1*4882a593Smuzhiyun // SPDX-License-Identifier: GPL-2.0-or-later
2*4882a593Smuzhiyun /*
3*4882a593Smuzhiyun * X.25 Packet Layer release 002
4*4882a593Smuzhiyun *
5*4882a593Smuzhiyun * This is ALPHA test software. This code may break your machine,
6*4882a593Smuzhiyun * randomly fail to work with new releases, misbehave and/or generally
7*4882a593Smuzhiyun * screw up. It might even work.
8*4882a593Smuzhiyun *
9*4882a593Smuzhiyun * This code REQUIRES 2.1.15 or higher
10*4882a593Smuzhiyun *
11*4882a593Smuzhiyun * History
12*4882a593Smuzhiyun * X.25 001 Jonathan Naylor Started coding.
13*4882a593Smuzhiyun * X.25 002 Jonathan Naylor Centralised disconnection code.
14*4882a593Smuzhiyun * New timer architecture.
15*4882a593Smuzhiyun * 2000-03-20 Daniela Squassoni Disabling/enabling of facilities
16*4882a593Smuzhiyun * negotiation.
17*4882a593Smuzhiyun * 2000-11-10 Henner Eisen Check and reset for out-of-sequence
18*4882a593Smuzhiyun * i-frames.
19*4882a593Smuzhiyun */
20*4882a593Smuzhiyun
21*4882a593Smuzhiyun #define pr_fmt(fmt) "X25: " fmt
22*4882a593Smuzhiyun
23*4882a593Smuzhiyun #include <linux/slab.h>
24*4882a593Smuzhiyun #include <linux/errno.h>
25*4882a593Smuzhiyun #include <linux/kernel.h>
26*4882a593Smuzhiyun #include <linux/string.h>
27*4882a593Smuzhiyun #include <linux/skbuff.h>
28*4882a593Smuzhiyun #include <net/sock.h>
29*4882a593Smuzhiyun #include <net/tcp_states.h>
30*4882a593Smuzhiyun #include <net/x25.h>
31*4882a593Smuzhiyun
x25_queue_rx_frame(struct sock * sk,struct sk_buff * skb,int more)32*4882a593Smuzhiyun static int x25_queue_rx_frame(struct sock *sk, struct sk_buff *skb, int more)
33*4882a593Smuzhiyun {
34*4882a593Smuzhiyun struct sk_buff *skbo, *skbn = skb;
35*4882a593Smuzhiyun struct x25_sock *x25 = x25_sk(sk);
36*4882a593Smuzhiyun
37*4882a593Smuzhiyun if (more) {
38*4882a593Smuzhiyun x25->fraglen += skb->len;
39*4882a593Smuzhiyun skb_queue_tail(&x25->fragment_queue, skb);
40*4882a593Smuzhiyun skb_set_owner_r(skb, sk);
41*4882a593Smuzhiyun return 0;
42*4882a593Smuzhiyun }
43*4882a593Smuzhiyun
44*4882a593Smuzhiyun if (!more && x25->fraglen > 0) { /* End of fragment */
45*4882a593Smuzhiyun int len = x25->fraglen + skb->len;
46*4882a593Smuzhiyun
47*4882a593Smuzhiyun if ((skbn = alloc_skb(len, GFP_ATOMIC)) == NULL){
48*4882a593Smuzhiyun kfree_skb(skb);
49*4882a593Smuzhiyun return 1;
50*4882a593Smuzhiyun }
51*4882a593Smuzhiyun
52*4882a593Smuzhiyun skb_queue_tail(&x25->fragment_queue, skb);
53*4882a593Smuzhiyun
54*4882a593Smuzhiyun skb_reset_transport_header(skbn);
55*4882a593Smuzhiyun
56*4882a593Smuzhiyun skbo = skb_dequeue(&x25->fragment_queue);
57*4882a593Smuzhiyun skb_copy_from_linear_data(skbo, skb_put(skbn, skbo->len),
58*4882a593Smuzhiyun skbo->len);
59*4882a593Smuzhiyun kfree_skb(skbo);
60*4882a593Smuzhiyun
61*4882a593Smuzhiyun while ((skbo =
62*4882a593Smuzhiyun skb_dequeue(&x25->fragment_queue)) != NULL) {
63*4882a593Smuzhiyun skb_pull(skbo, (x25->neighbour->extended) ?
