2 * INET An implementation of the TCP/IP protocol suite for the LINUX
3 * operating system. INET is implemented using the BSD Socket
4 * interface as the means of communication with the user level.
6 * Implementation of the Transmission Control Protocol(TCP).
8 * IPv4 specific functions
13 * linux/ipv4/tcp_input.c
14 * linux/ipv4/tcp_output.c
16 * See tcp.c for author information
18 * This program is free software; you can redistribute it and/or
19 * modify it under the terms of the GNU General Public License
20 * as published by the Free Software Foundation; either version
21 * 2 of the License, or (at your option) any later version.
26 * David S. Miller : New socket lookup architecture.
27 * This code is dedicated to John Dyson.
28 * David S. Miller : Change semantics of established hash,
29 * half is devoted to TIME_WAIT sockets
30 * and the rest go in the other half.
31 * Andi Kleen : Add support for syncookies and fixed
32 * some bugs: ip options weren't passed to
33 * the TCP layer, missed a check for an
35 * Andi Kleen : Implemented fast path mtu discovery.
36 * Fixed many serious bugs in the
37 * request_sock handling and moved
38 * most of it into the af independent code.
39 * Added tail drop and some other bugfixes.
40 * Added new listen semantics.
41 * Mike McLagan : Routing by source
42 * Juan Jose Ciarlante: ip_dynaddr bits
43 * Andi Kleen: various fixes.
44 * Vitaly E. Lavrov : Transparent proxy revived after year
46 * Andi Kleen : Fix new listen.
47 * Andi Kleen : Fix accept error reporting.
48 * YOSHIFUJI Hideaki @USAGI and: Support IPV6_V6ONLY socket option, which
49 * Alexey Kuznetsov allow both IPv4 and IPv6 sockets to bind
50 * a single port at the same time.
54 #include <linux/bottom_half.h>
55 #include <linux/types.h>
56 #include <linux/fcntl.h>
57 #include <linux/module.h>
58 #include <linux/random.h>
59 #include <linux/cache.h>
60 #include <linux/jhash.h>
61 #include <linux/init.h>
62 #include <linux/times.h>
63 #include <linux/slab.h>
65 #include <net/net_namespace.h>
67 #include <net/inet_hashtables.h>
69 #include <net/transp_v6.h>
71 #include <net/inet_common.h>
72 #include <net/timewait_sock.h>
74 #include <net/netdma.h>
75 #include <net/secure_seq.h>
77 #include <linux/inet.h>
78 #include <linux/ipv6.h>
79 #include <linux/stddef.h>
80 #include <linux/proc_fs.h>
81 #include <linux/seq_file.h>
83 #include <linux/crypto.h>
84 #include <linux/scatterlist.h>
86 int sysctl_tcp_tw_reuse __read_mostly;
87 int sysctl_tcp_low_latency __read_mostly;
88 EXPORT_SYMBOL(sysctl_tcp_low_latency);
91 #ifdef CONFIG_TCP_MD5SIG
92 static struct tcp_md5sig_key *tcp_v4_md5_do_lookup(struct sock *sk,
94 static int tcp_v4_md5_hash_hdr(char *md5_hash, struct tcp_md5sig_key *key,
95 __be32 daddr, __be32 saddr, struct tcphdr *th);
98 struct tcp_md5sig_key *tcp_v4_md5_do_lookup(struct sock *sk, __be32 addr)
104 struct inet_hashinfo tcp_hashinfo;
105 EXPORT_SYMBOL(tcp_hashinfo);
107 static inline __u32 tcp_v4_init_sequence(struct sk_buff *skb)
109 return secure_tcp_sequence_number(ip_hdr(skb)->daddr,
112 tcp_hdr(skb)->source);
115 int tcp_twsk_unique(struct sock *sk, struct sock *sktw, void *twp)
117 const struct tcp_timewait_sock *tcptw = tcp_twsk(sktw);
118 struct tcp_sock *tp = tcp_sk(sk);
120 /* With PAWS, it is safe from the viewpoint
121 of data integrity. Even without PAWS it is safe provided sequence
122 spaces do not overlap i.e. at data rates <= 80Mbit/sec.
124 Actually, the idea is close to VJ's one, only timestamp cache is
125 held not per host, but per port pair and TW bucket is used as state
128 If TW bucket has been already destroyed we fall back to VJ's scheme
129 and use initial timestamp retrieved from peer table.
131 if (tcptw->tw_ts_recent_stamp &&
132 (twp == NULL || (sysctl_tcp_tw_reuse &&
133 get_seconds() - tcptw->tw_ts_recent_stamp > 1))) {
134 tp->write_seq = tcptw->tw_snd_nxt + 65535 + 2;
135 if (tp->write_seq == 0)
137 tp->rx_opt.ts_recent = tcptw->tw_ts_recent;
138 tp->rx_opt.ts_recent_stamp = tcptw->tw_ts_recent_stamp;
145 EXPORT_SYMBOL_GPL(tcp_twsk_unique);
147 /* This will initiate an outgoing connection. */
148 int tcp_v4_connect(struct sock *sk, struct sockaddr *uaddr, int addr_len)
150 struct sockaddr_in *usin = (struct sockaddr_in *)uaddr;
151 struct inet_sock *inet = inet_sk(sk);
152 struct tcp_sock *tp = tcp_sk(sk);
153 __be16 orig_sport, orig_dport;
154 __be32 daddr, nexthop;
158 struct ip_options_rcu *inet_opt;
160 if (addr_len < sizeof(struct sockaddr_in))
163 if (usin->sin_family != AF_INET)
164 return -EAFNOSUPPORT;
166 nexthop = daddr = usin->sin_addr.s_addr;
167 inet_opt = rcu_dereference_protected(inet->inet_opt,
168 sock_owned_by_user(sk));
169 if (inet_opt && inet_opt->opt.srr) {
172 nexthop = inet_opt->opt.faddr;
175 orig_sport = inet->inet_sport;
176 orig_dport = usin->sin_port;
177 fl4 = &inet->cork.fl.u.ip4;
178 rt = ip_route_connect(fl4, nexthop, inet->inet_saddr,
179 RT_CONN_FLAGS(sk), sk->sk_bound_dev_if,
181 orig_sport, orig_dport, sk, true);
184 if (err == -ENETUNREACH)
185 IP_INC_STATS_BH(sock_net(sk), IPSTATS_MIB_OUTNOROUTES);
189 if (rt->rt_flags & (RTCF_MULTICAST | RTCF_BROADCAST)) {
194 if (!inet_opt || !inet_opt->opt.srr)
197 if (!inet->inet_saddr)
198 inet->inet_saddr = fl4->saddr;
199 inet->inet_rcv_saddr = inet->inet_saddr;
201 if (tp->rx_opt.ts_recent_stamp && inet->inet_daddr != daddr) {
202 /* Reset inherited state */
203 tp->rx_opt.ts_recent = 0;
204 tp->rx_opt.ts_recent_stamp = 0;
208 if (tcp_death_row.sysctl_tw_recycle &&
209 !tp->rx_opt.ts_recent_stamp && fl4->daddr == daddr) {
210 struct inet_peer *peer = rt_get_peer(rt, fl4->daddr);
212 * VJ's idea. We save last timestamp seen from
213 * the destination in peer table, when entering state
214 * TIME-WAIT * and initialize rx_opt.ts_recent from it,
215 * when trying new connection.
218 inet_peer_refcheck(peer);
219 if ((u32)get_seconds() - peer->tcp_ts_stamp <= TCP_PAWS_MSL) {
220 tp->rx_opt.ts_recent_stamp = peer->tcp_ts_stamp;
221 tp->rx_opt.ts_recent = peer->tcp_ts;
226 inet->inet_dport = usin->sin_port;
227 inet->inet_daddr = daddr;
229 inet_csk(sk)->icsk_ext_hdr_len = 0;
231 inet_csk(sk)->icsk_ext_hdr_len = inet_opt->opt.optlen;
233 tp->rx_opt.mss_clamp = TCP_MSS_DEFAULT;
235 /* Socket identity is still unknown (sport may be zero).
236 * However we set state to SYN-SENT and not releasing socket
237 * lock select source port, enter ourselves into the hash tables and
238 * complete initialization after this.
240 tcp_set_state(sk, TCP_SYN_SENT);
241 err = inet_hash_connect(&tcp_death_row, sk);
245 rt = ip_route_newports(fl4, rt, orig_sport, orig_dport,
246 inet->inet_sport, inet->inet_dport, sk);
252 /* OK, now commit destination to socket. */
253 sk->sk_gso_type = SKB_GSO_TCPV4;
254 sk_setup_caps(sk, &rt->dst);
257 tp->write_seq = secure_tcp_sequence_number(inet->inet_saddr,
262 inet->inet_id = tp->write_seq ^ jiffies;
264 err = tcp_connect(sk);
273 * This unhashes the socket and releases the local port,
276 tcp_set_state(sk, TCP_CLOSE);
278 sk->sk_route_caps = 0;
279 inet->inet_dport = 0;
282 EXPORT_SYMBOL(tcp_v4_connect);
285 * This routine does path mtu discovery as defined in RFC1191.
287 static void do_pmtu_discovery(struct sock *sk, const struct iphdr *iph, u32 mtu)
289 struct dst_entry *dst;
290 struct inet_sock *inet = inet_sk(sk);
292 /* We are not interested in TCP_LISTEN and open_requests (SYN-ACKs
293 * send out by Linux are always <576bytes so they should go through
296 if (sk->sk_state == TCP_LISTEN)
299 /* We don't check in the destentry if pmtu discovery is forbidden
300 * on this route. We just assume that no packet_to_big packets
301 * are send back when pmtu discovery is not active.
302 * There is a small race when the user changes this flag in the
303 * route, but I think that's acceptable.
305 if ((dst = __sk_dst_check(sk, 0)) == NULL)
308 dst->ops->update_pmtu(dst, mtu);
310 /* Something is about to be wrong... Remember soft error
311 * for the case, if this connection will not able to recover.
313 if (mtu < dst_mtu(dst) && ip_dont_fragment(sk, dst))
314 sk->sk_err_soft = EMSGSIZE;
318 if (inet->pmtudisc != IP_PMTUDISC_DONT &&
319 inet_csk(sk)->icsk_pmtu_cookie > mtu) {
320 tcp_sync_mss(sk, mtu);
322 /* Resend the TCP packet because it's
323 * clear that the old packet has been
324 * dropped. This is the new "fast" path mtu
327 tcp_simple_retransmit(sk);
328 } /* else let the usual retransmit timer handle it */
332 * This routine is called by the ICMP module when it gets some
333 * sort of error condition. If err < 0 then the socket should
334 * be closed and the error returned to the user. If err > 0
335 * it's just the icmp type << 8 | icmp code. After adjustment
336 * header points to the first 8 bytes of the tcp header. We need
337 * to find the appropriate port.
