VirtualBox

source: vbox/trunk/src/VBox/NetworkServices/NAT/pxdns.c@ 49016

Last change on this file since 49016 was 49016, checked in by vboxsync, 11 years ago

Change vestigial names proxytest.* to proxy.*

  • Property svn:eol-style set to native
  • Property svn:keywords set to Author Date Id Revision
File size: 16.3 KB
Line 
1/* -*- indent-tabs-mode: nil; -*- */
2
3/*
4 * Copyright (C) 2009-2013 Oracle Corporation
5 *
6 * This file is part of VirtualBox Open Source Edition (OSE), as
7 * available from http://www.virtualbox.org. This file is free software;
8 * you can redistribute it and/or modify it under the terms of the GNU
9 * General Public License (GPL) as published by the Free Software
10 * Foundation, in version 2 as it comes in the "COPYING" file of the
11 * VirtualBox OSE distribution. VirtualBox OSE is distributed in the
12 * hope that it will be useful, but WITHOUT ANY WARRANTY of any kind.
13 */
14
15/*
16 * Copyright (c) 2003,2004,2005 Armin Wolfermann
17 *
18 * Permission is hereby granted, free of charge, to any person obtaining a
19 * copy of this software and associated documentation files (the "Software"),
20 * to deal in the Software without restriction, including without limitation
21 * the rights to use, copy, modify, merge, publish, distribute, sublicense,
22 * and/or sell copies of the Software, and to permit persons to whom the
23 * Software is furnished to do so, subject to the following conditions:
24 *
25 * The above copyright notice and this permission notice shall be included in
26 * all copies or substantial portions of the Software.
27 *
28 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
29 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
30 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
31 * THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
32 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
33 * FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
34 * DEALINGS IN THE SOFTWARE.
35 */
36#include "proxy.h"
37#include "proxy_pollmgr.h"
38
39#include "lwip/sys.h"
40#include "lwip/tcpip.h"
41#include "lwip/udp.h"
42
43#include <sys/poll.h>
44#include <sys/socket.h>
45#include <netinet/in.h>
46
47#include <string.h>
48
49
50struct request;
51
52
53/**
54 * DNS Proxy
55 */
56struct pxdns {
57 struct pollmgr_handler pmhdl;
58
59 struct udp_pcb *pcb4; /* lwIP doesn't support listening for */
60 struct udp_pcb *pcb6; /* both IPv4 and IPv6 on single pcb. */
61
62 SOCKET sock;
63
64 u16_t id;
65
66 /* XXX: TODO: support multiple, support IPv6 */
67 struct sockaddr_in resolver_sin;
68 socklen_t resolver_sinlen;
69
70 sys_mutex_t lock;
71
72 size_t active_queries;
73 size_t expired_queries;
74 size_t late_answers;
75 size_t hash_collisions;
76
77#define TIMEOUT 5
78 size_t timeout_slot;
79 struct request *timeout_list[TIMEOUT];
80
81#define HASHSIZE 10
82#define HASH(id) ((id) & ((1 << HASHSIZE) - 1))
83 struct request *request_hash[1 << HASHSIZE];
84} g_pxdns;
85
86
87struct request {
88 /**
89 * Request ID that we use in relayed request.
90 */
91 u16_t id;
92
93 /**
94 * XXX: TODO: to test rexmit code, rexmit to the same resolver
95 * multiple times; to be replaced with trying the next resolver.
96 */
97 size_t rexmit_count;
98
99 /**
100 * PCB from which we have received this request. lwIP doesn't
101 * support listening for both IPv4 and IPv6 on the same pcb, so we
102 * use two and need to keep track.
103 */
104 struct udp_pcb *pcb;
105
106 /**
107 * Client this request is from and its original request ID.
108 */
109 ipX_addr_t client_addr;
110 u16_t client_port;
111 u16_t client_id;
112
113 /**
114 * Chaining for pxdns::request_hash
115 */
116 struct request **pprev_hash;
117 struct request *next_hash;
118
119 /**
120 * Chaining for pxdns::timeout_list
121 */
122 struct request **pprev_timeout;
123 struct request *next_timeout;
124
125 /**
126 * Pbuf with reply received on pollmgr thread.
127 */
128 struct pbuf *reply;
129
130 /**
131 * Preallocated lwIP message to send reply from the lwIP thread.
