162306a36Sopenharmony_ci// SPDX-License-Identifier: GPL-2.0-or-later 262306a36Sopenharmony_ci/* 362306a36Sopenharmony_ci * IP Payload Compression Protocol (IPComp) - RFC3173. 462306a36Sopenharmony_ci * 562306a36Sopenharmony_ci * Copyright (c) 2003 James Morris <jmorris@intercode.com.au> 662306a36Sopenharmony_ci * Copyright (c) 2003-2008 Herbert Xu <herbert@gondor.apana.org.au> 762306a36Sopenharmony_ci * 862306a36Sopenharmony_ci * Todo: 962306a36Sopenharmony_ci * - Tunable compression parameters. 1062306a36Sopenharmony_ci * - Compression stats. 1162306a36Sopenharmony_ci * - Adaptive compression. 1262306a36Sopenharmony_ci */ 1362306a36Sopenharmony_ci 1462306a36Sopenharmony_ci#include <linux/crypto.h> 1562306a36Sopenharmony_ci#include <linux/err.h> 1662306a36Sopenharmony_ci#include <linux/list.h> 1762306a36Sopenharmony_ci#include <linux/module.h> 1862306a36Sopenharmony_ci#include <linux/mutex.h> 1962306a36Sopenharmony_ci#include <linux/percpu.h> 2062306a36Sopenharmony_ci#include <linux/slab.h> 2162306a36Sopenharmony_ci#include <linux/smp.h> 2262306a36Sopenharmony_ci#include <linux/vmalloc.h> 2362306a36Sopenharmony_ci#include <net/ip.h> 2462306a36Sopenharmony_ci#include <net/ipcomp.h> 2562306a36Sopenharmony_ci#include <net/xfrm.h> 2662306a36Sopenharmony_ci 2762306a36Sopenharmony_cistruct ipcomp_tfms { 2862306a36Sopenharmony_ci struct list_head list; 2962306a36Sopenharmony_ci struct crypto_comp * __percpu *tfms; 3062306a36Sopenharmony_ci int users; 3162306a36Sopenharmony_ci}; 3262306a36Sopenharmony_ci 3362306a36Sopenharmony_cistatic DEFINE_MUTEX(ipcomp_resource_mutex); 3462306a36Sopenharmony_cistatic void * __percpu *ipcomp_scratches; 3562306a36Sopenharmony_cistatic int ipcomp_scratch_users; 3662306a36Sopenharmony_cistatic LIST_HEAD(ipcomp_tfms_list); 3762306a36Sopenharmony_ci 3862306a36Sopenharmony_cistatic int ipcomp_decompress(struct xfrm_state *x, struct sk_buff *skb) 3962306a36Sopenharmony_ci{ 4062306a36Sopenharmony_ci struct ipcomp_data *ipcd = x->data; 4162306a36Sopenharmony_ci const int plen = skb->len; 4262306a36Sopenharmony_ci int dlen = IPCOMP_SCRATCH_SIZE; 4362306a36Sopenharmony_ci const u8 *start = skb->data; 4462306a36Sopenharmony_ci u8 *scratch = *this_cpu_ptr(ipcomp_scratches); 4562306a36Sopenharmony_ci struct crypto_comp *tfm = *this_cpu_ptr(ipcd->tfms); 4662306a36Sopenharmony_ci int err = crypto_comp_decompress(tfm, start, plen, scratch, &dlen); 4762306a36Sopenharmony_ci int len; 4862306a36Sopenharmony_ci 4962306a36Sopenharmony_ci if (err) 5062306a36Sopenharmony_ci return err; 5162306a36Sopenharmony_ci 5262306a36Sopenharmony_ci if (dlen < (plen + sizeof(struct ip_comp_hdr))) 5362306a36Sopenharmony_ci return -EINVAL; 5462306a36Sopenharmony_ci 5562306a36Sopenharmony_ci len = dlen - plen; 5662306a36Sopenharmony_ci if (len > skb_tailroom(skb)) 5762306a36Sopenharmony_ci len = skb_tailroom(skb); 5862306a36Sopenharmony_ci 