Commit | Line | Data |
---|---|---|
457c8996 | 1 | // SPDX-License-Identifier: GPL-2.0-only |
1da177e4 LT |
2 | /* |
3 | * INET An implementation of the TCP/IP protocol suite for the LINUX | |
4 | * operating system. INET is implemented using the BSD Socket | |
5 | * interface as the means of communication with the user level. | |
6 | * | |
7 | * The Internet Protocol (IP) output module. | |
8 | * | |
02c30a84 | 9 | * Authors: Ross Biro |
1da177e4 LT |
10 | * Fred N. van Kempen, <waltje@uWalt.NL.Mugnet.ORG> |
11 | * Donald Becker, <becker@super.org> | |
12 | * Alan Cox, <Alan.Cox@linux.org> | |
13 | * Richard Underwood | |
14 | * Stefan Becker, <stefanb@yello.ping.de> | |
15 | * Jorge Cwik, <jorge@laser.satlink.net> | |
16 | * Arnt Gulbrandsen, <agulbra@nvg.unit.no> | |
17 | * Hirokazu Takahashi, <taka@valinux.co.jp> | |
18 | * | |
19 | * See ip_input.c for original log | |
20 | * | |
21 | * Fixes: | |
22 | * Alan Cox : Missing nonblock feature in ip_build_xmit. | |
23 | * Mike Kilburn : htons() missing in ip_build_xmit. | |
e905a9ed | 24 | * Bradford Johnson: Fix faulty handling of some frames when |
1da177e4 LT |
25 | * no route is found. |
26 | * Alexander Demenshin: Missing sk/skb free in ip_queue_xmit | |
27 | * (in case if packet not accepted by | |
28 | * output firewall rules) | |
29 | * Mike McLagan : Routing by source | |
30 | * Alexey Kuznetsov: use new route cache | |
31 | * Andi Kleen: Fix broken PMTU recovery and remove | |
32 | * some redundant tests. | |
33 | * Vitaly E. Lavrov : Transparent proxy revived after year coma. | |
34 | * Andi Kleen : Replace ip_reply with ip_send_reply. | |
e905a9ed YH |
35 | * Andi Kleen : Split fast and slow ip_build_xmit path |
36 | * for decreased register pressure on x86 | |
a66e04ce | 37 | * and more readability. |
1da177e4 LT |
38 | * Marc Boucher : When call_out_firewall returns FW_QUEUE, |
39 | * silently drop skb instead of failing with -EPERM. | |
40 | * Detlev Wengorz : Copy protocol for fragments. | |
41 | * Hirokazu Takahashi: HW checksumming for outgoing UDP | |
42 | * datagrams. | |
43 | * Hirokazu Takahashi: sendfile() on UDP works now. | |
44 | */ | |
45 | ||
7c0f6ba6 | 46 | #include <linux/uaccess.h> |
1da177e4 LT |
47 | #include <linux/module.h> |
48 | #include <linux/types.h> | |
49 | #include <linux/kernel.h> | |
1da177e4 LT |
50 | #include <linux/mm.h> |
51 | #include <linux/string.h> | |
52 | #include <linux/errno.h> | |
a1f8e7f7 | 53 | #include <linux/highmem.h> |
5a0e3ad6 | 54 | #include <linux/slab.h> |
1da177e4 LT |
55 | |
56 | #include <linux/socket.h> | |
57 | #include <linux/sockios.h> | |
58 | #include <linux/in.h> | |
59 | #include <linux/inet.h> | |
60 | #include <linux/netdevice.h> | |
61 | #include <linux/etherdevice.h> | |
62 | #include <linux/proc_fs.h> | |
63 | #include <linux/stat.h> | |
64 | #include <linux/init.h> | |
65 | ||
66 | #include <net/snmp.h> | |
67 | #include <net/ip.h> | |
68 | #include <net/protocol.h> | |
69 | #include <net/route.h> | |
cfacb057 | 70 | #include <net/xfrm.h> |
1da177e4 LT |
71 | #include <linux/skbuff.h> |
72 | #include <net/sock.h> | |
73 | #include <net/arp.h> | |
74 | #include <net/icmp.h> | |
1da177e4 LT |
75 | #include <net/checksum.h> |
76 | #include <net/inetpeer.h> | |
ba9e04a7 | 77 | #include <net/inet_ecn.h> |
14972cbd | 78 | #include <net/lwtunnel.h> |
33b48679 | 79 | #include <linux/bpf-cgroup.h> |
1da177e4 LT |
80 | #include <linux/igmp.h> |
81 | #include <linux/netfilter_ipv4.h> | |
82 | #include <linux/netfilter_bridge.h> | |
1da177e4 | 83 | #include <linux/netlink.h> |
6cbb0df7 | 84 | #include <linux/tcp.h> |
1da177e4 | 85 | |
694869b3 EB |
86 | static int |
87 | ip_fragment(struct net *net, struct sock *sk, struct sk_buff *skb, | |
88 | unsigned int mtu, | |
89 | int (*output)(struct net *, struct sock *, struct sk_buff *)); | |
49d16b23 | 90 | |
1da177e4 | 91 | /* Generate a checksum for an outgoing IP datagram. */ |
2fbd9679 | 92 | void ip_send_check(struct iphdr *iph) |
1da177e4 LT |
93 | { |
94 | iph->check = 0; | |
95 | iph->check = ip_fast_csum((unsigned char *)iph, iph->ihl); | |
96 | } | |
4bc2f18b | 97 | EXPORT_SYMBOL(ip_send_check); |
1da177e4 | 98 | |
cf91a99d | 99 | int __ip_local_out(struct net *net, struct sock *sk, struct sk_buff *skb) |
c439cb2e HX |
100 | { |
101 | struct iphdr *iph = ip_hdr(skb); | |
102 | ||
103 | iph->tot_len = htons(skb->len); | |
104 | ip_send_check(iph); | |
a8e3e1a9 DA |
105 | |
106 | /* if egress device is enslaved to an L3 master device pass the | |
107 | * skb to its handler for processing | |
108 | */ | |
109 | skb = l3mdev_ip_out(sk, skb); | |
110 | if (unlikely(!skb)) | |
111 | return 0; | |
112 | ||
f4180439 EC |
113 | skb->protocol = htons(ETH_P_IP); |
114 | ||
29a26a56 EB |
115 | return nf_hook(NFPROTO_IPV4, NF_INET_LOCAL_OUT, |
116 | net, sk, skb, NULL, skb_dst(skb)->dev, | |
13206b6b | 117 | dst_output); |
7026b1dd DM |
118 | } |
119 | ||
33224b16 | 120 | int ip_local_out(struct net *net, struct sock *sk, struct sk_buff *skb) |
c439cb2e HX |
121 | { |
122 | int err; | |
123 | ||
cf91a99d | 124 | err = __ip_local_out(net, sk, skb); |
c439cb2e | 125 | if (likely(err == 1)) |
13206b6b | 126 | err = dst_output(net, sk, skb); |
c439cb2e HX |
127 | |
128 | return err; | |
129 | } | |
e2cb77db | 130 | EXPORT_SYMBOL_GPL(ip_local_out); |
c439cb2e | 131 | |
1da177e4 LT |
132 | static inline int ip_select_ttl(struct inet_sock *inet, struct dst_entry *dst) |
133 | { | |
134 | int ttl = inet->uc_ttl; | |
135 | ||
136 | if (ttl < 0) | |
323e126f | 137 | ttl = ip4_dst_hoplimit(dst); |
1da177e4 LT |
138 | return ttl; |
139 | } | |
140 | ||
e905a9ed | 141 | /* |
1da177e4 LT |
142 | * Add an ip header to a skbuff and send it out. |
143 | * | |
144 | */ | |
cfe673b0 | 145 | int ip_build_and_send_pkt(struct sk_buff *skb, const struct sock *sk, |
de033b7d WW |
146 | __be32 saddr, __be32 daddr, struct ip_options_rcu *opt, |
147 | u8 tos) | |
1da177e4 LT |
148 | { |
149 | struct inet_sock *inet = inet_sk(sk); | |
511c3f92 | 150 | struct rtable *rt = skb_rtable(skb); |
77589ce0 | 151 | struct net *net = sock_net(sk); |
1da177e4 LT |
152 | struct iphdr *iph; |
153 | ||
154 | /* Build the IP header. */ | |
f6d8bd05 | 155 | skb_push(skb, sizeof(struct iphdr) + (opt ? opt->opt.optlen : 0)); |
8856dfa3 | 156 | skb_reset_network_header(skb); |
eddc9ec5 | 157 | iph = ip_hdr(skb); |
1da177e4 LT |
158 | iph->version = 4; |
159 | iph->ihl = 5; | |
de033b7d | 160 | iph->tos = tos; |
d8d1f30b | 161 | iph->ttl = ip_select_ttl(inet, &rt->dst); |
dd927a26 DM |
162 | iph->daddr = (opt && opt->opt.srr ? opt->opt.faddr : daddr); |
163 | iph->saddr = saddr; | |
1da177e4 | 164 | iph->protocol = sk->sk_protocol; |
970a5a3e ED |
165 | /* Do not bother generating IPID for small packets (eg SYNACK) */ |
166 | if (skb->len <= IPV4_MIN_MTU || ip_dont_fragment(sk, &rt->dst)) { | |
cfe673b0 ED |
167 | iph->frag_off = htons(IP_DF); |
168 | iph->id = 0; | |
169 | } else { | |
170 | iph->frag_off = 0; | |
970a5a3e ED |
171 | /* TCP packets here are SYNACK with fat IPv4/TCP options. |
172 | * Avoid using the hashed IP ident generator. | |
173 | */ | |
174 | if (sk->sk_protocol == IPPROTO_TCP) | |
175 | iph->id = (__force __be16)prandom_u32(); | |
176 | else | |
177 | __ip_select_ident(net, iph, 1); | |
cfe673b0 | 178 | } |
1da177e4 | 179 | |
f6d8bd05 ED |
180 | if (opt && opt->opt.optlen) { |
181 | iph->ihl += opt->opt.optlen>>2; | |
4f0e3040 | 182 | ip_options_build(skb, &opt->opt, daddr, rt); |
1da177e4 | 183 | } |
1da177e4 LT |
184 | |
185 | skb->priority = sk->sk_priority; | |
e05a90ec JHS |
186 | if (!skb->mark) |
187 | skb->mark = sk->sk_mark; | |
1da177e4 LT |
188 | |
189 | /* Send it out. */ | |
33224b16 | 190 | return ip_local_out(net, skb->sk, skb); |
1da177e4 | 191 | } |
d8c97a94 ACM |
192 | EXPORT_SYMBOL_GPL(ip_build_and_send_pkt); |
193 | ||
694869b3 | 194 | static int ip_finish_output2(struct net *net, struct sock *sk, struct sk_buff *skb) |
1da177e4 | 195 | { |
adf30907 | 196 | struct dst_entry *dst = skb_dst(skb); |
80787ebc | 197 | struct rtable *rt = (struct rtable *)dst; |
1da177e4 | 198 | struct net_device *dev = dst->dev; |
c2636b4d | 199 | unsigned int hh_len = LL_RESERVED_SPACE(dev); |
f6b72b62 | 200 | struct neighbour *neigh; |
5c9f7c1d | 201 | bool is_v6gw = false; |
1da177e4 | 202 | |
edf391ff | 203 | if (rt->rt_type == RTN_MULTICAST) { |
4ba1bf42 | 204 | IP_UPD_PO_STATS(net, IPSTATS_MIB_OUTMCAST, skb->len); |
