2 * Copyright (c) 2016-2019 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 #include <vnet/tcp/tcp.h>
17 #include <vnet/tcp/tcp_inlines.h>
19 #include <vnet/ip/ip4_inlines.h>
20 #include <vnet/ip/ip6_inlines.h>
22 typedef enum _tcp_output_next
25 TCP_OUTPUT_NEXT_IP_LOOKUP,
26 TCP_OUTPUT_NEXT_IP_REWRITE,
27 TCP_OUTPUT_NEXT_IP_ARP,
31 #define foreach_tcp4_output_next \
32 _ (DROP, "error-drop") \
33 _ (IP_LOOKUP, "ip4-lookup") \
34 _ (IP_REWRITE, "ip4-rewrite") \
37 #define foreach_tcp6_output_next \
38 _ (DROP, "error-drop") \
39 _ (IP_LOOKUP, "ip6-lookup") \
40 _ (IP_REWRITE, "ip6-rewrite") \
41 _ (IP_ARP, "ip6-discover-neighbor")
43 static vlib_error_desc_t tcp_output_error_counters[] = {
44 #define tcp_error(f, n, s, d) { #n, d, VL_COUNTER_SEVERITY_##s },
45 #include <vnet/tcp/tcp_error.def>
51 tcp_header_t tcp_header;
52 tcp_connection_t tcp_connection;
56 format_tcp_tx_trace (u8 * s, va_list * args)
58 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
59 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
60 tcp_tx_trace_t *t = va_arg (*args, tcp_tx_trace_t *);
61 tcp_connection_t *tc = &t->tcp_connection;
62 u32 indent = format_get_indent (s);
64 s = format (s, "%U state %U\n%U%U", format_tcp_connection_id, tc,
65 format_tcp_state, tc->state, format_white_space, indent,
66 format_tcp_header, &t->tcp_header, 128);
71 #ifndef CLIB_MARCH_VARIANT
73 tcp_window_compute_scale (u32 window)
76 while (wnd_scale < TCP_MAX_WND_SCALE && (window >> wnd_scale) > TCP_WND_MAX)
82 * TCP's initial window
85 tcp_initial_wnd_unscaled (tcp_connection_t * tc)
87 /* RFC 6928 recommends the value lower. However at the time our connections
88 * are initialized, fifos may not be allocated. Therefore, advertise the
89 * smallest possible unscaled window size and update once fifos are
90 * assigned to the session.
93 tcp_update_rcv_mss (tc);
94 TCP_IW_N_SEGMENTS * tc->mss;
96 return tcp_cfg.min_rx_fifo;
100 * Compute initial window and scale factor. As per RFC1323, window field in
101 * SYN and SYN-ACK segments is never scaled.
104 tcp_initial_window_to_advertise (tcp_connection_t * tc)
106 /* Compute rcv wscale only if peer advertised support for it */
107 if (tc->state != TCP_STATE_SYN_RCVD || tcp_opts_wscale (&tc->rcv_opts))
108 tc->rcv_wscale = tcp_window_compute_scale (tcp_cfg.max_rx_fifo);
110 tc->rcv_wnd = tcp_initial_wnd_unscaled (tc);
112 return clib_min (tc->rcv_wnd, TCP_WND_MAX);
116 tcp_update_rcv_wnd (tcp_connection_t * tc)
118 u32 available_space, wnd;
122 * Figure out how much space we have available
124 available_space = transport_max_rx_enqueue (&tc->connection);
127 * Use the above and what we know about what we've previously advertised
128 * to compute the new window
130 observed_wnd = (i32) tc->rcv_wnd - (tc->rcv_nxt - tc->rcv_las);
132 /* Check if we are about to retract the window. Do the comparison before
133 * rounding to avoid errors. Per RFC7323 sec. 2.4 we could remove this */
134 if (PREDICT_FALSE ((i32) available_space < observed_wnd))
136 wnd = round_down_pow2 (clib_max (observed_wnd, 0), 1 << tc->rcv_wscale);
137 TCP_EVT (TCP_EVT_RCV_WND_SHRUNK, tc, observed_wnd, available_space);
141 /* Make sure we have a multiple of 1 << rcv_wscale. We round down to
142 * avoid advertising a window larger than what can be buffered */
143 wnd = round_down_pow2 (available_space, 1 << tc->rcv_wscale);
146 if (PREDICT_FALSE (wnd < tc->rcv_opts.mss))
149 tc->rcv_wnd = clib_min (wnd, TCP_WND_MAX << tc->rcv_wscale);
153 * Compute and return window to advertise, scaled as per RFC1323
156 tcp_window_to_advertise (tcp_connection_t * tc, tcp_state_t state)
158 if (state < TCP_STATE_ESTABLISHED)
159 return tcp_initial_window_to_advertise (tc);
161 tcp_update_rcv_wnd (tc);
162 return tc->rcv_wnd >> tc->rcv_wscale;
166 tcp_make_syn_options (tcp_connection_t * tc, tcp_options_t * opts)
170 opts->flags |= TCP_OPTS_FLAG_MSS;
172 len += TCP_OPTION_LEN_MSS;
174 opts->flags |= TCP_OPTS_FLAG_WSCALE;
175 opts->wscale = tc->rcv_wscale;
176 len += TCP_OPTION_LEN_WINDOW_SCALE;
178 opts->flags |= TCP_OPTS_FLAG_TSTAMP;
179 opts->tsval = tcp_time_tstamp (tc->c_thread_index);
181 len += TCP_OPTION_LEN_TIMESTAMP;
185 opts->flags |= TCP_OPTS_FLAG_SACK_PERMITTED;
186 len += TCP_OPTION_LEN_SACK_PERMITTED;
189 /* Align to needed boundary */
190 len += (TCP_OPTS_ALIGN - len % TCP_OPTS_ALIGN) % TCP_OPTS_ALIGN;
195 tcp_make_synack_options (tcp_connection_t * tc, tcp_options_t * opts)
199 opts->flags |= TCP_OPTS_FLAG_MSS;
201 len += TCP_OPTION_LEN_MSS;
203 if (tcp_opts_wscale (&tc->rcv_opts))
205 opts->flags |= TCP_OPTS_FLAG_WSCALE;
206 opts->wscale = tc->rcv_wscale;
207 len += TCP_OPTION_LEN_WINDOW_SCALE;
210 if (tcp_opts_tstamp (&tc->rcv_opts))
212 opts->flags |= TCP_OPTS_FLAG_TSTAMP;
213 opts->tsval = tcp_time_tstamp (tc->c_thread_index);
214 opts->tsecr = tc->tsval_recent;
215 len += TCP_OPTION_LEN_TIMESTAMP;
218 if (tcp_opts_sack_permitted (&tc->rcv_opts))
220 opts->flags |= TCP_OPTS_FLAG_SACK_PERMITTED;
221 len += TCP_OPTION_LEN_SACK_PERMITTED;
224 /* Align to needed boundary */
225 len += (TCP_OPTS_ALIGN - len % TCP_OPTS_ALIGN) % TCP_OPTS_ALIGN;
230 tcp_make_established_options (tcp_connection_t * tc, tcp_options_t * opts)
236 if (tcp_opts_tstamp (&tc->rcv_opts))
238 opts->flags |= TCP_OPTS_FLAG_TSTAMP;
239 opts->tsval = tcp_tstamp (tc);
240 opts->tsecr = tc->tsval_recent;
241 len += TCP_OPTION_LEN_TIMESTAMP;
243 if (tcp_opts_sack_permitted (&tc->rcv_opts))
245 if (vec_len (tc->snd_sacks))
247 opts->flags |= TCP_OPTS_FLAG_SACK;
248 if (tc->snd_sack_pos >= vec_len (tc->snd_sacks))
249 tc->snd_sack_pos = 0;
250 opts->sacks = &tc->snd_sacks[tc->snd_sack_pos];
251 opts->n_sack_blocks = vec_len (tc->snd_sacks) - tc->snd_sack_pos;
252 opts->n_sack_blocks = clib_min (opts->n_sack_blocks,
253 TCP_OPTS_MAX_SACK_BLOCKS);
254 tc->snd_sack_pos += opts->n_sack_blocks;
255 len += 2 + TCP_OPTION_LEN_SACK_BLOCK * opts->n_sack_blocks;
259 /* Align to needed boundary */
260 len += (TCP_OPTS_ALIGN - len % TCP_OPTS_ALIGN) % TCP_OPTS_ALIGN;
265 tcp_make_options (tcp_connection_t * tc, tcp_options_t * opts,
270 case TCP_STATE_ESTABLISHED:
271 case TCP_STATE_CLOSE_WAIT:
272 case TCP_STATE_FIN_WAIT_1:
273 case TCP_STATE_LAST_ACK:
274 case TCP_STATE_CLOSING:
275 case TCP_STATE_FIN_WAIT_2:
276 case TCP_STATE_TIME_WAIT:
277 case TCP_STATE_CLOSED:
278 return tcp_make_established_options (tc, opts);
279 case TCP_STATE_SYN_RCVD:
280 return tcp_make_synack_options (tc, opts);
281 case TCP_STATE_SYN_SENT:
282 return tcp_make_syn_options (tc, opts);
284 clib_warning ("State not handled! %d", state);
290 * Update burst send vars
292 * - Updates snd_mss to reflect the effective segment size that we can send
293 * by taking into account all TCP options, including SACKs.
294 * - Cache 'on the wire' options for reuse
295 * - Updates receive window which can be reused for a burst.
