Changeset 56846 in vbox for trunk/src/VBox/HostDrivers/VBoxNetFlt

Timestamp:

Jul 7, 2015 8:09:37 PM (9 years ago)

Author:

vboxsync

Message:

NetFlt/Win: Host IP address notifications (#7661)

Location:

trunk/src/VBox/HostDrivers/VBoxNetFlt

Files:

• Makefile.kmk (modified) (1 diff)
• win/drv/VBoxNetFltCmn-win.h (modified) (3 diffs)
• win/drv/VBoxNetFltRt-win.cpp (modified) (6 diffs)

trunk/src/VBox/HostDrivers/VBoxNetFlt/Makefile.kmk

@@ -61 +61 @@
         $(PATH_SDK_$(VBOX_WINDDK_WLH)_LIB)/hal.lib \
         $(PATH_SDK_$(VBOX_WINDDK_WLH)_LIB)/ndis.lib \
+        $(PATH_SDK_$(VBOX_WINDDK_WLH)_LIB)/tdi.lib \
         $(PATH_STAGE_LIB)/RuntimeR0Drv$(VBOX_SUFF_LIB)
  VBoxNetFlt_LIBS = \

trunk/src/VBox/HostDrivers/VBoxNetFlt/win/drv/VBoxNetFltCmn-win.h

@@ -56 +56 @@
 #include <iprt/time.h>
 #include <iprt/net.h>
+#include <iprt/list.h>
 
 RT_C_DECLS_BEGIN
@@ -375 +376 @@
     /* Protocol info */
     VBOXNETFLTGLOBALS_PT Pt;
+    /** lock protecting the filter list */
+    NDIS_SPIN_LOCK lockFilters;
+    /** the head of filter list */
+    RTLISTANCHOR listFilters;
+    /** IP address change notifier handle */
+    HANDLE hNotifier;
 #endif
 } VBOXNETFLTGLOBALS_WIN, *PVBOXNETFLTGLOBALS_WIN;
@@ -457 +464 @@
     /** packet filter flags set by us */
     ULONG fOurSetFilter;
+    /** our own list of filters, needed by notifier */
+    RTLISTNODE node;
 #else
     volatile ULONG cTxSuccess;

trunk/src/VBox/HostDrivers/VBoxNetFlt/win/drv/VBoxNetFltRt-win.cpp

@@ -18 +18 @@
 #include <VBox/intnetinline.h>
 #include <iprt/thread.h>
+
+RT_C_DECLS_BEGIN
+#include <tdikrnl.h>
+RT_C_DECLS_END
+#include <mstcpip.h>
 
 /** represents the job element of the job queue
@@ -1678 +1683 @@
     vboxNetFltWinMpDeregister(&g_VBoxNetFltGlobalsWin.Mp);
 
+#ifndef VBOXNETADP
+    NdisFreeSpinLock(&g_VBoxNetFltGlobalsWin.lockFilters);
+#endif /* VBOXNETADP */
+
     LogFlow((__FUNCTION__" <== DO (0x%x)\n", DriverObject));
 
@@ -1729 +1738 @@
             g_VBoxNetFltGlobalsWin.fPacketIsLoopedBack = NDIS_FLAGS_IS_LOOPBACK_PACKET;
 
+#ifndef VBOXNETADP
+            RTListInit(&g_VBoxNetFltGlobalsWin.listFilters);
+            NdisAllocateSpinLock(&g_VBoxNetFltGlobalsWin.lockFilters);
+#endif
+
             Status = vboxNetFltWinMpRegister(&g_VBoxNetFltGlobalsWin.Mp, DriverObject, RegistryPath);
             Assert(Status == STATUS_SUCCESS);
@@ -1749 +1763 @@
                 }
                 vboxNetFltWinMpDeregister(&g_VBoxNetFltGlobalsWin.Mp);
+#ifndef VBOXNETADP
+                NdisFreeSpinLock(&g_VBoxNetFltGlobalsWin.lockFilters);
+#endif /* VBOXNETADP */
             }
             vboxNetFltWinJobFiniQueue(&g_VBoxJobQueue);
@@ -3272 +3289 @@
 }
 
