diff mbox

[RFC,3/4] batman-adv: added necessary functions for NDP, like checking if a packet is valid or creating a Neighbor Advertisement

Message ID 1368793673-27539-3-git-send-email-mihail.costea2005@gmail.com
State RFC, archived
Headers show

Commit Message

YourName May 17, 2013, 12:27 p.m. UTC 
From: "mihail.costea90@gmail.com" <mihail.costea90@gmail.com>

Added functions needed for NDP snooping, like getting the IPv6 addresses
or getting the target HW address from an Neighbor Advertisement (NA).
Also added functions to create NA for Neighbor
Solicitations that have already the HW address in DAT.

Problems: I have to generate router and override flags for NA. For now
I don't now exactly how to get them. From what I've seen, batman could
now which nodes are routers, but for override flag, we should find a
mechanism to know if the node is proxy or has anycast address.
For inspiration I have used the code at: <net/ipv6/ndisc.c>.

Signed-off-by: Mihail Costea <mihail.costea90@gmail.com>
Signed-off-by: Stefan Popa <Stefan.A.Popa@intel.com>
Reviewed-by: Stefan Popa <Stefan.A.Popa@intel.com>

---
 distributed-arp-table.c |  322 +++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 322 insertions(+)

Comments

Antonio Quartulli May 26, 2013, 2:02 p.m. UTC | #1 
On Fri, May 17, 2013 at 03:27:51PM +0300, Mihail wrote:
> From: "mihail.costea90@gmail.com" <mihail.costea90@gmail.com>
> 
> Added functions needed for NDP snooping, like getting the IPv6 addresses
> or getting the target HW address from an Neighbor Advertisement (NA).
> Also added functions to create NA for Neighbor
> Solicitations that have already the HW address in DAT.
> 
> Problems: I have to generate router and override flags for NA. For now
> I don't now exactly how to get them. From what I've seen, batman could
> now which nodes are routers, but for override flag, we should find a
> mechanism to know if the node is proxy or has anycast address.
> For inspiration I have used the code at: <net/ipv6/ndisc.c>.

What is the concept you have in mind?
Maybe you first explain a bit more about your idea so that we can help you in
find a way to implement that.

You want to edit the router address and flags carried by the NA?
Mihail Costea May 29, 2013, 3:36 p.m. UTC | #2 
On 26 May 2013 07:02, Antonio Quartulli <ordex@autistici.org> wrote:
> On Fri, May 17, 2013 at 03:27:51PM +0300, Mihail wrote:
>> From: "mihail.costea90@gmail.com" <mihail.costea90@gmail.com>
>>
>> Added functions needed for NDP snooping, like getting the IPv6 addresses
>> or getting the target HW address from an Neighbor Advertisement (NA).
>> Also added functions to create NA for Neighbor
>> Solicitations that have already the HW address in DAT.
>>
>> Problems: I have to generate router and override flags for NA. For now
>> I don't now exactly how to get them. From what I've seen, batman could
>> now which nodes are routers, but for override flag, we should find a
>> mechanism to know if the node is proxy or has anycast address.
>> For inspiration I have used the code at: <net/ipv6/ndisc.c>.
>
> What is the concept you have in mind?
> Maybe you first explain a bit more about your idea so that we can help you in
> find a way to implement that.
>
> You want to edit the router address and flags carried by the NA?
>

When creating the NA response for an HW address already contained in
the DAT, I must set 3 flags: router, solicited and override.

The solicited flag is 1 because I only answer to solicited NS.

The router flag should be 1 only if the device for which we have the
HW address is a router. From what I've seen there are some functions
in batatv for finding routers, but I'll have to see if they can be
used on the nodes connected to mesh-nodes. Or maybe there is another
way to see if the device is a router.

About the override flag, I don't really have an idea. I didn't
understand very well how it was calculated in net/ipv6/ndisc.c so I
set it to 1 by default (it should be 0 for proxy and anycast address).

> --
> Antonio Quartulli
>
> ..each of us alone is worth nothing..
> Ernesto "Che" Guevara

