netinet/libalias/alias_local.h

77701Sbrian/*-
85964Sbrian * Copyright (c) 2001 Charles Mott <cm@linktel.net>
77701Sbrian * All rights reserved.
77701Sbrian *
77701Sbrian * Redistribution and use in source and binary forms, with or without
77701Sbrian * modification, are permitted provided that the following conditions
77701Sbrian * are met:
77701Sbrian * 1. Redistributions of source code must retain the above copyright
77701Sbrian *    notice, this list of conditions and the following disclaimer.
77701Sbrian * 2. Redistributions in binary form must reproduce the above copyright
77701Sbrian *    notice, this list of conditions and the following disclaimer in the
77701Sbrian *    documentation and/or other materials provided with the distribution.
77701Sbrian *
77701Sbrian * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
77701Sbrian * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
77701Sbrian * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
77701Sbrian * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
77701Sbrian * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
77701Sbrian * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
77701Sbrian * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
77701Sbrian * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
77701Sbrian * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
77701Sbrian * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
77701Sbrian * SUCH DAMAGE.
77701Sbrian *
77701Sbrian * $FreeBSD: head/sys/netinet/libalias/alias_local.h 165243 2006-12-15 12:50:06Z piso $
77701Sbrian */
77701Sbrian
74778Sbrian/*
74778Sbrian * Alias_local.h contains the function prototypes for alias.c,
74778Sbrian * alias_db.c, alias_util.c and alias_ftp.c, alias_irc.c (as well
74778Sbrian * as any future add-ons).  It also includes macros, globals and
74778Sbrian * struct definitions shared by more than one alias*.c file.
74778Sbrian *
74778Sbrian * This include file is intended to be used only within the aliasing
74778Sbrian * software.  Outside world interfaces are defined in alias.h
74778Sbrian *
74778Sbrian * This software is placed into the public domain with no restrictions
74778Sbrian * on its distribution.
74778Sbrian *
99207Sbrian * Initial version:  August, 1996  (cjm)
74778Sbrian *
74778Sbrian * <updated several times by original author and Eivind Eklund>
74778Sbrian */
26026Sbrian
74778Sbrian#ifndef _ALIAS_LOCAL_H_
74778Sbrian#define	_ALIAS_LOCAL_H_
44307Sbrian
162674Spiso#include <sys/types.h>
162674Spiso#include <sys/sysctl.h>
124621Sphk
162674Spiso#ifdef _KERNEL
162674Spiso#include <sys/malloc.h>
165243Spiso#include <sys/param.h>
162674Spiso#include <sys/lock.h>
165243Spiso#include <sys/mutex.h>
165243Spiso
145927Sglebius/* XXX: LibAliasSetTarget() uses this constant. */
145927Sglebius#define	INADDR_NONE	0xffffffff
145927Sglebius#endif
145927Sglebius
124621Sphk/* Sizes of input and output link tables */
124621Sphk#define LINK_TABLE_OUT_SIZE         101
124621Sphk#define LINK_TABLE_IN_SIZE         4001
124621Sphk
124621Sphkstruct proxy_entry;
124621Sphk
124621Sphkstruct libalias {
127094Sdes	LIST_ENTRY(libalias) instancelist;
124621Sphk
127094Sdes	int		packetAliasMode;	/* Mode flags                      */
127094Sdes	/* - documented in alias.h  */
124621Sphk
