/*
device.c -- Interaction with Linux ethertap and tun/tap device
- Copyright (C) 2001 Ivo Timmermans <itimmermans@bigfoot.com>,
- 2001 Guus Sliepen <guus@sliepen.warande.net>
+ Copyright (C) 2001-2005 Ivo Timmermans,
+ 2001-2012 Guus Sliepen <guus@tinc-vpn.org>
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
- You should have received a copy of the GNU General Public License
- along with this program; if not, write to the Free Software
- Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
-
- $Id: device.c,v 1.1.2.1 2001/10/12 15:16:03 guus Exp $
+ You should have received a copy of the GNU General Public License along
+ with this program; if not, write to the Free Software Foundation, Inc.,
+ 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
*/
-#ifdef HAVE_TUNTAP
- #ifdef LINUX_IF_TUN_H
- #include LINUX_IF_TUN_H
- #else
- #include <linux/if_tun.h>
- #endif
- #define DEFAULT_DEVICE "/dev/misc/net/tun"
+#include "system.h"
+
+#ifdef HAVE_LINUX_IF_TUN_H
+#include <linux/if_tun.h>
+#define DEFAULT_DEVICE "/dev/net/tun"
#else
- #define DEFAULT_DEVICE "/dev/tap0"
+#define DEFAULT_DEVICE "/dev/tap0"
#endif
-#define DEVICE_TYPE_ETHERTAP 0
-#define DEVICE_TYPE_TUNTAP 1
+#include "conf.h"
+#include "device.h"
+#include "logger.h"
+#include "net.h"
+#include "route.h"
+#include "utils.h"
+#include "xalloc.h"
+
+typedef enum device_type_t {
+ DEVICE_TYPE_ETHERTAP,
+ DEVICE_TYPE_TUN,
+ DEVICE_TYPE_TAP,
+} device_type_t;
int device_fd = -1;
-int device_type;
-char *device_fname;
-char *device_info;
+static device_type_t device_type;
+char *device = NULL;
+char *iface = NULL;
+static char *type = NULL;
+static char ifrname[IFNAMSIZ];
+static char *device_info;
+
+static uint64_t device_total_in = 0;
+static uint64_t device_total_out = 0;
+
+static bool setup_device(void) {
+ struct ifreq ifr;
+ bool t1q = false;
+
+ if(!get_config_string(lookup_config(config_tree, "Device"), &device))
+ device = xstrdup(DEFAULT_DEVICE);
+
+ if(!get_config_string(lookup_config(config_tree, "Interface"), &iface))
+#ifdef HAVE_LINUX_IF_TUN_H
+ if (netname != NULL)
+ iface = xstrdup(netname);
+#else
+ iface = xstrdup(strrchr(device, '/') ? strrchr(device, '/') + 1 : device);
+#endif
+ device_fd = open(device, O_RDWR | O_NONBLOCK);
-int device_total_in = 0;
-int device_total_out = 0;
+ if(device_fd < 0) {
+ logger(LOG_ERR, "Could not open %s: %s", device, strerror(errno));
+ return false;
+ }
-/*
- open the local ethertap device
-*/
-int setup_device(void)
-{
- struct ifreq ifr;
-
-cp
- if(!get_config_string(lookup_config(config_tree, "Device"), &device_fname)))
- device_fname = DEFAULT_DEVICE;
-
-cp
- if((device_fd = open(device_fname, O_RDWR | O_NONBLOCK)) < 0)
- {
- syslog(LOG_ERR, _("Could not open %s: %m"), device_fname);
- return -1;
- }
-cp
- device_fd = device_fd;
-
- /* Set default MAC address for ethertap devices */
-
- mymac.type = SUBNET_MAC;
- mymac.net.mac.address.x[0] = 0xfe;
- mymac.net.mac.address.x[1] = 0xfd;
- mymac.net.mac.address.x[2] = 0x00;
- mymac.net.mac.address.x[3] = 0x00;
- mymac.net.mac.address.x[4] = 0x00;
- mymac.net.mac.address.x[5] = 0x00;
-
-#ifdef HAVE_TUNTAP
- /* Ok now check if this is an old ethertap or a new tun/tap thingie */
