1 // SPDX-License-Identifier: GPL-2.0-or-later
13 #include <linux/capability.h>
14 #include <linux/module.h>
15 #include <linux/errno.h>
16 #include <linux/types.h>
17 #include <linux/socket.h>
19 #include <linux/kernel.h>
20 #include <linux/sched/signal.h>
21 #include <linux/timer.h>
22 #include <linux/string.h>
23 #include <linux/sockios.h>
24 #include <linux/net.h>
25 #include <linux/slab.h>
27 #include <linux/inet.h>
28 #include <linux/netdevice.h>
29 #include <linux/if_arp.h>
30 #include <linux/skbuff.h>
32 #include <linux/uaccess.h>
33 #include <linux/fcntl.h>
34 #include <linux/termios.h> /* For TIOCINQ/OUTQ */
36 #include <linux/interrupt.h>
37 #include <linux/notifier.h>
38 #include <linux/proc_fs.h>
39 #include <linux/stat.h>
40 #include <linux/sysctl.h>
41 #include <linux/init.h>
42 #include <linux/spinlock.h>
43 #include <net/net_namespace.h>
44 #include <net/tcp_states.h>
50 HLIST_HEAD(ax25_list);
51 DEFINE_SPINLOCK(ax25_list_lock);
53 static const struct proto_ops ax25_proto_ops;
55 static void ax25_free_sock(struct sock *sk)
57 ax25_cb_put(sk_to_ax25(sk));
61 * Socket removal during an interrupt is now safe.
63 static void ax25_cb_del(ax25_cb *ax25)
65 if (!hlist_unhashed(&ax25->ax25_node)) {
66 spin_lock_bh(&ax25_list_lock);
67 hlist_del_init(&ax25->ax25_node);
68 spin_unlock_bh(&ax25_list_lock);
74 * Kill all bound sockets on a dropped device.
76 static void ax25_kill_by_device(struct net_device *dev)
81 if ((ax25_dev = ax25_dev_ax25dev(dev)) == NULL)
84 spin_lock_bh(&ax25_list_lock);
86 ax25_for_each(s, &ax25_list) {
87 if (s->ax25_dev == ax25_dev) {
89 spin_unlock_bh(&ax25_list_lock);
90 ax25_disconnect(s, ENETUNREACH);
91 spin_lock_bh(&ax25_list_lock);
93 /* The entry could have been deleted from the
94 * list meanwhile and thus the next pointer is
95 * no longer valid. Play it safe and restart
96 * the scan. Forward progress is ensured
97 * because we set s->ax25_dev to NULL and we
98 * are never passed a NULL 'dev' argument.
103 spin_unlock_bh(&ax25_list_lock);
107 * Handle device status changes.
109 static int ax25_device_event(struct notifier_block *this, unsigned long event,
112 struct net_device *dev = netdev_notifier_info_to_dev(ptr);
114 if (!net_eq(dev_net(dev), &init_net))
117 /* Reject non AX.25 devices */
118 if (dev->type != ARPHRD_AX25)
123 ax25_dev_device_up(dev);
126 ax25_kill_by_device(dev);
127 ax25_rt_device_down(dev);
128 ax25_dev_device_down(dev);
138 * Add a socket to the bound sockets list.
140 void ax25_cb_add(ax25_cb *ax25)
142 spin_lock_bh(&ax25_list_lock);
144 hlist_add_head(&ax25->ax25_node, &ax25_list);
145 spin_unlock_bh(&ax25_list_lock);
149 * Find a socket that wants to accept the SABM we have just
152 struct sock *ax25_find_listener(ax25_address *addr, int digi,
153 struct net_device *dev, int type)
157 spin_lock(&ax25_list_lock);
158 ax25_for_each(s, &ax25_list) {
159 if ((s->iamdigi && !digi) || (!s->iamdigi && digi))
161 if (s->sk && !ax25cmp(&s->source_addr, addr) &&
162 s->sk->sk_type == type && s->sk->sk_state == TCP_LISTEN) {
163 /* If device is null we match any device */
164 if (s->ax25_dev == NULL || s->ax25_dev->dev == dev) {
166 spin_unlock(&ax25_list_lock);
171 spin_unlock(&ax25_list_lock);
177 * Find an AX.25 socket given both ends.
179 struct sock *ax25_get_socket(ax25_address *my_addr, ax25_address *dest_addr,
182 struct sock *sk = NULL;
185 spin_lock(&ax25_list_lock);
186 ax25_for_each(s, &ax25_list) {
187 if (s->sk && !ax25cmp(&s->source_addr, my_addr) &&
188 !ax25cmp(&s->dest_addr, dest_addr) &&
189 s->sk->sk_type == type) {
196 spin_unlock(&ax25_list_lock);
202 * Find an AX.25 control block given both ends. It will only pick up
203 * floating AX.25 control blocks or non Raw socket bound control blocks.
205 ax25_cb *ax25_find_cb(ax25_address *src_addr, ax25_address *dest_addr,
206 ax25_digi *digi, struct net_device *dev)
210 spin_lock_bh(&ax25_list_lock);
211 ax25_for_each(s, &ax25_list) {
212 if (s->sk && s->sk->sk_type != SOCK_SEQPACKET)
214 if (s->ax25_dev == NULL)
216 if (ax25cmp(&s->source_addr, src_addr) == 0 && ax25cmp(&s->dest_addr, dest_addr) == 0 && s->ax25_dev->dev == dev) {
217 if (digi != NULL && digi->ndigi != 0) {
218 if (s->digipeat == NULL)
220 if (ax25digicmp(s->digipeat, digi) != 0)
223 if (s->digipeat != NULL && s->digipeat->ndigi != 0)
227 spin_unlock_bh(&ax25_list_lock);
232 spin_unlock_bh(&ax25_list_lock);
237 EXPORT_SYMBOL(ax25_find_cb);
239 void ax25_send_to_raw(ax25_address *addr, struct sk_buff *skb, int proto)
242 struct sk_buff *copy;
244 spin_lock(&ax25_list_lock);
245 ax25_for_each(s, &ax25_list) {
246 if (s->sk != NULL && ax25cmp(&s->source_addr, addr) == 0 &&
247 s->sk->sk_type == SOCK_RAW &&
248 s->sk->sk_protocol == proto &&
249 s->ax25_dev->dev == skb->dev &&
250 atomic_read(&s->sk->sk_rmem_alloc) <= s->sk->sk_rcvbuf) {
251 if ((copy = skb_clone(skb, GFP_ATOMIC)) == NULL)
253 if (sock_queue_rcv_skb(s->sk, copy) != 0)
257 spin_unlock(&ax25_list_lock);
263 void ax25_destroy_socket(ax25_cb *);
266 * Handler for deferred kills.
