cipso: unsigned buf_len cannot be negative
[linux-2.6/next.git] / net / ipx / af_ipx.c
blobb6e70f92e7fb016140aa393fce90fa486cc12e95
1 /*
2 * Implements an IPX socket layer.
4 * This code is derived from work by
5 * Ross Biro : Writing the original IP stack
6 * Fred Van Kempen : Tidying up the TCP/IP
8 * Many thanks go to Keith Baker, Institute For Industrial Information
9 * Technology Ltd, Swansea University for allowing me to work on this
10 * in my own time even though it was in some ways related to commercial
11 * work I am currently employed to do there.
13 * All the material in this file is subject to the Gnu license version 2.
14 * Neither Alan Cox nor the Swansea University Computer Society admit
15 * liability nor provide warranty for any of this software. This material
16 * is provided as is and at no charge.
18 * Portions Copyright (c) 2000-2003 Conectiva, Inc. <acme@conectiva.com.br>
19 * Neither Arnaldo Carvalho de Melo nor Conectiva, Inc. admit liability nor
20 * provide warranty for any of this software. This material is provided
21 * "AS-IS" and at no charge.
23 * Portions Copyright (c) 1995 Caldera, Inc. <greg@caldera.com>
24 * Neither Greg Page nor Caldera, Inc. admit liability nor provide
25 * warranty for any of this software. This material is provided
26 * "AS-IS" and at no charge.
28 * See net/ipx/ChangeLog.
31 #include <linux/capability.h>
32 #include <linux/errno.h>
33 #include <linux/if_arp.h>
34 #include <linux/if_ether.h>
35 #include <linux/init.h>
36 #include <linux/ipx.h>
37 #include <linux/kernel.h>
38 #include <linux/list.h>
39 #include <linux/module.h>
40 #include <linux/net.h>
41 #include <linux/netdevice.h>
42 #include <linux/uio.h>
43 #include <linux/skbuff.h>
44 #include <linux/socket.h>
45 #include <linux/sockios.h>
46 #include <linux/string.h>
47 #include <linux/types.h>
48 #include <linux/termios.h>
50 #include <net/ipx.h>
51 #include <net/p8022.h>
52 #include <net/psnap.h>
53 #include <net/sock.h>
54 #include <net/tcp_states.h>
56 #include <asm/uaccess.h>
58 #ifdef CONFIG_SYSCTL
59 extern void ipx_register_sysctl(void);
60 extern void ipx_unregister_sysctl(void);
61 #else
62 #define ipx_register_sysctl()
63 #define ipx_unregister_sysctl()
64 #endif
66 /* Configuration Variables */
67 static unsigned char ipxcfg_max_hops = 16;
68 static char ipxcfg_auto_select_primary;
69 static char ipxcfg_auto_create_interfaces;
70 int sysctl_ipx_pprop_broadcasting = 1;
72 /* Global Variables */
73 static struct datalink_proto *p8022_datalink;
74 static struct datalink_proto *pEII_datalink;
75 static struct datalink_proto *p8023_datalink;
76 static struct datalink_proto *pSNAP_datalink;
78 static const struct proto_ops ipx_dgram_ops;
80 LIST_HEAD(ipx_interfaces);
81 DEFINE_SPINLOCK(ipx_interfaces_lock);
83 struct ipx_interface *ipx_primary_net;
84 struct ipx_interface *ipx_internal_net;
86 extern int ipxrtr_add_route(__be32 network, struct ipx_interface *intrfc,
87 unsigned char *node);
88 extern void ipxrtr_del_routes(struct ipx_interface *intrfc);
89 extern int ipxrtr_route_packet(struct sock *sk, struct sockaddr_ipx *usipx,
90 struct iovec *iov, size_t len, int noblock);
91 extern int ipxrtr_route_skb(struct sk_buff *skb);
92 extern struct ipx_route *ipxrtr_lookup(__be32 net);
93 extern int ipxrtr_ioctl(unsigned int cmd, void __user *arg);
95 struct ipx_interface *ipx_interfaces_head(void)
97 struct ipx_interface *rc = NULL;
99 if (!list_empty(&ipx_interfaces))
100 rc = list_entry(ipx_interfaces.next,
101 struct ipx_interface, node);
102 return rc;
105 static void ipxcfg_set_auto_select(char val)
107 ipxcfg_auto_select_primary = val;
108 if (val && !ipx_primary_net)
109 ipx_primary_net = ipx_interfaces_head();
112 static int ipxcfg_get_config_data(struct ipx_config_data __user *arg)
114 struct ipx_config_data vals;
116 vals.ipxcfg_auto_create_interfaces = ipxcfg_auto_create_interfaces;
117 vals.ipxcfg_auto_select_primary = ipxcfg_auto_select_primary;
119 return copy_to_user(arg, &vals, sizeof(vals)) ? -EFAULT : 0;
123 * Note: Sockets may not be removed _during_ an interrupt or inet_bh
124 * handler using this technique. They can be added although we do not
125 * use this facility.
128 static void ipx_remove_socket(struct sock *sk)
130 /* Determine interface with which socket is associated */
131 struct ipx_interface *intrfc = ipx_sk(sk)->intrfc;
133 if (!intrfc)
134 goto out;
136 ipxitf_hold(intrfc);
137 spin_lock_bh(&intrfc->if_sklist_lock);
138 sk_del_node_init(sk);
139 spin_unlock_bh(&intrfc->if_sklist_lock);
140 ipxitf_put(intrfc);
141 out:
142 return;
145 static void ipx_destroy_socket(struct sock *sk)
147 ipx_remove_socket(sk);
148 skb_queue_purge(&sk->sk_receive_queue);
149 sk_refcnt_debug_dec(sk);
150 sock_put(sk);
154 * The following code is used to support IPX Interfaces (IPXITF). An
155 * IPX interface is defined by a physical device and a frame type.
158 /* ipxitf_clear_primary_net has to be called with ipx_interfaces_lock held */
160 static void ipxitf_clear_primary_net(void)
162 ipx_primary_net = NULL;
163 if (ipxcfg_auto_select_primary)
164 ipx_primary_net = ipx_interfaces_head();
167 static struct ipx_interface *__ipxitf_find_using_phys(struct net_device *dev,
168 __be16 datalink)
170 struct ipx_interface *i;
172 list_for_each_entry(i, &ipx_interfaces, node)
173 if (i->if_dev == dev && i->if_dlink_type == datalink)
174 goto out;
175 i = NULL;
176 out:
177 return i;
180 static struct ipx_interface *ipxitf_find_using_phys(struct net_device *dev,
181 __be16 datalink)
183 struct ipx_interface *i;
185 spin_lock_bh(&ipx_interfaces_lock);
186 i = __ipxitf_find_using_phys(dev, datalink);
187 if (i)
188 ipxitf_hold(i);
189 spin_unlock_bh(&ipx_interfaces_lock);
190 return i;
193 struct ipx_interface *ipxitf_find_using_net(__be32 net)
195 struct ipx_interface *i;
197 spin_lock_bh(&ipx_interfaces_lock);
198 if (net) {
199 list_for_each_entry(i, &ipx_interfaces, node)
200 if (i->if_netnum == net)
201 goto hold;
202 i = NULL;
203 goto unlock;
206 i = ipx_primary_net;
207 if (i)
208 hold:
209 ipxitf_hold(i);
210 unlock:
211 spin_unlock_bh(&ipx_interfaces_lock);
212 return i;
215 /* Sockets are bound to a particular IPX interface. */
216 static void ipxitf_insert_socket(struct ipx_interface *intrfc, struct sock *sk)
218 ipxitf_hold(intrfc);
219 spin_lock_bh(&intrfc->if_sklist_lock);
220 ipx_sk(sk)->intrfc = intrfc;
221 sk_add_node(sk, &intrfc->if_sklist);
222 spin_unlock_bh(&intrfc->if_sklist_lock);
223 ipxitf_put(intrfc);
226 /* caller must hold intrfc->if_sklist_lock */
227 static struct sock *__ipxitf_find_socket(struct ipx_interface *intrfc,
228 __be16 port)
230 struct sock *s;
231 struct hlist_node *node;
233 sk_for_each(s, node, &intrfc->if_sklist)
234 if (ipx_sk(s)->port == port)
235 goto found;
236 s = NULL;
237 found:
238 return s;
241 /* caller must hold a reference to intrfc */
242 static struct sock *ipxitf_find_socket(struct ipx_interface *intrfc,
243 __be16 port)
245 struct sock *s;
247 spin_lock_bh(&intrfc->if_sklist_lock);
248 s = __ipxitf_find_socket(intrfc, port);
249 if (s)
250 sock_hold(s);
251 spin_unlock_bh(&intrfc->if_sklist_lock);
253 return s;
