3 * Linux INET6 implementation
5 * Based on net/dccp6/ipv6.c
7 * Arnaldo Carvalho de Melo <acme@ghostprotocols.net>
9 * This program is free software; you can redistribute it and/or
10 * modify it under the terms of the GNU General Public License
11 * as published by the Free Software Foundation; either version
12 * 2 of the License, or (at your option) any later version.
15 #include <linux/module.h>
16 #include <linux/random.h>
17 #include <linux/slab.h>
18 #include <linux/xfrm.h>
20 #include <net/addrconf.h>
21 #include <net/inet_common.h>
22 #include <net/inet_hashtables.h>
23 #include <net/inet_sock.h>
24 #include <net/inet6_connection_sock.h>
25 #include <net/inet6_hashtables.h>
26 #include <net/ip6_route.h>
28 #include <net/protocol.h>
29 #include <net/transp_v6.h>
30 #include <net/ip6_checksum.h>
32 #include <net/secure_seq.h>
38 /* The per-net dccp.v6_ctl_sk is used for sending RSTs and ACKs */
40 static const struct inet_connection_sock_af_ops dccp_ipv6_mapped;
41 static const struct inet_connection_sock_af_ops dccp_ipv6_af_ops;
43 static void dccp_v6_hash(struct sock *sk)
45 if (sk->sk_state != DCCP_CLOSED) {
46 if (inet_csk(sk)->icsk_af_ops == &dccp_ipv6_mapped) {
51 __inet6_hash(sk, NULL);
56 /* add pseudo-header to DCCP checksum stored in skb->csum */
57 static inline __sum16 dccp_v6_csum_finish(struct sk_buff *skb,
58 const struct in6_addr *saddr,
59 const struct in6_addr *daddr)
61 return csum_ipv6_magic(saddr, daddr, skb->len, IPPROTO_DCCP, skb->csum);
64 static inline void dccp_v6_send_check(struct sock *sk, struct sk_buff *skb)
66 struct ipv6_pinfo *np = inet6_sk(sk);
67 struct dccp_hdr *dh = dccp_hdr(skb);
69 dccp_csum_outgoing(skb);
70 dh->dccph_checksum = dccp_v6_csum_finish(skb, &np->saddr, &sk->sk_v6_daddr);
73 static inline __u64 dccp_v6_init_sequence(struct sk_buff *skb)
75 return secure_dccpv6_sequence_number(ipv6_hdr(skb)->daddr.s6_addr32,
76 ipv6_hdr(skb)->saddr.s6_addr32,
77 dccp_hdr(skb)->dccph_dport,
78 dccp_hdr(skb)->dccph_sport );
82 static void dccp_v6_err(struct sk_buff *skb, struct inet6_skb_parm *opt,
83 u8 type, u8 code, int offset, __be32 info)
85 const struct ipv6hdr *hdr = (const struct ipv6hdr *)skb->data;
86 const struct dccp_hdr *dh;
88 struct ipv6_pinfo *np;
92 struct net *net = dev_net(skb->dev);
94 /* Only need dccph_dport & dccph_sport which are the first
95 * 4 bytes in dccp header.
96 * Our caller (icmpv6_notify()) already pulled 8 bytes for us.
98 BUILD_BUG_ON(offsetof(struct dccp_hdr, dccph_sport) + sizeof(dh->dccph_sport) > 8);
99 BUILD_BUG_ON(offsetof(struct dccp_hdr, dccph_dport) + sizeof(dh->dccph_dport) > 8);
100 dh = (struct dccp_hdr *)(skb->data + offset);
102 sk = inet6_lookup(net, &dccp_hashinfo,
103 &hdr->daddr, dh->dccph_dport,
104 &hdr->saddr, dh->dccph_sport, inet6_iif(skb));
107 ICMP6_INC_STATS_BH(net, __in6_dev_get(skb->dev),
112 if (sk->sk_state == DCCP_TIME_WAIT) {
113 inet_twsk_put(inet_twsk(sk));
118 if (sock_owned_by_user(sk))
119 NET_INC_STATS_BH(net, LINUX_MIB_LOCKDROPPEDICMPS);
121 if (sk->sk_state == DCCP_CLOSED)
125 seq = dccp_hdr_seq(dh);
126 if ((1 << sk->sk_state) & ~(DCCPF_REQUESTING | DCCPF_LISTEN) &&
127 !between48(seq, dp->dccps_awl, dp->dccps_awh)) {
128 NET_INC_STATS_BH(net, LINUX_MIB_OUTOFWINDOWICMPS);
134 if (type == NDISC_REDIRECT) {
135 if (!sock_owned_by_user(sk)) {
136 struct dst_entry *dst = __sk_dst_check(sk, np->dst_cookie);
139 dst->ops->redirect(dst, sk, skb);
144 if (type == ICMPV6_PKT_TOOBIG) {
145 struct dst_entry *dst = NULL;
147 if (!ip6_sk_accept_pmtu(sk))
150 if (sock_owned_by_user(sk))
152 if ((1 << sk->sk_state) & (DCCPF_LISTEN | DCCPF_CLOSED))
155 dst = inet6_csk_update_pmtu(sk, ntohl(info));
159 if (inet_csk(sk)->icsk_pmtu_cookie > dst_mtu(dst))
160 dccp_sync_mss(sk, dst_mtu(dst));
164 icmpv6_err_convert(type, code, &err);
166 /* Might be for an request_sock */
167 switch (sk->sk_state) {
168 struct request_sock *req, **prev;
170 if (sock_owned_by_user(sk))
173 req = inet6_csk_search_req(sk, &prev, dh->dccph_dport,
174 &hdr->daddr, &hdr->saddr,
180 * ICMPs are not backlogged, hence we cannot get an established
183 WARN_ON(req->sk != NULL);
185 if (!between48(seq, dccp_rsk(req)->dreq_iss,
186 dccp_rsk(req)->dreq_gss)) {
187 NET_INC_STATS_BH(net, LINUX_MIB_OUTOFWINDOWICMPS);
191 inet_csk_reqsk_queue_drop(sk, req, prev);
194 case DCCP_REQUESTING:
195 case DCCP_RESPOND: /* Cannot happen.
