3 files changed, 43 insertions, 26 deletions

diff --git a/netlink.c b/netlink.c
index 051d46c..1226379 100644
--- a/netlink.c
+++ b/netlink.c
@@ -413,9 +413,11 @@ int nl_route_set_def(int s, unsigned int ifi, sa_family_t af, void *gw)
  * @s_dst:	Netlink socket in destination namespace
  * @ifi_dst:	Interface index in destination namespace
  * @af:		Address family
+ *
+ * Return: 0 on success, negative error code on failure
  */
-void nl_route_dup(int s_src, unsigned int ifi_src,
-		  int s_dst, unsigned int ifi_dst, sa_family_t af)
+int nl_route_dup(int s_src, unsigned int ifi_src,
+		 int s_dst, unsigned int ifi_dst, sa_family_t af)
 {
 	struct req_t {
 		struct nlmsghdr nlh;
@@ -477,9 +479,11 @@ void nl_route_dup(int s_src, unsigned int ifi_src,
 
 		if (extra) {
 			err("netlink: Too many routes to duplicate");
-			return;
+			return -E2BIG;
 		}
 	}
+	if (status < 0)
+		return status;
 
 	/* Routes might have dependencies between each other, and the kernel
 	 * processes RTM_NEWROUTE messages sequentially. For n routes, we might
@@ -493,15 +497,20 @@ void nl_route_dup(int s_src, unsigned int ifi_src,
 		     NLMSG_OK(nh, status);
 		     nh = NLMSG_NEXT(nh, status)) {
 			uint16_t flags = nh->nlmsg_flags;
+			int rc;
 
 			if (nh->nlmsg_type != RTM_NEWROUTE)
 				continue;
 
-			nl_do(s_dst, nh, RTM_NEWROUTE,
-			       (flags & ~NLM_F_DUMP_FILTERED) | NLM_F_CREATE,
-			       nh->nlmsg_len);
+			rc = nl_do(s_dst, nh, RTM_NEWROUTE,
+				   (flags & ~NLM_F_DUMP_FILTERED) | NLM_F_CREATE,
+				   nh->nlmsg_len);
+			if (rc < 0 && rc != -ENETUNREACH && rc != -EEXIST)
+				return rc;
 		}
 	}
+
+	return 0;
 }
 
 /**
@@ -634,9 +643,11 @@ int nl_addr_set(int s, unsigned int ifi, sa_family_t af,
  * @s_dst:	Netlink socket in destination network namespace
  * @ifi_dst:	Interface index in destination namespace
  * @af:		Address family
+ *
+ * Return: 0 on success, negative error code on failure
  */
-void nl_addr_dup(int s_src, unsigned int ifi_src,
-		 int s_dst, unsigned int ifi_dst, sa_family_t af)
+int nl_addr_dup(int s_src, unsigned int ifi_src,
+		int s_dst, unsigned int ifi_dst, sa_family_t af)
 {
 	struct req_t {
 		struct nlmsghdr nlh;
@@ -650,6 +661,7 @@ void nl_addr_dup(int s_src, unsigned int ifi_src,
 	struct nlmsghdr *nh;
 	ssize_t status;
 	uint16_t seq;
+	int rc = 0;
 
 	seq = nl_send(s_src, &req, RTM_GETADDR, NLM_F_DUMP, sizeof(req));
 	nl_foreach_oftype(nh, status, s_src, buf, seq, RTM_NEWADDR) {
@@ -662,7 +674,7 @@ void nl_addr_dup(int s_src, unsigned int ifi_src,
 
 		ifa = (struct ifaddrmsg *)NLMSG_DATA(nh);
 
-		if (ifa->ifa_scope == RT_SCOPE_LINK ||
+		if (rc < 0 || ifa->ifa_scope == RT_SCOPE_LINK ||
 		    ifa->ifa_index != ifi_src)
 			continue;
 
@@ -674,10 +686,14 @@ void nl_addr_dup(int s_src, unsigned int ifi_src,
 				rta->rta_type = IFA_UNSPEC;
 		}
 
