11da177e4SLinus Torvalds /* 21da177e4SLinus Torvalds * Linux INET6 implementation 31da177e4SLinus Torvalds * FIB front-end. 41da177e4SLinus Torvalds * 51da177e4SLinus Torvalds * Authors: 61da177e4SLinus Torvalds * Pedro Roque <roque@di.fc.ul.pt> 71da177e4SLinus Torvalds * 81da177e4SLinus Torvalds * This program is free software; you can redistribute it and/or 91da177e4SLinus Torvalds * modify it under the terms of the GNU General Public License 101da177e4SLinus Torvalds * as published by the Free Software Foundation; either version 111da177e4SLinus Torvalds * 2 of the License, or (at your option) any later version. 121da177e4SLinus Torvalds */ 131da177e4SLinus Torvalds 141da177e4SLinus Torvalds /* Changes: 151da177e4SLinus Torvalds * 161da177e4SLinus Torvalds * YOSHIFUJI Hideaki @USAGI 171da177e4SLinus Torvalds * reworked default router selection. 181da177e4SLinus Torvalds * - respect outgoing interface 191da177e4SLinus Torvalds * - select from (probably) reachable routers (i.e. 201da177e4SLinus Torvalds * routers in REACHABLE, STALE, DELAY or PROBE states). 211da177e4SLinus Torvalds * - always select the same router if it is (probably) 221da177e4SLinus Torvalds * reachable. otherwise, round-robin the list. 23c0bece9fSYOSHIFUJI Hideaki * Ville Nuorvala 24c0bece9fSYOSHIFUJI Hideaki * Fixed routing subtrees. 251da177e4SLinus Torvalds */ 261da177e4SLinus Torvalds 27f3213831SJoe Perches #define pr_fmt(fmt) "IPv6: " fmt 28f3213831SJoe Perches 294fc268d2SRandy Dunlap #include <linux/capability.h> 301da177e4SLinus Torvalds #include <linux/errno.h> 31bc3b2d7fSPaul Gortmaker #include <linux/export.h> 321da177e4SLinus Torvalds #include <linux/types.h> 331da177e4SLinus Torvalds #include <linux/times.h> 341da177e4SLinus Torvalds #include <linux/socket.h> 351da177e4SLinus Torvalds #include <linux/sockios.h> 361da177e4SLinus Torvalds #include <linux/net.h> 371da177e4SLinus Torvalds #include <linux/route.h> 381da177e4SLinus Torvalds #include <linux/netdevice.h> 391da177e4SLinus Torvalds #include <linux/in6.h> 407bc570c8SYOSHIFUJI Hideaki #include <linux/mroute6.h> 411da177e4SLinus Torvalds #include <linux/init.h> 421da177e4SLinus Torvalds #include <linux/if_arp.h> 431da177e4SLinus Torvalds #include <linux/proc_fs.h> 441da177e4SLinus Torvalds #include <linux/seq_file.h> 455b7c931dSDaniel Lezcano #include <linux/nsproxy.h> 465a0e3ad6STejun Heo #include <linux/slab.h> 4735732d01SWei Wang #include <linux/jhash.h> 48457c4cbcSEric W. Biederman #include <net/net_namespace.h> 491da177e4SLinus Torvalds #include <net/snmp.h> 501da177e4SLinus Torvalds #include <net/ipv6.h> 511da177e4SLinus Torvalds #include <net/ip6_fib.h> 521da177e4SLinus Torvalds #include <net/ip6_route.h> 531da177e4SLinus Torvalds #include <net/ndisc.h> 541da177e4SLinus Torvalds #include <net/addrconf.h> 551da177e4SLinus Torvalds #include <net/tcp.h> 561da177e4SLinus Torvalds #include <linux/rtnetlink.h> 571da177e4SLinus Torvalds #include <net/dst.h> 58904af04dSJiri Benc #include <net/dst_metadata.h> 591da177e4SLinus Torvalds #include <net/xfrm.h> 608d71740cSTom Tucker #include <net/netevent.h> 6121713ebcSThomas Graf #include <net/netlink.h> 6251ebd318SNicolas Dichtel #include <net/nexthop.h> 6319e42e45SRoopa Prabhu #include <net/lwtunnel.h> 64904af04dSJiri Benc #include <net/ip_tunnels.h> 65ca254490SDavid Ahern #include <net/l3mdev.h> 66eacb9384SRoopa Prabhu #include <net/ip.h> 677c0f6ba6SLinus Torvalds #include <linux/uaccess.h> 681da177e4SLinus Torvalds 691da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 701da177e4SLinus Torvalds #include <linux/sysctl.h> 711da177e4SLinus Torvalds #endif 721da177e4SLinus Torvalds 7330d444d3SDavid Ahern static int ip6_rt_type_to_error(u8 fib6_type); 7430d444d3SDavid Ahern 7530d444d3SDavid Ahern #define CREATE_TRACE_POINTS 7630d444d3SDavid Ahern #include <trace/events/fib6.h> 7730d444d3SDavid Ahern EXPORT_TRACEPOINT_SYMBOL_GPL(fib6_table_lookup); 7830d444d3SDavid Ahern #undef CREATE_TRACE_POINTS 7930d444d3SDavid Ahern 80afc154e9SHannes Frederic Sowa enum rt6_nud_state { 817e980569SJiri Benc RT6_NUD_FAIL_HARD = -3, 827e980569SJiri Benc RT6_NUD_FAIL_PROBE = -2, 837e980569SJiri Benc RT6_NUD_FAIL_DO_RR = -1, 84afc154e9SHannes Frederic Sowa RT6_NUD_SUCCEED = 1 85afc154e9SHannes Frederic Sowa }; 86afc154e9SHannes Frederic Sowa 871da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie); 880dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst); 89ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst); 901da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *); 911da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *); 921da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *, 931da177e4SLinus Torvalds struct net_device *dev, int how); 94569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops); 951da177e4SLinus Torvalds 961da177e4SLinus Torvalds static int ip6_pkt_discard(struct sk_buff *skb); 97ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb); 987150aedeSKamala R static int ip6_pkt_prohibit(struct sk_buff *skb); 99ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb); 1001da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb); 1016700c270SDavid S. Miller static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 1026700c270SDavid S. Miller struct sk_buff *skb, u32 mtu); 1036700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, 1046700c270SDavid S. Miller struct sk_buff *skb); 1058d1c802bSDavid Ahern static int rt6_score_route(struct fib6_info *rt, int oif, int strict); 1068d1c802bSDavid Ahern static size_t rt6_nlmsg_size(struct fib6_info *rt); 107d4ead6b3SDavid Ahern static int rt6_fill_node(struct net *net, struct sk_buff *skb, 1088d1c802bSDavid Ahern struct fib6_info *rt, struct dst_entry *dst, 109d4ead6b3SDavid Ahern struct in6_addr *dest, struct in6_addr *src, 11016a16cd3SDavid Ahern int iif, int type, u32 portid, u32 seq, 11116a16cd3SDavid Ahern unsigned int flags); 1128d1c802bSDavid Ahern static struct rt6_info *rt6_find_cached_rt(struct fib6_info *rt, 11335732d01SWei Wang struct in6_addr *daddr, 11435732d01SWei Wang struct in6_addr *saddr); 1151da177e4SLinus Torvalds 11670ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 1178d1c802bSDavid Ahern static struct fib6_info *rt6_add_route_info(struct net *net, 118b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 119830218c1SDavid Ahern const struct in6_addr *gwaddr, 120830218c1SDavid Ahern struct net_device *dev, 12195c96174SEric Dumazet unsigned int pref); 1228d1c802bSDavid Ahern static struct fib6_info *rt6_get_route_info(struct net *net, 123b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 124830218c1SDavid Ahern const struct in6_addr *gwaddr, 125830218c1SDavid Ahern struct net_device *dev); 12670ceb4f5SYOSHIFUJI Hideaki #endif 12770ceb4f5SYOSHIFUJI Hideaki 1288d0b94afSMartin KaFai Lau struct uncached_list { 1298d0b94afSMartin KaFai Lau spinlock_t lock; 1308d0b94afSMartin KaFai Lau struct list_head head; 1318d0b94afSMartin KaFai Lau }; 1328d0b94afSMartin KaFai Lau 1338d0b94afSMartin KaFai Lau static DEFINE_PER_CPU_ALIGNED(struct uncached_list, rt6_uncached_list); 1348d0b94afSMartin KaFai Lau 135510c321bSXin Long void rt6_uncached_list_add(struct rt6_info *rt) 1368d0b94afSMartin KaFai Lau { 1378d0b94afSMartin KaFai Lau struct uncached_list *ul = raw_cpu_ptr(&rt6_uncached_list); 1388d0b94afSMartin KaFai Lau 1398d0b94afSMartin KaFai Lau rt->rt6i_uncached_list = ul; 1408d0b94afSMartin KaFai Lau 1418d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1428d0b94afSMartin KaFai Lau list_add_tail(&rt->rt6i_uncached, &ul->head); 1438d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1448d0b94afSMartin KaFai Lau } 1458d0b94afSMartin KaFai Lau 146510c321bSXin Long void rt6_uncached_list_del(struct rt6_info *rt) 1478d0b94afSMartin KaFai Lau { 1488d0b94afSMartin KaFai Lau if (!list_empty(&rt->rt6i_uncached)) { 1498d0b94afSMartin KaFai Lau struct uncached_list *ul = rt->rt6i_uncached_list; 15081eb8447SWei Wang struct net *net = dev_net(rt->dst.dev); 1518d0b94afSMartin KaFai Lau 1528d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1538d0b94afSMartin KaFai Lau list_del(&rt->rt6i_uncached); 15481eb8447SWei Wang atomic_dec(&net->ipv6.rt6_stats->fib_rt_uncache); 1558d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1568d0b94afSMartin KaFai Lau } 1578d0b94afSMartin KaFai Lau } 1588d0b94afSMartin KaFai Lau 1598d0b94afSMartin KaFai Lau static void rt6_uncached_list_flush_dev(struct net *net, struct net_device *dev) 1608d0b94afSMartin KaFai Lau { 1618d0b94afSMartin KaFai Lau struct net_device *loopback_dev = net->loopback_dev; 1628d0b94afSMartin KaFai Lau int cpu; 1638d0b94afSMartin KaFai Lau 164e332bc67SEric W. Biederman if (dev == loopback_dev) 165e332bc67SEric W. Biederman return; 166e332bc67SEric W. Biederman 1678d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 1688d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 1698d0b94afSMartin KaFai Lau struct rt6_info *rt; 1708d0b94afSMartin KaFai Lau 1718d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1728d0b94afSMartin KaFai Lau list_for_each_entry(rt, &ul->head, rt6i_uncached) { 1738d0b94afSMartin KaFai Lau struct inet6_dev *rt_idev = rt->rt6i_idev; 1748d0b94afSMartin KaFai Lau struct net_device *rt_dev = rt->dst.dev; 1758d0b94afSMartin KaFai Lau 176e332bc67SEric W. Biederman if (rt_idev->dev == dev) { 1778d0b94afSMartin KaFai Lau rt->rt6i_idev = in6_dev_get(loopback_dev); 1788d0b94afSMartin KaFai Lau in6_dev_put(rt_idev); 1798d0b94afSMartin KaFai Lau } 1808d0b94afSMartin KaFai Lau 181e332bc67SEric W. Biederman if (rt_dev == dev) { 1828d0b94afSMartin KaFai Lau rt->dst.dev = loopback_dev; 1838d0b94afSMartin KaFai Lau dev_hold(rt->dst.dev); 1848d0b94afSMartin KaFai Lau dev_put(rt_dev); 1858d0b94afSMartin KaFai Lau } 1868d0b94afSMartin KaFai Lau } 1878d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1888d0b94afSMartin KaFai Lau } 1898d0b94afSMartin KaFai Lau } 1908d0b94afSMartin KaFai Lau 191f8a1b43bSDavid Ahern static inline const void *choose_neigh_daddr(const struct in6_addr *p, 192f894cbf8SDavid S. Miller struct sk_buff *skb, 193f894cbf8SDavid S. Miller const void *daddr) 19439232973SDavid S. Miller { 195a7563f34SDavid S. Miller if (!ipv6_addr_any(p)) 19639232973SDavid S. Miller return (const void *) p; 197f894cbf8SDavid S. Miller else if (skb) 198f894cbf8SDavid S. Miller return &ipv6_hdr(skb)->daddr; 19939232973SDavid S. Miller return daddr; 20039232973SDavid S. Miller } 20139232973SDavid S. Miller 202f8a1b43bSDavid Ahern struct neighbour *ip6_neigh_lookup(const struct in6_addr *gw, 203f8a1b43bSDavid Ahern struct net_device *dev, 204f894cbf8SDavid S. Miller struct sk_buff *skb, 205f894cbf8SDavid S. Miller const void *daddr) 206d3aaeb38SDavid S. Miller { 20739232973SDavid S. Miller struct neighbour *n; 20839232973SDavid S. Miller 209f8a1b43bSDavid Ahern daddr = choose_neigh_daddr(gw, skb, daddr); 210f8a1b43bSDavid Ahern n = __ipv6_neigh_lookup(dev, daddr); 211f83c7790SDavid S. Miller if (n) 212f83c7790SDavid S. Miller return n; 2137adf3246SStefano Brivio 2147adf3246SStefano Brivio n = neigh_create(&nd_tbl, daddr, dev); 2157adf3246SStefano Brivio return IS_ERR(n) ? NULL : n; 216f8a1b43bSDavid Ahern } 217f8a1b43bSDavid Ahern 218f8a1b43bSDavid Ahern static struct neighbour *ip6_dst_neigh_lookup(const struct dst_entry *dst, 219f8a1b43bSDavid Ahern struct sk_buff *skb, 220f8a1b43bSDavid Ahern const void *daddr) 221f8a1b43bSDavid Ahern { 222f8a1b43bSDavid Ahern const struct rt6_info *rt = container_of(dst, struct rt6_info, dst); 223f8a1b43bSDavid Ahern 224f8a1b43bSDavid Ahern return ip6_neigh_lookup(&rt->rt6i_gateway, dst->dev, skb, daddr); 225f83c7790SDavid S. Miller } 226f83c7790SDavid S. Miller 22763fca65dSJulian Anastasov static void ip6_confirm_neigh(const struct dst_entry *dst, const void *daddr) 22863fca65dSJulian Anastasov { 22963fca65dSJulian Anastasov struct net_device *dev = dst->dev; 23063fca65dSJulian Anastasov struct rt6_info *rt = (struct rt6_info *)dst; 23163fca65dSJulian Anastasov 232f8a1b43bSDavid Ahern daddr = choose_neigh_daddr(&rt->rt6i_gateway, NULL, daddr); 23363fca65dSJulian Anastasov if (!daddr) 23463fca65dSJulian Anastasov return; 23563fca65dSJulian Anastasov if (dev->flags & (IFF_NOARP | IFF_LOOPBACK)) 23663fca65dSJulian Anastasov return; 23763fca65dSJulian Anastasov if (ipv6_addr_is_multicast((const struct in6_addr *)daddr)) 23863fca65dSJulian Anastasov return; 23963fca65dSJulian Anastasov __ipv6_confirm_neigh(dev, daddr); 24063fca65dSJulian Anastasov } 24163fca65dSJulian Anastasov 2429a7ec3a9SDaniel Lezcano static struct dst_ops ip6_dst_ops_template = { 2431da177e4SLinus Torvalds .family = AF_INET6, 2441da177e4SLinus Torvalds .gc = ip6_dst_gc, 2451da177e4SLinus Torvalds .gc_thresh = 1024, 2461da177e4SLinus Torvalds .check = ip6_dst_check, 2470dbaee3bSDavid S. Miller .default_advmss = ip6_default_advmss, 248ebb762f2SSteffen Klassert .mtu = ip6_mtu, 249d4ead6b3SDavid Ahern .cow_metrics = dst_cow_metrics_generic, 2501da177e4SLinus Torvalds .destroy = ip6_dst_destroy, 2511da177e4SLinus Torvalds .ifdown = ip6_dst_ifdown, 2521da177e4SLinus Torvalds .negative_advice = ip6_negative_advice, 2531da177e4SLinus Torvalds .link_failure = ip6_link_failure, 2541da177e4SLinus Torvalds .update_pmtu = ip6_rt_update_pmtu, 2556e157b6aSDavid S. Miller .redirect = rt6_do_redirect, 2569f8955ccSEric W. Biederman .local_out = __ip6_local_out, 257f8a1b43bSDavid Ahern .neigh_lookup = ip6_dst_neigh_lookup, 25863fca65dSJulian Anastasov .confirm_neigh = ip6_confirm_neigh, 2591da177e4SLinus Torvalds }; 2601da177e4SLinus Torvalds 261ebb762f2SSteffen Klassert static unsigned int ip6_blackhole_mtu(const struct dst_entry *dst) 262ec831ea7SRoland Dreier { 263618f9bc7SSteffen Klassert unsigned int mtu = dst_metric_raw(dst, RTAX_MTU); 264618f9bc7SSteffen Klassert 265618f9bc7SSteffen Klassert return mtu ? : dst->dev->mtu; 266ec831ea7SRoland Dreier } 267ec831ea7SRoland Dreier 2686700c270SDavid S. Miller static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, struct sock *sk, 2696700c270SDavid S. Miller struct sk_buff *skb, u32 mtu) 27014e50e57SDavid S. Miller { 27114e50e57SDavid S. Miller } 27214e50e57SDavid S. Miller 2736700c270SDavid S. Miller static void ip6_rt_blackhole_redirect(struct dst_entry *dst, struct sock *sk, 2746700c270SDavid S. Miller struct sk_buff *skb) 275b587ee3bSDavid S. Miller { 276b587ee3bSDavid S. Miller } 277b587ee3bSDavid S. Miller 27814e50e57SDavid S. Miller static struct dst_ops ip6_dst_blackhole_ops = { 27914e50e57SDavid S. Miller .family = AF_INET6, 28014e50e57SDavid S. Miller .destroy = ip6_dst_destroy, 28114e50e57SDavid S. Miller .check = ip6_dst_check, 282ebb762f2SSteffen Klassert .mtu = ip6_blackhole_mtu, 283214f45c9SEric Dumazet .default_advmss = ip6_default_advmss, 28414e50e57SDavid S. Miller .update_pmtu = ip6_rt_blackhole_update_pmtu, 285b587ee3bSDavid S. Miller .redirect = ip6_rt_blackhole_redirect, 2860a1f5962SMartin KaFai Lau .cow_metrics = dst_cow_metrics_generic, 287f8a1b43bSDavid Ahern .neigh_lookup = ip6_dst_neigh_lookup, 28814e50e57SDavid S. Miller }; 28914e50e57SDavid S. Miller 29062fa8a84SDavid S. Miller static const u32 ip6_template_metrics[RTAX_MAX] = { 29114edd87dSLi RongQing [RTAX_HOPLIMIT - 1] = 0, 29262fa8a84SDavid S. Miller }; 29362fa8a84SDavid S. Miller 2948d1c802bSDavid Ahern static const struct fib6_info fib6_null_entry_template = { 29593c2fb25SDavid Ahern .fib6_flags = (RTF_REJECT | RTF_NONEXTHOP), 29693c2fb25SDavid Ahern .fib6_protocol = RTPROT_KERNEL, 29793c2fb25SDavid Ahern .fib6_metric = ~(u32)0, 29893c2fb25SDavid Ahern .fib6_ref = ATOMIC_INIT(1), 299421842edSDavid Ahern .fib6_type = RTN_UNREACHABLE, 300421842edSDavid Ahern .fib6_metrics = (struct dst_metrics *)&dst_default_metrics, 301421842edSDavid Ahern }; 302421842edSDavid Ahern 303fb0af4c7SEric Dumazet static const struct rt6_info ip6_null_entry_template = { 3041da177e4SLinus Torvalds .dst = { 3051da177e4SLinus Torvalds .__refcnt = ATOMIC_INIT(1), 3061da177e4SLinus Torvalds .__use = 1, 3072c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 3081da177e4SLinus Torvalds .error = -ENETUNREACH, 3091da177e4SLinus Torvalds .input = ip6_pkt_discard, 3101da177e4SLinus Torvalds .output = ip6_pkt_discard_out, 3111da177e4SLinus Torvalds }, 3121da177e4SLinus Torvalds .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 3131da177e4SLinus Torvalds }; 3141da177e4SLinus Torvalds 315101367c2SThomas Graf #ifdef CONFIG_IPV6_MULTIPLE_TABLES 316101367c2SThomas Graf 317fb0af4c7SEric Dumazet static const struct rt6_info ip6_prohibit_entry_template = { 318101367c2SThomas Graf .dst = { 319101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 320101367c2SThomas Graf .__use = 1, 3212c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 322101367c2SThomas Graf .error = -EACCES, 3239ce8ade0SThomas Graf .input = ip6_pkt_prohibit, 3249ce8ade0SThomas Graf .output = ip6_pkt_prohibit_out, 325101367c2SThomas Graf }, 326101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 327101367c2SThomas Graf }; 328101367c2SThomas Graf 329fb0af4c7SEric Dumazet static const struct rt6_info ip6_blk_hole_entry_template = { 330101367c2SThomas Graf .dst = { 331101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 332101367c2SThomas Graf .__use = 1, 3332c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 334101367c2SThomas Graf .error = -EINVAL, 335352e512cSHerbert Xu .input = dst_discard, 336ede2059dSEric W. Biederman .output = dst_discard_out, 337101367c2SThomas Graf }, 338101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 339101367c2SThomas Graf }; 340101367c2SThomas Graf 341101367c2SThomas Graf #endif 342101367c2SThomas Graf 343ebfa45f0SMartin KaFai Lau static void rt6_info_init(struct rt6_info *rt) 344ebfa45f0SMartin KaFai Lau { 345ebfa45f0SMartin KaFai Lau struct dst_entry *dst = &rt->dst; 346ebfa45f0SMartin KaFai Lau 347ebfa45f0SMartin KaFai Lau memset(dst + 1, 0, sizeof(*rt) - sizeof(*dst)); 348ebfa45f0SMartin KaFai Lau INIT_LIST_HEAD(&rt->rt6i_uncached); 349ebfa45f0SMartin KaFai Lau } 350ebfa45f0SMartin KaFai Lau 3511da177e4SLinus Torvalds /* allocate dst with ip6_dst_ops */ 35293531c67SDavid Ahern struct rt6_info *ip6_dst_alloc(struct net *net, struct net_device *dev, 353ad706862SMartin KaFai Lau int flags) 3541da177e4SLinus Torvalds { 35597bab73fSDavid S. Miller struct rt6_info *rt = dst_alloc(&net->ipv6.ip6_dst_ops, dev, 356b2a9c0edSWei Wang 1, DST_OBSOLETE_FORCE_CHK, flags); 357cf911662SDavid S. Miller 35881eb8447SWei Wang if (rt) { 359ebfa45f0SMartin KaFai Lau rt6_info_init(rt); 36081eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 36181eb8447SWei Wang } 3628104891bSSteffen Klassert 363cf911662SDavid S. Miller return rt; 3641da177e4SLinus Torvalds } 3659ab179d8SDavid Ahern EXPORT_SYMBOL(ip6_dst_alloc); 366d52d3997SMartin KaFai Lau 3671da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *dst) 3681da177e4SLinus Torvalds { 3691da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 370a68886a6SDavid Ahern struct fib6_info *from; 3718d0b94afSMartin KaFai Lau struct inet6_dev *idev; 3721da177e4SLinus Torvalds 3731620a336SDavid Ahern ip_dst_metrics_put(dst); 3748d0b94afSMartin KaFai Lau rt6_uncached_list_del(rt); 3758d0b94afSMartin KaFai Lau 3768d0b94afSMartin KaFai Lau idev = rt->rt6i_idev; 37738308473SDavid S. Miller if (idev) { 3781da177e4SLinus Torvalds rt->rt6i_idev = NULL; 3791da177e4SLinus Torvalds in6_dev_put(idev); 3801da177e4SLinus Torvalds } 3811716a961SGao feng 382*0e233874SEric Dumazet from = xchg((__force struct fib6_info **)&rt->from, NULL); 38393531c67SDavid Ahern fib6_info_release(from); 384b3419363SDavid S. Miller } 385b3419363SDavid S. Miller 3861da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev, 3871da177e4SLinus Torvalds int how) 3881da177e4SLinus Torvalds { 3891da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 3901da177e4SLinus Torvalds struct inet6_dev *idev = rt->rt6i_idev; 3915a3e55d6SDenis V. Lunev struct net_device *loopback_dev = 392c346dca1SYOSHIFUJI Hideaki dev_net(dev)->loopback_dev; 3931da177e4SLinus Torvalds 394e5645f51SWei Wang if (idev && idev->dev != loopback_dev) { 395e5645f51SWei Wang struct inet6_dev *loopback_idev = in6_dev_get(loopback_dev); 39638308473SDavid S. Miller if (loopback_idev) { 3971da177e4SLinus Torvalds rt->rt6i_idev = loopback_idev; 3981da177e4SLinus Torvalds in6_dev_put(idev); 3991da177e4SLinus Torvalds } 4001da177e4SLinus Torvalds } 40197cac082SDavid S. Miller } 4021da177e4SLinus Torvalds 4035973fb1eSMartin KaFai Lau static bool __rt6_check_expired(const struct rt6_info *rt) 4045973fb1eSMartin KaFai Lau { 4055973fb1eSMartin KaFai Lau if (rt->rt6i_flags & RTF_EXPIRES) 4065973fb1eSMartin KaFai Lau return time_after(jiffies, rt->dst.expires); 4075973fb1eSMartin KaFai Lau else 4085973fb1eSMartin KaFai Lau return false; 4095973fb1eSMartin KaFai Lau } 4105973fb1eSMartin KaFai Lau 411a50feda5SEric Dumazet static bool rt6_check_expired(const struct rt6_info *rt) 4121da177e4SLinus Torvalds { 413a68886a6SDavid Ahern struct fib6_info *from; 414a68886a6SDavid Ahern 415a68886a6SDavid Ahern from = rcu_dereference(rt->from); 416a68886a6SDavid Ahern 4171716a961SGao feng if (rt->rt6i_flags & RTF_EXPIRES) { 4181716a961SGao feng if (time_after(jiffies, rt->dst.expires)) 419a50feda5SEric Dumazet return true; 420a68886a6SDavid Ahern } else if (from) { 4211e2ea8adSXin Long return rt->dst.obsolete != DST_OBSOLETE_FORCE_CHK || 422a68886a6SDavid Ahern fib6_check_expired(from); 4231716a961SGao feng } 424a50feda5SEric Dumazet return false; 4251da177e4SLinus Torvalds } 4261da177e4SLinus Torvalds 4273b290a31SDavid Ahern struct fib6_info *fib6_multipath_select(const struct net *net, 4288d1c802bSDavid Ahern struct fib6_info *match, 42952bd4c0cSNicolas Dichtel struct flowi6 *fl6, int oif, 430b75cc8f9SDavid Ahern const struct sk_buff *skb, 43152bd4c0cSNicolas Dichtel int strict) 43251ebd318SNicolas Dichtel { 4338d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 43451ebd318SNicolas Dichtel 435b673d6ccSJakub Sitnicki /* We might have already computed the hash for ICMPv6 errors. In such 436b673d6ccSJakub Sitnicki * case it will always be non-zero. Otherwise now is the time to do it. 437b673d6ccSJakub Sitnicki */ 438b673d6ccSJakub Sitnicki if (!fl6->mp_hash) 439b4bac172SDavid Ahern fl6->mp_hash = rt6_multipath_hash(net, fl6, skb, NULL); 440b673d6ccSJakub Sitnicki 4415e670d84SDavid Ahern if (fl6->mp_hash <= atomic_read(&match->fib6_nh.nh_upper_bound)) 4423d709f69SIdo Schimmel return match; 443bbfcd776SIdo Schimmel 44493c2fb25SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, &match->fib6_siblings, 44593c2fb25SDavid Ahern fib6_siblings) { 4465e670d84SDavid Ahern int nh_upper_bound; 4475e670d84SDavid Ahern 4485e670d84SDavid Ahern nh_upper_bound = atomic_read(&sibling->fib6_nh.nh_upper_bound); 4495e670d84SDavid Ahern if (fl6->mp_hash > nh_upper_bound) 4503d709f69SIdo Schimmel continue; 45152bd4c0cSNicolas Dichtel if (rt6_score_route(sibling, oif, strict) < 0) 45252bd4c0cSNicolas Dichtel break; 45351ebd318SNicolas Dichtel match = sibling; 45451ebd318SNicolas Dichtel break; 45551ebd318SNicolas Dichtel } 4563d709f69SIdo Schimmel 45751ebd318SNicolas Dichtel return match; 45851ebd318SNicolas Dichtel } 45951ebd318SNicolas Dichtel 4601da177e4SLinus Torvalds /* 46166f5d6ceSWei Wang * Route lookup. rcu_read_lock() should be held. 4621da177e4SLinus Torvalds */ 4631da177e4SLinus Torvalds 4648d1c802bSDavid Ahern static inline struct fib6_info *rt6_device_match(struct net *net, 4658d1c802bSDavid Ahern struct fib6_info *rt, 466b71d1d42SEric Dumazet const struct in6_addr *saddr, 4671da177e4SLinus Torvalds int oif, 468d420895eSYOSHIFUJI Hideaki int flags) 4691da177e4SLinus Torvalds { 4708d1c802bSDavid Ahern struct fib6_info *sprt; 4711da177e4SLinus Torvalds 4725e670d84SDavid Ahern if (!oif && ipv6_addr_any(saddr) && 4735e670d84SDavid Ahern !(rt->fib6_nh.nh_flags & RTNH_F_DEAD)) 4748067bb8cSIdo Schimmel return rt; 475dd3abc4eSYOSHIFUJI Hideaki 4768fb11a9aSDavid Ahern for (sprt = rt; sprt; sprt = rcu_dereference(sprt->fib6_next)) { 4775e670d84SDavid Ahern const struct net_device *dev = sprt->fib6_nh.nh_dev; 478dd3abc4eSYOSHIFUJI Hideaki 4795e670d84SDavid Ahern if (sprt->fib6_nh.nh_flags & RTNH_F_DEAD) 4808067bb8cSIdo Schimmel continue; 4818067bb8cSIdo Schimmel 482dd3abc4eSYOSHIFUJI Hideaki if (oif) { 4831da177e4SLinus Torvalds if (dev->ifindex == oif) 4841da177e4SLinus Torvalds return sprt; 485dd3abc4eSYOSHIFUJI Hideaki } else { 486dd3abc4eSYOSHIFUJI Hideaki if (ipv6_chk_addr(net, saddr, dev, 487dd3abc4eSYOSHIFUJI Hideaki flags & RT6_LOOKUP_F_IFACE)) 488dd3abc4eSYOSHIFUJI Hideaki return sprt; 489dd3abc4eSYOSHIFUJI Hideaki } 4901da177e4SLinus Torvalds } 4911da177e4SLinus Torvalds 492eea68cd3SDavid Ahern if (oif && flags & RT6_LOOKUP_F_IFACE) 493421842edSDavid Ahern return net->ipv6.fib6_null_entry; 4941da177e4SLinus Torvalds 495421842edSDavid Ahern return rt->fib6_nh.nh_flags & RTNH_F_DEAD ? net->ipv6.fib6_null_entry : rt; 4961da177e4SLinus Torvalds } 4971da177e4SLinus Torvalds 49827097255SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 499c2f17e82SHannes Frederic Sowa struct __rt6_probe_work { 500c2f17e82SHannes Frederic Sowa struct work_struct work; 501c2f17e82SHannes Frederic Sowa struct in6_addr target; 502c2f17e82SHannes Frederic Sowa struct net_device *dev; 503c2f17e82SHannes Frederic Sowa }; 504c2f17e82SHannes Frederic Sowa 505c2f17e82SHannes Frederic Sowa static void rt6_probe_deferred(struct work_struct *w) 506c2f17e82SHannes Frederic Sowa { 507c2f17e82SHannes Frederic Sowa struct in6_addr mcaddr; 508c2f17e82SHannes Frederic Sowa struct __rt6_probe_work *work = 509c2f17e82SHannes Frederic Sowa container_of(w, struct __rt6_probe_work, work); 510c2f17e82SHannes Frederic Sowa 511c2f17e82SHannes Frederic Sowa addrconf_addr_solict_mult(&work->target, &mcaddr); 512adc176c5SErik Nordmark ndisc_send_ns(work->dev, &work->target, &mcaddr, NULL, 0); 513c2f17e82SHannes Frederic Sowa dev_put(work->dev); 514662f5533SMichael Büsch kfree(work); 515c2f17e82SHannes Frederic Sowa } 516c2f17e82SHannes Frederic Sowa 5178d1c802bSDavid Ahern static void rt6_probe(struct fib6_info *rt) 51827097255SYOSHIFUJI Hideaki { 519f547fac6SSabrina Dubroca struct __rt6_probe_work *work = NULL; 5205e670d84SDavid Ahern const struct in6_addr *nh_gw; 521f2c31e32SEric Dumazet struct neighbour *neigh; 5225e670d84SDavid Ahern struct net_device *dev; 523f547fac6SSabrina Dubroca struct inet6_dev *idev; 5245e670d84SDavid Ahern 52527097255SYOSHIFUJI Hideaki /* 52627097255SYOSHIFUJI Hideaki * Okay, this does not seem to be appropriate 52727097255SYOSHIFUJI Hideaki * for now, however, we need to check if it 52827097255SYOSHIFUJI Hideaki * is really so; aka Router Reachability Probing. 52927097255SYOSHIFUJI Hideaki * 53027097255SYOSHIFUJI Hideaki * Router Reachability Probe MUST be rate-limited 53127097255SYOSHIFUJI Hideaki * to no more than one per minute. 53227097255SYOSHIFUJI Hideaki */ 53393c2fb25SDavid Ahern if (!rt || !(rt->fib6_flags & RTF_GATEWAY)) 534fdd6681dSAmerigo Wang return; 5355e670d84SDavid Ahern 5365e670d84SDavid Ahern nh_gw = &rt->fib6_nh.nh_gw; 5375e670d84SDavid Ahern dev = rt->fib6_nh.nh_dev; 5382152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 539f547fac6SSabrina Dubroca idev = __in6_dev_get(dev); 5405e670d84SDavid Ahern neigh = __ipv6_neigh_lookup_noref(dev, nh_gw); 5412152caeaSYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 5428d6c31bfSMartin KaFai Lau if (neigh->nud_state & NUD_VALID) 5438d6c31bfSMartin KaFai Lau goto out; 5448d6c31bfSMartin KaFai Lau 5452152caeaSYOSHIFUJI Hideaki / 吉藤英明 write_lock(&neigh->lock); 546990edb42SMartin KaFai Lau if (!(neigh->nud_state & NUD_VALID) && 547990edb42SMartin KaFai Lau time_after(jiffies, 548dcd1f572SDavid Ahern neigh->updated + idev->cnf.rtr_probe_interval)) { 549c2f17e82SHannes Frederic Sowa work = kmalloc(sizeof(*work), GFP_ATOMIC); 550990edb42SMartin KaFai Lau if (work) 5517e980569SJiri Benc __neigh_set_probe_once(neigh); 552990edb42SMartin KaFai Lau } 553c2f17e82SHannes Frederic Sowa write_unlock(&neigh->lock); 554f547fac6SSabrina Dubroca } else if (time_after(jiffies, rt->last_probe + 555f547fac6SSabrina Dubroca idev->cnf.rtr_probe_interval)) { 556990edb42SMartin KaFai Lau work = kmalloc(sizeof(*work), GFP_ATOMIC); 557990edb42SMartin KaFai Lau } 558c2f17e82SHannes Frederic Sowa 559c2f17e82SHannes Frederic Sowa if (work) { 560f547fac6SSabrina Dubroca rt->last_probe = jiffies; 561c2f17e82SHannes Frederic Sowa INIT_WORK(&work->work, rt6_probe_deferred); 5625e670d84SDavid Ahern work->target = *nh_gw; 5635e670d84SDavid Ahern dev_hold(dev); 5645e670d84SDavid Ahern work->dev = dev; 565c2f17e82SHannes Frederic Sowa schedule_work(&work->work); 566c2f17e82SHannes Frederic Sowa } 567990edb42SMartin KaFai Lau 5688d6c31bfSMartin KaFai Lau out: 5692152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 570f2c31e32SEric Dumazet } 57127097255SYOSHIFUJI Hideaki #else 5728d1c802bSDavid Ahern static inline void rt6_probe(struct fib6_info *rt) 57327097255SYOSHIFUJI Hideaki { 57427097255SYOSHIFUJI Hideaki } 57527097255SYOSHIFUJI Hideaki #endif 57627097255SYOSHIFUJI Hideaki 5771da177e4SLinus Torvalds /* 578554cfb7eSYOSHIFUJI Hideaki * Default Router Selection (RFC 2461 6.3.6) 5791da177e4SLinus Torvalds */ 5808d1c802bSDavid Ahern static inline int rt6_check_dev(struct fib6_info *rt, int oif) 5811da177e4SLinus Torvalds { 5825e670d84SDavid Ahern const struct net_device *dev = rt->fib6_nh.nh_dev; 5835e670d84SDavid Ahern 584161980f4SDavid S. Miller if (!oif || dev->ifindex == oif) 585554cfb7eSYOSHIFUJI Hideaki return 2; 586554cfb7eSYOSHIFUJI Hideaki return 0; 5871da177e4SLinus Torvalds } 5881da177e4SLinus Torvalds 5898d1c802bSDavid Ahern static inline enum rt6_nud_state rt6_check_neigh(struct fib6_info *rt) 5901da177e4SLinus Torvalds { 591afc154e9SHannes Frederic Sowa enum rt6_nud_state ret = RT6_NUD_FAIL_HARD; 5925e670d84SDavid Ahern struct neighbour *neigh; 593f2c31e32SEric Dumazet 59493c2fb25SDavid Ahern if (rt->fib6_flags & RTF_NONEXTHOP || 59593c2fb25SDavid Ahern !(rt->fib6_flags & RTF_GATEWAY)) 596afc154e9SHannes Frederic Sowa return RT6_NUD_SUCCEED; 597145a3621SYOSHIFUJI Hideaki / 吉藤英明 598145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 5995e670d84SDavid Ahern neigh = __ipv6_neigh_lookup_noref(rt->fib6_nh.nh_dev, 6005e670d84SDavid Ahern &rt->fib6_nh.nh_gw); 601145a3621SYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 602145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_lock(&neigh->lock); 603554cfb7eSYOSHIFUJI Hideaki if (neigh->nud_state & NUD_VALID) 604afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 605398bcbebSYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 606a5a81f0bSPaul Marks else if (!(neigh->nud_state & NUD_FAILED)) 607afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 6087e980569SJiri Benc else 6097e980569SJiri Benc ret = RT6_NUD_FAIL_PROBE; 610398bcbebSYOSHIFUJI Hideaki #endif 611145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_unlock(&neigh->lock); 612afc154e9SHannes Frederic Sowa } else { 613afc154e9SHannes Frederic Sowa ret = IS_ENABLED(CONFIG_IPV6_ROUTER_PREF) ? 6147e980569SJiri Benc RT6_NUD_SUCCEED : RT6_NUD_FAIL_DO_RR; 615a5a81f0bSPaul Marks } 616145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 617145a3621SYOSHIFUJI Hideaki / 吉藤英明 618a5a81f0bSPaul Marks return ret; 6191da177e4SLinus Torvalds } 6201da177e4SLinus Torvalds 6218d1c802bSDavid Ahern static int rt6_score_route(struct fib6_info *rt, int oif, int strict) 622554cfb7eSYOSHIFUJI Hideaki { 623a5a81f0bSPaul Marks int m; 6244d0c5911SYOSHIFUJI Hideaki 6254d0c5911SYOSHIFUJI Hideaki m = rt6_check_dev(rt, oif); 62677d16f45SYOSHIFUJI Hideaki if (!m && (strict & RT6_LOOKUP_F_IFACE)) 627afc154e9SHannes Frederic Sowa return RT6_NUD_FAIL_HARD; 628ebacaaa0SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 62993c2fb25SDavid Ahern m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(rt->fib6_flags)) << 2; 630ebacaaa0SYOSHIFUJI Hideaki #endif 631afc154e9SHannes Frederic Sowa if (strict & RT6_LOOKUP_F_REACHABLE) { 632afc154e9SHannes Frederic Sowa int n = rt6_check_neigh(rt); 633afc154e9SHannes Frederic Sowa if (n < 0) 634afc154e9SHannes Frederic Sowa return n; 635afc154e9SHannes Frederic Sowa } 636554cfb7eSYOSHIFUJI Hideaki return m; 637554cfb7eSYOSHIFUJI Hideaki } 638554cfb7eSYOSHIFUJI Hideaki 639dcd1f572SDavid Ahern /* called with rc_read_lock held */ 640dcd1f572SDavid Ahern static inline bool fib6_ignore_linkdown(const struct fib6_info *f6i) 641dcd1f572SDavid Ahern { 642dcd1f572SDavid Ahern const struct net_device *dev = fib6_info_nh_dev(f6i); 643dcd1f572SDavid Ahern bool rc = false; 644dcd1f572SDavid Ahern 645dcd1f572SDavid Ahern if (dev) { 646dcd1f572SDavid Ahern const struct inet6_dev *idev = __in6_dev_get(dev); 647dcd1f572SDavid Ahern 648dcd1f572SDavid Ahern rc = !!idev->cnf.ignore_routes_with_linkdown; 649dcd1f572SDavid Ahern } 650dcd1f572SDavid Ahern 651dcd1f572SDavid Ahern return rc; 652dcd1f572SDavid Ahern } 653dcd1f572SDavid Ahern 6548d1c802bSDavid Ahern static struct fib6_info *find_match(struct fib6_info *rt, int oif, int strict, 6558d1c802bSDavid Ahern int *mpri, struct fib6_info *match, 656afc154e9SHannes Frederic Sowa bool *do_rr) 657554cfb7eSYOSHIFUJI Hideaki { 658554cfb7eSYOSHIFUJI Hideaki int m; 659afc154e9SHannes Frederic Sowa bool match_do_rr = false; 66035103d11SAndy Gospodarek 6615e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_DEAD) 6628067bb8cSIdo Schimmel goto out; 6638067bb8cSIdo Schimmel 664dcd1f572SDavid Ahern if (fib6_ignore_linkdown(rt) && 6655e670d84SDavid Ahern rt->fib6_nh.nh_flags & RTNH_F_LINKDOWN && 666d5d32e4bSDavid Ahern !