projects / linux-block.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
net/sched: act_ct: add nat mangle action only for NAT-conntrack
[linux-block.git] / net / mptcp / protocol.c
CommitLineData
f870fa0b
MM		 1// SPDX-License-Identifier: GPL-2.0
2/* Multipath TCP
3 *
4 * Copyright (c) 2017 - 2019, Intel Corporation.
5 */
6
7#define pr_fmt(fmt) "MPTCP: " fmt
8
9#include <linux/kernel.h>
10#include <linux/module.h>
11#include <linux/netdevice.h>
7a6a6cbc
PA		 12#include <linux/sched/signal.h>
13#include <linux/atomic.h>
f870fa0b
MM		 14#include <net/sock.h>
15#include <net/inet_common.h>
16#include <net/inet_hashtables.h>
17#include <net/protocol.h>
18#include <net/tcp.h>
cf7da0d6
PK		 19#if IS_ENABLED(CONFIG_MPTCP_IPV6)
20#include <net/transp_v6.h>
21#endif
f870fa0b
MM		 22#include <net/mptcp.h>
23#include "protocol.h"
fc518953 24#include "mib.h"
f870fa0b 25
2303f994
PK		 26#define MPTCP_SAME_STATE TCP_MAX_STATES
27
b0519de8
FW		 28#if IS_ENABLED(CONFIG_MPTCP_IPV6)
29struct mptcp6_sock {
30 struct mptcp_sock msk;
31 struct ipv6_pinfo np;
32};
33#endif
34
6771bfd9
FW		 35struct mptcp_skb_cb {
36 u32 offset;
37};
38
39#define MPTCP_SKB_CB(__skb) ((struct mptcp_skb_cb *)&((__skb)->cb[0]))
40
d027236c
PA		 41static struct percpu_counter mptcp_sockets_allocated;
42
2303f994
PK		 43/* If msk has an initial subflow socket, and the MP_CAPABLE handshake has not
44 * completed yet or has failed, return the subflow socket.
45 * Otherwise return NULL.
46 */
47static struct socket *__mptcp_nmpc_socket(const struct mptcp_sock *msk)
48{
d22f4988 49 if (!msk->subflow || READ_ONCE(msk->can_ack))
2303f994
PK		 50 return NULL;
51
52 return msk->subflow;
53}
54
8ab183de
PA		 55static bool __mptcp_needs_tcp_fallback(const struct mptcp_sock *msk)
56{
57 return msk->first && !sk_is_mptcp(msk->first);
58}
59
0b4f33de
FW		 60static struct socket *mptcp_is_tcpsk(struct sock *sk)
61{
62 struct socket *sock = sk->sk_socket;
63
64 if (sock->sk != sk)
65 return NULL;
66
67 if (unlikely(sk->sk_prot == &tcp_prot)) {
68 /* we are being invoked after mptcp_accept() has
69 * accepted a non-mp-capable flow: sk is a tcp_sk,
70 * not an mptcp one.
71 *
72 * Hand the socket over to tcp so all further socket ops
73 * bypass mptcp.
74 */
75 sock->ops = &inet_stream_ops;
76 return sock;
77#if IS_ENABLED(CONFIG_MPTCP_IPV6)
78 } else if (unlikely(sk->sk_prot == &tcpv6_prot)) {
79 sock->ops = &inet6_stream_ops;
80 return sock;
81#endif
82 }
83
84 return NULL;
85}
86
8ab183de 87static struct socket *__mptcp_tcp_fallback(struct mptcp_sock *msk)
cec37a6e 88{
0b4f33de
FW		 89 struct socket *sock;
90
cec37a6e
PK		 91 sock_owned_by_me((const struct sock *)msk);
92
0b4f33de
FW		 93 sock = mptcp_is_tcpsk((struct sock *)msk);
94 if (unlikely(sock))
95 return sock;
96
8ab183de 97 if (likely(!__mptcp_needs_tcp_fallback(msk)))
cec37a6e
PK		 98 return NULL;
99
e154659b 100 return msk->subflow;
cec37a6e
PK		 101}
102
2303f994
PK		 103static bool __mptcp_can_create_subflow(const struct mptcp_sock *msk)
104{
8ab183de 105 return !msk->first;
2303f994
PK		 106}
107
108static struct socket *__mptcp_socket_create(struct mptcp_sock *msk, int state)
109{
110 struct mptcp_subflow_context *subflow;
111 struct sock *sk = (struct sock *)msk;
112 struct socket *ssock;
113 int err;
114
0b4f33de
FW		 115 ssock = __mptcp_tcp_fallback(msk);
116 if (unlikely(ssock))
117 return ssock;
118
2303f994
PK		 119 ssock = __mptcp_nmpc_socket(msk);
120 if (ssock)
121 goto set_state;
122
123 if (!__mptcp_can_create_subflow(msk))
124 return ERR_PTR(-EINVAL);
125
126 err = mptcp_subflow_create_socket(sk, &ssock);
127 if (err)
128 return ERR_PTR(err);
129
8ab183de 130 msk->first = ssock->sk;
2303f994
PK		 131 msk->subflow = ssock;
132 subflow = mptcp_subflow_ctx(ssock->sk);
cec37a6e 133 list_add(&subflow->node, &msk->conn_list);
2303f994
PK		 134 subflow->request_mptcp = 1;
135
136set_state:
137 if (state != MPTCP_SAME_STATE)
138 inet_sk_state_store(sk, state);
139 return ssock;
140}
141
6771bfd9
FW		 142static void __mptcp_move_skb(struct mptcp_sock *msk, struct sock *ssk,
143 struct sk_buff *skb,
144 unsigned int offset, size_t copy_len)
145{
146 struct sock *sk = (struct sock *)msk;
147
148 __skb_unlink(skb, &ssk->sk_receive_queue);
600911ff 149 skb_set_owner_r(skb, sk);
6771bfd9
FW		 150 __skb_queue_tail(&sk->sk_receive_queue, skb);
151
152 msk->ack_seq += copy_len;
153 MPTCP_SKB_CB(skb)->offset = offset;
154}
155
de06f573
FW		 156/* both sockets must be locked */
157static bool mptcp_subflow_dsn_valid(const struct mptcp_sock *msk,
158 struct sock *ssk)
159{
160 struct mptcp_subflow_context *subflow = mptcp_subflow_ctx(ssk);
161 u64 dsn = mptcp_subflow_get_mapped_dsn(subflow);
162
163 /* revalidate data sequence number.
164 *
165 * mptcp_subflow_data_available() is usually called
166 * without msk lock. Its unlikely (but possible)
167 * that msk->ack_seq has been advanced since the last
168 * call found in-sequence data.
169 */
170 if (likely(dsn == msk->ack_seq))
171 return true;
172
173 subflow->data_avail = 0;
174 return mptcp_subflow_data_available(ssk);
175}
176
6771bfd9
FW		 177static bool __mptcp_move_skbs_from_subflow(struct mptcp_sock *msk,
178 struct sock *ssk,
179 unsigned int *bytes)
180{
181 struct mptcp_subflow_context *subflow = mptcp_subflow_ctx(ssk);
600911ff 182 struct sock *sk = (struct sock *)msk;
6771bfd9
FW		 183 unsigned int moved = 0;
184 bool more_data_avail;
185 struct tcp_sock *tp;
186 bool done = false;
600911ff 187
de06f573
FW		 188 if (!mptcp_subflow_dsn_valid(msk, ssk)) {
189 *bytes = 0;
190 return false;
191 }
192
ec33916d
FW		 193 if (!(sk->sk_userlocks & SOCK_RCVBUF_LOCK)) {
194 int rcvbuf = max(ssk->sk_rcvbuf, sk->sk_rcvbuf);
195
196 if (rcvbuf > sk->sk_rcvbuf)
197 sk->sk_rcvbuf = rcvbuf;
198 }
6771bfd9
FW		 199
200 tp = tcp_sk(ssk);
201 do {
202 u32 map_remaining, offset;
203 u32 seq = tp->copied_seq;
204 struct sk_buff *skb;
205 bool fin;
206
207 /* try to move as much data as available */
208 map_remaining = subflow->map_data_len -
209 mptcp_subflow_get_map_offset(subflow);
210
211 skb = skb_peek(&ssk->sk_receive_queue);
212 if (!skb)
213 break;
214
215 offset = seq - TCP_SKB_CB(skb)->seq;
216 fin = TCP_SKB_CB(skb)->tcp_flags & TCPHDR_FIN;
217 if (fin) {
218 done = true;
219 seq++;
220 }
221
222 if (offset < skb->len) {
223 size_t len = skb->len - offset;
224
225 if (tp->urg_data)
226 done = true;
227
228 __mptcp_move_skb(msk, ssk, skb, offset, len);
229 seq += len;
230 moved += len;
231
232 if (WARN_ON_ONCE(map_remaining < len))
233 break;
234 } else {
235 WARN_ON_ONCE(!fin);
236 sk_eat_skb(ssk, skb);
237 done = true;
238 }
239
240 WRITE_ONCE(tp->copied_seq, seq);
241 more_data_avail = mptcp_subflow_data_available(ssk);
600911ff
FW		 242
243 if (atomic_read(&sk->sk_rmem_alloc) > READ_ONCE(sk->sk_rcvbuf)) {
244 done = true;
245 break;
246 }
6771bfd9
FW		 247 } while (more_data_avail);
248
249 *bytes = moved;
250
251 return done;
252}
253
2e52213c
FW		 254/* In most cases we will be able to lock the mptcp socket. If its already
255 * owned, we need to defer to the work queue to avoid ABBA deadlock.
256 */
257static bool move_skbs_to_msk(struct mptcp_sock *msk, struct sock *ssk)
258{
259 struct sock *sk = (struct sock *)msk;
260 unsigned int moved = 0;
261
262 if (READ_ONCE(sk->sk_lock.owned))
263 return false;
264
265 if (unlikely(!spin_trylock_bh(&sk->sk_lock.slock)))
266 return false;
267
268 /* must re-check after taking the lock */
269 if (!READ_ONCE(sk->sk_lock.owned))
270 __mptcp_move_skbs_from_subflow(msk, ssk, &moved);
271
272 spin_unlock_bh(&sk->sk_lock.slock);
273
274 return moved > 0;
275}
276
277void mptcp_data_ready(struct sock *sk, struct sock *ssk)
101f6f85
FW		 278{
279 struct mptcp_sock *msk = mptcp_sk(sk);
280
281 set_bit(MPTCP_DATA_READY, &msk->flags);
6771bfd9 282
2e52213c
FW		 283 if (atomic_read(&sk->sk_rmem_alloc) < READ_ONCE(sk->sk_rcvbuf) &&
284 move_skbs_to_msk(msk, ssk))
285 goto wake;
286
600911ff
FW		 287 /* don't schedule if mptcp sk is (still) over limit */
288 if (atomic_read(&sk->sk_rmem_alloc) > READ_ONCE(sk->sk_rcvbuf))
289 goto wake;
290
14c441b5
PA		 291 /* mptcp socket is owned, release_cb should retry */
292 if (!test_and_set_bit(TCP_DELACK_TIMER_DEFERRED,
293 &sk->sk_tsq_flags)) {
294 sock_hold(sk);
6771bfd9 295
14c441b5
PA		 296 /* need to try again, its possible release_cb() has already
297 * been called after the test_and_set_bit() above.