256 #ifdef CONFIG_IPX_INTERN
257 static struct sock *ipxitf_find_internal_socket(struct ipx_interface *intrfc,
258 unsigned char *ipx_node,
259 __be16 port)
261 struct sock *s;
262 struct hlist_node *node;
264 ipxitf_hold(intrfc);
265 spin_lock_bh(&intrfc->if_sklist_lock);
267 sk_for_each(s, node, &intrfc->if_sklist) {
268 struct ipx_sock *ipxs = ipx_sk(s);
270 if (ipxs->port == port &&
271 !memcmp(ipx_node, ipxs->node, IPX_NODE_LEN))
272 goto found;
274 s = NULL;
275 found:
276 spin_unlock_bh(&intrfc->if_sklist_lock);
277 ipxitf_put(intrfc);
278 return s;
280 #endif
282 static void __ipxitf_down(struct ipx_interface *intrfc)
284 struct sock *s;
285 struct hlist_node *node, *t;
287 /* Delete all routes associated with this interface */
288 ipxrtr_del_routes(intrfc);
290 spin_lock_bh(&intrfc->if_sklist_lock);
291 /* error sockets */
292 sk_for_each_safe(s, node, t, &intrfc->if_sklist) {
293 struct ipx_sock *ipxs = ipx_sk(s);
295 s->sk_err = ENOLINK;
296 s->sk_error_report(s);
297 ipxs->intrfc = NULL;
298 ipxs->port = 0;
299 sock_set_flag(s, SOCK_ZAPPED); /* Indicates it is no longer bound */
300 sk_del_node_init(s);
302 INIT_HLIST_HEAD(&intrfc->if_sklist);
303 spin_unlock_bh(&intrfc->if_sklist_lock);
305 /* remove this interface from list */
306 list_del(&intrfc->node);
308 /* remove this interface from *special* networks */
309 if (intrfc == ipx_primary_net)
310 ipxitf_clear_primary_net();
311 if (intrfc == ipx_internal_net)
312 ipx_internal_net = NULL;
314 if (intrfc->if_dev)
315 dev_put(intrfc->if_dev);
316 kfree(intrfc);
319 void ipxitf_down(struct ipx_interface *intrfc)
321 spin_lock_bh(&ipx_interfaces_lock);
322 __ipxitf_down(intrfc);
323 spin_unlock_bh(&ipx_interfaces_lock);
326 static __inline__ void __ipxitf_put(struct ipx_interface *intrfc)
328 if (atomic_dec_and_test(&intrfc->refcnt))
329 __ipxitf_down(intrfc);
332 static int ipxitf_device_event(struct notifier_block *notifier,
333 unsigned long event, void *ptr)
335 struct net_device *dev = ptr;
336 struct ipx_interface *i, *tmp;
338 if (!net_eq(dev_net(dev), &init_net))
339 return NOTIFY_DONE;
341 if (event != NETDEV_DOWN && event != NETDEV_UP)
342 goto out;
344 spin_lock_bh(&ipx_interfaces_lock);
345 list_for_each_entry_safe(i, tmp, &ipx_interfaces, node)
346 if (i->if_dev == dev) {
347 if (event == NETDEV_UP)
348 ipxitf_hold(i);
349 else
350 __ipxitf_put(i);
352 spin_unlock_bh(&ipx_interfaces_lock);
353 out:
354 return NOTIFY_DONE;
358 static __exit void ipxitf_cleanup(void)
360 struct ipx_interface *i, *tmp;
362 spin_lock_bh(&ipx_interfaces_lock);
363 list_for_each_entry_safe(i, tmp, &ipx_interfaces, node)
364 __ipxitf_put(i);
365 spin_unlock_bh(&ipx_interfaces_lock);
368 static void ipxitf_def_skb_handler(struct sock *sock, struct sk_buff *skb)
370 if (sock_queue_rcv_skb(sock, skb) < 0)
371 kfree_skb(skb);
375 * On input skb->sk is NULL. Nobody is charged for the memory.
378 /* caller must hold a reference to intrfc */
380 #ifdef CONFIG_IPX_INTERN
381 static int ipxitf_demux_socket(struct ipx_interface *intrfc,
382 struct sk_buff *skb, int copy)
384 struct ipxhdr *ipx = ipx_hdr(skb);
385 int is_broadcast = !memcmp(ipx->ipx_dest.node, ipx_broadcast_node,
386 IPX_NODE_LEN);
387 struct sock *s;
388 struct hlist_node *node;
389 int rc;
391 spin_lock_bh(&intrfc->if_sklist_lock);
393 sk_for_each(s, node, &intrfc->if_sklist) {
394 struct ipx_sock *ipxs = ipx_sk(s);
396 if (ipxs->port == ipx->ipx_dest.sock &&
397 (is_broadcast || !memcmp(ipx->ipx_dest.node,
398 ipxs->node, IPX_NODE_LEN))) {
399 /* We found a socket to which to send */
400 struct sk_buff *skb1;
402 if (copy) {
403 skb1 = skb_clone(skb, GFP_ATOMIC);
404 rc = -ENOMEM;
405 if (!skb1)
406 goto out;
407 } else {
408 skb1 = skb;
409 copy = 1; /* skb may only be used once */
411 ipxitf_def_skb_handler(s, skb1);
413 /* On an external interface, one socket can listen */
414 if (intrfc != ipx_internal_net)
415 break;
419 /* skb was solely for us, and we did not make a copy, so free it. */
420 if (!copy)
421 kfree_skb(skb);
423 rc = 0;
424 out:
425 spin_unlock_bh(&intrfc->if_sklist_lock);
426 return rc;
428 #else
429 static struct sock *ncp_connection_hack(struct ipx_interface *intrfc,
430 struct ipxhdr *ipx)
432 /* The packet's target is a NCP connection handler. We want to hand it
433 * to the correct socket directly within the kernel, so that the
434 * mars_nwe packet distribution process does not have to do it. Here we
435 * only care about NCP and BURST packets.
437 * You might call this a hack, but believe me, you do not want a
438 * complete NCP layer in the kernel, and this is VERY fast as well. */
439 struct sock *sk = NULL;
440 int connection = 0;
441 u8 *ncphdr = (u8 *)(ipx + 1);
443 if (*ncphdr == 0x22 && *(ncphdr + 1) == 0x22) /* NCP request */
444 connection = (((int) *(ncphdr + 5)) << 8) | (int) *(ncphdr + 3);
445 else if (*ncphdr == 0x77 && *(ncphdr + 1) == 0x77) /* BURST packet */
446 connection = (((int) *(ncphdr + 9)) << 8) | (int) *(ncphdr + 8);
448 if (connection) {
449 struct hlist_node *node;
450 /* Now we have to look for a special NCP connection handling
451 * socket. Only these sockets have ipx_ncp_conn != 0, set by
452 * SIOCIPXNCPCONN. */
453 spin_lock_bh(&intrfc->if_sklist_lock);
454 sk_for_each(sk, node, &intrfc->if_sklist)
455 if (ipx_sk(sk)->ipx_ncp_conn == connection) {
456 sock_hold(sk);
457 goto found;
459 sk = NULL;
460 found:
461 spin_unlock_bh(&intrfc->if_sklist_lock);
463 return sk;
466 static int ipxitf_demux_socket(struct ipx_interface *intrfc,
467 struct sk_buff *skb, int copy)
469 struct ipxhdr *ipx = ipx_hdr(skb);
470 struct sock *sock1 = NULL, *sock2 = NULL;
471 struct sk_buff *skb1 = NULL, *skb2 = NULL;
472 int rc;
474 if (intrfc == ipx_primary_net && ntohs(ipx->ipx_dest.sock) == 0x451)
475 sock1 = ncp_connection_hack(intrfc, ipx);
476 if (!sock1)
477 /* No special socket found, forward the packet the normal way */
478 sock1 = ipxitf_find_socket(intrfc, ipx->ipx_dest.sock);
481 * We need to check if there is a primary net and if
482 * this is addressed to one of the *SPECIAL* sockets because
483 * these need to be propagated to the primary net.
484 * The *SPECIAL* socket list contains: 0x452(SAP), 0x453(RIP) and
485 * 0x456(Diagnostic).
488 if (ipx_primary_net && intrfc != ipx_primary_net) {
489 const int dsock = ntohs(ipx->ipx_dest.sock);
491 if (dsock == 0x452 || dsock == 0x453 || dsock == 0x456)
492 /* The appropriate thing to do here is to dup the
493 * packet and route to the primary net interface via
494 * ipxitf_send; however, we'll cheat and just demux it
495 * here. */
496 sock2 = ipxitf_find_socket(ipx_primary_net,
497 ipx->ipx_dest.sock);
501 * If there is nothing to do return. The kfree will cancel any charging.
503 rc = 0;
504 if (!sock1 && !sock2) {
505 if (!copy)
506 kfree_skb(skb);
507 goto out;
511 * This next segment of code is a little awkward, but it sets it up
512 * so that the appropriate number of copies of the SKB are made and
513 * that skb1 and skb2 point to it (them) so that it (they) can be
514 * demuxed to sock1 and/or sock2. If we are unable to make enough
515 * copies, we do as much as is possible.
