route.c 73 KB

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189119011911192119311941195119611971198119912001201120212031204120512061207120812091210121112121213121412151216121712181219122012211222122312241225122612271228122912301231123212331234123512361237123812391240124112421243124412451246124712481249125012511252125312541255125612571258125912601261126212631264126512661267126812691270127112721273127412751276127712781279128012811282128312841285128612871288128912901291129212931294129512961297129812991300130113021303130413051306130713081309131013111312131313141315131613171318131913201321132213231324132513261327132813291330133113321333133413351336133713381339134013411342134313441345134613471348134913501351135213531354135513561357135813591360136113621363136413651366136713681369137013711372137313741375137613771378137913801381138213831384138513861387138813891390139113921393139413951396139713981399140014011402140314041405140614071408140914101411141214131414141514161417141814191420142114221423142414251426142714281429143014311432143314341435143614371438143914401441144214431444144514461447144814491450145114521453145414551456145714581459146014611462146314641465146614671468146914701471147214731474147514761477147814791480148114821483148414851486148714881489149014911492149314941495149614971498149915001501150215031504150515061507150815091510151115121513151415151516151715181519152015211522152315241525152615271528152915301531153215331534153515361537153815391540154115421543154415451546154715481549155015511552155315541555155615571558155915601561156215631564156515661567156815691570157115721573157415751576157715781579158015811582158315841585158615871588158915901591159215931594159515961597159815991600160116021603160416051606160716081609161016111612161316141615161616171618161916201621162216231624162516261627162816291630163116321633163416351636163716381639164016411642164316441645164616471648164916501651165216531654165516561657165816591660166116621663166416651666166716681669167016711672167316741675167616771678167916801681168216831684168516861687168816891690169116921693169416951696169716981699170017011702170317041705170617071708170917101711171217131714171517161717171817191720172117221723172417251726172717281729173017311732173317341735173617371738173917401741174217431744174517461747174817491750175117521753175417551756175717581759176017611762176317641765176617671768176917701771177217731774177517761777177817791780178117821783178417851786178717881789179017911792179317941795179617971798179918001801180218031804180518061807180818091810181118121813181418151816181718181819182018211822182318241825182618271828182918301831183218331834183518361837183818391840184118421843184418451846184718481849185018511852185318541855185618571858185918601861186218631864186518661867186818691870187118721873187418751876187718781879188018811882188318841885188618871888188918901891189218931894189518961897189818991900190119021903190419051906190719081909191019111912191319141915191619171918191919201921192219231924192519261927192819291930193119321933193419351936193719381939194019411942194319441945194619471948194919501951195219531954195519561957195819591960196119621963196419651966196719681969197019711972197319741975197619771978197919801981198219831984198519861987198819891990199119921993199419951996199719981999200020012002200320042005200620072008200920102011201220132014201520162017201820192020202120222023202420252026202720282029203020312032203320342035203620372038203920402041204220432044204520462047204820492050205120522053205420552056205720582059206020612062206320642065206620672068206920702071207220732074207520762077207820792080208120822083208420852086208720882089209020912092209320942095209620972098209921002101210221032104210521062107210821092110211121122113211421152116211721182119212021212122212321242125212621272128212921302131213221332134213521362137213821392140214121422143214421452146214721482149215021512152215321542155215621572158215921602161216221632164216521662167216821692170217121722173217421752176217721782179218021812182218321842185218621872188218921902191219221932194219521962197219821992200220122022203220422052206220722082209221022112212221322142215221622172218221922202221222222232224222522262227222822292230223122322233223422352236223722382239224022412242224322442245224622472248224922502251225222532254225522562257225822592260226122622263226422652266226722682269227022712272227322742275227622772278227922802281228222832284228522862287228822892290229122922293229422952296229722982299230023012302230323042305230623072308230923102311231223132314231523162317231823192320232123222323232423252326232723282329233023312332233323342335233623372338233923402341234223432344234523462347234823492350235123522353235423552356235723582359236023612362236323642365236623672368236923702371237223732374237523762377237823792380238123822383238423852386238723882389239023912392239323942395239623972398239924002401240224032404240524062407240824092410241124122413241424152416241724182419242024212422242324242425242624272428242924302431243224332434243524362437243824392440244124422443244424452446244724482449245024512452245324542455245624572458245924602461246224632464246524662467246824692470247124722473247424752476247724782479248024812482248324842485248624872488248924902491249224932494249524962497249824992500250125022503250425052506250725082509251025112512251325142515251625172518251925202521252225232524252525262527252825292530253125322533253425352536253725382539254025412542254325442545254625472548254925502551255225532554255525562557255825592560256125622563256425652566256725682569257025712572257325742575257625772578257925802581258225832584258525862587258825892590259125922593259425952596259725982599260026012602260326042605260626072608260926102611261226132614261526162617261826192620262126222623262426252626262726282629263026312632263326342635263626372638263926402641264226432644264526462647264826492650265126522653265426552656265726582659266026612662266326642665266626672668266926702671267226732674267526762677267826792680268126822683268426852686268726882689269026912692269326942695269626972698269927002701270227032704270527062707270827092710271127122713271427152716271727182719272027212722272327242725272627272728272927302731273227332734273527362737273827392740274127422743274427452746274727482749275027512752275327542755275627572758275927602761276227632764276527662767276827692770277127722773277427752776277727782779278027812782278327842785278627872788278927902791279227932794279527962797279827992800280128022803280428052806280728082809281028112812281328142815281628172818281928202821282228232824282528262827282828292830283128322833283428352836283728382839284028412842284328442845284628472848284928502851285228532854285528562857285828592860286128622863286428652866286728682869287028712872287328742875287628772878287928802881288228832884288528862887288828892890289128922893289428952896289728982899290029012902290329042905290629072908290929102911291229132914291529162917291829192920292129222923292429252926292729282929293029312932293329342935293629372938293929402941294229432944294529462947294829492950295129522953295429552956295729582959296029612962296329642965296629672968296929702971297229732974297529762977297829792980298129822983298429852986298729882989299029912992299329942995299629972998299930003001300230033004300530063007300830093010301130123013301430153016301730183019302030213022302330243025302630273028302930303031303230333034303530363037303830393040304130423043304430453046304730483049305030513052305330543055305630573058305930603061306230633064306530663067306830693070307130723073307430753076307730783079308030813082308330843085308630873088308930903091309230933094309530963097309830993100310131023103
  1. /*
  2. * Linux INET6 implementation
  3. * FIB front-end.
  4. *
  5. * Authors:
  6. * Pedro Roque <roque@di.fc.ul.pt>
  7. *
  8. * This program is free software; you can redistribute it and/or
  9. * modify it under the terms of the GNU General Public License
  10. * as published by the Free Software Foundation; either version
  11. * 2 of the License, or (at your option) any later version.
  12. */
  13. /* Changes:
  14. *
  15. * YOSHIFUJI Hideaki @USAGI
  16. * reworked default router selection.
  17. * - respect outgoing interface
  18. * - select from (probably) reachable routers (i.e.
  19. * routers in REACHABLE, STALE, DELAY or PROBE states).
  20. * - always select the same router if it is (probably)
  21. * reachable. otherwise, round-robin the list.
  22. * Ville Nuorvala
  23. * Fixed routing subtrees.
  24. */
  25. #include <linux/capability.h>
  26. #include <linux/errno.h>
  27. #include <linux/export.h>
  28. #include <linux/types.h>
  29. #include <linux/times.h>
  30. #include <linux/socket.h>
  31. #include <linux/sockios.h>
  32. #include <linux/net.h>
  33. #include <linux/route.h>
  34. #include <linux/netdevice.h>
  35. #include <linux/in6.h>
  36. #include <linux/mroute6.h>
  37. #include <linux/init.h>
  38. #include <linux/if_arp.h>
  39. #include <linux/proc_fs.h>
  40. #include <linux/seq_file.h>
  41. #include <linux/nsproxy.h>
  42. #include <linux/slab.h>
  43. #include <net/net_namespace.h>
  44. #include <net/snmp.h>
  45. #include <net/ipv6.h>
  46. #include <net/ip6_fib.h>
  47. #include <net/ip6_route.h>
  48. #include <net/ndisc.h>
  49. #include <net/addrconf.h>
  50. #include <net/tcp.h>
  51. #include <linux/rtnetlink.h>
  52. #include <net/dst.h>
  53. #include <net/xfrm.h>
  54. #include <net/netevent.h>
  55. #include <net/netlink.h>
  56. #include <asm/uaccess.h>
  57. #ifdef CONFIG_SYSCTL
  58. #include <linux/sysctl.h>
  59. #endif
  60. static struct rt6_info *ip6_rt_copy(struct rt6_info *ort,
  61. const struct in6_addr *dest);
  62. static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie);
  63. static unsigned int ip6_default_advmss(const struct dst_entry *dst);
  64. static unsigned int ip6_mtu(const struct dst_entry *dst);
  65. static struct dst_entry *ip6_negative_advice(struct dst_entry *);
  66. static void ip6_dst_destroy(struct dst_entry *);
  67. static void ip6_dst_ifdown(struct dst_entry *,
  68. struct net_device *dev, int how);
  69. static int ip6_dst_gc(struct dst_ops *ops);
  70. static int ip6_pkt_discard(struct sk_buff *skb);
  71. static int ip6_pkt_discard_out(struct sk_buff *skb);
  72. static void ip6_link_failure(struct sk_buff *skb);
  73. static void ip6_rt_update_pmtu(struct dst_entry *dst, u32 mtu);
  74. #ifdef CONFIG_IPV6_ROUTE_INFO
  75. static struct rt6_info *rt6_add_route_info(struct net_device *dev,
  76. const struct in6_addr *prefix, int prefixlen,
  77. const struct in6_addr *gwaddr,
  78. unsigned int pref);
  79. static struct rt6_info *rt6_get_route_info(struct net_device *dev,
  80. const struct in6_addr *prefix, int prefixlen,
  81. const struct in6_addr *gwaddr);
  82. #endif
  83. static u32 *ipv6_cow_metrics(struct dst_entry *dst, unsigned long old)
  84. {
  85. struct rt6_info *rt = (struct rt6_info *) dst;
  86. struct inet_peer *peer;
  87. u32 *p = NULL;
  88. if (!(rt->dst.flags & DST_HOST))
  89. return dst_cow_metrics_generic(dst, old);
  90. if (!rt->rt6i_peer)
  91. rt6_bind_peer(rt, 1);
  92. peer = rt->rt6i_peer;
  93. if (peer) {
  94. u32 *old_p = __DST_METRICS_PTR(old);
  95. unsigned long prev, new;
  96. p = peer->metrics;
  97. if (inet_metrics_new(peer))
  98. memcpy(p, old_p, sizeof(u32) * RTAX_MAX);
  99. new = (unsigned long) p;
  100. prev = cmpxchg(&dst->_metrics, old, new);
  101. if (prev != old) {
  102. p = __DST_METRICS_PTR(prev);
  103. if (prev & DST_METRICS_READ_ONLY)
  104. p = NULL;
  105. }
  106. }
  107. return p;
  108. }
  109. static inline const void *choose_neigh_daddr(struct rt6_info *rt,
  110. struct sk_buff *skb,
  111. const void *daddr)
  112. {
  113. struct in6_addr *p = &rt->rt6i_gateway;
  114. if (!ipv6_addr_any(p))
  115. return (const void *) p;
  116. else if (skb)
  117. return &ipv6_hdr(skb)->daddr;
  118. return daddr;
  119. }
  120. static struct neighbour *ip6_neigh_lookup(const struct dst_entry *dst,
  121. struct sk_buff *skb,
  122. const void *daddr)
  123. {
  124. struct rt6_info *rt = (struct rt6_info *) dst;
  125. struct neighbour *n;
  126. daddr = choose_neigh_daddr(rt, skb, daddr);
  127. n = __ipv6_neigh_lookup(&nd_tbl, dst->dev, daddr);
  128. if (n)
  129. return n;
  130. return neigh_create(&nd_tbl, daddr, dst->dev);
  131. }
  132. static int rt6_bind_neighbour(struct rt6_info *rt, struct net_device *dev)
  133. {
  134. struct neighbour *n = __ipv6_neigh_lookup(&nd_tbl, dev, &rt->rt6i_gateway);
  135. if (!n) {
  136. n = neigh_create(&nd_tbl, &rt->rt6i_gateway, dev);
  137. if (IS_ERR(n))
  138. return PTR_ERR(n);
  139. }
  140. dst_set_neighbour(&rt->dst, n);
  141. return 0;
  142. }
  143. static struct dst_ops ip6_dst_ops_template = {
  144. .family = AF_INET6,
  145. .protocol = cpu_to_be16(ETH_P_IPV6),
  146. .gc = ip6_dst_gc,
  147. .gc_thresh = 1024,
  148. .check = ip6_dst_check,
  149. .default_advmss = ip6_default_advmss,
  150. .mtu = ip6_mtu,
  151. .cow_metrics = ipv6_cow_metrics,
  152. .destroy = ip6_dst_destroy,
  153. .ifdown = ip6_dst_ifdown,
  154. .negative_advice = ip6_negative_advice,
  155. .link_failure = ip6_link_failure,
  156. .update_pmtu = ip6_rt_update_pmtu,
  157. .local_out = __ip6_local_out,
  158. .neigh_lookup = ip6_neigh_lookup,
  159. };
  160. static unsigned int ip6_blackhole_mtu(const struct dst_entry *dst)
  161. {
  162. unsigned int mtu = dst_metric_raw(dst, RTAX_MTU);
  163. return mtu ? : dst->dev->mtu;
  164. }
  165. static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, u32 mtu)
  166. {
  167. }
  168. static u32 *ip6_rt_blackhole_cow_metrics(struct dst_entry *dst,
  169. unsigned long old)
  170. {
  171. return NULL;
  172. }
  173. static struct dst_ops ip6_dst_blackhole_ops = {
  174. .family = AF_INET6,
  175. .protocol = cpu_to_be16(ETH_P_IPV6),
  176. .destroy = ip6_dst_destroy,
  177. .check = ip6_dst_check,
  178. .mtu = ip6_blackhole_mtu,
  179. .default_advmss = ip6_default_advmss,
  180. .update_pmtu = ip6_rt_blackhole_update_pmtu,
  181. .cow_metrics = ip6_rt_blackhole_cow_metrics,
  182. .neigh_lookup = ip6_neigh_lookup,
  183. };
  184. static const u32 ip6_template_metrics[RTAX_MAX] = {
  185. [RTAX_HOPLIMIT - 1] = 0,
  186. };
  187. static struct rt6_info ip6_null_entry_template = {
