options.c 14.6 KB
Newer Older
1 2 3 4
/*
 *  net/dccp/options.c
 *
 *  An implementation of the DCCP protocol
I
Ian McDonald 已提交
5 6
 *  Copyright (c) 2005 Aristeu Sergio Rozanski Filho <aris@cathedrallabs.org>
 *  Copyright (c) 2005 Arnaldo Carvalho de Melo <acme@ghostprotocols.net>
7
 *  Copyright (c) 2005 Ian McDonald <ian.mcdonald@jandi.co.nz>
8 9 10 11 12 13 14 15 16
 *
 *      This program is free software; you can redistribute it and/or
 *      modify it under the terms of the GNU General Public License
 *      as published by the Free Software Foundation; either version
 *      2 of the License, or (at your option) any later version.
 */
#include <linux/dccp.h>
#include <linux/module.h>
#include <linux/types.h>
G
Gerrit Renker 已提交
17
#include <asm/unaligned.h>
18 19 20
#include <linux/kernel.h>
#include <linux/skbuff.h>

21
#include "ackvec.h"
22 23
#include "ccid.h"
#include "dccp.h"
24
#include "feat.h"
25

26 27 28 29 30 31
int sysctl_dccp_feat_sequence_window = DCCPF_INITIAL_SEQUENCE_WINDOW;
int sysctl_dccp_feat_rx_ccid	      = DCCPF_INITIAL_CCID;
int sysctl_dccp_feat_tx_ccid	      = DCCPF_INITIAL_CCID;
int sysctl_dccp_feat_ack_ratio	      = DCCPF_INITIAL_ACK_RATIO;
int sysctl_dccp_feat_send_ack_vector = DCCPF_INITIAL_SEND_ACK_VECTOR;
int sysctl_dccp_feat_send_ndp_count  = DCCPF_INITIAL_SEND_NDP_COUNT;
32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53

static u32 dccp_decode_value_var(const unsigned char *bf, const u8 len)
{
	u32 value = 0;

	if (len > 3)
		value += *bf++ << 24;
	if (len > 2)
		value += *bf++ << 16;
	if (len > 1)
		value += *bf++ << 8;
	if (len > 0)
		value += *bf;

	return value;
}

int dccp_parse_options(struct sock *sk, struct sk_buff *skb)
{
	struct dccp_sock *dp = dccp_sk(sk);
	const struct dccp_hdr *dh = dccp_hdr(skb);
	const u8 pkt_type = DCCP_SKB_CB(skb)->dccpd_type;
54
	u64 ackno = DCCP_SKB_CB(skb)->dccpd_ack_seq;
55 56
	unsigned char *options = (unsigned char *)dh + dccp_hdr_len(skb);
	unsigned char *opt_ptr = options;
57 58
	const unsigned char *opt_end = (unsigned char *)dh +
					(dh->dccph_doff * 4);
59 60 61
	struct dccp_options_received *opt_recv = &dp->dccps_options_received;
	unsigned char opt, len;
	unsigned char *value;
62
	u32 elapsed_time;
G
Gerrit Renker 已提交
63
	__be32 opt_val;
64 65
	int rc;
	int mandatory = 0;
66 67 68

	memset(opt_recv, 0, sizeof(*opt_recv));

69
	opt = len = 0;
70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97
	while (opt_ptr != opt_end) {
		opt   = *opt_ptr++;
		len   = 0;
		value = NULL;