298 */
299 move_skbs_to_msk(msk, ssk);
300 }
600911ff 301wake:
101f6f85
FW		 302 sk->sk_data_ready(sk);
303}
304
ec3edaa7
PK		 305static void __mptcp_flush_join_list(struct mptcp_sock *msk)
306{
307 if (likely(list_empty(&msk->join_list)))
308 return;
309
310 spin_lock_bh(&msk->join_list_lock);
311 list_splice_tail_init(&msk->join_list, &msk->conn_list);
312 spin_unlock_bh(&msk->join_list_lock);
313}
314
b51f9b80
PA		 315static void mptcp_set_timeout(const struct sock *sk, const struct sock *ssk)
316{
317 long tout = ssk && inet_csk(ssk)->icsk_pending ?
318 inet_csk(ssk)->icsk_timeout - jiffies : 0;
319
320 if (tout <= 0)
321 tout = mptcp_sk(sk)->timer_ival;
322 mptcp_sk(sk)->timer_ival = tout > 0 ? tout : TCP_RTO_MIN;
323}
324
325static bool mptcp_timer_pending(struct sock *sk)
326{
327 return timer_pending(&inet_csk(sk)->icsk_retransmit_timer);
328}
329
330static void mptcp_reset_timer(struct sock *sk)
331{
332 struct inet_connection_sock *icsk = inet_csk(sk);
333 unsigned long tout;
334
335 /* should never be called with mptcp level timer cleared */
336 tout = READ_ONCE(mptcp_sk(sk)->timer_ival);
337 if (WARN_ON_ONCE(!tout))
338 tout = TCP_RTO_MIN;
339 sk_reset_timer(sk, &icsk->icsk_retransmit_timer, jiffies + tout);
340}
341
342void mptcp_data_acked(struct sock *sk)
343{
344 mptcp_reset_timer(sk);
3b1d6210
PA		 345
346 if (!sk_stream_is_writeable(sk) &&
347 schedule_work(&mptcp_sk(sk)->work))
348 sock_hold(sk);
b51f9b80
PA		 349}
350
59832e24
FW		 351void mptcp_subflow_eof(struct sock *sk)
352{
353 struct mptcp_sock *msk = mptcp_sk(sk);
354
355 if (!test_and_set_bit(MPTCP_WORK_EOF, &msk->flags) &&
356 schedule_work(&msk->work))
357 sock_hold(sk);
358}
359
b51f9b80
PA		 360static void mptcp_stop_timer(struct sock *sk)
361{
362 struct inet_connection_sock *icsk = inet_csk(sk);
363
364 sk_stop_timer(sk, &icsk->icsk_retransmit_timer);
365 mptcp_sk(sk)->timer_ival = 0;
366}
367
6d0060f6
MM		 368static bool mptcp_ext_cache_refill(struct mptcp_sock *msk)
369{
370 if (!msk->cached_ext)
371 msk->cached_ext = __skb_ext_alloc();
372
373 return !!msk->cached_ext;
374}
375
7a6a6cbc
PA		 376static struct sock *mptcp_subflow_recv_lookup(const struct mptcp_sock *msk)
377{
378 struct mptcp_subflow_context *subflow;
379 struct sock *sk = (struct sock *)msk;
380
381 sock_owned_by_me(sk);
382
383 mptcp_for_each_subflow(msk, subflow) {
384 if (subflow->data_avail)
385 return mptcp_subflow_tcp_sock(subflow);
386 }
387
388 return NULL;
389}
390
3f8e0aae
PA		 391static bool mptcp_skb_can_collapse_to(u64 write_seq,
392 const struct sk_buff *skb,
393 const struct mptcp_ext *mpext)
57040755
PA		 394{
395 if (!tcp_skb_can_collapse_to(skb))
396 return false;
397
398 /* can collapse only if MPTCP level sequence is in order */
3f8e0aae 399 return mpext && mpext->data_seq + mpext->data_len == write_seq;
57040755
PA		 400}
401
18b683bf
PA		 402static bool mptcp_frag_can_collapse_to(const struct mptcp_sock *msk,
403 const struct page_frag *pfrag,
404 const struct mptcp_data_frag *df)
405{
406 return df && pfrag->page == df->page &&
407 df->data_seq + df->data_len == msk->write_seq;
408}
409
d027236c
PA		 410static void dfrag_uncharge(struct sock *sk, int len)
411{
412 sk_mem_uncharge(sk, len);
7948f6cc 413 sk_wmem_queued_add(sk, -len);
d027236c
PA		 414}
415
416static void dfrag_clear(struct sock *sk, struct mptcp_data_frag *dfrag)
18b683bf 417{
d027236c
PA		 418 int len = dfrag->data_len + dfrag->overhead;
419
18b683bf 420 list_del(&dfrag->list);
d027236c 421 dfrag_uncharge(sk, len);
18b683bf
PA		 422 put_page(dfrag->page);
423}
424
425static void mptcp_clean_una(struct sock *sk)
426{
427 struct mptcp_sock *msk = mptcp_sk(sk);
428 struct mptcp_data_frag *dtmp, *dfrag;
429 u64 snd_una = atomic64_read(&msk->snd_una);
d027236c 430 bool cleaned = false;
18b683bf
PA		 431
432 list_for_each_entry_safe(dfrag, dtmp, &msk->rtx_queue, list) {
433 if (after64(dfrag->data_seq + dfrag->data_len, snd_una))
434 break;
435
d027236c
PA		 436 dfrag_clear(sk, dfrag);
437 cleaned = true;
438 }
439
7948f6cc
FW		 440 dfrag = mptcp_rtx_head(sk);
441 if (dfrag && after64(snd_una, dfrag->data_seq)) {
442 u64 delta = dfrag->data_seq + dfrag->data_len - snd_una;
443
444 dfrag->data_seq += delta;
445 dfrag->data_len -= delta;
446
447 dfrag_uncharge(sk, delta);
448 cleaned = true;
449 }
450
d027236c
PA		 451 if (cleaned) {
452 sk_mem_reclaim_partial(sk);
7948f6cc
FW		 453
454 /* Only wake up writers if a subflow is ready */
455 if (test_bit(MPTCP_SEND_SPACE, &msk->flags))
456 sk_stream_write_space(sk);
18b683bf
PA		 457 }
458}
459
460/* ensure we get enough memory for the frag hdr, beyond some minimal amount of
461 * data
462 */
463static bool mptcp_page_frag_refill(struct sock *sk, struct page_frag *pfrag)
464{
465 if (likely(skb_page_frag_refill(32U + sizeof(struct mptcp_data_frag),
466 pfrag, sk->sk_allocation)))
467 return true;
468
469 sk->sk_prot->enter_memory_pressure(sk);
470 sk_stream_moderate_sndbuf(sk);
471 return false;
472}
473
474static struct mptcp_data_frag *
475mptcp_carve_data_frag(const struct mptcp_sock *msk, struct page_frag *pfrag,
476 int orig_offset)
477{
478 int offset = ALIGN(orig_offset, sizeof(long));
479 struct mptcp_data_frag *dfrag;
480
481 dfrag = (struct mptcp_data_frag *)(page_to_virt(pfrag->page) + offset);
482 dfrag->data_len = 0;
483 dfrag->data_seq = msk->write_seq;
484 dfrag->overhead = offset - orig_offset + sizeof(struct mptcp_data_frag);
485 dfrag->offset = offset + sizeof(struct mptcp_data_frag);
486 dfrag->page = pfrag->page;
487
488 return dfrag;
489}
490
6d0060f6 491static int mptcp_sendmsg_frag(struct sock *sk, struct sock *ssk,
3f8e0aae
PA		 492 struct msghdr *msg, struct mptcp_data_frag *dfrag,
493 long *timeo, int *pmss_now,
57040755 494 int *ps_goal)
6d0060f6 495{
18b683bf
PA		 496 int mss_now, avail_size, size_goal, offset, ret, frag_truesize = 0;
497 bool dfrag_collapsed, can_collapse = false;
6d0060f6
MM		 498 struct mptcp_sock *msk = mptcp_sk(sk);
499 struct mptcp_ext *mpext = NULL;
3f8e0aae 500 bool retransmission = !!dfrag;
57040755 501 struct sk_buff *skb, *tail;
6d0060f6 502 struct page_frag *pfrag;
3f8e0aae
PA		 503 struct page *page;
504 u64 *write_seq;
6d0060f6
MM		 505 size_t psize;
506
507 /* use the mptcp page cache so that we can easily move the data
508 * from one substream to another, but do per subflow memory accounting
3f8e0aae
PA		 509 * Note: pfrag is used only !retransmission, but the compiler if
510 * fooled into a warning if we don't init here
6d0060f6
MM		 511 */
512 pfrag = sk_page_frag(sk);
3f8e0aae 513 while ((!retransmission && !mptcp_page_frag_refill(ssk, pfrag)) ||
6d0060f6
MM		 514 !mptcp_ext_cache_refill(msk)) {
515 ret = sk_stream_wait_memory(ssk, timeo);
516 if (ret)
517 return ret;
18b683bf
PA		 518
519 /* if sk_stream_wait_memory() sleeps snd_una can change
520 * significantly, refresh the rtx queue
521 */
522 mptcp_clean_una(sk);
523
8ab183de
PA		 524 if (unlikely(__mptcp_needs_tcp_fallback(msk)))
525 return 0;
6d0060f6 526 }
3f8e0aae
PA		 527 if (!retransmission) {
528 write_seq = &msk->write_seq;
529 page = pfrag->page;
530 } else {
531 write_seq = &dfrag->data_seq;
532 page = dfrag->page;
533 }
6d0060f6
MM		 534
535 /* compute copy limit */
536 mss_now = tcp_send_mss(ssk, &size_goal, msg->msg_flags);
57040755
PA		 537 *pmss_now = mss_now;
538 *ps_goal = size_goal;
539 avail_size = size_goal;
540 skb = tcp_write_queue_tail(ssk);
541 if (skb) {
542 mpext = skb_ext_find(skb, SKB_EXT_MPTCP);
543
544 /* Limit the write to the size available in the
545 * current skb, if any, so that we create at most a new skb.
