12874c5fdSThomas Gleixner // SPDX-License-Identifier: GPL-2.0-or-later 21da177e4SLinus Torvalds /* 31da177e4SLinus Torvalds * Linux INET6 implementation 41da177e4SLinus Torvalds * FIB front-end. 51da177e4SLinus Torvalds * 61da177e4SLinus Torvalds * Authors: 71da177e4SLinus Torvalds * Pedro Roque <roque@di.fc.ul.pt> 81da177e4SLinus Torvalds */ 91da177e4SLinus Torvalds 101da177e4SLinus Torvalds /* Changes: 111da177e4SLinus Torvalds * 121da177e4SLinus Torvalds * YOSHIFUJI Hideaki @USAGI 131da177e4SLinus Torvalds * reworked default router selection. 141da177e4SLinus Torvalds * - respect outgoing interface 151da177e4SLinus Torvalds * - select from (probably) reachable routers (i.e. 161da177e4SLinus Torvalds * routers in REACHABLE, STALE, DELAY or PROBE states). 171da177e4SLinus Torvalds * - always select the same router if it is (probably) 181da177e4SLinus Torvalds * reachable. otherwise, round-robin the list. 19c0bece9fSYOSHIFUJI Hideaki * Ville Nuorvala 20c0bece9fSYOSHIFUJI Hideaki * Fixed routing subtrees. 211da177e4SLinus Torvalds */ 221da177e4SLinus Torvalds 23f3213831SJoe Perches #define pr_fmt(fmt) "IPv6: " fmt 24f3213831SJoe Perches 254fc268d2SRandy Dunlap #include <linux/capability.h> 261da177e4SLinus Torvalds #include <linux/errno.h> 27bc3b2d7fSPaul Gortmaker #include <linux/export.h> 281da177e4SLinus Torvalds #include <linux/types.h> 291da177e4SLinus Torvalds #include <linux/times.h> 301da177e4SLinus Torvalds #include <linux/socket.h> 311da177e4SLinus Torvalds #include <linux/sockios.h> 321da177e4SLinus Torvalds #include <linux/net.h> 331da177e4SLinus Torvalds #include <linux/route.h> 341da177e4SLinus Torvalds #include <linux/netdevice.h> 351da177e4SLinus Torvalds #include <linux/in6.h> 367bc570c8SYOSHIFUJI Hideaki #include <linux/mroute6.h> 371da177e4SLinus Torvalds #include <linux/init.h> 381da177e4SLinus Torvalds #include <linux/if_arp.h> 391da177e4SLinus Torvalds #include <linux/proc_fs.h> 401da177e4SLinus Torvalds #include <linux/seq_file.h> 415b7c931dSDaniel Lezcano #include <linux/nsproxy.h> 425a0e3ad6STejun Heo #include <linux/slab.h> 4335732d01SWei Wang #include <linux/jhash.h> 44457c4cbcSEric W. Biederman #include <net/net_namespace.h> 451da177e4SLinus Torvalds #include <net/snmp.h> 461da177e4SLinus Torvalds #include <net/ipv6.h> 471da177e4SLinus Torvalds #include <net/ip6_fib.h> 481da177e4SLinus Torvalds #include <net/ip6_route.h> 491da177e4SLinus Torvalds #include <net/ndisc.h> 501da177e4SLinus Torvalds #include <net/addrconf.h> 511da177e4SLinus Torvalds #include <net/tcp.h> 521da177e4SLinus Torvalds #include <linux/rtnetlink.h> 531da177e4SLinus Torvalds #include <net/dst.h> 54904af04dSJiri Benc #include <net/dst_metadata.h> 551da177e4SLinus Torvalds #include <net/xfrm.h> 568d71740cSTom Tucker #include <net/netevent.h> 5721713ebcSThomas Graf #include <net/netlink.h> 583c618c1dSDavid Ahern #include <net/rtnh.h> 5919e42e45SRoopa Prabhu #include <net/lwtunnel.h> 60904af04dSJiri Benc #include <net/ip_tunnels.h> 61ca254490SDavid Ahern #include <net/l3mdev.h> 62eacb9384SRoopa Prabhu #include <net/ip.h> 637c0f6ba6SLinus Torvalds #include <linux/uaccess.h> 641da177e4SLinus Torvalds 651da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 661da177e4SLinus Torvalds #include <linux/sysctl.h> 671da177e4SLinus Torvalds #endif 681da177e4SLinus Torvalds 6930d444d3SDavid Ahern static int ip6_rt_type_to_error(u8 fib6_type); 7030d444d3SDavid Ahern 7130d444d3SDavid Ahern #define CREATE_TRACE_POINTS 7230d444d3SDavid Ahern #include <trace/events/fib6.h> 7330d444d3SDavid Ahern EXPORT_TRACEPOINT_SYMBOL_GPL(fib6_table_lookup); 7430d444d3SDavid Ahern #undef CREATE_TRACE_POINTS 7530d444d3SDavid Ahern 76afc154e9SHannes Frederic Sowa enum rt6_nud_state { 777e980569SJiri Benc RT6_NUD_FAIL_HARD = -3, 787e980569SJiri Benc RT6_NUD_FAIL_PROBE = -2, 797e980569SJiri Benc RT6_NUD_FAIL_DO_RR = -1, 80afc154e9SHannes Frederic Sowa RT6_NUD_SUCCEED = 1 81afc154e9SHannes Frederic Sowa }; 82afc154e9SHannes Frederic Sowa 831da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie); 840dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst); 85ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst); 861da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *); 871da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *); 881da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *, 891da177e4SLinus Torvalds struct net_device *dev, int how); 90569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops); 911da177e4SLinus Torvalds 921da177e4SLinus Torvalds static int ip6_pkt_discard(struct sk_buff *skb); 93ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb); 947150aedeSKamala R static int ip6_pkt_prohibit(struct sk_buff *skb); 95ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb); 961da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb); 976700c270SDavid S. Miller static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 986700c270SDavid S. Miller struct sk_buff *skb, u32 mtu); 996700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, 1006700c270SDavid S. Miller struct sk_buff *skb); 101702cea56SDavid Ahern static int rt6_score_route(const struct fib6_nh *nh, u32 fib6_flags, int oif, 102702cea56SDavid Ahern int strict); 1038d1c802bSDavid Ahern static size_t rt6_nlmsg_size(struct fib6_info *rt); 104d4ead6b3SDavid Ahern static int rt6_fill_node(struct net *net, struct sk_buff *skb, 1058d1c802bSDavid Ahern struct fib6_info *rt, struct dst_entry *dst, 106d4ead6b3SDavid Ahern struct in6_addr *dest, struct in6_addr *src, 10716a16cd3SDavid Ahern int iif, int type, u32 portid, u32 seq, 10816a16cd3SDavid Ahern unsigned int flags); 1097e4b5128SDavid Ahern static struct rt6_info *rt6_find_cached_rt(const struct fib6_result *res, 110510e2cedSWei Wang const struct in6_addr *daddr, 111510e2cedSWei Wang const struct in6_addr *saddr); 1121da177e4SLinus Torvalds 11370ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 1148d1c802bSDavid Ahern static struct fib6_info *rt6_add_route_info(struct net *net, 115b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 116830218c1SDavid Ahern const struct in6_addr *gwaddr, 117830218c1SDavid Ahern struct net_device *dev, 11895c96174SEric Dumazet unsigned int pref); 1198d1c802bSDavid Ahern static struct fib6_info *rt6_get_route_info(struct net *net, 120b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 121830218c1SDavid Ahern const struct in6_addr *gwaddr, 122830218c1SDavid Ahern struct net_device *dev); 12370ceb4f5SYOSHIFUJI Hideaki #endif 12470ceb4f5SYOSHIFUJI Hideaki 1258d0b94afSMartin KaFai Lau struct uncached_list { 1268d0b94afSMartin KaFai Lau spinlock_t lock; 1278d0b94afSMartin KaFai Lau struct list_head head; 1288d0b94afSMartin KaFai Lau }; 1298d0b94afSMartin KaFai Lau 1308d0b94afSMartin KaFai Lau static DEFINE_PER_CPU_ALIGNED(struct uncached_list, rt6_uncached_list); 1318d0b94afSMartin KaFai Lau 132510c321bSXin Long void rt6_uncached_list_add(struct rt6_info *rt) 1338d0b94afSMartin KaFai Lau { 1348d0b94afSMartin KaFai Lau struct uncached_list *ul = raw_cpu_ptr(&rt6_uncached_list); 1358d0b94afSMartin KaFai Lau 1368d0b94afSMartin KaFai Lau rt->rt6i_uncached_list = ul; 1378d0b94afSMartin KaFai Lau 1388d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1398d0b94afSMartin KaFai Lau list_add_tail(&rt->rt6i_uncached, &ul->head); 1408d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1418d0b94afSMartin KaFai Lau } 1428d0b94afSMartin KaFai Lau 143510c321bSXin Long void rt6_uncached_list_del(struct rt6_info *rt) 1448d0b94afSMartin KaFai Lau { 1458d0b94afSMartin KaFai Lau if (!list_empty(&rt->rt6i_uncached)) { 1468d0b94afSMartin KaFai Lau struct uncached_list *ul = rt->rt6i_uncached_list; 14781eb8447SWei Wang struct net *net = dev_net(rt->dst.dev); 1488d0b94afSMartin KaFai Lau 1498d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1508d0b94afSMartin KaFai Lau list_del(&rt->rt6i_uncached); 15181eb8447SWei Wang atomic_dec(&net->ipv6.rt6_stats->fib_rt_uncache); 1528d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1538d0b94afSMartin KaFai Lau } 1548d0b94afSMartin KaFai Lau } 1558d0b94afSMartin KaFai Lau 1568d0b94afSMartin KaFai Lau static void rt6_uncached_list_flush_dev(struct net *net, struct net_device *dev) 1578d0b94afSMartin KaFai Lau { 1588d0b94afSMartin KaFai Lau struct net_device *loopback_dev = net->loopback_dev; 1598d0b94afSMartin KaFai Lau int cpu; 1608d0b94afSMartin KaFai Lau 161e332bc67SEric W. Biederman if (dev == loopback_dev) 162e332bc67SEric W. Biederman return; 163e332bc67SEric W. Biederman 1648d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 1658d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 1668d0b94afSMartin KaFai Lau struct rt6_info *rt; 1678d0b94afSMartin KaFai Lau 1688d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1698d0b94afSMartin KaFai Lau list_for_each_entry(rt, &ul->head, rt6i_uncached) { 1708d0b94afSMartin KaFai Lau struct inet6_dev *rt_idev = rt->rt6i_idev; 1718d0b94afSMartin KaFai Lau struct net_device *rt_dev = rt->dst.dev; 1728d0b94afSMartin KaFai Lau 173e332bc67SEric W. Biederman if (rt_idev->dev == dev) { 1748d0b94afSMartin KaFai Lau rt->rt6i_idev = in6_dev_get(loopback_dev); 1758d0b94afSMartin KaFai Lau in6_dev_put(rt_idev); 1768d0b94afSMartin KaFai Lau } 1778d0b94afSMartin KaFai Lau 178e332bc67SEric W. Biederman if (rt_dev == dev) { 1798d0b94afSMartin KaFai Lau rt->dst.dev = loopback_dev; 1808d0b94afSMartin KaFai Lau dev_hold(rt->dst.dev); 1818d0b94afSMartin KaFai Lau dev_put(rt_dev); 1828d0b94afSMartin KaFai Lau } 1838d0b94afSMartin KaFai Lau } 1848d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1858d0b94afSMartin KaFai Lau } 1868d0b94afSMartin KaFai Lau } 1878d0b94afSMartin KaFai Lau 188f8a1b43bSDavid Ahern static inline const void *choose_neigh_daddr(const struct in6_addr *p, 189f894cbf8SDavid S. Miller struct sk_buff *skb, 190f894cbf8SDavid S. Miller const void *daddr) 19139232973SDavid S. Miller { 192a7563f34SDavid S. Miller if (!ipv6_addr_any(p)) 19339232973SDavid S. Miller return (const void *) p; 194f894cbf8SDavid S. Miller else if (skb) 195f894cbf8SDavid S. Miller return &ipv6_hdr(skb)->daddr; 19639232973SDavid S. Miller return daddr; 19739232973SDavid S. Miller } 19839232973SDavid S. Miller 199f8a1b43bSDavid Ahern struct neighbour *ip6_neigh_lookup(const struct in6_addr *gw, 200f8a1b43bSDavid Ahern struct net_device *dev, 201f894cbf8SDavid S. Miller struct sk_buff *skb, 202f894cbf8SDavid S. Miller const void *daddr) 203d3aaeb38SDavid S. Miller { 20439232973SDavid S. Miller struct neighbour *n; 20539232973SDavid S. Miller 206f8a1b43bSDavid Ahern daddr = choose_neigh_daddr(gw, skb, daddr); 207f8a1b43bSDavid Ahern n = __ipv6_neigh_lookup(dev, daddr); 208f83c7790SDavid S. Miller if (n) 209f83c7790SDavid S. Miller return n; 2107adf3246SStefano Brivio 2117adf3246SStefano Brivio n = neigh_create(&nd_tbl, daddr, dev); 2127adf3246SStefano Brivio return IS_ERR(n) ? NULL : n; 213f8a1b43bSDavid Ahern } 214f8a1b43bSDavid Ahern 215f8a1b43bSDavid Ahern static struct neighbour *ip6_dst_neigh_lookup(const struct dst_entry *dst, 216f8a1b43bSDavid Ahern struct sk_buff *skb, 217f8a1b43bSDavid Ahern const void *daddr) 218f8a1b43bSDavid Ahern { 219f8a1b43bSDavid Ahern const struct rt6_info *rt = container_of(dst, struct rt6_info, dst); 220f8a1b43bSDavid Ahern 221*2c6b55f4SNicolas Dichtel return ip6_neigh_lookup(rt6_nexthop(rt, &in6addr_any), 222*2c6b55f4SNicolas Dichtel dst->dev, skb, daddr); 223f83c7790SDavid S. Miller } 224f83c7790SDavid S. Miller 22563fca65dSJulian Anastasov static void ip6_confirm_neigh(const struct dst_entry *dst, const void *daddr) 22663fca65dSJulian Anastasov { 22763fca65dSJulian Anastasov struct net_device *dev = dst->dev; 22863fca65dSJulian Anastasov struct rt6_info *rt = (struct rt6_info *)dst; 22963fca65dSJulian Anastasov 230f8a1b43bSDavid Ahern daddr = choose_neigh_daddr(&rt->rt6i_gateway, NULL, daddr); 23163fca65dSJulian Anastasov if (!daddr) 23263fca65dSJulian Anastasov return; 23363fca65dSJulian Anastasov if (dev->flags & (IFF_NOARP | IFF_LOOPBACK)) 23463fca65dSJulian Anastasov return; 23563fca65dSJulian Anastasov if (ipv6_addr_is_multicast((const struct in6_addr *)daddr)) 23663fca65dSJulian Anastasov return; 23763fca65dSJulian Anastasov __ipv6_confirm_neigh(dev, daddr); 23863fca65dSJulian Anastasov } 23963fca65dSJulian Anastasov 2409a7ec3a9SDaniel Lezcano static struct dst_ops ip6_dst_ops_template = { 2411da177e4SLinus Torvalds .family = AF_INET6, 2421da177e4SLinus Torvalds .gc = ip6_dst_gc, 2431da177e4SLinus Torvalds .gc_thresh = 1024, 2441da177e4SLinus Torvalds .check = ip6_dst_check, 2450dbaee3bSDavid S. Miller .default_advmss = ip6_default_advmss, 246ebb762f2SSteffen Klassert .mtu = ip6_mtu, 247d4ead6b3SDavid Ahern .cow_metrics = dst_cow_metrics_generic, 2481da177e4SLinus Torvalds .destroy = ip6_dst_destroy, 2491da177e4SLinus Torvalds .ifdown = ip6_dst_ifdown, 2501da177e4SLinus Torvalds .negative_advice = ip6_negative_advice, 2511da177e4SLinus Torvalds .link_failure = ip6_link_failure, 2521da177e4SLinus Torvalds .update_pmtu = ip6_rt_update_pmtu, 2536e157b6aSDavid S. Miller .redirect = rt6_do_redirect, 2549f8955ccSEric W. Biederman .local_out = __ip6_local_out, 255f8a1b43bSDavid Ahern .neigh_lookup = ip6_dst_neigh_lookup, 25663fca65dSJulian Anastasov .confirm_neigh = ip6_confirm_neigh, 2571da177e4SLinus Torvalds }; 2581da177e4SLinus Torvalds 259ebb762f2SSteffen Klassert static unsigned int ip6_blackhole_mtu(const struct dst_entry *dst) 260ec831ea7SRoland Dreier { 261618f9bc7SSteffen Klassert unsigned int mtu = dst_metric_raw(dst, RTAX_MTU); 262618f9bc7SSteffen Klassert 263618f9bc7SSteffen Klassert return mtu ? : dst->dev->mtu; 264ec831ea7SRoland Dreier } 265ec831ea7SRoland Dreier 2666700c270SDavid S. Miller static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, struct sock *sk, 2676700c270SDavid S. Miller struct sk_buff *skb, u32 mtu) 26814e50e57SDavid S. Miller { 26914e50e57SDavid S. Miller } 27014e50e57SDavid S. Miller 2716700c270SDavid S. Miller static void ip6_rt_blackhole_redirect(struct dst_entry *dst, struct sock *sk, 2726700c270SDavid S. Miller struct sk_buff *skb) 273b587ee3bSDavid S. Miller { 274b587ee3bSDavid S. Miller } 275b587ee3bSDavid S. Miller 27614e50e57SDavid S. Miller static struct dst_ops ip6_dst_blackhole_ops = { 27714e50e57SDavid S. Miller .family = AF_INET6, 27814e50e57SDavid S. Miller .destroy = ip6_dst_destroy, 27914e50e57SDavid S. Miller .check = ip6_dst_check, 280ebb762f2SSteffen Klassert .mtu = ip6_blackhole_mtu, 281214f45c9SEric Dumazet .default_advmss = ip6_default_advmss, 28214e50e57SDavid S. Miller .update_pmtu = ip6_rt_blackhole_update_pmtu, 283b587ee3bSDavid S. Miller .redirect = ip6_rt_blackhole_redirect, 2840a1f5962SMartin KaFai Lau .cow_metrics = dst_cow_metrics_generic, 285f8a1b43bSDavid Ahern .neigh_lookup = ip6_dst_neigh_lookup, 28614e50e57SDavid S. Miller }; 28714e50e57SDavid S. Miller 28862fa8a84SDavid S. Miller static const u32 ip6_template_metrics[RTAX_MAX] = { 28914edd87dSLi RongQing [RTAX_HOPLIMIT - 1] = 0, 29062fa8a84SDavid S. Miller }; 29162fa8a84SDavid S. Miller 2928d1c802bSDavid Ahern static const struct fib6_info fib6_null_entry_template = { 29393c2fb25SDavid Ahern .fib6_flags = (RTF_REJECT | RTF_NONEXTHOP), 29493c2fb25SDavid Ahern .fib6_protocol = RTPROT_KERNEL, 29593c2fb25SDavid Ahern .fib6_metric = ~(u32)0, 296f05713e0SEric Dumazet .fib6_ref = REFCOUNT_INIT(1), 297421842edSDavid Ahern .fib6_type = RTN_UNREACHABLE, 298421842edSDavid Ahern .fib6_metrics = (struct dst_metrics *)&dst_default_metrics, 299421842edSDavid Ahern }; 300421842edSDavid Ahern 301fb0af4c7SEric Dumazet static const struct rt6_info ip6_null_entry_template = { 3021da177e4SLinus Torvalds .dst = { 3031da177e4SLinus Torvalds .__refcnt = ATOMIC_INIT(1), 3041da177e4SLinus Torvalds .__use = 1, 3052c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 3061da177e4SLinus Torvalds .error = -ENETUNREACH, 3071da177e4SLinus Torvalds .input = ip6_pkt_discard, 3081da177e4SLinus Torvalds .output = ip6_pkt_discard_out, 3091da177e4SLinus Torvalds }, 3101da177e4SLinus Torvalds .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 3111da177e4SLinus Torvalds }; 3121da177e4SLinus Torvalds 313101367c2SThomas Graf #ifdef CONFIG_IPV6_MULTIPLE_TABLES 314101367c2SThomas Graf 315fb0af4c7SEric Dumazet static const struct rt6_info ip6_prohibit_entry_template = { 316101367c2SThomas Graf .dst = { 317101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 318101367c2SThomas Graf .__use = 1, 3192c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 320101367c2SThomas Graf .error = -EACCES, 3219ce8ade0SThomas Graf .input = ip6_pkt_prohibit, 3229ce8ade0SThomas Graf .output = ip6_pkt_prohibit_out, 323101367c2SThomas Graf }, 324101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 325101367c2SThomas Graf }; 326101367c2SThomas Graf 327fb0af4c7SEric Dumazet static const struct rt6_info ip6_blk_hole_entry_template = { 328101367c2SThomas Graf .dst = { 329101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 330101367c2SThomas Graf .__use = 1, 3312c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 332101367c2SThomas Graf .error = -EINVAL, 333352e512cSHerbert Xu .input = dst_discard, 334ede2059dSEric W. Biederman .output = dst_discard_out, 335101367c2SThomas Graf }, 336101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 337101367c2SThomas Graf }; 338101367c2SThomas Graf 339101367c2SThomas Graf #endif 340101367c2SThomas Graf 341ebfa45f0SMartin KaFai Lau static void rt6_info_init(struct rt6_info *rt) 342ebfa45f0SMartin KaFai Lau { 343ebfa45f0SMartin KaFai Lau struct dst_entry *dst = &rt->dst; 344ebfa45f0SMartin KaFai Lau 345ebfa45f0SMartin KaFai Lau memset(dst + 1, 0, sizeof(*rt) - sizeof(*dst)); 346ebfa45f0SMartin KaFai Lau INIT_LIST_HEAD(&rt->rt6i_uncached); 347ebfa45f0SMartin KaFai Lau } 348ebfa45f0SMartin KaFai Lau 3491da177e4SLinus Torvalds /* allocate dst with ip6_dst_ops */ 35093531c67SDavid Ahern struct rt6_info *ip6_dst_alloc(struct net *net, struct net_device *dev, 351ad706862SMartin KaFai Lau int flags) 3521da177e4SLinus Torvalds { 35397bab73fSDavid S. Miller struct rt6_info *rt = dst_alloc(&net->ipv6.ip6_dst_ops, dev, 354b2a9c0edSWei Wang 1, DST_OBSOLETE_FORCE_CHK, flags); 355cf911662SDavid S. Miller 35681eb8447SWei Wang if (rt) { 357ebfa45f0SMartin KaFai Lau rt6_info_init(rt); 35881eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 35981eb8447SWei Wang } 3608104891bSSteffen Klassert 361cf911662SDavid S. Miller return rt; 3621da177e4SLinus Torvalds } 3639ab179d8SDavid Ahern EXPORT_SYMBOL(ip6_dst_alloc); 364d52d3997SMartin KaFai Lau 3651da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *dst) 3661da177e4SLinus Torvalds { 3671da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 368a68886a6SDavid Ahern struct fib6_info *from; 3698d0b94afSMartin KaFai Lau struct inet6_dev *idev; 3701da177e4SLinus Torvalds 3711620a336SDavid Ahern ip_dst_metrics_put(dst); 3728d0b94afSMartin KaFai Lau rt6_uncached_list_del(rt); 3738d0b94afSMartin KaFai Lau 3748d0b94afSMartin KaFai Lau idev = rt->rt6i_idev; 37538308473SDavid S. Miller if (idev) { 3761da177e4SLinus Torvalds rt->rt6i_idev = NULL; 3771da177e4SLinus Torvalds in6_dev_put(idev); 3781da177e4SLinus Torvalds } 3791716a961SGao feng 3800e233874SEric Dumazet from = xchg((__force struct fib6_info **)&rt->from, NULL); 38193531c67SDavid Ahern fib6_info_release(from); 382b3419363SDavid S. Miller } 383b3419363SDavid S. Miller 3841da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev, 3851da177e4SLinus Torvalds int how) 3861da177e4SLinus Torvalds { 3871da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 3881da177e4SLinus Torvalds struct inet6_dev *idev = rt->rt6i_idev; 3895a3e55d6SDenis V. Lunev struct net_device *loopback_dev = 390c346dca1SYOSHIFUJI Hideaki dev_net(dev)->loopback_dev; 3911da177e4SLinus Torvalds 392e5645f51SWei Wang if (idev && idev->dev != loopback_dev) { 393e5645f51SWei Wang struct inet6_dev *loopback_idev = in6_dev_get(loopback_dev); 39438308473SDavid S. Miller if (loopback_idev) { 3951da177e4SLinus Torvalds rt->rt6i_idev = loopback_idev; 3961da177e4SLinus Torvalds in6_dev_put(idev); 3971da177e4SLinus Torvalds } 3981da177e4SLinus Torvalds } 39997cac082SDavid S. Miller } 4001da177e4SLinus Torvalds 4015973fb1eSMartin KaFai Lau static bool __rt6_check_expired(const struct rt6_info *rt) 4025973fb1eSMartin KaFai Lau { 4035973fb1eSMartin KaFai Lau if (rt->rt6i_flags & RTF_EXPIRES) 4045973fb1eSMartin KaFai Lau return time_after(jiffies, rt->dst.expires); 4055973fb1eSMartin KaFai Lau else 4065973fb1eSMartin KaFai Lau return false; 4075973fb1eSMartin KaFai Lau } 4085973fb1eSMartin KaFai Lau 409a50feda5SEric Dumazet static bool rt6_check_expired(const struct rt6_info *rt) 4101da177e4SLinus Torvalds { 411a68886a6SDavid Ahern struct fib6_info *from; 412a68886a6SDavid Ahern 413a68886a6SDavid Ahern from = rcu_dereference(rt->from); 414a68886a6SDavid Ahern 4151716a961SGao feng if (rt->rt6i_flags & RTF_EXPIRES) { 4161716a961SGao feng if (time_after(jiffies, rt->dst.expires)) 417a50feda5SEric Dumazet return true; 418a68886a6SDavid Ahern } else if (from) { 4191e2ea8adSXin Long return rt->dst.obsolete != DST_OBSOLETE_FORCE_CHK || 420a68886a6SDavid Ahern fib6_check_expired(from); 4211716a961SGao feng } 422a50feda5SEric Dumazet return false; 4231da177e4SLinus Torvalds } 4241da177e4SLinus Torvalds 425b1d40991SDavid Ahern void fib6_select_path(const struct net *net, struct fib6_result *res, 426b1d40991SDavid Ahern struct flowi6 *fl6, int oif, bool have_oif_match, 427b1d40991SDavid Ahern const struct sk_buff *skb, int strict) 42851ebd318SNicolas Dichtel { 4298d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 430b1d40991SDavid Ahern struct fib6_info *match = res->f6i; 431b1d40991SDavid Ahern 432b1d40991SDavid Ahern if (!match->fib6_nsiblings || have_oif_match) 433b1d40991SDavid Ahern goto out; 43451ebd318SNicolas Dichtel 435b673d6ccSJakub Sitnicki /* We might have already computed the hash for ICMPv6 errors. In such 436b673d6ccSJakub Sitnicki * case it will always be non-zero. Otherwise now is the time to do it. 437b673d6ccSJakub Sitnicki */ 438b673d6ccSJakub Sitnicki if (!fl6->mp_hash) 439b4bac172SDavid Ahern fl6->mp_hash = rt6_multipath_hash(net, fl6, skb, NULL); 440b673d6ccSJakub Sitnicki 441ad1601aeSDavid Ahern if (fl6->mp_hash <= atomic_read(&match->fib6_nh.fib_nh_upper_bound)) 442b1d40991SDavid Ahern goto out; 443bbfcd776SIdo Schimmel 44493c2fb25SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, &match->fib6_siblings, 44593c2fb25SDavid Ahern fib6_siblings) { 446702cea56SDavid Ahern const struct fib6_nh *nh = &sibling->fib6_nh; 4475e670d84SDavid Ahern int nh_upper_bound; 4485e670d84SDavid Ahern 449702cea56SDavid Ahern nh_upper_bound = atomic_read(&nh->fib_nh_upper_bound); 4505e670d84SDavid Ahern if (fl6->mp_hash > nh_upper_bound) 4513d709f69SIdo Schimmel continue; 452702cea56SDavid Ahern if (rt6_score_route(nh, sibling->fib6_flags, oif, strict) < 0) 45352bd4c0cSNicolas Dichtel break; 45451ebd318SNicolas Dichtel match = sibling; 45551ebd318SNicolas Dichtel break; 45651ebd318SNicolas Dichtel } 4573d709f69SIdo Schimmel 458b1d40991SDavid Ahern out: 459b1d40991SDavid Ahern res->f6i = match; 460b1d40991SDavid Ahern res->nh = &match->fib6_nh; 46151ebd318SNicolas Dichtel } 46251ebd318SNicolas Dichtel 4631da177e4SLinus Torvalds /* 46466f5d6ceSWei Wang * Route lookup. rcu_read_lock() should be held. 4651da177e4SLinus Torvalds */ 4661da177e4SLinus Torvalds 4670c59d006SDavid Ahern static bool __rt6_device_match(struct net *net, const struct fib6_nh *nh, 4680c59d006SDavid Ahern const struct in6_addr *saddr, int oif, int flags) 4690c59d006SDavid Ahern { 4700c59d006SDavid Ahern const struct net_device *dev; 4710c59d006SDavid Ahern 4720c59d006SDavid Ahern if (nh->fib_nh_flags & RTNH_F_DEAD) 4730c59d006SDavid Ahern return false; 4740c59d006SDavid Ahern 4750c59d006SDavid Ahern dev = nh->fib_nh_dev; 4760c59d006SDavid Ahern if (oif) { 4770c59d006SDavid Ahern if (dev->ifindex == oif) 4780c59d006SDavid Ahern return true; 4790c59d006SDavid Ahern } else { 4800c59d006SDavid Ahern if (ipv6_chk_addr(net, saddr, dev, 4810c59d006SDavid Ahern flags & RT6_LOOKUP_F_IFACE)) 4820c59d006SDavid Ahern return true; 4830c59d006SDavid Ahern } 4840c59d006SDavid Ahern 4850c59d006SDavid Ahern return false; 4860c59d006SDavid Ahern } 4870c59d006SDavid Ahern 48875ef7389SDavid Ahern static void rt6_device_match(struct net *net, struct fib6_result *res, 48975ef7389SDavid Ahern const struct in6_addr *saddr, int oif, int flags) 4901da177e4SLinus Torvalds { 49175ef7389SDavid Ahern struct fib6_info *f6i = res->f6i; 49275ef7389SDavid Ahern struct fib6_info *spf6i; 49375ef7389SDavid Ahern struct fib6_nh *nh; 4941da177e4SLinus Torvalds 49575ef7389SDavid Ahern if (!oif && ipv6_addr_any(saddr)) { 49675ef7389SDavid Ahern nh = &f6i->fib6_nh; 4977d21fec9SDavid Ahern if (!(nh->fib_nh_flags & RTNH_F_DEAD)) 4987d21fec9SDavid Ahern goto out; 4991da177e4SLinus Torvalds } 5001da177e4SLinus Torvalds 50175ef7389SDavid Ahern for (spf6i = f6i; spf6i; spf6i = rcu_dereference(spf6i->fib6_next)) { 50275ef7389SDavid Ahern nh = &spf6i->fib6_nh; 50375ef7389SDavid Ahern if (__rt6_device_match(net, nh, saddr, oif, flags)) { 50475ef7389SDavid Ahern res->f6i = spf6i; 5057d21fec9SDavid Ahern goto out; 50675ef7389SDavid Ahern } 50775ef7389SDavid Ahern } 5081da177e4SLinus Torvalds 50975ef7389SDavid Ahern if (oif && flags & RT6_LOOKUP_F_IFACE) { 51075ef7389SDavid Ahern res->f6i = net->ipv6.fib6_null_entry; 5117d21fec9SDavid Ahern nh = &res->f6i->fib6_nh; 5127d21fec9SDavid Ahern goto out; 51375ef7389SDavid Ahern } 51475ef7389SDavid Ahern 5157d21fec9SDavid Ahern nh = &f6i->fib6_nh; 5167d21fec9SDavid Ahern if (nh->fib_nh_flags & RTNH_F_DEAD) { 51775ef7389SDavid Ahern res->f6i = net->ipv6.fib6_null_entry; 5187d21fec9SDavid Ahern nh = &res->f6i->fib6_nh; 51975ef7389SDavid Ahern } 5207d21fec9SDavid Ahern out: 5217d21fec9SDavid Ahern res->nh = nh; 5227d21fec9SDavid Ahern res->fib6_type = res->f6i->fib6_type; 5237d21fec9SDavid Ahern res->fib6_flags = res->f6i->fib6_flags; 5241da177e4SLinus Torvalds } 5251da177e4SLinus Torvalds 52627097255SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 527c2f17e82SHannes Frederic Sowa struct __rt6_probe_work { 528c2f17e82SHannes Frederic Sowa struct work_struct work; 529c2f17e82SHannes Frederic Sowa struct in6_addr target; 530c2f17e82SHannes Frederic Sowa struct net_device *dev; 531c2f17e82SHannes Frederic Sowa }; 532c2f17e82SHannes Frederic Sowa 533c2f17e82SHannes Frederic Sowa static void rt6_probe_deferred(struct work_struct *w) 534c2f17e82SHannes Frederic Sowa { 535c2f17e82SHannes Frederic Sowa struct in6_addr mcaddr; 536c2f17e82SHannes Frederic Sowa struct __rt6_probe_work *work = 537c2f17e82SHannes Frederic Sowa container_of(w, struct __rt6_probe_work, work); 538c2f17e82SHannes Frederic Sowa 539c2f17e82SHannes Frederic Sowa addrconf_addr_solict_mult(&work->target, &mcaddr); 540adc176c5SErik Nordmark ndisc_send_ns(work->dev, &work->target, &mcaddr, NULL, 0); 541c2f17e82SHannes Frederic Sowa dev_put(work->dev); 542662f5533SMichael Büsch kfree(work); 543c2f17e82SHannes Frederic Sowa } 544c2f17e82SHannes Frederic Sowa 545cc3a86c8SDavid Ahern static void rt6_probe(struct fib6_nh *fib6_nh) 54627097255SYOSHIFUJI Hideaki { 547f547fac6SSabrina Dubroca struct __rt6_probe_work *work = NULL; 5485e670d84SDavid Ahern const struct in6_addr *nh_gw; 549f2c31e32SEric Dumazet struct neighbour *neigh; 5505e670d84SDavid Ahern struct net_device *dev; 551f547fac6SSabrina Dubroca struct inet6_dev *idev; 5525e670d84SDavid Ahern 55327097255SYOSHIFUJI Hideaki /* 55427097255SYOSHIFUJI Hideaki * Okay, this does not seem to be appropriate 55527097255SYOSHIFUJI Hideaki * for now, however, we need to check if it 55627097255SYOSHIFUJI Hideaki * is really so; aka Router Reachability Probing. 55727097255SYOSHIFUJI Hideaki * 55827097255SYOSHIFUJI Hideaki * Router Reachability Probe MUST be rate-limited 55927097255SYOSHIFUJI Hideaki * to no more than one per minute. 56027097255SYOSHIFUJI Hideaki */ 561cc3a86c8SDavid Ahern if (fib6_nh->fib_nh_gw_family) 562fdd6681dSAmerigo Wang return; 5635e670d84SDavid Ahern 564cc3a86c8SDavid Ahern nh_gw = &fib6_nh->fib_nh_gw6; 565cc3a86c8SDavid Ahern dev = fib6_nh->fib_nh_dev; 5662152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 567f547fac6SSabrina Dubroca idev = __in6_dev_get(dev); 5685e670d84SDavid Ahern neigh = __ipv6_neigh_lookup_noref(dev, nh_gw); 5692152caeaSYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 5708d6c31bfSMartin KaFai Lau if (neigh->nud_state & NUD_VALID) 5718d6c31bfSMartin KaFai Lau goto out; 5728d6c31bfSMartin KaFai Lau 5732152caeaSYOSHIFUJI Hideaki / 吉藤英明 write_lock(&neigh->lock); 574990edb42SMartin KaFai Lau if (!(neigh->nud_state & NUD_VALID) && 575990edb42SMartin KaFai Lau time_after(jiffies, 576dcd1f572SDavid Ahern neigh->updated + idev->cnf.rtr_probe_interval)) { 577c2f17e82SHannes Frederic Sowa work = kmalloc(sizeof(*work), GFP_ATOMIC); 578990edb42SMartin KaFai Lau if (work) 5797e980569SJiri Benc __neigh_set_probe_once(neigh); 580990edb42SMartin KaFai Lau } 581c2f17e82SHannes Frederic Sowa write_unlock(&neigh->lock); 582cc3a86c8SDavid Ahern } else if (time_after(jiffies, fib6_nh->last_probe + 583f547fac6SSabrina Dubroca idev->cnf.rtr_probe_interval)) { 584990edb42SMartin KaFai Lau work = kmalloc(sizeof(*work), GFP_ATOMIC); 585990edb42SMartin KaFai Lau } 586c2f17e82SHannes Frederic Sowa 587c2f17e82SHannes Frederic Sowa if (work) { 588cc3a86c8SDavid Ahern fib6_nh->last_probe = jiffies; 589c2f17e82SHannes Frederic Sowa INIT_WORK(&work->work, rt6_probe_deferred); 5905e670d84SDavid Ahern work->target = *nh_gw; 5915e670d84SDavid Ahern dev_hold(dev); 5925e670d84SDavid Ahern work->dev = dev; 593c2f17e82SHannes Frederic Sowa schedule_work(&work->work); 594c2f17e82SHannes Frederic Sowa } 595990edb42SMartin KaFai Lau 5968d6c31bfSMartin KaFai Lau out: 5972152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 598f2c31e32SEric Dumazet } 59927097255SYOSHIFUJI Hideaki #else 600cc3a86c8SDavid Ahern static inline void rt6_probe(struct fib6_nh *fib6_nh) 60127097255SYOSHIFUJI Hideaki { 60227097255SYOSHIFUJI Hideaki } 60327097255SYOSHIFUJI Hideaki #endif 60427097255SYOSHIFUJI Hideaki 6051da177e4SLinus Torvalds /* 606554cfb7eSYOSHIFUJI Hideaki * Default Router Selection (RFC 2461 6.3.6) 6071da177e4SLinus Torvalds */ 6081ba9a895SDavid Ahern static enum rt6_nud_state rt6_check_neigh(const struct fib6_nh *fib6_nh) 6091da177e4SLinus Torvalds { 610afc154e9SHannes Frederic Sowa enum rt6_nud_state ret = RT6_NUD_FAIL_HARD; 6115e670d84SDavid Ahern struct neighbour *neigh; 612f2c31e32SEric Dumazet 613145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 6141ba9a895SDavid Ahern neigh = __ipv6_neigh_lookup_noref(fib6_nh->fib_nh_dev, 6151ba9a895SDavid Ahern &fib6_nh->fib_nh_gw6); 616145a3621SYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 617145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_lock(&neigh->lock); 618554cfb7eSYOSHIFUJI Hideaki if (neigh->nud_state & NUD_VALID) 619afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 620398bcbebSYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 621a5a81f0bSPaul Marks else if (!(neigh->nud_state & NUD_FAILED)) 622afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 6237e980569SJiri Benc else 6247e980569SJiri Benc ret = RT6_NUD_FAIL_PROBE; 625398bcbebSYOSHIFUJI Hideaki #endif 626145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_unlock(&neigh->lock); 627afc154e9SHannes Frederic Sowa } else { 628afc154e9SHannes Frederic Sowa ret = IS_ENABLED(CONFIG_IPV6_ROUTER_PREF) ? 6297e980569SJiri Benc RT6_NUD_SUCCEED : RT6_NUD_FAIL_DO_RR; 630a5a81f0bSPaul Marks } 631145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 632145a3621SYOSHIFUJI Hideaki / 吉藤英明 633a5a81f0bSPaul Marks return ret; 6341da177e4SLinus Torvalds } 6351da177e4SLinus Torvalds 636702cea56SDavid Ahern static int rt6_score_route(const struct fib6_nh *nh, u32 fib6_flags, int oif, 637702cea56SDavid Ahern int strict) 638554cfb7eSYOSHIFUJI Hideaki { 6396e1809a5SDavid Ahern int m = 0; 6404d0c5911SYOSHIFUJI Hideaki 6416e1809a5SDavid Ahern if (!oif || nh->fib_nh_dev->ifindex == oif) 6426e1809a5SDavid Ahern m = 2; 6436e1809a5SDavid Ahern 64477d16f45SYOSHIFUJI Hideaki if (!m && (strict & RT6_LOOKUP_F_IFACE)) 645afc154e9SHannes Frederic Sowa return RT6_NUD_FAIL_HARD; 646ebacaaa0SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 647702cea56SDavid Ahern m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(fib6_flags)) << 2; 648ebacaaa0SYOSHIFUJI Hideaki #endif 6491ba9a895SDavid Ahern if ((strict & RT6_LOOKUP_F_REACHABLE) && 650702cea56SDavid Ahern !(fib6_flags & RTF_NONEXTHOP) && nh->fib_nh_gw_family) { 6511ba9a895SDavid Ahern int n = rt6_check_neigh(nh); 652afc154e9SHannes Frederic Sowa if (n < 0) 653afc154e9SHannes Frederic Sowa return n; 654afc154e9SHannes Frederic Sowa } 655554cfb7eSYOSHIFUJI Hideaki return m; 656554cfb7eSYOSHIFUJI Hideaki } 657554cfb7eSYOSHIFUJI Hideaki 65828679ed1SDavid Ahern static bool find_match(struct fib6_nh *nh, u32 fib6_flags, 65928679ed1SDavid Ahern int oif, int strict, int *mpri, bool *do_rr) 660554cfb7eSYOSHIFUJI Hideaki { 661afc154e9SHannes Frederic Sowa bool match_do_rr = false; 66228679ed1SDavid Ahern bool rc = false; 66328679ed1SDavid Ahern int m; 66435103d11SAndy Gospodarek 66528679ed1SDavid Ahern if (nh->fib_nh_flags & RTNH_F_DEAD) 6668067bb8cSIdo Schimmel goto out; 6678067bb8cSIdo Schimmel 66828679ed1SDavid Ahern if (ip6_ignore_linkdown(nh->fib_nh_dev) && 66928679ed1SDavid Ahern nh->fib_nh_flags & RTNH_F_LINKDOWN && 670d5d32e4bSDavid Ahern !