1 // SPDX-License-Identifier: GPL-2.0-or-later
3 * inet_diag.c Module for monitoring INET transport protocols sockets.
5 * Authors: Alexey Kuznetsov, <kuznet@ms2.inr.ac.ru>
8 #include <linux/kernel.h>
9 #include <linux/module.h>
10 #include <linux/types.h>
11 #include <linux/fcntl.h>
12 #include <linux/random.h>
13 #include <linux/slab.h>
14 #include <linux/cache.h>
15 #include <linux/init.h>
16 #include <linux/time.h>
21 #include <net/inet_common.h>
22 #include <net/inet_connection_sock.h>
23 #include <net/inet_hashtables.h>
24 #include <net/inet_timewait_sock.h>
25 #include <net/inet6_hashtables.h>
26 #include <net/netlink.h>
28 #include <linux/inet.h>
29 #include <linux/stddef.h>
31 #include <linux/inet_diag.h>
32 #include <linux/sock_diag.h>
34 static const struct inet_diag_handler **inet_diag_table;
36 struct inet_diag_entry {
47 static DEFINE_MUTEX(inet_diag_table_mutex);
49 static const struct inet_diag_handler *inet_diag_lock_handler(int proto)
51 if (!inet_diag_table[proto])
52 sock_load_diag_module(AF_INET, proto);
54 mutex_lock(&inet_diag_table_mutex);
55 if (!inet_diag_table[proto])
56 return ERR_PTR(-ENOENT);
58 return inet_diag_table[proto];
61 static void inet_diag_unlock_handler(const struct inet_diag_handler *handler)
63 mutex_unlock(&inet_diag_table_mutex);
66 void inet_diag_msg_common_fill(struct inet_diag_msg *r, struct sock *sk)
68 r->idiag_family = sk->sk_family;
70 r->id.idiag_sport = htons(sk->sk_num);
71 r->id.idiag_dport = sk->sk_dport;
72 r->id.idiag_if = sk->sk_bound_dev_if;
73 sock_diag_save_cookie(sk, r->id.idiag_cookie);
75 #if IS_ENABLED(CONFIG_IPV6)
76 if (sk->sk_family == AF_INET6) {
77 *(struct in6_addr *)r->id.idiag_src = sk->sk_v6_rcv_saddr;
78 *(struct in6_addr *)r->id.idiag_dst = sk->sk_v6_daddr;
82 memset(&r->id.idiag_src, 0, sizeof(r->id.idiag_src));
83 memset(&r->id.idiag_dst, 0, sizeof(r->id.idiag_dst));
85 r->id.idiag_src[0] = sk->sk_rcv_saddr;
86 r->id.idiag_dst[0] = sk->sk_daddr;
89 EXPORT_SYMBOL_GPL(inet_diag_msg_common_fill);
91 static size_t inet_sk_attr_size(struct sock *sk,
92 const struct inet_diag_req_v2 *req,
95 const struct inet_diag_handler *handler;
98 handler = inet_diag_table[req->sdiag_protocol];
99 if (handler && handler->idiag_get_aux_size)
100 aux = handler->idiag_get_aux_size(sk, net_admin);
102 return nla_total_size(sizeof(struct tcp_info))
103 + nla_total_size(sizeof(struct inet_diag_msg))
104 + inet_diag_msg_attrs_size()
105 + nla_total_size(sizeof(struct inet_diag_meminfo))
106 + nla_total_size(SK_MEMINFO_VARS * sizeof(u32))
107 + nla_total_size(TCP_CA_NAME_MAX)
108 + nla_total_size(sizeof(struct tcpvegas_info))
113 int inet_diag_msg_attrs_fill(struct sock *sk, struct sk_buff *skb,
114 struct inet_diag_msg *r, int ext,
115 struct user_namespace *user_ns,
118 const struct inet_sock *inet = inet_sk(sk);
120 if (nla_put_u8(skb, INET_DIAG_SHUTDOWN, sk->sk_shutdown))
123 /* IPv6 dual-stack sockets use inet->tos for IPv4 connections,
124 * hence this needs to be included regardless of socket family.
126 if (ext & (1 << (INET_DIAG_TOS - 1)))
127 if (nla_put_u8(skb, INET_DIAG_TOS, inet->tos) < 0)
130 #if IS_ENABLED(CONFIG_IPV6)
131 if (r->idiag_family == AF_INET6) {
132 if (ext & (1 << (INET_DIAG_TCLASS - 1)))
133 if (nla_put_u8(skb, INET_DIAG_TCLASS,
134 inet6_sk(sk)->tclass) < 0)
137 if (((1 << sk->sk_state) & (TCPF_LISTEN | TCPF_CLOSE)) &&
138 nla_put_u8(skb, INET_DIAG_SKV6ONLY, ipv6_only_sock(sk)))
143 if (net_admin && nla_put_u32(skb, INET_DIAG_MARK, sk->sk_mark))
146 if (ext & (1 << (INET_DIAG_CLASS_ID - 1)) ||
147 ext & (1 << (INET_DIAG_TCLASS - 1))) {
150 #ifdef CONFIG_SOCK_CGROUP_DATA
151 classid = sock_cgroup_classid(&sk->sk_cgrp_data);
153 /* Fallback to socket priority if class id isn't set.
