tjh.dev
Linux kernel mirror (for testing)
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel
os
linux
l2tp: Add L2TPv3 IP encapsulation (no UDP) support
This patch adds a new L2TPIP socket family and modifies the core to
handle the case where there is no UDP header in the L2TP
packet. L2TP/IP uses IP protocol 115. Since L2TP/UDP and L2TP/IP
packets differ in layout, the datapath packet handling code needs
changes too. Userspace uses an L2TPIP socket instead of a UDP socket
when IP encapsulation is required.
We can't use raw sockets for this because the semantics of raw sockets
don't lend themselves to the socket-per-tunnel model - we need to
Signed-off-by: David S. Miller <davem@davemloft.net>
authored by
James Chapman
and committed by
David S. Miller
0d76751f
e0d4435f
+850
-62
+38
include/linux/l2tp.h
+38
include/linux/l2tp.h
···
1
+
/*
2
+
* L2TP-over-IP socket for L2TPv3.
3
+
*
4
+
* Author: James Chapman <jchapman@katalix.com>
5
+
*/
6
+
7
+
#ifndef _LINUX_L2TP_H_
8
+
#define _LINUX_L2TP_H_
9
+
10
+
#include <linux/types.h>
11
+
#ifdef __KERNEL__
12
+
#include <linux/socket.h>
13
+
#include <linux/in.h>
14
+
#endif
15
+
16
+
#define IPPROTO_L2TP 115
17
+
18
+
/**
19
+
* struct sockaddr_l2tpip - the sockaddr structure for L2TP-over-IP sockets
20
+
* @l2tp_family: address family number AF_L2TPIP.
21
+
* @l2tp_addr: protocol specific address information
22
+
* @l2tp_conn_id: connection id of tunnel
23
+
*/
24
+
struct sockaddr_l2tpip {
25
+
/* The first fields must match struct sockaddr_in */
26
+
sa_family_t l2tp_family; /* AF_INET */
27
+
__be16 l2tp_unused; /* INET port number (unused) */
28
+
struct in_addr l2tp_addr; /* Internet address */
29
+
30
+
__u32 l2tp_conn_id; /* Connection ID of tunnel */
31
+
32
+
/* Pad to size of `struct sockaddr'. */
33
+
unsigned char __pad[sizeof(struct sockaddr) - sizeof(sa_family_t) -
34
+
sizeof(__be16) - sizeof(struct in_addr) -
35
+
sizeof(__u32)];
36
+
};
37
+
38
+
#endif
+17
net/l2tp/Kconfig
+17
net/l2tp/Kconfig
···
51
51
If you are connecting to L2TPv3 equipment, or you want to
52
52
tunnel raw ethernet frames using L2TP, say Y here. If
53
53
unsure, say N.
54
+
55
+
config L2TP_IP
56
+
tristate "L2TP IP encapsulation for L2TPv3"
57
+
depends on L2TP_V3
58
+
help
59
+
Support for L2TP-over-IP socket family.
60
+
61
+
The L2TPv3 protocol defines two possible encapsulations for
62
+
L2TP frames, namely UDP and plain IP (without UDP). This
63
+
driver provides a new L2TPIP socket family with which
64
+
userspace L2TPv3 daemons may create L2TP/IP tunnel sockets
65
+
when UDP encapsulation is not required. When L2TP is carried
66
+
in IP packets, it used IP protocol number 115, so this port
67
+
must be enabled in firewalls.
68
+
69
+
To compile this driver as a module, choose M here. The module
70
+
will be called l2tp_ip.
+1
net/l2tp/Makefile
+1
net/l2tp/Makefile
+103
-60
net/l2tp/l2tp_core.c
+103
-60
net/l2tp/l2tp_core.c
···
36
36
#include <linux/inetdevice.h>
37
37
#include <linux/skbuff.h>
38
38
#include <linux/init.h>
39
+
#include <linux/in.h>
39
40
#include <linux/ip.h>
40
41
#include <linux/udp.h>
42
+
#include <linux/l2tp.h>
41
43
#include <linux/hash.h>
42
44
#include <linux/sort.h>
43
45
#include <linux/file.h>
···
50
48
#include <net/ip.h>
51
49
#include <net/udp.h>
52
50
#include <net/xfrm.h>
51
+
#include <net/protocol.h>
53
52
54
53
#include <asm/byteorder.h>
55
54
#include <asm/atomic.h>
···
852
849
853
850
static int l2tp_build_l2tpv3_header(struct l2tp_session *session, void *buf)
854
851
{
852
+
struct l2tp_tunnel *tunnel = session->tunnel;
855
853
char *bufp = buf;
856
854
char *optr = bufp;
857
-
u16 flags = L2TP_HDR_VER_3;
858
855
859
-
/* Setup L2TP header. */
860
-
*((__be16 *) bufp) = htons(flags);
861
-
bufp += 2;
862
-
*((__be16 *) bufp) = 0;
863
-
bufp += 2;
856
+
/* Setup L2TP header. The header differs slightly for UDP and
857
+
* IP encapsulations. For UDP, there is 4 bytes of flags.