(strict & RT6_LOOKUP_F_IGNORE_LINKSTATE)) 67135103d11SAndy Gospodarek goto out; 672554cfb7eSYOSHIFUJI Hideaki 67328679ed1SDavid Ahern m = rt6_score_route(nh, fib6_flags, oif, strict); 6747e980569SJiri Benc if (m == RT6_NUD_FAIL_DO_RR) { 675afc154e9SHannes Frederic Sowa match_do_rr = true; 676afc154e9SHannes Frederic Sowa m = 0; /* lowest valid score */ 6777e980569SJiri Benc } else if (m == RT6_NUD_FAIL_HARD) { 678f11e6659SDavid S. Miller goto out; 6791da177e4SLinus Torvalds } 680f11e6659SDavid S. Miller 681afc154e9SHannes Frederic Sowa if (strict & RT6_LOOKUP_F_REACHABLE) 68228679ed1SDavid Ahern rt6_probe(nh); 683afc154e9SHannes Frederic Sowa 6847e980569SJiri Benc /* note that m can be RT6_NUD_FAIL_PROBE at this point */ 685afc154e9SHannes Frederic Sowa if (m > *mpri) { 686afc154e9SHannes Frederic Sowa *do_rr = match_do_rr; 687afc154e9SHannes Frederic Sowa *mpri = m; 68828679ed1SDavid Ahern rc = true; 689afc154e9SHannes Frederic Sowa } 690f11e6659SDavid S. Miller out: 69128679ed1SDavid Ahern return rc; 6921da177e4SLinus Torvalds } 6931da177e4SLinus Torvalds 694b7bc4b6aSDavid Ahern static void __find_rr_leaf(struct fib6_info *f6i_start, 69530c15f03SDavid Ahern struct fib6_info *nomatch, u32 metric, 696b7bc4b6aSDavid Ahern struct fib6_result *res, struct fib6_info **cont, 69730c15f03SDavid Ahern int oif, int strict, bool *do_rr, int *mpri) 69830c15f03SDavid Ahern { 699b7bc4b6aSDavid Ahern struct fib6_info *f6i; 70030c15f03SDavid Ahern 701b7bc4b6aSDavid Ahern for (f6i = f6i_start; 702b7bc4b6aSDavid Ahern f6i && f6i != nomatch; 703b7bc4b6aSDavid Ahern f6i = rcu_dereference(f6i->fib6_next)) { 70430c15f03SDavid Ahern struct fib6_nh *nh; 70530c15f03SDavid Ahern 706b7bc4b6aSDavid Ahern if (cont && f6i->fib6_metric != metric) { 707b7bc4b6aSDavid Ahern *cont = f6i; 70830c15f03SDavid Ahern return; 70930c15f03SDavid Ahern } 71030c15f03SDavid Ahern 711b7bc4b6aSDavid Ahern if (fib6_check_expired(f6i)) 71230c15f03SDavid Ahern continue; 71330c15f03SDavid Ahern 714b7bc4b6aSDavid Ahern nh = &f6i->fib6_nh; 715b7bc4b6aSDavid Ahern if (find_match(nh, f6i->fib6_flags, oif, strict, mpri, do_rr)) { 716b7bc4b6aSDavid Ahern res->f6i = f6i; 717b7bc4b6aSDavid Ahern res->nh = nh; 7187d21fec9SDavid Ahern res->fib6_flags = f6i->fib6_flags; 7197d21fec9SDavid Ahern res->fib6_type = f6i->fib6_type; 720b7bc4b6aSDavid Ahern } 72130c15f03SDavid Ahern } 72230c15f03SDavid Ahern } 72330c15f03SDavid Ahern 724b7bc4b6aSDavid Ahern static void find_rr_leaf(struct fib6_node *fn, struct fib6_info *leaf, 725b7bc4b6aSDavid Ahern struct fib6_info *rr_head, int oif, int strict, 726b7bc4b6aSDavid Ahern bool *do_rr, struct fib6_result *res) 727f11e6659SDavid S. Miller { 728b7bc4b6aSDavid Ahern u32 metric = rr_head->fib6_metric; 729b7bc4b6aSDavid Ahern struct fib6_info *cont = NULL; 730f11e6659SDavid S. Miller int mpri = -1; 731f11e6659SDavid S. Miller 732b7bc4b6aSDavid Ahern __find_rr_leaf(rr_head, NULL, metric, res, &cont, 73330c15f03SDavid Ahern oif, strict, do_rr, &mpri); 7349fbdcfafSSteffen Klassert 735b7bc4b6aSDavid Ahern __find_rr_leaf(leaf, rr_head, metric, res, &cont, 73630c15f03SDavid Ahern oif, strict, do_rr, &mpri); 7379fbdcfafSSteffen Klassert 738b7bc4b6aSDavid Ahern if (res->f6i || !cont) 739b7bc4b6aSDavid Ahern return; 7409fbdcfafSSteffen Klassert 741b7bc4b6aSDavid Ahern __find_rr_leaf(cont, NULL, metric, res, NULL, 74230c15f03SDavid Ahern oif, strict, do_rr, &mpri); 743f11e6659SDavid S. Miller } 744f11e6659SDavid S. Miller 745b7bc4b6aSDavid Ahern static void rt6_select(struct net *net, struct fib6_node *fn, int oif, 746b7bc4b6aSDavid Ahern struct fib6_result *res, int strict) 747f11e6659SDavid S. Miller { 7488d1c802bSDavid Ahern struct fib6_info *leaf = rcu_dereference(fn->leaf); 749b7bc4b6aSDavid Ahern struct fib6_info *rt0; 750afc154e9SHannes Frederic Sowa bool do_rr = false; 75117ecf590SWei Wang int key_plen; 752f11e6659SDavid S. Miller 753b7bc4b6aSDavid Ahern /* make sure this function or its helpers sets f6i */ 754b7bc4b6aSDavid Ahern res->f6i = NULL; 755b7bc4b6aSDavid Ahern 756421842edSDavid Ahern if (!leaf || leaf == net->ipv6.fib6_null_entry) 757b7bc4b6aSDavid Ahern goto out; 7588d1040e8SWei Wang 75966f5d6ceSWei Wang rt0 = rcu_dereference(fn->rr_ptr); 760f11e6659SDavid S. Miller if (!rt0) 76166f5d6ceSWei Wang rt0 = leaf; 762f11e6659SDavid S. Miller 76317ecf590SWei Wang /* Double check to make sure fn is not an intermediate node 76417ecf590SWei Wang * and fn->leaf does not points to its child's leaf 76517ecf590SWei Wang * (This might happen if all routes under fn are deleted from 76617ecf590SWei Wang * the tree and fib6_repair_tree() is called on the node.) 76717ecf590SWei Wang */ 76893c2fb25SDavid Ahern key_plen = rt0->fib6_dst.plen; 76917ecf590SWei Wang #ifdef CONFIG_IPV6_SUBTREES 77093c2fb25SDavid Ahern if (rt0->fib6_src.plen) 77193c2fb25SDavid Ahern key_plen = rt0->fib6_src.plen; 77217ecf590SWei Wang #endif 77317ecf590SWei Wang if (fn->fn_bit != key_plen) 774b7bc4b6aSDavid Ahern goto out; 77517ecf590SWei Wang 776b7bc4b6aSDavid Ahern find_rr_leaf(fn, leaf, rt0, oif, strict, &do_rr, res); 777afc154e9SHannes Frederic Sowa if (do_rr) { 7788fb11a9aSDavid Ahern struct fib6_info *next = rcu_dereference(rt0->fib6_next); 779f11e6659SDavid S. Miller 780554cfb7eSYOSHIFUJI Hideaki /* no entries matched; do round-robin */ 78193c2fb25SDavid Ahern if (!next || next->fib6_metric != rt0->fib6_metric) 7828d1040e8SWei Wang next = leaf; 783f11e6659SDavid S. Miller 78466f5d6ceSWei Wang if (next != rt0) { 78593c2fb25SDavid Ahern spin_lock_bh(&leaf->fib6_table->tb6_lock); 78666f5d6ceSWei Wang /* make sure next is not being deleted from the tree */ 78793c2fb25SDavid Ahern if (next->fib6_node) 78866f5d6ceSWei Wang rcu_assign_pointer(fn->rr_ptr, next); 78993c2fb25SDavid Ahern spin_unlock_bh(&leaf->fib6_table->tb6_lock); 79066f5d6ceSWei Wang } 791554cfb7eSYOSHIFUJI Hideaki } 792554cfb7eSYOSHIFUJI Hideaki 793b7bc4b6aSDavid Ahern out: 794b7bc4b6aSDavid Ahern if (!res->f6i) { 795b7bc4b6aSDavid Ahern res->f6i = net->ipv6.fib6_null_entry; 796b7bc4b6aSDavid Ahern res->nh = &res->f6i->fib6_nh; 7977d21fec9SDavid Ahern res->fib6_flags = res->f6i->fib6_flags; 7987d21fec9SDavid Ahern res->fib6_type = res->f6i->fib6_type; 799b7bc4b6aSDavid Ahern } 8001da177e4SLinus Torvalds } 8011da177e4SLinus Torvalds 80285bd05deSDavid Ahern static bool rt6_is_gw_or_nonexthop(const struct fib6_result *res) 8038b9df265SMartin KaFai Lau { 80485bd05deSDavid Ahern return (res->f6i->fib6_flags & RTF_NONEXTHOP) || 80585bd05deSDavid Ahern res->nh->fib_nh_gw_family; 8068b9df265SMartin KaFai Lau } 8078b9df265SMartin KaFai Lau 80870ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 80970ceb4f5SYOSHIFUJI Hideaki int rt6_route_rcv(struct net_device *dev, u8 *opt, int len, 810b71d1d42SEric Dumazet const struct in6_addr *gwaddr) 81170ceb4f5SYOSHIFUJI Hideaki { 812c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 81370ceb4f5SYOSHIFUJI Hideaki struct route_info *rinfo = (struct route_info *) opt; 81470ceb4f5SYOSHIFUJI Hideaki struct in6_addr prefix_buf, *prefix; 81570ceb4f5SYOSHIFUJI Hideaki unsigned int pref; 8164bed72e4SYOSHIFUJI Hideaki unsigned long lifetime; 8178d1c802bSDavid Ahern struct fib6_info *rt; 81870ceb4f5SYOSHIFUJI Hideaki 81970ceb4f5SYOSHIFUJI Hideaki if (len < sizeof(struct route_info)) { 82070ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82170ceb4f5SYOSHIFUJI Hideaki } 82270ceb4f5SYOSHIFUJI Hideaki 82370ceb4f5SYOSHIFUJI Hideaki /* Sanity check for prefix_len and length */ 82470ceb4f5SYOSHIFUJI Hideaki if (rinfo->length > 3) { 82570ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82670ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 128) { 82770ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82870ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 64) { 82970ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 2) { 83070ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 83170ceb4f5SYOSHIFUJI Hideaki } 83270ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 0) { 83370ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 1) { 83470ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 83570ceb4f5SYOSHIFUJI Hideaki } 83670ceb4f5SYOSHIFUJI Hideaki } 83770ceb4f5SYOSHIFUJI Hideaki 83870ceb4f5SYOSHIFUJI Hideaki pref = rinfo->route_pref; 83970ceb4f5SYOSHIFUJI Hideaki if (pref == ICMPV6_ROUTER_PREF_INVALID) 8403933fc95SJens Rosenboom return -EINVAL; 84170ceb4f5SYOSHIFUJI Hideaki 8424bed72e4SYOSHIFUJI Hideaki lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ); 84370ceb4f5SYOSHIFUJI Hideaki 84470ceb4f5SYOSHIFUJI Hideaki if (rinfo->length == 3) 84570ceb4f5SYOSHIFUJI Hideaki prefix = (struct in6_addr *)rinfo->prefix; 84670ceb4f5SYOSHIFUJI Hideaki else { 84770ceb4f5SYOSHIFUJI Hideaki /* this function is safe */ 84870ceb4f5SYOSHIFUJI Hideaki ipv6_addr_prefix(&prefix_buf, 84970ceb4f5SYOSHIFUJI Hideaki (struct in6_addr *)rinfo->prefix, 85070ceb4f5SYOSHIFUJI Hideaki rinfo->prefix_len); 85170ceb4f5SYOSHIFUJI Hideaki prefix = &prefix_buf; 85270ceb4f5SYOSHIFUJI Hideaki } 85370ceb4f5SYOSHIFUJI Hideaki 854f104a567SDuan Jiong if (rinfo->prefix_len == 0) 855afb1d4b5SDavid Ahern rt = rt6_get_dflt_router(net, gwaddr, dev); 856f104a567SDuan Jiong else 857f104a567SDuan Jiong rt = rt6_get_route_info(net, prefix, rinfo->prefix_len, 858830218c1SDavid Ahern gwaddr, dev); 85970ceb4f5SYOSHIFUJI Hideaki 86070ceb4f5SYOSHIFUJI Hideaki if (rt && !lifetime) { 861afb1d4b5SDavid Ahern ip6_del_rt(net, rt); 86270ceb4f5SYOSHIFUJI Hideaki rt = NULL; 86370ceb4f5SYOSHIFUJI Hideaki } 86470ceb4f5SYOSHIFUJI Hideaki 86570ceb4f5SYOSHIFUJI Hideaki if (!rt && lifetime) 866830218c1SDavid Ahern rt = rt6_add_route_info(net, prefix, rinfo->prefix_len, gwaddr, 867830218c1SDavid Ahern dev, pref); 86870ceb4f5SYOSHIFUJI Hideaki else if (rt) 86993c2fb25SDavid Ahern rt->fib6_flags = RTF_ROUTEINFO | 87093c2fb25SDavid Ahern (rt->fib6_flags & ~RTF_PREF_MASK) | RTF_PREF(pref); 87170ceb4f5SYOSHIFUJI Hideaki 87270ceb4f5SYOSHIFUJI Hideaki if (rt) { 8731716a961SGao feng if (!addrconf_finite_timeout(lifetime)) 87414895687SDavid Ahern fib6_clean_expires(rt); 8751716a961SGao feng else 87614895687SDavid Ahern fib6_set_expires(rt, jiffies + HZ * lifetime); 8771716a961SGao feng 87893531c67SDavid Ahern fib6_info_release(rt); 87970ceb4f5SYOSHIFUJI Hideaki } 88070ceb4f5SYOSHIFUJI Hideaki return 0; 88170ceb4f5SYOSHIFUJI Hideaki } 88270ceb4f5SYOSHIFUJI Hideaki #endif 88370ceb4f5SYOSHIFUJI Hideaki 884ae90d867SDavid Ahern /* 885ae90d867SDavid Ahern * Misc support functions 886ae90d867SDavid Ahern */ 887ae90d867SDavid Ahern 888ae90d867SDavid Ahern /* called with rcu_lock held */ 8890d161581SDavid Ahern static struct net_device *ip6_rt_get_dev_rcu(const struct fib6_result *res) 890ae90d867SDavid Ahern { 8910d161581SDavid Ahern struct net_device *dev = res->nh->fib_nh_dev; 892ae90d867SDavid Ahern 8937d21fec9SDavid Ahern if (res->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) { 894ae90d867SDavid Ahern /* for copies of local routes, dst->dev needs to be the 895ae90d867SDavid Ahern * device if it is a master device, the master device if 896ae90d867SDavid Ahern * device is enslaved, and the loopback as the default 897ae90d867SDavid Ahern */ 898ae90d867SDavid Ahern if (netif_is_l3_slave(dev) && 8997d21fec9SDavid Ahern !rt6_need_strict(&res->f6i->fib6_dst.addr)) 900ae90d867SDavid Ahern dev = l3mdev_master_dev_rcu(dev); 901ae90d867SDavid Ahern else if (!netif_is_l3_master(dev)) 902ae90d867SDavid Ahern dev = dev_net(dev)->loopback_dev; 903ae90d867SDavid Ahern /* last case is netif_is_l3_master(dev) is true in which 904ae90d867SDavid Ahern * case we want dev returned to be dev 905ae90d867SDavid Ahern */ 906ae90d867SDavid Ahern } 907ae90d867SDavid Ahern 908ae90d867SDavid Ahern return dev; 909ae90d867SDavid Ahern } 910ae90d867SDavid Ahern 9116edb3c96SDavid Ahern static const int fib6_prop[RTN_MAX + 1] = { 9126edb3c96SDavid Ahern [RTN_UNSPEC] = 0, 9136edb3c96SDavid Ahern [RTN_UNICAST] = 0, 9146edb3c96SDavid Ahern [RTN_LOCAL] = 0, 9156edb3c96SDavid Ahern [RTN_BROADCAST] = 0, 9166edb3c96SDavid Ahern [RTN_ANYCAST] = 0, 9176edb3c96SDavid Ahern [RTN_MULTICAST] = 0, 9186edb3c96SDavid Ahern [RTN_BLACKHOLE] = -EINVAL, 9196edb3c96SDavid Ahern [RTN_UNREACHABLE] = -EHOSTUNREACH, 9206edb3c96SDavid Ahern [RTN_PROHIBIT] = -EACCES, 9216edb3c96SDavid Ahern [RTN_THROW] = -EAGAIN, 9226edb3c96SDavid Ahern [RTN_NAT] = -EINVAL, 9236edb3c96SDavid Ahern [RTN_XRESOLVE] = -EINVAL, 9246edb3c96SDavid Ahern }; 9256edb3c96SDavid Ahern 9266edb3c96SDavid Ahern static int ip6_rt_type_to_error(u8 fib6_type) 9276edb3c96SDavid Ahern { 9286edb3c96SDavid Ahern return fib6_prop[fib6_type]; 9296edb3c96SDavid Ahern } 9306edb3c96SDavid Ahern 9318d1c802bSDavid Ahern static unsigned short fib6_info_dst_flags(struct fib6_info *rt) 9323b6761d1SDavid Ahern { 9333b6761d1SDavid Ahern unsigned short flags = 0; 9343b6761d1SDavid Ahern 9353b6761d1SDavid Ahern if (rt->dst_nocount) 9363b6761d1SDavid Ahern flags |= DST_NOCOUNT; 9373b6761d1SDavid Ahern if (rt->dst_nopolicy) 9383b6761d1SDavid Ahern flags |= DST_NOPOLICY; 9393b6761d1SDavid Ahern if (rt->dst_host) 9403b6761d1SDavid Ahern flags |= DST_HOST; 9413b6761d1SDavid Ahern 9423b6761d1SDavid Ahern return flags; 9433b6761d1SDavid Ahern } 9443b6761d1SDavid Ahern 9457d21fec9SDavid Ahern static void ip6_rt_init_dst_reject(struct rt6_info *rt, u8 fib6_type) 9466edb3c96SDavid Ahern { 9477d21fec9SDavid Ahern rt->dst.error = ip6_rt_type_to_error(fib6_type); 9486edb3c96SDavid Ahern 9497d21fec9SDavid Ahern switch (fib6_type) { 9506edb3c96SDavid Ahern case RTN_BLACKHOLE: 9516edb3c96SDavid Ahern rt->dst.output = dst_discard_out; 9526edb3c96SDavid Ahern rt->dst.input = dst_discard; 9536edb3c96SDavid Ahern break; 9546edb3c96SDavid Ahern case RTN_PROHIBIT: 9556edb3c96SDavid Ahern rt->dst.output = ip6_pkt_prohibit_out; 9566edb3c96SDavid Ahern rt->dst.input = ip6_pkt_prohibit; 9576edb3c96SDavid Ahern break; 9586edb3c96SDavid Ahern case RTN_THROW: 9596edb3c96SDavid Ahern case RTN_UNREACHABLE: 9606edb3c96SDavid Ahern default: 9616edb3c96SDavid Ahern rt->dst.output = ip6_pkt_discard_out; 9626edb3c96SDavid Ahern rt->dst.input = ip6_pkt_discard; 9636edb3c96SDavid Ahern break; 9646edb3c96SDavid Ahern } 9656edb3c96SDavid Ahern } 9666edb3c96SDavid Ahern 9670d161581SDavid Ahern static void ip6_rt_init_dst(struct rt6_info *rt, const struct fib6_result *res) 9686edb3c96SDavid Ahern { 9697d21fec9SDavid Ahern struct fib6_info *f6i = res->f6i; 9700d161581SDavid Ahern 9717d21fec9SDavid Ahern if (res->fib6_flags & RTF_REJECT) { 9727d21fec9SDavid Ahern ip6_rt_init_dst_reject(rt, res->fib6_type); 9736edb3c96SDavid Ahern return; 9746edb3c96SDavid Ahern } 9756edb3c96SDavid Ahern 9766edb3c96SDavid Ahern rt->dst.error = 0; 9776edb3c96SDavid Ahern rt->dst.output = ip6_output; 9786edb3c96SDavid Ahern 9797d21fec9SDavid Ahern if (res->fib6_type == RTN_LOCAL || res->fib6_type == RTN_ANYCAST) { 9806edb3c96SDavid Ahern rt->dst.input = ip6_input; 9817d21fec9SDavid Ahern } else if (ipv6_addr_type(&f6i->fib6_dst.addr) & IPV6_ADDR_MULTICAST) { 9826edb3c96SDavid Ahern rt->dst.input = ip6_mc_input; 9836edb3c96SDavid Ahern } else { 9846edb3c96SDavid Ahern rt->dst.input = ip6_forward; 9856edb3c96SDavid Ahern } 9866edb3c96SDavid Ahern 9870d161581SDavid Ahern if (res->nh->fib_nh_lws) { 9880d161581SDavid Ahern rt->dst.lwtstate = lwtstate_get(res->nh->fib_nh_lws); 9896edb3c96SDavid Ahern lwtunnel_set_redirect(&rt->dst); 9906edb3c96SDavid Ahern } 9916edb3c96SDavid Ahern 9926edb3c96SDavid Ahern rt->dst.lastuse = jiffies; 9936edb3c96SDavid Ahern } 9946edb3c96SDavid Ahern 995e873e4b9SWei Wang /* Caller must already hold reference to @from */ 9968d1c802bSDavid Ahern static void rt6_set_from(struct rt6_info *rt, struct fib6_info *from) 997ae90d867SDavid Ahern { 998ae90d867SDavid Ahern rt->rt6i_flags &= ~RTF_EXPIRES; 999a68886a6SDavid Ahern rcu_assign_pointer(rt->from, from); 1000e1255ed4SDavid Ahern ip_dst_init_metrics(&rt->dst, from->fib6_metrics); 1001ae90d867SDavid Ahern } 1002ae90d867SDavid Ahern 10030d161581SDavid Ahern /* Caller must already hold reference to f6i in result */ 10040d161581SDavid Ahern static void ip6_rt_copy_init(struct rt6_info *rt, const struct fib6_result *res) 1005ae90d867SDavid Ahern { 10060d161581SDavid Ahern const struct fib6_nh *nh = res->nh; 10070d161581SDavid Ahern const struct net_device *dev = nh->fib_nh_dev; 10080d161581SDavid Ahern struct fib6_info *f6i = res->f6i; 1009dcd1f572SDavid Ahern 10100d161581SDavid Ahern ip6_rt_init_dst(rt, res); 10116edb3c96SDavid Ahern 10120d161581SDavid Ahern rt->rt6i_dst = f6i->fib6_dst; 1013dcd1f572SDavid Ahern rt->rt6i_idev = dev ? in6_dev_get(dev) : NULL; 10147d21fec9SDavid Ahern rt->rt6i_flags = res->fib6_flags; 10150d161581SDavid Ahern if (nh->fib_nh_gw_family) { 10160d161581SDavid Ahern rt->rt6i_gateway = nh->fib_nh_gw6; 10172b2450caSDavid Ahern rt->rt6i_flags |= RTF_GATEWAY; 10182b2450caSDavid Ahern } 10190d161581SDavid Ahern rt6_set_from(rt, f6i); 1020ae90d867SDavid Ahern #ifdef CONFIG_IPV6_SUBTREES 10210d161581SDavid Ahern rt->rt6i_src = f6i->fib6_src; 1022ae90d867SDavid Ahern #endif 1023ae90d867SDavid Ahern } 1024ae90d867SDavid Ahern 1025a3c00e46SMartin KaFai Lau static struct fib6_node* fib6_backtrack(struct fib6_node *fn, 1026a3c00e46SMartin KaFai Lau struct in6_addr *saddr) 1027a3c00e46SMartin KaFai Lau { 102866f5d6ceSWei Wang struct fib6_node *pn, *sn; 1029a3c00e46SMartin KaFai Lau while (1) { 1030a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_TL_ROOT) 1031a3c00e46SMartin KaFai Lau return NULL; 103266f5d6ceSWei Wang pn = rcu_dereference(fn->parent); 103366f5d6ceSWei Wang sn = FIB6_SUBTREE(pn); 103466f5d6ceSWei Wang if (sn && sn != fn) 10356454743bSDavid Ahern fn = fib6_node_lookup(sn, NULL, saddr); 1036a3c00e46SMartin KaFai Lau else 1037a3c00e46SMartin KaFai Lau fn = pn; 1038a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_RTINFO) 1039a3c00e46SMartin KaFai Lau return fn; 1040a3c00e46SMartin KaFai Lau } 1041a3c00e46SMartin KaFai Lau } 1042c71099acSThomas Graf 104310585b43SDavid Ahern static bool ip6_hold_safe(struct net *net, struct rt6_info **prt) 1044d3843fe5SWei Wang { 1045d3843fe5SWei Wang struct rt6_info *rt = *prt; 1046d3843fe5SWei Wang 1047d3843fe5SWei Wang if (dst_hold_safe(&rt->dst)) 1048d3843fe5SWei Wang return true; 104910585b43SDavid Ahern if (net) { 1050d3843fe5SWei Wang rt = net->ipv6.ip6_null_entry; 1051d3843fe5SWei Wang dst_hold(&rt->dst); 1052d3843fe5SWei Wang } else { 1053d3843fe5SWei Wang rt = NULL; 1054d3843fe5SWei Wang } 1055d3843fe5SWei Wang *prt = rt; 1056d3843fe5SWei Wang return false; 1057d3843fe5SWei Wang } 1058d3843fe5SWei Wang 1059dec9b0e2SDavid Ahern /* called with rcu_lock held */ 10609b6b35abSDavid Ahern static struct rt6_info *ip6_create_rt_rcu(const struct fib6_result *res) 1061dec9b0e2SDavid Ahern { 10629b6b35abSDavid Ahern struct net_device *dev = res->nh->fib_nh_dev; 10639b6b35abSDavid Ahern struct fib6_info *f6i = res->f6i; 10649b6b35abSDavid Ahern unsigned short flags; 1065dec9b0e2SDavid Ahern struct rt6_info *nrt; 1066dec9b0e2SDavid Ahern 10679b6b35abSDavid Ahern if (!fib6_info_hold_safe(f6i)) 10681c87e79aSXin Long goto fallback; 1069e873e4b9SWei Wang 10709b6b35abSDavid Ahern flags = fib6_info_dst_flags(f6i); 107193531c67SDavid Ahern nrt = ip6_dst_alloc(dev_net(dev), dev, flags); 10721c87e79aSXin Long if (!nrt) { 10739b6b35abSDavid Ahern fib6_info_release(f6i); 10741c87e79aSXin Long goto fallback; 10751c87e79aSXin Long } 1076dec9b0e2SDavid Ahern 10770d161581SDavid Ahern ip6_rt_copy_init(nrt, res); 10781c87e79aSXin Long return nrt; 10791c87e79aSXin Long 10801c87e79aSXin Long fallback: 10811c87e79aSXin Long nrt = dev_net(dev)->ipv6.ip6_null_entry; 10821c87e79aSXin Long dst_hold(&nrt->dst); 1083dec9b0e2SDavid Ahern return nrt; 1084dec9b0e2SDavid Ahern } 1085dec9b0e2SDavid Ahern 10868ed67789SDaniel Lezcano static struct rt6_info *ip6_pol_route_lookup(struct net *net, 10878ed67789SDaniel Lezcano struct fib6_table *table, 1088b75cc8f9SDavid Ahern struct flowi6 *fl6, 1089b75cc8f9SDavid Ahern const struct sk_buff *skb, 1090b75cc8f9SDavid Ahern int flags) 10911da177e4SLinus Torvalds { 1092b1d40991SDavid Ahern struct fib6_result res = {}; 10931da177e4SLinus Torvalds struct fib6_node *fn; 109423fb93a4SDavid Ahern struct rt6_info *rt; 10951da177e4SLinus Torvalds 1096b6cdbc85SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1097b6cdbc85SDavid Ahern flags &= ~RT6_LOOKUP_F_IFACE; 1098b6cdbc85SDavid Ahern 109966f5d6ceSWei Wang rcu_read_lock(); 11006454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1101c71099acSThomas Graf restart: 1102b1d40991SDavid Ahern res.f6i = rcu_dereference(fn->leaf); 1103b1d40991SDavid Ahern if (!res.f6i) 1104b1d40991SDavid Ahern res.f6i = net->ipv6.fib6_null_entry; 1105af52a52cSDavid Ahern else 110675ef7389SDavid Ahern rt6_device_match(net, &res, &fl6->saddr, fl6->flowi6_oif, 110775ef7389SDavid Ahern flags); 1108af52a52cSDavid Ahern 1109b1d40991SDavid Ahern if (res.f6i == net->ipv6.fib6_null_entry) { 1110a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1111a3c00e46SMartin KaFai Lau if (fn) 1112a3c00e46SMartin KaFai Lau goto restart; 1113af52a52cSDavid Ahern 1114af52a52cSDavid Ahern rt = net->ipv6.ip6_null_entry; 1115af52a52cSDavid Ahern dst_hold(&rt->dst); 1116af52a52cSDavid Ahern goto out; 1117a3c00e46SMartin KaFai Lau } 11182b760fcfSWei Wang 1119b1d40991SDavid Ahern fib6_select_path(net, &res, fl6, fl6->flowi6_oif, 1120b1d40991SDavid Ahern fl6->flowi6_oif != 0, skb, flags); 1121b1d40991SDavid Ahern 11224c9483b2SDavid S. Miller /* Search through exception table */ 11237e4b5128SDavid Ahern rt = rt6_find_cached_rt(&res, &fl6->daddr, &fl6->saddr); 112423fb93a4SDavid Ahern if (rt) { 112510585b43SDavid Ahern if (ip6_hold_safe(net, &rt)) 1126d3843fe5SWei Wang dst_use_noref(&rt->dst, jiffies); 112723fb93a4SDavid Ahern } else { 11289b6b35abSDavid Ahern rt = ip6_create_rt_rcu(&res); 1129dec9b0e2SDavid Ahern } 1130d3843fe5SWei Wang 1131af52a52cSDavid Ahern out: 11328ff2e5b2SDavid Ahern trace_fib6_table_lookup(net, &res, table, fl6); 1133af52a52cSDavid Ahern 113466f5d6ceSWei Wang rcu_read_unlock(); 1135b811580dSDavid Ahern 11361da177e4SLinus Torvalds return rt; 1137c71099acSThomas Graf } 1138c71099acSThomas Graf 1139ea6e574eSFlorian Westphal struct dst_entry *ip6_route_lookup(struct net *net, struct flowi6 *fl6, 1140b75cc8f9SDavid Ahern const struct sk_buff *skb, int flags) 1141ea6e574eSFlorian Westphal { 1142b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_lookup); 1143ea6e574eSFlorian Westphal } 1144ea6e574eSFlorian Westphal EXPORT_SYMBOL_GPL(ip6_route_lookup); 1145ea6e574eSFlorian Westphal 11469acd9f3aSYOSHIFUJI Hideaki struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr, 1147b75cc8f9SDavid Ahern const struct in6_addr *saddr, int oif, 1148b75cc8f9SDavid Ahern const struct sk_buff *skb, int strict) 1149c71099acSThomas Graf { 11504c9483b2SDavid S. Miller struct flowi6 fl6 = { 11514c9483b2SDavid S. Miller .flowi6_oif = oif, 11524c9483b2SDavid S. Miller .daddr = *daddr, 1153c71099acSThomas Graf }; 1154c71099acSThomas Graf struct dst_entry *dst; 115577d16f45SYOSHIFUJI Hideaki int flags = strict ? RT6_LOOKUP_F_IFACE : 0; 1156c71099acSThomas Graf 1157adaa70bbSThomas Graf if (saddr) { 11584c9483b2SDavid S. Miller memcpy(&fl6.saddr, saddr, sizeof(*saddr)); 1159adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 1160adaa70bbSThomas Graf } 1161adaa70bbSThomas Graf 1162b75cc8f9SDavid Ahern dst = fib6_rule_lookup(net, &fl6, skb, flags, ip6_pol_route_lookup); 1163c71099acSThomas Graf if (dst->error == 0) 1164c71099acSThomas Graf return (struct rt6_info *) dst; 1165c71099acSThomas Graf 1166c71099acSThomas Graf dst_release(dst); 1167c71099acSThomas Graf 11681da177e4SLinus Torvalds return NULL; 11691da177e4SLinus Torvalds } 11707159039aSYOSHIFUJI Hideaki EXPORT_SYMBOL(rt6_lookup); 11717159039aSYOSHIFUJI Hideaki 1172c71099acSThomas Graf /* ip6_ins_rt is called with FREE table->tb6_lock. 11731cfb71eeSWei Wang * It takes new route entry, the addition fails by any reason the 11741cfb71eeSWei Wang * route is released. 11751cfb71eeSWei Wang * Caller must hold dst before calling it. 11761da177e4SLinus Torvalds */ 11771da177e4SLinus Torvalds 11788d1c802bSDavid Ahern static int __ip6_ins_rt(struct fib6_info *rt, struct nl_info *info, 1179333c4301SDavid Ahern struct netlink_ext_ack *extack) 11801da177e4SLinus Torvalds { 11811da177e4SLinus Torvalds int err; 1182c71099acSThomas Graf struct fib6_table *table; 11831da177e4SLinus Torvalds 118493c2fb25SDavid Ahern table = rt->fib6_table; 118566f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 1186d4ead6b3SDavid Ahern err = fib6_add(&table->tb6_root, rt, info, extack); 118766f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 11881da177e4SLinus Torvalds 11891da177e4SLinus Torvalds return err; 11901da177e4SLinus Torvalds } 11911da177e4SLinus Torvalds 11928d1c802bSDavid Ahern int ip6_ins_rt(struct net *net, struct fib6_info *rt) 119340e22e8fSThomas Graf { 1194afb1d4b5SDavid Ahern struct nl_info info = { .nl_net = net, }; 1195e715b6d3SFlorian Westphal 1196d4ead6b3SDavid Ahern return __ip6_ins_rt(rt, &info, NULL); 119740e22e8fSThomas Graf } 119840e22e8fSThomas Graf 119985bd05deSDavid Ahern static struct rt6_info *ip6_rt_cache_alloc(const struct fib6_result *res, 120021efcfa0SEric Dumazet const struct in6_addr *daddr, 1201b71d1d42SEric Dumazet const struct in6_addr *saddr) 12021da177e4SLinus Torvalds { 120385bd05deSDavid Ahern struct fib6_info *f6i = res->f6i; 12044832c30dSDavid Ahern struct net_device *dev; 12051da177e4SLinus Torvalds struct rt6_info *rt; 12061da177e4SLinus Torvalds 12071da177e4SLinus Torvalds /* 12081da177e4SLinus Torvalds * Clone the route. 12091da177e4SLinus Torvalds */ 12101da177e4SLinus Torvalds 121185bd05deSDavid Ahern if (!fib6_info_hold_safe(f6i)) 1212e873e4b9SWei Wang return NULL; 1213e873e4b9SWei Wang 12140d161581SDavid Ahern dev = ip6_rt_get_dev_rcu(res); 121593531c67SDavid Ahern rt = ip6_dst_alloc(dev_net(dev), dev, 0); 1216e873e4b9SWei Wang if (!rt) { 121785bd05deSDavid Ahern fib6_info_release(f6i); 121883a09abdSMartin KaFai Lau return NULL; 1219e873e4b9SWei Wang } 122083a09abdSMartin KaFai Lau 12210d161581SDavid Ahern ip6_rt_copy_init(rt, res); 12228b9df265SMartin KaFai Lau rt->rt6i_flags |= RTF_CACHE; 122383a09abdSMartin KaFai Lau rt->dst.flags |= DST_HOST; 122483a09abdSMartin KaFai Lau rt->rt6i_dst.addr = *daddr; 122583a09abdSMartin KaFai Lau rt->rt6i_dst.plen = 128; 12268b9df265SMartin KaFai Lau 122785bd05deSDavid Ahern if (!rt6_is_gw_or_nonexthop(res)) { 122885bd05deSDavid Ahern if (f6i->fib6_dst.plen != 128 && 122985bd05deSDavid Ahern ipv6_addr_equal(&f6i->fib6_dst.addr, daddr)) 123058c4fb86SYOSHIFUJI Hideaki rt->rt6i_flags |= RTF_ANYCAST; 12311da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 12321da177e4SLinus Torvalds if (rt->rt6i_src.plen && saddr) { 12334e3fd7a0SAlexey Dobriyan rt->rt6i_src.addr = *saddr; 12341da177e4SLinus Torvalds rt->rt6i_src.plen = 128; 12351da177e4SLinus Torvalds } 12361da177e4SLinus Torvalds #endif 123795a9a5baSYOSHIFUJI Hideaki } 123895a9a5baSYOSHIFUJI Hideaki 1239299d9939SYOSHIFUJI Hideaki return rt; 1240299d9939SYOSHIFUJI Hideaki } 1241299d9939SYOSHIFUJI Hideaki 1242db3fedeeSDavid Ahern static struct rt6_info *ip6_rt_pcpu_alloc(const struct fib6_result *res) 1243d52d3997SMartin KaFai Lau { 1244db3fedeeSDavid Ahern struct fib6_info *f6i = res->f6i; 1245db3fedeeSDavid Ahern unsigned short flags = fib6_info_dst_flags(f6i); 12464832c30dSDavid Ahern struct net_device *dev; 1247d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1248d52d3997SMartin KaFai Lau 1249db3fedeeSDavid Ahern if (!fib6_info_hold_safe(f6i)) 1250e873e4b9SWei Wang return NULL; 1251e873e4b9SWei Wang 12524832c30dSDavid Ahern rcu_read_lock(); 12530d161581SDavid Ahern dev = ip6_rt_get_dev_rcu(res); 125493531c67SDavid Ahern pcpu_rt = ip6_dst_alloc(dev_net(dev), dev, flags); 12554832c30dSDavid Ahern rcu_read_unlock(); 1256e873e4b9SWei Wang if (!pcpu_rt) { 1257db3fedeeSDavid Ahern fib6_info_release(f6i); 1258d52d3997SMartin KaFai Lau return NULL; 1259e873e4b9SWei Wang } 12600d161581SDavid Ahern ip6_rt_copy_init(pcpu_rt, res); 1261d52d3997SMartin KaFai Lau pcpu_rt->rt6i_flags |= RTF_PCPU; 1262d52d3997SMartin KaFai Lau return pcpu_rt; 1263d52d3997SMartin KaFai Lau } 1264d52d3997SMartin KaFai Lau 126566f5d6ceSWei Wang /* It should be called with rcu_read_lock() acquired */ 1266db3fedeeSDavid Ahern static struct rt6_info *rt6_get_pcpu_route(const struct fib6_result *res) 1267d52d3997SMartin KaFai Lau { 1268a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, **p; 1269d52d3997SMartin KaFai Lau 1270db3fedeeSDavid Ahern p = this_cpu_ptr(res->f6i->rt6i_pcpu); 1271d52d3997SMartin KaFai Lau pcpu_rt = *p; 1272d52d3997SMartin KaFai Lau 1273d4ead6b3SDavid Ahern if (pcpu_rt) 127410585b43SDavid Ahern ip6_hold_safe(NULL, &pcpu_rt); 1275d3843fe5SWei Wang 1276a73e4195SMartin KaFai Lau return pcpu_rt; 1277a73e4195SMartin KaFai Lau } 1278a73e4195SMartin KaFai Lau 1279afb1d4b5SDavid Ahern static struct rt6_info *rt6_make_pcpu_route(struct net *net, 1280db3fedeeSDavid Ahern const struct fib6_result *res) 1281a73e4195SMartin KaFai Lau { 1282a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, *prev, **p; 1283d52d3997SMartin KaFai Lau 1284db3fedeeSDavid Ahern pcpu_rt = ip6_rt_pcpu_alloc(res); 1285d52d3997SMartin KaFai Lau if (!pcpu_rt) { 12869c7370a1SMartin KaFai Lau dst_hold(&net->ipv6.ip6_null_entry->dst); 12879c7370a1SMartin KaFai Lau return net->ipv6.ip6_null_entry; 1288d52d3997SMartin KaFai Lau } 1289d52d3997SMartin KaFai Lau 1290a94b9367SWei Wang dst_hold(&pcpu_rt->dst); 1291db3fedeeSDavid Ahern p = this_cpu_ptr(res->f6i->rt6i_pcpu); 1292d52d3997SMartin KaFai Lau prev = cmpxchg(p, NULL, pcpu_rt); 1293951f788aSEric Dumazet BUG_ON(prev); 1294a94b9367SWei Wang 129561fb0d01SEric Dumazet if (res->f6i->fib6_destroying) { 129661fb0d01SEric Dumazet struct fib6_info *from; 129761fb0d01SEric Dumazet 129861fb0d01SEric Dumazet from = xchg((__force struct fib6_info **)&pcpu_rt->from, NULL); 129961fb0d01SEric Dumazet fib6_info_release(from); 130061fb0d01SEric Dumazet } 130161fb0d01SEric Dumazet 1302d52d3997SMartin KaFai Lau return pcpu_rt; 1303d52d3997SMartin KaFai Lau } 1304d52d3997SMartin KaFai Lau 130535732d01SWei Wang /* exception hash table implementation 130635732d01SWei Wang */ 130735732d01SWei Wang static DEFINE_SPINLOCK(rt6_exception_lock); 130835732d01SWei Wang 130935732d01SWei Wang /* Remove rt6_ex from hash table and free the memory 131035732d01SWei Wang * Caller must hold rt6_exception_lock 131135732d01SWei Wang */ 131235732d01SWei Wang static void rt6_remove_exception(struct rt6_exception_bucket *bucket, 131335732d01SWei Wang struct rt6_exception *rt6_ex) 131435732d01SWei Wang { 1315f5b51fe8SPaolo Abeni struct fib6_info *from; 1316b2427e67SColin Ian King struct net *net; 131781eb8447SWei Wang 131835732d01SWei Wang if (!bucket || !rt6_ex) 131935732d01SWei Wang return; 1320b2427e67SColin Ian King 1321b2427e67SColin Ian King net = dev_net(rt6_ex->rt6i->dst.dev); 1322f5b51fe8SPaolo Abeni net->ipv6.rt6_stats->fib_rt_cache--; 1323f5b51fe8SPaolo Abeni 1324f5b51fe8SPaolo Abeni /* purge completely the exception to allow releasing the held resources: 1325f5b51fe8SPaolo Abeni * some [sk] cache may keep the dst around for unlimited time 1326f5b51fe8SPaolo Abeni */ 13270e233874SEric Dumazet from = xchg((__force struct fib6_info **)&rt6_ex->rt6i->from, NULL); 1328f5b51fe8SPaolo Abeni fib6_info_release(from); 1329f5b51fe8SPaolo Abeni dst_dev_put(&rt6_ex->rt6i->dst); 1330f5b51fe8SPaolo Abeni 133135732d01SWei Wang hlist_del_rcu(&rt6_ex->hlist); 133277634cc6SDavid Ahern dst_release(&rt6_ex->rt6i->dst); 133335732d01SWei Wang kfree_rcu(rt6_ex, rcu); 133435732d01SWei Wang WARN_ON_ONCE(!bucket->depth); 133535732d01SWei Wang bucket->depth--; 133635732d01SWei Wang } 133735732d01SWei Wang 133835732d01SWei Wang /* Remove oldest rt6_ex in bucket and free the memory 133935732d01SWei Wang * Caller must hold rt6_exception_lock 134035732d01SWei Wang */ 134135732d01SWei Wang static void rt6_exception_remove_oldest(struct rt6_exception_bucket *bucket) 134235732d01SWei Wang { 134335732d01SWei Wang struct rt6_exception *rt6_ex, *oldest = NULL; 134435732d01SWei Wang 134535732d01SWei Wang if (!bucket) 134635732d01SWei Wang return; 134735732d01SWei Wang 134835732d01SWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 134935732d01SWei Wang if (!oldest || time_before(rt6_ex->stamp, oldest->stamp)) 135035732d01SWei Wang oldest = rt6_ex; 135135732d01SWei Wang } 135235732d01SWei Wang rt6_remove_exception(bucket, oldest); 135335732d01SWei Wang } 135435732d01SWei Wang 135535732d01SWei Wang static u32 rt6_exception_hash(const struct in6_addr *dst, 135635732d01SWei Wang const struct in6_addr *src) 135735732d01SWei Wang { 135835732d01SWei Wang static u32 seed __read_mostly; 135935732d01SWei Wang u32 val; 136035732d01SWei Wang 136135732d01SWei Wang net_get_random_once(&seed, sizeof(seed)); 136235732d01SWei Wang val = jhash(dst, sizeof(*dst), seed); 136335732d01SWei Wang 136435732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 136535732d01SWei Wang if (src) 136635732d01SWei Wang val = jhash(src, sizeof(*src), val); 136735732d01SWei Wang #endif 136835732d01SWei Wang return hash_32(val, FIB6_EXCEPTION_BUCKET_SIZE_SHIFT); 136935732d01SWei Wang } 137035732d01SWei Wang 137135732d01SWei Wang /* Helper function to find the cached rt in the hash table 137235732d01SWei Wang * and update bucket pointer to point to the bucket for this 137335732d01SWei Wang * (daddr, saddr) pair 137435732d01SWei Wang * Caller must hold rt6_exception_lock 137535732d01SWei Wang */ 137635732d01SWei Wang static struct rt6_exception * 137735732d01SWei Wang __rt6_find_exception_spinlock(struct rt6_exception_bucket **bucket, 137835732d01SWei Wang const struct in6_addr *daddr, 137935732d01SWei Wang const struct in6_addr *saddr) 138035732d01SWei Wang { 138135732d01SWei Wang struct rt6_exception *rt6_ex; 138235732d01SWei Wang u32 hval; 138335732d01SWei Wang 138435732d01SWei Wang if (!(*bucket) || !daddr) 138535732d01SWei Wang return NULL; 138635732d01SWei Wang 138735732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 138835732d01SWei Wang *bucket += hval; 138935732d01SWei Wang 139035732d01SWei Wang hlist_for_each_entry(rt6_ex, &(*bucket)->chain, hlist) { 139135732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 139235732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 139335732d01SWei Wang 139435732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 139535732d01SWei Wang if (matched && saddr) 139635732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 139735732d01SWei Wang #endif 139835732d01SWei Wang if (matched) 139935732d01SWei Wang return rt6_ex; 140035732d01SWei Wang } 140135732d01SWei Wang return NULL; 140235732d01SWei Wang } 140335732d01SWei Wang 140435732d01SWei Wang /* Helper function to find the cached rt in the hash table 140535732d01SWei Wang * and update bucket pointer to point to the bucket for this 140635732d01SWei Wang * (daddr, saddr) pair 140735732d01SWei Wang * Caller must hold rcu_read_lock() 140835732d01SWei Wang */ 140935732d01SWei Wang static struct rt6_exception * 141035732d01SWei Wang __rt6_find_exception_rcu(struct rt6_exception_bucket **bucket, 141135732d01SWei Wang const struct in6_addr *daddr, 141235732d01SWei Wang const struct in6_addr *saddr) 141335732d01SWei Wang { 141435732d01SWei Wang struct rt6_exception *rt6_ex; 141535732d01SWei Wang u32 hval; 141635732d01SWei Wang 141735732d01SWei Wang WARN_ON_ONCE(!rcu_read_lock_held()); 141835732d01SWei Wang 141935732d01SWei Wang if (!