(strict & RT6_LOOKUP_F_IGNORE_LINKSTATE)) 66735103d11SAndy Gospodarek goto out; 668554cfb7eSYOSHIFUJI Hideaki 66914895687SDavid Ahern if (fib6_check_expired(rt)) 670f11e6659SDavid S. Miller goto out; 671554cfb7eSYOSHIFUJI Hideaki 672554cfb7eSYOSHIFUJI Hideaki m = rt6_score_route(rt, oif, strict); 6737e980569SJiri Benc if (m == RT6_NUD_FAIL_DO_RR) { 674afc154e9SHannes Frederic Sowa match_do_rr = true; 675afc154e9SHannes Frederic Sowa m = 0; /* lowest valid score */ 6767e980569SJiri Benc } else if (m == RT6_NUD_FAIL_HARD) { 677f11e6659SDavid S. Miller goto out; 6781da177e4SLinus Torvalds } 679f11e6659SDavid S. Miller 680afc154e9SHannes Frederic Sowa if (strict & RT6_LOOKUP_F_REACHABLE) 681afc154e9SHannes Frederic Sowa rt6_probe(rt); 682afc154e9SHannes Frederic Sowa 6837e980569SJiri Benc /* note that m can be RT6_NUD_FAIL_PROBE at this point */ 684afc154e9SHannes Frederic Sowa if (m > *mpri) { 685afc154e9SHannes Frederic Sowa *do_rr = match_do_rr; 686afc154e9SHannes Frederic Sowa *mpri = m; 687afc154e9SHannes Frederic Sowa match = rt; 688afc154e9SHannes Frederic Sowa } 689f11e6659SDavid S. Miller out: 690f11e6659SDavid S. Miller return match; 6911da177e4SLinus Torvalds } 6921da177e4SLinus Torvalds 6938d1c802bSDavid Ahern static struct fib6_info *find_rr_leaf(struct fib6_node *fn, 6948d1c802bSDavid Ahern struct fib6_info *leaf, 6958d1c802bSDavid Ahern struct fib6_info *rr_head, 696afc154e9SHannes Frederic Sowa u32 metric, int oif, int strict, 697afc154e9SHannes Frederic Sowa bool *do_rr) 698f11e6659SDavid S. Miller { 6998d1c802bSDavid Ahern struct fib6_info *rt, *match, *cont; 700f11e6659SDavid S. Miller int mpri = -1; 701f11e6659SDavid S. Miller 702f11e6659SDavid S. Miller match = NULL; 7039fbdcfafSSteffen Klassert cont = NULL; 7048fb11a9aSDavid Ahern for (rt = rr_head; rt; rt = rcu_dereference(rt->fib6_next)) { 70593c2fb25SDavid Ahern if (rt->fib6_metric != metric) { 7069fbdcfafSSteffen Klassert cont = rt; 7079fbdcfafSSteffen Klassert break; 7089fbdcfafSSteffen Klassert } 7099fbdcfafSSteffen Klassert 710afc154e9SHannes Frederic Sowa match = find_match(rt, oif, strict, &mpri, match, do_rr); 7119fbdcfafSSteffen Klassert } 7129fbdcfafSSteffen Klassert 71366f5d6ceSWei Wang for (rt = leaf; rt && rt != rr_head; 7148fb11a9aSDavid Ahern rt = rcu_dereference(rt->fib6_next)) { 71593c2fb25SDavid Ahern if (rt->fib6_metric != metric) { 7169fbdcfafSSteffen Klassert cont = rt; 7179fbdcfafSSteffen Klassert break; 7189fbdcfafSSteffen Klassert } 7199fbdcfafSSteffen Klassert 7209fbdcfafSSteffen Klassert match = find_match(rt, oif, strict, &mpri, match, do_rr); 7219fbdcfafSSteffen Klassert } 7229fbdcfafSSteffen Klassert 7239fbdcfafSSteffen Klassert if (match || !cont) 7249fbdcfafSSteffen Klassert return match; 7259fbdcfafSSteffen Klassert 7268fb11a9aSDavid Ahern for (rt = cont; rt; rt = rcu_dereference(rt->fib6_next)) 727afc154e9SHannes Frederic Sowa match = find_match(rt, oif, strict, &mpri, match, do_rr); 728f11e6659SDavid S. Miller 729f11e6659SDavid S. Miller return match; 730f11e6659SDavid S. Miller } 731f11e6659SDavid S. Miller 7328d1c802bSDavid Ahern static struct fib6_info *rt6_select(struct net *net, struct fib6_node *fn, 7338d1040e8SWei Wang int oif, int strict) 734f11e6659SDavid S. Miller { 7358d1c802bSDavid Ahern struct fib6_info *leaf = rcu_dereference(fn->leaf); 7368d1c802bSDavid Ahern struct fib6_info *match, *rt0; 737afc154e9SHannes Frederic Sowa bool do_rr = false; 73817ecf590SWei Wang int key_plen; 739f11e6659SDavid S. Miller 740421842edSDavid Ahern if (!leaf || leaf == net->ipv6.fib6_null_entry) 741421842edSDavid Ahern return net->ipv6.fib6_null_entry; 7428d1040e8SWei Wang 74366f5d6ceSWei Wang rt0 = rcu_dereference(fn->rr_ptr); 744f11e6659SDavid S. Miller if (!rt0) 74566f5d6ceSWei Wang rt0 = leaf; 746f11e6659SDavid S. Miller 74717ecf590SWei Wang /* Double check to make sure fn is not an intermediate node 74817ecf590SWei Wang * and fn->leaf does not points to its child's leaf 74917ecf590SWei Wang * (This might happen if all routes under fn are deleted from 75017ecf590SWei Wang * the tree and fib6_repair_tree() is called on the node.) 75117ecf590SWei Wang */ 75293c2fb25SDavid Ahern key_plen = rt0->fib6_dst.plen; 75317ecf590SWei Wang #ifdef CONFIG_IPV6_SUBTREES 75493c2fb25SDavid Ahern if (rt0->fib6_src.plen) 75593c2fb25SDavid Ahern key_plen = rt0->fib6_src.plen; 75617ecf590SWei Wang #endif 75717ecf590SWei Wang if (fn->fn_bit != key_plen) 758421842edSDavid Ahern return net->ipv6.fib6_null_entry; 75917ecf590SWei Wang 76093c2fb25SDavid Ahern match = find_rr_leaf(fn, leaf, rt0, rt0->fib6_metric, oif, strict, 761afc154e9SHannes Frederic Sowa &do_rr); 762f11e6659SDavid S. Miller 763afc154e9SHannes Frederic Sowa if (do_rr) { 7648fb11a9aSDavid Ahern struct fib6_info *next = rcu_dereference(rt0->fib6_next); 765f11e6659SDavid S. Miller 766554cfb7eSYOSHIFUJI Hideaki /* no entries matched; do round-robin */ 76793c2fb25SDavid Ahern if (!next || next->fib6_metric != rt0->fib6_metric) 7688d1040e8SWei Wang next = leaf; 769f11e6659SDavid S. Miller 77066f5d6ceSWei Wang if (next != rt0) { 77193c2fb25SDavid Ahern spin_lock_bh(&leaf->fib6_table->tb6_lock); 77266f5d6ceSWei Wang /* make sure next is not being deleted from the tree */ 77393c2fb25SDavid Ahern if (next->fib6_node) 77466f5d6ceSWei Wang rcu_assign_pointer(fn->rr_ptr, next); 77593c2fb25SDavid Ahern spin_unlock_bh(&leaf->fib6_table->tb6_lock); 77666f5d6ceSWei Wang } 777554cfb7eSYOSHIFUJI Hideaki } 778554cfb7eSYOSHIFUJI Hideaki 779421842edSDavid Ahern return match ? match : net->ipv6.fib6_null_entry; 7801da177e4SLinus Torvalds } 7811da177e4SLinus Torvalds 7828d1c802bSDavid Ahern static bool rt6_is_gw_or_nonexthop(const struct fib6_info *rt) 7838b9df265SMartin KaFai Lau { 78493c2fb25SDavid Ahern return (rt->fib6_flags & (RTF_NONEXTHOP | RTF_GATEWAY)); 7858b9df265SMartin KaFai Lau } 7868b9df265SMartin KaFai Lau 78770ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 78870ceb4f5SYOSHIFUJI Hideaki int rt6_route_rcv(struct net_device *dev, u8 *opt, int len, 789b71d1d42SEric Dumazet const struct in6_addr *gwaddr) 79070ceb4f5SYOSHIFUJI Hideaki { 791c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 79270ceb4f5SYOSHIFUJI Hideaki struct route_info *rinfo = (struct route_info *) opt; 79370ceb4f5SYOSHIFUJI Hideaki struct in6_addr prefix_buf, *prefix; 79470ceb4f5SYOSHIFUJI Hideaki unsigned int pref; 7954bed72e4SYOSHIFUJI Hideaki unsigned long lifetime; 7968d1c802bSDavid Ahern struct fib6_info *rt; 79770ceb4f5SYOSHIFUJI Hideaki 79870ceb4f5SYOSHIFUJI Hideaki if (len < sizeof(struct route_info)) { 79970ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 80070ceb4f5SYOSHIFUJI Hideaki } 80170ceb4f5SYOSHIFUJI Hideaki 80270ceb4f5SYOSHIFUJI Hideaki /* Sanity check for prefix_len and length */ 80370ceb4f5SYOSHIFUJI Hideaki if (rinfo->length > 3) { 80470ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 80570ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 128) { 80670ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 80770ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 64) { 80870ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 2) { 80970ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 81070ceb4f5SYOSHIFUJI Hideaki } 81170ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 0) { 81270ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 1) { 81370ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 81470ceb4f5SYOSHIFUJI Hideaki } 81570ceb4f5SYOSHIFUJI Hideaki } 81670ceb4f5SYOSHIFUJI Hideaki 81770ceb4f5SYOSHIFUJI Hideaki pref = rinfo->route_pref; 81870ceb4f5SYOSHIFUJI Hideaki if (pref == ICMPV6_ROUTER_PREF_INVALID) 8193933fc95SJens Rosenboom return -EINVAL; 82070ceb4f5SYOSHIFUJI Hideaki 8214bed72e4SYOSHIFUJI Hideaki lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ); 82270ceb4f5SYOSHIFUJI Hideaki 82370ceb4f5SYOSHIFUJI Hideaki if (rinfo->length == 3) 82470ceb4f5SYOSHIFUJI Hideaki prefix = (struct in6_addr *)rinfo->prefix; 82570ceb4f5SYOSHIFUJI Hideaki else { 82670ceb4f5SYOSHIFUJI Hideaki /* this function is safe */ 82770ceb4f5SYOSHIFUJI Hideaki ipv6_addr_prefix(&prefix_buf, 82870ceb4f5SYOSHIFUJI Hideaki (struct in6_addr *)rinfo->prefix, 82970ceb4f5SYOSHIFUJI Hideaki rinfo->prefix_len); 83070ceb4f5SYOSHIFUJI Hideaki prefix = &prefix_buf; 83170ceb4f5SYOSHIFUJI Hideaki } 83270ceb4f5SYOSHIFUJI Hideaki 833f104a567SDuan Jiong if (rinfo->prefix_len == 0) 834afb1d4b5SDavid Ahern rt = rt6_get_dflt_router(net, gwaddr, dev); 835f104a567SDuan Jiong else 836f104a567SDuan Jiong rt = rt6_get_route_info(net, prefix, rinfo->prefix_len, 837830218c1SDavid Ahern gwaddr, dev); 83870ceb4f5SYOSHIFUJI Hideaki 83970ceb4f5SYOSHIFUJI Hideaki if (rt && !lifetime) { 840afb1d4b5SDavid Ahern ip6_del_rt(net, rt); 84170ceb4f5SYOSHIFUJI Hideaki rt = NULL; 84270ceb4f5SYOSHIFUJI Hideaki } 84370ceb4f5SYOSHIFUJI Hideaki 84470ceb4f5SYOSHIFUJI Hideaki if (!rt && lifetime) 845830218c1SDavid Ahern rt = rt6_add_route_info(net, prefix, rinfo->prefix_len, gwaddr, 846830218c1SDavid Ahern dev, pref); 84770ceb4f5SYOSHIFUJI Hideaki else if (rt) 84893c2fb25SDavid Ahern rt->fib6_flags = RTF_ROUTEINFO | 84993c2fb25SDavid Ahern (rt->fib6_flags & ~RTF_PREF_MASK) | RTF_PREF(pref); 85070ceb4f5SYOSHIFUJI Hideaki 85170ceb4f5SYOSHIFUJI Hideaki if (rt) { 8521716a961SGao feng if (!addrconf_finite_timeout(lifetime)) 85314895687SDavid Ahern fib6_clean_expires(rt); 8541716a961SGao feng else 85514895687SDavid Ahern fib6_set_expires(rt, jiffies + HZ * lifetime); 8561716a961SGao feng 85793531c67SDavid Ahern fib6_info_release(rt); 85870ceb4f5SYOSHIFUJI Hideaki } 85970ceb4f5SYOSHIFUJI Hideaki return 0; 86070ceb4f5SYOSHIFUJI Hideaki } 86170ceb4f5SYOSHIFUJI Hideaki #endif 86270ceb4f5SYOSHIFUJI Hideaki 863ae90d867SDavid Ahern /* 864ae90d867SDavid Ahern * Misc support functions 865ae90d867SDavid Ahern */ 866ae90d867SDavid Ahern 867ae90d867SDavid Ahern /* called with rcu_lock held */ 8688d1c802bSDavid Ahern static struct net_device *ip6_rt_get_dev_rcu(struct fib6_info *rt) 869ae90d867SDavid Ahern { 8705e670d84SDavid Ahern struct net_device *dev = rt->fib6_nh.nh_dev; 871ae90d867SDavid Ahern 87293c2fb25SDavid Ahern if (rt->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) { 873ae90d867SDavid Ahern /* for copies of local routes, dst->dev needs to be the 874ae90d867SDavid Ahern * device if it is a master device, the master device if 875ae90d867SDavid Ahern * device is enslaved, and the loopback as the default 876ae90d867SDavid Ahern */ 877ae90d867SDavid Ahern if (netif_is_l3_slave(dev) && 87893c2fb25SDavid Ahern !rt6_need_strict(&rt->fib6_dst.addr)) 879ae90d867SDavid Ahern dev = l3mdev_master_dev_rcu(dev); 880ae90d867SDavid Ahern else if (!netif_is_l3_master(dev)) 881ae90d867SDavid Ahern dev = dev_net(dev)->loopback_dev; 882ae90d867SDavid Ahern /* last case is netif_is_l3_master(dev) is true in which 883ae90d867SDavid Ahern * case we want dev returned to be dev 884ae90d867SDavid Ahern */ 885ae90d867SDavid Ahern } 886ae90d867SDavid Ahern 887ae90d867SDavid Ahern return dev; 888ae90d867SDavid Ahern } 889ae90d867SDavid Ahern 8906edb3c96SDavid Ahern static const int fib6_prop[RTN_MAX + 1] = { 8916edb3c96SDavid Ahern [RTN_UNSPEC] = 0, 8926edb3c96SDavid Ahern [RTN_UNICAST] = 0, 8936edb3c96SDavid Ahern [RTN_LOCAL] = 0, 8946edb3c96SDavid Ahern [RTN_BROADCAST] = 0, 8956edb3c96SDavid Ahern [RTN_ANYCAST] = 0, 8966edb3c96SDavid Ahern [RTN_MULTICAST] = 0, 8976edb3c96SDavid Ahern [RTN_BLACKHOLE] = -EINVAL, 8986edb3c96SDavid Ahern [RTN_UNREACHABLE] = -EHOSTUNREACH, 8996edb3c96SDavid Ahern [RTN_PROHIBIT] = -EACCES, 9006edb3c96SDavid Ahern [RTN_THROW] = -EAGAIN, 9016edb3c96SDavid Ahern [RTN_NAT] = -EINVAL, 9026edb3c96SDavid Ahern [RTN_XRESOLVE] = -EINVAL, 9036edb3c96SDavid Ahern }; 9046edb3c96SDavid Ahern 9056edb3c96SDavid Ahern static int ip6_rt_type_to_error(u8 fib6_type) 9066edb3c96SDavid Ahern { 9076edb3c96SDavid Ahern return fib6_prop[fib6_type]; 9086edb3c96SDavid Ahern } 9096edb3c96SDavid Ahern 9108d1c802bSDavid Ahern static unsigned short fib6_info_dst_flags(struct fib6_info *rt) 9113b6761d1SDavid Ahern { 9123b6761d1SDavid Ahern unsigned short flags = 0; 9133b6761d1SDavid Ahern 9143b6761d1SDavid Ahern if (rt->dst_nocount) 9153b6761d1SDavid Ahern flags |= DST_NOCOUNT; 9163b6761d1SDavid Ahern if (rt->dst_nopolicy) 9173b6761d1SDavid Ahern flags |= DST_NOPOLICY; 9183b6761d1SDavid Ahern if (rt->dst_host) 9193b6761d1SDavid Ahern flags |= DST_HOST; 9203b6761d1SDavid Ahern 9213b6761d1SDavid Ahern return flags; 9223b6761d1SDavid Ahern } 9233b6761d1SDavid Ahern 9248d1c802bSDavid Ahern static void ip6_rt_init_dst_reject(struct rt6_info *rt, struct fib6_info *ort) 9256edb3c96SDavid Ahern { 9266edb3c96SDavid Ahern rt->dst.error = ip6_rt_type_to_error(ort->fib6_type); 9276edb3c96SDavid Ahern 9286edb3c96SDavid Ahern switch (ort->fib6_type) { 9296edb3c96SDavid Ahern case RTN_BLACKHOLE: 9306edb3c96SDavid Ahern rt->dst.output = dst_discard_out; 9316edb3c96SDavid Ahern rt->dst.input = dst_discard; 9326edb3c96SDavid Ahern break; 9336edb3c96SDavid Ahern case RTN_PROHIBIT: 9346edb3c96SDavid Ahern rt->dst.output = ip6_pkt_prohibit_out; 9356edb3c96SDavid Ahern rt->dst.input = ip6_pkt_prohibit; 9366edb3c96SDavid Ahern break; 9376edb3c96SDavid Ahern case RTN_THROW: 9386edb3c96SDavid Ahern case RTN_UNREACHABLE: 9396edb3c96SDavid Ahern default: 9406edb3c96SDavid Ahern rt->dst.output = ip6_pkt_discard_out; 9416edb3c96SDavid Ahern rt->dst.input = ip6_pkt_discard; 9426edb3c96SDavid Ahern break; 9436edb3c96SDavid Ahern } 9446edb3c96SDavid Ahern } 9456edb3c96SDavid Ahern 9468d1c802bSDavid Ahern static void ip6_rt_init_dst(struct rt6_info *rt, struct fib6_info *ort) 9476edb3c96SDavid Ahern { 94893c2fb25SDavid Ahern if (ort->fib6_flags & RTF_REJECT) { 9496edb3c96SDavid Ahern ip6_rt_init_dst_reject(rt, ort); 9506edb3c96SDavid Ahern return; 9516edb3c96SDavid Ahern } 9526edb3c96SDavid Ahern 9536edb3c96SDavid Ahern rt->dst.error = 0; 9546edb3c96SDavid Ahern rt->dst.output = ip6_output; 9556edb3c96SDavid Ahern 956d23c4b63SHangbin Liu if (ort->fib6_type == RTN_LOCAL || ort->fib6_type == RTN_ANYCAST) { 9576edb3c96SDavid Ahern rt->dst.input = ip6_input; 95893c2fb25SDavid Ahern } else if (ipv6_addr_type(&ort->fib6_dst.addr) & IPV6_ADDR_MULTICAST) { 9596edb3c96SDavid Ahern rt->dst.input = ip6_mc_input; 9606edb3c96SDavid Ahern } else { 9616edb3c96SDavid Ahern rt->dst.input = ip6_forward; 9626edb3c96SDavid Ahern } 9636edb3c96SDavid Ahern 9646edb3c96SDavid Ahern if (ort->fib6_nh.nh_lwtstate) { 9656edb3c96SDavid Ahern rt->dst.lwtstate = lwtstate_get(ort->fib6_nh.nh_lwtstate); 9666edb3c96SDavid Ahern lwtunnel_set_redirect(&rt->dst); 9676edb3c96SDavid Ahern } 9686edb3c96SDavid Ahern 9696edb3c96SDavid Ahern rt->dst.lastuse = jiffies; 9706edb3c96SDavid Ahern } 9716edb3c96SDavid Ahern 972e873e4b9SWei Wang /* Caller must already hold reference to @from */ 9738d1c802bSDavid Ahern static void rt6_set_from(struct rt6_info *rt, struct fib6_info *from) 974ae90d867SDavid Ahern { 975ae90d867SDavid Ahern rt->rt6i_flags &= ~RTF_EXPIRES; 976a68886a6SDavid Ahern rcu_assign_pointer(rt->from, from); 977e1255ed4SDavid Ahern ip_dst_init_metrics(&rt->dst, from->fib6_metrics); 978ae90d867SDavid Ahern } 979ae90d867SDavid Ahern 980e873e4b9SWei Wang /* Caller must already hold reference to @ort */ 9818d1c802bSDavid Ahern static void ip6_rt_copy_init(struct rt6_info *rt, struct fib6_info *ort) 982ae90d867SDavid Ahern { 983dcd1f572SDavid Ahern struct net_device *dev = fib6_info_nh_dev(ort); 984dcd1f572SDavid Ahern 9856edb3c96SDavid Ahern ip6_rt_init_dst(rt, ort); 9866edb3c96SDavid Ahern 98793c2fb25SDavid Ahern rt->rt6i_dst = ort->fib6_dst; 988dcd1f572SDavid Ahern rt->rt6i_idev = dev ? in6_dev_get(dev) : NULL; 9895e670d84SDavid Ahern rt->rt6i_gateway = ort->fib6_nh.nh_gw; 99093c2fb25SDavid Ahern rt->rt6i_flags = ort->fib6_flags; 991ae90d867SDavid Ahern rt6_set_from(rt, ort); 992ae90d867SDavid Ahern #ifdef CONFIG_IPV6_SUBTREES 99393c2fb25SDavid Ahern rt->rt6i_src = ort->fib6_src; 994ae90d867SDavid Ahern #endif 995ae90d867SDavid Ahern } 996ae90d867SDavid Ahern 997a3c00e46SMartin KaFai Lau static struct fib6_node* fib6_backtrack(struct fib6_node *fn, 998a3c00e46SMartin KaFai Lau struct in6_addr *saddr) 999a3c00e46SMartin KaFai Lau { 100066f5d6ceSWei Wang struct fib6_node *pn, *sn; 1001a3c00e46SMartin KaFai Lau while (1) { 1002a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_TL_ROOT) 1003a3c00e46SMartin KaFai Lau return NULL; 100466f5d6ceSWei Wang pn = rcu_dereference(fn->parent); 100566f5d6ceSWei Wang sn = FIB6_SUBTREE(pn); 100666f5d6ceSWei Wang if (sn && sn != fn) 10076454743bSDavid Ahern fn = fib6_node_lookup(sn, NULL, saddr); 1008a3c00e46SMartin KaFai Lau else 1009a3c00e46SMartin KaFai Lau fn = pn; 1010a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_RTINFO) 1011a3c00e46SMartin KaFai Lau return fn; 1012a3c00e46SMartin KaFai Lau } 1013a3c00e46SMartin KaFai Lau } 1014c71099acSThomas Graf 1015d3843fe5SWei Wang static bool ip6_hold_safe(struct net *net, struct rt6_info **prt, 1016d3843fe5SWei Wang bool null_fallback) 1017d3843fe5SWei Wang { 1018d3843fe5SWei Wang struct rt6_info *rt = *prt; 1019d3843fe5SWei Wang 1020d3843fe5SWei Wang if (dst_hold_safe(&rt->dst)) 1021d3843fe5SWei Wang return true; 1022d3843fe5SWei Wang if (null_fallback) { 1023d3843fe5SWei Wang rt = net->ipv6.ip6_null_entry; 1024d3843fe5SWei Wang dst_hold(&rt->dst); 1025d3843fe5SWei Wang } else { 1026d3843fe5SWei Wang rt = NULL; 1027d3843fe5SWei Wang } 1028d3843fe5SWei Wang *prt = rt; 1029d3843fe5SWei Wang return false; 1030d3843fe5SWei Wang } 1031d3843fe5SWei Wang 1032dec9b0e2SDavid Ahern /* called with rcu_lock held */ 10338d1c802bSDavid Ahern static struct rt6_info *ip6_create_rt_rcu(struct fib6_info *rt) 1034dec9b0e2SDavid Ahern { 10353b6761d1SDavid Ahern unsigned short flags = fib6_info_dst_flags(rt); 1036dec9b0e2SDavid Ahern struct net_device *dev = rt->fib6_nh.nh_dev; 1037dec9b0e2SDavid Ahern struct rt6_info *nrt; 1038dec9b0e2SDavid Ahern 1039e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 10401c87e79aSXin Long goto fallback; 1041e873e4b9SWei Wang 104293531c67SDavid Ahern nrt = ip6_dst_alloc(dev_net(dev), dev, flags); 10431c87e79aSXin Long if (!nrt) { 1044e873e4b9SWei Wang fib6_info_release(rt); 10451c87e79aSXin Long goto fallback; 10461c87e79aSXin Long } 1047dec9b0e2SDavid Ahern 10481c87e79aSXin Long ip6_rt_copy_init(nrt, rt); 10491c87e79aSXin Long return nrt; 10501c87e79aSXin Long 10511c87e79aSXin Long fallback: 10521c87e79aSXin Long nrt = dev_net(dev)->ipv6.ip6_null_entry; 10531c87e79aSXin Long dst_hold(&nrt->dst); 1054dec9b0e2SDavid Ahern return nrt; 1055dec9b0e2SDavid Ahern } 1056dec9b0e2SDavid Ahern 10578ed67789SDaniel Lezcano static struct rt6_info *ip6_pol_route_lookup(struct net *net, 10588ed67789SDaniel Lezcano struct fib6_table *table, 1059b75cc8f9SDavid Ahern struct flowi6 *fl6, 1060b75cc8f9SDavid Ahern const struct sk_buff *skb, 1061b75cc8f9SDavid Ahern int flags) 10621da177e4SLinus Torvalds { 10638d1c802bSDavid Ahern struct fib6_info *f6i; 10641da177e4SLinus Torvalds struct fib6_node *fn; 106523fb93a4SDavid Ahern struct rt6_info *rt; 10661da177e4SLinus Torvalds 1067b6cdbc85SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1068b6cdbc85SDavid Ahern flags &= ~RT6_LOOKUP_F_IFACE; 1069b6cdbc85SDavid Ahern 107066f5d6ceSWei Wang rcu_read_lock(); 10716454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1072c71099acSThomas Graf restart: 107323fb93a4SDavid Ahern f6i = rcu_dereference(fn->leaf); 107423fb93a4SDavid Ahern if (!f6i) { 107523fb93a4SDavid Ahern f6i = net->ipv6.fib6_null_entry; 107666f5d6ceSWei Wang } else { 107723fb93a4SDavid Ahern f6i = rt6_device_match(net, f6i, &fl6->saddr, 107866f5d6ceSWei Wang fl6->flowi6_oif, flags); 107993c2fb25SDavid Ahern if (f6i->fib6_nsiblings && fl6->flowi6_oif == 0) 10803b290a31SDavid Ahern f6i = fib6_multipath_select(net, f6i, fl6, 10813b290a31SDavid Ahern fl6->flowi6_oif, skb, 10823b290a31SDavid Ahern flags); 108366f5d6ceSWei Wang } 108423fb93a4SDavid Ahern if (f6i == net->ipv6.fib6_null_entry) { 1085a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1086a3c00e46SMartin KaFai Lau if (fn) 1087a3c00e46SMartin KaFai Lau goto restart; 1088a3c00e46SMartin KaFai Lau } 10892b760fcfSWei Wang 1090d4bea421SDavid Ahern trace_fib6_table_lookup(net, f6i, table, fl6); 1091d4bea421SDavid Ahern 10924c9483b2SDavid S. Miller /* Search through exception table */ 109323fb93a4SDavid Ahern rt = rt6_find_cached_rt(f6i, &fl6->daddr, &fl6->saddr); 109423fb93a4SDavid Ahern if (rt) { 1095d3843fe5SWei Wang if (ip6_hold_safe(net, &rt, true)) 1096d3843fe5SWei Wang dst_use_noref(&rt->dst, jiffies); 109723fb93a4SDavid Ahern } else if (f6i == net->ipv6.fib6_null_entry) { 1098dec9b0e2SDavid Ahern rt = net->ipv6.ip6_null_entry; 1099dec9b0e2SDavid Ahern dst_hold(&rt->dst); 110023fb93a4SDavid Ahern } else { 110123fb93a4SDavid Ahern rt = ip6_create_rt_rcu(f6i); 1102dec9b0e2SDavid Ahern } 1103d3843fe5SWei Wang 110466f5d6ceSWei Wang rcu_read_unlock(); 1105b811580dSDavid Ahern 11061da177e4SLinus Torvalds return rt; 1107c71099acSThomas Graf } 1108c71099acSThomas Graf 1109ea6e574eSFlorian Westphal struct dst_entry *ip6_route_lookup(struct net *net, struct flowi6 *fl6, 1110b75cc8f9SDavid Ahern const struct sk_buff *skb, int flags) 1111ea6e574eSFlorian Westphal { 1112b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_lookup); 1113ea6e574eSFlorian Westphal } 1114ea6e574eSFlorian Westphal EXPORT_SYMBOL_GPL(ip6_route_lookup); 1115ea6e574eSFlorian Westphal 11169acd9f3aSYOSHIFUJI Hideaki struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr, 1117b75cc8f9SDavid Ahern const struct in6_addr *saddr, int oif, 1118b75cc8f9SDavid Ahern const struct sk_buff *skb, int strict) 1119c71099acSThomas Graf { 11204c9483b2SDavid S. Miller struct flowi6 fl6 = { 11214c9483b2SDavid S. Miller .flowi6_oif = oif, 11224c9483b2SDavid S. Miller .daddr = *daddr, 1123c71099acSThomas Graf }; 1124c71099acSThomas Graf struct dst_entry *dst; 112577d16f45SYOSHIFUJI Hideaki int flags = strict ? RT6_LOOKUP_F_IFACE : 0; 1126c71099acSThomas Graf 1127adaa70bbSThomas Graf if (saddr) { 11284c9483b2SDavid S. Miller memcpy(&fl6.saddr, saddr, sizeof(*saddr)); 1129adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 1130adaa70bbSThomas Graf } 1131adaa70bbSThomas Graf 1132b75cc8f9SDavid Ahern dst = fib6_rule_lookup(net, &fl6, skb, flags, ip6_pol_route_lookup); 1133c71099acSThomas Graf if (dst->error == 0) 1134c71099acSThomas Graf return (struct rt6_info *) dst; 1135c71099acSThomas Graf 1136c71099acSThomas Graf dst_release(dst); 1137c71099acSThomas Graf 11381da177e4SLinus Torvalds return NULL; 11391da177e4SLinus Torvalds } 11407159039aSYOSHIFUJI Hideaki EXPORT_SYMBOL(rt6_lookup); 11417159039aSYOSHIFUJI Hideaki 1142c71099acSThomas Graf /* ip6_ins_rt is called with FREE table->tb6_lock. 11431cfb71eeSWei Wang * It takes new route entry, the addition fails by any reason the 11441cfb71eeSWei Wang * route is released. 11451cfb71eeSWei Wang * Caller must hold dst before calling it. 11461da177e4SLinus Torvalds */ 11471da177e4SLinus Torvalds 11488d1c802bSDavid Ahern static int __ip6_ins_rt(struct fib6_info *rt, struct nl_info *info, 1149333c4301SDavid Ahern struct netlink_ext_ack *extack) 11501da177e4SLinus Torvalds { 11511da177e4SLinus Torvalds int err; 1152c71099acSThomas Graf struct fib6_table *table; 11531da177e4SLinus Torvalds 115493c2fb25SDavid Ahern table = rt->fib6_table; 115566f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 1156d4ead6b3SDavid Ahern err = fib6_add(&table->tb6_root, rt, info, extack); 115766f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 11581da177e4SLinus Torvalds 11591da177e4SLinus Torvalds return err; 11601da177e4SLinus Torvalds } 11611da177e4SLinus Torvalds 11628d1c802bSDavid Ahern int ip6_ins_rt(struct net *net, struct fib6_info *rt) 116340e22e8fSThomas Graf { 1164afb1d4b5SDavid Ahern struct nl_info info = { .nl_net = net, }; 1165e715b6d3SFlorian Westphal 1166d4ead6b3SDavid Ahern return __ip6_ins_rt(rt, &info, NULL); 116740e22e8fSThomas Graf } 116840e22e8fSThomas Graf 11698d1c802bSDavid Ahern static struct rt6_info *ip6_rt_cache_alloc(struct fib6_info *ort, 117021efcfa0SEric Dumazet const struct in6_addr *daddr, 1171b71d1d42SEric Dumazet const struct in6_addr *saddr) 11721da177e4SLinus Torvalds { 11734832c30dSDavid Ahern struct net_device *dev; 11741da177e4SLinus Torvalds struct rt6_info *rt; 11751da177e4SLinus Torvalds 11761da177e4SLinus Torvalds /* 11771da177e4SLinus Torvalds * Clone the route. 11781da177e4SLinus Torvalds */ 11791da177e4SLinus Torvalds 1180e873e4b9SWei Wang if (!fib6_info_hold_safe(ort)) 1181e873e4b9SWei Wang return NULL; 1182e873e4b9SWei Wang 11834832c30dSDavid Ahern dev = ip6_rt_get_dev_rcu(ort); 118493531c67SDavid Ahern rt = ip6_dst_alloc(dev_net(dev), dev, 0); 1185e873e4b9SWei Wang if (!rt) { 1186e873e4b9SWei Wang fib6_info_release(ort); 118783a09abdSMartin KaFai Lau return NULL; 1188e873e4b9SWei Wang } 118983a09abdSMartin KaFai Lau 119083a09abdSMartin KaFai Lau ip6_rt_copy_init(rt, ort); 11918b9df265SMartin KaFai Lau rt->rt6i_flags |= RTF_CACHE; 119283a09abdSMartin KaFai Lau rt->dst.flags |= DST_HOST; 119383a09abdSMartin KaFai Lau rt->rt6i_dst.addr = *daddr; 119483a09abdSMartin KaFai Lau rt->rt6i_dst.plen = 128; 11958b9df265SMartin KaFai Lau 11968b9df265SMartin KaFai Lau if (!rt6_is_gw_or_nonexthop(ort)) { 119793c2fb25SDavid Ahern if (ort->fib6_dst.plen != 128 && 119893c2fb25SDavid Ahern ipv6_addr_equal(&ort->fib6_dst.addr, daddr)) 119958c4fb86SYOSHIFUJI Hideaki rt->rt6i_flags |= RTF_ANYCAST; 12001da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 12011da177e4SLinus Torvalds if (rt->rt6i_src.plen && saddr) { 12024e3fd7a0SAlexey Dobriyan rt->rt6i_src.addr = *saddr; 12031da177e4SLinus Torvalds rt->rt6i_src.plen = 128; 12041da177e4SLinus Torvalds } 12051da177e4SLinus Torvalds #endif 120695a9a5baSYOSHIFUJI Hideaki } 120795a9a5baSYOSHIFUJI Hideaki 1208299d9939SYOSHIFUJI Hideaki return rt; 1209299d9939SYOSHIFUJI Hideaki } 1210299d9939SYOSHIFUJI Hideaki 12118d1c802bSDavid Ahern static struct rt6_info *ip6_rt_pcpu_alloc(struct fib6_info *rt) 1212d52d3997SMartin KaFai Lau { 12133b6761d1SDavid Ahern unsigned short flags = fib6_info_dst_flags(rt); 12144832c30dSDavid Ahern struct net_device *dev; 1215d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1216d52d3997SMartin KaFai Lau 1217e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 1218e873e4b9SWei Wang return NULL; 1219e873e4b9SWei Wang 12204832c30dSDavid Ahern rcu_read_lock(); 12214832c30dSDavid Ahern dev = ip6_rt_get_dev_rcu(rt); 122293531c67SDavid Ahern pcpu_rt = ip6_dst_alloc(dev_net(dev), dev, flags); 12234832c30dSDavid Ahern rcu_read_unlock(); 1224e873e4b9SWei Wang if (!pcpu_rt) { 1225e873e4b9SWei Wang fib6_info_release(rt); 1226d52d3997SMartin KaFai Lau return NULL; 1227e873e4b9SWei Wang } 1228d52d3997SMartin KaFai Lau ip6_rt_copy_init(pcpu_rt, rt); 1229d52d3997SMartin KaFai Lau pcpu_rt->rt6i_flags |= RTF_PCPU; 1230d52d3997SMartin KaFai Lau return pcpu_rt; 1231d52d3997SMartin KaFai Lau } 1232d52d3997SMartin KaFai Lau 123366f5d6ceSWei Wang /* It should be called with rcu_read_lock() acquired */ 12348d1c802bSDavid Ahern static struct rt6_info *rt6_get_pcpu_route(struct fib6_info *rt) 1235d52d3997SMartin KaFai Lau { 1236a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, **p; 1237d52d3997SMartin KaFai Lau 1238d52d3997SMartin KaFai Lau p = this_cpu_ptr(rt->rt6i_pcpu); 1239d52d3997SMartin KaFai Lau pcpu_rt = *p; 1240d52d3997SMartin KaFai Lau 1241d4ead6b3SDavid Ahern if (pcpu_rt) 1242d4ead6b3SDavid Ahern ip6_hold_safe(NULL, &pcpu_rt, false); 1243d3843fe5SWei Wang 1244a73e4195SMartin KaFai Lau return pcpu_rt; 1245a73e4195SMartin KaFai Lau } 1246a73e4195SMartin KaFai Lau 1247afb1d4b5SDavid Ahern static struct rt6_info *rt6_make_pcpu_route(struct net *net, 12488d1c802bSDavid Ahern struct fib6_info *rt) 1249a73e4195SMartin KaFai Lau { 1250a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, *prev, **p; 1251d52d3997SMartin KaFai Lau 1252d52d3997SMartin KaFai Lau pcpu_rt = ip6_rt_pcpu_alloc(rt); 1253d52d3997SMartin KaFai Lau if (!pcpu_rt) { 12549c7370a1SMartin KaFai Lau dst_hold(&net->ipv6.ip6_null_entry->dst); 12559c7370a1SMartin KaFai Lau return net->ipv6.ip6_null_entry; 1256d52d3997SMartin KaFai Lau } 1257d52d3997SMartin KaFai Lau 1258a94b9367SWei Wang dst_hold(&pcpu_rt->dst); 1259a73e4195SMartin KaFai Lau p = this_cpu_ptr(rt->rt6i_pcpu); 1260d52d3997SMartin KaFai Lau prev = cmpxchg(p, NULL, pcpu_rt); 1261951f788aSEric Dumazet BUG_ON(prev); 1262a94b9367SWei Wang 1263d52d3997SMartin KaFai Lau return pcpu_rt; 1264d52d3997SMartin KaFai Lau } 1265d52d3997SMartin KaFai Lau 126635732d01SWei Wang /* exception hash table implementation 126735732d01SWei Wang */ 126835732d01SWei Wang static DEFINE_SPINLOCK(rt6_exception_lock); 126935732d01SWei Wang 127035732d01SWei Wang /* Remove rt6_ex from hash table and free the memory 127135732d01SWei Wang * Caller must hold rt6_exception_lock 127235732d01SWei Wang */ 127335732d01SWei Wang static void rt6_remove_exception(struct rt6_exception_bucket *bucket, 127435732d01SWei Wang struct rt6_exception *rt6_ex) 127535732d01SWei Wang { 1276f5b51fe8SPaolo Abeni struct fib6_info *from; 1277b2427e67SColin Ian King struct net *net; 127881eb8447SWei Wang 127935732d01SWei Wang if (!bucket || !rt6_ex) 128035732d01SWei Wang return; 1281b2427e67SColin Ian King 1282b2427e67SColin Ian King net = dev_net(rt6_ex->rt6i->dst.dev); 1283f5b51fe8SPaolo Abeni net->ipv6.rt6_stats->fib_rt_cache--; 1284f5b51fe8SPaolo Abeni 1285f5b51fe8SPaolo Abeni /* purge completely the exception to allow releasing the held resources: 1286f5b51fe8SPaolo Abeni * some [sk] cache may keep the dst around for unlimited time 1287f5b51fe8SPaolo Abeni */ 1288*0e233874SEric Dumazet from = xchg((__force struct fib6_info **)&rt6_ex->rt6i->from, NULL); 1289f5b51fe8SPaolo Abeni fib6_info_release(from); 1290f5b51fe8SPaolo Abeni dst_dev_put(&rt6_ex->rt6i->dst); 1291f5b51fe8SPaolo Abeni 129235732d01SWei Wang hlist_del_rcu(&rt6_ex->hlist); 129377634cc6SDavid Ahern dst_release(&rt6_ex->rt6i->dst); 129435732d01SWei Wang kfree_rcu(rt6_ex, rcu); 129535732d01SWei Wang WARN_ON_ONCE(!bucket->depth); 129635732d01SWei Wang bucket->depth--; 129735732d01SWei Wang } 129835732d01SWei Wang 129935732d01SWei Wang /* Remove oldest rt6_ex in bucket and free the memory 130035732d01SWei Wang * Caller must hold rt6_exception_lock 130135732d01SWei Wang */ 130235732d01SWei Wang static void rt6_exception_remove_oldest(struct rt6_exception_bucket *bucket) 130335732d01SWei Wang { 130435732d01SWei Wang struct rt6_exception *rt6_ex, *oldest = NULL; 130535732d01SWei Wang 130635732d01SWei Wang if (!bucket) 130735732d01SWei Wang return; 130835732d01SWei Wang 130935732d01SWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 131035732d01SWei Wang if (!oldest || time_before(rt6_ex->stamp, oldest->stamp)) 131135732d01SWei Wang oldest = rt6_ex; 131235732d01SWei Wang } 131335732d01SWei Wang rt6_remove_exception(bucket, oldest); 131435732d01SWei Wang } 131535732d01SWei Wang 131635732d01SWei Wang static u32 rt6_exception_hash(const struct in6_addr *dst, 131735732d01SWei Wang const struct in6_addr *src) 131835732d01SWei Wang { 131935732d01SWei Wang static u32 seed __read_mostly; 132035732d01SWei Wang u32 val; 132135732d01SWei Wang 132235732d01SWei Wang net_get_random_once(&seed, sizeof(seed)); 132335732d01SWei Wang val = jhash(dst, sizeof(*dst), seed); 132435732d01SWei Wang 132535732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 132635732d01SWei Wang if (src) 132735732d01SWei Wang val = jhash(src, sizeof(*src), val); 132835732d01SWei Wang #endif 132935732d01SWei Wang return hash_32(val, FIB6_EXCEPTION_BUCKET_SIZE_SHIFT); 133035732d01SWei Wang } 133135732d01SWei Wang 133235732d01SWei Wang /* Helper function to find the cached rt in the hash table 133335732d01SWei Wang * and update bucket pointer to point to the bucket for this 133435732d01SWei Wang * (daddr, saddr) pair 133535732d01SWei Wang * Caller must hold rt6_exception_lock 133635732d01SWei Wang */ 133735732d01SWei Wang static struct rt6_exception * 133835732d01SWei Wang __rt6_find_exception_spinlock(struct rt6_exception_bucket **bucket, 133935732d01SWei Wang const struct in6_addr *daddr, 134035732d01SWei Wang const struct in6_addr *saddr) 134135732d01SWei Wang { 134235732d01SWei Wang struct rt6_exception *rt6_ex; 134335732d01SWei Wang u32 hval; 134435732d01SWei Wang 134535732d01SWei Wang if (!(*bucket) || !daddr) 134635732d01SWei Wang return NULL; 134735732d01SWei Wang 134835732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 134935732d01SWei Wang *bucket += hval; 135035732d01SWei Wang 135135732d01SWei Wang hlist_for_each_entry(rt6_ex, &(*bucket)->chain, hlist) { 135235732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 135335732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 135435732d01SWei Wang 135535732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 135635732d01SWei Wang if (matched && saddr) 135735732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 135835732d01SWei Wang #endif 135935732d01SWei Wang if (matched) 136035732d01SWei Wang return rt6_ex; 136135732d01SWei Wang } 136235732d01SWei Wang return NULL; 136335732d01SWei Wang } 136435732d01SWei Wang 136535732d01SWei Wang /* Helper function to find the cached rt in the hash table 136635732d01SWei Wang * and update bucket pointer to point to the bucket for this 136735732d01SWei Wang * (daddr, saddr) pair 136835732d01SWei Wang * Caller must hold rcu_read_lock() 136935732d01SWei Wang */ 137035732d01SWei Wang static struct rt6_exception * 137135732d01SWei Wang __rt6_find_exception_rcu(struct rt6_exception_bucket **bucket, 137235732d01SWei Wang const struct in6_addr *daddr, 137335732d01SWei Wang const struct in6_addr *saddr) 137435732d01SWei Wang { 137535732d01SWei Wang struct rt6_exception *rt6_ex; 137635732d01SWei Wang u32 hval; 137735732d01SWei Wang 137835732d01SWei Wang WARN_ON_ONCE(!rcu_read_lock_held()); 137935732d01SWei Wang 138035732d01SWei Wang if (!