3 * Linux INET6 implementation
6 * Pedro Roque <roque@di.fc.ul.pt>
8 * $Id: tcp_ipv6.c,v 1.144 2002/02/01 22:01:04 davem Exp $
11 * linux/net/ipv4/tcp.c
12 * linux/net/ipv4/tcp_input.c
13 * linux/net/ipv4/tcp_output.c
16 * Hideaki YOSHIFUJI : sin6_scope_id support
17 * YOSHIFUJI Hideaki @USAGI and: Support IPV6_V6ONLY socket option, which
18 * Alexey Kuznetsov allow both IPv4 and IPv6 sockets to bind
19 * a single port at the same time.
20 * YOSHIFUJI Hideaki @USAGI: convert /proc/net/tcp6 to seq_file.
22 * This program is free software; you can redistribute it and/or
23 * modify it under the terms of the GNU General Public License
24 * as published by the Free Software Foundation; either version
25 * 2 of the License, or (at your option) any later version.
28 #include <linux/module.h>
29 #include <linux/errno.h>
30 #include <linux/types.h>
31 #include <linux/socket.h>
32 #include <linux/sockios.h>
33 #include <linux/net.h>
34 #include <linux/jiffies.h>
36 #include <linux/in6.h>
37 #include <linux/netdevice.h>
38 #include <linux/init.h>
39 #include <linux/jhash.h>
40 #include <linux/ipsec.h>
41 #include <linux/times.h>
43 #include <linux/ipv6.h>
44 #include <linux/icmpv6.h>
45 #include <linux/random.h>
48 #include <net/ndisc.h>
49 #include <net/inet6_hashtables.h>
50 #include <net/inet6_connection_sock.h>
52 #include <net/transp_v6.h>
53 #include <net/addrconf.h>
54 #include <net/ip6_route.h>
55 #include <net/ip6_checksum.h>
56 #include <net/inet_ecn.h>
57 #include <net/protocol.h>
59 #include <net/addrconf.h>
61 #include <net/dsfield.h>
62 #include <net/timewait_sock.h>
64 #include <asm/uaccess.h>
66 #include <linux/proc_fs.h>
67 #include <linux/seq_file.h>
69 #include <linux/crypto.h>
70 #include <linux/scatterlist.h>
72 /* Socket used for sending RSTs and ACKs */
73 static struct socket *tcp6_socket;
75 static void tcp_v6_send_reset(struct sock *sk, struct sk_buff *skb);
76 static void tcp_v6_reqsk_send_ack(struct sk_buff *skb, struct request_sock *req);
77 static void tcp_v6_send_check(struct sock *sk, int len,
80 static int tcp_v6_do_rcv(struct sock *sk, struct sk_buff *skb);
82 static struct inet_connection_sock_af_ops ipv6_mapped;
83 static struct inet_connection_sock_af_ops ipv6_specific;
84 #ifdef CONFIG_TCP_MD5SIG
85 static struct tcp_sock_af_ops tcp_sock_ipv6_specific;
86 static struct tcp_sock_af_ops tcp_sock_ipv6_mapped_specific;
89 static int tcp_v6_get_port(struct sock *sk, unsigned short snum)
91 return inet_csk_get_port(&tcp_hashinfo, sk, snum,
92 inet6_csk_bind_conflict);
95 static void tcp_v6_hash(struct sock *sk)
97 if (sk->sk_state != TCP_CLOSE) {
98 if (inet_csk(sk)->icsk_af_ops == &ipv6_mapped) {
103 __inet6_hash(&tcp_hashinfo, sk);
108 static __inline__ __sum16 tcp_v6_check(struct tcphdr *th, int len,
109 struct in6_addr *saddr,
110 struct in6_addr *daddr,
113 return csum_ipv6_magic(saddr, daddr, len, IPPROTO_TCP, base);
116 static __u32 tcp_v6_init_sequence(struct sk_buff *skb)
118 return secure_tcpv6_sequence_number(skb->nh.ipv6h->daddr.s6_addr32,
119 skb->nh.ipv6h->saddr.s6_addr32,
124 static int tcp_v6_connect(struct sock *sk, struct sockaddr *uaddr,
127 struct sockaddr_in6 *usin = (struct sockaddr_in6 *) uaddr;
128 struct inet_sock *inet = inet_sk(sk);
129 struct inet_connection_sock *icsk = inet_csk(sk);
130 struct ipv6_pinfo *np = inet6_sk(sk);
131 struct tcp_sock *tp = tcp_sk(sk);
132 struct in6_addr *saddr = NULL, *final_p = NULL, final;
134 struct dst_entry *dst;
138 if (addr_len < SIN6_LEN_RFC2133)
141 if (usin->sin6_family != AF_INET6)
142 return(-EAFNOSUPPORT);
144 memset(&fl, 0, sizeof(fl));
147 fl.fl6_flowlabel = usin->sin6_flowinfo&IPV6_FLOWINFO_MASK;
148 IP6_ECN_flow_init(fl.fl6_flowlabel);
149 if (fl.fl6_flowlabel&IPV6_FLOWLABEL_MASK) {
150 struct ip6_flowlabel *flowlabel;
151 flowlabel = fl6_sock_lookup(sk, fl.fl6_flowlabel);
152 if (flowlabel == NULL)
154 ipv6_addr_copy(&usin->sin6_addr, &flowlabel->dst);
155 fl6_sock_release(flowlabel);
160 * connect() to INADDR_ANY means loopback (BSD'ism).
163 if(ipv6_addr_any(&usin->sin6_addr))
164 usin->sin6_addr.s6_addr[15] = 0x1;
166 addr_type = ipv6_addr_type(&usin->sin6_addr);
168 if(addr_type & IPV6_ADDR_MULTICAST)
171 if (addr_type&IPV6_ADDR_LINKLOCAL) {
172 if (addr_len >= sizeof(struct sockaddr_in6) &&
173 usin->sin6_scope_id) {
174 /* If interface is set while binding, indices
177 if (sk->sk_bound_dev_if &&
178 sk->sk_bound_dev_if != usin->sin6_scope_id)
181 sk->sk_bound_dev_if = usin->sin6_scope_id;
184 /* Connect to link-local address requires an interface */
185 if (!sk->sk_bound_dev_if)
189 if (tp->rx_opt.ts_recent_stamp &&
190 !ipv6_addr_equal(&np->daddr, &usin->sin6_addr)) {
191 tp->rx_opt.ts_recent = 0;
192 tp->rx_opt.ts_recent_stamp = 0;
196 ipv6_addr_copy(&np->daddr, &usin->sin6_addr);
197 np->flow_label = fl.fl6_flowlabel;
203 if (addr_type == IPV6_ADDR_MAPPED) {
204 u32 exthdrlen = icsk->icsk_ext_hdr_len;
205 struct sockaddr_in sin;
207 SOCK_DEBUG(sk, "connect: ipv4 mapped\n");
209 if (__ipv6_only_sock(sk))
212 sin.sin_family = AF_INET;
213 sin.sin_port = usin->sin6_port;
214 sin.sin_addr.s_addr = usin->sin6_addr.s6_addr32[3];
216 icsk->icsk_af_ops = &ipv6_mapped;
217 sk->sk_backlog_rcv = tcp_v4_do_rcv;
218 #ifdef CONFIG_TCP_MD5SIG
219 tp->af_specific = &tcp_sock_ipv6_mapped_specific;
222 err = tcp_v4_connect(sk, (struct sockaddr *)&sin, sizeof(sin));
225 icsk->icsk_ext_hdr_len = exthdrlen;
226 icsk->icsk_af_ops = &ipv6_specific;
227 sk->sk_backlog_rcv = tcp_v6_do_rcv;
228 #ifdef CONFIG_TCP_MD5SIG
229 tp->af_specific = &tcp_sock_ipv6_specific;
233 ipv6_addr_set(&np->saddr, 0, 0, htonl(0x0000FFFF),
235 ipv6_addr_set(&np->rcv_saddr, 0, 0, htonl(0x0000FFFF),
242 if (!ipv6_addr_any(&np->rcv_saddr))
243 saddr = &np->rcv_saddr;
245 fl.proto = IPPROTO_TCP;
246 ipv6_addr_copy(&fl.fl6_dst, &np->daddr);
247 ipv6_addr_copy(&fl.fl6_src,
248 (saddr ? saddr : &np->saddr));
249 fl.oif = sk->sk_bound_dev_if;
250 fl.fl_ip_dport = usin->sin6_port;
251 fl.fl_ip_sport = inet->sport;
253 if (np->opt && np->opt->srcrt) {
254 struct rt0_hdr *rt0 = (struct rt0_hdr *)np->opt->srcrt;
