| blob | 212f9c4db6b924d824b084a052de3312c637f883 |
1 /**
2 * @file
3 *
4 * Transmission Control Protocol, incoming traffic
5 *
6 * The input processing functions of TCP.
7 *
8 * These functions are generally called in the order (ip_input() ->) tcp_input() ->
9 * tcp_process() -> tcp_receive() (-> application).
10 *
11 */
13 /*
14 * Copyright (c) 2001-2004 Swedish Institute of Computer Science.
15 * All rights reserved.
16 *
17 * Redistribution and use in source and binary forms, with or without modification,
18 * are permitted provided that the following conditions are met:
19 *
20 * 1. Redistributions of source code must retain the above copyright notice,
21 * this list of conditions and the following disclaimer.
22 * 2. Redistributions in binary form must reproduce the above copyright notice,
23 * this list of conditions and the following disclaimer in the documentation
24 * and/or other materials provided with the distribution.
25 * 3. The name of the author may not be used to endorse or promote products
26 * derived from this software without specific prior written permission.
27 *
28 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED
29 * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
30 * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT
31 * SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL,
32 * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT
33 * OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
34 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
35 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
36 * IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY
37 * OF SUCH DAMAGE.
38 *
39 * This file is part of the lwIP TCP/IP stack.
40 *
41 * Author: Adam Dunkels <adam@sics.se>
42 *
43 */
59 #if LWIP_TCP
60 /* These variables are global to all functions involved in the input
61 processing of TCP segments. They are set by the tcp_input()
62 function. */
75 /* Forward declarations. */
84 /* tcp_input:
85 *
86 * The initial input processing of TCP. It verifies the TCP header, demultiplexes
87 * the segment between the PCBs and passes it on to tcp_process(), which implements
88 * the TCP finite state machine. This function is called by the IP layer (in
89 * ip_input()).
90 */
92 void
94 {
97 u8_t hdrlen;
98 err_t err;
100 PERF_START;
107 #if TCP_INPUT_DEBUG
109 #endif
111 /* remove header from payload */
113 /* drop short packets */
114 LWIP_DEBUGF(TCP_INPUT_DEBUG, ("tcp_input: short packet (%"U16_F" bytes) discarded\n", p->tot_len));
119 }
121 /* Don't even process incoming broadcasts/multicasts. */
126 }
128 #if CHECKSUM_CHECK_TCP
129 /* Verify TCP checksum. */
133 LWIP_DEBUGF(TCP_INPUT_DEBUG, ("tcp_input: packet discarded due to failing checksum 0x%04"X16_F"\n",
136 #if TCP_DEBUG
144 }
145 #endif
147 /* Move the payload pointer in the pbuf so that it points to the
148 TCP data instead of the TCP header. */
152 /* Convert fields in TCP header to host byte order. */
162 /* Demultiplex an incoming segment. First, we check if it is destined
163 for an active connection. */
176 /* Move this PCB to the front of the list so that subsequent
177 lookups will be faster (we exploit locality in TCP segment
178 arrivals). */
184 }
187 }
189 }
192 /* If it did not go to an active connection, we check the connections
193 in the TIME-WAIT state. */
201 /* We don't really care enough to move this PCB to the front
202 of the list since we are not very likely to receive that
203 many segments for connections in TIME-WAIT. */
208 }
209 }
211 /* Finally, if we still did not get a match, we check all PCBs that
212 are LISTENing for incoming connections. */
218 /* Move this PCB to the front of the list so that subsequent
219 lookups will be faster (we exploit locality in TCP segment
220 arrivals). */
223 /* our successor is the remainder of the listening list */
225 /* put this listening pcb at the head of the listening list */
227 }
233 }
235 }
236 }
238 #if TCP_INPUT_DEBUG
246 /* The incoming segment belongs to a connection. */
247 #if TCP_INPUT_DEBUG
248 #if TCP_DEBUG
253 /* Set up a tcp_seg structure. */
266 /* A return value of ERR_ABRT means that tcp_abort() was called
267 and that the pcb has been freed. If so, we don't do anything. */
270 /* TF_RESET means that the connection was reset by the other
271 end. We then call the error callback to inform the
272 application that the connection is dead before we
273 deallocate the PCB. */
278 /* The connection has been closed and we will deallocate the
279 PCB. */
284 /* If the application has registered a "sent" function to be
285 called when new send buffer space is available, we call it
286 now. */
289 }
292 /* Notify application that data has been received. */
294 }
296 /* If a FIN segment was received, we call the callback
297 function with a NULL buffer to indicate EOF. */
300 }
301 /* If there were no errors, we try to send something out. */
304 }
305 }
306 }
309 /* We deallocate the incoming pbuf. If it was buffered by the
310 application, the application should have called pbuf_ref() to
311 increase the reference counter in the pbuf. If so, the buffer
312 isn't actually deallocated by the call to pbuf_free(), only the
313 reference count is decreased. */
315 #if TCP_INPUT_DEBUG
316 #if TCP_DEBUG
323 /* If no matching PCB was found, send a TCP RST (reset) to the
324 sender. */
332 }
334 }
338 }
340 /* tcp_listen_input():
341 *
342 * Called by tcp_input() when a segment arrives for a listening
343 * connection.