  188. .dst = {
  189. .__refcnt = ATOMIC_INIT(1),
  190. .__use = 1,
  191. .obsolete = -1,
  192. .error = -ENETUNREACH,
  193. .input = ip6_pkt_discard,
  194. .output = ip6_pkt_discard_out,
  195. },
  196. .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
  197. .rt6i_protocol = RTPROT_KERNEL,
  198. .rt6i_metric = ~(u32) 0,
  199. .rt6i_ref = ATOMIC_INIT(1),
  200. };
  201. #ifdef CONFIG_IPV6_MULTIPLE_TABLES
  202. static int ip6_pkt_prohibit(struct sk_buff *skb);
  203. static int ip6_pkt_prohibit_out(struct sk_buff *skb);
  204. static struct rt6_info ip6_prohibit_entry_template = {
  205. .dst = {
  206. .__refcnt = ATOMIC_INIT(1),
  207. .__use = 1,
  208. .obsolete = -1,
  209. .error = -EACCES,
  210. .input = ip6_pkt_prohibit,
  211. .output = ip6_pkt_prohibit_out,
  212. },
  213. .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
  214. .rt6i_protocol = RTPROT_KERNEL,
  215. .rt6i_metric = ~(u32) 0,
  216. .rt6i_ref = ATOMIC_INIT(1),
  217. };
  218. static struct rt6_info ip6_blk_hole_entry_template = {
  219. .dst = {
  220. .__refcnt = ATOMIC_INIT(1),
  221. .__use = 1,
  222. .obsolete = -1,
  223. .error = -EINVAL,
  224. .input = dst_discard,
  225. .output = dst_discard,
  226. },
  227. .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
  228. .rt6i_protocol = RTPROT_KERNEL,
  229. .rt6i_metric = ~(u32) 0,
  230. .rt6i_ref = ATOMIC_INIT(1),
  231. };
  232. #endif
  233. /* allocate dst with ip6_dst_ops */
  234. static inline struct rt6_info *ip6_dst_alloc(struct dst_ops *ops,
  235. struct net_device *dev,
  236. int flags)
  237. {
  238. struct rt6_info *rt = dst_alloc(ops, dev, 0, DST_OBSOLETE_NONE, flags);
  239. if (rt)
  240. memset(&rt->rt6i_table, 0,
  241. sizeof(*rt) - sizeof(struct dst_entry));
  242. return rt;
  243. }
  244. static void ip6_dst_destroy(struct dst_entry *dst)
  245. {
  246. struct rt6_info *rt = (struct rt6_info *)dst;
  247. struct inet6_dev *idev = rt->rt6i_idev;
  248. struct inet_peer *peer = rt->rt6i_peer;
  249. if (!(rt->dst.flags & DST_HOST))
  250. dst_destroy_metrics_generic(dst);
  251. if (idev) {
  252. rt->rt6i_idev = NULL;
  253. in6_dev_put(idev);
  254. }
  255. if (!(rt->rt6i_flags & RTF_EXPIRES) && dst->from)
  256. dst_release(dst->from);
  257. if (peer) {
  258. rt->rt6i_peer = NULL;
  259. inet_putpeer(peer);
  260. }
  261. }
  262. static atomic_t __rt6_peer_genid = ATOMIC_INIT(0);
  263. static u32 rt6_peer_genid(void)
  264. {
  265. return atomic_read(&__rt6_peer_genid);
  266. }
  267. void rt6_bind_peer(struct rt6_info *rt, int create)
  268. {
  269. struct inet_peer *peer;
  270. peer = inet_getpeer_v6(&rt->rt6i_dst.addr, create);
  271. if (peer && cmpxchg(&rt->rt6i_peer, NULL, peer) != NULL)
  272. inet_putpeer(peer);
  273. else
  274. rt->rt6i_peer_genid = rt6_peer_genid();
  275. }
  276. static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev,
  277. int how)
  278. {
  279. struct rt6_info *rt = (struct rt6_info *)dst;
  280. struct inet6_dev *idev = rt->rt6i_idev;
  281. struct net_device *loopback_dev =
  282. dev_net(dev)->loopback_dev;
  283. if (dev != loopback_dev && idev && idev->dev == dev) {
  284. struct inet6_dev *loopback_idev =
  285. in6_dev_get(loopback_dev);
  286. if (loopback_idev) {
  287. rt->rt6i_idev = loopback_idev;
  288. in6_dev_put(idev);
  289. }
  290. }
  291. }
  292. static __inline__ int rt6_check_expired(const struct rt6_info *rt)
  293. {
  294. struct rt6_info *ort = NULL;
  295. if (rt->rt6i_flags & RTF_EXPIRES) {
  296. if (time_after(jiffies, rt->dst.expires))
  297. return 1;
  298. } else if (rt->dst.from) {
  299. ort = (struct rt6_info *) rt->dst.from;
  300. return (ort->rt6i_flags & RTF_EXPIRES) &&
  301. time_after(jiffies, ort->dst.expires);
  302. }
  303. return 0;
  304. }
  305. static inline int rt6_need_strict(const struct in6_addr *daddr)
  306. {
  307. return ipv6_addr_type(daddr) &
  308. (IPV6_ADDR_MULTICAST | IPV6_ADDR_LINKLOCAL | IPV6_ADDR_LOOPBACK);
  309. }
  310. /*
  311. * Route lookup. Any table->tb6_lock is implied.
  312. */
  313. static inline struct rt6_info *rt6_device_match(struct net *net,
  314. struct rt6_info *rt,
  315. const struct in6_addr *saddr,
  316. int oif,
  317. int flags)
  318. {
  319. struct rt6_info *local = NULL;
  320. struct rt6_info *sprt;
  321. if (!oif && ipv6_addr_any(saddr))
  322. goto out;
  323. for (sprt = rt; sprt; sprt = sprt->dst.rt6_next) {
  324. struct net_device *dev = sprt->dst.dev;
  325. if (oif) {
  326. if (dev->ifindex == oif)
  327. return sprt;
  328. if (dev->flags & IFF_LOOPBACK) {
  329. if (!sprt->rt6i_idev ||
  330. sprt->rt6i_idev->dev->ifindex != oif) {
  331. if (flags & RT6_LOOKUP_F_IFACE && oif)
  332. continue;
  333. if (local && (!oif ||
  334. local->rt6i_idev->dev->ifindex == oif))
  335. continue;
  336. }
  337. local = sprt;
  338. }
  339. } else {
  340. if (ipv6_chk_addr(net, saddr, dev,
  341. flags & RT6_LOOKUP_F_IFACE))
  342. return sprt;
  343. }
  344. }
  345. if (oif) {
  346. if (local)
  347. return local;
  348. if (flags & RT6_LOOKUP_F_IFACE)
  349. return net->ipv6.ip6_null_entry;
  350. }
  351. out:
  352. return rt;
  353. }
  354. #ifdef CONFIG_IPV6_ROUTER_PREF
  355. struct __rt6_probe_work {
  356. struct work_struct work;
  357. struct in6_addr target;
  358. struct net_device *dev;
  359. };
  360. static void rt6_probe_deferred(struct work_struct *w)
  361. {
  362. struct in6_addr mcaddr;
  363. struct __rt6_probe_work *work =
  364. container_of(w, struct __rt6_probe_work, work);
  365. addrconf_addr_solict_mult(&work->target, &mcaddr);
  366. ndisc_send_ns(work->dev, NULL, &work->target, &mcaddr, NULL);
  367. dev_put(work->dev);
  368. kfree(w);
  369. }
  370. static void rt6_probe(struct rt6_info *rt)
  371. {
  372. struct neighbour *neigh;
  373. /*
  374. * Okay, this does not seem to be appropriate
  375. * for now, however, we need to check if it
  376. * is really so; aka Router Reachability Probing.
  377. *
  378. * Router Reachability Probe MUST be rate-limited
  379. * to no more than one per minute.
  380. */
  381. rcu_read_lock();
  382. neigh = rt ? dst_get_neighbour_noref(&rt->dst) : NULL;
  383. if (!neigh || (neigh->nud_state & NUD_VALID))
  384. goto out;
  385. read_lock_bh(&neigh->lock);
  386. if (!(neigh->nud_state & NUD_VALID) &&
  387. time_after(jiffies, neigh->updated + rt->rt6i_idev->cnf.rtr_probe_interval)) {
  388. struct __rt6_probe_work *work;
  389. work = kmalloc(sizeof(*work), GFP_ATOMIC);
  390. if (work)
  391. neigh->updated = jiffies;
  392. read_unlock_bh(&neigh->lock);
  393. if (work) {
  394. INIT_WORK(&work->work, rt6_probe_deferred);
  395. work->target = rt->rt6i_gateway;
  396. dev_hold(rt->dst.dev);
  397. work->dev = rt->dst.dev;
  398. schedule_work(&work->work);
  399. }
  400. } else {
  401. read_unlock_bh(&neigh->lock);
  402. }
  403. out:
  404. rcu_read_unlock();
  405. }
  406. #else
  407. static inline void rt6_probe(struct rt6_info *rt)
  408. {
  409. }
  410. #endif
  411. /*
  412. * Default Router Selection (RFC 2461 6.3.6)
  413. */
  414. static inline int rt6_check_dev(struct rt6_info *rt, int oif)
  415. {
  416. struct net_device *dev = rt->dst.dev;
  417. if (!oif || dev->ifindex == oif)
  418. return 2;
  419. if ((dev->flags & IFF_LOOPBACK) &&
  420. rt->rt6i_idev && rt->rt6i_idev->dev->ifindex == oif)
  421. return 1;
  422. return 0;
  423. }
  424. static inline int rt6_check_neigh(struct rt6_info *rt)
  425. {
  426. struct neighbour *neigh;
  427. int m;
  428. rcu_read_lock();
  429. neigh = dst_get_neighbour_noref(&rt->dst);
  430. if (rt->rt6i_flags & RTF_NONEXTHOP ||
  431. !(rt->rt6i_flags & RTF_GATEWAY))
  432. m = 1;
  433. else if (neigh) {
  434. read_lock_bh(&neigh->lock);
  435. if (neigh->nud_state & NUD_VALID)
  436. m = 2;
  437. #ifdef CONFIG_IPV6_ROUTER_PREF
  438. else if (neigh->nud_state & NUD_FAILED)
  439. m = 0;
  440. #endif
  441. else
  442. m = 1;
  443. read_unlock_bh(&neigh->lock);
  444. } else
  445. m = 0;
  446. rcu_read_unlock();
  447. return m;
  448. }
  449. static int rt6_score_route(struct rt6_info *rt, int oif,
  450. int strict)
  451. {
  452. int m, n;
  453. m = rt6_check_dev(rt, oif);
  454. if (!m && (strict & RT6_LOOKUP_F_IFACE))
  455. return -1;
  456. #ifdef CONFIG_IPV6_ROUTER_PREF
  457. m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(rt->rt6i_flags)) << 2;
  458. #endif
  459. n = rt6_check_neigh(rt);
  460. if (!n && (strict & RT6_LOOKUP_F_REACHABLE))
  461. return -1;
  462. return m;
  463. }
  464. static struct rt6_info *find_match(struct rt6_info *rt, int oif, int strict,
  465. int *mpri, struct rt6_info *match)
  466. {
  467. int m;
  468. if (rt6_check_expired(rt))
  469. goto out;
  470. m = rt6_score_route(rt, oif, strict);
  471. if (m < 0)
  472. goto out;
  473. if (m > *mpri) {
  474. if (strict & RT6_LOOKUP_F_REACHABLE)
  475. rt6_probe(match);
  476. *mpri = m;
  477. match = rt;
  478. } else if (strict & RT6_LOOKUP_F_REACHABLE) {
  479. rt6_probe(rt);
  480. }
  481. out:
  482. return match;
  483. }
  484. static struct rt6_info *find_rr_leaf(struct fib6_node *fn,
  485. struct rt6_info *rr_head,
  486. u32 metric, int oif, int strict)
  487. {
  488. struct rt6_info *rt, *match;
  489. int mpri = -1;
  490. match = NULL;
  491. for (rt = rr_head; rt && rt->rt6i_metric == metric;
  492. rt = rt->dst.rt6_next)
  493. match = find_match(rt, oif, strict, &mpri, match);
  494. for (rt = fn->leaf; rt && rt != rr_head && rt->rt6i_metric == metric;
  495. rt = rt->dst.rt6_next)
  496. match = find_match(rt, oif, strict, &mpri, match);
  497. return match;
  498. }
  499. static struct rt6_info *rt6_select(struct fib6_node *fn, int oif, int strict)
  500. {
  501. struct rt6_info *match, *rt0;
  502. struct net *net;
  503. rt0 = fn->rr_ptr;
  504. if (!rt0)
  505. fn->rr_ptr = rt0 = fn->leaf;
  506. match = find_rr_leaf(fn, rt0, rt0->rt6i_metric, oif, strict);
  507. if (!match &&
  508. (strict & RT6_LOOKUP_F_REACHABLE)) {
  509. struct rt6_info *next = rt0->dst.rt6_next;
  510. /* no entries matched; do round-robin */
  511. if (!next || next->rt6i_metric != rt0->rt6i_metric)
  512. next = fn->leaf;
  513. if (next != rt0)
  514. fn->rr_ptr = next;
  515. }
  516. net = dev_net(rt0->dst.dev);
  517. return match ? match : net->ipv6.ip6_null_entry;
  518. }
  519. #ifdef CONFIG_IPV6_ROUTE_INFO
  520. int rt6_route_rcv(struct net_device *dev, u8 *opt, int len,
  521. const struct in6_addr *gwaddr)
  522. {
  523. struct route_info *rinfo = (struct route_info *) opt;
  524. struct in6_addr prefix_buf, *prefix;
  525. unsigned int pref;
  526. unsigned long lifetime;
  527. struct rt6_info *rt;
  528. if (len < sizeof(struct route_info)) {
  529. return -EINVAL;
  530. }
  531. /* Sanity check for prefix_len and length */
  532. if (rinfo->length > 3) {
  533. return -EINVAL;
  534. } else if (rinfo->prefix_len > 128) {
  535. return -EINVAL;
  536. } else if (rinfo->prefix_len > 64) {
  537. if (rinfo->length < 2) {
  538. return -EINVAL;
  539. }
  540. } else if (rinfo->prefix_len > 0) {
  541. if (rinfo->length < 1) {
  542. return -EINVAL;
  543. }
  544. }
  545. pref = rinfo->route_pref;
  546. if (pref == ICMPV6_ROUTER_PREF_INVALID)
  547. return -EINVAL;
  548. lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ);
  549. if (rinfo->length == 3)
  550. prefix = (struct in6_addr *)rinfo->prefix;
  551. else {
  552. /* this function is safe */
  553. ipv6_addr_prefix(&prefix_buf,
  554. (struct in6_addr *)rinfo->prefix,
  555. rinfo->prefix_len);
  556. prefix = &prefix_buf;
  557. }
  558. if (rinfo->prefix_len == 0)
  559. rt = rt6_get_dflt_router(gwaddr, dev);
  560. else
  561. rt = rt6_get_route_info(dev, prefix, rinfo->prefix_len,
  562. gwaddr);
  563. if (rt && !lifetime) {
  564. ip6_del_rt(rt);
  565. rt = NULL;
  566. }
  567. if (!rt && lifetime)
  568. rt = rt6_add_route_info(dev, prefix, rinfo->prefix_len, gwaddr, pref);
  569. else if (rt)
  570. rt->rt6i_flags = RTF_ROUTEINFO |
  571. (rt->rt6i_flags & ~RTF_PREF_MASK) | RTF_PREF(pref);
  572. if (rt) {
  573. if (!addrconf_finite_timeout(lifetime))
  574. rt6_clean_expires(rt);
  575. else
  576. rt6_set_expires(rt, jiffies + HZ * lifetime);
  577. dst_release(&rt->dst);
  578. }
  579. return 0;
  580. }
  581. #endif
  582. #define BACKTRACK(__net, saddr) \
  583. do { \
  584. if (rt == __net->ipv6.ip6_null_entry) { \
  585. struct fib6_node *pn; \
  586. while (1) { \
  587. if (fn->fn_flags & RTN_TL_ROOT) \
  588. goto out; \
  589. pn = fn->parent; \
  590. if (FIB6_SUBTREE(pn) && FIB6_SUBTREE(pn) != fn) \
  591. fn = fib6_lookup(FIB6_SUBTREE(pn), NULL, saddr); \
  592. else \
  593. fn = pn; \
  594. if (fn->fn_flags & RTN_RTINFO) \
  595. goto restart; \
  596. } \
  597. } \
  598. } while (0)
  599. static struct rt6_info *ip6_pol_route_lookup(struct net *net,
  600. struct fib6_table *table,
  601. struct flowi6 *fl6, int flags)
  602. {
  603. struct fib6_node *fn;
  604. struct rt6_info *rt;
  605. read_lock_bh(&table->tb6_lock);
  606. fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
  607. restart:
  608. rt = fn->leaf;
  609. rt = rt6_device_match(net, rt, &fl6->saddr, fl6->flowi6_oif, flags);
  610. BACKTRACK(net, &fl6->saddr);
  611. out:
  612. dst_use(&rt->dst, jiffies);
  613. read_unlock_bh(&table->tb6_lock);
  614. return rt;
  615. }
  616. struct dst_entry * ip6_route_lookup(struct net *net, struct flowi6 *fl6,
  617. int flags)
  618. {
  619. return fib6_rule_lookup(net, fl6, flags, ip6_pol_route_lookup);
  620. }
  621. EXPORT_SYMBOL_GPL(ip6_route_lookup);
  622. struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr,
  623. const struct in6_addr *saddr, int oif, int strict)
  624. {
  625. struct flowi6 fl6 = {
  626. .flowi6_oif = oif,
  627. .daddr = *daddr,
  628. };
  629. struct dst_entry *dst;
  630. int flags = strict ? RT6_LOOKUP_F_IFACE : 0;
  631. if (saddr) {
  632. memcpy(&fl6.saddr, saddr, sizeof(*saddr));
  633. flags |= RT6_LOOKUP_F_HAS_SADDR;
  634. }
  635. dst = fib6_rule_lookup(net, &fl6, flags, ip6_pol_route_lookup);
  636. if (dst->error == 0)
  637. return (struct rt6_info *) dst;
  638. dst_release(dst);
  639. return NULL;
  640. }
  641. EXPORT_SYMBOL(rt6_lookup);
  642. /* ip6_ins_rt is called with FREE table->tb6_lock.
