vhost

2025-12-18 04:48:28 +01:00 · 2025-11-07 14:26:35 -06:00
parent 3ec527e42c
commit ac5382928e
50 changed files with 4013 additions and 123 deletions
--- a/packet/outpacket.go
+++ b/packet/outpacket.go
@@ -0,0 +1,70 @@
+package packet
+
+import (
+	"github.com/slackhq/nebula/util/virtio"
+	"golang.org/x/sys/unix"
+)
+
+type OutPacket struct {
+	Segments        [][]byte
+	SegmentPayloads [][]byte
+	SegmentHeaders  [][]byte
+	SegmentIDs      []uint16
+	//todo virtio header?
+	SegSize      int
+	SegCounter   int
+	Valid        bool
+	wasSegmented bool
+
+	Scratch []byte
+}
+
+func NewOut() *OutPacket {
+	out := new(OutPacket)
+	out.Segments = make([][]byte, 0, 64)
+	out.SegmentHeaders = make([][]byte, 0, 64)
+	out.SegmentPayloads = make([][]byte, 0, 64)
+	out.SegmentIDs = make([]uint16, 0, 64)
+	out.Scratch = make([]byte, Size)
+	return out
+}
+
+func (pkt *OutPacket) Reset() {
+	pkt.Segments = pkt.Segments[:0]
+	pkt.SegmentPayloads = pkt.SegmentPayloads[:0]
+	pkt.SegmentHeaders = pkt.SegmentHeaders[:0]
+	pkt.SegmentIDs = pkt.SegmentIDs[:0]
+	pkt.SegSize = 0
+	pkt.Valid = false
+	pkt.wasSegmented = false
+}
+
+func (pkt *OutPacket) UseSegment(segID uint16, seg []byte, isV6 bool) int {
+	pkt.Valid = true
+	pkt.SegmentIDs = append(pkt.SegmentIDs, segID)
+	pkt.Segments = append(pkt.Segments, seg) //todo do we need this?
+
+	vhdr := virtio.NetHdr{ //todo
+		Flags:      unix.VIRTIO_NET_HDR_F_DATA_VALID,
+		GSOType:    unix.VIRTIO_NET_HDR_GSO_NONE,
+		HdrLen:     0,
+		GSOSize:    0,
+		CsumStart:  0,
+		CsumOffset: 0,
+		NumBuffers: 0,
+	}
+
+	hdr := seg[0 : virtio.NetHdrSize+14]
+	_ = vhdr.Encode(hdr)
+	if isV6 {
+		hdr[virtio.NetHdrSize+14-2] = 0x86
+		hdr[virtio.NetHdrSize+14-1] = 0xdd
+	} else {
+		hdr[virtio.NetHdrSize+14-2] = 0x08
+		hdr[virtio.NetHdrSize+14-1] = 0x00
+	}
+
+	pkt.SegmentHeaders = append(pkt.SegmentHeaders, hdr)
+	pkt.SegmentPayloads = append(pkt.SegmentPayloads, seg[virtio.NetHdrSize+14:])
+	return len(pkt.SegmentIDs) - 1
+}
--- a/packet/packet.go
+++ b/packet/packet.go
@@ -0,0 +1,119 @@
+package packet
+
+import (
+	"encoding/binary"
+	"iter"
+	"net/netip"
+	"slices"
+	"syscall"
+	"unsafe"
+
+	"golang.org/x/sys/unix"
+)
+
+const Size = 0xffff
+
+type Packet struct {
+	Payload []byte
+	Control []byte
+	Name    []byte
+	SegSize int
+
+	//todo should this hold out as well?