268 static void ax25_destroy_timer(struct timer_list *t)
270 ax25_cb *ax25 = from_timer(ax25, t, dtimer);
277 ax25_destroy_socket(ax25);
283 * This is called from user mode and the timers. Thus it protects itself
284 * against interrupt users but doesn't worry about being called during
285 * work. Once it is removed from the queue no interrupt or bottom half
286 * will touch it and we are (fairly 8-) ) safe.
288 void ax25_destroy_socket(ax25_cb *ax25)
294 ax25_stop_heartbeat(ax25);
295 ax25_stop_t1timer(ax25);
296 ax25_stop_t2timer(ax25);
297 ax25_stop_t3timer(ax25);
298 ax25_stop_idletimer(ax25);
300 ax25_clear_queues(ax25); /* Flush the queues */
302 if (ax25->sk != NULL) {
303 while ((skb = skb_dequeue(&ax25->sk->sk_receive_queue)) != NULL) {
304 if (skb->sk != ax25->sk) {
305 /* A pending connection */
306 ax25_cb *sax25 = sk_to_ax25(skb->sk);
308 /* Queue the unaccepted socket for death */
309 sock_orphan(skb->sk);
311 /* 9A4GL: hack to release unaccepted sockets */
312 skb->sk->sk_state = TCP_LISTEN;
314 ax25_start_heartbeat(sax25);
315 sax25->state = AX25_STATE_0;
320 skb_queue_purge(&ax25->sk->sk_write_queue);
323 if (ax25->sk != NULL) {
324 if (sk_has_allocations(ax25->sk)) {
325 /* Defer: outstanding buffers */
326 timer_setup(&ax25->dtimer, ax25_destroy_timer, 0);
327 ax25->dtimer.expires = jiffies + 2 * HZ;
328 add_timer(&ax25->dtimer);
330 struct sock *sk=ax25->sk;
340 * dl1bke 960311: set parameters for existing AX.25 connections,
341 * includes a KILL command to abort any connection.
342 * VERY useful for debugging ;-)
344 static int ax25_ctl_ioctl(const unsigned int cmd, void __user *arg)
346 struct ax25_ctl_struct ax25_ctl;
353 if (copy_from_user(&ax25_ctl, arg, sizeof(ax25_ctl)))
356 if ((ax25_dev = ax25_addr_ax25dev(&ax25_ctl.port_addr)) == NULL)
359 if (ax25_ctl.digi_count > AX25_MAX_DIGIS)
362 if (ax25_ctl.arg > ULONG_MAX / HZ && ax25_ctl.cmd != AX25_KILL)
365 digi.ndigi = ax25_ctl.digi_count;
366 for (k = 0; k < digi.ndigi; k++)
367 digi.calls[k] = ax25_ctl.digi_addr[k];
369 if ((ax25 = ax25_find_cb(&ax25_ctl.source_addr, &ax25_ctl.dest_addr, &digi, ax25_dev->dev)) == NULL)
372 switch (ax25_ctl.cmd) {
374 ax25_send_control(ax25, AX25_DISC, AX25_POLLON, AX25_COMMAND);
375 #ifdef CONFIG_AX25_DAMA_SLAVE
376 if (ax25_dev->dama.slave && ax25->ax25_dev->values[AX25_VALUES_PROTOCOL] == AX25_PROTO_DAMA_SLAVE)
379 ax25_disconnect(ax25, ENETRESET);
383 if (ax25->modulus == AX25_MODULUS) {
384 if (ax25_ctl.arg < 1 || ax25_ctl.arg > 7)
387 if (ax25_ctl.arg < 1 || ax25_ctl.arg > 63)
390 ax25->window = ax25_ctl.arg;
394 if (ax25_ctl.arg < 1 || ax25_ctl.arg > ULONG_MAX / HZ)
396 ax25->rtt = (ax25_ctl.arg * HZ) / 2;
397 ax25->t1 = ax25_ctl.arg * HZ;
401 if (ax25_ctl.arg < 1 || ax25_ctl.arg > ULONG_MAX / HZ)
403 ax25->t2 = ax25_ctl.arg * HZ;
407 if (ax25_ctl.arg < 1 || ax25_ctl.arg > 31)
410 ax25->n2 = ax25_ctl.arg;
414 if (ax25_ctl.arg > ULONG_MAX / HZ)
416 ax25->t3 = ax25_ctl.arg * HZ;
420 if (ax25_ctl.arg > ULONG_MAX / (60 * HZ))
423 ax25->idle = ax25_ctl.arg * 60 * HZ;
427 if (ax25_ctl.arg < 16 || ax25_ctl.arg > 65535)
429 ax25->paclen = ax25_ctl.arg;
445 static void ax25_fillin_cb_from_dev(ax25_cb *ax25, ax25_dev *ax25_dev)
447 ax25->rtt = msecs_to_jiffies(ax25_dev->values[AX25_VALUES_T1]) / 2;
448 ax25->t1 = msecs_to_jiffies(ax25_dev->values[AX25_VALUES_T1]);
449 ax25->t2 = msecs_to_jiffies(ax25_dev->values[AX25_VALUES_T2]);
450 ax25->t3 = msecs_to_jiffies(ax25_dev->values[AX25_VALUES_T3]);
451 ax25->n2 = ax25_dev->values[AX25_VALUES_N2];
452 ax25->paclen = ax25_dev->values[AX25_VALUES_PACLEN];
453 ax25->idle = msecs_to_jiffies(ax25_dev->values[AX25_VALUES_IDLE]);
454 ax25->backoff = ax25_dev->values[AX25_VALUES_BACKOFF];
456 if (ax25_dev->values[AX25_VALUES_AXDEFMODE]) {
457 ax25->modulus = AX25_EMODULUS;
458 ax25->window = ax25_dev->values[AX25_VALUES_EWINDOW];
460 ax25->modulus = AX25_MODULUS;
461 ax25->window = ax25_dev->values[AX25_VALUES_WINDOW];
466 * Fill in a created AX.25 created control block with the default
467 * values for a particular device.
