Home Explore Help
Register Sign In
phyus
/
linux-vybrid_public
8
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 1b3a6926fc
Branches Tags
linux-vybrid_pu...
/
net
/
ipv4
/
inet_diag.c

inet_diag.c 26 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096 
  1. /*
    2. 

  2.  * inet_diag.c	Module for monitoring INET transport protocols sockets.
    3. 

  3.  *
    4. 

  4.  * Authors:	Alexey Kuznetsov, <kuznet@ms2.inr.ac.ru>
    5. 

  5.  *
    6. 

  6.  *	This program is free software; you can redistribute it and/or
    7. 

  7.  *      modify it under the terms of the GNU General Public License
    8. 

  8.  *      as published by the Free Software Foundation; either version
    9. 

  9.  *      2 of the License, or (at your option) any later version.
    10. 

  10.  */
    11. 

  11. 

  12. #include <linux/kernel.h>
    13. 

  13. #include <linux/module.h>
    14. 

  14. #include <linux/types.h>
    15. 

  15. #include <linux/fcntl.h>
    16. 

  16. #include <linux/random.h>
    17. 

  17. #include <linux/slab.h>
    18. 

  18. #include <linux/cache.h>
    19. 

  19. #include <linux/init.h>
    20. 

  20. #include <linux/time.h>
    21. 

  21. 

  22. #include <net/icmp.h>
    23. 

  23. #include <net/tcp.h>
    24. 

  24. #include <net/ipv6.h>
    25. 

  25. #include <net/inet_common.h>
    26. 

  26. #include <net/inet_connection_sock.h>
    27. 

  27. #include <net/inet_hashtables.h>
    28. 

  28. #include <net/inet_timewait_sock.h>
    29. 

  29. #include <net/inet6_hashtables.h>
    30. 

  30. #include <net/netlink.h>
    31. 

  31. 

  32. #include <linux/inet.h>
    33. 

  33. #include <linux/stddef.h>
    34. 

  34. 

  35. #include <linux/inet_diag.h>
    36. 

  36. #include <linux/sock_diag.h>
    37. 

  37. 

  38. static const struct inet_diag_handler **inet_diag_table;
    39. 

  39. 

  40. struct inet_diag_entry {
    41. 

  41. 	__be32 *saddr;
    42. 

  42. 	__be32 *daddr;
    43. 

  43. 	u16 sport;
    44. 

  44. 	u16 dport;
    45. 

  45. 	u16 family;
    46. 

  46. 	u16 userlocks;
    47. 

  47. };
    48. 

  48. 

  49. static DEFINE_MUTEX(inet_diag_table_mutex);
    50. 

  50. 

  51. static const struct inet_diag_handler *inet_diag_lock_handler(int proto)
    52. 

  52. {
    53. 

  53. 	if (!inet_diag_table[proto])
    54. 

  54. 		request_module("net-pf-%d-proto-%d-type-%d-%d", PF_NETLINK,
    55. 

  55. 			       NETLINK_SOCK_DIAG, AF_INET, proto);
    56. 

  56. 

  57. 	mutex_lock(&inet_diag_table_mutex);
    58. 

  58. 	if (!inet_diag_table[proto])
    59. 

  59. 		return ERR_PTR(-ENOENT);
    60. 

  60. 

  61. 	return inet_diag_table[proto];
    62. 

  62. }
    63. 

  63. 

  64. static inline void inet_diag_unlock_handler(
    65. 

  65. 	const struct inet_diag_handler *handler)
    66. 

  66. {
    67. 

  67. 	mutex_unlock(&inet_diag_table_mutex);
    68. 

  68. }
    69. 

  69. 

  70. int inet_sk_diag_fill(struct sock *sk, struct inet_connection_sock *icsk,
    71. 

  71. 			      struct sk_buff *skb, struct inet_diag_req_v2 *req,
    72. 

  72. 			      u32 pid, u32 seq, u16 nlmsg_flags,
    73. 

  73. 			      const struct nlmsghdr *unlh)
    74. 

  74. {
    75. 

  75. 	const struct inet_sock *inet = inet_sk(sk);
    76. 

  76. 	struct inet_diag_msg *r;
    77. 

  77. 	struct nlmsghdr  *nlh;
    78. 

  78. 	struct nlattr *attr;
    79. 

  79. 	void *info = NULL;
    80. 

  80. 	const struct inet_diag_handler *handler;
    81. 

  81. 	int ext = req->idiag_ext;
    82. 

  82. 

  83. 	handler = inet_diag_table[req->sdiag_protocol];
    84. 

  84. 	BUG_ON(handler == NULL);
    85. 

  85. 

  86. 	nlh = nlmsg_put(skb, pid, seq, unlh->nlmsg_type, sizeof(*r),
    87. 

  87. 			nlmsg_flags);
    88. 

  88. 	if (!nlh)
    89. 

  89. 		return -EMSGSIZE;
    90. 

  90. 

  91. 	r = nlmsg_data(nlh);
    92. 

  92. 	BUG_ON(sk->sk_state == TCP_TIME_WAIT);
    93. 

  93. 

  94. 	r->idiag_family = sk->sk_family;
    95. 

  95. 	r->idiag_state = sk->sk_state;
    96. 

  96. 	r->idiag_timer = 0;
    97. 

  97. 	r->idiag_retrans = 0;
    98. 

  98. 

  99. 	r->id.idiag_if = sk->sk_bound_dev_if;
    100. 

  100. 	sock_diag_save_cookie(sk, r->id.idiag_cookie);
    101. 

  101. 

  102. 	r->id.idiag_sport = inet->inet_sport;
    103. 

  103. 	r->id.idiag_dport = inet->inet_dport;
    104. 

  104. 	r->id.idiag_src[0] = inet->inet_rcv_saddr;
    105. 

  105. 	r->id.idiag_dst[0] = inet->inet_daddr;
    106. 

  106. 

  107. 	/* IPv6 dual-stack sockets use inet->tos for IPv4 connections,
    108. 

  108. 	 * hence this needs to be included regardless of socket family.
    109. 

  109. 	 */
    110. 

  110. 	if (ext & (1 << (INET_DIAG_TOS - 1)))
    111. 

  111. 		if (nla_put_u8(skb, INET_DIAG_TOS, inet->tos) < 0)
    112. 

  112. 			goto errout;
    113. 

  113. 

  114. #if IS_ENABLED(CONFIG_IPV6)
    115. 

  115. 	if (r->idiag_family == AF_INET6) {
    116. 

  116. 		const struct ipv6_pinfo *np = inet6_sk(sk);
    117. 

  117. 

  118. 		*(struct in6_addr *)r->id.idiag_src = np->rcv_saddr;
    119. 

  119. 		*(struct in6_addr *)r->id.idiag_dst = np->daddr;
    120. 

  120. 

  121. 		if (ext & (1 << (INET_DIAG_TCLASS - 1)))
    122. 

  122. 			if (nla_put_u8(skb, INET_DIAG_TCLASS, np->tclass) < 0)
    123. 

  123. 				goto errout;
    124. 

  124. 	}
    125. 

  125. #endif
    126. 

  126. 

  127. 	r->idiag_uid = sock_i_uid(sk);
    128. 

  128. 	r->idiag_inode = sock_i_ino(sk);
    129. 

  129. 

  130. 	if (ext & (1 << (INET_DIAG_MEMINFO - 1))) {
    131. 

  131. 		struct inet_diag_meminfo minfo = {
    132. 

  132. 			.idiag_rmem = sk_rmem_alloc_get(sk),
    133. 