297 * This should *only* be called when doing bursts
300 tcp_update_burst_snd_vars (tcp_connection_t * tc)
302 tcp_main_t *tm = &tcp_main;
304 /* Compute options to be used for connection. These may be reused when
305 * sending data or to compute the effective mss (snd_mss) */
306 tc->snd_opts_len = tcp_make_options (tc, &tc->snd_opts,
307 TCP_STATE_ESTABLISHED);
309 /* XXX check if MTU has been updated */
310 tc->snd_mss = clib_min (tc->mss, tc->rcv_opts.mss) - tc->snd_opts_len;
311 ASSERT (tc->snd_mss > 0);
313 tcp_options_write (tm->wrk_ctx[tc->c_thread_index].cached_opts,
316 tcp_update_rcv_wnd (tc);
318 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
319 tcp_bt_check_app_limited (tc);
321 if (tc->snd_una == tc->snd_nxt)
323 tcp_cc_event (tc, TCP_CC_EVT_START_TX);
326 if (tc->flags & TCP_CONN_PSH_PENDING)
328 u32 max_deq = transport_max_tx_dequeue (&tc->connection);
329 /* Last byte marked for push */
330 tc->psh_seq = tc->snd_una + max_deq - 1;
335 tcp_init_buffer (vlib_main_t * vm, vlib_buffer_t * b)
337 ASSERT ((b->flags & VLIB_BUFFER_NEXT_PRESENT) == 0);
338 b->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
339 b->total_length_not_including_first_buffer = 0;
341 vnet_buffer (b)->tcp.flags = 0;
342 /* Leave enough space for headers */
343 return vlib_buffer_make_headroom (b, TRANSPORT_MAX_HDRS_LEN);
346 /* Compute TCP checksum in software when offloading is disabled for a connection */
348 ip6_tcp_compute_checksum_custom (vlib_main_t * vm, vlib_buffer_t * p0,
349 ip46_address_t * src, ip46_address_t * dst)
352 u16 payload_length_host_byte_order;
355 /* Initialize checksum with ip header. */
356 sum0 = clib_host_to_net_u16 (vlib_buffer_length_in_chain (vm, p0)) +
357 clib_host_to_net_u16 (IP_PROTOCOL_TCP);
358 payload_length_host_byte_order = vlib_buffer_length_in_chain (vm, p0);
360 for (i = 0; i < ARRAY_LEN (src->ip6.as_uword); i++)
362 sum0 = ip_csum_with_carry
363 (sum0, clib_mem_unaligned (&src->ip6.as_uword[i], uword));
364 sum0 = ip_csum_with_carry
365 (sum0, clib_mem_unaligned (&dst->ip6.as_uword[i], uword));
368 return ip_calculate_l4_checksum (vm, p0, sum0,
369 payload_length_host_byte_order, NULL, 0,
374 ip4_tcp_compute_checksum_custom (vlib_main_t * vm, vlib_buffer_t * p0,
375 ip46_address_t * src, ip46_address_t * dst)
378 u32 payload_length_host_byte_order;
380 payload_length_host_byte_order = vlib_buffer_length_in_chain (vm, p0);
382 clib_host_to_net_u32 (payload_length_host_byte_order +
383 (IP_PROTOCOL_TCP << 16));
385 sum0 = ip_csum_with_carry (sum0, clib_mem_unaligned (&src->ip4, u32));
386 sum0 = ip_csum_with_carry (sum0, clib_mem_unaligned (&dst->ip4, u32));
388 return ip_calculate_l4_checksum (vm, p0, sum0,
389 payload_length_host_byte_order, NULL, 0,
394 tcp_compute_checksum (tcp_connection_t * tc, vlib_buffer_t * b)
397 if (PREDICT_FALSE (tc->cfg_flags & TCP_CFG_F_NO_CSUM_OFFLOAD))
399 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
400 vlib_main_t *vm = wrk->vm;
403 checksum = ip4_tcp_compute_checksum_custom
404 (vm, b, &tc->c_lcl_ip, &tc->c_rmt_ip);
406 checksum = ip6_tcp_compute_checksum_custom
407 (vm, b, &tc->c_lcl_ip, &tc->c_rmt_ip);
411 vnet_buffer_offload_flags_set (b, VNET_BUFFER_OFFLOAD_F_TCP_CKSUM);
420 tcp_make_ack_i (tcp_connection_t * tc, vlib_buffer_t * b, tcp_state_t state,
423 tcp_options_t _snd_opts, *snd_opts = &_snd_opts;
424 u8 tcp_opts_len, tcp_hdr_opts_len;
428 wnd = tcp_window_to_advertise (tc, state);
430 /* Make and write options */
431 tcp_opts_len = tcp_make_established_options (tc, snd_opts);
432 tcp_hdr_opts_len = tcp_opts_len + sizeof (tcp_header_t);
434 th = vlib_buffer_push_tcp (b, tc->c_lcl_port, tc->c_rmt_port, tc->snd_nxt,
435 tc->rcv_nxt, tcp_hdr_opts_len, flags, wnd);
437 tcp_options_write ((u8 *) (th + 1), snd_opts);
439 th->checksum = tcp_compute_checksum (tc, b);
441 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
445 transport_rx_fifo_req_deq_ntf (&tc->connection);
446 tcp_zero_rwnd_sent_on (tc);
449 tcp_zero_rwnd_sent_off (tc);
453 * Convert buffer to ACK
456 tcp_make_ack (tcp_connection_t * tc, vlib_buffer_t * b)
458 tcp_make_ack_i (tc, b, TCP_STATE_ESTABLISHED, TCP_FLAG_ACK);
459 TCP_EVT (TCP_EVT_ACK_SENT, tc);
460 tc->rcv_las = tc->rcv_nxt;
464 * Convert buffer to FIN-ACK
467 tcp_make_fin (tcp_connection_t * tc, vlib_buffer_t * b)
469 tcp_make_ack_i (tc, b, TCP_STATE_ESTABLISHED, TCP_FLAG_FIN | TCP_FLAG_ACK);
473 * Convert buffer to SYN
476 tcp_make_syn (tcp_connection_t * tc, vlib_buffer_t * b)
478 u8 tcp_hdr_opts_len, tcp_opts_len;
481 tcp_options_t snd_opts;
483 initial_wnd = tcp_initial_window_to_advertise (tc);
485 /* Make and write options */
486 clib_memset (&snd_opts, 0, sizeof (snd_opts));
487 tcp_opts_len = tcp_make_syn_options (tc, &snd_opts);
488 tcp_hdr_opts_len = tcp_opts_len + sizeof (tcp_header_t);
490 th = vlib_buffer_push_tcp (b, tc->c_lcl_port, tc->c_rmt_port, tc->iss,
491 tc->rcv_nxt, tcp_hdr_opts_len, TCP_FLAG_SYN,
493 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
494 tcp_options_write ((u8 *) (th + 1), &snd_opts);
495 th->checksum = tcp_compute_checksum (tc, b);
499 * Convert buffer to SYN-ACK
502 tcp_make_synack (tcp_connection_t * tc, vlib_buffer_t * b)
504 tcp_options_t _snd_opts, *snd_opts = &_snd_opts;
505 u8 tcp_opts_len, tcp_hdr_opts_len;
509 clib_memset (snd_opts, 0, sizeof (*snd_opts));
510 initial_wnd = tcp_initial_window_to_advertise (tc);
511 tcp_opts_len = tcp_make_synack_options (tc, snd_opts);
512 tcp_hdr_opts_len = tcp_opts_len + sizeof (tcp_header_t);
514 th = vlib_buffer_push_tcp (b, tc->c_lcl_port, tc->c_rmt_port, tc->iss,
515 tc->rcv_nxt, tcp_hdr_opts_len,
516 TCP_FLAG_SYN | TCP_FLAG_ACK, initial_wnd);
517 tcp_options_write ((u8 *) (th + 1), snd_opts);
519 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
520 th->checksum = tcp_compute_checksum (tc, b);
524 tcp_enqueue_half_open (tcp_worker_ctx_t *wrk, tcp_connection_t *tc,
525 vlib_buffer_t *b, u32 bi)
527 vlib_main_t *vm = wrk->vm;
529 b->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
532 session_add_pending_tx_buffer (vm->thread_index, bi,
533 wrk->tco_next_node[!tc->c_is_ip4]);
535 if (vm->thread_index == 0 && vlib_num_workers ())
536 session_queue_run_on_main_thread (vm);
540 tcp_enqueue_to_output (tcp_worker_ctx_t * wrk, vlib_buffer_t * b, u32 bi,
543 b->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
546 session_add_pending_tx_buffer (wrk->vm->thread_index, bi,
547 wrk->tco_next_node[!is_ip4]);
551 tcp_buffer_make_reset (vlib_main_t *vm, vlib_buffer_t *b, u8 is_ip4)
553 ip4_address_t src_ip4 = {}, dst_ip4 = {};
554 ip6_address_t src_ip6, dst_ip6;
555 u16 src_port, dst_port;
556 u32 tmp, len, seq, ack;
563 * Find IP and TCP headers and glean information from them. Assumes
564 * buffer was parsed by something like @ref tcp_input_lookup_buffer
566 th = tcp_buffer_hdr (b);
570 ih4 = vlib_buffer_get_current (b);
571 ASSERT ((ih4->ip_version_and_header_length & 0xF0) == 0x40);
572 src_ip4.as_u32 = ih4->src_address.as_u32;
573 dst_ip4.as_u32 = ih4->dst_address.as_u32;
577 ih6 = vlib_buffer_get_current (b);
578 ASSERT ((ih6->ip_version_traffic_class_and_flow_label & 0xF0) == 0x60);
579 clib_memcpy_fast (&src_ip6, &ih6->src_address, sizeof (ip6_address_t));
580 clib_memcpy_fast (&dst_ip6, &ih6->dst_address, sizeof (ip6_address_t));
583 src_port = th->src_port;
584 dst_port = th->dst_port;
585 flags = TCP_FLAG_RST;