edf391ff | 205 | } else if (rt->rt_type == RTN_BROADCAST) |
4ba1bf42 | 206 | IP_UPD_PO_STATS(net, IPSTATS_MIB_OUTBCAST, skb->len); |
80787ebc | 207 | |
3b04ddde | 208 | if (unlikely(skb_headroom(skb) < hh_len && dev->header_ops)) { |
5678a595 VA |
209 | skb = skb_expand_head(skb, hh_len); |
210 | if (!skb) | |
1da177e4 | 211 | return -ENOMEM; |
1da177e4 LT |
212 | } |
213 | ||
14972cbd RP |
214 | if (lwtunnel_xmit_redirect(dst->lwtstate)) { |
215 | int res = lwtunnel_xmit(skb); | |
216 | ||
217 | if (res < 0 || res == LWTUNNEL_XMIT_DONE) | |
218 | return res; | |
219 | } | |
220 | ||
a263b309 | 221 | rcu_read_lock_bh(); |
5c9f7c1d | 222 | neigh = ip_neigh_for_gw(rt, skb, &is_v6gw); |
9871f1ad | 223 | if (!IS_ERR(neigh)) { |
4ff06203 JA |
224 | int res; |
225 | ||
226 | sock_confirm_neigh(skb, neigh); | |
5c9f7c1d DA |
227 | /* if crossing protocols, can not use the cached header */ |
228 | res = neigh_output(neigh, skb, is_v6gw); | |
a263b309 | 229 | rcu_read_unlock_bh(); |
f2c31e32 ED |
230 | return res; |
231 | } | |
a263b309 | 232 | rcu_read_unlock_bh(); |
05e3aa09 | 233 | |
e87cc472 JP |
234 | net_dbg_ratelimited("%s: No header cache and no neighbour!\n", |
235 | __func__); | |
5e187189 | 236 | kfree_skb_reason(skb, SKB_DROP_REASON_NEIGH_CREATEFAIL); |
1da177e4 LT |
237 | return -EINVAL; |
238 | } | |
239 | ||
694869b3 EB |
240 | static int ip_finish_output_gso(struct net *net, struct sock *sk, |
241 | struct sk_buff *skb, unsigned int mtu) | |
c7ba65d7 | 242 | { |
88bebdf5 | 243 | struct sk_buff *segs, *nskb; |
c7ba65d7 | 244 | netdev_features_t features; |
c7ba65d7 FW |
245 | int ret = 0; |
246 | ||
9ee6c5dc | 247 | /* common case: seglen is <= mtu |
359ebda2 | 248 | */ |
779b7931 | 249 | if (skb_gso_validate_network_len(skb, mtu)) |
694869b3 | 250 | return ip_finish_output2(net, sk, skb); |
c7ba65d7 | 251 | |
0ace81ec | 252 | /* Slowpath - GSO segment length exceeds the egress MTU. |
c7ba65d7 | 253 | * |
0ace81ec LR |
254 | * This can happen in several cases: |
255 | * - Forwarding of a TCP GRO skb, when DF flag is not set. | |
256 | * - Forwarding of an skb that arrived on a virtualization interface | |
257 | * (virtio-net/vhost/tap) with TSO/GSO size set by other network | |
258 | * stack. | |
259 | * - Local GSO skb transmitted on an NETIF_F_TSO tunnel stacked over an | |
260 | * interface with a smaller MTU. | |
261 | * - Arriving GRO skb (or GSO skb in a virtualized environment) that is | |
262 | * bridged to a NETIF_F_TSO tunnel stacked over an interface with an | |
a66e04ce | 263 | * insufficient MTU. |
c7ba65d7 FW |
264 | */ |
265 | features = netif_skb_features(skb); | |
a08e7fd9 | 266 | BUILD_BUG_ON(sizeof(*IPCB(skb)) > SKB_GSO_CB_OFFSET); |
c7ba65d7 | 267 | segs = skb_gso_segment(skb, features & ~NETIF_F_GSO_MASK); |
330966e5 | 268 | if (IS_ERR_OR_NULL(segs)) { |
c7ba65d7 FW |
269 | kfree_skb(skb); |
270 | return -ENOMEM; | |
271 | } | |
272 | ||
273 | consume_skb(skb); | |
274 | ||
88bebdf5 | 275 | skb_list_walk_safe(segs, segs, nskb) { |
c7ba65d7 FW |
276 | int err; |
277 | ||
a8305bff | 278 | skb_mark_not_on_list(segs); |
694869b3 | 279 | err = ip_fragment(net, sk, segs, mtu, ip_finish_output2); |
c7ba65d7 FW |
280 | |
281 | if (err && ret == 0) | |
282 | ret = err; | |
88bebdf5 | 283 | } |
c7ba65d7 FW |
284 | |
285 | return ret; | |
286 | } | |
287 | ||
956fe219 | 288 | static int __ip_finish_output(struct net *net, struct sock *sk, struct sk_buff *skb) |
1da177e4 | 289 | { |
c5501eb3 FW |
290 | unsigned int mtu; |
291 | ||
5c901daa PM |
292 | #if defined(CONFIG_NETFILTER) && defined(CONFIG_XFRM) |
293 | /* Policy lookup after SNAT yielded a new policy */ | |
00db4124 | 294 | if (skb_dst(skb)->xfrm) { |
48d5cad8 | 295 | IPCB(skb)->flags |= IPSKB_REROUTED; |
13206b6b | 296 | return dst_output(net, sk, skb); |
48d5cad8 | 297 | } |
5c901daa | 298 | #endif |
fedbb6b4 | 299 | mtu = ip_skb_dst_mtu(sk, skb); |
c7ba65d7 | 300 | if (skb_is_gso(skb)) |
694869b3 | 301 | return ip_finish_output_gso(net, sk, skb, mtu); |
c7ba65d7 | 302 | |
bb4cc1a1 | 303 | if (skb->len > mtu || IPCB(skb)->frag_max_size) |
694869b3 | 304 | return ip_fragment(net, sk, skb, mtu, ip_finish_output2); |
c7ba65d7 | 305 | |
694869b3 | 306 | return ip_finish_output2(net, sk, skb); |
1da177e4 LT |
307 | } |
308 | ||
956fe219 | 309 | static int ip_finish_output(struct net *net, struct sock *sk, struct sk_buff *skb) |
310 | { | |
311 | int ret; | |
312 | ||
313 | ret = BPF_CGROUP_RUN_PROG_INET_EGRESS(sk, skb); | |
314 | switch (ret) { | |
315 | case NET_XMIT_SUCCESS: | |
316 | return __ip_finish_output(net, sk, skb); | |
317 | case NET_XMIT_CN: | |
318 | return __ip_finish_output(net, sk, skb) ? : ret; | |
319 | default: | |
5e187189 | 320 | kfree_skb_reason(skb, SKB_DROP_REASON_BPF_CGROUP_EGRESS); |
956fe219 | 321 | return ret; |
322 | } | |
323 | } | |
324 | ||
33b48679 DM |
325 | static int ip_mc_finish_output(struct net *net, struct sock *sk, |
326 | struct sk_buff *skb) | |
327 | { | |
5b18f128 | 328 | struct rtable *new_rt; |
d96ff269 DM |
329 | bool do_cn = false; |
330 | int ret, err; | |
33b48679 DM |
331 | |
332 | ret = BPF_CGROUP_RUN_PROG_INET_EGRESS(sk, skb); | |
956fe219 | 333 | switch (ret) { |
956fe219 | 334 | case NET_XMIT_CN: |
d96ff269 | 335 | do_cn = true; |
a8eceea8 | 336 | fallthrough; |
d96ff269 DM |
337 | case NET_XMIT_SUCCESS: |
338 | break; | |
956fe219 | 339 | default: |
5e187189 | 340 | kfree_skb_reason(skb, SKB_DROP_REASON_BPF_CGROUP_EGRESS); |
33b48679 DM |
341 | return ret; |
342 | } | |
343 | ||
5b18f128 SS |
344 | /* Reset rt_iif so that inet_iif() will return skb->skb_iif. Setting |
345 | * this to non-zero causes ipi_ifindex in in_pktinfo to be overwritten, | |
346 | * see ipv4_pktinfo_prepare(). | |
347 | */ | |
348 | new_rt = rt_dst_clone(net->loopback_dev, skb_rtable(skb)); | |
349 | if (new_rt) { | |
350 | new_rt->rt_iif = 0; | |
351 | skb_dst_drop(skb); | |
352 | skb_dst_set(skb, &new_rt->dst); | |
353 | } | |
354 | ||
d96ff269 DM |
355 | err = dev_loopback_xmit(net, sk, skb); |
356 | return (do_cn && err) ? ret : err; | |
33b48679 DM |
357 | } |
358 | ||
ede2059d | 359 | int ip_mc_output(struct net *net, struct sock *sk, struct sk_buff *skb) |
1da177e4 | 360 | { |
511c3f92 | 361 | struct rtable *rt = skb_rtable(skb); |
d8d1f30b | 362 | struct net_device *dev = rt->dst.dev; |
1da177e4 LT |
363 | |
364 | /* | |
365 | * If the indicated interface is up and running, send the packet. | |
366 | */ | |
88f5cc24 | 367 | IP_UPD_PO_STATS(net, IPSTATS_MIB_OUT, skb->len); |
1da177e4 LT |
368 | |
369 | skb->dev = dev; | |
370 | skb->protocol = htons(ETH_P_IP); | |
371 | ||
372 | /* | |
373 | * Multicasts are looped back for other local users | |
374 | */ | |
375 | ||
376 | if (rt->rt_flags&RTCF_MULTICAST) { | |
7ad6848c | 377 | if (sk_mc_loop(sk) |
1da177e4 LT |
378 | #ifdef CONFIG_IP_MROUTE |
379 | /* Small optimization: do not loopback not local frames, | |
380 | which returned after forwarding; they will be dropped | |
381 | by ip_mr_input in any case. | |
382 | Note, that local frames are looped back to be delivered | |
383 | to local recipients. | |
384 | ||
385 | This check is duplicated in ip_mr_input at the moment. | |
386 | */ | |
9d4fb27d JP |
387 | && |
388 | ((rt->rt_flags & RTCF_LOCAL) || | |
389 | !(IPCB(skb)->flags & IPSKB_FORWARDED)) | |
1da177e4 | 390 | #endif |
9d4fb27d | 391 | ) { |
1da177e4 LT |
392 | struct sk_buff *newskb = skb_clone(skb, GFP_ATOMIC); |
393 | if (newskb) | |
9bbc768a | 394 | NF_HOOK(NFPROTO_IPV4, NF_INET_POST_ROUTING, |
29a26a56 | 395 | net, sk, newskb, NULL, newskb->dev, |
33b48679 | 396 | ip_mc_finish_output); |
1da177e4 LT |
397 | } |
398 | ||
399 | /* Multicasts with ttl 0 must not go beyond the host */ | |
400 | ||
eddc9ec5 | 401 | if (ip_hdr(skb)->ttl == 0) { |
1da177e4 LT |
402 | kfree_skb(skb); |
403 | return 0; | |
404 | } | |
405 | } | |
406 | ||
407 | if (rt->rt_flags&RTCF_BROADCAST) { | |
408 | struct sk_buff *newskb = skb_clone(skb, GFP_ATOMIC); | |
409 | if (newskb) | |
29a26a56 EB |
410 | NF_HOOK(NFPROTO_IPV4, NF_INET_POST_ROUTING, |
411 | net, sk, newskb, NULL, newskb->dev, | |
33b48679 | 412 | ip_mc_finish_output); |
1da177e4 LT |
413 | } |
414 | ||
29a26a56 EB |
415 | return NF_HOOK_COND(NFPROTO_IPV4, NF_INET_POST_ROUTING, |
416 | net, sk, skb, NULL, skb->dev, | |
417 | ip_finish_output, | |
48d5cad8 | 418 | !(IPCB(skb)->flags & IPSKB_REROUTED)); |
1da177e4 LT |
419 | } |
420 | ||
