d1/d42/icmp__error__handler_8cc_source.html

 /*

  * Copyright (c) 2013 Juniper Networks, Inc. All rights reserved.

  */

 #include <stdint.h>

 #include "base/os.h"

 #include <vr_defs.h>

 #include <cmn/agent_cmn.h>

 #include <oper/interface_common.h>

 #include <oper/vn.h>


 #include <pkt/pkt_init.h>

 #include <pkt/flow_table.h>

 #include <services/icmp_error_proto.h>

 #include <services/icmp_error_handler.h>


 IcmpErrorHandler::IcmpErrorHandler(Agent *agent, IcmpErrorProto *proto,

                                    boost::shared_ptr<PktInfo> info,

                                    boost::asio::io_context *io) :

     ProtoHandler(agent, info, *io), proto_(proto) {

 }


 IcmpErrorHandler::~IcmpErrorHandler() {

 }


 bool IcmpErrorHandler::ValidatePacket() {

     if (pkt_info_->len < (sizeof(struct ether_header) + sizeof(struct ip)))

         return false;

     return true;

 }


 bool IcmpErrorHandler::Run() {

     if (ValidatePacket() == false) {

         proto_->increment_drops();

         return true;

     }


     VmInterface *vm_itf = dynamic_cast<VmInterface *>

         (agent()->interface_table()->FindInterface(GetInterfaceIndex()));

     if (vm_itf == NULL || vm_itf->layer3_forwarding() == false ||

         vm_itf->vn() == NULL) {

         proto_->increment_interface_errors();

         return true;

     }


     return SendIcmpError(vm_itf);

 }


 // Generate ICMP error

 bool IcmpErrorHandler::SendIcmpError(VmInterface *intf) {

     char data[ICMP_PAYLOAD_LEN];

     uint16_t data_len = ntohs(pkt_info_->ip->ip_len);

     if (data_len > ICMP_PAYLOAD_LEN)

         data_len = ICMP_PAYLOAD_LEN;

     memcpy(data, pkt_info_->ip, data_len);


     uint32_t src_ip = 0;

     FlowKey key;

     bool is_nat_flow = false;


     if (pkt_info_->agent_hdr.flow_index == (uint32_t)-1) {

         // flow index is -1 for 255.255.255.255

         if (pkt_info_->ip_daddr.to_v4().to_ulong() != 0xFFFFFFFF) {

             proto_->increment_invalid_flow_index();

             return true;

         }

         src_ip = pkt_info_->ip_saddr.to_v4().to_ulong();

     } else {

         if (proto_->FlowIndexToKey(pkt_info_->agent_hdr.flow_index, &key, &is_nat_flow)

             == false ||

             key.family != Address::INET ||

             ((!is_nat_flow) &&

              (key.src_addr != pkt_info_->ip_saddr ||

               key.dst_addr != pkt_info_->ip_daddr ||

               key.protocol != pkt_info_->ip_proto ||

               key.src_port != pkt_info_->sport ||

               key.dst_port != pkt_info_->dport))) {

             proto_->increment_invalid_flow_index();

             return true;

         }


         src_ip = key.src_addr.to_v4().to_ulong();

     }


     // Get IPAM to find default gateway

     const VnIpam *ipam = intf->vn()->GetIpam(Ip4Address(src_ip));

     if (ipam == NULL || ipam->default_gw.is_v4() == false) {

         proto_->increment_interface_errors();

         return true;

     }


     // Retain the agent-header before ethernet header

     uint16_t len = (char *)pkt_info_->eth - (char *)pkt_info_->pkt;

     uint16_t buf_len = pkt_info_->max_pkt_len;


