Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / android-clat / refs/heads/int/13/fp3 / . / clatd_test.cpp
blob: 8eef738461c7d9bc6c9a028a29035e83ac9f48f2 [file] [log] [blame]
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]1/*
2 * Copyright 2014 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 *
16 * clatd_test.cpp - unit tests for clatd
17 */
18
19#include <iostream>
20
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]21#include <arpa/inet.h>
Maciej Żenczykowski50303532020-06-02 14:46:45 -0700[diff] [blame]22#include <linux/if_packet.h>
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]23#include <netinet/in6.h>
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]24#include <stdio.h>
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]25#include <sys/uio.h>
26
27#include <gtest/gtest.h>
Lorenzo Colitti66deecd2019-01-04 12:27:27 +0900[diff] [blame]28
29#include "netutils/ifc.h"
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]30#include "tun_interface.h"
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]31
32extern "C" {
Lorenzo Colitti0cd5aa52021-12-09 15:05:52 +0900[diff] [blame]33#include "checksum.h"
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]34#include "clatd.h"
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]35#include "config.h"
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]36#include "getaddr.h"
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]37#include "translate.h"
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]38}
39
40// For convenience.
41#define ARRAYSIZE(x) sizeof((x)) / sizeof((x)[0])
42
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]43using android::net::TunInterface;
44
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]45// Default translation parameters.
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]46static const char kIPv4LocalAddr[] = "192.0.0.4";
47static const char kIPv6LocalAddr[] = "2001:db8:0:b11::464";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]48static const char kIPv6PlatSubnet[] = "64:ff9b::";
49
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]50// clang-format off
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]51// Test packet portions. Defined as macros because it's easy to concatenate them to make packets.
52#define IPV4_HEADER(p, c1, c2) \
53 0x45, 0x00, 0, 41, /* Version=4, IHL=5, ToS=0x80, len=41 */ \
54 0x00, 0x00, 0x40, 0x00, /* ID=0x0000, flags=IP_DF, offset=0 */ \
55 55, (p), (c1), (c2), /* TTL=55, protocol=p, checksum=c1,c2 */ \
56 192, 0, 0, 4, /* Src=192.0.0.4 */ \
57 8, 8, 8, 8, /* Dst=8.8.8.8 */
58#define IPV4_UDP_HEADER IPV4_HEADER(IPPROTO_UDP, 0x73, 0xb0)
59#define IPV4_ICMP_HEADER IPV4_HEADER(IPPROTO_ICMP, 0x73, 0xc0)
60
61#define IPV6_HEADER(p) \
62 0x60, 0x00, 0, 0, /* Version=6, tclass=0x00, flowlabel=0 */ \
63 0, 21, (p), 55, /* plen=11, nxthdr=p, hlim=55 */ \
64 0x20, 0x01, 0x0d, 0xb8, /* Src=2001:db8:0:b11::464 */ \
65 0x00, 0x00, 0x0b, 0x11, \
66 0x00, 0x00, 0x00, 0x00, \
67 0x00, 0x00, 0x04, 0x64, \
68 0x00, 0x64, 0xff, 0x9b, /* Dst=64:ff9b::8.8.8.8 */ \
69 0x00, 0x00, 0x00, 0x00, \
70 0x00, 0x00, 0x00, 0x00, \
71 0x08, 0x08, 0x08, 0x08,
72#define IPV6_UDP_HEADER IPV6_HEADER(IPPROTO_UDP)
73#define IPV6_ICMPV6_HEADER IPV6_HEADER(IPPROTO_ICMPV6)
74
75#define UDP_LEN 21
76#define UDP_HEADER \
77 0xc8, 0x8b, 0, 53, /* Port 51339->53 */ \
78 0x00, UDP_LEN, 0, 0, /* Length 21, checksum empty for now */
79
80#define PAYLOAD 'H', 'e', 'l', 'l', 'o', ' ', 0x4e, 0xb8, 0x96, 0xe7, 0x95, 0x8c, 0x00
81
82#define IPV4_PING \
83 0x08, 0x00, 0x88, 0xd0, /* Type 8, code 0, checksum 0x88d0 */ \
84 0xd0, 0x0d, 0x00, 0x03, /* ID=0xd00d, seq=3 */
85
86#define IPV6_PING \
87 0x80, 0x00, 0xc3, 0x42, /* Type 128, code 0, checksum 0xc342 */ \
88 0xd0, 0x0d, 0x00, 0x03, /* ID=0xd00d, seq=3 */
89
90// Macros to return pseudo-headers from packets.
91#define IPV4_PSEUDOHEADER(ip, tlen) \
92 ip[12], ip[13], ip[14], ip[15], /* Source address */ \
93 ip[16], ip[17], ip[18], ip[19], /* Destination address */ \
94 0, ip[9], /* 0, protocol */ \
95 ((tlen) >> 16) & 0xff, (tlen) & 0xff, /* Transport length */
96
97#define IPV6_PSEUDOHEADER(ip6, protocol, tlen) \
98 ip6[8], ip6[9], ip6[10], ip6[11], /* Source address */ \
99 ip6[12], ip6[13], ip6[14], ip6[15], \
100 ip6[16], ip6[17], ip6[18], ip6[19], \
101 ip6[20], ip6[21], ip6[22], ip6[23], \
102 ip6[24], ip6[25], ip6[26], ip6[27], /* Destination address */ \
103 ip6[28], ip6[29], ip6[30], ip6[31], \
104 ip6[32], ip6[33], ip6[34], ip6[35], \
105 ip6[36], ip6[37], ip6[38], ip6[39], \
106 ((tlen) >> 24) & 0xff, /* Transport length */ \
107 ((tlen) >> 16) & 0xff, \
108 ((tlen) >> 8) & 0xff, \
109 (tlen) & 0xff, \
110 0, 0, 0, (protocol),
111
112// A fragmented DNS request.