196 It can, it SYNs are crossed. --ANK */
197 if (!sock_owned_by_user(sk)) {
198 DCCP_INC_STATS_BH(DCCP_MIB_ATTEMPTFAILS);
201 * Wake people up to see the error
202 * (see connect in sock.c)
204 sk->sk_error_report(sk);
207 sk->sk_err_soft = err;
211 if (!sock_owned_by_user(sk) && np->recverr) {
213 sk->sk_error_report(sk);
215 sk->sk_err_soft = err;
223 static int dccp_v6_send_response(struct sock *sk, struct request_sock *req)
225 struct inet_request_sock *ireq = inet_rsk(req);
226 struct ipv6_pinfo *np = inet6_sk(sk);
228 struct in6_addr *final_p, final;
231 struct dst_entry *dst;
233 memset(&fl6, 0, sizeof(fl6));
234 fl6.flowi6_proto = IPPROTO_DCCP;
235 fl6.daddr = ireq->ir_v6_rmt_addr;
236 fl6.saddr = ireq->ir_v6_loc_addr;
238 fl6.flowi6_oif = ireq->ir_iif;
239 fl6.fl6_dport = ireq->ir_rmt_port;
240 fl6.fl6_sport = htons(ireq->ir_num);
241 security_req_classify_flow(req, flowi6_to_flowi(&fl6));
245 final_p = fl6_update_dst(&fl6, rcu_dereference(np->opt), &final);
248 dst = ip6_dst_lookup_flow(sk, &fl6, final_p);
255 skb = dccp_make_response(sk, dst, req);
257 struct dccp_hdr *dh = dccp_hdr(skb);
259 dh->dccph_checksum = dccp_v6_csum_finish(skb,
260 &ireq->ir_v6_loc_addr,
261 &ireq->ir_v6_rmt_addr);
262 fl6.daddr = ireq->ir_v6_rmt_addr;
264 err = ip6_xmit(sk, skb, &fl6, rcu_dereference(np->opt),
267 err = net_xmit_eval(err);
275 static void dccp_v6_reqsk_destructor(struct request_sock *req)
277 dccp_feat_list_purge(&dccp_rsk(req)->dreq_featneg);
278 kfree_skb(inet_rsk(req)->pktopts);
281 static void dccp_v6_ctl_send_reset(struct sock *sk, struct sk_buff *rxskb)
283 const struct ipv6hdr *rxip6h;
286 struct net *net = dev_net(skb_dst(rxskb)->dev);
287 struct sock *ctl_sk = net->dccp.v6_ctl_sk;
288 struct dst_entry *dst;
290 if (dccp_hdr(rxskb)->dccph_type == DCCP_PKT_RESET)
293 if (!ipv6_unicast_destination(rxskb))
296 skb = dccp_ctl_make_reset(ctl_sk, rxskb);
300 rxip6h = ipv6_hdr(rxskb);
301 dccp_hdr(skb)->dccph_checksum = dccp_v6_csum_finish(skb, &rxip6h->saddr,
304 memset(&fl6, 0, sizeof(fl6));
305 fl6.daddr = rxip6h->saddr;
306 fl6.saddr = rxip6h->daddr;
308 fl6.flowi6_proto = IPPROTO_DCCP;
309 fl6.flowi6_oif = inet6_iif(rxskb);
310 fl6.fl6_dport = dccp_hdr(skb)->dccph_dport;
311 fl6.fl6_sport = dccp_hdr(skb)->dccph_sport;
312 security_skb_classify_flow(rxskb, flowi6_to_flowi(&fl6));
314 /* sk = NULL, but it is safe for now. RST socket required. */
315 dst = ip6_dst_lookup_flow(ctl_sk, &fl6, NULL);
317 skb_dst_set(skb, dst);
318 ip6_xmit(ctl_sk, skb, &fl6, NULL, 0);
319 DCCP_INC_STATS_BH(DCCP_MIB_OUTSEGS);
320 DCCP_INC_STATS_BH(DCCP_MIB_OUTRSTS);
327 static struct request_sock_ops dccp6_request_sock_ops = {
329 .obj_size = sizeof(struct dccp6_request_sock),
330 .rtx_syn_ack = dccp_v6_send_response,
331 .send_ack = dccp_reqsk_send_ack,
332 .destructor = dccp_v6_reqsk_destructor,
333 .send_reset = dccp_v6_ctl_send_reset,
334 .syn_ack_timeout = dccp_syn_ack_timeout,
337 static struct sock *dccp_v6_hnd_req(struct sock *sk,struct sk_buff *skb)
339 const struct dccp_hdr *dh = dccp_hdr(skb);
340 const struct ipv6hdr *iph = ipv6_hdr(skb);
342 struct request_sock **prev;
343 /* Find possible connection requests. */
344 struct request_sock *req = inet6_csk_search_req(sk, &prev,
350 return dccp_check_req(sk, skb, req, prev);
352 nsk = __inet6_lookup_established(sock_net(sk), &dccp_hashinfo,
353 &iph->saddr, dh->dccph_sport,
354 &iph->daddr, ntohs(dh->dccph_dport),
357 if (nsk->sk_state != DCCP_TIME_WAIT) {