     // Form ICMP Packet with following

     // EthHdr - IP Header - ICMP Header - User IP Packet(max 128 bytes)

     char *ptr = (char *)pkt_info_->pkt;

     len += EthHdr(ptr + len, buf_len - len,

                   agent()->vhost_interface()->mac(),

                   MacAddress(pkt_info_->eth->ether_shost),

                   ETHERTYPE_IP, intf->tx_vlan_id());


     uint16_t icmp_len = ICMP_UNREACH_HDR_LEN;

     uint16_t ip_len = sizeof(struct ip) + icmp_len + data_len;

     len += IpHdr(ptr + len, buf_len - len, ip_len,

             htonl(ipam->default_gw.to_v4().to_ulong()),

             htonl(src_ip), IPPROTO_ICMP, DEFAULT_IP_ID, DEFAULT_IP_TTL);


     char *icmp = ptr + len;

     len += IcmpHdr(ptr + len, buf_len - len, ICMP_UNREACH,

                    ICMP_UNREACH_NEEDFRAG, 0, pkt_info_->agent_hdr.mtu);


     if (pkt_info_->agent_hdr.flow_index != (uint32_t)-1) {

         // Its possible that user payload has gone thru NAT processing already.

         // Restore the original fields from flow_key

         struct ip *ip = (struct ip *)data;

         uint16_t ip_hlen = ip->ip_hl * 4;


         ip->ip_src.s_addr = htonl(key.src_addr.to_v4().to_ulong());

         ip->ip_dst.s_addr = htonl(key.dst_addr.to_v4().to_ulong());

         ip->ip_sum = 0;

         ip->ip_sum = Csum((uint16_t *)data, ip_hlen, 0);

         if (ip->ip_p == IPPROTO_UDP) {

             udphdr *udp = (udphdr *)(data + ip_hlen);

             udp->uh_sport = ntohs(key.src_port);

             udp->uh_dport = ntohs(key.dst_port);

         } else if (ip->ip_p == IPPROTO_TCP) {

             tcphdr *tcp = (tcphdr *)(data + ip_hlen);

             tcp->th_sport = ntohs(key.src_port);

             tcp->th_dport = ntohs(key.dst_port);

         }

     }

     memcpy(ptr + len, data, data_len);

     len += data_len;

     IcmpChecksum(icmp, icmp_len + data_len);

     pkt_info_->set_len(len);


     Send(GetInterfaceIndex(), pkt_info_->vrf, AgentHdr::TX_SWITCH,

          PktHandler::ICMP);

     return true;

 }

FlowKey
Definition: flow_entry.h:127

IcmpErrorProto::increment_drops
void increment_drops()
Definition: icmp_error_proto.h:41

FlowKey::src_addr
IpAddress src_addr
Definition: flow_entry.h:213

Address::INET
Definition: address.h:26

DEFAULT_IP_TTL
#define DEFAULT_IP_TTL
Definition: pkt_handler.h:44

IcmpErrorHandler::SendIcmpError
bool SendIcmpError(VmInterface *intf)
Definition: icmp_error_handler.cc:49

icmp_error_handler.h

VnEntry::GetIpam
const VnIpam * GetIpam(const IpAddress &ip) const
Definition: vn.cc:651

VnIpam
Definition: vn.h:28

FlowKey::dst_addr
IpAddress dst_addr
Definition: flow_entry.h:214

flow_table.h

Agent::vhost_interface
const Interface * vhost_interface() const
Definition: agent.h:935

pkt_init.h

DEFAULT_IP_ID
#define DEFAULT_IP_ID
Definition: pkt_handler.h:48

IcmpErrorHandler::ICMP_PAYLOAD_LEN
static const int ICMP_PAYLOAD_LEN
Definition: icmp_error_handler.h:18

Agent::interface_table
InterfaceTable * interface_table() const
Definition: agent.h:465

ProtoHandler::Csum
uint16_t Csum(uint16_t *, std::size_t, uint32_t) const
Definition: proto_handler.cc:236