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]113static const uint8_t kIPv4Frag1[] = {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]114 0x45, 0x00, 0x00, 0x24, 0xfe, 0x47, 0x20, 0x00, 0x40, 0x11,
115 0x8c, 0x6d, 0xc0, 0x00, 0x00, 0x04, 0x08, 0x08, 0x08, 0x08,
116 0x14, 0x5d, 0x00, 0x35, 0x00, 0x29, 0x68, 0xbb, 0x50, 0x47,
117 0x01, 0x00, 0x00, 0x01, 0x00, 0x00
118};
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]119static const uint8_t kIPv4Frag2[] = {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]120 0x45, 0x00, 0x00, 0x24, 0xfe, 0x47, 0x20, 0x02, 0x40, 0x11,
121 0x8c, 0x6b, 0xc0, 0x00, 0x00, 0x04, 0x08, 0x08, 0x08, 0x08,
122 0x00, 0x00, 0x00, 0x00, 0x04, 0x69, 0x70, 0x76, 0x34, 0x06,
123 0x67, 0x6f, 0x6f, 0x67, 0x6c, 0x65
124};
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]125static const uint8_t kIPv4Frag3[] = {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]126 0x45, 0x00, 0x00, 0x1d, 0xfe, 0x47, 0x00, 0x04, 0x40, 0x11,
127 0xac, 0x70, 0xc0, 0x00, 0x00, 0x04, 0x08, 0x08, 0x08, 0x08,
128 0x03, 0x63, 0x6f, 0x6d, 0x00, 0x00, 0x01, 0x00, 0x01
129};
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]130static const uint8_t *kIPv4Fragments[] = { kIPv4Frag1, kIPv4Frag2, kIPv4Frag3 };
131static const size_t kIPv4FragLengths[] = { sizeof(kIPv4Frag1), sizeof(kIPv4Frag2),
132 sizeof(kIPv4Frag3) };
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]133
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]134static const uint8_t kIPv6Frag1[] = {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]135 0x60, 0x00, 0x00, 0x00, 0x00, 0x18, 0x2c, 0x40, 0x20, 0x01,
136 0x0d, 0xb8, 0x00, 0x00, 0x0b, 0x11, 0x00, 0x00, 0x00, 0x00,
137 0x00, 0x00, 0x04, 0x64, 0x00, 0x64, 0xff, 0x9b, 0x00, 0x00,
138 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x08, 0x08, 0x08, 0x08,
139 0x11, 0x00, 0x00, 0x01, 0x00, 0x00, 0xfe, 0x47, 0x14, 0x5d,
140 0x00, 0x35, 0x00, 0x29, 0xeb, 0x91, 0x50, 0x47, 0x01, 0x00,
141 0x00, 0x01, 0x00, 0x00
142};
143
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]144static const uint8_t kIPv6Frag2[] = {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]145 0x60, 0x00, 0x00, 0x00, 0x00, 0x18, 0x2c, 0x40, 0x20, 0x01,
146 0x0d, 0xb8, 0x00, 0x00, 0x0b, 0x11, 0x00, 0x00, 0x00, 0x00,
147 0x00, 0x00, 0x04, 0x64, 0x00, 0x64, 0xff, 0x9b, 0x00, 0x00,
148 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x08, 0x08, 0x08, 0x08,
149 0x11, 0x00, 0x00, 0x11, 0x00, 0x00, 0xfe, 0x47, 0x00, 0x00,
150 0x00, 0x00, 0x04, 0x69, 0x70, 0x76, 0x34, 0x06, 0x67, 0x6f,
151 0x6f, 0x67, 0x6c, 0x65
152};
153
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]154static const uint8_t kIPv6Frag3[] = {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]155 0x60, 0x00, 0x00, 0x00, 0x00, 0x11, 0x2c, 0x40, 0x20, 0x01,
156 0x0d, 0xb8, 0x00, 0x00, 0x0b, 0x11, 0x00, 0x00, 0x00, 0x00,
157 0x00, 0x00, 0x04, 0x64, 0x00, 0x64, 0xff, 0x9b, 0x00, 0x00,
158 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x08, 0x08, 0x08, 0x08,
159 0x11, 0x00, 0x00, 0x20, 0x00, 0x00, 0xfe, 0x47, 0x03, 0x63,
160 0x6f, 0x6d, 0x00, 0x00, 0x01, 0x00, 0x01
161};
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]162static const uint8_t *kIPv6Fragments[] = { kIPv6Frag1, kIPv6Frag2, kIPv6Frag3 };
163static const size_t kIPv6FragLengths[] = { sizeof(kIPv6Frag1), sizeof(kIPv6Frag2),
164 sizeof(kIPv6Frag3) };
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]165
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]166static const uint8_t kReassembledIPv4[] = {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]167 0x45, 0x00, 0x00, 0x3d, 0xfe, 0x47, 0x00, 0x00, 0x40, 0x11,
168 0xac, 0x54, 0xc0, 0x00, 0x00, 0x04, 0x08, 0x08, 0x08, 0x08,
169 0x14, 0x5d, 0x00, 0x35, 0x00, 0x29, 0x68, 0xbb, 0x50, 0x47,
170 0x01, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
171 0x04, 0x69, 0x70, 0x76, 0x34, 0x06, 0x67, 0x6f, 0x6f, 0x67,
172 0x6c, 0x65, 0x03, 0x63, 0x6f, 0x6d, 0x00, 0x00, 0x01, 0x00,
173 0x01
174};
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]175// clang-format on
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]176
177// Expected checksums.
178static const uint32_t kUdpPartialChecksum = 0xd5c8;
179static const uint32_t kPayloadPartialChecksum = 0x31e9c;
180static const uint16_t kUdpV4Checksum = 0xd0c7;
181static const uint16_t kUdpV6Checksum = 0xa74a;
182
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]183uint8_t ip_version(const uint8_t *packet) {
184 uint8_t version = packet[0] >> 4;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]185 return version;
186}
187
188int is_ipv4_fragment(struct iphdr *ip) {
189 // A packet is a fragment if its fragment offset is nonzero or if the MF flag is set.
