18c2ecf20Sopenharmony_ci// SPDX-License-Identifier: GPL-2.0-or-later 28c2ecf20Sopenharmony_ci/* 38c2ecf20Sopenharmony_ci * IP Payload Compression Protocol (IPComp) - RFC3173. 48c2ecf20Sopenharmony_ci * 58c2ecf20Sopenharmony_ci * Copyright (c) 2003 James Morris <jmorris@intercode.com.au> 68c2ecf20Sopenharmony_ci * 78c2ecf20Sopenharmony_ci * Todo: 88c2ecf20Sopenharmony_ci * - Tunable compression parameters. 98c2ecf20Sopenharmony_ci * - Compression stats. 108c2ecf20Sopenharmony_ci * - Adaptive compression. 118c2ecf20Sopenharmony_ci */ 128c2ecf20Sopenharmony_ci#include <linux/module.h> 138c2ecf20Sopenharmony_ci#include <linux/err.h> 148c2ecf20Sopenharmony_ci#include <linux/rtnetlink.h> 158c2ecf20Sopenharmony_ci#include <net/ip.h> 168c2ecf20Sopenharmony_ci#include <net/xfrm.h> 178c2ecf20Sopenharmony_ci#include <net/icmp.h> 188c2ecf20Sopenharmony_ci#include <net/ipcomp.h> 198c2ecf20Sopenharmony_ci#include <net/protocol.h> 208c2ecf20Sopenharmony_ci#include <net/sock.h> 218c2ecf20Sopenharmony_ci 228c2ecf20Sopenharmony_cistatic int ipcomp4_err(struct sk_buff *skb, u32 info) 238c2ecf20Sopenharmony_ci{ 248c2ecf20Sopenharmony_ci struct net *net = dev_net(skb->dev); 258c2ecf20Sopenharmony_ci __be32 spi; 268c2ecf20Sopenharmony_ci const struct iphdr *iph = (const struct iphdr *)skb->data; 278c2ecf20Sopenharmony_ci struct ip_comp_hdr *ipch = (struct ip_comp_hdr *)(skb->data+(iph->ihl<<2)); 288c2ecf20Sopenharmony_ci struct xfrm_state *x; 298c2ecf20Sopenharmony_ci 308c2ecf20Sopenharmony_ci switch (icmp_hdr(skb)->type) { 318c2ecf20Sopenharmony_ci case ICMP_DEST_UNREACH: 328c2ecf20Sopenharmony_ci if (icmp_hdr(skb)->code != ICMP_FRAG_NEEDED) 338c2ecf20Sopenharmony_ci return 0; 348c2ecf20Sopenharmony_ci case ICMP_REDIRECT: 358c2ecf20Sopenharmony_ci break; 368c2ecf20Sopenharmony_ci default: 378c2ecf20Sopenharmony_ci return 0; 388c2ecf20Sopenharmony_ci } 398c2ecf20Sopenharmony_ci 408c2ecf20Sopenharmony_ci spi = htonl(ntohs(ipch->cpi)); 418c2ecf20Sopenharmony_ci x = xfrm_state_lookup(net, skb->mark, (const xfrm_address_t *)&iph->daddr, 428c2ecf20Sopenharmony_ci spi, IPPROTO_COMP, AF_INET); 438c2ecf20Sopenharmony_ci if (!x) 448c2ecf20Sopenharmony_ci return 0; 458c2ecf20Sopenharmony_ci 468c2ecf20Sopenharmony_ci if (icmp_hdr(skb)->type == ICMP_DEST_UNREACH) 478c2ecf20Sopenharmony_ci ipv4_update_pmtu(skb, net, info, 0, IPPROTO_COMP); 488c2ecf20Sopenharmony_ci else 498c2ecf20Sopenharmony_ci ipv4_redirect(skb, net, 0, IPPROTO_COMP); 508c2ecf20Sopenharmony_ci xfrm_state_put(x); 518c2ecf20Sopenharmony_ci 528c2ecf20Sopenharmony_ci return 0; 538c2ecf20Sopenharmony_ci} 548c2ecf20Sopenharmony_ci 558c2ecf20Sopenharmony_ci/* We always hold one tunnel user reference to indicate a tunnel */ 568c2ecf20Sopenharmony_cistatic struct xfrm_state *ipcomp_tunnel_create(struct xfrm_state *x) 578c2ecf20Sopenharmony_ci{ 588c2ecf20Sopenharmony_ci struct net *net = xs_net(x); 598c2ecf20Sopenharmony_ci struct xfrm_state *t; 608c2ecf20Sopenharmony_ci 618c2ecf20Sopenharmony_ci t = xfrm_state_alloc(net); 628c2ecf20Sopenharmony_ci if (!t) 638c2ecf20Sopenharmony_ci goto out; 648c2ecf20Sopenharmony_ci 658c2ecf20Sopenharmony_ci t->id.proto = IPPROTO_IPIP; 668c2ecf20Sopenharmony_ci