Annotation of fwsync/driver/fwsync_workers.c, revision 1.7
1.1 misho 1: /*************************************************************************
2: * (C) 2022 CloudSigma AG - Sofia/Bulgaria
3: * by Michael Pounov <misho@elwix.org>
4: **************************************************************************/
5: #include "fwsync.h"
6:
7:
1.6 misho 8: static int
1.7 ! misho 9: fwsync_add_state_4(struct ipfw_flow_id *fid, u_int ruleid, u_short rulenum)
1.6 misho 10: {
1.7 ! misho 11: struct ip_fw *rule = NULL;
! 12: struct ip_fw_args args;
! 13: struct ipfw_dyn_info info;
! 14: ipfw_insn cmd;
! 15:
1.6 misho 16: DTRACE();
17:
1.7 ! misho 18: memset(&cmd, 0, sizeof cmd);
! 19: cmd.opcode = O_KEEP_STATE;
! 20: memset(&info, 0, sizeof info);
! 21: memset(&args, 0, sizeof args);
! 22: memcpy(&args.f_id, fid, sizeof args.f_id);
! 23:
! 24: rule = ipfw_dyn_lookup_state(&args, NULL, 0, &cmd, &info);
! 25: return ipfw_dyn_install_sync_state(fid, rule, ruleid, rulenum);
1.6 misho 26: }
27:
28: static int
1.7 ! misho 29: fwsync_add_state_6(struct ipfw_flow_id *fid, u_int ruleid, u_short rulenum)
1.6 misho 30: {
31: DTRACE();
32:
33: return 0;
34: }
35:
36: int
37: fwsync_add_state(const struct fws_proto *pkt)
38: {
1.7 ! misho 39: struct ipfw_flow_id fid;
! 40:
1.6 misho 41: DTRACE();
42:
1.7 ! misho 43: memset(&fid, 0, sizeof fid);
! 44: fid.fib = pkt->fws_fib;
! 45: fid.proto = pkt->fws_proto;
! 46: fid.addr_type = pkt->fws_addrtype;
! 47: fid.src_port = pkt->fws_sport;
! 48: fid.dst_port = pkt->fws_dport;
! 49: switch (pkt->fws_addrtype) {
! 50: case 4:
! 51: fid.src_ip = pkt->fws_saddr.s_addr;
! 52: fid.dst_ip = pkt->fws_daddr.s_addr;
! 53: break;
! 54: case 6:
! 55: memcpy(&fid.src_ip6, &pkt->fws_saddr6, sizeof fid.src_ip6);
! 56: memcpy(&fid.dst_ip6, &pkt->fws_daddr6, sizeof fid.dst_ip6);
! 57: fid.flow_id6 = pkt->fws_scopeid;
! 58: break;
! 59: default:
! 60: return EINVAL;
! 61: }
! 62:
1.6 misho 63: if (pkt->fws_addrtype == 4)
1.7 ! misho 64: fwsync_add_state_4(&fid, pkt->fws_ruleid, pkt->fws_rulenum);
1.6 misho 65: else if (pkt->fws_addrtype == 6)
1.7 ! misho 66: fwsync_add_state_6(&fid, pkt->fws_ruleid, pkt->fws_rulenum);
1.6 misho 67: else
68: return EINVAL;
69:
70: return 0;
71: }
72:
73: int
74: fwsync_add_alias(const struct fws_proto *pkt)
75: {
76: DTRACE();
77:
78: return 0;
79: }
80:
81:
1.2 misho 82: void
1.3 misho 83: fwsync_sndpkt_handler(void *context, int pending)
1.1 misho 84: {
1.2 misho 85: struct fws_sndpkt *pkt;
86: struct mbuf *m2, *m;
1.1 misho 87: int e;
88:
89: DTRACE();
90:
1.2 misho 91: printf("pending=%d\n", pending);
92:
93: do {
94: mtx_lock(&fws_mtx_c);
95: pkt = TAILQ_FIRST(&fwsync_sndpkt);
1.4 misho 96: if (pkt)
97: TAILQ_REMOVE(&fwsync_sndpkt, pkt, sp_next);
1.2 misho 98: mtx_unlock(&fws_mtx_c);
99:
1.4 misho 100: if (!pkt) /* sending queue is empty */
101: break;
102:
103: if (!(fws_cfg.cfg.on & CFG_SYNC_COLLECTOR)) {
104: free(pkt, M_FWSYNC);
1.2 misho 105: continue;
1.4 misho 106: }
1.2 misho 107:
108: m = m_gethdr(M_NOWAIT, MT_DATA);
1.4 misho 109: if (!m) {
110: free(pkt, M_FWSYNC);
1.2 misho 111: continue;
1.4 misho 112: }
1.2 misho 113:
114: memcpy(mtod(m, struct fws_proto *), &pkt->sp_proto, sizeof pkt->sp_proto);
115: m->m_len = sizeof pkt->sp_proto;
116: m_fixhdr(m);
117:
1.1 misho 118: if ((fws_ctx.config & (CTX_COLLECTOR_2_ONLINE | CTX_COLLECTOR_2_READY)) ==
119: (CTX_COLLECTOR_2_ONLINE | CTX_COLLECTOR_2_READY)) {
120: m2 = m_copypacket(m, M_NOWAIT);
121: if (!m2) {
122: printf("error in copypacket for second collector\n");
123: goto out;
124: }
125: e = sosend(fws_ctx.sockz[CFG_SYNC_ADDR_COLLECTOR_2],
126: &fws_cfg.cfg_addr[CFG_SYNC_ADDR_COLLECTOR_2].addr, NULL,
127: m2, NULL, 0, curthread);
1.2 misho 128: if (e && e != EAGAIN)
