Book a Demo!
CoCalc Logo Icon
StoreFeaturesDocsShareSupportNewsAboutPoliciesSign UpSign In
freebsd
GitHub Repository: freebsd/freebsd-src
 Path: blob/main/sys/netpfil/ipfw/nat64/ip_fw_nat64.c
39536 views
1
/*-

2
 * SPDX-License-Identifier: BSD-2-Clause

3
 *

4
 * Copyright (c) 2015-2019 Yandex LLC

5
 * Copyright (c) 2015-2019 Andrey V. Elsukov <[email protected]>

6
 *

7
 * Redistribution and use in source and binary forms, with or without

8
 * modification, are permitted provided that the following conditions

9
 * are met:

10
 *

11
 * 1. Redistributions of source code must retain the above copyright

12
 *    notice, this list of conditions and the following disclaimer.

13
 * 2. Redistributions in binary form must reproduce the above copyright

14
 *    notice, this list of conditions and the following disclaimer in the

15
 *    documentation and/or other materials provided with the distribution.

16
 *

17
 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR

18
 * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES

19
 * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.

20
 * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,

21
 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

22
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,

23
 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY

24
 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT

25
 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF

26
 * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

27
 */

28


29
#include <sys/param.h>

30
#include <sys/systm.h>

31
#include <sys/kernel.h>

32
#include <sys/lock.h>

33
#include <sys/malloc.h>

34
#include <sys/module.h>

35
#include <sys/rwlock.h>

36
#include <sys/socket.h>

37
#include <sys/sysctl.h>

38


39
#include <net/if.h>

40
#include <net/vnet.h>

41


42
#include <netinet/in.h>

43
#include <netinet/ip_var.h>

44
#include <netinet/ip_fw.h>

45


46
#include <netpfil/ipfw/ip_fw_private.h>

47


48
#include "ip_fw_nat64.h"

49
#include "nat64_translate.h"

50


51
VNET_DEFINE(int, nat64_debug) = 0;

52


53
SYSCTL_DECL(_net_inet_ip_fw);

54
SYSCTL_INT(_net_inet_ip_fw, OID_AUTO, nat64_debug, CTLFLAG_VNET | CTLFLAG_RW,

55
    &VNET_NAME(nat64_debug), 0, "Debug level for NAT64 module");

56


57
static int

58
sysctl_direct_output(SYSCTL_HANDLER_ARGS)

59
{

60
	uint32_t value;

61
	int error;

62


63
	value = nat64_get_output_method();

64
	error = sysctl_handle_32(oidp, &value, 0, req);

65
	/* Read operation or some error */

66
	if ((error != 0) || (req->newptr == NULL))

67
		return (error);

68
	nat64_set_output_method(value);

69
	return (0);

70
}

71
SYSCTL_PROC(_net_inet_ip_fw, OID_AUTO, nat64_direct_output,

72
    CTLFLAG_VNET | CTLTYPE_U32 | CTLFLAG_RW | CTLFLAG_NEEDGIANT,

73
    0, 0, sysctl_direct_output, "IU",

74
    "Use if_output directly instead of deffered netisr-based processing");

75


76
static int

77
vnet_ipfw_nat64_init(const void *arg __unused)

78
{

79
	struct ip_fw_chain *ch;

80
	int first, error;

81


82
	ch = &V_layer3_chain;

83
	first = IS_DEFAULT_VNET(curvnet) ? 1: 0;

84
	/* Initialize V_nat64out methods explicitly. */

85
	nat64_set_output_method(0);

86
	error = nat64stl_init(ch, first);

87
	if (error != 0)

88
		return (error);

89
	error = nat64clat_init(ch, first);

90
	if (error != 0) {

91
		nat64stl_uninit(ch, first);

92
		return (error);

93
	}

94
	error = nat64lsn_init(ch, first);

95
	if (error != 0) {

96
		nat64stl_uninit(ch, first);

97
		nat64clat_uninit(ch, first);

98
		return (error);

99
	}

100
	return (0);

101
}

102


103
static int

104
vnet_ipfw_nat64_uninit(const void *arg __unused)

105
{

106
	struct ip_fw_chain *ch;

107
	int last;

108


109
	ch = &V_layer3_chain;

110
	last = IS_DEFAULT_VNET(curvnet) ? 1: 0;

111
	nat64stl_uninit(ch, last);

112
	nat64clat_uninit(ch, last);

113
	nat64lsn_uninit(ch, last);

114
	return (0);

115
}

116


117
static int

118
ipfw_nat64_modevent(module_t mod, int type, void *unused)

119
{

120


121
	switch (type) {

122
	case MOD_LOAD:

123
	case MOD_UNLOAD:

124
		break;

125
	default:

126
		return (EOPNOTSUPP);

127
	}

128
	return (0);

129
}

130


131
static moduledata_t ipfw_nat64_mod = {

132
	"ipfw_nat64",

133
	ipfw_nat64_modevent,

134
	0

135
};

136


137
/* Define startup order. */

138
#define	IPFW_NAT64_SI_SUB_FIREWALL	SI_SUB_PROTO_IFATTACHDOMAIN

139
#define	IPFW_NAT64_MODEVENT_ORDER	(SI_ORDER_ANY - 128) /* after ipfw */

140
#define	IPFW_NAT64_MODULE_ORDER		(IPFW_NAT64_MODEVENT_ORDER + 1)

141
#define	IPFW_NAT64_VNET_ORDER		(IPFW_NAT64_MODEVENT_ORDER + 2)

142


143
DECLARE_MODULE(ipfw_nat64, ipfw_nat64_mod, IPFW_NAT64_SI_SUB_FIREWALL,

144
    SI_ORDER_ANY);

145
MODULE_DEPEND(ipfw_nat64, ipfw, 3, 3, 3);

146
MODULE_VERSION(ipfw_nat64, 1);

147


148
VNET_SYSINIT(vnet_ipfw_nat64_init, IPFW_NAT64_SI_SUB_FIREWALL,

149
    IPFW_NAT64_VNET_ORDER, vnet_ipfw_nat64_init, NULL);

150
VNET_SYSUNINIT(vnet_ipfw_nat64_uninit, IPFW_NAT64_SI_SUB_FIREWALL,

151
    IPFW_NAT64_VNET_ORDER, vnet_ipfw_nat64_uninit, NULL);

152


153