-		nl_do(s_dst, nh, RTM_NEWADDR,
-		       (nh->nlmsg_flags & ~NLM_F_DUMP_FILTERED) | NLM_F_CREATE,
-		       nh->nlmsg_len);
+		rc = nl_do(s_dst, nh, RTM_NEWADDR,
+			   (nh->nlmsg_flags & ~NLM_F_DUMP_FILTERED) | NLM_F_CREATE,
+			   nh->nlmsg_len);
 	}
+	if (status < 0)
+		return status;
+
+	return rc;
 }
 
 /**
diff --git a/netlink.h b/netlink.h
index b831405..9f4f8f4 100644
--- a/netlink.h
+++ b/netlink.h
@@ -13,14 +13,14 @@ void nl_sock_init(const struct ctx *c, bool ns);
 unsigned int nl_get_ext_if(int s, sa_family_t af);
 int nl_route_get_def(int s, unsigned int ifi, sa_family_t af, void *gw);
 int nl_route_set_def(int s, unsigned int ifi, sa_family_t af, void *gw);
-void nl_route_dup(int s_src, unsigned int ifi_src,
-		  int s_dst, unsigned int ifi_dst, sa_family_t af);
+int nl_route_dup(int s_src, unsigned int ifi_src,
+		 int s_dst, unsigned int ifi_dst, sa_family_t af);
 int nl_addr_get(int s, unsigned int ifi, sa_family_t af,
 		void *addr, int *prefix_len, void *addr_l);
 int nl_addr_set(int s, unsigned int ifi, sa_family_t af,
 		void *addr, int prefix_len);
-void nl_addr_dup(int s_src, unsigned int ifi_src,
-		 int s_dst, unsigned int ifi_dst, sa_family_t af);
+int nl_addr_dup(int s_src, unsigned int ifi_src,
+		int s_dst, unsigned int ifi_dst, sa_family_t af);
 int nl_link_get_mac(int s, unsigned int ifi, void *mac);
 int nl_link_set_mac(int s, unsigned int ifi, void *mac);
 int nl_link_up(int s, unsigned int ifi, int mtu);
diff --git a/pasta.c b/pasta.c
index 02635b3..1e84680 100644
--- a/pasta.c
+++ b/pasta.c
@@ -298,8 +298,9 @@ void pasta_ns_conf(struct ctx *c)
 						 &c->ip4.addr,
 						 c->ip4.prefix_len);
 			} else {
-				nl_addr_dup(nl_sock, c->ifi4,
-					    nl_sock_ns, c->pasta_ifi, AF_INET);
+				rc = nl_addr_dup(nl_sock, c->ifi4,
+						 nl_sock_ns, c->pasta_ifi,
+						 AF_INET);
 			}
 
 			if (rc < 0) {
@@ -311,8 +312,8 @@ void pasta_ns_conf(struct ctx *c)
 				rc = nl_route_set_def(nl_sock_ns, c->pasta_ifi,
 						      AF_INET, &c->ip4.gw);
 			} else {
-				nl_route_dup(nl_sock, c->ifi4, nl_sock_ns,
-					     c->pasta_ifi, AF_INET);
+				rc = nl_route_dup(nl_sock, c->ifi4, nl_sock_ns,
+						  c->pasta_ifi, AF_INET);
 			}
 
 			if (rc < 0) {
@@ -326,9 +327,9 @@ void pasta_ns_conf(struct ctx *c)
 				rc = nl_addr_set(nl_sock_ns, c->pasta_ifi,
 						 AF_INET6, &c->ip6.addr, 64);
 			} else {
-				nl_addr_dup(nl_sock, c->ifi6,
-					    nl_sock_ns, c->pasta_ifi,
-					    AF_INET6);
+				rc = nl_addr_dup(nl_sock, c->ifi6,
+						 nl_sock_ns, c->pasta_ifi,
+						 AF_INET6);
 			}
 
 			if (rc < 0) {
@@ -340,9 +341,9 @@ void pasta_ns_conf(struct ctx *c)
 				rc = nl_route_set_def(nl_sock_ns, c->pasta_ifi,
 						      AF_INET6, &c->ip6.gw);
 			} else {
-				nl_route_dup(nl_sock, c->ifi6,
-					     nl_sock_ns, c->pasta_ifi,
-					     AF_INET6);
+				rc = nl_route_dup(nl_sock, c->ifi6,
+						  nl_sock_ns, c->pasta_ifi,
+						  AF_INET6);
 			}
 
 			if (rc < 0) {