1 #include <linux/kernel.h>
3 #include <linux/sctp.h>
5 #include <net/ip6_checksum.h>
6 #include <linux/netfilter.h>
7 #include <linux/netfilter_ipv4.h>
8 #include <net/sctp/checksum.h>
12 sctp_conn_schedule(int af, struct sk_buff *skb, struct ip_vs_protocol *pp,
13 int *verdict, struct ip_vs_conn **cpp)
15 struct ip_vs_service *svc;
16 sctp_chunkhdr_t _schunkh, *sch;
17 sctp_sctphdr_t *sh, _sctph;
18 struct ip_vs_iphdr iph;
20 ip_vs_fill_iphdr(af, skb_network_header(skb), &iph);
22 sh = skb_header_pointer(skb, iph.len, sizeof(_sctph), &_sctph);
26 sch = skb_header_pointer(skb, iph.len + sizeof(sctp_sctphdr_t),
27 sizeof(_schunkh), &_schunkh);
31 if ((sch->type == SCTP_CID_INIT) &&
32 (svc = ip_vs_service_get(af, skb->mark, iph.protocol,
33 &iph.daddr, sh->dest))) {
36 * It seems that we are very loaded.
37 * We have to drop this packet :(
39 ip_vs_service_put(svc);
44 * Let the virtual server select a real server for the
45 * incoming connection, and create a connection entry.
47 *cpp = ip_vs_schedule(svc, skb);
49 *verdict = ip_vs_leave(svc, skb, pp);
52 ip_vs_service_put(svc);
59 sctp_snat_handler(struct sk_buff *skb,
60 struct ip_vs_protocol *pp, struct ip_vs_conn *cp)
62 sctp_sctphdr_t *sctph;
63 unsigned int sctphoff;
67 #ifdef CONFIG_IP_VS_IPV6
68 if (cp->af == AF_INET6)
69 sctphoff = sizeof(struct ipv6hdr);
72 sctphoff = ip_hdrlen(skb);
74 /* csum_check requires unshared skb */
75 if (!skb_make_writable(skb, sctphoff + sizeof(*sctph)))
78 if (unlikely(cp->app != NULL)) {
79 /* Some checks before mangling */
80 if (pp->csum_check && !pp->csum_check(cp->af, skb, pp))
83 /* Call application helper if needed */
84 if (!ip_vs_app_pkt_out(cp, skb))
88 sctph = (void *) skb_network_header(skb) + sctphoff;
89 sctph->source = cp->vport;
91 /* Calculate the checksum */
92 crc32 = sctp_start_cksum((u8 *) sctph, skb_headlen(skb) - sctphoff);
93 skb_walk_frags(skb, iter)
94 crc32 = sctp_update_cksum((u8 *) iter->data, skb_headlen(iter),
96 crc32 = sctp_end_cksum(crc32);
97 sctph->checksum = crc32;
103 sctp_dnat_handler(struct sk_buff *skb,
104 struct ip_vs_protocol *pp, struct ip_vs_conn *cp)
106 sctp_sctphdr_t *sctph;
107 unsigned int sctphoff;
108 struct sk_buff *iter;
111 #ifdef CONFIG_IP_VS_IPV6
112 if (cp->af == AF_INET6)
113 sctphoff = sizeof(struct ipv6hdr);
116 sctphoff = ip_hdrlen(skb);
118 /* csum_check requires unshared skb */
119 if (!skb_make_writable(skb, sctphoff + sizeof(*sctph)))
122 if (unlikely(cp->app != NULL)) {
123 /* Some checks before mangling */
124 if (pp->csum_check && !pp->csum_check(cp->af, skb, pp))
127 /* Call application helper if needed */
128 if (!ip_vs_app_pkt_in(cp, skb))
132 sctph = (void *) skb_network_header(skb) + sctphoff;
133 sctph->dest = cp->dport;
135 /* Calculate the checksum */
136 crc32 = sctp_start_cksum((u8 *) sctph, skb_headlen(skb) - sctphoff);
137 skb_walk_frags(skb, iter)
138 crc32 = sctp_update_cksum((u8 *) iter->data, skb_headlen(iter),
140 crc32 = sctp_end_cksum(crc32);
141 sctph->checksum = crc32;
147 sctp_csum_check(int af, struct sk_buff *skb, struct ip_vs_protocol *pp)
149 unsigned int sctphoff;
150 struct sctphdr *sh, _sctph;
151 struct sk_buff *iter;
156 #ifdef CONFIG_IP_VS_IPV6
158 sctphoff = sizeof(struct ipv6hdr);
161 sctphoff = ip_hdrlen(skb);
163 sh = skb_header_pointer(skb, sctphoff, sizeof(_sctph), &_sctph);
169 tmp = sctp_start_cksum((__u8 *) sh, skb_headlen(skb));
170 skb_walk_frags(skb, iter)
171 tmp = sctp_update_cksum((__u8 *) iter->data,
172 skb_headlen(iter), tmp);
174 val = sctp_end_cksum(tmp);
177 /* CRC failure, dump it. */
178 IP_VS_DBG_RL_PKT(0, pp, skb, 0,
179 "Failed checksum for");
185 struct ipvs_sctp_nextstate {
188 enum ipvs_sctp_event_t {
189 IP_VS_SCTP_EVE_DATA_CLI,
190 IP_VS_SCTP_EVE_DATA_SER,
191 IP_VS_SCTP_EVE_INIT_CLI,
192 IP_VS_SCTP_EVE_INIT_SER,
193 IP_VS_SCTP_EVE_INIT_ACK_CLI,
194 IP_VS_SCTP_EVE_INIT_ACK_SER,
195 IP_VS_SCTP_EVE_COOKIE_ECHO_CLI,
196 IP_VS_SCTP_EVE_COOKIE_ECHO_SER,
197 IP_VS_SCTP_EVE_COOKIE_ACK_CLI,
198 IP_VS_SCTP_EVE_COOKIE_ACK_SER,
199 IP_VS_SCTP_EVE_ABORT_CLI,
200 IP_VS_SCTP_EVE__ABORT_SER,
201 IP_VS_SCTP_EVE_SHUT_CLI,
202 IP_VS_SCTP_EVE_SHUT_SER,
203 IP_VS_SCTP_EVE_SHUT_ACK_CLI,
204 IP_VS_SCTP_EVE_SHUT_ACK_SER,
205 IP_VS_SCTP_EVE_SHUT_COM_CLI,
206 IP_VS_SCTP_EVE_SHUT_COM_SER,
210 static enum ipvs_sctp_event_t sctp_events[255] = {
211 IP_VS_SCTP_EVE_DATA_CLI,
212 IP_VS_SCTP_EVE_INIT_CLI,
213 IP_VS_SCTP_EVE_INIT_ACK_CLI,
214 IP_VS_SCTP_EVE_DATA_CLI,
215 IP_VS_SCTP_EVE_DATA_CLI,
216 IP_VS_SCTP_EVE_DATA_CLI,
