From 04843f42349344e43c581e6236699d9b2a1c4ac6 Mon Sep 17 00:00:00 2001
From: Hans Dedecker <dedeckeh@gmail.com>
Date: Thu, 1 Jun 2017 14:19:42 +0200
Subject: [PATCH 1/3] 464xlat: rework process id write logic

Write the process id in the pid file immediately after the 464xlat pid file has
been openend. Before the process id was written when the parent process exits
leaving a window where no valid process id was in place in the 464xlat pid file.
This lead to issues if the 464xlat utility was launched to terminate a running
464xlat utility as it could possibly terminate a random process.
If the parent process exits the pid file is updated with the process id of the
forked 464xlat utility.
Also rework the signal handling of SIGTERM so the running 464xlat utility is
correctly terminated.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
---
 nat46/src/464xlatcfg.c | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/nat46/src/464xlatcfg.c b/nat46/src/464xlatcfg.c
index f184616..0f9ad31 100644
--- a/nat46/src/464xlatcfg.c
+++ b/nat46/src/464xlatcfg.c
@@ -1,6 +1,7 @@
 /* 464xlatcfg.c
  *
  * Copyright (c) 2015 Steven Barth <cyrus@openwrt.org>
+ * Copyright (c) 2017 Hans Dedecker <dedeckeh@gmail.com>
  *
  * This program is free software; you can redistribute it and/or modify
  * it under the terms of the GNU General Public License version 2
@@ -40,8 +41,9 @@ int main(int argc, const char *argv[])
 	snprintf(buf, sizeof(buf), "/var/run/%s.pid", argv[1]);
 	FILE *fp = fopen(buf, "r");
 	if (fp) {
-		fscanf(fp, "%d", &pid);
-		kill(pid, SIGTERM);
+		if (fscanf(fp, "%d", &pid) == 1)
+			kill(pid, SIGTERM);
+
 		unlink(buf);
 		fclose(fp);
 	}
@@ -52,7 +54,9 @@ int main(int argc, const char *argv[])
 	if (!argv[3] || !argv[4] || !(fp = fopen(buf, "wx")))
 		return 1;
 
-	signal(SIGTERM, sighandler);
+	signal(SIGTERM, SIG_DFL);
+	setvbuf(fp, NULL, _IOLBF, 0);
+	fprintf(fp, "%d\n", getpid());
 
 	prefix[sizeof(prefix) - 1] = 0;
 	strncpy(prefix, argv[3], sizeof(prefix) - 1);
@@ -133,6 +137,7 @@ int main(int argc, const char *argv[])
 		fclose(stderr);
 		chdir("/");
 		setsid();
+		signal(SIGTERM, sighandler);
 		pause();
 
 		nat46 = fopen("/proc/net/nat46/control", "w");
@@ -141,6 +146,7 @@ int main(int argc, const char *argv[])
 			fclose(nat46);
 		}
 	} else {
+		rewind(fp);
 		fprintf(fp, "%d\n", pid);
 	}
 	

From 126c22851347fbe0687c8e9718b8e06005f43045 Mon Sep 17 00:00:00 2001
From: Hans Dedecker <dedeckeh@gmail.com>
Date: Fri, 2 Jun 2017 15:35:58 +0200
Subject: [PATCH 2/3] 464xlat: fix white space errors

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
---
 nat46/src/464xlatcfg.c | 22 +++++++++++-----------
 1 file changed, 11 insertions(+), 11 deletions(-)

diff --git a/nat46/src/464xlatcfg.c b/nat46/src/464xlatcfg.c
index 0f9ad31..288733e 100644
--- a/nat46/src/464xlatcfg.c
+++ b/nat46/src/464xlatcfg.c
@@ -32,12 +32,12 @@ int main(int argc, const char *argv[])
 {
 	char buf[INET6_ADDRSTRLEN], prefix[INET6_ADDRSTRLEN + 4];
 	int pid;
-	
+
 	if (argc <= 1) {
 		fprintf(stderr, "Usage: %s <name> [ifname] [ipv6prefix] [ipv4addr] [ipv6addr]\n", argv[0]);
 		return 1;
 	}
-	
+
 	snprintf(buf, sizeof(buf), "/var/run/%s.pid", argv[1]);
 	FILE *fp = fopen(buf, "r");
 	if (fp) {
@@ -47,10 +47,10 @@ int main(int argc, const char *argv[])
 		unlink(buf);
 		fclose(fp);
 	}
-	
+
 	if (!argv[2])
 		return 0;
-	
+
 	if (!argv[3] || !argv[4] || !(fp = fopen(buf, "wx")))
 		return 1;
 
