protocols_2arp_2base_8c_source.html

/*

 *   This library is free software; you can redistribute it and/or

 *   modify it under the terms of the GNU Lesser General Public

 *   License as published by the Free Software Foundation; either

 *   version 2.1 of the License, or (at your option) any later version.

 *

 *   This library is distributed in the hope that it will be useful,

 *   but WITHOUT ANY WARRANTY; without even the implied warranty of

 *   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU

 *   Lesser General Public License for more details.

 *

 *   You should have received a copy of the GNU Lesser General Public

 *   License along with this library; if not, write to the Free Software

 *   Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA

 */


/**

 * $Id: f3b58faa30befebf3f9fbb5d56834cfd6c9c07ab $

 *

 * @file protocols/arp/base.c

 * @brief Functions to send/receive ARP packets.

 *

 * @copyright 2020 Network RADIUS SAS <legal@networkradius.com?

 */


RCSID("$Id: f3b58faa30befebf3f9fbb5d56834cfd6c9c07ab $")


#include <freeradius-devel/util/net.h>

#include <freeradius-devel/util/struct.h>

#include <freeradius-devel/util/syserror.h>

#include <freeradius-devel/io/test_point.h>

#include "attrs.h"


#ifdef HAVE_LINUX_IF_PACKET_H

#  include <linux/if_packet.h>

#  include <linux/if_ether.h>

#endif


#include <net/if_arp.h>


static uint32_t instance_count = 0;


fr_dict_t const *dict_arp;


extern fr_dict_autoload_t libfreeradius_arp_dict[];


fr_dict_autoload_t libfreeradius_arp_dict[] = {

        { .out = &dict_arp, .proto = "arp" },

        { NULL }

};


fr_dict_attr_t const *attr_arp_packet;


extern fr_dict_attr_autoload_t libfreeradius_arp_dict_attr[];


fr_dict_attr_autoload_t libfreeradius_arp_dict_attr[] = {

        { .out = &attr_arp_packet, .name = "arp", .type = FR_TYPE_STRUCT, .dict = &dict_arp },

        { NULL }

};


/*

 *      grep VALUE share/dictionary/arp/dictionary.rfc826  | grep Op | awk '{print "[" $4 "] = \"" $3 "\","}'

 */


char const *fr_arp_packet_codes[FR_ARP_CODE_MAX] = {

        [1] = "Request",

        [2] = "Reply",

        [3] = "Reverse-Request",

        [4] = "Reverse-Reply",

#if 0

        [5] = "DRARP-Request",

        [6] = "DRARP-Reply",

        [7] = "DRARP-Error",

        [8] = "InARP-Request",

        [9] = "InARP-Reply",

        [10] = "ARP-NAK",

        [11] = "MARS-Request",

        [12] = "MARS-Multi",

        [13] = "MARS-MServ",

        [14] = "MARS-Join",

        [15] = "MARS-Leave",

        [16] = "MARS-NAK",

        [17] = "MARS-Unserv",

        [18] = "MARS-SJoin",

        [19] = "MARS-SLeave",

        [20] = "MARS-Grouplist-Request",

        [21] = "MARS-Grouplist-Reply",

        [22] = "MARS-Redirect-MAP",

        [23] = "MAPOS-UNARP",

        [24] = "OP_EXP1",

        [25] = "OP_EXP2",

#endif

};


static uint8_t const zeros[6] = { 0 };


#ifdef SIOCSARP

/** Forcibly add an ARP entry so we can send unicast packets to hosts that don't have IP addresses yet

 *

 * @param[in] fd        to add arp entry on.

 * @param[in] interface to add arp entry on.

 * @param[in] ipaddr    to insert into ARP table.

 * @param[in] macaddr   to insert into ARP table.

 * @return

 *      - 0 on success.

 *      - -1 on failure.

