Changeset 45559 in vbox for trunk/src

Timestamp:

Apr 16, 2013 6:11:59 AM (12 years ago)

Author:

vboxsync

Message:

NAT/Lwip-service: Main client now, dynamic port-forward + managment.

Location:

trunk/src/VBox

Files:

• Frontends/VBoxManage/Makefile.kmk (modified) (2 diffs)
• Frontends/VBoxManage/VBoxManageNATNetwork.cpp (modified) (12 diffs)
• Main/include/NATNetworkImpl.h (modified) (2 diffs)
• Main/src-server/NATNetworkImpl.cpp (modified) (21 diffs)
• NetworkServices/NAT/Makefile.kmk (modified) (3 diffs)
• NetworkServices/NetLib/VBoxNetPortForwardString.cpp (added)
• NetworkServices/NetLib/VBoxPortForwardString.h (added)

trunk/src/VBox/Frontends/VBoxManage/Makefile.kmk

@@ -56 +56 @@
         VBoxManageStorageController.cpp \
         VBoxManageUSB.cpp \
-        $(if $(VBOX_WITH_NAT_SERVICE),VBoxManageNATNetwork.cpp,)
+        $(if $(VBOX_WITH_NAT_SERVICE),VBoxManageNATNetwork.cpp,) \
+        $(if $(VBOX_WITH_NAT_SERVICE),../../NetworkServices/NetLib/VBoxNetPortForwardString.cpp,)
 VBoxManage_LIBS      += $(LIB_DDU)
 
@@ -82 +83 @@
         $(if $(VBOX_WITH_NAT_SERVICE),VBOX_WITH_NAT_SERVICE)
 
+# VBoxNetPortForwardString.h
+VBoxManageNATNetwork.cpp_INCS += ../../NetworkServices/NetLib/
+
 ifneq ($(KBUILD_TARGET),win)
  # Workaround for buggy gcc-4.3 compilers, see

trunk/src/VBox/Frontends/VBoxManage/VBoxManageNATNetwork.cpp

@@ -20 +20 @@
 *******************************************************************************/
 #ifndef VBOX_ONLY_DOCS
+
+
 #include <VBox/com/com.h>
 #include <VBox/com/array.h>
@@ -29 +31 @@
 #endif /* !VBOX_ONLY_DOCS */
 
+#include <netinet/in.h>
+
+#define IPv6
+
+#include <iprt/cdefs.h>
 #include <iprt/cidr.h>
 #include <iprt/param.h>
@@ -40 +47 @@
 #include <VBox/log.h>
 
+#include <vector>
+
 #include "VBoxManage.h"
+#include "VBoxPortForwardString.h"
 
 #ifndef VBOX_ONLY_DOCS
+
 using namespace com;
 
@@ -62 +73 @@
         { "--enable",           'e', RTGETOPT_REQ_NOTHING },
         { "--disable",          'd', RTGETOPT_REQ_NOTHING },
-
+        { "--port-forward-4",   'p', RTGETOPT_REQ_STRING },
+        { "--port-forward-6",   'P', RTGETOPT_REQ_STRING },
       };
+
+typedef struct PFNAME2DELETE
+{
+    char aszName[PF_NAMELEN];
+    bool fIPv6;
+} PFNAME2DELETE, *PPFNAME2DELETE;
+
+typedef std::vector<PFNAME2DELETE> VPF2DELETE;
+typedef VPF2DELETE::const_iterator VPF2DELETEITERATOR;
+
+typedef std::vector<PORTFORWARDRULE> VPF2ADD;
+typedef VPF2ADD::const_iterator VPF2ADDITERATOR;
+
 
 static int handleOp(HandlerArg *a, OPCODE enmCode, int iStart, int *pcProcessed)
@@ -79 +104 @@
     int ipv6 = -1;
 