64*4882a593Smuzhiyun X25_EXT_MIN_LEN : X25_STD_MIN_LEN);
65*4882a593Smuzhiyun skb_copy_from_linear_data(skbo,
66*4882a593Smuzhiyun skb_put(skbn, skbo->len),
67*4882a593Smuzhiyun skbo->len);
68*4882a593Smuzhiyun kfree_skb(skbo);
69*4882a593Smuzhiyun }
70*4882a593Smuzhiyun
71*4882a593Smuzhiyun x25->fraglen = 0;
72*4882a593Smuzhiyun }
73*4882a593Smuzhiyun
74*4882a593Smuzhiyun skb_set_owner_r(skbn, sk);
75*4882a593Smuzhiyun skb_queue_tail(&sk->sk_receive_queue, skbn);
76*4882a593Smuzhiyun if (!sock_flag(sk, SOCK_DEAD))
77*4882a593Smuzhiyun sk->sk_data_ready(sk);
78*4882a593Smuzhiyun
79*4882a593Smuzhiyun return 0;
80*4882a593Smuzhiyun }
81*4882a593Smuzhiyun
82*4882a593Smuzhiyun /*
83*4882a593Smuzhiyun * State machine for state 1, Awaiting Call Accepted State.
84*4882a593Smuzhiyun * The handling of the timer(s) is in file x25_timer.c.
85*4882a593Smuzhiyun * Handling of state 0 and connection release is in af_x25.c.
86*4882a593Smuzhiyun */
x25_state1_machine(struct sock * sk,struct sk_buff * skb,int frametype)87*4882a593Smuzhiyun static int x25_state1_machine(struct sock *sk, struct sk_buff *skb, int frametype)
88*4882a593Smuzhiyun {
89*4882a593Smuzhiyun struct x25_address source_addr, dest_addr;
90*4882a593Smuzhiyun int len;
91*4882a593Smuzhiyun struct x25_sock *x25 = x25_sk(sk);
92*4882a593Smuzhiyun
93*4882a593Smuzhiyun switch (frametype) {
94*4882a593Smuzhiyun case X25_CALL_ACCEPTED: {
95*4882a593Smuzhiyun
96*4882a593Smuzhiyun x25_stop_timer(sk);
97*4882a593Smuzhiyun x25->condition = 0x00;
98*4882a593Smuzhiyun x25->vs = 0;
99*4882a593Smuzhiyun x25->va = 0;
100*4882a593Smuzhiyun x25->vr = 0;
101*4882a593Smuzhiyun x25->vl = 0;
102*4882a593Smuzhiyun x25->state = X25_STATE_3;
103*4882a593Smuzhiyun sk->sk_state = TCP_ESTABLISHED;
104*4882a593Smuzhiyun /*
105*4882a593Smuzhiyun * Parse the data in the frame.
106*4882a593Smuzhiyun */
107*4882a593Smuzhiyun if (!pskb_may_pull(skb, X25_STD_MIN_LEN))
108*4882a593Smuzhiyun goto out_clear;
109*4882a593Smuzhiyun skb_pull(skb, X25_STD_MIN_LEN);
110*4882a593Smuzhiyun
111*4882a593Smuzhiyun len = x25_parse_address_block(skb, &source_addr,
112*4882a593Smuzhiyun &dest_addr);
113*4882a593Smuzhiyun if (len > 0)
114*4882a593Smuzhiyun skb_pull(skb, len);
115*4882a593Smuzhiyun else if (len < 0)
116*4882a593Smuzhiyun goto out_clear;
117*4882a593Smuzhiyun
118*4882a593Smuzhiyun len = x25_parse_facilities(skb, &x25->facilities,
119*4882a593Smuzhiyun &x25->dte_facilities,
120*4882a593Smuzhiyun &x25->vc_facil_mask);
121*4882a593Smuzhiyun if (len > 0)
122*4882a593Smuzhiyun skb_pull(skb, len);
123*4882a593Smuzhiyun else if (len < 0)
124*4882a593Smuzhiyun goto out_clear;
125*4882a593Smuzhiyun /*
126*4882a593Smuzhiyun * Copy any Call User Data.
