Refactor table management to use a dedicated API and improve command handling.

2025-10-19 22:50:14 +05:00
parent d056f5dbf8
commit 5b19993343
5 changed files with 107 additions and 52 deletions
--- a/internal/command/command.go
+++ b/internal/command/command.go
@@ -0,0 +1,37 @@
+package command
+
+import (
+	"errors"
+	"os/exec"
+)
+
+type NFT interface {
+	Run(arg ...string) error
+}
+
+type execNFT struct {
+	nftPath string
+}
+
+func New(path string) (NFT, error) {
+	if err := checkingNFT(path); err != nil {
+		return nil, err
+	}
+
+	return &execNFT{
+		nftPath: path,
+	}, nil
+}
+
+func (r *execNFT) Run(arg ...string) error {
+	cmd := exec.Command(r.nftPath, arg...)
+	out, err := cmd.CombinedOutput()
+	if err != nil {
+		if len(out) > 0 {
+			return errors.New(string(out))
+		}
+		return err
+	}
+
+	return nil
+}
--- a/internal/command/utils.go
+++ b/internal/command/utils.go
@@ -0,0 +1,51 @@
+package command
+
+import (
+	"errors"
+	"fmt"
+	"os/exec"
+	"regexp"
+	"strings"
+)
+
+func checkingNFT(path string) error {
+	if path == "" {
+		return errors.New("path is empty")
+	}
+
+	cmd := exec.Command(path, "-V")
+	out, err := cmd.CombinedOutput()
+	if err != nil {
+		return errors.New("nftables not found")
+	}
+
+	lines := regexp.MustCompile("\r?\n").Split(strings.TrimSpace(string(out)), -1)
+	json := false
+	for index, line := range lines {
+		line = strings.TrimSpace(line)
+
+		if index == 0 {
+			if !strings.HasPrefix(line, "nftables") {
+				return errors.New("nftables not found")
+			}
+			continue
+		}
+
+		if strings.HasPrefix(line, "json:") && strings.HasSuffix(line, "yes") {
+			json = true
+		}
+	}
+
+	if !json {
+		return errors.New("nftables disabled json")
+	}
+
+	cmd = exec.Command(path, "list", "ruleset")
+	out, err = cmd.CombinedOutput()
+
+	if err != nil {
+		return fmt.Errorf("nftables is not available or not supported by the kernel: %s", string(out))
+	}
+
+	return nil
+}