339 * The locking strategy used here is very "optimistic". When
340 * someone else accesses the socket the ICMP is just dropped
341 * and for some paths there is no check at all.
342 * A more general error queue to queue errors for later handling
343 * is probably better.
347 void tcp_v4_err(struct sk_buff *icmp_skb, u32 info)
349 const struct iphdr *iph = (const struct iphdr *)icmp_skb->data;
350 struct tcphdr *th = (struct tcphdr *)(icmp_skb->data + (iph->ihl << 2));
351 struct inet_connection_sock *icsk;
353 struct inet_sock *inet;
354 const int type = icmp_hdr(icmp_skb)->type;
355 const int code = icmp_hdr(icmp_skb)->code;
361 struct net *net = dev_net(icmp_skb->dev);
363 if (icmp_skb->len < (iph->ihl << 2) + 8) {
364 ICMP_INC_STATS_BH(net, ICMP_MIB_INERRORS);
368 sk = inet_lookup(net, &tcp_hashinfo, iph->daddr, th->dest,
369 iph->saddr, th->source, inet_iif(icmp_skb));
371 ICMP_INC_STATS_BH(net, ICMP_MIB_INERRORS);
374 if (sk->sk_state == TCP_TIME_WAIT) {
375 inet_twsk_put(inet_twsk(sk));
380 /* If too many ICMPs get dropped on busy
381 * servers this needs to be solved differently.
383 if (sock_owned_by_user(sk))
384 NET_INC_STATS_BH(net, LINUX_MIB_LOCKDROPPEDICMPS);
386 if (sk->sk_state == TCP_CLOSE)
389 if (unlikely(iph->ttl < inet_sk(sk)->min_ttl)) {
390 NET_INC_STATS_BH(net, LINUX_MIB_TCPMINTTLDROP);
396 seq = ntohl(th->seq);
397 if (sk->sk_state != TCP_LISTEN &&
398 !between(seq, tp->snd_una, tp->snd_nxt)) {
399 NET_INC_STATS_BH(net, LINUX_MIB_OUTOFWINDOWICMPS);
404 case ICMP_SOURCE_QUENCH:
405 /* Just silently ignore these. */
407 case ICMP_PARAMETERPROB:
410 case ICMP_DEST_UNREACH:
411 if (code > NR_ICMP_UNREACH)
414 if (code == ICMP_FRAG_NEEDED) { /* PMTU discovery (RFC1191) */
415 if (!sock_owned_by_user(sk))
416 do_pmtu_discovery(sk, iph, info);
420 err = icmp_err_convert[code].errno;
421 /* check if icmp_skb allows revert of backoff
422 * (see draft-zimmermann-tcp-lcd) */
423 if (code != ICMP_NET_UNREACH && code != ICMP_HOST_UNREACH)
425 if (seq != tp->snd_una || !icsk->icsk_retransmits ||
429 if (sock_owned_by_user(sk))
432 icsk->icsk_backoff--;
433 inet_csk(sk)->icsk_rto = (tp->srtt ? __tcp_set_rto(tp) :
434 TCP_TIMEOUT_INIT) << icsk->icsk_backoff;
437 skb = tcp_write_queue_head(sk);
440 remaining = icsk->icsk_rto - min(icsk->icsk_rto,
441 tcp_time_stamp - TCP_SKB_CB(skb)->when);
444 inet_csk_reset_xmit_timer(sk, ICSK_TIME_RETRANS,
445 remaining, TCP_RTO_MAX);
447 /* RTO revert clocked out retransmission.
448 * Will retransmit now */
449 tcp_retransmit_timer(sk);
453 case ICMP_TIME_EXCEEDED:
460 switch (sk->sk_state) {
461 struct request_sock *req, **prev;
463 if (sock_owned_by_user(sk))
466 req = inet_csk_search_req(sk, &prev, th->dest,
467 iph->daddr, iph->saddr);
471 /* ICMPs are not backlogged, hence we cannot get
472 an established socket here.
476 if (seq != tcp_rsk(req)->snt_isn) {
477 NET_INC_STATS_BH(net, LINUX_MIB_OUTOFWINDOWICMPS);
482 * Still in SYN_RECV, just remove it silently.
483 * There is no good way to pass the error to the newly
484 * created socket, and POSIX does not want network
485 * errors returned from accept().
487 inet_csk_reqsk_queue_drop(sk, req, prev);
491 case TCP_SYN_RECV: /* Cannot happen.
492 It can f.e. if SYNs crossed.
494 if (!sock_owned_by_user(sk)) {
497 sk->sk_error_report(sk);
501 sk->sk_err_soft = err;
506 /* If we've already connected we will keep trying
507 * until we time out, or the user gives up.
509 * rfc1122 4.2.3.9 allows to consider as hard errors
510 * only PROTO_UNREACH and PORT_UNREACH (well, FRAG_FAILED too,
511 * but it is obsoleted by pmtu discovery).
513 * Note, that in modern internet, where routing is unreliable
514 * and in each dark corner broken firewalls sit, sending random
515 * errors ordered by their masters even this two messages finally lose
516 * their original sense (even Linux sends invalid PORT_UNREACHs)
518 * Now we are in compliance with RFCs.
523 if (!sock_owned_by_user(sk) && inet->recverr) {
525 sk->sk_error_report(sk);
526 } else { /* Only an error on timeout */
527 sk->sk_err_soft = err;
535 static void __tcp_v4_send_check(struct sk_buff *skb,
536 __be32 saddr, __be32 daddr)
538 struct tcphdr *th = tcp_hdr(skb);
540 if (skb->ip_summed == CHECKSUM_PARTIAL) {
541 th->check = ~tcp_v4_check(skb->len, saddr, daddr, 0);
542 skb->csum_start = skb_transport_header(skb) - skb->head;
543 skb->csum_offset = offsetof(struct tcphdr, check);
545 th->check = tcp_v4_check(skb->len, saddr, daddr,
552 /* This routine computes an IPv4 TCP checksum. */
553 void tcp_v4_send_check(struct sock *sk, struct sk_buff *skb)
555 struct inet_sock *inet = inet_sk(sk);
557 __tcp_v4_send_check(skb, inet->inet_saddr, inet->inet_daddr);
559 EXPORT_SYMBOL(tcp_v4_send_check);
561 int tcp_v4_gso_send_check(struct sk_buff *skb)
563 const struct iphdr *iph;
566 if (!pskb_may_pull(skb, sizeof(*th)))
573 skb->ip_summed = CHECKSUM_PARTIAL;
574 __tcp_v4_send_check(skb, iph->saddr, iph->daddr);
579 * This routine will send an RST to the other tcp.
581 * Someone asks: why I NEVER use socket parameters (TOS, TTL etc.)
583 * Answer: if a packet caused RST, it is not for a socket
584 * existing in our system, if it is matched to a socket,
585 * it is just duplicate segment or bug in other side's TCP.
586 * So that we build reply only basing on parameters
587 * arrived with segment.
588 * Exception: precedence violation. We do not implement it in any case.
591 static void tcp_v4_send_reset(struct sock *sk, struct sk_buff *skb)
593 struct tcphdr *th = tcp_hdr(skb);
596 #ifdef CONFIG_TCP_MD5SIG
597 __be32 opt[(TCPOLEN_MD5SIG_ALIGNED >> 2)];
600 struct ip_reply_arg arg;
601 #ifdef CONFIG_TCP_MD5SIG
602 struct tcp_md5sig_key *key;
606 /* Never send a reset in response to a reset. */
610 if (skb_rtable(skb)->rt_type != RTN_LOCAL)
613 /* Swap the send and the receive. */
614 memset(&rep, 0, sizeof(rep));
615 rep.th.dest = th->source;
616 rep.th.source = th->dest;
617 rep.th.doff = sizeof(struct tcphdr) / 4;
621 rep.th.seq = th->ack_seq;
624 rep.th.ack_seq = htonl(ntohl(th->seq) + th->syn + th->fin +
625 skb->len - (th->doff << 2));
628 memset(&arg, 0, sizeof(arg));
629 arg.iov[0].iov_base = (unsigned char *)&rep;
630 arg.iov[0].iov_len = sizeof(rep.th);
632 #ifdef CONFIG_TCP_MD5SIG
633 key = sk ? tcp_v4_md5_do_lookup(sk, ip_hdr(skb)->daddr) : NULL;
635 rep.opt[0] = htonl((TCPOPT_NOP << 24) |
637 (TCPOPT_MD5SIG << 8) |
639 /* Update length and the length the header thinks exists */
640 arg.iov[0].iov_len += TCPOLEN_MD5SIG_ALIGNED;
641 rep.th.doff = arg.iov[0].iov_len / 4;
643 tcp_v4_md5_hash_hdr((__u8 *) &rep.opt[1],
644 key, ip_hdr(skb)->saddr,
645 ip_hdr(skb)->daddr, &rep.th);
648 arg.csum = csum_tcpudp_nofold(ip_hdr(skb)->daddr,
649 ip_hdr(skb)->saddr, /* XXX */
650 arg.iov[0].iov_len, IPPROTO_TCP, 0);
651 arg.csumoffset = offsetof(struct tcphdr, check) / 2;
652 arg.flags = (sk && inet_sk(sk)->transparent) ? IP_REPLY_ARG_NOSRCCHECK : 0;
654 net = dev_net(skb_dst(skb)->dev);
655 ip_send_reply(net->ipv4.tcp_sock, skb, ip_hdr(skb)->saddr,
656 &arg, arg.iov[0].iov_len);
658 TCP_INC_STATS_BH(net, TCP_MIB_OUTSEGS);
659 TCP_INC_STATS_BH(net, TCP_MIB_OUTRSTS);
662 /* The code following below sending ACKs in SYN-RECV and TIME-WAIT states
663 outside socket context is ugly, certainly. What can I do?
