183f7ab120db55f8b15b991a6ddc0cf326e40a97
[linux-2.6.git] / drivers / infiniband / hw / nes / nes_cm.c
1 /*
2  * Copyright (c) 2006 - 2009 Intel Corporation.  All rights reserved.
3  *
4  * This software is available to you under a choice of one of two
5  * licenses.  You may choose to be licensed under the terms of the GNU
6  * General Public License (GPL) Version 2, available from the file
7  * COPYING in the main directory of this source tree, or the
8  * OpenIB.org BSD license below:
9  *
10  *     Redistribution and use in source and binary forms, with or
11  *     without modification, are permitted provided that the following
12  *     conditions are met:
13  *
14  *      - Redistributions of source code must retain the above
15  *        copyright notice, this list of conditions and the following
16  *        disclaimer.
17  *
18  *      - Redistributions in binary form must reproduce the above
19  *        copyright notice, this list of conditions and the following
20  *        disclaimer in the documentation and/or other materials
21  *        provided with the distribution.
22  *
23  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
24  * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
25  * MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
26  * NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS
27  * BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
28  * ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
29  * CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
30  * SOFTWARE.
31  *
32  */
33
34
35 #define TCPOPT_TIMESTAMP 8
36
37 #include <linux/atomic.h>
38 #include <linux/skbuff.h>
39 #include <linux/ip.h>
40 #include <linux/tcp.h>
41 #include <linux/init.h>
42 #include <linux/if_arp.h>
43 #include <linux/if_vlan.h>
44 #include <linux/notifier.h>
45 #include <linux/net.h>
46 #include <linux/types.h>
47 #include <linux/timer.h>
48 #include <linux/time.h>
49 #include <linux/delay.h>
50 #include <linux/etherdevice.h>
51 #include <linux/netdevice.h>
52 #include <linux/random.h>
53 #include <linux/list.h>
54 #include <linux/threads.h>
55 #include <linux/highmem.h>
56 #include <linux/slab.h>
57 #include <net/arp.h>
58 #include <net/neighbour.h>
59 #include <net/route.h>
60 #include <net/ip_fib.h>
61 #include <net/tcp.h>
62
63 #include "nes.h"
64
65 u32 cm_packets_sent;
66 u32 cm_packets_bounced;
67 u32 cm_packets_dropped;
68 u32 cm_packets_retrans;
69 u32 cm_packets_created;
70 u32 cm_packets_received;
71 atomic_t cm_listens_created;
72 atomic_t cm_listens_destroyed;
73 u32 cm_backlog_drops;
74 atomic_t cm_loopbacks;
75 atomic_t cm_nodes_created;
76 atomic_t cm_nodes_destroyed;
77 atomic_t cm_accel_dropped_pkts;
78 atomic_t cm_resets_recvd;
79
80 static inline int mini_cm_accelerated(struct nes_cm_core *, struct nes_cm_node *);
81 static struct nes_cm_listener *mini_cm_listen(struct nes_cm_core *, struct nes_vnic *, struct nes_cm_info *);
82 static int mini_cm_del_listen(struct nes_cm_core *, struct nes_cm_listener *);
83 static struct nes_cm_node *mini_cm_connect(struct nes_cm_core *, struct nes_vnic *, u16, void *, struct nes_cm_info *);
84 static int mini_cm_close(struct nes_cm_core *, struct nes_cm_node *);
85 static int mini_cm_accept(struct nes_cm_core *, struct nes_cm_node *);
86 static int mini_cm_reject(struct nes_cm_core *, struct nes_cm_node *);
87 static int mini_cm_recv_pkt(struct nes_cm_core *, struct nes_vnic *, struct sk_buff *);
88 static int mini_cm_dealloc_core(struct nes_cm_core *);
89 static int mini_cm_get(struct nes_cm_core *);
90 static int mini_cm_set(struct nes_cm_core *, u32, u32);
91
92 static void form_cm_frame(struct sk_buff *, struct nes_cm_node *, void *, u32, void *, u32, u8);
93 static int add_ref_cm_node(struct nes_cm_node *);
94 static int rem_ref_cm_node(struct nes_cm_core *, struct nes_cm_node *);
95
96 static int nes_cm_disconn_true(struct nes_qp *);
97 static int nes_cm_post_event(struct nes_cm_event *event);
98 static int nes_disconnect(struct nes_qp *nesqp, int abrupt);
99 static void nes_disconnect_worker(struct work_struct *work);
100
101 static int send_mpa_request(struct nes_cm_node *, struct sk_buff *);
102 static int send_mpa_reject(struct nes_cm_node *);
103 static int send_syn(struct nes_cm_node *, u32, struct sk_buff *);
104 static int send_reset(struct nes_cm_node *, struct sk_buff *);
105 static int send_ack(struct nes_cm_node *cm_node, struct sk_buff *skb);
106 static int send_fin(struct nes_cm_node *cm_node, struct sk_buff *skb);
107 static void process_packet(struct nes_cm_node *, struct sk_buff *, struct nes_cm_core *);
108
109 static void active_open_err(struct nes_cm_node *, struct sk_buff *, int);
110 static void passive_open_err(struct nes_cm_node *, struct sk_buff *, int);
111 static void cleanup_retrans_entry(struct nes_cm_node *);
112 static void handle_rcv_mpa(struct nes_cm_node *, struct sk_buff *);
113 static void free_retrans_entry(struct nes_cm_node *cm_node);
114 static int handle_tcp_options(struct nes_cm_node *cm_node, struct tcphdr *tcph, struct sk_buff *skb, int optionsize, int passive);
115
116 /* CM event handler functions */
117 static void cm_event_connected(struct nes_cm_event *);
118 static void cm_event_connect_error(struct nes_cm_event *);
119 static void cm_event_reset(struct nes_cm_event *);
120 static void cm_event_mpa_req(struct nes_cm_event *);
121 static void cm_event_mpa_reject(struct nes_cm_event *);
122 static void handle_recv_entry(struct nes_cm_node *cm_node, u32 rem_node);
123
124 /* MPA build functions */
125 static int cm_build_mpa_frame(struct nes_cm_node *, u8 **, u16 *, u8 *, u8);
126 static void build_mpa_v2(struct nes_cm_node *, void *, u8);
127 static void build_mpa_v1(struct nes_cm_node *, void *, u8);
128 static void build_rdma0_msg(struct nes_cm_node *, struct nes_qp **);
129
130 static void print_core(struct nes_cm_core *core);
131
132 /* External CM API Interface */
133 /* instance of function pointers for client API */
134 /* set address of this instance to cm_core->cm_ops at cm_core alloc */
135 static struct nes_cm_ops nes_cm_api = {
136         mini_cm_accelerated,
137         mini_cm_listen,
138         mini_cm_del_listen,
139         mini_cm_connect,
140         mini_cm_close,
141         mini_cm_accept,
142         mini_cm_reject,
143         mini_cm_recv_pkt,
144         mini_cm_dealloc_core,
145         mini_cm_get,
146         mini_cm_set
147 };
148
149 static struct nes_cm_core *g_cm_core;
150
151 atomic_t cm_connects;
152 atomic_t cm_accepts;
153 atomic_t cm_disconnects;
154 atomic_t cm_closes;
155 atomic_t cm_connecteds;
156 atomic_t cm_connect_reqs;
157 atomic_t cm_rejects;
158
159 int nes_add_ref_cm_node(struct nes_cm_node *cm_node)
160 {
161         return add_ref_cm_node(cm_node);
162 }
163
164 int nes_rem_ref_cm_node(struct nes_cm_node *cm_node)
165 {
166         return rem_ref_cm_node(cm_node->cm_core, cm_node);
167 }
168
169 /**
170  * create_event
171  */
172 static struct nes_cm_event *create_event(struct nes_cm_node *   cm_node,
173                                          enum nes_cm_event_type type)
174 {
175         struct nes_cm_event *event;
176
177         if (!cm_node->cm_id)
178                 return NULL;
179
180         /* allocate an empty event */
181         event = kzalloc(sizeof(*event), GFP_ATOMIC);
182
183         if (!event)
184                 return NULL;
185
186         event->type = type;
187         event->cm_node = cm_node;
188         event->cm_info.rem_addr = cm_node->rem_addr;
189         event->cm_info.loc_addr = cm_node->loc_addr;
190         event->cm_info.rem_port = cm_node->rem_port;
191         event->cm_info.loc_port = cm_node->loc_port;
192         event->cm_info.cm_id = cm_node->cm_id;
193
194         nes_debug(NES_DBG_CM, "cm_node=%p Created event=%p, type=%u, "
195                   "dst_addr=%08x[%x], src_addr=%08x[%x]\n",
196                   cm_node, event, type, event->cm_info.loc_addr,
197                   event->cm_info.loc_port, event->cm_info.rem_addr,
198                   event->cm_info.rem_port);
199
200         nes_cm_post_event(event);
201         return event;
202 }
203
204
205 /**
206  * send_mpa_request
207  */
208 static int send_mpa_request(struct nes_cm_node *cm_node, struct sk_buff *skb)
209 {
210         u8 start_addr = 0;
211         u8 *start_ptr = &start_addr;
212         u8 **start_buff = &start_ptr;
213         u16 buff_len = 0;
214
215         if (!skb) {
216                 nes_debug(NES_DBG_CM, "skb set to NULL\n");
217                 return -1;
218         }
219
220         /* send an MPA Request frame */
221         cm_build_mpa_frame(cm_node, start_buff, &buff_len, NULL, MPA_KEY_REQUEST);
222         form_cm_frame(skb, cm_node, NULL, 0, *start_buff, buff_len, SET_ACK);
223
224         return schedule_nes_timer(cm_node, skb, NES_TIMER_TYPE_SEND, 1, 0);
225 }
226
227
228
229 static int send_mpa_reject(struct nes_cm_node *cm_node)
230 {
231         struct sk_buff *skb = NULL;
232         u8 start_addr = 0;
233         u8 *start_ptr = &start_addr;
234         u8 **start_buff = &start_ptr;
235         u16 buff_len = 0;
236         struct ietf_mpa_v1 *mpa_frame;
237
238         skb = dev_alloc_skb(MAX_CM_BUFFER);
239         if (!skb) {
240                 nes_debug(NES_DBG_CM, "Failed to get a Free pkt\n");
241                 return -ENOMEM;
242         }
243
244         /* send an MPA reject frame */
245         cm_build_mpa_frame(cm_node, start_buff, &buff_len, NULL, MPA_KEY_REPLY);
246         mpa_frame = (struct ietf_mpa_v1 *)*start_buff;
247         mpa_frame->flags |= IETF_MPA_FLAGS_REJECT;
248         form_cm_frame(skb, cm_node, NULL, 0, *start_buff, buff_len, SET_ACK | SET_FIN);
249
250         cm_node->state = NES_CM_STATE_FIN_WAIT1;
251         return schedule_nes_timer(cm_node, skb, NES_TIMER_TYPE_SEND, 1, 0);
252 }
253
254
255 /**
256  * recv_mpa - process a received TCP pkt, we are expecting an
257  * IETF MPA frame
258  */
259 static int parse_mpa(struct nes_cm_node *cm_node, u8 *buffer, u32 *type,
260                      u32 len)
261 {
262         struct ietf_mpa_v1 *mpa_frame;
263         struct ietf_mpa_v2 *mpa_v2_frame;
264         struct ietf_rtr_msg *rtr_msg;
265         int mpa_hdr_len;
266         int priv_data_len;
267
268         *type = NES_MPA_REQUEST_ACCEPT;
269
270         /* assume req frame is in tcp data payload */
271         if (len < sizeof(struct ietf_mpa_v1)) {
272                 nes_debug(NES_DBG_CM, "The received ietf buffer was too small (%x)\n", len);
273                 return -EINVAL;
274         }
275
276         /* points to the beginning of the frame, which could be MPA V1 or V2 */
277         mpa_frame = (struct ietf_mpa_v1 *)buffer;
278         mpa_hdr_len = sizeof(struct ietf_mpa_v1);
279         priv_data_len = ntohs(mpa_frame->priv_data_len);
280
281         /* make sure mpa private data len is less than 512 bytes */
282         if (priv_data_len > IETF_MAX_PRIV_DATA_LEN) {
283                 nes_debug(NES_DBG_CM, "The received Length of Private"
284                           " Data field exceeds 512 octets\n");
285                 return -EINVAL;
286         }
287         /*
288          * make sure MPA receiver interoperate with the
289          * received MPA version and MPA key information
290          *
291          */
292         if (mpa_frame->rev != IETF_MPA_V1 && mpa_frame->rev != IETF_MPA_V2) {
293                 nes_debug(NES_DBG_CM, "The received mpa version"
294                           " is not supported\n");
295                 return -EINVAL;
296         }
297         /*
298         * backwards compatibility only
299         */
300         if (mpa_frame->rev > cm_node->mpa_frame_rev) {
301                 nes_debug(NES_DBG_CM, "The received mpa version"
302                         " can not be interoperated\n");
303                 return -EINVAL;
304         } else {
305                 cm_node->mpa_frame_rev = mpa_frame->rev;
306         }
307
308         if (cm_node->state != NES_CM_STATE_MPAREQ_SENT) {
309                 if (memcmp(mpa_frame->key, IEFT_MPA_KEY_REQ, IETF_MPA_KEY_SIZE)) {
310                         nes_debug(NES_DBG_CM, "Unexpected MPA Key received \n");
311                         return -EINVAL;
312                 }
313         } else {
314                 if (memcmp(mpa_frame->key, IEFT_MPA_KEY_REP, IETF_MPA_KEY_SIZE)) {
315                         nes_debug(NES_DBG_CM, "Unexpected MPA Key received \n");
316                         return -EINVAL;
317                 }
318         }
319
320
321         if (priv_data_len + mpa_hdr_len != len) {
322                 nes_debug(NES_DBG_CM, "The received ietf buffer was not right"
323                         " complete (%x + %x != %x)\n",
324                         priv_data_len, mpa_hdr_len, len);
325                 return -EINVAL;
326         }
327         /* make sure it does not exceed the max size */
328         if (len > MAX_CM_BUFFER) {
329                 nes_debug(NES_DBG_CM, "The received ietf buffer was too large"
330                         " (%x + %x != %x)\n",
331                         priv_data_len, mpa_hdr_len, len);
332                 return -EINVAL;
333         }
334
335         cm_node->mpa_frame_size = priv_data_len;
336
337         switch (mpa_frame->rev) {
338         case IETF_MPA_V2: {
339                 u16 ird_size;
340                 u16 ord_size;
341                 mpa_v2_frame = (struct ietf_mpa_v2 *)buffer;
342                 mpa_hdr_len += IETF_RTR_MSG_SIZE;
343                 cm_node->mpa_frame_size -= IETF_RTR_MSG_SIZE;
344                 rtr_msg = &mpa_v2_frame->rtr_msg;
345
346                 /* parse rtr message */
347                 rtr_msg->ctrl_ird = ntohs(rtr_msg->ctrl_ird);
348                 rtr_msg->ctrl_ord = ntohs(rtr_msg->ctrl_ord);
349                 ird_size = rtr_msg->ctrl_ird & IETF_NO_IRD_ORD;
350                 ord_size = rtr_msg->ctrl_ord & IETF_NO_IRD_ORD;
351
352                 if (!(rtr_msg->ctrl_ird & IETF_PEER_TO_PEER)) {
353                         /* send reset */
354                         return -EINVAL;
355                 }
356
357                 if (cm_node->state != NES_CM_STATE_MPAREQ_SENT) {
358                         /* responder */
359                         if (cm_node->ord_size > ird_size)
360                                 cm_node->ord_size = ird_size;
361                 } else {
362                         /* initiator */
363                         if (cm_node->ord_size > ird_size)
364                                 cm_node->ord_size = ird_size;
365
366                         if (cm_node->ird_size < ord_size) {
367                                 /* no resources available */
368                                 /* send terminate message */
369                                 return -EINVAL;
370                         }
371                 }
372
373                 if (rtr_msg->ctrl_ord & IETF_RDMA0_READ) {
374                         cm_node->send_rdma0_op = SEND_RDMA_READ_ZERO;
375                 } else if (rtr_msg->ctrl_ord & IETF_RDMA0_WRITE) {
376                         cm_node->send_rdma0_op = SEND_RDMA_WRITE_ZERO;
377                 } else {        /* Not supported RDMA0 operation */
378                         return -EINVAL;
379                 }
380                 break;
381         }
382         case IETF_MPA_V1:
383         default:
384                 break;
385         }
386
387         /* copy entire MPA frame to our cm_node's frame */
388         memcpy(cm_node->mpa_frame_buf, buffer + mpa_hdr_len, cm_node->mpa_frame_size);
389
390         if (mpa_frame->flags & IETF_MPA_FLAGS_REJECT)
391                 *type = NES_MPA_REQUEST_REJECT;
392         return 0;
393 }
394
395
396 /**
397  * form_cm_frame - get a free packet and build empty frame Use
398  * node info to build.
399  */
400 static void form_cm_frame(struct sk_buff *skb,
401                           struct nes_cm_node *cm_node, void *options, u32 optionsize,
402                           void *data, u32 datasize, u8 flags)
403 {
404         struct tcphdr *tcph;
405         struct iphdr *iph;
406         struct ethhdr *ethh;
407         u8 *buf;
408         u16 packetsize = sizeof(*iph);
409
410         packetsize += sizeof(*tcph);
411         packetsize += optionsize + datasize;
412
413         skb_trim(skb, 0);
414         memset(skb->data, 0x00, ETH_HLEN + sizeof(*iph) + sizeof(*tcph));
415
416         buf = skb_put(skb, packetsize + ETH_HLEN);
417
418         ethh = (struct ethhdr *)buf;
419         buf += ETH_HLEN;
420
421         iph = (struct iphdr *)buf;
422         buf += sizeof(*iph);
423         tcph = (struct tcphdr *)buf;
424         skb_reset_mac_header(skb);
425         skb_set_network_header(skb, ETH_HLEN);
426         skb_set_transport_header(skb, ETH_HLEN + sizeof(*iph));
427         buf += sizeof(*tcph);
428
429         skb->ip_summed = CHECKSUM_PARTIAL;
430         skb->protocol = htons(0x800);
431         skb->data_len = 0;
432         skb->mac_len = ETH_HLEN;
433
434         memcpy(ethh->h_dest, cm_node->rem_mac, ETH_ALEN);
435         memcpy(ethh->h_source, cm_node->loc_mac, ETH_ALEN);
436         ethh->h_proto = htons(0x0800);
437
438         iph->version = IPVERSION;
439         iph->ihl = 5;           /* 5 * 4Byte words, IP headr len */
440         iph->tos = 0;
441         iph->tot_len = htons(packetsize);
442         iph->id = htons(++cm_node->tcp_cntxt.loc_id);
443
444         iph->frag_off = htons(0x4000);
445         iph->ttl = 0x40;
446         iph->protocol = 0x06;   /* IPPROTO_TCP */
447
448         iph->saddr = htonl(cm_node->loc_addr);
449         iph->daddr = htonl(cm_node->rem_addr);
450
451         tcph->source = htons(cm_node->loc_port);
452         tcph->dest = htons(cm_node->rem_port);
453         tcph->seq = htonl(cm_node->tcp_cntxt.loc_seq_num);
454
455         if (flags & SET_ACK) {
456                 cm_node->tcp_cntxt.loc_ack_num = cm_node->tcp_cntxt.rcv_nxt;
457                 tcph->ack_seq = htonl(cm_node->tcp_cntxt.loc_ack_num);
458                 tcph->ack = 1;
459         } else {
460                 tcph->ack_seq = 0;
461         }
462
463         if (flags & SET_SYN) {
464                 cm_node->tcp_cntxt.loc_seq_num++;
465                 tcph->syn = 1;
466         } else {
467                 cm_node->tcp_cntxt.loc_seq_num += datasize;
468         }
469
470         if (flags & SET_FIN) {
471                 cm_node->tcp_cntxt.loc_seq_num++;
472                 tcph->fin = 1;
473         }
474
475         if (flags & SET_RST)
476                 tcph->rst = 1;
477
478         tcph->doff = (u16)((sizeof(*tcph) + optionsize + 3) >> 2);
479         tcph->window = htons(cm_node->tcp_cntxt.rcv_wnd);
480         tcph->urg_ptr = 0;
481         if (optionsize)
482                 memcpy(buf, options, optionsize);
483         buf += optionsize;
484         if (datasize)
485                 memcpy(buf, data, datasize);
486
487         skb_shinfo(skb)->nr_frags = 0;
488         cm_packets_created++;
489 }
490
491 /**
492  * print_core - dump a cm core
493  */
494 static void print_core(struct nes_cm_core *core)
495 {
496         nes_debug(NES_DBG_CM, "---------------------------------------------\n");
497         nes_debug(NES_DBG_CM, "CM Core  -- (core = %p )\n", core);
498         if (!core)
499                 return;
500         nes_debug(NES_DBG_CM, "---------------------------------------------\n");
501
502         nes_debug(NES_DBG_CM, "State         : %u \n", core->state);
503
504         nes_debug(NES_DBG_CM, "Listen Nodes  : %u \n", atomic_read(&core->listen_node_cnt));
505         nes_debug(NES_DBG_CM, "Active Nodes  : %u \n", atomic_read(&core->node_cnt));
506
507         nes_debug(NES_DBG_CM, "core          : %p \n", core);
508
509         nes_debug(NES_DBG_CM, "-------------- end core ---------------\n");
510 }
511
512 /**
513  * cm_build_mpa_frame - build a MPA V1 frame or MPA V2 frame
514  */
515 static int cm_build_mpa_frame(struct nes_cm_node *cm_node, u8 **start_buff,
516                               u16 *buff_len, u8 *pci_mem, u8 mpa_key)
517 {
518         int ret = 0;
519
520         *start_buff = (pci_mem) ? pci_mem : &cm_node->mpa_frame_buf[0];
521
522         switch (cm_node->mpa_frame_rev) {
523         case IETF_MPA_V1:
524                 *start_buff = (u8 *)*start_buff + sizeof(struct ietf_rtr_msg);
525                 *buff_len = sizeof(struct ietf_mpa_v1) + cm_node->mpa_frame_size;
526                 build_mpa_v1(cm_node, *start_buff, mpa_key);
527                 break;
528         case IETF_MPA_V2:
529                 *buff_len = sizeof(struct ietf_mpa_v2) + cm_node->mpa_frame_size;
530                 build_mpa_v2(cm_node, *start_buff, mpa_key);
531                 break;
532         default:
533                 ret = -EINVAL;
534         }
535         return ret;
536 }
537
538 /**
539  * build_mpa_v2 - build a MPA V2 frame
540  */
541 static void build_mpa_v2(struct nes_cm_node *cm_node,
542                          void *start_addr, u8 mpa_key)
543 {
544         struct ietf_mpa_v2 *mpa_frame = (struct ietf_mpa_v2 *)start_addr;
545         struct ietf_rtr_msg *rtr_msg = &mpa_frame->rtr_msg;
546
547         /* initialize the upper 5 bytes of the frame */
548         build_mpa_v1(cm_node, start_addr, mpa_key);
549         mpa_frame->flags |= IETF_MPA_V2_FLAG; /* set a bit to indicate MPA V2 */
550         mpa_frame->priv_data_len += htons(IETF_RTR_MSG_SIZE);
551
552         /* initialize RTR msg */
553         rtr_msg->ctrl_ird = (cm_node->ird_size > IETF_NO_IRD_ORD) ?