  643. It takes new route entry, the addition fails by any reason the
  644. route is freed. In any case, if caller does not hold it, it may
  645. be destroyed.
  646. */
  647. static int __ip6_ins_rt(struct rt6_info *rt, struct nl_info *info)
  648. {
  649. int err;
  650. struct fib6_table *table;
  651. table = rt->rt6i_table;
  652. write_lock_bh(&table->tb6_lock);
  653. err = fib6_add(&table->tb6_root, rt, info);
  654. write_unlock_bh(&table->tb6_lock);
  655. return err;
  656. }
  657. int ip6_ins_rt(struct rt6_info *rt)
  658. {
  659. struct nl_info info = {
  660. .nl_net = dev_net(rt->dst.dev),
  661. };
  662. return __ip6_ins_rt(rt, &info);
  663. }
  664. static struct rt6_info *rt6_alloc_cow(struct rt6_info *ort,
  665. const struct in6_addr *daddr,
  666. const struct in6_addr *saddr)
  667. {
  668. struct rt6_info *rt;
  669. /*
  670. * Clone the route.
  671. */
  672. rt = ip6_rt_copy(ort, daddr);
  673. if (rt) {
  674. int attempts = !in_softirq();
  675. if (!(rt->rt6i_flags & RTF_GATEWAY)) {
  676. if (ort->rt6i_dst.plen != 128 &&
  677. ipv6_addr_equal(&ort->rt6i_dst.addr, daddr))
  678. rt->rt6i_flags |= RTF_ANYCAST;
  679. rt->rt6i_gateway = *daddr;
  680. }
  681. rt->rt6i_flags |= RTF_CACHE;
  682. #ifdef CONFIG_IPV6_SUBTREES
  683. if (rt->rt6i_src.plen && saddr) {
  684. rt->rt6i_src.addr = *saddr;
  685. rt->rt6i_src.plen = 128;
  686. }
  687. #endif
  688. retry:
  689. if (rt6_bind_neighbour(rt, rt->dst.dev)) {
  690. struct net *net = dev_net(rt->dst.dev);
  691. int saved_rt_min_interval =
  692. net->ipv6.sysctl.ip6_rt_gc_min_interval;
  693. int saved_rt_elasticity =
  694. net->ipv6.sysctl.ip6_rt_gc_elasticity;
  695. if (attempts-- > 0) {
  696. net->ipv6.sysctl.ip6_rt_gc_elasticity = 1;
  697. net->ipv6.sysctl.ip6_rt_gc_min_interval = 0;
  698. ip6_dst_gc(&net->ipv6.ip6_dst_ops);
  699. net->ipv6.sysctl.ip6_rt_gc_elasticity =
  700. saved_rt_elasticity;
  701. net->ipv6.sysctl.ip6_rt_gc_min_interval =
  702. saved_rt_min_interval;
  703. goto retry;
  704. }
  705. net_warn_ratelimited("ipv6: Neighbour table overflow\n");
  706. dst_free(&rt->dst);
  707. return NULL;
  708. }
  709. }
  710. return rt;
  711. }
  712. static struct rt6_info *rt6_alloc_clone(struct rt6_info *ort,
  713. const struct in6_addr *daddr)
  714. {
  715. struct rt6_info *rt = ip6_rt_copy(ort, daddr);
  716. if (rt) {
  717. rt->rt6i_flags |= RTF_CACHE;
  718. dst_set_neighbour(&rt->dst, neigh_clone(dst_get_neighbour_noref_raw(&ort->dst)));
  719. }
  720. return rt;
  721. }
  722. static struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, int oif,
  723. struct flowi6 *fl6, int flags, bool input)
  724. {
  725. struct fib6_node *fn;
  726. struct rt6_info *rt, *nrt;
  727. int strict = 0;
  728. int attempts = 3;
  729. int err;
  730. int reachable = net->ipv6.devconf_all->forwarding ? 0 : RT6_LOOKUP_F_REACHABLE;
  731. int local = RTF_NONEXTHOP;
  732. strict |= flags & RT6_LOOKUP_F_IFACE;
  733. if (input)
  734. local |= RTF_LOCAL;
  735. relookup:
  736. read_lock_bh(&table->tb6_lock);
  737. restart_2:
  738. fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
  739. restart:
  740. rt = rt6_select(fn, oif, strict | reachable);
  741. BACKTRACK(net, &fl6->saddr);
  742. if (rt == net->ipv6.ip6_null_entry ||
  743. rt->rt6i_flags & RTF_CACHE)
  744. goto out;
  745. dst_hold(&rt->dst);
  746. read_unlock_bh(&table->tb6_lock);
  747. if (!dst_get_neighbour_noref_raw(&rt->dst) &&
  748. !(rt->rt6i_flags & local))
  749. nrt = rt6_alloc_cow(rt, &fl6->daddr, &fl6->saddr);
  750. else if (!(rt->dst.flags & DST_HOST))
  751. nrt = rt6_alloc_clone(rt, &fl6->daddr);
  752. else
  753. goto out2;
  754. dst_release(&rt->dst);
  755. rt = nrt ? : net->ipv6.ip6_null_entry;
  756. dst_hold(&rt->dst);
  757. if (nrt) {
  758. err = ip6_ins_rt(nrt);
  759. if (!err)
  760. goto out2;
  761. }
  762. if (--attempts <= 0)
  763. goto out2;
  764. /*
  765. * Race condition! In the gap, when table->tb6_lock was
  766. * released someone could insert this route. Relookup.
  767. */
  768. dst_release(&rt->dst);
  769. goto relookup;
  770. out:
  771. if (reachable) {
  772. reachable = 0;
  773. goto restart_2;
  774. }
  775. dst_hold(&rt->dst);
  776. read_unlock_bh(&table->tb6_lock);
  777. out2:
  778. rt->dst.lastuse = jiffies;
  779. rt->dst.__use++;
  780. return rt;
  781. }
  782. static struct rt6_info *ip6_pol_route_input(struct net *net, struct fib6_table *table,
  783. struct flowi6 *fl6, int flags)
  784. {
  785. return ip6_pol_route(net, table, fl6->flowi6_iif, fl6, flags, true);
  786. }
  787. static struct dst_entry *ip6_route_input_lookup(struct net *net,
  788. struct net_device *dev,
  789. struct flowi6 *fl6, int flags)
  790. {
  791. if (rt6_need_strict(&fl6->daddr) && dev->type != ARPHRD_PIMREG)
  792. flags |= RT6_LOOKUP_F_IFACE;
  793. return fib6_rule_lookup(net, fl6, flags, ip6_pol_route_input);
  794. }
  795. void ip6_route_input(struct sk_buff *skb)
  796. {
  797. const struct ipv6hdr *iph = ipv6_hdr(skb);
  798. struct net *net = dev_net(skb->dev);
  799. int flags = RT6_LOOKUP_F_HAS_SADDR;
  800. struct flowi6 fl6 = {
  801. .flowi6_iif = skb->dev->ifindex,
  802. .daddr = iph->daddr,
  803. .saddr = iph->saddr,
  804. .flowlabel = (* (__be32 *) iph) & IPV6_FLOWINFO_MASK,
  805. .flowi6_mark = skb->mark,
  806. .flowi6_proto = iph->nexthdr,
  807. };
  808. skb_dst_set(skb, ip6_route_input_lookup(net, skb->dev, &fl6, flags));
  809. }
  810. static struct rt6_info *ip6_pol_route_output(struct net *net, struct fib6_table *table,
  811. struct flowi6 *fl6, int flags)
  812. {
  813. return ip6_pol_route(net, table, fl6->flowi6_oif, fl6, flags, false);
  814. }
  815. struct dst_entry * ip6_route_output(struct net *net, const struct sock *sk,
  816. struct flowi6 *fl6)
  817. {
  818. int flags = 0;
  819. fl6->flowi6_iif = LOOPBACK_IFINDEX;
  820. fl6->flowi6_iif = LOOPBACK_IFINDEX;
  821. if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl6->daddr))
  822. flags |= RT6_LOOKUP_F_IFACE;
  823. if (!ipv6_addr_any(&fl6->saddr))
  824. flags |= RT6_LOOKUP_F_HAS_SADDR;
  825. else if (sk)
  826. flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs);
  827. return fib6_rule_lookup(net, fl6, flags, ip6_pol_route_output);
  828. }
  829. EXPORT_SYMBOL(ip6_route_output);
  830. struct dst_entry *ip6_blackhole_route(struct net *net, struct dst_entry *dst_orig)
  831. {
  832. struct rt6_info *rt, *ort = (struct rt6_info *) dst_orig;
  833. struct dst_entry *new = NULL;
  834. rt = dst_alloc(&ip6_dst_blackhole_ops, ort->dst.dev, 1, DST_OBSOLETE_NONE, 0);
  835. if (rt) {
  836. memset(&rt->rt6i_table, 0, sizeof(*rt) - sizeof(struct dst_entry));
  837. new = &rt->dst;
  838. new->__use = 1;
  839. new->input = dst_discard;
  840. new->output = dst_discard;
  841. if (dst_metrics_read_only(&ort->dst))
  842. new->_metrics = ort->dst._metrics;
  843. else
  844. dst_copy_metrics(new, &ort->dst);
  845. rt->rt6i_idev = ort->rt6i_idev;
  846. if (rt->rt6i_idev)
  847. in6_dev_hold(rt->rt6i_idev);
  848. rt->rt6i_gateway = ort->rt6i_gateway;
  849. rt->rt6i_flags = ort->rt6i_flags;
  850. rt6_clean_expires(rt);
  851. rt->rt6i_metric = 0;
  852. memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key));
  853. #ifdef CONFIG_IPV6_SUBTREES
  854. memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key));
  855. #endif
  856. dst_free(new);
  857. }
  858. dst_release(dst_orig);
  859. return new ? new : ERR_PTR(-ENOMEM);
  860. }
  861. /*
  862. * Destination cache support functions
  863. */
  864. static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie)
  865. {
  866. struct rt6_info *rt;
  867. rt = (struct rt6_info *) dst;
  868. if (rt->rt6i_node && (rt->rt6i_node->fn_sernum == cookie)) {
  869. if (rt->rt6i_peer_genid != rt6_peer_genid()) {
  870. if (!rt->rt6i_peer)
  871. rt6_bind_peer(rt, 0);
  872. rt->rt6i_peer_genid = rt6_peer_genid();
  873. }
  874. return dst;
  875. }
  876. return NULL;
  877. }
  878. static struct dst_entry *ip6_negative_advice(struct dst_entry *dst)
  879. {
  880. struct rt6_info *rt = (struct rt6_info *) dst;
  881. if (rt) {
  882. if (rt->rt6i_flags & RTF_CACHE) {
  883. if (rt6_check_expired(rt)) {
  884. ip6_del_rt(rt);
  885. dst = NULL;
  886. }
  887. } else {
  888. dst_release(dst);
  889. dst = NULL;
  890. }
  891. }
  892. return dst;
  893. }
  894. static void ip6_link_failure(struct sk_buff *skb)
  895. {
  896. struct rt6_info *rt;
  897. icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0);
  898. rt = (struct rt6_info *) skb_dst(skb);
  899. if (rt) {
  900. if (rt->rt6i_flags & RTF_CACHE) {
  901. dst_hold(&rt->dst);
  902. if (ip6_del_rt(rt))
  903. dst_free(&rt->dst);
  904. } else if (rt->rt6i_node && (rt->rt6i_flags & RTF_DEFAULT)) {
  905. rt->rt6i_node->fn_sernum = -1;
  906. }
  907. }
  908. }
  909. static void ip6_rt_update_pmtu(struct dst_entry *dst, u32 mtu)
  910. {
  911. struct rt6_info *rt6 = (struct rt6_info*)dst;
  912. dst_confirm(dst);
  913. if (mtu < dst_mtu(dst) && rt6->rt6i_dst.plen == 128) {
  914. struct net *net = dev_net(dst->dev);
  915. rt6->rt6i_flags |= RTF_MODIFIED;
  916. if (mtu < IPV6_MIN_MTU) {
  917. u32 features = dst_metric(dst, RTAX_FEATURES);
  918. mtu = IPV6_MIN_MTU;
  919. features |= RTAX_FEATURE_ALLFRAG;
  920. dst_metric_set(dst, RTAX_FEATURES, features);
  921. }
  922. dst_metric_set(dst, RTAX_MTU, mtu);
  923. rt6_update_expires(rt6, net->ipv6.sysctl.ip6_rt_mtu_expires);
  924. }
  925. }
  926. void ip6_update_pmtu(struct sk_buff *skb, struct net *net, __be32 mtu,
  927. int oif, u32 mark, kuid_t uid)
  928. {
  929. const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data;
  930. struct dst_entry *dst;
  931. struct flowi6 fl6;
  932. memset(&fl6, 0, sizeof(fl6));
  933. fl6.flowi6_oif = oif;
  934. fl6.flowi6_mark = mark;
  935. fl6.flowi6_flags = FLOWI_FLAG_PRECOW_METRICS;
  936. fl6.daddr = iph->daddr;
  937. fl6.saddr = iph->saddr;
  938. fl6.flowlabel = (*(__be32 *) iph) & IPV6_FLOWINFO_MASK;
  939. fl6.flowi6_uid = uid;
  940. dst = ip6_route_output(net, NULL, &fl6);
  941. if (!dst->error)
  942. ip6_rt_update_pmtu(dst, ntohl(mtu));
  943. dst_release(dst);
  944. }
  945. EXPORT_SYMBOL_GPL(ip6_update_pmtu);
  946. void ip6_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, __be32 mtu)
  947. {
  948. ip6_update_pmtu(skb, sock_net(sk), mtu,
  949. sk->sk_bound_dev_if, sk->sk_mark, sk->sk_uid);
  950. }
  951. EXPORT_SYMBOL_GPL(ip6_sk_update_pmtu);
  952. static unsigned int ip6_default_advmss(const struct dst_entry *dst)
  953. {
  954. struct net_device *dev = dst->dev;
  955. unsigned int mtu = dst_mtu(dst);
  956. struct net *net = dev_net(dev);
  957. mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr);
  958. if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss)
  959. mtu = net->ipv6.sysctl.ip6_rt_min_advmss;
  960. /*
  961. * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and
  962. * corresponding MSS is IPV6_MAXPLEN - tcp_header_size.