132 */
133 struct tcpip_msg msg_reply;
134
135 /**
136 * Client request. ID is replaced with ours, original saved in
137 * client_id. Use a copy since we might need to resend and we
138 * don't want to hold onto pbuf of the request.
139 */
140 size_t size;
141 u8_t data[1];
142};
143
144
145static void pxdns_recv4(void *arg, struct udp_pcb *pcb, struct pbuf *p,
146 ip_addr_t *addr, u16_t port);
147static void pxdns_recv6(void *arg, struct udp_pcb *pcb, struct pbuf *p,
148 ip6_addr_t *addr, u16_t port);
149static void pxdns_query(struct pxdns *pxdns, struct udp_pcb *pcb, struct pbuf *p,
150 ipX_addr_t *addr, u16_t port);
151static void pxdns_timer(void *arg);
152static int pxdns_rexmit(struct pxdns *pxdns, struct request *req);
153static int pxdns_forward_outbound(struct pxdns *pxdns, struct request *req);
154
155static int pxdns_pmgr_pump(struct pollmgr_handler *handler, SOCKET fd, int revents);
156static void pxdns_pcb_reply(void *ctx);
157
158static void pxdns_request_register(struct pxdns *pxdns, struct request *req);
159static void pxdns_request_deregister(struct pxdns *pxdns, struct request *req);
160static struct request *pxdns_request_find(struct pxdns *pxdns, u16_t id);
161
162static void pxdns_hash_add(struct pxdns *pxdns, struct request *req);
163static void pxdns_hash_del(struct pxdns *pxdns, struct request *req);
164static void pxdns_timeout_add(struct pxdns *pxdns, struct request *req);
165static void pxdns_timeout_del(struct pxdns *pxdns, struct request *req);
166
167static void pxdns_request_free(struct request *req);
168
169
170err_t
171pxdns_init(struct netif *proxy_netif)
172{
173 struct pxdns *pxdns = &g_pxdns;
174 err_t error;
175
176 LWIP_UNUSED_ARG(proxy_netif);
177
178 pxdns->pmhdl.callback = pxdns_pmgr_pump;
179 pxdns->pmhdl.data = (void *)pxdns;
180 pxdns->pmhdl.slot = -1;
181
182 pxdns->pcb4 = udp_new();
183 if (pxdns->pcb4 == NULL) {
184 error = ERR_MEM;
185 goto err_cleanup_pcb;
186 }
187
188 pxdns->pcb6 = udp_new_ip6();
189 if (pxdns->pcb6 == NULL) {
190 error = ERR_MEM;
191 goto err_cleanup_pcb;
192 }
193
194 error = udp_bind(pxdns->pcb4, IP_ADDR_ANY, 53);
195 if (error != ERR_OK) {
196 goto err_cleanup_pcb;
197 }
198
199 error = udp_bind_ip6(pxdns->pcb4, IP6_ADDR_ANY, 53);
200 if (error != ERR_OK) {
201 goto err_cleanup_pcb;
202 }
203
204 udp_recv(pxdns->pcb4, pxdns_recv4, pxdns);
205 udp_recv_ip6(pxdns->pcb6, pxdns_recv6, pxdns);
206
207 pxdns->sock = socket(AF_INET, SOCK_DGRAM, 0);
208 if (pxdns->sock == INVALID_SOCKET) {
209 goto err_cleanup_pcb;
210 }
211
212 /* XXX: TODO: support multiple, support IPv6 */
213 pxdns->resolver_sin.sin_family = AF_INET;
214 pxdns->resolver_sin.sin_addr.s_addr = PP_HTONL(0x7f000001); /* XXX */
215 pxdns->resolver_sin.sin_port = PP_HTONS(53);
216#if HAVE_SA_LEN
217 pxdns->resolver_sin.sin_len =
218#endif
219 pxdns->resolver_sinlen = sizeof(pxdns->resolver_sin);
220
221 sys_mutex_new(&pxdns->lock);
222
223 pxdns->timeout_slot = 0;
224
225 /* XXX: assumes pollmgr thread is not running yet */
226 pollmgr_add(&pxdns->pmhdl, pxdns->sock, POLLIN);
227
228 sys_timeout(1 * 1000, pxdns_timer, pxdns);
229
230 return ERR_OK;
231
232 err_cleanup_pcb:
233 if (pxdns->pcb4 != NULL) {
234 udp_remove(pxdns->pcb4);
235 pxdns->pcb4 = NULL;
236 }