518 if (copy)
519 skb1 = skb_clone(skb, GFP_ATOMIC);
520 else
521 skb1 = skb;
523 rc = -ENOMEM;
524 if (!skb1)
525 goto out_put;
527 /* Do we need 2 SKBs? */
528 if (sock1 && sock2)
529 skb2 = skb_clone(skb1, GFP_ATOMIC);
530 else
531 skb2 = skb1;
533 if (sock1)
534 ipxitf_def_skb_handler(sock1, skb1);
536 if (!skb2)
537 goto out_put;
539 if (sock2)
540 ipxitf_def_skb_handler(sock2, skb2);
542 rc = 0;
543 out_put:
544 if (sock1)
545 sock_put(sock1);
546 if (sock2)
547 sock_put(sock2);
548 out:
549 return rc;
551 #endif /* CONFIG_IPX_INTERN */
553 static struct sk_buff *ipxitf_adjust_skbuff(struct ipx_interface *intrfc,
554 struct sk_buff *skb)
556 struct sk_buff *skb2;
557 int in_offset = (unsigned char *)ipx_hdr(skb) - skb->head;
558 int out_offset = intrfc->if_ipx_offset;
559 int len;
561 /* Hopefully, most cases */
562 if (in_offset >= out_offset)
563 return skb;
565 /* Need new SKB */
566 len = skb->len + out_offset;
567 skb2 = alloc_skb(len, GFP_ATOMIC);
568 if (skb2) {
569 skb_reserve(skb2, out_offset);
570 skb_reset_network_header(skb2);
571 skb_reset_transport_header(skb2);
572 skb_put(skb2, skb->len);
573 memcpy(ipx_hdr(skb2), ipx_hdr(skb), skb->len);
574 memcpy(skb2->cb, skb->cb, sizeof(skb->cb));
576 kfree_skb(skb);
577 return skb2;
580 /* caller must hold a reference to intrfc and the skb has to be unshared */
581 int ipxitf_send(struct ipx_interface *intrfc, struct sk_buff *skb, char *node)
583 struct ipxhdr *ipx = ipx_hdr(skb);
584 struct net_device *dev = intrfc->if_dev;
585 struct datalink_proto *dl = intrfc->if_dlink;
586 char dest_node[IPX_NODE_LEN];
587 int send_to_wire = 1;
588 int addr_len;
590 ipx->ipx_tctrl = IPX_SKB_CB(skb)->ipx_tctrl;
591 ipx->ipx_dest.net = IPX_SKB_CB(skb)->ipx_dest_net;
592 ipx->ipx_source.net = IPX_SKB_CB(skb)->ipx_source_net;
594 /* see if we need to include the netnum in the route list */
595 if (IPX_SKB_CB(skb)->last_hop.index >= 0) {
596 __be32 *last_hop = (__be32 *)(((u8 *) skb->data) +
597 sizeof(struct ipxhdr) +
598 IPX_SKB_CB(skb)->last_hop.index *
599 sizeof(__be32));
600 *last_hop = IPX_SKB_CB(skb)->last_hop.netnum;
601 IPX_SKB_CB(skb)->last_hop.index = -1;
605 * We need to know how many skbuffs it will take to send out this
606 * packet to avoid unnecessary copies.
609 if (!dl || !dev || dev->flags & IFF_LOOPBACK)
610 send_to_wire = 0; /* No non looped */
613 * See if this should be demuxed to sockets on this interface
615 * We want to ensure the original was eaten or that we only use
616 * up clones.
619 if (ipx->ipx_dest.net == intrfc->if_netnum) {
621 * To our own node, loop and free the original.
622 * The internal net will receive on all node address.
624 if (intrfc == ipx_internal_net ||
625 !memcmp(intrfc->if_node, node, IPX_NODE_LEN)) {
626 /* Don't charge sender */
627 skb_orphan(skb);
629 /* Will charge receiver */
630 return ipxitf_demux_socket(intrfc, skb, 0);
633 /* Broadcast, loop and possibly keep to send on. */
634 if (!memcmp(ipx_broadcast_node, node, IPX_NODE_LEN)) {
635 if (!send_to_wire)
636 skb_orphan(skb);
637 ipxitf_demux_socket(intrfc, skb, send_to_wire);
638 if (!send_to_wire)
639 goto out;
644 * If the originating net is not equal to our net; this is routed
645 * We are still charging the sender. Which is right - the driver
646 * free will handle this fairly.
648 if (ipx->ipx_source.net != intrfc->if_netnum) {
650 * Unshare the buffer before modifying the count in
651 * case it's a flood or tcpdump
653 skb = skb_unshare(skb, GFP_ATOMIC);
654 if (!skb)
655 goto out;
656 if (++ipx->ipx_tctrl > ipxcfg_max_hops)
657 send_to_wire = 0;
660 if (!send_to_wire) {
661 kfree_skb(skb);
662 goto out;
665 /* Determine the appropriate hardware address */
666 addr_len = dev->addr_len;
667 if (!memcmp(ipx_broadcast_node, node, IPX_NODE_LEN))
668 memcpy(dest_node, dev->broadcast, addr_len);
669 else
670 memcpy(dest_node, &(node[IPX_NODE_LEN-addr_len]), addr_len);
672 /* Make any compensation for differing physical/data link size */
673 skb = ipxitf_adjust_skbuff(intrfc, skb);
674 if (!skb)
675 goto out;
677 /* set up data link and physical headers */
678 skb->dev = dev;
679 skb->protocol = htons(ETH_P_IPX);
681 /* Send it out */
682 dl->request(dl, skb, dest_node);
683 out:
684 return 0;
687 static int ipxitf_add_local_route(struct ipx_interface *intrfc)
689 return ipxrtr_add_route(intrfc->if_netnum, intrfc, NULL);
692 static void ipxitf_discover_netnum(struct ipx_interface *intrfc,
693 struct sk_buff *skb);
694 static int ipxitf_pprop(struct ipx_interface *intrfc, struct sk_buff *skb);
696 static int ipxitf_rcv(struct ipx_interface *intrfc, struct sk_buff *skb)
698 struct ipxhdr *ipx = ipx_hdr(skb);
699 int rc = 0;
701 ipxitf_hold(intrfc);
703 /* See if we should update our network number */
704 if (!intrfc->if_netnum) /* net number of intrfc not known yet */
705 ipxitf_discover_netnum(intrfc, skb);
707 IPX_SKB_CB(skb)->last_hop.index = -1;
708 if (ipx->ipx_type == IPX_TYPE_PPROP) {
709 rc = ipxitf_pprop(intrfc, skb);
710 if (rc)
711 goto out_free_skb;
714 /* local processing follows */
715 if (!IPX_SKB_CB(skb)->ipx_dest_net)
716 IPX_SKB_CB(skb)->ipx_dest_net = intrfc->if_netnum;
717 if (!IPX_SKB_CB(skb)->ipx_source_net)
718 IPX_SKB_CB(skb)->ipx_source_net = intrfc->if_netnum;
720 /* it doesn't make sense to route a pprop packet, there's no meaning
721 * in the ipx_dest_net for such packets */
722 if (ipx->ipx_type != IPX_TYPE_PPROP &&
723 intrfc->if_netnum != IPX_SKB_CB(skb)->ipx_dest_net) {
724 /* We only route point-to-point packets. */
725 if (skb->pkt_type == PACKET_HOST) {
726 skb = skb_unshare(skb, GFP_ATOMIC);
727 if (skb)
728 rc = ipxrtr_route_skb(skb);
729 goto out_intrfc;
732 goto out_free_skb;
735 /* see if we should keep it */
736 if (!memcmp(ipx_broadcast_node, ipx->ipx_dest.node, IPX_NODE_LEN) ||
737 !memcmp(intrfc->if_node, ipx->ipx_dest.node, IPX_NODE_LEN)) {
738 rc = ipxitf_demux_socket(intrfc, skb, 0);
739 goto out_intrfc;
742 /* we couldn't pawn it off so unload it */
743 out_free_skb:
744 kfree_skb(skb);
745 out_intrfc:
746 ipxitf_put(intrfc);
747 return rc;
750 static void ipxitf_discover_netnum(struct ipx_interface *intrfc,
751 struct sk_buff *skb)
753 const struct ipx_cb *cb = IPX_SKB_CB(skb);
755 /* see if this is an intra packet: source_net == dest_net */
756 if (cb->ipx_source_net == cb->ipx_dest_net && cb->ipx_source_net) {
757 struct ipx_interface *i =
758 ipxitf_find_using_net(cb->ipx_source_net);
759 /* NB: NetWare servers lie about their hop count so we
760 * dropped the test based on it. This is the best way
761 * to determine this is a 0 hop count packet. */
762 if (!i) {
763 intrfc->if_netnum = cb->ipx_source_net;
764 ipxitf_add_local_route(intrfc);
765 } else {
766 printk(KERN_WARNING "IPX: Network number collision "
767 "%lx\n %s %s and %s %s\n",
768 (unsigned long) ntohl(cb->ipx_source_net),
769 ipx_device_name(i),
770 ipx_frame_name(i->if_dlink_type),
771 ipx_device_name(intrfc),
772 ipx_frame_name(intrfc->if_dlink_type));
773 ipxitf_put(i);
779 * ipxitf_pprop - Process packet propagation IPX packet type 0x14, used for
780 * NetBIOS broadcasts
781 * @intrfc: IPX interface receiving this packet
782 * @skb: Received packet
784 * Checks if packet is valid: if its more than %IPX_MAX_PPROP_HOPS hops or if it
785 * is smaller than a IPX header + the room for %IPX_MAX_PPROP_HOPS hops we drop
786 * it, not even processing it locally, if it has exact %IPX_MAX_PPROP_HOPS we
787 * don't broadcast it, but process it locally. See chapter 5 of Novell's "IPX
788 * RIP and SAP Router Specification", Part Number 107-000029-001.