217 IP_VS_SCTP_EVE_ABORT_CLI,
218 IP_VS_SCTP_EVE_SHUT_CLI,
219 IP_VS_SCTP_EVE_SHUT_ACK_CLI,
220 IP_VS_SCTP_EVE_DATA_CLI,
221 IP_VS_SCTP_EVE_COOKIE_ECHO_CLI,
222 IP_VS_SCTP_EVE_COOKIE_ACK_CLI,
223 IP_VS_SCTP_EVE_DATA_CLI,
224 IP_VS_SCTP_EVE_DATA_CLI,
225 IP_VS_SCTP_EVE_SHUT_COM_CLI,
228 static struct ipvs_sctp_nextstate
229 sctp_states_table[IP_VS_SCTP_S_LAST][IP_VS_SCTP_EVE_LAST] = {
231 * STATE : IP_VS_SCTP_S_NONE
233 /*next state *//*event */
234 {{IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_CLI */ },
235 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_SER */ },
236 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
237 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
238 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
239 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
240 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
241 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
242 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
243 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
244 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
245 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
246 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_CLI */ },
247 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_SER */ },
248 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
249 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
250 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
251 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ },
254 * STATE : IP_VS_SCTP_S_INIT_CLI
255 * Cient sent INIT and is waiting for reply from server(In ECHO_WAIT)
257 {{IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_CLI */ },
258 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_SER */ },
259 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
260 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
261 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
262 {IP_VS_SCTP_S_INIT_ACK_SER /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
263 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ECHO_CLI */ },
264 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_ECHO_SER */ },
265 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
266 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
267 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
268 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
269 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_CLI */ },
270 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_SER */ },
271 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
272 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
273 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
274 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
277 * State : IP_VS_SCTP_S_INIT_SER
278 * Server sent INIT and waiting for INIT ACK from the client
280 {{IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_CLI */ },
281 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_SER */ },
282 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
283 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
284 {IP_VS_SCTP_S_INIT_ACK_CLI /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
285 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
286 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
287 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
288 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
289 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
290 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
291 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
292 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_CLI */ },
293 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_SER */ },
294 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
295 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
296 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
297 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
300 * State : IP_VS_SCTP_S_INIT_ACK_CLI
301 * Client sent INIT ACK and waiting for ECHO from the server
303 {{IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_CLI */ },
304 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_SER */ },
306 * We have got an INIT from client. From the spec.“Upon receipt of
307 * an INIT in the COOKIE-WAIT state, an endpoint MUST respond with
308 * an INIT ACK using the same parameters it sent in its original
309 * INIT chunk (including its Initiate Tag, unchanged”).