255 ipv6_addr_copy(&final, &fl.fl6_dst);
256 ipv6_addr_copy(&fl.fl6_dst, rt0->addr);
260 security_sk_classify_flow(sk, &fl);
262 err = ip6_dst_lookup(sk, &dst, &fl);
266 ipv6_addr_copy(&fl.fl6_dst, final_p);
268 if ((err = xfrm_lookup(&dst, &fl, sk, 0)) < 0)
273 ipv6_addr_copy(&np->rcv_saddr, saddr);
276 /* set the source address */
277 ipv6_addr_copy(&np->saddr, saddr);
278 inet->rcv_saddr = LOOPBACK4_IPV6;
280 sk->sk_gso_type = SKB_GSO_TCPV6;
281 __ip6_dst_store(sk, dst, NULL, NULL);
283 icsk->icsk_ext_hdr_len = 0;
285 icsk->icsk_ext_hdr_len = (np->opt->opt_flen +
288 tp->rx_opt.mss_clamp = IPV6_MIN_MTU - sizeof(struct tcphdr) - sizeof(struct ipv6hdr);
290 inet->dport = usin->sin6_port;
292 tcp_set_state(sk, TCP_SYN_SENT);
293 err = inet6_hash_connect(&tcp_death_row, sk);
298 tp->write_seq = secure_tcpv6_sequence_number(np->saddr.s6_addr32,
303 err = tcp_connect(sk);
310 tcp_set_state(sk, TCP_CLOSE);
314 sk->sk_route_caps = 0;
318 static void tcp_v6_err(struct sk_buff *skb, struct inet6_skb_parm *opt,
319 int type, int code, int offset, __be32 info)
321 struct ipv6hdr *hdr = (struct ipv6hdr*)skb->data;
322 const struct tcphdr *th = (struct tcphdr *)(skb->data+offset);
323 struct ipv6_pinfo *np;
329 sk = inet6_lookup(&tcp_hashinfo, &hdr->daddr, th->dest, &hdr->saddr,
330 th->source, skb->dev->ifindex);
333 ICMP6_INC_STATS_BH(__in6_dev_get(skb->dev), ICMP6_MIB_INERRORS);
337 if (sk->sk_state == TCP_TIME_WAIT) {
338 inet_twsk_put(inet_twsk(sk));
343 if (sock_owned_by_user(sk))
344 NET_INC_STATS_BH(LINUX_MIB_LOCKDROPPEDICMPS);
346 if (sk->sk_state == TCP_CLOSE)
350 seq = ntohl(th->seq);
351 if (sk->sk_state != TCP_LISTEN &&
352 !between(seq, tp->snd_una, tp->snd_nxt)) {
353 NET_INC_STATS_BH(LINUX_MIB_OUTOFWINDOWICMPS);
359 if (type == ICMPV6_PKT_TOOBIG) {
360 struct dst_entry *dst = NULL;
362 if (sock_owned_by_user(sk))
364 if ((1 << sk->sk_state) & (TCPF_LISTEN | TCPF_CLOSE))
367 /* icmp should have updated the destination cache entry */
368 dst = __sk_dst_check(sk, np->dst_cookie);
371 struct inet_sock *inet = inet_sk(sk);
374 /* BUGGG_FUTURE: Again, it is not clear how
375 to handle rthdr case. Ignore this complexity
378 memset(&fl, 0, sizeof(fl));
379 fl.proto = IPPROTO_TCP;
380 ipv6_addr_copy(&fl.fl6_dst, &np->daddr);
381 ipv6_addr_copy(&fl.fl6_src, &np->saddr);
382 fl.oif = sk->sk_bound_dev_if;
383 fl.fl_ip_dport = inet->dport;
384 fl.fl_ip_sport = inet->sport;
385 security_skb_classify_flow(skb, &fl);
387 if ((err = ip6_dst_lookup(sk, &dst, &fl))) {
388 sk->sk_err_soft = -err;
392 if ((err = xfrm_lookup(&dst, &fl, sk, 0)) < 0) {
393 sk->sk_err_soft = -err;
400 if (inet_csk(sk)->icsk_pmtu_cookie > dst_mtu(dst)) {
401 tcp_sync_mss(sk, dst_mtu(dst));
402 tcp_simple_retransmit(sk);
403 } /* else let the usual retransmit timer handle it */
408 icmpv6_err_convert(type, code, &err);
410 /* Might be for an request_sock */
411 switch (sk->sk_state) {
412 struct request_sock *req, **prev;
414 if (sock_owned_by_user(sk))
417 req = inet6_csk_search_req(sk, &prev, th->dest, &hdr->daddr,
418 &hdr->saddr, inet6_iif(skb));
422 /* ICMPs are not backlogged, hence we cannot get
423 * an established socket here.
425 BUG_TRAP(req->sk == NULL);
427 if (seq != tcp_rsk(req)->snt_isn) {
428 NET_INC_STATS_BH(LINUX_MIB_OUTOFWINDOWICMPS);
432 inet_csk_reqsk_queue_drop(sk, req, prev);
436 case TCP_SYN_RECV: /* Cannot happen.
437 It can, it SYNs are crossed. --ANK */
438 if (!sock_owned_by_user(sk)) {
440 sk->sk_error_report(sk); /* Wake people up to see the error (see connect in sock.c) */
444 sk->sk_err_soft = err;
448 if (!sock_owned_by_user(sk) && np->recverr) {
450 sk->sk_error_report(sk);
452 sk->sk_err_soft = err;
460 static int tcp_v6_send_synack(struct sock *sk, struct request_sock *req,
461 struct dst_entry *dst)
463 struct inet6_request_sock *treq = inet6_rsk(req);
464 struct ipv6_pinfo *np = inet6_sk(sk);
465 struct sk_buff * skb;
466 struct ipv6_txoptions *opt = NULL;
467 struct in6_addr * final_p = NULL, final;
471 memset(&fl, 0, sizeof(fl));
472 fl.proto = IPPROTO_TCP;
473 ipv6_addr_copy(&fl.fl6_dst, &treq->rmt_addr);
474 ipv6_addr_copy(&fl.fl6_src, &treq->loc_addr);
475 fl.fl6_flowlabel = 0;
477 fl.fl_ip_dport = inet_rsk(req)->rmt_port;
478 fl.fl_ip_sport = inet_sk(sk)->sport;
479 security_req_classify_flow(req, &fl);
484 np->rxopt.bits.osrcrt == 2 &&
486 struct sk_buff *pktopts = treq->pktopts;
487 struct inet6_skb_parm *rxopt = IP6CB(pktopts);
489 opt = ipv6_invert_rthdr(sk, (struct ipv6_rt_hdr*)(pktopts->nh.raw + rxopt->srcrt));
492 if (opt && opt->srcrt) {
493 struct rt0_hdr *rt0 = (struct rt0_hdr *) opt->srcrt;
494 ipv6_addr_copy(&final, &fl.fl6_dst);
495 ipv6_addr_copy(&fl.fl6_dst, rt0->addr);
499 err = ip6_dst_lookup(sk, &dst, &fl);
503 ipv6_addr_copy(&fl.fl6_dst, final_p);
504 if ((err = xfrm_lookup(&dst, &fl, sk, 0)) < 0)
508 skb = tcp_make_synack(sk, dst, req);
510 struct tcphdr *th = skb->h.th;
512 th->check = tcp_v6_check(th, skb->len,
513 &treq->loc_addr, &treq->rmt_addr,
514 csum_partial((char *)th, skb->len, skb->csum));
516 ipv6_addr_copy(&fl.fl6_dst, &treq->rmt_addr);
517 err = ip6_xmit(sk, skb, &fl, opt, 0);
518 err = net_xmit_eval(err);
522 if (opt && opt != np->opt)
523 sock_kfree_s(sk, opt, opt->tot_len);
528 static void tcp_v6_reqsk_destructor(struct request_sock *req)
530 if (inet6_rsk(req)->pktopts)
531 kfree_skb(inet6_rsk(req)->pktopts);
534 #ifdef CONFIG_TCP_MD5SIG
535 static struct tcp_md5sig_key *tcp_v6_md5_do_lookup(struct sock *sk,
536 struct in6_addr *addr)
538 struct tcp_sock *tp = tcp_sk(sk);
543 if (!tp->md5sig_info || !tp->md5sig_info->entries6)
546 for (i = 0; i < tp->md5sig_info->entries6; i++) {
547 if (ipv6_addr_cmp(&tp->md5sig_info->keys6[i].addr, addr) == 0)
548 return (struct tcp_md5sig_key *)&tp->md5sig_info->keys6[i];
553 static struct tcp_md5sig_key *tcp_v6_md5_lookup(struct sock *sk,
554 struct sock *addr_sk)
556 return tcp_v6_md5_do_lookup(sk, &inet6_sk(addr_sk)->daddr);
559 static struct tcp_md5sig_key *tcp_v6_reqsk_md5_lookup(struct sock *sk,
560 struct request_sock *req)
