Commit | Line | Data |
---|---|---|
b4d0d230 | 1 | // SPDX-License-Identifier: GPL-2.0-or-later |
0b58b8a1 DH |
2 | /* AF_RXRPC sendmsg() implementation. |
3 | * | |
4 | * Copyright (C) 2007, 2016 Red Hat, Inc. All Rights Reserved. | |
5 | * Written by David Howells (dhowells@redhat.com) | |
0b58b8a1 DH |
6 | */ |
7 | ||
8 | #define pr_fmt(fmt) KBUILD_MODNAME ": " fmt | |
9 | ||
10 | #include <linux/net.h> | |
11 | #include <linux/gfp.h> | |
12 | #include <linux/skbuff.h> | |
13 | #include <linux/export.h> | |
174cd4b1 IM |
14 | #include <linux/sched/signal.h> |
15 | ||
0b58b8a1 DH |
16 | #include <net/sock.h> |
17 | #include <net/af_rxrpc.h> | |
18 | #include "ar-internal.h" | |
19 | ||
bc5e3a54 DH |
20 | /* |
21 | * Wait for space to appear in the Tx queue or a signal to occur. | |
22 | */ | |
23 | static int rxrpc_wait_for_tx_window_intr(struct rxrpc_sock *rx, | |
24 | struct rxrpc_call *call, | |
25 | long *timeo) | |
26 | { | |
27 | for (;;) { | |
28 | set_current_state(TASK_INTERRUPTIBLE); | |
29 | if (call->tx_top - call->tx_hard_ack < | |
30 | min_t(unsigned int, call->tx_winsize, | |
31 | call->cong_cwnd + call->cong_extra)) | |
32 | return 0; | |
33 | ||
34 | if (call->state >= RXRPC_CALL_COMPLETE) | |
35 | return call->error; | |
36 | ||
37 | if (signal_pending(current)) | |
38 | return sock_intr_errno(*timeo); | |
39 | ||
40 | trace_rxrpc_transmit(call, rxrpc_transmit_wait); | |
41 | mutex_unlock(&call->user_mutex); | |
42 | *timeo = schedule_timeout(*timeo); | |
43 | if (mutex_lock_interruptible(&call->user_mutex) < 0) | |
44 | return sock_intr_errno(*timeo); | |
45 | } | |
46 | } | |
47 | ||
48 | /* | |
49 | * Wait for space to appear in the Tx queue uninterruptibly, but with | |
50 | * a timeout of 2*RTT if no progress was made and a signal occurred. | |
51 | */ | |
52 | static int rxrpc_wait_for_tx_window_nonintr(struct rxrpc_sock *rx, | |
53 | struct rxrpc_call *call) | |
54 | { | |
55 | rxrpc_seq_t tx_start, tx_win; | |
56 | signed long rtt2, timeout; | |
57 | u64 rtt; | |
58 | ||
59 | rtt = READ_ONCE(call->peer->rtt); | |
60 | rtt2 = nsecs_to_jiffies64(rtt) * 2; | |
61 | if (rtt2 < 1) | |
62 | rtt2 = 1; | |
63 | ||
64 | timeout = rtt2; | |
65 | tx_start = READ_ONCE(call->tx_hard_ack); | |
66 | ||
67 | for (;;) { | |
68 | set_current_state(TASK_UNINTERRUPTIBLE); | |
69 | ||
70 | tx_win = READ_ONCE(call->tx_hard_ack); | |
71 | if (call->tx_top - tx_win < | |
72 | min_t(unsigned int, call->tx_winsize, | |
73 | call->cong_cwnd + call->cong_extra)) | |
74 | return 0; | |
75 | ||
76 | if (call->state >= RXRPC_CALL_COMPLETE) | |
77 | return call->error; | |
78 | ||
b960a34b DH |
79 | if (test_bit(RXRPC_CALL_IS_INTR, &call->flags) && |
80 | timeout == 0 && | |
bc5e3a54 DH |
81 | tx_win == tx_start && signal_pending(current)) |
82 | return -EINTR; | |
83 | ||
84 | if (tx_win != tx_start) { | |
85 | timeout = rtt2; | |
86 | tx_start = tx_win; | |
87 | } | |
88 | ||
89 | trace_rxrpc_transmit(call, rxrpc_transmit_wait); | |
90 | timeout = schedule_timeout(timeout); | |
91 | } | |
92 | } | |
93 | ||
0b58b8a1 | 94 | /* |
df423a4a DH |
95 | * wait for space to appear in the transmit/ACK window |
96 | * - caller holds the socket locked | |
0b58b8a1 | 97 | */ |
df423a4a DH |
98 | static int rxrpc_wait_for_tx_window(struct rxrpc_sock *rx, |
99 | struct rxrpc_call *call, | |
bc5e3a54 DH |
100 | long *timeo, |
101 | bool waitall) | |
0b58b8a1 | 102 | { |
df423a4a DH |
103 | DECLARE_WAITQUEUE(myself, current); |
104 | int ret; | |
0b58b8a1 | 105 | |
248f219c DH |
106 | _enter(",{%u,%u,%u}", |
107 | call->tx_hard_ack, call->tx_top, call->tx_winsize); | |
0b58b8a1 | 108 | |
df423a4a | 109 | add_wait_queue(&call->waitq, &myself); |
0b58b8a1 | 110 | |
bc5e3a54 DH |
111 | if (waitall) |
112 | ret = rxrpc_wait_for_tx_window_nonintr(rx, call); | |
113 | else | |
114 | ret = rxrpc_wait_for_tx_window_intr(rx, call, timeo); | |
0b58b8a1 | 115 | |
df423a4a DH |
116 | remove_wait_queue(&call->waitq, &myself); |
117 | set_current_state(TASK_RUNNING); | |
118 | _leave(" = %d", ret); | |
119 | return ret; | |
0b58b8a1 DH |
120 | } |