  963. * IPV6_MAXPLEN is also valid and means: "any MSS,
  964. * rely only on pmtu discovery"
  965. */
  966. if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr))
  967. mtu = IPV6_MAXPLEN;
  968. return mtu;
  969. }
  970. static unsigned int ip6_mtu(const struct dst_entry *dst)
  971. {
  972. struct inet6_dev *idev;
  973. unsigned int mtu = dst_metric_raw(dst, RTAX_MTU);
  974. if (mtu)
  975. goto out;
  976. mtu = IPV6_MIN_MTU;
  977. rcu_read_lock();
  978. idev = __in6_dev_get(dst->dev);
  979. if (idev)
  980. mtu = idev->cnf.mtu6;
  981. rcu_read_unlock();
  982. out:
  983. return min_t(unsigned int, mtu, IP6_MAX_MTU);
  984. }
  985. static struct dst_entry *icmp6_dst_gc_list;
  986. static DEFINE_SPINLOCK(icmp6_dst_lock);
  987. struct dst_entry *icmp6_dst_alloc(struct net_device *dev,
  988. struct neighbour *neigh,
  989. struct flowi6 *fl6)
  990. {
  991. struct dst_entry *dst;
  992. struct rt6_info *rt;
  993. struct inet6_dev *idev = in6_dev_get(dev);
  994. struct net *net = dev_net(dev);
  995. if (unlikely(!idev))
  996. return ERR_PTR(-ENODEV);
  997. rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops, dev, 0);
  998. if (unlikely(!rt)) {
  999. in6_dev_put(idev);
  1000. dst = ERR_PTR(-ENOMEM);
  1001. goto out;
  1002. }
  1003. if (neigh)
  1004. neigh_hold(neigh);
  1005. else {
  1006. neigh = ip6_neigh_lookup(&rt->dst, NULL, &fl6->daddr);
  1007. if (IS_ERR(neigh)) {
  1008. in6_dev_put(idev);
  1009. dst_free(&rt->dst);
  1010. return ERR_CAST(neigh);
  1011. }
  1012. }
  1013. rt->dst.flags |= DST_HOST;
  1014. rt->dst.output = ip6_output;
  1015. dst_set_neighbour(&rt->dst, neigh);
  1016. atomic_set(&rt->dst.__refcnt, 1);
  1017. rt->rt6i_dst.addr = fl6->daddr;
  1018. rt->rt6i_dst.plen = 128;
  1019. rt->rt6i_idev = idev;
  1020. dst_metric_set(&rt->dst, RTAX_HOPLIMIT, 0);
  1021. spin_lock_bh(&icmp6_dst_lock);
  1022. rt->dst.next = icmp6_dst_gc_list;
  1023. icmp6_dst_gc_list = &rt->dst;
  1024. spin_unlock_bh(&icmp6_dst_lock);
  1025. fib6_force_start_gc(net);
  1026. dst = xfrm_lookup(net, &rt->dst, flowi6_to_flowi(fl6), NULL, 0);
  1027. out:
  1028. return dst;
  1029. }
  1030. int icmp6_dst_gc(void)
  1031. {
  1032. struct dst_entry *dst, **pprev;
  1033. int more = 0;
  1034. spin_lock_bh(&icmp6_dst_lock);
  1035. pprev = &icmp6_dst_gc_list;
  1036. while ((dst = *pprev) != NULL) {
  1037. if (!atomic_read(&dst->__refcnt)) {
  1038. *pprev = dst->next;
  1039. dst_free(dst);
  1040. } else {
  1041. pprev = &dst->next;
  1042. ++more;
  1043. }
  1044. }
  1045. spin_unlock_bh(&icmp6_dst_lock);
  1046. return more;
  1047. }
  1048. static void icmp6_clean_all(int (*func)(struct rt6_info *rt, void *arg),
  1049. void *arg)
  1050. {
  1051. struct dst_entry *dst, **pprev;
  1052. spin_lock_bh(&icmp6_dst_lock);
  1053. pprev = &icmp6_dst_gc_list;
  1054. while ((dst = *pprev) != NULL) {
  1055. struct rt6_info *rt = (struct rt6_info *) dst;
  1056. if (func(rt, arg)) {
  1057. *pprev = dst->next;
  1058. dst_free(dst);
  1059. } else {
  1060. pprev = &dst->next;
  1061. }
  1062. }
  1063. spin_unlock_bh(&icmp6_dst_lock);
  1064. }
  1065. static int ip6_dst_gc(struct dst_ops *ops)
  1066. {
  1067. struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops);
  1068. int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval;
  1069. int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size;
  1070. int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity;
  1071. int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout;
  1072. unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc;
  1073. int entries;
  1074. entries = dst_entries_get_fast(ops);
  1075. if (time_after(rt_last_gc + rt_min_interval, jiffies) &&
  1076. entries <= rt_max_size)
  1077. goto out;
  1078. net->ipv6.ip6_rt_gc_expire++;
  1079. fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net, entries > rt_max_size);
  1080. entries = dst_entries_get_slow(ops);
  1081. if (entries < ops->gc_thresh)
  1082. net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1;
  1083. out:
  1084. net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity;
  1085. return entries > rt_max_size;
  1086. }
  1087. /* Clean host part of a prefix. Not necessary in radix tree,
  1088. but results in cleaner routing tables.
  1089. Remove it only when all the things will work!
  1090. */
  1091. int ip6_dst_hoplimit(struct dst_entry *dst)
  1092. {
  1093. int hoplimit = dst_metric_raw(dst, RTAX_HOPLIMIT);
  1094. if (hoplimit == 0) {
  1095. struct net_device *dev = dst->dev;
  1096. struct inet6_dev *idev;
  1097. rcu_read_lock();
  1098. idev = __in6_dev_get(dev);
  1099. if (idev)
  1100. hoplimit = idev->cnf.hop_limit;
  1101. else
  1102. hoplimit = dev_net(dev)->ipv6.devconf_all->hop_limit;
  1103. rcu_read_unlock();
  1104. }
  1105. return hoplimit;
  1106. }
  1107. EXPORT_SYMBOL(ip6_dst_hoplimit);
  1108. /*
  1109. *
  1110. */
  1111. int ip6_route_add(struct fib6_config *cfg)
  1112. {
  1113. int err;
  1114. struct net *net = cfg->fc_nlinfo.nl_net;
  1115. struct rt6_info *rt = NULL;
  1116. struct net_device *dev = NULL;
  1117. struct inet6_dev *idev = NULL;
  1118. struct fib6_table *table;
  1119. int addr_type;
  1120. if (cfg->fc_dst_len > 128 || cfg->fc_src_len > 128)
  1121. return -EINVAL;
  1122. #ifndef CONFIG_IPV6_SUBTREES
  1123. if (cfg->fc_src_len)
  1124. return -EINVAL;
  1125. #endif
  1126. if (cfg->fc_ifindex) {
  1127. err = -ENODEV;
  1128. dev = dev_get_by_index(net, cfg->fc_ifindex);
  1129. if (!dev)
  1130. goto out;
  1131. idev = in6_dev_get(dev);
  1132. if (!idev)
  1133. goto out;
  1134. }
  1135. if (cfg->fc_metric == 0)
  1136. cfg->fc_metric = IP6_RT_PRIO_USER;
  1137. err = -ENOBUFS;
  1138. if (cfg->fc_nlinfo.nlh &&
  1139. !(cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_CREATE)) {
  1140. table = fib6_get_table(net, cfg->fc_table);
  1141. if (!table) {
  1142. printk(KERN_WARNING "IPv6: NLM_F_CREATE should be specified when creating new route\n");
  1143. table = fib6_new_table(net, cfg->fc_table);
  1144. }
  1145. } else {
  1146. table = fib6_new_table(net, cfg->fc_table);
  1147. }
  1148. if (!table)
  1149. goto out;
  1150. rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops, NULL, (cfg->fc_flags & RTF_ADDRCONF) ? 0 : DST_NOCOUNT);
  1151. if (!rt) {
  1152. err = -ENOMEM;
  1153. goto out;
  1154. }
  1155. rt->dst.obsolete = -1;
  1156. if (cfg->fc_flags & RTF_EXPIRES)
  1157. rt6_set_expires(rt, jiffies +
  1158. clock_t_to_jiffies(cfg->fc_expires));
  1159. else
  1160. rt6_clean_expires(rt);
  1161. if (cfg->fc_protocol == RTPROT_UNSPEC)
  1162. cfg->fc_protocol = RTPROT_BOOT;
  1163. rt->rt6i_protocol = cfg->fc_protocol;
  1164. addr_type = ipv6_addr_type(&cfg->fc_dst);
  1165. if (addr_type & IPV6_ADDR_MULTICAST)
  1166. rt->dst.input = ip6_mc_input;
  1167. else if (cfg->fc_flags & RTF_LOCAL)
  1168. rt->dst.input = ip6_input;
  1169. else
  1170. rt->dst.input = ip6_forward;
  1171. rt->dst.output = ip6_output;
  1172. ipv6_addr_prefix(&rt->rt6i_dst.addr, &cfg->fc_dst, cfg->fc_dst_len);
  1173. rt->rt6i_dst.plen = cfg->fc_dst_len;
  1174. if (rt->rt6i_dst.plen == 128)
  1175. rt->dst.flags |= DST_HOST;
  1176. if (!(rt->dst.flags & DST_HOST) && cfg->fc_mx) {
  1177. u32 *metrics = kzalloc(sizeof(u32) * RTAX_MAX, GFP_KERNEL);
  1178. if (!metrics) {
  1179. err = -ENOMEM;
  1180. goto out;
  1181. }
  1182. dst_init_metrics(&rt->dst, metrics, 0);
  1183. }
  1184. #ifdef CONFIG_IPV6_SUBTREES
  1185. ipv6_addr_prefix(&rt->rt6i_src.addr, &cfg->fc_src, cfg->fc_src_len);
  1186. rt->rt6i_src.plen = cfg->fc_src_len;
  1187. #endif
  1188. rt->rt6i_metric = cfg->fc_metric;
  1189. /* We cannot add true routes via loopback here,
  1190. they would result in kernel looping; promote them to reject routes
  1191. */
  1192. if ((cfg->fc_flags & RTF_REJECT) ||
  1193. (dev && (dev->flags & IFF_LOOPBACK) &&
  1194. !(addr_type & IPV6_ADDR_LOOPBACK) &&
  1195. !(cfg->fc_flags & RTF_LOCAL))) {
  1196. /* hold loopback dev/idev if we haven't done so. */
  1197. if (dev != net->loopback_dev) {
  1198. if (dev) {
  1199. dev_put(dev);
  1200. in6_dev_put(idev);
  1201. }
  1202. dev = net->loopback_dev;
  1203. dev_hold(dev);
  1204. idev = in6_dev_get(dev);
  1205. if (!idev) {
  1206. err = -ENODEV;
  1207. goto out;
  1208. }
  1209. }
  1210. rt->dst.output = ip6_pkt_discard_out;
  1211. rt->dst.input = ip6_pkt_discard;
  1212. rt->rt6i_flags = RTF_REJECT|RTF_NONEXTHOP;
  1213. switch (cfg->fc_type) {
  1214. case RTN_BLACKHOLE:
  1215. rt->dst.error = -EINVAL;
  1216. break;
  1217. case RTN_PROHIBIT:
  1218. rt->dst.error = -EACCES;
  1219. break;
  1220. default:
  1221. rt->dst.error = -ENETUNREACH;
  1222. break;
  1223. }
  1224. goto install_route;
  1225. }
  1226. if (cfg->fc_flags & RTF_GATEWAY) {
  1227. const struct in6_addr *gw_addr;
  1228. int gwa_type;
  1229. gw_addr = &cfg->fc_gateway;
  1230. rt->rt6i_gateway = *gw_addr;
  1231. gwa_type = ipv6_addr_type(gw_addr);
  1232. if (gwa_type != (IPV6_ADDR_LINKLOCAL|IPV6_ADDR_UNICAST)) {
  1233. struct rt6_info *grt;
  1234. /* IPv6 strictly inhibits using not link-local
  1235. addresses as nexthop address.