469 void ax25_fillin_cb(ax25_cb *ax25, ax25_dev *ax25_dev)
471 ax25->ax25_dev = ax25_dev;
473 if (ax25->ax25_dev != NULL) {
474 ax25_fillin_cb_from_dev(ax25, ax25_dev);
479 * No device, use kernel / AX.25 spec default values
481 ax25->rtt = msecs_to_jiffies(AX25_DEF_T1) / 2;
482 ax25->t1 = msecs_to_jiffies(AX25_DEF_T1);
483 ax25->t2 = msecs_to_jiffies(AX25_DEF_T2);
484 ax25->t3 = msecs_to_jiffies(AX25_DEF_T3);
485 ax25->n2 = AX25_DEF_N2;
486 ax25->paclen = AX25_DEF_PACLEN;
487 ax25->idle = msecs_to_jiffies(AX25_DEF_IDLE);
488 ax25->backoff = AX25_DEF_BACKOFF;
490 if (AX25_DEF_AXDEFMODE) {
491 ax25->modulus = AX25_EMODULUS;
492 ax25->window = AX25_DEF_EWINDOW;
494 ax25->modulus = AX25_MODULUS;
495 ax25->window = AX25_DEF_WINDOW;
500 * Create an empty AX.25 control block.
502 ax25_cb *ax25_create_cb(void)
506 if ((ax25 = kzalloc(sizeof(*ax25), GFP_ATOMIC)) == NULL)
509 refcount_set(&ax25->refcount, 1);
511 skb_queue_head_init(&ax25->write_queue);
512 skb_queue_head_init(&ax25->frag_queue);
513 skb_queue_head_init(&ax25->ack_queue);
514 skb_queue_head_init(&ax25->reseq_queue);
516 ax25_setup_timers(ax25);
518 ax25_fillin_cb(ax25, NULL);
520 ax25->state = AX25_STATE_0;
526 * Handling for system calls applied via the various interfaces to an
530 static int ax25_setsockopt(struct socket *sock, int level, int optname,
531 char __user *optval, unsigned int optlen)
533 struct sock *sk = sock->sk;
535 struct net_device *dev;
536 char devname[IFNAMSIZ];
540 if (level != SOL_AX25)
543 if (optlen < sizeof(unsigned int))
546 if (get_user(opt, (unsigned int __user *)optval))
550 ax25 = sk_to_ax25(sk);
554 if (ax25->modulus == AX25_MODULUS) {
555 if (opt < 1 || opt > 7) {
560 if (opt < 1 || opt > 63) {
569 if (opt < 1 || opt > ULONG_MAX / HZ) {
573 ax25->rtt = (opt * HZ) >> 1;
578 if (opt < 1 || opt > ULONG_MAX / HZ) {
586 if (opt < 1 || opt > 31) {
594 if (opt < 1 || opt > ULONG_MAX / HZ) {
602 if (opt > ULONG_MAX / (60 * HZ)) {
606 ax25->idle = opt * 60 * HZ;
618 ax25->modulus = opt ? AX25_EMODULUS : AX25_MODULUS;
622 ax25->pidincl = opt ? 1 : 0;
626 ax25->iamdigi = opt ? 1 : 0;
630 if (opt < 16 || opt > 65535) {
637 case SO_BINDTODEVICE:
638 if (optlen > IFNAMSIZ)
641 if (copy_from_user(devname, optval, optlen)) {
646 if (sk->sk_type == SOCK_SEQPACKET &&
647 (sock->state != SS_UNCONNECTED ||
648 sk->sk_state == TCP_LISTEN)) {
649 res = -EADDRNOTAVAIL;
654 dev = __dev_get_by_name(&init_net, devname);
661 ax25->ax25_dev = ax25_dev_ax25dev(dev);
662 if (!ax25->ax25_dev) {
667 ax25_fillin_cb(ax25, ax25->ax25_dev);
679 static int ax25_getsockopt(struct socket *sock, int level, int optname,
680 char __user *optval, int __user *optlen)
682 struct sock *sk = sock->sk;
684 struct ax25_dev *ax25_dev;
685 char devname[IFNAMSIZ];
690 if (level != SOL_AX25)
693 if (get_user(maxlen, optlen))
699 valptr = (void *) &val;
700 length = min_t(unsigned int, maxlen, sizeof(int));
703 ax25 = sk_to_ax25(sk);
727 val = ax25->idle / (60 * HZ);
735 val = (ax25->modulus == AX25_EMODULUS);
750 case SO_BINDTODEVICE:
751 ax25_dev = ax25->ax25_dev;
753 if (ax25_dev != NULL && ax25_dev->dev != NULL) {
754 strlcpy(devname, ax25_dev->dev->name, sizeof(devname));
755 length = strlen(devname) + 1;
761 valptr = (void *) devname;
770 if (put_user(length, optlen))
773 return copy_to_user(optval, valptr, length) ? -EFAULT : 0;
776 static int ax25_listen(struct socket *sock, int backlog)
778 struct sock *sk = sock->sk;
782 if (sk->sk_type == SOCK_SEQPACKET && sk->sk_state != TCP_LISTEN) {
783 sk->sk_max_ack_backlog = backlog;
784 sk->sk_state = TCP_LISTEN;
796 * XXX: when creating ax25_sock we should update the .obj_size setting
799 static struct proto ax25_proto = {
801 .owner = THIS_MODULE,
802 .obj_size = sizeof(struct ax25_sock),
805 static int ax25_create(struct net *net, struct socket *sock, int protocol,
811 if (protocol < 0 || protocol > SK_PROTOCOL_MAX)
814 if (!net_eq(net, &init_net))
815 return -EAFNOSUPPORT;
817 switch (sock->type) {
819 if (protocol == 0 || protocol == PF_AX25)
820 protocol = AX25_P_TEXT;
826 case PF_AX25: /* For CLX */
827 protocol = AX25_P_TEXT;
840 return -ESOCKTNOSUPPORT;
841 #ifdef CONFIG_NETROM_MODULE
843 if (ax25_protocol_is_registered(AX25_P_NETROM))
844 return -ESOCKTNOSUPPORT;
847 #ifdef CONFIG_ROSE_MODULE
849 if (ax25_protocol_is_registered(AX25_P_ROSE))
850 return -ESOCKTNOSUPPORT;
858 if (!capable(CAP_NET_RAW))
862 return -ESOCKTNOSUPPORT;