154 * Classful qdiscs use it as direct reference to class.
155 * For cgroup2 classid is always zero.
158 classid = sk->sk_priority;
160 if (nla_put_u32(skb, INET_DIAG_CLASS_ID, classid))
164 r->idiag_uid = from_kuid_munged(user_ns, sock_i_uid(sk));
165 r->idiag_inode = sock_i_ino(sk);
171 EXPORT_SYMBOL_GPL(inet_diag_msg_attrs_fill);
173 int inet_sk_diag_fill(struct sock *sk, struct inet_connection_sock *icsk,
174 struct sk_buff *skb, const struct inet_diag_req_v2 *req,
175 struct user_namespace *user_ns,
176 u32 portid, u32 seq, u16 nlmsg_flags,
177 const struct nlmsghdr *unlh,
180 const struct tcp_congestion_ops *ca_ops;
181 const struct inet_diag_handler *handler;
182 int ext = req->idiag_ext;
183 struct inet_diag_msg *r;
184 struct nlmsghdr *nlh;
188 handler = inet_diag_table[req->sdiag_protocol];
191 nlh = nlmsg_put(skb, portid, seq, unlh->nlmsg_type, sizeof(*r),
197 BUG_ON(!sk_fullsock(sk));
199 inet_diag_msg_common_fill(r, sk);
200 r->idiag_state = sk->sk_state;
202 r->idiag_retrans = 0;
204 if (inet_diag_msg_attrs_fill(sk, skb, r, ext, user_ns, net_admin))
207 if (ext & (1 << (INET_DIAG_MEMINFO - 1))) {
208 struct inet_diag_meminfo minfo = {
209 .idiag_rmem = sk_rmem_alloc_get(sk),
210 .idiag_wmem = READ_ONCE(sk->sk_wmem_queued),
211 .idiag_fmem = sk->sk_forward_alloc,
212 .idiag_tmem = sk_wmem_alloc_get(sk),
215 if (nla_put(skb, INET_DIAG_MEMINFO, sizeof(minfo), &minfo) < 0)
219 if (ext & (1 << (INET_DIAG_SKMEMINFO - 1)))
220 if (sock_diag_put_meminfo(sk, skb, INET_DIAG_SKMEMINFO))
224 * RAW sockets might have user-defined protocols assigned,
225 * so report the one supplied on socket creation.
227 if (sk->sk_type == SOCK_RAW) {
228 if (nla_put_u8(skb, INET_DIAG_PROTOCOL, sk->sk_protocol))
233 handler->idiag_get_info(sk, r, NULL);
237 if (icsk->icsk_pending == ICSK_TIME_RETRANS ||
238 icsk->icsk_pending == ICSK_TIME_REO_TIMEOUT ||
239 icsk->icsk_pending == ICSK_TIME_LOSS_PROBE) {
241 r->idiag_retrans = icsk->icsk_retransmits;
243 jiffies_delta_to_msecs(icsk->icsk_timeout - jiffies);
244 } else if (icsk->icsk_pending == ICSK_TIME_PROBE0) {
246 r->idiag_retrans = icsk->icsk_probes_out;
248 jiffies_delta_to_msecs(icsk->icsk_timeout - jiffies);
249 } else if (timer_pending(&sk->sk_timer)) {
251 r->idiag_retrans = icsk->icsk_probes_out;
253 jiffies_delta_to_msecs(sk->sk_timer.expires - jiffies);
256 r->idiag_expires = 0;
259 if ((ext & (1 << (INET_DIAG_INFO - 1))) && handler->idiag_info_size) {
260 attr = nla_reserve_64bit(skb, INET_DIAG_INFO,
261 handler->idiag_info_size,
266 info = nla_data(attr);
269 if (ext & (1 << (INET_DIAG_CONG - 1))) {
273 ca_ops = READ_ONCE(icsk->icsk_ca_ops);
275 err = nla_put_string(skb, INET_DIAG_CONG, ca_ops->name);
281 handler->idiag_get_info(sk, r, info);
283 if (ext & (1 << (INET_DIAG_INFO - 1)) && handler->idiag_get_aux)
284 if (handler->idiag_get_aux(sk, net_admin, skb) < 0)
287 if (sk->sk_state < TCP_TIME_WAIT) {