127*4882a593Smuzhiyun */
128*4882a593Smuzhiyun if (skb->len > 0) {
129*4882a593Smuzhiyun if (skb->len > X25_MAX_CUD_LEN)
130*4882a593Smuzhiyun goto out_clear;
131*4882a593Smuzhiyun
132*4882a593Smuzhiyun skb_copy_bits(skb, 0, x25->calluserdata.cuddata,
133*4882a593Smuzhiyun skb->len);
134*4882a593Smuzhiyun x25->calluserdata.cudlength = skb->len;
135*4882a593Smuzhiyun }
136*4882a593Smuzhiyun if (!sock_flag(sk, SOCK_DEAD))
137*4882a593Smuzhiyun sk->sk_state_change(sk);
138*4882a593Smuzhiyun break;
139*4882a593Smuzhiyun }
140*4882a593Smuzhiyun case X25_CALL_REQUEST:
141*4882a593Smuzhiyun /* call collision */
142*4882a593Smuzhiyun x25->causediag.cause = 0x01;
143*4882a593Smuzhiyun x25->causediag.diagnostic = 0x48;
144*4882a593Smuzhiyun
145*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_REQUEST);
146*4882a593Smuzhiyun x25_disconnect(sk, EISCONN, 0x01, 0x48);
147*4882a593Smuzhiyun break;
148*4882a593Smuzhiyun
149*4882a593Smuzhiyun case X25_CLEAR_REQUEST:
150*4882a593Smuzhiyun if (!pskb_may_pull(skb, X25_STD_MIN_LEN + 2))
151*4882a593Smuzhiyun goto out_clear;
152*4882a593Smuzhiyun
153*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_CONFIRMATION);
154*4882a593Smuzhiyun x25_disconnect(sk, ECONNREFUSED, skb->data[3], skb->data[4]);
155*4882a593Smuzhiyun break;
156*4882a593Smuzhiyun
157*4882a593Smuzhiyun default:
158*4882a593Smuzhiyun break;
159*4882a593Smuzhiyun }
160*4882a593Smuzhiyun
161*4882a593Smuzhiyun return 0;
162*4882a593Smuzhiyun
163*4882a593Smuzhiyun out_clear:
164*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_REQUEST);
165*4882a593Smuzhiyun x25->state = X25_STATE_2;
166*4882a593Smuzhiyun x25_start_t23timer(sk);
167*4882a593Smuzhiyun return 0;
168*4882a593Smuzhiyun }
169*4882a593Smuzhiyun
170*4882a593Smuzhiyun /*
171*4882a593Smuzhiyun * State machine for state 2, Awaiting Clear Confirmation State.
172*4882a593Smuzhiyun * The handling of the timer(s) is in file x25_timer.c
173*4882a593Smuzhiyun * Handling of state 0 and connection release is in af_x25.c.
174*4882a593Smuzhiyun */
x25_state2_machine(struct sock * sk,struct sk_buff * skb,int frametype)175*4882a593Smuzhiyun static int x25_state2_machine(struct sock *sk, struct sk_buff *skb, int frametype)
176*4882a593Smuzhiyun {
177*4882a593Smuzhiyun switch (frametype) {
178*4882a593Smuzhiyun
179*4882a593Smuzhiyun case X25_CLEAR_REQUEST:
180*4882a593Smuzhiyun if (!pskb_may_pull(skb, X25_STD_MIN_LEN + 2))
181*4882a593Smuzhiyun goto out_clear;
182*4882a593Smuzhiyun
183*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_CONFIRMATION);
184*4882a593Smuzhiyun x25_disconnect(sk, 0, skb->data[3], skb->data[4]);
185*4882a593Smuzhiyun break;
186*4882a593Smuzhiyun
187*4882a593Smuzhiyun case X25_CLEAR_CONFIRMATION:
188*4882a593Smuzhiyun x25_disconnect(sk, 0, 0, 0);
189*4882a593Smuzhiyun break;
190*4882a593Smuzhiyun
191*4882a593Smuzhiyun default:
192*4882a593Smuzhiyun break;
193*4882a593Smuzhiyun }
194*4882a593Smuzhiyun
195*4882a593Smuzhiyun return 0;
196*4882a593Smuzhiyun
197*4882a593Smuzhiyun out_clear:
198*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_REQUEST);
199*4882a593Smuzhiyun x25_start_t23timer(sk);
200*4882a593Smuzhiyun return 0;
201*4882a593Smuzhiyun }
202*4882a593Smuzhiyun
203*4882a593Smuzhiyun /*
204*4882a593Smuzhiyun * State machine for state 3, Connected State.
