VirtualBox

source: vbox/trunk/src/VBox/Main/src-server/NATNetworkImpl.cpp@ 60034

Last change on this file since 60034 was 58827, checked in by vboxsync, 9 years ago

Main/NATNetwork: method to compute IPv6 prefix based on IPv4 network
address, like VBoxNetNAT has been doing privately all this time. Use
it if the settings have empty IPv6 prefix or bogus old link-local
default.

  • Property svn:eol-style set to native
  • Property svn:keywords set to Author Date Id Revision
File size: 29.6 KB
Line 
1/* $Id: NATNetworkImpl.cpp 58827 2015-11-23 16:31:48Z vboxsync $ */
2/** @file
3 * INATNetwork implementation.
4 */
5
6/*
7 * Copyright (C) 2013 Oracle Corporation
8 *
9 * This file is part of VirtualBox Open Source Edition (OSE), as
10 * available from http://www.virtualbox.org. This file is free software;
11 * you can redistribute it and/or modify it under the terms of the GNU
12 * General Public License (GPL) as published by the Free Software
13 * Foundation, in version 2 as it comes in the "COPYING" file of the
14 * VirtualBox OSE distribution. VirtualBox OSE is distributed in the
15 * hope that it will be useful, but WITHOUT ANY WARRANTY of any kind.
16 */
17
18#include <string>
19#include "NetworkServiceRunner.h"
20#include "DHCPServerImpl.h"
21#include "NATNetworkImpl.h"
22#include "AutoCaller.h"
23#include "Logging.h"
24
25#include <iprt/asm.h>
26#include <iprt/cpp/utils.h>
27#include <iprt/cidr.h>
28#include <iprt/net.h>
29#include <VBox/com/array.h>
30#include <VBox/com/ptr.h>
31#include <VBox/settings.h>
32
33#include "EventImpl.h"
34
35#include "VirtualBoxImpl.h"
36#include <algorithm>
37#include <list>
38
39#ifndef RT_OS_WINDOWS
40# include <netinet/in.h>
41#else
42# define IN_LOOPBACKNET 127
43#endif
44
45
46// constructor / destructor
47/////////////////////////////////////////////////////////////////////////////
48struct NATNetwork::Data
49{
50 Data()
51 : fEnabled(TRUE)
52 , fIPv6Enabled(FALSE)
53 , fAdvertiseDefaultIPv6Route(FALSE)
54 , fNeedDhcpServer(TRUE)
55 , u32LoopbackIp6(0)
56 , offGateway(0)
57 , offDhcp(0)
58 {
59 IPv4Gateway.setNull();
60 IPv4NetworkCidr.setNull();
61 IPv6Prefix.setNull();
62 IPv4DhcpServer.setNull();
63 IPv4NetworkMask.setNull();
64 IPv4DhcpServerLowerIp.setNull();
65 IPv4DhcpServerUpperIp.setNull();
66 }
67 virtual ~Data(){}
68 const ComObjPtr<EventSource> pEventSource;
69#ifdef VBOX_WITH_NAT_SERVICE
70 NATNetworkServiceRunner NATRunner;
71 ComObjPtr<IDHCPServer> dhcpServer;
72#endif
73 com::Utf8Str IPv4Gateway;
74 com::Utf8Str IPv4NetworkCidr;
75 com::Utf8Str IPv4NetworkMask;
76 com::Utf8Str IPv4DhcpServer;
77 com::Utf8Str IPv4DhcpServerLowerIp;
78 com::Utf8Str IPv4DhcpServerUpperIp;
79 BOOL fEnabled;
80 BOOL fIPv6Enabled;
81 com::Utf8Str IPv6Prefix;
82 BOOL fAdvertiseDefaultIPv6Route;
83 BOOL fNeedDhcpServer;
84 NATRuleMap mapName2PortForwardRule4;
85 NATRuleMap mapName2PortForwardRule6;
86 settings::NATLoopbackOffsetList maNATLoopbackOffsetList;
87 uint32_t u32LoopbackIp6;
88 uint32_t offGateway;
89 uint32_t offDhcp;
90};
91
92
93NATNetwork::NATNetwork()
94 : mVirtualBox(NULL)
95{
96}
97
98
99NATNetwork::~NATNetwork()
100{
101}
102
103
104HRESULT NATNetwork::FinalConstruct()
105{
106 return BaseFinalConstruct();
107}
108
109
110void NATNetwork::FinalRelease()
111{
112 uninit();
113
114 BaseFinalRelease();
115}
116
117
118void NATNetwork::uninit()
119{
120 /* Enclose the state transition Ready->InUninit->NotReady */
121 AutoUninitSpan autoUninitSpan(this);
