Support performing DAD for any address

...as long as the network protocol supports duplicate address detection. This CL provides the facilities for a netstack integrator to perform DAD. DHCP recommends that clients effectively perform DAD before accepting an offer. As per RFC 2131 section 4.4.1 pg 38, The client SHOULD perform a check on the suggested address to ensure that the address is not already in use. For example, if the client is on a network that supports ARP, the client may issue an ARP request for the suggested request. The implementation of ARP-based IPv4 DAD effectively operates the same as IPv6's NDP DAD - using ARP requests and responses in place of NDP neighbour solicitations and advertisements, respectively. DAD performed by calls to (*Stack).CheckDuplicateAddress don't interfere with DAD performed when a new IPv6 address is added. This is so that integrator requests to check for duplicate addresses aren't unexpectedly aborted when addresses are removed. A network package internal package provides protocol agnostic DAD state management that specific protocols that provide DAD can use. Fixes #4550. Tests: - internal/ip_test.* - integration_test.TestDAD - arp_test.TestDADARPRequestPacket - ipv6.TestCheckDuplicateAddress PiperOrigin-RevId: 356405593
author: Ghanan Gowripalan <ghanan@google.com> 2021-02-08 19:03:54 -0800
committer: gVisor bot <gvisor-bot@google.com> 2021-02-08 19:05:45 -0800
commit: 39251f31cb92d6c2b053416d04e195e290b106f2 (patch)
tree: bf3c80dc631655f48fc0b9686cfe2af2e6a4ab74 /pkg/tcpip/network/internal
parent: cfa4633c3d206aa2f9abdaac60d053162244ee6d (diff)
3 files changed, 479 insertions, 0 deletions
diff --git a/pkg/tcpip/network/internal/ip/BUILD b/pkg/tcpip/network/internal/ip/BUILD
new file mode 100644
index 000000000..0f55a9770
--- /dev/null
+++ b/pkg/tcpip/network/internal/ip/BUILD
@@ -0,0 +1,28 @@
+load("//tools:defs.bzl", "go_library", "go_test")
+
+package(licenses = ["notice"])
+
+go_library(
+    name = "ip",
+    srcs = ["duplicate_address_detection.go"],
+    visibility = ["//visibility:public"],
+    deps = [
+        "//pkg/sync",
+        "//pkg/tcpip",
+        "//pkg/tcpip/stack",
+    ],
+)
+
+go_test(
+    name = "ip_x_test",
+    size = "small",
+    srcs = ["duplicate_address_detection_test.go"],
+    deps = [
+        ":ip",
+        "//pkg/sync",
+        "//pkg/tcpip",
+        "//pkg/tcpip/faketime",
+        "//pkg/tcpip/stack",
+        "@com_github_google_go_cmp//cmp:go_default_library",
+    ],
+)
diff --git a/pkg/tcpip/network/internal/ip/duplicate_address_detection.go b/pkg/tcpip/network/internal/ip/duplicate_address_detection.go
new file mode 100644
index 000000000..6f89a6a16
--- /dev/null
+++ b/pkg/tcpip/network/internal/ip/duplicate_address_detection.go
@@ -0,0 +1,172 @@
+// Copyright 2021 The gVisor Authors.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+// Package ip holds IPv4/IPv6 common utilities.
+package ip
+
+import (
+	"fmt"
+
+	"gvisor.dev/gvisor/pkg/sync"
+	"gvisor.dev/gvisor/pkg/tcpip"
+	"gvisor.dev/gvisor/pkg/tcpip/stack"
+)
+
+type dadState struct {
+	done  *bool
+	timer tcpip.Timer
+
+	completionHandlers []stack.DADCompletionHandler
+}
+
+// DADProtocol is a protocol whose core state machine can be represented by DAD.
+type DADProtocol interface {
+	// SendDADMessage attempts to send a DAD probe message.
+	SendDADMessage(tcpip.Address) tcpip.Error
+}
+
+// DADOptions holds options for DAD.
+type DADOptions struct {
+	Clock    tcpip.Clock
+	Protocol DADProtocol
+	NICID    tcpip.NICID
+}
+
+// DAD performs duplicate address detection for addresses.
