2 * Copyright (c) 2016-2019 Cisco and/or its affiliates.
3 * Licensed under the Apache License, Version 2.0 (the "License");
4 * you may not use this file except in compliance with the License.
5 * You may obtain a copy of the License at:
7 * http://www.apache.org/licenses/LICENSE-2.0
9 * Unless required by applicable law or agreed to in writing, software
10 * distributed under the License is distributed on an "AS IS" BASIS,
11 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12 * See the License for the specific language governing permissions and
13 * limitations under the License.
16 #include <vnet/tcp/tcp.h>
17 #include <vnet/tcp/tcp_inlines.h>
19 #include <vnet/ip/ip4_inlines.h>
20 #include <vnet/ip/ip6_inlines.h>
22 typedef enum _tcp_output_next
25 TCP_OUTPUT_NEXT_IP_LOOKUP,
26 TCP_OUTPUT_NEXT_IP_REWRITE,
27 TCP_OUTPUT_NEXT_IP_ARP,
31 #define foreach_tcp4_output_next \
32 _ (DROP, "error-drop") \
33 _ (IP_LOOKUP, "ip4-lookup") \
34 _ (IP_REWRITE, "ip4-rewrite") \
37 #define foreach_tcp6_output_next \
38 _ (DROP, "error-drop") \
39 _ (IP_LOOKUP, "ip6-lookup") \
40 _ (IP_REWRITE, "ip6-rewrite") \
41 _ (IP_ARP, "ip6-discover-neighbor")
43 static vlib_error_desc_t tcp_output_error_counters[] = {
44 #define tcp_error(f, n, s, d) { #n, d, VL_COUNTER_SEVERITY_##s },
45 #include <vnet/tcp/tcp_error.def>
51 tcp_header_t tcp_header;
52 tcp_connection_t tcp_connection;
56 format_tcp_tx_trace (u8 * s, va_list * args)
58 CLIB_UNUSED (vlib_main_t * vm) = va_arg (*args, vlib_main_t *);
59 CLIB_UNUSED (vlib_node_t * node) = va_arg (*args, vlib_node_t *);
60 tcp_tx_trace_t *t = va_arg (*args, tcp_tx_trace_t *);
61 tcp_connection_t *tc = &t->tcp_connection;
62 u32 indent = format_get_indent (s);
64 s = format (s, "%U state %U\n%U%U", format_tcp_connection_id, tc,
65 format_tcp_state, tc->state, format_white_space, indent,
66 format_tcp_header, &t->tcp_header, 128);
71 #ifndef CLIB_MARCH_VARIANT
73 tcp_window_compute_scale (u32 window)
76 while (wnd_scale < TCP_MAX_WND_SCALE && (window >> wnd_scale) > TCP_WND_MAX)
82 * TCP's initial window
85 tcp_initial_wnd_unscaled (tcp_connection_t * tc)
87 /* RFC 6928 recommends the value lower. However at the time our connections
88 * are initialized, fifos may not be allocated. Therefore, advertise the
89 * smallest possible unscaled window size and update once fifos are
90 * assigned to the session.
93 tcp_update_rcv_mss (tc);
94 TCP_IW_N_SEGMENTS * tc->mss;
96 return tcp_cfg.min_rx_fifo;
100 * Compute initial window and scale factor. As per RFC1323, window field in
101 * SYN and SYN-ACK segments is never scaled.
104 tcp_initial_window_to_advertise (tcp_connection_t * tc)
106 /* Compute rcv wscale only if peer advertised support for it */
107 if (tc->state != TCP_STATE_SYN_RCVD || tcp_opts_wscale (&tc->rcv_opts))
108 tc->rcv_wscale = tcp_window_compute_scale (tcp_cfg.max_rx_fifo);
110 tc->rcv_wnd = tcp_initial_wnd_unscaled (tc);
112 return clib_min (tc->rcv_wnd, TCP_WND_MAX);
116 tcp_update_rcv_wnd (tcp_connection_t * tc)
118 u32 available_space, wnd;
122 * Figure out how much space we have available
124 available_space = transport_max_rx_enqueue (&tc->connection);
127 * Use the above and what we know about what we've previously advertised
128 * to compute the new window
130 observed_wnd = (i32) tc->rcv_wnd - (tc->rcv_nxt - tc->rcv_las);
132 /* Check if we are about to retract the window. Do the comparison before
133 * rounding to avoid errors. Per RFC7323 sec. 2.4 we could remove this */
134 if (PREDICT_FALSE ((i32) available_space < observed_wnd))
136 wnd = round_down_pow2 (clib_max (observed_wnd, 0), 1 << tc->rcv_wscale);
137 TCP_EVT (TCP_EVT_RCV_WND_SHRUNK, tc, observed_wnd, available_space);
141 /* Make sure we have a multiple of 1 << rcv_wscale. We round down to
142 * avoid advertising a window larger than what can be buffered */
143 wnd = round_down_pow2 (available_space, 1 << tc->rcv_wscale);
146 if (PREDICT_FALSE (wnd < tc->rcv_opts.mss))
149 tc->rcv_wnd = clib_min (wnd, TCP_WND_MAX << tc->rcv_wscale);
153 * Compute and return window to advertise, scaled as per RFC1323
156 tcp_window_to_advertise (tcp_connection_t * tc, tcp_state_t state)
158 if (state < TCP_STATE_ESTABLISHED)
159 return tcp_initial_window_to_advertise (tc);
161 tcp_update_rcv_wnd (tc);
162 return tc->rcv_wnd >> tc->rcv_wscale;
166 tcp_make_syn_options (tcp_connection_t * tc, tcp_options_t * opts)
170 opts->flags |= TCP_OPTS_FLAG_MSS;
172 len += TCP_OPTION_LEN_MSS;
174 opts->flags |= TCP_OPTS_FLAG_WSCALE;
175 opts->wscale = tc->rcv_wscale;
176 len += TCP_OPTION_LEN_WINDOW_SCALE;
178 opts->flags |= TCP_OPTS_FLAG_TSTAMP;
179 opts->tsval = tcp_time_tstamp (tc->c_thread_index);
181 len += TCP_OPTION_LEN_TIMESTAMP;
185 opts->flags |= TCP_OPTS_FLAG_SACK_PERMITTED;
186 len += TCP_OPTION_LEN_SACK_PERMITTED;
189 /* Align to needed boundary */
190 len += (TCP_OPTS_ALIGN - len % TCP_OPTS_ALIGN) % TCP_OPTS_ALIGN;
195 tcp_make_synack_options (tcp_connection_t * tc, tcp_options_t * opts)
199 opts->flags |= TCP_OPTS_FLAG_MSS;
201 len += TCP_OPTION_LEN_MSS;
203 if (tcp_opts_wscale (&tc->rcv_opts))
205 opts->flags |= TCP_OPTS_FLAG_WSCALE;
206 opts->wscale = tc->rcv_wscale;
207 len += TCP_OPTION_LEN_WINDOW_SCALE;
210 if (tcp_opts_tstamp (&tc->rcv_opts))
212 opts->flags |= TCP_OPTS_FLAG_TSTAMP;
213 opts->tsval = tcp_time_tstamp (tc->c_thread_index);
214 opts->tsecr = tc->tsval_recent;
215 len += TCP_OPTION_LEN_TIMESTAMP;
218 if (tcp_opts_sack_permitted (&tc->rcv_opts))
220 opts->flags |= TCP_OPTS_FLAG_SACK_PERMITTED;
221 len += TCP_OPTION_LEN_SACK_PERMITTED;
224 /* Align to needed boundary */
225 len += (TCP_OPTS_ALIGN - len % TCP_OPTS_ALIGN) % TCP_OPTS_ALIGN;
230 tcp_make_established_options (tcp_connection_t * tc, tcp_options_t * opts)
236 if (tcp_opts_tstamp (&tc->rcv_opts))
238 opts->flags |= TCP_OPTS_FLAG_TSTAMP;
239 opts->tsval = tcp_tstamp (tc);
240 opts->tsecr = tc->tsval_recent;
241 len += TCP_OPTION_LEN_TIMESTAMP;
243 if (tcp_opts_sack_permitted (&tc->rcv_opts))
245 if (vec_len (tc->snd_sacks))
247 opts->flags |= TCP_OPTS_FLAG_SACK;
248 if (tc->snd_sack_pos >= vec_len (tc->snd_sacks))
249 tc->snd_sack_pos = 0;
250 opts->sacks = &tc->snd_sacks[tc->snd_sack_pos];
251 opts->n_sack_blocks = vec_len (tc->snd_sacks) - tc->snd_sack_pos;
252 opts->n_sack_blocks = clib_min (opts->n_sack_blocks,
253 TCP_OPTS_MAX_SACK_BLOCKS);
254 tc->snd_sack_pos += opts->n_sack_blocks;
255 len += 2 + TCP_OPTION_LEN_SACK_BLOCK * opts->n_sack_blocks;
259 /* Align to needed boundary */
260 len += (TCP_OPTS_ALIGN - len % TCP_OPTS_ALIGN) % TCP_OPTS_ALIGN;
265 tcp_make_options (tcp_connection_t * tc, tcp_options_t * opts,
270 case TCP_STATE_ESTABLISHED:
271 case TCP_STATE_CLOSE_WAIT:
272 case TCP_STATE_FIN_WAIT_1:
273 case TCP_STATE_LAST_ACK:
274 case TCP_STATE_CLOSING:
275 case TCP_STATE_FIN_WAIT_2:
276 case TCP_STATE_TIME_WAIT:
277 case TCP_STATE_CLOSED:
278 return tcp_make_established_options (tc, opts);
279 case TCP_STATE_SYN_RCVD:
280 return tcp_make_synack_options (tc, opts);
281 case TCP_STATE_SYN_SENT:
282 return tcp_make_syn_options (tc, opts);
284 clib_warning ("State not handled! %d", state);
290 * Update burst send vars
292 * - Updates snd_mss to reflect the effective segment size that we can send
293 * by taking into account all TCP options, including SACKs.
294 * - Cache 'on the wire' options for reuse
295 * - Updates receive window which can be reused for a burst.
