2 * INET An implementation of the TCP/IP protocol suite for the LINUX
3 * operating system. INET is implemented using the BSD Socket
4 * interface as the means of communication with the user level.
6 * PACKET - implements raw packet sockets.
9 * Fred N. van Kempen, <waltje@uWalt.NL.Mugnet.ORG>
10 * Alan Cox, <gw4pts@gw4pts.ampr.org>
13 * Alan Cox : verify_area() now used correctly
14 * Alan Cox : new skbuff lists, look ma no backlogs!
15 * Alan Cox : tidied skbuff lists.
16 * Alan Cox : Now uses generic datagram routines I
17 * added. Also fixed the peek/read crash
18 * from all old Linux datagram code.
19 * Alan Cox : Uses the improved datagram code.
20 * Alan Cox : Added NULL's for socket options.
21 * Alan Cox : Re-commented the code.
22 * Alan Cox : Use new kernel side addressing
23 * Rob Janssen : Correct MTU usage.
24 * Dave Platt : Counter leaks caused by incorrect
25 * interrupt locking and some slightly
26 * dubious gcc output. Can you read
27 * compiler: it said _VOLATILE_
28 * Richard Kooijman : Timestamp fixes.
29 * Alan Cox : New buffers. Use sk->mac.raw.
30 * Alan Cox : sendmsg/recvmsg support.
31 * Alan Cox : Protocol setting support
32 * Alexey Kuznetsov : Untied from IPv4 stack.
33 * Cyrus Durgin : Fixed kerneld for kmod.
34 * Michal Ostrowski : Module initialization cleanup.
35 * Ulises Alonso : Frame number limit removal and
36 * packet_set_ring memory leak.
37 * Eric Biederman : Allow for > 8 byte hardware addresses.
38 * The convention is that longer addresses
39 * will simply extend the hardware address
40 * byte arrays at the end of sockaddr_ll
42 * Johann Baudy : Added TX RING.
44 * This program is free software; you can redistribute it and/or
45 * modify it under the terms of the GNU General Public License
46 * as published by the Free Software Foundation; either version
47 * 2 of the License, or (at your option) any later version.
51 #include <linux/types.h>
53 #include <linux/capability.h>
54 #include <linux/fcntl.h>
55 #include <linux/socket.h>
57 #include <linux/inet.h>
58 #include <linux/netdevice.h>
59 #include <linux/if_packet.h>
60 #include <linux/wireless.h>
61 #include <linux/kernel.h>
62 #include <linux/kmod.h>
63 #include <net/net_namespace.h>
65 #include <net/protocol.h>
66 #include <linux/skbuff.h>
68 #include <linux/errno.h>
69 #include <linux/timer.h>
70 #include <asm/system.h>
71 #include <asm/uaccess.h>
72 #include <asm/ioctls.h>
74 #include <asm/cacheflush.h>
76 #include <linux/proc_fs.h>
77 #include <linux/seq_file.h>
78 #include <linux/poll.h>
79 #include <linux/module.h>
80 #include <linux/init.h>
81 #include <linux/mutex.h>
82 #include <linux/if_vlan.h>
85 #include <net/inet_common.h>
90 - if device has no dev->hard_header routine, it adds and removes ll header
91 inside itself. In this case ll header is invisible outside of device,
92 but higher levels still should reserve dev->hard_header_len.
93 Some devices are enough clever to reallocate skb, when header
94 will not fit to reserved space (tunnel), another ones are silly
96 - packet socket receives packets with pulled ll header,
97 so that SOCK_RAW should push it back.
102 Incoming, dev->hard_header!=NULL
103 mac_header -> ll header
106 Outgoing, dev->hard_header!=NULL
107 mac_header -> ll header
110 Incoming, dev->hard_header==NULL
111 mac_header -> UNKNOWN position. It is very likely, that it points to ll
112 header. PPP makes it, that is wrong, because introduce
113 assymetry between rx and tx paths.
116 Outgoing, dev->hard_header==NULL
117 mac_header -> data. ll header is still not built!
121 If dev->hard_header==NULL we are unlikely to restore sensible ll header.
127 dev->hard_header != NULL
128 mac_header -> ll header
131 dev->hard_header == NULL (ll header is added by device, we cannot control it)
135 We should set nh.raw on output to correct posistion,
136 packet classifier depends on it.
139 /* Private packet socket structures. */
141 struct packet_mclist {
142 struct packet_mclist *next;
147 unsigned char addr[MAX_ADDR_LEN];
149 /* identical to struct packet_mreq except it has
150 * a longer address field.
152 struct packet_mreq_max {
154 unsigned short mr_type;
155 unsigned short mr_alen;
156 unsigned char mr_address[MAX_ADDR_LEN];
159 #ifdef CONFIG_PACKET_MMAP
160 static int packet_set_ring(struct sock *sk, struct tpacket_req *req,
161 int closing, int tx_ring);
163 struct packet_ring_buffer {
166 unsigned int frames_per_block;
167 unsigned int frame_size;
168 unsigned int frame_max;
170 unsigned int pg_vec_order;
171 unsigned int pg_vec_pages;
172 unsigned int pg_vec_len;
178 static int tpacket_snd(struct packet_sock *po, struct msghdr *msg);
181 static void packet_flush_mclist(struct sock *sk);
184 /* struct sock has to be the first member of packet_sock */
186 struct tpacket_stats stats;
187 #ifdef CONFIG_PACKET_MMAP
188 struct packet_ring_buffer rx_ring;
189 struct packet_ring_buffer tx_ring;
192 spinlock_t bind_lock;
193 struct mutex pg_vec_lock;
194 unsigned int running:1, /* prot_hook is attached*/
197 int ifindex; /* bound device */
199 struct packet_mclist *mclist;
200 #ifdef CONFIG_PACKET_MMAP
202 enum tpacket_versions tp_version;
203 unsigned int tp_hdrlen;
204 unsigned int tp_reserve;
205 unsigned int tp_loss:1;
207 struct packet_type prot_hook ____cacheline_aligned_in_smp;
210 struct packet_skb_cb {
211 unsigned int origlen;
213 struct sockaddr_pkt pkt;
214 struct sockaddr_ll ll;
218 #define PACKET_SKB_CB(__skb) ((struct packet_skb_cb *)((__skb)->cb))
220 #ifdef CONFIG_PACKET_MMAP
222 static void __packet_set_status(struct packet_sock *po, void *frame, int status)
225 struct tpacket_hdr *h1;
226 struct tpacket2_hdr *h2;
231 switch (po->tp_version) {
233 h.h1->tp_status = status;
234 flush_dcache_page(virt_to_page(&h.h1->tp_status));
237 h.h2->tp_status = status;
238 flush_dcache_page(virt_to_page(&h.h2->tp_status));
241 pr_err("TPACKET version not supported\n");
248 static int __packet_get_status(struct packet_sock *po, void *frame)
251 struct tpacket_hdr *h1;
252 struct tpacket2_hdr *h2;
259 switch (po->tp_version) {
261 flush_dcache_page(virt_to_page(&h.h1->tp_status));
262 return h.h1->tp_status;
264 flush_dcache_page(virt_to_page(&h.h2->tp_status));
265 return h.h2->tp_status;
267 pr_err("TPACKET version not supported\n");
273 static void *packet_lookup_frame(struct packet_sock *po,
274 struct packet_ring_buffer *rb,
275 unsigned int position,
278 unsigned int pg_vec_pos, frame_offset;
280 struct tpacket_hdr *h1;
281 struct tpacket2_hdr *h2;
285 pg_vec_pos = position / rb->frames_per_block;
286 frame_offset = position % rb->frames_per_block;
288 h.raw = rb->pg_vec[pg_vec_pos] + (frame_offset * rb->frame_size);
290 if (status != __packet_get_status(po, h.raw))
296 static inline void *packet_current_frame(struct packet_sock *po,
297 struct packet_ring_buffer *rb,
300 return packet_lookup_frame(po, rb, rb->head, status);
303 static inline void *packet_previous_frame(struct packet_sock *po,
304 struct packet_ring_buffer *rb,
307 unsigned int previous = rb->head ? rb->head - 1 : rb->frame_max;
308 return packet_lookup_frame(po, rb, previous, status);
311 static inline void packet_increment_head(struct packet_ring_buffer *buff)
313 buff->head = buff->head != buff->frame_max ? buff->head+1 : 0;
318 static inline struct packet_sock *pkt_sk(struct sock *sk)
320 return (struct packet_sock *)sk;
323 static void packet_sock_destruct(struct sock *sk)
325 WARN_ON(atomic_read(&sk->sk_rmem_alloc));
326 WARN_ON(atomic_read(&sk->sk_wmem_alloc));
328 if (!sock_flag(sk, SOCK_DEAD)) {
329 pr_err("Attempt to release alive packet socket: %p\n", sk);
333 sk_refcnt_debug_dec(sk);
337 static const struct proto_ops packet_ops;
339 static const struct proto_ops packet_ops_spkt;
341 static int packet_rcv_spkt(struct sk_buff *skb, struct net_device *dev,
342 struct packet_type *pt, struct net_device *orig_dev)
345 struct sockaddr_pkt *spkt;
348 * When we registered the protocol we saved the socket in the data
349 * field for just this event.
