search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
No empty .Rs/.Re
[netbsd-mini2440.git] / crypto / dist / ipsec-tools / src / racoon / grabmyaddr.c
blob48f6eb43037be811ba33d8ff4663373aecca0cac
1 /* $NetBSD: grabmyaddr.c,v 1.22 2009/04/21 18:38:31 tteras Exp $ */
2 /*
3 * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
4 * Copyright (C) 2008 Timo Teras <timo.teras@iki.fi>.
5 * All rights reserved.
6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 * 3. Neither the name of the project nor the names of its contributors
16 * may be used to endorse or promote products derived from this software
17 * without specific prior written permission.
18 *
19 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
20 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
21 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
22 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
23 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
24 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
25 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
26 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
27 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
28 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29 * SUCH DAMAGE.
30 */
31
32 #include "config.h"
33
34 #include <errno.h>
35 #include <fcntl.h>
36 #include <unistd.h>
37 #include <string.h>
38 #include <sys/types.h>
39 #include <sys/queue.h>
40 #include <sys/socket.h>
41
42 #ifdef __linux__
43 #include <linux/netlink.h>
44 #include <linux/rtnetlink.h>
45 #define USE_NETLINK
46 #else
47 #include <net/route.h>
48 #include <net/if.h>
49 #include <net/if_dl.h>
50 #include <sys/sysctl.h>
51 #define USE_ROUTE
52 #endif
53
54 #include "var.h"
55 #include "misc.h"
56 #include "vmbuf.h"
57 #include "plog.h"
58 #include "sockmisc.h"
59 #include "session.h"
60 #include "debug.h"
61
62 #include "localconf.h"
63 #include "handler.h"
64 #include "grabmyaddr.h"
65 #include "sockmisc.h"
66 #include "isakmp_var.h"
67 #include "gcmalloc.h"
68 #include "nattraversal.h"
69
70 static int kernel_receive __P((void *ctx, int fd));
71 static int kernel_open_socket __P((void));
72 static void kernel_sync __P((void));
73
74 struct myaddr {
75 LIST_ENTRY(myaddr) chain;
76 struct sockaddr_storage addr;
77 int fd;
78 int udp_encap;
79 };
80
81 static LIST_HEAD(_myaddr_list_, myaddr) configured, opened;
82
83 static void
84 myaddr_delete(my)
85 struct myaddr *my;
86 {
87 if (my->fd != -1)
88 isakmp_close(my->fd);
89 LIST_REMOVE(my, chain);
90 racoon_free(my);
91 }
92
93 static int
94 myaddr_configured(addr)
95 struct sockaddr *addr;
96 {
97 struct myaddr *cfg;
98
99 if (LIST_EMPTY(&configured))
100 return TRUE;
101
102 LIST_FOREACH(cfg, &configured, chain) {
103 if (cmpsaddr(addr, (struct sockaddr *) &cfg->addr) == 0)
104 return TRUE;
105 }
106
107 return FALSE;
108 }
109
110 static int
111 myaddr_open(addr, udp_encap)
112 struct sockaddr *addr;
113 int udp_encap;
114 {
115 struct myaddr *my;
116
117 /* Already open? */
118 LIST_FOREACH(my, &opened, chain) {
119 if (cmpsaddr(addr, (struct sockaddr *) &my->addr) == 0)
120 return TRUE;
121 }
122
123 my = racoon_calloc(1, sizeof(struct myaddr));
124 if (my == NULL)
125 return FALSE;
126
127 memcpy(&my->addr, addr, sysdep_sa_len(addr));
