1 files changed, 192 insertions, 40 deletions
diff --git a/sys/netgraph/ng_device.c b/sys/netgraph/ng_device.c
index e4fcdfc635cb..066e3be29694 100644
--- a/sys/netgraph/ng_device.c
+++ b/sys/netgraph/ng_device.c
@@ -3,6 +3,7 @@
  *
  * Copyright (c) 2002 Mark Santcroos <marks@ripe.net>
  * Copyright (c) 2004-2005 Gleb Smirnoff <glebius@FreeBSD.org>
+ * Copyright (c) 2025 Quentin Thébault <quentin.thebault@defenso.fr>
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions
@@ -32,26 +33,28 @@
  */
 
 #if 0
-#define	DBG do { printf("ng_device: %s\n", __func__ ); } while (0)
+#define	DBG do { printf("ng_device: %s\n", __func__); } while (0)
 #else
 #define	DBG do {} while (0)
 #endif
 
 #include <sys/param.h>
+#include <sys/systm.h>
 #include <sys/conf.h>
+#include <sys/epoch.h>
+#include <sys/fcntl.h>
+#include <sys/filio.h>
 #include <sys/ioccom.h>
 #include <sys/kernel.h>
 #include <sys/malloc.h>
 #include <sys/mbuf.h>
 #include <sys/poll.h>
 #include <sys/proc.h>
-#include <sys/epoch.h>
 #include <sys/queue.h>
+#include <sys/selinfo.h>
 #include <sys/socket.h>
 #include <sys/syslog.h>
-#include <sys/systm.h>
 #include <sys/uio.h>
-#include <sys/vnode.h>
 
 #include <net/ethernet.h>
 #include <net/if.h>
@@ -116,12 +119,15 @@ struct ngd_private {
 	struct	ng_node	*node;
 	struct	ng_hook	*hook;
 	struct	cdev	*ngddev;
+	struct  selinfo rsel;
+	struct  selinfo wsel;
 	struct	mtx	ngd_mtx;
 	int 		unit;
 	int		ether_align;
 	uint16_t	flags;
 #define	NGDF_OPEN	0x0001
 #define	NGDF_RWAIT	0x0002
+#define	NGDF_DYING	0x0004
 };
 typedef struct ngd_private *priv_p;
 
@@ -135,10 +141,26 @@ static d_close_t ngdclose;
 static d_open_t ngdopen;
 static d_read_t ngdread;
 static d_write_t ngdwrite;
-#if 0
 static d_ioctl_t ngdioctl;
-#endif
 static d_poll_t ngdpoll;
+static d_kqfilter_t ngdkqfilter;
+
+static int      ngd_kqread_event(struct knote *, long);
+static int      ngd_kqwrite_event(struct knote *, long);
+static void     ngd_kqread_detach(struct knote *);
+static void     ngd_kqwrite_detach(struct knote *);
+
+static const struct filterops ngd_read_filterops = {
+	.f_isfd =   1,
+	.f_detach = ngd_kqread_detach,
+	.f_event =  ngd_kqread_event
+};
+
+static const struct filterops ngd_write_filterops = {
+	.f_isfd =   1,
+	.f_detach = ngd_kqwrite_detach,
+	.f_event =  ngd_kqwrite_event
+};
 
 static struct cdevsw ngd_cdevsw = {
 	.d_version =	D_VERSION,
@@ -146,16 +168,17 @@ static struct cdevsw ngd_cdevsw = {
 	.d_close =	ngdclose,
 	.d_read =	ngdread,
 	.d_write =	ngdwrite,
-#if 0
 	.d_ioctl =	ngdioctl,
-#endif
+	.d_kqfilter =   ngdkqfilter,
 	.d_poll =	ngdpoll,
 	.d_name =	NG_DEVICE_DEVNAME,
 };
 
-/******************************************************************************
+/*
+ *****************************************************************************
  *  Netgraph methods
- ******************************************************************************/
+ *****************************************************************************
+ */
 
 /*
  * Handle loading and unloading for this node type.
@@ -199,19 +222,24 @@ ng_device_constructor(node_p node)
 	mtx_init(&priv->readq.ifq_mtx, "ng_device queue", NULL, MTX_DEF);
 	IFQ_SET_MAXLEN(&priv->readq, ifqmaxlen);
 
