diff options
Diffstat (limited to '')
| -rw-r--r-- | dnsdist-tcp.hh | 306 |
1 files changed, 306 insertions, 0 deletions
diff --git a/dnsdist-tcp.hh b/dnsdist-tcp.hh new file mode 100644 index 0000000..3d11f1a --- /dev/null +++ b/dnsdist-tcp.hh @@ -0,0 +1,306 @@ +/* + * This file is part of PowerDNS or dnsdist. + * Copyright -- PowerDNS.COM B.V. and its contributors + * + * This program is free software; you can redistribute it and/or modify + * it under the terms of version 2 of the GNU General Public License as + * published by the Free Software Foundation. + * + * In addition, for the avoidance of any doubt, permission is granted to + * link this program with OpenSSL and to (re)distribute the binaries + * produced as the result of such linking. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License + * along with this program; if not, write to the Free Software + * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + */ +#pragma once + +#include <unistd.h> +#include "iputils.hh" +#include "dnsdist.hh" + +struct ConnectionInfo +{ + ConnectionInfo(ClientState* cs_) : + cs(cs_), fd(-1) + { + } + ConnectionInfo(ClientState* cs_, const ComboAddress remote_) : + remote(remote_), cs(cs_), fd(-1) + { + } + ConnectionInfo(ConnectionInfo&& rhs) : + remote(rhs.remote), cs(rhs.cs), fd(rhs.fd) + { + rhs.cs = nullptr; + rhs.fd = -1; + } + + ConnectionInfo(const ConnectionInfo& rhs) = delete; + ConnectionInfo& operator=(const ConnectionInfo& rhs) = delete; + + ConnectionInfo& operator=(ConnectionInfo&& rhs) + { + remote = rhs.remote; + cs = rhs.cs; + rhs.cs = nullptr; + fd = rhs.fd; + rhs.fd = -1; + return *this; + } + + ~ConnectionInfo() + { + if (fd != -1) { + close(fd); + fd = -1; + } + + if (cs) { + --cs->tcpCurrentConnections; + } + } + + ComboAddress remote; + ClientState* cs{nullptr}; + int fd{-1}; +}; + +class InternalQuery +{ +public: + InternalQuery() + { + } + + InternalQuery(PacketBuffer&& buffer, InternalQueryState&& state) : + d_idstate(std::move(state)), d_buffer(std::move(buffer)) + { + } + + InternalQuery(InternalQuery&& rhs) = default; + InternalQuery& operator=(InternalQuery&& rhs) = default; + + InternalQuery(const InternalQuery& rhs) = delete; + InternalQuery& operator=(const InternalQuery& rhs) = delete; + + bool isXFR() const + { + return d_idstate.qtype == QType::AXFR || d_idstate.qtype == QType::IXFR; + } + + InternalQueryState d_idstate; + std::string d_proxyProtocolPayload; + PacketBuffer d_buffer; + uint32_t d_proxyProtocolPayloadAddedSize{0}; + uint32_t d_ixfrQuerySerial{0}; + uint32_t d_xfrMasterSerial{0}; + uint32_t d_xfrSerialCount{0}; + uint32_t d_downstreamFailures{0}; + uint8_t d_xfrMasterSerialCount{0}; + bool d_xfrStarted{false}; + bool d_proxyProtocolPayloadAdded{false}; +}; + +using TCPQuery = InternalQuery; + +class ConnectionToBackend; + +struct TCPResponse : public TCPQuery +{ + TCPResponse() + { + /* let's make Coverity happy */ + memset(&d_cleartextDH, 0, sizeof(d_cleartextDH)); + } + + TCPResponse(PacketBuffer&& buffer, InternalQueryState&& state, std::shared_ptr<ConnectionToBackend> conn, std::shared_ptr<DownstreamState> ds) : + TCPQuery(std::move(buffer), std::move(state)), d_connection(conn), d_ds(ds) + { + if (d_buffer.size() >= sizeof(dnsheader)) { + memcpy(&d_cleartextDH, reinterpret_cast<const dnsheader*>(d_buffer.data()), sizeof(d_cleartextDH)); + } + else { + memset(&d_cleartextDH, 0, sizeof(d_cleartextDH)); + } + } + + bool isAsync() const + { + return d_async; + } + + std::shared_ptr<ConnectionToBackend> d_connection{nullptr}; + std::shared_ptr<DownstreamState> d_ds{nullptr}; + dnsheader d_cleartextDH; + bool d_async{false}; +}; + +class TCPQuerySender +{ +public: + virtual ~TCPQuerySender() + { + } + + virtual bool active() const = 0; + virtual void handleResponse(const struct timeval& now, TCPResponse&& response) = 0; + virtual void