361 inet_twsk_put(inet_twsk(nsk));
368 static int dccp_v6_conn_request(struct sock *sk, struct sk_buff *skb)
370 struct request_sock *req;
371 struct dccp_request_sock *dreq;
372 struct inet_request_sock *ireq;
373 struct ipv6_pinfo *np = inet6_sk(sk);
374 const __be32 service = dccp_hdr_request(skb)->dccph_req_service;
375 struct dccp_skb_cb *dcb = DCCP_SKB_CB(skb);
377 if (skb->protocol == htons(ETH_P_IP))
378 return dccp_v4_conn_request(sk, skb);
380 if (!ipv6_unicast_destination(skb))
381 return 0; /* discard, don't send a reset here */
383 if (dccp_bad_service_code(sk, service)) {
384 dcb->dccpd_reset_code = DCCP_RESET_CODE_BAD_SERVICE_CODE;
388 * There are no SYN attacks on IPv6, yet...
390 dcb->dccpd_reset_code = DCCP_RESET_CODE_TOO_BUSY;
391 if (inet_csk_reqsk_queue_is_full(sk))
394 if (sk_acceptq_is_full(sk))
397 req = inet6_reqsk_alloc(&dccp6_request_sock_ops);
401 if (dccp_reqsk_init(req, dccp_sk(sk), skb))
404 dreq = dccp_rsk(req);
405 if (dccp_parse_options(sk, dreq, skb))
408 if (security_inet_conn_request(sk, skb, req))
411 ireq = inet_rsk(req);
412 ireq->ir_v6_rmt_addr = ipv6_hdr(skb)->saddr;
413 ireq->ir_v6_loc_addr = ipv6_hdr(skb)->daddr;
415 if (ipv6_opt_accepted(sk, skb) ||
416 np->rxopt.bits.rxinfo || np->rxopt.bits.rxoinfo ||
417 np->rxopt.bits.rxhlim || np->rxopt.bits.rxohlim) {
418 atomic_inc(&skb->users);
421 ireq->ir_iif = sk->sk_bound_dev_if;
423 /* So that link locals have meaning */
424 if (!sk->sk_bound_dev_if &&
425 ipv6_addr_type(&ireq->ir_v6_rmt_addr) & IPV6_ADDR_LINKLOCAL)
426 ireq->ir_iif = inet6_iif(skb);
429 * Step 3: Process LISTEN state
431 * Set S.ISR, S.GSR, S.SWL, S.SWH from packet or Init Cookie
433 * Setting S.SWL/S.SWH to is deferred to dccp_create_openreq_child().
435 dreq->dreq_isr = dcb->dccpd_seq;
436 dreq->dreq_gsr = dreq->dreq_isr;
437 dreq->dreq_iss = dccp_v6_init_sequence(skb);
438 dreq->dreq_gss = dreq->dreq_iss;
439 dreq->dreq_service = service;
441 if (dccp_v6_send_response(sk, req))
444 inet6_csk_reqsk_queue_hash_add(sk, req, DCCP_TIMEOUT_INIT);
450 DCCP_INC_STATS_BH(DCCP_MIB_ATTEMPTFAILS);
454 static struct sock *dccp_v6_request_recv_sock(struct sock *sk,
456 struct request_sock *req,
457 struct dst_entry *dst)
459 struct inet_request_sock *ireq = inet_rsk(req);
460 struct ipv6_pinfo *newnp, *np = inet6_sk(sk);
461 struct ipv6_txoptions *opt;
462 struct inet_sock *newinet;
463 struct dccp6_sock *newdp6;
466 if (skb->protocol == htons(ETH_P_IP)) {
470 newsk = dccp_v4_request_recv_sock(sk, skb, req, dst);
474 newdp6 = (struct dccp6_sock *)newsk;
475 newinet = inet_sk(newsk);
476 newinet->pinet6 = &newdp6->inet6;
477 newnp = inet6_sk(newsk);
479 memcpy(newnp, np, sizeof(struct ipv6_pinfo));
481 ipv6_addr_set_v4mapped(newinet->inet_daddr, &newsk->sk_v6_daddr);
483 ipv6_addr_set_v4mapped(newinet->inet_saddr, &newnp->saddr);
485 newsk->sk_v6_rcv_saddr = newnp->saddr;
487 inet_csk(newsk)->icsk_af_ops = &dccp_ipv6_mapped;
488 newsk->sk_backlog_rcv = dccp_v4_do_rcv;
489 newnp->pktoptions = NULL;
491 newnp->ipv6_mc_list = NULL;
492 newnp->ipv6_ac_list = NULL;
493 newnp->ipv6_fl_list = NULL;
494 newnp->mcast_oif = inet_iif(skb);
495 newnp->mcast_hops = ip_hdr(skb)->ttl;
498 * No need to charge this sock to the relevant IPv6 refcnt debug socks count
499 * here, dccp_create_openreq_child now does this for us, see the comment in
500 * that function for the gory details. -acme
503 /* It is tricky place. Until this moment IPv4 tcp
504 worked with IPv6 icsk.icsk_af_ops.