+	OutLen int
+
+	wasSegmented bool
+	isV4         bool
+}
+
+func New(isV4 bool) *Packet {
+	return &Packet{
+		Payload: make([]byte, Size),
+		Control: make([]byte, unix.CmsgSpace(2)),
+		Name:    make([]byte, unix.SizeofSockaddrInet6),
+		isV4:    isV4,
+	}
+}
+
+func (p *Packet) AddrPort() netip.AddrPort {
+	var ip netip.Addr
+	// Its ok to skip the ok check here, the slicing is the only error that can occur and it will panic
+	if p.isV4 {
+		ip, _ = netip.AddrFromSlice(p.Name[4:8])
+	} else {
+		ip, _ = netip.AddrFromSlice(p.Name[8:24])
+	}
+	return netip.AddrPortFrom(ip.Unmap(), binary.BigEndian.Uint16(p.Name[2:4]))
+}
+
+func (p *Packet) updateCtrl(ctrlLen int) {
+	p.SegSize = len(p.Payload)
+	p.wasSegmented = false
+	if ctrlLen == 0 {
+		return
+	}
+	if len(p.Control) == 0 {
+		return
+	}
+	cmsgs, err := unix.ParseSocketControlMessage(p.Control)
+	if err != nil {
+		return // oh well
+	}
+
+	for _, c := range cmsgs {
+		if c.Header.Level == unix.SOL_UDP && c.Header.Type == unix.UDP_GRO && len(c.Data) >= 2 {
+			p.wasSegmented = true
+			p.SegSize = int(binary.LittleEndian.Uint16(c.Data[:2]))
+			return
+		}
+	}
+}
+
+// Update sets a Packet into "just received, not processed" state
+func (p *Packet) Update(ctrlLen int) {
+	p.OutLen = -1
+	p.updateCtrl(ctrlLen)
+}
+
+func (p *Packet) SetSegSizeForTX() {
+	p.SegSize = len(p.Payload)
+	hdr := (*unix.Cmsghdr)(unsafe.Pointer(&p.Control[0]))
+	hdr.Level = unix.SOL_UDP
+	hdr.Type = unix.UDP_SEGMENT
+	hdr.SetLen(syscall.CmsgLen(2))
+	binary.NativeEndian.PutUint16(p.Control[unix.CmsgLen(0):unix.CmsgLen(0)+2], uint16(p.SegSize))
+}
+
+func (p *Packet) CompatibleForSegmentationWith(otherP *Packet, currentTotalSize int) bool {
+	//same dest
+	if !slices.Equal(p.Name, otherP.Name) {
+		return false
+	}
+
+	//don't get too big
+	if len(p.Payload)+currentTotalSize >= 0xffff {
+		return false
+	}
+
+	//same body len
+	//todo allow single different size at end
+	if len(p.Payload) != len(otherP.Payload) {
+		return false //todo technically you can cram one extra in
+	}
+	return true
+}
+
+func (p *Packet) Segments() iter.Seq[[]byte] {
+	return func(yield func([]byte) bool) {
+		//cursor := 0
+		for offset := 0; offset < len(p.Payload); offset += p.SegSize {
+			end := offset + p.SegSize
+			if end > len(p.Payload) {
+				end = len(p.Payload)
+			}
+			if !yield(p.Payload[offset:end]) {
+				return
+			}
+		}
+	}
+}
--- a/packet/virtio.go
+++ b/packet/virtio.go
@@ -0,0 +1,37 @@
+package packet
+
+import (
+	"github.com/slackhq/nebula/util/virtio"
+)
+
+type VirtIOPacket struct {
+	Payload   []byte
+	Header    virtio.NetHdr
+	Chains    []uint16
+	ChainRefs [][]byte
+	// OfferDescriptorChains(chains []uint16, kick bool) error
+}
+
+func NewVIO() *VirtIOPacket {
+	out := new(VirtIOPacket)
+	out.Payload = nil
+	out.ChainRefs = make([][]byte, 0, 4)
+	out.Chains = make([]uint16, 0, 8)
+	return out
+}
+
+func (v *VirtIOPacket) Reset() {
+	v.Payload = nil
+	v.ChainRefs = v.ChainRefs[:0]
+	v.Chains = v.Chains[:0]
+}
+
+type VirtIOTXPacket struct {
+	VirtIOPacket
+}
+
+func NewVIOTX(isV4 bool) *VirtIOTXPacket {
+	out := new(VirtIOTXPacket)
+	out.VirtIOPacket = *NewVIO()
+	return out
+}