Thanks,
Mihail
Antonio Quartulli May 29, 2013, 3:43 p.m. UTC | #3 
On Wed, May 29, 2013 at 08:36:50AM -0700, Mihail Costea wrote:
> On 26 May 2013 07:02, Antonio Quartulli <ordex@autistici.org> wrote:
> > On Fri, May 17, 2013 at 03:27:51PM +0300, Mihail wrote:
> >> From: "mihail.costea90@gmail.com" <mihail.costea90@gmail.com>
> >>
> >> Added functions needed for NDP snooping, like getting the IPv6 addresses
> >> or getting the target HW address from an Neighbor Advertisement (NA).
> >> Also added functions to create NA for Neighbor
> >> Solicitations that have already the HW address in DAT.
> >>
> >> Problems: I have to generate router and override flags for NA. For now
> >> I don't now exactly how to get them. From what I've seen, batman could
> >> now which nodes are routers, but for override flag, we should find a
> >> mechanism to know if the node is proxy or has anycast address.
> >> For inspiration I have used the code at: <net/ipv6/ndisc.c>.
> >
> > What is the concept you have in mind?
> > Maybe you first explain a bit more about your idea so that we can help you in
> > find a way to implement that.
> >
> > You want to edit the router address and flags carried by the NA?
> >
> 
> When creating the NA response for an HW address already contained in
> the DAT, I must set 3 flags: router, solicited and override.
> 
> The solicited flag is 1 because I only answer to solicited NS.
> 
> The router flag should be 1 only if the device for which we have the
> HW address is a router. From what I've seen there are some functions
> in batatv for finding routers, but I'll have to see if they can be
> used on the nodes connected to mesh-nodes. Or maybe there is another
> way to see if the device is a router.

I guess here you are looking for an IPv6 router, right? so a node which
advertised itself as it, correct? In this case in batman-adv there is nothing
which can help you because there is no IPv6 detection of any type..
How can we recognise if a node is advertising itself as router? maybe by
snooping other NDP messages?

> 
> About the override flag, I don't really have an idea. I didn't
> understand very well how it was calculated in net/ipv6/ndisc.c so I
> set it to 1 by default (it should be 0 for proxy and anycast address).
> 

mh..ok. We may want to better check this once more to avoid triggering any
strange behaviour in the network :)

Cheers,
Mihail Costea May 30, 2013, 2:19 a.m. UTC | #4 
On 29 May 2013 08:43, Antonio Quartulli <ordex@autistici.org> wrote:
> On Wed, May 29, 2013 at 08:36:50AM -0700, Mihail Costea wrote:
>> On 26 May 2013 07:02, Antonio Quartulli <ordex@autistici.org> wrote:
>> > On Fri, May 17, 2013 at 03:27:51PM +0300, Mihail wrote:
>> >> From: "mihail.costea90@gmail.com" <mihail.costea90@gmail.com>
>> >>
>> >> Added functions needed for NDP snooping, like getting the IPv6 addresses
>> >> or getting the target HW address from an Neighbor Advertisement (NA).
>> >> Also added functions to create NA for Neighbor
>> >> Solicitations that have already the HW address in DAT.
>> >>
>> >> Problems: I have to generate router and override flags for NA. For now
>> >> I don't now exactly how to get them. From what I've seen, batman could
>> >> now which nodes are routers, but for override flag, we should find a
>> >> mechanism to know if the node is proxy or has anycast address.
>> >> For inspiration I have used the code at: <net/ipv6/ndisc.c>.
>> >
>> > What is the concept you have in mind?
>> > Maybe you first explain a bit more about your idea so that we can help you in
>> > find a way to implement that.
>> >
>> > You want to edit the router address and flags carried by the NA?
>> >
>>
>> When creating the NA response for an HW address already contained in
>> the DAT, I must set 3 flags: router, solicited and override.
>>
>> The solicited flag is 1 because I only answer to solicited NS.
>>
>> The router flag should be 1 only if the device for which we have the
>> HW address is a router. From what I've seen there are some functions
>> in batatv for finding routers, but I'll have to see if they can be
>> used on the nodes connected to mesh-nodes. Or maybe there is another
>> way to see if the device is a router.
>
> I guess here you are looking for an IPv6 router, right? so a node which
> advertised itself as it, correct? In this case in batman-adv there is nothing
> which can help you because there is no IPv6 detection of any type..
> How can we recognise if a node is advertising itself as router? maybe by
> snooping other NDP messages?
>

I'll look into this. There are some router packets, so those might be useful.

>>
>> About the override flag, I don't really have an idea. I didn't
>> understand very well how it was calculated in net/ipv6/ndisc.c so I
>> set it to 1 by default (it should be 0 for proxy and anycast address).
>>
>
> mh..ok. We may want to better check this once more to avoid triggering any
> strange behaviour in the network :)
>
> Cheers,
>
> --
> Antonio Quartulli
>
> ..each of us alone is worth nothing..
> Ernesto "Che" Guevara

This needs more research. Maybe we can find something for this.

I'll get a laptop in 1-2 weeks, but I'll be able to work only during
weekends. I'll implement the mentioned changes at that moment.

