Annotation of embedaddon/strongswan/src/libcharon/plugins/kernel_netlink/kernel_netlink_shared.c, revision 1.1
1.1 ! misho 1: /*
! 2: * Copyright (C) 2014 Martin Willi
! 3: * Copyright (C) 2014 revosec AG
! 4: *
! 5: * Copyright (C) 2008-2020 Tobias Brunner
! 6: * HSR Hochschule fuer Technik Rapperswil
! 7: *
! 8: * This program is free software; you can redistribute it and/or modify it
! 9: * under the terms of the GNU General Public License as published by the
! 10: * Free Software Foundation; either version 2 of the License, or (at your
! 11: * option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>.
! 12: *
! 13: * This program is distributed in the hope that it will be useful, but
! 14: * WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
! 15: * or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License
! 16: * for more details.
! 17: */
! 18:
! 19: /*
! 20: * Copyright (C) 2016 secunet Security Networks AG
! 21: * Copyright (C) 2016 Thomas Egerer
! 22: *
! 23: * Permission is hereby granted, free of charge, to any person obtaining a copy
! 24: * of this software and associated documentation files (the "Software"), to deal
! 25: * in the Software without restriction, including without limitation the rights
! 26: * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
! 27: * copies of the Software, and to permit persons to whom the Software is
! 28: * furnished to do so, subject to the following conditions:
! 29: *
! 30: * The above copyright notice and this permission notice shall be included in
! 31: * all copies or substantial portions of the Software.
! 32: *
! 33: * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
! 34: * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
! 35: * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
! 36: * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
! 37: * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
! 38: * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
! 39: * THE SOFTWARE.
! 40: */
! 41:
! 42: #include <sys/socket.h>
! 43: #include <linux/netlink.h>
! 44: #include <linux/rtnetlink.h>
! 45: #include <linux/xfrm.h>
! 46: #include <errno.h>
! 47: #include <unistd.h>
! 48:
! 49: #include "kernel_netlink_shared.h"
! 50:
! 51: #include <utils/debug.h>
! 52: #include <threading/mutex.h>
! 53: #include <threading/condvar.h>
! 54: #include <collections/array.h>
! 55: #include <collections/hashtable.h>
! 56:
! 57: typedef struct private_netlink_socket_t private_netlink_socket_t;
! 58:
! 59: /**
! 60: * Private variables and functions of netlink_socket_t class.
! 61: */
! 62: struct private_netlink_socket_t {
! 63:
! 64: /**
! 65: * public part of the netlink_socket_t object.
! 66: */
! 67: netlink_socket_t public;
! 68:
! 69: /**
! 70: * mutex to lock access entries
! 71: */
! 72: mutex_t *mutex;
! 73:
! 74: /**
! 75: * Netlink request entries currently active, uintptr_t seq => entry_t
! 76: */
! 77: hashtable_t *entries;
! 78:
! 79: /**
! 80: * Current sequence number for Netlink requests
! 81: */
! 82: refcount_t seq;
! 83:
! 84: /**
! 85: * netlink socket
! 86: */
! 87: int socket;
! 88:
! 89: /**
! 90: * Netlink protocol
! 91: */
! 92: int protocol;
! 93:
! 94: /**
! 95: * Enum names for Netlink messages
! 96: */
! 97: enum_name_t *names;
! 98:
! 99: /**
! 100: * Timeout for Netlink replies, in ms