122 if (autoUninitSpan.uninitDone())
123 return;
124 delete m;
125 m = NULL;
126 unconst(mVirtualBox) = NULL;
127}
128
129HRESULT NATNetwork::init(VirtualBox *aVirtualBox, com::Utf8Str aName)
130{
131 AssertReturn(!aName.isEmpty(), E_INVALIDARG);
132
133 AutoInitSpan autoInitSpan(this);
134 AssertReturn(autoInitSpan.isOk(), E_FAIL);
135
136 /* share VirtualBox weakly (parent remains NULL so far) */
137 unconst(mVirtualBox) = aVirtualBox;
138 unconst(mName) = aName;
139 m = new Data();
140 m->offGateway = 1;
141 m->IPv4NetworkCidr = "10.0.2.0/24";
142 i_recalculateIPv6Prefix(); /* set m->IPv6Prefix based on IPv4 */
143
144 settings::NATHostLoopbackOffset off;
145 off.strLoopbackHostAddress = "127.0.0.1";
146 off.u32Offset = (uint32_t)2;
147 m->maNATLoopbackOffsetList.push_back(off);
148
149 i_recalculateIpv4AddressAssignments();
150
151 HRESULT hrc = unconst(m->pEventSource).createObject();
152 if (FAILED(hrc)) throw hrc;
153
154 hrc = m->pEventSource->init();
155 if (FAILED(hrc)) throw hrc;
156
157 /* Confirm a successful initialization */
158 autoInitSpan.setSucceeded();
159
160 return S_OK;
161}
162
163
164HRESULT NATNetwork::init(VirtualBox *aVirtualBox,
165 const settings::NATNetwork &data)
166{
167 /* Enclose the state transition NotReady->InInit->Ready */
168 AutoInitSpan autoInitSpan(this);
169 AssertReturn(autoInitSpan.isOk(), E_FAIL);
170
171 /* share VirtualBox weakly (parent remains NULL so far) */
172 unconst(mVirtualBox) = aVirtualBox;
173
174 unconst(mName) = data.strNetworkName;
175 m = new Data();
176 m->IPv4NetworkCidr = data.strNetwork;
177 m->fEnabled = data.fEnabled;
178 m->fAdvertiseDefaultIPv6Route = data.fAdvertiseDefaultIPv6Route;
179 m->fNeedDhcpServer = data.fNeedDhcpServer;
180 m->fIPv6Enabled = data.fIPv6;
181
182 if ( data.strIPv6Prefix.isEmpty()
183 /* also clean up bogus old default */
184 || data.strIPv6Prefix == "fe80::/64")
185 i_recalculateIPv6Prefix(); /* set m->IPv6Prefix based on IPv4 */
186 else
187 m->IPv6Prefix = data.strIPv6Prefix;
188
189 m->u32LoopbackIp6 = data.u32HostLoopback6Offset;
190
191 m->maNATLoopbackOffsetList.clear();
192 m->maNATLoopbackOffsetList.assign(data.llHostLoopbackOffsetList.begin(),
193 data.llHostLoopbackOffsetList.end());
194
195 i_recalculateIpv4AddressAssignments();
196
197 /* IPv4 port-forward rules */
198 m->mapName2PortForwardRule4.clear();
199 for (settings::NATRuleList::const_iterator it = data.llPortForwardRules4.begin();
200 it != data.llPortForwardRules4.end(); ++it)
201 {
202 m->mapName2PortForwardRule4.insert(std::make_pair(it->strName.c_str(), *it));
203 }
204
205 /* IPv6 port-forward rules */
206 m->mapName2PortForwardRule6.clear();
207 for (settings::NATRuleList::const_iterator it = data.llPortForwardRules6.begin();
208 it != data.llPortForwardRules6.end(); ++it)
209 {
210 m->mapName2PortForwardRule6.insert(std::make_pair(it->strName, *it));
211 }
212
213 HRESULT hrc = unconst(m->pEventSource).createObject();
214 if (FAILED(hrc)) throw hrc;
215
216 hrc = m->pEventSource->init();
217 if (FAILED(hrc)) throw hrc;
218
219 autoInitSpan.setSucceeded();
220
221 return S_OK;
222}
223
224HRESULT NATNetwork::i_saveSettings(settings::NATNetwork &data)
225{
226 AutoCaller autoCaller(this);
227 if (FAILED(autoCaller.rc())) return autoCaller.rc();
228
229 AutoReadLock alock(this COMMA_LOCKVAL_SRC_POS);
230
231 data.strNetworkName = mName;
232 data.strNetwork = m->IPv4NetworkCidr;
233 data.fEnabled = RT_BOOL(m->fEnabled);
