2 * INET An implementation of the TCP/IP protocol suite for the LINUX
3 * operating system. INET is implemented using the BSD Socket
4 * interface as the means of communication with the user level.
6 * PACKET - implements raw packet sockets.
9 * Fred N. van Kempen, <waltje@uWalt.NL.Mugnet.ORG>
10 * Alan Cox, <gw4pts@gw4pts.ampr.org>
13 * Alan Cox : verify_area() now used correctly
14 * Alan Cox : new skbuff lists, look ma no backlogs!
15 * Alan Cox : tidied skbuff lists.
16 * Alan Cox : Now uses generic datagram routines I
17 * added. Also fixed the peek/read crash
18 * from all old Linux datagram code.
19 * Alan Cox : Uses the improved datagram code.
20 * Alan Cox : Added NULL's for socket options.
21 * Alan Cox : Re-commented the code.
22 * Alan Cox : Use new kernel side addressing
23 * Rob Janssen : Correct MTU usage.
24 * Dave Platt : Counter leaks caused by incorrect
25 * interrupt locking and some slightly
26 * dubious gcc output. Can you read
27 * compiler: it said _VOLATILE_
28 * Richard Kooijman : Timestamp fixes.
29 * Alan Cox : New buffers. Use sk->mac.raw.
30 * Alan Cox : sendmsg/recvmsg support.
31 * Alan Cox : Protocol setting support
32 * Alexey Kuznetsov : Untied from IPv4 stack.
33 * Cyrus Durgin : Fixed kerneld for kmod.
34 * Michal Ostrowski : Module initialization cleanup.
35 * Ulises Alonso : Frame number limit removal and
36 * packet_set_ring memory leak.
37 * Eric Biederman : Allow for > 8 byte hardware addresses.
38 * The convention is that longer addresses
39 * will simply extend the hardware address
40 * byte arrays at the end of sockaddr_ll
42 * Johann Baudy : Added TX RING.
44 * This program is free software; you can redistribute it and/or
45 * modify it under the terms of the GNU General Public License
46 * as published by the Free Software Foundation; either version
47 * 2 of the License, or (at your option) any later version.
51 #include <linux/types.h>
53 #include <linux/capability.h>
54 #include <linux/fcntl.h>
55 #include <linux/socket.h>
57 #include <linux/inet.h>
58 #include <linux/netdevice.h>
59 #include <linux/if_packet.h>
60 #include <linux/wireless.h>
61 #include <linux/kernel.h>
62 #include <linux/kmod.h>
63 #include <net/net_namespace.h>
65 #include <net/protocol.h>
66 #include <linux/skbuff.h>
68 #include <linux/errno.h>
69 #include <linux/timer.h>
70 #include <asm/system.h>
71 #include <asm/uaccess.h>
72 #include <asm/ioctls.h>
74 #include <asm/cacheflush.h>
76 #include <linux/proc_fs.h>
77 #include <linux/seq_file.h>
78 #include <linux/poll.h>
79 #include <linux/module.h>
80 #include <linux/init.h>
81 #include <linux/mutex.h>
82 #include <linux/if_vlan.h>
85 #include <net/inet_common.h>
90 - if device has no dev->hard_header routine, it adds and removes ll header
91 inside itself. In this case ll header is invisible outside of device,
92 but higher levels still should reserve dev->hard_header_len.
93 Some devices are enough clever to reallocate skb, when header
94 will not fit to reserved space (tunnel), another ones are silly
96 - packet socket receives packets with pulled ll header,
97 so that SOCK_RAW should push it back.
102 Incoming, dev->hard_header!=NULL
103 mac_header -> ll header
106 Outgoing, dev->hard_header!=NULL
107 mac_header -> ll header
110 Incoming, dev->hard_header==NULL
111 mac_header -> UNKNOWN position. It is very likely, that it points to ll
112 header. PPP makes it, that is wrong, because introduce
113 assymetry between rx and tx paths.
116 Outgoing, dev->hard_header==NULL
117 mac_header -> data. ll header is still not built!
121 If dev->hard_header==NULL we are unlikely to restore sensible ll header.
127 dev->hard_header != NULL
128 mac_header -> ll header
131 dev->hard_header == NULL (ll header is added by device, we cannot control it)
135 We should set nh.raw on output to correct posistion,
136 packet classifier depends on it.
139 /* Private packet socket structures. */
141 struct packet_mclist {
142 struct packet_mclist *next;
147 unsigned char addr[MAX_ADDR_LEN];
149 /* identical to struct packet_mreq except it has
150 * a longer address field.
152 struct packet_mreq_max {
154 unsigned short mr_type;
155 unsigned short mr_alen;
156 unsigned char mr_address[MAX_ADDR_LEN];
159 #ifdef CONFIG_PACKET_MMAP
160 static int packet_set_ring(struct sock *sk, struct tpacket_req *req,
161 int closing, int tx_ring);
163 struct packet_ring_buffer {
166 unsigned int frames_per_block;
167 unsigned int frame_size;
168 unsigned int frame_max;
170 unsigned int pg_vec_order;
171 unsigned int pg_vec_pages;
172 unsigned int pg_vec_len;
178 static int tpacket_snd(struct packet_sock *po, struct msghdr *msg);
181 static void packet_flush_mclist(struct sock *sk);
184 /* struct sock has to be the first member of packet_sock */
186 struct tpacket_stats stats;
187 #ifdef CONFIG_PACKET_MMAP
188 struct packet_ring_buffer rx_ring;
189 struct packet_ring_buffer tx_ring;
192 spinlock_t bind_lock;
193 struct mutex pg_vec_lock;
194 unsigned int running:1, /* prot_hook is attached*/
197 int ifindex; /* bound device */
199 struct packet_mclist *mclist;
200 #ifdef CONFIG_PACKET_MMAP
202 enum tpacket_versions tp_version;
203 unsigned int tp_hdrlen;
204 unsigned int tp_reserve;
205 unsigned int tp_loss:1;
207 struct packet_type prot_hook ____cacheline_aligned_in_smp;
210 struct packet_skb_cb {
211 unsigned int origlen;
213 struct sockaddr_pkt pkt;
214 struct sockaddr_ll ll;
218 #define PACKET_SKB_CB(__skb) ((struct packet_skb_cb *)((__skb)->cb))
220 #ifdef CONFIG_PACKET_MMAP
222 static void __packet_set_status(struct packet_sock *po, void *frame, int status)
225 struct tpacket_hdr *h1;
226 struct tpacket2_hdr *h2;
231 switch (po->tp_version) {
233 h.h1->tp_status = status;
234 flush_dcache_page(virt_to_page(&h.h1->tp_status));
237 h.h2->tp_status = status;
238 flush_dcache_page(virt_to_page(&h.h2->tp_status));
241 pr_err("TPACKET version not supported\n");
248 static int __packet_get_status(struct packet_sock *po, void *frame)
251 struct tpacket_hdr *h1;
252 struct tpacket2_hdr *h2;
259 switch (po->tp_version) {
261 flush_dcache_page(virt_to_page(&h.h1->tp_status));
262 return h.h1->tp_status;
264 flush_dcache_page(virt_to_page(&h.h2->tp_status));
265 return h.h2->tp_status;
267 pr_err("TPACKET version not supported\n");
273 static void *packet_lookup_frame(struct packet_sock *po,
274 struct packet_ring_buffer *rb,
275 unsigned int position,
278 unsigned int pg_vec_pos, frame_offset;
280 struct tpacket_hdr *h1;
281 struct tpacket2_hdr *h2;
285 pg_vec_pos = position / rb->frames_per_block;
286 frame_offset = position % rb->frames_per_block;
288 h.raw = rb->pg_vec[pg_vec_pos] + (frame_offset * rb->frame_size);
290 if (status != __packet_get_status(po, h.raw))
296 static inline void *packet_current_frame(struct packet_sock *po,
297 struct packet_ring_buffer *rb,
300 return packet_lookup_frame(po, rb, rb->head, status);
303 static inline void *packet_previous_frame(struct packet_sock *po,
304 struct packet_ring_buffer *rb,
307 unsigned int previous = rb->head ? rb->head - 1 : rb->frame_max;
308 return packet_lookup_frame(po, rb, previous, status);
311 static inline void packet_increment_head(struct packet_ring_buffer *buff)
313 buff->head = buff->head != buff->frame_max ? buff->head+1 : 0;
318 static inline struct packet_sock *pkt_sk(struct sock *sk)
320 return (struct packet_sock *)sk;
323 static void packet_sock_destruct(struct sock *sk)
325 WARN_ON(atomic_read(&sk->sk_rmem_alloc));
326 WARN_ON(atomic_read(&sk->sk_wmem_alloc));
328 if (!sock_flag(sk, SOCK_DEAD)) {
329 pr_err("Attempt to release alive packet socket: %p\n", sk);
333 sk_refcnt_debug_dec(sk);
337 static const struct proto_ops packet_ops;
339 static const struct proto_ops packet_ops_spkt;
341 static int packet_rcv_spkt(struct sk_buff *skb, struct net_device *dev,
342 struct packet_type *pt, struct net_device *orig_dev)
345 struct sockaddr_pkt *spkt;
348 * When we registered the protocol we saved the socket in the data
349 * field for just this event.
