7 @@ var _ = Describe("ConfigureIface", func() {
 				LinkAttrs: linkAttrs,
 			})
 			Expect(err).NotTo(HaveOccurred())
-			_, err = netlink.LinkByName(LINK_NAME)
+			_, err = netlinksafe.LinkByName(LINK_NAME)
 			Expect(err).NotTo(HaveOccurred())
 			return nil
 		})
@@ -148,16 +149,16 @@ var _ = Describe("ConfigureIface", func() {
 			err := ConfigureIface(LINK_NAME, result)
 			Expect(err).NotTo(HaveOccurred())
 
-			link, err := netlink.LinkByName(LINK_NAME)
+			link, err := netlinksafe.LinkByName(LINK_NAME)
 			Expect(err).NotTo(HaveOccurred())
 			Expect(link.Attrs().Name).To(Equal(LINK_NAME))
 
-			v4addrs, err := netlink.AddrList(link, syscall.AF_INET)
+			v4addrs, err := netlinksafe.AddrList(link, syscall.AF_INET)
 			Expect(err).NotTo(HaveOccurred())
 			Expect(v4addrs).To(HaveLen(1))
 			Expect(ipNetEqual(v4addrs[0].IPNet, ipv4)).To(BeTrue())
 
-			v6addrs, err := netlink.AddrList(link, syscall.AF_INET6)
+			v6addrs, err := netlinksafe.AddrList(link, syscall.AF_INET6)
 			Expect(err).NotTo(HaveOccurred())
 			Expect(v6addrs).To(HaveLen(2))
 
@@ -171,7 +172,7 @@ var _ = Describe("ConfigureIface", func() {
 			Expect(found).To(BeTrue())
 
 			// Ensure the v4 route, v6 route, and subnet route
-			routes, err := netlink.RouteList(link, 0)
+			routes, err := netlinksafe.RouteList(link, 0)
 			Expect(err).NotTo(HaveOccurred())
 
 			var v4found, v6found, v4Scopefound bool
@@ -209,12 +210,12 @@ var _ = Describe("ConfigureIface", func() {
 			err := ConfigureIface(LINK_NAME, result)
 			Expect(err).NotTo(HaveOccurred())
 
-			link, err := netlink.LinkByName(LINK_NAME)
+			link, err := netlinksafe.LinkByName(LINK_NAME)
 			Expect(err).NotTo(HaveOccurred())
 			Expect(link.Attrs().Name).To(Equal(LINK_NAME))
 
 			// Ensure the v4 route, v6 route, and subnet route
-			routes, err := netlink.RouteList(link, 0)
+			routes, err := netlinksafe.RouteList(link, 0)
 			Expect(err).NotTo(HaveOccurred())
 
 			var v4found, v6found, v4Tablefound bool
@@ -239,7 +240,7 @@ var _ = Describe("ConfigureIface", func() {
 				Table: routeTable,
 			}
 
-			routes, err = netlink.RouteListFiltered(netlink.FAMILY_ALL,
+			routes, err = netlinksafe.RouteListFiltered(netlink.FAMILY_ALL,
 				routeFilter,
 				netlink.RT_FILTER_TABLE)
 			Expect(err).NotTo(HaveOccurred())

pkg/utils/conntrack.go

@@ -20,6 +20,8 @@ import (
 
 	"github.com/vishvananda/netlink"
 	"golang.org/x/sys/unix"
+
+	"github.com/containernetworking/plugins/pkg/netlinksafe"
 )
 
 // Assigned Internet Protocol Numbers
@@ -51,7 +53,7 @@ func DeleteConntrackEntriesForDstIP(dstIP string, protocol uint8) error {
 	filter.AddIP(netlink.ConntrackOrigDstIP, ip)
 	filter.AddProtocol(protocol)
 
-	_, err := netlink.ConntrackDeleteFilters(netlink.ConntrackTable, family, filter)
+	_, err := netlinksafe.ConntrackDeleteFilters(netlink.ConntrackTable, family, filter)
 	if err != nil {
 		return fmt.Errorf("error deleting connection tracking state for protocol: %d IP: %s, error: %v", protocol, ip, err)
 	}
@@ -65,7 +67,7 @@ func DeleteConntrackEntriesForDstPort(port uint16, protocol uint8, family netlin
 	filter.AddProtocol(protocol)
 	filter.AddPort(netlink.ConntrackOrigDstPort, port)
 
-	_, err := netlink.ConntrackDeleteFilters(netlink.ConntrackTable, family, filter)
+	_, err := netlinksafe.ConntrackDeleteFilters(netlink.ConntrackTable, family, filter)
 	if err != nil {
 		return fmt.Errorf("error deleting connection tracking state for protocol: %d Port: %d, error: %v", protocol, port, err)
 	}

plugins/ipam/dhcp/dhcp2_test.go

@@ -27,6 +27,7 @@ import (
 
 	"github.com/containernetworking/cni/pkg/skel"
 	current "github.com/containernetworking/cni/pkg/types/100"
+	"github.com/containernetworking/plugins/pkg/netlinksafe"
 	"github.com/containernetworking/plugins/pkg/ns"
 	"github.com/containernetworking/plugins/pkg/testutils"
 )
@@ -48,12 +49,12 @@ var _ = Describe("DHCP Multiple Lease Operations", func() {
 		err = targetNS.Do(func(_ ns.NetNS) error {
 			defer GinkgoRecover()
 
-			link, err := netlink.LinkByName(contVethName0)
+			link, err := netlinksafe.LinkByName(contVethName0)
 			Expect(err).NotTo(HaveOccurred())
 			err = netlink.LinkSetUp(link)
 			Expect(err).NotTo(HaveOccurred())
 
-			link1, err := netlink.LinkByName(contVethName1)
+			link1, err := netlinksafe.LinkByName(contVethName1)
 			Expect(err).NotTo(HaveOccurred())
 			err = netlink.LinkSetUp(link1)
 			Expect(err).NotTo(HaveOccurred())