546 * Explicitly tells TCP internals to avoid collapsing on later
547 * queue management operation, to avoid breaking the ext <->
548 * SSN association set here
549 */
550 can_collapse = (size_goal - skb->len > 0) &&
3f8e0aae 551 mptcp_skb_can_collapse_to(*write_seq, skb, mpext);
57040755
PA		 552 if (!can_collapse)
553 TCP_SKB_CB(skb)->eor = 1;
554 else
555 avail_size = size_goal - skb->len;
556 }
18b683bf 557
3f8e0aae
PA		 558 if (!retransmission) {
559 /* reuse tail pfrag, if possible, or carve a new one from the
560 * page allocator
561 */
562 dfrag = mptcp_rtx_tail(sk);
563 offset = pfrag->offset;
564 dfrag_collapsed = mptcp_frag_can_collapse_to(msk, pfrag, dfrag);
565 if (!dfrag_collapsed) {
566 dfrag = mptcp_carve_data_frag(msk, pfrag, offset);
567 offset = dfrag->offset;
568 frag_truesize = dfrag->overhead;
569 }
570 psize = min_t(size_t, pfrag->size - offset, avail_size);
571
572 /* Copy to page */
573 pr_debug("left=%zu", msg_data_left(msg));
574 psize = copy_page_from_iter(pfrag->page, offset,
575 min_t(size_t, msg_data_left(msg),
576 psize),
577 &msg->msg_iter);
578 pr_debug("left=%zu", msg_data_left(msg));
579 if (!psize)
580 return -EINVAL;
581
582 if (!sk_wmem_schedule(sk, psize + dfrag->overhead))
583 return -ENOMEM;
584 } else {
18b683bf 585 offset = dfrag->offset;
3f8e0aae 586 psize = min_t(size_t, dfrag->data_len, avail_size);
18b683bf 587 }
d027236c 588
57040755
PA		 589 /* tell the TCP stack to delay the push so that we can safely
590 * access the skb after the sendpages call
6d0060f6 591 */
3f8e0aae 592 ret = do_tcp_sendpages(ssk, page, offset, psize,
6d0060f6
MM		 593 msg->msg_flags | MSG_SENDPAGE_NOTLAST);
594 if (ret <= 0)
595 return ret;
18b683bf
PA		 596
597 frag_truesize += ret;
3f8e0aae
PA		 598 if (!retransmission) {
599 if (unlikely(ret < psize))
600 iov_iter_revert(&msg->msg_iter, psize - ret);
6d0060f6 601
3f8e0aae
PA		 602 /* send successful, keep track of sent data for mptcp-level
603 * retransmission
604 */
605 dfrag->data_len += ret;
606 if (!dfrag_collapsed) {
607 get_page(dfrag->page);
608 list_add_tail(&dfrag->list, &msk->rtx_queue);
609 sk_wmem_queued_add(sk, frag_truesize);
610 } else {
611 sk_wmem_queued_add(sk, ret);
612 }
18b683bf 613
3f8e0aae
PA		 614 /* charge data on mptcp rtx queue to the master socket
615 * Note: we charge such data both to sk and ssk
616 */
617 sk->sk_forward_alloc -= frag_truesize;
618 }
d027236c 619
57040755
PA		 620 /* if the tail skb extension is still the cached one, collapsing
621 * really happened. Note: we can't check for 'same skb' as the sk_buff
622 * hdr on tail can be transmitted, freed and re-allocated by the
623 * do_tcp_sendpages() call
624 */
625 tail = tcp_write_queue_tail(ssk);
626 if (mpext && tail && mpext == skb_ext_find(tail, SKB_EXT_MPTCP)) {
627 WARN_ON_ONCE(!can_collapse);
628 mpext->data_len += ret;
629 goto out;
630 }
631
6d0060f6
MM		 632 skb = tcp_write_queue_tail(ssk);
633 mpext = __skb_ext_set(skb, SKB_EXT_MPTCP, msk->cached_ext);
634 msk->cached_ext = NULL;
635
636 memset(mpext, 0, sizeof(*mpext));
3f8e0aae 637 mpext->data_seq = *write_seq;
6d0060f6
MM		 638 mpext->subflow_seq = mptcp_subflow_ctx(ssk)->rel_write_seq;
639 mpext->data_len = ret;
640 mpext->use_map = 1;
641 mpext->dsn64 = 1;
642
643 pr_debug("data_seq=%llu subflow_seq=%u data_len=%u dsn64=%d",
644 mpext->data_seq, mpext->subflow_seq, mpext->data_len,
645 mpext->dsn64);
646
57040755 647out:
3f8e0aae
PA		 648 if (!retransmission)
649 pfrag->offset += frag_truesize;
650 *write_seq += ret;
6d0060f6
MM		 651 mptcp_subflow_ctx(ssk)->rel_write_seq += ret;
652
6d0060f6
MM		 653 return ret;
654}
655
f296234c
PK		 656static struct sock *mptcp_subflow_get_send(struct mptcp_sock *msk)
657{
658 struct mptcp_subflow_context *subflow;
659 struct sock *backup = NULL;
660
661 sock_owned_by_me((const struct sock *)msk);
662
663 mptcp_for_each_subflow(msk, subflow) {
664 struct sock *ssk = mptcp_subflow_tcp_sock(subflow);
665
666 if (!sk_stream_memory_free(ssk)) {
667 struct socket *sock = ssk->sk_socket;
668
669 if (sock) {
670 clear_bit(MPTCP_SEND_SPACE, &msk->flags);
671 smp_mb__after_atomic();
672
673 /* enables sk->write_space() callbacks */
674 set_bit(SOCK_NOSPACE, &sock->flags);
675 }
676
677 return NULL;
678 }
679
680 if (subflow->backup) {
681 if (!backup)
682 backup = ssk;
683
684 continue;
685 }
686
687 return ssk;
688 }
689
690 return backup;
691}
692
1891c4a0
FW		 693static void ssk_check_wmem(struct mptcp_sock *msk, struct sock *ssk)
694{
695 struct socket *sock;
696
697 if (likely(sk_stream_is_writeable(ssk)))
698 return;
699
700 sock = READ_ONCE(ssk->sk_socket);
701
702 if (sock) {
703 clear_bit(MPTCP_SEND_SPACE, &msk->flags);
704 smp_mb__after_atomic();
705 /* set NOSPACE only after clearing SEND_SPACE flag */
706 set_bit(SOCK_NOSPACE, &sock->flags);
707 }
708}
709
f870fa0b
MM		 710static int mptcp_sendmsg(struct sock *sk, struct msghdr *msg, size_t len)
711{
57040755 712 int mss_now = 0, size_goal = 0, ret = 0;
f870fa0b 713 struct mptcp_sock *msk = mptcp_sk(sk);
cec37a6e 714 struct socket *ssock;
6d0060f6 715 size_t copied = 0;
cec37a6e 716 struct sock *ssk;
6d0060f6 717 long timeo;
f870fa0b
MM		 718
719 if (msg->msg_flags & ~(MSG_MORE | MSG_DONTWAIT | MSG_NOSIGNAL))
720 return -EOPNOTSUPP;
721
cec37a6e 722 lock_sock(sk);
1954b860
MM		 723
724 timeo = sock_sndtimeo(sk, msg->msg_flags & MSG_DONTWAIT);
725
726 if ((1 << sk->sk_state) & ~(TCPF_ESTABLISHED | TCPF_CLOSE_WAIT)) {
727 ret = sk_stream_wait_connect(sk, &timeo);
728 if (ret)
729 goto out;
730 }
731
e154659b 732fallback:
cec37a6e 733 ssock = __mptcp_tcp_fallback(msk);
8ab183de 734 if (unlikely(ssock)) {
e154659b 735 release_sock(sk);
cec37a6e
PK		 736 pr_debug("fallback passthrough");
737 ret = sock_sendmsg(ssock, msg);
8ab183de 738 return ret >= 0 ? ret + copied : (copied ? copied : ret);
cec37a6e
PK		 739 }
740
18b683bf
PA		 741 mptcp_clean_una(sk);
742
ec3edaa7 743 __mptcp_flush_join_list(msk);
f296234c
PK		 744 ssk = mptcp_subflow_get_send(msk);
745 while (!sk_stream_memory_free(sk) || !ssk) {
746 ret = sk_stream_wait_memory(sk, &timeo);
747 if (ret)
748 goto out;
749
18b683bf
PA		 750 mptcp_clean_una(sk);
751
f296234c
PK		 752 ssk = mptcp_subflow_get_send(msk);
753 if (list_empty(&msk->conn_list)) {
754 ret = -ENOTCONN;
755 goto out;
756 }
cec37a6e
PK		 757 }
758
6d0060f6 759 pr_debug("conn_list->subflow=%p", ssk);
cec37a6e 760
6d0060f6
MM		 761 lock_sock(ssk);
762 while (msg_data_left(msg)) {
3f8e0aae 763 ret = mptcp_sendmsg_frag(sk, ssk, msg, NULL, &timeo, &mss_now,
57040755 764 &size_goal);
6d0060f6
MM		 765 if (ret < 0)
766 break;
8ab183de 767 if (ret == 0 && unlikely(__mptcp_needs_tcp_fallback(msk))) {
e154659b
FW		 768 /* Can happen for passive sockets:
769 * 3WHS negotiated MPTCP, but first packet after is
770 * plain TCP (e.g. due to middlebox filtering unknown
771 * options).
772 *
773 * Fall back to TCP.