352 sk = pt->af_packet_priv;
355 * Yank back the headers [hope the device set this
356 * right or kerboom...]
358 * Incoming packets have ll header pulled,
361 * For outgoing ones skb->data == skb_mac_header(skb)
362 * so that this procedure is noop.
365 if (skb->pkt_type == PACKET_LOOPBACK)
368 if (!net_eq(dev_net(dev), sock_net(sk)))
371 skb = skb_share_check(skb, GFP_ATOMIC);
375 /* drop any routing info */
378 /* drop conntrack reference */
381 spkt = &PACKET_SKB_CB(skb)->sa.pkt;
383 skb_push(skb, skb->data - skb_mac_header(skb));
386 * The SOCK_PACKET socket receives _all_ frames.
389 spkt->spkt_family = dev->type;
390 strlcpy(spkt->spkt_device, dev->name, sizeof(spkt->spkt_device));
391 spkt->spkt_protocol = skb->protocol;
394 * Charge the memory to the socket. This is done specifically
395 * to prevent sockets using all the memory up.
398 if (sock_queue_rcv_skb(sk, skb) == 0)
409 * Output a raw packet to a device layer. This bypasses all the other
410 * protocol layers and you must therefore supply it with a complete frame
413 static int packet_sendmsg_spkt(struct kiocb *iocb, struct socket *sock,
414 struct msghdr *msg, size_t len)
416 struct sock *sk = sock->sk;
417 struct sockaddr_pkt *saddr = (struct sockaddr_pkt *)msg->msg_name;
418 struct sk_buff *skb = NULL;
419 struct net_device *dev;
424 * Get and verify the address.
428 if (msg->msg_namelen < sizeof(struct sockaddr))
430 if (msg->msg_namelen == sizeof(struct sockaddr_pkt))
431 proto = saddr->spkt_protocol;
433 return -ENOTCONN; /* SOCK_PACKET must be sent giving an address */
436 * Find the device first to size check it
439 saddr->spkt_device[13] = 0;
442 dev = dev_get_by_name_rcu(sock_net(sk), saddr->spkt_device);
448 if (!(dev->flags & IFF_UP))
452 * You may not queue a frame bigger than the mtu. This is the lowest level
453 * raw protocol and you must do your own fragmentation at this level.
457 if (len > dev->mtu + dev->hard_header_len)
461 size_t reserved = LL_RESERVED_SPACE(dev);
462 unsigned int hhlen = dev->header_ops ? dev->hard_header_len : 0;
465 skb = sock_wmalloc(sk, len + reserved, 0, GFP_KERNEL);
468 /* FIXME: Save some space for broken drivers that write a hard
469 * header at transmission time by themselves. PPP is the notable
470 * one here. This should really be fixed at the driver level.
472 skb_reserve(skb, reserved);
473 skb_reset_network_header(skb);
475 /* Try to align data part correctly */
480 skb_reset_network_header(skb);
482 err = memcpy_fromiovec(skb_put(skb, len), msg->msg_iov, len);
489 skb->protocol = proto;
491 skb->priority = sk->sk_priority;
492 skb->mark = sk->sk_mark;
505 static inline unsigned int run_filter(struct sk_buff *skb, struct sock *sk,
508 struct sk_filter *filter;
511 filter = rcu_dereference(sk->sk_filter);
513 res = sk_run_filter(skb, filter->insns, filter->len);
514 rcu_read_unlock_bh();
520 This function makes lazy skb cloning in hope that most of packets
521 are discarded by BPF.
523 Note tricky part: we DO mangle shared skb! skb->data, skb->len
524 and skb->cb are mangled. It works because (and until) packets
525 falling here are owned by current CPU. Output packets are cloned
526 by dev_queue_xmit_nit(), input packets are processed by net_bh
527 sequencially, so that if we return skb to original state on exit,
528 we will not harm anyone.
531 static int packet_rcv(struct sk_buff *skb, struct net_device *dev,
532 struct packet_type *pt, struct net_device *orig_dev)
535 struct sockaddr_ll *sll;
536 struct packet_sock *po;
537 u8 *skb_head = skb->data;
538 int skb_len = skb->len;
539 unsigned int snaplen, res;
541 if (skb->pkt_type == PACKET_LOOPBACK)
544 sk = pt->af_packet_priv;
547 if (!net_eq(dev_net(dev), sock_net(sk)))
552 if (dev->header_ops) {
553 /* The device has an explicit notion of ll header,
554 exported to higher levels.
556 Otherwise, the device hides datails of it frame
557 structure, so that corresponding packet head
558 never delivered to user.