+    VPF2DELETE vPfName2Delete;
+    VPF2ADD vPf2Add;
+
     int c;
     RTGETOPTUNION ValueUnion;
     RTGETOPTSTATE GetState;
+
     RTGetOptInit(&GetState,
                  a->argc,
@@ -101 +130 @@
                 }
             break;
+
             case 'n':   // --network
                 if(pNetworkCidr)
@@ -109 +139 @@
                 }
             break;
+
             case 'e':   // --enable
                 if(enable >= 0)
@@ -117 +148 @@
                 }
             break;
+
             case 'd':   // --disable
                 if(enable >= 0)
@@ -125 +157 @@
                 }
             break;
-            case VINF_GETOPT_NOT_OPTION:
-                return errorSyntax(USAGE_NATNETWORK, "unhandled parameter: %s", ValueUnion.psz);
-            break;
+           
             case 'h':
                 if (dhcp != -1)
@@ -133 +163 @@
                 dhcp = ValueUnion.f;
                 break;
+
             case '6':
                 if (ipv6 != -1)
@@ -138 +169 @@
                 ipv6 = ValueUnion.f;
                 break;
+
+            case 'P': /* ipv6 portforwarding*/
+            case 'p': /* ipv4 portforwarding */
+            {
+                if (RTStrCmp(ValueUnion.psz, "delete") != 0)
+                {
+                    PORTFORWARDRULE Pfr;
+
+                    /* netPfStrToPf will clean up the Pfr */
+                    int irc = netPfStrToPf(ValueUnion.psz, (c == 'P'), &Pfr);
+                    if (RT_FAILURE(irc))
+                        return errorSyntax(USAGE_NATNETWORK,
+                                           "Invalid port-forward rule %s\n",
+                                           ValueUnion.psz);
+                    
+                    vPf2Add.push_back(Pfr);
+                }
+                else
+                {
+                    int vrc;
+                    RTGETOPTUNION NamePf2DeleteUnion;
+                    PFNAME2DELETE Name2Delete;
+
+                    if (enmCode != OP_MODIFY)
+                        return errorSyntax(USAGE_NATNETWORK,
+                                           "Port-forward could be deleted on modify \n");
+
+                    vrc = RTGetOptFetchValue(&GetState, 
+                                             &NamePf2DeleteUnion, 
+                                             RTGETOPT_REQ_STRING);
+                    if (RT_FAILURE(vrc))
+                        return errorSyntax(USAGE_NATNETWORK,
+                                           "Not enough parmaters\n");
+                    
+                    if (strlen(NamePf2DeleteUnion.psz) > PF_NAMELEN)
+                        return errorSyntax(USAGE_NATNETWORK,
+                                           "Port-forward rule name is too long\n");
+
+                    RT_ZERO(Name2Delete);
+                    RTStrCopy(Name2Delete.aszName, 
+                              PF_NAMELEN, 
+                              NamePf2DeleteUnion.psz);
+                    Name2Delete.fIPv6 = (c == 'P');
+
+                    vPfName2Delete.push_back(Name2Delete);
+                }
+                break;
+            }
+
+            case VINF_GETOPT_NOT_OPTION:
+                return errorSyntax(USAGE_NATNETWORK, 
+                                   "unhandled parameter: %s", 
+                                   ValueUnion.psz);
+            break;
+
             default:
                 if (c > 0)
                 {
                     if (RT_C_IS_GRAPH(c))
-                        return errorSyntax(USAGE_NATNETWORK, "unhandled option: -%c", c);
+                        return errorSyntax(USAGE_NATNETWORK, 
+                                           "unhandled option: -%c", c);
                     else
-                        return errorSyntax(USAGE_NATNETWORK, "unhandled option: %i", c);
+                        return errorSyntax(USAGE_NATNETWORK, 
+                                           "unhandled option: %i", c);
                 }
                 else if (c == VERR_GETOPT_UNKNOWN_OPTION)
-                    return errorSyntax(USAGE_NATNETWORK, "unknown option: %s", ValueUnion.psz);
+                    return errorSyntax(USAGE_NATNETWORK, 
+                                       "unknown option: %s", ValueUnion.psz);
                 else if (ValueUnion.pDef)
-                    return errorSyntax(USAGE_NATNETWORK, "%s: %Rrs", ValueUnion.pDef->pszLong, c);
+                    return errorSyntax(USAGE_NATNETWORK, 
+                                       "%s: %Rrs", ValueUnion.pDef->pszLong, c);
                 else
                     return errorSyntax(USAGE_NATNETWORK, "%Rrs", c);
@@ -218 +308 @@
               if(FAILED(rc))
                 return errorArgument("Failed to set configuration");
+        }
+        
+        if (!vPfName2Delete.empty())
+        {
+            VPF2DELETEITERATOR it;
+            for (it = vPfName2Delete.begin(); it != vPfName2Delete.end(); ++it)
+            {
+                CHECK_ERROR(net, RemovePortForwardRule((BOOL)(*it).fIPv6,
+                                                       Bstr((*it).aszName).raw()));
+                if(FAILED(rc))
+                    return errorArgument("Failed to delete pf");
+
+            }
+        }
+
+        if (!vPf2Add.empty())
+        {
+            VPF2ADDITERATOR it;
+            for(it = vPf2Add.begin(); it != vPf2Add.end(); ++it)
+            {
+                NATProtocol_T proto = NATProtocol_TCP;
+                if ((*it).iPfrProto == IPPROTO_TCP)
+                    proto = NATProtocol_TCP;
+                else if ((*it).iPfrProto == IPPROTO_UDP)
+                    proto = NATProtocol_UDP;
+                else
+                    continue; /* XXX: warning here. */
+
+                CHECK_ERROR(net, AddPortForwardRule(
+                              (BOOL)(*it).fPfrIPv6,
+                              Bstr((*it).aszPfrName).raw(),
+                              proto,
+                              Bstr((*it).aszPfrHostAddr).raw(),
+                              (*it).u16PfrHostPort,
+                              Bstr((*it).aszPfrGuestAddr).raw(),
+                              (*it).u16PfrGuestPort));
+                if(FAILED(rc))
+                    return errorArgument("Failed to add pf");
+
+            }
         }
         

