[PATCH] core-dumping unreadable binaries via PT_INTERP
[linux-2.6/verdex.git] / net / llc / llc_sap.c
blob61cb8cf7d1532a4d4b1abd51244e863fc7e8b887
1 /*
2 * llc_sap.c - driver routines for SAP component.
4 * Copyright (c) 1997 by Procom Technology, Inc.
5 * 2001-2003 by Arnaldo Carvalho de Melo <acme@conectiva.com.br>
7 * This program can be redistributed or modified under the terms of the
8 * GNU General Public License as published by the Free Software Foundation.
9 * This program is distributed without any warranty or implied warranty
10 * of merchantability or fitness for a particular purpose.
12 * See the GNU General Public License for more details.
15 #include <net/llc.h>
16 #include <net/llc_if.h>
17 #include <net/llc_conn.h>
18 #include <net/llc_pdu.h>
19 #include <net/llc_sap.h>
20 #include <net/llc_s_ac.h>
21 #include <net/llc_s_ev.h>
22 #include <net/llc_s_st.h>
23 #include <net/sock.h>
24 #include <net/tcp_states.h>
25 #include <linux/llc.h>
27 /**
28 * llc_alloc_frame - allocates sk_buff for frame
29 * @dev: network device this skb will be sent over
31 * Allocates an sk_buff for frame and initializes sk_buff fields.
32 * Returns allocated skb or %NULL when out of memory.
34 struct sk_buff *llc_alloc_frame(struct sock *sk, struct net_device *dev)
36 struct sk_buff *skb = alloc_skb(128, GFP_ATOMIC);
38 if (skb) {
39 skb_reserve(skb, 50);
40 skb->nh.raw = skb->h.raw = skb->data;
41 skb->protocol = htons(ETH_P_802_2);
42 skb->dev = dev;
43 skb->mac.raw = skb->head;
44 if (sk != NULL)
45 skb_set_owner_w(skb, sk);
47 return skb;
50 void llc_save_primitive(struct sock *sk, struct sk_buff* skb, u8 prim)
52 struct sockaddr_llc *addr;
54 /* save primitive for use by the user. */
55 addr = llc_ui_skb_cb(skb);
57 memset(addr, 0, sizeof(*addr));
58 addr->sllc_family = sk->sk_family;
59 addr->sllc_arphrd = skb->dev->type;
60 addr->sllc_test = prim == LLC_TEST_PRIM;
61 addr->sllc_xid = prim == LLC_XID_PRIM;
62 addr->sllc_ua = prim == LLC_DATAUNIT_PRIM;
63 llc_pdu_decode_sa(skb, addr->sllc_mac);
64 llc_pdu_decode_ssap(skb, &addr->sllc_sap);
67 /**
68 * llc_sap_rtn_pdu - Informs upper layer on rx of an UI, XID or TEST pdu.
69 * @sap: pointer to SAP
70 * @skb: received pdu
72 void llc_sap_rtn_pdu(struct llc_sap *sap, struct sk_buff *skb)
74 struct llc_sap_state_ev *ev = llc_sap_ev(skb);
75 struct llc_pdu_un *pdu = llc_pdu_un_hdr(skb);
77 switch (LLC_U_PDU_RSP(pdu)) {
78 case LLC_1_PDU_CMD_TEST:
79 ev->prim = LLC_TEST_PRIM; break;
80 case LLC_1_PDU_CMD_XID:
81 ev->prim = LLC_XID_PRIM; break;
82 case LLC_1_PDU_CMD_UI:
83 ev->prim = LLC_DATAUNIT_PRIM; break;
85 ev->ind_cfm_flag = LLC_IND;
88 /**
89 * llc_find_sap_trans - finds transition for event
90 * @sap: pointer to SAP
91 * @skb: happened event
93 * This function finds transition that matches with happened event.
94 * Returns the pointer to found transition on success or %NULL for
95 * failure.
97 static struct llc_sap_state_trans *llc_find_sap_trans(struct llc_sap *sap,
98 struct sk_buff* skb)
100 int i = 0;
101 struct llc_sap_state_trans *rc = NULL;
102 struct llc_sap_state_trans **next_trans;
103 struct llc_sap_state *curr_state = &llc_sap_state_table[sap->state - 1];
105 * Search thru events for this state until list exhausted or until
106 * its obvious the event is not valid for the current state
108 for (next_trans = curr_state->transitions; next_trans[i]->ev; i++)
109 if (!next_trans[i]->ev(sap, skb)) {
110 rc = next_trans[i]; /* got event match; return it */
111 break;
113 return rc;
117 * llc_exec_sap_trans_actions - execute actions related to event
118 * @sap: pointer to SAP
119 * @trans: pointer to transition that it's actions must be performed
120 * @skb: happened event.