562 return tcp_v6_md5_do_lookup(sk, &inet6_rsk(req)->rmt_addr);
565 static int tcp_v6_md5_do_add(struct sock *sk, struct in6_addr *peer,
566 char *newkey, u8 newkeylen)
568 /* Add key to the list */
569 struct tcp6_md5sig_key *key;
570 struct tcp_sock *tp = tcp_sk(sk);
571 struct tcp6_md5sig_key *keys;
573 key = (struct tcp6_md5sig_key*) tcp_v6_md5_do_lookup(sk, peer);
575 /* modify existing entry - just update that one */
578 key->keylen = newkeylen;
580 /* reallocate new list if current one is full. */
581 if (!tp->md5sig_info) {
582 tp->md5sig_info = kzalloc(sizeof(*tp->md5sig_info), GFP_ATOMIC);
583 if (!tp->md5sig_info) {
588 tcp_alloc_md5sig_pool();
589 if (tp->md5sig_info->alloced6 == tp->md5sig_info->entries6) {
590 keys = kmalloc((sizeof (tp->md5sig_info->keys6[0]) *
591 (tp->md5sig_info->entries6 + 1)), GFP_ATOMIC);
594 tcp_free_md5sig_pool();
599 if (tp->md5sig_info->entries6)
600 memmove(keys, tp->md5sig_info->keys6,
601 (sizeof (tp->md5sig_info->keys6[0]) *
602 tp->md5sig_info->entries6));
604 kfree(tp->md5sig_info->keys6);
605 tp->md5sig_info->keys6 = keys;
606 tp->md5sig_info->alloced6++;
609 ipv6_addr_copy(&tp->md5sig_info->keys6[tp->md5sig_info->entries6].addr,
611 tp->md5sig_info->keys6[tp->md5sig_info->entries6].key = newkey;
612 tp->md5sig_info->keys6[tp->md5sig_info->entries6].keylen = newkeylen;
614 tp->md5sig_info->entries6++;
619 static int tcp_v6_md5_add_func(struct sock *sk, struct sock *addr_sk,
620 u8 *newkey, __u8 newkeylen)
622 return tcp_v6_md5_do_add(sk, &inet6_sk(addr_sk)->daddr,
626 static int tcp_v6_md5_do_del(struct sock *sk, struct in6_addr *peer)
628 struct tcp_sock *tp = tcp_sk(sk);
631 for (i = 0; i < tp->md5sig_info->entries6; i++) {
632 if (ipv6_addr_cmp(&tp->md5sig_info->keys6[i].addr, peer) == 0) {
634 kfree(tp->md5sig_info->keys6[i].key);
635 tp->md5sig_info->entries6--;
637 if (tp->md5sig_info->entries6 == 0) {
638 kfree(tp->md5sig_info->keys6);
639 tp->md5sig_info->keys6 = NULL;
641 tcp_free_md5sig_pool();
645 /* shrink the database */
646 if (tp->md5sig_info->entries6 != i)
647 memmove(&tp->md5sig_info->keys6[i],
648 &tp->md5sig_info->keys6[i+1],
649 (tp->md5sig_info->entries6 - i)
650 * sizeof (tp->md5sig_info->keys6[0]));
657 static void tcp_v6_clear_md5_list (struct sock *sk)
659 struct tcp_sock *tp = tcp_sk(sk);
662 if (tp->md5sig_info->entries6) {
663 for (i = 0; i < tp->md5sig_info->entries6; i++)
664 kfree(tp->md5sig_info->keys6[i].key);
665 tp->md5sig_info->entries6 = 0;
666 tcp_free_md5sig_pool();
669 kfree(tp->md5sig_info->keys6);
670 tp->md5sig_info->keys6 = NULL;
671 tp->md5sig_info->alloced6 = 0;
673 if (tp->md5sig_info->entries4) {
674 for (i = 0; i < tp->md5sig_info->entries4; i++)
675 kfree(tp->md5sig_info->keys4[i].key);
676 tp->md5sig_info->entries4 = 0;
677 tcp_free_md5sig_pool();
680 kfree(tp->md5sig_info->keys4);
681 tp->md5sig_info->keys4 = NULL;
682 tp->md5sig_info->alloced4 = 0;
685 static int tcp_v6_parse_md5_keys (struct sock *sk, char __user *optval,
688 struct tcp_md5sig cmd;
689 struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)&cmd.tcpm_addr;
692 if (optlen < sizeof(cmd))
695 if (copy_from_user(&cmd, optval, sizeof(cmd)))
698 if (sin6->sin6_family != AF_INET6)
701 if (!cmd.tcpm_keylen) {
702 if (!tcp_sk(sk)->md5sig_info)
704 if (ipv6_addr_type(&sin6->sin6_addr) & IPV6_ADDR_MAPPED)
705 return tcp_v4_md5_do_del(sk, sin6->sin6_addr.s6_addr32[3]);
706 return tcp_v6_md5_do_del(sk, &sin6->sin6_addr);
709 if (cmd.tcpm_keylen > TCP_MD5SIG_MAXKEYLEN)
712 if (!tcp_sk(sk)->md5sig_info) {
713 struct tcp_sock *tp = tcp_sk(sk);
714 struct tcp_md5sig_info *p;
716 p = kzalloc(sizeof(struct tcp_md5sig_info), GFP_KERNEL);
723 newkey = kmalloc(cmd.tcpm_keylen, GFP_KERNEL);
726 memcpy(newkey, cmd.tcpm_key, cmd.tcpm_keylen);
727 if (ipv6_addr_type(&sin6->sin6_addr) & IPV6_ADDR_MAPPED) {
728 return tcp_v4_md5_do_add(sk, sin6->sin6_addr.s6_addr32[3],
729 newkey, cmd.tcpm_keylen);
731 return tcp_v6_md5_do_add(sk, &sin6->sin6_addr, newkey, cmd.tcpm_keylen);
734 static int tcp_v6_do_calc_md5_hash(char *md5_hash, struct tcp_md5sig_key *key,
735 struct in6_addr *saddr,
736 struct in6_addr *daddr,
737 struct tcphdr *th, int protocol,
740 struct scatterlist sg[4];
744 struct tcp_md5sig_pool *hp;
745 struct tcp6_pseudohdr *bp;
746 struct hash_desc *desc;
748 unsigned int nbytes = 0;
750 hp = tcp_get_md5sig_pool();
752 printk(KERN_WARNING "%s(): hash pool not found...\n", __FUNCTION__);
753 goto clear_hash_noput;
755 bp = &hp->md5_blk.ip6;
756 desc = &hp->md5_desc;
758 /* 1. TCP pseudo-header (RFC2460) */
759 ipv6_addr_copy(&bp->saddr, saddr);
760 ipv6_addr_copy(&bp->daddr, daddr);
761 bp->len = htonl(tcplen);
762 bp->protocol = htonl(protocol);
764 sg_set_buf(&sg[block++], bp, sizeof(*bp));
765 nbytes += sizeof(*bp);
767 /* 2. TCP header, excluding options */
770 sg_set_buf(&sg[block++], th, sizeof(*th));
771 nbytes += sizeof(*th);
773 /* 3. TCP segment data (if any) */
774 data_len = tcplen - (th->doff << 2);
776 u8 *data = (u8 *)th + (th->doff << 2);
777 sg_set_buf(&sg[block++], data, data_len);
782 sg_set_buf(&sg[block++], key->key, key->keylen);
783 nbytes += key->keylen;
785 /* Now store the hash into the packet */
786 err = crypto_hash_init(desc);
788 printk(KERN_WARNING "%s(): hash_init failed\n", __FUNCTION__);
791 err = crypto_hash_update(desc, sg, nbytes);
793 printk(KERN_WARNING "%s(): hash_update failed\n", __FUNCTION__);
796 err = crypto_hash_final(desc, md5_hash);
798 printk(KERN_WARNING "%s(): hash_final failed\n", __FUNCTION__);
802 /* Reset header, and free up the crypto */
803 tcp_put_md5sig_pool();
808 tcp_put_md5sig_pool();
810 memset(md5_hash, 0, 16);
814 static int tcp_v6_calc_md5_hash(char *md5_hash, struct tcp_md5sig_key *key,
816 struct dst_entry *dst,
817 struct request_sock *req,
818 struct tcphdr *th, int protocol,
821 struct in6_addr *saddr, *daddr;
824 saddr = &inet6_sk(sk)->saddr;
825 daddr = &inet6_sk(sk)->daddr;
827 saddr = &inet6_rsk(req)->loc_addr;
828 daddr = &inet6_rsk(req)->rmt_addr;
830 return tcp_v6_do_calc_md5_hash(md5_hash, key,