! 101: */
! 102: u_int timeout;
! 103:
! 104: /**
! 105: * Number of times to repeat timed out queries
! 106: */
! 107: u_int retries;
! 108:
! 109: /**
! 110: * Buffer size for received Netlink messages
! 111: */
! 112: u_int buflen;
! 113:
! 114: /**
! 115: * Use parallel netlink queries
! 116: */
! 117: bool parallel;
! 118:
! 119: /**
! 120: * Ignore errors potentially resulting from a retransmission
! 121: */
! 122: bool ignore_retransmit_errors;
! 123: };
! 124:
! 125: /**
! 126: * #definable hook to simulate request message loss
! 127: */
! 128: #ifdef NETLINK_MSG_LOSS_HOOK
! 129: bool NETLINK_MSG_LOSS_HOOK(struct nlmsghdr *msg);
! 130: #define msg_loss_hook(msg) NETLINK_MSG_LOSS_HOOK(msg)
! 131: #else
! 132: #define msg_loss_hook(msg) FALSE
! 133: #endif
! 134:
! 135: /**
! 136: * Request entry the answer for a waiting thread is collected in
! 137: */
! 138: typedef struct {
! 139: /** Condition variable thread is waiting */
! 140: condvar_t *condvar;
! 141: /** Array of hdrs in a multi-message response, as struct nlmsghdr* */
! 142: array_t *hdrs;
! 143: /** All response messages received? */
! 144: bool complete;
! 145: } entry_t;
! 146:
! 147: /**
! 148: * Clean up a thread waiting entry
! 149: */
! 150: static void destroy_entry(entry_t *entry)
! 151: {
! 152: entry->condvar->destroy(entry->condvar);
! 153: array_destroy_function(entry->hdrs, (void*)free, NULL);
! 154: free(entry);
! 155: }
! 156:
! 157: /**
! 158: * Write a Netlink message to socket
! 159: */
! 160: static bool write_msg(private_netlink_socket_t *this, struct nlmsghdr *msg)
! 161: {
! 162: struct sockaddr_nl addr = {
! 163: .nl_family = AF_NETLINK,
! 164: };
! 165: int len;
! 166:
! 167: if (msg_loss_hook(msg))
! 168: {
! 169: return TRUE;
! 170: }
! 171:
! 172: while (TRUE)
! 173: {
! 174: len = sendto(this->socket, msg, msg->nlmsg_len, 0,
! 175: (struct sockaddr*)&addr, sizeof(addr));
! 176: if (len != msg->nlmsg_len)
! 177: {
! 178: if (errno == EINTR)
! 179: {
! 180: continue;
! 181: }
! 182: DBG1(DBG_KNL, "netlink write error: %s", strerror(errno));
! 183: return FALSE;
! 184: }
! 185: return TRUE;
! 186: }
! 187: }
! 188:
! 189: /**
! 190: * Read a single Netlink message from socket, return 0 on error, -1 on timeout
! 191: */
! 192: static ssize_t read_msg(private_netlink_socket_t *this,
! 193: char *buf, size_t buflen, bool block)
! 194: {
! 195: ssize_t len;
! 196:
! 197: if (block)
! 198: {
! 199: fd_set set;
! 200: timeval_t tv = {};
! 201:
! 202: FD_ZERO(&set);
! 203: FD_SET(this->socket, &set);
! 204: timeval_add_ms(&tv, this->timeout);
! 205:
! 206: if (select(this->socket + 1, &set, NULL, NULL,
! 207: this->timeout ? &tv : NULL) <= 0)
! 208: {
! 209: return -1;
! 210: }
! 211: }
! 212: len = recv(this->socket, buf, buflen, MSG_TRUNC|(block ? 0 : MSG_DONTWAIT));
! 213: if (len > buflen)
! 214: {
! 215: DBG1(DBG_KNL, "netlink response exceeds buffer size");
! 216: return 0;
! 217: }
! 218: if (len < 0)
! 219: {
! 220: if (errno != EAGAIN && errno != EWOULDBLOCK && errno != EINTR)
! 221: {
! 222: DBG1(DBG_KNL, "netlink read error: %s", strerror(errno));
! 223: }
! 224: return 0;
! 225: }
! 226: return len;
! 227: }
! 228:
! 229: /**
! 230: * Queue received response message
! 231: */
! 232: static bool queue(private_netlink_socket_t *this, struct nlmsghdr *buf)
! 233: {
! 234: struct nlmsghdr *hdr;