		/* Check if this isn't a single byte option */
		if (opt > DCCPO_MAX_RESERVED) {
			if (opt_ptr == opt_end)
				goto out_invalid_option;

			len = *opt_ptr++;
			if (len < 3)
				goto out_invalid_option;
			/*
			 * Remove the type and len fields, leaving
			 * just the value size
			 */
			len	-= 2;
			value	= opt_ptr;
			opt_ptr += len;

			if (opt_ptr > opt_end)
				goto out_invalid_option;
		}

		switch (opt) {
		case DCCPO_PADDING:
			break;
98 99 100
		case DCCPO_MANDATORY:
			if (mandatory)
				goto out_invalid_option;
101 102
			if (pkt_type != DCCP_PKT_DATA)
				mandatory = 1;
103
			break;
104 105 106 107 108
		case DCCPO_NDP_COUNT:
			if (len > 3)
				goto out_invalid_option;

			opt_recv->dccpor_ndp = dccp_decode_value_var(value, len);
109
			dccp_pr_debug("%s rx opt: NDP count=%d\n", dccp_role(sk),
110
				      opt_recv->dccpor_ndp);
111
			break;
112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136
		case DCCPO_CHANGE_L:
			/* fall through */
		case DCCPO_CHANGE_R:
			if (len < 2)
				goto out_invalid_option;
			rc = dccp_feat_change_recv(sk, opt, *value, value + 1,
						   len - 1);
			/*
			 * When there is a change error, change_recv is
			 * responsible for dealing with it.  i.e. reply with an
			 * empty confirm.
			 * If the change was mandatory, then we need to die.
			 */
			if (rc && mandatory)
				goto out_invalid_option;
			break;
		case DCCPO_CONFIRM_L:
			/* fall through */
		case DCCPO_CONFIRM_R:
			if (len < 2)
				goto out_invalid_option;
			if (dccp_feat_confirm_recv(sk, opt, *value,
						   value + 1, len - 1))
				goto out_invalid_option;
			break;
137
		case DCCPO_ACK_VECTOR_0:
138
		case DCCPO_ACK_VECTOR_1:
139
			if (dccp_packet_without_ack(skb))   /* RFC 4340, 11.4 */
140
				break;
141

142
			if (dccp_msk(sk)->dccpms_send_ack_vector &&
143
			    dccp_ackvec_parse(sk, skb, &ackno, opt, value, len))
144
				goto out_invalid_option;
145 146 147 148 149
			break;
		case DCCPO_TIMESTAMP:
			if (len != 4)
				goto out_invalid_option;

G
Gerrit Renker 已提交
150 151
			opt_val = get_unaligned((__be32 *)value);
			opt_recv->dccpor_timestamp = ntohl(opt_val);
152 153

			dp->dccps_timestamp_echo = opt_recv->dccpor_timestamp;
154
			dp->dccps_timestamp_time = ktime_get_real();
155

156 157
			dccp_pr_debug("%s rx opt: TIMESTAMP=%u, ackno=%llu\n",
				      dccp_role(sk), opt_recv->dccpor_timestamp,
158
				      (unsigned long long)
159 160 161
				      DCCP_SKB_CB(skb)->dccpd_ack_seq);
			break;
		case DCCPO_TIMESTAMP_ECHO:
I
Ian McDonald 已提交
162
			if (len != 4 && len != 6 && len != 8)
163 164
				goto out_invalid_option;

G
Gerrit Renker 已提交
165 166
			opt_val = get_unaligned((__be32 *)value);
			opt_recv->dccpor_timestamp_echo = ntohl(opt_val);
167

168
			dccp_pr_debug("%s rx opt: TIMESTAMP_ECHO=%u, len=%d, "
169
				      "ackno=%llu", dccp_role(sk),
170
				      opt_recv->dccpor_timestamp_echo,
171 172
				      len + 2,
				      (unsigned long long)
I
Ian McDonald 已提交
173 174
				      DCCP_SKB_CB(skb)->dccpd_ack_seq);

G
Gerrit Renker 已提交
175
			value += 4;
I
Ian McDonald 已提交
176

G
Gerrit Renker 已提交
177
			if (len == 4) {		/* no elapsed time included */
178
				dccp_pr_debug_cat("\n");
179
				break;
180
			}
181

G
Gerrit Renker 已提交
182 183 184 185 186 187 188
			if (len == 6) {		/* 2-byte elapsed time */
				__be16 opt_val2 = get_unaligned((__be16 *)value);
				elapsed_time = ntohs(opt_val2);
			} else {		/* 4-byte elapsed time */
				opt_val = get_unaligned((__be32 *)value);
				elapsed_time = ntohl(opt_val);
			}
189