352 sk = pt->af_packet_priv;
355 * Yank back the headers [hope the device set this
356 * right or kerboom...]
358 * Incoming packets have ll header pulled,
361 * For outgoing ones skb->data == skb_mac_header(skb)
362 * so that this procedure is noop.
365 if (skb->pkt_type == PACKET_LOOPBACK)
368 if (!net_eq(dev_net(dev), sock_net(sk)))
371 skb = skb_share_check(skb, GFP_ATOMIC);
375 /* drop any routing info */
378 /* drop conntrack reference */
381 spkt = &PACKET_SKB_CB(skb)->sa.pkt;
383 skb_push(skb, skb->data - skb_mac_header(skb));
386 * The SOCK_PACKET socket receives _all_ frames.
389 spkt->spkt_family = dev->type;
390 strlcpy(spkt->spkt_device, dev->name, sizeof(spkt->spkt_device));
391 spkt->spkt_protocol = skb->protocol;
394 * Charge the memory to the socket. This is done specifically
395 * to prevent sockets using all the memory up.
398 if (sock_queue_rcv_skb(sk, skb) == 0)
409 * Output a raw packet to a device layer. This bypasses all the other
410 * protocol layers and you must therefore supply it with a complete frame
413 static int packet_sendmsg_spkt(struct kiocb *iocb, struct socket *sock,
414 struct msghdr *msg, size_t len)
416 struct sock *sk = sock->sk;
417 struct sockaddr_pkt *saddr = (struct sockaddr_pkt *)msg->msg_name;
419 struct net_device *dev;
424 * Get and verify the address.
428 if (msg->msg_namelen < sizeof(struct sockaddr))
430 if (msg->msg_namelen == sizeof(struct sockaddr_pkt))
431 proto = saddr->spkt_protocol;
433 return -ENOTCONN; /* SOCK_PACKET must be sent giving an address */
436 * Find the device first to size check it
439 saddr->spkt_device[13] = 0;
441 dev = dev_get_by_name_rcu(sock_net(sk), saddr->spkt_device);
447 if (!(dev->flags & IFF_UP))
451 * You may not queue a frame bigger than the mtu. This is the lowest level
452 * raw protocol and you must do your own fragmentation at this level.
456 if (len > dev->mtu + dev->hard_header_len)
460 skb = sock_wmalloc(sk, len + LL_RESERVED_SPACE(dev), 0, GFP_KERNEL);
463 * If the write buffer is full, then tough. At this level the user
464 * gets to deal with the problem - do your own algorithmic backoffs.
465 * That's far more flexible.
475 /* FIXME: Save some space for broken drivers that write a
476 * hard header at transmission time by themselves. PPP is the
477 * notable one here. This should really be fixed at the driver level.
479 skb_reserve(skb, LL_RESERVED_SPACE(dev));
480 skb_reset_network_header(skb);
482 /* Try to align data part correctly */
483 if (dev->header_ops) {
484 skb->data -= dev->hard_header_len;
485 skb->tail -= dev->hard_header_len;
486 if (len < dev->hard_header_len)
487 skb_reset_network_header(skb);
490 /* Returns -EFAULT on error */
491 err = memcpy_fromiovec(skb_put(skb, len), msg->msg_iov, len);
492 skb->protocol = proto;
494 skb->priority = sk->sk_priority;
495 skb->mark = sk->sk_mark;
514 static inline unsigned int run_filter(struct sk_buff *skb, struct sock *sk,
517 struct sk_filter *filter;
520 filter = rcu_dereference(sk->sk_filter);
522 res = sk_run_filter(skb, filter->insns, filter->len);
523 rcu_read_unlock_bh();
529 This function makes lazy skb cloning in hope that most of packets
530 are discarded by BPF.
532 Note tricky part: we DO mangle shared skb! skb->data, skb->len
533 and skb->cb are mangled. It works because (and until) packets
534 falling here are owned by current CPU. Output packets are cloned
535 by dev_queue_xmit_nit(), input packets are processed by net_bh
536 sequencially, so that if we return skb to original state on exit,
537 we will not harm anyone.
540 static int packet_rcv(struct sk_buff *skb, struct net_device *dev,
541 struct packet_type *pt, struct net_device *orig_dev)
544 struct sockaddr_ll *sll;
545 struct packet_sock *po;
546 u8 *skb_head = skb->data;
547 int skb_len = skb->len;
548 unsigned int snaplen, res;
550 if (skb->pkt_type == PACKET_LOOPBACK)
553 sk = pt->af_packet_priv;
556 if (!net_eq(dev_net(dev), sock_net(sk)))
561 if (dev->header_ops) {
562 /* The device has an explicit notion of ll header,
563 exported to higher levels.
565 Otherwise, the device hides datails of it frame
566 structure, so that corresponding packet head
567 never delivered to user.
