117b085eaSArnaldo Carvalho de Melo /* 217b085eaSArnaldo Carvalho de Melo * tcp_diag.c Module for monitoring TCP transport protocols sockets. 317b085eaSArnaldo Carvalho de Melo * 417b085eaSArnaldo Carvalho de Melo * Authors: Alexey Kuznetsov, <kuznet@ms2.inr.ac.ru> 517b085eaSArnaldo Carvalho de Melo * 617b085eaSArnaldo Carvalho de Melo * This program is free software; you can redistribute it and/or 717b085eaSArnaldo Carvalho de Melo * modify it under the terms of the GNU General Public License 817b085eaSArnaldo Carvalho de Melo * as published by the Free Software Foundation; either version 917b085eaSArnaldo Carvalho de Melo * 2 of the License, or (at your option) any later version. 1017b085eaSArnaldo Carvalho de Melo */ 1117b085eaSArnaldo Carvalho de Melo 1217b085eaSArnaldo Carvalho de Melo #include <linux/module.h> 13c1e64e29SLorenzo Colitti #include <linux/net.h> 14c1e64e29SLorenzo Colitti #include <linux/sock_diag.h> 1517b085eaSArnaldo Carvalho de Melo #include <linux/inet_diag.h> 1617b085eaSArnaldo Carvalho de Melo 1717b085eaSArnaldo Carvalho de Melo #include <linux/tcp.h> 1817b085eaSArnaldo Carvalho de Melo 19c03fa9bcSIvan Delalande #include <net/netlink.h> 2017b085eaSArnaldo Carvalho de Melo #include <net/tcp.h> 2117b085eaSArnaldo Carvalho de Melo 2217b085eaSArnaldo Carvalho de Melo static void tcp_diag_get_info(struct sock *sk, struct inet_diag_msg *r, 2317b085eaSArnaldo Carvalho de Melo void *_info) 2417b085eaSArnaldo Carvalho de Melo { 2517b085eaSArnaldo Carvalho de Melo struct tcp_info *info = _info; 2617b085eaSArnaldo Carvalho de Melo 27986ffdfdSYafang Shao if (inet_sk_state_load(sk) == TCP_LISTEN) { 2847da8ee6SSridhar Samudrala r->idiag_rqueue = sk->sk_ack_backlog; 295ee3afbaSRick Jones r->idiag_wqueue = sk->sk_max_ack_backlog; 3035ac838aSCraig Gallek } else if (sk->sk_type == SOCK_STREAM) { 3135ac838aSCraig Gallek const struct tcp_sock *tp = tcp_sk(sk); 3235ac838aSCraig Gallek 3349d09007SEric Dumazet r->idiag_rqueue = max_t(int, tp->rcv_nxt - tp->copied_seq, 0); 3417b085eaSArnaldo Carvalho de Melo r->idiag_wqueue = tp->write_seq - tp->snd_una; 355ee3afbaSRick Jones } 3600db4124SIan Morris if (info) 3717b085eaSArnaldo Carvalho de Melo tcp_get_info(sk, info); 3817b085eaSArnaldo Carvalho de Melo } 3917b085eaSArnaldo Carvalho de Melo 40c03fa9bcSIvan Delalande #ifdef CONFIG_TCP_MD5SIG 41c03fa9bcSIvan Delalande static void tcp_diag_md5sig_fill(struct tcp_diag_md5sig *info, 42c03fa9bcSIvan Delalande const struct tcp_md5sig_key *key) 43c03fa9bcSIvan Delalande { 44c03fa9bcSIvan Delalande info->tcpm_family = key->family; 45c03fa9bcSIvan Delalande info->tcpm_prefixlen = key->prefixlen; 46c03fa9bcSIvan Delalande info->tcpm_keylen = key->keylen; 47c03fa9bcSIvan Delalande memcpy(info->tcpm_key, key->key, key->keylen); 48c03fa9bcSIvan Delalande 49c03fa9bcSIvan Delalande if (key->family == AF_INET) 50c03fa9bcSIvan Delalande info->tcpm_addr[0] = key->addr.a4.s_addr; 51c03fa9bcSIvan Delalande #if IS_ENABLED(CONFIG_IPV6) 52c03fa9bcSIvan Delalande else if (key->family == AF_INET6) 53c03fa9bcSIvan Delalande memcpy(&info->tcpm_addr, &key->addr.a6, 54c03fa9bcSIvan Delalande sizeof(info->tcpm_addr)); 55c03fa9bcSIvan Delalande #endif 56c03fa9bcSIvan Delalande } 57c03fa9bcSIvan Delalande 58c03fa9bcSIvan Delalande static int tcp_diag_put_md5sig(struct sk_buff *skb, 