(*bucket) || !daddr) 138135732d01SWei Wang return NULL; 138235732d01SWei Wang 138335732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 138435732d01SWei Wang *bucket += hval; 138535732d01SWei Wang 138635732d01SWei Wang hlist_for_each_entry_rcu(rt6_ex, &(*bucket)->chain, hlist) { 138735732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 138835732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 138935732d01SWei Wang 139035732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 139135732d01SWei Wang if (matched && saddr) 139235732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 139335732d01SWei Wang #endif 139435732d01SWei Wang if (matched) 139535732d01SWei Wang return rt6_ex; 139635732d01SWei Wang } 139735732d01SWei Wang return NULL; 139835732d01SWei Wang } 139935732d01SWei Wang 14008d1c802bSDavid Ahern static unsigned int fib6_mtu(const struct fib6_info *rt) 140135732d01SWei Wang { 1402d4ead6b3SDavid Ahern unsigned int mtu; 1403d4ead6b3SDavid Ahern 1404dcd1f572SDavid Ahern if (rt->fib6_pmtu) { 1405dcd1f572SDavid Ahern mtu = rt->fib6_pmtu; 1406dcd1f572SDavid Ahern } else { 1407dcd1f572SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 1408dcd1f572SDavid Ahern struct inet6_dev *idev; 1409dcd1f572SDavid Ahern 1410dcd1f572SDavid Ahern rcu_read_lock(); 1411dcd1f572SDavid Ahern idev = __in6_dev_get(dev); 1412dcd1f572SDavid Ahern mtu = idev->cnf.mtu6; 1413dcd1f572SDavid Ahern rcu_read_unlock(); 1414dcd1f572SDavid Ahern } 1415dcd1f572SDavid Ahern 1416d4ead6b3SDavid Ahern mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 1417d4ead6b3SDavid Ahern 1418d4ead6b3SDavid Ahern return mtu - lwtunnel_headroom(rt->fib6_nh.nh_lwtstate, mtu); 1419d4ead6b3SDavid Ahern } 1420d4ead6b3SDavid Ahern 142135732d01SWei Wang static int rt6_insert_exception(struct rt6_info *nrt, 14228d1c802bSDavid Ahern struct fib6_info *ort) 142335732d01SWei Wang { 14245e670d84SDavid Ahern struct net *net = dev_net(nrt->dst.dev); 142535732d01SWei Wang struct rt6_exception_bucket *bucket; 142635732d01SWei Wang struct in6_addr *src_key = NULL; 142735732d01SWei Wang struct rt6_exception *rt6_ex; 142835732d01SWei Wang int err = 0; 142935732d01SWei Wang 143035732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 143135732d01SWei Wang 143235732d01SWei Wang if (ort->exception_bucket_flushed) { 143335732d01SWei Wang err = -EINVAL; 143435732d01SWei Wang goto out; 143535732d01SWei Wang } 143635732d01SWei Wang 143735732d01SWei Wang bucket = rcu_dereference_protected(ort->rt6i_exception_bucket, 143835732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 143935732d01SWei Wang if (!bucket) { 144035732d01SWei Wang bucket = kcalloc(FIB6_EXCEPTION_BUCKET_SIZE, sizeof(*bucket), 144135732d01SWei Wang GFP_ATOMIC); 144235732d01SWei Wang if (!bucket) { 144335732d01SWei Wang err = -ENOMEM; 144435732d01SWei Wang goto out; 144535732d01SWei Wang } 144635732d01SWei Wang rcu_assign_pointer(ort->rt6i_exception_bucket, bucket); 144735732d01SWei Wang } 144835732d01SWei Wang 144935732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 145035732d01SWei Wang /* rt6i_src.plen != 0 indicates ort is in subtree 145135732d01SWei Wang * and exception table is indexed by a hash of 145235732d01SWei Wang * both rt6i_dst and rt6i_src. 145335732d01SWei Wang * Otherwise, the exception table is indexed by 145435732d01SWei Wang * a hash of only rt6i_dst. 145535732d01SWei Wang */ 145693c2fb25SDavid Ahern if (ort->fib6_src.plen) 145735732d01SWei Wang src_key = &nrt->rt6i_src.addr; 145835732d01SWei Wang #endif 1459f5bbe7eeSWei Wang /* rt6_mtu_change() might lower mtu on ort. 1460f5bbe7eeSWei Wang * Only insert this exception route if its mtu 1461f5bbe7eeSWei Wang * is less than ort's mtu value. 1462f5bbe7eeSWei Wang */ 1463d4ead6b3SDavid Ahern if (dst_metric_raw(&nrt->dst, RTAX_MTU) >= fib6_mtu(ort)) { 1464f5bbe7eeSWei Wang err = -EINVAL; 1465f5bbe7eeSWei Wang goto out; 1466f5bbe7eeSWei Wang } 146760006a48SWei Wang 146835732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, &nrt->rt6i_dst.addr, 146935732d01SWei Wang src_key); 147035732d01SWei Wang if (rt6_ex) 147135732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 147235732d01SWei Wang 147335732d01SWei Wang rt6_ex = kzalloc(sizeof(*rt6_ex), GFP_ATOMIC); 147435732d01SWei Wang if (!rt6_ex) { 147535732d01SWei Wang err = -ENOMEM; 147635732d01SWei Wang goto out; 147735732d01SWei Wang } 147835732d01SWei Wang rt6_ex->rt6i = nrt; 147935732d01SWei Wang rt6_ex->stamp = jiffies; 148035732d01SWei Wang hlist_add_head_rcu(&rt6_ex->hlist, &bucket->chain); 148135732d01SWei Wang bucket->depth++; 148281eb8447SWei Wang net->ipv6.rt6_stats->fib_rt_cache++; 148335732d01SWei Wang 148435732d01SWei Wang if (bucket->depth > FIB6_MAX_DEPTH) 148535732d01SWei Wang rt6_exception_remove_oldest(bucket); 148635732d01SWei Wang 148735732d01SWei Wang out: 148835732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 148935732d01SWei Wang 149035732d01SWei Wang /* Update fn->fn_sernum to invalidate all cached dst */ 1491b886d5f2SPaolo Abeni if (!err) { 149293c2fb25SDavid Ahern spin_lock_bh(&ort->fib6_table->tb6_lock); 14937aef6859SDavid Ahern fib6_update_sernum(net, ort); 149493c2fb25SDavid Ahern spin_unlock_bh(&ort->fib6_table->tb6_lock); 1495b886d5f2SPaolo Abeni fib6_force_start_gc(net); 1496b886d5f2SPaolo Abeni } 149735732d01SWei Wang 149835732d01SWei Wang return err; 149935732d01SWei Wang } 150035732d01SWei Wang 15018d1c802bSDavid Ahern void rt6_flush_exceptions(struct fib6_info *rt) 150235732d01SWei Wang { 150335732d01SWei Wang struct rt6_exception_bucket *bucket; 150435732d01SWei Wang struct rt6_exception *rt6_ex; 150535732d01SWei Wang struct hlist_node *tmp; 150635732d01SWei Wang int i; 150735732d01SWei Wang 150835732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 150935732d01SWei Wang /* Prevent rt6_insert_exception() to recreate the bucket list */ 151035732d01SWei Wang rt->exception_bucket_flushed = 1; 151135732d01SWei Wang 151235732d01SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 151335732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 151435732d01SWei Wang if (!bucket) 151535732d01SWei Wang goto out; 151635732d01SWei Wang 151735732d01SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 151835732d01SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, &bucket->chain, hlist) 151935732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 152035732d01SWei Wang WARN_ON_ONCE(bucket->depth); 152135732d01SWei Wang bucket++; 152235732d01SWei Wang } 152335732d01SWei Wang 152435732d01SWei Wang out: 152535732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 152635732d01SWei Wang } 152735732d01SWei Wang 152835732d01SWei Wang /* Find cached rt in the hash table inside passed in rt 152935732d01SWei Wang * Caller has to hold rcu_read_lock() 153035732d01SWei Wang */ 15318d1c802bSDavid Ahern static struct rt6_info *rt6_find_cached_rt(struct fib6_info *rt, 153235732d01SWei Wang struct in6_addr *daddr, 153335732d01SWei Wang struct in6_addr *saddr) 153435732d01SWei Wang { 153535732d01SWei Wang struct rt6_exception_bucket *bucket; 153635732d01SWei Wang struct in6_addr *src_key = NULL; 153735732d01SWei Wang struct rt6_exception *rt6_ex; 153835732d01SWei Wang struct rt6_info *res = NULL; 153935732d01SWei Wang 154035732d01SWei Wang bucket = rcu_dereference(rt->rt6i_exception_bucket); 154135732d01SWei Wang 154235732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 154335732d01SWei Wang /* rt6i_src.plen != 0 indicates rt is in subtree 154435732d01SWei Wang * and exception table is indexed by a hash of 154535732d01SWei Wang * both rt6i_dst and rt6i_src. 154635732d01SWei Wang * Otherwise, the exception table is indexed by 154735732d01SWei Wang * a hash of only rt6i_dst. 154835732d01SWei Wang */ 154993c2fb25SDavid Ahern if (rt->fib6_src.plen) 155035732d01SWei Wang src_key = saddr; 155135732d01SWei Wang #endif 155235732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, daddr, src_key); 155335732d01SWei Wang 155435732d01SWei Wang if (rt6_ex && !rt6_check_expired(rt6_ex->rt6i)) 155535732d01SWei Wang res = rt6_ex->rt6i; 155635732d01SWei Wang 155735732d01SWei Wang return res; 155835732d01SWei Wang } 155935732d01SWei Wang 156035732d01SWei Wang /* Remove the passed in cached rt from the hash table that contains it */ 156123fb93a4SDavid Ahern static int rt6_remove_exception_rt(struct rt6_info *rt) 156235732d01SWei Wang { 156335732d01SWei Wang struct rt6_exception_bucket *bucket; 156435732d01SWei Wang struct in6_addr *src_key = NULL; 156535732d01SWei Wang struct rt6_exception *rt6_ex; 15668a14e46fSDavid Ahern struct fib6_info *from; 156735732d01SWei Wang int err; 156835732d01SWei Wang 1569091311deSEric Dumazet from = rcu_dereference(rt->from); 157035732d01SWei Wang if (!from || 1571442d713bSColin Ian King !(rt->rt6i_flags & RTF_CACHE)) 157235732d01SWei Wang return -EINVAL; 157335732d01SWei Wang 157435732d01SWei Wang if (!rcu_access_pointer(from->rt6i_exception_bucket)) 157535732d01SWei Wang return -ENOENT; 157635732d01SWei Wang 157735732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 157835732d01SWei Wang bucket = rcu_dereference_protected(from->rt6i_exception_bucket, 157935732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 158035732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 158135732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 158235732d01SWei Wang * and exception table is indexed by a hash of 158335732d01SWei Wang * both rt6i_dst and rt6i_src. 158435732d01SWei Wang * Otherwise, the exception table is indexed by 158535732d01SWei Wang * a hash of only rt6i_dst. 158635732d01SWei Wang */ 158793c2fb25SDavid Ahern if (from->fib6_src.plen) 158835732d01SWei Wang src_key = &rt->rt6i_src.addr; 158935732d01SWei Wang #endif 159035732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, 159135732d01SWei Wang &rt->rt6i_dst.addr, 159235732d01SWei Wang src_key); 159335732d01SWei Wang if (rt6_ex) { 159435732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 159535732d01SWei Wang err = 0; 159635732d01SWei Wang } else { 159735732d01SWei Wang err = -ENOENT; 159835732d01SWei Wang } 159935732d01SWei Wang 160035732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 160135732d01SWei Wang return err; 160235732d01SWei Wang } 160335732d01SWei Wang 160435732d01SWei Wang /* Find rt6_ex which contains the passed in rt cache and 160535732d01SWei Wang * refresh its stamp 160635732d01SWei Wang */ 160735732d01SWei Wang static void rt6_update_exception_stamp_rt(struct rt6_info *rt) 160835732d01SWei Wang { 160935732d01SWei Wang struct rt6_exception_bucket *bucket; 161035732d01SWei Wang struct in6_addr *src_key = NULL; 161135732d01SWei Wang struct rt6_exception *rt6_ex; 1612193f3685SPaolo Abeni struct fib6_info *from; 161335732d01SWei Wang 161435732d01SWei Wang rcu_read_lock(); 1615193f3685SPaolo Abeni from = rcu_dereference(rt->from); 1616193f3685SPaolo Abeni if (!from || !(rt->rt6i_flags & RTF_CACHE)) 1617193f3685SPaolo Abeni goto unlock; 1618193f3685SPaolo Abeni 161935732d01SWei Wang bucket = rcu_dereference(from->rt6i_exception_bucket); 162035732d01SWei Wang 162135732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 162235732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 162335732d01SWei Wang * and exception table is indexed by a hash of 162435732d01SWei Wang * both rt6i_dst and rt6i_src. 162535732d01SWei Wang * Otherwise, the exception table is indexed by 162635732d01SWei Wang * a hash of only rt6i_dst. 162735732d01SWei Wang */ 162893c2fb25SDavid Ahern if (from->fib6_src.plen) 162935732d01SWei Wang src_key = &rt->rt6i_src.addr; 163035732d01SWei Wang #endif 163135732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, 163235732d01SWei Wang &rt->rt6i_dst.addr, 163335732d01SWei Wang src_key); 163435732d01SWei Wang if (rt6_ex) 163535732d01SWei Wang rt6_ex->stamp = jiffies; 163635732d01SWei Wang 1637193f3685SPaolo Abeni unlock: 163835732d01SWei Wang rcu_read_unlock(); 163935732d01SWei Wang } 164035732d01SWei Wang 1641e9fa1495SStefano Brivio static bool rt6_mtu_change_route_allowed(struct inet6_dev *idev, 1642e9fa1495SStefano Brivio struct rt6_info *rt, int mtu) 1643e9fa1495SStefano Brivio { 1644e9fa1495SStefano Brivio /* If the new MTU is lower than the route PMTU, this new MTU will be the 1645e9fa1495SStefano Brivio * lowest MTU in the path: always allow updating the route PMTU to 1646e9fa1495SStefano Brivio * reflect PMTU decreases. 1647e9fa1495SStefano Brivio * 1648e9fa1495SStefano Brivio * If the new MTU is higher, and the route PMTU is equal to the local 1649e9fa1495SStefano Brivio * MTU, this means the old MTU is the lowest in the path, so allow 1650e9fa1495SStefano Brivio * updating it: if other nodes now have lower MTUs, PMTU discovery will 1651e9fa1495SStefano Brivio * handle this. 1652e9fa1495SStefano Brivio */ 1653e9fa1495SStefano Brivio 1654e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) >= mtu) 1655e9fa1495SStefano Brivio return true; 1656e9fa1495SStefano Brivio 1657e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) == idev->cnf.mtu6) 1658e9fa1495SStefano Brivio return true; 1659e9fa1495SStefano Brivio 1660e9fa1495SStefano Brivio return false; 1661e9fa1495SStefano Brivio } 1662e9fa1495SStefano Brivio 1663e9fa1495SStefano Brivio static void rt6_exceptions_update_pmtu(struct inet6_dev *idev, 16648d1c802bSDavid Ahern struct fib6_info *rt, int mtu) 1665f5bbe7eeSWei Wang { 1666f5bbe7eeSWei Wang struct rt6_exception_bucket *bucket; 1667f5bbe7eeSWei Wang struct rt6_exception *rt6_ex; 1668f5bbe7eeSWei Wang int i; 1669f5bbe7eeSWei Wang 1670f5bbe7eeSWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1671f5bbe7eeSWei Wang lockdep_is_held(&rt6_exception_lock)); 1672f5bbe7eeSWei Wang 1673e9fa1495SStefano Brivio if (!bucket) 1674e9fa1495SStefano Brivio return; 1675e9fa1495SStefano Brivio 1676f5bbe7eeSWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1677f5bbe7eeSWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 1678f5bbe7eeSWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1679e9fa1495SStefano Brivio 1680e9fa1495SStefano Brivio /* For RTF_CACHE with rt6i_pmtu == 0 (i.e. a redirected 1681d4ead6b3SDavid Ahern * route), the metrics of its rt->from have already 1682f5bbe7eeSWei Wang * been updated. 1683f5bbe7eeSWei Wang */ 1684d4ead6b3SDavid Ahern if (dst_metric_raw(&entry->dst, RTAX_MTU) && 1685e9fa1495SStefano Brivio rt6_mtu_change_route_allowed(idev, entry, mtu)) 1686d4ead6b3SDavid Ahern dst_metric_set(&entry->dst, RTAX_MTU, mtu); 1687f5bbe7eeSWei Wang } 1688f5bbe7eeSWei Wang bucket++; 1689f5bbe7eeSWei Wang } 1690f5bbe7eeSWei Wang } 1691f5bbe7eeSWei Wang 1692b16cb459SWei Wang #define RTF_CACHE_GATEWAY (RTF_GATEWAY | RTF_CACHE) 1693b16cb459SWei Wang 16948d1c802bSDavid Ahern static void rt6_exceptions_clean_tohost(struct fib6_info *rt, 1695b16cb459SWei Wang struct in6_addr *gateway) 1696b16cb459SWei Wang { 1697b16cb459SWei Wang struct rt6_exception_bucket *bucket; 1698b16cb459SWei Wang struct rt6_exception *rt6_ex; 1699b16cb459SWei Wang struct hlist_node *tmp; 1700b16cb459SWei Wang int i; 1701b16cb459SWei Wang 1702b16cb459SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1703b16cb459SWei Wang return; 1704b16cb459SWei Wang 1705b16cb459SWei Wang spin_lock_bh(&rt6_exception_lock); 1706b16cb459SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1707b16cb459SWei Wang lockdep_is_held(&rt6_exception_lock)); 1708b16cb459SWei Wang 1709b16cb459SWei Wang if (bucket) { 1710b16cb459SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1711b16cb459SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1712b16cb459SWei Wang &bucket->chain, hlist) { 1713b16cb459SWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1714b16cb459SWei Wang 1715b16cb459SWei Wang if ((entry->rt6i_flags & RTF_CACHE_GATEWAY) == 1716b16cb459SWei Wang RTF_CACHE_GATEWAY && 1717b16cb459SWei Wang ipv6_addr_equal(gateway, 1718b16cb459SWei Wang &entry->rt6i_gateway)) { 1719b16cb459SWei Wang rt6_remove_exception(bucket, rt6_ex); 1720b16cb459SWei Wang } 1721b16cb459SWei Wang } 1722b16cb459SWei Wang bucket++; 1723b16cb459SWei Wang } 1724b16cb459SWei Wang } 1725b16cb459SWei Wang 1726b16cb459SWei Wang spin_unlock_bh(&rt6_exception_lock); 1727b16cb459SWei Wang } 1728b16cb459SWei Wang 1729c757faa8SWei Wang static void rt6_age_examine_exception(struct rt6_exception_bucket *bucket, 1730c757faa8SWei Wang struct rt6_exception *rt6_ex, 1731c757faa8SWei Wang struct fib6_gc_args *gc_args, 1732c757faa8SWei Wang unsigned long now) 1733c757faa8SWei Wang { 1734c757faa8SWei Wang struct rt6_info *rt = rt6_ex->rt6i; 1735c757faa8SWei Wang 17361859bac0SPaolo Abeni /* we are pruning and obsoleting aged-out and non gateway exceptions 17371859bac0SPaolo Abeni * even if others have still references to them, so that on next 17381859bac0SPaolo Abeni * dst_check() such references can be dropped. 17391859bac0SPaolo Abeni * EXPIRES exceptions - e.g. pmtu-generated ones are pruned when 17401859bac0SPaolo Abeni * expired, independently from their aging, as per RFC 8201 section 4 17411859bac0SPaolo Abeni */ 174231afeb42SWei Wang if (!(rt->rt6i_flags & RTF_EXPIRES)) { 174331afeb42SWei Wang if (time_after_eq(now, rt->dst.lastuse + gc_args->timeout)) { 1744c757faa8SWei Wang RT6_TRACE("aging clone %p\n", rt); 1745c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1746c757faa8SWei Wang return; 174731afeb42SWei Wang } 174831afeb42SWei Wang } else if (time_after(jiffies, rt->dst.expires)) { 174931afeb42SWei Wang RT6_TRACE("purging expired route %p\n", rt); 175031afeb42SWei Wang rt6_remove_exception(bucket, rt6_ex); 175131afeb42SWei Wang return; 175231afeb42SWei Wang } 175331afeb42SWei Wang 175431afeb42SWei Wang if (rt->rt6i_flags & RTF_GATEWAY) { 1755c757faa8SWei Wang struct neighbour *neigh; 1756c757faa8SWei Wang __u8 neigh_flags = 0; 1757c757faa8SWei Wang 17581bfa26ffSEric Dumazet neigh = __ipv6_neigh_lookup_noref(rt->dst.dev, &rt->rt6i_gateway); 17591bfa26ffSEric Dumazet if (neigh) 1760c757faa8SWei Wang neigh_flags = neigh->flags; 17611bfa26ffSEric Dumazet 1762c757faa8SWei Wang if (!(neigh_flags & NTF_ROUTER)) { 1763c757faa8SWei Wang RT6_TRACE("purging route %p via non-router but gateway\n", 1764c757faa8SWei Wang rt); 1765c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1766c757faa8SWei Wang return; 1767c757faa8SWei Wang } 1768c757faa8SWei Wang } 176931afeb42SWei Wang 1770c757faa8SWei Wang gc_args->more++; 1771c757faa8SWei Wang } 1772c757faa8SWei Wang 17738d1c802bSDavid Ahern void rt6_age_exceptions(struct fib6_info *rt, 1774c757faa8SWei Wang struct fib6_gc_args *gc_args, 1775c757faa8SWei Wang unsigned long now) 1776c757faa8SWei Wang { 1777c757faa8SWei Wang struct rt6_exception_bucket *bucket; 1778c757faa8SWei Wang struct rt6_exception *rt6_ex; 1779c757faa8SWei Wang struct hlist_node *tmp; 1780c757faa8SWei Wang int i; 1781c757faa8SWei Wang 1782c757faa8SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1783c757faa8SWei Wang return; 1784c757faa8SWei Wang 17851bfa26ffSEric Dumazet rcu_read_lock_bh(); 17861bfa26ffSEric Dumazet spin_lock(&rt6_exception_lock); 1787c757faa8SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1788c757faa8SWei Wang lockdep_is_held(&rt6_exception_lock)); 1789c757faa8SWei Wang 1790c757faa8SWei Wang if (bucket) { 1791c757faa8SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1792c757faa8SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1793c757faa8SWei Wang &bucket->chain, hlist) { 1794c757faa8SWei Wang rt6_age_examine_exception(bucket, rt6_ex, 1795c757faa8SWei Wang gc_args, now); 1796c757faa8SWei Wang } 1797c757faa8SWei Wang bucket++; 1798c757faa8SWei Wang } 1799c757faa8SWei Wang } 18001bfa26ffSEric Dumazet spin_unlock(&rt6_exception_lock); 18011bfa26ffSEric Dumazet rcu_read_unlock_bh(); 1802c757faa8SWei Wang } 1803c757faa8SWei Wang 18041d053da9SDavid Ahern /* must be called with rcu lock held */ 18051d053da9SDavid Ahern struct fib6_info *fib6_table_lookup(struct net *net, struct fib6_table *table, 18061d053da9SDavid Ahern int oif, struct flowi6 *fl6, int strict) 18071da177e4SLinus Torvalds { 1808367efcb9SMartin KaFai Lau struct fib6_node *fn, *saved_fn; 18098d1c802bSDavid Ahern struct fib6_info *f6i; 18101da177e4SLinus Torvalds 18116454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1812367efcb9SMartin KaFai Lau saved_fn = fn; 18131da177e4SLinus Torvalds 1814ca254490SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1815ca254490SDavid Ahern oif = 0; 1816ca254490SDavid Ahern 1817a3c00e46SMartin KaFai Lau redo_rt6_select: 181823fb93a4SDavid Ahern f6i = rt6_select(net, fn, oif, strict); 181923fb93a4SDavid Ahern if (f6i == net->ipv6.fib6_null_entry) { 1820a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1821a3c00e46SMartin KaFai Lau if (fn) 1822a3c00e46SMartin KaFai Lau goto redo_rt6_select; 1823367efcb9SMartin KaFai Lau else if (strict & RT6_LOOKUP_F_REACHABLE) { 1824367efcb9SMartin KaFai Lau /* also consider unreachable route */ 1825367efcb9SMartin KaFai Lau strict &= ~RT6_LOOKUP_F_REACHABLE; 1826367efcb9SMartin KaFai Lau fn = saved_fn; 1827367efcb9SMartin KaFai Lau goto redo_rt6_select; 1828367efcb9SMartin KaFai Lau } 1829a3c00e46SMartin KaFai Lau } 1830a3c00e46SMartin KaFai Lau 1831d4bea421SDavid Ahern trace_fib6_table_lookup(net, f6i, table, fl6); 1832d52d3997SMartin KaFai Lau 18331d053da9SDavid Ahern return f6i; 18341d053da9SDavid Ahern } 18351d053da9SDavid Ahern 18361d053da9SDavid Ahern struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, 18371d053da9SDavid Ahern int oif, struct flowi6 *fl6, 18381d053da9SDavid Ahern const struct sk_buff *skb, int flags) 18391d053da9SDavid Ahern { 18401d053da9SDavid Ahern struct fib6_info *f6i; 18411d053da9SDavid Ahern struct rt6_info *rt; 18421d053da9SDavid Ahern int strict = 0; 18431d053da9SDavid Ahern 18441d053da9SDavid Ahern strict |= flags & RT6_LOOKUP_F_IFACE; 18451d053da9SDavid Ahern strict |= flags & RT6_LOOKUP_F_IGNORE_LINKSTATE; 18461d053da9SDavid Ahern if (net->ipv6.devconf_all->forwarding == 0) 18471d053da9SDavid Ahern strict |= RT6_LOOKUP_F_REACHABLE; 18481d053da9SDavid Ahern 18491d053da9SDavid Ahern rcu_read_lock(); 18501d053da9SDavid Ahern 18511d053da9SDavid Ahern f6i = fib6_table_lookup(net, table, oif, fl6, strict); 18521d053da9SDavid Ahern if (f6i->fib6_nsiblings) 18531d053da9SDavid Ahern f6i = fib6_multipath_select(net, f6i, fl6, oif, skb, strict); 18541d053da9SDavid Ahern 185523fb93a4SDavid Ahern if (f6i == net->ipv6.fib6_null_entry) { 1856421842edSDavid Ahern rt = net->ipv6.ip6_null_entry; 185766f5d6ceSWei Wang rcu_read_unlock(); 1858d3843fe5SWei Wang dst_hold(&rt->dst); 1859d3843fe5SWei Wang return rt; 1860d3843fe5SWei Wang } 186123fb93a4SDavid Ahern 186223fb93a4SDavid Ahern /*Search through exception table */ 186323fb93a4SDavid Ahern rt = rt6_find_cached_rt(f6i, &fl6->daddr, &fl6->saddr); 186423fb93a4SDavid Ahern if (rt) { 1865d4ead6b3SDavid Ahern if (ip6_hold_safe(net, &rt, true)) 18661da177e4SLinus Torvalds dst_use_noref(&rt->dst, jiffies); 1867d4ead6b3SDavid Ahern 186866f5d6ceSWei Wang rcu_read_unlock(); 1869d52d3997SMartin KaFai Lau return rt; 18703da59bd9SMartin KaFai Lau } else if (unlikely((fl6->flowi6_flags & FLOWI_FLAG_KNOWN_NH) && 187193c2fb25SDavid Ahern !(f6i->fib6_flags & RTF_GATEWAY))) { 18723da59bd9SMartin KaFai Lau /* Create a RTF_CACHE clone which will not be 18733da59bd9SMartin KaFai Lau * owned by the fib6 tree. It is for the special case where 18743da59bd9SMartin KaFai Lau * the daddr in the skb during the neighbor look-up is different 18753da59bd9SMartin KaFai Lau * from the fl6->daddr used to look-up route here. 18763da59bd9SMartin KaFai Lau */ 18773da59bd9SMartin KaFai Lau struct rt6_info *uncached_rt; 18783da59bd9SMartin KaFai Lau 187923fb93a4SDavid Ahern uncached_rt = ip6_rt_cache_alloc(f6i, &fl6->daddr, NULL); 1880d52d3997SMartin KaFai Lau 18814d85cd0cSDavid Ahern rcu_read_unlock(); 18823da59bd9SMartin KaFai Lau 18831cfb71eeSWei Wang if (uncached_rt) { 18841cfb71eeSWei Wang /* Uncached_rt's refcnt is taken during ip6_rt_cache_alloc() 18851cfb71eeSWei Wang * No need for another dst_hold() 18861cfb71eeSWei Wang */ 18878d0b94afSMartin KaFai Lau rt6_uncached_list_add(uncached_rt); 188881eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 18891cfb71eeSWei Wang } else { 18903da59bd9SMartin KaFai Lau uncached_rt = net->ipv6.ip6_null_entry; 18913da59bd9SMartin KaFai Lau dst_hold(&uncached_rt->dst); 18921cfb71eeSWei Wang } 1893b811580dSDavid Ahern 18943da59bd9SMartin KaFai Lau return uncached_rt; 1895d52d3997SMartin KaFai Lau } else { 1896d52d3997SMartin KaFai Lau /* Get a percpu copy */ 1897d52d3997SMartin KaFai Lau 1898d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1899d52d3997SMartin KaFai Lau 1900951f788aSEric Dumazet local_bh_disable(); 190123fb93a4SDavid Ahern pcpu_rt = rt6_get_pcpu_route(f6i); 1902d52d3997SMartin KaFai Lau 190393531c67SDavid Ahern if (!pcpu_rt) 190423fb93a4SDavid Ahern pcpu_rt = rt6_make_pcpu_route(net, f6i); 190593531c67SDavid Ahern 1906951f788aSEric Dumazet local_bh_enable(); 1907951f788aSEric Dumazet rcu_read_unlock(); 1908d4bea421SDavid Ahern 1909d52d3997SMartin KaFai Lau return pcpu_rt; 1910d52d3997SMartin KaFai Lau } 1911c71099acSThomas Graf } 19129ff74384SDavid Ahern EXPORT_SYMBOL_GPL(ip6_pol_route); 1913c71099acSThomas Graf 1914b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_input(struct net *net, 1915b75cc8f9SDavid Ahern struct fib6_table *table, 1916b75cc8f9SDavid Ahern struct flowi6 *fl6, 1917b75cc8f9SDavid Ahern const struct sk_buff *skb, 1918b75cc8f9SDavid Ahern int flags) 19194acad72dSPavel Emelyanov { 1920b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_iif, fl6, skb, flags); 19214acad72dSPavel Emelyanov } 19224acad72dSPavel Emelyanov 1923d409b847SMahesh Bandewar struct dst_entry *ip6_route_input_lookup(struct net *net, 192472331bc0SShmulik Ladkani struct net_device *dev, 1925b75cc8f9SDavid Ahern struct flowi6 *fl6, 1926b75cc8f9SDavid Ahern const struct sk_buff *skb, 1927b75cc8f9SDavid Ahern int flags) 192872331bc0SShmulik Ladkani { 192972331bc0SShmulik Ladkani if (rt6_need_strict(&fl6->daddr) && dev->type != ARPHRD_PIMREG) 193072331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_IFACE; 193172331bc0SShmulik Ladkani 1932b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_input); 193372331bc0SShmulik Ladkani } 1934d409b847SMahesh Bandewar EXPORT_SYMBOL_GPL(ip6_route_input_lookup); 193572331bc0SShmulik Ladkani 193623aebdacSJakub Sitnicki static void ip6_multipath_l3_keys(const struct sk_buff *skb, 19375e5d6fedSRoopa Prabhu struct flow_keys *keys, 19385e5d6fedSRoopa Prabhu struct flow_keys *flkeys) 193923aebdacSJakub Sitnicki { 194023aebdacSJakub Sitnicki const struct ipv6hdr *outer_iph = ipv6_hdr(skb); 194123aebdacSJakub Sitnicki const struct ipv6hdr *key_iph = outer_iph; 19425e5d6fedSRoopa Prabhu struct flow_keys *_flkeys = flkeys; 194323aebdacSJakub Sitnicki const struct ipv6hdr *inner_iph; 194423aebdacSJakub Sitnicki const struct icmp6hdr *icmph; 194523aebdacSJakub Sitnicki struct ipv6hdr _inner_iph; 1946cea67a2dSEric Dumazet struct icmp6hdr _icmph; 194723aebdacSJakub Sitnicki 194823aebdacSJakub Sitnicki if (likely(outer_iph->nexthdr != IPPROTO_ICMPV6)) 194923aebdacSJakub Sitnicki goto out; 195023aebdacSJakub Sitnicki 1951cea67a2dSEric Dumazet icmph = skb_header_pointer(skb, skb_transport_offset(skb), 1952cea67a2dSEric Dumazet sizeof(_icmph), &_icmph); 1953cea67a2dSEric Dumazet if (!icmph) 1954cea67a2dSEric Dumazet goto out; 1955cea67a2dSEric Dumazet 195623aebdacSJakub Sitnicki if (icmph->icmp6_type != ICMPV6_DEST_UNREACH && 195723aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PKT_TOOBIG && 195823aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_TIME_EXCEED && 195923aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PARAMPROB) 196023aebdacSJakub Sitnicki goto out; 196123aebdacSJakub Sitnicki 196223aebdacSJakub Sitnicki inner_iph = skb_header_pointer(skb, 196323aebdacSJakub Sitnicki skb_transport_offset(skb) + sizeof(*icmph), 196423aebdacSJakub Sitnicki sizeof(_inner_iph), &_inner_iph); 196523aebdacSJakub Sitnicki if (!inner_iph) 196623aebdacSJakub Sitnicki goto out; 196723aebdacSJakub Sitnicki 196823aebdacSJakub Sitnicki key_iph = inner_iph; 19695e5d6fedSRoopa Prabhu _flkeys = NULL; 197023aebdacSJakub Sitnicki out: 19715e5d6fedSRoopa Prabhu if (_flkeys) { 19725e5d6fedSRoopa Prabhu keys->addrs.v6addrs.src = _flkeys->addrs.v6addrs.src; 19735e5d6fedSRoopa Prabhu keys->addrs.v6addrs.dst = _flkeys->addrs.v6addrs.dst; 19745e5d6fedSRoopa Prabhu keys->tags.flow_label = _flkeys->tags.flow_label; 19755e5d6fedSRoopa Prabhu keys->basic.ip_proto = _flkeys->basic.ip_proto; 19765e5d6fedSRoopa Prabhu } else { 197723aebdacSJakub Sitnicki keys->addrs.v6addrs.src = key_iph->saddr; 197823aebdacSJakub Sitnicki keys->addrs.v6addrs.dst = key_iph->daddr; 1979fa1be7e0SMichal Kubecek keys->tags.flow_label = ip6_flowlabel(key_iph); 198023aebdacSJakub Sitnicki keys->basic.ip_proto = key_iph->nexthdr; 198123aebdacSJakub Sitnicki } 19825e5d6fedSRoopa Prabhu } 198323aebdacSJakub Sitnicki 198423aebdacSJakub Sitnicki /* if skb is set it will be used and fl6 can be NULL */ 1985b4bac172SDavid Ahern u32 rt6_multipath_hash(const struct net *net, const struct flowi6 *fl6, 1986b4bac172SDavid Ahern const struct sk_buff *skb, struct flow_keys *flkeys) 198723aebdacSJakub Sitnicki { 198823aebdacSJakub Sitnicki struct flow_keys hash_keys; 19899a2a537aSDavid Ahern u32 mhash; 199023aebdacSJakub Sitnicki 1991bbfa047aSDavid S. Miller switch (ip6_multipath_hash_policy(net)) { 1992b4bac172SDavid Ahern case 0: 19936f74b6c2SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 19946f74b6c2SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 19959a2a537aSDavid Ahern if (skb) { 19965e5d6fedSRoopa Prabhu ip6_multipath_l3_keys(skb, &hash_keys, flkeys); 19979a2a537aSDavid Ahern } else { 19989a2a537aSDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 19999a2a537aSDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 2000fa1be7e0SMichal Kubecek hash_keys.tags.flow_label = (__force u32)flowi6_get_flowlabel(fl6); 20019a2a537aSDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 200223aebdacSJakub Sitnicki } 2003b4bac172SDavid Ahern break; 2004b4bac172SDavid Ahern case 1: 2005b4bac172SDavid Ahern if (skb) { 2006b4bac172SDavid Ahern unsigned int flag = FLOW_DISSECTOR_F_STOP_AT_ENCAP; 2007b4bac172SDavid Ahern struct flow_keys keys; 2008b4bac172SDavid Ahern 2009b4bac172SDavid Ahern /* short-circuit if we already have L4 hash present */ 2010b4bac172SDavid Ahern if (skb->l4_hash) 2011b4bac172SDavid Ahern return skb_get_hash_raw(skb) >> 1; 2012b4bac172SDavid Ahern 2013b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 2014b4bac172SDavid Ahern 2015b4bac172SDavid Ahern if (!flkeys) { 2016b4bac172SDavid Ahern skb_flow_dissect_flow_keys(skb, &keys, flag); 2017b4bac172SDavid Ahern flkeys = &keys; 2018b4bac172SDavid Ahern } 2019b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 2020b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = flkeys->addrs.v6addrs.src; 2021b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = flkeys->addrs.v6addrs.dst; 2022b4bac172SDavid Ahern hash_keys.ports.src = flkeys->ports.src; 2023b4bac172SDavid Ahern hash_keys.ports.dst = flkeys->ports.dst; 2024b4bac172SDavid Ahern hash_keys.basic.ip_proto = flkeys->basic.ip_proto; 2025b4bac172SDavid Ahern } else { 2026b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 2027b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 2028b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 2029b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 2030b4bac172SDavid Ahern hash_keys.ports.src = fl6->fl6_sport; 2031b4bac172SDavid Ahern hash_keys.ports.dst = fl6->fl6_dport; 2032b4bac172SDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 2033b4bac172SDavid Ahern } 2034b4bac172SDavid Ahern break; 2035b4bac172SDavid Ahern } 20369a2a537aSDavid Ahern mhash = flow_hash_from_keys(&hash_keys); 203723aebdacSJakub Sitnicki 20389a2a537aSDavid Ahern return mhash >> 1; 203923aebdacSJakub Sitnicki } 204023aebdacSJakub Sitnicki 2041c71099acSThomas Graf void ip6_route_input(struct sk_buff *skb) 2042c71099acSThomas Graf { 2043b71d1d42SEric Dumazet const struct ipv6hdr *iph = ipv6_hdr(skb); 2044c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(skb->dev); 2045adaa70bbSThomas Graf int flags = RT6_LOOKUP_F_HAS_SADDR; 2046904af04dSJiri Benc struct ip_tunnel_info *tun_info; 20474c9483b2SDavid S. Miller struct flowi6 fl6 = { 2048e0d56fddSDavid Ahern .flowi6_iif = skb->dev->ifindex, 20494c9483b2SDavid S. Miller .daddr = iph->daddr, 20504c9483b2SDavid S. Miller .saddr = iph->saddr, 20516502ca52SYOSHIFUJI Hideaki / 吉藤英明 .flowlabel = ip6_flowinfo(iph), 20524c9483b2SDavid S. Miller .flowi6_mark = skb->mark, 20534c9483b2SDavid S. Miller .flowi6_proto = iph->nexthdr, 2054c71099acSThomas Graf }; 20555e5d6fedSRoopa Prabhu struct flow_keys *flkeys = NULL, _flkeys; 2056adaa70bbSThomas Graf 2057904af04dSJiri Benc tun_info = skb_tunnel_info(skb); 205846fa062aSJiri Benc if (tun_info && !