  1236. Otherwise, router will not able to send redirects.
  1237. It is very good, but in some (rare!) circumstances
  1238. (SIT, PtP, NBMA NOARP links) it is handy to allow
  1239. some exceptions. --ANK
  1240. */
  1241. err = -EINVAL;
  1242. if (!(gwa_type & IPV6_ADDR_UNICAST))
  1243. goto out;
  1244. grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, 1);
  1245. err = -EHOSTUNREACH;
  1246. if (!grt)
  1247. goto out;
  1248. if (dev) {
  1249. if (dev != grt->dst.dev) {
  1250. dst_release(&grt->dst);
  1251. goto out;
  1252. }
  1253. } else {
  1254. dev = grt->dst.dev;
  1255. idev = grt->rt6i_idev;
  1256. dev_hold(dev);
  1257. in6_dev_hold(grt->rt6i_idev);
  1258. }
  1259. if (!(grt->rt6i_flags & RTF_GATEWAY))
  1260. err = 0;
  1261. dst_release(&grt->dst);
  1262. if (err)
  1263. goto out;
  1264. }
  1265. err = -EINVAL;
  1266. if (!dev || (dev->flags & IFF_LOOPBACK))
  1267. goto out;
  1268. }
  1269. err = -ENODEV;
  1270. if (!dev)
  1271. goto out;
  1272. if (!ipv6_addr_any(&cfg->fc_prefsrc)) {
  1273. if (!ipv6_chk_addr(net, &cfg->fc_prefsrc, dev, 0)) {
  1274. err = -EINVAL;
  1275. goto out;
  1276. }
  1277. rt->rt6i_prefsrc.addr = cfg->fc_prefsrc;
  1278. rt->rt6i_prefsrc.plen = 128;
  1279. } else
  1280. rt->rt6i_prefsrc.plen = 0;
  1281. if (cfg->fc_flags & (RTF_GATEWAY | RTF_NONEXTHOP)) {
  1282. err = rt6_bind_neighbour(rt, dev);
  1283. if (err)
  1284. goto out;
  1285. }
  1286. rt->rt6i_flags = cfg->fc_flags;
  1287. install_route:
  1288. if (cfg->fc_mx) {
  1289. struct nlattr *nla;
  1290. int remaining;
  1291. nla_for_each_attr(nla, cfg->fc_mx, cfg->fc_mx_len, remaining) {
  1292. int type = nla_type(nla);
  1293. if (type) {
  1294. if (type > RTAX_MAX) {
  1295. err = -EINVAL;
  1296. goto out;
  1297. }
  1298. dst_metric_set(&rt->dst, type, nla_get_u32(nla));
  1299. }
  1300. }
  1301. }
  1302. rt->dst.dev = dev;
  1303. rt->rt6i_idev = idev;
  1304. rt->rt6i_table = table;
  1305. cfg->fc_nlinfo.nl_net = dev_net(dev);
  1306. return __ip6_ins_rt(rt, &cfg->fc_nlinfo);
  1307. out:
  1308. if (dev)
  1309. dev_put(dev);
  1310. if (idev)
  1311. in6_dev_put(idev);
  1312. if (rt)
  1313. dst_free(&rt->dst);
  1314. return err;
  1315. }
  1316. static int __ip6_del_rt(struct rt6_info *rt, struct nl_info *info)
  1317. {
  1318. int err;
  1319. struct fib6_table *table;
  1320. struct net *net = dev_net(rt->dst.dev);
  1321. if (rt == net->ipv6.ip6_null_entry) {
  1322. err = -ENOENT;
  1323. goto out;
  1324. }
  1325. table = rt->rt6i_table;
  1326. write_lock_bh(&table->tb6_lock);
  1327. err = fib6_del(rt, info);
  1328. write_unlock_bh(&table->tb6_lock);
  1329. out:
  1330. dst_release(&rt->dst);
  1331. return err;
  1332. }
  1333. int ip6_del_rt(struct rt6_info *rt)
  1334. {
  1335. struct nl_info info = {
  1336. .nl_net = dev_net(rt->dst.dev),
  1337. };
  1338. return __ip6_del_rt(rt, &info);
  1339. }
  1340. static int ip6_route_del(struct fib6_config *cfg)
  1341. {
  1342. struct fib6_table *table;
  1343. struct fib6_node *fn;
  1344. struct rt6_info *rt;
  1345. int err = -ESRCH;
  1346. table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table);
  1347. if (!table)
  1348. return err;
  1349. read_lock_bh(&table->tb6_lock);
  1350. fn = fib6_locate(&table->tb6_root,
  1351. &cfg->fc_dst, cfg->fc_dst_len,
  1352. &cfg->fc_src, cfg->fc_src_len);
  1353. if (fn) {
  1354. for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
  1355. if (cfg->fc_ifindex &&
  1356. (!rt->dst.dev ||
  1357. rt->dst.dev->ifindex != cfg->fc_ifindex))
  1358. continue;
  1359. if (cfg->fc_flags & RTF_GATEWAY &&
  1360. !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway))
  1361. continue;
  1362. if (cfg->fc_metric && cfg->fc_metric != rt->rt6i_metric)
  1363. continue;
  1364. dst_hold(&rt->dst);
  1365. read_unlock_bh(&table->tb6_lock);
  1366. return __ip6_del_rt(rt, &cfg->fc_nlinfo);
  1367. }
  1368. }
  1369. read_unlock_bh(&table->tb6_lock);
  1370. return err;
  1371. }
  1372. /*
  1373. * Handle redirects
  1374. */
  1375. struct ip6rd_flowi {
  1376. struct flowi6 fl6;
  1377. struct in6_addr gateway;
  1378. };
  1379. static struct rt6_info *__ip6_route_redirect(struct net *net,
  1380. struct fib6_table *table,
  1381. struct flowi6 *fl6,
  1382. int flags)
  1383. {
  1384. struct ip6rd_flowi *rdfl = (struct ip6rd_flowi *)fl6;
  1385. struct rt6_info *rt;
  1386. struct fib6_node *fn;
  1387. /*
  1388. * Get the "current" route for this destination and
  1389. * check if the redirect has come from approriate router.
  1390. *
  1391. * RFC 2461 specifies that redirects should only be
  1392. * accepted if they come from the nexthop to the target.
  1393. * Due to the way the routes are chosen, this notion
  1394. * is a bit fuzzy and one might need to check all possible
  1395. * routes.
  1396. */
  1397. read_lock_bh(&table->tb6_lock);
  1398. fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
  1399. restart:
  1400. for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
  1401. /*
  1402. * Current route is on-link; redirect is always invalid.
  1403. *
  1404. * Seems, previous statement is not true. It could
  1405. * be node, which looks for us as on-link (f.e. proxy ndisc)
  1406. * But then router serving it might decide, that we should
  1407. * know truth 8)8) --ANK (980726).
  1408. */
  1409. if (rt6_check_expired(rt))
  1410. continue;
  1411. if (!(rt->rt6i_flags & RTF_GATEWAY))
  1412. continue;
  1413. if (fl6->flowi6_oif != rt->dst.dev->ifindex)
  1414. continue;
  1415. if (!ipv6_addr_equal(&rdfl->gateway, &rt->rt6i_gateway))
  1416. continue;
  1417. break;
  1418. }
  1419. if (!rt)
  1420. rt = net->ipv6.ip6_null_entry;
  1421. BACKTRACK(net, &fl6->saddr);
  1422. out:
  1423. dst_hold(&rt->dst);
  1424. read_unlock_bh(&table->tb6_lock);
  1425. return rt;
  1426. };
  1427. static struct rt6_info *ip6_route_redirect(const struct in6_addr *dest,
  1428. const struct in6_addr *src,
  1429. const struct in6_addr *gateway,
  1430. struct net_device *dev)
  1431. {
  1432. int flags = RT6_LOOKUP_F_HAS_SADDR;
  1433. struct net *net = dev_net(dev);
  1434. struct ip6rd_flowi rdfl = {
  1435. .fl6 = {
  1436. .flowi6_oif = dev->ifindex,
  1437. .daddr = *dest,
  1438. .saddr = *src,
  1439. },
  1440. };
  1441. rdfl.gateway = *gateway;
  1442. if (rt6_need_strict(dest))
  1443. flags |= RT6_LOOKUP_F_IFACE;
  1444. return (struct rt6_info *)fib6_rule_lookup(net, &rdfl.fl6,
  1445. flags, __ip6_route_redirect);
  1446. }
  1447. void rt6_redirect(const struct in6_addr *dest, const struct in6_addr *src,
  1448. const struct in6_addr *saddr,
  1449. struct neighbour *neigh, u8 *lladdr, int on_link)
  1450. {
  1451. struct rt6_info *rt, *nrt = NULL;
  1452. struct netevent_redirect netevent;
  1453. struct net *net = dev_net(neigh->dev);
  1454. rt = ip6_route_redirect(dest, src, saddr, neigh->dev);
  1455. if (rt == net->ipv6.ip6_null_entry) {
  1456. net_dbg_ratelimited("rt6_redirect: source isn't a valid nexthop for redirect target\n");
  1457. goto out;
  1458. }
  1459. #ifdef CONFIG_IPV6_MULTIPLE_TABLES
  1460. if (rt == net->ipv6.ip6_blk_hole_entry ||
  1461. rt == net->ipv6.ip6_prohibit_entry) {
  1462. if (net_ratelimit())
  1463. printk(KERN_DEBUG "rt6_redirect: source isn't a valid" \
  1464. " nexthop for redirect target " \
  1465. "(blackhole or prohibited)\n");
  1466. goto out;
  1467. }
  1468. #endif
  1469. /*
  1470. * We have finally decided to accept it.
  1471. */
  1472. neigh_update(neigh, lladdr, NUD_STALE,
  1473. NEIGH_UPDATE_F_WEAK_OVERRIDE|
  1474. NEIGH_UPDATE_F_OVERRIDE|
  1475. (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
  1476. NEIGH_UPDATE_F_ISROUTER))
  1477. );
  1478. /*
  1479. * Redirect received -> path was valid.
  1480. * Look, redirects are sent only in response to data packets,
  1481. * so that this nexthop apparently is reachable. --ANK
  1482. */
  1483. dst_confirm(&rt->dst);
  1484. /* Duplicate redirect: silently ignore. */
  1485. if (neigh == dst_get_neighbour_noref_raw(&rt->dst))
  1486. goto out;
  1487. nrt = ip6_rt_copy(rt, dest);
  1488. if (!nrt)
  1489. goto out;
  1490. nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE;
  1491. if (on_link)
  1492. nrt->rt6i_flags &= ~RTF_GATEWAY;
  1493. nrt->rt6i_gateway = *(struct in6_addr *)neigh->primary_key;
  1494. dst_set_neighbour(&nrt->dst, neigh_clone(neigh));
  1495. if (ip6_ins_rt(nrt))
  1496. goto out;
  1497. netevent.old = &rt->dst;
  1498. netevent.new = &nrt->dst;
  1499. call_netevent_notifiers(NETEVENT_REDIRECT, &netevent);
  1500. if (rt->rt6i_flags & RTF_CACHE) {
  1501. ip6_del_rt(rt);
  1502. return;
  1503. }
  1504. out:
  1505. dst_release(&rt->dst);
  1506. }
  1507. /*
  1508. * Misc support functions
  1509. */
  1510. static struct rt6_info *ip6_rt_copy(struct rt6_info *ort,
  1511. const struct in6_addr *dest)
  1512. {
  1513. struct net *net = dev_net(ort->dst.dev);
  1514. struct rt6_info *rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops,
  1515. ort->dst.dev, 0);
  1516. if (rt) {
  1517. rt->dst.input = ort->dst.input;
  1518. rt->dst.output = ort->dst.output;
  1519. rt->dst.flags |= DST_HOST;
  1520. rt->rt6i_dst.addr = *dest;
  1521. rt->rt6i_dst.plen = 128;
  1522. dst_copy_metrics(&rt->dst, &ort->dst);
  1523. rt->dst.error = ort->dst.error;
  1524. rt->rt6i_idev = ort->rt6i_idev;
  1525. if (rt->rt6i_idev)
  1526. in6_dev_hold(rt->rt6i_idev);
  1527. rt->dst.lastuse = jiffies;
  1528. rt->rt6i_gateway = ort->rt6i_gateway;
  1529. rt->rt6i_flags = ort->rt6i_flags;
  1530. if ((ort->rt6i_flags & (RTF_DEFAULT | RTF_ADDRCONF)) ==
  1531. (RTF_DEFAULT | RTF_ADDRCONF))
  1532. rt6_set_from(rt, ort);
  1533. else
  1534. rt6_clean_expires(rt);
  1535. rt->rt6i_metric = 0;
  1536. #ifdef CONFIG_IPV6_SUBTREES
  1537. memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key));
  1538. #endif
  1539. memcpy(&rt->rt6i_prefsrc, &ort->rt6i_prefsrc, sizeof(struct rt6key));
  1540. rt->rt6i_table = ort->rt6i_table;
  1541. }
  1542. return rt;
  1543. }
  1544. #ifdef CONFIG_IPV6_ROUTE_INFO
  1545. static struct rt6_info *rt6_get_route_info(struct net_device *dev,
  1546. const struct in6_addr *prefix, int prefixlen,
  1547. const struct in6_addr *gwaddr)
  1548. {
  1549. struct fib6_node *fn;
  1550. struct rt6_info *rt = NULL;
  1551. struct fib6_table *table;
  1552. table = fib6_get_table(dev_net(dev),
  1553. addrconf_rt_table(dev, RT6_TABLE_INFO));
  1554. if (!table)
  1555. return NULL;
  1556. write_lock_bh(&table->tb6_lock);