  133. 			.idiag_wmem = sk->sk_wmem_queued,
    134. 

  134. 			.idiag_fmem = sk->sk_forward_alloc,
    135. 

  135. 			.idiag_tmem = sk_wmem_alloc_get(sk),
    136. 

  136. 		};
    137. 

  137. 

  138. 		if (nla_put(skb, INET_DIAG_MEMINFO, sizeof(minfo), &minfo) < 0)
    139. 

  139. 			goto errout;
    140. 

  140. 	}
    141. 

  141. 

  142. 	if (ext & (1 << (INET_DIAG_SKMEMINFO - 1)))
    143. 

  143. 		if (sock_diag_put_meminfo(sk, skb, INET_DIAG_SKMEMINFO))
    144. 

  144. 			goto errout;
    145. 

  145. 

  146. 	if (icsk == NULL) {
    147. 

  147. 		handler->idiag_get_info(sk, r, NULL);
    148. 

  148. 		goto out;
    149. 

  149. 	}
    150. 

  150. 

  151. #define EXPIRES_IN_MS(tmo)  DIV_ROUND_UP((tmo - jiffies) * 1000, HZ)
    152. 

  152. 

  153. 	if (icsk->icsk_pending == ICSK_TIME_RETRANS) {
    154. 

  154. 		r->idiag_timer = 1;
    155. 

  155. 		r->idiag_retrans = icsk->icsk_retransmits;
    156. 

  156. 		r->idiag_expires = EXPIRES_IN_MS(icsk->icsk_timeout);
    157. 

  157. 	} else if (icsk->icsk_pending == ICSK_TIME_PROBE0) {
    158. 

  158. 		r->idiag_timer = 4;
    159. 

  159. 		r->idiag_retrans = icsk->icsk_probes_out;
    160. 

  160. 		r->idiag_expires = EXPIRES_IN_MS(icsk->icsk_timeout);
    161. 

  161. 	} else if (timer_pending(&sk->sk_timer)) {
    162. 

  162. 		r->idiag_timer = 2;
    163. 

  163. 		r->idiag_retrans = icsk->icsk_probes_out;
    164. 

  164. 		r->idiag_expires = EXPIRES_IN_MS(sk->sk_timer.expires);
    165. 

  165. 	} else {
    166. 

  166. 		r->idiag_timer = 0;
    167. 

  167. 		r->idiag_expires = 0;
    168. 

  168. 	}
    169. 

  169. #undef EXPIRES_IN_MS
    170. 

  170. 

  171. 	if (ext & (1 << (INET_DIAG_INFO - 1))) {
    172. 

  172. 		attr = nla_reserve(skb, INET_DIAG_INFO,
    173. 

  173. 				   sizeof(struct tcp_info));
    174. 

  174. 		if (!attr)
    175. 

  175. 			goto errout;
    176. 

  176. 

  177. 		info = nla_data(attr);
    178. 

  178. 	}
    179. 

  179. 

  180. 	if ((ext & (1 << (INET_DIAG_CONG - 1))) && icsk->icsk_ca_ops)
    181. 

  181. 		if (nla_put_string(skb, INET_DIAG_CONG,
    182. 

  182. 				   icsk->icsk_ca_ops->name) < 0)
    183. 

  183. 			goto errout;
    184. 

  184. 

  185. 	handler->idiag_get_info(sk, r, info);
    186. 

  186. 

  187. 	if (sk->sk_state < TCP_TIME_WAIT &&
    188. 

  188. 	    icsk->icsk_ca_ops && icsk->icsk_ca_ops->get_info)
    189. 

  189. 		icsk->icsk_ca_ops->get_info(sk, ext, skb);
    190. 

  190. 

  191. out:
    192. 

  192. 	return nlmsg_end(skb, nlh);
    193. 

  193. 

  194. errout:
    195. 

  195. 	nlmsg_cancel(skb, nlh);
    196. 

  196. 	return -EMSGSIZE;
    197. 

  197. }
    198. 

  198. EXPORT_SYMBOL_GPL(inet_sk_diag_fill);
    199. 

  199. 

  200. static int inet_csk_diag_fill(struct sock *sk,
    201. 

  201. 			      struct sk_buff *skb, struct inet_diag_req_v2 *req,
    202. 

  202. 			      u32 pid, u32 seq, u16 nlmsg_flags,
    203. 

  203. 			      const struct nlmsghdr *unlh)
    204. 

  204. {
    205. 

  205. 	return inet_sk_diag_fill(sk, inet_csk(sk),
    206. 

  206. 			skb, req, pid, seq, nlmsg_flags, unlh);
    207. 

  207. }
    208. 

  208. 

  209. static int inet_twsk_diag_fill(struct inet_timewait_sock *tw,
    210. 

  210. 			       struct sk_buff *skb, struct inet_diag_req_v2 *req,
    211. 

  211. 			       u32 pid, u32 seq, u16 nlmsg_flags,
    212. 

  212. 			       const struct nlmsghdr *unlh)
    213. 

  213. {
    214. 

  214. 	long tmo;
    215. 

  215. 	struct inet_diag_msg *r;
    216. 

  216. 	struct nlmsghdr *nlh;
    217. 

  217. 

  218. 	nlh = nlmsg_put(skb, pid, seq, unlh->nlmsg_type, sizeof(*r),
    219. 

  219. 			nlmsg_flags);
    220. 

  220. 	if (!nlh)
    221. 

  221. 		return -EMSGSIZE;
    222. 

  222. 

  223. 	r = nlmsg_data(nlh);
    224. 

  224. 	BUG_ON(tw->tw_state != TCP_TIME_WAIT);
    225. 

  225. 

  226. 	tmo = tw->tw_ttd - jiffies;
    227. 

  227. 	if (tmo < 0)
    228. 

  228. 		tmo = 0;
    229. 

  229. 

  230. 	r->idiag_family	      = tw->tw_family;
    231. 

  231. 	r->idiag_retrans      = 0;
    232. 

  232. 	r->id.idiag_if	      = tw->tw_bound_dev_if;
    233. 

  233. 	sock_diag_save_cookie(tw, r->id.idiag_cookie);
    234. 

  234. 	r->id.idiag_sport     = tw->tw_sport;
    235. 

  235. 	r->id.idiag_dport     = tw->tw_dport;
    236. 

  236. 	r->id.idiag_src[0]    = tw->tw_rcv_saddr;
    237. 

  237. 	r->id.idiag_dst[0]    = tw->tw_daddr;
    238. 

  238. 	r->idiag_state	      = tw->tw_substate;
    239. 

  239. 	r->idiag_timer	      = 3;
    240. 

  240. 	r->idiag_expires      = DIV_ROUND_UP(tmo * 1000, HZ);
    241. 

  241. 	r->idiag_rqueue	      = 0;
    242. 

  242. 	r->idiag_wqueue	      = 0;
    243. 

  243. 	r->idiag_uid	      = 0;
    244. 

  244. 	r->idiag_inode	      = 0;
    245. 

  245. #if IS_ENABLED(CONFIG_IPV6)
    246. 

  246. 	if (tw->tw_family == AF_INET6) {
    247. 

  247. 		const struct inet6_timewait_sock *tw6 =
    248. 

  248. 						inet6_twsk((struct sock *)tw);
    249. 

  249. 

  250. 		*(struct in6_addr *)r->id.idiag_src = tw6->tw_v6_rcv_saddr;
    251. 

  251. 		*(struct in6_addr *)r->id.idiag_dst = tw6->tw_v6_daddr;
    252. 

