11da177e4SLinus Torvalds /* 21da177e4SLinus Torvalds * Linux INET6 implementation 31da177e4SLinus Torvalds * FIB front-end. 41da177e4SLinus Torvalds * 51da177e4SLinus Torvalds * Authors: 61da177e4SLinus Torvalds * Pedro Roque <roque@di.fc.ul.pt> 71da177e4SLinus Torvalds * 81da177e4SLinus Torvalds * This program is free software; you can redistribute it and/or 91da177e4SLinus Torvalds * modify it under the terms of the GNU General Public License 101da177e4SLinus Torvalds * as published by the Free Software Foundation; either version 111da177e4SLinus Torvalds * 2 of the License, or (at your option) any later version. 121da177e4SLinus Torvalds */ 131da177e4SLinus Torvalds 141da177e4SLinus Torvalds /* Changes: 151da177e4SLinus Torvalds * 161da177e4SLinus Torvalds * YOSHIFUJI Hideaki @USAGI 171da177e4SLinus Torvalds * reworked default router selection. 181da177e4SLinus Torvalds * - respect outgoing interface 191da177e4SLinus Torvalds * - select from (probably) reachable routers (i.e. 201da177e4SLinus Torvalds * routers in REACHABLE, STALE, DELAY or PROBE states). 211da177e4SLinus Torvalds * - always select the same router if it is (probably) 221da177e4SLinus Torvalds * reachable. otherwise, round-robin the list. 23c0bece9fSYOSHIFUJI Hideaki * Ville Nuorvala 24c0bece9fSYOSHIFUJI Hideaki * Fixed routing subtrees. 251da177e4SLinus Torvalds */ 261da177e4SLinus Torvalds 27f3213831SJoe Perches #define pr_fmt(fmt) "IPv6: " fmt 28f3213831SJoe Perches 294fc268d2SRandy Dunlap #include <linux/capability.h> 301da177e4SLinus Torvalds #include <linux/errno.h> 31bc3b2d7fSPaul Gortmaker #include <linux/export.h> 321da177e4SLinus Torvalds #include <linux/types.h> 331da177e4SLinus Torvalds #include <linux/times.h> 341da177e4SLinus Torvalds #include <linux/socket.h> 351da177e4SLinus Torvalds #include <linux/sockios.h> 361da177e4SLinus Torvalds #include <linux/net.h> 371da177e4SLinus Torvalds #include <linux/route.h> 381da177e4SLinus Torvalds #include <linux/netdevice.h> 391da177e4SLinus Torvalds #include <linux/in6.h> 407bc570c8SYOSHIFUJI Hideaki #include <linux/mroute6.h> 411da177e4SLinus Torvalds #include <linux/init.h> 421da177e4SLinus Torvalds #include <linux/if_arp.h> 431da177e4SLinus Torvalds #include <linux/proc_fs.h> 441da177e4SLinus Torvalds #include <linux/seq_file.h> 455b7c931dSDaniel Lezcano #include <linux/nsproxy.h> 465a0e3ad6STejun Heo #include <linux/slab.h> 4735732d01SWei Wang #include <linux/jhash.h> 48457c4cbcSEric W. Biederman #include <net/net_namespace.h> 491da177e4SLinus Torvalds #include <net/snmp.h> 501da177e4SLinus Torvalds #include <net/ipv6.h> 511da177e4SLinus Torvalds #include <net/ip6_fib.h> 521da177e4SLinus Torvalds #include <net/ip6_route.h> 531da177e4SLinus Torvalds #include <net/ndisc.h> 541da177e4SLinus Torvalds #include <net/addrconf.h> 551da177e4SLinus Torvalds #include <net/tcp.h> 561da177e4SLinus Torvalds #include <linux/rtnetlink.h> 571da177e4SLinus Torvalds #include <net/dst.h> 58904af04dSJiri Benc #include <net/dst_metadata.h> 591da177e4SLinus Torvalds #include <net/xfrm.h> 608d71740cSTom Tucker #include <net/netevent.h> 6121713ebcSThomas Graf #include <net/netlink.h> 6251ebd318SNicolas Dichtel #include <net/nexthop.h> 6319e42e45SRoopa Prabhu #include <net/lwtunnel.h> 64904af04dSJiri Benc #include <net/ip_tunnels.h> 65ca254490SDavid Ahern #include <net/l3mdev.h> 66b811580dSDavid Ahern #include <trace/events/fib6.h> 671da177e4SLinus Torvalds 687c0f6ba6SLinus Torvalds #include <linux/uaccess.h> 691da177e4SLinus Torvalds 701da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 711da177e4SLinus Torvalds #include <linux/sysctl.h> 721da177e4SLinus Torvalds #endif 731da177e4SLinus Torvalds 74afc154e9SHannes Frederic Sowa enum rt6_nud_state { 757e980569SJiri Benc RT6_NUD_FAIL_HARD = -3, 767e980569SJiri Benc RT6_NUD_FAIL_PROBE = -2, 777e980569SJiri Benc RT6_NUD_FAIL_DO_RR = -1, 78afc154e9SHannes Frederic Sowa RT6_NUD_SUCCEED = 1 79afc154e9SHannes Frederic Sowa }; 80afc154e9SHannes Frederic Sowa 8183a09abdSMartin KaFai Lau static void ip6_rt_copy_init(struct rt6_info *rt, struct rt6_info *ort); 821da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie); 830dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst); 84ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst); 851da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *); 861da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *); 871da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *, 881da177e4SLinus Torvalds struct net_device *dev, int how); 89569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops); 901da177e4SLinus Torvalds 911da177e4SLinus Torvalds static int ip6_pkt_discard(struct sk_buff *skb); 92ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb); 937150aedeSKamala R static int ip6_pkt_prohibit(struct sk_buff *skb); 94ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb); 951da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb); 966700c270SDavid S. Miller static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 976700c270SDavid S. Miller struct sk_buff *skb, u32 mtu); 986700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, 996700c270SDavid S. Miller struct sk_buff *skb); 1004b32b5adSMartin KaFai Lau static void rt6_dst_from_metrics_check(struct rt6_info *rt); 10152bd4c0cSNicolas Dichtel static int rt6_score_route(struct rt6_info *rt, int oif, int strict); 10216a16cd3SDavid Ahern static size_t rt6_nlmsg_size(struct rt6_info *rt); 10316a16cd3SDavid Ahern static int rt6_fill_node(struct net *net, 10416a16cd3SDavid Ahern struct sk_buff *skb, struct rt6_info *rt, 10516a16cd3SDavid Ahern struct in6_addr *dst, struct in6_addr *src, 10616a16cd3SDavid Ahern int iif, int type, u32 portid, u32 seq, 10716a16cd3SDavid Ahern unsigned int flags); 10835732d01SWei Wang static struct rt6_info *rt6_find_cached_rt(struct rt6_info *rt, 10935732d01SWei Wang struct in6_addr *daddr, 11035732d01SWei Wang struct in6_addr *saddr); 1111da177e4SLinus Torvalds 11270ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 113efa2cea0SDaniel Lezcano static struct rt6_info *rt6_add_route_info(struct net *net, 114b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 115830218c1SDavid Ahern const struct in6_addr *gwaddr, 116830218c1SDavid Ahern struct net_device *dev, 11795c96174SEric Dumazet unsigned int pref); 118efa2cea0SDaniel Lezcano static struct rt6_info *rt6_get_route_info(struct net *net, 119b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 120830218c1SDavid Ahern const struct in6_addr *gwaddr, 121830218c1SDavid Ahern struct net_device *dev); 12270ceb4f5SYOSHIFUJI Hideaki #endif 12370ceb4f5SYOSHIFUJI Hideaki 1248d0b94afSMartin KaFai Lau struct uncached_list { 1258d0b94afSMartin KaFai Lau spinlock_t lock; 1268d0b94afSMartin KaFai Lau struct list_head head; 1278d0b94afSMartin KaFai Lau }; 1288d0b94afSMartin KaFai Lau 1298d0b94afSMartin KaFai Lau static DEFINE_PER_CPU_ALIGNED(struct uncached_list, rt6_uncached_list); 1308d0b94afSMartin KaFai Lau 131510c321bSXin Long void rt6_uncached_list_add(struct rt6_info *rt) 1328d0b94afSMartin KaFai Lau { 1338d0b94afSMartin KaFai Lau struct uncached_list *ul = raw_cpu_ptr(&rt6_uncached_list); 1348d0b94afSMartin KaFai Lau 1358d0b94afSMartin KaFai Lau rt->rt6i_uncached_list = ul; 1368d0b94afSMartin KaFai Lau 1378d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1388d0b94afSMartin KaFai Lau list_add_tail(&rt->rt6i_uncached, &ul->head); 1398d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1408d0b94afSMartin KaFai Lau } 1418d0b94afSMartin KaFai Lau 142510c321bSXin Long void rt6_uncached_list_del(struct rt6_info *rt) 1438d0b94afSMartin KaFai Lau { 1448d0b94afSMartin KaFai Lau if (!list_empty(&rt->rt6i_uncached)) { 1458d0b94afSMartin KaFai Lau struct uncached_list *ul = rt->rt6i_uncached_list; 14681eb8447SWei Wang struct net *net = dev_net(rt->dst.dev); 1478d0b94afSMartin KaFai Lau 1488d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1498d0b94afSMartin KaFai Lau list_del(&rt->rt6i_uncached); 15081eb8447SWei Wang atomic_dec(&net->ipv6.rt6_stats->fib_rt_uncache); 1518d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1528d0b94afSMartin KaFai Lau } 1538d0b94afSMartin KaFai Lau } 1548d0b94afSMartin KaFai Lau 1558d0b94afSMartin KaFai Lau static void rt6_uncached_list_flush_dev(struct net *net, struct net_device *dev) 1568d0b94afSMartin KaFai Lau { 1578d0b94afSMartin KaFai Lau struct net_device *loopback_dev = net->loopback_dev; 1588d0b94afSMartin KaFai Lau int cpu; 1598d0b94afSMartin KaFai Lau 160e332bc67SEric W. Biederman if (dev == loopback_dev) 161e332bc67SEric W. Biederman return; 162e332bc67SEric W. Biederman 1638d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 1648d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 1658d0b94afSMartin KaFai Lau struct rt6_info *rt; 1668d0b94afSMartin KaFai Lau 1678d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1688d0b94afSMartin KaFai Lau list_for_each_entry(rt, &ul->head, rt6i_uncached) { 1698d0b94afSMartin KaFai Lau struct inet6_dev *rt_idev = rt->rt6i_idev; 1708d0b94afSMartin KaFai Lau struct net_device *rt_dev = rt->dst.dev; 1718d0b94afSMartin KaFai Lau 172e332bc67SEric W. Biederman if (rt_idev->dev == dev) { 1738d0b94afSMartin KaFai Lau rt->rt6i_idev = in6_dev_get(loopback_dev); 1748d0b94afSMartin KaFai Lau in6_dev_put(rt_idev); 1758d0b94afSMartin KaFai Lau } 1768d0b94afSMartin KaFai Lau 177e332bc67SEric W. Biederman if (rt_dev == dev) { 1788d0b94afSMartin KaFai Lau rt->dst.dev = loopback_dev; 1798d0b94afSMartin KaFai Lau dev_hold(rt->dst.dev); 1808d0b94afSMartin KaFai Lau dev_put(rt_dev); 