1*d9f75844SAndroid Build Coastguard Worker /* 2*d9f75844SAndroid Build Coastguard Worker * Copyright 2004 The WebRTC Project Authors. All rights reserved. 3*d9f75844SAndroid Build Coastguard Worker * 4*d9f75844SAndroid Build Coastguard Worker * Use of this source code is governed by a BSD-style license 5*d9f75844SAndroid Build Coastguard Worker * that can be found in the LICENSE file in the root of the source 6*d9f75844SAndroid Build Coastguard Worker * tree. An additional intellectual property rights grant can be found 7*d9f75844SAndroid Build Coastguard Worker * in the file PATENTS. All contributing project authors may 8*d9f75844SAndroid Build Coastguard Worker * be found in the AUTHORS file in the root of the source tree. 9*d9f75844SAndroid Build Coastguard Worker */ 10*d9f75844SAndroid Build Coastguard Worker 11*d9f75844SAndroid Build Coastguard Worker #ifndef RTC_BASE_NAT_SERVER_H_ 12*d9f75844SAndroid Build Coastguard Worker #define RTC_BASE_NAT_SERVER_H_ 13*d9f75844SAndroid Build Coastguard Worker 14*d9f75844SAndroid Build Coastguard Worker #include <map> 15*d9f75844SAndroid Build Coastguard Worker #include <set> 16*d9f75844SAndroid Build Coastguard Worker 17*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/async_udp_socket.h" 18*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/nat_types.h" 19*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/proxy_server.h" 20*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/socket_address_pair.h" 21*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/socket_factory.h" 22*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/synchronization/mutex.h" 23*d9f75844SAndroid Build Coastguard Worker #include "rtc_base/thread.h" 24*d9f75844SAndroid Build Coastguard Worker 25*d9f75844SAndroid Build Coastguard Worker namespace rtc { 26*d9f75844SAndroid Build Coastguard Worker 27*d9f75844SAndroid Build Coastguard Worker // Change how routes (socketaddress pairs) are compared based on the type of 28*d9f75844SAndroid Build Coastguard Worker // NAT. The NAT server maintains a hashtable of the routes that it knows 29*d9f75844SAndroid Build Coastguard Worker // about. So these affect which routes are treated the same. 30*d9f75844SAndroid Build Coastguard Worker struct RouteCmp { 31*d9f75844SAndroid Build Coastguard Worker explicit RouteCmp(NAT* nat); 32*d9f75844SAndroid Build Coastguard Worker size_t operator()(const SocketAddressPair& r) const; 33*d9f75844SAndroid Build Coastguard Worker bool operator()(const SocketAddressPair& r1, 34*d9f75844SAndroid Build Coastguard Worker const SocketAddressPair& r2) const; 35*d9f75844SAndroid Build Coastguard Worker 36*d9f75844SAndroid Build Coastguard Worker bool symmetric; 37*d9f75844SAndroid Build Coastguard Worker }; 38*d9f75844SAndroid Build Coastguard Worker 39*d9f75844SAndroid Build Coastguard Worker // Changes how addresses are compared based on the filtering rules of the NAT. 40*d9f75844SAndroid Build Coastguard Worker struct AddrCmp { 41*d9f75844SAndroid Build Coastguard Worker explicit AddrCmp(NAT* nat); 42*d9f75844SAndroid Build Coastguard Worker size_t operator()(const SocketAddress& r) const; 43*d9f75844SAndroid Build Coastguard Worker bool operator()(const SocketAddress& r1, const SocketAddress& r2) const; 44*d9f75844SAndroid Build Coastguard Worker 45*d9f75844SAndroid Build Coastguard Worker bool use_ip; 46*d9f75844SAndroid Build Coastguard Worker bool use_port; 47*d9f75844SAndroid Build Coastguard Worker }; 48*d9f75844SAndroid Build Coastguard Worker 49*d9f75844SAndroid Build Coastguard Worker // Implements the NAT device. It listens for packets on the internal network, 50*d9f75844SAndroid Build Coastguard Worker // translates them, and sends them out over the external network. 51*d9f75844SAndroid Build Coastguard Worker // 52*d9f75844SAndroid Build Coastguard Worker // TCP connections initiated from the internal side of the NAT server are 53*d9f75844SAndroid Build Coastguard Worker // also supported, by making a connection to the NAT server's TCP address and 54*d9f75844SAndroid Build Coastguard Worker // then sending the remote address in quasi-STUN format. The connection status 55*d9f75844SAndroid Build Coastguard Worker // will be indicated back to the client as a 1 byte status code, where '0' 56*d9f75844SAndroid Build Coastguard Worker // indicates success. 