344 */
346 static err_t
348 {
350 u32_t optdata;
352 /* In the LISTEN state, we check for incoming SYN segments,
353 creates a new PCB, and responds with a SYN|ACK. */
355 /* For incoming segments with the ACK flag set, respond with a
356 RST. */
362 LWIP_DEBUGF(TCP_DEBUG, ("TCP connection request %"U16_F" -> %"U16_F".\n", tcphdr->src, tcphdr->dest));
364 /* If a new PCB could not be created (probably due to lack of memory),
365 we don't do anything, but rely on the sender will retransmit the
366 SYN at a time when we have more memory available. */
371 }
372 /* Set up the new PCB. */
383 #if LWIP_CALLBACK_API
386 /* inherit socket options */
387 npcb->so_options = pcb->so_options & (SOF_DEBUG|SOF_DONTROUTE|SOF_KEEPALIVE|SOF_OOBINLINE|SOF_LINGER);
388 /* Register the new PCB so that we can begin receiving segments
389 for it. */
392 /* Parse any options in the SYN. */
395 /* Build an MSS option. */
400 /* Send a SYN|ACK together with the MSS option. */
403 }
405 }
407 /* tcp_timewait_input():
408 *
409 * Called by tcp_input() when a segment arrives for a connection in
410 * TIME_WAIT.
411 */
413 static err_t
415 {
418 }
421 }
423 }
425 /* tcp_process
426 *
427 * Implements the TCP state machine. Called by tcp_input. In some
428 * states tcp_receive() is called to receive data. The tcp_seg
429 * argument will be freed by the caller (tcp_input()) unless the
430 * recv_data pointer in the pcb is set.
431 */
433 static err_t
435 {
438 err_t err;
443 /* Process incoming RST segments. */
445 /* First, determine if the reset is acceptable. */
449 }
451 /*if (TCP_SEQ_GEQ(seqno, pcb->rcv_nxt) &&
452 TCP_SEQ_LEQ(seqno, pcb->rcv_nxt + pcb->rcv_wnd)) {
453 */
456 }
457 }
466 LWIP_DEBUGF(TCP_INPUT_DEBUG, ("tcp_process: unacceptable reset seqno %"U32_F" rcv_nxt %"U32_F"\n",
471 }
472 }
474 /* Update the PCB (in)activity timer. */
478 /* Do different things depending on the TCP state. */
481 LWIP_DEBUGF(TCP_INPUT_DEBUG, ("SYN-SENT: ackno %"U32_F" pcb->snd_nxt %"U32_F" unacked %"U32_F"\n", ackno,
483 /* received SYN ACK with expected sequence number? */
494 LWIP_DEBUGF(TCP_QLEN_DEBUG, ("tcp_process: SYN-SENT --queuelen %"U16_F"\n", (u16_t)pcb->snd_queuelen));
499 /* Parse any options in the SYNACK. */
502 /* Call the user specified function to call when sucessfully
503 * connected. */
506 }
507 /* received ACK? possibly a half-open connection */
509 /* send a RST to bring the other side in a non-synchronized state. */
512 }
517 /* expected ACK number? */
520 LWIP_DEBUGF(TCP_DEBUG, ("TCP connection established %"U16_F" -> %"U16_F".\n", inseg.tcphdr->src, inseg.tcphdr->dest));
521 #if LWIP_CALLBACK_API
523 #endif
524 /* Call the accept function. */
527 /* If the accept function returns with an error, we abort
528 * the connection. */
531 }
532 /* If there was any data contained within this ACK,
533 * we'd better pass it on to the application as well. */
536 }
537 /* incorrect ACK number */
539 /* send RST */
542 }
543 }
546 /* FALLTHROUGH */
552 }
568 }
571 }
576 LWIP_DEBUGF(TCP_DEBUG, ("TCP connection closed %"U16_F" -> %"U16_F".\n", inseg.tcphdr->src, inseg.tcphdr->dest));
582 }
587 LWIP_DEBUGF(TCP_DEBUG, ("TCP connection closed %"U16_F" -> %"U16_F".\n", inseg.tcphdr->src, inseg.tcphdr->dest));
593 }
598 LWIP_DEBUGF(TCP_DEBUG, ("TCP connection closed %"U16_F" -> %"U16_F".\n", inseg.tcphdr->src, inseg.tcphdr->dest));
601 }
605 }
607 }
609 /* tcp_receive:
610 *
611 * Called by tcp_process. Checks if the given segment is an ACK for outstanding
612 * data, and if so frees the memory of the buffered data. Next, is places the
613 * segment on any of the receive queues (pcb->recved or pcb->ooseq). If the segment
614 * is buffered, the pbuf is referenced by pbuf_ref so that it will not be freed until
615 * i it has been removed from the buffer.