1818d0b94afSMartin KaFai Lau } 1828d0b94afSMartin KaFai Lau } 1838d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1848d0b94afSMartin KaFai Lau } 1858d0b94afSMartin KaFai Lau } 1868d0b94afSMartin KaFai Lau 187d52d3997SMartin KaFai Lau static u32 *rt6_pcpu_cow_metrics(struct rt6_info *rt) 188d52d3997SMartin KaFai Lau { 1893a2232e9SDavid Miller return dst_metrics_write_ptr(&rt->from->dst); 190d52d3997SMartin KaFai Lau } 191d52d3997SMartin KaFai Lau 19206582540SDavid S. Miller static u32 *ipv6_cow_metrics(struct dst_entry *dst, unsigned long old) 19306582540SDavid S. Miller { 19406582540SDavid S. Miller struct rt6_info *rt = (struct rt6_info *)dst; 19506582540SDavid S. Miller 196d52d3997SMartin KaFai Lau if (rt->rt6i_flags & RTF_PCPU) 197d52d3997SMartin KaFai Lau return rt6_pcpu_cow_metrics(rt); 198d52d3997SMartin KaFai Lau else if (rt->rt6i_flags & RTF_CACHE) 1994b32b5adSMartin KaFai Lau return NULL; 2004b32b5adSMartin KaFai Lau else 2013b471175SMartin KaFai Lau return dst_cow_metrics_generic(dst, old); 20206582540SDavid S. Miller } 20306582540SDavid S. Miller 204f894cbf8SDavid S. Miller static inline const void *choose_neigh_daddr(struct rt6_info *rt, 205f894cbf8SDavid S. Miller struct sk_buff *skb, 206f894cbf8SDavid S. Miller const void *daddr) 20739232973SDavid S. Miller { 20839232973SDavid S. Miller struct in6_addr *p = &rt->rt6i_gateway; 20939232973SDavid S. Miller 210a7563f34SDavid S. Miller if (!ipv6_addr_any(p)) 21139232973SDavid S. Miller return (const void *) p; 212f894cbf8SDavid S. Miller else if (skb) 213f894cbf8SDavid S. Miller return &ipv6_hdr(skb)->daddr; 21439232973SDavid S. Miller return daddr; 21539232973SDavid S. Miller } 21639232973SDavid S. Miller 217f894cbf8SDavid S. Miller static struct neighbour *ip6_neigh_lookup(const struct dst_entry *dst, 218f894cbf8SDavid S. Miller struct sk_buff *skb, 219f894cbf8SDavid S. Miller const void *daddr) 220d3aaeb38SDavid S. Miller { 22139232973SDavid S. Miller struct rt6_info *rt = (struct rt6_info *) dst; 22239232973SDavid S. Miller struct neighbour *n; 22339232973SDavid S. Miller 224f894cbf8SDavid S. Miller daddr = choose_neigh_daddr(rt, skb, daddr); 2258e022ee6SYOSHIFUJI Hideaki / 吉藤英明 n = __ipv6_neigh_lookup(dst->dev, daddr); 226f83c7790SDavid S. Miller if (n) 227f83c7790SDavid S. Miller return n; 228f83c7790SDavid S. Miller return neigh_create(&nd_tbl, daddr, dst->dev); 229f83c7790SDavid S. Miller } 230f83c7790SDavid S. Miller 23163fca65dSJulian Anastasov static void ip6_confirm_neigh(const struct dst_entry *dst, const void *daddr) 23263fca65dSJulian Anastasov { 23363fca65dSJulian Anastasov struct net_device *dev = dst->dev; 23463fca65dSJulian Anastasov struct rt6_info *rt = (struct rt6_info *)dst; 23563fca65dSJulian Anastasov 23663fca65dSJulian Anastasov daddr = choose_neigh_daddr(rt, NULL, daddr); 23763fca65dSJulian Anastasov if (!daddr) 23863fca65dSJulian Anastasov return; 23963fca65dSJulian Anastasov if (dev->flags & (IFF_NOARP | IFF_LOOPBACK)) 24063fca65dSJulian Anastasov return; 24163fca65dSJulian Anastasov if (ipv6_addr_is_multicast((const struct in6_addr *)daddr)) 24263fca65dSJulian Anastasov return; 24363fca65dSJulian Anastasov __ipv6_confirm_neigh(dev, daddr); 24463fca65dSJulian Anastasov } 24563fca65dSJulian Anastasov 2469a7ec3a9SDaniel Lezcano static struct dst_ops ip6_dst_ops_template = { 2471da177e4SLinus Torvalds .family = AF_INET6, 2481da177e4SLinus Torvalds .gc = ip6_dst_gc, 2491da177e4SLinus Torvalds .gc_thresh = 1024, 2501da177e4SLinus Torvalds .check = ip6_dst_check, 2510dbaee3bSDavid S. Miller .default_advmss = ip6_default_advmss, 252ebb762f2SSteffen Klassert .mtu = ip6_mtu, 25306582540SDavid S. Miller .cow_metrics = ipv6_cow_metrics, 2541da177e4SLinus Torvalds .destroy = ip6_dst_destroy, 2551da177e4SLinus Torvalds .ifdown = ip6_dst_ifdown, 2561da177e4SLinus Torvalds .negative_advice = ip6_negative_advice, 2571da177e4SLinus Torvalds .link_failure = ip6_link_failure, 2581da177e4SLinus Torvalds .update_pmtu = ip6_rt_update_pmtu, 2596e157b6aSDavid S. Miller .redirect = rt6_do_redirect, 2609f8955ccSEric W. Biederman .local_out = __ip6_local_out, 261d3aaeb38SDavid S. Miller .neigh_lookup = ip6_neigh_lookup, 26263fca65dSJulian Anastasov .confirm_neigh = ip6_confirm_neigh, 2631da177e4SLinus Torvalds }; 2641da177e4SLinus Torvalds 265ebb762f2SSteffen Klassert static unsigned int ip6_blackhole_mtu(const struct dst_entry *dst) 266ec831ea7SRoland Dreier { 267618f9bc7SSteffen Klassert unsigned int mtu = dst_metric_raw(dst, RTAX_MTU); 268618f9bc7SSteffen Klassert 269618f9bc7SSteffen Klassert return mtu ? : dst->dev->mtu; 270ec831ea7SRoland Dreier } 271ec831ea7SRoland Dreier 2726700c270SDavid S. Miller static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, struct sock *sk, 2736700c270SDavid S. Miller struct sk_buff *skb, u32 mtu) 27414e50e57SDavid S. Miller { 27514e50e57SDavid S. Miller } 27614e50e57SDavid S. Miller 2776700c270SDavid S. Miller static void ip6_rt_blackhole_redirect(struct dst_entry *dst, struct sock *sk, 2786700c270SDavid S. Miller struct sk_buff *skb) 279b587ee3bSDavid S. Miller { 280b587ee3bSDavid S. Miller } 281b587ee3bSDavid S. Miller 28214e50e57SDavid S. Miller static struct dst_ops ip6_dst_blackhole_ops = { 28314e50e57SDavid S. Miller .family = AF_INET6, 28414e50e57SDavid S. Miller .destroy = ip6_dst_destroy, 28514e50e57SDavid S. Miller .check = ip6_dst_check, 286ebb762f2SSteffen Klassert .mtu = ip6_blackhole_mtu, 287214f45c9SEric Dumazet .default_advmss = ip6_default_advmss, 28814e50e57SDavid S. Miller .update_pmtu = ip6_rt_blackhole_update_pmtu, 289b587ee3bSDavid S. Miller .redirect = ip6_rt_blackhole_redirect, 2900a1f5962SMartin KaFai Lau .cow_metrics = dst_cow_metrics_generic, 291d3aaeb38SDavid S. Miller .neigh_lookup = ip6_neigh_lookup, 29214e50e57SDavid S. Miller }; 29314e50e57SDavid S. Miller 29462fa8a84SDavid S. Miller static const u32 ip6_template_metrics[RTAX_MAX] = { 29514edd87dSLi RongQing [RTAX_HOPLIMIT - 1] = 0, 29662fa8a84SDavid S. Miller }; 29762fa8a84SDavid S. Miller 298fb0af4c7SEric Dumazet static const struct rt6_info ip6_null_entry_template = { 2991da177e4SLinus Torvalds .dst = { 3001da177e4SLinus Torvalds .__refcnt = ATOMIC_INIT(1), 3011da177e4SLinus Torvalds .__use = 1, 3022c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 3031da177e4SLinus Torvalds .error = -ENETUNREACH, 3041da177e4SLinus Torvalds .input = ip6_pkt_discard, 3051da177e4SLinus Torvalds .output = ip6_pkt_discard_out, 3061da177e4SLinus Torvalds }, 3071da177e4SLinus Torvalds .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 3084f724279SJean-Mickael Guerin .rt6i_protocol = RTPROT_KERNEL, 3091da177e4SLinus Torvalds .rt6i_metric = ~(u32) 0, 3101da177e4SLinus Torvalds .rt6i_ref = ATOMIC_INIT(1), 3111da177e4SLinus Torvalds }; 3121da177e4SLinus Torvalds 313101367c2SThomas Graf #ifdef CONFIG_IPV6_MULTIPLE_TABLES 314101367c2SThomas Graf 315fb0af4c7SEric Dumazet static const struct rt6_info ip6_prohibit_entry_template = { 316101367c2SThomas Graf .dst = { 317101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 318101367c2SThomas Graf .__use = 1, 3192c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 320101367c2SThomas Graf .error = -EACCES, 3219ce8ade0SThomas Graf .input = ip6_pkt_prohibit, 3229ce8ade0SThomas Graf .output = ip6_pkt_prohibit_out, 323101367c2SThomas Graf }, 324101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 3254f724279SJean-Mickael Guerin .rt6i_protocol = RTPROT_KERNEL, 326101367c2SThomas Graf .rt6i_metric = ~(u32) 0, 327101367c2SThomas Graf .rt6i_ref = ATOMIC_INIT(1), 328101367c2SThomas Graf }; 329101367c2SThomas Graf 330fb0af4c7SEric Dumazet static const struct rt6_info ip6_blk_hole_entry_template = { 331101367c2SThomas Graf .dst = { 332101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 333101367c2SThomas Graf .__use = 1, 3342c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 335101367c2SThomas Graf .error = -EINVAL, 336352e512cSHerbert Xu .input = dst_discard, 337ede2059dSEric W. Biederman .output = dst_discard_out, 338101367c2SThomas Graf }, 339101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 3404f724279SJean-Mickael Guerin .rt6i_protocol = RTPROT_KERNEL, 341101367c2SThomas Graf .rt6i_metric = ~(u32) 0, 342101367c2SThomas Graf .rt6i_ref = ATOMIC_INIT(1), 343101367c2SThomas Graf }; 344101367c2SThomas Graf 345101367c2SThomas Graf #endif 346101367c2SThomas Graf 347ebfa45f0SMartin KaFai Lau static void rt6_info_init(struct rt6_info *rt) 348ebfa45f0SMartin KaFai Lau { 349ebfa45f0SMartin KaFai Lau struct dst_entry *dst = &rt->dst; 350ebfa45f0SMartin KaFai Lau 351ebfa45f0SMartin KaFai Lau memset(dst + 1, 0, sizeof(*rt) - sizeof(*dst)); 352ebfa45f0SMartin KaFai Lau INIT_LIST_HEAD(&rt->rt6i_siblings); 353ebfa45f0SMartin KaFai Lau INIT_LIST_HEAD(&rt->rt6i_uncached); 354ebfa45f0SMartin KaFai Lau } 355ebfa45f0SMartin KaFai Lau 3561da177e4SLinus Torvalds /* allocate dst with ip6_dst_ops */ 357d52d3997SMartin KaFai Lau static struct rt6_info *__ip6_dst_alloc(struct net *net, 358957c665fSDavid S. Miller struct net_device *dev, 359ad706862SMartin KaFai Lau int flags) 3601da177e4SLinus Torvalds { 36197bab73fSDavid S. Miller struct rt6_info *rt = dst_alloc(&net->ipv6.ip6_dst_ops, dev, 362b2a9c0edSWei Wang 1, DST_OBSOLETE_FORCE_CHK, flags); 363cf911662SDavid S. Miller 36481eb8447SWei Wang if (rt) { 365ebfa45f0SMartin KaFai Lau rt6_info_init(rt); 36681eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 36781eb8447SWei Wang } 3688104891bSSteffen Klassert 369cf911662SDavid S. Miller return rt; 3701da177e4SLinus Torvalds } 3711da177e4SLinus Torvalds 3729ab179d8SDavid