666 static void tcp_v4_send_ack(struct sk_buff *skb, u32 seq, u32 ack,
667 u32 win, u32 ts, int oif,
668 struct tcp_md5sig_key *key,
671 struct tcphdr *th = tcp_hdr(skb);
674 __be32 opt[(TCPOLEN_TSTAMP_ALIGNED >> 2)
675 #ifdef CONFIG_TCP_MD5SIG
676 + (TCPOLEN_MD5SIG_ALIGNED >> 2)
680 struct ip_reply_arg arg;
681 struct net *net = dev_net(skb_dst(skb)->dev);
683 memset(&rep.th, 0, sizeof(struct tcphdr));
684 memset(&arg, 0, sizeof(arg));
686 arg.iov[0].iov_base = (unsigned char *)&rep;
687 arg.iov[0].iov_len = sizeof(rep.th);
689 rep.opt[0] = htonl((TCPOPT_NOP << 24) | (TCPOPT_NOP << 16) |
690 (TCPOPT_TIMESTAMP << 8) |
692 rep.opt[1] = htonl(tcp_time_stamp);
693 rep.opt[2] = htonl(ts);
694 arg.iov[0].iov_len += TCPOLEN_TSTAMP_ALIGNED;
697 /* Swap the send and the receive. */
698 rep.th.dest = th->source;
699 rep.th.source = th->dest;
700 rep.th.doff = arg.iov[0].iov_len / 4;
701 rep.th.seq = htonl(seq);
702 rep.th.ack_seq = htonl(ack);
704 rep.th.window = htons(win);
706 #ifdef CONFIG_TCP_MD5SIG
708 int offset = (ts) ? 3 : 0;
710 rep.opt[offset++] = htonl((TCPOPT_NOP << 24) |
712 (TCPOPT_MD5SIG << 8) |
714 arg.iov[0].iov_len += TCPOLEN_MD5SIG_ALIGNED;
715 rep.th.doff = arg.iov[0].iov_len/4;
717 tcp_v4_md5_hash_hdr((__u8 *) &rep.opt[offset],
718 key, ip_hdr(skb)->saddr,
719 ip_hdr(skb)->daddr, &rep.th);
722 arg.flags = reply_flags;
723 arg.csum = csum_tcpudp_nofold(ip_hdr(skb)->daddr,
724 ip_hdr(skb)->saddr, /* XXX */
725 arg.iov[0].iov_len, IPPROTO_TCP, 0);
726 arg.csumoffset = offsetof(struct tcphdr, check) / 2;
728 arg.bound_dev_if = oif;
730 ip_send_reply(net->ipv4.tcp_sock, skb, ip_hdr(skb)->saddr,
731 &arg, arg.iov[0].iov_len);
733 TCP_INC_STATS_BH(net, TCP_MIB_OUTSEGS);
736 static void tcp_v4_timewait_ack(struct sock *sk, struct sk_buff *skb)
738 struct inet_timewait_sock *tw = inet_twsk(sk);
739 struct tcp_timewait_sock *tcptw = tcp_twsk(sk);
741 tcp_v4_send_ack(skb, tcptw->tw_snd_nxt, tcptw->tw_rcv_nxt,
742 tcptw->tw_rcv_wnd >> tw->tw_rcv_wscale,
745 tcp_twsk_md5_key(tcptw),
746 tw->tw_transparent ? IP_REPLY_ARG_NOSRCCHECK : 0
752 static void tcp_v4_reqsk_send_ack(struct sock *sk, struct sk_buff *skb,
753 struct request_sock *req)
755 tcp_v4_send_ack(skb, tcp_rsk(req)->snt_isn + 1,
756 tcp_rsk(req)->rcv_isn + 1, req->rcv_wnd,
759 tcp_v4_md5_do_lookup(sk, ip_hdr(skb)->daddr),
760 inet_rsk(req)->no_srccheck ? IP_REPLY_ARG_NOSRCCHECK : 0);
764 * Send a SYN-ACK after having received a SYN.
765 * This still operates on a request_sock only, not on a big
768 static int tcp_v4_send_synack(struct sock *sk, struct dst_entry *dst,
769 struct request_sock *req,
770 struct request_values *rvp)
772 const struct inet_request_sock *ireq = inet_rsk(req);
775 struct sk_buff * skb;
777 /* First, grab a route. */
778 if (!dst && (dst = inet_csk_route_req(sk, &fl4, req)) == NULL)
781 skb = tcp_make_synack(sk, dst, req, rvp);
784 __tcp_v4_send_check(skb, ireq->loc_addr, ireq->rmt_addr);
786 err = ip_build_and_send_pkt(skb, sk, ireq->loc_addr,
789 err = net_xmit_eval(err);
796 static int tcp_v4_rtx_synack(struct sock *sk, struct request_sock *req,
797 struct request_values *rvp)
799 TCP_INC_STATS_BH(sock_net(sk), TCP_MIB_RETRANSSEGS);
800 return tcp_v4_send_synack(sk, NULL, req, rvp);
804 * IPv4 request_sock destructor.
806 static void tcp_v4_reqsk_destructor(struct request_sock *req)
808 kfree(inet_rsk(req)->opt);
811 static void syn_flood_warning(const struct sk_buff *skb)
815 #ifdef CONFIG_SYN_COOKIES
816 if (sysctl_tcp_syncookies)
817 msg = "Sending cookies";
820 msg = "Dropping request";
822 pr_info("TCP: Possible SYN flooding on port %d. %s.\n",
823 ntohs(tcp_hdr(skb)->dest), msg);
827 * Save and compile IPv4 options into the request_sock if needed.
829 static struct ip_options_rcu *tcp_v4_save_options(struct sock *sk,
832 const struct ip_options *opt = &(IPCB(skb)->opt);
833 struct ip_options_rcu *dopt = NULL;
835 if (opt && opt->optlen) {
836 int opt_size = sizeof(*dopt) + opt->optlen;
838 dopt = kmalloc(opt_size, GFP_ATOMIC);
840 if (ip_options_echo(&dopt->opt, skb)) {
849 #ifdef CONFIG_TCP_MD5SIG
851 * RFC2385 MD5 checksumming requires a mapping of
852 * IP address->MD5 Key.
853 * We need to maintain these in the sk structure.
856 /* Find the Key structure for an address. */
857 static struct tcp_md5sig_key *
858 tcp_v4_md5_do_lookup(struct sock *sk, __be32 addr)
860 struct tcp_sock *tp = tcp_sk(sk);
863 if (!tp->md5sig_info || !tp->md5sig_info->entries4)
865 for (i = 0; i < tp->md5sig_info->entries4; i++) {
866 if (tp->md5sig_info->keys4[i].addr == addr)
867 return &tp->md5sig_info->keys4[i].base;
872 struct tcp_md5sig_key *tcp_v4_md5_lookup(struct sock *sk,
873 struct sock *addr_sk)
875 return tcp_v4_md5_do_lookup(sk, inet_sk(addr_sk)->inet_daddr);
877 EXPORT_SYMBOL(tcp_v4_md5_lookup);
879 static struct tcp_md5sig_key *tcp_v4_reqsk_md5_lookup(struct sock *sk,
880 struct request_sock *req)
882 return tcp_v4_md5_do_lookup(sk, inet_rsk(req)->rmt_addr);
885 /* This can be called on a newly created socket, from other files */
886 int tcp_v4_md5_do_add(struct sock *sk, __be32 addr,
887 u8 *newkey, u8 newkeylen)
889 /* Add Key to the list */
890 struct tcp_md5sig_key *key;
891 struct tcp_sock *tp = tcp_sk(sk);
892 struct tcp4_md5sig_key *keys;
894 key = tcp_v4_md5_do_lookup(sk, addr);
896 /* Pre-existing entry - just update that one. */
899 key->keylen = newkeylen;
901 struct tcp_md5sig_info *md5sig;
903 if (!tp->md5sig_info) {
904 tp->md5sig_info = kzalloc(sizeof(*tp->md5sig_info),
906 if (!tp->md5sig_info) {
910 sk_nocaps_add(sk, NETIF_F_GSO_MASK);
912 if (tcp_alloc_md5sig_pool(sk) == NULL) {
916 md5sig = tp->md5sig_info;
918 if (md5sig->alloced4 == md5sig->entries4) {
919 keys = kmalloc((sizeof(*keys) *
920 (md5sig->entries4 + 1)), GFP_ATOMIC);
923 tcp_free_md5sig_pool();
927 if (md5sig->entries4)
928 memcpy(keys, md5sig->keys4,
929 sizeof(*keys) * md5sig->entries4);
931 /* Free old key list, and reference new one */
932 kfree(md5sig->keys4);
933 md5sig->keys4 = keys;
937 md5sig->keys4[md5sig->entries4 - 1].addr = addr;
938 md5sig->keys4[md5sig->entries4 - 1].base.key = newkey;
939 md5sig->keys4[md5sig->entries4 - 1].base.keylen = newkeylen;
943 EXPORT_SYMBOL(tcp_v4_md5_do_add);
945 static int tcp_v4_md5_add_func(struct sock *sk, struct sock *addr_sk,
946 u8 *newkey, u8 newkeylen)
948 return tcp_v4_md5_do_add(sk, inet_sk(addr_sk)->inet_daddr,
952 int tcp_v4_md5_do_del(struct sock *sk, __be32 addr)
954 struct tcp_sock *tp = tcp_sk(sk);
957 for (i = 0; i < tp->md5sig_info->entries4; i++) {
958 if (tp->md5sig_info->keys4[i].addr == addr) {
960 kfree(tp->md5sig_info->keys4[i].base.key);
961 tp->md5sig_info->entries4--;
963 if (tp->md5sig_info->entries4 == 0) {
964 kfree(tp->md5sig_info->keys4);
965 tp->md5sig_info->keys4 = NULL;
966 tp->md5sig_info->alloced4 = 0;
967 } else if (tp->md5sig_info->entries4 != i) {
968 /* Need to do some manipulation */
969 memmove(&tp->md5sig_info->keys4[i],
970 &tp->md5sig_info->keys4[i+1],
971 (tp->md5sig_info->entries4 - i) *
972 sizeof(struct tcp4_md5sig_key));
974 tcp_free_md5sig_pool();
980 EXPORT_SYMBOL(tcp_v4_md5_do_del);
982 static void tcp_v4_clear_md5_list(struct sock *sk)
984 struct tcp_sock *tp = tcp_sk(sk);
986 /* Free each key, then the set of key keys,
987 * the crypto element, and then decrement our
988 * hold on the last resort crypto.