t->id.spi = x->props.saddr.a4; 678c2ecf20Sopenharmony_ci t->id.daddr.a4 = x->id.daddr.a4; 688c2ecf20Sopenharmony_ci memcpy(&t->sel, &x->sel, sizeof(t->sel)); 698c2ecf20Sopenharmony_ci t->props.family = AF_INET; 708c2ecf20Sopenharmony_ci t->props.mode = x->props.mode; 718c2ecf20Sopenharmony_ci t->props.saddr.a4 = x->props.saddr.a4; 728c2ecf20Sopenharmony_ci t->props.flags = x->props.flags; 738c2ecf20Sopenharmony_ci t->props.extra_flags = x->props.extra_flags; 748c2ecf20Sopenharmony_ci memcpy(&t->mark, &x->mark, sizeof(t->mark)); 758c2ecf20Sopenharmony_ci t->if_id = x->if_id; 768c2ecf20Sopenharmony_ci 778c2ecf20Sopenharmony_ci if (xfrm_init_state(t)) 788c2ecf20Sopenharmony_ci goto error; 798c2ecf20Sopenharmony_ci 808c2ecf20Sopenharmony_ci atomic_set(&t->tunnel_users, 1); 818c2ecf20Sopenharmony_ciout: 828c2ecf20Sopenharmony_ci return t; 838c2ecf20Sopenharmony_ci 848c2ecf20Sopenharmony_cierror: 858c2ecf20Sopenharmony_ci t->km.state = XFRM_STATE_DEAD; 868c2ecf20Sopenharmony_ci xfrm_state_put(t); 878c2ecf20Sopenharmony_ci t = NULL; 888c2ecf20Sopenharmony_ci goto out; 898c2ecf20Sopenharmony_ci} 908c2ecf20Sopenharmony_ci 918c2ecf20Sopenharmony_ci/* 928c2ecf20Sopenharmony_ci * Must be protected by xfrm_cfg_mutex. State and tunnel user references are 938c2ecf20Sopenharmony_ci * always incremented on success. 948c2ecf20Sopenharmony_ci */ 958c2ecf20Sopenharmony_cistatic int ipcomp_tunnel_attach(struct xfrm_state *x) 968c2ecf20Sopenharmony_ci{ 978c2ecf20Sopenharmony_ci struct net *net = xs_net(x); 988c2ecf20Sopenharmony_ci int err = 0; 998c2ecf20Sopenharmony_ci struct xfrm_state *t; 1008c2ecf20Sopenharmony_ci u32 mark = x->mark.v & x->mark.m; 1018c2ecf20Sopenharmony_ci 1028c2ecf20Sopenharmony_ci t = xfrm_state_lookup(net, mark, (xfrm_address_t *)&x->id.daddr.a4, 1038c2ecf20Sopenharmony_ci x->props.saddr.a4, IPPROTO_IPIP, AF_INET); 1048c2ecf20Sopenharmony_ci if (!t) { 1058c2ecf20Sopenharmony_ci t = ipcomp_tunnel_create(x); 1068c2ecf20Sopenharmony_ci if (!t) { 1078c2ecf20Sopenharmony_ci err = -EINVAL; 1088c2ecf20Sopenharmony_ci goto out; 1098c2ecf20Sopenharmony_ci } 1108c2ecf20Sopenharmony_ci xfrm_state_insert(t); 1118c2ecf20Sopenharmony_ci xfrm_state_hold(t); 1128c2ecf20Sopenharmony_ci } 1138c2ecf20Sopenharmony_ci x->tunnel = t; 1148c2ecf20Sopenharmony_ci atomic_inc(&t->tunnel_users); 1158c2ecf20Sopenharmony_ciout: 1168c2ecf20Sopenharmony_ci return err; 1178c2ecf20Sopenharmony_ci} 1188c2ecf20Sopenharmony_ci 1198c2ecf20Sopenharmony_cistatic int ipcomp4_init_state(struct xfrm_state *x) 1208c2ecf20Sopenharmony_ci{ 1218c2ecf20Sopenharmony_ci int err = -EINVAL; 1228c2ecf20Sopenharmony_ci 1238c2ecf20Sopenharmony_ci x->props.header_len = 0; 1248c2ecf20Sopenharmony_ci switch (x->props.mode) { 1258c2ecf20Sopenharmony_ci case XFRM_MODE_TRANSPORT: 1268c2ecf20Sopenharmony_ci break; 1278c2ecf20Sopenharmony_ci case XFRM_MODE_TUNNEL: 1288c2ecf20Sopenharmony_ci x->props.header_len += sizeof(struct iphdr); 1298c2ecf20Sopenharmony_ci break; 1308c2ecf20Sopenharmony_ci default: 1318c2ecf20Sopenharmony_ci goto out; 1328c2ecf20Sopenharmony_ci } 1338c2ecf20Sopenharmony_ci 1348c2ecf20Sopenharmony_ci err = ipcomp_init_state(x); 1358c2ecf20Sopenharmony_ci