59c03fa9bcSIvan Delalande const struct tcp_md5sig_info *md5sig) 60c03fa9bcSIvan Delalande { 61c03fa9bcSIvan Delalande const struct tcp_md5sig_key *key; 62c03fa9bcSIvan Delalande struct tcp_diag_md5sig *info; 63c03fa9bcSIvan Delalande struct nlattr *attr; 64c03fa9bcSIvan Delalande int md5sig_count = 0; 65c03fa9bcSIvan Delalande 66c03fa9bcSIvan Delalande hlist_for_each_entry_rcu(key, &md5sig->head, node) 67c03fa9bcSIvan Delalande md5sig_count++; 68c03fa9bcSIvan Delalande if (md5sig_count == 0) 69c03fa9bcSIvan Delalande return 0; 70c03fa9bcSIvan Delalande 71c03fa9bcSIvan Delalande attr = nla_reserve(skb, INET_DIAG_MD5SIG, 72c03fa9bcSIvan Delalande md5sig_count * sizeof(struct tcp_diag_md5sig)); 73c03fa9bcSIvan Delalande if (!attr) 74c03fa9bcSIvan Delalande return -EMSGSIZE; 75c03fa9bcSIvan Delalande 76c03fa9bcSIvan Delalande info = nla_data(attr); 77c03fa9bcSIvan Delalande memset(info, 0, md5sig_count * sizeof(struct tcp_diag_md5sig)); 78c03fa9bcSIvan Delalande hlist_for_each_entry_rcu(key, &md5sig->head, node) { 79c03fa9bcSIvan Delalande tcp_diag_md5sig_fill(info++, key); 80c03fa9bcSIvan Delalande if (--md5sig_count == 0) 81c03fa9bcSIvan Delalande break; 82c03fa9bcSIvan Delalande } 83c03fa9bcSIvan Delalande 84c03fa9bcSIvan Delalande return 0; 85c03fa9bcSIvan Delalande } 86c03fa9bcSIvan Delalande #endif 87c03fa9bcSIvan Delalande 88c03fa9bcSIvan Delalande static int tcp_diag_get_aux(struct sock *sk, bool net_admin, 89c03fa9bcSIvan Delalande struct sk_buff *skb) 90c03fa9bcSIvan Delalande { 91c03fa9bcSIvan Delalande #ifdef CONFIG_TCP_MD5SIG 92c03fa9bcSIvan Delalande if (net_admin) { 93c03fa9bcSIvan Delalande struct tcp_md5sig_info *md5sig; 94c03fa9bcSIvan Delalande int err = 0; 95c03fa9bcSIvan Delalande 96c03fa9bcSIvan Delalande rcu_read_lock(); 97c03fa9bcSIvan Delalande md5sig = rcu_dereference(tcp_sk(sk)->md5sig_info); 98c03fa9bcSIvan Delalande if (md5sig) 99c03fa9bcSIvan Delalande err = tcp_diag_put_md5sig(skb, md5sig); 100c03fa9bcSIvan Delalande rcu_read_unlock(); 101c03fa9bcSIvan Delalande if (err < 0) 102c03fa9bcSIvan Delalande return err; 103c03fa9bcSIvan Delalande } 104c03fa9bcSIvan Delalande #endif 105c03fa9bcSIvan Delalande 106c03fa9bcSIvan Delalande return 0; 107c03fa9bcSIvan Delalande } 108c03fa9bcSIvan Delalande 109c03fa9bcSIvan Delalande static size_t tcp_diag_get_aux_size(struct sock *sk, bool net_admin) 110c03fa9bcSIvan Delalande { 111c03fa9bcSIvan Delalande size_t size = 0; 112c03fa9bcSIvan Delalande 113c03fa9bcSIvan Delalande #ifdef CONFIG_TCP_MD5SIG 114c03fa9bcSIvan Delalande if (net_admin && sk_fullsock(sk)) { 115c03fa9bcSIvan Delalande const struct tcp_md5sig_info *md5sig; 116c03fa9bcSIvan Delalande const struct tcp_md5sig_key *key; 117c03fa9bcSIvan Delalande size_t md5sig_count = 0; 118c03fa9bcSIvan Delalande 119c03fa9bcSIvan Delalande rcu_read_lock(); 120c03fa9bcSIvan Delalande md5sig = rcu_dereference(tcp_sk(sk)->md5sig_info); 121c03fa9bcSIvan Delalande if (md5sig) { 122c03fa9bcSIvan Delalande hlist_for_each_entry_rcu(key, &md5sig->head, node) 123c03fa9bcSIvan Delalande md5sig_count++; 124c03fa9bcSIvan Delalande } 125c03fa9bcSIvan Delalande rcu_read_unlock(); 126c03fa9bcSIvan Delalande size += nla_total_size(md5sig_count * 127c03fa9bcSIvan Delalande sizeof(struct tcp_diag_md5sig)); 128c03fa9bcSIvan Delalande } 129c03fa9bcSIvan Delalande #endif 130c03fa9bcSIvan Delalande 131c03fa9bcSIvan Delalande return size; 132c03fa9bcSIvan Delalande } 133c03fa9bcSIvan Delalande 1341942c518SPavel Emelyanov static void tcp_diag_dump(struct sk_buff *skb, struct netlink_callback *cb, 13534160ea3SEric Dumazet const struct inet_diag_req_v2 *r, struct nlattr *bc) 1361942c518SPavel Emelyanov { 1371942c518SPavel Emelyanov inet_diag_dump_icsk(&tcp_hashinfo, skb, cb, r, bc); 1381942c518SPavel Emelyanov } 1391942c518SPavel Emelyanov 1401942c518SPavel Emelyanov static int tcp_diag_dump_one(struct sk_buff *in_skb, const struct nlmsghdr *nlh, 14134160ea3SEric Dumazet const struct inet_diag_req_v2 *req) 1421942c518SPavel Emelyanov { 1431942c518SPavel Emelyanov return inet_diag_dump_one_icsk(&tcp_hashinfo, in_skb, nlh, req); 1441942c518SPavel Emelyanov } 1451942c518SPavel Emelyanov 146c1e64e29SLorenzo Colitti #ifdef CONFIG_INET_DIAG_DESTROY 147c1e64e29SLorenzo Colitti static int tcp_diag_destroy(struct sk_buff *in_skb, 148c1e64e29SLorenzo Colitti const struct inet_diag_req_v2 *req) 149c1e64e29SLorenzo Colitti { 150c1e64e29SLorenzo Colitti struct net *net = sock_net(in_skb->sk); 151c1e64e29SLorenzo Colitti struct sock *sk = inet_diag_find_one_icsk(net, &tcp_hashinfo, req); 152d7226c7aSDavid Ahern int err; 153c1e64e29SLorenzo Colitti 154c1e64e29SLorenzo Colitti if (IS_ERR(sk)) 155c1e64e29SLorenzo Colitti return PTR_ERR(sk); 156c1e64e29SLorenzo Colitti 157d7226c7aSDavid Ahern err = sock_diag_destroy(sk, ECONNABORTED); 158d7226c7aSDavid Ahern 159d7226c7aSDavid Ahern sock_gen_put(sk); 160d7226c7aSDavid Ahern 161d7226c7aSDavid Ahern return err; 162c1e64e29SLorenzo Colitti } 163c1e64e29SLorenzo Colitti #endif 164c1e64e29SLorenzo Colitti 165a7a0d6a8SEric Dumazet static const struct inet_diag_handler tcp_diag_handler = { 1661942c518SPavel Emelyanov .dump = tcp_diag_dump, 1671942c518SPavel Emelyanov .dump_one = tcp_diag_dump_one, 16817b085eaSArnaldo Carvalho de Melo .idiag_get_info = tcp_diag_get_info, 169c03fa9bcSIvan Delalande .idiag_get_aux = tcp_diag_get_aux, 170c03fa9bcSIvan Delalande .idiag_get_aux_size = tcp_diag_get_aux_size, 171f13c95f0SPavel Emelyanov .idiag_type = IPPROTO_TCP, 1723fd22af8SCraig Gallek .idiag_info_size = sizeof(struct tcp_info), 173c1e64e29SLorenzo Colitti #ifdef CONFIG_INET_DIAG_DESTROY 174c1e64e29SLorenzo Colitti .destroy = tcp_diag_destroy, 175c1e64e29SLorenzo Colitti #endif 17617b085eaSArnaldo Carvalho de Melo }; 17717b085eaSArnaldo Carvalho de Melo 17817b085eaSArnaldo Carvalho de Melo static int __init tcp_diag_init(void) 17917b085eaSArnaldo Carvalho de Melo { 18017b085eaSArnaldo Carvalho de Melo return inet_diag_register(&tcp_diag_handler); 18117b085eaSArnaldo Carvalho de Melo } 18217b085eaSArnaldo Carvalho de Melo 18317b085eaSArnaldo Carvalho de Melo static void __exit tcp_diag_exit(void) 18417b085eaSArnaldo Carvalho de Melo { 18517b085eaSArnaldo Carvalho de Melo inet_diag_unregister(&tcp_diag_handler); 18617b085eaSArnaldo Carvalho de Melo } 18717b085eaSArnaldo Carvalho de Melo 18817b085eaSArnaldo Carvalho de Melo module_init(tcp_diag_init); 18917b085eaSArnaldo Carvalho de Melo module_exit(tcp_diag_exit); 19017b085eaSArnaldo Carvalho de Melo MODULE_LICENSE("GPL"); 191aec8dc62SPavel Emelyanov MODULE_ALIAS_NET_PF_PROTO_TYPE(PF_NETLINK, NETLINK_SOCK_DIAG, 2-6 /* AF_INET - IPPROTO_TCP */); 192