205*4882a593Smuzhiyun * The handling of the timer(s) is in file x25_timer.c
206*4882a593Smuzhiyun * Handling of state 0 and connection release is in af_x25.c.
207*4882a593Smuzhiyun */
x25_state3_machine(struct sock * sk,struct sk_buff * skb,int frametype,int ns,int nr,int q,int d,int m)208*4882a593Smuzhiyun static int x25_state3_machine(struct sock *sk, struct sk_buff *skb, int frametype, int ns, int nr, int q, int d, int m)
209*4882a593Smuzhiyun {
210*4882a593Smuzhiyun int queued = 0;
211*4882a593Smuzhiyun int modulus;
212*4882a593Smuzhiyun struct x25_sock *x25 = x25_sk(sk);
213*4882a593Smuzhiyun
214*4882a593Smuzhiyun modulus = (x25->neighbour->extended) ? X25_EMODULUS : X25_SMODULUS;
215*4882a593Smuzhiyun
216*4882a593Smuzhiyun switch (frametype) {
217*4882a593Smuzhiyun
218*4882a593Smuzhiyun case X25_RESET_REQUEST:
219*4882a593Smuzhiyun x25_write_internal(sk, X25_RESET_CONFIRMATION);
220*4882a593Smuzhiyun x25_stop_timer(sk);
221*4882a593Smuzhiyun x25->condition = 0x00;
222*4882a593Smuzhiyun x25->vs = 0;
223*4882a593Smuzhiyun x25->vr = 0;
224*4882a593Smuzhiyun x25->va = 0;
225*4882a593Smuzhiyun x25->vl = 0;
226*4882a593Smuzhiyun x25_requeue_frames(sk);
227*4882a593Smuzhiyun break;
228*4882a593Smuzhiyun
229*4882a593Smuzhiyun case X25_CLEAR_REQUEST:
230*4882a593Smuzhiyun if (!pskb_may_pull(skb, X25_STD_MIN_LEN + 2))
231*4882a593Smuzhiyun goto out_clear;
232*4882a593Smuzhiyun
233*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_CONFIRMATION);
234*4882a593Smuzhiyun x25_disconnect(sk, 0, skb->data[3], skb->data[4]);
235*4882a593Smuzhiyun break;
236*4882a593Smuzhiyun
237*4882a593Smuzhiyun case X25_RR:
238*4882a593Smuzhiyun case X25_RNR:
239*4882a593Smuzhiyun if (!x25_validate_nr(sk, nr)) {
240*4882a593Smuzhiyun x25_clear_queues(sk);
241*4882a593Smuzhiyun x25_write_internal(sk, X25_RESET_REQUEST);
242*4882a593Smuzhiyun x25_start_t22timer(sk);
243*4882a593Smuzhiyun x25->condition = 0x00;
244*4882a593Smuzhiyun x25->vs = 0;
245*4882a593Smuzhiyun x25->vr = 0;
246*4882a593Smuzhiyun x25->va = 0;
247*4882a593Smuzhiyun x25->vl = 0;
248*4882a593Smuzhiyun x25->state = X25_STATE_4;
249*4882a593Smuzhiyun } else {
250*4882a593Smuzhiyun x25_frames_acked(sk, nr);
251*4882a593Smuzhiyun if (frametype == X25_RNR) {
252*4882a593Smuzhiyun x25->condition |= X25_COND_PEER_RX_BUSY;
253*4882a593Smuzhiyun } else {
254*4882a593Smuzhiyun x25->condition &= ~X25_COND_PEER_RX_BUSY;
255*4882a593Smuzhiyun }
256*4882a593Smuzhiyun }
257*4882a593Smuzhiyun break;
258*4882a593Smuzhiyun
259*4882a593Smuzhiyun case X25_DATA: /* XXX */
260*4882a593Smuzhiyun x25->condition &= ~X25_COND_PEER_RX_BUSY;
261*4882a593Smuzhiyun if ((ns != x25->vr) || !x25_validate_nr(sk, nr)) {
262*4882a593Smuzhiyun x25_clear_queues(sk);
263*4882a593Smuzhiyun x25_write_internal(sk, X25_RESET_REQUEST);
264*4882a593Smuzhiyun x25_start_t22timer(sk);
265*4882a593Smuzhiyun x25->condition = 0x00;
266*4882a593Smuzhiyun x25->vs = 0;
267*4882a593Smuzhiyun x25->vr = 0;
268*4882a593Smuzhiyun x25->va = 0;
269*4882a593Smuzhiyun x25->vl = 0;