790 * If it is valid, check if we have pprop broadcasting enabled by the user,
791 * if not, just return zero for local processing.
793 * If it is enabled check the packet and don't broadcast it if we have already
794 * seen this packet.
796 * Broadcast: send it to the interfaces that aren't on the packet visited nets
797 * array, just after the IPX header.
799 * Returns -EINVAL for invalid packets, so that the calling function drops
800 * the packet without local processing. 0 if packet is to be locally processed.
802 static int ipxitf_pprop(struct ipx_interface *intrfc, struct sk_buff *skb)
804 struct ipxhdr *ipx = ipx_hdr(skb);
805 int i, rc = -EINVAL;
806 struct ipx_interface *ifcs;
807 char *c;
808 __be32 *l;
810 /* Illegal packet - too many hops or too short */
811 /* We decide to throw it away: no broadcasting, no local processing.
812 * NetBIOS unaware implementations route them as normal packets -
813 * tctrl <= 15, any data payload... */
814 if (IPX_SKB_CB(skb)->ipx_tctrl > IPX_MAX_PPROP_HOPS ||
815 ntohs(ipx->ipx_pktsize) < sizeof(struct ipxhdr) +
816 IPX_MAX_PPROP_HOPS * sizeof(u32))
817 goto out;
818 /* are we broadcasting this damn thing? */
819 rc = 0;
820 if (!sysctl_ipx_pprop_broadcasting)
821 goto out;
822 /* We do broadcast packet on the IPX_MAX_PPROP_HOPS hop, but we
823 * process it locally. All previous hops broadcasted it, and process it
824 * locally. */
825 if (IPX_SKB_CB(skb)->ipx_tctrl == IPX_MAX_PPROP_HOPS)
826 goto out;
828 c = ((u8 *) ipx) + sizeof(struct ipxhdr);
829 l = (__be32 *) c;
831 /* Don't broadcast packet if already seen this net */
832 for (i = 0; i < IPX_SKB_CB(skb)->ipx_tctrl; i++)
833 if (*l++ == intrfc->if_netnum)
834 goto out;
836 /* < IPX_MAX_PPROP_HOPS hops && input interface not in list. Save the
837 * position where we will insert recvd netnum into list, later on,
838 * in ipxitf_send */
839 IPX_SKB_CB(skb)->last_hop.index = i;
840 IPX_SKB_CB(skb)->last_hop.netnum = intrfc->if_netnum;
841 /* xmit on all other interfaces... */
842 spin_lock_bh(&ipx_interfaces_lock);
843 list_for_each_entry(ifcs, &ipx_interfaces, node) {
844 /* Except unconfigured interfaces */
845 if (!ifcs->if_netnum)
846 continue;
848 /* That aren't in the list */
849 if (ifcs == intrfc)
850 continue;
851 l = (__be32 *) c;
852 /* don't consider the last entry in the packet list,
853 * it is our netnum, and it is not there yet */
854 for (i = 0; i < IPX_SKB_CB(skb)->ipx_tctrl; i++)
855 if (ifcs->if_netnum == *l++)
856 break;
857 if (i == IPX_SKB_CB(skb)->ipx_tctrl) {
858 struct sk_buff *s = skb_copy(skb, GFP_ATOMIC);
860 if (s) {
861 IPX_SKB_CB(s)->ipx_dest_net = ifcs->if_netnum;
862 ipxrtr_route_skb(s);
866 spin_unlock_bh(&ipx_interfaces_lock);
867 out:
868 return rc;
871 static void ipxitf_insert(struct ipx_interface *intrfc)
873 spin_lock_bh(&ipx_interfaces_lock);
874 list_add_tail(&intrfc->node, &ipx_interfaces);
875 spin_unlock_bh(&ipx_interfaces_lock);
877 if (ipxcfg_auto_select_primary && !ipx_primary_net)
878 ipx_primary_net = intrfc;
881 static struct ipx_interface *ipxitf_alloc(struct net_device *dev, __be32 netnum,
882 __be16 dlink_type,
883 struct datalink_proto *dlink,
884 unsigned char internal,
885 int ipx_offset)
887 struct ipx_interface *intrfc = kmalloc(sizeof(*intrfc), GFP_ATOMIC);
889 if (intrfc) {
890 intrfc->if_dev = dev;
891 intrfc->if_netnum = netnum;
892 intrfc->if_dlink_type = dlink_type;
893 intrfc->if_dlink = dlink;
894 intrfc->if_internal = internal;
895 intrfc->if_ipx_offset = ipx_offset;
896 intrfc->if_sknum = IPX_MIN_EPHEMERAL_SOCKET;
897 INIT_HLIST_HEAD(&intrfc->if_sklist);
898 atomic_set(&intrfc->refcnt, 1);
899 spin_lock_init(&intrfc->if_sklist_lock);
902 return intrfc;
905 static int ipxitf_create_internal(struct ipx_interface_definition *idef)
907 struct ipx_interface *intrfc;
908 int rc = -EEXIST;
910 /* Only one primary network allowed */
911 if (ipx_primary_net)
912 goto out;
914 /* Must have a valid network number */
915 rc = -EADDRNOTAVAIL;
916 if (!idef->ipx_network)
917 goto out;
918 intrfc = ipxitf_find_using_net(idef->ipx_network);
919 rc = -EADDRINUSE;
920 if (intrfc) {
921 ipxitf_put(intrfc);
922 goto out;
924 intrfc = ipxitf_alloc(NULL, idef->ipx_network, 0, NULL, 1, 0);
925 rc = -EAGAIN;
926 if (!intrfc)
927 goto out;
928 memcpy((char *)&(intrfc->if_node), idef->ipx_node, IPX_NODE_LEN);
929 ipx_internal_net = ipx_primary_net = intrfc;
930 ipxitf_hold(intrfc);
931 ipxitf_insert(intrfc);
933 rc = ipxitf_add_local_route(intrfc);
934 ipxitf_put(intrfc);
935 out:
936 return rc;
939 static __be16 ipx_map_frame_type(unsigned char type)
941 __be16 rc = 0;
943 switch (type) {
944 case IPX_FRAME_ETHERII: rc = htons(ETH_P_IPX); break;
945 case IPX_FRAME_8022: rc = htons(ETH_P_802_2); break;
946 case IPX_FRAME_SNAP: rc = htons(ETH_P_SNAP); break;
947 case IPX_FRAME_8023: rc = htons(ETH_P_802_3); break;
950 return rc;
953 static int ipxitf_create(struct ipx_interface_definition *idef)
955 struct net_device *dev;
956 __be16 dlink_type = 0;
957 struct datalink_proto *datalink = NULL;
958 struct ipx_interface *intrfc;
959 int rc;
961 if (idef->ipx_special == IPX_INTERNAL) {
962 rc = ipxitf_create_internal(idef);
963 goto out;
966 rc = -EEXIST;
967 if (idef->ipx_special == IPX_PRIMARY && ipx_primary_net)
968 goto out;
970 intrfc = ipxitf_find_using_net(idef->ipx_network);
971 rc = -EADDRINUSE;
972 if (idef->ipx_network && intrfc) {
973 ipxitf_put(intrfc);
974 goto out;
977 if (intrfc)
978 ipxitf_put(intrfc);
980 dev = dev_get_by_name(&init_net, idef->ipx_device);
981 rc = -ENODEV;
982 if (!dev)
983 goto out;
985 switch (idef->ipx_dlink_type) {
986 case IPX_FRAME_TR_8022:
987 printk(KERN_WARNING "IPX frame type 802.2TR is "
988 "obsolete Use 802.2 instead.\n");
989 /* fall through */
990 case IPX_FRAME_8022:
991 dlink_type = htons(ETH_P_802_2);
992 datalink = p8022_datalink;
993 break;
994 case IPX_FRAME_ETHERII:
995 if (dev->type != ARPHRD_IEEE802) {
996 dlink_type = htons(ETH_P_IPX);