554                             IETF_NO_IRD_ORD : cm_node->ird_size;
555         rtr_msg->ctrl_ord = (cm_node->ord_size > IETF_NO_IRD_ORD) ?
556                             IETF_NO_IRD_ORD : cm_node->ord_size;
557
558         rtr_msg->ctrl_ird |= IETF_PEER_TO_PEER;
559         rtr_msg->ctrl_ird |= IETF_FLPDU_ZERO_LEN;
560
561         switch (mpa_key) {
562         case MPA_KEY_REQUEST:
563                 rtr_msg->ctrl_ord |= IETF_RDMA0_WRITE;
564                 rtr_msg->ctrl_ord |= IETF_RDMA0_READ;
565                 break;
566         case MPA_KEY_REPLY:
567                 switch (cm_node->send_rdma0_op) {
568                 case SEND_RDMA_WRITE_ZERO:
569                         rtr_msg->ctrl_ord |= IETF_RDMA0_WRITE;
570                         break;
571                 case SEND_RDMA_READ_ZERO:
572                         rtr_msg->ctrl_ord |= IETF_RDMA0_READ;
573                         break;
574                 }
575         }
576         rtr_msg->ctrl_ird = htons(rtr_msg->ctrl_ird);
577         rtr_msg->ctrl_ord = htons(rtr_msg->ctrl_ord);
578 }
579
580 /**
581  * build_mpa_v1 - build a MPA V1 frame
582  */
583 static void build_mpa_v1(struct nes_cm_node *cm_node, void *start_addr, u8 mpa_key)
584 {
585         struct ietf_mpa_v1 *mpa_frame = (struct ietf_mpa_v1 *)start_addr;
586
587         switch (mpa_key) {
588         case MPA_KEY_REQUEST:
589                 memcpy(mpa_frame->key, IEFT_MPA_KEY_REQ, IETF_MPA_KEY_SIZE);
590                 break;
591         case MPA_KEY_REPLY:
592                 memcpy(mpa_frame->key, IEFT_MPA_KEY_REP, IETF_MPA_KEY_SIZE);
593                 break;
594         }
595         mpa_frame->flags = IETF_MPA_FLAGS_CRC;
596         mpa_frame->rev = cm_node->mpa_frame_rev;
597         mpa_frame->priv_data_len = htons(cm_node->mpa_frame_size);
598 }
599
600 static void build_rdma0_msg(struct nes_cm_node *cm_node, struct nes_qp **nesqp_addr)
601 {
602         u64 u64temp;
603         struct nes_qp *nesqp = *nesqp_addr;
604         struct nes_hw_qp_wqe *wqe = &nesqp->hwqp.sq_vbase[0];
605
606         u64temp = (unsigned long)nesqp;
607         u64temp |= NES_SW_CONTEXT_ALIGN >> 1;
608         set_wqe_64bit_value(wqe->wqe_words, NES_IWARP_SQ_WQE_COMP_CTX_LOW_IDX, u64temp);
609
610         wqe->wqe_words[NES_IWARP_SQ_WQE_FRAG0_LOW_IDX] = 0;
611         wqe->wqe_words[NES_IWARP_SQ_WQE_FRAG0_HIGH_IDX] = 0;
612
613         switch (cm_node->send_rdma0_op) {
614         case SEND_RDMA_WRITE_ZERO:
615                 nes_debug(NES_DBG_CM, "Sending first write.\n");
616                 wqe->wqe_words[NES_IWARP_SQ_WQE_MISC_IDX] =
617                         cpu_to_le32(NES_IWARP_SQ_OP_RDMAW);
618                 wqe->wqe_words[NES_IWARP_SQ_WQE_TOTAL_PAYLOAD_IDX] = 0;
619                 wqe->wqe_words[NES_IWARP_SQ_WQE_LENGTH0_IDX] = 0;
620                 wqe->wqe_words[NES_IWARP_SQ_WQE_STAG0_IDX] = 0;
621                 break;
622
623         case SEND_RDMA_READ_ZERO:
624         default:
625                 if (cm_node->send_rdma0_op != SEND_RDMA_READ_ZERO) {
626                         printk(KERN_ERR "%s[%u]: Unsupported RDMA0 len operation=%u\n",
627                                  __func__, __LINE__, cm_node->send_rdma0_op);
628                         WARN_ON(1);
629                 }
630                 nes_debug(NES_DBG_CM, "Sending first rdma operation.\n");
631                 wqe->wqe_words[NES_IWARP_SQ_WQE_MISC_IDX] =
632                         cpu_to_le32(NES_IWARP_SQ_OP_RDMAR);
633                 wqe->wqe_words[NES_IWARP_SQ_WQE_RDMA_TO_LOW_IDX] = 1;
634                 wqe->wqe_words[NES_IWARP_SQ_WQE_RDMA_TO_HIGH_IDX] = 0;
635                 wqe->wqe_words[NES_IWARP_SQ_WQE_RDMA_LENGTH_IDX] = 0;
636                 wqe->wqe_words[NES_IWARP_SQ_WQE_RDMA_STAG_IDX] = 1;
637                 wqe->wqe_words[NES_IWARP_SQ_WQE_STAG0_IDX] = 1;
638                 break;
639         }
640
641         if (nesqp->sq_kmapped) {
642                 nesqp->sq_kmapped = 0;
643                 kunmap(nesqp->page);
644         }
645
646         /*use the reserved spot on the WQ for the extra first WQE*/
647         nesqp->nesqp_context->ird_ord_sizes &= cpu_to_le32(~(NES_QPCONTEXT_ORDIRD_LSMM_PRESENT |
648                                                              NES_QPCONTEXT_ORDIRD_WRPDU |
649                                                              NES_QPCONTEXT_ORDIRD_ALSMM));
650         nesqp->skip_lsmm = 1;
651         nesqp->hwqp.sq_tail = 0;
652 }
653
654 /**
655  * schedule_nes_timer
656  * note - cm_node needs to be protected before calling this. Encase in:
657  *                      rem_ref_cm_node(cm_core, cm_node);add_ref_cm_node(cm_node);
658  */
659 int schedule_nes_timer(struct nes_cm_node *cm_node, struct sk_buff *skb,
660                        enum nes_timer_type type, int send_retrans,
661                        int close_when_complete)
662 {
663         unsigned long flags;
664         struct nes_cm_core *cm_core = cm_node->cm_core;
665         struct nes_timer_entry *new_send;
666         int ret = 0;
667         u32 was_timer_set;
668
669         new_send = kzalloc(sizeof(*new_send), GFP_ATOMIC);
670         if (!new_send)
671                 return -ENOMEM;
672
673         /* new_send->timetosend = currenttime */
674         new_send->retrycount = NES_DEFAULT_RETRYS;
675         new_send->retranscount = NES_DEFAULT_RETRANS;
676         new_send->skb = skb;
677         new_send->timetosend = jiffies;
678         new_send->type = type;
679         new_send->netdev = cm_node->netdev;
680         new_send->send_retrans = send_retrans;
681         new_send->close_when_complete = close_when_complete;
682
683         if (type == NES_TIMER_TYPE_CLOSE) {
684                 new_send->timetosend += (HZ / 10);
685                 if (cm_node->recv_entry) {
686                         kfree(new_send);
687                         WARN_ON(1);
688                         return -EINVAL;
689                 }
690                 cm_node->recv_entry = new_send;
691         }
692
693         if (type == NES_TIMER_TYPE_SEND) {
694                 new_send->seq_num = ntohl(tcp_hdr(skb)->seq);
695                 atomic_inc(&new_send->skb->users);
696                 spin_lock_irqsave(&cm_node->retrans_list_lock, flags);
697                 cm_node->send_entry = new_send;
698                 add_ref_cm_node(cm_node);
699                 spin_unlock_irqrestore(&cm_node->retrans_list_lock, flags);
700                 new_send->timetosend = jiffies + NES_RETRY_TIMEOUT;
701
702                 ret = nes_nic_cm_xmit(new_send->skb, cm_node->netdev);
703                 if (ret != NETDEV_TX_OK) {
704                         nes_debug(NES_DBG_CM, "Error sending packet %p "
705                                   "(jiffies = %lu)\n", new_send, jiffies);
706                         new_send->timetosend = jiffies;
707                         ret = NETDEV_TX_OK;
708                 } else {
709                         cm_packets_sent++;
710                         if (!send_retrans) {
711                                 cleanup_retrans_entry(cm_node);
712                                 if (close_when_complete)
713                                         rem_ref_cm_node(cm_core, cm_node);
714                                 return ret;
715                         }
716                 }
717         }
718
719         was_timer_set = timer_pending(&cm_core->tcp_timer);
720
721         if (!was_timer_set) {
722                 cm_core->tcp_timer.expires = new_send->timetosend;
723                 add_timer(&cm_core->tcp_timer);
724         }
725
726         return ret;
727 }
728
729 static void nes_retrans_expired(struct nes_cm_node *cm_node)
730 {
731         struct iw_cm_id *cm_id = cm_node->cm_id;
732         enum nes_cm_node_state state = cm_node->state;
733         cm_node->state = NES_CM_STATE_CLOSED;
734
735         switch (state) {
736         case NES_CM_STATE_SYN_RCVD:
737         case NES_CM_STATE_CLOSING:
738                 rem_ref_cm_node(cm_node->cm_core, cm_node);
739                 break;
740         case NES_CM_STATE_LAST_ACK:
741         case NES_CM_STATE_FIN_WAIT1:
742                 if (cm_node->cm_id)
743                         cm_id->rem_ref(cm_id);
744                 send_reset(cm_node, NULL);
745                 break;
746         default:
747                 add_ref_cm_node(cm_node);
748                 send_reset(cm_node, NULL);
749                 create_event(cm_node, NES_CM_EVENT_ABORTED);
750         }
751 }
752
753 static void handle_recv_entry(struct nes_cm_node *cm_node, u32 rem_node)
754 {
755         struct nes_timer_entry *recv_entry = cm_node->recv_entry;
756         struct iw_cm_id *cm_id = cm_node->cm_id;
757         struct nes_qp *nesqp;
758         unsigned long qplockflags;
759
760         if (!recv_entry)
761                 return;
762         nesqp = (struct nes_qp *)recv_entry->skb;
763         if (nesqp) {
764                 spin_lock_irqsave(&nesqp->lock, qplockflags);
765                 if (nesqp->cm_id) {
766                         nes_debug(NES_DBG_CM, "QP%u: cm_id = %p, "
767                                   "refcount = %d: HIT A "
768                                   "NES_TIMER_TYPE_CLOSE with something "
769                                   "to do!!!\n", nesqp->hwqp.qp_id, cm_id,
770                                   atomic_read(&nesqp->refcount));
771                         nesqp->hw_tcp_state = NES_AEQE_TCP_STATE_CLOSED;
772                         nesqp->last_aeq = NES_AEQE_AEID_RESET_SENT;
773                         nesqp->ibqp_state = IB_QPS_ERR;
774                         spin_unlock_irqrestore(&nesqp->lock, qplockflags);
775                         nes_cm_disconn(nesqp);
776                 } else {
777                         spin_unlock_irqrestore(&nesqp->lock, qplockflags);
778                         nes_debug(NES_DBG_CM, "QP%u: cm_id = %p, "
779                                   "refcount = %d: HIT A "
780                                   "NES_TIMER_TYPE_CLOSE with nothing "
781                                   "to do!!!\n", nesqp->hwqp.qp_id, cm_id,
782                                   atomic_read(&nesqp->refcount));
783                 }
784         } else if (rem_node) {
785                 /* TIME_WAIT state */
786                 rem_ref_cm_node(cm_node->cm_core, cm_node);
787         }
788         if (cm_node->cm_id)
789                 cm_id->rem_ref(cm_id);
790         kfree(recv_entry);
791         cm_node->recv_entry = NULL;
792 }
793
794 /**
795  * nes_cm_timer_tick
796  */
797 static void nes_cm_timer_tick(unsigned long pass)
798 {
799         unsigned long flags;
800         unsigned long nexttimeout = jiffies + NES_LONG_TIME;
801         struct nes_cm_node *cm_node;
802         struct nes_timer_entry *send_entry, *recv_entry;
803         struct list_head *list_core_temp;
804         struct list_head *list_node;
805         struct nes_cm_core *cm_core = g_cm_core;
806         u32 settimer = 0;
807         unsigned long timetosend;
808         int ret = NETDEV_TX_OK;
809
810         struct list_head timer_list;
811
812         INIT_LIST_HEAD(&timer_list);
813         spin_lock_irqsave(&cm_core->ht_lock, flags);
814
815         list_for_each_safe(list_node, list_core_temp,
816                            &cm_core->connected_nodes) {
817                 cm_node = container_of(list_node, struct nes_cm_node, list);
818                 if ((cm_node->recv_entry) || (cm_node->send_entry)) {
819                         add_ref_cm_node(cm_node);
820                         list_add(&cm_node->timer_entry, &timer_list);
821                 }
822         }
823         spin_unlock_irqrestore(&cm_core->ht_lock, flags);
824
825         list_for_each_safe(list_node, list_core_temp, &timer_list) {
826                 cm_node = container_of(list_node, struct nes_cm_node,
827                                        timer_entry);
828                 recv_entry = cm_node->recv_entry;
829
830                 if (recv_entry) {
831                         if (time_after(recv_entry->timetosend, jiffies)) {
832                                 if (nexttimeout > recv_entry->timetosend ||
833                                     !settimer) {
834                                         nexttimeout = recv_entry->timetosend;
835                                         settimer = 1;
836                                 }
837                         } else {
838                                 handle_recv_entry(cm_node, 1);
839                         }
840                 }
841
842                 spin_lock_irqsave(&cm_node->retrans_list_lock, flags);
843                 do {
844                         send_entry = cm_node->send_entry;
845                         if (!send_entry)
846                                 break;
847                         if (time_after(send_entry->timetosend, jiffies)) {
848                                 if (cm_node->state != NES_CM_STATE_TSA) {
849                                         if ((nexttimeout >
850                                              send_entry->timetosend) ||
851                                             !settimer) {
852                                                 nexttimeout =
853                                                         send_entry->timetosend;
854                                                 settimer = 1;
855                                         }
856                                 } else {
857                                         free_retrans_entry(cm_node);
858                                 }
859                                 break;
860                         }
861
862                         if ((cm_node->state == NES_CM_STATE_TSA) ||
863                             (cm_node->state == NES_CM_STATE_CLOSED)) {
864                                 free_retrans_entry(cm_node);
865                                 break;
866                         }
867
868                         if (!send_entry->retranscount ||
869                             !send_entry->retrycount) {
870                                 cm_packets_dropped++;
871                                 free_retrans_entry(cm_node);
872
873                                 spin_unlock_irqrestore(
874                                         &cm_node->retrans_list_lock, flags);
875                                 nes_retrans_expired(cm_node);
876                                 cm_node->state = NES_CM_STATE_CLOSED;
877                                 spin_lock_irqsave(&cm_node->retrans_list_lock,
878                                                   flags);
879                                 break;
880                         }
881                         atomic_inc(&send_entry->skb->users);
882                         cm_packets_retrans++;
883                         nes_debug(NES_DBG_CM, "Retransmitting send_entry %p "
884                                   "for node %p, jiffies = %lu, time to send = "
885                                   "%lu, retranscount = %u, send_entry->seq_num = "
886                                   "0x%08X, cm_node->tcp_cntxt.rem_ack_num = "
887                                   "0x%08X\n", send_entry, cm_node, jiffies,
888                                   send_entry->timetosend,
889                                   send_entry->retranscount,
890                                   send_entry->seq_num,
891                                   cm_node->tcp_cntxt.rem_ack_num);
892
893                         spin_unlock_irqrestore(&cm_node->retrans_list_lock,
894                                                flags);
895                         ret = nes_nic_cm_xmit(send_entry->skb, cm_node->netdev);
896                         spin_lock_irqsave(&cm_node->retrans_list_lock, flags);
897                         if (ret != NETDEV_TX_OK) {
898                                 nes_debug(NES_DBG_CM, "rexmit failed for "
899                                           "node=%p\n", cm_node);
900                                 cm_packets_bounced++;
901                                 send_entry->retrycount--;
902                                 nexttimeout = jiffies + NES_SHORT_TIME;
903                                 settimer = 1;
904                                 break;
905                         } else {
906                                 cm_packets_sent++;
907                         }
908                         nes_debug(NES_DBG_CM, "Packet Sent: retrans count = "
909                                   "%u, retry count = %u.\n",
910                                   send_entry->retranscount,
911                                   send_entry->retrycount);
912                         if (send_entry->send_retrans) {
913                                 send_entry->retranscount--;
914                                 timetosend = (NES_RETRY_TIMEOUT <<
915                                               (NES_DEFAULT_RETRANS - send_entry->retranscount));
916
917                                 send_entry->timetosend = jiffies +
918                                                          min(timetosend, NES_MAX_TIMEOUT);
919                                 if (nexttimeout > send_entry->timetosend ||
920                                     !settimer) {
921                                         nexttimeout = send_entry->timetosend;
922                                         settimer = 1;
923                                 }
924                         } else {
925                                 int close_when_complete;
926                                 close_when_complete =
927                                         send_entry->close_when_complete;
928                                 nes_debug(NES_DBG_CM, "cm_node=%p state=%d\n",
929                                           cm_node, cm_node->state);
930                                 free_retrans_entry(cm_node);
931                                 if (close_when_complete)
932                                         rem_ref_cm_node(cm_node->cm_core,
933                                                         cm_node);
934                         }
935                 } while (0);
936
937                 spin_unlock_irqrestore(&cm_node->retrans_list_lock, flags);
938                 rem_ref_cm_node(cm_node->cm_core, cm_node);
939         }
940
941         if (settimer) {
942                 if (!timer_pending(&cm_core->tcp_timer)) {
943                         cm_core->tcp_timer.expires = nexttimeout;
944                         add_timer(&cm_core->tcp_timer);
945                 }
946         }
947 }
948
949
950 /**
951  * send_syn
952  */
953 static int send_syn(struct nes_cm_node *cm_node, u32 sendack,
954                     struct sk_buff *skb)
955 {
956         int ret;
957         int flags = SET_SYN;
958         char optionsbuffer[sizeof(struct option_mss) +
959                            sizeof(struct option_windowscale) + sizeof(struct option_base) +
960                            TCP_OPTIONS_PADDING];
961
962         int optionssize = 0;
963         /* Sending MSS option */
964         union all_known_options *options;
965
966         if (!cm_node)
967                 return -EINVAL;
968
969         options = (union all_known_options *)&optionsbuffer[optionssize];
970         options->as_mss.optionnum = OPTION_NUMBER_MSS;
971         options->as_mss.length = sizeof(struct option_mss);
972         options->as_mss.mss = htons(cm_node->tcp_cntxt.mss);
973         optionssize += sizeof(struct option_mss);
974
975         options = (union all_known_options *)&optionsbuffer[optionssize];
976         options->as_windowscale.optionnum = OPTION_NUMBER_WINDOW_SCALE;
977         options->as_windowscale.length = sizeof(struct option_windowscale);
978         options->as_windowscale.shiftcount = cm_node->tcp_cntxt.rcv_wscale;
979         optionssize += sizeof(struct option_windowscale);
980
981         if (sendack && !(NES_DRV_OPT_SUPRESS_OPTION_BC & nes_drv_opt)) {
982                 options = (union all_known_options *)&optionsbuffer[optionssize];
983                 options->as_base.optionnum = OPTION_NUMBER_WRITE0;
984                 options->as_base.length = sizeof(struct option_base);
985                 optionssize += sizeof(struct option_base);
986                 /* we need the size to be a multiple of 4 */
987                 options = (union all_known_options *)&optionsbuffer[optionssize];
988                 options->as_end = 1;
989                 optionssize += 1;
990                 options = (union all_known_options *)&optionsbuffer[optionssize];
991                 options->as_end = 1;
992                 optionssize += 1;
993         }
994
995         options = (union all_known_options *)&optionsbuffer[optionssize];
996         options->as_end = OPTION_NUMBER_END;
997         optionssize += 1;
998
999         if (!skb)
1000                 skb = dev_alloc_skb(MAX_CM_BUFFER);
1001         if (!skb) {
1002                 nes_debug(NES_DBG_CM, "Failed to get a Free pkt\n");
1003                 return -1;
1004         }
1005
1006         if (sendack)
1007                 flags |= SET_ACK;
1008
1009         form_cm_frame(skb, cm_node, optionsbuffer, optionssize, NULL, 0, flags);
1010         ret = schedule_nes_timer(cm_node, skb, NES_TIMER_TYPE_SEND, 1, 0);
1011
1012         return ret;
1013 }
1014
1015
1016 /**
1017  * send_reset
1018  */
1019 static int send_reset(struct nes_cm_node *cm_node, struct sk_buff *skb)
1020 {
1021         int ret;
1022         int flags = SET_RST | SET_ACK;
1023
1024         if (!skb)
1025                 skb = dev_alloc_skb(MAX_CM_BUFFER);
1026         if (!skb) {
1027                 nes_debug(NES_DBG_CM, "Failed to get a Free pkt\n");
1028                 return -ENOMEM;
1029         }
1030
1031         form_cm_frame(skb, cm_node, NULL, 0, NULL, 0, flags);
1032         ret = schedule_nes_timer(cm_node, skb, NES_TIMER_TYPE_SEND, 0, 1);
1033
1034         return ret;
1035 }
1036
1037
1038 /**
1039  * send_ack
1040  */
1041 static int send_ack(struct nes_cm_node *cm_node, struct sk_buff *skb)
1042 {
1043         int ret;
1044
1045         if (!skb)
1046                 skb = dev_alloc_skb(MAX_CM_BUFFER);
1047
1048         if (!skb) {
1049                 nes_debug(NES_DBG_CM, "Failed to get a Free pkt\n");
1050                 return -1;
1051         }
1052
1053         form_cm_frame(skb, cm_node, NULL, 0, NULL, 0, SET_ACK);
1054         ret = schedule_nes_timer(cm_node, skb, NES_TIMER_TYPE_SEND, 0, 0);
1055
1056         return ret;
1057 }
1058
1059
1060 /**
1061  * send_fin
1062  */
1063 static int send_fin(struct nes_cm_node *cm_node, struct sk_buff *skb)
1064 {
1065         int ret;
1066
1067         /* if we didn't get a frame get one */
1068         if (!skb)
1069                 skb = dev_alloc_skb(MAX_CM_BUFFER);
1070
1071         if (!skb) {
1072                 nes_debug(NES_DBG_CM, "Failed to get a Free pkt\n");
1073                 return -1;
1074         }
1075
1076         form_cm_frame(skb, cm_node, NULL, 0, NULL, 0, SET_ACK | SET_FIN);
1077         ret = schedule_nes_timer(cm_node, skb, NES_TIMER_TYPE_SEND, 1, 0);
1078
1079         return ret;
1080 }
1081
1082
1083 /**
1084  * find_node - find a cm node that matches the reference cm node
1085  */
1086 static struct nes_cm_node *find_node(struct nes_cm_core *cm_core,
1087                                      u16 rem_port, nes_addr_t rem_addr, u16 loc_port, nes_addr_t loc_addr)
1088 {
1089         unsigned long flags;
1090         struct list_head *hte;
1091         struct nes_cm_node *cm_node;
1092
1093         /* get a handle on the hte */
1094         hte = &cm_core->connected_nodes;
1095
1096         /* walk list and find cm_node associated with this session ID */