trunk/src/VBox/Main/include/NATNetworkImpl.h

@@ -112 +112 @@
 private:
     int RecalculateIpv4AddressAssignments();
+
     typedef std::map<Utf8Str, settings::NATRule> NATRuleMap;
+    typedef NATRuleMap::const_iterator constNATRuleMapIterator;
+
     void GetPortForwardRulesFromMap(ComSafeArrayOut(BSTR, aPortForwardRules), NATRuleMap& aRules);
     /** weak VirtualBox parent */
@@ -120 +123 @@
     struct Data;
     struct Data *m;
-    
 
 };

trunk/src/VBox/Main/src-server/NATNetworkImpl.cpp

@@ -33 +33 @@
 
 #include "EventImpl.h"
+#include "VBoxEvents.h"
+
 #include "NATNetworkServiceRunner.h"
 #include "VirtualBoxImpl.h"
@@ -119 +121 @@
     /* share VirtualBox weakly (parent remains NULL so far) */
     unconst(mVirtualBox) = aVirtualBox;
-
     unconst(mName) = aName;
     m = new Data();
@@ -126 +127 @@
     m->IPv6Prefix = "fe80::/64";
     m->fEnabled = FALSE;
+
+    
+    
     RecalculateIpv4AddressAssignments();
+
+    HRESULT hrc = unconst(m->pEventSource).createObject();
+    if (FAILED(hrc)) throw hrc;
+
+    hrc = m->pEventSource->init(static_cast<INATNetwork *>(this));
+    if (FAILED(hrc)) throw hrc;
+        
     /* Confirm a successful initialization */
     autoInitSpan.setSucceeded();
@@ -150 +161 @@
     m->fAdvertiseDefaultIPv6Route = data.fAdvertiseDefaultIPv6Route;
     m->fNeedDhcpServer = data.fNeedDhcpServer;
+
     RecalculateIpv4AddressAssignments();
+
     /* IPv4 port-forward rules */
     m->mapName2PortForwardRule4.clear();
@@ -156 +169 @@
         it != data.llPortForwardRules4.end(); ++it)
     {
-        m->mapName2PortForwardRule4.insert(std::make_pair(it->strName, *it));
+        m->mapName2PortForwardRule4.insert(std::make_pair(it->strName.c_str(), *it));
     }
 
@@ -166 +179 @@
         m->mapName2PortForwardRule6.insert(std::make_pair(it->strName, *it));
     }
+
+    HRESULT hrc = unconst(m->pEventSource).createObject();
+    if (FAILED(hrc)) throw hrc;
+
+    hrc = m->pEventSource->init(static_cast<INATNetwork *>(this));
+    if (FAILED(hrc)) throw hrc;
    
     autoInitSpan.setSucceeded();
@@ -199 +218 @@
          it != m->mapName2PortForwardRule6.end(); ++it)
       data.llPortForwardRules4.push_back(it->second);
+
     /* XXX: should we do here a copy of params */
     /* XXX: should we unlock here? */
@@ -247 +267 @@
 
     alock.release();
+
 #ifdef NAT_XML_SERIALIZATION
     AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
@@ -322 +343 @@
         RecalculateIpv4AddressAssignments();
         alock.release();
+
 #ifdef NAT_XML_SERIALIZATION
         AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
@@ -352 +374 @@
     // save the global settings; for that we should hold only the VirtualBox lock
     alock.release();
+
 #ifdef NAT_XML_SERIALIZATION
     AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
@@ -381 +404 @@
 