858
+
*/
859
+
if (tunnel->encap == L2TP_ENCAPTYPE_UDP) {
860
+
u16 flags = L2TP_HDR_VER_3;
861
+
*((__be16 *) bufp) = htons(flags);
862
+
bufp += 2;
863
+
*((__be16 *) bufp) = 0;
864
+
bufp += 2;
865
+
}
866
+
864
867
*((__be32 *) bufp) = htonl(session->peer_session_id);
865
868
bufp += 4;
866
869
if (session->cookie_len) {
···
911
902
912
903
if (session->debug & L2TP_MSG_DATA) {
913
904
int i;
914
-
unsigned char *datap = skb->data + sizeof(struct udphdr);
905
+
int uhlen = (tunnel->encap == L2TP_ENCAPTYPE_UDP) ? sizeof(struct udphdr) : 0;
906
+
unsigned char *datap = skb->data + uhlen;
915
907
916
908
printk(KERN_DEBUG "%s: xmit:", session->name);
917
-
for (i = 0; i < (len - sizeof(struct udphdr)); i++) {
909
+
for (i = 0; i < (len - uhlen); i++) {
918
910
printk(" %02X", *datap++);
919
911
if (i == 31) {
920
912
printk(" ...");
···
966
956
int l2tp_xmit_skb(struct l2tp_session *session, struct sk_buff *skb, int hdr_len)
967
957
{
968
958
int data_len = skb->len;
969
-
struct sock *sk = session->tunnel->sock;
959
+
struct l2tp_tunnel *tunnel = session->tunnel;
960
+
struct sock *sk = tunnel->sock;
970
961
struct udphdr *uh;
971
-
unsigned int udp_len;
972
962
struct inet_sock *inet;
973
963
__wsum csum;
974
964
int old_headroom;
975
965
int new_headroom;
976
966
int headroom;
967
+
int uhlen = (tunnel->encap == L2TP_ENCAPTYPE_UDP) ? sizeof(struct udphdr) : 0;
968
+
int udp_len;
977
969
978
970
/* Check that there's enough headroom in the skb to insert IP,
979
971
* UDP and L2TP headers. If not enough, expand it to
980
972
* make room. Adjust truesize.
981
973
*/
982
974
headroom = NET_SKB_PAD + sizeof(struct iphdr) +
983
-
sizeof(struct udphdr) + hdr_len;
975
+
uhlen + hdr_len;
984
976
old_headroom = skb_headroom(skb);
985
977
if (skb_cow_head(skb, headroom))
986
978
goto abort;
···
993
981
994
982
/* Setup L2TP header */
995
983
session->build_header(session, __skb_push(skb, hdr_len));
996
-
udp_len = sizeof(struct udphdr) + hdr_len + data_len;
997
984
998
-
/* Setup UDP header */
999
-
inet = inet_sk(sk);
1000
-
__skb_push(skb, sizeof(*uh));
1001
-
skb_reset_transport_header(skb);
1002
-
uh = udp_hdr(skb);
1003
-
uh->source = inet->inet_sport;
1004
-
uh->dest = inet->inet_dport;
1005
-
uh->len = htons(udp_len);
1006
-
uh->check = 0;
1007
-
985
+
/* Reset skb netfilter state */
1008
986
memset(&(IPCB(skb)->opt), 0, sizeof(IPCB(skb)->opt));
1009
987
IPCB(skb)->flags &= ~(IPSKB_XFRM_TUNNEL_SIZE | IPSKB_XFRM_TRANSFORMED |
1010
988
IPSKB_REROUTED);
···
1003
1001
/* Get routing info from the tunnel socket */
1004
1002
skb_dst_drop(skb);
1005
1003
skb_dst_set(skb, dst_clone(__sk_dst_get(sk)));
1006
-
l2tp_skb_set_owner_w(skb, sk);
1007
1004
1008
-
/* Calculate UDP checksum if configured to do so */
1009
-
if (sk->sk_no_check == UDP_CSUM_NOXMIT)
1010
-
skb->ip_summed = CHECKSUM_NONE;
1011
-
else if ((skb_dst(skb) && skb_dst(skb)->dev) &&
1012
-
(!(skb_dst(skb)->dev->features & NETIF_F_V4_CSUM))) {
1013
-
skb->ip_summed = CHECKSUM_COMPLETE;
1014
-
csum = skb_checksum(skb, 0, udp_len, 0);
1015
-
uh->check = csum_tcpudp_magic(inet->inet_saddr,
1016
-
inet->inet_daddr,
1017
-
udp_len, IPPROTO_UDP, csum);
1018
-
if (uh->check == 0)
1019
-
uh->check = CSUM_MANGLED_0;
1020
-
} else {
1021
-
skb->ip_summed = CHECKSUM_PARTIAL;
1022
-
skb->csum_start = skb_transport_header(skb) - skb->head;
1023
-
skb->csum_offset = offsetof(struct udphdr, check);
1024
-
uh->check = ~csum_tcpudp_magic(inet->inet_saddr,
1025
-
inet->inet_daddr,
1026
-
udp_len, IPPROTO_UDP, 0);
1005
+
switch (tunnel->encap) {
1006
+
case L2TP_ENCAPTYPE_UDP:
1007
+
/* Setup UDP header */
1008
+
inet = inet_sk(sk);
1009
+
__skb_push(skb, sizeof(*uh));
1010
+
skb_reset_transport_header(skb);
1011
+
uh = udp_hdr(skb);
1012
+
uh->source = inet->inet_sport;
1013
+
uh->dest = inet->inet_dport;
1014
+
udp_len = uhlen + hdr_len + data_len;
1015
+
uh->len = htons(udp_len);
1016
+
uh->check = 0;
1017
+
1018
+
/* Calculate UDP checksum if configured to do so */
1019
+
if (sk->sk_no_check == UDP_CSUM_NOXMIT)
1020
+
skb->ip_summed = CHECKSUM_NONE;
1021
+
else if ((skb_dst(skb) && skb_dst(skb)->dev) &&
1022
+
(!(skb_dst(skb)->dev->features & NETIF_F_V4_CSUM))) {
1023
+
skb->ip_summed = CHECKSUM_COMPLETE;
1024
+
csum = skb_checksum(skb, 0, udp_len, 0);
1025
+
uh->check = csum_tcpudp_magic(inet->inet_saddr,
1026
+
inet->inet_daddr,
1027
+
udp_len, IPPROTO_UDP, csum);
1028
+
if (uh->check == 0)
1029
+
uh->check = CSUM_MANGLED_0;
1030
+
} else {
1031
+
skb->ip_summed = CHECKSUM_PARTIAL;
1032
+
skb->csum_start = skb_transport_header(skb) - skb->head;
1033
+
skb->csum_offset = offsetof(struct udphdr, check);
1034