588 * RFC 793. If the ACK bit is off, sequence number zero is used,
589 * <SEQ=0><ACK=SEG.SEQ+SEG.LEN><CTL=RST,ACK>
590 * If the ACK bit is on,
591 * <SEQ=SEG.ACK><CTL=RST>
595 seq = th->ack_number;
600 flags |= TCP_FLAG_ACK;
601 tmp = clib_net_to_host_u32 (th->seq_number);
602 len = vnet_buffer (b)->tcp.data_len + tcp_is_syn (th) + tcp_is_fin (th);
603 ack = clib_host_to_net_u32 (tmp + len);
608 * Clear and reuse current buffer for reset
610 if (b->flags & VLIB_BUFFER_NEXT_PRESENT)
611 vlib_buffer_free_one (vm, b->next_buffer);
613 /* Zero all flags but free list index and trace flag */
614 b->flags &= VLIB_BUFFER_NEXT_PRESENT - 1;
615 /* Make sure new tcp header comes after current ip */
616 b->current_data = ((u8 *) th - b->data) + sizeof (tcp_header_t);
617 b->current_length = 0;
618 b->total_length_not_including_first_buffer = 0;
619 vnet_buffer (b)->tcp.flags = 0;
622 * Add TCP and IP headers
624 th = vlib_buffer_push_tcp_net_order (b, dst_port, src_port, seq, ack,
625 sizeof (tcp_header_t), flags, 0);
629 ih4 = vlib_buffer_push_ip4 (vm, b, &dst_ip4, &src_ip4,
631 th->checksum = ip4_tcp_udp_compute_checksum (vm, b, ih4);
636 ih6 = vlib_buffer_push_ip6 (vm, b, &dst_ip6, &src_ip6, IP_PROTOCOL_TCP);
637 th->checksum = ip6_tcp_udp_icmp_compute_checksum (vm, b, ih6, &bogus);
645 * Send reset without reusing existing buffer
647 * It extracts connection info out of original packet
650 tcp_send_reset_w_pkt (tcp_connection_t * tc, vlib_buffer_t * pkt,
651 u32 thread_index, u8 is_ip4)
653 tcp_worker_ctx_t *wrk = tcp_get_worker (thread_index);
654 vlib_main_t *vm = wrk->vm;
656 u8 tcp_hdr_len, flags = 0;
657 tcp_header_t *th, *pkt_th;
659 ip4_header_t *ih4, *pkt_ih4;
660 ip6_header_t *ih6, *pkt_ih6;
662 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
664 tcp_worker_stats_inc (wrk, no_buffer, 1);
668 b = vlib_get_buffer (vm, bi);
669 tcp_init_buffer (vm, b);
671 /* Make and write options */
672 tcp_hdr_len = sizeof (tcp_header_t);
676 pkt_ih4 = vlib_buffer_get_current (pkt);
677 pkt_th = ip4_next_header (pkt_ih4);
681 pkt_ih6 = vlib_buffer_get_current (pkt);
682 pkt_th = ip6_next_header (pkt_ih6);
685 if (tcp_ack (pkt_th))
687 flags = TCP_FLAG_RST;
688 seq = pkt_th->ack_number;
689 ack = (tc->state >= TCP_STATE_SYN_RCVD) ? tc->rcv_nxt : 0;
690 ack = clib_host_to_net_u32 (ack);
694 flags = TCP_FLAG_RST | TCP_FLAG_ACK;
696 ack = clib_host_to_net_u32 (vnet_buffer (pkt)->tcp.seq_end);
699 th = vlib_buffer_push_tcp_net_order (b, pkt_th->dst_port, pkt_th->src_port,
700 seq, ack, tcp_hdr_len, flags, 0);
702 /* Swap src and dst ip */
705 ASSERT ((pkt_ih4->ip_version_and_header_length & 0xF0) == 0x40);
706 ih4 = vlib_buffer_push_ip4 (vm, b, &pkt_ih4->dst_address,
707 &pkt_ih4->src_address, IP_PROTOCOL_TCP,
708 tcp_csum_offload (tc));
709 th->checksum = ip4_tcp_udp_compute_checksum (vm, b, ih4);
714 ASSERT ((pkt_ih6->ip_version_traffic_class_and_flow_label & 0xF0) ==
716 ih6 = vlib_buffer_push_ip6_custom (vm, b, &pkt_ih6->dst_address,
717 &pkt_ih6->src_address,
719 tc->ipv6_flow_label);
720 th->checksum = ip6_tcp_udp_icmp_compute_checksum (vm, b, ih6, &bogus);
724 tcp_enqueue_half_open (wrk, tc, b, bi);
725 TCP_EVT (TCP_EVT_RST_SENT, tc);
726 vlib_node_increment_counter (vm, tcp_node_index (output, tc->c_is_ip4),
727 TCP_ERROR_RST_SENT, 1);
731 * Build and set reset packet for connection
734 tcp_send_reset (tcp_connection_t * tc)
736 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
737 vlib_main_t *vm = wrk->vm;
741 u16 tcp_hdr_opts_len, advertise_wnd, opts_write_len;
744 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
746 tcp_worker_stats_inc (wrk, no_buffer, 1);
749 b = vlib_get_buffer (vm, bi);
750 tcp_init_buffer (vm, b);
752 tc->snd_opts_len = tcp_make_options (tc, &tc->snd_opts, tc->state);
753 tcp_hdr_opts_len = tc->snd_opts_len + sizeof (tcp_header_t);
754 advertise_wnd = tc->rcv_wnd >> tc->rcv_wscale;
755 flags = TCP_FLAG_RST | TCP_FLAG_ACK;
756 th = vlib_buffer_push_tcp (b, tc->c_lcl_port, tc->c_rmt_port, tc->snd_nxt,
757 tc->rcv_nxt, tcp_hdr_opts_len, flags,
759 opts_write_len = tcp_options_write ((u8 *) (th + 1), &tc->snd_opts);
760 th->checksum = tcp_compute_checksum (tc, b);
761 ASSERT (opts_write_len == tc->snd_opts_len);
762 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
763 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
764 TCP_EVT (TCP_EVT_RST_SENT, tc);
765 vlib_node_increment_counter (vm, tcp_node_index (output, tc->c_is_ip4),
766 TCP_ERROR_RST_SENT, 1);
772 * Builds a SYN packet for a half-open connection and sends it to tcp-output.
773 * The packet is handled by main thread and because half-open and established
774 * connections use the same pool the connection can be retrieved without
778 tcp_send_syn (tcp_connection_t * tc)
780 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
781 vlib_main_t *vm = wrk->vm;
786 * Setup retransmit and establish timers before requesting buffer
787 * such that we can return if we've ran out.
789 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT_SYN,
790 (u32) tc->rto * TCP_TO_TIMER_TICK);
792 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
794 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT_SYN,
795 tcp_cfg.alloc_err_timeout);
796 tcp_worker_stats_inc (wrk, no_buffer, 1);
800 b = vlib_get_buffer (vm, bi);
801 tcp_init_buffer (vm, b);
802 tcp_make_syn (tc, b);
804 /* Measure RTT with this */
805 tc->rtt_ts = tcp_time_now_us (vlib_num_workers ()? 1 : 0);
806 tc->rtt_seq = tc->snd_nxt;
809 tcp_enqueue_half_open (wrk, tc, b, bi);
810 TCP_EVT (TCP_EVT_SYN_SENT, tc);
814 tcp_send_synack (tcp_connection_t * tc)
816 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
817 vlib_main_t *vm = wrk->vm;
821 ASSERT (tc->snd_una != tc->snd_nxt);
822 tcp_retransmit_timer_update (&wrk->timer_wheel, tc);
824 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
826 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT,
827 tcp_cfg.alloc_err_timeout);
828 tcp_worker_stats_inc (wrk, no_buffer, 1);
832 tc->rtt_ts = tcp_time_now_us (tc->c_thread_index);
833 b = vlib_get_buffer (vm, bi);
834 tcp_init_buffer (vm, b);
835 tcp_make_synack (tc, b);
836 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
837 TCP_EVT (TCP_EVT_SYNACK_SENT, tc);
844 tcp_send_fin (tcp_connection_t * tc)
846 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
847 vlib_main_t *vm = wrk->vm;
852 fin_snt = tc->flags & TCP_CONN_FINSNT;
856 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
858 /* Out of buffers so program fin retransmit ASAP */
859 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT,
860 tcp_cfg.alloc_err_timeout);
864 /* Make sure retransmit retries a fin not data */
865 tc->flags |= TCP_CONN_FINSNT;
866 tcp_worker_stats_inc (wrk, no_buffer, 1);
870 /* If we have non-dupacks programmed, no need to send them */
871 if ((tc->flags & TCP_CONN_SNDACK) && !tc->pending_dupacks)
872 tc->flags &= ~TCP_CONN_SNDACK;
874 b = vlib_get_buffer (vm, bi);
875 tcp_init_buffer (vm, b);
876 tcp_make_fin (tc, b);
877 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
878 TCP_EVT (TCP_EVT_FIN_SENT, tc);
879 /* Account for the FIN */
881 tcp_retransmit_timer_update (&wrk->timer_wheel, tc);
884 tc->flags |= TCP_CONN_FINSNT;
885 tc->flags &= ~TCP_CONN_FINPNDG;
890 * Push TCP header and update connection variables. Should only be called
891 * for segments with data, not for 'control' packets.