865 sk = sk_alloc(net, PF_AX25, GFP_ATOMIC, &ax25_proto, kern);
869 ax25 = ax25_sk(sk)->cb = ax25_create_cb();
875 sock_init_data(sock, sk);
877 sk->sk_destruct = ax25_free_sock;
878 sock->ops = &ax25_proto_ops;
879 sk->sk_protocol = protocol;
886 struct sock *ax25_make_new(struct sock *osk, struct ax25_dev *ax25_dev)
889 ax25_cb *ax25, *oax25;
891 sk = sk_alloc(sock_net(osk), PF_AX25, GFP_ATOMIC, osk->sk_prot, 0);
895 if ((ax25 = ax25_create_cb()) == NULL) {
900 switch (osk->sk_type) {
911 sock_init_data(NULL, sk);
913 sk->sk_type = osk->sk_type;
914 sk->sk_priority = osk->sk_priority;
915 sk->sk_protocol = osk->sk_protocol;
916 sk->sk_rcvbuf = osk->sk_rcvbuf;
917 sk->sk_sndbuf = osk->sk_sndbuf;
918 sk->sk_state = TCP_ESTABLISHED;
919 sock_copy_flags(sk, osk);
921 oax25 = sk_to_ax25(osk);
923 ax25->modulus = oax25->modulus;
924 ax25->backoff = oax25->backoff;
925 ax25->pidincl = oax25->pidincl;
926 ax25->iamdigi = oax25->iamdigi;
927 ax25->rtt = oax25->rtt;
928 ax25->t1 = oax25->t1;
929 ax25->t2 = oax25->t2;
930 ax25->t3 = oax25->t3;
931 ax25->n2 = oax25->n2;
932 ax25->idle = oax25->idle;
933 ax25->paclen = oax25->paclen;
934 ax25->window = oax25->window;
936 ax25->ax25_dev = ax25_dev;
937 ax25->source_addr = oax25->source_addr;
939 if (oax25->digipeat != NULL) {
940 ax25->digipeat = kmemdup(oax25->digipeat, sizeof(ax25_digi),
942 if (ax25->digipeat == NULL) {
949 ax25_sk(sk)->cb = ax25;
950 sk->sk_destruct = ax25_free_sock;
956 static int ax25_release(struct socket *sock)
958 struct sock *sk = sock->sk;
967 ax25 = sk_to_ax25(sk);
969 if (sk->sk_type == SOCK_SEQPACKET) {
970 switch (ax25->state) {
973 ax25_disconnect(ax25, 0);
975 ax25_destroy_socket(ax25);
980 ax25_send_control(ax25, AX25_DISC, AX25_POLLON, AX25_COMMAND);
982 ax25_disconnect(ax25, 0);
984 if (!sock_flag(ax25->sk, SOCK_DESTROY))
985 ax25_destroy_socket(ax25);
990 ax25_clear_queues(ax25);
993 switch (ax25->ax25_dev->values[AX25_VALUES_PROTOCOL]) {
994 case AX25_PROTO_STD_SIMPLEX:
995 case AX25_PROTO_STD_DUPLEX:
996 ax25_send_control(ax25,
1000 ax25_stop_t2timer(ax25);
1001 ax25_stop_t3timer(ax25);
1002 ax25_stop_idletimer(ax25);
1004 #ifdef CONFIG_AX25_DAMA_SLAVE
1005 case AX25_PROTO_DAMA_SLAVE:
1006 ax25_stop_t3timer(ax25);
1007 ax25_stop_idletimer(ax25);
1011 ax25_calculate_t1(ax25);
1012 ax25_start_t1timer(ax25);
1013 ax25->state = AX25_STATE_2;
1014 sk->sk_state = TCP_CLOSE;
1015 sk->sk_shutdown |= SEND_SHUTDOWN;
1016 sk->sk_state_change(sk);
1017 sock_set_flag(sk, SOCK_DESTROY);
1024 sk->sk_state = TCP_CLOSE;
1025 sk->sk_shutdown |= SEND_SHUTDOWN;
1026 sk->sk_state_change(sk);
1027 ax25_destroy_socket(ax25);
1038 * We support a funny extension here so you can (as root) give any callsign
1039 * digipeated via a local address as source. This hack is obsolete now
1040 * that we've implemented support for SO_BINDTODEVICE. It is however small
1041 * and trivially backward compatible.
1043 static int ax25_bind(struct socket *sock, struct sockaddr *uaddr, int addr_len)
1045 struct sock *sk = sock->sk;
1046 struct full_sockaddr_ax25 *addr = (struct full_sockaddr_ax25 *)uaddr;
1047 ax25_dev *ax25_dev = NULL;
1048 ax25_uid_assoc *user;
1053 if (addr_len != sizeof(struct sockaddr_ax25) &&
1054 addr_len != sizeof(struct full_sockaddr_ax25))
1055 /* support for old structure may go away some time
1056 * ax25_bind(): uses old (6 digipeater) socket structure.
1058 if ((addr_len < sizeof(struct sockaddr_ax25) + sizeof(ax25_address) * 6) ||
1059 (addr_len > sizeof(struct full_sockaddr_ax25)))
1062 if (addr->fsa_ax25.sax25_family != AF_AX25)
1065 user = ax25_findbyuid(current_euid());
1070 if (ax25_uid_policy && !capable(CAP_NET_ADMIN))
1073 call = addr->fsa_ax25.sax25_call;
1078 ax25 = sk_to_ax25(sk);
1079 if (!sock_flag(sk, SOCK_ZAPPED)) {
1084 ax25->source_addr = call;
1087 * User already set interface with SO_BINDTODEVICE
1089 if (ax25->ax25_dev != NULL)
1092 if (addr_len > sizeof(struct sockaddr_ax25) && addr->fsa_ax25.sax25_ndigis == 1) {
1093 if (ax25cmp(&addr->fsa_digipeater[0], &null_ax25_address) != 0 &&
1094 (ax25_dev = ax25_addr_ax25dev(&addr->fsa_digipeater[0])) == NULL) {
1095 err = -EADDRNOTAVAIL;
1099 if ((ax25_dev = ax25_addr_ax25dev(&addr->fsa_ax25.sax25_call)) == NULL) {
1100 err = -EADDRNOTAVAIL;
1105 if (ax25_dev != NULL)
1106 ax25_fillin_cb(ax25, ax25_dev);
1110 sock_reset_flag(sk, SOCK_ZAPPED);
1119 * FIXME: nonblock behaviour looks like it may have a bug.