  1557. fn = fib6_locate(&table->tb6_root, prefix ,prefixlen, NULL, 0);
  1558. if (!fn)
  1559. goto out;
  1560. for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
  1561. if (rt->dst.dev->ifindex != dev->ifindex)
  1562. continue;
  1563. if ((rt->rt6i_flags & (RTF_ROUTEINFO|RTF_GATEWAY)) != (RTF_ROUTEINFO|RTF_GATEWAY))
  1564. continue;
  1565. if (!ipv6_addr_equal(&rt->rt6i_gateway, gwaddr))
  1566. continue;
  1567. dst_hold(&rt->dst);
  1568. break;
  1569. }
  1570. out:
  1571. write_unlock_bh(&table->tb6_lock);
  1572. return rt;
  1573. }
  1574. static struct rt6_info *rt6_add_route_info(struct net_device *dev,
  1575. const struct in6_addr *prefix, int prefixlen,
  1576. const struct in6_addr *gwaddr,
  1577. unsigned int pref)
  1578. {
  1579. struct fib6_config cfg = {
  1580. .fc_table = addrconf_rt_table(dev, RT6_TABLE_INFO),
  1581. .fc_metric = IP6_RT_PRIO_USER,
  1582. .fc_ifindex = dev->ifindex,
  1583. .fc_dst_len = prefixlen,
  1584. .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO |
  1585. RTF_UP | RTF_PREF(pref),
  1586. .fc_nlinfo.pid = 0,
  1587. .fc_nlinfo.nlh = NULL,
  1588. .fc_nlinfo.nl_net = dev_net(dev),
  1589. };
  1590. cfg.fc_dst = *prefix;
  1591. cfg.fc_gateway = *gwaddr;
  1592. /* We should treat it as a default route if prefix length is 0. */
  1593. if (!prefixlen)
  1594. cfg.fc_flags |= RTF_DEFAULT;
  1595. ip6_route_add(&cfg);
  1596. return rt6_get_route_info(dev, prefix, prefixlen, gwaddr);
  1597. }
  1598. #endif
  1599. struct rt6_info *rt6_get_dflt_router(const struct in6_addr *addr, struct net_device *dev)
  1600. {
  1601. struct rt6_info *rt;
  1602. struct fib6_table *table;
  1603. table = fib6_get_table(dev_net(dev),
  1604. addrconf_rt_table(dev, RT6_TABLE_MAIN));
  1605. if (!table)
  1606. return NULL;
  1607. write_lock_bh(&table->tb6_lock);
  1608. for (rt = table->tb6_root.leaf; rt; rt=rt->dst.rt6_next) {
  1609. if (dev == rt->dst.dev &&
  1610. ((rt->rt6i_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) &&
  1611. ipv6_addr_equal(&rt->rt6i_gateway, addr))
  1612. break;
  1613. }
  1614. if (rt)
  1615. dst_hold(&rt->dst);
  1616. write_unlock_bh(&table->tb6_lock);
  1617. return rt;
  1618. }
  1619. struct rt6_info *rt6_add_dflt_router(const struct in6_addr *gwaddr,
  1620. struct net_device *dev,
  1621. unsigned int pref)
  1622. {
  1623. struct fib6_config cfg = {
  1624. .fc_table = addrconf_rt_table(dev, RT6_TABLE_DFLT),
  1625. .fc_metric = IP6_RT_PRIO_USER,
  1626. .fc_ifindex = dev->ifindex,
  1627. .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT |
  1628. RTF_UP | RTF_EXPIRES | RTF_PREF(pref),
  1629. .fc_nlinfo.pid = 0,
  1630. .fc_nlinfo.nlh = NULL,
  1631. .fc_nlinfo.nl_net = dev_net(dev),
  1632. };
  1633. cfg.fc_gateway = *gwaddr;
  1634. ip6_route_add(&cfg);
  1635. return rt6_get_dflt_router(gwaddr, dev);
  1636. }
  1637. int rt6_addrconf_purge(struct rt6_info *rt, void *arg) {
  1638. if (rt->rt6i_flags & (RTF_DEFAULT | RTF_ADDRCONF) &&
  1639. (!rt->rt6i_idev || rt->rt6i_idev->cnf.accept_ra != 2))
  1640. return -1;
  1641. return 0;
  1642. }
  1643. void rt6_purge_dflt_routers(struct net *net)
  1644. {
  1645. fib6_clean_all(net, rt6_addrconf_purge, 0, NULL);
  1646. }
  1647. static void rtmsg_to_fib6_config(struct net *net,
  1648. struct in6_rtmsg *rtmsg,
  1649. struct fib6_config *cfg)
  1650. {
  1651. memset(cfg, 0, sizeof(*cfg));
  1652. cfg->fc_table = RT6_TABLE_MAIN;
  1653. cfg->fc_ifindex = rtmsg->rtmsg_ifindex;
  1654. cfg->fc_metric = rtmsg->rtmsg_metric;
  1655. cfg->fc_expires = rtmsg->rtmsg_info;
  1656. cfg->fc_dst_len = rtmsg->rtmsg_dst_len;
  1657. cfg->fc_src_len = rtmsg->rtmsg_src_len;
  1658. cfg->fc_flags = rtmsg->rtmsg_flags;
  1659. cfg->fc_nlinfo.nl_net = net;
  1660. cfg->fc_dst = rtmsg->rtmsg_dst;
  1661. cfg->fc_src = rtmsg->rtmsg_src;
  1662. cfg->fc_gateway = rtmsg->rtmsg_gateway;
  1663. }
  1664. int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg)
  1665. {
  1666. struct fib6_config cfg;
  1667. struct in6_rtmsg rtmsg;
  1668. int err;
  1669. switch(cmd) {
  1670. case SIOCADDRT: /* Add a route */
  1671. case SIOCDELRT: /* Delete a route */
  1672. if (!capable(CAP_NET_ADMIN))
  1673. return -EPERM;
  1674. err = copy_from_user(&rtmsg, arg,
  1675. sizeof(struct in6_rtmsg));
  1676. if (err)
  1677. return -EFAULT;
  1678. rtmsg_to_fib6_config(net, &rtmsg, &cfg);
  1679. rtnl_lock();
  1680. switch (cmd) {
  1681. case SIOCADDRT:
  1682. err = ip6_route_add(&cfg);
  1683. break;
  1684. case SIOCDELRT:
  1685. err = ip6_route_del(&cfg);
  1686. break;
  1687. default:
  1688. err = -EINVAL;
  1689. }
  1690. rtnl_unlock();
  1691. return err;
  1692. }
  1693. return -EINVAL;
  1694. }
  1695. /*
  1696. * Drop the packet on the floor
  1697. */
  1698. static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes)
  1699. {
  1700. int type;
  1701. struct dst_entry *dst = skb_dst(skb);
  1702. switch (ipstats_mib_noroutes) {
  1703. case IPSTATS_MIB_INNOROUTES:
  1704. type = ipv6_addr_type(&ipv6_hdr(skb)->daddr);
  1705. if (type == IPV6_ADDR_ANY) {
  1706. IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst),
  1707. IPSTATS_MIB_INADDRERRORS);
  1708. break;
  1709. }
  1710. /* FALLTHROUGH */
  1711. case IPSTATS_MIB_OUTNOROUTES:
  1712. IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst),
  1713. ipstats_mib_noroutes);
  1714. break;
  1715. }
  1716. icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0);
  1717. kfree_skb(skb);
  1718. return 0;
  1719. }
  1720. static int ip6_pkt_discard(struct sk_buff *skb)
  1721. {
  1722. return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES);
  1723. }
  1724. static int ip6_pkt_discard_out(struct sk_buff *skb)
  1725. {
  1726. skb->dev = skb_dst(skb)->dev;
  1727. return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES);
  1728. }
  1729. #ifdef CONFIG_IPV6_MULTIPLE_TABLES
  1730. static int ip6_pkt_prohibit(struct sk_buff *skb)
  1731. {
  1732. return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES);
  1733. }
  1734. static int ip6_pkt_prohibit_out(struct sk_buff *skb)
  1735. {
  1736. skb->dev = skb_dst(skb)->dev;
  1737. return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES);
  1738. }
  1739. #endif
  1740. /*
  1741. * Allocate a dst for local (unicast / anycast) address.
  1742. */
  1743. struct rt6_info *addrconf_dst_alloc(struct inet6_dev *idev,
  1744. const struct in6_addr *addr,
  1745. bool anycast)
  1746. {
  1747. struct net *net = dev_net(idev->dev);
  1748. struct rt6_info *rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops,
  1749. net->loopback_dev, DST_NOCOUNT);
  1750. int err;
  1751. if (!rt) {
  1752. net_warn_ratelimited("IPv6: Maximum number of routes reached, consider increasing route/max_size\n");
  1753. return ERR_PTR(-ENOMEM);
  1754. }
  1755. in6_dev_hold(idev);
  1756. rt->dst.flags |= DST_HOST;
  1757. rt->dst.input = ip6_input;
  1758. rt->dst.output = ip6_output;
  1759. rt->rt6i_idev = idev;
  1760. rt->dst.obsolete = -1;
  1761. rt->rt6i_flags = RTF_UP | RTF_NONEXTHOP;
  1762. if (anycast)
  1763. rt->rt6i_flags |= RTF_ANYCAST;
  1764. else
  1765. rt->rt6i_flags |= RTF_LOCAL;
  1766. err = rt6_bind_neighbour(rt, rt->dst.dev);
  1767. if (err) {
  1768. dst_free(&rt->dst);
  1769. return ERR_PTR(err);
  1770. }
  1771. rt->rt6i_dst.addr = *addr;
  1772. rt->rt6i_dst.plen = 128;
  1773. rt->rt6i_table = fib6_get_table(net, RT6_TABLE_LOCAL);
  1774. atomic_set(&rt->dst.__refcnt, 1);
  1775. return rt;
  1776. }
  1777. int ip6_route_get_saddr(struct net *net,
  1778. struct rt6_info *rt,
  1779. const struct in6_addr *daddr,
  1780. unsigned int prefs,
  1781. struct in6_addr *saddr)
  1782. {
  1783. struct inet6_dev *idev = ip6_dst_idev((struct dst_entry*)rt);
  1784. int err = 0;
  1785. if (rt->rt6i_prefsrc.plen)
  1786. *saddr = rt->rt6i_prefsrc.addr;
  1787. else
  1788. err = ipv6_dev_get_saddr(net, idev ? idev->dev : NULL,
  1789. daddr, prefs, saddr);
  1790. return err;
  1791. }
  1792. /* remove deleted ip from prefsrc entries */
  1793. struct arg_dev_net_ip {
  1794. struct net_device *dev;
  1795. struct net *net;
  1796. struct in6_addr *addr;
  1797. };
  1798. static int fib6_remove_prefsrc(struct rt6_info *rt, void *arg)
  1799. {
  1800. struct net_device *dev = ((struct arg_dev_net_ip *)arg)->dev;
  1801. struct net *net = ((struct arg_dev_net_ip *)arg)->net;
  1802. struct in6_addr *addr = ((struct arg_dev_net_ip *)arg)->addr;
  1803. if (((void *)rt->dst.dev == dev || !dev) &&
  1804. rt != net->ipv6.ip6_null_entry &&
  1805. ipv6_addr_equal(addr, &rt->rt6i_prefsrc.addr)) {
  1806. /* remove prefsrc entry */
  1807. rt->rt6i_prefsrc.plen = 0;
  1808. }
  1809. return 0;
  1810. }
  1811. void rt6_remove_prefsrc(struct inet6_ifaddr *ifp)
  1812. {
  1813. struct net *net = dev_net(ifp->idev->dev);
  1814. struct arg_dev_net_ip adni = {
  1815. .dev = ifp->idev->dev,
  1816. .net = net,
  1817. .addr = &ifp->addr,
  1818. };
  1819. fib6_clean_all(net, fib6_remove_prefsrc, 0, &adni);
  1820. }
  1821. struct arg_dev_net {
  1822. struct net_device *dev;
  1823. struct net *net;
  1824. };
  1825. static int fib6_ifdown(struct rt6_info *rt, void *arg)
  1826. {
  1827. const struct arg_dev_net *adn = arg;
  1828. const struct net_device *dev = adn->dev;
  1829. if ((rt->dst.dev == dev || !dev) &&
  1830. rt != adn->net->ipv6.ip6_null_entry)
  1831. return -1;
  1832. return 0;
  1833. }
  1834. void rt6_ifdown(struct net *net, struct net_device *dev)
  1835. {
  1836. struct arg_dev_net adn = {
  1837. .dev = dev,
  1838. .net = net,
  1839. };
  1840. fib6_clean_all(net, fib6_ifdown, 0, &adn);
  1841. icmp6_clean_all(fib6_ifdown, &adn);
  1842. }
  1843. struct rt6_mtu_change_arg {
  1844. struct net_device *dev;
  1845. unsigned int mtu;
  1846. };
  1847. static int rt6_mtu_change_route(struct rt6_info *rt, void *p_arg)
  1848. {
  1849. struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg;
  1850. struct inet6_dev *idev;
  1851. /* In IPv6 pmtu discovery is not optional,
  1852. so that RTAX_MTU lock cannot disable it.
  1853. We still use this lock to block changes
  1854. caused by addrconf/ndisc.
  1855. */
  1856. idev = __in6_dev_get(arg->dev);
  1857. if (!idev)
  1858. return 0;
  1859. /* For administrative MTU increase, there is no way to discover
  1860. IPv6 PMTU increase, so PMTU increase should be updated here.
  1861. Since RFC 1981 doesn't include administrative MTU increase
  1862. update PMTU increase is a MUST. (i.e. jumbo frame)