+	knlist_init_mtx(&priv->rsel.si_note, &priv->ngd_mtx);
+	knlist_init_mtx(&priv->wsel.si_note, &priv->ngd_mtx);
+
 	/* Link everything together */
 	NG_NODE_SET_PRIVATE(node, priv);
 	priv->node = node;
 
 	priv->ngddev = make_dev(&ngd_cdevsw, priv->unit, UID_ROOT,
 	    GID_WHEEL, 0600, NG_DEVICE_DEVNAME "%d", priv->unit);
-	if(priv->ngddev == NULL) {
-		printf("%s(): make_dev() failed\n",__func__);
+	if (priv->ngddev == NULL) {
+		printf("%s(): make_dev() failed\n", __func__);
+		knlist_destroy(&priv->rsel.si_note);
+		knlist_destroy(&priv->wsel.si_note);
 		mtx_destroy(&priv->ngd_mtx);
 		mtx_destroy(&priv->readq.ifq_mtx);
 		free_unr(ngd_unit, priv->unit);
 		free(priv, M_NETGRAPH);
-		return(EINVAL);
+		return (EINVAL);
 	}
 	/* XXX: race here? */
 	priv->ngddev->si_drv1 = priv;
@@ -221,7 +249,7 @@ ng_device_constructor(node_p node)
 		log(LOG_WARNING, "%s: can't acquire netgraph name\n",
 		    devtoname(priv->ngddev));
 
-	return(0);
+	return (0);
 }
 
 /*
@@ -289,7 +317,7 @@ ng_device_newhook(node_p node, hook_p hook, const char *name)
 
 	priv->hook = hook;
 
-	return(0);
+	return (0);
 }
 
 /*
@@ -320,9 +348,11 @@ ng_device_rcvdata(hook_p hook, item_p item)
 		priv->flags &= ~NGDF_RWAIT;
 		wakeup(priv);
 	}
+	selwakeup(&priv->rsel);
+	KNOTE_LOCKED(&priv->rsel.si_note, 0);
 	mtx_unlock(&priv->ngd_mtx);
 
-	return(0);
+	return (0);
 }
 
 /*
@@ -335,9 +365,22 @@ ng_device_disconnect(hook_p hook)
 
 	DBG;
 
+	mtx_lock(&priv->ngd_mtx);
+	priv->flags |= NGDF_DYING;
+	wakeup(priv);
+	mtx_unlock(&priv->ngd_mtx);
+
 	destroy_dev(priv->ngddev);
+
+	knlist_clear(&priv->rsel.si_note, 0);
+	knlist_clear(&priv->wsel.si_note, 0);
+	knlist_destroy(&priv->rsel.si_note);
+	knlist_destroy(&priv->wsel.si_note);
 	mtx_destroy(&priv->ngd_mtx);
 
+	seldrain(&priv->rsel);
+	seldrain(&priv->wsel);
+
 	IF_DRAIN(&priv->readq);
 	mtx_destroy(&(priv)->readq.ifq_mtx);
 
@@ -347,7 +390,7 @@ ng_device_disconnect(hook_p hook)
 
 	ng_rmnode_self(NG_HOOK_NODE(hook));
 
-	return(0);
+	return (0);
 }
 
 /*
@@ -360,9 +403,11 @@ ng_device_shutdown(node_p node)
 	return (0);
 }
 
-/******************************************************************************
+/*
+ *****************************************************************************
  *  Device methods
- ******************************************************************************/
+ *****************************************************************************
+ */
 
 /*
  * the device is opened
@@ -370,7 +415,7 @@ ng_device_shutdown(node_p node)
 static int
 ngdopen(struct cdev *dev, int flag, int mode, struct thread *td)
 {
-	priv_p	priv = (priv_p )dev->si_drv1;
+	priv_p	priv = (priv_p)dev->si_drv1;
 
 	DBG;
 
@@ -378,7 +423,7 @@ ngdopen(struct cdev *dev, int flag, int mode, struct thread *td)
 	priv->flags |= NGDF_OPEN;
 	mtx_unlock(&priv->ngd_mtx);
 