774 */
8ab183de 775 release_sock(ssk);
8ab183de
PA		 776 goto fallback;
777 }
6d0060f6
MM		 778
779 copied += ret;
780 }
781
b51f9b80 782 mptcp_set_timeout(sk, ssk);
57040755 783 if (copied) {
6d0060f6 784 ret = copied;
57040755
PA		 785 tcp_push(ssk, msg->msg_flags, mss_now, tcp_sk(ssk)->nonagle,
786 size_goal);
b51f9b80
PA		 787
788 /* start the timer, if it's not pending */
789 if (!mptcp_timer_pending(sk))
790 mptcp_reset_timer(sk);
57040755 791 }
6d0060f6 792
1891c4a0 793 ssk_check_wmem(msk, ssk);
6d0060f6 794 release_sock(ssk);
1954b860 795out:
cec37a6e
PK		 796 release_sock(sk);
797 return ret;
f870fa0b
MM		 798}
799
7a6a6cbc
PA		 800static void mptcp_wait_data(struct sock *sk, long *timeo)
801{
802 DEFINE_WAIT_FUNC(wait, woken_wake_function);
803 struct mptcp_sock *msk = mptcp_sk(sk);
804
805 add_wait_queue(sk_sleep(sk), &wait);
806 sk_set_bit(SOCKWQ_ASYNC_WAITDATA, sk);
807
808 sk_wait_event(sk, timeo,
809 test_and_clear_bit(MPTCP_DATA_READY, &msk->flags), &wait);
810
811 sk_clear_bit(SOCKWQ_ASYNC_WAITDATA, sk);
812 remove_wait_queue(sk_sleep(sk), &wait);
813}
814
6771bfd9
FW		 815static int __mptcp_recvmsg_mskq(struct mptcp_sock *msk,
816 struct msghdr *msg,
817 size_t len)
818{
819 struct sock *sk = (struct sock *)msk;
820 struct sk_buff *skb;
821 int copied = 0;
822
823 while ((skb = skb_peek(&sk->sk_receive_queue)) != NULL) {
824 u32 offset = MPTCP_SKB_CB(skb)->offset;
825 u32 data_len = skb->len - offset;
826 u32 count = min_t(size_t, len - copied, data_len);
827 int err;
828
829 err = skb_copy_datagram_msg(skb, offset, msg, count);
830 if (unlikely(err < 0)) {
831 if (!copied)
832 return err;
833 break;
834 }
835
836 copied += count;
837
838 if (count < data_len) {
839 MPTCP_SKB_CB(skb)->offset += count;
840 break;
841 }
842
843 __skb_unlink(skb, &sk->sk_receive_queue);
844 __kfree_skb(skb);
845
846 if (copied >= len)
847 break;
848 }
849
850 return copied;
851}
852
853static bool __mptcp_move_skbs(struct mptcp_sock *msk)
854{
855 unsigned int moved = 0;
856 bool done;
857
858 do {
859 struct sock *ssk = mptcp_subflow_recv_lookup(msk);
860
861 if (!ssk)
862 break;
863
864 lock_sock(ssk);
865 done = __mptcp_move_skbs_from_subflow(msk, ssk, &moved);
866 release_sock(ssk);
867 } while (!done);
868
869 return moved > 0;
870}
871
f870fa0b
MM		 872static int mptcp_recvmsg(struct sock *sk, struct msghdr *msg, size_t len,
873 int nonblock, int flags, int *addr_len)
874{
875 struct mptcp_sock *msk = mptcp_sk(sk);
cec37a6e 876 struct socket *ssock;
cec37a6e 877 int copied = 0;
7a6a6cbc
PA		 878 int target;
879 long timeo;
f870fa0b
MM		 880
881 if (msg->msg_flags & ~(MSG_WAITALL | MSG_DONTWAIT))
882 return -EOPNOTSUPP;
883
cec37a6e
PK		 884 lock_sock(sk);
885 ssock = __mptcp_tcp_fallback(msk);
8ab183de
PA		 886 if (unlikely(ssock)) {
887fallback:
e154659b 888 release_sock(sk);
cec37a6e
PK		 889 pr_debug("fallback-read subflow=%p",
890 mptcp_subflow_ctx(ssock->sk));
891 copied = sock_recvmsg(ssock, msg, flags);
cec37a6e
PK		 892 return copied;
893 }
894
7a6a6cbc
PA		 895 timeo = sock_rcvtimeo(sk, nonblock);
896
897 len = min_t(size_t, len, INT_MAX);
898 target = sock_rcvlowat(sk, flags & MSG_WAITALL, len);
ec3edaa7 899 __mptcp_flush_join_list(msk);
7a6a6cbc 900
6771bfd9 901 while (len > (size_t)copied) {
7a6a6cbc
PA		 902 int bytes_read;
903
6771bfd9
FW		 904 bytes_read = __mptcp_recvmsg_mskq(msk, msg, len - copied);
905 if (unlikely(bytes_read < 0)) {
906 if (!copied)
907 copied = bytes_read;
908 goto out_err;
909 }
7a6a6cbc 910
6771bfd9 911 copied += bytes_read;
7a6a6cbc 912
6771bfd9
FW		 913 if (skb_queue_empty(&sk->sk_receive_queue) &&
914 __mptcp_move_skbs(msk))
915 continue;
7a6a6cbc
PA		 916
917 /* only the master socket status is relevant here. The exit
918 * conditions mirror closely tcp_recvmsg()
919 */
920 if (copied >= target)
921 break;
922
923 if (copied) {
924 if (sk->sk_err ||
925 sk->sk_state == TCP_CLOSE ||
926 (sk->sk_shutdown & RCV_SHUTDOWN) ||
927 !timeo ||
928 signal_pending(current))
929 break;
930 } else {
931 if (sk->sk_err) {
932 copied = sock_error(sk);
933 break;
934 }
935
936 if (sk->sk_shutdown & RCV_SHUTDOWN)
937 break;
938
939 if (sk->sk_state == TCP_CLOSE) {
940 copied = -ENOTCONN;
941 break;
942 }
943
944 if (!timeo) {
945 copied = -EAGAIN;
946 break;
947 }
948
949 if (signal_pending(current)) {
950 copied = sock_intr_errno(timeo);
951 break;
952 }
953 }
954
955 pr_debug("block timeout %ld", timeo);
7a6a6cbc 956 mptcp_wait_data(sk, &timeo);
0a82e230
PA		 957 ssock = __mptcp_tcp_fallback(msk);
958 if (unlikely(ssock))
8ab183de 959 goto fallback;
cec37a6e
PK		 960 }
961
6771bfd9
FW		 962 if (skb_queue_empty(&sk->sk_receive_queue)) {
963 /* entire backlog drained, clear DATA_READY. */
7a6a6cbc 964 clear_bit(MPTCP_DATA_READY, &msk->flags);
cec37a6e 965
6771bfd9
FW		 966 /* .. race-breaker: ssk might have gotten new data
967 * after last __mptcp_move_skbs() returned false.
7a6a6cbc 968 */
6771bfd9 969 if (unlikely(__mptcp_move_skbs(msk)))
7a6a6cbc 970 set_bit(MPTCP_DATA_READY, &msk->flags);
6771bfd9
FW		 971 } else if (unlikely(!test_bit(MPTCP_DATA_READY, &msk->flags))) {
972 /* data to read but mptcp_wait_data() cleared DATA_READY */
973 set_bit(MPTCP_DATA_READY, &msk->flags);
7a6a6cbc 974 }
6771bfd9 975out_err:
7a6a6cbc 976 release_sock(sk);
cec37a6e
PK		 977 return copied;
978}
979
b51f9b80
PA		 980static void mptcp_retransmit_handler(struct sock *sk)
981{
982 struct mptcp_sock *msk = mptcp_sk(sk);
983
3b1d6210 984 if (atomic64_read(&msk->snd_una) == msk->write_seq) {
b51f9b80 985 mptcp_stop_timer(sk);
3b1d6210
PA		 986 } else {
987 set_bit(MPTCP_WORK_RTX, &msk->flags);
988 if (schedule_work(&msk->work))
989 sock_hold(sk);
990 }
b51f9b80
PA		 991}
992
993static void mptcp_retransmit_timer(struct timer_list *t)
994{
995 struct inet_connection_sock *icsk = from_timer(icsk, t,
996 icsk_retransmit_timer);
997 struct sock *sk = &icsk->icsk_inet.sk;
998
999 bh_lock_sock(sk);
1000 if (!sock_owned_by_user(sk)) {
1001 mptcp_retransmit_handler(sk);
1002 } else {
1003 /* delegate our work to tcp_release_cb() */
1004 if (!test_and_set_bit(TCP_WRITE_TIMER_DEFERRED,
1005 &sk->sk_tsq_flags))
1006 sock_hold(sk);
1007 }
1008 bh_unlock_sock(sk);
1009 sock_put(sk);
1010}
1011
3b1d6210
PA		 1012/* Find an idle subflow. Return NULL if there is unacked data at tcp
1013 * level.
1014 *
1015 * A backup subflow is returned only if that is the only kind available.
1016 */
1017static struct sock *mptcp_subflow_get_retrans(const struct mptcp_sock *msk)
1018{
1019 struct mptcp_subflow_context *subflow;
1020 struct sock *backup = NULL;
1021
1022 sock_owned_by_me((const struct sock *)msk);
1023
1024 mptcp_for_each_subflow(msk, subflow) {
1025 struct sock *ssk = mptcp_subflow_tcp_sock(subflow);
1026
1027 /* still data outstanding at TCP level? Don't retransmit. */
1028 if (!tcp_write_queue_empty(ssk))
1029 return NULL;
1030
1031 if (subflow->backup) {
1032 if (!backup)
1033 backup = ssk;
1034 continue;
1035 }
1036
1037 return ssk;
1038 }
1039
1040 return backup;
1041}
1042
cec37a6e
PK		 1043/* subflow sockets can be either outgoing (connect) or incoming
1044 * (accept).
1045 *
1046 * Outgoing subflows use in-kernel sockets.
1047 * Incoming subflows do not have their own 'struct socket' allocated,
1048 * so we need to use tcp_close() after detaching them from the mptcp
1049 * parent socket.