Ahern struct rt6_info *ip6_dst_alloc(struct net *net, 373d52d3997SMartin KaFai Lau struct net_device *dev, 374ad706862SMartin KaFai Lau int flags) 375d52d3997SMartin KaFai Lau { 376ad706862SMartin KaFai Lau struct rt6_info *rt = __ip6_dst_alloc(net, dev, flags); 377d52d3997SMartin KaFai Lau 378d52d3997SMartin KaFai Lau if (rt) { 379d52d3997SMartin KaFai Lau rt->rt6i_pcpu = alloc_percpu_gfp(struct rt6_info *, GFP_ATOMIC); 380bfd8e5a4SEric Dumazet if (!rt->rt6i_pcpu) { 381587fea74SWei Wang dst_release_immediate(&rt->dst); 382d52d3997SMartin KaFai Lau return NULL; 383d52d3997SMartin KaFai Lau } 384d52d3997SMartin KaFai Lau } 385d52d3997SMartin KaFai Lau 386d52d3997SMartin KaFai Lau return rt; 387d52d3997SMartin KaFai Lau } 3889ab179d8SDavid Ahern EXPORT_SYMBOL(ip6_dst_alloc); 389d52d3997SMartin KaFai Lau 3901da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *dst) 3911da177e4SLinus Torvalds { 3921da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 39335732d01SWei Wang struct rt6_exception_bucket *bucket; 3943a2232e9SDavid Miller struct rt6_info *from = rt->from; 3958d0b94afSMartin KaFai Lau struct inet6_dev *idev; 3961da177e4SLinus Torvalds 3978e2ec639SYan, Zheng dst_destroy_metrics_generic(dst); 398d52d3997SMartin KaFai Lau free_percpu(rt->rt6i_pcpu); 3998d0b94afSMartin KaFai Lau rt6_uncached_list_del(rt); 4008d0b94afSMartin KaFai Lau 4018d0b94afSMartin KaFai Lau idev = rt->rt6i_idev; 40238308473SDavid S. Miller if (idev) { 4031da177e4SLinus Torvalds rt->rt6i_idev = NULL; 4041da177e4SLinus Torvalds in6_dev_put(idev); 4051da177e4SLinus Torvalds } 40635732d01SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1); 40735732d01SWei Wang if (bucket) { 40835732d01SWei Wang rt->rt6i_exception_bucket = NULL; 40935732d01SWei Wang kfree(bucket); 41035732d01SWei Wang } 4111716a961SGao feng 4123a2232e9SDavid Miller rt->from = NULL; 4133a2232e9SDavid Miller dst_release(&from->dst); 414b3419363SDavid S. Miller } 415b3419363SDavid S. Miller 4161da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev, 4171da177e4SLinus Torvalds int how) 4181da177e4SLinus Torvalds { 4191da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 4201da177e4SLinus Torvalds struct inet6_dev *idev = rt->rt6i_idev; 4215a3e55d6SDenis V. Lunev struct net_device *loopback_dev = 422c346dca1SYOSHIFUJI Hideaki dev_net(dev)->loopback_dev; 4231da177e4SLinus Torvalds 424e5645f51SWei Wang if (idev && idev->dev != loopback_dev) { 425e5645f51SWei Wang struct inet6_dev *loopback_idev = in6_dev_get(loopback_dev); 42638308473SDavid S. Miller if (loopback_idev) { 4271da177e4SLinus Torvalds rt->rt6i_idev = loopback_idev; 4281da177e4SLinus Torvalds in6_dev_put(idev); 4291da177e4SLinus Torvalds } 4301da177e4SLinus Torvalds } 43197cac082SDavid S. Miller } 4321da177e4SLinus Torvalds 4335973fb1eSMartin KaFai Lau static bool __rt6_check_expired(const struct rt6_info *rt) 4345973fb1eSMartin KaFai Lau { 4355973fb1eSMartin KaFai Lau if (rt->rt6i_flags & RTF_EXPIRES) 4365973fb1eSMartin KaFai Lau return time_after(jiffies, rt->dst.expires); 4375973fb1eSMartin KaFai Lau else 4385973fb1eSMartin KaFai Lau return false; 4395973fb1eSMartin KaFai Lau } 4405973fb1eSMartin KaFai Lau 441a50feda5SEric Dumazet static bool rt6_check_expired(const struct rt6_info *rt) 4421da177e4SLinus Torvalds { 4431716a961SGao feng if (rt->rt6i_flags & RTF_EXPIRES) { 4441716a961SGao feng if (time_after(jiffies, rt->dst.expires)) 445a50feda5SEric Dumazet return true; 4463a2232e9SDavid Miller } else if (rt->from) { 4471e2ea8adSXin Long return rt->dst.obsolete != DST_OBSOLETE_FORCE_CHK || 4483a2232e9SDavid Miller rt6_check_expired(rt->from); 4491716a961SGao feng } 450a50feda5SEric Dumazet return false; 4511da177e4SLinus Torvalds } 4521da177e4SLinus Torvalds 453b4bac172SDavid Ahern static struct rt6_info *rt6_multipath_select(const struct net *net, 454b4bac172SDavid Ahern struct rt6_info *match, 45552bd4c0cSNicolas Dichtel struct flowi6 *fl6, int oif, 456b75cc8f9SDavid Ahern const struct sk_buff *skb, 45752bd4c0cSNicolas Dichtel int strict) 45851ebd318SNicolas Dichtel { 45951ebd318SNicolas Dichtel struct rt6_info *sibling, *next_sibling; 46051ebd318SNicolas Dichtel 461b673d6ccSJakub Sitnicki /* We might have already computed the hash for ICMPv6 errors. In such 462b673d6ccSJakub Sitnicki * case it will always be non-zero. Otherwise now is the time to do it. 463b673d6ccSJakub Sitnicki */ 464b673d6ccSJakub Sitnicki if (!fl6->mp_hash) 465b4bac172SDavid Ahern fl6->mp_hash = rt6_multipath_hash(net, fl6, skb, NULL); 466b673d6ccSJakub Sitnicki 4673d709f69SIdo Schimmel if (fl6->mp_hash <= atomic_read(&match->rt6i_nh_upper_bound)) 4683d709f69SIdo Schimmel return match; 469bbfcd776SIdo Schimmel 4703d709f69SIdo Schimmel list_for_each_entry_safe(sibling, next_sibling, &match->rt6i_siblings, 4713d709f69SIdo Schimmel rt6i_siblings) { 4723d709f69SIdo Schimmel if (fl6->mp_hash > atomic_read(&sibling->rt6i_nh_upper_bound)) 4733d709f69SIdo Schimmel continue; 47452bd4c0cSNicolas Dichtel if (rt6_score_route(sibling, oif, strict) < 0) 47552bd4c0cSNicolas Dichtel break; 47651ebd318SNicolas Dichtel match = sibling; 47751ebd318SNicolas Dichtel break; 47851ebd318SNicolas Dichtel } 4793d709f69SIdo Schimmel 48051ebd318SNicolas Dichtel return match; 48151ebd318SNicolas Dichtel } 48251ebd318SNicolas Dichtel 4831da177e4SLinus Torvalds /* 48466f5d6ceSWei Wang * Route lookup. rcu_read_lock() should be held. 4851da177e4SLinus Torvalds */ 4861da177e4SLinus Torvalds 4878ed67789SDaniel Lezcano static inline struct rt6_info *rt6_device_match(struct net *net, 4888ed67789SDaniel Lezcano struct rt6_info *rt, 489b71d1d42SEric Dumazet const struct in6_addr *saddr, 4901da177e4SLinus Torvalds int oif, 491d420895eSYOSHIFUJI Hideaki int flags) 4921da177e4SLinus Torvalds { 4931da177e4SLinus Torvalds struct rt6_info *local = NULL; 4941da177e4SLinus Torvalds struct rt6_info *sprt; 4951da177e4SLinus Torvalds 4968067bb8cSIdo Schimmel if (!oif && ipv6_addr_any(saddr) && !(rt->rt6i_nh_flags & RTNH_F_DEAD)) 4978067bb8cSIdo Schimmel return rt; 498dd3abc4eSYOSHIFUJI Hideaki 499071fb37eSDavid Miller for (sprt = rt; sprt; sprt = rcu_dereference(sprt->rt6_next)) { 500d1918542SDavid S. Miller struct net_device *dev = sprt->dst.dev; 501dd3abc4eSYOSHIFUJI Hideaki 5028067bb8cSIdo Schimmel if (sprt->rt6i_nh_flags & RTNH_F_DEAD) 5038067bb8cSIdo Schimmel continue; 5048067bb8cSIdo Schimmel 505dd3abc4eSYOSHIFUJI Hideaki if (oif) { 5061da177e4SLinus Torvalds if (dev->ifindex == oif) 5071da177e4SLinus Torvalds return sprt; 5081da177e4SLinus Torvalds if (dev->flags & IFF_LOOPBACK) { 50938308473SDavid S. Miller if (!sprt->rt6i_idev || 5101da177e4SLinus Torvalds sprt->rt6i_idev->dev->ifindex != oif) { 51117fb0b2bSDavid Ahern if (flags & RT6_LOOKUP_F_IFACE) 5121da177e4SLinus Torvalds continue; 51317fb0b2bSDavid Ahern if (local && 51417fb0b2bSDavid Ahern local->rt6i_idev->dev->ifindex == oif) 5151da177e4SLinus Torvalds continue; 5161da177e4SLinus Torvalds } 5171da177e4SLinus Torvalds local = sprt; 5181da177e4SLinus Torvalds } 519dd3abc4eSYOSHIFUJI Hideaki } else { 520dd3abc4eSYOSHIFUJI Hideaki if (ipv6_chk_addr(net, saddr, dev, 521dd3abc4eSYOSHIFUJI Hideaki flags & RT6_LOOKUP_F_IFACE)) 522dd3abc4eSYOSHIFUJI Hideaki return sprt; 523dd3abc4eSYOSHIFUJI Hideaki } 5241da177e4SLinus Torvalds } 5251da177e4SLinus Torvalds 526dd3abc4eSYOSHIFUJI Hideaki if (oif) { 5271da177e4SLinus Torvalds if (local) 5281da177e4SLinus Torvalds return local; 5291da177e4SLinus Torvalds 530d420895eSYOSHIFUJI Hideaki if (flags & RT6_LOOKUP_F_IFACE) 5318ed67789SDaniel Lezcano return net->ipv6.ip6_null_entry; 5321da177e4SLinus Torvalds } 5338067bb8cSIdo Schimmel 5348067bb8cSIdo Schimmel return rt->rt6i_nh_flags & RTNH_F_DEAD ? net->ipv6.ip6_null_entry : rt; 5351da177e4SLinus Torvalds } 5361da177e4SLinus Torvalds 53727097255SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 538c2f17e82SHannes Frederic Sowa struct __rt6_probe_work { 539c2f17e82SHannes Frederic Sowa struct work_struct work; 540c2f17e82SHannes Frederic Sowa struct in6_addr target; 541c2f17e82SHannes Frederic Sowa struct net_device *dev; 542c2f17e82SHannes Frederic Sowa }; 543c2f17e82SHannes Frederic Sowa 544c2f17e82SHannes Frederic Sowa static void rt6_probe_deferred(struct work_struct *w) 545c2f17e82SHannes Frederic Sowa { 546c2f17e82SHannes Frederic Sowa struct in6_addr mcaddr; 547c2f17e82SHannes Frederic Sowa struct __rt6_probe_work *work = 548c2f17e82SHannes Frederic Sowa container_of(w, struct __rt6_probe_work, work); 549c2f17e82SHannes Frederic Sowa 550c2f17e82SHannes Frederic Sowa addrconf_addr_solict_mult(&work->target, &mcaddr); 551adc176c5SErik Nordmark ndisc_send_ns(work->dev, &work->target, &mcaddr, NULL, 0); 552c2f17e82SHannes Frederic Sowa dev_put(work->dev); 553662f5533SMichael Büsch kfree(work); 554c2f17e82SHannes Frederic Sowa } 555c2f17e82SHannes Frederic Sowa 55627097255SYOSHIFUJI Hideaki static void rt6_probe(struct rt6_info *rt) 55727097255SYOSHIFUJI Hideaki { 558990edb42SMartin KaFai Lau struct __rt6_probe_work *work; 559f2c31e32SEric Dumazet struct neighbour *neigh; 56027097255SYOSHIFUJI Hideaki /* 56127097255SYOSHIFUJI Hideaki * Okay, this does not seem to be appropriate 56227097255SYOSHIFUJI Hideaki * for now, however, we need to check if it 56327097255SYOSHIFUJI Hideaki * is really so; aka Router Reachability Probing. 56427097255SYOSHIFUJI Hideaki * 56527097255SYOSHIFUJI Hideaki * Router Reachability Probe MUST be rate-limited 56627097255SYOSHIFUJI Hideaki * to no more than one per minute. 56727097255SYOSHIFUJI Hideaki */ 5682152caeaSYOSHIFUJI Hideaki / 吉藤英明 if (!rt || !