234 data.fAdvertiseDefaultIPv6Route = RT_BOOL(m->fAdvertiseDefaultIPv6Route);
235 data.fNeedDhcpServer = RT_BOOL(m->fNeedDhcpServer);
236 data.fIPv6 = RT_BOOL(m->fIPv6Enabled);
237 data.strIPv6Prefix = m->IPv6Prefix;
238
239 /* saving ipv4 port-forward Rules*/
240 data.llPortForwardRules4.clear();
241 for (NATRuleMap::iterator it = m->mapName2PortForwardRule4.begin();
242 it != m->mapName2PortForwardRule4.end(); ++it)
243 data.llPortForwardRules4.push_back(it->second);
244
245 /* saving ipv6 port-forward Rules*/
246 data.llPortForwardRules6.clear();
247 for (NATRuleMap::iterator it = m->mapName2PortForwardRule6.begin();
248 it != m->mapName2PortForwardRule6.end(); ++it)
249 data.llPortForwardRules6.push_back(it->second);
250
251 data.u32HostLoopback6Offset = m->u32LoopbackIp6;
252
253 data.llHostLoopbackOffsetList.clear();
254 data.llHostLoopbackOffsetList.assign(m->maNATLoopbackOffsetList.begin(),
255 m->maNATLoopbackOffsetList.end());
256
257 mVirtualBox->i_onNATNetworkSetting(Bstr(mName).raw(),
258 data.fEnabled ? TRUE : FALSE,
259 Bstr(m->IPv4NetworkCidr).raw(),
260 Bstr(m->IPv4Gateway).raw(),
261 data.fAdvertiseDefaultIPv6Route ? TRUE : FALSE,
262 data.fNeedDhcpServer ? TRUE : FALSE);
263
264 /* Notify listerners listening on this network only */
265 fireNATNetworkSettingEvent(m->pEventSource,
266 Bstr(mName).raw(),
267 data.fEnabled ? TRUE : FALSE,
268 Bstr(m->IPv4NetworkCidr).raw(),
269 Bstr(m->IPv4Gateway).raw(),
270 data.fAdvertiseDefaultIPv6Route ? TRUE : FALSE,
271 data.fNeedDhcpServer ? TRUE : FALSE);
272
273 return S_OK;
274}
275
276HRESULT NATNetwork::getEventSource(ComPtr<IEventSource> &aEventSource)
277{
278 /* event source is const, no need to lock */
279 m->pEventSource.queryInterfaceTo(aEventSource.asOutParam());
280 return S_OK;
281}
282
283HRESULT NATNetwork::getNetworkName(com::Utf8Str &aNetworkName)
284{
285 aNetworkName = mName;
286 return S_OK;
287}
288
289HRESULT NATNetwork::setNetworkName(const com::Utf8Str &aNetworkName)
290{
291 {
292 AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
293 if (aNetworkName == mName)
294 return S_OK;
295
296 unconst(mName) = aNetworkName;
297 }
298 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
299 HRESULT rc = mVirtualBox->i_saveSettings();
300 ComAssertComRCRetRC(rc);
301
302 return S_OK;
303}
304
305HRESULT NATNetwork::getEnabled(BOOL *aEnabled)
306{
307 *aEnabled = m->fEnabled;
308
309 i_recalculateIpv4AddressAssignments();
310 return S_OK;
311}
312
313HRESULT NATNetwork::setEnabled(const BOOL aEnabled)
314{
315 {
316 AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
317 if (aEnabled == m->fEnabled)
318 return S_OK;
319 m->fEnabled = aEnabled;
320 }
321
322 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
323 HRESULT rc = mVirtualBox->i_saveSettings();
324 ComAssertComRCRetRC(rc);
325 return S_OK;
326}
327
328HRESULT NATNetwork::getGateway(com::Utf8Str &aIPv4Gateway)
329{
330 aIPv4Gateway = m->IPv4Gateway;
331 return S_OK;
332}
333
334HRESULT NATNetwork::getNetwork(com::Utf8Str &aNetwork)
335{
336 aNetwork = m->IPv4NetworkCidr;
337 return S_OK;
338}
339
340
341HRESULT NATNetwork::setNetwork(const com::Utf8Str &aIPv4NetworkCidr)
342{
343 {
344
345 AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
346
347 if (aIPv4NetworkCidr == m->IPv4NetworkCidr)
348 return S_OK;
349
350 /* silently ignore network cidr update for now.
351 * todo: keep internally guest address of port forward rule
352 * as offset from network id.
