passt: Relicense to GPL 2.0, or any later version
In practical terms, passt doesn't benefit from the additional
protection offered by the AGPL over the GPL, because it's not
suitable to be executed over a computer network.
Further, restricting the distribution under the version 3 of the GPL
wouldn't provide any practical advantage either, as long as the passt
codebase is concerned, and might cause unnecessary compatibility
dilemmas.
Change licensing terms to the GNU General Public License Version 2,
or any later version, with written permission from all current and
past contributors, namely: myself, David Gibson, Laine Stump, Andrea
Bolognani, Paul Holzinger, Richard W.M. Jones, Chris Kuhn, Florian
Weimer, Giuseppe Scrivano, Stefan Hajnoczi, and Vasiliy Ulyanov.
Signed-off-by: Stefano Brivio <sbrivio@redhat.com>
2023-04-05 20:11:44 +02:00
|
|
|
/* SPDX-License-Identifier: GPL-2.0-or-later
|
2021-10-19 12:43:28 +02:00
|
|
|
* Copyright (c) 2021 Red Hat GmbH
|
|
|
|
* Author: Stefano Brivio <sbrivio@redhat.com>
|
|
|
|
*/
|
|
|
|
|
2022-03-26 00:05:31 +01:00
|
|
|
#ifndef TAP_H
|
|
|
|
#define TAP_H
|
|
|
|
|
2024-05-01 16:53:45 +10:00
|
|
|
#define ETH_HDR_INIT(proto) { .h_proto = htons_constant(proto) }
|
|
|
|
|
2023-01-06 11:43:17 +11:00
|
|
|
/**
|
2024-05-01 16:53:45 +10:00
|
|
|
* struct tap_hdr - tap backend specific headers
|
2023-01-06 11:43:17 +11:00
|
|
|
* @vnet_len: Frame length (for qemu socket transport)
|
|
|
|
*/
|
|
|
|
struct tap_hdr {
|
|
|
|
uint32_t vnet_len;
|
|
|
|
} __attribute__((packed));
|
|
|
|
|
2024-05-01 16:53:51 +10:00
|
|
|
/**
|
|
|
|
* tap_hdr_iov() - struct iovec for a tap header
|
|
|
|
* @c: Execution context
|
|
|
|
* @taph: Pointer to tap specific header buffer
|
|
|
|
*
|
|
|
|
* Returns: A struct iovec covering the correct portion of @taph to use as the
|
|
|
|
* tap specific header in the current configuration.
|
|
|
|
*/
|
|
|
|
static inline struct iovec tap_hdr_iov(const struct ctx *c,
|
|
|
|
struct tap_hdr *thdr)
|
|
|
|
{
|
|
|
|
return (struct iovec){
|
|
|
|
.iov_base = thdr,
|
|
|
|
.iov_len = c->mode == MODE_PASST ? sizeof(*thdr) : 0,
|
|
|
|
};
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* tap_hdr_update() - Update the tap specific header for a frame
|
|
|
|
* @taph: Tap specific header buffer to update
|
|
|
|
* @l2len: Frame length (including L2 headers)
|
|
|
|
*/
|
|
|
|
static inline void tap_hdr_update(struct tap_hdr *thdr, size_t l2len)
|
|
|
|
{
|
|
|
|
thdr->vnet_len = htonl(l2len);
|
|
|
|
}
|
|
|
|
|
2022-11-04 14:10:35 +11:00
|
|
|
void tap_udp4_send(const struct ctx *c, struct in_addr src, in_port_t sport,
|
|
|
|
struct in_addr dst, in_port_t dport,
|
2024-05-01 16:53:49 +10:00
|
|
|
const void *in, size_t dlen);
|
2022-11-04 14:10:35 +11:00
|
|
|
void tap_icmp4_send(const struct ctx *c, struct in_addr src, struct in_addr dst,
|
2024-05-01 16:53:49 +10:00
|
|
|
const void *in, size_t l4len);
|
2022-10-19 11:43:49 +11:00
|
|
|
const struct in6_addr *tap_ip6_daddr(const struct ctx *c,
|
|
|
|
const struct in6_addr *src);
|
2022-10-19 11:43:53 +11:00
|
|
|
void tap_udp6_send(const struct ctx *c,
|
|
|
|
const struct in6_addr *src, in_port_t sport,
|
|
|
|
const struct in6_addr *dst, in_port_t dport,
|
2024-05-01 16:53:49 +10:00
|
|
|
uint32_t flow, const void *in, size_t dlen);
|
2022-10-19 11:43:53 +11:00
|
|
|
void tap_icmp6_send(const struct ctx *c,
|
|
|
|
const struct in6_addr *src, const struct in6_addr *dst,
|
2024-05-01 16:53:49 +10:00
|
|
|
const void *in, size_t l4len);