190 return ntohs(ip->frag_off) & (IP_OFFMASK | IP_MF);
191}
192
193int is_ipv6_fragment(struct ip6_hdr *ip6, size_t len) {
194 if (ip6->ip6_nxt != IPPROTO_FRAGMENT) {
195 return 0;
196 }
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]197 struct ip6_frag *frag = (struct ip6_frag *)(ip6 + 1);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]198 return len >= sizeof(*ip6) + sizeof(*frag) &&
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]199 (frag->ip6f_offlg & (IP6F_OFF_MASK | IP6F_MORE_FRAG));
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]200}
201
202int ipv4_fragment_offset(struct iphdr *ip) {
203 return ntohs(ip->frag_off) & IP_OFFMASK;
204}
205
206int ipv6_fragment_offset(struct ip6_frag *frag) {
207 return ntohs((frag->ip6f_offlg & IP6F_OFF_MASK) >> 3);
208}
209
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]210void check_packet(const uint8_t *packet, size_t len, const char *msg) {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]211 void *payload;
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]212 size_t payload_length = 0;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]213 uint32_t pseudo_checksum = 0;
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]214 uint8_t protocol = 0;
215 int version = ip_version(packet);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]216 switch (version) {
217 case 4: {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]218 struct iphdr *ip = (struct iphdr *)packet;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]219 ASSERT_GE(len, sizeof(*ip)) << msg << ": IPv4 packet shorter than IPv4 header\n";
220 EXPECT_EQ(5, ip->ihl) << msg << ": Unsupported IP header length\n";
221 EXPECT_EQ(len, ntohs(ip->tot_len)) << msg << ": Incorrect IPv4 length\n";
222 EXPECT_EQ(0, ip_checksum(ip, sizeof(*ip))) << msg << ": Incorrect IP checksum\n";
223 protocol = ip->protocol;
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]224 payload = ip + 1;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]225 if (!is_ipv4_fragment(ip)) {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]226 payload_length = len - sizeof(*ip);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]227 pseudo_checksum = ipv4_pseudo_header_checksum(ip, payload_length);
228 }
229 ASSERT_TRUE(protocol == IPPROTO_TCP || protocol == IPPROTO_UDP || protocol == IPPROTO_ICMP)
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]230 << msg << ": Unsupported IPv4 protocol " << protocol << "\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]231 break;
232 }
233 case 6: {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]234 struct ip6_hdr *ip6 = (struct ip6_hdr *)packet;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]235 ASSERT_GE(len, sizeof(*ip6)) << msg << ": IPv6 packet shorter than IPv6 header\n";
236 EXPECT_EQ(len - sizeof(*ip6), htons(ip6->ip6_plen)) << msg << ": Incorrect IPv6 length\n";
237
238 if (ip6->ip6_nxt == IPPROTO_FRAGMENT) {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]239 struct ip6_frag *frag = (struct ip6_frag *)(ip6 + 1);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]240 ASSERT_GE(len, sizeof(*ip6) + sizeof(*frag))
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]241 << msg << ": IPv6 fragment: short fragment header\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]242 protocol = frag->ip6f_nxt;
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]243 payload = frag + 1;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]244 // Even though the packet has a Fragment header, it might not be a fragment.
245 if (!is_ipv6_fragment(ip6, len)) {
246 payload_length = len - sizeof(*ip6) - sizeof(*frag);
247 }
248 } else {
249 // Since there are no extension headers except Fragment, this must be the payload.
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]250 protocol = ip6->ip6_nxt;
251 payload = ip6 + 1;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]252 payload_length = len - sizeof(*ip6);
253 }
254 ASSERT_TRUE(protocol == IPPROTO_TCP || protocol == IPPROTO_UDP || protocol == IPPROTO_ICMPV6)
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]255 << msg << ": Unsupported IPv6 next header " << protocol;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]256 if (payload_length) {
257 pseudo_checksum = ipv6_pseudo_header_checksum(ip6, payload_length, protocol);
258 }
259 break;
260 }
261 default:
262 FAIL() << msg << ": Unsupported IP version " << version << "\n";
263 return;
264 }
265
266 // If we understand the payload, verify the checksum.
267 if (payload_length) {
268 uint16_t checksum;
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]269 switch (protocol) {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]270 case IPPROTO_UDP:
271 case IPPROTO_TCP:
272 case IPPROTO_ICMPV6:
273 checksum = ip_checksum_finish(ip_checksum_add(pseudo_checksum, payload, payload_length));
274 break;
275 case IPPROTO_ICMP:
276 checksum = ip_checksum(payload, payload_length);
277 break;
278 default:
279 checksum = 0; // Don't check.
280 break;
281 }
282 EXPECT_EQ(0, checksum) << msg << ": Incorrect transport checksum\n";
283 }
284
285 if (protocol == IPPROTO_UDP) {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]286 struct udphdr *udp = (struct udphdr *)payload;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]287 EXPECT_NE(0, udp->check) << msg << ": UDP checksum 0 should be 0xffff";
288 // If this is not a fragment, check the UDP length field.
289 if (payload_length) {
290 EXPECT_EQ(payload_length, ntohs(udp->len)) << msg << ": Incorrect UDP length\n";
291 }
292 }
293}
294
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]295void reassemble_packet(const uint8_t **fragments, const size_t lengths[], int numpackets,
296 uint8_t *reassembled, size_t *reassembled_len, const char *msg) {
Lorenzo Colittif0fac862019-01-11 18:10:11 +0900[diff] [blame]297 struct iphdr *ip = nullptr;
298 struct ip6_hdr *ip6 = nullptr;
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]299 size_t total_length, pos = 0;
Ben Cheng932614e2014-04-02 17:00:26 -0700[diff] [blame]300 uint8_t protocol = 0;
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]301 uint8_t version = ip_version(fragments[0]);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]302
303 for (int i = 0; i < numpackets; i++) {
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]304 const uint8_t *packet = fragments[i];
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]305 int len = lengths[i];
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]306 int headersize, payload_offset;
307
308 ASSERT_EQ(ip_version(packet), version) << msg << ": Inconsistent fragment versions\n";
309 check_packet(packet, len, "Fragment sanity check");
310
311 switch (version) {
312 case 4: {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]313 struct iphdr *ip_orig = (struct iphdr *)packet;
314 headersize = sizeof(*ip_orig);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]315 ASSERT_TRUE(is_ipv4_fragment(ip_orig))
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]316 << msg << ": IPv4 fragment #" << i + 1 << " not a fragment\n";
317 ASSERT_EQ(pos, ipv4_fragment_offset(ip_orig) * 8 + ((i != 0) ? sizeof(*ip) : 0))
318 << msg << ": IPv4 fragment #" << i + 1 << ": inconsistent offset\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]319
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]320 headersize = sizeof(*ip_orig);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]321 payload_offset = headersize;
322 if (pos == 0) {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]323 ip = (struct iphdr *)reassembled;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]324 }
325 break;
326 }
327 case 6: {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]328 struct ip6_hdr *ip6_orig = (struct ip6_hdr *)packet;
329 struct ip6_frag *frag = (struct ip6_frag *)(ip6_orig + 1);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]330 ASSERT_TRUE(is_ipv6_fragment(ip6_orig, len))
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]331 << msg << ": IPv6 fragment #" << i + 1 << " not a fragment\n";
332 ASSERT_EQ(pos, ipv6_fragment_offset(frag) * 8 + ((i != 0) ? sizeof(*ip6) : 0))
333 << msg << ": IPv6 fragment #" << i + 1 << ": inconsistent offset\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]334
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]335 headersize = sizeof(*ip6_orig);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]336 payload_offset = sizeof(*ip6_orig) + sizeof(*frag);
337 if (pos == 0) {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]338 ip6 = (struct ip6_hdr *)reassembled;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]339 protocol = frag->ip6f_nxt;
340 }
341 break;
342 }
343 default:
344 FAIL() << msg << ": Invalid IP version << " << version;
345 }
346
347 // If this is the first fragment, copy the header.