1050 */
1051static void __mptcp_close_ssk(struct sock *sk, struct sock *ssk,
1052 struct mptcp_subflow_context *subflow,
1053 long timeout)
1054{
1055 struct socket *sock = READ_ONCE(ssk->sk_socket);
1056
1057 list_del(&subflow->node);
1058
1059 if (sock && sock != sk->sk_socket) {
1060 /* outgoing subflow */
1061 sock_release(sock);
1062 } else {
1063 /* incoming subflow */
1064 tcp_close(ssk, timeout);
1065 }
f870fa0b
MM		 1066}
1067
dc24f8b4
PA		 1068static unsigned int mptcp_sync_mss(struct sock *sk, u32 pmtu)
1069{
1070 return 0;
1071}
1072
59832e24
FW		 1073static void mptcp_check_for_eof(struct mptcp_sock *msk)
1074{
1075 struct mptcp_subflow_context *subflow;
1076 struct sock *sk = (struct sock *)msk;
1077 int receivers = 0;
1078
1079 mptcp_for_each_subflow(msk, subflow)
1080 receivers += !subflow->rx_eof;
1081
1082 if (!receivers && !(sk->sk_shutdown & RCV_SHUTDOWN)) {
1083 /* hopefully temporary hack: propagate shutdown status
1084 * to msk, when all subflows agree on it
1085 */
1086 sk->sk_shutdown |= RCV_SHUTDOWN;
1087
1088 smp_mb__before_atomic(); /* SHUTDOWN must be visible first */
1089 set_bit(MPTCP_DATA_READY, &msk->flags);
1090 sk->sk_data_ready(sk);
1091 }
1092}
1093
80992017
PA		 1094static void mptcp_worker(struct work_struct *work)
1095{
1096 struct mptcp_sock *msk = container_of(work, struct mptcp_sock, work);
3b1d6210
PA		 1097 struct sock *ssk, *sk = &msk->sk.icsk_inet.sk;
1098 int orig_len, orig_offset, ret, mss_now = 0, size_goal = 0;
1099 struct mptcp_data_frag *dfrag;
1100 u64 orig_write_seq;
1101 size_t copied = 0;
1102 struct msghdr msg;
1103 long timeo = 0;
80992017
PA		 1104
1105 lock_sock(sk);
3b1d6210 1106 mptcp_clean_una(sk);
ec3edaa7 1107 __mptcp_flush_join_list(msk);
6771bfd9 1108 __mptcp_move_skbs(msk);
3b1d6210 1109
59832e24
FW		 1110 if (test_and_clear_bit(MPTCP_WORK_EOF, &msk->flags))
1111 mptcp_check_for_eof(msk);
1112
3b1d6210
PA		 1113 if (!test_and_clear_bit(MPTCP_WORK_RTX, &msk->flags))
1114 goto unlock;
1115
1116 dfrag = mptcp_rtx_head(sk);
1117 if (!dfrag)
1118 goto unlock;
1119
1120 ssk = mptcp_subflow_get_retrans(msk);
1121 if (!ssk)
1122 goto reset_unlock;
1123
1124 lock_sock(ssk);
1125
1126 msg.msg_flags = MSG_DONTWAIT;
1127 orig_len = dfrag->data_len;
1128 orig_offset = dfrag->offset;
1129 orig_write_seq = dfrag->data_seq;
1130 while (dfrag->data_len > 0) {
1131 ret = mptcp_sendmsg_frag(sk, ssk, &msg, dfrag, &timeo, &mss_now,
1132 &size_goal);
1133 if (ret < 0)
1134 break;
1135
fc518953 1136 MPTCP_INC_STATS(sock_net(sk), MPTCP_MIB_RETRANSSEGS);
3b1d6210
PA		 1137 copied += ret;
1138 dfrag->data_len -= ret;
1139 dfrag->offset += ret;
1140 }
1141 if (copied)
1142 tcp_push(ssk, msg.msg_flags, mss_now, tcp_sk(ssk)->nonagle,
1143 size_goal);
1144
1145 dfrag->data_seq = orig_write_seq;
1146 dfrag->offset = orig_offset;
1147 dfrag->data_len = orig_len;
1148
1149 mptcp_set_timeout(sk, ssk);
1150 release_sock(ssk);
1151
1152reset_unlock:
1153 if (!mptcp_timer_pending(sk))
1154 mptcp_reset_timer(sk);
1155
1156unlock:
80992017
PA		 1157 release_sock(sk);
1158 sock_put(sk);
1159}
1160
784325e9 1161static int __mptcp_init_sock(struct sock *sk)
f870fa0b 1162{
cec37a6e
PK		 1163 struct mptcp_sock *msk = mptcp_sk(sk);
1164
ec3edaa7
PK		 1165 spin_lock_init(&msk->join_list_lock);
1166
cec37a6e 1167 INIT_LIST_HEAD(&msk->conn_list);
ec3edaa7 1168 INIT_LIST_HEAD(&msk->join_list);
18b683bf 1169 INIT_LIST_HEAD(&msk->rtx_queue);
1891c4a0 1170 __set_bit(MPTCP_SEND_SPACE, &msk->flags);
80992017 1171 INIT_WORK(&msk->work, mptcp_worker);
cec37a6e 1172
8ab183de 1173 msk->first = NULL;
dc24f8b4 1174 inet_csk(sk)->icsk_sync_mss = mptcp_sync_mss;
8ab183de 1175
1b1c7a0e
PK		 1176 mptcp_pm_data_init(msk);
1177
b51f9b80
PA		 1178 /* re-use the csk retrans timer for MPTCP-level retrans */
1179 timer_setup(&msk->sk.icsk_retransmit_timer, mptcp_retransmit_timer, 0);
1180
f870fa0b
MM		 1181 return 0;
1182}
1183
784325e9
MB		 1184static int mptcp_init_sock(struct sock *sk)
1185{
fc518953
FW		 1186 struct net *net = sock_net(sk);
1187 int ret;
18b683bf 1188
fc518953
FW		 1189 if (!mptcp_is_enabled(net))
1190 return -ENOPROTOOPT;
1191
1192 if (unlikely(!net->mib.mptcp_statistics) && !mptcp_mib_alloc(net))
1193 return -ENOMEM;
1194
1195 ret = __mptcp_init_sock(sk);
18b683bf
PA		 1196 if (ret)
1197 return ret;
1198
d027236c 1199 sk_sockets_allocated_inc(sk);
3f8e0aae 1200 sk->sk_sndbuf = sock_net(sk)->ipv4.sysctl_tcp_wmem[2];
d027236c 1201
18b683bf
PA		 1202 return 0;
1203}
1204
1205static void __mptcp_clear_xmit(struct sock *sk)
1206{
1207 struct mptcp_sock *msk = mptcp_sk(sk);
1208 struct mptcp_data_frag *dtmp, *dfrag;
1209
b51f9b80
PA		 1210 sk_stop_timer(sk, &msk->sk.icsk_retransmit_timer);
1211
18b683bf 1212 list_for_each_entry_safe(dfrag, dtmp, &msk->rtx_queue, list)
d027236c 1213 dfrag_clear(sk, dfrag);
784325e9
MB		 1214}
1215
80992017
PA		 1216static void mptcp_cancel_work(struct sock *sk)
1217{
1218 struct mptcp_sock *msk = mptcp_sk(sk);
1219
1220 if (cancel_work_sync(&msk->work))
1221 sock_put(sk);
1222}
1223
76c42a29
MM		 1224static void mptcp_subflow_shutdown(struct sock *ssk, int how,
1225 bool data_fin_tx_enable, u64 data_fin_tx_seq)
21498490
PK		 1226{
1227 lock_sock(ssk);
1228
1229 switch (ssk->sk_state) {
1230 case TCP_LISTEN:
1231 if (!(how & RCV_SHUTDOWN))
1232 break;
1233 /* fall through */
1234 case TCP_SYN_SENT:
1235 tcp_disconnect(ssk, O_NONBLOCK);
1236 break;
1237 default:
76c42a29
MM		 1238 if (data_fin_tx_enable) {
1239 struct mptcp_subflow_context *subflow;
1240
1241 subflow = mptcp_subflow_ctx(ssk);
1242 subflow->data_fin_tx_seq = data_fin_tx_seq;
1243 subflow->data_fin_tx_enable = 1;
1244 }
1245
21498490
PK		 1246 ssk->sk_shutdown |= how;
1247 tcp_shutdown(ssk, how);
1248 break;
1249 }
1250
1251 /* Wake up anyone sleeping in poll. */
1252 ssk->sk_state_change(ssk);
1253 release_sock(ssk);
1254}
1255
8ab183de 1256/* Called with msk lock held, releases such lock before returning */
2c22c06c 1257static void mptcp_close(struct sock *sk, long timeout)
f870fa0b 1258{
cec37a6e 1259 struct mptcp_subflow_context *subflow, *tmp;
f870fa0b 1260 struct mptcp_sock *msk = mptcp_sk(sk);
b2c5b614 1261 LIST_HEAD(conn_list);
76c42a29 1262 u64 data_fin_tx_seq;
f870fa0b 1263
2c22c06c
FW		 1264 lock_sock(sk);
1265
79c0949e 1266 mptcp_token_destroy(msk->token);
f870fa0b
MM		 1267 inet_sk_state_store(sk, TCP_CLOSE);
1268
ec3edaa7
PK		 1269 __mptcp_flush_join_list(msk);
1270
b2c5b614
FW		 1271 list_splice_init(&msk->conn_list, &conn_list);
1272
76c42a29
MM		 1273 data_fin_tx_seq = msk->write_seq;
1274
18b683bf
PA		 1275 __mptcp_clear_xmit(sk);
1276
b2c5b614
FW		 1277 release_sock(sk);
1278
1279 list_for_each_entry_safe(subflow, tmp, &conn_list, node) {
cec37a6e
PK		 1280 struct sock *ssk = mptcp_subflow_tcp_sock(subflow);
1281
76c42a29
MM		 1282 subflow->data_fin_tx_seq = data_fin_tx_seq;
1283 subflow->data_fin_tx_enable = 1;
cec37a6e 1284 __mptcp_close_ssk(sk, ssk, subflow, timeout);
f870fa0b
MM		 1285 }
1286
80992017 1287 mptcp_cancel_work(sk);
926bdeab 1288 mptcp_pm_close(msk);
80992017 1289
6771bfd9
FW		 1290 __skb_queue_purge(&sk->sk_receive_queue);
1291
cec37a6e 1292 sk_common_release(sk);
f870fa0b
MM		 1293}
1294
cf7da0d6
PK		 1295static void mptcp_copy_inaddrs(struct sock *msk, const struct sock *ssk)
1296{
1297#if IS_ENABLED(CONFIG_MPTCP_IPV6)
1298 const struct ipv6_pinfo *ssk6 = inet6_sk(ssk);
1299 struct ipv6_pinfo *msk6 = inet6_sk(msk);
1300
1301 msk->sk_v6_daddr = ssk->sk_v6_daddr;
1302 msk->sk_v6_rcv_saddr = ssk->sk_v6_rcv_saddr;
1303
1304 if (msk6 && ssk6) {
1305 msk6->saddr = ssk6->saddr;
1306 msk6->flow_label = ssk6->flow_label;
1307 }
1308#endif
1309
1310 inet_sk(msk)->inet_num = inet_sk(ssk)->inet_num;
1311 inet_sk(msk)->inet_dport = inet_sk(ssk)->inet_dport;
1312 inet_sk(msk)->inet_sport = inet_sk(ssk)->inet_sport;
1313 inet_sk(msk)->inet_daddr = inet_sk(ssk)->inet_daddr;
1314 inet_sk(msk)->inet_saddr = inet_sk(ssk)->inet_saddr;
1315 inet_sk(msk)->inet_rcv_saddr = inet_sk(ssk)->inet_rcv_saddr;
1316}
1317
18b683bf
PA		 1318static int mptcp_disconnect(struct sock *sk, int flags)
1319{
42c556fe
FW		 1320 /* Should never be called.
1321 * inet_stream_connect() calls ->disconnect, but that
1322 * refers to the subflow socket, not the mptcp one.