+#ifndef VBOXNETADP
+
+DECLINLINE(bool) vboxNetFltWinIsAddrLinkLocal4(PCRTNETADDRIPV4 pAddr)
+{
+    return (pAddr->s.Lo == 0xfea9); /* 169.254 */
+}
+
+DECLINLINE(bool) vboxNetFltWinIsAddrLinkLocal6(PCRTNETADDRIPV6 pAddr)
+{
+    return ((pAddr->au8[0] == 0xfe) && ((pAddr->au8[1] & 0xc0) == 0x80));
+}
+
+void vboxNetFltWinNotifyHostAddress(PTA_ADDRESS pAddress, bool fAdded)
+{
+#ifdef DEBUG
+    char szBuf[128];
+#endif /* DEBUG */
+    void *pvAddr = NULL;
+    INTNETADDRTYPE enmAddrType = kIntNetAddrType_Invalid;
+
+    LogFlow(("==>vboxNetFltWinNotifyHostAddress: AddrType=%d %s\n",
+             pAddress->AddressType, fAdded ? "added" : "deleted"));
+    if (pAddress->AddressType == TDI_ADDRESS_TYPE_IP)
+    {
+        PTDI_ADDRESS_IP pTdiAddrIp = (PTDI_ADDRESS_IP)pAddress->Address;
+        /*
+         * Note that we do not get loopback addresses here. If we did we should
+         * have checked and ignored them too.
+         */
+        if (!vboxNetFltWinIsAddrLinkLocal4((PCRTNETADDRIPV4)(&pTdiAddrIp->in_addr)))
+        {
+            pvAddr = &pTdiAddrIp->in_addr;
+            enmAddrType = kIntNetAddrType_IPv4;
+        }
+    }
+    else if (pAddress->AddressType == TDI_ADDRESS_TYPE_IP6)
+    {
+        PTDI_ADDRESS_IP6 pTdiAddrIp6 = (PTDI_ADDRESS_IP6)pAddress->Address;
+        if (!vboxNetFltWinIsAddrLinkLocal6((PCRTNETADDRIPV6)(pTdiAddrIp6->sin6_addr)))
+        {
+            pvAddr = pTdiAddrIp6->sin6_addr;
+            enmAddrType = kIntNetAddrType_IPv6;
+        }
+    }
+    else
+    {
+        Log2(("vboxNetFltWinNotifyHostAddress: ignoring irrelevant address type %d\n",
+              pAddress->AddressType));
+        LogFlow(("<==vboxNetFltWinNotifyHostAddress\n"));
+        return;
+    }
+    if (pvAddr)
+    {
+        NdisAcquireSpinLock(&g_VBoxNetFltGlobalsWin.lockFilters);
+        /* At this point the list must contain at least one element. */
+        PVBOXNETFLTWIN pFilter   = NULL;
+        PVBOXNETFLTINS pInstance = NULL;
+        RTListForEach(&g_VBoxNetFltGlobalsWin.listFilters, pFilter, VBOXNETFLTWIN, node)
+        {
+            pInstance = RT_FROM_MEMBER(pFilter, VBOXNETFLTINS, u.s.WinIf);
+            if (vboxNetFltWinReferenceWinIf(pInstance))
+            {
+                if (pInstance->pSwitchPort && pInstance->pSwitchPort->pfnNotifyHostAddress)
+                    break;
+                vboxNetFltWinDereferenceWinIf(pInstance);
+            }
+            else
+                Log2(("vboxNetFltWinNotifyHostAddress: failed to retain filter instance %p\n", pInstance));
+            pInstance = NULL;
+        }
+        NdisReleaseSpinLock(&g_VBoxNetFltGlobalsWin.lockFilters);
+        if (pInstance)
+        {
+            if (enmAddrType == kIntNetAddrType_IPv4)
+                Log2(("vboxNetFltWin%sAddressHandler: %RTnaipv4\n",
+                      fAdded ? "Add" : "Del", *(PCRTNETADDRIPV4)pvAddr));
+            else
+                Log2(("vboxNetFltWin%sAddressHandler: %RTnaipv6\n",
+                      fAdded ? "Add" : "Del", pvAddr));