ede2059d | 421 | int ip_output(struct net *net, struct sock *sk, struct sk_buff *skb) |
1da177e4 | 422 | { |
28f8bfd1 | 423 | struct net_device *dev = skb_dst(skb)->dev, *indev = skb->dev; |
1bd9bef6 | 424 | |
88f5cc24 | 425 | IP_UPD_PO_STATS(net, IPSTATS_MIB_OUT, skb->len); |
1da177e4 | 426 | |
1bd9bef6 PM |
427 | skb->dev = dev; |
428 | skb->protocol = htons(ETH_P_IP); | |
429 | ||
29a26a56 | 430 | return NF_HOOK_COND(NFPROTO_IPV4, NF_INET_POST_ROUTING, |
28f8bfd1 | 431 | net, sk, skb, indev, dev, |
e905a9ed | 432 | ip_finish_output, |
48d5cad8 | 433 | !(IPCB(skb)->flags & IPSKB_REROUTED)); |
1da177e4 | 434 | } |
6585d7dc | 435 | EXPORT_SYMBOL(ip_output); |
1da177e4 | 436 | |
84f9307c ED |
437 | /* |
438 | * copy saddr and daddr, possibly using 64bit load/stores | |
439 | * Equivalent to : | |
440 | * iph->saddr = fl4->saddr; | |
441 | * iph->daddr = fl4->daddr; | |
442 | */ | |
443 | static void ip_copy_addrs(struct iphdr *iph, const struct flowi4 *fl4) | |
444 | { | |
445 | BUILD_BUG_ON(offsetof(typeof(*fl4), daddr) != | |
446 | offsetof(typeof(*fl4), saddr) + sizeof(fl4->saddr)); | |
6321c7ac GS |
447 | |
448 | iph->saddr = fl4->saddr; | |
449 | iph->daddr = fl4->daddr; | |
84f9307c ED |
450 | } |
451 | ||
b0270e91 | 452 | /* Note: skb->sk can be different from sk, in case of tunnels */ |
69b9e1e0 XL |
453 | int __ip_queue_xmit(struct sock *sk, struct sk_buff *skb, struct flowi *fl, |
454 | __u8 tos) | |
1da177e4 | 455 | { |
1da177e4 | 456 | struct inet_sock *inet = inet_sk(sk); |
77589ce0 | 457 | struct net *net = sock_net(sk); |
f6d8bd05 | 458 | struct ip_options_rcu *inet_opt; |
b57ae01a | 459 | struct flowi4 *fl4; |
1da177e4 LT |
460 | struct rtable *rt; |
461 | struct iphdr *iph; | |
ab6e3feb | 462 | int res; |
1da177e4 LT |
463 | |
464 | /* Skip all of this if the packet is already routed, | |
465 | * f.e. by something like SCTP. | |
466 | */ | |
ab6e3feb | 467 | rcu_read_lock(); |
f6d8bd05 | 468 | inet_opt = rcu_dereference(inet->inet_opt); |
ea4fc0d6 | 469 | fl4 = &fl->u.ip4; |
511c3f92 | 470 | rt = skb_rtable(skb); |
00db4124 | 471 | if (rt) |
1da177e4 LT |
472 | goto packet_routed; |
473 | ||
474 | /* Make sure we can route this packet. */ | |
475 | rt = (struct rtable *)__sk_dst_check(sk, 0); | |
51456b29 | 476 | if (!rt) { |
3ca3c68e | 477 | __be32 daddr; |
1da177e4 LT |
478 | |
479 | /* Use correct destination address if we have options. */ | |
c720c7e8 | 480 | daddr = inet->inet_daddr; |
f6d8bd05 ED |
481 | if (inet_opt && inet_opt->opt.srr) |
482 | daddr = inet_opt->opt.faddr; | |
1da177e4 | 483 | |
78fbfd8a DM |
484 | /* If this fails, retransmit mechanism of transport layer will |
485 | * keep trying until route appears or the connection times | |
486 | * itself out. | |
487 | */ | |
77589ce0 | 488 | rt = ip_route_output_ports(net, fl4, sk, |
78fbfd8a DM |
489 | daddr, inet->inet_saddr, |
490 | inet->inet_dport, | |
491 | inet->inet_sport, | |
492 | sk->sk_protocol, | |
69b9e1e0 | 493 | RT_CONN_FLAGS_TOS(sk, tos), |
78fbfd8a DM |
494 | sk->sk_bound_dev_if); |
495 | if (IS_ERR(rt)) | |
496 | goto no_route; | |
d8d1f30b | 497 | sk_setup_caps(sk, &rt->dst); |
1da177e4 | 498 | } |
d8d1f30b | 499 | skb_dst_set_noref(skb, &rt->dst); |
1da177e4 LT |
500 | |
501 | packet_routed: | |
77d5bc7e | 502 | if (inet_opt && inet_opt->opt.is_strictroute && rt->rt_uses_gateway) |
1da177e4 LT |
503 | goto no_route; |
504 | ||
505 | /* OK, we know where to send it, allocate and build IP header. */ | |
f6d8bd05 | 506 | skb_push(skb, sizeof(struct iphdr) + (inet_opt ? inet_opt->opt.optlen : 0)); |
8856dfa3 | 507 | skb_reset_network_header(skb); |
eddc9ec5 | 508 | iph = ip_hdr(skb); |
69b9e1e0 | 509 | *((__be16 *)iph) = htons((4 << 12) | (5 << 8) | (tos & 0xff)); |
60ff7467 | 510 | if (ip_dont_fragment(sk, &rt->dst) && !skb->ignore_df) |
1da177e4 LT |
511 | iph->frag_off = htons(IP_DF); |
512 | else | |
513 | iph->frag_off = 0; | |
d8d1f30b | 514 | iph->ttl = ip_select_ttl(inet, &rt->dst); |
1da177e4 | 515 | iph->protocol = sk->sk_protocol; |
84f9307c ED |
516 | ip_copy_addrs(iph, fl4); |
517 | ||
1da177e4 LT |
518 | /* Transport layer set skb->h.foo itself. */ |
519 | ||
f6d8bd05 ED |
520 | if (inet_opt && inet_opt->opt.optlen) { |
521 | iph->ihl += inet_opt->opt.optlen >> 2; | |
4f0e3040 | 522 | ip_options_build(skb, &inet_opt->opt, inet->inet_daddr, rt); |
1da177e4 LT |
523 | } |
524 | ||
77589ce0 | 525 | ip_select_ident_segs(net, skb, sk, |
b6a7719a | 526 | skb_shinfo(skb)->gso_segs ?: 1); |
1da177e4 | 527 | |
b0270e91 | 528 | /* TODO : should we use skb->sk here instead of sk ? */ |
1da177e4 | 529 | skb->priority = sk->sk_priority; |
4a19ec58 | 530 | skb->mark = sk->sk_mark; |
1da177e4 | 531 | |
33224b16 | 532 | res = ip_local_out(net, sk, skb); |
ab6e3feb ED |
533 | rcu_read_unlock(); |
534 | return res; | |
1da177e4 LT |
535 | |
536 | no_route: | |
ab6e3feb | 537 | rcu_read_unlock(); |
77589ce0 | 538 | IP_INC_STATS(net, IPSTATS_MIB_OUTNOROUTES); |
5e187189 | 539 | kfree_skb_reason(skb, SKB_DROP_REASON_IP_OUTNOROUTES); |
1da177e4 LT |
540 | return -EHOSTUNREACH; |
541 | } | |
69b9e1e0 | 542 | EXPORT_SYMBOL(__ip_queue_xmit); |
1da177e4 | 543 | |
05e22e83 ED |
544 | int ip_queue_xmit(struct sock *sk, struct sk_buff *skb, struct flowi *fl) |
545 | { | |
546 | return __ip_queue_xmit(sk, skb, fl, inet_sk(sk)->tos); | |
547 | } | |
548 | EXPORT_SYMBOL(ip_queue_xmit); | |
549 | ||
1da177e4 LT |
550 | static void ip_copy_metadata(struct sk_buff *to, struct sk_buff *from) |
551 | { | |
552 | to->pkt_type = from->pkt_type; | |
553 | to->priority = from->priority; | |
554 | to->protocol = from->protocol; | |
d2f0c961 | 555 | to->skb_iif = from->skb_iif; |
adf30907 | 556 | skb_dst_drop(to); |
fe76cda3 | 557 | skb_dst_copy(to, from); |
1da177e4 | 558 | to->dev = from->dev; |
82e91ffe | 559 | to->mark = from->mark; |
1da177e4 | 560 | |
3dd1c9a1 PA |
561 | skb_copy_hash(to, from); |
562 | ||
1da177e4 LT |
563 | #ifdef CONFIG_NET_SCHED |
564 | to->tc_index = from->tc_index; | |
565 | #endif | |
e7ac05f3 | 566 | nf_copy(to, from); |
df5042f4 | 567 | skb_ext_copy(to, from); |
6ca40d4e | 568 | #if IS_ENABLED(CONFIG_IP_VS) |
c98d80ed | 569 | to->ipvs_property = from->ipvs_property; |
1da177e4 | 570 | #endif |
984bc16c | 571 | skb_copy_secmark(to, from); |
1da177e4 LT |
572 | } |
573 | ||
694869b3 | 574 | static int ip_fragment(struct net *net, struct sock *sk, struct sk_buff *skb, |
c5501eb3 | 575 | unsigned int mtu, |
694869b3 | 576 | int (*output)(struct net *, struct sock *, struct sk_buff *)) |
49d16b23 AZ |
577 | { |
578 | struct iphdr *iph = ip_hdr(skb); | |
49d16b23 | 579 | |
d6b915e2 | 580 | if ((iph->frag_off & htons(IP_DF)) == 0) |
694869b3 | 581 | return ip_do_fragment(net, sk, skb, output); |
d6b915e2 FW |
582 | |
583 | if (unlikely(!skb->ignore_df || | |
49d16b23 AZ |
584 | (IPCB(skb)->frag_max_size && |
585 | IPCB(skb)->frag_max_size > mtu))) { | |
9479b0af | 586 | IP_INC_STATS(net, IPSTATS_MIB_FRAGFAILS); |
49d16b23 AZ |
587 | icmp_send(skb, ICMP_DEST_UNREACH, ICMP_FRAG_NEEDED, |
588 | htonl(mtu)); | |
589 | kfree_skb(skb); | |
590 | return -EMSGSIZE; | |
591 | } | |
592 | ||
694869b3 | 593 | return ip_do_fragment(net, sk, skb, output); |
49d16b23 AZ |
594 | } |
595 | ||
c8b17be0 PNA |
596 | void ip_fraglist_init(struct sk_buff *skb, struct iphdr *iph, |
597 | unsigned int hlen, struct ip_fraglist_iter *iter) | |
598 | { | |
599 | unsigned int first_len = skb_pagelen(skb); | |
600 | ||
b7034146 | 601 | iter->frag = skb_shinfo(skb)->frag_list; |
c8b17be0 PNA |
602 | skb_frag_list_init(skb); |
603 | ||
604 | iter->offset = 0; | |
605 | iter->iph = iph; | |
606 | iter->hlen = hlen; | |
607 | ||
608 | skb->data_len = first_len - skb_headlen(skb); | |
609 | skb->len = first_len; | |
610 | iph->tot_len = htons(first_len); | |
611 | iph->frag_off = htons(IP_MF); | |
612 | ip_send_check(iph); | |
613 | } | |
614 | EXPORT_SYMBOL(ip_fraglist_init); | |
615 | ||
616 | void ip_fraglist_prepare(struct sk_buff *skb, struct ip_fraglist_iter *iter) | |
617 | { | |
618 | unsigned int hlen = iter->hlen; | |
619 | struct iphdr *iph = iter->iph; | |
620 | struct sk_buff *frag; | |
621 | ||
622 | frag = iter->frag; | |
623 | frag->ip_summed = CHECKSUM_NONE; | |
624 | skb_reset_transport_header(frag); | |
625 | __skb_push(frag, hlen); | |
626 | skb_reset_network_header(frag); | |
627 | memcpy(skb_network_header(frag), iph, hlen); | |
628 | iter->iph = ip_hdr(frag); | |
629 | iph = iter->iph; | |