297 * This should *only* be called when doing bursts
300 tcp_update_burst_snd_vars (tcp_connection_t * tc)
302 tcp_main_t *tm = &tcp_main;
304 /* Compute options to be used for connection. These may be reused when
305 * sending data or to compute the effective mss (snd_mss) */
306 tc->snd_opts_len = tcp_make_options (tc, &tc->snd_opts,
307 TCP_STATE_ESTABLISHED);
309 /* XXX check if MTU has been updated */
310 tc->snd_mss = clib_min (tc->mss, tc->rcv_opts.mss) - tc->snd_opts_len;
311 ASSERT (tc->snd_mss > 0);
313 tcp_options_write (tm->wrk_ctx[tc->c_thread_index].cached_opts,
316 tcp_update_rcv_wnd (tc);
318 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
319 tcp_bt_check_app_limited (tc);
321 if (tc->snd_una == tc->snd_nxt)
323 tcp_cc_event (tc, TCP_CC_EVT_START_TX);
326 if (tc->flags & TCP_CONN_PSH_PENDING)
328 u32 max_deq = transport_max_tx_dequeue (&tc->connection);
329 /* Last byte marked for push */
330 tc->psh_seq = tc->snd_una + max_deq - 1;
335 tcp_init_buffer (vlib_main_t * vm, vlib_buffer_t * b)
337 ASSERT ((b->flags & VLIB_BUFFER_NEXT_PRESENT) == 0);
338 b->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
339 b->total_length_not_including_first_buffer = 0;
341 vnet_buffer (b)->tcp.flags = 0;
342 /* Leave enough space for headers */
343 return vlib_buffer_make_headroom (b, TRANSPORT_MAX_HDRS_LEN);
346 /* Compute TCP checksum in software when offloading is disabled for a connection */
348 ip6_tcp_compute_checksum_custom (vlib_main_t * vm, vlib_buffer_t * p0,
349 ip46_address_t * src, ip46_address_t * dst)
352 u16 payload_length_host_byte_order;
355 /* Initialize checksum with ip header. */
356 sum0 = clib_host_to_net_u16 (vlib_buffer_length_in_chain (vm, p0)) +
357 clib_host_to_net_u16 (IP_PROTOCOL_TCP);
358 payload_length_host_byte_order = vlib_buffer_length_in_chain (vm, p0);
360 for (i = 0; i < ARRAY_LEN (src->ip6.as_uword); i++)
362 sum0 = ip_csum_with_carry
363 (sum0, clib_mem_unaligned (&src->ip6.as_uword[i], uword));
364 sum0 = ip_csum_with_carry
365 (sum0, clib_mem_unaligned (&dst->ip6.as_uword[i], uword));
368 return ip_calculate_l4_checksum (vm, p0, sum0,
369 payload_length_host_byte_order, NULL, 0,
374 ip4_tcp_compute_checksum_custom (vlib_main_t * vm, vlib_buffer_t * p0,
375 ip46_address_t * src, ip46_address_t * dst)
378 u32 payload_length_host_byte_order;
380 payload_length_host_byte_order = vlib_buffer_length_in_chain (vm, p0);
382 clib_host_to_net_u32 (payload_length_host_byte_order +
383 (IP_PROTOCOL_TCP << 16));
385 sum0 = ip_csum_with_carry (sum0, clib_mem_unaligned (&src->ip4, u32));
386 sum0 = ip_csum_with_carry (sum0, clib_mem_unaligned (&dst->ip4, u32));
388 return ip_calculate_l4_checksum (vm, p0, sum0,
389 payload_length_host_byte_order, NULL, 0,
394 tcp_compute_checksum (tcp_connection_t * tc, vlib_buffer_t * b)
397 if (PREDICT_FALSE (tc->cfg_flags & TCP_CFG_F_NO_CSUM_OFFLOAD))
399 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
400 vlib_main_t *vm = wrk->vm;
403 checksum = ip4_tcp_compute_checksum_custom
404 (vm, b, &tc->c_lcl_ip, &tc->c_rmt_ip);
406 checksum = ip6_tcp_compute_checksum_custom
407 (vm, b, &tc->c_lcl_ip, &tc->c_rmt_ip);
411 vnet_buffer_offload_flags_set (b, VNET_BUFFER_OFFLOAD_F_TCP_CKSUM);
420 tcp_make_ack_i (tcp_connection_t * tc, vlib_buffer_t * b, tcp_state_t state,
423 tcp_options_t _snd_opts, *snd_opts = &_snd_opts;
424 u8 tcp_opts_len, tcp_hdr_opts_len;
428 wnd = tcp_window_to_advertise (tc, state);
430 /* Make and write options */
431 tcp_opts_len = tcp_make_established_options (tc, snd_opts);
432 tcp_hdr_opts_len = tcp_opts_len + sizeof (tcp_header_t);
434 th = vlib_buffer_push_tcp (b, tc->c_lcl_port, tc->c_rmt_port, tc->snd_nxt,
435 tc->rcv_nxt, tcp_hdr_opts_len, flags, wnd);
437 tcp_options_write ((u8 *) (th + 1), snd_opts);
439 th->checksum = tcp_compute_checksum (tc, b);
441 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
445 transport_rx_fifo_req_deq_ntf (&tc->connection);
446 tcp_zero_rwnd_sent_on (tc);
449 tcp_zero_rwnd_sent_off (tc);
453 * Convert buffer to ACK
456 tcp_make_ack (tcp_connection_t * tc, vlib_buffer_t * b)
458 tcp_make_ack_i (tc, b, TCP_STATE_ESTABLISHED, TCP_FLAG_ACK);
459 TCP_EVT (TCP_EVT_ACK_SENT, tc);
460 tc->rcv_las = tc->rcv_nxt;
464 * Convert buffer to FIN-ACK
467 tcp_make_fin (tcp_connection_t * tc, vlib_buffer_t * b)
469 tcp_make_ack_i (tc, b, TCP_STATE_ESTABLISHED, TCP_FLAG_FIN | TCP_FLAG_ACK);
473 * Convert buffer to SYN
476 tcp_make_syn (tcp_connection_t * tc, vlib_buffer_t * b)
478 u8 tcp_hdr_opts_len, tcp_opts_len;
481 tcp_options_t snd_opts;
483 initial_wnd = tcp_initial_window_to_advertise (tc);
485 /* Make and write options */
486 clib_memset (&snd_opts, 0, sizeof (snd_opts));
487 tcp_opts_len = tcp_make_syn_options (tc, &snd_opts);
488 tcp_hdr_opts_len = tcp_opts_len + sizeof (tcp_header_t);
490 th = vlib_buffer_push_tcp (b, tc->c_lcl_port, tc->c_rmt_port, tc->iss,
491 tc->rcv_nxt, tcp_hdr_opts_len, TCP_FLAG_SYN,
493 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
494 tcp_options_write ((u8 *) (th + 1), &snd_opts);
495 th->checksum = tcp_compute_checksum (tc, b);
499 * Convert buffer to SYN-ACK
502 tcp_make_synack (tcp_connection_t * tc, vlib_buffer_t * b)
504 tcp_options_t _snd_opts, *snd_opts = &_snd_opts;
505 u8 tcp_opts_len, tcp_hdr_opts_len;
509 clib_memset (snd_opts, 0, sizeof (*snd_opts));
510 initial_wnd = tcp_initial_window_to_advertise (tc);
511 tcp_opts_len = tcp_make_synack_options (tc, snd_opts);
512 tcp_hdr_opts_len = tcp_opts_len + sizeof (tcp_header_t);
514 th = vlib_buffer_push_tcp (b, tc->c_lcl_port, tc->c_rmt_port, tc->iss,
515 tc->rcv_nxt, tcp_hdr_opts_len,
516 TCP_FLAG_SYN | TCP_FLAG_ACK, initial_wnd);
517 tcp_options_write ((u8 *) (th + 1), snd_opts);
519 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
520 th->checksum = tcp_compute_checksum (tc, b);
524 tcp_enqueue_half_open (tcp_worker_ctx_t *wrk, tcp_connection_t *tc,
525 vlib_buffer_t *b, u32 bi)
527 vlib_main_t *vm = wrk->vm;
529 b->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
532 session_add_pending_tx_buffer (vm->thread_index, bi,
533 wrk->tco_next_node[!tc->c_is_ip4]);
535 if (vm->thread_index == 0 && vlib_num_workers ())
536 session_queue_run_on_main_thread (vm);
540 tcp_enqueue_to_output (tcp_worker_ctx_t * wrk, vlib_buffer_t * b, u32 bi,
543 b->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
546 session_add_pending_tx_buffer (wrk->vm->thread_index, bi,
547 wrk->tco_next_node[!is_ip4]);
551 tcp_buffer_make_reset (vlib_main_t *vm, vlib_buffer_t *b, u8 is_ip4)
553 ip4_address_t src_ip4 = {}, dst_ip4 = {};
554 ip6_address_t src_ip6, dst_ip6;
555 u16 src_port, dst_port;
556 u32 tmp, len, seq, ack;
563 * Find IP and TCP headers and glean information from them. Assumes
564 * buffer was parsed by something like @ref tcp_input_lookup_buffer
566 th = tcp_buffer_hdr (b);
570 ih4 = vlib_buffer_get_current (b);
571 ASSERT ((ih4->ip_version_and_header_length & 0xF0) == 0x40);
572 src_ip4.as_u32 = ih4->src_address.as_u32;
573 dst_ip4.as_u32 = ih4->dst_address.as_u32;
577 ih6 = vlib_buffer_get_current (b);
578 ASSERT ((ih6->ip_version_traffic_class_and_flow_label & 0xF0) == 0x60);
579 clib_memcpy_fast (&src_ip6, &ih6->src_address, sizeof (ip6_address_t));
580 clib_memcpy_fast (&dst_ip6, &ih6->dst_address, sizeof (ip6_address_t));
583 src_port = th->src_port;
584 dst_port = th->dst_port;
585 flags = TCP_FLAG_RST;
588 * RFC 793. If the ACK bit is off, sequence number zero is used,