990 if (tp->md5sig_info->entries4) {
992 for (i = 0; i < tp->md5sig_info->entries4; i++)
993 kfree(tp->md5sig_info->keys4[i].base.key);
994 tp->md5sig_info->entries4 = 0;
995 tcp_free_md5sig_pool();
997 if (tp->md5sig_info->keys4) {
998 kfree(tp->md5sig_info->keys4);
999 tp->md5sig_info->keys4 = NULL;
1000 tp->md5sig_info->alloced4 = 0;
1004 static int tcp_v4_parse_md5_keys(struct sock *sk, char __user *optval,
1007 struct tcp_md5sig cmd;
1008 struct sockaddr_in *sin = (struct sockaddr_in *)&cmd.tcpm_addr;
1011 if (optlen < sizeof(cmd))
1014 if (copy_from_user(&cmd, optval, sizeof(cmd)))
1017 if (sin->sin_family != AF_INET)
1020 if (!cmd.tcpm_key || !cmd.tcpm_keylen) {
1021 if (!tcp_sk(sk)->md5sig_info)
1023 return tcp_v4_md5_do_del(sk, sin->sin_addr.s_addr);
1026 if (cmd.tcpm_keylen > TCP_MD5SIG_MAXKEYLEN)
1029 if (!tcp_sk(sk)->md5sig_info) {
1030 struct tcp_sock *tp = tcp_sk(sk);
1031 struct tcp_md5sig_info *p;
1033 p = kzalloc(sizeof(*p), sk->sk_allocation);
1037 tp->md5sig_info = p;
1038 sk_nocaps_add(sk, NETIF_F_GSO_MASK);
1041 newkey = kmemdup(cmd.tcpm_key, cmd.tcpm_keylen, sk->sk_allocation);
1044 return tcp_v4_md5_do_add(sk, sin->sin_addr.s_addr,
1045 newkey, cmd.tcpm_keylen);
1048 static int tcp_v4_md5_hash_pseudoheader(struct tcp_md5sig_pool *hp,
1049 __be32 daddr, __be32 saddr, int nbytes)
1051 struct tcp4_pseudohdr *bp;
1052 struct scatterlist sg;
1054 bp = &hp->md5_blk.ip4;
1057 * 1. the TCP pseudo-header (in the order: source IP address,
1058 * destination IP address, zero-padded protocol number, and
1064 bp->protocol = IPPROTO_TCP;
1065 bp->len = cpu_to_be16(nbytes);
1067 sg_init_one(&sg, bp, sizeof(*bp));
1068 return crypto_hash_update(&hp->md5_desc, &sg, sizeof(*bp));
1071 static int tcp_v4_md5_hash_hdr(char *md5_hash, struct tcp_md5sig_key *key,
1072 __be32 daddr, __be32 saddr, struct tcphdr *th)
1074 struct tcp_md5sig_pool *hp;
1075 struct hash_desc *desc;
1077 hp = tcp_get_md5sig_pool();
1079 goto clear_hash_noput;
1080 desc = &hp->md5_desc;
1082 if (crypto_hash_init(desc))
1084 if (tcp_v4_md5_hash_pseudoheader(hp, daddr, saddr, th->doff << 2))
1086 if (tcp_md5_hash_header(hp, th))
1088 if (tcp_md5_hash_key(hp, key))
1090 if (crypto_hash_final(desc, md5_hash))
1093 tcp_put_md5sig_pool();
1097 tcp_put_md5sig_pool();
1099 memset(md5_hash, 0, 16);
1103 int tcp_v4_md5_hash_skb(char *md5_hash, struct tcp_md5sig_key *key,
1104 struct sock *sk, struct request_sock *req,
1105 struct sk_buff *skb)
1107 struct tcp_md5sig_pool *hp;
1108 struct hash_desc *desc;
1109 struct tcphdr *th = tcp_hdr(skb);
1110 __be32 saddr, daddr;
1113 saddr = inet_sk(sk)->inet_saddr;
1114 daddr = inet_sk(sk)->inet_daddr;
1116 saddr = inet_rsk(req)->loc_addr;
1117 daddr = inet_rsk(req)->rmt_addr;
1119 const struct iphdr *iph = ip_hdr(skb);
1124 hp = tcp_get_md5sig_pool();
1126 goto clear_hash_noput;
1127 desc = &hp->md5_desc;
1129 if (crypto_hash_init(desc))
1132 if (tcp_v4_md5_hash_pseudoheader(hp, daddr, saddr, skb->len))
1134 if (tcp_md5_hash_header(hp, th))
1136 if (tcp_md5_hash_skb_data(hp, skb, th->doff << 2))
1138 if (tcp_md5_hash_key(hp, key))
1140 if (crypto_hash_final(desc, md5_hash))
1143 tcp_put_md5sig_pool();
1147 tcp_put_md5sig_pool();
1149 memset(md5_hash, 0, 16);
1152 EXPORT_SYMBOL(tcp_v4_md5_hash_skb);
1154 static int tcp_v4_inbound_md5_hash(struct sock *sk, struct sk_buff *skb)
1157 * This gets called for each TCP segment that arrives
1158 * so we want to be efficient.
1159 * We have 3 drop cases:
1160 * o No MD5 hash and one expected.
1161 * o MD5 hash and we're not expecting one.
1162 * o MD5 hash and its wrong.
1164 __u8 *hash_location = NULL;
1165 struct tcp_md5sig_key *hash_expected;
1166 const struct iphdr *iph = ip_hdr(skb);
1167 struct tcphdr *th = tcp_hdr(skb);
1169 unsigned char newhash[16];
1171 hash_expected = tcp_v4_md5_do_lookup(sk, iph->saddr);
1172 hash_location = tcp_parse_md5sig_option(th);
1174 /* We've parsed the options - do we have a hash? */
1175 if (!hash_expected && !hash_location)
1178 if (hash_expected && !hash_location) {
1179 NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_TCPMD5NOTFOUND);
1183 if (!hash_expected && hash_location) {
1184 NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_TCPMD5UNEXPECTED);
1188 /* Okay, so this is hash_expected and hash_location -
1189 * so we need to calculate the checksum.
1191 genhash = tcp_v4_md5_hash_skb(newhash,
1195 if (genhash || memcmp(hash_location, newhash, 16) != 0) {
1196 if (net_ratelimit()) {
1197 printk(KERN_INFO "MD5 Hash failed for (%pI4, %d)->(%pI4, %d)%s\n",
1198 &iph->saddr, ntohs(th->source),
1199 &iph->daddr, ntohs(th->dest),
1200 genhash ? " tcp_v4_calc_md5_hash failed" : "");
1209 struct request_sock_ops tcp_request_sock_ops __read_mostly = {
1211 .obj_size = sizeof(struct tcp_request_sock),
1212 .rtx_syn_ack = tcp_v4_rtx_synack,
1213 .send_ack = tcp_v4_reqsk_send_ack,
1214 .destructor = tcp_v4_reqsk_destructor,
1215 .send_reset = tcp_v4_send_reset,
1216 .syn_ack_timeout = tcp_syn_ack_timeout,
1219 #ifdef CONFIG_TCP_MD5SIG
1220 static const struct tcp_request_sock_ops tcp_request_sock_ipv4_ops = {
1221 .md5_lookup = tcp_v4_reqsk_md5_lookup,
1222 .calc_md5_hash = tcp_v4_md5_hash_skb,
1226 int tcp_v4_conn_request(struct sock *sk, struct sk_buff *skb)
1228 struct tcp_extend_values tmp_ext;
1229 struct tcp_options_received tmp_opt;
1231 struct request_sock *req;
1232 struct inet_request_sock *ireq;
1233 struct tcp_sock *tp = tcp_sk(sk);
1234 struct dst_entry *dst = NULL;
1235 __be32 saddr = ip_hdr(skb)->saddr;
1236 __be32 daddr = ip_hdr(skb)->daddr;
1237 __u32 isn = TCP_SKB_CB(skb)->when;
1238 #ifdef CONFIG_SYN_COOKIES
1239 int want_cookie = 0;
1241 #define want_cookie 0 /* Argh, why doesn't gcc optimize this :( */
1244 /* Never answer to SYNs send to broadcast or multicast */
1245 if (skb_rtable(skb)->rt_flags & (RTCF_BROADCAST | RTCF_MULTICAST))
1248 /* TW buckets are converted to open requests without
1249 * limitations, they conserve resources and peer is
1250 * evidently real one.
1252 if (inet_csk_reqsk_queue_is_full(sk) && !isn) {
1253 if (net_ratelimit())
1254 syn_flood_warning(skb);
1255 #ifdef CONFIG_SYN_COOKIES
1256 if (sysctl_tcp_syncookies) {
1263 /* Accept backlog is full. If we have already queued enough
1264 * of warm entries in syn queue, drop request. It is better than
1265 * clogging syn queue with openreqs with exponentially increasing
1268 if (sk_acceptq_is_full(sk) && inet_csk_reqsk_queue_young(sk) > 1)
1271 req = inet_reqsk_alloc(&tcp_request_sock_ops);
1275 #ifdef CONFIG_TCP_MD5SIG
1276 tcp_rsk(req)->af_specific = &tcp_request_sock_ipv4_ops;
1279 tcp_clear_options(&tmp_opt);
1280 tmp_opt.mss_clamp = TCP_MSS_DEFAULT;
1281 tmp_opt.user_mss = tp->rx_opt.user_mss;
1282 tcp_parse_options(skb, &tmp_opt, &hash_location, 0);
1284 if (tmp_opt.cookie_plus > 0 &&
1285 tmp_opt.saw_tstamp &&
1286 !tp->rx_opt.cookie_out_never &&
1287 (sysctl_tcp_cookie_size > 0 ||
1288 (tp->cookie_values != NULL &&
1289 tp->cookie_values->cookie_desired > 0))) {
1291 u32 *mess = &tmp_ext.cookie_bakery[COOKIE_DIGEST_WORDS];
1292 int l = tmp_opt.cookie_plus - TCPOLEN_COOKIE_BASE;
1294 if (tcp_cookie_generator(&tmp_ext.cookie_bakery[0]) != 0)
1295 goto drop_and_release;
1297 /* Secret recipe starts with IP addresses */
1298 *mess++ ^= (__force u32)daddr;
1299 *mess++ ^= (__force u32)saddr;
1301 /* plus variable length Initiator Cookie */
1304 *c++ ^= *hash_location++;
1306 #ifdef CONFIG_SYN_COOKIES
1307 want_cookie = 0; /* not our kind of cookie */
1309 tmp_ext.cookie_out_never = 0; /* false */
1310 tmp_ext.cookie_plus = tmp_opt.cookie_plus;
1311 } else if (!tp->rx_opt.cookie_in_always) {
1312 /* redundant indications, but ensure initialization. */
1313 tmp_ext.cookie_out_never = 1; /* true */
1314 tmp_ext.cookie_plus = 0;
1316 goto drop_and_release;
1318 tmp_ext.cookie_in_always = tp->rx_opt.cookie_in_always;
1320 if (want_cookie && !tmp_opt.saw_tstamp)
1321 tcp_clear_options(&tmp_opt);
1323 tmp_opt.tstamp_ok = tmp_opt.saw_tstamp;
1324 tcp_openreq_init(req, &tmp_opt, skb);
1326 ireq = inet_rsk(req);
1327 ireq->loc_addr = daddr;
1328 ireq->rmt_addr = saddr;
1329 ireq->no_srccheck = inet_sk(sk)->transparent;
1330 ireq->opt = tcp_v4_save_options(sk, skb);
1332 if (security_inet_conn_request(sk, skb, req))
1335 if (!want_cookie || tmp_opt.tstamp_ok)
1336 TCP_ECN_create_request(req, tcp_hdr(skb));
1339 isn = cookie_v4_init_sequence(sk, skb, &req->mss);
1340 req->cookie_ts = tmp_opt.tstamp_ok;
1342 struct inet_peer *peer = NULL;
1345 /* VJ's idea. We save last timestamp seen
1346 * from the destination in peer table, when entering
1347 * state TIME-WAIT, and check against it before
1348 * accepting new connection request.