630 | iph->tot_len = htons(frag->len); | |
631 | ip_copy_metadata(frag, skb); | |
c8b17be0 PNA |
632 | iter->offset += skb->len - hlen; |
633 | iph->frag_off = htons(iter->offset >> 3); | |
634 | if (frag->next) | |
635 | iph->frag_off |= htons(IP_MF); | |
636 | /* Ready, complete checksum */ | |
637 | ip_send_check(iph); | |
638 | } | |
639 | EXPORT_SYMBOL(ip_fraglist_prepare); | |
640 | ||
065ff79f | 641 | void ip_frag_init(struct sk_buff *skb, unsigned int hlen, |
e7a409c3 | 642 | unsigned int ll_rs, unsigned int mtu, bool DF, |
065ff79f PNA |
643 | struct ip_frag_state *state) |
644 | { | |
645 | struct iphdr *iph = ip_hdr(skb); | |
646 | ||
e7a409c3 | 647 | state->DF = DF; |
065ff79f PNA |
648 | state->hlen = hlen; |
649 | state->ll_rs = ll_rs; | |
650 | state->mtu = mtu; | |
651 | ||
652 | state->left = skb->len - hlen; /* Space per frame */ | |
653 | state->ptr = hlen; /* Where to start from */ | |
654 | ||
655 | state->offset = (ntohs(iph->frag_off) & IP_OFFSET) << 3; | |
656 | state->not_last_frag = iph->frag_off & htons(IP_MF); | |
657 | } | |
658 | EXPORT_SYMBOL(ip_frag_init); | |
659 | ||
19c3401a | 660 | static void ip_frag_ipcb(struct sk_buff *from, struct sk_buff *to, |
faf482ca | 661 | bool first_frag) |
19c3401a PNA |
662 | { |
663 | /* Copy the flags to each fragment. */ | |
664 | IPCB(to)->flags = IPCB(from)->flags; | |
665 | ||
19c3401a PNA |
666 | /* ANK: dirty, but effective trick. Upgrade options only if |
667 | * the segment to be fragmented was THE FIRST (otherwise, | |
668 | * options are already fixed) and make it ONCE | |
669 | * on the initial skb, so that all the following fragments | |
670 | * will inherit fixed options. | |
671 | */ | |
672 | if (first_frag) | |
673 | ip_options_fragment(from); | |
674 | } | |
675 | ||
065ff79f PNA |
676 | struct sk_buff *ip_frag_next(struct sk_buff *skb, struct ip_frag_state *state) |
677 | { | |
678 | unsigned int len = state->left; | |
679 | struct sk_buff *skb2; | |
680 | struct iphdr *iph; | |
681 | ||
065ff79f PNA |
682 | /* IF: it doesn't fit, use 'mtu' - the data space left */ |
683 | if (len > state->mtu) | |
684 | len = state->mtu; | |
685 | /* IF: we are not sending up to and including the packet end | |
686 | then align the next start on an eight byte boundary */ | |
687 | if (len < state->left) { | |
688 | len &= ~7; | |
689 | } | |
690 | ||
691 | /* Allocate buffer */ | |
692 | skb2 = alloc_skb(len + state->hlen + state->ll_rs, GFP_ATOMIC); | |
693 | if (!skb2) | |
694 | return ERR_PTR(-ENOMEM); | |
695 | ||
696 | /* | |
697 | * Set up data on packet | |
698 | */ | |
699 | ||
700 | ip_copy_metadata(skb2, skb); | |
701 | skb_reserve(skb2, state->ll_rs); | |
702 | skb_put(skb2, len + state->hlen); | |
703 | skb_reset_network_header(skb2); | |
704 | skb2->transport_header = skb2->network_header + state->hlen; | |
705 | ||
706 | /* | |
707 | * Charge the memory for the fragment to any owner | |
708 | * it might possess | |
709 | */ | |
710 | ||
711 | if (skb->sk) | |
712 | skb_set_owner_w(skb2, skb->sk); | |
713 | ||
714 | /* | |
715 | * Copy the packet header into the new buffer. | |
716 | */ | |
717 | ||
718 | skb_copy_from_linear_data(skb, skb_network_header(skb2), state->hlen); | |
719 | ||
720 | /* | |
721 | * Copy a block of the IP datagram. | |
722 | */ | |
723 | if (skb_copy_bits(skb, state->ptr, skb_transport_header(skb2), len)) | |
724 | BUG(); | |
725 | state->left -= len; | |
726 | ||
727 | /* | |
728 | * Fill in the new header fields. | |
729 | */ | |
730 | iph = ip_hdr(skb2); | |
731 | iph->frag_off = htons((state->offset >> 3)); | |
e7a409c3 ED |
732 | if (state->DF) |
733 | iph->frag_off |= htons(IP_DF); | |
065ff79f | 734 | |
065ff79f PNA |
735 | /* |
736 | * Added AC : If we are fragmenting a fragment that's not the | |
737 | * last fragment then keep MF on each bit | |
738 | */ | |
739 | if (state->left > 0 || state->not_last_frag) | |
740 | iph->frag_off |= htons(IP_MF); | |
741 | state->ptr += len; | |
742 | state->offset += len; | |
743 | ||
744 | iph->tot_len = htons(len + state->hlen); | |
745 | ||
746 | ip_send_check(iph); | |
747 | ||
748 | return skb2; | |
749 | } | |
750 | EXPORT_SYMBOL(ip_frag_next); | |
751 | ||
1da177e4 LT |
752 | /* |
753 | * This IP datagram is too large to be sent in one piece. Break it up into | |
754 | * smaller pieces (each of size equal to IP header plus | |
755 | * a block of the data of the original IP data part) that will yet fit in a | |
756 | * single device frame, and queue such a frame for sending. | |
757 | */ | |
758 | ||
694869b3 EB |
759 | int ip_do_fragment(struct net *net, struct sock *sk, struct sk_buff *skb, |
760 | int (*output)(struct net *, struct sock *, struct sk_buff *)) | |
1da177e4 LT |
761 | { |
762 | struct iphdr *iph; | |
1da177e4 | 763 | struct sk_buff *skb2; |
a1ac9c8a | 764 | bool mono_delivery_time = skb->mono_delivery_time; |
511c3f92 | 765 | struct rtable *rt = skb_rtable(skb); |
065ff79f | 766 | unsigned int mtu, hlen, ll_rs; |
c8b17be0 | 767 | struct ip_fraglist_iter iter; |
9669fffc | 768 | ktime_t tstamp = skb->tstamp; |
065ff79f | 769 | struct ip_frag_state state; |
1da177e4 LT |
770 | int err = 0; |
771 | ||
dbd3393c HFS |
772 | /* for offloaded checksums cleanup checksum before fragmentation */ |
773 | if (skb->ip_summed == CHECKSUM_PARTIAL && | |
774 | (err = skb_checksum_help(skb))) | |
775 | goto fail; | |
776 | ||
1da177e4 LT |
777 | /* |
778 | * Point into the IP datagram header. | |
779 | */ | |
780 | ||
eddc9ec5 | 781 | iph = ip_hdr(skb); |
1da177e4 | 782 | |
fedbb6b4 | 783 | mtu = ip_skb_dst_mtu(sk, skb); |
d6b915e2 FW |
784 | if (IPCB(skb)->frag_max_size && IPCB(skb)->frag_max_size < mtu) |
785 | mtu = IPCB(skb)->frag_max_size; | |
1da177e4 LT |
786 | |
787 | /* | |
788 | * Setup starting values. | |
789 | */ | |
790 | ||
791 | hlen = iph->ihl * 4; | |
f87c10a8 | 792 | mtu = mtu - hlen; /* Size of data space */ |
89cee8b1 | 793 | IPCB(skb)->flags |= IPSKB_FRAG_COMPLETE; |
254d900b | 794 | ll_rs = LL_RESERVED_SPACE(rt->dst.dev); |
1da177e4 LT |
795 | |
796 | /* When frag_list is given, use it. First, check its validity: | |
797 | * some transformers could create wrong frag_list or break existing | |
798 | * one, it is not prohibited. In this case fall back to copying. | |
799 | * | |
800 | * LATER: this step can be merged to real generation of fragments, | |
801 | * we can switch to copy when see the first bad fragment. | |
802 | */ | |
21dc3301 | 803 | if (skb_has_frag_list(skb)) { |
3d13008e | 804 | struct sk_buff *frag, *frag2; |
c72d8cda | 805 | unsigned int first_len = skb_pagelen(skb); |
1da177e4 LT |
806 | |
807 | if (first_len - hlen > mtu || | |
808 | ((first_len - hlen) & 7) || | |
56f8a75c | 809 | ip_is_fragment(iph) || |
254d900b VA |
810 | skb_cloned(skb) || |
811 | skb_headroom(skb) < ll_rs) | |
1da177e4 LT |
812 | goto slow_path; |
813 | ||
d7fcf1a5 | 814 | skb_walk_frags(skb, frag) { |
1da177e4 LT |
815 | /* Correct geometry. */ |
816 | if (frag->len > mtu || | |
817 | ((frag->len & 7) && frag->next) || | |
254d900b | 818 | skb_headroom(frag) < hlen + ll_rs) |
3d13008e | 819 | goto slow_path_clean; |
1da177e4 LT |
820 | |
821 | /* Partially cloned skb? */ | |
822 | if (skb_shared(frag)) | |
3d13008e | 823 | goto slow_path_clean; |
2fdba6b0 HX |
824 | |
825 | BUG_ON(frag->sk); | |
826 | if (skb->sk) { | |
2fdba6b0 HX |
827 | frag->sk = skb->sk; |
828 | frag->destructor = sock_wfree; | |
2fdba6b0 | 829 | } |
3d13008e | 830 | skb->truesize -= frag->truesize; |
1da177e4 LT |
831 | } |
832 | ||
833 | /* Everything is OK. Generate! */ | |
c8b17be0 | 834 | ip_fraglist_init(skb, iph, hlen, &iter); |
1b9fbe81 | 835 | |
1da177e4 LT |
836 | for (;;) { |
837 | /* Prepare header of the next frame, | |
838 | * before previous one went down. */ | |
19c3401a | 839 | if (iter.frag) { |
27a8caa5 JK |
840 | bool first_frag = (iter.offset == 0); |
841 | ||
faf482ca | 842 | IPCB(iter.frag)->flags = IPCB(skb)->flags; |
c8b17be0 | 843 | ip_fraglist_prepare(skb, &iter); |
27a8caa5 JK |
844 | if (first_frag && IPCB(skb)->opt.optlen) { |
845 | /* ipcb->opt is not populated for frags | |
846 | * coming from __ip_make_skb(), | |
847 | * ip_options_fragment() needs optlen | |
848 | */ | |
849 | IPCB(iter.frag)->opt.optlen = | |
850 | IPCB(skb)->opt.optlen; | |
851 | ip_options_fragment(iter.frag); | |
852 | ip_send_check(iter.iph); | |
853 | } | |
19c3401a | 854 | } |
1da177e4 | 855 | |
a1ac9c8a | 856 | skb_set_delivery_time(skb, tstamp, mono_delivery_time); |