|
|
|
|
void tap_send_single(const struct ctx *c, const void *data, size_t l2len);
|
2024-03-08 17:53:22 +11:00
|
|
|
size_t tap_send_frames(const struct ctx *c, const struct iovec *iov,
|
|
|
|
size_t bufs_per_frame, size_t nframes);
|
2024-03-06 16:58:37 +11:00
|
|
|
void eth_update_mac(struct ethhdr *eh,
|
2023-01-06 11:43:17 +11:00
|
|
|
const unsigned char *eth_d, const unsigned char *eth_s);
|
2023-08-11 15:12:28 +10:00
|
|
|
void tap_listen_handler(struct ctx *c, uint32_t events);
|
2023-08-11 15:12:29 +10:00
|
|
|
void tap_handler_pasta(struct ctx *c, uint32_t events,
|
|
|
|
const struct timespec *now);
|
|
|
|
void tap_handler_passt(struct ctx *c, uint32_t events,
|
|
|
|
const struct timespec *now);
|
2024-05-22 20:18:19 +02:00
|
|
|
int tap_sock_unix_open(char *sock_path);
|
passt: Add PASTA mode, major rework
PASTA (Pack A Subtle Tap Abstraction) provides quasi-native host
connectivity to an otherwise disconnected, unprivileged network
and user namespace, similarly to slirp4netns. Given that the
implementation is largely overlapping with PASST, no separate binary
is built: 'pasta' (and 'passt4netns' for clarity) both link to
'passt', and the mode of operation is selected depending on how the
binary is invoked. Usage example:
$ unshare -rUn
# echo $$
1871759
$ ./pasta 1871759 # From another terminal
# udhcpc -i pasta0 2>/dev/null
# ping -c1 pasta.pizza
PING pasta.pizza (64.190.62.111) 56(84) bytes of data.
64 bytes from 64.190.62.111 (64.190.62.111): icmp_seq=1 ttl=255 time=34.6 ms
--- pasta.pizza ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 34.575/34.575/34.575/0.000 ms
# ping -c1 spaghetti.pizza
PING spaghetti.pizza(2606:4700:3034::6815:147a (2606:4700:3034::6815:147a)) 56 data bytes
64 bytes from 2606:4700:3034::6815:147a (2606:4700:3034::6815:147a): icmp_seq=1 ttl=255 time=29.0 ms
--- spaghetti.pizza ping statistics ---
1 packets transmitted, 1 received, 0% packet loss, time 0ms
rtt min/avg/max/mdev = 28.967/28.967/28.967/0.000 ms
This entails a major rework, especially with regard to the storage of
tracked connections and to the semantics of epoll(7) references.
Indexing TCP and UDP bindings merely by socket proved to be
inflexible and unsuitable to handle different connection flows: pasta
also provides Layer-2 to Layer-2 socket mapping between init and a
separate namespace for local connections, using a pair of splice()
system calls for TCP, and a recvmmsg()/sendmmsg() pair for UDP local
bindings. For instance, building on the previous example:
# ip link set dev lo up
# iperf3 -s
$ iperf3 -c ::1 -Z -w 32M -l 1024k -P2 | tail -n4
[SUM] 0.00-10.00 sec 52.3 GBytes 44.9 Gbits/sec 283 sender
[SUM] 0.00-10.43 sec 52.3 GBytes 43.1 Gbits/sec receiver
iperf Done.
epoll(7) references now include a generic part in order to
demultiplex data to the relevant protocol handler, using 24
bits for the socket number, and an opaque portion reserved for
usage by the single protocol handlers, in order to track sockets
back to corresponding connections and bindings.
A number of fixes pertaining to TCP state machine and congestion
window handling are also included here.
Signed-off-by: Stefano Brivio <sbrivio@redhat.com>
2021-07-17 08:34:53 +02:00
|
|
|
void tap_sock_init(struct ctx *c);
|
2024-06-13 14:36:50 +02:00
|
|
|
void tap_flush_pools(void);
|
|
|
|
void tap_handler(struct ctx *c, const struct timespec *now);
|
|
|
|
void tap_add_packet(struct ctx *c, ssize_t l2len, char *p);
|
2022-03-26 00:05:31 +01:00
|
|
|
|
|
|
|
#endif /* TAP_H */
|