5962306a36Sopenharmony_ci __skb_put(skb, len); 6062306a36Sopenharmony_ci 6162306a36Sopenharmony_ci len += plen; 6262306a36Sopenharmony_ci skb_copy_to_linear_data(skb, scratch, len); 6362306a36Sopenharmony_ci 6462306a36Sopenharmony_ci while ((scratch += len, dlen -= len) > 0) { 6562306a36Sopenharmony_ci skb_frag_t *frag; 6662306a36Sopenharmony_ci struct page *page; 6762306a36Sopenharmony_ci 6862306a36Sopenharmony_ci if (WARN_ON(skb_shinfo(skb)->nr_frags >= MAX_SKB_FRAGS)) 6962306a36Sopenharmony_ci return -EMSGSIZE; 7062306a36Sopenharmony_ci 7162306a36Sopenharmony_ci frag = skb_shinfo(skb)->frags + skb_shinfo(skb)->nr_frags; 7262306a36Sopenharmony_ci page = alloc_page(GFP_ATOMIC); 7362306a36Sopenharmony_ci 7462306a36Sopenharmony_ci if (!page) 7562306a36Sopenharmony_ci return -ENOMEM; 7662306a36Sopenharmony_ci 7762306a36Sopenharmony_ci len = PAGE_SIZE; 7862306a36Sopenharmony_ci if (dlen < len) 7962306a36Sopenharmony_ci len = dlen; 8062306a36Sopenharmony_ci 8162306a36Sopenharmony_ci skb_frag_fill_page_desc(frag, page, 0, len); 8262306a36Sopenharmony_ci memcpy(skb_frag_address(frag), scratch, len); 8362306a36Sopenharmony_ci 8462306a36Sopenharmony_ci skb->truesize += len; 8562306a36Sopenharmony_ci skb->data_len += len; 8662306a36Sopenharmony_ci skb->len += len; 8762306a36Sopenharmony_ci 8862306a36Sopenharmony_ci skb_shinfo(skb)->nr_frags++; 8962306a36Sopenharmony_ci } 9062306a36Sopenharmony_ci 9162306a36Sopenharmony_ci return 0; 9262306a36Sopenharmony_ci} 9362306a36Sopenharmony_ci 9462306a36Sopenharmony_ciint ipcomp_input(struct xfrm_state *x, struct sk_buff *skb) 9562306a36Sopenharmony_ci{ 9662306a36Sopenharmony_ci int nexthdr; 9762306a36Sopenharmony_ci int err = -ENOMEM; 9862306a36Sopenharmony_ci struct ip_comp_hdr *ipch; 9962306a36Sopenharmony_ci 10062306a36Sopenharmony_ci if (skb_linearize_cow(skb)) 10162306a36Sopenharmony_ci goto out; 10262306a36Sopenharmony_ci 10362306a36Sopenharmony_ci skb->ip_summed = CHECKSUM_NONE; 10462306a36Sopenharmony_ci 10562306a36Sopenharmony_ci /* Remove ipcomp header and decompress original payload */ 10662306a36Sopenharmony_ci ipch = (void *)skb->data; 10762306a36Sopenharmony_ci nexthdr = ipch->nexthdr; 10862306a36Sopenharmony_ci 10962306a36Sopenharmony_ci skb->transport_header = skb->network_header + sizeof(*ipch); 11062306a36Sopenharmony_ci __skb_pull(skb, sizeof(*ipch)); 11162306a36Sopenharmony_ci err = ipcomp_decompress(x, skb); 11262306a36Sopenharmony_ci if (err) 11362306a36Sopenharmony_ci goto out; 11462306a36Sopenharmony_ci 11562306a36Sopenharmony_ci err = nexthdr; 11662306a36Sopenharmony_ci 11762306a36Sopenharmony_ciout: 11862306a36Sopenharmony_ci return err; 11962306a36Sopenharmony_ci} 12062306a36Sopenharmony_ciEXPORT_SYMBOL_GPL(ipcomp_input); 12162306a36Sopenharmony_ci 12262306a36Sopenharmony_cistatic int ipcomp_compress(struct xfrm_state *x, struct sk_buff *skb) 12362306a36Sopenharmony_ci{ 