Discussion:
NCD, a light scripting language for network configs and much more
Ambroz Bizjak
2012-08-17 10:03:55 UTC
Permalink
Hi. I'm developing a special kind of scripting language which many
might find useful: http://code.google.com/p/badvpn/wiki/NCD

It was (originally) designed for programming dynamic configuration of
network interfaces, iptables etc. For example, there are commands that
observe the presence and link status of network interfaces. Many
commands are reversible, which makes it very easy to do cleanup
automatically and implicitly, like removing IP addresses or routes
when the link goes down on an interface.

The major advantage of this language compared to existing systems like
NetworkManager and wicd is that it's extremely hackable; you can fine
tune almost any part of the process. For example, this simple script
will create a network bridge, ensure that interfaces eth0 and eth1 are
in the bridge whenever they exist (consider hotplugging USB
interfaces), and only after eth0 (!) is up and running will it obtain
an IP address on br0 (!) using DHCP (since we know DHCP server is on
eth0 not eth1).

process bridge {
# Choose name of bridge.
var("br6") bridge_dev;

# Create the bridge (and destroy it on deinit).
run({"/sbin/brctl", "addbr", bridge_dev},
{"/sbin/brctl", "delbr", bridge_dev});

# Set bridge up.
net.up(bridge_dev);

# Wake up ports.
provide("BRIDGE");

# Wait for port eth0 where we expect to have the DHCP server.
depend("BRIDGE-link");

# Obtain IP address.
net.ipv4.dhcp(bridge_dev) dhcp;

# Sanity check IP address.
ip_in_network(dhcp.addr, "127.0.0.0", "8") test_local;
ifnot(test_local);

# Assign IP address (and remove it when anything goes wrong,
# e.g. lease times out, eth0 disappears or loses link...).
net.ipv4.addr(bridge_dev, dhcp.addr, dhcp.prefix);

println("Got address: ", dhcp.addr, "/", dhcp.prefix);
rprintln("Lost address");
}

process bridge_port_eth0 {
depend("BRIDGE") br;

# Choose name of device.
var("eth0") dev;

# Wait for device to start existing (and trigger deinit
# when it stops existing).
net.backend.waitdevice(dev);

# Add it to the bridge (and remove it when it stops
# existing or we're quitting).
run({"/sbin/brctl", "addif", br.bridge_dev, dev},
{"/sbin/brctl", "delif", br.bridge_dev, dev});

# Set device up.
net.up(dev);

# Wait for link.
net.backend.waitlink(dev);

# Wake up bridge process so it can start DHCP.
provide("BRIDGE-link");
}

# other ports: same as above, just no need to wait for link
process bridge_port_eth1 {
depend("BRIDGE") br;
var("eth1") dev;
net.backend.waitdevice(dev);
run({"/sbin/brctl", "addif", br.bridge_dev, dev},
{"/sbin/brctl", "delif", br.bridge_dev, dev});
net.up(dev);
}

Note that nothing is ever leaked here. When the NCD interpreter
receives SIGTERM, it automatically cleans up everything (removes IP
addresses, destroys bridge...).

The language is suitable for much more than network configs. For
instance, it allows receiving input/evdev events from a single device
with only a few lines of code:

process main {
sys.evdev("/dev/input/by-id/usb-BTC_USB_Multimedia_Keyboard-event-kbd")
evdev;
println("Event: ", evdev.type, " ", evdev.value, " ", evdev.code);
val_equal(evdev.code, "KEY_ENTER") is_enter;
If (is_enter) {
println("You pressed enter!");
};
evdev->nextevent();
}

With some more code it's possible to automatically listen on all event
devices as they come and go.

I think it would also make a great base to build an init system upon
(implement init process in NCD language). I've toyed a little with
this and got something very simple working, see
http://code.google.com/p/ncdinit/ .

Best regards,
Ambroz Bizjak
--
To unsubscribe from this list: send the line "unsubscribe linux-admin" in
the body of a message to ***@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Stephen Hemminger
2012-08-17 16:22:53 UTC
Permalink
On Fri, 17 Aug 2012 12:03:55 +0200
Post by Ambroz Bizjak
Hi. I'm developing a special kind of scripting language which many
might find useful: http://code.google.com/p/badvpn/wiki/NCD
It was (originally) designed for programming dynamic configuration of
network interfaces, iptables etc. For example, there are commands that
observe the presence and link status of network interfaces. Many
commands are reversible, which makes it very easy to do cleanup
automatically and implicitly, like removing IP addresses or routes
when the link goes down on an interface.
The major advantage of this language compared to existing systems like
NetworkManager and wicd is that it's extremely hackable; you can fine
tune almost any part of the process. For example, this simple script
will create a network bridge, ensure that interfaces eth0 and eth1 are
in the bridge whenever they exist (consider hotplugging USB
interfaces), and only after eth0 (!) is up and running will it obtain
an IP address on br0 (!) using DHCP (since we know DHCP server is on
eth0 not eth1).
process bridge {
# Choose name of bridge.
var("br6") bridge_dev;
# Create the bridge (and destroy it on deinit).
run({"/sbin/brctl", "addbr", bridge_dev},
{"/sbin/brctl", "delbr", bridge_dev});
# Set bridge up.
net.up(bridge_dev);
# Wake up ports.
provide("BRIDGE");
FYI - you can use ip commands now to control bridge.
For all the new features planned, they won't be controllable via brctl.
--
To unsubscribe from this list: send the line "unsubscribe linux-hotplug" in
the body of a message to ***@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Loading...