560 if (sk->sk_type != SOCK_DGRAM)
561 skb_push(skb, skb->data - skb_mac_header(skb));
562 else if (skb->pkt_type == PACKET_OUTGOING) {
563 /* Special case: outgoing packets have ll header at head */
564 skb_pull(skb, skb_network_offset(skb));
570 res = run_filter(skb, sk, snaplen);
576 if (atomic_read(&sk->sk_rmem_alloc) + skb->truesize >=
577 (unsigned)sk->sk_rcvbuf)
580 if (skb_shared(skb)) {
581 struct sk_buff *nskb = skb_clone(skb, GFP_ATOMIC);
585 if (skb_head != skb->data) {
586 skb->data = skb_head;
593 BUILD_BUG_ON(sizeof(*PACKET_SKB_CB(skb)) + MAX_ADDR_LEN - 8 >
596 sll = &PACKET_SKB_CB(skb)->sa.ll;
597 sll->sll_family = AF_PACKET;
598 sll->sll_hatype = dev->type;
599 sll->sll_protocol = skb->protocol;
600 sll->sll_pkttype = skb->pkt_type;
601 if (unlikely(po->origdev))
602 sll->sll_ifindex = orig_dev->ifindex;
604 sll->sll_ifindex = dev->ifindex;
606 sll->sll_halen = dev_parse_header(skb, sll->sll_addr);
608 PACKET_SKB_CB(skb)->origlen = skb->len;
610 if (pskb_trim(skb, snaplen))
613 skb_set_owner_r(skb, sk);
617 /* drop conntrack reference */
620 spin_lock(&sk->sk_receive_queue.lock);
621 po->stats.tp_packets++;
622 skb->dropcount = atomic_read(&sk->sk_drops);
623 __skb_queue_tail(&sk->sk_receive_queue, skb);
624 spin_unlock(&sk->sk_receive_queue.lock);
625 sk->sk_data_ready(sk, skb->len);
629 po->stats.tp_drops = atomic_inc_return(&sk->sk_drops);
632 if (skb_head != skb->data && skb_shared(skb)) {
633 skb->data = skb_head;
641 #ifdef CONFIG_PACKET_MMAP
642 static int tpacket_rcv(struct sk_buff *skb, struct net_device *dev,
643 struct packet_type *pt, struct net_device *orig_dev)
646 struct packet_sock *po;
647 struct sockaddr_ll *sll;
649 struct tpacket_hdr *h1;
650 struct tpacket2_hdr *h2;
653 u8 *skb_head = skb->data;
654 int skb_len = skb->len;
655 unsigned int snaplen, res;
656 unsigned long status = TP_STATUS_LOSING|TP_STATUS_USER;
657 unsigned short macoff, netoff, hdrlen;
658 struct sk_buff *copy_skb = NULL;
662 if (skb->pkt_type == PACKET_LOOPBACK)
665 sk = pt->af_packet_priv;
668 if (!net_eq(dev_net(dev), sock_net(sk)))
671 if (dev->header_ops) {
672 if (sk->sk_type != SOCK_DGRAM)
673 skb_push(skb, skb->data - skb_mac_header(skb));
674 else if (skb->pkt_type == PACKET_OUTGOING) {
675 /* Special case: outgoing packets have ll header at head */
676 skb_pull(skb, skb_network_offset(skb));
680 if (skb->ip_summed == CHECKSUM_PARTIAL)
681 status |= TP_STATUS_CSUMNOTREADY;
685 res = run_filter(skb, sk, snaplen);
691 if (sk->sk_type == SOCK_DGRAM) {
692 macoff = netoff = TPACKET_ALIGN(po->tp_hdrlen) + 16 +
695 unsigned maclen = skb_network_offset(skb);
696 netoff = TPACKET_ALIGN(po->tp_hdrlen +
697 (maclen < 16 ? 16 : maclen)) +
699 macoff = netoff - maclen;
702 if (macoff + snaplen > po->rx_ring.frame_size) {
703 if (po->copy_thresh &&
704 atomic_read(&sk->sk_rmem_alloc) + skb->truesize <
705 (unsigned)sk->sk_rcvbuf) {
706 if (skb_shared(skb)) {
707 copy_skb = skb_clone(skb, GFP_ATOMIC);
709 copy_skb = skb_get(skb);
710 skb_head = skb->data;
713 skb_set_owner_r(copy_skb, sk);
715 snaplen = po->rx_ring.frame_size - macoff;
716 if ((int)snaplen < 0)
720 spin_lock(&sk->sk_receive_queue.lock);
721 h.raw = packet_current_frame(po, &po->rx_ring, TP_STATUS_KERNEL);
724 packet_increment_head(&po->rx_ring);
725 po->stats.tp_packets++;
727 status |= TP_STATUS_COPY;
728 __skb_queue_tail(&sk->sk_receive_queue, copy_skb);
730 if (!po->stats.tp_drops)
731 status &= ~TP_STATUS_LOSING;
732 spin_unlock(&sk->sk_receive_queue.lock);
734 skb_copy_bits(skb, 0, h.raw + macoff, snaplen);
736 switch (po->tp_version) {
738 h.h1->tp_len = skb->len;
739 h.h1->tp_snaplen = snaplen;
740 h.h1->tp_mac = macoff;
741 h.h1->tp_net = netoff;
742 if (skb->tstamp.tv64)
743 tv = ktime_to_timeval(skb->tstamp);
745 do_gettimeofday(&tv);
746 h.h1->tp_sec = tv.tv_sec;
747 h.h1->tp_usec = tv.tv_usec;
748 hdrlen = sizeof(*h.h1);
751 h.h2->tp_len = skb->len;
752 h.h2->tp_snaplen = snaplen;
753 h.h2->tp_mac = macoff;
754 h.h2->tp_net = netoff;
755 if (skb->tstamp.tv64)
756 ts = ktime_to_timespec(skb->tstamp);
759 h.h2->tp_sec = ts.tv_sec;
760 h.h2->tp_nsec = ts.tv_nsec;
761 h.h2->tp_vlan_tci = vlan_tx_tag_get(skb);
762 hdrlen = sizeof(*h.h2);
768 sll = h.raw + TPACKET_ALIGN(hdrlen);
769 sll->sll_halen = dev_parse_header(skb, sll->sll_addr);
770 sll->sll_family = AF_PACKET;
771 sll->sll_hatype = dev->type;
772 sll->sll_protocol = skb->protocol;
773 sll->sll_pkttype = skb->pkt_type;
774 if (unlikely(po->origdev))
775 sll->sll_ifindex = orig_dev->ifindex;
777 sll->sll_ifindex = dev->ifindex;
779 __packet_set_status(po, h.raw, status);
782 struct page *p_start, *p_end;
783 u8 *h_end = h.raw + macoff + snaplen - 1;
785 p_start = virt_to_page(h.raw);
786 p_end = virt_to_page(h_end);
787 while (p_start <= p_end) {
788 flush_dcache_page(p_start);
793 sk->sk_data_ready(sk, 0);
796 if (skb_head != skb->data && skb_shared(skb)) {
797 skb->data = skb_head;
805 po->stats.tp_drops++;
806 spin_unlock(&sk->sk_receive_queue.lock);
808 sk->sk_data_ready(sk, 0);
813 static void tpacket_destruct_skb(struct sk_buff *skb)
815 struct packet_sock *po = pkt_sk(skb->sk);
820 if (likely(po->tx_ring.pg_vec)) {
821 ph = skb_shinfo(skb)->destructor_arg;
822 BUG_ON(__packet_get_status(po, ph) != TP_STATUS_SENDING);
823 BUG_ON(atomic_read(&po->tx_ring.pending) == 0);
824 atomic_dec(&po->tx_ring.pending);
825 __packet_set_status(po, ph, TP_STATUS_AVAILABLE);
831 static int tpacket_fill_skb(struct packet_sock *po, struct sk_buff *skb,
832 void *frame, struct net_device *dev, int size_max,
833 __be16 proto, unsigned char *addr)
836 struct tpacket_hdr *h1;
837 struct tpacket2_hdr *h2;
840 int to_write, offset, len, tp_len, nr_frags, len_max;
841 struct socket *sock = po->sk.sk_socket;
848 skb->protocol = proto;
850 skb->priority = po->sk.sk_priority;
851 skb->mark = po->sk.sk_mark;
852 skb_shinfo(skb)->destructor_arg = ph.raw;
854 switch (po->tp_version) {
856 tp_len = ph.h2->tp_len;
859 tp_len = ph.h1->tp_len;
862 if (unlikely(tp_len > size_max)) {
863 pr_err("packet size is too long (%d > %d)\n", tp_len, size_max);
867 skb_reserve(skb, LL_RESERVED_SPACE(dev));
