3 * Linux INET6 implementation
6 * Pedro Roque <roque@di.fc.ul.pt>
10 * linux/net/ipv4/tcp_input.c
11 * linux/net/ipv4/tcp_output.c
14 * Hideaki YOSHIFUJI : sin6_scope_id support
15 * YOSHIFUJI Hideaki @USAGI and: Support IPV6_V6ONLY socket option, which
16 * Alexey Kuznetsov allow both IPv4 and IPv6 sockets to bind
17 * a single port at the same time.
18 * YOSHIFUJI Hideaki @USAGI: convert /proc/net/tcp6 to seq_file.
20 * This program is free software; you can redistribute it and/or
21 * modify it under the terms of the GNU General Public License
22 * as published by the Free Software Foundation; either version
23 * 2 of the License, or (at your option) any later version.
26 #include <linux/module.h>
27 #include <linux/errno.h>
28 #include <linux/types.h>
29 #include <linux/socket.h>
30 #include <linux/sockios.h>
31 #include <linux/net.h>
32 #include <linux/jiffies.h>
34 #include <linux/in6.h>
35 #include <linux/netdevice.h>
36 #include <linux/init.h>
37 #include <linux/jhash.h>
38 #include <linux/ipsec.h>
39 #include <linux/times.h>
41 #include <linux/ipv6.h>
42 #include <linux/icmpv6.h>
43 #include <linux/random.h>
46 #include <net/ndisc.h>
47 #include <net/inet6_hashtables.h>
48 #include <net/inet6_connection_sock.h>
50 #include <net/transp_v6.h>
51 #include <net/addrconf.h>
52 #include <net/ip6_route.h>
53 #include <net/ip6_checksum.h>
54 #include <net/inet_ecn.h>
55 #include <net/protocol.h>
58 #include <net/dsfield.h>
59 #include <net/timewait_sock.h>
60 #include <net/netdma.h>
61 #include <net/inet_common.h>
63 #include <asm/uaccess.h>
65 #include <linux/proc_fs.h>
66 #include <linux/seq_file.h>
68 #include <linux/crypto.h>
69 #include <linux/scatterlist.h>
71 static void tcp_v6_send_reset(struct sock *sk, struct sk_buff *skb);
72 static void tcp_v6_reqsk_send_ack(struct sk_buff *skb, struct request_sock *req);
74 static int tcp_v6_do_rcv(struct sock *sk, struct sk_buff *skb);
76 static struct inet_connection_sock_af_ops ipv6_mapped;
77 static struct inet_connection_sock_af_ops ipv6_specific;
78 #ifdef CONFIG_TCP_MD5SIG
79 static struct tcp_sock_af_ops tcp_sock_ipv6_specific;
80 static struct tcp_sock_af_ops tcp_sock_ipv6_mapped_specific;
82 static struct tcp_md5sig_key *tcp_v6_md5_do_lookup(struct sock *sk,
83 struct in6_addr *addr)
89 static void tcp_v6_hash(struct sock *sk)
91 if (sk->sk_state != TCP_CLOSE) {
92 if (inet_csk(sk)->icsk_af_ops == &ipv6_mapped) {
102 static __inline__ __sum16 tcp_v6_check(struct tcphdr *th, int len,
103 struct in6_addr *saddr,
104 struct in6_addr *daddr,
107 return csum_ipv6_magic(saddr, daddr, len, IPPROTO_TCP, base);
110 static __u32 tcp_v6_init_sequence(struct sk_buff *skb)
112 return secure_tcpv6_sequence_number(ipv6_hdr(skb)->daddr.s6_addr32,
113 ipv6_hdr(skb)->saddr.s6_addr32,
115 tcp_hdr(skb)->source);
118 static int tcp_v6_connect(struct sock *sk, struct sockaddr *uaddr,
121 struct sockaddr_in6 *usin = (struct sockaddr_in6 *) uaddr;
122 struct inet_sock *inet = inet_sk(sk);
123 struct inet_connection_sock *icsk = inet_csk(sk);
124 struct ipv6_pinfo *np = inet6_sk(sk);
125 struct tcp_sock *tp = tcp_sk(sk);
126 struct in6_addr *saddr = NULL, *final_p = NULL, final;
128 struct dst_entry *dst;
132 if (addr_len < SIN6_LEN_RFC2133)
135 if (usin->sin6_family != AF_INET6)
136 return(-EAFNOSUPPORT);
138 memset(&fl, 0, sizeof(fl));
141 fl.fl6_flowlabel = usin->sin6_flowinfo&IPV6_FLOWINFO_MASK;
142 IP6_ECN_flow_init(fl.fl6_flowlabel);
143 if (fl.fl6_flowlabel&IPV6_FLOWLABEL_MASK) {
144 struct ip6_flowlabel *flowlabel;
145 flowlabel = fl6_sock_lookup(sk, fl.fl6_flowlabel);
146 if (flowlabel == NULL)
148 ipv6_addr_copy(&usin->sin6_addr, &flowlabel->dst);
149 fl6_sock_release(flowlabel);
154 * connect() to INADDR_ANY means loopback (BSD'ism).
157 if(ipv6_addr_any(&usin->sin6_addr))
158 usin->sin6_addr.s6_addr[15] = 0x1;
160 addr_type = ipv6_addr_type(&usin->sin6_addr);
162 if(addr_type & IPV6_ADDR_MULTICAST)
165 if (addr_type&IPV6_ADDR_LINKLOCAL) {
166 if (addr_len >= sizeof(struct sockaddr_in6) &&
167 usin->sin6_scope_id) {
168 /* If interface is set while binding, indices
171 if (sk->sk_bound_dev_if &&
172 sk->sk_bound_dev_if != usin->sin6_scope_id)
175 sk->sk_bound_dev_if = usin->sin6_scope_id;
178 /* Connect to link-local address requires an interface */
179 if (!sk->sk_bound_dev_if)
183 if (tp->rx_opt.ts_recent_stamp &&
184 !ipv6_addr_equal(&np->daddr, &usin->sin6_addr)) {
185 tp->rx_opt.ts_recent = 0;
186 tp->rx_opt.ts_recent_stamp = 0;
190 ipv6_addr_copy(&np->daddr, &usin->sin6_addr);
191 np->flow_label = fl.fl6_flowlabel;
197 if (addr_type == IPV6_ADDR_MAPPED) {
198 u32 exthdrlen = icsk->icsk_ext_hdr_len;
199 struct sockaddr_in sin;
201 SOCK_DEBUG(sk, "connect: ipv4 mapped\n");
203 if (__ipv6_only_sock(sk))
206 sin.sin_family = AF_INET;
207 sin.sin_port = usin->sin6_port;
208 sin.sin_addr.s_addr = usin->sin6_addr.s6_addr32[3];
210 icsk->icsk_af_ops = &ipv6_mapped;
211 sk->sk_backlog_rcv = tcp_v4_do_rcv;
212 #ifdef CONFIG_TCP_MD5SIG
213 tp->af_specific = &tcp_sock_ipv6_mapped_specific;
216 err = tcp_v4_connect(sk, (struct sockaddr *)&sin, sizeof(sin));
219 icsk->icsk_ext_hdr_len = exthdrlen;
220 icsk->icsk_af_ops = &ipv6_specific;
221 sk->sk_backlog_rcv = tcp_v6_do_rcv;
222 #ifdef CONFIG_TCP_MD5SIG
223 tp->af_specific = &tcp_sock_ipv6_specific;
227 ipv6_addr_set(&np->saddr, 0, 0, htonl(0x0000FFFF),
229 ipv6_addr_set(&np->rcv_saddr, 0, 0, htonl(0x0000FFFF),
236 if (!ipv6_addr_any(&np->rcv_saddr))
237 saddr = &np->rcv_saddr;
239 fl.proto = IPPROTO_TCP;
240 ipv6_addr_copy(&fl.fl6_dst, &np->daddr);
241 ipv6_addr_copy(&fl.fl6_src,
242 (saddr ? saddr : &np->saddr));
243 fl.oif = sk->sk_bound_dev_if;
244 fl.fl_ip_dport = usin->sin6_port;
245 fl.fl_ip_sport = inet->sport;
247 if (np->opt && np->opt->srcrt) {
248 struct rt0_hdr *rt0 = (struct rt0_hdr *)np->opt->srcrt;
249 ipv6_addr_copy(&final, &fl.fl6_dst);
250 ipv6_addr_copy(&fl.fl6_dst, rt0->addr);
254 security_sk_classify_flow(sk, &fl);
256 err = ip6_dst_lookup(sk, &dst, &fl);
260 ipv6_addr_copy(&fl.fl6_dst, final_p);
262 if ((err = __xfrm_lookup(&dst, &fl, sk, XFRM_LOOKUP_WAIT)) < 0) {
264 err = ip6_dst_blackhole(sk, &dst, &fl);
271 ipv6_addr_copy(&np->rcv_saddr, saddr);
274 /* set the source address */
275 ipv6_addr_copy(&np->saddr, saddr);
276 inet->rcv_saddr = LOOPBACK4_IPV6;
278 sk->sk_gso_type = SKB_GSO_TCPV6;
279 __ip6_dst_store(sk, dst, NULL, NULL);
281 icsk->icsk_ext_hdr_len = 0;