311 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
312 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
314 * INIT_ACK has been resent by the client, let us stay is in
317 {IP_VS_SCTP_S_INIT_ACK_CLI /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
319 * INIT_ACK sent by the server, close the connection
321 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
323 * ECHO by client, it should not happen, close the connection
325 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
327 * ECHO by server, this is what we are expecting, move to ECHO_SER
329 {IP_VS_SCTP_S_ECHO_SER /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
331 * COOKIE ACK from client, it should not happen, close the connection
333 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
335 * Unexpected COOKIE ACK from server, staty in the same state
337 {IP_VS_SCTP_S_INIT_ACK_CLI /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
338 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
339 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
340 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_CLI */ },
341 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_SER */ },
342 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
343 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
344 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
345 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
348 * State : IP_VS_SCTP_S_INIT_ACK_SER
349 * Server sent INIT ACK and waiting for ECHO from the client
351 {{IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_CLI */ },
352 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_SER */ },
354 * We have got an INIT from client. From the spec.“Upon receipt of
355 * an INIT in the COOKIE-WAIT state, an endpoint MUST respond with
356 * an INIT ACK using the same parameters it sent in its original
357 * INIT chunk (including its Initiate Tag, unchanged”).
359 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
360 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
362 * Unexpected INIT_ACK by the client, let us close the connection
364 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
366 * INIT_ACK resent by the server, let us move to same state
368 {IP_VS_SCTP_S_INIT_ACK_SER /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
370 * Client send the ECHO, this is what we are expecting,
373 {IP_VS_SCTP_S_ECHO_CLI /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
375 * ECHO received from the server, Not sure what to do,
378 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
380 * COOKIE ACK from client, let us stay in the same state
382 {IP_VS_SCTP_S_INIT_ACK_SER /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
384 * COOKIE ACK from server, hmm... this should not happen, lets close
387 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
388 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
389 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
390 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_CLI */ },
391 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_SER */ },
392 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
393 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
394 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
395 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
398 * State : IP_VS_SCTP_S_ECHO_CLI
399 * Cient sent ECHO and waiting COOKEI ACK from the Server
401 {{IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_CLI */ },
402 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_SER */ },
404 * We have got an INIT from client. From the spec.“Upon receipt of
405 * an INIT in the COOKIE-WAIT state, an endpoint MUST respond with
406 * an INIT ACK using the same parameters it sent in its original
407 * INIT chunk (including its Initiate Tag, unchanged”).
409 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
410 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
412 * INIT_ACK has been by the client, let us close the connection
414 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
416 * INIT_ACK sent by the server, Unexpected INIT ACK, spec says,
417 * “If an INIT ACK is received by an endpoint in any state other
418 * than the COOKIE-WAIT state, the endpoint should discard the
419 * INIT ACK chunk”. Stay in the same state
421 {IP_VS_SCTP_S_ECHO_CLI /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
423 * Client resent the ECHO, let us stay in the same state
425 {IP_VS_SCTP_S_ECHO_CLI /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
427 * ECHO received from the server, Not sure what to do,
430 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
432 * COOKIE ACK from client, this shoud not happen, let's close the
435 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
437 * COOKIE ACK from server, this is what we are awaiting,lets move to
440 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
441 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
442 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
443 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_CLI */ },
444 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_SER */ },
445 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
446 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
447 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
448 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
451 * State : IP_VS_SCTP_S_ECHO_SER
452 * Server sent ECHO and waiting COOKEI ACK from the client
454 {{IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_CLI */ },
455 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_SER */ },
457 * We have got an INIT from client. From the spec.“Upon receipt of
458 * an INIT in the COOKIE-WAIT state, an endpoint MUST respond with
459 * an INIT ACK using the same parameters it sent in its original
460 * INIT chunk (including its Initiate Tag, unchanged”).