507 dccp_sync_mss(newsk, inet_csk(newsk)->icsk_pmtu_cookie);
513 if (sk_acceptq_is_full(sk))
517 struct in6_addr *final_p, final;
520 memset(&fl6, 0, sizeof(fl6));
521 fl6.flowi6_proto = IPPROTO_DCCP;
522 fl6.daddr = ireq->ir_v6_rmt_addr;
523 final_p = fl6_update_dst(&fl6, np->opt, &final);
524 fl6.saddr = ireq->ir_v6_loc_addr;
525 fl6.flowi6_oif = sk->sk_bound_dev_if;
526 fl6.fl6_dport = ireq->ir_rmt_port;
527 fl6.fl6_sport = htons(ireq->ir_num);
528 security_sk_classify_flow(sk, flowi6_to_flowi(&fl6));
530 dst = ip6_dst_lookup_flow(sk, &fl6, final_p);
535 newsk = dccp_create_openreq_child(sk, req, skb);
540 * No need to charge this sock to the relevant IPv6 refcnt debug socks
541 * count here, dccp_create_openreq_child now does this for us, see the
542 * comment in that function for the gory details. -acme
545 __ip6_dst_store(newsk, dst, NULL, NULL);
546 newsk->sk_route_caps = dst->dev->features & ~(NETIF_F_IP_CSUM |
548 newdp6 = (struct dccp6_sock *)newsk;
549 newinet = inet_sk(newsk);
550 newinet->pinet6 = &newdp6->inet6;
551 newnp = inet6_sk(newsk);
553 memcpy(newnp, np, sizeof(struct ipv6_pinfo));
555 newsk->sk_v6_daddr = ireq->ir_v6_rmt_addr;
556 newnp->saddr = ireq->ir_v6_loc_addr;
557 newsk->sk_v6_rcv_saddr = ireq->ir_v6_loc_addr;
558 newsk->sk_bound_dev_if = ireq->ir_iif;
560 /* Now IPv6 options...
562 First: no IPv4 options.
564 newinet->inet_opt = NULL;
567 newnp->rxopt.all = np->rxopt.all;
569 newnp->ipv6_mc_list = NULL;
570 newnp->ipv6_ac_list = NULL;
571 newnp->ipv6_fl_list = NULL;
572 /* Clone pktoptions received with SYN */
573 newnp->pktoptions = NULL;
574 if (ireq->pktopts != NULL) {
575 newnp->pktoptions = skb_clone(ireq->pktopts, GFP_ATOMIC);
576 consume_skb(ireq->pktopts);
577 ireq->pktopts = NULL;
578 if (newnp->pktoptions)
579 skb_set_owner_r(newnp->pktoptions, newsk);
582 newnp->mcast_oif = inet6_iif(skb);
583 newnp->mcast_hops = ipv6_hdr(skb)->hop_limit;
586 * Clone native IPv6 options from listening socket (if any)
588 * Yes, keeping reference count would be much more clever, but we make
589 * one more one thing there: reattach optmem to newsk.
591 opt = rcu_dereference(np->opt);
593 opt = ipv6_dup_options(newsk, opt);
594 RCU_INIT_POINTER(newnp->opt, opt);
596 inet_csk(newsk)->icsk_ext_hdr_len = 0;
598 inet_csk(newsk)->icsk_ext_hdr_len = opt->opt_nflen +
601 dccp_sync_mss(newsk, dst_mtu(dst));
603 newinet->inet_daddr = newinet->inet_saddr = LOOPBACK4_IPV6;
604 newinet->inet_rcv_saddr = LOOPBACK4_IPV6;
606 if (__inet_inherit_port(sk, newsk) < 0) {
607 inet_csk_prepare_forced_close(newsk);
611 __inet6_hash(newsk, NULL);
616 NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_LISTENOVERFLOWS);
620 NET_INC_STATS_BH(sock_net(sk), LINUX_MIB_LISTENDROPS);
624 /* The socket must have it's spinlock held when we get
627 * We have a potential double-lock case here, so even when
628 * doing backlog processing we use the BH locking scheme.