832 th, protocol, tcplen);
835 static int tcp_v6_inbound_md5_hash (struct sock *sk, struct sk_buff *skb)
837 __u8 *hash_location = NULL;
838 struct tcp_md5sig_key *hash_expected;
839 struct ipv6hdr *ip6h = skb->nh.ipv6h;
840 struct tcphdr *th = skb->h.th;
841 int length = (th->doff << 2) - sizeof (*th);
846 hash_expected = tcp_v6_md5_do_lookup(sk, &ip6h->saddr);
848 /* If the TCP option is too short, we can short cut */
849 if (length < TCPOLEN_MD5SIG)
850 return hash_expected ? 1 : 0;
866 if (opsize < 2 || opsize > length)
868 if (opcode == TCPOPT_MD5SIG) {
878 /* do we have a hash as expected? */
879 if (!hash_expected) {
882 if (net_ratelimit()) {
883 printk(KERN_INFO "MD5 Hash NOT expected but found "
884 "(" NIP6_FMT ", %u)->"
885 "(" NIP6_FMT ", %u)\n",
886 NIP6(ip6h->saddr), ntohs(th->source),
887 NIP6(ip6h->daddr), ntohs(th->dest));
892 if (!hash_location) {
893 if (net_ratelimit()) {
894 printk(KERN_INFO "MD5 Hash expected but NOT found "
895 "(" NIP6_FMT ", %u)->"
896 "(" NIP6_FMT ", %u)\n",
897 NIP6(ip6h->saddr), ntohs(th->source),
898 NIP6(ip6h->daddr), ntohs(th->dest));
903 /* check the signature */
904 genhash = tcp_v6_do_calc_md5_hash(newhash,
906 &ip6h->saddr, &ip6h->daddr,
909 if (genhash || memcmp(hash_location, newhash, 16) != 0) {
910 if (net_ratelimit()) {
911 printk(KERN_INFO "MD5 Hash %s for "
912 "(" NIP6_FMT ", %u)->"
913 "(" NIP6_FMT ", %u)\n",
914 genhash ? "failed" : "mismatch",
915 NIP6(ip6h->saddr), ntohs(th->source),
916 NIP6(ip6h->daddr), ntohs(th->dest));
924 static struct request_sock_ops tcp6_request_sock_ops __read_mostly = {
926 .obj_size = sizeof(struct tcp6_request_sock),
927 .rtx_syn_ack = tcp_v6_send_synack,
928 .send_ack = tcp_v6_reqsk_send_ack,
929 .destructor = tcp_v6_reqsk_destructor,
930 .send_reset = tcp_v6_send_reset
933 struct tcp_request_sock_ops tcp_request_sock_ipv6_ops = {
934 #ifdef CONFIG_TCP_MD5SIG
935 .md5_lookup = tcp_v6_reqsk_md5_lookup,
939 static struct timewait_sock_ops tcp6_timewait_sock_ops = {
940 .twsk_obj_size = sizeof(struct tcp6_timewait_sock),
941 .twsk_unique = tcp_twsk_unique,
942 .twsk_destructor= tcp_twsk_destructor,
945 static void tcp_v6_send_check(struct sock *sk, int len, struct sk_buff *skb)
947 struct ipv6_pinfo *np = inet6_sk(sk);
948 struct tcphdr *th = skb->h.th;
950 if (skb->ip_summed == CHECKSUM_PARTIAL) {
951 th->check = ~csum_ipv6_magic(&np->saddr, &np->daddr, len, IPPROTO_TCP, 0);
952 skb->csum = offsetof(struct tcphdr, check);
954 th->check = csum_ipv6_magic(&np->saddr, &np->daddr, len, IPPROTO_TCP,
955 csum_partial((char *)th, th->doff<<2,
960 static int tcp_v6_gso_send_check(struct sk_buff *skb)
962 struct ipv6hdr *ipv6h;
965 if (!pskb_may_pull(skb, sizeof(*th)))
968 ipv6h = skb->nh.ipv6h;
972 th->check = ~csum_ipv6_magic(&ipv6h->saddr, &ipv6h->daddr, skb->len,
974 skb->csum = offsetof(struct tcphdr, check);
975 skb->ip_summed = CHECKSUM_PARTIAL;
979 static void tcp_v6_send_reset(struct sock *sk, struct sk_buff *skb)
981 struct tcphdr *th = skb->h.th, *t1;
982 struct sk_buff *buff;
984 int tot_len = sizeof(*th);
985 #ifdef CONFIG_TCP_MD5SIG
986 struct tcp_md5sig_key *key;
992 if (!ipv6_unicast_destination(skb))
995 #ifdef CONFIG_TCP_MD5SIG
997 key = tcp_v6_md5_do_lookup(sk, &skb->nh.ipv6h->daddr);
1002 tot_len += TCPOLEN_MD5SIG_ALIGNED;
1006 * We need to grab some memory, and put together an RST,
1007 * and then put it into the queue to be sent.
1010 buff = alloc_skb(MAX_HEADER + sizeof(struct ipv6hdr) + tot_len,
1015 skb_reserve(buff, MAX_HEADER + sizeof(struct ipv6hdr) + tot_len);
1017 t1 = (struct tcphdr *) skb_push(buff, tot_len);
1019 /* Swap the send and the receive. */
1020 memset(t1, 0, sizeof(*t1));
1021 t1->dest = th->source;
1022 t1->source = th->dest;
1023 t1->doff = tot_len / 4;
1027 t1->seq = th->ack_seq;
1030 t1->ack_seq = htonl(ntohl(th->seq) + th->syn + th->fin
1031 + skb->len - (th->doff<<2));
1034 #ifdef CONFIG_TCP_MD5SIG
1036 u32 *opt = (u32*)(t1 + 1);
1037 opt[0] = htonl((TCPOPT_NOP << 24) |
1038 (TCPOPT_NOP << 16) |
1039 (TCPOPT_MD5SIG << 8) |
1041 tcp_v6_do_calc_md5_hash((__u8*)&opt[1],
1043 &skb->nh.ipv6h->daddr,
1044 &skb->nh.ipv6h->saddr,
1050 buff->csum = csum_partial((char *)t1, sizeof(*t1), 0);
1052 memset(&fl, 0, sizeof(fl));
1053 ipv6_addr_copy(&fl.fl6_dst, &skb->nh.ipv6h->saddr);
1054 ipv6_addr_copy(&fl.fl6_src, &skb->nh.ipv6h->daddr);
1056 t1->check = csum_ipv6_magic(&fl.fl6_src, &fl.fl6_dst,
1057 sizeof(*t1), IPPROTO_TCP,
1060 fl.proto = IPPROTO_TCP;
1061 fl.oif = inet6_iif(skb);
1062 fl.fl_ip_dport = t1->dest;
1063 fl.fl_ip_sport = t1->source;
1064 security_skb_classify_flow(skb, &fl);
1066 /* sk = NULL, but it is safe for now. RST socket required. */
1067 if (!ip6_dst_lookup(NULL, &buff->dst, &fl)) {
1069 if (xfrm_lookup(&buff->dst, &fl, NULL, 0) >= 0) {
1070 ip6_xmit(tcp6_socket->sk, buff, &fl, NULL, 0);
1071 TCP_INC_STATS_BH(TCP_MIB_OUTSEGS);
1072 TCP_INC_STATS_BH(TCP_MIB_OUTRSTS);
1080 static void tcp_v6_send_ack(struct tcp_timewait_sock *tw,
1081 struct sk_buff *skb, u32 seq, u32 ack, u32 win, u32 ts)
1083 struct tcphdr *th = skb->h.th, *t1;
1084 struct sk_buff *buff;
1086 int tot_len = sizeof(struct tcphdr);
1088 #ifdef CONFIG_TCP_MD5SIG
1089 struct tcp_md5sig_key *key;
1090 struct tcp_md5sig_key tw_key;
1093 #ifdef CONFIG_TCP_MD5SIG
1094 if (!tw && skb->sk) {
1095 key = tcp_v6_md5_do_lookup(skb->sk, &skb->nh.ipv6h->daddr);
1096 } else if (tw && tw->tw_md5_keylen) {
1097 tw_key.key = tw->tw_md5_key;
1098 tw_key.keylen = tw->tw_md5_keylen;
1106 tot_len += TCPOLEN_TSTAMP_ALIGNED;
1107 #ifdef CONFIG_TCP_MD5SIG
1109 tot_len += TCPOLEN_MD5SIG_ALIGNED;
1112 buff = alloc_skb(MAX_HEADER + sizeof(struct ipv6hdr) + tot_len,
1117 skb_reserve(buff, MAX_HEADER + sizeof(struct ipv6hdr) + tot_len);
1119 t1 = (struct tcphdr *) skb_push(buff,tot_len);
1121 /* Swap the send and the receive. */
1122 memset(t1, 0, sizeof(*t1));
1123 t1->dest = th->source;
1124 t1->source = th->dest;
1125 t1->doff = tot_len/4;
1126 t1->seq = htonl(seq);
1127 t1->ack_seq = htonl(ack);
1129 t1->window = htons(win);
1131 topt = (__be32 *)(t1 + 1);