1097         spin_lock_irqsave(&cm_core->ht_lock, flags);
1098         list_for_each_entry(cm_node, hte, list) {
1099                 /* compare quad, return node handle if a match */
1100                 nes_debug(NES_DBG_CM, "finding node %x:%x =? %x:%x ^ %x:%x =? %x:%x\n",
1101                           cm_node->loc_addr, cm_node->loc_port,
1102                           loc_addr, loc_port,
1103                           cm_node->rem_addr, cm_node->rem_port,
1104                           rem_addr, rem_port);
1105                 if ((cm_node->loc_addr == loc_addr) && (cm_node->loc_port == loc_port) &&
1106                     (cm_node->rem_addr == rem_addr) && (cm_node->rem_port == rem_port)) {
1107                         add_ref_cm_node(cm_node);
1108                         spin_unlock_irqrestore(&cm_core->ht_lock, flags);
1109                         return cm_node;
1110                 }
1111         }
1112         spin_unlock_irqrestore(&cm_core->ht_lock, flags);
1113
1114         /* no owner node */
1115         return NULL;
1116 }
1117
1118
1119 /**
1120  * find_listener - find a cm node listening on this addr-port pair
1121  */
1122 static struct nes_cm_listener *find_listener(struct nes_cm_core *cm_core,
1123                                              nes_addr_t dst_addr, u16 dst_port, enum nes_cm_listener_state listener_state)
1124 {
1125         unsigned long flags;
1126         struct nes_cm_listener *listen_node;
1127
1128         /* walk list and find cm_node associated with this session ID */
1129         spin_lock_irqsave(&cm_core->listen_list_lock, flags);
1130         list_for_each_entry(listen_node, &cm_core->listen_list.list, list) {
1131                 /* compare node pair, return node handle if a match */
1132                 if (((listen_node->loc_addr == dst_addr) ||
1133                      listen_node->loc_addr == 0x00000000) &&
1134                     (listen_node->loc_port == dst_port) &&
1135                     (listener_state & listen_node->listener_state)) {
1136                         atomic_inc(&listen_node->ref_count);
1137                         spin_unlock_irqrestore(&cm_core->listen_list_lock, flags);
1138                         return listen_node;
1139                 }
1140         }
1141         spin_unlock_irqrestore(&cm_core->listen_list_lock, flags);
1142
1143         /* no listener */
1144         return NULL;
1145 }
1146
1147
1148 /**
1149  * add_hte_node - add a cm node to the hash table
1150  */
1151 static int add_hte_node(struct nes_cm_core *cm_core, struct nes_cm_node *cm_node)
1152 {
1153         unsigned long flags;
1154         struct list_head *hte;
1155
1156         if (!cm_node || !cm_core)
1157                 return -EINVAL;
1158
1159         nes_debug(NES_DBG_CM, "Adding Node %p to Active Connection HT\n",
1160                   cm_node);
1161
1162         spin_lock_irqsave(&cm_core->ht_lock, flags);
1163
1164         /* get a handle on the hash table element (list head for this slot) */
1165         hte = &cm_core->connected_nodes;
1166         list_add_tail(&cm_node->list, hte);
1167         atomic_inc(&cm_core->ht_node_cnt);
1168
1169         spin_unlock_irqrestore(&cm_core->ht_lock, flags);
1170
1171         return 0;
1172 }
1173
1174
1175 /**
1176  * mini_cm_dec_refcnt_listen
1177  */
1178 static int mini_cm_dec_refcnt_listen(struct nes_cm_core *cm_core,
1179                                      struct nes_cm_listener *listener, int free_hanging_nodes)
1180 {
1181         int ret = -EINVAL;
1182         int err = 0;
1183         unsigned long flags;
1184         struct list_head *list_pos = NULL;
1185         struct list_head *list_temp = NULL;
1186         struct nes_cm_node *cm_node = NULL;
1187         struct list_head reset_list;
1188
1189         nes_debug(NES_DBG_CM, "attempting listener= %p free_nodes= %d, "
1190                   "refcnt=%d\n", listener, free_hanging_nodes,
1191                   atomic_read(&listener->ref_count));
1192         /* free non-accelerated child nodes for this listener */
1193         INIT_LIST_HEAD(&reset_list);
1194         if (free_hanging_nodes) {
1195                 spin_lock_irqsave(&cm_core->ht_lock, flags);
1196                 list_for_each_safe(list_pos, list_temp,
1197                                    &g_cm_core->connected_nodes) {
1198                         cm_node = container_of(list_pos, struct nes_cm_node,
1199                                                list);
1200                         if ((cm_node->listener == listener) &&
1201                             (!cm_node->accelerated)) {
1202                                 add_ref_cm_node(cm_node);
1203                                 list_add(&cm_node->reset_entry, &reset_list);
1204                         }
1205                 }
1206                 spin_unlock_irqrestore(&cm_core->ht_lock, flags);
1207         }
1208
1209         list_for_each_safe(list_pos, list_temp, &reset_list) {
1210                 cm_node = container_of(list_pos, struct nes_cm_node,
1211                                        reset_entry);
1212                 {
1213                         struct nes_cm_node *loopback = cm_node->loopbackpartner;
1214                         enum nes_cm_node_state old_state;
1215                         if (NES_CM_STATE_FIN_WAIT1 <= cm_node->state) {
1216                                 rem_ref_cm_node(cm_node->cm_core, cm_node);
1217                         } else {
1218                                 if (!loopback) {
1219                                         cleanup_retrans_entry(cm_node);
1220                                         err = send_reset(cm_node, NULL);
1221                                         if (err) {
1222                                                 cm_node->state =
1223                                                         NES_CM_STATE_CLOSED;
1224                                                 WARN_ON(1);
1225                                         } else {
1226                                                 old_state = cm_node->state;
1227                                                 cm_node->state = NES_CM_STATE_LISTENER_DESTROYED;
1228                                                 if (old_state != NES_CM_STATE_MPAREQ_RCVD)
1229                                                         rem_ref_cm_node(
1230                                                                 cm_node->cm_core,
1231                                                                 cm_node);
1232                                         }
1233                                 } else {
1234                                         struct nes_cm_event event;
1235
1236                                         event.cm_node = loopback;
1237                                         event.cm_info.rem_addr =
1238                                                         loopback->rem_addr;
1239                                         event.cm_info.loc_addr =
1240                                                         loopback->loc_addr;
1241                                         event.cm_info.rem_port =
1242                                                         loopback->rem_port;
1243                                         event.cm_info.loc_port =
1244                                                          loopback->loc_port;
1245                                         event.cm_info.cm_id = loopback->cm_id;
1246                                         add_ref_cm_node(loopback);
1247                                         loopback->state = NES_CM_STATE_CLOSED;
1248                                         cm_event_connect_error(&event);
1249                                         cm_node->state = NES_CM_STATE_LISTENER_DESTROYED;
1250
1251                                         rem_ref_cm_node(cm_node->cm_core,
1252                                                          cm_node);
1253
1254                                 }
1255                         }
1256                 }
1257         }
1258
1259         spin_lock_irqsave(&cm_core->listen_list_lock, flags);
1260         if (!atomic_dec_return(&listener->ref_count)) {
1261                 list_del(&listener->list);
1262
1263                 /* decrement our listen node count */
1264                 atomic_dec(&cm_core->listen_node_cnt);
1265
1266                 spin_unlock_irqrestore(&cm_core->listen_list_lock, flags);
1267
1268                 if (listener->nesvnic)
1269                         nes_manage_apbvt(listener->nesvnic, listener->loc_port,
1270                                          PCI_FUNC(listener->nesvnic->nesdev->pcidev->devfn), NES_MANAGE_APBVT_DEL);
1271
1272                 nes_debug(NES_DBG_CM, "destroying listener (%p)\n", listener);
1273
1274                 kfree(listener);
1275                 listener = NULL;
1276                 ret = 0;
1277                 atomic_inc(&cm_listens_destroyed);
1278         } else {
1279                 spin_unlock_irqrestore(&cm_core->listen_list_lock, flags);
1280         }
1281         if (listener) {
1282                 if (atomic_read(&listener->pend_accepts_cnt) > 0)
1283                         nes_debug(NES_DBG_CM, "destroying listener (%p)"
1284                                   " with non-zero pending accepts=%u\n",
1285                                   listener, atomic_read(&listener->pend_accepts_cnt));
1286         }
1287
1288         return ret;
1289 }
1290
1291
1292 /**
1293  * mini_cm_del_listen
1294  */
1295 static int mini_cm_del_listen(struct nes_cm_core *cm_core,
1296                               struct nes_cm_listener *listener)
1297 {
1298         listener->listener_state = NES_CM_LISTENER_PASSIVE_STATE;
1299         listener->cm_id = NULL; /* going to be destroyed pretty soon */
1300         return mini_cm_dec_refcnt_listen(cm_core, listener, 1);
1301 }
1302
1303
1304 /**
1305  * mini_cm_accelerated
1306  */
1307 static inline int mini_cm_accelerated(struct nes_cm_core *cm_core,
1308                                       struct nes_cm_node *cm_node)
1309 {
1310         u32 was_timer_set;
1311
1312         cm_node->accelerated = 1;
1313
1314         if (cm_node->accept_pend) {
1315                 BUG_ON(!cm_node->listener);
1316                 atomic_dec(&cm_node->listener->pend_accepts_cnt);
1317                 cm_node->accept_pend = 0;
1318                 BUG_ON(atomic_read(&cm_node->listener->pend_accepts_cnt) < 0);
1319         }
1320
1321         was_timer_set = timer_pending(&cm_core->tcp_timer);
1322         if (!was_timer_set) {
1323                 cm_core->tcp_timer.expires = jiffies + NES_SHORT_TIME;
1324                 add_timer(&cm_core->tcp_timer);
1325         }
1326
1327         return 0;
1328 }
1329
1330
1331 /**
1332  * nes_addr_resolve_neigh
1333  */
1334 static int nes_addr_resolve_neigh(struct nes_vnic *nesvnic, u32 dst_ip, int arpindex)
1335 {
1336         struct rtable *rt;
1337         struct neighbour *neigh;
1338         int rc = arpindex;
1339         struct net_device *netdev;
1340         struct nes_adapter *nesadapter = nesvnic->nesdev->nesadapter;
1341
1342         rt = ip_route_output(&init_net, htonl(dst_ip), 0, 0, 0);
1343         if (IS_ERR(rt)) {
1344                 printk(KERN_ERR "%s: ip_route_output_key failed for 0x%08X\n",
1345                        __func__, dst_ip);
1346                 return rc;
1347         }
1348
1349         if (netif_is_bond_slave(nesvnic->netdev))
1350                 netdev = nesvnic->netdev->master;
1351         else
1352                 netdev = nesvnic->netdev;
1353
1354         rcu_read_lock();
1355         neigh = dst_get_neighbour_noref(&rt->dst);
1356         if (neigh) {
1357                 if (neigh->nud_state & NUD_VALID) {
1358                         nes_debug(NES_DBG_CM, "Neighbor MAC address for 0x%08X"
1359                                   " is %pM, Gateway is 0x%08X \n", dst_ip,
1360                                   neigh->ha, ntohl(rt->rt_gateway));
1361
1362                         if (arpindex >= 0) {
1363                                 if (!memcmp(nesadapter->arp_table[arpindex].mac_addr,
1364                                             neigh->ha, ETH_ALEN)) {
1365                                         /* Mac address same as in nes_arp_table */
1366                                         ip_rt_put(rt);
1367                                         return rc;
1368                                 }
1369
1370                                 nes_manage_arp_cache(nesvnic->netdev,
1371                                                      nesadapter->arp_table[arpindex].mac_addr,
1372                                                      dst_ip, NES_ARP_DELETE);
1373                         }
1374
1375                         nes_manage_arp_cache(nesvnic->netdev, neigh->ha,
1376                                              dst_ip, NES_ARP_ADD);
1377                         rc = nes_arp_table(nesvnic->nesdev, dst_ip, NULL,
1378                                            NES_ARP_RESOLVE);
1379                 } else {
1380                         neigh_event_send(neigh, NULL);
1381                 }
1382         }
1383         rcu_read_unlock();
1384         ip_rt_put(rt);
1385         return rc;
1386 }
1387
1388 /**
1389  * make_cm_node - create a new instance of a cm node
1390  */
1391 static struct nes_cm_node *make_cm_node(struct nes_cm_core *cm_core,
1392                                         struct nes_vnic *nesvnic, struct nes_cm_info *cm_info,
1393                                         struct nes_cm_listener *listener)
1394 {
1395         struct nes_cm_node *cm_node;
1396         struct timespec ts;
1397         int oldarpindex = 0;
1398         int arpindex = 0;
1399         struct nes_device *nesdev;
1400         struct nes_adapter *nesadapter;
1401
1402         /* create an hte and cm_node for this instance */
1403         cm_node = kzalloc(sizeof(*cm_node), GFP_ATOMIC);
1404         if (!cm_node)
1405                 return NULL;
1406
1407         /* set our node specific transport info */
1408         cm_node->loc_addr = cm_info->loc_addr;
1409         cm_node->rem_addr = cm_info->rem_addr;
1410         cm_node->loc_port = cm_info->loc_port;
1411         cm_node->rem_port = cm_info->rem_port;
1412
1413         cm_node->mpa_frame_rev = mpa_version;
1414         cm_node->send_rdma0_op = SEND_RDMA_READ_ZERO;
1415         cm_node->ird_size = IETF_NO_IRD_ORD;
1416         cm_node->ord_size = IETF_NO_IRD_ORD;
1417
1418         nes_debug(NES_DBG_CM, "Make node addresses : loc = %pI4:%x, rem = %pI4:%x\n",
1419                   &cm_node->loc_addr, cm_node->loc_port,
1420                   &cm_node->rem_addr, cm_node->rem_port);
1421         cm_node->listener = listener;
1422         cm_node->netdev = nesvnic->netdev;
1423         cm_node->cm_id = cm_info->cm_id;
1424         memcpy(cm_node->loc_mac, nesvnic->netdev->dev_addr, ETH_ALEN);
1425
1426         nes_debug(NES_DBG_CM, "listener=%p, cm_id=%p\n", cm_node->listener,
1427                   cm_node->cm_id);
1428
1429         spin_lock_init(&cm_node->retrans_list_lock);
1430
1431         cm_node->loopbackpartner = NULL;
1432         atomic_set(&cm_node->ref_count, 1);
1433         /* associate our parent CM core */
1434         cm_node->cm_core = cm_core;
1435         cm_node->tcp_cntxt.loc_id = NES_CM_DEF_LOCAL_ID;
1436         cm_node->tcp_cntxt.rcv_wscale = NES_CM_DEFAULT_RCV_WND_SCALE;
1437         cm_node->tcp_cntxt.rcv_wnd = NES_CM_DEFAULT_RCV_WND_SCALED >>
1438                                      NES_CM_DEFAULT_RCV_WND_SCALE;
1439         ts = current_kernel_time();
1440         cm_node->tcp_cntxt.loc_seq_num = htonl(ts.tv_nsec);
1441         cm_node->tcp_cntxt.mss = nesvnic->max_frame_size - sizeof(struct iphdr) -
1442                                  sizeof(struct tcphdr) - ETH_HLEN - VLAN_HLEN;
1443         cm_node->tcp_cntxt.rcv_nxt = 0;
1444         /* get a unique session ID , add thread_id to an upcounter to handle race */
1445         atomic_inc(&cm_core->node_cnt);
1446         cm_node->conn_type = cm_info->conn_type;
1447         cm_node->apbvt_set = 0;
1448         cm_node->accept_pend = 0;
1449
1450         cm_node->nesvnic = nesvnic;
1451         /* get some device handles, for arp lookup */
1452         nesdev = nesvnic->nesdev;
1453         nesadapter = nesdev->nesadapter;
1454
1455         cm_node->loopbackpartner = NULL;
1456
1457         /* get the mac addr for the remote node */
1458         if (ipv4_is_loopback(htonl(cm_node->rem_addr))) {
1459                 arpindex = nes_arp_table(nesdev, ntohl(nesvnic->local_ipaddr), NULL, NES_ARP_RESOLVE);
1460         } else {
1461                 oldarpindex = nes_arp_table(nesdev, cm_node->rem_addr, NULL, NES_ARP_RESOLVE);
1462                 arpindex = nes_addr_resolve_neigh(nesvnic, cm_info->rem_addr, oldarpindex);
1463         }
1464         if (arpindex < 0) {
1465                 kfree(cm_node);
1466                 return NULL;
1467         }
1468
1469         /* copy the mac addr to node context */
1470         memcpy(cm_node->rem_mac, nesadapter->arp_table[arpindex].mac_addr, ETH_ALEN);
1471         nes_debug(NES_DBG_CM, "Remote mac addr from arp table: %pM\n",
1472                   cm_node->rem_mac);
1473
1474         add_hte_node(cm_core, cm_node);
1475         atomic_inc(&cm_nodes_created);
1476
1477         return cm_node;
1478 }
1479
1480
1481 /**
1482  * add_ref_cm_node - destroy an instance of a cm node
1483  */
1484 static int add_ref_cm_node(struct nes_cm_node *cm_node)
1485 {
1486         atomic_inc(&cm_node->ref_count);
1487         return 0;
1488 }
1489
1490
1491 /**
1492  * rem_ref_cm_node - destroy an instance of a cm node
1493  */
1494 static int rem_ref_cm_node(struct nes_cm_core *cm_core,
1495                            struct nes_cm_node *cm_node)
1496 {
1497         unsigned long flags;
1498         struct nes_qp *nesqp;
1499
1500         if (!cm_node)
1501                 return -EINVAL;
1502
1503         spin_lock_irqsave(&cm_node->cm_core->ht_lock, flags);
1504         if (atomic_dec_return(&cm_node->ref_count)) {
1505                 spin_unlock_irqrestore(&cm_node->cm_core->ht_lock, flags);
1506                 return 0;
1507         }
1508         list_del(&cm_node->list);
1509         atomic_dec(&cm_core->ht_node_cnt);
1510         spin_unlock_irqrestore(&cm_node->cm_core->ht_lock, flags);
1511
1512         /* if the node is destroyed before connection was accelerated */
1513         if (!cm_node->accelerated && cm_node->accept_pend) {
1514                 BUG_ON(!cm_node->listener);
1515                 atomic_dec(&cm_node->listener->pend_accepts_cnt);
1516                 BUG_ON(atomic_read(&cm_node->listener->pend_accepts_cnt) < 0);
1517         }
1518         WARN_ON(cm_node->send_entry);
1519         if (cm_node->recv_entry)
1520                 handle_recv_entry(cm_node, 0);
1521         if (cm_node->listener) {
1522                 mini_cm_dec_refcnt_listen(cm_core, cm_node->listener, 0);
1523         } else {
1524                 if (cm_node->apbvt_set && cm_node->nesvnic) {
1525                         nes_manage_apbvt(cm_node->nesvnic, cm_node->loc_port,
1526                                          PCI_FUNC(
1527                                                  cm_node->nesvnic->nesdev->pcidev->devfn),
1528                                          NES_MANAGE_APBVT_DEL);
1529                 }
1530         }
1531
1532         atomic_dec(&cm_core->node_cnt);
1533         atomic_inc(&cm_nodes_destroyed);
1534         nesqp = cm_node->nesqp;
1535         if (nesqp) {
1536                 nesqp->cm_node = NULL;
1537                 nes_rem_ref(&nesqp->ibqp);
1538                 cm_node->nesqp = NULL;
1539         }
1540
1541         kfree(cm_node);
1542         return 0;
1543 }
1544
1545 /**
1546  * process_options
1547  */
1548 static int process_options(struct nes_cm_node *cm_node, u8 *optionsloc,
1549                            u32 optionsize, u32 syn_packet)
1550 {
1551         u32 tmp;
1552         u32 offset = 0;
1553         union all_known_options *all_options;
1554         char got_mss_option = 0;
1555
1556         while (offset < optionsize) {
1557                 all_options = (union all_known_options *)(optionsloc + offset);
1558                 switch (all_options->as_base.optionnum) {
1559                 case OPTION_NUMBER_END:
1560                         offset = optionsize;
1561                         break;
1562                 case OPTION_NUMBER_NONE:
1563                         offset += 1;
1564                         continue;
1565                 case OPTION_NUMBER_MSS:
1566                         nes_debug(NES_DBG_CM, "%s: MSS Length: %d Offset: %d "
1567                                   "Size: %d\n", __func__,
1568                                   all_options->as_mss.length, offset, optionsize);
1569                         got_mss_option = 1;
1570                         if (all_options->as_mss.length != 4) {
1571                                 return 1;
1572                         } else {
1573                                 tmp = ntohs(all_options->as_mss.mss);
1574                                 if (tmp > 0 && tmp <
1575                                     cm_node->tcp_cntxt.mss)
1576                                         cm_node->tcp_cntxt.mss = tmp;
1577                         }
1578                         break;
1579                 case OPTION_NUMBER_WINDOW_SCALE:
1580                         cm_node->tcp_cntxt.snd_wscale =
1581                                 all_options->as_windowscale.shiftcount;
1582                         break;
1583                 default:
1584                         nes_debug(NES_DBG_CM, "TCP Option not understood: %x\n",
1585                                   all_options->as_base.optionnum);
1586                         break;
1587                 }
1588                 offset += all_options->as_base.length;
1589         }
1590         if ((!got_mss_option) && (syn_packet))
1591                 cm_node->tcp_cntxt.mss = NES_CM_DEFAULT_MSS;
1592         return 0;
1593 }
1594
1595 static void drop_packet(struct sk_buff *skb)
1596 {
1597         atomic_inc(&cm_accel_dropped_pkts);
1598         dev_kfree_skb_any(skb);
1599 }
1600
1601 static void handle_fin_pkt(struct nes_cm_node *cm_node)
1602 {
1603         nes_debug(NES_DBG_CM, "Received FIN, cm_node = %p, state = %u. "
1604                   "refcnt=%d\n", cm_node, cm_node->state,
1605                   atomic_read(&cm_node->ref_count));
1606         switch (cm_node->state) {
1607         case NES_CM_STATE_SYN_RCVD:
1608         case NES_CM_STATE_SYN_SENT:
1609         case NES_CM_STATE_ESTABLISHED:
1610         case NES_CM_STATE_MPAREJ_RCVD:
1611                 cm_node->tcp_cntxt.rcv_nxt++;
1612                 cleanup_retrans_entry(cm_node);
1613                 cm_node->state = NES_CM_STATE_LAST_ACK;
1614                 send_fin(cm_node, NULL);
1615                 break;
1616         case NES_CM_STATE_MPAREQ_SENT:
1617                 create_event(cm_node, NES_CM_EVENT_ABORTED);
1618                 cm_node->tcp_cntxt.rcv_nxt++;
1619                 cleanup_retrans_entry(cm_node);
1620                 cm_node->state = NES_CM_STATE_CLOSED;
1621                 add_ref_cm_node(cm_node);
1622                 send_reset(cm_node, NULL);
1623                 break;
1624         case NES_CM_STATE_FIN_WAIT1:
1625                 cm_node->tcp_cntxt.rcv_nxt++;
1626                 cleanup_retrans_entry(cm_node);
1627                 cm_node->state = NES_CM_STATE_CLOSING;
1628                 send_ack(cm_node, NULL);
1629                 /* Wait for ACK as this is simultaneous close..