1350 * If "isn" is not zero, this request hit alive
1351 * timewait bucket, so that all the necessary checks
1352 * are made in the function processing timewait state.
1354 if (tmp_opt.saw_tstamp &&
1355 tcp_death_row.sysctl_tw_recycle &&
1356 (dst = inet_csk_route_req(sk, &fl4, req)) != NULL &&
1357 fl4.daddr == saddr &&
1358 (peer = rt_get_peer((struct rtable *)dst, fl4.daddr)) != NULL) {
1359 inet_peer_refcheck(peer);
1360 if ((u32)get_seconds() - peer->tcp_ts_stamp < TCP_PAWS_MSL &&
1361 (s32)(peer->tcp_ts - req->ts_recent) >
1363 NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_PAWSPASSIVEREJECTED);
1364 goto drop_and_release;
1367 /* Kill the following clause, if you dislike this way. */
1368 else if (!sysctl_tcp_syncookies &&
1369 (sysctl_max_syn_backlog - inet_csk_reqsk_queue_len(sk) <
1370 (sysctl_max_syn_backlog >> 2)) &&
1371 (!peer || !peer->tcp_ts_stamp) &&
1372 (!dst || !dst_metric(dst, RTAX_RTT))) {
1373 /* Without syncookies last quarter of
1374 * backlog is filled with destinations,
1375 * proven to be alive.
1376 * It means that we continue to communicate
1377 * to destinations, already remembered
1378 * to the moment of synflood.
1380 LIMIT_NETDEBUG(KERN_DEBUG "TCP: drop open request from %pI4/%u\n",
1381 &saddr, ntohs(tcp_hdr(skb)->source));
1382 goto drop_and_release;
1385 isn = tcp_v4_init_sequence(skb);
1387 tcp_rsk(req)->snt_isn = isn;
1388 tcp_rsk(req)->snt_synack = tcp_time_stamp;
1390 if (tcp_v4_send_synack(sk, dst, req,
1391 (struct request_values *)&tmp_ext) ||
1395 inet_csk_reqsk_queue_hash_add(sk, req, TCP_TIMEOUT_INIT);
1405 EXPORT_SYMBOL(tcp_v4_conn_request);
1409 * The three way handshake has completed - we got a valid synack -
1410 * now create the new socket.
1412 struct sock *tcp_v4_syn_recv_sock(struct sock *sk, struct sk_buff *skb,
1413 struct request_sock *req,
1414 struct dst_entry *dst)
1416 struct inet_request_sock *ireq;
1417 struct inet_sock *newinet;
1418 struct tcp_sock *newtp;
1420 #ifdef CONFIG_TCP_MD5SIG
1421 struct tcp_md5sig_key *key;
1423 struct ip_options_rcu *inet_opt;
1425 if (sk_acceptq_is_full(sk))
1428 newsk = tcp_create_openreq_child(sk, req, skb);
1432 newsk->sk_gso_type = SKB_GSO_TCPV4;
1434 newtp = tcp_sk(newsk);
1435 newinet = inet_sk(newsk);
1436 ireq = inet_rsk(req);
1437 newinet->inet_daddr = ireq->rmt_addr;
1438 newinet->inet_rcv_saddr = ireq->loc_addr;
1439 newinet->inet_saddr = ireq->loc_addr;
1440 inet_opt = ireq->opt;
1441 rcu_assign_pointer(newinet->inet_opt, inet_opt);
1443 newinet->mc_index = inet_iif(skb);
1444 newinet->mc_ttl = ip_hdr(skb)->ttl;
1445 inet_csk(newsk)->icsk_ext_hdr_len = 0;
1447 inet_csk(newsk)->icsk_ext_hdr_len = inet_opt->opt.optlen;
1448 newinet->inet_id = newtp->write_seq ^ jiffies;
1450 if (!dst && (dst = inet_csk_route_child_sock(sk, newsk, req)) == NULL)
1453 sk_setup_caps(newsk, dst);
1455 tcp_mtup_init(newsk);
1456 tcp_sync_mss(newsk, dst_mtu(dst));
1457 newtp->advmss = dst_metric_advmss(dst);
1458 if (tcp_sk(sk)->rx_opt.user_mss &&
1459 tcp_sk(sk)->rx_opt.user_mss < newtp->advmss)
1460 newtp->advmss = tcp_sk(sk)->rx_opt.user_mss;
1462 tcp_initialize_rcv_mss(newsk);
1463 if (tcp_rsk(req)->snt_synack)
1464 tcp_valid_rtt_meas(newsk,
1465 tcp_time_stamp - tcp_rsk(req)->snt_synack);
1466 newtp->total_retrans = req->retrans;
1468 #ifdef CONFIG_TCP_MD5SIG
1469 /* Copy over the MD5 key from the original socket */
1470 key = tcp_v4_md5_do_lookup(sk, newinet->inet_daddr);
1473 * We're using one, so create a matching key
1474 * on the newsk structure. If we fail to get
1475 * memory, then we end up not copying the key
1478 char *newkey = kmemdup(key->key, key->keylen, GFP_ATOMIC);
1480 tcp_v4_md5_do_add(newsk, newinet->inet_daddr,
1481 newkey, key->keylen);
1482 sk_nocaps_add(newsk, NETIF_F_GSO_MASK);
1486 if (__inet_inherit_port(sk, newsk) < 0)
1488 __inet_hash_nolisten(newsk, NULL);
1493 NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_LISTENOVERFLOWS);
1497 NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_LISTENDROPS);
1503 EXPORT_SYMBOL(tcp_v4_syn_recv_sock);
1505 static struct sock *tcp_v4_hnd_req(struct sock *sk, struct sk_buff *skb)
1507 struct tcphdr *th = tcp_hdr(skb);
1508 const struct iphdr *iph = ip_hdr(skb);
1510 struct request_sock **prev;
1511 /* Find possible connection requests. */
1512 struct request_sock *req = inet_csk_search_req(sk, &prev, th->source,
1513 iph->saddr, iph->daddr);
1515 return tcp_check_req(sk, skb, req, prev);
1517 nsk = inet_lookup_established(sock_net(sk), &tcp_hashinfo, iph->saddr,
1518 th->source, iph->daddr, th->dest, inet_iif(skb));
1521 if (nsk->sk_state != TCP_TIME_WAIT) {
1525 inet_twsk_put(inet_twsk(nsk));
1529 #ifdef CONFIG_SYN_COOKIES
1531 sk = cookie_v4_check(sk, skb, &(IPCB(skb)->opt));
1536 static __sum16 tcp_v4_checksum_init(struct sk_buff *skb)
1538 const struct iphdr *iph = ip_hdr(skb);
1540 if (skb->ip_summed == CHECKSUM_COMPLETE) {
1541 if (!tcp_v4_check(skb->len, iph->saddr,
1542 iph->daddr, skb->csum)) {
1543 skb->ip_summed = CHECKSUM_UNNECESSARY;
1548 skb->csum = csum_tcpudp_nofold(iph->saddr, iph->daddr,
1549 skb->len, IPPROTO_TCP, 0);
1551 if (skb->len <= 76) {
1552 return __skb_checksum_complete(skb);
1558 /* The socket must have it's spinlock held when we get
1561 * We have a potential double-lock case here, so even when
1562 * doing backlog processing we use the BH locking scheme.
1563 * This is because we cannot sleep with the original spinlock
1566 int tcp_v4_do_rcv(struct sock *sk, struct sk_buff *skb)
1569 #ifdef CONFIG_TCP_MD5SIG
1571 * We really want to reject the packet as early as possible
1573 * o We're expecting an MD5'd packet and this is no MD5 tcp option
1574 * o There is an MD5 option and we're not expecting one
1576 if (tcp_v4_inbound_md5_hash(sk, skb))
1580 if (sk->sk_state == TCP_ESTABLISHED) { /* Fast path */
1581 sock_rps_save_rxhash(sk, skb->rxhash);
1582 if (tcp_rcv_established(sk, skb, tcp_hdr(skb), skb->len)) {
1589 if (skb->len < tcp_hdrlen(skb) || tcp_checksum_complete(skb))
1592 if (sk->sk_state == TCP_LISTEN) {
1593 struct sock *nsk = tcp_v4_hnd_req(sk, skb);
1598 sock_rps_save_rxhash(nsk, skb->rxhash);
1599 if (tcp_child_process(sk, nsk, skb)) {
1606 sock_rps_save_rxhash(sk, skb->rxhash);
1608 if (tcp_rcv_state_process(sk, skb, tcp_hdr(skb), skb->len)) {
1615 tcp_v4_send_reset(rsk, skb);
1618 /* Be careful here. If this function gets more complicated and
1619 * gcc suffers from register pressure on the x86, sk (in %ebx)
1620 * might be destroyed here. This current version compiles correctly,
1621 * but you have been warned.
1626 TCP_INC_STATS_BH(sock_net(sk), TCP_MIB_INERRS);
1629 EXPORT_SYMBOL(tcp_v4_do_rcv);
1635 int tcp_v4_rcv(struct sk_buff *skb)
1637 const struct iphdr *iph;
1641 struct net *net = dev_net(skb->dev);
1643 if (skb->pkt_type != PACKET_HOST)
1646 /* Count it even if it's bad */
1647 TCP_INC_STATS_BH(net, TCP_MIB_INSEGS);
1649 if (!pskb_may_pull(skb, sizeof(struct tcphdr)))
1654 if (th->doff < sizeof(struct tcphdr) / 4)
1656 if (!pskb_may_pull(skb, th->doff * 4))
1659 /* An explanation is required here, I think.