288 union tcp_cc_info info;
293 ca_ops = READ_ONCE(icsk->icsk_ca_ops);
294 if (ca_ops && ca_ops->get_info)
295 sz = ca_ops->get_info(sk, ext, &attr, &info);
297 if (sz && nla_put(skb, attr, sz, &info) < 0)
306 nlmsg_cancel(skb, nlh);
309 EXPORT_SYMBOL_GPL(inet_sk_diag_fill);
311 static int inet_csk_diag_fill(struct sock *sk,
313 const struct inet_diag_req_v2 *req,
314 struct user_namespace *user_ns,
315 u32 portid, u32 seq, u16 nlmsg_flags,
316 const struct nlmsghdr *unlh,
319 return inet_sk_diag_fill(sk, inet_csk(sk), skb, req, user_ns,
320 portid, seq, nlmsg_flags, unlh, net_admin);
323 static int inet_twsk_diag_fill(struct sock *sk,
325 u32 portid, u32 seq, u16 nlmsg_flags,
326 const struct nlmsghdr *unlh)
328 struct inet_timewait_sock *tw = inet_twsk(sk);
329 struct inet_diag_msg *r;
330 struct nlmsghdr *nlh;
333 nlh = nlmsg_put(skb, portid, seq, unlh->nlmsg_type, sizeof(*r),
339 BUG_ON(tw->tw_state != TCP_TIME_WAIT);
341 inet_diag_msg_common_fill(r, sk);
342 r->idiag_retrans = 0;
344 r->idiag_state = tw->tw_substate;
346 tmo = tw->tw_timer.expires - jiffies;
347 r->idiag_expires = jiffies_delta_to_msecs(tmo);
357 static int inet_req_diag_fill(struct sock *sk, struct sk_buff *skb,
358 u32 portid, u32 seq, u16 nlmsg_flags,
359 const struct nlmsghdr *unlh, bool net_admin)
361 struct request_sock *reqsk = inet_reqsk(sk);
362 struct inet_diag_msg *r;
363 struct nlmsghdr *nlh;
366 nlh = nlmsg_put(skb, portid, seq, unlh->nlmsg_type, sizeof(*r),
372 inet_diag_msg_common_fill(r, sk);
373 r->idiag_state = TCP_SYN_RECV;
375 r->idiag_retrans = reqsk->num_retrans;
377 BUILD_BUG_ON(offsetof(struct inet_request_sock, ir_cookie) !=
378 offsetof(struct sock, sk_cookie));
380 tmo = inet_reqsk(sk)->rsk_timer.expires - jiffies;
381 r->idiag_expires = jiffies_delta_to_msecs(tmo);
387 if (net_admin && nla_put_u32(skb, INET_DIAG_MARK,
388 inet_rsk(reqsk)->ir_mark))
395 static int sk_diag_fill(struct sock *sk, struct sk_buff *skb,
396 const struct inet_diag_req_v2 *r,
397 struct user_namespace *user_ns,
398 u32 portid, u32 seq, u16 nlmsg_flags,
399 const struct nlmsghdr *unlh, bool net_admin)
401 if (sk->sk_state == TCP_TIME_WAIT)
402 return inet_twsk_diag_fill(sk, skb, portid, seq,
405 if (sk->sk_state == TCP_NEW_SYN_RECV)
406 return inet_req_diag_fill(sk, skb, portid, seq,
407 nlmsg_flags, unlh, net_admin);
409 return inet_csk_diag_fill(sk, skb, r, user_ns, portid, seq,
410 nlmsg_flags, unlh, net_admin);
413 struct sock *inet_diag_find_one_icsk(struct net *net,
414 struct inet_hashinfo *hashinfo,
415 const struct inet_diag_req_v2 *req)
420 if (req->sdiag_family == AF_INET)
421 sk = inet_lookup(net, hashinfo, NULL, 0, req->id.idiag_dst[0],
422 req->id.idiag_dport, req->id.idiag_src[0],
423 req->id.idiag_sport, req->id.idiag_if);
424 #if IS_ENABLED(CONFIG_IPV6)
425 else if (req->sdiag_family == AF_INET6) {
426 if (ipv6_addr_v4mapped((struct in6_addr *)req->id.idiag_dst) &&