12462306a36Sopenharmony_ci struct ipcomp_data *ipcd = x->data; 12562306a36Sopenharmony_ci const int plen = skb->len; 12662306a36Sopenharmony_ci int dlen = IPCOMP_SCRATCH_SIZE; 12762306a36Sopenharmony_ci u8 *start = skb->data; 12862306a36Sopenharmony_ci struct crypto_comp *tfm; 12962306a36Sopenharmony_ci u8 *scratch; 13062306a36Sopenharmony_ci int err; 13162306a36Sopenharmony_ci 13262306a36Sopenharmony_ci local_bh_disable(); 13362306a36Sopenharmony_ci scratch = *this_cpu_ptr(ipcomp_scratches); 13462306a36Sopenharmony_ci tfm = *this_cpu_ptr(ipcd->tfms); 13562306a36Sopenharmony_ci err = crypto_comp_compress(tfm, start, plen, scratch, &dlen); 13662306a36Sopenharmony_ci if (err) 13762306a36Sopenharmony_ci goto out; 13862306a36Sopenharmony_ci 13962306a36Sopenharmony_ci if ((dlen + sizeof(struct ip_comp_hdr)) >= plen) { 14062306a36Sopenharmony_ci err = -EMSGSIZE; 14162306a36Sopenharmony_ci goto out; 14262306a36Sopenharmony_ci } 14362306a36Sopenharmony_ci 14462306a36Sopenharmony_ci memcpy(start + sizeof(struct ip_comp_hdr), scratch, dlen); 14562306a36Sopenharmony_ci local_bh_enable(); 14662306a36Sopenharmony_ci 14762306a36Sopenharmony_ci pskb_trim(skb, dlen + sizeof(struct ip_comp_hdr)); 14862306a36Sopenharmony_ci return 0; 14962306a36Sopenharmony_ci 15062306a36Sopenharmony_ciout: 15162306a36Sopenharmony_ci local_bh_enable(); 15262306a36Sopenharmony_ci return err; 15362306a36Sopenharmony_ci} 15462306a36Sopenharmony_ci 15562306a36Sopenharmony_ciint ipcomp_output(struct xfrm_state *x, struct sk_buff *skb) 15662306a36Sopenharmony_ci{ 15762306a36Sopenharmony_ci int err; 15862306a36Sopenharmony_ci struct ip_comp_hdr *ipch; 15962306a36Sopenharmony_ci struct ipcomp_data *ipcd = x->data; 16062306a36Sopenharmony_ci 16162306a36Sopenharmony_ci if (skb->len < ipcd->threshold) { 16262306a36Sopenharmony_ci /* Don't bother compressing */ 16362306a36Sopenharmony_ci goto out_ok; 16462306a36Sopenharmony_ci } 16562306a36Sopenharmony_ci 16662306a36Sopenharmony_ci if (skb_linearize_cow(skb)) 16762306a36Sopenharmony_ci goto out_ok; 16862306a36Sopenharmony_ci 16962306a36Sopenharmony_ci err = ipcomp_compress(x, skb); 17062306a36Sopenharmony_ci 17162306a36Sopenharmony_ci if (err) { 17262306a36Sopenharmony_ci goto out_ok; 17362306a36Sopenharmony_ci } 17462306a36Sopenharmony_ci 17562306a36Sopenharmony_ci /* Install ipcomp header, convert into ipcomp datagram. */ 17662306a36Sopenharmony_ci ipch = ip_comp_hdr(skb); 17762306a36Sopenharmony_ci ipch->nexthdr = *skb_mac_header(skb); 17862306a36Sopenharmony_ci ipch->flags = 0; 17962306a36Sopenharmony_ci ipch->cpi = htons((u16 )ntohl(x->id.spi)); 18062306a36Sopenharmony_ci *skb_mac_header(skb) = IPPROTO_COMP; 18162306a36Sopenharmony_ciout_ok: 18262306a36Sopenharmony_ci skb_push(skb, -skb_network_offset(skb)); 18362306a36Sopenharmony_ci return 0; 18462306a36Sopenharmony_ci} 18562306a36Sopenharmony_ciEXPORT_SYMBOL_GPL(ipcomp_output); 