589 * <SEQ=0><ACK=SEG.SEQ+SEG.LEN><CTL=RST,ACK>
590 * If the ACK bit is on,
591 * <SEQ=SEG.ACK><CTL=RST>
595 seq = th->ack_number;
600 flags |= TCP_FLAG_ACK;
601 tmp = clib_net_to_host_u32 (th->seq_number);
602 len = vnet_buffer (b)->tcp.data_len + tcp_is_syn (th) + tcp_is_fin (th);
603 ack = clib_host_to_net_u32 (tmp + len);
608 * Clear and reuse current buffer for reset
610 if (b->flags & VLIB_BUFFER_NEXT_PRESENT)
611 vlib_buffer_free_one (vm, b->next_buffer);
613 /* Zero all flags but free list index and trace flag */
614 b->flags &= VLIB_BUFFER_NEXT_PRESENT - 1;
615 /* Make sure new tcp header comes after current ip */
616 b->current_data = ((u8 *) th - b->data) + sizeof (tcp_header_t);
617 b->current_length = 0;
618 b->total_length_not_including_first_buffer = 0;
619 vnet_buffer (b)->tcp.flags = 0;
622 * Add TCP and IP headers
624 th = vlib_buffer_push_tcp_net_order (b, dst_port, src_port, seq, ack,
625 sizeof (tcp_header_t), flags, 0);
629 ih4 = vlib_buffer_push_ip4 (vm, b, &dst_ip4, &src_ip4,
631 th->checksum = ip4_tcp_udp_compute_checksum (vm, b, ih4);
636 ih6 = vlib_buffer_push_ip6 (vm, b, &dst_ip6, &src_ip6, IP_PROTOCOL_TCP);
637 th->checksum = ip6_tcp_udp_icmp_compute_checksum (vm, b, ih6, &bogus);
645 * Send reset without reusing existing buffer
647 * It extracts connection info out of original packet
650 tcp_send_reset_w_pkt (tcp_connection_t * tc, vlib_buffer_t * pkt,
651 u32 thread_index, u8 is_ip4)
653 tcp_worker_ctx_t *wrk = tcp_get_worker (thread_index);
654 vlib_main_t *vm = wrk->vm;
656 u8 tcp_hdr_len, flags = 0;
657 tcp_header_t *th, *pkt_th;
659 ip4_header_t *ih4, *pkt_ih4;
660 ip6_header_t *ih6, *pkt_ih6;
662 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
664 tcp_worker_stats_inc (wrk, no_buffer, 1);
668 b = vlib_get_buffer (vm, bi);
669 tcp_init_buffer (vm, b);
670 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
672 /* Make and write options */
673 tcp_hdr_len = sizeof (tcp_header_t);
677 pkt_ih4 = vlib_buffer_get_current (pkt);
678 pkt_th = ip4_next_header (pkt_ih4);
682 pkt_ih6 = vlib_buffer_get_current (pkt);
683 pkt_th = ip6_next_header (pkt_ih6);
686 if (tcp_ack (pkt_th))
688 flags = TCP_FLAG_RST;
689 seq = pkt_th->ack_number;
690 ack = (tc->state >= TCP_STATE_SYN_RCVD) ? tc->rcv_nxt : 0;
691 ack = clib_host_to_net_u32 (ack);
695 flags = TCP_FLAG_RST | TCP_FLAG_ACK;
697 ack = clib_host_to_net_u32 (vnet_buffer (pkt)->tcp.seq_end);
700 th = vlib_buffer_push_tcp_net_order (b, pkt_th->dst_port, pkt_th->src_port,
701 seq, ack, tcp_hdr_len, flags, 0);
703 /* Swap src and dst ip */
706 ASSERT ((pkt_ih4->ip_version_and_header_length & 0xF0) == 0x40);
707 ih4 = vlib_buffer_push_ip4 (vm, b, &pkt_ih4->dst_address,
708 &pkt_ih4->src_address, IP_PROTOCOL_TCP,
709 tcp_csum_offload (tc));
710 th->checksum = ip4_tcp_udp_compute_checksum (vm, b, ih4);
715 ASSERT ((pkt_ih6->ip_version_traffic_class_and_flow_label & 0xF0) ==
717 ih6 = vlib_buffer_push_ip6_custom (vm, b, &pkt_ih6->dst_address,
718 &pkt_ih6->src_address,
720 tc->ipv6_flow_label);
721 th->checksum = ip6_tcp_udp_icmp_compute_checksum (vm, b, ih6, &bogus);
725 tcp_enqueue_half_open (wrk, tc, b, bi);
726 TCP_EVT (TCP_EVT_RST_SENT, tc);
727 vlib_node_increment_counter (vm, tcp_node_index (output, tc->c_is_ip4),
728 TCP_ERROR_RST_SENT, 1);
732 * Build and set reset packet for connection
735 tcp_send_reset (tcp_connection_t * tc)
737 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
738 vlib_main_t *vm = wrk->vm;
742 u16 tcp_hdr_opts_len, advertise_wnd, opts_write_len;
745 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
747 tcp_worker_stats_inc (wrk, no_buffer, 1);
750 b = vlib_get_buffer (vm, bi);
751 tcp_init_buffer (vm, b);
753 tc->snd_opts_len = tcp_make_options (tc, &tc->snd_opts, tc->state);
754 tcp_hdr_opts_len = tc->snd_opts_len + sizeof (tcp_header_t);
755 advertise_wnd = tc->rcv_wnd >> tc->rcv_wscale;
756 flags = TCP_FLAG_RST | TCP_FLAG_ACK;
757 th = vlib_buffer_push_tcp (b, tc->c_lcl_port, tc->c_rmt_port, tc->snd_nxt,
758 tc->rcv_nxt, tcp_hdr_opts_len, flags,
760 opts_write_len = tcp_options_write ((u8 *) (th + 1), &tc->snd_opts);
761 th->checksum = tcp_compute_checksum (tc, b);
762 ASSERT (opts_write_len == tc->snd_opts_len);
763 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
764 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
765 TCP_EVT (TCP_EVT_RST_SENT, tc);
766 vlib_node_increment_counter (vm, tcp_node_index (output, tc->c_is_ip4),
767 TCP_ERROR_RST_SENT, 1);
773 * Builds a SYN packet for a half-open connection and sends it to tcp-output.
774 * The packet is handled by main thread and because half-open and established
775 * connections use the same pool the connection can be retrieved without
779 tcp_send_syn (tcp_connection_t * tc)
781 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
782 vlib_main_t *vm = wrk->vm;
787 * Setup retransmit and establish timers before requesting buffer
788 * such that we can return if we've ran out.
790 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT_SYN,
791 (u32) tc->rto * TCP_TO_TIMER_TICK);
793 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
795 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT_SYN,
796 tcp_cfg.alloc_err_timeout);
797 tcp_worker_stats_inc (wrk, no_buffer, 1);
801 b = vlib_get_buffer (vm, bi);
802 tcp_init_buffer (vm, b);
803 tcp_make_syn (tc, b);
805 /* Measure RTT with this */
806 tc->rtt_ts = tcp_time_now_us (vlib_num_workers ()? 1 : 0);
807 tc->rtt_seq = tc->snd_nxt;
810 tcp_enqueue_half_open (wrk, tc, b, bi);
811 TCP_EVT (TCP_EVT_SYN_SENT, tc);
815 tcp_send_synack (tcp_connection_t * tc)
817 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
818 vlib_main_t *vm = wrk->vm;
822 ASSERT (tc->snd_una != tc->snd_nxt);
823 tcp_retransmit_timer_update (&wrk->timer_wheel, tc);
825 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
827 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT,
828 tcp_cfg.alloc_err_timeout);
829 tcp_worker_stats_inc (wrk, no_buffer, 1);
833 tc->rtt_ts = tcp_time_now_us (tc->c_thread_index);
834 b = vlib_get_buffer (vm, bi);
835 tcp_init_buffer (vm, b);
836 tcp_make_synack (tc, b);
837 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
838 TCP_EVT (TCP_EVT_SYNACK_SENT, tc);
845 tcp_send_fin (tcp_connection_t * tc)
847 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
848 vlib_main_t *vm = wrk->vm;
853 fin_snt = tc->flags & TCP_CONN_FINSNT;
857 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
859 /* Out of buffers so program fin retransmit ASAP */
860 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT,
861 tcp_cfg.alloc_err_timeout);
865 /* Make sure retransmit retries a fin not data */
866 tc->flags |= TCP_CONN_FINSNT;
867 tcp_worker_stats_inc (wrk, no_buffer, 1);
871 /* If we have non-dupacks programmed, no need to send them */
872 if ((tc->flags & TCP_CONN_SNDACK) && !tc->pending_dupacks)
873 tc->flags &= ~TCP_CONN_SNDACK;
875 b = vlib_get_buffer (vm, bi);
876 tcp_init_buffer (vm, b);
877 tcp_make_fin (tc, b);
878 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
879 TCP_EVT (TCP_EVT_FIN_SENT, tc);
880 /* Account for the FIN */
882 tcp_retransmit_timer_update (&wrk->timer_wheel, tc);
885 tc->flags |= TCP_CONN_FINSNT;
886 tc->flags &= ~TCP_CONN_FINPNDG;
891 * Push TCP header and update connection variables. Should only be called
892 * for segments with data, not for 'control' packets.