1323 */
1324 WARN_ON_ONCE(1);
1325 return 0;
18b683bf
PA		 1326}
1327
b0519de8
FW		 1328#if IS_ENABLED(CONFIG_MPTCP_IPV6)
1329static struct ipv6_pinfo *mptcp_inet6_sk(const struct sock *sk)
1330{
1331 unsigned int offset = sizeof(struct mptcp6_sock) - sizeof(struct ipv6_pinfo);
1332
1333 return (struct ipv6_pinfo *)(((u8 *)sk) + offset);
1334}
1335#endif
1336
fca5c82c 1337struct sock *mptcp_sk_clone(const struct sock *sk,
cfde141e 1338 const struct mptcp_options_received *mp_opt,
fca5c82c 1339 struct request_sock *req)
b0519de8 1340{
58b09919 1341 struct mptcp_subflow_request_sock *subflow_req = mptcp_subflow_rsk(req);
b0519de8 1342 struct sock *nsk = sk_clone_lock(sk, GFP_ATOMIC);
58b09919
PA		 1343 struct mptcp_sock *msk;
1344 u64 ack_seq;
b0519de8
FW		 1345
1346 if (!nsk)
1347 return NULL;
1348
1349#if IS_ENABLED(CONFIG_MPTCP_IPV6)
1350 if (nsk->sk_family == AF_INET6)
1351 inet_sk(nsk)->pinet6 = mptcp_inet6_sk(nsk);
1352#endif
1353
58b09919
PA		 1354 __mptcp_init_sock(nsk);
1355
1356 msk = mptcp_sk(nsk);
1357 msk->local_key = subflow_req->local_key;
1358 msk->token = subflow_req->token;
1359 msk->subflow = NULL;
1360
1361 if (unlikely(mptcp_token_new_accept(subflow_req->token, nsk))) {
9f5ca6a5 1362 nsk->sk_state = TCP_CLOSE;
58b09919
PA		 1363 bh_unlock_sock(nsk);
1364
1365 /* we can't call into mptcp_close() here - possible BH context
9f5ca6a5
FW		 1366 * free the sock directly.
1367 * sk_clone_lock() sets nsk refcnt to two, hence call sk_free()
1368 * too.
58b09919 1369 */
9f5ca6a5 1370 sk_common_release(nsk);
58b09919
PA		 1371 sk_free(nsk);
1372 return NULL;
1373 }
1374
1375 msk->write_seq = subflow_req->idsn + 1;
cc9d2566 1376 atomic64_set(&msk->snd_una, msk->write_seq);
cfde141e 1377 if (mp_opt->mp_capable) {
58b09919 1378 msk->can_ack = true;
cfde141e 1379 msk->remote_key = mp_opt->sndr_key;
58b09919
PA		 1380 mptcp_crypto_key_sha(msk->remote_key, NULL, &ack_seq);
1381 ack_seq++;
1382 msk->ack_seq = ack_seq;
1383 }
7f20d5fc 1384
5e20087d 1385 sock_reset_flag(nsk, SOCK_RCU_FREE);
7f20d5fc
PA		 1386 /* will be fully established after successful MPC subflow creation */
1387 inet_sk_state_store(nsk, TCP_SYN_RECV);
58b09919
PA		 1388 bh_unlock_sock(nsk);
1389
1390 /* keep a single reference */
1391 __sock_put(nsk);
b0519de8
FW		 1392 return nsk;
1393}
1394
cf7da0d6
PK		 1395static struct sock *mptcp_accept(struct sock *sk, int flags, int *err,
1396 bool kern)
1397{
1398 struct mptcp_sock *msk = mptcp_sk(sk);
1399 struct socket *listener;
1400 struct sock *newsk;
1401
1402 listener = __mptcp_nmpc_socket(msk);
1403 if (WARN_ON_ONCE(!listener)) {
1404 *err = -EINVAL;
1405 return NULL;
1406 }
1407
1408 pr_debug("msk=%p, listener=%p", msk, mptcp_subflow_ctx(listener->sk));
1409 newsk = inet_csk_accept(listener->sk, flags, err, kern);
1410 if (!newsk)
1411 return NULL;
1412
1413 pr_debug("msk=%p, subflow is mptcp=%d", msk, sk_is_mptcp(newsk));
1414
1415 if (sk_is_mptcp(newsk)) {
1416 struct mptcp_subflow_context *subflow;
1417 struct sock *new_mptcp_sock;
1418 struct sock *ssk = newsk;
1419
1420 subflow = mptcp_subflow_ctx(newsk);
58b09919 1421 new_mptcp_sock = subflow->conn;
cf7da0d6 1422
58b09919
PA		 1423 /* is_mptcp should be false if subflow->conn is missing, see
1424 * subflow_syn_recv_sock()
1425 */
1426 if (WARN_ON_ONCE(!new_mptcp_sock)) {
1427 tcp_sk(newsk)->is_mptcp = 0;
1428 return newsk;
cf7da0d6
PK		 1429 }
1430
58b09919
PA		 1431 /* acquire the 2nd reference for the owning socket */
1432 sock_hold(new_mptcp_sock);
cf7da0d6 1433
58b09919
PA		 1434 local_bh_disable();
1435 bh_lock_sock(new_mptcp_sock);
cf7da0d6 1436 msk = mptcp_sk(new_mptcp_sock);
8ab183de 1437 msk->first = newsk;
cf7da0d6
PK		 1438
1439 newsk = new_mptcp_sock;
1440 mptcp_copy_inaddrs(newsk, ssk);
1441 list_add(&subflow->node, &msk->conn_list);
df1036da 1442 inet_sk_state_store(newsk, TCP_ESTABLISHED);
cf7da0d6 1443
cf7da0d6 1444 bh_unlock_sock(new_mptcp_sock);
fc518953
FW		 1445
1446 __MPTCP_INC_STATS(sock_net(sk), MPTCP_MIB_MPCAPABLEPASSIVEACK);
cf7da0d6 1447 local_bh_enable();
fc518953
FW		 1448 } else {
1449 MPTCP_INC_STATS(sock_net(sk),
1450 MPTCP_MIB_MPCAPABLEPASSIVEFALLBACK);
cf7da0d6
PK		 1451 }
1452
1453 return newsk;
1454}
1455
79c0949e
PK		 1456static void mptcp_destroy(struct sock *sk)
1457{
c9fd9c5f
FW		 1458 struct mptcp_sock *msk = mptcp_sk(sk);
1459
1460 if (msk->cached_ext)
1461 __skb_ext_put(msk->cached_ext);
d027236c
PA		 1462
1463 sk_sockets_allocated_dec(sk);
79c0949e
PK		 1464}
1465
717e79c8 1466static int mptcp_setsockopt(struct sock *sk, int level, int optname,
50e741bb 1467 char __user *optval, unsigned int optlen)
717e79c8
PK		 1468{
1469 struct mptcp_sock *msk = mptcp_sk(sk);
717e79c8 1470 struct socket *ssock;
717e79c8
PK		 1471
1472 pr_debug("msk=%p", msk);
1473
1474 /* @@ the meaning of setsockopt() when the socket is connected and
b6e4a1ae
MM		 1475 * there are multiple subflows is not yet defined. It is up to the
1476 * MPTCP-level socket to configure the subflows until the subflow
1477 * is in TCP fallback, when TCP socket options are passed through
1478 * to the one remaining subflow.
717e79c8
PK		 1479 */
1480 lock_sock(sk);
b6e4a1ae 1481 ssock = __mptcp_tcp_fallback(msk);
e154659b 1482 release_sock(sk);
b6e4a1ae
MM		 1483 if (ssock)
1484 return tcp_setsockopt(ssock->sk, level, optname, optval,
1485 optlen);
50e741bb 1486
b6e4a1ae 1487 return -EOPNOTSUPP;
717e79c8
PK		 1488}
1489
1490static int mptcp_getsockopt(struct sock *sk, int level, int optname,
50e741bb 1491 char __user *optval, int __user *option)
717e79c8
PK		 1492{
1493 struct mptcp_sock *msk = mptcp_sk(sk);
717e79c8 1494 struct socket *ssock;
717e79c8
PK		 1495
1496 pr_debug("msk=%p", msk);
1497
b6e4a1ae
MM		 1498 /* @@ the meaning of setsockopt() when the socket is connected and
1499 * there are multiple subflows is not yet defined. It is up to the
1500 * MPTCP-level socket to configure the subflows until the subflow
1501 * is in TCP fallback, when socket options are passed through
1502 * to the one remaining subflow.