+
uh->check = ~csum_tcpudp_magic(inet->inet_saddr,
1035
+
inet->inet_daddr,
1036
+
udp_len, IPPROTO_UDP, 0);
1037
+
}
1038
+
break;
1039
+
1040
+
case L2TP_ENCAPTYPE_IP:
1041
+
break;
1027
1042
}
1043
+
1044
+
l2tp_skb_set_owner_w(skb, sk);
1028
1045
1029
1046
l2tp_xmit_core(session, skb, data_len);
1030
1047
···
1074
1053
/* Close all sessions */
1075
1054
l2tp_tunnel_closeall(tunnel);
1076
1055
1077
-
/* No longer an encapsulation socket. See net/ipv4/udp.c */
1078
-
(udp_sk(sk))->encap_type = 0;
1079
-
(udp_sk(sk))->encap_rcv = NULL;
1056
+
switch (tunnel->encap) {
1057
+
case L2TP_ENCAPTYPE_UDP:
1058
+
/* No longer an encapsulation socket. See net/ipv4/udp.c */
1059
+
(udp_sk(sk))->encap_type = 0;
1060
+
(udp_sk(sk))->encap_rcv = NULL;
1061
+
break;
1062
+
case L2TP_ENCAPTYPE_IP:
1063
+
break;
1064
+
}
1080
1065
1081
1066
/* Remove hooks into tunnel socket */
1082
1067
tunnel->sock = NULL;
···
1195
1168
struct socket *sock = NULL;
1196
1169
struct sock *sk = NULL;
1197
1170
struct l2tp_net *pn;
1171
+
enum l2tp_encap_type encap = L2TP_ENCAPTYPE_UDP;
1198
1172
1199
1173
/* Get the tunnel socket from the fd, which was opened by
1200
1174
* the userspace L2TP daemon.
···
1210
1182
1211
1183
sk = sock->sk;
1212
1184
1185
+
if (cfg != NULL)
1186
+
encap = cfg->encap;
1187
+
1213
1188
/* Quick sanity checks */
1214
-
err = -EPROTONOSUPPORT;
1215
-
if (sk->sk_protocol != IPPROTO_UDP) {
1216
-
printk(KERN_ERR "tunl %hu: fd %d wrong protocol, got %d, expected %d\n",
1217
-
tunnel_id, fd, sk->sk_protocol, IPPROTO_UDP);
1218
-
goto err;
1219
-
}
1220
-
err = -EAFNOSUPPORT;
1221
-
if (sock->ops->family != AF_INET) {
1222
-
printk(KERN_ERR "tunl %hu: fd %d wrong family, got %d, expected %d\n",
1223
-
tunnel_id, fd, sock->ops->family, AF_INET);
1224
-
goto err;
1189
+
switch (encap) {
1190
+
case L2TP_ENCAPTYPE_UDP:
1191
+
err = -EPROTONOSUPPORT;
1192
+
if (sk->sk_protocol != IPPROTO_UDP) {
1193
+
printk(KERN_ERR "tunl %hu: fd %d wrong protocol, got %d, expected %d\n",
1194
+
tunnel_id, fd, sk->sk_protocol, IPPROTO_UDP);
1195
+
goto err;
1196
+
}
1197
+
break;
1198
+
case L2TP_ENCAPTYPE_IP:
1199
+
err = -EPROTONOSUPPORT;
1200
+
if (sk->sk_protocol != IPPROTO_L2TP) {
1201
+
printk(KERN_ERR "tunl %hu: fd %d wrong protocol, got %d, expected %d\n",
1202
+
tunnel_id, fd, sk->sk_protocol, IPPROTO_L2TP);
1203
+
goto err;
1204
+
}
1205
+
break;
1225
1206
}
1226
1207
1227
1208
/* Check if this socket has already been prepped */
···
1260
1223
tunnel->l2tp_net = net;
1261
1224
pn = l2tp_pernet(net);
1262
1225
1263
-
if (cfg)
1226
+
if (cfg != NULL)
1264
1227
tunnel->debug = cfg->debug;
1265
1228
1266
1229
/* Mark socket as an encapsulation socket. See net/ipv4/udp.c */
1267
-
udp_sk(sk)->encap_type = UDP_ENCAP_L2TPINUDP;
1268
-
udp_sk(sk)->encap_rcv = l2tp_udp_encap_recv;
1230
+
tunnel->encap = encap;
1231
+
if (encap == L2TP_ENCAPTYPE_UDP) {
1232
+
/* Mark socket as an encapsulation socket. See net/ipv4/udp.c */
1233
+
udp_sk(sk)->encap_type = UDP_ENCAP_L2TPINUDP;
1234
+
udp_sk(sk)->encap_rcv = l2tp_udp_encap_recv;
1235
+
}
1269
1236
1270
1237
sk->sk_user_data = tunnel;
1271
1238
···
1359
1318
if (session->send_seq)
1360
1319
session->hdr_len += 4;
1361
1320
} else {
1362
-
session->hdr_len = 8 + session->cookie_len + session->l2specific_len + session->offset;
1321
+
session->hdr_len = 4 + session->cookie_len + session->l2specific_len + session->offset;
1322
+
if (session->tunnel->encap == L2TP_ENCAPTYPE_UDP)
1323
+
session->hdr_len += 4;
1363
1324
}
1364
1325
1365
1326
}
+7
net/l2tp/l2tp_core.h
+7
net/l2tp/l2tp_core.h
···
48
48
L2TP_L2SPECTYPE_DEFAULT,
49
49
};
50
50
51
+
enum l2tp_encap_type {
52
+
L2TP_ENCAPTYPE_UDP,
53
+
L2TP_ENCAPTYPE_IP,
54
+
};
55
+
51
56
struct sk_buff;
52
57
53
58
struct l2tp_stats {
···
160
155
struct l2tp_tunnel_cfg {
161
156
int debug; /* bitmask of debug message
162
157
* categories */
158
+
enum l2tp_encap_type encap;
163
159
};
164
160
165
161
struct l2tp_tunnel {
···
176
170
char name[20]; /* for logging */
177
171
int debug; /* bitmask of debug message
178
172
* categories */
173
+
enum l2tp_encap_type encap;
179
174
struct l2tp_stats stats;
180
175
181
176
struct list_head list; /* Keep a list of all tunnels */
+679
net/l2tp/l2tp_ip.c
+679
net/l2tp/l2tp_ip.c
···
1
+
/*
2
+
* L2TPv3 IP encapsulation support
3
+
*
4
+
* Copyright (c) 2008,2009,2010 Katalix Systems Ltd
5
+
*
6
+
* This program is free software; you can redistribute it and/or
7
+
* modify it under the terms of the GNU General Public License
8
+
* as published by the Free Software Foundation; either version
9
+
* 2 of the License, or (at your option) any later version.