348 if (pos == 0) {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]349 ASSERT_LT(headersize, (int)*reassembled_len) << msg << ": Reassembly buffer too small\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]350 memcpy(reassembled, packet, headersize);
351 total_length = headersize;
352 pos += headersize;
353 }
354
355 // Copy the payload.
356 int payload_length = len - payload_offset;
357 total_length += payload_length;
Ben Cheng932614e2014-04-02 17:00:26 -0700[diff] [blame]358 ASSERT_LT(total_length, *reassembled_len) << msg << ": Reassembly buffer too small\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]359 memcpy(reassembled + pos, packet + payload_offset, payload_length);
360 pos += payload_length;
361 }
362
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]363 // Fix up the reassembled headers to reflect fragmentation and length (and IPv4 checksum).
364 ASSERT_EQ(total_length, pos) << msg << ": Reassembled packet length incorrect\n";
365 if (ip) {
366 ip->frag_off &= ~htons(IP_MF);
367 ip->tot_len = htons(total_length);
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]368 ip->check = 0;
369 ip->check = ip_checksum(ip, sizeof(*ip));
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]370 ASSERT_FALSE(is_ipv4_fragment(ip)) << msg << ": reassembled IPv4 packet is a fragment!\n";
371 }
372 if (ip6) {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]373 ip6->ip6_nxt = protocol;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]374 ip6->ip6_plen = htons(total_length - sizeof(*ip6));
375 ASSERT_FALSE(is_ipv6_fragment(ip6, ip6->ip6_plen))
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]376 << msg << ": reassembled IPv6 packet is a fragment!\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]377 }
378
379 *reassembled_len = total_length;
380}
381
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]382void check_data_matches(const void *expected, const void *actual, size_t len, const char *msg) {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]383 if (memcmp(expected, actual, len)) {
384 // Hex dump, 20 bytes per line, one space between bytes (1 byte = 3 chars), indented by 4.
385 int hexdump_len = len * 3 + (len / 20 + 1) * 5;
386 char expected_hexdump[hexdump_len], actual_hexdump[hexdump_len];
387 unsigned pos = 0;
388 for (unsigned i = 0; i < len; i++) {
389 if (i % 20 == 0) {
George Burgess IV2dcca6f2016-02-24 15:55:54 -0800[diff] [blame]390 snprintf(expected_hexdump + pos, hexdump_len - pos, "\n ");
391 snprintf(actual_hexdump + pos, hexdump_len - pos, "\n ");
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]392 pos += 4;
393 }
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]394 snprintf(expected_hexdump + pos, hexdump_len - pos, " %02x", ((uint8_t *)expected)[i]);
395 snprintf(actual_hexdump + pos, hexdump_len - pos, " %02x", ((uint8_t *)actual)[i]);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]396 pos += 3;
397 }
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]398 FAIL() << msg << ": Data doesn't match"
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]399 << "\n Expected:" << (char *) expected_hexdump
400 << "\n Actual:" << (char *) actual_hexdump << "\n";
401 }
402}
403
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]404void fix_udp_checksum(uint8_t *packet) {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]405 uint32_t pseudo_checksum;
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]406 uint8_t version = ip_version(packet);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]407 struct udphdr *udp;
408 switch (version) {
409 case 4: {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]410 struct iphdr *ip = (struct iphdr *)packet;
411 udp = (struct udphdr *)(ip + 1);
412 pseudo_checksum = ipv4_pseudo_header_checksum(ip, ntohs(udp->len));
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]413 break;
414 }
415 case 6: {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]416 struct ip6_hdr *ip6 = (struct ip6_hdr *)packet;
417 udp = (struct udphdr *)(ip6 + 1);
418 pseudo_checksum = ipv6_pseudo_header_checksum(ip6, ntohs(udp->len), IPPROTO_UDP);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]419 break;
420 }
421 default:
422 FAIL() << "unsupported IP version" << version << "\n";
423 return;
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]424 }
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]425
426 udp->check = 0;
427 udp->check = ip_checksum_finish(ip_checksum_add(pseudo_checksum, udp, ntohs(udp->len)));
428}
429
Lorenzo Colittice140882014-06-02 21:20:40 +0900[diff] [blame]430// Testing stub for send_rawv6. The real version uses sendmsg() with a
431// destination IPv6 address, and attempting to call that on our test socketpair
432// fd results in EINVAL.
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]433extern "C" void send_rawv6(int fd, clat_packet out, int iov_len) { writev(fd, out, iov_len); }
Lorenzo Colittice140882014-06-02 21:20:40 +0900[diff] [blame]434
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]435void do_translate_packet(const uint8_t *original, size_t original_len, uint8_t *out, size_t *outlen,
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]436 const char *msg) {
437 int fds[2];
438 if (socketpair(AF_UNIX, SOCK_DGRAM | SOCK_NONBLOCK, 0, fds)) {
439 abort();
440 }
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]441
442 char foo[512];
443 snprintf(foo, sizeof(foo), "%s: Invalid original packet", msg);
444 check_packet(original, original_len, foo);
445
Lorenzo Colittie24982e2014-06-02 15:49:36 +0900[diff] [blame]446 int read_fd, write_fd;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]447 uint16_t expected_proto;
448 int version = ip_version(original);
449 switch (version) {
450 case 4:
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]451 expected_proto = htons(ETH_P_IPV6);
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]452 read_fd = fds[1];
453 write_fd = fds[0];
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]454 break;
455 case 6:
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]456 expected_proto = htons(ETH_P_IP);
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]457 read_fd = fds[0];
458 write_fd = fds[1];
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]459 break;
460 default:
461 FAIL() << msg << ": Unsupported IP version " << version << "\n";
462 break;
463 }
464
Lorenzo Colittie24982e2014-06-02 15:49:36 +0900[diff] [blame]465 translate_packet(write_fd, (version == 4), original, original_len);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]466
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]467 snprintf(foo, sizeof(foo), "%s: Invalid translated packet", msg);
Lorenzo Colittice140882014-06-02 21:20:40 +0900[diff] [blame]468 if (version == 6) {
469 // Translating to IPv4. Expect a tun header.