G
Gerrit Renker 已提交
190
			dccp_pr_debug_cat(", ELAPSED_TIME=%u\n", elapsed_time);
191

192 193 194
			/* Give precedence to the biggest ELAPSED_TIME */
			if (elapsed_time > opt_recv->dccpor_elapsed_time)
				opt_recv->dccpor_elapsed_time = elapsed_time;
195 196
			break;
		case DCCPO_ELAPSED_TIME:
197 198
			if (dccp_packet_without_ack(skb))   /* RFC 4340, 13.2 */
				break;
I
Ian McDonald 已提交
199

G
Gerrit Renker 已提交
200 201 202
			if (len == 2) {
				__be16 opt_val2 = get_unaligned((__be16 *)value);
				elapsed_time = ntohs(opt_val2);
203
			} else if (len == 4) {
G
Gerrit Renker 已提交
204 205
				opt_val = get_unaligned((__be32 *)value);
				elapsed_time = ntohl(opt_val);
206 207
			} else {
				goto out_invalid_option;
G
Gerrit Renker 已提交
208
			}
209 210 211

			if (elapsed_time > opt_recv->dccpor_elapsed_time)
				opt_recv->dccpor_elapsed_time = elapsed_time;
I
Ian McDonald 已提交
212

213 214
			dccp_pr_debug("%s rx opt: ELAPSED_TIME=%d\n",
				      dccp_role(sk), elapsed_time);
215 216
			break;
			/*
217
			 * From RFC 4340, sec. 10.3:
218
			 *
219 220 221 222 223
			 *	Option numbers 128 through 191 are for
			 *	options sent from the HC-Sender to the
			 *	HC-Receiver; option numbers 192 through 255
			 *	are for options sent from the HC-Receiver to
			 *	the HC-Sender.
224 225 226 227
			 */
		case 128 ... 191: {
			const u16 idx = value - options;

228 229 230
			if (ccid_hc_rx_parse_options(dp->dccps_hc_rx_ccid, sk,
						     opt, len, idx,
						     value) != 0)
231 232 233 234 235 236
				goto out_invalid_option;
		}
			break;
		case 192 ... 255: {
			const u16 idx = value - options;

237 238 239
			if (ccid_hc_tx_parse_options(dp->dccps_hc_tx_ccid, sk,
						     opt, len, idx,
						     value) != 0)
240 241 242 243
				goto out_invalid_option;
		}
			break;
		default:
244 245
			DCCP_CRIT("DCCP(%p): option %d(len=%d) not "
				  "implemented, ignoring", sk, opt, len);
246
			break;
247
		}
248 249 250

		if (opt != DCCPO_MANDATORY)
			mandatory = 0;
251 252
	}

253 254 255 256
	/* mandatory was the last byte in option list -> reset connection */
	if (mandatory)
		goto out_invalid_option;

257 258 259 260 261
	return 0;

out_invalid_option:
	DCCP_INC_STATS_BH(DCCP_MIB_INVALIDOPT);
	DCCP_SKB_CB(skb)->dccpd_reset_code = DCCP_RESET_CODE_OPTION_ERROR;
262
	DCCP_WARN("DCCP(%p): invalid option %d, len=%d", sk, opt, len);
263 264 265
	return -1;
}

266 267
EXPORT_SYMBOL_GPL(dccp_parse_options);

268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285
static void dccp_encode_value_var(const u32 value, unsigned char *to,
				  const unsigned int len)
{
	if (len > 3)
		*to++ = (value & 0xFF000000) >> 24;
	if (len > 2)
		*to++ = (value & 0xFF0000) >> 16;
	if (len > 1)
		*to++ = (value & 0xFF00) >> 8;
	if (len > 0)
		*to++ = (value & 0xFF);
}

static inline int dccp_ndp_len(const int ndp)
{
	return likely(ndp <= 0xFF) ? 1 : ndp <= 0xFFFF ? 2 : 3;
}