121 | ||
122 | /* | |
248f219c | 123 | * Schedule an instant Tx resend. |
0b58b8a1 | 124 | */ |
248f219c | 125 | static inline void rxrpc_instant_resend(struct rxrpc_call *call, int ix) |
0b58b8a1 | 126 | { |
248f219c DH |
127 | spin_lock_bh(&call->lock); |
128 | ||
129 | if (call->state < RXRPC_CALL_COMPLETE) { | |
03877bf6 DH |
130 | call->rxtx_annotations[ix] = |
131 | (call->rxtx_annotations[ix] & RXRPC_TX_ANNO_LAST) | | |
132 | RXRPC_TX_ANNO_RETRANS; | |
248f219c | 133 | if (!test_and_set_bit(RXRPC_CALL_EV_RESEND, &call->events)) |
df423a4a | 134 | rxrpc_queue_call(call); |
0b58b8a1 | 135 | } |
248f219c DH |
136 | |
137 | spin_unlock_bh(&call->lock); | |
0b58b8a1 DH |
138 | } |
139 | ||
e833251a DH |
140 | /* |
141 | * Notify the owner of the call that the transmit phase is ended and the last | |
142 | * packet has been queued. | |
143 | */ | |
144 | static void rxrpc_notify_end_tx(struct rxrpc_sock *rx, struct rxrpc_call *call, | |
145 | rxrpc_notify_end_tx_t notify_end_tx) | |
146 | { | |
147 | if (notify_end_tx) | |
148 | notify_end_tx(&rx->sk, call, call->user_call_ID); | |
149 | } | |
150 | ||
0b58b8a1 | 151 | /* |
8e8715aa MD |
152 | * Queue a DATA packet for transmission, set the resend timeout and send |
153 | * the packet immediately. Returns the error from rxrpc_send_data_packet() | |
154 | * in case the caller wants to do something with it. | |
0b58b8a1 | 155 | */ |
8e8715aa MD |
156 | static int rxrpc_queue_packet(struct rxrpc_sock *rx, struct rxrpc_call *call, |
157 | struct sk_buff *skb, bool last, | |
158 | rxrpc_notify_end_tx_t notify_end_tx) | |
0b58b8a1 | 159 | { |
df423a4a | 160 | struct rxrpc_skb_priv *sp = rxrpc_skb(skb); |
a158bdd3 | 161 | unsigned long now; |
248f219c DH |
162 | rxrpc_seq_t seq = sp->hdr.seq; |
163 | int ret, ix; | |
70790dbe | 164 | u8 annotation = RXRPC_TX_ANNO_UNACK; |
248f219c DH |
165 | |
166 | _net("queue skb %p [%d]", skb, seq); | |
0b58b8a1 | 167 | |
248f219c | 168 | ASSERTCMP(seq, ==, call->tx_top + 1); |
0b58b8a1 | 169 | |
e122d845 | 170 | if (last) |
70790dbe DH |
171 | annotation |= RXRPC_TX_ANNO_LAST; |
172 | ||
b24d2891 DH |
173 | /* We have to set the timestamp before queueing as the retransmit |
174 | * algorithm can see the packet as soon as we queue it. | |
175 | */ | |
176 | skb->tstamp = ktime_get_real(); | |
177 | ||
248f219c | 178 | ix = seq & RXRPC_RXTX_BUFF_MASK; |
71f3ca40 | 179 | rxrpc_get_skb(skb, rxrpc_skb_tx_got); |
70790dbe | 180 | call->rxtx_annotations[ix] = annotation; |
df423a4a | 181 | smp_wmb(); |
248f219c DH |
182 | call->rxtx_buffer[ix] = skb; |
183 | call->tx_top = seq; | |
70790dbe | 184 | if (last) |
a124fe3e | 185 | trace_rxrpc_transmit(call, rxrpc_transmit_queue_last); |
70790dbe | 186 | else |
a124fe3e | 187 | trace_rxrpc_transmit(call, rxrpc_transmit_queue); |
0b58b8a1 | 188 | |
df423a4a DH |
189 | if (last || call->state == RXRPC_CALL_SERVER_ACK_REQUEST) { |
190 | _debug("________awaiting reply/ACK__________"); | |
191 | write_lock_bh(&call->state_lock); | |
192 | switch (call->state) { | |
193 | case RXRPC_CALL_CLIENT_SEND_REQUEST: | |
194 | call->state = RXRPC_CALL_CLIENT_AWAIT_REPLY; | |
e833251a | 195 | rxrpc_notify_end_tx(rx, call, notify_end_tx); |
df423a4a DH |
196 | break; |
197 | case RXRPC_CALL_SERVER_ACK_REQUEST: | |
198 | call->state = RXRPC_CALL_SERVER_SEND_REPLY; | |
a158bdd3 DH |
199 | now = jiffies; |
200 | WRITE_ONCE(call->ack_at, now + MAX_JIFFY_OFFSET); | |
9749fd2b DH |
201 | if (call->ackr_reason == RXRPC_ACK_DELAY) |
202 | call->ackr_reason = 0; | |
a158bdd3 | 203 | trace_rxrpc_timer(call, rxrpc_timer_init_for_send_reply, now); |
df423a4a DH |
204 | if (!last) |
205 | break; | |
e3cf3970 | 206 | /* Fall through */ |
df423a4a DH |
207 | case RXRPC_CALL_SERVER_SEND_REPLY: |
208 | call->state = RXRPC_CALL_SERVER_AWAIT_ACK; | |
e833251a | 209 | rxrpc_notify_end_tx(rx, call, notify_end_tx); |
df423a4a DH |
210 | break; |
211 | default: | |
212 | break; | |
213 | } | |
214 | write_unlock_bh(&call->state_lock); | |
215 | } | |
0b58b8a1 | 216 | |
248f219c DH |
217 | if (seq == 1 && rxrpc_is_client_call(call)) |
