LineageOS/android_packages_modules_Connectivity
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge "[CTT-7] Delete the rules while half-closing tcp state entered"

Browse Source
This commit is contained in:
Nucca Chen
2021-07-13 12:07:12 +00:00
committed by Gerrit Code Review
parent db30678605 118b5b578a
commit f7c8cec604
1 changed files with 17 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
Tethering/src/com/android/networkstack/tethering/BpfCoordinator.java
View File

@@ -1572,6 +1572,10 @@ public class BpfCoordinator {
final Tether4Key downstream4Key = makeTetherDownstream4Key(e, tetherClient, final Tether4Key downstream4Key = makeTetherDownstream4Key(e, tetherClient,
upstreamIndex); upstreamIndex);
final boolean isConntrackEventDelete =
e.msgType == (NetlinkConstants.NFNL_SUBSYS_CTNETLINK << 8
| NetlinkConstants.IPCTNL_MSG_CT_DELETE);
// Using the timeout to distinguish tcp state is not a decent way. Need to fix. // Using the timeout to distinguish tcp state is not a decent way. Need to fix.
// The received IPCTNL_MSG_CT_NEW must pass ConntrackMonitor#isEstablishedNatSession // The received IPCTNL_MSG_CT_NEW must pass ConntrackMonitor#isEstablishedNatSession
// which checks CTA_STATUS. It implies that this entry has at least reached tcp // which checks CTA_STATUS. It implies that this entry has at least reached tcp
@@ -1584,8 +1588,18 @@ public class BpfCoordinator {
&& e.tupleOrig.protoNum == OsConstants.IPPROTO_TCP && e.tupleOrig.protoNum == OsConstants.IPPROTO_TCP
&& (e.timeoutSec >= NF_CONNTRACK_TCP_TIMEOUT_UNACKNOWLEDGED); && (e.timeoutSec >= NF_CONNTRACK_TCP_TIMEOUT_UNACKNOWLEDGED);
if (e.msgType == (NetlinkConstants.NFNL_SUBSYS_CTNETLINK << 8 final boolean isTcpNonEstablished =
| NetlinkConstants.IPCTNL_MSG_CT_DELETE)) { e.msgType == (NetlinkConstants.NFNL_SUBSYS_CTNETLINK << 8
| NetlinkConstants.IPCTNL_MSG_CT_NEW)
&& e.tupleOrig.protoNum == OsConstants.IPPROTO_TCP
&& (e.timeoutSec < NF_CONNTRACK_TCP_TIMEOUT_UNACKNOWLEDGED);
// Delete the BPF rules:
// 1. Contrack event IPCTNL_MSG_CT_DELETE received.
// 2. For TCP conntrack entry, the tcp state has left "established" and going to be
// closed.
// TODO: continue to offload half-closed tcp connections.
if (isConntrackEventDelete || isTcpNonEstablished) {
final boolean deletedUpstream = mBpfCoordinatorShim.tetherOffloadRuleRemove( final boolean deletedUpstream = mBpfCoordinatorShim.tetherOffloadRuleRemove(
UPSTREAM, upstream4Key); UPSTREAM, upstream4Key);
final boolean deletedDownstream = mBpfCoordinatorShim.tetherOffloadRuleRemove( final boolean deletedDownstream = mBpfCoordinatorShim.tetherOffloadRuleRemove(
@@ -1600,6 +1614,7 @@ public class BpfCoordinator {
Log.wtf(TAG, "The bidirectional rules should be removed concurrently (" Log.wtf(TAG, "The bidirectional rules should be removed concurrently ("
+ "upstream: " + deletedUpstream + "upstream: " + deletedUpstream
+ ", downstream: " + deletedDownstream + ")"); + ", downstream: " + deletedDownstream + ")");
// TODO: consider better error handling for the stubs {rule, limit, ..}.
return; return;
} }