l2tp: fix duplicate session creation

}

EXPORT_SYMBOL_GPL(l2tp_session_find_by_ifname);

static int l2tp_session_add_to_tunnel(struct l2tp_tunnel *tunnel,

				      struct l2tp_session *session)

{

	struct l2tp_session *session_walk;

	struct hlist_head *g_head;

	struct hlist_head *head;

	struct l2tp_net *pn;

	head = l2tp_session_id_hash(tunnel, session->session_id);

	write_lock_bh(&tunnel->hlist_lock);

	hlist_for_each_entry(session_walk, head, hlist)

		if (session_walk->session_id == session->session_id)

			goto exist;

	if (tunnel->version == L2TP_HDR_VER_3) {

		pn = l2tp_pernet(tunnel->l2tp_net);

		g_head = l2tp_session_id_hash_2(l2tp_pernet(tunnel->l2tp_net),

						session->session_id);

		spin_lock_bh(&pn->l2tp_session_hlist_lock);

		hlist_for_each_entry(session_walk, g_head, global_hlist)

			if (session_walk->session_id == session->session_id)

				goto exist_glob;

		hlist_add_head_rcu(&session->global_hlist, g_head);

		spin_unlock_bh(&pn->l2tp_session_hlist_lock);

	}

	hlist_add_head(&session->hlist, head);

	write_unlock_bh(&tunnel->hlist_lock);

	return 0;

exist_glob:

	spin_unlock_bh(&pn->l2tp_session_hlist_lock);

exist:

	write_unlock_bh(&tunnel->hlist_lock);

	return -EEXIST;

}

/* Lookup a tunnel by id

 */

struct l2tp_tunnel *l2tp_tunnel_find(struct net *net, u32 tunnel_id)

struct l2tp_session *l2tp_session_create(int priv_size, struct l2tp_tunnel *tunnel, u32 session_id, u32 peer_session_id, struct l2tp_session_cfg *cfg)

{

	struct l2tp_session *session;

	int err;

	session = kzalloc(sizeof(struct l2tp_session) + priv_size, GFP_KERNEL);

	if (session != NULL) {

		l2tp_session_set_header_len(session, tunnel->version);

		err = l2tp_session_add_to_tunnel(tunnel, session);

		if (err) {

			kfree(session);

			return ERR_PTR(err);

		}

		/* Bump the reference count. The session context is deleted

		 * only when this drops to zero.

		 */

		/* Ensure tunnel socket isn't deleted */

		sock_hold(tunnel->sock);

		/* Add session to the tunnel's hash list */

		write_lock_bh(&tunnel->hlist_lock);

		hlist_add_head(&session->hlist,

			       l2tp_session_id_hash(tunnel, session_id));

		write_unlock_bh(&tunnel->hlist_lock);

		/* And to the global session list if L2TPv3 */

		if (tunnel->version != L2TP_HDR_VER_2) {

			struct l2tp_net *pn = l2tp_pernet(tunnel->l2tp_net);

			spin_lock_bh(&pn->l2tp_session_hlist_lock);

			hlist_add_head_rcu(&session->global_hlist,

					   l2tp_session_id_hash_2(pn, session_id));

			spin_unlock_bh(&pn->l2tp_session_hlist_lock);

		}

		/* Ignore management session in session count value */

		if (session->session_id != 0)

			atomic_inc(&l2tp_session_count);

	}

		return session;

	}

	return ERR_PTR(-ENOMEM);

}

EXPORT_SYMBOL_GPL(l2tp_session_create);

/*****************************************************************************

		goto out;

	}

	session = l2tp_session_find(net, tunnel, session_id);

	if (session) {

		rc = -EEXIST;

		goto out;

	}

	if (cfg->ifname) {

		dev = dev_get_by_name(net, cfg->ifname);

		if (dev) {

	session = l2tp_session_create(sizeof(*spriv), tunnel, session_id,

				      peer_session_id, cfg);

	if (!session) {

		rc = -ENOMEM;

	if (IS_ERR(session)) {

		rc = PTR_ERR(session);

		goto out;

	}

	int error = 0;

	u32 tunnel_id, peer_tunnel_id;

	u32 session_id, peer_session_id;

	bool drop_refcnt = false;

	int ver = 2;

	int fd;

	if (tunnel->peer_tunnel_id == 0)

		tunnel->peer_tunnel_id = peer_tunnel_id;

	/* Create session if it doesn't already exist. We handle the

	 * case where a session was previously created by the netlink

	 * interface by checking that the session doesn't already have

	 * a socket and its tunnel socket are what we expect. If any

	 * of those checks fail, return EEXIST to the caller.

	 */

	session = l2tp_session_find(sock_net(sk), tunnel, session_id);

	if (session == NULL) {

		/* Default MTU must allow space for UDP/L2TP/PPP

		 * headers.

		 */

		cfg.mtu = cfg.mru = 1500 - PPPOL2TP_HEADER_OVERHEAD;

	session = l2tp_session_get(sock_net(sk), tunnel, session_id, false);

	if (session) {

		drop_refcnt = true;

		ps = l2tp_session_priv(session);

		/* Allocate and initialize a new session context. */

		session = l2tp_session_create(sizeof(struct pppol2tp_session),

					      tunnel, session_id,

					      peer_session_id, &cfg);

		if (session == NULL) {

			error = -ENOMEM;

		/* Using a pre-existing session is fine as long as it hasn't

		 * been connected yet.

		 */

		if (ps->sock) {

			error = -EEXIST;

			goto end;

		}

	} else {

		ps = l2tp_session_priv(session);

		/* consistency checks */

		if (ps->tunnel_sock != tunnel->sock) {

			error = -EEXIST;

		if (ps->sock != NULL)

			goto end;

		}

	} else {

		/* Default MTU must allow space for UDP/L2TP/PPP headers */

		cfg.mtu = 1500 - PPPOL2TP_HEADER_OVERHEAD;

		cfg.mru = cfg.mtu;

		/* consistency checks */

		if (ps->tunnel_sock != tunnel->sock)

		session = l2tp_session_create(sizeof(struct pppol2tp_session),

					      tunnel, session_id,

					      peer_session_id, &cfg);

		if (IS_ERR(session)) {

			error = PTR_ERR(session);

			goto end;

		}

	}

	/* Associate session with its PPPoL2TP socket */

	ps = l2tp_session_priv(session);

		  session->name);

end:

	if (drop_refcnt)

		l2tp_session_dec_refcount(session);

	release_sock(sk);

	return error;

	if (tunnel->sock == NULL)

		goto out;

	/* Check that this session doesn't already exist */

	error = -EEXIST;

	session = l2tp_session_find(net, tunnel, session_id);

	if (session != NULL)

		goto out;

	/* Default MTU values. */

	if (cfg->mtu == 0)

		cfg->mtu = 1500 - PPPOL2TP_HEADER_OVERHEAD;

		cfg->mru = cfg->mtu;

	/* Allocate and initialize a new session context. */

	error = -ENOMEM;

	session = l2tp_session_create(sizeof(struct pppol2tp_session),

				      tunnel, session_id,

				      peer_session_id, cfg);

	if (session == NULL)

	if (IS_ERR(session)) {

		error = PTR_ERR(session);

		goto out;

	}

	ps = l2tp_session_priv(session);

	ps->tunnel_sock = tunnel->sock;