218 | rxrpc_expose_client_call(call); | |
df423a4a | 219 | |
a1767077 | 220 | ret = rxrpc_send_data_packet(call, skb, false); |
df423a4a | 221 | if (ret < 0) { |
c54e43d7 DH |
222 | switch (ret) { |
223 | case -ENETUNREACH: | |
224 | case -EHOSTUNREACH: | |
225 | case -ECONNREFUSED: | |
226 | rxrpc_set_call_completion(call, | |
227 | RXRPC_CALL_LOCAL_ERROR, | |
228 | 0, ret); | |
c69565ee | 229 | rxrpc_notify_socket(call); |
c54e43d7 DH |
230 | goto out; |
231 | } | |
df423a4a | 232 | _debug("need instant resend %d", ret); |
248f219c | 233 | rxrpc_instant_resend(call, ix); |
dfc3da44 | 234 | } else { |
a158bdd3 | 235 | unsigned long now = jiffies, resend_at; |
dfc3da44 | 236 | |
beb8e5e4 DH |
237 | if (call->peer->rtt_usage > 1) |
238 | resend_at = nsecs_to_jiffies(call->peer->rtt * 3 / 2); | |
239 | else | |
240 | resend_at = rxrpc_resend_timeout; | |
241 | if (resend_at < 1) | |
242 | resend_at = 1; | |
243 | ||
282ef472 | 244 | resend_at += now; |
a158bdd3 DH |
245 | WRITE_ONCE(call->resend_at, resend_at); |
246 | rxrpc_reduce_call_timer(call, resend_at, now, | |
247 | rxrpc_timer_set_for_send); | |
df423a4a DH |
248 | } |
249 | ||
c54e43d7 | 250 | out: |
71f3ca40 | 251 | rxrpc_free_skb(skb, rxrpc_skb_tx_freed); |
8e8715aa MD |
252 | _leave(" = %d", ret); |
253 | return ret; | |
0b58b8a1 DH |
254 | } |
255 | ||
df423a4a DH |
256 | /* |
257 | * send data through a socket | |
258 | * - must be called in process context | |
540b1c48 | 259 | * - The caller holds the call user access mutex, but not the socket lock. |
0b58b8a1 | 260 | */ |
df423a4a DH |
261 | static int rxrpc_send_data(struct rxrpc_sock *rx, |
262 | struct rxrpc_call *call, | |
e833251a DH |
263 | struct msghdr *msg, size_t len, |
264 | rxrpc_notify_end_tx_t notify_end_tx) | |
0b58b8a1 | 265 | { |
df423a4a DH |
266 | struct rxrpc_skb_priv *sp; |
267 | struct sk_buff *skb; | |
268 | struct sock *sk = &rx->sk; | |
269 | long timeo; | |
270 | bool more; | |
271 | int ret, copied; | |
0b58b8a1 | 272 | |
df423a4a | 273 | timeo = sock_sndtimeo(sk, msg->msg_flags & MSG_DONTWAIT); |
0b58b8a1 | 274 | |
df423a4a DH |
275 | /* this should be in poll */ |
276 | sk_clear_bit(SOCKWQ_ASYNC_NOSPACE, sk); | |
0b58b8a1 | 277 | |
df423a4a DH |
278 | if (sk->sk_err || (sk->sk_shutdown & SEND_SHUTDOWN)) |
279 | return -EPIPE; | |
0b58b8a1 | 280 | |
df423a4a | 281 | more = msg->msg_flags & MSG_MORE; |
0b58b8a1 | 282 | |
e754eba6 DH |
283 | if (call->tx_total_len != -1) { |
284 | if (len > call->tx_total_len) | |
285 | return -EMSGSIZE; | |
286 | if (!more && len != call->tx_total_len) | |
287 | return -EMSGSIZE; | |
288 | } | |
289 | ||
df423a4a DH |
290 | skb = call->tx_pending; |
291 | call->tx_pending = NULL; | |
71f3ca40 | 292 | rxrpc_see_skb(skb, rxrpc_skb_tx_seen); |
0b58b8a1 | 293 | |
df423a4a DH |
294 | copied = 0; |
295 | do { | |
7aa51da7 DH |
296 | /* Check to see if there's a ping ACK to reply to. */ |
297 | if (call->ackr_reason == RXRPC_ACK_PING_RESPONSE) | |
bd1fdf8c | 298 | rxrpc_send_ack_packet(call, false, NULL); |
7aa51da7 | 299 | |
df423a4a DH |
300 | if (!skb) { |
301 | size_t size, chunk, max, space; | |
0b58b8a1 | 302 | |
df423a4a | 303 | _debug("alloc"); |
0b58b8a1 | 304 | |
248f219c | 305 | if (call->tx_top - call->tx_hard_ack >= |
57494343 DH |
306 | min_t(unsigned int, call->tx_winsize, |
307 | call->cong_cwnd + call->cong_extra)) { | |
df423a4a DH |
308 | ret = -EAGAIN; |
309 | if (msg->msg_flags & MSG_DONTWAIT) | |
310 | goto maybe_error; | |
311 | ret = rxrpc_wait_for_tx_window(rx, call, | |
bc5e3a54 DH |
312 | &timeo, |
313 | msg->msg_flags & MSG_WAITALL); | |
df423a4a DH |
314 | if (ret < 0) |
315 | goto maybe_error; | |
316 | } | |
0b58b8a1 | 317 | |
182f5056 | 318 | max = RXRPC_JUMBO_DATALEN; |
df423a4a DH |
319 | max -= call->conn->security_size; |
320 | max &= ~(call->conn->size_align - 1UL); | |
0b58b8a1 | 321 | |
df423a4a DH |
322 | chunk = max; |
323 | if (chunk > msg_data_left(msg) && !more) | |
324 | chunk = msg_data_left(msg); | |
0b58b8a1 | 325 | |
df423a4a DH |
326 | space = chunk + call->conn->size_align; |
327 | space &= ~(call->conn->size_align - 1UL); | |