868 skb_reset_network_header(skb);
870 data = ph.raw + po->tp_hdrlen - sizeof(struct sockaddr_ll);
873 if (sock->type == SOCK_DGRAM) {
874 err = dev_hard_header(skb, dev, ntohs(proto), addr,
876 if (unlikely(err < 0))
878 } else if (dev->hard_header_len) {
879 /* net device doesn't like empty head */
880 if (unlikely(tp_len <= dev->hard_header_len)) {
881 pr_err("packet size is too short (%d < %d)\n",
882 tp_len, dev->hard_header_len);
886 skb_push(skb, dev->hard_header_len);
887 err = skb_store_bits(skb, 0, data,
888 dev->hard_header_len);
892 data += dev->hard_header_len;
893 to_write -= dev->hard_header_len;
897 page = virt_to_page(data);
898 offset = offset_in_page(data);
899 len_max = PAGE_SIZE - offset;
900 len = ((to_write > len_max) ? len_max : to_write);
902 skb->data_len = to_write;
903 skb->len += to_write;
904 skb->truesize += to_write;
905 atomic_add(to_write, &po->sk.sk_wmem_alloc);
907 while (likely(to_write)) {
908 nr_frags = skb_shinfo(skb)->nr_frags;
910 if (unlikely(nr_frags >= MAX_SKB_FRAGS)) {
911 pr_err("Packet exceed the number of skb frags(%lu)\n",
916 flush_dcache_page(page);
918 skb_fill_page_desc(skb,
920 page++, offset, len);
924 len = ((to_write > len_max) ? len_max : to_write);
930 static int tpacket_snd(struct packet_sock *po, struct msghdr *msg)
934 struct net_device *dev;
936 int ifindex, err, reserve = 0;
938 struct sockaddr_ll *saddr = (struct sockaddr_ll *)msg->msg_name;
939 int tp_len, size_max;
944 sock = po->sk.sk_socket;
946 mutex_lock(&po->pg_vec_lock);
950 ifindex = po->ifindex;
955 if (msg->msg_namelen < sizeof(struct sockaddr_ll))
957 if (msg->msg_namelen < (saddr->sll_halen
958 + offsetof(struct sockaddr_ll,
961 ifindex = saddr->sll_ifindex;
962 proto = saddr->sll_protocol;
963 addr = saddr->sll_addr;
966 dev = dev_get_by_index(sock_net(&po->sk), ifindex);
968 if (unlikely(dev == NULL))
971 reserve = dev->hard_header_len;
974 if (unlikely(!(dev->flags & IFF_UP)))
977 size_max = po->tx_ring.frame_size
978 - (po->tp_hdrlen - sizeof(struct sockaddr_ll));
980 if (size_max > dev->mtu + reserve)
981 size_max = dev->mtu + reserve;
984 ph = packet_current_frame(po, &po->tx_ring,
985 TP_STATUS_SEND_REQUEST);
987 if (unlikely(ph == NULL)) {
992 status = TP_STATUS_SEND_REQUEST;
993 skb = sock_alloc_send_skb(&po->sk,
994 LL_ALLOCATED_SPACE(dev)
995 + sizeof(struct sockaddr_ll),
998 if (unlikely(skb == NULL))
1001 tp_len = tpacket_fill_skb(po, skb, ph, dev, size_max, proto,
1004 if (unlikely(tp_len < 0)) {
1006 __packet_set_status(po, ph,
1007 TP_STATUS_AVAILABLE);
1008 packet_increment_head(&po->tx_ring);
1012 status = TP_STATUS_WRONG_FORMAT;
1018 skb->destructor = tpacket_destruct_skb;
1019 __packet_set_status(po, ph, TP_STATUS_SENDING);
1020 atomic_inc(&po->tx_ring.pending);
1022 status = TP_STATUS_SEND_REQUEST;
1023 err = dev_queue_xmit(skb);
1024 if (unlikely(err > 0 && (err = net_xmit_errno(err)) != 0))
1026 packet_increment_head(&po->tx_ring);
1028 } while (likely((ph != NULL) ||
1029 ((!(msg->msg_flags & MSG_DONTWAIT)) &&
1030 (atomic_read(&po->tx_ring.pending))))
1037 skb->destructor = sock_wfree;
1038 atomic_dec(&po->tx_ring.pending);
1040 __packet_set_status(po, ph, status);
1045 mutex_unlock(&po->pg_vec_lock);
1050 static int packet_snd(struct socket *sock,
1051 struct msghdr *msg, size_t len)
1053 struct sock *sk = sock->sk;
1054 struct sockaddr_ll *saddr = (struct sockaddr_ll *)msg->msg_name;
1055 struct sk_buff *skb;
1056 struct net_device *dev;
1058 unsigned char *addr;
1059 int ifindex, err, reserve = 0;
1062 * Get and verify the address.
1065 if (saddr == NULL) {
1066 struct packet_sock *po = pkt_sk(sk);
1068 ifindex = po->ifindex;
1073 if (msg->msg_namelen < sizeof(struct sockaddr_ll))
1075 if (msg->msg_namelen < (saddr->sll_halen + offsetof(struct sockaddr_ll, sll_addr)))
1077 ifindex = saddr->sll_ifindex;
1078 proto = saddr->sll_protocol;
1079 addr = saddr->sll_addr;
1083 dev = dev_get_by_index(sock_net(sk), ifindex);
1087 if (sock->type == SOCK_RAW)
1088 reserve = dev->hard_header_len;
1091 if (!(dev->flags & IFF_UP))
1095 if (len > dev->mtu+reserve)
1098 skb = sock_alloc_send_skb(sk, len + LL_ALLOCATED_SPACE(dev),
1099 msg->msg_flags & MSG_DONTWAIT, &err);
1103 skb_reserve(skb, LL_RESERVED_SPACE(dev));
1104 skb_reset_network_header(skb);
1107 if (sock->type == SOCK_DGRAM &&
1108 dev_hard_header(skb, dev, ntohs(proto), addr, NULL, len) < 0)
1111 /* Returns -EFAULT on error */
1112 err = memcpy_fromiovec(skb_put(skb, len), msg->msg_iov, len);
1116 skb->protocol = proto;
1118 skb->priority = sk->sk_priority;
1119 skb->mark = sk->sk_mark;
1125 err = dev_queue_xmit(skb);
1126 if (err > 0 && (err = net_xmit_errno(err)) != 0)
1142 static int packet_sendmsg(struct kiocb *iocb, struct socket *sock,
1143 struct msghdr *msg, size_t len)
1145 #ifdef CONFIG_PACKET_MMAP
1146 struct sock *sk = sock->sk;
1147 struct packet_sock *po = pkt_sk(sk);
1148 if (po->tx_ring.pg_vec)
1149 return tpacket_snd(po, msg);
1152 return packet_snd(sock, msg, len);
1156 * Close a PACKET socket. This is fairly simple. We immediately go
1157 * to 'closed' state and remove our protocol entry in the device list.
1160 static int packet_release(struct socket *sock)
1162 struct sock *sk = sock->sk;
1163 struct packet_sock *po;
1165 #ifdef CONFIG_PACKET_MMAP
1166 struct tpacket_req req;
1175 write_lock_bh(&net->packet.sklist_lock);
1176 sk_del_node_init(sk);
1177 sock_prot_inuse_add(net, sk->sk_prot, -1);
1178 write_unlock_bh(&net->packet.sklist_lock);
1181 * Unhook packet receive handler.
1186 * Remove the protocol hook
1188 dev_remove_pack(&po->prot_hook);
1194 packet_flush_mclist(sk);
1196 #ifdef CONFIG_PACKET_MMAP
1197 memset(&req, 0, sizeof(req));
1199 if (po->rx_ring.pg_vec)
1200 packet_set_ring(sk, &req, 1, 0);
1202 if (po->tx_ring.pg_vec)
1203 packet_set_ring(sk, &req, 1, 1);
1207 * Now the socket is dead. No more input will appear.
1215 skb_queue_purge(&sk->sk_receive_queue);
1216 sk_refcnt_debug_release(sk);
1223 * Attach a packet hook.
1226 static int packet_do_bind(struct sock *sk, struct net_device *dev, __be16 protocol)
1228 struct packet_sock *po = pkt_sk(sk);
1230 * Detach an existing hook if present.