237 if (pxdns->pcb6 != NULL) {
238 udp_remove(pxdns->pcb6);
239 pxdns->pcb4 = NULL;
240 }
241
242 return error;
243}
244
245
246static void
247pxdns_request_free(struct request *req)
248{
249 LWIP_ASSERT1(req->pprev_hash == NULL);
250 LWIP_ASSERT1(req->pprev_timeout == NULL);
251
252 if (req->reply != NULL) {
253 pbuf_free(req->reply);
254 }
255 free(req);
256}
257
258
259static void
260pxdns_hash_add(struct pxdns *pxdns, struct request *req)
261{
262 struct request **chain;
263
264 LWIP_ASSERT1(req->pprev_hash == NULL);
265 chain = &pxdns->request_hash[HASH(req->id)];
266 if ((req->next_hash = *chain) != NULL) {
267 (*chain)->pprev_hash = &req->next_hash;
268 ++pxdns->hash_collisions;
269 }
270 *chain = req;
271 req->pprev_hash = chain;
272}
273
274
275static void
276pxdns_timeout_add(struct pxdns *pxdns, struct request *req)
277{
278 struct request **chain;
279
280 LWIP_ASSERT1(req->pprev_timeout == NULL);
281 chain = &pxdns->timeout_list[pxdns->timeout_slot];
282 if ((req->next_timeout = *chain) != NULL) {
283 (*chain)->pprev_timeout = &req->next_timeout;
284 }
285 *chain = req;
286 req->pprev_timeout = chain;
287}
288
289
290static void
291pxdns_hash_del(struct pxdns *pxdns, struct request *req)
292{
293 LWIP_ASSERT1(req->pprev_hash != NULL);
294 --pxdns->active_queries;
295
296 if (req->next_hash != NULL) {
297 req->next_hash->pprev_hash = req->pprev_hash;
298 }
299 *req->pprev_hash = req->next_hash;
300 req->pprev_hash = NULL;
301 req->next_hash = NULL;
302}
303
304
305static void
306pxdns_timeout_del(struct pxdns *pxdns, struct request *req)
307{
308 LWIP_ASSERT1(req->pprev_timeout != NULL);
309
310 if (req->next_timeout != NULL) {
311 req->next_timeout->pprev_timeout = req->pprev_timeout;
312 }
313 *req->pprev_timeout = req->next_timeout;
314 req->pprev_timeout = NULL;
315 req->next_timeout = NULL;
316}
317
318
319
320/**
321 * Do bookkeeping on new request. Called from pxdns_query().
322 */
323static void
324pxdns_request_register(struct pxdns *pxdns, struct request *req)
325{
326 sys_mutex_lock(&pxdns->lock);
327
328 pxdns_hash_add(pxdns, req);
329 pxdns_timeout_add(pxdns, req);
330 ++pxdns->active_queries;
331
332 sys_mutex_unlock(&pxdns->lock);
333}
334
335
336static void
337pxdns_request_deregister(struct pxdns *pxdns, struct request *req)
338{
339 sys_mutex_lock(&pxdns->lock);
340
341 pxdns_hash_del(pxdns, req);
342 pxdns_timeout_del(pxdns, req);
343 --pxdns->active_queries;
344
345 sys_mutex_unlock(&pxdns->lock);
346}
347
348
349/**
350 * Find request by the id we used when relaying it and remove it from
351 * id hash and timeout list. Called from pxdns_pmgr_pump() when reply
352 * comes.
353 */
354static struct request *
355pxdns_request_find(struct pxdns *pxdns, u16_t id)
356{
357 struct request *req = NULL;
358
359 sys_mutex_lock(&pxdns->lock);
360
361 /* find request in the id->req hash */
362 for (req = pxdns->request_hash[HASH(id)]; req != NULL; req = req->next_hash) {
363 if (req->id == id) {
364 break;
365 }
366 }
367
368 if (req != NULL) {
369 pxdns_hash_del(pxdns, req);
370 pxdns_timeout_del(pxdns, req);
371 --pxdns->active_queries;
372 }
373
374 sys_mutex_unlock(&pxdns->lock);
375 return req;
376}
377
378
379/**
380 * Retransmit of g/c expired requests and move timeout slot forward.