         unconst(m->IPv6Prefix) = Bstr(aIPv6Prefix);
-        /* @todo: do we need recalcualtion ? */
+        /* @todo: do we need recalculation ? */
         alock.release();
+
 #ifdef NAT_XML_SERIALIZATION
         AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
@@ -413 +437 @@
     // save the global settings; for that we should hold only the VirtualBox lock
     alock.release();
+
 #ifdef NAT_XML_SERIALIZATION
     AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
@@ -439 +464 @@
     AutoWriteLock alock(this COMMA_LOCKVAL_SRC_POS);
     m->fNeedDhcpServer = aNeedDhcpServer;
+
     RecalculateIpv4AddressAssignments();
+
     // save the global settings; for that we should hold only the VirtualBox lock
     alock.release();
+
 #ifdef NAT_XML_SERIALIZATION
     AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
@@ -457 +485 @@
 
     AutoReadLock alock(this COMMA_LOCKVAL_SRC_POS);
-    GetPortForwardRulesFromMap(ComSafeArrayInArg(aPortForwardRules4), m->mapName2PortForwardRule4);
+    GetPortForwardRulesFromMap(ComSafeArrayInArg(aPortForwardRules4), 
+                               m->mapName2PortForwardRule4);
     alock.release();
     return S_OK;
 }
 
-STDMETHODIMP NATNetwork::COMGETTER(PortForwardRules6)(ComSafeArrayOut(BSTR, aPortForwardRules6))
+STDMETHODIMP NATNetwork::COMGETTER(PortForwardRules6)(ComSafeArrayOut(BSTR, 
+                                                                      aPortForwardRules6))
 {
     CheckComArgOutSafeArrayPointerValid(aPortForwardRules6);
@@ -503 +533 @@
     }
     if (name.isEmpty())
-      name = Utf8StrFmt("%s_%s:%d_%s:%d", proto.c_str(), 
-                        Utf8Str(aHostIp).c_str(), aHostPort, 
+      name = Utf8StrFmt("%s_[%s]%%%d_[%s]%%%d", proto.c_str(), 
+                        Utf8Str(aHostIp).c_str(), aHostPort,
                         Utf8Str(aGuestIp).c_str(), aGuestPort);
 
     NATRuleMap::iterator it;
+
     for (it = mapRules.begin(); it != mapRules.end(); ++it)
     {
@@ -534 +565 @@
                                          aHostIp, aHostPort, 
                                          aGuestIp, aGuestPort);
+
+    /* Notify listerners listening on this network only */
+    fireNATNetworkPortForwardEvent(m->pEventSource, mName.raw(), TRUE, 
+                                   aIsIpv6, aPortForwardRuleName, aProto,
+                                   aHostIp, aHostPort,
+                                   aGuestIp, aGuestPort);
+
 #ifdef NAT_XML_SERIALIZATION
     AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
     rc = mVirtualBox->saveSettings();
 #endif
-    /* @todo: fire the event */
     return rc;
 }
@@ -545 +582 @@
 {
     int rc = S_OK;
+    Utf8Str strHostIP, strGuestIP;
+    uint16_t u16HostPort, u16GuestPort;
+    NATProtocol_T proto = NATProtocol_TCP;
+
     AutoCaller autoCaller(this);
     if (FAILED(autoCaller.rc())) return autoCaller.rc();
@@ -551 +592 @@
     NATRuleMap& mapRules = aIsIpv6 ? m->mapName2PortForwardRule6 : m->mapName2PortForwardRule4;
     NATRuleMap::iterator it = mapRules.find(aPortForwardRuleName);
+    
     if (it == mapRules.end())
         return E_INVALIDARG;
-   
+    
+    strHostIP = it->second.strHostIP;
+    strGuestIP = it->second.strGuestIP;
+    u16HostPort = it->second.u16HostPort;
+    u16GuestPort = it->second.u16GuestPort;
+    proto = it->second.proto;
+
     mapRules.erase(it);
     