127094Sdes	struct in_addr	aliasAddress;	/* Address written onto source     */
127094Sdes	/* field of IP packet.           */
124621Sphk
127094Sdes	struct in_addr	targetAddress;	/* IP address incoming packets     */
127094Sdes	/* are sent to if no aliasing    */
127094Sdes	/* link already exists           */
124621Sphk
127094Sdes	struct in_addr	nullAddress;	/* Used as a dummy parameter for   */
127094Sdes	/* some function calls           */
124621Sphk
127094Sdes			LIST_HEAD     (, alias_link) linkTableOut[LINK_TABLE_OUT_SIZE];
127094Sdes	/* Lookup table of pointers to     */
127094Sdes	/* chains of link records. Each  */
124621Sphk
127094Sdes			LIST_HEAD     (, alias_link) linkTableIn[LINK_TABLE_IN_SIZE];
127094Sdes	/* link record is doubly indexed */
127094Sdes	/* into input and output lookup  */
127094Sdes	/* tables.                       */
124621Sphk
127094Sdes	/* Link statistics                 */
127094Sdes	int		icmpLinkCount;
127094Sdes	int		udpLinkCount;
127094Sdes	int		tcpLinkCount;
127094Sdes	int		pptpLinkCount;
127094Sdes	int		protoLinkCount;
127094Sdes	int		fragmentIdLinkCount;
127094Sdes	int		fragmentPtrLinkCount;
127094Sdes	int		sockCount;
124621Sphk
127094Sdes	int		cleanupIndex;	/* Index to chain of link table    */
127094Sdes	/* being inspected for old links   */
124621Sphk
127094Sdes	int		timeStamp;	/* System time in seconds for      */
127094Sdes	/* current packet                  */
124621Sphk
127094Sdes	int		lastCleanupTime;	/* Last time
127094Sdes						 * IncrementalCleanup()  */
127094Sdes	/* was called                      */
124621Sphk
127094Sdes	int		houseKeepingResidual;	/* used by HouseKeeping()          */
124621Sphk
127094Sdes	int		deleteAllLinks;	/* If equal to zero, DeleteLink()  */
127094Sdes	/* will not remove permanent links */
162674Spiso
162674Spiso	/* log descriptor        */
162674Spiso#ifdef  _KERNEL
162674Spiso	char           *logDesc;
162674Spiso#else
162674Spiso	FILE           *logDesc;
145925Sglebius#endif
162674Spiso	/* statistics monitoring */
124621Sphk
127094Sdes	int		newDefaultLink;	/* Indicates if a new aliasing     */
127094Sdes	/* link has been created after a   */
127094Sdes	/* call to PacketAliasIn/Out().    */
124621Sphk
124621Sphk#ifndef NO_FW_PUNCH
127094Sdes	int		fireWallFD;	/* File descriptor to be able to   */
127094Sdes	/* control firewall.  Opened by    */
127094Sdes	/* PacketAliasSetMode on first     */
127094Sdes	/* setting the PKT_ALIAS_PUNCH_FW  */
127094Sdes	/* flag.                           */
127094Sdes	int		fireWallBaseNum;	/* The first firewall entry
127094Sdes						 * free for our use */
127094Sdes	int		fireWallNumNums;	/* How many entries can we
127094Sdes						 * use? */
127094Sdes	int		fireWallActiveNum;	/* Which entry did we last
127094Sdes						 * use? */
127094Sdes	char           *fireWallField;	/* bool array for entries */
124621Sphk#endif
124621Sphk
127094Sdes	unsigned int	skinnyPort;	/* TCP port used by the Skinny     */
127094Sdes	/* protocol.                       */
124621Sphk
124621Sphk	struct proxy_entry *proxyList;
124621Sphk
127094Sdes	struct in_addr	true_addr;	/* in network byte order. */
127094Sdes	u_short		true_port;	/* in host byte order. */
165243Spiso#ifdef  _KERNEL
165243Spiso	/*
165243Spiso	 * avoid races in libalias: every public function has to use it.