270*4882a593Smuzhiyun x25->state = X25_STATE_4;
271*4882a593Smuzhiyun break;
272*4882a593Smuzhiyun }
273*4882a593Smuzhiyun x25_frames_acked(sk, nr);
274*4882a593Smuzhiyun if (ns == x25->vr) {
275*4882a593Smuzhiyun if (x25_queue_rx_frame(sk, skb, m) == 0) {
276*4882a593Smuzhiyun x25->vr = (x25->vr + 1) % modulus;
277*4882a593Smuzhiyun queued = 1;
278*4882a593Smuzhiyun } else {
279*4882a593Smuzhiyun /* Should never happen */
280*4882a593Smuzhiyun x25_clear_queues(sk);
281*4882a593Smuzhiyun x25_write_internal(sk, X25_RESET_REQUEST);
282*4882a593Smuzhiyun x25_start_t22timer(sk);
283*4882a593Smuzhiyun x25->condition = 0x00;
284*4882a593Smuzhiyun x25->vs = 0;
285*4882a593Smuzhiyun x25->vr = 0;
286*4882a593Smuzhiyun x25->va = 0;
287*4882a593Smuzhiyun x25->vl = 0;
288*4882a593Smuzhiyun x25->state = X25_STATE_4;
289*4882a593Smuzhiyun break;
290*4882a593Smuzhiyun }
291*4882a593Smuzhiyun if (atomic_read(&sk->sk_rmem_alloc) >
292*4882a593Smuzhiyun (sk->sk_rcvbuf >> 1))
293*4882a593Smuzhiyun x25->condition |= X25_COND_OWN_RX_BUSY;
294*4882a593Smuzhiyun }
295*4882a593Smuzhiyun /*
296*4882a593Smuzhiyun * If the window is full Ack it immediately, else
297*4882a593Smuzhiyun * start the holdback timer.
298*4882a593Smuzhiyun */
299*4882a593Smuzhiyun if (((x25->vl + x25->facilities.winsize_in) % modulus) == x25->vr) {
300*4882a593Smuzhiyun x25->condition &= ~X25_COND_ACK_PENDING;
301*4882a593Smuzhiyun x25_stop_timer(sk);
302*4882a593Smuzhiyun x25_enquiry_response(sk);
303*4882a593Smuzhiyun } else {
304*4882a593Smuzhiyun x25->condition |= X25_COND_ACK_PENDING;
305*4882a593Smuzhiyun x25_start_t2timer(sk);
306*4882a593Smuzhiyun }
307*4882a593Smuzhiyun break;
308*4882a593Smuzhiyun
309*4882a593Smuzhiyun case X25_INTERRUPT_CONFIRMATION:
310*4882a593Smuzhiyun clear_bit(X25_INTERRUPT_FLAG, &x25->flags);
311*4882a593Smuzhiyun break;
312*4882a593Smuzhiyun
313*4882a593Smuzhiyun case X25_INTERRUPT:
314*4882a593Smuzhiyun if (sock_flag(sk, SOCK_URGINLINE))
315*4882a593Smuzhiyun queued = !sock_queue_rcv_skb(sk, skb);
316*4882a593Smuzhiyun else {
317*4882a593Smuzhiyun skb_set_owner_r(skb, sk);
318*4882a593Smuzhiyun skb_queue_tail(&x25->interrupt_in_queue, skb);
319*4882a593Smuzhiyun queued = 1;
320*4882a593Smuzhiyun }
321*4882a593Smuzhiyun sk_send_sigurg(sk);
322*4882a593Smuzhiyun x25_write_internal(sk, X25_INTERRUPT_CONFIRMATION);
323*4882a593Smuzhiyun break;
324*4882a593Smuzhiyun
325*4882a593Smuzhiyun default:
326*4882a593Smuzhiyun pr_warn("unknown %02X in state 3\n", frametype);
327*4882a593Smuzhiyun break;
328*4882a593Smuzhiyun }
329*4882a593Smuzhiyun
330*4882a593Smuzhiyun return queued;
331*4882a593Smuzhiyun
332*4882a593Smuzhiyun out_clear:
333*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_REQUEST);
334*4882a593Smuzhiyun x25->state = X25_STATE_2;
335*4882a593Smuzhiyun x25_start_t23timer(sk);
336*4882a593Smuzhiyun return 0;
337*4882a593Smuzhiyun }
338*4882a593Smuzhiyun
339*4882a593Smuzhiyun /*
340*4882a593Smuzhiyun * State machine for state 4, Awaiting Reset Confirmation State.
