11da177e4SLinus Torvalds /* 21da177e4SLinus Torvalds * This program is free software; you can redistribute it and/or modify 31da177e4SLinus Torvalds * it under the terms of the GNU General Public License as published by 41da177e4SLinus Torvalds * the Free Software Foundation; either version 2 of the License, or 51da177e4SLinus Torvalds * (at your option) any later version. 61da177e4SLinus Torvalds * 71da177e4SLinus Torvalds * Copyright (C) Jonathan Naylor G4KLX (g4klx@g4klx.demon.co.uk) 81da177e4SLinus Torvalds * Copyright (C) Joerg Reuter DL1BKE (jreuter@yaina.de) 91da177e4SLinus Torvalds */ 101da177e4SLinus Torvalds #include <linux/errno.h> 111da177e4SLinus Torvalds #include <linux/types.h> 121da177e4SLinus Torvalds #include <linux/socket.h> 131da177e4SLinus Torvalds #include <linux/in.h> 141da177e4SLinus Torvalds #include <linux/kernel.h> 151da177e4SLinus Torvalds #include <linux/sched.h> 161da177e4SLinus Torvalds #include <linux/timer.h> 171da177e4SLinus Torvalds #include <linux/string.h> 181da177e4SLinus Torvalds #include <linux/sockios.h> 191da177e4SLinus Torvalds #include <linux/net.h> 201da177e4SLinus Torvalds #include <net/ax25.h> 211da177e4SLinus Torvalds #include <linux/inet.h> 221da177e4SLinus Torvalds #include <linux/netdevice.h> 231da177e4SLinus Torvalds #include <linux/skbuff.h> 241da177e4SLinus Torvalds #include <net/sock.h> 251da177e4SLinus Torvalds #include <net/ip.h> /* For ip_rcv */ 26*c752f073SArnaldo Carvalho de Melo #include <net/tcp_states.h> 271da177e4SLinus Torvalds #include <asm/uaccess.h> 281da177e4SLinus Torvalds #include <asm/system.h> 291da177e4SLinus Torvalds #include <linux/fcntl.h> 301da177e4SLinus Torvalds #include <linux/mm.h> 311da177e4SLinus Torvalds #include <linux/interrupt.h> 321da177e4SLinus Torvalds 331da177e4SLinus Torvalds /* 341da177e4SLinus Torvalds * State machine for state 1, Awaiting Connection State. 351da177e4SLinus Torvalds * The handling of the timer(s) is in file ax25_ds_timer.c. 361da177e4SLinus Torvalds * Handling of state 0 and connection release is in ax25.c. 371da177e4SLinus Torvalds */ 381da177e4SLinus Torvalds static int ax25_ds_state1_machine(ax25_cb *ax25, struct sk_buff *skb, int frametype, int pf, int type) 391da177e4SLinus Torvalds { 401da177e4SLinus Torvalds switch (frametype) { 411da177e4SLinus Torvalds case AX25_SABM: 421da177e4SLinus Torvalds ax25->modulus = AX25_MODULUS; 431da177e4SLinus Torvalds ax25->window = ax25->ax25_dev->values[AX25_VALUES_WINDOW]; 441da177e4SLinus Torvalds ax25_send_control(ax25, AX25_UA, pf, AX25_RESPONSE); 451da177e4SLinus Torvalds break; 461da177e4SLinus Torvalds 471da177e4SLinus Torvalds case AX25_SABME: 481da177e4SLinus Torvalds ax25->modulus = AX25_EMODULUS; 491da177e4SLinus Torvalds ax25->window = ax25->ax25_dev->values[AX25_VALUES_EWINDOW]; 501da177e4SLinus Torvalds ax25_send_control(ax25, AX25_UA, pf, AX25_RESPONSE); 511da177e4SLinus Torvalds break; 521da177e4SLinus Torvalds 531da177e4SLinus Torvalds case AX25_DISC: 