283 icsk->icsk_ext_hdr_len = (np->opt->opt_flen +
286 tp->rx_opt.mss_clamp = IPV6_MIN_MTU - sizeof(struct tcphdr) - sizeof(struct ipv6hdr);
288 inet->dport = usin->sin6_port;
290 tcp_set_state(sk, TCP_SYN_SENT);
291 err = inet6_hash_connect(&tcp_death_row, sk);
296 tp->write_seq = secure_tcpv6_sequence_number(np->saddr.s6_addr32,
301 err = tcp_connect(sk);
308 tcp_set_state(sk, TCP_CLOSE);
312 sk->sk_route_caps = 0;
316 static void tcp_v6_err(struct sk_buff *skb, struct inet6_skb_parm *opt,
317 int type, int code, int offset, __be32 info)
319 struct ipv6hdr *hdr = (struct ipv6hdr*)skb->data;
320 const struct tcphdr *th = (struct tcphdr *)(skb->data+offset);
321 struct ipv6_pinfo *np;
326 struct net *net = dev_net(skb->dev);
328 sk = inet6_lookup(net, &tcp_hashinfo, &hdr->daddr,
329 th->dest, &hdr->saddr, th->source, skb->dev->ifindex);
332 ICMP6_INC_STATS_BH(__in6_dev_get(skb->dev), ICMP6_MIB_INERRORS);
336 if (sk->sk_state == TCP_TIME_WAIT) {
337 inet_twsk_put(inet_twsk(sk));
342 if (sock_owned_by_user(sk))
343 NET_INC_STATS_BH(net, LINUX_MIB_LOCKDROPPEDICMPS);
345 if (sk->sk_state == TCP_CLOSE)
349 seq = ntohl(th->seq);
350 if (sk->sk_state != TCP_LISTEN &&
351 !between(seq, tp->snd_una, tp->snd_nxt)) {
352 NET_INC_STATS_BH(net, LINUX_MIB_OUTOFWINDOWICMPS);
358 if (type == ICMPV6_PKT_TOOBIG) {
359 struct dst_entry *dst = NULL;
361 if (sock_owned_by_user(sk))
363 if ((1 << sk->sk_state) & (TCPF_LISTEN | TCPF_CLOSE))
366 /* icmp should have updated the destination cache entry */
367 dst = __sk_dst_check(sk, np->dst_cookie);
370 struct inet_sock *inet = inet_sk(sk);
373 /* BUGGG_FUTURE: Again, it is not clear how
374 to handle rthdr case. Ignore this complexity
377 memset(&fl, 0, sizeof(fl));
378 fl.proto = IPPROTO_TCP;
379 ipv6_addr_copy(&fl.fl6_dst, &np->daddr);
380 ipv6_addr_copy(&fl.fl6_src, &np->saddr);
381 fl.oif = sk->sk_bound_dev_if;
382 fl.fl_ip_dport = inet->dport;
383 fl.fl_ip_sport = inet->sport;
384 security_skb_classify_flow(skb, &fl);
386 if ((err = ip6_dst_lookup(sk, &dst, &fl))) {
387 sk->sk_err_soft = -err;
391 if ((err = xfrm_lookup(&dst, &fl, sk, 0)) < 0) {
392 sk->sk_err_soft = -err;
399 if (inet_csk(sk)->icsk_pmtu_cookie > dst_mtu(dst)) {
400 tcp_sync_mss(sk, dst_mtu(dst));
401 tcp_simple_retransmit(sk);
402 } /* else let the usual retransmit timer handle it */
407 icmpv6_err_convert(type, code, &err);
409 /* Might be for an request_sock */
410 switch (sk->sk_state) {
411 struct request_sock *req, **prev;
413 if (sock_owned_by_user(sk))
416 req = inet6_csk_search_req(sk, &prev, th->dest, &hdr->daddr,
417 &hdr->saddr, inet6_iif(skb));
421 /* ICMPs are not backlogged, hence we cannot get
422 * an established socket here.
424 BUG_TRAP(req->sk == NULL);
426 if (seq != tcp_rsk(req)->snt_isn) {
427 NET_INC_STATS_BH(net, LINUX_MIB_OUTOFWINDOWICMPS);
431 inet_csk_reqsk_queue_drop(sk, req, prev);
435 case TCP_SYN_RECV: /* Cannot happen.
436 It can, it SYNs are crossed. --ANK */
437 if (!sock_owned_by_user(sk)) {
439 sk->sk_error_report(sk); /* Wake people up to see the error (see connect in sock.c) */
443 sk->sk_err_soft = err;
447 if (!sock_owned_by_user(sk) && np->recverr) {
449 sk->sk_error_report(sk);
451 sk->sk_err_soft = err;
459 static int tcp_v6_send_synack(struct sock *sk, struct request_sock *req)
461 struct inet6_request_sock *treq = inet6_rsk(req);
462 struct ipv6_pinfo *np = inet6_sk(sk);
463 struct sk_buff * skb;
464 struct ipv6_txoptions *opt = NULL;
465 struct in6_addr * final_p = NULL, final;
467 struct dst_entry *dst;
470 memset(&fl, 0, sizeof(fl));
471 fl.proto = IPPROTO_TCP;
472 ipv6_addr_copy(&fl.fl6_dst, &treq->rmt_addr);
473 ipv6_addr_copy(&fl.fl6_src, &treq->loc_addr);
474 fl.fl6_flowlabel = 0;
476 fl.fl_ip_dport = inet_rsk(req)->rmt_port;
477 fl.fl_ip_sport = inet_sk(sk)->sport;
478 security_req_classify_flow(req, &fl);
481 if (opt && opt->srcrt) {
482 struct rt0_hdr *rt0 = (struct rt0_hdr *) opt->srcrt;
483 ipv6_addr_copy(&final, &fl.fl6_dst);
484 ipv6_addr_copy(&fl.fl6_dst, rt0->addr);
488 err = ip6_dst_lookup(sk, &dst, &fl);
492 ipv6_addr_copy(&fl.fl6_dst, final_p);
493 if ((err = xfrm_lookup(&dst, &fl, sk, 0)) < 0)
496 skb = tcp_make_synack(sk, dst, req);
498 struct tcphdr *th = tcp_hdr(skb);
500 th->check = tcp_v6_check(th, skb->len,
501 &treq->loc_addr, &treq->rmt_addr,
502 csum_partial((char *)th, skb->len, skb->csum));
504 ipv6_addr_copy(&fl.fl6_dst, &treq->rmt_addr);
505 err = ip6_xmit(sk, skb, &fl, opt, 0);
506 err = net_xmit_eval(err);
510 if (opt && opt != np->opt)
511 sock_kfree_s(sk, opt, opt->tot_len);
516 static inline void syn_flood_warning(struct sk_buff *skb)
518 #ifdef CONFIG_SYN_COOKIES
519 if (sysctl_tcp_syncookies)
521 "TCPv6: Possible SYN flooding on port %d. "
522 "Sending cookies.\n", ntohs(tcp_hdr(skb)->dest));
526 "TCPv6: Possible SYN flooding on port %d. "
527 "Dropping request.\n", ntohs(tcp_hdr(skb)->dest));
530 static void tcp_v6_reqsk_destructor(struct request_sock *req)
532 if (inet6_rsk(req)->pktopts)
533 kfree_skb(inet6_rsk(req)->pktopts);
536 #ifdef CONFIG_TCP_MD5SIG
537 static struct tcp_md5sig_key *tcp_v6_md5_do_lookup(struct sock *sk,
538 struct in6_addr *addr)
540 struct tcp_sock *tp = tcp_sk(sk);
545 if (!tp->md5sig_info || !tp->md5sig_info->entries6)
548 for (i = 0; i < tp->md5sig_info->entries6; i++) {
549 if (ipv6_addr_equal(&tp->md5sig_info->keys6[i].addr, addr))
550 return &tp->md5sig_info->keys6[i].base;
555 static struct tcp_md5sig_key *tcp_v6_md5_lookup(struct sock *sk,
556 struct sock *addr_sk)
558 return tcp_v6_md5_do_lookup(sk, &inet6_sk(addr_sk)->daddr);
561 static struct tcp_md5sig_key *tcp_v6_reqsk_md5_lookup(struct sock *sk,
562 struct request_sock *req)
564 return tcp_v6_md5_do_lookup(sk, &inet6_rsk(req)->rmt_addr);
567 static int tcp_v6_md5_do_add(struct sock *sk, struct in6_addr *peer,
568 char *newkey, u8 newkeylen)
570 /* Add key to the list */
571 struct tcp_md5sig_key *key;
572 struct tcp_sock *tp = tcp_sk(sk);
573 struct tcp6_md5sig_key *keys;
575 key = tcp_v6_md5_do_lookup(sk, peer);
577 /* modify existing entry - just update that one */
580 key->keylen = newkeylen;
582 /* reallocate new list if current one is full. */
583 if (!tp->md5sig_info) {
584 tp->md5sig_info = kzalloc(sizeof(*tp->md5sig_info), GFP_ATOMIC);
585 if (!tp->md5sig_info) {
589 sk->sk_route_caps &= ~NETIF_F_GSO_MASK;
591 if (tcp_alloc_md5sig_pool() == NULL) {
595 if (tp->md5sig_info->alloced6 == tp->md5sig_info->entries6) {