  252. 	}
    253. 

  253. #endif
    254. 

  254. 

  255. 	return nlmsg_end(skb, nlh);
    256. 

  256. }
    257. 

  257. 

  258. static int sk_diag_fill(struct sock *sk, struct sk_buff *skb,
    259. 

  259. 			struct inet_diag_req_v2 *r, u32 pid, u32 seq, u16 nlmsg_flags,
    260. 

  260. 			const struct nlmsghdr *unlh)
    261. 

  261. {
    262. 

  262. 	if (sk->sk_state == TCP_TIME_WAIT)
    263. 

  263. 		return inet_twsk_diag_fill((struct inet_timewait_sock *)sk,
    264. 

  264. 					   skb, r, pid, seq, nlmsg_flags,
    265. 

  265. 					   unlh);
    266. 

  266. 	return inet_csk_diag_fill(sk, skb, r, pid, seq, nlmsg_flags, unlh);
    267. 

  267. }
    268. 

  268. 

  269. int inet_diag_dump_one_icsk(struct inet_hashinfo *hashinfo, struct sk_buff *in_skb,
    270. 

  270. 		const struct nlmsghdr *nlh, struct inet_diag_req_v2 *req)
    271. 

  271. {
    272. 

  272. 	int err;
    273. 

  273. 	struct sock *sk;
    274. 

  274. 	struct sk_buff *rep;
    275. 

  275. 	struct net *net = sock_net(in_skb->sk);
    276. 

  276. 

  277. 	err = -EINVAL;
    278. 

  278. 	if (req->sdiag_family == AF_INET) {
    279. 

  279. 		sk = inet_lookup(net, hashinfo, req->id.idiag_dst[0],
    280. 

  280. 				 req->id.idiag_dport, req->id.idiag_src[0],
    281. 

  281. 				 req->id.idiag_sport, req->id.idiag_if);
    282. 

  282. 	}
    283. 

  283. #if IS_ENABLED(CONFIG_IPV6)
    284. 

  284. 	else if (req->sdiag_family == AF_INET6) {
    285. 

  285. 		sk = inet6_lookup(net, hashinfo,
    286. 

  286. 				  (struct in6_addr *)req->id.idiag_dst,
    287. 

  287. 				  req->id.idiag_dport,
    288. 

  288. 				  (struct in6_addr *)req->id.idiag_src,
    289. 

  289. 				  req->id.idiag_sport,
    290. 

  290. 				  req->id.idiag_if);
    291. 

  291. 	}
    292. 

  292. #endif
    293. 

  293. 	else {
    294. 

  294. 		goto out_nosk;
    295. 

  295. 	}
    296. 

  296. 

  297. 	err = -ENOENT;
    298. 

  298. 	if (sk == NULL)
    299. 

  299. 		goto out_nosk;
    300. 

  300. 

  301. 	err = sock_diag_check_cookie(sk, req->id.idiag_cookie);
    302. 

  302. 	if (err)
    303. 

  303. 		goto out;
    304. 

  304. 

  305. 	rep = nlmsg_new(sizeof(struct inet_diag_msg) +
    306. 

  306. 			sizeof(struct inet_diag_meminfo) +
    307. 

  307. 			sizeof(struct tcp_info) + 64, GFP_KERNEL);
    308. 

  308. 	if (!rep) {
    309. 

  309. 		err = -ENOMEM;
    310. 

  310. 		goto out;
    311. 

  311. 	}
    312. 

  312. 

  313. 	err = sk_diag_fill(sk, rep, req,
    314. 

  314. 			   NETLINK_CB(in_skb).pid,
    315. 

  315. 			   nlh->nlmsg_seq, 0, nlh);
    316. 

  316. 	if (err < 0) {
    317. 

  317. 		WARN_ON(err == -EMSGSIZE);
    318. 

  318. 		nlmsg_free(rep);
    319. 

  319. 		goto out;
    320. 

  320. 	}
    321. 

  321. 	err = netlink_unicast(net->diag_nlsk, rep, NETLINK_CB(in_skb).pid,
    322. 

  322. 			      MSG_DONTWAIT);
    323. 

  323. 	if (err > 0)
    324. 

  324. 		err = 0;
    325. 

  325. 

  326. out:
    327. 

  327. 	if (sk) {
    328. 

  328. 		if (sk->sk_state == TCP_TIME_WAIT)
    329. 

  329. 			inet_twsk_put((struct inet_timewait_sock *)sk);
    330. 

  330. 		else
    331. 

  331. 			sock_put(sk);
    332. 

  332. 	}
    333. 

  333. out_nosk:
    334. 

  334. 	return err;
    335. 

  335. }
    336. 

  336. EXPORT_SYMBOL_GPL(inet_diag_dump_one_icsk);
    337. 

  337. 

  338. static int inet_diag_get_exact(struct sk_buff *in_skb,
    339. 

  339. 			       const struct nlmsghdr *nlh,
    340. 

  340. 			       struct inet_diag_req_v2 *req)
    341. 

  341. {
    342. 

  342. 	const struct inet_diag_handler *handler;
    343. 

  343. 	int err;
    344. 

  344. 

  345. 	handler = inet_diag_lock_handler(req->sdiag_protocol);
    346. 

  346. 	if (IS_ERR(handler))
    347. 

  347. 		err = PTR_ERR(handler);
    348. 

  348. 	else
    349. 

  349. 		err = handler->dump_one(in_skb, nlh, req);
    350. 

  350. 	inet_diag_unlock_handler(handler);
    351. 

  351. 

  352. 	return err;
    353. 

  353. }
    354. 

  354. 

  355. static int bitstring_match(const __be32 *a1, const __be32 *a2, int bits)
    356. 

  356. {
    357. 

  357. 	int words = bits >> 5;
    358. 

  358. 

  359. 	bits &= 0x1f;
    360. 

  360. 

  361. 	if (words) {
    362. 

  362. 		if (memcmp(a1, a2, words << 2))
    363. 

  363. 			return 0;
    364. 

  364. 	}
    365. 

  365. 	if (bits) {
    366. 

  366. 		__be32 w1, w2;
    367. 

  367. 		__be32 mask;
    368. 

  368. 

  369. 		w1 = a1[words];
    370. 

  370. 		w2 = a2[words];
    371. 

  371. 

  372. 		mask = htonl((0xffffffff) << (32 - bits));
    373. 

  373. 

  374. 		if ((w1 ^ w2) & mask)
    375. 

  375. 			return 0;
    376. 

  376. 	}
    377. 

  377. 

  378. 	return 1;
    379. 

  379. }
    380. 

  380. 

  381. 

  382. static int inet_diag_bc_run(const struct nlattr *_bc,
    383. 

  383. 		const struct inet_diag_entry *entry)
    384. 

  384. {
    385. 

  385. 	const void *bc = nla_data(_bc);
    386. 

  386. 	int len = nla_len(_bc);
    387. 

  387. 

  388. 	while (len > 0) {
    389. 

  389. 		int yes = 1;
    390. 

  390. 		const struct inet_diag_bc_op *op = bc;
    391. 

  391. 

  392. 		switch (op->code) {
    393. 

  393. 		case INET_DIAG_BC_NOP:
    394. 

  394. 			break;
    395. 

  395. 		case INET_DIAG_BC_JMP:
    396. 

  396. 			yes = 0;
    397. 

  397. 			break;
    398. 

  398. 		case INET_DIAG_BC_S_GE:
    399. 

  399. 			yes = entry->sport >= op[1].no;
    400. 