616 *
617 * If the incoming segment constitutes an ACK for a segment that was used for RTT
618 * estimation, the RTT is estimated here as well.
619 */
621 static void
623 {
625 #if TCP_QUEUE_OOSEQ
627 #endif
629 s32_t off;
630 s16_t m;
631 u32_t right_wnd_edge;
632 u16_t new_tot_len;
638 /* Update window. */
646 #if TCP_WND_DEBUG
649 LWIP_DEBUGF(TCP_WND_DEBUG, ("tcp_receive: no window update lastack %"U32_F" snd_max %"U32_F" ackno %"U32_F" wl1 %"U32_F" seqno %"U32_F" wl2 %"U32_F"\n",
651 }
653 }
663 /* This is fast retransmit. Retransmit the first unacked segment. */
664 LWIP_DEBUGF(TCP_FR_DEBUG, ("tcp_receive: dupacks %"U16_F" (%"U32_F"), fast retransmit %"U32_F"\n",
668 /* Set ssthresh to max (FlightSize / 2, 2*SMSS) */
669 /*pcb->ssthresh = LWIP_MAX((pcb->snd_max -
670 pcb->lastack) / 2,
671 2 * pcb->mss);*/
672 /* Set ssthresh to half of the minimum of the currenct cwnd and the advertised window */
675 else
681 /* Inflate the congestion window, but not if it means that
682 the value overflows. */
685 }
686 }
687 }
691 }
693 /*if (TCP_SEQ_LT(pcb->lastack, ackno) &&
694 TCP_SEQ_LEQ(ackno, pcb->snd_max)) { */
696 /* We come here when the ACK acknowledges new data. */
698 /* Reset the "IN Fast Retransmit" flag, since we are no longer
699 in fast retransmit. Also reset the congestion window to the
700 slow start threshold. */
704 }
706 /* Reset the number of retransmissions. */
709 /* Reset the retransmission time-out. */
712 /* Update the send buffer space. */
717 /* Reset the fast retransmit variables. */
721 /* Update the congestion control variables (cwnd and
722 ssthresh). */
727 }
733 }
735 }
736 }
737 LWIP_DEBUGF(TCP_INPUT_DEBUG, ("tcp_receive: ACK for %"U32_F", unacked->seqno %"U32_F":%"U32_F"\n",
738 ackno,
744 /* Remove segment from the unacknowledged list if the incoming
745 ACK acknowlegdes them. */
765 }
766 }
768 }
770 /* We go through the ->unsent list to see if any of the segments
771 on the list are acknowledged by the ACK. This may seem
772 strange since an "unsent" segment shouldn't be acked. The
773 rationale is that lwIP puts all outstanding segments on the
774 ->unsent list after a retransmission, so these segments may
775 in fact have been sent once. */
777 /*TCP_SEQ_LEQ(ntohl(pcb->unsent->tcphdr->seqno) + TCP_TCPLEN(pcb->unsent), ackno) &&
778 TCP_SEQ_LEQ(ackno, pcb->snd_max)*/
779 TCP_SEQ_BETWEEN(ackno, ntohl(pcb->unsent->tcphdr->seqno) + TCP_TCPLEN(pcb->unsent), pcb->snd_max)
780 ) {
794 }
798 }
799 }
800 /* End of ACK for new data processing. */
802 LWIP_DEBUGF(TCP_RTO_DEBUG, ("tcp_receive: pcb->rttest %"U32_F" rtseq %"U32_F" ackno %"U32_F"\n",
805 /* RTT estimation calculations. This is done by checking if the
806 incoming segment acknowledges the segment we use to take a
807 round-trip time measurement. */
814 /* This is taken directly from VJs original code in his paper */
819 }
828 }
829 }
831 /* If the incoming segment contains data, we must process it
832 further. */
834 /* This code basically does three things:
836 +) If the incoming segment contains data that is the next
837 in-sequence data, this data is passed to the application. This
838 might involve trimming the first edge of the data. The rcv_nxt
839 variable and the advertised window are adjusted.