  1863. */
  1864. /*
  1865. If new MTU is less than route PMTU, this new MTU will be the
  1866. lowest MTU in the path, update the route PMTU to reflect PMTU
  1867. decreases; if new MTU is greater than route PMTU, and the
  1868. old MTU is the lowest MTU in the path, update the route PMTU
  1869. to reflect the increase. In this case if the other nodes' MTU
  1870. also have the lowest MTU, TOO BIG MESSAGE will be lead to
  1871. PMTU discouvery.
  1872. */
  1873. if (rt->dst.dev == arg->dev &&
  1874. !dst_metric_locked(&rt->dst, RTAX_MTU) &&
  1875. (dst_mtu(&rt->dst) >= arg->mtu ||
  1876. (dst_mtu(&rt->dst) < arg->mtu &&
  1877. dst_mtu(&rt->dst) == idev->cnf.mtu6))) {
  1878. dst_metric_set(&rt->dst, RTAX_MTU, arg->mtu);
  1879. }
  1880. return 0;
  1881. }
  1882. void rt6_mtu_change(struct net_device *dev, unsigned int mtu)
  1883. {
  1884. struct rt6_mtu_change_arg arg = {
  1885. .dev = dev,
  1886. .mtu = mtu,
  1887. };
  1888. fib6_clean_all(dev_net(dev), rt6_mtu_change_route, 0, &arg);
  1889. }
  1890. static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = {
  1891. [RTA_GATEWAY] = { .len = sizeof(struct in6_addr) },
  1892. [RTA_OIF] = { .type = NLA_U32 },
  1893. [RTA_IIF] = { .type = NLA_U32 },
  1894. [RTA_PRIORITY] = { .type = NLA_U32 },
  1895. [RTA_METRICS] = { .type = NLA_NESTED },
  1896. [RTA_UID] = { .type = NLA_U32 },
  1897. };
  1898. static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh,
  1899. struct fib6_config *cfg)
  1900. {
  1901. struct rtmsg *rtm;
  1902. struct nlattr *tb[RTA_MAX+1];
  1903. int err;
  1904. err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy);
  1905. if (err < 0)
  1906. goto errout;
  1907. err = -EINVAL;
  1908. rtm = nlmsg_data(nlh);
  1909. memset(cfg, 0, sizeof(*cfg));
  1910. cfg->fc_table = rtm->rtm_table;
  1911. cfg->fc_dst_len = rtm->rtm_dst_len;
  1912. cfg->fc_src_len = rtm->rtm_src_len;
  1913. cfg->fc_flags = RTF_UP;
  1914. cfg->fc_protocol = rtm->rtm_protocol;
  1915. cfg->fc_type = rtm->rtm_type;
  1916. if (rtm->rtm_type == RTN_UNREACHABLE ||
  1917. rtm->rtm_type == RTN_BLACKHOLE ||
  1918. rtm->rtm_type == RTN_PROHIBIT)
  1919. cfg->fc_flags |= RTF_REJECT;
  1920. if (rtm->rtm_type == RTN_LOCAL)
  1921. cfg->fc_flags |= RTF_LOCAL;
  1922. cfg->fc_nlinfo.pid = NETLINK_CB(skb).pid;
  1923. cfg->fc_nlinfo.nlh = nlh;
  1924. cfg->fc_nlinfo.nl_net = sock_net(skb->sk);
  1925. if (tb[RTA_GATEWAY]) {
  1926. nla_memcpy(&cfg->fc_gateway, tb[RTA_GATEWAY], 16);
  1927. cfg->fc_flags |= RTF_GATEWAY;
  1928. }
  1929. if (tb[RTA_DST]) {
  1930. int plen = (rtm->rtm_dst_len + 7) >> 3;
  1931. if (nla_len(tb[RTA_DST]) < plen)
  1932. goto errout;
  1933. nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen);
  1934. }
  1935. if (tb[RTA_SRC]) {
  1936. int plen = (rtm->rtm_src_len + 7) >> 3;
  1937. if (nla_len(tb[RTA_SRC]) < plen)
  1938. goto errout;
  1939. nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen);
  1940. }
  1941. if (tb[RTA_PREFSRC])
  1942. nla_memcpy(&cfg->fc_prefsrc, tb[RTA_PREFSRC], 16);
  1943. if (tb[RTA_OIF])
  1944. cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]);
  1945. if (tb[RTA_PRIORITY])
  1946. cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]);
  1947. if (tb[RTA_METRICS]) {
  1948. cfg->fc_mx = nla_data(tb[RTA_METRICS]);
  1949. cfg->fc_mx_len = nla_len(tb[RTA_METRICS]);
  1950. }
  1951. if (tb[RTA_TABLE])
  1952. cfg->fc_table = nla_get_u32(tb[RTA_TABLE]);
  1953. err = 0;
  1954. errout:
  1955. return err;
  1956. }
  1957. static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr* nlh, void *arg)
  1958. {
  1959. struct fib6_config cfg;
  1960. int err;
  1961. err = rtm_to_fib6_config(skb, nlh, &cfg);
  1962. if (err < 0)
  1963. return err;
  1964. return ip6_route_del(&cfg);
  1965. }
  1966. static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr* nlh, void *arg)
  1967. {
  1968. struct fib6_config cfg;
  1969. int err;
  1970. err = rtm_to_fib6_config(skb, nlh, &cfg);
  1971. if (err < 0)
  1972. return err;
  1973. return ip6_route_add(&cfg);
  1974. }
  1975. static inline size_t rt6_nlmsg_size(void)
  1976. {
  1977. return NLMSG_ALIGN(sizeof(struct rtmsg))
  1978. + nla_total_size(16) /* RTA_SRC */
  1979. + nla_total_size(16) /* RTA_DST */
  1980. + nla_total_size(16) /* RTA_GATEWAY */
  1981. + nla_total_size(16) /* RTA_PREFSRC */
  1982. + nla_total_size(4) /* RTA_TABLE */
  1983. + nla_total_size(4) /* RTA_IIF */
  1984. + nla_total_size(4) /* RTA_OIF */
  1985. + nla_total_size(4) /* RTA_PRIORITY */
  1986. + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */
  1987. + nla_total_size(sizeof(struct rta_cacheinfo));
  1988. }
  1989. static int rt6_fill_node(struct net *net,
  1990. struct sk_buff *skb, struct rt6_info *rt,
  1991. struct in6_addr *dst, struct in6_addr *src,
  1992. int iif, int type, u32 pid, u32 seq,
  1993. int prefix, int nowait, unsigned int flags)
  1994. {
  1995. const struct inet_peer *peer;
  1996. struct rtmsg *rtm;
  1997. struct nlmsghdr *nlh;
  1998. long expires;
  1999. u32 table;
  2000. struct neighbour *n;
  2001. u32 ts, tsage;
  2002. if (prefix) { /* user wants prefix routes only */
  2003. if (!(rt->rt6i_flags & RTF_PREFIX_RT)) {
  2004. /* success since this is not a prefix route */
  2005. return 1;
  2006. }
  2007. }
  2008. nlh = nlmsg_put(skb, pid, seq, type, sizeof(*rtm), flags);
  2009. if (!nlh)
  2010. return -EMSGSIZE;
  2011. rtm = nlmsg_data(nlh);
  2012. rtm->rtm_family = AF_INET6;
  2013. rtm->rtm_dst_len = rt->rt6i_dst.plen;
  2014. rtm->rtm_src_len = rt->rt6i_src.plen;
  2015. rtm->rtm_tos = 0;
  2016. if (rt->rt6i_table)
  2017. table = rt->rt6i_table->tb6_id;
  2018. else
  2019. table = RT6_TABLE_UNSPEC;
  2020. rtm->rtm_table = table;
  2021. NLA_PUT_U32(skb, RTA_TABLE, table);
  2022. if (rt->rt6i_flags & RTF_REJECT) {
  2023. switch (rt->dst.error) {
  2024. case -EINVAL:
  2025. rtm->rtm_type = RTN_BLACKHOLE;
  2026. break;
  2027. case -EACCES:
  2028. rtm->rtm_type = RTN_PROHIBIT;
  2029. break;
  2030. default:
  2031. rtm->rtm_type = RTN_UNREACHABLE;
  2032. break;
  2033. }
  2034. }
  2035. else if (rt->rt6i_flags & RTF_LOCAL)
  2036. rtm->rtm_type = RTN_LOCAL;
  2037. else if (rt->dst.dev && (rt->dst.dev->flags & IFF_LOOPBACK))
  2038. rtm->rtm_type = RTN_LOCAL;
  2039. else
  2040. rtm->rtm_type = RTN_UNICAST;
  2041. rtm->rtm_flags = 0;
  2042. rtm->rtm_scope = RT_SCOPE_UNIVERSE;
  2043. rtm->rtm_protocol = rt->rt6i_protocol;
  2044. if (rt->rt6i_flags & RTF_DYNAMIC)
  2045. rtm->rtm_protocol = RTPROT_REDIRECT;
  2046. else if (rt->rt6i_flags & RTF_ADDRCONF)
  2047. rtm->rtm_protocol = RTPROT_KERNEL;
  2048. else if (rt->rt6i_flags & RTF_DEFAULT)
  2049. rtm->rtm_protocol = RTPROT_RA;
  2050. if (rt->rt6i_flags & RTF_CACHE)
  2051. rtm->rtm_flags |= RTM_F_CLONED;
  2052. if (dst) {
  2053. NLA_PUT(skb, RTA_DST, 16, dst);
  2054. rtm->rtm_dst_len = 128;
  2055. } else if (rtm->rtm_dst_len)
  2056. NLA_PUT(skb, RTA_DST, 16, &rt->rt6i_dst.addr);
  2057. #ifdef CONFIG_IPV6_SUBTREES
  2058. if (src) {
  2059. NLA_PUT(skb, RTA_SRC, 16, src);
  2060. rtm->rtm_src_len = 128;
  2061. } else if (rtm->rtm_src_len)
  2062. NLA_PUT(skb, RTA_SRC, 16, &rt->rt6i_src.addr);
  2063. #endif
  2064. if (iif) {
  2065. #ifdef CONFIG_IPV6_MROUTE
  2066. if (ipv6_addr_is_multicast(&rt->rt6i_dst.addr)) {
  2067. int err = ip6mr_get_route(net, skb, rtm, nowait);
  2068. if (err <= 0) {
  2069. if (!nowait) {
  2070. if (err == 0)
  2071. return 0;
  2072. goto nla_put_failure;
  2073. } else {
  2074. if (err == -EMSGSIZE)
  2075. goto nla_put_failure;
  2076. }
  2077. }
  2078. } else
  2079. #endif
  2080. NLA_PUT_U32(skb, RTA_IIF, iif);
  2081. } else if (dst) {
  2082. struct in6_addr saddr_buf;
  2083. if (ip6_route_get_saddr(net, rt, dst, 0, &saddr_buf) == 0)
  2084. NLA_PUT(skb, RTA_PREFSRC, 16, &saddr_buf);
  2085. }
  2086. if (rt->rt6i_prefsrc.plen) {
  2087. struct in6_addr saddr_buf;
  2088. saddr_buf = rt->rt6i_prefsrc.addr;
  2089. NLA_PUT(skb, RTA_PREFSRC, 16, &saddr_buf);
  2090. }
  2091. if (rtnetlink_put_metrics(skb, dst_metrics_ptr(&rt->dst)) < 0)
  2092. goto nla_put_failure;
  2093. rcu_read_lock();
  2094. n = dst_get_neighbour_noref(&rt->dst);
  2095. if (n) {
  2096. if (nla_put(skb, RTA_GATEWAY, 16, &n->primary_key) < 0) {
  2097. rcu_read_unlock();
  2098. goto nla_put_failure;
  2099. }
  2100. }
  2101. rcu_read_unlock();
  2102. if (rt->dst.dev)
  2103. NLA_PUT_U32(skb, RTA_OIF, rt->dst.dev->ifindex);
  2104. NLA_PUT_U32(skb, RTA_PRIORITY, rt->rt6i_metric);
  2105. if (!(rt->rt6i_flags & RTF_EXPIRES))
  2106. expires = 0;
  2107. else if (rt->dst.expires - jiffies < INT_MAX)
  2108. expires = rt->dst.expires - jiffies;
  2109. else
  2110. expires = INT_MAX;
  2111. peer = rt->rt6i_peer;
  2112. ts = tsage = 0;
  2113. if (peer && peer->tcp_ts_stamp) {
  2114. ts = peer->tcp_ts;
  2115. tsage = get_seconds() - peer->tcp_ts_stamp;
  2116. }
  2117. if (rtnl_put_cacheinfo(skb, &rt->dst, 0, ts, tsage,
  2118. expires, rt->dst.error) < 0)
  2119. goto nla_put_failure;
  2120. return nlmsg_end(skb, nlh);
  2121. nla_put_failure:
  2122. nlmsg_cancel(skb, nlh);
  2123. return -EMSGSIZE;
  2124. }
  2125. int rt6_dump_route(struct rt6_info *rt, void *p_arg)
  2126. {
  2127. struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg;
  2128. int prefix;
  2129. if (nlmsg_len(arg->cb->nlh) >= sizeof(struct rtmsg)) {
  2130. struct rtmsg *rtm = nlmsg_data(arg->cb->nlh);
  2131. prefix = (rtm->rtm_flags & RTM_F_PREFIX) != 0;
  2132. } else
  2133. prefix = 0;
  2134. return rt6_fill_node(arg->net,
  2135. arg->skb, rt, NULL, NULL, 0, RTM_NEWROUTE,
  2136. NETLINK_CB(arg->cb->skb).pid, arg->cb->nlh->nlmsg_seq,
  2137. prefix, 0, NLM_F_MULTI);
  2138. }
  2139. static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr* nlh, void *arg)
  2140. {
  2141. struct net *net = sock_net(in_skb->sk);
  2142. struct nlattr *tb[RTA_MAX+1];
  2143. struct rt6_info *rt;
  2144. struct sk_buff *skb;
  2145. struct rtmsg *rtm;
  2146. struct flowi6 fl6;
  2147. int err, iif = 0, oif = 0;
  2148. err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy);
  2149. if (err < 0)
  2150. goto errout;
  2151. err = -EINVAL;
  2152. memset(&fl6, 0, sizeof(fl6));
  2153. if (tb[RTA_SRC]) {
  2154. if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr))
  2155. goto errout;
  2156. fl6.saddr = *(struct in6_addr *)nla_data(tb[RTA_SRC]);
  2157. }
  2158. if (tb[RTA_DST]) {
  2159. if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr))
  2160. goto errout;
  2161. fl6.daddr = *(struct in6_addr *)nla_data(tb[RTA_DST]);
  2162. }
  2163. if (tb[RTA_IIF])
  2164. iif = nla_get_u32(tb[RTA_IIF]);
  2165. if (tb[RTA_OIF])
  2166. oif = nla_get_u32(tb[RTA_OIF]);
  2167. if (tb[RTA_MARK])
  2168. fl6.flowi6_mark = nla_get_u32(tb[RTA_MARK]);
  2169. if (tb[RTA_UID])
  2170. fl6.flowi6_uid = make_kuid(current_user_ns(),
  2171. nla_get_u32(tb[RTA_UID]));
  2172. else
  2173. fl6.flowi6_uid = iif ? INVALID_UID : current_uid();
  2174. if (iif) {
  2175. struct net_device *dev;
  2176. int flags = 0;
  2177. dev = __dev_get_by_index(net, iif);
  2178. if (!dev) {
  2179. err = -ENODEV;
  2180. goto errout;
  2181. }
  2182. fl6.flowi6_iif = iif;
  2183. if (!ipv6_addr_any(&fl6.saddr))
  2184. flags |= RT6_LOOKUP_F_HAS_SADDR;
  2185. rt = (struct rt6_info *)ip6_route_input_lookup(net, dev, &fl6,
  2186. flags);
  2187. } else {
  2188. fl6.flowi6_oif = oif;
  2189. rt = (struct rt6_info *)ip6_route_output(net, NULL, &fl6);
  2190. }
  2191. skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL);
  2192. if (!skb) {
  2193. dst_release(&rt->dst);
  2194. err = -ENOBUFS;
  2195. goto errout;
  2196. }
  2197. /* Reserve room for dummy headers, this skb can pass
  2198. through good chunk of routing engine.