596 keys = kmalloc((sizeof (tp->md5sig_info->keys6[0]) *
597 (tp->md5sig_info->entries6 + 1)), GFP_ATOMIC);
600 tcp_free_md5sig_pool();
605 if (tp->md5sig_info->entries6)
606 memmove(keys, tp->md5sig_info->keys6,
607 (sizeof (tp->md5sig_info->keys6[0]) *
608 tp->md5sig_info->entries6));
610 kfree(tp->md5sig_info->keys6);
611 tp->md5sig_info->keys6 = keys;
612 tp->md5sig_info->alloced6++;
615 ipv6_addr_copy(&tp->md5sig_info->keys6[tp->md5sig_info->entries6].addr,
617 tp->md5sig_info->keys6[tp->md5sig_info->entries6].base.key = newkey;
618 tp->md5sig_info->keys6[tp->md5sig_info->entries6].base.keylen = newkeylen;
620 tp->md5sig_info->entries6++;
625 static int tcp_v6_md5_add_func(struct sock *sk, struct sock *addr_sk,
626 u8 *newkey, __u8 newkeylen)
628 return tcp_v6_md5_do_add(sk, &inet6_sk(addr_sk)->daddr,
632 static int tcp_v6_md5_do_del(struct sock *sk, struct in6_addr *peer)
634 struct tcp_sock *tp = tcp_sk(sk);
637 for (i = 0; i < tp->md5sig_info->entries6; i++) {
638 if (ipv6_addr_equal(&tp->md5sig_info->keys6[i].addr, peer)) {
640 kfree(tp->md5sig_info->keys6[i].base.key);
641 tp->md5sig_info->entries6--;
643 if (tp->md5sig_info->entries6 == 0) {
644 kfree(tp->md5sig_info->keys6);
645 tp->md5sig_info->keys6 = NULL;
646 tp->md5sig_info->alloced6 = 0;
648 /* shrink the database */
649 if (tp->md5sig_info->entries6 != i)
650 memmove(&tp->md5sig_info->keys6[i],
651 &tp->md5sig_info->keys6[i+1],
652 (tp->md5sig_info->entries6 - i)
653 * sizeof (tp->md5sig_info->keys6[0]));
655 tcp_free_md5sig_pool();
662 static void tcp_v6_clear_md5_list (struct sock *sk)
664 struct tcp_sock *tp = tcp_sk(sk);
667 if (tp->md5sig_info->entries6) {
668 for (i = 0; i < tp->md5sig_info->entries6; i++)
669 kfree(tp->md5sig_info->keys6[i].base.key);
670 tp->md5sig_info->entries6 = 0;
671 tcp_free_md5sig_pool();
674 kfree(tp->md5sig_info->keys6);
675 tp->md5sig_info->keys6 = NULL;
676 tp->md5sig_info->alloced6 = 0;
678 if (tp->md5sig_info->entries4) {
679 for (i = 0; i < tp->md5sig_info->entries4; i++)
680 kfree(tp->md5sig_info->keys4[i].base.key);
681 tp->md5sig_info->entries4 = 0;
682 tcp_free_md5sig_pool();
685 kfree(tp->md5sig_info->keys4);
686 tp->md5sig_info->keys4 = NULL;
687 tp->md5sig_info->alloced4 = 0;
690 static int tcp_v6_parse_md5_keys (struct sock *sk, char __user *optval,
693 struct tcp_md5sig cmd;
694 struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)&cmd.tcpm_addr;
697 if (optlen < sizeof(cmd))
700 if (copy_from_user(&cmd, optval, sizeof(cmd)))
703 if (sin6->sin6_family != AF_INET6)
706 if (!cmd.tcpm_keylen) {
707 if (!tcp_sk(sk)->md5sig_info)
709 if (ipv6_addr_v4mapped(&sin6->sin6_addr))
710 return tcp_v4_md5_do_del(sk, sin6->sin6_addr.s6_addr32[3]);
711 return tcp_v6_md5_do_del(sk, &sin6->sin6_addr);
714 if (cmd.tcpm_keylen > TCP_MD5SIG_MAXKEYLEN)
717 if (!tcp_sk(sk)->md5sig_info) {
718 struct tcp_sock *tp = tcp_sk(sk);
719 struct tcp_md5sig_info *p;
721 p = kzalloc(sizeof(struct tcp_md5sig_info), GFP_KERNEL);
726 sk->sk_route_caps &= ~NETIF_F_GSO_MASK;
729 newkey = kmemdup(cmd.tcpm_key, cmd.tcpm_keylen, GFP_KERNEL);
732 if (ipv6_addr_v4mapped(&sin6->sin6_addr)) {
733 return tcp_v4_md5_do_add(sk, sin6->sin6_addr.s6_addr32[3],
734 newkey, cmd.tcpm_keylen);
736 return tcp_v6_md5_do_add(sk, &sin6->sin6_addr, newkey, cmd.tcpm_keylen);
739 static int tcp_v6_do_calc_md5_hash(char *md5_hash, struct tcp_md5sig_key *key,
740 struct in6_addr *saddr,
741 struct in6_addr *daddr,
742 struct tcphdr *th, unsigned int tcplen)
744 struct tcp_md5sig_pool *hp;
745 struct tcp6_pseudohdr *bp;
748 hp = tcp_get_md5sig_pool();
750 printk(KERN_WARNING "%s(): hash pool not found...\n", __func__);
751 goto clear_hash_noput;
754 bp = &hp->md5_blk.ip6;
756 /* 1. TCP pseudo-header (RFC2460) */
757 ipv6_addr_copy(&bp->saddr, saddr);
758 ipv6_addr_copy(&bp->daddr, daddr);
759 bp->len = htonl(tcplen);
760 bp->protocol = htonl(IPPROTO_TCP);
762 err = tcp_calc_md5_hash(md5_hash, key, sizeof(*bp),
768 /* Free up the crypto pool */
769 tcp_put_md5sig_pool();
773 tcp_put_md5sig_pool();
775 memset(md5_hash, 0, 16);
779 static int tcp_v6_calc_md5_hash(char *md5_hash, struct tcp_md5sig_key *key,
781 struct dst_entry *dst,
782 struct request_sock *req,
783 struct tcphdr *th, unsigned int tcplen)
785 struct in6_addr *saddr, *daddr;
788 saddr = &inet6_sk(sk)->saddr;
789 daddr = &inet6_sk(sk)->daddr;
791 saddr = &inet6_rsk(req)->loc_addr;
792 daddr = &inet6_rsk(req)->rmt_addr;
794 return tcp_v6_do_calc_md5_hash(md5_hash, key,
799 static int tcp_v6_inbound_md5_hash (struct sock *sk, struct sk_buff *skb)
801 __u8 *hash_location = NULL;
802 struct tcp_md5sig_key *hash_expected;
803 struct ipv6hdr *ip6h = ipv6_hdr(skb);
804 struct tcphdr *th = tcp_hdr(skb);
808 hash_expected = tcp_v6_md5_do_lookup(sk, &ip6h->saddr);
809 hash_location = tcp_parse_md5sig_option(th);
811 /* do we have a hash as expected? */
812 if (!hash_expected) {
815 if (net_ratelimit()) {
816 printk(KERN_INFO "MD5 Hash NOT expected but found "
817 "(" NIP6_FMT ", %u)->"
818 "(" NIP6_FMT ", %u)\n",
819 NIP6(ip6h->saddr), ntohs(th->source),
820 NIP6(ip6h->daddr), ntohs(th->dest));
825 if (!hash_location) {
826 if (net_ratelimit()) {
827 printk(KERN_INFO "MD5 Hash expected but NOT found "
828 "(" NIP6_FMT ", %u)->"
829 "(" NIP6_FMT ", %u)\n",
830 NIP6(ip6h->saddr), ntohs(th->source),
831 NIP6(ip6h->daddr), ntohs(th->dest));
836 /* check the signature */
837 genhash = tcp_v6_do_calc_md5_hash(newhash,
839 &ip6h->saddr, &ip6h->daddr,
841 if (genhash || memcmp(hash_location, newhash, 16) != 0) {
842 if (net_ratelimit()) {
843 printk(KERN_INFO "MD5 Hash %s for "
844 "(" NIP6_FMT ", %u)->"
845 "(" NIP6_FMT ", %u)\n",
846 genhash ? "failed" : "mismatch",
847 NIP6(ip6h->saddr), ntohs(th->source),
848 NIP6(ip6h->daddr), ntohs(th->dest));
856 struct request_sock_ops tcp6_request_sock_ops __read_mostly = {
858 .obj_size = sizeof(struct tcp6_request_sock),
859 .rtx_syn_ack = tcp_v6_send_synack,
860 .send_ack = tcp_v6_reqsk_send_ack,
861 .destructor = tcp_v6_reqsk_destructor,
862 .send_reset = tcp_v6_send_reset
865 #ifdef CONFIG_TCP_MD5SIG
866 static struct tcp_request_sock_ops tcp_request_sock_ipv6_ops = {
867 .md5_lookup = tcp_v6_reqsk_md5_lookup,
871 static struct timewait_sock_ops tcp6_timewait_sock_ops = {
872 .twsk_obj_size = sizeof(struct tcp6_timewait_sock),
873 .twsk_unique = tcp_twsk_unique,
874 .twsk_destructor= tcp_twsk_destructor,