  400. 			break;
    401. 

  401. 		case INET_DIAG_BC_S_LE:
    402. 

  402. 			yes = entry->sport <= op[1].no;
    403. 

  403. 			break;
    404. 

  404. 		case INET_DIAG_BC_D_GE:
    405. 

  405. 			yes = entry->dport >= op[1].no;
    406. 

  406. 			break;
    407. 

  407. 		case INET_DIAG_BC_D_LE:
    408. 

  408. 			yes = entry->dport <= op[1].no;
    409. 

  409. 			break;
    410. 

  410. 		case INET_DIAG_BC_AUTO:
    411. 

  411. 			yes = !(entry->userlocks & SOCK_BINDPORT_LOCK);
    412. 

  412. 			break;
    413. 

  413. 		case INET_DIAG_BC_S_COND:
    414. 

  414. 		case INET_DIAG_BC_D_COND: {
    415. 

  415. 			struct inet_diag_hostcond *cond;
    416. 

  416. 			__be32 *addr;
    417. 

  417. 

  418. 			cond = (struct inet_diag_hostcond *)(op + 1);
    419. 

  419. 			if (cond->port != -1 &&
    420. 

  420. 			    cond->port != (op->code == INET_DIAG_BC_S_COND ?
    421. 

  421. 					     entry->sport : entry->dport)) {
    422. 

  422. 				yes = 0;
    423. 

  423. 				break;
    424. 

  424. 			}
    425. 

  425. 

  426. 			if (cond->prefix_len == 0)
    427. 

  427. 				break;
    428. 

  428. 

  429. 			if (op->code == INET_DIAG_BC_S_COND)
    430. 

  430. 				addr = entry->saddr;
    431. 

  431. 			else
    432. 

  432. 				addr = entry->daddr;
    433. 

  433. 

  434. 			if (bitstring_match(addr, cond->addr,
    435. 

  435. 					    cond->prefix_len))
    436. 

  436. 				break;
    437. 

  437. 			if (entry->family == AF_INET6 &&
    438. 

  438. 			    cond->family == AF_INET) {
    439. 

  439. 				if (addr[0] == 0 && addr[1] == 0 &&
    440. 

  440. 				    addr[2] == htonl(0xffff) &&
    441. 

  441. 				    bitstring_match(addr + 3, cond->addr,
    442. 

  442. 						    cond->prefix_len))
    443. 

  443. 					break;
    444. 

  444. 			}
    445. 

  445. 			yes = 0;
    446. 

  446. 			break;
    447. 

  447. 		}
    448. 

  448. 		}
    449. 

  449. 

  450. 		if (yes) {
    451. 

  451. 			len -= op->yes;
    452. 

  452. 			bc += op->yes;
    453. 

  453. 		} else {
    454. 

  454. 			len -= op->no;
    455. 

  455. 			bc += op->no;
    456. 

  456. 		}
    457. 

  457. 	}
    458. 

  458. 	return len == 0;
    459. 

  459. }
    460. 

  460. 

  461. int inet_diag_bc_sk(const struct nlattr *bc, struct sock *sk)
    462. 

  462. {
    463. 

  463. 	struct inet_diag_entry entry;
    464. 

  464. 	struct inet_sock *inet = inet_sk(sk);
    465. 

  465. 

  466. 	if (bc == NULL)
    467. 

  467. 		return 1;
    468. 

  468. 

  469. 	entry.family = sk->sk_family;
    470. 

  470. #if IS_ENABLED(CONFIG_IPV6)
    471. 

  471. 	if (entry.family == AF_INET6) {
    472. 

  472. 		struct ipv6_pinfo *np = inet6_sk(sk);
    473. 

  473. 

  474. 		entry.saddr = np->rcv_saddr.s6_addr32;
    475. 

  475. 		entry.daddr = np->daddr.s6_addr32;
    476. 

  476. 	} else
    477. 

  477. #endif
    478. 

  478. 	{
    479. 

  479. 		entry.saddr = &inet->inet_rcv_saddr;
    480. 

  480. 		entry.daddr = &inet->inet_daddr;
    481. 

  481. 	}
    482. 

  482. 	entry.sport = inet->inet_num;
    483. 

  483. 	entry.dport = ntohs(inet->inet_dport);
    484. 

  484. 	entry.userlocks = sk->sk_userlocks;
    485. 

  485. 

  486. 	return inet_diag_bc_run(bc, &entry);
    487. 

  487. }
    488. 

  488. EXPORT_SYMBOL_GPL(inet_diag_bc_sk);
    489. 

  489. 

  490. static int valid_cc(const void *bc, int len, int cc)
    491. 

  491. {
    492. 

  492. 	while (len >= 0) {
    493. 

  493. 		const struct inet_diag_bc_op *op = bc;
    494. 

  494. 

  495. 		if (cc > len)
    496. 

  496. 			return 0;
    497. 

  497. 		if (cc == len)
    498. 

  498. 			return 1;
    499. 

  499. 		if (op->yes < 4 || op->yes & 3)
    500. 

  500. 			return 0;
    501. 

  501. 		len -= op->yes;
    502. 

  502. 		bc  += op->yes;
    503. 

  503. 	}
    504. 

  504. 	return 0;
    505. 

  505. }
    506. 

  506. 

  507. static int inet_diag_bc_audit(const void *bytecode, int bytecode_len)
    508. 

  508. {
    509. 

  509. 	const void *bc = bytecode;
    510. 

  510. 	int  len = bytecode_len;
    511. 

  511. 

  512. 	while (len > 0) {
    513. 

  513. 		const struct inet_diag_bc_op *op = bc;
    514. 

  514. 

  515. //printk("BC: %d %d %d {%d} / %d\n", op->code, op->yes, op->no, op[1].no, len);
    516. 

  516. 		switch (op->code) {
    517. 

  517. 		case INET_DIAG_BC_AUTO:
    518. 

  518. 		case INET_DIAG_BC_S_COND:
    519. 

  519. 		case INET_DIAG_BC_D_COND:
    520. 

  520. 		case INET_DIAG_BC_S_GE:
    521. 

  521. 		case INET_DIAG_BC_S_LE:
    522. 

  522. 		case INET_DIAG_BC_D_GE:
    523. 

  523. 		case INET_DIAG_BC_D_LE:
    524. 

  524. 		case INET_DIAG_BC_JMP:
    525. 

  525. 			if (op->no < 4 || op->no > len + 4 || op->no & 3)
    526. 

  526. 				return -EINVAL;
    527. 

  527. 			if (op->no < len &&
    528. 

  528. 			    !valid_cc(bytecode, bytecode_len, len - op->no))
    529. 

  529. 				return -EINVAL;
    530. 

  530. 			break;
    531. 

  531. 		case INET_DIAG_BC_NOP:
    532. 

  532. 			break;
    533. 

  533. 		default:
    534. 

  534. 			return -EINVAL;
    535. 

  535. 		}
    536. 

  536. 		if (op->yes < 4 || op->yes > len + 4 || op->yes & 3)
    537. 

  537. 			return -EINVAL;
    538. 

  538. 		bc  += op->yes;
    539. 

  539. 		len -= op->yes;
    540. 

  540. 	}
    541. 

  541. 	return len == 0 ? 0 : -EINVAL;
    542. 

  542. }
    543. 

  543. 

  544. static int inet_csk_diag_dump(struct sock *sk,
    545. 

  545. 			      struct sk_buff *skb,
    546. 

  546. 			      struct netlink_callback *cb,
    547. 