629 * This is because we cannot sleep with the original spinlock
632 static int dccp_v6_do_rcv(struct sock *sk, struct sk_buff *skb)
634 struct ipv6_pinfo *np = inet6_sk(sk);
635 struct sk_buff *opt_skb = NULL;
637 /* Imagine: socket is IPv6. IPv4 packet arrives,
638 goes to IPv4 receive handler and backlogged.
639 From backlog it always goes here. Kerboom...
640 Fortunately, dccp_rcv_established and rcv_established
641 handle them correctly, but it is not case with
642 dccp_v6_hnd_req and dccp_v6_ctl_send_reset(). --ANK
645 if (skb->protocol == htons(ETH_P_IP))
646 return dccp_v4_do_rcv(sk, skb);
648 if (sk_filter(sk, skb))
652 * socket locking is here for SMP purposes as backlog rcv is currently
653 * called with bh processing disabled.
656 /* Do Stevens' IPV6_PKTOPTIONS.
658 Yes, guys, it is the only place in our code, where we
659 may make it not affecting IPv4.
660 The rest of code is protocol independent,
661 and I do not like idea to uglify IPv4.
663 Actually, all the idea behind IPV6_PKTOPTIONS
664 looks not very well thought. For now we latch
665 options, received in the last packet, enqueued
666 by tcp. Feel free to propose better solution.
671 * FIXME: Add handling of IPV6_PKTOPTIONS skb. See the comments below
672 * (wrt ipv6_pktopions) and net/ipv6/tcp_ipv6.c for an example.
674 opt_skb = skb_clone(skb, GFP_ATOMIC);
676 if (sk->sk_state == DCCP_OPEN) { /* Fast path */
677 if (dccp_rcv_established(sk, skb, dccp_hdr(skb), skb->len))
680 /* XXX This is where we would goto ipv6_pktoptions. */
681 __kfree_skb(opt_skb);
687 * Step 3: Process LISTEN state
688 * If S.state == LISTEN,
689 * If P.type == Request or P contains a valid Init Cookie option,
690 * (* Must scan the packet's options to check for Init
691 * Cookies. Only Init Cookies are processed here,
692 * however; other options are processed in Step 8. This
693 * scan need only be performed if the endpoint uses Init
695 * (* Generate a new socket and switch to that socket *)
696 * Set S := new socket for this port pair
698 * Choose S.ISS (initial seqno) or set from Init Cookies
699 * Initialize S.GAR := S.ISS
700 * Set S.ISR, S.GSR, S.SWL, S.SWH from packet or Init Cookies
701 * Continue with S.state == RESPOND
702 * (* A Response packet will be generated in Step 11 *)
704 * Generate Reset(No Connection) unless P.type == Reset
705 * Drop packet and return
707 * NOTE: the check for the packet types is done in
708 * dccp_rcv_state_process
710 if (sk->sk_state == DCCP_LISTEN) {
711 struct sock *nsk = dccp_v6_hnd_req(sk, skb);
716 * Queue it on the new socket if the new socket is active,
717 * otherwise we just shortcircuit this and continue with
721 if (dccp_child_process(sk, nsk, skb))
724 __kfree_skb(opt_skb);
729 if (dccp_rcv_state_process(sk, skb, dccp_hdr(skb), skb->len))
732 /* XXX This is where we would goto ipv6_pktoptions. */
733 __kfree_skb(opt_skb);
738 dccp_v6_ctl_send_reset(sk, skb);
741 __kfree_skb(opt_skb);
746 static int dccp_v6_rcv(struct sk_buff *skb)
748 const struct dccp_hdr *dh;
752 /* Step 1: Check header basics */
754 if (dccp_invalid_packet(skb))
757 /* Step 1: If header checksum is incorrect, drop packet and return. */
758 if (dccp_v6_csum_finish(skb, &ipv6_hdr(skb)->saddr,
759 &ipv6_hdr(skb)->daddr)) {
760 DCCP_WARN("dropped packet with invalid checksum\n");