--
Mihail Costea
diff mbox

Patch

diff --git a/distributed-arp-table.c b/distributed-arp-table.c
index 42118be..bd69b89 100644
--- a/distributed-arp-table.c
+++ b/distributed-arp-table.c
@@ -19,7 +19,9 @@ 
 
 #include <linux/if_ether.h>
 #include <linux/if_arp.h>
+#include <net/addrconf.h>
 #include <net/arp.h>
+#include <net/ipv6.h>
 
 #include "main.h"
 #include "hash.h"
@@ -999,6 +1001,326 @@  out:
 	return type;
 }
 
+#if IS_ENABLED(CONFIG_IPV6)
+/**
+ * batadv_ndisc_hw_src - get source hw address from a packet
+ * @skb: packet to check
+ * @hdr_size: size of the encapsulation header
+ *
+ * Returns source hw address of the skb packet.
+ */
+static uint8_t *batadv_ndisc_hw_src(struct sk_buff *skb, int hdr_size)
+{
+	struct ethhdr *ethhdr;
+	ethhdr = (struct ethhdr *)(skb->data + hdr_size);
+	return (uint8_t *)ethhdr->h_source;
+}
+
+/**
+ * batadv_ndisc_hw_dst - get destination hw address from a packet
+ * @skb: packet to check
+ * @hdr_size: size of the encapsulation header
+ *
+ * Returns destination hw address of the skb packet.
+ */
+static uint8_t *batadv_ndisc_hw_dst(struct sk_buff *skb, int hdr_size)
+{
+	struct ethhdr *ethhdr;
+	ethhdr = (struct ethhdr *)(skb->data + hdr_size);
+	return (uint8_t *)ethhdr->h_dest;
+}
+
+/**
+ * batadv_ndisc_ipv6_src - get source IPv6 address from a packet
+ * @skb: packet to check
+ * @hdr_size: size of the encapsulation header
+ *
+ * Returns source IPv6 address of the skb packet.
+ */
+static struct in6_addr *batadv_ndisc_ipv6_src(struct sk_buff *skb,
+					      int hdr_size)
+{
+	struct ipv6hdr *ipv6hdr;
+	ipv6hdr = (struct ipv6hdr *)(skb->data + hdr_size + ETH_HLEN);
+	return &ipv6hdr->saddr;
+}
+
+/**
+ * batadv_ndisc_ipv6_dst - get destination IPv6 address from a packet
+ * @skb: packet to check
+ * @hdr_size: size of the encapsulation header
+ *
+ * Returns destination IPv6 address of the skb packet.
+ */
+static struct in6_addr *batadv_ndisc_ipv6_dst(struct sk_buff *skb,
+					      int hdr_size)
+{
+	struct ipv6hdr *ipv6hdr;
+	ipv6hdr = (struct ipv6hdr *)(skb->data + hdr_size + ETH_HLEN);
+	return &ipv6hdr->daddr;
+}
+
+/**
+ * batadv_ndisc_ipv6_target - get target IPv6 address from a NS/NA packet
+ * @skb: packet to check
+ * @hdr_size: size of the encapsulation header
+ *
+ * Returns target IPv6 address of the skb packet.
+ */
+static struct in6_addr *batadv_ndisc_ipv6_target(struct sk_buff *skb,
+						 int hdr_size)
+{
+	return (struct in6_addr *)(skb->data + hdr_size + ETH_HLEN +
+			sizeof(struct ipv6hdr) + sizeof(struct icmp6hdr));
+}
+
+/**
+ * batadv_ndisc_hw_opt - get hw address from NS/NA packet options
+ * @skb: packet to check
+ * @hdr_size: size of the encapsulation header
+ * @type: type of the address (ND_OPT_SOURCE_LL_ADDR or ND_OPT_TARGET_LL_ADDR)
+ *
+ * The address can be either the source link-layer address
+ * or the target link-layer address.
+ * For more info see RFC2461.
+ *
+ * Returns hw address from packet options.
+ */
+static uint8_t *batadv_ndisc_hw_opt(struct sk_buff *skb, int hdr_size,
+				    uint8_t type)
+{
+	unsigned char *opt_addr;
+
+	opt_addr = skb->data + hdr_size + ETH_HLEN +
+			sizeof(struct ipv6hdr) + sizeof(struct icmp6hdr) +
+			sizeof(struct in6_addr);
+
+	/* test if option header is ok */
+	if (*opt_addr != type || *(opt_addr + 1) != 1)
+		return NULL;
+	return (uint8_t *)(opt_addr + 2);
+}