-
- memset(&ifr, 0, sizeof(ifr));
-cp
- ifr.ifr_flags = IFF_TAP | IFF_NO_PI;
- if (netname)
- strncpy(ifr.ifr_name, netname, IFNAMSIZ);
-cp
- if (!ioctl(device_fd, TUNSETIFF, (void *) &ifr))
- {
- device_info = _("Linux tun/tap device");
- device_type = DEVICE_TYPE_TUNTAP;
- }
- else
- if (!ioctl(device_fd, (('T'<< 8) | 202), (void *) &ifr))
- {
- syslog(LOG_WARNING, _("Old ioctl() request was needed for %s"), device_fname);
- device_type = TAP_TYPE_TUNTAP;
- device_info = _("Linux tun/tap device");
- }
- else
+#ifdef FD_CLOEXEC
+ fcntl(device_fd, F_SETFD, FD_CLOEXEC);
#endif
- {
- device_info = _("Linux ethertap device");
- device_type = TAP_TYPE_ETHERTAP;
- }
-
- syslog(LOG_INFO, _("%s is a %s"), device_fname, device_info);
-cp
- return 0;
-}
-/*
- read, encrypt and send data that is
- available through the ethertap device
-*/
-int read_packet(vpn_packet_t *packet)
-{
- int lenin;
-cp
- if(device_type == DEVICE_TYPE_TUNTAP)
- {
- if((lenin = read(device_fd, packet->data, MTU)) <= 0)
- {
- syslog(LOG_ERR, _("Error while reading from %s %s: %m"), device_info, device_fname);
- return -1;
- }
-
- packet->len = lenin;
- }
- else /* ethertap */
- {
- struct iovec vector[2] = {{packet->len, 2}, {packet->data, MTU}};
-
- if((lenin = readv(device_fd, vector, 2)) <= 0)
- {
- syslog(LOG_ERR, _("Error while reading from %s %s: %m"), device_info, device_fname);
- return -1;
- }
-
- packet->len = lenin - 2;
- }
+#ifdef HAVE_LINUX_IF_TUN_H
+ /* Ok now check if this is an old ethertap or a new tun/tap thingie */
+
+ memset(&ifr, 0, sizeof(ifr));
+
+ get_config_string(lookup_config(config_tree, "DeviceType"), &type);
+
+ if(type && strcasecmp(type, "tun") && strcasecmp(type, "tap")) {
+ logger(LOG_ERR, "Unknown device type %s!", type);
+ return false;
+ }
+
+ if((type && !strcasecmp(type, "tun")) || (!type && routing_mode == RMODE_ROUTER)) {
+ ifr.ifr_flags = IFF_TUN;
+ device_type = DEVICE_TYPE_TUN;
+ device_info = "Linux tun/tap device (tun mode)";
+ } else {
+ ifr.ifr_flags = IFF_TAP | IFF_NO_PI;
+ device_type = DEVICE_TYPE_TAP;
+ device_info = "Linux tun/tap device (tap mode)";
+ }
+
+#ifdef IFF_ONE_QUEUE
+ /* Set IFF_ONE_QUEUE flag... */
+ if(get_config_bool(lookup_config(config_tree, "IffOneQueue"), &t1q) && t1q)
+ ifr.ifr_flags |= IFF_ONE_QUEUE;
#endif
- device_total_in += packet->len;
+ if(iface)
+ strncpy(ifr.ifr_name, iface, IFNAMSIZ);
+
+ if(!ioctl(device_fd, TUNSETIFF, &ifr)) {
+ strncpy(ifrname, ifr.ifr_name, IFNAMSIZ);
+ if(iface) free(iface);
+ iface = xstrdup(ifrname);
+ } else if(!ioctl(device_fd, (('T' << 8) | 202), &ifr)) {
+ logger(LOG_WARNING, "Old ioctl() request was needed for %s", device);
+ strncpy(ifrname, ifr.ifr_name, IFNAMSIZ);
+ if(iface) free(iface);
+ iface = xstrdup(ifrname);
+ } else
+#endif
+ {
+ if(routing_mode == RMODE_ROUTER)
+ overwrite_mac = true;
+ device_info = "Linux ethertap device";
+ device_type = DEVICE_TYPE_ETHERTAP;
+ if(iface)
+ free(iface);
+ iface = xstrdup(strrchr(device, '/') ? strrchr(device, '/') + 1 : device);
+ }
+
+ logger(LOG_INFO, "%s is a %s", device, device_info);
+
+ return true;
+}
- if(debug_lvl >= DEBUG_TRAFFIC)
- {
- syslog(LOG_DEBUG, _("Read packet of %d bytes from %s"), device_info, packet.len);