353 */
354 if (!m->mapName2PortForwardRule4.empty())
355 return S_OK;
356
357
358 unconst(m->IPv4NetworkCidr) = aIPv4NetworkCidr;
359 i_recalculateIpv4AddressAssignments();
360 }
361
362 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
363 HRESULT rc = mVirtualBox->i_saveSettings();
364 ComAssertComRCRetRC(rc);
365 return S_OK;
366}
367
368
369HRESULT NATNetwork::getIPv6Enabled(BOOL *aIPv6Enabled)
370{
371 *aIPv6Enabled = m->fIPv6Enabled;
372
373 return S_OK;
374}
375
376
377HRESULT NATNetwork::setIPv6Enabled(const BOOL aIPv6Enabled)
378{
379 {
380 AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
381
382 if (aIPv6Enabled == m->fIPv6Enabled)
383 return S_OK;
384
385 m->fIPv6Enabled = aIPv6Enabled;
386 }
387
388 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
389 HRESULT rc = mVirtualBox->i_saveSettings();
390 ComAssertComRCRetRC(rc);
391
392 return S_OK;
393}
394
395
396HRESULT NATNetwork::getIPv6Prefix(com::Utf8Str &aIPv6Prefix)
397{
398 AutoReadLock alock(this COMMA_LOCKVAL_SRC_POS);
399
400 aIPv6Prefix = m->IPv6Prefix;
401 return S_OK;
402}
403
404HRESULT NATNetwork::setIPv6Prefix(const com::Utf8Str &aIPv6Prefix)
405{
406 {
407 AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
408
409 if (aIPv6Prefix == m->IPv6Prefix)
410 return S_OK;
411
412 /* silently ignore network IPv6 prefix update.
413 * todo: see similar todo in NATNetwork::COMSETTER(Network)(IN_BSTR)
414 */
415 if (!m->mapName2PortForwardRule6.empty())
416 return S_OK;
417
418 unconst(m->IPv6Prefix) = Bstr(aIPv6Prefix);
419 }
420
421 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
422 HRESULT rc = mVirtualBox->i_saveSettings();
423 ComAssertComRCRetRC(rc);
424
425 return S_OK;
426}
427
428
429HRESULT NATNetwork::getAdvertiseDefaultIPv6RouteEnabled(BOOL *aAdvertiseDefaultIPv6Route)
430{
431 *aAdvertiseDefaultIPv6Route = m->fAdvertiseDefaultIPv6Route;
432
433 return S_OK;
434}
435
436
437HRESULT NATNetwork::setAdvertiseDefaultIPv6RouteEnabled(const BOOL aAdvertiseDefaultIPv6Route)
438{
439 {
440 AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
441
442 if (aAdvertiseDefaultIPv6Route == m->fAdvertiseDefaultIPv6Route)
443 return S_OK;
444
445 m->fAdvertiseDefaultIPv6Route = aAdvertiseDefaultIPv6Route;
446
447 }
448
449 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
450 HRESULT rc = mVirtualBox->i_saveSettings();
451 ComAssertComRCRetRC(rc);
452
453 return S_OK;
454}
455
456
457HRESULT NATNetwork::getNeedDhcpServer(BOOL *aNeedDhcpServer)
458{
459 *aNeedDhcpServer = m->fNeedDhcpServer;
460
461 return S_OK;
462}
463
464HRESULT NATNetwork::setNeedDhcpServer(const BOOL aNeedDhcpServer)
465{
466 {
467 AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
468
469 if (aNeedDhcpServer == m->fNeedDhcpServer)
470 return S_OK;
471
472 m->fNeedDhcpServer = aNeedDhcpServer;
473
474 i_recalculateIpv4AddressAssignments();
475
476 }
477
478 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
479 HRESULT rc = mVirtualBox->i_saveSettings();
480 ComAssertComRCRetRC(rc);
481
482 return S_OK;
483}
484
485HRESULT NATNetwork::getLocalMappings(std::vector<com::Utf8Str> &aLocalMappings)
486{
487 AutoReadLock alock(this COMMA_LOCKVAL_SRC_POS);
488
489 aLocalMappings.resize(m->maNATLoopbackOffsetList.size());
490 size_t i = 0;
491 for (settings::NATLoopbackOffsetList::const_iterator it = m->maNATLoopbackOffsetList.begin();
492 it != m->maNATLoopbackOffsetList.end(); ++it, ++i)
493 {
494 aLocalMappings[i] = Utf8StrFmt("%s=%d",
495 (*it).strLoopbackHostAddress.c_str(),
496 (*it).u32Offset);
497 }
498
499 return S_OK;
500}
501
502HRESULT NATNetwork::addLocalMapping(const com::Utf8Str &aHostId, LONG aOffset)
503{
504 RTNETADDRIPV4 addr, net, mask;
505
506 int rc = RTNetStrToIPv4Addr(Utf8Str(aHostId).c_str(), &addr);
507 if (RT_FAILURE(rc))
508 return E_INVALIDARG;
