162306a36Sopenharmony_ci// SPDX-License-Identifier: GPL-2.0-only 262306a36Sopenharmony_ci#include <linux/module.h> 362306a36Sopenharmony_ci 462306a36Sopenharmony_ci#include <linux/inet_diag.h> 562306a36Sopenharmony_ci#include <linux/sock_diag.h> 662306a36Sopenharmony_ci 762306a36Sopenharmony_ci#include <net/inet_sock.h> 862306a36Sopenharmony_ci#include <net/raw.h> 962306a36Sopenharmony_ci#include <net/rawv6.h> 1062306a36Sopenharmony_ci 1162306a36Sopenharmony_ci#ifdef pr_fmt 1262306a36Sopenharmony_ci# undef pr_fmt 1362306a36Sopenharmony_ci#endif 1462306a36Sopenharmony_ci 1562306a36Sopenharmony_ci#define pr_fmt(fmt) KBUILD_MODNAME ": " fmt 1662306a36Sopenharmony_ci 1762306a36Sopenharmony_cistatic struct raw_hashinfo * 1862306a36Sopenharmony_ciraw_get_hashinfo(const struct inet_diag_req_v2 *r) 1962306a36Sopenharmony_ci{ 2062306a36Sopenharmony_ci if (r->sdiag_family == AF_INET) { 2162306a36Sopenharmony_ci return &raw_v4_hashinfo; 2262306a36Sopenharmony_ci#if IS_ENABLED(CONFIG_IPV6) 2362306a36Sopenharmony_ci } else if (r->sdiag_family == AF_INET6) { 2462306a36Sopenharmony_ci return &raw_v6_hashinfo; 2562306a36Sopenharmony_ci#endif 2662306a36Sopenharmony_ci } else { 2762306a36Sopenharmony_ci return ERR_PTR(-EINVAL); 2862306a36Sopenharmony_ci } 2962306a36Sopenharmony_ci} 3062306a36Sopenharmony_ci 3162306a36Sopenharmony_ci/* 3262306a36Sopenharmony_ci * Due to requirement of not breaking user API we can't simply 3362306a36Sopenharmony_ci * rename @pad field in inet_diag_req_v2 structure, instead 3462306a36Sopenharmony_ci * use helper to figure it out. 3562306a36Sopenharmony_ci */ 3662306a36Sopenharmony_ci 3762306a36Sopenharmony_cistatic bool raw_lookup(struct net *net, const struct sock *sk, 3862306a36Sopenharmony_ci const struct inet_diag_req_v2 *req) 3962306a36Sopenharmony_ci{ 4062306a36Sopenharmony_ci struct inet_diag_req_raw *r = (void *)req; 4162306a36Sopenharmony_ci 4262306a36Sopenharmony_ci if (r->sdiag_family == AF_INET) 4362306a36Sopenharmony_ci return raw_v4_match(net, sk, r->sdiag_raw_protocol, 4462306a36Sopenharmony_ci r->id.idiag_dst[0], 4562306a36Sopenharmony_ci r->id.idiag_src[0], 4662306a36Sopenharmony_ci r->id.idiag_if, 0); 4762306a36Sopenharmony_ci#if IS_ENABLED(CONFIG_IPV6) 4862306a36Sopenharmony_ci else 4962306a36Sopenharmony_ci return raw_v6_match(net, sk, r->sdiag_raw_protocol, 5062306a36Sopenharmony_ci (const struct in6_addr *)r->id.idiag_src, 5162306a36Sopenharmony_ci (const struct in6_addr *)r->id.idiag_dst, 5262306a36Sopenharmony_ci r->id.idiag_if, 0); 5362306a36Sopenharmony_ci#endif 5462306a36Sopenharmony_ci return false; 5562306a36Sopenharmony_ci} 5662306a36Sopenharmony_ci 5762306a36Sopenharmony_cistatic struct sock *raw_sock_get(struct net *net, const struct inet_diag_req_v2 *r) 5862306a36Sopenharmony_ci{ 5962306a36Sopenharmony_ci struct raw_hashinfo *hashinfo = raw_get_hashinfo(r); 6062306a36Sopenharmony_ci struct hlist_head *hlist; 6162306a36Sopenharmony_ci struct sock *sk; 6262306a36Sopenharmony_ci int slot; 6362306a36Sopenharmony_ci 6462306a36Sopenharmony_ci if (IS_ERR(hashinfo)) 6562306a36Sopenharmony_ci return ERR_CAST(hashinfo); 6662306a36Sopenharmony_ci 6762306a36Sopenharmony_ci rcu_read_lock(); 6862306a36Sopenharmony_ci