handleXFRResponse(const struct timeval& now, TCPResponse&& response) = 0; + virtual void notifyIOError(InternalQueryState&& query, const struct timeval& now) = 0; + + /* whether the connection should be automatically released to the pool after handleResponse() + has been called */ + bool releaseConnection() const + { + return d_releaseConnection; + } + +protected: + bool d_releaseConnection{true}; +}; + +struct CrossProtocolQuery +{ + CrossProtocolQuery() + { + } + CrossProtocolQuery(InternalQuery&& query_, std::shared_ptr<DownstreamState>& downstream_) : + query(std::move(query_)), downstream(downstream_) + { + } + + CrossProtocolQuery(CrossProtocolQuery&& rhs) = delete; + virtual ~CrossProtocolQuery() + { + } + + virtual std::shared_ptr<TCPQuerySender> getTCPQuerySender() = 0; + virtual DNSQuestion getDQ() + { + auto& ids = query.d_idstate; + DNSQuestion dq(ids, query.d_buffer); + return dq; + } + + virtual DNSResponse getDR() + { + auto& ids = query.d_idstate; + DNSResponse dr(ids, query.d_buffer, downstream); + return dr; + } + + InternalQuery query; + std::shared_ptr<DownstreamState> downstream{nullptr}; + size_t proxyProtocolPayloadSize{0}; + bool d_isResponse{false}; +}; + +class TCPClientCollection +{ +public: + TCPClientCollection(size_t maxThreads, std::vector<ClientState*> tcpStates); + + bool passConnectionToThread(std::unique_ptr<ConnectionInfo>&& conn) + { + if (d_numthreads == 0) { + throw std::runtime_error("No TCP worker thread yet"); + } + + uint64_t pos = d_pos++; + auto pipe = d_tcpclientthreads.at(pos % d_numthreads).d_newConnectionPipe.getHandle(); + auto tmp = conn.release(); + + /* we need to increment this counter _before_ writing to the pipe, + otherwise there is a very real possiblity that the other end + decrement the counter before we can increment it, leading to an underflow */ + ++d_queued; + if (write(pipe, &tmp, sizeof(tmp)) != sizeof(tmp)) { + --d_queued; + ++g_stats.tcpQueryPipeFull; + delete tmp; + tmp = nullptr; + return false; + } + return true; + } + + bool passCrossProtocolQueryToThread(std::unique_ptr<CrossProtocolQuery>&& cpq) + { + if (d_numthreads == 0) { + throw std::runtime_error("No TCP worker thread yet"); + } + + uint64_t pos = d_pos++; + auto pipe = d_tcpclientthreads.at(pos % d_numthreads).d_crossProtocolQueriesPipe.getHandle(); + auto tmp = cpq.release(); + + if (write(pipe, &tmp, sizeof(tmp)) != sizeof(tmp)) { + ++g_stats.tcpCrossProtocolQueryPipeFull; + delete tmp; + tmp = nullptr; + return false; + } + + return true; + } + + bool hasReachedMaxThreads() const + { + return d_numthreads >= d_maxthreads; + } + + uint64_t getThreadsCount() const + { + return d_numthreads; + } + + uint64_t getQueuedCount() const + { + return d_queued; + } + + void decrementQueuedCount() + { + --d_queued; + } + +private: + void addTCPClientThread(std::vector<ClientState*>& tcpAcceptStates); + + struct TCPWorkerThread + { + TCPWorkerThread() + { + } + + TCPWorkerThread(int newConnPipe, int crossProtocolQueriesPipe, int crossProtocolResponsesPipe) : + d_newConnectionPipe(newConnPipe), d_crossProtocolQueriesPipe(crossProtocolQueriesPipe), d_crossProtocolResponsesPipe(crossProtocolResponsesPipe) + { + } + + TCPWorkerThread(TCPWorkerThread&& rhs) = default; + TCPWorkerThread& operator=(TCPWorkerThread&& rhs) = default; + TCPWorkerThread(const TCPWorkerThread& rhs) = delete; + TCPWorkerThread& operator=(const TCPWorkerThread&) = delete; + + FDWrapper d_newConnectionPipe; + FDWrapper d_crossProtocolQueriesPipe; + FDWrapper d_crossProtocolResponsesPipe; + }; + + std::vector<TCPWorkerThread> d_tcpclientthreads; + stat_t d_numthreads{0}; + stat_t d_pos{0}; + stat_t d_queued{0}; + const uint64_t d_maxthreads{0}; +}; + +extern std::unique_ptr<TCPClientCollection> g_tcpclientthreads; + +std::unique_ptr<CrossProtocolQuery> getTCPCrossProtocolQueryFromDQ(DNSQuestion& dq); |