0b58b8a1 | 328 | |
5a924b89 | 329 | size = space + call->conn->security_size; |
0b58b8a1 | 330 | |
df423a4a | 331 | _debug("SIZE: %zu/%zu/%zu", chunk, space, size); |
0b58b8a1 | 332 | |
df423a4a DH |
333 | /* create a buffer that we can retain until it's ACK'd */ |
334 | skb = sock_alloc_send_skb( | |
335 | sk, size, msg->msg_flags & MSG_DONTWAIT, &ret); | |
336 | if (!skb) | |
337 | goto maybe_error; | |
0b58b8a1 | 338 | |
b311e684 DH |
339 | sp = rxrpc_skb(skb); |
340 | sp->rx_flags |= RXRPC_SKB_TX_BUFFER; | |
71f3ca40 | 341 | rxrpc_new_skb(skb, rxrpc_skb_tx_new); |
0b58b8a1 | 342 | |
df423a4a | 343 | _debug("ALLOC SEND %p", skb); |
0b58b8a1 | 344 | |
df423a4a | 345 | ASSERTCMP(skb->mark, ==, 0); |
0b58b8a1 | 346 | |
5a924b89 DH |
347 | _debug("HS: %u", call->conn->security_size); |
348 | skb_reserve(skb, call->conn->security_size); | |
349 | skb->len += call->conn->security_size; | |
0b58b8a1 | 350 | |
df423a4a DH |
351 | sp->remain = chunk; |
352 | if (sp->remain > skb_tailroom(skb)) | |
353 | sp->remain = skb_tailroom(skb); | |
0b58b8a1 | 354 | |
df423a4a DH |
355 | _net("skb: hr %d, tr %d, hl %d, rm %d", |
356 | skb_headroom(skb), | |
357 | skb_tailroom(skb), | |
358 | skb_headlen(skb), | |
359 | sp->remain); | |
0b58b8a1 | 360 | |
df423a4a DH |
361 | skb->ip_summed = CHECKSUM_UNNECESSARY; |
362 | } | |
0b58b8a1 | 363 | |
df423a4a DH |
364 | _debug("append"); |
365 | sp = rxrpc_skb(skb); | |
0b58b8a1 | 366 | |
df423a4a DH |
367 | /* append next segment of data to the current buffer */ |
368 | if (msg_data_left(msg) > 0) { | |
369 | int copy = skb_tailroom(skb); | |
370 | ASSERTCMP(copy, >, 0); | |
371 | if (copy > msg_data_left(msg)) | |
372 | copy = msg_data_left(msg); | |
373 | if (copy > sp->remain) | |
374 | copy = sp->remain; | |
0b58b8a1 | 375 | |
df423a4a DH |
376 | _debug("add"); |
377 | ret = skb_add_data(skb, &msg->msg_iter, copy); | |
378 | _debug("added"); | |
379 | if (ret < 0) | |
380 | goto efault; | |
381 | sp->remain -= copy; | |
382 | skb->mark += copy; | |
383 | copied += copy; | |
e754eba6 DH |
384 | if (call->tx_total_len != -1) |
385 | call->tx_total_len -= copy; | |
0b58b8a1 DH |
386 | } |
387 | ||
e122d845 DH |
388 | /* check for the far side aborting the call or a network error |
389 | * occurring */ | |
390 | if (call->state == RXRPC_CALL_COMPLETE) | |
391 | goto call_terminated; | |
392 | ||
df423a4a DH |
393 | /* add the packet to the send queue if it's now full */ |
394 | if (sp->remain <= 0 || | |
395 | (msg_data_left(msg) == 0 && !more)) { | |
396 | struct rxrpc_connection *conn = call->conn; | |
397 | uint32_t seq; | |
398 | size_t pad; | |
0b58b8a1 | 399 | |
df423a4a DH |
400 | /* pad out if we're using security */ |
401 | if (conn->security_ix) { | |
402 | pad = conn->security_size + skb->mark; | |
403 | pad = conn->size_align - pad; | |
404 | pad &= conn->size_align - 1; | |
405 | _debug("pad %zu", pad); | |
406 | if (pad) | |
b080db58 | 407 | skb_put_zero(skb, pad); |
df423a4a | 408 | } |
0b58b8a1 | 409 | |
248f219c | 410 | seq = call->tx_top + 1; |
0b58b8a1 | 411 | |
df423a4a | 412 | sp->hdr.seq = seq; |
df423a4a | 413 | sp->hdr._rsvd = 0; |
5a924b89 | 414 | sp->hdr.flags = conn->out_clientflag; |
0b58b8a1 | 415 | |
df423a4a DH |
416 | if (msg_data_left(msg) == 0 && !more) |
417 | sp->hdr.flags |= RXRPC_LAST_PACKET; | |
248f219c DH |
418 | else if (call->tx_top - call->tx_hard_ack < |
419 | call->tx_winsize) | |
df423a4a | 420 | sp->hdr.flags |= RXRPC_MORE_PACKETS; |
0b58b8a1 | 421 | |
df423a4a | 422 | ret = conn->security->secure_packet( |
5a924b89 | 423 | call, skb, skb->mark, skb->head); |
df423a4a DH |
424 | if (ret < 0) |
425 | goto out; | |
0b58b8a1 | 426 | |
8e8715aa MD |
427 | ret = rxrpc_queue_packet(rx, call, skb, |
428 | !msg_data_left(msg) && !more, | |
429 | notify_end_tx); | |
430 | /* Should check for failure here */ | |
df423a4a DH |
431 | skb = NULL; |
432 | } | |
433 | } while (msg_data_left(msg) > 0); | |
0b58b8a1 | 434 | |
df423a4a DH |
435 | success: |
436 | ret = copied; | |
437 | out: | |
438 | call->tx_pending = skb; | |
439 | _leave(" = %d", ret); | |