! 235: entry_t *entry;
! 236: uintptr_t seq;
! 237:
! 238: seq = (uintptr_t)buf->nlmsg_seq;
! 239:
! 240: this->mutex->lock(this->mutex);
! 241: entry = this->entries->get(this->entries, (void*)seq);
! 242: if (entry)
! 243: {
! 244: hdr = malloc(buf->nlmsg_len);
! 245: memcpy(hdr, buf, buf->nlmsg_len);
! 246: array_insert(entry->hdrs, ARRAY_TAIL, hdr);
! 247: if (hdr->nlmsg_type == NLMSG_DONE || !(hdr->nlmsg_flags & NLM_F_MULTI))
! 248: {
! 249: entry->complete = TRUE;
! 250: entry->condvar->signal(entry->condvar);
! 251: }
! 252: }
! 253: else
! 254: {
! 255: DBG1(DBG_KNL, "received unknown netlink seq %u, ignored", seq);
! 256: }
! 257: this->mutex->unlock(this->mutex);
! 258:
! 259: return entry != NULL;
! 260: }
! 261:
! 262: /**
! 263: * Read and queue response message, optionally blocking, returns TRUE on timeout
! 264: */
! 265: static bool read_and_queue(private_netlink_socket_t *this, bool block)
! 266: {
! 267: struct nlmsghdr *hdr;
! 268: char buf[this->buflen];
! 269: ssize_t len, read_len;
! 270: bool wipe = FALSE;
! 271:
! 272: len = read_len = read_msg(this, buf, sizeof(buf), block);
! 273: if (len == -1)
! 274: {
! 275: return TRUE;
! 276: }
! 277: if (len)
! 278: {
! 279: hdr = (struct nlmsghdr*)buf;
! 280: while (NLMSG_OK(hdr, len))
! 281: {
! 282: if (this->protocol == NETLINK_XFRM &&
! 283: hdr->nlmsg_type == XFRM_MSG_NEWSA)
! 284: { /* wipe potential IPsec SA keys */
! 285: wipe = TRUE;
! 286: }
! 287: if (!queue(this, hdr))
! 288: {
! 289: break;
! 290: }
! 291: hdr = NLMSG_NEXT(hdr, len);
! 292: }
! 293: }
! 294: if (wipe)
! 295: {
! 296: memwipe(buf, read_len);
! 297: }
! 298: return FALSE;
! 299: }
! 300:
! 301: CALLBACK(watch, bool,
! 302: private_netlink_socket_t *this, int fd, watcher_event_t event)
! 303: {
! 304: if (event == WATCHER_READ)
! 305: {
! 306: read_and_queue(this, FALSE);
! 307: }
! 308: return TRUE;
! 309: }
! 310:
! 311: /**
! 312: * Send a netlink request, try once
! 313: */
! 314: static status_t send_once(private_netlink_socket_t *this, struct nlmsghdr *in,
! 315: uintptr_t seq, struct nlmsghdr **out, size_t *out_len)
! 316: {
! 317: struct nlmsghdr *hdr;
! 318: entry_t *entry;
! 319: u_char *ptr;
! 320: int i;
! 321:
! 322: in->nlmsg_seq = seq;
! 323: in->nlmsg_pid = getpid();
! 324:
! 325: if (this->names)
! 326: {
! 327: DBG3(DBG_KNL, "sending %N %u: %b", this->names, in->nlmsg_type,
! 328: (u_int)seq, in, in->nlmsg_len);
! 329: }
! 330:
! 331: this->mutex->lock(this->mutex);
! 332: if (!write_msg(this, in))
! 333: {
! 334: this->mutex->unlock(this->mutex);
! 335: return FAILED;
! 336: }
! 337:
! 338: INIT(entry,
! 339: .condvar = condvar_create(CONDVAR_TYPE_DEFAULT),
! 340: .hdrs = array_create(0, 0),
! 341: );
! 342: this->entries->put(this->entries, (void*)seq, entry);
! 343:
! 344: while (!entry->complete)
! 345: {
! 346: if (this->parallel &&
! 347: lib->watcher->get_state(lib->watcher) != WATCHER_STOPPED &&
! 348: lib->processor->get_total_threads(lib->processor))
! 349: {
! 350: if (this->timeout)
! 351: {
! 352: if (entry->condvar->timed_wait(entry->condvar, this->mutex,
! 353: this->timeout))
! 354: {
! 355: break;
! 356: }
! 357: }
! 358: else
! 359: {
! 360: entry->condvar->wait(entry->condvar, this->mutex);
! 361: }
! 362: }
! 363: else
! 364: { /* During (de-)initialization, no watcher thread is active.