18662306a36Sopenharmony_ci 18762306a36Sopenharmony_cistatic void ipcomp_free_scratches(void) 18862306a36Sopenharmony_ci{ 18962306a36Sopenharmony_ci int i; 19062306a36Sopenharmony_ci void * __percpu *scratches; 19162306a36Sopenharmony_ci 19262306a36Sopenharmony_ci if (--ipcomp_scratch_users) 19362306a36Sopenharmony_ci return; 19462306a36Sopenharmony_ci 19562306a36Sopenharmony_ci scratches = ipcomp_scratches; 19662306a36Sopenharmony_ci if (!scratches) 19762306a36Sopenharmony_ci return; 19862306a36Sopenharmony_ci 19962306a36Sopenharmony_ci for_each_possible_cpu(i) 20062306a36Sopenharmony_ci vfree(*per_cpu_ptr(scratches, i)); 20162306a36Sopenharmony_ci 20262306a36Sopenharmony_ci free_percpu(scratches); 20362306a36Sopenharmony_ci ipcomp_scratches = NULL; 20462306a36Sopenharmony_ci} 20562306a36Sopenharmony_ci 20662306a36Sopenharmony_cistatic void * __percpu *ipcomp_alloc_scratches(void) 20762306a36Sopenharmony_ci{ 20862306a36Sopenharmony_ci void * __percpu *scratches; 20962306a36Sopenharmony_ci int i; 21062306a36Sopenharmony_ci 21162306a36Sopenharmony_ci if (ipcomp_scratch_users++) 21262306a36Sopenharmony_ci return ipcomp_scratches; 21362306a36Sopenharmony_ci 21462306a36Sopenharmony_ci scratches = alloc_percpu(void *); 21562306a36Sopenharmony_ci if (!scratches) 21662306a36Sopenharmony_ci return NULL; 21762306a36Sopenharmony_ci 21862306a36Sopenharmony_ci ipcomp_scratches = scratches; 21962306a36Sopenharmony_ci 22062306a36Sopenharmony_ci for_each_possible_cpu(i) { 22162306a36Sopenharmony_ci void *scratch; 22262306a36Sopenharmony_ci 22362306a36Sopenharmony_ci scratch = vmalloc_node(IPCOMP_SCRATCH_SIZE, cpu_to_node(i)); 22462306a36Sopenharmony_ci if (!scratch) 22562306a36Sopenharmony_ci return NULL; 22662306a36Sopenharmony_ci *per_cpu_ptr(scratches, i) = scratch; 22762306a36Sopenharmony_ci } 22862306a36Sopenharmony_ci 22962306a36Sopenharmony_ci return scratches; 23062306a36Sopenharmony_ci} 23162306a36Sopenharmony_ci 23262306a36Sopenharmony_cistatic void ipcomp_free_tfms(struct crypto_comp * __percpu *tfms) 23362306a36Sopenharmony_ci{ 23462306a36Sopenharmony_ci struct ipcomp_tfms *pos; 23562306a36Sopenharmony_ci int cpu; 23662306a36Sopenharmony_ci 23762306a36Sopenharmony_ci list_for_each_entry(pos, &ipcomp_tfms_list, list) { 23862306a36Sopenharmony_ci if (pos->tfms == tfms) 23962306a36Sopenharmony_ci break; 24062306a36Sopenharmony_ci } 24162306a36Sopenharmony_ci 24262306a36Sopenharmony_ci WARN_ON(list_entry_is_head(pos, &ipcomp_tfms_list, list)); 24362306a36Sopenharmony_ci 24462306a36Sopenharmony_ci if (--pos->users) 24562306a36Sopenharmony_ci return; 24662306a36Sopenharmony_ci 24762306a36Sopenharmony_ci list_del(&pos->list); 24862306a36Sopenharmony_ci kfree(pos); 24962306a36Sopenharmony_ci 25062306a36Sopenharmony_ci if (!tfms) 25162306a36Sopenharmony_ci return; 25262306a36Sopenharmony_ci 25362306a36Sopenharmony_ci