509
510 /* check against 127/8 */
511 if ((RT_N2H_U32(addr.u) >> IN_CLASSA_NSHIFT) != IN_LOOPBACKNET)
512 return E_INVALIDARG;
513
514 /* check against networkid vs network mask */
515 rc = RTCidrStrToIPv4(Utf8Str(m->IPv4NetworkCidr).c_str(), &net, &mask);
516 if (RT_FAILURE(rc))
517 return E_INVALIDARG;
518
519 if (((net.u + aOffset) & mask.u) != net.u)
520 return E_INVALIDARG;
521
522 settings::NATLoopbackOffsetList::iterator it;
523
524 it = std::find(m->maNATLoopbackOffsetList.begin(),
525 m->maNATLoopbackOffsetList.end(),
526 aHostId);
527 if (it != m->maNATLoopbackOffsetList.end())
528 {
529 if (aOffset == 0) /* erase */
530 m->maNATLoopbackOffsetList.erase(it, it);
531 else /* modify */
532 {
533 settings::NATLoopbackOffsetList::iterator it1;
534 it1 = std::find(m->maNATLoopbackOffsetList.begin(),
535 m->maNATLoopbackOffsetList.end(),
536 (uint32_t)aOffset);
537 if (it1 != m->maNATLoopbackOffsetList.end())
538 return E_INVALIDARG; /* this offset is already registered. */
539
540 (*it).u32Offset = aOffset;
541 }
542
543 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
544 return mVirtualBox->i_saveSettings();
545 }
546
547 /* injection */
548 it = std::find(m->maNATLoopbackOffsetList.begin(),
549 m->maNATLoopbackOffsetList.end(),
550 (uint32_t)aOffset);
551
552 if (it != m->maNATLoopbackOffsetList.end())
553 return E_INVALIDARG; /* offset is already registered. */
554
555 settings::NATHostLoopbackOffset off;
556 off.strLoopbackHostAddress = aHostId;
557 off.u32Offset = (uint32_t)aOffset;
558 m->maNATLoopbackOffsetList.push_back(off);
559
560 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
561 return mVirtualBox->i_saveSettings();
562}
563
564
565HRESULT NATNetwork::getLoopbackIp6(LONG *aLoopbackIp6)
566{
567 AutoReadLock alock(this COMMA_LOCKVAL_SRC_POS);
568
569 *aLoopbackIp6 = m->u32LoopbackIp6;
570 return S_OK;
571}
572
573
574HRESULT NATNetwork::setLoopbackIp6(LONG aLoopbackIp6)
575{
576 {
577 AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
578
579 if (aLoopbackIp6 < 0)
580 return E_INVALIDARG;
581
582 if (static_cast<uint32_t>(aLoopbackIp6) == m->u32LoopbackIp6)
583 return S_OK;
584
585 m->u32LoopbackIp6 = aLoopbackIp6;
586 }
587
588 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
589 return mVirtualBox->i_saveSettings();
590}
591
592
593HRESULT NATNetwork::getPortForwardRules4(std::vector<com::Utf8Str> &aPortForwardRules4)
594{
595 AutoReadLock alock(this COMMA_LOCKVAL_SRC_POS);
596 i_getPortForwardRulesFromMap(aPortForwardRules4,
597 m->mapName2PortForwardRule4);
598 return S_OK;
599}
600
601HRESULT NATNetwork::getPortForwardRules6(std::vector<com::Utf8Str> &aPortForwardRules6)
602{
603 AutoReadLock alock(this COMMA_LOCKVAL_SRC_POS);
604 i_getPortForwardRulesFromMap(aPortForwardRules6,
605 m->mapName2PortForwardRule6);
606 return S_OK;
607}
608
609HRESULT NATNetwork::addPortForwardRule(BOOL aIsIpv6,
610 const com::Utf8Str &aPortForwardRuleName,
611 NATProtocol_T aProto,
612 const com::Utf8Str &aHostIp,
613 USHORT aHostPort,
614 const com::Utf8Str &aGuestIp,
615 USHORT aGuestPort)
616{
617 {
618 AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
619 Utf8Str name = aPortForwardRuleName;
620 Utf8Str proto;
621 settings::NATRule r;
622 NATRuleMap& mapRules = aIsIpv6 ? m->mapName2PortForwardRule6 : m->mapName2PortForwardRule4;
623 switch (aProto)
624 {
625 case NATProtocol_TCP:
626 proto = "tcp";
627 break;
628 case NATProtocol_UDP:
629 proto = "udp";
630 break;
631 default:
632 return E_INVALIDARG;
633 }
634 if (name.isEmpty())
635 name = Utf8StrFmt("%s_[%s]%%%d_[%s]%%%d", proto.c_str(),
636 aHostIp.c_str(), aHostPort,
637 aGuestIp.c_str(), aGuestPort);
638
639 for (NATRuleMap::iterator it = mapRules.begin(); it != mapRules.end(); ++it)
640 {
641 r = it->second;
642 if (it->first == name)
