#include #include #include #include #include #include #include #include #include #include #include #include "linux_ppp.h" #include "crypto.h" #include "triton.h" #include "events.h" #include "ppp.h" #include "ppp_fsm.h" #include "log.h" #include "spinlock.h" #include "mempool.h" #include "memdebug.h" int __export conf_ppp_verbose; int conf_sid_ucase; int conf_single_session = -1; pthread_rwlock_t __export ppp_lock = PTHREAD_RWLOCK_INITIALIZER; __export LIST_HEAD(ppp_list); int __export sock_fd; int __export sock6_fd; int __export urandom_fd; int __export ppp_shutdown; static mempool_t buf_pool; static LIST_HEAD(layers); static unsigned long long seq; #if __WORDSIZE == 32 static spinlock_t seq_lock; #endif __export struct ppp_stat_t ppp_stat; struct layer_node_t { struct list_head entry; int order; struct list_head items; }; static int ppp_chan_read(struct triton_md_handler_t*); static int ppp_unit_read(struct triton_md_handler_t*); static void init_layers(struct ppp_t *); static void _free_layers(struct ppp_t *); static void start_first_layer(struct ppp_t *); void __export ppp_init(struct ppp_t *ppp) { memset(ppp,0,sizeof(*ppp)); INIT_LIST_HEAD(&ppp->layers); INIT_LIST_HEAD(&ppp->chan_handlers); INIT_LIST_HEAD(&ppp->unit_handlers); INIT_LIST_HEAD(&ppp->pd_list); } static void generate_sessionid(struct ppp_t *ppp) { unsigned long long sid; #if __WORDSIZE == 32 spin_lock(&seq_lock); sid = ++seq; spin_unlock(&seq_lock); #else sid = __sync_add_and_fetch(&seq, 1); #endif if (conf_sid_ucase) sprintf(ppp->sessionid, "%016llX", sid); else sprintf(ppp->sessionid, "%016llx", sid); } int __export establish_ppp(struct ppp_t *ppp) { struct ifreq ifr; /* Open an instance of /dev/ppp and connect the channel to it */ if (ioctl(ppp->fd, PPPIOCGCHAN, &ppp->chan_idx) == -1) { log_ppp_error("ioctl(PPPIOCGCHAN): %s\n", strerror(errno)); return -1; } ppp->chan_fd = open("/dev/ppp", O_RDWR); if (ppp->chan_fd < 0) { log_ppp_error("open(chan) /dev/ppp: %s\n", strerror(errno)); return -1; } fcntl(ppp->chan_fd, F_SETFD, fcntl(ppp->chan_fd, F_GETFD) | FD_CLOEXEC); if (ioctl(ppp->chan_fd, PPPIOCATTCHAN, &ppp->chan_idx) < 0) { log_ppp_error("ioctl(PPPIOCATTCHAN): %s\n", strerror(errno)); goto exit_close_chan; } ppp->unit_fd = open("/dev/ppp", O_RDWR); if (ppp->unit_fd < 0) { log_ppp_error("open(unit) /dev/ppp: %s\n", strerror(errno)); goto exit_close_chan; } fcntl(ppp->unit_fd, F_SETFD, fcntl(ppp->unit_fd, F_GETFD) | FD_CLOEXEC); ppp->unit_idx = -1; if (ioctl(ppp->unit_fd, PPPIOCNEWUNIT, &ppp->unit_idx) < 0) { log_ppp_error("ioctl(PPPIOCNEWUNIT): %s\n", strerror(errno)); goto exit_close_unit; } if (ioctl(ppp->chan_fd, PPPIOCCONNECT, &ppp->unit_idx) < 0) { log_ppp_error("ioctl(PPPIOCCONNECT): %s\n", strerror(errno)); goto exit_close_unit; } if (fcntl(ppp->chan_fd, F_SETFL, O_NONBLOCK)) { log_ppp_error("ppp: cann't to set nonblocking mode: %s\n", strerror(errno)); goto exit_close_unit; } if (fcntl(ppp->unit_fd, F_SETFL, O_NONBLOCK)) { log_ppp_error("ppp: cann't to set nonblocking mode: %s\n", strerror(errno)); goto exit_close_unit; } ppp->start_time = time(NULL); generate_sessionid(ppp); sprintf(ppp->ifname, "ppp%i", ppp->unit_idx); memset(&ifr, 