1121 static int __must_check ax25_connect(struct socket *sock,
1122 struct sockaddr *uaddr, int addr_len, int flags)
1124 struct sock *sk = sock->sk;
1125 ax25_cb *ax25 = sk_to_ax25(sk), *ax25t;
1126 struct full_sockaddr_ax25 *fsa = (struct full_sockaddr_ax25 *)uaddr;
1127 ax25_digi *digi = NULL;
1128 int ct = 0, err = 0;
1131 * some sanity checks. code further down depends on this
1134 if (addr_len == sizeof(struct sockaddr_ax25))
1135 /* support for this will go away in early 2.5.x
1136 * ax25_connect(): uses obsolete socket structure
1139 else if (addr_len != sizeof(struct full_sockaddr_ax25))
1140 /* support for old structure may go away some time
1141 * ax25_connect(): uses old (6 digipeater) socket structure.
1143 if ((addr_len < sizeof(struct sockaddr_ax25) + sizeof(ax25_address) * 6) ||
1144 (addr_len > sizeof(struct full_sockaddr_ax25)))
1148 if (fsa->fsa_ax25.sax25_family != AF_AX25)
1153 /* deal with restarts */
1154 if (sock->state == SS_CONNECTING) {
1155 switch (sk->sk_state) {
1156 case TCP_SYN_SENT: /* still trying */
1160 case TCP_ESTABLISHED: /* connection established */
1161 sock->state = SS_CONNECTED;
1164 case TCP_CLOSE: /* connection refused */
1165 sock->state = SS_UNCONNECTED;
1166 err = -ECONNREFUSED;
1171 if (sk->sk_state == TCP_ESTABLISHED && sk->sk_type == SOCK_SEQPACKET) {
1172 err = -EISCONN; /* No reconnect on a seqpacket socket */
1176 sk->sk_state = TCP_CLOSE;
1177 sock->state = SS_UNCONNECTED;
1179 kfree(ax25->digipeat);
1180 ax25->digipeat = NULL;
1183 * Handle digi-peaters to be used.
1185 if (addr_len > sizeof(struct sockaddr_ax25) &&
1186 fsa->fsa_ax25.sax25_ndigis != 0) {
1187 /* Valid number of digipeaters ? */
1188 if (fsa->fsa_ax25.sax25_ndigis < 1 || fsa->fsa_ax25.sax25_ndigis > AX25_MAX_DIGIS) {
1193 if ((digi = kmalloc(sizeof(ax25_digi), GFP_KERNEL)) == NULL) {
1198 digi->ndigi = fsa->fsa_ax25.sax25_ndigis;
1199 digi->lastrepeat = -1;
1201 while (ct < fsa->fsa_ax25.sax25_ndigis) {
1202 if ((fsa->fsa_digipeater[ct].ax25_call[6] &
1203 AX25_HBIT) && ax25->iamdigi) {
1204 digi->repeated[ct] = 1;
1205 digi->lastrepeat = ct;
1207 digi->repeated[ct] = 0;
1209 digi->calls[ct] = fsa->fsa_digipeater[ct];
1215 * Must bind first - autobinding in this may or may not work. If
1216 * the socket is already bound, check to see if the device has
1217 * been filled in, error if it hasn't.
1219 if (sock_flag(sk, SOCK_ZAPPED)) {
1220 /* check if we can remove this feature. It is broken. */
1223 if ((err = ax25_rt_autobind(ax25, &fsa->fsa_ax25.sax25_call)) < 0) {
1228 ax25_fillin_cb(ax25, ax25->ax25_dev);
1231 if (ax25->ax25_dev == NULL) {
1233 err = -EHOSTUNREACH;
1238 if (sk->sk_type == SOCK_SEQPACKET &&
1239 (ax25t=ax25_find_cb(&ax25->source_addr, &fsa->fsa_ax25.sax25_call, digi,
1240 ax25->ax25_dev->dev))) {
1242 err = -EADDRINUSE; /* Already such a connection */
1247 ax25->dest_addr = fsa->fsa_ax25.sax25_call;
1248 ax25->digipeat = digi;
1250 /* First the easy one */
1251 if (sk->sk_type != SOCK_SEQPACKET) {
1252 sock->state = SS_CONNECTED;
1253 sk->sk_state = TCP_ESTABLISHED;
1257 /* Move to connecting socket, ax.25 lapb WAIT_UA.. */
1258 sock->state = SS_CONNECTING;
1259 sk->sk_state = TCP_SYN_SENT;
1261 switch (ax25->ax25_dev->values[AX25_VALUES_PROTOCOL]) {
1262 case AX25_PROTO_STD_SIMPLEX:
1263 case AX25_PROTO_STD_DUPLEX:
1264 ax25_std_establish_data_link(ax25);
1267 #ifdef CONFIG_AX25_DAMA_SLAVE
1268 case AX25_PROTO_DAMA_SLAVE:
1269 ax25->modulus = AX25_MODULUS;
1270 ax25->window = ax25->ax25_dev->values[AX25_VALUES_WINDOW];
1271 if (ax25->ax25_dev->dama.slave)
1272 ax25_ds_establish_data_link(ax25);
1274 ax25_std_establish_data_link(ax25);
1279 ax25->state = AX25_STATE_1;
1281 ax25_start_heartbeat(ax25);
1284 if (sk->sk_state != TCP_ESTABLISHED && (flags & O_NONBLOCK)) {
1289 if (sk->sk_state == TCP_SYN_SENT) {
1293 prepare_to_wait(sk_sleep(sk), &wait,
1294 TASK_INTERRUPTIBLE);
1295 if (sk->sk_state != TCP_SYN_SENT)
1297 if (!signal_pending(current)) {
1306 finish_wait(sk_sleep(sk), &wait);
1312 if (sk->sk_state != TCP_ESTABLISHED) {
1313 /* Not in ABM, not in WAIT_UA -> failed */
1314 sock->state = SS_UNCONNECTED;
1315 err = sock_error(sk); /* Always set at this point */
1319 sock->state = SS_CONNECTED;
1328 static int ax25_accept(struct socket *sock, struct socket *newsock, int flags,
1331 struct sk_buff *skb;
1337 if (sock->state != SS_UNCONNECTED)