895 tcp_push_hdr_i (tcp_connection_t * tc, vlib_buffer_t * b, u32 snd_nxt,
896 u8 compute_opts, u8 maybe_burst, u8 update_snd_nxt)
898 u8 tcp_hdr_opts_len, flags = TCP_FLAG_ACK;
899 u32 advertise_wnd, data_len;
900 tcp_main_t *tm = &tcp_main;
903 data_len = b->current_length;
904 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_NEXT_PRESENT))
905 data_len += b->total_length_not_including_first_buffer;
907 vnet_buffer (b)->tcp.flags = 0;
908 vnet_buffer (b)->tcp.connection_index = tc->c_c_index;
911 tc->snd_opts_len = tcp_make_options (tc, &tc->snd_opts, tc->state);
913 tcp_hdr_opts_len = tc->snd_opts_len + sizeof (tcp_header_t);
916 advertise_wnd = tc->rcv_wnd >> tc->rcv_wscale;
918 advertise_wnd = tcp_window_to_advertise (tc, TCP_STATE_ESTABLISHED);
920 if (PREDICT_FALSE (tc->flags & TCP_CONN_PSH_PENDING))
922 if (seq_geq (tc->psh_seq, snd_nxt)
923 && seq_lt (tc->psh_seq, snd_nxt + data_len))
924 flags |= TCP_FLAG_PSH;
926 th = vlib_buffer_push_tcp (b, tc->c_lcl_port, tc->c_rmt_port, snd_nxt,
927 tc->rcv_nxt, tcp_hdr_opts_len, flags,
932 clib_memcpy_fast ((u8 *) (th + 1),
933 tm->wrk_ctx[tc->c_thread_index].cached_opts,
938 u8 len = tcp_options_write ((u8 *) (th + 1), &tc->snd_opts);
939 ASSERT (len == tc->snd_opts_len);
943 * Update connection variables
947 tc->snd_nxt += data_len;
948 tc->rcv_las = tc->rcv_nxt;
950 tc->bytes_out += data_len;
951 tc->data_segs_out += 1;
953 th->checksum = tcp_compute_checksum (tc, b);
955 TCP_EVT (TCP_EVT_PKTIZE, tc);
959 tcp_buffer_len (vlib_buffer_t * b)
961 u32 data_len = b->current_length;
962 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_NEXT_PRESENT))
963 data_len += b->total_length_not_including_first_buffer;
968 tcp_push_one_header (tcp_connection_t *tc, vlib_buffer_t *b)
970 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
971 tcp_bt_track_tx (tc, tcp_buffer_len (b));
973 tcp_push_hdr_i (tc, b, tc->snd_nxt, /* compute opts */ 0, /* burst */ 1,
974 /* update_snd_nxt */ 1);
976 tcp_validate_txf_size (tc, tc->snd_nxt - tc->snd_una);
981 tcp_session_push_header (transport_connection_t *tconn, vlib_buffer_t **bs,
984 tcp_connection_t *tc = (tcp_connection_t *) tconn;
988 vlib_prefetch_buffer_header (bs[2], STORE);
989 vlib_prefetch_buffer_header (bs[3], STORE);
991 tcp_push_one_header (tc, bs[0]);
992 tcp_push_one_header (tc, bs[1]);
1000 vlib_prefetch_buffer_header (bs[1], STORE);
1002 tcp_push_one_header (tc, bs[0]);
1008 /* If not tracking an ACK, start tracking */
1009 if (tc->rtt_ts == 0 && !tcp_in_cong_recovery (tc))
1011 tc->rtt_ts = tcp_time_now_us (tc->c_thread_index);
1012 tc->rtt_seq = tc->snd_nxt;
1014 if (PREDICT_FALSE (!tcp_timer_is_active (tc, TCP_TIMER_RETRANSMIT)))
1016 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
1017 tcp_retransmit_timer_set (&wrk->timer_wheel, tc);
1024 tcp_send_ack (tcp_connection_t * tc)
1026 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
1027 vlib_main_t *vm = wrk->vm;
1031 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
1033 tcp_update_rcv_wnd (tc);
1034 tcp_worker_stats_inc (wrk, no_buffer, 1);
1037 b = vlib_get_buffer (vm, bi);
1038 tcp_init_buffer (vm, b);
1039 tcp_make_ack (tc, b);
1040 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1044 tcp_program_ack (tcp_connection_t * tc)
1046 if (!(tc->flags & TCP_CONN_SNDACK))
1048 session_add_self_custom_tx_evt (&tc->connection, 1);
1049 tc->flags |= TCP_CONN_SNDACK;
1054 tcp_program_dupack (tcp_connection_t * tc)
1056 if (!(tc->flags & TCP_CONN_SNDACK))
1058 session_add_self_custom_tx_evt (&tc->connection, 1);
1059 tc->flags |= TCP_CONN_SNDACK;
1061 if (tc->pending_dupacks < 255)
1062 tc->pending_dupacks += 1;
1066 tcp_program_retransmit (tcp_connection_t * tc)
1068 if (!(tc->flags & TCP_CONN_RXT_PENDING))
1070 session_add_self_custom_tx_evt (&tc->connection, 0);
1071 tc->flags |= TCP_CONN_RXT_PENDING;
1076 * Send window update ack
1078 * Ensures that it will be sent only once, after a zero rwnd has been
1079 * advertised in a previous ack, and only if rwnd has grown beyond a
1080 * configurable value.
1083 tcp_send_window_update_ack (tcp_connection_t * tc)
1085 if (tcp_zero_rwnd_sent (tc))
1087 tcp_update_rcv_wnd (tc);
1088 if (tc->rcv_wnd >= tcp_cfg.rwnd_min_update_ack * tc->snd_mss)
1090 tcp_zero_rwnd_sent_off (tc);
1091 tcp_program_ack (tc);
1097 * Allocate a new buffer and build a new tcp segment
1099 * @param wrk tcp worker
1100 * @param tc connection for which the segment will be allocated
1101 * @param offset offset of the first byte in the tx fifo
1102 * @param max_deq_byte segment size
1103 * @param[out] b pointer to buffer allocated
1105 * @return the number of bytes in the segment or 0 if buffer cannot be
1106 * allocated or no data available
1109 tcp_prepare_segment (tcp_worker_ctx_t * wrk, tcp_connection_t * tc,
1110 u32 offset, u32 max_deq_bytes, vlib_buffer_t ** b)
1112 u32 bytes_per_buffer = vnet_get_tcp_main ()->bytes_per_buffer;
1113 vlib_main_t *vm = wrk->vm;
1118 seg_size = max_deq_bytes + TRANSPORT_MAX_HDRS_LEN;
1123 tc->snd_opts_len = tcp_make_options (tc, &tc->snd_opts, tc->state);
1126 * Allocate and fill in buffer(s)
1129 /* Easy case, buffer size greater than mss */
1130 if (PREDICT_TRUE (seg_size <= bytes_per_buffer))
1132 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
1134 tcp_worker_stats_inc (wrk, no_buffer, 1);
1137 *b = vlib_get_buffer (vm, bi);
1138 data = tcp_init_buffer (vm, *b);
1139 n_bytes = session_tx_fifo_peek_bytes (&tc->connection, data, offset,
1141 ASSERT (n_bytes == max_deq_bytes);
1142 b[0]->current_length = n_bytes;
1143 tcp_push_hdr_i (tc, *b, tc->snd_una + offset, /* compute opts */ 0,
1144 /* burst */ 0, /* update_snd_nxt */ 0);
1146 /* Split mss into multiple buffers */
1149 u32 chain_bi = ~0, n_bufs_per_seg, n_bufs;
1150 u16 n_peeked, len_to_deq;
1151 vlib_buffer_t *chain_b, *prev_b;
1154 /* Make sure we have enough buffers */
1155 n_bufs_per_seg = ceil ((double) seg_size / bytes_per_buffer);
1156 vec_validate_aligned (wrk->tx_buffers, n_bufs_per_seg - 1,
1157 CLIB_CACHE_LINE_BYTES);
1158 n_bufs = vlib_buffer_alloc (vm, wrk->tx_buffers, n_bufs_per_seg);
1159 if (PREDICT_FALSE (n_bufs != n_bufs_per_seg))
1162 vlib_buffer_free (vm, wrk->tx_buffers, n_bufs);
1163 tcp_worker_stats_inc (wrk, no_buffer, 1);
1167 *b = vlib_get_buffer (vm, wrk->tx_buffers[--n_bufs]);
1168 data = tcp_init_buffer (vm, *b);
1169 n_bytes = session_tx_fifo_peek_bytes (&tc->connection, data, offset,
1171 TRANSPORT_MAX_HDRS_LEN);
1172 b[0]->current_length = n_bytes;
1173 b[0]->flags |= VLIB_BUFFER_TOTAL_LENGTH_VALID;
1174 b[0]->total_length_not_including_first_buffer = 0;
1175 max_deq_bytes -= n_bytes;
1178 for (i = 1; i < n_bufs_per_seg; i++)
1181 len_to_deq = clib_min (max_deq_bytes, bytes_per_buffer);
1182 chain_bi = wrk->tx_buffers[--n_bufs];
1183 chain_b = vlib_get_buffer (vm, chain_bi);
1184 chain_b->current_data = 0;
1185 data = vlib_buffer_get_current (chain_b);
1186 n_peeked = session_tx_fifo_peek_bytes (&tc->connection, data,
1189 ASSERT (n_peeked == len_to_deq);
1190 n_bytes += n_peeked;
1191 chain_b->current_length = n_peeked;
1192 chain_b->next_buffer = 0;
1194 /* update previous buffer */
1195 prev_b->next_buffer = chain_bi;
1196 prev_b->flags |= VLIB_BUFFER_NEXT_PRESENT;
1198 max_deq_bytes -= n_peeked;
1199 b[0]->total_length_not_including_first_buffer += n_peeked;
1202 tcp_push_hdr_i (tc, *b, tc->snd_una + offset, /* compute opts */ 0,
1203 /* burst */ 0, /* update_snd_nxt */ 0);
1205 if (PREDICT_FALSE (n_bufs))
1207 clib_warning ("not all buffers consumed");
1208 vlib_buffer_free (vm, wrk->tx_buffers, n_bufs);
1212 ASSERT (n_bytes > 0);
1213 ASSERT (((*b)->current_data + (*b)->current_length) <= bytes_per_buffer);
1219 * Build a retransmit segment
1221 * @return the number of bytes in the segment or 0 if there's nothing to
1225 tcp_prepare_retransmit_segment (tcp_worker_ctx_t * wrk,
1226 tcp_connection_t * tc, u32 offset,
1227 u32 max_deq_bytes, vlib_buffer_t ** b)
1229 u32 start, available_bytes;
1232 ASSERT (tc->state >= TCP_STATE_ESTABLISHED);
1233 ASSERT (max_deq_bytes != 0);
1236 * Make sure we can retransmit something
1238 available_bytes = transport_max_tx_dequeue (&tc->connection);
1239 ASSERT (available_bytes >= offset);
1240 available_bytes -= offset;
1241 if (!available_bytes)
1244 max_deq_bytes = clib_min (tc->snd_mss, max_deq_bytes);
1245 max_deq_bytes = clib_min (available_bytes, max_deq_bytes);
1247 start = tc->snd_una + offset;
1248 ASSERT (seq_leq (start + max_deq_bytes, tc->snd_nxt));
1250 n_bytes = tcp_prepare_segment (wrk, tc, offset, max_deq_bytes, b);
1254 tc->snd_rxt_bytes += n_bytes;
1256 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
1257 tcp_bt_track_rxt (tc, start, start + n_bytes);
1259 tc->bytes_retrans += n_bytes;
1260 tc->segs_retrans += 1;
1261 tcp_worker_stats_inc (wrk, rxt_segs, 1);
1262 TCP_EVT (TCP_EVT_CC_RTX, tc, offset, n_bytes);
1268 tcp_check_sack_reneging (tcp_connection_t * tc)
1270 sack_scoreboard_t *sb = &tc->sack_sb;
1271 sack_scoreboard_hole_t *hole;
1273 hole = scoreboard_first_hole (sb);
1274 if (!sb->is_reneging && (!hole || hole->start == tc->snd_una))
1277 scoreboard_clear_reneging (sb, tc->snd_una, tc->snd_nxt);
1281 * Reset congestion control, switch cwnd to loss window and try again.