! 365: * collect responses ourselves. */
! 366: if (read_and_queue(this, TRUE))
! 367: {
! 368: break;
! 369: }
! 370: }
! 371: }
! 372: this->entries->remove(this->entries, (void*)seq);
! 373:
! 374: this->mutex->unlock(this->mutex);
! 375:
! 376: if (!entry->complete)
! 377: { /* timeout */
! 378: destroy_entry(entry);
! 379: return OUT_OF_RES;
! 380: }
! 381:
! 382: for (i = 0, *out_len = 0; i < array_count(entry->hdrs); i++)
! 383: {
! 384: array_get(entry->hdrs, i, &hdr);
! 385: *out_len += NLMSG_ALIGN(hdr->nlmsg_len);
! 386: }
! 387: ptr = malloc(*out_len);
! 388: *out = (struct nlmsghdr*)ptr;
! 389:
! 390: while (array_remove(entry->hdrs, ARRAY_HEAD, &hdr))
! 391: {
! 392: if (this->names)
! 393: {
! 394: DBG3(DBG_KNL, "received %N %u: %b", this->names, hdr->nlmsg_type,
! 395: hdr->nlmsg_seq, hdr, hdr->nlmsg_len);
! 396: }
! 397: memcpy(ptr, hdr, hdr->nlmsg_len);
! 398: ptr += NLMSG_ALIGN(hdr->nlmsg_len);
! 399: free(hdr);
! 400: }
! 401: destroy_entry(entry);
! 402: return SUCCESS;
! 403: }
! 404:
! 405: /**
! 406: * Ignore errors for message types that might have completed previously
! 407: */
! 408: static void ignore_retransmit_error(private_netlink_socket_t *this,
! 409: struct nlmsgerr *err, int type)
! 410: {
! 411: switch (err->error)
! 412: {
! 413: case -EEXIST:
! 414: switch (this->protocol)
! 415: {
! 416: case NETLINK_XFRM:
! 417: switch (type)
! 418: {
! 419: case XFRM_MSG_NEWPOLICY:
! 420: case XFRM_MSG_NEWSA:
! 421: err->error = 0;
! 422: break;
! 423: }
! 424: break;
! 425: case NETLINK_ROUTE:
! 426: switch (type)
! 427: {
! 428: case RTM_NEWADDR:
! 429: case RTM_NEWLINK:
! 430: case RTM_NEWNEIGH:
! 431: case RTM_NEWROUTE:
! 432: case RTM_NEWRULE:
! 433: err->error = 0;
! 434: break;
! 435: }
! 436: break;
! 437: }
! 438: break;
! 439: case -ENOENT:
! 440: switch (this->protocol)
! 441: {
! 442: case NETLINK_XFRM:
! 443: switch (type)
! 444: {
! 445: case XFRM_MSG_DELPOLICY:
! 446: case XFRM_MSG_DELSA:
! 447: err->error = 0;
! 448: break;
! 449: }
! 450: break;
! 451: case NETLINK_ROUTE:
! 452: switch (type)
! 453: {
! 454: case RTM_DELADDR:
! 455: case RTM_DELLINK:
! 456: case RTM_DELNEIGH:
! 457: case RTM_DELROUTE:
! 458: case RTM_DELRULE:
! 459: err->error = 0;
! 460: break;
! 461: }
! 462: break;
! 463: }
! 464: break;
! 465: }
! 466: }
! 467:
! 468: METHOD(netlink_socket_t, netlink_send, status_t,
! 469: private_netlink_socket_t *this, struct nlmsghdr *in, struct nlmsghdr **out,
! 470: size_t *out_len)
! 471: {
! 472: uintptr_t seq;
! 473: u_int try;
! 474:
! 475: seq = ref_get(&this->seq);
! 476:
! 477: for (try = 0; try <= this->retries; ++try)
! 478: {
! 479: struct nlmsghdr *hdr;
! 480: status_t status;
! 481: size_t len;
! 482:
! 483: if (try > 0)
! 484: {
! 485: DBG1(DBG_KNL, "retransmitting Netlink request (%u/%u)",
! 486: try, this->retries);
! 487: }
! 488: status = send_once(this, in, seq, &hdr, &len);
! 489: switch (status)
! 490: {
! 491: case SUCCESS:
! 492: break;
! 493: case OUT_OF_RES:
! 494: continue;
! 495: default:
! 496: return status;
! 497: }
! 498: if (hdr->nlmsg_type == NLMSG_ERROR)