(rt->rt6i_flags & RTF_GATEWAY)) 569fdd6681dSAmerigo Wang return; 5702152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 5712152caeaSYOSHIFUJI Hideaki / 吉藤英明 neigh = __ipv6_neigh_lookup_noref(rt->dst.dev, &rt->rt6i_gateway); 5722152caeaSYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 5738d6c31bfSMartin KaFai Lau if (neigh->nud_state & NUD_VALID) 5748d6c31bfSMartin KaFai Lau goto out; 5758d6c31bfSMartin KaFai Lau 576990edb42SMartin KaFai Lau work = NULL; 5772152caeaSYOSHIFUJI Hideaki / 吉藤英明 write_lock(&neigh->lock); 578990edb42SMartin KaFai Lau if (!(neigh->nud_state & NUD_VALID) && 579990edb42SMartin KaFai Lau time_after(jiffies, 580990edb42SMartin KaFai Lau neigh->updated + 581990edb42SMartin KaFai Lau rt->rt6i_idev->cnf.rtr_probe_interval)) { 582c2f17e82SHannes Frederic Sowa work = kmalloc(sizeof(*work), GFP_ATOMIC); 583990edb42SMartin KaFai Lau if (work) 5847e980569SJiri Benc __neigh_set_probe_once(neigh); 585990edb42SMartin KaFai Lau } 586c2f17e82SHannes Frederic Sowa write_unlock(&neigh->lock); 587990edb42SMartin KaFai Lau } else { 588990edb42SMartin KaFai Lau work = kmalloc(sizeof(*work), GFP_ATOMIC); 589990edb42SMartin KaFai Lau } 590c2f17e82SHannes Frederic Sowa 591c2f17e82SHannes Frederic Sowa if (work) { 592c2f17e82SHannes Frederic Sowa INIT_WORK(&work->work, rt6_probe_deferred); 593c2f17e82SHannes Frederic Sowa work->target = rt->rt6i_gateway; 594c2f17e82SHannes Frederic Sowa dev_hold(rt->dst.dev); 595c2f17e82SHannes Frederic Sowa work->dev = rt->dst.dev; 596c2f17e82SHannes Frederic Sowa schedule_work(&work->work); 597c2f17e82SHannes Frederic Sowa } 598990edb42SMartin KaFai Lau 5998d6c31bfSMartin KaFai Lau out: 6002152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 601f2c31e32SEric Dumazet } 60227097255SYOSHIFUJI Hideaki #else 60327097255SYOSHIFUJI Hideaki static inline void rt6_probe(struct rt6_info *rt) 60427097255SYOSHIFUJI Hideaki { 60527097255SYOSHIFUJI Hideaki } 60627097255SYOSHIFUJI Hideaki #endif 60727097255SYOSHIFUJI Hideaki 6081da177e4SLinus Torvalds /* 609554cfb7eSYOSHIFUJI Hideaki * Default Router Selection (RFC 2461 6.3.6) 6101da177e4SLinus Torvalds */ 611b6f99a21SDave Jones static inline int rt6_check_dev(struct rt6_info *rt, int oif) 6121da177e4SLinus Torvalds { 613d1918542SDavid S. Miller struct net_device *dev = rt->dst.dev; 614161980f4SDavid S. Miller if (!oif || dev->ifindex == oif) 615554cfb7eSYOSHIFUJI Hideaki return 2; 616161980f4SDavid S. Miller if ((dev->flags & IFF_LOOPBACK) && 617161980f4SDavid S. Miller rt->rt6i_idev && rt->rt6i_idev->dev->ifindex == oif) 618161980f4SDavid S. Miller return 1; 619554cfb7eSYOSHIFUJI Hideaki return 0; 6201da177e4SLinus Torvalds } 6211da177e4SLinus Torvalds 622afc154e9SHannes Frederic Sowa static inline enum rt6_nud_state rt6_check_neigh(struct rt6_info *rt) 6231da177e4SLinus Torvalds { 624f2c31e32SEric Dumazet struct neighbour *neigh; 625afc154e9SHannes Frederic Sowa enum rt6_nud_state ret = RT6_NUD_FAIL_HARD; 626f2c31e32SEric Dumazet 6274d0c5911SYOSHIFUJI Hideaki if (rt->rt6i_flags & RTF_NONEXTHOP || 6284d0c5911SYOSHIFUJI Hideaki !(rt->rt6i_flags & RTF_GATEWAY)) 629afc154e9SHannes Frederic Sowa return RT6_NUD_SUCCEED; 630145a3621SYOSHIFUJI Hideaki / 吉藤英明 631145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 632145a3621SYOSHIFUJI Hideaki / 吉藤英明 neigh = __ipv6_neigh_lookup_noref(rt->dst.dev, &rt->rt6i_gateway); 633145a3621SYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 634145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_lock(&neigh->lock); 635554cfb7eSYOSHIFUJI Hideaki if (neigh->nud_state & NUD_VALID) 636afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 637398bcbebSYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 638a5a81f0bSPaul Marks else if (!(neigh->nud_state & NUD_FAILED)) 639afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 6407e980569SJiri Benc else 6417e980569SJiri Benc ret = RT6_NUD_FAIL_PROBE; 642398bcbebSYOSHIFUJI Hideaki #endif 643145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_unlock(&neigh->lock); 644afc154e9SHannes Frederic Sowa } else { 645afc154e9SHannes Frederic Sowa ret = IS_ENABLED(CONFIG_IPV6_ROUTER_PREF) ? 6467e980569SJiri Benc RT6_NUD_SUCCEED : RT6_NUD_FAIL_DO_RR; 647a5a81f0bSPaul Marks } 648145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 649145a3621SYOSHIFUJI Hideaki / 吉藤英明 650a5a81f0bSPaul Marks return ret; 6511da177e4SLinus Torvalds } 6521da177e4SLinus Torvalds 653554cfb7eSYOSHIFUJI Hideaki static int rt6_score_route(struct rt6_info *rt, int oif, 654554cfb7eSYOSHIFUJI Hideaki int strict) 655554cfb7eSYOSHIFUJI Hideaki { 656a5a81f0bSPaul Marks int m; 6574d0c5911SYOSHIFUJI Hideaki 6584d0c5911SYOSHIFUJI Hideaki m = rt6_check_dev(rt, oif); 65977d16f45SYOSHIFUJI Hideaki if (!m && (strict & RT6_LOOKUP_F_IFACE)) 660afc154e9SHannes Frederic Sowa return RT6_NUD_FAIL_HARD; 661ebacaaa0SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 662ebacaaa0SYOSHIFUJI Hideaki m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(rt->rt6i_flags)) << 2; 663ebacaaa0SYOSHIFUJI Hideaki #endif 664afc154e9SHannes Frederic Sowa if (strict & RT6_LOOKUP_F_REACHABLE) { 665afc154e9SHannes Frederic Sowa int n = rt6_check_neigh(rt); 666afc154e9SHannes Frederic Sowa if (n < 0) 667afc154e9SHannes Frederic Sowa return n; 668afc154e9SHannes Frederic Sowa } 669554cfb7eSYOSHIFUJI Hideaki return m; 670554cfb7eSYOSHIFUJI Hideaki } 671554cfb7eSYOSHIFUJI Hideaki 672f11e6659SDavid S. Miller static struct rt6_info *find_match(struct rt6_info *rt, int oif, int strict, 673afc154e9SHannes Frederic Sowa int *mpri, struct rt6_info *match, 674afc154e9SHannes Frederic Sowa bool *do_rr) 675554cfb7eSYOSHIFUJI Hideaki { 676554cfb7eSYOSHIFUJI Hideaki int m; 677afc154e9SHannes Frederic Sowa bool match_do_rr = false; 67835103d11SAndy Gospodarek struct inet6_dev *idev = rt->rt6i_idev; 67935103d11SAndy Gospodarek 6808067bb8cSIdo Schimmel if (rt->rt6i_nh_flags & RTNH_F_DEAD) 6818067bb8cSIdo Schimmel goto out; 6828067bb8cSIdo Schimmel 68314c5206cSIdo Schimmel if (idev->cnf.ignore_routes_with_linkdown && 68414c5206cSIdo Schimmel rt->rt6i_nh_flags & RTNH_F_LINKDOWN && 685d5d32e4bSDavid Ahern !(strict & RT6_LOOKUP_F_IGNORE_LINKSTATE)) 68635103d11SAndy Gospodarek goto out; 687554cfb7eSYOSHIFUJI Hideaki 688554cfb7eSYOSHIFUJI Hideaki if (rt6_check_expired(rt)) 689f11e6659SDavid S. Miller goto out; 690554cfb7eSYOSHIFUJI Hideaki 691554cfb7eSYOSHIFUJI Hideaki m = rt6_score_route(rt, oif, strict); 6927e980569SJiri Benc if (m == RT6_NUD_FAIL_DO_RR) { 693afc154e9SHannes Frederic Sowa match_do_rr = true; 694afc154e9SHannes Frederic Sowa m = 0; /* lowest valid score */ 6957e980569SJiri Benc } else if (m == RT6_NUD_FAIL_HARD) { 696f11e6659SDavid S. Miller goto out; 6971da177e4SLinus Torvalds } 698f11e6659SDavid S. Miller 699afc154e9SHannes Frederic Sowa if (strict & RT6_LOOKUP_F_REACHABLE) 700afc154e9SHannes Frederic Sowa rt6_probe(rt); 701afc154e9SHannes Frederic Sowa 7027e980569SJiri Benc /* note that m can be RT6_NUD_FAIL_PROBE at this point */ 703afc154e9SHannes Frederic Sowa if (m > *mpri) { 704afc154e9SHannes Frederic Sowa *do_rr = match_do_rr; 705afc154e9SHannes Frederic Sowa *mpri = m; 706afc154e9SHannes Frederic Sowa match = rt; 707afc154e9SHannes Frederic Sowa } 708f11e6659SDavid S. Miller out: 709f11e6659SDavid S. Miller return match; 7101da177e4SLinus Torvalds } 7111da177e4SLinus Torvalds 712f11e6659SDavid S. Miller static struct rt6_info *find_rr_leaf(struct fib6_node *fn, 7138d1040e8SWei Wang struct rt6_info *leaf, 714f11e6659SDavid S. Miller struct rt6_info *rr_head, 715afc154e9SHannes Frederic Sowa u32 metric, int oif, int strict, 716afc154e9SHannes Frederic Sowa bool *do_rr) 717f11e6659SDavid S. Miller { 7189fbdcfafSSteffen Klassert struct rt6_info *rt, *match, *cont; 719f11e6659SDavid S. Miller int mpri = -1; 720f11e6659SDavid S. Miller 721f11e6659SDavid S. Miller match = NULL; 7229fbdcfafSSteffen Klassert cont = NULL; 723071fb37eSDavid Miller for (rt = rr_head; rt; rt = rcu_dereference(rt->rt6_next)) { 7249fbdcfafSSteffen Klassert if (rt->rt6i_metric != metric) { 7259fbdcfafSSteffen Klassert cont = rt; 7269fbdcfafSSteffen Klassert break; 7279fbdcfafSSteffen Klassert } 7289fbdcfafSSteffen Klassert 729afc154e9SHannes Frederic Sowa match = find_match(rt, oif, strict, &mpri, match, do_rr); 7309fbdcfafSSteffen Klassert } 7319fbdcfafSSteffen Klassert 73266f5d6ceSWei Wang for (rt = leaf; rt && rt != rr_head; 733071fb37eSDavid Miller rt = rcu_dereference(rt->rt6_next)) { 7349fbdcfafSSteffen Klassert if (rt->rt6i_metric != metric) { 7359fbdcfafSSteffen Klassert cont = rt; 7369fbdcfafSSteffen Klassert break; 7379fbdcfafSSteffen Klassert } 7389fbdcfafSSteffen Klassert 7399fbdcfafSSteffen Klassert match = find_match(rt, oif, strict, &mpri, match, do_rr); 7409fbdcfafSSteffen Klassert } 7419fbdcfafSSteffen Klassert 7429fbdcfafSSteffen Klassert if (match || !cont) 7439fbdcfafSSteffen Klassert return match; 7449fbdcfafSSteffen Klassert 745071fb37eSDavid Miller for (rt = cont; rt; rt = rcu_dereference(rt->rt6_next)) 746afc154e9SHannes Frederic Sowa match = find_match(rt, oif, strict, &mpri, match, do_rr); 747f11e6659SDavid S. Miller 748f11e6659SDavid S. Miller return match; 749f11e6659SDavid S. Miller } 750f11e6659SDavid S. Miller 7518d1040e8SWei Wang static struct rt6_info *rt6_select(struct net *net, struct fib6_node *fn, 7528d1040e8SWei Wang int oif, int strict) 753f11e6659SDavid S. Miller { 75466f5d6ceSWei Wang struct rt6_info *leaf = rcu_dereference(fn->leaf); 755f11e6659SDavid S. Miller struct rt6_info *match, *rt0; 756afc154e9SHannes Frederic Sowa bool do_rr = false; 75717ecf590SWei Wang