0, sizeof(ifr)); strcpy(ifr.ifr_name, ppp->ifname); if (ioctl(sock_fd, SIOCGIFINDEX, &ifr)) { log_ppp_error("ppp: ioctl(SIOCGIFINDEX): %s\n", strerror(errno)); goto exit_close_unit; } ppp->ifindex = ifr.ifr_ifindex; log_ppp_info1("connect: %s <--> %s(%s)\n", ppp->ifname, ppp->ctrl->name, ppp->chan_name); init_layers(ppp); if (list_empty(&ppp->layers)) { log_ppp_error("no layers to start\n"); goto exit_close_unit; } ppp->buf = mempool_alloc(buf_pool); ppp->chan_hnd.fd = ppp->chan_fd; ppp->chan_hnd.read = ppp_chan_read; ppp->unit_hnd.fd = ppp->unit_fd; ppp->unit_hnd.read = ppp_unit_read; triton_md_register_handler(ppp->ctrl->ctx, &ppp->chan_hnd); triton_md_register_handler(ppp->ctrl->ctx, &ppp->unit_hnd); triton_md_enable_handler(&ppp->chan_hnd, MD_MODE_READ); triton_md_enable_handler(&ppp->unit_hnd, MD_MODE_READ); ppp->state = PPP_STATE_STARTING; __sync_add_and_fetch(&ppp_stat.starting, 1); pthread_rwlock_wrlock(&ppp_lock); list_add_tail(&ppp->entry, &ppp_list); pthread_rwlock_unlock(&ppp_lock); log_ppp_debug("ppp established\n"); triton_event_fire(EV_PPP_STARTING, ppp); start_first_layer(ppp); return 0; exit_close_unit: close(ppp->unit_fd); exit_close_chan: close(ppp->chan_fd); if (ppp->buf) mempool_free(ppp->buf); return -1; } static void destablish_ppp(struct ppp_t *ppp) { triton_event_fire(EV_PPP_PRE_FINISHED, ppp); pthread_rwlock_wrlock(&ppp_lock); list_del(&ppp->entry); pthread_rwlock_unlock(&ppp_lock); switch (ppp->state) { case PPP_STATE_ACTIVE: __sync_sub_and_fetch(&ppp_stat.active, 1); break; case PPP_STATE_STARTING: __sync_sub_and_fetch(&ppp_stat.starting, 1); break; case PPP_STATE_FINISHING: __sync_sub_and_fetch(&ppp_stat.finishing, 1); break; } triton_md_unregister_handler(&ppp->chan_hnd); triton_md_unregister_handler(&ppp->unit_hnd); close(ppp->unit_fd); close(ppp->chan_fd); close(ppp->fd); ppp->unit_fd = -1; ppp->chan_fd = -1; ppp->fd = -1; _free_layers(ppp); ppp->terminated = 1; log_ppp_debug("ppp destablished\n"); triton_event_fire(EV_PPP_FINISHED, ppp); ppp->ctrl->finished(ppp); mempool_free(ppp->buf); if (ppp->username) { _free(ppp->username); ppp->username = NULL; } if (ppp->ipv4_pool_name) { _free(ppp->ipv4_pool_name); ppp->ipv4_pool_name = NULL; } if (ppp->ipv6_pool_name) { _free(ppp->ipv6_pool_name); ppp->ipv6_pool_name = NULL; } if (ppp_shutdown && !ppp_stat.starting && !ppp_stat.active && !ppp_stat.finishing) kill(getpid(), SIGTERM); } /*void print_buf(uint8_t *buf, int size) { int i; for(i=0;ichan_fd,data,size); if (n < size) log_ppp_error("ppp_chan_send: short write %i, excpected %i\n", n, size); return n; } int __export ppp_unit_send(struct ppp_t *ppp, void *data, int size) { int n; //printf("ppp_unit_send: "); //print_buf((uint8_t*)data,size); n=write(ppp->unit_fd, data, size); if (n < size) log_ppp_error("ppp_unit_send: short write %i, excpected %i\n",n,size); return n; } static int ppp_chan_read(struct triton_md_handler_t *h) { struct ppp_t *ppp = container_of(h, typeof(*ppp), chan_hnd); struct ppp_handler_t *ppp_h; uint16_t proto; while(1) { cont: ppp->buf_size = read(h->fd, ppp->buf, PPP_MRU); if (ppp->buf_size < 0) { if (errno == EAGAIN) return 0; log_ppp_error("ppp_chan_read: %s\n", strerror(errno)); return 0; } //printf("ppp_chan_read: "); //print_buf(ppp->buf,ppp->buf_size); if (ppp->buf_size == 0) { ppp_terminate(ppp, TERM_NAS_ERROR, 1); return 1; } if (ppp->buf_size < 2) { log_ppp_error("ppp_chan_read: short read %i\n", ppp->buf_size); continue; } proto = ntohs(*(uint16_t*)ppp->buf); list_for_each_entry(ppp_h, &ppp->chan_handlers, entry) { if (ppp_h->proto == proto) { ppp_h->recv(ppp_h); if (ppp->chan_fd == -1) { //ppp->ctrl->finished(ppp); return 1; } goto cont; } } lcp_send_proto_rej(ppp, proto); //log_ppp_warn("ppp_chan_read: discarding unknown packet %x\n", proto); } } static int ppp_unit_read(struct triton_md_handler_t *h) { struct ppp_t *ppp = container_of(h, typeof(*ppp), unit_hnd); struct ppp_handler_t *ppp_h; uint16_t proto; while (1) { cont: ppp->buf_size = read(h->fd, ppp->buf, PPP_MRU); if (ppp->buf_size < 0) { if (errno == EAGAIN) return 0; log_ppp_error("ppp_unit_read: %s\n",strerror(errno)); return 0; } //printf("ppp_unit_read: "); //print_buf(ppp->buf,ppp->buf_size); if (ppp->buf_size == 0) { ppp_terminate(ppp, TERM_NAS_ERROR, 1); return 1; } if (ppp->buf_size < 2) { log_ppp_error("ppp_unit_read: short read %i\n", ppp->buf_size); continue; } proto=ntohs(*(uint16_t*)ppp->buf); list_for_each_entry(ppp_h, &ppp->unit_handlers, entry) { if (ppp_h->proto == proto) { ppp_h->recv(ppp_h); if (ppp->unit_fd == -1) { //ppp->ctrl->finished(ppp); return 1; } goto cont; } } lcp_send_proto_rej(ppp, proto); //log_ppp_warn("ppp_unit_read: discarding unknown packet %x\n", proto); } } void ppp_recv_proto_rej(struct ppp_t *ppp, uint16_t proto) { struct ppp_handler_t *ppp_h; list_for_each_entry(ppp_h, &ppp->chan_handlers, entry) { if (ppp_h->proto == proto) { if (ppp_h->recv_proto_rej) ppp_h->recv_proto_rej(ppp_h); return; } } list_for_each_entry(ppp_h, &ppp->unit_handlers, entry) { if (ppp_h->proto == proto) { if (ppp_h->recv_proto_rej) ppp_h->recv_proto_rej(ppp_h); return; } } } static void ppp_ifup(struct ppp_t *ppp) { struct ifreq ifr; struct npioctl np; triton_event_fire(EV_PPP_ACCT_START, ppp); if (ppp->stop_time) return; triton_event_fire(EV_PPP_PRE_UP, ppp); if (ppp->stop_time) return; memset(&ifr, 0, sizeof(ifr)); strcpy(ifr.ifr_name, ppp->ifname); if (ioctl(sock_fd, SIOCGIFFLAGS, &ifr)) log_ppp_error("ppp: failed to get interface flags: %s\n", strerror(errno)); ifr.ifr_flags |= IFF_UP | IFF_POINTOPOINT; if (ioctl(sock_fd, SIOCSIFFLAGS, &ifr)) log_ppp_error("ppp: failed to set interface flags: %s\n", strerror(errno)); if (ppp->ipv4) { np.protocol = PPP_IP; np.mode = NPMODE_PASS; if (ioctl(ppp->unit_fd, PPPIOCSNPMODE, &np)) log_ppp_error("ppp: failed to set NP (IPv4) mode: %s\n", strerror(errno)); } if (ppp->ipv6) { np.protocol = PPP_IPV6; np.mode = NPMODE_PASS; if (ioctl(ppp->unit_fd, PPPIOCSNPMODE, &np)) log_ppp_error("ppp: failed to set NP (IPv6) mode: %s\n", strerror(errno)); } ppp->ctrl->started(ppp); triton_event_fire(EV_PPP_STARTED, ppp); } static void __ppp_layer_started(struct ppp_t *ppp, struct ppp_layer_data_t *d) { struct layer_node_t *n = d->node; int f = 0; list_for_each_entry(d, &n->items, entry) { if (!d->started && !d->passive) return; if (d->started && !d->optional) f = 1; } if (!f) return; if (n->entry.next == &ppp->layers) { if (ppp->state == PPP_STATE_STARTING) { ppp->state = PPP_STATE_ACTIVE; __sync_sub_and_fetch(&ppp_stat.starting, 1); __sync_add_and_fetch(&ppp_stat.active, 1); ppp_ifup(ppp); } } else { n = list_entry(n->entry.next, typeof(*n), entry); list_for_each_entry(d, &n->items, entry) { d->starting = 1; if (d->layer->start(d)) { ppp_terminate(ppp, TERM_NAS_ERROR, 0); return; } } } } void __export ppp_layer_started(struct ppp_t *ppp, struct ppp_layer_data_t *d) { if (d->started) return; d->started = 1; __ppp_layer_started(ppp, d); } void __export ppp_layer_passive(struct ppp_t *ppp, struct ppp_layer_data_t *d) { if (d->started) return; d->passive = 1; __ppp_layer_started(ppp, d); } void __export ppp_layer_finished(struct ppp_t *ppp, struct ppp_layer_data_t *d) { struct layer_node_t *n = d->node; d->finished = 1; d->starting = 0; list_for_each_entry(n, &ppp->layers, entry) { list_for_each_entry(d, &n->items, entry) { if (d->starting && !d->finished) return; } } destablish_ppp(ppp); } void __export ppp_terminate(struct ppp_t *ppp, int cause, int hard) { struct layer_node_t *n; struct ppp_layer_data_t *d; int s = 0; if (ppp->terminated) return; if (!ppp->stop_time) time(&ppp->stop_time); if (!ppp->terminate_cause) ppp->terminate_cause = cause; if (ppp->terminating) { if (hard) destablish_ppp(ppp); return; } ppp->terminating = 1; if (ppp->state == PPP_STATE_ACTIVE) __sync_sub_and_fetch(&ppp_stat.active, 1); else __sync_sub_and_fetch(&ppp_stat.starting, 1); __sync_add_and_fetch(&ppp_stat.finishing, 1); ppp->state = PPP_STATE_FINISHING; log_ppp_debug("ppp_terminate\n"); triton_event_fire(EV_PPP_FINISHING, ppp); if (hard) { destablish_ppp(ppp); return; } list_for_each_entry(n,&ppp->layers,entry) { list_for_each_entry(d,&n->items,entry) { if (d->starting) { s = 1; d->layer->finish(d); } } } if (s) return; destablish_ppp(ppp); } void __export ppp_register_chan_handler(struct ppp_t *ppp,struct ppp_handler_t *h) { list_add_tail(&h->entry,&ppp->chan_handlers); } void __export ppp_register_unit_handler(struct ppp_t *ppp,struct ppp_handler_t *h) { list_add_tail(&h->entry,&ppp->unit_handlers); } void __export ppp_unregister_handler(struct ppp_t *ppp,struct ppp_handler_t *h) { list_del(&h->entry); } static int get_layer_order(const char *name) { if (!strcmp(name,"lcp")) return 0; if (!strcmp(name,"auth")) return 1; if (!strcmp(name,"ccp")) return 2; if (!strcmp(name,"ipcp")) return 2; if (!strcmp(name,"ipv6cp")) return 2; return -1; } int __export ppp_register_layer(const char *name, struct ppp_layer_t *layer) { int order; struct layer_node_t *n,*n1; order = get_layer_order(name); if (order < 0) return order; list_for_each_entry(n, &layers, entry) { if (order > n->order) continue; if (order < n->order) { n1 = _malloc(sizeof(*n1)); memset(n1, 0, sizeof(*n1)); n1->order = order; INIT_LIST_HEAD(&n1->items); list_add_tail(&n1->entry, &n->entry); n = n1; } goto insert; } n1 = _malloc(sizeof(*n1)); memset(n1, 0, sizeof(*n1)); n1->order = order; INIT_LIST_HEAD(&n1->items); list_add_tail(&n1->entry, &layers); n = n1; insert: list_add_tail(&layer->entry, &n->items); return 0; } void __export ppp_unregister_layer(struct ppp_layer_t *layer) { list_del(&layer->entry); } static