57*d9f75844SAndroid Build Coastguard Worker 58*d9f75844SAndroid Build Coastguard Worker const int NAT_SERVER_UDP_PORT = 4237; 59*d9f75844SAndroid Build Coastguard Worker const int NAT_SERVER_TCP_PORT = 4238; 60*d9f75844SAndroid Build Coastguard Worker 61*d9f75844SAndroid Build Coastguard Worker class NATServer : public sigslot::has_slots<> { 62*d9f75844SAndroid Build Coastguard Worker public: 63*d9f75844SAndroid Build Coastguard Worker NATServer(NATType type, 64*d9f75844SAndroid Build Coastguard Worker SocketFactory* internal, 65*d9f75844SAndroid Build Coastguard Worker const SocketAddress& internal_udp_addr, 66*d9f75844SAndroid Build Coastguard Worker const SocketAddress& internal_tcp_addr, 67*d9f75844SAndroid Build Coastguard Worker SocketFactory* external, 68*d9f75844SAndroid Build Coastguard Worker const SocketAddress& external_ip); 69*d9f75844SAndroid Build Coastguard Worker ~NATServer() override; 70*d9f75844SAndroid Build Coastguard Worker 71*d9f75844SAndroid Build Coastguard Worker NATServer(const NATServer&) = delete; 72*d9f75844SAndroid Build Coastguard Worker NATServer& operator=(const NATServer&) = delete; 73*d9f75844SAndroid Build Coastguard Worker internal_udp_address()74*d9f75844SAndroid Build Coastguard Worker SocketAddress internal_udp_address() const { 75*d9f75844SAndroid Build Coastguard Worker return udp_server_socket_->GetLocalAddress(); 76*d9f75844SAndroid Build Coastguard Worker } 77*d9f75844SAndroid Build Coastguard Worker internal_tcp_address()78*d9f75844SAndroid Build Coastguard Worker SocketAddress internal_tcp_address() const { 79*d9f75844SAndroid Build Coastguard Worker return tcp_proxy_server_->GetServerAddress(); 80*d9f75844SAndroid Build Coastguard Worker } 81*d9f75844SAndroid Build Coastguard Worker 82*d9f75844SAndroid Build Coastguard Worker // Packets received on one of the networks. 83*d9f75844SAndroid Build Coastguard Worker void OnInternalUDPPacket(AsyncPacketSocket* socket, 84*d9f75844SAndroid Build Coastguard Worker const char* buf, 85*d9f75844SAndroid Build Coastguard Worker size_t size, 86*d9f75844SAndroid Build Coastguard Worker const SocketAddress& addr, 87*d9f75844SAndroid Build Coastguard Worker const int64_t& packet_time_us); 88*d9f75844SAndroid Build Coastguard Worker void OnExternalUDPPacket(AsyncPacketSocket* socket, 89*d9f75844SAndroid Build Coastguard Worker const char* buf, 90*d9f75844SAndroid Build Coastguard Worker size_t size, 91*d9f75844SAndroid Build Coastguard Worker const SocketAddress& remote_addr, 92*d9f75844SAndroid Build Coastguard Worker const int64_t& packet_time_us); 93*d9f75844SAndroid Build Coastguard Worker 94*d9f75844SAndroid Build Coastguard Worker private: 95*d9f75844SAndroid Build Coastguard Worker typedef std::set<SocketAddress, AddrCmp> AddressSet; 96*d9f75844SAndroid Build Coastguard Worker 97*d9f75844SAndroid Build Coastguard Worker /* Records a translation and the associated external socket. */ 98*d9f75844SAndroid Build Coastguard Worker struct TransEntry { 99*d9f75844SAndroid Build Coastguard Worker TransEntry(const SocketAddressPair& r, AsyncUDPSocket* s, NAT* nat); 100*d9f75844SAndroid Build Coastguard Worker ~TransEntry(); 101*d9f75844SAndroid Build Coastguard Worker 102*d9f75844SAndroid Build Coastguard Worker void AllowlistInsert(const SocketAddress& addr); 103*d9f75844SAndroid Build Coastguard Worker bool AllowlistContains(const SocketAddress& ext_addr); 104*d9f75844SAndroid Build Coastguard Worker 105*d9f75844SAndroid Build Coastguard Worker SocketAddressPair route; 106*d9f75844SAndroid Build Coastguard Worker AsyncUDPSocket* socket; 107*d9f75844SAndroid Build Coastguard Worker AddressSet* allowlist; 108*d9f75844SAndroid Build Coastguard Worker webrtc::Mutex mutex_; 109*d9f75844SAndroid Build Coastguard Worker }; 110*d9f75844SAndroid Build Coastguard Worker 111*d9f75844SAndroid Build Coastguard Worker typedef std::map<SocketAddressPair, TransEntry*, RouteCmp> InternalMap; 112*d9f75844SAndroid Build Coastguard Worker typedef std::map<SocketAddress, TransEntry*> ExternalMap; 113*d9f75844SAndroid Build Coastguard Worker 114*d9f75844SAndroid Build Coastguard Worker /* Creates a new entry that translates the given route. */ 115*d9f75844SAndroid Build Coastguard Worker void Translate(const SocketAddressPair& route); 116*d9f75844SAndroid Build Coastguard Worker 117*d9f75844SAndroid Build Coastguard Worker /* Determines whether the NAT would filter out a packet from this address. */ 118*d9f75844SAndroid Build Coastguard Worker bool ShouldFilterOut(TransEntry* entry, const SocketAddress& ext_addr); 119*d9f75844SAndroid Build Coastguard Worker 120*d9f75844SAndroid Build Coastguard Worker NAT* nat_; 121*d9f75844SAndroid Build Coastguard Worker SocketFactory* external_; 122*d9f75844SAndroid Build Coastguard Worker SocketAddress external_ip_; 123*d9f75844SAndroid Build Coastguard Worker AsyncUDPSocket* udp_server_socket_; 124*d9f75844SAndroid Build Coastguard Worker ProxyServer* tcp_proxy_server_; 125*d9f75844SAndroid Build Coastguard Worker InternalMap* int_map_; 126*d9f75844SAndroid Build Coastguard Worker ExternalMap* ext_map_; 127*d9f75844SAndroid Build Coastguard Worker }; 128*d9f75844SAndroid Build Coastguard Worker 129*d9f75844SAndroid Build Coastguard Worker } // namespace rtc 130*d9f75844SAndroid Build Coastguard Worker 131*d9f75844SAndroid Build Coastguard Worker #endif // RTC_BASE_NAT_SERVER_H_ 132