694869b3 | 857 | err = output(net, sk, skb); |
1da177e4 | 858 | |
dafee490 | 859 | if (!err) |
26a949db | 860 | IP_INC_STATS(net, IPSTATS_MIB_FRAGCREATES); |
c8b17be0 | 861 | if (err || !iter.frag) |
1da177e4 LT |
862 | break; |
863 | ||
c8b17be0 | 864 | skb = ip_fraglist_next(&iter); |
1da177e4 LT |
865 | } |
866 | ||
867 | if (err == 0) { | |
26a949db | 868 | IP_INC_STATS(net, IPSTATS_MIB_FRAGOKS); |
1da177e4 LT |
869 | return 0; |
870 | } | |
871 | ||
b7034146 | 872 | kfree_skb_list(iter.frag); |
942f146a | 873 | |
26a949db | 874 | IP_INC_STATS(net, IPSTATS_MIB_FRAGFAILS); |
1da177e4 | 875 | return err; |
3d13008e ED |
876 | |
877 | slow_path_clean: | |
878 | skb_walk_frags(skb, frag2) { | |
879 | if (frag2 == frag) | |
880 | break; | |
881 | frag2->sk = NULL; | |
882 | frag2->destructor = NULL; | |
883 | skb->truesize += frag2->truesize; | |
884 | } | |
1da177e4 LT |
885 | } |
886 | ||
887 | slow_path: | |
1da177e4 LT |
888 | /* |
889 | * Fragment the datagram. | |
890 | */ | |
891 | ||
e7a409c3 ED |
892 | ip_frag_init(skb, hlen, ll_rs, mtu, IPCB(skb)->flags & IPSKB_FRAG_PMTU, |
893 | &state); | |
1da177e4 LT |
894 | |
895 | /* | |
896 | * Keep copying data until we run out. | |
897 | */ | |
898 | ||
065ff79f | 899 | while (state.left > 0) { |
19c3401a PNA |
900 | bool first_frag = (state.offset == 0); |
901 | ||
065ff79f PNA |
902 | skb2 = ip_frag_next(skb, &state); |
903 | if (IS_ERR(skb2)) { | |
904 | err = PTR_ERR(skb2); | |
1da177e4 LT |
905 | goto fail; |
906 | } | |
faf482ca | 907 | ip_frag_ipcb(skb, skb2, first_frag); |
1da177e4 | 908 | |
1da177e4 LT |
909 | /* |
910 | * Put this fragment into the sending queue. | |
911 | */ | |
a1ac9c8a | 912 | skb_set_delivery_time(skb2, tstamp, mono_delivery_time); |
694869b3 | 913 | err = output(net, sk, skb2); |
1da177e4 LT |
914 | if (err) |
915 | goto fail; | |
dafee490 | 916 | |
26a949db | 917 | IP_INC_STATS(net, IPSTATS_MIB_FRAGCREATES); |
1da177e4 | 918 | } |
5d0ba55b | 919 | consume_skb(skb); |
26a949db | 920 | IP_INC_STATS(net, IPSTATS_MIB_FRAGOKS); |
1da177e4 LT |
921 | return err; |
922 | ||
923 | fail: | |
e905a9ed | 924 | kfree_skb(skb); |
26a949db | 925 | IP_INC_STATS(net, IPSTATS_MIB_FRAGFAILS); |
1da177e4 LT |
926 | return err; |
927 | } | |
49d16b23 | 928 | EXPORT_SYMBOL(ip_do_fragment); |
2e2f7aef | 929 | |
1da177e4 LT |
930 | int |
931 | ip_generic_getfrag(void *from, char *to, int offset, int len, int odd, struct sk_buff *skb) | |
932 | { | |
f69e6d13 | 933 | struct msghdr *msg = from; |
1da177e4 | 934 | |
84fa7933 | 935 | if (skb->ip_summed == CHECKSUM_PARTIAL) { |
0b62fca2 | 936 | if (!copy_from_iter_full(to, len, &msg->msg_iter)) |
1da177e4 LT |
937 | return -EFAULT; |
938 | } else { | |
44bb9363 | 939 | __wsum csum = 0; |
0b62fca2 | 940 | if (!csum_and_copy_from_iter_full(to, len, &csum, &msg->msg_iter)) |
1da177e4 LT |
941 | return -EFAULT; |
942 | skb->csum = csum_block_add(skb->csum, csum, odd); | |
943 | } | |
944 | return 0; | |
945 | } | |
4bc2f18b | 946 | EXPORT_SYMBOL(ip_generic_getfrag); |
1da177e4 | 947 | |
44bb9363 | 948 | static inline __wsum |
1da177e4 LT |
949 | csum_page(struct page *page, int offset, int copy) |
950 | { | |
951 | char *kaddr; | |
44bb9363 | 952 | __wsum csum; |
1da177e4 LT |
953 | kaddr = kmap(page); |
954 | csum = csum_partial(kaddr + offset, copy, 0); | |
955 | kunmap(page); | |
956 | return csum; | |
957 | } | |
958 | ||
f5fca608 DM |
959 | static int __ip_append_data(struct sock *sk, |
960 | struct flowi4 *fl4, | |
961 | struct sk_buff_head *queue, | |
1470ddf7 | 962 | struct inet_cork *cork, |
5640f768 | 963 | struct page_frag *pfrag, |
1470ddf7 HX |
964 | int getfrag(void *from, char *to, int offset, |
965 | int len, int odd, struct sk_buff *skb), | |
966 | void *from, int length, int transhdrlen, | |
967 | unsigned int flags) | |
1da177e4 LT |
968 | { |
969 | struct inet_sock *inet = inet_sk(sk); | |
b5947e5d | 970 | struct ubuf_info *uarg = NULL; |
1da177e4 LT |
971 | struct sk_buff *skb; |
972 | ||
07df5294 | 973 | struct ip_options *opt = cork->opt; |
1da177e4 LT |
974 | int hh_len; |
975 | int exthdrlen; | |
976 | int mtu; | |
977 | int copy; | |
978 | int err; | |
979 | int offset = 0; | |
daba287b | 980 | unsigned int maxfraglen, fragheaderlen, maxnonfragsize; |
1da177e4 | 981 | int csummode = CHECKSUM_NONE; |
1470ddf7 | 982 | struct rtable *rt = (struct rtable *)cork->dst; |
694aba69 | 983 | unsigned int wmem_alloc_delta = 0; |
100f6d8e | 984 | bool paged, extra_uref = false; |
09c2d251 | 985 | u32 tskey = 0; |
1da177e4 | 986 | |
96d7303e SK |
987 | skb = skb_peek_tail(queue); |
988 | ||
989 | exthdrlen = !skb ? rt->dst.header_len : 0; | |
bec1f6f6 | 990 | mtu = cork->gso_size ? IP_MAX_MTU : cork->fragsize; |
15e36f5b | 991 | paged = !!cork->gso_size; |
bec1f6f6 | 992 | |
09c2d251 WB |
993 | if (cork->tx_flags & SKBTX_ANY_SW_TSTAMP && |
994 | sk->sk_tsflags & SOF_TIMESTAMPING_OPT_ID) | |
a1cdec57 | 995 | tskey = atomic_inc_return(&sk->sk_tskey) - 1; |
1da177e4 | 996 | |
d8d1f30b | 997 | hh_len = LL_RESERVED_SPACE(rt->dst.dev); |
1da177e4 LT |
998 | |
999 | fragheaderlen = sizeof(struct iphdr) + (opt ? opt->optlen : 0); | |
1000 | maxfraglen = ((mtu - fragheaderlen) & ~7) + fragheaderlen; | |
cbc08a33 | 1001 | maxnonfragsize = ip_sk_ignore_df(sk) ? IP_MAX_MTU : mtu; |
1da177e4 | 1002 | |
daba287b | 1003 | if (cork->length + length > maxnonfragsize - fragheaderlen) { |
f5fca608 | 1004 | ip_local_error(sk, EMSGSIZE, fl4->daddr, inet->inet_dport, |
61e7f09d | 1005 | mtu - (opt ? opt->optlen : 0)); |
1da177e4 LT |
1006 | return -EMSGSIZE; |
1007 | } | |
1008 | ||
1009 | /* | |
1010 | * transhdrlen > 0 means that this is the first fragment and we wish | |
1011 | * it won't be fragmented in the future. | |
1012 | */ | |
1013 | if (transhdrlen && | |
1014 | length + fragheaderlen <= mtu && | |
c8cd0989 | 1015 | rt->dst.dev->features & (NETIF_F_HW_CSUM | NETIF_F_IP_CSUM) && |
bec1f6f6 | 1016 | (!(flags & MSG_MORE) || cork->gso_size) && |
cd027a54 | 1017 | (!exthdrlen || (rt->dst.dev->features & NETIF_F_HW_ESP_TX_CSUM))) |
84fa7933 | 1018 | csummode = CHECKSUM_PARTIAL; |
1da177e4 | 1019 | |
b5947e5d | 1020 | if (flags & MSG_ZEROCOPY && length && sock_flag(sk, SOCK_ZEROCOPY)) { |
8c793822 | 1021 | uarg = msg_zerocopy_realloc(sk, length, skb_zcopy(skb)); |
b5947e5d WB |
1022 | if (!uarg) |
1023 | return -ENOBUFS; | |
522924b5 | 1024 | extra_uref = !skb_zcopy(skb); /* only ref on new uarg */ |
b5947e5d WB |
1025 | if (rt->dst.dev->features & NETIF_F_SG && |
1026 | csummode == CHECKSUM_PARTIAL) { | |
1027 | paged = true; | |
1028 | } else { | |
1029 | uarg->zerocopy = 0; | |
52900d22 | 1030 | skb_zcopy_set(skb, uarg, &extra_uref); |
b5947e5d WB |
1031 | } |
1032 | } | |
1033 | ||
1470ddf7 | 1034 | cork->length += length; |
1da177e4 LT |
1035 | |
1036 | /* So, what's going on in the loop below? | |
1037 | * | |
1038 | * We use calculated fragment length to generate chained skb, | |
1039 | * each of segments is IP fragment ready for sending to network after | |
1040 | * adding appropriate IP header. | |
1041 | */ | |
1042 | ||
26cde9f7 | 1043 | if (!skb) |
1da177e4 LT |
1044 | goto alloc_new_skb; |
1045 | ||
1046 | while (length > 0) { | |
1047 | /* Check if the remaining data fits into current packet. */ | |
1048 | copy = mtu - skb->len; | |
1049 | if (copy < length) | |
1050 | copy = maxfraglen - skb->len; | |
1051 | if (copy <= 0) { | |
1052 | char *data; | |
1053 | unsigned int datalen; | |
1054 | unsigned int fraglen; | |
1055 | unsigned int fraggap; | |
6d123b81 | 1056 | unsigned int alloclen, alloc_extra; |
aba36930 | 1057 | unsigned int pagedlen; |
1da177e4 LT |
1058 | struct sk_buff *skb_prev; |
1059 | alloc_new_skb: | |
1060 | skb_prev = skb; | |
1061 | if (skb_prev) | |
1062 | fraggap = skb_prev->len - maxfraglen; | |
1063 | else | |
1064 | fraggap = 0; | |
1065 | ||
1066 | /* | |
1067 | * If remaining data exceeds the mtu, | |
1068 | * we know we need more fragment(s). | |
1069 | */ | |
1070 | datalen = length + fraggap; | |
1071 | if (datalen > mtu - fragheaderlen) | |
1072 | datalen = maxfraglen - fragheaderlen; | |
1073 | fraglen = datalen + fragheaderlen; | |
aba36930 | 1074 | pagedlen = 0; |
1da177e4 | 1075 | |
6d123b81 JK |
1076 | alloc_extra = hh_len + 15; |
1077 | alloc_extra += exthdrlen; | |
1078 | ||
1079 | /* The last fragment gets additional space at tail. | |
1080 | * Note, with MSG_MORE we overallocate on fragments, | |