841 +) If the incoming segment has data that is above the next
842 sequence number expected (->rcv_nxt), the segment is placed on
843 the ->ooseq queue. This is done by finding the appropriate
844 place in the ->ooseq queue (which is ordered by sequence
845 number) and trim the segment in both ends if needed. An
846 immediate ACK is sent to indicate that we received an
847 out-of-sequence segment.
849 +) Finally, we check if the first segment on the ->ooseq queue
850 now is in sequence (i.e., if rcv_nxt >= ooseq->seqno). If
851 rcv_nxt > ooseq->seqno, we must trim the first edge of the
852 segment on ->ooseq before we adjust rcv_nxt. The data in the
853 segments that are now on sequence are chained onto the
854 incoming segment so that we only need to call the application
855 once.
856 */
858 /* First, we check if we must trim the first edge. We have to do
859 this if the sequence number of the incoming segment is less
860 than rcv_nxt, and the sequence number plus the length of the
861 segment is larger than rcv_nxt. */
862 /* if (TCP_SEQ_LT(seqno, pcb->rcv_nxt)){
863 if (TCP_SEQ_LT(pcb->rcv_nxt, seqno + tcplen)) {*/
865 /* Trimming the first edge is done by pushing the payload
866 pointer in the pbuf downwards. This is somewhat tricky since
867 we do not want to discard the full contents of the pbuf up to
868 the new starting point of the data since we have to keep the
869 TCP header which is present in the first pbuf in the chain.
871 What is done is really quite a nasty hack: the first pbuf in
872 the pbuf chain is pointed to by inseg.p. Since we need to be
873 able to deallocate the whole pbuf, we cannot change this
874 inseg.p pointer to point to any of the later pbufs in the
875 chain. Instead, we point the ->payload pointer in the first
876 pbuf to data in one of the later pbufs. We also set the
877 inseg.data pointer to point to the right place. This way, the
878 ->p pointer will still point to the first pbuf, but the
879 ->p->payload pointer will point to data in another pbuf.
881 After we are done with adjusting the pbuf pointers we must
882 adjust the ->data pointer in the seg and the segment
883 length.*/
891 /* KJM following line changed (with addition of new_tot_len var)
892 to fix bug #9076
893 inseg.p->tot_len -= p->len; */
897 }
901 }
902 /* KJM following line changed to use p->payload rather than inseg->p->payload
903 to fix bug #9076 */
907 }
910 /* the whole segment is < rcv_nxt */
911 /* must be a duplicate of a packet that has already been correctly handled */
915 }
916 }
918 /* The sequence number must be within the window (above rcv_nxt
919 and below rcv_nxt + rcv_wnd) in order to be further
920 processed. */
921 /*if (TCP_SEQ_GEQ(seqno, pcb->rcv_nxt) &&
922 TCP_SEQ_LT(seqno, pcb->rcv_nxt + pcb->rcv_wnd)) {*/
925 /* The incoming segment is the next in sequence. We check if
926 we have to trim the end of the segment and update rcv_nxt
927 and pass the data to the application. */
928 #if TCP_QUEUE_OOSEQ
931 /* We have to trim the second edge of the incoming
932 segment. */
935 }
940 /* First received FIN will be ACKed +1, on any successive (duplicate)
941 * FINs we are already in CLOSE_WAIT and have already done +1.