1660 * Packet length and doff are validated by header prediction,
1661 * provided case of th->doff==0 is eliminated.
1662 * So, we defer the checks. */
1663 if (!skb_csum_unnecessary(skb) && tcp_v4_checksum_init(skb))
1668 TCP_SKB_CB(skb)->seq = ntohl(th->seq);
1669 TCP_SKB_CB(skb)->end_seq = (TCP_SKB_CB(skb)->seq + th->syn + th->fin +
1670 skb->len - th->doff * 4);
1671 TCP_SKB_CB(skb)->ack_seq = ntohl(th->ack_seq);
1672 TCP_SKB_CB(skb)->when = 0;
1673 TCP_SKB_CB(skb)->flags = iph->tos;
1674 TCP_SKB_CB(skb)->sacked = 0;
1676 sk = __inet_lookup_skb(&tcp_hashinfo, skb, th->source, th->dest);
1681 if (sk->sk_state == TCP_TIME_WAIT)
1684 if (unlikely(iph->ttl < inet_sk(sk)->min_ttl)) {
1685 NET_INC_STATS_BH(net, LINUX_MIB_TCPMINTTLDROP);
1686 goto discard_and_relse;
1689 if (!xfrm4_policy_check(sk, XFRM_POLICY_IN, skb))
1690 goto discard_and_relse;
1693 if (sk_filter(sk, skb))
1694 goto discard_and_relse;
1698 bh_lock_sock_nested(sk);
1700 if (!sock_owned_by_user(sk)) {
1701 #ifdef CONFIG_NET_DMA
1702 struct tcp_sock *tp = tcp_sk(sk);
1703 if (!tp->ucopy.dma_chan && tp->ucopy.pinned_list)
1704 tp->ucopy.dma_chan = dma_find_channel(DMA_MEMCPY);
1705 if (tp->ucopy.dma_chan)
1706 ret = tcp_v4_do_rcv(sk, skb);
1710 if (!tcp_prequeue(sk, skb))
1711 ret = tcp_v4_do_rcv(sk, skb);
1713 } else if (unlikely(sk_add_backlog(sk, skb))) {
1715 NET_INC_STATS_BH(net, LINUX_MIB_TCPBACKLOGDROP);
1716 goto discard_and_relse;
1725 if (!xfrm4_policy_check(NULL, XFRM_POLICY_IN, skb))
1728 if (skb->len < (th->doff << 2) || tcp_checksum_complete(skb)) {
1730 TCP_INC_STATS_BH(net, TCP_MIB_INERRS);
1732 tcp_v4_send_reset(NULL, skb);
1736 /* Discard frame. */
1745 if (!xfrm4_policy_check(NULL, XFRM_POLICY_IN, skb)) {
1746 inet_twsk_put(inet_twsk(sk));
1750 if (skb->len < (th->doff << 2) || tcp_checksum_complete(skb)) {
1751 TCP_INC_STATS_BH(net, TCP_MIB_INERRS);
1752 inet_twsk_put(inet_twsk(sk));
1755 switch (tcp_timewait_state_process(inet_twsk(sk), skb, th)) {
1757 struct sock *sk2 = inet_lookup_listener(dev_net(skb->dev),
1759 iph->daddr, th->dest,
1762 inet_twsk_deschedule(inet_twsk(sk), &tcp_death_row);
1763 inet_twsk_put(inet_twsk(sk));
1767 /* Fall through to ACK */
1770 tcp_v4_timewait_ack(sk, skb);
1774 case TCP_TW_SUCCESS:;
1779 struct inet_peer *tcp_v4_get_peer(struct sock *sk, bool *release_it)
1781 struct rtable *rt = (struct rtable *) __sk_dst_get(sk);
1782 struct inet_sock *inet = inet_sk(sk);
1783 struct inet_peer *peer;
1786 inet->cork.fl.u.ip4.daddr != inet->inet_daddr) {
1787 peer = inet_getpeer_v4(inet->inet_daddr, 1);
1791 rt_bind_peer(rt, inet->inet_daddr, 1);
1793 *release_it = false;
1798 EXPORT_SYMBOL(tcp_v4_get_peer);
1800 void *tcp_v4_tw_get_peer(struct sock *sk)
1802 struct inet_timewait_sock *tw = inet_twsk(sk);
1804 return inet_getpeer_v4(tw->tw_daddr, 1);
1806 EXPORT_SYMBOL(tcp_v4_tw_get_peer);
1808 static struct timewait_sock_ops tcp_timewait_sock_ops = {
1809 .twsk_obj_size = sizeof(struct tcp_timewait_sock),
1810 .twsk_unique = tcp_twsk_unique,
1811 .twsk_destructor= tcp_twsk_destructor,
1812 .twsk_getpeer = tcp_v4_tw_get_peer,
1815 const struct inet_connection_sock_af_ops ipv4_specific = {
1816 .queue_xmit = ip_queue_xmit,
1817 .send_check = tcp_v4_send_check,
1818 .rebuild_header = inet_sk_rebuild_header,
1819 .conn_request = tcp_v4_conn_request,
1820 .syn_recv_sock = tcp_v4_syn_recv_sock,
1821 .get_peer = tcp_v4_get_peer,
1822 .net_header_len = sizeof(struct iphdr),
1823 .setsockopt = ip_setsockopt,
1824 .getsockopt = ip_getsockopt,
1825 .addr2sockaddr = inet_csk_addr2sockaddr,
1826 .sockaddr_len = sizeof(struct sockaddr_in),
1827 .bind_conflict = inet_csk_bind_conflict,
1828 #ifdef CONFIG_COMPAT
1829 .compat_setsockopt = compat_ip_setsockopt,
1830 .compat_getsockopt = compat_ip_getsockopt,
1833 EXPORT_SYMBOL(ipv4_specific);
1835 #ifdef CONFIG_TCP_MD5SIG
1836 static const struct tcp_sock_af_ops tcp_sock_ipv4_specific = {
1837 .md5_lookup = tcp_v4_md5_lookup,
1838 .calc_md5_hash = tcp_v4_md5_hash_skb,
1839 .md5_add = tcp_v4_md5_add_func,
1840 .md5_parse = tcp_v4_parse_md5_keys,
1844 /* NOTE: A lot of things set to zero explicitly by call to
1845 * sk_alloc() so need not be done here.
1847 static int tcp_v4_init_sock(struct sock *sk)
1849 struct inet_connection_sock *icsk = inet_csk(sk);
1850 struct tcp_sock *tp = tcp_sk(sk);
1852 skb_queue_head_init(&tp->out_of_order_queue);
1853 tcp_init_xmit_timers(sk);
1854 tcp_prequeue_init(tp);
1856 icsk->icsk_rto = TCP_TIMEOUT_INIT;
1857 tp->mdev = TCP_TIMEOUT_INIT;
1859 /* So many TCP implementations out there (incorrectly) count the
1860 * initial SYN frame in their delayed-ACK and congestion control
1861 * algorithms that we must have the following bandaid to talk
1862 * efficiently to them. -DaveM
1864 tp->snd_cwnd = TCP_INIT_CWND;
1866 /* See draft-stevens-tcpca-spec-01 for discussion of the
1867 * initialization of these values.
1869 tp->snd_ssthresh = TCP_INFINITE_SSTHRESH;
1870 tp->snd_cwnd_clamp = ~0;
1871 tp->mss_cache = TCP_MSS_DEFAULT;
1873 tp->reordering = sysctl_tcp_reordering;
1874 icsk->icsk_ca_ops = &tcp_init_congestion_ops;
1876 sk->sk_state = TCP_CLOSE;
1878 sk->sk_write_space = sk_stream_write_space;
1879 sock_set_flag(sk, SOCK_USE_WRITE_QUEUE);
1881 icsk->icsk_af_ops = &ipv4_specific;
1882 icsk->icsk_sync_mss = tcp_sync_mss;
1883 #ifdef CONFIG_TCP_MD5SIG
1884 tp->af_specific = &tcp_sock_ipv4_specific;
1887 /* TCP Cookie Transactions */
1888 if (sysctl_tcp_cookie_size > 0) {
1889 /* Default, cookies without s_data_payload. */
1891 kzalloc(sizeof(*tp->cookie_values),
1893 if (tp->cookie_values != NULL)
1894 kref_init(&tp->cookie_values->kref);
1896 /* Presumed zeroed, in order of appearance:
1897 * cookie_in_always, cookie_out_never,
1898 * s_data_constant, s_data_in, s_data_out
1900 sk->sk_sndbuf = sysctl_tcp_wmem[1];
1901 sk->sk_rcvbuf = sysctl_tcp_rmem[1];
1904 percpu_counter_inc(&tcp_sockets_allocated);
1910 void tcp_v4_destroy_sock(struct sock *sk)
1912 struct tcp_sock *tp = tcp_sk(sk);
1914 tcp_clear_xmit_timers(sk);
1916 tcp_cleanup_congestion_control(sk);
1918 /* Cleanup up the write buffer. */
1919 tcp_write_queue_purge(sk);
1921 /* Cleans up our, hopefully empty, out_of_order_queue. */
1922 __skb_queue_purge(&tp->out_of_order_queue);
1924 #ifdef CONFIG_TCP_MD5SIG
1925 /* Clean up the MD5 key list, if any */
1926 if (tp->md5sig_info) {
1927 tcp_v4_clear_md5_list(sk);
1928 kfree(tp->md5sig_info);
1929 tp->md5sig_info = NULL;
1933 #ifdef CONFIG_NET_DMA
1934 /* Cleans up our sk_async_wait_queue */
1935 __skb_queue_purge(&sk->sk_async_wait_queue);
1938 /* Clean prequeue, it must be empty really */
1939 __skb_queue_purge(&tp->ucopy.prequeue);
1941 /* Clean up a referenced TCP bind bucket. */
1942 if (inet_csk(sk)->icsk_bind_hash)
1946 * If sendmsg cached page exists, toss it.
1948 if (sk->sk_sndmsg_page) {
1949 __free_page(sk->sk_sndmsg_page);
1950 sk->sk_sndmsg_page = NULL;
1953 /* TCP Cookie Transactions */
1954 if (tp->cookie_values != NULL) {
1955 kref_put(&tp->cookie_values->kref,
1956 tcp_cookie_values_release);
1957 tp->cookie_values = NULL;
1960 percpu_counter_dec(&tcp_sockets_allocated);
1962 EXPORT_SYMBOL(tcp_v4_destroy_sock);
1964 #ifdef CONFIG_PROC_FS
1965 /* Proc filesystem TCP sock list dumping. */
1967 static inline struct inet_timewait_sock *tw_head(struct hlist_nulls_head *head)
1969 return hlist_nulls_empty(head) ? NULL :
1970 list_entry(head->first, struct inet_timewait_sock, tw_node);
1973 static inline struct inet_timewait_sock *tw_next(struct inet_timewait_sock *tw)
1975 return !is_a_nulls(tw->tw_node.next) ?