643 return setError(E_INVALIDARG,
644 tr("A NAT rule of this name already exists"));
645 if ( r.strHostIP == aHostIp
646 && r.u16HostPort == aHostPort
647 && r.proto == aProto)
648 return setError(E_INVALIDARG,
649 tr("A NAT rule for this host port and this host IP already exists"));
650 }
651
652 r.strName = name.c_str();
653 r.proto = aProto;
654 r.strHostIP = aHostIp;
655 r.u16HostPort = aHostPort;
656 r.strGuestIP = aGuestIp;
657 r.u16GuestPort = aGuestPort;
658 mapRules.insert(std::make_pair(name, r));
659 }
660 {
661 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
662 HRESULT rc = mVirtualBox->i_saveSettings();
663 ComAssertComRCRetRC(rc);
664 }
665
666 mVirtualBox->i_onNATNetworkPortForward(Bstr(mName).raw(), TRUE, aIsIpv6,
667 Bstr(aPortForwardRuleName).raw(), aProto,
668 Bstr(aHostIp).raw(), aHostPort,
669 Bstr(aGuestIp).raw(), aGuestPort);
670
671 /* Notify listerners listening on this network only */
672 fireNATNetworkPortForwardEvent(m->pEventSource, Bstr(mName).raw(), TRUE,
673 aIsIpv6, Bstr(aPortForwardRuleName).raw(), aProto,
674 Bstr(aHostIp).raw(), aHostPort,
675 Bstr(aGuestIp).raw(), aGuestPort);
676
677 return S_OK;
678}
679
680HRESULT NATNetwork::removePortForwardRule(BOOL aIsIpv6, const com::Utf8Str &aPortForwardRuleName)
681{
682 Utf8Str strHostIP;
683 Utf8Str strGuestIP;
684 uint16_t u16HostPort;
685 uint16_t u16GuestPort;
686 NATProtocol_T proto;
687
688 {
689 AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
690 NATRuleMap& mapRules = aIsIpv6 ? m->mapName2PortForwardRule6 : m->mapName2PortForwardRule4;
691 NATRuleMap::iterator it = mapRules.find(aPortForwardRuleName);
692
693 if (it == mapRules.end())
694 return E_INVALIDARG;
695
696 strHostIP = it->second.strHostIP;
697 strGuestIP = it->second.strGuestIP;
698 u16HostPort = it->second.u16HostPort;
699 u16GuestPort = it->second.u16GuestPort;
700 proto = it->second.proto;
701
702 mapRules.erase(it);
703 }
704
705 {
706 AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
707 HRESULT rc = mVirtualBox->i_saveSettings();
708 ComAssertComRCRetRC(rc);
709 }
710
711 mVirtualBox->i_onNATNetworkPortForward(Bstr(mName).raw(), FALSE, aIsIpv6,
712 Bstr(aPortForwardRuleName).raw(), proto,
713 Bstr(strHostIP).raw(), u16HostPort,
714 Bstr(strGuestIP).raw(), u16GuestPort);
715
716 /* Notify listerners listening on this network only */
717 fireNATNetworkPortForwardEvent(m->pEventSource, Bstr(mName).raw(), FALSE,
718 aIsIpv6, Bstr(aPortForwardRuleName).raw(), proto,
719 Bstr(strHostIP).raw(), u16HostPort,
720 Bstr(strGuestIP).raw(), u16GuestPort);
721 return S_OK;
722}
723
724
725HRESULT NATNetwork::start(const com::Utf8Str &aTrunkType)
726{
727#ifdef VBOX_WITH_NAT_SERVICE
728 if (!m->fEnabled) return S_OK;
729
730 m->NATRunner.setOption(NetworkServiceRunner::kNsrKeyNetwork, Utf8Str(mName).c_str());
731 m->NATRunner.setOption(NetworkServiceRunner::kNsrKeyTrunkType, Utf8Str(aTrunkType).c_str());
732 m->NATRunner.setOption(NetworkServiceRunner::kNsrIpAddress, Utf8Str(m->IPv4Gateway).c_str());
733 m->NATRunner.setOption(NetworkServiceRunner::kNsrIpNetmask, Utf8Str(m->IPv4NetworkMask).c_str());
734
735 /* No portforwarding rules from command-line, all will be fetched via API */
736
737 if (m->fNeedDhcpServer)
738 {
739 /*
740 * Just to as idea... via API (on creation user pass the cidr of network and)
741 * and we calculate it's addreses (mutable?).
742 */
743
744 /*
745 * Configuration and running DHCP server:
746 * 1. find server first createDHCPServer
747 * 2. if return status is E_INVALARG => server already exists just find and start.
748 * 3. if return status neither E_INVALRG nor S_OK => return E_FAIL
749 * 4. if return status S_OK proceed to DHCP server configuration
750 * 5. call setConfiguration() and pass all required parameters
751 * 6. start dhcp server.