165243Spiso	 */
165243Spiso	struct mtx mutex;
165243Spiso#endif
124621Sphk};
124621Sphk
74778Sbrian/* Macros */
26026Sbrian
165243Spiso#ifdef _KERNEL
165243Spiso#define LIBALIAS_LOCK_INIT(l) \
165243Spiso        mtx_init(&l->mutex, "per-instance libalias mutex", NULL, MTX_DEF)
165243Spiso#define LIBALIAS_LOCK_ASSERT(l) mtx_assert(&l->mutex, MA_OWNED)
165243Spiso#define LIBALIAS_LOCK(l) mtx_lock(&l->mutex)
165243Spiso#define LIBALIAS_UNLOCK(l) mtx_unlock(&l->mutex)
165243Spiso#define LIBALIAS_LOCK_DESTROY(l)	mtx_destroy(&l->mutex)
165243Spiso#else
165243Spiso#define LIBALIAS_LOCK_INIT(l)
165243Spiso#define LIBALIAS_LOCK_ASSERT(l)
165243Spiso#define LIBALIAS_LOCK(l)
165243Spiso#define LIBALIAS_UNLOCK(l)
165243Spiso#define LIBALIAS_LOCK_DESTROY(l)
165243Spiso#endif
165243Spiso
44307Sbrian/*
74778Sbrian * The following macro is used to update an
74778Sbrian * internet checksum.  "delta" is a 32-bit
74778Sbrian * accumulation of all the changes to the
74778Sbrian * checksum (adding in new 16-bit words and
74778Sbrian * subtracting out old words), and "cksum"
74778Sbrian * is the checksum value to be updated.
44307Sbrian */
74778Sbrian#define	ADJUST_CHECKSUM(acc, cksum) \
74778Sbrian	do { \
74778Sbrian		acc += cksum; \
74778Sbrian		if (acc < 0) { \
74778Sbrian			acc = -acc; \
74778Sbrian			acc = (acc >> 16) + (acc & 0xffff); \
74778Sbrian			acc += acc >> 16; \
74778Sbrian			cksum = (u_short) ~acc; \
74778Sbrian		} else { \
74778Sbrian			acc = (acc >> 16) + (acc & 0xffff); \
74778Sbrian			acc += acc >> 16; \
74778Sbrian			cksum = (u_short) acc; \
74778Sbrian		} \
74778Sbrian	} while (0)
44307Sbrian
44307Sbrian
74778Sbrian/* Prototypes */
26026Sbrian
147623Sglebius/*
147623Sglebius * We do not calculate TCP checksums when libalias is a kernel
147623Sglebius * module, since it has no idea about checksum offloading.
147623Sglebius * If TCP data has changed, then we just set checksum to zero,
147623Sglebius * and caller must recalculate it himself.
147623Sglebius * In case if libalias will edit UDP data, the same approach
147623Sglebius * should be used.
147623Sglebius */
147623Sglebius#ifndef _KERNEL
127094Sdesu_short		IpChecksum(struct ip *_pip);
127094Sdesu_short		TcpChecksum(struct ip *_pip);
147623Sglebius#endif
127094Sdesvoid
127689SdesDifferentialChecksum(u_short * _cksum, void * _new, void * _old, int _n);
26026Sbrian
26026Sbrian/* Internal data access */
26026Sbrianstruct alias_link *
127094SdesFindIcmpIn(struct libalias *la, struct in_addr _dst_addr, struct in_addr _alias_addr,
127094Sdes    u_short _id_alias, int _create);
26026Sbrianstruct alias_link *
127094SdesFindIcmpOut(struct libalias *la, struct in_addr _src_addr, struct in_addr _dst_addr,
127094Sdes    u_short _id, int _create);
26026Sbrianstruct alias_link *
127094SdesFindFragmentIn1(struct libalias *la, struct in_addr _dst_addr, struct in_addr _alias_addr,
127094Sdes    u_short _ip_id);
26026Sbrianstruct alias_link *
127094SdesFindFragmentIn2(struct libalias *la, struct in_addr _dst_addr, struct in_addr _alias_addr,
127094Sdes    u_short _ip_id);
26026Sbrianstruct alias_link *