997 datalink = pEII_datalink;
998 break;
999 } else
1000 printk(KERN_WARNING "IPX frame type EtherII over "
1001 "token-ring is obsolete. Use SNAP "
1002 "instead.\n");
1003 /* fall through */
1004 case IPX_FRAME_SNAP:
1005 dlink_type = htons(ETH_P_SNAP);
1006 datalink = pSNAP_datalink;
1007 break;
1008 case IPX_FRAME_8023:
1009 dlink_type = htons(ETH_P_802_3);
1010 datalink = p8023_datalink;
1011 break;
1012 case IPX_FRAME_NONE:
1013 default:
1014 rc = -EPROTONOSUPPORT;
1015 goto out_dev;
1018 rc = -ENETDOWN;
1019 if (!(dev->flags & IFF_UP))
1020 goto out_dev;
1022 /* Check addresses are suitable */
1023 rc = -EINVAL;
1024 if (dev->addr_len > IPX_NODE_LEN)
1025 goto out_dev;
1027 intrfc = ipxitf_find_using_phys(dev, dlink_type);
1028 if (!intrfc) {
1029 /* Ok now create */
1030 intrfc = ipxitf_alloc(dev, idef->ipx_network, dlink_type,
1031 datalink, 0, dev->hard_header_len +
1032 datalink->header_length);
1033 rc = -EAGAIN;
1034 if (!intrfc)
1035 goto out_dev;
1036 /* Setup primary if necessary */
1037 if (idef->ipx_special == IPX_PRIMARY)
1038 ipx_primary_net = intrfc;
1039 if (!memcmp(idef->ipx_node, "\000\000\000\000\000\000",
1040 IPX_NODE_LEN)) {
1041 memset(intrfc->if_node, 0, IPX_NODE_LEN);
1042 memcpy(intrfc->if_node + IPX_NODE_LEN - dev->addr_len,
1043 dev->dev_addr, dev->addr_len);
1044 } else
1045 memcpy(intrfc->if_node, idef->ipx_node, IPX_NODE_LEN);
1046 ipxitf_hold(intrfc);
1047 ipxitf_insert(intrfc);
1051 /* If the network number is known, add a route */
1052 rc = 0;
1053 if (!intrfc->if_netnum)
1054 goto out_intrfc;
1056 rc = ipxitf_add_local_route(intrfc);
1057 out_intrfc:
1058 ipxitf_put(intrfc);
1059 goto out;
1060 out_dev:
1061 dev_put(dev);
1062 out:
1063 return rc;
1066 static int ipxitf_delete(struct ipx_interface_definition *idef)
1068 struct net_device *dev = NULL;
1069 __be16 dlink_type = 0;
1070 struct ipx_interface *intrfc;
1071 int rc = 0;
1073 spin_lock_bh(&ipx_interfaces_lock);
1074 if (idef->ipx_special == IPX_INTERNAL) {
1075 if (ipx_internal_net) {
1076 __ipxitf_put(ipx_internal_net);
1077 goto out;
1079 rc = -ENOENT;
1080 goto out;
1083 dlink_type = ipx_map_frame_type(idef->ipx_dlink_type);
1084 rc = -EPROTONOSUPPORT;
1085 if (!dlink_type)
1086 goto out;
1088 dev = __dev_get_by_name(&init_net, idef->ipx_device);
1089 rc = -ENODEV;
1090 if (!dev)
1091 goto out;
1093 intrfc = __ipxitf_find_using_phys(dev, dlink_type);
1094 rc = -EINVAL;
1095 if (!intrfc)
1096 goto out;
1097 __ipxitf_put(intrfc);
1099 rc = 0;
1100 out:
1101 spin_unlock_bh(&ipx_interfaces_lock);
1102 return rc;
1105 static struct ipx_interface *ipxitf_auto_create(struct net_device *dev,
1106 __be16 dlink_type)
1108 struct ipx_interface *intrfc = NULL;
1109 struct datalink_proto *datalink;
1111 if (!dev)
1112 goto out;
1114 /* Check addresses are suitable */
1115 if (dev->addr_len > IPX_NODE_LEN)
1116 goto out;
1118 switch (ntohs(dlink_type)) {
1119 case ETH_P_IPX: datalink = pEII_datalink; break;
1120 case ETH_P_802_2: datalink = p8022_datalink; break;
1121 case ETH_P_SNAP: datalink = pSNAP_datalink; break;
1122 case ETH_P_802_3: datalink = p8023_datalink; break;
1123 default: goto out;
1126 intrfc = ipxitf_alloc(dev, 0, dlink_type, datalink, 0,
1127 dev->hard_header_len + datalink->header_length);
1129 if (intrfc) {
1130 memset(intrfc->if_node, 0, IPX_NODE_LEN);
1131 memcpy((char *)&(intrfc->if_node[IPX_NODE_LEN-dev->addr_len]),
1132 dev->dev_addr, dev->addr_len);
1133 spin_lock_init(&intrfc->if_sklist_lock);
1134 atomic_set(&intrfc->refcnt, 1);
1135 ipxitf_insert(intrfc);
1136 dev_hold(dev);
1139 out:
1140 return intrfc;
1143 static int ipxitf_ioctl(unsigned int cmd, void __user *arg)
1145 int rc = -EINVAL;
1146 struct ifreq ifr;
1147 int val;
1149 switch (cmd) {
1150 case SIOCSIFADDR: {
1151 struct sockaddr_ipx *sipx;
1152 struct ipx_interface_definition f;
1154 rc = -EFAULT;
1155 if (copy_from_user(&ifr, arg, sizeof(ifr)))
1156 break;
1157 sipx = (struct sockaddr_ipx *)&ifr.ifr_addr;
1158 rc = -EINVAL;
1159 if (sipx->sipx_family != AF_IPX)
1160 break;
1161 f.ipx_network = sipx->sipx_network;
1162 memcpy(f.ipx_device, ifr.ifr_name,
1163 sizeof(f.ipx_device));
1164 memcpy(f.ipx_node, sipx->sipx_node, IPX_NODE_LEN);
1165 f.ipx_dlink_type = sipx->sipx_type;
1166 f.ipx_special = sipx->sipx_special;
1168 if (sipx->sipx_action == IPX_DLTITF)
1169 rc = ipxitf_delete(&f);
1170 else
1171 rc = ipxitf_create(&f);
1172 break;
1174 case SIOCGIFADDR: {
1175 struct sockaddr_ipx *sipx;
1176 struct ipx_interface *ipxif;
1177 struct net_device *dev;
1179 rc = -EFAULT;
1180 if (copy_from_user(&ifr, arg, sizeof(ifr)))
1181 break;
1182 sipx = (struct sockaddr_ipx *)&ifr.ifr_addr;
1183 dev = __dev_get_by_name(&init_net, ifr.ifr_name);
1184 rc = -ENODEV;
1185 if (!dev)
1186 break;
1187 ipxif = ipxitf_find_using_phys(dev,
1188 ipx_map_frame_type(sipx->sipx_type));
1189 rc = -EADDRNOTAVAIL;
1190 if (!ipxif)
1191 break;
1193 sipx->sipx_family = AF_IPX;
1194 sipx->sipx_network = ipxif->if_netnum;
1195 memcpy(sipx->sipx_node, ipxif->if_node,
1196 sizeof(sipx->sipx_node));
1197 rc = -EFAULT;
1198 if (copy_to_user(arg, &ifr, sizeof(ifr)))
1199 break;
1200 ipxitf_put(ipxif);
1201 rc = 0;
1202 break;
1204 case SIOCAIPXITFCRT:
1205 rc = -EFAULT;
1206 if (get_user(val, (unsigned char __user *) arg))
1207 break;
1208 rc = 0;
1209 ipxcfg_auto_create_interfaces = val;
1210 break;
1211 case SIOCAIPXPRISLT:
1212 rc = -EFAULT;
1213 if (get_user(val, (unsigned char __user *) arg))
1214 break;
1215 rc = 0;
1216 ipxcfg_set_auto_select(val);
1217 break;
1220 return rc;
1224 * Checksum routine for IPX
1227 /* Note: We assume ipx_tctrl==0 and htons(length)==ipx_pktsize */
1228 /* This functions should *not* mess with packet contents */
1230 __be16 ipx_cksum(struct ipxhdr *packet, int length)
1233 * NOTE: sum is a net byte order quantity, which optimizes the
1234 * loop. This only works on big and little endian machines. (I
1235 * don't know of a machine that isn't.)