541da177e4SLinus Torvalds ax25_send_control(ax25, AX25_DM, pf, AX25_RESPONSE); 551da177e4SLinus Torvalds break; 561da177e4SLinus Torvalds 571da177e4SLinus Torvalds case AX25_UA: 581da177e4SLinus Torvalds ax25_calculate_rtt(ax25); 591da177e4SLinus Torvalds ax25_stop_t1timer(ax25); 601da177e4SLinus Torvalds ax25_start_t3timer(ax25); 611da177e4SLinus Torvalds ax25_start_idletimer(ax25); 621da177e4SLinus Torvalds ax25->vs = 0; 631da177e4SLinus Torvalds ax25->va = 0; 641da177e4SLinus Torvalds ax25->vr = 0; 651da177e4SLinus Torvalds ax25->state = AX25_STATE_3; 661da177e4SLinus Torvalds ax25->n2count = 0; 671da177e4SLinus Torvalds if (ax25->sk != NULL) { 681da177e4SLinus Torvalds bh_lock_sock(ax25->sk); 691da177e4SLinus Torvalds ax25->sk->sk_state = TCP_ESTABLISHED; 701da177e4SLinus Torvalds /* 711da177e4SLinus Torvalds * For WAIT_SABM connections we will produce an accept 721da177e4SLinus Torvalds * ready socket here 731da177e4SLinus Torvalds */ 741da177e4SLinus Torvalds if (!sock_flag(ax25->sk, SOCK_DEAD)) 751da177e4SLinus Torvalds ax25->sk->sk_state_change(ax25->sk); 761da177e4SLinus Torvalds bh_unlock_sock(ax25->sk); 771da177e4SLinus Torvalds } 781da177e4SLinus Torvalds ax25_dama_on(ax25); 791da177e4SLinus Torvalds 801da177e4SLinus Torvalds /* according to DK4EG�s spec we are required to 811da177e4SLinus Torvalds * send a RR RESPONSE FINAL NR=0. 821da177e4SLinus Torvalds */ 831da177e4SLinus Torvalds 841da177e4SLinus Torvalds ax25_std_enquiry_response(ax25); 851da177e4SLinus Torvalds break; 861da177e4SLinus Torvalds 871da177e4SLinus Torvalds case AX25_DM: 881da177e4SLinus Torvalds if (pf) 891da177e4SLinus Torvalds ax25_disconnect(ax25, ECONNREFUSED); 901da177e4SLinus Torvalds break; 911da177e4SLinus Torvalds 921da177e4SLinus Torvalds default: 931da177e4SLinus Torvalds if (pf) 941da177e4SLinus Torvalds ax25_send_control(ax25, AX25_SABM, AX25_POLLON, AX25_COMMAND); 951da177e4SLinus Torvalds break; 961da177e4SLinus Torvalds } 971da177e4SLinus Torvalds 981da177e4SLinus Torvalds return 0; 991da177e4SLinus Torvalds } 1001da177e4SLinus Torvalds 1011da177e4SLinus Torvalds /* 1021da177e4SLinus Torvalds * State machine for state 2, Awaiting Release State. 1031da177e4SLinus Torvalds * The handling of the timer(s) is in file ax25_ds_timer.c 1041da177e4SLinus Torvalds * Handling of state 0 and connection release is in ax25.c. 1051da177e4SLinus Torvalds */ 1061da177e4SLinus Torvalds static int ax25_ds_state2_machine(ax25_cb *ax25, struct sk_buff *skb, int frametype, int pf, int type) 1071da177e4SLinus Torvalds { 1081da177e4SLinus Torvalds switch (frametype) { 1091da177e4SLinus Torvalds case AX25_SABM: 1101da177e4SLinus Torvalds case AX25_SABME: 1111da177e4SLinus Torvalds ax25_send_control(ax25, AX25_DISC, AX25_POLLON, AX25_COMMAND); 1121da177e4SLinus Torvalds ax25_dama_off(ax25); 1131da177e4SLinus Torvalds break; 1141da177e4SLinus Torvalds 1151da177e4SLinus Torvalds case AX25_DISC: 1161da177e4SLinus Torvalds ax25_send_control(ax25, AX25_UA, pf, AX25_RESPONSE); 