1284 tcp_cc_init_rxt_timeout (tcp_connection_t * tc)
1286 TCP_EVT (TCP_EVT_CC_EVT, tc, 6);
1288 tc->prev_ssthresh = tc->ssthresh;
1289 tc->prev_cwnd = tc->cwnd;
1291 /* If we entrered loss without fast recovery, notify cc algo of the
1292 * congestion event such that it can update ssthresh and its state */
1293 if (!tcp_in_fastrecovery (tc))
1294 tcp_cc_congestion (tc);
1296 /* Let cc algo decide loss cwnd and ssthresh post unrecovered loss */
1300 tc->cwnd_acc_bytes = 0;
1301 tc->tr_occurences += 1;
1302 tc->sack_sb.reorder = TCP_DUPACK_THRESHOLD;
1303 tcp_recovery_on (tc);
1307 tcp_timer_retransmit_handler (tcp_connection_t * tc)
1309 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
1310 vlib_main_t *vm = wrk->vm;
1311 vlib_buffer_t *b = 0;
1314 tcp_worker_stats_inc (wrk, tr_events, 1);
1316 /* Should be handled by a different handler */
1317 if (PREDICT_FALSE (tc->state == TCP_STATE_SYN_SENT))
1320 /* Wait-close and retransmit could pop at the same time */
1321 if (tc->state == TCP_STATE_CLOSED)
1324 if (tc->state >= TCP_STATE_ESTABLISHED)
1326 TCP_EVT (TCP_EVT_CC_EVT, tc, 2);
1328 /* Lost FIN, retransmit and return */
1329 if (tc->flags & TCP_CONN_FINSNT)
1333 tc->rto = clib_min (tc->rto << 1, TCP_RTO_MAX);
1337 /* Shouldn't be here */
1338 if (tc->snd_una == tc->snd_nxt)
1340 ASSERT (!tcp_in_recovery (tc));
1345 /* We're not in recovery so make sure rto_boff is 0. Can be non 0 due
1346 * to persist timer timeout */
1347 if (!tcp_in_recovery (tc) && tc->rto_boff > 0)
1350 tcp_update_rto (tc);
1353 /* Peer is dead or network connectivity is lost. Close connection.
1354 * RFC 1122 section 4.2.3.5 recommends a value of at least 100s. For
1355 * a min rto of 0.2s we need to retry about 8 times. */
1356 if (tc->rto_boff >= TCP_RTO_BOFF_MAX)
1358 tcp_send_reset (tc);
1359 tcp_connection_set_state (tc, TCP_STATE_CLOSED);
1360 session_transport_closing_notify (&tc->connection);
1361 session_transport_closed_notify (&tc->connection);
1362 tcp_connection_timers_reset (tc);
1363 tcp_program_cleanup (wrk, tc);
1364 tcp_worker_stats_inc (wrk, tr_abort, 1);
1368 if (tcp_opts_sack_permitted (&tc->rcv_opts))
1370 tcp_check_sack_reneging (tc);
1371 scoreboard_rxt_mark_lost (&tc->sack_sb, tc->snd_una, tc->snd_nxt);
1374 /* Update send congestion to make sure that rxt has data to send */
1375 tc->snd_congestion = tc->snd_nxt;
1377 /* Send the first unacked segment. If we're short on buffers, return
1378 * as soon as possible */
1379 n_bytes = clib_min (tc->snd_mss, tc->snd_nxt - tc->snd_una);
1380 n_bytes = tcp_prepare_retransmit_segment (wrk, tc, 0, n_bytes, &b);
1383 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT,
1384 tcp_cfg.alloc_err_timeout);
1388 bi = vlib_get_buffer_index (vm, b);
1389 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1391 tc->rto = clib_min (tc->rto << 1, TCP_RTO_MAX);
1392 tcp_retransmit_timer_update (&wrk->timer_wheel, tc);
1395 if (tc->rto_boff == 1)
1397 tcp_cc_init_rxt_timeout (tc);
1398 /* Record timestamp. Eifel detection algorithm RFC3522 */
1399 tc->snd_rxt_ts = tcp_tstamp (tc);
1402 if (tcp_opts_sack_permitted (&tc->rcv_opts))
1403 scoreboard_init_rxt (&tc->sack_sb, tc->snd_una + n_bytes);
1405 tcp_program_retransmit (tc);
1407 /* Retransmit SYN-ACK */
1408 else if (tc->state == TCP_STATE_SYN_RCVD)
1410 TCP_EVT (TCP_EVT_CC_EVT, tc, 2);
1414 /* Passive open establish timeout */
1415 if (tc->rto > TCP_ESTABLISH_TIME >> 1)
1417 tcp_connection_set_state (tc, TCP_STATE_CLOSED);
1418 tcp_connection_timers_reset (tc);
1419 tcp_program_cleanup (wrk, tc);
1420 tcp_worker_stats_inc (wrk, tr_abort, 1);
1424 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
1426 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT,
1427 tcp_cfg.alloc_err_timeout);
1428 tcp_worker_stats_inc (wrk, no_buffer, 1);
1433 if (tc->rto_boff > TCP_RTO_SYN_RETRIES)
1434 tc->rto = clib_min (tc->rto << 1, TCP_RTO_MAX);
1436 ASSERT (tc->snd_una != tc->snd_nxt);
1437 tcp_retransmit_timer_update (&wrk->timer_wheel, tc);
1439 b = vlib_get_buffer (vm, bi);
1440 tcp_init_buffer (vm, b);
1441 tcp_make_synack (tc, b);
1442 TCP_EVT (TCP_EVT_SYN_RXT, tc, 1);
1444 /* Retransmit timer already updated, just enqueue to output */
1445 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1449 ASSERT (tc->state == TCP_STATE_CLOSED);
1455 * SYN retransmit timer handler. Active open only.
1458 tcp_timer_retransmit_syn_handler (tcp_connection_t * tc)
1460 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
1461 vlib_main_t *vm = wrk->vm;
1462 vlib_buffer_t *b = 0;
1465 /* Note: the connection may have transitioned to ESTABLISHED... */
1466 if (PREDICT_FALSE (tc->state != TCP_STATE_SYN_SENT))
1469 /* Half-open connection actually moved to established but we were
1470 * waiting for syn retransmit to pop to call cleanup from the right
1472 if (tc->flags & TCP_CONN_HALF_OPEN_DONE)
1474 if (tcp_half_open_connection_cleanup (tc))
1475 TCP_DBG ("could not remove half-open connection");
1479 TCP_EVT (TCP_EVT_CC_EVT, tc, 2);
1482 /* Active open establish timeout */
1483 if (tc->rto >= TCP_ESTABLISH_TIME >> 1)
1485 session_stream_connect_notify (&tc->connection, SESSION_E_TIMEDOUT);
1486 tcp_connection_cleanup (tc);
1490 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
1492 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT_SYN,
1493 tcp_cfg.alloc_err_timeout);
1494 tcp_worker_stats_inc (wrk, no_buffer, 1);
1498 /* Try without increasing RTO a number of times. If this fails,
1499 * start growing RTO exponentially */
1501 if (tc->rto_boff > TCP_RTO_SYN_RETRIES)
1502 tc->rto = clib_min (tc->rto << 1, TCP_RTO_MAX);
1504 b = vlib_get_buffer (vm, bi);
1505 tcp_init_buffer (vm, b);
1506 tcp_make_syn (tc, b);
1508 TCP_EVT (TCP_EVT_SYN_RXT, tc, 0);
1510 tcp_enqueue_half_open (wrk, tc, b, bi);
1512 tcp_timer_update (&wrk->timer_wheel, tc, TCP_TIMER_RETRANSMIT_SYN,
1513 (u32) tc->rto * TCP_TO_TIMER_TICK);
1517 * Got 0 snd_wnd from peer, try to do something about it.