286
int dccp_insert_option(struct sock *sk, struct sk_buff *skb,
287 288 289 290 291
			const unsigned char option,
			const void *value, const unsigned char len)
{
	unsigned char *to;

292 293
	if (DCCP_SKB_CB(skb)->dccpd_opt_len + len + 2 > DCCP_MAX_OPT_LEN)
		return -1;
294 295 296 297 298 299 300 301

	DCCP_SKB_CB(skb)->dccpd_opt_len += len + 2;

	to    = skb_push(skb, len + 2);
	*to++ = option;
	*to++ = len + 2;

	memcpy(to, value, len);
302
	return 0;
303 304 305 306
}

EXPORT_SYMBOL_GPL(dccp_insert_option);

307
static int dccp_insert_option_ndp(struct sock *sk, struct sk_buff *skb)
308 309 310 311 312 313 314 315 316 317 318 319 320 321 322
{
	struct dccp_sock *dp = dccp_sk(sk);
	int ndp = dp->dccps_ndp_count;

	if (dccp_non_data_packet(skb))
		++dp->dccps_ndp_count;
	else
		dp->dccps_ndp_count = 0;

	if (ndp > 0) {
		unsigned char *ptr;
		const int ndp_len = dccp_ndp_len(ndp);
		const int len = ndp_len + 2;

		if (DCCP_SKB_CB(skb)->dccpd_opt_len + len > DCCP_MAX_OPT_LEN)
323
			return -1;
324 325 326 327 328 329 330 331

		DCCP_SKB_CB(skb)->dccpd_opt_len += len;

		ptr = skb_push(skb, len);
		*ptr++ = DCCPO_NDP_COUNT;
		*ptr++ = len;
		dccp_encode_value_var(ndp, ptr, ndp_len);
	}
332 333

	return 0;
334 335 336 337
}

static inline int dccp_elapsed_time_len(const u32 elapsed_time)
{
338
	return elapsed_time == 0 ? 0 : elapsed_time <= 0xFFFF ? 2 : 4;
339 340
}

341 342
int dccp_insert_option_elapsed_time(struct sock *sk, struct sk_buff *skb,
				    u32 elapsed_time)
343 344 345 346 347
{
	const int elapsed_time_len = dccp_elapsed_time_len(elapsed_time);
	const int len = 2 + elapsed_time_len;
	unsigned char *to;

I
Ian McDonald 已提交
348
	if (elapsed_time_len == 0)
349
		return 0;
350

351 352
	if (DCCP_SKB_CB(skb)->dccpd_opt_len + len > DCCP_MAX_OPT_LEN)
		return -1;
353 354 355 356 357 358 359

	DCCP_SKB_CB(skb)->dccpd_opt_len += len;

	to    = skb_push(skb, len);
	*to++ = DCCPO_ELAPSED_TIME;
	*to++ = len;

I
Ian McDonald 已提交
360
	if (elapsed_time_len == 2) {
361
		const __be16 var16 = htons((u16)elapsed_time);
I
Ian McDonald 已提交
362 363
		memcpy(to, &var16, 2);
	} else {
364
		const __be32 var32 = htonl(elapsed_time);
I
Ian McDonald 已提交
365 366
		memcpy(to, &var32, 4);
	}
367

368
	return 0;
369 370
}

371
EXPORT_SYMBOL_GPL(dccp_insert_option_elapsed_time);
372

373
int dccp_insert_option_timestamp(struct sock *sk, struct sk_buff *skb)
374
{
375
	__be32 now = htonl(dccp_timestamp());
I
Ian McDonald 已提交
376 377 378
	/* yes this will overflow but that is the point as we want a
	 * 10 usec 32 bit timer which mean it wraps every 11.9 hours */

379
	return dccp_insert_option(sk, skb, DCCPO_TIMESTAMP, &now, sizeof(now));
380 381
}

382 383
EXPORT_SYMBOL_GPL(dccp_insert_option_timestamp);