1235 spin_lock(&po->bind_lock);
1240 spin_unlock(&po->bind_lock);
1241 dev_remove_pack(&po->prot_hook);
1242 spin_lock(&po->bind_lock);
1246 po->prot_hook.type = protocol;
1247 po->prot_hook.dev = dev;
1249 po->ifindex = dev ? dev->ifindex : 0;
1254 if (!dev || (dev->flags & IFF_UP)) {
1255 dev_add_pack(&po->prot_hook);
1259 sk->sk_err = ENETDOWN;
1260 if (!sock_flag(sk, SOCK_DEAD))
1261 sk->sk_error_report(sk);
1265 spin_unlock(&po->bind_lock);
1271 * Bind a packet socket to a device
1274 static int packet_bind_spkt(struct socket *sock, struct sockaddr *uaddr,
1277 struct sock *sk = sock->sk;
1279 struct net_device *dev;
1286 if (addr_len != sizeof(struct sockaddr))
1288 strlcpy(name, uaddr->sa_data, sizeof(name));
1290 dev = dev_get_by_name(sock_net(sk), name);
1292 err = packet_do_bind(sk, dev, pkt_sk(sk)->num);
1298 static int packet_bind(struct socket *sock, struct sockaddr *uaddr, int addr_len)
1300 struct sockaddr_ll *sll = (struct sockaddr_ll *)uaddr;
1301 struct sock *sk = sock->sk;
1302 struct net_device *dev = NULL;
1310 if (addr_len < sizeof(struct sockaddr_ll))
1312 if (sll->sll_family != AF_PACKET)
1315 if (sll->sll_ifindex) {
1317 dev = dev_get_by_index(sock_net(sk), sll->sll_ifindex);
1321 err = packet_do_bind(sk, dev, sll->sll_protocol ? : pkt_sk(sk)->num);
1329 static struct proto packet_proto = {
1331 .owner = THIS_MODULE,
1332 .obj_size = sizeof(struct packet_sock),
1336 * Create a packet of type SOCK_PACKET.
1339 static int packet_create(struct net *net, struct socket *sock, int protocol,
1343 struct packet_sock *po;
1344 __be16 proto = (__force __be16)protocol; /* weird, but documented */
1347 if (!capable(CAP_NET_RAW))
1349 if (sock->type != SOCK_DGRAM && sock->type != SOCK_RAW &&
1350 sock->type != SOCK_PACKET)
1351 return -ESOCKTNOSUPPORT;
1353 sock->state = SS_UNCONNECTED;
1356 sk = sk_alloc(net, PF_PACKET, GFP_KERNEL, &packet_proto);
1360 sock->ops = &packet_ops;
1361 if (sock->type == SOCK_PACKET)
1362 sock->ops = &packet_ops_spkt;
1364 sock_init_data(sock, sk);
1367 sk->sk_family = PF_PACKET;
1370 sk->sk_destruct = packet_sock_destruct;
1371 sk_refcnt_debug_inc(sk);
1374 * Attach a protocol block
1377 spin_lock_init(&po->bind_lock);
1378 mutex_init(&po->pg_vec_lock);
1379 po->prot_hook.func = packet_rcv;
1381 if (sock->type == SOCK_PACKET)
1382 po->prot_hook.func = packet_rcv_spkt;
1384 po->prot_hook.af_packet_priv = sk;
1387 po->prot_hook.type = proto;
1388 dev_add_pack(&po->prot_hook);
1393 write_lock_bh(&net->packet.sklist_lock);
1394 sk_add_node(sk, &net->packet.sklist);
1395 sock_prot_inuse_add(net, &packet_proto, 1);
1396 write_unlock_bh(&net->packet.sklist_lock);
1403 * Pull a packet from our receive queue and hand it to the user.
1404 * If necessary we block.
1407 static int packet_recvmsg(struct kiocb *iocb, struct socket *sock,
1408 struct msghdr *msg, size_t len, int flags)
1410 struct sock *sk = sock->sk;
1411 struct sk_buff *skb;
1413 struct sockaddr_ll *sll;
1416 if (flags & ~(MSG_PEEK|MSG_DONTWAIT|MSG_TRUNC|MSG_CMSG_COMPAT))
1420 /* What error should we return now? EUNATTACH? */
1421 if (pkt_sk(sk)->ifindex < 0)
1426 * Call the generic datagram receiver. This handles all sorts
1427 * of horrible races and re-entrancy so we can forget about it
1428 * in the protocol layers.
1430 * Now it will return ENETDOWN, if device have just gone down,
1431 * but then it will block.
1434 skb = skb_recv_datagram(sk, flags, flags & MSG_DONTWAIT, &err);
1437 * An error occurred so return it. Because skb_recv_datagram()
1438 * handles the blocking we don't see and worry about blocking
1446 * If the address length field is there to be filled in, we fill
1450 sll = &PACKET_SKB_CB(skb)->sa.ll;
1451 if (sock->type == SOCK_PACKET)
1452 msg->msg_namelen = sizeof(struct sockaddr_pkt);
1454 msg->msg_namelen = sll->sll_halen + offsetof(struct sockaddr_ll, sll_addr);
1457 * You lose any data beyond the buffer you gave. If it worries a
1458 * user program they can ask the device for its MTU anyway.
1464 msg->msg_flags |= MSG_TRUNC;
1467 err = skb_copy_datagram_iovec(skb, 0, msg->msg_iov, copied);
1471 sock_recv_ts_and_drops(msg, sk, skb);
1474 memcpy(msg->msg_name, &PACKET_SKB_CB(skb)->sa,
1477 if (pkt_sk(sk)->auxdata) {
1478 struct tpacket_auxdata aux;
1480 aux.tp_status = TP_STATUS_USER;
1481 if (skb->ip_summed == CHECKSUM_PARTIAL)
1482 aux.tp_status |= TP_STATUS_CSUMNOTREADY;
1483 aux.tp_len = PACKET_SKB_CB(skb)->origlen;
1484 aux.tp_snaplen = skb->len;
1486 aux.tp_net = skb_network_offset(skb);
1487 aux.tp_vlan_tci = vlan_tx_tag_get(skb);
1489 put_cmsg(msg, SOL_PACKET, PACKET_AUXDATA, sizeof(aux), &aux);
1493 * Free or return the buffer as appropriate. Again this
1494 * hides all the races and re-entrancy issues from us.