  2199. */
  2200. skb_reset_mac_header(skb);
  2201. skb_reserve(skb, MAX_HEADER + sizeof(struct ipv6hdr));
  2202. skb_dst_set(skb, &rt->dst);
  2203. err = rt6_fill_node(net, skb, rt, &fl6.daddr, &fl6.saddr, iif,
  2204. RTM_NEWROUTE, NETLINK_CB(in_skb).pid,
  2205. nlh->nlmsg_seq, 0, 0, 0);
  2206. if (err < 0) {
  2207. kfree_skb(skb);
  2208. goto errout;
  2209. }
  2210. err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).pid);
  2211. errout:
  2212. return err;
  2213. }
  2214. void inet6_rt_notify(int event, struct rt6_info *rt, struct nl_info *info)
  2215. {
  2216. struct sk_buff *skb;
  2217. struct net *net = info->nl_net;
  2218. u32 seq;
  2219. int err;
  2220. err = -ENOBUFS;
  2221. seq = info->nlh ? info->nlh->nlmsg_seq : 0;
  2222. skb = nlmsg_new(rt6_nlmsg_size(), gfp_any());
  2223. if (!skb)
  2224. goto errout;
  2225. err = rt6_fill_node(net, skb, rt, NULL, NULL, 0,
  2226. event, info->pid, seq, 0, 0, 0);
  2227. if (err < 0) {
  2228. /* -EMSGSIZE implies BUG in rt6_nlmsg_size() */
  2229. WARN_ON(err == -EMSGSIZE);
  2230. kfree_skb(skb);
  2231. goto errout;
  2232. }
  2233. rtnl_notify(skb, net, info->pid, RTNLGRP_IPV6_ROUTE,
  2234. info->nlh, gfp_any());
  2235. return;
  2236. errout:
  2237. if (err < 0)
  2238. rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err);
  2239. }
  2240. static int ip6_route_dev_notify(struct notifier_block *this,
  2241. unsigned long event, void *data)
  2242. {
  2243. struct net_device *dev = (struct net_device *)data;
  2244. struct net *net = dev_net(dev);
  2245. if (event == NETDEV_REGISTER && (dev->flags & IFF_LOOPBACK)) {
  2246. net->ipv6.ip6_null_entry->dst.dev = dev;
  2247. net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev);
  2248. #ifdef CONFIG_IPV6_MULTIPLE_TABLES
  2249. net->ipv6.ip6_prohibit_entry->dst.dev = dev;
  2250. net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev);
  2251. net->ipv6.ip6_blk_hole_entry->dst.dev = dev;
  2252. net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev);
  2253. #endif
  2254. }
  2255. return NOTIFY_OK;
  2256. }
  2257. /*
  2258. * /proc
  2259. */
  2260. #ifdef CONFIG_PROC_FS
  2261. struct rt6_proc_arg
  2262. {
  2263. char *buffer;
  2264. int offset;
  2265. int length;
  2266. int skip;
  2267. int len;
  2268. };
  2269. static int rt6_info_route(struct rt6_info *rt, void *p_arg)
  2270. {
  2271. struct seq_file *m = p_arg;
  2272. struct neighbour *n;
  2273. seq_printf(m, "%pi6 %02x ", &rt->rt6i_dst.addr, rt->rt6i_dst.plen);
  2274. #ifdef CONFIG_IPV6_SUBTREES
  2275. seq_printf(m, "%pi6 %02x ", &rt->rt6i_src.addr, rt->rt6i_src.plen);
  2276. #else
  2277. seq_puts(m, "00000000000000000000000000000000 00 ");
  2278. #endif
  2279. rcu_read_lock();
  2280. n = dst_get_neighbour_noref(&rt->dst);
  2281. if (n) {
  2282. seq_printf(m, "%pi6", n->primary_key);
  2283. } else {
  2284. seq_puts(m, "00000000000000000000000000000000");
  2285. }
  2286. rcu_read_unlock();
  2287. seq_printf(m, " %08x %08x %08x %08x %8s\n",
  2288. rt->rt6i_metric, atomic_read(&rt->dst.__refcnt),
  2289. rt->dst.__use, rt->rt6i_flags,
  2290. rt->dst.dev ? rt->dst.dev->name : "");
  2291. return 0;
  2292. }
  2293. static int ipv6_route_show(struct seq_file *m, void *v)
  2294. {
  2295. struct net *net = (struct net *)m->private;
  2296. fib6_clean_all_ro(net, rt6_info_route, 0, m);
  2297. return 0;
  2298. }
  2299. static int ipv6_route_open(struct inode *inode, struct file *file)
  2300. {
  2301. return single_open_net(inode, file, ipv6_route_show);
  2302. }
  2303. static const struct file_operations ipv6_route_proc_fops = {
  2304. .owner = THIS_MODULE,
  2305. .open = ipv6_route_open,
  2306. .read = seq_read,
  2307. .llseek = seq_lseek,
  2308. .release = single_release_net,
  2309. };
  2310. static int rt6_stats_seq_show(struct seq_file *seq, void *v)
  2311. {
  2312. struct net *net = (struct net *)seq->private;
  2313. seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n",
  2314. net->ipv6.rt6_stats->fib_nodes,
  2315. net->ipv6.rt6_stats->fib_route_nodes,
  2316. net->ipv6.rt6_stats->fib_rt_alloc,
  2317. net->ipv6.rt6_stats->fib_rt_entries,
  2318. net->ipv6.rt6_stats->fib_rt_cache,
  2319. dst_entries_get_slow(&net->ipv6.ip6_dst_ops),
  2320. net->ipv6.rt6_stats->fib_discarded_routes);
  2321. return 0;
  2322. }
  2323. static int rt6_stats_seq_open(struct inode *inode, struct file *file)
  2324. {
  2325. return single_open_net(inode, file, rt6_stats_seq_show);
  2326. }
  2327. static const struct file_operations rt6_stats_seq_fops = {
  2328. .owner = THIS_MODULE,
  2329. .open = rt6_stats_seq_open,
  2330. .read = seq_read,
  2331. .llseek = seq_lseek,
  2332. .release = single_release_net,
  2333. };
  2334. #endif /* CONFIG_PROC_FS */
  2335. #ifdef CONFIG_SYSCTL
  2336. static
  2337. int ipv6_sysctl_rtcache_flush(ctl_table *ctl, int write,
  2338. void __user *buffer, size_t *lenp, loff_t *ppos)
  2339. {
  2340. struct net *net;
  2341. int delay;
  2342. if (!write)
  2343. return -EINVAL;
  2344. net = (struct net *)ctl->extra1;
  2345. delay = net->ipv6.sysctl.flush_delay;
  2346. proc_dointvec(ctl, write, buffer, lenp, ppos);
  2347. fib6_run_gc(delay <= 0 ? 0 : (unsigned long)delay, net, delay > 0);
  2348. return 0;
  2349. }
  2350. ctl_table ipv6_route_table_template[] = {
  2351. {
  2352. .procname = "flush",
  2353. .data = &init_net.ipv6.sysctl.flush_delay,
  2354. .maxlen = sizeof(int),
  2355. .mode = 0200,
  2356. .proc_handler = ipv6_sysctl_rtcache_flush
  2357. },
  2358. {
  2359. .procname = "gc_thresh",
  2360. .data = &ip6_dst_ops_template.gc_thresh,
  2361. .maxlen = sizeof(int),
  2362. .mode = 0644,
  2363. .proc_handler = proc_dointvec,
  2364. },
  2365. {
  2366. .procname = "max_size",
  2367. .data = &init_net.ipv6.sysctl.ip6_rt_max_size,
  2368. .maxlen = sizeof(int),
  2369. .mode = 0644,
  2370. .proc_handler = proc_dointvec,
  2371. },
  2372. {
  2373. .procname = "gc_min_interval",
  2374. .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval,
  2375. .maxlen = sizeof(int),
  2376. .mode = 0644,
  2377. .proc_handler = proc_dointvec_jiffies,
  2378. },
  2379. {
  2380. .procname = "gc_timeout",
  2381. .data = &init_net.ipv6.sysctl.ip6_rt_gc_timeout,
  2382. .maxlen = sizeof(int),
  2383. .mode = 0644,
  2384. .proc_handler = proc_dointvec_jiffies,
  2385. },
  2386. {
  2387. .procname = "gc_interval",
  2388. .data = &init_net.ipv6.sysctl.ip6_rt_gc_interval,
  2389. .maxlen = sizeof(int),
  2390. .mode = 0644,
  2391. .proc_handler = proc_dointvec_jiffies,
  2392. },
  2393. {
  2394. .procname = "gc_elasticity",
  2395. .data = &init_net.ipv6.sysctl.ip6_rt_gc_elasticity,
  2396. .maxlen = sizeof(int),
  2397. .mode = 0644,
  2398. .proc_handler = proc_dointvec,
  2399. },
  2400. {
  2401. .procname = "mtu_expires",
  2402. .data = &init_net.ipv6.sysctl.ip6_rt_mtu_expires,
  2403. .maxlen = sizeof(int),
  2404. .mode = 0644,
  2405. .proc_handler = proc_dointvec_jiffies,
  2406. },
  2407. {
  2408. .procname = "min_adv_mss",
  2409. .data = &init_net.ipv6.sysctl.ip6_rt_min_advmss,
  2410. .maxlen = sizeof(int),
  2411. .mode = 0644,
  2412. .proc_handler = proc_dointvec,
  2413. },
  2414. {
  2415. .procname = "gc_min_interval_ms",
  2416. .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval,
  2417. .maxlen = sizeof(int),
  2418. .mode = 0644,
  2419. .proc_handler = proc_dointvec_ms_jiffies,
  2420. },
  2421. { }
  2422. };
  2423. struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net)
  2424. {
  2425. struct ctl_table *table;
  2426. table = kmemdup(ipv6_route_table_template,
  2427. sizeof(ipv6_route_table_template),
  2428. GFP_KERNEL);
  2429. if (table) {
  2430. table[0].data = &net->ipv6.sysctl.flush_delay;
  2431. table[0].extra1 = net;
  2432. table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh;
  2433. table[2].data = &net->ipv6.sysctl.ip6_rt_max_size;
  2434. table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval;
  2435. table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout;
  2436. table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval;
  2437. table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity;
  2438. table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires;
  2439. table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss;
  2440. table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval;
  2441. }
  2442. return table;
  2443. }
  2444. #endif
  2445. static int __net_init ip6_route_net_init(struct net *net)
  2446. {
  2447. int ret = -ENOMEM;
  2448. memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template,
  2449. sizeof(net->ipv6.ip6_dst_ops));
  2450. if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0)
  2451. goto out_ip6_dst_ops;
  2452. net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template,
  2453. sizeof(*net->ipv6.ip6_null_entry),
  2454. GFP_KERNEL);
  2455. if (!net->ipv6.ip6_null_entry)
  2456. goto out_ip6_dst_entries;
  2457. net->ipv6.ip6_null_entry->dst.path =
  2458. (struct dst_entry *)net->ipv6.ip6_null_entry;
  2459. net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops;
  2460. dst_init_metrics(&net->ipv6.ip6_null_entry->dst,
  2461. ip6_template_metrics, true);
  2462. #ifdef CONFIG_IPV6_MULTIPLE_TABLES
  2463. net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template,
  2464. sizeof(*net->ipv6.ip6_prohibit_entry),
  2465. GFP_KERNEL);
  2466. if (!net->ipv6.ip6_prohibit_entry)
  2467. goto out_ip6_null_entry;
  2468. net->ipv6.ip6_prohibit_entry->dst.path =
  2469. (struct dst_entry *)net->ipv6.ip6_prohibit_entry;
  2470. net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops;
  2471. dst_init_metrics(&net->ipv6.ip6_prohibit_entry->dst,
  2472. ip6_template_metrics, true);
  2473. net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template,
  2474. sizeof(*net->ipv6.ip6_blk_hole_entry),
  2475. GFP_KERNEL);
  2476. if (!net->ipv6.ip6_blk_hole_entry)
  2477. goto out_ip6_prohibit_entry;
  2478. net->ipv6.ip6_blk_hole_entry->dst.path =
  2479. (struct dst_entry *)net->ipv6.ip6_blk_hole_entry;
  2480. net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops;
  2481. dst_init_metrics(&net->ipv6.ip6_blk_hole_entry->dst,
  2482. ip6_template_metrics, true);
  2483. #endif
  2484. net->ipv6.sysctl.flush_delay = 0;
  2485. net->ipv6.sysctl.ip6_rt_max_size = 4096;
  2486. net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2;
  2487. net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ;
  2488. net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ;
  2489. net->ipv6.sysctl.ip6_rt_gc_elasticity = 9;
  2490. net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ;
  2491. net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40;
  2492. net->ipv6.ip6_rt_gc_expire = 30*HZ;
  2493. ret = 0;
  2494. out:
  2495. return ret;
  2496. #ifdef CONFIG_IPV6_MULTIPLE_TABLES
  2497. out_ip6_prohibit_entry:
  2498. kfree(net->ipv6.ip6_prohibit_entry);
  2499. out_ip6_null_entry:
  2500. kfree(net->ipv6.ip6_null_entry);
  2501. #endif
  2502. out_ip6_dst_entries:
  2503. dst_entries_destroy(&net->ipv6.ip6_dst_ops);
  2504. out_ip6_dst_ops:
  2505. goto out;
  2506. }
  2507. static void __net_exit ip6_route_net_exit(struct net *net)
  2508. {
  2509. kfree(net->ipv6.ip6_null_entry);
  2510. #ifdef CONFIG_IPV6_MULTIPLE_TABLES
  2511. kfree(net->ipv6.ip6_prohibit_entry);
  2512. kfree(net->ipv6.ip6_blk_hole_entry);
  2513. #endif
  2514. dst_entries_destroy(&net->ipv6.ip6_dst_ops);
  2515. }
  2516. static int __net_init ip6_route_net_init_late(struct net *net)
  2517. {
  2518. #ifdef CONFIG_PROC_FS
  2519. proc_net_fops_create(net, "ipv6_route", 0, &ipv6_route_proc_fops);
  2520. proc_net_fops_create(net, "rt6_stats", S_IRUGO, &rt6_stats_seq_fops);
  2521. #endif
  2522. return 0;
  2523. }
  2524. static void __net_exit ip6_route_net_exit_late(struct net *net)
  2525. {
  2526. #ifdef CONFIG_PROC_FS
  2527. proc_net_remove(net, "ipv6_route");
  2528. proc_net_remove(net, "rt6_stats");
  2529. #endif
  2530. }
  2531. static struct pernet_operations ip6_route_net_ops = {
  2532. .init = ip6_route_net_init,
  2533. .exit = ip6_route_net_exit,
  2534. };
  2535. static struct pernet_operations ip6_route_net_late_ops = {
  2536. .init = ip6_route_net_init_late,
  2537. .exit = ip6_route_net_exit_late,
  2538. };
  2539. static struct notifier_block ip6_route_dev_notifier = {
  2540. .notifier_call = ip6_route_dev_notify,
  2541. .priority = 0,
  2542. };
  2543. int __init ip6_route_init(void)
  2544. {
  2545. int ret;
  2546. ret = -ENOMEM;
  2547. ip6_dst_ops_template.kmem_cachep =
  2548. kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0,
  2549. SLAB_HWCACHE_ALIGN, NULL);
  2550. if (!ip6_dst_ops_template.kmem_cachep)
  2551. goto out;
  2552. ret = dst_entries_init(&ip6_dst_blackhole_ops);
  2553. if (ret)
  2554. goto out_kmem_cache;
  2555. ret = register_pernet_subsys(&ip6_route_net_ops);
  2556. if (ret)
  2557. goto out_dst_entries;
  2558. ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep;
  2559. /* Registering of the loopback is done before this portion of code,
  2560. * the loopback reference in rt6_info will not be taken, do it
  2561. * manually for init_net */
  2562. init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev;
  2563. init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
  2564. #ifdef CONFIG_IPV6_MULTIPLE_TABLES
  2565. init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev;
  2566. init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
  2567. init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev;
  2568. init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
  2569. #endif
  2570. ret = fib6_init();
  2571. if (ret)
  2572. goto out_register_subsys;
  2573. ret = xfrm6_init();
  2574. if (ret)
  2575. goto out_fib6_init;
  2576. ret = fib6_rules_init();
  2577. if (ret)
  2578. goto xfrm6_init;
  2579. ret = register_pernet_subsys(&ip6_route_net_late_ops);
  2580. if (ret)
  2581. goto fib6_rules_init;
  2582. ret = -ENOBUFS;
  2583. if (__rtnl_register(PF_INET6, RTM_NEWROUTE, inet6_rtm_newroute, NULL, NULL) ||
  2584. __rtnl_register(PF_INET6, RTM_DELROUTE, inet6_rtm_delroute, NULL, NULL) ||
  2585. __rtnl_register(PF_INET6, RTM_GETROUTE, inet6_rtm_getroute, NULL, NULL))
  2586. goto out_register_late_subsys;
  2587. ret = register_netdevice_notifier(&ip6_route_dev_notifier);
  2588. if (ret)
  2589. goto out_register_late_subsys;
  2590. out:
  2591. return ret;
  2592. out_register_late_subsys:
  2593. unregister_pernet_subsys(&ip6_route_net_late_ops);
  2594. fib6_rules_init:
  2595. fib6_rules_cleanup();
  2596. xfrm6_init:
  2597. xfrm6_fini();
  2598. out_fib6_init:
  2599. fib6_gc_cleanup();
  2600. out_register_subsys:
  2601. unregister_pernet_subsys(&ip6_route_net_ops);
  2602. out_dst_entries:
  2603. dst_entries_destroy(&ip6_dst_blackhole_ops);
  2604. out_kmem_cache:
  2605. kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep);
  2606. goto out;
  2607. }
  2608. void ip6_route_cleanup(void)
  2609. {
  2610. unregister_netdevice_notifier(&ip6_route_dev_notifier);
  2611. unregister_pernet_subsys(&ip6_route_net_late_ops);
  2612. fib6_rules_cleanup();
  2613. xfrm6_fini();
  2614. fib6_gc_cleanup();
  2615. unregister_pernet_subsys(&ip6_route_net_ops);
  2616. dst_entries_destroy(&ip6_dst_blackhole_ops);
  2617. kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep);
  2618. }