void init_layers(struct ppp_t *ppp) { struct layer_node_t *n, *n1; struct ppp_layer_t *l; struct ppp_layer_data_t *d; list_for_each_entry(n,&layers,entry) { n1 = _malloc(sizeof(*n1)); memset(n1, 0, sizeof(*n1)); INIT_LIST_HEAD(&n1->items); list_add_tail(&n1->entry, &ppp->layers); list_for_each_entry(l, &n->items, entry) { d = l->init(ppp); d->layer = l; d->started = 0; d->node = n1; list_add_tail(&d->entry, &n1->items); } } } static void _free_layers(struct ppp_t *ppp) { struct layer_node_t *n; struct ppp_layer_data_t *d; while (!list_empty(&ppp->layers)) { n = list_entry(ppp->layers.next, typeof(*n), entry); while (!list_empty(&n->items)) { d = list_entry(n->items.next, typeof(*d), entry); list_del(&d->entry); d->layer->free(d); } list_del(&n->entry); _free(n); } } static void start_first_layer(struct ppp_t *ppp) { struct layer_node_t *n; struct ppp_layer_data_t *d; n = list_entry(ppp->layers.next, typeof(*n), entry); list_for_each_entry(d, &n->items, entry) { d->starting = 1; if (d->layer->start(d)) { ppp_terminate(ppp, TERM_NAS_ERROR, 0); return; } } } struct ppp_layer_data_t *ppp_find_layer_data(struct ppp_t *ppp, struct ppp_layer_t *layer) { struct layer_node_t *n; struct ppp_layer_data_t *d; list_for_each_entry(n,&ppp->layers,entry) { list_for_each_entry(d,&n->items,entry) { if (d->layer == layer) return d; } } return NULL; } void ppp_shutdown_soft(void) { ppp_shutdown = 1; if (!ppp_stat.starting && !ppp_stat.active && !ppp_stat.finishing) kill(getpid(), SIGTERM); } static void save_seq(void) { FILE *f; char *opt = conf_get_opt("ppp", "seq-file"); if (!opt) opt = "/var/run/accel-ppp/seq"; f = fopen(opt, "w"); if (f) { fprintf(f, "%llu", seq); fclose(f); } } static void load_config(void) { char *opt; opt = conf_get_opt("ppp", "verbose"); if (opt && atoi(opt) > 0) conf_ppp_verbose = 1; opt = conf_get_opt("ppp", "sid-case"); if (opt) { if (!strcmp(opt, "upper")) conf_sid_ucase = 1; else if (strcmp(opt, "lower")) log_emerg("ppp: sid-case: invalid format\n"); } opt = conf_get_opt("ppp", "single-session"); if (opt) { if (!strcmp(opt, "deny")) conf_single_session = 0; else if (!strcmp(opt, "replace")) conf_single_session = 1; } else conf_single_session = -1; } static void init(void) { char *opt; FILE *f; buf_pool = mempool_create(PPP_MRU); sock_fd = socket(AF_INET, SOCK_DGRAM, 0); if (sock_fd < 0) { perror("socket"); _exit(EXIT_FAILURE); } fcntl(sock_fd, F_SETFD, fcntl(sock_fd, F_GETFD) | FD_CLOEXEC); sock6_fd = socket(AF_INET6, SOCK_DGRAM, 0); if (sock6_fd < 0) log_warn("ppp: kernel doesn't support ipv6\n"); else fcntl(sock6_fd, F_SETFD, fcntl(sock6_fd, F_GETFD) | FD_CLOEXEC); urandom_fd = open("/dev/urandom", O_RDONLY); if (urandom_fd < 0) { log_emerg("failed to open /dev/urandom: %s\n", strerror(errno)); return; } fcntl(urandom_fd, F_SETFD, fcntl(urandom_fd, F_GETFD) | FD_CLOEXEC); opt = conf_get_opt("ppp", "seq-file"); if (!opt) opt = "/var/run/accel-ppp/seq"; f = fopen(opt, "r"); if (f) { fscanf(f, "%llu", &seq); fclose(f); } else seq = (unsigned long long)random() * (unsigned long long)random(); load_config(); triton_event_register_handler(EV_CONFIG_RELOAD, (triton_event_func)load_config); atexit(save_seq); } DEFINE_INIT(2, init);