462 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
463 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
465 * INIT_ACK sent by the server, Unexpected INIT ACK, spec says,
466 * “If an INIT ACK is received by an endpoint in any state other
467 * than the COOKIE-WAIT state, the endpoint should discard the
468 * INIT ACK chunk”. Stay in the same state
470 {IP_VS_SCTP_S_ECHO_SER /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
472 * INIT_ACK has been by the server, let us close the connection
474 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
476 * Client sent the ECHO, not sure what to do, let's close the
479 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
481 * ECHO resent by the server, stay in the same state
483 {IP_VS_SCTP_S_ECHO_SER /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
485 * COOKIE ACK from client, this is what we are expecting, let's move
488 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
490 * COOKIE ACK from server, this should not happen, lets close the
493 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
494 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
495 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
496 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_CLI */ },
497 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_SER */ },
498 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
499 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
500 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
501 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
504 * State : IP_VS_SCTP_S_ESTABLISHED
505 * Association established
507 {{IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_DATA_CLI */ },
508 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_DATA_SER */ },
510 * We have got an INIT from client. From the spec.“Upon receipt of
511 * an INIT in the COOKIE-WAIT state, an endpoint MUST respond with
512 * an INIT ACK using the same parameters it sent in its original
513 * INIT chunk (including its Initiate Tag, unchanged”).
515 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
516 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
518 * INIT_ACK sent by the server, Unexpected INIT ACK, spec says,
519 * “If an INIT ACK is received by an endpoint in any state other
520 * than the COOKIE-WAIT state, the endpoint should discard the
521 * INIT ACK chunk”. Stay in the same state
523 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
524 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
526 * Client sent ECHO, Spec(sec 5.2.4) says it may be handled by the
527 * peer and peer shall move to the ESTABISHED. if it doesn't handle
528 * it will send ERROR chunk. So, stay in the same state
530 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
531 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
533 * COOKIE ACK from client, not sure what to do stay in the same state
535 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
536 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
537 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
538 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
540 * SHUTDOWN from the client, move to SHUDDOWN_CLI
542 {IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_SHUT_CLI */ },
544 * SHUTDOWN from the server, move to SHUTDOWN_SER
546 {IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_SHUT_SER */ },
548 * client sent SHUDTDOWN_ACK, this should not happen, let's close
551 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
552 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
553 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
554 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
557 * State : IP_VS_SCTP_S_SHUT_CLI
558 * SHUTDOWN sent from the client, waitinf for SHUT ACK from the server
561 * We recieved the data chuck, keep the state unchanged. I assume
562 * that still data chuncks can be received by both the peers in
566 {{IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_DATA_CLI */ },
567 {IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_DATA_SER */ },
569 * We have got an INIT from client. From the spec.“Upon receipt of
570 * an INIT in the COOKIE-WAIT state, an endpoint MUST respond with
571 * an INIT ACK using the same parameters it sent in its original
572 * INIT chunk (including its Initiate Tag, unchanged”).
574 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
575 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
577 * INIT_ACK sent by the server, Unexpected INIT ACK, spec says,
578 * “If an INIT ACK is received by an endpoint in any state other
579 * than the COOKIE-WAIT state, the endpoint should discard the
580 * INIT ACK chunk”. Stay in the same state
582 {IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
583 {IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
585 * Client sent ECHO, Spec(sec 5.2.4) says it may be handled by the
586 * peer and peer shall move to the ESTABISHED. if it doesn't handle
587 * it will send ERROR chunk. So, stay in the same state
589 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
590 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
592 * COOKIE ACK from client, not sure what to do stay in the same state
594 {IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
595 {IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
596 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
597 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
599 * SHUTDOWN resent from the client, move to SHUDDOWN_CLI
601 {IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_SHUT_CLI */ },
603 * SHUTDOWN from the server, move to SHUTDOWN_SER
605 {IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_SHUT_SER */ },
607 * client sent SHUDTDOWN_ACK, this should not happen, let's close
610 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
612 * Server sent SHUTDOWN ACK, this is what we are expecting, let's move
615 {IP_VS_SCTP_S_SHUT_ACK_SER /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
617 * SHUTDOWN COM from client, this should not happen, let's close the
620 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
621 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
624 * State : IP_VS_SCTP_S_SHUT_SER
625 * SHUTDOWN sent from the server, waitinf for SHUTDOWN ACK from client
628 * We recieved the data chuck, keep the state unchanged. I assume
629 * that still data chuncks can be received by both the peers in
633 {{IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_DATA_CLI */ },
634 {IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_DATA_SER */ },
636 * We have got an INIT from client. From the spec.“Upon receipt of
637 * an INIT in the COOKIE-WAIT state, an endpoint MUST respond with
638 * an INIT ACK using the same parameters it sent in its original
639 * INIT chunk (including its Initiate Tag, unchanged”).