440 | return ret; | |
0b58b8a1 | 441 | |
e122d845 DH |
442 | call_terminated: |
443 | rxrpc_free_skb(skb, rxrpc_skb_tx_freed); | |
444 | _leave(" = %d", call->error); | |
445 | return call->error; | |
446 | ||
df423a4a DH |
447 | maybe_error: |
448 | if (copied) | |
449 | goto success; | |
450 | goto out; | |
0b58b8a1 | 451 | |
df423a4a DH |
452 | efault: |
453 | ret = -EFAULT; | |
454 | goto out; | |
0b58b8a1 DH |
455 | } |
456 | ||
457 | /* | |
df423a4a | 458 | * extract control messages from the sendmsg() control buffer |
0b58b8a1 | 459 | */ |
3ab26a6f | 460 | static int rxrpc_sendmsg_cmsg(struct msghdr *msg, struct rxrpc_send_params *p) |
0b58b8a1 | 461 | { |
df423a4a DH |
462 | struct cmsghdr *cmsg; |
463 | bool got_user_ID = false; | |
464 | int len; | |
0b58b8a1 | 465 | |
df423a4a DH |
466 | if (msg->msg_controllen == 0) |
467 | return -EINVAL; | |
0b58b8a1 | 468 | |
df423a4a DH |
469 | for_each_cmsghdr(cmsg, msg) { |
470 | if (!CMSG_OK(msg, cmsg)) | |
471 | return -EINVAL; | |
0b58b8a1 | 472 | |
1ff8cebf | 473 | len = cmsg->cmsg_len - sizeof(struct cmsghdr); |
df423a4a DH |
474 | _debug("CMSG %d, %d, %d", |
475 | cmsg->cmsg_level, cmsg->cmsg_type, len); | |
0b58b8a1 | 476 | |
df423a4a DH |
477 | if (cmsg->cmsg_level != SOL_RXRPC) |
478 | continue; | |
0b58b8a1 | 479 | |
df423a4a DH |
480 | switch (cmsg->cmsg_type) { |
481 | case RXRPC_USER_CALL_ID: | |
482 | if (msg->msg_flags & MSG_CMSG_COMPAT) { | |
483 | if (len != sizeof(u32)) | |
484 | return -EINVAL; | |
48124178 | 485 | p->call.user_call_ID = *(u32 *)CMSG_DATA(cmsg); |
df423a4a DH |
486 | } else { |
487 | if (len != sizeof(unsigned long)) | |
488 | return -EINVAL; | |
48124178 | 489 | p->call.user_call_ID = *(unsigned long *) |
df423a4a DH |
490 | CMSG_DATA(cmsg); |
491 | } | |
df423a4a DH |
492 | got_user_ID = true; |
493 | break; | |
0b58b8a1 | 494 | |
df423a4a | 495 | case RXRPC_ABORT: |
3ab26a6f | 496 | if (p->command != RXRPC_CMD_SEND_DATA) |
df423a4a | 497 | return -EINVAL; |
3ab26a6f DH |
498 | p->command = RXRPC_CMD_SEND_ABORT; |
499 | if (len != sizeof(p->abort_code)) | |
df423a4a | 500 | return -EINVAL; |
3ab26a6f DH |
501 | p->abort_code = *(unsigned int *)CMSG_DATA(cmsg); |
502 | if (p->abort_code == 0) | |
df423a4a DH |
503 | return -EINVAL; |
504 | break; | |
0b58b8a1 | 505 | |
df423a4a | 506 | case RXRPC_ACCEPT: |
3ab26a6f | 507 | if (p->command != RXRPC_CMD_SEND_DATA) |
df423a4a | 508 | return -EINVAL; |
3ab26a6f | 509 | p->command = RXRPC_CMD_ACCEPT; |
df423a4a DH |
510 | if (len != 0) |
511 | return -EINVAL; | |
512 | break; | |
0b58b8a1 | 513 | |
df423a4a | 514 | case RXRPC_EXCLUSIVE_CALL: |
3ab26a6f | 515 | p->exclusive = true; |
df423a4a DH |
516 | if (len != 0) |
517 | return -EINVAL; | |
518 | break; | |
4e255721 DH |
519 | |
520 | case RXRPC_UPGRADE_SERVICE: | |
3ab26a6f | 521 | p->upgrade = true; |
4e255721 DH |
522 | if (len != 0) |
523 | return -EINVAL; | |
524 | break; | |
525 | ||
e754eba6 | 526 | case RXRPC_TX_LENGTH: |
48124178 | 527 | if (p->call.tx_total_len != -1 || len != sizeof(__s64)) |
e754eba6 | 528 | return -EINVAL; |
48124178 DH |
529 | p->call.tx_total_len = *(__s64 *)CMSG_DATA(cmsg); |
530 | if (p->call.tx_total_len < 0) | |
e754eba6 DH |
531 | return -EINVAL; |
532 | break; | |
533 | ||
a158bdd3 DH |
534 | case RXRPC_SET_CALL_TIMEOUT: |
535 | if (len & 3 || len < 4 || len > 12) | |
536 | return -EINVAL; | |
537 | memcpy(&p->call.timeouts, CMSG_DATA(cmsg), len); | |
538 | p->call.nr_timeouts = len / 4; | |
539 | if (p->call.timeouts.hard > INT_MAX / HZ) | |
540 | return -ERANGE; | |
541 | if (p->call.nr_timeouts >= 2 && p->call.timeouts.idle > 60 * 60 * 1000) | |
542 | return -ERANGE; | |
543 | if (p->call.nr_timeouts >= 3 && p->call.timeouts.normal > 60 * 60 * 1000) | |
544 | return -ERANGE; | |
545 | break; | |
546 | ||
df423a4a DH |
547 | default: |
548 | return -EINVAL; | |
549 | } | |
550 | } | |
0b58b8a1 | 551 | |
df423a4a DH |
552 | if (!got_user_ID) |
553 | return -EINVAL; | |
48124178 | 554 | if (p->call.tx_total_len != -1 && p->command != RXRPC_CMD_SEND_DATA) |
e754eba6 | 555 | return -EINVAL; |