384 385
static int dccp_insert_option_timestamp_echo(struct sock *sk,
					     struct sk_buff *skb)
386 387
{
	struct dccp_sock *dp = dccp_sk(sk);
388
	__be32 tstamp_echo;
389
	int len, elapsed_time_len;
390
	unsigned char *to;
391 392 393
	const suseconds_t delta = ktime_us_delta(ktime_get_real(),
						 dp->dccps_timestamp_time);
	u32 elapsed_time = delta / 10;
394 395 396
	elapsed_time_len = dccp_elapsed_time_len(elapsed_time);
	len = 6 + elapsed_time_len;

397 398
	if (DCCP_SKB_CB(skb)->dccpd_opt_len + len > DCCP_MAX_OPT_LEN)
		return -1;
399 400 401 402 403 404 405 406 407 408

	DCCP_SKB_CB(skb)->dccpd_opt_len += len;

	to    = skb_push(skb, len);
	*to++ = DCCPO_TIMESTAMP_ECHO;
	*to++ = len;

	tstamp_echo = htonl(dp->dccps_timestamp_echo);
	memcpy(to, &tstamp_echo, 4);
	to += 4;
409

I
Ian McDonald 已提交
410
	if (elapsed_time_len == 2) {
411
		const __be16 var16 = htons((u16)elapsed_time);
I
Ian McDonald 已提交
412 413
		memcpy(to, &var16, 2);
	} else if (elapsed_time_len == 4) {
414
		const __be32 var32 = htonl(elapsed_time);
I
Ian McDonald 已提交
415 416
		memcpy(to, &var32, 4);
	}
417 418

	dp->dccps_timestamp_echo = 0;
419
	dp->dccps_timestamp_time = ktime_set(0, 0);
420
	return 0;
421 422
}

423
static int dccp_insert_feat_opt(struct sk_buff *skb, u8 type, u8 feat,
424
				u8 *val, u8 len)
425 426 427 428
{
	u8 *to;

	if (DCCP_SKB_CB(skb)->dccpd_opt_len + len + 3 > DCCP_MAX_OPT_LEN) {
429
		DCCP_WARN("packet too small for feature %d option!\n", feat);
430 431 432 433 434 435 436 437 438 439 440 441 442
		return -1;
	}

	DCCP_SKB_CB(skb)->dccpd_opt_len += len + 3;

	to    = skb_push(skb, len + 3);
	*to++ = type;
	*to++ = len + 3;
	*to++ = feat;

	if (len)
		memcpy(to, val, len);

443 444 445
	dccp_pr_debug("%s(%s (%d), ...), length %d\n",
		      dccp_feat_typename(type),
		      dccp_feat_name(feat), feat, len);
446 447 448
	return 0;
}

449
static int dccp_insert_options_feat(struct sock *sk, struct sk_buff *skb)
450 451
{
	struct dccp_sock *dp = dccp_sk(sk);
452
	struct dccp_minisock *dmsk = dccp_msk(sk);
453 454 455 456
	struct dccp_opt_pend *opt, *next;
	int change = 0;

	/* confirm any options [NN opts] */
457
	list_for_each_entry_safe(opt, next, &dmsk->dccpms_conf, dccpop_node) {
458 459 460 461 462 463 464 465
		dccp_insert_feat_opt(skb, opt->dccpop_type,
				     opt->dccpop_feat, opt->dccpop_val,
				     opt->dccpop_len);
		/* fear empty confirms */
		if (opt->dccpop_val)
			kfree(opt->dccpop_val);
		kfree(opt);
	}
466
	INIT_LIST_HEAD(&dmsk->dccpms_conf);
467 468

	/* see which features we need to send */
469
	list_for_each_entry(opt, &dmsk->dccpms_pending, dccpop_node) {
470 471 472 473 474 475 476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493 494 495 496 497 498 499 500 501 502 503 504 505 506 507
		/* see if we need to send any confirm */
		if (opt->dccpop_sc) {
			dccp_insert_feat_opt(skb, opt->dccpop_type + 1,
					     opt->dccpop_feat,
					     opt->dccpop_sc->dccpoc_val,
					     opt->dccpop_sc->dccpoc_len);