127094Sdes		AddFragmentPtrLink(struct libalias *la, struct in_addr _dst_addr, u_short _ip_id);
26026Sbrianstruct alias_link *
127094Sdes		FindFragmentPtr(struct libalias *la, struct in_addr _dst_addr, u_short _ip_id);
26026Sbrianstruct alias_link *
127094SdesFindProtoIn(struct libalias *la, struct in_addr _dst_addr, struct in_addr _alias_addr,
127094Sdes    u_char _proto);
59356Srustruct alias_link *
127094SdesFindProtoOut(struct libalias *la, struct in_addr _src_addr, struct in_addr _dst_addr,
127094Sdes    u_char _proto);
59356Srustruct alias_link *
127094SdesFindUdpTcpIn(struct libalias *la, struct in_addr _dst_addr, struct in_addr _alias_addr,
127094Sdes    u_short _dst_port, u_short _alias_port, u_char _proto, int _create);
26026Sbrianstruct alias_link *
127094SdesFindUdpTcpOut(struct libalias *la, struct in_addr _src_addr, struct in_addr _dst_addr,
127094Sdes    u_short _src_port, u_short _dst_port, u_char _proto, int _create);
61861Srustruct alias_link *
127094SdesAddPptp(struct libalias *la, struct in_addr _src_addr, struct in_addr _dst_addr,
127094Sdes    struct in_addr _alias_addr, u_int16_t _src_call_id);
61861Srustruct alias_link *
127094SdesFindPptpOutByCallId(struct libalias *la, struct in_addr _src_addr,
127094Sdes    struct in_addr _dst_addr, u_int16_t _src_call_id);
63899Sarchiestruct alias_link *
127094SdesFindPptpInByCallId(struct libalias *la, struct in_addr _dst_addr,
127094Sdes    struct in_addr _alias_addr, u_int16_t _dst_call_id);
67966Srustruct alias_link *
127094SdesFindPptpOutByPeerCallId(struct libalias *la, struct in_addr _src_addr,
127094Sdes    struct in_addr _dst_addr, u_int16_t _dst_call_id);
67966Srustruct alias_link *
127094SdesFindPptpInByPeerCallId(struct libalias *la, struct in_addr _dst_addr,
127094Sdes    struct in_addr _alias_addr, u_int16_t _alias_call_id);
67966Srustruct alias_link *
127094SdesFindRtspOut(struct libalias *la, struct in_addr _src_addr, struct in_addr _dst_addr,
127094Sdes    u_short _src_port, u_short _alias_port, u_char _proto);
26026Sbrianstruct in_addr
127094Sdes		FindOriginalAddress(struct libalias *la, struct in_addr _alias_addr);
26026Sbrianstruct in_addr
127094Sdes		FindAliasAddress(struct libalias *la, struct in_addr _original_addr);
26026Sbrian
26026Sbrian/* External data access/modification */
127094Sdesint
127094SdesFindNewPortGroup(struct libalias *la, struct in_addr _dst_addr, struct in_addr _alias_addr,
127094Sdes    u_short _src_port, u_short _dst_port, u_short _port_count,
127094Sdes    u_char _proto, u_char _align);
131614Sdesvoid		GetFragmentAddr(struct alias_link *_lnk, struct in_addr *_src_addr);
131614Sdesvoid		SetFragmentAddr(struct alias_link *_lnk, struct in_addr _src_addr);
131614Sdesvoid		GetFragmentPtr(struct alias_link *_lnk, char **_fptr);
131614Sdesvoid		SetFragmentPtr(struct alias_link *_lnk, char *fptr);
131614Sdesvoid		SetStateIn(struct alias_link *_lnk, int _state);
131614Sdesvoid		SetStateOut(struct alias_link *_lnk, int _state);
131614Sdesint		GetStateIn (struct alias_link *_lnk);
131614Sdesint		GetStateOut(struct alias_link *_lnk);
74778Sbrianstruct in_addr