  547. 			      struct inet_diag_req_v2 *r,
    548. 

  548. 			      const struct nlattr *bc)
    549. 

  549. {
    550. 

  550. 	if (!inet_diag_bc_sk(bc, sk))
    551. 

  551. 		return 0;
    552. 

  552. 

  553. 	return inet_csk_diag_fill(sk, skb, r,
    554. 

  554. 				  NETLINK_CB(cb->skb).pid,
    555. 

  555. 				  cb->nlh->nlmsg_seq, NLM_F_MULTI, cb->nlh);
    556. 

  556. }
    557. 

  557. 

  558. static int inet_twsk_diag_dump(struct inet_timewait_sock *tw,
    559. 

  559. 			       struct sk_buff *skb,
    560. 

  560. 			       struct netlink_callback *cb,
    561. 

  561. 			       struct inet_diag_req_v2 *r,
    562. 

  562. 			       const struct nlattr *bc)
    563. 

  563. {
    564. 

  564. 	if (bc != NULL) {
    565. 

  565. 		struct inet_diag_entry entry;
    566. 

  566. 

  567. 		entry.family = tw->tw_family;
    568. 

  568. #if IS_ENABLED(CONFIG_IPV6)
    569. 

  569. 		if (tw->tw_family == AF_INET6) {
    570. 

  570. 			struct inet6_timewait_sock *tw6 =
    571. 

  571. 						inet6_twsk((struct sock *)tw);
    572. 

  572. 			entry.saddr = tw6->tw_v6_rcv_saddr.s6_addr32;
    573. 

  573. 			entry.daddr = tw6->tw_v6_daddr.s6_addr32;
    574. 

  574. 		} else
    575. 

  575. #endif
    576. 

  576. 		{
    577. 

  577. 			entry.saddr = &tw->tw_rcv_saddr;
    578. 

  578. 			entry.daddr = &tw->tw_daddr;
    579. 

  579. 		}
    580. 

  580. 		entry.sport = tw->tw_num;
    581. 

  581. 		entry.dport = ntohs(tw->tw_dport);
    582. 

  582. 		entry.userlocks = 0;
    583. 

  583. 

  584. 		if (!inet_diag_bc_run(bc, &entry))
    585. 

  585. 			return 0;
    586. 

  586. 	}
    587. 

  587. 

  588. 	return inet_twsk_diag_fill(tw, skb, r,
    589. 

  589. 				   NETLINK_CB(cb->skb).pid,
    590. 

  590. 				   cb->nlh->nlmsg_seq, NLM_F_MULTI, cb->nlh);
    591. 

  591. }
    592. 

  592. 

  593. static int inet_diag_fill_req(struct sk_buff *skb, struct sock *sk,
    594. 

  594. 			      struct request_sock *req, u32 pid, u32 seq,
    595. 

  595. 			      const struct nlmsghdr *unlh)
    596. 

  596. {
    597. 

  597. 	const struct inet_request_sock *ireq = inet_rsk(req);
    598. 

  598. 	struct inet_sock *inet = inet_sk(sk);
    599. 

  599. 	struct inet_diag_msg *r;
    600. 

  600. 	struct nlmsghdr *nlh;
    601. 

  601. 	long tmo;
    602. 

  602. 

  603. 	nlh = nlmsg_put(skb, pid, seq, unlh->nlmsg_type, sizeof(*r),
    604. 

  604. 			NLM_F_MULTI);
    605. 

  605. 	if (!nlh)
    606. 

  606. 		return -EMSGSIZE;
    607. 

  607. 

  608. 	r = nlmsg_data(nlh);
    609. 

  609. 	r->idiag_family = sk->sk_family;
    610. 

  610. 	r->idiag_state = TCP_SYN_RECV;
    611. 

  611. 	r->idiag_timer = 1;
    612. 

  612. 	r->idiag_retrans = req->retrans;
    613. 

  613. 

  614. 	r->id.idiag_if = sk->sk_bound_dev_if;
    615. 

  615. 	sock_diag_save_cookie(req, r->id.idiag_cookie);
    616. 

  616. 

  617. 	tmo = req->expires - jiffies;
    618. 

  618. 	if (tmo < 0)
    619. 

  619. 		tmo = 0;
    620. 

  620. 

  621. 	r->id.idiag_sport = inet->inet_sport;
    622. 

  622. 	r->id.idiag_dport = ireq->rmt_port;
    623. 

  623. 	r->id.idiag_src[0] = ireq->loc_addr;
    624. 

  624. 	r->id.idiag_dst[0] = ireq->rmt_addr;
    625. 

  625. 	r->idiag_expires = jiffies_to_msecs(tmo);
    626. 

  626. 	r->idiag_rqueue = 0;
    627. 

  627. 	r->idiag_wqueue = 0;
    628. 

  628. 	r->idiag_uid = sock_i_uid(sk);
    629. 

  629. 	r->idiag_inode = 0;
    630. 

  630. #if IS_ENABLED(CONFIG_IPV6)
    631. 

  631. 	if (r->idiag_family == AF_INET6) {
    632. 

  632. 		*(struct in6_addr *)r->id.idiag_src = inet6_rsk(req)->loc_addr;
    633. 

  633. 		*(struct in6_addr *)r->id.idiag_dst = inet6_rsk(req)->rmt_addr;
    634. 

  634. 	}
    635. 

  635. #endif
    636. 

  636. 

  637. 	return nlmsg_end(skb, nlh);
    638. 

  638. }
    639. 

  639. 

  640. static int inet_diag_dump_reqs(struct sk_buff *skb, struct sock *sk,
    641. 

  641. 			       struct netlink_callback *cb,
    642. 

  642. 			       struct inet_diag_req_v2 *r,
    643. 

  643. 			       const struct nlattr *bc)
    644. 

  644. {
    645. 

  645. 	struct inet_diag_entry entry;
    646. 

  646. 	struct inet_connection_sock *icsk = inet_csk(sk);
    647. 

  647. 	struct listen_sock *lopt;
    648. 

  648. 	struct inet_sock *inet = inet_sk(sk);
    649. 

  649. 	int j, s_j;
    650. 

  650. 	int reqnum, s_reqnum;
    651. 

  651. 	int err = 0;
    652. 

  652. 

  653. 	s_j = cb->args[3];
    654. 

  654. 	s_reqnum = cb->args[4];
    655. 

  655. 

  656. 	if (s_j > 0)
    657. 

  657. 		s_j--;
    658. 

  658. 

  659. 	entry.family = sk->sk_family;
    660. 

  660. 

  661. 	read_lock_bh(&icsk->icsk_accept_queue.syn_wait_lock);
    662. 

  662. 

  663. 	lopt = icsk->icsk_accept_queue.listen_opt;
    664. 

  664. 	if (!lopt || !lopt->qlen)
    665. 

  665. 		goto out;
    666. 

  666. 

  667. 	if (bc != NULL) {
    668. 

  668. 		entry.sport = inet->inet_num;
    669. 

  669. 		entry.userlocks = sk->sk_userlocks;
    670. 

  670. 	}
    671. 

  671. 

  672. 	for (j = s_j; j < lopt->nr_table_entries; j++) {
    673. 

  673. 		struct request_sock *req, *head = lopt->syn_table[j];
    674. 

  674. 

  675. 		reqnum = 0;
    676. 

  676. 		for (req = head; req; reqnum++, req = req->dl_next) {
    677. 

  677. 			struct inet_request_sock *ireq = inet_rsk(req);
    678. 

  678. 