 */

int fr_arp_entry_add(int fd, char const *interface, uint8_t ipaddr[static 4], uint8_t macaddr[static 6])

{

        struct sockaddr_in *sin;

        struct arpreq req;


        if (!interface) {

                fr_strerror_const("No interface specified.  Cannot update ARP table");

                return -1;

        }


        memset(&req, 0, sizeof(req));

        sin = (struct sockaddr_in *) &req.arp_pa;

        sin->sin_family = AF_INET;

        memcpy(&sin->sin_addr.s_addr, ipaddr, 4);


        strlcpy(req.arp_dev, interface, sizeof(req.arp_dev));


        memcpy(&req.arp_ha.sa_data, macaddr, 6);


        req.arp_flags = ATF_COM;

        if (ioctl(fd, SIOCSARP, &req) < 0) {

                fr_strerror_printf("Failed to add entry in ARP cache: %s (%d)", fr_syserror(errno), errno);

                return -1;

        }


        return 0;

}

#else


int fr_arp_entry_add(UNUSED int fd, UNUSED char const *interface,

                     UNUSED uint8_t ipaddr[static 4], UNUSED uint8_t macaddr[static 6])

{

        fr_strerror_const("Adding ARP entry is unsupported on this system");

        return -1;

}


#endif


/** Encode VPS into a raw ARP packet.

 *

 */


ssize_t fr_arp_encode(fr_dbuff_t *dbuff, uint8_t const *original, fr_pair_list_t *vps)

{

        ssize_t                 slen;

        fr_pair_t               *vp;

        fr_arp_packet_t         *arp;

        fr_dcursor_t            cursor;

        fr_da_stack_t           da_stack;

        fr_dbuff_t              work_dbuff = FR_DBUFF(dbuff);


        if (fr_pair_list_empty(vps)) {

                fr_strerror_const("Cannot encode empty packet");

                return -1;

        }


        /*

         *      Get a cursor over the ARP attributes.

         */

        vp = fr_pair_dcursor_by_ancestor_init(&cursor, vps, attr_arp_packet);


        /*

         *      For simplicity, we allow the caller to omit things

         *      that they don't care about.

         */

        if (!vp) {

                fr_strerror_const("No ARP attributes in the attribute list");

                return -1;

        }


        fr_proto_da_stack_build(&da_stack, attr_arp_packet);

        FR_PROTO_STACK_PRINT(&da_stack, 0);


        /*

         *      Call the struct encoder to do the actual work.

         */

        slen = fr_struct_to_network(&work_dbuff, &da_stack, 0, &cursor, NULL, NULL, NULL);

        if (slen <= 0) return slen;


        if (slen != FR_ARP_PACKET_SIZE) return slen;


        /*

         *      Hard-code fields which can be omitted.

         */

        arp = (fr_arp_packet_t *)fr_dbuff_start(&work_dbuff);


        if ((arp->htype[0] == 0) && (arp->htype[1] == 0)) arp->htype[1] = FR_HARDWARE_FORMAT_VALUE_ETHERNET;

        if ((arp->ptype[0] == 0) && (arp->ptype[1] == 0)) arp->ptype[0] = (FR_PROTOCOL_FORMAT_VALUE_IPV4 >> 8); /* 0x0800 */

        if (arp->hlen == 0) arp->hlen = 6;

        if (arp->plen == 0) arp->plen = 4;


        /*

         *      The reply generally swaps Sender / Target addresses,

         *      BUT fills out the Sender-Hardware-Address with the

         *      queried MAC address.  Ensure that the admin doesn't

         *      have to fill out all of the fields.

         */

        if (original) {

                fr_arp_packet_t const *our_original = (fr_arp_packet_t const *) original;


#define COPY(_a, _b) do { \

        if (memcmp(arp->_a, zeros, sizeof(arp->_a)) == 0) { \

                memcpy(arp->_a, our_original->_b, sizeof(arp->_a)); \

        } \

  } while (0)


                COPY(spa, tpa);         /* answer is about the asked-for target */

                COPY(tha, sha);         /* answer is sent to the requestor hardware address */

                COPY(tpa, spa);         /* answer is sent to the requestor protocol address */

        }


        return fr_dbuff_set(dbuff, &work_dbuff);

}


/** Decode a raw ARP packet into VPs

 *

 */


ssize_t fr_arp_decode(TALLOC_CTX *ctx, fr_pair_list_t *out, uint8_t const *packet, size_t packet_len)

{

        fr_arp_packet_t const *arp;


        if (packet_len < FR_ARP_PACKET_SIZE) {

                fr_strerror_printf("Packet is too small (%d) to be ARP", (int) packet_len);

                return -1;

        }


        /*

         *      Check that the fields have the desired values.