1081 | * because we have no idea what fragment will be | |
1082 | * the last. | |
1083 | */ | |
1084 | if (datalen == length + fraggap) | |
1085 | alloc_extra += rt->dst.trailer_len; | |
1086 | ||
e905a9ed | 1087 | if ((flags & MSG_MORE) && |
d8d1f30b | 1088 | !(rt->dst.dev->features&NETIF_F_SG)) |
1da177e4 | 1089 | alloclen = mtu; |
6d123b81 JK |
1090 | else if (!paged && |
1091 | (fraglen + alloc_extra < SKB_MAX_ALLOC || | |
1092 | !(rt->dst.dev->features & NETIF_F_SG))) | |
59104f06 | 1093 | alloclen = fraglen; |
15e36f5b WB |
1094 | else { |
1095 | alloclen = min_t(int, fraglen, MAX_HEADER); | |
1096 | pagedlen = fraglen - alloclen; | |
1097 | } | |
1da177e4 | 1098 | |
6d123b81 | 1099 | alloclen += alloc_extra; |
33f99dc7 | 1100 | |
1da177e4 | 1101 | if (transhdrlen) { |
6d123b81 | 1102 | skb = sock_alloc_send_skb(sk, alloclen, |
1da177e4 LT |
1103 | (flags & MSG_DONTWAIT), &err); |
1104 | } else { | |
1105 | skb = NULL; | |
694aba69 | 1106 | if (refcount_read(&sk->sk_wmem_alloc) + wmem_alloc_delta <= |
1da177e4 | 1107 | 2 * sk->sk_sndbuf) |
6d123b81 | 1108 | skb = alloc_skb(alloclen, |
694aba69 | 1109 | sk->sk_allocation); |
51456b29 | 1110 | if (unlikely(!skb)) |
1da177e4 LT |
1111 | err = -ENOBUFS; |
1112 | } | |
51456b29 | 1113 | if (!skb) |
1da177e4 LT |
1114 | goto error; |
1115 | ||
1116 | /* | |
1117 | * Fill in the control structures | |
1118 | */ | |
1119 | skb->ip_summed = csummode; | |
1120 | skb->csum = 0; | |
1121 | skb_reserve(skb, hh_len); | |
11878b40 | 1122 | |
1da177e4 LT |
1123 | /* |
1124 | * Find where to start putting bytes. | |
1125 | */ | |
15e36f5b | 1126 | data = skb_put(skb, fraglen + exthdrlen - pagedlen); |
c14d2450 | 1127 | skb_set_network_header(skb, exthdrlen); |
b0e380b1 ACM |
1128 | skb->transport_header = (skb->network_header + |
1129 | fragheaderlen); | |
353e5c9a | 1130 | data += fragheaderlen + exthdrlen; |
1da177e4 LT |
1131 | |
1132 | if (fraggap) { | |
1133 | skb->csum = skb_copy_and_csum_bits( | |
1134 | skb_prev, maxfraglen, | |
8d5930df | 1135 | data + transhdrlen, fraggap); |
1da177e4 LT |
1136 | skb_prev->csum = csum_sub(skb_prev->csum, |
1137 | skb->csum); | |
1138 | data += fraggap; | |
e9fa4f7b | 1139 | pskb_trim_unique(skb_prev, maxfraglen); |
1da177e4 LT |
1140 | } |
1141 | ||
15e36f5b | 1142 | copy = datalen - transhdrlen - fraggap - pagedlen; |
1da177e4 LT |
1143 | if (copy > 0 && getfrag(from, data + transhdrlen, offset, copy, fraggap, skb) < 0) { |
1144 | err = -EFAULT; | |
1145 | kfree_skb(skb); | |
1146 | goto error; | |
1147 | } | |
1148 | ||
1149 | offset += copy; | |
15e36f5b | 1150 | length -= copy + transhdrlen; |
1da177e4 LT |
1151 | transhdrlen = 0; |
1152 | exthdrlen = 0; | |
1153 | csummode = CHECKSUM_NONE; | |
1154 | ||
52900d22 WB |
1155 | /* only the initial fragment is time stamped */ |
1156 | skb_shinfo(skb)->tx_flags = cork->tx_flags; | |
1157 | cork->tx_flags = 0; | |
1158 | skb_shinfo(skb)->tskey = tskey; | |
1159 | tskey = 0; | |
1160 | skb_zcopy_set(skb, uarg, &extra_uref); | |
1161 | ||
0dec879f JA |
1162 | if ((flags & MSG_CONFIRM) && !skb_prev) |
1163 | skb_set_dst_pending_confirm(skb, 1); | |
1164 | ||
1da177e4 LT |
1165 | /* |
1166 | * Put the packet on the pending queue. | |
1167 | */ | |
694aba69 ED |
1168 | if (!skb->destructor) { |
1169 | skb->destructor = sock_wfree; | |
1170 | skb->sk = sk; | |
1171 | wmem_alloc_delta += skb->truesize; | |
1172 | } | |
1470ddf7 | 1173 | __skb_queue_tail(queue, skb); |
1da177e4 LT |
1174 | continue; |
1175 | } | |
1176 | ||
1177 | if (copy > length) | |
1178 | copy = length; | |
1179 | ||
113f99c3 WB |
1180 | if (!(rt->dst.dev->features&NETIF_F_SG) && |
1181 | skb_tailroom(skb) >= copy) { | |
1da177e4 LT |
1182 | unsigned int off; |
1183 | ||
1184 | off = skb->len; | |
e905a9ed | 1185 | if (getfrag(from, skb_put(skb, copy), |
1da177e4 LT |
1186 | offset, copy, off, skb) < 0) { |
1187 | __skb_trim(skb, off); | |
1188 | err = -EFAULT; | |
1189 | goto error; | |
1190 | } | |
b5947e5d | 1191 | } else if (!uarg || !uarg->zerocopy) { |
1da177e4 | 1192 | int i = skb_shinfo(skb)->nr_frags; |
1da177e4 | 1193 | |
5640f768 ED |
1194 | err = -ENOMEM; |
1195 | if (!sk_page_frag_refill(sk, pfrag)) | |
1da177e4 | 1196 | goto error; |
5640f768 ED |
1197 | |
1198 | if (!skb_can_coalesce(skb, i, pfrag->page, | |
1199 | pfrag->offset)) { | |
1200 | err = -EMSGSIZE; | |
1201 | if (i == MAX_SKB_FRAGS) | |
1202 | goto error; | |
1203 | ||
1204 | __skb_fill_page_desc(skb, i, pfrag->page, | |
1205 | pfrag->offset, 0); | |
1206 | skb_shinfo(skb)->nr_frags = ++i; | |
1207 | get_page(pfrag->page); | |
1da177e4 | 1208 | } |
5640f768 ED |
1209 | copy = min_t(int, copy, pfrag->size - pfrag->offset); |
1210 | if (getfrag(from, | |
1211 | page_address(pfrag->page) + pfrag->offset, | |
1212 | offset, copy, skb->len, skb) < 0) | |
1213 | goto error_efault; | |
1214 | ||
1215 | pfrag->offset += copy; | |
1216 | skb_frag_size_add(&skb_shinfo(skb)->frags[i - 1], copy); | |
1da177e4 LT |
1217 | skb->len += copy; |
1218 | skb->data_len += copy; | |
f945fa7a | 1219 | skb->truesize += copy; |
694aba69 | 1220 | wmem_alloc_delta += copy; |
b5947e5d WB |
1221 | } else { |
1222 | err = skb_zerocopy_iter_dgram(skb, from, copy); | |
1223 | if (err < 0) | |
1224 | goto error; | |
1da177e4 LT |
1225 | } |
1226 | offset += copy; | |
1227 | length -= copy; | |
1228 | } | |
1229 | ||
9e8445a5 PA |
1230 | if (wmem_alloc_delta) |
1231 | refcount_add(wmem_alloc_delta, &sk->sk_wmem_alloc); | |
1da177e4 LT |
1232 | return 0; |
1233 | ||
5640f768 ED |
1234 | error_efault: |
1235 | err = -EFAULT; | |
1da177e4 | 1236 | error: |
8e044917 | 1237 | net_zcopy_put_abort(uarg, extra_uref); |
1470ddf7 | 1238 | cork->length -= length; |
5e38e270 | 1239 | IP_INC_STATS(sock_net(sk), IPSTATS_MIB_OUTDISCARDS); |
694aba69 | 1240 | refcount_add(wmem_alloc_delta, &sk->sk_wmem_alloc); |
e905a9ed | 1241 | return err; |
1da177e4 LT |
1242 | } |
1243 | ||
1470ddf7 HX |
1244 | static int ip_setup_cork(struct sock *sk, struct inet_cork *cork, |
1245 | struct ipcm_cookie *ipc, struct rtable **rtp) | |
1246 | { | |
f6d8bd05 | 1247 | struct ip_options_rcu *opt; |
1470ddf7 HX |
1248 | struct rtable *rt; |
1249 | ||
9783ccd0 GF |
1250 | rt = *rtp; |
1251 | if (unlikely(!rt)) | |
1252 | return -EFAULT; | |
1253 | ||
1470ddf7 HX |
1254 | /* |
1255 | * setup for corking. | |
1256 | */ | |
1257 | opt = ipc->opt; | |
1258 | if (opt) { | |
51456b29 | 1259 | if (!cork->opt) { |
1470ddf7 HX |
1260 | cork->opt = kmalloc(sizeof(struct ip_options) + 40, |
1261 | sk->sk_allocation); | |
51456b29 | 1262 | if (unlikely(!cork->opt)) |
1470ddf7 HX |
1263 | return -ENOBUFS; |
1264 | } | |
f6d8bd05 | 1265 | memcpy(cork->opt, &opt->opt, sizeof(struct ip_options) + opt->opt.optlen); |
1470ddf7 HX |
1266 | cork->flags |= IPCORK_OPT; |
1267 | cork->addr = ipc->addr; | |
1268 | } | |
9783ccd0 | 1269 | |
482fc609 | 1270 | cork->fragsize = ip_sk_use_pmtu(sk) ? |
501a90c9 ED |
1271 | dst_mtu(&rt->dst) : READ_ONCE(rt->dst.dev->mtu); |
1272 | ||
1273 | if (!inetdev_valid_mtu(cork->fragsize)) | |
1274 | return -ENETUNREACH; | |
bec1f6f6 | 1275 | |
fbf47813 | 1276 | cork->gso_size = ipc->gso_size; |
501a90c9 | 1277 | |
1470ddf7 | 1278 | cork->dst = &rt->dst; |
501a90c9 ED |
1279 | /* We stole this route, caller should not release it. */ |
1280 | *rtp = NULL; | |
1281 | ||
1470ddf7 | 1282 | cork->length = 0; |
aa661581 FF |
1283 | cork->ttl = ipc->ttl; |
1284 | cork->tos = ipc->tos; | |
c6af0c22 | 1285 | cork->mark = ipc->sockc.mark; |
aa661581 | 1286 | cork->priority = ipc->priority; |
bc969a97 | 1287 | cork->transmit_time = ipc->sockc.transmit_time; |
678ca42d WB |
1288 | cork->tx_flags = 0; |
1289 | sock_tx_timestamp(sk, ipc->sockc.tsflags, &cork->tx_flags); | |
1470ddf7 HX |
1290 | |
1291 | return 0; | |
1292 | } | |
1293 | ||
1294 | /* | |
1295 | * ip_append_data() and ip_append_page() can make one large IP datagram | |
1296 | * from many pieces of data. Each pieces will be holded on the socket | |
1297 | * until ip_push_pending_frames() is called. Each piece can be a page | |
1298 | * or non-page data. | |
1299 | * | |
1300 | * Not only UDP, other transport protocols - e.g. raw sockets - can use | |
1301 | * this interface potentially. | |
1302 | * | |
1303 | * LATER: length must be adjusted by pad at tail, when it is required. | |
1304 | */ | |
f5fca608 | 1305 | int ip_append_data(struct sock *sk, struct flowi4 *fl4, |
1470ddf7 HX |