df423a4a DH |
556 | _leave(" = 0"); |
557 | return 0; | |
558 | } | |
0b58b8a1 | 559 | |
df423a4a DH |
560 | /* |
561 | * Create a new client call for sendmsg(). | |
540b1c48 DH |
562 | * - Called with the socket lock held, which it must release. |
563 | * - If it returns a call, the call's lock will need releasing by the caller. | |
df423a4a DH |
564 | */ |
565 | static struct rxrpc_call * | |
566 | rxrpc_new_client_call_for_sendmsg(struct rxrpc_sock *rx, struct msghdr *msg, | |
3ab26a6f | 567 | struct rxrpc_send_params *p) |
540b1c48 | 568 | __releases(&rx->sk.sk_lock.slock) |
88f2a825 | 569 | __acquires(&call->user_mutex) |
df423a4a DH |
570 | { |
571 | struct rxrpc_conn_parameters cp; | |
572 | struct rxrpc_call *call; | |
573 | struct key *key; | |
0b58b8a1 | 574 | |
df423a4a | 575 | DECLARE_SOCKADDR(struct sockaddr_rxrpc *, srx, msg->msg_name); |
0b58b8a1 | 576 | |
df423a4a | 577 | _enter(""); |
0b58b8a1 | 578 | |
540b1c48 DH |
579 | if (!msg->msg_name) { |
580 | release_sock(&rx->sk); | |
df423a4a | 581 | return ERR_PTR(-EDESTADDRREQ); |
540b1c48 | 582 | } |
0b58b8a1 | 583 | |
df423a4a DH |
584 | key = rx->key; |
585 | if (key && !rx->key->payload.data[0]) | |
586 | key = NULL; | |
0b58b8a1 | 587 | |
df423a4a DH |
588 | memset(&cp, 0, sizeof(cp)); |
589 | cp.local = rx->local; | |
590 | cp.key = rx->key; | |
591 | cp.security_level = rx->min_sec_level; | |
3ab26a6f DH |
592 | cp.exclusive = rx->exclusive | p->exclusive; |
593 | cp.upgrade = p->upgrade; | |
df423a4a | 594 | cp.service_id = srx->srx_service; |
a25e21f0 DH |
595 | call = rxrpc_new_client_call(rx, &cp, srx, &p->call, GFP_KERNEL, |
596 | atomic_inc_return(&rxrpc_debug_id)); | |
540b1c48 | 597 | /* The socket is now unlocked */ |
0b58b8a1 | 598 | |
17226f12 | 599 | rxrpc_put_peer(cp.peer); |
df423a4a DH |
600 | _leave(" = %p\n", call); |
601 | return call; | |
602 | } | |
0b58b8a1 | 603 | |
df423a4a DH |
604 | /* |
605 | * send a message forming part of a client call through an RxRPC socket | |
606 | * - caller holds the socket locked | |
607 | * - the socket may be either a client socket or a server socket | |
608 | */ | |
609 | int rxrpc_do_sendmsg(struct rxrpc_sock *rx, struct msghdr *msg, size_t len) | |
540b1c48 | 610 | __releases(&rx->sk.sk_lock.slock) |
88f2a825 | 611 | __releases(&call->user_mutex) |
df423a4a | 612 | { |
146d8fef | 613 | enum rxrpc_call_state state; |
df423a4a | 614 | struct rxrpc_call *call; |
a158bdd3 | 615 | unsigned long now, j; |
df423a4a | 616 | int ret; |
0b58b8a1 | 617 | |
3ab26a6f | 618 | struct rxrpc_send_params p = { |
48124178 DH |
619 | .call.tx_total_len = -1, |
620 | .call.user_call_ID = 0, | |
a158bdd3 | 621 | .call.nr_timeouts = 0, |
b960a34b | 622 | .call.intr = true, |
48124178 DH |
623 | .abort_code = 0, |
624 | .command = RXRPC_CMD_SEND_DATA, | |
625 | .exclusive = false, | |
626 | .upgrade = false, | |
3ab26a6f DH |
627 | }; |
628 | ||
df423a4a | 629 | _enter(""); |
0b58b8a1 | 630 | |
3ab26a6f | 631 | ret = rxrpc_sendmsg_cmsg(msg, &p); |
df423a4a | 632 | if (ret < 0) |
540b1c48 | 633 | goto error_release_sock; |
0b58b8a1 | 634 | |
3ab26a6f | 635 | if (p.command == RXRPC_CMD_ACCEPT) { |
540b1c48 | 636 | ret = -EINVAL; |
df423a4a | 637 | if (rx->sk.sk_state != RXRPC_SERVER_LISTENING) |
540b1c48 | 638 | goto error_release_sock; |
48124178 | 639 | call = rxrpc_accept_call(rx, p.call.user_call_ID, NULL); |
540b1c48 | 640 | /* The socket is now unlocked. */ |
df423a4a DH |
641 | if (IS_ERR(call)) |
642 | return PTR_ERR(call); | |
03a6c822 DH |
643 | ret = 0; |
644 | goto out_put_unlock; | |
df423a4a | 645 | } |
0b58b8a1 | 646 | |
48124178 | 647 | call = rxrpc_find_call_by_user_ID(rx, p.call.user_call_ID); |
df423a4a | 648 | if (!call) { |
540b1c48 | 649 | ret = -EBADSLT; |
3ab26a6f | 650 | if (p.command != RXRPC_CMD_SEND_DATA) |
540b1c48 | 651 | goto error_release_sock; |
3ab26a6f | 652 | call = rxrpc_new_client_call_for_sendmsg(rx, msg, &p); |
540b1c48 | 653 | /* The socket is now unlocked... */ |
df423a4a DH |
654 | if (IS_ERR(call)) |
655 | return PTR_ERR(call); | |
540b1c48 DH |
