/* * Copyright (C) 2019 by Sukchan Lee * * This file is part of Open5GS. * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU Affero General Public License as published by * the Free Software Foundation, either version 3 of the License, or * (at your option) any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program. If not, see . */ #include "context.h" #if HAVE_NETINET_IP_H #include #endif #if HAVE_NETINET_IP6_H #include #endif #if HAVE_NETINET_IP_ICMP_H #include #endif #if HAVE_NETINET_ICMP6_H #include #endif #include "event.h" #include "gtp-path.h" #include "pfcp-path.h" #include "rule-match.h" #define UPF_GTP_HANDLED 1 static ogs_pkbuf_pool_t *packet_pool = NULL; static void upf_gtp_handle_multicast(ogs_pkbuf_t *recvbuf); static int upf_gtp_handle_slaac(upf_sess_t *sess, ogs_pkbuf_t *recvbuf); static int upf_gtp_send_router_advertisement( upf_sess_t *sess, uint8_t *ip6_dst); static void _gtpv1_tun_recv_cb(short when, ogs_socket_t fd, void *data) { ogs_pkbuf_t *recvbuf = NULL; int n; upf_sess_t *sess = NULL; ogs_pfcp_pdr_t *pdr = NULL; ogs_pfcp_user_plane_report_t report; recvbuf = ogs_pkbuf_alloc(packet_pool, OGS_MAX_PKT_LEN); ogs_assert(recvbuf); ogs_pkbuf_reserve(recvbuf, OGS_GTPV1U_5GC_HEADER_LEN); ogs_pkbuf_put(recvbuf, OGS_MAX_PKT_LEN-OGS_GTPV1U_5GC_HEADER_LEN); n = ogs_read(fd, recvbuf->data, recvbuf->len); if (n <= 0) { ogs_log_message(OGS_LOG_WARN, ogs_socket_errno, "ogs_read() failed"); ogs_pkbuf_free(recvbuf); return; } ogs_pkbuf_trim(recvbuf, n); /* Find the PDR by packet filter */ pdr = upf_pdr_find_by_packet(recvbuf); if (pdr) { /* Unicast */ ogs_pfcp_up_handle_pdr(pdr, recvbuf, &report); if (report.type.downlink_data_report) { ogs_assert(pdr->sess); sess = UPF_SESS(pdr->sess); ogs_assert(sess); report.downlink_data.pdr_id = pdr->id; if (pdr->qer && pdr->qer->qfi) report.downlink_data.qfi = pdr->qer->qfi; /* for 5GC */ upf_pfcp_send_session_report_request(sess, &report); } } else { if (ogs_app()->parameter.multicast) { upf_gtp_handle_multicast(recvbuf); } } ogs_pkbuf_free(recvbuf); } static void _gtpv1_u_recv_cb(short when, ogs_socket_t fd, void *data) { int len; ssize_t size; char buf[OGS_ADDRSTRLEN]; upf_sess_t *sess = NULL; ogs_pkbuf_t *pkbuf = NULL; ogs_sockaddr_t from; ogs_gtp_header_t *gtp_h = NULL; ogs_pfcp_user_plane_report_t report; uint32_t teid; uint8_t qfi; ogs_assert(fd != INVALID_SOCKET); pkbuf = ogs_pkbuf_alloc(NULL, OGS_MAX_PKT_LEN); ogs_assert(pkbuf); ogs_pkbuf_put(pkbuf, OGS_MAX_PKT_LEN); size = ogs_recvfrom(fd, pkbuf->data, pkbuf->len, 0, &from); if (size <= 0) { ogs_log_message(OGS_LOG_ERROR, ogs_socket_errno, "ogs_recv() failed"); goto cleanup; } ogs_pkbuf_trim(pkbuf, size); ogs_assert(pkbuf); ogs_assert(pkbuf->len); gtp_h = (ogs_gtp_header_t *)pkbuf->data; if (gtp_h->version != OGS_GTP_VERSION_1) { ogs_error("[DROP] Invalid GTPU version [%d]", gtp_h->version); ogs_log_hexdump(OGS_LOG_ERROR, pkbuf->data, pkbuf->len); goto cleanup; } if (gtp_h->type == OGS_GTPU_MSGTYPE_ECHO_REQ) { ogs_pkbuf_t *echo_rsp; ogs_debug("[RECV] Echo Request from [%s]", OGS_ADDR(&from, buf)); echo_rsp = ogs_gtp_handle_echo_req(pkbuf); if (echo_rsp) { ssize_t sent; /* Echo reply */ ogs_debug("[SEND] Echo Response to [%s]", OGS_ADDR(&from, buf)); sent = ogs_sendto(fd, echo_rsp->data, echo_rsp->len, 0, &from); if (sent < 0 || sent != echo_rsp->len) { ogs_log_message(OGS_LOG_ERROR, ogs_socket_errno, "ogs_sendto() failed"); } ogs_pkbuf_free(echo_rsp); } goto cleanup; } teid = be32toh(gtp_h->teid); ogs_debug("[RECV] GPU-U Type [%d] from [%s] : TEID[0x%x]", gtp_h->type, OGS_ADDR(&from, buf), teid); qfi = 0; if (gtp_h->flags & OGS_GTPU_FLAGS_E) { /* * TS29.281 * 5.2.1 General format of the GTP-U Extension Header * Figure 5.2.1-3: Definition of Extension Header Type * * Note 4 : For a GTP-PDU with several Extension Headers, the PDU * Session Container should be the first Extension Header */ ogs_gtp_extension_header_t *extension_header = (ogs_gtp_extension_header_t *)(pkbuf->data + OGS_GTPV1U_HEADER_LEN); ogs_assert(extension_header); if (extension_header->type == OGS_GTP_EXTENSION_HEADER_TYPE_PDU_SESSION_CONTAINER) { if (extension_header->pdu_type == OGS_GTP_EXTENSION_HEADER_PDU_TYPE_UL_PDU_SESSION_INFORMATION) { ogs_debug(" QFI [0x%x]", extension_header->qos_flow_identifier); qfi = extension_header->qos_flow_identifier; } } } /* Remove GTP header and send packets to TUN interface */ len = ogs_gtpu_header_len(pkbuf); if (len < 0) { ogs_error("[DROP] Cannot decode GTPU packet"); ogs_log_hexdump(OGS_LOG_ERROR, pkbuf->data, pkbuf->len); goto cleanup; } ogs_assert(ogs_pkbuf_pull(pkbuf, len)); if (gtp_h->type == OGS_GTPU_MSGTYPE_END_MARKER) { /* Nothing */ } else if (gtp_h->type == OGS_GTPU_MSGTYPE_ERR_IND) { ogs_pfcp_far_t *far = NULL; far = ogs_pfcp_far_find_by_error_indication(pkbuf); if (far) { ogs_pfcp_up_handle_error_indication(far, &report); if (report.type.error_indication_report) { ogs_assert(far->sess); sess = UPF_SESS(far->sess); ogs_assert(sess); upf_pfcp_send_session_report_request(sess, &report); } } else { ogs_error("[DROP] Cannot find FAR by Error-Indication"); ogs_log_hexdump(OGS_LOG_ERROR, pkbuf->data, pkbuf->len); } } else if (gtp_h->type == OGS_GTPU_MSGTYPE_GPDU) { int rv; struct ip *ip_h = NULL; ogs_pfcp_pdr_t *pdr = NULL; ogs_pfcp_far_t *far = NULL; upf_sess_t *sess = NULL; ogs_pfcp_subnet_t *subnet = NULL; ogs_pfcp_dev_t *dev = NULL; ip_h = (struct ip *)pkbuf->data; ogs_assert(ip_h); pdr = ogs_pfcp_pdr_find_by_teid_and_qfi(teid, qfi); if (!pdr) { /* TODO : Send Error Indication */ goto cleanup; } ogs_assert(pdr->sess); sess = UPF_SESS(pdr->sess); ogs_assert(sess); far = pdr->far; ogs_assert(far); if (far->dst_if == OGS_PFCP_INTERFACE_ACCESS) { ogs_pfcp_up_handle_pdr(pdr, pkbuf, &report); if (report.type.downlink_data_report) { ogs_error("Indirect Data Fowarding Buffered"); report.downlink_data.pdr_id = pdr->id; if (pdr->qer && pdr->qer->qfi) report.downlink_data.qfi = pdr->qer->qfi; /* for 5GC */ upf_pfcp_send_session_report_request(sess, &report); } } else if (far->dst_if == OGS_PFCP_INTERFACE_CORE) { if (ip_h->ip_v == 4 && sess->ipv4) subnet = sess->ipv4->subnet; else if (ip_h->ip_v == 6 && sess->ipv6) subnet = sess->ipv6->subnet; if (!subnet) { #if 0 /* It's redundant log message */ ogs_error("[DROP] Cannot find subnet V:%d, IPv4:%p, IPv6:%p", ip_h->ip_v, sess->ipv4, sess->ipv6); ogs_log_hexdump(OGS_LOG_ERROR, pkbuf->data, pkbuf->len); #endif goto cleanup; } /* Check IPv6 */ if (ogs_app()->parameter.no_slaac == 0 && ip_h->ip_v == 6) { rv = upf_gtp_handle_slaac(sess, pkbuf); if (rv == UPF_GTP_HANDLED) { goto cleanup; } ogs_assert(rv == OGS_OK); } dev = subnet->dev; ogs_assert(dev); if (ogs_write(dev->fd, pkbuf->data, pkbuf->len) <= 0) { ogs_log_message(OGS_LOG_ERROR, ogs_socket_errno, "ogs_write() failed"); } } else { ogs_fatal("Not implemented : FAR-DST_IF[%d]", far->dst_if); ogs_assert_if_reached(); } } else { ogs_error("[DROP] Invalid GTPU Type [%d]", gtp_h->type); ogs_log_hexdump(OGS_LOG_ERROR, pkbuf->data, pkbuf->len); } cleanup: ogs_pkbuf_free(pkbuf); } int upf_gtp_init(void) { ogs_pkbuf_config_t config; memset(&config, 0, sizeof config); config.cluster_2048_pool = ogs_app()->pool.packet; packet_pool = ogs_pkbuf_pool_create(&config); return OGS_OK; } void upf_gtp_final(void) { ogs_pkbuf_pool_destroy(packet_pool); } int upf_gtp_open(void) { ogs_pfcp_dev_t *dev = NULL; ogs_pfcp_subnet_t *subnet = NULL; ogs_socknode_t *node = NULL; ogs_sock_t *sock = NULL; int rc; ogs_list_for_each(&upf_self()->gtpu_list, node) { sock = ogs_gtp_server(node); ogs_assert(sock); if (sock->family == AF_INET) upf_self()->gtpu_sock = sock; else if (sock->family == AF_INET6) upf_self()->gtpu_sock6 = sock; node->poll = ogs_pollset_add(ogs_app()->pollset, OGS_POLLIN, sock->fd, _gtpv1_u_recv_cb, sock); } ogs_assert(upf_self()->gtpu_sock || upf_self()->gtpu_sock6); /* NOTE : tun device can be created via following command. * * $ sudo ip tuntap add name ogstun mode tun * * Also, before running upf, assign the one IP from IP pool of UE * to ogstun. The IP should not be assigned to UE * * $ sudo ifconfig ogstun 45.45.0.1/16 up * */ /* Open Tun interface */ ogs_list_for_each(&ogs_pfcp_self()->dev_list, dev) { dev->fd = ogs_tun_open(dev->ifname, OGS_MAX_IFNAME_LEN, 0); if (dev->fd == INVALID_SOCKET) { ogs_error("tun_open(dev:%s) failed", dev->ifname); return