Annotation of fwsync/driver/fwsync_workers.c, revision 1.12
1.1 misho 1: /*************************************************************************
2: * (C) 2022 CloudSigma AG - Sofia/Bulgaria
3: * by Michael Pounov <misho@elwix.org>
4: **************************************************************************/
5: #include "fwsync.h"
6:
7:
1.6 misho 8: int
9: fwsync_add_state(const struct fws_proto *pkt)
10: {
1.9 misho 11: struct fws_sndpkt *p;
1.7 misho 12:
1.6 misho 13: DTRACE();
14:
1.9 misho 15: if (!pkt || pkt->fws_addrtype == 1)
16: return 0; /* skip ethernet packet */
1.7 misho 17:
1.9 misho 18: p = malloc(sizeof(struct fws_sndpkt), M_FWSYNC, M_NOWAIT | M_ZERO);
19: if (!p) {
20: return ENOMEM;
21: } else
22: memcpy(&p->sp_proto, pkt, sizeof(struct fws_proto));
1.6 misho 23:
1.9 misho 24: mtx_lock(&fws_mtx_u);
25: TAILQ_INSERT_TAIL(&fwsync_updpkt, p, sp_next);
26: mtx_unlock(&fws_mtx_u);
1.6 misho 27: return 0;
28: }
29:
1.9 misho 30:
1.6 misho 31: int
32: fwsync_add_alias(const struct fws_proto *pkt)
33: {
1.11 misho 34: struct fws_sndpkt *p;
35:
1.6 misho 36: DTRACE();
37:
1.11 misho 38: if (!pkt || pkt->fws_addrtype == 1)
39: return 0; /* skip ethernet packet */
40:
41: p = malloc(sizeof(struct fws_sndpkt), M_FWSYNC, M_NOWAIT | M_ZERO);
42: if (!p) {
43: return ENOMEM;
44: } else
45: memcpy(&p->sp_proto, pkt, sizeof(struct fws_proto));
46:
47: mtx_lock(&fws_mtx_n);
48: TAILQ_INSERT_TAIL(&fwsync_natpkt, p, sp_next);
49: mtx_unlock(&fws_mtx_n);
1.6 misho 50: return 0;
51: }
52:
53:
1.2 misho 54: void
1.3 misho 55: fwsync_sndpkt_handler(void *context, int pending)
1.1 misho 56: {
1.2 misho 57: struct fws_sndpkt *pkt;
58: struct mbuf *m2, *m;
1.1 misho 59: int e;
60:
61: DTRACE();
62:
1.2 misho 63: do {
64: mtx_lock(&fws_mtx_c);
65: pkt = TAILQ_FIRST(&fwsync_sndpkt);
1.4 misho 66: if (pkt)
67: TAILQ_REMOVE(&fwsync_sndpkt, pkt, sp_next);
1.2 misho 68: mtx_unlock(&fws_mtx_c);
69:
1.4 misho 70: if (!pkt) /* sending queue is empty */
71: break;
72:
73: if (!(fws_cfg.cfg.on & CFG_SYNC_COLLECTOR)) {
74: free(pkt, M_FWSYNC);
1.2 misho 75: continue;
1.4 misho 76: }
1.2 misho 77:
78: m = m_gethdr(M_NOWAIT, MT_DATA);
1.4 misho 79: if (!m) {
80: free(pkt, M_FWSYNC);
1.2 misho 81: continue;
1.4 misho 82: }
1.2 misho 83:
84: memcpy(mtod(m, struct fws_proto *), &pkt->sp_proto, sizeof pkt->sp_proto);
85: m->m_len = sizeof pkt->sp_proto;
86: m_fixhdr(m);
87:
1.1 misho 88: if ((fws_ctx.config & (CTX_COLLECTOR_2_ONLINE | CTX_COLLECTOR_2_READY)) ==
89: (CTX_COLLECTOR_2_ONLINE | CTX_COLLECTOR_2_READY)) {
90: m2 = m_copypacket(m, M_NOWAIT);
91: if (!m2) {
92: printf("error in copypacket for second collector\n");
93: goto out;
94: }
95: e = sosend(fws_ctx.sockz[CFG_SYNC_ADDR_COLLECTOR_2],
96: &fws_cfg.cfg_addr[CFG_SYNC_ADDR_COLLECTOR_2].addr, NULL,
97: m2, NULL, 0, curthread);
1.2 misho 98: if (e && e != EAGAIN)
1.1 misho 99: printf("error in collector %d handler #%d\n", CFG_SYNC_ADDR_COLLECTOR_2, e);
100: }
101:
102: if ((fws_ctx.config & (CTX_COLLECTOR_1_ONLINE | CTX_COLLECTOR_1_READY)) ==
103: (CTX_COLLECTOR_1_ONLINE | CTX_COLLECTOR_1_READY)) {
104: m2 = m_copypacket(m, M_NOWAIT);
105: if (!m2) {
106: printf("error in copypacket for first collector\n");
107: goto out;
108: }
109: e = sosend(fws_ctx.sockz[CFG_SYNC_ADDR_COLLECTOR_1],
110: &fws_cfg.cfg_addr[CFG_SYNC_ADDR_COLLECTOR_1].addr, NULL,
111: m2, NULL, 0, curthread);
1.2 misho 112: if (e && e != EAGAIN)
1.1 misho 113: printf("error in collector %d handler #%d\n", CFG_SYNC_ADDR_COLLECTOR_1, e);
114: }
115: out:
1.2 misho 116: m_freem(m);
1.4 misho 117: free(pkt, M_FWSYNC);
1.2 misho 118: } while (--pending);
1.1 misho 119: }
120:
121: int
1.7 misho 122: fwsync_state_handler(const void *arg, const void *extdata)
1.1 misho 123: {
1.4 misho 124: const struct ipfw_flow_id *pkt = arg;
1.7 misho 125: const struct ipfw_dyn_hook_extdata *edata = extdata;
1.1 misho 126: struct fws_proto *spkt;
1.2 misho 127: struct fws_sndpkt *p;
1.1 misho 128:
129: DTRACE();
130:
1.4 misho 131: if (!pkt || pkt->addr_type == 1)
1.1 misho 132: return 0; /* skip ethernet packet */
133:
1.2 misho 134: mtx_lock(&fws_mtx_c);
135:
1.5 misho 136: p = malloc(sizeof(struct fws_sndpkt), M_FWSYNC, M_NOWAIT | M_ZERO);
1.2 misho 137: if (!p) {
138: mtx_unlock(&fws_mtx_c);
139: return 0;
140: } else
141: spkt = &p->sp_proto;
1.1 misho 142:
143: spkt->fws_version = FWS_PKTVER_STATE;
144: spkt->fws_fib = pkt->fib;
1.9 misho 145: spkt->fws_cmdtype = edata->cmdtype;
146: spkt->fws_kidx = edata->kidx;
1.7 misho 147: spkt->fws_ruleid = edata->ruleid;
148: spkt->fws_rulenum = edata->rulenum;
1.1 misho 149: spkt->fws_proto = pkt->proto;
150: spkt->fws_addrtype = pkt->addr_type;
151: spkt->fws_sport = pkt->src_port;
152: spkt->fws_dport = pkt->dst_port;
153:
154: switch (pkt->addr_type) {
155: case 4:
156: spkt->fws_saddr.s_addr = pkt->src_ip;
157: spkt->fws_daddr.s_addr = pkt->dst_ip;
158: spkt->fws_scopeid = 0;
159: break;
160: case 6:
161: memcpy(&spkt->fws_saddr6, &pkt->src_ip6, sizeof spkt->fws_saddr6);
162: memcpy(&spkt->fws_daddr6, &pkt->dst_ip6, sizeof spkt->fws_daddr6);
163: spkt->fws_scopeid = pkt->flow_id6;
164: break;
165: default:
1.2 misho 166: free(p, M_FWSYNC);
167: mtx_unlock(&fws_mtx_c);
168: return EINVAL;
1.1 misho 169: }
170:
1.2 misho 171: TAILQ_INSERT_TAIL(&fwsync_sndpkt, p, sp_next);
172:
173: mtx_unlock(&fws_mtx_c);
174:
175: taskqueue_enqueue(fws_tq, &fws_sndpkt_task);
1.1 misho 176: return 0;
177: }
178:
179: int
1.7 misho 180: fwsync_alias_handler(const void *arg, const void *extdata)
1.1 misho 181: {
1.4 misho 182: const struct alias_link *lnk = arg;
183: struct fws_proto *spkt;
184: struct fws_sndpkt *p;
185:
1.1 misho 186: DTRACE();
187:
1.4 misho 188: if (!lnk || lnk->link_type >= IPPROTO_MAX)
189: return 0;
190:
191: mtx_lock(&fws_mtx_c);
192:
1.5 misho 193: p = malloc(sizeof(struct fws_sndpkt), M_FWSYNC, M_NOWAIT | M_ZERO);
1.4 misho 194: if (!p) {
195: mtx_unlock(&fws_mtx_c);
196: return 0;
197: } else
198: spkt = &p->sp_proto;
199:
200: spkt->fws_version = FWS_PKTVER_ALIAS;
201: spkt->fws_proto = lnk->link_type;
202: spkt->fws_addrtype = 4;
203: spkt->fws_sport = lnk->src_port;
204: spkt->fws_dport = lnk->dst_port;
205: spkt->fws_aport = lnk->alias_port;
206: spkt->fws_pport = lnk->proxy_port;
207: spkt->fws_saddr.s_addr = lnk->src_addr.s_addr;
208: spkt->fws_daddr.s_addr = lnk->dst_addr.s_addr;
209: spkt->fws_aaddr.s_addr = lnk->alias_addr.s_addr;
210: spkt->fws_paddr.s_addr = lnk->proxy_addr.s_addr;
211:
212: TAILQ_INSERT_TAIL(&fwsync_sndpkt, p, sp_next);
213:
214: mtx_unlock(&fws_mtx_c);
215:
216: taskqueue_enqueue(fws_tq, &fws_sndpkt_task);
1.1 misho 217: return 0;
218: }
1.9 misho 219:
220: int
221: fwsync_state_sync(const void *arg, const void *extdata)
222: {
223: struct fws_sndpkt *pkt;
224: struct ipfw_flow_id fid;
1.10 misho 225: struct ip_fw *rule;
226: int f_pos;
227: struct ip_fw_chain *chain = &V_layer3_chain;
1.9 misho 228:
229: DTRACE();
230:
231: mtx_lock(&fws_mtx_u);
232: pkt = TAILQ_FIRST(&fwsync_updpkt);
233: if (pkt)
234: TAILQ_REMOVE(&fwsync_updpkt, pkt, sp_next);
235: mtx_unlock(&fws_mtx_u);
236:
237: if (!pkt) /* update queue is empty */
238: return 0;
239:
240: if (!(fws_cfg.cfg.on & CFG_SYNC_EDGE)) {
241: free(pkt, M_FWSYNC);
242: return EAGAIN;
243: }
244:
245: memset(&fid, 0, sizeof fid);
246: fid.fib = pkt->sp_proto.fws_fib;
247: fid.proto = pkt->sp_proto.fws_proto;
248: fid.addr_type = pkt->sp_proto.fws_addrtype;
249: fid.src_port = pkt->sp_proto.fws_sport;
250: fid.dst_port = pkt->sp_proto.fws_dport;
251: switch (pkt->sp_proto.fws_addrtype) {
252: case 4:
253: fid.src_ip = pkt->sp_proto.fws_saddr.s_addr;
254: fid.dst_ip = pkt->sp_proto.fws_daddr.s_addr;
255: break;
256: case 6:
257: memcpy(&fid.src_ip6, &pkt->sp_proto.fws_saddr6, sizeof fid.src_ip6);
258: memcpy(&fid.dst_ip6, &pkt->sp_proto.fws_daddr6, sizeof fid.dst_ip6);
259: fid.flow_id6 = pkt->sp_proto.fws_scopeid;
260: break;
261: default:
262: free(pkt, M_FWSYNC);
263: return EINVAL;
264: }
265:
1.10 misho 266: f_pos = ipfw_find_rule(chain, pkt->sp_proto.fws_ruleid, pkt->sp_proto.fws_rulenum);
267: rule = chain->map[f_pos];
268: ipfw_dyn_install_sync_state(&fid, rule,
269: pkt->sp_proto.fws_ruleid, pkt->sp_proto.fws_rulenum,
270: pkt->sp_proto.fws_kidx, pkt->sp_proto.fws_cmdtype);
1.9 misho 271:
272: free(pkt, M_FWSYNC);
273: return 0;
274: }
1.12 ! misho 275:
! 276: int
! 277: fwsync_alias_sync(const void *arg, const void *extdata)
! 278: {
! 279: struct fws_sndpkt *pkt;
! 280:
! 281: DTRACE();
! 282:
! 283: mtx_lock(&fws_mtx_n);
! 284: pkt = TAILQ_FIRST(&fwsync_natpkt);
! 285: if (pkt)
! 286: TAILQ_REMOVE(&fwsync_natpkt, pkt, sp_next);
! 287: mtx_unlock(&fws_mtx_n);
! 288:
! 289: if (!pkt) /* update queue is empty */
! 290: return 0;
! 291:
! 292: if (!(fws_cfg.cfg.on & CFG_SYNC_EDGE)) {
! 293: free(pkt, M_FWSYNC);
! 294: return EAGAIN;
! 295: }
! 296:
! 297: // TODO: xxx
! 298:
! 299: free(pkt, M_FWSYNC);
! 300: return 0;
! 301: }
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>