1496 err = (flags&MSG_TRUNC) ? skb->len : copied;
1499 skb_free_datagram(sk, skb);
1504 static int packet_getname_spkt(struct socket *sock, struct sockaddr *uaddr,
1505 int *uaddr_len, int peer)
1507 struct net_device *dev;
1508 struct sock *sk = sock->sk;
1513 uaddr->sa_family = AF_PACKET;
1515 dev = dev_get_by_index_rcu(sock_net(sk), pkt_sk(sk)->ifindex);
1517 strlcpy(uaddr->sa_data, dev->name, 15);
1519 memset(uaddr->sa_data, 0, 14);
1521 *uaddr_len = sizeof(*uaddr);
1526 static int packet_getname(struct socket *sock, struct sockaddr *uaddr,
1527 int *uaddr_len, int peer)
1529 struct net_device *dev;
1530 struct sock *sk = sock->sk;
1531 struct packet_sock *po = pkt_sk(sk);
1532 DECLARE_SOCKADDR(struct sockaddr_ll *, sll, uaddr);
1537 sll->sll_family = AF_PACKET;
1538 sll->sll_ifindex = po->ifindex;
1539 sll->sll_protocol = po->num;
1541 dev = dev_get_by_index_rcu(sock_net(sk), po->ifindex);
1543 sll->sll_hatype = dev->type;
1544 sll->sll_halen = dev->addr_len;
1545 memcpy(sll->sll_addr, dev->dev_addr, dev->addr_len);
1547 sll->sll_hatype = 0; /* Bad: we have no ARPHRD_UNSPEC */
1551 *uaddr_len = offsetof(struct sockaddr_ll, sll_addr) + sll->sll_halen;
1556 static int packet_dev_mc(struct net_device *dev, struct packet_mclist *i,
1560 case PACKET_MR_MULTICAST:
1562 return dev_mc_add(dev, i->addr, i->alen, 0);
1564 return dev_mc_delete(dev, i->addr, i->alen, 0);
1566 case PACKET_MR_PROMISC:
1567 return dev_set_promiscuity(dev, what);
1569 case PACKET_MR_ALLMULTI:
1570 return dev_set_allmulti(dev, what);
1572 case PACKET_MR_UNICAST:
1574 return dev_unicast_add(dev, i->addr);
1576 return dev_unicast_delete(dev, i->addr);
1584 static void packet_dev_mclist(struct net_device *dev, struct packet_mclist *i, int what)
1586 for ( ; i; i = i->next) {
1587 if (i->ifindex == dev->ifindex)
1588 packet_dev_mc(dev, i, what);
1592 static int packet_mc_add(struct sock *sk, struct packet_mreq_max *mreq)
1594 struct packet_sock *po = pkt_sk(sk);
1595 struct packet_mclist *ml, *i;
1596 struct net_device *dev;
1602 dev = __dev_get_by_index(sock_net(sk), mreq->mr_ifindex);
1607 if (mreq->mr_alen > dev->addr_len)
1611 i = kmalloc(sizeof(*i), GFP_KERNEL);
1616 for (ml = po->mclist; ml; ml = ml->next) {
1617 if (ml->ifindex == mreq->mr_ifindex &&
1618 ml->type == mreq->mr_type &&
1619 ml->alen == mreq->mr_alen &&
1620 memcmp(ml->addr, mreq->mr_address, ml->alen) == 0) {
1622 /* Free the new element ... */
1628 i->type = mreq->mr_type;
1629 i->ifindex = mreq->mr_ifindex;
1630 i->alen = mreq->mr_alen;
1631 memcpy(i->addr, mreq->mr_address, i->alen);
1633 i->next = po->mclist;
1635 err = packet_dev_mc(dev, i, 1);
1637 po->mclist = i->next;
1646 static int packet_mc_drop(struct sock *sk, struct packet_mreq_max *mreq)
1648 struct packet_mclist *ml, **mlp;
1652 for (mlp = &pkt_sk(sk)->mclist; (ml = *mlp) != NULL; mlp = &ml->next) {
1653 if (ml->ifindex == mreq->mr_ifindex &&
1654 ml->type == mreq->mr_type &&
1655 ml->alen == mreq->mr_alen &&
1656 memcmp(ml->addr, mreq->mr_address, ml->alen) == 0) {
1657 if (--ml->count == 0) {
1658 struct net_device *dev;
1660 dev = __dev_get_by_index(sock_net(sk), ml->ifindex);
1662 packet_dev_mc(dev, ml, -1);
1670 return -EADDRNOTAVAIL;
1673 static void packet_flush_mclist(struct sock *sk)
1675 struct packet_sock *po = pkt_sk(sk);
1676 struct packet_mclist *ml;
1682 while ((ml = po->mclist) != NULL) {
1683 struct net_device *dev;
1685 po->mclist = ml->next;
1686 dev = __dev_get_by_index(sock_net(sk), ml->ifindex);
1688 packet_dev_mc(dev, ml, -1);
1695 packet_setsockopt(struct socket *sock, int level, int optname, char __user *optval, unsigned int optlen)
1697 struct sock *sk = sock->sk;
1698 struct packet_sock *po = pkt_sk(sk);
1701 if (level != SOL_PACKET)
1702 return -ENOPROTOOPT;
1705 case PACKET_ADD_MEMBERSHIP:
1706 case PACKET_DROP_MEMBERSHIP:
1708 struct packet_mreq_max mreq;
1710 memset(&mreq, 0, sizeof(mreq));
1711 if (len < sizeof(struct packet_mreq))
1713 if (len > sizeof(mreq))
1715 if (copy_from_user(&mreq, optval, len))
1717 if (len < (mreq.mr_alen + offsetof(struct packet_mreq, mr_address)))
1719 if (optname == PACKET_ADD_MEMBERSHIP)
1720 ret = packet_mc_add(sk, &mreq);
1722 ret = packet_mc_drop(sk, &mreq);
1726 #ifdef CONFIG_PACKET_MMAP
1727 case PACKET_RX_RING:
1728 case PACKET_TX_RING:
1730 struct tpacket_req req;
1732 if (optlen < sizeof(req))
1734 if (copy_from_user(&req, optval, sizeof(req)))
1736 return packet_set_ring(sk, &req, 0, optname == PACKET_TX_RING);
1738 case PACKET_COPY_THRESH:
1742 if (optlen != sizeof(val))
1744 if (copy_from_user(&val, optval, sizeof(val)))
1747 pkt_sk(sk)->copy_thresh = val;
1750 case PACKET_VERSION:
1754 if (optlen != sizeof(val))
1756 if (po->rx_ring.pg_vec || po->tx_ring.pg_vec)
1758 if (copy_from_user(&val, optval, sizeof(val)))
1763 po->tp_version = val;
1769 case PACKET_RESERVE:
1773 if (optlen != sizeof(val))
1775 if (po->rx_ring.pg_vec || po->tx_ring.pg_vec)
1777 if (copy_from_user(&val, optval, sizeof(val)))
1779 po->tp_reserve = val;
1786 if (optlen != sizeof(val))
1788 if (po->rx_ring.pg_vec || po->tx_ring.pg_vec)
1790 if (copy_from_user(&val, optval, sizeof(val)))
1792 po->tp_loss = !!val;
1796 case PACKET_AUXDATA:
1800 if (optlen < sizeof(val))
1802 if (copy_from_user(&val, optval, sizeof(val)))
1805 po->auxdata = !!val;
1808 case PACKET_ORIGDEV:
1812 if (optlen < sizeof(val))
1814 if (copy_from_user(&val, optval, sizeof(val)))
1817 po->origdev = !!val;
1821 return -ENOPROTOOPT;
1825 static int packet_getsockopt(struct socket *sock, int level, int optname,
1826 char __user *optval, int __user *optlen)
1830 struct sock *sk = sock->sk;
1831 struct packet_sock *po = pkt_sk(sk);
1833 struct tpacket_stats st;
1835 if (level != SOL_PACKET)
1836 return -ENOPROTOOPT;
1838 if (get_user(len, optlen))
1845 case PACKET_STATISTICS:
1846 if (len > sizeof(struct tpacket_stats))
1847 len = sizeof(struct tpacket_stats);
1848 spin_lock_bh(&sk->sk_receive_queue.lock);
1850 memset(&po->stats, 0, sizeof(st));
1851 spin_unlock_bh(&sk->sk_receive_queue.lock);
1852 st.tp_packets += st.tp_drops;
1856 case PACKET_AUXDATA:
1857 if (len > sizeof(int))
1863 case PACKET_ORIGDEV:
1864 if (len > sizeof(int))
1870 #ifdef CONFIG_PACKET_MMAP
1871 case PACKET_VERSION:
1872 if (len > sizeof(int))
1874 val = po->tp_version;
1878 if (len > sizeof(int))