@@ -74,7 +74,7 @@ int main(int argc, const char *argv[])
 		strcat(prefix, "/96");
 		freeaddrinfo(res);
 	}
-		
+
 	int i = 0;
 	int sock;
 	struct sockaddr_in6 saddr;
@@ -102,7 +102,7 @@ int main(int argc, const char *argv[])
 		sleep(3);
 		i++;
 	} while (i < 3);
-	
+
 	struct ipv6_mreq mreq = {saddr.sin6_addr, if_nametoindex(argv[2])};
 	if (!argv[5]) {
 		if (IN6_IS_ADDR_LINKLOCAL(&mreq.ipv6mr_multiaddr))
@@ -115,21 +115,21 @@ int main(int argc, const char *argv[])
 	} else if (inet_pton(AF_INET6, argv[5], &mreq.ipv6mr_multiaddr) != 1) {
 		return 1;
 	}
-	
+
 	if (setsockopt(sock, SOL_IPV6, IPV6_JOIN_ANYCAST, &mreq, sizeof(mreq)))
 		return 3;
-	
+
 	inet_ntop(AF_INET6, &mreq.ipv6mr_multiaddr, buf, sizeof(buf));
 	fputs(buf, stdout);
 	fputc('\n', stdout);
 	fflush(stdout);
-	
+
 	FILE *nat46 = fopen("/proc/net/nat46/control", "w");
 	if (!nat46 || fprintf(nat46, "add %s\nconfig %s local.style NONE local.v4 %s/32 local.v6 %s/128 "
 			"remote.style RFC6052 remote.v6 %s\n", argv[1], argv[1], argv[4], buf, prefix) < 0 ||
 			fclose(nat46))
 		return 4;
-	
+
 	if (!(pid = fork())) {
 		fclose(fp);
 		fclose(stdin);
@@ -149,6 +149,6 @@ int main(int argc, const char *argv[])
 		rewind(fp);
 		fprintf(fp, "%d\n", pid);
 	}
-	
+
 	return 0;
 }

From eba05ae68203eafcccacefd546eac818cc0bb860 Mon Sep 17 00:00:00 2001
From: Hans Dedecker <dedeckeh@gmail.com>
Date: Fri, 2 Jun 2017 15:38:10 +0200
Subject: [PATCH 3/3] 464xlat: add ip rule logic in the proto shell handler

Integrate ip rule support for the prelocal routing table lookup in the 464xlat
proto shell handler as netifd does not install anymore an ip rule for the prelocal
routing table.
The prelocal routing table ip rule needs to be installed before the local routing
table ip rule so the 464xlat traffic with as destination the IPv6 anycast address
is routed to the nat46 module otherwise the traffic will be dropped in the IPv6
local table.

Signed-off-by: Hans Dedecker <dedeckeh@gmail.com>
---
 nat46/Makefile         |  4 ++--
 nat46/files/464xlat.sh | 20 +++++++++++++++++++-
 2 files changed, 21 insertions(+), 3 deletions(-)

diff --git a/nat46/Makefile b/nat46/Makefile
index 3af8718..1140bcf 100644
--- a/nat46/Makefile
+++ b/nat46/Makefile
@@ -9,7 +9,7 @@ include $(TOPDIR)/rules.mk
 include $(INCLUDE_DIR)/kernel.mk
 
 PKG_NAME:=nat46
-PKG_VERSION:=9
+PKG_VERSION:=10
 PKG_RELEASE:=$(PKG_SOURCE_VERSION)
 
 PKG_SOURCE:=$(PKG_NAME)-$(PKG_VERSION).tar.xz
@@ -33,7 +33,7 @@ endef
 define Package/464xlat
   SECTION:=net
   CATEGORY:=Network
-  DEPENDS:=+kmod-nat46
+  DEPENDS:=+kmod-nat46 +ip
   TITLE:=464xlat CLAT support
 endef
 
diff --git a/nat46/files/464xlat.sh b/nat46/files/464xlat.sh
index 2ec1094..4b3cd1c 100755
--- a/nat46/files/464xlat.sh
+++ b/nat46/files/464xlat.sh
@@ -43,6 +43,11 @@ proto_464xlat_setup() {
 		return
 	fi
 
+	ip -6 rule del from all lookup local
+	ip -6 rule add from all lookup local pref 1
+	ip -6 rule add to $ip6addr lookup prelocal pref 0
+	echo "$ip6addr" > /tmp/464-$cfg-anycast
+
 	proto_init_update "$link" 1
 	proto_add_ipv4_route "0.0.0.0" 0 "" "" 2048
 	proto_add_ipv6_route $ip6addr 128 "" "" "" "" 128
@@ -74,7 +79,20 @@ proto_464xlat_setup() {
 }
 
 proto_464xlat_teardown() {
-	464xlatcfg "464-$1"
+	local cfg="$1"
+	local link="464-$cfg"
+	local ip6addr=$(cat /tmp/464-$cfg-anycast)
+	local anycast_active
+
+	464xlatcfg "$link"
+
+	rm -rf /tmp/464-$cfg-anycast
+	ip -6 rule del to $ip6addr lookup prelocal
+
+	if [ -z "$(ls /tmp/464-*-anycast 2>&-)" ]; then
+		ip -6 rule del from all lookup local
+		ip -6 rule add from all lookup local pref 0
+	fi
 }
 
 proto_464xlat_init_config() {