1306 | int getfrag(void *from, char *to, int offset, int len, |
1307 | int odd, struct sk_buff *skb), | |
1308 | void *from, int length, int transhdrlen, | |
1309 | struct ipcm_cookie *ipc, struct rtable **rtp, | |
1310 | unsigned int flags) | |
1311 | { | |
1312 | struct inet_sock *inet = inet_sk(sk); | |
1313 | int err; | |
1314 | ||
1315 | if (flags&MSG_PROBE) | |
1316 | return 0; | |
1317 | ||
1318 | if (skb_queue_empty(&sk->sk_write_queue)) { | |
bdc712b4 | 1319 | err = ip_setup_cork(sk, &inet->cork.base, ipc, rtp); |
1470ddf7 HX |
1320 | if (err) |
1321 | return err; | |
1322 | } else { | |
1323 | transhdrlen = 0; | |
1324 | } | |
1325 | ||
5640f768 ED |
1326 | return __ip_append_data(sk, fl4, &sk->sk_write_queue, &inet->cork.base, |
1327 | sk_page_frag(sk), getfrag, | |
1470ddf7 HX |
1328 | from, length, transhdrlen, flags); |
1329 | } | |
1330 | ||
f5fca608 | 1331 | ssize_t ip_append_page(struct sock *sk, struct flowi4 *fl4, struct page *page, |
1da177e4 LT |
1332 | int offset, size_t size, int flags) |
1333 | { | |
1334 | struct inet_sock *inet = inet_sk(sk); | |
1335 | struct sk_buff *skb; | |
1336 | struct rtable *rt; | |
1337 | struct ip_options *opt = NULL; | |
bdc712b4 | 1338 | struct inet_cork *cork; |
1da177e4 LT |
1339 | int hh_len; |
1340 | int mtu; | |
1341 | int len; | |
1342 | int err; | |
daba287b | 1343 | unsigned int maxfraglen, fragheaderlen, fraggap, maxnonfragsize; |
1da177e4 LT |
1344 | |
1345 | if (inet->hdrincl) | |
1346 | return -EPERM; | |
1347 | ||
1348 | if (flags&MSG_PROBE) | |
1349 | return 0; | |
1350 | ||
1351 | if (skb_queue_empty(&sk->sk_write_queue)) | |
1352 | return -EINVAL; | |
1353 | ||
bdc712b4 DM |
1354 | cork = &inet->cork.base; |
1355 | rt = (struct rtable *)cork->dst; | |
1356 | if (cork->flags & IPCORK_OPT) | |
1357 | opt = cork->opt; | |
1da177e4 | 1358 | |
343d8c60 | 1359 | if (!(rt->dst.dev->features & NETIF_F_SG)) |
1da177e4 LT |
1360 | return -EOPNOTSUPP; |
1361 | ||
d8d1f30b | 1362 | hh_len = LL_RESERVED_SPACE(rt->dst.dev); |
bec1f6f6 | 1363 | mtu = cork->gso_size ? IP_MAX_MTU : cork->fragsize; |
1da177e4 LT |
1364 | |
1365 | fragheaderlen = sizeof(struct iphdr) + (opt ? opt->optlen : 0); | |
1366 | maxfraglen = ((mtu - fragheaderlen) & ~7) + fragheaderlen; | |
60ff7467 | 1367 | maxnonfragsize = ip_sk_ignore_df(sk) ? 0xFFFF : mtu; |
1da177e4 | 1368 | |
daba287b | 1369 | if (cork->length + size > maxnonfragsize - fragheaderlen) { |
61e7f09d HFS |
1370 | ip_local_error(sk, EMSGSIZE, fl4->daddr, inet->inet_dport, |
1371 | mtu - (opt ? opt->optlen : 0)); | |
1da177e4 LT |
1372 | return -EMSGSIZE; |
1373 | } | |
1374 | ||
51456b29 IM |
1375 | skb = skb_peek_tail(&sk->sk_write_queue); |
1376 | if (!skb) | |
1da177e4 LT |
1377 | return -EINVAL; |
1378 | ||
a8c4a252 | 1379 | cork->length += size; |
e89e9cf5 | 1380 | |
1da177e4 | 1381 | while (size > 0) { |
ab2fb7e3 WB |
1382 | /* Check if the remaining data fits into current packet. */ |
1383 | len = mtu - skb->len; | |
1384 | if (len < size) | |
1385 | len = maxfraglen - skb->len; | |
e89e9cf5 | 1386 | |
1da177e4 LT |
1387 | if (len <= 0) { |
1388 | struct sk_buff *skb_prev; | |
1da177e4 LT |
1389 | int alloclen; |
1390 | ||
1391 | skb_prev = skb; | |
0d0d2bba | 1392 | fraggap = skb_prev->len - maxfraglen; |
1da177e4 LT |
1393 | |
1394 | alloclen = fragheaderlen + hh_len + fraggap + 15; | |
1395 | skb = sock_wmalloc(sk, alloclen, 1, sk->sk_allocation); | |
1396 | if (unlikely(!skb)) { | |
1397 | err = -ENOBUFS; | |
1398 | goto error; | |
1399 | } | |
1400 | ||
1401 | /* | |
1402 | * Fill in the control structures | |
1403 | */ | |
1404 | skb->ip_summed = CHECKSUM_NONE; | |
1405 | skb->csum = 0; | |
1406 | skb_reserve(skb, hh_len); | |
1407 | ||
1408 | /* | |
1409 | * Find where to start putting bytes. | |
1410 | */ | |
967b05f6 | 1411 | skb_put(skb, fragheaderlen + fraggap); |
2ca9e6f2 | 1412 | skb_reset_network_header(skb); |
b0e380b1 ACM |
1413 | skb->transport_header = (skb->network_header + |
1414 | fragheaderlen); | |
1da177e4 | 1415 | if (fraggap) { |
967b05f6 ACM |
1416 | skb->csum = skb_copy_and_csum_bits(skb_prev, |
1417 | maxfraglen, | |
9c70220b | 1418 | skb_transport_header(skb), |
8d5930df | 1419 | fraggap); |
1da177e4 LT |
1420 | skb_prev->csum = csum_sub(skb_prev->csum, |
1421 | skb->csum); | |
e9fa4f7b | 1422 | pskb_trim_unique(skb_prev, maxfraglen); |
1da177e4 LT |
1423 | } |
1424 | ||
1425 | /* | |
1426 | * Put the packet on the pending queue. | |
1427 | */ | |
1428 | __skb_queue_tail(&sk->sk_write_queue, skb); | |
1429 | continue; | |
1430 | } | |
1431 | ||
1da177e4 LT |
1432 | if (len > size) |
1433 | len = size; | |
be12a1fe HFS |
1434 | |
1435 | if (skb_append_pagefrags(skb, page, offset, len)) { | |
1da177e4 LT |
1436 | err = -EMSGSIZE; |
1437 | goto error; | |
1438 | } | |
1439 | ||
1440 | if (skb->ip_summed == CHECKSUM_NONE) { | |
44bb9363 | 1441 | __wsum csum; |
1da177e4 LT |
1442 | csum = csum_page(page, offset, len); |
1443 | skb->csum = csum_block_add(skb->csum, csum, skb->len); | |
1444 | } | |
1445 | ||
1446 | skb->len += len; | |
1447 | skb->data_len += len; | |
1e34a11d | 1448 | skb->truesize += len; |
14afee4b | 1449 | refcount_add(len, &sk->sk_wmem_alloc); |
1da177e4 LT |
1450 | offset += len; |
1451 | size -= len; | |
1452 | } | |
1453 | return 0; | |
1454 | ||
1455 | error: | |
bdc712b4 | 1456 | cork->length -= size; |
5e38e270 | 1457 | IP_INC_STATS(sock_net(sk), IPSTATS_MIB_OUTDISCARDS); |
1da177e4 LT |
1458 | return err; |
1459 | } | |
1460 | ||
1470ddf7 | 1461 | static void ip_cork_release(struct inet_cork *cork) |
429f08e9 | 1462 | { |
1470ddf7 HX |
1463 | cork->flags &= ~IPCORK_OPT; |
1464 | kfree(cork->opt); | |
1465 | cork->opt = NULL; | |
1466 | dst_release(cork->dst); | |
1467 | cork->dst = NULL; | |
429f08e9 PE |
1468 | } |
1469 | ||
1da177e4 LT |
1470 | /* |
1471 | * Combined all pending IP fragments on the socket as one IP datagram | |
1472 | * and push them out. | |
1473 | */ | |
1c32c5ad | 1474 | struct sk_buff *__ip_make_skb(struct sock *sk, |
77968b78 | 1475 | struct flowi4 *fl4, |
1c32c5ad HX |
1476 | struct sk_buff_head *queue, |
1477 | struct inet_cork *cork) | |
1da177e4 LT |
1478 | { |
1479 | struct sk_buff *skb, *tmp_skb; | |
1480 | struct sk_buff **tail_skb; | |
1481 | struct inet_sock *inet = inet_sk(sk); | |
0388b004 | 1482 | struct net *net = sock_net(sk); |
1da177e4 | 1483 | struct ip_options *opt = NULL; |
1470ddf7 | 1484 | struct rtable *rt = (struct rtable *)cork->dst; |
1da177e4 | 1485 | struct iphdr *iph; |
76ab608d | 1486 | __be16 df = 0; |
1da177e4 | 1487 | __u8 ttl; |
1da177e4 | 1488 | |
51456b29 IM |
1489 | skb = __skb_dequeue(queue); |
1490 | if (!skb) | |
1da177e4 LT |
1491 | goto out; |
1492 | tail_skb = &(skb_shinfo(skb)->frag_list); | |
1493 | ||
1494 | /* move skb->data to ip header from ext header */ | |
d56f90a7 | 1495 | if (skb->data < skb_network_header(skb)) |
bbe735e4 | 1496 | __skb_pull(skb, skb_network_offset(skb)); |
1470ddf7 | 1497 | while ((tmp_skb = __skb_dequeue(queue)) != NULL) { |
cfe1fc77 | 1498 | __skb_pull(tmp_skb, skb_network_header_len(skb)); |
1da177e4 LT |
1499 | *tail_skb = tmp_skb; |
1500 | tail_skb = &(tmp_skb->next); | |
1501 | skb->len += tmp_skb->len; | |
1502 | skb->data_len += tmp_skb->len; | |
1503 | skb->truesize += tmp_skb->truesize; | |
1da177e4 LT |
1504 | tmp_skb->destructor = NULL; |
1505 | tmp_skb->sk = NULL; | |
1506 | } | |
1507 | ||
1508 | /* Unless user demanded real pmtu discovery (IP_PMTUDISC_DO), we allow | |
1509 | * to fragment the frame generated here. No matter, what transforms | |
1510 | * how transforms change size of the packet, it will come out. | |
1511 | */ | |
60ff7467 | 1512 | skb->ignore_df = ip_sk_ignore_df(sk); |
1da177e4 LT |
1513 | |
1514 | /* DF bit is set when we want to see DF on outgoing frames. | |
60ff7467 | 1515 | * If ignore_df is set too, we still allow to fragment this frame |
1da177e4 | 1516 | * locally. */ |
482fc609 HFS |
1517 | if (inet->pmtudisc == IP_PMTUDISC_DO || |
1518 | inet->pmtudisc == IP_PMTUDISC_PROBE || | |
d8d1f30b CG |
1519 | (skb->len <= dst_mtu(&rt->dst) && |
1520 | ip_dont_fragment(sk, &rt->dst))) | |
1da177e4 LT |
1521 | df = htons(IP_DF); |
1522 | ||
1470ddf7 HX |
1523 | if (cork->flags & IPCORK_OPT) |
1524 | opt = cork->opt; | |
1da177e4 | 1525 | |
aa661581 FF |
1526 | if (cork->ttl != 0) |
1527 | ttl = cork->ttl; | |
1528 | else if (rt->rt_type == RTN_MULTICAST) | |
1da177e4 LT |
1529 | ttl = inet->mc_ttl; |