     alock.release();
-    /* we need only name here, it supposed to be uniq within IP version protocols */
+
     mVirtualBox->onNATNetworkPortForward(mName.raw(), FALSE, aIsIpv6, 
-                                         aPortForwardRuleName, NATProtocol_TCP, 
-                                         Bstr().raw(), 0, 
-                                         Bstr().raw(), 0);
+                                         aPortForwardRuleName, proto, 
+                                         Bstr(strHostIP).raw(), u16HostPort, 
+                                         Bstr(strGuestIP).raw(), u16GuestPort);
+
+    /* Notify listerners listening on this network only */
+    fireNATNetworkPortForwardEvent(m->pEventSource, mName.raw(), FALSE, 
+                                   aIsIpv6, aPortForwardRuleName, proto,
+                                   Bstr(strHostIP).raw(), u16HostPort,
+                                   Bstr(strGuestIP).raw(), u16GuestPort);
 #ifdef NAT_XML_SERIALIZATION
     AutoWriteLock vboxLock(mVirtualBox COMMA_LOCKVAL_SRC_POS);
     rc = mVirtualBox->saveSettings();
 #endif
-    /* @todo: fire the event */
+
     return rc;
 }
@@ -582 +636 @@
     m->NATRunner.setOption(NATSCCFG_IPADDRESS, m->IPv4Gateway, true);
     m->NATRunner.setOption(NATSCCFG_NETMASK, m->IPv4NetworkMask, true);
+    
+    /* port-forwarding */
+    
+    for (constNATRuleMapIterator it = m->mapName2PortForwardRule4.begin();
+         it != m->mapName2PortForwardRule4.end(); ++it)
+    {
+        settings::NATRule r = it->second;
+        m->NATRunner.setOption(NATSCCFG_PORTFORWARD4, 
+                               Bstr(Utf8StrFmt("%s:%d:[%s]:%d:[%s]:%d",
+                                               r.strName.c_str(),
+                                               r.proto,
+                                               r.strHostIP.isEmpty() ? 
+                                                      "0.0.0.0" :
+                                                       r.strHostIP.c_str(),
+                                               r.u16HostPort,
+                                               r.strGuestIP.c_str(),
+                                               r.u16GuestPort)), true);
+    }
 
     if (m->fNeedDhcpServer)
@@ -684 +756 @@
       {
         settings::NATRule r = it->second;
-        BstrFmt bstr("%s,%d,%s,%d,%s,%d",
+        BstrFmt bstr("%s:%s:[%s]:%d:[%s]:%d",
                      r.strName.c_str(),
-                     r.proto,
+                     (r.proto == NATProtocol_TCP? "tcp" : "udp"),
                      r.strHostIP.c_str(),
                      r.u16HostPort,
@@ -698 +770 @@
 int NATNetwork::RecalculateIpv4AddressAssignments()
 {
-    /**
-     * We assume that port-forwarding rules set is empty!
-     * possible scenarious on change of CIDR we clean up (1) pfs 
-     * or (2) rewrite all rules to new network.
-     */
-    AssertReturn(m->mapName2PortForwardRule4.empty(), VERR_INTERNAL_ERROR);
     RTNETADDRIPV4 network, netmask, gateway;
     char aszGatewayIp[16], aszNetmask[16];

trunk/src/VBox/NetworkServices/NAT/Makefile.kmk

@@ -69 +69 @@
 PROGRAMS += VBoxNetLwipNAT
 VBoxNetLwipNAT_TEMPLATE =
-VBoxNetLwipNAT_TEMPLATE := VBOXR3$(if-expr defined(VBOX_WITH_HARDENING),,EXE)
-#VBoxNetLwipNAT_INCS += ${LWIP_INCS}
+VBoxNetLwipNAT_TEMPLATE := VBOXMAINCLIENTEXE
 VBoxNetLwipNAT_INCS += ../../Devices/Network \
         ../../Devices/Network/lwip-new/vbox # testproxy.h
@@ -76 +75 @@
 VBoxNetLwipNAT_SOURCES += VBoxNetLwipNAT.cpp    \
         ../NetLib/VBoxNetBaseService.cpp \
+        ../NetLib/VBoxNetPortForwardString.cpp \
         ../../Devices/Network/VBoxLwipCore.cpp
 VBoxNetLwipNAT_LIBS = \
@@ -90 +90 @@
 endif
 
+PROGRAMS += tstNetPfAddressPortPairParse
+
+tstNetPfAddressPortPairParse_TEMPLATE = VBOXR3TSTEXE
+#tstNetPfAddressPortPairParse_INSTTYPE = none
+tstNetPfAddressPortPairParse_SOURCES =  ../NetLib/testcase/tstNetPfAddressPortPairParse.cpp \
+        ../NetLib/VBoxNetPortForwardString.cpp
+
+
 include $(FILE_KBUILD_SUB_FOOTER)