diff options
| author | Andrey Nazarov <skuller@skuller.net> | 2010-05-31 21:10:01 +0000 |
|---|---|---|
| committer | Andrey Nazarov <skuller@skuller.net> | 2010-05-31 21:10:01 +0000 |
| commit | 907c3b16e8c65ea7c7cb4a0186a80f6f258ac4e0 (patch) | |
| tree | ee1d79cd0ee85db048f2816ae0d3a194d1497467 | |
| parent | aae91e293989bc6321e3a262e8c7c4c9babed447 (diff) | |
Do not retry sendto() if destination address is found in the error queue to prevent looping.
Experimental support for path MTU discovery enabled by setting ‘net_ignore_icmp’ to negative value.
Moved net_from into net_common.c from net_chan.c
| -rw-r--r-- | source/net_chan.c | 2 | ||||
| -rw-r--r-- | source/net_common.c | 99 | ||||
| -rw-r--r-- | source/net_sock.h | 1 | ||||
| -rw-r--r-- | source/sv_main.c | 16 | ||||
| -rw-r--r-- | source/sv_public.h | 2 |
5 files changed, 94 insertions, 26 deletions
diff --git a/source/net_chan.c b/source/net_chan.c index 684cbb6..cb610e4 100644 --- a/source/net_chan.c +++ b/source/net_chan.c @@ -97,8 +97,6 @@ cvar_t *net_qport; cvar_t *net_maxmsglen; cvar_t *net_chantype; -netadr_t net_from; - // allow either 0 (no hard limit), or an integer between 512 and 4086 static void net_maxmsglen_changed( cvar_t *self ) { if( self->integer ) { diff --git a/source/net_common.c b/source/net_common.c index dd73680..040a104 100644 --- a/source/net_common.c +++ b/source/net_common.c @@ -100,6 +100,8 @@ static loopback_t loopbacks[NS_COUNT]; cvar_t *net_ip; cvar_t *net_port; +netadr_t net_from; + #if USE_CLIENT static cvar_t *net_clientport; static cvar_t *net_dropsim; @@ -463,8 +465,8 @@ qboolean NET_GetLoopPacket( netsrc_t sock ) { // prevents infinite retry loops caused by broken TCP/IP stacks #define MAX_ERROR_RETRIES 64 -static void icmp_error_event( netsrc_t sock ) { - if( net_ignore_icmp->integer ) { +static void icmp_error_event( netsrc_t sock, int info ) { + if( net_ignore_icmp->integer > 0 ) { return; } @@ -474,7 +476,7 @@ static void icmp_error_event( netsrc_t sock ) { switch( sock ) { case NS_SERVER: - SV_ErrorEvent(); + SV_ErrorEvent( info ); break; #if USE_CLIENT case NS_CLIENT: @@ -490,16 +492,20 @@ static void icmp_error_event( netsrc_t sock ) { // Linux at least supports receiving ICMP errors on unconnected UDP sockets // via IP_RECVERR cruft below... What about BSD? -static int process_error_queue( netsrc_t sock ) { +// +// Returns true if failed socket operation should be retried, extremely hacky :/ +static qboolean process_error_queue( netsrc_t sock, struct sockaddr_in *to ) { byte buffer[1024]; struct sockaddr_in from; struct msghdr msg; struct cmsghdr *cmsg; struct sock_extended_err *ee; - //struct sockaddr_in *off; + int info; int tries; + qboolean found; tries = 0; + found = qfalse; retry: memset( &from, 0, sizeof( from ) ); @@ -513,15 +519,15 @@ retry: if( recvmsg( udp_sockets[sock], &msg, MSG_ERRQUEUE ) == -1 ) { if( NET_WOULD_BLOCK() ) { // wouldblock is silent - return tries; + goto finish; } Com_EPrintf( "%s: %s\n", __func__, NET_ErrorString() ); - return tries; + goto finish; } if( !