1976 hlist_nulls_entry(tw->tw_node.next, typeof(*tw), tw_node) : NULL;
1980 * Get next listener socket follow cur. If cur is NULL, get first socket
1981 * starting from bucket given in st->bucket; when st->bucket is zero the
1982 * very first socket in the hash table is returned.
1984 static void *listening_get_next(struct seq_file *seq, void *cur)
1986 struct inet_connection_sock *icsk;
1987 struct hlist_nulls_node *node;
1988 struct sock *sk = cur;
1989 struct inet_listen_hashbucket *ilb;
1990 struct tcp_iter_state *st = seq->private;
1991 struct net *net = seq_file_net(seq);
1994 ilb = &tcp_hashinfo.listening_hash[st->bucket];
1995 spin_lock_bh(&ilb->lock);
1996 sk = sk_nulls_head(&ilb->head);
2000 ilb = &tcp_hashinfo.listening_hash[st->bucket];
2004 if (st->state == TCP_SEQ_STATE_OPENREQ) {
2005 struct request_sock *req = cur;
2007 icsk = inet_csk(st->syn_wait_sk);
2011 if (req->rsk_ops->family == st->family) {
2017 if (++st->sbucket >= icsk->icsk_accept_queue.listen_opt->nr_table_entries)
2020 req = icsk->icsk_accept_queue.listen_opt->syn_table[st->sbucket];
2022 sk = sk_nulls_next(st->syn_wait_sk);
2023 st->state = TCP_SEQ_STATE_LISTENING;
2024 read_unlock_bh(&icsk->icsk_accept_queue.syn_wait_lock);
2026 icsk = inet_csk(sk);
2027 read_lock_bh(&icsk->icsk_accept_queue.syn_wait_lock);
2028 if (reqsk_queue_len(&icsk->icsk_accept_queue))
2030 read_unlock_bh(&icsk->icsk_accept_queue.syn_wait_lock);
2031 sk = sk_nulls_next(sk);
2034 sk_nulls_for_each_from(sk, node) {
2035 if (!net_eq(sock_net(sk), net))
2037 if (sk->sk_family == st->family) {
2041 icsk = inet_csk(sk);
2042 read_lock_bh(&icsk->icsk_accept_queue.syn_wait_lock);
2043 if (reqsk_queue_len(&icsk->icsk_accept_queue)) {
2045 st->uid = sock_i_uid(sk);
2046 st->syn_wait_sk = sk;
2047 st->state = TCP_SEQ_STATE_OPENREQ;
2051 read_unlock_bh(&icsk->icsk_accept_queue.syn_wait_lock);
2053 spin_unlock_bh(&ilb->lock);
2055 if (++st->bucket < INET_LHTABLE_SIZE) {
2056 ilb = &tcp_hashinfo.listening_hash[st->bucket];
2057 spin_lock_bh(&ilb->lock);
2058 sk = sk_nulls_head(&ilb->head);
2066 static void *listening_get_idx(struct seq_file *seq, loff_t *pos)
2068 struct tcp_iter_state *st = seq->private;
2073 rc = listening_get_next(seq, NULL);
2075 while (rc && *pos) {
2076 rc = listening_get_next(seq, rc);
2082 static inline int empty_bucket(struct tcp_iter_state *st)
2084 return hlist_nulls_empty(&tcp_hashinfo.ehash[st->bucket].chain) &&
2085 hlist_nulls_empty(&tcp_hashinfo.ehash[st->bucket].twchain);
2089 * Get first established socket starting from bucket given in st->bucket.
2090 * If st->bucket is zero, the very first socket in the hash is returned.
2092 static void *established_get_first(struct seq_file *seq)
2094 struct tcp_iter_state *st = seq->private;
2095 struct net *net = seq_file_net(seq);
2099 for (; st->bucket <= tcp_hashinfo.ehash_mask; ++st->bucket) {
2101 struct hlist_nulls_node *node;
2102 struct inet_timewait_sock *tw;
2103 spinlock_t *lock = inet_ehash_lockp(&tcp_hashinfo, st->bucket);
2105 /* Lockless fast path for the common case of empty buckets */
2106 if (empty_bucket(st))
2110 sk_nulls_for_each(sk, node, &tcp_hashinfo.ehash[st->bucket].chain) {
2111 if (sk->sk_family != st->family ||
2112 !net_eq(sock_net(sk), net)) {
2118 st->state = TCP_SEQ_STATE_TIME_WAIT;
2119 inet_twsk_for_each(tw, node,
2120 &tcp_hashinfo.ehash[st->bucket].twchain) {
2121 if (tw->tw_family != st->family ||
2122 !net_eq(twsk_net(tw), net)) {
2128 spin_unlock_bh(lock);
2129 st->state = TCP_SEQ_STATE_ESTABLISHED;
2135 static void *established_get_next(struct seq_file *seq, void *cur)
2137 struct sock *sk = cur;
2138 struct inet_timewait_sock *tw;
2139 struct hlist_nulls_node *node;
2140 struct tcp_iter_state *st = seq->private;
2141 struct net *net = seq_file_net(seq);
2146 if (st->state == TCP_SEQ_STATE_TIME_WAIT) {
2150 while (tw && (tw->tw_family != st->family || !net_eq(twsk_net(tw), net))) {
2157 spin_unlock_bh(inet_ehash_lockp(&tcp_hashinfo, st->bucket));
2158 st->state = TCP_SEQ_STATE_ESTABLISHED;
2160 /* Look for next non empty bucket */
2162 while (++st->bucket <= tcp_hashinfo.ehash_mask &&
2165 if (st->bucket > tcp_hashinfo.ehash_mask)
2168 spin_lock_bh(inet_ehash_lockp(&tcp_hashinfo, st->bucket));
2169 sk = sk_nulls_head(&tcp_hashinfo.ehash[st->bucket].chain);
2171 sk = sk_nulls_next(sk);
2173 sk_nulls_for_each_from(sk, node) {
2174 if (sk->sk_family == st->family && net_eq(sock_net(sk), net))
2178 st->state = TCP_SEQ_STATE_TIME_WAIT;
2179 tw = tw_head(&tcp_hashinfo.ehash[st->bucket].twchain);
2187 static void *established_get_idx(struct seq_file *seq, loff_t pos)
2189 struct tcp_iter_state *st = seq->private;
2193 rc = established_get_first(seq);
2196 rc = established_get_next(seq, rc);
2202 static void *tcp_get_idx(struct seq_file *seq, loff_t pos)
2205 struct tcp_iter_state *st = seq->private;
2207 st->state = TCP_SEQ_STATE_LISTENING;
2208 rc = listening_get_idx(seq, &pos);
2211 st->state = TCP_SEQ_STATE_ESTABLISHED;
2212 rc = established_get_idx(seq, pos);
2218 static void *tcp_seek_last_pos(struct seq_file *seq)
2220 struct tcp_iter_state *st = seq->private;
2221 int offset = st->offset;
2222 int orig_num = st->num;
2225 switch (st->state) {
2226 case TCP_SEQ_STATE_OPENREQ:
2227 case TCP_SEQ_STATE_LISTENING:
2228 if (st->bucket >= INET_LHTABLE_SIZE)
2230 st->state = TCP_SEQ_STATE_LISTENING;
2231 rc = listening_get_next(seq, NULL);
2232 while (offset-- && rc)
2233 rc = listening_get_next(seq, rc);
2238 case TCP_SEQ_STATE_ESTABLISHED:
2239 case TCP_SEQ_STATE_TIME_WAIT:
2240 st->state = TCP_SEQ_STATE_ESTABLISHED;
2241 if (st->bucket > tcp_hashinfo.ehash_mask)
2243 rc = established_get_first(seq);
2244 while (offset-- && rc)
2245 rc = established_get_next(seq, rc);
2253 static void *tcp_seq_start(struct seq_file *seq, loff_t *pos)
2255 struct tcp_iter_state *st = seq->private;
2258 if (*pos && *pos == st->last_pos) {
2259 rc = tcp_seek_last_pos(seq);
2264 st->state = TCP_SEQ_STATE_LISTENING;
2268 rc = *pos ? tcp_get_idx(seq, *pos - 1) : SEQ_START_TOKEN;
2271 st->last_pos = *pos;
2275 static void *tcp_seq_next(struct seq_file *seq, void *v, loff_t *pos)
2277 struct tcp_iter_state *st = seq->private;
2280 if (v == SEQ_START_TOKEN) {
2281 rc = tcp_get_idx(seq, 0);
2285 switch (st->state) {
2286 case TCP_SEQ_STATE_OPENREQ:
2287 case TCP_SEQ_STATE_LISTENING:
2288 rc = listening_get_next(seq, v);
2290 st->state = TCP_SEQ_STATE_ESTABLISHED;
2293 rc = established_get_first(seq);
2296 case TCP_SEQ_STATE_ESTABLISHED:
2297 case TCP_SEQ_STATE_TIME_WAIT:
2298 rc = established_get_next(seq, v);
2303 st->last_pos = *pos;
2307 static void tcp_seq_stop(struct seq_file *seq, void *v)
2309 struct tcp_iter_state *st = seq->private;
2311 switch (st->state) {
2312 case TCP_SEQ_STATE_OPENREQ:
2314 struct inet_connection_sock *icsk = inet_csk(st->syn_wait_sk);
2315 read_unlock_bh(&icsk->icsk_accept_queue.syn_wait_lock);
2317 case TCP_SEQ_STATE_LISTENING:
2318 if (v != SEQ_START_TOKEN)
2319 spin_unlock_bh(&tcp_hashinfo.listening_hash[st->bucket].lock);
2321 case TCP_SEQ_STATE_TIME_WAIT:
2322 case TCP_SEQ_STATE_ESTABLISHED:
2324 spin_unlock_bh(inet_ehash_lockp(&tcp_hashinfo, st->bucket));
2329 static int tcp_seq_open(struct inode *inode, struct file *file)
2331 struct tcp_seq_afinfo *afinfo = PDE(inode)->data;
2332 struct tcp_iter_state *s;
2335 err = seq_open_net(inode, file, &afinfo->seq_ops,
2336 sizeof(struct tcp_iter_state));
2340 s = ((struct seq_file *)file->private_data)->private;