for (slot = 0; slot < RAW_HTABLE_SIZE; slot++) { 6962306a36Sopenharmony_ci hlist = &hashinfo->ht[slot]; 7062306a36Sopenharmony_ci sk_for_each_rcu(sk, hlist) { 7162306a36Sopenharmony_ci if (raw_lookup(net, sk, r)) { 7262306a36Sopenharmony_ci /* 7362306a36Sopenharmony_ci * Grab it and keep until we fill 7462306a36Sopenharmony_ci * diag message to be reported, so 7562306a36Sopenharmony_ci * caller should call sock_put then. 7662306a36Sopenharmony_ci */ 7762306a36Sopenharmony_ci if (refcount_inc_not_zero(&sk->sk_refcnt)) 7862306a36Sopenharmony_ci goto out_unlock; 7962306a36Sopenharmony_ci } 8062306a36Sopenharmony_ci } 8162306a36Sopenharmony_ci } 8262306a36Sopenharmony_ci sk = ERR_PTR(-ENOENT); 8362306a36Sopenharmony_ciout_unlock: 8462306a36Sopenharmony_ci rcu_read_unlock(); 8562306a36Sopenharmony_ci 8662306a36Sopenharmony_ci return sk; 8762306a36Sopenharmony_ci} 8862306a36Sopenharmony_ci 8962306a36Sopenharmony_cistatic int raw_diag_dump_one(struct netlink_callback *cb, 9062306a36Sopenharmony_ci const struct inet_diag_req_v2 *r) 9162306a36Sopenharmony_ci{ 9262306a36Sopenharmony_ci struct sk_buff *in_skb = cb->skb; 9362306a36Sopenharmony_ci struct sk_buff *rep; 9462306a36Sopenharmony_ci struct sock *sk; 9562306a36Sopenharmony_ci struct net *net; 9662306a36Sopenharmony_ci int err; 9762306a36Sopenharmony_ci 9862306a36Sopenharmony_ci net = sock_net(in_skb->sk); 9962306a36Sopenharmony_ci sk = raw_sock_get(net, r); 10062306a36Sopenharmony_ci if (IS_ERR(sk)) 10162306a36Sopenharmony_ci return PTR_ERR(sk); 10262306a36Sopenharmony_ci 10362306a36Sopenharmony_ci rep = nlmsg_new(nla_total_size(sizeof(struct inet_diag_msg)) + 10462306a36Sopenharmony_ci inet_diag_msg_attrs_size() + 10562306a36Sopenharmony_ci nla_total_size(sizeof(struct inet_diag_meminfo)) + 64, 10662306a36Sopenharmony_ci GFP_KERNEL); 10762306a36Sopenharmony_ci if (!rep) { 10862306a36Sopenharmony_ci sock_put(sk); 10962306a36Sopenharmony_ci return -ENOMEM; 11062306a36Sopenharmony_ci } 11162306a36Sopenharmony_ci 11262306a36Sopenharmony_ci err = inet_sk_diag_fill(sk, NULL, rep, cb, r, 0, 11362306a36Sopenharmony_ci netlink_net_capable(in_skb, CAP_NET_ADMIN)); 11462306a36Sopenharmony_ci sock_put(sk); 11562306a36Sopenharmony_ci 11662306a36Sopenharmony_ci if (err < 0) { 11762306a36Sopenharmony_ci kfree_skb(rep); 11862306a36Sopenharmony_ci return err; 11962306a36Sopenharmony_ci } 12062306a36Sopenharmony_ci 12162306a36Sopenharmony_ci err = nlmsg_unicast(net->diag_nlsk, rep, NETLINK_CB(in_skb).portid); 12262306a36Sopenharmony_ci 12362306a36Sopenharmony_ci return err; 12462306a36Sopenharmony_ci} 12562306a36Sopenharmony_ci 12662306a36Sopenharmony_cistatic int sk_diag_dump(struct sock *sk, struct sk_buff *skb, 12762306a36Sopenharmony_ci struct netlink_callback *cb, 12862306a36Sopenharmony_ci const struct inet_diag_req_v2 *r, 12962306a36Sopenharmony_ci struct nlattr *bc, bool net_admin) 13062306a36Sopenharmony_ci{ 13162306a36Sopenharmony_ci if (!inet_diag_bc_sk(bc, sk)) 13262306a36Sopenharmony_ci return 0; 13362306a36Sopenharmony_ci 13462306a36Sopenharmony_ci return inet_sk_diag_fill(sk, NULL, skb, cb, r, NLM_F_MULTI, net_admin); 13562306a36Sopenharmony_ci} 13662306a36Sopenharmony_ci 13762306a36Sopenharmony_cistatic