-	return(0);
+	return (0);
 }
 
 /*
@@ -387,14 +432,44 @@ ngdopen(struct cdev *dev, int flag, int mode, struct thread *td)
 static int
 ngdclose(struct cdev *dev, int flag, int mode, struct thread *td)
 {
-	priv_p	priv = (priv_p )dev->si_drv1;
+	priv_p	priv = (priv_p)dev->si_drv1;
 
 	DBG;
 	mtx_lock(&priv->ngd_mtx);
 	priv->flags &= ~NGDF_OPEN;
 	mtx_unlock(&priv->ngd_mtx);
 
-	return(0);
+	return (0);
+}
+
+/*
+ * Process IOCTLs
+ *
+ * At this stage we only return success on FIONBIO to allow setting the device
+ * as non-blocking.
+ *
+ */
+static int
+ngdioctl(struct cdev *dev, u_long cmd, caddr_t data, int flag,
+    struct thread *td)
+{
+    int error;
+
+    switch (cmd) {
+    case FIONBIO:
+        error = 0;
+        break;
+    case FIOASYNC:
+        if (*(int *)data != 0)
+            error = EINVAL;
+        else
+            error = 0;
+        break;
+    default:
+        error = ENOTTY;
+    }
+
+    return (error);
 }
 
 #if 0	/*
@@ -408,21 +483,22 @@ ngdclose(struct cdev *dev, int flag, int mode, struct thread *td)
  *
  */
 static int
-ngdioctl(struct cdev *dev, u_long cmd, caddr_t addr, int flag, struct thread *td)
+ngdioctl(struct cdev *dev, u_long cmd, caddr_t addr, int flag,
+    struct thread *td)
 {
 	struct ngd_softc *sc = &ngd_softc;
-	struct ngd_connection * connection = NULL;
-	struct ngd_connection * tmp;
+	struct ngd_connection *connection = NULL;
+	struct ngd_connection *tmp;
 	int error = 0;
 	struct ng_mesg *msg;
-	struct ngd_param_s * datap;
+	struct ngd_param_s *datap;
 
 	DBG;
 
 	NG_MKMESSAGE(msg, NGM_DEVICE_COOKIE, cmd, sizeof(struct ngd_param_s),
 			M_NOWAIT);
 	if (msg == NULL) {
-		printf("%s(): msg == NULL\n",__func__);
+		printf("%s(): msg == NULL\n", __func__);
 		goto nomsg;
 	}
 
@@ -431,12 +507,12 @@ ngdioctl(struct cdev *dev, u_long cmd, caddr_t addr, int flag, struct thread *td
 	datap->p = addr;
 
 	NG_SEND_MSG_HOOK(error, sc->node, msg, connection->active_hook, 0);
-	if(error)
-		printf("%s(): NG_SEND_MSG_HOOK error: %d\n",__func__,error);
+	if (error)
+		printf("%s(): NG_SEND_MSG_HOOK error: %d\n", __func__, error);
 
 nomsg:
 
-	return(0);
+	return (0);
 }
 #endif /* if 0 */
 
@@ -447,7 +523,7 @@ nomsg:
 static int
 ngdread(struct cdev *dev, struct uio *uio, int flag)
 {
-	priv_p	priv = (priv_p )dev->si_drv1;
+	priv_p	priv = (priv_p)dev->si_drv1;
 	struct mbuf *m;
 	int len, error = 0;
 
@@ -457,13 +533,17 @@ ngdread(struct cdev *dev, struct uio *uio, int flag)
 	do {
 		IF_DEQUEUE(&priv->readq, m);
 		if (m == NULL) {
-			if (flag & IO_NDELAY)
+			if (flag & O_NONBLOCK)
 				return (EWOULDBLOCK);
 			mtx_lock(&priv->ngd_mtx);
 			priv->flags |= NGDF_RWAIT;
-			if ((error = msleep(priv, &priv->ngd_mtx,
-			    PDROP | PCATCH | PZERO,
-			    "ngdread", 0)) != 0)
+			if (priv->flags & NGDF_DYING) {
+				mtx_unlock(&priv->ngd_mtx);
+				error = ENXIO;
+			} else
+				error = mtx_sleep(priv, &priv->ngd_mtx,
+				    PDROP | PCATCH, "ngdread", 0);
+			if (error != 0)
 				return (error);
 		}
 	} while (m == NULL);
@@ -483,14 +563,14 @@ ngdread(struct cdev *dev, struct uio *uio, int flag)
 