for_each_possible_cpu(cpu) { 25462306a36Sopenharmony_ci struct crypto_comp *tfm = *per_cpu_ptr(tfms, cpu); 25562306a36Sopenharmony_ci crypto_free_comp(tfm); 25662306a36Sopenharmony_ci } 25762306a36Sopenharmony_ci free_percpu(tfms); 25862306a36Sopenharmony_ci} 25962306a36Sopenharmony_ci 26062306a36Sopenharmony_cistatic struct crypto_comp * __percpu *ipcomp_alloc_tfms(const char *alg_name) 26162306a36Sopenharmony_ci{ 26262306a36Sopenharmony_ci struct ipcomp_tfms *pos; 26362306a36Sopenharmony_ci struct crypto_comp * __percpu *tfms; 26462306a36Sopenharmony_ci int cpu; 26562306a36Sopenharmony_ci 26662306a36Sopenharmony_ci 26762306a36Sopenharmony_ci list_for_each_entry(pos, &ipcomp_tfms_list, list) { 26862306a36Sopenharmony_ci struct crypto_comp *tfm; 26962306a36Sopenharmony_ci 27062306a36Sopenharmony_ci /* This can be any valid CPU ID so we don't need locking. */ 27162306a36Sopenharmony_ci tfm = this_cpu_read(*pos->tfms); 27262306a36Sopenharmony_ci 27362306a36Sopenharmony_ci if (!strcmp(crypto_comp_name(tfm), alg_name)) { 27462306a36Sopenharmony_ci pos->users++; 27562306a36Sopenharmony_ci return pos->tfms; 27662306a36Sopenharmony_ci } 27762306a36Sopenharmony_ci } 27862306a36Sopenharmony_ci 27962306a36Sopenharmony_ci pos = kmalloc(sizeof(*pos), GFP_KERNEL); 28062306a36Sopenharmony_ci if (!pos) 28162306a36Sopenharmony_ci return NULL; 28262306a36Sopenharmony_ci 28362306a36Sopenharmony_ci pos->users = 1; 28462306a36Sopenharmony_ci INIT_LIST_HEAD(&pos->list); 28562306a36Sopenharmony_ci list_add(&pos->list, &ipcomp_tfms_list); 28662306a36Sopenharmony_ci 28762306a36Sopenharmony_ci pos->tfms = tfms = alloc_percpu(struct crypto_comp *); 28862306a36Sopenharmony_ci if (!tfms) 28962306a36Sopenharmony_ci goto error; 29062306a36Sopenharmony_ci 29162306a36Sopenharmony_ci for_each_possible_cpu(cpu) { 29262306a36Sopenharmony_ci struct crypto_comp *tfm = crypto_alloc_comp(alg_name, 0, 29362306a36Sopenharmony_ci CRYPTO_ALG_ASYNC); 29462306a36Sopenharmony_ci if (IS_ERR(tfm)) 29562306a36Sopenharmony_ci goto error; 29662306a36Sopenharmony_ci *per_cpu_ptr(tfms, cpu) = tfm; 29762306a36Sopenharmony_ci } 29862306a36Sopenharmony_ci 29962306a36Sopenharmony_ci return tfms; 30062306a36Sopenharmony_ci 30162306a36Sopenharmony_cierror: 30262306a36Sopenharmony_ci ipcomp_free_tfms(tfms); 30362306a36Sopenharmony_ci return NULL; 30462306a36Sopenharmony_ci} 30562306a36Sopenharmony_ci 30662306a36Sopenharmony_cistatic void ipcomp_free_data(struct ipcomp_data *ipcd) 30762306a36Sopenharmony_ci{ 30862306a36Sopenharmony_ci if (ipcd->tfms) 30962306a36Sopenharmony_ci ipcomp_free_tfms(ipcd->tfms); 31062306a36Sopenharmony_ci ipcomp_free_scratches(); 31162306a36Sopenharmony_ci} 31262306a36Sopenharmony_ci 31362306a36Sopenharmony_civoid ipcomp_destroy(struct xfrm_state *x) 31462306a36Sopenharmony_ci{ 31562306a36Sopenharmony_ci struct ipcomp_data *ipcd = x->data; 31662306a36Sopenharmony_ci