  679. 			if (reqnum < s_reqnum)
    680. 

  680. 				continue;
    681. 

  681. 			if (r->id.idiag_dport != ireq->rmt_port &&
    682. 

  682. 			    r->id.idiag_dport)
    683. 

  683. 				continue;
    684. 

  684. 

  685. 			if (bc) {
    686. 

  686. 				entry.saddr =
    687. 

  687. #if IS_ENABLED(CONFIG_IPV6)
    688. 

  688. 					(entry.family == AF_INET6) ?
    689. 

  689. 					inet6_rsk(req)->loc_addr.s6_addr32 :
    690. 

  690. #endif
    691. 

  691. 					&ireq->loc_addr;
    692. 

  692. 				entry.daddr =
    693. 

  693. #if IS_ENABLED(CONFIG_IPV6)
    694. 

  694. 					(entry.family == AF_INET6) ?
    695. 

  695. 					inet6_rsk(req)->rmt_addr.s6_addr32 :
    696. 

  696. #endif
    697. 

  697. 					&ireq->rmt_addr;
    698. 

  698. 				entry.dport = ntohs(ireq->rmt_port);
    699. 

  699. 

  700. 				if (!inet_diag_bc_run(bc, &entry))
    701. 

  701. 					continue;
    702. 

  702. 			}
    703. 

  703. 

  704. 			err = inet_diag_fill_req(skb, sk, req,
    705. 

  705. 					       NETLINK_CB(cb->skb).pid,
    706. 

  706. 					       cb->nlh->nlmsg_seq, cb->nlh);
    707. 

  707. 			if (err < 0) {
    708. 

  708. 				cb->args[3] = j + 1;
    709. 

  709. 				cb->args[4] = reqnum;
    710. 

  710. 				goto out;
    711. 

  711. 			}
    712. 

  712. 		}
    713. 

  713. 

  714. 		s_reqnum = 0;
    715. 

  715. 	}
    716. 

  716. 

  717. out:
    718. 

  718. 	read_unlock_bh(&icsk->icsk_accept_queue.syn_wait_lock);
    719. 

  719. 

  720. 	return err;
    721. 

  721. }
    722. 

  722. 

  723. void inet_diag_dump_icsk(struct inet_hashinfo *hashinfo, struct sk_buff *skb,
    724. 

  724. 		struct netlink_callback *cb, struct inet_diag_req_v2 *r, struct nlattr *bc)
    725. 

  725. {
    726. 

  726. 	int i, num;
    727. 

  727. 	int s_i, s_num;
    728. 

  728. 	struct net *net = sock_net(skb->sk);
    729. 

  729. 

  730. 	s_i = cb->args[1];
    731. 

  731. 	s_num = num = cb->args[2];
    732. 

  732. 

  733. 	if (cb->args[0] == 0) {
    734. 

  734. 		if (!(r->idiag_states & (TCPF_LISTEN | TCPF_SYN_RECV)))
    735. 

  735. 			goto skip_listen_ht;
    736. 

  736. 

  737. 		for (i = s_i; i < INET_LHTABLE_SIZE; i++) {
    738. 

  738. 			struct sock *sk;
    739. 

  739. 			struct hlist_nulls_node *node;
    740. 

  740. 			struct inet_listen_hashbucket *ilb;
    741. 

  741. 

  742. 			num = 0;
    743. 

  743. 			ilb = &hashinfo->listening_hash[i];
    744. 

  744. 			spin_lock_bh(&ilb->lock);
    745. 

  745. 			sk_nulls_for_each(sk, node, &ilb->head) {
    746. 

  746. 				struct inet_sock *inet = inet_sk(sk);
    747. 

  747. 

  748. 				if (!net_eq(sock_net(sk), net))
    749. 

  749. 					continue;
    750. 

  750. 

  751. 				if (num < s_num) {
    752. 

  752. 					num++;
    753. 

  753. 					continue;
    754. 

  754. 				}
    755. 

  755. 

  756. 				if (r->sdiag_family != AF_UNSPEC &&
    757. 

  757. 						sk->sk_family != r->sdiag_family)
    758. 

  758. 					goto next_listen;
    759. 

  759. 

  760. 				if (r->id.idiag_sport != inet->inet_sport &&
    761. 

  761. 				    r->id.idiag_sport)
    762. 

  762. 					goto next_listen;
    763. 

  763. 

  764. 				if (!(r->idiag_states & TCPF_LISTEN) ||
    765. 

  765. 				    r->id.idiag_dport ||
    766. 

  766. 				    cb->args[3] > 0)
    767. 

  767. 					goto syn_recv;
    768. 

  768. 

  769. 				if (inet_csk_diag_dump(sk, skb, cb, r, bc) < 0) {
    770. 

  770. 					spin_unlock_bh(&ilb->lock);
    771. 

  771. 					goto done;
    772. 

  772. 				}
    773. 

  773. 

  774. syn_recv:
    775. 

  775. 				if (!(r->idiag_states & TCPF_SYN_RECV))
    776. 

  776. 					goto next_listen;
    777. 

  777. 

  778. 				if (inet_diag_dump_reqs(skb, sk, cb, r, bc) < 0) {
    779. 

  779. 					spin_unlock_bh(&ilb->lock);
    780. 

  780. 					goto done;
    781. 

  781. 				}
    782. 

  782. 

  783. next_listen:
    784. 

  784. 				cb->args[3] = 0;
    785. 

  785. 				cb->args[4] = 0;
    786. 

  786. 				++num;
    787. 

  787. 			}
    788. 

  788. 			spin_unlock_bh(&ilb->lock);
    789. 

  789. 

  790. 			s_num = 0;
    791. 

  791. 			cb->args[3] = 0;
    792. 

  792. 			cb->args[4] = 0;
    793. 

  793. 		}
    794. 

  794. skip_listen_ht:
    795. 

  795. 		cb->args[0] = 1;
    796. 

  796. 		s_i = num = s_num = 0;
    797. 

  797. 	}
    798. 

  798. 

  799. 	if (!(r->idiag_states & ~(TCPF_LISTEN | TCPF_SYN_RECV)))
    800. 

  800. 		goto out;
    801. 

  801. 

  802. 	for (i = s_i; i <= hashinfo->ehash_mask; i++) {
    803. 

  803. 		struct inet_ehash_bucket *head = &hashinfo->ehash[i];
    804. 

  804. 		spinlock_t *lock = inet_ehash_lockp(hashinfo, i);
    805. 

  805. 		struct sock *sk;
    806. 

  806. 		struct hlist_nulls_node *node;
    807. 

  807. 

  808. 		num = 0;
    809. 

  809. 

  810. 		if (hlist_nulls_empty(&head->chain) &&
    811. 

  811. 			hlist_nulls_empty(&head->twchain))
    812. 

  812. 			continue;
    813. 

  813. 

  814. 		if (i > s_i)
    815. 

  815. 			s_num = 0;
    816. 

  816. 

  817. 		spin_lock_bh(lock);
    818. 

  818. 		sk_nulls_for_each(sk, node, &head->chain) {
    819. 

  819. 			struct inet_sock *inet = inet_sk(sk);
    820. 

  820. 

  821. 			if (!net_eq(sock_net(sk), net))
    822. 

  822. 				continue;
    823. 

  823. 			if (num < s_num)
    824. 

  824. 				goto next_normal;
    825. 

  825. 			if (!(r->idiag_states & (1 << sk->sk_state)))
    826. 

  826. 				goto next_normal;
    827. 

  827. 			if (r->sdiag_family != AF_UNSPEC &&
    828. 