+type DAD struct {
+	opts    DADOptions
+	configs stack.DADConfigurations
+
+	protocolMU sync.Locker
+	addresses  map[tcpip.Address]dadState
+}
+
+// Init initializes the DAD state.
+//
+// Must only be called once for the lifetime of d; Init will panic if it is
+// called twice.
+//
+// The lock will only be taken when timers fire.
+func (d *DAD) Init(protocolMU sync.Locker, configs stack.DADConfigurations, opts DADOptions) {
+	if d.addresses != nil {
+		panic("attempted to initialize DAD state twice")
+	}
+
+	*d = DAD{
+		opts:       opts,
+		configs:    configs,
+		protocolMU: protocolMU,
+		addresses:  make(map[tcpip.Address]dadState),
+	}
+}
+
+// CheckDuplicateAddressLocked performs DAD for an address, calling the
+// completion handler once DAD resolves.
+//
+// If DAD is already performing for the provided address, h will be called when
+// the currently running process completes.
+//
+// Precondition: d.protocolMU must be locked.
+func (d *DAD) CheckDuplicateAddressLocked(addr tcpip.Address, h stack.DADCompletionHandler) stack.DADCheckAddressDisposition {
+	if d.configs.DupAddrDetectTransmits == 0 {
+		return stack.DADDisabled
+	}
+
+	ret := stack.DADAlreadyRunning
+	s, ok := d.addresses[addr]
+	if !ok {
+		ret = stack.DADStarting
+
+		remaining := d.configs.DupAddrDetectTransmits
+
+		// Protected by d.protocolMU.
+		done := false
+
+		s = dadState{
+			done: &done,
+			timer: d.opts.Clock.AfterFunc(0, func() {
+				var err tcpip.Error
+				dadDone := remaining == 0
+				if !dadDone {
+					err = d.opts.Protocol.SendDADMessage(addr)
+				}
+
+				d.protocolMU.Lock()
+				defer d.protocolMU.Unlock()
+
+				if done {
+					return
+				}
+
+				s, ok := d.addresses[addr]
+				if !ok {
+					panic(fmt.Sprintf("dad: timer fired but missing state for %s on NIC(%d)", addr, d.opts.NICID))
+				}
+
+				if !dadDone && err == nil {
+					remaining--
+					s.timer.Reset(d.configs.RetransmitTimer)
+					return
+				}
+
+				// At this point we know that either DAD has resolved or we hit an error
+				// sending the last DAD message. Either way, clear the DAD state.
+				done = false
+				s.timer.Stop()
+				delete(d.addresses, addr)
+
+				r := stack.DADResult{Resolved: dadDone, Err: err}
+				for _, h := range s.completionHandlers {
+					h(r)
+				}
+			}),
+		}
+	}
+
+	s.completionHandlers = append(s.completionHandlers, h)
+	d.addresses[addr] = s
+	return ret
+}
+
+// StopLocked stops a currently running DAD process.
+//
+// Precondition: d.protocolMU must be locked.
+func (d *DAD) StopLocked(addr tcpip.Address, aborted bool) {
+	s, ok := d.addresses[addr]
+	if !ok {
+		return
+	}
+
+	*s.done = true
+	s.timer.Stop()
+	delete(d.addresses, addr)
+
+	var err tcpip.Error
+	if aborted {
+		err = &tcpip.ErrAborted{}
+	}
+
+	r := stack.DADResult{Resolved: false, Err: err}
+	for _, h := range s.completionHandlers {
+		h(r)
+	}
+}
+
+// SetConfigsLocked sets the DAD configurations.
+//
+// Precondition: d.protocolMU must be locked.