1237 /* handle the first 3 words separately; checksum should be skipped
1238 * and ipx_tctrl masked out */
1239 __u16 *p = (__u16 *)packet;
1240 __u32 sum = p[1] + (p[2] & (__force u16)htons(0x00ff));
1241 __u32 i = (length >> 1) - 3; /* Number of remaining complete words */
1243 /* Loop through them */
1244 p += 3;
1245 while (i--)
1246 sum += *p++;
1248 /* Add on the last part word if it exists */
1249 if (packet->ipx_pktsize & htons(1))
1250 sum += (__force u16)htons(0xff00) & *p;
1252 /* Do final fixup */
1253 sum = (sum & 0xffff) + (sum >> 16);
1255 /* It's a pity there's no concept of carry in C */
1256 if (sum >= 0x10000)
1257 sum++;
1260 * Leave 0 alone; we don't want 0xffff here. Note that we can't get
1261 * here with 0x10000, so this check is the same as ((__u16)sum)
1263 if (sum)
1264 sum = ~sum;
1266 return (__force __be16)sum;
1269 const char *ipx_frame_name(__be16 frame)
1271 char* rc = "None";
1273 switch (ntohs(frame)) {
1274 case ETH_P_IPX: rc = "EtherII"; break;
1275 case ETH_P_802_2: rc = "802.2"; break;
1276 case ETH_P_SNAP: rc = "SNAP"; break;
1277 case ETH_P_802_3: rc = "802.3"; break;
1278 case ETH_P_TR_802_2: rc = "802.2TR"; break;
1281 return rc;
1284 const char *ipx_device_name(struct ipx_interface *intrfc)
1286 return intrfc->if_internal ? "Internal" :
1287 intrfc->if_dev ? intrfc->if_dev->name : "Unknown";
1290 /* Handling for system calls applied via the various interfaces to an IPX
1291 * socket object. */
1293 static int ipx_setsockopt(struct socket *sock, int level, int optname,
1294 char __user *optval, int optlen)
1296 struct sock *sk = sock->sk;
1297 int opt;
1298 int rc = -EINVAL;
1300 if (optlen != sizeof(int))
1301 goto out;
1303 rc = -EFAULT;
1304 if (get_user(opt, (unsigned int __user *)optval))
1305 goto out;
1307 rc = -ENOPROTOOPT;
1308 if (!(level == SOL_IPX && optname == IPX_TYPE))
1309 goto out;
1311 ipx_sk(sk)->type = opt;
1312 rc = 0;
1313 out:
1314 return rc;
1317 static int ipx_getsockopt(struct socket *sock, int level, int optname,
1318 char __user *optval, int __user *optlen)
1320 struct sock *sk = sock->sk;
1321 int val = 0;
1322 int len;
1323 int rc = -ENOPROTOOPT;
1325 if (!(level == SOL_IPX && optname == IPX_TYPE))
1326 goto out;
1328 val = ipx_sk(sk)->type;
1330 rc = -EFAULT;
1331 if (get_user(len, optlen))
1332 goto out;
1334 len = min_t(unsigned int, len, sizeof(int));
1335 rc = -EINVAL;
1336 if(len < 0)
1337 goto out;
1339 rc = -EFAULT;
1340 if (put_user(len, optlen) || copy_to_user(optval, &val, len))
1341 goto out;
1343 rc = 0;
1344 out:
1345 return rc;
1348 static struct proto ipx_proto = {
1349 .name = "IPX",
1350 .owner = THIS_MODULE,
1351 .obj_size = sizeof(struct ipx_sock),
1354 static int ipx_create(struct net *net, struct socket *sock, int protocol)
1356 int rc = -ESOCKTNOSUPPORT;
1357 struct sock *sk;
1359 if (net != &init_net)
1360 return -EAFNOSUPPORT;
1363 * SPX support is not anymore in the kernel sources. If you want to
1364 * ressurrect it, completing it and making it understand shared skbs,
1365 * be fully multithreaded, etc, grab the sources in an early 2.5 kernel
1366 * tree.
1368 if (sock->type != SOCK_DGRAM)
1369 goto out;
1371 rc = -ENOMEM;
1372 sk = sk_alloc(net, PF_IPX, GFP_KERNEL, &ipx_proto);
1373 if (!sk)
1374 goto out;
1376 sk_refcnt_debug_inc(sk);
1377 sock_init_data(sock, sk);
1378 sk->sk_no_check = 1; /* Checksum off by default */
1379 sock->ops = &ipx_dgram_ops;
1380 rc = 0;
1381 out:
1382 return rc;
1385 static int ipx_release(struct socket *sock)
1387 struct sock *sk = sock->sk;
1389 if (!sk)
1390 goto out;
1392 if (!sock_flag(sk, SOCK_DEAD))
1393 sk->sk_state_change(sk);
1395 sock_set_flag(sk, SOCK_DEAD);
1396 sock->sk = NULL;
1397 sk_refcnt_debug_release(sk);
1398 ipx_destroy_socket(sk);
1399 out:
1400 return 0;
1403 /* caller must hold a reference to intrfc */
1405 static __be16 ipx_first_free_socketnum(struct ipx_interface *intrfc)
1407 unsigned short socketNum = intrfc->if_sknum;
1409 spin_lock_bh(&intrfc->if_sklist_lock);
1411 if (socketNum < IPX_MIN_EPHEMERAL_SOCKET)
1412 socketNum = IPX_MIN_EPHEMERAL_SOCKET;
1414 while (__ipxitf_find_socket(intrfc, htons(socketNum)))
1415 if (socketNum > IPX_MAX_EPHEMERAL_SOCKET)
1416 socketNum = IPX_MIN_EPHEMERAL_SOCKET;
1417 else
1418 socketNum++;
1420 spin_unlock_bh(&intrfc->if_sklist_lock);
1421 intrfc->if_sknum = socketNum;
1423 return htons(socketNum);
1426 static int ipx_bind(struct socket *sock, struct sockaddr *uaddr, int addr_len)
1428 struct sock *sk = sock->sk;
1429 struct ipx_sock *ipxs = ipx_sk(sk);
1430 struct ipx_interface *intrfc;
1431 struct sockaddr_ipx *addr = (struct sockaddr_ipx *)uaddr;
1432 int rc = -EINVAL;
1434 if (!sock_flag(sk, SOCK_ZAPPED) || addr_len != sizeof(struct sockaddr_ipx))
1435 goto out;
1437 intrfc = ipxitf_find_using_net(addr->sipx_network);
1438 rc = -EADDRNOTAVAIL;
1439 if (!intrfc)
1440 goto out;
1442 if (!addr->sipx_port) {
1443 addr->sipx_port = ipx_first_free_socketnum(intrfc);
1444 rc = -EINVAL;
1445 if (!addr->sipx_port)
1446 goto out_put;
1449 /* protect IPX system stuff like routing/sap */
1450 rc = -EACCES;
1451 if (ntohs(addr->sipx_port) < IPX_MIN_EPHEMERAL_SOCKET &&
1452 !capable(CAP_NET_ADMIN))
1453 goto out_put;
1455 ipxs->port = addr->sipx_port;
1457 #ifdef CONFIG_IPX_INTERN
1458 if (intrfc == ipx_internal_net) {
1459 /* The source address is to be set explicitly if the
1460 * socket is to be bound on the internal network. If a
1461 * node number 0 was specified, the default is used.
1464 rc = -EINVAL;
1465 if (!memcmp(addr->sipx_node, ipx_broadcast_node, IPX_NODE_LEN))
1466 goto out_put;
1467 if (!memcmp(addr->sipx_node, ipx_this_node, IPX_NODE_LEN))
1468 memcpy(ipxs->node, intrfc->if_node, IPX_NODE_LEN);
1469 else
1470 memcpy(ipxs->node, addr->sipx_node, IPX_NODE_LEN);
1472 rc = -EADDRINUSE;
1473 if (ipxitf_find_internal_socket(intrfc, ipxs->node,
1474 ipxs->port)) {
1475 SOCK_DEBUG(sk,
1476 "IPX: bind failed because port %X in use.\n",
1477 ntohs(addr->sipx_port));
1478 goto out_put;
1480 } else {
1481 /* Source addresses are easy. It must be our
1482 * network:node pair for an interface routed to IPX
1483 * with the ipx routing ioctl()
1486 memcpy(ipxs->node, intrfc->if_node, IPX_NODE_LEN);
1488 rc = -EADDRINUSE;
1489 if (ipxitf_find_socket(intrfc, addr->sipx_port)) {
1490 SOCK_DEBUG(sk,
1491 "IPX: bind failed because port %X in use.\n",
1492 ntohs(addr->sipx_port));
1493 goto out_put;
1497 #else /* !def CONFIG_IPX_INTERN */
1499 /* Source addresses are easy. It must be our network:node pair for
1500 an interface routed to IPX with the ipx routing ioctl() */
1502 rc = -EADDRINUSE;
1503 if (ipxitf_find_socket(intrfc, addr->sipx_port)) {
1504 SOCK_DEBUG(sk, "IPX: bind failed because port %X in use.\n",
1505 ntohs((int)addr->sipx_port));
1506 goto out_put;
1509 #endif /* CONFIG_IPX_INTERN */
1511 ipxitf_insert_socket(intrfc, sk);
1512 sock_reset_flag(sk, SOCK_ZAPPED);
1514 rc = 0;
1515 out_put:
1516 ipxitf_put(intrfc);
1517 out:
1518 return rc;
1521 static int ipx_connect(struct socket *sock, struct sockaddr *uaddr,
1522 int addr_len, int flags)
1524 struct sock *sk = sock->sk;
1525 struct ipx_sock *ipxs = ipx_sk(sk);
1526 struct sockaddr_ipx *addr;
1527 int rc = -EINVAL;
1528 struct ipx_route *rt;
1530 sk->sk_state = TCP_CLOSE;
1531 sock->state = SS_UNCONNECTED;
1533 if (addr_len != sizeof(*addr))
1534 goto out;
1535 addr = (struct sockaddr_ipx *)uaddr;
1537 /* put the autobinding in */
1538 if (!ipxs->port) {
1539 struct sockaddr_ipx uaddr;
1541 uaddr.sipx_port = 0;
1542 uaddr.sipx_network = 0;
1544 #ifdef CONFIG_IPX_INTERN
1545 rc = -ENETDOWN;
1546 if (!ipxs->intrfc)
1547 goto out; /* Someone zonked the iface */
1548 memcpy(uaddr.sipx_node, ipxs->intrfc->if_node,
1549 IPX_NODE_LEN);
1550 #endif /* CONFIG_IPX_INTERN */
1552 rc = ipx_bind(sock, (struct sockaddr *)&uaddr,
1553 sizeof(struct sockaddr_ipx));
1554 if (rc)
1555 goto out;
1558 /* We can either connect to primary network or somewhere
1559 * we can route to */