1521 tcp_timer_persist_handler (tcp_connection_t * tc)
1523 tcp_worker_ctx_t *wrk = tcp_get_worker (tc->c_thread_index);
1524 u32 bi, max_snd_bytes, available_bytes, offset;
1525 tcp_main_t *tm = vnet_get_tcp_main ();
1526 vlib_main_t *vm = wrk->vm;
1531 /* Problem already solved or worse */
1532 if (tc->state == TCP_STATE_CLOSED || tc->snd_wnd > tc->snd_mss
1533 || (tc->flags & TCP_CONN_FINSNT))
1534 goto update_scheduler;
1536 available_bytes = transport_max_tx_dequeue (&tc->connection);
1537 offset = tc->snd_nxt - tc->snd_una;
1539 /* Reprogram persist if no new bytes available to send. We may have data
1541 if (!available_bytes)
1543 tcp_persist_timer_set (&wrk->timer_wheel, tc);
1547 if (available_bytes <= offset)
1548 goto update_scheduler;
1550 /* Increment RTO backoff */
1552 tc->rto = clib_min (tc->rto << 1, TCP_RTO_MAX);
1555 * Try to force the first unsent segment (or buffer)
1557 if (PREDICT_FALSE (!vlib_buffer_alloc (vm, &bi, 1)))
1559 tcp_persist_timer_set (&wrk->timer_wheel, tc);
1560 tcp_worker_stats_inc (wrk, no_buffer, 1);
1564 b = vlib_get_buffer (vm, bi);
1565 data = tcp_init_buffer (vm, b);
1567 tcp_validate_txf_size (tc, offset);
1568 tc->snd_opts_len = tcp_make_options (tc, &tc->snd_opts, tc->state);
1569 max_snd_bytes = clib_min (clib_min (tc->snd_mss, available_bytes),
1570 tm->bytes_per_buffer - TRANSPORT_MAX_HDRS_LEN);
1571 if (tc->snd_wnd > 0)
1572 max_snd_bytes = clib_min (tc->snd_wnd, max_snd_bytes);
1573 n_bytes = session_tx_fifo_peek_bytes (&tc->connection, data, offset,
1575 b->current_length = n_bytes;
1576 ASSERT (n_bytes != 0 && (tcp_timer_is_active (tc, TCP_TIMER_RETRANSMIT)
1577 || tc->snd_una == tc->snd_nxt
1578 || tc->rto_boff > 1));
1580 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
1582 tcp_bt_check_app_limited (tc);
1583 tcp_bt_track_tx (tc, n_bytes);
1586 tcp_push_hdr_i (tc, b, tc->snd_nxt, /* compute opts */ 0,
1587 /* burst */ 0, /* update_snd_nxt */ 1);
1588 tcp_validate_txf_size (tc, tc->snd_nxt - tc->snd_una);
1589 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1591 /* Just sent new data, enable retransmit */
1592 tcp_retransmit_timer_update (&wrk->timer_wheel, tc);
1598 if (tcp_is_descheduled (tc))
1599 transport_connection_reschedule (&tc->connection);
1603 * Retransmit first unacked segment
1606 tcp_retransmit_first_unacked (tcp_worker_ctx_t * wrk, tcp_connection_t * tc)
1608 vlib_main_t *vm = wrk->vm;
1612 TCP_EVT (TCP_EVT_CC_EVT, tc, 1);
1614 n_bytes = tcp_prepare_retransmit_segment (wrk, tc, 0, tc->snd_mss, &b);
1618 bi = vlib_get_buffer_index (vm, b);
1619 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1625 tcp_transmit_unsent (tcp_worker_ctx_t * wrk, tcp_connection_t * tc,
1628 u32 offset, n_segs = 0, n_written, bi, available_wnd;
1629 vlib_main_t *vm = wrk->vm;
1630 vlib_buffer_t *b = 0;
1632 offset = tc->snd_nxt - tc->snd_una;
1633 available_wnd = tc->snd_wnd - offset;
1634 burst_size = clib_min (burst_size, available_wnd / tc->snd_mss);
1636 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
1637 tcp_bt_check_app_limited (tc);
1639 while (n_segs < burst_size)
1641 n_written = tcp_prepare_segment (wrk, tc, offset, tc->snd_mss, &b);
1645 bi = vlib_get_buffer_index (vm, b);
1646 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1647 offset += n_written;
1650 if (tc->cfg_flags & TCP_CFG_F_RATE_SAMPLE)
1651 tcp_bt_track_tx (tc, n_written);
1653 tc->snd_nxt += n_written;
1661 * Estimate send space using proportional rate reduction (RFC6937)
1664 tcp_fastrecovery_prr_snd_space (tcp_connection_t * tc)
1669 pipe = tcp_flight_size (tc);
1670 prr_out = tc->snd_rxt_bytes + (tc->snd_nxt - tc->snd_congestion);
1672 if (pipe > tc->ssthresh)
1674 space = ((int) tc->prr_delivered * ((f64) tc->ssthresh / tc->prev_cwnd))
1680 limit = clib_max ((int) (tc->prr_delivered - prr_out), 0) + tc->snd_mss;
1681 space = clib_min (tc->ssthresh - pipe, limit);
1683 space = clib_max (space, prr_out ? 0 : tc->snd_mss);
1688 tcp_retransmit_should_retry_head (tcp_connection_t * tc,
1689 sack_scoreboard_t * sb)
1691 u32 tx_adv_sack = sb->high_sacked - tc->snd_congestion;
1692 f64 rr = (f64) tc->ssthresh / tc->prev_cwnd;
1694 if (tcp_fastrecovery_first (tc))
1697 return (tx_adv_sack > (tc->snd_una - tc->prr_start) * rr);
1701 tcp_max_tx_deq (tcp_connection_t * tc)
1703 return (transport_max_tx_dequeue (&tc->connection)
1704 - (tc->snd_nxt - tc->snd_una));
1707 #define scoreboard_rescue_rxt_valid(_sb, _tc) \
1708 (seq_geq (_sb->rescue_rxt, _tc->snd_una) \
1709 && seq_leq (_sb->rescue_rxt, _tc->snd_congestion))
1712 * Do retransmit with SACKs
1715 tcp_retransmit_sack (tcp_worker_ctx_t * wrk, tcp_connection_t * tc,
1718 u32 n_written = 0, offset, max_bytes, n_segs = 0;
1719 u8 snd_limited = 0, can_rescue = 0;
1720 u32 bi, max_deq, burst_bytes;
1721 sack_scoreboard_hole_t *hole;
1722 vlib_main_t *vm = wrk->vm;
1723 vlib_buffer_t *b = 0;
1724 sack_scoreboard_t *sb;
1727 ASSERT (tcp_in_cong_recovery (tc));
1729 burst_bytes = transport_connection_tx_pacer_burst (&tc->connection);
1730 burst_size = clib_min (burst_size, burst_bytes / tc->snd_mss);
1733 tcp_program_retransmit (tc);
1737 if (tcp_in_recovery (tc))
1738 snd_space = tcp_available_cc_snd_space (tc);
1740 snd_space = tcp_fastrecovery_prr_snd_space (tc);
1742 if (snd_space < tc->snd_mss)
1747 /* Check if snd_una is a lost retransmit */
1748 if (pool_elts (sb->holes)
1749 && seq_gt (sb->high_sacked, tc->snd_congestion)
1750 && tc->rxt_head != tc->snd_una
1751 && tcp_retransmit_should_retry_head (tc, sb))
1753 max_bytes = clib_min (tc->snd_mss, tc->snd_nxt - tc->snd_una);
1754 n_written = tcp_prepare_retransmit_segment (wrk, tc, 0, max_bytes, &b);
1757 tcp_program_retransmit (tc);
1760 bi = vlib_get_buffer_index (vm, b);
1761 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1764 tc->rxt_head = tc->snd_una;
1765 tc->rxt_delivered += n_written;
1766 tc->prr_delivered += n_written;
1767 ASSERT (tc->rxt_delivered <= tc->snd_rxt_bytes);
1770 tcp_fastrecovery_first_off (tc);
1772 TCP_EVT (TCP_EVT_CC_EVT, tc, 0);
1773 hole = scoreboard_get_hole (sb, sb->cur_rxt_hole);
1775 max_deq = transport_max_tx_dequeue (&tc->connection);
1776 max_deq -= tc->snd_nxt - tc->snd_una;
1778 while (snd_space > 0 && n_segs < burst_size)
1780 hole = scoreboard_next_rxt_hole (sb, hole, max_deq != 0, &can_rescue,
1784 /* We are out of lost holes to retransmit so send some new data. */
1785 if (max_deq > tc->snd_mss)
1790 /* Make sure we don't exceed available window and leave space
1791 * for one more packet, to avoid zero window acks */
1792 av_wnd = (int) tc->snd_wnd - (tc->snd_nxt - tc->snd_una);
1793 av_wnd = clib_max (av_wnd - tc->snd_mss, 0);
1794 snd_space = clib_min (snd_space, av_wnd);
1795 snd_space = clib_min (max_deq, snd_space);
1796 burst_size = clib_min (burst_size - n_segs,
1797 snd_space / tc->snd_mss);
1798 burst_size = clib_min (burst_size, TCP_RXT_MAX_BURST);
1799 n_segs_new = tcp_transmit_unsent (wrk, tc, burst_size);
1800 if (max_deq > n_segs_new * tc->snd_mss)
1801 tcp_program_retransmit (tc);
1803 n_segs += n_segs_new;
1807 if (tcp_in_recovery (tc) || !can_rescue
1808 || scoreboard_rescue_rxt_valid (sb, tc))
1811 /* If rescue rxt undefined or less than snd_una then one segment of
1812 * up to SMSS octets that MUST include the highest outstanding
1813 * unSACKed sequence number SHOULD be returned, and RescueRxt set to
1814 * RecoveryPoint. HighRxt MUST NOT be updated.