766 DCCP_SKB_CB(skb)->dccpd_seq = dccp_hdr_seq(dh);
767 DCCP_SKB_CB(skb)->dccpd_type = dh->dccph_type;
769 if (dccp_packet_without_ack(skb))
770 DCCP_SKB_CB(skb)->dccpd_ack_seq = DCCP_PKT_WITHOUT_ACK_SEQ;
772 DCCP_SKB_CB(skb)->dccpd_ack_seq = dccp_hdr_ack_seq(skb);
775 * Look up flow ID in table and get corresponding socket */
776 sk = __inet6_lookup_skb(&dccp_hashinfo, skb,
777 dh->dccph_sport, dh->dccph_dport);
783 dccp_pr_debug("failed to look up flow ID in table and "
784 "get corresponding socket\n");
790 * ... or S.state == TIMEWAIT,
791 * Generate Reset(No Connection) unless P.type == Reset
792 * Drop packet and return
794 if (sk->sk_state == DCCP_TIME_WAIT) {
795 dccp_pr_debug("sk->sk_state == DCCP_TIME_WAIT: do_time_wait\n");
796 inet_twsk_put(inet_twsk(sk));
801 * RFC 4340, sec. 9.2.1: Minimum Checksum Coverage
802 * o if MinCsCov = 0, only packets with CsCov = 0 are accepted
803 * o if MinCsCov > 0, also accept packets with CsCov >= MinCsCov
805 min_cov = dccp_sk(sk)->dccps_pcrlen;
806 if (dh->dccph_cscov && (min_cov == 0 || dh->dccph_cscov < min_cov)) {
807 dccp_pr_debug("Packet CsCov %d does not satisfy MinCsCov %d\n",
808 dh->dccph_cscov, min_cov);
809 /* FIXME: send Data Dropped option (see also dccp_v4_rcv) */
810 goto discard_and_relse;
813 if (!xfrm6_policy_check(sk, XFRM_POLICY_IN, skb))
814 goto discard_and_relse;
816 return __sk_receive_skb(sk, skb, 1, dh->dccph_doff * 4) ? -1 : 0;
819 if (!xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb))
824 * Generate Reset(No Connection) unless P.type == Reset
825 * Drop packet and return
827 if (dh->dccph_type != DCCP_PKT_RESET) {
828 DCCP_SKB_CB(skb)->dccpd_reset_code =
829 DCCP_RESET_CODE_NO_CONNECTION;
830 dccp_v6_ctl_send_reset(sk, skb);
842 static int dccp_v6_connect(struct sock *sk, struct sockaddr *uaddr,
845 struct sockaddr_in6 *usin = (struct sockaddr_in6 *)uaddr;
846 struct inet_connection_sock *icsk = inet_csk(sk);
847 struct inet_sock *inet = inet_sk(sk);
848 struct ipv6_pinfo *np = inet6_sk(sk);
849 struct dccp_sock *dp = dccp_sk(sk);
850 struct in6_addr *saddr = NULL, *final_p, final;
851 struct ipv6_txoptions *opt;
853 struct dst_entry *dst;
857 dp->dccps_role = DCCP_ROLE_CLIENT;
859 if (addr_len < SIN6_LEN_RFC2133)
862 if (usin->sin6_family != AF_INET6)
863 return -EAFNOSUPPORT;
865 memset(&fl6, 0, sizeof(fl6));
868 fl6.flowlabel = usin->sin6_flowinfo & IPV6_FLOWINFO_MASK;
869 IP6_ECN_flow_init(fl6.flowlabel);
870 if (fl6.flowlabel & IPV6_FLOWLABEL_MASK) {
871 struct ip6_flowlabel *flowlabel;
872 flowlabel = fl6_sock_lookup(sk, fl6.flowlabel);
873 if (flowlabel == NULL)
875 fl6_sock_release(flowlabel);
879 * connect() to INADDR_ANY means loopback (BSD'ism).
881 if (ipv6_addr_any(&usin->sin6_addr))
882 usin->sin6_addr.s6_addr[15] = 1;
884 addr_type = ipv6_addr_type(&usin->sin6_addr);
886 if (addr_type & IPV6_ADDR_MULTICAST)
889 if (addr_type & IPV6_ADDR_LINKLOCAL) {
890 if (addr_len >= sizeof(struct sockaddr_in6) &&
891 usin->sin6_scope_id) {
892 /* If interface is set while binding, indices
895 if (sk->sk_bound_dev_if &&
896 sk->sk_bound_dev_if != usin->sin6_scope_id)
899 sk->sk_bound_dev_if = usin->sin6_scope_id;
902 /* Connect to link-local address requires an interface */
903 if (!sk->sk_bound_dev_if)
907 sk->sk_v6_daddr = usin->sin6_addr;
908 np->flow_label = fl6.flowlabel;
913 if (addr_type == IPV6_ADDR_MAPPED) {