(tun_info->mode & IP_TUNNEL_INFO_TX)) 2059904af04dSJiri Benc fl6.flowi6_tun_key.tun_id = tun_info->key.tun_id; 20605e5d6fedSRoopa Prabhu 20615e5d6fedSRoopa Prabhu if (fib6_rules_early_flow_dissect(net, skb, &fl6, &_flkeys)) 20625e5d6fedSRoopa Prabhu flkeys = &_flkeys; 20635e5d6fedSRoopa Prabhu 206423aebdacSJakub Sitnicki if (unlikely(fl6.flowi6_proto == IPPROTO_ICMPV6)) 2065b4bac172SDavid Ahern fl6.mp_hash = rt6_multipath_hash(net, &fl6, skb, flkeys); 206606e9d040SJiri Benc skb_dst_drop(skb); 2067b75cc8f9SDavid Ahern skb_dst_set(skb, 2068b75cc8f9SDavid Ahern ip6_route_input_lookup(net, skb->dev, &fl6, skb, flags)); 2069c71099acSThomas Graf } 2070c71099acSThomas Graf 2071b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_output(struct net *net, 2072b75cc8f9SDavid Ahern struct fib6_table *table, 2073b75cc8f9SDavid Ahern struct flowi6 *fl6, 2074b75cc8f9SDavid Ahern const struct sk_buff *skb, 2075b75cc8f9SDavid Ahern int flags) 2076c71099acSThomas Graf { 2077b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_oif, fl6, skb, flags); 2078c71099acSThomas Graf } 2079c71099acSThomas Graf 20806f21c96aSPaolo Abeni struct dst_entry *ip6_route_output_flags(struct net *net, const struct sock *sk, 20816f21c96aSPaolo Abeni struct flowi6 *fl6, int flags) 2082c71099acSThomas Graf { 2083d46a9d67SDavid Ahern bool any_src; 2084c71099acSThomas Graf 20853ede0bbcSRobert Shearman if (ipv6_addr_type(&fl6->daddr) & 20863ede0bbcSRobert Shearman (IPV6_ADDR_MULTICAST | IPV6_ADDR_LINKLOCAL)) { 20874c1feac5SDavid Ahern struct dst_entry *dst; 20884c1feac5SDavid Ahern 20894c1feac5SDavid Ahern dst = l3mdev_link_scope_lookup(net, fl6); 2090ca254490SDavid Ahern if (dst) 2091ca254490SDavid Ahern return dst; 20924c1feac5SDavid Ahern } 2093ca254490SDavid Ahern 20941fb9489bSPavel Emelyanov fl6->flowi6_iif = LOOPBACK_IFINDEX; 20954dc27d1cSDavid McCullough 2096d46a9d67SDavid Ahern any_src = ipv6_addr_any(&fl6->saddr); 2097741a11d9SDavid Ahern if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl6->daddr) || 2098d46a9d67SDavid Ahern (fl6->flowi6_oif && any_src)) 209977d16f45SYOSHIFUJI Hideaki flags |= RT6_LOOKUP_F_IFACE; 2100c71099acSThomas Graf 2101d46a9d67SDavid Ahern if (!any_src) 2102adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 21030c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 else if (sk) 21040c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs); 2105adaa70bbSThomas Graf 2106b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, NULL, flags, ip6_pol_route_output); 21071da177e4SLinus Torvalds } 21086f21c96aSPaolo Abeni EXPORT_SYMBOL_GPL(ip6_route_output_flags); 21091da177e4SLinus Torvalds 21102774c131SDavid S. Miller struct dst_entry *ip6_blackhole_route(struct net *net, struct dst_entry *dst_orig) 211114e50e57SDavid S. Miller { 21125c1e6aa3SDavid S. Miller struct rt6_info *rt, *ort = (struct rt6_info *) dst_orig; 21131dbe3252SWei Wang struct net_device *loopback_dev = net->loopback_dev; 211414e50e57SDavid S. Miller struct dst_entry *new = NULL; 211514e50e57SDavid S. Miller 21161dbe3252SWei Wang rt = dst_alloc(&ip6_dst_blackhole_ops, loopback_dev, 1, 211762cf27e5SSteffen Klassert DST_OBSOLETE_DEAD, 0); 211814e50e57SDavid S. Miller if (rt) { 21190a1f5962SMartin KaFai Lau rt6_info_init(rt); 212081eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 21210a1f5962SMartin KaFai Lau 2122d8d1f30bSChangli Gao new = &rt->dst; 212314e50e57SDavid S. Miller new->__use = 1; 2124352e512cSHerbert Xu new->input = dst_discard; 2125ede2059dSEric W. Biederman new->output = dst_discard_out; 212614e50e57SDavid S. Miller 2127defb3519SDavid S. Miller dst_copy_metrics(new, &ort->dst); 212814e50e57SDavid S. Miller 21291dbe3252SWei Wang rt->rt6i_idev = in6_dev_get(loopback_dev); 21304e3fd7a0SAlexey Dobriyan rt->rt6i_gateway = ort->rt6i_gateway; 21310a1f5962SMartin KaFai Lau rt->rt6i_flags = ort->rt6i_flags & ~RTF_PCPU; 213214e50e57SDavid S. Miller 213314e50e57SDavid S. Miller memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key)); 213414e50e57SDavid S. Miller #ifdef CONFIG_IPV6_SUBTREES 213514e50e57SDavid S. Miller memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key)); 213614e50e57SDavid S. Miller #endif 213714e50e57SDavid S. Miller } 213814e50e57SDavid S. Miller 213969ead7afSDavid S. Miller dst_release(dst_orig); 214069ead7afSDavid S. Miller return new ? new : ERR_PTR(-ENOMEM); 214114e50e57SDavid S. Miller } 214214e50e57SDavid S. Miller 21431da177e4SLinus Torvalds /* 21441da177e4SLinus Torvalds * Destination cache support functions 21451da177e4SLinus Torvalds */ 21461da177e4SLinus Torvalds 21478d1c802bSDavid Ahern static bool fib6_check(struct fib6_info *f6i, u32 cookie) 21483da59bd9SMartin KaFai Lau { 214936143645SSteffen Klassert u32 rt_cookie = 0; 2150c5cff856SWei Wang 21518ae86971SDavid Ahern if (!fib6_get_cookie_safe(f6i, &rt_cookie) || rt_cookie != cookie) 215293531c67SDavid Ahern return false; 215393531c67SDavid Ahern 215493531c67SDavid Ahern if (fib6_check_expired(f6i)) 215593531c67SDavid Ahern return false; 215693531c67SDavid Ahern 215793531c67SDavid Ahern return true; 215893531c67SDavid Ahern } 215993531c67SDavid Ahern 2160a68886a6SDavid Ahern static struct dst_entry *rt6_check(struct rt6_info *rt, 2161a68886a6SDavid Ahern struct fib6_info *from, 2162a68886a6SDavid Ahern u32 cookie) 21633da59bd9SMartin KaFai Lau { 2164c5cff856SWei Wang u32 rt_cookie = 0; 2165c5cff856SWei Wang 2166a68886a6SDavid Ahern if ((from && !fib6_get_cookie_safe(from, &rt_cookie)) || 216793531c67SDavid Ahern rt_cookie != cookie) 21683da59bd9SMartin KaFai Lau return NULL; 21693da59bd9SMartin KaFai Lau 21703da59bd9SMartin KaFai Lau if (rt6_check_expired(rt)) 21713da59bd9SMartin KaFai Lau return NULL; 21723da59bd9SMartin KaFai Lau 21733da59bd9SMartin KaFai Lau return &rt->dst; 21743da59bd9SMartin KaFai Lau } 21753da59bd9SMartin KaFai Lau 2176a68886a6SDavid Ahern static struct dst_entry *rt6_dst_from_check(struct rt6_info *rt, 2177a68886a6SDavid Ahern struct fib6_info *from, 2178a68886a6SDavid Ahern u32 cookie) 21793da59bd9SMartin KaFai Lau { 21805973fb1eSMartin KaFai Lau if (!__rt6_check_expired(rt) && 21815973fb1eSMartin KaFai Lau rt->dst.obsolete == DST_OBSOLETE_FORCE_CHK && 2182a68886a6SDavid Ahern fib6_check(from, cookie)) 21833da59bd9SMartin KaFai Lau return &rt->dst; 21843da59bd9SMartin KaFai Lau else 21853da59bd9SMartin KaFai Lau return NULL; 21863da59bd9SMartin KaFai Lau } 21873da59bd9SMartin KaFai Lau 21881da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie) 21891da177e4SLinus Torvalds { 2190a87b7dc9SDavid Ahern struct dst_entry *dst_ret; 2191a68886a6SDavid Ahern struct fib6_info *from; 21921da177e4SLinus Torvalds struct rt6_info *rt; 21931da177e4SLinus Torvalds 2194a87b7dc9SDavid Ahern rt = container_of(dst, struct rt6_info, dst); 2195a87b7dc9SDavid Ahern 2196a87b7dc9SDavid Ahern rcu_read_lock(); 21971da177e4SLinus Torvalds 21986f3118b5SNicolas Dichtel /* All IPV6 dsts are created with ->obsolete set to the value 21996f3118b5SNicolas Dichtel * DST_OBSOLETE_FORCE_CHK which forces validation calls down 22006f3118b5SNicolas Dichtel * into this function always. 22016f3118b5SNicolas Dichtel */ 2202e3bc10bdSHannes Frederic Sowa 2203a68886a6SDavid Ahern from = rcu_dereference(rt->from); 22044b32b5adSMartin KaFai Lau 2205a68886a6SDavid Ahern if (from && (rt->rt6i_flags & RTF_PCPU || 2206a68886a6SDavid Ahern unlikely(!list_empty(&rt->rt6i_uncached)))) 2207a68886a6SDavid Ahern dst_ret = rt6_dst_from_check(rt, from, cookie); 22083da59bd9SMartin KaFai Lau else 2209a68886a6SDavid Ahern dst_ret = rt6_check(rt, from, cookie); 2210a87b7dc9SDavid Ahern 2211a87b7dc9SDavid Ahern rcu_read_unlock(); 2212a87b7dc9SDavid Ahern 2213a87b7dc9SDavid Ahern return dst_ret; 22141da177e4SLinus Torvalds } 22151da177e4SLinus Torvalds 22161da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *dst) 22171da177e4SLinus Torvalds { 22181da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *) dst; 22191da177e4SLinus Torvalds 22201da177e4SLinus Torvalds if (rt) { 222154c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt->rt6i_flags & RTF_CACHE) { 2222c3c14da0SDavid Ahern rcu_read_lock(); 222354c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt6_check_expired(rt)) { 222493531c67SDavid Ahern rt6_remove_exception_rt(rt); 222554c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 22261da177e4SLinus Torvalds } 2227c3c14da0SDavid Ahern rcu_read_unlock(); 222854c1a859SYOSHIFUJI Hideaki / 吉藤英明 } else { 222954c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst_release(dst); 223054c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 223154c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 223254c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 223354c1a859SYOSHIFUJI Hideaki / 吉藤英明 return dst; 22341da177e4SLinus Torvalds } 22351da177e4SLinus Torvalds 22361da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb) 22371da177e4SLinus Torvalds { 22381da177e4SLinus Torvalds struct rt6_info *rt; 22391da177e4SLinus Torvalds 22403ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0); 22411da177e4SLinus Torvalds 2242adf30907SEric Dumazet rt = (struct rt6_info *) skb_dst(skb); 22431da177e4SLinus Torvalds if (rt) { 22448a14e46fSDavid Ahern rcu_read_lock(); 22451eb4f758SHannes Frederic Sowa if (rt->rt6i_flags & RTF_CACHE) { 224693531c67SDavid Ahern rt6_remove_exception_rt(rt); 2247c5cff856SWei Wang } else { 2248a68886a6SDavid Ahern struct fib6_info *from; 2249c5cff856SWei Wang struct fib6_node *fn; 2250c5cff856SWei Wang 2251a68886a6SDavid Ahern from = rcu_dereference(rt->from); 2252a68886a6SDavid Ahern if (from) { 2253a68886a6SDavid Ahern fn = rcu_dereference(from->fib6_node); 2254c5cff856SWei Wang if (fn && (rt->rt6i_flags & RTF_DEFAULT)) 2255c5cff856SWei Wang fn->fn_sernum = -1; 2256a68886a6SDavid Ahern } 22571da177e4SLinus Torvalds } 22581da177e4SLinus Torvalds rcu_read_unlock(); 22591da177e4SLinus Torvalds } 22601da177e4SLinus Torvalds } 22611da177e4SLinus Torvalds 22626a3e030fSDavid Ahern static void rt6_update_expires(struct rt6_info *rt0, int timeout) 22636a3e030fSDavid Ahern { 2264a68886a6SDavid Ahern if (!(rt0->rt6i_flags & RTF_EXPIRES)) { 2265a68886a6SDavid Ahern struct fib6_info *from; 2266a68886a6SDavid Ahern 2267a68886a6SDavid Ahern rcu_read_lock(); 2268a68886a6SDavid Ahern from = rcu_dereference(rt0->from); 2269a68886a6SDavid Ahern if (from) 2270a68886a6SDavid Ahern rt0->dst.expires = from->expires; 2271a68886a6SDavid Ahern rcu_read_unlock(); 2272a68886a6SDavid Ahern } 22736a3e030fSDavid Ahern 22746a3e030fSDavid Ahern dst_set_expires(&rt0->dst, timeout); 22756a3e030fSDavid Ahern rt0->rt6i_flags |= RTF_EXPIRES; 22766700c270SDavid S. Miller } 22771da177e4SLinus Torvalds 227845e4fd26SMartin KaFai Lau static void rt6_do_update_pmtu(struct rt6_info *rt, u32 mtu) 227945e4fd26SMartin KaFai Lau { 228045e4fd26SMartin KaFai Lau struct net *net = dev_net(rt->dst.dev); 228145e4fd26SMartin KaFai Lau 2282d4ead6b3SDavid Ahern dst_metric_set(&rt->dst, RTAX_MTU, mtu); 228345e4fd26SMartin KaFai Lau rt->rt6i_flags |= RTF_MODIFIED; 228445e4fd26SMartin KaFai Lau rt6_update_expires(rt, net->ipv6.sysctl.ip6_rt_mtu_expires); 228545e4fd26SMartin KaFai Lau } 228645e4fd26SMartin KaFai Lau 22870d3f6d29SMartin KaFai Lau static bool rt6_cache_allowed_for_pmtu(const struct rt6_info *rt) 22880d3f6d29SMartin KaFai Lau { 22890d3f6d29SMartin KaFai Lau return !(rt->rt6i_flags & RTF_CACHE) && 22901490ed2aSPaolo Abeni (rt->rt6i_flags & RTF_PCPU || rcu_access_pointer(rt->from)); 22910d3f6d29SMartin KaFai Lau } 22920d3f6d29SMartin KaFai Lau 229345e4fd26SMartin KaFai Lau static void __ip6_rt_update_pmtu(struct dst_entry *dst, const struct sock *sk, 229445e4fd26SMartin KaFai Lau const struct ipv6hdr *iph, u32 mtu) 22951da177e4SLinus Torvalds { 22960dec879fSJulian Anastasov const struct in6_addr *daddr, *saddr; 22971da177e4SLinus Torvalds struct rt6_info *rt6 = (struct rt6_info *)dst; 22981da177e4SLinus Torvalds 229919bda36cSXin Long if (dst_metric_locked(dst, RTAX_MTU)) 230019bda36cSXin Long return; 230119bda36cSXin Long 230245e4fd26SMartin KaFai Lau if (iph) { 230345e4fd26SMartin KaFai Lau daddr = &iph->daddr; 230445e4fd26SMartin KaFai Lau saddr = &iph->saddr; 230545e4fd26SMartin KaFai Lau } else if (sk) { 230645e4fd26SMartin KaFai Lau daddr = &sk->sk_v6_daddr; 230745e4fd26SMartin KaFai Lau saddr = &inet6_sk(sk)->saddr; 230845e4fd26SMartin KaFai Lau } else { 23090dec879fSJulian Anastasov daddr = NULL; 23100dec879fSJulian Anastasov saddr = NULL; 23111da177e4SLinus Torvalds } 23120dec879fSJulian Anastasov dst_confirm_neigh(dst, daddr); 23130dec879fSJulian Anastasov mtu = max_t(u32, mtu, IPV6_MIN_MTU); 23140dec879fSJulian Anastasov if (mtu >= dst_mtu(dst)) 23150dec879fSJulian Anastasov return; 23160dec879fSJulian Anastasov 23170dec879fSJulian Anastasov if (!rt6_cache_allowed_for_pmtu(rt6)) { 23180dec879fSJulian Anastasov rt6_do_update_pmtu(rt6, mtu); 23192b760fcfSWei Wang /* update rt6_ex->stamp for cache */ 23202b760fcfSWei Wang if (rt6->rt6i_flags & RTF_CACHE) 23212b760fcfSWei Wang rt6_update_exception_stamp_rt(rt6); 23220dec879fSJulian Anastasov } else if (daddr) { 2323a68886a6SDavid Ahern struct fib6_info *from; 23240dec879fSJulian Anastasov struct rt6_info *nrt6; 23250dec879fSJulian Anastasov 23264d85cd0cSDavid Ahern rcu_read_lock(); 2327a68886a6SDavid Ahern from = rcu_dereference(rt6->from); 23289c69a132SJonathan Lemon if (!from) { 23299c69a132SJonathan Lemon rcu_read_unlock(); 23309c69a132SJonathan Lemon return; 23319c69a132SJonathan Lemon } 2332a68886a6SDavid Ahern nrt6 = ip6_rt_cache_alloc(from, daddr, saddr); 233345e4fd26SMartin KaFai Lau if (nrt6) { 233445e4fd26SMartin KaFai Lau rt6_do_update_pmtu(nrt6, mtu); 2335a68886a6SDavid Ahern if (rt6_insert_exception(nrt6, from)) 23362b760fcfSWei Wang dst_release_immediate(&nrt6->dst); 233745e4fd26SMartin KaFai Lau } 2338a68886a6SDavid Ahern rcu_read_unlock(); 233945e4fd26SMartin KaFai Lau } 234045e4fd26SMartin KaFai Lau } 234145e4fd26SMartin KaFai Lau 234245e4fd26SMartin KaFai Lau static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 234345e4fd26SMartin KaFai Lau struct sk_buff *skb, u32 mtu) 234445e4fd26SMartin KaFai Lau { 234545e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, sk, skb ? ipv6_hdr(skb) : NULL, mtu); 23461da177e4SLinus Torvalds } 23471da177e4SLinus Torvalds 234842ae66c8SDavid S. Miller void ip6_update_pmtu(struct sk_buff *skb, struct net *net, __be32 mtu, 2349e2d118a1SLorenzo Colitti int oif, u32 mark, kuid_t uid) 235081aded24SDavid S. Miller { 235181aded24SDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 235281aded24SDavid S. Miller struct dst_entry *dst; 2353dc92095dSMaciej Żenczykowski struct flowi6 fl6 = { 2354dc92095dSMaciej Żenczykowski .flowi6_oif = oif, 2355dc92095dSMaciej Żenczykowski .flowi6_mark = mark ? mark : IP6_REPLY_MARK(net, skb->mark), 2356dc92095dSMaciej Żenczykowski .daddr = iph->daddr, 2357dc92095dSMaciej Żenczykowski .saddr = iph->saddr, 2358dc92095dSMaciej Żenczykowski .flowlabel = ip6_flowinfo(iph), 2359dc92095dSMaciej Żenczykowski .flowi6_uid = uid, 2360dc92095dSMaciej Żenczykowski }; 236181aded24SDavid S. Miller 236281aded24SDavid S. Miller dst = ip6_route_output(net, NULL, &fl6); 236381aded24SDavid S. Miller if (!dst->error) 236445e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, NULL, iph, ntohl(mtu)); 236581aded24SDavid S. Miller dst_release(dst); 236681aded24SDavid S. Miller } 236781aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_update_pmtu); 236881aded24SDavid S. Miller 236981aded24SDavid S. Miller void ip6_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, __be32 mtu) 237081aded24SDavid S. Miller { 23717ddacfa5SDavid Ahern int oif = sk->sk_bound_dev_if; 237233c162a9SMartin KaFai Lau struct dst_entry *dst; 237333c162a9SMartin KaFai Lau 23747ddacfa5SDavid Ahern if (!oif && skb->dev) 23757ddacfa5SDavid Ahern oif = l3mdev_master_ifindex(skb->dev); 23767ddacfa5SDavid Ahern 23777ddacfa5SDavid Ahern ip6_update_pmtu(skb, sock_net(sk), mtu, oif, sk->sk_mark, sk->sk_uid); 237833c162a9SMartin KaFai Lau 237933c162a9SMartin KaFai Lau dst = __sk_dst_get(sk); 238033c162a9SMartin KaFai Lau if (!dst || !dst->obsolete || 238133c162a9SMartin KaFai Lau dst->ops->check(dst, inet6_sk(sk)->dst_cookie)) 238233c162a9SMartin KaFai Lau return; 238333c162a9SMartin KaFai Lau 238433c162a9SMartin KaFai Lau bh_lock_sock(sk); 238533c162a9SMartin KaFai Lau if (!sock_owned_by_user(sk) && !ipv6_addr_v4mapped(&sk->sk_v6_daddr)) 238633c162a9SMartin KaFai Lau ip6_datagram_dst_update(sk, false); 238733c162a9SMartin KaFai Lau bh_unlock_sock(sk); 238881aded24SDavid S. Miller } 238981aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_update_pmtu); 239081aded24SDavid S. Miller 23917d6850f7SAlexey Kodanev void ip6_sk_dst_store_flow(struct sock *sk, struct dst_entry *dst, 23927d6850f7SAlexey Kodanev const struct flowi6 *fl6) 23937d6850f7SAlexey Kodanev { 23947d6850f7SAlexey Kodanev #ifdef CONFIG_IPV6_SUBTREES 23957d6850f7SAlexey Kodanev struct ipv6_pinfo *np = inet6_sk(sk); 23967d6850f7SAlexey Kodanev #endif 23977d6850f7SAlexey Kodanev 23987d6850f7SAlexey Kodanev ip6_dst_store(sk, dst, 23997d6850f7SAlexey Kodanev ipv6_addr_equal(&fl6->daddr, &sk->sk_v6_daddr) ? 24007d6850f7SAlexey Kodanev &sk->sk_v6_daddr : NULL, 24017d6850f7SAlexey Kodanev #ifdef CONFIG_IPV6_SUBTREES 24027d6850f7SAlexey Kodanev ipv6_addr_equal(&fl6->saddr, &np->saddr) ? 24037d6850f7SAlexey Kodanev &np->saddr : 24047d6850f7SAlexey Kodanev #endif 24057d6850f7SAlexey Kodanev NULL); 24067d6850f7SAlexey Kodanev } 24077d6850f7SAlexey Kodanev 2408b55b76b2SDuan Jiong /* Handle redirects */ 2409b55b76b2SDuan Jiong struct ip6rd_flowi { 2410b55b76b2SDuan Jiong struct flowi6 fl6; 2411b55b76b2SDuan Jiong struct in6_addr gateway; 2412b55b76b2SDuan Jiong }; 2413b55b76b2SDuan Jiong 2414b55b76b2SDuan Jiong static struct rt6_info *__ip6_route_redirect(struct net *net, 2415b55b76b2SDuan Jiong struct fib6_table *table, 2416b55b76b2SDuan Jiong struct flowi6 *fl6, 2417b75cc8f9SDavid Ahern const struct sk_buff *skb, 2418b55b76b2SDuan Jiong int flags) 2419b55b76b2SDuan Jiong { 2420b55b76b2SDuan Jiong struct ip6rd_flowi *rdfl = (struct ip6rd_flowi *)fl6; 242123fb93a4SDavid Ahern struct rt6_info *ret = NULL, *rt_cache; 24228d1c802bSDavid Ahern struct fib6_info *rt; 2423b55b76b2SDuan Jiong struct fib6_node *fn; 2424b55b76b2SDuan Jiong 2425b55b76b2SDuan Jiong /* Get the "current" route for this destination and 242667c408cfSAlexander Alemayhu * check if the redirect has come from appropriate router. 2427b55b76b2SDuan Jiong * 2428b55b76b2SDuan Jiong * RFC 4861 specifies that redirects should only be 2429b55b76b2SDuan Jiong * accepted if they come from the nexthop to the target. 2430b55b76b2SDuan Jiong * Due to the way the routes are chosen, this notion 2431b55b76b2SDuan Jiong * is a bit fuzzy and one might need to check all possible 2432b55b76b2SDuan Jiong * routes. 2433b55b76b2SDuan Jiong */ 2434b55b76b2SDuan Jiong 243566f5d6ceSWei Wang rcu_read_lock(); 24366454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 2437b55b76b2SDuan Jiong restart: 243866f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 24395e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_DEAD) 24408067bb8cSIdo Schimmel continue; 244114895687SDavid Ahern if (fib6_check_expired(rt)) 2442b55b76b2SDuan Jiong continue; 244393c2fb25SDavid Ahern if (rt->fib6_flags & RTF_REJECT) 2444b55b76b2SDuan Jiong break; 244593c2fb25SDavid Ahern if (!(rt->fib6_flags & RTF_GATEWAY)) 2446b55b76b2SDuan Jiong continue; 24475e670d84SDavid Ahern if (fl6->flowi6_oif != rt->fib6_nh.nh_dev->ifindex) 2448b55b76b2SDuan Jiong continue; 24492b760fcfSWei Wang /* rt_cache's gateway might be different from its 'parent' 24502b760fcfSWei Wang * in the case of an ip redirect. 24512b760fcfSWei Wang * So we keep searching in the exception table if the gateway 24522b760fcfSWei Wang * is different. 24532b760fcfSWei Wang */ 24545e670d84SDavid Ahern if (!ipv6_addr_equal(&rdfl->gateway, &rt->fib6_nh.nh_gw)) { 24552b760fcfSWei Wang rt_cache = rt6_find_cached_rt(rt, 24562b760fcfSWei Wang &fl6->daddr, 24572b760fcfSWei Wang &fl6->saddr); 24582b760fcfSWei Wang if (rt_cache && 24592b760fcfSWei Wang ipv6_addr_equal(&rdfl->gateway, 24602b760fcfSWei Wang &rt_cache->rt6i_gateway)) { 246123fb93a4SDavid Ahern ret = rt_cache; 24622b760fcfSWei Wang break; 24632b760fcfSWei Wang } 2464b55b76b2SDuan Jiong continue; 24652b760fcfSWei Wang } 2466b55b76b2SDuan Jiong break; 2467b55b76b2SDuan Jiong } 2468b55b76b2SDuan Jiong 2469b55b76b2SDuan Jiong if (!rt) 2470421842edSDavid Ahern rt = net->ipv6.fib6_null_entry; 247193c2fb25SDavid Ahern else if (rt->fib6_flags & RTF_REJECT) { 247223fb93a4SDavid Ahern ret = net->ipv6.ip6_null_entry; 2473b0a1ba59SMartin KaFai Lau goto out; 2474b0a1ba59SMartin KaFai Lau } 2475b0a1ba59SMartin KaFai Lau 2476421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) { 2477a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 2478a3c00e46SMartin KaFai Lau if (fn) 2479a3c00e46SMartin KaFai Lau goto restart; 2480b55b76b2SDuan Jiong } 2481a3c00e46SMartin KaFai Lau 2482b0a1ba59SMartin KaFai Lau out: 248323fb93a4SDavid Ahern if (ret) 2484e873e4b9SWei Wang ip6_hold_safe(net, &ret, true); 248523fb93a4SDavid Ahern else 248623fb93a4SDavid Ahern ret = ip6_create_rt_rcu(rt); 2487b55b76b2SDuan Jiong 248866f5d6ceSWei Wang rcu_read_unlock(); 2489b55b76b2SDuan Jiong 2490b65f164dSPaolo Abeni trace_fib6_table_lookup(net, rt, table, fl6); 249123fb93a4SDavid Ahern return ret; 2492b55b76b2SDuan Jiong }; 2493b55b76b2SDuan Jiong 2494b55b76b2SDuan Jiong static struct dst_entry *ip6_route_redirect(struct net *net, 2495b55b76b2SDuan Jiong const struct flowi6 *fl6, 2496b75cc8f9SDavid Ahern const struct sk_buff *skb, 2497b55b76b2SDuan Jiong const struct in6_addr *gateway) 2498b55b76b2SDuan Jiong { 2499b55b76b2SDuan Jiong int flags = RT6_LOOKUP_F_HAS_SADDR; 2500b55b76b2SDuan Jiong struct ip6rd_flowi rdfl; 2501b55b76b2SDuan Jiong 2502b55b76b2SDuan Jiong rdfl.fl6 = *fl6; 2503b55b76b2SDuan Jiong rdfl.gateway = *gateway; 2504b55b76b2SDuan Jiong 2505b75cc8f9SDavid Ahern return fib6_rule_lookup(net, &rdfl.fl6, skb, 2506b55b76b2SDuan Jiong flags, __ip6_route_redirect); 2507b55b76b2SDuan Jiong } 2508b55b76b2SDuan Jiong 2509e2d118a1SLorenzo Colitti void ip6_redirect(struct sk_buff *skb, struct net *net, int oif, u32 mark, 2510e2d118a1SLorenzo Colitti kuid_t uid) 25113a5ad2eeSDavid S. Miller { 25123a5ad2eeSDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 25133a5ad2eeSDavid S. Miller struct dst_entry *dst; 25141f7f10acSMaciej Żenczykowski struct flowi6 fl6 = { 25151f7f10acSMaciej Żenczykowski .flowi6_iif = LOOPBACK_IFINDEX, 25161f7f10acSMaciej Żenczykowski .flowi6_oif = oif, 25171f7f10acSMaciej Żenczykowski .flowi6_mark = mark, 25181f7f10acSMaciej Żenczykowski .daddr = iph->daddr, 25191f7f10acSMaciej Żenczykowski .saddr = iph->saddr, 25201f7f10acSMaciej Żenczykowski .flowlabel = ip6_flowinfo(iph), 25211f7f10acSMaciej Żenczykowski .flowi6_uid = uid, 25221f7f10acSMaciej Żenczykowski }; 25233a5ad2eeSDavid S. Miller 2524b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &ipv6_hdr(skb)->saddr); 25256700c270SDavid S. Miller rt6_do_redirect(dst, NULL, skb); 25263a5ad2eeSDavid S. Miller dst_release(dst); 25273a5ad2eeSDavid S. Miller } 25283a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_redirect); 25293a5ad2eeSDavid S. Miller 2530d456336dSMaciej Żenczykowski void ip6_redirect_no_header(struct sk_buff *skb, struct net *net, int oif) 2531c92a59ecSDuan Jiong { 2532c92a59ecSDuan Jiong const struct ipv6hdr *iph = ipv6_hdr(skb); 2533c92a59ecSDuan Jiong const struct rd_msg *msg = (struct rd_msg *)icmp6_hdr(skb); 2534c92a59ecSDuan Jiong struct dst_entry *dst; 25350b26fb17SMaciej Żenczykowski struct flowi6 fl6 = { 25360b26fb17SMaciej Żenczykowski .flowi6_iif = LOOPBACK_IFINDEX, 25370b26fb17SMaciej Żenczykowski .flowi6_oif = oif, 25380b26fb17SMaciej Żenczykowski .daddr = msg->dest, 25390b26fb17SMaciej Żenczykowski .saddr = iph->daddr, 25400b26fb17SMaciej Żenczykowski .flowi6_uid = sock_net_uid(net, NULL), 25410b26fb17SMaciej Żenczykowski }; 2542c92a59ecSDuan Jiong 2543b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &iph->saddr); 2544c92a59ecSDuan Jiong rt6_do_redirect(dst, NULL, skb); 2545c92a59ecSDuan Jiong dst_release(dst); 2546c92a59ecSDuan Jiong } 2547c92a59ecSDuan Jiong 25483a5ad2eeSDavid S. Miller void ip6_sk_redirect(struct sk_buff *skb, struct sock *sk) 25493a5ad2eeSDavid S. Miller { 2550e2d118a1SLorenzo Colitti ip6_redirect(skb, sock_net(sk), sk->sk_bound_dev_if, sk->sk_mark, 2551e2d118a1SLorenzo Colitti sk->sk_uid); 25523a5ad2eeSDavid S. Miller } 25533a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_redirect); 25543a5ad2eeSDavid S. Miller 25550dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst) 25561da177e4SLinus Torvalds { 25570dbaee3bSDavid S. Miller struct net_device *dev = dst->dev; 25580dbaee3bSDavid S. Miller unsigned int mtu = dst_mtu(dst); 25590dbaee3bSDavid S. Miller struct net *net = dev_net(dev); 25600dbaee3bSDavid S. Miller 25611da177e4SLinus Torvalds mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr); 25621da177e4SLinus Torvalds 25635578689aSDaniel Lezcano if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss) 25645578689aSDaniel Lezcano mtu = net->ipv6.sysctl.ip6_rt_min_advmss; 25651da177e4SLinus Torvalds 25661da177e4SLinus Torvalds /* 25671da177e4SLinus Torvalds * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and 25681da177e4SLinus Torvalds * corresponding MSS is IPV6_MAXPLEN - tcp_header_size. 25691da177e4SLinus Torvalds * IPV6_MAXPLEN is also valid and means: "any MSS, 25701da177e4SLinus Torvalds * rely only on pmtu discovery" 25711da177e4SLinus Torvalds */ 25721da177e4SLinus Torvalds if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr)) 25731da177e4SLinus Torvalds mtu = IPV6_MAXPLEN; 25741da177e4SLinus Torvalds return mtu; 25751da177e4SLinus Torvalds } 25761da177e4SLinus Torvalds 2577ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst) 2578d33e4553SDavid S. Miller { 2579d33e4553SDavid S. Miller struct inet6_dev *idev; 2580d4ead6b3SDavid Ahern unsigned int mtu; 2581618f9bc7SSteffen Klassert 25824b32b5adSMartin KaFai Lau mtu = dst_metric_raw(dst, RTAX_MTU); 25834b32b5adSMartin KaFai Lau if (mtu) 25844b32b5adSMartin KaFai Lau goto out; 25854b32b5adSMartin KaFai Lau 2586618f9bc7SSteffen Klassert mtu = IPV6_MIN_MTU; 2587d33e4553SDavid S. Miller 2588d33e4553SDavid S. Miller rcu_read_lock(); 2589d33e4553SDavid S. Miller idev = __in6_dev_get(dst->dev); 2590d33e4553SDavid S. Miller if (idev) 2591d33e4553SDavid S. Miller mtu = idev->cnf.mtu6; 2592d33e4553SDavid S. Miller rcu_read_unlock(); 2593d33e4553SDavid S. Miller 259430f78d8eSEric Dumazet out: 259514972cbdSRoopa Prabhu mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 259614972cbdSRoopa Prabhu 259714972cbdSRoopa Prabhu return mtu - lwtunnel_headroom(dst->lwtstate, mtu); 2598d33e4553SDavid S. Miller } 2599d33e4553SDavid S. Miller 2600901731b8SDavid Ahern /* MTU selection: 2601901731b8SDavid Ahern * 1. mtu on route is locked - use it 2602901731b8SDavid Ahern * 2. mtu from nexthop exception 2603901731b8SDavid Ahern * 3. mtu from egress device 2604901731b8SDavid Ahern * 2605901731b8SDavid Ahern * based on ip6_dst_mtu_forward and exception logic of 2606901731b8SDavid Ahern * rt6_find_cached_rt; called with rcu_read_lock 2607901731b8SDavid Ahern */ 2608901731b8SDavid Ahern u32 ip6_mtu_from_fib6(struct fib6_info *f6i, struct in6_addr *daddr, 2609901731b8SDavid Ahern struct in6_addr *saddr) 2610901731b8SDavid Ahern { 2611901731b8SDavid Ahern struct rt6_exception_bucket *bucket; 2612901731b8SDavid Ahern struct rt6_exception *rt6_ex; 2613901731b8SDavid Ahern struct in6_addr *src_key; 2614901731b8SDavid Ahern struct inet6_dev *idev; 2615901731b8SDavid Ahern u32 mtu = 0; 2616901731b8SDavid Ahern 2617901731b8SDavid Ahern if (unlikely(fib6_metric_locked(f6i, RTAX_MTU))) { 2618901731b8SDavid Ahern mtu = f6i->fib6_pmtu; 2619901731b8SDavid Ahern if (mtu) 2620901731b8SDavid Ahern goto out; 2621901731b8SDavid Ahern } 2622901731b8SDavid Ahern 2623901731b8SDavid Ahern src_key = NULL; 2624901731b8SDavid Ahern #ifdef CONFIG_IPV6_SUBTREES 2625901731b8SDavid Ahern if (f6i->fib6_src.plen) 2626901731b8SDavid Ahern src_key = saddr; 2627901731b8SDavid Ahern #endif 2628901731b8SDavid Ahern 2629901731b8SDavid Ahern bucket = rcu_dereference(f6i->rt6i_exception_bucket); 2630901731b8SDavid Ahern rt6_ex = __rt6_find_exception_rcu(&bucket, daddr, src_key); 2631901731b8SDavid Ahern if (rt6_ex && !rt6_check_expired(rt6_ex->rt6i)) 2632901731b8SDavid Ahern mtu = dst_metric_raw(&rt6_ex->rt6i->dst, RTAX_MTU); 2633901731b8SDavid Ahern 2634901731b8SDavid Ahern if (likely(!mtu)) { 2635901731b8SDavid Ahern struct net_device *dev = fib6_info_nh_dev(f6i); 2636901731b8SDavid Ahern 2637901731b8SDavid Ahern mtu = IPV6_MIN_MTU; 2638901731b8SDavid Ahern idev = __in6_dev_get(dev); 2639901731b8SDavid Ahern if (idev && idev->cnf.mtu6 > mtu) 2640901731b8SDavid Ahern mtu = idev->cnf.mtu6; 2641901731b8SDavid Ahern } 2642901731b8SDavid Ahern 2643901731b8SDavid Ahern mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 2644901731b8SDavid Ahern out: 2645901731b8SDavid Ahern return mtu - lwtunnel_headroom(fib6_info_nh_lwt(f6i), mtu); 2646901731b8SDavid Ahern } 2647901731b8SDavid Ahern 26483b00944cSYOSHIFUJI Hideaki struct dst_entry *icmp6_dst_alloc(struct net_device *dev, 264987a11578SDavid S. Miller struct flowi6 *fl6) 26501da177e4SLinus Torvalds { 265187a11578SDavid S. Miller struct dst_entry *dst; 26521da177e4SLinus Torvalds struct rt6_info *rt; 26531da177e4SLinus Torvalds struct inet6_dev *idev = in6_dev_get(dev); 2654c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 26551da177e4SLinus Torvalds 265638308473SDavid S. Miller if (unlikely(!idev)) 2657122bdf67SEric Dumazet return ERR_PTR(-ENODEV); 26581da177e4SLinus Torvalds 2659ad706862SMartin KaFai Lau rt = ip6_dst_alloc(net, dev, 0); 266038308473SDavid S. Miller if (unlikely(!rt)) { 26611da177e4SLinus Torvalds in6_dev_put(idev); 266287a11578SDavid S. Miller dst = ERR_PTR(-ENOMEM); 26631da177e4SLinus Torvalds goto out; 26641da177e4SLinus Torvalds } 26651da177e4SLinus Torvalds 26668e2ec639SYan, Zheng rt->dst.flags |= DST_HOST; 2667588753f1SBrendan McGrath rt->dst.input = ip6_input; 26688e2ec639SYan, Zheng rt->dst.output = ip6_output; 2669550bab42SJulian Anastasov rt->rt6i_gateway = fl6->daddr; 267087a11578SDavid S. Miller rt->rt6i_dst.addr = fl6->daddr; 26718e2ec639SYan, Zheng rt->rt6i_dst.plen = 128; 26728e2ec639SYan, Zheng rt->rt6i_idev = idev; 267314edd87dSLi RongQing dst_metric_set(&rt->dst, RTAX_HOPLIMIT, 0); 26741da177e4SLinus Torvalds 26754c981e28SIdo Schimmel /* Add this dst into uncached_list so that rt6_disable_ip() can 2676587fea74SWei Wang * do proper release of the net_device 2677587fea74SWei Wang */ 2678587fea74SWei Wang rt6_uncached_list_add(rt); 267981eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 26801da177e4SLinus Torvalds 268187a11578SDavid S. Miller dst = xfrm_lookup(net, &rt->dst, flowi6_to_flowi(fl6), NULL, 0); 268287a11578SDavid S. Miller 26831da177e4SLinus Torvalds out: 268487a11578SDavid S. Miller return dst; 26851da177e4SLinus Torvalds } 26861da177e4SLinus Torvalds 2687569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops) 26881da177e4SLinus Torvalds { 268986393e52SAlexey Dobriyan struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops); 26907019b78eSDaniel Lezcano int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval; 26917019b78eSDaniel Lezcano int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size; 26927019b78eSDaniel Lezcano int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity; 26937019b78eSDaniel Lezcano int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout; 26947019b78eSDaniel Lezcano unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc; 2695fc66f95cSEric Dumazet int entries; 26961da177e4SLinus Torvalds 2697fc66f95cSEric Dumazet entries = dst_entries_get_fast(ops); 269849a18d86SMichal Kubeček if (time_after(rt_last_gc + rt_min_interval, jiffies) && 2699fc66f95cSEric Dumazet entries <= rt_max_size) 27001da177e4SLinus Torvalds goto out; 27011da177e4SLinus Torvalds 27026891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire++; 270314956643SLi RongQing fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net, true); 2704fc66f95cSEric Dumazet entries = dst_entries_get_slow(ops); 2705fc66f95cSEric Dumazet if (entries < ops->gc_thresh) 27067019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1; 27071da177e4SLinus Torvalds out: 27087019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity; 2709fc66f95cSEric Dumazet return entries > rt_max_size; 27101da177e4SLinus Torvalds } 27111da177e4SLinus Torvalds 27128c14586fSDavid Ahern static struct rt6_info *ip6_nh_lookup_table(struct net *net, 27138c14586fSDavid Ahern struct fib6_config *cfg, 2714f4797b33SDavid Ahern const struct in6_addr *gw_addr, 2715f4797b33SDavid Ahern u32 tbid, int flags) 27168c14586fSDavid Ahern { 27178c14586fSDavid Ahern struct flowi6 fl6 = { 27188c14586fSDavid Ahern .flowi6_oif = cfg->fc_ifindex, 27198c14586fSDavid Ahern .daddr = *gw_addr, 27208c14586fSDavid Ahern .saddr = cfg->fc_prefsrc, 27218c14586fSDavid Ahern }; 27228c14586fSDavid Ahern struct fib6_table *table; 27238c14586fSDavid Ahern struct rt6_info *rt; 27248c14586fSDavid Ahern 2725f4797b33SDavid Ahern table = fib6_get_table(net, tbid); 27268c14586fSDavid Ahern if (!table) 27278c14586fSDavid Ahern return NULL; 27288c14586fSDavid Ahern 27298c14586fSDavid Ahern if (!ipv6_addr_any(&cfg->fc_prefsrc)) 27308c14586fSDavid Ahern flags |= RT6_LOOKUP_F_HAS_SADDR; 27318c14586fSDavid Ahern 2732f4797b33SDavid Ahern flags |= RT6_LOOKUP_F_IGNORE_LINKSTATE; 2733b75cc8f9SDavid Ahern rt = ip6_pol_route(net, table, cfg->fc_ifindex, &fl6, NULL, flags); 27348c14586fSDavid Ahern 27358c14586fSDavid Ahern /* if table lookup failed, fall back to full lookup */ 27368c14586fSDavid Ahern if (rt == net->ipv6.ip6_null_entry) { 27378c14586fSDavid Ahern ip6_rt_put(rt); 27388c14586fSDavid Ahern rt = NULL; 27398c14586fSDavid Ahern } 27408c14586fSDavid Ahern 27418c14586fSDavid Ahern return rt; 27428c14586fSDavid Ahern } 27438c14586fSDavid Ahern 2744fc1e64e1SDavid Ahern static int ip6_route_check_nh_onlink(struct net *net, 2745fc1e64e1SDavid Ahern struct fib6_config *cfg, 27469fbb704cSDavid Ahern const struct net_device *dev, 2747fc1e64e1SDavid Ahern struct netlink_ext_ack *extack) 2748fc1e64e1SDavid Ahern { 274944750f84SDavid Ahern u32 tbid = l3mdev_fib_table(dev) ? : RT_TABLE_MAIN; 2750fc1e64e1SDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 2751fc1e64e1SDavid Ahern u32 flags = RTF_LOCAL | RTF_ANYCAST | RTF_REJECT; 2752bf1dc8baSPaolo Abeni struct fib6_info *from; 2753fc1e64e1SDavid Ahern struct rt6_info *grt; 2754fc1e64e1SDavid Ahern int err; 2755fc1e64e1SDavid Ahern 2756fc1e64e1SDavid Ahern err = 0; 2757fc1e64e1SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, tbid, 0); 2758fc1e64e1SDavid Ahern if (grt) { 2759bf1dc8baSPaolo Abeni rcu_read_lock(); 2760bf1dc8baSPaolo Abeni from = rcu_dereference(grt->from); 276158e354c0SDavid Ahern if (!grt->dst.error && 27624ed591c8SDavid Ahern /* ignore match if it is the default route */ 2763bf1dc8baSPaolo Abeni from && !ipv6_addr_any(&from->fib6_dst.addr) && 276458e354c0SDavid Ahern (grt->rt6i_flags & flags || dev != grt->dst.dev)) { 276544750f84SDavid Ahern NL_SET_ERR_MSG(extack, 276644750f84SDavid Ahern "Nexthop has invalid gateway or device mismatch"); 2767fc1e64e1SDavid Ahern err = -EINVAL; 2768fc1e64e1SDavid Ahern } 2769bf1dc8baSPaolo Abeni rcu_read_unlock(); 2770fc1e64e1SDavid Ahern 2771fc1e64e1SDavid Ahern ip6_rt_put(grt); 2772fc1e64e1SDavid Ahern } 2773fc1e64e1SDavid Ahern 2774fc1e64e1SDavid Ahern return err; 2775fc1e64e1SDavid Ahern } 2776fc1e64e1SDavid Ahern 27771edce99fSDavid Ahern static int ip6_route_check_nh(struct net *net, 27781edce99fSDavid Ahern struct fib6_config *cfg, 27791edce99fSDavid Ahern struct net_device **_dev, 27801edce99fSDavid Ahern struct inet6_dev **idev) 27811edce99fSDavid Ahern { 27821edce99fSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 27831edce99fSDavid Ahern struct net_device *dev = _dev ? *_dev : NULL; 27841edce99fSDavid Ahern struct rt6_info *grt = NULL; 27851edce99fSDavid Ahern int err = -EHOSTUNREACH; 27861edce99fSDavid Ahern 27871edce99fSDavid Ahern if (cfg->fc_table) { 2788f4797b33SDavid Ahern int flags = RT6_LOOKUP_F_IFACE; 2789f4797b33SDavid Ahern 2790f4797b33SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, 2791f4797b33SDavid Ahern cfg->fc_table, flags); 27921edce99fSDavid Ahern if (grt) { 27931edce99fSDavid Ahern if (grt->rt6i_flags & RTF_GATEWAY || 27941edce99fSDavid Ahern (dev && dev != grt->dst.dev)) { 27951edce99fSDavid Ahern ip6_rt_put(grt); 27961edce99fSDavid Ahern grt = NULL; 27971edce99fSDavid Ahern } 27981edce99fSDavid Ahern } 27991edce99fSDavid Ahern } 28001edce99fSDavid Ahern 28011edce99fSDavid Ahern if (!grt) 2802b75cc8f9SDavid Ahern grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, NULL, 1); 28031edce99fSDavid Ahern 28041edce99fSDavid Ahern if (!grt) 28051edce99fSDavid Ahern goto out; 28061edce99fSDavid Ahern 28071edce99fSDavid Ahern if (dev) { 28081edce99fSDavid Ahern if (dev != grt->dst.dev) { 28091edce99fSDavid Ahern ip6_rt_put(grt); 28101edce99fSDavid Ahern goto out; 28111edce99fSDavid Ahern } 28121edce99fSDavid Ahern } else { 28131edce99fSDavid Ahern *_dev = dev = grt->dst.dev; 28141edce99fSDavid Ahern *idev = grt->rt6i_idev; 28151edce99fSDavid Ahern dev_hold(dev); 28161edce99fSDavid Ahern in6_dev_hold(grt->rt6i_idev); 28171edce99fSDavid Ahern } 28181edce99fSDavid Ahern 28191edce99fSDavid Ahern if (!