381 */
382static void
383pxdns_timer(void *arg)
384{
385 struct pxdns *pxdns = (struct pxdns *)arg;
386 struct request **chain, *req;
387
388 sys_mutex_lock(&pxdns->lock);
389
390 /*
391 * Move timeout slot first. New slot points to the list of
392 * expired requests. If any expired request is retransmitted, we
393 * keep it on the list (that is now current), effectively
394 * resetting the timeout.
395 */
396 LWIP_ASSERT1(pxdns->timeout_slot < TIMEOUT);
397 if (++pxdns->timeout_slot == TIMEOUT) {
398 pxdns->timeout_slot = 0;
399 }
400
401 chain = &pxdns->timeout_list[pxdns->timeout_slot];
402 req = *chain;
403 while (req != NULL) {
404 struct request *expired = req;
405 req = req->next_timeout;
406
407 if (pxdns_rexmit(pxdns, expired)) {
408 continue;
409 }
410
411 pxdns_hash_del(pxdns, expired);
412 pxdns_timeout_del(pxdns, expired);
413 ++pxdns->expired_queries;
414
415 pxdns_request_free(expired);
416 }
417
418 sys_mutex_unlock(&pxdns->lock);
419
420 sys_timeout(1 * 1000, pxdns_timer, pxdns);
421}
422
423
424static void
425pxdns_recv4(void *arg, struct udp_pcb *pcb, struct pbuf *p,
426 ip_addr_t *addr, u16_t port)
427{
428 struct pxdns *pxdns = (struct pxdns *)arg;
429 pxdns_query(pxdns, pcb, p, ip_2_ipX(addr), port);
430}
431
432static void
433pxdns_recv6(void *arg, struct udp_pcb *pcb, struct pbuf *p,
434 ip6_addr_t *addr, u16_t port)
435{
436 struct pxdns *pxdns = (struct pxdns *)arg;
437 pxdns_query(pxdns, pcb, p, ip6_2_ipX(addr), port);
438}
439
440
441static void
442pxdns_query(struct pxdns *pxdns, struct udp_pcb *pcb, struct pbuf *p,
443 ipX_addr_t *addr, u16_t port)
444{
445 struct request *req;
446 u16_t client_id;
447 int sent;
448
449 req = calloc(1, sizeof(struct request) - 1 + p->tot_len);
450 if (req == NULL) {
451 return;
452 }
453
454 /* copy request data */
455 req->size = p->tot_len;
456 pbuf_copy_partial(p, req->data, p->tot_len, 0);
457
458 /* save client identity and client's request id */
459 req->pcb = pcb;
460 ipX_addr_copy(PCB_ISIPV6(pcb), req->client_addr, *addr);
461 req->client_port = port;
462 memcpy(&req->client_id, req->data, sizeof(req->client_id));
463
464 /* slap our request id onto it */
465 req->id = pxdns->id++;
466 memcpy(req->data, &req->id, sizeof(u16_t));
467
468 /* XXX */
469 req->rexmit_count = 1;
470
471 req->msg_reply.type = TCPIP_MSG_CALLBACK_STATIC;
472 req->msg_reply.sem = NULL;
473 req->msg_reply.msg.cb.function = pxdns_pcb_reply;
474 req->msg_reply.msg.cb.ctx = (void *)req;
475
476 DPRINTF2(("%s: req=%p: client id %d -> id %d\n",
477 __func__, (void *)req, req->client_id, req->id));
478
479 pxdns_request_register(pxdns, req);
480
481 sent = pxdns_forward_outbound(pxdns, req);
482 while (!sent) {
483 sent = pxdns_rexmit(pxdns, req);
484 }
485 if (!sent) {
486 pxdns_request_deregister(pxdns, req);
487 pxdns_request_free(req);
488 }
489}
490
491
492static int
493pxdns_forward_outbound(struct pxdns *pxdns, struct request *req)
494{
495 ssize_t nsent;
496
497 DPRINTF2(("%s: req %p\n", __func__, (void *)req));
498
499 nsent = sendto(pxdns->sock, req->data, req->size, 0,
500 (struct sockaddr *)&pxdns->resolver_sin,
501 pxdns->resolver_sinlen);
502
503 if ((size_t)nsent == req->size) {
504 return 1; /* sent */
505 }
506
507 if (nsent < 0) {
508 perror("dnsproxy");
509 }
510 else if ((size_t)nsent != req->size) {
511 DPRINTF(("%s: sent only %lu of %lu\n",