(*bucket) || !daddr) 142035732d01SWei Wang return NULL; 142135732d01SWei Wang 142235732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 142335732d01SWei Wang *bucket += hval; 142435732d01SWei Wang 142535732d01SWei Wang hlist_for_each_entry_rcu(rt6_ex, &(*bucket)->chain, hlist) { 142635732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 142735732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 142835732d01SWei Wang 142935732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 143035732d01SWei Wang if (matched && saddr) 143135732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 143235732d01SWei Wang #endif 143335732d01SWei Wang if (matched) 143435732d01SWei Wang return rt6_ex; 143535732d01SWei Wang } 143635732d01SWei Wang return NULL; 143735732d01SWei Wang } 143835732d01SWei Wang 1439b748f260SDavid Ahern static unsigned int fib6_mtu(const struct fib6_result *res) 144035732d01SWei Wang { 1441b748f260SDavid Ahern const struct fib6_nh *nh = res->nh; 1442d4ead6b3SDavid Ahern unsigned int mtu; 1443d4ead6b3SDavid Ahern 1444b748f260SDavid Ahern if (res->f6i->fib6_pmtu) { 1445b748f260SDavid Ahern mtu = res->f6i->fib6_pmtu; 1446dcd1f572SDavid Ahern } else { 1447b748f260SDavid Ahern struct net_device *dev = nh->fib_nh_dev; 1448dcd1f572SDavid Ahern struct inet6_dev *idev; 1449dcd1f572SDavid Ahern 1450dcd1f572SDavid Ahern rcu_read_lock(); 1451dcd1f572SDavid Ahern idev = __in6_dev_get(dev); 1452dcd1f572SDavid Ahern mtu = idev->cnf.mtu6; 1453dcd1f572SDavid Ahern rcu_read_unlock(); 1454dcd1f572SDavid Ahern } 1455dcd1f572SDavid Ahern 1456d4ead6b3SDavid Ahern mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 1457d4ead6b3SDavid Ahern 1458b748f260SDavid Ahern return mtu - lwtunnel_headroom(nh->fib_nh_lws, mtu); 1459d4ead6b3SDavid Ahern } 1460d4ead6b3SDavid Ahern 146135732d01SWei Wang static int rt6_insert_exception(struct rt6_info *nrt, 14625012f0a5SDavid Ahern const struct fib6_result *res) 146335732d01SWei Wang { 14645e670d84SDavid Ahern struct net *net = dev_net(nrt->dst.dev); 146535732d01SWei Wang struct rt6_exception_bucket *bucket; 146635732d01SWei Wang struct in6_addr *src_key = NULL; 146735732d01SWei Wang struct rt6_exception *rt6_ex; 14685012f0a5SDavid Ahern struct fib6_info *f6i = res->f6i; 146935732d01SWei Wang int err = 0; 147035732d01SWei Wang 147135732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 147235732d01SWei Wang 14735012f0a5SDavid Ahern if (f6i->exception_bucket_flushed) { 147435732d01SWei Wang err = -EINVAL; 147535732d01SWei Wang goto out; 147635732d01SWei Wang } 147735732d01SWei Wang 14785012f0a5SDavid Ahern bucket = rcu_dereference_protected(f6i->rt6i_exception_bucket, 147935732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 148035732d01SWei Wang if (!bucket) { 148135732d01SWei Wang bucket = kcalloc(FIB6_EXCEPTION_BUCKET_SIZE, sizeof(*bucket), 148235732d01SWei Wang GFP_ATOMIC); 148335732d01SWei Wang if (!bucket) { 148435732d01SWei Wang err = -ENOMEM; 148535732d01SWei Wang goto out; 148635732d01SWei Wang } 14875012f0a5SDavid Ahern rcu_assign_pointer(f6i->rt6i_exception_bucket, bucket); 148835732d01SWei Wang } 148935732d01SWei Wang 149035732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 14915012f0a5SDavid Ahern /* fib6_src.plen != 0 indicates f6i is in subtree 149235732d01SWei Wang * and exception table is indexed by a hash of 14935012f0a5SDavid Ahern * both fib6_dst and fib6_src. 149435732d01SWei Wang * Otherwise, the exception table is indexed by 14955012f0a5SDavid Ahern * a hash of only fib6_dst. 149635732d01SWei Wang */ 14975012f0a5SDavid Ahern if (f6i->fib6_src.plen) 149835732d01SWei Wang src_key = &nrt->rt6i_src.addr; 149935732d01SWei Wang #endif 15005012f0a5SDavid Ahern /* rt6_mtu_change() might lower mtu on f6i. 1501f5bbe7eeSWei Wang * Only insert this exception route if its mtu 15025012f0a5SDavid Ahern * is less than f6i's mtu value. 1503f5bbe7eeSWei Wang */ 1504b748f260SDavid Ahern if (dst_metric_raw(&nrt->dst, RTAX_MTU) >= fib6_mtu(res)) { 1505f5bbe7eeSWei Wang err = -EINVAL; 1506f5bbe7eeSWei Wang goto out; 1507f5bbe7eeSWei Wang } 150860006a48SWei Wang 150935732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, &nrt->rt6i_dst.addr, 151035732d01SWei Wang src_key); 151135732d01SWei Wang if (rt6_ex) 151235732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 151335732d01SWei Wang 151435732d01SWei Wang rt6_ex = kzalloc(sizeof(*rt6_ex), GFP_ATOMIC); 151535732d01SWei Wang if (!rt6_ex) { 151635732d01SWei Wang err = -ENOMEM; 151735732d01SWei Wang goto out; 151835732d01SWei Wang } 151935732d01SWei Wang rt6_ex->rt6i = nrt; 152035732d01SWei Wang rt6_ex->stamp = jiffies; 152135732d01SWei Wang hlist_add_head_rcu(&rt6_ex->hlist, &bucket->chain); 152235732d01SWei Wang bucket->depth++; 152381eb8447SWei Wang net->ipv6.rt6_stats->fib_rt_cache++; 152435732d01SWei Wang 152535732d01SWei Wang if (bucket->depth > FIB6_MAX_DEPTH) 152635732d01SWei Wang rt6_exception_remove_oldest(bucket); 152735732d01SWei Wang 152835732d01SWei Wang out: 152935732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 153035732d01SWei Wang 153135732d01SWei Wang /* Update fn->fn_sernum to invalidate all cached dst */ 1532b886d5f2SPaolo Abeni if (!err) { 15335012f0a5SDavid Ahern spin_lock_bh(&f6i->fib6_table->tb6_lock); 15345012f0a5SDavid Ahern fib6_update_sernum(net, f6i); 15355012f0a5SDavid Ahern spin_unlock_bh(&f6i->fib6_table->tb6_lock); 1536b886d5f2SPaolo Abeni fib6_force_start_gc(net); 1537b886d5f2SPaolo Abeni } 153835732d01SWei Wang 153935732d01SWei Wang return err; 154035732d01SWei Wang } 154135732d01SWei Wang 15428d1c802bSDavid Ahern void rt6_flush_exceptions(struct fib6_info *rt) 154335732d01SWei Wang { 154435732d01SWei Wang struct rt6_exception_bucket *bucket; 154535732d01SWei Wang struct rt6_exception *rt6_ex; 154635732d01SWei Wang struct hlist_node *tmp; 154735732d01SWei Wang int i; 154835732d01SWei Wang 154935732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 155035732d01SWei Wang /* Prevent rt6_insert_exception() to recreate the bucket list */ 155135732d01SWei Wang rt->exception_bucket_flushed = 1; 155235732d01SWei Wang 155335732d01SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 155435732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 155535732d01SWei Wang if (!bucket) 155635732d01SWei Wang goto out; 155735732d01SWei Wang 155835732d01SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 155935732d01SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, &bucket->chain, hlist) 156035732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 156135732d01SWei Wang WARN_ON_ONCE(bucket->depth); 156235732d01SWei Wang bucket++; 156335732d01SWei Wang } 156435732d01SWei Wang 156535732d01SWei Wang out: 156635732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 156735732d01SWei Wang } 156835732d01SWei Wang 156935732d01SWei Wang /* Find cached rt in the hash table inside passed in rt 157035732d01SWei Wang * Caller has to hold rcu_read_lock() 157135732d01SWei Wang */ 15727e4b5128SDavid Ahern static struct rt6_info *rt6_find_cached_rt(const struct fib6_result *res, 1573510e2cedSWei Wang const struct in6_addr *daddr, 1574510e2cedSWei Wang const struct in6_addr *saddr) 157535732d01SWei Wang { 1576510e2cedSWei Wang const struct in6_addr *src_key = NULL; 157735732d01SWei Wang struct rt6_exception_bucket *bucket; 157835732d01SWei Wang struct rt6_exception *rt6_ex; 15797e4b5128SDavid Ahern struct rt6_info *ret = NULL; 158035732d01SWei Wang 158135732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 15827e4b5128SDavid Ahern /* fib6i_src.plen != 0 indicates f6i is in subtree 158335732d01SWei Wang * and exception table is indexed by a hash of 15847e4b5128SDavid Ahern * both fib6_dst and fib6_src. 1585510e2cedSWei Wang * However, the src addr used to create the hash 1586510e2cedSWei Wang * might not be exactly the passed in saddr which 1587510e2cedSWei Wang * is a /128 addr from the flow. 1588510e2cedSWei Wang * So we need to use f6i->fib6_src to redo lookup 1589510e2cedSWei Wang * if the passed in saddr does not find anything. 1590510e2cedSWei Wang * (See the logic in ip6_rt_cache_alloc() on how 1591510e2cedSWei Wang * rt->rt6i_src is updated.) 159235732d01SWei Wang */ 15937e4b5128SDavid Ahern if (res->f6i->fib6_src.plen) 159435732d01SWei Wang src_key = saddr; 1595510e2cedSWei Wang find_ex: 159635732d01SWei Wang #endif 1597510e2cedSWei Wang bucket = rcu_dereference(res->f6i->rt6i_exception_bucket); 159835732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, daddr, src_key); 159935732d01SWei Wang 160035732d01SWei Wang if (rt6_ex && !rt6_check_expired(rt6_ex->rt6i)) 16017e4b5128SDavid Ahern ret = rt6_ex->rt6i; 160235732d01SWei Wang 1603510e2cedSWei Wang #ifdef CONFIG_IPV6_SUBTREES 1604510e2cedSWei Wang /* Use fib6_src as src_key and redo lookup */ 1605510e2cedSWei Wang if (!ret && src_key && src_key != &res->f6i->fib6_src.addr) { 1606510e2cedSWei Wang src_key = &res->f6i->fib6_src.addr; 1607510e2cedSWei Wang goto find_ex; 1608510e2cedSWei Wang } 1609510e2cedSWei Wang #endif 1610510e2cedSWei Wang 16117e4b5128SDavid Ahern return ret; 161235732d01SWei Wang } 161335732d01SWei Wang 161435732d01SWei Wang /* Remove the passed in cached rt from the hash table that contains it */ 161523fb93a4SDavid Ahern static int rt6_remove_exception_rt(struct rt6_info *rt) 161635732d01SWei Wang { 161735732d01SWei Wang struct rt6_exception_bucket *bucket; 161835732d01SWei Wang struct in6_addr *src_key = NULL; 161935732d01SWei Wang struct rt6_exception *rt6_ex; 16208a14e46fSDavid Ahern struct fib6_info *from; 162135732d01SWei Wang int err; 162235732d01SWei Wang 1623091311deSEric Dumazet from = rcu_dereference(rt->from); 162435732d01SWei Wang if (!from || 1625442d713bSColin Ian King !(rt->rt6i_flags & RTF_CACHE)) 162635732d01SWei Wang return -EINVAL; 162735732d01SWei Wang 162835732d01SWei Wang if (!rcu_access_pointer(from->rt6i_exception_bucket)) 162935732d01SWei Wang return -ENOENT; 163035732d01SWei Wang 163135732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 163235732d01SWei Wang bucket = rcu_dereference_protected(from->rt6i_exception_bucket, 163335732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 163435732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 163535732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 163635732d01SWei Wang * and exception table is indexed by a hash of 163735732d01SWei Wang * both rt6i_dst and rt6i_src. 163835732d01SWei Wang * Otherwise, the exception table is indexed by 163935732d01SWei Wang * a hash of only rt6i_dst. 164035732d01SWei Wang */ 164193c2fb25SDavid Ahern if (from->fib6_src.plen) 164235732d01SWei Wang src_key = &rt->rt6i_src.addr; 164335732d01SWei Wang #endif 164435732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, 164535732d01SWei Wang &rt->rt6i_dst.addr, 164635732d01SWei Wang src_key); 164735732d01SWei Wang if (rt6_ex) { 164835732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 164935732d01SWei Wang err = 0; 165035732d01SWei Wang } else { 165135732d01SWei Wang err = -ENOENT; 165235732d01SWei Wang } 165335732d01SWei Wang 165435732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 165535732d01SWei Wang return err; 165635732d01SWei Wang } 165735732d01SWei Wang 165835732d01SWei Wang /* Find rt6_ex which contains the passed in rt cache and 165935732d01SWei Wang * refresh its stamp 166035732d01SWei Wang */ 166135732d01SWei Wang static void rt6_update_exception_stamp_rt(struct rt6_info *rt) 166235732d01SWei Wang { 166335732d01SWei Wang struct rt6_exception_bucket *bucket; 166435732d01SWei Wang struct in6_addr *src_key = NULL; 166535732d01SWei Wang struct rt6_exception *rt6_ex; 1666193f3685SPaolo Abeni struct fib6_info *from; 166735732d01SWei Wang 166835732d01SWei Wang rcu_read_lock(); 1669193f3685SPaolo Abeni from = rcu_dereference(rt->from); 1670193f3685SPaolo Abeni if (!from || !(rt->rt6i_flags & RTF_CACHE)) 1671193f3685SPaolo Abeni goto unlock; 1672193f3685SPaolo Abeni 167335732d01SWei Wang bucket = rcu_dereference(from->rt6i_exception_bucket); 167435732d01SWei Wang 167535732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 167635732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 167735732d01SWei Wang * and exception table is indexed by a hash of 167835732d01SWei Wang * both rt6i_dst and rt6i_src. 167935732d01SWei Wang * Otherwise, the exception table is indexed by 168035732d01SWei Wang * a hash of only rt6i_dst. 168135732d01SWei Wang */ 168293c2fb25SDavid Ahern if (from->fib6_src.plen) 168335732d01SWei Wang src_key = &rt->rt6i_src.addr; 168435732d01SWei Wang #endif 168535732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, 168635732d01SWei Wang &rt->rt6i_dst.addr, 168735732d01SWei Wang src_key); 168835732d01SWei Wang if (rt6_ex) 168935732d01SWei Wang rt6_ex->stamp = jiffies; 169035732d01SWei Wang 1691193f3685SPaolo Abeni unlock: 169235732d01SWei Wang rcu_read_unlock(); 169335732d01SWei Wang } 169435732d01SWei Wang 1695e9fa1495SStefano Brivio static bool rt6_mtu_change_route_allowed(struct inet6_dev *idev, 1696e9fa1495SStefano Brivio struct rt6_info *rt, int mtu) 1697e9fa1495SStefano Brivio { 1698e9fa1495SStefano Brivio /* If the new MTU is lower than the route PMTU, this new MTU will be the 1699e9fa1495SStefano Brivio * lowest MTU in the path: always allow updating the route PMTU to 1700e9fa1495SStefano Brivio * reflect PMTU decreases. 1701e9fa1495SStefano Brivio * 1702e9fa1495SStefano Brivio * If the new MTU is higher, and the route PMTU is equal to the local 1703e9fa1495SStefano Brivio * MTU, this means the old MTU is the lowest in the path, so allow 1704e9fa1495SStefano Brivio * updating it: if other nodes now have lower MTUs, PMTU discovery will 1705e9fa1495SStefano Brivio * handle this. 1706e9fa1495SStefano Brivio */ 1707e9fa1495SStefano Brivio 1708e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) >= mtu) 1709e9fa1495SStefano Brivio return true; 1710e9fa1495SStefano Brivio 1711e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) == idev->cnf.mtu6) 1712e9fa1495SStefano Brivio return true; 1713e9fa1495SStefano Brivio 1714e9fa1495SStefano Brivio return false; 1715e9fa1495SStefano Brivio } 1716e9fa1495SStefano Brivio 1717e9fa1495SStefano Brivio static void rt6_exceptions_update_pmtu(struct inet6_dev *idev, 17188d1c802bSDavid Ahern struct fib6_info *rt, int mtu) 1719f5bbe7eeSWei Wang { 1720f5bbe7eeSWei Wang struct rt6_exception_bucket *bucket; 1721f5bbe7eeSWei Wang struct rt6_exception *rt6_ex; 1722f5bbe7eeSWei Wang int i; 1723f5bbe7eeSWei Wang 1724f5bbe7eeSWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1725f5bbe7eeSWei Wang lockdep_is_held(&rt6_exception_lock)); 1726f5bbe7eeSWei Wang 1727e9fa1495SStefano Brivio if (!bucket) 1728e9fa1495SStefano Brivio return; 1729e9fa1495SStefano Brivio 1730f5bbe7eeSWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1731f5bbe7eeSWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 1732f5bbe7eeSWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1733e9fa1495SStefano Brivio 1734e9fa1495SStefano Brivio /* For RTF_CACHE with rt6i_pmtu == 0 (i.e. a redirected 1735d4ead6b3SDavid Ahern * route), the metrics of its rt->from have already 1736f5bbe7eeSWei Wang * been updated. 1737f5bbe7eeSWei Wang */ 1738d4ead6b3SDavid Ahern if (dst_metric_raw(&entry->dst, RTAX_MTU) && 1739e9fa1495SStefano Brivio rt6_mtu_change_route_allowed(idev, entry, mtu)) 1740d4ead6b3SDavid Ahern dst_metric_set(&entry->dst, RTAX_MTU, mtu); 1741f5bbe7eeSWei Wang } 1742f5bbe7eeSWei Wang bucket++; 1743f5bbe7eeSWei Wang } 1744f5bbe7eeSWei Wang } 1745f5bbe7eeSWei Wang 1746b16cb459SWei Wang #define RTF_CACHE_GATEWAY (RTF_GATEWAY | RTF_CACHE) 1747b16cb459SWei Wang 17488d1c802bSDavid Ahern static void rt6_exceptions_clean_tohost(struct fib6_info *rt, 1749b16cb459SWei Wang struct in6_addr *gateway) 1750b16cb459SWei Wang { 1751b16cb459SWei Wang struct rt6_exception_bucket *bucket; 1752b16cb459SWei Wang struct rt6_exception *rt6_ex; 1753b16cb459SWei Wang struct hlist_node *tmp; 1754b16cb459SWei Wang int i; 1755b16cb459SWei Wang 1756b16cb459SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1757b16cb459SWei Wang return; 1758b16cb459SWei Wang 1759b16cb459SWei Wang spin_lock_bh(&rt6_exception_lock); 1760b16cb459SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1761b16cb459SWei Wang lockdep_is_held(&rt6_exception_lock)); 1762b16cb459SWei Wang 1763b16cb459SWei Wang if (bucket) { 1764b16cb459SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1765b16cb459SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1766b16cb459SWei Wang &bucket->chain, hlist) { 1767b16cb459SWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1768b16cb459SWei Wang 1769b16cb459SWei Wang if ((entry->rt6i_flags & RTF_CACHE_GATEWAY) == 1770b16cb459SWei Wang RTF_CACHE_GATEWAY && 1771b16cb459SWei Wang ipv6_addr_equal(gateway, 1772b16cb459SWei Wang &entry->rt6i_gateway)) { 1773b16cb459SWei Wang rt6_remove_exception(bucket, rt6_ex); 1774b16cb459SWei Wang } 1775b16cb459SWei Wang } 1776b16cb459SWei Wang bucket++; 1777b16cb459SWei Wang } 1778b16cb459SWei Wang } 1779b16cb459SWei Wang 1780b16cb459SWei Wang spin_unlock_bh(&rt6_exception_lock); 1781b16cb459SWei Wang } 1782b16cb459SWei Wang 1783c757faa8SWei Wang static void rt6_age_examine_exception(struct rt6_exception_bucket *bucket, 1784c757faa8SWei Wang struct rt6_exception *rt6_ex, 1785c757faa8SWei Wang struct fib6_gc_args *gc_args, 1786c757faa8SWei Wang unsigned long now) 1787c757faa8SWei Wang { 1788c757faa8SWei Wang struct rt6_info *rt = rt6_ex->rt6i; 1789c757faa8SWei Wang 17901859bac0SPaolo Abeni /* we are pruning and obsoleting aged-out and non gateway exceptions 17911859bac0SPaolo Abeni * even if others have still references to them, so that on next 17921859bac0SPaolo Abeni * dst_check() such references can be dropped. 17931859bac0SPaolo Abeni * EXPIRES exceptions - e.g. pmtu-generated ones are pruned when 17941859bac0SPaolo Abeni * expired, independently from their aging, as per RFC 8201 section 4 17951859bac0SPaolo Abeni */ 179631afeb42SWei Wang if (!(rt->rt6i_flags & RTF_EXPIRES)) { 179731afeb42SWei Wang if (time_after_eq(now, rt->dst.lastuse + gc_args->timeout)) { 1798c757faa8SWei Wang RT6_TRACE("aging clone %p\n", rt); 1799c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1800c757faa8SWei Wang return; 180131afeb42SWei Wang } 180231afeb42SWei Wang } else if (time_after(jiffies, rt->dst.expires)) { 180331afeb42SWei Wang RT6_TRACE("purging expired route %p\n", rt); 180431afeb42SWei Wang rt6_remove_exception(bucket, rt6_ex); 180531afeb42SWei Wang return; 180631afeb42SWei Wang } 180731afeb42SWei Wang 180831afeb42SWei Wang if (rt->rt6i_flags & RTF_GATEWAY) { 1809c757faa8SWei Wang struct neighbour *neigh; 1810c757faa8SWei Wang __u8 neigh_flags = 0; 1811c757faa8SWei Wang 18121bfa26ffSEric Dumazet neigh = __ipv6_neigh_lookup_noref(rt->dst.dev, &rt->rt6i_gateway); 18131bfa26ffSEric Dumazet if (neigh) 1814c757faa8SWei Wang neigh_flags = neigh->flags; 18151bfa26ffSEric Dumazet 1816c757faa8SWei Wang if (!(neigh_flags & NTF_ROUTER)) { 1817c757faa8SWei Wang RT6_TRACE("purging route %p via non-router but gateway\n", 1818c757faa8SWei Wang rt); 1819c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1820c757faa8SWei Wang return; 1821c757faa8SWei Wang } 1822c757faa8SWei Wang } 182331afeb42SWei Wang 1824c757faa8SWei Wang gc_args->more++; 1825c757faa8SWei Wang } 1826c757faa8SWei Wang 18278d1c802bSDavid Ahern void rt6_age_exceptions(struct fib6_info *rt, 1828c757faa8SWei Wang struct fib6_gc_args *gc_args, 1829c757faa8SWei Wang unsigned long now) 1830c757faa8SWei Wang { 1831c757faa8SWei Wang struct rt6_exception_bucket *bucket; 1832c757faa8SWei Wang struct rt6_exception *rt6_ex; 1833c757faa8SWei Wang struct hlist_node *tmp; 1834c757faa8SWei Wang int i; 1835c757faa8SWei Wang 1836c757faa8SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1837c757faa8SWei Wang return; 1838c757faa8SWei Wang 18391bfa26ffSEric Dumazet rcu_read_lock_bh(); 18401bfa26ffSEric Dumazet spin_lock(&rt6_exception_lock); 1841c757faa8SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1842c757faa8SWei Wang lockdep_is_held(&rt6_exception_lock)); 1843c757faa8SWei Wang 1844c757faa8SWei Wang if (bucket) { 1845c757faa8SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1846c757faa8SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1847c757faa8SWei Wang &bucket->chain, hlist) { 1848c757faa8SWei Wang rt6_age_examine_exception(bucket, rt6_ex, 1849c757faa8SWei Wang gc_args, now); 1850c757faa8SWei Wang } 1851c757faa8SWei Wang bucket++; 1852c757faa8SWei Wang } 1853c757faa8SWei Wang } 18541bfa26ffSEric Dumazet spin_unlock(&rt6_exception_lock); 18551bfa26ffSEric Dumazet rcu_read_unlock_bh(); 1856c757faa8SWei Wang } 1857c757faa8SWei Wang 18581d053da9SDavid Ahern /* must be called with rcu lock held */ 1859effda4ddSDavid Ahern int fib6_table_lookup(struct net *net, struct fib6_table *table, int oif, 1860effda4ddSDavid Ahern struct flowi6 *fl6, struct fib6_result *res, int strict) 18611da177e4SLinus Torvalds { 1862367efcb9SMartin KaFai Lau struct fib6_node *fn, *saved_fn; 18631da177e4SLinus Torvalds 18646454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1865367efcb9SMartin KaFai Lau saved_fn = fn; 18661da177e4SLinus Torvalds 1867ca254490SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1868ca254490SDavid Ahern oif = 0; 1869ca254490SDavid Ahern 1870a3c00e46SMartin KaFai Lau redo_rt6_select: 1871effda4ddSDavid Ahern rt6_select(net, fn, oif, res, strict); 1872effda4ddSDavid Ahern if (res->f6i == net->ipv6.fib6_null_entry) { 1873a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1874a3c00e46SMartin KaFai Lau if (fn) 1875a3c00e46SMartin KaFai Lau goto redo_rt6_select; 1876367efcb9SMartin KaFai Lau else if (strict & RT6_LOOKUP_F_REACHABLE) { 1877367efcb9SMartin KaFai Lau /* also consider unreachable route */ 1878367efcb9SMartin KaFai Lau strict &= ~RT6_LOOKUP_F_REACHABLE; 1879367efcb9SMartin KaFai Lau fn = saved_fn; 1880367efcb9SMartin KaFai Lau goto redo_rt6_select; 1881367efcb9SMartin KaFai Lau } 1882a3c00e46SMartin KaFai Lau } 1883a3c00e46SMartin KaFai Lau 1884effda4ddSDavid Ahern trace_fib6_table_lookup(net, res, table, fl6); 1885d52d3997SMartin KaFai Lau 1886effda4ddSDavid Ahern return 0; 18871d053da9SDavid Ahern } 18881d053da9SDavid Ahern 18891d053da9SDavid Ahern struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, 18901d053da9SDavid Ahern int oif, struct flowi6 *fl6, 18911d053da9SDavid Ahern const struct sk_buff *skb, int flags) 18921d053da9SDavid Ahern { 1893b1d40991SDavid Ahern struct fib6_result res = {}; 18941d053da9SDavid Ahern struct rt6_info *rt; 18951d053da9SDavid Ahern int strict = 0; 18961d053da9SDavid Ahern 18971d053da9SDavid Ahern strict |= flags & RT6_LOOKUP_F_IFACE; 18981d053da9SDavid Ahern strict |= flags & RT6_LOOKUP_F_IGNORE_LINKSTATE; 18991d053da9SDavid Ahern if (net->ipv6.devconf_all->forwarding == 0) 19001d053da9SDavid Ahern strict |= RT6_LOOKUP_F_REACHABLE; 19011d053da9SDavid Ahern 19021d053da9SDavid Ahern rcu_read_lock(); 19031d053da9SDavid Ahern 1904effda4ddSDavid Ahern fib6_table_lookup(net, table, oif, fl6, &res, strict); 1905b1d40991SDavid Ahern if (res.f6i == net->ipv6.fib6_null_entry) { 1906421842edSDavid Ahern rt = net->ipv6.ip6_null_entry; 190766f5d6ceSWei Wang rcu_read_unlock(); 1908d3843fe5SWei Wang dst_hold(&rt->dst); 1909d3843fe5SWei Wang return rt; 1910d3843fe5SWei Wang } 191123fb93a4SDavid Ahern 1912b1d40991SDavid Ahern fib6_select_path(net, &res, fl6, oif, false, skb, strict); 1913d83009d4SDavid Ahern 191423fb93a4SDavid Ahern /*Search through exception table */ 19157e4b5128SDavid Ahern rt = rt6_find_cached_rt(&res, &fl6->daddr, &fl6->saddr); 191623fb93a4SDavid Ahern if (rt) { 191710585b43SDavid Ahern if (ip6_hold_safe(net, &rt)) 19181da177e4SLinus Torvalds dst_use_noref(&rt->dst, jiffies); 1919d4ead6b3SDavid Ahern 192066f5d6ceSWei Wang rcu_read_unlock(); 1921d52d3997SMartin KaFai Lau return rt; 19223da59bd9SMartin KaFai Lau } else if (unlikely((fl6->flowi6_flags & FLOWI_FLAG_KNOWN_NH) && 1923b1d40991SDavid Ahern !res.nh->fib_nh_gw_family)) { 19243da59bd9SMartin KaFai Lau /* Create a RTF_CACHE clone which will not be 19253da59bd9SMartin KaFai Lau * owned by the fib6 tree. It is for the special case where 19263da59bd9SMartin KaFai Lau * the daddr in the skb during the neighbor look-up is different 19273da59bd9SMartin KaFai Lau * from the fl6->daddr used to look-up route here. 19283da59bd9SMartin KaFai Lau */ 19293da59bd9SMartin KaFai Lau struct rt6_info *uncached_rt; 19303da59bd9SMartin KaFai Lau 193185bd05deSDavid Ahern uncached_rt = ip6_rt_cache_alloc(&res, &fl6->daddr, NULL); 1932d52d3997SMartin KaFai Lau 19334d85cd0cSDavid Ahern rcu_read_unlock(); 19343da59bd9SMartin KaFai Lau 19351cfb71eeSWei Wang if (uncached_rt) { 19361cfb71eeSWei Wang /* Uncached_rt's refcnt is taken during ip6_rt_cache_alloc() 19371cfb71eeSWei Wang * No need for another dst_hold() 19381cfb71eeSWei Wang */ 19398d0b94afSMartin KaFai Lau rt6_uncached_list_add(uncached_rt); 194081eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 19411cfb71eeSWei Wang } else { 19423da59bd9SMartin KaFai Lau uncached_rt = net->ipv6.ip6_null_entry; 19433da59bd9SMartin KaFai Lau dst_hold(&uncached_rt->dst); 19441cfb71eeSWei Wang } 1945b811580dSDavid Ahern 19463da59bd9SMartin KaFai Lau return uncached_rt; 1947d52d3997SMartin KaFai Lau } else { 1948d52d3997SMartin KaFai Lau /* Get a percpu copy */ 1949d52d3997SMartin KaFai Lau 1950d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1951d52d3997SMartin KaFai Lau 1952951f788aSEric Dumazet local_bh_disable(); 1953db3fedeeSDavid Ahern pcpu_rt = rt6_get_pcpu_route(&res); 1954d52d3997SMartin KaFai Lau 195593531c67SDavid Ahern if (!pcpu_rt) 1956db3fedeeSDavid Ahern pcpu_rt = rt6_make_pcpu_route(net, &res); 195793531c67SDavid Ahern 1958951f788aSEric Dumazet local_bh_enable(); 1959951f788aSEric Dumazet rcu_read_unlock(); 1960d4bea421SDavid Ahern 1961d52d3997SMartin KaFai Lau return pcpu_rt; 1962d52d3997SMartin KaFai Lau } 1963c71099acSThomas Graf } 19649ff74384SDavid Ahern EXPORT_SYMBOL_GPL(ip6_pol_route); 1965c71099acSThomas Graf 1966b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_input(struct net *net, 1967b75cc8f9SDavid Ahern struct fib6_table *table, 1968b75cc8f9SDavid Ahern struct flowi6 *fl6, 1969b75cc8f9SDavid Ahern const struct sk_buff *skb, 1970b75cc8f9SDavid Ahern int flags) 19714acad72dSPavel Emelyanov { 1972b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_iif, fl6, skb, flags); 19734acad72dSPavel Emelyanov } 19744acad72dSPavel Emelyanov 1975d409b847SMahesh Bandewar struct dst_entry *ip6_route_input_lookup(struct net *net, 197672331bc0SShmulik Ladkani struct net_device *dev, 1977b75cc8f9SDavid Ahern struct flowi6 *fl6, 1978b75cc8f9SDavid Ahern const struct sk_buff *skb, 1979b75cc8f9SDavid Ahern int flags) 198072331bc0SShmulik Ladkani { 198172331bc0SShmulik Ladkani if (rt6_need_strict(&fl6->daddr) && dev->type != ARPHRD_PIMREG) 198272331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_IFACE; 198372331bc0SShmulik Ladkani 1984b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_input); 198572331bc0SShmulik Ladkani } 1986d409b847SMahesh Bandewar EXPORT_SYMBOL_GPL(ip6_route_input_lookup); 198772331bc0SShmulik Ladkani 198823aebdacSJakub Sitnicki static void ip6_multipath_l3_keys(const struct sk_buff *skb, 19895e5d6fedSRoopa Prabhu struct flow_keys *keys, 19905e5d6fedSRoopa Prabhu struct flow_keys *flkeys) 199123aebdacSJakub Sitnicki { 199223aebdacSJakub Sitnicki const struct ipv6hdr *outer_iph = ipv6_hdr(skb); 199323aebdacSJakub Sitnicki const struct ipv6hdr *key_iph = outer_iph; 19945e5d6fedSRoopa Prabhu struct flow_keys *_flkeys = flkeys; 199523aebdacSJakub Sitnicki const struct ipv6hdr *inner_iph; 199623aebdacSJakub Sitnicki const struct icmp6hdr *icmph; 199723aebdacSJakub Sitnicki struct ipv6hdr _inner_iph; 1998cea67a2dSEric Dumazet struct icmp6hdr _icmph; 199923aebdacSJakub Sitnicki 200023aebdacSJakub Sitnicki if (likely(outer_iph->nexthdr != IPPROTO_ICMPV6)) 200123aebdacSJakub Sitnicki goto out; 200223aebdacSJakub Sitnicki 2003cea67a2dSEric Dumazet icmph = skb_header_pointer(skb, skb_transport_offset(skb), 2004cea67a2dSEric Dumazet sizeof(_icmph), &_icmph); 2005cea67a2dSEric Dumazet if (!icmph) 2006cea67a2dSEric Dumazet goto out; 2007cea67a2dSEric Dumazet 200823aebdacSJakub Sitnicki if (icmph->icmp6_type != ICMPV6_DEST_UNREACH && 200923aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PKT_TOOBIG && 201023aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_TIME_EXCEED && 201123aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PARAMPROB) 201223aebdacSJakub Sitnicki goto out; 201323aebdacSJakub Sitnicki 201423aebdacSJakub Sitnicki inner_iph = skb_header_pointer(skb, 201523aebdacSJakub Sitnicki skb_transport_offset(skb) + sizeof(*icmph), 201623aebdacSJakub Sitnicki sizeof(_inner_iph), &_inner_iph); 201723aebdacSJakub Sitnicki if (!inner_iph) 201823aebdacSJakub Sitnicki goto out; 201923aebdacSJakub Sitnicki 202023aebdacSJakub Sitnicki key_iph = inner_iph; 20215e5d6fedSRoopa Prabhu _flkeys = NULL; 202223aebdacSJakub Sitnicki out: 20235e5d6fedSRoopa Prabhu if (_flkeys) { 20245e5d6fedSRoopa Prabhu keys->addrs.v6addrs.src = _flkeys->addrs.v6addrs.src; 20255e5d6fedSRoopa Prabhu keys->addrs.v6addrs.dst = _flkeys->addrs.v6addrs.dst; 20265e5d6fedSRoopa Prabhu keys->tags.flow_label = _flkeys->tags.flow_label; 20275e5d6fedSRoopa Prabhu keys->basic.ip_proto = _flkeys->basic.ip_proto; 20285e5d6fedSRoopa Prabhu } else { 202923aebdacSJakub Sitnicki keys->addrs.v6addrs.src = key_iph->saddr; 203023aebdacSJakub Sitnicki keys->addrs.v6addrs.dst = key_iph->daddr; 2031fa1be7e0SMichal Kubecek keys->tags.flow_label = ip6_flowlabel(key_iph); 203223aebdacSJakub Sitnicki keys->basic.ip_proto = key_iph->nexthdr; 203323aebdacSJakub Sitnicki } 20345e5d6fedSRoopa Prabhu } 203523aebdacSJakub Sitnicki 203623aebdacSJakub Sitnicki /* if skb is set it will be used and fl6 can be NULL */ 2037b4bac172SDavid Ahern u32 rt6_multipath_hash(const struct net *net, const struct flowi6 *fl6, 2038b4bac172SDavid Ahern const struct sk_buff *skb, struct flow_keys *flkeys) 203923aebdacSJakub Sitnicki { 204023aebdacSJakub Sitnicki struct flow_keys hash_keys; 20419a2a537aSDavid Ahern u32 mhash; 204223aebdacSJakub Sitnicki 2043bbfa047aSDavid S. Miller switch (ip6_multipath_hash_policy(net)) { 2044b4bac172SDavid Ahern case 0: 20456f74b6c2SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 20466f74b6c2SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 20479a2a537aSDavid Ahern if (skb) { 20485e5d6fedSRoopa Prabhu ip6_multipath_l3_keys(skb, &hash_keys, flkeys); 20499a2a537aSDavid Ahern } else { 20509a2a537aSDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 20519a2a537aSDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 2052fa1be7e0SMichal Kubecek hash_keys.tags.flow_label = (__force u32)flowi6_get_flowlabel(fl6); 20539a2a537aSDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 205423aebdacSJakub Sitnicki } 2055b4bac172SDavid Ahern break; 2056b4bac172SDavid Ahern case 1: 2057b4bac172SDavid Ahern if (skb) { 2058b4bac172SDavid Ahern unsigned int flag = FLOW_DISSECTOR_F_STOP_AT_ENCAP; 2059b4bac172SDavid Ahern struct flow_keys keys; 2060b4bac172SDavid Ahern 2061b4bac172SDavid Ahern /* short-circuit if we already have L4 hash present */ 2062b4bac172SDavid Ahern if (skb->l4_hash) 2063b4bac172SDavid Ahern return skb_get_hash_raw(skb) >> 1; 2064b4bac172SDavid Ahern 2065b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 2066b4bac172SDavid Ahern 2067b4bac172SDavid Ahern if (!flkeys) { 2068b4bac172SDavid Ahern skb_flow_dissect_flow_keys(skb, &keys, flag); 2069b4bac172SDavid Ahern flkeys = &keys; 2070b4bac172SDavid Ahern } 2071b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 2072b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = flkeys->addrs.v6addrs.src; 2073b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = flkeys->addrs.v6addrs.dst; 2074b4bac172SDavid Ahern hash_keys.ports.src = flkeys->ports.src; 2075b4bac172SDavid Ahern hash_keys.ports.dst = flkeys->ports.dst; 2076b4bac172SDavid Ahern hash_keys.basic.ip_proto = flkeys->basic.ip_proto; 2077b4bac172SDavid Ahern } else { 2078b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 2079b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 2080b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 2081b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 2082b4bac172SDavid Ahern hash_keys.ports.src = fl6->fl6_sport; 2083b4bac172SDavid Ahern hash_keys.ports.dst = fl6->fl6_dport; 2084b4bac172SDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 2085b4bac172SDavid Ahern } 2086b4bac172SDavid Ahern break; 2087b4bac172SDavid Ahern } 20889a2a537aSDavid Ahern mhash = flow_hash_from_keys(&hash_keys); 208923aebdacSJakub Sitnicki 20909a2a537aSDavid Ahern return mhash >> 1; 209123aebdacSJakub Sitnicki } 209223aebdacSJakub Sitnicki 2093c71099acSThomas Graf void ip6_route_input(struct sk_buff *skb) 2094c71099acSThomas Graf { 2095b71d1d42SEric Dumazet const struct ipv6hdr *iph = ipv6_hdr(skb); 2096c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(skb->dev); 2097adaa70bbSThomas Graf int flags = RT6_LOOKUP_F_HAS_SADDR; 2098904af04dSJiri Benc struct ip_tunnel_info *tun_info; 20994c9483b2SDavid S. Miller struct flowi6 fl6 = { 2100e0d56fddSDavid Ahern .flowi6_iif = skb->dev->ifindex, 21014c9483b2SDavid S. Miller .daddr = iph->daddr, 21024c9483b2SDavid S. Miller .saddr = iph->saddr, 21036502ca52SYOSHIFUJI Hideaki / 吉藤英明 .flowlabel = ip6_flowinfo(iph), 21044c9483b2SDavid S. Miller .flowi6_mark = skb->mark, 21054c9483b2SDavid S. Miller .flowi6_proto = iph->nexthdr, 2106c71099acSThomas Graf }; 21075e5d6fedSRoopa Prabhu struct flow_keys *flkeys = NULL, _flkeys; 2108adaa70bbSThomas Graf 2109904af04dSJiri Benc tun_info = skb_tunnel_info(skb); 211046fa062aSJiri Benc if (tun_info && !