427 ipv6_addr_v4mapped((struct in6_addr *)req->id.idiag_src))
428 sk = inet_lookup(net, hashinfo, NULL, 0, req->id.idiag_dst[3],
429 req->id.idiag_dport, req->id.idiag_src[3],
430 req->id.idiag_sport, req->id.idiag_if);
432 sk = inet6_lookup(net, hashinfo, NULL, 0,
433 (struct in6_addr *)req->id.idiag_dst,
435 (struct in6_addr *)req->id.idiag_src,
442 return ERR_PTR(-EINVAL);
446 return ERR_PTR(-ENOENT);
448 if (sock_diag_check_cookie(sk, req->id.idiag_cookie)) {
450 return ERR_PTR(-ENOENT);
455 EXPORT_SYMBOL_GPL(inet_diag_find_one_icsk);
457 int inet_diag_dump_one_icsk(struct inet_hashinfo *hashinfo,
458 struct sk_buff *in_skb,
459 const struct nlmsghdr *nlh,
460 const struct inet_diag_req_v2 *req)
462 bool net_admin = netlink_net_capable(in_skb, CAP_NET_ADMIN);
463 struct net *net = sock_net(in_skb->sk);
468 sk = inet_diag_find_one_icsk(net, hashinfo, req);
472 rep = nlmsg_new(inet_sk_attr_size(sk, req, net_admin), GFP_KERNEL);
478 err = sk_diag_fill(sk, rep, req,
479 sk_user_ns(NETLINK_CB(in_skb).sk),
480 NETLINK_CB(in_skb).portid,
481 nlh->nlmsg_seq, 0, nlh, net_admin);
483 WARN_ON(err == -EMSGSIZE);
487 err = netlink_unicast(net->diag_nlsk, rep, NETLINK_CB(in_skb).portid,
498 EXPORT_SYMBOL_GPL(inet_diag_dump_one_icsk);
500 static int inet_diag_cmd_exact(int cmd, struct sk_buff *in_skb,
501 const struct nlmsghdr *nlh,
502 const struct inet_diag_req_v2 *req)
504 const struct inet_diag_handler *handler;
507 handler = inet_diag_lock_handler(req->sdiag_protocol);
509 err = PTR_ERR(handler);
510 else if (cmd == SOCK_DIAG_BY_FAMILY)
511 err = handler->dump_one(in_skb, nlh, req);
512 else if (cmd == SOCK_DESTROY && handler->destroy)
513 err = handler->destroy(in_skb, req);
516 inet_diag_unlock_handler(handler);
521 static int bitstring_match(const __be32 *a1, const __be32 *a2, int bits)
523 int words = bits >> 5;
528 if (memcmp(a1, a2, words << 2))
538 mask = htonl((0xffffffff) << (32 - bits));
540 if ((w1 ^ w2) & mask)
547 static int inet_diag_bc_run(const struct nlattr *_bc,
548 const struct inet_diag_entry *entry)
550 const void *bc = nla_data(_bc);
551 int len = nla_len(_bc);
555 const struct inet_diag_bc_op *op = bc;
558 case INET_DIAG_BC_NOP:
560 case INET_DIAG_BC_JMP:
563 case INET_DIAG_BC_S_EQ:
564 yes = entry->sport == op[1].no;
566 case INET_DIAG_BC_S_GE:
567 yes = entry->sport >= op[1].no;
569 case INET_DIAG_BC_S_LE:
570 yes = entry->sport <= op[1].no;
572 case INET_DIAG_BC_D_EQ:
573 yes = entry->dport == op[1].no;
575 case INET_DIAG_BC_D_GE:
576 yes = entry->dport >= op[1].no;
578 case INET_DIAG_BC_D_LE:
579 yes = entry->dport <= op[1].no;
581 case INET_DIAG_BC_AUTO:
582 yes = !(entry->userlocks & SOCK_BINDPORT_LOCK);
584 case INET_DIAG_BC_S_COND:
585 case INET_DIAG_BC_D_COND: {
586 const struct inet_diag_hostcond *cond;
589 cond = (const struct inet_diag_hostcond *)(op + 1);
590 if (cond->port != -1 &&
591 cond->port != (op->code == INET_DIAG_BC_S_COND ?