894 tcp_push_hdr_i (tcp_connection_t * tc, vlib_buffer_t * b, u32 snd_nxt,
895 u8 compute_opts, u8 maybe_burst, u8 update_snd_nxt)
897 u8 tcp_hdr_opts_len, flags = TCP_FLAG_ACK;
898 u32 advertise_wnd, data_len;
899 tcp_main_t *tm = &tcp_main;
902 data_len = b->current_length;
903 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_NEXT_PRESENT))
904 data_len += b->total_length_not_including_first_buffer;
906 vnet_buffer (b)->tcp.flags = 0;
907 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
910 tc->snd_opts_len = tcp_make_options (tc, &tc->snd_opts, tc->state);
912 tcp_hdr_opts_len = tc->snd_opts_len + sizeof (tcp_header_t);
915 advertise_wnd = tc->rcv_wnd >> tc->rcv_wscale;
917 advertise_wnd = tcp_window_to_advertise (tc, TCP_STATE_ESTABLISHED);
919 if (PREDICT_FALSE (tc->flags & TCP_CONN_PSH_PENDING))
921 if (seq_geq (tc->psh_seq, snd_nxt)
922 && seq_lt (tc->psh_seq, snd_nxt + data_len))
923 flags |= TCP_FLAG_PSH;
925 th = vlib_buffer_push_tcp (b, tc->c_lcl_port, tc->c_rmt_port, snd_nxt,
926 tc->rcv_nxt, tcp_hdr_opts_len, flags,
931 clib_memcpy_fast ((u8 *) (th + 1),
932 tm->wrk_ctx[tc->c_thread_index].cached_opts,
937 u8 len = tcp_options_write ((u8 *) (th + 1), &tc->snd_opts);
938 ASSERT (len == tc->snd_opts_len);
942 * Update connection variables
946 tc->snd_nxt += data_len;
947 tc->rcv_las = tc->rcv_nxt;
949 tc->bytes_out += data_len;
950 tc->data_segs_out += 1;
952 th->checksum = tcp_compute_checksum (tc, b);
954 TCP_EVT (TCP_EVT_PKTIZE, tc);
958 tcp_buffer_len (vlib_buffer_t * b)
960 u32 data_len = b->current_length;
961 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_NEXT_PRESENT))
962 data_len += b->total_length_not_including_first_buffer;
967 tcp_push_one_header (tcp_connection_t *tc, vlib_buffer_t *b)
969 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
970 tcp_bt_track_tx (tc, tcp_buffer_len (b));
972 tcp_push_hdr_i (tc, b, tc->snd_nxt, /* compute opts */ 0, /* burst */ 1,
973 /* update_snd_nxt */ 1);
975 tcp_validate_txf_size (tc, tc->snd_nxt - tc->snd_una);
980 tcp_session_push_header (transport_connection_t *tconn, vlib_buffer_t **bs,
983 tcp_connection_t *tc = (tcp_connection_t *) tconn;
987 vlib_prefetch_buffer_header (bs[2], STORE);
988 vlib_prefetch_buffer_header (bs[3], STORE);
990 tcp_push_one_header (tc, bs[0]);
991 tcp_push_one_header (tc, bs[1]);
999 vlib_prefetch_buffer_header (bs[1], STORE);
1001 tcp_push_one_header (tc, bs[0]);
1007 /* If not tracking an ACK, start tracking */
1008 if (tc->rtt_ts == 0 && !tcp_in_cong_recovery (tc))
1010 tc->rtt_ts = tcp_time_now_us (tc->c_thread_index);
1011 tc->rtt_seq = tc->snd_nxt;
1013 if (PREDICT_FALSE (!tcp_timer_is_active (tc, TCP_TIMER_RETRANSMIT)))
1015 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
1016 tcp_retransmit_timer_set (&wrk->timer_wheel, tc);
1023 tcp_send_ack (tcp_connection_t * tc)
1025 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
1026 vlib_main_t *vm = wrk->vm;
1030 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
1032 tcp_update_rcv_wnd (tc);
1033 tcp_worker_stats_inc (wrk, no_buffer, 1);
1036 b = vlib_get_buffer (vm, bi);
1037 tcp_init_buffer (vm, b);
1038 tcp_make_ack (tc, b);
1039 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1043 tcp_program_ack (tcp_connection_t * tc)
1045 if (!(tc->flags & TCP_CONN_SNDACK))
1047 session_add_self_custom_tx_evt (&tc->connection, 1);
1048 tc->flags |= TCP_CONN_SNDACK;
1053 tcp_program_dupack (tcp_connection_t * tc)
1055 if (!(tc->flags & TCP_CONN_SNDACK))
1057 session_add_self_custom_tx_evt (&tc->connection, 1);
1058 tc->flags |= TCP_CONN_SNDACK;
1060 if (tc->pending_dupacks < 255)
1061 tc->pending_dupacks += 1;
1065 tcp_program_retransmit (tcp_connection_t * tc)
1067 if (!(tc->flags & TCP_CONN_RXT_PENDING))
1069 session_add_self_custom_tx_evt (&tc->connection, 0);
1070 tc->flags |= TCP_CONN_RXT_PENDING;
1075 * Send window update ack
1077 * Ensures that it will be sent only once, after a zero rwnd has been
1078 * advertised in a previous ack, and only if rwnd has grown beyond a
1079 * configurable value.
1082 tcp_send_window_update_ack (tcp_connection_t * tc)
1084 if (tcp_zero_rwnd_sent (tc))
1086 tcp_update_rcv_wnd (tc);
1087 if (tc->rcv_wnd >= tcp_cfg.rwnd_min_update_ack * tc->snd_mss)
1089 tcp_zero_rwnd_sent_off (tc);
1090 tcp_program_ack (tc);
1096 * Allocate a new buffer and build a new tcp segment
1098 * @param wrk tcp worker
1099 * @param tc connection for which the segment will be allocated
1100 * @param offset offset of the first byte in the tx fifo
1101 * @param max_deq_byte segment size
1102 * @param[out] b pointer to buffer allocated
1104 * @return the number of bytes in the segment or 0 if buffer cannot be
1105 * allocated or no data available
1108 tcp_prepare_segment (tcp_worker_ctx_t * wrk, tcp_connection_t * tc,
1109 u32 offset, u32 max_deq_bytes, vlib_buffer_t ** b)
1111 u32 bytes_per_buffer = vnet_get_tcp_main ()->bytes_per_buffer;
1112 vlib_main_t *vm = wrk->vm;
1117 seg_size = max_deq_bytes + TRANSPORT_MAX_HDRS_LEN;
1122 tc->snd_opts_len = tcp_make_options (tc, &tc->snd_opts, tc->state);
1125 * Allocate and fill in buffer(s)
1128 /* Easy case, buffer size greater than mss */
1129 if (PREDICT_TRUE (seg_size <= bytes_per_buffer))
1131 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
1133 tcp_worker_stats_inc (wrk, no_buffer, 1);
1136 *b = vlib_get_buffer (vm, bi);
1137 data = tcp_init_buffer (vm, *b);
1138 n_bytes = session_tx_fifo_peek_bytes (&tc->connection, data, offset,
1140 ASSERT (n_bytes == max_deq_bytes);
1141 b[0]->current_length = n_bytes;
1142 tcp_push_hdr_i (tc, *b, tc->snd_una + offset, /* compute opts */ 0,
1143 /* burst */ 0, /* update_snd_nxt */ 0);
1145 /* Split mss into multiple buffers */
1148 u32 chain_bi = ~0, n_bufs_per_seg, n_bufs;
1149 u16 n_peeked, len_to_deq;
1150 vlib_buffer_t *chain_b, *prev_b;
1153 /* Make sure we have enough buffers */
1154 n_bufs_per_seg = ceil ((double) seg_size / bytes_per_buffer);
1155 vec_validate_aligned (wrk->tx_buffers, n_bufs_per_seg - 1,
1156 CLIB_CACHE_LINE_BYTES);
1157 n_bufs = vlib_buffer_alloc (vm, wrk->tx_buffers, n_bufs_per_seg);
1158 if (PREDICT_FALSE (n_bufs != n_bufs_per_seg))
1161 vlib_buffer_free (vm, wrk->tx_buffers, n_bufs);
1162 tcp_worker_stats_inc (wrk, no_buffer, 1);
1166 *b = vlib_get_buffer (vm, wrk->tx_buffers[--n_bufs]);
1167 data = tcp_init_buffer (vm, *b);
1168 n_bytes = session_tx_fifo_peek_bytes (&tc->connection, data, offset,
1170 TRANSPORT_MAX_HDRS_LEN);
1171 b[0]->current_length = n_bytes;
1172 b[0]->flags |= VLIB_BUFFER_TOTAL_LENGTH_VALID;
1173 b[0]->total_length_not_including_first_buffer = 0;
1174 max_deq_bytes -= n_bytes;
1177 for (i = 1; i < n_bufs_per_seg; i++)
1180 len_to_deq = clib_min (max_deq_bytes, bytes_per_buffer);
1181 chain_bi = wrk->tx_buffers[--n_bufs];
1182 chain_b = vlib_get_buffer (vm, chain_bi);
1183 chain_b->current_data = 0;
1184 data = vlib_buffer_get_current (chain_b);
1185 n_peeked = session_tx_fifo_peek_bytes (&tc->connection, data,
1188 ASSERT (n_peeked == len_to_deq);
1189 n_bytes += n_peeked;
1190 chain_b->current_length = n_peeked;
1191 chain_b->next_buffer = 0;
1193 /* update previous buffer */
1194 prev_b->next_buffer = chain_bi;
1195 prev_b->flags |= VLIB_BUFFER_NEXT_PRESENT;
1197 max_deq_bytes -= n_peeked;
1198 b[0]->total_length_not_including_first_buffer += n_peeked;
1201 tcp_push_hdr_i (tc, *b, tc->snd_una + offset, /* compute opts */ 0,
1202 /* burst */ 0, /* update_snd_nxt */ 0);
1204 if (PREDICT_FALSE (n_bufs))
1206 clib_warning ("not all buffers consumed");
1207 vlib_buffer_free (vm, wrk->tx_buffers, n_bufs);
1211 ASSERT (n_bytes > 0);
1212 ASSERT (((*b)->current_data + (*b)->current_length) <= bytes_per_buffer);
1218 * Build a retransmit segment
1220 * @return the number of bytes in the segment or 0 if there's nothing to
1224 tcp_prepare_retransmit_segment (tcp_worker_ctx_t * wrk,
1225 tcp_connection_t * tc, u32 offset,
1226 u32 max_deq_bytes, vlib_buffer_t ** b)
1228 u32 start, available_bytes;
1231 ASSERT (tc->state >= TCP_STATE_ESTABLISHED);
1232 ASSERT (max_deq_bytes != 0);
1235 * Make sure we can retransmit something
1237 available_bytes = transport_max_tx_dequeue (&tc->connection);
1238 ASSERT (available_bytes >= offset);
1239 available_bytes -= offset;
1240 if (!available_bytes)
1243 max_deq_bytes = clib_min (tc->snd_mss, max_deq_bytes);
1244 max_deq_bytes = clib_min (available_bytes, max_deq_bytes);
1246 start = tc->snd_una + offset;
1247 ASSERT (seq_leq (start + max_deq_bytes, tc->snd_nxt));
1249 n_bytes = tcp_prepare_segment (wrk, tc, offset, max_deq_bytes, b);
1253 tc->snd_rxt_bytes += n_bytes;
1255 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
1256 tcp_bt_track_rxt (tc, start, start + n_bytes);
1258 tc->bytes_retrans += n_bytes;
1259 tc->segs_retrans += 1;
1260 tcp_worker_stats_inc (wrk, rxt_segs, 1);
1261 TCP_EVT (TCP_EVT_CC_RTX, tc, offset, n_bytes);
1267 tcp_check_sack_reneging (tcp_connection_t * tc)
1269 sack_scoreboard_t *sb = &tc->sack_sb;
1270 sack_scoreboard_hole_t *hole;
1272 hole = scoreboard_first_hole (sb);
1273 if (!sb->is_reneging && (!hole || hole->start == tc->snd_una))
1276 scoreboard_clear_reneging (sb, tc->snd_una, tc->snd_nxt);
1280 * Reset congestion control, switch cwnd to loss window and try again.