(tun_info->mode & IP_TUNNEL_INFO_TX)) 2111904af04dSJiri Benc fl6.flowi6_tun_key.tun_id = tun_info->key.tun_id; 21125e5d6fedSRoopa Prabhu 21135e5d6fedSRoopa Prabhu if (fib6_rules_early_flow_dissect(net, skb, &fl6, &_flkeys)) 21145e5d6fedSRoopa Prabhu flkeys = &_flkeys; 21155e5d6fedSRoopa Prabhu 211623aebdacSJakub Sitnicki if (unlikely(fl6.flowi6_proto == IPPROTO_ICMPV6)) 2117b4bac172SDavid Ahern fl6.mp_hash = rt6_multipath_hash(net, &fl6, skb, flkeys); 211806e9d040SJiri Benc skb_dst_drop(skb); 2119b75cc8f9SDavid Ahern skb_dst_set(skb, 2120b75cc8f9SDavid Ahern ip6_route_input_lookup(net, skb->dev, &fl6, skb, flags)); 2121c71099acSThomas Graf } 2122c71099acSThomas Graf 2123b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_output(struct net *net, 2124b75cc8f9SDavid Ahern struct fib6_table *table, 2125b75cc8f9SDavid Ahern struct flowi6 *fl6, 2126b75cc8f9SDavid Ahern const struct sk_buff *skb, 2127b75cc8f9SDavid Ahern int flags) 2128c71099acSThomas Graf { 2129b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_oif, fl6, skb, flags); 2130c71099acSThomas Graf } 2131c71099acSThomas Graf 21326f21c96aSPaolo Abeni struct dst_entry *ip6_route_output_flags(struct net *net, const struct sock *sk, 21336f21c96aSPaolo Abeni struct flowi6 *fl6, int flags) 2134c71099acSThomas Graf { 2135d46a9d67SDavid Ahern bool any_src; 2136c71099acSThomas Graf 21373ede0bbcSRobert Shearman if (ipv6_addr_type(&fl6->daddr) & 21383ede0bbcSRobert Shearman (IPV6_ADDR_MULTICAST | IPV6_ADDR_LINKLOCAL)) { 21394c1feac5SDavid Ahern struct dst_entry *dst; 21404c1feac5SDavid Ahern 21414c1feac5SDavid Ahern dst = l3mdev_link_scope_lookup(net, fl6); 2142ca254490SDavid Ahern if (dst) 2143ca254490SDavid Ahern return dst; 21444c1feac5SDavid Ahern } 2145ca254490SDavid Ahern 21461fb9489bSPavel Emelyanov fl6->flowi6_iif = LOOPBACK_IFINDEX; 21474dc27d1cSDavid McCullough 2148d46a9d67SDavid Ahern any_src = ipv6_addr_any(&fl6->saddr); 2149741a11d9SDavid Ahern if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl6->daddr) || 2150d46a9d67SDavid Ahern (fl6->flowi6_oif && any_src)) 215177d16f45SYOSHIFUJI Hideaki flags |= RT6_LOOKUP_F_IFACE; 2152c71099acSThomas Graf 2153d46a9d67SDavid Ahern if (!any_src) 2154adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 21550c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 else if (sk) 21560c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs); 2157adaa70bbSThomas Graf 2158b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, NULL, flags, ip6_pol_route_output); 21591da177e4SLinus Torvalds } 21606f21c96aSPaolo Abeni EXPORT_SYMBOL_GPL(ip6_route_output_flags); 21611da177e4SLinus Torvalds 21622774c131SDavid S. Miller struct dst_entry *ip6_blackhole_route(struct net *net, struct dst_entry *dst_orig) 216314e50e57SDavid S. Miller { 21645c1e6aa3SDavid S. Miller struct rt6_info *rt, *ort = (struct rt6_info *) dst_orig; 21651dbe3252SWei Wang struct net_device *loopback_dev = net->loopback_dev; 216614e50e57SDavid S. Miller struct dst_entry *new = NULL; 216714e50e57SDavid S. Miller 21681dbe3252SWei Wang rt = dst_alloc(&ip6_dst_blackhole_ops, loopback_dev, 1, 216962cf27e5SSteffen Klassert DST_OBSOLETE_DEAD, 0); 217014e50e57SDavid S. Miller if (rt) { 21710a1f5962SMartin KaFai Lau rt6_info_init(rt); 217281eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 21730a1f5962SMartin KaFai Lau 2174d8d1f30bSChangli Gao new = &rt->dst; 217514e50e57SDavid S. Miller new->__use = 1; 2176352e512cSHerbert Xu new->input = dst_discard; 2177ede2059dSEric W. Biederman new->output = dst_discard_out; 217814e50e57SDavid S. Miller 2179defb3519SDavid S. Miller dst_copy_metrics(new, &ort->dst); 218014e50e57SDavid S. Miller 21811dbe3252SWei Wang rt->rt6i_idev = in6_dev_get(loopback_dev); 21824e3fd7a0SAlexey Dobriyan rt->rt6i_gateway = ort->rt6i_gateway; 21830a1f5962SMartin KaFai Lau rt->rt6i_flags = ort->rt6i_flags & ~RTF_PCPU; 218414e50e57SDavid S. Miller 218514e50e57SDavid S. Miller memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key)); 218614e50e57SDavid S. Miller #ifdef CONFIG_IPV6_SUBTREES 218714e50e57SDavid S. Miller memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key)); 218814e50e57SDavid S. Miller #endif 218914e50e57SDavid S. Miller } 219014e50e57SDavid S. Miller 219169ead7afSDavid S. Miller dst_release(dst_orig); 219269ead7afSDavid S. Miller return new ? new : ERR_PTR(-ENOMEM); 219314e50e57SDavid S. Miller } 219414e50e57SDavid S. Miller 21951da177e4SLinus Torvalds /* 21961da177e4SLinus Torvalds * Destination cache support functions 21971da177e4SLinus Torvalds */ 21981da177e4SLinus Torvalds 21998d1c802bSDavid Ahern static bool fib6_check(struct fib6_info *f6i, u32 cookie) 22003da59bd9SMartin KaFai Lau { 220136143645SSteffen Klassert u32 rt_cookie = 0; 2202c5cff856SWei Wang 22038ae86971SDavid Ahern if (!fib6_get_cookie_safe(f6i, &rt_cookie) || rt_cookie != cookie) 220493531c67SDavid Ahern return false; 220593531c67SDavid Ahern 220693531c67SDavid Ahern if (fib6_check_expired(f6i)) 220793531c67SDavid Ahern return false; 220893531c67SDavid Ahern 220993531c67SDavid Ahern return true; 221093531c67SDavid Ahern } 221193531c67SDavid Ahern 2212a68886a6SDavid Ahern static struct dst_entry *rt6_check(struct rt6_info *rt, 2213a68886a6SDavid Ahern struct fib6_info *from, 2214a68886a6SDavid Ahern u32 cookie) 22153da59bd9SMartin KaFai Lau { 2216c5cff856SWei Wang u32 rt_cookie = 0; 2217c5cff856SWei Wang 2218a68886a6SDavid Ahern if ((from && !fib6_get_cookie_safe(from, &rt_cookie)) || 221993531c67SDavid Ahern rt_cookie != cookie) 22203da59bd9SMartin KaFai Lau return NULL; 22213da59bd9SMartin KaFai Lau 22223da59bd9SMartin KaFai Lau if (rt6_check_expired(rt)) 22233da59bd9SMartin KaFai Lau return NULL; 22243da59bd9SMartin KaFai Lau 22253da59bd9SMartin KaFai Lau return &rt->dst; 22263da59bd9SMartin KaFai Lau } 22273da59bd9SMartin KaFai Lau 2228a68886a6SDavid Ahern static struct dst_entry *rt6_dst_from_check(struct rt6_info *rt, 2229a68886a6SDavid Ahern struct fib6_info *from, 2230a68886a6SDavid Ahern u32 cookie) 22313da59bd9SMartin KaFai Lau { 22325973fb1eSMartin KaFai Lau if (!__rt6_check_expired(rt) && 22335973fb1eSMartin KaFai Lau rt->dst.obsolete == DST_OBSOLETE_FORCE_CHK && 2234a68886a6SDavid Ahern fib6_check(from, cookie)) 22353da59bd9SMartin KaFai Lau return &rt->dst; 22363da59bd9SMartin KaFai Lau else 22373da59bd9SMartin KaFai Lau return NULL; 22383da59bd9SMartin KaFai Lau } 22393da59bd9SMartin KaFai Lau 22401da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie) 22411da177e4SLinus Torvalds { 2242a87b7dc9SDavid Ahern struct dst_entry *dst_ret; 2243a68886a6SDavid Ahern struct fib6_info *from; 22441da177e4SLinus Torvalds struct rt6_info *rt; 22451da177e4SLinus Torvalds 2246a87b7dc9SDavid Ahern rt = container_of(dst, struct rt6_info, dst); 2247a87b7dc9SDavid Ahern 2248a87b7dc9SDavid Ahern rcu_read_lock(); 22491da177e4SLinus Torvalds 22506f3118b5SNicolas Dichtel /* All IPV6 dsts are created with ->obsolete set to the value 22516f3118b5SNicolas Dichtel * DST_OBSOLETE_FORCE_CHK which forces validation calls down 22526f3118b5SNicolas Dichtel * into this function always. 22536f3118b5SNicolas Dichtel */ 2254e3bc10bdSHannes Frederic Sowa 2255a68886a6SDavid Ahern from = rcu_dereference(rt->from); 22564b32b5adSMartin KaFai Lau 2257a68886a6SDavid Ahern if (from && (rt->rt6i_flags & RTF_PCPU || 2258a68886a6SDavid Ahern unlikely(!list_empty(&rt->rt6i_uncached)))) 2259a68886a6SDavid Ahern dst_ret = rt6_dst_from_check(rt, from, cookie); 22603da59bd9SMartin KaFai Lau else 2261a68886a6SDavid Ahern dst_ret = rt6_check(rt, from, cookie); 2262a87b7dc9SDavid Ahern 2263a87b7dc9SDavid Ahern rcu_read_unlock(); 2264a87b7dc9SDavid Ahern 2265a87b7dc9SDavid Ahern return dst_ret; 22661da177e4SLinus Torvalds } 22671da177e4SLinus Torvalds 22681da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *dst) 22691da177e4SLinus Torvalds { 22701da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *) dst; 22711da177e4SLinus Torvalds 22721da177e4SLinus Torvalds if (rt) { 227354c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt->rt6i_flags & RTF_CACHE) { 2274c3c14da0SDavid Ahern rcu_read_lock(); 227554c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt6_check_expired(rt)) { 227693531c67SDavid Ahern rt6_remove_exception_rt(rt); 227754c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 22781da177e4SLinus Torvalds } 2279c3c14da0SDavid Ahern rcu_read_unlock(); 228054c1a859SYOSHIFUJI Hideaki / 吉藤英明 } else { 228154c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst_release(dst); 228254c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 228354c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 228454c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 228554c1a859SYOSHIFUJI Hideaki / 吉藤英明 return dst; 22861da177e4SLinus Torvalds } 22871da177e4SLinus Torvalds 22881da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb) 22891da177e4SLinus Torvalds { 22901da177e4SLinus Torvalds struct rt6_info *rt; 22911da177e4SLinus Torvalds 22923ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0); 22931da177e4SLinus Torvalds 2294adf30907SEric Dumazet rt = (struct rt6_info *) skb_dst(skb); 22951da177e4SLinus Torvalds if (rt) { 22968a14e46fSDavid Ahern rcu_read_lock(); 22971eb4f758SHannes Frederic Sowa if (rt->rt6i_flags & RTF_CACHE) { 229893531c67SDavid Ahern rt6_remove_exception_rt(rt); 2299c5cff856SWei Wang } else { 2300a68886a6SDavid Ahern struct fib6_info *from; 2301c5cff856SWei Wang struct fib6_node *fn; 2302c5cff856SWei Wang 2303a68886a6SDavid Ahern from = rcu_dereference(rt->from); 2304a68886a6SDavid Ahern if (from) { 2305a68886a6SDavid Ahern fn = rcu_dereference(from->fib6_node); 2306c5cff856SWei Wang if (fn && (rt->rt6i_flags & RTF_DEFAULT)) 2307c5cff856SWei Wang fn->fn_sernum = -1; 2308a68886a6SDavid Ahern } 23091da177e4SLinus Torvalds } 23101da177e4SLinus Torvalds rcu_read_unlock(); 23111da177e4SLinus Torvalds } 23121da177e4SLinus Torvalds } 23131da177e4SLinus Torvalds 23146a3e030fSDavid Ahern static void rt6_update_expires(struct rt6_info *rt0, int timeout) 23156a3e030fSDavid Ahern { 2316a68886a6SDavid Ahern if (!(rt0->rt6i_flags & RTF_EXPIRES)) { 2317a68886a6SDavid Ahern struct fib6_info *from; 2318a68886a6SDavid Ahern 2319a68886a6SDavid Ahern rcu_read_lock(); 2320a68886a6SDavid Ahern from = rcu_dereference(rt0->from); 2321a68886a6SDavid Ahern if (from) 2322a68886a6SDavid Ahern rt0->dst.expires = from->expires; 2323a68886a6SDavid Ahern rcu_read_unlock(); 2324a68886a6SDavid Ahern } 23256a3e030fSDavid Ahern 23266a3e030fSDavid Ahern dst_set_expires(&rt0->dst, timeout); 23276a3e030fSDavid Ahern rt0->rt6i_flags |= RTF_EXPIRES; 23286700c270SDavid S. Miller } 23291da177e4SLinus Torvalds 233045e4fd26SMartin KaFai Lau static void rt6_do_update_pmtu(struct rt6_info *rt, u32 mtu) 233145e4fd26SMartin KaFai Lau { 233245e4fd26SMartin KaFai Lau struct net *net = dev_net(rt->dst.dev); 233345e4fd26SMartin KaFai Lau 2334d4ead6b3SDavid Ahern dst_metric_set(&rt->dst, RTAX_MTU, mtu); 233545e4fd26SMartin KaFai Lau rt->rt6i_flags |= RTF_MODIFIED; 233645e4fd26SMartin KaFai Lau rt6_update_expires(rt, net->ipv6.sysctl.ip6_rt_mtu_expires); 233745e4fd26SMartin KaFai Lau } 233845e4fd26SMartin KaFai Lau 23390d3f6d29SMartin KaFai Lau static bool rt6_cache_allowed_for_pmtu(const struct rt6_info *rt) 23400d3f6d29SMartin KaFai Lau { 23410d3f6d29SMartin KaFai Lau return !(rt->rt6i_flags & RTF_CACHE) && 23421490ed2aSPaolo Abeni (rt->rt6i_flags & RTF_PCPU || rcu_access_pointer(rt->from)); 23430d3f6d29SMartin KaFai Lau } 23440d3f6d29SMartin KaFai Lau 234545e4fd26SMartin KaFai Lau static void __ip6_rt_update_pmtu(struct dst_entry *dst, const struct sock *sk, 234645e4fd26SMartin KaFai Lau const struct ipv6hdr *iph, u32 mtu) 23471da177e4SLinus Torvalds { 23480dec879fSJulian Anastasov const struct in6_addr *daddr, *saddr; 23491da177e4SLinus Torvalds struct rt6_info *rt6 = (struct rt6_info *)dst; 23501da177e4SLinus Torvalds 235119bda36cSXin Long if (dst_metric_locked(dst, RTAX_MTU)) 235219bda36cSXin Long return; 235319bda36cSXin Long 235445e4fd26SMartin KaFai Lau if (iph) { 235545e4fd26SMartin KaFai Lau daddr = &iph->daddr; 235645e4fd26SMartin KaFai Lau saddr = &iph->saddr; 235745e4fd26SMartin KaFai Lau } else if (sk) { 235845e4fd26SMartin KaFai Lau daddr = &sk->sk_v6_daddr; 235945e4fd26SMartin KaFai Lau saddr = &inet6_sk(sk)->saddr; 236045e4fd26SMartin KaFai Lau } else { 23610dec879fSJulian Anastasov daddr = NULL; 23620dec879fSJulian Anastasov saddr = NULL; 23631da177e4SLinus Torvalds } 23640dec879fSJulian Anastasov dst_confirm_neigh(dst, daddr); 23650dec879fSJulian Anastasov mtu = max_t(u32, mtu, IPV6_MIN_MTU); 23660dec879fSJulian Anastasov if (mtu >= dst_mtu(dst)) 23670dec879fSJulian Anastasov return; 23680dec879fSJulian Anastasov 23690dec879fSJulian Anastasov if (!rt6_cache_allowed_for_pmtu(rt6)) { 23700dec879fSJulian Anastasov rt6_do_update_pmtu(rt6, mtu); 23712b760fcfSWei Wang /* update rt6_ex->stamp for cache */ 23722b760fcfSWei Wang if (rt6->rt6i_flags & RTF_CACHE) 23732b760fcfSWei Wang rt6_update_exception_stamp_rt(rt6); 23740dec879fSJulian Anastasov } else if (daddr) { 237585bd05deSDavid Ahern struct fib6_result res = {}; 23760dec879fSJulian Anastasov struct rt6_info *nrt6; 23770dec879fSJulian Anastasov 23784d85cd0cSDavid Ahern rcu_read_lock(); 237985bd05deSDavid Ahern res.f6i = rcu_dereference(rt6->from); 238085bd05deSDavid Ahern if (!res.f6i) { 23819c69a132SJonathan Lemon rcu_read_unlock(); 23829c69a132SJonathan Lemon return; 23839c69a132SJonathan Lemon } 238485bd05deSDavid Ahern res.nh = &res.f6i->fib6_nh; 23857d21fec9SDavid Ahern res.fib6_flags = res.f6i->fib6_flags; 23867d21fec9SDavid Ahern res.fib6_type = res.f6i->fib6_type; 23877d21fec9SDavid Ahern 238885bd05deSDavid Ahern nrt6 = ip6_rt_cache_alloc(&res, daddr, saddr); 238945e4fd26SMartin KaFai Lau if (nrt6) { 239045e4fd26SMartin KaFai Lau rt6_do_update_pmtu(nrt6, mtu); 23915012f0a5SDavid Ahern if (rt6_insert_exception(nrt6, &res)) 23922b760fcfSWei Wang dst_release_immediate(&nrt6->dst); 239345e4fd26SMartin KaFai Lau } 2394a68886a6SDavid Ahern rcu_read_unlock(); 239545e4fd26SMartin KaFai Lau } 239645e4fd26SMartin KaFai Lau } 239745e4fd26SMartin KaFai Lau 239845e4fd26SMartin KaFai Lau static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 239945e4fd26SMartin KaFai Lau struct sk_buff *skb, u32 mtu) 240045e4fd26SMartin KaFai Lau { 240145e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, sk, skb ? ipv6_hdr(skb) : NULL, mtu); 24021da177e4SLinus Torvalds } 24031da177e4SLinus Torvalds 240442ae66c8SDavid S. Miller void ip6_update_pmtu(struct sk_buff *skb, struct net *net, __be32 mtu, 2405e2d118a1SLorenzo Colitti int oif, u32 mark, kuid_t uid) 240681aded24SDavid S. Miller { 240781aded24SDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 240881aded24SDavid S. Miller struct dst_entry *dst; 2409dc92095dSMaciej Żenczykowski struct flowi6 fl6 = { 2410dc92095dSMaciej Żenczykowski .flowi6_oif = oif, 2411dc92095dSMaciej Żenczykowski .flowi6_mark = mark ? mark : IP6_REPLY_MARK(net, skb->mark), 2412dc92095dSMaciej Żenczykowski .daddr = iph->daddr, 2413dc92095dSMaciej Żenczykowski .saddr = iph->saddr, 2414dc92095dSMaciej Żenczykowski .flowlabel = ip6_flowinfo(iph), 2415dc92095dSMaciej Żenczykowski .flowi6_uid = uid, 2416dc92095dSMaciej Żenczykowski }; 241781aded24SDavid S. Miller 241881aded24SDavid S. Miller dst = ip6_route_output(net, NULL, &fl6); 241981aded24SDavid S. Miller if (!dst->error) 242045e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, NULL, iph, ntohl(mtu)); 242181aded24SDavid S. Miller dst_release(dst); 242281aded24SDavid S. Miller } 242381aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_update_pmtu); 242481aded24SDavid S. Miller 242581aded24SDavid S. Miller void ip6_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, __be32 mtu) 242681aded24SDavid S. Miller { 24277ddacfa5SDavid Ahern int oif = sk->sk_bound_dev_if; 242833c162a9SMartin KaFai Lau struct dst_entry *dst; 242933c162a9SMartin KaFai Lau 24307ddacfa5SDavid Ahern if (!oif && skb->dev) 24317ddacfa5SDavid Ahern oif = l3mdev_master_ifindex(skb->dev); 24327ddacfa5SDavid Ahern 24337ddacfa5SDavid Ahern ip6_update_pmtu(skb, sock_net(sk), mtu, oif, sk->sk_mark, sk->sk_uid); 243433c162a9SMartin KaFai Lau 243533c162a9SMartin KaFai Lau dst = __sk_dst_get(sk); 243633c162a9SMartin KaFai Lau if (!dst || !dst->obsolete || 243733c162a9SMartin KaFai Lau dst->ops->check(dst, inet6_sk(sk)->dst_cookie)) 243833c162a9SMartin KaFai Lau return; 243933c162a9SMartin KaFai Lau 244033c162a9SMartin KaFai Lau bh_lock_sock(sk); 244133c162a9SMartin KaFai Lau if (!sock_owned_by_user(sk) && !ipv6_addr_v4mapped(&sk->sk_v6_daddr)) 244233c162a9SMartin KaFai Lau ip6_datagram_dst_update(sk, false); 244333c162a9SMartin KaFai Lau bh_unlock_sock(sk); 244481aded24SDavid S. Miller } 244581aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_update_pmtu); 244681aded24SDavid S. Miller 24477d6850f7SAlexey Kodanev void ip6_sk_dst_store_flow(struct sock *sk, struct dst_entry *dst, 24487d6850f7SAlexey Kodanev const struct flowi6 *fl6) 24497d6850f7SAlexey Kodanev { 24507d6850f7SAlexey Kodanev #ifdef CONFIG_IPV6_SUBTREES 24517d6850f7SAlexey Kodanev struct ipv6_pinfo *np = inet6_sk(sk); 24527d6850f7SAlexey Kodanev #endif 24537d6850f7SAlexey Kodanev 24547d6850f7SAlexey Kodanev ip6_dst_store(sk, dst, 24557d6850f7SAlexey Kodanev ipv6_addr_equal(&fl6->daddr, &sk->sk_v6_daddr) ? 24567d6850f7SAlexey Kodanev &sk->sk_v6_daddr : NULL, 24577d6850f7SAlexey Kodanev #ifdef CONFIG_IPV6_SUBTREES 24587d6850f7SAlexey Kodanev ipv6_addr_equal(&fl6->saddr, &np->saddr) ? 24597d6850f7SAlexey Kodanev &np->saddr : 24607d6850f7SAlexey Kodanev #endif 24617d6850f7SAlexey Kodanev NULL); 24627d6850f7SAlexey Kodanev } 24637d6850f7SAlexey Kodanev 24649b6b35abSDavid Ahern static bool ip6_redirect_nh_match(const struct fib6_result *res, 24650b34eb00SDavid Ahern struct flowi6 *fl6, 24660b34eb00SDavid Ahern const struct in6_addr *gw, 24670b34eb00SDavid Ahern struct rt6_info **ret) 24680b34eb00SDavid Ahern { 24699b6b35abSDavid Ahern const struct fib6_nh *nh = res->nh; 24709b6b35abSDavid Ahern 24710b34eb00SDavid Ahern if (nh->fib_nh_flags & RTNH_F_DEAD || !nh->fib_nh_gw_family || 24720b34eb00SDavid Ahern fl6->flowi6_oif != nh->fib_nh_dev->ifindex) 24730b34eb00SDavid Ahern return false; 24740b34eb00SDavid Ahern 24750b34eb00SDavid Ahern /* rt_cache's gateway might be different from its 'parent' 24760b34eb00SDavid Ahern * in the case of an ip redirect. 24770b34eb00SDavid Ahern * So we keep searching in the exception table if the gateway 24780b34eb00SDavid Ahern * is different. 24790b34eb00SDavid Ahern */ 24800b34eb00SDavid Ahern if (!ipv6_addr_equal(gw, &nh->fib_nh_gw6)) { 24810b34eb00SDavid Ahern struct rt6_info *rt_cache; 24820b34eb00SDavid Ahern 24839b6b35abSDavid Ahern rt_cache = rt6_find_cached_rt(res, &fl6->daddr, &fl6->saddr); 24840b34eb00SDavid Ahern if (rt_cache && 24850b34eb00SDavid Ahern ipv6_addr_equal(gw, &rt_cache->rt6i_gateway)) { 24860b34eb00SDavid Ahern *ret = rt_cache; 24870b34eb00SDavid Ahern return true; 24880b34eb00SDavid Ahern } 24890b34eb00SDavid Ahern return false; 24900b34eb00SDavid Ahern } 24910b34eb00SDavid Ahern return true; 24920b34eb00SDavid Ahern } 24930b34eb00SDavid Ahern 2494b55b76b2SDuan Jiong /* Handle redirects */ 2495b55b76b2SDuan Jiong struct ip6rd_flowi { 2496b55b76b2SDuan Jiong struct flowi6 fl6; 2497b55b76b2SDuan Jiong struct in6_addr gateway; 2498b55b76b2SDuan Jiong }; 2499b55b76b2SDuan Jiong 2500b55b76b2SDuan Jiong static struct rt6_info *__ip6_route_redirect(struct net *net, 2501b55b76b2SDuan Jiong struct fib6_table *table, 2502b55b76b2SDuan Jiong struct flowi6 *fl6, 2503b75cc8f9SDavid Ahern const struct sk_buff *skb, 2504b55b76b2SDuan Jiong int flags) 2505b55b76b2SDuan Jiong { 2506b55b76b2SDuan Jiong struct ip6rd_flowi *rdfl = (struct ip6rd_flowi *)fl6; 25070b34eb00SDavid Ahern struct rt6_info *ret = NULL; 25089b6b35abSDavid Ahern struct fib6_result res = {}; 25098d1c802bSDavid Ahern struct fib6_info *rt; 2510b55b76b2SDuan Jiong struct fib6_node *fn; 2511b55b76b2SDuan Jiong 251231680ac2SDavid Ahern /* l3mdev_update_flow overrides oif if the device is enslaved; in 251331680ac2SDavid Ahern * this case we must match on the real ingress device, so reset it 251431680ac2SDavid Ahern */ 251531680ac2SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 251631680ac2SDavid Ahern fl6->flowi6_oif = skb->dev->ifindex; 251731680ac2SDavid Ahern 2518b55b76b2SDuan Jiong /* Get the "current" route for this destination and 251967c408cfSAlexander Alemayhu * check if the redirect has come from appropriate router. 2520b55b76b2SDuan Jiong * 2521b55b76b2SDuan Jiong * RFC 4861 specifies that redirects should only be 2522b55b76b2SDuan Jiong * accepted if they come from the nexthop to the target. 2523b55b76b2SDuan Jiong * Due to the way the routes are chosen, this notion 2524b55b76b2SDuan Jiong * is a bit fuzzy and one might need to check all possible 2525b55b76b2SDuan Jiong * routes. 2526b55b76b2SDuan Jiong */ 2527b55b76b2SDuan Jiong 252866f5d6ceSWei Wang rcu_read_lock(); 25296454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 2530b55b76b2SDuan Jiong restart: 253166f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 25329b6b35abSDavid Ahern res.f6i = rt; 25339b6b35abSDavid Ahern res.nh = &rt->fib6_nh; 25349b6b35abSDavid Ahern 253514895687SDavid Ahern if (fib6_check_expired(rt)) 2536b55b76b2SDuan Jiong continue; 253793c2fb25SDavid Ahern if (rt->fib6_flags & RTF_REJECT) 2538b55b76b2SDuan Jiong break; 25399b6b35abSDavid Ahern if (ip6_redirect_nh_match(&res, fl6, &rdfl->gateway, &ret)) 25400b34eb00SDavid Ahern goto out; 2541b55b76b2SDuan Jiong } 2542b55b76b2SDuan Jiong 2543b55b76b2SDuan Jiong if (!rt) 2544421842edSDavid Ahern rt = net->ipv6.fib6_null_entry; 254593c2fb25SDavid Ahern else if (rt->fib6_flags & RTF_REJECT) { 254623fb93a4SDavid Ahern ret = net->ipv6.ip6_null_entry; 2547b0a1ba59SMartin KaFai Lau goto out; 2548b0a1ba59SMartin KaFai Lau } 2549b0a1ba59SMartin KaFai Lau 2550421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) { 2551a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 2552a3c00e46SMartin KaFai Lau if (fn) 2553a3c00e46SMartin KaFai Lau goto restart; 2554b55b76b2SDuan Jiong } 2555a3c00e46SMartin KaFai Lau 25569b6b35abSDavid Ahern res.f6i = rt; 25579b6b35abSDavid Ahern res.nh = &rt->fib6_nh; 2558b0a1ba59SMartin KaFai Lau out: 25597d21fec9SDavid Ahern if (ret) { 256010585b43SDavid Ahern ip6_hold_safe(net, &ret); 25617d21fec9SDavid Ahern } else { 25627d21fec9SDavid Ahern res.fib6_flags = res.f6i->fib6_flags; 25637d21fec9SDavid Ahern res.fib6_type = res.f6i->fib6_type; 25649b6b35abSDavid Ahern ret = ip6_create_rt_rcu(&res); 25657d21fec9SDavid Ahern } 2566b55b76b2SDuan Jiong 256766f5d6ceSWei Wang rcu_read_unlock(); 2568b55b76b2SDuan Jiong 25698ff2e5b2SDavid Ahern trace_fib6_table_lookup(net, &res, table, fl6); 257023fb93a4SDavid Ahern return ret; 2571b55b76b2SDuan Jiong }; 2572b55b76b2SDuan Jiong 2573b55b76b2SDuan Jiong static struct dst_entry *ip6_route_redirect(struct net *net, 2574b55b76b2SDuan Jiong const struct flowi6 *fl6, 2575b75cc8f9SDavid Ahern const struct sk_buff *skb, 2576b55b76b2SDuan Jiong const struct in6_addr *gateway) 2577b55b76b2SDuan Jiong { 2578b55b76b2SDuan Jiong int flags = RT6_LOOKUP_F_HAS_SADDR; 2579b55b76b2SDuan Jiong struct ip6rd_flowi rdfl; 2580b55b76b2SDuan Jiong 2581b55b76b2SDuan Jiong rdfl.fl6 = *fl6; 2582b55b76b2SDuan Jiong rdfl.gateway = *gateway; 2583b55b76b2SDuan Jiong 2584b75cc8f9SDavid Ahern return fib6_rule_lookup(net, &rdfl.fl6, skb, 2585b55b76b2SDuan Jiong flags, __ip6_route_redirect); 2586b55b76b2SDuan Jiong } 2587b55b76b2SDuan Jiong 2588e2d118a1SLorenzo Colitti void ip6_redirect(struct sk_buff *skb, struct net *net, int oif, u32 mark, 2589e2d118a1SLorenzo Colitti kuid_t uid) 25903a5ad2eeSDavid S. Miller { 25913a5ad2eeSDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 25923a5ad2eeSDavid S. Miller struct dst_entry *dst; 25931f7f10acSMaciej Żenczykowski struct flowi6 fl6 = { 25941f7f10acSMaciej Żenczykowski .flowi6_iif = LOOPBACK_IFINDEX, 25951f7f10acSMaciej Żenczykowski .flowi6_oif = oif, 25961f7f10acSMaciej Żenczykowski .flowi6_mark = mark, 25971f7f10acSMaciej Żenczykowski .daddr = iph->daddr, 25981f7f10acSMaciej Żenczykowski .saddr = iph->saddr, 25991f7f10acSMaciej Żenczykowski .flowlabel = ip6_flowinfo(iph), 26001f7f10acSMaciej Żenczykowski .flowi6_uid = uid, 26011f7f10acSMaciej Żenczykowski }; 26023a5ad2eeSDavid S. Miller 2603b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &ipv6_hdr(skb)->saddr); 26046700c270SDavid S. Miller rt6_do_redirect(dst, NULL, skb); 26053a5ad2eeSDavid S. Miller dst_release(dst); 26063a5ad2eeSDavid S. Miller } 26073a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_redirect); 26083a5ad2eeSDavid S. Miller 2609d456336dSMaciej Żenczykowski void ip6_redirect_no_header(struct sk_buff *skb, struct net *net, int oif) 2610c92a59ecSDuan Jiong { 2611c92a59ecSDuan Jiong const struct ipv6hdr *iph = ipv6_hdr(skb); 2612c92a59ecSDuan Jiong const struct rd_msg *msg = (struct rd_msg *)icmp6_hdr(skb); 2613c92a59ecSDuan Jiong struct dst_entry *dst; 26140b26fb17SMaciej Żenczykowski struct flowi6 fl6 = { 26150b26fb17SMaciej Żenczykowski .flowi6_iif = LOOPBACK_IFINDEX, 26160b26fb17SMaciej Żenczykowski .flowi6_oif = oif, 26170b26fb17SMaciej Żenczykowski .daddr = msg->dest, 26180b26fb17SMaciej Żenczykowski .saddr = iph->daddr, 26190b26fb17SMaciej Żenczykowski .flowi6_uid = sock_net_uid(net, NULL), 26200b26fb17SMaciej Żenczykowski }; 2621c92a59ecSDuan Jiong 2622b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &iph->saddr); 2623c92a59ecSDuan Jiong rt6_do_redirect(dst, NULL, skb); 2624c92a59ecSDuan Jiong dst_release(dst); 2625c92a59ecSDuan Jiong } 2626c92a59ecSDuan Jiong 26273a5ad2eeSDavid S. Miller void ip6_sk_redirect(struct sk_buff *skb, struct sock *sk) 26283a5ad2eeSDavid S. Miller { 2629e2d118a1SLorenzo Colitti ip6_redirect(skb, sock_net(sk), sk->sk_bound_dev_if, sk->sk_mark, 2630e2d118a1SLorenzo Colitti sk->sk_uid); 26313a5ad2eeSDavid S. Miller } 26323a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_redirect); 26333a5ad2eeSDavid S. Miller 26340dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst) 26351da177e4SLinus Torvalds { 26360dbaee3bSDavid S. Miller struct net_device *dev = dst->dev; 26370dbaee3bSDavid S. Miller unsigned int mtu = dst_mtu(dst); 26380dbaee3bSDavid S. Miller struct net *net = dev_net(dev); 26390dbaee3bSDavid S. Miller 26401da177e4SLinus Torvalds mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr); 26411da177e4SLinus Torvalds 26425578689aSDaniel Lezcano if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss) 26435578689aSDaniel Lezcano mtu = net->ipv6.sysctl.ip6_rt_min_advmss; 26441da177e4SLinus Torvalds 26451da177e4SLinus Torvalds /* 26461da177e4SLinus Torvalds * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and 26471da177e4SLinus Torvalds * corresponding MSS is IPV6_MAXPLEN - tcp_header_size. 26481da177e4SLinus Torvalds * IPV6_MAXPLEN is also valid and means: "any MSS, 26491da177e4SLinus Torvalds * rely only on pmtu discovery" 26501da177e4SLinus Torvalds */ 26511da177e4SLinus Torvalds if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr)) 26521da177e4SLinus Torvalds mtu = IPV6_MAXPLEN; 26531da177e4SLinus Torvalds return mtu; 26541da177e4SLinus Torvalds } 26551da177e4SLinus Torvalds 2656ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst) 2657d33e4553SDavid S. Miller { 2658d33e4553SDavid S. Miller struct inet6_dev *idev; 2659d4ead6b3SDavid Ahern unsigned int mtu; 2660618f9bc7SSteffen Klassert 26614b32b5adSMartin KaFai Lau mtu = dst_metric_raw(dst, RTAX_MTU); 26624b32b5adSMartin KaFai Lau if (mtu) 26634b32b5adSMartin KaFai Lau goto out; 26644b32b5adSMartin KaFai Lau 2665618f9bc7SSteffen Klassert mtu = IPV6_MIN_MTU; 2666d33e4553SDavid S. Miller 2667d33e4553SDavid S. Miller rcu_read_lock(); 2668d33e4553SDavid S. Miller idev = __in6_dev_get(dst->dev); 2669d33e4553SDavid S. Miller if (idev) 2670d33e4553SDavid S. Miller mtu = idev->cnf.mtu6; 2671d33e4553SDavid S. Miller rcu_read_unlock(); 2672d33e4553SDavid S. Miller 267330f78d8eSEric Dumazet out: 267414972cbdSRoopa Prabhu mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 267514972cbdSRoopa Prabhu 267614972cbdSRoopa Prabhu return mtu - lwtunnel_headroom(dst->lwtstate, mtu); 2677d33e4553SDavid S. Miller } 2678d33e4553SDavid S. Miller 2679901731b8SDavid Ahern /* MTU selection: 2680901731b8SDavid Ahern * 1. mtu on route is locked - use it 2681901731b8SDavid Ahern * 2. mtu from nexthop exception 2682901731b8SDavid Ahern * 3. mtu from egress device 2683901731b8SDavid Ahern * 2684901731b8SDavid Ahern * based on ip6_dst_mtu_forward and exception logic of 2685901731b8SDavid Ahern * rt6_find_cached_rt; called with rcu_read_lock 2686901731b8SDavid Ahern */ 2687b748f260SDavid Ahern u32 ip6_mtu_from_fib6(const struct fib6_result *res, 2688b748f260SDavid Ahern const struct in6_addr *daddr, 2689b748f260SDavid Ahern const struct in6_addr *saddr) 2690901731b8SDavid Ahern { 2691b748f260SDavid Ahern const struct fib6_nh *nh = res->nh; 2692b748f260SDavid Ahern struct fib6_info *f6i = res->f6i; 2693901731b8SDavid Ahern struct inet6_dev *idev; 2694510e2cedSWei Wang struct rt6_info *rt; 2695901731b8SDavid Ahern u32 mtu = 0; 2696901731b8SDavid Ahern 2697901731b8SDavid Ahern if (unlikely(fib6_metric_locked(f6i, RTAX_MTU))) { 2698901731b8SDavid Ahern mtu = f6i->fib6_pmtu; 2699901731b8SDavid Ahern if (mtu) 2700901731b8SDavid Ahern goto out; 2701901731b8SDavid Ahern } 2702901731b8SDavid Ahern 2703510e2cedSWei Wang rt = rt6_find_cached_rt(res, daddr, saddr); 2704510e2cedSWei Wang if (unlikely(rt)) { 2705510e2cedSWei Wang mtu = dst_metric_raw(&rt->dst, RTAX_MTU); 2706510e2cedSWei Wang } else { 2707b748f260SDavid Ahern struct net_device *dev = nh->fib_nh_dev; 2708901731b8SDavid Ahern 2709901731b8SDavid Ahern mtu = IPV6_MIN_MTU; 2710901731b8SDavid Ahern idev = __in6_dev_get(dev); 2711901731b8SDavid Ahern if (idev && idev->cnf.mtu6 > mtu) 2712901731b8SDavid Ahern mtu = idev->cnf.mtu6; 2713901731b8SDavid Ahern } 2714901731b8SDavid Ahern 2715901731b8SDavid Ahern mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 2716901731b8SDavid Ahern out: 2717b748f260SDavid Ahern return mtu - lwtunnel_headroom(nh->fib_nh_lws, mtu); 2718901731b8SDavid Ahern } 2719901731b8SDavid Ahern 27203b00944cSYOSHIFUJI Hideaki struct dst_entry *icmp6_dst_alloc(struct net_device *dev, 272187a11578SDavid S. Miller struct flowi6 *fl6) 27221da177e4SLinus Torvalds { 272387a11578SDavid S. Miller struct dst_entry *dst; 27241da177e4SLinus Torvalds struct rt6_info *rt; 27251da177e4SLinus Torvalds struct inet6_dev *idev = in6_dev_get(dev); 2726c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 27271da177e4SLinus Torvalds 272838308473SDavid S. Miller if (unlikely(!idev)) 2729122bdf67SEric Dumazet return ERR_PTR(-ENODEV); 27301da177e4SLinus Torvalds 2731ad706862SMartin KaFai Lau rt = ip6_dst_alloc(net, dev, 0); 273238308473SDavid S. Miller if (unlikely(!rt)) { 27331da177e4SLinus Torvalds in6_dev_put(idev); 273487a11578SDavid S. Miller dst = ERR_PTR(-ENOMEM); 27351da177e4SLinus Torvalds goto out; 27361da177e4SLinus Torvalds } 27371da177e4SLinus Torvalds 27388e2ec639SYan, Zheng rt->dst.flags |= DST_HOST; 2739588753f1SBrendan McGrath rt->dst.input = ip6_input; 27408e2ec639SYan, Zheng rt->dst.output = ip6_output; 2741550bab42SJulian Anastasov rt->rt6i_gateway = fl6->daddr; 274287a11578SDavid S. Miller rt->rt6i_dst.addr = fl6->daddr; 27438e2ec639SYan, Zheng rt->rt6i_dst.plen = 128; 27448e2ec639SYan, Zheng rt->rt6i_idev = idev; 274514edd87dSLi RongQing dst_metric_set(&rt->dst, RTAX_HOPLIMIT, 0); 27461da177e4SLinus Torvalds 27474c981e28SIdo Schimmel /* Add this dst into uncached_list so that rt6_disable_ip() can 2748587fea74SWei Wang * do proper release of the net_device 2749587fea74SWei Wang */ 2750587fea74SWei Wang rt6_uncached_list_add(rt); 275181eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 27521da177e4SLinus Torvalds 275387a11578SDavid S. Miller dst = xfrm_lookup(net, &rt->dst, flowi6_to_flowi(fl6), NULL, 0); 275487a11578SDavid S. Miller 27551da177e4SLinus Torvalds out: 275687a11578SDavid S. Miller return dst; 27571da177e4SLinus Torvalds } 27581da177e4SLinus Torvalds 2759569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops) 27601da177e4SLinus Torvalds { 276186393e52SAlexey Dobriyan struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops); 27627019b78eSDaniel Lezcano int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval; 27637019b78eSDaniel Lezcano int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size; 27647019b78eSDaniel Lezcano int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity; 27657019b78eSDaniel Lezcano int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout; 27667019b78eSDaniel Lezcano unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc; 2767fc66f95cSEric Dumazet int entries; 27681da177e4SLinus Torvalds 2769fc66f95cSEric Dumazet entries = dst_entries_get_fast(ops); 277049a18d86SMichal Kubeček if (time_after(rt_last_gc + rt_min_interval, jiffies) && 2771fc66f95cSEric Dumazet entries <= rt_max_size) 27721da177e4SLinus Torvalds goto out; 27731da177e4SLinus Torvalds 27746891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire++; 277514956643SLi RongQing fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net, true); 2776fc66f95cSEric Dumazet entries = dst_entries_get_slow(ops); 2777fc66f95cSEric Dumazet if (entries < ops->gc_thresh) 27787019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1; 27791da177e4SLinus Torvalds out: 27807019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity; 2781fc66f95cSEric Dumazet return entries > rt_max_size; 27821da177e4SLinus Torvalds } 27831da177e4SLinus Torvalds 27848c14586fSDavid Ahern static struct rt6_info *ip6_nh_lookup_table(struct net *net, 27858c14586fSDavid Ahern struct fib6_config *cfg, 2786f4797b33SDavid Ahern const struct in6_addr *gw_addr, 2787f4797b33SDavid Ahern u32 tbid, int flags) 27888c14586fSDavid Ahern { 27898c14586fSDavid Ahern struct flowi6 fl6 = { 27908c14586fSDavid Ahern .flowi6_oif = cfg->fc_ifindex, 27918c14586fSDavid Ahern .daddr = *gw_addr, 27928c14586fSDavid Ahern .saddr = cfg->fc_prefsrc, 27938c14586fSDavid Ahern }; 27948c14586fSDavid Ahern struct fib6_table *table; 27958c14586fSDavid Ahern struct rt6_info *rt; 27968c14586fSDavid Ahern 2797f4797b33SDavid Ahern table = fib6_get_table(net, tbid); 27988c14586fSDavid Ahern if (!table) 27998c14586fSDavid Ahern return NULL; 28008c14586fSDavid Ahern 28018c14586fSDavid Ahern if (!ipv6_addr_any(&cfg->fc_prefsrc)) 28028c14586fSDavid Ahern flags |= RT6_LOOKUP_F_HAS_SADDR; 28038c14586fSDavid Ahern 2804f4797b33SDavid Ahern flags |= RT6_LOOKUP_F_IGNORE_LINKSTATE; 2805b75cc8f9SDavid Ahern rt = ip6_pol_route(net, table, cfg->fc_ifindex, &fl6, NULL, flags); 28068c14586fSDavid Ahern 28078c14586fSDavid Ahern /* if table lookup failed, fall back to full lookup */ 28088c14586fSDavid Ahern if (rt == net->ipv6.ip6_null_entry) { 28098c14586fSDavid Ahern ip6_rt_put(rt); 28108c14586fSDavid Ahern rt = NULL; 28118c14586fSDavid Ahern } 28128c14586fSDavid Ahern 28138c14586fSDavid Ahern return rt; 28148c14586fSDavid Ahern } 28158c14586fSDavid Ahern 2816fc1e64e1SDavid Ahern static int ip6_route_check_nh_onlink(struct net *net, 2817fc1e64e1SDavid Ahern struct fib6_config *cfg, 28189fbb704cSDavid Ahern const struct net_device *dev, 2819fc1e64e1SDavid Ahern struct netlink_ext_ack *extack) 2820fc1e64e1SDavid Ahern { 282144750f84SDavid Ahern u32 tbid = l3mdev_fib_table(dev) ? : RT_TABLE_MAIN; 2822fc1e64e1SDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 2823fc1e64e1SDavid Ahern u32 flags = RTF_LOCAL | RTF_ANYCAST | RTF_REJECT; 2824bf1dc8baSPaolo Abeni struct fib6_info *from; 2825fc1e64e1SDavid Ahern struct rt6_info *grt; 2826fc1e64e1SDavid Ahern int err; 2827fc1e64e1SDavid Ahern 2828fc1e64e1SDavid Ahern err = 0; 2829fc1e64e1SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, tbid, 0); 2830fc1e64e1SDavid Ahern if (grt) { 2831bf1dc8baSPaolo Abeni rcu_read_lock(); 2832bf1dc8baSPaolo Abeni from = rcu_dereference(grt->from); 283358e354c0SDavid Ahern if (!grt->dst.error && 28344ed591c8SDavid Ahern /* ignore match if it is the default route */ 2835bf1dc8baSPaolo Abeni from && !ipv6_addr_any(&from->fib6_dst.addr) && 283658e354c0SDavid Ahern (grt->rt6i_flags & flags || dev != grt->dst.dev)) { 283744750f84SDavid Ahern NL_SET_ERR_MSG(extack, 283844750f84SDavid Ahern "Nexthop has invalid gateway or device mismatch"); 2839fc1e64e1SDavid Ahern err = -EINVAL; 2840fc1e64e1SDavid Ahern } 2841bf1dc8baSPaolo Abeni rcu_read_unlock(); 2842fc1e64e1SDavid Ahern 2843fc1e64e1SDavid Ahern ip6_rt_put(grt); 2844fc1e64e1SDavid Ahern } 2845fc1e64e1SDavid Ahern 2846fc1e64e1SDavid Ahern return err; 2847fc1e64e1SDavid Ahern } 2848fc1e64e1SDavid Ahern 28491edce99fSDavid Ahern static int ip6_route_check_nh(struct net *net, 28501edce99fSDavid Ahern struct fib6_config *cfg, 28511edce99fSDavid Ahern struct net_device **_dev, 28521edce99fSDavid Ahern struct inet6_dev **idev) 28531edce99fSDavid Ahern { 28541edce99fSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 28551edce99fSDavid Ahern struct net_device *dev = _dev ? *_dev : NULL; 28561edce99fSDavid Ahern struct rt6_info *grt = NULL; 28571edce99fSDavid Ahern int err = -EHOSTUNREACH; 28581edce99fSDavid Ahern 28591edce99fSDavid Ahern if (cfg->fc_table) { 2860f4797b33SDavid Ahern int flags = RT6_LOOKUP_F_IFACE; 2861f4797b33SDavid Ahern 2862f4797b33SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, 2863f4797b33SDavid Ahern cfg->fc_table, flags); 28641edce99fSDavid Ahern if (grt) { 28651edce99fSDavid Ahern if (grt->rt6i_flags & RTF_GATEWAY || 28661edce99fSDavid Ahern (dev && dev != grt->dst.dev)) { 28671edce99fSDavid Ahern ip6_rt_put(grt); 28681edce99fSDavid Ahern grt = NULL; 28691edce99fSDavid Ahern } 28701edce99fSDavid Ahern } 28711edce99fSDavid Ahern } 28721edce99fSDavid Ahern 28731edce99fSDavid Ahern if (!grt) 2874b75cc8f9SDavid Ahern grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, NULL, 1); 28751edce99fSDavid Ahern 28761edce99fSDavid Ahern if (!grt) 28771edce99fSDavid Ahern goto out; 28781edce99fSDavid Ahern 28791edce99fSDavid Ahern if (dev) { 28801edce99fSDavid Ahern if (dev != grt->dst.dev) { 28811edce99fSDavid Ahern ip6_rt_put(grt); 28821edce99fSDavid Ahern goto out; 28831edce99fSDavid Ahern } 28841edce99fSDavid Ahern } else { 28851edce99fSDavid Ahern *_dev = dev = grt->dst.dev; 28861edce99fSDavid Ahern *idev = grt->rt6i_idev; 28871edce99fSDavid Ahern dev_hold(dev); 28881edce99fSDavid Ahern in6_dev_hold(grt->rt6i_idev); 28891edce99fSDavid Ahern } 28901edce99fSDavid Ahern 28911edce99fSDavid Ahern if (!