int key_plen; 758f11e6659SDavid S. Miller 75987b1af8dSWei Wang if (!leaf || leaf == net->ipv6.ip6_null_entry) 7608d1040e8SWei Wang return net->ipv6.ip6_null_entry; 7618d1040e8SWei Wang 76266f5d6ceSWei Wang rt0 = rcu_dereference(fn->rr_ptr); 763f11e6659SDavid S. Miller if (!rt0) 76466f5d6ceSWei Wang rt0 = leaf; 765f11e6659SDavid S. Miller 76617ecf590SWei Wang /* Double check to make sure fn is not an intermediate node 76717ecf590SWei Wang * and fn->leaf does not points to its child's leaf 76817ecf590SWei Wang * (This might happen if all routes under fn are deleted from 76917ecf590SWei Wang * the tree and fib6_repair_tree() is called on the node.) 77017ecf590SWei Wang */ 77117ecf590SWei Wang key_plen = rt0->rt6i_dst.plen; 77217ecf590SWei Wang #ifdef CONFIG_IPV6_SUBTREES 77317ecf590SWei Wang if (rt0->rt6i_src.plen) 77417ecf590SWei Wang key_plen = rt0->rt6i_src.plen; 77517ecf590SWei Wang #endif 77617ecf590SWei Wang if (fn->fn_bit != key_plen) 77717ecf590SWei Wang return net->ipv6.ip6_null_entry; 77817ecf590SWei Wang 7798d1040e8SWei Wang match = find_rr_leaf(fn, leaf, rt0, rt0->rt6i_metric, oif, strict, 780afc154e9SHannes Frederic Sowa &do_rr); 781f11e6659SDavid S. Miller 782afc154e9SHannes Frederic Sowa if (do_rr) { 783071fb37eSDavid Miller struct rt6_info *next = rcu_dereference(rt0->rt6_next); 784f11e6659SDavid S. Miller 785554cfb7eSYOSHIFUJI Hideaki /* no entries matched; do round-robin */ 786f11e6659SDavid S. Miller if (!next || next->rt6i_metric != rt0->rt6i_metric) 7878d1040e8SWei Wang next = leaf; 788f11e6659SDavid S. Miller 78966f5d6ceSWei Wang if (next != rt0) { 79066f5d6ceSWei Wang spin_lock_bh(&leaf->rt6i_table->tb6_lock); 79166f5d6ceSWei Wang /* make sure next is not being deleted from the tree */ 79266f5d6ceSWei Wang if (next->rt6i_node) 79366f5d6ceSWei Wang rcu_assign_pointer(fn->rr_ptr, next); 79466f5d6ceSWei Wang spin_unlock_bh(&leaf->rt6i_table->tb6_lock); 79566f5d6ceSWei Wang } 796554cfb7eSYOSHIFUJI Hideaki } 797554cfb7eSYOSHIFUJI Hideaki 798a02cec21SEric Dumazet return match ? match : net->ipv6.ip6_null_entry; 7991da177e4SLinus Torvalds } 8001da177e4SLinus Torvalds 8018b9df265SMartin KaFai Lau static bool rt6_is_gw_or_nonexthop(const struct rt6_info *rt) 8028b9df265SMartin KaFai Lau { 8038b9df265SMartin KaFai Lau return (rt->rt6i_flags & (RTF_NONEXTHOP | RTF_GATEWAY)); 8048b9df265SMartin KaFai Lau } 8058b9df265SMartin KaFai Lau 80670ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 80770ceb4f5SYOSHIFUJI Hideaki int rt6_route_rcv(struct net_device *dev, u8 *opt, int len, 808b71d1d42SEric Dumazet const struct in6_addr *gwaddr) 80970ceb4f5SYOSHIFUJI Hideaki { 810c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 81170ceb4f5SYOSHIFUJI Hideaki struct route_info *rinfo = (struct route_info *) opt; 81270ceb4f5SYOSHIFUJI Hideaki struct in6_addr prefix_buf, *prefix; 81370ceb4f5SYOSHIFUJI Hideaki unsigned int pref; 8144bed72e4SYOSHIFUJI Hideaki unsigned long lifetime; 81570ceb4f5SYOSHIFUJI Hideaki struct rt6_info *rt; 81670ceb4f5SYOSHIFUJI Hideaki 81770ceb4f5SYOSHIFUJI Hideaki if (len < sizeof(struct route_info)) { 81870ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 81970ceb4f5SYOSHIFUJI Hideaki } 82070ceb4f5SYOSHIFUJI Hideaki 82170ceb4f5SYOSHIFUJI Hideaki /* Sanity check for prefix_len and length */ 82270ceb4f5SYOSHIFUJI Hideaki if (rinfo->length > 3) { 82370ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82470ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 128) { 82570ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82670ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 64) { 82770ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 2) { 82870ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82970ceb4f5SYOSHIFUJI Hideaki } 83070ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 0) { 83170ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 1) { 83270ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 83370ceb4f5SYOSHIFUJI Hideaki } 83470ceb4f5SYOSHIFUJI Hideaki } 83570ceb4f5SYOSHIFUJI Hideaki 83670ceb4f5SYOSHIFUJI Hideaki pref = rinfo->route_pref; 83770ceb4f5SYOSHIFUJI Hideaki if (pref == ICMPV6_ROUTER_PREF_INVALID) 8383933fc95SJens Rosenboom return -EINVAL; 83970ceb4f5SYOSHIFUJI Hideaki 8404bed72e4SYOSHIFUJI Hideaki lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ); 84170ceb4f5SYOSHIFUJI Hideaki 84270ceb4f5SYOSHIFUJI Hideaki if (rinfo->length == 3) 84370ceb4f5SYOSHIFUJI Hideaki prefix = (struct in6_addr *)rinfo->prefix; 84470ceb4f5SYOSHIFUJI Hideaki else { 84570ceb4f5SYOSHIFUJI Hideaki /* this function is safe */ 84670ceb4f5SYOSHIFUJI Hideaki ipv6_addr_prefix(&prefix_buf, 84770ceb4f5SYOSHIFUJI Hideaki (struct in6_addr *)rinfo->prefix, 84870ceb4f5SYOSHIFUJI Hideaki rinfo->prefix_len); 84970ceb4f5SYOSHIFUJI Hideaki prefix = &prefix_buf; 85070ceb4f5SYOSHIFUJI Hideaki } 85170ceb4f5SYOSHIFUJI Hideaki 852f104a567SDuan Jiong if (rinfo->prefix_len == 0) 853f104a567SDuan Jiong rt = rt6_get_dflt_router(gwaddr, dev); 854f104a567SDuan Jiong else 855f104a567SDuan Jiong rt = rt6_get_route_info(net, prefix, rinfo->prefix_len, 856830218c1SDavid Ahern gwaddr, dev); 85770ceb4f5SYOSHIFUJI Hideaki 85870ceb4f5SYOSHIFUJI Hideaki if (rt && !lifetime) { 859e0a1ad73SThomas Graf ip6_del_rt(rt); 86070ceb4f5SYOSHIFUJI Hideaki rt = NULL; 86170ceb4f5SYOSHIFUJI Hideaki } 86270ceb4f5SYOSHIFUJI Hideaki 86370ceb4f5SYOSHIFUJI Hideaki if (!rt && lifetime) 864830218c1SDavid Ahern rt = rt6_add_route_info(net, prefix, rinfo->prefix_len, gwaddr, 865830218c1SDavid Ahern dev, pref); 86670ceb4f5SYOSHIFUJI Hideaki else if (rt) 86770ceb4f5SYOSHIFUJI Hideaki rt->rt6i_flags = RTF_ROUTEINFO | 86870ceb4f5SYOSHIFUJI Hideaki (rt->rt6i_flags & ~RTF_PREF_MASK) | RTF_PREF(pref); 86970ceb4f5SYOSHIFUJI Hideaki 87070ceb4f5SYOSHIFUJI Hideaki if (rt) { 8711716a961SGao feng if (!addrconf_finite_timeout(lifetime)) 8721716a961SGao feng rt6_clean_expires(rt); 8731716a961SGao feng else 8741716a961SGao feng rt6_set_expires(rt, jiffies + HZ * lifetime); 8751716a961SGao feng 87694e187c0SAmerigo Wang ip6_rt_put(rt); 87770ceb4f5SYOSHIFUJI Hideaki } 87870ceb4f5SYOSHIFUJI Hideaki return 0; 87970ceb4f5SYOSHIFUJI Hideaki } 88070ceb4f5SYOSHIFUJI Hideaki #endif 88170ceb4f5SYOSHIFUJI Hideaki 882a3c00e46SMartin KaFai Lau static struct fib6_node* fib6_backtrack(struct fib6_node *fn, 883a3c00e46SMartin KaFai Lau struct in6_addr *saddr) 884a3c00e46SMartin KaFai Lau { 88566f5d6ceSWei Wang struct fib6_node *pn, *sn; 886a3c00e46SMartin KaFai Lau while (1) { 887a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_TL_ROOT) 888a3c00e46SMartin KaFai Lau return NULL; 88966f5d6ceSWei Wang pn = rcu_dereference(fn->parent); 89066f5d6ceSWei Wang sn = FIB6_SUBTREE(pn); 89166f5d6ceSWei Wang if (sn && sn != fn) 89266f5d6ceSWei Wang fn = fib6_lookup(sn, NULL, saddr); 893a3c00e46SMartin KaFai Lau else 894a3c00e46SMartin KaFai Lau fn = pn; 895a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_RTINFO) 896a3c00e46SMartin KaFai Lau return fn; 897a3c00e46SMartin KaFai Lau } 898a3c00e46SMartin KaFai Lau } 899c71099acSThomas Graf 900d3843fe5SWei Wang static bool ip6_hold_safe(struct net *net, struct rt6_info **prt, 901d3843fe5SWei Wang bool null_fallback) 902d3843fe5SWei Wang { 903d3843fe5SWei Wang struct rt6_info *rt = *prt; 904d3843fe5SWei Wang 905d3843fe5SWei Wang if (dst_hold_safe(&rt->dst)) 906d3843fe5SWei Wang return true; 907d3843fe5SWei Wang if (null_fallback) { 908d3843fe5SWei Wang rt = net->ipv6.ip6_null_entry; 909d3843fe5SWei Wang dst_hold(&rt->dst); 910d3843fe5SWei Wang } else { 911d3843fe5SWei Wang rt = NULL; 912d3843fe5SWei Wang } 913d3843fe5SWei Wang *prt = rt; 914d3843fe5SWei Wang return false; 915d3843fe5SWei Wang } 916d3843fe5SWei Wang 9178ed67789SDaniel Lezcano static struct rt6_info *ip6_pol_route_lookup(struct net *net, 9188ed67789SDaniel Lezcano struct fib6_table *table, 919b75cc8f9SDavid Ahern struct flowi6 *fl6, 920b75cc8f9SDavid Ahern const struct sk_buff *skb, 921b75cc8f9SDavid Ahern int flags) 9221da177e4SLinus Torvalds { 9232b760fcfSWei Wang struct rt6_info *rt, *rt_cache; 9241da177e4SLinus Torvalds struct fib6_node *fn; 9251da177e4SLinus Torvalds 92666f5d6ceSWei Wang rcu_read_lock(); 9274c9483b2SDavid S. Miller fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 928c71099acSThomas Graf restart: 92966f5d6ceSWei Wang rt = rcu_dereference(fn->leaf); 93066f5d6ceSWei Wang if (!rt) { 93166f5d6ceSWei Wang rt = net->ipv6.ip6_null_entry; 93266f5d6ceSWei Wang } else { 93366f5d6ceSWei Wang rt = rt6_device_match(net, rt, &fl6->saddr, 93466f5d6ceSWei Wang fl6->flowi6_oif, flags); 93551ebd318SNicolas Dichtel if (rt->rt6i_nsiblings && fl6->flowi6_oif == 0) 936b4bac172SDavid Ahern rt = rt6_multipath_select(net, rt, fl6, fl6->flowi6_oif, 937b75cc8f9SDavid Ahern skb, flags); 93866f5d6ceSWei Wang } 939a3c00e46SMartin KaFai Lau if (rt == net->ipv6.ip6_null_entry) { 940a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 941a3c00e46SMartin KaFai Lau if (fn) 942a3c00e46SMartin KaFai Lau goto restart; 943a3c00e46SMartin KaFai Lau } 9442b760fcfSWei Wang /* Search through exception table */ 9452b760fcfSWei Wang rt_cache = rt6_find_cached_rt(rt, &fl6->daddr, &fl6->saddr); 9462b760fcfSWei Wang if (rt_cache) 9472b760fcfSWei Wang rt = rt_cache; 9482b760fcfSWei Wang 949d3843fe5SWei Wang if (ip6_hold_safe(net, &rt, true)) 950d3843fe5SWei Wang dst_use_noref(&rt->dst, jiffies); 951d3843fe5SWei Wang 95266f5d6ceSWei Wang rcu_read_unlock(); 953b811580dSDavid Ahern 954b65f164dSPaolo Abeni trace_fib6_table_lookup(net, rt, table, fl6); 955b811580dSDavid Ahern 9561da177e4SLinus Torvalds return rt; 957c71099acSThomas Graf 