1134 *topt++ = htonl((TCPOPT_NOP << 24) | (TCPOPT_NOP << 16) |
1135 (TCPOPT_TIMESTAMP << 8) | TCPOLEN_TIMESTAMP);
1136 *topt++ = htonl(tcp_time_stamp);
1140 #ifdef CONFIG_TCP_MD5SIG
1142 *topt++ = htonl((TCPOPT_NOP << 24) | (TCPOPT_NOP << 16) |
1143 (TCPOPT_MD5SIG << 8) | TCPOLEN_MD5SIG);
1144 tcp_v6_do_calc_md5_hash((__u8 *)topt,
1146 &skb->nh.ipv6h->daddr,
1147 &skb->nh.ipv6h->saddr,
1153 buff->csum = csum_partial((char *)t1, tot_len, 0);
1155 memset(&fl, 0, sizeof(fl));
1156 ipv6_addr_copy(&fl.fl6_dst, &skb->nh.ipv6h->saddr);
1157 ipv6_addr_copy(&fl.fl6_src, &skb->nh.ipv6h->daddr);
1159 t1->check = csum_ipv6_magic(&fl.fl6_src, &fl.fl6_dst,
1160 tot_len, IPPROTO_TCP,
1163 fl.proto = IPPROTO_TCP;
1164 fl.oif = inet6_iif(skb);
1165 fl.fl_ip_dport = t1->dest;
1166 fl.fl_ip_sport = t1->source;
1167 security_skb_classify_flow(skb, &fl);
1169 if (!ip6_dst_lookup(NULL, &buff->dst, &fl)) {
1170 if (xfrm_lookup(&buff->dst, &fl, NULL, 0) >= 0) {
1171 ip6_xmit(tcp6_socket->sk, buff, &fl, NULL, 0);
1172 TCP_INC_STATS_BH(TCP_MIB_OUTSEGS);
1180 static void tcp_v6_timewait_ack(struct sock *sk, struct sk_buff *skb)
1182 struct inet_timewait_sock *tw = inet_twsk(sk);
1183 struct tcp_timewait_sock *tcptw = tcp_twsk(sk);
1185 tcp_v6_send_ack(tcptw, skb, tcptw->tw_snd_nxt, tcptw->tw_rcv_nxt,
1186 tcptw->tw_rcv_wnd >> tw->tw_rcv_wscale,
1187 tcptw->tw_ts_recent);
1192 static void tcp_v6_reqsk_send_ack(struct sk_buff *skb, struct request_sock *req)
1194 tcp_v6_send_ack(NULL, skb, tcp_rsk(req)->snt_isn + 1, tcp_rsk(req)->rcv_isn + 1, req->rcv_wnd, req->ts_recent);
1198 static struct sock *tcp_v6_hnd_req(struct sock *sk,struct sk_buff *skb)
1200 struct request_sock *req, **prev;
1201 const struct tcphdr *th = skb->h.th;
1204 /* Find possible connection requests. */
1205 req = inet6_csk_search_req(sk, &prev, th->source,
1206 &skb->nh.ipv6h->saddr,
1207 &skb->nh.ipv6h->daddr, inet6_iif(skb));
1209 return tcp_check_req(sk, skb, req, prev);
1211 nsk = __inet6_lookup_established(&tcp_hashinfo, &skb->nh.ipv6h->saddr,
1212 th->source, &skb->nh.ipv6h->daddr,
1213 ntohs(th->dest), inet6_iif(skb));
1216 if (nsk->sk_state != TCP_TIME_WAIT) {
1220 inet_twsk_put(inet_twsk(nsk));
1224 #if 0 /*def CONFIG_SYN_COOKIES*/
1225 if (!th->rst && !th->syn && th->ack)
1226 sk = cookie_v6_check(sk, skb, &(IPCB(skb)->opt));
1231 /* FIXME: this is substantially similar to the ipv4 code.
1232 * Can some kind of merge be done? -- erics
1234 static int tcp_v6_conn_request(struct sock *sk, struct sk_buff *skb)
1236 struct inet6_request_sock *treq;
1237 struct ipv6_pinfo *np = inet6_sk(sk);
1238 struct tcp_options_received tmp_opt;
1239 struct tcp_sock *tp = tcp_sk(sk);
1240 struct request_sock *req = NULL;
1241 __u32 isn = TCP_SKB_CB(skb)->when;
1243 if (skb->protocol == htons(ETH_P_IP))
1244 return tcp_v4_conn_request(sk, skb);
1246 if (!ipv6_unicast_destination(skb))
1250 * There are no SYN attacks on IPv6, yet...
1252 if (inet_csk_reqsk_queue_is_full(sk) && !isn) {
1253 if (net_ratelimit())
1254 printk(KERN_INFO "TCPv6: dropping request, synflood is possible\n");
1258 if (sk_acceptq_is_full(sk) && inet_csk_reqsk_queue_young(sk) > 1)
1261 req = inet6_reqsk_alloc(&tcp6_request_sock_ops);
1265 #ifdef CONFIG_TCP_MD5SIG
1266 tcp_rsk(req)->af_specific = &tcp_request_sock_ipv6_ops;
1269 tcp_clear_options(&tmp_opt);
1270 tmp_opt.mss_clamp = IPV6_MIN_MTU - sizeof(struct tcphdr) - sizeof(struct ipv6hdr);
1271 tmp_opt.user_mss = tp->rx_opt.user_mss;
1273 tcp_parse_options(skb, &tmp_opt, 0);
1275 tmp_opt.tstamp_ok = tmp_opt.saw_tstamp;
1276 tcp_openreq_init(req, &tmp_opt, skb);
1278 treq = inet6_rsk(req);
1279 ipv6_addr_copy(&treq->rmt_addr, &skb->nh.ipv6h->saddr);
1280 ipv6_addr_copy(&treq->loc_addr, &skb->nh.ipv6h->daddr);
1281 TCP_ECN_create_request(req, skb->h.th);
1282 treq->pktopts = NULL;
1283 if (ipv6_opt_accepted(sk, skb) ||
1284 np->rxopt.bits.rxinfo || np->rxopt.bits.rxoinfo ||
1285 np->rxopt.bits.rxhlim || np->rxopt.bits.rxohlim) {
1286 atomic_inc(&skb->users);
1287 treq->pktopts = skb;
1289 treq->iif = sk->sk_bound_dev_if;
1291 /* So that link locals have meaning */
1292 if (!sk->sk_bound_dev_if &&
1293 ipv6_addr_type(&treq->rmt_addr) & IPV6_ADDR_LINKLOCAL)
1294 treq->iif = inet6_iif(skb);
1297 isn = tcp_v6_init_sequence(skb);
1299 tcp_rsk(req)->snt_isn = isn;
1301 security_inet_conn_request(sk, skb, req);
1303 if (tcp_v6_send_synack(sk, req, NULL))
1306 inet6_csk_reqsk_queue_hash_add(sk, req, TCP_TIMEOUT_INIT);
1313 return 0; /* don't send reset */
1316 static struct sock * tcp_v6_syn_recv_sock(struct sock *sk, struct sk_buff *skb,
1317 struct request_sock *req,
1318 struct dst_entry *dst)
1320 struct inet6_request_sock *treq = inet6_rsk(req);
1321 struct ipv6_pinfo *newnp, *np = inet6_sk(sk);
1322 struct tcp6_sock *newtcp6sk;
1323 struct inet_sock *newinet;
1324 struct tcp_sock *newtp;
1326 struct ipv6_txoptions *opt;
1327 #ifdef CONFIG_TCP_MD5SIG
1328 struct tcp_md5sig_key *key;
1331 if (skb->protocol == htons(ETH_P_IP)) {
1336 newsk = tcp_v4_syn_recv_sock(sk, skb, req, dst);
1341 newtcp6sk = (struct tcp6_sock *)newsk;
1342 inet_sk(newsk)->pinet6 = &newtcp6sk->inet6;
1344 newinet = inet_sk(newsk);
1345 newnp = inet6_sk(newsk);
1346 newtp = tcp_sk(newsk);
1348 memcpy(newnp, np, sizeof(struct ipv6_pinfo));
1350 ipv6_addr_set(&newnp->daddr, 0, 0, htonl(0x0000FFFF),
1353 ipv6_addr_set(&newnp->saddr, 0, 0, htonl(0x0000FFFF),
1356 ipv6_addr_copy(&newnp->rcv_saddr, &newnp->saddr);
1358 inet_csk(newsk)->icsk_af_ops = &ipv6_mapped;
1359 newsk->sk_backlog_rcv = tcp_v4_do_rcv;
1360 #ifdef CONFIG_TCP_MD5SIG
1361 newtp->af_specific = &tcp_sock_ipv6_mapped_specific;
1364 newnp->pktoptions = NULL;
1366 newnp->mcast_oif = inet6_iif(skb);
1367 newnp->mcast_hops = skb->nh.ipv6h->hop_limit;
1370 * No need to charge this sock to the relevant IPv6 refcnt debug socks count
1371 * here, tcp_create_openreq_child now does this for us, see the comment in
1372 * that function for the gory details. -acme
1375 /* It is tricky place. Until this moment IPv4 tcp
1376 worked with IPv6 icsk.icsk_af_ops.