592 entry->sport : entry->dport)) {
597 if (op->code == INET_DIAG_BC_S_COND)
602 if (cond->family != AF_UNSPEC &&
603 cond->family != entry->family) {
604 if (entry->family == AF_INET6 &&
605 cond->family == AF_INET) {
606 if (addr[0] == 0 && addr[1] == 0 &&
607 addr[2] == htonl(0xffff) &&
608 bitstring_match(addr + 3,
617 if (cond->prefix_len == 0)
619 if (bitstring_match(addr, cond->addr,
625 case INET_DIAG_BC_DEV_COND: {
628 ifindex = *((const u32 *)(op + 1));
629 if (ifindex != entry->ifindex)
633 case INET_DIAG_BC_MARK_COND: {
634 struct inet_diag_markcond *cond;
636 cond = (struct inet_diag_markcond *)(op + 1);
637 if ((entry->mark & cond->mask) != cond->mark)
654 /* This helper is available for all sockets (ESTABLISH, TIMEWAIT, SYN_RECV)
656 static void entry_fill_addrs(struct inet_diag_entry *entry,
657 const struct sock *sk)
659 #if IS_ENABLED(CONFIG_IPV6)
660 if (sk->sk_family == AF_INET6) {
661 entry->saddr = sk->sk_v6_rcv_saddr.s6_addr32;
662 entry->daddr = sk->sk_v6_daddr.s6_addr32;
666 entry->saddr = &sk->sk_rcv_saddr;
667 entry->daddr = &sk->sk_daddr;
671 int inet_diag_bc_sk(const struct nlattr *bc, struct sock *sk)
673 struct inet_sock *inet = inet_sk(sk);
674 struct inet_diag_entry entry;
679 entry.family = sk->sk_family;
680 entry_fill_addrs(&entry, sk);
681 entry.sport = inet->inet_num;
682 entry.dport = ntohs(inet->inet_dport);
683 entry.ifindex = sk->sk_bound_dev_if;
684 entry.userlocks = sk_fullsock(sk) ? sk->sk_userlocks : 0;
686 entry.mark = sk->sk_mark;
687 else if (sk->sk_state == TCP_NEW_SYN_RECV)
688 entry.mark = inet_rsk(inet_reqsk(sk))->ir_mark;
692 return inet_diag_bc_run(bc, &entry);
694 EXPORT_SYMBOL_GPL(inet_diag_bc_sk);
696 static int valid_cc(const void *bc, int len, int cc)
699 const struct inet_diag_bc_op *op = bc;
705 if (op->yes < 4 || op->yes & 3)
713 /* data is u32 ifindex */
714 static bool valid_devcond(const struct inet_diag_bc_op *op, int len,
717 /* Check ifindex space. */
718 *min_len += sizeof(u32);
724 /* Validate an inet_diag_hostcond. */
725 static bool valid_hostcond(const struct inet_diag_bc_op *op, int len,
728 struct inet_diag_hostcond *cond;
731 /* Check hostcond space. */
732 *min_len += sizeof(struct inet_diag_hostcond);
735 cond = (struct inet_diag_hostcond *)(op + 1);
737 /* Check address family and address length. */
738 switch (cond->family) {
743 addr_len = sizeof(struct in_addr);
746 addr_len = sizeof(struct in6_addr);
751 *min_len += addr_len;
755 /* Check prefix length (in bits) vs address length (in bytes). */
756 if (cond->prefix_len > 8 * addr_len)
762 /* Validate a port comparison operator. */
763 static bool valid_port_comparison(const struct inet_diag_bc_op *op,
764 int len, int *min_len)
766 /* Port comparisons put the port in a follow-on inet_diag_bc_op. */
767 *min_len += sizeof(struct inet_diag_bc_op);
773 static bool valid_markcond(const struct inet_diag_bc_op *op, int len,
776 *min_len += sizeof(struct inet_diag_markcond);
777 return len >= *min_len;
780 static int inet_diag_bc_audit(const struct nlattr *attr,
781 const struct sk_buff *skb)
783 bool net_admin = netlink_net_capable(skb, CAP_NET_ADMIN);
784 const void *bytecode, *bc;
785 int bytecode_len, len;
787 if (!attr || nla_len(attr) < sizeof(struct inet_diag_bc_op))
790 bytecode = bc = nla_data(attr);
791 len = bytecode_len = nla_len(attr);
794 int min_len = sizeof(struct inet_diag_bc_op);
795 const struct inet_diag_bc_op *op = bc;
798 case INET_DIAG_BC_S_COND:
799 case INET_DIAG_BC_D_COND:
800 if (!valid_hostcond(bc, len, &min_len))