+func (d *DAD) SetConfigsLocked(c stack.DADConfigurations) {
+	c.Validate()
+	d.configs = c
+}
diff --git a/pkg/tcpip/network/internal/ip/duplicate_address_detection_test.go b/pkg/tcpip/network/internal/ip/duplicate_address_detection_test.go
new file mode 100644
index 000000000..18c357b56
--- /dev/null
+++ b/pkg/tcpip/network/internal/ip/duplicate_address_detection_test.go
@@ -0,0 +1,279 @@
+// Copyright 2021 The gVisor Authors.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package ip_test
+
+import (
+	"testing"
+	"time"
+
+	"github.com/google/go-cmp/cmp"
+	"gvisor.dev/gvisor/pkg/sync"
+	"gvisor.dev/gvisor/pkg/tcpip"
+	"gvisor.dev/gvisor/pkg/tcpip/faketime"
+	"gvisor.dev/gvisor/pkg/tcpip/network/internal/ip"
+	"gvisor.dev/gvisor/pkg/tcpip/stack"
+)
+
+type mockDADProtocol struct {
+	t *testing.T
+
+	mu struct {
+		sync.Mutex
+
+		dad       ip.DAD
+		sendCount map[tcpip.Address]int
+	}
+}
+
+func (m *mockDADProtocol) init(t *testing.T, c stack.DADConfigurations, opts ip.DADOptions) {
+	m.mu.Lock()
+	defer m.mu.Unlock()
+
+	m.t = t
+	opts.Protocol = m
+	m.mu.dad.Init(&m.mu, c, opts)
+	m.initLocked()
+}
+
+func (m *mockDADProtocol) initLocked() {
+	m.mu.sendCount = make(map[tcpip.Address]int)
+}
+
+func (m *mockDADProtocol) SendDADMessage(addr tcpip.Address) tcpip.Error {
+	m.mu.Lock()
+	defer m.mu.Unlock()
+	m.mu.sendCount[addr]++
+	return nil
+}
+
+func (m *mockDADProtocol) check(addrs []tcpip.Address) string {
+	m.mu.Lock()
+	defer m.mu.Unlock()
+
+	sendCount := make(map[tcpip.Address]int)
+	for _, a := range addrs {
+		sendCount[a]++
+	}
+
+	diff := cmp.Diff(sendCount, m.mu.sendCount)
+	m.initLocked()
+	return diff
+}
+
+func (m *mockDADProtocol) checkDuplicateAddress(addr tcpip.Address, h stack.DADCompletionHandler) stack.DADCheckAddressDisposition {
+	m.mu.Lock()
+	defer m.mu.Unlock()
+	return m.mu.dad.CheckDuplicateAddressLocked(addr, h)
+}
+
+func (m *mockDADProtocol) stop(addr tcpip.Address, aborted bool) {
+	m.mu.Lock()
+	defer m.mu.Unlock()
+	m.mu.dad.StopLocked(addr, aborted)
+}
+
+func (m *mockDADProtocol) setConfigs(c stack.DADConfigurations) {
+	m.mu.Lock()
+	defer m.mu.Unlock()
+	m.mu.dad.SetConfigsLocked(c)
+}
+
+const (
+	addr1 = tcpip.Address("\x01")
+	addr2 = tcpip.Address("\x02")
+	addr3 = tcpip.Address("\x03")
+	addr4 = tcpip.Address("\x04")
+)
+
+type dadResult struct {
+	Addr tcpip.Address
+	R    stack.DADResult
+}
+
+func handler(ch chan<- dadResult, a tcpip.Address) func(stack.DADResult) {
+	return func(r stack.DADResult) {
+		ch <- dadResult{Addr: a, R: r}
+	}
+}
+
+func TestDADCheckDuplicateAddress(t *testing.T) {
+	var dad mockDADProtocol
+	clock := faketime.NewManualClock()
+	dad.init(t, stack.DADConfigurations{}, ip.DADOptions{
+		Clock: clock,
+	})
+
+	ch := make(chan dadResult, 2)
+
+	// DAD should initially be disabled.
+	if res := dad.checkDuplicateAddress(addr1, handler(nil, "")); res != stack.DADDisabled {
+		t.Errorf("got dad.checkDuplicateAddress(%s, _) = %d, want = %d", addr1, res, stack.DADDisabled)
+	}
+	// Wait for any initially fired timers to complete.
+	clock.Advance(0)
+	if diff := dad.check(nil); diff != "" {
+		t.Errorf("dad check mismatch (-want +got):\n%s", diff)
+	}
+
+	// Enable and request DAD.