(grt->rt6i_flags & RTF_GATEWAY)) 28201edce99fSDavid Ahern err = 0; 28211edce99fSDavid Ahern 28221edce99fSDavid Ahern ip6_rt_put(grt); 28231edce99fSDavid Ahern 28241edce99fSDavid Ahern out: 28251edce99fSDavid Ahern return err; 28261edce99fSDavid Ahern } 28271edce99fSDavid Ahern 28289fbb704cSDavid Ahern static int ip6_validate_gw(struct net *net, struct fib6_config *cfg, 28299fbb704cSDavid Ahern struct net_device **_dev, struct inet6_dev **idev, 28309fbb704cSDavid Ahern struct netlink_ext_ack *extack) 28319fbb704cSDavid Ahern { 28329fbb704cSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 28339fbb704cSDavid Ahern int gwa_type = ipv6_addr_type(gw_addr); 2834232378e8SDavid Ahern bool skip_dev = gwa_type & IPV6_ADDR_LINKLOCAL ? false : true; 28359fbb704cSDavid Ahern const struct net_device *dev = *_dev; 2836232378e8SDavid Ahern bool need_addr_check = !dev; 28379fbb704cSDavid Ahern int err = -EINVAL; 28389fbb704cSDavid Ahern 28399fbb704cSDavid Ahern /* if gw_addr is local we will fail to detect this in case 28409fbb704cSDavid Ahern * address is still TENTATIVE (DAD in progress). rt6_lookup() 28419fbb704cSDavid Ahern * will return already-added prefix route via interface that 28429fbb704cSDavid Ahern * prefix route was assigned to, which might be non-loopback. 28439fbb704cSDavid Ahern */ 2844232378e8SDavid Ahern if (dev && 2845232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2846232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 28479fbb704cSDavid Ahern goto out; 28489fbb704cSDavid Ahern } 28499fbb704cSDavid Ahern 28509fbb704cSDavid Ahern if (gwa_type != (IPV6_ADDR_LINKLOCAL | IPV6_ADDR_UNICAST)) { 28519fbb704cSDavid Ahern /* IPv6 strictly inhibits using not link-local 28529fbb704cSDavid Ahern * addresses as nexthop address. 28539fbb704cSDavid Ahern * Otherwise, router will not able to send redirects. 28549fbb704cSDavid Ahern * It is very good, but in some (rare!) circumstances 28559fbb704cSDavid Ahern * (SIT, PtP, NBMA NOARP links) it is handy to allow 28569fbb704cSDavid Ahern * some exceptions. --ANK 28579fbb704cSDavid Ahern * We allow IPv4-mapped nexthops to support RFC4798-type 28589fbb704cSDavid Ahern * addressing 28599fbb704cSDavid Ahern */ 28609fbb704cSDavid Ahern if (!(gwa_type & (IPV6_ADDR_UNICAST | IPV6_ADDR_MAPPED))) { 28619fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid gateway address"); 28629fbb704cSDavid Ahern goto out; 28639fbb704cSDavid Ahern } 28649fbb704cSDavid Ahern 28659fbb704cSDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) 28669fbb704cSDavid Ahern err = ip6_route_check_nh_onlink(net, cfg, dev, extack); 28679fbb704cSDavid Ahern else 28689fbb704cSDavid Ahern err = ip6_route_check_nh(net, cfg, _dev, idev); 28699fbb704cSDavid Ahern 28709fbb704cSDavid Ahern if (err) 28719fbb704cSDavid Ahern goto out; 28729fbb704cSDavid Ahern } 28739fbb704cSDavid Ahern 28749fbb704cSDavid Ahern /* reload in case device was changed */ 28759fbb704cSDavid Ahern dev = *_dev; 28769fbb704cSDavid Ahern 28779fbb704cSDavid Ahern err = -EINVAL; 28789fbb704cSDavid Ahern if (!dev) { 28799fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Egress device not specified"); 28809fbb704cSDavid Ahern goto out; 28819fbb704cSDavid Ahern } else if (dev->flags & IFF_LOOPBACK) { 28829fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, 28839fbb704cSDavid Ahern "Egress device can not be loopback device for this route"); 28849fbb704cSDavid Ahern goto out; 28859fbb704cSDavid Ahern } 2886232378e8SDavid Ahern 2887232378e8SDavid Ahern /* if we did not check gw_addr above, do so now that the 2888232378e8SDavid Ahern * egress device has been resolved. 2889232378e8SDavid Ahern */ 2890232378e8SDavid Ahern if (need_addr_check && 2891232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2892232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 2893232378e8SDavid Ahern goto out; 2894232378e8SDavid Ahern } 2895232378e8SDavid Ahern 28969fbb704cSDavid Ahern err = 0; 28979fbb704cSDavid Ahern out: 28989fbb704cSDavid Ahern return err; 28999fbb704cSDavid Ahern } 29009fbb704cSDavid Ahern 29018d1c802bSDavid Ahern static struct fib6_info *ip6_route_info_create(struct fib6_config *cfg, 2902acb54e3cSDavid Ahern gfp_t gfp_flags, 2903333c4301SDavid Ahern struct netlink_ext_ack *extack) 29041da177e4SLinus Torvalds { 29055578689aSDaniel Lezcano struct net *net = cfg->fc_nlinfo.nl_net; 29068d1c802bSDavid Ahern struct fib6_info *rt = NULL; 29071da177e4SLinus Torvalds struct net_device *dev = NULL; 29081da177e4SLinus Torvalds struct inet6_dev *idev = NULL; 2909c71099acSThomas Graf struct fib6_table *table; 29101da177e4SLinus Torvalds int addr_type; 29118c5b83f0SRoopa Prabhu int err = -EINVAL; 29121da177e4SLinus Torvalds 2913557c44beSDavid Ahern /* RTF_PCPU is an internal flag; can not be set by userspace */ 2914d5d531cbSDavid Ahern if (cfg->fc_flags & RTF_PCPU) { 2915d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Userspace can not set RTF_PCPU"); 2916557c44beSDavid Ahern goto out; 2917d5d531cbSDavid Ahern } 2918557c44beSDavid Ahern 29192ea2352eSWei Wang /* RTF_CACHE is an internal flag; can not be set by userspace */ 29202ea2352eSWei Wang if (cfg->fc_flags & RTF_CACHE) { 29212ea2352eSWei Wang NL_SET_ERR_MSG(extack, "Userspace can not set RTF_CACHE"); 29222ea2352eSWei Wang goto out; 29232ea2352eSWei Wang } 29242ea2352eSWei Wang 2925e8478e80SDavid Ahern if (cfg->fc_type > RTN_MAX) { 2926e8478e80SDavid Ahern NL_SET_ERR_MSG(extack, "Invalid route type"); 2927e8478e80SDavid Ahern goto out; 2928e8478e80SDavid Ahern } 2929e8478e80SDavid Ahern 2930d5d531cbSDavid Ahern if (cfg->fc_dst_len > 128) { 2931d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid prefix length"); 29328c5b83f0SRoopa Prabhu goto out; 2933d5d531cbSDavid Ahern } 2934d5d531cbSDavid Ahern if (cfg->fc_src_len > 128) { 2935d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address length"); 2936d5d531cbSDavid Ahern goto out; 2937d5d531cbSDavid Ahern } 29381da177e4SLinus Torvalds #ifndef CONFIG_IPV6_SUBTREES 2939d5d531cbSDavid Ahern if (cfg->fc_src_len) { 2940d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, 2941d5d531cbSDavid Ahern "Specifying source address requires IPV6_SUBTREES to be enabled"); 29428c5b83f0SRoopa Prabhu goto out; 2943d5d531cbSDavid Ahern } 29441da177e4SLinus Torvalds #endif 294586872cb5SThomas Graf if (cfg->fc_ifindex) { 29461da177e4SLinus Torvalds err = -ENODEV; 29475578689aSDaniel Lezcano dev = dev_get_by_index(net, cfg->fc_ifindex); 29481da177e4SLinus Torvalds if (!dev) 29491da177e4SLinus Torvalds goto out; 29501da177e4SLinus Torvalds idev = in6_dev_get(dev); 29511da177e4SLinus Torvalds if (!idev) 29521da177e4SLinus Torvalds goto out; 29531da177e4SLinus Torvalds } 29541da177e4SLinus Torvalds 295586872cb5SThomas Graf if (cfg->fc_metric == 0) 295686872cb5SThomas Graf cfg->fc_metric = IP6_RT_PRIO_USER; 29571da177e4SLinus Torvalds 2958fc1e64e1SDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) { 2959fc1e64e1SDavid Ahern if (!dev) { 2960fc1e64e1SDavid Ahern NL_SET_ERR_MSG(extack, 2961fc1e64e1SDavid Ahern "Nexthop device required for onlink"); 2962fc1e64e1SDavid Ahern err = -ENODEV; 2963fc1e64e1SDavid Ahern goto out; 2964fc1e64e1SDavid Ahern } 2965fc1e64e1SDavid Ahern 2966fc1e64e1SDavid Ahern if (!(dev->flags & IFF_UP)) { 2967fc1e64e1SDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 2968fc1e64e1SDavid Ahern err = -ENETDOWN; 2969fc1e64e1SDavid Ahern goto out; 2970fc1e64e1SDavid Ahern } 2971fc1e64e1SDavid Ahern } 2972fc1e64e1SDavid Ahern 2973c71099acSThomas Graf err = -ENOBUFS; 297438308473SDavid S. Miller if (cfg->fc_nlinfo.nlh && 2975d71314b4SMatti Vaittinen !(cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_CREATE)) { 2976d71314b4SMatti Vaittinen table = fib6_get_table(net, cfg->fc_table); 297738308473SDavid S. Miller if (!table) { 2978f3213831SJoe Perches pr_warn("NLM_F_CREATE should be specified when creating new route\n"); 2979d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 2980d71314b4SMatti Vaittinen } 2981d71314b4SMatti Vaittinen } else { 2982d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 2983d71314b4SMatti Vaittinen } 298438308473SDavid S. Miller 298538308473SDavid S. Miller if (!table) 2986c71099acSThomas Graf goto out; 2987c71099acSThomas Graf 29881da177e4SLinus Torvalds err = -ENOMEM; 298993531c67SDavid Ahern rt = fib6_info_alloc(gfp_flags); 299093531c67SDavid Ahern if (!rt) 29911da177e4SLinus Torvalds goto out; 299293531c67SDavid Ahern 2993d7e774f3SDavid Ahern rt->fib6_metrics = ip_fib_metrics_init(net, cfg->fc_mx, cfg->fc_mx_len, 2994d7e774f3SDavid Ahern extack); 2995767a2217SDavid Ahern if (IS_ERR(rt->fib6_metrics)) { 2996767a2217SDavid Ahern err = PTR_ERR(rt->fib6_metrics); 2997fda21d46SEric Dumazet /* Do not leave garbage there. */ 2998fda21d46SEric Dumazet rt->fib6_metrics = (struct dst_metrics *)&dst_default_metrics; 2999767a2217SDavid Ahern goto out; 3000767a2217SDavid Ahern } 3001767a2217SDavid Ahern 300293531c67SDavid Ahern if (cfg->fc_flags & RTF_ADDRCONF) 300393531c67SDavid Ahern rt->dst_nocount = true; 30041da177e4SLinus Torvalds 30051716a961SGao feng if (cfg->fc_flags & RTF_EXPIRES) 300614895687SDavid Ahern fib6_set_expires(rt, jiffies + 30071716a961SGao feng clock_t_to_jiffies(cfg->fc_expires)); 30081716a961SGao feng else 300914895687SDavid Ahern fib6_clean_expires(rt); 30101da177e4SLinus Torvalds 301186872cb5SThomas Graf if (cfg->fc_protocol == RTPROT_UNSPEC) 301286872cb5SThomas Graf cfg->fc_protocol = RTPROT_BOOT; 301393c2fb25SDavid Ahern rt->fib6_protocol = cfg->fc_protocol; 301486872cb5SThomas Graf 301586872cb5SThomas Graf addr_type = ipv6_addr_type(&cfg->fc_dst); 30161da177e4SLinus Torvalds 301719e42e45SRoopa Prabhu if (cfg->fc_encap) { 301819e42e45SRoopa Prabhu struct lwtunnel_state *lwtstate; 301919e42e45SRoopa Prabhu 302030357d7dSDavid Ahern err = lwtunnel_build_state(cfg->fc_encap_type, 3021127eb7cdSTom Herbert cfg->fc_encap, AF_INET6, cfg, 30229ae28727SDavid Ahern &lwtstate, extack); 302319e42e45SRoopa Prabhu if (err) 302419e42e45SRoopa Prabhu goto out; 30255e670d84SDavid Ahern rt->fib6_nh.nh_lwtstate = lwtstate_get(lwtstate); 302625368623STom Herbert } 302719e42e45SRoopa Prabhu 302893c2fb25SDavid Ahern ipv6_addr_prefix(&rt->fib6_dst.addr, &cfg->fc_dst, cfg->fc_dst_len); 302993c2fb25SDavid Ahern rt->fib6_dst.plen = cfg->fc_dst_len; 303093c2fb25SDavid Ahern if (rt->fib6_dst.plen == 128) 30313b6761d1SDavid Ahern rt->dst_host = true; 30321da177e4SLinus Torvalds 30331da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 303493c2fb25SDavid Ahern ipv6_addr_prefix(&rt->fib6_src.addr, &cfg->fc_src, cfg->fc_src_len); 303593c2fb25SDavid Ahern rt->fib6_src.plen = cfg->fc_src_len; 30361da177e4SLinus Torvalds #endif 30371da177e4SLinus Torvalds 303893c2fb25SDavid Ahern rt->fib6_metric = cfg->fc_metric; 30395e670d84SDavid Ahern rt->fib6_nh.nh_weight = 1; 30401da177e4SLinus Torvalds 3041e8478e80SDavid Ahern rt->fib6_type = cfg->fc_type; 30421da177e4SLinus Torvalds 30431da177e4SLinus Torvalds /* We cannot add true routes via loopback here, 30441da177e4SLinus Torvalds they would result in kernel looping; promote them to reject routes 30451da177e4SLinus Torvalds */ 304686872cb5SThomas Graf if ((cfg->fc_flags & RTF_REJECT) || 304738308473SDavid S. Miller (dev && (dev->flags & IFF_LOOPBACK) && 304838308473SDavid S. Miller !(addr_type & IPV6_ADDR_LOOPBACK) && 304938308473SDavid S. Miller !(cfg->fc_flags & RTF_LOCAL))) { 30501da177e4SLinus Torvalds /* hold loopback dev/idev if we haven't done so. */ 30515578689aSDaniel Lezcano if (dev != net->loopback_dev) { 30521da177e4SLinus Torvalds if (dev) { 30531da177e4SLinus Torvalds dev_put(dev); 30541da177e4SLinus Torvalds in6_dev_put(idev); 30551da177e4SLinus Torvalds } 30565578689aSDaniel Lezcano dev = net->loopback_dev; 30571da177e4SLinus Torvalds dev_hold(dev); 30581da177e4SLinus Torvalds idev = in6_dev_get(dev); 30591da177e4SLinus Torvalds if (!idev) { 30601da177e4SLinus Torvalds err = -ENODEV; 30611da177e4SLinus Torvalds goto out; 30621da177e4SLinus Torvalds } 30631da177e4SLinus Torvalds } 306493c2fb25SDavid Ahern rt->fib6_flags = RTF_REJECT|RTF_NONEXTHOP; 30651da177e4SLinus Torvalds goto install_route; 30661da177e4SLinus Torvalds } 30671da177e4SLinus Torvalds 306886872cb5SThomas Graf if (cfg->fc_flags & RTF_GATEWAY) { 30699fbb704cSDavid Ahern err = ip6_validate_gw(net, cfg, &dev, &idev, extack); 30701da177e4SLinus Torvalds if (err) 30711da177e4SLinus Torvalds goto out; 30729fbb704cSDavid Ahern 307393531c67SDavid Ahern rt->fib6_nh.nh_gw = cfg->fc_gateway; 30741da177e4SLinus Torvalds } 30751da177e4SLinus Torvalds 30761da177e4SLinus Torvalds err = -ENODEV; 307738308473SDavid S. Miller if (!dev) 30781da177e4SLinus Torvalds goto out; 30791da177e4SLinus Torvalds 3080428604fbSLorenzo Bianconi if (idev->cnf.disable_ipv6) { 3081428604fbSLorenzo Bianconi NL_SET_ERR_MSG(extack, "IPv6 is disabled on nexthop device"); 3082428604fbSLorenzo Bianconi err = -EACCES; 3083428604fbSLorenzo Bianconi goto out; 3084428604fbSLorenzo Bianconi } 3085428604fbSLorenzo Bianconi 3086955ec4cbSDavid Ahern if (!(dev->flags & IFF_UP)) { 3087955ec4cbSDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 3088955ec4cbSDavid Ahern err = -ENETDOWN; 3089955ec4cbSDavid Ahern goto out; 3090955ec4cbSDavid Ahern } 3091955ec4cbSDavid Ahern 3092c3968a85SDaniel Walter if (!ipv6_addr_any(&cfg->fc_prefsrc)) { 3093c3968a85SDaniel Walter if (!ipv6_chk_addr(net, &cfg->fc_prefsrc, dev, 0)) { 3094d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address"); 3095c3968a85SDaniel Walter err = -EINVAL; 3096c3968a85SDaniel Walter goto out; 3097c3968a85SDaniel Walter } 309893c2fb25SDavid Ahern rt->fib6_prefsrc.addr = cfg->fc_prefsrc; 309993c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 128; 3100c3968a85SDaniel Walter } else 310193c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 0; 3102c3968a85SDaniel Walter 310393c2fb25SDavid Ahern rt->fib6_flags = cfg->fc_flags; 31041da177e4SLinus Torvalds 31051da177e4SLinus Torvalds install_route: 310693c2fb25SDavid Ahern if (!(rt->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) && 31075609b80aSIdo Schimmel !netif_carrier_ok(dev)) 31085e670d84SDavid Ahern rt->fib6_nh.nh_flags |= RTNH_F_LINKDOWN; 31095e670d84SDavid Ahern rt->fib6_nh.nh_flags |= (cfg->fc_flags & RTNH_F_ONLINK); 311093531c67SDavid Ahern rt->fib6_nh.nh_dev = dev; 311193c2fb25SDavid Ahern rt->fib6_table = table; 311263152fc0SDaniel Lezcano 3113dcd1f572SDavid Ahern if (idev) 3114dcd1f572SDavid Ahern in6_dev_put(idev); 3115dcd1f572SDavid Ahern 31168c5b83f0SRoopa Prabhu return rt; 31171da177e4SLinus Torvalds out: 31181da177e4SLinus Torvalds if (dev) 31191da177e4SLinus Torvalds dev_put(dev); 31201da177e4SLinus Torvalds if (idev) 31211da177e4SLinus Torvalds in6_dev_put(idev); 31226b9ea5a6SRoopa Prabhu 312393531c67SDavid Ahern fib6_info_release(rt); 31248c5b83f0SRoopa Prabhu return ERR_PTR(err); 31256b9ea5a6SRoopa Prabhu } 31266b9ea5a6SRoopa Prabhu 3127acb54e3cSDavid Ahern int ip6_route_add(struct fib6_config *cfg, gfp_t gfp_flags, 3128333c4301SDavid Ahern struct netlink_ext_ack *extack) 31296b9ea5a6SRoopa Prabhu { 31308d1c802bSDavid Ahern struct fib6_info *rt; 31316b9ea5a6SRoopa Prabhu int err; 31326b9ea5a6SRoopa Prabhu 3133acb54e3cSDavid Ahern rt = ip6_route_info_create(cfg, gfp_flags, extack); 3134d4ead6b3SDavid Ahern if (IS_ERR(rt)) 3135d4ead6b3SDavid Ahern return PTR_ERR(rt); 31366b9ea5a6SRoopa Prabhu 3137d4ead6b3SDavid Ahern err = __ip6_ins_rt(rt, &cfg->fc_nlinfo, extack); 313893531c67SDavid Ahern fib6_info_release(rt); 31396b9ea5a6SRoopa Prabhu 31401da177e4SLinus Torvalds return err; 31411da177e4SLinus Torvalds } 31421da177e4SLinus Torvalds 31438d1c802bSDavid Ahern static int __ip6_del_rt(struct fib6_info *rt, struct nl_info *info) 31441da177e4SLinus Torvalds { 3145afb1d4b5SDavid Ahern struct net *net = info->nl_net; 3146c71099acSThomas Graf struct fib6_table *table; 3147afb1d4b5SDavid Ahern int err; 31481da177e4SLinus Torvalds 3149421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) { 31506825a26cSGao feng err = -ENOENT; 31516825a26cSGao feng goto out; 31526825a26cSGao feng } 31536c813a72SPatrick McHardy 315493c2fb25SDavid Ahern table = rt->fib6_table; 315566f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 315686872cb5SThomas Graf err = fib6_del(rt, info); 315766f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 31581da177e4SLinus Torvalds 31596825a26cSGao feng out: 316093531c67SDavid Ahern fib6_info_release(rt); 31611da177e4SLinus Torvalds return err; 31621da177e4SLinus Torvalds } 31631da177e4SLinus Torvalds 31648d1c802bSDavid Ahern int ip6_del_rt(struct net *net, struct fib6_info *rt) 3165e0a1ad73SThomas Graf { 3166afb1d4b5SDavid Ahern struct nl_info info = { .nl_net = net }; 3167afb1d4b5SDavid Ahern 3168528c4cebSDenis V. Lunev return __ip6_del_rt(rt, &info); 3169e0a1ad73SThomas Graf } 3170e0a1ad73SThomas Graf 31718d1c802bSDavid Ahern static int __ip6_del_rt_siblings(struct fib6_info *rt, struct fib6_config *cfg) 31720ae81335SDavid Ahern { 31730ae81335SDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 3174e3330039SWANG Cong struct net *net = info->nl_net; 317516a16cd3SDavid Ahern struct sk_buff *skb = NULL; 31760ae81335SDavid Ahern struct fib6_table *table; 3177e3330039SWANG Cong int err = -ENOENT; 31780ae81335SDavid Ahern 3179421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 3180e3330039SWANG Cong goto out_put; 318193c2fb25SDavid Ahern table = rt->fib6_table; 318266f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 31830ae81335SDavid Ahern 318493c2fb25SDavid Ahern if (rt->fib6_nsiblings && cfg->fc_delete_all_nh) { 31858d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 31860ae81335SDavid Ahern 318716a16cd3SDavid Ahern /* prefer to send a single notification with all hops */ 318816a16cd3SDavid Ahern skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 318916a16cd3SDavid Ahern if (skb) { 319016a16cd3SDavid Ahern u32 seq = info->nlh ? info->nlh->nlmsg_seq : 0; 319116a16cd3SDavid Ahern 3192d4ead6b3SDavid Ahern if (rt6_fill_node(net, skb, rt, NULL, 319316a16cd3SDavid Ahern NULL, NULL, 0, RTM_DELROUTE, 319416a16cd3SDavid Ahern info->portid, seq, 0) < 0) { 319516a16cd3SDavid Ahern kfree_skb(skb); 319616a16cd3SDavid Ahern skb = NULL; 319716a16cd3SDavid Ahern } else 319816a16cd3SDavid Ahern info->skip_notify = 1; 319916a16cd3SDavid Ahern } 320016a16cd3SDavid Ahern 32010ae81335SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 320293c2fb25SDavid Ahern &rt->fib6_siblings, 320393c2fb25SDavid Ahern fib6_siblings) { 32040ae81335SDavid Ahern err = fib6_del(sibling, info); 32050ae81335SDavid Ahern if (err) 3206e3330039SWANG Cong goto out_unlock; 32070ae81335SDavid Ahern } 32080ae81335SDavid Ahern } 32090ae81335SDavid Ahern 32100ae81335SDavid Ahern err = fib6_del(rt, info); 3211e3330039SWANG Cong out_unlock: 321266f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 3213e3330039SWANG Cong out_put: 321493531c67SDavid Ahern fib6_info_release(rt); 321516a16cd3SDavid Ahern 321616a16cd3SDavid Ahern if (skb) { 3217e3330039SWANG Cong rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 321816a16cd3SDavid Ahern info->nlh, gfp_any()); 321916a16cd3SDavid Ahern } 32200ae81335SDavid Ahern return err; 32210ae81335SDavid Ahern } 32220ae81335SDavid Ahern 322323fb93a4SDavid Ahern static int ip6_del_cached_rt(struct rt6_info *rt, struct fib6_config *cfg) 322423fb93a4SDavid Ahern { 322523fb93a4SDavid Ahern int rc = -ESRCH; 322623fb93a4SDavid Ahern 322723fb93a4SDavid Ahern if (cfg->fc_ifindex && rt->dst.dev->ifindex != cfg->fc_ifindex) 322823fb93a4SDavid Ahern goto out; 322923fb93a4SDavid Ahern 323023fb93a4SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY && 323123fb93a4SDavid Ahern !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway)) 323223fb93a4SDavid Ahern goto out; 3233761f6026SXin Long 323423fb93a4SDavid Ahern rc = rt6_remove_exception_rt(rt); 323523fb93a4SDavid Ahern out: 323623fb93a4SDavid Ahern return rc; 323723fb93a4SDavid Ahern } 323823fb93a4SDavid Ahern 3239333c4301SDavid Ahern static int ip6_route_del(struct fib6_config *cfg, 3240333c4301SDavid Ahern struct netlink_ext_ack *extack) 32411da177e4SLinus Torvalds { 32428d1c802bSDavid Ahern struct rt6_info *rt_cache; 3243c71099acSThomas Graf struct fib6_table *table; 32448d1c802bSDavid Ahern struct fib6_info *rt; 32451da177e4SLinus Torvalds struct fib6_node *fn; 32461da177e4SLinus Torvalds int err = -ESRCH; 32471da177e4SLinus Torvalds 32485578689aSDaniel Lezcano table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table); 3249d5d531cbSDavid Ahern if (!table) { 3250d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "FIB table does not exist"); 3251c71099acSThomas Graf return err; 3252d5d531cbSDavid Ahern } 32531da177e4SLinus Torvalds 325466f5d6ceSWei Wang rcu_read_lock(); 3255c71099acSThomas Graf 3256c71099acSThomas Graf fn = fib6_locate(&table->tb6_root, 325786872cb5SThomas Graf &cfg->fc_dst, cfg->fc_dst_len, 325838fbeeeeSWei Wang &cfg->fc_src, cfg->fc_src_len, 32592b760fcfSWei Wang !(cfg->fc_flags & RTF_CACHE)); 32601da177e4SLinus Torvalds 32611da177e4SLinus Torvalds if (fn) { 326266f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 32632b760fcfSWei Wang if (cfg->fc_flags & RTF_CACHE) { 326423fb93a4SDavid Ahern int rc; 326523fb93a4SDavid Ahern 32662b760fcfSWei Wang rt_cache = rt6_find_cached_rt(rt, &cfg->fc_dst, 32672b760fcfSWei Wang &cfg->fc_src); 326823fb93a4SDavid Ahern if (rt_cache) { 326923fb93a4SDavid Ahern rc = ip6_del_cached_rt(rt_cache, cfg); 32709e575010SEric Dumazet if (rc != -ESRCH) { 32719e575010SEric Dumazet rcu_read_unlock(); 327223fb93a4SDavid Ahern return rc; 327323fb93a4SDavid Ahern } 32749e575010SEric Dumazet } 32751f56a01fSMartin KaFai Lau continue; 32762b760fcfSWei Wang } 327786872cb5SThomas Graf if (cfg->fc_ifindex && 32785e670d84SDavid Ahern (!rt->fib6_nh.nh_dev || 32795e670d84SDavid Ahern rt->fib6_nh.nh_dev->ifindex != cfg->fc_ifindex)) 32801da177e4SLinus Torvalds continue; 328186872cb5SThomas Graf if (cfg->fc_flags & RTF_GATEWAY && 32825e670d84SDavid Ahern !ipv6_addr_equal(&cfg->fc_gateway, &rt->fib6_nh.nh_gw)) 32831da177e4SLinus Torvalds continue; 328493c2fb25SDavid Ahern if (cfg->fc_metric && cfg->fc_metric != rt->fib6_metric) 32851da177e4SLinus Torvalds continue; 328693c2fb25SDavid Ahern if (cfg->fc_protocol && cfg->fc_protocol != rt->fib6_protocol) 3287c2ed1880SMantas M continue; 3288e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 3289e873e4b9SWei Wang continue; 329066f5d6ceSWei Wang rcu_read_unlock(); 32911da177e4SLinus Torvalds 32920ae81335SDavid Ahern /* if gateway was specified only delete the one hop */ 32930ae81335SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY) 329486872cb5SThomas Graf return __ip6_del_rt(rt, &cfg->fc_nlinfo); 32950ae81335SDavid Ahern 32960ae81335SDavid Ahern return __ip6_del_rt_siblings(rt, cfg); 32971da177e4SLinus Torvalds } 32981da177e4SLinus Torvalds } 329966f5d6ceSWei Wang rcu_read_unlock(); 33001da177e4SLinus Torvalds 33011da177e4SLinus Torvalds return err; 33021da177e4SLinus Torvalds } 33031da177e4SLinus Torvalds 33046700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, struct sk_buff *skb) 3305a6279458SYOSHIFUJI Hideaki { 3306a6279458SYOSHIFUJI Hideaki struct netevent_redirect netevent; 3307e8599ff4SDavid S. Miller struct rt6_info *rt, *nrt = NULL; 3308e8599ff4SDavid S. Miller struct ndisc_options ndopts; 3309e8599ff4SDavid S. Miller struct inet6_dev *in6_dev; 3310e8599ff4SDavid S. Miller struct neighbour *neigh; 3311a68886a6SDavid Ahern struct fib6_info *from; 331271bcdba0SYOSHIFUJI Hideaki / 吉藤英明 struct rd_msg *msg; 33136e157b6aSDavid S. Miller int optlen, on_link; 33146e157b6aSDavid S. Miller u8 *lladdr; 3315e8599ff4SDavid S. Miller 331629a3cad5SSimon Horman optlen = skb_tail_pointer(skb) - skb_transport_header(skb); 331771bcdba0SYOSHIFUJI Hideaki / 吉藤英明 optlen -= sizeof(*msg); 3318e8599ff4SDavid S. Miller 3319e8599ff4SDavid S. Miller if (optlen < 0) { 33206e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: packet too short\n"); 3321e8599ff4SDavid S. Miller return; 3322e8599ff4SDavid S. Miller } 3323e8599ff4SDavid S. Miller 332471bcdba0SYOSHIFUJI Hideaki / 吉藤英明 msg = (struct rd_msg *)icmp6_hdr(skb); 3325e8599ff4SDavid S. Miller 332671bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_is_multicast(&msg->dest)) { 33276e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: destination address is multicast\n"); 3328e8599ff4SDavid S. Miller return; 3329e8599ff4SDavid S. Miller } 3330e8599ff4SDavid S. Miller 33316e157b6aSDavid S. Miller on_link = 0; 333271bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_equal(&msg->dest, &msg->target)) { 3333e8599ff4SDavid S. Miller on_link = 1; 333471bcdba0SYOSHIFUJI Hideaki / 吉藤英明 } else if (ipv6_addr_type(&msg->target) != 3335e8599ff4SDavid S. Miller (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) { 33366e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: target address is not link-local unicast\n"); 3337e8599ff4SDavid S. Miller return; 3338e8599ff4SDavid S. Miller } 3339e8599ff4SDavid S. Miller 3340e8599ff4SDavid S. Miller in6_dev = __in6_dev_get(skb->dev); 3341e8599ff4SDavid S. Miller if (!in6_dev) 3342e8599ff4SDavid S. Miller return; 3343e8599ff4SDavid S. Miller if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_redirects) 3344e8599ff4SDavid S. Miller return; 3345e8599ff4SDavid S. Miller 3346e8599ff4SDavid S. Miller /* RFC2461 8.1: 3347e8599ff4SDavid S. Miller * The IP source address of the Redirect MUST be the same as the current 3348e8599ff4SDavid S. Miller * first-hop router for the specified ICMP Destination Address. 3349e8599ff4SDavid S. Miller */ 3350e8599ff4SDavid S. Miller 3351f997c55cSAlexander Aring if (!ndisc_parse_options(skb->dev, msg->opt, optlen, &ndopts)) { 3352e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid ND options\n"); 3353e8599ff4SDavid S. Miller return; 3354e8599ff4SDavid S. Miller } 33556e157b6aSDavid S. Miller 33566e157b6aSDavid S. Miller lladdr = NULL; 3357e8599ff4SDavid S. Miller if (ndopts.nd_opts_tgt_lladdr) { 3358e8599ff4SDavid S. Miller lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr, 3359e8599ff4SDavid S. Miller skb->dev); 3360e8599ff4SDavid S. Miller if (!lladdr) { 3361e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid link-layer address length\n"); 3362e8599ff4SDavid S. Miller return; 3363e8599ff4SDavid S. Miller } 3364e8599ff4SDavid S. Miller } 3365e8599ff4SDavid S. Miller 33666e157b6aSDavid S. Miller rt = (struct rt6_info *) dst; 3367ec13ad1dSMatthias Schiffer if (rt->rt6i_flags & RTF_REJECT) { 33686e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_redirect: source isn't a valid nexthop for redirect target\n"); 33696e157b6aSDavid S. Miller return; 33706e157b6aSDavid S. Miller } 33716e157b6aSDavid S. Miller 33726e157b6aSDavid S. Miller /* Redirect received -> path was valid. 33736e157b6aSDavid S. Miller * Look, redirects are sent only in response to data packets, 33746e157b6aSDavid S. Miller * so that this nexthop apparently is reachable. --ANK 33756e157b6aSDavid S. Miller */ 33760dec879fSJulian Anastasov dst_confirm_neigh(&rt->dst, &ipv6_hdr(skb)->saddr); 33776e157b6aSDavid S. Miller 337871bcdba0SYOSHIFUJI Hideaki / 吉藤英明 neigh = __neigh_lookup(&nd_tbl, &msg->target, skb->dev, 1); 3379e8599ff4SDavid S. Miller if (!neigh) 3380e8599ff4SDavid S. Miller return; 3381e8599ff4SDavid S. Miller 33821da177e4SLinus Torvalds /* 33831da177e4SLinus Torvalds * We have finally decided to accept it. 33841da177e4SLinus Torvalds */ 33851da177e4SLinus Torvalds 3386f997c55cSAlexander Aring ndisc_update(skb->dev, neigh, lladdr, NUD_STALE, 33871da177e4SLinus Torvalds NEIGH_UPDATE_F_WEAK_OVERRIDE| 33881da177e4SLinus Torvalds NEIGH_UPDATE_F_OVERRIDE| 33891da177e4SLinus Torvalds (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER| 3390f997c55cSAlexander Aring NEIGH_UPDATE_F_ISROUTER)), 3391f997c55cSAlexander Aring NDISC_REDIRECT, &ndopts); 33921da177e4SLinus Torvalds 33934d85cd0cSDavid Ahern rcu_read_lock(); 3394a68886a6SDavid Ahern from = rcu_dereference(rt->from); 3395e873e4b9SWei Wang /* This fib6_info_hold() is safe here because we hold reference to rt 3396e873e4b9SWei Wang * and rt already holds reference to fib6_info. 3397e873e4b9SWei Wang */ 33988a14e46fSDavid Ahern fib6_info_hold(from); 33994d85cd0cSDavid Ahern rcu_read_unlock(); 34008a14e46fSDavid Ahern 34018a14e46fSDavid Ahern nrt = ip6_rt_cache_alloc(from, &msg->dest, NULL); 340238308473SDavid S. Miller if (!nrt) 34031da177e4SLinus Torvalds goto out; 34041da177e4SLinus Torvalds 34051da177e4SLinus Torvalds nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE; 34061da177e4SLinus Torvalds if (on_link) 34071da177e4SLinus Torvalds nrt->rt6i_flags &= ~RTF_GATEWAY; 34081da177e4SLinus Torvalds 34094e3fd7a0SAlexey Dobriyan nrt->rt6i_gateway = *(struct in6_addr *)neigh->primary_key; 34101da177e4SLinus Torvalds 34112b760fcfSWei Wang /* No need to remove rt from the exception table if rt is 34122b760fcfSWei Wang * a cached route because rt6_insert_exception() will 34132b760fcfSWei Wang * takes care of it 34142b760fcfSWei Wang */ 34158a14e46fSDavid Ahern if (rt6_insert_exception(nrt, from)) { 34162b760fcfSWei Wang dst_release_immediate(&nrt->dst); 34172b760fcfSWei Wang goto out; 34182b760fcfSWei Wang } 34191da177e4SLinus Torvalds 3420d8d1f30bSChangli Gao netevent.old = &rt->dst; 3421d8d1f30bSChangli Gao netevent.new = &nrt->dst; 342271bcdba0SYOSHIFUJI Hideaki / 吉藤英明 netevent.daddr = &msg->dest; 342360592833SYOSHIFUJI Hideaki / 吉藤英明 netevent.neigh = neigh; 34248d71740cSTom Tucker call_netevent_notifiers(NETEVENT_REDIRECT, &netevent); 34258d71740cSTom Tucker 34261da177e4SLinus Torvalds out: 34278a14e46fSDavid Ahern fib6_info_release(from); 3428e8599ff4SDavid S. Miller neigh_release(neigh); 34296e157b6aSDavid S. Miller } 34306e157b6aSDavid S. Miller 343170ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 34328d1c802bSDavid Ahern static struct fib6_info *rt6_get_route_info(struct net *net, 3433b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3434830218c1SDavid Ahern const struct in6_addr *gwaddr, 3435830218c1SDavid Ahern struct net_device *dev) 343670ceb4f5SYOSHIFUJI Hideaki { 3437830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO; 3438830218c1SDavid Ahern int ifindex = dev->ifindex; 343970ceb4f5SYOSHIFUJI Hideaki struct fib6_node *fn; 34408d1c802bSDavid Ahern struct fib6_info *rt = NULL; 3441c71099acSThomas Graf struct fib6_table *table; 344270ceb4f5SYOSHIFUJI Hideaki 3443830218c1SDavid Ahern table = fib6_get_table(net, tb_id); 344438308473SDavid S. Miller if (!table) 3445c71099acSThomas Graf return NULL; 3446c71099acSThomas Graf 344766f5d6ceSWei Wang rcu_read_lock(); 344838fbeeeeSWei Wang fn = fib6_locate(&table->tb6_root, prefix, prefixlen, NULL, 0, true); 344970ceb4f5SYOSHIFUJI Hideaki if (!fn) 345070ceb4f5SYOSHIFUJI Hideaki goto out; 345170ceb4f5SYOSHIFUJI Hideaki 345266f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 34535e670d84SDavid Ahern if (rt->fib6_nh.nh_dev->ifindex != ifindex) 345470ceb4f5SYOSHIFUJI Hideaki continue; 345593c2fb25SDavid Ahern if ((rt->fib6_flags & (RTF_ROUTEINFO|RTF_GATEWAY)) != (RTF_ROUTEINFO|RTF_GATEWAY)) 345670ceb4f5SYOSHIFUJI Hideaki continue; 34575e670d84SDavid Ahern if (!ipv6_addr_equal(&rt->fib6_nh.nh_gw, gwaddr)) 345870ceb4f5SYOSHIFUJI Hideaki continue; 3459e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 3460e873e4b9SWei Wang continue; 346170ceb4f5SYOSHIFUJI Hideaki break; 346270ceb4f5SYOSHIFUJI Hideaki } 346370ceb4f5SYOSHIFUJI Hideaki out: 346466f5d6ceSWei Wang rcu_read_unlock(); 346570ceb4f5SYOSHIFUJI Hideaki return rt; 346670ceb4f5SYOSHIFUJI Hideaki } 346770ceb4f5SYOSHIFUJI Hideaki 34688d1c802bSDavid Ahern static struct fib6_info *rt6_add_route_info(struct net *net, 3469b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3470830218c1SDavid Ahern const struct in6_addr *gwaddr, 3471830218c1SDavid Ahern struct net_device *dev, 347295c96174SEric Dumazet unsigned int pref) 347370ceb4f5SYOSHIFUJI Hideaki { 347486872cb5SThomas Graf struct fib6_config cfg = { 3475238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 3476830218c1SDavid Ahern .fc_ifindex = dev->ifindex, 347786872cb5SThomas Graf .fc_dst_len = prefixlen, 347886872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO | 347986872cb5SThomas Graf RTF_UP | RTF_PREF(pref), 3480b91d5329SXin Long .fc_protocol = RTPROT_RA, 3481e8478e80SDavid Ahern .fc_type = RTN_UNICAST, 348215e47304SEric W. Biederman .fc_nlinfo.portid = 0, 3483efa2cea0SDaniel Lezcano .fc_nlinfo.nlh = NULL, 3484efa2cea0SDaniel Lezcano .fc_nlinfo.nl_net = net, 348586872cb5SThomas Graf }; 