803 case INET_DIAG_BC_DEV_COND:
804 if (!valid_devcond(bc, len, &min_len))
807 case INET_DIAG_BC_S_EQ:
808 case INET_DIAG_BC_S_GE:
809 case INET_DIAG_BC_S_LE:
810 case INET_DIAG_BC_D_EQ:
811 case INET_DIAG_BC_D_GE:
812 case INET_DIAG_BC_D_LE:
813 if (!valid_port_comparison(bc, len, &min_len))
816 case INET_DIAG_BC_MARK_COND:
819 if (!valid_markcond(bc, len, &min_len))
822 case INET_DIAG_BC_AUTO:
823 case INET_DIAG_BC_JMP:
824 case INET_DIAG_BC_NOP:
830 if (op->code != INET_DIAG_BC_NOP) {
831 if (op->no < min_len || op->no > len + 4 || op->no & 3)
834 !valid_cc(bytecode, bytecode_len, len - op->no))
838 if (op->yes < min_len || op->yes > len + 4 || op->yes & 3)
843 return len == 0 ? 0 : -EINVAL;
846 static int inet_csk_diag_dump(struct sock *sk,
848 struct netlink_callback *cb,
849 const struct inet_diag_req_v2 *r,
850 const struct nlattr *bc,
853 if (!inet_diag_bc_sk(bc, sk))
856 return inet_csk_diag_fill(sk, skb, r,
857 sk_user_ns(NETLINK_CB(cb->skb).sk),
858 NETLINK_CB(cb->skb).portid,
859 cb->nlh->nlmsg_seq, NLM_F_MULTI, cb->nlh,
863 static void twsk_build_assert(void)
865 BUILD_BUG_ON(offsetof(struct inet_timewait_sock, tw_family) !=
866 offsetof(struct sock, sk_family));
868 BUILD_BUG_ON(offsetof(struct inet_timewait_sock, tw_num) !=
869 offsetof(struct inet_sock, inet_num));
871 BUILD_BUG_ON(offsetof(struct inet_timewait_sock, tw_dport) !=
872 offsetof(struct inet_sock, inet_dport));
874 BUILD_BUG_ON(offsetof(struct inet_timewait_sock, tw_rcv_saddr) !=
875 offsetof(struct inet_sock, inet_rcv_saddr));
877 BUILD_BUG_ON(offsetof(struct inet_timewait_sock, tw_daddr) !=
878 offsetof(struct inet_sock, inet_daddr));
880 #if IS_ENABLED(CONFIG_IPV6)
881 BUILD_BUG_ON(offsetof(struct inet_timewait_sock, tw_v6_rcv_saddr) !=
882 offsetof(struct sock, sk_v6_rcv_saddr));
884 BUILD_BUG_ON(offsetof(struct inet_timewait_sock, tw_v6_daddr) !=
885 offsetof(struct sock, sk_v6_daddr));
889 void inet_diag_dump_icsk(struct inet_hashinfo *hashinfo, struct sk_buff *skb,
890 struct netlink_callback *cb,
891 const struct inet_diag_req_v2 *r, struct nlattr *bc)
893 bool net_admin = netlink_net_capable(cb->skb, CAP_NET_ADMIN);
894 struct net *net = sock_net(skb->sk);
895 u32 idiag_states = r->idiag_states;
896 int i, num, s_i, s_num;
899 if (idiag_states & TCPF_SYN_RECV)
900 idiag_states |= TCPF_NEW_SYN_RECV;
902 s_num = num = cb->args[2];
904 if (cb->args[0] == 0) {
905 if (!(idiag_states & TCPF_LISTEN) || r->id.idiag_dport)
908 for (i = s_i; i < INET_LHTABLE_SIZE; i++) {
909 struct inet_listen_hashbucket *ilb;
910 struct hlist_nulls_node *node;
913 ilb = &hashinfo->listening_hash[i];
914 spin_lock(&ilb->lock);
915 sk_nulls_for_each(sk, node, &ilb->nulls_head) {
916 struct inet_sock *inet = inet_sk(sk);
918 if (!net_eq(sock_net(sk), net))
926 if (r->sdiag_family != AF_UNSPEC &&
927 sk->sk_family != r->sdiag_family)
930 if (r->id.idiag_sport != inet->inet_sport &&
934 if (inet_csk_diag_dump(sk, skb, cb, r,
935 bc, net_admin) < 0) {
936 spin_unlock(&ilb->lock);
943 spin_unlock(&ilb->lock);
949 s_i = num = s_num = 0;
952 if (!(idiag_states & ~TCPF_LISTEN))
956 for (i = s_i; i <= hashinfo->ehash_mask; i++) {
957 struct inet_ehash_bucket *head = &hashinfo->ehash[i];
958 spinlock_t *lock = inet_ehash_lockp(hashinfo, i);
959 struct hlist_nulls_node *node;
960 struct sock *sk_arr[SKARR_SZ];
961 int num_arr[SKARR_SZ];
964 if (hlist_nulls_empty(&head->chain))
974 sk_nulls_for_each(sk, node, &head->chain) {
977 if (!net_eq(sock_net(sk), net))
981 state = (sk->sk_state == TCP_TIME_WAIT) ?