			BUG_ON(!opt->dccpop_sc->dccpoc_val);
			kfree(opt->dccpop_sc->dccpoc_val);
			kfree(opt->dccpop_sc);
			opt->dccpop_sc = NULL;
		}

		/* any option not confirmed, re-send it */
		if (!opt->dccpop_conf) {
			dccp_insert_feat_opt(skb, opt->dccpop_type,
					     opt->dccpop_feat, opt->dccpop_val,
					     opt->dccpop_len);
			change++;
		}
	}

	/* Retransmit timer.
	 * If this is the master listening sock, we don't set a timer on it.  It
	 * should be fine because if the dude doesn't receive our RESPONSE
	 * [which will contain the CHANGE] he will send another REQUEST which
	 * will "retrnasmit" the change.
	 */
	if (change && dp->dccps_role != DCCP_ROLE_LISTEN) {
		dccp_pr_debug("reset feat negotiation timer %p\n", sk);

		/* XXX don't reset the timer on re-transmissions.  I.e. reset it
		 * only when sending new stuff i guess.  Currently the timer
		 * never backs off because on re-transmission it just resets it!
		 */
		inet_csk_reset_xmit_timer(sk, ICSK_TIME_RETRANS,
					  inet_csk(sk)->icsk_rto, DCCP_RTO_MAX);
	}
508 509

	return 0;
510 511
}

512
int dccp_insert_options(struct sock *sk, struct sk_buff *skb)
513 514
{
	struct dccp_sock *dp = dccp_sk(sk);
515
	struct dccp_minisock *dmsk = dccp_msk(sk);
516 517 518

	DCCP_SKB_CB(skb)->dccpd_opt_len = 0;

519
	if (dmsk->dccpms_send_ndp_count &&
520 521
	    dccp_insert_option_ndp(sk, skb))
		return -1;
522 523

	if (!dccp_packet_without_ack(skb)) {
524
		if (dmsk->dccpms_send_ack_vector &&
525 526 527 528 529 530 531
		    dccp_ackvec_pending(dp->dccps_hc_rx_ackvec) &&
		    dccp_insert_option_ackvec(sk, skb))
			return -1;

		if (dp->dccps_timestamp_echo != 0 &&
		    dccp_insert_option_timestamp_echo(sk, skb))
			return -1;
532 533
	}

534
	if (dp->dccps_hc_rx_insert_options) {
535 536
		if (ccid_hc_rx_insert_options(dp->dccps_hc_rx_ccid, sk, skb))
			return -1;
537 538
		dp->dccps_hc_rx_insert_options = 0;
	}
539

540
	/* Feature negotiation */
541 542 543 544 545
	/* Data packets can't do feat negotiation */
	if (DCCP_SKB_CB(skb)->dccpd_type != DCCP_PKT_DATA &&
	    DCCP_SKB_CB(skb)->dccpd_type != DCCP_PKT_DATAACK &&
	    dccp_insert_options_feat(sk, skb))
		return -1;
546

547 548 549 550 551 552 553 554
	/*
	 * Obtain RTT sample from Request/Response exchange.
	 * This is currently used in CCID 3 initialisation.
	 */
	if (DCCP_SKB_CB(skb)->dccpd_type == DCCP_PKT_REQUEST &&
	    dccp_insert_option_timestamp(sk, skb))
		return -1;

555 556 557 558 559 560 561 562 563 564 565 566
	/* XXX: insert other options when appropriate */

	if (DCCP_SKB_CB(skb)->dccpd_opt_len != 0) {
		/* The length of all options has to be a multiple of 4 */
		int padding = DCCP_SKB_CB(skb)->dccpd_opt_len % 4;

		if (padding != 0) {
			padding = 4 - padding;
			memset(skb_push(skb, padding), 0, padding);
			DCCP_SKB_CB(skb)->dccpd_opt_len += padding;
		}
	}
567 568

	return 0;
569
}