470 struct tun_pi new_tun_header;
471 struct iovec iov[] = {
472 { &new_tun_header, sizeof(new_tun_header) },
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]473 { out, *outlen },
Lorenzo Colittice140882014-06-02 21:20:40 +0900[diff] [blame]474 };
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]475
Lorenzo Colittice140882014-06-02 21:20:40 +0900[diff] [blame]476 int len = readv(read_fd, iov, 2);
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]477 if (len > (int)sizeof(new_tun_header)) {
478 ASSERT_LT((size_t)len, *outlen) << msg << ": Translated packet buffer too small\n";
Lorenzo Colittice140882014-06-02 21:20:40 +0900[diff] [blame]479 EXPECT_EQ(expected_proto, new_tun_header.proto) << msg << "Unexpected tun proto\n";
480 *outlen = len - sizeof(new_tun_header);
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]481 check_packet(out, *outlen, msg);
Lorenzo Colittice140882014-06-02 21:20:40 +0900[diff] [blame]482 } else {
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]483 FAIL() << msg << ": Packet was not translated: len=" << len;
Lorenzo Colittice140882014-06-02 21:20:40 +0900[diff] [blame]484 *outlen = 0;
485 }
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]486 } else {
Lorenzo Colittice140882014-06-02 21:20:40 +0900[diff] [blame]487 // Translating to IPv6. Expect raw packet.
488 *outlen = read(read_fd, out, *outlen);
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]489 check_packet(out, *outlen, msg);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]490 }
491}
492
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]493void check_translated_packet(const uint8_t *original, size_t original_len, const uint8_t *expected,
494 size_t expected_len, const char *msg) {
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]495 uint8_t translated[MAXMTU];
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]496 size_t translated_len = sizeof(translated);
497 do_translate_packet(original, original_len, translated, &translated_len, msg);
498 EXPECT_EQ(expected_len, translated_len) << msg << ": Translated packet length incorrect\n";
499 check_data_matches(expected, translated, translated_len, msg);
500}
501
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]502void check_fragment_translation(const uint8_t *original[], const size_t original_lengths[],
503 const uint8_t *expected[], const size_t expected_lengths[],
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]504 int numfragments, const char *msg) {
505 for (int i = 0; i < numfragments; i++) {
506 // Check that each of the fragments translates as expected.
507 char frag_msg[512];
508 snprintf(frag_msg, sizeof(frag_msg), "%s: fragment #%d", msg, i + 1);
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]509 check_translated_packet(original[i], original_lengths[i], expected[i], expected_lengths[i],
510 frag_msg);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]511 }
512
513 // Sanity check that reassembling the original and translated fragments produces valid packets.
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]514 uint8_t reassembled[MAXMTU];
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]515 size_t reassembled_len = sizeof(reassembled);
516 reassemble_packet(original, original_lengths, numfragments, reassembled, &reassembled_len, msg);
517 check_packet(reassembled, reassembled_len, msg);
518
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]519 uint8_t translated[MAXMTU];
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]520 size_t translated_len = sizeof(translated);
521 do_translate_packet(reassembled, reassembled_len, translated, &translated_len, msg);
522 check_packet(translated, translated_len, msg);
523}
524
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]525int get_transport_checksum(const uint8_t *packet) {
526 struct iphdr *ip;
527 struct ip6_hdr *ip6;
528 uint8_t protocol;
529 const void *payload;
530
531 int version = ip_version(packet);
532 switch (version) {
533 case 4:
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]534 ip = (struct iphdr *)packet;
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]535 if (is_ipv4_fragment(ip)) {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]536 return -1;
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]537 }
538 protocol = ip->protocol;
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]539 payload = ip + 1;
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]540 break;
541 case 6:
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]542 ip6 = (struct ip6_hdr *)packet;
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]543 protocol = ip6->ip6_nxt;
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]544 payload = ip6 + 1;
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]545 break;
546 default:
547 return -1;
548 }
549
550 switch (protocol) {
551 case IPPROTO_UDP:
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]552 return ((struct udphdr *)payload)->check;
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]553
554 case IPPROTO_TCP:
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]555 return ((struct tcphdr *)payload)->check;
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]556
557 case IPPROTO_FRAGMENT:
558 default:
559 return -1;
560 }
561}
562
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]563struct clat_config Global_Clatd_Config;
564
565class ClatdTest : public ::testing::Test {
566 protected:
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]567 static TunInterface sTun;
568
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]569 virtual void SetUp() {
570 inet_pton(AF_INET, kIPv4LocalAddr, &Global_Clatd_Config.ipv4_local_subnet);
571 inet_pton(AF_INET6, kIPv6PlatSubnet, &Global_Clatd_Config.plat_subnet);
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]572 memset(&Global_Clatd_Config.ipv6_local_subnet, 0, sizeof(in6_addr));
Maciej Żenczykowskiba667df2020-06-02 01:41:54 -0700[diff] [blame]573 Global_Clatd_Config.native_ipv6_interface = const_cast<char *>(sTun.name().c_str());
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]574 }
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]575
576 // Static because setting up the tun interface takes about 40ms.
577 static void SetUpTestCase() { ASSERT_EQ(0, sTun.init()); }
578
579 // Closing the socket removes the interface and IP addresses.
580 static void TearDownTestCase() { sTun.destroy(); }
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]581};
582
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]583TunInterface ClatdTest::sTun;
584
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]585void expect_ipv6_addr_equal(struct in6_addr *expected, struct in6_addr *actual) {
586 if (!IN6_ARE_ADDR_EQUAL(expected, actual)) {
587 char expected_str[INET6_ADDRSTRLEN], actual_str[INET6_ADDRSTRLEN];
588 inet_ntop(AF_INET6, expected, expected_str, sizeof(expected_str));
589 inet_ntop(AF_INET6, actual, actual_str, sizeof(actual_str));
590 FAIL()
591 << "Unexpected IPv6 address:: "
592 << "\n Expected: " << expected_str
593 << "\n Actual: " << actual_str
594 << "\n";
595 }
596}
597
598TEST_F(ClatdTest, TestIPv6PrefixEqual) {
599 EXPECT_TRUE(ipv6_prefix_equal(&Global_Clatd_Config.plat_subnet,
600 &Global_Clatd_Config.plat_subnet));
601 EXPECT_FALSE(ipv6_prefix_equal(&Global_Clatd_Config.plat_subnet,
602 &Global_Clatd_Config.ipv6_local_subnet));
603
604 struct in6_addr subnet2 = Global_Clatd_Config.ipv6_local_subnet;
605 EXPECT_TRUE(ipv6_prefix_equal(&Global_Clatd_Config.ipv6_local_subnet, &subnet2));
606 EXPECT_TRUE(ipv6_prefix_equal(&subnet2, &Global_Clatd_Config.ipv6_local_subnet));
607
608 subnet2.s6_addr[6] = 0xff;
609 EXPECT_FALSE(ipv6_prefix_equal(&Global_Clatd_Config.ipv6_local_subnet, &subnet2));
610 EXPECT_FALSE(ipv6_prefix_equal(&subnet2, &Global_Clatd_Config.ipv6_local_subnet));
611}
612
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]613TEST_F(ClatdTest, DataSanitycheck) {
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]614 // Sanity checks the data.