IcmpErrorHandler::Run
bool Run()
Definition: icmp_error_handler.cc:31

AgentHdr::TX_SWITCH
Definition: pkt_handler.h:131

Interface::mac
const MacAddress & mac() const
Definition: interface.h:131

FlowKey::protocol
uint8_t protocol
Definition: flow_entry.h:215

ProtoHandler::agent
Agent * agent() const
Definition: proto_handler.h:80

ProtoHandler::pkt_info_
boost::shared_ptr< PktInfo > pkt_info_
Definition: proto_handler.h:92

MacAddress
Definition: mac_address.h:14

IcmpErrorHandler::proto_
IcmpErrorProto * proto_
Definition: icmp_error_handler.h:30

VmInterface::tx_vlan_id
uint16_t tx_vlan_id() const
Definition: vm_interface.h:1310

ProtoHandler::EthHdr
int EthHdr(const MacAddress &src, const MacAddress &dest, const uint16_t proto)
Definition: proto_handler.cc:72

IcmpErrorProto
Definition: icmp_error_proto.h:12

VnIpam::default_gw
IpAddress default_gw
Definition: vn.h:31

Agent
Definition: agent.h:358

ProtoHandler::GetInterfaceIndex
uint32_t GetInterfaceIndex() const
Definition: proto_handler.h:82

ProtoHandler::Send
void Send(uint32_t itf, uint32_t vrf, uint16_t, PktHandler::PktModuleName)
Definition: proto_handler.cc:26

VmInterface::layer3_forwarding
bool layer3_forwarding() const
Definition: vm_interface.h:1329

os.h

VmInterface::vn
const VnEntry * vn() const
Definition: vm_interface.h:1262

Ip4Address
boost::asio::ip::address_v4 Ip4Address
Definition: address.h:14

IcmpErrorHandler::IcmpErrorHandler
IcmpErrorHandler(Agent *agent, IcmpErrorProto *proto, boost::shared_ptr< PktInfo > info, boost::asio::io_context *io)
Definition: icmp_error_handler.cc:16

VmInterface
Definition: vm_interface.h:358

FlowKey::src_port
uint16_t src_port
Definition: flow_entry.h:216

ProtoHandler::IcmpChecksum
void IcmpChecksum(char *buff, uint16_t buf_len)
Definition: proto_handler.cc:196

ICMP_UNREACH_HDR_LEN
#define ICMP_UNREACH_HDR_LEN
Definition: pkt_handler.h:51

FlowKey::family
Address::Family family
Definition: flow_entry.h:211

IcmpErrorProto::increment_interface_errors
void increment_interface_errors()
Definition: icmp_error_proto.h:42

PktHandler::ICMP
Definition: pkt_handler.h:238

interface_common.h

FlowKey::dst_port
uint16_t dst_port
Definition: flow_entry.h:217

IcmpErrorProto::increment_invalid_flow_index
void increment_invalid_flow_index()
Definition: icmp_error_proto.h:43

IcmpErrorHandler::~IcmpErrorHandler
virtual ~IcmpErrorHandler()
Definition: icmp_error_handler.cc:22

InterfaceTable::FindInterface
const Interface * FindInterface(size_t index) const
Definition: interface.cc:323

icmp_error_proto.h

IcmpErrorProto::FlowIndexToKey
bool FlowIndexToKey(uint32_t index, FlowKey *key, bool *is_nat_flow)
Definition: icmp_error_proto.cc:25

agent_cmn.h

ProtoHandler
Definition: proto_handler.h:28

ProtoHandler::IcmpHdr
uint16_t IcmpHdr(char *buff, uint16_t buf_len, uint8_t type, uint8_t code, uint16_t word1, uint16_t word2)
Definition: proto_handler.cc:174

IcmpErrorHandler::ValidatePacket
bool ValidatePacket()
Definition: icmp_error_handler.cc:25

vn.h

ProtoHandler::IpHdr
void IpHdr(uint16_t len, in_addr_t src, in_addr_t dest, uint8_t protocol, uint16_t id, uint8_t ttl)
Definition: proto_handler.cc:129