1560 rt = ipxrtr_lookup(addr->sipx_network);
1561 rc = -ENETUNREACH;
1562 if (!rt && !(!addr->sipx_network && ipx_primary_net))
1563 goto out;
1565 ipxs->dest_addr.net = addr->sipx_network;
1566 ipxs->dest_addr.sock = addr->sipx_port;
1567 memcpy(ipxs->dest_addr.node, addr->sipx_node, IPX_NODE_LEN);
1568 ipxs->type = addr->sipx_type;
1570 if (sock->type == SOCK_DGRAM) {
1571 sock->state = SS_CONNECTED;
1572 sk->sk_state = TCP_ESTABLISHED;
1575 if (rt)
1576 ipxrtr_put(rt);
1577 rc = 0;
1578 out:
1579 return rc;
1583 static int ipx_getname(struct socket *sock, struct sockaddr *uaddr,
1584 int *uaddr_len, int peer)
1586 struct ipx_address *addr;
1587 struct sockaddr_ipx sipx;
1588 struct sock *sk = sock->sk;
1589 struct ipx_sock *ipxs = ipx_sk(sk);
1590 int rc;
1592 *uaddr_len = sizeof(struct sockaddr_ipx);
1594 if (peer) {
1595 rc = -ENOTCONN;
1596 if (sk->sk_state != TCP_ESTABLISHED)
1597 goto out;
1599 addr = &ipxs->dest_addr;
1600 sipx.sipx_network = addr->net;
1601 sipx.sipx_port = addr->sock;
1602 memcpy(sipx.sipx_node, addr->node, IPX_NODE_LEN);
1603 } else {
1604 if (ipxs->intrfc) {
1605 sipx.sipx_network = ipxs->intrfc->if_netnum;
1606 #ifdef CONFIG_IPX_INTERN
1607 memcpy(sipx.sipx_node, ipxs->node, IPX_NODE_LEN);
1608 #else
1609 memcpy(sipx.sipx_node, ipxs->intrfc->if_node,
1610 IPX_NODE_LEN);
1611 #endif /* CONFIG_IPX_INTERN */
1613 } else {
1614 sipx.sipx_network = 0;
1615 memset(sipx.sipx_node, '\0', IPX_NODE_LEN);
1618 sipx.sipx_port = ipxs->port;
1621 sipx.sipx_family = AF_IPX;
1622 sipx.sipx_type = ipxs->type;
1623 sipx.sipx_zero = 0;
1624 memcpy(uaddr, &sipx, sizeof(sipx));
1626 rc = 0;
1627 out:
1628 return rc;
1631 static int ipx_rcv(struct sk_buff *skb, struct net_device *dev, struct packet_type *pt, struct net_device *orig_dev)
1633 /* NULL here for pt means the packet was looped back */
1634 struct ipx_interface *intrfc;
1635 struct ipxhdr *ipx;
1636 u16 ipx_pktsize;
1637 int rc = 0;
1639 if (!net_eq(dev_net(dev), &init_net))
1640 goto drop;
1642 /* Not ours */
1643 if (skb->pkt_type == PACKET_OTHERHOST)
1644 goto drop;
1646 if ((skb = skb_share_check(skb, GFP_ATOMIC)) == NULL)
1647 goto out;
1649 if (!pskb_may_pull(skb, sizeof(struct ipxhdr)))
1650 goto drop;
1652 ipx_pktsize = ntohs(ipx_hdr(skb)->ipx_pktsize);
1654 /* Too small or invalid header? */
1655 if (ipx_pktsize < sizeof(struct ipxhdr) ||
1656 !pskb_may_pull(skb, ipx_pktsize))
1657 goto drop;
1659 ipx = ipx_hdr(skb);
1660 if (ipx->ipx_checksum != IPX_NO_CHECKSUM &&
1661 ipx->ipx_checksum != ipx_cksum(ipx, ipx_pktsize))
1662 goto drop;
1664 IPX_SKB_CB(skb)->ipx_tctrl = ipx->ipx_tctrl;
1665 IPX_SKB_CB(skb)->ipx_dest_net = ipx->ipx_dest.net;
1666 IPX_SKB_CB(skb)->ipx_source_net = ipx->ipx_source.net;
1668 /* Determine what local ipx endpoint this is */
1669 intrfc = ipxitf_find_using_phys(dev, pt->type);
1670 if (!intrfc) {
1671 if (ipxcfg_auto_create_interfaces &&
1672 IPX_SKB_CB(skb)->ipx_dest_net) {
1673 intrfc = ipxitf_auto_create(dev, pt->type);
1674 if (intrfc)
1675 ipxitf_hold(intrfc);
1678 if (!intrfc) /* Not one of ours */
1679 /* or invalid packet for auto creation */
1680 goto drop;
1683 rc = ipxitf_rcv(intrfc, skb);
1684 ipxitf_put(intrfc);
1685 goto out;
1686 drop:
1687 kfree_skb(skb);
1688 out:
1689 return rc;
1692 static int ipx_sendmsg(struct kiocb *iocb, struct socket *sock,
1693 struct msghdr *msg, size_t len)
1695 struct sock *sk = sock->sk;
1696 struct ipx_sock *ipxs = ipx_sk(sk);
1697 struct sockaddr_ipx *usipx = (struct sockaddr_ipx *)msg->msg_name;
1698 struct sockaddr_ipx local_sipx;
1699 int rc = -EINVAL;
1700 int flags = msg->msg_flags;
1702 /* Socket gets bound below anyway */
1703 /* if (sk->sk_zapped)
1704 return -EIO; */ /* Socket not bound */
1705 if (flags & ~(MSG_DONTWAIT|MSG_CMSG_COMPAT))
1706 goto out;
1708 /* Max possible packet size limited by 16 bit pktsize in header */
1709 if (len >= 65535 - sizeof(struct ipxhdr))
1710 goto out;
1712 if (usipx) {
1713 if (!ipxs->port) {
1714 struct sockaddr_ipx uaddr;
1716 uaddr.sipx_port = 0;
1717 uaddr.sipx_network = 0;
1718 #ifdef CONFIG_IPX_INTERN
1719 rc = -ENETDOWN;
1720 if (!ipxs->intrfc)
1721 goto out; /* Someone zonked the iface */
1722 memcpy(uaddr.sipx_node, ipxs->intrfc->if_node,
1723 IPX_NODE_LEN);
1724 #endif
1725 rc = ipx_bind(sock, (struct sockaddr *)&uaddr,
1726 sizeof(struct sockaddr_ipx));
1727 if (rc)
1728 goto out;
1731 rc = -EINVAL;
1732 if (msg->msg_namelen < sizeof(*usipx) ||
1733 usipx->sipx_family != AF_IPX)
1734 goto out;
1735 } else {
1736 rc = -ENOTCONN;
1737 if (sk->sk_state != TCP_ESTABLISHED)
1738 goto out;
1740 usipx = &local_sipx;
1741 usipx->sipx_family = AF_IPX;
1742 usipx->sipx_type = ipxs->type;
1743 usipx->sipx_port = ipxs->dest_addr.sock;
1744 usipx->sipx_network = ipxs->dest_addr.net;
1745 memcpy(usipx->sipx_node, ipxs->dest_addr.node, IPX_NODE_LEN);
1748 rc = ipxrtr_route_packet(sk, usipx, msg->msg_iov, len,
1749 flags & MSG_DONTWAIT);
1750 if (rc >= 0)
1751 rc = len;
1752 out:
1753 return rc;
1757 static int ipx_recvmsg(struct kiocb *iocb, struct socket *sock,
1758 struct msghdr *msg, size_t size, int flags)
1760 struct sock *sk = sock->sk;
1761 struct ipx_sock *ipxs = ipx_sk(sk);
1762 struct sockaddr_ipx *sipx = (struct sockaddr_ipx *)msg->msg_name;
1763 struct ipxhdr *ipx = NULL;
1764 struct sk_buff *skb;
1765 int copied, rc;
1767 /* put the autobinding in */
1768 if (!ipxs->port) {
1769 struct sockaddr_ipx uaddr;
1771 uaddr.sipx_port = 0;
1772 uaddr.sipx_network = 0;
1774 #ifdef CONFIG_IPX_INTERN
1775 rc = -ENETDOWN;
1776 if (!ipxs->intrfc)
1777 goto out; /* Someone zonked the iface */
1778 memcpy(uaddr.sipx_node, ipxs->intrfc->if_node, IPX_NODE_LEN);
1779 #endif /* CONFIG_IPX_INTERN */
1781 rc = ipx_bind(sock, (struct sockaddr *)&uaddr,
1782 sizeof(struct sockaddr_ipx));
1783 if (rc)
1784 goto out;
1787 rc = -ENOTCONN;
1788 if (sock_flag(sk, SOCK_ZAPPED))
1789 goto out;
1791 skb = skb_recv_datagram(sk, flags & ~MSG_DONTWAIT,
1792 flags & MSG_DONTWAIT, &rc);
1793 if (!skb)
1794 goto out;
1796 ipx = ipx_hdr(skb);
1797 copied = ntohs(ipx->ipx_pktsize) - sizeof(struct ipxhdr);
1798 if (copied > size) {
1799 copied = size;
1800 msg->msg_flags |= MSG_TRUNC;
1803 rc = skb_copy_datagram_iovec(skb, sizeof(struct ipxhdr), msg->msg_iov,
1804 copied);
1805 if (rc)
1806 goto out_free;
1807 if (skb->tstamp.tv64)
1808 sk->sk_stamp = skb->tstamp;
1810 msg->msg_namelen = sizeof(*sipx);
1812 if (sipx) {
1813 sipx->sipx_family = AF_IPX;
1814 sipx->sipx_port = ipx->ipx_source.sock;
1815 memcpy(sipx->sipx_node, ipx->ipx_source.node, IPX_NODE_LEN);
1816 sipx->sipx_network = IPX_SKB_CB(skb)->ipx_source_net;
1817 sipx->sipx_type = ipx->ipx_type;
1818 sipx->sipx_zero = 0;
1820 rc = copied;
1822 out_free:
1823 skb_free_datagram(sk, skb);
1824 out:
1825 return rc;
1829 static int ipx_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
1831 int rc = 0;
1832 long amount = 0;
1833 struct sock *sk = sock->sk;
1834 void __user *argp = (void __user *)arg;
1836 switch (cmd) {
1837 case TIOCOUTQ:
1838 amount = sk->sk_sndbuf - atomic_read(&sk->sk_wmem_alloc);
1839 if (amount < 0)
1840 amount = 0;
1841 rc = put_user(amount, (int __user *)argp);
1842 break;
1843 case TIOCINQ: {
1844 struct sk_buff *skb = skb_peek(&sk->sk_receive_queue);
1845 /* These two are safe on a single CPU system as only
1846 * user tasks fiddle here */
1847 if (skb)
1848 amount = skb->len - sizeof(struct ipxhdr);
1849 rc = put_user(amount, (int __user *)argp);
1850 break;
1852 case SIOCADDRT:
1853 case SIOCDELRT:
1854 rc = -EPERM;
1855 if (capable(CAP_NET_ADMIN))
1856 rc = ipxrtr_ioctl(cmd, argp);
1857 break;
1858 case SIOCSIFADDR:
1859 case SIOCAIPXITFCRT:
1860 case SIOCAIPXPRISLT:
1861 rc = -EPERM;
1862 if (!capable(CAP_NET_ADMIN))
1863 break;
1864 case SIOCGIFADDR:
1865 rc = ipxitf_ioctl(cmd, argp);
1866 break;
1867 case SIOCIPXCFGDATA:
1868 rc = ipxcfg_get_config_data(argp);
1869 break;
1870 case SIOCIPXNCPCONN:
1872 * This socket wants to take care of the NCP connection
1873 * handed to us in arg.