752 */
753 HRESULT hrc = mVirtualBox->FindDHCPServerByNetworkName(Bstr(mName).raw(),
754 m->dhcpServer.asOutParam());
755 switch (hrc)
756 {
757 case E_INVALIDARG:
758 /* server haven't beeen found let create it then */
759 hrc = mVirtualBox->CreateDHCPServer(Bstr(mName).raw(),
760 m->dhcpServer.asOutParam());
761 if (FAILED(hrc))
762 return E_FAIL;
763 /* breakthrough */
764
765 {
766 LogFunc(("gateway: %s, dhcpserver:%s, dhcplowerip:%s, dhcpupperip:%s\n",
767 m->IPv4Gateway.c_str(),
768 m->IPv4DhcpServer.c_str(),
769 m->IPv4DhcpServerLowerIp.c_str(),
770 m->IPv4DhcpServerUpperIp.c_str()));
771
772 hrc = m->dhcpServer->COMSETTER(Enabled)(true);
773
774 BSTR dhcpip = NULL;
775 BSTR netmask = NULL;
776 BSTR lowerip = NULL;
777 BSTR upperip = NULL;
778
779 m->IPv4DhcpServer.cloneTo(&dhcpip);
780 m->IPv4NetworkMask.cloneTo(&netmask);
781 m->IPv4DhcpServerLowerIp.cloneTo(&lowerip);
782 m->IPv4DhcpServerUpperIp.cloneTo(&upperip);
783 hrc = m->dhcpServer->SetConfiguration(dhcpip,
784 netmask,
785 lowerip,
786 upperip);
787 }
788 case S_OK:
789 break;
790
791 default:
792 return E_FAIL;
793 }
794
795 /* XXX: AddGlobalOption(DhcpOpt_Router,) - enables attachement of DhcpServer to Main. */
796 m->dhcpServer->AddGlobalOption(DhcpOpt_Router, Bstr(m->IPv4Gateway).raw());
797
798 hrc = m->dhcpServer->Start(Bstr(mName).raw(), Bstr("").raw(), Bstr(aTrunkType).raw());
799 if (FAILED(hrc))
800 {
801 m->dhcpServer.setNull();
802 return E_FAIL;
803 }
804 }
805
806 if (RT_SUCCESS(m->NATRunner.start(false /* KillProcOnStop */)))
807 {
808 mVirtualBox->i_onNATNetworkStartStop(Bstr(mName).raw(), TRUE);
809 return S_OK;
810 }
811 /** @todo missing setError()! */
812 return E_FAIL;
813#else
814 NOREF(aTrunkType);
815 ReturnComNotImplemented();
816#endif
817}
818
819HRESULT NATNetwork::stop()
820{
821#ifdef VBOX_WITH_NAT_SERVICE
822 mVirtualBox->i_onNATNetworkStartStop(Bstr(mName).raw(), FALSE);
823
824 if (!m->dhcpServer.isNull())
825 m->dhcpServer->Stop();
826
827 if (RT_SUCCESS(m->NATRunner.stop()))
828 return S_OK;
829
830 /** @todo missing setError()! */
831 return E_FAIL;
832#else
833 ReturnComNotImplemented();
834#endif
835}
836
837
838void NATNetwork::i_getPortForwardRulesFromMap(std::vector<com::Utf8Str> &aPortForwardRules, NATRuleMap& aRules)
839{
840 aPortForwardRules.resize(aRules.size());
841 size_t i = 0;
842 for (NATRuleMap::const_iterator it = aRules.begin();
843 it != aRules.end(); ++it, ++i)
844 {
845 settings::NATRule r = it->second;
846 aPortForwardRules[i] = Utf8StrFmt("%s:%s:[%s]:%d:[%s]:%d",
847 r.strName.c_str(),
848 (r.proto == NATProtocol_TCP? "tcp" : "udp"),
849 r.strHostIP.c_str(),
850 r.u16HostPort,
851 r.strGuestIP.c_str(),
852 r.u16GuestPort);
853 }
854}
855
856
857int NATNetwork::i_findFirstAvailableOffset(ADDRESSLOOKUPTYPE addrType, uint32_t *poff)
858{
859 RTNETADDRIPV4 network, netmask;
860
861 int rc = RTCidrStrToIPv4(m->IPv4NetworkCidr.c_str(),
862 &network,
863 &netmask);
864 AssertRCReturn(rc, rc);
865
866 uint32_t off;
867 for (off = 1; off < ~netmask.u; ++off)
868 {
869 bool skip = false;
870 for (settings::NATLoopbackOffsetList::iterator it = m->maNATLoopbackOffsetList.begin();
871 it != m->maNATLoopbackOffsetList.end();
872 ++it)
873 {
874 if ((*it).u32Offset == off)
875 {
876 skip = true;
877 break;
878 }
879
880 }
881
882 if (skip)
883 continue;
884
885 if (off == m->offGateway)
886 {
887 if (addrType == ADDR_GATEWAY)