717e79c8
PK		 1503 */
1504 lock_sock(sk);
b6e4a1ae 1505 ssock = __mptcp_tcp_fallback(msk);
e154659b 1506 release_sock(sk);
b6e4a1ae
MM		 1507 if (ssock)
1508 return tcp_getsockopt(ssock->sk, level, optname, optval,
1509 option);
50e741bb 1510
b6e4a1ae 1511 return -EOPNOTSUPP;
717e79c8
PK		 1512}
1513
b51f9b80
PA		 1514#define MPTCP_DEFERRED_ALL (TCPF_DELACK_TIMER_DEFERRED | \
1515 TCPF_WRITE_TIMER_DEFERRED)
14c441b5
PA		 1516
1517/* this is very alike tcp_release_cb() but we must handle differently a
1518 * different set of events
1519 */
1520static void mptcp_release_cb(struct sock *sk)
1521{
1522 unsigned long flags, nflags;
1523
1524 do {
1525 flags = sk->sk_tsq_flags;
1526 if (!(flags & MPTCP_DEFERRED_ALL))
1527 return;
1528 nflags = flags & ~MPTCP_DEFERRED_ALL;
1529 } while (cmpxchg(&sk->sk_tsq_flags, flags, nflags) != flags);
1530
b51f9b80
PA		 1531 sock_release_ownership(sk);
1532
14c441b5
PA		 1533 if (flags & TCPF_DELACK_TIMER_DEFERRED) {
1534 struct mptcp_sock *msk = mptcp_sk(sk);
1535 struct sock *ssk;
1536
1537 ssk = mptcp_subflow_recv_lookup(msk);
1538 if (!ssk || !schedule_work(&msk->work))
1539 __sock_put(sk);
1540 }
b51f9b80
PA		 1541
1542 if (flags & TCPF_WRITE_TIMER_DEFERRED) {
1543 mptcp_retransmit_handler(sk);
1544 __sock_put(sk);
1545 }
14c441b5
PA		 1546}
1547
cec37a6e 1548static int mptcp_get_port(struct sock *sk, unsigned short snum)
f870fa0b
MM		 1549{
1550 struct mptcp_sock *msk = mptcp_sk(sk);
cec37a6e 1551 struct socket *ssock;
f870fa0b 1552
cec37a6e
PK		 1553 ssock = __mptcp_nmpc_socket(msk);
1554 pr_debug("msk=%p, subflow=%p", msk, ssock);
1555 if (WARN_ON_ONCE(!ssock))
1556 return -EINVAL;
f870fa0b 1557
cec37a6e
PK		 1558 return inet_csk_get_port(ssock->sk, snum);
1559}
f870fa0b 1560
cec37a6e
PK		 1561void mptcp_finish_connect(struct sock *ssk)
1562{
1563 struct mptcp_subflow_context *subflow;
1564 struct mptcp_sock *msk;
1565 struct sock *sk;
6d0060f6 1566 u64 ack_seq;
f870fa0b 1567
cec37a6e 1568 subflow = mptcp_subflow_ctx(ssk);
cec37a6e
PK		 1569 sk = subflow->conn;
1570 msk = mptcp_sk(sk);
1571
fc518953
FW		 1572 if (!subflow->mp_capable) {
1573 MPTCP_INC_STATS(sock_net(sk),
1574 MPTCP_MIB_MPCAPABLEACTIVEFALLBACK);
1575 return;
1576 }
1577
648ef4b8
MM		 1578 pr_debug("msk=%p, token=%u", sk, subflow->token);
1579
6d0060f6
MM		 1580 mptcp_crypto_key_sha(subflow->remote_key, NULL, &ack_seq);
1581 ack_seq++;
648ef4b8
MM		 1582 subflow->map_seq = ack_seq;
1583 subflow->map_subflow_seq = 1;
6d0060f6
MM		 1584 subflow->rel_write_seq = 1;
1585
cec37a6e
PK		 1586 /* the socket is not connected yet, no msk/subflow ops can access/race
1587 * accessing the field below
1588 */
1589 WRITE_ONCE(msk->remote_key, subflow->remote_key);
1590 WRITE_ONCE(msk->local_key, subflow->local_key);
79c0949e 1591 WRITE_ONCE(msk->token, subflow->token);
6d0060f6
MM		 1592 WRITE_ONCE(msk->write_seq, subflow->idsn + 1);
1593 WRITE_ONCE(msk->ack_seq, ack_seq);
d22f4988 1594 WRITE_ONCE(msk->can_ack, 1);
cc9d2566 1595 atomic64_set(&msk->snd_una, msk->write_seq);
1b1c7a0e
PK		 1596
1597 mptcp_pm_new_connection(msk, 0);
f870fa0b
MM		 1598}
1599
cf7da0d6
PK		 1600static void mptcp_sock_graft(struct sock *sk, struct socket *parent)
1601{
1602 write_lock_bh(&sk->sk_callback_lock);
1603 rcu_assign_pointer(sk->sk_wq, &parent->wq);
1604 sk_set_socket(sk, parent);
1605 sk->sk_uid = SOCK_INODE(parent)->i_uid;
1606 write_unlock_bh(&sk->sk_callback_lock);
1607}
1608
f296234c
PK		 1609bool mptcp_finish_join(struct sock *sk)
1610{
1611 struct mptcp_subflow_context *subflow = mptcp_subflow_ctx(sk);
1612 struct mptcp_sock *msk = mptcp_sk(subflow->conn);
1613 struct sock *parent = (void *)msk;
1614 struct socket *parent_sock;
ec3edaa7 1615 bool ret;
f296234c
PK		 1616
1617 pr_debug("msk=%p, subflow=%p", msk, subflow);
1618
1619 /* mptcp socket already closing? */
1620 if (inet_sk_state_load(parent) != TCP_ESTABLISHED)
1621 return false;
1622
1623 if (!msk->pm.server_side)
1624 return true;
1625
1626 /* passive connection, attach to msk socket */
1627 parent_sock = READ_ONCE(parent->sk_socket);
1628 if (parent_sock && !sk->sk_socket)
1629 mptcp_sock_graft(sk, parent_sock);
1630
ec3edaa7
PK		 1631 ret = mptcp_pm_allow_new_subflow(msk);
1632 if (ret) {
64d950ae
CP		 1633 subflow->map_seq = msk->ack_seq;
1634
ec3edaa7
PK		 1635 /* active connections are already on conn_list */
1636 spin_lock_bh(&msk->join_list_lock);
1637 if (!WARN_ON_ONCE(!list_empty(&subflow->node)))
1638 list_add_tail(&subflow->node, &msk->join_list);
1639 spin_unlock_bh(&msk->join_list_lock);
1640 }
1641 return ret;
f296234c
PK		 1642}
1643
1644bool mptcp_sk_is_subflow(const struct sock *sk)
1645{
1646 struct mptcp_subflow_context *subflow = mptcp_subflow_ctx(sk);
1647
1648 return subflow->mp_join == 1;
1649}
1650
1891c4a0
FW		 1651static bool mptcp_memory_free(const struct sock *sk, int wake)
1652{
1653 struct mptcp_sock *msk = mptcp_sk(sk);
1654
1655 return wake ? test_bit(MPTCP_SEND_SPACE, &msk->flags) : true;
1656}
1657
f870fa0b
MM		 1658static struct proto mptcp_prot = {
1659 .name = "MPTCP",
1660 .owner = THIS_MODULE,
1661 .init = mptcp_init_sock,
18b683bf 1662 .disconnect = mptcp_disconnect,
f870fa0b 1663 .close = mptcp_close,
cf7da0d6 1664 .accept = mptcp_accept,
717e79c8
PK		 1665 .setsockopt = mptcp_setsockopt,
1666 .getsockopt = mptcp_getsockopt,
f870fa0b 1667 .shutdown = tcp_shutdown,
79c0949e 1668 .destroy = mptcp_destroy,
f870fa0b
MM		 1669 .sendmsg = mptcp_sendmsg,
1670 .recvmsg = mptcp_recvmsg,
14c441b5 1671 .release_cb = mptcp_release_cb,
f870fa0b
MM		 1672 .hash = inet_hash,
1673 .unhash = inet_unhash,
cec37a6e 1674 .get_port = mptcp_get_port,
d027236c
PA		 1675 .sockets_allocated = &mptcp_sockets_allocated,
1676 .memory_allocated = &tcp_memory_allocated,
1677 .memory_pressure = &tcp_memory_pressure,
1891c4a0 1678 .stream_memory_free = mptcp_memory_free,
d027236c
PA		 1679 .sysctl_wmem_offset = offsetof(struct net, ipv4.sysctl_tcp_wmem),
1680 .sysctl_mem = sysctl_tcp_mem,
f870fa0b
MM		 1681 .obj_size = sizeof(struct mptcp_sock),
1682 .no_autobind = true,
1683};
1684
2303f994
PK		 1685static int mptcp_bind(struct socket *sock, struct sockaddr *uaddr, int addr_len)
1686{
1687 struct mptcp_sock *msk = mptcp_sk(sock->sk);
1688 struct socket *ssock;
cf7da0d6 1689 int err;
2303f994
PK		 1690
1691 lock_sock(sock->sk);
1692 ssock = __mptcp_socket_create(msk, MPTCP_SAME_STATE);
1693 if (IS_ERR(ssock)) {
1694 err = PTR_ERR(ssock);
1695 goto unlock;
1696 }
1697
1698 err = ssock->ops->bind(ssock, uaddr, addr_len);
cf7da0d6
PK		 1699 if (!err)
1700 mptcp_copy_inaddrs(sock->sk, ssock->sk);
2303f994
PK		 1701
1702unlock:
1703 release_sock(sock->sk);
1704 return err;
1705}
1706
1707static int mptcp_stream_connect(struct socket *sock, struct sockaddr *uaddr,
1708 int addr_len, int flags)
1709{
1710 struct mptcp_sock *msk = mptcp_sk(sock->sk);
1711 struct socket *ssock;
1712 int err;
1713
1714 lock_sock(sock->sk);
1715 ssock = __mptcp_socket_create(msk, TCP_SYN_SENT);
1716 if (IS_ERR(ssock)) {
1717 err = PTR_ERR(ssock);
1718 goto unlock;
1719 }
1720
cf7da0d6
PK		 1721#ifdef CONFIG_TCP_MD5SIG
1722 /* no MPTCP if MD5SIG is enabled on this socket or we may run out of
1723 * TCP option space.
1724 */
1725 if (rcu_access_pointer(tcp_sk(ssock->sk)->md5sig_info))
1726 mptcp_subflow_ctx(ssock->sk)->request_mptcp = 0;
1727#endif
1728
2303f994
PK		 1729 err = ssock->ops->connect(ssock, uaddr, addr_len, flags);
1730 inet_sk_state_store(sock->sk, inet_sk_state_load(ssock->sk));
cf7da0d6 1731 mptcp_copy_inaddrs(sock->sk, ssock->sk);
2303f994
PK		 1732
1733unlock:
1734 release_sock(sock->sk);
1735 return err;
1736}
1737
cf7da0d6
PK		 1738static int mptcp_v4_getname(struct socket *sock, struct sockaddr *uaddr,
1739 int peer)
1740{
1741 if (sock->sk->sk_prot == &tcp_prot) {
1742 /* we are being invoked from __sys_accept4, after
1743 * mptcp_accept() has just accepted a non-mp-capable
1744 * flow: sk is a tcp_sk, not an mptcp one.
1745 *
1746 * Hand the socket over to tcp so all further socket ops
1747 * bypass mptcp.
1748 */
1749 sock->ops = &inet_stream_ops;
1750 }
1751
1752 return inet_getname(sock, uaddr, peer);
1753}
1754
1755#if IS_ENABLED(CONFIG_MPTCP_IPV6)
1756static int mptcp_v6_getname(struct socket *sock, struct sockaddr *uaddr,
1757 int peer)
1758{
1759 if (sock->sk->sk_prot == &tcpv6_prot) {
1760 /* we are being invoked from __sys_accept4 after
1761 * mptcp_accept() has accepted a non-mp-capable
1762 * subflow: sk is a tcp_sk, not mptcp.
1763 *
1764 * Hand the socket over to tcp so all further
1765 * socket ops bypass mptcp.