569 if (sk->sk_type != SOCK_DGRAM)
570 skb_push(skb, skb->data - skb_mac_header(skb));
571 else if (skb->pkt_type == PACKET_OUTGOING) {
572 /* Special case: outgoing packets have ll header at head */
573 skb_pull(skb, skb_network_offset(skb));
579 res = run_filter(skb, sk, snaplen);
585 if (atomic_read(&sk->sk_rmem_alloc) + skb->truesize >=
586 (unsigned)sk->sk_rcvbuf)
589 if (skb_shared(skb)) {
590 struct sk_buff *nskb = skb_clone(skb, GFP_ATOMIC);
594 if (skb_head != skb->data) {
595 skb->data = skb_head;
602 BUILD_BUG_ON(sizeof(*PACKET_SKB_CB(skb)) + MAX_ADDR_LEN - 8 >
605 sll = &PACKET_SKB_CB(skb)->sa.ll;
606 sll->sll_family = AF_PACKET;
607 sll->sll_hatype = dev->type;
608 sll->sll_protocol = skb->protocol;
609 sll->sll_pkttype = skb->pkt_type;
610 if (unlikely(po->origdev))
611 sll->sll_ifindex = orig_dev->ifindex;
613 sll->sll_ifindex = dev->ifindex;
615 sll->sll_halen = dev_parse_header(skb, sll->sll_addr);
617 PACKET_SKB_CB(skb)->origlen = skb->len;
619 if (pskb_trim(skb, snaplen))
622 skb_set_owner_r(skb, sk);
626 /* drop conntrack reference */
629 spin_lock(&sk->sk_receive_queue.lock);
630 po->stats.tp_packets++;
631 skb->dropcount = atomic_read(&sk->sk_drops);
632 __skb_queue_tail(&sk->sk_receive_queue, skb);
633 spin_unlock(&sk->sk_receive_queue.lock);
634 sk->sk_data_ready(sk, skb->len);
638 po->stats.tp_drops = atomic_inc_return(&sk->sk_drops);
641 if (skb_head != skb->data && skb_shared(skb)) {
642 skb->data = skb_head;
650 #ifdef CONFIG_PACKET_MMAP
651 static int tpacket_rcv(struct sk_buff *skb, struct net_device *dev,
652 struct packet_type *pt, struct net_device *orig_dev)
655 struct packet_sock *po;
656 struct sockaddr_ll *sll;
658 struct tpacket_hdr *h1;
659 struct tpacket2_hdr *h2;
662 u8 *skb_head = skb->data;
663 int skb_len = skb->len;
664 unsigned int snaplen, res;
665 unsigned long status = TP_STATUS_LOSING|TP_STATUS_USER;
666 unsigned short macoff, netoff, hdrlen;
667 struct sk_buff *copy_skb = NULL;
671 if (skb->pkt_type == PACKET_LOOPBACK)
674 sk = pt->af_packet_priv;
677 if (!net_eq(dev_net(dev), sock_net(sk)))
680 if (dev->header_ops) {
681 if (sk->sk_type != SOCK_DGRAM)
682 skb_push(skb, skb->data - skb_mac_header(skb));
683 else if (skb->pkt_type == PACKET_OUTGOING) {
684 /* Special case: outgoing packets have ll header at head */
685 skb_pull(skb, skb_network_offset(skb));
689 if (skb->ip_summed == CHECKSUM_PARTIAL)
690 status |= TP_STATUS_CSUMNOTREADY;
694 res = run_filter(skb, sk, snaplen);
700 if (sk->sk_type == SOCK_DGRAM) {
701 macoff = netoff = TPACKET_ALIGN(po->tp_hdrlen) + 16 +
704 unsigned maclen = skb_network_offset(skb);
705 netoff = TPACKET_ALIGN(po->tp_hdrlen +
706 (maclen < 16 ? 16 : maclen)) +
708 macoff = netoff - maclen;
711 if (macoff + snaplen > po->rx_ring.frame_size) {
712 if (po->copy_thresh &&
713 atomic_read(&sk->sk_rmem_alloc) + skb->truesize <
714 (unsigned)sk->sk_rcvbuf) {
715 if (skb_shared(skb)) {
716 copy_skb = skb_clone(skb, GFP_ATOMIC);
718 copy_skb = skb_get(skb);
719 skb_head = skb->data;
722 skb_set_owner_r(copy_skb, sk);
724 snaplen = po->rx_ring.frame_size - macoff;
725 if ((int)snaplen < 0)
729 spin_lock(&sk->sk_receive_queue.lock);
730 h.raw = packet_current_frame(po, &po->rx_ring, TP_STATUS_KERNEL);
733 packet_increment_head(&po->rx_ring);
734 po->stats.tp_packets++;
736 status |= TP_STATUS_COPY;
737 __skb_queue_tail(&sk->sk_receive_queue, copy_skb);
739 if (!po->stats.tp_drops)
740 status &= ~TP_STATUS_LOSING;
741 spin_unlock(&sk->sk_receive_queue.lock);
743 skb_copy_bits(skb, 0, h.raw + macoff, snaplen);
745 switch (po->tp_version) {
747 h.h1->tp_len = skb->len;
748 h.h1->tp_snaplen = snaplen;
749 h.h1->tp_mac = macoff;
750 h.h1->tp_net = netoff;
751 if (skb->tstamp.tv64)
752 tv = ktime_to_timeval(skb->tstamp);
754 do_gettimeofday(&tv);
755 h.h1->tp_sec = tv.tv_sec;
756 h.h1->tp_usec = tv.tv_usec;
757 hdrlen = sizeof(*h.h1);
760 h.h2->tp_len = skb->len;
761 h.h2->tp_snaplen = snaplen;
762 h.h2->tp_mac = macoff;
763 h.h2->tp_net = netoff;
764 if (skb->tstamp.tv64)
765 ts = ktime_to_timespec(skb->tstamp);
768 h.h2->tp_sec = ts.tv_sec;
769 h.h2->tp_nsec = ts.tv_nsec;
770 h.h2->tp_vlan_tci = vlan_tx_tag_get(skb);
771 hdrlen = sizeof(*h.h2);
777 sll = h.raw + TPACKET_ALIGN(hdrlen);
778 sll->sll_halen = dev_parse_header(skb, sll->sll_addr);
779 sll->sll_family = AF_PACKET;
780 sll->sll_hatype = dev->type;
781 sll->sll_protocol = skb->protocol;
782 sll->sll_pkttype = skb->pkt_type;
783 if (unlikely(po->origdev))
784 sll->sll_ifindex = orig_dev->ifindex;
786 sll->sll_ifindex = dev->ifindex;
788 __packet_set_status(po, h.raw, status);
791 struct page *p_start, *p_end;
792 u8 *h_end = h.raw + macoff + snaplen - 1;
794 p_start = virt_to_page(h.raw);
795 p_end = virt_to_page(h_end);
796 while (p_start <= p_end) {
797 flush_dcache_page(p_start);
802 sk->sk_data_ready(sk, 0);
805 if (skb_head != skb->data && skb_shared(skb)) {
806 skb->data = skb_head;
814 po->stats.tp_drops++;
815 spin_unlock(&sk->sk_receive_queue.lock);
817 sk->sk_data_ready(sk, 0);
822 static void tpacket_destruct_skb(struct sk_buff *skb)
824 struct packet_sock *po = pkt_sk(skb->sk);
829 if (likely(po->tx_ring.pg_vec)) {
830 ph = skb_shinfo(skb)->destructor_arg;
831 BUG_ON(__packet_get_status(po, ph) != TP_STATUS_SENDING);
832 BUG_ON(atomic_read(&po->tx_ring.pending) == 0);
833 atomic_dec(&po->tx_ring.pending);
834 __packet_set_status(po, ph, TP_STATUS_AVAILABLE);
840 static int tpacket_fill_skb(struct packet_sock *po, struct sk_buff *skb,
841 void *frame, struct net_device *dev, int size_max,
842 __be16 proto, unsigned char *addr)
845 struct tpacket_hdr *h1;
846 struct tpacket2_hdr *h2;
849 int to_write, offset, len, tp_len, nr_frags, len_max;
850 struct socket *sock = po->sk.sk_socket;
857 skb->protocol = proto;
859 skb->priority = po->sk.sk_priority;
860 skb->mark = po->sk.sk_mark;
861 skb_shinfo(skb)->destructor_arg = ph.raw;
863 switch (po->tp_version) {
865 tp_len = ph.h2->tp_len;
868 tp_len = ph.h1->tp_len;
871 if (unlikely(tp_len > size_max)) {
872 pr_err("packet size is too long (%d > %d)\n", tp_len, size_max);
876 skb_reserve(skb, LL_RESERVED_SPACE(dev));
877 skb_reset_network_header(skb);