1283 tcp_cc_init_rxt_timeout (tcp_connection_t * tc)
1285 TCP_EVT (TCP_EVT_CC_EVT, tc, 6);
1287 tc->prev_ssthresh = tc->ssthresh;
1288 tc->prev_cwnd = tc->cwnd;
1290 /* If we entrered loss without fast recovery, notify cc algo of the
1291 * congestion event such that it can update ssthresh and its state */
1292 if (!tcp_in_fastrecovery (tc))
1293 tcp_cc_congestion (tc);
1295 /* Let cc algo decide loss cwnd and ssthresh post unrecovered loss */
1299 tc->cwnd_acc_bytes = 0;
1300 tc->tr_occurences += 1;
1301 tc->sack_sb.reorder = TCP_DUPACK_THRESHOLD;
1302 tcp_recovery_on (tc);
1306 tcp_timer_retransmit_handler (tcp_connection_t * tc)
1308 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
1309 vlib_main_t *vm = wrk->vm;
1310 vlib_buffer_t *b = 0;
1313 tcp_worker_stats_inc (wrk, tr_events, 1);
1315 /* Should be handled by a different handler */
1316 if (PREDICT_FALSE (tc->state == TCP_STATE_SYN_SENT))
1319 /* Wait-close and retransmit could pop at the same time */
1320 if (tc->state == TCP_STATE_CLOSED)
1323 if (tc->state >= TCP_STATE_ESTABLISHED)
1325 TCP_EVT (TCP_EVT_CC_EVT, tc, 2);
1327 /* Lost FIN, retransmit and return */
1328 if (tc->flags & TCP_CONN_FINSNT)
1332 tc->rto = clib_min (tc->rto << 1, TCP_RTO_MAX);
1336 /* Shouldn't be here */
1337 if (tc->snd_una == tc->snd_nxt)
1339 ASSERT (!tcp_in_recovery (tc));
1344 /* We're not in recovery so make sure rto_boff is 0. Can be non 0 due
1345 * to persist timer timeout */
1346 if (!tcp_in_recovery (tc) && tc->rto_boff > 0)
1349 tcp_update_rto (tc);
1352 /* Peer is dead or network connectivity is lost. Close connection.
1353 * RFC 1122 section 4.2.3.5 recommends a value of at least 100s. For
1354 * a min rto of 0.2s we need to retry about 8 times. */
1355 if (tc->rto_boff >= TCP_RTO_BOFF_MAX)
1357 tcp_send_reset (tc);
1358 tcp_connection_set_state (tc, TCP_STATE_CLOSED);
1359 session_transport_closing_notify (&tc->connection);
1360 session_transport_closed_notify (&tc->connection);
1361 tcp_connection_timers_reset (tc);
1362 tcp_program_cleanup (wrk, tc);
1363 tcp_worker_stats_inc (wrk, tr_abort, 1);
1367 if (tcp_opts_sack_permitted (&tc->rcv_opts))
1369 tcp_check_sack_reneging (tc);
1370 scoreboard_rxt_mark_lost (&tc->sack_sb, tc->snd_una, tc->snd_nxt);
1373 /* Update send congestion to make sure that rxt has data to send */
1374 tc->snd_congestion = tc->snd_nxt;
1376 /* Send the first unacked segment. If we're short on buffers, return
1377 * as soon as possible */
1378 n_bytes = clib_min (tc->snd_mss, tc->snd_nxt - tc->snd_una);
1379 n_bytes = tcp_prepare_retransmit_segment (wrk, tc, 0, n_bytes, &b);
1382 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT,
1383 tcp_cfg.alloc_err_timeout);
1387 bi = vlib_get_buffer_index (vm, b);
1388 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1390 tc->rto = clib_min (tc->rto << 1, TCP_RTO_MAX);
1391 tcp_retransmit_timer_update (&wrk->timer_wheel, tc);
1394 if (tc->rto_boff == 1)
1396 tcp_cc_init_rxt_timeout (tc);
1397 /* Record timestamp. Eifel detection algorithm RFC3522 */
1398 tc->snd_rxt_ts = tcp_tstamp (tc);
1401 if (tcp_opts_sack_permitted (&tc->rcv_opts))
1402 scoreboard_init_rxt (&tc->sack_sb, tc->snd_una + n_bytes);
1404 tcp_program_retransmit (tc);
1406 /* Retransmit SYN-ACK */
1407 else if (tc->state == TCP_STATE_SYN_RCVD)
1409 TCP_EVT (TCP_EVT_CC_EVT, tc, 2);
1413 /* Passive open establish timeout */
1414 if (tc->rto > TCP_ESTABLISH_TIME >> 1)
1416 tcp_connection_set_state (tc, TCP_STATE_CLOSED);
1417 tcp_connection_timers_reset (tc);
1418 tcp_program_cleanup (wrk, tc);
1419 tcp_worker_stats_inc (wrk, tr_abort, 1);
1423 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
1425 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT,
1426 tcp_cfg.alloc_err_timeout);
1427 tcp_worker_stats_inc (wrk, no_buffer, 1);
1432 if (tc->rto_boff > TCP_RTO_SYN_RETRIES)
1433 tc->rto = clib_min (tc->rto << 1, TCP_RTO_MAX);
1435 ASSERT (tc->snd_una != tc->snd_nxt);
1436 tcp_retransmit_timer_update (&wrk->timer_wheel, tc);
1438 b = vlib_get_buffer (vm, bi);
1439 tcp_init_buffer (vm, b);
1440 tcp_make_synack (tc, b);
1441 TCP_EVT (TCP_EVT_SYN_RXT, tc, 1);
1443 /* Retransmit timer already updated, just enqueue to output */
1444 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1448 ASSERT (tc->state == TCP_STATE_CLOSED);
1454 * SYN retransmit timer handler. Active open only.
1457 tcp_timer_retransmit_syn_handler (tcp_connection_t * tc)
1459 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
1460 vlib_main_t *vm = wrk->vm;
1461 vlib_buffer_t *b = 0;
1464 /* Note: the connection may have transitioned to ESTABLISHED... */
1465 if (PREDICT_FALSE (tc->state != TCP_STATE_SYN_SENT))
1468 /* Half-open connection actually moved to established but we were
1469 * waiting for syn retransmit to pop to call cleanup from the right
1471 if (tc->flags & TCP_CONN_HALF_OPEN_DONE)
1473 if (tcp_half_open_connection_cleanup (tc))
1474 TCP_DBG ("could not remove half-open connection");
1478 TCP_EVT (TCP_EVT_CC_EVT, tc, 2);
1481 /* Active open establish timeout */
1482 if (tc->rto >= TCP_ESTABLISH_TIME >> 1)
1484 session_stream_connect_notify (&tc->connection, SESSION_E_TIMEDOUT);
1485 tcp_connection_cleanup (tc);
1489 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
1491 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT_SYN,
1492 tcp_cfg.alloc_err_timeout);
1493 tcp_worker_stats_inc (wrk, no_buffer, 1);
1497 /* Try without increasing RTO a number of times. If this fails,
1498 * start growing RTO exponentially */
1500 if (tc->rto_boff > TCP_RTO_SYN_RETRIES)
1501 tc->rto = clib_min (tc->rto << 1, TCP_RTO_MAX);
1503 b = vlib_get_buffer (vm, bi);
1504 tcp_init_buffer (vm, b);
1505 tcp_make_syn (tc, b);
1507 TCP_EVT (TCP_EVT_SYN_RXT, tc, 0);
1509 tcp_enqueue_half_open (wrk, tc, b, bi);
1511 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT_SYN,
1512 (u32) tc->rto * TCP_TO_TIMER_TICK);
1516 * Got 0 snd_wnd from peer, try to do something about it.