1630                 * After we receive ACK, do not send anything..
1631                 * Just rm the node.. Done.. */
1632                 break;
1633         case NES_CM_STATE_FIN_WAIT2:
1634                 cm_node->tcp_cntxt.rcv_nxt++;
1635                 cleanup_retrans_entry(cm_node);
1636                 cm_node->state = NES_CM_STATE_TIME_WAIT;
1637                 send_ack(cm_node, NULL);
1638                 schedule_nes_timer(cm_node, NULL,  NES_TIMER_TYPE_CLOSE, 1, 0);
1639                 break;
1640         case NES_CM_STATE_TIME_WAIT:
1641                 cm_node->tcp_cntxt.rcv_nxt++;
1642                 cleanup_retrans_entry(cm_node);
1643                 cm_node->state = NES_CM_STATE_CLOSED;
1644                 rem_ref_cm_node(cm_node->cm_core, cm_node);
1645                 break;
1646         case NES_CM_STATE_TSA:
1647         default:
1648                 nes_debug(NES_DBG_CM, "Error Rcvd FIN for node-%p state = %d\n",
1649                         cm_node, cm_node->state);
1650                 break;
1651         }
1652 }
1653
1654
1655 static void handle_rst_pkt(struct nes_cm_node *cm_node, struct sk_buff *skb,
1656         struct tcphdr *tcph)
1657 {
1658
1659         int     reset = 0;      /* whether to send reset in case of err.. */
1660         atomic_inc(&cm_resets_recvd);
1661         nes_debug(NES_DBG_CM, "Received Reset, cm_node = %p, state = %u."
1662                         " refcnt=%d\n", cm_node, cm_node->state,
1663                         atomic_read(&cm_node->ref_count));
1664         cleanup_retrans_entry(cm_node);
1665         switch (cm_node->state) {
1666         case NES_CM_STATE_SYN_SENT:
1667         case NES_CM_STATE_MPAREQ_SENT:
1668                 nes_debug(NES_DBG_CM, "%s[%u] create abort for cm_node=%p "
1669                         "listener=%p state=%d\n", __func__, __LINE__, cm_node,
1670                         cm_node->listener, cm_node->state);
1671                 switch (cm_node->mpa_frame_rev) {
1672                 case IETF_MPA_V2:
1673                         cm_node->mpa_frame_rev = IETF_MPA_V1;
1674                         /* send a syn and goto syn sent state */
1675                         cm_node->state = NES_CM_STATE_SYN_SENT;
1676                         if (send_syn(cm_node, 0, NULL)) {
1677                                 active_open_err(cm_node, skb, reset);
1678                         }
1679                         break;
1680                 case IETF_MPA_V1:
1681                 default:
1682                         active_open_err(cm_node, skb, reset);
1683                         break;
1684                 }
1685                 break;
1686         case NES_CM_STATE_MPAREQ_RCVD:
1687                 atomic_inc(&cm_node->passive_state);
1688                 dev_kfree_skb_any(skb);
1689                 break;
1690         case NES_CM_STATE_ESTABLISHED:
1691         case NES_CM_STATE_SYN_RCVD:
1692         case NES_CM_STATE_LISTENING:
1693                 nes_debug(NES_DBG_CM, "Bad state %s[%u]\n", __func__, __LINE__);
1694                 passive_open_err(cm_node, skb, reset);
1695                 break;
1696         case NES_CM_STATE_TSA:
1697                 active_open_err(cm_node, skb, reset);
1698                 break;
1699         case NES_CM_STATE_CLOSED:
1700                 drop_packet(skb);
1701                 break;
1702         case NES_CM_STATE_FIN_WAIT2:
1703         case NES_CM_STATE_FIN_WAIT1:
1704         case NES_CM_STATE_LAST_ACK:
1705                 cm_node->cm_id->rem_ref(cm_node->cm_id);
1706         case NES_CM_STATE_TIME_WAIT:
1707                 cm_node->state = NES_CM_STATE_CLOSED;
1708                 rem_ref_cm_node(cm_node->cm_core, cm_node);
1709                 drop_packet(skb);
1710                 break;
1711         default:
1712                 drop_packet(skb);
1713                 break;
1714         }
1715 }
1716
1717
1718 static void handle_rcv_mpa(struct nes_cm_node *cm_node, struct sk_buff *skb)
1719 {
1720         int ret = 0;
1721         int datasize = skb->len;
1722         u8 *dataloc = skb->data;
1723
1724         enum nes_cm_event_type type = NES_CM_EVENT_UNKNOWN;
1725         u32 res_type;
1726
1727         ret = parse_mpa(cm_node, dataloc, &res_type, datasize);
1728         if (ret) {
1729                 nes_debug(NES_DBG_CM, "didn't like MPA Request\n");
1730                 if (cm_node->state == NES_CM_STATE_MPAREQ_SENT) {
1731                         nes_debug(NES_DBG_CM, "%s[%u] create abort for "
1732                                   "cm_node=%p listener=%p state=%d\n", __func__,
1733                                   __LINE__, cm_node, cm_node->listener,
1734                                   cm_node->state);
1735                         active_open_err(cm_node, skb, 1);
1736                 } else {
1737                         passive_open_err(cm_node, skb, 1);
1738                 }
1739                 return;
1740         }
1741
1742         switch (cm_node->state) {
1743         case NES_CM_STATE_ESTABLISHED:
1744                 if (res_type == NES_MPA_REQUEST_REJECT)
1745                         /*BIG problem as we are receiving the MPA.. So should
1746                          * not be REJECT.. This is Passive Open.. We can
1747                          * only receive it Reject for Active Open...*/
1748                         WARN_ON(1);
1749                 cm_node->state = NES_CM_STATE_MPAREQ_RCVD;
1750                 type = NES_CM_EVENT_MPA_REQ;
1751                 atomic_set(&cm_node->passive_state,
1752                            NES_PASSIVE_STATE_INDICATED);
1753                 break;
1754         case NES_CM_STATE_MPAREQ_SENT:
1755                 cleanup_retrans_entry(cm_node);
1756                 if (res_type == NES_MPA_REQUEST_REJECT) {
1757                         type = NES_CM_EVENT_MPA_REJECT;
1758                         cm_node->state = NES_CM_STATE_MPAREJ_RCVD;
1759                 } else {
1760                         type = NES_CM_EVENT_CONNECTED;
1761                         cm_node->state = NES_CM_STATE_TSA;
1762                 }
1763
1764                 break;
1765         default:
1766                 WARN_ON(1);
1767                 break;
1768         }
1769         dev_kfree_skb_any(skb);
1770         create_event(cm_node, type);
1771 }
1772
1773 static void indicate_pkt_err(struct nes_cm_node *cm_node, struct sk_buff *skb)
1774 {
1775         switch (cm_node->state) {
1776         case NES_CM_STATE_SYN_SENT:
1777         case NES_CM_STATE_MPAREQ_SENT:
1778                 nes_debug(NES_DBG_CM, "%s[%u] create abort for cm_node=%p "
1779                           "listener=%p state=%d\n", __func__, __LINE__, cm_node,
1780                           cm_node->listener, cm_node->state);
1781                 active_open_err(cm_node, skb, 1);
1782                 break;
1783         case NES_CM_STATE_ESTABLISHED:
1784         case NES_CM_STATE_SYN_RCVD:
1785                 passive_open_err(cm_node, skb, 1);
1786                 break;
1787         case NES_CM_STATE_TSA:
1788         default:
1789                 drop_packet(skb);
1790         }
1791 }
1792
1793 static int check_syn(struct nes_cm_node *cm_node, struct tcphdr *tcph,
1794                      struct sk_buff *skb)
1795 {
1796         int err;
1797
1798         err = ((ntohl(tcph->ack_seq) == cm_node->tcp_cntxt.loc_seq_num)) ? 0 : 1;
1799         if (err)
1800                 active_open_err(cm_node, skb, 1);
1801
1802         return err;
1803 }
1804
1805 static int check_seq(struct nes_cm_node *cm_node, struct tcphdr *tcph,
1806                      struct sk_buff *skb)
1807 {
1808         int err = 0;
1809         u32 seq;
1810         u32 ack_seq;
1811         u32 loc_seq_num = cm_node->tcp_cntxt.loc_seq_num;
1812         u32 rcv_nxt = cm_node->tcp_cntxt.rcv_nxt;
1813         u32 rcv_wnd;
1814
1815         seq = ntohl(tcph->seq);
1816         ack_seq = ntohl(tcph->ack_seq);
1817         rcv_wnd = cm_node->tcp_cntxt.rcv_wnd;
1818         if (ack_seq != loc_seq_num)
1819                 err = 1;
1820         else if (!between(seq, rcv_nxt, (rcv_nxt + rcv_wnd)))
1821                 err = 1;
1822         if (err) {
1823                 nes_debug(NES_DBG_CM, "%s[%u] create abort for cm_node=%p "
1824                           "listener=%p state=%d\n", __func__, __LINE__, cm_node,
1825                           cm_node->listener, cm_node->state);
1826                 indicate_pkt_err(cm_node, skb);
1827                 nes_debug(NES_DBG_CM, "seq ERROR cm_node =%p seq=0x%08X "
1828                           "rcv_nxt=0x%08X rcv_wnd=0x%x\n", cm_node, seq, rcv_nxt,
1829                           rcv_wnd);
1830         }
1831         return err;
1832 }
1833
1834 /*
1835  * handle_syn_pkt() is for Passive node. The syn packet is received when a node
1836  * is created with a listener or it may comein as rexmitted packet which in
1837  * that case will be just dropped.
1838  */
1839 static void handle_syn_pkt(struct nes_cm_node *cm_node, struct sk_buff *skb,
1840                            struct tcphdr *tcph)
1841 {
1842         int ret;
1843         u32 inc_sequence;
1844         int optionsize;
1845
1846         optionsize = (tcph->doff << 2) - sizeof(struct tcphdr);
1847         skb_trim(skb, 0);
1848         inc_sequence = ntohl(tcph->seq);
1849
1850         switch (cm_node->state) {
1851         case NES_CM_STATE_SYN_SENT:
1852         case NES_CM_STATE_MPAREQ_SENT:
1853                 /* Rcvd syn on active open connection*/
1854                 active_open_err(cm_node, skb, 1);
1855                 break;
1856         case NES_CM_STATE_LISTENING:
1857                 /* Passive OPEN */
1858                 if (atomic_read(&cm_node->listener->pend_accepts_cnt) >
1859                     cm_node->listener->backlog) {
1860                         nes_debug(NES_DBG_CM, "drop syn due to backlog "
1861                                   "pressure \n");
1862                         cm_backlog_drops++;
1863                         passive_open_err(cm_node, skb, 0);
1864                         break;
1865                 }
1866                 ret = handle_tcp_options(cm_node, tcph, skb, optionsize,
1867                                          1);
1868                 if (ret) {
1869                         passive_open_err(cm_node, skb, 0);
1870                         /* drop pkt */
1871                         break;
1872                 }
1873                 cm_node->tcp_cntxt.rcv_nxt = inc_sequence + 1;
1874                 BUG_ON(cm_node->send_entry);
1875                 cm_node->accept_pend = 1;
1876                 atomic_inc(&cm_node->listener->pend_accepts_cnt);
1877
1878                 cm_node->state = NES_CM_STATE_SYN_RCVD;
1879                 send_syn(cm_node, 1, skb);
1880                 break;
1881         case NES_CM_STATE_CLOSED:
1882                 cleanup_retrans_entry(cm_node);
1883                 add_ref_cm_node(cm_node);
1884                 send_reset(cm_node, skb);
1885                 break;
1886         case NES_CM_STATE_TSA:
1887         case NES_CM_STATE_ESTABLISHED:
1888         case NES_CM_STATE_FIN_WAIT1:
1889         case NES_CM_STATE_FIN_WAIT2:
1890         case NES_CM_STATE_MPAREQ_RCVD:
1891         case NES_CM_STATE_LAST_ACK:
1892         case NES_CM_STATE_CLOSING:
1893         case NES_CM_STATE_UNKNOWN:
1894         default:
1895                 drop_packet(skb);
1896                 break;
1897         }
1898 }
1899
1900 static void handle_synack_pkt(struct nes_cm_node *cm_node, struct sk_buff *skb,
1901                               struct tcphdr *tcph)
1902 {
1903         int ret;
1904         u32 inc_sequence;
1905         int optionsize;
1906
1907         optionsize = (tcph->doff << 2) - sizeof(struct tcphdr);
1908         skb_trim(skb, 0);
1909         inc_sequence = ntohl(tcph->seq);
1910         switch (cm_node->state) {
1911         case NES_CM_STATE_SYN_SENT:
1912                 cleanup_retrans_entry(cm_node);
1913                 /* active open */
1914                 if (check_syn(cm_node, tcph, skb))
1915                         return;
1916                 cm_node->tcp_cntxt.rem_ack_num = ntohl(tcph->ack_seq);
1917                 /* setup options */
1918                 ret = handle_tcp_options(cm_node, tcph, skb, optionsize, 0);
1919                 if (ret) {
1920                         nes_debug(NES_DBG_CM, "cm_node=%p tcp_options failed\n",
1921                                   cm_node);
1922                         break;
1923                 }
1924                 cleanup_retrans_entry(cm_node);
1925                 cm_node->tcp_cntxt.rcv_nxt = inc_sequence + 1;
1926                 send_mpa_request(cm_node, skb);
1927                 cm_node->state = NES_CM_STATE_MPAREQ_SENT;
1928                 break;
1929         case NES_CM_STATE_MPAREQ_RCVD:
1930                 /* passive open, so should not be here */
1931                 passive_open_err(cm_node, skb, 1);
1932                 break;
1933         case NES_CM_STATE_LISTENING:
1934                 cm_node->tcp_cntxt.loc_seq_num = ntohl(tcph->ack_seq);
1935                 cleanup_retrans_entry(cm_node);
1936                 cm_node->state = NES_CM_STATE_CLOSED;
1937                 send_reset(cm_node, skb);
1938                 break;
1939         case NES_CM_STATE_CLOSED:
1940                 cm_node->tcp_cntxt.loc_seq_num = ntohl(tcph->ack_seq);
1941                 cleanup_retrans_entry(cm_node);
1942                 add_ref_cm_node(cm_node);
1943                 send_reset(cm_node, skb);
1944                 break;
1945         case NES_CM_STATE_ESTABLISHED:
1946         case NES_CM_STATE_FIN_WAIT1:
1947         case NES_CM_STATE_FIN_WAIT2:
1948         case NES_CM_STATE_LAST_ACK:
1949         case NES_CM_STATE_TSA:
1950         case NES_CM_STATE_CLOSING:
1951         case NES_CM_STATE_UNKNOWN:
1952         case NES_CM_STATE_MPAREQ_SENT:
1953         default:
1954                 drop_packet(skb);
1955                 break;
1956         }
1957 }
1958
1959 static int handle_ack_pkt(struct nes_cm_node *cm_node, struct sk_buff *skb,
1960                           struct tcphdr *tcph)
1961 {
1962         int datasize = 0;
1963         u32 inc_sequence;
1964         int ret = 0;
1965         int optionsize;
1966
1967         optionsize = (tcph->doff << 2) - sizeof(struct tcphdr);
1968
1969         if (check_seq(cm_node, tcph, skb))
1970                 return -EINVAL;
1971
1972         skb_pull(skb, tcph->doff << 2);
1973         inc_sequence = ntohl(tcph->seq);
1974         datasize = skb->len;
1975         switch (cm_node->state) {
1976         case NES_CM_STATE_SYN_RCVD:
1977                 /* Passive OPEN */
1978                 cleanup_retrans_entry(cm_node);
1979                 ret = handle_tcp_options(cm_node, tcph, skb, optionsize, 1);
1980                 if (ret)
1981                         break;
1982                 cm_node->tcp_cntxt.rem_ack_num = ntohl(tcph->ack_seq);
1983                 cm_node->state = NES_CM_STATE_ESTABLISHED;
1984                 if (datasize) {
1985                         cm_node->tcp_cntxt.rcv_nxt = inc_sequence + datasize;
1986                         handle_rcv_mpa(cm_node, skb);
1987                 } else { /* rcvd ACK only */
1988                         dev_kfree_skb_any(skb);
1989                 }
1990                 break;
1991         case NES_CM_STATE_ESTABLISHED:
1992                 /* Passive OPEN */
1993                 cleanup_retrans_entry(cm_node);
1994                 if (datasize) {
1995                         cm_node->tcp_cntxt.rcv_nxt = inc_sequence + datasize;
1996                         handle_rcv_mpa(cm_node, skb);
1997                 } else {
1998                         drop_packet(skb);
1999                 }
2000                 break;
2001         case NES_CM_STATE_MPAREQ_SENT:
2002                 cm_node->tcp_cntxt.rem_ack_num = ntohl(tcph->ack_seq);
2003                 if (datasize) {
2004                         cm_node->tcp_cntxt.rcv_nxt = inc_sequence + datasize;
2005                         handle_rcv_mpa(cm_node, skb);
2006                 } else { /* Could be just an ack pkt.. */
2007                         dev_kfree_skb_any(skb);
2008                 }
2009                 break;
2010         case NES_CM_STATE_LISTENING:
2011                 cleanup_retrans_entry(cm_node);
2012                 cm_node->state = NES_CM_STATE_CLOSED;
2013                 send_reset(cm_node, skb);
2014                 break;
2015         case NES_CM_STATE_CLOSED:
2016                 cleanup_retrans_entry(cm_node);
2017                 add_ref_cm_node(cm_node);
2018                 send_reset(cm_node, skb);
2019                 break;
2020         case NES_CM_STATE_LAST_ACK:
2021         case NES_CM_STATE_CLOSING:
2022                 cleanup_retrans_entry(cm_node);
2023                 cm_node->state = NES_CM_STATE_CLOSED;
2024                 cm_node->cm_id->rem_ref(cm_node->cm_id);
2025                 rem_ref_cm_node(cm_node->cm_core, cm_node);
2026                 drop_packet(skb);
2027                 break;
2028         case NES_CM_STATE_FIN_WAIT1:
2029                 cleanup_retrans_entry(cm_node);
2030                 drop_packet(skb);
2031                 cm_node->state = NES_CM_STATE_FIN_WAIT2;
2032                 break;
2033         case NES_CM_STATE_SYN_SENT:
2034         case NES_CM_STATE_FIN_WAIT2:
2035         case NES_CM_STATE_TSA:
2036         case NES_CM_STATE_MPAREQ_RCVD:
2037         case NES_CM_STATE_UNKNOWN:
2038         default:
2039                 cleanup_retrans_entry(cm_node);
2040                 drop_packet(skb);
2041                 break;
2042         }
2043         return ret;
2044 }
2045
2046
2047
2048 static int handle_tcp_options(struct nes_cm_node *cm_node, struct tcphdr *tcph,
2049                               struct sk_buff *skb, int optionsize, int passive)
2050 {
2051         u8 *optionsloc = (u8 *)&tcph[1];
2052
2053         if (optionsize) {
2054                 if (process_options(cm_node, optionsloc, optionsize,
2055                                     (u32)tcph->syn)) {
2056                         nes_debug(NES_DBG_CM, "%s: Node %p, Sending RESET\n",
2057                                   __func__, cm_node);
2058                         if (passive)
2059                                 passive_open_err(cm_node, skb, 1);
2060                         else
2061                                 active_open_err(cm_node, skb, 1);
2062                         return 1;
2063                 }
2064         }
2065
2066         cm_node->tcp_cntxt.snd_wnd = ntohs(tcph->window) <<
2067                                      cm_node->tcp_cntxt.snd_wscale;
2068
2069         if (cm_node->tcp_cntxt.snd_wnd > cm_node->tcp_cntxt.max_snd_wnd)
2070                 cm_node->tcp_cntxt.max_snd_wnd = cm_node->tcp_cntxt.snd_wnd;
2071         return 0;
2072 }
2073
2074 /*
2075  * active_open_err() will send reset() if flag set..