656 | /* ... and we have the call lock. */ |
657 | } else { | |
146d8fef DH |
658 | switch (READ_ONCE(call->state)) { |
659 | case RXRPC_CALL_UNINITIALISED: | |
660 | case RXRPC_CALL_CLIENT_AWAIT_CONN: | |
661 | case RXRPC_CALL_SERVER_PREALLOC: | |
662 | case RXRPC_CALL_SERVER_SECURING: | |
663 | case RXRPC_CALL_SERVER_ACCEPTING: | |
664 | ret = -EBUSY; | |
37411cad | 665 | goto error_release_sock; |
146d8fef DH |
666 | default: |
667 | break; | |
668 | } | |
37411cad | 669 | |
540b1c48 DH |
670 | ret = mutex_lock_interruptible(&call->user_mutex); |
671 | release_sock(&rx->sk); | |
672 | if (ret < 0) { | |
673 | ret = -ERESTARTSYS; | |
674 | goto error_put; | |
675 | } | |
e754eba6 | 676 | |
48124178 | 677 | if (p.call.tx_total_len != -1) { |
e754eba6 DH |
678 | ret = -EINVAL; |
679 | if (call->tx_total_len != -1 || | |
680 | call->tx_pending || | |
681 | call->tx_top != 0) | |
682 | goto error_put; | |
48124178 | 683 | call->tx_total_len = p.call.tx_total_len; |
e754eba6 | 684 | } |
df423a4a | 685 | } |
0b58b8a1 | 686 | |
a158bdd3 DH |
687 | switch (p.call.nr_timeouts) { |
688 | case 3: | |
689 | j = msecs_to_jiffies(p.call.timeouts.normal); | |
690 | if (p.call.timeouts.normal > 0 && j == 0) | |
691 | j = 1; | |
692 | WRITE_ONCE(call->next_rx_timo, j); | |
693 | /* Fall through */ | |
694 | case 2: | |
695 | j = msecs_to_jiffies(p.call.timeouts.idle); | |
696 | if (p.call.timeouts.idle > 0 && j == 0) | |
697 | j = 1; | |
698 | WRITE_ONCE(call->next_req_timo, j); | |
699 | /* Fall through */ | |
700 | case 1: | |
701 | if (p.call.timeouts.hard > 0) { | |
702 | j = msecs_to_jiffies(p.call.timeouts.hard); | |
703 | now = jiffies; | |
704 | j += now; | |
705 | WRITE_ONCE(call->expect_term_by, j); | |
706 | rxrpc_reduce_call_timer(call, j, now, | |
707 | rxrpc_timer_set_for_hard); | |
708 | } | |
709 | break; | |
710 | } | |
711 | ||
146d8fef | 712 | state = READ_ONCE(call->state); |
df423a4a | 713 | _debug("CALL %d USR %lx ST %d on CONN %p", |
146d8fef | 714 | call->debug_id, call->user_call_ID, state, call->conn); |
0b58b8a1 | 715 | |
146d8fef | 716 | if (state >= RXRPC_CALL_COMPLETE) { |
df423a4a DH |
717 | /* it's too late for this call */ |
718 | ret = -ESHUTDOWN; | |
3ab26a6f | 719 | } else if (p.command == RXRPC_CMD_SEND_ABORT) { |
df423a4a | 720 | ret = 0; |
3ab26a6f | 721 | if (rxrpc_abort_call("CMD", call, 0, p.abort_code, -ECONNABORTED)) |
26cb02aa | 722 | ret = rxrpc_send_abort_packet(call); |
3ab26a6f | 723 | } else if (p.command != RXRPC_CMD_SEND_DATA) { |
df423a4a DH |
724 | ret = -EINVAL; |
725 | } else if (rxrpc_is_client_call(call) && | |
146d8fef | 726 | state != RXRPC_CALL_CLIENT_SEND_REQUEST) { |
df423a4a DH |
727 | /* request phase complete for this client call */ |
728 | ret = -EPROTO; | |
729 | } else if (rxrpc_is_service_call(call) && | |
146d8fef DH |
730 | state != RXRPC_CALL_SERVER_ACK_REQUEST && |
731 | state != RXRPC_CALL_SERVER_SEND_REPLY) { | |
df423a4a DH |
732 | /* Reply phase not begun or not complete for service call. */ |
733 | ret = -EPROTO; | |
734 | } else { | |
e833251a | 735 | ret = rxrpc_send_data(rx, call, msg, len, NULL); |
df423a4a | 736 | } |
0b58b8a1 | 737 | |
03a6c822 | 738 | out_put_unlock: |
540b1c48 DH |
739 | mutex_unlock(&call->user_mutex); |
740 | error_put: | |
fff72429 | 741 | rxrpc_put_call(call, rxrpc_call_put); |
df423a4a DH |
742 | _leave(" = %d", ret); |
743 | return ret; | |
540b1c48 DH |
744 | |
745 | error_release_sock: | |
746 | release_sock(&rx->sk); | |
747 | return ret; | |
df423a4a | 748 | } |
0b58b8a1 | 749 | |
df423a4a DH |
750 | /** |
751 | * rxrpc_kernel_send_data - Allow a kernel service to send data on a call | |
752 | * @sock: The socket the call is on | |
753 | * @call: The call to send data through | |
754 | * @msg: The data to send | |
755 | * @len: The amount of data to send | |
e833251a | 756 | * @notify_end_tx: Notification that the last packet is queued. |
df423a4a DH |
757 | * |
758 | * Allow a kernel service to send data on a call. The call must be in an state | |
759 | * appropriate to sending data. No control data should be supplied in @msg, | |