1816 hole = scoreboard_last_hole (sb);
1817 max_bytes = clib_min (tc->snd_mss, hole->end - hole->start);
1818 max_bytes = clib_min (max_bytes, snd_space);
1819 offset = hole->end - tc->snd_una - max_bytes;
1820 n_written = tcp_prepare_retransmit_segment (wrk, tc, offset,
1825 sb->rescue_rxt = tc->snd_congestion;
1826 bi = vlib_get_buffer_index (vm, b);
1827 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1832 max_bytes = clib_min (hole->end - sb->high_rxt, snd_space);
1833 max_bytes = snd_limited ? clib_min (max_bytes, tc->snd_mss) : max_bytes;
1837 offset = sb->high_rxt - tc->snd_una;
1838 n_written = tcp_prepare_retransmit_segment (wrk, tc, offset, max_bytes,
1840 ASSERT (n_written <= snd_space);
1842 /* Nothing left to retransmit */
1846 bi = vlib_get_buffer_index (vm, b);
1847 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1849 sb->high_rxt += n_written;
1850 ASSERT (seq_leq (sb->high_rxt, tc->snd_nxt));
1852 snd_space -= n_written;
1857 tcp_program_retransmit (tc);
1861 transport_connection_tx_pacer_reset_bucket (&tc->connection, 0);
1866 * Fast retransmit without SACK info
1869 tcp_retransmit_no_sack (tcp_worker_ctx_t * wrk, tcp_connection_t * tc,
1872 u32 n_written = 0, offset = 0, bi, max_deq, n_segs_now, max_bytes;
1873 u32 burst_bytes, sent_bytes;
1874 vlib_main_t *vm = wrk->vm;
1875 int snd_space, n_segs = 0;
1879 ASSERT (tcp_in_cong_recovery (tc));
1880 TCP_EVT (TCP_EVT_CC_EVT, tc, 0);
1882 burst_bytes = transport_connection_tx_pacer_burst (&tc->connection);
1883 burst_size = clib_min (burst_size, burst_bytes / tc->snd_mss);
1886 tcp_program_retransmit (tc);
1890 snd_space = tcp_available_cc_snd_space (tc);
1891 cc_limited = snd_space < burst_bytes;
1893 if (!tcp_fastrecovery_first (tc))
1896 /* RFC 6582: [If a partial ack], retransmit the first unacknowledged
1898 while (snd_space > 0 && n_segs < burst_size)
1900 max_bytes = clib_min (tc->snd_mss,
1901 tc->snd_congestion - tc->snd_una - offset);
1904 n_written = tcp_prepare_retransmit_segment (wrk, tc, offset, max_bytes,
1907 /* Nothing left to retransmit */
1911 bi = vlib_get_buffer_index (vm, b);
1912 tcp_enqueue_to_output (wrk, b, bi, tc->c_is_ip4);
1913 snd_space -= n_written;
1914 offset += n_written;
1918 if (n_segs == burst_size)
1923 /* RFC 6582: Send a new segment if permitted by the new value of cwnd. */
1924 if (snd_space < tc->snd_mss || tc->snd_mss == 0)
1927 max_deq = transport_max_tx_dequeue (&tc->connection);
1928 max_deq -= tc->snd_nxt - tc->snd_una;
1931 snd_space = clib_min (max_deq, snd_space);
1932 burst_size = clib_min (burst_size - n_segs, snd_space / tc->snd_mss);
1933 n_segs_now = tcp_transmit_unsent (wrk, tc, burst_size);
1934 if (n_segs_now && max_deq > n_segs_now * tc->snd_mss)
1935 tcp_program_retransmit (tc);
1936 n_segs += n_segs_now;
1940 tcp_fastrecovery_first_off (tc);
1942 sent_bytes = clib_min (n_segs * tc->snd_mss, burst_bytes);
1943 sent_bytes = cc_limited ? burst_bytes : sent_bytes;
1944 transport_connection_tx_pacer_update_bytes (&tc->connection, sent_bytes);
1950 tcp_send_acks (tcp_connection_t * tc, u32 max_burst_size)
1954 if (!tc->pending_dupacks)
1956 if (tcp_in_cong_recovery (tc) || !tcp_max_tx_deq (tc)
1957 || tc->state != TCP_STATE_ESTABLISHED)
1965 /* If we're supposed to send dupacks but have no ooo data
1966 * send only one ack */
1967 if (!vec_len (tc->snd_sacks))
1970 tc->dupacks_out += 1;
1971 tc->pending_dupacks = 0;
1975 /* Start with first sack block */
1976 tc->snd_sack_pos = 0;
1978 /* Generate enough dupacks to cover all sack blocks. Do not generate
1979 * more sacks than the number of packets received. But do generate at
1980 * least 3, i.e., the number needed to signal congestion, if needed. */
1981 n_acks = vec_len (tc->snd_sacks) / TCP_OPTS_MAX_SACK_BLOCKS;
1982 n_acks = clib_min (n_acks, tc->pending_dupacks);
1983 n_acks = clib_max (n_acks, clib_min (tc->pending_dupacks, 3));
1984 for (j = 0; j < clib_min (n_acks, max_burst_size); j++)
1987 if (n_acks < max_burst_size)
1989 tc->pending_dupacks = 0;
1990 tc->snd_sack_pos = 0;
1991 tc->dupacks_out += n_acks;
1996 TCP_DBG ("constrained by burst size");
1997 tc->pending_dupacks = n_acks - max_burst_size;
1998 tc->dupacks_out += max_burst_size;
1999 tcp_program_dupack (tc);
2000 return max_burst_size;
2005 tcp_do_retransmit (tcp_connection_t * tc, u32 max_burst_size)
2007 tcp_worker_ctx_t *wrk;
2010 if (PREDICT_FALSE (tc->state == TCP_STATE_CLOSED))
2013 wrk = tcp_get_worker (tc->c_thread_index);
2015 if (tcp_opts_sack_permitted (&tc->rcv_opts))
2016 n_segs = tcp_retransmit_sack (wrk, tc, max_burst_size);
2018 n_segs = tcp_retransmit_no_sack (wrk, tc, max_burst_size);
2024 tcp_session_custom_tx (void *conn, transport_send_params_t * sp)
2026 tcp_connection_t *tc = (tcp_connection_t *) conn;
2029 if (tcp_in_cong_recovery (tc) && (tc->flags & TCP_CONN_RXT_PENDING))
2031 tc->flags &= ~TCP_CONN_RXT_PENDING;
2032 n_segs = tcp_do_retransmit (tc, sp->max_burst_size);
2035 if (!(tc->flags & TCP_CONN_SNDACK))
2038 tc->flags &= ~TCP_CONN_SNDACK;
2040 /* We have retransmitted packets and no dupack */
2041 if (n_segs && !tc->pending_dupacks)
2044 if (sp->max_burst_size <= n_segs)
2046 tcp_program_ack (tc);
2050 n_segs += tcp_send_acks (tc, sp->max_burst_size - n_segs);
2054 #endif /* CLIB_MARCH_VARIANT */
2057 tcp_output_handle_link_local (tcp_connection_t * tc0, vlib_buffer_t * b0,
2058 u16 * next0, u32 * error0)
2060 ip_adjacency_t *adj;
2063 /* Not thread safe but as long as the connection exists the adj should
2065 ai = adj_nbr_find (FIB_PROTOCOL_IP6, VNET_LINK_IP6, &tc0->c_rmt_ip,
2067 if (ai == ADJ_INDEX_INVALID)
2069 vnet_buffer (b0)->sw_if_index[VLIB_TX] = ~0;
2070 *next0 = TCP_OUTPUT_NEXT_DROP;
2071 *error0 = TCP_ERROR_LINK_LOCAL_RW;
2076 if (PREDICT_TRUE (adj->lookup_next_index == IP_LOOKUP_NEXT_REWRITE))
2077 *next0 = TCP_OUTPUT_NEXT_IP_REWRITE;
2078 else if (adj->lookup_next_index == IP_LOOKUP_NEXT_ARP)
2079 *next0 = TCP_OUTPUT_NEXT_IP_ARP;
2082 *next0 = TCP_OUTPUT_NEXT_DROP;
2083 *error0 = TCP_ERROR_LINK_LOCAL_RW;
2085 vnet_buffer (b0)->ip.adj_index[VLIB_TX] = ai;
2089 tcp46_output_trace_frame (vlib_main_t * vm, vlib_node_runtime_t * node,
2090 u32 * to_next, u32 n_bufs)
2092 tcp_connection_t *tc;
2098 for (i = 0; i < n_bufs; i++)
2100 b = vlib_get_buffer (vm, to_next[i]);
2101 if (!(b->flags & VLIB_BUFFER_IS_TRACED))
2103 th = vlib_buffer_get_current (b);
2104 tc = tcp_connection_get (vnet_buffer (b)->tcp.connection_index,
2106 t = vlib_add_trace (vm, node, b, sizeof (*t));
2107 clib_memcpy_fast (&t->tcp_header, th, sizeof (t->tcp_header));
2108 clib_memcpy_fast (&t->tcp_connection, tc, sizeof (t->tcp_connection));
2113 tcp_output_push_ip (vlib_main_t * vm, vlib_buffer_t * b0,
2114 tcp_connection_t * tc0, u8 is_ip4)
2116 TCP_EVT (TCP_EVT_OUTPUT, tc0,
2117 ((tcp_header_t *) vlib_buffer_get_current (b0))->flags,
2118 b0->current_length);
2121 vlib_buffer_push_ip4 (vm, b0, &tc0->c_lcl_ip4, &tc0->c_rmt_ip4,
2122 IP_PROTOCOL_TCP, tcp_csum_offload (tc0));
2124 vlib_buffer_push_ip6_custom (vm, b0, &tc0->c_lcl_ip6, &tc0->c_rmt_ip6,
2125 IP_PROTOCOL_TCP, tc0->ipv6_flow_label);
2129 tcp_check_if_gso (tcp_connection_t * tc, vlib_buffer_t * b)
2131 if (PREDICT_TRUE (!(tc->cfg_flags & TCP_CFG_F_TSO)))
2134 u16 data_len = b->current_length - sizeof (tcp_header_t) - tc->snd_opts_len;
2136 if (PREDICT_FALSE (b->flags & VLIB_BUFFER_TOTAL_LENGTH_VALID))
2137 data_len += b->total_length_not_including_first_buffer;
2139 if (PREDICT_TRUE (data_len <= tc->snd_mss))
2143 ASSERT ((b->flags & VNET_BUFFER_F_L3_HDR_OFFSET_VALID) != 0);
2144 ASSERT ((b->flags & VNET_BUFFER_F_L4_HDR_OFFSET_VALID) != 0);
2145 b->flags |= VNET_BUFFER_F_GSO;
2146 vnet_buffer2 (b)->gso_l4_hdr_sz =
2147 sizeof (tcp_header_t) + tc->snd_opts_len;
2148 vnet_buffer2 (b)->gso_size = tc->snd_mss;
2153 tcp_output_handle_packet (tcp_connection_t * tc0, vlib_buffer_t * b0,
2154 vlib_node_runtime_t * error_node, u16 * next0,
2157 /* If next_index is not drop use it */
2158 if (tc0->next_node_index)
2160 *next0 = tc0->next_node_index;