2076  * It will also send ABORT event.
2077  */
2078 static void active_open_err(struct nes_cm_node *cm_node, struct sk_buff *skb,
2079                             int reset)
2080 {
2081         cleanup_retrans_entry(cm_node);
2082         if (reset) {
2083                 nes_debug(NES_DBG_CM, "ERROR active err called for cm_node=%p, "
2084                           "state=%d\n", cm_node, cm_node->state);
2085                 add_ref_cm_node(cm_node);
2086                 send_reset(cm_node, skb);
2087         } else {
2088                 dev_kfree_skb_any(skb);
2089         }
2090
2091         cm_node->state = NES_CM_STATE_CLOSED;
2092         create_event(cm_node, NES_CM_EVENT_ABORTED);
2093 }
2094
2095 /*
2096  * passive_open_err() will either do a reset() or will free up the skb and
2097  * remove the cm_node.
2098  */
2099 static void passive_open_err(struct nes_cm_node *cm_node, struct sk_buff *skb,
2100                              int reset)
2101 {
2102         cleanup_retrans_entry(cm_node);
2103         cm_node->state = NES_CM_STATE_CLOSED;
2104         if (reset) {
2105                 nes_debug(NES_DBG_CM, "passive_open_err sending RST for "
2106                           "cm_node=%p state =%d\n", cm_node, cm_node->state);
2107                 send_reset(cm_node, skb);
2108         } else {
2109                 dev_kfree_skb_any(skb);
2110                 rem_ref_cm_node(cm_node->cm_core, cm_node);
2111         }
2112 }
2113
2114 /*
2115  * free_retrans_entry() routines assumes that the retrans_list_lock has
2116  * been acquired before calling.
2117  */
2118 static void free_retrans_entry(struct nes_cm_node *cm_node)
2119 {
2120         struct nes_timer_entry *send_entry;
2121
2122         send_entry = cm_node->send_entry;
2123         if (send_entry) {
2124                 cm_node->send_entry = NULL;
2125                 dev_kfree_skb_any(send_entry->skb);
2126                 kfree(send_entry);
2127                 rem_ref_cm_node(cm_node->cm_core, cm_node);
2128         }
2129 }
2130
2131 static void cleanup_retrans_entry(struct nes_cm_node *cm_node)
2132 {
2133         unsigned long flags;
2134
2135         spin_lock_irqsave(&cm_node->retrans_list_lock, flags);
2136         free_retrans_entry(cm_node);
2137         spin_unlock_irqrestore(&cm_node->retrans_list_lock, flags);
2138 }
2139
2140 /**
2141  * process_packet
2142  * Returns skb if to be freed, else it will return NULL if already used..
2143  */
2144 static void process_packet(struct nes_cm_node *cm_node, struct sk_buff *skb,
2145                            struct nes_cm_core *cm_core)
2146 {
2147         enum nes_tcpip_pkt_type pkt_type = NES_PKT_TYPE_UNKNOWN;
2148         struct tcphdr *tcph = tcp_hdr(skb);
2149         u32 fin_set = 0;
2150         int ret = 0;
2151
2152         skb_pull(skb, ip_hdr(skb)->ihl << 2);
2153
2154         nes_debug(NES_DBG_CM, "process_packet: cm_node=%p state =%d syn=%d "
2155                   "ack=%d rst=%d fin=%d\n", cm_node, cm_node->state, tcph->syn,
2156                   tcph->ack, tcph->rst, tcph->fin);
2157
2158         if (tcph->rst) {
2159                 pkt_type = NES_PKT_TYPE_RST;
2160         } else if (tcph->syn) {
2161                 pkt_type = NES_PKT_TYPE_SYN;
2162                 if (tcph->ack)
2163                         pkt_type = NES_PKT_TYPE_SYNACK;
2164         } else if (tcph->ack) {
2165                 pkt_type = NES_PKT_TYPE_ACK;
2166         }
2167         if (tcph->fin)
2168                 fin_set = 1;
2169
2170         switch (pkt_type) {
2171         case NES_PKT_TYPE_SYN:
2172                 handle_syn_pkt(cm_node, skb, tcph);
2173                 break;
2174         case NES_PKT_TYPE_SYNACK:
2175                 handle_synack_pkt(cm_node, skb, tcph);
2176                 break;
2177         case NES_PKT_TYPE_ACK:
2178                 ret = handle_ack_pkt(cm_node, skb, tcph);
2179                 if (fin_set && !ret)
2180                         handle_fin_pkt(cm_node);
2181                 break;
2182         case NES_PKT_TYPE_RST:
2183                 handle_rst_pkt(cm_node, skb, tcph);
2184                 break;
2185         default:
2186                 if ((fin_set) && (!check_seq(cm_node, tcph, skb)))
2187                         handle_fin_pkt(cm_node);
2188                 drop_packet(skb);
2189                 break;
2190         }
2191 }
2192
2193 /**
2194  * mini_cm_listen - create a listen node with params
2195  */
2196 static struct nes_cm_listener *mini_cm_listen(struct nes_cm_core *cm_core,
2197                                               struct nes_vnic *nesvnic, struct nes_cm_info *cm_info)
2198 {
2199         struct nes_cm_listener *listener;
2200         unsigned long flags;
2201
2202         nes_debug(NES_DBG_CM, "Search for 0x%08x : 0x%04x\n",
2203                   cm_info->loc_addr, cm_info->loc_port);
2204
2205         /* cannot have multiple matching listeners */
2206         listener = find_listener(cm_core, htonl(cm_info->loc_addr),
2207                                  htons(cm_info->loc_port), NES_CM_LISTENER_EITHER_STATE);
2208         if (listener && listener->listener_state == NES_CM_LISTENER_ACTIVE_STATE) {
2209                 /* find automatically incs ref count ??? */
2210                 atomic_dec(&listener->ref_count);
2211                 nes_debug(NES_DBG_CM, "Not creating listener since it already exists\n");
2212                 return NULL;
2213         }
2214
2215         if (!listener) {
2216                 /* create a CM listen node (1/2 node to compare incoming traffic to) */
2217                 listener = kzalloc(sizeof(*listener), GFP_ATOMIC);
2218                 if (!listener) {
2219                         nes_debug(NES_DBG_CM, "Not creating listener memory allocation failed\n");
2220                         return NULL;
2221                 }
2222
2223                 listener->loc_addr = htonl(cm_info->loc_addr);
2224                 listener->loc_port = htons(cm_info->loc_port);
2225                 listener->reused_node = 0;
2226
2227                 atomic_set(&listener->ref_count, 1);
2228         }
2229         /* pasive case */
2230         /* find already inc'ed the ref count */
2231         else {
2232                 listener->reused_node = 1;
2233         }
2234
2235         listener->cm_id = cm_info->cm_id;
2236         atomic_set(&listener->pend_accepts_cnt, 0);
2237         listener->cm_core = cm_core;
2238         listener->nesvnic = nesvnic;
2239         atomic_inc(&cm_core->node_cnt);
2240
2241         listener->conn_type = cm_info->conn_type;
2242         listener->backlog = cm_info->backlog;
2243         listener->listener_state = NES_CM_LISTENER_ACTIVE_STATE;
2244
2245         if (!listener->reused_node) {
2246                 spin_lock_irqsave(&cm_core->listen_list_lock, flags);
2247                 list_add(&listener->list, &cm_core->listen_list.list);
2248                 spin_unlock_irqrestore(&cm_core->listen_list_lock, flags);
2249                 atomic_inc(&cm_core->listen_node_cnt);
2250         }
2251
2252         nes_debug(NES_DBG_CM, "Api - listen(): addr=0x%08X, port=0x%04x,"
2253                   " listener = %p, backlog = %d, cm_id = %p.\n",
2254                   cm_info->loc_addr, cm_info->loc_port,
2255                   listener, listener->backlog, listener->cm_id);
2256
2257         return listener;
2258 }
2259
2260
2261 /**
2262  * mini_cm_connect - make a connection node with params
2263  */
2264 static struct nes_cm_node *mini_cm_connect(struct nes_cm_core *cm_core,
2265                                            struct nes_vnic *nesvnic, u16 private_data_len,
2266                                            void *private_data, struct nes_cm_info *cm_info)
2267 {
2268         int ret = 0;
2269         struct nes_cm_node *cm_node;
2270         struct nes_cm_listener *loopbackremotelistener;
2271         struct nes_cm_node *loopbackremotenode;
2272         struct nes_cm_info loopback_cm_info;
2273         u8 *start_buff;
2274
2275         /* create a CM connection node */
2276         cm_node = make_cm_node(cm_core, nesvnic, cm_info, NULL);
2277         if (!cm_node)
2278                 return NULL;
2279
2280         /* set our node side to client (active) side */
2281         cm_node->tcp_cntxt.client = 1;
2282         cm_node->tcp_cntxt.rcv_wscale = NES_CM_DEFAULT_RCV_WND_SCALE;
2283
2284         if (cm_info->loc_addr == cm_info->rem_addr) {
2285                 loopbackremotelistener = find_listener(cm_core,
2286                                                        ntohl(nesvnic->local_ipaddr), cm_node->rem_port,
2287                                                        NES_CM_LISTENER_ACTIVE_STATE);
2288                 if (loopbackremotelistener == NULL) {
2289                         create_event(cm_node, NES_CM_EVENT_ABORTED);
2290                 } else {
2291                         loopback_cm_info = *cm_info;
2292                         loopback_cm_info.loc_port = cm_info->rem_port;
2293                         loopback_cm_info.rem_port = cm_info->loc_port;
2294                         loopback_cm_info.cm_id = loopbackremotelistener->cm_id;
2295                         loopbackremotenode = make_cm_node(cm_core, nesvnic,
2296                                                           &loopback_cm_info, loopbackremotelistener);
2297                         if (!loopbackremotenode) {
2298                                 rem_ref_cm_node(cm_node->cm_core, cm_node);
2299                                 return NULL;
2300                         }
2301                         atomic_inc(&cm_loopbacks);
2302                         loopbackremotenode->loopbackpartner = cm_node;
2303                         loopbackremotenode->tcp_cntxt.rcv_wscale =
2304                                 NES_CM_DEFAULT_RCV_WND_SCALE;
2305                         cm_node->loopbackpartner = loopbackremotenode;
2306                         memcpy(loopbackremotenode->mpa_frame_buf, private_data,
2307                                private_data_len);
2308                         loopbackremotenode->mpa_frame_size = private_data_len;
2309
2310                         /* we are done handling this state. */
2311                         /* set node to a TSA state */
2312                         cm_node->state = NES_CM_STATE_TSA;
2313                         cm_node->tcp_cntxt.rcv_nxt =
2314                                 loopbackremotenode->tcp_cntxt.loc_seq_num;
2315                         loopbackremotenode->tcp_cntxt.rcv_nxt =
2316                                 cm_node->tcp_cntxt.loc_seq_num;
2317                         cm_node->tcp_cntxt.max_snd_wnd =
2318                                 loopbackremotenode->tcp_cntxt.rcv_wnd;
2319                         loopbackremotenode->tcp_cntxt.max_snd_wnd =
2320                                 cm_node->tcp_cntxt.rcv_wnd;
2321                         cm_node->tcp_cntxt.snd_wnd =
2322                                 loopbackremotenode->tcp_cntxt.rcv_wnd;
2323                         loopbackremotenode->tcp_cntxt.snd_wnd =
2324                                 cm_node->tcp_cntxt.rcv_wnd;
2325                         cm_node->tcp_cntxt.snd_wscale =
2326                                 loopbackremotenode->tcp_cntxt.rcv_wscale;
2327                         loopbackremotenode->tcp_cntxt.snd_wscale =
2328                                 cm_node->tcp_cntxt.rcv_wscale;
2329                         loopbackremotenode->state = NES_CM_STATE_MPAREQ_RCVD;
2330                         create_event(loopbackremotenode, NES_CM_EVENT_MPA_REQ);
2331                 }
2332                 return cm_node;
2333         }
2334
2335         start_buff = &cm_node->mpa_frame_buf[0] + sizeof(struct ietf_mpa_v2);
2336         cm_node->mpa_frame_size = private_data_len;
2337
2338         memcpy(start_buff, private_data, private_data_len);
2339
2340         /* send a syn and goto syn sent state */
2341         cm_node->state = NES_CM_STATE_SYN_SENT;
2342         ret = send_syn(cm_node, 0, NULL);
2343
2344         if (ret) {
2345                 /* error in sending the syn free up the cm_node struct */
2346                 nes_debug(NES_DBG_CM, "Api - connect() FAILED: dest "
2347                           "addr=0x%08X, port=0x%04x, cm_node=%p, cm_id = %p.\n",
2348                           cm_node->rem_addr, cm_node->rem_port, cm_node,
2349                           cm_node->cm_id);
2350                 rem_ref_cm_node(cm_node->cm_core, cm_node);
2351                 cm_node = NULL;
2352         }
2353
2354         if (cm_node) {
2355                 nes_debug(NES_DBG_CM, "Api - connect(): dest addr=0x%08X,"
2356                           "port=0x%04x, cm_node=%p, cm_id = %p.\n",
2357                           cm_node->rem_addr, cm_node->rem_port, cm_node,
2358                           cm_node->cm_id);
2359         }
2360
2361         return cm_node;
2362 }
2363
2364
2365 /**
2366  * mini_cm_accept - accept a connection
2367  * This function is never called
2368  */
2369 static int mini_cm_accept(struct nes_cm_core *cm_core, struct nes_cm_node *cm_node)
2370 {
2371         return 0;
2372 }
2373
2374
2375 /**
2376  * mini_cm_reject - reject and teardown a connection
2377  */
2378 static int mini_cm_reject(struct nes_cm_core *cm_core, struct nes_cm_node *cm_node)
2379 {
2380         int ret = 0;
2381         int err = 0;
2382         int passive_state;
2383         struct nes_cm_event event;
2384         struct iw_cm_id *cm_id = cm_node->cm_id;
2385         struct nes_cm_node *loopback = cm_node->loopbackpartner;
2386
2387         nes_debug(NES_DBG_CM, "%s cm_node=%p type=%d state=%d\n",
2388                   __func__, cm_node, cm_node->tcp_cntxt.client, cm_node->state);
2389
2390         if (cm_node->tcp_cntxt.client)
2391                 return ret;
2392         cleanup_retrans_entry(cm_node);
2393
2394         if (!loopback) {
2395                 passive_state = atomic_add_return(1, &cm_node->passive_state);
2396                 if (passive_state == NES_SEND_RESET_EVENT) {
2397                         cm_node->state = NES_CM_STATE_CLOSED;
2398                         rem_ref_cm_node(cm_core, cm_node);
2399                 } else {
2400                         if (cm_node->state == NES_CM_STATE_LISTENER_DESTROYED) {
2401                                 rem_ref_cm_node(cm_core, cm_node);
2402                         } else {
2403                                 ret = send_mpa_reject(cm_node);
2404                                 if (ret) {
2405                                         cm_node->state = NES_CM_STATE_CLOSED;
2406                                         err = send_reset(cm_node, NULL);
2407                                         if (err)
2408                                                 WARN_ON(1);
2409                                 } else {
2410                                         cm_id->add_ref(cm_id);
2411                                 }
2412                         }
2413                 }
2414         } else {
2415                 cm_node->cm_id = NULL;
2416                 if (cm_node->state == NES_CM_STATE_LISTENER_DESTROYED) {
2417                         rem_ref_cm_node(cm_core, cm_node);
2418                         rem_ref_cm_node(cm_core, loopback);
2419                 } else {
2420                         event.cm_node = loopback;
2421                         event.cm_info.rem_addr = loopback->rem_addr;
2422                         event.cm_info.loc_addr = loopback->loc_addr;
2423                         event.cm_info.rem_port = loopback->rem_port;
2424                         event.cm_info.loc_port = loopback->loc_port;
2425                         event.cm_info.cm_id = loopback->cm_id;
2426                         cm_event_mpa_reject(&event);
2427                         rem_ref_cm_node(cm_core, cm_node);
2428                         loopback->state = NES_CM_STATE_CLOSING;
2429
2430                         cm_id = loopback->cm_id;
2431                         rem_ref_cm_node(cm_core, loopback);
2432                         cm_id->rem_ref(cm_id);
2433                 }
2434         }
2435
2436         return ret;
2437 }
2438
2439
2440 /**
2441  * mini_cm_close
2442  */
2443 static int mini_cm_close(struct nes_cm_core *cm_core, struct nes_cm_node *cm_node)
2444 {
2445         int ret = 0;
2446
2447         if (!cm_core || !cm_node)
2448                 return -EINVAL;
2449
2450         switch (cm_node->state) {
2451         case NES_CM_STATE_SYN_RCVD:
2452         case NES_CM_STATE_SYN_SENT:
2453         case NES_CM_STATE_ONE_SIDE_ESTABLISHED:
2454         case NES_CM_STATE_ESTABLISHED:
2455         case NES_CM_STATE_ACCEPTING:
2456         case NES_CM_STATE_MPAREQ_SENT:
2457         case NES_CM_STATE_MPAREQ_RCVD:
2458                 cleanup_retrans_entry(cm_node);
2459                 send_reset(cm_node, NULL);
2460                 break;
2461         case NES_CM_STATE_CLOSE_WAIT:
2462                 cm_node->state = NES_CM_STATE_LAST_ACK;
2463                 send_fin(cm_node, NULL);
2464                 break;
2465         case NES_CM_STATE_FIN_WAIT1:
2466         case NES_CM_STATE_FIN_WAIT2:
2467         case NES_CM_STATE_LAST_ACK:
2468         case NES_CM_STATE_TIME_WAIT:
2469         case NES_CM_STATE_CLOSING:
2470                 ret = -1;
2471                 break;
2472         case NES_CM_STATE_LISTENING:
2473                 cleanup_retrans_entry(cm_node);
2474                 send_reset(cm_node, NULL);
2475                 break;
2476         case NES_CM_STATE_MPAREJ_RCVD:
2477         case NES_CM_STATE_UNKNOWN:
2478         case NES_CM_STATE_INITED:
2479         case NES_CM_STATE_CLOSED:
2480         case NES_CM_STATE_LISTENER_DESTROYED:
2481                 ret = rem_ref_cm_node(cm_core, cm_node);
2482                 break;
2483         case NES_CM_STATE_TSA:
2484                 if (cm_node->send_entry)
2485                         printk(KERN_ERR "ERROR Close got called from STATE_TSA "
2486                                "send_entry=%p\n", cm_node->send_entry);
2487                 ret = rem_ref_cm_node(cm_core, cm_node);
2488                 break;
2489         }
2490         return ret;
2491 }
2492
2493
2494 /**
2495  * recv_pkt - recv an ETHERNET packet, and process it through CM
2496  * node state machine
2497  */
2498 static int mini_cm_recv_pkt(struct nes_cm_core *cm_core,
2499                             struct nes_vnic *nesvnic, struct sk_buff *skb)
2500 {
2501         struct nes_cm_node *cm_node = NULL;
2502         struct nes_cm_listener *listener = NULL;
2503         struct iphdr *iph;
2504         struct tcphdr *tcph;
2505         struct nes_cm_info nfo;
2506         int skb_handled = 1;
2507         __be32 tmp_daddr, tmp_saddr;
2508
2509         if (!skb)
2510                 return 0;
2511         if (skb->len < sizeof(struct iphdr) + sizeof(struct tcphdr))
2512                 return 0;
2513
2514         iph = (struct iphdr *)skb->data;
2515         tcph = (struct tcphdr *)(skb->data + sizeof(struct iphdr));
2516
2517         nfo.loc_addr = ntohl(iph->daddr);