1171da177e4SLinus Torvalds ax25_dama_off(ax25); 1181da177e4SLinus Torvalds ax25_disconnect(ax25, 0); 1191da177e4SLinus Torvalds break; 1201da177e4SLinus Torvalds 1211da177e4SLinus Torvalds case AX25_DM: 1221da177e4SLinus Torvalds case AX25_UA: 1231da177e4SLinus Torvalds if (pf) { 1241da177e4SLinus Torvalds ax25_dama_off(ax25); 1251da177e4SLinus Torvalds ax25_disconnect(ax25, 0); 1261da177e4SLinus Torvalds } 1271da177e4SLinus Torvalds break; 1281da177e4SLinus Torvalds 1291da177e4SLinus Torvalds case AX25_I: 1301da177e4SLinus Torvalds case AX25_REJ: 1311da177e4SLinus Torvalds case AX25_RNR: 1321da177e4SLinus Torvalds case AX25_RR: 1331da177e4SLinus Torvalds if (pf) { 1341da177e4SLinus Torvalds ax25_send_control(ax25, AX25_DISC, AX25_POLLON, AX25_COMMAND); 1351da177e4SLinus Torvalds ax25_dama_off(ax25); 1361da177e4SLinus Torvalds } 1371da177e4SLinus Torvalds break; 1381da177e4SLinus Torvalds 1391da177e4SLinus Torvalds default: 1401da177e4SLinus Torvalds break; 1411da177e4SLinus Torvalds } 1421da177e4SLinus Torvalds 1431da177e4SLinus Torvalds return 0; 1441da177e4SLinus Torvalds } 1451da177e4SLinus Torvalds 1461da177e4SLinus Torvalds /* 1471da177e4SLinus Torvalds * State machine for state 3, Connected State. 1481da177e4SLinus Torvalds * The handling of the timer(s) is in file ax25_timer.c 1491da177e4SLinus Torvalds * Handling of state 0 and connection release is in ax25.c. 1501da177e4SLinus Torvalds */ 1511da177e4SLinus Torvalds static int ax25_ds_state3_machine(ax25_cb *ax25, struct sk_buff *skb, int frametype, int ns, int nr, int pf, int type) 1521da177e4SLinus Torvalds { 1531da177e4SLinus Torvalds int queued = 0; 1541da177e4SLinus Torvalds 1551da177e4SLinus Torvalds switch (frametype) { 1561da177e4SLinus Torvalds case AX25_SABM: 1571da177e4SLinus Torvalds case AX25_SABME: 1581da177e4SLinus Torvalds if (frametype == AX25_SABM) { 1591da177e4SLinus Torvalds ax25->modulus = AX25_MODULUS; 1601da177e4SLinus Torvalds ax25->window = ax25->ax25_dev->values[AX25_VALUES_WINDOW]; 1611da177e4SLinus Torvalds } else { 1621da177e4SLinus Torvalds ax25->modulus = AX25_EMODULUS; 1631da177e4SLinus Torvalds ax25->window = ax25->ax25_dev->values[AX25_VALUES_EWINDOW]; 1641da177e4SLinus Torvalds } 1651da177e4SLinus Torvalds ax25_send_control(ax25, AX25_UA, pf, AX25_RESPONSE); 1661da177e4SLinus Torvalds ax25_stop_t1timer(ax25); 1671da177e4SLinus Torvalds ax25_start_t3timer(ax25); 1681da177e4SLinus Torvalds ax25_start_idletimer(ax25); 1691da177e4SLinus Torvalds ax25->condition = 0x00; 1701da177e4SLinus Torvalds ax25->vs = 0; 1711da177e4SLinus Torvalds ax25->va = 0; 1721da177e4SLinus Torvalds ax25->vr = 0; 1731da177e4SLinus Torvalds ax25_requeue_frames(ax25); 1741da177e4SLinus Torvalds ax25_dama_on(ax25); 1751da177e4SLinus Torvalds break; 1761da177e4SLinus Torvalds 1771da177e4SLinus Torvalds case AX25_DISC: 1781da177e4SLinus Torvalds ax25_send_control(ax25, AX25_UA, pf, AX25_RESPONSE); 1791da177e4SLinus Torvalds ax25_dama_off(ax25); 