(grt->rt6i_flags & RTF_GATEWAY)) 28921edce99fSDavid Ahern err = 0; 28931edce99fSDavid Ahern 28941edce99fSDavid Ahern ip6_rt_put(grt); 28951edce99fSDavid Ahern 28961edce99fSDavid Ahern out: 28971edce99fSDavid Ahern return err; 28981edce99fSDavid Ahern } 28991edce99fSDavid Ahern 29009fbb704cSDavid Ahern static int ip6_validate_gw(struct net *net, struct fib6_config *cfg, 29019fbb704cSDavid Ahern struct net_device **_dev, struct inet6_dev **idev, 29029fbb704cSDavid Ahern struct netlink_ext_ack *extack) 29039fbb704cSDavid Ahern { 29049fbb704cSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 29059fbb704cSDavid Ahern int gwa_type = ipv6_addr_type(gw_addr); 2906232378e8SDavid Ahern bool skip_dev = gwa_type & IPV6_ADDR_LINKLOCAL ? false : true; 29079fbb704cSDavid Ahern const struct net_device *dev = *_dev; 2908232378e8SDavid Ahern bool need_addr_check = !dev; 29099fbb704cSDavid Ahern int err = -EINVAL; 29109fbb704cSDavid Ahern 29119fbb704cSDavid Ahern /* if gw_addr is local we will fail to detect this in case 29129fbb704cSDavid Ahern * address is still TENTATIVE (DAD in progress). rt6_lookup() 29139fbb704cSDavid Ahern * will return already-added prefix route via interface that 29149fbb704cSDavid Ahern * prefix route was assigned to, which might be non-loopback. 29159fbb704cSDavid Ahern */ 2916232378e8SDavid Ahern if (dev && 2917232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2918232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 29199fbb704cSDavid Ahern goto out; 29209fbb704cSDavid Ahern } 29219fbb704cSDavid Ahern 29229fbb704cSDavid Ahern if (gwa_type != (IPV6_ADDR_LINKLOCAL | IPV6_ADDR_UNICAST)) { 29239fbb704cSDavid Ahern /* IPv6 strictly inhibits using not link-local 29249fbb704cSDavid Ahern * addresses as nexthop address. 29259fbb704cSDavid Ahern * Otherwise, router will not able to send redirects. 29269fbb704cSDavid Ahern * It is very good, but in some (rare!) circumstances 29279fbb704cSDavid Ahern * (SIT, PtP, NBMA NOARP links) it is handy to allow 29289fbb704cSDavid Ahern * some exceptions. --ANK 29299fbb704cSDavid Ahern * We allow IPv4-mapped nexthops to support RFC4798-type 29309fbb704cSDavid Ahern * addressing 29319fbb704cSDavid Ahern */ 29329fbb704cSDavid Ahern if (!(gwa_type & (IPV6_ADDR_UNICAST | IPV6_ADDR_MAPPED))) { 29339fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid gateway address"); 29349fbb704cSDavid Ahern goto out; 29359fbb704cSDavid Ahern } 29369fbb704cSDavid Ahern 29379fbb704cSDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) 29389fbb704cSDavid Ahern err = ip6_route_check_nh_onlink(net, cfg, dev, extack); 29399fbb704cSDavid Ahern else 29409fbb704cSDavid Ahern err = ip6_route_check_nh(net, cfg, _dev, idev); 29419fbb704cSDavid Ahern 29429fbb704cSDavid Ahern if (err) 29439fbb704cSDavid Ahern goto out; 29449fbb704cSDavid Ahern } 29459fbb704cSDavid Ahern 29469fbb704cSDavid Ahern /* reload in case device was changed */ 29479fbb704cSDavid Ahern dev = *_dev; 29489fbb704cSDavid Ahern 29499fbb704cSDavid Ahern err = -EINVAL; 29509fbb704cSDavid Ahern if (!dev) { 29519fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Egress device not specified"); 29529fbb704cSDavid Ahern goto out; 29539fbb704cSDavid Ahern } else if (dev->flags & IFF_LOOPBACK) { 29549fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, 29559fbb704cSDavid Ahern "Egress device can not be loopback device for this route"); 29569fbb704cSDavid Ahern goto out; 29579fbb704cSDavid Ahern } 2958232378e8SDavid Ahern 2959232378e8SDavid Ahern /* if we did not check gw_addr above, do so now that the 2960232378e8SDavid Ahern * egress device has been resolved. 2961232378e8SDavid Ahern */ 2962232378e8SDavid Ahern if (need_addr_check && 2963232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2964232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 2965232378e8SDavid Ahern goto out; 2966232378e8SDavid Ahern } 2967232378e8SDavid Ahern 29689fbb704cSDavid Ahern err = 0; 29699fbb704cSDavid Ahern out: 29709fbb704cSDavid Ahern return err; 29719fbb704cSDavid Ahern } 29729fbb704cSDavid Ahern 297383c44251SDavid Ahern static bool fib6_is_reject(u32 flags, struct net_device *dev, int addr_type) 297483c44251SDavid Ahern { 297583c44251SDavid Ahern if ((flags & RTF_REJECT) || 297683c44251SDavid Ahern (dev && (dev->flags & IFF_LOOPBACK) && 297783c44251SDavid Ahern !(addr_type & IPV6_ADDR_LOOPBACK) && 297883c44251SDavid Ahern !(flags & RTF_LOCAL))) 297983c44251SDavid Ahern return true; 298083c44251SDavid Ahern 298183c44251SDavid Ahern return false; 298283c44251SDavid Ahern } 298383c44251SDavid Ahern 298483c44251SDavid Ahern int fib6_nh_init(struct net *net, struct fib6_nh *fib6_nh, 298583c44251SDavid Ahern struct fib6_config *cfg, gfp_t gfp_flags, 298683c44251SDavid Ahern struct netlink_ext_ack *extack) 298783c44251SDavid Ahern { 298883c44251SDavid Ahern struct net_device *dev = NULL; 298983c44251SDavid Ahern struct inet6_dev *idev = NULL; 299083c44251SDavid Ahern int addr_type; 299183c44251SDavid Ahern int err; 299283c44251SDavid Ahern 2993f1741730SDavid Ahern fib6_nh->fib_nh_family = AF_INET6; 2994f1741730SDavid Ahern 299583c44251SDavid Ahern err = -ENODEV; 299683c44251SDavid Ahern if (cfg->fc_ifindex) { 299783c44251SDavid Ahern dev = dev_get_by_index(net, cfg->fc_ifindex); 299883c44251SDavid Ahern if (!dev) 299983c44251SDavid Ahern goto out; 300083c44251SDavid Ahern idev = in6_dev_get(dev); 300183c44251SDavid Ahern if (!idev) 300283c44251SDavid Ahern goto out; 300383c44251SDavid Ahern } 300483c44251SDavid Ahern 300583c44251SDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) { 300683c44251SDavid Ahern if (!dev) { 300783c44251SDavid Ahern NL_SET_ERR_MSG(extack, 300883c44251SDavid Ahern "Nexthop device required for onlink"); 300983c44251SDavid Ahern goto out; 301083c44251SDavid Ahern } 301183c44251SDavid Ahern 301283c44251SDavid Ahern if (!(dev->flags & IFF_UP)) { 301383c44251SDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 301483c44251SDavid Ahern err = -ENETDOWN; 301583c44251SDavid Ahern goto out; 301683c44251SDavid Ahern } 301783c44251SDavid Ahern 3018ad1601aeSDavid Ahern fib6_nh->fib_nh_flags |= RTNH_F_ONLINK; 301983c44251SDavid Ahern } 302083c44251SDavid Ahern 3021ad1601aeSDavid Ahern fib6_nh->fib_nh_weight = 1; 302283c44251SDavid Ahern 302383c44251SDavid Ahern /* We cannot add true routes via loopback here, 302483c44251SDavid Ahern * they would result in kernel looping; promote them to reject routes 302583c44251SDavid Ahern */ 302683c44251SDavid Ahern addr_type = ipv6_addr_type(&cfg->fc_dst); 302783c44251SDavid Ahern if (fib6_is_reject(cfg->fc_flags, dev, addr_type)) { 302883c44251SDavid Ahern /* hold loopback dev/idev if we haven't done so. */ 302983c44251SDavid Ahern if (dev != net->loopback_dev) { 303083c44251SDavid Ahern if (dev) { 303183c44251SDavid Ahern dev_put(dev); 303283c44251SDavid Ahern in6_dev_put(idev); 303383c44251SDavid Ahern } 303483c44251SDavid Ahern dev = net->loopback_dev; 303583c44251SDavid Ahern dev_hold(dev); 303683c44251SDavid Ahern idev = in6_dev_get(dev); 303783c44251SDavid Ahern if (!idev) { 303883c44251SDavid Ahern err = -ENODEV; 303983c44251SDavid Ahern goto out; 304083c44251SDavid Ahern } 304183c44251SDavid Ahern } 304283c44251SDavid Ahern goto set_dev; 304383c44251SDavid Ahern } 304483c44251SDavid Ahern 304583c44251SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY) { 304683c44251SDavid Ahern err = ip6_validate_gw(net, cfg, &dev, &idev, extack); 304783c44251SDavid Ahern if (err) 304883c44251SDavid Ahern goto out; 304983c44251SDavid Ahern 3050ad1601aeSDavid Ahern fib6_nh->fib_nh_gw6 = cfg->fc_gateway; 3051bdf00467SDavid Ahern fib6_nh->fib_nh_gw_family = AF_INET6; 305283c44251SDavid Ahern } 305383c44251SDavid Ahern 305483c44251SDavid Ahern err = -ENODEV; 305583c44251SDavid Ahern if (!dev) 305683c44251SDavid Ahern goto out; 305783c44251SDavid Ahern 305883c44251SDavid Ahern if (idev->cnf.disable_ipv6) { 305983c44251SDavid Ahern NL_SET_ERR_MSG(extack, "IPv6 is disabled on nexthop device"); 306083c44251SDavid Ahern err = -EACCES; 306183c44251SDavid Ahern goto out; 306283c44251SDavid Ahern } 306383c44251SDavid Ahern 306483c44251SDavid Ahern if (!(dev->flags & IFF_UP) && !cfg->fc_ignore_dev_down) { 306583c44251SDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 306683c44251SDavid Ahern err = -ENETDOWN; 306783c44251SDavid Ahern goto out; 306883c44251SDavid Ahern } 306983c44251SDavid Ahern 307083c44251SDavid Ahern if (!(cfg->fc_flags & (RTF_LOCAL | RTF_ANYCAST)) && 307183c44251SDavid Ahern !netif_carrier_ok(dev)) 3072ad1601aeSDavid Ahern fib6_nh->fib_nh_flags |= RTNH_F_LINKDOWN; 307383c44251SDavid Ahern 3074979e276eSDavid Ahern err = fib_nh_common_init(&fib6_nh->nh_common, cfg->fc_encap, 3075979e276eSDavid Ahern cfg->fc_encap_type, cfg, gfp_flags, extack); 3076979e276eSDavid Ahern if (err) 3077979e276eSDavid Ahern goto out; 307883c44251SDavid Ahern set_dev: 3079ad1601aeSDavid Ahern fib6_nh->fib_nh_dev = dev; 3080f1741730SDavid Ahern fib6_nh->fib_nh_oif = dev->ifindex; 308183c44251SDavid Ahern err = 0; 308283c44251SDavid Ahern out: 308383c44251SDavid Ahern if (idev) 308483c44251SDavid Ahern in6_dev_put(idev); 308583c44251SDavid Ahern 308683c44251SDavid Ahern if (err) { 3087ad1601aeSDavid Ahern lwtstate_put(fib6_nh->fib_nh_lws); 3088ad1601aeSDavid Ahern fib6_nh->fib_nh_lws = NULL; 308983c44251SDavid Ahern if (dev) 309083c44251SDavid Ahern dev_put(dev); 309183c44251SDavid Ahern } 309283c44251SDavid Ahern 309383c44251SDavid Ahern return err; 309483c44251SDavid Ahern } 309583c44251SDavid Ahern 3096dac7d0f2SDavid Ahern void fib6_nh_release(struct fib6_nh *fib6_nh) 3097dac7d0f2SDavid Ahern { 3098979e276eSDavid Ahern fib_nh_common_release(&fib6_nh->nh_common); 3099dac7d0f2SDavid Ahern } 3100dac7d0f2SDavid Ahern 31018d1c802bSDavid Ahern static struct fib6_info *ip6_route_info_create(struct fib6_config *cfg, 3102acb54e3cSDavid Ahern gfp_t gfp_flags, 3103333c4301SDavid Ahern struct netlink_ext_ack *extack) 31041da177e4SLinus Torvalds { 31055578689aSDaniel Lezcano struct net *net = cfg->fc_nlinfo.nl_net; 31068d1c802bSDavid Ahern struct fib6_info *rt = NULL; 3107c71099acSThomas Graf struct fib6_table *table; 31088c5b83f0SRoopa Prabhu int err = -EINVAL; 310983c44251SDavid Ahern int addr_type; 31101da177e4SLinus Torvalds 3111557c44beSDavid Ahern /* RTF_PCPU is an internal flag; can not be set by userspace */ 3112d5d531cbSDavid Ahern if (cfg->fc_flags & RTF_PCPU) { 3113d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Userspace can not set RTF_PCPU"); 3114557c44beSDavid Ahern goto out; 3115d5d531cbSDavid Ahern } 3116557c44beSDavid Ahern 31172ea2352eSWei Wang /* RTF_CACHE is an internal flag; can not be set by userspace */ 31182ea2352eSWei Wang if (cfg->fc_flags & RTF_CACHE) { 31192ea2352eSWei Wang NL_SET_ERR_MSG(extack, "Userspace can not set RTF_CACHE"); 31202ea2352eSWei Wang goto out; 31212ea2352eSWei Wang } 31222ea2352eSWei Wang 3123e8478e80SDavid Ahern if (cfg->fc_type > RTN_MAX) { 3124e8478e80SDavid Ahern NL_SET_ERR_MSG(extack, "Invalid route type"); 3125e8478e80SDavid Ahern goto out; 3126e8478e80SDavid Ahern } 3127e8478e80SDavid Ahern 3128d5d531cbSDavid Ahern if (cfg->fc_dst_len > 128) { 3129d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid prefix length"); 31308c5b83f0SRoopa Prabhu goto out; 3131d5d531cbSDavid Ahern } 3132d5d531cbSDavid Ahern if (cfg->fc_src_len > 128) { 3133d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address length"); 3134d5d531cbSDavid Ahern goto out; 3135d5d531cbSDavid Ahern } 31361da177e4SLinus Torvalds #ifndef CONFIG_IPV6_SUBTREES 3137d5d531cbSDavid Ahern if (cfg->fc_src_len) { 3138d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, 3139d5d531cbSDavid Ahern "Specifying source address requires IPV6_SUBTREES to be enabled"); 31408c5b83f0SRoopa Prabhu goto out; 3141d5d531cbSDavid Ahern } 31421da177e4SLinus Torvalds #endif 3143fc1e64e1SDavid Ahern 3144c71099acSThomas Graf err = -ENOBUFS; 314538308473SDavid S. Miller if (cfg->fc_nlinfo.nlh && 3146d71314b4SMatti Vaittinen !(cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_CREATE)) { 3147d71314b4SMatti Vaittinen table = fib6_get_table(net, cfg->fc_table); 314838308473SDavid S. Miller if (!table) { 3149f3213831SJoe Perches pr_warn("NLM_F_CREATE should be specified when creating new route\n"); 3150d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 3151d71314b4SMatti Vaittinen } 3152d71314b4SMatti Vaittinen } else { 3153d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 3154d71314b4SMatti Vaittinen } 315538308473SDavid S. Miller 315638308473SDavid S. Miller if (!table) 3157c71099acSThomas Graf goto out; 3158c71099acSThomas Graf 31591da177e4SLinus Torvalds err = -ENOMEM; 316093531c67SDavid Ahern rt = fib6_info_alloc(gfp_flags); 316193531c67SDavid Ahern if (!rt) 31621da177e4SLinus Torvalds goto out; 316393531c67SDavid Ahern 3164d7e774f3SDavid Ahern rt->fib6_metrics = ip_fib_metrics_init(net, cfg->fc_mx, cfg->fc_mx_len, 3165d7e774f3SDavid Ahern extack); 3166767a2217SDavid Ahern if (IS_ERR(rt->fib6_metrics)) { 3167767a2217SDavid Ahern err = PTR_ERR(rt->fib6_metrics); 3168fda21d46SEric Dumazet /* Do not leave garbage there. */ 3169fda21d46SEric Dumazet rt->fib6_metrics = (struct dst_metrics *)&dst_default_metrics; 3170767a2217SDavid Ahern goto out; 3171767a2217SDavid Ahern } 3172767a2217SDavid Ahern 317393531c67SDavid Ahern if (cfg->fc_flags & RTF_ADDRCONF) 317493531c67SDavid Ahern rt->dst_nocount = true; 31751da177e4SLinus Torvalds 31761716a961SGao feng if (cfg->fc_flags & RTF_EXPIRES) 317714895687SDavid Ahern fib6_set_expires(rt, jiffies + 31781716a961SGao feng clock_t_to_jiffies(cfg->fc_expires)); 31791716a961SGao feng else 318014895687SDavid Ahern fib6_clean_expires(rt); 31811da177e4SLinus Torvalds 318286872cb5SThomas Graf if (cfg->fc_protocol == RTPROT_UNSPEC) 318386872cb5SThomas Graf cfg->fc_protocol = RTPROT_BOOT; 318493c2fb25SDavid Ahern rt->fib6_protocol = cfg->fc_protocol; 318586872cb5SThomas Graf 318683c44251SDavid Ahern rt->fib6_table = table; 318783c44251SDavid Ahern rt->fib6_metric = cfg->fc_metric; 3188c7036d97SDavid Ahern rt->fib6_type = cfg->fc_type ? : RTN_UNICAST; 31892b2450caSDavid Ahern rt->fib6_flags = cfg->fc_flags & ~RTF_GATEWAY; 319019e42e45SRoopa Prabhu 319193c2fb25SDavid Ahern ipv6_addr_prefix(&rt->fib6_dst.addr, &cfg->fc_dst, cfg->fc_dst_len); 319293c2fb25SDavid Ahern rt->fib6_dst.plen = cfg->fc_dst_len; 319393c2fb25SDavid Ahern if (rt->fib6_dst.plen == 128) 31943b6761d1SDavid Ahern rt->dst_host = true; 31951da177e4SLinus Torvalds 31961da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 319793c2fb25SDavid Ahern ipv6_addr_prefix(&rt->fib6_src.addr, &cfg->fc_src, cfg->fc_src_len); 319893c2fb25SDavid Ahern rt->fib6_src.plen = cfg->fc_src_len; 31991da177e4SLinus Torvalds #endif 320083c44251SDavid Ahern err = fib6_nh_init(net, &rt->fib6_nh, cfg, gfp_flags, extack); 32011da177e4SLinus Torvalds if (err) 32021da177e4SLinus Torvalds goto out; 32039fbb704cSDavid Ahern 320483c44251SDavid Ahern /* We cannot add true routes via loopback here, 320583c44251SDavid Ahern * they would result in kernel looping; promote them to reject routes 320683c44251SDavid Ahern */ 320783c44251SDavid Ahern addr_type = ipv6_addr_type(&cfg->fc_dst); 3208ad1601aeSDavid Ahern if (fib6_is_reject(cfg->fc_flags, rt->fib6_nh.fib_nh_dev, addr_type)) 320983c44251SDavid Ahern rt->fib6_flags = RTF_REJECT | RTF_NONEXTHOP; 3210955ec4cbSDavid Ahern 3211c3968a85SDaniel Walter if (!ipv6_addr_any(&cfg->fc_prefsrc)) { 321283c44251SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 321383c44251SDavid Ahern 3214c3968a85SDaniel Walter if (!ipv6_chk_addr(net, &cfg->fc_prefsrc, dev, 0)) { 3215d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address"); 3216c3968a85SDaniel Walter err = -EINVAL; 3217c3968a85SDaniel Walter goto out; 3218c3968a85SDaniel Walter } 321993c2fb25SDavid Ahern rt->fib6_prefsrc.addr = cfg->fc_prefsrc; 322093c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 128; 3221c3968a85SDaniel Walter } else 322293c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 0; 3223c3968a85SDaniel Walter 32248c5b83f0SRoopa Prabhu return rt; 32251da177e4SLinus Torvalds out: 322693531c67SDavid Ahern fib6_info_release(rt); 32278c5b83f0SRoopa Prabhu return ERR_PTR(err); 32286b9ea5a6SRoopa Prabhu } 32296b9ea5a6SRoopa Prabhu 3230acb54e3cSDavid Ahern int ip6_route_add(struct fib6_config *cfg, gfp_t gfp_flags, 3231333c4301SDavid Ahern struct netlink_ext_ack *extack) 32326b9ea5a6SRoopa Prabhu { 32338d1c802bSDavid Ahern struct fib6_info *rt; 32346b9ea5a6SRoopa Prabhu int err; 32356b9ea5a6SRoopa Prabhu 3236acb54e3cSDavid Ahern rt = ip6_route_info_create(cfg, gfp_flags, extack); 3237d4ead6b3SDavid Ahern if (IS_ERR(rt)) 3238d4ead6b3SDavid Ahern return PTR_ERR(rt); 32396b9ea5a6SRoopa Prabhu 3240d4ead6b3SDavid Ahern err = __ip6_ins_rt(rt, &cfg->fc_nlinfo, extack); 324193531c67SDavid Ahern fib6_info_release(rt); 32426b9ea5a6SRoopa Prabhu 32431da177e4SLinus Torvalds return err; 32441da177e4SLinus Torvalds } 32451da177e4SLinus Torvalds 32468d1c802bSDavid Ahern static int __ip6_del_rt(struct fib6_info *rt, struct nl_info *info) 32471da177e4SLinus Torvalds { 3248afb1d4b5SDavid Ahern struct net *net = info->nl_net; 3249c71099acSThomas Graf struct fib6_table *table; 3250afb1d4b5SDavid Ahern int err; 32511da177e4SLinus Torvalds 3252421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) { 32536825a26cSGao feng err = -ENOENT; 32546825a26cSGao feng goto out; 32556825a26cSGao feng } 32566c813a72SPatrick McHardy 325793c2fb25SDavid Ahern table = rt->fib6_table; 325866f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 325986872cb5SThomas Graf err = fib6_del(rt, info); 326066f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 32611da177e4SLinus Torvalds 32626825a26cSGao feng out: 326393531c67SDavid Ahern fib6_info_release(rt); 32641da177e4SLinus Torvalds return err; 32651da177e4SLinus Torvalds } 32661da177e4SLinus Torvalds 32678d1c802bSDavid Ahern int ip6_del_rt(struct net *net, struct fib6_info *rt) 3268e0a1ad73SThomas Graf { 3269afb1d4b5SDavid Ahern struct nl_info info = { .nl_net = net }; 3270afb1d4b5SDavid Ahern 3271528c4cebSDenis V. Lunev return __ip6_del_rt(rt, &info); 3272e0a1ad73SThomas Graf } 3273e0a1ad73SThomas Graf 32748d1c802bSDavid Ahern static int __ip6_del_rt_siblings(struct fib6_info *rt, struct fib6_config *cfg) 32750ae81335SDavid Ahern { 32760ae81335SDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 3277e3330039SWANG Cong struct net *net = info->nl_net; 327816a16cd3SDavid Ahern struct sk_buff *skb = NULL; 32790ae81335SDavid Ahern struct fib6_table *table; 3280e3330039SWANG Cong int err = -ENOENT; 32810ae81335SDavid Ahern 3282421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 3283e3330039SWANG Cong goto out_put; 328493c2fb25SDavid Ahern table = rt->fib6_table; 328566f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 32860ae81335SDavid Ahern 328793c2fb25SDavid Ahern if (rt->fib6_nsiblings && cfg->fc_delete_all_nh) { 32888d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 32890ae81335SDavid Ahern 329016a16cd3SDavid Ahern /* prefer to send a single notification with all hops */ 329116a16cd3SDavid Ahern skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 329216a16cd3SDavid Ahern if (skb) { 329316a16cd3SDavid Ahern u32 seq = info->nlh ? info->nlh->nlmsg_seq : 0; 329416a16cd3SDavid Ahern 3295d4ead6b3SDavid Ahern if (rt6_fill_node(net, skb, rt, NULL, 329616a16cd3SDavid Ahern NULL, NULL, 0, RTM_DELROUTE, 329716a16cd3SDavid Ahern info->portid, seq, 0) < 0) { 329816a16cd3SDavid Ahern kfree_skb(skb); 329916a16cd3SDavid Ahern skb = NULL; 330016a16cd3SDavid Ahern } else 330116a16cd3SDavid Ahern info->skip_notify = 1; 330216a16cd3SDavid Ahern } 330316a16cd3SDavid Ahern 33040ae81335SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 330593c2fb25SDavid Ahern &rt->fib6_siblings, 330693c2fb25SDavid Ahern fib6_siblings) { 33070ae81335SDavid Ahern err = fib6_del(sibling, info); 33080ae81335SDavid Ahern if (err) 3309e3330039SWANG Cong goto out_unlock; 33100ae81335SDavid Ahern } 33110ae81335SDavid Ahern } 33120ae81335SDavid Ahern 33130ae81335SDavid Ahern err = fib6_del(rt, info); 3314e3330039SWANG Cong out_unlock: 331566f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 3316e3330039SWANG Cong out_put: 331793531c67SDavid Ahern fib6_info_release(rt); 331816a16cd3SDavid Ahern 331916a16cd3SDavid Ahern if (skb) { 3320e3330039SWANG Cong rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 332116a16cd3SDavid Ahern info->nlh, gfp_any()); 332216a16cd3SDavid Ahern } 33230ae81335SDavid Ahern return err; 33240ae81335SDavid Ahern } 33250ae81335SDavid Ahern 332623fb93a4SDavid Ahern static int ip6_del_cached_rt(struct rt6_info *rt, struct fib6_config *cfg) 332723fb93a4SDavid Ahern { 332823fb93a4SDavid Ahern int rc = -ESRCH; 332923fb93a4SDavid Ahern 333023fb93a4SDavid Ahern if (cfg->fc_ifindex && rt->dst.dev->ifindex != cfg->fc_ifindex) 333123fb93a4SDavid Ahern goto out; 333223fb93a4SDavid Ahern 333323fb93a4SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY && 333423fb93a4SDavid Ahern !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway)) 333523fb93a4SDavid Ahern goto out; 3336761f6026SXin Long 333723fb93a4SDavid Ahern rc = rt6_remove_exception_rt(rt); 333823fb93a4SDavid Ahern out: 333923fb93a4SDavid Ahern return rc; 334023fb93a4SDavid Ahern } 334123fb93a4SDavid Ahern 3342333c4301SDavid Ahern static int ip6_route_del(struct fib6_config *cfg, 3343333c4301SDavid Ahern struct netlink_ext_ack *extack) 33441da177e4SLinus Torvalds { 33458d1c802bSDavid Ahern struct rt6_info *rt_cache; 3346c71099acSThomas Graf struct fib6_table *table; 33478d1c802bSDavid Ahern struct fib6_info *rt; 33481da177e4SLinus Torvalds struct fib6_node *fn; 33491da177e4SLinus Torvalds int err = -ESRCH; 33501da177e4SLinus Torvalds 33515578689aSDaniel Lezcano table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table); 3352d5d531cbSDavid Ahern if (!table) { 3353d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "FIB table does not exist"); 3354c71099acSThomas Graf return err; 3355d5d531cbSDavid Ahern } 33561da177e4SLinus Torvalds 335766f5d6ceSWei Wang rcu_read_lock(); 3358c71099acSThomas Graf 3359c71099acSThomas Graf fn = fib6_locate(&table->tb6_root, 336086872cb5SThomas Graf &cfg->fc_dst, cfg->fc_dst_len, 336138fbeeeeSWei Wang &cfg->fc_src, cfg->fc_src_len, 33622b760fcfSWei Wang !(cfg->fc_flags & RTF_CACHE)); 33631da177e4SLinus Torvalds 33641da177e4SLinus Torvalds if (fn) { 336566f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 3366ad1601aeSDavid Ahern struct fib6_nh *nh; 3367ad1601aeSDavid Ahern 33682b760fcfSWei Wang if (cfg->fc_flags & RTF_CACHE) { 33697e4b5128SDavid Ahern struct fib6_result res = { 33707e4b5128SDavid Ahern .f6i = rt, 33717e4b5128SDavid Ahern }; 337223fb93a4SDavid Ahern int rc; 337323fb93a4SDavid Ahern 33747e4b5128SDavid Ahern rt_cache = rt6_find_cached_rt(&res, 33757e4b5128SDavid Ahern &cfg->fc_dst, 33762b760fcfSWei Wang &cfg->fc_src); 337723fb93a4SDavid Ahern if (rt_cache) { 337823fb93a4SDavid Ahern rc = ip6_del_cached_rt(rt_cache, cfg); 33799e575010SEric Dumazet if (rc != -ESRCH) { 33809e575010SEric Dumazet rcu_read_unlock(); 338123fb93a4SDavid Ahern return rc; 338223fb93a4SDavid Ahern } 33839e575010SEric Dumazet } 33841f56a01fSMartin KaFai Lau continue; 33852b760fcfSWei Wang } 3386ad1601aeSDavid Ahern 3387ad1601aeSDavid Ahern nh = &rt->fib6_nh; 338886872cb5SThomas Graf if (cfg->fc_ifindex && 3389ad1601aeSDavid Ahern (!nh->fib_nh_dev || 3390ad1601aeSDavid Ahern nh->fib_nh_dev->ifindex != cfg->fc_ifindex)) 33911da177e4SLinus Torvalds continue; 339286872cb5SThomas Graf if (cfg->fc_flags & RTF_GATEWAY && 3393ad1601aeSDavid Ahern !ipv6_addr_equal(&cfg->fc_gateway, &nh->fib_nh_gw6)) 33941da177e4SLinus Torvalds continue; 339593c2fb25SDavid Ahern if (cfg->fc_metric && cfg->fc_metric != rt->fib6_metric) 33961da177e4SLinus Torvalds continue; 339793c2fb25SDavid Ahern if (cfg->fc_protocol && cfg->fc_protocol != rt->fib6_protocol) 3398c2ed1880SMantas M continue; 3399e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 3400e873e4b9SWei Wang continue; 340166f5d6ceSWei Wang rcu_read_unlock(); 34021da177e4SLinus Torvalds 34030ae81335SDavid Ahern /* if gateway was specified only delete the one hop */ 34040ae81335SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY) 340586872cb5SThomas Graf return __ip6_del_rt(rt, &cfg->fc_nlinfo); 34060ae81335SDavid Ahern 34070ae81335SDavid Ahern return __ip6_del_rt_siblings(rt, cfg); 34081da177e4SLinus Torvalds } 34091da177e4SLinus Torvalds } 341066f5d6ceSWei Wang rcu_read_unlock(); 34111da177e4SLinus Torvalds 34121da177e4SLinus Torvalds return err; 34131da177e4SLinus Torvalds } 34141da177e4SLinus Torvalds 34156700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, struct sk_buff *skb) 3416a6279458SYOSHIFUJI Hideaki { 3417a6279458SYOSHIFUJI Hideaki struct netevent_redirect netevent; 3418e8599ff4SDavid S. Miller struct rt6_info *rt, *nrt = NULL; 341985bd05deSDavid Ahern struct fib6_result res = {}; 3420e8599ff4SDavid S. Miller struct ndisc_options ndopts; 3421e8599ff4SDavid S. Miller struct inet6_dev *in6_dev; 3422e8599ff4SDavid S. Miller struct neighbour *neigh; 342371bcdba0SYOSHIFUJI Hideaki / 吉藤英明 struct rd_msg *msg; 34246e157b6aSDavid S. Miller int optlen, on_link; 34256e157b6aSDavid S. Miller u8 *lladdr; 3426e8599ff4SDavid S. Miller 342729a3cad5SSimon Horman optlen = skb_tail_pointer(skb) - skb_transport_header(skb); 342871bcdba0SYOSHIFUJI Hideaki / 吉藤英明 optlen -= sizeof(*msg); 3429e8599ff4SDavid S. Miller 3430e8599ff4SDavid S. Miller if (optlen < 0) { 34316e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: packet too short\n"); 3432e8599ff4SDavid S. Miller return; 3433e8599ff4SDavid S. Miller } 3434e8599ff4SDavid S. Miller 343571bcdba0SYOSHIFUJI Hideaki / 吉藤英明 msg = (struct rd_msg *)icmp6_hdr(skb); 3436e8599ff4SDavid S. Miller 343771bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_is_multicast(&msg->dest)) { 34386e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: destination address is multicast\n"); 3439e8599ff4SDavid S. Miller return; 3440e8599ff4SDavid S. Miller } 3441e8599ff4SDavid S. Miller 34426e157b6aSDavid S. Miller on_link = 0; 344371bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_equal(&msg->dest, &msg->target)) { 3444e8599ff4SDavid S. Miller on_link = 1; 344571bcdba0SYOSHIFUJI Hideaki / 吉藤英明 } else if (ipv6_addr_type(&msg->target) != 3446e8599ff4SDavid S. Miller (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) { 34476e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: target address is not link-local unicast\n"); 3448e8599ff4SDavid S. Miller return; 3449e8599ff4SDavid S. Miller } 3450e8599ff4SDavid S. Miller 3451e8599ff4SDavid S. Miller in6_dev = __in6_dev_get(skb->dev); 3452e8599ff4SDavid S. Miller if (!in6_dev) 3453e8599ff4SDavid S. Miller return; 3454e8599ff4SDavid S. Miller if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_redirects) 3455e8599ff4SDavid S. Miller return; 3456e8599ff4SDavid S. Miller 3457e8599ff4SDavid S. Miller /* RFC2461 8.1: 3458e8599ff4SDavid S. Miller * The IP source address of the Redirect MUST be the same as the current 3459e8599ff4SDavid S. Miller * first-hop router for the specified ICMP Destination Address. 3460e8599ff4SDavid S. Miller */ 3461e8599ff4SDavid S. Miller 3462f997c55cSAlexander Aring if (!ndisc_parse_options(skb->dev, msg->opt, optlen, &ndopts)) { 3463e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid ND options\n"); 3464e8599ff4SDavid S. Miller return; 3465e8599ff4SDavid S. Miller } 34666e157b6aSDavid S. Miller 34676e157b6aSDavid S. Miller lladdr = NULL; 3468e8599ff4SDavid S. Miller if (ndopts.nd_opts_tgt_lladdr) { 3469e8599ff4SDavid S. Miller lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr, 3470e8599ff4SDavid S. Miller skb->dev); 3471e8599ff4SDavid S. Miller if (!lladdr) { 3472e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid link-layer address length\n"); 3473e8599ff4SDavid S. Miller return; 3474e8599ff4SDavid S. Miller } 3475e8599ff4SDavid S. Miller } 3476e8599ff4SDavid S. Miller 34776e157b6aSDavid S. Miller rt = (struct rt6_info *) dst; 3478ec13ad1dSMatthias Schiffer if (rt->rt6i_flags & RTF_REJECT) { 34796e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_redirect: source isn't a valid nexthop for redirect target\n"); 34806e157b6aSDavid S. Miller return; 34816e157b6aSDavid S. Miller } 34826e157b6aSDavid S. Miller 34836e157b6aSDavid S. Miller /* Redirect received -> path was valid. 34846e157b6aSDavid S. Miller * Look, redirects are sent only in response to data packets, 34856e157b6aSDavid S. Miller * so that this nexthop apparently is reachable. --ANK 34866e157b6aSDavid S. Miller */ 34870dec879fSJulian Anastasov dst_confirm_neigh(&rt->dst, &ipv6_hdr(skb)->saddr); 34886e157b6aSDavid S. Miller 348971bcdba0SYOSHIFUJI Hideaki / 吉藤英明 neigh = __neigh_lookup(&nd_tbl, &msg->target, skb->dev, 1); 3490e8599ff4SDavid S. Miller if (!neigh) 3491e8599ff4SDavid S. Miller return; 3492e8599ff4SDavid S. Miller 34931da177e4SLinus Torvalds /* 34941da177e4SLinus Torvalds * We have finally decided to accept it. 34951da177e4SLinus Torvalds */ 34961da177e4SLinus Torvalds 3497f997c55cSAlexander Aring ndisc_update(skb->dev, neigh, lladdr, NUD_STALE, 34981da177e4SLinus Torvalds NEIGH_UPDATE_F_WEAK_OVERRIDE| 34991da177e4SLinus Torvalds NEIGH_UPDATE_F_OVERRIDE| 35001da177e4SLinus Torvalds (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER| 3501f997c55cSAlexander Aring NEIGH_UPDATE_F_ISROUTER)), 3502f997c55cSAlexander Aring NDISC_REDIRECT, &ndopts); 35031da177e4SLinus Torvalds 35044d85cd0cSDavid Ahern rcu_read_lock(); 350585bd05deSDavid Ahern res.f6i = rcu_dereference(rt->from); 3506ff24e498SDavid S. Miller if (!res.f6i) 3507886b7a50SMartin KaFai Lau goto out; 35088a14e46fSDavid Ahern 350985bd05deSDavid Ahern res.nh = &res.f6i->fib6_nh; 35107d21fec9SDavid Ahern res.fib6_flags = res.f6i->fib6_flags; 35117d21fec9SDavid Ahern res.fib6_type = res.f6i->fib6_type; 351285bd05deSDavid Ahern nrt = ip6_rt_cache_alloc(&res, &msg->dest, NULL); 351338308473SDavid S. Miller if (!nrt) 35141da177e4SLinus Torvalds goto out; 35151da177e4SLinus Torvalds 35161da177e4SLinus Torvalds nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE; 35171da177e4SLinus Torvalds if (on_link) 35181da177e4SLinus Torvalds nrt->rt6i_flags &= ~RTF_GATEWAY; 35191da177e4SLinus Torvalds 35204e3fd7a0SAlexey Dobriyan nrt->rt6i_gateway = *(struct in6_addr *)neigh->primary_key; 35211da177e4SLinus Torvalds 3522886b7a50SMartin KaFai Lau /* rt6_insert_exception() will take care of duplicated exceptions */ 35235012f0a5SDavid Ahern if (rt6_insert_exception(nrt, &res)) { 35242b760fcfSWei Wang dst_release_immediate(&nrt->dst); 35252b760fcfSWei Wang goto out; 35262b760fcfSWei Wang } 35271da177e4SLinus Torvalds 3528d8d1f30bSChangli Gao netevent.old = &rt->dst; 3529d8d1f30bSChangli Gao netevent.new = &nrt->dst; 353071bcdba0SYOSHIFUJI Hideaki / 吉藤英明 netevent.daddr = &msg->dest; 353160592833SYOSHIFUJI Hideaki / 吉藤英明 netevent.neigh = neigh; 35328d71740cSTom Tucker call_netevent_notifiers(NETEVENT_REDIRECT, &netevent); 35338d71740cSTom Tucker 35341da177e4SLinus Torvalds out: 3535886b7a50SMartin KaFai Lau rcu_read_unlock(); 3536e8599ff4SDavid S. Miller neigh_release(neigh); 35376e157b6aSDavid S. Miller } 35386e157b6aSDavid S. Miller 353970ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 35408d1c802bSDavid Ahern static struct fib6_info *rt6_get_route_info(struct net *net, 3541b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3542830218c1SDavid Ahern const struct in6_addr *gwaddr, 3543830218c1SDavid Ahern struct net_device *dev) 354470ceb4f5SYOSHIFUJI Hideaki { 3545830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO; 3546830218c1SDavid Ahern int ifindex = dev->ifindex; 354770ceb4f5SYOSHIFUJI Hideaki struct fib6_node *fn; 35488d1c802bSDavid Ahern struct fib6_info *rt = NULL; 3549c71099acSThomas Graf struct fib6_table *table; 355070ceb4f5SYOSHIFUJI Hideaki 3551830218c1SDavid Ahern table = fib6_get_table(net, tb_id); 355238308473SDavid S. Miller if (!table) 3553c71099acSThomas Graf return NULL; 3554c71099acSThomas Graf 355566f5d6ceSWei Wang rcu_read_lock(); 355638fbeeeeSWei Wang fn = fib6_locate(&table->tb6_root, prefix, prefixlen, NULL, 0, true); 355770ceb4f5SYOSHIFUJI Hideaki if (!fn) 355870ceb4f5SYOSHIFUJI Hideaki goto out; 355970ceb4f5SYOSHIFUJI Hideaki 356066f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 3561ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev->ifindex != ifindex) 356270ceb4f5SYOSHIFUJI Hideaki continue; 35632b2450caSDavid Ahern if (!