348670ceb4f5SYOSHIFUJI Hideaki 3487830218c1SDavid Ahern cfg.fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO, 34884e3fd7a0SAlexey Dobriyan cfg.fc_dst = *prefix; 34894e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 349086872cb5SThomas Graf 3491e317da96SYOSHIFUJI Hideaki /* We should treat it as a default route if prefix length is 0. */ 3492e317da96SYOSHIFUJI Hideaki if (!prefixlen) 349386872cb5SThomas Graf cfg.fc_flags |= RTF_DEFAULT; 349470ceb4f5SYOSHIFUJI Hideaki 3495acb54e3cSDavid Ahern ip6_route_add(&cfg, GFP_ATOMIC, NULL); 349670ceb4f5SYOSHIFUJI Hideaki 3497830218c1SDavid Ahern return rt6_get_route_info(net, prefix, prefixlen, gwaddr, dev); 349870ceb4f5SYOSHIFUJI Hideaki } 349970ceb4f5SYOSHIFUJI Hideaki #endif 350070ceb4f5SYOSHIFUJI Hideaki 35018d1c802bSDavid Ahern struct fib6_info *rt6_get_dflt_router(struct net *net, 3502afb1d4b5SDavid Ahern const struct in6_addr *addr, 3503afb1d4b5SDavid Ahern struct net_device *dev) 35041da177e4SLinus Torvalds { 3505830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT; 35068d1c802bSDavid Ahern struct fib6_info *rt; 3507c71099acSThomas Graf struct fib6_table *table; 35081da177e4SLinus Torvalds 3509afb1d4b5SDavid Ahern table = fib6_get_table(net, tb_id); 351038308473SDavid S. Miller if (!table) 3511c71099acSThomas Graf return NULL; 35121da177e4SLinus Torvalds 351366f5d6ceSWei Wang rcu_read_lock(); 351466f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 35155e670d84SDavid Ahern if (dev == rt->fib6_nh.nh_dev && 351693c2fb25SDavid Ahern ((rt->fib6_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) && 35175e670d84SDavid Ahern ipv6_addr_equal(&rt->fib6_nh.nh_gw, addr)) 35181da177e4SLinus Torvalds break; 35191da177e4SLinus Torvalds } 3520e873e4b9SWei Wang if (rt && !fib6_info_hold_safe(rt)) 3521e873e4b9SWei Wang rt = NULL; 352266f5d6ceSWei Wang rcu_read_unlock(); 35231da177e4SLinus Torvalds return rt; 35241da177e4SLinus Torvalds } 35251da177e4SLinus Torvalds 35268d1c802bSDavid Ahern struct fib6_info *rt6_add_dflt_router(struct net *net, 3527afb1d4b5SDavid Ahern const struct in6_addr *gwaddr, 3528ebacaaa0SYOSHIFUJI Hideaki struct net_device *dev, 3529ebacaaa0SYOSHIFUJI Hideaki unsigned int pref) 35301da177e4SLinus Torvalds { 353186872cb5SThomas Graf struct fib6_config cfg = { 3532ca254490SDavid Ahern .fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT, 3533238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 353486872cb5SThomas Graf .fc_ifindex = dev->ifindex, 353586872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT | 353686872cb5SThomas Graf RTF_UP | RTF_EXPIRES | RTF_PREF(pref), 3537b91d5329SXin Long .fc_protocol = RTPROT_RA, 3538e8478e80SDavid Ahern .fc_type = RTN_UNICAST, 353915e47304SEric W. Biederman .fc_nlinfo.portid = 0, 35405578689aSDaniel Lezcano .fc_nlinfo.nlh = NULL, 3541afb1d4b5SDavid Ahern .fc_nlinfo.nl_net = net, 354286872cb5SThomas Graf }; 35431da177e4SLinus Torvalds 35444e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 35451da177e4SLinus Torvalds 3546acb54e3cSDavid Ahern if (!ip6_route_add(&cfg, GFP_ATOMIC, NULL)) { 3547830218c1SDavid Ahern struct fib6_table *table; 3548830218c1SDavid Ahern 3549830218c1SDavid Ahern table = fib6_get_table(dev_net(dev), cfg.fc_table); 3550830218c1SDavid Ahern if (table) 3551830218c1SDavid Ahern table->flags |= RT6_TABLE_HAS_DFLT_ROUTER; 3552830218c1SDavid Ahern } 35531da177e4SLinus Torvalds 3554afb1d4b5SDavid Ahern return rt6_get_dflt_router(net, gwaddr, dev); 35551da177e4SLinus Torvalds } 35561da177e4SLinus Torvalds 3557afb1d4b5SDavid Ahern static void __rt6_purge_dflt_routers(struct net *net, 3558afb1d4b5SDavid Ahern struct fib6_table *table) 35591da177e4SLinus Torvalds { 35608d1c802bSDavid Ahern struct fib6_info *rt; 35611da177e4SLinus Torvalds 35621da177e4SLinus Torvalds restart: 356366f5d6ceSWei Wang rcu_read_lock(); 356466f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 3565dcd1f572SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 3566dcd1f572SDavid Ahern struct inet6_dev *idev = dev ? __in6_dev_get(dev) : NULL; 3567dcd1f572SDavid Ahern 356893c2fb25SDavid Ahern if (rt->fib6_flags & (RTF_DEFAULT | RTF_ADDRCONF) && 3569e873e4b9SWei Wang (!idev || idev->cnf.accept_ra != 2) && 3570e873e4b9SWei Wang fib6_info_hold_safe(rt)) { 357166f5d6ceSWei Wang rcu_read_unlock(); 3572afb1d4b5SDavid Ahern ip6_del_rt(net, rt); 35731da177e4SLinus Torvalds goto restart; 35741da177e4SLinus Torvalds } 35751da177e4SLinus Torvalds } 357666f5d6ceSWei Wang rcu_read_unlock(); 3577830218c1SDavid Ahern 3578830218c1SDavid Ahern table->flags &= ~RT6_TABLE_HAS_DFLT_ROUTER; 3579830218c1SDavid Ahern } 3580830218c1SDavid Ahern 3581830218c1SDavid Ahern void rt6_purge_dflt_routers(struct net *net) 3582830218c1SDavid Ahern { 3583830218c1SDavid Ahern struct fib6_table *table; 3584830218c1SDavid Ahern struct hlist_head *head; 3585830218c1SDavid Ahern unsigned int h; 3586830218c1SDavid Ahern 3587830218c1SDavid Ahern rcu_read_lock(); 3588830218c1SDavid Ahern 3589830218c1SDavid Ahern for (h = 0; h < FIB6_TABLE_HASHSZ; h++) { 3590830218c1SDavid Ahern head = &net->ipv6.fib_table_hash[h]; 3591830218c1SDavid Ahern hlist_for_each_entry_rcu(table, head, tb6_hlist) { 3592830218c1SDavid Ahern if (table->flags & RT6_TABLE_HAS_DFLT_ROUTER) 3593afb1d4b5SDavid Ahern __rt6_purge_dflt_routers(net, table); 3594830218c1SDavid Ahern } 3595830218c1SDavid Ahern } 3596830218c1SDavid Ahern 3597830218c1SDavid Ahern rcu_read_unlock(); 35981da177e4SLinus Torvalds } 35991da177e4SLinus Torvalds 36005578689aSDaniel Lezcano static void rtmsg_to_fib6_config(struct net *net, 36015578689aSDaniel Lezcano struct in6_rtmsg *rtmsg, 360286872cb5SThomas Graf struct fib6_config *cfg) 360386872cb5SThomas Graf { 36048823a3acSMaciej Żenczykowski *cfg = (struct fib6_config){ 36058823a3acSMaciej Żenczykowski .fc_table = l3mdev_fib_table_by_index(net, rtmsg->rtmsg_ifindex) ? 36068823a3acSMaciej Żenczykowski : RT6_TABLE_MAIN, 36078823a3acSMaciej Żenczykowski .fc_ifindex = rtmsg->rtmsg_ifindex, 36088823a3acSMaciej Żenczykowski .fc_metric = rtmsg->rtmsg_metric, 36098823a3acSMaciej Żenczykowski .fc_expires = rtmsg->rtmsg_info, 36108823a3acSMaciej Żenczykowski .fc_dst_len = rtmsg->rtmsg_dst_len, 36118823a3acSMaciej Żenczykowski .fc_src_len = rtmsg->rtmsg_src_len, 36128823a3acSMaciej Żenczykowski .fc_flags = rtmsg->rtmsg_flags, 36138823a3acSMaciej Żenczykowski .fc_type = rtmsg->rtmsg_type, 361486872cb5SThomas Graf 36158823a3acSMaciej Żenczykowski .fc_nlinfo.nl_net = net, 361686872cb5SThomas Graf 36178823a3acSMaciej Żenczykowski .fc_dst = rtmsg->rtmsg_dst, 36188823a3acSMaciej Żenczykowski .fc_src = rtmsg->rtmsg_src, 36198823a3acSMaciej Żenczykowski .fc_gateway = rtmsg->rtmsg_gateway, 36208823a3acSMaciej Żenczykowski }; 362186872cb5SThomas Graf } 362286872cb5SThomas Graf 36235578689aSDaniel Lezcano int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg) 36241da177e4SLinus Torvalds { 362586872cb5SThomas Graf struct fib6_config cfg; 36261da177e4SLinus Torvalds struct in6_rtmsg rtmsg; 36271da177e4SLinus Torvalds int err; 36281da177e4SLinus Torvalds 36291da177e4SLinus Torvalds switch (cmd) { 36301da177e4SLinus Torvalds case SIOCADDRT: /* Add a route */ 36311da177e4SLinus Torvalds case SIOCDELRT: /* Delete a route */ 3632af31f412SEric W. Biederman if (!ns_capable(net->user_ns, CAP_NET_ADMIN)) 36331da177e4SLinus Torvalds return -EPERM; 36341da177e4SLinus Torvalds err = copy_from_user(&rtmsg, arg, 36351da177e4SLinus Torvalds sizeof(struct in6_rtmsg)); 36361da177e4SLinus Torvalds if (err) 36371da177e4SLinus Torvalds return -EFAULT; 36381da177e4SLinus Torvalds 36395578689aSDaniel Lezcano rtmsg_to_fib6_config(net, &rtmsg, &cfg); 364086872cb5SThomas Graf 36411da177e4SLinus Torvalds rtnl_lock(); 36421da177e4SLinus Torvalds switch (cmd) { 36431da177e4SLinus Torvalds case SIOCADDRT: 3644acb54e3cSDavid Ahern err = ip6_route_add(&cfg, GFP_KERNEL, NULL); 36451da177e4SLinus Torvalds break; 36461da177e4SLinus Torvalds case SIOCDELRT: 3647333c4301SDavid Ahern err = ip6_route_del(&cfg, NULL); 36481da177e4SLinus Torvalds break; 36491da177e4SLinus Torvalds default: 36501da177e4SLinus Torvalds err = -EINVAL; 36511da177e4SLinus Torvalds } 36521da177e4SLinus Torvalds rtnl_unlock(); 36531da177e4SLinus Torvalds 36541da177e4SLinus Torvalds return err; 36553ff50b79SStephen Hemminger } 36561da177e4SLinus Torvalds 36571da177e4SLinus Torvalds return -EINVAL; 36581da177e4SLinus Torvalds } 36591da177e4SLinus Torvalds 36601da177e4SLinus Torvalds /* 36611da177e4SLinus Torvalds * Drop the packet on the floor 36621da177e4SLinus Torvalds */ 36631da177e4SLinus Torvalds 3664d5fdd6baSBrian Haley static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes) 36651da177e4SLinus Torvalds { 3666adf30907SEric Dumazet struct dst_entry *dst = skb_dst(skb); 36671d3fd8a1SStephen Suryaputra struct net *net = dev_net(dst->dev); 36681d3fd8a1SStephen Suryaputra struct inet6_dev *idev; 36691d3fd8a1SStephen Suryaputra int type; 36701d3fd8a1SStephen Suryaputra 36711d3fd8a1SStephen Suryaputra if (netif_is_l3_master(skb->dev) && 36721d3fd8a1SStephen Suryaputra dst->dev == net->loopback_dev) 36731d3fd8a1SStephen Suryaputra idev = __in6_dev_get_safely(dev_get_by_index_rcu(net, IP6CB(skb)->iif)); 36741d3fd8a1SStephen Suryaputra else 36751d3fd8a1SStephen Suryaputra idev = ip6_dst_idev(dst); 36761d3fd8a1SStephen Suryaputra 3677612f09e8SYOSHIFUJI Hideaki switch (ipstats_mib_noroutes) { 3678612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_INNOROUTES: 36790660e03fSArnaldo Carvalho de Melo type = ipv6_addr_type(&ipv6_hdr(skb)->daddr); 368045bb0060SUlrich Weber if (type == IPV6_ADDR_ANY) { 36811d3fd8a1SStephen Suryaputra IP6_INC_STATS(net, idev, IPSTATS_MIB_INADDRERRORS); 3682612f09e8SYOSHIFUJI Hideaki break; 3683612f09e8SYOSHIFUJI Hideaki } 3684612f09e8SYOSHIFUJI Hideaki /* FALLTHROUGH */ 3685612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_OUTNOROUTES: 36861d3fd8a1SStephen Suryaputra IP6_INC_STATS(net, idev, ipstats_mib_noroutes); 3687612f09e8SYOSHIFUJI Hideaki break; 3688612f09e8SYOSHIFUJI Hideaki } 36891d3fd8a1SStephen Suryaputra 36901d3fd8a1SStephen Suryaputra /* Start over by dropping the dst for l3mdev case */ 36911d3fd8a1SStephen Suryaputra if (netif_is_l3_master(skb->dev)) 36921d3fd8a1SStephen Suryaputra skb_dst_drop(skb); 36931d3fd8a1SStephen Suryaputra 36943ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0); 36951da177e4SLinus Torvalds kfree_skb(skb); 36961da177e4SLinus Torvalds return 0; 36971da177e4SLinus Torvalds } 36981da177e4SLinus Torvalds 36999ce8ade0SThomas Graf static int ip6_pkt_discard(struct sk_buff *skb) 37009ce8ade0SThomas Graf { 3701612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES); 37029ce8ade0SThomas Graf } 37039ce8ade0SThomas Graf 3704ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb) 37051da177e4SLinus Torvalds { 3706adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3707612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES); 37081da177e4SLinus Torvalds } 37091da177e4SLinus Torvalds 37109ce8ade0SThomas Graf static int ip6_pkt_prohibit(struct sk_buff *skb) 37119ce8ade0SThomas Graf { 3712612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES); 37139ce8ade0SThomas Graf } 37149ce8ade0SThomas Graf 3715ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb) 37169ce8ade0SThomas Graf { 3717adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3718612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES); 37199ce8ade0SThomas Graf } 37209ce8ade0SThomas Graf 37211da177e4SLinus Torvalds /* 37221da177e4SLinus Torvalds * Allocate a dst for local (unicast / anycast) address. 37231da177e4SLinus Torvalds */ 37241da177e4SLinus Torvalds 3725360a9887SDavid Ahern struct fib6_info *addrconf_f6i_alloc(struct net *net, 3726afb1d4b5SDavid Ahern struct inet6_dev *idev, 37271da177e4SLinus Torvalds const struct in6_addr *addr, 3728acb54e3cSDavid Ahern bool anycast, gfp_t gfp_flags) 37291da177e4SLinus Torvalds { 3730ca254490SDavid Ahern u32 tb_id; 37314832c30dSDavid Ahern struct net_device *dev = idev->dev; 3732360a9887SDavid Ahern struct fib6_info *f6i; 37335f02ce24SDavid Ahern 3734360a9887SDavid Ahern f6i = fib6_info_alloc(gfp_flags); 3735360a9887SDavid Ahern if (!f6i) 37361da177e4SLinus Torvalds return ERR_PTR(-ENOMEM); 37371da177e4SLinus Torvalds 3738d7e774f3SDavid Ahern f6i->fib6_metrics = ip_fib_metrics_init(net, NULL, 0, NULL); 3739360a9887SDavid Ahern f6i->dst_nocount = true; 3740360a9887SDavid Ahern f6i->dst_host = true; 3741360a9887SDavid Ahern f6i->fib6_protocol = RTPROT_KERNEL; 3742360a9887SDavid Ahern f6i->fib6_flags = RTF_UP | RTF_NONEXTHOP; 3743e8478e80SDavid Ahern if (anycast) { 3744360a9887SDavid Ahern f6i->fib6_type = RTN_ANYCAST; 3745360a9887SDavid Ahern f6i->fib6_flags |= RTF_ANYCAST; 3746e8478e80SDavid Ahern } else { 3747360a9887SDavid Ahern f6i->fib6_type = RTN_LOCAL; 3748360a9887SDavid Ahern f6i->fib6_flags |= RTF_LOCAL; 3749e8478e80SDavid Ahern } 37501da177e4SLinus Torvalds 3751360a9887SDavid Ahern f6i->fib6_nh.nh_gw = *addr; 375293531c67SDavid Ahern dev_hold(dev); 3753360a9887SDavid Ahern f6i->fib6_nh.nh_dev = dev; 3754360a9887SDavid Ahern f6i->fib6_dst.addr = *addr; 3755360a9887SDavid Ahern f6i->fib6_dst.plen = 128; 3756ca254490SDavid Ahern tb_id = l3mdev_fib_table(idev->dev) ? : RT6_TABLE_LOCAL; 3757360a9887SDavid Ahern f6i->fib6_table = fib6_get_table(net, tb_id); 37581da177e4SLinus Torvalds 3759360a9887SDavid Ahern return f6i; 37601da177e4SLinus Torvalds } 37611da177e4SLinus Torvalds 3762c3968a85SDaniel Walter /* remove deleted ip from prefsrc entries */ 3763c3968a85SDaniel Walter struct arg_dev_net_ip { 3764c3968a85SDaniel Walter struct net_device *dev; 3765c3968a85SDaniel Walter struct net *net; 3766c3968a85SDaniel Walter struct in6_addr *addr; 3767c3968a85SDaniel Walter }; 3768c3968a85SDaniel Walter 37698d1c802bSDavid Ahern static int fib6_remove_prefsrc(struct fib6_info *rt, void *arg) 3770c3968a85SDaniel Walter { 3771c3968a85SDaniel Walter struct net_device *dev = ((struct arg_dev_net_ip *)arg)->dev; 3772c3968a85SDaniel Walter struct net *net = ((struct arg_dev_net_ip *)arg)->net; 3773c3968a85SDaniel Walter struct in6_addr *addr = ((struct arg_dev_net_ip *)arg)->addr; 3774c3968a85SDaniel Walter 37755e670d84SDavid Ahern if (((void *)rt->fib6_nh.nh_dev == dev || !dev) && 3776421842edSDavid Ahern rt != net->ipv6.fib6_null_entry && 377793c2fb25SDavid Ahern ipv6_addr_equal(addr, &rt->fib6_prefsrc.addr)) { 377860006a48SWei Wang spin_lock_bh(&rt6_exception_lock); 3779c3968a85SDaniel Walter /* remove prefsrc entry */ 378093c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 0; 378160006a48SWei Wang spin_unlock_bh(&rt6_exception_lock); 3782c3968a85SDaniel Walter } 3783c3968a85SDaniel Walter return 0; 3784c3968a85SDaniel Walter } 3785c3968a85SDaniel Walter 3786c3968a85SDaniel Walter void rt6_remove_prefsrc(struct inet6_ifaddr *ifp) 3787c3968a85SDaniel Walter { 3788c3968a85SDaniel Walter struct net *net = dev_net(ifp->idev->dev); 3789c3968a85SDaniel Walter struct arg_dev_net_ip adni = { 3790c3968a85SDaniel Walter .dev = ifp->idev->dev, 3791c3968a85SDaniel Walter .net = net, 3792c3968a85SDaniel Walter .addr = &ifp->addr, 3793c3968a85SDaniel Walter }; 37940c3584d5SLi RongQing fib6_clean_all(net, fib6_remove_prefsrc, &adni); 3795c3968a85SDaniel Walter } 3796c3968a85SDaniel Walter 3797be7a010dSDuan Jiong #define RTF_RA_ROUTER (RTF_ADDRCONF | RTF_DEFAULT | RTF_GATEWAY) 3798be7a010dSDuan Jiong 3799be7a010dSDuan Jiong /* Remove routers and update dst entries when gateway turn into host. */ 38008d1c802bSDavid Ahern static int fib6_clean_tohost(struct fib6_info *rt, void *arg) 3801be7a010dSDuan Jiong { 3802be7a010dSDuan Jiong struct in6_addr *gateway = (struct in6_addr *)arg; 3803be7a010dSDuan Jiong 380493c2fb25SDavid Ahern if (((rt->fib6_flags & RTF_RA_ROUTER) == RTF_RA_ROUTER) && 38055e670d84SDavid Ahern ipv6_addr_equal(gateway, &rt->fib6_nh.nh_gw)) { 3806be7a010dSDuan Jiong return -1; 3807be7a010dSDuan Jiong } 3808b16cb459SWei Wang 3809b16cb459SWei Wang /* Further clean up cached routes in exception table. 3810b16cb459SWei Wang * This is needed because cached route may have a different 3811b16cb459SWei Wang * gateway than its 'parent' in the case of an ip redirect. 3812b16cb459SWei Wang */ 3813b16cb459SWei Wang rt6_exceptions_clean_tohost(rt, gateway); 3814b16cb459SWei Wang 3815be7a010dSDuan Jiong return 0; 3816be7a010dSDuan Jiong } 3817be7a010dSDuan Jiong 3818be7a010dSDuan Jiong void rt6_clean_tohost(struct net *net, struct in6_addr *gateway) 3819be7a010dSDuan Jiong { 3820be7a010dSDuan Jiong fib6_clean_all(net, fib6_clean_tohost, gateway); 3821be7a010dSDuan Jiong } 3822be7a010dSDuan Jiong 38232127d95aSIdo Schimmel struct arg_netdev_event { 38242127d95aSIdo Schimmel const struct net_device *dev; 38254c981e28SIdo Schimmel union { 38262127d95aSIdo Schimmel unsigned int nh_flags; 38274c981e28SIdo Schimmel unsigned long event; 38284c981e28SIdo Schimmel }; 38292127d95aSIdo Schimmel }; 38302127d95aSIdo Schimmel 38318d1c802bSDavid Ahern static struct fib6_info *rt6_multipath_first_sibling(const struct fib6_info *rt) 3832d7dedee1SIdo Schimmel { 38338d1c802bSDavid Ahern struct fib6_info *iter; 3834d7dedee1SIdo Schimmel struct fib6_node *fn; 3835d7dedee1SIdo Schimmel 383693c2fb25SDavid Ahern fn = rcu_dereference_protected(rt->fib6_node, 383793c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3838d7dedee1SIdo Schimmel iter = rcu_dereference_protected(fn->leaf, 383993c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3840d7dedee1SIdo Schimmel while (iter) { 384193c2fb25SDavid Ahern if (iter->fib6_metric == rt->fib6_metric && 384233bd5ac5SDavid Ahern rt6_qualify_for_ecmp(iter)) 3843d7dedee1SIdo Schimmel return iter; 38448fb11a9aSDavid Ahern iter = rcu_dereference_protected(iter->fib6_next, 384593c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3846d7dedee1SIdo Schimmel } 3847d7dedee1SIdo Schimmel 3848d7dedee1SIdo Schimmel return NULL; 3849d7dedee1SIdo Schimmel } 3850d7dedee1SIdo Schimmel 38518d1c802bSDavid Ahern static bool rt6_is_dead(const struct fib6_info *rt) 3852d7dedee1SIdo Schimmel { 38535e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_DEAD || 38545e670d84SDavid Ahern (rt->fib6_nh.nh_flags & RTNH_F_LINKDOWN && 3855dcd1f572SDavid Ahern fib6_ignore_linkdown(rt))) 3856d7dedee1SIdo Schimmel return true; 3857d7dedee1SIdo Schimmel 3858d7dedee1SIdo Schimmel return false; 3859d7dedee1SIdo Schimmel } 3860d7dedee1SIdo Schimmel 38618d1c802bSDavid Ahern static int rt6_multipath_total_weight(const struct fib6_info *rt) 3862d7dedee1SIdo Schimmel { 38638d1c802bSDavid Ahern struct fib6_info *iter; 3864d7dedee1SIdo Schimmel int total = 0; 3865d7dedee1SIdo Schimmel 3866d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) 38675e670d84SDavid Ahern total += rt->fib6_nh.nh_weight; 3868d7dedee1SIdo Schimmel 386993c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) { 3870d7dedee1SIdo Schimmel if (!rt6_is_dead(iter)) 38715e670d84SDavid Ahern total += iter->fib6_nh.nh_weight; 3872d7dedee1SIdo Schimmel } 3873d7dedee1SIdo Schimmel 3874d7dedee1SIdo Schimmel return total; 3875d7dedee1SIdo Schimmel } 3876d7dedee1SIdo Schimmel 38778d1c802bSDavid Ahern static void rt6_upper_bound_set(struct fib6_info *rt, int *weight, int total) 3878d7dedee1SIdo Schimmel { 3879d7dedee1SIdo Schimmel int upper_bound = -1; 3880d7dedee1SIdo Schimmel 3881d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) { 38825e670d84SDavid Ahern *weight += rt->fib6_nh.nh_weight; 3883d7dedee1SIdo Schimmel upper_bound = DIV_ROUND_CLOSEST_ULL((u64) (*weight) << 31, 3884d7dedee1SIdo Schimmel total) - 1; 3885d7dedee1SIdo Schimmel } 38865e670d84SDavid Ahern atomic_set(&rt->fib6_nh.nh_upper_bound, upper_bound); 3887d7dedee1SIdo Schimmel } 3888d7dedee1SIdo Schimmel 38898d1c802bSDavid Ahern static void rt6_multipath_upper_bound_set(struct fib6_info *rt, int total) 3890d7dedee1SIdo Schimmel { 38918d1c802bSDavid Ahern struct fib6_info *iter; 3892d7dedee1SIdo Schimmel int weight = 0; 3893d7dedee1SIdo Schimmel 3894d7dedee1SIdo Schimmel rt6_upper_bound_set(rt, &weight, total); 3895d7dedee1SIdo Schimmel 389693c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 3897d7dedee1SIdo Schimmel rt6_upper_bound_set(iter, &weight, total); 3898d7dedee1SIdo Schimmel } 3899d7dedee1SIdo Schimmel 39008d1c802bSDavid Ahern void rt6_multipath_rebalance(struct fib6_info *rt) 3901d7dedee1SIdo Schimmel { 39028d1c802bSDavid Ahern struct fib6_info *first; 3903d7dedee1SIdo Schimmel int total; 3904d7dedee1SIdo Schimmel 3905d7dedee1SIdo Schimmel /* In case the entire multipath route was marked for flushing, 3906d7dedee1SIdo Schimmel * then there is no need to rebalance upon the removal of every 3907d7dedee1SIdo Schimmel * sibling route. 3908d7dedee1SIdo Schimmel */ 390993c2fb25SDavid Ahern if (!rt->fib6_nsiblings || rt->should_flush) 3910d7dedee1SIdo Schimmel return; 3911d7dedee1SIdo Schimmel 3912d7dedee1SIdo Schimmel /* During lookup routes are evaluated in order, so we need to 3913d7dedee1SIdo Schimmel * make sure upper bounds are assigned from the first sibling 3914d7dedee1SIdo Schimmel * onwards. 3915d7dedee1SIdo Schimmel */ 3916d7dedee1SIdo Schimmel first = rt6_multipath_first_sibling(rt); 3917d7dedee1SIdo Schimmel if (WARN_ON_ONCE(!first)) 3918d7dedee1SIdo Schimmel return; 3919d7dedee1SIdo Schimmel 3920d7dedee1SIdo Schimmel total = rt6_multipath_total_weight(first); 3921d7dedee1SIdo Schimmel rt6_multipath_upper_bound_set(first, total); 3922d7dedee1SIdo Schimmel } 3923d7dedee1SIdo Schimmel 39248d1c802bSDavid Ahern static int fib6_ifup(struct fib6_info *rt, void *p_arg) 39252127d95aSIdo Schimmel { 39262127d95aSIdo Schimmel const struct arg_netdev_event *arg = p_arg; 39277aef6859SDavid Ahern struct net *net = dev_net(arg->dev); 39282127d95aSIdo Schimmel 3929421842edSDavid Ahern if (rt != net->ipv6.fib6_null_entry && rt->fib6_nh.nh_dev == arg->dev) { 39305e670d84SDavid Ahern rt->fib6_nh.nh_flags &= ~arg->nh_flags; 39317aef6859SDavid Ahern fib6_update_sernum_upto_root(net, rt); 3932d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 39331de178edSIdo Schimmel } 39342127d95aSIdo Schimmel 39352127d95aSIdo Schimmel return 0; 39362127d95aSIdo Schimmel } 39372127d95aSIdo Schimmel 39382127d95aSIdo Schimmel void rt6_sync_up(struct net_device *dev, unsigned int nh_flags) 39392127d95aSIdo Schimmel { 39402127d95aSIdo Schimmel struct arg_netdev_event arg = { 39412127d95aSIdo Schimmel .dev = dev, 39426802f3adSIdo Schimmel { 39432127d95aSIdo Schimmel .nh_flags = nh_flags, 39446802f3adSIdo Schimmel }, 39452127d95aSIdo Schimmel }; 39462127d95aSIdo Schimmel 39472127d95aSIdo Schimmel if (nh_flags & RTNH_F_DEAD && netif_carrier_ok(dev)) 39482127d95aSIdo Schimmel arg.nh_flags |= RTNH_F_LINKDOWN; 39492127d95aSIdo Schimmel 39502127d95aSIdo Schimmel fib6_clean_all(dev_net(dev), fib6_ifup, &arg); 39512127d95aSIdo Schimmel } 39522127d95aSIdo Schimmel 39538d1c802bSDavid Ahern static bool rt6_multipath_uses_dev(const struct fib6_info *rt, 39541de178edSIdo Schimmel const struct net_device *dev) 39551de178edSIdo Schimmel { 39568d1c802bSDavid Ahern struct fib6_info *iter; 39571de178edSIdo Schimmel 39585e670d84SDavid Ahern if (rt->fib6_nh.nh_dev == dev) 39591de178edSIdo Schimmel return true; 396093c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 39615e670d84SDavid Ahern if (iter->fib6_nh.nh_dev == dev) 39621de178edSIdo Schimmel return true; 39631de178edSIdo Schimmel 39641de178edSIdo Schimmel return false; 39651de178edSIdo Schimmel } 39661de178edSIdo Schimmel 39678d1c802bSDavid Ahern static void rt6_multipath_flush(struct fib6_info *rt) 39681de178edSIdo Schimmel { 39698d1c802bSDavid Ahern struct fib6_info *iter; 39701de178edSIdo Schimmel 39711de178edSIdo Schimmel rt->should_flush = 1; 397293c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 39731de178edSIdo Schimmel iter->should_flush = 1; 39741de178edSIdo Schimmel } 39751de178edSIdo Schimmel 39768d1c802bSDavid Ahern static unsigned int rt6_multipath_dead_count(const struct fib6_info *rt, 39771de178edSIdo Schimmel const struct net_device *down_dev) 39781de178edSIdo Schimmel { 39798d1c802bSDavid Ahern struct fib6_info *iter; 39801de178edSIdo Schimmel unsigned int dead = 0; 39811de178edSIdo Schimmel 39825e670d84SDavid Ahern if (rt->fib6_nh.nh_dev == down_dev || 39835e670d84SDavid Ahern rt->fib6_nh.nh_flags & RTNH_F_DEAD) 39841de178edSIdo Schimmel dead++; 398593c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 39865e670d84SDavid Ahern if (iter->fib6_nh.nh_dev == down_dev || 39875e670d84SDavid Ahern iter->fib6_nh.nh_flags & RTNH_F_DEAD) 39881de178edSIdo Schimmel dead++; 39891de178edSIdo Schimmel 39901de178edSIdo Schimmel return dead; 39911de178edSIdo Schimmel } 39921de178edSIdo Schimmel 39938d1c802bSDavid Ahern static void rt6_multipath_nh_flags_set(struct fib6_info *rt, 39941de178edSIdo Schimmel const struct net_device *dev, 39951de178edSIdo Schimmel unsigned int nh_flags) 39961de178edSIdo Schimmel { 39978d1c802bSDavid Ahern struct fib6_info *iter; 39981de178edSIdo Schimmel 39995e670d84SDavid Ahern if (rt->fib6_nh.nh_dev == dev) 40005e670d84SDavid Ahern rt->fib6_nh.nh_flags |= nh_flags; 400193c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 40025e670d84SDavid Ahern if (iter->fib6_nh.nh_dev == dev) 40035e670d84SDavid Ahern iter->fib6_nh.nh_flags |= nh_flags; 40041de178edSIdo Schimmel } 40051de178edSIdo Schimmel 4006a1a22c12SDavid Ahern /* called with write lock held for table with rt */ 40078d1c802bSDavid Ahern static int fib6_ifdown(struct fib6_info *rt, void *p_arg) 40081da177e4SLinus Torvalds { 40094c981e28SIdo Schimmel const struct arg_netdev_event *arg = p_arg; 40104c981e28SIdo Schimmel const struct net_device *dev = arg->dev; 40117aef6859SDavid Ahern struct net *net = dev_net(dev); 40128ed67789SDaniel Lezcano 4013421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 401427c6fa73SIdo Schimmel return 0; 401527c6fa73SIdo Schimmel 401627c6fa73SIdo Schimmel switch (arg->event) { 401727c6fa73SIdo Schimmel case NETDEV_UNREGISTER: 40185e670d84SDavid Ahern return rt->fib6_nh.nh_dev == dev ? -1 : 0; 401927c6fa73SIdo Schimmel case NETDEV_DOWN: 40201de178edSIdo Schimmel if (rt->should_flush) 402127c6fa73SIdo Schimmel return -1; 402293c2fb25SDavid Ahern if (!rt->fib6_nsiblings) 40235e670d84SDavid Ahern return rt->fib6_nh.nh_dev == dev ? -1 : 0; 40241de178edSIdo Schimmel if (rt6_multipath_uses_dev(rt, dev)) { 40251de178edSIdo Schimmel unsigned int count; 40261de178edSIdo Schimmel 40271de178edSIdo Schimmel count = rt6_multipath_dead_count(rt, dev); 402893c2fb25SDavid Ahern if (rt->fib6_nsiblings + 1 == count) { 40291de178edSIdo Schimmel rt6_multipath_flush(rt); 40301de178edSIdo Schimmel return -1; 40311de178edSIdo Schimmel } 40321de178edSIdo Schimmel rt6_multipath_nh_flags_set(rt, dev, RTNH_F_DEAD | 40331de178edSIdo Schimmel RTNH_F_LINKDOWN); 40347aef6859SDavid Ahern fib6_update_sernum(net, rt); 4035d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 40361de178edSIdo Schimmel } 40371de178edSIdo Schimmel return -2; 403827c6fa73SIdo Schimmel case NETDEV_CHANGE: 40395e670d84SDavid Ahern if (rt->fib6_nh.nh_dev != dev || 404093c2fb25SDavid Ahern rt->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) 404127c6fa73SIdo Schimmel break; 40425e670d84SDavid Ahern rt->fib6_nh.nh_flags |= RTNH_F_LINKDOWN; 4043d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 404427c6fa73SIdo Schimmel break; 40452b241361SIdo Schimmel } 4046c159d30cSDavid S. Miller 40471da177e4SLinus Torvalds return 0; 40481da177e4SLinus Torvalds } 40491da177e4SLinus Torvalds 405027c6fa73SIdo Schimmel void rt6_sync_down_dev(struct net_device *dev, unsigned long event) 40511da177e4SLinus Torvalds { 40524c981e28SIdo Schimmel struct arg_netdev_event arg = { 40538ed67789SDaniel Lezcano .dev = dev, 40546802f3adSIdo Schimmel { 40554c981e28SIdo Schimmel .event = event, 40566802f3adSIdo Schimmel }, 40578ed67789SDaniel Lezcano }; 40587c6bb7d2SDavid Ahern struct net *net = dev_net(dev); 40598ed67789SDaniel Lezcano 40607c6bb7d2SDavid Ahern if (net->ipv6.sysctl.skip_notify_on_dev_down) 40617c6bb7d2SDavid Ahern fib6_clean_all_skip_notify(net, fib6_ifdown, &arg); 40627c6bb7d2SDavid Ahern else 40637c6bb7d2SDavid Ahern fib6_clean_all(net, fib6_ifdown, &arg); 40644c981e28SIdo Schimmel } 40654c981e28SIdo Schimmel 40664c981e28SIdo Schimmel void rt6_disable_ip(struct net_device *dev, unsigned long event) 40674c981e28SIdo Schimmel { 40684c981e28SIdo Schimmel rt6_sync_down_dev(dev, event); 40694c981e28SIdo Schimmel rt6_uncached_list_flush_dev(dev_net(dev), dev); 40704c981e28SIdo Schimmel neigh_ifdown(&nd_tbl, dev); 40711da177e4SLinus Torvalds } 40721da177e4SLinus Torvalds 407395c96174SEric Dumazet struct rt6_mtu_change_arg { 40741da177e4SLinus Torvalds struct net_device *dev; 407595c96174SEric Dumazet unsigned int mtu; 40761da177e4SLinus Torvalds }; 40771da177e4SLinus Torvalds 40788d1c802bSDavid Ahern static int rt6_mtu_change_route(struct fib6_info *rt, void *p_arg) 40791da177e4SLinus Torvalds { 40801da177e4SLinus Torvalds struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg; 40811da177e4SLinus Torvalds struct inet6_dev *idev; 40821da177e4SLinus Torvalds 40831da177e4SLinus Torvalds /* In IPv6 pmtu discovery is not optional, 40841da177e4SLinus Torvalds so that RTAX_MTU lock cannot disable it. 40851da177e4SLinus Torvalds We still use this lock to block changes 40861da177e4SLinus Torvalds caused by addrconf/ndisc. 