1801da177e4SLinus Torvalds ax25_disconnect(ax25, 0); 1811da177e4SLinus Torvalds break; 1821da177e4SLinus Torvalds 1831da177e4SLinus Torvalds case AX25_DM: 1841da177e4SLinus Torvalds ax25_dama_off(ax25); 1851da177e4SLinus Torvalds ax25_disconnect(ax25, ECONNRESET); 1861da177e4SLinus Torvalds break; 1871da177e4SLinus Torvalds 1881da177e4SLinus Torvalds case AX25_RR: 1891da177e4SLinus Torvalds case AX25_RNR: 1901da177e4SLinus Torvalds if (frametype == AX25_RR) 1911da177e4SLinus Torvalds ax25->condition &= ~AX25_COND_PEER_RX_BUSY; 1921da177e4SLinus Torvalds else 1931da177e4SLinus Torvalds ax25->condition |= AX25_COND_PEER_RX_BUSY; 1941da177e4SLinus Torvalds 1951da177e4SLinus Torvalds if (ax25_validate_nr(ax25, nr)) { 1961da177e4SLinus Torvalds if (ax25_check_iframes_acked(ax25, nr)) 1971da177e4SLinus Torvalds ax25->n2count=0; 1981da177e4SLinus Torvalds if (type == AX25_COMMAND && pf) 1991da177e4SLinus Torvalds ax25_ds_enquiry_response(ax25); 2001da177e4SLinus Torvalds } else { 2011da177e4SLinus Torvalds ax25_ds_nr_error_recovery(ax25); 2021da177e4SLinus Torvalds ax25->state = AX25_STATE_1; 2031da177e4SLinus Torvalds } 2041da177e4SLinus Torvalds break; 2051da177e4SLinus Torvalds 2061da177e4SLinus Torvalds case AX25_REJ: 2071da177e4SLinus Torvalds ax25->condition &= ~AX25_COND_PEER_RX_BUSY; 2081da177e4SLinus Torvalds 2091da177e4SLinus Torvalds if (ax25_validate_nr(ax25, nr)) { 2101da177e4SLinus Torvalds if (ax25->va != nr) 2111da177e4SLinus Torvalds ax25->n2count=0; 2121da177e4SLinus Torvalds 2131da177e4SLinus Torvalds ax25_frames_acked(ax25, nr); 2141da177e4SLinus Torvalds ax25_calculate_rtt(ax25); 2151da177e4SLinus Torvalds ax25_stop_t1timer(ax25); 2161da177e4SLinus Torvalds ax25_start_t3timer(ax25); 2171da177e4SLinus Torvalds ax25_requeue_frames(ax25); 2181da177e4SLinus Torvalds 2191da177e4SLinus Torvalds if (type == AX25_COMMAND && pf) 2201da177e4SLinus Torvalds ax25_ds_enquiry_response(ax25); 2211da177e4SLinus Torvalds } else { 2221da177e4SLinus Torvalds ax25_ds_nr_error_recovery(ax25); 2231da177e4SLinus Torvalds ax25->state = AX25_STATE_1; 2241da177e4SLinus Torvalds } 2251da177e4SLinus Torvalds break; 2261da177e4SLinus Torvalds 2271da177e4SLinus Torvalds case AX25_I: 2281da177e4SLinus Torvalds if (!ax25_validate_nr(ax25, nr)) { 2291da177e4SLinus Torvalds ax25_ds_nr_error_recovery(ax25); 2301da177e4SLinus Torvalds ax25->state = AX25_STATE_1; 2311da177e4SLinus Torvalds break; 2321da177e4SLinus Torvalds } 2331da177e4SLinus Torvalds if (ax25->condition & AX25_COND_PEER_RX_BUSY) { 2341da177e4SLinus Torvalds ax25_frames_acked(ax25, nr); 2351da177e4SLinus Torvalds ax25->n2count = 0; 2361da177e4SLinus Torvalds } else { 2371da177e4SLinus Torvalds if (ax25_check_iframes_acked(ax25, nr)) 2381da177e4SLinus Torvalds ax25->n2count = 0; 2391da177e4SLinus Torvalds } 2401da177e4SLinus Torvalds if (ax25->condition & AX25_COND_OWN_RX_BUSY) { 2411da177e4SLinus Torvalds if (pf) ax25_ds_enquiry_response(ax25); 2421da177e4SLinus Torvalds break; 