1880 if (copy_from_user(&val, optval, len))
1884 val = sizeof(struct tpacket_hdr);
1887 val = sizeof(struct tpacket2_hdr);
1894 case PACKET_RESERVE:
1895 if (len > sizeof(unsigned int))
1896 len = sizeof(unsigned int);
1897 val = po->tp_reserve;
1901 if (len > sizeof(unsigned int))
1902 len = sizeof(unsigned int);
1908 return -ENOPROTOOPT;
1911 if (put_user(len, optlen))
1913 if (copy_to_user(optval, data, len))
1919 static int packet_notifier(struct notifier_block *this, unsigned long msg, void *data)
1922 struct hlist_node *node;
1923 struct net_device *dev = data;
1924 struct net *net = dev_net(dev);
1926 read_lock(&net->packet.sklist_lock);
1927 sk_for_each(sk, node, &net->packet.sklist) {
1928 struct packet_sock *po = pkt_sk(sk);
1931 case NETDEV_UNREGISTER:
1933 packet_dev_mclist(dev, po->mclist, -1);
1937 if (dev->ifindex == po->ifindex) {
1938 spin_lock(&po->bind_lock);
1940 __dev_remove_pack(&po->prot_hook);
1943 sk->sk_err = ENETDOWN;
1944 if (!sock_flag(sk, SOCK_DEAD))
1945 sk->sk_error_report(sk);
1947 if (msg == NETDEV_UNREGISTER) {
1949 po->prot_hook.dev = NULL;
1951 spin_unlock(&po->bind_lock);
1955 spin_lock(&po->bind_lock);
1956 if (dev->ifindex == po->ifindex && po->num &&
1958 dev_add_pack(&po->prot_hook);
1962 spin_unlock(&po->bind_lock);
1966 read_unlock(&net->packet.sklist_lock);
1971 static int packet_ioctl(struct socket *sock, unsigned int cmd,
1974 struct sock *sk = sock->sk;
1979 int amount = sk_wmem_alloc_get(sk);
1981 return put_user(amount, (int __user *)arg);
1985 struct sk_buff *skb;
1988 spin_lock_bh(&sk->sk_receive_queue.lock);
1989 skb = skb_peek(&sk->sk_receive_queue);
1992 spin_unlock_bh(&sk->sk_receive_queue.lock);
1993 return put_user(amount, (int __user *)arg);
1996 return sock_get_timestamp(sk, (struct timeval __user *)arg);
1998 return sock_get_timestampns(sk, (struct timespec __user *)arg);
2008 case SIOCGIFBRDADDR:
2009 case SIOCSIFBRDADDR:
2010 case SIOCGIFNETMASK:
2011 case SIOCSIFNETMASK:
2012 case SIOCGIFDSTADDR:
2013 case SIOCSIFDSTADDR:
2015 if (!net_eq(sock_net(sk), &init_net))
2016 return -ENOIOCTLCMD;
2017 return inet_dgram_ops.ioctl(sock, cmd, arg);
2021 return -ENOIOCTLCMD;
2026 #ifndef CONFIG_PACKET_MMAP
2027 #define packet_mmap sock_no_mmap
2028 #define packet_poll datagram_poll
2031 static unsigned int packet_poll(struct file *file, struct socket *sock,
2034 struct sock *sk = sock->sk;
2035 struct packet_sock *po = pkt_sk(sk);
2036 unsigned int mask = datagram_poll(file, sock, wait);
2038 spin_lock_bh(&sk->sk_receive_queue.lock);
2039 if (po->rx_ring.pg_vec) {
2040 if (!packet_previous_frame(po, &po->rx_ring, TP_STATUS_KERNEL))
2041 mask |= POLLIN | POLLRDNORM;
2043 spin_unlock_bh(&sk->sk_receive_queue.lock);
2044 spin_lock_bh(&sk->sk_write_queue.lock);
2045 if (po->tx_ring.pg_vec) {
2046 if (packet_current_frame(po, &po->tx_ring, TP_STATUS_AVAILABLE))
2047 mask |= POLLOUT | POLLWRNORM;
2049 spin_unlock_bh(&sk->sk_write_queue.lock);
2054 /* Dirty? Well, I still did not learn better way to account
2058 static void packet_mm_open(struct vm_area_struct *vma)
2060 struct file *file = vma->vm_file;
2061 struct socket *sock = file->private_data;
2062 struct sock *sk = sock->sk;
2065 atomic_inc(&pkt_sk(sk)->mapped);
2068 static void packet_mm_close(struct vm_area_struct *vma)
2070 struct file *file = vma->vm_file;
2071 struct socket *sock = file->private_data;
2072 struct sock *sk = sock->sk;
2075 atomic_dec(&pkt_sk(sk)->mapped);
2078 static const struct vm_operations_struct packet_mmap_ops = {
2079 .open = packet_mm_open,
2080 .close = packet_mm_close,
2083 static void free_pg_vec(char **pg_vec, unsigned int order, unsigned int len)
2087 for (i = 0; i < len; i++) {
2088 if (likely(pg_vec[i]))
2089 free_pages((unsigned long) pg_vec[i], order);
2094 static inline char *alloc_one_pg_vec_page(unsigned long order)
2096 gfp_t gfp_flags = GFP_KERNEL | __GFP_COMP | __GFP_ZERO | __GFP_NOWARN;
2098 return (char *) __get_free_pages(gfp_flags, order);
2101 static char **alloc_pg_vec(struct tpacket_req *req, int order)
2103 unsigned int block_nr = req->tp_block_nr;
2107 pg_vec = kzalloc(block_nr * sizeof(char *), GFP_KERNEL);
2108 if (unlikely(!pg_vec))
2111 for (i = 0; i < block_nr; i++) {
2112 pg_vec[i] = alloc_one_pg_vec_page(order);
2113 if (unlikely(!pg_vec[i]))
2114 goto out_free_pgvec;
2121 free_pg_vec(pg_vec, order, block_nr);
2126 static int packet_set_ring(struct sock *sk, struct tpacket_req *req,
2127 int closing, int tx_ring)
2129 char **pg_vec = NULL;
2130 struct packet_sock *po = pkt_sk(sk);
2131 int was_running, order = 0;
2132 struct packet_ring_buffer *rb;
2133 struct sk_buff_head *rb_queue;
2137 rb = tx_ring ? &po->tx_ring : &po->rx_ring;
2138 rb_queue = tx_ring ? &sk->sk_write_queue : &sk->sk_receive_queue;
2142 if (atomic_read(&po->mapped))
2144 if (atomic_read(&rb->pending))
2148 if (req->tp_block_nr) {
2149 /* Sanity tests and some calculations */
2151 if (unlikely(rb->pg_vec))
2154 switch (po->tp_version) {
2156 po->tp_hdrlen = TPACKET_HDRLEN;
2159 po->tp_hdrlen = TPACKET2_HDRLEN;
2164 if (unlikely((int)req->tp_block_size <= 0))
2166 if (unlikely(req->tp_block_size & (PAGE_SIZE - 1)))
2168 if (unlikely(req->tp_frame_size < po->tp_hdrlen +
2171 if (unlikely(req->tp_frame_size & (TPACKET_ALIGNMENT - 1)))
2174 rb->frames_per_block = req->tp_block_size/req->tp_frame_size;
2175 if (unlikely(rb->frames_per_block <= 0))
2177 if (unlikely((rb->frames_per_block * req->tp_block_nr) !=
2182 order = get_order(req->tp_block_size);
2183 pg_vec = alloc_pg_vec(req, order);
2184 if (unlikely(!pg_vec))
2190 if (unlikely(req->tp_frame_nr))
2196 /* Detach socket from network */
2197 spin_lock(&po->bind_lock);
2198 was_running = po->running;
2201 __dev_remove_pack(&po->prot_hook);
2206 spin_unlock(&po->bind_lock);
2211 mutex_lock(&po->pg_vec_lock);
2212 if (closing || atomic_read(&po->mapped) == 0) {
2214 #define XC(a, b) ({ __typeof__ ((a)) __t; __t = (a); (a) = (b); __t; })
2215 spin_lock_bh(&rb_queue->lock);
2216 pg_vec = XC(rb->pg_vec, pg_vec);
2217 rb->frame_max = (req->tp_frame_nr - 1);
2219 rb->frame_size = req->tp_frame_size;
2220 spin_unlock_bh(&rb_queue->lock);
2222 order = XC(rb->pg_vec_order, order);
2223 req->tp_block_nr = XC(rb->pg_vec_len, req->tp_block_nr);
2225 rb->pg_vec_pages = req->tp_block_size/PAGE_SIZE;
2226 po->prot_hook.func = (po->rx_ring.pg_vec) ?