879 data = ph.raw + po->tp_hdrlen - sizeof(struct sockaddr_ll);
882 if (sock->type == SOCK_DGRAM) {
883 err = dev_hard_header(skb, dev, ntohs(proto), addr,
885 if (unlikely(err < 0))
887 } else if (dev->hard_header_len) {
888 /* net device doesn't like empty head */
889 if (unlikely(tp_len <= dev->hard_header_len)) {
890 pr_err("packet size is too short (%d < %d)\n",
891 tp_len, dev->hard_header_len);
895 skb_push(skb, dev->hard_header_len);
896 err = skb_store_bits(skb, 0, data,
897 dev->hard_header_len);
901 data += dev->hard_header_len;
902 to_write -= dev->hard_header_len;
906 page = virt_to_page(data);
907 offset = offset_in_page(data);
908 len_max = PAGE_SIZE - offset;
909 len = ((to_write > len_max) ? len_max : to_write);
911 skb->data_len = to_write;
912 skb->len += to_write;
913 skb->truesize += to_write;
914 atomic_add(to_write, &po->sk.sk_wmem_alloc);
916 while (likely(to_write)) {
917 nr_frags = skb_shinfo(skb)->nr_frags;
919 if (unlikely(nr_frags >= MAX_SKB_FRAGS)) {
920 pr_err("Packet exceed the number of skb frags(%lu)\n",
925 flush_dcache_page(page);
927 skb_fill_page_desc(skb,
929 page++, offset, len);
933 len = ((to_write > len_max) ? len_max : to_write);
939 static int tpacket_snd(struct packet_sock *po, struct msghdr *msg)
943 struct net_device *dev;
945 int ifindex, err, reserve = 0;
947 struct sockaddr_ll *saddr = (struct sockaddr_ll *)msg->msg_name;
948 int tp_len, size_max;
953 sock = po->sk.sk_socket;
955 mutex_lock(&po->pg_vec_lock);
959 ifindex = po->ifindex;
964 if (msg->msg_namelen < sizeof(struct sockaddr_ll))
966 if (msg->msg_namelen < (saddr->sll_halen
967 + offsetof(struct sockaddr_ll,
970 ifindex = saddr->sll_ifindex;
971 proto = saddr->sll_protocol;
972 addr = saddr->sll_addr;
975 dev = dev_get_by_index(sock_net(&po->sk), ifindex);
977 if (unlikely(dev == NULL))
980 reserve = dev->hard_header_len;
983 if (unlikely(!(dev->flags & IFF_UP)))
986 size_max = po->tx_ring.frame_size
987 - (po->tp_hdrlen - sizeof(struct sockaddr_ll));
989 if (size_max > dev->mtu + reserve)
990 size_max = dev->mtu + reserve;
993 ph = packet_current_frame(po, &po->tx_ring,
994 TP_STATUS_SEND_REQUEST);
996 if (unlikely(ph == NULL)) {
1001 status = TP_STATUS_SEND_REQUEST;
1002 skb = sock_alloc_send_skb(&po->sk,
1003 LL_ALLOCATED_SPACE(dev)
1004 + sizeof(struct sockaddr_ll),
1007 if (unlikely(skb == NULL))
1010 tp_len = tpacket_fill_skb(po, skb, ph, dev, size_max, proto,
1013 if (unlikely(tp_len < 0)) {
1015 __packet_set_status(po, ph,
1016 TP_STATUS_AVAILABLE);
1017 packet_increment_head(&po->tx_ring);
1021 status = TP_STATUS_WRONG_FORMAT;
1027 skb->destructor = tpacket_destruct_skb;
1028 __packet_set_status(po, ph, TP_STATUS_SENDING);
1029 atomic_inc(&po->tx_ring.pending);
1031 status = TP_STATUS_SEND_REQUEST;
1032 err = dev_queue_xmit(skb);
1033 if (unlikely(err > 0 && (err = net_xmit_errno(err)) != 0))
1035 packet_increment_head(&po->tx_ring);
1037 } while (likely((ph != NULL) ||
1038 ((!(msg->msg_flags & MSG_DONTWAIT)) &&
1039 (atomic_read(&po->tx_ring.pending))))
1046 skb->destructor = sock_wfree;
1047 atomic_dec(&po->tx_ring.pending);
1049 __packet_set_status(po, ph, status);
1054 mutex_unlock(&po->pg_vec_lock);
1059 static int packet_snd(struct socket *sock,
1060 struct msghdr *msg, size_t len)
1062 struct sock *sk = sock->sk;
1063 struct sockaddr_ll *saddr = (struct sockaddr_ll *)msg->msg_name;
1064 struct sk_buff *skb;
1065 struct net_device *dev;
1067 unsigned char *addr;
1068 int ifindex, err, reserve = 0;
1071 * Get and verify the address.
1074 if (saddr == NULL) {
1075 struct packet_sock *po = pkt_sk(sk);
1077 ifindex = po->ifindex;
1082 if (msg->msg_namelen < sizeof(struct sockaddr_ll))
1084 if (msg->msg_namelen < (saddr->sll_halen + offsetof(struct sockaddr_ll, sll_addr)))
1086 ifindex = saddr->sll_ifindex;
1087 proto = saddr->sll_protocol;
1088 addr = saddr->sll_addr;
1092 dev = dev_get_by_index(sock_net(sk), ifindex);
1096 if (sock->type == SOCK_RAW)
1097 reserve = dev->hard_header_len;
1100 if (!(dev->flags & IFF_UP))
1104 if (len > dev->mtu+reserve)
1107 skb = sock_alloc_send_skb(sk, len + LL_ALLOCATED_SPACE(dev),
1108 msg->msg_flags & MSG_DONTWAIT, &err);
1112 skb_reserve(skb, LL_RESERVED_SPACE(dev));
1113 skb_reset_network_header(skb);
1116 if (sock->type == SOCK_DGRAM &&
1117 dev_hard_header(skb, dev, ntohs(proto), addr, NULL, len) < 0)
1120 /* Returns -EFAULT on error */
1121 err = memcpy_fromiovec(skb_put(skb, len), msg->msg_iov, len);
1125 skb->protocol = proto;
1127 skb->priority = sk->sk_priority;
1128 skb->mark = sk->sk_mark;
1134 err = dev_queue_xmit(skb);
1135 if (err > 0 && (err = net_xmit_errno(err)) != 0)
1151 static int packet_sendmsg(struct kiocb *iocb, struct socket *sock,
1152 struct msghdr *msg, size_t len)
1154 #ifdef CONFIG_PACKET_MMAP
1155 struct sock *sk = sock->sk;
1156 struct packet_sock *po = pkt_sk(sk);
1157 if (po->tx_ring.pg_vec)
1158 return tpacket_snd(po, msg);
1161 return packet_snd(sock, msg, len);
1165 * Close a PACKET socket. This is fairly simple. We immediately go
1166 * to 'closed' state and remove our protocol entry in the device list.
1169 static int packet_release(struct socket *sock)
1171 struct sock *sk = sock->sk;
1172 struct packet_sock *po;
1174 #ifdef CONFIG_PACKET_MMAP
1175 struct tpacket_req req;
1184 write_lock_bh(&net->packet.sklist_lock);
1185 sk_del_node_init(sk);
1186 sock_prot_inuse_add(net, sk->sk_prot, -1);
1187 write_unlock_bh(&net->packet.sklist_lock);
1190 * Unhook packet receive handler.
1195 * Remove the protocol hook
1197 dev_remove_pack(&po->prot_hook);
1203 packet_flush_mclist(sk);
1205 #ifdef CONFIG_PACKET_MMAP
1206 memset(&req, 0, sizeof(req));
1208 if (po->rx_ring.pg_vec)
1209 packet_set_ring(sk, &req, 1, 0);
1211 if (po->tx_ring.pg_vec)
1212 packet_set_ring(sk, &req, 1, 1);
1216 * Now the socket is dead. No more input will appear.
1224 skb_queue_purge(&sk->sk_receive_queue);
1225 sk_refcnt_debug_release(sk);
1232 * Attach a packet hook.
1235 static int packet_do_bind(struct sock *sk, struct net_device *dev, __be16 protocol)
1237 struct packet_sock *po = pkt_sk(sk);
1239 * Detach an existing hook if present.