1520 tcp_timer_persist_handler (tcp_connection_t * tc)
1522 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
1523 u32 bi, max_snd_bytes, available_bytes, offset;
1524 tcp_main_t *tm = vnet_get_tcp_main ();
1525 vlib_main_t *vm = wrk->vm;
1530 /* Problem already solved or worse */
1531 if (tc->state == TCP_STATE_CLOSED || tc->snd_wnd > tc->snd_mss
1532 || (tc->flags & TCP_CONN_FINSNT))
1533 goto update_scheduler;
1535 available_bytes = transport_max_tx_dequeue (&tc->connection);
1536 offset = tc->snd_nxt - tc->snd_una;
1538 /* Reprogram persist if no new bytes available to send. We may have data
1540 if (!available_bytes)
1542 tcp_persist_timer_set (&wrk->timer_wheel, tc);
1546 if (available_bytes <= offset)
1547 goto update_scheduler;
1549 /* Increment RTO backoff */
1551 tc->rto = clib_min (tc->rto << 1, TCP_RTO_MAX);
1554 * Try to force the first unsent segment (or buffer)
1556 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
1558 tcp_persist_timer_set (&wrk->timer_wheel, tc);
1559 tcp_worker_stats_inc (wrk, no_buffer, 1);
1563 b = vlib_get_buffer (vm, bi);
1564 data = tcp_init_buffer (vm, b);
1566 tcp_validate_txf_size (tc, offset);
1567 tc->snd_opts_len = tcp_make_options (tc, &tc->snd_opts, tc->state);
1568 max_snd_bytes = clib_min (clib_min (tc->snd_mss, available_bytes),
1569 tm->bytes_per_buffer - TRANSPORT_MAX_HDRS_LEN);
1570 if (tc->snd_wnd > 0)
1571 max_snd_bytes = clib_min (tc->snd_wnd, max_snd_bytes);
1572 n_bytes = session_tx_fifo_peek_bytes (&tc->connection, data, offset,
1574 b->current_length = n_bytes;
1575 ASSERT (n_bytes != 0 && (tcp_timer_is_active (tc, TCP_TIMER_RETRANSMIT)
1576 || tc->snd_una == tc->snd_nxt
1577 || tc->rto_boff > 1));
1579 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
1581 tcp_bt_check_app_limited (tc);
1582 tcp_bt_track_tx (tc, n_bytes);
1585 tcp_push_hdr_i (tc, b, tc->snd_nxt, /* compute opts */ 0,
1586 /* burst */ 0, /* update_snd_nxt */ 1);
1587 tcp_validate_txf_size (tc, tc->snd_nxt - tc->snd_una);
1588 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1590 /* Just sent new data, enable retransmit */
1591 tcp_retransmit_timer_update (&wrk->timer_wheel, tc);
1597 if (tcp_is_descheduled (tc))
1598 transport_connection_reschedule (&tc->connection);
1602 * Retransmit first unacked segment
1605 tcp_retransmit_first_unacked (tcp_worker_ctx_t * wrk, tcp_connection_t * tc)
1607 vlib_main_t *vm = wrk->vm;
1611 TCP_EVT (TCP_EVT_CC_EVT, tc, 1);
1613 n_bytes = tcp_prepare_retransmit_segment (wrk, tc, 0, tc->snd_mss, &b);
1617 bi = vlib_get_buffer_index (vm, b);
1618 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1624 tcp_transmit_unsent (tcp_worker_ctx_t * wrk, tcp_connection_t * tc,
1627 u32 offset, n_segs = 0, n_written, bi, available_wnd;
1628 vlib_main_t *vm = wrk->vm;
1629 vlib_buffer_t *b = 0;
1631 offset = tc->snd_nxt - tc->snd_una;
1632 available_wnd = tc->snd_wnd - offset;
1633 burst_size = clib_min (burst_size, available_wnd / tc->snd_mss);
1635 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
1636 tcp_bt_check_app_limited (tc);
1638 while (n_segs < burst_size)
1640 n_written = tcp_prepare_segment (wrk, tc, offset, tc->snd_mss, &b);
1644 bi = vlib_get_buffer_index (vm, b);
1645 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1646 offset += n_written;
1649 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
1650 tcp_bt_track_tx (tc, n_written);
1652 tc->snd_nxt += n_written;
1660 * Estimate send space using proportional rate reduction (RFC6937)
1663 tcp_fastrecovery_prr_snd_space (tcp_connection_t * tc)
1668 pipe = tcp_flight_size (tc);
1669 prr_out = tc->snd_rxt_bytes + (tc->snd_nxt - tc->snd_congestion);
1671 if (pipe > tc->ssthresh)
1673 space = ((int) tc->prr_delivered * ((f64) tc->ssthresh / tc->prev_cwnd))
1679 limit = clib_max ((int) (tc->prr_delivered - prr_out), 0) + tc->snd_mss;
1680 space = clib_min (tc->ssthresh - pipe, limit);
1682 space = clib_max (space, prr_out ? 0 : tc->snd_mss);
1687 tcp_retransmit_should_retry_head (tcp_connection_t * tc,
1688 sack_scoreboard_t * sb)
1690 u32 tx_adv_sack = sb->high_sacked - tc->snd_congestion;
1691 f64 rr = (f64) tc->ssthresh / tc->prev_cwnd;
1693 if (tcp_fastrecovery_first (tc))
1696 return (tx_adv_sack > (tc->snd_una - tc->prr_start) * rr);
1700 tcp_max_tx_deq (tcp_connection_t * tc)
1702 return (transport_max_tx_dequeue (&tc->connection)
1703 - (tc->snd_nxt - tc->snd_una));
1706 #define scoreboard_rescue_rxt_valid(_sb, _tc) \
1707 (seq_geq (_sb->rescue_rxt, _tc->snd_una) \
1708 && seq_leq (_sb->rescue_rxt, _tc->snd_congestion))
1711 * Do retransmit with SACKs
1714 tcp_retransmit_sack (tcp_worker_ctx_t * wrk, tcp_connection_t * tc,
1717 u32 n_written = 0, offset, max_bytes, n_segs = 0;
1718 u8 snd_limited = 0, can_rescue = 0;
1719 u32 bi, max_deq, burst_bytes;
1720 sack_scoreboard_hole_t *hole;
1721 vlib_main_t *vm = wrk->vm;
1722 vlib_buffer_t *b = 0;
1723 sack_scoreboard_t *sb;
1726 ASSERT (tcp_in_cong_recovery (tc));
1728 burst_bytes = transport_connection_tx_pacer_burst (&tc->connection);
1729 burst_size = clib_min (burst_size, burst_bytes / tc->snd_mss);
1732 tcp_program_retransmit (tc);
1736 if (tcp_in_recovery (tc))
1737 snd_space = tcp_available_cc_snd_space (tc);
1739 snd_space = tcp_fastrecovery_prr_snd_space (tc);
1741 if (snd_space < tc->snd_mss)
1746 /* Check if snd_una is a lost retransmit */
1747 if (pool_elts (sb->holes)
1748 && seq_gt (sb->high_sacked, tc->snd_congestion)
1749 && tc->rxt_head != tc->snd_una
1750 && tcp_retransmit_should_retry_head (tc, sb))
1752 max_bytes = clib_min (tc->snd_mss, tc->snd_congestion - tc->snd_una);
1753 n_written = tcp_prepare_retransmit_segment (wrk, tc, 0, max_bytes, &b);
1756 tcp_program_retransmit (tc);
1759 bi = vlib_get_buffer_index (vm, b);
1760 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1763 tc->rxt_head = tc->snd_una;
1764 tc->rxt_delivered += n_written;
1765 tc->prr_delivered += n_written;
1766 ASSERT (tc->rxt_delivered <= tc->snd_rxt_bytes);
1769 tcp_fastrecovery_first_off (tc);
1771 TCP_EVT (TCP_EVT_CC_EVT, tc, 0);
1772 hole = scoreboard_get_hole (sb, sb->cur_rxt_hole);
1774 max_deq = transport_max_tx_dequeue (&tc->connection);
1775 max_deq -= tc->snd_nxt - tc->snd_una;
1777 while (snd_space > 0 && n_segs < burst_size)
1779 hole = scoreboard_next_rxt_hole (sb, hole, max_deq != 0, &can_rescue,
1783 /* We are out of lost holes to retransmit so send some new data. */
1784 if (max_deq > tc->snd_mss)
1789 /* Make sure we don't exceed available window and leave space
1790 * for one more packet, to avoid zero window acks */
1791 av_wnd = (int) tc->snd_wnd - (tc->snd_nxt - tc->snd_una);
1792 av_wnd = clib_max (av_wnd - tc->snd_mss, 0);
1793 snd_space = clib_min (snd_space, av_wnd);
1794 snd_space = clib_min (max_deq, snd_space);
1795 burst_size = clib_min (burst_size - n_segs,
1796 snd_space / tc->snd_mss);
1797 burst_size = clib_min (burst_size, TCP_RXT_MAX_BURST);
1798 n_segs_new = tcp_transmit_unsent (wrk, tc, burst_size);
1799 if (max_deq > n_segs_new * tc->snd_mss)
1800 tcp_program_retransmit (tc);
1802 n_segs += n_segs_new;
1806 if (tcp_in_recovery (tc) || !can_rescue
1807 || scoreboard_rescue_rxt_valid (sb, tc))
1810 /* If rescue rxt undefined or less than snd_una then one segment of
1811 * up to SMSS octets that MUST include the highest outstanding
1812 * unSACKed sequence number SHOULD be returned, and RescueRxt set to
1813 * RecoveryPoint. HighRxt MUST NOT be updated.