641 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
642 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
644 * INIT_ACK sent by the server, Unexpected INIT ACK, spec says,
645 * “If an INIT ACK is received by an endpoint in any state other
646 * than the COOKIE-WAIT state, the endpoint should discard the
647 * INIT ACK chunk”. Stay in the same state
649 {IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
650 {IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
652 * Client sent ECHO, Spec(sec 5.2.4) says it may be handled by the
653 * peer and peer shall move to the ESTABISHED. if it doesn't handle
654 * it will send ERROR chunk. So, stay in the same state
656 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
657 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
659 * COOKIE ACK from client, not sure what to do stay in the same state
661 {IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
662 {IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
663 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
664 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
666 * SHUTDOWN resent from the client, move to SHUDDOWN_CLI
668 {IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_SHUT_CLI */ },
670 * SHUTDOWN resent from the server, move to SHUTDOWN_SER
672 {IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_SHUT_SER */ },
674 * client sent SHUDTDOWN_ACK, this is what we are expecting, let's
675 * move to SHUT_ACK_CLI
677 {IP_VS_SCTP_S_SHUT_ACK_CLI /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
679 * Server sent SHUTDOWN ACK, this should not happen, let's close the
682 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
684 * SHUTDOWN COM from client, this should not happen, let's close the
687 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
688 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
692 * State : IP_VS_SCTP_S_SHUT_ACK_CLI
693 * SHUTDOWN ACK from the client, awaiting for SHUTDOWN COM from server
696 * We recieved the data chuck, keep the state unchanged. I assume
697 * that still data chuncks can be received by both the peers in
701 {{IP_VS_SCTP_S_SHUT_ACK_CLI /* IP_VS_SCTP_EVE_DATA_CLI */ },
702 {IP_VS_SCTP_S_SHUT_ACK_CLI /* IP_VS_SCTP_EVE_DATA_SER */ },
704 * We have got an INIT from client. From the spec.“Upon receipt of
705 * an INIT in the COOKIE-WAIT state, an endpoint MUST respond with
706 * an INIT ACK using the same parameters it sent in its original
707 * INIT chunk (including its Initiate Tag, unchanged”).
709 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
710 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
712 * INIT_ACK sent by the server, Unexpected INIT ACK, spec says,
713 * “If an INIT ACK is received by an endpoint in any state other
714 * than the COOKIE-WAIT state, the endpoint should discard the
715 * INIT ACK chunk”. Stay in the same state
717 {IP_VS_SCTP_S_SHUT_ACK_CLI /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
718 {IP_VS_SCTP_S_SHUT_ACK_CLI /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
720 * Client sent ECHO, Spec(sec 5.2.4) says it may be handled by the
721 * peer and peer shall move to the ESTABISHED. if it doesn't handle
722 * it will send ERROR chunk. So, stay in the same state
724 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
725 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
727 * COOKIE ACK from client, not sure what to do stay in the same state
729 {IP_VS_SCTP_S_SHUT_ACK_CLI /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
730 {IP_VS_SCTP_S_SHUT_ACK_CLI /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
731 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
732 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
734 * SHUTDOWN sent from the client, move to SHUDDOWN_CLI
736 {IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_SHUT_CLI */ },
738 * SHUTDOWN sent from the server, move to SHUTDOWN_SER
740 {IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_SHUT_SER */ },
742 * client resent SHUDTDOWN_ACK, let's stay in the same state
744 {IP_VS_SCTP_S_SHUT_ACK_CLI /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
746 * Server sent SHUTDOWN ACK, this should not happen, let's close the
749 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
751 * SHUTDOWN COM from client, this should not happen, let's close the
754 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
756 * SHUTDOWN COMPLETE from server this is what we are expecting.
758 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
762 * State : IP_VS_SCTP_S_SHUT_ACK_SER
763 * SHUTDOWN ACK from the server, awaiting for SHUTDOWN COM from client
766 * We recieved the data chuck, keep the state unchanged. I assume
767 * that still data chuncks can be received by both the peers in
771 {{IP_VS_SCTP_S_SHUT_ACK_SER /* IP_VS_SCTP_EVE_DATA_CLI */ },
772 {IP_VS_SCTP_S_SHUT_ACK_SER /* IP_VS_SCTP_EVE_DATA_SER */ },
774 * We have got an INIT from client. From the spec.“Upon receipt of
775 * an INIT in the COOKIE-WAIT state, an endpoint MUST respond with
776 * an INIT ACK using the same parameters it sent in its original
777 * INIT chunk (including its Initiate Tag, unchanged”).