10
+
*/
11
+
12
+
#include <linux/icmp.h>
13
+
#include <linux/module.h>
14
+
#include <linux/skbuff.h>
15
+
#include <linux/random.h>
16
+
#include <linux/socket.h>
17
+
#include <linux/l2tp.h>
18
+
#include <linux/in.h>
19
+
#include <net/sock.h>
20
+
#include <net/ip.h>
21
+
#include <net/icmp.h>
22
+
#include <net/udp.h>
23
+
#include <net/inet_common.h>
24
+
#include <net/inet_hashtables.h>
25
+
#include <net/tcp_states.h>
26
+
#include <net/protocol.h>
27
+
#include <net/xfrm.h>
28
+
29
+
#include "l2tp_core.h"
30
+
31
+
struct l2tp_ip_sock {
32
+
/* inet_sock has to be the first member of l2tp_ip_sock */
33
+
struct inet_sock inet;
34
+
35
+
__u32 conn_id;
36
+
__u32 peer_conn_id;
37
+
38
+
__u64 tx_packets;
39
+
__u64 tx_bytes;
40
+
__u64 tx_errors;
41
+
__u64 rx_packets;
42
+
__u64 rx_bytes;
43
+
__u64 rx_errors;
44
+
};
45
+
46
+
static DEFINE_RWLOCK(l2tp_ip_lock);
47
+
static struct hlist_head l2tp_ip_table;
48
+
static struct hlist_head l2tp_ip_bind_table;
49
+
50
+
static inline struct l2tp_ip_sock *l2tp_ip_sk(const struct sock *sk)
51
+
{
52
+
return (struct l2tp_ip_sock *)sk;
53
+
}
54
+
55
+
static struct sock *__l2tp_ip_bind_lookup(struct net *net, __be32 laddr, int dif, u32 tunnel_id)
56
+
{
57
+
struct hlist_node *node;
58
+
struct sock *sk;
59
+
60
+
sk_for_each_bound(sk, node, &l2tp_ip_bind_table) {
61
+
struct inet_sock *inet = inet_sk(sk);
62
+
struct l2tp_ip_sock *l2tp = l2tp_ip_sk(sk);
63
+
64
+
if (l2tp == NULL)
65
+
continue;
66
+
67
+
if ((l2tp->conn_id == tunnel_id) &&
68
+
#ifdef CONFIG_NET_NS
69
+
(sk->sk_net == net) &&
70
+
#endif
71
+
!(inet->inet_rcv_saddr && inet->inet_rcv_saddr != laddr) &&
72
+
!(sk->sk_bound_dev_if && sk->sk_bound_dev_if != dif))
73
+
goto found;
74
+
}
75
+
76
+
sk = NULL;
77
+
found:
78
+
return sk;
79
+
}
80
+
81
+
static inline struct sock *l2tp_ip_bind_lookup(struct net *net, __be32 laddr, int dif, u32 tunnel_id)
82
+
{
83
+
struct sock *sk = __l2tp_ip_bind_lookup(net, laddr, dif, tunnel_id);
84
+
if (sk)
85
+
sock_hold(sk);
86
+
87
+
return sk;
88
+
}
89
+
90
+
/* When processing receive frames, there are two cases to
91
+
* consider. Data frames consist of a non-zero session-id and an
92
+
* optional cookie. Control frames consist of a regular L2TP header
93
+
* preceded by 32-bits of zeros.
94
+
*
95
+
* L2TPv3 Session Header Over IP
96
+
*
97
+
* 0 1 2 3
98
+
* 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
99
+
* +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
100
+
* | Session ID |
101
+
* +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
102
+
* | Cookie (optional, maximum 64 bits)...
103
+
* +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
104
+
* |
105
+
* +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
106
+
*
107
+
* L2TPv3 Control Message Header Over IP
108
+
*
109
+
* 0 1 2 3
110
+
* 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1
111
+
* +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
112
+
* | (32 bits of zeros) |
113
+
* +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
114
+
* |T|L|x|x|S|x|x|x|x|x|x|x| Ver | Length |
115
+
* +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
116
+
* | Control Connection ID |
117
+
* +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
118
+
* | Ns | Nr |
119
+
* +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+
120
+
*
121
+
* All control frames are passed to userspace.
122
+
*/
123
+
static int l2tp_ip_recv(struct sk_buff *skb)
124
+
{
125
+
struct sock *sk;
126
+
u32 session_id;
127
+
u32 tunnel_id;
128
+
unsigned char *ptr, *optr;
129
+
struct l2tp_session *session;
130
+
struct l2tp_tunnel *tunnel = NULL;
131
+
int length;
132
+
int offset;
133
+
134
+
/* Point to L2TP header */
135
+
optr = ptr = skb->data;
136
+
137
+
if (!pskb_may_pull(skb, 4))
138
+
goto discard;
139
+
140
+
session_id = ntohl(*((__be32 *) ptr));
141
+
ptr += 4;
142
+
143
+
/* RFC3931: L2TP/IP packets have the first 4 bytes containing
144
+
* the session_id. If it is 0, the packet is a L2TP control
145
+
* frame and the session_id value can be discarded.