1815 hole = scoreboard_last_hole (sb);
1816 max_bytes = clib_min (tc->snd_mss, hole->end - hole->start);
1817 max_bytes = clib_min (max_bytes, snd_space);
1818 offset = hole->end - tc->snd_una - max_bytes;
1819 n_written = tcp_prepare_retransmit_segment (wrk, tc, offset,
1824 sb->rescue_rxt = tc->snd_congestion;
1825 bi = vlib_get_buffer_index (vm, b);
1826 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1831 max_bytes = clib_min (hole->end - sb->high_rxt, snd_space);
1832 max_bytes = snd_limited ? clib_min (max_bytes, tc->snd_mss) : max_bytes;
1836 offset = sb->high_rxt - tc->snd_una;
1837 n_written = tcp_prepare_retransmit_segment (wrk, tc, offset, max_bytes,
1839 ASSERT (n_written <= snd_space);
1841 /* Nothing left to retransmit */
1845 bi = vlib_get_buffer_index (vm, b);
1846 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1848 sb->high_rxt += n_written;
1849 ASSERT (seq_leq (sb->high_rxt, tc->snd_nxt));
1851 snd_space -= n_written;
1856 tcp_program_retransmit (tc);
1860 transport_connection_tx_pacer_reset_bucket (&tc->connection, 0);
1865 * Fast retransmit without SACK info
1868 tcp_retransmit_no_sack (tcp_worker_ctx_t * wrk, tcp_connection_t * tc,
1871 u32 n_written = 0, offset = 0, bi, max_deq, n_segs_now, max_bytes;
1872 u32 burst_bytes, sent_bytes;
1873 vlib_main_t *vm = wrk->vm;
1874 int snd_space, n_segs = 0;
1878 ASSERT (tcp_in_cong_recovery (tc));
1879 TCP_EVT (TCP_EVT_CC_EVT, tc, 0);
1881 burst_bytes = transport_connection_tx_pacer_burst (&tc->connection);
1882 burst_size = clib_min (burst_size, burst_bytes / tc->snd_mss);
1885 tcp_program_retransmit (tc);
1889 snd_space = tcp_available_cc_snd_space (tc);
1890 cc_limited = snd_space < burst_bytes;
1892 if (!tcp_fastrecovery_first (tc))
1895 /* RFC 6582: [If a partial ack], retransmit the first unacknowledged
1897 while (snd_space > 0 && n_segs < burst_size)
1899 max_bytes = clib_min (tc->snd_mss,
1900 tc->snd_congestion - tc->snd_una - offset);
1903 n_written = tcp_prepare_retransmit_segment (wrk, tc, offset, max_bytes,
1906 /* Nothing left to retransmit */
1910 bi = vlib_get_buffer_index (vm, b);
1911 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1912 snd_space -= n_written;
1913 offset += n_written;
1917 if (n_segs == burst_size)
1922 /* RFC 6582: Send a new segment if permitted by the new value of cwnd. */
1923 if (snd_space < tc->snd_mss || tc->snd_mss == 0)
1926 max_deq = transport_max_tx_dequeue (&tc->connection);
1927 max_deq -= tc->snd_nxt - tc->snd_una;
1930 snd_space = clib_min (max_deq, snd_space);
1931 burst_size = clib_min (burst_size - n_segs, snd_space / tc->snd_mss);
1932 n_segs_now = tcp_transmit_unsent (wrk, tc, burst_size);
1933 if (n_segs_now && max_deq > n_segs_now * tc->snd_mss)
1934 tcp_program_retransmit (tc);
1935 n_segs += n_segs_now;
1939 tcp_fastrecovery_first_off (tc);
1941 sent_bytes = clib_min (n_segs * tc->snd_mss, burst_bytes);
1942 sent_bytes = cc_limited ? burst_bytes : sent_bytes;
1943 transport_connection_tx_pacer_update_bytes (&tc->connection, sent_bytes);
1949 tcp_send_acks (tcp_connection_t * tc, u32 max_burst_size)
1953 if (!tc->pending_dupacks)
1955 if (tcp_in_cong_recovery (tc) || !tcp_max_tx_deq (tc)
1956 || tc->state != TCP_STATE_ESTABLISHED)
1964 /* If we're supposed to send dupacks but have no ooo data
1965 * send only one ack */
1966 if (!vec_len (tc->snd_sacks))
1969 tc->dupacks_out += 1;
1970 tc->pending_dupacks = 0;
1974 /* Start with first sack block */
1975 tc->snd_sack_pos = 0;
1977 /* Generate enough dupacks to cover all sack blocks. Do not generate
1978 * more sacks than the number of packets received. But do generate at
1979 * least 3, i.e., the number needed to signal congestion, if needed. */
1980 n_acks = vec_len (tc->snd_sacks) / TCP_OPTS_MAX_SACK_BLOCKS;
1981 n_acks = clib_min (n_acks, tc->pending_dupacks);
1982 n_acks = clib_max (n_acks, clib_min (tc->pending_dupacks, 3));
1983 for (j = 0; j < clib_min (n_acks, max_burst_size); j++)
1986 if (n_acks < max_burst_size)
1988 tc->pending_dupacks = 0;
1989 tc->snd_sack_pos = 0;
1990 tc->dupacks_out += n_acks;
1995 TCP_DBG ("constrained by burst size");
1996 tc->pending_dupacks = n_acks - max_burst_size;
1997 tc->dupacks_out += max_burst_size;
1998 tcp_program_dupack (tc);
1999 return max_burst_size;
2004 tcp_do_retransmit (tcp_connection_t * tc, u32 max_burst_size)
2006 tcp_worker_ctx_t *wrk;
2009 if (PREDICT_FALSE (tc->state == TCP_STATE_CLOSED))
2012 wrk = tcp_get_worker (tc->c_thread_index);
2014 if (tcp_opts_sack_permitted (&tc->rcv_opts))
2015 n_segs = tcp_retransmit_sack (wrk, tc, max_burst_size);
2017 n_segs = tcp_retransmit_no_sack (wrk, tc, max_burst_size);
2023 tcp_session_custom_tx (void *conn, transport_send_params_t * sp)
2025 tcp_connection_t *tc = (tcp_connection_t *) conn;
2028 if (tcp_in_cong_recovery (tc) && (tc->flags & TCP_CONN_RXT_PENDING))
2030 tc->flags &= ~TCP_CONN_RXT_PENDING;
2031 n_segs = tcp_do_retransmit (tc, sp->max_burst_size);
2034 if (!(tc->flags & TCP_CONN_SNDACK))
2037 tc->flags &= ~TCP_CONN_SNDACK;
2039 /* We have retransmitted packets and no dupack */
2040 if (n_segs && !tc->pending_dupacks)
2043 if (sp->max_burst_size <= n_segs)
2045 tcp_program_ack (tc);
2049 n_segs += tcp_send_acks (tc, sp->max_burst_size - n_segs);
2053 #endif /* CLIB_MARCH_VARIANT */
2056 tcp_output_handle_link_local (tcp_connection_t * tc0, vlib_buffer_t * b0,
2057 u16 * next0, u32 * error0)
2059 ip_adjacency_t *adj;
2062 /* Not thread safe but as long as the connection exists the adj should
2064 ai = adj_nbr_find (FIB_PROTOCOL_IP6, VNET_LINK_IP6, &tc0->c_rmt_ip,
2066 if (ai == ADJ_INDEX_INVALID)
2068 vnet_buffer (b0)->sw_if_index[VLIB_TX] = ~0;
2069 *next0 = TCP_OUTPUT_NEXT_DROP;
2070 *error0 = TCP_ERROR_LINK_LOCAL_RW;
2075 if (PREDICT_TRUE (adj->lookup_next_index == IP_LOOKUP_NEXT_REWRITE))
2076 *next0 = TCP_OUTPUT_NEXT_IP_REWRITE;
2077 else if (adj->lookup_next_index == IP_LOOKUP_NEXT_ARP)
2078 *next0 = TCP_OUTPUT_NEXT_IP_ARP;
2081 *next0 = TCP_OUTPUT_NEXT_DROP;
2082 *error0 = TCP_ERROR_LINK_LOCAL_RW;
2084 vnet_buffer (b0)->ip.adj_index[VLIB_TX] = ai;
2088 tcp46_output_trace_frame (vlib_main_t * vm, vlib_node_runtime_t * node,
2089 u32 * to_next, u32 n_bufs)
2091 tcp_connection_t *tc;
2097 for (i = 0; i < n_bufs; i++)
2099 b = vlib_get_buffer (vm, to_next[i]);
2100 if (!(b->flags & VLIB_BUFFER_IS_TRACED))
2102 th = vlib_buffer_get_current (b);
2103 tc = tcp_connection_get (vnet_buffer (b)->tcp.connection_index,
2105 t = vlib_add_trace (vm, node, b, sizeof (*t));
2106 clib_memcpy_fast (&t->tcp_header, th, sizeof (t->tcp_header));
2107 clib_memcpy_fast (&t->tcp_connection, tc, sizeof (t->tcp_connection));
2112 tcp_output_push_ip (vlib_main_t * vm, vlib_buffer_t * b0,
2113 tcp_connection_t * tc0, u8 is_ip4)
2115 TCP_EVT (TCP_EVT_OUTPUT, tc0,
2116 ((tcp_header_t *) vlib_buffer_get_current (b0))->flags,
2117 b0->current_length);
2120 vlib_buffer_push_ip4 (vm, b0, &tc0->c_lcl_ip4, &tc0->c_rmt_ip4,
2121 IP_PROTOCOL_TCP, tcp_csum_offload (tc0));
2123 vlib_buffer_push_ip6_custom (vm, b0, &tc0->c_lcl_ip6, &tc0->c_rmt_ip6,
2124 IP_PROTOCOL_TCP, tc0->ipv6_flow_label);
2128 tcp_check_if_gso (tcp_connection_t * tc, vlib_buffer_t * b)
2130 if (PREDICT_TRUE (!(tc->cfg_flags & TCP_CFG_F_TSO)))
2133 u16 data_len = b->current_length - sizeof (tcp_header_t) - tc->snd_opts_len;
2135 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_TOTAL_LENGTH_VALID))
2136 data_len += b->total_length_not_including_first_buffer;
2138 if (PREDICT_TRUE (data_len <= tc->snd_mss))
2142 ASSERT ((b->flags & VNET_BUFFER_F_L3_HDR_OFFSET_VALID) != 0);
2143 ASSERT ((b->flags & VNET_BUFFER_F_L4_HDR_OFFSET_VALID) != 0);
2144 b->flags |= VNET_BUFFER_F_GSO;
2145 vnet_buffer2 (b)->gso_l4_hdr_sz =
2146 sizeof (tcp_header_t) + tc->snd_opts_len;
2147 vnet_buffer2 (b)->gso_size = tc->snd_mss;
2152 tcp_output_handle_packet (tcp_connection_t * tc0, vlib_buffer_t * b0,
2153 vlib_node_runtime_t * error_node, u16 * next0,
2156 /* If next_index is not drop use it */