void raw_diag_dump(struct sk_buff *skb, struct netlink_callback *cb, 13862306a36Sopenharmony_ci const struct inet_diag_req_v2 *r) 13962306a36Sopenharmony_ci{ 14062306a36Sopenharmony_ci bool net_admin = netlink_net_capable(cb->skb, CAP_NET_ADMIN); 14162306a36Sopenharmony_ci struct raw_hashinfo *hashinfo = raw_get_hashinfo(r); 14262306a36Sopenharmony_ci struct net *net = sock_net(skb->sk); 14362306a36Sopenharmony_ci struct inet_diag_dump_data *cb_data; 14462306a36Sopenharmony_ci int num, s_num, slot, s_slot; 14562306a36Sopenharmony_ci struct hlist_head *hlist; 14662306a36Sopenharmony_ci struct sock *sk = NULL; 14762306a36Sopenharmony_ci struct nlattr *bc; 14862306a36Sopenharmony_ci 14962306a36Sopenharmony_ci if (IS_ERR(hashinfo)) 15062306a36Sopenharmony_ci return; 15162306a36Sopenharmony_ci 15262306a36Sopenharmony_ci cb_data = cb->data; 15362306a36Sopenharmony_ci bc = cb_data->inet_diag_nla_bc; 15462306a36Sopenharmony_ci s_slot = cb->args[0]; 15562306a36Sopenharmony_ci num = s_num = cb->args[1]; 15662306a36Sopenharmony_ci 15762306a36Sopenharmony_ci rcu_read_lock(); 15862306a36Sopenharmony_ci for (slot = s_slot; slot < RAW_HTABLE_SIZE; s_num = 0, slot++) { 15962306a36Sopenharmony_ci num = 0; 16062306a36Sopenharmony_ci 16162306a36Sopenharmony_ci hlist = &hashinfo->ht[slot]; 16262306a36Sopenharmony_ci sk_for_each_rcu(sk, hlist) { 16362306a36Sopenharmony_ci struct inet_sock *inet = inet_sk(sk); 16462306a36Sopenharmony_ci 16562306a36Sopenharmony_ci if (!net_eq(sock_net(sk), net)) 16662306a36Sopenharmony_ci continue; 16762306a36Sopenharmony_ci if (num < s_num) 16862306a36Sopenharmony_ci goto next; 16962306a36Sopenharmony_ci if (sk->sk_family != r->sdiag_family) 17062306a36Sopenharmony_ci goto next; 17162306a36Sopenharmony_ci if (r->id.idiag_sport != inet->inet_sport && 17262306a36Sopenharmony_ci r->id.idiag_sport) 17362306a36Sopenharmony_ci goto next; 17462306a36Sopenharmony_ci if (r->id.idiag_dport != inet->inet_dport && 17562306a36Sopenharmony_ci r->id.idiag_dport) 17662306a36Sopenharmony_ci goto next; 17762306a36Sopenharmony_ci if (sk_diag_dump(sk, skb, cb, r, bc, net_admin) < 0) 17862306a36Sopenharmony_ci goto out_unlock; 17962306a36Sopenharmony_cinext: 18062306a36Sopenharmony_ci num++; 18162306a36Sopenharmony_ci } 18262306a36Sopenharmony_ci } 18362306a36Sopenharmony_ci 18462306a36Sopenharmony_ciout_unlock: 18562306a36Sopenharmony_ci rcu_read_unlock(); 18662306a36Sopenharmony_ci 18762306a36Sopenharmony_ci cb->args[0] = slot; 18862306a36Sopenharmony_ci cb->args[1] = num; 18962306a36Sopenharmony_ci} 19062306a36Sopenharmony_ci 19162306a36Sopenharmony_cistatic void raw_diag_get_info(struct sock *sk, struct inet_diag_msg *r, 19262306a36Sopenharmony_ci void *info) 19362306a36Sopenharmony_ci{ 19462306a36Sopenharmony_ci r->idiag_rqueue = sk_rmem_alloc_get(sk); 19562306a36Sopenharmony_ci r->idiag_wqueue = sk_wmem_alloc_get(sk); 19662306a36Sopenharmony_ci} 19762306a36Sopenharmony_ci 19862306a36Sopenharmony_ci#ifdef CONFIG_INET_DIAG_DESTROY 19962306a36Sopenharmony_cistatic int raw_diag_destroy(struct sk_buff *in_skb, 20062306a36Sopenharmony_ci const struct inet_diag_req_v2 *r) 20162306a36Sopenharmony_ci{ 20262306a36Sopenharmony_ci struct net *net = sock_net(in_skb->sk); 20362306a36Sopenharmony_ci struct sock *sk; 20462306a36Sopenharmony_ci int err; 20562306a36Sopenharmony_ci 20662306a36Sopenharmony_ci sk = raw_sock_get(net, r); 20762306a36Sopenharmony_ci if (IS_ERR(sk)) 20862306a36Sopenharmony_ci return PTR_ERR(sk); 20962306a36Sopenharmony_ci err = sock_diag_destroy(sk, ECONNABORTED); 21062306a36Sopenharmony_ci sock_put(sk); 21162306a36Sopenharmony_ci return err; 21262306a36Sopenharmony_ci} 21362306a36Sopenharmony_ci#endif 21462306a36Sopenharmony_ci 21562306a36Sopenharmony_cistatic const struct inet_diag_handler raw_diag_handler = { 21662306a36Sopenharmony_ci .dump = raw_diag_dump, 21762306a36Sopenharmony_ci .dump_one = raw_diag_dump_one, 21862306a36Sopenharmony_ci .idiag_get_info = raw_diag_get_info, 21962306a36Sopenharmony_ci .idiag_type = IPPROTO_RAW, 22062306a36Sopenharmony_ci .idiag_info_size = 0, 22162306a36Sopenharmony_ci#ifdef CONFIG_INET_DIAG_DESTROY 22262306a36Sopenharmony_ci .destroy = raw_diag_destroy, 22362306a36Sopenharmony_ci#endif 22462306a36Sopenharmony_ci}; 22562306a36Sopenharmony_ci 22662306a36Sopenharmony_cistatic void __always_unused __check_inet_diag_req_raw(void) 22762306a36Sopenharmony_ci{ 22862306a36Sopenharmony_ci /* 22962306a36Sopenharmony_ci * Make sure the two structures are identical, 23062306a36Sopenharmony_ci * except the @pad field. 23162306a36Sopenharmony_ci */ 23262306a36Sopenharmony_ci#define __offset_mismatch(m1, m2) \ 23362306a36Sopenharmony_ci (offsetof(struct inet_diag_req_v2, m1) != \ 23462306a36Sopenharmony_ci offsetof(struct inet_diag_req_raw, m2)) 23562306a36Sopenharmony_ci 23662306a36Sopenharmony_ci BUILD_BUG_ON(sizeof(struct inet_diag_req_v2) != 23762306a36Sopenharmony_ci sizeof(struct inet_diag_req_raw)); 23862306a36Sopenharmony_ci BUILD_BUG_ON(__offset_mismatch(sdiag_family, sdiag_family)); 23962306a36Sopenharmony_ci BUILD_BUG_ON(__offset_mismatch(sdiag_protocol, sdiag_protocol)); 24062306a36Sopenharmony_ci BUILD_BUG_ON(__offset_mismatch(idiag_ext, idiag_ext)); 24162306a36Sopenharmony_ci BUILD_BUG_ON(__offset_mismatch(pad, sdiag_raw_protocol)); 24262306a36Sopenharmony_ci BUILD_BUG_ON(__offset_mismatch(idiag_states, idiag_states)); 24362306a36Sopenharmony_ci BUILD_BUG_ON(__offset_mismatch(id, id)); 24462306a36Sopenharmony_ci#undef __offset_mismatch 24562306a36Sopenharmony_ci} 24662306a36Sopenharmony_ci 24762306a36Sopenharmony_cistatic int __init raw_diag_init(void) 24862306a36Sopenharmony_ci{ 24962306a36Sopenharmony_ci return inet_diag_register(&raw_diag_handler); 25062306a36Sopenharmony_ci} 25162306a36Sopenharmony_ci 25262306a36Sopenharmony_cistatic void __exit raw_diag_exit(void) 25362306a36Sopenharmony_ci{ 25462306a36Sopenharmony_ci inet_diag_unregister(&raw_diag_handler); 25562306a36Sopenharmony_ci} 25662306a36Sopenharmony_ci 25762306a36Sopenharmony_cimodule_init(raw_diag_init); 25862306a36Sopenharmony_cimodule_exit(raw_diag_exit); 25962306a36Sopenharmony_ciMODULE_LICENSE("GPL"); 26062306a36Sopenharmony_ciMODULE_ALIAS_NET_PF_PROTO_TYPE(PF_NETLINK, NETLINK_SOCK_DIAG, 2-255 /* AF_INET - IPPROTO_RAW */); 26162306a36Sopenharmony_ciMODULE_ALIAS_NET_PF_PROTO_TYPE(PF_NETLINK, NETLINK_SOCK_DIAG, 10-255 /* AF_INET6 - IPPROTO_RAW */); 262