1244 spin_lock(&po->bind_lock);
1249 spin_unlock(&po->bind_lock);
1250 dev_remove_pack(&po->prot_hook);
1251 spin_lock(&po->bind_lock);
1255 po->prot_hook.type = protocol;
1256 po->prot_hook.dev = dev;
1258 po->ifindex = dev ? dev->ifindex : 0;
1263 if (!dev || (dev->flags & IFF_UP)) {
1264 dev_add_pack(&po->prot_hook);
1268 sk->sk_err = ENETDOWN;
1269 if (!sock_flag(sk, SOCK_DEAD))
1270 sk->sk_error_report(sk);
1274 spin_unlock(&po->bind_lock);
1280 * Bind a packet socket to a device
1283 static int packet_bind_spkt(struct socket *sock, struct sockaddr *uaddr,
1286 struct sock *sk = sock->sk;
1288 struct net_device *dev;
1295 if (addr_len != sizeof(struct sockaddr))
1297 strlcpy(name, uaddr->sa_data, sizeof(name));
1299 dev = dev_get_by_name(sock_net(sk), name);
1301 err = packet_do_bind(sk, dev, pkt_sk(sk)->num);
1307 static int packet_bind(struct socket *sock, struct sockaddr *uaddr, int addr_len)
1309 struct sockaddr_ll *sll = (struct sockaddr_ll *)uaddr;
1310 struct sock *sk = sock->sk;
1311 struct net_device *dev = NULL;
1319 if (addr_len < sizeof(struct sockaddr_ll))
1321 if (sll->sll_family != AF_PACKET)
1324 if (sll->sll_ifindex) {
1326 dev = dev_get_by_index(sock_net(sk), sll->sll_ifindex);
1330 err = packet_do_bind(sk, dev, sll->sll_protocol ? : pkt_sk(sk)->num);
1338 static struct proto packet_proto = {
1340 .owner = THIS_MODULE,
1341 .obj_size = sizeof(struct packet_sock),
1345 * Create a packet of type SOCK_PACKET.
1348 static int packet_create(struct net *net, struct socket *sock, int protocol,
1352 struct packet_sock *po;
1353 __be16 proto = (__force __be16)protocol; /* weird, but documented */
1356 if (!capable(CAP_NET_RAW))
1358 if (sock->type != SOCK_DGRAM && sock->type != SOCK_RAW &&
1359 sock->type != SOCK_PACKET)
1360 return -ESOCKTNOSUPPORT;
1362 sock->state = SS_UNCONNECTED;
1365 sk = sk_alloc(net, PF_PACKET, GFP_KERNEL, &packet_proto);
1369 sock->ops = &packet_ops;
1370 if (sock->type == SOCK_PACKET)
1371 sock->ops = &packet_ops_spkt;
1373 sock_init_data(sock, sk);
1376 sk->sk_family = PF_PACKET;
1379 sk->sk_destruct = packet_sock_destruct;
1380 sk_refcnt_debug_inc(sk);
1383 * Attach a protocol block
1386 spin_lock_init(&po->bind_lock);
1387 mutex_init(&po->pg_vec_lock);
1388 po->prot_hook.func = packet_rcv;
1390 if (sock->type == SOCK_PACKET)
1391 po->prot_hook.func = packet_rcv_spkt;
1393 po->prot_hook.af_packet_priv = sk;
1396 po->prot_hook.type = proto;
1397 dev_add_pack(&po->prot_hook);
1402 write_lock_bh(&net->packet.sklist_lock);
1403 sk_add_node(sk, &net->packet.sklist);
1404 sock_prot_inuse_add(net, &packet_proto, 1);
1405 write_unlock_bh(&net->packet.sklist_lock);
1412 * Pull a packet from our receive queue and hand it to the user.
1413 * If necessary we block.
1416 static int packet_recvmsg(struct kiocb *iocb, struct socket *sock,
1417 struct msghdr *msg, size_t len, int flags)
1419 struct sock *sk = sock->sk;
1420 struct sk_buff *skb;
1422 struct sockaddr_ll *sll;
1425 if (flags & ~(MSG_PEEK|MSG_DONTWAIT|MSG_TRUNC|MSG_CMSG_COMPAT))
1429 /* What error should we return now? EUNATTACH? */
1430 if (pkt_sk(sk)->ifindex < 0)
1435 * Call the generic datagram receiver. This handles all sorts
1436 * of horrible races and re-entrancy so we can forget about it
1437 * in the protocol layers.
1439 * Now it will return ENETDOWN, if device have just gone down,
1440 * but then it will block.
1443 skb = skb_recv_datagram(sk, flags, flags & MSG_DONTWAIT, &err);
1446 * An error occurred so return it. Because skb_recv_datagram()
1447 * handles the blocking we don't see and worry about blocking
1455 * If the address length field is there to be filled in, we fill
1459 sll = &PACKET_SKB_CB(skb)->sa.ll;
1460 if (sock->type == SOCK_PACKET)
1461 msg->msg_namelen = sizeof(struct sockaddr_pkt);
1463 msg->msg_namelen = sll->sll_halen + offsetof(struct sockaddr_ll, sll_addr);
1466 * You lose any data beyond the buffer you gave. If it worries a
1467 * user program they can ask the device for its MTU anyway.
1473 msg->msg_flags |= MSG_TRUNC;
1476 err = skb_copy_datagram_iovec(skb, 0, msg->msg_iov, copied);
1480 sock_recv_ts_and_drops(msg, sk, skb);
1483 memcpy(msg->msg_name, &PACKET_SKB_CB(skb)->sa,
1486 if (pkt_sk(sk)->auxdata) {
1487 struct tpacket_auxdata aux;
1489 aux.tp_status = TP_STATUS_USER;
1490 if (skb->ip_summed == CHECKSUM_PARTIAL)
1491 aux.tp_status |= TP_STATUS_CSUMNOTREADY;
1492 aux.tp_len = PACKET_SKB_CB(skb)->origlen;
1493 aux.tp_snaplen = skb->len;
1495 aux.tp_net = skb_network_offset(skb);
1496 aux.tp_vlan_tci = vlan_tx_tag_get(skb);
1498 put_cmsg(msg, SOL_PACKET, PACKET_AUXDATA, sizeof(aux), &aux);
1502 * Free or return the buffer as appropriate. Again this
1503 * hides all the races and re-entrancy issues from us.