914 u32 exthdrlen = icsk->icsk_ext_hdr_len;
915 struct sockaddr_in sin;
917 SOCK_DEBUG(sk, "connect: ipv4 mapped\n");
919 if (__ipv6_only_sock(sk))
922 sin.sin_family = AF_INET;
923 sin.sin_port = usin->sin6_port;
924 sin.sin_addr.s_addr = usin->sin6_addr.s6_addr32[3];
926 icsk->icsk_af_ops = &dccp_ipv6_mapped;
927 sk->sk_backlog_rcv = dccp_v4_do_rcv;
929 err = dccp_v4_connect(sk, (struct sockaddr *)&sin, sizeof(sin));
931 icsk->icsk_ext_hdr_len = exthdrlen;
932 icsk->icsk_af_ops = &dccp_ipv6_af_ops;
933 sk->sk_backlog_rcv = dccp_v6_do_rcv;
936 ipv6_addr_set_v4mapped(inet->inet_saddr, &np->saddr);
937 ipv6_addr_set_v4mapped(inet->inet_rcv_saddr, &sk->sk_v6_rcv_saddr);
942 if (!ipv6_addr_any(&sk->sk_v6_rcv_saddr))
943 saddr = &sk->sk_v6_rcv_saddr;
945 fl6.flowi6_proto = IPPROTO_DCCP;
946 fl6.daddr = sk->sk_v6_daddr;
947 fl6.saddr = saddr ? *saddr : np->saddr;
948 fl6.flowi6_oif = sk->sk_bound_dev_if;
949 fl6.fl6_dport = usin->sin6_port;
950 fl6.fl6_sport = inet->inet_sport;
951 security_sk_classify_flow(sk, flowi6_to_flowi(&fl6));
953 opt = rcu_dereference_protected(np->opt, sock_owned_by_user(sk));
954 final_p = fl6_update_dst(&fl6, opt, &final);
956 dst = ip6_dst_lookup_flow(sk, &fl6, final_p);
964 sk->sk_v6_rcv_saddr = *saddr;
967 /* set the source address */
969 inet->inet_rcv_saddr = LOOPBACK4_IPV6;
971 __ip6_dst_store(sk, dst, NULL, NULL);
973 icsk->icsk_ext_hdr_len = 0;
975 icsk->icsk_ext_hdr_len = opt->opt_flen + opt->opt_nflen;
977 inet->inet_dport = usin->sin6_port;
979 dccp_set_state(sk, DCCP_REQUESTING);
980 err = inet6_hash_connect(&dccp_death_row, sk);
984 dp->dccps_iss = secure_dccpv6_sequence_number(np->saddr.s6_addr32,
985 sk->sk_v6_daddr.s6_addr32,
988 err = dccp_connect(sk);
995 dccp_set_state(sk, DCCP_CLOSED);
998 inet->inet_dport = 0;
999 sk->sk_route_caps = 0;
1003 static const struct inet_connection_sock_af_ops dccp_ipv6_af_ops = {
1004 .queue_xmit = inet6_csk_xmit,
1005 .send_check = dccp_v6_send_check,
1006 .rebuild_header = inet6_sk_rebuild_header,
1007 .conn_request = dccp_v6_conn_request,
1008 .syn_recv_sock = dccp_v6_request_recv_sock,
1009 .net_header_len = sizeof(struct ipv6hdr),
1010 .setsockopt = ipv6_setsockopt,
1011 .getsockopt = ipv6_getsockopt,
1012 .addr2sockaddr = inet6_csk_addr2sockaddr,
1013 .sockaddr_len = sizeof(struct sockaddr_in6),
1014 .bind_conflict = inet6_csk_bind_conflict,
1015 #ifdef CONFIG_COMPAT
1016 .compat_setsockopt = compat_ipv6_setsockopt,
1017 .compat_getsockopt = compat_ipv6_getsockopt,
1022 * DCCP over IPv4 via INET6 API
1024 static const struct inet_connection_sock_af_ops dccp_ipv6_mapped = {
1025 .queue_xmit = ip_queue_xmit,
1026 .send_check = dccp_v4_send_check,
1027 .rebuild_header = inet_sk_rebuild_header,
1028 .conn_request = dccp_v6_conn_request,
1029 .syn_recv_sock = dccp_v6_request_recv_sock,
1030 .net_header_len = sizeof(struct iphdr),
1031 .setsockopt = ipv6_setsockopt,
1032 .getsockopt = ipv6_getsockopt,
1033 .addr2sockaddr = inet6_csk_addr2sockaddr,
1034 .sockaddr_len = sizeof(struct sockaddr_in6),
1035 .bind_conflict = inet6_csk_bind_conflict,
1036 #ifdef CONFIG_COMPAT
1037 .compat_setsockopt = compat_ipv6_setsockopt,
1038 .compat_getsockopt = compat_ipv6_getsockopt,
1042 /* NOTE: A lot of things set to zero explicitly by call to
1043 * sk_alloc() so need not be done here.