+	dadConfigs1 := stack.DADConfigurations{
+		DupAddrDetectTransmits: 1,
+		RetransmitTimer:        time.Second,
+	}
+	dad.setConfigs(dadConfigs1)
+	if res := dad.checkDuplicateAddress(addr1, handler(ch, addr1)); res != stack.DADStarting {
+		t.Errorf("got dad.checkDuplicateAddress(%s, _) = %d, want = %d", addr1, res, stack.DADStarting)
+	}
+	clock.Advance(0)
+	if diff := dad.check([]tcpip.Address{addr1}); diff != "" {
+		t.Errorf("dad check mismatch (-want +got):\n%s", diff)
+	}
+	// The second request for DAD on the same address should use the original
+	// request since it has not completed yet.
+	if res := dad.checkDuplicateAddress(addr1, handler(ch, addr1)); res != stack.DADAlreadyRunning {
+		t.Errorf("got dad.checkDuplicateAddress(%s, _) = %d, want = %d", addr1, res, stack.DADAlreadyRunning)
+	}
+	clock.Advance(0)
+	if diff := dad.check(nil); diff != "" {
+		t.Errorf("dad check mismatch (-want +got):\n%s", diff)
+	}
+
+	dadConfigs2 := stack.DADConfigurations{
+		DupAddrDetectTransmits: 2,
+		RetransmitTimer:        time.Second,
+	}
+	dad.setConfigs(dadConfigs2)
+	// A new address should start a new DAD process.
+	if res := dad.checkDuplicateAddress(addr2, handler(ch, addr2)); res != stack.DADStarting {
+		t.Errorf("got dad.checkDuplicateAddress(%s, _) = %d, want = %d", addr2, res, stack.DADStarting)
+	}
+	clock.Advance(0)
+	if diff := dad.check([]tcpip.Address{addr2}); diff != "" {
+		t.Errorf("dad check mismatch (-want +got):\n%s", diff)
+	}
+
+	// Make sure DAD for addr1 only resolves after the expected timeout.
+	const delta = time.Nanosecond
+	dadConfig1Duration := time.Duration(dadConfigs1.DupAddrDetectTransmits) * dadConfigs1.RetransmitTimer
+	clock.Advance(dadConfig1Duration - delta)
+	select {
+	case r := <-ch:
+		t.Fatalf("unexpectedly got a DAD result before the expected timeout of %s; r = %#v", dadConfig1Duration, r)
+	default:
+	}
+	clock.Advance(delta)
+	for i := 0; i < 2; i++ {
+		if diff := cmp.Diff(dadResult{Addr: addr1, R: stack.DADResult{Resolved: true, Err: nil}}, <-ch); diff != "" {
+			t.Errorf("(i=%d) dad result mismatch (-want +got):\n%s", i, diff)
+		}
+	}
+
+	// Make sure DAD for addr2 only resolves after the expected timeout.
+	dadConfig2Duration := time.Duration(dadConfigs2.DupAddrDetectTransmits) * dadConfigs2.RetransmitTimer
+	clock.Advance(dadConfig2Duration - dadConfig1Duration - delta)
+	select {
+	case r := <-ch:
+		t.Fatalf("unexpectedly got a DAD result before the expected timeout of %s; r = %#v", dadConfig2Duration, r)
+	default:
+	}
+	clock.Advance(delta)
+	if diff := cmp.Diff(dadResult{Addr: addr2, R: stack.DADResult{Resolved: true, Err: nil}}, <-ch); diff != "" {
+		t.Errorf("dad result mismatch (-want +got):\n%s", diff)
+	}
+
+	// Should be able to restart DAD for addr2 after it resolved.
+	if res := dad.checkDuplicateAddress(addr2, handler(ch, addr2)); res != stack.DADStarting {
+		t.Errorf("got dad.checkDuplicateAddress(%s, _) = %d, want = %d", addr2, res, stack.DADStarting)
+	}
+	clock.Advance(0)
+	if diff := dad.check([]tcpip.Address{addr2, addr2}); diff != "" {
+		t.Errorf("dad check mismatch (-want +got):\n%s", diff)
+	}
+	clock.Advance(dadConfig2Duration)
+	if diff := cmp.Diff(dadResult{Addr: addr2, R: stack.DADResult{Resolved: true, Err: nil}}, <-ch); diff != "" {
+		t.Errorf("dad result mismatch (-want +got):\n%s", diff)
+	}
+
+	// Should not have anymore results.