1505 err = (flags&MSG_TRUNC) ? skb->len : copied;
1508 skb_free_datagram(sk, skb);
1513 static int packet_getname_spkt(struct socket *sock, struct sockaddr *uaddr,
1514 int *uaddr_len, int peer)
1516 struct net_device *dev;
1517 struct sock *sk = sock->sk;
1522 uaddr->sa_family = AF_PACKET;
1524 dev = dev_get_by_index_rcu(sock_net(sk), pkt_sk(sk)->ifindex);
1526 strlcpy(uaddr->sa_data, dev->name, 15);
1528 memset(uaddr->sa_data, 0, 14);
1530 *uaddr_len = sizeof(*uaddr);
1535 static int packet_getname(struct socket *sock, struct sockaddr *uaddr,
1536 int *uaddr_len, int peer)
1538 struct net_device *dev;
1539 struct sock *sk = sock->sk;
1540 struct packet_sock *po = pkt_sk(sk);
1541 DECLARE_SOCKADDR(struct sockaddr_ll *, sll, uaddr);
1546 sll->sll_family = AF_PACKET;
1547 sll->sll_ifindex = po->ifindex;
1548 sll->sll_protocol = po->num;
1550 dev = dev_get_by_index_rcu(sock_net(sk), po->ifindex);
1552 sll->sll_hatype = dev->type;
1553 sll->sll_halen = dev->addr_len;
1554 memcpy(sll->sll_addr, dev->dev_addr, dev->addr_len);
1556 sll->sll_hatype = 0; /* Bad: we have no ARPHRD_UNSPEC */
1560 *uaddr_len = offsetof(struct sockaddr_ll, sll_addr) + sll->sll_halen;
1565 static int packet_dev_mc(struct net_device *dev, struct packet_mclist *i,
1569 case PACKET_MR_MULTICAST:
1571 return dev_mc_add(dev, i->addr, i->alen, 0);
1573 return dev_mc_delete(dev, i->addr, i->alen, 0);
1575 case PACKET_MR_PROMISC:
1576 return dev_set_promiscuity(dev, what);
1578 case PACKET_MR_ALLMULTI:
1579 return dev_set_allmulti(dev, what);
1581 case PACKET_MR_UNICAST:
1583 return dev_unicast_add(dev, i->addr);
1585 return dev_unicast_delete(dev, i->addr);
1593 static void packet_dev_mclist(struct net_device *dev, struct packet_mclist *i, int what)
1595 for ( ; i; i = i->next) {
1596 if (i->ifindex == dev->ifindex)
1597 packet_dev_mc(dev, i, what);
1601 static int packet_mc_add(struct sock *sk, struct packet_mreq_max *mreq)
1603 struct packet_sock *po = pkt_sk(sk);
1604 struct packet_mclist *ml, *i;
1605 struct net_device *dev;
1611 dev = __dev_get_by_index(sock_net(sk), mreq->mr_ifindex);
1616 if (mreq->mr_alen > dev->addr_len)
1620 i = kmalloc(sizeof(*i), GFP_KERNEL);
1625 for (ml = po->mclist; ml; ml = ml->next) {
1626 if (ml->ifindex == mreq->mr_ifindex &&
1627 ml->type == mreq->mr_type &&
1628 ml->alen == mreq->mr_alen &&
1629 memcmp(ml->addr, mreq->mr_address, ml->alen) == 0) {
1631 /* Free the new element ... */
1637 i->type = mreq->mr_type;
1638 i->ifindex = mreq->mr_ifindex;
1639 i->alen = mreq->mr_alen;
1640 memcpy(i->addr, mreq->mr_address, i->alen);
1642 i->next = po->mclist;
1644 err = packet_dev_mc(dev, i, 1);
1646 po->mclist = i->next;
1655 static int packet_mc_drop(struct sock *sk, struct packet_mreq_max *mreq)
1657 struct packet_mclist *ml, **mlp;
1661 for (mlp = &pkt_sk(sk)->mclist; (ml = *mlp) != NULL; mlp = &ml->next) {
1662 if (ml->ifindex == mreq->mr_ifindex &&
1663 ml->type == mreq->mr_type &&
1664 ml->alen == mreq->mr_alen &&
1665 memcmp(ml->addr, mreq->mr_address, ml->alen) == 0) {
1666 if (--ml->count == 0) {
1667 struct net_device *dev;
1669 dev = __dev_get_by_index(sock_net(sk), ml->ifindex);
1671 packet_dev_mc(dev, ml, -1);
1679 return -EADDRNOTAVAIL;
1682 static void packet_flush_mclist(struct sock *sk)
1684 struct packet_sock *po = pkt_sk(sk);
1685 struct packet_mclist *ml;
1691 while ((ml = po->mclist) != NULL) {
1692 struct net_device *dev;
1694 po->mclist = ml->next;
1695 dev = __dev_get_by_index(sock_net(sk), ml->ifindex);
1697 packet_dev_mc(dev, ml, -1);
1704 packet_setsockopt(struct socket *sock, int level, int optname, char __user *optval, unsigned int optlen)
1706 struct sock *sk = sock->sk;
1707 struct packet_sock *po = pkt_sk(sk);
1710 if (level != SOL_PACKET)
1711 return -ENOPROTOOPT;
1714 case PACKET_ADD_MEMBERSHIP:
1715 case PACKET_DROP_MEMBERSHIP:
1717 struct packet_mreq_max mreq;
1719 memset(&mreq, 0, sizeof(mreq));
1720 if (len < sizeof(struct packet_mreq))
1722 if (len > sizeof(mreq))
1724 if (copy_from_user(&mreq, optval, len))
1726 if (len < (mreq.mr_alen + offsetof(struct packet_mreq, mr_address)))
1728 if (optname == PACKET_ADD_MEMBERSHIP)
1729 ret = packet_mc_add(sk, &mreq);
1731 ret = packet_mc_drop(sk, &mreq);
1735 #ifdef CONFIG_PACKET_MMAP
1736 case PACKET_RX_RING:
1737 case PACKET_TX_RING:
1739 struct tpacket_req req;
1741 if (optlen < sizeof(req))
1743 if (copy_from_user(&req, optval, sizeof(req)))
1745 return packet_set_ring(sk, &req, 0, optname == PACKET_TX_RING);
1747 case PACKET_COPY_THRESH:
1751 if (optlen != sizeof(val))
1753 if (copy_from_user(&val, optval, sizeof(val)))
1756 pkt_sk(sk)->copy_thresh = val;
1759 case PACKET_VERSION:
1763 if (optlen != sizeof(val))
1765 if (po->rx_ring.pg_vec || po->tx_ring.pg_vec)
1767 if (copy_from_user(&val, optval, sizeof(val)))
1772 po->tp_version = val;
1778 case PACKET_RESERVE:
1782 if (optlen != sizeof(val))
1784 if (po->rx_ring.pg_vec || po->tx_ring.pg_vec)
1786 if (copy_from_user(&val, optval, sizeof(val)))
1788 po->tp_reserve = val;
1795 if (optlen != sizeof(val))
1797 if (po->rx_ring.pg_vec || po->tx_ring.pg_vec)
1799 if (copy_from_user(&val, optval, sizeof(val)))
1801 po->tp_loss = !!val;
1805 case PACKET_AUXDATA:
1809 if (optlen < sizeof(val))
1811 if (copy_from_user(&val, optval, sizeof(val)))
1814 po->auxdata = !!val;
1817 case PACKET_ORIGDEV:
1821 if (optlen < sizeof(val))
1823 if (copy_from_user(&val, optval, sizeof(val)))
1826 po->origdev = !!val;
1830 return -ENOPROTOOPT;
1834 static int packet_getsockopt(struct socket *sock, int level, int optname,
1835 char __user *optval, int __user *optlen)
1839 struct sock *sk = sock->sk;
1840 struct packet_sock *po = pkt_sk(sk);
1842 struct tpacket_stats st;
1844 if (level != SOL_PACKET)
1845 return -ENOPROTOOPT;
1847 if (get_user(len, optlen))
1854 case PACKET_STATISTICS:
1855 if (len > sizeof(struct tpacket_stats))
1856 len = sizeof(struct tpacket_stats);
1857 spin_lock_bh(&sk->sk_receive_queue.lock);
1859 memset(&po->stats, 0, sizeof(st));
1860 spin_unlock_bh(&sk->sk_receive_queue.lock);
1861 st.tp_packets += st.tp_drops;
1865 case PACKET_AUXDATA:
1866 if (len > sizeof(int))
1872 case PACKET_ORIGDEV:
1873 if (len > sizeof(int))
1879 #ifdef CONFIG_PACKET_MMAP
1880 case PACKET_VERSION:
1881 if (len > sizeof(int))
1883 val = po->tp_version;
1887 if (len > sizeof(int))