! 499: {
! 500: struct nlmsgerr* err;
! 501:
! 502: err = NLMSG_DATA(hdr);
! 503: if (err->error == -EBUSY)
! 504: {
! 505: free(hdr);
! 506: try--;
! 507: continue;
! 508: }
! 509: if (this->ignore_retransmit_errors && try > 0)
! 510: {
! 511: ignore_retransmit_error(this, err, in->nlmsg_type);
! 512: }
! 513: }
! 514: *out = hdr;
! 515: *out_len = len;
! 516: return SUCCESS;
! 517: }
! 518: DBG1(DBG_KNL, "Netlink request timed out after %u retransmits",
! 519: this->retries);
! 520: return OUT_OF_RES;
! 521: }
! 522:
! 523: METHOD(netlink_socket_t, netlink_send_ack, status_t,
! 524: private_netlink_socket_t *this, struct nlmsghdr *in)
! 525: {
! 526: struct nlmsghdr *out, *hdr;
! 527: size_t len;
! 528:
! 529: if (netlink_send(this, in, &out, &len) != SUCCESS)
! 530: {
! 531: return FAILED;
! 532: }
! 533: hdr = out;
! 534: while (NLMSG_OK(hdr, len))
! 535: {
! 536: switch (hdr->nlmsg_type)
! 537: {
! 538: case NLMSG_ERROR:
! 539: {
! 540: struct nlmsgerr* err = NLMSG_DATA(hdr);
! 541:
! 542: if (err->error)
! 543: {
! 544: if (-err->error == EEXIST)
! 545: { /* do not report existing routes */
! 546: free(out);
! 547: return ALREADY_DONE;
! 548: }
! 549: if (-err->error == ESRCH)
! 550: { /* do not report missing entries */
! 551: free(out);
! 552: return NOT_FOUND;
! 553: }
! 554: DBG1(DBG_KNL, "received netlink error: %s (%d)",
! 555: strerror(-err->error), -err->error);
! 556: free(out);
! 557: return FAILED;
! 558: }
! 559: free(out);
! 560: return SUCCESS;
! 561: }
! 562: default:
! 563: hdr = NLMSG_NEXT(hdr, len);
! 564: continue;
! 565: case NLMSG_DONE:
! 566: break;
! 567: }
! 568: break;
! 569: }
! 570: DBG1(DBG_KNL, "netlink request not acknowledged");
! 571: free(out);
! 572: return FAILED;
! 573: }
! 574:
! 575: METHOD(netlink_socket_t, destroy, void,
! 576: private_netlink_socket_t *this)
! 577: {
! 578: if (this->socket != -1)
! 579: {
! 580: if (this->parallel)
! 581: {
! 582: lib->watcher->remove(lib->watcher, this->socket);
! 583: }
! 584: close(this->socket);
! 585: }
! 586: this->entries->destroy(this->entries);
! 587: this->mutex->destroy(this->mutex);
! 588: free(this);
! 589: }
! 590:
! 591: /*
! 592: * Described in header
! 593: */
! 594: u_int netlink_get_buflen()
! 595: {
! 596: u_int buflen;
! 597:
! 598: buflen = lib->settings->get_int(lib->settings,
! 599: "%s.plugins.kernel-netlink.buflen", 0, lib->ns);
! 600: if (!buflen)
! 601: {
! 602: long pagesize = sysconf(_SC_PAGESIZE);
! 603:
! 604: if (pagesize == -1)
! 605: {
! 606: pagesize = 4096;
! 607: }
! 608: /* base this on NLMSG_GOODSIZE */
! 609: buflen = min(pagesize, 8192);
! 610: }
! 611: return buflen;
! 612: }
! 613:
! 614: /*
! 615: * Described in header
! 616: */
! 617: netlink_socket_t *netlink_socket_create(int protocol, enum_name_t *names,
! 618: bool parallel)
! 619: {
! 620: private_netlink_socket_t *this;
! 621: struct sockaddr_nl addr = {
! 622: .nl_family = AF_NETLINK,
! 623: };
! 624: bool force_buf = FALSE;
! 625: int rcvbuf_size = 0;
! 626:
! 627: INIT(this,
! 628: .public = {
! 629: .send = _netlink_send,