  828. 					sk->sk_family != r->sdiag_family)
    829. 

  829. 				goto next_normal;
    830. 

  830. 			if (r->id.idiag_sport != inet->inet_sport &&
    831. 

  831. 			    r->id.idiag_sport)
    832. 

  832. 				goto next_normal;
    833. 

  833. 			if (r->id.idiag_dport != inet->inet_dport &&
    834. 

  834. 			    r->id.idiag_dport)
    835. 

  835. 				goto next_normal;
    836. 

  836. 			if (inet_csk_diag_dump(sk, skb, cb, r, bc) < 0) {
    837. 

  837. 				spin_unlock_bh(lock);
    838. 

  838. 				goto done;
    839. 

  839. 			}
    840. 

  840. next_normal:
    841. 

  841. 			++num;
    842. 

  842. 		}
    843. 

  843. 

  844. 		if (r->idiag_states & TCPF_TIME_WAIT) {
    845. 

  845. 			struct inet_timewait_sock *tw;
    846. 

  846. 

  847. 			inet_twsk_for_each(tw, node,
    848. 

  848. 				    &head->twchain) {
    849. 

  849. 				if (!net_eq(twsk_net(tw), net))
    850. 

  850. 					continue;
    851. 

  851. 

  852. 				if (num < s_num)
    853. 

  853. 					goto next_dying;
    854. 

  854. 				if (r->sdiag_family != AF_UNSPEC &&
    855. 

  855. 						tw->tw_family != r->sdiag_family)
    856. 

  856. 					goto next_dying;
    857. 

  857. 				if (r->id.idiag_sport != tw->tw_sport &&
    858. 

  858. 				    r->id.idiag_sport)
    859. 

  859. 					goto next_dying;
    860. 

  860. 				if (r->id.idiag_dport != tw->tw_dport &&
    861. 

  861. 				    r->id.idiag_dport)
    862. 

  862. 					goto next_dying;
    863. 

  863. 				if (inet_twsk_diag_dump(tw, skb, cb, r, bc) < 0) {
    864. 

  864. 					spin_unlock_bh(lock);
    865. 

  865. 					goto done;
    866. 

  866. 				}
    867. 

  867. next_dying:
    868. 

  868. 				++num;
    869. 

  869. 			}
    870. 

  870. 		}
    871. 

  871. 		spin_unlock_bh(lock);
    872. 

  872. 	}
    873. 

  873. 

  874. done:
    875. 

  875. 	cb->args[1] = i;
    876. 

  876. 	cb->args[2] = num;
    877. 

  877. out:
    878. 

  878. 	;
    879. 

  879. }
    880. 

  880. EXPORT_SYMBOL_GPL(inet_diag_dump_icsk);
    881. 

  881. 

  882. static int __inet_diag_dump(struct sk_buff *skb, struct netlink_callback *cb,
    883. 

  883. 		struct inet_diag_req_v2 *r, struct nlattr *bc)
    884. 

  884. {
    885. 

  885. 	const struct inet_diag_handler *handler;
    886. 

  886. 

  887. 	handler = inet_diag_lock_handler(r->sdiag_protocol);
    888. 

  888. 	if (!IS_ERR(handler))
    889. 

  889. 		handler->dump(skb, cb, r, bc);
    890. 

  890. 	inet_diag_unlock_handler(handler);
    891. 

  891. 

  892. 	return skb->len;
    893. 

  893. }
    894. 

  894. 

  895. static int inet_diag_dump(struct sk_buff *skb, struct netlink_callback *cb)
    896. 

  896. {
    897. 

  897. 	struct nlattr *bc = NULL;
    898. 

  898. 	int hdrlen = sizeof(struct inet_diag_req_v2);
    899. 

  899. 

  900. 	if (nlmsg_attrlen(cb->nlh, hdrlen))
    901. 

  901. 		bc = nlmsg_find_attr(cb->nlh, hdrlen, INET_DIAG_REQ_BYTECODE);
    902. 

  902. 

  903. 	return __inet_diag_dump(skb, cb, nlmsg_data(cb->nlh), bc);
    904. 

  904. }
    905. 

  905. 

  906. static inline int inet_diag_type2proto(int type)
    907. 

  907. {
    908. 

  908. 	switch (type) {
    909. 

  909. 	case TCPDIAG_GETSOCK:
    910. 

  910. 		return IPPROTO_TCP;
    911. 

  911. 	case DCCPDIAG_GETSOCK:
    912. 

  912. 		return IPPROTO_DCCP;
    913. 

  913. 	default:
    914. 

  914. 		return 0;
    915. 

  915. 	}
    916. 

  916. }
    917. 

  917. 

  918. static int inet_diag_dump_compat(struct sk_buff *skb, struct netlink_callback *cb)
    919. 

  919. {
    920. 

  920. 	struct inet_diag_req *rc = nlmsg_data(cb->nlh);
    921. 

  921. 	struct inet_diag_req_v2 req;
    922. 

  922. 	struct nlattr *bc = NULL;
    923. 

  923. 	int hdrlen = sizeof(struct inet_diag_req);
    924. 

  924. 

  925. 	req.sdiag_family = AF_UNSPEC; /* compatibility */
    926. 

  926. 	req.sdiag_protocol = inet_diag_type2proto(cb->nlh->nlmsg_type);
    927. 

  927. 	req.idiag_ext = rc->idiag_ext;
    928. 

  928. 	req.idiag_states = rc->idiag_states;
    929. 

  929. 	req.id = rc->id;
    930. 

  930. 

  931. 	if (nlmsg_attrlen(cb->nlh, hdrlen))
    932. 

  932. 		bc = nlmsg_find_attr(cb->nlh, hdrlen, INET_DIAG_REQ_BYTECODE);
    933. 

  933. 

  934. 	return __inet_diag_dump(skb, cb, &req, bc);
    935. 

  935. }
    936. 

  936. 

  937. static int inet_diag_get_exact_compat(struct sk_buff *in_skb,
    938. 

  938. 			       const struct nlmsghdr *nlh)
    939. 

  939. {
    940. 

  940. 	struct inet_diag_req *rc = nlmsg_data(nlh);
    941. 

  941. 	struct inet_diag_req_v2 req;
    942. 

  942. 

  943. 	req.sdiag_family = rc->idiag_family;
    944. 

  944. 	req.sdiag_protocol = inet_diag_type2proto(nlh->nlmsg_type);
    945. 

  945. 	req.idiag_ext = rc->idiag_ext;
    946. 

  946. 	req.idiag_states = rc->idiag_states;
    947. 

  947. 	req.id = rc->id;
    948. 

  948. 

  949. 	return inet_diag_get_exact(in_skb, nlh, &req);
    950. 

  950. }
    951. 

  951. 

  952. static int inet_diag_rcv_msg_compat(struct sk_buff *skb, struct nlmsghdr *nlh)
    953. 

  953. {
    954. 

  954. 	int hdrlen = sizeof(struct inet_diag_req);
    955. 

  955. 	struct net *net = sock_net(skb->sk);
    956. 

  956. 

  957. 	if (nlh->nlmsg_type >= INET_DIAG_GETSOCK_MAX ||
    958. 

  958. 	    nlmsg_len(nlh) < hdrlen)
    959. 

  959. 		return -EINVAL;
    960. 

  960. 

  961. 	if (nlh->nlmsg_flags & NLM_F_DUMP) {
    962. 

  962. 		if (nlmsg_attrlen(nlh, hdrlen)) {
    963. 