+
+/**
+ * batadv_ndisc_get_type - get icmp6 packet type
+ * @bat_priv: the bat priv with all the soft interface information
+ * @skb: packet to check
+ * @hdr_size: size of the encapsulation header
+ *
+ * Returns the icmp6 type, or 0 if packet is not a valid icmp6 packet.
+ */
+static __u8 batadv_ndisc_get_type(struct batadv_priv *bat_priv,
+				  struct sk_buff *skb, int hdr_size)
+{
+	struct ethhdr *ethhdr;
+	struct ipv6hdr *ipv6hdr;
+	struct icmp6hdr *icmp6hdr;
+	__u8 type = 0;
+
+	/* pull headers */
+	if (unlikely(!pskb_may_pull(skb, hdr_size + ETH_HLEN +
+			sizeof(struct ipv6hdr) + sizeof(struct icmp6hdr))))
+		goto out;
+
+	/* get the ethernet header */
+	ethhdr = (struct ethhdr *)(skb->data + hdr_size);
+	if (ethhdr->h_proto != htons(ETH_P_IPV6))
+		goto out;
+
+	/* get the ipv6 header */
+	ipv6hdr = (struct ipv6hdr *)(skb->data + hdr_size + ETH_HLEN);
+	if (ipv6hdr->nexthdr != IPPROTO_ICMPV6)
+		goto out;
+
+	/* get the icmpv6 header */
+	icmp6hdr = (struct icmp6hdr *)(skb->data + hdr_size + ETH_HLEN +
+			sizeof(struct ipv6hdr));
+
+	/* check whether the ndisc packet carries a valid icmp6 header */
+	if (ipv6hdr->hop_limit != 255)
+		goto out;
+
+	if (icmp6hdr->icmp6_code != 0)
+		goto out;
+
+	type = icmp6hdr->icmp6_type;
+out:
+	return type;
+}
+
+/**
+ * batadv_ndisc_is_valid - check if a ndisc packet is valid
+ * @bat_priv: the bat priv with all the soft interface information
+ * @skb: packet to check
+ * @hdr_size: size of the encapsulation header
+ * @ndisc_type: type of ndisc packet to check
+ *
+ * Check if all IPs are valid (source, destination, target) and if
+ * options hw address is valid too.
+ * Some options might be ignored, like NS packets sent automatically
+ * for verification of the reachability of a neighbor.
+ *
+ * Returns true if packet is valid, otherwise false if invalid or ignored.
+ */
+static bool batadv_ndisc_is_valid(struct batadv_priv *bat_priv,
+				  struct sk_buff *skb, int hdr_size,
+				  int ndisc_type)
+{
+	uint8_t *hw_target = NULL;
+	struct in6_addr *ipv6_src, *ipv6_dst, *ipv6_target;
+	__u8 type = batadv_ndisc_get_type(bat_priv, skb, hdr_size);
+	int ndisc_hdr_len = hdr_size + ETH_HLEN + sizeof(struct ipv6hdr) +
+			    sizeof(struct icmp6hdr) + sizeof(struct in6_addr) +
+			    8; /* ndisc options length */
+
+	if (type != ndisc_type)
+		return false;
+	if (unlikely(!pskb_may_pull(skb, ndisc_hdr_len)))
+		return false;
+
+	/* Check for bad NA/NS. If the ndisc message is not sane, DAT
+	 * will simply ignore it
+	 */
+	if (type == NDISC_NEIGHBOUR_SOLICITATION)
+		hw_target = batadv_ndisc_hw_opt(skb, hdr_size,
+						ND_OPT_SOURCE_LL_ADDR);
+	else if (type == NDISC_NEIGHBOUR_ADVERTISEMENT)
+		hw_target = batadv_ndisc_hw_opt(skb, hdr_size,
+						ND_OPT_TARGET_LL_ADDR);
+
+	if (!hw_target || is_zero_ether_addr(hw_target) ||
+	    is_multicast_ether_addr(hw_target))
+		return false;
+
+	ipv6_src = batadv_ndisc_ipv6_src(skb, hdr_size);
+	ipv6_dst = batadv_ndisc_ipv6_dst(skb, hdr_size);
+	ipv6_target = batadv_ndisc_ipv6_target(skb, hdr_size);
+	if (ipv6_addr_loopback(ipv6_src) || ipv6_addr_loopback(ipv6_dst) ||
+	    ipv6_addr_is_multicast(ipv6_src) ||
+	    ipv6_addr_is_multicast(ipv6_target))
+		return false;
+
+	/* ignore messages with unspecified address */
+	if (ipv6_addr_any(ipv6_src) || ipv6_addr_any(ipv6_dst) ||
+	    ipv6_addr_any(ipv6_target))