1889 if (copy_from_user(&val, optval, len))
1893 val = sizeof(struct tpacket_hdr);
1896 val = sizeof(struct tpacket2_hdr);
1903 case PACKET_RESERVE:
1904 if (len > sizeof(unsigned int))
1905 len = sizeof(unsigned int);
1906 val = po->tp_reserve;
1910 if (len > sizeof(unsigned int))
1911 len = sizeof(unsigned int);
1917 return -ENOPROTOOPT;
1920 if (put_user(len, optlen))
1922 if (copy_to_user(optval, data, len))
1928 static int packet_notifier(struct notifier_block *this, unsigned long msg, void *data)
1931 struct hlist_node *node;
1932 struct net_device *dev = data;
1933 struct net *net = dev_net(dev);
1935 read_lock(&net->packet.sklist_lock);
1936 sk_for_each(sk, node, &net->packet.sklist) {
1937 struct packet_sock *po = pkt_sk(sk);
1940 case NETDEV_UNREGISTER:
1942 packet_dev_mclist(dev, po->mclist, -1);
1946 if (dev->ifindex == po->ifindex) {
1947 spin_lock(&po->bind_lock);
1949 __dev_remove_pack(&po->prot_hook);
1952 sk->sk_err = ENETDOWN;
1953 if (!sock_flag(sk, SOCK_DEAD))
1954 sk->sk_error_report(sk);
1956 if (msg == NETDEV_UNREGISTER) {
1958 po->prot_hook.dev = NULL;
1960 spin_unlock(&po->bind_lock);
1964 spin_lock(&po->bind_lock);
1965 if (dev->ifindex == po->ifindex && po->num &&
1967 dev_add_pack(&po->prot_hook);
1971 spin_unlock(&po->bind_lock);
1975 read_unlock(&net->packet.sklist_lock);
1980 static int packet_ioctl(struct socket *sock, unsigned int cmd,
1983 struct sock *sk = sock->sk;
1988 int amount = sk_wmem_alloc_get(sk);
1990 return put_user(amount, (int __user *)arg);
1994 struct sk_buff *skb;
1997 spin_lock_bh(&sk->sk_receive_queue.lock);
1998 skb = skb_peek(&sk->sk_receive_queue);
2001 spin_unlock_bh(&sk->sk_receive_queue.lock);
2002 return put_user(amount, (int __user *)arg);
2005 return sock_get_timestamp(sk, (struct timeval __user *)arg);
2007 return sock_get_timestampns(sk, (struct timespec __user *)arg);
2017 case SIOCGIFBRDADDR:
2018 case SIOCSIFBRDADDR:
2019 case SIOCGIFNETMASK:
2020 case SIOCSIFNETMASK:
2021 case SIOCGIFDSTADDR:
2022 case SIOCSIFDSTADDR:
2024 if (!net_eq(sock_net(sk), &init_net))
2025 return -ENOIOCTLCMD;
2026 return inet_dgram_ops.ioctl(sock, cmd, arg);
2030 return -ENOIOCTLCMD;
2035 #ifndef CONFIG_PACKET_MMAP
2036 #define packet_mmap sock_no_mmap
2037 #define packet_poll datagram_poll
2040 static unsigned int packet_poll(struct file *file, struct socket *sock,
2043 struct sock *sk = sock->sk;
2044 struct packet_sock *po = pkt_sk(sk);
2045 unsigned int mask = datagram_poll(file, sock, wait);
2047 spin_lock_bh(&sk->sk_receive_queue.lock);
2048 if (po->rx_ring.pg_vec) {
2049 if (!packet_previous_frame(po, &po->rx_ring, TP_STATUS_KERNEL))
2050 mask |= POLLIN | POLLRDNORM;
2052 spin_unlock_bh(&sk->sk_receive_queue.lock);
2053 spin_lock_bh(&sk->sk_write_queue.lock);
2054 if (po->tx_ring.pg_vec) {
2055 if (packet_current_frame(po, &po->tx_ring, TP_STATUS_AVAILABLE))
2056 mask |= POLLOUT | POLLWRNORM;
2058 spin_unlock_bh(&sk->sk_write_queue.lock);
2063 /* Dirty? Well, I still did not learn better way to account
2067 static void packet_mm_open(struct vm_area_struct *vma)
2069 struct file *file = vma->vm_file;
2070 struct socket *sock = file->private_data;
2071 struct sock *sk = sock->sk;
2074 atomic_inc(&pkt_sk(sk)->mapped);
2077 static void packet_mm_close(struct vm_area_struct *vma)
2079 struct file *file = vma->vm_file;
2080 struct socket *sock = file->private_data;
2081 struct sock *sk = sock->sk;
2084 atomic_dec(&pkt_sk(sk)->mapped);
2087 static const struct vm_operations_struct packet_mmap_ops = {
2088 .open = packet_mm_open,
2089 .close = packet_mm_close,
2092 static void free_pg_vec(char **pg_vec, unsigned int order, unsigned int len)
2096 for (i = 0; i < len; i++) {
2097 if (likely(pg_vec[i]))
2098 free_pages((unsigned long) pg_vec[i], order);
2103 static inline char *alloc_one_pg_vec_page(unsigned long order)
2105 gfp_t gfp_flags = GFP_KERNEL | __GFP_COMP | __GFP_ZERO | __GFP_NOWARN;
2107 return (char *) __get_free_pages(gfp_flags, order);
2110 static char **alloc_pg_vec(struct tpacket_req *req, int order)
2112 unsigned int block_nr = req->tp_block_nr;
2116 pg_vec = kzalloc(block_nr * sizeof(char *), GFP_KERNEL);
2117 if (unlikely(!pg_vec))
2120 for (i = 0; i < block_nr; i++) {
2121 pg_vec[i] = alloc_one_pg_vec_page(order);
2122 if (unlikely(!pg_vec[i]))
2123 goto out_free_pgvec;
2130 free_pg_vec(pg_vec, order, block_nr);
2135 static int packet_set_ring(struct sock *sk, struct tpacket_req *req,
2136 int closing, int tx_ring)
2138 char **pg_vec = NULL;
2139 struct packet_sock *po = pkt_sk(sk);
2140 int was_running, order = 0;
2141 struct packet_ring_buffer *rb;
2142 struct sk_buff_head *rb_queue;
2146 rb = tx_ring ? &po->tx_ring : &po->rx_ring;
2147 rb_queue = tx_ring ? &sk->sk_write_queue : &sk->sk_receive_queue;
2151 if (atomic_read(&po->mapped))
2153 if (atomic_read(&rb->pending))
2157 if (req->tp_block_nr) {
2158 /* Sanity tests and some calculations */
2160 if (unlikely(rb->pg_vec))
2163 switch (po->tp_version) {
2165 po->tp_hdrlen = TPACKET_HDRLEN;
2168 po->tp_hdrlen = TPACKET2_HDRLEN;
2173 if (unlikely((int)req->tp_block_size <= 0))
2175 if (unlikely(req->tp_block_size & (PAGE_SIZE - 1)))
2177 if (unlikely(req->tp_frame_size < po->tp_hdrlen +
2180 if (unlikely(req->tp_frame_size & (TPACKET_ALIGNMENT - 1)))
2183 rb->frames_per_block = req->tp_block_size/req->tp_frame_size;
2184 if (unlikely(rb->frames_per_block <= 0))
2186 if (unlikely((rb->frames_per_block * req->tp_block_nr) !=
2191 order = get_order(req->tp_block_size);
2192 pg_vec = alloc_pg_vec(req, order);
2193 if (unlikely(!pg_vec))
2199 if (unlikely(req->tp_frame_nr))
2205 /* Detach socket from network */
2206 spin_lock(&po->bind_lock);
2207 was_running = po->running;
2210 __dev_remove_pack(&po->prot_hook);
2215 spin_unlock(&po->bind_lock);
2220 mutex_lock(&po->pg_vec_lock);
2221 if (closing || atomic_read(&po->mapped) == 0) {
2223 #define XC(a, b) ({ __typeof__ ((a)) __t; __t = (a); (a) = (b); __t; })
2224 spin_lock_bh(&rb_queue->lock);
2225 pg_vec = XC(rb->pg_vec, pg_vec);
2226 rb->frame_max = (req->tp_frame_nr - 1);
2228 rb->frame_size = req->tp_frame_size;
2229 spin_unlock_bh(&rb_queue->lock);
2231 order = XC(rb->pg_vec_order, order);
2232 req->tp_block_nr = XC(rb->pg_vec_len, req->tp_block_nr);
2234 rb->pg_vec_pages = req->tp_block_size/PAGE_SIZE;
2235 po->prot_hook.func = (po->rx_ring.pg_vec) ?