 /*
  * This function is called when our device is written to.
- * We read the data from userland into mbuf chain and pass it to the remote hook.
- *
+ * We read the data from userland into mbuf chain and pass it to the remote
+ * hook.
  */
 static int
 ngdwrite(struct cdev *dev, struct uio *uio, int flag)
 {
 	struct epoch_tracker et;
-	priv_p	priv = (priv_p )dev->si_drv1;
+	priv_p	priv = (priv_p)dev->si_drv1;
 	struct mbuf *m;
 	int error = 0;
 
@@ -506,9 +586,12 @@ ngdwrite(struct cdev *dev, struct uio *uio, int flag)
 	if (m == NULL)
 		return (ENOBUFS);
 
+	/* Setting VNET is required if connecting to a ng_bridge. */
+	CURVNET_SET(priv->node->nd_vnet);
 	NET_EPOCH_ENTER(et);
 	NG_SEND_DATA_ONLY(error, priv->hook, m);
 	NET_EPOCH_EXIT(et);
+	CURVNET_RESTORE();
 
 	return (error);
 }
@@ -520,7 +603,7 @@ ngdwrite(struct cdev *dev, struct uio *uio, int flag)
 static int
 ngdpoll(struct cdev *dev, int events, struct thread *td)
 {
-	priv_p	priv = (priv_p )dev->si_drv1;
+	priv_p	priv = (priv_p)dev->si_drv1;
 	int revents = 0;
 
 	if (events & (POLLIN | POLLRDNORM) &&
@@ -529,3 +612,72 @@ ngdpoll(struct cdev *dev, int events, struct thread *td)
 
 	return (revents);
 }
+
+static void
+ngd_kqread_detach(struct knote *kn)
+{
+	priv_p  priv = (priv_p)kn->kn_hook;
+
+	knlist_remove(&priv->rsel.si_note, kn, 0);
+}
+
+static int
+ngd_kqread_event(struct knote *kn, long hint)
+{
+	priv_p priv = (priv_p)kn->kn_hook;
+	struct mbuf *m;
+
+	IFQ_LOCK(&priv->readq);
+	if (IFQ_IS_EMPTY(&priv->readq)) {
+		kn->kn_data = 0;
+	} else {
+		/*
+		 * Since the queue does not store the total number of bytes that
+		 * could be read across all packets and we do not want to
+		 * traverse the whole queue, we only report the number of bytes
+		 * for the first packet in the queue.
+		 */
+		IF_POLL(&priv->readq, m);
+		kn->kn_data = m->m_len;
+	}
+	IFQ_UNLOCK(&priv->readq);
+
+	return (kn->kn_data > 0);
+}
+
+static void
+ngd_kqwrite_detach(struct knote *kn)
+{
+	priv_p  priv = (priv_p)kn->kn_hook;
+
+	knlist_remove(&priv->wsel.si_note, kn, 0);
+}
+
+static int
+ngd_kqwrite_event(struct knote *kn, long hint)
+{
+	kn->kn_data = IP_MAXPACKET;
+
+	return (1);
+}
+
+static int
+ngdkqfilter(struct cdev *dev, struct knote *kn)
+{
+	priv_p priv = (priv_p)dev->si_drv1;
+
+	switch (kn->kn_filter) {
+	case EVFILT_READ:
+		kn->kn_fop = &ngd_read_filterops;
+		kn->kn_hook = priv;
+		knlist_add(&priv->rsel.si_note, kn, 0);
+		return (0);
+	case EVFILT_WRITE:
+		kn->kn_fop = &ngd_write_filterops;
+		kn->kn_hook = priv;
+		knlist_add(&priv->wsel.si_note, kn, 0);
+		return (0);
+	default:
+		return (EINVAL);
+	}
+}