2341 s->family = afinfo->family;
2346 int tcp_proc_register(struct net *net, struct tcp_seq_afinfo *afinfo)
2349 struct proc_dir_entry *p;
2351 afinfo->seq_fops.open = tcp_seq_open;
2352 afinfo->seq_fops.read = seq_read;
2353 afinfo->seq_fops.llseek = seq_lseek;
2354 afinfo->seq_fops.release = seq_release_net;
2356 afinfo->seq_ops.start = tcp_seq_start;
2357 afinfo->seq_ops.next = tcp_seq_next;
2358 afinfo->seq_ops.stop = tcp_seq_stop;
2360 p = proc_create_data(afinfo->name, S_IRUGO, net->proc_net,
2361 &afinfo->seq_fops, afinfo);
2366 EXPORT_SYMBOL(tcp_proc_register);
2368 void tcp_proc_unregister(struct net *net, struct tcp_seq_afinfo *afinfo)
2370 proc_net_remove(net, afinfo->name);
2372 EXPORT_SYMBOL(tcp_proc_unregister);
2374 static void get_openreq4(struct sock *sk, struct request_sock *req,
2375 struct seq_file *f, int i, int uid, int *len)
2377 const struct inet_request_sock *ireq = inet_rsk(req);
2378 int ttd = req->expires - jiffies;
2380 seq_printf(f, "%4d: %08X:%04X %08X:%04X"
2381 " %02X %08X:%08X %02X:%08lX %08X %5d %8d %u %d %pK%n",
2384 ntohs(inet_sk(sk)->inet_sport),
2386 ntohs(ireq->rmt_port),
2388 0, 0, /* could print option size, but that is af dependent. */
2389 1, /* timers active (only the expire timer) */
2390 jiffies_to_clock_t(ttd),
2393 0, /* non standard timer */
2394 0, /* open_requests have no inode */
2395 atomic_read(&sk->sk_refcnt),
2400 static void get_tcp4_sock(struct sock *sk, struct seq_file *f, int i, int *len)
2403 unsigned long timer_expires;
2404 struct tcp_sock *tp = tcp_sk(sk);
2405 const struct inet_connection_sock *icsk = inet_csk(sk);
2406 struct inet_sock *inet = inet_sk(sk);
2407 __be32 dest = inet->inet_daddr;
2408 __be32 src = inet->inet_rcv_saddr;
2409 __u16 destp = ntohs(inet->inet_dport);
2410 __u16 srcp = ntohs(inet->inet_sport);
2413 if (icsk->icsk_pending == ICSK_TIME_RETRANS) {
2415 timer_expires = icsk->icsk_timeout;
2416 } else if (icsk->icsk_pending == ICSK_TIME_PROBE0) {
2418 timer_expires = icsk->icsk_timeout;
2419 } else if (timer_pending(&sk->sk_timer)) {
2421 timer_expires = sk->sk_timer.expires;
2424 timer_expires = jiffies;
2427 if (sk->sk_state == TCP_LISTEN)
2428 rx_queue = sk->sk_ack_backlog;
2431 * because we dont lock socket, we might find a transient negative value
2433 rx_queue = max_t(int, tp->rcv_nxt - tp->copied_seq, 0);
2435 seq_printf(f, "%4d: %08X:%04X %08X:%04X %02X %08X:%08X %02X:%08lX "
2436 "%08X %5d %8d %lu %d %pK %lu %lu %u %u %d%n",
2437 i, src, srcp, dest, destp, sk->sk_state,
2438 tp->write_seq - tp->snd_una,
2441 jiffies_to_clock_t(timer_expires - jiffies),
2442 icsk->icsk_retransmits,
2444 icsk->icsk_probes_out,
2446 atomic_read(&sk->sk_refcnt), sk,
2447 jiffies_to_clock_t(icsk->icsk_rto),
2448 jiffies_to_clock_t(icsk->icsk_ack.ato),
2449 (icsk->icsk_ack.quick << 1) | icsk->icsk_ack.pingpong,
2451 tcp_in_initial_slowstart(tp) ? -1 : tp->snd_ssthresh,
2455 static void get_timewait4_sock(struct inet_timewait_sock *tw,
2456 struct seq_file *f, int i, int *len)
2460 int ttd = tw->tw_ttd - jiffies;
2465 dest = tw->tw_daddr;
2466 src = tw->tw_rcv_saddr;
2467 destp = ntohs(tw->tw_dport);
2468 srcp = ntohs(tw->tw_sport);
2470 seq_printf(f, "%4d: %08X:%04X %08X:%04X"
2471 " %02X %08X:%08X %02X:%08lX %08X %5d %8d %d %d %pK%n",
2472 i, src, srcp, dest, destp, tw->tw_substate, 0, 0,
2473 3, jiffies_to_clock_t(ttd), 0, 0, 0, 0,
2474 atomic_read(&tw->tw_refcnt), tw, len);
2479 static int tcp4_seq_show(struct seq_file *seq, void *v)
2481 struct tcp_iter_state *st;
2484 if (v == SEQ_START_TOKEN) {
2485 seq_printf(seq, "%-*s\n", TMPSZ - 1,
2486 " sl local_address rem_address st tx_queue "
2487 "rx_queue tr tm->when retrnsmt uid timeout "
2493 switch (st->state) {
2494 case TCP_SEQ_STATE_LISTENING:
2495 case TCP_SEQ_STATE_ESTABLISHED:
2496 get_tcp4_sock(v, seq, st->num, &len);
2498 case TCP_SEQ_STATE_OPENREQ:
2499 get_openreq4(st->syn_wait_sk, v, seq, st->num, st->uid, &len);
2501 case TCP_SEQ_STATE_TIME_WAIT:
2502 get_timewait4_sock(v, seq, st->num, &len);
2505 seq_printf(seq, "%*s\n", TMPSZ - 1 - len, "");
2510 static struct tcp_seq_afinfo tcp4_seq_afinfo = {
2514 .owner = THIS_MODULE,
2517 .show = tcp4_seq_show,
2521 static int __net_init tcp4_proc_init_net(struct net *net)
2523 return tcp_proc_register(net, &tcp4_seq_afinfo);
2526 static void __net_exit tcp4_proc_exit_net(struct net *net)
2528 tcp_proc_unregister(net, &tcp4_seq_afinfo);
2531 static struct pernet_operations tcp4_net_ops = {
2532 .init = tcp4_proc_init_net,
2533 .exit = tcp4_proc_exit_net,
2536 int __init tcp4_proc_init(void)
2538 return register_pernet_subsys(&tcp4_net_ops);
2541 void tcp4_proc_exit(void)
2543 unregister_pernet_subsys(&tcp4_net_ops);
2545 #endif /* CONFIG_PROC_FS */
2547 struct sk_buff **tcp4_gro_receive(struct sk_buff **head, struct sk_buff *skb)
2549 const struct iphdr *iph = skb_gro_network_header(skb);
2551 switch (skb->ip_summed) {
2552 case CHECKSUM_COMPLETE:
2553 if (!tcp_v4_check(skb_gro_len(skb), iph->saddr, iph->daddr,
2555 skb->ip_summed = CHECKSUM_UNNECESSARY;
2561 NAPI_GRO_CB(skb)->flush = 1;
2565 return tcp_gro_receive(head, skb);
2568 int tcp4_gro_complete(struct sk_buff *skb)
2570 const struct iphdr *iph = ip_hdr(skb);
2571 struct tcphdr *th = tcp_hdr(skb);
2573 th->check = ~tcp_v4_check(skb->len - skb_transport_offset(skb),
2574 iph->saddr, iph->daddr, 0);
2575 skb_shinfo(skb)->gso_type = SKB_GSO_TCPV4;
2577 return tcp_gro_complete(skb);
2580 struct proto tcp_prot = {
2582 .owner = THIS_MODULE,
2584 .connect = tcp_v4_connect,
2585 .disconnect = tcp_disconnect,
2586 .accept = inet_csk_accept,
2588 .init = tcp_v4_init_sock,
2589 .destroy = tcp_v4_destroy_sock,
2590 .shutdown = tcp_shutdown,
2591 .setsockopt = tcp_setsockopt,
2592 .getsockopt = tcp_getsockopt,
2593 .recvmsg = tcp_recvmsg,
2594 .sendmsg = tcp_sendmsg,
2595 .sendpage = tcp_sendpage,
2596 .backlog_rcv = tcp_v4_do_rcv,
2598 .unhash = inet_unhash,
2599 .get_port = inet_csk_get_port,
2600 .enter_memory_pressure = tcp_enter_memory_pressure,
2601 .sockets_allocated = &tcp_sockets_allocated,
2602 .orphan_count = &tcp_orphan_count,
2603 .memory_allocated = &tcp_memory_allocated,
2604 .memory_pressure = &tcp_memory_pressure,
2605 .sysctl_mem = sysctl_tcp_mem,
2606 .sysctl_wmem = sysctl_tcp_wmem,
2607 .sysctl_rmem = sysctl_tcp_rmem,
2608 .max_header = MAX_TCP_HEADER,
2609 .obj_size = sizeof(struct tcp_sock),
2610 .slab_flags = SLAB_DESTROY_BY_RCU,
2611 .twsk_prot = &tcp_timewait_sock_ops,
2612 .rsk_prot = &tcp_request_sock_ops,
2613 .h.hashinfo = &tcp_hashinfo,
2614 .no_autobind = true,
2615 #ifdef CONFIG_COMPAT
2616 .compat_setsockopt = compat_tcp_setsockopt,
2617 .compat_getsockopt = compat_tcp_getsockopt,
2620 EXPORT_SYMBOL(tcp_prot);
2623 static int __net_init tcp_sk_init(struct net *net)
2625 return inet_ctl_sock_create(&net->ipv4.tcp_sock,
2626 PF_INET, SOCK_RAW, IPPROTO_TCP, net);
2629 static void __net_exit tcp_sk_exit(struct net *net)
2631 inet_ctl_sock_destroy(net->ipv4.tcp_sock);
2634 static void __net_exit tcp_sk_exit_batch(struct list_head *net_exit_list)
2636 inet_twsk_purge(&tcp_hashinfo, &tcp_death_row, AF_INET);
2639 static struct pernet_operations __net_initdata tcp_sk_ops = {
2640 .init = tcp_sk_init,
2641 .exit = tcp_sk_exit,
2642 .exit_batch = tcp_sk_exit_batch,
2645 void __init tcp_v4_init(void)
2647 inet_hashinfo_init(&tcp_hashinfo);
2648 if (register_pernet_subsys(&tcp_sk_ops))
2649 panic("Failed to create the TCP control socket.\n");
git.openpandora.org / pandora-kernel.git / blob