2157 if (tc0->next_node_index)
2159 *next0 = tc0->next_node_index;
2160 vnet_buffer (b0)->tcp.next_node_opaque = tc0->next_node_opaque;
2164 *next0 = TCP_OUTPUT_NEXT_IP_LOOKUP;
2167 vnet_buffer (b0)->sw_if_index[VLIB_TX] = tc0->c_fib_index;
2168 vnet_buffer (b0)->sw_if_index[VLIB_RX] = tc0->sw_if_index;
2174 if (PREDICT_FALSE (ip6_address_is_link_local_unicast (&tc0->c_rmt_ip6)))
2175 tcp_output_handle_link_local (tc0, b0, next0, &error0);
2177 if (PREDICT_FALSE (error0))
2179 b0->error = error_node->errors[error0];
2188 tcp46_output_inline (vlib_main_t * vm, vlib_node_runtime_t * node,
2189 vlib_frame_t * frame, int is_ip4)
2191 u32 n_left_from, *from, thread_index = vm->thread_index;
2192 vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b;
2193 u16 nexts[VLIB_FRAME_SIZE], *next;
2195 from = vlib_frame_vector_args (frame);
2196 n_left_from = frame->n_vectors;
2197 tcp_update_time_now (tcp_get_worker (thread_index));
2199 if (PREDICT_FALSE (node->flags & VLIB_NODE_FLAG_TRACE))
2200 tcp46_output_trace_frame (vm, node, from, n_left_from);
2202 vlib_get_buffers (vm, from, bufs, n_left_from);
2206 while (n_left_from >= 4)
2208 tcp_connection_t *tc0, *tc1;
2211 vlib_prefetch_buffer_header (b[2], STORE);
2212 CLIB_PREFETCH (b[2]->data, 2 * CLIB_CACHE_LINE_BYTES, STORE);
2214 vlib_prefetch_buffer_header (b[3], STORE);
2215 CLIB_PREFETCH (b[3]->data, 2 * CLIB_CACHE_LINE_BYTES, STORE);
2218 tc0 = tcp_connection_get (vnet_buffer (b[0])->tcp.connection_index,
2220 tc1 = tcp_connection_get (vnet_buffer (b[1])->tcp.connection_index,
2223 if (PREDICT_TRUE (!tc0 + !tc1 == 0))
2225 tcp_output_push_ip (vm, b[0], tc0, is_ip4);
2226 tcp_output_push_ip (vm, b[1], tc1, is_ip4);
2228 tcp_check_if_gso (tc0, b[0]);
2229 tcp_check_if_gso (tc1, b[1]);
2231 tcp_output_handle_packet (tc0, b[0], node, &next[0], is_ip4);
2232 tcp_output_handle_packet (tc1, b[1], node, &next[1], is_ip4);
2238 tcp_output_push_ip (vm, b[0], tc0, is_ip4);
2239 tcp_check_if_gso (tc0, b[0]);
2240 tcp_output_handle_packet (tc0, b[0], node, &next[0], is_ip4);
2244 b[0]->error = node->errors[TCP_ERROR_INVALID_CONNECTION];
2245 next[0] = TCP_OUTPUT_NEXT_DROP;
2249 tcp_output_push_ip (vm, b[1], tc1, is_ip4);
2250 tcp_check_if_gso (tc1, b[1]);
2251 tcp_output_handle_packet (tc1, b[1], node, &next[1], is_ip4);
2255 b[1]->error = node->errors[TCP_ERROR_INVALID_CONNECTION];
2256 next[1] = TCP_OUTPUT_NEXT_DROP;
2264 while (n_left_from > 0)
2266 tcp_connection_t *tc0;
2268 if (n_left_from > 1)
2270 vlib_prefetch_buffer_header (b[1], STORE);
2271 CLIB_PREFETCH (b[1]->data, 2 * CLIB_CACHE_LINE_BYTES, STORE);
2274 tc0 = tcp_connection_get (vnet_buffer (b[0])->tcp.connection_index,
2277 if (PREDICT_TRUE (tc0 != 0))
2279 tcp_output_push_ip (vm, b[0], tc0, is_ip4);
2280 tcp_check_if_gso (tc0, b[0]);
2281 tcp_output_handle_packet (tc0, b[0], node, &next[0], is_ip4);
2285 b[0]->error = node->errors[TCP_ERROR_INVALID_CONNECTION];
2286 next[0] = TCP_OUTPUT_NEXT_DROP;
2294 vlib_buffer_enqueue_to_next (vm, node, from, nexts, frame->n_vectors);
2295 vlib_node_increment_counter (vm, tcp_node_index (output, is_ip4),
2296 TCP_ERROR_PKTS_SENT, frame->n_vectors);
2297 return frame->n_vectors;
2300 VLIB_NODE_FN (tcp4_output_node) (vlib_main_t * vm, vlib_node_runtime_t * node,
2301 vlib_frame_t * from_frame)
2303 return tcp46_output_inline (vm, node, from_frame, 1 /* is_ip4 */ );
2306 VLIB_NODE_FN (tcp6_output_node) (vlib_main_t * vm, vlib_node_runtime_t * node,
2307 vlib_frame_t * from_frame)
2309 return tcp46_output_inline (vm, node, from_frame, 0 /* is_ip4 */ );
2313 VLIB_REGISTER_NODE (tcp4_output_node) =
2315 .name = "tcp4-output",
2316 /* Takes a vector of packets. */
2317 .vector_size = sizeof (u32),
2318 .n_errors = TCP_N_ERROR,
2319 .protocol_hint = VLIB_NODE_PROTO_HINT_TCP,
2320 .error_counters = tcp_output_error_counters,
2321 .n_next_nodes = TCP_OUTPUT_N_NEXT,
2323 #define _(s,n) [TCP_OUTPUT_NEXT_##s] = n,
2324 foreach_tcp4_output_next
2327 .format_buffer = format_tcp_header,
2328 .format_trace = format_tcp_tx_trace,
2333 VLIB_REGISTER_NODE (tcp6_output_node) =
2335 .name = "tcp6-output",
2336 /* Takes a vector of packets. */
2337 .vector_size = sizeof (u32),
2338 .n_errors = TCP_N_ERROR,
2339 .protocol_hint = VLIB_NODE_PROTO_HINT_TCP,
2340 .error_counters = tcp_output_error_counters,
2341 .n_next_nodes = TCP_OUTPUT_N_NEXT,
2343 #define _(s,n) [TCP_OUTPUT_NEXT_##s] = n,
2344 foreach_tcp6_output_next
2347 .format_buffer = format_tcp_header,
2348 .format_trace = format_tcp_tx_trace,
2352 typedef enum _tcp_reset_next
2354 TCP_RESET_NEXT_DROP,
2355 TCP_RESET_NEXT_IP_LOOKUP,
2359 #define foreach_tcp4_reset_next \
2360 _(DROP, "error-drop") \
2361 _(IP_LOOKUP, "ip4-lookup")
2363 #define foreach_tcp6_reset_next \
2364 _(DROP, "error-drop") \
2365 _(IP_LOOKUP, "ip6-lookup")
2368 tcp_reset_trace_frame (vlib_main_t *vm, vlib_node_runtime_t *node,
2369 vlib_buffer_t **bs, u32 n_bufs, u8 is_ip4)
2375 for (i = 0; i < n_bufs; i++)
2377 if (bs[i]->flags & VLIB_BUFFER_IS_TRACED)
2379 tcp = vlib_buffer_get_current (bs[i]);
2380 t = vlib_add_trace (vm, node, bs[i], sizeof (*t));
2384 ip4_header_t *ih4 = vlib_buffer_get_current (bs[i]);
2385 tcp = ip4_next_header (ih4);
2386 t->tcp_connection.c_lcl_ip.ip4 = ih4->dst_address;
2387 t->tcp_connection.c_rmt_ip.ip4 = ih4->src_address;
2388 t->tcp_connection.c_is_ip4 = 1;
2392 ip6_header_t *ih6 = vlib_buffer_get_current (bs[i]);
2393 tcp = ip6_next_header (ih6);
2394 t->tcp_connection.c_lcl_ip.ip6 = ih6->dst_address;
2395 t->tcp_connection.c_rmt_ip.ip6 = ih6->src_address;
2397 t->tcp_connection.c_lcl_port = tcp->dst_port;
2398 t->tcp_connection.c_rmt_port = tcp->src_port;
2399 t->tcp_connection.c_proto = TRANSPORT_PROTO_TCP;
2400 clib_memcpy_fast (&t->tcp_header, tcp, sizeof (t->tcp_header));
2406 tcp46_reset_inline (vlib_main_t *vm, vlib_node_runtime_t *node,
2407 vlib_frame_t *frame, u8 is_ip4)
2409 vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b;
2410 u16 nexts[VLIB_FRAME_SIZE], *next;
2411 u32 n_left_from, *from;
2413 from = vlib_frame_vector_args (frame);
2414 n_left_from = frame->n_vectors;
2415 vlib_get_buffers (vm, from, bufs, n_left_from);
2420 while (n_left_from > 0)
2422 tcp_buffer_make_reset (vm, b[0], is_ip4);
2424 /* IP lookup in fib where it was received. Previous value
2425 * was overwritten by tcp-input */
2426 vnet_buffer (b[0])->sw_if_index[VLIB_TX] =
2427 vec_elt (ip4_main.fib_index_by_sw_if_index,
2428 vnet_buffer (b[0])->sw_if_index[VLIB_RX]);
2430 b[0]->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
2431 next[0] = TCP_RESET_NEXT_IP_LOOKUP;
2438 if (PREDICT_FALSE (node->flags & VLIB_NODE_FLAG_TRACE))
2439 tcp_reset_trace_frame (vm, node, bufs, frame->n_vectors, is_ip4);
2441 vlib_buffer_enqueue_to_next (vm, node, from, nexts, frame->n_vectors);
2443 vlib_node_increment_counter (vm, node->node_index, TCP_ERROR_RST_SENT,
2446 return frame->n_vectors;
2449 VLIB_NODE_FN (tcp4_reset_node) (vlib_main_t * vm, vlib_node_runtime_t * node,
2450 vlib_frame_t * from_frame)
2452 return tcp46_reset_inline (vm, node, from_frame, 1);
2455 VLIB_NODE_FN (tcp6_reset_node) (vlib_main_t * vm, vlib_node_runtime_t * node,
2456 vlib_frame_t * from_frame)
2458 return tcp46_reset_inline (vm, node, from_frame, 0);
2462 VLIB_REGISTER_NODE (tcp4_reset_node) = {
2463 .name = "tcp4-reset",
2464 .vector_size = sizeof (u32),
2465 .n_errors = TCP_N_ERROR,
2466 .error_counters = tcp_output_error_counters,
2467 .n_next_nodes = TCP_RESET_N_NEXT,
2469 #define _(s,n) [TCP_RESET_NEXT_##s] = n,
2470 foreach_tcp4_reset_next
2473 .format_trace = format_tcp_tx_trace,
2478 VLIB_REGISTER_NODE (tcp6_reset_node) = {
2479 .name = "tcp6-reset",
2480 .vector_size = sizeof (u32),
2481 .n_errors = TCP_N_ERROR,
2482 .error_counters = tcp_output_error_counters,
2483 .n_next_nodes = TCP_RESET_N_NEXT,
2485 #define _(s,n) [TCP_RESET_NEXT_##s] = n,
2486 foreach_tcp6_reset_next
2489 .format_trace = format_tcp_tx_trace,
2494 * fd.io coding-style-patch-verification: ON
2497 * eval: (c-set-style "gnu")