         */

        arp = (fr_arp_packet_t const *) packet;

        if ((arp->htype[0] != 0) || (arp->htype[1] != 1)) {

                fr_strerror_const("Hardware-Format != Ethernet");

                return -1;

        }


        if ((arp->ptype[0] != 8) || (arp->ptype[1] != 0)) {

                fr_strerror_const("Protocol-Format != IPv4");

                return -1;

        }


        if (arp->hlen != 6) {

                fr_strerror_const("Hardware-Length != 6");

                return -1;

        }


        if (arp->plen != 4) {

                fr_strerror_const("Protocol-Length != 4");

                return -1;

        }


        /*

         *      If the packet is too long, we discard any extra data.

         */

        return fr_struct_from_network(ctx, out, attr_arp_packet, packet, FR_ARP_PACKET_SIZE,

                                      NULL, NULL, NULL);

}


int fr_arp_global_init(void)

{

        if (instance_count > 0) {

                instance_count++;

                return 0;

        }


        instance_count++;


        if (fr_dict_autoload(libfreeradius_arp_dict) < 0) {

        fail:

                instance_count--;

                return -1;

        }


        if (fr_dict_attr_autoload(libfreeradius_arp_dict_attr) < 0) {

                fr_dict_autofree(libfreeradius_arp_dict);

                goto fail;

        }


        return 0;

}


void fr_arp_global_free(void)

{

        fr_assert(instance_count > 0);


        if (--instance_count > 0) return;


        fr_dict_autofree(libfreeradius_arp_dict);

}


extern fr_dict_protocol_t libfreeradius_arp_dict_protocol;


fr_dict_protocol_t libfreeradius_arp_dict_protocol = {

        .name = "arp",

        .default_type_size = 4,

        .default_type_length = 0,


        .init = fr_arp_global_init,

        .free = fr_arp_global_free,

};


typedef struct {

        bool            tmp;

} fr_arp_ctx_t;


static int encode_test_ctx(void **out, TALLOC_CTX *ctx, UNUSED fr_dict_t const *dict)

{

        fr_arp_ctx_t *test_ctx;


        fr_assert(instance_count > 0);


        test_ctx = talloc_zero(ctx, fr_arp_ctx_t);

        if (!test_ctx) return -1;


        *out = test_ctx;


        return 0;

}


/*

 *      Test points for protocol encode / decode

 *

 *      Because ARP has no TLVs, we don't have test points for pair

 *      encode / decode.

 */


static ssize_t fr_arp_encode_proto(UNUSED TALLOC_CTX *ctx, fr_pair_list_t *vps, uint8_t *data, size_t data_len, UNUSED void *proto_ctx)

{

        return fr_arp_encode(&FR_DBUFF_TMP(data, data_len), NULL, vps);

}


extern fr_test_point_proto_encode_t arp_tp_encode_proto;


fr_test_point_proto_encode_t arp_tp_encode_proto = {

        .test_ctx       = encode_test_ctx,

        .func           = fr_arp_encode_proto

};


static ssize_t fr_arp_decode_proto(TALLOC_CTX *ctx, fr_pair_list_t *out,

                                   uint8_t const *data, size_t data_len, UNUSED void *proto_ctx)

{

        return fr_arp_decode(ctx, out, data, data_len);

}


extern fr_test_point_proto_decode_t arp_tp_decode_proto;


fr_test_point_proto_decode_t arp_tp_decode_proto = {

        .test_ctx       = encode_test_ctx,

        .func           = fr_arp_decode_proto

};


fr_arp_packet_t::hlen
uint8_t hlen
Length of hardware address.
Definition arp.h:54

fr_arp_packet_t::plen
uint8_t plen
Length of protocol address.
Definition arp.h:55

fr_arp_packet_t::htype
uint8_t htype[2]
Format of hardware address.
Definition arp.h:52

fr_arp_packet_t::ptype
uint8_t ptype[2]
Format of protocol address.
Definition arp.h:53