146
+
*/
147
+
if (session_id == 0) {
148
+
__skb_pull(skb, 4);
149
+
goto pass_up;
150
+
}
151
+
152
+
/* Ok, this is a data packet. Lookup the session. */
153
+
session = l2tp_session_find(&init_net, NULL, session_id);
154
+
if (session == NULL)
155
+
goto discard;
156
+
157
+
tunnel = session->tunnel;
158
+
if (tunnel == NULL)
159
+
goto discard;
160
+
161
+
/* Trace packet contents, if enabled */
162
+
if (tunnel->debug & L2TP_MSG_DATA) {
163
+
length = min(32u, skb->len);
164
+
if (!pskb_may_pull(skb, length))
165
+
goto discard;
166
+
167
+
printk(KERN_DEBUG "%s: ip recv: ", tunnel->name);
168
+
169
+
offset = 0;
170
+
do {
171
+
printk(" %02X", ptr[offset]);
172
+
} while (++offset < length);
173
+
174
+
printk("\n");
175
+
}
176
+
177
+
l2tp_recv_common(session, skb, ptr, optr, 0, skb->len, tunnel->recv_payload_hook);
178
+
179
+
return 0;
180
+
181
+
pass_up:
182
+
/* Get the tunnel_id from the L2TP header */
183
+
if (!pskb_may_pull(skb, 12))
184
+
goto discard;
185
+
186
+
if ((skb->data[0] & 0xc0) != 0xc0)
187
+
goto discard;
188
+
189
+
tunnel_id = ntohl(*(__be32 *) &skb->data[4]);
190
+
tunnel = l2tp_tunnel_find(&init_net, tunnel_id);
191
+
if (tunnel != NULL)
192
+
sk = tunnel->sock;
193
+
else {
194
+
struct iphdr *iph = (struct iphdr *) skb_network_header(skb);
195
+
196
+
read_lock_bh(&l2tp_ip_lock);
197
+
sk = __l2tp_ip_bind_lookup(&init_net, iph->daddr, 0, tunnel_id);
198
+
read_unlock_bh(&l2tp_ip_lock);
199
+
}
200
+
201
+
if (sk == NULL)
202
+
goto discard;
203
+
204
+
sock_hold(sk);
205
+
206
+
if (!xfrm4_policy_check(sk, XFRM_POLICY_IN, skb))
207
+
goto discard_put;
208
+
209
+
nf_reset(skb);
210
+
211
+
return sk_receive_skb(sk, skb, 1);
212
+
213
+
discard_put:
214
+
sock_put(sk);
215
+
216
+
discard:
217
+
kfree_skb(skb);
218
+
return 0;
219
+
}
220
+
221
+
static int l2tp_ip_open(struct sock *sk)
222
+
{
223
+
/* Prevent autobind. We don't have ports. */
224
+
inet_sk(sk)->inet_num = IPPROTO_L2TP;
225
+
226
+
write_lock_bh(&l2tp_ip_lock);
227
+
sk_add_node(sk, &l2tp_ip_table);
228
+
write_unlock_bh(&l2tp_ip_lock);
229
+
230
+
return 0;
231
+
}
232
+
233
+
static void l2tp_ip_close(struct sock *sk, long timeout)
234
+
{
235
+
write_lock_bh(&l2tp_ip_lock);
236
+
hlist_del_init(&sk->sk_bind_node);
237
+
hlist_del_init(&sk->sk_node);
238
+
write_unlock_bh(&l2tp_ip_lock);
239
+
sk_common_release(sk);
240
+
}
241
+
242
+
static void l2tp_ip_destroy_sock(struct sock *sk)
243
+
{
244
+
struct sk_buff *skb;
245
+
246
+
while ((skb = __skb_dequeue_tail(&sk->sk_write_queue)) != NULL)
247
+
kfree_skb(skb);
248
+
249
+
sk_refcnt_debug_dec(sk);
250
+
}
251
+
252
+
static int l2tp_ip_bind(struct sock *sk, struct sockaddr *uaddr, int addr_len)
253
+
{
254
+
struct inet_sock *inet = inet_sk(sk);
255
+
struct sockaddr_l2tpip *addr = (struct sockaddr_l2tpip *) uaddr;
256
+
int ret = -EINVAL;
257
+
int chk_addr_ret;
258
+
259
+
ret = -EADDRINUSE;
260
+
read_lock_bh(&l2tp_ip_lock);
261
+
if (__l2tp_ip_bind_lookup(&init_net, addr->l2tp_addr.s_addr, sk->sk_bound_dev_if, addr->l2tp_conn_id))
262
+
goto out_in_use;
263
+
264
+
read_unlock_bh(&l2tp_ip_lock);
265
+
266
+
lock_sock(sk);
267
+
if (sk->sk_state != TCP_CLOSE || addr_len < sizeof(struct sockaddr_l2tpip))
268
+
goto out;
269
+
270
+
chk_addr_ret = inet_addr_type(&init_net, addr->l2tp_addr.s_addr);
271
+
ret = -EADDRNOTAVAIL;
272
+
if (addr->l2tp_addr.s_addr && chk_addr_ret != RTN_LOCAL &&
273
+
chk_addr_ret != RTN_MULTICAST && chk_addr_ret != RTN_BROADCAST)
274
+
goto out;
275
+
276
+
inet->inet_rcv_saddr = inet->inet_saddr = addr->l2tp_addr.s_addr;