! 630: .send_ack = _netlink_send_ack,
! 631: .destroy = _destroy,
! 632: },
! 633: .seq = 200,
! 634: .mutex = mutex_create(MUTEX_TYPE_RECURSIVE),
! 635: .socket = socket(AF_NETLINK, SOCK_RAW, protocol),
! 636: .entries = hashtable_create(hashtable_hash_ptr, hashtable_equals_ptr, 4),
! 637: .protocol = protocol,
! 638: .names = names,
! 639: .buflen = netlink_get_buflen(),
! 640: .timeout = lib->settings->get_int(lib->settings,
! 641: "%s.plugins.kernel-netlink.timeout", 0, lib->ns),
! 642: .retries = lib->settings->get_int(lib->settings,
! 643: "%s.plugins.kernel-netlink.retries", 0, lib->ns),
! 644: .ignore_retransmit_errors = lib->settings->get_bool(lib->settings,
! 645: "%s.plugins.kernel-netlink.ignore_retransmit_errors",
! 646: FALSE, lib->ns),
! 647: .parallel = parallel,
! 648: );
! 649:
! 650: if (this->socket == -1)
! 651: {
! 652: DBG1(DBG_KNL, "unable to create netlink socket: %s (%d)",
! 653: strerror(errno), errno);
! 654: destroy(this);
! 655: return NULL;
! 656: }
! 657: if (bind(this->socket, (struct sockaddr*)&addr, sizeof(addr)))
! 658: {
! 659: DBG1(DBG_KNL, "unable to bind netlink socket: %s (%d)",
! 660: strerror(errno), errno);
! 661: destroy(this);
! 662: return NULL;
! 663: }
! 664: rcvbuf_size = lib->settings->get_int(lib->settings,
! 665: "%s.plugins.kernel-netlink.receive_buffer_size",
! 666: rcvbuf_size, lib->ns);
! 667: if (rcvbuf_size)
! 668: {
! 669: int optname;
! 670:
! 671: force_buf = lib->settings->get_bool(lib->settings,
! 672: "%s.plugins.kernel-netlink.force_receive_buffer_size",
! 673: force_buf, lib->ns);
! 674: optname = force_buf ? SO_RCVBUFFORCE : SO_RCVBUF;
! 675:
! 676: if (setsockopt(this->socket, SOL_SOCKET, optname, &rcvbuf_size,
! 677: sizeof(rcvbuf_size)) == -1)
! 678: {
! 679: DBG1(DBG_KNL, "failed to %supdate receive buffer size to %d: %s",
! 680: force_buf ? "forcibly " : "", rcvbuf_size, strerror(errno));
! 681: }
! 682: }
! 683: if (this->parallel)
! 684: {
! 685: lib->watcher->add(lib->watcher, this->socket, WATCHER_READ, watch, this);
! 686: }
! 687:
! 688: return &this->public;
! 689: }
! 690:
! 691: /*
! 692: * Described in header
! 693: */
! 694: void netlink_add_attribute(struct nlmsghdr *hdr, int rta_type, chunk_t data,
! 695: size_t buflen)
! 696: {
! 697: struct rtattr *rta;
! 698:
! 699: if (NLMSG_ALIGN(hdr->nlmsg_len) + RTA_LENGTH(data.len) > buflen)
! 700: {
! 701: DBG1(DBG_KNL, "unable to add attribute, buffer too small");
! 702: return;
! 703: }
! 704:
! 705: rta = (struct rtattr*)(((char*)hdr) + NLMSG_ALIGN(hdr->nlmsg_len));
! 706: rta->rta_type = rta_type;
! 707: rta->rta_len = RTA_LENGTH(data.len);
! 708: memcpy(RTA_DATA(rta), data.ptr, data.len);
! 709: hdr->nlmsg_len = NLMSG_ALIGN(hdr->nlmsg_len) + RTA_ALIGN(rta->rta_len);
! 710: }
! 711:
! 712: /**
! 713: * Add an attribute to the given Netlink message
! 714: */
! 715: static struct rtattr *add_rtattr(struct nlmsghdr *hdr, int buflen, int type,
! 716: int len)
! 717: {
! 718: struct rtattr *rta;
! 719:
! 720: if (NLMSG_ALIGN(hdr->nlmsg_len) + RTA_LENGTH(len) > buflen)
! 721: {
! 722: DBG1(DBG_KNL, "unable to add attribute, buffer too small");