2236 tpacket_rcv : packet_rcv;
2237 skb_queue_purge(rb_queue);
2239 if (atomic_read(&po->mapped))
2240 pr_err("packet_mmap: vma is busy: %d\n",
2241 atomic_read(&po->mapped));
2243 mutex_unlock(&po->pg_vec_lock);
2245 spin_lock(&po->bind_lock);
2246 if (was_running && !po->running) {
2250 dev_add_pack(&po->prot_hook);
2252 spin_unlock(&po->bind_lock);
2257 free_pg_vec(pg_vec, order, req->tp_block_nr);
2262 static int packet_mmap(struct file *file, struct socket *sock,
2263 struct vm_area_struct *vma)
2265 struct sock *sk = sock->sk;
2266 struct packet_sock *po = pkt_sk(sk);
2267 unsigned long size, expected_size;
2268 struct packet_ring_buffer *rb;
2269 unsigned long start;
2276 mutex_lock(&po->pg_vec_lock);
2279 for (rb = &po->rx_ring; rb <= &po->tx_ring; rb++) {
2281 expected_size += rb->pg_vec_len
2287 if (expected_size == 0)
2290 size = vma->vm_end - vma->vm_start;
2291 if (size != expected_size)
2294 start = vma->vm_start;
2295 for (rb = &po->rx_ring; rb <= &po->tx_ring; rb++) {
2296 if (rb->pg_vec == NULL)
2299 for (i = 0; i < rb->pg_vec_len; i++) {
2300 struct page *page = virt_to_page(rb->pg_vec[i]);
2303 for (pg_num = 0; pg_num < rb->pg_vec_pages;
2305 err = vm_insert_page(vma, start, page);
2313 atomic_inc(&po->mapped);
2314 vma->vm_ops = &packet_mmap_ops;
2318 mutex_unlock(&po->pg_vec_lock);
2324 static const struct proto_ops packet_ops_spkt = {
2325 .family = PF_PACKET,
2326 .owner = THIS_MODULE,
2327 .release = packet_release,
2328 .bind = packet_bind_spkt,
2329 .connect = sock_no_connect,
2330 .socketpair = sock_no_socketpair,
2331 .accept = sock_no_accept,
2332 .getname = packet_getname_spkt,
2333 .poll = datagram_poll,
2334 .ioctl = packet_ioctl,
2335 .listen = sock_no_listen,
2336 .shutdown = sock_no_shutdown,
2337 .setsockopt = sock_no_setsockopt,
2338 .getsockopt = sock_no_getsockopt,
2339 .sendmsg = packet_sendmsg_spkt,
2340 .recvmsg = packet_recvmsg,
2341 .mmap = sock_no_mmap,
2342 .sendpage = sock_no_sendpage,
2345 static const struct proto_ops packet_ops = {
2346 .family = PF_PACKET,
2347 .owner = THIS_MODULE,
2348 .release = packet_release,
2349 .bind = packet_bind,
2350 .connect = sock_no_connect,
2351 .socketpair = sock_no_socketpair,
2352 .accept = sock_no_accept,
2353 .getname = packet_getname,
2354 .poll = packet_poll,
2355 .ioctl = packet_ioctl,
2356 .listen = sock_no_listen,
2357 .shutdown = sock_no_shutdown,
2358 .setsockopt = packet_setsockopt,
2359 .getsockopt = packet_getsockopt,
2360 .sendmsg = packet_sendmsg,
2361 .recvmsg = packet_recvmsg,
2362 .mmap = packet_mmap,
2363 .sendpage = sock_no_sendpage,
2366 static const struct net_proto_family packet_family_ops = {
2367 .family = PF_PACKET,
2368 .create = packet_create,
2369 .owner = THIS_MODULE,
2372 static struct notifier_block packet_netdev_notifier = {
2373 .notifier_call = packet_notifier,
2376 #ifdef CONFIG_PROC_FS
2377 static inline struct sock *packet_seq_idx(struct net *net, loff_t off)
2380 struct hlist_node *node;
2382 sk_for_each(s, node, &net->packet.sklist) {
2389 static void *packet_seq_start(struct seq_file *seq, loff_t *pos)
2390 __acquires(seq_file_net(seq)->packet.sklist_lock)
2392 struct net *net = seq_file_net(seq);
2393 read_lock(&net->packet.sklist_lock);
2394 return *pos ? packet_seq_idx(net, *pos - 1) : SEQ_START_TOKEN;
2397 static void *packet_seq_next(struct seq_file *seq, void *v, loff_t *pos)
2399 struct net *net = seq_file_net(seq);
2401 return (v == SEQ_START_TOKEN)
2402 ? sk_head(&net->packet.sklist)
2403 : sk_next((struct sock *)v) ;
2406 static void packet_seq_stop(struct seq_file *seq, void *v)
2407 __releases(seq_file_net(seq)->packet.sklist_lock)
2409 struct net *net = seq_file_net(seq);
2410 read_unlock(&net->packet.sklist_lock);
2413 static int packet_seq_show(struct seq_file *seq, void *v)
2415 if (v == SEQ_START_TOKEN)
2416 seq_puts(seq, "sk RefCnt Type Proto Iface R Rmem User Inode\n");
2419 const struct packet_sock *po = pkt_sk(s);
2422 "%p %-6d %-4d %04x %-5d %1d %-6u %-6u %-6lu\n",
2424 atomic_read(&s->sk_refcnt),
2429 atomic_read(&s->sk_rmem_alloc),
2437 static const struct seq_operations packet_seq_ops = {
2438 .start = packet_seq_start,
2439 .next = packet_seq_next,
2440 .stop = packet_seq_stop,
2441 .show = packet_seq_show,
2444 static int packet_seq_open(struct inode *inode, struct file *file)
2446 return seq_open_net(inode, file, &packet_seq_ops,
2447 sizeof(struct seq_net_private));
2450 static const struct file_operations packet_seq_fops = {
2451 .owner = THIS_MODULE,
2452 .open = packet_seq_open,
2454 .llseek = seq_lseek,
2455 .release = seq_release_net,
2460 static int packet_net_init(struct net *net)
2462 rwlock_init(&net->packet.sklist_lock);
2463 INIT_HLIST_HEAD(&net->packet.sklist);
2465 if (!proc_net_fops_create(net, "packet", 0, &packet_seq_fops))
2471 static void packet_net_exit(struct net *net)
2473 proc_net_remove(net, "packet");
2476 static struct pernet_operations packet_net_ops = {
2477 .init = packet_net_init,
2478 .exit = packet_net_exit,
2482 static void __exit packet_exit(void)
2484 unregister_netdevice_notifier(&packet_netdev_notifier);
2485 unregister_pernet_subsys(&packet_net_ops);
2486 sock_unregister(PF_PACKET);
2487 proto_unregister(&packet_proto);
2490 static int __init packet_init(void)
2492 int rc = proto_register(&packet_proto, 0);
2497 sock_register(&packet_family_ops);
2498 register_pernet_subsys(&packet_net_ops);
2499 register_netdevice_notifier(&packet_netdev_notifier);
2504 module_init(packet_init);
2505 module_exit(packet_exit);
2506 MODULE_LICENSE("GPL");
2507 MODULE_ALIAS_NETPROTO(PF_PACKET);
git://ftp.safe.ca / safe / jmp / linux-2.6 / blob