| /* |
| ************************************************************************** |
| * Copyright (c) 2019, The Linux Foundation. All rights reserved. |
| * Permission to use, copy, modify, and/or distribute this software for |
| * any purpose with or without fee is hereby granted, provided that the |
| * above copyright notice and this permission notice appear in all copies. |
| * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES |
| * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF |
| * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR |
| * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES |
| * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN |
| * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT |
| * OF OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. |
| ************************************************************************** |
| */ |
| |
| #include <linux/version.h> |
| #include <net/ip.h> |
| #include <linux/inet.h> |
| #include <linux/netfilter_bridge.h> |
| #include <linux/atomic.h> |
| |
| /* |
| * Debug output levels |
| * 0 = OFF |
| * 1 = ASSERTS / ERRORS |
| * 2 = 1 + WARN |
| * 3 = 2 + INFO |
| * 4 = 3 + TRACE |
| */ |
| #define DEBUG_LEVEL ECM_NOTIFIER_DEBUG_LEVEL |
| |
| #include "ecm_types.h" |
| #include "ecm_db_types.h" |
| #include "ecm_state.h" |
| #include "ecm_tracker.h" |
| #include "ecm_classifier.h" |
| #include "ecm_db.h" |
| |
| #include "ecm_notifier_pvt.h" |
| #include "exports/ecm_notifier.h" |
| |
| static atomic_t ecm_notifier_count; |
| static ATOMIC_NOTIFIER_HEAD(ecm_notifier_connection); |
| |
| /* |
| * ecm_notifier_ci_to_data() |
| * Convert ci to ecm_notifier_connection_data. |
| * |
| * This function holds reference to devices (data->from_dev & data->to_dev). |
| */ |
| static bool ecm_notifier_ci_to_data(struct ecm_db_connection_instance *ci, struct ecm_notifier_connection_data *data) |
| { |
| ip_addr_t src_ip; |
| ip_addr_t dst_ip; |
| int32_t first_index; |
| struct ecm_db_iface_instance *interfaces[ECM_DB_IFACE_HEIRARCHY_MAX]; |
| |
| first_index = ecm_db_connection_interfaces_get_and_ref(ci, interfaces, ECM_DB_OBJ_DIR_FROM); |
| if (first_index == ECM_DB_IFACE_HEIRARCHY_MAX) {\ |
| DEBUG_WARN("%p: Failed to get 'from' ifaces index\n", ci); |
| return false; |
| } |
| data->from_dev = dev_get_by_index(&init_net, ecm_db_iface_interface_identifier_get(interfaces[first_index])); |
| if (!data->from_dev) { |
| DEBUG_WARN("%p: Could not locate 'from' interface\n", ci); |
| return false; |
| } |
| ecm_db_connection_interfaces_deref(interfaces, first_index); |
| |
| first_index = ecm_db_connection_interfaces_get_and_ref(ci, interfaces, ECM_DB_OBJ_DIR_TO); |
| if (first_index == ECM_DB_IFACE_HEIRARCHY_MAX) { |
| DEBUG_WARN("%p: Failed to get 'to' ifaces index\n", ci); |
| dev_put(data->from_dev); |
| return false; |
| } |
| data->to_dev = dev_get_by_index(&init_net, ecm_db_iface_interface_identifier_get(interfaces[first_index])); |
| if (!data->to_dev) { |
| DEBUG_WARN("%p: Could not locate 'to' interface\n", ci); |
| dev_put(data->from_dev); |
| return false; |
| } |
| ecm_db_connection_interfaces_deref(interfaces, first_index); |
| |
| data->tuple.ip_ver = ecm_db_connection_ip_version_get(ci); |
| data->tuple.protocol = ecm_db_connection_protocol_get(ci); |