277
+
if (chk_addr_ret == RTN_MULTICAST || chk_addr_ret == RTN_BROADCAST)
278
+
inet->inet_saddr = 0; /* Use device */
279
+
sk_dst_reset(sk);
280
+
281
+
l2tp_ip_sk(sk)->conn_id = addr->l2tp_conn_id;
282
+
283
+
write_lock_bh(&l2tp_ip_lock);
284
+
sk_add_bind_node(sk, &l2tp_ip_bind_table);
285
+
sk_del_node_init(sk);
286
+
write_unlock_bh(&l2tp_ip_lock);
287
+
ret = 0;
288
+
out:
289
+
release_sock(sk);
290
+
291
+
return ret;
292
+
293
+
out_in_use:
294
+
read_unlock_bh(&l2tp_ip_lock);
295
+
296
+
return ret;
297
+
}
298
+
299
+
static int l2tp_ip_connect(struct sock *sk, struct sockaddr *uaddr, int addr_len)
300
+
{
301
+
int rc;
302
+
struct inet_sock *inet = inet_sk(sk);
303
+
struct sockaddr_l2tpip *lsa = (struct sockaddr_l2tpip *) uaddr;
304
+
struct rtable *rt;
305
+
__be32 saddr;
306
+
int oif;
307
+
308
+
rc = -EINVAL;
309
+
if (addr_len < sizeof(*lsa))
310
+
goto out;
311
+
312
+
rc = -EAFNOSUPPORT;
313
+
if (lsa->l2tp_family != AF_INET)
314
+
goto out;
315
+
316
+
sk_dst_reset(sk);
317
+
318
+
oif = sk->sk_bound_dev_if;
319
+
saddr = inet->inet_saddr;
320
+
321
+
rc = -EINVAL;
322
+
if (ipv4_is_multicast(lsa->l2tp_addr.s_addr))
323
+
goto out;
324
+
325
+
rc = ip_route_connect(&rt, lsa->l2tp_addr.s_addr, saddr,
326
+
RT_CONN_FLAGS(sk), oif,
327
+
IPPROTO_L2TP,
328
+
0, 0, sk, 1);
329
+
if (rc) {
330
+
if (rc == -ENETUNREACH)
331
+
IP_INC_STATS_BH(&init_net, IPSTATS_MIB_OUTNOROUTES);
332
+
goto out;
333
+
}
334
+
335
+
rc = -ENETUNREACH;
336
+
if (rt->rt_flags & (RTCF_MULTICAST | RTCF_BROADCAST)) {
337
+
ip_rt_put(rt);
338
+
goto out;
339
+
}
340
+
341
+
l2tp_ip_sk(sk)->peer_conn_id = lsa->l2tp_conn_id;
342
+
343
+
if (!inet->inet_saddr)
344
+
inet->inet_saddr = rt->rt_src;
345
+
if (!inet->inet_rcv_saddr)
346
+
inet->inet_rcv_saddr = rt->rt_src;
347
+
inet->inet_daddr = rt->rt_dst;
348
+
sk->sk_state = TCP_ESTABLISHED;
349
+
inet->inet_id = jiffies;
350
+
351
+
sk_dst_set(sk, &rt->u.dst);
352
+
353
+
write_lock_bh(&l2tp_ip_lock);
354
+
hlist_del_init(&sk->sk_bind_node);
355
+
sk_add_bind_node(sk, &l2tp_ip_bind_table);
356
+
write_unlock_bh(&l2tp_ip_lock);
357
+
358
+
rc = 0;
359
+
out:
360
+
return rc;
361
+
}
362
+
363
+
static int l2tp_ip_getname(struct socket *sock, struct sockaddr *uaddr,
364
+
int *uaddr_len, int peer)
365
+
{
366
+
struct sock *sk = sock->sk;
367
+
struct inet_sock *inet = inet_sk(sk);
368
+
struct l2tp_ip_sock *lsk = l2tp_ip_sk(sk);
369
+
struct sockaddr_l2tpip *lsa = (struct sockaddr_l2tpip *)uaddr;
370
+
371
+
memset(lsa, 0, sizeof(*lsa));
372
+
lsa->l2tp_family = AF_INET;
373
+
if (peer) {
374
+
if (!inet->inet_dport)
375
+
return -ENOTCONN;
376
+
lsa->l2tp_conn_id = lsk->peer_conn_id;
377
+
lsa->l2tp_addr.s_addr = inet->inet_daddr;
378
+
} else {
379
+
__be32 addr = inet->inet_rcv_saddr;
380
+
if (!addr)
381
+
addr = inet->inet_saddr;
382
+
lsa->l2tp_conn_id = lsk->conn_id;
383
+
lsa->l2tp_addr.s_addr = addr;
384
+
}
385
+
*uaddr_len = sizeof(*lsa);
386
+
return 0;
387
+
}
388
+
389
+
static int l2tp_ip_backlog_recv(struct sock *sk, struct sk_buff *skb)
390
+
{
391
+
int rc;
392
+
393
+
if (!xfrm4_policy_check(sk, XFRM_POLICY_IN, skb))
394
+
goto drop;
395
+
396
+
nf_reset(skb);
397
+
398
+
/* Charge it to the socket, dropping if the queue is full. */
399
+
rc = sock_queue_rcv_skb(sk, skb);
400
+
if (rc < 0)
401
+
goto drop;
402
+
403
+
return 0;
404
+
405
+
drop:
406
+
IP_INC_STATS(&init_net, IPSTATS_MIB_INDISCARDS);
407
+
kfree_skb(skb);
408
+
return -1;
409
+
}
410
+
411
+
/* Userspace will call sendmsg() on the tunnel socket to send L2TP
412
+
* control frames.