if (!ipcd) 31762306a36Sopenharmony_ci return; 31862306a36Sopenharmony_ci xfrm_state_delete_tunnel(x); 31962306a36Sopenharmony_ci mutex_lock(&ipcomp_resource_mutex); 32062306a36Sopenharmony_ci ipcomp_free_data(ipcd); 32162306a36Sopenharmony_ci mutex_unlock(&ipcomp_resource_mutex); 32262306a36Sopenharmony_ci kfree(ipcd); 32362306a36Sopenharmony_ci} 32462306a36Sopenharmony_ciEXPORT_SYMBOL_GPL(ipcomp_destroy); 32562306a36Sopenharmony_ci 32662306a36Sopenharmony_ciint ipcomp_init_state(struct xfrm_state *x, struct netlink_ext_ack *extack) 32762306a36Sopenharmony_ci{ 32862306a36Sopenharmony_ci int err; 32962306a36Sopenharmony_ci struct ipcomp_data *ipcd; 33062306a36Sopenharmony_ci struct xfrm_algo_desc *calg_desc; 33162306a36Sopenharmony_ci 33262306a36Sopenharmony_ci err = -EINVAL; 33362306a36Sopenharmony_ci if (!x->calg) { 33462306a36Sopenharmony_ci NL_SET_ERR_MSG(extack, "Missing required compression algorithm"); 33562306a36Sopenharmony_ci goto out; 33662306a36Sopenharmony_ci } 33762306a36Sopenharmony_ci 33862306a36Sopenharmony_ci if (x->encap) { 33962306a36Sopenharmony_ci NL_SET_ERR_MSG(extack, "IPComp is not compatible with encapsulation"); 34062306a36Sopenharmony_ci goto out; 34162306a36Sopenharmony_ci } 34262306a36Sopenharmony_ci 34362306a36Sopenharmony_ci err = -ENOMEM; 34462306a36Sopenharmony_ci ipcd = kzalloc(sizeof(*ipcd), GFP_KERNEL); 34562306a36Sopenharmony_ci if (!ipcd) 34662306a36Sopenharmony_ci goto out; 34762306a36Sopenharmony_ci 34862306a36Sopenharmony_ci mutex_lock(&ipcomp_resource_mutex); 34962306a36Sopenharmony_ci if (!ipcomp_alloc_scratches()) 35062306a36Sopenharmony_ci goto error; 35162306a36Sopenharmony_ci 35262306a36Sopenharmony_ci ipcd->tfms = ipcomp_alloc_tfms(x->calg->alg_name); 35362306a36Sopenharmony_ci if (!ipcd->tfms) 35462306a36Sopenharmony_ci goto error; 35562306a36Sopenharmony_ci mutex_unlock(&ipcomp_resource_mutex); 35662306a36Sopenharmony_ci 35762306a36Sopenharmony_ci calg_desc = xfrm_calg_get_byname(x->calg->alg_name, 0); 35862306a36Sopenharmony_ci BUG_ON(!calg_desc); 35962306a36Sopenharmony_ci ipcd->threshold = calg_desc->uinfo.comp.threshold; 36062306a36Sopenharmony_ci x->data = ipcd; 36162306a36Sopenharmony_ci err = 0; 36262306a36Sopenharmony_ciout: 36362306a36Sopenharmony_ci return err; 36462306a36Sopenharmony_ci 36562306a36Sopenharmony_cierror: 36662306a36Sopenharmony_ci ipcomp_free_data(ipcd); 36762306a36Sopenharmony_ci mutex_unlock(&ipcomp_resource_mutex); 36862306a36Sopenharmony_ci kfree(ipcd); 36962306a36Sopenharmony_ci goto out; 37062306a36Sopenharmony_ci} 37162306a36Sopenharmony_ciEXPORT_SYMBOL_GPL(ipcomp_init_state); 37262306a36Sopenharmony_ci 37362306a36Sopenharmony_ciMODULE_LICENSE("GPL"); 37462306a36Sopenharmony_ciMODULE_DESCRIPTION("IP Payload Compression Protocol (IPComp) - RFC3173"); 37562306a36Sopenharmony_ciMODULE_AUTHOR("James Morris <jmorris@intercode.com.au>"); 376