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]615 uint8_t v4_header[] = { IPV4_UDP_HEADER };
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]616 ASSERT_EQ(sizeof(struct iphdr), sizeof(v4_header)) << "Test IPv4 header: incorrect length\n";
617
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]618 uint8_t v6_header[] = { IPV6_UDP_HEADER };
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]619 ASSERT_EQ(sizeof(struct ip6_hdr), sizeof(v6_header)) << "Test IPv6 header: incorrect length\n";
620
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]621 uint8_t udp_header[] = { UDP_HEADER };
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]622 ASSERT_EQ(sizeof(struct udphdr), sizeof(udp_header)) << "Test UDP header: incorrect length\n";
623
624 // Sanity checks check_packet.
625 struct udphdr *udp;
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]626 uint8_t v4_udp_packet[] = { IPV4_UDP_HEADER UDP_HEADER PAYLOAD };
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]627 udp = (struct udphdr *)(v4_udp_packet + sizeof(struct iphdr));
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]628 fix_udp_checksum(v4_udp_packet);
629 ASSERT_EQ(kUdpV4Checksum, udp->check) << "UDP/IPv4 packet checksum sanity check\n";
630 check_packet(v4_udp_packet, sizeof(v4_udp_packet), "UDP/IPv4 packet sanity check");
631
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]632 uint8_t v6_udp_packet[] = { IPV6_UDP_HEADER UDP_HEADER PAYLOAD };
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]633 udp = (struct udphdr *)(v6_udp_packet + sizeof(struct ip6_hdr));
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]634 fix_udp_checksum(v6_udp_packet);
635 ASSERT_EQ(kUdpV6Checksum, udp->check) << "UDP/IPv6 packet checksum sanity check\n";
636 check_packet(v6_udp_packet, sizeof(v6_udp_packet), "UDP/IPv6 packet sanity check");
637
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]638 uint8_t ipv4_ping[] = { IPV4_ICMP_HEADER IPV4_PING PAYLOAD };
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]639 check_packet(ipv4_ping, sizeof(ipv4_ping), "IPv4 ping sanity check");
640
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]641 uint8_t ipv6_ping[] = { IPV6_ICMPV6_HEADER IPV6_PING PAYLOAD };
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]642 check_packet(ipv6_ping, sizeof(ipv6_ping), "IPv6 ping sanity check");
643
644 // Sanity checks reassemble_packet.
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]645 uint8_t reassembled[MAXMTU];
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]646 size_t total_length = sizeof(reassembled);
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]647 reassemble_packet(kIPv4Fragments, kIPv4FragLengths, ARRAYSIZE(kIPv4Fragments), reassembled,
648 &total_length, "Reassembly sanity check");
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]649 check_packet(reassembled, total_length, "IPv4 Reassembled packet is valid");
650 ASSERT_EQ(sizeof(kReassembledIPv4), total_length) << "IPv4 reassembly sanity check: length\n";
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]651 ASSERT_TRUE(!is_ipv4_fragment((struct iphdr *)reassembled))
652 << "Sanity check: reassembled packet is a fragment!\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]653 check_data_matches(kReassembledIPv4, reassembled, total_length, "IPv4 reassembly sanity check");
654
655 total_length = sizeof(reassembled);
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]656 reassemble_packet(kIPv6Fragments, kIPv6FragLengths, ARRAYSIZE(kIPv6Fragments), reassembled,
657 &total_length, "IPv6 reassembly sanity check");
658 ASSERT_TRUE(!is_ipv6_fragment((struct ip6_hdr *)reassembled, total_length))
659 << "Sanity check: reassembled packet is a fragment!\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]660 check_packet(reassembled, total_length, "IPv6 Reassembled packet is valid");
661}
662
663TEST_F(ClatdTest, PseudoChecksum) {
664 uint32_t pseudo_checksum;
665
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]666 uint8_t v4_header[] = { IPV4_UDP_HEADER };
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]667 uint8_t v4_pseudo_header[] = { IPV4_PSEUDOHEADER(v4_header, UDP_LEN) };
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]668 pseudo_checksum = ipv4_pseudo_header_checksum((struct iphdr *)v4_header, UDP_LEN);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]669 EXPECT_EQ(ip_checksum_finish(pseudo_checksum),
670 ip_checksum(v4_pseudo_header, sizeof(v4_pseudo_header)))
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]671 << "ipv4_pseudo_header_checksum incorrect\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]672
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]673 uint8_t v6_header[] = { IPV6_UDP_HEADER };
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]674 uint8_t v6_pseudo_header[] = { IPV6_PSEUDOHEADER(v6_header, IPPROTO_UDP, UDP_LEN) };
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]675 pseudo_checksum = ipv6_pseudo_header_checksum((struct ip6_hdr *)v6_header, UDP_LEN, IPPROTO_UDP);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]676 EXPECT_EQ(ip_checksum_finish(pseudo_checksum),
677 ip_checksum(v6_pseudo_header, sizeof(v6_pseudo_header)))
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]678 << "ipv6_pseudo_header_checksum incorrect\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]679}
680
681TEST_F(ClatdTest, TransportChecksum) {
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]682 uint8_t udphdr[] = { UDP_HEADER };
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]683 uint8_t payload[] = { PAYLOAD };
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]684 EXPECT_EQ(kUdpPartialChecksum, ip_checksum_add(0, udphdr, sizeof(udphdr)))
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]685 << "UDP partial checksum\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]686 EXPECT_EQ(kPayloadPartialChecksum, ip_checksum_add(0, payload, sizeof(payload)))
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]687 << "Payload partial checksum\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]688
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]689 uint8_t ip[] = { IPV4_UDP_HEADER };