341*4882a593Smuzhiyun * The handling of the timer(s) is in file x25_timer.c
342*4882a593Smuzhiyun * Handling of state 0 and connection release is in af_x25.c.
343*4882a593Smuzhiyun */
x25_state4_machine(struct sock * sk,struct sk_buff * skb,int frametype)344*4882a593Smuzhiyun static int x25_state4_machine(struct sock *sk, struct sk_buff *skb, int frametype)
345*4882a593Smuzhiyun {
346*4882a593Smuzhiyun struct x25_sock *x25 = x25_sk(sk);
347*4882a593Smuzhiyun
348*4882a593Smuzhiyun switch (frametype) {
349*4882a593Smuzhiyun
350*4882a593Smuzhiyun case X25_RESET_REQUEST:
351*4882a593Smuzhiyun x25_write_internal(sk, X25_RESET_CONFIRMATION);
352*4882a593Smuzhiyun fallthrough;
353*4882a593Smuzhiyun case X25_RESET_CONFIRMATION: {
354*4882a593Smuzhiyun x25_stop_timer(sk);
355*4882a593Smuzhiyun x25->condition = 0x00;
356*4882a593Smuzhiyun x25->va = 0;
357*4882a593Smuzhiyun x25->vr = 0;
358*4882a593Smuzhiyun x25->vs = 0;
359*4882a593Smuzhiyun x25->vl = 0;
360*4882a593Smuzhiyun x25->state = X25_STATE_3;
361*4882a593Smuzhiyun x25_requeue_frames(sk);
362*4882a593Smuzhiyun break;
363*4882a593Smuzhiyun }
364*4882a593Smuzhiyun case X25_CLEAR_REQUEST:
365*4882a593Smuzhiyun if (!pskb_may_pull(skb, X25_STD_MIN_LEN + 2))
366*4882a593Smuzhiyun goto out_clear;
367*4882a593Smuzhiyun
368*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_CONFIRMATION);
369*4882a593Smuzhiyun x25_disconnect(sk, 0, skb->data[3], skb->data[4]);
370*4882a593Smuzhiyun break;
371*4882a593Smuzhiyun
372*4882a593Smuzhiyun default:
373*4882a593Smuzhiyun break;
374*4882a593Smuzhiyun }
375*4882a593Smuzhiyun
376*4882a593Smuzhiyun return 0;
377*4882a593Smuzhiyun
378*4882a593Smuzhiyun out_clear:
379*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_REQUEST);
380*4882a593Smuzhiyun x25->state = X25_STATE_2;
381*4882a593Smuzhiyun x25_start_t23timer(sk);
382*4882a593Smuzhiyun return 0;
383*4882a593Smuzhiyun }
384*4882a593Smuzhiyun
385*4882a593Smuzhiyun /*
386*4882a593Smuzhiyun * State machine for state 5, Call Accepted / Call Connected pending (X25_ACCPT_APPRV_FLAG).
387*4882a593Smuzhiyun * The handling of the timer(s) is in file x25_timer.c
388*4882a593Smuzhiyun * Handling of state 0 and connection release is in af_x25.c.