760 | * nor should an address be supplied. MSG_MORE should be flagged if there's | |
761 | * more data to come, otherwise this data will end the transmission phase. | |
762 | */ | |
763 | int rxrpc_kernel_send_data(struct socket *sock, struct rxrpc_call *call, | |
e833251a DH |
764 | struct msghdr *msg, size_t len, |
765 | rxrpc_notify_end_tx_t notify_end_tx) | |
df423a4a DH |
766 | { |
767 | int ret; | |
0b58b8a1 | 768 | |
df423a4a | 769 | _enter("{%d,%s},", call->debug_id, rxrpc_call_states[call->state]); |
0b58b8a1 | 770 | |
df423a4a DH |
771 | ASSERTCMP(msg->msg_name, ==, NULL); |
772 | ASSERTCMP(msg->msg_control, ==, NULL); | |
0b58b8a1 | 773 | |
540b1c48 | 774 | mutex_lock(&call->user_mutex); |
0b58b8a1 | 775 | |
df423a4a DH |
776 | _debug("CALL %d USR %lx ST %d on CONN %p", |
777 | call->debug_id, call->user_call_ID, call->state, call->conn); | |
0b58b8a1 | 778 | |
146d8fef DH |
779 | switch (READ_ONCE(call->state)) { |
780 | case RXRPC_CALL_CLIENT_SEND_REQUEST: | |
781 | case RXRPC_CALL_SERVER_ACK_REQUEST: | |
782 | case RXRPC_CALL_SERVER_SEND_REPLY: | |
e833251a DH |
783 | ret = rxrpc_send_data(rxrpc_sk(sock->sk), call, msg, len, |
784 | notify_end_tx); | |
146d8fef DH |
785 | break; |
786 | case RXRPC_CALL_COMPLETE: | |
6fc166d6 | 787 | read_lock_bh(&call->state_lock); |
bd2db2d2 | 788 | ret = call->error; |
6fc166d6 | 789 | read_unlock_bh(&call->state_lock); |
146d8fef DH |
790 | break; |
791 | default: | |
fb46f6ee DH |
792 | /* Request phase complete for this client call */ |
793 | trace_rxrpc_rx_eproto(call, 0, tracepoint_string("late_send")); | |
146d8fef DH |
794 | ret = -EPROTO; |
795 | break; | |
df423a4a DH |
796 | } |
797 | ||
540b1c48 | 798 | mutex_unlock(&call->user_mutex); |
0b58b8a1 DH |
799 | _leave(" = %d", ret); |
800 | return ret; | |
df423a4a DH |
801 | } |
802 | EXPORT_SYMBOL(rxrpc_kernel_send_data); | |
0b58b8a1 | 803 | |
df423a4a DH |
804 | /** |
805 | * rxrpc_kernel_abort_call - Allow a kernel service to abort a call | |
806 | * @sock: The socket the call is on | |
807 | * @call: The call to be aborted | |
808 | * @abort_code: The abort code to stick into the ABORT packet | |
5a42976d DH |
809 | * @error: Local error value |
810 | * @why: 3-char string indicating why. | |
df423a4a | 811 | * |
84a4c09c DH |
812 | * Allow a kernel service to abort a call, if it's still in an abortable state |
813 | * and return true if the call was aborted, false if it was already complete. | |
df423a4a | 814 | */ |
84a4c09c | 815 | bool rxrpc_kernel_abort_call(struct socket *sock, struct rxrpc_call *call, |
5a42976d | 816 | u32 abort_code, int error, const char *why) |
df423a4a | 817 | { |
84a4c09c DH |
818 | bool aborted; |
819 | ||
5a42976d | 820 | _enter("{%d},%d,%d,%s", call->debug_id, abort_code, error, why); |
0b58b8a1 | 821 | |
540b1c48 | 822 | mutex_lock(&call->user_mutex); |
0b58b8a1 | 823 | |
84a4c09c DH |
824 | aborted = rxrpc_abort_call(why, call, 0, abort_code, error); |
825 | if (aborted) | |
26cb02aa | 826 | rxrpc_send_abort_packet(call); |
df423a4a | 827 | |
540b1c48 | 828 | mutex_unlock(&call->user_mutex); |
84a4c09c | 829 | return aborted; |
0b58b8a1 | 830 | } |
df423a4a | 831 | EXPORT_SYMBOL(rxrpc_kernel_abort_call); |
e754eba6 DH |
832 | |
833 | /** | |
834 | * rxrpc_kernel_set_tx_length - Set the total Tx length on a call | |
835 | * @sock: The socket the call is on | |
836 | * @call: The call to be informed | |
837 | * @tx_total_len: The amount of data to be transmitted for this call | |
838 | * | |
839 | * Allow a kernel service to set the total transmit length on a call. This | |
840 | * allows buffer-to-packet encrypt-and-copy to be performed. | |
841 | * | |
842 | * This function is primarily for use for setting the reply length since the | |
843 | * request length can be set when beginning the call. | |
844 | */ | |
845 | void rxrpc_kernel_set_tx_length(struct socket *sock, struct rxrpc_call *call, | |
846 | s64 tx_total_len) | |
847 | { | |
848 | WARN_ON(call->tx_total_len != -1); | |
849 | call->tx_total_len = tx_total_len; | |
850 | } | |
851 | EXPORT_SYMBOL(rxrpc_kernel_set_tx_length); |