958c71099acSThomas Graf } 959c71099acSThomas Graf 960ea6e574eSFlorian Westphal struct dst_entry *ip6_route_lookup(struct net *net, struct flowi6 *fl6, 961b75cc8f9SDavid Ahern const struct sk_buff *skb, int flags) 962ea6e574eSFlorian Westphal { 963b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_lookup); 964ea6e574eSFlorian Westphal } 965ea6e574eSFlorian Westphal EXPORT_SYMBOL_GPL(ip6_route_lookup); 966ea6e574eSFlorian Westphal 9679acd9f3aSYOSHIFUJI Hideaki struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr, 968b75cc8f9SDavid Ahern const struct in6_addr *saddr, int oif, 969b75cc8f9SDavid Ahern const struct sk_buff *skb, int strict) 970c71099acSThomas Graf { 9714c9483b2SDavid S. Miller struct flowi6 fl6 = { 9724c9483b2SDavid S. Miller .flowi6_oif = oif, 9734c9483b2SDavid S. Miller .daddr = *daddr, 974c71099acSThomas Graf }; 975c71099acSThomas Graf struct dst_entry *dst; 97677d16f45SYOSHIFUJI Hideaki int flags = strict ? RT6_LOOKUP_F_IFACE : 0; 977c71099acSThomas Graf 978adaa70bbSThomas Graf if (saddr) { 9794c9483b2SDavid S. Miller memcpy(&fl6.saddr, saddr, sizeof(*saddr)); 980adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 981adaa70bbSThomas Graf } 982adaa70bbSThomas Graf 983b75cc8f9SDavid Ahern dst = fib6_rule_lookup(net, &fl6, skb, flags, ip6_pol_route_lookup); 984c71099acSThomas Graf if (dst->error == 0) 985c71099acSThomas Graf return (struct rt6_info *) dst; 986c71099acSThomas Graf 987c71099acSThomas Graf dst_release(dst); 988c71099acSThomas Graf 9891da177e4SLinus Torvalds return NULL; 9901da177e4SLinus Torvalds } 9917159039aSYOSHIFUJI Hideaki EXPORT_SYMBOL(rt6_lookup); 9927159039aSYOSHIFUJI Hideaki 993c71099acSThomas Graf /* ip6_ins_rt is called with FREE table->tb6_lock. 9941cfb71eeSWei Wang * It takes new route entry, the addition fails by any reason the 9951cfb71eeSWei Wang * route is released. 9961cfb71eeSWei Wang * Caller must hold dst before calling it. 9971da177e4SLinus Torvalds */ 9981da177e4SLinus Torvalds 999e5fd387aSMichal Kubeček static int __ip6_ins_rt(struct rt6_info *rt, struct nl_info *info, 1000333c4301SDavid Ahern struct mx6_config *mxc, 1001333c4301SDavid Ahern struct netlink_ext_ack *extack) 10021da177e4SLinus Torvalds { 10031da177e4SLinus Torvalds int err; 1004c71099acSThomas Graf struct fib6_table *table; 10051da177e4SLinus Torvalds 1006c71099acSThomas Graf table = rt->rt6i_table; 100766f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 1008333c4301SDavid Ahern err = fib6_add(&table->tb6_root, rt, info, mxc, extack); 100966f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 10101da177e4SLinus Torvalds 10111da177e4SLinus Torvalds return err; 10121da177e4SLinus Torvalds } 10131da177e4SLinus Torvalds 101440e22e8fSThomas Graf int ip6_ins_rt(struct rt6_info *rt) 101540e22e8fSThomas Graf { 1016e715b6d3SFlorian Westphal struct nl_info info = { .nl_net = dev_net(rt->dst.dev), }; 1017e715b6d3SFlorian Westphal struct mx6_config mxc = { .mx = NULL, }; 1018e715b6d3SFlorian Westphal 10191cfb71eeSWei Wang /* Hold dst to account for the reference from the fib6 tree */ 10201cfb71eeSWei Wang dst_hold(&rt->dst); 1021333c4301SDavid Ahern return __ip6_ins_rt(rt, &info, &mxc, NULL); 102240e22e8fSThomas Graf } 102340e22e8fSThomas Graf 10244832c30dSDavid Ahern /* called with rcu_lock held */ 10254832c30dSDavid Ahern static struct net_device *ip6_rt_get_dev_rcu(struct rt6_info *rt) 10264832c30dSDavid Ahern { 10274832c30dSDavid Ahern struct net_device *dev = rt->dst.dev; 10284832c30dSDavid Ahern 102998d11291SDavid Ahern if (rt->rt6i_flags & (RTF_LOCAL | RTF_ANYCAST)) { 10304832c30dSDavid Ahern /* for copies of local routes, dst->dev needs to be the 10314832c30dSDavid Ahern * device if it is a master device, the master device if 10324832c30dSDavid Ahern * device is enslaved, and the loopback as the default 10334832c30dSDavid Ahern */ 10344832c30dSDavid Ahern if (netif_is_l3_slave(dev) && 10354832c30dSDavid Ahern !rt6_need_strict(&rt->rt6i_dst.addr)) 10364832c30dSDavid Ahern dev = l3mdev_master_dev_rcu(dev); 10374832c30dSDavid Ahern else if (!netif_is_l3_master(dev)) 10384832c30dSDavid Ahern dev = dev_net(dev)->loopback_dev; 10394832c30dSDavid Ahern /* last case is netif_is_l3_master(dev) is true in which 10404832c30dSDavid Ahern * case we want dev returned to be dev 10414832c30dSDavid Ahern */ 10424832c30dSDavid Ahern } 10434832c30dSDavid Ahern 10444832c30dSDavid Ahern return dev; 10454832c30dSDavid Ahern } 10464832c30dSDavid Ahern 10478b9df265SMartin KaFai Lau static struct rt6_info *ip6_rt_cache_alloc(struct rt6_info *ort, 104821efcfa0SEric Dumazet const struct in6_addr *daddr, 1049b71d1d42SEric Dumazet const struct in6_addr *saddr) 10501da177e4SLinus Torvalds { 10514832c30dSDavid Ahern struct net_device *dev; 10521da177e4SLinus Torvalds struct rt6_info *rt; 10531da177e4SLinus Torvalds 10541da177e4SLinus Torvalds /* 10551da177e4SLinus Torvalds * Clone the route. 10561da177e4SLinus Torvalds */ 10571da177e4SLinus Torvalds 1058d52d3997SMartin KaFai Lau if (ort->rt6i_flags & (RTF_CACHE | RTF_PCPU)) 10593a2232e9SDavid Miller ort = ort->from; 10601da177e4SLinus Torvalds 10614832c30dSDavid Ahern rcu_read_lock(); 10624832c30dSDavid Ahern dev = ip6_rt_get_dev_rcu(ort); 10634832c30dSDavid Ahern rt = __ip6_dst_alloc(dev_net(dev), dev, 0); 10644832c30dSDavid Ahern rcu_read_unlock(); 106583a09abdSMartin KaFai Lau if (!rt) 106683a09abdSMartin KaFai Lau return NULL; 106783a09abdSMartin KaFai Lau 106883a09abdSMartin KaFai Lau ip6_rt_copy_init(rt, ort); 10698b9df265SMartin KaFai Lau rt->rt6i_flags |= RTF_CACHE; 107083a09abdSMartin KaFai Lau rt->rt6i_metric = 0; 107183a09abdSMartin KaFai Lau rt->dst.flags |= DST_HOST; 107283a09abdSMartin KaFai Lau rt->rt6i_dst.addr = *daddr; 107383a09abdSMartin KaFai Lau rt->rt6i_dst.plen = 128; 10748b9df265SMartin KaFai Lau 10758b9df265SMartin KaFai Lau if (!rt6_is_gw_or_nonexthop(ort)) { 1076bb3c3686SDavid S. Miller if (ort->rt6i_dst.plen != 128 && 107721efcfa0SEric Dumazet ipv6_addr_equal(&ort->rt6i_dst.addr, daddr)) 107858c4fb86SYOSHIFUJI Hideaki rt->rt6i_flags |= RTF_ANYCAST; 10791da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 10801da177e4SLinus Torvalds if (rt->rt6i_src.plen && saddr) { 10814e3fd7a0SAlexey Dobriyan rt->rt6i_src.addr = *saddr; 10821da177e4SLinus Torvalds rt->rt6i_src.plen = 128; 10831da177e4SLinus Torvalds } 10841da177e4SLinus Torvalds #endif 108595a9a5baSYOSHIFUJI Hideaki } 108695a9a5baSYOSHIFUJI Hideaki 1087299d9939SYOSHIFUJI Hideaki return rt; 1088299d9939SYOSHIFUJI Hideaki } 1089299d9939SYOSHIFUJI Hideaki 1090d52d3997SMartin KaFai Lau static struct rt6_info *ip6_rt_pcpu_alloc(struct rt6_info *rt) 1091d52d3997SMartin KaFai Lau { 10924832c30dSDavid Ahern struct net_device *dev; 1093d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1094d52d3997SMartin KaFai Lau 10954832c30dSDavid Ahern rcu_read_lock(); 10964832c30dSDavid Ahern dev = ip6_rt_get_dev_rcu(rt); 10974832c30dSDavid Ahern pcpu_rt = __ip6_dst_alloc(dev_net(dev), dev, rt->dst.flags); 10984832c30dSDavid Ahern rcu_read_unlock(); 1099d52d3997SMartin KaFai Lau if (!pcpu_rt) 1100d52d3997SMartin KaFai Lau return NULL; 1101d52d3997SMartin KaFai Lau ip6_rt_copy_init(pcpu_rt, rt); 1102d52d3997SMartin KaFai Lau pcpu_rt->rt6i_protocol = rt->rt6i_protocol; 1103d52d3997SMartin KaFai Lau pcpu_rt->rt6i_flags |= RTF_PCPU; 1104d52d3997SMartin KaFai Lau return pcpu_rt; 1105d52d3997SMartin KaFai Lau } 1106d52d3997SMartin KaFai Lau 110766f5d6ceSWei Wang /* It should be called with rcu_read_lock() acquired */ 1108d52d3997SMartin KaFai Lau static struct rt6_info *rt6_get_pcpu_route(struct rt6_info *rt) 1109d52d3997SMartin KaFai Lau { 1110a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, **p; 1111d52d3997SMartin KaFai Lau 1112d52d3997SMartin KaFai Lau p = this_cpu_ptr(rt->rt6i_pcpu); 1113d52d3997SMartin KaFai Lau pcpu_rt = *p; 1114d52d3997SMartin KaFai Lau 1115d3843fe5SWei Wang if (pcpu_rt && ip6_hold_safe(NULL, &pcpu_rt, false)) 1116a73e4195SMartin KaFai Lau rt6_dst_from_metrics_check(pcpu_rt); 1117d3843fe5SWei Wang 1118a73e4195SMartin KaFai Lau return pcpu_rt; 1119a73e4195SMartin KaFai Lau } 1120a73e4195SMartin KaFai Lau 1121a73e4195SMartin KaFai Lau static struct rt6_info *rt6_make_pcpu_route(struct rt6_info *rt) 1122a73e4195SMartin KaFai Lau { 1123a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, *prev, **p; 1124d52d3997SMartin KaFai Lau 1125d52d3997SMartin KaFai Lau pcpu_rt = ip6_rt_pcpu_alloc(rt); 1126d52d3997SMartin KaFai Lau if (!pcpu_rt) { 1127d52d3997SMartin KaFai Lau struct net *net = dev_net(rt->dst.dev); 1128d52d3997SMartin KaFai Lau 11299c7370a1SMartin KaFai Lau dst_hold(&net->ipv6.ip6_null_entry->dst); 11309c7370a1SMartin KaFai Lau return net->ipv6.ip6_null_entry; 1131d52d3997SMartin KaFai Lau } 1132d52d3997SMartin KaFai Lau 1133a94b9367SWei Wang dst_hold(&pcpu_rt->dst); 1134a73e4195SMartin KaFai Lau p = this_cpu_ptr(rt->rt6i_pcpu); 1135d52d3997SMartin KaFai Lau prev = cmpxchg(p, NULL, pcpu_rt); 1136951f788aSEric Dumazet BUG_ON(prev); 1137a94b9367SWei Wang 1138d52d3997SMartin KaFai Lau rt6_dst_from_metrics_check(pcpu_rt); 1139d52d3997SMartin KaFai Lau return pcpu_rt; 1140d52d3997SMartin KaFai Lau } 1141d52d3997SMartin KaFai Lau 114235732d01SWei Wang /* exception hash table implementation 114335732d01SWei Wang */ 114435732d01SWei Wang static DEFINE_SPINLOCK(rt6_exception_lock); 114535732d01SWei Wang 114635732d01SWei Wang /* Remove rt6_ex from hash table and free the memory 114735732d01SWei Wang * Caller must hold rt6_exception_lock 114835732d01SWei Wang */ 114935732d01SWei Wang static void rt6_remove_exception(struct rt6_exception_bucket *bucket, 