(rt->fib6_flags & RTF_ROUTEINFO) || 3564bdf00467SDavid Ahern !rt->fib6_nh.fib_nh_gw_family) 356570ceb4f5SYOSHIFUJI Hideaki continue; 3566ad1601aeSDavid Ahern if (!ipv6_addr_equal(&rt->fib6_nh.fib_nh_gw6, gwaddr)) 356770ceb4f5SYOSHIFUJI Hideaki continue; 3568e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 3569e873e4b9SWei Wang continue; 357070ceb4f5SYOSHIFUJI Hideaki break; 357170ceb4f5SYOSHIFUJI Hideaki } 357270ceb4f5SYOSHIFUJI Hideaki out: 357366f5d6ceSWei Wang rcu_read_unlock(); 357470ceb4f5SYOSHIFUJI Hideaki return rt; 357570ceb4f5SYOSHIFUJI Hideaki } 357670ceb4f5SYOSHIFUJI Hideaki 35778d1c802bSDavid Ahern static struct fib6_info *rt6_add_route_info(struct net *net, 3578b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3579830218c1SDavid Ahern const struct in6_addr *gwaddr, 3580830218c1SDavid Ahern struct net_device *dev, 358195c96174SEric Dumazet unsigned int pref) 358270ceb4f5SYOSHIFUJI Hideaki { 358386872cb5SThomas Graf struct fib6_config cfg = { 3584238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 3585830218c1SDavid Ahern .fc_ifindex = dev->ifindex, 358686872cb5SThomas Graf .fc_dst_len = prefixlen, 358786872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO | 358886872cb5SThomas Graf RTF_UP | RTF_PREF(pref), 3589b91d5329SXin Long .fc_protocol = RTPROT_RA, 3590e8478e80SDavid Ahern .fc_type = RTN_UNICAST, 359115e47304SEric W. Biederman .fc_nlinfo.portid = 0, 3592efa2cea0SDaniel Lezcano .fc_nlinfo.nlh = NULL, 3593efa2cea0SDaniel Lezcano .fc_nlinfo.nl_net = net, 359486872cb5SThomas Graf }; 359570ceb4f5SYOSHIFUJI Hideaki 3596830218c1SDavid Ahern cfg.fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO, 35974e3fd7a0SAlexey Dobriyan cfg.fc_dst = *prefix; 35984e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 359986872cb5SThomas Graf 3600e317da96SYOSHIFUJI Hideaki /* We should treat it as a default route if prefix length is 0. */ 3601e317da96SYOSHIFUJI Hideaki if (!prefixlen) 360286872cb5SThomas Graf cfg.fc_flags |= RTF_DEFAULT; 360370ceb4f5SYOSHIFUJI Hideaki 3604acb54e3cSDavid Ahern ip6_route_add(&cfg, GFP_ATOMIC, NULL); 360570ceb4f5SYOSHIFUJI Hideaki 3606830218c1SDavid Ahern return rt6_get_route_info(net, prefix, prefixlen, gwaddr, dev); 360770ceb4f5SYOSHIFUJI Hideaki } 360870ceb4f5SYOSHIFUJI Hideaki #endif 360970ceb4f5SYOSHIFUJI Hideaki 36108d1c802bSDavid Ahern struct fib6_info *rt6_get_dflt_router(struct net *net, 3611afb1d4b5SDavid Ahern const struct in6_addr *addr, 3612afb1d4b5SDavid Ahern struct net_device *dev) 36131da177e4SLinus Torvalds { 3614830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT; 36158d1c802bSDavid Ahern struct fib6_info *rt; 3616c71099acSThomas Graf struct fib6_table *table; 36171da177e4SLinus Torvalds 3618afb1d4b5SDavid Ahern table = fib6_get_table(net, tb_id); 361938308473SDavid S. Miller if (!table) 3620c71099acSThomas Graf return NULL; 36211da177e4SLinus Torvalds 362266f5d6ceSWei Wang rcu_read_lock(); 362366f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 3624ad1601aeSDavid Ahern struct fib6_nh *nh = &rt->fib6_nh; 3625ad1601aeSDavid Ahern 3626ad1601aeSDavid Ahern if (dev == nh->fib_nh_dev && 362793c2fb25SDavid Ahern ((rt->fib6_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) && 3628ad1601aeSDavid Ahern ipv6_addr_equal(&nh->fib_nh_gw6, addr)) 36291da177e4SLinus Torvalds break; 36301da177e4SLinus Torvalds } 3631e873e4b9SWei Wang if (rt && !fib6_info_hold_safe(rt)) 3632e873e4b9SWei Wang rt = NULL; 363366f5d6ceSWei Wang rcu_read_unlock(); 36341da177e4SLinus Torvalds return rt; 36351da177e4SLinus Torvalds } 36361da177e4SLinus Torvalds 36378d1c802bSDavid Ahern struct fib6_info *rt6_add_dflt_router(struct net *net, 3638afb1d4b5SDavid Ahern const struct in6_addr *gwaddr, 3639ebacaaa0SYOSHIFUJI Hideaki struct net_device *dev, 3640ebacaaa0SYOSHIFUJI Hideaki unsigned int pref) 36411da177e4SLinus Torvalds { 364286872cb5SThomas Graf struct fib6_config cfg = { 3643ca254490SDavid Ahern .fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT, 3644238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 364586872cb5SThomas Graf .fc_ifindex = dev->ifindex, 364686872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT | 364786872cb5SThomas Graf RTF_UP | RTF_EXPIRES | RTF_PREF(pref), 3648b91d5329SXin Long .fc_protocol = RTPROT_RA, 3649e8478e80SDavid Ahern .fc_type = RTN_UNICAST, 365015e47304SEric W. Biederman .fc_nlinfo.portid = 0, 36515578689aSDaniel Lezcano .fc_nlinfo.nlh = NULL, 3652afb1d4b5SDavid Ahern .fc_nlinfo.nl_net = net, 365386872cb5SThomas Graf }; 36541da177e4SLinus Torvalds 36554e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 36561da177e4SLinus Torvalds 3657acb54e3cSDavid Ahern if (!ip6_route_add(&cfg, GFP_ATOMIC, NULL)) { 3658830218c1SDavid Ahern struct fib6_table *table; 3659830218c1SDavid Ahern 3660830218c1SDavid Ahern table = fib6_get_table(dev_net(dev), cfg.fc_table); 3661830218c1SDavid Ahern if (table) 3662830218c1SDavid Ahern table->flags |= RT6_TABLE_HAS_DFLT_ROUTER; 3663830218c1SDavid Ahern } 36641da177e4SLinus Torvalds 3665afb1d4b5SDavid Ahern return rt6_get_dflt_router(net, gwaddr, dev); 36661da177e4SLinus Torvalds } 36671da177e4SLinus Torvalds 3668afb1d4b5SDavid Ahern static void __rt6_purge_dflt_routers(struct net *net, 3669afb1d4b5SDavid Ahern struct fib6_table *table) 36701da177e4SLinus Torvalds { 36718d1c802bSDavid Ahern struct fib6_info *rt; 36721da177e4SLinus Torvalds 36731da177e4SLinus Torvalds restart: 367466f5d6ceSWei Wang rcu_read_lock(); 367566f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 3676dcd1f572SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 3677dcd1f572SDavid Ahern struct inet6_dev *idev = dev ? __in6_dev_get(dev) : NULL; 3678dcd1f572SDavid Ahern 367993c2fb25SDavid Ahern if (rt->fib6_flags & (RTF_DEFAULT | RTF_ADDRCONF) && 3680e873e4b9SWei Wang (!idev || idev->cnf.accept_ra != 2) && 3681e873e4b9SWei Wang fib6_info_hold_safe(rt)) { 368266f5d6ceSWei Wang rcu_read_unlock(); 3683afb1d4b5SDavid Ahern ip6_del_rt(net, rt); 36841da177e4SLinus Torvalds goto restart; 36851da177e4SLinus Torvalds } 36861da177e4SLinus Torvalds } 368766f5d6ceSWei Wang rcu_read_unlock(); 3688830218c1SDavid Ahern 3689830218c1SDavid Ahern table->flags &= ~RT6_TABLE_HAS_DFLT_ROUTER; 3690830218c1SDavid Ahern } 3691830218c1SDavid Ahern 3692830218c1SDavid Ahern void rt6_purge_dflt_routers(struct net *net) 3693830218c1SDavid Ahern { 3694830218c1SDavid Ahern struct fib6_table *table; 3695830218c1SDavid Ahern struct hlist_head *head; 3696830218c1SDavid Ahern unsigned int h; 3697830218c1SDavid Ahern 3698830218c1SDavid Ahern rcu_read_lock(); 3699830218c1SDavid Ahern 3700830218c1SDavid Ahern for (h = 0; h < FIB6_TABLE_HASHSZ; h++) { 3701830218c1SDavid Ahern head = &net->ipv6.fib_table_hash[h]; 3702830218c1SDavid Ahern hlist_for_each_entry_rcu(table, head, tb6_hlist) { 3703830218c1SDavid Ahern if (table->flags & RT6_TABLE_HAS_DFLT_ROUTER) 3704afb1d4b5SDavid Ahern __rt6_purge_dflt_routers(net, table); 3705830218c1SDavid Ahern } 3706830218c1SDavid Ahern } 3707830218c1SDavid Ahern 3708830218c1SDavid Ahern rcu_read_unlock(); 37091da177e4SLinus Torvalds } 37101da177e4SLinus Torvalds 37115578689aSDaniel Lezcano static void rtmsg_to_fib6_config(struct net *net, 37125578689aSDaniel Lezcano struct in6_rtmsg *rtmsg, 371386872cb5SThomas Graf struct fib6_config *cfg) 371486872cb5SThomas Graf { 37158823a3acSMaciej Żenczykowski *cfg = (struct fib6_config){ 37168823a3acSMaciej Żenczykowski .fc_table = l3mdev_fib_table_by_index(net, rtmsg->rtmsg_ifindex) ? 37178823a3acSMaciej Żenczykowski : RT6_TABLE_MAIN, 37188823a3acSMaciej Żenczykowski .fc_ifindex = rtmsg->rtmsg_ifindex, 371967f69513SDavid Ahern .fc_metric = rtmsg->rtmsg_metric ? : IP6_RT_PRIO_USER, 37208823a3acSMaciej Żenczykowski .fc_expires = rtmsg->rtmsg_info, 37218823a3acSMaciej Żenczykowski .fc_dst_len = rtmsg->rtmsg_dst_len, 37228823a3acSMaciej Żenczykowski .fc_src_len = rtmsg->rtmsg_src_len, 37238823a3acSMaciej Żenczykowski .fc_flags = rtmsg->rtmsg_flags, 37248823a3acSMaciej Żenczykowski .fc_type = rtmsg->rtmsg_type, 372586872cb5SThomas Graf 37268823a3acSMaciej Żenczykowski .fc_nlinfo.nl_net = net, 372786872cb5SThomas Graf 37288823a3acSMaciej Żenczykowski .fc_dst = rtmsg->rtmsg_dst, 37298823a3acSMaciej Żenczykowski .fc_src = rtmsg->rtmsg_src, 37308823a3acSMaciej Żenczykowski .fc_gateway = rtmsg->rtmsg_gateway, 37318823a3acSMaciej Żenczykowski }; 373286872cb5SThomas Graf } 373386872cb5SThomas Graf 37345578689aSDaniel Lezcano int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg) 37351da177e4SLinus Torvalds { 373686872cb5SThomas Graf struct fib6_config cfg; 37371da177e4SLinus Torvalds struct in6_rtmsg rtmsg; 37381da177e4SLinus Torvalds int err; 37391da177e4SLinus Torvalds 37401da177e4SLinus Torvalds switch (cmd) { 37411da177e4SLinus Torvalds case SIOCADDRT: /* Add a route */ 37421da177e4SLinus Torvalds case SIOCDELRT: /* Delete a route */ 3743af31f412SEric W. Biederman if (!ns_capable(net->user_ns, CAP_NET_ADMIN)) 37441da177e4SLinus Torvalds return -EPERM; 37451da177e4SLinus Torvalds err = copy_from_user(&rtmsg, arg, 37461da177e4SLinus Torvalds sizeof(struct in6_rtmsg)); 37471da177e4SLinus Torvalds if (err) 37481da177e4SLinus Torvalds return -EFAULT; 37491da177e4SLinus Torvalds 37505578689aSDaniel Lezcano rtmsg_to_fib6_config(net, &rtmsg, &cfg); 375186872cb5SThomas Graf 37521da177e4SLinus Torvalds rtnl_lock(); 37531da177e4SLinus Torvalds switch (cmd) { 37541da177e4SLinus Torvalds case SIOCADDRT: 3755acb54e3cSDavid Ahern err = ip6_route_add(&cfg, GFP_KERNEL, NULL); 37561da177e4SLinus Torvalds break; 37571da177e4SLinus Torvalds case SIOCDELRT: 3758333c4301SDavid Ahern err = ip6_route_del(&cfg, NULL); 37591da177e4SLinus Torvalds break; 37601da177e4SLinus Torvalds default: 37611da177e4SLinus Torvalds err = -EINVAL; 37621da177e4SLinus Torvalds } 37631da177e4SLinus Torvalds rtnl_unlock(); 37641da177e4SLinus Torvalds 37651da177e4SLinus Torvalds return err; 37663ff50b79SStephen Hemminger } 37671da177e4SLinus Torvalds 37681da177e4SLinus Torvalds return -EINVAL; 37691da177e4SLinus Torvalds } 37701da177e4SLinus Torvalds 37711da177e4SLinus Torvalds /* 37721da177e4SLinus Torvalds * Drop the packet on the floor 37731da177e4SLinus Torvalds */ 37741da177e4SLinus Torvalds 3775d5fdd6baSBrian Haley static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes) 37761da177e4SLinus Torvalds { 3777adf30907SEric Dumazet struct dst_entry *dst = skb_dst(skb); 37781d3fd8a1SStephen Suryaputra struct net *net = dev_net(dst->dev); 37791d3fd8a1SStephen Suryaputra struct inet6_dev *idev; 37801d3fd8a1SStephen Suryaputra int type; 37811d3fd8a1SStephen Suryaputra 37821d3fd8a1SStephen Suryaputra if (netif_is_l3_master(skb->dev) && 37831d3fd8a1SStephen Suryaputra dst->dev == net->loopback_dev) 37841d3fd8a1SStephen Suryaputra idev = __in6_dev_get_safely(dev_get_by_index_rcu(net, IP6CB(skb)->iif)); 37851d3fd8a1SStephen Suryaputra else 37861d3fd8a1SStephen Suryaputra idev = ip6_dst_idev(dst); 37871d3fd8a1SStephen Suryaputra 3788612f09e8SYOSHIFUJI Hideaki switch (ipstats_mib_noroutes) { 3789612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_INNOROUTES: 37900660e03fSArnaldo Carvalho de Melo type = ipv6_addr_type(&ipv6_hdr(skb)->daddr); 379145bb0060SUlrich Weber if (type == IPV6_ADDR_ANY) { 37921d3fd8a1SStephen Suryaputra IP6_INC_STATS(net, idev, IPSTATS_MIB_INADDRERRORS); 3793612f09e8SYOSHIFUJI Hideaki break; 3794612f09e8SYOSHIFUJI Hideaki } 3795612f09e8SYOSHIFUJI Hideaki /* FALLTHROUGH */ 3796612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_OUTNOROUTES: 37971d3fd8a1SStephen Suryaputra IP6_INC_STATS(net, idev, ipstats_mib_noroutes); 3798612f09e8SYOSHIFUJI Hideaki break; 3799612f09e8SYOSHIFUJI Hideaki } 38001d3fd8a1SStephen Suryaputra 38011d3fd8a1SStephen Suryaputra /* Start over by dropping the dst for l3mdev case */ 38021d3fd8a1SStephen Suryaputra if (netif_is_l3_master(skb->dev)) 38031d3fd8a1SStephen Suryaputra skb_dst_drop(skb); 38041d3fd8a1SStephen Suryaputra 38053ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0); 38061da177e4SLinus Torvalds kfree_skb(skb); 38071da177e4SLinus Torvalds return 0; 38081da177e4SLinus Torvalds } 38091da177e4SLinus Torvalds 38109ce8ade0SThomas Graf static int ip6_pkt_discard(struct sk_buff *skb) 38119ce8ade0SThomas Graf { 3812612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES); 38139ce8ade0SThomas Graf } 38149ce8ade0SThomas Graf 3815ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb) 38161da177e4SLinus Torvalds { 3817adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3818612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES); 38191da177e4SLinus Torvalds } 38201da177e4SLinus Torvalds 38219ce8ade0SThomas Graf static int ip6_pkt_prohibit(struct sk_buff *skb) 38229ce8ade0SThomas Graf { 3823612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES); 38249ce8ade0SThomas Graf } 38259ce8ade0SThomas Graf 3826ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb) 38279ce8ade0SThomas Graf { 3828adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3829612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES); 38309ce8ade0SThomas Graf } 38319ce8ade0SThomas Graf 38321da177e4SLinus Torvalds /* 38331da177e4SLinus Torvalds * Allocate a dst for local (unicast / anycast) address. 38341da177e4SLinus Torvalds */ 38351da177e4SLinus Torvalds 3836360a9887SDavid Ahern struct fib6_info *addrconf_f6i_alloc(struct net *net, 3837afb1d4b5SDavid Ahern struct inet6_dev *idev, 38381da177e4SLinus Torvalds const struct in6_addr *addr, 3839acb54e3cSDavid Ahern bool anycast, gfp_t gfp_flags) 38401da177e4SLinus Torvalds { 3841c7a1ce39SDavid Ahern struct fib6_config cfg = { 3842c7a1ce39SDavid Ahern .fc_table = l3mdev_fib_table(idev->dev) ? : RT6_TABLE_LOCAL, 3843c7a1ce39SDavid Ahern .fc_ifindex = idev->dev->ifindex, 3844c7a1ce39SDavid Ahern .fc_flags = RTF_UP | RTF_ADDRCONF | RTF_NONEXTHOP, 3845c7a1ce39SDavid Ahern .fc_dst = *addr, 3846c7a1ce39SDavid Ahern .fc_dst_len = 128, 3847c7a1ce39SDavid Ahern .fc_protocol = RTPROT_KERNEL, 3848c7a1ce39SDavid Ahern .fc_nlinfo.nl_net = net, 3849c7a1ce39SDavid Ahern .fc_ignore_dev_down = true, 3850c7a1ce39SDavid Ahern }; 38515f02ce24SDavid Ahern 3852e8478e80SDavid Ahern if (anycast) { 3853c7a1ce39SDavid Ahern cfg.fc_type = RTN_ANYCAST; 3854c7a1ce39SDavid Ahern cfg.fc_flags |= RTF_ANYCAST; 3855e8478e80SDavid Ahern } else { 3856c7a1ce39SDavid Ahern cfg.fc_type = RTN_LOCAL; 3857c7a1ce39SDavid Ahern cfg.fc_flags |= RTF_LOCAL; 3858e8478e80SDavid Ahern } 38591da177e4SLinus Torvalds 3860c7a1ce39SDavid Ahern return ip6_route_info_create(&cfg, gfp_flags, NULL); 38611da177e4SLinus Torvalds } 38621da177e4SLinus Torvalds 3863c3968a85SDaniel Walter /* remove deleted ip from prefsrc entries */ 3864c3968a85SDaniel Walter struct arg_dev_net_ip { 3865c3968a85SDaniel Walter struct net_device *dev; 3866c3968a85SDaniel Walter struct net *net; 3867c3968a85SDaniel Walter struct in6_addr *addr; 3868c3968a85SDaniel Walter }; 3869c3968a85SDaniel Walter 38708d1c802bSDavid Ahern static int fib6_remove_prefsrc(struct fib6_info *rt, void *arg) 3871c3968a85SDaniel Walter { 3872c3968a85SDaniel Walter struct net_device *dev = ((struct arg_dev_net_ip *)arg)->dev; 3873c3968a85SDaniel Walter struct net *net = ((struct arg_dev_net_ip *)arg)->net; 3874c3968a85SDaniel Walter struct in6_addr *addr = ((struct arg_dev_net_ip *)arg)->addr; 3875c3968a85SDaniel Walter 3876ad1601aeSDavid Ahern if (((void *)rt->fib6_nh.fib_nh_dev == dev || !dev) && 3877421842edSDavid Ahern rt != net->ipv6.fib6_null_entry && 387893c2fb25SDavid Ahern ipv6_addr_equal(addr, &rt->fib6_prefsrc.addr)) { 387960006a48SWei Wang spin_lock_bh(&rt6_exception_lock); 3880c3968a85SDaniel Walter /* remove prefsrc entry */ 388193c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 0; 388260006a48SWei Wang spin_unlock_bh(&rt6_exception_lock); 3883c3968a85SDaniel Walter } 3884c3968a85SDaniel Walter return 0; 3885c3968a85SDaniel Walter } 3886c3968a85SDaniel Walter 3887c3968a85SDaniel Walter void rt6_remove_prefsrc(struct inet6_ifaddr *ifp) 3888c3968a85SDaniel Walter { 3889c3968a85SDaniel Walter struct net *net = dev_net(ifp->idev->dev); 3890c3968a85SDaniel Walter struct arg_dev_net_ip adni = { 3891c3968a85SDaniel Walter .dev = ifp->idev->dev, 3892c3968a85SDaniel Walter .net = net, 3893c3968a85SDaniel Walter .addr = &ifp->addr, 3894c3968a85SDaniel Walter }; 38950c3584d5SLi RongQing fib6_clean_all(net, fib6_remove_prefsrc, &adni); 3896c3968a85SDaniel Walter } 3897c3968a85SDaniel Walter 38982b2450caSDavid Ahern #define RTF_RA_ROUTER (RTF_ADDRCONF | RTF_DEFAULT) 3899be7a010dSDuan Jiong 3900be7a010dSDuan Jiong /* Remove routers and update dst entries when gateway turn into host. */ 39018d1c802bSDavid Ahern static int fib6_clean_tohost(struct fib6_info *rt, void *arg) 3902be7a010dSDuan Jiong { 3903be7a010dSDuan Jiong struct in6_addr *gateway = (struct in6_addr *)arg; 3904be7a010dSDuan Jiong 390593c2fb25SDavid Ahern if (((rt->fib6_flags & RTF_RA_ROUTER) == RTF_RA_ROUTER) && 3906bdf00467SDavid Ahern rt->fib6_nh.fib_nh_gw_family && 3907ad1601aeSDavid Ahern ipv6_addr_equal(gateway, &rt->fib6_nh.fib_nh_gw6)) { 3908be7a010dSDuan Jiong return -1; 3909be7a010dSDuan Jiong } 3910b16cb459SWei Wang 3911b16cb459SWei Wang /* Further clean up cached routes in exception table. 3912b16cb459SWei Wang * This is needed because cached route may have a different 3913b16cb459SWei Wang * gateway than its 'parent' in the case of an ip redirect. 3914b16cb459SWei Wang */ 3915b16cb459SWei Wang rt6_exceptions_clean_tohost(rt, gateway); 3916b16cb459SWei Wang 3917be7a010dSDuan Jiong return 0; 3918be7a010dSDuan Jiong } 3919be7a010dSDuan Jiong 3920be7a010dSDuan Jiong void rt6_clean_tohost(struct net *net, struct in6_addr *gateway) 3921be7a010dSDuan Jiong { 3922be7a010dSDuan Jiong fib6_clean_all(net, fib6_clean_tohost, gateway); 3923be7a010dSDuan Jiong } 3924be7a010dSDuan Jiong 39252127d95aSIdo Schimmel struct arg_netdev_event { 39262127d95aSIdo Schimmel const struct net_device *dev; 39274c981e28SIdo Schimmel union { 3928ecc5663cSDavid Ahern unsigned char nh_flags; 39294c981e28SIdo Schimmel unsigned long event; 39304c981e28SIdo Schimmel }; 39312127d95aSIdo Schimmel }; 39322127d95aSIdo Schimmel 39338d1c802bSDavid Ahern static struct fib6_info *rt6_multipath_first_sibling(const struct fib6_info *rt) 3934d7dedee1SIdo Schimmel { 39358d1c802bSDavid Ahern struct fib6_info *iter; 3936d7dedee1SIdo Schimmel struct fib6_node *fn; 3937d7dedee1SIdo Schimmel 393893c2fb25SDavid Ahern fn = rcu_dereference_protected(rt->fib6_node, 393993c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3940d7dedee1SIdo Schimmel iter = rcu_dereference_protected(fn->leaf, 394193c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3942d7dedee1SIdo Schimmel while (iter) { 394393c2fb25SDavid Ahern if (iter->fib6_metric == rt->fib6_metric && 394433bd5ac5SDavid Ahern rt6_qualify_for_ecmp(iter)) 3945d7dedee1SIdo Schimmel return iter; 39468fb11a9aSDavid Ahern iter = rcu_dereference_protected(iter->fib6_next, 394793c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3948d7dedee1SIdo Schimmel } 3949d7dedee1SIdo Schimmel 3950d7dedee1SIdo Schimmel return NULL; 3951d7dedee1SIdo Schimmel } 3952d7dedee1SIdo Schimmel 39538d1c802bSDavid Ahern static bool rt6_is_dead(const struct fib6_info *rt) 3954d7dedee1SIdo Schimmel { 3955ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_flags & RTNH_F_DEAD || 3956ad1601aeSDavid Ahern (rt->fib6_nh.fib_nh_flags & RTNH_F_LINKDOWN && 3957ad1601aeSDavid Ahern ip6_ignore_linkdown(rt->fib6_nh.fib_nh_dev))) 3958d7dedee1SIdo Schimmel return true; 3959d7dedee1SIdo Schimmel 3960d7dedee1SIdo Schimmel return false; 3961d7dedee1SIdo Schimmel } 3962d7dedee1SIdo Schimmel 39638d1c802bSDavid Ahern static int rt6_multipath_total_weight(const struct fib6_info *rt) 3964d7dedee1SIdo Schimmel { 39658d1c802bSDavid Ahern struct fib6_info *iter; 3966d7dedee1SIdo Schimmel int total = 0; 3967d7dedee1SIdo Schimmel 3968d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) 3969ad1601aeSDavid Ahern total += rt->fib6_nh.fib_nh_weight; 3970d7dedee1SIdo Schimmel 397193c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) { 3972d7dedee1SIdo Schimmel if (!rt6_is_dead(iter)) 3973ad1601aeSDavid Ahern total += iter->fib6_nh.fib_nh_weight; 3974d7dedee1SIdo Schimmel } 3975d7dedee1SIdo Schimmel 3976d7dedee1SIdo Schimmel return total; 3977d7dedee1SIdo Schimmel } 3978d7dedee1SIdo Schimmel 39798d1c802bSDavid Ahern static void rt6_upper_bound_set(struct fib6_info *rt, int *weight, int total) 3980d7dedee1SIdo Schimmel { 3981d7dedee1SIdo Schimmel int upper_bound = -1; 3982d7dedee1SIdo Schimmel 3983d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) { 3984ad1601aeSDavid Ahern *weight += rt->fib6_nh.fib_nh_weight; 3985d7dedee1SIdo Schimmel upper_bound = DIV_ROUND_CLOSEST_ULL((u64) (*weight) << 31, 3986d7dedee1SIdo Schimmel total) - 1; 3987d7dedee1SIdo Schimmel } 3988ad1601aeSDavid Ahern atomic_set(&rt->fib6_nh.fib_nh_upper_bound, upper_bound); 3989d7dedee1SIdo Schimmel } 3990d7dedee1SIdo Schimmel 39918d1c802bSDavid Ahern static void rt6_multipath_upper_bound_set(struct fib6_info *rt, int total) 3992d7dedee1SIdo Schimmel { 39938d1c802bSDavid Ahern struct fib6_info *iter; 3994d7dedee1SIdo Schimmel int weight = 0; 3995d7dedee1SIdo Schimmel 3996d7dedee1SIdo Schimmel rt6_upper_bound_set(rt, &weight, total); 3997d7dedee1SIdo Schimmel 399893c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 3999d7dedee1SIdo Schimmel rt6_upper_bound_set(iter, &weight, total); 4000d7dedee1SIdo Schimmel } 4001d7dedee1SIdo Schimmel 40028d1c802bSDavid Ahern void rt6_multipath_rebalance(struct fib6_info *rt) 4003d7dedee1SIdo Schimmel { 40048d1c802bSDavid Ahern struct fib6_info *first; 4005d7dedee1SIdo Schimmel int total; 4006d7dedee1SIdo Schimmel 4007d7dedee1SIdo Schimmel /* In case the entire multipath route was marked for flushing, 4008d7dedee1SIdo Schimmel * then there is no need to rebalance upon the removal of every 4009d7dedee1SIdo Schimmel * sibling route. 4010d7dedee1SIdo Schimmel */ 401193c2fb25SDavid Ahern if (!rt->fib6_nsiblings || rt->should_flush) 4012d7dedee1SIdo Schimmel return; 4013d7dedee1SIdo Schimmel 4014d7dedee1SIdo Schimmel /* During lookup routes are evaluated in order, so we need to 4015d7dedee1SIdo Schimmel * make sure upper bounds are assigned from the first sibling 4016d7dedee1SIdo Schimmel * onwards. 4017d7dedee1SIdo Schimmel */ 4018d7dedee1SIdo Schimmel first = rt6_multipath_first_sibling(rt); 4019d7dedee1SIdo Schimmel if (WARN_ON_ONCE(!first)) 4020d7dedee1SIdo Schimmel return; 4021d7dedee1SIdo Schimmel 4022d7dedee1SIdo Schimmel total = rt6_multipath_total_weight(first); 4023d7dedee1SIdo Schimmel rt6_multipath_upper_bound_set(first, total); 4024d7dedee1SIdo Schimmel } 4025d7dedee1SIdo Schimmel 40268d1c802bSDavid Ahern static int fib6_ifup(struct fib6_info *rt, void *p_arg) 40272127d95aSIdo Schimmel { 40282127d95aSIdo Schimmel const struct arg_netdev_event *arg = p_arg; 40297aef6859SDavid Ahern struct net *net = dev_net(arg->dev); 40302127d95aSIdo Schimmel 4031ad1601aeSDavid Ahern if (rt != net->ipv6.fib6_null_entry && 4032ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_dev == arg->dev) { 4033ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags &= ~arg->nh_flags; 40347aef6859SDavid Ahern fib6_update_sernum_upto_root(net, rt); 4035d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 40361de178edSIdo Schimmel } 40372127d95aSIdo Schimmel 40382127d95aSIdo Schimmel return 0; 40392127d95aSIdo Schimmel } 40402127d95aSIdo Schimmel 4041ecc5663cSDavid Ahern void rt6_sync_up(struct net_device *dev, unsigned char nh_flags) 40422127d95aSIdo Schimmel { 40432127d95aSIdo Schimmel struct arg_netdev_event arg = { 40442127d95aSIdo Schimmel .dev = dev, 40456802f3adSIdo Schimmel { 40462127d95aSIdo Schimmel .nh_flags = nh_flags, 40476802f3adSIdo Schimmel }, 40482127d95aSIdo Schimmel }; 40492127d95aSIdo Schimmel 40502127d95aSIdo Schimmel if (nh_flags & RTNH_F_DEAD && netif_carrier_ok(dev)) 40512127d95aSIdo Schimmel arg.nh_flags |= RTNH_F_LINKDOWN; 40522127d95aSIdo Schimmel 40532127d95aSIdo Schimmel fib6_clean_all(dev_net(dev), fib6_ifup, &arg); 40542127d95aSIdo Schimmel } 40552127d95aSIdo Schimmel 40568d1c802bSDavid Ahern static bool rt6_multipath_uses_dev(const struct fib6_info *rt, 40571de178edSIdo Schimmel const struct net_device *dev) 40581de178edSIdo Schimmel { 40598d1c802bSDavid Ahern struct fib6_info *iter; 40601de178edSIdo Schimmel 4061ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == dev) 40621de178edSIdo Schimmel return true; 406393c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 4064ad1601aeSDavid Ahern if (iter->fib6_nh.fib_nh_dev == dev) 40651de178edSIdo Schimmel return true; 40661de178edSIdo Schimmel 40671de178edSIdo Schimmel return false; 40681de178edSIdo Schimmel } 40691de178edSIdo Schimmel 40708d1c802bSDavid Ahern static void rt6_multipath_flush(struct fib6_info *rt) 40711de178edSIdo Schimmel { 40728d1c802bSDavid Ahern struct fib6_info *iter; 40731de178edSIdo Schimmel 40741de178edSIdo Schimmel rt->should_flush = 1; 407593c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 40761de178edSIdo Schimmel iter->should_flush = 1; 40771de178edSIdo Schimmel } 40781de178edSIdo Schimmel 40798d1c802bSDavid Ahern static unsigned int rt6_multipath_dead_count(const struct fib6_info *rt, 40801de178edSIdo Schimmel const struct net_device *down_dev) 40811de178edSIdo Schimmel { 40828d1c802bSDavid Ahern struct fib6_info *iter; 40831de178edSIdo Schimmel unsigned int dead = 0; 40841de178edSIdo Schimmel 4085ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == down_dev || 4086ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags & RTNH_F_DEAD) 40871de178edSIdo Schimmel dead++; 408893c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 4089ad1601aeSDavid Ahern if (iter->fib6_nh.fib_nh_dev == down_dev || 4090ad1601aeSDavid Ahern iter->fib6_nh.fib_nh_flags & RTNH_F_DEAD) 40911de178edSIdo Schimmel dead++; 40921de178edSIdo Schimmel 40931de178edSIdo Schimmel return dead; 40941de178edSIdo Schimmel } 40951de178edSIdo Schimmel 40968d1c802bSDavid Ahern static void rt6_multipath_nh_flags_set(struct fib6_info *rt, 40971de178edSIdo Schimmel const struct net_device *dev, 4098ecc5663cSDavid Ahern unsigned char nh_flags) 40991de178edSIdo Schimmel { 41008d1c802bSDavid Ahern struct fib6_info *iter; 41011de178edSIdo Schimmel 4102ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == dev) 4103ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags |= nh_flags; 410493c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 4105ad1601aeSDavid Ahern if (iter->fib6_nh.fib_nh_dev == dev) 4106ad1601aeSDavid Ahern iter->fib6_nh.fib_nh_flags |= nh_flags; 41071de178edSIdo Schimmel } 41081de178edSIdo Schimmel 4109a1a22c12SDavid Ahern /* called with write lock held for table with rt */ 41108d1c802bSDavid Ahern static int fib6_ifdown(struct fib6_info *rt, void *p_arg) 41111da177e4SLinus Torvalds { 41124c981e28SIdo Schimmel const struct arg_netdev_event *arg = p_arg; 41134c981e28SIdo Schimmel const struct net_device *dev = arg->dev; 41147aef6859SDavid Ahern struct net *net = dev_net(dev); 41158ed67789SDaniel Lezcano 4116421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 411727c6fa73SIdo Schimmel return 0; 411827c6fa73SIdo Schimmel 411927c6fa73SIdo Schimmel switch (arg->event) { 412027c6fa73SIdo Schimmel case NETDEV_UNREGISTER: 4121ad1601aeSDavid Ahern return rt->fib6_nh.fib_nh_dev == dev ? -1 : 0; 412227c6fa73SIdo Schimmel case NETDEV_DOWN: 41231de178edSIdo Schimmel if (rt->should_flush) 412427c6fa73SIdo Schimmel return -1; 412593c2fb25SDavid Ahern if (!rt->fib6_nsiblings) 4126ad1601aeSDavid Ahern return rt->fib6_nh.fib_nh_dev == dev ? -1 : 0; 41271de178edSIdo Schimmel if (rt6_multipath_uses_dev(rt, dev)) { 41281de178edSIdo Schimmel unsigned int count; 41291de178edSIdo Schimmel 41301de178edSIdo Schimmel count = rt6_multipath_dead_count(rt, dev); 413193c2fb25SDavid Ahern if (rt->fib6_nsiblings + 1 == count) { 41321de178edSIdo Schimmel rt6_multipath_flush(rt); 41331de178edSIdo Schimmel return -1; 41341de178edSIdo Schimmel } 41351de178edSIdo Schimmel rt6_multipath_nh_flags_set(rt, dev, RTNH_F_DEAD | 41361de178edSIdo Schimmel RTNH_F_LINKDOWN); 41377aef6859SDavid Ahern fib6_update_sernum(net, rt); 4138d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 41391de178edSIdo Schimmel } 41401de178edSIdo Schimmel return -2; 414127c6fa73SIdo Schimmel case NETDEV_CHANGE: 4142ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev != dev || 414393c2fb25SDavid Ahern rt->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) 414427c6fa73SIdo Schimmel break; 4145ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags |= RTNH_F_LINKDOWN; 4146d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 414727c6fa73SIdo Schimmel break; 41482b241361SIdo Schimmel } 4149c159d30cSDavid S. Miller 41501da177e4SLinus Torvalds return 0; 41511da177e4SLinus Torvalds } 41521da177e4SLinus Torvalds 415327c6fa73SIdo Schimmel void rt6_sync_down_dev(struct net_device *dev, unsigned long event) 41541da177e4SLinus Torvalds { 41554c981e28SIdo Schimmel struct arg_netdev_event arg = { 41568ed67789SDaniel Lezcano .dev = dev, 41576802f3adSIdo Schimmel { 41584c981e28SIdo Schimmel .event = event, 41596802f3adSIdo Schimmel }, 41608ed67789SDaniel Lezcano }; 41617c6bb7d2SDavid Ahern struct net *net = dev_net(dev); 41628ed67789SDaniel Lezcano 41637c6bb7d2SDavid Ahern if (net->ipv6.sysctl.skip_notify_on_dev_down) 41647c6bb7d2SDavid Ahern fib6_clean_all_skip_notify(net, fib6_ifdown, &arg); 41657c6bb7d2SDavid Ahern else 41667c6bb7d2SDavid Ahern fib6_clean_all(net, fib6_ifdown, &arg); 41674c981e28SIdo Schimmel } 41684c981e28SIdo Schimmel 41694c981e28SIdo Schimmel void rt6_disable_ip(struct net_device *dev, unsigned long event) 41704c981e28SIdo Schimmel { 41714c981e28SIdo Schimmel rt6_sync_down_dev(dev, event); 41724c981e28SIdo Schimmel rt6_uncached_list_flush_dev(dev_net(dev), dev); 41734c981e28SIdo Schimmel neigh_ifdown(&nd_tbl, dev); 41741da177e4SLinus Torvalds } 41751da177e4SLinus Torvalds 417695c96174SEric Dumazet struct rt6_mtu_change_arg { 41771da177e4SLinus Torvalds struct net_device *dev; 417895c96174SEric Dumazet unsigned int mtu; 41791da177e4SLinus Torvalds }; 41801da177e4SLinus Torvalds 41818d1c802bSDavid Ahern static int rt6_mtu_change_route(struct fib6_info *rt, void *p_arg) 41821da177e4SLinus Torvalds { 41831da177e4SLinus Torvalds struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg; 41841da177e4SLinus Torvalds struct inet6_dev *idev; 41851da177e4SLinus Torvalds 41861da177e4SLinus Torvalds /* In IPv6 pmtu discovery is not optional, 41871da177e4SLinus Torvalds so that RTAX_MTU lock cannot disable it. 41881da177e4SLinus Torvalds We still use this lock to block changes 41891da177e4SLinus Torvalds caused by addrconf/ndisc. 