+	select {
+	case r := <-ch:
+		t.Fatalf("unexpectedly got an extra DAD result; r = %#v", r)
+	default:
+	}
+}
+
+func TestDADStop(t *testing.T) {
+	var dad mockDADProtocol
+	clock := faketime.NewManualClock()
+	dadConfigs := stack.DADConfigurations{
+		DupAddrDetectTransmits: 1,
+		RetransmitTimer:        time.Second,
+	}
+	dad.init(t, dadConfigs, ip.DADOptions{
+		Clock: clock,
+	})
+
+	ch := make(chan dadResult, 1)
+
+	if res := dad.checkDuplicateAddress(addr1, handler(ch, addr1)); res != stack.DADStarting {
+		t.Errorf("got dad.checkDuplicateAddress(%s, _) = %d, want = %d", addr1, res, stack.DADStarting)
+	}
+	if res := dad.checkDuplicateAddress(addr2, handler(ch, addr2)); res != stack.DADStarting {
+		t.Errorf("got dad.checkDuplicateAddress(%s, _) = %d, want = %d", addr2, res, stack.DADStarting)
+	}
+	if res := dad.checkDuplicateAddress(addr3, handler(ch, addr3)); res != stack.DADStarting {
+		t.Errorf("got dad.checkDuplicateAddress(%s, _) = %d, want = %d", addr2, res, stack.DADStarting)
+	}
+	clock.Advance(0)
+	if diff := dad.check([]tcpip.Address{addr1, addr2, addr3}); diff != "" {
+		t.Errorf("dad check mismatch (-want +got):\n%s", diff)
+	}
+
+	dad.stop(addr1, true /* aborted */)
+	if diff := cmp.Diff(dadResult{Addr: addr1, R: stack.DADResult{Resolved: false, Err: &tcpip.ErrAborted{}}}, <-ch); diff != "" {
+		t.Errorf("dad result mismatch (-want +got):\n%s", diff)
+	}
+
+	dad.stop(addr2, false /* aborted */)
+	if diff := cmp.Diff(dadResult{Addr: addr2, R: stack.DADResult{Resolved: false, Err: nil}}, <-ch); diff != "" {
+		t.Errorf("dad result mismatch (-want +got):\n%s", diff)
+	}
+
+	dadResolutionDuration := time.Duration(dadConfigs.DupAddrDetectTransmits) * dadConfigs.RetransmitTimer
+	clock.Advance(dadResolutionDuration)
+	if diff := cmp.Diff(dadResult{Addr: addr3, R: stack.DADResult{Resolved: true, Err: nil}}, <-ch); diff != "" {
+		t.Errorf("dad result mismatch (-want +got):\n%s", diff)
+	}
+
+	// Should be able to restart DAD for an address we stopped DAD on.
+	if res := dad.checkDuplicateAddress(addr1, handler(ch, addr1)); res != stack.DADStarting {
+		t.Errorf("got dad.checkDuplicateAddress(%s, _) = %d, want = %d", addr1, res, stack.DADStarting)
+	}
+	clock.Advance(0)
+	if diff := dad.check([]tcpip.Address{addr1}); diff != "" {
+		t.Errorf("dad check mismatch (-want +got):\n%s", diff)
+	}
+	clock.Advance(dadResolutionDuration)
+	if diff := cmp.Diff(dadResult{Addr: addr1, R: stack.DADResult{Resolved: true, Err: nil}}, <-ch); diff != "" {
+		t.Errorf("dad result mismatch (-want +got):\n%s", diff)
+	}
+
+	// Should not have anymore updates.
+	select {
+	case r := <-ch:
+		t.Fatalf("unexpectedly got an extra DAD result; r = %#v", r)
+	default:
+	}
+}
author	Ghanan Gowripalan <ghanan@google.com>	2021-02-08 19:03:54 -0800
committer	gVisor bot <gvisor-bot@google.com>	2021-02-08 19:05:45 -0800
commit	39251f31cb92d6c2b053416d04e195e290b106f2 (patch)
tree	bf3c80dc631655f48fc0b9686cfe2af2e6a4ab74 /pkg/tcpip/network/internal
parent	cfa4633c3d206aa2f9abdaac60d053162244ee6d (diff)