128 my->fd = isakmp_open(addr, udp_encap);
129 if (my->fd < 0) {
130 racoon_free(my);
131 return FALSE;
132 }
133 my->udp_encap = udp_encap;
134 LIST_INSERT_HEAD(&opened, my, chain);
135 return TRUE;
136 }
137
138 static int
139 myaddr_open_all_configured(addr)
140 struct sockaddr *addr;
141 {
142 /* create all configured, not already opened addresses */
143 struct myaddr *cfg, *my;
144
145 if (addr != NULL) {
146 switch (addr->sa_family) {
147 case AF_INET:
148 #ifdef INET6
149 case AF_INET6:
150 #endif
151 break;
152 default:
153 return FALSE;
154 }
155 }
156
157 LIST_FOREACH(cfg, &configured, chain) {
158 if (addr != NULL &&
159 cmpsaddr(addr, (struct sockaddr *) &cfg->addr) != 0)
160 continue;
161 if (!myaddr_open((struct sockaddr *) &cfg->addr, cfg->udp_encap))
162 return FALSE;
163 }
164 if (LIST_EMPTY(&configured)) {
165 #ifdef ENABLE_HYBRID
166 /* Exclude any address we got through ISAKMP mode config */
167 if (exclude_cfg_addr(addr) == 0)
168 return FALSE;
169 #endif
170 set_port(addr, lcconf->port_isakmp);
171 myaddr_open(addr, FALSE);
172 #ifdef ENABLE_NATT
173 set_port(addr, lcconf->port_isakmp_natt);
174 myaddr_open(addr, TRUE);
175 #endif
176 }
177 return TRUE;
178 }
179
180 static void
181 myaddr_close_all_open(addr)
182 struct sockaddr *addr;
183 {
184 /* delete all matching open sockets */
185 struct myaddr *my, *next;
186
187 for (my = LIST_FIRST(&opened); my; my = next) {
188 next = LIST_NEXT(my, chain);
189
190 if (!cmpsaddr((struct sockaddr *) &addr,
191 (struct sockaddr *) &my->addr))
192 myaddr_delete(my);
193 }
194 }
195
196 static void
197 myaddr_flush_list(list)
198 struct _myaddr_list_ *list;
199 {
200 struct myaddr *my, *next;
201
202 for (my = LIST_FIRST(list); my; my = next) {
203 next = LIST_NEXT(my, chain);
204 myaddr_delete(my);
205 }
206 }
207
208 void
209 myaddr_flush()
210 {
211 myaddr_flush_list(&configured);
212 }
213
214 int
215 myaddr_listen(addr, udp_encap)
216 struct sockaddr *addr;
217 int udp_encap;
218 {
219 struct myaddr *my;
220
221 if (sysdep_sa_len(addr) > sizeof(my->addr)) {
222 plog(LLV_ERROR, LOCATION, NULL,
223 "sockaddr size larger than sockaddr_storage\n");
224 return -1;
225 }
226
227 my = racoon_calloc(1, sizeof(struct myaddr));
228 if (my == NULL)
229 return -1;
230
231 memcpy(&my->addr, addr, sysdep_sa_len(addr));
232 my->udp_encap = udp_encap;
233 my->fd = -1;
234 LIST_INSERT_HEAD(&configured, my, chain);
235
236 return 0;
237 }
238
239 void
240 myaddr_sync()
241 {
242 struct myaddr *my, *next;
243
244 if (!lcconf->strict_address) {
245 kernel_sync();
246
247 /* delete all existing listeners which are not configured */
248 for (my = LIST_FIRST(&opened); my; my = next) {
249 next = LIST_NEXT(my, chain);
250
251 if (!myaddr_configured((struct sockaddr *) &my->addr))
252 myaddr_delete(my);
253 }
254 }
255 }
256
257 int
258 myaddr_getfd(addr)
259 struct sockaddr *addr;
260 {
261 struct myaddr *my;
262
263 LIST_FOREACH(my, &opened, chain) {
264 if (cmpsaddr((struct sockaddr *) &my->addr, addr) == 0)
265 return my->fd;
266 }
267
268 return -1;
269 }
270
271 int
272 myaddr_getsport(addr)
273 struct sockaddr *addr;
274 {
275 struct myaddr *my;
276
277 LIST_FOREACH(my, &opened, chain) {
278 if (cmpsaddr((struct sockaddr *) &my->addr, addr) == 0)