1875 rc = -EPERM;
1876 if (!capable(CAP_NET_ADMIN))
1877 break;
1878 rc = get_user(ipx_sk(sk)->ipx_ncp_conn,
1879 (const unsigned short __user *)argp);
1880 break;
1881 case SIOCGSTAMP:
1882 rc = -EINVAL;
1883 if (sk)
1884 rc = sock_get_timestamp(sk, argp);
1885 break;
1886 case SIOCGIFDSTADDR:
1887 case SIOCSIFDSTADDR:
1888 case SIOCGIFBRDADDR:
1889 case SIOCSIFBRDADDR:
1890 case SIOCGIFNETMASK:
1891 case SIOCSIFNETMASK:
1892 rc = -EINVAL;
1893 break;
1894 default:
1895 rc = -ENOIOCTLCMD;
1896 break;
1899 return rc;
1903 #ifdef CONFIG_COMPAT
1904 static int ipx_compat_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
1907 * These 4 commands use same structure on 32bit and 64bit. Rest of IPX
1908 * commands is handled by generic ioctl code. As these commands are
1909 * SIOCPROTOPRIVATE..SIOCPROTOPRIVATE+3, they cannot be handled by generic
1910 * code.
1912 switch (cmd) {
1913 case SIOCAIPXITFCRT:
1914 case SIOCAIPXPRISLT:
1915 case SIOCIPXCFGDATA:
1916 case SIOCIPXNCPCONN:
1917 return ipx_ioctl(sock, cmd, arg);
1918 default:
1919 return -ENOIOCTLCMD;
1922 #endif
1926 * Socket family declarations
1929 static struct net_proto_family ipx_family_ops = {
1930 .family = PF_IPX,
1931 .create = ipx_create,
1932 .owner = THIS_MODULE,
1935 static const struct proto_ops SOCKOPS_WRAPPED(ipx_dgram_ops) = {
1936 .family = PF_IPX,
1937 .owner = THIS_MODULE,
1938 .release = ipx_release,
1939 .bind = ipx_bind,
1940 .connect = ipx_connect,
1941 .socketpair = sock_no_socketpair,
1942 .accept = sock_no_accept,
1943 .getname = ipx_getname,
1944 .poll = datagram_poll,
1945 .ioctl = ipx_ioctl,
1946 #ifdef CONFIG_COMPAT
1947 .compat_ioctl = ipx_compat_ioctl,
1948 #endif
1949 .listen = sock_no_listen,
1950 .shutdown = sock_no_shutdown, /* FIXME: support shutdown */
1951 .setsockopt = ipx_setsockopt,
1952 .getsockopt = ipx_getsockopt,
1953 .sendmsg = ipx_sendmsg,
1954 .recvmsg = ipx_recvmsg,
1955 .mmap = sock_no_mmap,
1956 .sendpage = sock_no_sendpage,
1959 SOCKOPS_WRAP(ipx_dgram, PF_IPX);
1961 static struct packet_type ipx_8023_packet_type = {
1962 .type = __constant_htons(ETH_P_802_3),
1963 .func = ipx_rcv,
1966 static struct packet_type ipx_dix_packet_type = {
1967 .type = __constant_htons(ETH_P_IPX),
1968 .func = ipx_rcv,
1971 static struct notifier_block ipx_dev_notifier = {
1972 .notifier_call = ipxitf_device_event,
1975 extern struct datalink_proto *make_EII_client(void);
1976 extern void destroy_EII_client(struct datalink_proto *);
1978 static unsigned char ipx_8022_type = 0xE0;
1979 static unsigned char ipx_snap_id[5] = { 0x0, 0x0, 0x0, 0x81, 0x37 };
1980 static char ipx_EII_err_msg[] __initdata =
1981 KERN_CRIT "IPX: Unable to register with Ethernet II\n";
1982 static char ipx_8023_err_msg[] __initdata =
1983 KERN_CRIT "IPX: Unable to register with 802.3\n";
1984 static char ipx_llc_err_msg[] __initdata =
1985 KERN_CRIT "IPX: Unable to register with 802.2\n";
1986 static char ipx_snap_err_msg[] __initdata =
1987 KERN_CRIT "IPX: Unable to register with SNAP\n";
1989 static int __init ipx_init(void)
1991 int rc = proto_register(&ipx_proto, 1);
1993 if (rc != 0)
1994 goto out;
1996 sock_register(&ipx_family_ops);
1998 pEII_datalink = make_EII_client();
1999 if (pEII_datalink)
2000 dev_add_pack(&ipx_dix_packet_type);
2001 else
2002 printk(ipx_EII_err_msg);
2004 p8023_datalink = make_8023_client();
2005 if (p8023_datalink)
2006 dev_add_pack(&ipx_8023_packet_type);
2007 else
2008 printk(ipx_8023_err_msg);
2010 p8022_datalink = register_8022_client(ipx_8022_type, ipx_rcv);
2011 if (!p8022_datalink)
2012 printk(ipx_llc_err_msg);
2014 pSNAP_datalink = register_snap_client(ipx_snap_id, ipx_rcv);
2015 if (!pSNAP_datalink)
2016 printk(ipx_snap_err_msg);
2018 register_netdevice_notifier(&ipx_dev_notifier);
2019 ipx_register_sysctl();
2020 ipx_proc_init();
2021 out:
2022 return rc;
2025 static void __exit ipx_proto_finito(void)
2027 ipx_proc_exit();
2028 ipx_unregister_sysctl();
2030 unregister_netdevice_notifier(&ipx_dev_notifier);
2032 ipxitf_cleanup();
2034 if (pSNAP_datalink) {
2035 unregister_snap_client(pSNAP_datalink);
2036 pSNAP_datalink = NULL;
2039 if (p8022_datalink) {
2040 unregister_8022_client(p8022_datalink);
2041 p8022_datalink = NULL;
2044 dev_remove_pack(&ipx_8023_packet_type);
2045 if (p8023_datalink) {
2046 destroy_8023_client(p8023_datalink);
2047 p8023_datalink = NULL;
2050 dev_remove_pack(&ipx_dix_packet_type);
2051 if (pEII_datalink) {
2052 destroy_EII_client(pEII_datalink);
2053 pEII_datalink = NULL;
2056 proto_unregister(&ipx_proto);
2057 sock_unregister(ipx_family_ops.family);
2060 module_init(ipx_init);
2061 module_exit(ipx_proto_finito);
2062 MODULE_LICENSE("GPL");
2063 MODULE_ALIAS_NETPROTO(PF_IPX);