122 * This function executes actions that is related to happened event.
123 * Returns 0 for success and 1 for failure of at least one action.
125 static int llc_exec_sap_trans_actions(struct llc_sap *sap,
126 struct llc_sap_state_trans *trans,
127 struct sk_buff *skb)
129 int rc = 0;
130 llc_sap_action_t *next_action = trans->ev_actions;
132 for (; next_action && *next_action; next_action++)
133 if ((*next_action)(sap, skb))
134 rc = 1;
135 return rc;
139 * llc_sap_next_state - finds transition, execs actions & change SAP state
140 * @sap: pointer to SAP
141 * @skb: happened event
143 * This function finds transition that matches with happened event, then
144 * executes related actions and finally changes state of SAP. It returns
145 * 0 on success and 1 for failure.
147 static int llc_sap_next_state(struct llc_sap *sap, struct sk_buff *skb)
149 int rc = 1;
150 struct llc_sap_state_trans *trans;
152 if (sap->state > LLC_NR_SAP_STATES)
153 goto out;
154 trans = llc_find_sap_trans(sap, skb);
155 if (!trans)
156 goto out;
158 * Got the state to which we next transition; perform the actions
159 * associated with this transition before actually transitioning to the
160 * next state
162 rc = llc_exec_sap_trans_actions(sap, trans, skb);
163 if (rc)
164 goto out;
166 * Transition SAP to next state if all actions execute successfully
168 sap->state = trans->next_state;
169 out:
170 return rc;
174 * llc_sap_state_process - sends event to SAP state machine
175 * @sap: sap to use
176 * @skb: pointer to occurred event
178 * After executing actions of the event, upper layer will be indicated
179 * if needed(on receiving an UI frame). sk can be null for the
180 * datalink_proto case.
182 static void llc_sap_state_process(struct llc_sap *sap, struct sk_buff *skb)
184 struct llc_sap_state_ev *ev = llc_sap_ev(skb);
187 * We have to hold the skb, because llc_sap_next_state
188 * will kfree it in the sending path and we need to
189 * look at the skb->cb, where we encode llc_sap_state_ev.
191 skb_get(skb);
192 ev->ind_cfm_flag = 0;
193 llc_sap_next_state(sap, skb);
194 if (ev->ind_cfm_flag == LLC_IND) {
195 if (skb->sk->sk_state == TCP_LISTEN)
196 kfree_skb(skb);
197 else {
198 llc_save_primitive(skb->sk, skb, ev->prim);
200 /* queue skb to the user. */
201 if (sock_queue_rcv_skb(skb->sk, skb))
202 kfree_skb(skb);
205 kfree_skb(skb);
209 * llc_build_and_send_test_pkt - TEST interface for upper layers.
210 * @sap: sap to use
211 * @skb: packet to send
212 * @dmac: destination mac address
213 * @dsap: destination sap
215 * This function is called when upper layer wants to send a TEST pdu.
216 * Returns 0 for success, 1 otherwise.
218 void llc_build_and_send_test_pkt(struct llc_sap *sap,
219 struct sk_buff *skb, u8 *dmac, u8 dsap)
221 struct llc_sap_state_ev *ev = llc_sap_ev(skb);
223 ev->saddr.lsap = sap->laddr.lsap;
224 ev->daddr.lsap = dsap;
225 memcpy(ev->saddr.mac, skb->dev->dev_addr, IFHWADDRLEN);
226 memcpy(ev->daddr.mac, dmac, IFHWADDRLEN);
228 ev->type = LLC_SAP_EV_TYPE_PRIM;
229 ev->prim = LLC_TEST_PRIM;
230 ev->prim_type = LLC_PRIM_TYPE_REQ;
231 llc_sap_state_process(sap, skb);
235 * llc_build_and_send_xid_pkt - XID interface for upper layers
236 * @sap: sap to use
237 * @skb: packet to send
238 * @dmac: destination mac address
239 * @dsap: destination sap
241 * This function is called when upper layer wants to send a XID pdu.