279 return extract_port((struct sockaddr *) &my->addr);
280 }
281
282 return PORT_ISAKMP;
283 }
284
285 void
286 myaddr_init_lists()
287 {
288 LIST_INIT(&configured);
289 LIST_INIT(&opened);
290 }
291
292 int
293 myaddr_init()
294 {
295 if (!lcconf->strict_address) {
296 lcconf->rtsock = kernel_open_socket();
297 if (lcconf->rtsock < 0)
298 return -1;
299 monitor_fd(lcconf->rtsock, kernel_receive, NULL);
300 } else {
301 lcconf->rtsock = -1;
302 if (!myaddr_open_all_configured(NULL))
303 return -1;
304 }
305 return 0;
306 }
307
308 void
309 myaddr_close()
310 {
311 myaddr_flush_list(&configured);
312 myaddr_flush_list(&opened);
313 if (lcconf->rtsock != -1) {
314 unmonitor_fd(lcconf->rtsock);
315 close(lcconf->rtsock);
316 }
317 }
318
319 #if defined(USE_NETLINK)
320
321 static void
322 parse_rtattr(struct rtattr *tb[], int max, struct rtattr *rta, int len)
323 {
324 memset(tb, 0, sizeof(struct rtattr *) * (max + 1));
325 while (RTA_OK(rta, len)) {
326 if (rta->rta_type <= max)
327 tb[rta->rta_type] = rta;
328 rta = RTA_NEXT(rta,len);
329 }
330 }
331
332 static int
333 netlink_enumerate(fd, family, type)
334 int fd;
335 int family;
336 int type;
337 {
338 struct {
339 struct nlmsghdr nlh;
340 struct rtgenmsg g;
341 } req;
342 struct sockaddr_nl addr;
343 static __u32 seq = 0;
344
345 memset(&addr, 0, sizeof(addr));
346 addr.nl_family = AF_NETLINK;
347
348 memset(&req, 0, sizeof(req));
349 req.nlh.nlmsg_len = sizeof(req);
350 req.nlh.nlmsg_type = type;
351 req.nlh.nlmsg_flags = NLM_F_ROOT | NLM_F_MATCH | NLM_F_REQUEST;
352 req.nlh.nlmsg_pid = 0;
353 req.nlh.nlmsg_seq = ++seq;
354 req.g.rtgen_family = family;
355
356 return sendto(fd, (void *) &req, sizeof(req), 0,
357 (struct sockaddr *) &addr, sizeof(addr)) >= 0;
358 }
359
360 static int
361 netlink_process(struct nlmsghdr *h)
362 {
363 struct sockaddr_storage addr;
364 struct ifaddrmsg *ifa;
365 struct rtattr *rta[IFA_MAX+1];
366 struct sockaddr_in *sin;
367 #ifdef INET6
368 struct sockaddr_in6 *sin6;
369 #endif
370
371 /* is this message interesting? */
372 if (h->nlmsg_type != RTM_NEWADDR &&
373 h->nlmsg_type != RTM_DELADDR)
374 return 0;
375
376 ifa = NLMSG_DATA(h);
377 parse_rtattr(rta, IFA_MAX, IFA_RTA(ifa), IFA_PAYLOAD(h));
378
379 if (ifa->ifa_flags & IFA_F_TENTATIVE)
380 return 0;
381
382 if (rta[IFA_LOCAL] == NULL)
383 rta[IFA_LOCAL] = rta[IFA_ADDRESS];
384 if (rta[IFA_LOCAL] == NULL)
385 return 0;
386
387 /* setup the socket address */
388 memset(&addr, 0, sizeof(addr));
389 addr.ss_family = ifa->ifa_family;
390 switch (ifa->ifa_family) {
391 case AF_INET:
392 sin = (struct sockaddr_in *) &addr;
393 memcpy(&sin->sin_addr, RTA_DATA(rta[IFA_LOCAL]),
394 sizeof(sin->sin_addr));
395 break;
396 #ifdef INET6
397 case AF_INET6:
398 sin6 = (struct sockaddr_in6 *) &addr;
399 memcpy(&sin6->sin6_addr, RTA_DATA(rta[IFA_LOCAL]),
400 sizeof(sin6->sin6_addr));
401 if (IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr))
402 sin6->sin6_scope_id = ifa->ifa_index;
403 break;
404 #endif
405 default:
406 return 0;
407 }
408
409 plog(LLV_DEBUG, LOCATION, NULL,
410 "Netlink: address %s %s\n",
411 saddrwop2str((struct sockaddr *) &addr),
412 h->nlmsg_type == RTM_NEWADDR ? "added" : "deleted");
413
414 if (h->nlmsg_type == RTM_NEWADDR)
415 myaddr_open_all_configured((struct sockaddr *) &addr);