1530 | else | |
d8d1f30b | 1531 | ttl = ip_select_ttl(inet, &rt->dst); |
1da177e4 | 1532 | |
749154aa | 1533 | iph = ip_hdr(skb); |
1da177e4 LT |
1534 | iph->version = 4; |
1535 | iph->ihl = 5; | |
aa661581 | 1536 | iph->tos = (cork->tos != -1) ? cork->tos : inet->tos; |
1da177e4 | 1537 | iph->frag_off = df; |
1da177e4 LT |
1538 | iph->ttl = ttl; |
1539 | iph->protocol = sk->sk_protocol; | |
84f9307c | 1540 | ip_copy_addrs(iph, fl4); |
b6a7719a | 1541 | ip_select_ident(net, skb, sk); |
1da177e4 | 1542 | |
22f728f8 | 1543 | if (opt) { |
5af68891 | 1544 | iph->ihl += opt->optlen >> 2; |
4f0e3040 | 1545 | ip_options_build(skb, opt, cork->addr, rt); |
22f728f8 DM |
1546 | } |
1547 | ||
aa661581 | 1548 | skb->priority = (cork->tos != -1) ? cork->priority: sk->sk_priority; |
c6af0c22 | 1549 | skb->mark = cork->mark; |
bc969a97 | 1550 | skb->tstamp = cork->transmit_time; |
a21bba94 ED |
1551 | /* |
1552 | * Steal rt from cork.dst to avoid a pair of atomic_inc/atomic_dec | |
1553 | * on dst refcount | |
1554 | */ | |
1470ddf7 | 1555 | cork->dst = NULL; |
d8d1f30b | 1556 | skb_dst_set(skb, &rt->dst); |
1da177e4 | 1557 | |
96793b48 | 1558 | if (iph->protocol == IPPROTO_ICMP) |
0388b004 | 1559 | icmp_out_count(net, ((struct icmphdr *) |
96793b48 DS |
1560 | skb_transport_header(skb))->type); |
1561 | ||
1c32c5ad HX |
1562 | ip_cork_release(cork); |
1563 | out: | |
1564 | return skb; | |
1565 | } | |
1566 | ||
b5ec8eea | 1567 | int ip_send_skb(struct net *net, struct sk_buff *skb) |
1c32c5ad | 1568 | { |
1c32c5ad HX |
1569 | int err; |
1570 | ||
33224b16 | 1571 | err = ip_local_out(net, skb->sk, skb); |
1da177e4 LT |
1572 | if (err) { |
1573 | if (err > 0) | |
6ce9e7b5 | 1574 | err = net_xmit_errno(err); |
1da177e4 | 1575 | if (err) |
1c32c5ad | 1576 | IP_INC_STATS(net, IPSTATS_MIB_OUTDISCARDS); |
1da177e4 LT |
1577 | } |
1578 | ||
1da177e4 | 1579 | return err; |
1da177e4 LT |
1580 | } |
1581 | ||
77968b78 | 1582 | int ip_push_pending_frames(struct sock *sk, struct flowi4 *fl4) |
1470ddf7 | 1583 | { |
1c32c5ad HX |
1584 | struct sk_buff *skb; |
1585 | ||
77968b78 | 1586 | skb = ip_finish_skb(sk, fl4); |
1c32c5ad HX |
1587 | if (!skb) |
1588 | return 0; | |
1589 | ||
1590 | /* Netfilter gets whole the not fragmented skb. */ | |
b5ec8eea | 1591 | return ip_send_skb(sock_net(sk), skb); |
1470ddf7 HX |
1592 | } |
1593 | ||
1da177e4 LT |
1594 | /* |
1595 | * Throw away all pending data on the socket. | |
1596 | */ | |
1470ddf7 HX |
1597 | static void __ip_flush_pending_frames(struct sock *sk, |
1598 | struct sk_buff_head *queue, | |
1599 | struct inet_cork *cork) | |
1da177e4 | 1600 | { |
1da177e4 LT |
1601 | struct sk_buff *skb; |
1602 | ||
1470ddf7 | 1603 | while ((skb = __skb_dequeue_tail(queue)) != NULL) |
1da177e4 LT |
1604 | kfree_skb(skb); |
1605 | ||
1470ddf7 HX |
1606 | ip_cork_release(cork); |
1607 | } | |
1608 | ||
1609 | void ip_flush_pending_frames(struct sock *sk) | |
1610 | { | |
bdc712b4 | 1611 | __ip_flush_pending_frames(sk, &sk->sk_write_queue, &inet_sk(sk)->cork.base); |
1da177e4 LT |
1612 | } |
1613 | ||
1c32c5ad | 1614 | struct sk_buff *ip_make_skb(struct sock *sk, |
77968b78 | 1615 | struct flowi4 *fl4, |
1c32c5ad HX |
1616 | int getfrag(void *from, char *to, int offset, |
1617 | int len, int odd, struct sk_buff *skb), | |
1618 | void *from, int length, int transhdrlen, | |
1619 | struct ipcm_cookie *ipc, struct rtable **rtp, | |
1cd7884d | 1620 | struct inet_cork *cork, unsigned int flags) |
1c32c5ad | 1621 | { |
1c32c5ad HX |
1622 | struct sk_buff_head queue; |
1623 | int err; | |
1624 | ||
1625 | if (flags & MSG_PROBE) | |
1626 | return NULL; | |
1627 | ||
1628 | __skb_queue_head_init(&queue); | |
1629 | ||
1cd7884d WB |
1630 | cork->flags = 0; |
1631 | cork->addr = 0; | |
1632 | cork->opt = NULL; | |
1633 | err = ip_setup_cork(sk, cork, ipc, rtp); | |
1c32c5ad HX |
1634 | if (err) |
1635 | return ERR_PTR(err); | |
1636 | ||
1cd7884d | 1637 | err = __ip_append_data(sk, fl4, &queue, cork, |
5640f768 | 1638 | ¤t->task_frag, getfrag, |
1c32c5ad HX |
1639 | from, length, transhdrlen, flags); |
1640 | if (err) { | |
1cd7884d | 1641 | __ip_flush_pending_frames(sk, &queue, cork); |
1c32c5ad HX |
1642 | return ERR_PTR(err); |
1643 | } | |
1644 | ||
1cd7884d | 1645 | return __ip_make_skb(sk, fl4, &queue, cork); |
1c32c5ad | 1646 | } |
1da177e4 LT |
1647 | |
1648 | /* | |
1649 | * Fetch data from kernel space and fill in checksum if needed. | |
1650 | */ | |
e905a9ed | 1651 | static int ip_reply_glue_bits(void *dptr, char *to, int offset, |
1da177e4 LT |
1652 | int len, int odd, struct sk_buff *skb) |
1653 | { | |
5084205f | 1654 | __wsum csum; |
1da177e4 | 1655 | |
cc44c17b | 1656 | csum = csum_partial_copy_nocheck(dptr+offset, to, len); |
1da177e4 | 1657 | skb->csum = csum_block_add(skb->csum, csum, odd); |
e905a9ed | 1658 | return 0; |
1da177e4 LT |
1659 | } |
1660 | ||
e905a9ed | 1661 | /* |
1da177e4 | 1662 | * Generic function to send a packet as reply to another packet. |
be9f4a44 | 1663 | * Used to send some TCP resets/acks so far. |
1da177e4 | 1664 | */ |
bdbbb852 | 1665 | void ip_send_unicast_reply(struct sock *sk, struct sk_buff *skb, |
24a2d43d ED |
1666 | const struct ip_options *sopt, |
1667 | __be32 daddr, __be32 saddr, | |
1668 | const struct ip_reply_arg *arg, | |
d6fb396c | 1669 | unsigned int len, u64 transmit_time) |
1da177e4 | 1670 | { |
f6d8bd05 | 1671 | struct ip_options_data replyopts; |
1da177e4 | 1672 | struct ipcm_cookie ipc; |
77968b78 | 1673 | struct flowi4 fl4; |
511c3f92 | 1674 | struct rtable *rt = skb_rtable(skb); |
bdbbb852 | 1675 | struct net *net = sock_net(sk); |
be9f4a44 | 1676 | struct sk_buff *nskb; |
4062090e | 1677 | int err; |
f7ba868b | 1678 | int oif; |
1da177e4 | 1679 | |
91ed1e66 | 1680 | if (__ip_options_echo(net, &replyopts.opt.opt, skb, sopt)) |
1da177e4 LT |
1681 | return; |
1682 | ||
35178206 | 1683 | ipcm_init(&ipc); |
0a5ebb80 | 1684 | ipc.addr = daddr; |
d6fb396c | 1685 | ipc.sockc.transmit_time = transmit_time; |
1da177e4 | 1686 | |
f6d8bd05 | 1687 | if (replyopts.opt.opt.optlen) { |
1da177e4 LT |
1688 | ipc.opt = &replyopts.opt; |
1689 | ||
f6d8bd05 ED |
1690 | if (replyopts.opt.opt.srr) |
1691 | daddr = replyopts.opt.opt.faddr; | |
1da177e4 LT |
1692 | } |
1693 | ||
f7ba868b | 1694 | oif = arg->bound_dev_if; |
9b6c14d5 DA |
1695 | if (!oif && netif_index_is_l3_master(net, skb->skb_iif)) |
1696 | oif = skb->skb_iif; | |
f7ba868b DA |
1697 | |
1698 | flowi4_init_output(&fl4, oif, | |
00483690 | 1699 | IP4_REPLY_MARK(net, skb->mark) ?: sk->sk_mark, |
66b13d99 | 1700 | RT_TOS(arg->tos), |
be9f4a44 | 1701 | RT_SCOPE_UNIVERSE, ip_hdr(skb)->protocol, |
77968b78 | 1702 | ip_reply_arg_flowi_flags(arg), |
70e73416 | 1703 | daddr, saddr, |
e2d118a1 LC |
1704 | tcp_hdr(skb)->source, tcp_hdr(skb)->dest, |
1705 | arg->uid); | |
3df98d79 | 1706 | security_skb_classify_flow(skb, flowi4_to_flowi_common(&fl4)); |
be9f4a44 | 1707 | rt = ip_route_output_key(net, &fl4); |
77968b78 DM |
1708 | if (IS_ERR(rt)) |
1709 | return; | |
1da177e4 | 1710 | |
ba9e04a7 | 1711 | inet_sk(sk)->tos = arg->tos & ~INET_ECN_MASK; |
1da177e4 | 1712 | |
eddc9ec5 | 1713 | sk->sk_protocol = ip_hdr(skb)->protocol; |
f0e48dbf | 1714 | sk->sk_bound_dev_if = arg->bound_dev_if; |
be9f4a44 | 1715 | sk->sk_sndbuf = sysctl_wmem_default; |
0da7536f | 1716 | ipc.sockc.mark = fl4.flowi4_mark; |
4062090e VA |
1717 | err = ip_append_data(sk, &fl4, ip_reply_glue_bits, arg->iov->iov_base, |
1718 | len, 0, &ipc, &rt, MSG_DONTWAIT); | |
1719 | if (unlikely(err)) { | |
1720 | ip_flush_pending_frames(sk); | |
1721 | goto out; | |
1722 | } | |
1723 | ||
be9f4a44 ED |
1724 | nskb = skb_peek(&sk->sk_write_queue); |
1725 | if (nskb) { | |
1da177e4 | 1726 | if (arg->csumoffset >= 0) |
be9f4a44 ED |
1727 | *((__sum16 *)skb_transport_header(nskb) + |
1728 | arg->csumoffset) = csum_fold(csum_add(nskb->csum, | |
9c70220b | 1729 | arg->csum)); |
be9f4a44 | 1730 | nskb->ip_summed = CHECKSUM_NONE; |
d98d58a0 | 1731 | nskb->mono_delivery_time = !!transmit_time; |
77968b78 | 1732 | ip_push_pending_frames(sk, &fl4); |
1da177e4 | 1733 | } |
4062090e | 1734 | out: |
1da177e4 LT |
1735 | ip_rt_put(rt); |
1736 | } | |
1737 | ||
1da177e4 LT |
1738 | void __init ip_init(void) |
1739 | { | |
1da177e4 LT |
1740 | ip_rt_init(); |
1741 | inet_initpeers(); | |
1742 | ||
72c1d3bd WC |
1743 | #if defined(CONFIG_IP_MULTICAST) |
1744 | igmp_mc_init(); | |
1da177e4 LT |
1745 | #endif |
1746 | } |