2227 tpacket_rcv : packet_rcv;
2228 skb_queue_purge(rb_queue);
2230 if (atomic_read(&po->mapped))
2231 pr_err("packet_mmap: vma is busy: %d\n",
2232 atomic_read(&po->mapped));
2234 mutex_unlock(&po->pg_vec_lock);
2236 spin_lock(&po->bind_lock);
2237 if (was_running && !po->running) {
2241 dev_add_pack(&po->prot_hook);
2243 spin_unlock(&po->bind_lock);
2248 free_pg_vec(pg_vec, order, req->tp_block_nr);
2253 static int packet_mmap(struct file *file, struct socket *sock,
2254 struct vm_area_struct *vma)
2256 struct sock *sk = sock->sk;
2257 struct packet_sock *po = pkt_sk(sk);
2258 unsigned long size, expected_size;
2259 struct packet_ring_buffer *rb;
2260 unsigned long start;
2267 mutex_lock(&po->pg_vec_lock);
2270 for (rb = &po->rx_ring; rb <= &po->tx_ring; rb++) {
2272 expected_size += rb->pg_vec_len
2278 if (expected_size == 0)
2281 size = vma->vm_end - vma->vm_start;
2282 if (size != expected_size)
2285 start = vma->vm_start;
2286 for (rb = &po->rx_ring; rb <= &po->tx_ring; rb++) {
2287 if (rb->pg_vec == NULL)
2290 for (i = 0; i < rb->pg_vec_len; i++) {
2291 struct page *page = virt_to_page(rb->pg_vec[i]);
2294 for (pg_num = 0; pg_num < rb->pg_vec_pages;
2296 err = vm_insert_page(vma, start, page);
2304 atomic_inc(&po->mapped);
2305 vma->vm_ops = &packet_mmap_ops;
2309 mutex_unlock(&po->pg_vec_lock);
2315 static const struct proto_ops packet_ops_spkt = {
2316 .family = PF_PACKET,
2317 .owner = THIS_MODULE,
2318 .release = packet_release,
2319 .bind = packet_bind_spkt,
2320 .connect = sock_no_connect,
2321 .socketpair = sock_no_socketpair,
2322 .accept = sock_no_accept,
2323 .getname = packet_getname_spkt,
2324 .poll = datagram_poll,
2325 .ioctl = packet_ioctl,
2326 .listen = sock_no_listen,
2327 .shutdown = sock_no_shutdown,
2328 .setsockopt = sock_no_setsockopt,
2329 .getsockopt = sock_no_getsockopt,
2330 .sendmsg = packet_sendmsg_spkt,
2331 .recvmsg = packet_recvmsg,
2332 .mmap = sock_no_mmap,
2333 .sendpage = sock_no_sendpage,
2336 static const struct proto_ops packet_ops = {
2337 .family = PF_PACKET,
2338 .owner = THIS_MODULE,
2339 .release = packet_release,
2340 .bind = packet_bind,
2341 .connect = sock_no_connect,
2342 .socketpair = sock_no_socketpair,
2343 .accept = sock_no_accept,
2344 .getname = packet_getname,
2345 .poll = packet_poll,
2346 .ioctl = packet_ioctl,
2347 .listen = sock_no_listen,
2348 .shutdown = sock_no_shutdown,
2349 .setsockopt = packet_setsockopt,
2350 .getsockopt = packet_getsockopt,
2351 .sendmsg = packet_sendmsg,
2352 .recvmsg = packet_recvmsg,
2353 .mmap = packet_mmap,
2354 .sendpage = sock_no_sendpage,
2357 static const struct net_proto_family packet_family_ops = {
2358 .family = PF_PACKET,
2359 .create = packet_create,
2360 .owner = THIS_MODULE,
2363 static struct notifier_block packet_netdev_notifier = {
2364 .notifier_call = packet_notifier,
2367 #ifdef CONFIG_PROC_FS
2368 static inline struct sock *packet_seq_idx(struct net *net, loff_t off)
2371 struct hlist_node *node;
2373 sk_for_each(s, node, &net->packet.sklist) {
2380 static void *packet_seq_start(struct seq_file *seq, loff_t *pos)
2381 __acquires(seq_file_net(seq)->packet.sklist_lock)
2383 struct net *net = seq_file_net(seq);
2384 read_lock(&net->packet.sklist_lock);
2385 return *pos ? packet_seq_idx(net, *pos - 1) : SEQ_START_TOKEN;
2388 static void *packet_seq_next(struct seq_file *seq, void *v, loff_t *pos)
2390 struct net *net = seq_file_net(seq);
2392 return (v == SEQ_START_TOKEN)
2393 ? sk_head(&net->packet.sklist)
2394 : sk_next((struct sock *)v) ;
2397 static void packet_seq_stop(struct seq_file *seq, void *v)
2398 __releases(seq_file_net(seq)->packet.sklist_lock)
2400 struct net *net = seq_file_net(seq);
2401 read_unlock(&net->packet.sklist_lock);
2404 static int packet_seq_show(struct seq_file *seq, void *v)
2406 if (v == SEQ_START_TOKEN)
2407 seq_puts(seq, "sk RefCnt Type Proto Iface R Rmem User Inode\n");
2410 const struct packet_sock *po = pkt_sk(s);
2413 "%p %-6d %-4d %04x %-5d %1d %-6u %-6u %-6lu\n",
2415 atomic_read(&s->sk_refcnt),
2420 atomic_read(&s->sk_rmem_alloc),
2428 static const struct seq_operations packet_seq_ops = {
2429 .start = packet_seq_start,
2430 .next = packet_seq_next,
2431 .stop = packet_seq_stop,
2432 .show = packet_seq_show,
2435 static int packet_seq_open(struct inode *inode, struct file *file)
2437 return seq_open_net(inode, file, &packet_seq_ops,
2438 sizeof(struct seq_net_private));
2441 static const struct file_operations packet_seq_fops = {
2442 .owner = THIS_MODULE,
2443 .open = packet_seq_open,
2445 .llseek = seq_lseek,
2446 .release = seq_release_net,
2451 static int __net_init packet_net_init(struct net *net)
2453 rwlock_init(&net->packet.sklist_lock);
2454 INIT_HLIST_HEAD(&net->packet.sklist);
2456 if (!proc_net_fops_create(net, "packet", 0, &packet_seq_fops))
2462 static void __net_exit packet_net_exit(struct net *net)
2464 proc_net_remove(net, "packet");
2467 static struct pernet_operations packet_net_ops = {
2468 .init = packet_net_init,
2469 .exit = packet_net_exit,
2473 static void __exit packet_exit(void)
2475 unregister_netdevice_notifier(&packet_netdev_notifier);
2476 unregister_pernet_subsys(&packet_net_ops);
2477 sock_unregister(PF_PACKET);
2478 proto_unregister(&packet_proto);
2481 static int __init packet_init(void)
2483 int rc = proto_register(&packet_proto, 0);
2488 sock_register(&packet_family_ops);
2489 register_pernet_subsys(&packet_net_ops);
2490 register_netdevice_notifier(&packet_netdev_notifier);
2495 module_init(packet_init);
2496 module_exit(packet_exit);
2497 MODULE_LICENSE("GPL");
2498 MODULE_ALIAS_NETPROTO(PF_PACKET);
git://ftp.safe.ca / safe / jmp / linux-2.6 / blob