416 else
417 myaddr_close_all_open((struct sockaddr *) &addr);
418
419 return 0;
420 }
421
422 static int
423 kernel_receive(ctx, fd)
424 void *ctx;
425 int fd;
426 {
427 struct sockaddr_nl nladdr;
428 struct iovec iov;
429 struct msghdr msg = {
430 .msg_name = &nladdr,
431 .msg_namelen = sizeof(nladdr),
432 .msg_iov = &iov,
433 .msg_iovlen = 1,
434 };
435 struct nlmsghdr *h;
436 int len, status;
437 char buf[16*1024];
438
439 iov.iov_base = buf;
440 while (1) {
441 iov.iov_len = sizeof(buf);
442 status = recvmsg(fd, &msg, MSG_DONTWAIT);
443 if (status < 0) {
444 if (errno == EINTR)
445 continue;
446 if (errno == EAGAIN)
447 return FALSE;
448 continue;
449 }
450 if (status == 0)
451 return FALSE;
452
453 h = (struct nlmsghdr *) buf;
454 while (NLMSG_OK(h, status)) {
455 netlink_process(h);
456 h = NLMSG_NEXT(h, status);
457 }
458 }
459
460 return TRUE;
461 }
462
463 static int
464 kernel_open_socket()
465 {
466 struct sockaddr_nl nl;
467 int fd;
468
469 fd = socket(PF_NETLINK, SOCK_RAW, NETLINK_ROUTE);
470 if (fd < 0) {
471 plog(LLV_ERROR, LOCATION, NULL,
472 "socket(PF_NETLINK) failed: %s",
473 strerror(errno));
474 return -1;
475 }
476 close_on_exec(fd);
477 if (fcntl(fd, F_SETFL, O_NONBLOCK) == -1)
478 plog(LLV_WARNING, LOCATION, NULL,
479 "failed to put socket in non-blocking mode\n");
480
481 memset(&nl, 0, sizeof(nl));
482 nl.nl_family = AF_NETLINK;
483 nl.nl_groups = RTMGRP_IPV4_IFADDR | RTMGRP_IPV6_IFADDR;
484 if (bind(fd, (struct sockaddr*) &nl, sizeof(nl)) < 0) {
485 plog(LLV_ERROR, LOCATION, NULL,
486 "bind(PF_NETLINK) failed: %s\n",
487 strerror(errno));
488 close(fd);
489 return -1;
490 }
491 return fd;
492 }
493
494 static void
495 kernel_sync()
496 {
497 int fd = lcconf->rtsock;
498
499 /* refresh addresses */
500 if (!netlink_enumerate(fd, PF_UNSPEC, RTM_GETADDR)) {
501 plog(LLV_ERROR, LOCATION, NULL,
502 "unable to enumerate addresses: %s\n",
503 strerror(errno));
504 return;
505 }
506
507 /* receive replies */
508 while (kernel_receive(NULL, fd) == TRUE);
509 }
510
511 #elif defined(USE_ROUTE)
512
513 #define ROUNDUP(a) \
514 ((a) > 0 ? (1 + (((a) - 1) | (sizeof(long) - 1))) : sizeof(long))
515
516 #define SAROUNDUP(X) ROUNDUP(((struct sockaddr *)(X))->sa_len)
517
518 static size_t
519 parse_address(start, end, dest)
520 caddr_t start;
521 caddr_t end;
522 struct sockaddr_storage *dest;
523 {
524 int len;
525
526 if (start >= end)
527 return 0;
528
529 len = SAROUNDUP(start);
530 if (start + len > end)
531 return end - start;
532
533 if (dest != NULL && len <= sizeof(struct sockaddr_storage))
534 memcpy(dest, start, len);
535
536 return len;
537 }
538
539 static void
540 parse_addresses(start, end, flags, addr)
541 caddr_t start;
542 caddr_t end;
543 int flags;
544 struct sockaddr_storage *addr;
545 {
546 memset(addr, 0, sizeof(*addr));
547 if (flags & RTA_DST)
548 start += parse_address(start, end, NULL);
549 if (flags & RTA_GATEWAY)
550 start += parse_address(start, end, NULL);
551 if (flags & RTA_NETMASK)
552 start += parse_address(start, end, NULL);
553 if (flags & RTA_GENMASK)
554 start += parse_address(start, end, NULL);
555 if (flags & RTA_IFP)
556 start += parse_address(start, end, NULL);
557 if (flags & RTA_IFA)
558 start += parse_address(start, end, addr);
559 if (flags & RTA_AUTHOR)