242 * Returns 0 for success, 1 otherwise.
244 void llc_build_and_send_xid_pkt(struct llc_sap *sap, struct sk_buff *skb,
245 u8 *dmac, u8 dsap)
247 struct llc_sap_state_ev *ev = llc_sap_ev(skb);
249 ev->saddr.lsap = sap->laddr.lsap;
250 ev->daddr.lsap = dsap;
251 memcpy(ev->saddr.mac, skb->dev->dev_addr, IFHWADDRLEN);
252 memcpy(ev->daddr.mac, dmac, IFHWADDRLEN);
254 ev->type = LLC_SAP_EV_TYPE_PRIM;
255 ev->prim = LLC_XID_PRIM;
256 ev->prim_type = LLC_PRIM_TYPE_REQ;
257 llc_sap_state_process(sap, skb);
261 * llc_sap_rcv - sends received pdus to the sap state machine
262 * @sap: current sap component structure.
263 * @skb: received frame.
265 * Sends received pdus to the sap state machine.
267 static void llc_sap_rcv(struct llc_sap *sap, struct sk_buff *skb)
269 struct llc_sap_state_ev *ev = llc_sap_ev(skb);
271 ev->type = LLC_SAP_EV_TYPE_PDU;
272 ev->reason = 0;
273 llc_sap_state_process(sap, skb);
277 * llc_lookup_dgram - Finds dgram socket for the local sap/mac
278 * @sap: SAP
279 * @laddr: address of local LLC (MAC + SAP)
281 * Search socket list of the SAP and finds connection using the local
282 * mac, and local sap. Returns pointer for socket found, %NULL otherwise.
284 static struct sock *llc_lookup_dgram(struct llc_sap *sap,
285 const struct llc_addr *laddr)
287 struct sock *rc;
288 struct hlist_node *node;
290 read_lock_bh(&sap->sk_list.lock);
291 sk_for_each(rc, node, &sap->sk_list.list) {
292 struct llc_sock *llc = llc_sk(rc);
294 if (rc->sk_type == SOCK_DGRAM &&
295 llc->laddr.lsap == laddr->lsap &&
296 llc_mac_match(llc->laddr.mac, laddr->mac)) {
297 sock_hold(rc);
298 goto found;
301 rc = NULL;
302 found:
303 read_unlock_bh(&sap->sk_list.lock);
304 return rc;
308 * llc_sap_mcast - Deliver multicast PDU's to all matching datagram sockets.
309 * @sap: SAP
310 * @laddr: address of local LLC (MAC + SAP)
312 * Search socket list of the SAP and finds connections with same sap.
313 * Deliver clone to each.
315 static void llc_sap_mcast(struct llc_sap *sap,
316 const struct llc_addr *laddr,
317 struct sk_buff *skb)
319 struct sock *sk;
320 struct hlist_node *node;
322 read_lock_bh(&sap->sk_list.lock);
323 sk_for_each(sk, node, &sap->sk_list.list) {
324 struct llc_sock *llc = llc_sk(sk);
325 struct sk_buff *skb1;
327 if (sk->sk_type != SOCK_DGRAM)
328 continue;
330 if (llc->laddr.lsap != laddr->lsap)
331 continue;
333 if (llc->dev != skb->dev)
334 continue;
336 skb1 = skb_clone(skb, GFP_ATOMIC);
337 if (!skb1)
338 break;
340 sock_hold(sk);
341 skb_set_owner_r(skb1, sk);
342 llc_sap_rcv(sap, skb1);
343 sock_put(sk);
345 read_unlock_bh(&sap->sk_list.lock);
349 void llc_sap_handler(struct llc_sap *sap, struct sk_buff *skb)
351 struct llc_addr laddr;
353 llc_pdu_decode_da(skb, laddr.mac);
354 llc_pdu_decode_dsap(skb, &laddr.lsap);
356 if (llc_mac_multicast(laddr.mac)) {
357 llc_sap_mcast(sap, &laddr, skb);
358 kfree_skb(skb);
359 } else {
360 struct sock *sk = llc_lookup_dgram(sap, &laddr);
361 if (sk) {
362 skb_set_owner_r(skb, sk);
363 llc_sap_rcv(sap, skb);
364 sock_put(sk);
365 } else
366 kfree_skb(skb);