942 */
945 }
947 /* Update the receiver's (our) window. */
952 }
954 /* If there is data in the segment, we make preparations to
955 pass this up to the application. The ->recv_data variable
956 is used for holding the pbuf that goes to the
957 application. The code for reassembling out-of-sequence data
958 chains its data on this pbuf as well.
960 If the segment was a FIN, we set the TF_GOT_FIN flag that will
961 be used to indicate to the application that the remote side has
962 closed its end of the connection. */
965 /* Since this pbuf now is the responsibility of the
966 application, we delete our reference to it so that we won't
967 (mistakingly) deallocate it. */
969 }
973 }
975 #if TCP_QUEUE_OOSEQ
976 /* We now check if we have segments on the ->ooseq queue that
977 is now in sequence. */
989 }
991 /* Chain this pbuf onto the pbuf that we will pass to
992 the application. */
997 }
999 }
1003 }
1008 }
1012 /* Acknowledge the segment(s). */
1016 /* We get here if the incoming segment is out-of-sequence. */
1018 #if TCP_QUEUE_OOSEQ
1019 /* We queue the segment on the ->ooseq queue. */
1023 /* If the queue is not empty, we walk through the queue and
1024 try to find a place where the sequence number of the
1025 incoming segment is between the sequence numbers of the
1026 previous and the next segment on the ->ooseq queue. That is
1027 the place where we put the incoming segment. If needed, we
1028 trim the second edges of the previous and the incoming
1029 segment so that it will fit into the sequence.
1031 If the incoming segment has the same sequence number as a
1032 segment on the ->ooseq queue, we discard the segment that
1033 contains less data. */
1038 /* The sequence number of the incoming segment is the
1039 same as the sequence number of the segment on
1040 ->ooseq. We check the lengths to see which one to
1041 discard. */
1043 /* The incoming segment is larger than the old
1044 segment. We replace the old segment with the new
1045 one. */
1053 }
1054 }
1057 /* Either the lenghts are the same or the incoming
1058 segment was smaller than the old one; in either
1059 case, we ditch the incoming segment. */
1061 }
1065 /* The sequence number of the incoming segment is lower
1066 than the sequence number of the first segment on the
1067 queue. We put the incoming segment first on the
1068 queue. */
1071 /* We need to trim the incoming segment. */
1074 }
1079 }
1081 }
1083 /*if (TCP_SEQ_LT(prev->tcphdr->seqno, seqno) &&
1084 TCP_SEQ_LT(seqno, next->tcphdr->seqno)) {*/
1086 /* The sequence number of the incoming segment is in
1087 between the sequence numbers of the previous and
1088 the next segment on ->ooseq. We trim and insert the
1089 incoming segment and trim the previous segment, if
1090 needed. */
1092 /* We need to trim the incoming segment. */
1095 }
1102 /* We need to trim the prev segment. */
1105 }
1106 }
1108 }
1109 /* If the "next" segment is the last segment on the
1110 ooseq queue, we add the incoming segment to the end
1111 of the list. */
1117 /* We need to trim the last segment. */
1120 }
1121 }
1123 }
1124 }
1126 }
1127 }
1130 }
1132 /*if (TCP_SEQ_GT(pcb->rcv_nxt, seqno) ||
1133 TCP_SEQ_GEQ(seqno, pcb->rcv_nxt + pcb->rcv_wnd)) {*/
1136 }
1137 }
1139 /* Segments with length 0 is taken care of here. Segments that
1140 fall out of the window are ACKed. */
1141 /*if (TCP_SEQ_GT(pcb->rcv_nxt, seqno) ||
1142 TCP_SEQ_GEQ(seqno, pcb->rcv_nxt + pcb->rcv_wnd)) {*/
1145 }
1146 }
1147 }
1149 /*
1150 * tcp_parseopt:
1151 *
1152 * Parses the options contained in the incoming segment. (Code taken
1153 * from uIP with only small changes.)
1154 *
1155 */
1157 static void
1159 {
1160 u8_t c;
1162 u16_t mss;
1166 /* Parse the TCP MSS option, if present. */
1171 /* End of options. */
1175 /* NOP option. */
1178 /* An MSS option with the right option length. */
1182 /* And we are done processing options. */
1186 /* If the length field is zero, the options are malformed
1187 and we don't process them further. */
1189 }
1190 /* All other options have a length field, so that we easily
1191 can skip past them. */
1193 }
1194 }
1195 }
1196 }