982 inet_twsk(sk)->tw_substate : sk->sk_state;
983 if (!(idiag_states & (1 << state)))
985 if (r->sdiag_family != AF_UNSPEC &&
986 sk->sk_family != r->sdiag_family)
988 if (r->id.idiag_sport != htons(sk->sk_num) &&
991 if (r->id.idiag_dport != sk->sk_dport &&
996 if (!inet_diag_bc_sk(bc, sk))
999 if (!refcount_inc_not_zero(&sk->sk_refcnt))
1002 num_arr[accum] = num;
1004 if (++accum == SKARR_SZ)
1009 spin_unlock_bh(lock);
1011 for (idx = 0; idx < accum; idx++) {
1013 res = sk_diag_fill(sk_arr[idx], skb, r,
1014 sk_user_ns(NETLINK_CB(cb->skb).sk),
1015 NETLINK_CB(cb->skb).portid,
1016 cb->nlh->nlmsg_seq, NLM_F_MULTI,
1017 cb->nlh, net_admin);
1021 sock_gen_put(sk_arr[idx]);
1026 if (accum == SKARR_SZ) {
1038 EXPORT_SYMBOL_GPL(inet_diag_dump_icsk);
1040 static int __inet_diag_dump(struct sk_buff *skb, struct netlink_callback *cb,
1041 const struct inet_diag_req_v2 *r,
1044 const struct inet_diag_handler *handler;
1047 handler = inet_diag_lock_handler(r->sdiag_protocol);
1048 if (!IS_ERR(handler))
1049 handler->dump(skb, cb, r, bc);
1051 err = PTR_ERR(handler);
1052 inet_diag_unlock_handler(handler);
1054 return err ? : skb->len;
1057 static int inet_diag_dump(struct sk_buff *skb, struct netlink_callback *cb)
1059 int hdrlen = sizeof(struct inet_diag_req_v2);
1060 struct nlattr *bc = NULL;
1062 if (nlmsg_attrlen(cb->nlh, hdrlen))
1063 bc = nlmsg_find_attr(cb->nlh, hdrlen, INET_DIAG_REQ_BYTECODE);
1065 return __inet_diag_dump(skb, cb, nlmsg_data(cb->nlh), bc);
1068 static int inet_diag_type2proto(int type)
1071 case TCPDIAG_GETSOCK:
1073 case DCCPDIAG_GETSOCK:
1074 return IPPROTO_DCCP;
1080 static int inet_diag_dump_compat(struct sk_buff *skb,
1081 struct netlink_callback *cb)
1083 struct inet_diag_req *rc = nlmsg_data(cb->nlh);
1084 int hdrlen = sizeof(struct inet_diag_req);
1085 struct inet_diag_req_v2 req;
1086 struct nlattr *bc = NULL;
1088 req.sdiag_family = AF_UNSPEC; /* compatibility */
1089 req.sdiag_protocol = inet_diag_type2proto(cb->nlh->nlmsg_type);
1090 req.idiag_ext = rc->idiag_ext;
1091 req.idiag_states = rc->idiag_states;
1094 if (nlmsg_attrlen(cb->nlh, hdrlen))
1095 bc = nlmsg_find_attr(cb->nlh, hdrlen, INET_DIAG_REQ_BYTECODE);
1097 return __inet_diag_dump(skb, cb, &req, bc);
1100 static int inet_diag_get_exact_compat(struct sk_buff *in_skb,
1101 const struct nlmsghdr *nlh)
1103 struct inet_diag_req *rc = nlmsg_data(nlh);
1104 struct inet_diag_req_v2 req;
1106 req.sdiag_family = rc->idiag_family;
1107 req.sdiag_protocol = inet_diag_type2proto(nlh->nlmsg_type);
1108 req.idiag_ext = rc->idiag_ext;
1109 req.idiag_states = rc->idiag_states;
1112 return inet_diag_cmd_exact(SOCK_DIAG_BY_FAMILY, in_skb, nlh, &req);
1115 static int inet_diag_rcv_msg_compat(struct sk_buff *skb, struct nlmsghdr *nlh)
1117 int hdrlen = sizeof(struct inet_diag_req);
1118 struct net *net = sock_net(skb->sk);
1120 if (nlh->nlmsg_type >= INET_DIAG_GETSOCK_MAX ||
1121 nlmsg_len(nlh) < hdrlen)
1124 if (nlh->nlmsg_flags & NLM_F_DUMP) {
1125 if (nlmsg_attrlen(nlh, hdrlen)) {
1126 struct nlattr *attr;
1129 attr = nlmsg_find_attr(nlh, hdrlen,
1130 INET_DIAG_REQ_BYTECODE);
1131 err = inet_diag_bc_audit(attr, skb);
1136 struct netlink_dump_control c = {
1137 .dump = inet_diag_dump_compat,
1139 return netlink_dump_start(net->diag_nlsk, skb, nlh, &c);
1143 return inet_diag_get_exact_compat(skb, nlh);
1146 static int inet_diag_handler_cmd(struct sk_buff *skb, struct nlmsghdr *h)
1148 int hdrlen = sizeof(struct inet_diag_req_v2);
1149 struct net *net = sock_net(skb->sk);