1379 tcp_sync_mss(newsk, inet_csk(newsk)->icsk_pmtu_cookie);
1386 if (sk_acceptq_is_full(sk))
1389 if (np->rxopt.bits.osrcrt == 2 &&
1390 opt == NULL && treq->pktopts) {
1391 struct inet6_skb_parm *rxopt = IP6CB(treq->pktopts);
1393 opt = ipv6_invert_rthdr(sk, (struct ipv6_rt_hdr *)(treq->pktopts->nh.raw + rxopt->srcrt));
1397 struct in6_addr *final_p = NULL, final;
1400 memset(&fl, 0, sizeof(fl));
1401 fl.proto = IPPROTO_TCP;
1402 ipv6_addr_copy(&fl.fl6_dst, &treq->rmt_addr);
1403 if (opt && opt->srcrt) {
1404 struct rt0_hdr *rt0 = (struct rt0_hdr *) opt->srcrt;
1405 ipv6_addr_copy(&final, &fl.fl6_dst);
1406 ipv6_addr_copy(&fl.fl6_dst, rt0->addr);
1409 ipv6_addr_copy(&fl.fl6_src, &treq->loc_addr);
1410 fl.oif = sk->sk_bound_dev_if;
1411 fl.fl_ip_dport = inet_rsk(req)->rmt_port;
1412 fl.fl_ip_sport = inet_sk(sk)->sport;
1413 security_req_classify_flow(req, &fl);
1415 if (ip6_dst_lookup(sk, &dst, &fl))
1419 ipv6_addr_copy(&fl.fl6_dst, final_p);
1421 if ((xfrm_lookup(&dst, &fl, sk, 0)) < 0)
1425 newsk = tcp_create_openreq_child(sk, req, skb);
1430 * No need to charge this sock to the relevant IPv6 refcnt debug socks
1431 * count here, tcp_create_openreq_child now does this for us, see the
1432 * comment in that function for the gory details. -acme
1435 newsk->sk_gso_type = SKB_GSO_TCPV6;
1436 __ip6_dst_store(newsk, dst, NULL, NULL);
1438 newtcp6sk = (struct tcp6_sock *)newsk;
1439 inet_sk(newsk)->pinet6 = &newtcp6sk->inet6;
1441 newtp = tcp_sk(newsk);
1442 newinet = inet_sk(newsk);
1443 newnp = inet6_sk(newsk);
1445 memcpy(newnp, np, sizeof(struct ipv6_pinfo));
1447 ipv6_addr_copy(&newnp->daddr, &treq->rmt_addr);
1448 ipv6_addr_copy(&newnp->saddr, &treq->loc_addr);
1449 ipv6_addr_copy(&newnp->rcv_saddr, &treq->loc_addr);
1450 newsk->sk_bound_dev_if = treq->iif;
1452 /* Now IPv6 options...
1454 First: no IPv4 options.
1456 newinet->opt = NULL;
1459 newnp->rxopt.all = np->rxopt.all;
1461 /* Clone pktoptions received with SYN */
1462 newnp->pktoptions = NULL;
1463 if (treq->pktopts != NULL) {
1464 newnp->pktoptions = skb_clone(treq->pktopts, GFP_ATOMIC);
1465 kfree_skb(treq->pktopts);
1466 treq->pktopts = NULL;
1467 if (newnp->pktoptions)
1468 skb_set_owner_r(newnp->pktoptions, newsk);
1471 newnp->mcast_oif = inet6_iif(skb);
1472 newnp->mcast_hops = skb->nh.ipv6h->hop_limit;
1474 /* Clone native IPv6 options from listening socket (if any)
1476 Yes, keeping reference count would be much more clever,
1477 but we make one more one thing there: reattach optmem
1481 newnp->opt = ipv6_dup_options(newsk, opt);
1483 sock_kfree_s(sk, opt, opt->tot_len);
1486 inet_csk(newsk)->icsk_ext_hdr_len = 0;
1488 inet_csk(newsk)->icsk_ext_hdr_len = (newnp->opt->opt_nflen +
1489 newnp->opt->opt_flen);
1491 tcp_mtup_init(newsk);
1492 tcp_sync_mss(newsk, dst_mtu(dst));
1493 newtp->advmss = dst_metric(dst, RTAX_ADVMSS);
1494 tcp_initialize_rcv_mss(newsk);
1496 newinet->daddr = newinet->saddr = newinet->rcv_saddr = LOOPBACK4_IPV6;
1498 #ifdef CONFIG_TCP_MD5SIG
1499 /* Copy over the MD5 key from the original socket */
1500 if ((key = tcp_v6_md5_do_lookup(sk, &newnp->daddr)) != NULL) {
1501 /* We're using one, so create a matching key
1502 * on the newsk structure. If we fail to get
1503 * memory, then we end up not copying the key
1506 char *newkey = kmalloc(key->keylen, GFP_ATOMIC);
1508 memcpy(newkey, key->key, key->keylen);
1509 tcp_v6_md5_do_add(newsk, &inet6_sk(sk)->daddr,
1510 newkey, key->keylen);
1515 __inet6_hash(&tcp_hashinfo, newsk);
1516 inet_inherit_port(&tcp_hashinfo, sk, newsk);
1521 NET_INC_STATS_BH(LINUX_MIB_LISTENOVERFLOWS);
1523 NET_INC_STATS_BH(LINUX_MIB_LISTENDROPS);
1524 if (opt && opt != np->opt)
1525 sock_kfree_s(sk, opt, opt->tot_len);
1530 static __sum16 tcp_v6_checksum_init(struct sk_buff *skb)
1532 if (skb->ip_summed == CHECKSUM_COMPLETE) {
1533 if (!tcp_v6_check(skb->h.th,skb->len,&skb->nh.ipv6h->saddr,
1534 &skb->nh.ipv6h->daddr,skb->csum)) {
1535 skb->ip_summed = CHECKSUM_UNNECESSARY;
1540 skb->csum = ~csum_unfold(tcp_v6_check(skb->h.th,skb->len,&skb->nh.ipv6h->saddr,
1541 &skb->nh.ipv6h->daddr, 0));
1543 if (skb->len <= 76) {
1544 return __skb_checksum_complete(skb);
1549 /* The socket must have it's spinlock held when we get
1552 * We have a potential double-lock case here, so even when
1553 * doing backlog processing we use the BH locking scheme.
1554 * This is because we cannot sleep with the original spinlock
1557 static int tcp_v6_do_rcv(struct sock *sk, struct sk_buff *skb)
1559 struct ipv6_pinfo *np = inet6_sk(sk);
1560 struct tcp_sock *tp;
1561 struct sk_buff *opt_skb = NULL;
1563 /* Imagine: socket is IPv6. IPv4 packet arrives,
1564 goes to IPv4 receive handler and backlogged.
1565 From backlog it always goes here. Kerboom...
1566 Fortunately, tcp_rcv_established and rcv_established
1567 handle them correctly, but it is not case with
1568 tcp_v6_hnd_req and tcp_v6_send_reset(). --ANK
1571 if (skb->protocol == htons(ETH_P_IP))
1572 return tcp_v4_do_rcv(sk, skb);
1574 #ifdef CONFIG_TCP_MD5SIG
1575 if (tcp_v6_inbound_md5_hash (sk, skb))
1579 if (sk_filter(sk, skb))
1583 * socket locking is here for SMP purposes as backlog rcv
1584 * is currently called with bh processing disabled.
1587 /* Do Stevens' IPV6_PKTOPTIONS.
1589 Yes, guys, it is the only place in our code, where we
1590 may make it not affecting IPv4.
1591 The rest of code is protocol independent,
1592 and I do not like idea to uglify IPv4.
1594 Actually, all the idea behind IPV6_PKTOPTIONS
1595 looks not very well thought. For now we latch
1596 options, received in the last packet, enqueued
1597 by tcp. Feel free to propose better solution.
1601 opt_skb = skb_clone(skb, GFP_ATOMIC);
1603 if (sk->sk_state == TCP_ESTABLISHED) { /* Fast path */
1604 TCP_CHECK_TIMER(sk);
1605 if (tcp_rcv_established(sk, skb, skb->h.th, skb->len))
1607 TCP_CHECK_TIMER(sk);
1609 goto ipv6_pktoptions;
1613 if (skb->len < (skb->h.th->doff<<2) || tcp_checksum_complete(skb))
1616 if (sk->sk_state == TCP_LISTEN) {
1617 struct sock *nsk = tcp_v6_hnd_req(sk, skb);
1622 * Queue it on the new socket if the new socket is active,
1623 * otherwise we just shortcircuit this and continue with
1627 if (tcp_child_process(sk, nsk, skb))
1630 __kfree_skb(opt_skb);
1635 TCP_CHECK_TIMER(sk);
1636 if (tcp_rcv_state_process(sk, skb, skb->h.th, skb->len))
1638 TCP_CHECK_TIMER(sk);
1640 goto ipv6_pktoptions;
1644 tcp_v6_send_reset(sk, skb);
1647 __kfree_skb(opt_skb);
1651 TCP_INC_STATS_BH(TCP_MIB_INERRS);
1656 /* Do you ask, what is it?
1658 1. skb was enqueued by tcp.
1659 2. skb is added to tail of read queue, rather than out of order.
1660 3. socket is not in passive state.
1661 4. Finally, it really contains options, which user wants to receive.