877 static void tcp_v6_send_check(struct sock *sk, int len, struct sk_buff *skb)
879 struct ipv6_pinfo *np = inet6_sk(sk);
880 struct tcphdr *th = tcp_hdr(skb);
882 if (skb->ip_summed == CHECKSUM_PARTIAL) {
883 th->check = ~csum_ipv6_magic(&np->saddr, &np->daddr, len, IPPROTO_TCP, 0);
884 skb->csum_start = skb_transport_header(skb) - skb->head;
885 skb->csum_offset = offsetof(struct tcphdr, check);
887 th->check = csum_ipv6_magic(&np->saddr, &np->daddr, len, IPPROTO_TCP,
888 csum_partial((char *)th, th->doff<<2,
893 static int tcp_v6_gso_send_check(struct sk_buff *skb)
895 struct ipv6hdr *ipv6h;
898 if (!pskb_may_pull(skb, sizeof(*th)))
901 ipv6h = ipv6_hdr(skb);
905 th->check = ~csum_ipv6_magic(&ipv6h->saddr, &ipv6h->daddr, skb->len,
907 skb->csum_start = skb_transport_header(skb) - skb->head;
908 skb->csum_offset = offsetof(struct tcphdr, check);
909 skb->ip_summed = CHECKSUM_PARTIAL;
913 static void tcp_v6_send_reset(struct sock *sk, struct sk_buff *skb)
915 struct tcphdr *th = tcp_hdr(skb), *t1;
916 struct sk_buff *buff;
918 struct net *net = dev_net(skb->dst->dev);
919 struct sock *ctl_sk = net->ipv6.tcp_sk;
920 unsigned int tot_len = sizeof(*th);
921 #ifdef CONFIG_TCP_MD5SIG
922 struct tcp_md5sig_key *key;
928 if (!ipv6_unicast_destination(skb))
931 #ifdef CONFIG_TCP_MD5SIG
933 key = tcp_v6_md5_do_lookup(sk, &ipv6_hdr(skb)->daddr);
938 tot_len += TCPOLEN_MD5SIG_ALIGNED;
942 * We need to grab some memory, and put together an RST,
943 * and then put it into the queue to be sent.
946 buff = alloc_skb(MAX_HEADER + sizeof(struct ipv6hdr) + tot_len,
951 skb_reserve(buff, MAX_HEADER + sizeof(struct ipv6hdr) + tot_len);
953 t1 = (struct tcphdr *) skb_push(buff, tot_len);
955 /* Swap the send and the receive. */
956 memset(t1, 0, sizeof(*t1));
957 t1->dest = th->source;
958 t1->source = th->dest;
959 t1->doff = tot_len / 4;
963 t1->seq = th->ack_seq;
966 t1->ack_seq = htonl(ntohl(th->seq) + th->syn + th->fin
967 + skb->len - (th->doff<<2));
970 #ifdef CONFIG_TCP_MD5SIG
972 __be32 *opt = (__be32*)(t1 + 1);
973 opt[0] = htonl((TCPOPT_NOP << 24) |
975 (TCPOPT_MD5SIG << 8) |
977 tcp_v6_do_calc_md5_hash((__u8 *)&opt[1], key,
978 &ipv6_hdr(skb)->daddr,
979 &ipv6_hdr(skb)->saddr,
984 buff->csum = csum_partial((char *)t1, sizeof(*t1), 0);
986 memset(&fl, 0, sizeof(fl));
987 ipv6_addr_copy(&fl.fl6_dst, &ipv6_hdr(skb)->saddr);
988 ipv6_addr_copy(&fl.fl6_src, &ipv6_hdr(skb)->daddr);
990 t1->check = csum_ipv6_magic(&fl.fl6_src, &fl.fl6_dst,
991 sizeof(*t1), IPPROTO_TCP,
994 fl.proto = IPPROTO_TCP;
995 fl.oif = inet6_iif(skb);
996 fl.fl_ip_dport = t1->dest;
997 fl.fl_ip_sport = t1->source;
998 security_skb_classify_flow(skb, &fl);
1000 /* Pass a socket to ip6_dst_lookup either it is for RST
1001 * Underlying function will use this to retrieve the network
1004 if (!ip6_dst_lookup(ctl_sk, &buff->dst, &fl)) {
1006 if (xfrm_lookup(&buff->dst, &fl, NULL, 0) >= 0) {
1007 ip6_xmit(ctl_sk, buff, &fl, NULL, 0);
1008 TCP_INC_STATS_BH(net, TCP_MIB_OUTSEGS);
1009 TCP_INC_STATS_BH(net, TCP_MIB_OUTRSTS);
1017 static void tcp_v6_send_ack(struct sk_buff *skb, u32 seq, u32 ack, u32 win, u32 ts,
1018 struct tcp_md5sig_key *key)
1020 struct tcphdr *th = tcp_hdr(skb), *t1;
1021 struct sk_buff *buff;
1023 struct net *net = dev_net(skb->dev);
1024 struct sock *ctl_sk = net->ipv6.tcp_sk;
1025 unsigned int tot_len = sizeof(struct tcphdr);
1029 tot_len += TCPOLEN_TSTAMP_ALIGNED;
1030 #ifdef CONFIG_TCP_MD5SIG
1032 tot_len += TCPOLEN_MD5SIG_ALIGNED;
1035 buff = alloc_skb(MAX_HEADER + sizeof(struct ipv6hdr) + tot_len,
1040 skb_reserve(buff, MAX_HEADER + sizeof(struct ipv6hdr) + tot_len);
1042 t1 = (struct tcphdr *) skb_push(buff,tot_len);
1044 /* Swap the send and the receive. */
1045 memset(t1, 0, sizeof(*t1));
1046 t1->dest = th->source;
1047 t1->source = th->dest;
1048 t1->doff = tot_len/4;
1049 t1->seq = htonl(seq);
1050 t1->ack_seq = htonl(ack);
1052 t1->window = htons(win);
1054 topt = (__be32 *)(t1 + 1);
1057 *topt++ = htonl((TCPOPT_NOP << 24) | (TCPOPT_NOP << 16) |
1058 (TCPOPT_TIMESTAMP << 8) | TCPOLEN_TIMESTAMP);
1059 *topt++ = htonl(tcp_time_stamp);
1063 #ifdef CONFIG_TCP_MD5SIG
1065 *topt++ = htonl((TCPOPT_NOP << 24) | (TCPOPT_NOP << 16) |
1066 (TCPOPT_MD5SIG << 8) | TCPOLEN_MD5SIG);
1067 tcp_v6_do_calc_md5_hash((__u8 *)topt, key,
1068 &ipv6_hdr(skb)->daddr,
1069 &ipv6_hdr(skb)->saddr,
1074 buff->csum = csum_partial((char *)t1, tot_len, 0);
1076 memset(&fl, 0, sizeof(fl));
1077 ipv6_addr_copy(&fl.fl6_dst, &ipv6_hdr(skb)->saddr);
1078 ipv6_addr_copy(&fl.fl6_src, &ipv6_hdr(skb)->daddr);
1080 t1->check = csum_ipv6_magic(&fl.fl6_src, &fl.fl6_dst,
1081 tot_len, IPPROTO_TCP,
1084 fl.proto = IPPROTO_TCP;
1085 fl.oif = inet6_iif(skb);
1086 fl.fl_ip_dport = t1->dest;
1087 fl.fl_ip_sport = t1->source;
1088 security_skb_classify_flow(skb, &fl);
1090 if (!ip6_dst_lookup(ctl_sk, &buff->dst, &fl)) {
1091 if (xfrm_lookup(&buff->dst, &fl, NULL, 0) >= 0) {
1092 ip6_xmit(ctl_sk, buff, &fl, NULL, 0);
1093 TCP_INC_STATS_BH(net, TCP_MIB_OUTSEGS);
1101 static void tcp_v6_timewait_ack(struct sock *sk, struct sk_buff *skb)
1103 struct inet_timewait_sock *tw = inet_twsk(sk);
1104 struct tcp_timewait_sock *tcptw = tcp_twsk(sk);
1106 tcp_v6_send_ack(skb, tcptw->tw_snd_nxt, tcptw->tw_rcv_nxt,
1107 tcptw->tw_rcv_wnd >> tw->tw_rcv_wscale,
1108 tcptw->tw_ts_recent, tcp_twsk_md5_key(tcptw));
1113 static void tcp_v6_reqsk_send_ack(struct sk_buff *skb, struct request_sock *req)
1115 tcp_v6_send_ack(skb, tcp_rsk(req)->snt_isn + 1, tcp_rsk(req)->rcv_isn + 1, req->rcv_wnd, req->ts_recent,
1116 tcp_v6_md5_do_lookup(skb->sk, &ipv6_hdr(skb)->daddr));
1120 static struct sock *tcp_v6_hnd_req(struct sock *sk,struct sk_buff *skb)
1122 struct request_sock *req, **prev;
1123 const struct tcphdr *th = tcp_hdr(skb);
1126 /* Find possible connection requests. */
1127 req = inet6_csk_search_req(sk, &prev, th->source,
1128 &ipv6_hdr(skb)->saddr,
1129 &ipv6_hdr(skb)->daddr, inet6_iif(skb));
1131 return tcp_check_req(sk, skb, req, prev);
1133 nsk = __inet6_lookup_established(sock_net(sk), &tcp_hashinfo,
1134 &ipv6_hdr(skb)->saddr, th->source,
1135 &ipv6_hdr(skb)->daddr, ntohs(th->dest), inet6_iif(skb));
1138 if (nsk->sk_state != TCP_TIME_WAIT) {
1142 inet_twsk_put(inet_twsk(nsk));
1146 #ifdef CONFIG_SYN_COOKIES
1147 if (!th->rst && !th->syn && th->ack)
1148 sk = cookie_v6_check(sk, skb);
1153 /* FIXME: this is substantially similar to the ipv4 code.