2161 vnet_buffer (b0)->tcp.next_node_opaque = tc0->next_node_opaque;
2165 *next0 = TCP_OUTPUT_NEXT_IP_LOOKUP;
2168 vnet_buffer (b0)->sw_if_index[VLIB_TX] = tc0->c_fib_index;
2169 vnet_buffer (b0)->sw_if_index[VLIB_RX] = tc0->sw_if_index;
2175 if (PREDICT_FALSE (ip6_address_is_link_local_unicast (&tc0->c_rmt_ip6)))
2176 tcp_output_handle_link_local (tc0, b0, next0, &error0);
2178 if (PREDICT_FALSE (error0))
2180 b0->error = error_node->errors[error0];
2189 tcp46_output_inline (vlib_main_t * vm, vlib_node_runtime_t * node,
2190 vlib_frame_t * frame, int is_ip4)
2192 u32 n_left_from, *from, thread_index = vm->thread_index;
2193 vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b;
2194 u16 nexts[VLIB_FRAME_SIZE], *next;
2195 u16 err_counters[TCP_N_ERROR] = { 0 };
2197 from = vlib_frame_vector_args (frame);
2198 n_left_from = frame->n_vectors;
2199 tcp_update_time_now (tcp_get_worker (thread_index));
2201 if (PREDICT_FALSE (node->flags & VLIB_NODE_FLAG_TRACE))
2202 tcp46_output_trace_frame (vm, node, from, n_left_from);
2204 vlib_get_buffers (vm, from, bufs, n_left_from);
2208 while (n_left_from >= 4)
2210 tcp_connection_t *tc0, *tc1;
2213 vlib_prefetch_buffer_header (b[2], STORE);
2214 CLIB_PREFETCH (b[2]->data, 2 * CLIB_CACHE_LINE_BYTES, STORE);
2216 vlib_prefetch_buffer_header (b[3], STORE);
2217 CLIB_PREFETCH (b[3]->data, 2 * CLIB_CACHE_LINE_BYTES, STORE);
2220 tc0 = tcp_connection_get (vnet_buffer (b[0])->tcp.connection_index,
2222 tc1 = tcp_connection_get (vnet_buffer (b[1])->tcp.connection_index,
2225 if (PREDICT_TRUE (!tc0 + !tc1 == 0))
2227 tcp_output_push_ip (vm, b[0], tc0, is_ip4);
2228 tcp_output_push_ip (vm, b[1], tc1, is_ip4);
2230 tcp_check_if_gso (tc0, b[0]);
2231 tcp_check_if_gso (tc1, b[1]);
2233 tcp_output_handle_packet (tc0, b[0], node, &next[0], is_ip4);
2234 tcp_output_handle_packet (tc1, b[1], node, &next[1], is_ip4);
2240 tcp_output_push_ip (vm, b[0], tc0, is_ip4);
2241 tcp_check_if_gso (tc0, b[0]);
2242 tcp_output_handle_packet (tc0, b[0], node, &next[0], is_ip4);
2246 tcp_inc_err_counter (err_counters, TCP_ERROR_INVALID_CONNECTION,
2248 next[0] = TCP_OUTPUT_NEXT_DROP;
2252 tcp_output_push_ip (vm, b[1], tc1, is_ip4);
2253 tcp_check_if_gso (tc1, b[1]);
2254 tcp_output_handle_packet (tc1, b[1], node, &next[1], is_ip4);
2258 tcp_inc_err_counter (err_counters, TCP_ERROR_INVALID_CONNECTION,
2260 next[1] = TCP_OUTPUT_NEXT_DROP;
2268 while (n_left_from > 0)
2270 tcp_connection_t *tc0;
2272 if (n_left_from > 1)
2274 vlib_prefetch_buffer_header (b[1], STORE);
2275 CLIB_PREFETCH (b[1]->data, 2 * CLIB_CACHE_LINE_BYTES, STORE);
2278 tc0 = tcp_connection_get (vnet_buffer (b[0])->tcp.connection_index,
2281 if (PREDICT_TRUE (tc0 != 0))
2283 tcp_output_push_ip (vm, b[0], tc0, is_ip4);
2284 tcp_check_if_gso (tc0, b[0]);
2285 tcp_output_handle_packet (tc0, b[0], node, &next[0], is_ip4);
2289 tcp_inc_err_counter (err_counters, TCP_ERROR_INVALID_CONNECTION, 1);
2290 next[0] = TCP_OUTPUT_NEXT_DROP;
2298 tcp_store_err_counters (output, err_counters);
2299 vlib_buffer_enqueue_to_next (vm, node, from, nexts, frame->n_vectors);
2300 vlib_node_increment_counter (vm, tcp_node_index (output, is_ip4),
2301 TCP_ERROR_PKTS_SENT, frame->n_vectors);
2302 return frame->n_vectors;
2305 VLIB_NODE_FN (tcp4_output_node) (vlib_main_t * vm, vlib_node_runtime_t * node,
2306 vlib_frame_t * from_frame)
2308 return tcp46_output_inline (vm, node, from_frame, 1 /* is_ip4 */ );
2311 VLIB_NODE_FN (tcp6_output_node) (vlib_main_t * vm, vlib_node_runtime_t * node,
2312 vlib_frame_t * from_frame)
2314 return tcp46_output_inline (vm, node, from_frame, 0 /* is_ip4 */ );
2318 VLIB_REGISTER_NODE (tcp4_output_node) =
2320 .name = "tcp4-output",
2321 /* Takes a vector of packets. */
2322 .vector_size = sizeof (u32),
2323 .n_errors = TCP_N_ERROR,
2324 .protocol_hint = VLIB_NODE_PROTO_HINT_TCP,
2325 .error_counters = tcp_output_error_counters,
2326 .n_next_nodes = TCP_OUTPUT_N_NEXT,
2328 #define _(s,n) [TCP_OUTPUT_NEXT_##s] = n,
2329 foreach_tcp4_output_next
2332 .format_buffer = format_tcp_header,
2333 .format_trace = format_tcp_tx_trace,
2338 VLIB_REGISTER_NODE (tcp6_output_node) =
2340 .name = "tcp6-output",
2341 /* Takes a vector of packets. */
2342 .vector_size = sizeof (u32),
2343 .n_errors = TCP_N_ERROR,
2344 .protocol_hint = VLIB_NODE_PROTO_HINT_TCP,
2345 .error_counters = tcp_output_error_counters,
2346 .n_next_nodes = TCP_OUTPUT_N_NEXT,
2348 #define _(s,n) [TCP_OUTPUT_NEXT_##s] = n,
2349 foreach_tcp6_output_next
2352 .format_buffer = format_tcp_header,
2353 .format_trace = format_tcp_tx_trace,
2357 typedef enum _tcp_reset_next
2359 TCP_RESET_NEXT_DROP,
2360 TCP_RESET_NEXT_IP_LOOKUP,
2364 #define foreach_tcp4_reset_next \
2365 _(DROP, "error-drop") \
2366 _(IP_LOOKUP, "ip4-lookup")
2368 #define foreach_tcp6_reset_next \
2369 _(DROP, "error-drop") \
2370 _(IP_LOOKUP, "ip6-lookup")
2373 tcp_reset_trace_frame (vlib_main_t *vm, vlib_node_runtime_t *node,
2374 vlib_buffer_t **bs, u32 n_bufs, u8 is_ip4)
2380 for (i = 0; i < n_bufs; i++)
2382 if (bs[i]->flags & VLIB_BUFFER_IS_TRACED)
2384 tcp = vlib_buffer_get_current (bs[i]);
2385 t = vlib_add_trace (vm, node, bs[i], sizeof (*t));
2389 ip4_header_t *ih4 = vlib_buffer_get_current (bs[i]);
2390 tcp = ip4_next_header (ih4);
2391 t->tcp_connection.c_lcl_ip.ip4 = ih4->dst_address;
2392 t->tcp_connection.c_rmt_ip.ip4 = ih4->src_address;
2393 t->tcp_connection.c_is_ip4 = 1;
2397 ip6_header_t *ih6 = vlib_buffer_get_current (bs[i]);
2398 tcp = ip6_next_header (ih6);
2399 t->tcp_connection.c_lcl_ip.ip6 = ih6->dst_address;
2400 t->tcp_connection.c_rmt_ip.ip6 = ih6->src_address;
2402 t->tcp_connection.c_lcl_port = tcp->dst_port;
2403 t->tcp_connection.c_rmt_port = tcp->src_port;
2404 t->tcp_connection.c_proto = TRANSPORT_PROTO_TCP;
2405 clib_memcpy_fast (&t->tcp_header, tcp, sizeof (t->tcp_header));
2411 tcp46_reset_inline (vlib_main_t *vm, vlib_node_runtime_t *node,
2412 vlib_frame_t *frame, u8 is_ip4)
2414 vlib_buffer_t *bufs[VLIB_FRAME_SIZE], **b;
2415 u16 nexts[VLIB_FRAME_SIZE], *next;
2416 u32 n_left_from, *from;
2418 from = vlib_frame_vector_args (frame);
2419 n_left_from = frame->n_vectors;
2420 vlib_get_buffers (vm, from, bufs, n_left_from);
2425 while (n_left_from > 0)
2427 tcp_buffer_make_reset (vm, b[0], is_ip4);
2429 /* IP lookup in fib where it was received. Previous value
2430 * was overwritten by tcp-input */
2431 vnet_buffer (b[0])->sw_if_index[VLIB_TX] =
2432 vec_elt (ip4_main.fib_index_by_sw_if_index,
2433 vnet_buffer (b[0])->sw_if_index[VLIB_RX]);
2435 b[0]->flags |= VNET_BUFFER_F_LOCALLY_ORIGINATED;
2436 next[0] = TCP_RESET_NEXT_IP_LOOKUP;
2443 if (PREDICT_FALSE (node->flags & VLIB_NODE_FLAG_TRACE))
2444 tcp_reset_trace_frame (vm, node, bufs, frame->n_vectors, is_ip4);
2446 vlib_buffer_enqueue_to_next (vm, node, from, nexts, frame->n_vectors);
2448 vlib_node_increment_counter (vm, node->node_index, TCP_ERROR_RST_SENT,
2451 return frame->n_vectors;
2454 VLIB_NODE_FN (tcp4_reset_node) (vlib_main_t * vm, vlib_node_runtime_t * node,
2455 vlib_frame_t * from_frame)
2457 return tcp46_reset_inline (vm, node, from_frame, 1);
2460 VLIB_NODE_FN (tcp6_reset_node) (vlib_main_t * vm, vlib_node_runtime_t * node,
2461 vlib_frame_t * from_frame)
2463 return tcp46_reset_inline (vm, node, from_frame, 0);
2467 VLIB_REGISTER_NODE (tcp4_reset_node) = {
2468 .name = "tcp4-reset",
2469 .vector_size = sizeof (u32),
2470 .n_errors = TCP_N_ERROR,
2471 .error_counters = tcp_output_error_counters,
2472 .n_next_nodes = TCP_RESET_N_NEXT,
2474 #define _(s,n) [TCP_RESET_NEXT_##s] = n,
2475 foreach_tcp4_reset_next
2478 .format_trace = format_tcp_tx_trace,
2483 VLIB_REGISTER_NODE (tcp6_reset_node) = {
2484 .name = "tcp6-reset",
2485 .vector_size = sizeof (u32),
2486 .n_errors = TCP_N_ERROR,
2487 .error_counters = tcp_output_error_counters,
2488 .n_next_nodes = TCP_RESET_N_NEXT,
2490 #define _(s,n) [TCP_RESET_NEXT_##s] = n,
2491 foreach_tcp6_reset_next
2494 .format_trace = format_tcp_tx_trace,
2499 * fd.io coding-style-patch-verification: ON
2502 * eval: (c-set-style "gnu")
Code Review / vpp.git / blob