if (err) 1368c2ecf20Sopenharmony_ci goto out; 1378c2ecf20Sopenharmony_ci 1388c2ecf20Sopenharmony_ci if (x->props.mode == XFRM_MODE_TUNNEL) { 1398c2ecf20Sopenharmony_ci err = ipcomp_tunnel_attach(x); 1408c2ecf20Sopenharmony_ci if (err) 1418c2ecf20Sopenharmony_ci goto out; 1428c2ecf20Sopenharmony_ci } 1438c2ecf20Sopenharmony_ci 1448c2ecf20Sopenharmony_ci err = 0; 1458c2ecf20Sopenharmony_ciout: 1468c2ecf20Sopenharmony_ci return err; 1478c2ecf20Sopenharmony_ci} 1488c2ecf20Sopenharmony_ci 1498c2ecf20Sopenharmony_cistatic int ipcomp4_rcv_cb(struct sk_buff *skb, int err) 1508c2ecf20Sopenharmony_ci{ 1518c2ecf20Sopenharmony_ci return 0; 1528c2ecf20Sopenharmony_ci} 1538c2ecf20Sopenharmony_ci 1548c2ecf20Sopenharmony_cistatic const struct xfrm_type ipcomp_type = { 1558c2ecf20Sopenharmony_ci .description = "IPCOMP4", 1568c2ecf20Sopenharmony_ci .owner = THIS_MODULE, 1578c2ecf20Sopenharmony_ci .proto = IPPROTO_COMP, 1588c2ecf20Sopenharmony_ci .init_state = ipcomp4_init_state, 1598c2ecf20Sopenharmony_ci .destructor = ipcomp_destroy, 1608c2ecf20Sopenharmony_ci .input = ipcomp_input, 1618c2ecf20Sopenharmony_ci .output = ipcomp_output 1628c2ecf20Sopenharmony_ci}; 1638c2ecf20Sopenharmony_ci 1648c2ecf20Sopenharmony_cistatic struct xfrm4_protocol ipcomp4_protocol = { 1658c2ecf20Sopenharmony_ci .handler = xfrm4_rcv, 1668c2ecf20Sopenharmony_ci .input_handler = xfrm_input, 1678c2ecf20Sopenharmony_ci .cb_handler = ipcomp4_rcv_cb, 1688c2ecf20Sopenharmony_ci .err_handler = ipcomp4_err, 1698c2ecf20Sopenharmony_ci .priority = 0, 1708c2ecf20Sopenharmony_ci}; 1718c2ecf20Sopenharmony_ci 1728c2ecf20Sopenharmony_cistatic int __init ipcomp4_init(void) 1738c2ecf20Sopenharmony_ci{ 1748c2ecf20Sopenharmony_ci if (xfrm_register_type(&ipcomp_type, AF_INET) < 0) { 1758c2ecf20Sopenharmony_ci pr_info("%s: can't add xfrm type\n", __func__); 1768c2ecf20Sopenharmony_ci return -EAGAIN; 1778c2ecf20Sopenharmony_ci } 1788c2ecf20Sopenharmony_ci if (xfrm4_protocol_register(&ipcomp4_protocol, IPPROTO_COMP) < 0) { 1798c2ecf20Sopenharmony_ci pr_info("%s: can't add protocol\n", __func__); 1808c2ecf20Sopenharmony_ci xfrm_unregister_type(&ipcomp_type, AF_INET); 1818c2ecf20Sopenharmony_ci return -EAGAIN; 1828c2ecf20Sopenharmony_ci } 1838c2ecf20Sopenharmony_ci return 0; 1848c2ecf20Sopenharmony_ci} 1858c2ecf20Sopenharmony_ci 1868c2ecf20Sopenharmony_cistatic void __exit ipcomp4_fini(void) 1878c2ecf20Sopenharmony_ci{ 1888c2ecf20Sopenharmony_ci if (xfrm4_protocol_deregister(&ipcomp4_protocol, IPPROTO_COMP) < 0) 1898c2ecf20Sopenharmony_ci pr_info("%s: can't remove protocol\n", __func__); 1908c2ecf20Sopenharmony_ci xfrm_unregister_type(&ipcomp_type, AF_INET); 1918c2ecf20Sopenharmony_ci} 1928c2ecf20Sopenharmony_ci 1938c2ecf20Sopenharmony_cimodule_init(ipcomp4_init); 1948c2ecf20Sopenharmony_cimodule_exit(ipcomp4_fini); 1958c2ecf20Sopenharmony_ci 1968c2ecf20Sopenharmony_ciMODULE_LICENSE("GPL"); 1978c2ecf20Sopenharmony_ciMODULE_DESCRIPTION("IP Payload Compression Protocol (IPComp/IPv4) - RFC3173"); 1988c2ecf20Sopenharmony_ciMODULE_AUTHOR("James Morris <jmorris@intercode.com.au>"); 1998c2ecf20Sopenharmony_ci 2008c2ecf20Sopenharmony_ciMODULE_ALIAS_XFRM_TYPE(AF_INET, XFRM_PROTO_COMP); 201