560 start += parse_address(start, end, NULL);
561 if (flags & RTA_BRD)
562 start += parse_address(start, end, NULL);
563 }
564
565 static void
566 kernel_handle_message(msg)
567 caddr_t msg;
568 {
569 struct rt_msghdr *rtm = (struct rt_msghdr *) msg;
570 struct ifa_msghdr *ifa = (struct ifa_msghdr *) msg;
571 struct sockaddr_storage addr;
572
573 switch (rtm->rtm_type) {
574 case RTM_NEWADDR:
575 parse_addresses(ifa + 1, msg + ifa->ifam_msglen,
576 ifa->ifam_addrs, &addr);
577 myaddr_open_all_configured((struct sockaddr *) &addr);
578 break;
579 case RTM_DELADDR:
580 parse_addresses(ifa + 1, msg + ifa->ifam_msglen,
581 ifa->ifam_addrs, &addr);
582 myaddr_close_all_open((struct sockaddr *) &addr);
583 break;
584 case RTM_ADD:
585 case RTM_DELETE:
586 case RTM_CHANGE:
587 case RTM_MISS:
588 case RTM_IFINFO:
589 #ifdef RTM_OIFINFO
590 case RTM_OIFINFO:
591 #endif
592 #ifdef RTM_NEWMADDR
593 case RTM_NEWMADDR:
594 case RTM_DELMADDR:
595 #endif
596 #ifdef RTM_IFANNOUNCE
597 case RTM_IFANNOUNCE:
598 #endif
599 break;
600 default:
601 plog(LLV_WARNING, LOCATION, NULL,
602 "unrecognized route message with rtm_type: %d",
603 rtm->rtm_type);
604 break;
605 }
606 }
607
608 static int
609 kernel_receive(ctx, fd)
610 void *ctx;
611 int fd;
612 {
613 char buf[16*1024];
614 struct rt_msghdr *rtm = (struct rt_msghdr *) buf;
615 int len;
616
617 len = read(fd, &buf, sizeof(buf));
618 if (len <= 0) {
619 if (len < 0 && errno != EWOULDBLOCK && errno != EAGAIN)
620 plog(LLV_WARNING, LOCATION, NULL,
621 "routing socket error: %s", strerror(errno));
622 return FALSE;
623 }
624
625 if (rtm->rtm_msglen != len) {
626 plog(LLV_WARNING, LOCATION, NULL,
627 "kernel_receive: rtm->rtm_msglen %d, len %d, type %d\n",
628 rtm->rtm_msglen, len, rtm->rtm_type);
629 return FALSE;
630 }
631
632 kernel_handle_message(buf);
633 return TRUE;
634 }
635
636 static int
637 kernel_open_socket()
638 {
639 int fd;
640
641 fd = socket(PF_ROUTE, SOCK_RAW, 0);
642 if (fd < 0) {
643 plog(LLV_ERROR, LOCATION, NULL,
644 "socket(PF_ROUTE) failed: %s",
645 strerror(errno));
646 return -1;
647 }
648 close_on_exec(fd);
649 if (fcntl(fd, F_SETFL, O_NONBLOCK) == -1)
650 plog(LLV_WARNING, LOCATION, NULL,
651 "failed to put socket in non-blocking mode\n");
652
653 return fd;
654 }
655
656 static void
657 kernel_sync()
658 {
659 caddr_t ref, buf, end;
660 size_t bufsiz;
661 struct if_msghdr *ifm;
662 struct interface *ifp;
663
664 #define MIBSIZ 6
665 int mib[MIBSIZ] = {
666 CTL_NET,
667 PF_ROUTE,
668 0,
669 0, /* AF_INET & AF_INET6 */
670 NET_RT_IFLIST,
671 0
672 };
673
674 if (sysctl(mib, MIBSIZ, NULL, &bufsiz, NULL, 0) < 0) {
675 plog(LLV_WARNING, LOCATION, NULL,
676 "sysctl() error: %s", strerror(errno));
677 return;
678 }
679
680 ref = buf = racoon_malloc(bufsiz);
681
682 if (sysctl(mib, MIBSIZ, buf, &bufsiz, NULL, 0) >= 0) {
683 /* Parse both interfaces and addresses. */
684 for (end = buf + bufsiz; buf < end; buf += ifm->ifm_msglen) {
685 ifm = (struct if_msghdr *) buf;
686 kernel_handle_message(buf);
687 }
688 } else {
689 plog(LLV_WARNING, LOCATION, NULL,
690 "sysctl() error: %s", strerror(errno));
691 }
692
693 racoon_free(ref);
694 }
695
696 #else
697
698 #error No supported interface to monitor local addresses.
699
700 #endif
NetBSD on the FriendlyARM MINI2440