1.1 misho 129: printf("error in collector %d handler #%d\n", CFG_SYNC_ADDR_COLLECTOR_2, e);
130: }
131:
132: if ((fws_ctx.config & (CTX_COLLECTOR_1_ONLINE | CTX_COLLECTOR_1_READY)) ==
133: (CTX_COLLECTOR_1_ONLINE | CTX_COLLECTOR_1_READY)) {
134: m2 = m_copypacket(m, M_NOWAIT);
135: if (!m2) {
136: printf("error in copypacket for first collector\n");
137: goto out;
138: }
139: e = sosend(fws_ctx.sockz[CFG_SYNC_ADDR_COLLECTOR_1],
140: &fws_cfg.cfg_addr[CFG_SYNC_ADDR_COLLECTOR_1].addr, NULL,
141: m2, NULL, 0, curthread);
1.2 misho 142: if (e && e != EAGAIN)
1.1 misho 143: printf("error in collector %d handler #%d\n", CFG_SYNC_ADDR_COLLECTOR_1, e);
144: }
145: out:
1.2 misho 146: m_freem(m);
1.4 misho 147: free(pkt, M_FWSYNC);
1.2 misho 148: } while (--pending);
1.1 misho 149: }
150:
151: int
1.7 ! misho 152: fwsync_state_handler(const void *arg, const void *extdata)
1.1 misho 153: {
1.4 misho 154: const struct ipfw_flow_id *pkt = arg;
1.7 ! misho 155: const struct ipfw_dyn_hook_extdata *edata = extdata;
1.1 misho 156: struct fws_proto *spkt;
1.2 misho 157: struct fws_sndpkt *p;
1.1 misho 158:
159: DTRACE();
160:
1.4 misho 161: if (!pkt || pkt->addr_type == 1)
1.1 misho 162: return 0; /* skip ethernet packet */
163:
1.2 misho 164: mtx_lock(&fws_mtx_c);
165:
1.5 misho 166: p = malloc(sizeof(struct fws_sndpkt), M_FWSYNC, M_NOWAIT | M_ZERO);
1.2 misho 167: if (!p) {
168: mtx_unlock(&fws_mtx_c);
169: return 0;
170: } else
171: spkt = &p->sp_proto;
1.1 misho 172:
173: spkt->fws_version = FWS_PKTVER_STATE;
174: spkt->fws_fib = pkt->fib;
1.7 ! misho 175: spkt->fws_ruleid = edata->ruleid;
! 176: spkt->fws_rulenum = edata->rulenum;
1.1 misho 177: spkt->fws_proto = pkt->proto;
178: spkt->fws_addrtype = pkt->addr_type;
179: spkt->fws_sport = pkt->src_port;
180: spkt->fws_dport = pkt->dst_port;
181:
182: switch (pkt->addr_type) {
183: case 4:
184: spkt->fws_saddr.s_addr = pkt->src_ip;
185: spkt->fws_daddr.s_addr = pkt->dst_ip;
186: spkt->fws_scopeid = 0;
187: break;
188: case 6:
189: memcpy(&spkt->fws_saddr6, &pkt->src_ip6, sizeof spkt->fws_saddr6);
190: memcpy(&spkt->fws_daddr6, &pkt->dst_ip6, sizeof spkt->fws_daddr6);
191: spkt->fws_scopeid = pkt->flow_id6;
192: break;
193: default:
1.2 misho 194: free(p, M_FWSYNC);
195: mtx_unlock(&fws_mtx_c);
196: return EINVAL;
1.1 misho 197: }
198:
1.2 misho 199: TAILQ_INSERT_TAIL(&fwsync_sndpkt, p, sp_next);
200:
201: mtx_unlock(&fws_mtx_c);
202:
203: taskqueue_enqueue(fws_tq, &fws_sndpkt_task);
1.1 misho 204: return 0;
205: }
206:
207: int
1.7 ! misho 208: fwsync_alias_handler(const void *arg, const void *extdata)
1.1 misho 209: {
1.4 misho 210: const struct alias_link *lnk = arg;
211: struct fws_proto *spkt;
212: struct fws_sndpkt *p;
213:
1.1 misho 214: DTRACE();
215:
1.4 misho 216: if (!lnk || lnk->link_type >= IPPROTO_MAX)
217: return 0;
218:
219: mtx_lock(&fws_mtx_c);
220:
1.5 misho 221: p = malloc(sizeof(struct fws_sndpkt), M_FWSYNC, M_NOWAIT | M_ZERO);
1.4 misho 222: if (!p) {
223: mtx_unlock(&fws_mtx_c);
224: return 0;
225: } else
226: spkt = &p->sp_proto;
227:
228: spkt->fws_version = FWS_PKTVER_ALIAS;
229: spkt->fws_proto = lnk->link_type;
230: spkt->fws_addrtype = 4;
231: spkt->fws_sport = lnk->src_port;
232: spkt->fws_dport = lnk->dst_port;
233: spkt->fws_aport = lnk->alias_port;
234: spkt->fws_pport = lnk->proxy_port;
235: spkt->fws_saddr.s_addr = lnk->src_addr.s_addr;
236: spkt->fws_daddr.s_addr = lnk->dst_addr.s_addr;
237: spkt->fws_aaddr.s_addr = lnk->alias_addr.s_addr;
238: spkt->fws_paddr.s_addr = lnk->proxy_addr.s_addr;
239:
240: TAILQ_INSERT_TAIL(&fwsync_sndpkt, p, sp_next);
241:
242: mtx_unlock(&fws_mtx_c);
243:
244: taskqueue_enqueue(fws_tq, &fws_sndpkt_task);
1.1 misho 245: return 0;
246: }
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>