1045 static int dccp_v6_init_sock(struct sock *sk)
1047 static __u8 dccp_v6_ctl_sock_initialized;
1048 int err = dccp_init_sock(sk, dccp_v6_ctl_sock_initialized);
1051 if (unlikely(!dccp_v6_ctl_sock_initialized))
1052 dccp_v6_ctl_sock_initialized = 1;
1053 inet_csk(sk)->icsk_af_ops = &dccp_ipv6_af_ops;
1059 static void dccp_v6_destroy_sock(struct sock *sk)
1061 dccp_destroy_sock(sk);
1062 inet6_destroy_sock(sk);
1065 static struct timewait_sock_ops dccp6_timewait_sock_ops = {
1066 .twsk_obj_size = sizeof(struct dccp6_timewait_sock),
1069 static struct proto dccp_v6_prot = {
1071 .owner = THIS_MODULE,
1072 .close = dccp_close,
1073 .connect = dccp_v6_connect,
1074 .disconnect = dccp_disconnect,
1075 .ioctl = dccp_ioctl,
1076 .init = dccp_v6_init_sock,
1077 .setsockopt = dccp_setsockopt,
1078 .getsockopt = dccp_getsockopt,
1079 .sendmsg = dccp_sendmsg,
1080 .recvmsg = dccp_recvmsg,
1081 .backlog_rcv = dccp_v6_do_rcv,
1082 .hash = dccp_v6_hash,
1083 .unhash = inet_unhash,
1084 .accept = inet_csk_accept,
1085 .get_port = inet_csk_get_port,
1086 .shutdown = dccp_shutdown,
1087 .destroy = dccp_v6_destroy_sock,
1088 .orphan_count = &dccp_orphan_count,
1089 .max_header = MAX_DCCP_HEADER,
1090 .obj_size = sizeof(struct dccp6_sock),
1091 .slab_flags = SLAB_DESTROY_BY_RCU,
1092 .rsk_prot = &dccp6_request_sock_ops,
1093 .twsk_prot = &dccp6_timewait_sock_ops,
1094 .h.hashinfo = &dccp_hashinfo,
1095 #ifdef CONFIG_COMPAT
1096 .compat_setsockopt = compat_dccp_setsockopt,
1097 .compat_getsockopt = compat_dccp_getsockopt,
1101 static const struct inet6_protocol dccp_v6_protocol = {
1102 .handler = dccp_v6_rcv,
1103 .err_handler = dccp_v6_err,
1104 .flags = INET6_PROTO_NOPOLICY | INET6_PROTO_FINAL,
1107 static const struct proto_ops inet6_dccp_ops = {
1109 .owner = THIS_MODULE,
1110 .release = inet6_release,
1112 .connect = inet_stream_connect,
1113 .socketpair = sock_no_socketpair,
1114 .accept = inet_accept,
1115 .getname = inet6_getname,
1117 .ioctl = inet6_ioctl,
1118 .listen = inet_dccp_listen,
1119 .shutdown = inet_shutdown,
1120 .setsockopt = sock_common_setsockopt,
1121 .getsockopt = sock_common_getsockopt,
1122 .sendmsg = inet_sendmsg,
1123 .recvmsg = sock_common_recvmsg,
1124 .mmap = sock_no_mmap,
1125 .sendpage = sock_no_sendpage,
1126 #ifdef CONFIG_COMPAT
1127 .compat_setsockopt = compat_sock_common_setsockopt,
1128 .compat_getsockopt = compat_sock_common_getsockopt,
1132 static struct inet_protosw dccp_v6_protosw = {
1134 .protocol = IPPROTO_DCCP,
1135 .prot = &dccp_v6_prot,
1136 .ops = &inet6_dccp_ops,
1137 .flags = INET_PROTOSW_ICSK,
1140 static int __net_init dccp_v6_init_net(struct net *net)
1142 if (dccp_hashinfo.bhash == NULL)
1143 return -ESOCKTNOSUPPORT;
1145 return inet_ctl_sock_create(&net->dccp.v6_ctl_sk, PF_INET6,
1146 SOCK_DCCP, IPPROTO_DCCP, net);
1149 static void __net_exit dccp_v6_exit_net(struct net *net)
1151 inet_ctl_sock_destroy(net->dccp.v6_ctl_sk);
1154 static void __net_exit dccp_v6_exit_batch(struct list_head *net_exit_list)
1156 inet_twsk_purge(&dccp_hashinfo, &dccp_death_row, AF_INET6);
1159 static struct pernet_operations dccp_v6_ops = {
1160 .init = dccp_v6_init_net,
1161 .exit = dccp_v6_exit_net,
1162 .exit_batch = dccp_v6_exit_batch,
1165 static int __init dccp_v6_init(void)
1167 int err = proto_register(&dccp_v6_prot, 1);
1172 err = inet6_add_protocol(&dccp_v6_protocol, IPPROTO_DCCP);
1174 goto out_unregister_proto;
1176 inet6_register_protosw(&dccp_v6_protosw);
1178 err = register_pernet_subsys(&dccp_v6_ops);
1180 goto out_destroy_ctl_sock;
1184 out_destroy_ctl_sock:
1185 inet6_del_protocol(&dccp_v6_protocol, IPPROTO_DCCP);
1186 inet6_unregister_protosw(&dccp_v6_protosw);
1187 out_unregister_proto:
1188 proto_unregister(&dccp_v6_prot);
1192 static void __exit dccp_v6_exit(void)
1194 unregister_pernet_subsys(&dccp_v6_ops);
1195 inet6_del_protocol(&dccp_v6_protocol, IPPROTO_DCCP);
1196 inet6_unregister_protosw(&dccp_v6_protosw);
1197 proto_unregister(&dccp_v6_prot);
1200 module_init(dccp_v6_init);
1201 module_exit(dccp_v6_exit);
1204 * __stringify doesn't likes enums, so use SOCK_DCCP (6) and IPPROTO_DCCP (33)
1205 * values directly, Also cover the case where the protocol is not specified,
1206 * i.e. net-pf-PF_INET6-proto-0-type-SOCK_DCCP
1208 MODULE_ALIAS_NET_PF_PROTO_TYPE(PF_INET6, 33, 6);
1209 MODULE_ALIAS_NET_PF_PROTO_TYPE(PF_INET6, 0, 6);
1210 MODULE_LICENSE("GPL");
1211 MODULE_AUTHOR("Arnaldo Carvalho de Melo <acme@mandriva.com>");
1212 MODULE_DESCRIPTION("DCCPv6 - Datagram Congestion Controlled Protocol");
projects / librecmc / linux-libre.git / blob