! 723: return NULL;
! 724: }
! 725:
! 726: rta = ((void*)hdr) + NLMSG_ALIGN(hdr->nlmsg_len);
! 727: rta->rta_type = type;
! 728: rta->rta_len = RTA_LENGTH(len);
! 729: hdr->nlmsg_len = NLMSG_ALIGN(hdr->nlmsg_len) + RTA_ALIGN(rta->rta_len);
! 730: return rta;
! 731: }
! 732:
! 733: /*
! 734: * Described in header
! 735: */
! 736: void *netlink_nested_start(struct nlmsghdr *hdr, size_t buflen, int type)
! 737: {
! 738: return add_rtattr(hdr, buflen, type, 0);
! 739: }
! 740:
! 741: /*
! 742: * Described in header
! 743: */
! 744: void netlink_nested_end(struct nlmsghdr *hdr, void *attr)
! 745: {
! 746: struct rtattr *rta = attr;
! 747: void *end;
! 748:
! 749: if (attr)
! 750: {
! 751: end = (char*)hdr + NLMSG_ALIGN(hdr->nlmsg_len);
! 752: rta->rta_len = end - attr;
! 753: }
! 754: }
! 755:
! 756: /*
! 757: * Described in header
! 758: */
! 759: void *netlink_reserve(struct nlmsghdr *hdr, int buflen, int type, int len)
! 760: {
! 761: struct rtattr *rta;
! 762:
! 763: rta = add_rtattr(hdr, buflen, type, len);
! 764: if (!rta)
! 765: {
! 766: return NULL;
! 767: }
! 768: return RTA_DATA(rta);
! 769: }
! 770:
! 771: /*
! 772: * Described in header
! 773: */
! 774: void route_entry_destroy(route_entry_t *this)
! 775: {
! 776: free(this->if_name);
! 777: DESTROY_IF(this->src_ip);
! 778: DESTROY_IF(this->gateway);
! 779: chunk_free(&this->dst_net);
! 780: free(this);
! 781: }
! 782:
! 783: /*
! 784: * Described in header
! 785: */
! 786: route_entry_t *route_entry_clone(const route_entry_t *this)
! 787: {
! 788: route_entry_t *route;
! 789:
! 790: INIT(route,
! 791: .if_name = strdupnull(this->if_name),
! 792: .src_ip = this->src_ip ? this->src_ip->clone(this->src_ip) : NULL,
! 793: .gateway = this->gateway ? this->gateway->clone(this->gateway) : NULL,
! 794: .dst_net = chunk_clone(this->dst_net),
! 795: .prefixlen = this->prefixlen,
! 796: .pass = this->pass,
! 797: );
! 798: return route;
! 799: }
! 800:
! 801: /*
! 802: * Described in header
! 803: */
! 804: u_int route_entry_hash(const route_entry_t *this)
! 805: {
! 806: return chunk_hash_inc(chunk_from_thing(this->prefixlen),
! 807: chunk_hash(this->dst_net));
! 808: }
! 809:
! 810: /**
! 811: * Compare two IP addresses, also accept it if both are NULL
! 812: */
! 813: static bool addrs_null_or_equal(host_t *a, host_t *b)
! 814: {
! 815: return (!a && !b) || (a && b && a->ip_equals(a, b));
! 816: }
! 817:
! 818: /*
! 819: * Described in header
! 820: */
! 821: bool route_entry_equals(const route_entry_t *a, const route_entry_t *b)
! 822: {
! 823: return streq(a->if_name, b->if_name) &&
! 824: a->pass == b->pass &&
! 825: a->prefixlen == b->prefixlen &&
! 826: chunk_equals(a->dst_net, b->dst_net) &&
! 827: addrs_null_or_equal(a->src_ip, b->src_ip) &&
! 828: addrs_null_or_equal(a->gateway, b->gateway);
! 829: }
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to kernel_netlink_shared.c CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [ELWIX - Embedded LightWeight unIX -] / embedaddon / strongswan / src / libcharon / plugins / kernel_netlink