1664 if (TCP_SKB_CB(opt_skb)->end_seq == tp->rcv_nxt &&
1665 !((1 << sk->sk_state) & (TCPF_CLOSE | TCPF_LISTEN))) {
1666 if (np->rxopt.bits.rxinfo || np->rxopt.bits.rxoinfo)
1667 np->mcast_oif = inet6_iif(opt_skb);
1668 if (np->rxopt.bits.rxhlim || np->rxopt.bits.rxohlim)
1669 np->mcast_hops = opt_skb->nh.ipv6h->hop_limit;
1670 if (ipv6_opt_accepted(sk, opt_skb)) {
1671 skb_set_owner_r(opt_skb, sk);
1672 opt_skb = xchg(&np->pktoptions, opt_skb);
1674 __kfree_skb(opt_skb);
1675 opt_skb = xchg(&np->pktoptions, NULL);
1684 static int tcp_v6_rcv(struct sk_buff **pskb)
1686 struct sk_buff *skb = *pskb;
1691 if (skb->pkt_type != PACKET_HOST)
1695 * Count it even if it's bad.
1697 TCP_INC_STATS_BH(TCP_MIB_INSEGS);
1699 if (!pskb_may_pull(skb, sizeof(struct tcphdr)))
1704 if (th->doff < sizeof(struct tcphdr)/4)
1706 if (!pskb_may_pull(skb, th->doff*4))
1709 if ((skb->ip_summed != CHECKSUM_UNNECESSARY &&
1710 tcp_v6_checksum_init(skb)))
1714 TCP_SKB_CB(skb)->seq = ntohl(th->seq);
1715 TCP_SKB_CB(skb)->end_seq = (TCP_SKB_CB(skb)->seq + th->syn + th->fin +
1716 skb->len - th->doff*4);
1717 TCP_SKB_CB(skb)->ack_seq = ntohl(th->ack_seq);
1718 TCP_SKB_CB(skb)->when = 0;
1719 TCP_SKB_CB(skb)->flags = ipv6_get_dsfield(skb->nh.ipv6h);
1720 TCP_SKB_CB(skb)->sacked = 0;
1722 sk = __inet6_lookup(&tcp_hashinfo, &skb->nh.ipv6h->saddr, th->source,
1723 &skb->nh.ipv6h->daddr, ntohs(th->dest),
1730 if (sk->sk_state == TCP_TIME_WAIT)
1733 if (!xfrm6_policy_check(sk, XFRM_POLICY_IN, skb))
1734 goto discard_and_relse;
1736 if (sk_filter(sk, skb))
1737 goto discard_and_relse;
1741 bh_lock_sock_nested(sk);
1743 if (!sock_owned_by_user(sk)) {
1744 #ifdef CONFIG_NET_DMA
1745 struct tcp_sock *tp = tcp_sk(sk);
1746 if (tp->ucopy.dma_chan)
1747 ret = tcp_v6_do_rcv(sk, skb);
1751 if (!tcp_prequeue(sk, skb))
1752 ret = tcp_v6_do_rcv(sk, skb);
1755 sk_add_backlog(sk, skb);
1759 return ret ? -1 : 0;
1762 if (!xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb))
1765 if (skb->len < (th->doff<<2) || tcp_checksum_complete(skb)) {
1767 TCP_INC_STATS_BH(TCP_MIB_INERRS);
1769 tcp_v6_send_reset(NULL, skb);
1786 if (!xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb)) {
1787 inet_twsk_put(inet_twsk(sk));
1791 if (skb->len < (th->doff<<2) || tcp_checksum_complete(skb)) {
1792 TCP_INC_STATS_BH(TCP_MIB_INERRS);
1793 inet_twsk_put(inet_twsk(sk));
1797 switch (tcp_timewait_state_process(inet_twsk(sk), skb, th)) {
1802 sk2 = inet6_lookup_listener(&tcp_hashinfo,
1803 &skb->nh.ipv6h->daddr,
1804 ntohs(th->dest), inet6_iif(skb));
1806 struct inet_timewait_sock *tw = inet_twsk(sk);
1807 inet_twsk_deschedule(tw, &tcp_death_row);
1812 /* Fall through to ACK */
1815 tcp_v6_timewait_ack(sk, skb);
1819 case TCP_TW_SUCCESS:;
1824 static int tcp_v6_remember_stamp(struct sock *sk)
1826 /* Alas, not yet... */
1830 static struct inet_connection_sock_af_ops ipv6_specific = {
1831 .queue_xmit = inet6_csk_xmit,
1832 .send_check = tcp_v6_send_check,
1833 .rebuild_header = inet6_sk_rebuild_header,
1834 .conn_request = tcp_v6_conn_request,
1835 .syn_recv_sock = tcp_v6_syn_recv_sock,
1836 .remember_stamp = tcp_v6_remember_stamp,
1837 .net_header_len = sizeof(struct ipv6hdr),
1838 .setsockopt = ipv6_setsockopt,
1839 .getsockopt = ipv6_getsockopt,
1840 .addr2sockaddr = inet6_csk_addr2sockaddr,
1841 .sockaddr_len = sizeof(struct sockaddr_in6),
1842 #ifdef CONFIG_COMPAT
1843 .compat_setsockopt = compat_ipv6_setsockopt,
1844 .compat_getsockopt = compat_ipv6_getsockopt,
1848 #ifdef CONFIG_TCP_MD5SIG
1849 static struct tcp_sock_af_ops tcp_sock_ipv6_specific = {
1850 .md5_lookup = tcp_v6_md5_lookup,
1851 .calc_md5_hash = tcp_v6_calc_md5_hash,
1852 .md5_add = tcp_v6_md5_add_func,
1853 .md5_parse = tcp_v6_parse_md5_keys,
1858 * TCP over IPv4 via INET6 API
1861 static struct inet_connection_sock_af_ops ipv6_mapped = {
1862 .queue_xmit = ip_queue_xmit,
1863 .send_check = tcp_v4_send_check,
1864 .rebuild_header = inet_sk_rebuild_header,
1865 .conn_request = tcp_v6_conn_request,
1866 .syn_recv_sock = tcp_v6_syn_recv_sock,
1867 .remember_stamp = tcp_v4_remember_stamp,
1868 .net_header_len = sizeof(struct iphdr),
1869 .setsockopt = ipv6_setsockopt,
1870 .getsockopt = ipv6_getsockopt,
1871 .addr2sockaddr = inet6_csk_addr2sockaddr,
1872 .sockaddr_len = sizeof(struct sockaddr_in6),
1873 #ifdef CONFIG_COMPAT
1874 .compat_setsockopt = compat_ipv6_setsockopt,
1875 .compat_getsockopt = compat_ipv6_getsockopt,
1879 #ifdef CONFIG_TCP_MD5SIG
1880 static struct tcp_sock_af_ops tcp_sock_ipv6_mapped_specific = {
1881 .md5_lookup = tcp_v4_md5_lookup,
1882 .calc_md5_hash = tcp_v4_calc_md5_hash,
1883 .md5_add = tcp_v6_md5_add_func,
1884 .md5_parse = tcp_v6_parse_md5_keys,
1888 /* NOTE: A lot of things set to zero explicitly by call to
1889 * sk_alloc() so need not be done here.
1891 static int tcp_v6_init_sock(struct sock *sk)
1893 struct inet_connection_sock *icsk = inet_csk(sk);
1894 struct tcp_sock *tp = tcp_sk(sk);
1896 skb_queue_head_init(&tp->out_of_order_queue);
1897 tcp_init_xmit_timers(sk);
1898 tcp_prequeue_init(tp);
1900 icsk->icsk_rto = TCP_TIMEOUT_INIT;
1901 tp->mdev = TCP_TIMEOUT_INIT;
1903 /* So many TCP implementations out there (incorrectly) count the
1904 * initial SYN frame in their delayed-ACK and congestion control
1905 * algorithms that we must have the following bandaid to talk
1906 * efficiently to them. -DaveM
1910 /* See draft-stevens-tcpca-spec-01 for discussion of the
1911 * initialization of these values.
