1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
|
/*
* Copyright (C) 2012 The Android Open Source Project
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#include <dirent.h>
#include <errno.h>
#include <malloc.h>
#include <sys/socket.h>
#define LOG_TAG "InterfaceController"
#include <android-base/file.h>
#include <android-base/stringprintf.h>
#include <cutils/log.h>
#include <logwrap/logwrap.h>
#include <netutils/ifc.h>
#include "InterfaceController.h"
#include "RouteController.h"
using android::base::StringPrintf;
using android::base::ReadFileToString;
using android::base::WriteStringToFile;
using android::net::RouteController;
namespace {
const char ipv6_proc_path[] = "/proc/sys/net/ipv6/conf";
const char ipv4_neigh_conf_dir[] = "/proc/sys/net/ipv4/neigh";
const char ipv6_neigh_conf_dir[] = "/proc/sys/net/ipv6/neigh";
const char proc_net_path[] = "/proc/sys/net";
const char sys_net_path[] = "/sys/class/net";
const char wl_util_path[] = "/vendor/xbin/wlutil";
inline bool isNormalPathComponent(const char *component) {
return (strcmp(component, ".") != 0) &&
(strcmp(component, "..") != 0) &&
(strchr(component, '/') == nullptr);
}
inline bool isAddressFamilyPathComponent(const char *component) {
return strcmp(component, "ipv4") == 0 || strcmp(component, "ipv6") == 0;
}
inline bool isInterfaceName(const char *name) {
return isNormalPathComponent(name) &&
(strcmp(name, "default") != 0) &&
(strcmp(name, "all") != 0);
}
int writeValueToPath(
const char* dirname, const char* subdirname, const char* basename,
const char* value) {
std::string path(StringPrintf("%s/%s/%s", dirname, subdirname, basename));
return WriteStringToFile(value, path) ? 0 : -1;
}
void setOnAllInterfaces(const char* dirname, const char* basename, const char* value) {
// Set the default value, which is used by any interfaces that are created in the future.
writeValueToPath(dirname, "default", basename, value);
// Set the value on all the interfaces that currently exist.
DIR* dir = opendir(dirname);
if (!dir) {
ALOGE("Can't list %s: %s", dirname, strerror(errno));
return;
}
dirent* d;
while ((d = readdir(dir))) {
if ((d->d_type != DT_DIR) || !isInterfaceName(d->d_name)) {
continue;
}
writeValueToPath(dirname, d->d_name, basename, value);
}
closedir(dir);
}
void setIPv6UseOutgoingInterfaceAddrsOnly(const char *value) {
setOnAllInterfaces(ipv6_proc_path, "use_oif_addrs_only", value);
}
std::string getParameterPathname(
const char *family, const char *which, const char *interface, const char *parameter) {
if (!isAddressFamilyPathComponent(family)) {
errno = EAFNOSUPPORT;
return "";
} else if (!isNormalPathComponent(which) ||
!isInterfaceName(interface) ||
!isNormalPathComponent(parameter)) {
errno = EINVAL;
return "";
}
return StringPrintf("%s/%s/%s/%s/%s", proc_net_path, family, which, interface, parameter);
}
} // namespace
void InterfaceController::initializeAll() {
// Initial IPv6 settings.
// By default, accept_ra is set to 1 (accept RAs unless forwarding is on) on all interfaces.
// This causes RAs to work or not work based on whether forwarding is on, and causes routes
// learned from RAs to go away when forwarding is turned on. Make this behaviour predictable
// by always setting accept_ra to 2.
setAcceptRA("2");
setAcceptRARouteTable(-RouteController::ROUTE_TABLE_OFFSET_FROM_INDEX);
// Enable optimistic DAD for IPv6 addresses on all interfaces.
setIPv6OptimisticMode("1");
// Reduce the ARP/ND base reachable time from the default (30sec) to 15sec.
setBaseReachableTimeMs(15 * 1000);
// When sending traffic via a given interface use only addresses configured
// on that interface as possible source addresses.
setIPv6UseOutgoingInterfaceAddrsOnly("1");
}
int InterfaceController::setEnableIPv6(const char *interface, const int on) {
if (!isIfaceName(interface)) {
errno = ENOENT;
return -1;
}
// When disable_ipv6 changes from 1 to 0, the kernel starts autoconf.