2518         nfo.loc_port = ntohs(tcph->dest);
2519         nfo.rem_addr = ntohl(iph->saddr);
2520         nfo.rem_port = ntohs(tcph->source);
2521
2522         tmp_daddr = cpu_to_be32(iph->daddr);
2523         tmp_saddr = cpu_to_be32(iph->saddr);
2524
2525         nes_debug(NES_DBG_CM, "Received packet: dest=%pI4:0x%04X src=%pI4:0x%04X\n",
2526                   &tmp_daddr, tcph->dest, &tmp_saddr, tcph->source);
2527
2528         do {
2529                 cm_node = find_node(cm_core,
2530                                     nfo.rem_port, nfo.rem_addr,
2531                                     nfo.loc_port, nfo.loc_addr);
2532
2533                 if (!cm_node) {
2534                         /* Only type of packet accepted are for */
2535                         /* the PASSIVE open (syn only) */
2536                         if ((!tcph->syn) || (tcph->ack)) {
2537                                 skb_handled = 0;
2538                                 break;
2539                         }
2540                         listener = find_listener(cm_core, nfo.loc_addr,
2541                                                  nfo.loc_port,
2542                                                  NES_CM_LISTENER_ACTIVE_STATE);
2543                         if (!listener) {
2544                                 nfo.cm_id = NULL;
2545                                 nfo.conn_type = 0;
2546                                 nes_debug(NES_DBG_CM, "Unable to find listener for the pkt\n");
2547                                 skb_handled = 0;
2548                                 break;
2549                         }
2550                         nfo.cm_id = listener->cm_id;
2551                         nfo.conn_type = listener->conn_type;
2552                         cm_node = make_cm_node(cm_core, nesvnic, &nfo,
2553                                                listener);
2554                         if (!cm_node) {
2555                                 nes_debug(NES_DBG_CM, "Unable to allocate "
2556                                           "node\n");
2557                                 cm_packets_dropped++;
2558                                 atomic_dec(&listener->ref_count);
2559                                 dev_kfree_skb_any(skb);
2560                                 break;
2561                         }
2562                         if (!tcph->rst && !tcph->fin) {
2563                                 cm_node->state = NES_CM_STATE_LISTENING;
2564                         } else {
2565                                 cm_packets_dropped++;
2566                                 rem_ref_cm_node(cm_core, cm_node);
2567                                 dev_kfree_skb_any(skb);
2568                                 break;
2569                         }
2570                         add_ref_cm_node(cm_node);
2571                 } else if (cm_node->state == NES_CM_STATE_TSA) {
2572                         if (cm_node->nesqp->pau_mode)
2573                                 nes_queue_mgt_skbs(skb, nesvnic, cm_node->nesqp);
2574                         else {
2575                                 rem_ref_cm_node(cm_core, cm_node);
2576                                 atomic_inc(&cm_accel_dropped_pkts);
2577                                 dev_kfree_skb_any(skb);
2578                         }
2579                         break;
2580                 }
2581                 skb_reset_network_header(skb);
2582                 skb_set_transport_header(skb, sizeof(*tcph));
2583                 skb->len = ntohs(iph->tot_len);
2584                 process_packet(cm_node, skb, cm_core);
2585                 rem_ref_cm_node(cm_core, cm_node);
2586         } while (0);
2587         return skb_handled;
2588 }
2589
2590
2591 /**
2592  * nes_cm_alloc_core - allocate a top level instance of a cm core
2593  */
2594 static struct nes_cm_core *nes_cm_alloc_core(void)
2595 {
2596         struct nes_cm_core *cm_core;
2597
2598         /* setup the CM core */
2599         /* alloc top level core control structure */
2600         cm_core = kzalloc(sizeof(*cm_core), GFP_KERNEL);
2601         if (!cm_core)
2602                 return NULL;
2603
2604         INIT_LIST_HEAD(&cm_core->connected_nodes);
2605         init_timer(&cm_core->tcp_timer);
2606         cm_core->tcp_timer.function = nes_cm_timer_tick;
2607
2608         cm_core->mtu = NES_CM_DEFAULT_MTU;
2609         cm_core->state = NES_CM_STATE_INITED;
2610         cm_core->free_tx_pkt_max = NES_CM_DEFAULT_FREE_PKTS;
2611
2612         atomic_set(&cm_core->events_posted, 0);
2613
2614         cm_core->api = &nes_cm_api;
2615
2616         spin_lock_init(&cm_core->ht_lock);
2617         spin_lock_init(&cm_core->listen_list_lock);
2618
2619         INIT_LIST_HEAD(&cm_core->listen_list.list);
2620
2621         nes_debug(NES_DBG_CM, "Init CM Core completed -- cm_core=%p\n", cm_core);
2622
2623         nes_debug(NES_DBG_CM, "Enable QUEUE EVENTS\n");
2624         cm_core->event_wq = create_singlethread_workqueue("nesewq");
2625         cm_core->post_event = nes_cm_post_event;
2626         nes_debug(NES_DBG_CM, "Enable QUEUE DISCONNECTS\n");
2627         cm_core->disconn_wq = create_singlethread_workqueue("nesdwq");
2628
2629         print_core(cm_core);
2630         return cm_core;
2631 }
2632
2633
2634 /**
2635  * mini_cm_dealloc_core - deallocate a top level instance of a cm core
2636  */
2637 static int mini_cm_dealloc_core(struct nes_cm_core *cm_core)
2638 {
2639         nes_debug(NES_DBG_CM, "De-Alloc CM Core (%p)\n", cm_core);
2640
2641         if (!cm_core)
2642                 return -EINVAL;
2643
2644         barrier();
2645
2646         if (timer_pending(&cm_core->tcp_timer))
2647                 del_timer(&cm_core->tcp_timer);
2648
2649         destroy_workqueue(cm_core->event_wq);
2650         destroy_workqueue(cm_core->disconn_wq);
2651         nes_debug(NES_DBG_CM, "\n");
2652         kfree(cm_core);
2653
2654         return 0;
2655 }
2656
2657
2658 /**
2659  * mini_cm_get
2660  */
2661 static int mini_cm_get(struct nes_cm_core *cm_core)
2662 {
2663         return cm_core->state;
2664 }
2665
2666
2667 /**
2668  * mini_cm_set
2669  */
2670 static int mini_cm_set(struct nes_cm_core *cm_core, u32 type, u32 value)
2671 {
2672         int ret = 0;
2673
2674         switch (type) {
2675         case NES_CM_SET_PKT_SIZE:
2676                 cm_core->mtu = value;
2677                 break;
2678         case NES_CM_SET_FREE_PKT_Q_SIZE:
2679                 cm_core->free_tx_pkt_max = value;
2680                 break;
2681         default:
2682                 /* unknown set option */
2683                 ret = -EINVAL;
2684         }
2685
2686         return ret;
2687 }
2688
2689
2690 /**
2691  * nes_cm_init_tsa_conn setup HW; MPA frames must be
2692  * successfully exchanged when this is called
2693  */
2694 static int nes_cm_init_tsa_conn(struct nes_qp *nesqp, struct nes_cm_node *cm_node)
2695 {
2696         int ret = 0;
2697
2698         if (!nesqp)
2699                 return -EINVAL;
2700
2701         nesqp->nesqp_context->misc |= cpu_to_le32(NES_QPCONTEXT_MISC_IPV4 |
2702                                                   NES_QPCONTEXT_MISC_NO_NAGLE | NES_QPCONTEXT_MISC_DO_NOT_FRAG |
2703                                                   NES_QPCONTEXT_MISC_DROS);
2704
2705         if (cm_node->tcp_cntxt.snd_wscale || cm_node->tcp_cntxt.rcv_wscale)
2706                 nesqp->nesqp_context->misc |= cpu_to_le32(NES_QPCONTEXT_MISC_WSCALE);
2707
2708         nesqp->nesqp_context->misc2 |= cpu_to_le32(64 << NES_QPCONTEXT_MISC2_TTL_SHIFT);
2709
2710         nesqp->nesqp_context->mss |= cpu_to_le32(((u32)cm_node->tcp_cntxt.mss) << 16);
2711
2712         nesqp->nesqp_context->tcp_state_flow_label |= cpu_to_le32(
2713                 (u32)NES_QPCONTEXT_TCPSTATE_EST << NES_QPCONTEXT_TCPFLOW_TCP_STATE_SHIFT);
2714
2715         nesqp->nesqp_context->pd_index_wscale |= cpu_to_le32(
2716                 (cm_node->tcp_cntxt.snd_wscale << NES_QPCONTEXT_PDWSCALE_SND_WSCALE_SHIFT) &
2717                 NES_QPCONTEXT_PDWSCALE_SND_WSCALE_MASK);
2718
2719         nesqp->nesqp_context->pd_index_wscale |= cpu_to_le32(
2720                 (cm_node->tcp_cntxt.rcv_wscale << NES_QPCONTEXT_PDWSCALE_RCV_WSCALE_SHIFT) &
2721                 NES_QPCONTEXT_PDWSCALE_RCV_WSCALE_MASK);
2722
2723         nesqp->nesqp_context->keepalive = cpu_to_le32(0x80);
2724         nesqp->nesqp_context->ts_recent = 0;
2725         nesqp->nesqp_context->ts_age = 0;
2726         nesqp->nesqp_context->snd_nxt = cpu_to_le32(cm_node->tcp_cntxt.loc_seq_num);
2727         nesqp->nesqp_context->snd_wnd = cpu_to_le32(cm_node->tcp_cntxt.snd_wnd);
2728         nesqp->nesqp_context->rcv_nxt = cpu_to_le32(cm_node->tcp_cntxt.rcv_nxt);
2729         nesqp->nesqp_context->rcv_wnd = cpu_to_le32(cm_node->tcp_cntxt.rcv_wnd <<
2730                                                     cm_node->tcp_cntxt.rcv_wscale);
2731         nesqp->nesqp_context->snd_max = cpu_to_le32(cm_node->tcp_cntxt.loc_seq_num);
2732         nesqp->nesqp_context->snd_una = cpu_to_le32(cm_node->tcp_cntxt.loc_seq_num);
2733         nesqp->nesqp_context->srtt = 0;
2734         nesqp->nesqp_context->rttvar = cpu_to_le32(0x6);
2735         nesqp->nesqp_context->ssthresh = cpu_to_le32(0x3FFFC000);
2736         nesqp->nesqp_context->cwnd = cpu_to_le32(2 * cm_node->tcp_cntxt.mss);
2737         nesqp->nesqp_context->snd_wl1 = cpu_to_le32(cm_node->tcp_cntxt.rcv_nxt);
2738         nesqp->nesqp_context->snd_wl2 = cpu_to_le32(cm_node->tcp_cntxt.loc_seq_num);
2739         nesqp->nesqp_context->max_snd_wnd = cpu_to_le32(cm_node->tcp_cntxt.max_snd_wnd);
2740
2741         nes_debug(NES_DBG_CM, "QP%u: rcv_nxt = 0x%08X, snd_nxt = 0x%08X,"
2742                   " Setting MSS to %u, PDWscale = 0x%08X, rcv_wnd = %u, context misc = 0x%08X.\n",
2743                   nesqp->hwqp.qp_id, le32_to_cpu(nesqp->nesqp_context->rcv_nxt),
2744                   le32_to_cpu(nesqp->nesqp_context->snd_nxt),
2745                   cm_node->tcp_cntxt.mss, le32_to_cpu(nesqp->nesqp_context->pd_index_wscale),
2746                   le32_to_cpu(nesqp->nesqp_context->rcv_wnd),
2747                   le32_to_cpu(nesqp->nesqp_context->misc));
2748         nes_debug(NES_DBG_CM, "  snd_wnd  = 0x%08X.\n", le32_to_cpu(nesqp->nesqp_context->snd_wnd));
2749         nes_debug(NES_DBG_CM, "  snd_cwnd = 0x%08X.\n", le32_to_cpu(nesqp->nesqp_context->cwnd));
2750         nes_debug(NES_DBG_CM, "  max_swnd = 0x%08X.\n", le32_to_cpu(nesqp->nesqp_context->max_snd_wnd));
2751
2752         nes_debug(NES_DBG_CM, "Change cm_node state to TSA\n");
2753         cm_node->state = NES_CM_STATE_TSA;
2754
2755         return ret;
2756 }
2757
2758
2759 /**
2760  * nes_cm_disconn
2761  */
2762 int nes_cm_disconn(struct nes_qp *nesqp)
2763 {
2764         struct disconn_work *work;
2765
2766         work = kzalloc(sizeof *work, GFP_ATOMIC);
2767         if (!work)
2768                 return -ENOMEM;  /* Timer will clean up */
2769
2770         nes_add_ref(&nesqp->ibqp);
2771         work->nesqp = nesqp;
2772         INIT_WORK(&work->work, nes_disconnect_worker);
2773         queue_work(g_cm_core->disconn_wq, &work->work);
2774         return 0;
2775 }
2776
2777
2778 /**
2779  * nes_disconnect_worker
2780  */
2781 static void nes_disconnect_worker(struct work_struct *work)
2782 {
2783         struct disconn_work *dwork = container_of(work, struct disconn_work, work);
2784         struct nes_qp *nesqp = dwork->nesqp;
2785
2786         kfree(dwork);
2787         nes_debug(NES_DBG_CM, "processing AEQE id 0x%04X for QP%u.\n",
2788                   nesqp->last_aeq, nesqp->hwqp.qp_id);
2789         nes_cm_disconn_true(nesqp);
2790         nes_rem_ref(&nesqp->ibqp);
2791 }
2792
2793
2794 /**
2795  * nes_cm_disconn_true
2796  */
2797 static int nes_cm_disconn_true(struct nes_qp *nesqp)
2798 {
2799         unsigned long flags;
2800         int ret = 0;
2801         struct iw_cm_id *cm_id;
2802         struct iw_cm_event cm_event;
2803         struct nes_vnic *nesvnic;
2804         u16 last_ae;
2805         u8 original_hw_tcp_state;
2806         u8 original_ibqp_state;
2807         int disconn_status = 0;
2808         int issue_disconn = 0;
2809         int issue_close = 0;
2810         int issue_flush = 0;
2811         u32 flush_q = NES_CQP_FLUSH_RQ;
2812         struct ib_event ibevent;
2813
2814         if (!nesqp) {
2815                 nes_debug(NES_DBG_CM, "disconnect_worker nesqp is NULL\n");
2816                 return -1;
2817         }
2818
2819         spin_lock_irqsave(&nesqp->lock, flags);
2820         cm_id = nesqp->cm_id;
2821         /* make sure we havent already closed this connection */
2822         if (!cm_id) {
2823                 nes_debug(NES_DBG_CM, "QP%u disconnect_worker cmid is NULL\n",
2824                           nesqp->hwqp.qp_id);
2825                 spin_unlock_irqrestore(&nesqp->lock, flags);
2826                 return -1;
2827         }
2828
2829         nesvnic = to_nesvnic(nesqp->ibqp.device);
2830         nes_debug(NES_DBG_CM, "Disconnecting QP%u\n", nesqp->hwqp.qp_id);
2831
2832         original_hw_tcp_state = nesqp->hw_tcp_state;
2833         original_ibqp_state = nesqp->ibqp_state;
2834         last_ae = nesqp->last_aeq;
2835
2836         if (nesqp->term_flags) {
2837                 issue_disconn = 1;
2838                 issue_close = 1;
2839                 nesqp->cm_id = NULL;
2840                 del_timer(&nesqp->terminate_timer);
2841                 if (nesqp->flush_issued == 0) {
2842                         nesqp->flush_issued = 1;
2843                         issue_flush = 1;
2844                 }
2845         } else if ((original_hw_tcp_state == NES_AEQE_TCP_STATE_CLOSE_WAIT) ||
2846                         ((original_ibqp_state == IB_QPS_RTS) &&
2847                         (last_ae == NES_AEQE_AEID_LLP_CONNECTION_RESET))) {
2848                 issue_disconn = 1;
2849                 if (last_ae == NES_AEQE_AEID_LLP_CONNECTION_RESET)
2850                         disconn_status = -ECONNRESET;
2851         }
2852
2853         if (((original_hw_tcp_state == NES_AEQE_TCP_STATE_CLOSED) ||
2854                  (original_hw_tcp_state == NES_AEQE_TCP_STATE_TIME_WAIT) ||
2855                  (last_ae == NES_AEQE_AEID_RDMAP_ROE_BAD_LLP_CLOSE) ||
2856                  (last_ae == NES_AEQE_AEID_LLP_CONNECTION_RESET))) {
2857                 issue_close = 1;
2858                 nesqp->cm_id = NULL;
2859                 if (nesqp->flush_issued == 0) {
2860                         nesqp->flush_issued = 1;
2861                         issue_flush = 1;
2862                 }
2863         }
2864
2865         spin_unlock_irqrestore(&nesqp->lock, flags);
2866
2867         if ((issue_flush) && (nesqp->destroyed == 0)) {
2868                 /* Flush the queue(s) */
2869                 if (nesqp->hw_iwarp_state >= NES_AEQE_IWARP_STATE_TERMINATE)
2870                         flush_q |= NES_CQP_FLUSH_SQ;
2871                 flush_wqes(nesvnic->nesdev, nesqp, flush_q, 1);
2872
2873                 if (nesqp->term_flags) {
2874                         ibevent.device = nesqp->ibqp.device;
2875                         ibevent.event = nesqp->terminate_eventtype;
2876                         ibevent.element.qp = &nesqp->ibqp;
2877                         nesqp->ibqp.event_handler(&ibevent, nesqp->ibqp.qp_context);
2878                 }
2879         }
2880
2881         if ((cm_id) && (cm_id->event_handler)) {
2882                 if (issue_disconn) {
2883                         atomic_inc(&cm_disconnects);
2884                         cm_event.event = IW_CM_EVENT_DISCONNECT;
2885                         cm_event.status = disconn_status;
2886                         cm_event.local_addr = cm_id->local_addr;
2887                         cm_event.remote_addr = cm_id->remote_addr;
2888                         cm_event.private_data = NULL;
2889                         cm_event.private_data_len = 0;
2890
2891                         nes_debug(NES_DBG_CM, "Generating a CM Disconnect Event"
2892                                   " for  QP%u, SQ Head = %u, SQ Tail = %u. "
2893                                   "cm_id = %p, refcount = %u.\n",
2894                                   nesqp->hwqp.qp_id, nesqp->hwqp.sq_head,
2895                                   nesqp->hwqp.sq_tail, cm_id,
2896                                   atomic_read(&nesqp->refcount));
2897
2898                         ret = cm_id->event_handler(cm_id, &cm_event);
2899                         if (ret)
2900                                 nes_debug(NES_DBG_CM, "OFA CM event_handler "
2901                                           "returned, ret=%d\n", ret);
2902                 }
2903
2904                 if (issue_close) {
2905                         atomic_inc(&cm_closes);
2906                         nes_disconnect(nesqp, 1);
2907
2908                         cm_id->provider_data = nesqp;
2909                         /* Send up the close complete event */
2910                         cm_event.event = IW_CM_EVENT_CLOSE;
2911                         cm_event.status = 0;
2912                         cm_event.provider_data = cm_id->provider_data;
2913                         cm_event.local_addr = cm_id->local_addr;
2914                         cm_event.remote_addr = cm_id->remote_addr;
2915                         cm_event.private_data = NULL;
2916                         cm_event.private_data_len = 0;
2917
2918                         ret = cm_id->event_handler(cm_id, &cm_event);
2919                         if (ret)
2920                                 nes_debug(NES_DBG_CM, "OFA CM event_handler returned, ret=%d\n", ret);
2921
2922                         cm_id->rem_ref(cm_id);
2923                 }
2924         }
2925
2926         return 0;
2927 }
2928
2929
2930 /**
2931  * nes_disconnect
2932  */
2933 static int nes_disconnect(struct nes_qp *nesqp, int abrupt)
2934 {
2935         int ret = 0;
2936         struct nes_vnic *nesvnic;
2937         struct nes_device *nesdev;
2938         struct nes_ib_device *nesibdev;
2939
2940         nesvnic = to_nesvnic(nesqp->ibqp.device);
2941         if (!nesvnic)
2942                 return -EINVAL;
2943
2944         nesdev = nesvnic->nesdev;
2945         nesibdev = nesvnic->nesibdev;
2946
2947         nes_debug(NES_DBG_CM, "netdev refcnt = %u.\n",
2948                         netdev_refcnt_read(nesvnic->netdev));
2949
2950         if (nesqp->active_conn) {
2951
2952                 /* indicate this connection is NOT active */
2953                 nesqp->active_conn = 0;
2954         } else {
2955                 /* Need to free the Last Streaming Mode Message */
2956                 if (nesqp->ietf_frame) {
2957                         if (nesqp->lsmm_mr)
2958                                 nesibdev->ibdev.dereg_mr(nesqp->lsmm_mr);
2959                         pci_free_consistent(nesdev->pcidev,
2960                                             nesqp->private_data_len + nesqp->ietf_frame_size,
2961                                             nesqp->ietf_frame, nesqp->ietf_frame_pbase);