- }
+static void close_device(void) {
+ close(device_fd);
- return 0;
-cp
+ free(type);
+ free(device);
+ free(iface);
}
-int write_packet(vpn_packet_t *packet)
-{
-cp
- if(debug_lvl >= DEBUG_TRAFFIC)
- syslog(LOG_DEBUG, _("Writing packet of %d bytes to %s"),
- packet->len, device_info);
-
- if(device_type == DEVICE_TYPE_TUNTAP)
- {
- if(write(device_fd, packet->data, packet->len) < 0)
- {
- syslog(LOG_ERR, _("Can't write to %s %s: %m"), device_info, packet.len);
- return -1;
- }
- }
- else/* ethertap */
- {
- struct iovec vector[2] = {{packet->len, 2}, {packet->data, MTU}};
-
- if(writev(device_fd, vector, 2) < 0)
- {
- syslog(LOG_ERR, _("Can't write to %s %s: %m"), device_info, packet.len);
- return -1;
- }
- }
-
- device_total_out += packet->len;
-cp
+static bool read_packet(vpn_packet_t *packet) {
+ int lenin;
+
+ switch(device_type) {
+ case DEVICE_TYPE_TUN:
+ lenin = read(device_fd, packet->data + 10, MTU - 10);
+
+ if(lenin <= 0) {
+ logger(LOG_ERR, "Error while reading from %s %s: %s",
+ device_info, device, strerror(errno));
+ return false;
+ }
+
+ packet->len = lenin + 10;
+ break;
+ case DEVICE_TYPE_TAP:
+ lenin = read(device_fd, packet->data, MTU);
+
+ if(lenin <= 0) {
+ logger(LOG_ERR, "Error while reading from %s %s: %s",
+ device_info, device, strerror(errno));
+ return false;
+ }
+
+ packet->len = lenin;
+ break;
+ case DEVICE_TYPE_ETHERTAP:
+ lenin = read(device_fd, packet->data - 2, MTU + 2);
+
+ if(lenin <= 0) {
+ logger(LOG_ERR, "Error while reading from %s %s: %s",
+ device_info, device, strerror(errno));
+ return false;
+ }
+
+ packet->len = lenin - 2;
+ break;
+ }
+
+ device_total_in += packet->len;
+
+ ifdebug(TRAFFIC) logger(LOG_DEBUG, "Read packet of %d bytes from %s", packet->len,
+ device_info);
+
+ return true;
}
+
+static bool write_packet(vpn_packet_t *packet) {
+ ifdebug(TRAFFIC) logger(LOG_DEBUG, "Writing packet of %d bytes to %s",
+ packet->len, device_info);
+
+ switch(device_type) {
+ case DEVICE_TYPE_TUN:
+ packet->data[10] = packet->data[11] = 0;
+ if(write(device_fd, packet->data + 10, packet->len - 10) < 0) {
+ logger(LOG_ERR, "Can't write to %s %s: %s", device_info, device,
+ strerror(errno));
+ return false;
+ }
+ break;
+ case DEVICE_TYPE_TAP:
+ if(write(device_fd, packet->data, packet->len) < 0) {
+ logger(LOG_ERR, "Can't write to %s %s: %s", device_info, device,
+ strerror(errno));
+ return false;
+ }
+ break;
+ case DEVICE_TYPE_ETHERTAP:
+ *(short int *)(packet->data - 2) = packet->len;
+
+ if(write(device_fd, packet->data - 2, packet->len + 2) < 0) {
+ logger(LOG_ERR, "Can't write to %s %s: %s", device_info, device,
+ strerror(errno));
+ return false;
+ }
+ break;
+ }
+
+ device_total_out += packet->len;
+
+ return true;
+}
+
+static void dump_device_stats(void) {
+ logger(LOG_DEBUG, "Statistics for %s %s:", device_info, device);
+ logger(LOG_DEBUG, " total bytes in: %10"PRIu64, device_total_in);
+ logger(LOG_DEBUG, " total bytes out: %10"PRIu64, device_total_out);
+}
+
+const devops_t os_devops = {
+ .setup = setup_device,
+ .close = close_device,
+ .read = read_packet,
+ .write = write_packet,
+ .dump_stats = dump_device_stats,
+};
projects / tinc / blobdiff