389*4882a593Smuzhiyun */
x25_state5_machine(struct sock * sk,struct sk_buff * skb,int frametype)390*4882a593Smuzhiyun static int x25_state5_machine(struct sock *sk, struct sk_buff *skb, int frametype)
391*4882a593Smuzhiyun {
392*4882a593Smuzhiyun struct x25_sock *x25 = x25_sk(sk);
393*4882a593Smuzhiyun
394*4882a593Smuzhiyun switch (frametype) {
395*4882a593Smuzhiyun case X25_CLEAR_REQUEST:
396*4882a593Smuzhiyun if (!pskb_may_pull(skb, X25_STD_MIN_LEN + 2)) {
397*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_REQUEST);
398*4882a593Smuzhiyun x25->state = X25_STATE_2;
399*4882a593Smuzhiyun x25_start_t23timer(sk);
400*4882a593Smuzhiyun return 0;
401*4882a593Smuzhiyun }
402*4882a593Smuzhiyun
403*4882a593Smuzhiyun x25_write_internal(sk, X25_CLEAR_CONFIRMATION);
404*4882a593Smuzhiyun x25_disconnect(sk, 0, skb->data[3], skb->data[4]);
405*4882a593Smuzhiyun break;
406*4882a593Smuzhiyun
407*4882a593Smuzhiyun default:
408*4882a593Smuzhiyun break;
409*4882a593Smuzhiyun }
410*4882a593Smuzhiyun
411*4882a593Smuzhiyun return 0;
412*4882a593Smuzhiyun }
413*4882a593Smuzhiyun
414*4882a593Smuzhiyun /* Higher level upcall for a LAPB frame */
x25_process_rx_frame(struct sock * sk,struct sk_buff * skb)415*4882a593Smuzhiyun int x25_process_rx_frame(struct sock *sk, struct sk_buff *skb)
416*4882a593Smuzhiyun {
417*4882a593Smuzhiyun struct x25_sock *x25 = x25_sk(sk);
418*4882a593Smuzhiyun int queued = 0, frametype, ns, nr, q, d, m;
419*4882a593Smuzhiyun
420*4882a593Smuzhiyun if (x25->state == X25_STATE_0)
421*4882a593Smuzhiyun return 0;
422*4882a593Smuzhiyun
423*4882a593Smuzhiyun frametype = x25_decode(sk, skb, &ns, &nr, &q, &d, &m);
424*4882a593Smuzhiyun
425*4882a593Smuzhiyun switch (x25->state) {
426*4882a593Smuzhiyun case X25_STATE_1:
427*4882a593Smuzhiyun queued = x25_state1_machine(sk, skb, frametype);
428*4882a593Smuzhiyun break;
429*4882a593Smuzhiyun case X25_STATE_2:
430*4882a593Smuzhiyun queued = x25_state2_machine(sk, skb, frametype);
431*4882a593Smuzhiyun break;
432*4882a593Smuzhiyun case X25_STATE_3:
433*4882a593Smuzhiyun queued = x25_state3_machine(sk, skb, frametype, ns, nr, q, d, m);
434*4882a593Smuzhiyun break;
435*4882a593Smuzhiyun case X25_STATE_4:
436*4882a593Smuzhiyun queued = x25_state4_machine(sk, skb, frametype);
437*4882a593Smuzhiyun break;
438*4882a593Smuzhiyun case X25_STATE_5:
439*4882a593Smuzhiyun queued = x25_state5_machine(sk, skb, frametype);
440*4882a593Smuzhiyun break;
441*4882a593Smuzhiyun }
442*4882a593Smuzhiyun
443*4882a593Smuzhiyun x25_kick(sk);
444*4882a593Smuzhiyun
445*4882a593Smuzhiyun return queued;
446*4882a593Smuzhiyun }
447*4882a593Smuzhiyun
x25_backlog_rcv(struct sock * sk,struct sk_buff * skb)448*4882a593Smuzhiyun int x25_backlog_rcv(struct sock *sk, struct sk_buff *skb)
449*4882a593Smuzhiyun {
450*4882a593Smuzhiyun int queued = x25_process_rx_frame(sk, skb);
451*4882a593Smuzhiyun
452*4882a593Smuzhiyun if (!queued)
453*4882a593Smuzhiyun kfree_skb(skb);
454*4882a593Smuzhiyun
455*4882a593Smuzhiyun return 0;
456*4882a593Smuzhiyun }
457