2962                 }
2963         }
2964
2965         /* close the CM node down if it is still active */
2966         if (nesqp->cm_node) {
2967                 nes_debug(NES_DBG_CM, "Call close API\n");
2968
2969                 g_cm_core->api->close(g_cm_core, nesqp->cm_node);
2970         }
2971
2972         return ret;
2973 }
2974
2975
2976 /**
2977  * nes_accept
2978  */
2979 int nes_accept(struct iw_cm_id *cm_id, struct iw_cm_conn_param *conn_param)
2980 {
2981         u64 u64temp;
2982         struct ib_qp *ibqp;
2983         struct nes_qp *nesqp;
2984         struct nes_vnic *nesvnic;
2985         struct nes_device *nesdev;
2986         struct nes_cm_node *cm_node;
2987         struct nes_adapter *adapter;
2988         struct ib_qp_attr attr;
2989         struct iw_cm_event cm_event;
2990         struct nes_hw_qp_wqe *wqe;
2991         struct nes_v4_quad nes_quad;
2992         u32 crc_value;
2993         int ret;
2994         int passive_state;
2995         struct nes_ib_device *nesibdev;
2996         struct ib_mr *ibmr = NULL;
2997         struct ib_phys_buf ibphysbuf;
2998         struct nes_pd *nespd;
2999         u64 tagged_offset;
3000         u8 mpa_frame_offset = 0;
3001         struct ietf_mpa_v2 *mpa_v2_frame;
3002         u8 start_addr = 0;
3003         u8 *start_ptr = &start_addr;
3004         u8 **start_buff = &start_ptr;
3005         u16 buff_len = 0;
3006
3007         ibqp = nes_get_qp(cm_id->device, conn_param->qpn);
3008         if (!ibqp)
3009                 return -EINVAL;
3010
3011         /* get all our handles */
3012         nesqp = to_nesqp(ibqp);
3013         nesvnic = to_nesvnic(nesqp->ibqp.device);
3014         nesdev = nesvnic->nesdev;
3015         adapter = nesdev->nesadapter;
3016
3017         cm_node = (struct nes_cm_node *)cm_id->provider_data;
3018         nes_debug(NES_DBG_CM, "nes_accept: cm_node= %p nesvnic=%p, netdev=%p,"
3019                 "%s\n", cm_node, nesvnic, nesvnic->netdev,
3020                 nesvnic->netdev->name);
3021
3022         if (NES_CM_STATE_LISTENER_DESTROYED == cm_node->state) {
3023                 if (cm_node->loopbackpartner)
3024                         rem_ref_cm_node(cm_node->cm_core, cm_node->loopbackpartner);
3025                 rem_ref_cm_node(cm_node->cm_core, cm_node);
3026                 return -EINVAL;
3027         }
3028
3029         passive_state = atomic_add_return(1, &cm_node->passive_state);
3030         if (passive_state == NES_SEND_RESET_EVENT) {
3031                 rem_ref_cm_node(cm_node->cm_core, cm_node);
3032                 return -ECONNRESET;
3033         }
3034
3035         /* associate the node with the QP */
3036         nesqp->cm_node = (void *)cm_node;
3037         cm_node->nesqp = nesqp;
3038
3039         nes_debug(NES_DBG_CM, "QP%u, cm_node=%p, jiffies = %lu listener = %p\n",
3040                 nesqp->hwqp.qp_id, cm_node, jiffies, cm_node->listener);
3041         atomic_inc(&cm_accepts);
3042
3043         nes_debug(NES_DBG_CM, "netdev refcnt = %u.\n",
3044                         netdev_refcnt_read(nesvnic->netdev));
3045
3046         nesqp->ietf_frame_size = sizeof(struct ietf_mpa_v2);
3047         /* allocate the ietf frame and space for private data */
3048         nesqp->ietf_frame = pci_alloc_consistent(nesdev->pcidev,
3049                                                  nesqp->ietf_frame_size + conn_param->private_data_len,
3050                                                  &nesqp->ietf_frame_pbase);
3051
3052         if (!nesqp->ietf_frame) {
3053                 nes_debug(NES_DBG_CM, "Unable to allocate memory for private data\n");
3054                 return -ENOMEM;
3055         }
3056         mpa_v2_frame = (struct ietf_mpa_v2 *)nesqp->ietf_frame;
3057
3058         if (cm_node->mpa_frame_rev == IETF_MPA_V1)
3059                 mpa_frame_offset = 4;
3060
3061         memcpy(mpa_v2_frame->priv_data, conn_param->private_data,
3062                conn_param->private_data_len);
3063
3064         cm_build_mpa_frame(cm_node, start_buff, &buff_len, nesqp->ietf_frame, MPA_KEY_REPLY);
3065         nesqp->private_data_len = conn_param->private_data_len;
3066
3067         /* setup our first outgoing iWarp send WQE (the IETF frame response) */
3068         wqe = &nesqp->hwqp.sq_vbase[0];
3069
3070         if (cm_id->remote_addr.sin_addr.s_addr !=
3071             cm_id->local_addr.sin_addr.s_addr) {
3072                 u64temp = (unsigned long)nesqp;
3073                 nesibdev = nesvnic->nesibdev;
3074                 nespd = nesqp->nespd;
3075                 ibphysbuf.addr = nesqp->ietf_frame_pbase + mpa_frame_offset;
3076                 ibphysbuf.size = buff_len;
3077                 tagged_offset = (u64)(unsigned long)*start_buff;
3078                 ibmr = nesibdev->ibdev.reg_phys_mr((struct ib_pd *)nespd,
3079                                                    &ibphysbuf, 1,
3080                                                    IB_ACCESS_LOCAL_WRITE,
3081                                                    &tagged_offset);
3082                 if (!ibmr) {
3083                         nes_debug(NES_DBG_CM, "Unable to register memory region"
3084                                   "for lSMM for cm_node = %p \n",
3085                                   cm_node);
3086                         pci_free_consistent(nesdev->pcidev,
3087                                             nesqp->private_data_len + nesqp->ietf_frame_size,
3088                                             nesqp->ietf_frame, nesqp->ietf_frame_pbase);
3089                         return -ENOMEM;
3090                 }
3091
3092                 ibmr->pd = &nespd->ibpd;
3093                 ibmr->device = nespd->ibpd.device;
3094                 nesqp->lsmm_mr = ibmr;
3095
3096                 u64temp |= NES_SW_CONTEXT_ALIGN >> 1;
3097                 set_wqe_64bit_value(wqe->wqe_words,
3098                                     NES_IWARP_SQ_WQE_COMP_CTX_LOW_IDX,
3099                                     u64temp);
3100                 wqe->wqe_words[NES_IWARP_SQ_WQE_MISC_IDX] =
3101                         cpu_to_le32(NES_IWARP_SQ_WQE_STREAMING |
3102                                     NES_IWARP_SQ_WQE_WRPDU);
3103                 wqe->wqe_words[NES_IWARP_SQ_WQE_TOTAL_PAYLOAD_IDX] =
3104                         cpu_to_le32(buff_len);
3105                 set_wqe_64bit_value(wqe->wqe_words,
3106                                     NES_IWARP_SQ_WQE_FRAG0_LOW_IDX,
3107                                     (u64)(unsigned long)(*start_buff));
3108                 wqe->wqe_words[NES_IWARP_SQ_WQE_LENGTH0_IDX] =
3109                         cpu_to_le32(buff_len);
3110                 wqe->wqe_words[NES_IWARP_SQ_WQE_STAG0_IDX] = ibmr->lkey;
3111                 if (nesqp->sq_kmapped) {
3112                         nesqp->sq_kmapped = 0;
3113                         kunmap(nesqp->page);
3114                 }
3115
3116                 nesqp->nesqp_context->ird_ord_sizes |=
3117                         cpu_to_le32(NES_QPCONTEXT_ORDIRD_LSMM_PRESENT |
3118                                     NES_QPCONTEXT_ORDIRD_WRPDU);
3119         } else {
3120                 nesqp->nesqp_context->ird_ord_sizes |=
3121                         cpu_to_le32(NES_QPCONTEXT_ORDIRD_WRPDU);
3122         }
3123         nesqp->skip_lsmm = 1;
3124
3125
3126         /* Cache the cm_id in the qp */
3127         nesqp->cm_id = cm_id;
3128         cm_node->cm_id = cm_id;
3129
3130         /*  nesqp->cm_node = (void *)cm_id->provider_data; */
3131         cm_id->provider_data = nesqp;
3132         nesqp->active_conn = 0;
3133
3134         if (cm_node->state == NES_CM_STATE_TSA)
3135                 nes_debug(NES_DBG_CM, "Already state = TSA for cm_node=%p\n",
3136                           cm_node);
3137
3138         nes_cm_init_tsa_conn(nesqp, cm_node);
3139
3140         nesqp->nesqp_context->tcpPorts[0] =
3141                 cpu_to_le16(ntohs(cm_id->local_addr.sin_port));
3142         nesqp->nesqp_context->tcpPorts[1] =
3143                 cpu_to_le16(ntohs(cm_id->remote_addr.sin_port));
3144
3145         if (ipv4_is_loopback(cm_id->remote_addr.sin_addr.s_addr))
3146                 nesqp->nesqp_context->ip0 =
3147                         cpu_to_le32(ntohl(nesvnic->local_ipaddr));
3148         else
3149                 nesqp->nesqp_context->ip0 =
3150                         cpu_to_le32(ntohl(cm_id->remote_addr.sin_addr.s_addr));
3151
3152         nesqp->nesqp_context->misc2 |= cpu_to_le32(
3153                 (u32)PCI_FUNC(nesdev->pcidev->devfn) <<
3154                 NES_QPCONTEXT_MISC2_SRC_IP_SHIFT);
3155
3156         nesqp->nesqp_context->arp_index_vlan |=
3157                 cpu_to_le32(nes_arp_table(nesdev,
3158                                           le32_to_cpu(nesqp->nesqp_context->ip0), NULL,
3159                                           NES_ARP_RESOLVE) << 16);
3160
3161         nesqp->nesqp_context->ts_val_delta = cpu_to_le32(
3162                 jiffies - nes_read_indexed(nesdev, NES_IDX_TCP_NOW));
3163
3164         nesqp->nesqp_context->ird_index = cpu_to_le32(nesqp->hwqp.qp_id);
3165
3166         nesqp->nesqp_context->ird_ord_sizes |= cpu_to_le32(
3167                 ((u32)1 << NES_QPCONTEXT_ORDIRD_IWARP_MODE_SHIFT));
3168         nesqp->nesqp_context->ird_ord_sizes |=
3169                 cpu_to_le32((u32)conn_param->ord);
3170
3171         memset(&nes_quad, 0, sizeof(nes_quad));
3172         nes_quad.DstIpAdrIndex =
3173                 cpu_to_le32((u32)PCI_FUNC(nesdev->pcidev->devfn) << 24);
3174         if (ipv4_is_loopback(cm_id->remote_addr.sin_addr.s_addr))
3175                 nes_quad.SrcIpadr = nesvnic->local_ipaddr;
3176         else
3177                 nes_quad.SrcIpadr = cm_id->remote_addr.sin_addr.s_addr;
3178         nes_quad.TcpPorts[0] = cm_id->remote_addr.sin_port;
3179         nes_quad.TcpPorts[1] = cm_id->local_addr.sin_port;
3180
3181         /* Produce hash key */
3182         crc_value = get_crc_value(&nes_quad);
3183         nesqp->hte_index = cpu_to_be32(crc_value ^ 0xffffffff);
3184         nes_debug(NES_DBG_CM, "HTE Index = 0x%08X, CRC = 0x%08X\n",
3185                   nesqp->hte_index, nesqp->hte_index & adapter->hte_index_mask);
3186
3187         nesqp->hte_index &= adapter->hte_index_mask;
3188         nesqp->nesqp_context->hte_index = cpu_to_le32(nesqp->hte_index);
3189
3190         cm_node->cm_core->api->accelerated(cm_node->cm_core, cm_node);
3191
3192         nes_debug(NES_DBG_CM, "QP%u, Destination IP = 0x%08X:0x%04X, local = "
3193                   "0x%08X:0x%04X, rcv_nxt=0x%08X, snd_nxt=0x%08X, mpa + "
3194                   "private data length=%u.\n", nesqp->hwqp.qp_id,
3195                   ntohl(cm_id->remote_addr.sin_addr.s_addr),
3196                   ntohs(cm_id->remote_addr.sin_port),
3197                   ntohl(cm_id->local_addr.sin_addr.s_addr),
3198                   ntohs(cm_id->local_addr.sin_port),
3199                   le32_to_cpu(nesqp->nesqp_context->rcv_nxt),
3200                   le32_to_cpu(nesqp->nesqp_context->snd_nxt),
3201                   buff_len);
3202
3203         /* notify OF layer that accept event was successful */
3204         cm_id->add_ref(cm_id);
3205         nes_add_ref(&nesqp->ibqp);
3206
3207         cm_event.event = IW_CM_EVENT_ESTABLISHED;
3208         cm_event.status = 0;
3209         cm_event.provider_data = (void *)nesqp;
3210         cm_event.local_addr = cm_id->local_addr;
3211         cm_event.remote_addr = cm_id->remote_addr;
3212         cm_event.private_data = NULL;
3213         cm_event.private_data_len = 0;
3214         ret = cm_id->event_handler(cm_id, &cm_event);
3215         attr.qp_state = IB_QPS_RTS;
3216         nes_modify_qp(&nesqp->ibqp, &attr, IB_QP_STATE, NULL);
3217         if (cm_node->loopbackpartner) {
3218                 cm_node->loopbackpartner->mpa_frame_size =
3219                         nesqp->private_data_len;
3220                 /* copy entire MPA frame to our cm_node's frame */
3221                 memcpy(cm_node->loopbackpartner->mpa_frame_buf,
3222                        conn_param->private_data, conn_param->private_data_len);
3223                 create_event(cm_node->loopbackpartner, NES_CM_EVENT_CONNECTED);
3224         }
3225         if (ret)
3226                 printk(KERN_ERR "%s[%u] OFA CM event_handler returned, "
3227                        "ret=%d\n", __func__, __LINE__, ret);
3228
3229         return 0;
3230 }
3231
3232
3233 /**
3234  * nes_reject
3235  */
3236 int nes_reject(struct iw_cm_id *cm_id, const void *pdata, u8 pdata_len)
3237 {
3238         struct nes_cm_node *cm_node;
3239         struct nes_cm_node *loopback;
3240         struct nes_cm_core *cm_core;
3241         u8 *start_buff;
3242
3243         atomic_inc(&cm_rejects);
3244         cm_node = (struct nes_cm_node *)cm_id->provider_data;
3245         loopback = cm_node->loopbackpartner;
3246         cm_core = cm_node->cm_core;
3247         cm_node->cm_id = cm_id;
3248
3249         if (pdata_len + sizeof(struct ietf_mpa_v2) > MAX_CM_BUFFER)
3250                 return -EINVAL;
3251
3252         if (loopback) {
3253                 memcpy(&loopback->mpa_frame.priv_data, pdata, pdata_len);
3254                 loopback->mpa_frame.priv_data_len = pdata_len;
3255                 loopback->mpa_frame_size = pdata_len;
3256         } else {
3257                 start_buff = &cm_node->mpa_frame_buf[0] + sizeof(struct ietf_mpa_v2);
3258                 cm_node->mpa_frame_size = pdata_len;
3259                 memcpy(start_buff, pdata, pdata_len);
3260         }
3261         return cm_core->api->reject(cm_core, cm_node);
3262 }
3263
3264
3265 /**
3266  * nes_connect
3267  * setup and launch cm connect node
3268  */
3269 int nes_connect(struct iw_cm_id *cm_id, struct iw_cm_conn_param *conn_param)
3270 {
3271         struct ib_qp *ibqp;
3272         struct nes_qp *nesqp;
3273         struct nes_vnic *nesvnic;
3274         struct nes_device *nesdev;
3275         struct nes_cm_node *cm_node;
3276         struct nes_cm_info cm_info;
3277         int apbvt_set = 0;
3278
3279         ibqp = nes_get_qp(cm_id->device, conn_param->qpn);
3280         if (!ibqp)
3281                 return -EINVAL;
3282         nesqp = to_nesqp(ibqp);
3283         if (!nesqp)
3284                 return -EINVAL;
3285         nesvnic = to_nesvnic(nesqp->ibqp.device);
3286         if (!nesvnic)
3287                 return -EINVAL;
3288         nesdev = nesvnic->nesdev;
3289         if (!nesdev)
3290                 return -EINVAL;
3291
3292         if (!(cm_id->local_addr.sin_port) || !(cm_id->remote_addr.sin_port))
3293                 return -EINVAL;
3294
3295         nes_debug(NES_DBG_CM, "QP%u, current IP = 0x%08X, Destination IP = "
3296                   "0x%08X:0x%04X, local = 0x%08X:0x%04X.\n", nesqp->hwqp.qp_id,
3297                   ntohl(nesvnic->local_ipaddr),
3298                   ntohl(cm_id->remote_addr.sin_addr.s_addr),
3299                   ntohs(cm_id->remote_addr.sin_port),
3300                   ntohl(cm_id->local_addr.sin_addr.s_addr),
3301                   ntohs(cm_id->local_addr.sin_port));
3302
3303         atomic_inc(&cm_connects);
3304         nesqp->active_conn = 1;
3305
3306         /* cache the cm_id in the qp */
3307         nesqp->cm_id = cm_id;
3308
3309         cm_id->provider_data = nesqp;
3310
3311         nesqp->private_data_len = conn_param->private_data_len;
3312         nesqp->nesqp_context->ird_ord_sizes |= cpu_to_le32((u32)conn_param->ord);
3313         nes_debug(NES_DBG_CM, "requested ord = 0x%08X.\n", (u32)conn_param->ord);
3314         nes_debug(NES_DBG_CM, "mpa private data len =%u\n",
3315                   conn_param->private_data_len);
3316
3317         if (cm_id->local_addr.sin_addr.s_addr !=
3318             cm_id->remote_addr.sin_addr.s_addr) {
3319                 nes_manage_apbvt(nesvnic, ntohs(cm_id->local_addr.sin_port),
3320                                  PCI_FUNC(nesdev->pcidev->devfn), NES_MANAGE_APBVT_ADD);
3321                 apbvt_set = 1;
3322         }
3323
3324         /* set up the connection params for the node */
3325         cm_info.loc_addr = htonl(cm_id->local_addr.sin_addr.s_addr);
3326         cm_info.loc_port = htons(cm_id->local_addr.sin_port);
3327         cm_info.rem_addr = htonl(cm_id->remote_addr.sin_addr.s_addr);
3328         cm_info.rem_port = htons(cm_id->remote_addr.sin_port);
3329         cm_info.cm_id = cm_id;
3330         cm_info.conn_type = NES_CM_IWARP_CONN_TYPE;
3331
3332         cm_id->add_ref(cm_id);
3333
3334         /* create a connect CM node connection */
3335         cm_node = g_cm_core->api->connect(g_cm_core, nesvnic,
3336                                           conn_param->private_data_len, (void *)conn_param->private_data,
3337                                           &cm_info);
3338         if (!cm_node) {
3339                 if (apbvt_set)
3340                         nes_manage_apbvt(nesvnic, ntohs(cm_id->local_addr.sin_port),
3341                                          PCI_FUNC(nesdev->pcidev->devfn),
3342                                          NES_MANAGE_APBVT_DEL);
3343
3344                 cm_id->rem_ref(cm_id);
3345                 return -ENOMEM;
3346         }
3347
3348         cm_node->apbvt_set = apbvt_set;
3349         nesqp->cm_node = cm_node;
3350         cm_node->nesqp = nesqp;
3351         nes_add_ref(&nesqp->ibqp);
3352
3353         return 0;
3354 }
3355
3356
3357 /**
3358  * nes_create_listen
3359  */
3360 int nes_create_listen(struct iw_cm_id *cm_id, int backlog)
3361 {
3362         struct nes_vnic *nesvnic;
3363         struct nes_cm_listener *cm_node;
3364         struct nes_cm_info cm_info;
3365         int err;
3366
3367         nes_debug(NES_DBG_CM, "cm_id = %p, local port = 0x%04X.\n",
3368                         cm_id, ntohs(cm_id->local_addr.sin_port));
3369
3370         nesvnic = to_nesvnic(cm_id->device);
3371         if (!nesvnic)
3372                 return -EINVAL;
3373
3374         nes_debug(NES_DBG_CM, "nesvnic=%p, netdev=%p, %s\n",
3375                         nesvnic, nesvnic->netdev, nesvnic->netdev->name);
3376
3377         nes_debug(NES_DBG_CM, "nesvnic->local_ipaddr=0x%08x, sin_addr.s_addr=0x%08x\n",
3378                         nesvnic->local_ipaddr, cm_id->local_addr.sin_addr.s_addr);
3379
3380         /* setup listen params in our api call struct */
3381         cm_info.loc_addr = nesvnic->local_ipaddr;
3382         cm_info.loc_port = cm_id->local_addr.sin_port;
3383         cm_info.backlog = backlog;
3384         cm_info.cm_id = cm_id;
3385
3386         cm_info.conn_type = NES_CM_IWARP_CONN_TYPE;
3387
3388
3389         cm_node = g_cm_core->api->listen(g_cm_core, nesvnic, &cm_info);
3390         if (!cm_node) {
3391                 printk(KERN_ERR "%s[%u] Error returned from listen API call\n",
3392                        __func__, __LINE__);
3393                 return -ENOMEM;
3394         }
3395
3396         cm_id->provider_data = cm_node;
3397
3398         if (!cm_node->reused_node) {
3399                 err = nes_manage_apbvt(nesvnic,