413
+
*/
414
+
static int l2tp_ip_sendmsg(struct kiocb *iocb, struct sock *sk, struct msghdr *msg, size_t len)
415
+
{
416
+
struct sk_buff *skb;
417
+
int rc;
418
+
struct l2tp_ip_sock *lsa = l2tp_ip_sk(sk);
419
+
struct inet_sock *inet = inet_sk(sk);
420
+
struct ip_options *opt = inet->opt;
421
+
struct rtable *rt = NULL;
422
+
int connected = 0;
423
+
__be32 daddr;
424
+
425
+
if (sock_flag(sk, SOCK_DEAD))
426
+
return -ENOTCONN;
427
+
428
+
/* Get and verify the address. */
429
+
if (msg->msg_name) {
430
+
struct sockaddr_l2tpip *lip = (struct sockaddr_l2tpip *) msg->msg_name;
431
+
if (msg->msg_namelen < sizeof(*lip))
432
+
return -EINVAL;
433
+
434
+
if (lip->l2tp_family != AF_INET) {
435
+
if (lip->l2tp_family != AF_UNSPEC)
436
+
return -EAFNOSUPPORT;
437
+
}
438
+
439
+
daddr = lip->l2tp_addr.s_addr;
440
+
} else {
441
+
if (sk->sk_state != TCP_ESTABLISHED)
442
+
return -EDESTADDRREQ;
443
+
444
+
daddr = inet->inet_daddr;
445
+
connected = 1;
446
+
}
447
+
448
+
/* Allocate a socket buffer */
449
+
rc = -ENOMEM;
450
+
skb = sock_wmalloc(sk, 2 + NET_SKB_PAD + sizeof(struct iphdr) +
451
+
4 + len, 0, GFP_KERNEL);
452
+
if (!skb)
453
+
goto error;
454
+
455
+
/* Reserve space for headers, putting IP header on 4-byte boundary. */
456
+
skb_reserve(skb, 2 + NET_SKB_PAD);
457
+
skb_reset_network_header(skb);
458
+
skb_reserve(skb, sizeof(struct iphdr));
459
+
skb_reset_transport_header(skb);
460
+
461
+
/* Insert 0 session_id */
462
+
*((__be32 *) skb_put(skb, 4)) = 0;
463
+
464
+
/* Copy user data into skb */
465
+
rc = memcpy_fromiovec(skb_put(skb, len), msg->msg_iov, len);
466
+
if (rc < 0) {
467
+
kfree_skb(skb);
468
+
goto error;
469
+
}
470
+
471
+
if (connected)
472
+
rt = (struct rtable *) __sk_dst_check(sk, 0);
473
+
474
+
if (rt == NULL) {
475
+
/* Use correct destination address if we have options. */
476
+
if (opt && opt->srr)
477
+
daddr = opt->faddr;
478
+
479
+
{
480
+
struct flowi fl = { .oif = sk->sk_bound_dev_if,
481
+
.nl_u = { .ip4_u = {
482
+
.daddr = daddr,
483
+
.saddr = inet->inet_saddr,
484
+
.tos = RT_CONN_FLAGS(sk) } },
485
+
.proto = sk->sk_protocol,
486
+
.flags = inet_sk_flowi_flags(sk),
487
+
.uli_u = { .ports = {
488
+
.sport = inet->inet_sport,
489
+
.dport = inet->inet_dport } } };
490
+
491
+
/* If this fails, retransmit mechanism of transport layer will
492
+
* keep trying until route appears or the connection times
493
+
* itself out.
494
+
*/
495
+
security_sk_classify_flow(sk, &fl);
496
+
if (ip_route_output_flow(sock_net(sk), &rt, &fl, sk, 0))
497
+
goto no_route;
498
+
}
499
+
sk_setup_caps(sk, &rt->u.dst);
500
+
}
501
+
skb_dst_set(skb, dst_clone(&rt->u.dst));
502
+
503
+
/* Queue the packet to IP for output */
504
+
rc = ip_queue_xmit(skb, 0);
505
+
506
+
error:
507
+
/* Update stats */
508
+
if (rc >= 0) {
509
+
lsa->tx_packets++;
510
+
lsa->tx_bytes += len;
511
+
rc = len;
512
+
} else {
513
+
lsa->tx_errors++;
514
+
}
515
+
516
+
return rc;
517
+
518
+
no_route:
519
+
IP_INC_STATS(sock_net(sk), IPSTATS_MIB_OUTNOROUTES);
520
+
kfree_skb(skb);
521
+
return -EHOSTUNREACH;
522
+
}
523
+
524
+
static int l2tp_ip_recvmsg(struct kiocb *iocb, struct sock *sk, struct msghdr *msg,
525
+
size_t len, int noblock, int flags, int *addr_len)
526
+
{
527
+
struct inet_sock *inet = inet_sk(sk);
528
+
struct l2tp_ip_sock *lsk = l2tp_ip_sk(sk);
529
+
size_t copied = 0;
530
+
int err = -EOPNOTSUPP;
531
+
struct sockaddr_in *sin = (struct sockaddr_in *)msg->msg_name;
532
+
struct sk_buff *skb;
533
+
534
+
if (flags & MSG_OOB)
535
+
goto out;
536
+
537
+
if (addr_len)
538
+
*addr_len = sizeof(*sin);
539
+
540
+
skb = skb_recv_datagram(sk, flags, noblock, &err);
541
+
if (!skb)
542
+
goto out;
543
+
544
+
copied = skb->len;
545
+
if (len < copied) {
546
+
msg->msg_flags |= MSG_TRUNC;
547
+
copied = len;
548
+
}
549
+
550
+
err = skb_copy_datagram_iovec(skb, 0, msg->msg_iov, copied);
551
+
if (err)
552
+
goto done;
553
+
554
+
sock_recv_timestamp(msg, sk, skb);
555
+
556
+
/* Copy the address. */
557
+
if (sin) {
558
+
sin->sin_family = AF_INET;
559
+
sin->sin_addr.s_addr = ip_hdr(skb)->saddr;
560
+
sin->sin_port = 0;
561
+
memset(&sin->sin_zero, 0, sizeof(sin->sin_zero));
562
+
}
563
+
if (inet->cmsg_flags)
564
+