1340 if ((sk = sock->sk) == NULL)
1344 if (sk->sk_type != SOCK_SEQPACKET) {
1349 if (sk->sk_state != TCP_LISTEN) {
1355 * The read queue this time is holding sockets ready to use
1356 * hooked into the SABM we saved
1359 prepare_to_wait(sk_sleep(sk), &wait, TASK_INTERRUPTIBLE);
1360 skb = skb_dequeue(&sk->sk_receive_queue);
1364 if (flags & O_NONBLOCK) {
1368 if (!signal_pending(current)) {
1377 finish_wait(sk_sleep(sk), &wait);
1383 sock_graft(newsk, newsock);
1385 /* Now attach up the new socket */
1387 sk_acceptq_removed(sk);
1388 newsock->state = SS_CONNECTED;
1396 static int ax25_getname(struct socket *sock, struct sockaddr *uaddr,
1399 struct full_sockaddr_ax25 *fsa = (struct full_sockaddr_ax25 *)uaddr;
1400 struct sock *sk = sock->sk;
1401 unsigned char ndigi, i;
1405 memset(fsa, 0, sizeof(*fsa));
1407 ax25 = sk_to_ax25(sk);
1410 if (sk->sk_state != TCP_ESTABLISHED) {
1415 fsa->fsa_ax25.sax25_family = AF_AX25;
1416 fsa->fsa_ax25.sax25_call = ax25->dest_addr;
1418 if (ax25->digipeat != NULL) {
1419 ndigi = ax25->digipeat->ndigi;
1420 fsa->fsa_ax25.sax25_ndigis = ndigi;
1421 for (i = 0; i < ndigi; i++)
1422 fsa->fsa_digipeater[i] =
1423 ax25->digipeat->calls[i];
1426 fsa->fsa_ax25.sax25_family = AF_AX25;
1427 fsa->fsa_ax25.sax25_call = ax25->source_addr;
1428 fsa->fsa_ax25.sax25_ndigis = 1;
1429 if (ax25->ax25_dev != NULL) {
1430 memcpy(&fsa->fsa_digipeater[0],
1431 ax25->ax25_dev->dev->dev_addr, AX25_ADDR_LEN);
1433 fsa->fsa_digipeater[0] = null_ax25_address;
1436 err = sizeof (struct full_sockaddr_ax25);
1444 static int ax25_sendmsg(struct socket *sock, struct msghdr *msg, size_t len)
1446 DECLARE_SOCKADDR(struct sockaddr_ax25 *, usax, msg->msg_name);
1447 struct sock *sk = sock->sk;
1448 struct sockaddr_ax25 sax;
1449 struct sk_buff *skb;
1450 ax25_digi dtmp, *dp;
1453 int lv, err, addr_len = msg->msg_namelen;
1455 if (msg->msg_flags & ~(MSG_DONTWAIT|MSG_EOR|MSG_CMSG_COMPAT))
1459 ax25 = sk_to_ax25(sk);
1461 if (sock_flag(sk, SOCK_ZAPPED)) {
1462 err = -EADDRNOTAVAIL;
1466 if (sk->sk_shutdown & SEND_SHUTDOWN) {
1467 send_sig(SIGPIPE, current, 0);
1472 if (ax25->ax25_dev == NULL) {
1477 if (len > ax25->ax25_dev->dev->mtu) {
1483 if (usax->sax25_family != AF_AX25) {
1488 if (addr_len == sizeof(struct sockaddr_ax25))
1489 /* ax25_sendmsg(): uses obsolete socket structure */
1491 else if (addr_len != sizeof(struct full_sockaddr_ax25))
1492 /* support for old structure may go away some time
1493 * ax25_sendmsg(): uses old (6 digipeater)
1496 if ((addr_len < sizeof(struct sockaddr_ax25) + sizeof(ax25_address) * 6) ||
1497 (addr_len > sizeof(struct full_sockaddr_ax25))) {
1503 if (addr_len > sizeof(struct sockaddr_ax25) && usax->sax25_ndigis != 0) {
1505 struct full_sockaddr_ax25 *fsa = (struct full_sockaddr_ax25 *)usax;
1507 /* Valid number of digipeaters ? */
1508 if (usax->sax25_ndigis < 1 || usax->sax25_ndigis > AX25_MAX_DIGIS) {
1513 dtmp.ndigi = usax->sax25_ndigis;
1515 while (ct < usax->sax25_ndigis) {
1516 dtmp.repeated[ct] = 0;
1517 dtmp.calls[ct] = fsa->fsa_digipeater[ct];
1521 dtmp.lastrepeat = 0;
1525 if (sk->sk_type == SOCK_SEQPACKET &&
1526 ax25cmp(&ax25->dest_addr, &sax.sax25_call)) {
1530 if (usax->sax25_ndigis == 0)
1536 * FIXME: 1003.1g - if the socket is like this because
1537 * it has become closed (not started closed) and is VC
1538 * we ought to SIGPIPE, EPIPE
1540 if (sk->sk_state != TCP_ESTABLISHED) {
1544 sax.sax25_family = AF_AX25;
1545 sax.sax25_call = ax25->dest_addr;
1546 dp = ax25->digipeat;
1549 /* Build a packet */
1550 /* Assume the worst case */
1551 size = len + ax25->ax25_dev->dev->hard_header_len;
1553 skb = sock_alloc_send_skb(sk, size, msg->msg_flags&MSG_DONTWAIT, &err);
1557 skb_reserve(skb, size - len);
1559 /* User data follows immediately after the AX.25 data */
1560 if (memcpy_from_msg(skb_put(skb, len), msg, len)) {
1566 skb_reset_network_header(skb);
1568 /* Add the PID if one is not supplied by the user in the skb */
1570 *(u8 *)skb_push(skb, 1) = sk->sk_protocol;
1572 if (sk->sk_type == SOCK_SEQPACKET) {
1573 /* Connected mode sockets go via the LAPB machine */
1574 if (sk->sk_state != TCP_ESTABLISHED) {
1580 /* Shove it onto the queue and kick */
1581 ax25_output(ax25, ax25->paclen, skb);
1587 skb_push(skb, 1 + ax25_addr_size(dp));
1589 /* Building AX.25 Header */
1591 /* Build an AX.25 header */