1154 * Can some kind of merge be done? -- erics
1156 static int tcp_v6_conn_request(struct sock *sk, struct sk_buff *skb)
1158 struct inet6_request_sock *treq;
1159 struct ipv6_pinfo *np = inet6_sk(sk);
1160 struct tcp_options_received tmp_opt;
1161 struct tcp_sock *tp = tcp_sk(sk);
1162 struct request_sock *req = NULL;
1163 __u32 isn = TCP_SKB_CB(skb)->when;
1164 #ifdef CONFIG_SYN_COOKIES
1165 int want_cookie = 0;
1167 #define want_cookie 0
1170 if (skb->protocol == htons(ETH_P_IP))
1171 return tcp_v4_conn_request(sk, skb);
1173 if (!ipv6_unicast_destination(skb))
1176 if (inet_csk_reqsk_queue_is_full(sk) && !isn) {
1177 if (net_ratelimit())
1178 syn_flood_warning(skb);
1179 #ifdef CONFIG_SYN_COOKIES
1180 if (sysctl_tcp_syncookies)
1187 if (sk_acceptq_is_full(sk) && inet_csk_reqsk_queue_young(sk) > 1)
1190 req = inet6_reqsk_alloc(&tcp6_request_sock_ops);
1194 #ifdef CONFIG_TCP_MD5SIG
1195 tcp_rsk(req)->af_specific = &tcp_request_sock_ipv6_ops;
1198 tcp_clear_options(&tmp_opt);
1199 tmp_opt.mss_clamp = IPV6_MIN_MTU - sizeof(struct tcphdr) - sizeof(struct ipv6hdr);
1200 tmp_opt.user_mss = tp->rx_opt.user_mss;
1202 tcp_parse_options(skb, &tmp_opt, 0);
1204 if (want_cookie && !tmp_opt.saw_tstamp)
1205 tcp_clear_options(&tmp_opt);
1207 tmp_opt.tstamp_ok = tmp_opt.saw_tstamp;
1208 tcp_openreq_init(req, &tmp_opt, skb);
1210 treq = inet6_rsk(req);
1211 ipv6_addr_copy(&treq->rmt_addr, &ipv6_hdr(skb)->saddr);
1212 ipv6_addr_copy(&treq->loc_addr, &ipv6_hdr(skb)->daddr);
1214 TCP_ECN_create_request(req, tcp_hdr(skb));
1217 isn = cookie_v6_init_sequence(sk, skb, &req->mss);
1218 req->cookie_ts = tmp_opt.tstamp_ok;
1220 if (ipv6_opt_accepted(sk, skb) ||
1221 np->rxopt.bits.rxinfo || np->rxopt.bits.rxoinfo ||
1222 np->rxopt.bits.rxhlim || np->rxopt.bits.rxohlim) {
1223 atomic_inc(&skb->users);
1224 treq->pktopts = skb;
1226 treq->iif = sk->sk_bound_dev_if;
1228 /* So that link locals have meaning */
1229 if (!sk->sk_bound_dev_if &&
1230 ipv6_addr_type(&treq->rmt_addr) & IPV6_ADDR_LINKLOCAL)
1231 treq->iif = inet6_iif(skb);
1233 isn = tcp_v6_init_sequence(skb);
1236 tcp_rsk(req)->snt_isn = isn;
1238 security_inet_conn_request(sk, skb, req);
1240 if (tcp_v6_send_synack(sk, req))
1244 inet6_csk_reqsk_queue_hash_add(sk, req, TCP_TIMEOUT_INIT);
1252 return 0; /* don't send reset */
1255 static struct sock * tcp_v6_syn_recv_sock(struct sock *sk, struct sk_buff *skb,
1256 struct request_sock *req,
1257 struct dst_entry *dst)
1259 struct inet6_request_sock *treq = inet6_rsk(req);
1260 struct ipv6_pinfo *newnp, *np = inet6_sk(sk);
1261 struct tcp6_sock *newtcp6sk;
1262 struct inet_sock *newinet;
1263 struct tcp_sock *newtp;
1265 struct ipv6_txoptions *opt;
1266 #ifdef CONFIG_TCP_MD5SIG
1267 struct tcp_md5sig_key *key;
1270 if (skb->protocol == htons(ETH_P_IP)) {
1275 newsk = tcp_v4_syn_recv_sock(sk, skb, req, dst);
1280 newtcp6sk = (struct tcp6_sock *)newsk;
1281 inet_sk(newsk)->pinet6 = &newtcp6sk->inet6;
1283 newinet = inet_sk(newsk);
1284 newnp = inet6_sk(newsk);
1285 newtp = tcp_sk(newsk);
1287 memcpy(newnp, np, sizeof(struct ipv6_pinfo));
1289 ipv6_addr_set(&newnp->daddr, 0, 0, htonl(0x0000FFFF),
1292 ipv6_addr_set(&newnp->saddr, 0, 0, htonl(0x0000FFFF),
1295 ipv6_addr_copy(&newnp->rcv_saddr, &newnp->saddr);
1297 inet_csk(newsk)->icsk_af_ops = &ipv6_mapped;
1298 newsk->sk_backlog_rcv = tcp_v4_do_rcv;
1299 #ifdef CONFIG_TCP_MD5SIG
1300 newtp->af_specific = &tcp_sock_ipv6_mapped_specific;
1303 newnp->pktoptions = NULL;
1305 newnp->mcast_oif = inet6_iif(skb);
1306 newnp->mcast_hops = ipv6_hdr(skb)->hop_limit;
1309 * No need to charge this sock to the relevant IPv6 refcnt debug socks count
1310 * here, tcp_create_openreq_child now does this for us, see the comment in
1311 * that function for the gory details. -acme
1314 /* It is tricky place. Until this moment IPv4 tcp
1315 worked with IPv6 icsk.icsk_af_ops.
1318 tcp_sync_mss(newsk, inet_csk(newsk)->icsk_pmtu_cookie);
1325 if (sk_acceptq_is_full(sk))
1329 struct in6_addr *final_p = NULL, final;
1332 memset(&fl, 0, sizeof(fl));
1333 fl.proto = IPPROTO_TCP;
1334 ipv6_addr_copy(&fl.fl6_dst, &treq->rmt_addr);
1335 if (opt && opt->srcrt) {
1336 struct rt0_hdr *rt0 = (struct rt0_hdr *) opt->srcrt;
1337 ipv6_addr_copy(&final, &fl.fl6_dst);
1338 ipv6_addr_copy(&fl.fl6_dst, rt0->addr);
1341 ipv6_addr_copy(&fl.fl6_src, &treq->loc_addr);
1342 fl.oif = sk->sk_bound_dev_if;
1343 fl.fl_ip_dport = inet_rsk(req)->rmt_port;
1344 fl.fl_ip_sport = inet_sk(sk)->sport;
1345 security_req_classify_flow(req, &fl);
1347 if (ip6_dst_lookup(sk, &dst, &fl))
1351 ipv6_addr_copy(&fl.fl6_dst, final_p);
1353 if ((xfrm_lookup(&dst, &fl, sk, 0)) < 0)
1357 newsk = tcp_create_openreq_child(sk, req, skb);
1362 * No need to charge this sock to the relevant IPv6 refcnt debug socks
1363 * count here, tcp_create_openreq_child now does this for us, see the
1364 * comment in that function for the gory details. -acme
1367 newsk->sk_gso_type = SKB_GSO_TCPV6;
1368 __ip6_dst_store(newsk, dst, NULL, NULL);
1370 newtcp6sk = (struct tcp6_sock *)newsk;
1371 inet_sk(newsk)->pinet6 = &newtcp6sk->inet6;
1373 newtp = tcp_sk(newsk);
1374 newinet = inet_sk(newsk);
1375 newnp = inet6_sk(newsk);
1377 memcpy(newnp, np, sizeof(struct ipv6_pinfo));
1379 ipv6_addr_copy(&newnp->daddr, &treq->rmt_addr);
1380 ipv6_addr_copy(&newnp->saddr, &treq->loc_addr);
1381 ipv6_addr_copy(&newnp->rcv_saddr, &treq->loc_addr);
1382 newsk->sk_bound_dev_if = treq->iif;
1384 /* Now IPv6 options...