ip_cmsg_recv(msg, skb);
565
+
if (flags & MSG_TRUNC)
566
+
copied = skb->len;
567
+
done:
568
+
skb_free_datagram(sk, skb);
569
+
out:
570
+
if (err) {
571
+
lsk->rx_errors++;
572
+
return err;
573
+
}
574
+
575
+
lsk->rx_packets++;
576
+
lsk->rx_bytes += copied;
577
+
578
+
return copied;
579
+
}
580
+
581
+
struct proto l2tp_ip_prot = {
582
+
.name = "L2TP/IP",
583
+
.owner = THIS_MODULE,
584
+
.init = l2tp_ip_open,
585
+
.close = l2tp_ip_close,
586
+
.bind = l2tp_ip_bind,
587
+
.connect = l2tp_ip_connect,
588
+
.disconnect = udp_disconnect,
589
+
.ioctl = udp_ioctl,
590
+
.destroy = l2tp_ip_destroy_sock,
591
+
.setsockopt = ip_setsockopt,
592
+
.getsockopt = ip_getsockopt,
593
+
.sendmsg = l2tp_ip_sendmsg,
594
+
.recvmsg = l2tp_ip_recvmsg,
595
+
.backlog_rcv = l2tp_ip_backlog_recv,
596
+
.hash = inet_hash,
597
+
.unhash = inet_unhash,
598
+
.obj_size = sizeof(struct l2tp_ip_sock),
599
+
#ifdef CONFIG_COMPAT
600
+
.compat_setsockopt = compat_ip_setsockopt,
601
+
.compat_getsockopt = compat_ip_getsockopt,
602
+
#endif
603
+
};
604
+
605
+
static const struct proto_ops l2tp_ip_ops = {
606
+
.family = PF_INET,
607
+
.owner = THIS_MODULE,
608
+
.release = inet_release,
609
+
.bind = inet_bind,
610
+
.connect = inet_dgram_connect,
611
+
.socketpair = sock_no_socketpair,
612
+
.accept = sock_no_accept,
613
+
.getname = l2tp_ip_getname,
614
+
.poll = datagram_poll,
615
+
.ioctl = inet_ioctl,
616
+
.listen = sock_no_listen,
617
+
.shutdown = inet_shutdown,
618
+
.setsockopt = sock_common_setsockopt,
619
+
.getsockopt = sock_common_getsockopt,
620
+
.sendmsg = inet_sendmsg,
621
+
.recvmsg = sock_common_recvmsg,
622
+
.mmap = sock_no_mmap,
623
+
.sendpage = sock_no_sendpage,
624
+
#ifdef CONFIG_COMPAT
625
+
.compat_setsockopt = compat_sock_common_setsockopt,
626
+
.compat_getsockopt = compat_sock_common_getsockopt,
627
+
#endif
628
+
};
629
+
630
+
static struct inet_protosw l2tp_ip_protosw = {
631
+
.type = SOCK_DGRAM,
632
+
.protocol = IPPROTO_L2TP,
633
+
.prot = &l2tp_ip_prot,
634
+
.ops = &l2tp_ip_ops,
635
+
.no_check = 0,
636
+
};
637
+
638
+
static struct net_protocol l2tp_ip_protocol __read_mostly = {
639
+
.handler = l2tp_ip_recv,
640
+
};
641
+
642
+
static int __init l2tp_ip_init(void)
643
+
{
644
+
int err;
645
+
646
+
printk(KERN_INFO "L2TP IP encapsulation support (L2TPv3)\n");
647
+
648
+
err = proto_register(&l2tp_ip_prot, 1);
649
+
if (err != 0)
650
+
goto out;
651
+
652
+
err = inet_add_protocol(&l2tp_ip_protocol, IPPROTO_L2TP);
653
+
if (err)
654
+
goto out1;
655
+
656
+
inet_register_protosw(&l2tp_ip_protosw);
657
+
return 0;
658
+
659
+
out1:
660
+
proto_unregister(&l2tp_ip_prot);
661
+
out:
662
+
return err;
663
+
}
664
+
665
+
static void __exit l2tp_ip_exit(void)
666
+
{
667
+
inet_unregister_protosw(&l2tp_ip_protosw);
668
+
inet_del_protocol(&l2tp_ip_protocol, IPPROTO_L2TP);
669
+
proto_unregister(&l2tp_ip_prot);
670
+
}
671
+
672
+
module_init(l2tp_ip_init);
673
+
module_exit(l2tp_ip_exit);
674
+
675
+
MODULE_LICENSE("GPL");
676
+
MODULE_AUTHOR("James Chapman <jchapman@katalix.com>");
677
+
MODULE_DESCRIPTION("L2TP over IP");
678
+
MODULE_VERSION("1.0");
679
+
MODULE_ALIAS_NET_PF_PROTO_TYPE(PF_INET, SOCK_DGRAM, IPPROTO_L2TP);
+5
-2
net/l2tp/l2tp_ppp.c
+5
-2
net/l2tp/l2tp_ppp.c
···
305
305
struct l2tp_session *session;
306
306
struct l2tp_tunnel *tunnel;
307
307
struct pppol2tp_session *ps;
308
+
int uhlen;
308
309
309
310
error = -ENOTCONN;
310
311
if (sock_flag(sk, SOCK_DEAD) || !(sk->sk_state & PPPOX_CONNECTED))
···
322
321
if (tunnel == NULL)
323
322
goto error_put_sess;
324
323
324
+
uhlen = (tunnel->encap == L2TP_ENCAPTYPE_UDP) ? sizeof(struct udphdr) : 0;
325
+
325
326
/* Allocate a socket buffer */
326
327
error = -ENOMEM;
327
328
skb = sock_wmalloc(sk, NET_SKB_PAD + sizeof(struct iphdr) +
328
-
sizeof(struct udphdr) + session->hdr_len +
329
+
uhlen + session->hdr_len +
329
330
sizeof(ppph) + total_len,
330
331
0, GFP_KERNEL);
331
332
if (!skb)
···
338
335
skb_reset_network_header(skb);
339
336
skb_reserve(skb, sizeof(struct iphdr));
340
337
skb_reset_transport_header(skb);
341
-
skb_reserve(skb, sizeof(struct udphdr));
338
+
skb_reserve(skb, uhlen);
342
339
343
340
/* Add PPP header */
344
341
skb->data[0] = ppph[0];