131614Sdes		GetOriginalAddress(struct alias_link *_lnk);
74778Sbrianstruct in_addr
131614Sdes		GetDestAddress(struct alias_link *_lnk);
74778Sbrianstruct in_addr
131614Sdes		GetAliasAddress(struct alias_link *_lnk);
74778Sbrianstruct in_addr
127094Sdes		GetDefaultAliasAddress(struct libalias *la);
127094Sdesvoid		SetDefaultAliasAddress(struct libalias *la, struct in_addr _alias_addr);
131614Sdesu_short		GetOriginalPort(struct alias_link *_lnk);
131614Sdesu_short		GetAliasPort(struct alias_link *_lnk);
74778Sbrianstruct in_addr
131614Sdes		GetProxyAddress(struct alias_link *_lnk);
131614Sdesvoid		SetProxyAddress(struct alias_link *_lnk, struct in_addr _addr);
131614Sdesu_short		GetProxyPort(struct alias_link *_lnk);
131614Sdesvoid		SetProxyPort(struct alias_link *_lnk, u_short _port);
131614Sdesvoid		SetAckModified(struct alias_link *_lnk);
131614Sdesint		GetAckModified(struct alias_link *_lnk);
131614Sdesint		GetDeltaAckIn(struct ip *_pip, struct alias_link *_lnk);
131614Sdesint		GetDeltaSeqOut(struct ip *_pip, struct alias_link *_lnk);
131614Sdesvoid		AddSeq    (struct ip *_pip, struct alias_link *_lnk, int _delta);
131614Sdesvoid		SetExpire (struct alias_link *_lnk, int _expire);
127094Sdesvoid		ClearCheckNewLink(struct libalias *la);
131614Sdesvoid		SetProtocolFlags(struct alias_link *_lnk, int _pflags);
131614Sdesint		GetProtocolFlags(struct alias_link *_lnk);
131614Sdesvoid		SetDestCallId(struct alias_link *_lnk, u_int16_t _cid);
127094Sdes
36711Sbrian#ifndef NO_FW_PUNCH
131614Sdesvoid		PunchFWHole(struct alias_link *_lnk);
127094Sdes
36711Sbrian#endif
26026Sbrian
26026Sbrian/* Housekeeping function */
127094Sdesvoid		HouseKeeping(struct libalias *);
26026Sbrian
26026Sbrian/* Tcp specfic routines */
74778Sbrian/* lint -save -library Suppress flexelint warnings */
44307Sbrian
44307Sbrian/* Transparent proxy routines */
127094Sdesint
127094SdesProxyCheck(struct libalias *la, struct ip *_pip, struct in_addr *_proxy_server_addr,
127094Sdes    u_short * _proxy_server_port);
127094Sdesvoid
131614SdesProxyModify(struct libalias *la, struct alias_link *_lnk, struct ip *_pip,
127094Sdes    int _maxpacketsize, int _proxy_type);
36321Samurai
32377Seivindenum alias_tcp_state {
74778Sbrian	ALIAS_TCP_STATE_NOT_CONNECTED,
74778Sbrian	ALIAS_TCP_STATE_CONNECTED,
74778Sbrian	ALIAS_TCP_STATE_DISCONNECTED
32377Seivind};
74778Sbrian
131699Sdes#if defined(_NETINET_IP_H_)
131699Sdesstatic __inline void *
131699Sdesip_next(struct ip *iphdr)
131699Sdes{
131699Sdes	char *p = (char *)iphdr;
131699Sdes	return (&p[iphdr->ip_hl * 4]);
131699Sdes}
131699Sdes#endif
131699Sdes
131699Sdes#if defined(_NETINET_TCP_H_)
131699Sdesstatic __inline void *
131699Sdestcp_next(struct tcphdr *tcphdr)
131699Sdes{
131699Sdes	char *p = (char *)tcphdr;
131699Sdes	return (&p[tcphdr->th_off * 4]);
131699Sdes}
131699Sdes#endif
131699Sdes
131699Sdes#if defined(_NETINET_UDP_H_)
131699Sdesstatic __inline void *
131699Sdesudp_next(struct udphdr *udphdr)
131699Sdes{
131699Sdes	return ((void *)(udphdr + 1));
131699Sdes}
131699Sdes#endif
131699Sdes
127094Sdes#endif				/* !_ALIAS_LOCAL_H_ */