690 uint8_t ip6[] = { IPV6_UDP_HEADER };
691 uint32_t ipv4_pseudo_sum = ipv4_pseudo_header_checksum((struct iphdr *)ip, UDP_LEN);
692 uint32_t ipv6_pseudo_sum =
693 ipv6_pseudo_header_checksum((struct ip6_hdr *)ip6, UDP_LEN, IPPROTO_UDP);
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]694
Maciej Żenczykowskif037e772019-11-10 23:02:13 -0800[diff] [blame]695 EXPECT_NE(0, ipv4_pseudo_sum);
696 EXPECT_NE(0, ipv6_pseudo_sum);
697 EXPECT_EQ(0x3ad0U, ipv4_pseudo_sum % 0xFFFF) << "IPv4 pseudo-checksum sanity check\n";
698 EXPECT_EQ(0x644dU, ipv6_pseudo_sum % 0xFFFF) << "IPv6 pseudo-checksum sanity check\n";
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]699 EXPECT_EQ(
700 kUdpV4Checksum,
701 ip_checksum_finish(ipv4_pseudo_sum + kUdpPartialChecksum + kPayloadPartialChecksum))
702 << "Unexpected UDP/IPv4 checksum\n";
703 EXPECT_EQ(
704 kUdpV6Checksum,
705 ip_checksum_finish(ipv6_pseudo_sum + kUdpPartialChecksum + kPayloadPartialChecksum))
706 << "Unexpected UDP/IPv6 checksum\n";
707
708 EXPECT_EQ(kUdpV6Checksum,
709 ip_checksum_adjust(kUdpV4Checksum, ipv4_pseudo_sum, ipv6_pseudo_sum))
710 << "Adjust IPv4/UDP checksum to IPv6\n";
711 EXPECT_EQ(kUdpV4Checksum,
712 ip_checksum_adjust(kUdpV6Checksum, ipv6_pseudo_sum, ipv4_pseudo_sum))
713 << "Adjust IPv6/UDP checksum to IPv4\n";
714}
715
716TEST_F(ClatdTest, AdjustChecksum) {
717 struct checksum_data {
718 uint16_t checksum;
719 uint32_t old_hdr_sum;
720 uint32_t new_hdr_sum;
721 uint16_t result;
722 } DATA[] = {
723 { 0x1423, 0xb8ec, 0x2d757, 0xf5b5 },
724 { 0xf5b5, 0x2d757, 0xb8ec, 0x1423 },
725 { 0xdd2f, 0x5555, 0x3285, 0x0000 },
726 { 0x1215, 0x5560, 0x15560 + 20, 0x1200 },
727 { 0xd0c7, 0x3ad0, 0x2644b, 0xa74a },
728 };
Chih-Hung Hsieh05ff5082014-08-26 10:46:26 -0700[diff] [blame]729 unsigned i = 0;
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]730
731 for (i = 0; i < ARRAYSIZE(DATA); i++) {
732 struct checksum_data *data = DATA + i;
733 uint16_t result = ip_checksum_adjust(data->checksum, data->old_hdr_sum, data->new_hdr_sum);
734 EXPECT_EQ(result, data->result)
735 << "Incorrect checksum" << std::showbase << std::hex
736 << "\n Expected: " << data->result
737 << "\n Actual: " << result
738 << "\n checksum=" << data->checksum
739 << " old_sum=" << data->old_hdr_sum << " new_sum=" << data->new_hdr_sum << "\n";
740 }
741}
742
743TEST_F(ClatdTest, Translate) {
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]744 // This test uses hardcoded packets so the clatd address must be fixed.
745 inet_pton(AF_INET6, kIPv6LocalAddr, &Global_Clatd_Config.ipv6_local_subnet);
746
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]747 uint8_t udp_ipv4[] = { IPV4_UDP_HEADER UDP_HEADER PAYLOAD };
748 uint8_t udp_ipv6[] = { IPV6_UDP_HEADER UDP_HEADER PAYLOAD };
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]749 fix_udp_checksum(udp_ipv4);
750 fix_udp_checksum(udp_ipv6);
751 check_translated_packet(udp_ipv4, sizeof(udp_ipv4), udp_ipv6, sizeof(udp_ipv6),
752 "UDP/IPv4 -> UDP/IPv6 translation");
753 check_translated_packet(udp_ipv6, sizeof(udp_ipv6), udp_ipv4, sizeof(udp_ipv4),
754 "UDP/IPv6 -> UDP/IPv4 translation");
755
Brian Carlstromfcac4102014-02-24 20:03:01 -0800[diff] [blame]756 uint8_t ipv4_ping[] = { IPV4_ICMP_HEADER IPV4_PING PAYLOAD };
757 uint8_t ipv6_ping[] = { IPV6_ICMPV6_HEADER IPV6_PING PAYLOAD };
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]758 check_translated_packet(ipv4_ping, sizeof(ipv4_ping), ipv6_ping, sizeof(ipv6_ping),
759 "ICMP->ICMPv6 translation");
760 check_translated_packet(ipv6_ping, sizeof(ipv6_ping), ipv4_ping, sizeof(ipv4_ping),
761 "ICMPv6->ICMP translation");
762}
763
764TEST_F(ClatdTest, Fragmentation) {
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]765 // This test uses hardcoded packets so the clatd address must be fixed.
766 inet_pton(AF_INET6, kIPv6LocalAddr, &Global_Clatd_Config.ipv6_local_subnet);
767
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]768 check_fragment_translation(kIPv4Fragments, kIPv4FragLengths, kIPv6Fragments, kIPv6FragLengths,
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]769 ARRAYSIZE(kIPv4Fragments), "IPv4->IPv6 fragment translation");
770
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]771 check_fragment_translation(kIPv6Fragments, kIPv6FragLengths, kIPv4Fragments, kIPv4FragLengths,
Lorenzo Colittif3beefc2014-02-14 13:19:27 +0900[diff] [blame]772 ARRAYSIZE(kIPv6Fragments), "IPv6->IPv4 fragment translation");
773}
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]774
Lorenzo Colittibaa3c6a2020-06-02 01:55:12 +0900[diff] [blame]775// picks a random interface ID that is checksum neutral with the IPv4 address and the NAT64 prefix
776void gen_random_iid(struct in6_addr *myaddr, struct in_addr *ipv4_local_subnet,
777 struct in6_addr *plat_subnet) {
778 // Fill last 8 bytes of IPv6 address with random bits.
779 arc4random_buf(&myaddr->s6_addr[8], 8);
780
781 // Make the IID checksum-neutral. That is, make it so that:
782 // checksum(Local IPv4 | Remote IPv4) = checksum(Local IPv6 | Remote IPv6)
783 // in other words (because remote IPv6 = NAT64 prefix | Remote IPv4):
784 // checksum(Local IPv4) = checksum(Local IPv6 | NAT64 prefix)
785 // Do this by adjusting the two bytes in the middle of the IID.
786
787 uint16_t middlebytes = (myaddr->s6_addr[11] << 8) + myaddr->s6_addr[12];
788
789 uint32_t c1 = ip_checksum_add(0, ipv4_local_subnet, sizeof(*ipv4_local_subnet));
790 uint32_t c2 = ip_checksum_add(0, plat_subnet, sizeof(*plat_subnet)) +
791 ip_checksum_add(0, myaddr, sizeof(*myaddr));
792
793 uint16_t delta = ip_checksum_adjust(middlebytes, c1, c2);
794 myaddr->s6_addr[11] = delta >> 8;
795 myaddr->s6_addr[12] = delta & 0xff;
796}
797
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]798void check_translate_checksum_neutral(const uint8_t *original, size_t original_len,
799 size_t expected_len, const char *msg) {
800 uint8_t translated[MAXMTU];
801 size_t translated_len = sizeof(translated);
802 do_translate_packet(original, original_len, translated, &translated_len, msg);
803 EXPECT_EQ(expected_len, translated_len) << msg << ": Translated packet length incorrect\n";
804 // do_translate_packet already checks packets for validity and verifies the checksum.