1151 if (nlmsg_len(h) < hdrlen)
1154 if (h->nlmsg_type == SOCK_DIAG_BY_FAMILY &&
1155 h->nlmsg_flags & NLM_F_DUMP) {
1156 if (nlmsg_attrlen(h, hdrlen)) {
1157 struct nlattr *attr;
1160 attr = nlmsg_find_attr(h, hdrlen,
1161 INET_DIAG_REQ_BYTECODE);
1162 err = inet_diag_bc_audit(attr, skb);
1167 struct netlink_dump_control c = {
1168 .dump = inet_diag_dump,
1170 return netlink_dump_start(net->diag_nlsk, skb, h, &c);
1174 return inet_diag_cmd_exact(h->nlmsg_type, skb, h, nlmsg_data(h));
1178 int inet_diag_handler_get_info(struct sk_buff *skb, struct sock *sk)
1180 const struct inet_diag_handler *handler;
1181 struct nlmsghdr *nlh;
1182 struct nlattr *attr;
1183 struct inet_diag_msg *r;
1187 nlh = nlmsg_put(skb, 0, 0, SOCK_DIAG_BY_FAMILY, sizeof(*r), 0);
1191 r = nlmsg_data(nlh);
1192 memset(r, 0, sizeof(*r));
1193 inet_diag_msg_common_fill(r, sk);
1194 if (sk->sk_type == SOCK_DGRAM || sk->sk_type == SOCK_STREAM)
1195 r->id.idiag_sport = inet_sk(sk)->inet_sport;
1196 r->idiag_state = sk->sk_state;
1198 if ((err = nla_put_u8(skb, INET_DIAG_PROTOCOL, sk->sk_protocol))) {
1199 nlmsg_cancel(skb, nlh);
1203 handler = inet_diag_lock_handler(sk->sk_protocol);
1204 if (IS_ERR(handler)) {
1205 inet_diag_unlock_handler(handler);
1206 nlmsg_cancel(skb, nlh);
1207 return PTR_ERR(handler);
1210 attr = handler->idiag_info_size
1211 ? nla_reserve_64bit(skb, INET_DIAG_INFO,
1212 handler->idiag_info_size,
1216 info = nla_data(attr);
1218 handler->idiag_get_info(sk, r, info);
1219 inet_diag_unlock_handler(handler);
1221 nlmsg_end(skb, nlh);
1225 static const struct sock_diag_handler inet_diag_handler = {
1227 .dump = inet_diag_handler_cmd,
1228 .get_info = inet_diag_handler_get_info,
1229 .destroy = inet_diag_handler_cmd,
1232 static const struct sock_diag_handler inet6_diag_handler = {
1234 .dump = inet_diag_handler_cmd,
1235 .get_info = inet_diag_handler_get_info,
1236 .destroy = inet_diag_handler_cmd,
1239 int inet_diag_register(const struct inet_diag_handler *h)
1241 const __u16 type = h->idiag_type;
1244 if (type >= IPPROTO_MAX)
1247 mutex_lock(&inet_diag_table_mutex);
1249 if (!inet_diag_table[type]) {
1250 inet_diag_table[type] = h;
1253 mutex_unlock(&inet_diag_table_mutex);
1257 EXPORT_SYMBOL_GPL(inet_diag_register);
1259 void inet_diag_unregister(const struct inet_diag_handler *h)
1261 const __u16 type = h->idiag_type;
1263 if (type >= IPPROTO_MAX)
1266 mutex_lock(&inet_diag_table_mutex);
1267 inet_diag_table[type] = NULL;
1268 mutex_unlock(&inet_diag_table_mutex);
1270 EXPORT_SYMBOL_GPL(inet_diag_unregister);
1272 static int __init inet_diag_init(void)
1274 const int inet_diag_table_size = (IPPROTO_MAX *
1275 sizeof(struct inet_diag_handler *));
1278 inet_diag_table = kzalloc(inet_diag_table_size, GFP_KERNEL);
1279 if (!inet_diag_table)
1282 err = sock_diag_register(&inet_diag_handler);
1286 err = sock_diag_register(&inet6_diag_handler);
1290 sock_diag_register_inet_compat(inet_diag_rcv_msg_compat);
1295 sock_diag_unregister(&inet_diag_handler);
1297 kfree(inet_diag_table);
1301 static void __exit inet_diag_exit(void)
1303 sock_diag_unregister(&inet6_diag_handler);
1304 sock_diag_unregister(&inet_diag_handler);
1305 sock_diag_unregister_inet_compat(inet_diag_rcv_msg_compat);
1306 kfree(inet_diag_table);
1309 module_init(inet_diag_init);
1310 module_exit(inet_diag_exit);
1311 MODULE_LICENSE("GPL");
1312 MODULE_ALIAS_NET_PF_PROTO_TYPE(PF_NETLINK, NETLINK_SOCK_DIAG, 2 /* AF_INET */);
1313 MODULE_ALIAS_NET_PF_PROTO_TYPE(PF_NETLINK, NETLINK_SOCK_DIAG, 10 /* AF_INET6 */);
OSDN Git Service