+            pInstance->pSwitchPort->pfnNotifyHostAddress(pInstance->pSwitchPort, fAdded,
+                                                         enmAddrType, pvAddr);
+            vboxNetFltWinDereferenceWinIf(pInstance);
+        }
+        else
+            Log2(("vboxNetFltWinNotifyHostAddress: no filters require notification\n"));
+    }
+    else
+        Log2(("vboxNetFltWinNotifyHostAddress: ignoring link-local address (%s)\n", szBuf));
+    LogFlow(("<==vboxNetFltWinNotifyHostAddress\n"));
+}
+
+void vboxNetFltWinAddAddressHandler(PTA_ADDRESS Address,
+                                    PUNICODE_STRING DeviceName,
+                                    PTDI_PNP_CONTEXT Context)
+{
+    vboxNetFltWinNotifyHostAddress(Address, true);
+}
+
+void vboxNetFltWinDelAddressHandler(PTA_ADDRESS Address,
+                                    PUNICODE_STRING DeviceName,
+                                    PTDI_PNP_CONTEXT Context)
+{
+    vboxNetFltWinNotifyHostAddress(Address, false);
+}
+
+void vboxNetFltWinRegisterIpAddrNotifier(PVBOXNETFLTINS pThis)
+{
+    LogFlow(("==>vboxNetFltWinRegisterIpAddrNotifier: instance=%p pThis->pSwitchPort=%p pThis->pSwitchPort->pfnNotifyHostAddress=%p\n",
+             pThis, pThis->pSwitchPort, pThis->pSwitchPort ? pThis->pSwitchPort->pfnNotifyHostAddress : NULL));
+    if (pThis->pSwitchPort && pThis->pSwitchPort->pfnNotifyHostAddress)
+    {
+        NdisAcquireSpinLock(&g_VBoxNetFltGlobalsWin.lockFilters);
+        bool fRegisterHandlers = RTListIsEmpty(&g_VBoxNetFltGlobalsWin.listFilters);
+        RTListPrepend(&g_VBoxNetFltGlobalsWin.listFilters, &pThis->u.s.WinIf.node);
+        NdisReleaseSpinLock(&g_VBoxNetFltGlobalsWin.lockFilters);
+
+        if (fRegisterHandlers)
+        {
+            TDI_CLIENT_INTERFACE_INFO Info;
+            UNICODE_STRING ClientName = RTL_CONSTANT_STRING(L"VBoxNetFlt");
+            memset(&Info, 0, sizeof(Info));
+            Info.MajorTdiVersion = 2;
+            Info.MinorTdiVersion = 0;
+            Info.ClientName = &ClientName;
+            Info.AddAddressHandlerV2 = vboxNetFltWinAddAddressHandler;
+            Info.DelAddressHandlerV2 = vboxNetFltWinDelAddressHandler;
+            Assert(!g_VBoxNetFltGlobalsWin.hNotifier);
+            NTSTATUS Status = TdiRegisterPnPHandlers(&Info, sizeof(Info), &g_VBoxNetFltGlobalsWin.hNotifier);
+            Log2(("vboxNetFltWinRegisterIpAddrNotifier: TdiRegisterPnPHandlers returned %d\n", Status));
+        }
+        else
+            Log2(("vboxNetFltWinRegisterIpAddrNotifier: already registed\n"));
+    }
+    else
+        Log2(("vboxNetFltWinRegisterIpAddrNotifier: this instance does not require notifications, ignoring...\n"));
+    LogFlow(("<==vboxNetFltWinRegisterIpAddrNotifier: notifier=%p\n", g_VBoxNetFltGlobalsWin.hNotifier));
+}
+
+void vboxNetFltWinUnregisterIpAddrNotifier(PVBOXNETFLTINS pThis)
+{
+    LogFlow(("==>vboxNetFltWinUnregisterIpAddrNotifier: notifier=%p\n", g_VBoxNetFltGlobalsWin.hNotifier));
+    if (pThis->pSwitchPort && pThis->pSwitchPort->pfnNotifyHostAddress)