OGS_ERROR; } dev->poll = ogs_pollset_add(ogs_app()->pollset, OGS_POLLIN, dev->fd, _gtpv1_tun_recv_cb, NULL); ogs_assert(dev->poll); } /* * On Linux, it is possible to create a persistent tun/tap * interface which will continue to exist even if open5gs quit, * although this is normally not required. * It can be useful to set up a tun/tap interface owned * by a non-root user, so open5gs can be started without * needing any root privileges at all. */ /* Set P-to-P IP address with Netmask * Note that Linux will skip this configuration */ ogs_list_for_each(&ogs_pfcp_self()->subnet_list, subnet) { ogs_assert(subnet->dev); rc = ogs_tun_set_ip(subnet->dev->ifname, &subnet->gw, &subnet->sub); if (rc != OGS_OK) { ogs_error("ogs_tun_set_ip(dev:%s) failed", subnet->dev->ifname); return OGS_ERROR; } } /* Link-Local Address for UPF_TUN */ ogs_list_for_each(&ogs_pfcp_self()->dev_list, dev) dev->link_local_addr = ogs_link_local_addr_by_dev(dev->ifname); return OGS_OK; } void upf_gtp_close(void) { ogs_pfcp_dev_t *dev = NULL; ogs_socknode_remove_all(&upf_self()->gtpu_list); ogs_list_for_each(&ogs_pfcp_self()->dev_list, dev) { if (dev->poll) ogs_pollset_remove(dev->poll); ogs_closesocket(dev->fd); } } static void upf_gtp_handle_multicast(ogs_pkbuf_t *recvbuf) { struct ip *ip_h = NULL; struct ip6_hdr *ip6_h = NULL; ogs_pfcp_user_plane_report_t report; ip_h = (struct ip *)recvbuf->data; if (ip_h->ip_v == 6) { #if COMPILE_ERROR_IN_MAC_OS_X /* Compiler error in Mac OS X platform */ ip6_h = (struct ip6_hdr *)recvbuf->data; if (IN6_IS_ADDR_MULTICAST(&ip6_h->ip6_dst)) #else struct in6_addr ip6_dst; ip6_h = (struct ip6_hdr *)recvbuf->data; memcpy(&ip6_dst, &ip6_h->ip6_dst, sizeof(struct in6_addr)); if (IN6_IS_ADDR_MULTICAST(&ip6_dst)) #endif { upf_sess_t *sess = NULL; /* IPv6 Multicast */ ogs_list_for_each(&upf_self()->sess_list, sess) { if (sess->ipv6) { /* PDN IPv6 is avaiable */ ogs_pfcp_pdr_t *pdr = NULL; pdr = OGS_DEFAULT_DL_PDR(&sess->pfcp); ogs_assert(pdr); ogs_pfcp_up_handle_pdr(pdr, recvbuf, &report); return; } } } } } static int upf_gtp_handle_slaac(upf_sess_t *sess, ogs_pkbuf_t *recvbuf) { int rv; struct ip *ip_h = NULL; ogs_assert(sess); ogs_assert(recvbuf); ogs_assert(recvbuf->len); ip_h = (struct ip *)recvbuf->data; if (ip_h->ip_v == 6) { struct ip6_hdr *ip6_h = (struct ip6_hdr *)recvbuf->data; if (ip6_h->ip6_nxt == IPPROTO_ICMPV6) { struct icmp6_hdr *icmp_h = (struct icmp6_hdr *)(recvbuf->data + sizeof(struct ip6_hdr)); if (icmp_h->icmp6_type == ND_ROUTER_SOLICIT) { ogs_debug(" Router Solict"); if (sess->ipv6) { rv = upf_gtp_send_router_advertisement( sess, ip6_h->ip6_src.s6_addr); ogs_assert(rv == OGS_OK); } return UPF_GTP_HANDLED; } } } return OGS_OK; } static int upf_gtp_send_router_advertisement( upf_sess_t *sess, uint8_t *ip6_dst) { int rv; ogs_pkbuf_t *pkbuf = NULL; ogs_pfcp_user_plane_report_t report; ogs_pfcp_pdr_t *pdr = NULL; ogs_pfcp_far_t *far = NULL; ogs_pfcp_ue_ip_t *ue_ip = NULL; ogs_pfcp_subnet_t *subnet = NULL; ogs_pfcp_dev_t *dev = NULL; ogs_ipsubnet_t src_ipsub; uint16_t plen = 0; uint8_t nxt = 0; uint8_t *p = NULL; struct ip6_hdr *ip6_h = NULL; struct nd_router_advert *advert_h = NULL; struct nd_opt_prefix_info *prefix = NULL; ogs_assert(sess); pdr = OGS_DEFAULT_DL_PDR(&sess->pfcp); ogs_assert(pdr); far = pdr->far; ogs_assert(far); ue_ip = sess->ipv6; ogs_assert(ue_ip); subnet = ue_ip->subnet; ogs_assert(subnet); dev = subnet->dev; ogs_assert(dev); pkbuf = ogs_pkbuf_alloc(NULL, OGS_GTPV1U_5GC_HEADER_LEN+200); ogs_assert(pkbuf); ogs_pkbuf_reserve(pkbuf, OGS_GTPV1U_5GC_HEADER_LEN); ogs_pkbuf_put(pkbuf, 200); pkbuf->len = sizeof *ip6_h + sizeof *advert_h + sizeof *prefix; memset(pkbuf->data, 0, pkbuf->len); p = (uint8_t *)pkbuf->data; ip6_h = (struct ip6_hdr *)p; advert_h = (struct nd_router_advert *)((uint8_t *)ip6_h + sizeof *ip6_h); prefix = (struct nd_opt_prefix_info *) ((uint8_t*)advert_h + sizeof *advert_h); rv = ogs_ipsubnet(&src_ipsub, "fe80::1", NULL); ogs_assert(rv == OGS_OK); if (dev->link_local_addr) memcpy(src_ipsub.sub, dev->link_local_addr->sin6.sin6_addr.s6_addr, sizeof src_ipsub.sub); advert_h->nd_ra_type = ND_ROUTER_ADVERT; advert_h->nd_ra_code = 0; advert_h->nd_ra_curhoplimit = 64; advert_h->nd_ra_flags_reserved = 0; advert_h->nd_ra_router_lifetime = htobe16(64800); /* 64800s */ advert_h->nd_ra_reachable = 0; advert_h->nd_ra_retransmit = 0; prefix->nd_opt_pi_type = ND_OPT_PREFIX_INFORMATION; prefix->nd_opt_pi_len = 4; /* 32bytes */ prefix->nd_opt_pi_prefix_len = subnet->prefixlen; prefix->nd_opt_pi_flags_reserved = ND_OPT_PI_FLAG_ONLINK|ND_OPT_PI_FLAG_AUTO; prefix->nd_opt_pi_valid_time = htobe32(0xffffffff); /* Infinite */ prefix->nd_opt_pi_preferred_time = htobe32(0xffffffff); /* Infinite */ memcpy(prefix->nd_opt_pi_prefix.s6_addr, subnet->sub.sub, sizeof prefix->nd_opt_pi_prefix.s6_addr); /* For IPv6 Pseudo-Header */ plen = htobe16(sizeof *advert_h + sizeof *prefix); nxt = IPPROTO_ICMPV6; memcpy(p, src_ipsub.sub, sizeof src_ipsub.sub); p += sizeof src_ipsub.sub; memcpy(p, ip6_dst, OGS_IPV6_LEN); p += OGS_IPV6_LEN; p += 2; memcpy(p, &plen, 2); p += 2; p += 3; *p = nxt; p += 1; advert_h->nd_ra_cksum = ogs_in_cksum((uint16_t *)pkbuf->data, pkbuf->len); ip6_h->ip6_flow = htobe32(0x60000001); ip6_h->ip6_plen = plen; ip6_h->ip6_nxt = nxt; /* ICMPv6 */ ip6_h->ip6_hlim = 0xff; memcpy(ip6_h->ip6_src.s6_addr, src_ipsub.sub, sizeof src_ipsub.sub); memcpy(ip6_h->ip6_dst.s6_addr, ip6_dst, OGS_IPV6_LEN); ogs_pfcp_up_handle_pdr(pdr, pkbuf, &report); ogs_debug(" Router Advertisement"); ogs_pkbuf_free(pkbuf); return rv; }