3400                                        ntohs(cm_id->local_addr.sin_port),
3401                                        PCI_FUNC(nesvnic->nesdev->pcidev->devfn),
3402                                        NES_MANAGE_APBVT_ADD);
3403                 if (err) {
3404                         printk(KERN_ERR "nes_manage_apbvt call returned %d.\n",
3405                                err);
3406                         g_cm_core->api->stop_listener(g_cm_core, (void *)cm_node);
3407                         return err;
3408                 }
3409                 atomic_inc(&cm_listens_created);
3410         }
3411
3412         cm_id->add_ref(cm_id);
3413         cm_id->provider_data = (void *)cm_node;
3414
3415
3416         return 0;
3417 }
3418
3419
3420 /**
3421  * nes_destroy_listen
3422  */
3423 int nes_destroy_listen(struct iw_cm_id *cm_id)
3424 {
3425         if (cm_id->provider_data)
3426                 g_cm_core->api->stop_listener(g_cm_core, cm_id->provider_data);
3427         else
3428                 nes_debug(NES_DBG_CM, "cm_id->provider_data was NULL\n");
3429
3430         cm_id->rem_ref(cm_id);
3431
3432         return 0;
3433 }
3434
3435
3436 /**
3437  * nes_cm_recv
3438  */
3439 int nes_cm_recv(struct sk_buff *skb, struct net_device *netdevice)
3440 {
3441         int rc = 0;
3442
3443         cm_packets_received++;
3444         if ((g_cm_core) && (g_cm_core->api))
3445                 rc = g_cm_core->api->recv_pkt(g_cm_core, netdev_priv(netdevice), skb);
3446         else
3447                 nes_debug(NES_DBG_CM, "Unable to process packet for CM,"
3448                           " cm is not setup properly.\n");
3449
3450         return rc;
3451 }
3452
3453
3454 /**
3455  * nes_cm_start
3456  * Start and init a cm core module
3457  */
3458 int nes_cm_start(void)
3459 {
3460         nes_debug(NES_DBG_CM, "\n");
3461         /* create the primary CM core, pass this handle to subsequent core inits */
3462         g_cm_core = nes_cm_alloc_core();
3463         if (g_cm_core)
3464                 return 0;
3465         else
3466                 return -ENOMEM;
3467 }
3468
3469
3470 /**
3471  * nes_cm_stop
3472  * stop and dealloc all cm core instances
3473  */
3474 int nes_cm_stop(void)
3475 {
3476         g_cm_core->api->destroy_cm_core(g_cm_core);
3477         return 0;
3478 }
3479
3480
3481 /**
3482  * cm_event_connected
3483  * handle a connected event, setup QPs and HW
3484  */
3485 static void cm_event_connected(struct nes_cm_event *event)
3486 {
3487         struct nes_qp *nesqp;
3488         struct nes_vnic *nesvnic;
3489         struct nes_device *nesdev;
3490         struct nes_cm_node *cm_node;
3491         struct nes_adapter *nesadapter;
3492         struct ib_qp_attr attr;
3493         struct iw_cm_id *cm_id;
3494         struct iw_cm_event cm_event;
3495         struct nes_v4_quad nes_quad;
3496         u32 crc_value;
3497         int ret;
3498
3499         /* get all our handles */
3500         cm_node = event->cm_node;
3501         cm_id = cm_node->cm_id;
3502         nes_debug(NES_DBG_CM, "cm_event_connected - %p - cm_id = %p\n", cm_node, cm_id);
3503         nesqp = (struct nes_qp *)cm_id->provider_data;
3504         nesvnic = to_nesvnic(nesqp->ibqp.device);
3505         nesdev = nesvnic->nesdev;
3506         nesadapter = nesdev->nesadapter;
3507
3508         if (nesqp->destroyed)
3509                 return;
3510         atomic_inc(&cm_connecteds);
3511         nes_debug(NES_DBG_CM, "QP%u attempting to connect to  0x%08X:0x%04X on"
3512                   " local port 0x%04X. jiffies = %lu.\n",
3513                   nesqp->hwqp.qp_id,
3514                   ntohl(cm_id->remote_addr.sin_addr.s_addr),
3515                   ntohs(cm_id->remote_addr.sin_port),
3516                   ntohs(cm_id->local_addr.sin_port),
3517                   jiffies);
3518
3519         nes_cm_init_tsa_conn(nesqp, cm_node);
3520
3521         /* set the QP tsa context */
3522         nesqp->nesqp_context->tcpPorts[0] =
3523                 cpu_to_le16(ntohs(cm_id->local_addr.sin_port));
3524         nesqp->nesqp_context->tcpPorts[1] =
3525                 cpu_to_le16(ntohs(cm_id->remote_addr.sin_port));
3526         if (ipv4_is_loopback(cm_id->remote_addr.sin_addr.s_addr))
3527                 nesqp->nesqp_context->ip0 =
3528                         cpu_to_le32(ntohl(nesvnic->local_ipaddr));
3529         else
3530                 nesqp->nesqp_context->ip0 =
3531                         cpu_to_le32(ntohl(cm_id->remote_addr.sin_addr.s_addr));
3532
3533         nesqp->nesqp_context->misc2 |= cpu_to_le32(
3534                         (u32)PCI_FUNC(nesdev->pcidev->devfn) <<
3535                         NES_QPCONTEXT_MISC2_SRC_IP_SHIFT);
3536         nesqp->nesqp_context->arp_index_vlan |= cpu_to_le32(
3537                         nes_arp_table(nesdev,
3538                         le32_to_cpu(nesqp->nesqp_context->ip0),
3539                         NULL, NES_ARP_RESOLVE) << 16);
3540         nesqp->nesqp_context->ts_val_delta = cpu_to_le32(
3541                         jiffies - nes_read_indexed(nesdev, NES_IDX_TCP_NOW));
3542         nesqp->nesqp_context->ird_index = cpu_to_le32(nesqp->hwqp.qp_id);
3543         nesqp->nesqp_context->ird_ord_sizes |=
3544                         cpu_to_le32((u32)1 <<
3545                         NES_QPCONTEXT_ORDIRD_IWARP_MODE_SHIFT);
3546
3547         /* Adjust tail for not having a LSMM */
3548         /*nesqp->hwqp.sq_tail = 1;*/
3549
3550         build_rdma0_msg(cm_node, &nesqp);
3551
3552         nes_write32(nesdev->regs + NES_WQE_ALLOC,
3553                     (1 << 24) | 0x00800000 | nesqp->hwqp.qp_id);
3554
3555         memset(&nes_quad, 0, sizeof(nes_quad));
3556
3557         nes_quad.DstIpAdrIndex =
3558                 cpu_to_le32((u32)PCI_FUNC(nesdev->pcidev->devfn) << 24);
3559         if (ipv4_is_loopback(cm_id->remote_addr.sin_addr.s_addr))
3560                 nes_quad.SrcIpadr = nesvnic->local_ipaddr;
3561         else
3562                 nes_quad.SrcIpadr = cm_id->remote_addr.sin_addr.s_addr;
3563         nes_quad.TcpPorts[0] = cm_id->remote_addr.sin_port;
3564         nes_quad.TcpPorts[1] = cm_id->local_addr.sin_port;
3565
3566         /* Produce hash key */
3567         crc_value = get_crc_value(&nes_quad);
3568         nesqp->hte_index = cpu_to_be32(crc_value ^ 0xffffffff);
3569         nes_debug(NES_DBG_CM, "HTE Index = 0x%08X, After CRC = 0x%08X\n",
3570                   nesqp->hte_index, nesqp->hte_index & nesadapter->hte_index_mask);
3571
3572         nesqp->hte_index &= nesadapter->hte_index_mask;
3573         nesqp->nesqp_context->hte_index = cpu_to_le32(nesqp->hte_index);
3574
3575         nesqp->ietf_frame = &cm_node->mpa_frame;
3576         nesqp->private_data_len = (u8)cm_node->mpa_frame_size;
3577         cm_node->cm_core->api->accelerated(cm_node->cm_core, cm_node);
3578
3579         /* notify OF layer we successfully created the requested connection */
3580         cm_event.event = IW_CM_EVENT_CONNECT_REPLY;
3581         cm_event.status = 0;
3582         cm_event.provider_data = cm_id->provider_data;
3583         cm_event.local_addr.sin_family = AF_INET;
3584         cm_event.local_addr.sin_port = cm_id->local_addr.sin_port;
3585         cm_event.remote_addr = cm_id->remote_addr;
3586
3587         cm_event.private_data = (void *)event->cm_node->mpa_frame_buf;
3588         cm_event.private_data_len = (u8)event->cm_node->mpa_frame_size;
3589         cm_event.ird = cm_node->ird_size;
3590         cm_event.ord = cm_node->ord_size;
3591
3592         cm_event.local_addr.sin_addr.s_addr = event->cm_info.rem_addr;
3593         ret = cm_id->event_handler(cm_id, &cm_event);
3594         nes_debug(NES_DBG_CM, "OFA CM event_handler returned, ret=%d\n", ret);
3595
3596         if (ret)
3597                 printk(KERN_ERR "%s[%u] OFA CM event_handler returned, "
3598                        "ret=%d\n", __func__, __LINE__, ret);
3599         attr.qp_state = IB_QPS_RTS;
3600         nes_modify_qp(&nesqp->ibqp, &attr, IB_QP_STATE, NULL);
3601
3602         nes_debug(NES_DBG_CM, "Exiting connect thread for QP%u. jiffies = "
3603                   "%lu\n", nesqp->hwqp.qp_id, jiffies);
3604
3605         return;
3606 }
3607
3608
3609 /**
3610  * cm_event_connect_error
3611  */
3612 static void cm_event_connect_error(struct nes_cm_event *event)
3613 {
3614         struct nes_qp *nesqp;
3615         struct iw_cm_id *cm_id;
3616         struct iw_cm_event cm_event;
3617         /* struct nes_cm_info cm_info; */
3618         int ret;
3619
3620         if (!event->cm_node)
3621                 return;
3622
3623         cm_id = event->cm_node->cm_id;
3624         if (!cm_id)
3625                 return;
3626
3627         nes_debug(NES_DBG_CM, "cm_node=%p, cm_id=%p\n", event->cm_node, cm_id);
3628         nesqp = cm_id->provider_data;
3629
3630         if (!nesqp)
3631                 return;
3632
3633         /* notify OF layer about this connection error event */
3634         /* cm_id->rem_ref(cm_id); */
3635         nesqp->cm_id = NULL;
3636         cm_id->provider_data = NULL;
3637         cm_event.event = IW_CM_EVENT_CONNECT_REPLY;
3638         cm_event.status = -ECONNRESET;
3639         cm_event.provider_data = cm_id->provider_data;
3640         cm_event.local_addr = cm_id->local_addr;
3641         cm_event.remote_addr = cm_id->remote_addr;
3642         cm_event.private_data = NULL;
3643         cm_event.private_data_len = 0;
3644
3645         nes_debug(NES_DBG_CM, "call CM_EVENT REJECTED, local_addr=%08x, "
3646                   "remove_addr=%08x\n", cm_event.local_addr.sin_addr.s_addr,
3647                   cm_event.remote_addr.sin_addr.s_addr);
3648
3649         ret = cm_id->event_handler(cm_id, &cm_event);
3650         nes_debug(NES_DBG_CM, "OFA CM event_handler returned, ret=%d\n", ret);
3651         if (ret)
3652                 printk(KERN_ERR "%s[%u] OFA CM event_handler returned, "
3653                        "ret=%d\n", __func__, __LINE__, ret);
3654         cm_id->rem_ref(cm_id);
3655
3656         rem_ref_cm_node(event->cm_node->cm_core, event->cm_node);
3657         return;
3658 }
3659
3660
3661 /**
3662  * cm_event_reset
3663  */
3664 static void cm_event_reset(struct nes_cm_event *event)
3665 {
3666         struct nes_qp *nesqp;
3667         struct iw_cm_id *cm_id;
3668         struct iw_cm_event cm_event;
3669         /* struct nes_cm_info cm_info; */
3670         int ret;
3671
3672         if (!event->cm_node)
3673                 return;
3674
3675         if (!event->cm_node->cm_id)
3676                 return;
3677
3678         cm_id = event->cm_node->cm_id;
3679
3680         nes_debug(NES_DBG_CM, "%p - cm_id = %p\n", event->cm_node, cm_id);
3681         nesqp = cm_id->provider_data;
3682         if (!nesqp)
3683                 return;
3684
3685         nesqp->cm_id = NULL;
3686         /* cm_id->provider_data = NULL; */
3687         cm_event.event = IW_CM_EVENT_DISCONNECT;
3688         cm_event.status = -ECONNRESET;
3689         cm_event.provider_data = cm_id->provider_data;
3690         cm_event.local_addr = cm_id->local_addr;
3691         cm_event.remote_addr = cm_id->remote_addr;
3692         cm_event.private_data = NULL;
3693         cm_event.private_data_len = 0;
3694
3695         cm_id->add_ref(cm_id);
3696         ret = cm_id->event_handler(cm_id, &cm_event);
3697         atomic_inc(&cm_closes);
3698         cm_event.event = IW_CM_EVENT_CLOSE;
3699         cm_event.status = 0;
3700         cm_event.provider_data = cm_id->provider_data;
3701         cm_event.local_addr = cm_id->local_addr;
3702         cm_event.remote_addr = cm_id->remote_addr;
3703         cm_event.private_data = NULL;
3704         cm_event.private_data_len = 0;
3705         nes_debug(NES_DBG_CM, "NODE %p Generating CLOSE\n", event->cm_node);
3706         ret = cm_id->event_handler(cm_id, &cm_event);
3707
3708         nes_debug(NES_DBG_CM, "OFA CM event_handler returned, ret=%d\n", ret);
3709
3710
3711         /* notify OF layer about this connection error event */
3712         cm_id->rem_ref(cm_id);
3713
3714         return;
3715 }
3716
3717
3718 /**
3719  * cm_event_mpa_req
3720  */
3721 static void cm_event_mpa_req(struct nes_cm_event *event)
3722 {
3723         struct iw_cm_id *cm_id;
3724         struct iw_cm_event cm_event;
3725         int ret;
3726         struct nes_cm_node *cm_node;
3727
3728         cm_node = event->cm_node;
3729         if (!cm_node)
3730                 return;
3731         cm_id = cm_node->cm_id;
3732
3733         atomic_inc(&cm_connect_reqs);
3734         nes_debug(NES_DBG_CM, "cm_node = %p - cm_id = %p, jiffies = %lu\n",
3735                   cm_node, cm_id, jiffies);
3736
3737         cm_event.event = IW_CM_EVENT_CONNECT_REQUEST;
3738         cm_event.status = 0;
3739         cm_event.provider_data = (void *)cm_node;
3740
3741         cm_event.local_addr.sin_family = AF_INET;
3742         cm_event.local_addr.sin_port = htons(event->cm_info.loc_port);
3743         cm_event.local_addr.sin_addr.s_addr = htonl(event->cm_info.loc_addr);
3744
3745         cm_event.remote_addr.sin_family = AF_INET;
3746         cm_event.remote_addr.sin_port = htons(event->cm_info.rem_port);
3747         cm_event.remote_addr.sin_addr.s_addr = htonl(event->cm_info.rem_addr);
3748         cm_event.private_data = cm_node->mpa_frame_buf;
3749         cm_event.private_data_len = (u8)cm_node->mpa_frame_size;
3750         cm_event.ird = cm_node->ird_size;
3751         cm_event.ord = cm_node->ord_size;
3752
3753         ret = cm_id->event_handler(cm_id, &cm_event);
3754         if (ret)
3755                 printk(KERN_ERR "%s[%u] OFA CM event_handler returned, ret=%d\n",
3756                        __func__, __LINE__, ret);
3757         return;
3758 }
3759
3760
3761 static void cm_event_mpa_reject(struct nes_cm_event *event)
3762 {
3763         struct iw_cm_id *cm_id;
3764         struct iw_cm_event cm_event;
3765         struct nes_cm_node *cm_node;
3766         int ret;
3767
3768         cm_node = event->cm_node;
3769         if (!cm_node)
3770                 return;
3771         cm_id = cm_node->cm_id;
3772
3773         atomic_inc(&cm_connect_reqs);
3774         nes_debug(NES_DBG_CM, "cm_node = %p - cm_id = %p, jiffies = %lu\n",
3775                   cm_node, cm_id, jiffies);
3776
3777         cm_event.event = IW_CM_EVENT_CONNECT_REPLY;
3778         cm_event.status = -ECONNREFUSED;
3779         cm_event.provider_data = cm_id->provider_data;
3780
3781         cm_event.local_addr.sin_family = AF_INET;
3782         cm_event.local_addr.sin_port = htons(event->cm_info.loc_port);
3783         cm_event.local_addr.sin_addr.s_addr = htonl(event->cm_info.loc_addr);
3784
3785         cm_event.remote_addr.sin_family = AF_INET;
3786         cm_event.remote_addr.sin_port = htons(event->cm_info.rem_port);
3787         cm_event.remote_addr.sin_addr.s_addr = htonl(event->cm_info.rem_addr);
3788
3789         cm_event.private_data = cm_node->mpa_frame_buf;
3790         cm_event.private_data_len = (u8)cm_node->mpa_frame_size;
3791
3792         nes_debug(NES_DBG_CM, "call CM_EVENT_MPA_REJECTED, local_addr=%08x, "
3793                   "remove_addr=%08x\n",
3794                   cm_event.local_addr.sin_addr.s_addr,
3795                   cm_event.remote_addr.sin_addr.s_addr);
3796
3797         ret = cm_id->event_handler(cm_id, &cm_event);
3798         if (ret)
3799                 printk(KERN_ERR "%s[%u] OFA CM event_handler returned, ret=%d\n",
3800                        __func__, __LINE__, ret);
3801
3802         return;
3803 }
3804
3805
3806 static void nes_cm_event_handler(struct work_struct *);
3807
3808 /**
3809  * nes_cm_post_event
3810  * post an event to the cm event handler
3811  */
3812 static int nes_cm_post_event(struct nes_cm_event *event)
3813 {
3814         atomic_inc(&event->cm_node->cm_core->events_posted);
3815         add_ref_cm_node(event->cm_node);
3816         event->cm_info.cm_id->add_ref(event->cm_info.cm_id);
3817         INIT_WORK(&event->event_work, nes_cm_event_handler);
3818         nes_debug(NES_DBG_CM, "cm_node=%p queue_work, event=%p\n",
3819                   event->cm_node, event);
3820
3821         queue_work(event->cm_node->cm_core->event_wq, &event->event_work);
3822
3823         nes_debug(NES_DBG_CM, "Exit\n");
3824         return 0;
3825 }
3826
3827
3828 /**
3829  * nes_cm_event_handler
3830  * worker function to handle cm events
3831  * will free instance of nes_cm_event
3832  */
3833 static void nes_cm_event_handler(struct work_struct *work)
3834 {
3835         struct nes_cm_event *event = container_of(work, struct nes_cm_event,
3836                                                   event_work);
3837         struct nes_cm_core *cm_core;
3838
3839         if ((!event) || (!event->cm_node) || (!event->cm_node->cm_core))
3840                 return;
3841
3842         cm_core = event->cm_node->cm_core;
3843         nes_debug(NES_DBG_CM, "event=%p, event->type=%u, events posted=%u\n",
3844                   event, event->type, atomic_read(&cm_core->events_posted));
3845
3846         switch (event->type) {
3847         case NES_CM_EVENT_MPA_REQ:
3848                 cm_event_mpa_req(event);
3849                 nes_debug(NES_DBG_CM, "cm_node=%p CM Event: MPA REQUEST\n",
3850                           event->cm_node);
3851                 break;
3852         case NES_CM_EVENT_RESET:
3853                 nes_debug(NES_DBG_CM, "cm_node = %p CM Event: RESET\n",
3854                           event->cm_node);
3855                 cm_event_reset(event);
3856                 break;
3857         case NES_CM_EVENT_CONNECTED:
3858                 if ((!event->cm_node->cm_id) ||
3859                     (event->cm_node->state != NES_CM_STATE_TSA))
3860                         break;
3861                 cm_event_connected(event);
3862                 nes_debug(NES_DBG_CM, "CM Event: CONNECTED\n");
3863                 break;
3864         case NES_CM_EVENT_MPA_REJECT:
3865                 if ((!event->cm_node->cm_id) ||
3866                     (event->cm_node->state == NES_CM_STATE_TSA))
3867                         break;
3868                 cm_event_mpa_reject(event);
3869                 nes_debug(NES_DBG_CM, "CM Event: REJECT\n");
3870                 break;
3871
3872         case NES_CM_EVENT_ABORTED:
3873                 if ((!event->cm_node->cm_id) ||
3874                     (event->cm_node->state == NES_CM_STATE_TSA))
3875                         break;
3876                 cm_event_connect_error(event);
3877                 nes_debug(NES_DBG_CM, "CM Event: ABORTED\n");
3878                 break;
3879         case NES_CM_EVENT_DROPPED_PKT:
3880                 nes_debug(NES_DBG_CM, "CM Event: DROPPED PKT\n");
3881                 break;
3882         default:
3883                 nes_debug(NES_DBG_CM, "CM Event: UNKNOWN EVENT TYPE\n");
3884                 break;
3885         }
3886
3887         atomic_dec(&cm_core->events_posted);
3888         event->cm_info.cm_id->rem_ref(event->cm_info.cm_id);
3889         rem_ref_cm_node(cm_core, event->cm_node);
3890         kfree(event);
3891
3892         return;
3893 }