FR_ARP_CODE_MAX
@ FR_ARP_CODE_MAX
Definition arp.h:69

FR_ARP_PACKET_SIZE
#define FR_ARP_PACKET_SIZE
Definition arp.h:37

fr_arp_packet_codes
char const  * fr_arp_packet_codes[FR_ARP_CODE_MAX]
Definition base.c:63

fr_arp_packet_t
Definition arp.h:51

RCSID
#define RCSID(id)
Definition build.h:483

UNUSED
#define UNUSED
Definition build.h:315

fr_dbuff_set
#define fr_dbuff_set(_dst, _src)
Set the 'current' position in a dbuff or marker using another dbuff or marker, a char pointer,...
Definition dbuff.h:1004

fr_dbuff_start
#define fr_dbuff_start(_dbuff_or_marker)
Return the 'start' position of a dbuff or marker.
Definition dbuff.h:898

FR_DBUFF
#define FR_DBUFF(_dbuff_or_marker)
Create a new dbuff pointing to the same underlying buffer.
Definition dbuff.h:222

FR_DBUFF_TMP
#define FR_DBUFF_TMP(_start, _len_or_end)
Creates a compound literal to pass into functions which accept a dbuff.
Definition dbuff.h:514

fr_dcursor_s
Definition dcursor.h:93

fr_dict_autofree
#define fr_dict_autofree(_to_free)
Definition dict.h:852

fr_dict_attr_autoload_t::out
fr_dict_attr_t const  ** out
Where to write a pointer to the resolved fr_dict_attr_t.
Definition dict.h:268

fr_dict_autoload_t::out
fr_dict_t const  ** out
Where to write a pointer to the loaded/resolved fr_dict_t.
Definition dict.h:281

fr_dict_attr_autoload
int fr_dict_attr_autoload(fr_dict_attr_autoload_t const *to_load)
Process a dict_attr_autoload element to load/verify a dictionary attribute.
Definition dict_util.c:4094

fr_dict_autoload
#define fr_dict_autoload(_to_load)
Definition dict.h:849

fr_dict_protocol_t::name
char const  * name
name of this protocol
Definition dict.h:429

fr_dict_attr_autoload_t
Specifies an attribute which must be present for the module to function.
Definition dict.h:267

fr_dict_autoload_t
Specifies a dictionary which must be loaded/loadable for the module to function.
Definition dict.h:280

fr_dict_protocol_t
Protocol-specific callbacks in libfreeradius-PROTOCOL.
Definition dict.h:428

instance_count
static uint32_t instance_count
Definition base.c:44

FR_TYPE_STRUCT
@ FR_TYPE_STRUCT
like TLV, but without T or L, and fixed-width children
Definition merged_model.c:119

uint32_t
unsigned int uint32_t
Definition merged_model.c:33

ssize_t
long int ssize_t
Definition merged_model.c:24

uint8_t
unsigned char uint8_t
Definition merged_model.c:30

fr_dbuff_t
Definition merged_model.c:41

fr_dict_attr_t
Definition merged_model.c:133

fr_dict_t
Definition merged_model.c:198

dict_arp
static fr_dict_t const  * dict_arp
Definition base.c:28

COPY
#define COPY(_attr)

fr_proto_da_stack_build
void fr_proto_da_stack_build(fr_da_stack_t *stack, fr_dict_attr_t const *da)
Build a complete DA stack from the da back to the root.
Definition proto.c:118

fr_arp_encode_proto
static ssize_t fr_arp_encode_proto(UNUSED TALLOC_CTX *ctx, fr_pair_list_t *vps, uint8_t *data, size_t data_len, UNUSED void *proto_ctx)
Definition base.c:329

fr_arp_global_free
void fr_arp_global_free(void)
Definition base.c:284

fr_arp_global_init
int fr_arp_global_init(void)
Definition base.c:261

fr_arp_entry_add
int fr_arp_entry_add(UNUSED int fd, UNUSED char const *interface, UNUSED uint8_t ipaddr[static 4], UNUSED uint8_t macaddr[static 6])
Definition base.c:134

attr_arp_packet
fr_dict_attr_t const  * attr_arp_packet
Definition base.c:51

zeros
static uint8_t const zeros[6]
Definition base.c:93

libfreeradius_arp_dict_protocol
fr_dict_protocol_t libfreeradius_arp_dict_protocol
Definition base.c:294

encode_test_ctx
static int encode_test_ctx(void **out, TALLOC_CTX *ctx, UNUSED fr_dict_t const *dict)
Definition base.c:308