1386 First: no IPv4 options.
1388 newinet->opt = NULL;
1389 newnp->ipv6_fl_list = NULL;
1392 newnp->rxopt.all = np->rxopt.all;
1394 /* Clone pktoptions received with SYN */
1395 newnp->pktoptions = NULL;
1396 if (treq->pktopts != NULL) {
1397 newnp->pktoptions = skb_clone(treq->pktopts, GFP_ATOMIC);
1398 kfree_skb(treq->pktopts);
1399 treq->pktopts = NULL;
1400 if (newnp->pktoptions)
1401 skb_set_owner_r(newnp->pktoptions, newsk);
1404 newnp->mcast_oif = inet6_iif(skb);
1405 newnp->mcast_hops = ipv6_hdr(skb)->hop_limit;
1407 /* Clone native IPv6 options from listening socket (if any)
1409 Yes, keeping reference count would be much more clever,
1410 but we make one more one thing there: reattach optmem
1414 newnp->opt = ipv6_dup_options(newsk, opt);
1416 sock_kfree_s(sk, opt, opt->tot_len);
1419 inet_csk(newsk)->icsk_ext_hdr_len = 0;
1421 inet_csk(newsk)->icsk_ext_hdr_len = (newnp->opt->opt_nflen +
1422 newnp->opt->opt_flen);
1424 tcp_mtup_init(newsk);
1425 tcp_sync_mss(newsk, dst_mtu(dst));
1426 newtp->advmss = dst_metric(dst, RTAX_ADVMSS);
1427 tcp_initialize_rcv_mss(newsk);
1429 newinet->daddr = newinet->saddr = newinet->rcv_saddr = LOOPBACK4_IPV6;
1431 #ifdef CONFIG_TCP_MD5SIG
1432 /* Copy over the MD5 key from the original socket */
1433 if ((key = tcp_v6_md5_do_lookup(sk, &newnp->daddr)) != NULL) {
1434 /* We're using one, so create a matching key
1435 * on the newsk structure. If we fail to get
1436 * memory, then we end up not copying the key
1439 char *newkey = kmemdup(key->key, key->keylen, GFP_ATOMIC);
1441 tcp_v6_md5_do_add(newsk, &inet6_sk(sk)->daddr,
1442 newkey, key->keylen);
1446 __inet6_hash(newsk);
1447 __inet_inherit_port(sk, newsk);
1452 NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_LISTENOVERFLOWS);
1454 NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_LISTENDROPS);
1455 if (opt && opt != np->opt)
1456 sock_kfree_s(sk, opt, opt->tot_len);
1461 static __sum16 tcp_v6_checksum_init(struct sk_buff *skb)
1463 if (skb->ip_summed == CHECKSUM_COMPLETE) {
1464 if (!tcp_v6_check(tcp_hdr(skb), skb->len, &ipv6_hdr(skb)->saddr,
1465 &ipv6_hdr(skb)->daddr, skb->csum)) {
1466 skb->ip_summed = CHECKSUM_UNNECESSARY;
1471 skb->csum = ~csum_unfold(tcp_v6_check(tcp_hdr(skb), skb->len,
1472 &ipv6_hdr(skb)->saddr,
1473 &ipv6_hdr(skb)->daddr, 0));
1475 if (skb->len <= 76) {
1476 return __skb_checksum_complete(skb);
1481 /* The socket must have it's spinlock held when we get
1484 * We have a potential double-lock case here, so even when
1485 * doing backlog processing we use the BH locking scheme.
1486 * This is because we cannot sleep with the original spinlock
1489 static int tcp_v6_do_rcv(struct sock *sk, struct sk_buff *skb)
1491 struct ipv6_pinfo *np = inet6_sk(sk);
1492 struct tcp_sock *tp;
1493 struct sk_buff *opt_skb = NULL;
1495 /* Imagine: socket is IPv6. IPv4 packet arrives,
1496 goes to IPv4 receive handler and backlogged.
1497 From backlog it always goes here. Kerboom...
1498 Fortunately, tcp_rcv_established and rcv_established
1499 handle them correctly, but it is not case with
1500 tcp_v6_hnd_req and tcp_v6_send_reset(). --ANK
1503 if (skb->protocol == htons(ETH_P_IP))
1504 return tcp_v4_do_rcv(sk, skb);
1506 #ifdef CONFIG_TCP_MD5SIG
1507 if (tcp_v6_inbound_md5_hash (sk, skb))
1511 if (sk_filter(sk, skb))
1515 * socket locking is here for SMP purposes as backlog rcv
1516 * is currently called with bh processing disabled.
1519 /* Do Stevens' IPV6_PKTOPTIONS.
1521 Yes, guys, it is the only place in our code, where we
1522 may make it not affecting IPv4.
1523 The rest of code is protocol independent,
1524 and I do not like idea to uglify IPv4.
1526 Actually, all the idea behind IPV6_PKTOPTIONS
1527 looks not very well thought. For now we latch
1528 options, received in the last packet, enqueued
1529 by tcp. Feel free to propose better solution.
1533 opt_skb = skb_clone(skb, GFP_ATOMIC);
1535 if (sk->sk_state == TCP_ESTABLISHED) { /* Fast path */
1536 TCP_CHECK_TIMER(sk);
1537 if (tcp_rcv_established(sk, skb, tcp_hdr(skb), skb->len))
1539 TCP_CHECK_TIMER(sk);
1541 goto ipv6_pktoptions;
1545 if (skb->len < tcp_hdrlen(skb) || tcp_checksum_complete(skb))
1548 if (sk->sk_state == TCP_LISTEN) {
1549 struct sock *nsk = tcp_v6_hnd_req(sk, skb);
1554 * Queue it on the new socket if the new socket is active,
1555 * otherwise we just shortcircuit this and continue with
1559 if (tcp_child_process(sk, nsk, skb))
1562 __kfree_skb(opt_skb);
1567 TCP_CHECK_TIMER(sk);
1568 if (tcp_rcv_state_process(sk, skb, tcp_hdr(skb), skb->len))
1570 TCP_CHECK_TIMER(sk);
1572 goto ipv6_pktoptions;
1576 tcp_v6_send_reset(sk, skb);
1579 __kfree_skb(opt_skb);
1583 TCP_INC_STATS_BH(sock_net(sk), TCP_MIB_INERRS);
1588 /* Do you ask, what is it?
1590 1. skb was enqueued by tcp.
1591 2. skb is added to tail of read queue, rather than out of order.
1592 3. socket is not in passive state.
1593 4. Finally, it really contains options, which user wants to receive.
1596 if (TCP_SKB_CB(opt_skb)->end_seq == tp->rcv_nxt &&
1597 !((1 << sk->sk_state) & (TCPF_CLOSE | TCPF_LISTEN))) {
1598 if (np->rxopt.bits.rxinfo || np->rxopt.bits.rxoinfo)
1599 np->mcast_oif = inet6_iif(opt_skb);
1600 if (np->rxopt.bits.rxhlim || np->rxopt.bits.rxohlim)
1601 np->mcast_hops = ipv6_hdr(opt_skb)->hop_limit;
1602 if (ipv6_opt_accepted(sk, opt_skb)) {
1603 skb_set_owner_r(opt_skb, sk);
1604 opt_skb = xchg(&np->pktoptions, opt_skb);
1606 __kfree_skb(opt_skb);
1607 opt_skb = xchg(&np->pktoptions, NULL);
1616 static int tcp_v6_rcv(struct sk_buff *skb)
1621 struct net *net = dev_net(skb->dev);
1623 if (skb->pkt_type != PACKET_HOST)
1627 * Count it even if it's bad.