1913 tp->snd_ssthresh = 0x7fffffff;
1914 tp->snd_cwnd_clamp = ~0;
1915 tp->mss_cache = 536;
1917 tp->reordering = sysctl_tcp_reordering;
1919 sk->sk_state = TCP_CLOSE;
1921 icsk->icsk_af_ops = &ipv6_specific;
1922 icsk->icsk_ca_ops = &tcp_init_congestion_ops;
1923 icsk->icsk_sync_mss = tcp_sync_mss;
1924 sk->sk_write_space = sk_stream_write_space;
1925 sock_set_flag(sk, SOCK_USE_WRITE_QUEUE);
1927 #ifdef CONFIG_TCP_MD5SIG
1928 tp->af_specific = &tcp_sock_ipv6_specific;
1931 sk->sk_sndbuf = sysctl_tcp_wmem[1];
1932 sk->sk_rcvbuf = sysctl_tcp_rmem[1];
1934 atomic_inc(&tcp_sockets_allocated);
1939 static int tcp_v6_destroy_sock(struct sock *sk)
1941 #ifdef CONFIG_TCP_MD5SIG
1942 /* Clean up the MD5 key list */
1943 if (tcp_sk(sk)->md5sig_info)
1944 tcp_v6_clear_md5_list(sk);
1946 tcp_v4_destroy_sock(sk);
1947 return inet6_destroy_sock(sk);
1950 /* Proc filesystem TCPv6 sock list dumping. */
1951 static void get_openreq6(struct seq_file *seq,
1952 struct sock *sk, struct request_sock *req, int i, int uid)
1954 int ttd = req->expires - jiffies;
1955 struct in6_addr *src = &inet6_rsk(req)->loc_addr;
1956 struct in6_addr *dest = &inet6_rsk(req)->rmt_addr;
1962 "%4d: %08X%08X%08X%08X:%04X %08X%08X%08X%08X:%04X "
1963 "%02X %08X:%08X %02X:%08lX %08X %5d %8d %d %d %p\n",
1965 src->s6_addr32[0], src->s6_addr32[1],
1966 src->s6_addr32[2], src->s6_addr32[3],
1967 ntohs(inet_sk(sk)->sport),
1968 dest->s6_addr32[0], dest->s6_addr32[1],
1969 dest->s6_addr32[2], dest->s6_addr32[3],
1970 ntohs(inet_rsk(req)->rmt_port),
1972 0,0, /* could print option size, but that is af dependent. */
1973 1, /* timers active (only the expire timer) */
1974 jiffies_to_clock_t(ttd),
1977 0, /* non standard timer */
1978 0, /* open_requests have no inode */
1982 static void get_tcp6_sock(struct seq_file *seq, struct sock *sp, int i)
1984 struct in6_addr *dest, *src;
1987 unsigned long timer_expires;
1988 struct inet_sock *inet = inet_sk(sp);
1989 struct tcp_sock *tp = tcp_sk(sp);
1990 const struct inet_connection_sock *icsk = inet_csk(sp);
1991 struct ipv6_pinfo *np = inet6_sk(sp);
1994 src = &np->rcv_saddr;
1995 destp = ntohs(inet->dport);
1996 srcp = ntohs(inet->sport);
1998 if (icsk->icsk_pending == ICSK_TIME_RETRANS) {
2000 timer_expires = icsk->icsk_timeout;
2001 } else if (icsk->icsk_pending == ICSK_TIME_PROBE0) {
2003 timer_expires = icsk->icsk_timeout;
2004 } else if (timer_pending(&sp->sk_timer)) {
2006 timer_expires = sp->sk_timer.expires;
2009 timer_expires = jiffies;
2013 "%4d: %08X%08X%08X%08X:%04X %08X%08X%08X%08X:%04X "
2014 "%02X %08X:%08X %02X:%08lX %08X %5d %8d %lu %d %p %u %u %u %u %d\n",
2016 src->s6_addr32[0], src->s6_addr32[1],
2017 src->s6_addr32[2], src->s6_addr32[3], srcp,
2018 dest->s6_addr32[0], dest->s6_addr32[1],
2019 dest->s6_addr32[2], dest->s6_addr32[3], destp,
2021 tp->write_seq-tp->snd_una,
2022 (sp->sk_state == TCP_LISTEN) ? sp->sk_ack_backlog : (tp->rcv_nxt - tp->copied_seq),
2024 jiffies_to_clock_t(timer_expires - jiffies),
2025 icsk->icsk_retransmits,
2027 icsk->icsk_probes_out,
2029 atomic_read(&sp->sk_refcnt), sp,
2032 (icsk->icsk_ack.quick << 1 ) | icsk->icsk_ack.pingpong,
2033 tp->snd_cwnd, tp->snd_ssthresh>=0xFFFF?-1:tp->snd_ssthresh
2037 static void get_timewait6_sock(struct seq_file *seq,
2038 struct inet_timewait_sock *tw, int i)
2040 struct in6_addr *dest, *src;
2042 struct inet6_timewait_sock *tw6 = inet6_twsk((struct sock *)tw);
2043 int ttd = tw->tw_ttd - jiffies;
2048 dest = &tw6->tw_v6_daddr;
2049 src = &tw6->tw_v6_rcv_saddr;
2050 destp = ntohs(tw->tw_dport);
2051 srcp = ntohs(tw->tw_sport);
2054 "%4d: %08X%08X%08X%08X:%04X %08X%08X%08X%08X:%04X "
2055 "%02X %08X:%08X %02X:%08lX %08X %5d %8d %d %d %p\n",
2057 src->s6_addr32[0], src->s6_addr32[1],
2058 src->s6_addr32[2], src->s6_addr32[3], srcp,
2059 dest->s6_addr32[0], dest->s6_addr32[1],
2060 dest->s6_addr32[2], dest->s6_addr32[3], destp,
2061 tw->tw_substate, 0, 0,
2062 3, jiffies_to_clock_t(ttd), 0, 0, 0, 0,
2063 atomic_read(&tw->tw_refcnt), tw);
2066 #ifdef CONFIG_PROC_FS
2067 static int tcp6_seq_show(struct seq_file *seq, void *v)
2069 struct tcp_iter_state *st;
2071 if (v == SEQ_START_TOKEN) {
2076 "st tx_queue rx_queue tr tm->when retrnsmt"
2077 " uid timeout inode\n");
2082 switch (st->state) {
2083 case TCP_SEQ_STATE_LISTENING:
2084 case TCP_SEQ_STATE_ESTABLISHED:
2085 get_tcp6_sock(seq, v, st->num);
2087 case TCP_SEQ_STATE_OPENREQ:
2088 get_openreq6(seq, st->syn_wait_sk, v, st->num, st->uid);
2090 case TCP_SEQ_STATE_TIME_WAIT:
2091 get_timewait6_sock(seq, v, st->num);
2098 static struct file_operations tcp6_seq_fops;
2099 static struct tcp_seq_afinfo tcp6_seq_afinfo = {
2100 .owner = THIS_MODULE,
2103 .seq_show = tcp6_seq_show,
2104 .seq_fops = &tcp6_seq_fops,
2107 int __init tcp6_proc_init(void)
2109 return tcp_proc_register(&tcp6_seq_afinfo);
2112 void tcp6_proc_exit(void)
2114 tcp_proc_unregister(&tcp6_seq_afinfo);
2118 struct proto tcpv6_prot = {
2120 .owner = THIS_MODULE,
2122 .connect = tcp_v6_connect,
2123 .disconnect = tcp_disconnect,
2124 .accept = inet_csk_accept,
2126 .init = tcp_v6_init_sock,
2127 .destroy = tcp_v6_destroy_sock,
2128 .shutdown = tcp_shutdown,
2129 .setsockopt = tcp_setsockopt,
2130 .getsockopt = tcp_getsockopt,
2131 .sendmsg = tcp_sendmsg,
2132 .recvmsg = tcp_recvmsg,
2133 .backlog_rcv = tcp_v6_do_rcv,
2134 .hash = tcp_v6_hash,
2135 .unhash = tcp_unhash,
2136 .get_port = tcp_v6_get_port,
2137 .enter_memory_pressure = tcp_enter_memory_pressure,
2138 .sockets_allocated = &tcp_sockets_allocated,
2139 .memory_allocated = &tcp_memory_allocated,
2140 .memory_pressure = &tcp_memory_pressure,
2141 .orphan_count = &tcp_orphan_count,
2142 .sysctl_mem = sysctl_tcp_mem,
2143 .sysctl_wmem = sysctl_tcp_wmem,
2144 .sysctl_rmem = sysctl_tcp_rmem,
2145 .max_header = MAX_TCP_HEADER,
2146 .obj_size = sizeof(struct tcp6_sock),
2147 .twsk_prot = &tcp6_timewait_sock_ops,
2148 .rsk_prot = &tcp6_request_sock_ops,
2149 #ifdef CONFIG_COMPAT
2150 .compat_setsockopt = compat_tcp_setsockopt,
2151 .compat_getsockopt = compat_tcp_getsockopt,
2155 static struct inet6_protocol tcpv6_protocol = {
2156 .handler = tcp_v6_rcv,
2157 .err_handler = tcp_v6_err,
2158 .gso_send_check = tcp_v6_gso_send_check,
2159 .gso_segment = tcp_tso_segment,
2160 .flags = INET6_PROTO_NOPOLICY|INET6_PROTO_FINAL,
2163 static struct inet_protosw tcpv6_protosw = {
2164 .type = SOCK_STREAM,
2165 .protocol = IPPROTO_TCP,
2166 .prot = &tcpv6_prot,
2167 .ops = &inet6_stream_ops,
2170 .flags = INET_PROTOSW_PERMANENT |
2174 void __init tcpv6_init(void)
2176 /* register inet6 protocol */
2177 if (inet6_add_protocol(&tcpv6_protocol, IPPROTO_TCP) < 0)
2178 printk(KERN_ERR "tcpv6_init: Could not register protocol\n");
2179 inet6_register_protosw(&tcpv6_protosw);
2181 if (inet_csk_ctl_sock_create(&tcp6_socket, PF_INET6, SOCK_RAW,
2183 panic("Failed to create the TCPv6 control socket.\n");
projects / linux-2.6 / blob