1592 lv = ax25_addr_build(skb->data, &ax25->source_addr, &sax.sax25_call,
1593 dp, AX25_COMMAND, AX25_MODULUS);
1595 skb_set_transport_header(skb, lv);
1597 *skb_transport_header(skb) = AX25_UI;
1599 /* Datagram frames go straight out of the door as UI */
1600 ax25_queue_xmit(skb, ax25->ax25_dev->dev);
1610 static int ax25_recvmsg(struct socket *sock, struct msghdr *msg, size_t size,
1613 struct sock *sk = sock->sk;
1614 struct sk_buff *skb;
1620 * This works for seqpacket too. The receiver has ordered the
1621 * queue for us! We do one quick check first though
1623 if (sk->sk_type == SOCK_SEQPACKET && sk->sk_state != TCP_ESTABLISHED) {
1628 /* Now we can treat all alike */
1629 skb = skb_recv_datagram(sk, flags & ~MSG_DONTWAIT,
1630 flags & MSG_DONTWAIT, &err);
1634 if (!sk_to_ax25(sk)->pidincl)
1635 skb_pull(skb, 1); /* Remove PID */
1637 skb_reset_transport_header(skb);
1640 if (copied > size) {
1642 msg->msg_flags |= MSG_TRUNC;
1645 skb_copy_datagram_msg(skb, 0, msg, copied);
1647 if (msg->msg_name) {
1650 const unsigned char *mac = skb_mac_header(skb);
1651 DECLARE_SOCKADDR(struct sockaddr_ax25 *, sax, msg->msg_name);
1653 memset(sax, 0, sizeof(struct full_sockaddr_ax25));
1654 ax25_addr_parse(mac + 1, skb->data - mac - 1, &src, NULL,
1656 sax->sax25_family = AF_AX25;
1657 /* We set this correctly, even though we may not let the
1658 application know the digi calls further down (because it
1659 did NOT ask to know them). This could get political... **/
1660 sax->sax25_ndigis = digi.ndigi;
1661 sax->sax25_call = src;
1663 if (sax->sax25_ndigis != 0) {
1665 struct full_sockaddr_ax25 *fsa = (struct full_sockaddr_ax25 *)sax;
1667 for (ct = 0; ct < digi.ndigi; ct++)
1668 fsa->fsa_digipeater[ct] = digi.calls[ct];
1670 msg->msg_namelen = sizeof(struct full_sockaddr_ax25);
1673 skb_free_datagram(sk, skb);
1682 static int ax25_shutdown(struct socket *sk, int how)
1684 /* FIXME - generate DM and RNR states */
1688 static int ax25_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
1690 struct sock *sk = sock->sk;
1691 void __user *argp = (void __user *)arg;
1699 amount = sk->sk_sndbuf - sk_wmem_alloc_get(sk);
1702 res = put_user(amount, (int __user *)argp);
1707 struct sk_buff *skb;
1709 /* These two are safe on a single CPU system as only user tasks fiddle here */
1710 if ((skb = skb_peek(&sk->sk_receive_queue)) != NULL)
1712 res = put_user(amount, (int __user *) argp);
1716 case SIOCAX25ADDUID: /* Add a uid to the uid/call map table */
1717 case SIOCAX25DELUID: /* Delete a uid from the uid/call map table */
1718 case SIOCAX25GETUID: {
1719 struct sockaddr_ax25 sax25;
1720 if (copy_from_user(&sax25, argp, sizeof(sax25))) {
1724 res = ax25_uid_ioctl(cmd, &sax25);
1728 case SIOCAX25NOUID: { /* Set the default policy (default/bar) */
1730 if (!capable(CAP_NET_ADMIN)) {
1734 if (get_user(amount, (long __user *)argp)) {
1738 if (amount < 0 || amount > AX25_NOUID_BLOCK) {
1742 ax25_uid_policy = amount;
1750 if (!capable(CAP_NET_ADMIN)) {
1754 res = ax25_rt_ioctl(cmd, argp);
1757 case SIOCAX25CTLCON:
1758 if (!capable(CAP_NET_ADMIN)) {
1762 res = ax25_ctl_ioctl(cmd, argp);
1765 case SIOCAX25GETINFO:
1766 case SIOCAX25GETINFOOLD: {
1767 ax25_cb *ax25 = sk_to_ax25(sk);
1768 struct ax25_info_struct ax25_info;
1770 ax25_info.t1 = ax25->t1 / HZ;
1771 ax25_info.t2 = ax25->t2 / HZ;
1772 ax25_info.t3 = ax25->t3 / HZ;
1773 ax25_info.idle = ax25->idle / (60 * HZ);
1774 ax25_info.n2 = ax25->n2;
1775 ax25_info.t1timer = ax25_display_timer(&ax25->t1timer) / HZ;
1776 ax25_info.t2timer = ax25_display_timer(&ax25->t2timer) / HZ;
1777 ax25_info.t3timer = ax25_display_timer(&ax25->t3timer) / HZ;
1778 ax25_info.idletimer = ax25_display_timer(&ax25->idletimer) / (60 * HZ);
1779 ax25_info.n2count = ax25->n2count;
1780 ax25_info.state = ax25->state;
1781 ax25_info.rcv_q = sk_rmem_alloc_get(sk);
1782 ax25_info.snd_q = sk_wmem_alloc_get(sk);
1783 ax25_info.vs = ax25->vs;
1784 ax25_info.vr = ax25->vr;
1785 ax25_info.va = ax25->va;
1786 ax25_info.vs_max = ax25->vs; /* reserved */
1787 ax25_info.paclen = ax25->paclen;
1788 ax25_info.window = ax25->window;
1790 /* old structure? */
1791 if (cmd == SIOCAX25GETINFOOLD) {
1792 static int warned = 0;
1794 printk(KERN_INFO "%s uses old SIOCAX25GETINFO\n",
1799 if (copy_to_user(argp, &ax25_info, sizeof(struct ax25_info_struct_deprecated))) {
1804 if (copy_to_user(argp, &ax25_info, sizeof(struct ax25_info_struct))) {