  963. 			struct nlattr *attr;
    964. 

  964. 

  965. 			attr = nlmsg_find_attr(nlh, hdrlen,
    966. 

  966. 					       INET_DIAG_REQ_BYTECODE);
    967. 

  967. 			if (attr == NULL ||
    968. 

  968. 			    nla_len(attr) < sizeof(struct inet_diag_bc_op) ||
    969. 

  969. 			    inet_diag_bc_audit(nla_data(attr), nla_len(attr)))
    970. 

  970. 				return -EINVAL;
    971. 

  971. 		}
    972. 

  972. 		{
    973. 

  973. 			struct netlink_dump_control c = {
    974. 

  974. 				.dump = inet_diag_dump_compat,
    975. 

  975. 			};
    976. 

  976. 			return netlink_dump_start(net->diag_nlsk, skb, nlh, &c);
    977. 

  977. 		}
    978. 

  978. 	}
    979. 

  979. 

  980. 	return inet_diag_get_exact_compat(skb, nlh);
    981. 

  981. }
    982. 

  982. 

  983. static int inet_diag_handler_dump(struct sk_buff *skb, struct nlmsghdr *h)
    984. 

  984. {
    985. 

  985. 	int hdrlen = sizeof(struct inet_diag_req_v2);
    986. 

  986. 	struct net *net = sock_net(skb->sk);
    987. 

  987. 

  988. 	if (nlmsg_len(h) < hdrlen)
    989. 

  989. 		return -EINVAL;
    990. 

  990. 

  991. 	if (h->nlmsg_flags & NLM_F_DUMP) {
    992. 

  992. 		if (nlmsg_attrlen(h, hdrlen)) {
    993. 

  993. 			struct nlattr *attr;
    994. 

  994. 			attr = nlmsg_find_attr(h, hdrlen,
    995. 

  995. 					       INET_DIAG_REQ_BYTECODE);
    996. 

  996. 			if (attr == NULL ||
    997. 

  997. 			    nla_len(attr) < sizeof(struct inet_diag_bc_op) ||
    998. 

  998. 			    inet_diag_bc_audit(nla_data(attr), nla_len(attr)))
    999. 

  999. 				return -EINVAL;
    1000. 

  1000. 		}
    1001. 

  1001. 		{
    1002. 

  1002. 			struct netlink_dump_control c = {
    1003. 

  1003. 				.dump = inet_diag_dump,
    1004. 

  1004. 			};
    1005. 

  1005. 			return netlink_dump_start(net->diag_nlsk, skb, h, &c);
    1006. 

  1006. 		}
    1007. 

  1007. 	}
    1008. 

  1008. 

  1009. 	return inet_diag_get_exact(skb, h, nlmsg_data(h));
    1010. 

  1010. }
    1011. 

  1011. 

  1012. static const struct sock_diag_handler inet_diag_handler = {
    1013. 

  1013. 	.family = AF_INET,
    1014. 

  1014. 	.dump = inet_diag_handler_dump,
    1015. 

  1015. };
    1016. 

  1016. 

  1017. static const struct sock_diag_handler inet6_diag_handler = {
    1018. 

  1018. 	.family = AF_INET6,
    1019. 

  1019. 	.dump = inet_diag_handler_dump,
    1020. 

  1020. };
    1021. 

  1021. 

  1022. int inet_diag_register(const struct inet_diag_handler *h)
    1023. 

  1023. {
    1024. 

  1024. 	const __u16 type = h->idiag_type;
    1025. 

  1025. 	int err = -EINVAL;
    1026. 

  1026. 

  1027. 	if (type >= IPPROTO_MAX)
    1028. 

  1028. 		goto out;
    1029. 

  1029. 

  1030. 	mutex_lock(&inet_diag_table_mutex);
    1031. 

  1031. 	err = -EEXIST;
    1032. 

  1032. 	if (inet_diag_table[type] == NULL) {
    1033. 

  1033. 		inet_diag_table[type] = h;
    1034. 

  1034. 		err = 0;
    1035. 

  1035. 	}
    1036. 

  1036. 	mutex_unlock(&inet_diag_table_mutex);
    1037. 

  1037. out:
    1038. 

  1038. 	return err;
    1039. 

  1039. }
    1040. 

  1040. EXPORT_SYMBOL_GPL(inet_diag_register);
    1041. 

  1041. 

  1042. void inet_diag_unregister(const struct inet_diag_handler *h)
    1043. 

  1043. {
    1044. 

  1044. 	const __u16 type = h->idiag_type;
    1045. 

  1045. 

  1046. 	if (type >= IPPROTO_MAX)
    1047. 

  1047. 		return;
    1048. 

  1048. 

  1049. 	mutex_lock(&inet_diag_table_mutex);
    1050. 

  1050. 	inet_diag_table[type] = NULL;
    1051. 

  1051. 	mutex_unlock(&inet_diag_table_mutex);
    1052. 

  1052. }
    1053. 

  1053. EXPORT_SYMBOL_GPL(inet_diag_unregister);
    1054. 

  1054. 

  1055. static int __init inet_diag_init(void)
    1056. 

  1056. {
    1057. 

  1057. 	const int inet_diag_table_size = (IPPROTO_MAX *
    1058. 

  1058. 					  sizeof(struct inet_diag_handler *));
    1059. 

  1059. 	int err = -ENOMEM;
    1060. 

  1060. 

  1061. 	inet_diag_table = kzalloc(inet_diag_table_size, GFP_KERNEL);
    1062. 

  1062. 	if (!inet_diag_table)
    1063. 

  1063. 		goto out;
    1064. 

  1064. 

  1065. 	err = sock_diag_register(&inet_diag_handler);
    1066. 

  1066. 	if (err)
    1067. 

  1067. 		goto out_free_nl;
    1068. 

  1068. 

  1069. 	err = sock_diag_register(&inet6_diag_handler);
    1070. 

  1070. 	if (err)
    1071. 

  1071. 		goto out_free_inet;
    1072. 

  1072. 

  1073. 	sock_diag_register_inet_compat(inet_diag_rcv_msg_compat);
    1074. 

  1074. out:
    1075. 

  1075. 	return err;
    1076. 

  1076. 

  1077. out_free_inet:
    1078. 

  1078. 	sock_diag_unregister(&inet_diag_handler);
    1079. 

  1079. out_free_nl:
    1080. 

  1080. 	kfree(inet_diag_table);
    1081. 

  1081. 	goto out;
    1082. 

  1082. }
    1083. 

  1083. 

  1084. static void __exit inet_diag_exit(void)
    1085. 

  1085. {
    1086. 

  1086. 	sock_diag_unregister(&inet6_diag_handler);
    1087. 

  1087. 	sock_diag_unregister(&inet_diag_handler);
    1088. 

  1088. 	sock_diag_unregister_inet_compat(inet_diag_rcv_msg_compat);
    1089. 

  1089. 	kfree(inet_diag_table);
    1090. 

  1090. }
    1091. 

  1091. 

  1092. module_init(inet_diag_init);
    1093. 

  1093. module_exit(inet_diag_exit);
    1094. 

  1094. MODULE_LICENSE("GPL");
    1095. 

  1095. MODULE_ALIAS_NET_PF_PROTO_TYPE(PF_NETLINK, NETLINK_SOCK_DIAG, 2 /* AF_INET */);
    1096. 

  1096. MODULE_ALIAS_NET_PF_PROTO_TYPE(PF_NETLINK, NETLINK_SOCK_DIAG, 10 /* AF_INET6 */);
    1097.