1629 TCP_INC_STATS_BH(net, TCP_MIB_INSEGS);
1631 if (!pskb_may_pull(skb, sizeof(struct tcphdr)))
1636 if (th->doff < sizeof(struct tcphdr)/4)
1638 if (!pskb_may_pull(skb, th->doff*4))
1641 if (!skb_csum_unnecessary(skb) && tcp_v6_checksum_init(skb))
1645 TCP_SKB_CB(skb)->seq = ntohl(th->seq);
1646 TCP_SKB_CB(skb)->end_seq = (TCP_SKB_CB(skb)->seq + th->syn + th->fin +
1647 skb->len - th->doff*4);
1648 TCP_SKB_CB(skb)->ack_seq = ntohl(th->ack_seq);
1649 TCP_SKB_CB(skb)->when = 0;
1650 TCP_SKB_CB(skb)->flags = ipv6_get_dsfield(ipv6_hdr(skb));
1651 TCP_SKB_CB(skb)->sacked = 0;
1653 sk = __inet6_lookup(net, &tcp_hashinfo,
1654 &ipv6_hdr(skb)->saddr, th->source,
1655 &ipv6_hdr(skb)->daddr, ntohs(th->dest),
1662 if (sk->sk_state == TCP_TIME_WAIT)
1665 if (!xfrm6_policy_check(sk, XFRM_POLICY_IN, skb))
1666 goto discard_and_relse;
1668 if (sk_filter(sk, skb))
1669 goto discard_and_relse;
1673 bh_lock_sock_nested(sk);
1675 if (!sock_owned_by_user(sk)) {
1676 #ifdef CONFIG_NET_DMA
1677 struct tcp_sock *tp = tcp_sk(sk);
1678 if (!tp->ucopy.dma_chan && tp->ucopy.pinned_list)
1679 tp->ucopy.dma_chan = get_softnet_dma();
1680 if (tp->ucopy.dma_chan)
1681 ret = tcp_v6_do_rcv(sk, skb);
1685 if (!tcp_prequeue(sk, skb))
1686 ret = tcp_v6_do_rcv(sk, skb);
1689 sk_add_backlog(sk, skb);
1693 return ret ? -1 : 0;
1696 if (!xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb))
1699 if (skb->len < (th->doff<<2) || tcp_checksum_complete(skb)) {
1701 TCP_INC_STATS_BH(net, TCP_MIB_INERRS);
1703 tcp_v6_send_reset(NULL, skb);
1720 if (!xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb)) {
1721 inet_twsk_put(inet_twsk(sk));
1725 if (skb->len < (th->doff<<2) || tcp_checksum_complete(skb)) {
1726 TCP_INC_STATS_BH(net, TCP_MIB_INERRS);
1727 inet_twsk_put(inet_twsk(sk));
1731 switch (tcp_timewait_state_process(inet_twsk(sk), skb, th)) {
1736 sk2 = inet6_lookup_listener(dev_net(skb->dev), &tcp_hashinfo,
1737 &ipv6_hdr(skb)->daddr,
1738 ntohs(th->dest), inet6_iif(skb));
1740 struct inet_timewait_sock *tw = inet_twsk(sk);
1741 inet_twsk_deschedule(tw, &tcp_death_row);
1746 /* Fall through to ACK */
1749 tcp_v6_timewait_ack(sk, skb);
1753 case TCP_TW_SUCCESS:;
1758 static int tcp_v6_remember_stamp(struct sock *sk)
1760 /* Alas, not yet... */
1764 static struct inet_connection_sock_af_ops ipv6_specific = {
1765 .queue_xmit = inet6_csk_xmit,
1766 .send_check = tcp_v6_send_check,
1767 .rebuild_header = inet6_sk_rebuild_header,
1768 .conn_request = tcp_v6_conn_request,
1769 .syn_recv_sock = tcp_v6_syn_recv_sock,
1770 .remember_stamp = tcp_v6_remember_stamp,
1771 .net_header_len = sizeof(struct ipv6hdr),
1772 .setsockopt = ipv6_setsockopt,
1773 .getsockopt = ipv6_getsockopt,
1774 .addr2sockaddr = inet6_csk_addr2sockaddr,
1775 .sockaddr_len = sizeof(struct sockaddr_in6),
1776 .bind_conflict = inet6_csk_bind_conflict,
1777 #ifdef CONFIG_COMPAT
1778 .compat_setsockopt = compat_ipv6_setsockopt,
1779 .compat_getsockopt = compat_ipv6_getsockopt,
1783 #ifdef CONFIG_TCP_MD5SIG
1784 static struct tcp_sock_af_ops tcp_sock_ipv6_specific = {
1785 .md5_lookup = tcp_v6_md5_lookup,
1786 .calc_md5_hash = tcp_v6_calc_md5_hash,
1787 .md5_add = tcp_v6_md5_add_func,
1788 .md5_parse = tcp_v6_parse_md5_keys,
1793 * TCP over IPv4 via INET6 API
1796 static struct inet_connection_sock_af_ops ipv6_mapped = {
1797 .queue_xmit = ip_queue_xmit,
1798 .send_check = tcp_v4_send_check,
1799 .rebuild_header = inet_sk_rebuild_header,
1800 .conn_request = tcp_v6_conn_request,
1801 .syn_recv_sock = tcp_v6_syn_recv_sock,
1802 .remember_stamp = tcp_v4_remember_stamp,
1803 .net_header_len = sizeof(struct iphdr),
1804 .setsockopt = ipv6_setsockopt,
1805 .getsockopt = ipv6_getsockopt,
1806 .addr2sockaddr = inet6_csk_addr2sockaddr,
1807 .sockaddr_len = sizeof(struct sockaddr_in6),
1808 .bind_conflict = inet6_csk_bind_conflict,
1809 #ifdef CONFIG_COMPAT
1810 .compat_setsockopt = compat_ipv6_setsockopt,
1811 .compat_getsockopt = compat_ipv6_getsockopt,
1815 #ifdef CONFIG_TCP_MD5SIG
1816 static struct tcp_sock_af_ops tcp_sock_ipv6_mapped_specific = {
1817 .md5_lookup = tcp_v4_md5_lookup,
1818 .calc_md5_hash = tcp_v4_calc_md5_hash,
1819 .md5_add = tcp_v6_md5_add_func,
1820 .md5_parse = tcp_v6_parse_md5_keys,
1824 /* NOTE: A lot of things set to zero explicitly by call to
1825 * sk_alloc() so need not be done here.
1827 static int tcp_v6_init_sock(struct sock *sk)
1829 struct inet_connection_sock *icsk = inet_csk(sk);
1830 struct tcp_sock *tp = tcp_sk(sk);
1832 skb_queue_head_init(&tp->out_of_order_queue);
1833 tcp_init_xmit_timers(sk);
1834 tcp_prequeue_init(tp);
1836 icsk->icsk_rto = TCP_TIMEOUT_INIT;
1837 tp->mdev = TCP_TIMEOUT_INIT;
1839 /* So many TCP implementations out there (incorrectly) count the
1840 * initial SYN frame in their delayed-ACK and congestion control
1841 * algorithms that we must have the following bandaid to talk
1842 * efficiently to them. -DaveM
1846 /* See draft-stevens-tcpca-spec-01 for discussion of the
1847 * initialization of these values.