779 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
780 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
782 * INIT_ACK sent by the server, Unexpected INIT ACK, spec says,
783 * “If an INIT ACK is received by an endpoint in any state other
784 * than the COOKIE-WAIT state, the endpoint should discard the
785 * INIT ACK chunk”. Stay in the same state
787 {IP_VS_SCTP_S_SHUT_ACK_SER /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
788 {IP_VS_SCTP_S_SHUT_ACK_SER /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
790 * Client sent ECHO, Spec(sec 5.2.4) says it may be handled by the
791 * peer and peer shall move to the ESTABISHED. if it doesn't handle
792 * it will send ERROR chunk. So, stay in the same state
794 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
795 {IP_VS_SCTP_S_ESTABLISHED /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
797 * COOKIE ACK from client, not sure what to do stay in the same state
799 {IP_VS_SCTP_S_SHUT_ACK_SER /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
800 {IP_VS_SCTP_S_SHUT_ACK_SER /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
801 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
802 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
804 * SHUTDOWN sent from the client, move to SHUDDOWN_CLI
806 {IP_VS_SCTP_S_SHUT_CLI /* IP_VS_SCTP_EVE_SHUT_CLI */ },
808 * SHUTDOWN sent from the server, move to SHUTDOWN_SER
810 {IP_VS_SCTP_S_SHUT_SER /* IP_VS_SCTP_EVE_SHUT_SER */ },
812 * client sent SHUDTDOWN_ACK, this should not happen let's close
815 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
817 * Server resent SHUTDOWN ACK, stay in the same state
819 {IP_VS_SCTP_S_SHUT_ACK_SER /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
821 * SHUTDOWN COM from client, this what we are expecting, let's close
824 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
826 * SHUTDOWN COMPLETE from server this should not happen.
828 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
831 * State : IP_VS_SCTP_S_CLOSED
833 {{IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_CLI */ },
834 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_DATA_SER */ },
835 {IP_VS_SCTP_S_INIT_CLI /* IP_VS_SCTP_EVE_INIT_CLI */ },
836 {IP_VS_SCTP_S_INIT_SER /* IP_VS_SCTP_EVE_INIT_SER */ },
837 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_INIT_ACK_CLI */ },
838 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_INIT_ACK_SER */ },
839 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ECHO_CLI */ },
840 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ECHO_SER */ },
841 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ACK_CLI */ },
842 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_COOKIE_ACK_SER */ },
843 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_CLI */ },
844 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_ABORT_SER */ },
845 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_CLI */ },
846 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_SER */ },
847 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_CLI */ },
848 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_ACK_SER */ },
849 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_CLI */ },
850 {IP_VS_SCTP_S_CLOSED /* IP_VS_SCTP_EVE_SHUT_COM_SER */ }
855 * Timeout table[state]
857 static int sctp_timeouts[IP_VS_SCTP_S_LAST + 1] = {
858 [IP_VS_SCTP_S_NONE] = 2 * HZ,
859 [IP_VS_SCTP_S_INIT_CLI] = 1 * 60 * HZ,
860 [IP_VS_SCTP_S_INIT_SER] = 1 * 60 * HZ,
861 [IP_VS_SCTP_S_INIT_ACK_CLI] = 1 * 60 * HZ,
862 [IP_VS_SCTP_S_INIT_ACK_SER] = 1 * 60 * HZ,
863 [IP_VS_SCTP_S_ECHO_CLI] = 1 * 60 * HZ,
864 [IP_VS_SCTP_S_ECHO_SER] = 1 * 60 * HZ,
865 [IP_VS_SCTP_S_ESTABLISHED] = 15 * 60 * HZ,
866 [IP_VS_SCTP_S_SHUT_CLI] = 1 * 60 * HZ,
867 [IP_VS_SCTP_S_SHUT_SER] = 1 * 60 * HZ,
868 [IP_VS_SCTP_S_SHUT_ACK_CLI] = 1 * 60 * HZ,
869 [IP_VS_SCTP_S_SHUT_ACK_SER] = 1 * 60 * HZ,
870 [IP_VS_SCTP_S_CLOSED] = 10 * HZ,
871 [IP_VS_SCTP_S_LAST] = 2 * HZ,
874 static const char *sctp_state_name_table[IP_VS_SCTP_S_LAST + 1] = {
875 [IP_VS_SCTP_S_NONE] = "NONE",
876 [IP_VS_SCTP_S_INIT_CLI] = "INIT_CLI",
877 [IP_VS_SCTP_S_INIT_SER] = "INIT_SER",
878 [IP_VS_SCTP_S_INIT_ACK_CLI] = "INIT_ACK_CLI",
879 [IP_VS_SCTP_S_INIT_ACK_SER] = "INIT_ACK_SER",
880 [IP_VS_SCTP_S_ECHO_CLI] = "COOKIE_ECHO_CLI",
881 [IP_VS_SCTP_S_ECHO_SER] = "COOKIE_ECHO_SER",
882 [IP_VS_SCTP_S_ESTABLISHED] = "ESTABISHED",
883 [IP_VS_SCTP_S_SHUT_CLI] = "SHUTDOWN_CLI",
884 [IP_VS_SCTP_S_SHUT_SER] = "SHUTDOWN_SER",
885 [IP_VS_SCTP_S_SHUT_ACK_CLI] = "SHUTDOWN_ACK_CLI",
886 [IP_VS_SCTP_S_SHUT_ACK_SER] = "SHUTDOWN_ACK_SER",
887 [IP_VS_SCTP_S_CLOSED] = "CLOSED",
888 [IP_VS_SCTP_S_LAST] = "BUG!"