40871da177e4SLinus Torvalds */ 40881da177e4SLinus Torvalds 40891da177e4SLinus Torvalds idev = __in6_dev_get(arg->dev); 409038308473SDavid S. Miller if (!idev) 40911da177e4SLinus Torvalds return 0; 40921da177e4SLinus Torvalds 40931da177e4SLinus Torvalds /* For administrative MTU increase, there is no way to discover 40941da177e4SLinus Torvalds IPv6 PMTU increase, so PMTU increase should be updated here. 40951da177e4SLinus Torvalds Since RFC 1981 doesn't include administrative MTU increase 40961da177e4SLinus Torvalds update PMTU increase is a MUST. (i.e. jumbo frame) 40971da177e4SLinus Torvalds */ 40985e670d84SDavid Ahern if (rt->fib6_nh.nh_dev == arg->dev && 4099d4ead6b3SDavid Ahern !fib6_metric_locked(rt, RTAX_MTU)) { 4100d4ead6b3SDavid Ahern u32 mtu = rt->fib6_pmtu; 4101d4ead6b3SDavid Ahern 4102d4ead6b3SDavid Ahern if (mtu >= arg->mtu || 4103d4ead6b3SDavid Ahern (mtu < arg->mtu && mtu == idev->cnf.mtu6)) 4104d4ead6b3SDavid Ahern fib6_metric_set(rt, RTAX_MTU, arg->mtu); 4105d4ead6b3SDavid Ahern 4106f5bbe7eeSWei Wang spin_lock_bh(&rt6_exception_lock); 4107e9fa1495SStefano Brivio rt6_exceptions_update_pmtu(idev, rt, arg->mtu); 4108f5bbe7eeSWei Wang spin_unlock_bh(&rt6_exception_lock); 41094b32b5adSMartin KaFai Lau } 41101da177e4SLinus Torvalds return 0; 41111da177e4SLinus Torvalds } 41121da177e4SLinus Torvalds 411395c96174SEric Dumazet void rt6_mtu_change(struct net_device *dev, unsigned int mtu) 41141da177e4SLinus Torvalds { 4115c71099acSThomas Graf struct rt6_mtu_change_arg arg = { 4116c71099acSThomas Graf .dev = dev, 4117c71099acSThomas Graf .mtu = mtu, 4118c71099acSThomas Graf }; 41191da177e4SLinus Torvalds 41200c3584d5SLi RongQing fib6_clean_all(dev_net(dev), rt6_mtu_change_route, &arg); 41211da177e4SLinus Torvalds } 41221da177e4SLinus Torvalds 4123ef7c79edSPatrick McHardy static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = { 41245176f91eSThomas Graf [RTA_GATEWAY] = { .len = sizeof(struct in6_addr) }, 4125aa8f8778SEric Dumazet [RTA_PREFSRC] = { .len = sizeof(struct in6_addr) }, 412686872cb5SThomas Graf [RTA_OIF] = { .type = NLA_U32 }, 4127ab364a6fSThomas Graf [RTA_IIF] = { .type = NLA_U32 }, 412886872cb5SThomas Graf [RTA_PRIORITY] = { .type = NLA_U32 }, 412986872cb5SThomas Graf [RTA_METRICS] = { .type = NLA_NESTED }, 413051ebd318SNicolas Dichtel [RTA_MULTIPATH] = { .len = sizeof(struct rtnexthop) }, 4131c78ba6d6SLubomir Rintel [RTA_PREF] = { .type = NLA_U8 }, 413219e42e45SRoopa Prabhu [RTA_ENCAP_TYPE] = { .type = NLA_U16 }, 413319e42e45SRoopa Prabhu [RTA_ENCAP] = { .type = NLA_NESTED }, 413432bc201eSXin Long [RTA_EXPIRES] = { .type = NLA_U32 }, 4135622ec2c9SLorenzo Colitti [RTA_UID] = { .type = NLA_U32 }, 41363b45a410SLiping Zhang [RTA_MARK] = { .type = NLA_U32 }, 4137aa8f8778SEric Dumazet [RTA_TABLE] = { .type = NLA_U32 }, 4138eacb9384SRoopa Prabhu [RTA_IP_PROTO] = { .type = NLA_U8 }, 4139eacb9384SRoopa Prabhu [RTA_SPORT] = { .type = NLA_U16 }, 4140eacb9384SRoopa Prabhu [RTA_DPORT] = { .type = NLA_U16 }, 414186872cb5SThomas Graf }; 414286872cb5SThomas Graf 414386872cb5SThomas Graf static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh, 4144333c4301SDavid Ahern struct fib6_config *cfg, 4145333c4301SDavid Ahern struct netlink_ext_ack *extack) 41461da177e4SLinus Torvalds { 414786872cb5SThomas Graf struct rtmsg *rtm; 414886872cb5SThomas Graf struct nlattr *tb[RTA_MAX+1]; 4149c78ba6d6SLubomir Rintel unsigned int pref; 415086872cb5SThomas Graf int err; 41511da177e4SLinus Torvalds 4152fceb6435SJohannes Berg err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy, 4153dac9c979SDavid Ahern extack); 415486872cb5SThomas Graf if (err < 0) 415586872cb5SThomas Graf goto errout; 41561da177e4SLinus Torvalds 415786872cb5SThomas Graf err = -EINVAL; 415886872cb5SThomas Graf rtm = nlmsg_data(nlh); 415986872cb5SThomas Graf 416084db8407SMaciej Żenczykowski *cfg = (struct fib6_config){ 416184db8407SMaciej Żenczykowski .fc_table = rtm->rtm_table, 416284db8407SMaciej Żenczykowski .fc_dst_len = rtm->rtm_dst_len, 416384db8407SMaciej Żenczykowski .fc_src_len = rtm->rtm_src_len, 416484db8407SMaciej Żenczykowski .fc_flags = RTF_UP, 416584db8407SMaciej Żenczykowski .fc_protocol = rtm->rtm_protocol, 416684db8407SMaciej Żenczykowski .fc_type = rtm->rtm_type, 416784db8407SMaciej Żenczykowski 416884db8407SMaciej Żenczykowski .fc_nlinfo.portid = NETLINK_CB(skb).portid, 416984db8407SMaciej Żenczykowski .fc_nlinfo.nlh = nlh, 417084db8407SMaciej Żenczykowski .fc_nlinfo.nl_net = sock_net(skb->sk), 417184db8407SMaciej Żenczykowski }; 417286872cb5SThomas Graf 4173ef2c7d7bSNicolas Dichtel if (rtm->rtm_type == RTN_UNREACHABLE || 4174ef2c7d7bSNicolas Dichtel rtm->rtm_type == RTN_BLACKHOLE || 4175b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_PROHIBIT || 4176b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_THROW) 417786872cb5SThomas Graf cfg->fc_flags |= RTF_REJECT; 417886872cb5SThomas Graf 4179ab79ad14SMaciej Żenczykowski if (rtm->rtm_type == RTN_LOCAL) 4180ab79ad14SMaciej Żenczykowski cfg->fc_flags |= RTF_LOCAL; 4181ab79ad14SMaciej Żenczykowski 41821f56a01fSMartin KaFai Lau if (rtm->rtm_flags & RTM_F_CLONED) 41831f56a01fSMartin KaFai Lau cfg->fc_flags |= RTF_CACHE; 41841f56a01fSMartin KaFai Lau 4185fc1e64e1SDavid Ahern cfg->fc_flags |= (rtm->rtm_flags & RTNH_F_ONLINK); 4186fc1e64e1SDavid Ahern 418786872cb5SThomas Graf if (tb[RTA_GATEWAY]) { 418867b61f6cSJiri Benc cfg->fc_gateway = nla_get_in6_addr(tb[RTA_GATEWAY]); 418986872cb5SThomas Graf cfg->fc_flags |= RTF_GATEWAY; 41901da177e4SLinus Torvalds } 4191e3818541SDavid Ahern if (tb[RTA_VIA]) { 4192e3818541SDavid Ahern NL_SET_ERR_MSG(extack, "IPv6 does not support RTA_VIA attribute"); 4193e3818541SDavid Ahern goto errout; 4194e3818541SDavid Ahern } 419586872cb5SThomas Graf 419686872cb5SThomas Graf if (tb[RTA_DST]) { 419786872cb5SThomas Graf int plen = (rtm->rtm_dst_len + 7) >> 3; 419886872cb5SThomas Graf 419986872cb5SThomas Graf if (nla_len(tb[RTA_DST]) < plen) 420086872cb5SThomas Graf goto errout; 420186872cb5SThomas Graf 420286872cb5SThomas Graf nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen); 42031da177e4SLinus Torvalds } 420486872cb5SThomas Graf 420586872cb5SThomas Graf if (tb[RTA_SRC]) { 420686872cb5SThomas Graf int plen = (rtm->rtm_src_len + 7) >> 3; 420786872cb5SThomas Graf 420886872cb5SThomas Graf if (nla_len(tb[RTA_SRC]) < plen) 420986872cb5SThomas Graf goto errout; 421086872cb5SThomas Graf 421186872cb5SThomas Graf nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen); 42121da177e4SLinus Torvalds } 421386872cb5SThomas Graf 4214c3968a85SDaniel Walter if (tb[RTA_PREFSRC]) 421567b61f6cSJiri Benc cfg->fc_prefsrc = nla_get_in6_addr(tb[RTA_PREFSRC]); 4216c3968a85SDaniel Walter 421786872cb5SThomas Graf if (tb[RTA_OIF]) 421886872cb5SThomas Graf cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]); 421986872cb5SThomas Graf 422086872cb5SThomas Graf if (tb[RTA_PRIORITY]) 422186872cb5SThomas Graf cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]); 422286872cb5SThomas Graf 422386872cb5SThomas Graf if (tb[RTA_METRICS]) { 422486872cb5SThomas Graf cfg->fc_mx = nla_data(tb[RTA_METRICS]); 422586872cb5SThomas Graf cfg->fc_mx_len = nla_len(tb[RTA_METRICS]); 42261da177e4SLinus Torvalds } 422786872cb5SThomas Graf 422886872cb5SThomas Graf if (tb[RTA_TABLE]) 422986872cb5SThomas Graf cfg->fc_table = nla_get_u32(tb[RTA_TABLE]); 423086872cb5SThomas Graf 423151ebd318SNicolas Dichtel if (tb[RTA_MULTIPATH]) { 423251ebd318SNicolas Dichtel cfg->fc_mp = nla_data(tb[RTA_MULTIPATH]); 423351ebd318SNicolas Dichtel cfg->fc_mp_len = nla_len(tb[RTA_MULTIPATH]); 42349ed59592SDavid Ahern 42359ed59592SDavid Ahern err = lwtunnel_valid_encap_type_attr(cfg->fc_mp, 4236c255bd68SDavid Ahern cfg->fc_mp_len, extack); 42379ed59592SDavid Ahern if (err < 0) 42389ed59592SDavid Ahern goto errout; 423951ebd318SNicolas Dichtel } 424051ebd318SNicolas Dichtel 4241c78ba6d6SLubomir Rintel if (tb[RTA_PREF]) { 4242c78ba6d6SLubomir Rintel pref = nla_get_u8(tb[RTA_PREF]); 4243c78ba6d6SLubomir Rintel if (pref != ICMPV6_ROUTER_PREF_LOW && 4244c78ba6d6SLubomir Rintel pref != ICMPV6_ROUTER_PREF_HIGH) 4245c78ba6d6SLubomir Rintel pref = ICMPV6_ROUTER_PREF_MEDIUM; 4246c78ba6d6SLubomir Rintel cfg->fc_flags |= RTF_PREF(pref); 4247c78ba6d6SLubomir Rintel } 4248c78ba6d6SLubomir Rintel 424919e42e45SRoopa Prabhu if (tb[RTA_ENCAP]) 425019e42e45SRoopa Prabhu cfg->fc_encap = tb[RTA_ENCAP]; 425119e42e45SRoopa Prabhu 42529ed59592SDavid Ahern if (tb[RTA_ENCAP_TYPE]) { 425319e42e45SRoopa Prabhu cfg->fc_encap_type = nla_get_u16(tb[RTA_ENCAP_TYPE]); 425419e42e45SRoopa Prabhu 4255c255bd68SDavid Ahern err = lwtunnel_valid_encap_type(cfg->fc_encap_type, extack); 42569ed59592SDavid Ahern if (err < 0) 42579ed59592SDavid Ahern goto errout; 42589ed59592SDavid Ahern } 42599ed59592SDavid Ahern 426032bc201eSXin Long if (tb[RTA_EXPIRES]) { 426132bc201eSXin Long unsigned long timeout = addrconf_timeout_fixup(nla_get_u32(tb[RTA_EXPIRES]), HZ); 426232bc201eSXin Long 426332bc201eSXin Long if (addrconf_finite_timeout(timeout)) { 426432bc201eSXin Long cfg->fc_expires = jiffies_to_clock_t(timeout * HZ); 426532bc201eSXin Long cfg->fc_flags |= RTF_EXPIRES; 426632bc201eSXin Long } 426732bc201eSXin Long } 426832bc201eSXin Long 426986872cb5SThomas Graf err = 0; 427086872cb5SThomas Graf errout: 427186872cb5SThomas Graf return err; 42721da177e4SLinus Torvalds } 42731da177e4SLinus Torvalds 42746b9ea5a6SRoopa Prabhu struct rt6_nh { 42758d1c802bSDavid Ahern struct fib6_info *fib6_info; 42766b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 42776b9ea5a6SRoopa Prabhu struct list_head next; 42786b9ea5a6SRoopa Prabhu }; 42796b9ea5a6SRoopa Prabhu 4280d4ead6b3SDavid Ahern static int ip6_route_info_append(struct net *net, 4281d4ead6b3SDavid Ahern struct list_head *rt6_nh_list, 42828d1c802bSDavid Ahern struct fib6_info *rt, 42838d1c802bSDavid Ahern struct fib6_config *r_cfg) 42846b9ea5a6SRoopa Prabhu { 42856b9ea5a6SRoopa Prabhu struct rt6_nh *nh; 42866b9ea5a6SRoopa Prabhu int err = -EEXIST; 42876b9ea5a6SRoopa Prabhu 42886b9ea5a6SRoopa Prabhu list_for_each_entry(nh, rt6_nh_list, next) { 42898d1c802bSDavid Ahern /* check if fib6_info already exists */ 42908d1c802bSDavid Ahern if (rt6_duplicate_nexthop(nh->fib6_info, rt)) 42916b9ea5a6SRoopa Prabhu return err; 42926b9ea5a6SRoopa Prabhu } 42936b9ea5a6SRoopa Prabhu 42946b9ea5a6SRoopa Prabhu nh = kzalloc(sizeof(*nh), GFP_KERNEL); 42956b9ea5a6SRoopa Prabhu if (!nh) 42966b9ea5a6SRoopa Prabhu return -ENOMEM; 42978d1c802bSDavid Ahern nh->fib6_info = rt; 42986b9ea5a6SRoopa Prabhu memcpy(&nh->r_cfg, r_cfg, sizeof(*r_cfg)); 42996b9ea5a6SRoopa Prabhu list_add_tail(&nh->next, rt6_nh_list); 43006b9ea5a6SRoopa Prabhu 43016b9ea5a6SRoopa Prabhu return 0; 43026b9ea5a6SRoopa Prabhu } 43036b9ea5a6SRoopa Prabhu 43048d1c802bSDavid Ahern static void ip6_route_mpath_notify(struct fib6_info *rt, 43058d1c802bSDavid Ahern struct fib6_info *rt_last, 43063b1137feSDavid Ahern struct nl_info *info, 43073b1137feSDavid Ahern __u16 nlflags) 43083b1137feSDavid Ahern { 43093b1137feSDavid Ahern /* if this is an APPEND route, then rt points to the first route 43103b1137feSDavid Ahern * inserted and rt_last points to last route inserted. Userspace 43113b1137feSDavid Ahern * wants a consistent dump of the route which starts at the first 43123b1137feSDavid Ahern * nexthop. Since sibling routes are always added at the end of 43133b1137feSDavid Ahern * the list, find the first sibling of the last route appended 43143b1137feSDavid Ahern */ 431593c2fb25SDavid Ahern if ((nlflags & NLM_F_APPEND) && rt_last && rt_last->fib6_nsiblings) { 431693c2fb25SDavid Ahern rt = list_first_entry(&rt_last->fib6_siblings, 43178d1c802bSDavid Ahern struct fib6_info, 431893c2fb25SDavid Ahern fib6_siblings); 43193b1137feSDavid Ahern } 43203b1137feSDavid Ahern 43213b1137feSDavid Ahern if (rt) 43223b1137feSDavid Ahern inet6_rt_notify(RTM_NEWROUTE, rt, info, nlflags); 43233b1137feSDavid Ahern } 43243b1137feSDavid Ahern 4325333c4301SDavid Ahern static int ip6_route_multipath_add(struct fib6_config *cfg, 4326333c4301SDavid Ahern struct netlink_ext_ack *extack) 432751ebd318SNicolas Dichtel { 43288d1c802bSDavid Ahern struct fib6_info *rt_notif = NULL, *rt_last = NULL; 43293b1137feSDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 433051ebd318SNicolas Dichtel struct fib6_config r_cfg; 433151ebd318SNicolas Dichtel struct rtnexthop *rtnh; 43328d1c802bSDavid Ahern struct fib6_info *rt; 43336b9ea5a6SRoopa Prabhu struct rt6_nh *err_nh; 43346b9ea5a6SRoopa Prabhu struct rt6_nh *nh, *nh_safe; 43353b1137feSDavid Ahern __u16 nlflags; 433651ebd318SNicolas Dichtel int remaining; 433751ebd318SNicolas Dichtel int attrlen; 43386b9ea5a6SRoopa Prabhu int err = 1; 43396b9ea5a6SRoopa Prabhu int nhn = 0; 43406b9ea5a6SRoopa Prabhu int replace = (cfg->fc_nlinfo.nlh && 43416b9ea5a6SRoopa Prabhu (cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_REPLACE)); 43426b9ea5a6SRoopa Prabhu LIST_HEAD(rt6_nh_list); 434351ebd318SNicolas Dichtel 43443b1137feSDavid Ahern nlflags = replace ? NLM_F_REPLACE : NLM_F_CREATE; 43453b1137feSDavid Ahern if (info->nlh && info->nlh->nlmsg_flags & NLM_F_APPEND) 43463b1137feSDavid Ahern nlflags |= NLM_F_APPEND; 43473b1137feSDavid Ahern 434835f1b4e9SMichal Kubeček remaining = cfg->fc_mp_len; 434951ebd318SNicolas Dichtel rtnh = (struct rtnexthop *)cfg->fc_mp; 435051ebd318SNicolas Dichtel 43516b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry and build a list (rt6_nh_list) of 43528d1c802bSDavid Ahern * fib6_info structs per nexthop 43536b9ea5a6SRoopa Prabhu */ 435451ebd318SNicolas Dichtel while (rtnh_ok(rtnh, remaining)) { 435551ebd318SNicolas Dichtel memcpy(&r_cfg, cfg, sizeof(*cfg)); 435651ebd318SNicolas Dichtel if (rtnh->rtnh_ifindex) 435751ebd318SNicolas Dichtel r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 435851ebd318SNicolas Dichtel 435951ebd318SNicolas Dichtel attrlen = rtnh_attrlen(rtnh); 436051ebd318SNicolas Dichtel if (attrlen > 0) { 436151ebd318SNicolas Dichtel struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 436251ebd318SNicolas Dichtel 436351ebd318SNicolas Dichtel nla = nla_find(attrs, attrlen, RTA_GATEWAY); 436451ebd318SNicolas Dichtel if (nla) { 436567b61f6cSJiri Benc r_cfg.fc_gateway = nla_get_in6_addr(nla); 436651ebd318SNicolas Dichtel r_cfg.fc_flags |= RTF_GATEWAY; 436751ebd318SNicolas Dichtel } 436819e42e45SRoopa Prabhu r_cfg.fc_encap = nla_find(attrs, attrlen, RTA_ENCAP); 436919e42e45SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_ENCAP_TYPE); 437019e42e45SRoopa Prabhu if (nla) 437119e42e45SRoopa Prabhu r_cfg.fc_encap_type = nla_get_u16(nla); 437251ebd318SNicolas Dichtel } 43736b9ea5a6SRoopa Prabhu 437468e2ffdeSDavid Ahern r_cfg.fc_flags |= (rtnh->rtnh_flags & RTNH_F_ONLINK); 4375acb54e3cSDavid Ahern rt = ip6_route_info_create(&r_cfg, GFP_KERNEL, extack); 43768c5b83f0SRoopa Prabhu if (IS_ERR(rt)) { 43778c5b83f0SRoopa Prabhu err = PTR_ERR(rt); 43788c5b83f0SRoopa Prabhu rt = NULL; 43796b9ea5a6SRoopa Prabhu goto cleanup; 43808c5b83f0SRoopa Prabhu } 4381b5d2d75eSDavid Ahern if (!rt6_qualify_for_ecmp(rt)) { 4382b5d2d75eSDavid Ahern err = -EINVAL; 4383b5d2d75eSDavid Ahern NL_SET_ERR_MSG(extack, 4384b5d2d75eSDavid Ahern "Device only routes can not be added for IPv6 using the multipath API."); 4385b5d2d75eSDavid Ahern fib6_info_release(rt); 4386b5d2d75eSDavid Ahern goto cleanup; 4387b5d2d75eSDavid Ahern } 43886b9ea5a6SRoopa Prabhu 43895e670d84SDavid Ahern rt->fib6_nh.nh_weight = rtnh->rtnh_hops + 1; 4390398958aeSIdo Schimmel 4391d4ead6b3SDavid Ahern err = ip6_route_info_append(info->nl_net, &rt6_nh_list, 4392d4ead6b3SDavid Ahern rt, &r_cfg); 439351ebd318SNicolas Dichtel if (err) { 439493531c67SDavid Ahern fib6_info_release(rt); 43956b9ea5a6SRoopa Prabhu goto cleanup; 439651ebd318SNicolas Dichtel } 43976b9ea5a6SRoopa Prabhu 43986b9ea5a6SRoopa Prabhu rtnh = rtnh_next(rtnh, &remaining); 439951ebd318SNicolas Dichtel } 44006b9ea5a6SRoopa Prabhu 44013b1137feSDavid Ahern /* for add and replace send one notification with all nexthops. 44023b1137feSDavid Ahern * Skip the notification in fib6_add_rt2node and send one with 44033b1137feSDavid Ahern * the full route when done 44043b1137feSDavid Ahern */ 44053b1137feSDavid Ahern info->skip_notify = 1; 44063b1137feSDavid Ahern 44076b9ea5a6SRoopa Prabhu err_nh = NULL; 44086b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 44098d1c802bSDavid Ahern err = __ip6_ins_rt(nh->fib6_info, info, extack); 44108d1c802bSDavid Ahern fib6_info_release(nh->fib6_info); 44113b1137feSDavid Ahern 4412f7225172SDavid Ahern if (!err) { 4413f7225172SDavid Ahern /* save reference to last route successfully inserted */ 4414f7225172SDavid Ahern rt_last = nh->fib6_info; 4415f7225172SDavid Ahern 44166b9ea5a6SRoopa Prabhu /* save reference to first route for notification */ 4417f7225172SDavid Ahern if (!rt_notif) 44188d1c802bSDavid Ahern rt_notif = nh->fib6_info; 4419f7225172SDavid Ahern } 44206b9ea5a6SRoopa Prabhu 44218d1c802bSDavid Ahern /* nh->fib6_info is used or freed at this point, reset to NULL*/ 44228d1c802bSDavid Ahern nh->fib6_info = NULL; 44236b9ea5a6SRoopa Prabhu if (err) { 44246b9ea5a6SRoopa Prabhu if (replace && nhn) 4425a5a82d84SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 4426a5a82d84SJakub Kicinski "multipath route replace failed (check consistency of installed routes)"); 44276b9ea5a6SRoopa Prabhu err_nh = nh; 44286b9ea5a6SRoopa Prabhu goto add_errout; 44296b9ea5a6SRoopa Prabhu } 44306b9ea5a6SRoopa Prabhu 44311a72418bSNicolas Dichtel /* Because each route is added like a single route we remove 443227596472SMichal Kubeček * these flags after the first nexthop: if there is a collision, 443327596472SMichal Kubeček * we have already failed to add the first nexthop: 443427596472SMichal Kubeček * fib6_add_rt2node() has rejected it; when replacing, old 443527596472SMichal Kubeček * nexthops have been replaced by first new, the rest should 443627596472SMichal Kubeček * be added to it. 44371a72418bSNicolas Dichtel */ 443827596472SMichal Kubeček cfg->fc_nlinfo.nlh->nlmsg_flags &= ~(NLM_F_EXCL | 443927596472SMichal Kubeček NLM_F_REPLACE); 44406b9ea5a6SRoopa Prabhu nhn++; 44416b9ea5a6SRoopa Prabhu } 44426b9ea5a6SRoopa Prabhu 44433b1137feSDavid Ahern /* success ... tell user about new route */ 44443b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 44456b9ea5a6SRoopa Prabhu goto cleanup; 44466b9ea5a6SRoopa Prabhu 44476b9ea5a6SRoopa Prabhu add_errout: 44483b1137feSDavid Ahern /* send notification for routes that were added so that 44493b1137feSDavid Ahern * the delete notifications sent by ip6_route_del are 44503b1137feSDavid Ahern * coherent 44513b1137feSDavid Ahern */ 44523b1137feSDavid Ahern if (rt_notif) 44533b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 44543b1137feSDavid Ahern 44556b9ea5a6SRoopa Prabhu /* Delete routes that were already added */ 44566b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 44576b9ea5a6SRoopa Prabhu if (err_nh == nh) 44586b9ea5a6SRoopa Prabhu break; 4459333c4301SDavid Ahern ip6_route_del(&nh->r_cfg, extack); 44606b9ea5a6SRoopa Prabhu } 44616b9ea5a6SRoopa Prabhu 44626b9ea5a6SRoopa Prabhu cleanup: 44636b9ea5a6SRoopa Prabhu list_for_each_entry_safe(nh, nh_safe, &rt6_nh_list, next) { 44648d1c802bSDavid Ahern if (nh->fib6_info) 44658d1c802bSDavid Ahern fib6_info_release(nh->fib6_info); 44666b9ea5a6SRoopa Prabhu list_del(&nh->next); 44676b9ea5a6SRoopa Prabhu kfree(nh); 44686b9ea5a6SRoopa Prabhu } 44696b9ea5a6SRoopa Prabhu 44706b9ea5a6SRoopa Prabhu return err; 44716b9ea5a6SRoopa Prabhu } 44726b9ea5a6SRoopa Prabhu 4473333c4301SDavid Ahern static int ip6_route_multipath_del(struct fib6_config *cfg, 4474333c4301SDavid Ahern struct netlink_ext_ack *extack) 44756b9ea5a6SRoopa Prabhu { 44766b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 44776b9ea5a6SRoopa Prabhu struct rtnexthop *rtnh; 44786b9ea5a6SRoopa Prabhu int remaining; 44796b9ea5a6SRoopa Prabhu int attrlen; 44806b9ea5a6SRoopa Prabhu int err = 1, last_err = 0; 44816b9ea5a6SRoopa Prabhu 44826b9ea5a6SRoopa Prabhu remaining = cfg->fc_mp_len; 44836b9ea5a6SRoopa Prabhu rtnh = (struct rtnexthop *)cfg->fc_mp; 44846b9ea5a6SRoopa Prabhu 44856b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry */ 44866b9ea5a6SRoopa Prabhu while (rtnh_ok(rtnh, remaining)) { 44876b9ea5a6SRoopa Prabhu memcpy(&r_cfg, cfg, sizeof(*cfg)); 44886b9ea5a6SRoopa Prabhu if (rtnh->rtnh_ifindex) 44896b9ea5a6SRoopa Prabhu r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 44906b9ea5a6SRoopa Prabhu 44916b9ea5a6SRoopa Prabhu attrlen = rtnh_attrlen(rtnh); 44926b9ea5a6SRoopa Prabhu if (attrlen > 0) { 44936b9ea5a6SRoopa Prabhu struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 44946b9ea5a6SRoopa Prabhu 44956b9ea5a6SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_GATEWAY); 44966b9ea5a6SRoopa Prabhu if (nla) { 44976b9ea5a6SRoopa Prabhu nla_memcpy(&r_cfg.fc_gateway, nla, 16); 44986b9ea5a6SRoopa Prabhu r_cfg.fc_flags |= RTF_GATEWAY; 44996b9ea5a6SRoopa Prabhu } 45006b9ea5a6SRoopa Prabhu } 4501333c4301SDavid Ahern err = ip6_route_del(&r_cfg, extack); 45026b9ea5a6SRoopa Prabhu if (err) 45036b9ea5a6SRoopa Prabhu last_err = err; 45046b9ea5a6SRoopa Prabhu 450551ebd318SNicolas Dichtel rtnh = rtnh_next(rtnh, &remaining); 450651ebd318SNicolas Dichtel } 450751ebd318SNicolas Dichtel 450851ebd318SNicolas Dichtel return last_err; 450951ebd318SNicolas Dichtel } 451051ebd318SNicolas Dichtel 4511c21ef3e3SDavid Ahern static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4512c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 45131da177e4SLinus Torvalds { 451486872cb5SThomas Graf struct fib6_config cfg; 451586872cb5SThomas Graf int err; 45161da177e4SLinus Torvalds 4517333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 451886872cb5SThomas Graf if (err < 0) 451986872cb5SThomas Graf return err; 452086872cb5SThomas Graf 452151ebd318SNicolas Dichtel if (cfg.fc_mp) 4522333c4301SDavid Ahern return ip6_route_multipath_del(&cfg, extack); 45230ae81335SDavid Ahern else { 45240ae81335SDavid Ahern cfg.fc_delete_all_nh = 1; 4525333c4301SDavid Ahern return ip6_route_del(&cfg, extack); 45261da177e4SLinus Torvalds } 45270ae81335SDavid Ahern } 45281da177e4SLinus Torvalds 4529c21ef3e3SDavid Ahern static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4530c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 45311da177e4SLinus Torvalds { 453286872cb5SThomas Graf struct fib6_config cfg; 453386872cb5SThomas Graf int err; 45341da177e4SLinus Torvalds 4535333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 453686872cb5SThomas Graf if (err < 0) 453786872cb5SThomas Graf return err; 453886872cb5SThomas Graf 453951ebd318SNicolas Dichtel if (cfg.fc_mp) 4540333c4301SDavid Ahern return ip6_route_multipath_add(&cfg, extack); 454151ebd318SNicolas Dichtel else 4542acb54e3cSDavid Ahern return ip6_route_add(&cfg, GFP_KERNEL, extack); 45431da177e4SLinus Torvalds } 45441da177e4SLinus Torvalds 45458d1c802bSDavid Ahern static size_t rt6_nlmsg_size(struct fib6_info *rt) 4546339bf98fSThomas Graf { 4547beb1afacSDavid Ahern int nexthop_len = 0; 4548beb1afacSDavid Ahern 454993c2fb25SDavid Ahern if (rt->fib6_nsiblings) { 4550beb1afacSDavid Ahern nexthop_len = nla_total_size(0) /* RTA_MULTIPATH */ 4551beb1afacSDavid Ahern + NLA_ALIGN(sizeof(struct rtnexthop)) 4552beb1afacSDavid Ahern + nla_total_size(16) /* RTA_GATEWAY */ 45535e670d84SDavid Ahern + lwtunnel_get_encap_size(rt->fib6_nh.nh_lwtstate); 4554beb1afacSDavid Ahern 455593c2fb25SDavid Ahern nexthop_len *= rt->fib6_nsiblings; 4556beb1afacSDavid Ahern } 4557beb1afacSDavid Ahern 4558339bf98fSThomas Graf return NLMSG_ALIGN(sizeof(struct rtmsg)) 4559339bf98fSThomas Graf + nla_total_size(16) /* RTA_SRC */ 4560339bf98fSThomas Graf + nla_total_size(16) /* RTA_DST */ 4561339bf98fSThomas Graf + nla_total_size(16) /* RTA_GATEWAY */ 4562339bf98fSThomas Graf + nla_total_size(16) /* RTA_PREFSRC */ 4563339bf98fSThomas Graf + nla_total_size(4) /* RTA_TABLE */ 4564339bf98fSThomas Graf + nla_total_size(4) /* RTA_IIF */ 4565339bf98fSThomas Graf + nla_total_size(4) /* RTA_OIF */ 4566339bf98fSThomas Graf + nla_total_size(4) /* RTA_PRIORITY */ 45676a2b9ce0SNoriaki TAKAMIYA + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */ 4568ea697639SDaniel Borkmann + nla_total_size(sizeof(struct rta_cacheinfo)) 4569c78ba6d6SLubomir Rintel + nla_total_size(TCP_CA_NAME_MAX) /* RTAX_CC_ALGO */ 457019e42e45SRoopa Prabhu + nla_total_size(1) /* RTA_PREF */ 45715e670d84SDavid Ahern + lwtunnel_get_encap_size(rt->fib6_nh.nh_lwtstate) 4572beb1afacSDavid Ahern + nexthop_len; 4573beb1afacSDavid Ahern } 4574beb1afacSDavid Ahern 45758d1c802bSDavid Ahern static int rt6_nexthop_info(struct sk_buff *skb, struct fib6_info *rt, 45765be083ceSDavid Ahern unsigned int *flags, bool skip_oif) 4577beb1afacSDavid Ahern { 45785e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_DEAD) 4579f9d882eaSIdo Schimmel *flags |= RTNH_F_DEAD; 4580f9d882eaSIdo Schimmel 45815e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_LINKDOWN) { 4582beb1afacSDavid Ahern *flags |= RTNH_F_LINKDOWN; 4583dcd1f572SDavid Ahern 4584dcd1f572SDavid Ahern rcu_read_lock(); 4585dcd1f572SDavid Ahern if (fib6_ignore_linkdown(rt)) 4586beb1afacSDavid Ahern *flags |= RTNH_F_DEAD; 4587dcd1f572SDavid Ahern rcu_read_unlock(); 4588beb1afacSDavid Ahern } 4589beb1afacSDavid Ahern 459093c2fb25SDavid Ahern if (rt->fib6_flags & RTF_GATEWAY) { 45915e670d84SDavid Ahern if (nla_put_in6_addr(skb, RTA_GATEWAY, &rt->fib6_nh.nh_gw) < 0) 4592beb1afacSDavid Ahern goto nla_put_failure; 4593beb1afacSDavid Ahern } 4594beb1afacSDavid Ahern 45955e670d84SDavid Ahern *flags |= (rt->fib6_nh.nh_flags & RTNH_F_ONLINK); 45965e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_OFFLOAD) 459761e4d01eSIdo Schimmel *flags |= RTNH_F_OFFLOAD; 459861e4d01eSIdo Schimmel 45995be083ceSDavid Ahern /* not needed for multipath encoding b/c it has a rtnexthop struct */ 46005e670d84SDavid Ahern if (!skip_oif && rt->fib6_nh.nh_dev && 46015e670d84SDavid Ahern nla_put_u32(skb, RTA_OIF, rt->fib6_nh.nh_dev->ifindex)) 4602beb1afacSDavid Ahern goto nla_put_failure; 4603beb1afacSDavid Ahern 46045e670d84SDavid Ahern if (rt->fib6_nh.nh_lwtstate && 46055e670d84SDavid Ahern lwtunnel_fill_encap(skb, rt->fib6_nh.nh_lwtstate) < 0) 4606beb1afacSDavid Ahern goto nla_put_failure; 4607beb1afacSDavid Ahern 4608beb1afacSDavid Ahern return 0; 4609beb1afacSDavid Ahern 4610beb1afacSDavid Ahern nla_put_failure: 4611beb1afacSDavid Ahern return -EMSGSIZE; 4612beb1afacSDavid Ahern } 4613beb1afacSDavid Ahern 46145be083ceSDavid Ahern /* add multipath next hop */ 46158d1c802bSDavid Ahern static int rt6_add_nexthop(struct sk_buff *skb, struct fib6_info *rt) 4616beb1afacSDavid Ahern { 46175e670d84SDavid Ahern const struct net_device *dev = rt->fib6_nh.nh_dev; 4618beb1afacSDavid Ahern struct rtnexthop *rtnh; 4619beb1afacSDavid Ahern unsigned int flags = 0; 4620beb1afacSDavid Ahern 4621beb1afacSDavid Ahern rtnh = nla_reserve_nohdr(skb, sizeof(*rtnh)); 4622beb1afacSDavid Ahern if (!rtnh) 4623beb1afacSDavid Ahern goto nla_put_failure; 4624beb1afacSDavid Ahern 46255e670d84SDavid Ahern rtnh->rtnh_hops = rt->fib6_nh.nh_weight - 1; 46265e670d84SDavid Ahern rtnh->rtnh_ifindex = dev ? dev->ifindex : 0; 4627beb1afacSDavid Ahern 46285be083ceSDavid Ahern if (rt6_nexthop_info(skb, rt, &flags, true) < 0) 4629beb1afacSDavid Ahern goto nla_put_failure; 4630beb1afacSDavid Ahern 4631beb1afacSDavid Ahern rtnh->rtnh_flags = flags; 4632beb1afacSDavid Ahern 4633beb1afacSDavid Ahern /* length of rtnetlink header + attributes */ 4634beb1afacSDavid Ahern rtnh->rtnh_len = nlmsg_get_pos(skb) - (void *)rtnh; 4635beb1afacSDavid Ahern 4636beb1afacSDavid Ahern return 0; 4637beb1afacSDavid Ahern 4638beb1afacSDavid Ahern nla_put_failure: 4639beb1afacSDavid Ahern return -EMSGSIZE; 4640339bf98fSThomas Graf } 4641339bf98fSThomas Graf 4642d4ead6b3SDavid Ahern static int rt6_fill_node(struct net *net, struct sk_buff *skb, 46438d1c802bSDavid Ahern struct fib6_info *rt, struct dst_entry *dst, 4644d4ead6b3SDavid Ahern struct in6_addr *dest, struct in6_addr *src, 464515e47304SEric W. Biederman int iif, int type, u32 portid, u32 seq, 4646f8cfe2ceSDavid Ahern unsigned int flags) 46471da177e4SLinus Torvalds { 464822d0bd82SXin Long struct rt6_info *rt6 = (struct rt6_info *)dst; 464922d0bd82SXin Long struct rt6key *rt6_dst, *rt6_src; 465022d0bd82SXin Long u32 *pmetrics, table, rt6_flags; 46511da177e4SLinus Torvalds struct nlmsghdr *nlh; 465222d0bd82SXin Long struct rtmsg *rtm; 4653d4ead6b3SDavid Ahern long expires = 0; 46541da177e4SLinus Torvalds 465515e47304SEric W. Biederman nlh = nlmsg_put(skb, portid, seq, type, sizeof(*rtm), flags); 465638308473SDavid S. Miller if (!nlh) 465726932566SPatrick McHardy return -EMSGSIZE; 46582d7202bfSThomas Graf 465922d0bd82SXin Long if (rt6) { 466022d0bd82SXin Long rt6_dst = &rt6->rt6i_dst; 466122d0bd82SXin Long rt6_src = &rt6->rt6i_src; 466222d0bd82SXin Long rt6_flags = rt6->rt6i_flags; 466322d0bd82SXin Long } else { 466422d0bd82SXin Long rt6_dst = &rt->fib6_dst; 466522d0bd82SXin Long rt6_src = &rt->fib6_src; 466622d0bd82SXin Long rt6_flags = rt->fib6_flags; 466722d0bd82SXin Long } 466822d0bd82SXin Long 46692d7202bfSThomas Graf rtm = nlmsg_data(nlh); 46701da177e4SLinus Torvalds rtm->rtm_family = AF_INET6; 467122d0bd82SXin Long rtm->rtm_dst_len = rt6_dst->plen; 467222d0bd82SXin Long rtm->rtm_src_len = rt6_src->plen; 46731da177e4SLinus Torvalds rtm->rtm_tos = 0; 467493c2fb25SDavid Ahern if (rt->fib6_table) 467593c2fb25SDavid Ahern table = rt->fib6_table->tb6_id; 4676c71099acSThomas Graf else 46779e762a4aSPatrick McHardy table = RT6_TABLE_UNSPEC; 467897f0082aSKalash Nainwal rtm->rtm_table = table < 256 ? table : RT_TABLE_COMPAT; 4679c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_TABLE, table)) 4680c78679e8SDavid S. Miller goto nla_put_failure; 4681e8478e80SDavid Ahern 4682e8478e80SDavid Ahern rtm->rtm_type = rt->fib6_type; 46831da177e4SLinus Torvalds rtm->rtm_flags = 0; 46841da177e4SLinus Torvalds rtm->rtm_scope = RT_SCOPE_UNIVERSE; 468593c2fb25SDavid Ahern rtm->rtm_protocol = rt->fib6_protocol; 46861da177e4SLinus Torvalds 468722d0bd82SXin Long if (rt6_flags & RTF_CACHE) 46881da177e4SLinus Torvalds rtm->rtm_flags |= RTM_F_CLONED; 46891da177e4SLinus Torvalds 4690d4ead6b3SDavid Ahern if (dest) { 4691d4ead6b3SDavid Ahern if (nla_put_in6_addr(skb, RTA_DST, dest)) 4692c78679e8SDavid S. Miller goto nla_put_failure; 46931da177e4SLinus Torvalds rtm->rtm_dst_len = 128; 46941da177e4SLinus Torvalds } else if (rtm->rtm_dst_len) 469522d0bd82SXin Long if (nla_put_in6_addr(skb, RTA_DST, &rt6_dst->addr)) 4696c78679e8SDavid S. Miller goto nla_put_failure; 46971da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 46981da177e4SLinus Torvalds if (src) { 4699930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_SRC, src)) 4700c78679e8SDavid S. Miller goto nla_put_failure; 47011da177e4SLinus Torvalds rtm->rtm_src_len = 128; 4702c78679e8SDavid S. Miller } else if (rtm->rtm_src_len && 470322d0bd82SXin Long nla_put_in6_addr(skb, RTA_SRC, &rt6_src->addr)) 4704c78679e8SDavid S. Miller goto nla_put_failure; 47051da177e4SLinus Torvalds #endif 47067bc570c8SYOSHIFUJI Hideaki if (iif) { 47077bc570c8SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_MROUTE 470822d0bd82SXin Long if (ipv6_addr_is_multicast(&rt6_dst->addr)) { 4709fd61c6baSDavid Ahern int err = ip6mr_get_route(net, skb, rtm, portid); 47102cf75070SNikolay Aleksandrov 47117bc570c8SYOSHIFUJI Hideaki if (err == 0) 47127bc570c8SYOSHIFUJI Hideaki return 0; 4713fd61c6baSDavid Ahern if (err < 0) 47147bc570c8SYOSHIFUJI Hideaki goto nla_put_failure; 47157bc570c8SYOSHIFUJI Hideaki } else 47167bc570c8SYOSHIFUJI Hideaki #endif 4717c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_IIF, iif)) 4718c78679e8SDavid S. Miller goto nla_put_failure; 4719d4ead6b3SDavid Ahern } else if (dest) { 47201da177e4SLinus Torvalds struct in6_addr saddr_buf; 4721d4ead6b3SDavid Ahern if (ip6_route_get_saddr(net, rt, dest, 0, &saddr_buf) == 0 && 4722930345eaSJiri Benc nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4723c78679e8SDavid S. Miller goto nla_put_failure; 4724c3968a85SDaniel Walter } 4725c3968a85SDaniel Walter 472693c2fb25SDavid Ahern if (rt->fib6_prefsrc.plen) { 4727c3968a85SDaniel Walter struct in6_addr saddr_buf; 472893c2fb25SDavid Ahern saddr_buf = rt->fib6_prefsrc.addr; 4729930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4730c78679e8SDavid S. Miller goto nla_put_failure; 47311da177e4SLinus Torvalds } 47322d7202bfSThomas Graf 4733d4ead6b3SDavid Ahern pmetrics = dst ? dst_metrics_ptr(dst) : rt->fib6_metrics->metrics; 4734d4ead6b3SDavid Ahern if (rtnetlink_put_metrics(skb, pmetrics) < 0) 47352d7202bfSThomas Graf goto nla_put_failure; 47362d7202bfSThomas Graf 473793c2fb25SDavid Ahern if (nla_put_u32(skb, RTA_PRIORITY, rt->fib6_metric)) 4738beb1afacSDavid Ahern goto nla_put_failure; 4739beb1afacSDavid Ahern 4740beb1afacSDavid Ahern /* For multipath routes, walk the siblings list and add 4741beb1afacSDavid Ahern * each as a nexthop within RTA_MULTIPATH. 4742beb1afacSDavid Ahern */ 474322d0bd82SXin Long if (rt6) { 474422d0bd82SXin Long if (rt6_flags & RTF_GATEWAY && 474522d0bd82SXin Long nla_put_in6_addr(skb, RTA_GATEWAY, &rt6->rt6i_gateway)) 474622d0bd82SXin Long goto nla_put_failure; 474722d0bd82SXin Long 474822d0bd82SXin Long if (dst->dev && nla_put_u32(skb, RTA_OIF, dst->dev->ifindex)) 474922d0bd82SXin Long goto nla_put_failure; 475022d0bd82SXin Long } else if (rt->fib6_nsiblings) { 47518d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 4752beb1afacSDavid Ahern struct nlattr *mp; 4753beb1afacSDavid Ahern 4754beb1afacSDavid Ahern mp = nla_nest_start(skb, RTA_MULTIPATH); 4755beb1afacSDavid Ahern if (!mp) 4756beb1afacSDavid Ahern goto nla_put_failure; 4757beb1afacSDavid Ahern 4758beb1afacSDavid Ahern if (rt6_add_nexthop(skb, rt) < 0) 4759beb1afacSDavid Ahern goto nla_put_failure; 4760beb1afacSDavid Ahern 4761beb1afacSDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 476293c2fb25SDavid Ahern &rt->fib6_siblings, fib6_siblings) { 4763beb1afacSDavid Ahern if (rt6_add_nexthop(skb, sibling) < 0) 476494f826b8SEric Dumazet goto nla_put_failure; 476594f826b8SEric Dumazet } 47662d7202bfSThomas Graf 4767beb1afacSDavid Ahern nla_nest_end(skb, mp); 4768beb1afacSDavid Ahern } else { 47695be083ceSDavid Ahern if (rt6_nexthop_info(skb, rt, &rtm->rtm_flags, false) < 0) 4770c78679e8SDavid S. Miller goto nla_put_failure; 4771beb1afacSDavid Ahern } 47728253947eSLi Wei 477322d0bd82SXin Long if (rt6_flags & RTF_EXPIRES) { 477414895687SDavid Ahern expires = dst ? dst->expires : rt->expires; 477514895687SDavid Ahern expires -= jiffies; 477614895687SDavid Ahern } 477769cdf8f9SYOSHIFUJI Hideaki 4778d4ead6b3SDavid Ahern if (rtnl_put_cacheinfo(skb, dst, 0, expires, dst ? dst->error : 0) < 0) 4779e3703b3dSThomas Graf goto nla_put_failure; 47801da177e4SLinus Torvalds 478122d0bd82SXin Long if (nla_put_u8(skb, RTA_PREF, IPV6_EXTRACT_PREF(rt6_flags))) 4782c78ba6d6SLubomir Rintel goto nla_put_failure; 4783c78ba6d6SLubomir Rintel 478419e42e45SRoopa Prabhu 4785053c095aSJohannes Berg nlmsg_end(skb, nlh); 4786053c095aSJohannes Berg return 0; 47872d7202bfSThomas Graf 47882d7202bfSThomas Graf nla_put_failure: 478926932566SPatrick McHardy nlmsg_cancel(skb, nlh); 479026932566SPatrick McHardy return -EMSGSIZE; 47911da177e4SLinus Torvalds } 47921da177e4SLinus Torvalds 479313e38901SDavid Ahern static bool fib6_info_uses_dev(const struct fib6_info *f6i, 479413e38901SDavid Ahern const struct net_device *dev) 479513e38901SDavid Ahern { 479613e38901SDavid Ahern if (f6i->fib6_nh.nh_dev == dev) 479713e38901SDavid Ahern return true; 479813e38901SDavid Ahern 479913e38901SDavid Ahern if (f6i->fib6_nsiblings) { 480013e38901SDavid Ahern struct fib6_info *sibling, *next_sibling; 480113e38901SDavid Ahern 480213e38901SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 480313e38901SDavid Ahern &f6i->fib6_siblings, fib6_siblings) { 480413e38901SDavid Ahern if (sibling->fib6_nh.nh_dev == dev) 480513e38901SDavid Ahern return true; 480613e38901SDavid Ahern } 480713e38901SDavid Ahern } 480813e38901SDavid Ahern 480913e38901SDavid Ahern return false; 481013e38901SDavid Ahern } 481113e38901SDavid Ahern 48128d1c802bSDavid Ahern int rt6_dump_route(struct fib6_info *rt, void *p_arg) 48131da177e4SLinus Torvalds { 48141da177e4SLinus Torvalds struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg; 481513e38901SDavid Ahern struct fib_dump_filter *filter = &arg->filter; 481613e38901SDavid Ahern unsigned int flags = NLM_F_MULTI; 48171f17e2f2SDavid Ahern struct net *net = arg->net; 48181f17e2f2SDavid Ahern 4819421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 48201f17e2f2SDavid Ahern return 0; 48211da177e4SLinus Torvalds 482213e38901SDavid Ahern if ((filter->flags & RTM_F_PREFIX) && 482393c2fb25SDavid Ahern !