41901da177e4SLinus Torvalds */ 41911da177e4SLinus Torvalds 41921da177e4SLinus Torvalds idev = __in6_dev_get(arg->dev); 419338308473SDavid S. Miller if (!idev) 41941da177e4SLinus Torvalds return 0; 41951da177e4SLinus Torvalds 41961da177e4SLinus Torvalds /* For administrative MTU increase, there is no way to discover 41971da177e4SLinus Torvalds IPv6 PMTU increase, so PMTU increase should be updated here. 41981da177e4SLinus Torvalds Since RFC 1981 doesn't include administrative MTU increase 41991da177e4SLinus Torvalds update PMTU increase is a MUST. (i.e. jumbo frame) 42001da177e4SLinus Torvalds */ 4201ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == arg->dev && 4202d4ead6b3SDavid Ahern !fib6_metric_locked(rt, RTAX_MTU)) { 4203d4ead6b3SDavid Ahern u32 mtu = rt->fib6_pmtu; 4204d4ead6b3SDavid Ahern 4205d4ead6b3SDavid Ahern if (mtu >= arg->mtu || 4206d4ead6b3SDavid Ahern (mtu < arg->mtu && mtu == idev->cnf.mtu6)) 4207d4ead6b3SDavid Ahern fib6_metric_set(rt, RTAX_MTU, arg->mtu); 4208d4ead6b3SDavid Ahern 4209f5bbe7eeSWei Wang spin_lock_bh(&rt6_exception_lock); 4210e9fa1495SStefano Brivio rt6_exceptions_update_pmtu(idev, rt, arg->mtu); 4211f5bbe7eeSWei Wang spin_unlock_bh(&rt6_exception_lock); 42124b32b5adSMartin KaFai Lau } 42131da177e4SLinus Torvalds return 0; 42141da177e4SLinus Torvalds } 42151da177e4SLinus Torvalds 421695c96174SEric Dumazet void rt6_mtu_change(struct net_device *dev, unsigned int mtu) 42171da177e4SLinus Torvalds { 4218c71099acSThomas Graf struct rt6_mtu_change_arg arg = { 4219c71099acSThomas Graf .dev = dev, 4220c71099acSThomas Graf .mtu = mtu, 4221c71099acSThomas Graf }; 42221da177e4SLinus Torvalds 42230c3584d5SLi RongQing fib6_clean_all(dev_net(dev), rt6_mtu_change_route, &arg); 42241da177e4SLinus Torvalds } 42251da177e4SLinus Torvalds 4226ef7c79edSPatrick McHardy static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = { 42275176f91eSThomas Graf [RTA_GATEWAY] = { .len = sizeof(struct in6_addr) }, 4228aa8f8778SEric Dumazet [RTA_PREFSRC] = { .len = sizeof(struct in6_addr) }, 422986872cb5SThomas Graf [RTA_OIF] = { .type = NLA_U32 }, 4230ab364a6fSThomas Graf [RTA_IIF] = { .type = NLA_U32 }, 423186872cb5SThomas Graf [RTA_PRIORITY] = { .type = NLA_U32 }, 423286872cb5SThomas Graf [RTA_METRICS] = { .type = NLA_NESTED }, 423351ebd318SNicolas Dichtel [RTA_MULTIPATH] = { .len = sizeof(struct rtnexthop) }, 4234c78ba6d6SLubomir Rintel [RTA_PREF] = { .type = NLA_U8 }, 423519e42e45SRoopa Prabhu [RTA_ENCAP_TYPE] = { .type = NLA_U16 }, 423619e42e45SRoopa Prabhu [RTA_ENCAP] = { .type = NLA_NESTED }, 423732bc201eSXin Long [RTA_EXPIRES] = { .type = NLA_U32 }, 4238622ec2c9SLorenzo Colitti [RTA_UID] = { .type = NLA_U32 }, 42393b45a410SLiping Zhang [RTA_MARK] = { .type = NLA_U32 }, 4240aa8f8778SEric Dumazet [RTA_TABLE] = { .type = NLA_U32 }, 4241eacb9384SRoopa Prabhu [RTA_IP_PROTO] = { .type = NLA_U8 }, 4242eacb9384SRoopa Prabhu [RTA_SPORT] = { .type = NLA_U16 }, 4243eacb9384SRoopa Prabhu [RTA_DPORT] = { .type = NLA_U16 }, 424486872cb5SThomas Graf }; 424586872cb5SThomas Graf 424686872cb5SThomas Graf static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh, 4247333c4301SDavid Ahern struct fib6_config *cfg, 4248333c4301SDavid Ahern struct netlink_ext_ack *extack) 42491da177e4SLinus Torvalds { 425086872cb5SThomas Graf struct rtmsg *rtm; 425186872cb5SThomas Graf struct nlattr *tb[RTA_MAX+1]; 4252c78ba6d6SLubomir Rintel unsigned int pref; 425386872cb5SThomas Graf int err; 42541da177e4SLinus Torvalds 42558cb08174SJohannes Berg err = nlmsg_parse_deprecated(nlh, sizeof(*rtm), tb, RTA_MAX, 42568cb08174SJohannes Berg rtm_ipv6_policy, extack); 425786872cb5SThomas Graf if (err < 0) 425886872cb5SThomas Graf goto errout; 42591da177e4SLinus Torvalds 426086872cb5SThomas Graf err = -EINVAL; 426186872cb5SThomas Graf rtm = nlmsg_data(nlh); 426286872cb5SThomas Graf 426384db8407SMaciej Żenczykowski *cfg = (struct fib6_config){ 426484db8407SMaciej Żenczykowski .fc_table = rtm->rtm_table, 426584db8407SMaciej Żenczykowski .fc_dst_len = rtm->rtm_dst_len, 426684db8407SMaciej Żenczykowski .fc_src_len = rtm->rtm_src_len, 426784db8407SMaciej Żenczykowski .fc_flags = RTF_UP, 426884db8407SMaciej Żenczykowski .fc_protocol = rtm->rtm_protocol, 426984db8407SMaciej Żenczykowski .fc_type = rtm->rtm_type, 427084db8407SMaciej Żenczykowski 427184db8407SMaciej Żenczykowski .fc_nlinfo.portid = NETLINK_CB(skb).portid, 427284db8407SMaciej Żenczykowski .fc_nlinfo.nlh = nlh, 427384db8407SMaciej Żenczykowski .fc_nlinfo.nl_net = sock_net(skb->sk), 427484db8407SMaciej Żenczykowski }; 427586872cb5SThomas Graf 4276ef2c7d7bSNicolas Dichtel if (rtm->rtm_type == RTN_UNREACHABLE || 4277ef2c7d7bSNicolas Dichtel rtm->rtm_type == RTN_BLACKHOLE || 4278b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_PROHIBIT || 4279b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_THROW) 428086872cb5SThomas Graf cfg->fc_flags |= RTF_REJECT; 428186872cb5SThomas Graf 4282ab79ad14SMaciej Żenczykowski if (rtm->rtm_type == RTN_LOCAL) 4283ab79ad14SMaciej Żenczykowski cfg->fc_flags |= RTF_LOCAL; 4284ab79ad14SMaciej Żenczykowski 42851f56a01fSMartin KaFai Lau if (rtm->rtm_flags & RTM_F_CLONED) 42861f56a01fSMartin KaFai Lau cfg->fc_flags |= RTF_CACHE; 42871f56a01fSMartin KaFai Lau 4288fc1e64e1SDavid Ahern cfg->fc_flags |= (rtm->rtm_flags & RTNH_F_ONLINK); 4289fc1e64e1SDavid Ahern 429086872cb5SThomas Graf if (tb[RTA_GATEWAY]) { 429167b61f6cSJiri Benc cfg->fc_gateway = nla_get_in6_addr(tb[RTA_GATEWAY]); 429286872cb5SThomas Graf cfg->fc_flags |= RTF_GATEWAY; 42931da177e4SLinus Torvalds } 4294e3818541SDavid Ahern if (tb[RTA_VIA]) { 4295e3818541SDavid Ahern NL_SET_ERR_MSG(extack, "IPv6 does not support RTA_VIA attribute"); 4296e3818541SDavid Ahern goto errout; 4297e3818541SDavid Ahern } 429886872cb5SThomas Graf 429986872cb5SThomas Graf if (tb[RTA_DST]) { 430086872cb5SThomas Graf int plen = (rtm->rtm_dst_len + 7) >> 3; 430186872cb5SThomas Graf 430286872cb5SThomas Graf if (nla_len(tb[RTA_DST]) < plen) 430386872cb5SThomas Graf goto errout; 430486872cb5SThomas Graf 430586872cb5SThomas Graf nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen); 43061da177e4SLinus Torvalds } 430786872cb5SThomas Graf 430886872cb5SThomas Graf if (tb[RTA_SRC]) { 430986872cb5SThomas Graf int plen = (rtm->rtm_src_len + 7) >> 3; 431086872cb5SThomas Graf 431186872cb5SThomas Graf if (nla_len(tb[RTA_SRC]) < plen) 431286872cb5SThomas Graf goto errout; 431386872cb5SThomas Graf 431486872cb5SThomas Graf nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen); 43151da177e4SLinus Torvalds } 431686872cb5SThomas Graf 4317c3968a85SDaniel Walter if (tb[RTA_PREFSRC]) 431867b61f6cSJiri Benc cfg->fc_prefsrc = nla_get_in6_addr(tb[RTA_PREFSRC]); 4319c3968a85SDaniel Walter 432086872cb5SThomas Graf if (tb[RTA_OIF]) 432186872cb5SThomas Graf cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]); 432286872cb5SThomas Graf 432386872cb5SThomas Graf if (tb[RTA_PRIORITY]) 432486872cb5SThomas Graf cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]); 432586872cb5SThomas Graf 432686872cb5SThomas Graf if (tb[RTA_METRICS]) { 432786872cb5SThomas Graf cfg->fc_mx = nla_data(tb[RTA_METRICS]); 432886872cb5SThomas Graf cfg->fc_mx_len = nla_len(tb[RTA_METRICS]); 43291da177e4SLinus Torvalds } 433086872cb5SThomas Graf 433186872cb5SThomas Graf if (tb[RTA_TABLE]) 433286872cb5SThomas Graf cfg->fc_table = nla_get_u32(tb[RTA_TABLE]); 433386872cb5SThomas Graf 433451ebd318SNicolas Dichtel if (tb[RTA_MULTIPATH]) { 433551ebd318SNicolas Dichtel cfg->fc_mp = nla_data(tb[RTA_MULTIPATH]); 433651ebd318SNicolas Dichtel cfg->fc_mp_len = nla_len(tb[RTA_MULTIPATH]); 43379ed59592SDavid Ahern 43389ed59592SDavid Ahern err = lwtunnel_valid_encap_type_attr(cfg->fc_mp, 4339c255bd68SDavid Ahern cfg->fc_mp_len, extack); 43409ed59592SDavid Ahern if (err < 0) 43419ed59592SDavid Ahern goto errout; 434251ebd318SNicolas Dichtel } 434351ebd318SNicolas Dichtel 4344c78ba6d6SLubomir Rintel if (tb[RTA_PREF]) { 4345c78ba6d6SLubomir Rintel pref = nla_get_u8(tb[RTA_PREF]); 4346c78ba6d6SLubomir Rintel if (pref != ICMPV6_ROUTER_PREF_LOW && 4347c78ba6d6SLubomir Rintel pref != ICMPV6_ROUTER_PREF_HIGH) 4348c78ba6d6SLubomir Rintel pref = ICMPV6_ROUTER_PREF_MEDIUM; 4349c78ba6d6SLubomir Rintel cfg->fc_flags |= RTF_PREF(pref); 4350c78ba6d6SLubomir Rintel } 4351c78ba6d6SLubomir Rintel 435219e42e45SRoopa Prabhu if (tb[RTA_ENCAP]) 435319e42e45SRoopa Prabhu cfg->fc_encap = tb[RTA_ENCAP]; 435419e42e45SRoopa Prabhu 43559ed59592SDavid Ahern if (tb[RTA_ENCAP_TYPE]) { 435619e42e45SRoopa Prabhu cfg->fc_encap_type = nla_get_u16(tb[RTA_ENCAP_TYPE]); 435719e42e45SRoopa Prabhu 4358c255bd68SDavid Ahern err = lwtunnel_valid_encap_type(cfg->fc_encap_type, extack); 43599ed59592SDavid Ahern if (err < 0) 43609ed59592SDavid Ahern goto errout; 43619ed59592SDavid Ahern } 43629ed59592SDavid Ahern 436332bc201eSXin Long if (tb[RTA_EXPIRES]) { 436432bc201eSXin Long unsigned long timeout = addrconf_timeout_fixup(nla_get_u32(tb[RTA_EXPIRES]), HZ); 436532bc201eSXin Long 436632bc201eSXin Long if (addrconf_finite_timeout(timeout)) { 436732bc201eSXin Long cfg->fc_expires = jiffies_to_clock_t(timeout * HZ); 436832bc201eSXin Long cfg->fc_flags |= RTF_EXPIRES; 436932bc201eSXin Long } 437032bc201eSXin Long } 437132bc201eSXin Long 437286872cb5SThomas Graf err = 0; 437386872cb5SThomas Graf errout: 437486872cb5SThomas Graf return err; 43751da177e4SLinus Torvalds } 43761da177e4SLinus Torvalds 43776b9ea5a6SRoopa Prabhu struct rt6_nh { 43788d1c802bSDavid Ahern struct fib6_info *fib6_info; 43796b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 43806b9ea5a6SRoopa Prabhu struct list_head next; 43816b9ea5a6SRoopa Prabhu }; 43826b9ea5a6SRoopa Prabhu 4383d4ead6b3SDavid Ahern static int ip6_route_info_append(struct net *net, 4384d4ead6b3SDavid Ahern struct list_head *rt6_nh_list, 43858d1c802bSDavid Ahern struct fib6_info *rt, 43868d1c802bSDavid Ahern struct fib6_config *r_cfg) 43876b9ea5a6SRoopa Prabhu { 43886b9ea5a6SRoopa Prabhu struct rt6_nh *nh; 43896b9ea5a6SRoopa Prabhu int err = -EEXIST; 43906b9ea5a6SRoopa Prabhu 43916b9ea5a6SRoopa Prabhu list_for_each_entry(nh, rt6_nh_list, next) { 43928d1c802bSDavid Ahern /* check if fib6_info already exists */ 43938d1c802bSDavid Ahern if (rt6_duplicate_nexthop(nh->fib6_info, rt)) 43946b9ea5a6SRoopa Prabhu return err; 43956b9ea5a6SRoopa Prabhu } 43966b9ea5a6SRoopa Prabhu 43976b9ea5a6SRoopa Prabhu nh = kzalloc(sizeof(*nh), GFP_KERNEL); 43986b9ea5a6SRoopa Prabhu if (!nh) 43996b9ea5a6SRoopa Prabhu return -ENOMEM; 44008d1c802bSDavid Ahern nh->fib6_info = rt; 44016b9ea5a6SRoopa Prabhu memcpy(&nh->r_cfg, r_cfg, sizeof(*r_cfg)); 44026b9ea5a6SRoopa Prabhu list_add_tail(&nh->next, rt6_nh_list); 44036b9ea5a6SRoopa Prabhu 44046b9ea5a6SRoopa Prabhu return 0; 44056b9ea5a6SRoopa Prabhu } 44066b9ea5a6SRoopa Prabhu 44078d1c802bSDavid Ahern static void ip6_route_mpath_notify(struct fib6_info *rt, 44088d1c802bSDavid Ahern struct fib6_info *rt_last, 44093b1137feSDavid Ahern struct nl_info *info, 44103b1137feSDavid Ahern __u16 nlflags) 44113b1137feSDavid Ahern { 44123b1137feSDavid Ahern /* if this is an APPEND route, then rt points to the first route 44133b1137feSDavid Ahern * inserted and rt_last points to last route inserted. Userspace 44143b1137feSDavid Ahern * wants a consistent dump of the route which starts at the first 44153b1137feSDavid Ahern * nexthop. Since sibling routes are always added at the end of 44163b1137feSDavid Ahern * the list, find the first sibling of the last route appended 44173b1137feSDavid Ahern */ 441893c2fb25SDavid Ahern if ((nlflags & NLM_F_APPEND) && rt_last && rt_last->fib6_nsiblings) { 441993c2fb25SDavid Ahern rt = list_first_entry(&rt_last->fib6_siblings, 44208d1c802bSDavid Ahern struct fib6_info, 442193c2fb25SDavid Ahern fib6_siblings); 44223b1137feSDavid Ahern } 44233b1137feSDavid Ahern 44243b1137feSDavid Ahern if (rt) 44253b1137feSDavid Ahern inet6_rt_notify(RTM_NEWROUTE, rt, info, nlflags); 44263b1137feSDavid Ahern } 44273b1137feSDavid Ahern 4428333c4301SDavid Ahern static int ip6_route_multipath_add(struct fib6_config *cfg, 4429333c4301SDavid Ahern struct netlink_ext_ack *extack) 443051ebd318SNicolas Dichtel { 44318d1c802bSDavid Ahern struct fib6_info *rt_notif = NULL, *rt_last = NULL; 44323b1137feSDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 443351ebd318SNicolas Dichtel struct fib6_config r_cfg; 443451ebd318SNicolas Dichtel struct rtnexthop *rtnh; 44358d1c802bSDavid Ahern struct fib6_info *rt; 44366b9ea5a6SRoopa Prabhu struct rt6_nh *err_nh; 44376b9ea5a6SRoopa Prabhu struct rt6_nh *nh, *nh_safe; 44383b1137feSDavid Ahern __u16 nlflags; 443951ebd318SNicolas Dichtel int remaining; 444051ebd318SNicolas Dichtel int attrlen; 44416b9ea5a6SRoopa Prabhu int err = 1; 44426b9ea5a6SRoopa Prabhu int nhn = 0; 44436b9ea5a6SRoopa Prabhu int replace = (cfg->fc_nlinfo.nlh && 44446b9ea5a6SRoopa Prabhu (cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_REPLACE)); 44456b9ea5a6SRoopa Prabhu LIST_HEAD(rt6_nh_list); 444651ebd318SNicolas Dichtel 44473b1137feSDavid Ahern nlflags = replace ? NLM_F_REPLACE : NLM_F_CREATE; 44483b1137feSDavid Ahern if (info->nlh && info->nlh->nlmsg_flags & NLM_F_APPEND) 44493b1137feSDavid Ahern nlflags |= NLM_F_APPEND; 44503b1137feSDavid Ahern 445135f1b4e9SMichal Kubeček remaining = cfg->fc_mp_len; 445251ebd318SNicolas Dichtel rtnh = (struct rtnexthop *)cfg->fc_mp; 445351ebd318SNicolas Dichtel 44546b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry and build a list (rt6_nh_list) of 44558d1c802bSDavid Ahern * fib6_info structs per nexthop 44566b9ea5a6SRoopa Prabhu */ 445751ebd318SNicolas Dichtel while (rtnh_ok(rtnh, remaining)) { 445851ebd318SNicolas Dichtel memcpy(&r_cfg, cfg, sizeof(*cfg)); 445951ebd318SNicolas Dichtel if (rtnh->rtnh_ifindex) 446051ebd318SNicolas Dichtel r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 446151ebd318SNicolas Dichtel 446251ebd318SNicolas Dichtel attrlen = rtnh_attrlen(rtnh); 446351ebd318SNicolas Dichtel if (attrlen > 0) { 446451ebd318SNicolas Dichtel struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 446551ebd318SNicolas Dichtel 446651ebd318SNicolas Dichtel nla = nla_find(attrs, attrlen, RTA_GATEWAY); 446751ebd318SNicolas Dichtel if (nla) { 446867b61f6cSJiri Benc r_cfg.fc_gateway = nla_get_in6_addr(nla); 446951ebd318SNicolas Dichtel r_cfg.fc_flags |= RTF_GATEWAY; 447051ebd318SNicolas Dichtel } 447119e42e45SRoopa Prabhu r_cfg.fc_encap = nla_find(attrs, attrlen, RTA_ENCAP); 447219e42e45SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_ENCAP_TYPE); 447319e42e45SRoopa Prabhu if (nla) 447419e42e45SRoopa Prabhu r_cfg.fc_encap_type = nla_get_u16(nla); 447551ebd318SNicolas Dichtel } 44766b9ea5a6SRoopa Prabhu 447768e2ffdeSDavid Ahern r_cfg.fc_flags |= (rtnh->rtnh_flags & RTNH_F_ONLINK); 4478acb54e3cSDavid Ahern rt = ip6_route_info_create(&r_cfg, GFP_KERNEL, extack); 44798c5b83f0SRoopa Prabhu if (IS_ERR(rt)) { 44808c5b83f0SRoopa Prabhu err = PTR_ERR(rt); 44818c5b83f0SRoopa Prabhu rt = NULL; 44826b9ea5a6SRoopa Prabhu goto cleanup; 44838c5b83f0SRoopa Prabhu } 4484b5d2d75eSDavid Ahern if (!rt6_qualify_for_ecmp(rt)) { 4485b5d2d75eSDavid Ahern err = -EINVAL; 4486b5d2d75eSDavid Ahern NL_SET_ERR_MSG(extack, 4487b5d2d75eSDavid Ahern "Device only routes can not be added for IPv6 using the multipath API."); 4488b5d2d75eSDavid Ahern fib6_info_release(rt); 4489b5d2d75eSDavid Ahern goto cleanup; 4490b5d2d75eSDavid Ahern } 44916b9ea5a6SRoopa Prabhu 4492ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_weight = rtnh->rtnh_hops + 1; 4493398958aeSIdo Schimmel 4494d4ead6b3SDavid Ahern err = ip6_route_info_append(info->nl_net, &rt6_nh_list, 4495d4ead6b3SDavid Ahern rt, &r_cfg); 449651ebd318SNicolas Dichtel if (err) { 449793531c67SDavid Ahern fib6_info_release(rt); 44986b9ea5a6SRoopa Prabhu goto cleanup; 449951ebd318SNicolas Dichtel } 45006b9ea5a6SRoopa Prabhu 45016b9ea5a6SRoopa Prabhu rtnh = rtnh_next(rtnh, &remaining); 450251ebd318SNicolas Dichtel } 45036b9ea5a6SRoopa Prabhu 45043b1137feSDavid Ahern /* for add and replace send one notification with all nexthops. 45053b1137feSDavid Ahern * Skip the notification in fib6_add_rt2node and send one with 45063b1137feSDavid Ahern * the full route when done 45073b1137feSDavid Ahern */ 45083b1137feSDavid Ahern info->skip_notify = 1; 45093b1137feSDavid Ahern 45106b9ea5a6SRoopa Prabhu err_nh = NULL; 45116b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 45128d1c802bSDavid Ahern err = __ip6_ins_rt(nh->fib6_info, info, extack); 45138d1c802bSDavid Ahern fib6_info_release(nh->fib6_info); 45143b1137feSDavid Ahern 4515f7225172SDavid Ahern if (!err) { 4516f7225172SDavid Ahern /* save reference to last route successfully inserted */ 4517f7225172SDavid Ahern rt_last = nh->fib6_info; 4518f7225172SDavid Ahern 45196b9ea5a6SRoopa Prabhu /* save reference to first route for notification */ 4520f7225172SDavid Ahern if (!rt_notif) 45218d1c802bSDavid Ahern rt_notif = nh->fib6_info; 4522f7225172SDavid Ahern } 45236b9ea5a6SRoopa Prabhu 45248d1c802bSDavid Ahern /* nh->fib6_info is used or freed at this point, reset to NULL*/ 45258d1c802bSDavid Ahern nh->fib6_info = NULL; 45266b9ea5a6SRoopa Prabhu if (err) { 45276b9ea5a6SRoopa Prabhu if (replace && nhn) 4528a5a82d84SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 4529a5a82d84SJakub Kicinski "multipath route replace failed (check consistency of installed routes)"); 45306b9ea5a6SRoopa Prabhu err_nh = nh; 45316b9ea5a6SRoopa Prabhu goto add_errout; 45326b9ea5a6SRoopa Prabhu } 45336b9ea5a6SRoopa Prabhu 45341a72418bSNicolas Dichtel /* Because each route is added like a single route we remove 453527596472SMichal Kubeček * these flags after the first nexthop: if there is a collision, 453627596472SMichal Kubeček * we have already failed to add the first nexthop: 453727596472SMichal Kubeček * fib6_add_rt2node() has rejected it; when replacing, old 453827596472SMichal Kubeček * nexthops have been replaced by first new, the rest should 453927596472SMichal Kubeček * be added to it. 45401a72418bSNicolas Dichtel */ 454127596472SMichal Kubeček cfg->fc_nlinfo.nlh->nlmsg_flags &= ~(NLM_F_EXCL | 454227596472SMichal Kubeček NLM_F_REPLACE); 45436b9ea5a6SRoopa Prabhu nhn++; 45446b9ea5a6SRoopa Prabhu } 45456b9ea5a6SRoopa Prabhu 45463b1137feSDavid Ahern /* success ... tell user about new route */ 45473b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 45486b9ea5a6SRoopa Prabhu goto cleanup; 45496b9ea5a6SRoopa Prabhu 45506b9ea5a6SRoopa Prabhu add_errout: 45513b1137feSDavid Ahern /* send notification for routes that were added so that 45523b1137feSDavid Ahern * the delete notifications sent by ip6_route_del are 45533b1137feSDavid Ahern * coherent 45543b1137feSDavid Ahern */ 45553b1137feSDavid Ahern if (rt_notif) 45563b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 45573b1137feSDavid Ahern 45586b9ea5a6SRoopa Prabhu /* Delete routes that were already added */ 45596b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 45606b9ea5a6SRoopa Prabhu if (err_nh == nh) 45616b9ea5a6SRoopa Prabhu break; 4562333c4301SDavid Ahern ip6_route_del(&nh->r_cfg, extack); 45636b9ea5a6SRoopa Prabhu } 45646b9ea5a6SRoopa Prabhu 45656b9ea5a6SRoopa Prabhu cleanup: 45666b9ea5a6SRoopa Prabhu list_for_each_entry_safe(nh, nh_safe, &rt6_nh_list, next) { 45678d1c802bSDavid Ahern if (nh->fib6_info) 45688d1c802bSDavid Ahern fib6_info_release(nh->fib6_info); 45696b9ea5a6SRoopa Prabhu list_del(&nh->next); 45706b9ea5a6SRoopa Prabhu kfree(nh); 45716b9ea5a6SRoopa Prabhu } 45726b9ea5a6SRoopa Prabhu 45736b9ea5a6SRoopa Prabhu return err; 45746b9ea5a6SRoopa Prabhu } 45756b9ea5a6SRoopa Prabhu 4576333c4301SDavid Ahern static int ip6_route_multipath_del(struct fib6_config *cfg, 4577333c4301SDavid Ahern struct netlink_ext_ack *extack) 45786b9ea5a6SRoopa Prabhu { 45796b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 45806b9ea5a6SRoopa Prabhu struct rtnexthop *rtnh; 45816b9ea5a6SRoopa Prabhu int remaining; 45826b9ea5a6SRoopa Prabhu int attrlen; 45836b9ea5a6SRoopa Prabhu int err = 1, last_err = 0; 45846b9ea5a6SRoopa Prabhu 45856b9ea5a6SRoopa Prabhu remaining = cfg->fc_mp_len; 45866b9ea5a6SRoopa Prabhu rtnh = (struct rtnexthop *)cfg->fc_mp; 45876b9ea5a6SRoopa Prabhu 45886b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry */ 45896b9ea5a6SRoopa Prabhu while (rtnh_ok(rtnh, remaining)) { 45906b9ea5a6SRoopa Prabhu memcpy(&r_cfg, cfg, sizeof(*cfg)); 45916b9ea5a6SRoopa Prabhu if (rtnh->rtnh_ifindex) 45926b9ea5a6SRoopa Prabhu r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 45936b9ea5a6SRoopa Prabhu 45946b9ea5a6SRoopa Prabhu attrlen = rtnh_attrlen(rtnh); 45956b9ea5a6SRoopa Prabhu if (attrlen > 0) { 45966b9ea5a6SRoopa Prabhu struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 45976b9ea5a6SRoopa Prabhu 45986b9ea5a6SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_GATEWAY); 45996b9ea5a6SRoopa Prabhu if (nla) { 46006b9ea5a6SRoopa Prabhu nla_memcpy(&r_cfg.fc_gateway, nla, 16); 46016b9ea5a6SRoopa Prabhu r_cfg.fc_flags |= RTF_GATEWAY; 46026b9ea5a6SRoopa Prabhu } 46036b9ea5a6SRoopa Prabhu } 4604333c4301SDavid Ahern err = ip6_route_del(&r_cfg, extack); 46056b9ea5a6SRoopa Prabhu if (err) 46066b9ea5a6SRoopa Prabhu last_err = err; 46076b9ea5a6SRoopa Prabhu 460851ebd318SNicolas Dichtel rtnh = rtnh_next(rtnh, &remaining); 460951ebd318SNicolas Dichtel } 461051ebd318SNicolas Dichtel 461151ebd318SNicolas Dichtel return last_err; 461251ebd318SNicolas Dichtel } 461351ebd318SNicolas Dichtel 4614c21ef3e3SDavid Ahern static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4615c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 46161da177e4SLinus Torvalds { 461786872cb5SThomas Graf struct fib6_config cfg; 461886872cb5SThomas Graf int err; 46191da177e4SLinus Torvalds 4620333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 462186872cb5SThomas Graf if (err < 0) 462286872cb5SThomas Graf return err; 462386872cb5SThomas Graf 462451ebd318SNicolas Dichtel if (cfg.fc_mp) 4625333c4301SDavid Ahern return ip6_route_multipath_del(&cfg, extack); 46260ae81335SDavid Ahern else { 46270ae81335SDavid Ahern cfg.fc_delete_all_nh = 1; 4628333c4301SDavid Ahern return ip6_route_del(&cfg, extack); 46291da177e4SLinus Torvalds } 46300ae81335SDavid Ahern } 46311da177e4SLinus Torvalds 4632c21ef3e3SDavid Ahern static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4633c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 46341da177e4SLinus Torvalds { 463586872cb5SThomas Graf struct fib6_config cfg; 463686872cb5SThomas Graf int err; 46371da177e4SLinus Torvalds 4638333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 463986872cb5SThomas Graf if (err < 0) 464086872cb5SThomas Graf return err; 464186872cb5SThomas Graf 464267f69513SDavid Ahern if (cfg.fc_metric == 0) 464367f69513SDavid Ahern cfg.fc_metric = IP6_RT_PRIO_USER; 464467f69513SDavid Ahern 464551ebd318SNicolas Dichtel if (cfg.fc_mp) 4646333c4301SDavid Ahern return ip6_route_multipath_add(&cfg, extack); 464751ebd318SNicolas Dichtel else 4648acb54e3cSDavid Ahern return ip6_route_add(&cfg, GFP_KERNEL, extack); 46491da177e4SLinus Torvalds } 46501da177e4SLinus Torvalds 46518d1c802bSDavid Ahern static size_t rt6_nlmsg_size(struct fib6_info *rt) 4652339bf98fSThomas Graf { 4653beb1afacSDavid Ahern int nexthop_len = 0; 4654beb1afacSDavid Ahern 465593c2fb25SDavid Ahern if (rt->fib6_nsiblings) { 4656beb1afacSDavid Ahern nexthop_len = nla_total_size(0) /* RTA_MULTIPATH */ 4657beb1afacSDavid Ahern + NLA_ALIGN(sizeof(struct rtnexthop)) 4658beb1afacSDavid Ahern + nla_total_size(16) /* RTA_GATEWAY */ 4659ad1601aeSDavid Ahern + lwtunnel_get_encap_size(rt->fib6_nh.fib_nh_lws); 4660beb1afacSDavid Ahern 466193c2fb25SDavid Ahern nexthop_len *= rt->fib6_nsiblings; 4662beb1afacSDavid Ahern } 4663beb1afacSDavid Ahern 4664339bf98fSThomas Graf return NLMSG_ALIGN(sizeof(struct rtmsg)) 4665339bf98fSThomas Graf + nla_total_size(16) /* RTA_SRC */ 4666339bf98fSThomas Graf + nla_total_size(16) /* RTA_DST */ 4667339bf98fSThomas Graf + nla_total_size(16) /* RTA_GATEWAY */ 4668339bf98fSThomas Graf + nla_total_size(16) /* RTA_PREFSRC */ 4669339bf98fSThomas Graf + nla_total_size(4) /* RTA_TABLE */ 4670339bf98fSThomas Graf + nla_total_size(4) /* RTA_IIF */ 4671339bf98fSThomas Graf + nla_total_size(4) /* RTA_OIF */ 4672339bf98fSThomas Graf + nla_total_size(4) /* RTA_PRIORITY */ 46736a2b9ce0SNoriaki TAKAMIYA + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */ 4674ea697639SDaniel Borkmann + nla_total_size(sizeof(struct rta_cacheinfo)) 4675c78ba6d6SLubomir Rintel + nla_total_size(TCP_CA_NAME_MAX) /* RTAX_CC_ALGO */ 467619e42e45SRoopa Prabhu + nla_total_size(1) /* RTA_PREF */ 4677ad1601aeSDavid Ahern + lwtunnel_get_encap_size(rt->fib6_nh.fib_nh_lws) 4678beb1afacSDavid Ahern + nexthop_len; 4679beb1afacSDavid Ahern } 4680beb1afacSDavid Ahern 4681d4ead6b3SDavid Ahern static int rt6_fill_node(struct net *net, struct sk_buff *skb, 46828d1c802bSDavid Ahern struct fib6_info *rt, struct dst_entry *dst, 4683d4ead6b3SDavid Ahern struct in6_addr *dest, struct in6_addr *src, 468415e47304SEric W. Biederman int iif, int type, u32 portid, u32 seq, 4685f8cfe2ceSDavid Ahern unsigned int flags) 46861da177e4SLinus Torvalds { 468722d0bd82SXin Long struct rt6_info *rt6 = (struct rt6_info *)dst; 468822d0bd82SXin Long struct rt6key *rt6_dst, *rt6_src; 468922d0bd82SXin Long u32 *pmetrics, table, rt6_flags; 46901da177e4SLinus Torvalds struct nlmsghdr *nlh; 469122d0bd82SXin Long struct rtmsg *rtm; 4692d4ead6b3SDavid Ahern long expires = 0; 46931da177e4SLinus Torvalds 469415e47304SEric W. Biederman nlh = nlmsg_put(skb, portid, seq, type, sizeof(*rtm), flags); 469538308473SDavid S. Miller if (!nlh) 469626932566SPatrick McHardy return -EMSGSIZE; 46972d7202bfSThomas Graf 469822d0bd82SXin Long if (rt6) { 469922d0bd82SXin Long rt6_dst = &rt6->rt6i_dst; 470022d0bd82SXin Long rt6_src = &rt6->rt6i_src; 470122d0bd82SXin Long rt6_flags = rt6->rt6i_flags; 470222d0bd82SXin Long } else { 470322d0bd82SXin Long rt6_dst = &rt->fib6_dst; 470422d0bd82SXin Long rt6_src = &rt->fib6_src; 470522d0bd82SXin Long rt6_flags = rt->fib6_flags; 470622d0bd82SXin Long } 470722d0bd82SXin Long 47082d7202bfSThomas Graf rtm = nlmsg_data(nlh); 47091da177e4SLinus Torvalds rtm->rtm_family = AF_INET6; 471022d0bd82SXin Long rtm->rtm_dst_len = rt6_dst->plen; 471122d0bd82SXin Long rtm->rtm_src_len = rt6_src->plen; 47121da177e4SLinus Torvalds rtm->rtm_tos = 0; 471393c2fb25SDavid Ahern if (rt->fib6_table) 471493c2fb25SDavid Ahern table = rt->fib6_table->tb6_id; 4715c71099acSThomas Graf else 47169e762a4aSPatrick McHardy table = RT6_TABLE_UNSPEC; 471797f0082aSKalash Nainwal rtm->rtm_table = table < 256 ? table : RT_TABLE_COMPAT; 4718c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_TABLE, table)) 4719c78679e8SDavid S. Miller goto nla_put_failure; 4720e8478e80SDavid Ahern 4721e8478e80SDavid Ahern rtm->rtm_type = rt->fib6_type; 47221da177e4SLinus Torvalds rtm->rtm_flags = 0; 47231da177e4SLinus Torvalds rtm->rtm_scope = RT_SCOPE_UNIVERSE; 472493c2fb25SDavid Ahern rtm->rtm_protocol = rt->fib6_protocol; 47251da177e4SLinus Torvalds 472622d0bd82SXin Long if (rt6_flags & RTF_CACHE) 47271da177e4SLinus Torvalds rtm->rtm_flags |= RTM_F_CLONED; 47281da177e4SLinus Torvalds 4729d4ead6b3SDavid Ahern if (dest) { 4730d4ead6b3SDavid Ahern if (nla_put_in6_addr(skb, RTA_DST, dest)) 4731c78679e8SDavid S. Miller goto nla_put_failure; 47321da177e4SLinus Torvalds rtm->rtm_dst_len = 128; 47331da177e4SLinus Torvalds } else if (rtm->rtm_dst_len) 473422d0bd82SXin Long if (nla_put_in6_addr(skb, RTA_DST, &rt6_dst->addr)) 4735c78679e8SDavid S. Miller goto nla_put_failure; 47361da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 47371da177e4SLinus Torvalds if (src) { 4738930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_SRC, src)) 4739c78679e8SDavid S. Miller goto nla_put_failure; 47401da177e4SLinus Torvalds rtm->rtm_src_len = 128; 4741c78679e8SDavid S. Miller } else if (rtm->rtm_src_len && 474222d0bd82SXin Long nla_put_in6_addr(skb, RTA_SRC, &rt6_src->addr)) 4743c78679e8SDavid S. Miller goto nla_put_failure; 47441da177e4SLinus Torvalds #endif 47457bc570c8SYOSHIFUJI Hideaki if (iif) { 47467bc570c8SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_MROUTE 474722d0bd82SXin Long if (ipv6_addr_is_multicast(&rt6_dst->addr)) { 4748fd61c6baSDavid Ahern int err = ip6mr_get_route(net, skb, rtm, portid); 47492cf75070SNikolay Aleksandrov 47507bc570c8SYOSHIFUJI Hideaki if (err == 0) 47517bc570c8SYOSHIFUJI Hideaki return 0; 4752fd61c6baSDavid Ahern if (err < 0) 47537bc570c8SYOSHIFUJI Hideaki goto nla_put_failure; 47547bc570c8SYOSHIFUJI Hideaki } else 47557bc570c8SYOSHIFUJI Hideaki #endif 4756c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_IIF, iif)) 4757c78679e8SDavid S. Miller goto nla_put_failure; 4758d4ead6b3SDavid Ahern } else if (dest) { 47591da177e4SLinus Torvalds struct in6_addr saddr_buf; 4760d4ead6b3SDavid Ahern if (ip6_route_get_saddr(net, rt, dest, 0, &saddr_buf) == 0 && 4761930345eaSJiri Benc nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4762c78679e8SDavid S. Miller goto nla_put_failure; 4763c3968a85SDaniel Walter } 4764c3968a85SDaniel Walter 476593c2fb25SDavid Ahern if (rt->fib6_prefsrc.plen) { 4766c3968a85SDaniel Walter struct in6_addr saddr_buf; 476793c2fb25SDavid Ahern saddr_buf = rt->fib6_prefsrc.addr; 4768930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4769c78679e8SDavid S. Miller goto nla_put_failure; 47701da177e4SLinus Torvalds } 47712d7202bfSThomas Graf 4772d4ead6b3SDavid Ahern pmetrics = dst ? dst_metrics_ptr(dst) : rt->fib6_metrics->metrics; 4773d4ead6b3SDavid Ahern if (rtnetlink_put_metrics(skb, pmetrics) < 0) 47742d7202bfSThomas Graf goto nla_put_failure; 47752d7202bfSThomas Graf 477693c2fb25SDavid Ahern if (nla_put_u32(skb, RTA_PRIORITY, rt->fib6_metric)) 4777beb1afacSDavid Ahern goto nla_put_failure; 4778beb1afacSDavid Ahern 4779beb1afacSDavid Ahern /* For multipath routes, walk the siblings list and add 4780beb1afacSDavid Ahern * each as a nexthop within RTA_MULTIPATH. 4781beb1afacSDavid Ahern */ 478222d0bd82SXin Long if (rt6) { 478322d0bd82SXin Long if (rt6_flags & RTF_GATEWAY && 478422d0bd82SXin Long nla_put_in6_addr(skb, RTA_GATEWAY, &rt6->rt6i_gateway)) 478522d0bd82SXin Long goto nla_put_failure; 478622d0bd82SXin Long 478722d0bd82SXin Long if (dst->dev && nla_put_u32(skb, RTA_OIF, dst->dev->ifindex)) 478822d0bd82SXin Long goto nla_put_failure; 478922d0bd82SXin Long } else if (rt->fib6_nsiblings) { 47908d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 4791beb1afacSDavid Ahern struct nlattr *mp; 4792beb1afacSDavid Ahern 4793ae0be8deSMichal Kubecek mp = nla_nest_start_noflag(skb, RTA_MULTIPATH); 4794beb1afacSDavid Ahern if (!mp) 4795beb1afacSDavid Ahern goto nla_put_failure; 4796beb1afacSDavid Ahern 4797c0a72077SDavid Ahern if (fib_add_nexthop(skb, &rt->fib6_nh.nh_common, 4798c0a72077SDavid Ahern rt->fib6_nh.fib_nh_weight) < 0) 4799beb1afacSDavid Ahern goto nla_put_failure; 4800beb1afacSDavid Ahern 4801beb1afacSDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 480293c2fb25SDavid Ahern &rt->fib6_siblings, fib6_siblings) { 4803c0a72077SDavid Ahern if (fib_add_nexthop(skb, &sibling->fib6_nh.nh_common, 4804c0a72077SDavid Ahern sibling->fib6_nh.fib_nh_weight) < 0) 480594f826b8SEric Dumazet goto nla_put_failure; 480694f826b8SEric Dumazet } 48072d7202bfSThomas Graf 4808beb1afacSDavid Ahern nla_nest_end(skb, mp); 4809beb1afacSDavid Ahern } else { 4810ecc5663cSDavid Ahern unsigned char nh_flags = 0; 4811ecc5663cSDavid Ahern 4812c0a72077SDavid Ahern if (fib_nexthop_info(skb, &rt->fib6_nh.nh_common, 4813ecc5663cSDavid Ahern &nh_flags, false) < 0) 4814c78679e8SDavid S. Miller goto nla_put_failure; 4815ecc5663cSDavid Ahern 4816ecc5663cSDavid Ahern rtm->rtm_flags |= nh_flags; 4817beb1afacSDavid Ahern } 48188253947eSLi Wei 481922d0bd82SXin Long if (rt6_flags & RTF_EXPIRES) { 482014895687SDavid Ahern expires = dst ? dst->expires : rt->expires; 482114895687SDavid Ahern expires -= jiffies; 482214895687SDavid Ahern } 482369cdf8f9SYOSHIFUJI Hideaki 4824d4ead6b3SDavid Ahern if (rtnl_put_cacheinfo(skb, dst, 0, expires, dst ? dst->error : 0) < 0) 4825e3703b3dSThomas Graf goto nla_put_failure; 48261da177e4SLinus Torvalds 482722d0bd82SXin Long if (nla_put_u8(skb, RTA_PREF, IPV6_EXTRACT_PREF(rt6_flags))) 4828c78ba6d6SLubomir Rintel goto nla_put_failure; 4829c78ba6d6SLubomir Rintel 483019e42e45SRoopa Prabhu 4831053c095aSJohannes Berg nlmsg_end(skb, nlh); 4832053c095aSJohannes Berg return 0; 48332d7202bfSThomas Graf 48342d7202bfSThomas Graf nla_put_failure: 483526932566SPatrick McHardy nlmsg_cancel(skb, nlh); 483626932566SPatrick McHardy return -EMSGSIZE; 48371da177e4SLinus Torvalds } 48381da177e4SLinus Torvalds 483913e38901SDavid Ahern static bool fib6_info_uses_dev(const struct fib6_info *f6i, 484013e38901SDavid Ahern const struct net_device *dev) 484113e38901SDavid Ahern { 4842ad1601aeSDavid Ahern if (f6i->fib6_nh.fib_nh_dev == dev) 484313e38901SDavid Ahern return true; 484413e38901SDavid Ahern 484513e38901SDavid Ahern if (f6i->fib6_nsiblings) { 484613e38901SDavid Ahern struct fib6_info *sibling, *next_sibling; 484713e38901SDavid Ahern 484813e38901SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 484913e38901SDavid Ahern &f6i->fib6_siblings, fib6_siblings) { 4850ad1601aeSDavid Ahern if (sibling->fib6_nh.fib_nh_dev == dev) 485113e38901SDavid Ahern return true; 485213e38901SDavid Ahern } 485313e38901SDavid Ahern } 485413e38901SDavid Ahern 485513e38901SDavid Ahern return false; 485613e38901SDavid Ahern } 485713e38901SDavid Ahern 48588d1c802bSDavid Ahern int rt6_dump_route(struct fib6_info *rt, void *p_arg) 48591da177e4SLinus Torvalds { 48601da177e4SLinus Torvalds struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg; 486113e38901SDavid Ahern struct fib_dump_filter *filter = &arg->filter; 486213e38901SDavid Ahern unsigned int flags = NLM_F_MULTI; 48631f17e2f2SDavid Ahern struct net *net = arg->net; 48641f17e2f2SDavid Ahern 4865421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 48661f17e2f2SDavid Ahern return 0; 48671da177e4SLinus Torvalds 486813e38901SDavid Ahern if ((filter->flags & RTM_F_PREFIX) && 486993c2fb25SDavid Ahern !