2431da177e4SLinus Torvalds } 2441da177e4SLinus Torvalds if (ns == ax25->vr) { 2451da177e4SLinus Torvalds ax25->vr = (ax25->vr + 1) % ax25->modulus; 2461da177e4SLinus Torvalds queued = ax25_rx_iframe(ax25, skb); 2471da177e4SLinus Torvalds if (ax25->condition & AX25_COND_OWN_RX_BUSY) 2481da177e4SLinus Torvalds ax25->vr = ns; /* ax25->vr - 1 */ 2491da177e4SLinus Torvalds ax25->condition &= ~AX25_COND_REJECT; 2501da177e4SLinus Torvalds if (pf) { 2511da177e4SLinus Torvalds ax25_ds_enquiry_response(ax25); 2521da177e4SLinus Torvalds } else { 2531da177e4SLinus Torvalds if (!(ax25->condition & AX25_COND_ACK_PENDING)) { 2541da177e4SLinus Torvalds ax25->condition |= AX25_COND_ACK_PENDING; 2551da177e4SLinus Torvalds ax25_start_t2timer(ax25); 2561da177e4SLinus Torvalds } 2571da177e4SLinus Torvalds } 2581da177e4SLinus Torvalds } else { 2591da177e4SLinus Torvalds if (ax25->condition & AX25_COND_REJECT) { 2601da177e4SLinus Torvalds if (pf) ax25_ds_enquiry_response(ax25); 2611da177e4SLinus Torvalds } else { 2621da177e4SLinus Torvalds ax25->condition |= AX25_COND_REJECT; 2631da177e4SLinus Torvalds ax25_ds_enquiry_response(ax25); 2641da177e4SLinus Torvalds ax25->condition &= ~AX25_COND_ACK_PENDING; 2651da177e4SLinus Torvalds } 2661da177e4SLinus Torvalds } 2671da177e4SLinus Torvalds break; 2681da177e4SLinus Torvalds 2691da177e4SLinus Torvalds case AX25_FRMR: 2701da177e4SLinus Torvalds case AX25_ILLEGAL: 2711da177e4SLinus Torvalds ax25_ds_establish_data_link(ax25); 2721da177e4SLinus Torvalds ax25->state = AX25_STATE_1; 2731da177e4SLinus Torvalds break; 2741da177e4SLinus Torvalds 2751da177e4SLinus Torvalds default: 2761da177e4SLinus Torvalds break; 2771da177e4SLinus Torvalds } 2781da177e4SLinus Torvalds 2791da177e4SLinus Torvalds return queued; 2801da177e4SLinus Torvalds } 2811da177e4SLinus Torvalds 2821da177e4SLinus Torvalds /* 2831da177e4SLinus Torvalds * Higher level upcall for a LAPB frame 2841da177e4SLinus Torvalds */ 2851da177e4SLinus Torvalds int ax25_ds_frame_in(ax25_cb *ax25, struct sk_buff *skb, int type) 2861da177e4SLinus Torvalds { 2871da177e4SLinus Torvalds int queued = 0, frametype, ns, nr, pf; 2881da177e4SLinus Torvalds 2891da177e4SLinus Torvalds frametype = ax25_decode(ax25, skb, &ns, &nr, &pf); 2901da177e4SLinus Torvalds 2911da177e4SLinus Torvalds switch (ax25->state) { 2921da177e4SLinus Torvalds case AX25_STATE_1: 2931da177e4SLinus Torvalds queued = ax25_ds_state1_machine(ax25, skb, frametype, pf, type); 2941da177e4SLinus Torvalds break; 2951da177e4SLinus Torvalds case AX25_STATE_2: 2961da177e4SLinus Torvalds queued = ax25_ds_state2_machine(ax25, skb, frametype, pf, type); 2971da177e4SLinus Torvalds break; 2981da177e4SLinus Torvalds case AX25_STATE_3: 2991da177e4SLinus Torvalds queued = ax25_ds_state3_machine(ax25, skb, frametype, ns, nr, pf, type); 3001da177e4SLinus Torvalds break; 3011da177e4SLinus Torvalds } 3021da177e4SLinus Torvalds 3031da177e4SLinus Torvalds return queued; 3041da177e4SLinus Torvalds } 3051da177e4SLinus Torvalds 306