1849 tp->snd_ssthresh = 0x7fffffff;
1850 tp->snd_cwnd_clamp = ~0;
1851 tp->mss_cache = 536;
1853 tp->reordering = sysctl_tcp_reordering;
1855 sk->sk_state = TCP_CLOSE;
1857 icsk->icsk_af_ops = &ipv6_specific;
1858 icsk->icsk_ca_ops = &tcp_init_congestion_ops;
1859 icsk->icsk_sync_mss = tcp_sync_mss;
1860 sk->sk_write_space = sk_stream_write_space;
1861 sock_set_flag(sk, SOCK_USE_WRITE_QUEUE);
1863 #ifdef CONFIG_TCP_MD5SIG
1864 tp->af_specific = &tcp_sock_ipv6_specific;
1867 sk->sk_sndbuf = sysctl_tcp_wmem[1];
1868 sk->sk_rcvbuf = sysctl_tcp_rmem[1];
1870 atomic_inc(&tcp_sockets_allocated);
1875 static void tcp_v6_destroy_sock(struct sock *sk)
1877 #ifdef CONFIG_TCP_MD5SIG
1878 /* Clean up the MD5 key list */
1879 if (tcp_sk(sk)->md5sig_info)
1880 tcp_v6_clear_md5_list(sk);
1882 tcp_v4_destroy_sock(sk);
1883 inet6_destroy_sock(sk);
1886 #ifdef CONFIG_PROC_FS
1887 /* Proc filesystem TCPv6 sock list dumping. */
1888 static void get_openreq6(struct seq_file *seq,
1889 struct sock *sk, struct request_sock *req, int i, int uid)
1891 int ttd = req->expires - jiffies;
1892 struct in6_addr *src = &inet6_rsk(req)->loc_addr;
1893 struct in6_addr *dest = &inet6_rsk(req)->rmt_addr;
1899 "%4d: %08X%08X%08X%08X:%04X %08X%08X%08X%08X:%04X "
1900 "%02X %08X:%08X %02X:%08lX %08X %5d %8d %d %d %p\n",
1902 src->s6_addr32[0], src->s6_addr32[1],
1903 src->s6_addr32[2], src->s6_addr32[3],
1904 ntohs(inet_sk(sk)->sport),
1905 dest->s6_addr32[0], dest->s6_addr32[1],
1906 dest->s6_addr32[2], dest->s6_addr32[3],
1907 ntohs(inet_rsk(req)->rmt_port),
1909 0,0, /* could print option size, but that is af dependent. */
1910 1, /* timers active (only the expire timer) */
1911 jiffies_to_clock_t(ttd),
1914 0, /* non standard timer */
1915 0, /* open_requests have no inode */
1919 static void get_tcp6_sock(struct seq_file *seq, struct sock *sp, int i)
1921 struct in6_addr *dest, *src;
1924 unsigned long timer_expires;
1925 struct inet_sock *inet = inet_sk(sp);
1926 struct tcp_sock *tp = tcp_sk(sp);
1927 const struct inet_connection_sock *icsk = inet_csk(sp);
1928 struct ipv6_pinfo *np = inet6_sk(sp);
1931 src = &np->rcv_saddr;
1932 destp = ntohs(inet->dport);
1933 srcp = ntohs(inet->sport);
1935 if (icsk->icsk_pending == ICSK_TIME_RETRANS) {
1937 timer_expires = icsk->icsk_timeout;
1938 } else if (icsk->icsk_pending == ICSK_TIME_PROBE0) {
1940 timer_expires = icsk->icsk_timeout;
1941 } else if (timer_pending(&sp->sk_timer)) {
1943 timer_expires = sp->sk_timer.expires;
1946 timer_expires = jiffies;
1950 "%4d: %08X%08X%08X%08X:%04X %08X%08X%08X%08X:%04X "
1951 "%02X %08X:%08X %02X:%08lX %08X %5d %8d %lu %d %p %lu %lu %u %u %d\n",
1953 src->s6_addr32[0], src->s6_addr32[1],
1954 src->s6_addr32[2], src->s6_addr32[3], srcp,
1955 dest->s6_addr32[0], dest->s6_addr32[1],
1956 dest->s6_addr32[2], dest->s6_addr32[3], destp,
1958 tp->write_seq-tp->snd_una,
1959 (sp->sk_state == TCP_LISTEN) ? sp->sk_ack_backlog : (tp->rcv_nxt - tp->copied_seq),
1961 jiffies_to_clock_t(timer_expires - jiffies),
1962 icsk->icsk_retransmits,
1964 icsk->icsk_probes_out,
1966 atomic_read(&sp->sk_refcnt), sp,
1967 jiffies_to_clock_t(icsk->icsk_rto),
1968 jiffies_to_clock_t(icsk->icsk_ack.ato),
1969 (icsk->icsk_ack.quick << 1 ) | icsk->icsk_ack.pingpong,
1970 tp->snd_cwnd, tp->snd_ssthresh>=0xFFFF?-1:tp->snd_ssthresh
1974 static void get_timewait6_sock(struct seq_file *seq,
1975 struct inet_timewait_sock *tw, int i)
1977 struct in6_addr *dest, *src;
1979 struct inet6_timewait_sock *tw6 = inet6_twsk((struct sock *)tw);
1980 int ttd = tw->tw_ttd - jiffies;
1985 dest = &tw6->tw_v6_daddr;
1986 src = &tw6->tw_v6_rcv_saddr;
1987 destp = ntohs(tw->tw_dport);
1988 srcp = ntohs(tw->tw_sport);
1991 "%4d: %08X%08X%08X%08X:%04X %08X%08X%08X%08X:%04X "
1992 "%02X %08X:%08X %02X:%08lX %08X %5d %8d %d %d %p\n",
1994 src->s6_addr32[0], src->s6_addr32[1],
1995 src->s6_addr32[2], src->s6_addr32[3], srcp,
1996 dest->s6_addr32[0], dest->s6_addr32[1],
1997 dest->s6_addr32[2], dest->s6_addr32[3], destp,
1998 tw->tw_substate, 0, 0,
1999 3, jiffies_to_clock_t(ttd), 0, 0, 0, 0,
2000 atomic_read(&tw->tw_refcnt), tw);
2003 static int tcp6_seq_show(struct seq_file *seq, void *v)
2005 struct tcp_iter_state *st;
2007 if (v == SEQ_START_TOKEN) {
2012 "st tx_queue rx_queue tr tm->when retrnsmt"
2013 " uid timeout inode\n");
2018 switch (st->state) {
2019 case TCP_SEQ_STATE_LISTENING:
2020 case TCP_SEQ_STATE_ESTABLISHED:
2021 get_tcp6_sock(seq, v, st->num);
2023 case TCP_SEQ_STATE_OPENREQ:
2024 get_openreq6(seq, st->syn_wait_sk, v, st->num, st->uid);
2026 case TCP_SEQ_STATE_TIME_WAIT:
2027 get_timewait6_sock(seq, v, st->num);
2034 static struct tcp_seq_afinfo tcp6_seq_afinfo = {
2038 .owner = THIS_MODULE,
2041 .show = tcp6_seq_show,
2045 int tcp6_proc_init(struct net *net)
2047 return tcp_proc_register(net, &tcp6_seq_afinfo);
2050 void tcp6_proc_exit(struct net *net)
2052 tcp_proc_unregister(net, &tcp6_seq_afinfo);
2056 struct proto tcpv6_prot = {
2058 .owner = THIS_MODULE,
2060 .connect = tcp_v6_connect,
2061 .disconnect = tcp_disconnect,
2062 .accept = inet_csk_accept,
2064 .init = tcp_v6_init_sock,
2065 .destroy = tcp_v6_destroy_sock,
2066 .shutdown = tcp_shutdown,
2067 .setsockopt = tcp_setsockopt,
2068 .getsockopt = tcp_getsockopt,
2069 .recvmsg = tcp_recvmsg,
2070 .backlog_rcv = tcp_v6_do_rcv,
2071 .hash = tcp_v6_hash,
2072 .unhash = inet_unhash,
2073 .get_port = inet_csk_get_port,
2074 .enter_memory_pressure = tcp_enter_memory_pressure,
2075 .sockets_allocated = &tcp_sockets_allocated,
2076 .memory_allocated = &tcp_memory_allocated,
2077 .memory_pressure = &tcp_memory_pressure,
2078 .orphan_count = &tcp_orphan_count,
2079 .sysctl_mem = sysctl_tcp_mem,
2080 .sysctl_wmem = sysctl_tcp_wmem,
2081 .sysctl_rmem = sysctl_tcp_rmem,
2082 .max_header = MAX_TCP_HEADER,
2083 .obj_size = sizeof(struct tcp6_sock),
2084 .twsk_prot = &tcp6_timewait_sock_ops,
2085 .rsk_prot = &tcp6_request_sock_ops,
2086 .h.hashinfo = &tcp_hashinfo,
2087 #ifdef CONFIG_COMPAT
2088 .compat_setsockopt = compat_tcp_setsockopt,
2089 .compat_getsockopt = compat_tcp_getsockopt,
2093 static struct inet6_protocol tcpv6_protocol = {
2094 .handler = tcp_v6_rcv,
2095 .err_handler = tcp_v6_err,
2096 .gso_send_check = tcp_v6_gso_send_check,
2097 .gso_segment = tcp_tso_segment,
2098 .flags = INET6_PROTO_NOPOLICY|INET6_PROTO_FINAL,
2101 static struct inet_protosw tcpv6_protosw = {
2102 .type = SOCK_STREAM,
2103 .protocol = IPPROTO_TCP,
2104 .prot = &tcpv6_prot,
2105 .ops = &inet6_stream_ops,
2108 .flags = INET_PROTOSW_PERMANENT |
2112 static int tcpv6_net_init(struct net *net)
2114 return inet_ctl_sock_create(&net->ipv6.tcp_sk, PF_INET6,
2115 SOCK_RAW, IPPROTO_TCP, net);
2118 static void tcpv6_net_exit(struct net *net)
2120 inet_ctl_sock_destroy(net->ipv6.tcp_sk);
2123 static struct pernet_operations tcpv6_net_ops = {
2124 .init = tcpv6_net_init,
2125 .exit = tcpv6_net_exit,
2128 int __init tcpv6_init(void)
2132 ret = inet6_add_protocol(&tcpv6_protocol, IPPROTO_TCP);
2136 /* register inet6 protocol */
2137 ret = inet6_register_protosw(&tcpv6_protosw);
2139 goto out_tcpv6_protocol;
2141 ret = register_pernet_subsys(&tcpv6_net_ops);
2143 goto out_tcpv6_protosw;
2148 inet6_del_protocol(&tcpv6_protocol, IPPROTO_TCP);
2150 inet6_unregister_protosw(&tcpv6_protosw);
2154 void tcpv6_exit(void)
2156 unregister_pernet_subsys(&tcpv6_net_ops);
2157 inet6_unregister_protosw(&tcpv6_protosw);
2158 inet6_del_protocol(&tcpv6_protocol, IPPROTO_TCP);
projects / linux-2.6 / blob