892 static const char *sctp_state_name(int state)
894 if (state >= IP_VS_SCTP_S_LAST)
896 if (sctp_state_name_table[state])
897 return sctp_state_name_table[state];
901 static void sctp_timeout_change(struct ip_vs_protocol *pp, int flags)
906 sctp_set_state_timeout(struct ip_vs_protocol *pp, char *sname, int to)
909 return ip_vs_set_state_timeout(pp->timeout_table, IP_VS_SCTP_S_LAST,
910 sctp_state_name_table, sname, to);
914 set_sctp_state(struct ip_vs_protocol *pp, struct ip_vs_conn *cp,
915 int direction, const struct sk_buff *skb)
917 sctp_chunkhdr_t _sctpch, *sch;
918 unsigned char chunk_type;
919 int event, next_state;
922 #ifdef CONFIG_IP_VS_IPV6
923 ihl = cp->af == AF_INET ? ip_hdrlen(skb) : sizeof(struct ipv6hdr);
925 ihl = ip_hdrlen(skb);
928 sch = skb_header_pointer(skb, ihl + sizeof(sctp_sctphdr_t),
929 sizeof(_sctpch), &_sctpch);
933 chunk_type = sch->type;
935 * Section 3: Multiple chunks can be bundled into one SCTP packet
936 * up to the MTU size, except for the INIT, INIT ACK, and
937 * SHUTDOWN COMPLETE chunks. These chunks MUST NOT be bundled with
938 * any other chunk in a packet.
940 * Section 3.3.7: DATA chunks MUST NOT be bundled with ABORT. Control
941 * chunks (except for INIT, INIT ACK, and SHUTDOWN COMPLETE) MAY be
942 * bundled with an ABORT, but they MUST be placed before the ABORT
943 * in the SCTP packet or they will be ignored by the receiver.
945 if ((sch->type == SCTP_CID_COOKIE_ECHO) ||
946 (sch->type == SCTP_CID_COOKIE_ACK)) {
947 sch = skb_header_pointer(skb, (ihl + sizeof(sctp_sctphdr_t) +
948 sch->length), sizeof(_sctpch), &_sctpch);
950 if (sch->type == SCTP_CID_ABORT)
951 chunk_type = sch->type;
955 event = sctp_events[chunk_type];
958 * If the direction is IP_VS_DIR_OUTPUT, this event is from server
960 if (direction == IP_VS_DIR_OUTPUT)
965 next_state = sctp_states_table[cp->state][event].next_state;
967 if (next_state != cp->state) {
968 struct ip_vs_dest *dest = cp->dest;
970 IP_VS_DBG_BUF(8, "%s %s %s:%d->"
971 "%s:%d state: %s->%s conn->refcnt:%d\n",
973 ((direction == IP_VS_DIR_OUTPUT) ?