+		return false;
+
+	/* ignore the verification of the reachability of a neighbor */
+	if (type == NDISC_NEIGHBOUR_SOLICITATION &&
+	    !ipv6_addr_is_multicast(ipv6_dst))
+		return false;
+
+	return true;
+}
+
+static void batadv_ndisc_ip6_hdr(struct sock *sk, struct sk_buff *skb,
+				 struct net_device *dev,
+				 const struct in6_addr *ipv6_src,
+				 const struct in6_addr *ipv6_dst,
+				 int proto, int len)
+{
+	struct ipv6_pinfo *np = inet6_sk(sk);
+	struct ipv6hdr *hdr;
+
+	skb->protocol = htons(ETH_P_IPV6);
+	skb->dev = dev;
+
+	skb_reset_network_header(skb);
+	skb_put(skb, sizeof(struct ipv6hdr));
+	hdr = ipv6_hdr(skb);
+
+	*(__be32 *)hdr = htonl(0x60000000);
+
+	hdr->payload_len = htons(len);
+	hdr->nexthdr = proto;
+	hdr->hop_limit = np->hop_limit;
+
+	hdr->saddr = *ipv6_src;
+	hdr->daddr = *ipv6_dst;
+}
+
+/**
+ * batadv_ndisc_create_na - create an NA for a solicited NS
+ * @net_device: the devices for which the packet is created
+ * @ipv6_dst: destination IPv6
+ * @ipv6_target: target IPv6 (same with source IPv6)
+ * @hw_dst: destination HW Address
+ * @hw_target: target HW Address (same with source HW Address)
+ * @router: 1 if target is a router, else 0
+ * @solicited: 1 if this is a solicited NA, else 0
+ * @override: 1 if the target entry should be override, else 0
+ *
+ * TODO problem with router and override parameters
+ * (how do we calculate them ?)
+ *
+ * For more info see RFC2461.
+ *
+ * Returns the newly created skb, otherwise NULL.
+ */
+static struct
+sk_buff *batadv_ndisc_create_na(struct net_device *dev,
+				const struct in6_addr *ipv6_dst,
+				const struct in6_addr *ipv6_target,
+				const uint8_t *hw_dst,
+				const uint8_t *hw_target,
+				int router, int solicited, int override)
+{
+	struct net *net = dev_net(dev);
+	struct sock *sk = net->ipv6.ndisc_sk;
+	struct sk_buff *skb;
+	struct icmp6hdr *icmp6hdr;
+	int hlen = LL_RESERVED_SPACE(dev);
+	int tlen = dev->needed_tailroom;
+	int len, err;
+	u8 *opt;
+
+	/* alloc space for skb */
+	len = sizeof(struct icmp6hdr) + sizeof(*ipv6_target) + 8;
+	skb = sock_alloc_send_skb(sk,
+				  (MAX_HEADER + sizeof(struct ipv6hdr) +
+				   len + hlen + tlen),
+				  1, &err);
+	if (!skb)
+		return NULL;
+
+	skb_reserve(skb, hlen);
+	batadv_ndisc_ip6_hdr(sk, skb, dev, ipv6_target, ipv6_dst,
+			     IPPROTO_ICMPV6, len);
+
+	skb->transport_header = skb->tail;
+	skb_put(skb, len);
+
+	/* fill the device header for the NA frame */
+	if (dev_hard_header(skb, dev, ETH_P_IPV6, hw_dst,
+			    hw_target, skb->len) < 0) {
+		kfree_skb(skb);
+		return NULL;
+	}
+
+	/* set icmpv6 header */
+	icmp6hdr = (struct icmp6hdr *)skb_transport_header(skb);
+	icmp6hdr->icmp6_type = NDISC_NEIGHBOUR_ADVERTISEMENT;
+	icmp6hdr->icmp6_router = router;
+	icmp6hdr->icmp6_solicited = solicited;
+	icmp6hdr->icmp6_override = override;
+
+	/* set NA target and options */
+	opt = skb_transport_header(skb) + sizeof(*icmp6hdr);
+	*(struct in6_addr *)opt = *ipv6_target;
+	opt += sizeof(*ipv6_target);
+
+	opt[0] = ND_OPT_TARGET_LL_ADDR;
+	opt[1] = 1;
+	memcpy(opt + 2, hw_target, dev->addr_len);
+
+	icmp6hdr->icmp6_cksum = csum_ipv6_magic(ipv6_target, ipv6_dst, len,
+						IPPROTO_ICMPV6,
+						csum_partial(icmp6hdr, len, 0));
+
+	return skb;
+}
+#endif
+
 /**
  * batadv_dat_snoop_outgoing_msg_request - snoop the ARP request and try to
  * answer using DAT