fr_arp_decode
ssize_t fr_arp_decode(TALLOC_CTX *ctx, fr_pair_list_t *out, uint8_t const *packet, size_t packet_len)
Decode a raw ARP packet into VPs.
Definition base.c:221

libfreeradius_arp_dict
fr_dict_autoload_t libfreeradius_arp_dict[]
Definition base.c:46

libfreeradius_arp_dict_attr
fr_dict_attr_autoload_t libfreeradius_arp_dict_attr[]
Definition base.c:54

fr_arp_ctx_t::tmp
bool tmp
Definition base.c:305

fr_arp_decode_proto
static ssize_t fr_arp_decode_proto(TALLOC_CTX *ctx, fr_pair_list_t *out, uint8_t const *data, size_t data_len, UNUSED void *proto_ctx)
Definition base.c:340

arp_tp_encode_proto
fr_test_point_proto_encode_t arp_tp_encode_proto
Definition base.c:335

arp_tp_decode_proto
fr_test_point_proto_decode_t arp_tp_decode_proto
Definition base.c:347

fr_arp_encode
ssize_t fr_arp_encode(fr_dbuff_t *dbuff, uint8_t const *original, fr_pair_list_t *vps)
Encode VPS into a raw ARP packet.
Definition base.c:146

fr_arp_ctx_t
Definition base.c:304

attrs.h
VQP attributes.

fr_assert
#define fr_assert(_expr)
Definition rad_assert.h:38

vp
fr_pair_t * vp
Definition state_machine.c:2262

strlcpy
size_t strlcpy(char *dst, char const *src, size_t siz)
Definition strlcpy.c:34

fr_struct_to_network
ssize_t fr_struct_to_network(fr_dbuff_t *dbuff, fr_da_stack_t *da_stack, unsigned int depth, fr_dcursor_t *parent_cursor, void *encode_ctx, fr_encode_dbuff_t encode_value, fr_encode_dbuff_t encode_pair)
Definition struct.c:470

fr_struct_from_network
ssize_t fr_struct_from_network(TALLOC_CTX *ctx, fr_pair_list_t *out, fr_dict_attr_t const *parent, uint8_t const *data, size_t data_len, void *decode_ctx, fr_pair_decode_value_t decode_value, fr_pair_decode_value_t decode_tlv)
Convert a STRUCT to one or more VPs.
Definition struct.c:33

pair_list_s
Definition pair.h:52

value_pair_s
Stores an attribute, a value and various bits of other data.
Definition pair.h:68

fr_syserror
char const * fr_syserror(int num)
Guaranteed to be thread-safe version of strerror.
Definition syserror.c:243

fr_test_point_proto_encode_t::test_ctx
fr_test_point_ctx_alloc_t test_ctx
Allocate a test ctx for the encoder.
Definition test_point.h:75

fr_test_point_proto_decode_t::test_ctx
fr_test_point_ctx_alloc_t test_ctx
Allocate a test ctx for the encoder.
Definition test_point.h:67

fr_test_point_proto_decode_t
Entry point for protocol decoders.
Definition test_point.h:66

fr_test_point_proto_encode_t
Entry point for protocol encoders.
Definition test_point.h:74

fr_pair_list_empty
bool fr_pair_list_empty(fr_pair_list_t const *list)
Is a valuepair list empty.
Definition pair_inline.c:125

fr_pair_dcursor_by_ancestor_init
#define fr_pair_dcursor_by_ancestor_init(_cursor, _list, _da)
Initialise a cursor that will return only attributes descended from the specified fr_dict_attr_t.
Definition pair.h:646

FR_PROTO_STACK_PRINT
#define FR_PROTO_STACK_PRINT(_stack, _depth)
Definition proto.h:43

fr_da_stack_t
Structure for holding the stack of dictionary attributes being encoded.
Definition proto.h:54

fr_strerror_printf
#define fr_strerror_printf(_fmt,...)
Log to thread local error buffer.
Definition strerror.h:64

fr_strerror_const
#define fr_strerror_const(_msg)
Definition strerror.h:223

data
static fr_slen_t data
Definition value.h:1265

out
static size_t char ** out
Definition value.h:997