| data->tuple.src_port = ecm_db_connection_port_get(ci, ECM_DB_OBJ_DIR_FROM); |
| data->tuple.dst_port = ecm_db_connection_port_get(ci, ECM_DB_OBJ_DIR_TO); |
| |
| ecm_db_connection_address_get(ci, ECM_DB_OBJ_DIR_FROM, src_ip); |
| ecm_db_connection_address_get(ci, ECM_DB_OBJ_DIR_TO, dst_ip); |
| |
| switch (data->tuple.ip_ver) { |
| case 4: |
| ECM_IP_ADDR_TO_HIN4_ADDR(data->tuple.src.in.s_addr, src_ip); |
| ECM_IP_ADDR_TO_HIN4_ADDR(data->tuple.dest.in.s_addr, dst_ip); |
| break; |
| |
| case 6: |
| ECM_IP_ADDR_TO_HIN6_ADDR(data->tuple.src.in6, src_ip); |
| ECM_IP_ADDR_TO_HIN6_ADDR(data->tuple.dest.in6, dst_ip); |
| break; |
| |
| default: |
| /* |
| * Shouldn't come here. |
| */ |
| DEBUG_ERROR("%p: Invalid protocol\n", ci); |
| dev_put(data->from_dev); |
| dev_put(data->to_dev); |
| return false; |
| } |
| |
| return true; |
| } |
| |
| /* |
| * ecm_notifier_connection_added() |
| * Send ECM connection added event to notifier chain. |
| */ |
| void ecm_notifier_connection_added(void *arg, struct ecm_db_connection_instance *ci) |
| { |
| struct ecm_notifier_connection_data data = {0}; |
| |
| if (!atomic_read(&ecm_notifier_count)) { |
| DEBUG_TRACE("%p: No notifier has registered for event\n", ci); |
| return; |
| } |
| |
| /* |
| * Module has registered for events. |
| */ |
| if (!ecm_notifier_ci_to_data(ci, &data)) { |
| DEBUG_WARN("%p: Failed to get data from connection instance\n", ci); |
| return; |
| } |
| |
| atomic_notifier_call_chain(&ecm_notifier_connection, ECM_NOTIFIER_ACTION_CONNECTION_ADDED, (void*)&data); |
| |
| dev_put(data.from_dev); |
| dev_put(data.to_dev); |
| } |
| |
| /* |
| * ecm_notifier_connection_removed() |
| * Send ECM connection removed event to notifier chain. |
| */ |
| void ecm_notifier_connection_removed(void *arg, struct ecm_db_connection_instance *ci) |
| { |
| struct ecm_notifier_connection_data data = {0}; |
| |
| if (!atomic_read(&ecm_notifier_count)) { |
| DEBUG_TRACE("%p: No notifier has registered for event\n", ci); |
| return; |
| } |
| |
| /* |
| * Module has registered for events. |
| */ |
| if (!ecm_notifier_ci_to_data(ci, &data)) { |
| DEBUG_WARN("%p: Failed to get data from connection instance\n", ci); |
| return; |
| } |
| |
| atomic_notifier_call_chain(&ecm_notifier_connection, ECM_NOTIFIER_ACTION_CONNECTION_REMOVED, (void*)&data); |
| |
| dev_put(data.from_dev); |
| dev_put(data.to_dev); |
| } |
| |
| /* |
| * ecm_notifier_register_connection_notify() |
| * Register for ECM connection events. |
| */ |
| int ecm_notifier_register_connection_notify(struct notifier_block *nb) |
| { |
| /* |
| * Currently atomic_notifier_chain_register does not return error and assumed to be always success. |
| * so, incrmenting ecm_notifier_count at beginning. |
| */ |
| atomic_inc(&ecm_notifier_count); |
| |
| return atomic_notifier_chain_register(&ecm_notifier_connection, nb); |
| } |
| EXPORT_SYMBOL(ecm_notifier_register_connection_notify); |
| |
| /* |
| * ecm_notifier_unregister_connection_notify() |
| * Unregister for ECM connection events. |
| */ |
| int ecm_notifier_unregister_connection_notify(struct notifier_block *nb) |
| { |
| atomic_dec(&ecm_notifier_count); |
| |
| return atomic_notifier_chain_unregister(&ecm_notifier_connection, nb); |
| } |
| EXPORT_SYMBOL(ecm_notifier_unregister_connection_notify); |