123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357 |
- #include "ClatUtils.h"
- #include <arpa/inet.h>
- #include <errno.h>
- #include <linux/if.h>
- #include <linux/netlink.h>
- #include <linux/pkt_cls.h>
- #include <linux/pkt_sched.h>
- #include <linux/rtnetlink.h>
- #include <sys/ioctl.h>
- #include <sys/socket.h>
- #include <sys/types.h>
- #include <unistd.h>
- #define LOG_TAG "ClatUtils"
- #include <log/log.h>
- #include "NetlinkCommands.h"
- #include "android-base/unique_fd.h"
- #include "bpf/BpfUtils.h"
- #include "netdbpf/bpf_shared.h"
- namespace android {
- namespace net {
- int hardwareAddressType(const std::string& interface) {
- base::unique_fd ufd(socket(AF_INET6, SOCK_DGRAM | SOCK_CLOEXEC, 0));
- if (ufd < 0) {
- const int err = errno;
- ALOGE("socket(AF_INET6, SOCK_DGRAM | SOCK_CLOEXEC, 0)");
- return -err;
- };
- struct ifreq ifr = {};
-
-
-
-
-
-
- strncpy(ifr.ifr_name, interface.c_str(), sizeof(ifr.ifr_name));
- if (ioctl(ufd, SIOCGIFHWADDR, &ifr, sizeof(ifr))) return -errno;
- return ifr.ifr_hwaddr.sa_family;
- }
- int getClatIngressMapFd(void) {
- const int fd = bpf::bpfFdGet(CLAT_INGRESS_MAP_PATH, 0);
- return (fd == -1) ? -errno : fd;
- }
- int getClatIngressProgFd(bool with_ethernet_header) {
- const int fd = bpf::bpfFdGet(
- with_ethernet_header ? CLAT_INGRESS_PROG_ETHER_PATH : CLAT_INGRESS_PROG_RAWIP_PATH, 0);
- return (fd == -1) ? -errno : fd;
- }
- int openNetlinkSocket(void) {
- base::unique_fd fd(socket(AF_NETLINK, SOCK_RAW | SOCK_CLOEXEC, NETLINK_ROUTE));
- if (fd == -1) {
- const int err = errno;
- ALOGE("socket(AF_NETLINK, SOCK_RAW | SOCK_CLOEXEC, NETLINK_ROUTE)");
- return -err;
- }
- int rv;
- const int on = 1;
- rv = setsockopt(fd, SOL_NETLINK, NETLINK_CAP_ACK, &on, sizeof(on));
- if (rv) ALOGE("setsockopt(fd, SOL_NETLINK, NETLINK_CAP_ACK, %d)", on);
-
- rv = bind(fd, (const struct sockaddr*)&KERNEL_NLADDR, sizeof(KERNEL_NLADDR));
- if (rv) {
- const int err = errno;
- ALOGE("bind(fd, {AF_NETLINK, 0, 0})");
- return -err;
- }
-
- rv = connect(fd, (const struct sockaddr*)&KERNEL_NLADDR, sizeof(KERNEL_NLADDR));
- if (rv) {
- const int err = errno;
- ALOGE("connect(fd, {AF_NETLINK, 0, 0})");
- return -err;
- }
- return fd.release();
- }
- int processNetlinkResponse(int fd) {
- struct {
- nlmsghdr h;
- nlmsgerr e;
- char buf[256];
- } resp = {};
- const int rv = recv(fd, &resp, sizeof(resp), MSG_TRUNC);
- if (rv == -1) {
- const int err = errno;
- ALOGE("recv() failed");
- return -err;
- }
- if (rv < (int)NLMSG_SPACE(sizeof(struct nlmsgerr))) {
- ALOGE("recv() returned short packet: %d", rv);
- return -EMSGSIZE;
- }
- if (resp.h.nlmsg_len != (unsigned)rv) {
- ALOGE("recv() returned invalid header length: %d != %d", resp.h.nlmsg_len, rv);
- return -EBADMSG;
- }
- if (resp.h.nlmsg_type != NLMSG_ERROR) {
- ALOGE("recv() did not return NLMSG_ERROR message: %d", resp.h.nlmsg_type);
- return -EBADMSG;
- }
- return resp.e.error;
- }
- int doTcQdiscClsact(int fd, int ifIndex, __u16 nlMsgType, __u16 nlMsgFlags) {
-
-
-
- #define CLSACT "clsact"
- static const char clsact[] = CLSACT;
-
- #define ASCIIZ_LEN_CLSACT sizeof(clsact)
- const struct {
- nlmsghdr n;
- tcmsg t;
- struct {
- nlattr attr;
- char str[NLMSG_ALIGN(ASCIIZ_LEN_CLSACT)];
- } kind;
- } req = {
- .n =
- {
- .nlmsg_len = sizeof(req),