(rt->fib6_flags & RTF_PREFIX_RT)) { 4824f8cfe2ceSDavid Ahern /* success since this is not a prefix route */ 4825f8cfe2ceSDavid Ahern return 1; 4826f8cfe2ceSDavid Ahern } 482713e38901SDavid Ahern if (filter->filter_set) { 482813e38901SDavid Ahern if ((filter->rt_type && rt->fib6_type != filter->rt_type) || 482913e38901SDavid Ahern (filter->dev && !fib6_info_uses_dev(rt, filter->dev)) || 483013e38901SDavid Ahern (filter->protocol && rt->fib6_protocol != filter->protocol)) { 483113e38901SDavid Ahern return 1; 483213e38901SDavid Ahern } 483313e38901SDavid Ahern flags |= NLM_F_DUMP_FILTERED; 4834f8cfe2ceSDavid Ahern } 48351da177e4SLinus Torvalds 4836d4ead6b3SDavid Ahern return rt6_fill_node(net, arg->skb, rt, NULL, NULL, NULL, 0, 4837d4ead6b3SDavid Ahern RTM_NEWROUTE, NETLINK_CB(arg->cb->skb).portid, 483813e38901SDavid Ahern arg->cb->nlh->nlmsg_seq, flags); 48391da177e4SLinus Torvalds } 48401da177e4SLinus Torvalds 48410eff0a27SJakub Kicinski static int inet6_rtm_valid_getroute_req(struct sk_buff *skb, 48420eff0a27SJakub Kicinski const struct nlmsghdr *nlh, 48430eff0a27SJakub Kicinski struct nlattr **tb, 48440eff0a27SJakub Kicinski struct netlink_ext_ack *extack) 48450eff0a27SJakub Kicinski { 48460eff0a27SJakub Kicinski struct rtmsg *rtm; 48470eff0a27SJakub Kicinski int i, err; 48480eff0a27SJakub Kicinski 48490eff0a27SJakub Kicinski if (nlh->nlmsg_len < nlmsg_msg_size(sizeof(*rtm))) { 48500eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 48510eff0a27SJakub Kicinski "Invalid header for get route request"); 48520eff0a27SJakub Kicinski return -EINVAL; 48530eff0a27SJakub Kicinski } 48540eff0a27SJakub Kicinski 48550eff0a27SJakub Kicinski if (!netlink_strict_get_check(skb)) 48560eff0a27SJakub Kicinski return nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, 48570eff0a27SJakub Kicinski rtm_ipv6_policy, extack); 48580eff0a27SJakub Kicinski 48590eff0a27SJakub Kicinski rtm = nlmsg_data(nlh); 48600eff0a27SJakub Kicinski if ((rtm->rtm_src_len && rtm->rtm_src_len != 128) || 48610eff0a27SJakub Kicinski (rtm->rtm_dst_len && rtm->rtm_dst_len != 128) || 48620eff0a27SJakub Kicinski rtm->rtm_table || rtm->rtm_protocol || rtm->rtm_scope || 48630eff0a27SJakub Kicinski rtm->rtm_type) { 48640eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "Invalid values in header for get route request"); 48650eff0a27SJakub Kicinski return -EINVAL; 48660eff0a27SJakub Kicinski } 48670eff0a27SJakub Kicinski if (rtm->rtm_flags & ~RTM_F_FIB_MATCH) { 48680eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 48690eff0a27SJakub Kicinski "Invalid flags for get route request"); 48700eff0a27SJakub Kicinski return -EINVAL; 48710eff0a27SJakub Kicinski } 48720eff0a27SJakub Kicinski 48730eff0a27SJakub Kicinski err = nlmsg_parse_strict(nlh, sizeof(*rtm), tb, RTA_MAX, 48740eff0a27SJakub Kicinski rtm_ipv6_policy, extack); 48750eff0a27SJakub Kicinski if (err) 48760eff0a27SJakub Kicinski return err; 48770eff0a27SJakub Kicinski 48780eff0a27SJakub Kicinski if ((tb[RTA_SRC] && !rtm->rtm_src_len) || 48790eff0a27SJakub Kicinski (tb[RTA_DST] && !rtm->rtm_dst_len)) { 48800eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "rtm_src_len and rtm_dst_len must be 128 for IPv6"); 48810eff0a27SJakub Kicinski return -EINVAL; 48820eff0a27SJakub Kicinski } 48830eff0a27SJakub Kicinski 48840eff0a27SJakub Kicinski for (i = 0; i <= RTA_MAX; i++) { 48850eff0a27SJakub Kicinski if (!tb[i]) 48860eff0a27SJakub Kicinski continue; 48870eff0a27SJakub Kicinski 48880eff0a27SJakub Kicinski switch (i) { 48890eff0a27SJakub Kicinski case RTA_SRC: 48900eff0a27SJakub Kicinski case RTA_DST: 48910eff0a27SJakub Kicinski case RTA_IIF: 48920eff0a27SJakub Kicinski case RTA_OIF: 48930eff0a27SJakub Kicinski case RTA_MARK: 48940eff0a27SJakub Kicinski case RTA_UID: 48950eff0a27SJakub Kicinski case RTA_SPORT: 48960eff0a27SJakub Kicinski case RTA_DPORT: 48970eff0a27SJakub Kicinski case RTA_IP_PROTO: 48980eff0a27SJakub Kicinski break; 48990eff0a27SJakub Kicinski default: 49000eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "Unsupported attribute in get route request"); 49010eff0a27SJakub Kicinski return -EINVAL; 49020eff0a27SJakub Kicinski } 49030eff0a27SJakub Kicinski } 49040eff0a27SJakub Kicinski 49050eff0a27SJakub Kicinski return 0; 49060eff0a27SJakub Kicinski } 49070eff0a27SJakub Kicinski 4908c21ef3e3SDavid Ahern static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr *nlh, 4909c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 49101da177e4SLinus Torvalds { 49113b1e0a65SYOSHIFUJI Hideaki struct net *net = sock_net(in_skb->sk); 4912ab364a6fSThomas Graf struct nlattr *tb[RTA_MAX+1]; 491318c3a61cSRoopa Prabhu int err, iif = 0, oif = 0; 4914a68886a6SDavid Ahern struct fib6_info *from; 491518c3a61cSRoopa Prabhu struct dst_entry *dst; 49161da177e4SLinus Torvalds struct rt6_info *rt; 4917ab364a6fSThomas Graf struct sk_buff *skb; 4918ab364a6fSThomas Graf struct rtmsg *rtm; 4919744486d4SMaciej Żenczykowski struct flowi6 fl6 = {}; 492018c3a61cSRoopa Prabhu bool fibmatch; 4921ab364a6fSThomas Graf 49220eff0a27SJakub Kicinski err = inet6_rtm_valid_getroute_req(in_skb, nlh, tb, extack); 4923ab364a6fSThomas Graf if (err < 0) 4924ab364a6fSThomas Graf goto errout; 4925ab364a6fSThomas Graf 4926ab364a6fSThomas Graf err = -EINVAL; 492738b7097bSHannes Frederic Sowa rtm = nlmsg_data(nlh); 492838b7097bSHannes Frederic Sowa fl6.flowlabel = ip6_make_flowinfo(rtm->rtm_tos, 0); 492918c3a61cSRoopa Prabhu fibmatch = !!(rtm->rtm_flags & RTM_F_FIB_MATCH); 4930ab364a6fSThomas Graf 4931ab364a6fSThomas Graf if (tb[RTA_SRC]) { 4932ab364a6fSThomas Graf if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr)) 4933ab364a6fSThomas Graf goto errout; 4934ab364a6fSThomas Graf 49354e3fd7a0SAlexey Dobriyan fl6.saddr = *(struct in6_addr *)nla_data(tb[RTA_SRC]); 4936ab364a6fSThomas Graf } 4937ab364a6fSThomas Graf 4938ab364a6fSThomas Graf if (tb[RTA_DST]) { 4939ab364a6fSThomas Graf if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr)) 4940ab364a6fSThomas Graf goto errout; 4941ab364a6fSThomas Graf 49424e3fd7a0SAlexey Dobriyan fl6.daddr = *(struct in6_addr *)nla_data(tb[RTA_DST]); 4943ab364a6fSThomas Graf } 4944ab364a6fSThomas Graf 4945ab364a6fSThomas Graf if (tb[RTA_IIF]) 4946ab364a6fSThomas Graf iif = nla_get_u32(tb[RTA_IIF]); 4947ab364a6fSThomas Graf 4948ab364a6fSThomas Graf if (tb[RTA_OIF]) 494972331bc0SShmulik Ladkani oif = nla_get_u32(tb[RTA_OIF]); 4950ab364a6fSThomas Graf 49512e47b291SLorenzo Colitti if (tb[RTA_MARK]) 49522e47b291SLorenzo Colitti fl6.flowi6_mark = nla_get_u32(tb[RTA_MARK]); 49532e47b291SLorenzo Colitti 4954622ec2c9SLorenzo Colitti if (tb[RTA_UID]) 4955622ec2c9SLorenzo Colitti fl6.flowi6_uid = make_kuid(current_user_ns(), 4956622ec2c9SLorenzo Colitti nla_get_u32(tb[RTA_UID])); 4957622ec2c9SLorenzo Colitti else 4958622ec2c9SLorenzo Colitti fl6.flowi6_uid = iif ? INVALID_UID : current_uid(); 4959622ec2c9SLorenzo Colitti 4960eacb9384SRoopa Prabhu if (tb[RTA_SPORT]) 4961eacb9384SRoopa Prabhu fl6.fl6_sport = nla_get_be16(tb[RTA_SPORT]); 4962eacb9384SRoopa Prabhu 4963eacb9384SRoopa Prabhu if (tb[RTA_DPORT]) 4964eacb9384SRoopa Prabhu fl6.fl6_dport = nla_get_be16(tb[RTA_DPORT]); 4965eacb9384SRoopa Prabhu 4966eacb9384SRoopa Prabhu if (tb[RTA_IP_PROTO]) { 4967eacb9384SRoopa Prabhu err = rtm_getroute_parse_ip_proto(tb[RTA_IP_PROTO], 49685e1a99eaSHangbin Liu &fl6.flowi6_proto, AF_INET6, 49695e1a99eaSHangbin Liu extack); 4970eacb9384SRoopa Prabhu if (err) 4971eacb9384SRoopa Prabhu goto errout; 4972eacb9384SRoopa Prabhu } 4973eacb9384SRoopa Prabhu 4974ab364a6fSThomas Graf if (iif) { 4975ab364a6fSThomas Graf struct net_device *dev; 497672331bc0SShmulik Ladkani int flags = 0; 497772331bc0SShmulik Ladkani 4978121622dbSFlorian Westphal rcu_read_lock(); 4979121622dbSFlorian Westphal 4980121622dbSFlorian Westphal dev = dev_get_by_index_rcu(net, iif); 4981ab364a6fSThomas Graf if (!dev) { 4982121622dbSFlorian Westphal rcu_read_unlock(); 4983ab364a6fSThomas Graf err = -ENODEV; 4984ab364a6fSThomas Graf goto errout; 4985ab364a6fSThomas Graf } 498672331bc0SShmulik Ladkani 498772331bc0SShmulik Ladkani fl6.flowi6_iif = iif; 498872331bc0SShmulik Ladkani 498972331bc0SShmulik Ladkani if (!ipv6_addr_any(&fl6.saddr)) 499072331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_HAS_SADDR; 499172331bc0SShmulik Ladkani 4992b75cc8f9SDavid Ahern dst = ip6_route_input_lookup(net, dev, &fl6, NULL, flags); 4993121622dbSFlorian Westphal 4994121622dbSFlorian Westphal rcu_read_unlock(); 499572331bc0SShmulik Ladkani } else { 499672331bc0SShmulik Ladkani fl6.flowi6_oif = oif; 499772331bc0SShmulik Ladkani 499818c3a61cSRoopa Prabhu dst = ip6_route_output(net, NULL, &fl6); 499918c3a61cSRoopa Prabhu } 500018c3a61cSRoopa Prabhu 500118c3a61cSRoopa Prabhu 500218c3a61cSRoopa Prabhu rt = container_of(dst, struct rt6_info, dst); 500318c3a61cSRoopa Prabhu if (rt->dst.error) { 500418c3a61cSRoopa Prabhu err = rt->dst.error; 500518c3a61cSRoopa Prabhu ip6_rt_put(rt); 500618c3a61cSRoopa Prabhu goto errout; 5007ab364a6fSThomas Graf } 50081da177e4SLinus Torvalds 50099d6acb3bSWANG Cong if (rt == net->ipv6.ip6_null_entry) { 50109d6acb3bSWANG Cong err = rt->dst.error; 50119d6acb3bSWANG Cong ip6_rt_put(rt); 50129d6acb3bSWANG Cong goto errout; 50139d6acb3bSWANG Cong } 50149d6acb3bSWANG Cong 50151da177e4SLinus Torvalds skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL); 501638308473SDavid S. Miller if (!skb) { 501794e187c0SAmerigo Wang ip6_rt_put(rt); 5018ab364a6fSThomas Graf err = -ENOBUFS; 5019ab364a6fSThomas Graf goto errout; 5020ab364a6fSThomas Graf } 50211da177e4SLinus Torvalds 5022d8d1f30bSChangli Gao skb_dst_set(skb, &rt->dst); 5023a68886a6SDavid Ahern 5024a68886a6SDavid Ahern rcu_read_lock(); 5025a68886a6SDavid Ahern from = rcu_dereference(rt->from); 5026a68886a6SDavid Ahern 502718c3a61cSRoopa Prabhu if (fibmatch) 5028a68886a6SDavid Ahern err = rt6_fill_node(net, skb, from, NULL, NULL, NULL, iif, 502918c3a61cSRoopa Prabhu RTM_NEWROUTE, NETLINK_CB(in_skb).portid, 503018c3a61cSRoopa Prabhu nlh->nlmsg_seq, 0); 503118c3a61cSRoopa Prabhu else 5032a68886a6SDavid Ahern err = rt6_fill_node(net, skb, from, dst, &fl6.daddr, 5033a68886a6SDavid Ahern &fl6.saddr, iif, RTM_NEWROUTE, 5034d4ead6b3SDavid Ahern NETLINK_CB(in_skb).portid, nlh->nlmsg_seq, 5035d4ead6b3SDavid Ahern 0); 5036a68886a6SDavid Ahern rcu_read_unlock(); 5037a68886a6SDavid Ahern 50381da177e4SLinus Torvalds if (err < 0) { 5039ab364a6fSThomas Graf kfree_skb(skb); 5040ab364a6fSThomas Graf goto errout; 50411da177e4SLinus Torvalds } 50421da177e4SLinus Torvalds 504315e47304SEric W. Biederman err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).portid); 5044ab364a6fSThomas Graf errout: 50451da177e4SLinus Torvalds return err; 50461da177e4SLinus Torvalds } 50471da177e4SLinus Torvalds 50488d1c802bSDavid Ahern void inet6_rt_notify(int event, struct fib6_info *rt, struct nl_info *info, 504937a1d361SRoopa Prabhu unsigned int nlm_flags) 50501da177e4SLinus Torvalds { 50511da177e4SLinus Torvalds struct sk_buff *skb; 50525578689aSDaniel Lezcano struct net *net = info->nl_net; 5053528c4cebSDenis V. Lunev u32 seq; 5054528c4cebSDenis V. Lunev int err; 50550d51aa80SJamal Hadi Salim 5056528c4cebSDenis V. Lunev err = -ENOBUFS; 505738308473SDavid S. Miller seq = info->nlh ? info->nlh->nlmsg_seq : 0; 505886872cb5SThomas Graf 505919e42e45SRoopa Prabhu skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 506038308473SDavid S. Miller if (!skb) 506121713ebcSThomas Graf goto errout; 50621da177e4SLinus Torvalds 5063d4ead6b3SDavid Ahern err = rt6_fill_node(net, skb, rt, NULL, NULL, NULL, 0, 5064f8cfe2ceSDavid Ahern event, info->portid, seq, nlm_flags); 506526932566SPatrick McHardy if (err < 0) { 506626932566SPatrick McHardy /* -EMSGSIZE implies BUG in rt6_nlmsg_size() */ 506726932566SPatrick McHardy WARN_ON(err == -EMSGSIZE); 506826932566SPatrick McHardy kfree_skb(skb); 506926932566SPatrick McHardy goto errout; 507026932566SPatrick McHardy } 507115e47304SEric W. Biederman rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 50725578689aSDaniel Lezcano info->nlh, gfp_any()); 50731ce85fe4SPablo Neira Ayuso return; 507421713ebcSThomas Graf errout: 507521713ebcSThomas Graf if (err < 0) 50765578689aSDaniel Lezcano rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err); 50771da177e4SLinus Torvalds } 50781da177e4SLinus Torvalds 50798ed67789SDaniel Lezcano static int ip6_route_dev_notify(struct notifier_block *this, 5080351638e7SJiri Pirko unsigned long event, void *ptr) 50818ed67789SDaniel Lezcano { 5082351638e7SJiri Pirko struct net_device *dev = netdev_notifier_info_to_dev(ptr); 5083c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 50848ed67789SDaniel Lezcano 5085242d3a49SWANG Cong if (!(dev->flags & IFF_LOOPBACK)) 5086242d3a49SWANG Cong return NOTIFY_OK; 5087242d3a49SWANG Cong 5088242d3a49SWANG Cong if (event == NETDEV_REGISTER) { 5089421842edSDavid Ahern net->ipv6.fib6_null_entry->fib6_nh.nh_dev = dev; 5090d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.dev = dev; 50918ed67789SDaniel Lezcano net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev); 50928ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5093d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.dev = dev; 50948ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev); 5095d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.dev = dev; 50968ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev); 50978ed67789SDaniel Lezcano #endif 509876da0704SWANG Cong } else if (event == NETDEV_UNREGISTER && 509976da0704SWANG Cong dev->reg_state != NETREG_UNREGISTERED) { 510076da0704SWANG Cong /* NETDEV_UNREGISTER could be fired for multiple times by 510176da0704SWANG Cong * netdev_wait_allrefs(). Make sure we only call this once. 510276da0704SWANG Cong */ 510312d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_null_entry->rt6i_idev); 5104242d3a49SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 510512d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_prohibit_entry->rt6i_idev); 510612d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_blk_hole_entry->rt6i_idev); 5107242d3a49SWANG Cong #endif 51088ed67789SDaniel Lezcano } 51098ed67789SDaniel Lezcano 51108ed67789SDaniel Lezcano return NOTIFY_OK; 51118ed67789SDaniel Lezcano } 51128ed67789SDaniel Lezcano 51131da177e4SLinus Torvalds /* 51141da177e4SLinus Torvalds * /proc 51151da177e4SLinus Torvalds */ 51161da177e4SLinus Torvalds 51171da177e4SLinus Torvalds #ifdef CONFIG_PROC_FS 51181da177e4SLinus Torvalds static int rt6_stats_seq_show(struct seq_file *seq, void *v) 51191da177e4SLinus Torvalds { 512069ddb805SDaniel Lezcano struct net *net = (struct net *)seq->private; 51211da177e4SLinus Torvalds seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n", 512269ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_nodes, 512369ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_route_nodes, 512481eb8447SWei Wang atomic_read(&net->ipv6.rt6_stats->fib_rt_alloc), 512569ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_entries, 512669ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_cache, 5127fc66f95cSEric Dumazet dst_entries_get_slow(&net->ipv6.ip6_dst_ops), 512869ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_discarded_routes); 51291da177e4SLinus Torvalds 51301da177e4SLinus Torvalds return 0; 51311da177e4SLinus Torvalds } 51321da177e4SLinus Torvalds #endif /* CONFIG_PROC_FS */ 51331da177e4SLinus Torvalds 51341da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 51351da177e4SLinus Torvalds 51361da177e4SLinus Torvalds static 5137fe2c6338SJoe Perches int ipv6_sysctl_rtcache_flush(struct ctl_table *ctl, int write, 51381da177e4SLinus Torvalds void __user *buffer, size_t *lenp, loff_t *ppos) 51391da177e4SLinus Torvalds { 5140c486da34SLucian Adrian Grijincu struct net *net; 5141c486da34SLucian Adrian Grijincu int delay; 5142f0fb9b28SAditya Pakki int ret; 5143c486da34SLucian Adrian Grijincu if (!write) 5144c486da34SLucian Adrian Grijincu return -EINVAL; 5145c486da34SLucian Adrian Grijincu 5146c486da34SLucian Adrian Grijincu net = (struct net *)ctl->extra1; 5147c486da34SLucian Adrian Grijincu delay = net->ipv6.sysctl.flush_delay; 5148f0fb9b28SAditya Pakki ret = proc_dointvec(ctl, write, buffer, lenp, ppos); 5149f0fb9b28SAditya Pakki if (ret) 5150f0fb9b28SAditya Pakki return ret; 5151f0fb9b28SAditya Pakki 51522ac3ac8fSMichal Kubeček fib6_run_gc(delay <= 0 ? 0 : (unsigned long)delay, net, delay > 0); 51531da177e4SLinus Torvalds return 0; 51541da177e4SLinus Torvalds } 51551da177e4SLinus Torvalds 51567c6bb7d2SDavid Ahern static int zero; 51577c6bb7d2SDavid Ahern static int one = 1; 51587c6bb7d2SDavid Ahern 5159ed792e28SDavid Ahern static struct ctl_table ipv6_route_table_template[] = { 51601da177e4SLinus Torvalds { 51611da177e4SLinus Torvalds .procname = "flush", 51624990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.flush_delay, 51631da177e4SLinus Torvalds .maxlen = sizeof(int), 516489c8b3a1SDave Jones .mode = 0200, 51656d9f239aSAlexey Dobriyan .proc_handler = ipv6_sysctl_rtcache_flush 51661da177e4SLinus Torvalds }, 51671da177e4SLinus Torvalds { 51681da177e4SLinus Torvalds .procname = "gc_thresh", 51699a7ec3a9SDaniel Lezcano .data = &ip6_dst_ops_template.gc_thresh, 51701da177e4SLinus Torvalds .maxlen = sizeof(int), 51711da177e4SLinus Torvalds .mode = 0644, 51726d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 51731da177e4SLinus Torvalds }, 51741da177e4SLinus Torvalds { 51751da177e4SLinus Torvalds .procname = "max_size", 51764990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_max_size, 51771da177e4SLinus Torvalds .maxlen = sizeof(int), 51781da177e4SLinus Torvalds .mode = 0644, 51796d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 51801da177e4SLinus Torvalds }, 51811da177e4SLinus Torvalds { 51821da177e4SLinus Torvalds .procname = "gc_min_interval", 51834990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 51841da177e4SLinus Torvalds .maxlen = sizeof(int), 51851da177e4SLinus Torvalds .mode = 0644, 51866d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 51871da177e4SLinus Torvalds }, 51881da177e4SLinus Torvalds { 51891da177e4SLinus Torvalds .procname = "gc_timeout", 51904990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_timeout, 51911da177e4SLinus Torvalds .maxlen = sizeof(int), 51921da177e4SLinus Torvalds .mode = 0644, 51936d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 51941da177e4SLinus Torvalds }, 51951da177e4SLinus Torvalds { 51961da177e4SLinus Torvalds .procname = "gc_interval", 51974990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_interval, 51981da177e4SLinus Torvalds .maxlen = sizeof(int), 51991da177e4SLinus Torvalds .mode = 0644, 52006d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52011da177e4SLinus Torvalds }, 52021da177e4SLinus Torvalds { 52031da177e4SLinus Torvalds .procname = "gc_elasticity", 52044990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_elasticity, 52051da177e4SLinus Torvalds .maxlen = sizeof(int), 52061da177e4SLinus Torvalds .mode = 0644, 5207f3d3f616SMin Zhang .proc_handler = proc_dointvec, 52081da177e4SLinus Torvalds }, 52091da177e4SLinus Torvalds { 52101da177e4SLinus Torvalds .procname = "mtu_expires", 52114990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_mtu_expires, 52121da177e4SLinus Torvalds .maxlen = sizeof(int), 52131da177e4SLinus Torvalds .mode = 0644, 52146d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52151da177e4SLinus Torvalds }, 52161da177e4SLinus Torvalds { 52171da177e4SLinus Torvalds .procname = "min_adv_mss", 52184990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_min_advmss, 52191da177e4SLinus Torvalds .maxlen = sizeof(int), 52201da177e4SLinus Torvalds .mode = 0644, 5221f3d3f616SMin Zhang .proc_handler = proc_dointvec, 52221da177e4SLinus Torvalds }, 52231da177e4SLinus Torvalds { 52241da177e4SLinus Torvalds .procname = "gc_min_interval_ms", 52254990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 52261da177e4SLinus Torvalds .maxlen = sizeof(int), 52271da177e4SLinus Torvalds .mode = 0644, 52286d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_ms_jiffies, 52291da177e4SLinus Torvalds }, 52307c6bb7d2SDavid Ahern { 52317c6bb7d2SDavid Ahern .procname = "skip_notify_on_dev_down", 52327c6bb7d2SDavid Ahern .data = &init_net.ipv6.sysctl.skip_notify_on_dev_down, 52337c6bb7d2SDavid Ahern .maxlen = sizeof(int), 52347c6bb7d2SDavid Ahern .mode = 0644, 52357c6bb7d2SDavid Ahern .proc_handler = proc_dointvec, 52367c6bb7d2SDavid Ahern .extra1 = &zero, 52377c6bb7d2SDavid Ahern .extra2 = &one, 52387c6bb7d2SDavid Ahern }, 5239f8572d8fSEric W. Biederman { } 52401da177e4SLinus Torvalds }; 52411da177e4SLinus Torvalds 52422c8c1e72SAlexey Dobriyan struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net) 5243760f2d01SDaniel Lezcano { 5244760f2d01SDaniel Lezcano struct ctl_table *table; 5245760f2d01SDaniel Lezcano 5246760f2d01SDaniel Lezcano table = kmemdup(ipv6_route_table_template, 5247760f2d01SDaniel Lezcano sizeof(ipv6_route_table_template), 5248760f2d01SDaniel Lezcano GFP_KERNEL); 52495ee09105SYOSHIFUJI Hideaki 52505ee09105SYOSHIFUJI Hideaki if (table) { 52515ee09105SYOSHIFUJI Hideaki table[0].data = &net->ipv6.sysctl.flush_delay; 5252c486da34SLucian Adrian Grijincu table[0].extra1 = net; 525386393e52SAlexey Dobriyan table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh; 52545ee09105SYOSHIFUJI Hideaki table[2].data = &net->ipv6.sysctl.ip6_rt_max_size; 52555ee09105SYOSHIFUJI Hideaki table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 52565ee09105SYOSHIFUJI Hideaki table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout; 52575ee09105SYOSHIFUJI Hideaki table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval; 52585ee09105SYOSHIFUJI Hideaki table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity; 52595ee09105SYOSHIFUJI Hideaki table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires; 52605ee09105SYOSHIFUJI Hideaki table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss; 52619c69fabeSAlexey Dobriyan table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 52627c6bb7d2SDavid Ahern table[10].data = &net->ipv6.sysctl.skip_notify_on_dev_down; 5263464dc801SEric W. Biederman 5264464dc801SEric W. Biederman /* Don't export sysctls to unprivileged users */ 5265464dc801SEric W. Biederman if (net->user_ns != &init_user_ns) 5266464dc801SEric W. Biederman table[0].procname = NULL; 52675ee09105SYOSHIFUJI Hideaki } 52685ee09105SYOSHIFUJI Hideaki 5269760f2d01SDaniel Lezcano return table; 5270760f2d01SDaniel Lezcano } 52711da177e4SLinus Torvalds #endif 52721da177e4SLinus Torvalds 52732c8c1e72SAlexey Dobriyan static int __net_init ip6_route_net_init(struct net *net) 5274cdb18761SDaniel Lezcano { 5275633d424bSPavel Emelyanov int ret = -ENOMEM; 52768ed67789SDaniel Lezcano 527786393e52SAlexey Dobriyan memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template, 527886393e52SAlexey Dobriyan sizeof(net->ipv6.ip6_dst_ops)); 5279f2fc6a54SBenjamin Thery 5280fc66f95cSEric Dumazet if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0) 5281fc66f95cSEric Dumazet goto out_ip6_dst_ops; 5282fc66f95cSEric Dumazet 5283421842edSDavid Ahern net->ipv6.fib6_null_entry = kmemdup(&fib6_null_entry_template, 5284421842edSDavid Ahern sizeof(*net->ipv6.fib6_null_entry), 5285421842edSDavid Ahern GFP_KERNEL); 5286421842edSDavid Ahern if (!net->ipv6.fib6_null_entry) 5287421842edSDavid Ahern goto out_ip6_dst_entries; 5288421842edSDavid Ahern 52898ed67789SDaniel Lezcano net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template, 52908ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_null_entry), 52918ed67789SDaniel Lezcano GFP_KERNEL); 52928ed67789SDaniel Lezcano if (!net->ipv6.ip6_null_entry) 5293421842edSDavid Ahern goto out_fib6_null_entry; 5294d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops; 529562fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_null_entry->dst, 529662fa8a84SDavid S. Miller ip6_template_metrics, true); 52978ed67789SDaniel Lezcano 52988ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5299feca7d8cSVincent Bernat net->ipv6.fib6_has_custom_rules = false; 53008ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template, 53018ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_prohibit_entry), 53028ed67789SDaniel Lezcano GFP_KERNEL); 530368fffc67SPeter Zijlstra if (!net->ipv6.ip6_prohibit_entry) 530468fffc67SPeter Zijlstra goto out_ip6_null_entry; 5305d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops; 530662fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_prohibit_entry->dst, 530762fa8a84SDavid S. Miller ip6_template_metrics, true); 53088ed67789SDaniel Lezcano 53098ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template, 53108ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_blk_hole_entry), 53118ed67789SDaniel Lezcano GFP_KERNEL); 531268fffc67SPeter Zijlstra if (!net->ipv6.ip6_blk_hole_entry) 531368fffc67SPeter Zijlstra goto out_ip6_prohibit_entry; 5314d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops; 531562fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_blk_hole_entry->dst, 531662fa8a84SDavid S. Miller ip6_template_metrics, true); 53178ed67789SDaniel Lezcano #endif 53188ed67789SDaniel Lezcano 5319b339a47cSPeter Zijlstra net->ipv6.sysctl.flush_delay = 0; 5320b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_max_size = 4096; 5321b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2; 5322b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ; 5323b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ; 5324b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_elasticity = 9; 5325b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ; 5326b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40; 53277c6bb7d2SDavid Ahern net->ipv6.sysctl.skip_notify_on_dev_down = 0; 5328b339a47cSPeter Zijlstra 53296891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire = 30*HZ; 53306891a346SBenjamin Thery 53318ed67789SDaniel Lezcano ret = 0; 53328ed67789SDaniel Lezcano out: 53338ed67789SDaniel Lezcano return ret; 5334f2fc6a54SBenjamin Thery 533568fffc67SPeter Zijlstra #ifdef CONFIG_IPV6_MULTIPLE_TABLES 533668fffc67SPeter Zijlstra out_ip6_prohibit_entry: 533768fffc67SPeter Zijlstra kfree(net->ipv6.ip6_prohibit_entry); 533868fffc67SPeter Zijlstra out_ip6_null_entry: 533968fffc67SPeter Zijlstra kfree(net->ipv6.ip6_null_entry); 534068fffc67SPeter Zijlstra #endif 5341421842edSDavid Ahern out_fib6_null_entry: 5342421842edSDavid Ahern kfree(net->ipv6.fib6_null_entry); 5343fc66f95cSEric Dumazet out_ip6_dst_entries: 5344fc66f95cSEric Dumazet dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5345f2fc6a54SBenjamin Thery out_ip6_dst_ops: 5346f2fc6a54SBenjamin Thery goto out; 5347cdb18761SDaniel Lezcano } 5348cdb18761SDaniel Lezcano 53492c8c1e72SAlexey Dobriyan static void __net_exit ip6_route_net_exit(struct net *net) 5350cdb18761SDaniel Lezcano { 5351421842edSDavid Ahern kfree(net->ipv6.fib6_null_entry); 53528ed67789SDaniel Lezcano kfree(net->ipv6.ip6_null_entry); 53538ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 53548ed67789SDaniel Lezcano kfree(net->ipv6.ip6_prohibit_entry); 53558ed67789SDaniel Lezcano kfree(net->ipv6.ip6_blk_hole_entry); 53568ed67789SDaniel Lezcano #endif 535741bb78b4SXiaotian Feng dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5358cdb18761SDaniel Lezcano } 5359cdb18761SDaniel Lezcano 5360d189634eSThomas Graf static int __net_init ip6_route_net_init_late(struct net *net) 5361d189634eSThomas Graf { 5362d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5363c3506372SChristoph Hellwig proc_create_net("ipv6_route", 0, net->proc_net, &ipv6_route_seq_ops, 5364c3506372SChristoph Hellwig sizeof(struct ipv6_route_iter)); 53653617d949SChristoph Hellwig proc_create_net_single("rt6_stats", 0444, net->proc_net, 53663617d949SChristoph Hellwig rt6_stats_seq_show, NULL); 5367d189634eSThomas Graf #endif 5368d189634eSThomas Graf return 0; 5369d189634eSThomas Graf } 5370d189634eSThomas Graf 5371d189634eSThomas Graf static void __net_exit ip6_route_net_exit_late(struct net *net) 5372d189634eSThomas Graf { 5373d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5374ece31ffdSGao feng remove_proc_entry("ipv6_route", net->proc_net); 5375ece31ffdSGao feng remove_proc_entry("rt6_stats", net->proc_net); 5376d189634eSThomas Graf #endif 5377d189634eSThomas Graf } 5378d189634eSThomas Graf 5379cdb18761SDaniel Lezcano static struct pernet_operations ip6_route_net_ops = { 5380cdb18761SDaniel Lezcano .init = ip6_route_net_init, 5381cdb18761SDaniel Lezcano .exit = ip6_route_net_exit, 5382cdb18761SDaniel Lezcano }; 5383cdb18761SDaniel Lezcano 5384c3426b47SDavid S. Miller static int __net_init ipv6_inetpeer_init(struct net *net) 5385c3426b47SDavid S. Miller { 5386c3426b47SDavid S. Miller struct inet_peer_base *bp = kmalloc(sizeof(*bp), GFP_KERNEL); 5387c3426b47SDavid S. Miller 5388c3426b47SDavid S. Miller if (!bp) 5389c3426b47SDavid S. Miller return -ENOMEM; 5390c3426b47SDavid S. Miller inet_peer_base_init(bp); 5391c3426b47SDavid S. Miller net->ipv6.peers = bp; 5392c3426b47SDavid S. Miller return 0; 5393c3426b47SDavid S. Miller } 5394c3426b47SDavid S. Miller 5395c3426b47SDavid S. Miller static void __net_exit ipv6_inetpeer_exit(struct net *net) 5396c3426b47SDavid S. Miller { 5397c3426b47SDavid S. Miller struct inet_peer_base *bp = net->ipv6.peers; 5398c3426b47SDavid S. Miller 5399c3426b47SDavid S. Miller net->ipv6.peers = NULL; 540056a6b248SDavid S. Miller inetpeer_invalidate_tree(bp); 5401c3426b47SDavid S. Miller kfree(bp); 5402c3426b47SDavid S. Miller } 5403c3426b47SDavid S. Miller 54042b823f72SDavid S. Miller static struct pernet_operations ipv6_inetpeer_ops = { 5405c3426b47SDavid S. Miller .init = ipv6_inetpeer_init, 5406c3426b47SDavid S. Miller .exit = ipv6_inetpeer_exit, 5407c3426b47SDavid S. Miller }; 5408c3426b47SDavid S. Miller 5409d189634eSThomas Graf static struct pernet_operations ip6_route_net_late_ops = { 5410d189634eSThomas Graf .init = ip6_route_net_init_late, 5411d189634eSThomas Graf .exit = ip6_route_net_exit_late, 5412d189634eSThomas Graf }; 5413d189634eSThomas Graf 54148ed67789SDaniel Lezcano static struct notifier_block ip6_route_dev_notifier = { 54158ed67789SDaniel Lezcano .notifier_call = ip6_route_dev_notify, 5416242d3a49SWANG Cong .priority = ADDRCONF_NOTIFY_PRIORITY - 10, 54178ed67789SDaniel Lezcano }; 54188ed67789SDaniel Lezcano 54192f460933SWANG Cong void __init ip6_route_init_special_entries(void) 54202f460933SWANG Cong { 54212f460933SWANG Cong /* Registering of the loopback is done before this portion of code, 54222f460933SWANG Cong * the loopback reference in rt6_info will not be taken, do it 54232f460933SWANG Cong * manually for init_net */ 5424421842edSDavid Ahern init_net.ipv6.fib6_null_entry->fib6_nh.nh_dev = init_net.loopback_dev; 54252f460933SWANG Cong init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev; 54262f460933SWANG Cong init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54272f460933SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 54282f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev; 54292f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54302f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev; 54312f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54322f460933SWANG Cong #endif 54332f460933SWANG Cong } 54342f460933SWANG Cong 5435433d49c3SDaniel Lezcano int __init ip6_route_init(void) 54361da177e4SLinus Torvalds { 5437433d49c3SDaniel Lezcano int ret; 54388d0b94afSMartin KaFai Lau int cpu; 5439433d49c3SDaniel Lezcano 54409a7ec3a9SDaniel Lezcano ret = -ENOMEM; 54419a7ec3a9SDaniel Lezcano ip6_dst_ops_template.kmem_cachep = 54429a7ec3a9SDaniel Lezcano kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0, 54439a7ec3a9SDaniel Lezcano SLAB_HWCACHE_ALIGN, NULL); 54449a7ec3a9SDaniel Lezcano if (!ip6_dst_ops_template.kmem_cachep) 5445c19a28e1SFernando Carrijo goto out; 544614e50e57SDavid S. Miller 5447fc66f95cSEric Dumazet ret = dst_entries_init(&ip6_dst_blackhole_ops); 54488ed67789SDaniel Lezcano if (ret) 5449bdb3289fSDaniel Lezcano goto out_kmem_cache; 5450bdb3289fSDaniel Lezcano 5451c3426b47SDavid S. Miller ret = register_pernet_subsys(&ipv6_inetpeer_ops); 5452c3426b47SDavid S. Miller if (ret) 5453e8803b6cSDavid S. Miller goto out_dst_entries; 54542a0c451aSThomas Graf 54557e52b33bSDavid S. Miller ret = register_pernet_subsys(&ip6_route_net_ops); 54567e52b33bSDavid S. Miller if (ret) 54577e52b33bSDavid S. Miller goto out_register_inetpeer; 5458c3426b47SDavid S. Miller 54595dc121e9SArnaud Ebalard ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep; 54605dc121e9SArnaud Ebalard 5461e8803b6cSDavid S. Miller ret = fib6_init(); 5462433d49c3SDaniel Lezcano if (ret) 54638ed67789SDaniel Lezcano goto out_register_subsys; 5464433d49c3SDaniel Lezcano 5465433d49c3SDaniel Lezcano ret = xfrm6_init(); 5466433d49c3SDaniel Lezcano if (ret) 5467e8803b6cSDavid S. Miller goto out_fib6_init; 5468c35b7e72SDaniel Lezcano 5469433d49c3SDaniel Lezcano ret = fib6_rules_init(); 5470433d49c3SDaniel Lezcano if (ret) 5471433d49c3SDaniel Lezcano goto xfrm6_init; 54727e5449c2SDaniel Lezcano 5473d189634eSThomas Graf ret = register_pernet_subsys(&ip6_route_net_late_ops); 5474d189634eSThomas Graf if (ret) 5475d189634eSThomas Graf goto fib6_rules_init; 5476d189634eSThomas Graf 547716feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_NEWROUTE, 547816feebcfSFlorian Westphal inet6_rtm_newroute, NULL, 0); 547916feebcfSFlorian Westphal if (ret < 0) 548016feebcfSFlorian Westphal goto out_register_late_subsys; 548116feebcfSFlorian Westphal 548216feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_DELROUTE, 548316feebcfSFlorian Westphal inet6_rtm_delroute, NULL, 0); 548416feebcfSFlorian Westphal if (ret < 0) 548516feebcfSFlorian Westphal goto out_register_late_subsys; 548616feebcfSFlorian Westphal 548716feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETROUTE, 548816feebcfSFlorian Westphal inet6_rtm_getroute, NULL, 548916feebcfSFlorian Westphal RTNL_FLAG_DOIT_UNLOCKED); 549016feebcfSFlorian Westphal if (ret < 0) 5491d189634eSThomas Graf goto out_register_late_subsys; 5492433d49c3SDaniel Lezcano 54938ed67789SDaniel Lezcano ret = register_netdevice_notifier(&ip6_route_dev_notifier); 5494cdb18761SDaniel Lezcano if (ret) 5495d189634eSThomas Graf goto out_register_late_subsys; 54968ed67789SDaniel Lezcano 54978d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 54988d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 54998d0b94afSMartin KaFai Lau 55008d0b94afSMartin KaFai Lau INIT_LIST_HEAD(&ul->head); 55018d0b94afSMartin KaFai Lau spin_lock_init(&ul->lock); 55028d0b94afSMartin KaFai Lau } 55038d0b94afSMartin KaFai Lau 5504433d49c3SDaniel Lezcano out: 5505433d49c3SDaniel Lezcano return ret; 5506433d49c3SDaniel Lezcano 5507d189634eSThomas Graf out_register_late_subsys: 550816feebcfSFlorian Westphal rtnl_unregister_all(PF_INET6); 5509d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5510433d49c3SDaniel Lezcano fib6_rules_init: 5511433d49c3SDaniel Lezcano fib6_rules_cleanup(); 5512433d49c3SDaniel Lezcano xfrm6_init: 5513433d49c3SDaniel Lezcano xfrm6_fini(); 55142a0c451aSThomas Graf out_fib6_init: 55152a0c451aSThomas Graf fib6_gc_cleanup(); 55168ed67789SDaniel Lezcano out_register_subsys: 55178ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 55187e52b33bSDavid S. Miller out_register_inetpeer: 55197e52b33bSDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 5520fc66f95cSEric Dumazet out_dst_entries: 5521fc66f95cSEric Dumazet dst_entries_destroy(&ip6_dst_blackhole_ops); 5522433d49c3SDaniel Lezcano out_kmem_cache: 5523f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 5524433d49c3SDaniel Lezcano goto out; 55251da177e4SLinus Torvalds } 55261da177e4SLinus Torvalds 55271da177e4SLinus Torvalds void ip6_route_cleanup(void) 55281da177e4SLinus Torvalds { 55298ed67789SDaniel Lezcano unregister_netdevice_notifier(&ip6_route_dev_notifier); 5530d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5531101367c2SThomas Graf fib6_rules_cleanup(); 55321da177e4SLinus Torvalds xfrm6_fini(); 55331da177e4SLinus Torvalds fib6_gc_cleanup(); 5534c3426b47SDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 55358ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 553641bb78b4SXiaotian Feng dst_entries_destroy(&ip6_dst_blackhole_ops); 5537f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 55381da177e4SLinus Torvalds } 5539