1813 case SIOCAX25ADDFWD:
1814 case SIOCAX25DELFWD: {
1815 struct ax25_fwd_struct ax25_fwd;
1816 if (!capable(CAP_NET_ADMIN)) {
1820 if (copy_from_user(&ax25_fwd, argp, sizeof(ax25_fwd))) {
1824 res = ax25_fwd_ioctl(cmd, &ax25_fwd);
1830 case SIOCGIFDSTADDR:
1831 case SIOCSIFDSTADDR:
1832 case SIOCGIFBRDADDR:
1833 case SIOCSIFBRDADDR:
1834 case SIOCGIFNETMASK:
1835 case SIOCSIFNETMASK:
1850 #ifdef CONFIG_PROC_FS
1852 static void *ax25_info_start(struct seq_file *seq, loff_t *pos)
1853 __acquires(ax25_list_lock)
1855 spin_lock_bh(&ax25_list_lock);
1856 return seq_hlist_start(&ax25_list, *pos);
1859 static void *ax25_info_next(struct seq_file *seq, void *v, loff_t *pos)
1861 return seq_hlist_next(v, &ax25_list, pos);
1864 static void ax25_info_stop(struct seq_file *seq, void *v)
1865 __releases(ax25_list_lock)
1867 spin_unlock_bh(&ax25_list_lock);
1870 static int ax25_info_show(struct seq_file *seq, void *v)
1872 ax25_cb *ax25 = hlist_entry(v, struct ax25_cb, ax25_node);
1879 * magic dev src_addr dest_addr,digi1,digi2,.. st vs vr va t1 t1 t2 t2 t3 t3 idle idle n2 n2 rtt window paclen Snd-Q Rcv-Q inode
1882 seq_printf(seq, "%p %s %s%s ",
1884 ax25->ax25_dev == NULL? "???" : ax25->ax25_dev->dev->name,
1885 ax2asc(buf, &ax25->source_addr),
1886 ax25->iamdigi? "*":"");
1887 seq_printf(seq, "%s", ax2asc(buf, &ax25->dest_addr));
1889 for (k=0; (ax25->digipeat != NULL) && (k < ax25->digipeat->ndigi); k++) {
1890 seq_printf(seq, ",%s%s",
1891 ax2asc(buf, &ax25->digipeat->calls[k]),
1892 ax25->digipeat->repeated[k]? "*":"");
1895 seq_printf(seq, " %d %d %d %d %lu %lu %lu %lu %lu %lu %lu %lu %d %d %lu %d %d",
1897 ax25->vs, ax25->vr, ax25->va,
1898 ax25_display_timer(&ax25->t1timer) / HZ, ax25->t1 / HZ,
1899 ax25_display_timer(&ax25->t2timer) / HZ, ax25->t2 / HZ,
1900 ax25_display_timer(&ax25->t3timer) / HZ, ax25->t3 / HZ,
1901 ax25_display_timer(&ax25->idletimer) / (60 * HZ),
1902 ax25->idle / (60 * HZ),
1903 ax25->n2count, ax25->n2,
1908 if (ax25->sk != NULL) {
1909 seq_printf(seq, " %d %d %lu\n",
1910 sk_wmem_alloc_get(ax25->sk),
1911 sk_rmem_alloc_get(ax25->sk),
1912 sock_i_ino(ax25->sk));
1914 seq_puts(seq, " * * *\n");
1919 static const struct seq_operations ax25_info_seqops = {
1920 .start = ax25_info_start,
1921 .next = ax25_info_next,
1922 .stop = ax25_info_stop,
1923 .show = ax25_info_show,
1927 static const struct net_proto_family ax25_family_ops = {
1929 .create = ax25_create,
1930 .owner = THIS_MODULE,
1933 static const struct proto_ops ax25_proto_ops = {
1935 .owner = THIS_MODULE,
1936 .release = ax25_release,
1938 .connect = ax25_connect,
1939 .socketpair = sock_no_socketpair,
1940 .accept = ax25_accept,
1941 .getname = ax25_getname,
1942 .poll = datagram_poll,
1943 .ioctl = ax25_ioctl,
1944 .gettstamp = sock_gettstamp,
1945 .listen = ax25_listen,
1946 .shutdown = ax25_shutdown,
1947 .setsockopt = ax25_setsockopt,
1948 .getsockopt = ax25_getsockopt,
1949 .sendmsg = ax25_sendmsg,
1950 .recvmsg = ax25_recvmsg,
1951 .mmap = sock_no_mmap,
1952 .sendpage = sock_no_sendpage,
1956 * Called by socket.c on kernel start up
1958 static struct packet_type ax25_packet_type __read_mostly = {
1959 .type = cpu_to_be16(ETH_P_AX25),
1960 .func = ax25_kiss_rcv,
1963 static struct notifier_block ax25_dev_notifier = {
1964 .notifier_call = ax25_device_event,
1967 static int __init ax25_init(void)
1969 int rc = proto_register(&ax25_proto, 0);
1974 sock_register(&ax25_family_ops);
1975 dev_add_pack(&ax25_packet_type);
1976 register_netdevice_notifier(&ax25_dev_notifier);
1978 proc_create_seq("ax25_route", 0444, init_net.proc_net, &ax25_rt_seqops);
1979 proc_create_seq("ax25", 0444, init_net.proc_net, &ax25_info_seqops);
1980 proc_create_seq("ax25_calls", 0444, init_net.proc_net,
1985 module_init(ax25_init);
1989 MODULE_DESCRIPTION("The amateur radio AX.25 link layer protocol");
1990 MODULE_LICENSE("GPL");
1991 MODULE_ALIAS_NETPROTO(PF_AX25);
1993 static void __exit ax25_exit(void)
1995 remove_proc_entry("ax25_route", init_net.proc_net);
1996 remove_proc_entry("ax25", init_net.proc_net);
1997 remove_proc_entry("ax25_calls", init_net.proc_net);
1999 unregister_netdevice_notifier(&ax25_dev_notifier);
2001 dev_remove_pack(&ax25_packet_type);
2003 sock_unregister(PF_AX25);
2004 proto_unregister(&ax25_proto);
2010 module_exit(ax25_exit);
projects / linux.git / blob