- .nlmsg_type = nlMsgType,
- .nlmsg_flags = static_cast<__u16>(NETLINK_REQUEST_FLAGS | nlMsgFlags),
- },
- .t =
- {
- .tcm_family = AF_UNSPEC,
- .tcm_ifindex = ifIndex,
- .tcm_handle = TC_H_MAKE(TC_H_CLSACT, 0),
- .tcm_parent = TC_H_CLSACT,
- },
- .kind =
- {
- .attr =
- {
- .nla_len = NLA_HDRLEN + ASCIIZ_LEN_CLSACT,
- .nla_type = TCA_KIND,
- },
- .str = CLSACT,
- },
- };
- #undef ASCIIZ_LEN_CLSACT
- #undef CLSACT
- const int rv = send(fd, &req, sizeof(req), 0);
- if (rv == -1) return -errno;
- if (rv != sizeof(req)) return -EMSGSIZE;
- return processNetlinkResponse(fd);
- }
- int tcQdiscAddDevClsact(int fd, int ifIndex) {
- return doTcQdiscClsact(fd, ifIndex, RTM_NEWQDISC, NLM_F_EXCL | NLM_F_CREATE);
- }
- int tcQdiscReplaceDevClsact(int fd, int ifIndex) {
- return doTcQdiscClsact(fd, ifIndex, RTM_NEWQDISC, NLM_F_CREATE | NLM_F_REPLACE);
- }
- int tcQdiscDelDevClsact(int fd, int ifIndex) {
- return doTcQdiscClsact(fd, ifIndex, RTM_DELQDISC, 0);
- }
- int tcFilterAddDevBpf(int fd, int ifIndex, int bpfFd, bool ethernet) {
-
-
- const int prio = 1;
-
-
-
-
-
-
- #define BPF "bpf"
- const char bpf[] = BPF;
-
- #define ASCIIZ_LEN_BPF sizeof(bpf)
-
-
- #define FSOBJ_SUFFIX ":[*fsobj]"
-
-
-
-
- #define NAME_RAWIP CLAT_INGRESS_PROG_RAWIP_NAME FSOBJ_SUFFIX
- const char name_rawip[] = NAME_RAWIP;
-
-
-
-
- #define NAME_ETHER CLAT_INGRESS_PROG_ETHER_NAME FSOBJ_SUFFIX
- const char name_ether[] = NAME_ETHER;
-
-
-
-
- #define ASCIIZ_MAXLEN_NAME \
- ((sizeof(name_rawip) > sizeof(name_ether)) ? sizeof(name_rawip) : sizeof(name_ether))
-
- #define NAME (ethernet ? NAME_ETHER : NAME_RAWIP)
- struct {
- nlmsghdr n;
- tcmsg t;
- struct {
- nlattr attr;
- char str[NLMSG_ALIGN(ASCIIZ_LEN_BPF)];
- } kind;
- struct {
- nlattr attr;
- struct {
- nlattr attr;
- __u32 u32;
- } fd;
- struct {
- nlattr attr;
- char str[NLMSG_ALIGN(ASCIIZ_MAXLEN_NAME)];
- } name;
- struct {
- nlattr attr;
- __u32 u32;
- } flags;
- } options;
- } req = {
- .n =
- {
- .nlmsg_len = sizeof(req),
- .nlmsg_type = RTM_NEWTFILTER,
- .nlmsg_flags = NETLINK_REQUEST_FLAGS | NLM_F_EXCL | NLM_F_CREATE,
- },
- .t =
- {
- .tcm_family = AF_UNSPEC,
- .tcm_ifindex = ifIndex,
- .tcm_handle = TC_H_UNSPEC,
- .tcm_parent = TC_H_MAKE(TC_H_CLSACT, TC_H_MIN_INGRESS),
- .tcm_info = (prio << 16) | htons(ETH_P_IPV6),
- },
- .kind =
- {
- .attr =
- {
- .nla_len = sizeof(req.kind),
- .nla_type = TCA_KIND,
- },
- .str = BPF,
- },
- .options =
- {
- .attr =
- {
- .nla_len = sizeof(req.options),
- .nla_type = TCA_OPTIONS,
- },
- .fd =
- {
- .attr =
- {
- .nla_len = sizeof(req.options.fd),
- .nla_type = TCA_BPF_FD,
- },
- .u32 = static_cast<__u32>(bpfFd),
- },
- .name =
- {
- .attr =
- {
- .nla_len = sizeof(req.options.name),
- .nla_type = TCA_BPF_NAME,
- },
-
-
- .str = "placeholder",
- },
- .flags =
- {
- .attr =
- {
- .nla_len = sizeof(req.options.flags),
- .nla_type = TCA_BPF_FLAGS,
- },
- .u32 = TCA_BPF_FLAG_ACT_DIRECT,
- },
- },
- };
- strncpy(req.options.name.str, NAME, sizeof(req.options.name.str));
- #undef NAME
- #undef ASCIIZ_MAXLEN_NAME
- #undef NAME_ETHER
- #undef NAME_RAWIP
- #undef NAME
- #undef ASCIIZ_LEN_BPF
- #undef BPF
- const int rv = send(fd, &req, sizeof(req), 0);
- if (rv == -1) return -errno;
- if (rv != sizeof(req)) return -EMSGSIZE;
- return processNetlinkResponse(fd);
- }
- }
- }
|