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]805 int original_check = get_transport_checksum(original);
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]806 int translated_check = get_transport_checksum(translated);
807 ASSERT_NE(-1, original_check);
808 ASSERT_NE(-1, translated_check);
809 ASSERT_EQ(original_check, translated_check)
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]810 << "Not checksum neutral: original and translated checksums differ\n";
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]811}
812
813TEST_F(ClatdTest, TranslateChecksumNeutral) {
814 // Generate a random clat IPv6 address and check that translation is checksum-neutral.
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]815 ASSERT_TRUE(inet_pton(AF_INET6, "2001:db8:1:2:f076:ae99:124e:aa54",
816 &Global_Clatd_Config.ipv6_local_subnet));
Lorenzo Colittibaa3c6a2020-06-02 01:55:12 +0900[diff] [blame]817
818 gen_random_iid(&Global_Clatd_Config.ipv6_local_subnet, &Global_Clatd_Config.ipv4_local_subnet,
819 &Global_Clatd_Config.plat_subnet);
820
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]821 ASSERT_NE(htonl((uint32_t)0x00000464), Global_Clatd_Config.ipv6_local_subnet.s6_addr32[3]);
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]822 ASSERT_NE((uint32_t)0, Global_Clatd_Config.ipv6_local_subnet.s6_addr32[3]);
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]823
824 // Check that translating UDP packets is checksum-neutral. First, IPv4.
825 uint8_t udp_ipv4[] = { IPV4_UDP_HEADER UDP_HEADER PAYLOAD };
826 fix_udp_checksum(udp_ipv4);
827 check_translate_checksum_neutral(udp_ipv4, sizeof(udp_ipv4), sizeof(udp_ipv4) + 20,
828 "UDP/IPv4 -> UDP/IPv6 checksum neutral");
829
830 // Now try IPv6.
831 uint8_t udp_ipv6[] = { IPV6_UDP_HEADER UDP_HEADER PAYLOAD };
832 // The test packet uses the static IID, not the random IID. Fix up the source address.
junyulaic4e591a2018-11-26 22:36:10 +0900[diff] [blame]833 struct ip6_hdr *ip6 = (struct ip6_hdr *)udp_ipv6;
Lorenzo Colitti98089522014-10-09 22:29:45 +0900[diff] [blame]834 memcpy(&ip6->ip6_src, &Global_Clatd_Config.ipv6_local_subnet, sizeof(ip6->ip6_src));
835 fix_udp_checksum(udp_ipv6);
836 check_translate_checksum_neutral(udp_ipv4, sizeof(udp_ipv4), sizeof(udp_ipv4) + 20,
837 "UDP/IPv4 -> UDP/IPv6 checksum neutral");
838}
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]839
Hungming Chen208b2a12021-12-02 18:13:33 +0800[diff] [blame]840TEST_F(ClatdTest, GetInterfaceIpV4) {
841 TunInterface v4Iface;
842 ASSERT_EQ(0, v4Iface.init());
843 EXPECT_EQ(0, v4Iface.addAddress("192.0.2.1", 32));
844
845 union anyip *ip = getinterface_ip(v4Iface.name().c_str(), AF_INET);
846 ASSERT_NE(nullptr, ip);
847 EXPECT_EQ(inet_addr("192.0.2.1"), ip->ip4.s_addr);
848 free(ip);
849
850 v4Iface.destroy();
851}
852
853TEST_F(ClatdTest, GetInterfaceIpV6) {
Lorenzo Colitti72f770c2019-01-04 15:00:28 +0900[diff] [blame]854 union anyip *ip = getinterface_ip(sTun.name().c_str(), AF_INET6);
855 ASSERT_NE(nullptr, ip);
856 in6_addr expected = sTun.srcAddr();
857 in6_addr actual = ip->ip6;
858 expect_ipv6_addr_equal(&expected, &actual);
859}
860
Lorenzo Colitti66deecd2019-01-04 12:27:27 +0900[diff] [blame]861TEST_F(ClatdTest, Ipv6AddressChanged) {
862 // Configure the clat IPv6 address.
Lorenzo Colitti66deecd2019-01-04 12:27:27 +0900[diff] [blame]863 const char *ifname = sTun.name().c_str();
Lorenzo Colittibaa3c6a2020-06-02 01:55:12 +0900[diff] [blame]864
865 in6_addr myaddr = sTun.srcAddr();
866 gen_random_iid(&myaddr, &Global_Clatd_Config.ipv4_local_subnet, &Global_Clatd_Config.plat_subnet);
867 char addrstr[INET6_ADDRSTRLEN];
868 ASSERT_NE(nullptr, inet_ntop(AF_INET6, &myaddr, addrstr, sizeof(addrstr)));
869
Hungming Chen049cbd82021-11-26 19:24:29 +0800[diff] [blame]870 Global_Clatd_Config.ipv6_local_subnet = myaddr;
Lorenzo Colitti66deecd2019-01-04 12:27:27 +0900[diff] [blame]871 EXPECT_EQ(0, ipv6_address_changed(ifname));
872 EXPECT_EQ(0, ipv6_address_changed(ifname));
873
874 // Change the IP address on the tun interface to a new prefix.
875 char srcaddr[INET6_ADDRSTRLEN];
876 char dstaddr[INET6_ADDRSTRLEN];
877 ASSERT_NE(nullptr, inet_ntop(AF_INET6, &sTun.srcAddr(), srcaddr, sizeof(srcaddr)));
878 ASSERT_NE(nullptr, inet_ntop(AF_INET6, &sTun.dstAddr(), dstaddr, sizeof(dstaddr)));
879 EXPECT_EQ(0, ifc_del_address(ifname, srcaddr, 64));
880 EXPECT_EQ(0, ifc_del_address(ifname, dstaddr, 64));
881
882 // Check that we can tell that the address has changed.
883 EXPECT_EQ(0, ifc_add_address(ifname, "2001:db8::1:2", 64));
884 EXPECT_EQ(1, ipv6_address_changed(ifname));
885 EXPECT_EQ(1, ipv6_address_changed(ifname));
886
887 // Restore the tun interface configuration.
888 sTun.destroy();
889 ASSERT_EQ(0, sTun.init());
890}