888 break;
889 else
890 continue;
891 }
892
893 if (off == m->offDhcp)
894 {
895 if (addrType == ADDR_DHCP)
896 break;
897 else
898 continue;
899 }
900
901 if (!skip)
902 break;
903 }
904
905 if (poff)
906 *poff = off;
907
908 return VINF_SUCCESS;
909}
910
911int NATNetwork::i_recalculateIpv4AddressAssignments()
912{
913 RTNETADDRIPV4 network, netmask;
914 int rc = RTCidrStrToIPv4(m->IPv4NetworkCidr.c_str(),
915 &network,
916 &netmask);
917 AssertRCReturn(rc, rc);
918
919 i_findFirstAvailableOffset(ADDR_GATEWAY, &m->offGateway);
920 if (m->fNeedDhcpServer)
921 i_findFirstAvailableOffset(ADDR_DHCP, &m->offDhcp);
922
923 /* I don't remember the reason CIDR calculated on the host. */
924 RTNETADDRIPV4 gateway = network;
925 gateway.u += m->offGateway;
926 gateway.u = RT_H2N_U32(gateway.u);
927 char szTmpIp[16];
928 RTStrPrintf(szTmpIp, sizeof(szTmpIp), "%RTnaipv4", gateway);
929 m->IPv4Gateway = szTmpIp;
930
931 if (m->fNeedDhcpServer)
932 {
933 RTNETADDRIPV4 dhcpserver = network;
934 dhcpserver.u += m->offDhcp;
935
936 /* XXX: adding more services should change the math here */
937 RTNETADDRIPV4 dhcplowerip = network;
938 uint32_t offDhcpLowerIp;
939 i_findFirstAvailableOffset(ADDR_DHCPLOWERIP, &offDhcpLowerIp);
940 dhcplowerip.u = RT_H2N_U32(dhcplowerip.u + offDhcpLowerIp);
941
942 RTNETADDRIPV4 dhcpupperip;
943 dhcpupperip.u = RT_H2N_U32((network.u | ~netmask.u) - 1);
944
945 dhcpserver.u = RT_H2N_U32(dhcpserver.u);
946 network.u = RT_H2N_U32(network.u);
947
948 RTStrPrintf(szTmpIp, sizeof(szTmpIp), "%RTnaipv4", dhcpserver);
949 m->IPv4DhcpServer = szTmpIp;
950 RTStrPrintf(szTmpIp, sizeof(szTmpIp), "%RTnaipv4", dhcplowerip);
951 m->IPv4DhcpServerLowerIp = szTmpIp;
952 RTStrPrintf(szTmpIp, sizeof(szTmpIp), "%RTnaipv4", dhcpupperip);
953 m->IPv4DhcpServerUpperIp = szTmpIp;
954
955 LogFunc(("network:%RTnaipv4, dhcpserver:%RTnaipv4, dhcplowerip:%RTnaipv4, dhcpupperip:%RTnaipv4\n",
956 network, dhcpserver, dhcplowerip, dhcpupperip));
957 }
958
959 /* we need IPv4NetworkMask for NAT's gw service start */
960 netmask.u = RT_H2N_U32(netmask.u);
961 RTStrPrintf(szTmpIp, 16, "%RTnaipv4", netmask);
962 m->IPv4NetworkMask = szTmpIp;
963
964 LogFlowFunc(("getaway:%RTnaipv4, netmask:%RTnaipv4\n", gateway, netmask));
965 return VINF_SUCCESS;
966}
967
968
969int NATNetwork::i_recalculateIPv6Prefix()
970{
971 int rc;
972
973 RTNETADDRIPV4 net, mask;
974 rc = RTCidrStrToIPv4(Utf8Str(m->IPv4NetworkCidr).c_str(), &net, &mask);
975 if (RT_FAILURE(rc))
976 return rc;
977
978 net.u = RT_H2N_U32(net.u); /* XXX: fix RTCidrStrToIPv4! */
979
980 /*
981 * [fd17:625c:f037:XXXX::/64] - RFC 4193 (ULA) Locally Assigned
982 * Global ID where XXXX, 16 bit Subnet ID, are two bytes from the
983 * middle of the IPv4 address, e.g. :dead: for 10.222.173.1
984 */
985 RTNETADDRIPV6 prefix;
986 RT_ZERO(prefix);
987
988 prefix.au8[0] = 0xFD;
989 prefix.au8[1] = 0x17;
990
991 prefix.au8[2] = 0x62;
992 prefix.au8[3] = 0x5C;
993
994 prefix.au8[4] = 0xF0;
995 prefix.au8[5] = 0x37;
996
997 prefix.au8[6] = net.au8[1];
998 prefix.au8[7] = net.au8[2];
999
1000 char szBuf[32];
1001 RTStrPrintf(szBuf, sizeof(szBuf), "%RTnaipv6/64", &prefix);
1002
1003 m->IPv6Prefix = szBuf;
1004 return VINF_SUCCESS;
1005}
Note: See TracBrowser for help on using the repository browser.

© 2024 Oracle Support Privacy / Do Not Sell My Info Terms of Use Trademark Policy Automated Access Etiquette