512 __func__, (unsigned long)nsent, (unsigned long)req->size));
513 }
514 return 0; /* not sent, caller will retry as necessary */
515}
516
517
518static int
519pxdns_rexmit(struct pxdns *pxdns, struct request *req)
520{
521 DPRINTF2(("%s: req %p: rexmit count %lu\n",
522 __func__, (void *)req, (unsigned long)req->rexmit_count));
523
524 /* XXX: TODO: use the next resolver instead */
525 if (req->rexmit_count == 0) {
526 return 0;
527 }
528 --req->rexmit_count;
529
530 return pxdns_forward_outbound(pxdns, req);
531}
532
533
534static int
535pxdns_pmgr_pump(struct pollmgr_handler *handler, SOCKET fd, int revents)
536{
537 struct pxdns *pxdns;
538 struct request *req;
539 ssize_t nread;
540 err_t error;
541 u16_t id;
542
543 pxdns = (struct pxdns *)handler->data;
544 LWIP_ASSERT1(handler == &pxdns->pmhdl);
545 LWIP_ASSERT1(fd = pxdns->sock);
546 LWIP_UNUSED_ARG(fd);
547
548 if (revents & ~(POLLIN|POLLERR)) {
549 DPRINTF0(("%s: unexpected revents 0x%x\n", __func__, revents));
550 return POLLIN;
551 }
552
553 if (revents & POLLERR) {
554 int sockerr = -1;
555 socklen_t optlen = (socklen_t)sizeof(sockerr);
556 int status;
557
558 status = getsockopt(pxdns->sock, SOL_SOCKET,
559 SO_ERROR, &sockerr, &optlen);
560 if (status < 0) {
561 DPRINTF(("%s: sock %d: SO_ERROR failed with errno %d\n",
562 __func__, pxdns->sock, errno));
563 }
564 else {
565 DPRINTF(("%s: sock %d: errno %d\n",
566 __func__, pxdns->sock, sockerr));
567 }
568 }
569
570 if ((revents & POLLIN) == 0) {
571 return POLLIN;
572 }
573
574
575 nread = recv(pxdns->sock, pollmgr_udpbuf, sizeof(pollmgr_udpbuf), 0);
576 if (nread < 0) {
577 perror(__func__);
578 return POLLIN;
579 }
580
581 /* check for minimum dns packet length */
582 if (nread < 12) {
583 DPRINTF2(("%s: short reply %lu bytes\n",
584 __func__, (unsigned long)nread));
585 return POLLIN;
586 }
587
588 memcpy(&id, pollmgr_udpbuf, sizeof(id));
589 req = pxdns_request_find(pxdns, id);
590 if (req == NULL) {
591 DPRINTF2(("%s: orphaned reply for %d\n", __func__, id));
592 ++pxdns->late_answers;
593 return POLLIN;
594 }
595
596 DPRINTF2(("%s: reply for req=%p: client id %d -> id %d\n",
597 __func__, (void *)req, req->client_id, req->id));
598
599 req->reply = pbuf_alloc(PBUF_RAW, nread, PBUF_RAM);
600 if (req->reply == NULL) {
601 DPRINTF(("%s: pbuf_alloc(%d) failed\n", __func__, (int)nread));
602 pxdns_request_free(req);
603 return POLLIN;
604 }
605
606 memcpy(pollmgr_udpbuf, &req->client_id, sizeof(req->client_id));
607 error = pbuf_take(req->reply, pollmgr_udpbuf, nread);
608 if (error != ERR_OK) {
609 DPRINTF(("%s: pbuf_take(%d) failed\n", __func__, (int)nread));
610 pxdns_request_free(req);
611 return POLLIN;
612 }
613
614 proxy_lwip_post(&req->msg_reply);
615 return POLLIN;
616}
617
618
619/**
620 * Called on lwIP thread via request::msg_reply callback.
621 */
622static void
623pxdns_pcb_reply(void *ctx)
624{
625 struct request *req = (struct request *)ctx;
626 err_t error;
627
628 error = udp_sendto(req->pcb, req->reply,
629 ipX_2_ip(&req->client_addr), req->client_port);
630 if (error != ERR_OK) {
631 DPRINTF(("%s: udp_sendto err %d\n",
632 __func__, proxy_lwip_strerr(error)));
633 }
634
635 pxdns_request_free(req);
636}
Note: See TracBrowser for help on using the repository browser.

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy Automated Access Etiquette