+    {
+        NdisAcquireSpinLock(&g_VBoxNetFltGlobalsWin.lockFilters);
+        /* At this point the list must contain at least one element. */
+        Assert(!RTListIsEmpty(&g_VBoxNetFltGlobalsWin.listFilters));
+        RTListNodeRemove(&pThis->u.s.WinIf.node);
+        HANDLE hNotifier = NULL;
+        if (RTListIsEmpty(&g_VBoxNetFltGlobalsWin.listFilters))
+        {
+            /*
+             * The list has become empty, so we need to deregister handlers. We
+             * grab hNotifier and reset it while still holding the lock. This
+             * guaranties that we won't interfere with setting it in
+             * vboxNetFltWinRegisterIpAddrNotifier(). It is inconceivable that
+             * vboxNetFltWinUnregisterIpAddrNotifier() will be called for the
+             * same filter instance while it is still being processed by
+             * vboxNetFltWinRegisterIpAddrNotifier(). This would require trunk
+             * destruction in the middle of its creation. It is possible that
+             * vboxNetFltWinUnregisterIpAddrNotifier() is called for another
+             * filter instance, but in such case we won't even get here as the
+             * list won't be empty.
+             */
+            hNotifier = g_VBoxNetFltGlobalsWin.hNotifier;
+            g_VBoxNetFltGlobalsWin.hNotifier = NULL;
+        }
+        NdisReleaseSpinLock(&g_VBoxNetFltGlobalsWin.lockFilters);
+        if (hNotifier)
+        {
+            NTSTATUS Status = TdiDeregisterPnPHandlers(hNotifier);
+            Log2(("vboxNetFltWinUnregisterIpAddrNotifier: TdiDeregisterPnPHandlers(%p) returned %d\n",
+                  hNotifier, Status));
+        }
+        else
+            Log2(("vboxNetFltWinUnregisterIpAddrNotifier: filters remain, do not deregister handlers yet\n"));
+    }
+    else
+        Log2(("vboxNetFltWinUnregisterIpAddrNotifier: this instance did not require notifications, ignoring...\n"));
+    LogFlow(("<==vboxNetFltWinUnregisterIpAddrNotifier\n"));
+}
+#else /* VBOXNETADP */
+#define vboxNetFltWinRegisterIpAddrNotifier(x)
+#define vboxNetFltWinUnregisterIpAddrNotifier(x)
+#endif /* VBOXNETADP */
+
 int vboxNetFltOsDisconnectIt(PVBOXNETFLTINS pThis)
 {
     NDIS_STATUS Status = vboxNetFltWinDisconnectIt(pThis);
+    Log2(("vboxNetFltOsDisconnectIt: pThis=%p pThis->pSwitchPort=%p pThis->pSwitchPort->pfnNotifyHostAddress=%p\n",
+          pThis, pThis->pSwitchPort, pThis->pSwitchPort ? pThis->pSwitchPort->pfnNotifyHostAddress : NULL));
+    vboxNetFltWinUnregisterIpAddrNotifier(pThis);
     return Status == NDIS_STATUS_SUCCESS ? VINF_SUCCESS : VERR_GENERAL_FAILURE;
 }
@@ -3340 +3545 @@
 int vboxNetFltOsConnectIt(PVBOXNETFLTINS pThis)
 {
+    Log2(("vboxNetFltOsConnectIt: pThis=%p pThis->pSwitchPort=%p pThis->pSwitchPort->pfnNotifyHostAddress=%p\n",
+          pThis, pThis->pSwitchPort, pThis->pSwitchPort ? pThis->pSwitchPort->pfnNotifyHostAddress : NULL));
+    vboxNetFltWinRegisterIpAddrNotifier(pThis);
     return vboxNetFltWinConnectIt(pThis);
 }