1766 */
1767 sock->ops = &inet6_stream_ops;
1768 }
1769
1770 return inet6_getname(sock, uaddr, peer);
1771}
1772#endif
1773
1774static int mptcp_listen(struct socket *sock, int backlog)
1775{
1776 struct mptcp_sock *msk = mptcp_sk(sock->sk);
1777 struct socket *ssock;
1778 int err;
1779
1780 pr_debug("msk=%p", msk);
1781
1782 lock_sock(sock->sk);
1783 ssock = __mptcp_socket_create(msk, TCP_LISTEN);
1784 if (IS_ERR(ssock)) {
1785 err = PTR_ERR(ssock);
1786 goto unlock;
1787 }
1788
5e20087d
FW		 1789 sock_set_flag(sock->sk, SOCK_RCU_FREE);
1790
cf7da0d6
PK		 1791 err = ssock->ops->listen(ssock, backlog);
1792 inet_sk_state_store(sock->sk, inet_sk_state_load(ssock->sk));
1793 if (!err)
1794 mptcp_copy_inaddrs(sock->sk, ssock->sk);
1795
1796unlock:
1797 release_sock(sock->sk);
1798 return err;
1799}
1800
1801static bool is_tcp_proto(const struct proto *p)
1802{
1803#if IS_ENABLED(CONFIG_MPTCP_IPV6)
1804 return p == &tcp_prot || p == &tcpv6_prot;
1805#else
1806 return p == &tcp_prot;
1807#endif
1808}
1809
1810static int mptcp_stream_accept(struct socket *sock, struct socket *newsock,
1811 int flags, bool kern)
1812{
1813 struct mptcp_sock *msk = mptcp_sk(sock->sk);
1814 struct socket *ssock;
1815 int err;
1816
1817 pr_debug("msk=%p", msk);
1818
1819 lock_sock(sock->sk);
1820 if (sock->sk->sk_state != TCP_LISTEN)
1821 goto unlock_fail;
1822
1823 ssock = __mptcp_nmpc_socket(msk);
1824 if (!ssock)
1825 goto unlock_fail;
1826
1827 sock_hold(ssock->sk);
1828 release_sock(sock->sk);
1829
1830 err = ssock->ops->accept(sock, newsock, flags, kern);
1831 if (err == 0 && !is_tcp_proto(newsock->sk->sk_prot)) {
1832 struct mptcp_sock *msk = mptcp_sk(newsock->sk);
1833 struct mptcp_subflow_context *subflow;
1834
1835 /* set ssk->sk_socket of accept()ed flows to mptcp socket.
1836 * This is needed so NOSPACE flag can be set from tcp stack.
1837 */
ec3edaa7 1838 __mptcp_flush_join_list(msk);
cf7da0d6
PK		 1839 list_for_each_entry(subflow, &msk->conn_list, node) {
1840 struct sock *ssk = mptcp_subflow_tcp_sock(subflow);
1841
1842 if (!ssk->sk_socket)
1843 mptcp_sock_graft(ssk, newsock);
1844 }
cf7da0d6
PK		 1845 }
1846
1847 sock_put(ssock->sk);
1848 return err;
1849
1850unlock_fail:
1851 release_sock(sock->sk);
1852 return -EINVAL;
1853}
1854
2303f994
PK		 1855static __poll_t mptcp_poll(struct file *file, struct socket *sock,
1856 struct poll_table_struct *wait)
1857{
1891c4a0 1858 struct sock *sk = sock->sk;
8ab183de 1859 struct mptcp_sock *msk;
1891c4a0 1860 struct socket *ssock;
2303f994
PK		 1861 __poll_t mask = 0;
1862
1891c4a0
FW		 1863 msk = mptcp_sk(sk);
1864 lock_sock(sk);
0b4f33de
FW		 1865 ssock = __mptcp_tcp_fallback(msk);
1866 if (!ssock)
1867 ssock = __mptcp_nmpc_socket(msk);
1891c4a0
FW		 1868 if (ssock) {
1869 mask = ssock->ops->poll(file, ssock, wait);
1870 release_sock(sk);
1871 return mask;
1872 }
1873
1874 release_sock(sk);
1875 sock_poll_wait(file, sock, wait);
1876 lock_sock(sk);
1877
1878 if (test_bit(MPTCP_DATA_READY, &msk->flags))
1879 mask = EPOLLIN | EPOLLRDNORM;
1880 if (sk_stream_is_writeable(sk) &&
1881 test_bit(MPTCP_SEND_SPACE, &msk->flags))
1882 mask |= EPOLLOUT | EPOLLWRNORM;
1883 if (sk->sk_shutdown & RCV_SHUTDOWN)
1884 mask |= EPOLLIN | EPOLLRDNORM | EPOLLRDHUP;
1885
1886 release_sock(sk);
1887
2303f994
PK		 1888 return mask;
1889}
1890
21498490
PK		 1891static int mptcp_shutdown(struct socket *sock, int how)
1892{
1893 struct mptcp_sock *msk = mptcp_sk(sock->sk);
1894 struct mptcp_subflow_context *subflow;
0b4f33de 1895 struct socket *ssock;
21498490
PK		 1896 int ret = 0;
1897
1898 pr_debug("sk=%p, how=%d", msk, how);
1899
1900 lock_sock(sock->sk);
0b4f33de
FW		 1901 ssock = __mptcp_tcp_fallback(msk);
1902 if (ssock) {
1903 release_sock(sock->sk);
1904 return inet_shutdown(ssock, how);
1905 }
21498490
PK		 1906
1907 if (how == SHUT_WR || how == SHUT_RDWR)
1908 inet_sk_state_store(sock->sk, TCP_FIN_WAIT1);
1909
1910 how++;
1911
1912 if ((how & ~SHUTDOWN_MASK) || !how) {
1913 ret = -EINVAL;
1914 goto out_unlock;
1915 }
1916
1917 if (sock->state == SS_CONNECTING) {
1918 if ((1 << sock->sk->sk_state) &
1919 (TCPF_SYN_SENT | TCPF_SYN_RECV | TCPF_CLOSE))
1920 sock->state = SS_DISCONNECTING;
1921 else
1922 sock->state = SS_CONNECTED;
1923 }
1924
ec3edaa7 1925 __mptcp_flush_join_list(msk);
21498490
PK		 1926 mptcp_for_each_subflow(msk, subflow) {
1927 struct sock *tcp_sk = mptcp_subflow_tcp_sock(subflow);
1928
76c42a29 1929 mptcp_subflow_shutdown(tcp_sk, how, 1, msk->write_seq);
21498490
PK		 1930 }
1931
1932out_unlock:
1933 release_sock(sock->sk);
1934
1935 return ret;
1936}
1937
e42f1ac6
FW		 1938static const struct proto_ops mptcp_stream_ops = {
1939 .family = PF_INET,
1940 .owner = THIS_MODULE,
1941 .release = inet_release,
1942 .bind = mptcp_bind,
1943 .connect = mptcp_stream_connect,
1944 .socketpair = sock_no_socketpair,
1945 .accept = mptcp_stream_accept,
1946 .getname = mptcp_v4_getname,
1947 .poll = mptcp_poll,
1948 .ioctl = inet_ioctl,
1949 .gettstamp = sock_gettstamp,
1950 .listen = mptcp_listen,
1951 .shutdown = mptcp_shutdown,
1952 .setsockopt = sock_common_setsockopt,
1953 .getsockopt = sock_common_getsockopt,
1954 .sendmsg = inet_sendmsg,
1955 .recvmsg = inet_recvmsg,
1956 .mmap = sock_no_mmap,
1957 .sendpage = inet_sendpage,
1958#ifdef CONFIG_COMPAT
1959 .compat_setsockopt = compat_sock_common_setsockopt,
1960 .compat_getsockopt = compat_sock_common_getsockopt,
1961#endif
1962};
2303f994 1963
f870fa0b
MM		 1964static struct inet_protosw mptcp_protosw = {
1965 .type = SOCK_STREAM,
1966 .protocol = IPPROTO_MPTCP,
1967 .prot = &mptcp_prot,
2303f994
PK		 1968 .ops = &mptcp_stream_ops,
1969 .flags = INET_PROTOSW_ICSK,
f870fa0b
MM		 1970};
1971
784325e9 1972void mptcp_proto_init(void)
f870fa0b 1973{
2303f994 1974 mptcp_prot.h.hashinfo = tcp_prot.h.hashinfo;
2303f994 1975
d027236c
PA		 1976 if (percpu_counter_init(&mptcp_sockets_allocated, 0, GFP_KERNEL))
1977 panic("Failed to allocate MPTCP pcpu counter\n");
1978
2303f994 1979 mptcp_subflow_init();
1b1c7a0e 1980 mptcp_pm_init();
2303f994 1981
f870fa0b
MM		 1982 if (proto_register(&mptcp_prot, 1) != 0)
1983 panic("Failed to register MPTCP proto.\n");
1984
1985 inet_register_protosw(&mptcp_protosw);
6771bfd9
FW		 1986
1987 BUILD_BUG_ON(sizeof(struct mptcp_skb_cb) > sizeof_field(struct sk_buff, cb));
f870fa0b
MM		 1988}
1989
1990#if IS_ENABLED(CONFIG_MPTCP_IPV6)
e42f1ac6
FW		 1991static const struct proto_ops mptcp_v6_stream_ops = {
1992 .family = PF_INET6,
1993 .owner = THIS_MODULE,
1994 .release = inet6_release,
1995 .bind = mptcp_bind,
1996 .connect = mptcp_stream_connect,
1997 .socketpair = sock_no_socketpair,
1998 .accept = mptcp_stream_accept,
1999 .getname = mptcp_v6_getname,
2000 .poll = mptcp_poll,
2001 .ioctl = inet6_ioctl,
2002 .gettstamp = sock_gettstamp,
2003 .listen = mptcp_listen,
2004 .shutdown = mptcp_shutdown,
2005 .setsockopt = sock_common_setsockopt,
2006 .getsockopt = sock_common_getsockopt,
2007 .sendmsg = inet6_sendmsg,
2008 .recvmsg = inet6_recvmsg,
2009 .mmap = sock_no_mmap,
2010 .sendpage = inet_sendpage,
2011#ifdef CONFIG_COMPAT
2012 .compat_setsockopt = compat_sock_common_setsockopt,
2013 .compat_getsockopt = compat_sock_common_getsockopt,
2014#endif
2015};
2016
f870fa0b
MM		 2017static struct proto mptcp_v6_prot;
2018
79c0949e
PK		 2019static void mptcp_v6_destroy(struct sock *sk)
2020{
2021 mptcp_destroy(sk);
2022 inet6_destroy_sock(sk);
2023}
2024
f870fa0b
MM		 2025static struct inet_protosw mptcp_v6_protosw = {
2026 .type = SOCK_STREAM,
2027 .protocol = IPPROTO_MPTCP,
2028 .prot = &mptcp_v6_prot,
2303f994 2029 .ops = &mptcp_v6_stream_ops,
f870fa0b
MM		 2030 .flags = INET_PROTOSW_ICSK,
2031};
2032
784325e9 2033int mptcp_proto_v6_init(void)
f870fa0b
MM		 2034{
2035 int err;
2036
2037 mptcp_v6_prot = mptcp_prot;
2038 strcpy(mptcp_v6_prot.name, "MPTCPv6");
2039 mptcp_v6_prot.slab = NULL;
79c0949e 2040 mptcp_v6_prot.destroy = mptcp_v6_destroy;
b0519de8 2041 mptcp_v6_prot.obj_size = sizeof(struct mptcp6_sock);
f870fa0b
MM		 2042
2043 err = proto_register(&mptcp_v6_prot, 1);
2044 if (err)
2045 return err;
2046
2047 err = inet6_register_protosw(&mptcp_v6_protosw);
2048 if (err)
2049 proto_unregister(&mptcp_v6_prot);
2050
2051 return err;
2052}
2053#endif
Linux 6.x block layer and io_uring tree(s)