974 "output " : "input "),
975 IP_VS_DBG_ADDR(cp->af, &cp->daddr),
977 IP_VS_DBG_ADDR(cp->af, &cp->caddr),
979 sctp_state_name(cp->state),
980 sctp_state_name(next_state),
981 atomic_read(&cp->refcnt));
983 if (!(cp->flags & IP_VS_CONN_F_INACTIVE) &&
984 (next_state != IP_VS_SCTP_S_ESTABLISHED)) {
985 atomic_dec(&dest->activeconns);
986 atomic_inc(&dest->inactconns);
987 cp->flags |= IP_VS_CONN_F_INACTIVE;
988 } else if ((cp->flags & IP_VS_CONN_F_INACTIVE) &&
989 (next_state == IP_VS_SCTP_S_ESTABLISHED)) {
990 atomic_inc(&dest->activeconns);
991 atomic_dec(&dest->inactconns);
992 cp->flags &= ~IP_VS_CONN_F_INACTIVE;
997 cp->timeout = pp->timeout_table[cp->state = next_state];
1003 sctp_state_transition(struct ip_vs_conn *cp, int direction,
1004 const struct sk_buff *skb, struct ip_vs_protocol *pp)
1008 spin_lock(&cp->lock);
1009 ret = set_sctp_state(pp, cp, direction, skb);
1010 spin_unlock(&cp->lock);
1016 * Hash table for SCTP application incarnations
1018 #define SCTP_APP_TAB_BITS 4
1019 #define SCTP_APP_TAB_SIZE (1 << SCTP_APP_TAB_BITS)
1020 #define SCTP_APP_TAB_MASK (SCTP_APP_TAB_SIZE - 1)
1022 static struct list_head sctp_apps[SCTP_APP_TAB_SIZE];
1023 static DEFINE_SPINLOCK(sctp_app_lock);
1025 static inline __u16 sctp_app_hashkey(__be16 port)
1027 return (((__force u16)port >> SCTP_APP_TAB_BITS) ^ (__force u16)port)
1028 & SCTP_APP_TAB_MASK;
1031 static int sctp_register_app(struct ip_vs_app *inc)
1033 struct ip_vs_app *i;
1035 __be16 port = inc->port;
1038 hash = sctp_app_hashkey(port);
1040 spin_lock_bh(&sctp_app_lock);
1041 list_for_each_entry(i, &sctp_apps[hash], p_list) {
1042 if (i->port == port) {
1047 list_add(&inc->p_list, &sctp_apps[hash]);
1048 atomic_inc(&ip_vs_protocol_sctp.appcnt);
1050 spin_unlock_bh(&sctp_app_lock);
1055 static void sctp_unregister_app(struct ip_vs_app *inc)
1057 spin_lock_bh(&sctp_app_lock);
1058 atomic_dec(&ip_vs_protocol_sctp.appcnt);
1059 list_del(&inc->p_list);
1060 spin_unlock_bh(&sctp_app_lock);
1063 static int sctp_app_conn_bind(struct ip_vs_conn *cp)
1066 struct ip_vs_app *inc;
1069 /* Default binding: bind app only for NAT */
1070 if (IP_VS_FWD_METHOD(cp) != IP_VS_CONN_F_MASQ)
1072 /* Lookup application incarnations and bind the right one */
1073 hash = sctp_app_hashkey(cp->vport);
1075 spin_lock(&sctp_app_lock);
1076 list_for_each_entry(inc, &sctp_apps[hash], p_list) {
1077 if (inc->port == cp->vport) {
1078 if (unlikely(!ip_vs_app_inc_get(inc)))
1080 spin_unlock(&sctp_app_lock);
1082 IP_VS_DBG_BUF(9, "%s: Binding conn %s:%u->"
1083 "%s:%u to app %s on port %u\n",
1085 IP_VS_DBG_ADDR(cp->af, &cp->caddr),
1087 IP_VS_DBG_ADDR(cp->af, &cp->vaddr),
1089 inc->name, ntohs(inc->port));
1092 result = inc->init_conn(inc, cp);
1096 spin_unlock(&sctp_app_lock);
1101 static void ip_vs_sctp_init(struct ip_vs_protocol *pp)
1103 IP_VS_INIT_HASH_TABLE(sctp_apps);
1104 pp->timeout_table = sctp_timeouts;
1108 static void ip_vs_sctp_exit(struct ip_vs_protocol *pp)
1113 struct ip_vs_protocol ip_vs_protocol_sctp = {
1115 .protocol = IPPROTO_SCTP,
1116 .num_states = IP_VS_SCTP_S_LAST,
1118 .appcnt = ATOMIC_INIT(0),
1119 .init = ip_vs_sctp_init,
1120 .exit = ip_vs_sctp_exit,
1121 .register_app = sctp_register_app,
1122 .unregister_app = sctp_unregister_app,
1123 .conn_schedule = sctp_conn_schedule,
1124 .conn_in_get = ip_vs_conn_in_get_proto,
1125 .conn_out_get = ip_vs_conn_out_get_proto,
1126 .snat_handler = sctp_snat_handler,
1127 .dnat_handler = sctp_dnat_handler,
1128 .csum_check = sctp_csum_check,
1129 .state_name = sctp_state_name,
1130 .state_transition = sctp_state_transition,
1131 .app_conn_bind = sctp_app_conn_bind,
1132 .debug_packet = ip_vs_tcpudp_debug_packet,
1133 .timeout_change = sctp_timeout_change,
1134 .set_state_timeout = sctp_set_state_timeout,