(rt->fib6_flags & RTF_PREFIX_RT)) { 4870f8cfe2ceSDavid Ahern /* success since this is not a prefix route */ 4871f8cfe2ceSDavid Ahern return 1; 4872f8cfe2ceSDavid Ahern } 487313e38901SDavid Ahern if (filter->filter_set) { 487413e38901SDavid Ahern if ((filter->rt_type && rt->fib6_type != filter->rt_type) || 487513e38901SDavid Ahern (filter->dev && !fib6_info_uses_dev(rt, filter->dev)) || 487613e38901SDavid Ahern (filter->protocol && rt->fib6_protocol != filter->protocol)) { 487713e38901SDavid Ahern return 1; 487813e38901SDavid Ahern } 487913e38901SDavid Ahern flags |= NLM_F_DUMP_FILTERED; 4880f8cfe2ceSDavid Ahern } 48811da177e4SLinus Torvalds 4882d4ead6b3SDavid Ahern return rt6_fill_node(net, arg->skb, rt, NULL, NULL, NULL, 0, 4883d4ead6b3SDavid Ahern RTM_NEWROUTE, NETLINK_CB(arg->cb->skb).portid, 488413e38901SDavid Ahern arg->cb->nlh->nlmsg_seq, flags); 48851da177e4SLinus Torvalds } 48861da177e4SLinus Torvalds 48870eff0a27SJakub Kicinski static int inet6_rtm_valid_getroute_req(struct sk_buff *skb, 48880eff0a27SJakub Kicinski const struct nlmsghdr *nlh, 48890eff0a27SJakub Kicinski struct nlattr **tb, 48900eff0a27SJakub Kicinski struct netlink_ext_ack *extack) 48910eff0a27SJakub Kicinski { 48920eff0a27SJakub Kicinski struct rtmsg *rtm; 48930eff0a27SJakub Kicinski int i, err; 48940eff0a27SJakub Kicinski 48950eff0a27SJakub Kicinski if (nlh->nlmsg_len < nlmsg_msg_size(sizeof(*rtm))) { 48960eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 48970eff0a27SJakub Kicinski "Invalid header for get route request"); 48980eff0a27SJakub Kicinski return -EINVAL; 48990eff0a27SJakub Kicinski } 49000eff0a27SJakub Kicinski 49010eff0a27SJakub Kicinski if (!netlink_strict_get_check(skb)) 49028cb08174SJohannes Berg return nlmsg_parse_deprecated(nlh, sizeof(*rtm), tb, RTA_MAX, 49030eff0a27SJakub Kicinski rtm_ipv6_policy, extack); 49040eff0a27SJakub Kicinski 49050eff0a27SJakub Kicinski rtm = nlmsg_data(nlh); 49060eff0a27SJakub Kicinski if ((rtm->rtm_src_len && rtm->rtm_src_len != 128) || 49070eff0a27SJakub Kicinski (rtm->rtm_dst_len && rtm->rtm_dst_len != 128) || 49080eff0a27SJakub Kicinski rtm->rtm_table || rtm->rtm_protocol || rtm->rtm_scope || 49090eff0a27SJakub Kicinski rtm->rtm_type) { 49100eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "Invalid values in header for get route request"); 49110eff0a27SJakub Kicinski return -EINVAL; 49120eff0a27SJakub Kicinski } 49130eff0a27SJakub Kicinski if (rtm->rtm_flags & ~RTM_F_FIB_MATCH) { 49140eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 49150eff0a27SJakub Kicinski "Invalid flags for get route request"); 49160eff0a27SJakub Kicinski return -EINVAL; 49170eff0a27SJakub Kicinski } 49180eff0a27SJakub Kicinski 49198cb08174SJohannes Berg err = nlmsg_parse_deprecated_strict(nlh, sizeof(*rtm), tb, RTA_MAX, 49200eff0a27SJakub Kicinski rtm_ipv6_policy, extack); 49210eff0a27SJakub Kicinski if (err) 49220eff0a27SJakub Kicinski return err; 49230eff0a27SJakub Kicinski 49240eff0a27SJakub Kicinski if ((tb[RTA_SRC] && !rtm->rtm_src_len) || 49250eff0a27SJakub Kicinski (tb[RTA_DST] && !rtm->rtm_dst_len)) { 49260eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "rtm_src_len and rtm_dst_len must be 128 for IPv6"); 49270eff0a27SJakub Kicinski return -EINVAL; 49280eff0a27SJakub Kicinski } 49290eff0a27SJakub Kicinski 49300eff0a27SJakub Kicinski for (i = 0; i <= RTA_MAX; i++) { 49310eff0a27SJakub Kicinski if (!tb[i]) 49320eff0a27SJakub Kicinski continue; 49330eff0a27SJakub Kicinski 49340eff0a27SJakub Kicinski switch (i) { 49350eff0a27SJakub Kicinski case RTA_SRC: 49360eff0a27SJakub Kicinski case RTA_DST: 49370eff0a27SJakub Kicinski case RTA_IIF: 49380eff0a27SJakub Kicinski case RTA_OIF: 49390eff0a27SJakub Kicinski case RTA_MARK: 49400eff0a27SJakub Kicinski case RTA_UID: 49410eff0a27SJakub Kicinski case RTA_SPORT: 49420eff0a27SJakub Kicinski case RTA_DPORT: 49430eff0a27SJakub Kicinski case RTA_IP_PROTO: 49440eff0a27SJakub Kicinski break; 49450eff0a27SJakub Kicinski default: 49460eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "Unsupported attribute in get route request"); 49470eff0a27SJakub Kicinski return -EINVAL; 49480eff0a27SJakub Kicinski } 49490eff0a27SJakub Kicinski } 49500eff0a27SJakub Kicinski 49510eff0a27SJakub Kicinski return 0; 49520eff0a27SJakub Kicinski } 49530eff0a27SJakub Kicinski 4954c21ef3e3SDavid Ahern static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr *nlh, 4955c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 49561da177e4SLinus Torvalds { 49573b1e0a65SYOSHIFUJI Hideaki struct net *net = sock_net(in_skb->sk); 4958ab364a6fSThomas Graf struct nlattr *tb[RTA_MAX+1]; 495918c3a61cSRoopa Prabhu int err, iif = 0, oif = 0; 4960a68886a6SDavid Ahern struct fib6_info *from; 496118c3a61cSRoopa Prabhu struct dst_entry *dst; 49621da177e4SLinus Torvalds struct rt6_info *rt; 4963ab364a6fSThomas Graf struct sk_buff *skb; 4964ab364a6fSThomas Graf struct rtmsg *rtm; 4965744486d4SMaciej Żenczykowski struct flowi6 fl6 = {}; 496618c3a61cSRoopa Prabhu bool fibmatch; 4967ab364a6fSThomas Graf 49680eff0a27SJakub Kicinski err = inet6_rtm_valid_getroute_req(in_skb, nlh, tb, extack); 4969ab364a6fSThomas Graf if (err < 0) 4970ab364a6fSThomas Graf goto errout; 4971ab364a6fSThomas Graf 4972ab364a6fSThomas Graf err = -EINVAL; 497338b7097bSHannes Frederic Sowa rtm = nlmsg_data(nlh); 497438b7097bSHannes Frederic Sowa fl6.flowlabel = ip6_make_flowinfo(rtm->rtm_tos, 0); 497518c3a61cSRoopa Prabhu fibmatch = !!(rtm->rtm_flags & RTM_F_FIB_MATCH); 4976ab364a6fSThomas Graf 4977ab364a6fSThomas Graf if (tb[RTA_SRC]) { 4978ab364a6fSThomas Graf if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr)) 4979ab364a6fSThomas Graf goto errout; 4980ab364a6fSThomas Graf 49814e3fd7a0SAlexey Dobriyan fl6.saddr = *(struct in6_addr *)nla_data(tb[RTA_SRC]); 4982ab364a6fSThomas Graf } 4983ab364a6fSThomas Graf 4984ab364a6fSThomas Graf if (tb[RTA_DST]) { 4985ab364a6fSThomas Graf if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr)) 4986ab364a6fSThomas Graf goto errout; 4987ab364a6fSThomas Graf 49884e3fd7a0SAlexey Dobriyan fl6.daddr = *(struct in6_addr *)nla_data(tb[RTA_DST]); 4989ab364a6fSThomas Graf } 4990ab364a6fSThomas Graf 4991ab364a6fSThomas Graf if (tb[RTA_IIF]) 4992ab364a6fSThomas Graf iif = nla_get_u32(tb[RTA_IIF]); 4993ab364a6fSThomas Graf 4994ab364a6fSThomas Graf if (tb[RTA_OIF]) 499572331bc0SShmulik Ladkani oif = nla_get_u32(tb[RTA_OIF]); 4996ab364a6fSThomas Graf 49972e47b291SLorenzo Colitti if (tb[RTA_MARK]) 49982e47b291SLorenzo Colitti fl6.flowi6_mark = nla_get_u32(tb[RTA_MARK]); 49992e47b291SLorenzo Colitti 5000622ec2c9SLorenzo Colitti if (tb[RTA_UID]) 5001622ec2c9SLorenzo Colitti fl6.flowi6_uid = make_kuid(current_user_ns(), 5002622ec2c9SLorenzo Colitti nla_get_u32(tb[RTA_UID])); 5003622ec2c9SLorenzo Colitti else 5004622ec2c9SLorenzo Colitti fl6.flowi6_uid = iif ? INVALID_UID : current_uid(); 5005622ec2c9SLorenzo Colitti 5006eacb9384SRoopa Prabhu if (tb[RTA_SPORT]) 5007eacb9384SRoopa Prabhu fl6.fl6_sport = nla_get_be16(tb[RTA_SPORT]); 5008eacb9384SRoopa Prabhu 5009eacb9384SRoopa Prabhu if (tb[RTA_DPORT]) 5010eacb9384SRoopa Prabhu fl6.fl6_dport = nla_get_be16(tb[RTA_DPORT]); 5011eacb9384SRoopa Prabhu 5012eacb9384SRoopa Prabhu if (tb[RTA_IP_PROTO]) { 5013eacb9384SRoopa Prabhu err = rtm_getroute_parse_ip_proto(tb[RTA_IP_PROTO], 50145e1a99eaSHangbin Liu &fl6.flowi6_proto, AF_INET6, 50155e1a99eaSHangbin Liu extack); 5016eacb9384SRoopa Prabhu if (err) 5017eacb9384SRoopa Prabhu goto errout; 5018eacb9384SRoopa Prabhu } 5019eacb9384SRoopa Prabhu 5020ab364a6fSThomas Graf if (iif) { 5021ab364a6fSThomas Graf struct net_device *dev; 502272331bc0SShmulik Ladkani int flags = 0; 502372331bc0SShmulik Ladkani 5024121622dbSFlorian Westphal rcu_read_lock(); 5025121622dbSFlorian Westphal 5026121622dbSFlorian Westphal dev = dev_get_by_index_rcu(net, iif); 5027ab364a6fSThomas Graf if (!dev) { 5028121622dbSFlorian Westphal rcu_read_unlock(); 5029ab364a6fSThomas Graf err = -ENODEV; 5030ab364a6fSThomas Graf goto errout; 5031ab364a6fSThomas Graf } 503272331bc0SShmulik Ladkani 503372331bc0SShmulik Ladkani fl6.flowi6_iif = iif; 503472331bc0SShmulik Ladkani 503572331bc0SShmulik Ladkani if (!ipv6_addr_any(&fl6.saddr)) 503672331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_HAS_SADDR; 503772331bc0SShmulik Ladkani 5038b75cc8f9SDavid Ahern dst = ip6_route_input_lookup(net, dev, &fl6, NULL, flags); 5039121622dbSFlorian Westphal 5040121622dbSFlorian Westphal rcu_read_unlock(); 504172331bc0SShmulik Ladkani } else { 504272331bc0SShmulik Ladkani fl6.flowi6_oif = oif; 504372331bc0SShmulik Ladkani 504418c3a61cSRoopa Prabhu dst = ip6_route_output(net, NULL, &fl6); 504518c3a61cSRoopa Prabhu } 504618c3a61cSRoopa Prabhu 504718c3a61cSRoopa Prabhu 504818c3a61cSRoopa Prabhu rt = container_of(dst, struct rt6_info, dst); 504918c3a61cSRoopa Prabhu if (rt->dst.error) { 505018c3a61cSRoopa Prabhu err = rt->dst.error; 505118c3a61cSRoopa Prabhu ip6_rt_put(rt); 505218c3a61cSRoopa Prabhu goto errout; 5053ab364a6fSThomas Graf } 50541da177e4SLinus Torvalds 50559d6acb3bSWANG Cong if (rt == net->ipv6.ip6_null_entry) { 50569d6acb3bSWANG Cong err = rt->dst.error; 50579d6acb3bSWANG Cong ip6_rt_put(rt); 50589d6acb3bSWANG Cong goto errout; 50599d6acb3bSWANG Cong } 50609d6acb3bSWANG Cong 50611da177e4SLinus Torvalds skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL); 506238308473SDavid S. Miller if (!skb) { 506394e187c0SAmerigo Wang ip6_rt_put(rt); 5064ab364a6fSThomas Graf err = -ENOBUFS; 5065ab364a6fSThomas Graf goto errout; 5066ab364a6fSThomas Graf } 50671da177e4SLinus Torvalds 5068d8d1f30bSChangli Gao skb_dst_set(skb, &rt->dst); 5069a68886a6SDavid Ahern 5070a68886a6SDavid Ahern rcu_read_lock(); 5071a68886a6SDavid Ahern from = rcu_dereference(rt->from); 5072886b7a50SMartin KaFai Lau if (from) { 507318c3a61cSRoopa Prabhu if (fibmatch) 5074886b7a50SMartin KaFai Lau err = rt6_fill_node(net, skb, from, NULL, NULL, NULL, 5075886b7a50SMartin KaFai Lau iif, RTM_NEWROUTE, 5076886b7a50SMartin KaFai Lau NETLINK_CB(in_skb).portid, 507718c3a61cSRoopa Prabhu nlh->nlmsg_seq, 0); 507818c3a61cSRoopa Prabhu else 5079a68886a6SDavid Ahern err = rt6_fill_node(net, skb, from, dst, &fl6.daddr, 5080a68886a6SDavid Ahern &fl6.saddr, iif, RTM_NEWROUTE, 5081886b7a50SMartin KaFai Lau NETLINK_CB(in_skb).portid, 5082886b7a50SMartin KaFai Lau nlh->nlmsg_seq, 0); 5083886b7a50SMartin KaFai Lau } else { 5084886b7a50SMartin KaFai Lau err = -ENETUNREACH; 5085886b7a50SMartin KaFai Lau } 5086a68886a6SDavid Ahern rcu_read_unlock(); 5087a68886a6SDavid Ahern 50881da177e4SLinus Torvalds if (err < 0) { 5089ab364a6fSThomas Graf kfree_skb(skb); 5090ab364a6fSThomas Graf goto errout; 50911da177e4SLinus Torvalds } 50921da177e4SLinus Torvalds 509315e47304SEric W. Biederman err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).portid); 5094ab364a6fSThomas Graf errout: 50951da177e4SLinus Torvalds return err; 50961da177e4SLinus Torvalds } 50971da177e4SLinus Torvalds 50988d1c802bSDavid Ahern void inet6_rt_notify(int event, struct fib6_info *rt, struct nl_info *info, 509937a1d361SRoopa Prabhu unsigned int nlm_flags) 51001da177e4SLinus Torvalds { 51011da177e4SLinus Torvalds struct sk_buff *skb; 51025578689aSDaniel Lezcano struct net *net = info->nl_net; 5103528c4cebSDenis V. Lunev u32 seq; 5104528c4cebSDenis V. Lunev int err; 51050d51aa80SJamal Hadi Salim 5106528c4cebSDenis V. Lunev err = -ENOBUFS; 510738308473SDavid S. Miller seq = info->nlh ? info->nlh->nlmsg_seq : 0; 510886872cb5SThomas Graf 510919e42e45SRoopa Prabhu skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 511038308473SDavid S. Miller if (!skb) 511121713ebcSThomas Graf goto errout; 51121da177e4SLinus Torvalds 5113d4ead6b3SDavid Ahern err = rt6_fill_node(net, skb, rt, NULL, NULL, NULL, 0, 5114f8cfe2ceSDavid Ahern event, info->portid, seq, nlm_flags); 511526932566SPatrick McHardy if (err < 0) { 511626932566SPatrick McHardy /* -EMSGSIZE implies BUG in rt6_nlmsg_size() */ 511726932566SPatrick McHardy WARN_ON(err == -EMSGSIZE); 511826932566SPatrick McHardy kfree_skb(skb); 511926932566SPatrick McHardy goto errout; 512026932566SPatrick McHardy } 512115e47304SEric W. Biederman rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 51225578689aSDaniel Lezcano info->nlh, gfp_any()); 51231ce85fe4SPablo Neira Ayuso return; 512421713ebcSThomas Graf errout: 512521713ebcSThomas Graf if (err < 0) 51265578689aSDaniel Lezcano rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err); 51271da177e4SLinus Torvalds } 51281da177e4SLinus Torvalds 51298ed67789SDaniel Lezcano static int ip6_route_dev_notify(struct notifier_block *this, 5130351638e7SJiri Pirko unsigned long event, void *ptr) 51318ed67789SDaniel Lezcano { 5132351638e7SJiri Pirko struct net_device *dev = netdev_notifier_info_to_dev(ptr); 5133c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 51348ed67789SDaniel Lezcano 5135242d3a49SWANG Cong if (!(dev->flags & IFF_LOOPBACK)) 5136242d3a49SWANG Cong return NOTIFY_OK; 5137242d3a49SWANG Cong 5138242d3a49SWANG Cong if (event == NETDEV_REGISTER) { 5139ad1601aeSDavid Ahern net->ipv6.fib6_null_entry->fib6_nh.fib_nh_dev = dev; 5140d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.dev = dev; 51418ed67789SDaniel Lezcano net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev); 51428ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5143d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.dev = dev; 51448ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev); 5145d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.dev = dev; 51468ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev); 51478ed67789SDaniel Lezcano #endif 514876da0704SWANG Cong } else if (event == NETDEV_UNREGISTER && 514976da0704SWANG Cong dev->reg_state != NETREG_UNREGISTERED) { 515076da0704SWANG Cong /* NETDEV_UNREGISTER could be fired for multiple times by 515176da0704SWANG Cong * netdev_wait_allrefs(). Make sure we only call this once. 515276da0704SWANG Cong */ 515312d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_null_entry->rt6i_idev); 5154242d3a49SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 515512d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_prohibit_entry->rt6i_idev); 515612d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_blk_hole_entry->rt6i_idev); 5157242d3a49SWANG Cong #endif 51588ed67789SDaniel Lezcano } 51598ed67789SDaniel Lezcano 51608ed67789SDaniel Lezcano return NOTIFY_OK; 51618ed67789SDaniel Lezcano } 51628ed67789SDaniel Lezcano 51631da177e4SLinus Torvalds /* 51641da177e4SLinus Torvalds * /proc 51651da177e4SLinus Torvalds */ 51661da177e4SLinus Torvalds 51671da177e4SLinus Torvalds #ifdef CONFIG_PROC_FS 51681da177e4SLinus Torvalds static int rt6_stats_seq_show(struct seq_file *seq, void *v) 51691da177e4SLinus Torvalds { 517069ddb805SDaniel Lezcano struct net *net = (struct net *)seq->private; 51711da177e4SLinus Torvalds seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n", 517269ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_nodes, 517369ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_route_nodes, 517481eb8447SWei Wang atomic_read(&net->ipv6.rt6_stats->fib_rt_alloc), 517569ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_entries, 517669ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_cache, 5177fc66f95cSEric Dumazet dst_entries_get_slow(&net->ipv6.ip6_dst_ops), 517869ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_discarded_routes); 51791da177e4SLinus Torvalds 51801da177e4SLinus Torvalds return 0; 51811da177e4SLinus Torvalds } 51821da177e4SLinus Torvalds #endif /* CONFIG_PROC_FS */ 51831da177e4SLinus Torvalds 51841da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 51851da177e4SLinus Torvalds 51861da177e4SLinus Torvalds static 5187fe2c6338SJoe Perches int ipv6_sysctl_rtcache_flush(struct ctl_table *ctl, int write, 51881da177e4SLinus Torvalds void __user *buffer, size_t *lenp, loff_t *ppos) 51891da177e4SLinus Torvalds { 5190c486da34SLucian Adrian Grijincu struct net *net; 5191c486da34SLucian Adrian Grijincu int delay; 5192f0fb9b28SAditya Pakki int ret; 5193c486da34SLucian Adrian Grijincu if (!write) 5194c486da34SLucian Adrian Grijincu return -EINVAL; 5195c486da34SLucian Adrian Grijincu 5196c486da34SLucian Adrian Grijincu net = (struct net *)ctl->extra1; 5197c486da34SLucian Adrian Grijincu delay = net->ipv6.sysctl.flush_delay; 5198f0fb9b28SAditya Pakki ret = proc_dointvec(ctl, write, buffer, lenp, ppos); 5199f0fb9b28SAditya Pakki if (ret) 5200f0fb9b28SAditya Pakki return ret; 5201f0fb9b28SAditya Pakki 52022ac3ac8fSMichal Kubeček fib6_run_gc(delay <= 0 ? 0 : (unsigned long)delay, net, delay > 0); 52031da177e4SLinus Torvalds return 0; 52041da177e4SLinus Torvalds } 52051da177e4SLinus Torvalds 52067c6bb7d2SDavid Ahern static int zero; 52077c6bb7d2SDavid Ahern static int one = 1; 52087c6bb7d2SDavid Ahern 5209ed792e28SDavid Ahern static struct ctl_table ipv6_route_table_template[] = { 52101da177e4SLinus Torvalds { 52111da177e4SLinus Torvalds .procname = "flush", 52124990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.flush_delay, 52131da177e4SLinus Torvalds .maxlen = sizeof(int), 521489c8b3a1SDave Jones .mode = 0200, 52156d9f239aSAlexey Dobriyan .proc_handler = ipv6_sysctl_rtcache_flush 52161da177e4SLinus Torvalds }, 52171da177e4SLinus Torvalds { 52181da177e4SLinus Torvalds .procname = "gc_thresh", 52199a7ec3a9SDaniel Lezcano .data = &ip6_dst_ops_template.gc_thresh, 52201da177e4SLinus Torvalds .maxlen = sizeof(int), 52211da177e4SLinus Torvalds .mode = 0644, 52226d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 52231da177e4SLinus Torvalds }, 52241da177e4SLinus Torvalds { 52251da177e4SLinus Torvalds .procname = "max_size", 52264990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_max_size, 52271da177e4SLinus Torvalds .maxlen = sizeof(int), 52281da177e4SLinus Torvalds .mode = 0644, 52296d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 52301da177e4SLinus Torvalds }, 52311da177e4SLinus Torvalds { 52321da177e4SLinus Torvalds .procname = "gc_min_interval", 52334990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 52341da177e4SLinus Torvalds .maxlen = sizeof(int), 52351da177e4SLinus Torvalds .mode = 0644, 52366d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52371da177e4SLinus Torvalds }, 52381da177e4SLinus Torvalds { 52391da177e4SLinus Torvalds .procname = "gc_timeout", 52404990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_timeout, 52411da177e4SLinus Torvalds .maxlen = sizeof(int), 52421da177e4SLinus Torvalds .mode = 0644, 52436d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52441da177e4SLinus Torvalds }, 52451da177e4SLinus Torvalds { 52461da177e4SLinus Torvalds .procname = "gc_interval", 52474990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_interval, 52481da177e4SLinus Torvalds .maxlen = sizeof(int), 52491da177e4SLinus Torvalds .mode = 0644, 52506d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52511da177e4SLinus Torvalds }, 52521da177e4SLinus Torvalds { 52531da177e4SLinus Torvalds .procname = "gc_elasticity", 52544990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_elasticity, 52551da177e4SLinus Torvalds .maxlen = sizeof(int), 52561da177e4SLinus Torvalds .mode = 0644, 5257f3d3f616SMin Zhang .proc_handler = proc_dointvec, 52581da177e4SLinus Torvalds }, 52591da177e4SLinus Torvalds { 52601da177e4SLinus Torvalds .procname = "mtu_expires", 52614990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_mtu_expires, 52621da177e4SLinus Torvalds .maxlen = sizeof(int), 52631da177e4SLinus Torvalds .mode = 0644, 52646d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52651da177e4SLinus Torvalds }, 52661da177e4SLinus Torvalds { 52671da177e4SLinus Torvalds .procname = "min_adv_mss", 52684990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_min_advmss, 52691da177e4SLinus Torvalds .maxlen = sizeof(int), 52701da177e4SLinus Torvalds .mode = 0644, 5271f3d3f616SMin Zhang .proc_handler = proc_dointvec, 52721da177e4SLinus Torvalds }, 52731da177e4SLinus Torvalds { 52741da177e4SLinus Torvalds .procname = "gc_min_interval_ms", 52754990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 52761da177e4SLinus Torvalds .maxlen = sizeof(int), 52771da177e4SLinus Torvalds .mode = 0644, 52786d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_ms_jiffies, 52791da177e4SLinus Torvalds }, 52807c6bb7d2SDavid Ahern { 52817c6bb7d2SDavid Ahern .procname = "skip_notify_on_dev_down", 52827c6bb7d2SDavid Ahern .data = &init_net.ipv6.sysctl.skip_notify_on_dev_down, 52837c6bb7d2SDavid Ahern .maxlen = sizeof(int), 52847c6bb7d2SDavid Ahern .mode = 0644, 5285b8e8a863SEiichi Tsukata .proc_handler = proc_dointvec_minmax, 52867c6bb7d2SDavid Ahern .extra1 = &zero, 52877c6bb7d2SDavid Ahern .extra2 = &one, 52887c6bb7d2SDavid Ahern }, 5289f8572d8fSEric W. Biederman { } 52901da177e4SLinus Torvalds }; 52911da177e4SLinus Torvalds 52922c8c1e72SAlexey Dobriyan struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net) 5293760f2d01SDaniel Lezcano { 5294760f2d01SDaniel Lezcano struct ctl_table *table; 5295760f2d01SDaniel Lezcano 5296760f2d01SDaniel Lezcano table = kmemdup(ipv6_route_table_template, 5297760f2d01SDaniel Lezcano sizeof(ipv6_route_table_template), 5298760f2d01SDaniel Lezcano GFP_KERNEL); 52995ee09105SYOSHIFUJI Hideaki 53005ee09105SYOSHIFUJI Hideaki if (table) { 53015ee09105SYOSHIFUJI Hideaki table[0].data = &net->ipv6.sysctl.flush_delay; 5302c486da34SLucian Adrian Grijincu table[0].extra1 = net; 530386393e52SAlexey Dobriyan table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh; 53045ee09105SYOSHIFUJI Hideaki table[2].data = &net->ipv6.sysctl.ip6_rt_max_size; 53055ee09105SYOSHIFUJI Hideaki table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 53065ee09105SYOSHIFUJI Hideaki table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout; 53075ee09105SYOSHIFUJI Hideaki table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval; 53085ee09105SYOSHIFUJI Hideaki table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity; 53095ee09105SYOSHIFUJI Hideaki table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires; 53105ee09105SYOSHIFUJI Hideaki table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss; 53119c69fabeSAlexey Dobriyan table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 53127c6bb7d2SDavid Ahern table[10].data = &net->ipv6.sysctl.skip_notify_on_dev_down; 5313464dc801SEric W. Biederman 5314464dc801SEric W. Biederman /* Don't export sysctls to unprivileged users */ 5315464dc801SEric W. Biederman if (net->user_ns != &init_user_ns) 5316464dc801SEric W. Biederman table[0].procname = NULL; 53175ee09105SYOSHIFUJI Hideaki } 53185ee09105SYOSHIFUJI Hideaki 5319760f2d01SDaniel Lezcano return table; 5320760f2d01SDaniel Lezcano } 53211da177e4SLinus Torvalds #endif 53221da177e4SLinus Torvalds 53232c8c1e72SAlexey Dobriyan static int __net_init ip6_route_net_init(struct net *net) 5324cdb18761SDaniel Lezcano { 5325633d424bSPavel Emelyanov int ret = -ENOMEM; 53268ed67789SDaniel Lezcano 532786393e52SAlexey Dobriyan memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template, 532886393e52SAlexey Dobriyan sizeof(net->ipv6.ip6_dst_ops)); 5329f2fc6a54SBenjamin Thery 5330fc66f95cSEric Dumazet if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0) 5331fc66f95cSEric Dumazet goto out_ip6_dst_ops; 5332fc66f95cSEric Dumazet 5333421842edSDavid Ahern net->ipv6.fib6_null_entry = kmemdup(&fib6_null_entry_template, 5334421842edSDavid Ahern sizeof(*net->ipv6.fib6_null_entry), 5335421842edSDavid Ahern GFP_KERNEL); 5336421842edSDavid Ahern if (!net->ipv6.fib6_null_entry) 5337421842edSDavid Ahern goto out_ip6_dst_entries; 5338421842edSDavid Ahern 53398ed67789SDaniel Lezcano net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template, 53408ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_null_entry), 53418ed67789SDaniel Lezcano GFP_KERNEL); 53428ed67789SDaniel Lezcano if (!net->ipv6.ip6_null_entry) 5343421842edSDavid Ahern goto out_fib6_null_entry; 5344d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops; 534562fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_null_entry->dst, 534662fa8a84SDavid S. Miller ip6_template_metrics, true); 53478ed67789SDaniel Lezcano 53488ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5349feca7d8cSVincent Bernat net->ipv6.fib6_has_custom_rules = false; 53508ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template, 53518ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_prohibit_entry), 53528ed67789SDaniel Lezcano GFP_KERNEL); 535368fffc67SPeter Zijlstra if (!net->ipv6.ip6_prohibit_entry) 535468fffc67SPeter Zijlstra goto out_ip6_null_entry; 5355d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops; 535662fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_prohibit_entry->dst, 535762fa8a84SDavid S. Miller ip6_template_metrics, true); 53588ed67789SDaniel Lezcano 53598ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template, 53608ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_blk_hole_entry), 53618ed67789SDaniel Lezcano GFP_KERNEL); 536268fffc67SPeter Zijlstra if (!net->ipv6.ip6_blk_hole_entry) 536368fffc67SPeter Zijlstra goto out_ip6_prohibit_entry; 5364d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops; 536562fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_blk_hole_entry->dst, 536662fa8a84SDavid S. Miller ip6_template_metrics, true); 53678ed67789SDaniel Lezcano #endif 53688ed67789SDaniel Lezcano 5369b339a47cSPeter Zijlstra net->ipv6.sysctl.flush_delay = 0; 5370b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_max_size = 4096; 5371b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2; 5372b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ; 5373b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ; 5374b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_elasticity = 9; 5375b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ; 5376b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40; 53777c6bb7d2SDavid Ahern net->ipv6.sysctl.skip_notify_on_dev_down = 0; 5378b339a47cSPeter Zijlstra 53796891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire = 30*HZ; 53806891a346SBenjamin Thery 53818ed67789SDaniel Lezcano ret = 0; 53828ed67789SDaniel Lezcano out: 53838ed67789SDaniel Lezcano return ret; 5384f2fc6a54SBenjamin Thery 538568fffc67SPeter Zijlstra #ifdef CONFIG_IPV6_MULTIPLE_TABLES 538668fffc67SPeter Zijlstra out_ip6_prohibit_entry: 538768fffc67SPeter Zijlstra kfree(net->ipv6.ip6_prohibit_entry); 538868fffc67SPeter Zijlstra out_ip6_null_entry: 538968fffc67SPeter Zijlstra kfree(net->ipv6.ip6_null_entry); 539068fffc67SPeter Zijlstra #endif 5391421842edSDavid Ahern out_fib6_null_entry: 5392421842edSDavid Ahern kfree(net->ipv6.fib6_null_entry); 5393fc66f95cSEric Dumazet out_ip6_dst_entries: 5394fc66f95cSEric Dumazet dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5395f2fc6a54SBenjamin Thery out_ip6_dst_ops: 5396f2fc6a54SBenjamin Thery goto out; 5397cdb18761SDaniel Lezcano } 5398cdb18761SDaniel Lezcano 53992c8c1e72SAlexey Dobriyan static void __net_exit ip6_route_net_exit(struct net *net) 5400cdb18761SDaniel Lezcano { 5401421842edSDavid Ahern kfree(net->ipv6.fib6_null_entry); 54028ed67789SDaniel Lezcano kfree(net->ipv6.ip6_null_entry); 54038ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 54048ed67789SDaniel Lezcano kfree(net->ipv6.ip6_prohibit_entry); 54058ed67789SDaniel Lezcano kfree(net->ipv6.ip6_blk_hole_entry); 54068ed67789SDaniel Lezcano #endif 540741bb78b4SXiaotian Feng dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5408cdb18761SDaniel Lezcano } 5409cdb18761SDaniel Lezcano 5410d189634eSThomas Graf static int __net_init ip6_route_net_init_late(struct net *net) 5411d189634eSThomas Graf { 5412d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5413c3506372SChristoph Hellwig proc_create_net("ipv6_route", 0, net->proc_net, &ipv6_route_seq_ops, 5414c3506372SChristoph Hellwig sizeof(struct ipv6_route_iter)); 54153617d949SChristoph Hellwig proc_create_net_single("rt6_stats", 0444, net->proc_net, 54163617d949SChristoph Hellwig rt6_stats_seq_show, NULL); 5417d189634eSThomas Graf #endif 5418d189634eSThomas Graf return 0; 5419d189634eSThomas Graf } 5420d189634eSThomas Graf 5421d189634eSThomas Graf static void __net_exit ip6_route_net_exit_late(struct net *net) 5422d189634eSThomas Graf { 5423d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5424ece31ffdSGao feng remove_proc_entry("ipv6_route", net->proc_net); 5425ece31ffdSGao feng remove_proc_entry("rt6_stats", net->proc_net); 5426d189634eSThomas Graf #endif 5427d189634eSThomas Graf } 5428d189634eSThomas Graf 5429cdb18761SDaniel Lezcano static struct pernet_operations ip6_route_net_ops = { 5430cdb18761SDaniel Lezcano .init = ip6_route_net_init, 5431cdb18761SDaniel Lezcano .exit = ip6_route_net_exit, 5432cdb18761SDaniel Lezcano }; 5433cdb18761SDaniel Lezcano 5434c3426b47SDavid S. Miller static int __net_init ipv6_inetpeer_init(struct net *net) 5435c3426b47SDavid S. Miller { 5436c3426b47SDavid S. Miller struct inet_peer_base *bp = kmalloc(sizeof(*bp), GFP_KERNEL); 5437c3426b47SDavid S. Miller 5438c3426b47SDavid S. Miller if (!bp) 5439c3426b47SDavid S. Miller return -ENOMEM; 5440c3426b47SDavid S. Miller inet_peer_base_init(bp); 5441c3426b47SDavid S. Miller net->ipv6.peers = bp; 5442c3426b47SDavid S. Miller return 0; 5443c3426b47SDavid S. Miller } 5444c3426b47SDavid S. Miller 5445c3426b47SDavid S. Miller static void __net_exit ipv6_inetpeer_exit(struct net *net) 5446c3426b47SDavid S. Miller { 5447c3426b47SDavid S. Miller struct inet_peer_base *bp = net->ipv6.peers; 5448c3426b47SDavid S. Miller 5449c3426b47SDavid S. Miller net->ipv6.peers = NULL; 545056a6b248SDavid S. Miller inetpeer_invalidate_tree(bp); 5451c3426b47SDavid S. Miller kfree(bp); 5452c3426b47SDavid S. Miller } 5453c3426b47SDavid S. Miller 54542b823f72SDavid S. Miller static struct pernet_operations ipv6_inetpeer_ops = { 5455c3426b47SDavid S. Miller .init = ipv6_inetpeer_init, 5456c3426b47SDavid S. Miller .exit = ipv6_inetpeer_exit, 5457c3426b47SDavid S. Miller }; 5458c3426b47SDavid S. Miller 5459d189634eSThomas Graf static struct pernet_operations ip6_route_net_late_ops = { 5460d189634eSThomas Graf .init = ip6_route_net_init_late, 5461d189634eSThomas Graf .exit = ip6_route_net_exit_late, 5462d189634eSThomas Graf }; 5463d189634eSThomas Graf 54648ed67789SDaniel Lezcano static struct notifier_block ip6_route_dev_notifier = { 54658ed67789SDaniel Lezcano .notifier_call = ip6_route_dev_notify, 5466242d3a49SWANG Cong .priority = ADDRCONF_NOTIFY_PRIORITY - 10, 54678ed67789SDaniel Lezcano }; 54688ed67789SDaniel Lezcano 54692f460933SWANG Cong void __init ip6_route_init_special_entries(void) 54702f460933SWANG Cong { 54712f460933SWANG Cong /* Registering of the loopback is done before this portion of code, 54722f460933SWANG Cong * the loopback reference in rt6_info will not be taken, do it 54732f460933SWANG Cong * manually for init_net */ 5474ad1601aeSDavid Ahern init_net.ipv6.fib6_null_entry->fib6_nh.fib_nh_dev = init_net.loopback_dev; 54752f460933SWANG Cong init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev; 54762f460933SWANG Cong init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54772f460933SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 54782f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev; 54792f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54802f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev; 54812f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54822f460933SWANG Cong #endif 54832f460933SWANG Cong } 54842f460933SWANG Cong 5485433d49c3SDaniel Lezcano int __init ip6_route_init(void) 54861da177e4SLinus Torvalds { 5487433d49c3SDaniel Lezcano int ret; 54888d0b94afSMartin KaFai Lau int cpu; 5489433d49c3SDaniel Lezcano 54909a7ec3a9SDaniel Lezcano ret = -ENOMEM; 54919a7ec3a9SDaniel Lezcano ip6_dst_ops_template.kmem_cachep = 54929a7ec3a9SDaniel Lezcano kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0, 54939a7ec3a9SDaniel Lezcano SLAB_HWCACHE_ALIGN, NULL); 54949a7ec3a9SDaniel Lezcano if (!ip6_dst_ops_template.kmem_cachep) 5495c19a28e1SFernando Carrijo goto out; 549614e50e57SDavid S. Miller 5497fc66f95cSEric Dumazet ret = dst_entries_init(&ip6_dst_blackhole_ops); 54988ed67789SDaniel Lezcano if (ret) 5499bdb3289fSDaniel Lezcano goto out_kmem_cache; 5500bdb3289fSDaniel Lezcano 5501c3426b47SDavid S. Miller ret = register_pernet_subsys(&ipv6_inetpeer_ops); 5502c3426b47SDavid S. Miller if (ret) 5503e8803b6cSDavid S. Miller goto out_dst_entries; 55042a0c451aSThomas Graf 55057e52b33bSDavid S. Miller ret = register_pernet_subsys(&ip6_route_net_ops); 55067e52b33bSDavid S. Miller if (ret) 55077e52b33bSDavid S. Miller goto out_register_inetpeer; 5508c3426b47SDavid S. Miller 55095dc121e9SArnaud Ebalard ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep; 55105dc121e9SArnaud Ebalard 5511e8803b6cSDavid S. Miller ret = fib6_init(); 5512433d49c3SDaniel Lezcano if (ret) 55138ed67789SDaniel Lezcano goto out_register_subsys; 5514433d49c3SDaniel Lezcano 5515433d49c3SDaniel Lezcano ret = xfrm6_init(); 5516433d49c3SDaniel Lezcano if (ret) 5517e8803b6cSDavid S. Miller goto out_fib6_init; 5518c35b7e72SDaniel Lezcano 5519433d49c3SDaniel Lezcano ret = fib6_rules_init(); 5520433d49c3SDaniel Lezcano if (ret) 5521433d49c3SDaniel Lezcano goto xfrm6_init; 55227e5449c2SDaniel Lezcano 5523d189634eSThomas Graf ret = register_pernet_subsys(&ip6_route_net_late_ops); 5524d189634eSThomas Graf if (ret) 5525d189634eSThomas Graf goto fib6_rules_init; 5526d189634eSThomas Graf 552716feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_NEWROUTE, 552816feebcfSFlorian Westphal inet6_rtm_newroute, NULL, 0); 552916feebcfSFlorian Westphal if (ret < 0) 553016feebcfSFlorian Westphal goto out_register_late_subsys; 553116feebcfSFlorian Westphal 553216feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_DELROUTE, 553316feebcfSFlorian Westphal inet6_rtm_delroute, NULL, 0); 553416feebcfSFlorian Westphal if (ret < 0) 553516feebcfSFlorian Westphal goto out_register_late_subsys; 553616feebcfSFlorian Westphal 553716feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETROUTE, 553816feebcfSFlorian Westphal inet6_rtm_getroute, NULL, 553916feebcfSFlorian Westphal RTNL_FLAG_DOIT_UNLOCKED); 554016feebcfSFlorian Westphal if (ret < 0) 5541d189634eSThomas Graf goto out_register_late_subsys; 5542433d49c3SDaniel Lezcano 55438ed67789SDaniel Lezcano ret = register_netdevice_notifier(&ip6_route_dev_notifier); 5544cdb18761SDaniel Lezcano if (ret) 5545d189634eSThomas Graf goto out_register_late_subsys; 55468ed67789SDaniel Lezcano 55478d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 55488d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 55498d0b94afSMartin KaFai Lau 55508d0b94afSMartin KaFai Lau INIT_LIST_HEAD(&ul->head); 55518d0b94afSMartin KaFai Lau spin_lock_init(&ul->lock); 55528d0b94afSMartin KaFai Lau } 55538d0b94afSMartin KaFai Lau 5554433d49c3SDaniel Lezcano out: 5555433d49c3SDaniel Lezcano return ret; 5556433d49c3SDaniel Lezcano 5557d189634eSThomas Graf out_register_late_subsys: 555816feebcfSFlorian Westphal rtnl_unregister_all(PF_INET6); 5559d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5560433d49c3SDaniel Lezcano fib6_rules_init: 5561433d49c3SDaniel Lezcano fib6_rules_cleanup(); 5562433d49c3SDaniel Lezcano xfrm6_init: 5563433d49c3SDaniel Lezcano xfrm6_fini(); 55642a0c451aSThomas Graf out_fib6_init: 55652a0c451aSThomas Graf fib6_gc_cleanup(); 55668ed67789SDaniel Lezcano out_register_subsys: 55678ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 55687e52b33bSDavid S. Miller out_register_inetpeer: 55697e52b33bSDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 5570fc66f95cSEric Dumazet out_dst_entries: 5571fc66f95cSEric Dumazet dst_entries_destroy(&ip6_dst_blackhole_ops); 5572433d49c3SDaniel Lezcano out_kmem_cache: 5573f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 5574433d49c3SDaniel Lezcano goto out; 55751da177e4SLinus Torvalds } 55761da177e4SLinus Torvalds 55771da177e4SLinus Torvalds void ip6_route_cleanup(void) 55781da177e4SLinus Torvalds { 55798ed67789SDaniel Lezcano unregister_netdevice_notifier(&ip6_route_dev_notifier); 5580d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5581101367c2SThomas Graf fib6_rules_cleanup(); 55821da177e4SLinus Torvalds xfrm6_fini(); 55831da177e4SLinus Torvalds fib6_gc_cleanup(); 5584c3426b47SDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 55858ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 558641bb78b4SXiaotian Feng dst_entries_destroy(&ip6_dst_blackhole_ops); 5587f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 55881da177e4SLinus Torvalds } 5589