( msg.msg_flags & MSG_ERRQUEUE ) ) { Com_DPrintf( "%s: no extended error received\n", __func__ ); - return tries; + goto finish; } // find an ICMP error message @@ -543,21 +549,38 @@ retry: if( !cmsg ) { Com_DPrintf( "%s: no ICMP error found\n", __func__ ); - return tries; + goto finish; } NET_SockadrToNetadr( &from, &net_from ); + // check if this error was caused by a packet sent to the given address + // if so, do not retry send operation to prevent infinite loop + if( to != NULL && from.sin_addr.s_addr == to->sin_addr.s_addr && + ( !from.sin_port || from.sin_port == to->sin_port ) ) + { + Com_DPrintf( "%s: found offending address %s:%d\n", + __func__, inet_ntoa( from.sin_addr ), BigShort( from.sin_port ) ); + found = qtrue; + } + // handle ICMP errors net_error = ee->ee_errno; - //net_info = ee->ee_info; // for EMSGSIZE this should be discovered MTU - icmp_error_event( sock ); + info = 0; +#if USE_PMTUDISC + // for EMSGSIZE ee_info should hold discovered MTU + if( net_error == EMSGSIZE && ee->ee_info >= 576 && ee->ee_info < 4096 ) { + info = ee->ee_info; + } +#endif + icmp_error_event( sock, info ); if( ++tries < MAX_ERROR_RETRIES ) { goto retry; } - return tries; +finish: + return !!tries && !found; } #endif // __linux__ @@ -578,6 +601,7 @@ qboolean NET_GetPacket( netsrc_t sock ) { int ret; #if USE_ICMP int tries; + int saved_error; #endif ioentry_t *e; @@ -623,7 +647,7 @@ retry: case WSAENETRESET: // winsock has already provided us with // a valid address from ICMP error packet - icmp_error_event( sock ); + icmp_error_event( sock, 0 ); if( ++tries < MAX_ERROR_RETRIES ) { goto retry; } @@ -643,14 +667,16 @@ retry: break; default: #if USE_ICMP + saved_error = net_error; // recvfrom() fails on Linux if there's an ICMP originated // pending error on socket. suck up error queue and retry... - if( process_error_queue( sock ) ) { + if( process_error_queue( sock, NULL ) ) { if( ++tries < MAX_ERROR_RETRIES ) { goto retry; } } #endif + net_error = saved_error; Com_DPrintf( "%s: %s from %s\n", __func__, NET_ErrorString(), NET_AdrToString( &net_from ) ); net_recv_errors++; @@ -694,6 +720,7 @@ qboolean NET_SendPacket( netsrc_t sock, const netadr_t *to, size_t length, const int ret; #if USE_ICMP && ( defined __linux__ ) int tries; + int saved_error; #endif if( !length ) { @@ -786,14 +813,30 @@ retry: break; default: #if USE_ICMP + saved_error = net_error; // sendto() fails on Linux if there's an ICMP originated // pending error on socket. suck up error queue and retry... - if( process_error_queue( sock ) ) { + // + // this one is especially lame - how do I distingiush between + // a failure caused by completely unrelated ICMP error sitting + // in the queue and an error explicit to this sendto() call? + // + // on one hand, I don't want to drop packets to legitimate + // clients because of this, and have to retry sendto() after + // processing error queue, on another hand, infinite loop should be + // avoided if this sendto() regenerates a message in error queue + // + // this mess is worked around by passing destination address + // to process_error_queue() and checking if this address/port + // pair is found in the queue. if it is found, or the queue + // is empty, do not retry + if( process_error_queue( sock, &addr ) ) { if( ++tries < MAX_ERROR_RETRIES ) { goto retry; } } #endif + net_error = saved_error; Com_DPrintf( "%s: %s to %s\n", __func__, NET_ErrorString(), NET_AdrToString( to ) ); net_send_errors++; @@ -890,6 +933,9 @@ static int bind_socket( SOCKET s, struct sockaddr_in *sadr ) { static SOCKET UDP_OpenSocket( const char *iface, int port ) { SOCKET s; struct sockaddr_in sadr; +#ifdef __linux__ + int pmtudisc; +#endif Com_DPrintf( "Opening UDP socket: %s:%i\n", iface, port ); @@ -914,22 +960,33 @@ static SOCKET UDP_OpenSocket( const char *iface, int port ) { } #ifdef __linux__ + pmtudisc = IP_PMTUDISC_DONT; #if USE_ICMP // enable ICMP error queue - if( !net_ignore_icmp->integer ) { + if( net_ignore_icmp->integer <= 0 ) { if( enable_option( s, IPPROTO_IP, IP_RECVERR ) == -1 ) { Com_WPrintf( "%s: %s:%d: can't enable ICMP error queue: %s\n", __func__, iface, port, NET_ErrorString() ); Cvar_Set( "net_ignore_icmp", "1" ); } + +#if USE_PMTUDISC + // overload negative values to enable path MTU discovery + switch( net_ignore_icmp->integer ) { + case -1: pmtudisc = IP_PMTUDISC_WANT; break; + case -2: pmtudisc = IP_PMTUDISC_DO; break; + case -3: pmtudisc = IP_PMTUDISC_PROBE; break; + } +#endif // USE_PMTUDISC } -#endif +#endif // USE_ICMP - // disable path MTU discovery - if( set_option( s, IPPROTO_IP, IP_MTU_DISCOVER, IP_PMTUDISC_DONT ) == -1 ) { - Com_WPrintf( "%s: %s:%d: can't disable path MTU discovery: %s\n", - __func__, iface, port, NET_ErrorString() ); + // disable or enable path MTU discovery + if( set_option( s, IPPROTO_IP, IP_MTU_DISCOVER, pmtudisc ) == -1 ) { + Com_WPrintf( "%s: %s:%d: can't %sable path MTU discovery: %s\n", + __func__, iface, port, pmtudisc == IP_PMTUDISC_DONT ? "dis" : "en", + NET_ErrorString() ); } #endif // __linux__ diff --git a/source/net_sock.h b/source/net_sock.h index 94169e7..fb8a970 100644 --- a/source/net_sock.h +++ b/source/net_sock.h @@ -155,4 +155,3 @@ extern cvar_t *net_port; extern netadr_t net_from; - diff --git a/source/sv_main.c b/source/sv_main.c index cf1efea..e63d2cc 100644 --- a/source/sv_main.c +++ b/source/sv_main.c @@ -1258,7 +1258,7 @@ static void SV_PacketEvent( void ) { SV_ErrorEvent ================= */ -void SV_ErrorEvent( void ) { +void SV_ErrorEvent( int info ) { client_t *client; netchan_t *netchan; @@ -1278,6 +1278,20 @@ void SV_ErrorEvent( void ) { if( net_from.port && netchan->remote_address.port != net_from.port ) { continue; } +#if USE_PMTUDISC + if( info ) { + // we are doing path MTU discovery and got ICMP fragmentation-needed + // update MTU only for connecting clients to minimize spoofed ICMP interference + // MTU info has already been sanity checked for us by network code + // assume total 64 bytes of headers + if( client->state == cs_primed && info < netchan->maxpacketlen + 64 ) { + Com_Printf( "Fixing up maxmsglen for %s: %d --> %d\n", + client->name, (int)netchan->maxpacketlen, info - 64 ); + netchan->maxpacketlen = info - 64; + } + continue; + } +#endif client->flags |= CF_ERROR; // drop them soon break; } diff --git a/source/sv_public.h b/source/sv_public.h index a55f521..89b0abb 100644 --- a/source/sv_public.h +++ b/source/sv_public.h @@ -28,7 +28,7 @@ typedef enum { } server_state_t; #if USE_ICMP -void SV_ErrorEvent( void ); +void SV_ErrorEvent( int info ); #endif void SV_Init (void); void SV_Shutdown( const char *finalmsg, killtype_t type ); |