// When disable_ipv6 changes from 0 to 1, the kernel clears all autoconf
// addresses and routes and disables IPv6 on the interface.
const char *disable_ipv6 = on ? "0" : "1";
return writeValueToPath(ipv6_proc_path, interface, "disable_ipv6", disable_ipv6);
}
int InterfaceController::setAcceptIPv6Ra(const char *interface, const int on) {
if (!isIfaceName(interface)) {
errno = ENOENT;
return -1;
}
// Because forwarding can be enabled even when tethering is off, we always
// use mode "2" (accept RAs, even if forwarding is enabled).
const char *accept_ra = on ? "2" : "0";
return writeValueToPath(ipv6_proc_path, interface, "accept_ra", accept_ra);
}
int InterfaceController::setAcceptIPv6Dad(const char *interface, const int on) {
if (!isIfaceName(interface)) {
errno = ENOENT;
return -1;
}
const char *accept_dad = on ? "1" : "0";
return writeValueToPath(ipv6_proc_path, interface, "accept_dad", accept_dad);
}
int InterfaceController::setIPv6DadTransmits(const char *interface, const char *value) {
if (!isIfaceName(interface)) {
errno = ENOENT;
return -1;
}
return writeValueToPath(ipv6_proc_path, interface, "dad_transmits", value);
}
int InterfaceController::setIPv6PrivacyExtensions(const char *interface, const int on) {
if (!isIfaceName(interface)) {
errno = ENOENT;
return -1;
}
// 0: disable IPv6 privacy addresses
// 0: enable IPv6 privacy addresses and prefer them over non-privacy ones.
return writeValueToPath(ipv6_proc_path, interface, "use_tempaddr", on ? "2" : "0");
}
// Enables or disables IPv6 ND offload. This is useful for 464xlat on wifi, IPv6 tethering, and
// generally implementing IPv6 neighbour discovery and duplicate address detection properly.
// TODO: This should be implemented in wpa_supplicant via driver commands instead.
int InterfaceController::setIPv6NdOffload(char* interface, const int on) {
// Only supported on Broadcom chipsets via wlutil for now.
if (access(wl_util_path, X_OK) == 0) {
const char *argv[] = {
wl_util_path,
"-a",
interface,
"ndoe",
on ? "1" : "0"
};
int ret = android_fork_execvp(ARRAY_SIZE(argv), const_cast<char**>(argv), NULL,
false, false);
ALOGD("%s ND offload on %s: %d (%s)",
(on ? "enabling" : "disabling"), interface, ret, strerror(errno));
return ret;
} else {
return 0;
}
}
void InterfaceController::setAcceptRA(const char *value) {
setOnAllInterfaces(ipv6_proc_path, "accept_ra", value);
}
// |tableOrOffset| is interpreted as:
// If == 0: default. Routes go into RT6_TABLE_MAIN.
// If > 0: user set. Routes go into the specified table.
// If < 0: automatic. The absolute value is intepreted as an offset and added to the interface
// ID to get the table. If it's set to -1000, routes from interface ID 5 will go into
// table 1005, etc.
void InterfaceController::setAcceptRARouteTable(int tableOrOffset) {
std::string value(StringPrintf("%d", tableOrOffset));
setOnAllInterfaces(ipv6_proc_path, "accept_ra_rt_table", value.c_str());
}
int InterfaceController::setMtu(const char *interface, const char *mtu)
{
if (!isIfaceName(interface)) {
errno = ENOENT;
return -1;
}
return writeValueToPath(sys_net_path, interface, "mtu", mtu);
}
int InterfaceController::addAddress(const char *interface,
const char *addrString, int prefixLength) {
return ifc_add_address(interface, addrString, prefixLength);
}
int InterfaceController::delAddress(const char *interface,
const char *addrString, int prefixLength) {
return ifc_del_address(interface, addrString, prefixLength);
}
int InterfaceController::getParameter(
const char *family, const char *which, const char *interface, const char *parameter,
std::string *value) {
const std::string path(getParameterPathname(family, which, interface, parameter));
if (path.empty()) {
return -errno;
}
return ReadFileToString(path, value) ? 0 : -errno;
}
int InterfaceController::setParameter(
const char *family, const char *which, const char *interface, const char *parameter,
const char *value) {
const std::string path(getParameterPathname(family, which, interface, parameter));
if (path.empty()) {
return -errno;
}
return WriteStringToFile(value, path) ? 0 : -errno;
}
void InterfaceController::setBaseReachableTimeMs(unsigned int millis) {
std::string value(StringPrintf("%u", millis));
setOnAllInterfaces(ipv4_neigh_conf_dir, "base_reachable_time_ms", value.c_str());
setOnAllInterfaces(ipv6_neigh_conf_dir, "base_reachable_time_ms", value.c_str());
}
void InterfaceController::setIPv6OptimisticMode(const char *value) {
setOnAllInterfaces(ipv6_proc_path, "optimistic_dad", value);
setOnAllInterfaces(ipv6_proc_path, "use_optimistic", value);
}
|