115035732d01SWei Wang struct rt6_exception *rt6_ex) 115135732d01SWei Wang { 1152b2427e67SColin Ian King struct net *net; 115381eb8447SWei Wang 115435732d01SWei Wang if (!bucket || !rt6_ex) 115535732d01SWei Wang return; 1156b2427e67SColin Ian King 1157b2427e67SColin Ian King net = dev_net(rt6_ex->rt6i->dst.dev); 115835732d01SWei Wang rt6_ex->rt6i->rt6i_node = NULL; 115935732d01SWei Wang hlist_del_rcu(&rt6_ex->hlist); 116035732d01SWei Wang rt6_release(rt6_ex->rt6i); 116135732d01SWei Wang kfree_rcu(rt6_ex, rcu); 116235732d01SWei Wang WARN_ON_ONCE(!bucket->depth); 116335732d01SWei Wang bucket->depth--; 116481eb8447SWei Wang net->ipv6.rt6_stats->fib_rt_cache--; 116535732d01SWei Wang } 116635732d01SWei Wang 116735732d01SWei Wang /* Remove oldest rt6_ex in bucket and free the memory 116835732d01SWei Wang * Caller must hold rt6_exception_lock 116935732d01SWei Wang */ 117035732d01SWei Wang static void rt6_exception_remove_oldest(struct rt6_exception_bucket *bucket) 117135732d01SWei Wang { 117235732d01SWei Wang struct rt6_exception *rt6_ex, *oldest = NULL; 117335732d01SWei Wang 117435732d01SWei Wang if (!bucket) 117535732d01SWei Wang return; 117635732d01SWei Wang 117735732d01SWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 117835732d01SWei Wang if (!oldest || time_before(rt6_ex->stamp, oldest->stamp)) 117935732d01SWei Wang oldest = rt6_ex; 118035732d01SWei Wang } 118135732d01SWei Wang rt6_remove_exception(bucket, oldest); 118235732d01SWei Wang } 118335732d01SWei Wang 118435732d01SWei Wang static u32 rt6_exception_hash(const struct in6_addr *dst, 118535732d01SWei Wang const struct in6_addr *src) 118635732d01SWei Wang { 118735732d01SWei Wang static u32 seed __read_mostly; 118835732d01SWei Wang u32 val; 118935732d01SWei Wang 119035732d01SWei Wang net_get_random_once(&seed, sizeof(seed)); 119135732d01SWei Wang val = jhash(dst, sizeof(*dst), seed); 119235732d01SWei Wang 119335732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 119435732d01SWei Wang if (src) 119535732d01SWei Wang val = jhash(src, sizeof(*src), val); 119635732d01SWei Wang #endif 119735732d01SWei Wang return hash_32(val, FIB6_EXCEPTION_BUCKET_SIZE_SHIFT); 119835732d01SWei Wang } 119935732d01SWei Wang 120035732d01SWei Wang /* Helper function to find the cached rt in the hash table 120135732d01SWei Wang * and update bucket pointer to point to the bucket for this 120235732d01SWei Wang * (daddr, saddr) pair 120335732d01SWei Wang * Caller must hold rt6_exception_lock 120435732d01SWei Wang */ 120535732d01SWei Wang static struct rt6_exception * 120635732d01SWei Wang __rt6_find_exception_spinlock(struct rt6_exception_bucket **bucket, 120735732d01SWei Wang const struct in6_addr *daddr, 120835732d01SWei Wang const struct in6_addr *saddr) 120935732d01SWei Wang { 121035732d01SWei Wang struct rt6_exception *rt6_ex; 121135732d01SWei Wang u32 hval; 121235732d01SWei Wang 121335732d01SWei Wang if (!(*bucket) || !daddr) 121435732d01SWei Wang return NULL; 121535732d01SWei Wang 121635732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 121735732d01SWei Wang *bucket += hval; 121835732d01SWei Wang 121935732d01SWei Wang hlist_for_each_entry(rt6_ex, &(*bucket)->chain, hlist) { 122035732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 122135732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 122235732d01SWei Wang 122335732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 122435732d01SWei Wang if (matched && saddr) 122535732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 122635732d01SWei Wang #endif 122735732d01SWei Wang if (matched) 122835732d01SWei Wang return rt6_ex; 122935732d01SWei Wang } 123035732d01SWei Wang return NULL; 123135732d01SWei Wang } 123235732d01SWei Wang 123335732d01SWei Wang /* Helper function to find the cached rt in the hash table 123435732d01SWei Wang * and update bucket pointer to point to the bucket for this 123535732d01SWei Wang * (daddr, saddr) pair 123635732d01SWei Wang * Caller must hold rcu_read_lock() 123735732d01SWei Wang */ 123835732d01SWei Wang static struct rt6_exception * 123935732d01SWei Wang __rt6_find_exception_rcu(struct rt6_exception_bucket **bucket, 124035732d01SWei Wang const struct in6_addr *daddr, 124135732d01SWei Wang const struct in6_addr *saddr) 124235732d01SWei Wang { 124335732d01SWei Wang struct rt6_exception *rt6_ex; 124435732d01SWei Wang u32 hval; 124535732d01SWei Wang 124635732d01SWei Wang WARN_ON_ONCE(!rcu_read_lock_held()); 124735732d01SWei Wang 124835732d01SWei Wang if (!(*bucket) || !daddr) 124935732d01SWei Wang return NULL; 125035732d01SWei Wang 125135732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 125235732d01SWei Wang *bucket += hval; 125335732d01SWei Wang 125435732d01SWei Wang hlist_for_each_entry_rcu(rt6_ex, &(*bucket)->chain, hlist) { 125535732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 125635732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 125735732d01SWei Wang 125835732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 125935732d01SWei Wang if (matched && saddr) 126035732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 126135732d01SWei Wang #endif 126235732d01SWei Wang if (matched) 126335732d01SWei Wang return rt6_ex; 126435732d01SWei Wang } 126535732d01SWei Wang return NULL; 126635732d01SWei Wang } 126735732d01SWei Wang 126835732d01SWei Wang static int rt6_insert_exception(struct rt6_info *nrt, 126935732d01SWei Wang struct rt6_info *ort) 127035732d01SWei Wang { 127181eb8447SWei Wang struct net *net = dev_net(ort->dst.dev); 127235732d01SWei Wang struct rt6_exception_bucket *bucket; 127335732d01SWei Wang struct in6_addr *src_key = NULL; 127435732d01SWei Wang struct rt6_exception *rt6_ex; 127535732d01SWei Wang int err = 0; 127635732d01SWei Wang 127735732d01SWei Wang /* ort can't be a cache or pcpu route */ 127835732d01SWei Wang if (ort->rt6i_flags & (RTF_CACHE | RTF_PCPU)) 12793a2232e9SDavid Miller ort = ort->from; 128035732d01SWei Wang WARN_ON_ONCE(ort->rt6i_flags & (RTF_CACHE | RTF_PCPU)); 128135732d01SWei Wang 128235732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 128335732d01SWei Wang 128435732d01SWei Wang if (ort->exception_bucket_flushed) { 128535732d01SWei Wang err = -EINVAL; 128635732d01SWei Wang goto out; 128735732d01SWei Wang } 128835732d01SWei Wang 128935732d01SWei Wang bucket = rcu_dereference_protected(ort->rt6i_exception_bucket, 129035732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 129135732d01SWei Wang if (!bucket) { 129235732d01SWei Wang bucket = kcalloc(FIB6_EXCEPTION_BUCKET_SIZE, sizeof(*bucket), 129335732d01SWei Wang GFP_ATOMIC); 129435732d01SWei Wang if (!bucket) { 129535732d01SWei Wang err = -ENOMEM; 129635732d01SWei Wang goto out; 129735732d01SWei Wang } 129835732d01SWei Wang rcu_assign_pointer(ort->rt6i_exception_bucket, bucket); 129935732d01SWei Wang } 130035732d01SWei Wang 130135732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 130235732d01SWei Wang /* rt6i_src.plen != 0 indicates ort is in subtree 130335732d01SWei Wang * and exception table is indexed by a hash of 130435732d01SWei Wang * both rt6i_dst and rt6i_src. 130535732d01SWei Wang * Otherwise, the exception table is indexed by 130635732d01SWei Wang * a hash of only rt6i_dst. 130735732d01SWei Wang */ 130835732d01SWei Wang if (ort->rt6i_src.plen) 130935732d01SWei Wang src_key = &nrt->rt6i_src.addr; 131035732d01SWei Wang #endif 131160006a48SWei Wang 131260006a48SWei Wang /* Update rt6i_prefsrc as it could be changed 131360006a48SWei Wang * in rt6_remove_prefsrc() 131460006a48SWei Wang */ 131560006a48SWei Wang nrt->rt6i_prefsrc = ort->rt6i_prefsrc; 1316f5bbe7eeSWei Wang /* rt6_mtu_change() might lower mtu on ort. 1317f5bbe7eeSWei Wang * Only insert this exception route if its mtu 1318f5bbe7eeSWei Wang * is less than ort's mtu value. 1319f5bbe7eeSWei Wang */ 1320f5bbe7eeSWei Wang if (nrt->rt6i_pmtu >= dst_mtu(&ort->dst)) { 1321f5bbe7eeSWei Wang err = -EINVAL; 1322f5bbe7eeSWei Wang goto out; 1323f5bbe7eeSWei Wang } 132460006a48SWei Wang 132535732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, &nrt->rt6i_dst.addr, 132635732d01SWei Wang src_key); 132735732d01SWei Wang if (rt6_ex) 132835732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 132935732d01SWei Wang 133035732d01SWei Wang rt6_ex = kzalloc(sizeof(*rt6_ex), GFP_ATOMIC); 133135732d01SWei Wang if (!rt6_ex) { 133235732d01SWei Wang err = -ENOMEM; 133335732d01SWei Wang goto out; 133435732d01SWei Wang } 133535732d01SWei Wang rt6_ex->rt6i = nrt; 133635732d01SWei Wang rt6_ex->stamp = jiffies; 133735732d01SWei Wang atomic_inc(&nrt->rt6i_ref); 133835732d01SWei Wang nrt->rt6i_node = ort->rt6i_node; 133935732d01SWei Wang hlist_add_head_rcu(&rt6_ex->hlist, &bucket->chain); 134035732d01SWei Wang bucket->depth++; 134181eb8447SWei Wang net->ipv6.rt6_stats->fib_rt_cache++; 134235732d01SWei Wang 134335732d01SWei Wang if (bucket->depth > FIB6_MAX_DEPTH) 134435732d01SWei Wang rt6_exception_remove_oldest(bucket); 134535732d01SWei Wang 134635732d01SWei Wang out: 134735732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 134835732d01SWei Wang 134935732d01SWei Wang /* Update fn->fn_sernum to invalidate all cached dst */ 1350b886d5f2SPaolo Abeni if (!err) { 1351922c2ac8SIdo Schimmel spin_lock_bh(&ort->rt6i_table->tb6_lock); 135235732d01SWei Wang fib6_update_sernum(ort); 1353922c2ac8SIdo Schimmel spin_unlock_bh(&ort->rt6i_table->tb6_lock); 1354b886d5f2SPaolo Abeni fib6_force_start_gc(net); 1355b886d5f2SPaolo Abeni } 135635732d01SWei Wang 135735732d01SWei Wang return err; 135835732d01SWei Wang } 135935732d01SWei Wang 136035732d01SWei Wang void rt6_flush_exceptions(struct rt6_info *rt) 136135732d01SWei Wang { 136235732d01SWei Wang struct rt6_exception_bucket *bucket; 136335732d01SWei Wang struct rt6_exception *rt6_ex; 136435732d01SWei Wang struct hlist_node *tmp; 136535732d01SWei Wang int i; 136635732d01SWei Wang 136735732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 136835732d01SWei Wang /* Prevent rt6_insert_exception() to recreate the bucket list */ 136935732d01SWei Wang rt->exception_bucket_flushed = 1; 137035732d01SWei Wang 137135732d01SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 137235732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 137335732d01SWei Wang if (!bucket) 137435732d01SWei Wang goto out; 137535732d01SWei Wang 137635732d01SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 137735732d01SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, &bucket->chain, hlist) 137835732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 137935732d01SWei Wang WARN_ON_ONCE(bucket->depth); 138035732d01SWei Wang bucket++; 138135732d01SWei Wang } 138235732d01SWei Wang 138335732d01SWei Wang out: 138435732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 138535732d01SWei Wang } 138635732d01SWei Wang 138735732d01SWei Wang /* Find cached rt in the hash table inside passed in rt 138835732d01SWei Wang * Caller has to hold rcu_read_lock() 138935732d01SWei Wang */ 139035732d01SWei Wang static struct rt6_info *rt6_find_cached_rt(struct rt6_info *rt, 139135732d01SWei Wang struct in6_addr *daddr, 139235732d01SWei Wang struct in6_addr *saddr) 139335732d01SWei Wang { 139435732d01SWei Wang struct rt6_exception_bucket *bucket; 139535732d01SWei Wang struct in6_addr *src_key = NULL; 139635732d01SWei Wang struct rt6_exception *rt6_ex; 139735732d01SWei Wang struct rt6_info *res = NULL; 139835732d01SWei Wang 139935732d01SWei Wang bucket = rcu_dereference(rt->rt6i_exception_bucket); 140035732d01SWei Wang 140135732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 140235732d01SWei Wang /* rt6i_src.plen != 0 indicates rt is in subtree 140335732d01SWei Wang * and exception table is indexed by a hash of 140435732d01SWei Wang * both rt6i_dst and rt6i_src. 140535732d01SWei Wang * Otherwise, the exception table is indexed by 140635732d01SWei Wang * a hash of only rt6i_dst. 140735732d01SWei Wang */ 140835732d01SWei Wang if (rt->rt6i_src.plen) 140935732d01SWei Wang src_key = saddr; 141035732d01SWei Wang #endif 141135732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, daddr, src_key); 141235732d01SWei Wang 141335732d01SWei Wang if (rt6_ex && !rt6_check_expired(rt6_ex->rt6i)) 141435732d01SWei Wang res = rt6_ex->rt6i; 141535732d01SWei Wang 141635732d01SWei Wang return res; 141735732d01SWei Wang } 141835732d01SWei Wang 141935732d01SWei Wang /* Remove the passed in cached rt from the hash table that contains it */ 142035732d01SWei Wang int rt6_remove_exception_rt(struct rt6_info *rt) 142135732d01SWei Wang { 142235732d01SWei Wang struct rt6_exception_bucket *bucket; 14233a2232e9SDavid Miller struct rt6_info *from = rt->from; 142435732d01SWei Wang struct in6_addr *src_key = NULL; 142535732d01SWei Wang struct rt6_exception *rt6_ex; 142635732d01SWei Wang int err; 142735732d01SWei Wang 142835732d01SWei Wang if (!from || 1429442d713bSColin Ian King !(rt->rt6i_flags & RTF_CACHE)) 143035732d01SWei Wang return -EINVAL; 143135732d01SWei Wang 143235732d01SWei Wang if (!rcu_access_pointer(from->rt6i_exception_bucket)) 143335732d01SWei Wang return -ENOENT; 143435732d01SWei Wang 143535732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 143635732d01SWei Wang bucket = rcu_dereference_protected(from->rt6i_exception_bucket, 143735732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 143835732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 143935732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 144035732d01SWei Wang * and exception table is indexed by a hash of 144135732d01SWei Wang * both rt6i_dst and rt6i_src. 144235732d01SWei Wang * Otherwise, the exception table is indexed by 144335732d01SWei Wang * a hash of only rt6i_dst. 144435732d01SWei Wang */ 144535732d01SWei Wang if (from->rt6i_src.plen) 144635732d01SWei Wang src_key = &rt->rt6i_src.addr; 144735732d01SWei Wang #endif 144835732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, 144935732d01SWei Wang &rt->rt6i_dst.addr, 145035732d01SWei Wang src_key); 145135732d01SWei Wang if (rt6_ex) { 145235732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 145335732d01SWei Wang err = 0; 145435732d01SWei Wang } else { 145535732d01SWei Wang err = -ENOENT; 145635732d01SWei Wang } 145735732d01SWei Wang 145835732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 145935732d01SWei Wang return err; 146035732d01SWei Wang } 146135732d01SWei Wang 146235732d01SWei Wang /* Find rt6_ex which contains the passed in rt cache and 146335732d01SWei Wang * refresh its stamp 146435732d01SWei Wang */ 146535732d01SWei Wang static void rt6_update_exception_stamp_rt(struct rt6_info *rt) 146635732d01SWei Wang { 146735732d01SWei Wang struct rt6_exception_bucket *bucket; 14683a2232e9SDavid Miller struct rt6_info *from = rt->from; 146935732d01SWei Wang struct in6_addr *src_key = NULL; 147035732d01SWei Wang struct rt6_exception *rt6_ex; 147135732d01SWei Wang 147235732d01SWei Wang if (!from || 1473442d713bSColin Ian King !(rt->rt6i_flags & RTF_CACHE)) 147435732d01SWei Wang return; 147535732d01SWei Wang 147635732d01SWei Wang rcu_read_lock(); 147735732d01SWei Wang bucket = rcu_dereference(from->rt6i_exception_bucket); 147835732d01SWei Wang 147935732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 148035732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 148135732d01SWei Wang * and exception table is indexed by a hash of 148235732d01SWei Wang * both rt6i_dst and rt6i_src. 148335732d01SWei Wang * Otherwise, the exception table is indexed by 148435732d01SWei Wang * a hash of only rt6i_dst. 148535732d01SWei Wang */ 148635732d01SWei Wang if (from->rt6i_src.plen) 148735732d01SWei Wang src_key = &rt->rt6i_src.addr; 148835732d01SWei Wang #endif 148935732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, 149035732d01SWei Wang &rt->rt6i_dst.addr, 149135732d01SWei Wang src_key); 149235732d01SWei Wang if (rt6_ex) 149335732d01SWei Wang rt6_ex->stamp = jiffies; 149435732d01SWei Wang 149535732d01SWei Wang rcu_read_unlock(); 149635732d01SWei Wang } 149735732d01SWei Wang 149860006a48SWei Wang static void rt6_exceptions_remove_prefsrc(struct rt6_info *rt) 149960006a48SWei Wang { 150060006a48SWei Wang struct rt6_exception_bucket *bucket; 150160006a48SWei Wang struct rt6_exception *rt6_ex; 150260006a48SWei Wang int i; 150360006a48SWei Wang 150460006a48SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 150560006a48SWei Wang lockdep_is_held(&rt6_exception_lock)); 150660006a48SWei Wang 150760006a48SWei Wang if (bucket) { 150860006a48SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 150960006a48SWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 151060006a48SWei Wang rt6_ex->rt6i->rt6i_prefsrc.plen = 0; 151160006a48SWei Wang } 151260006a48SWei Wang bucket++; 151360006a48SWei Wang } 151460006a48SWei Wang } 151560006a48SWei Wang } 151660006a48SWei Wang 1517e9fa1495SStefano Brivio static bool rt6_mtu_change_route_allowed(struct inet6_dev *idev, 1518e9fa1495SStefano Brivio struct rt6_info *rt, int mtu) 1519e9fa1495SStefano Brivio { 1520e9fa1495SStefano Brivio /* If the new MTU is lower than the route PMTU, this new MTU will be the 1521e9fa1495SStefano Brivio * lowest MTU in the path: always allow updating the route PMTU to 1522e9fa1495SStefano Brivio * reflect PMTU decreases. 1523e9fa1495SStefano Brivio * 1524e9fa1495SStefano Brivio * If the new MTU is higher, and the route PMTU is equal to the local 1525e9fa1495SStefano Brivio * MTU, this means the old MTU is the lowest in the path, so allow 1526e9fa1495SStefano Brivio * updating it: if other nodes now have lower MTUs, PMTU discovery will 1527e9fa1495SStefano Brivio * handle this. 1528e9fa1495SStefano Brivio */ 1529e9fa1495SStefano Brivio 1530e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) >= mtu) 1531e9fa1495SStefano Brivio return true; 1532e9fa1495SStefano Brivio 1533e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) == idev->cnf.mtu6) 1534e9fa1495SStefano Brivio return true; 1535e9fa1495SStefano Brivio 1536e9fa1495SStefano Brivio return false; 1537e9fa1495SStefano Brivio } 1538e9fa1495SStefano Brivio 1539e9fa1495SStefano Brivio static void rt6_exceptions_update_pmtu(struct inet6_dev *idev, 1540e9fa1495SStefano Brivio struct rt6_info *rt, int mtu) 1541f5bbe7eeSWei Wang { 1542f5bbe7eeSWei Wang struct rt6_exception_bucket *bucket; 1543f5bbe7eeSWei Wang struct rt6_exception *rt6_ex; 1544f5bbe7eeSWei Wang int i; 1545f5bbe7eeSWei Wang 1546f5bbe7eeSWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1547f5bbe7eeSWei Wang lockdep_is_held(&rt6_exception_lock)); 1548f5bbe7eeSWei Wang 1549e9fa1495SStefano Brivio if (!bucket) 1550e9fa1495SStefano Brivio return; 1551e9fa1495SStefano Brivio 1552f5bbe7eeSWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1553f5bbe7eeSWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 1554f5bbe7eeSWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1555e9fa1495SStefano Brivio 1556e9fa1495SStefano Brivio /* For RTF_CACHE with rt6i_pmtu == 0 (i.e. a redirected 1557e9fa1495SStefano Brivio * route), the metrics of its rt->dst.from have already 1558f5bbe7eeSWei Wang * been updated. 1559f5bbe7eeSWei Wang */ 1560e9fa1495SStefano Brivio if (entry->rt6i_pmtu && 1561e9fa1495SStefano Brivio rt6_mtu_change_route_allowed(idev, entry, mtu)) 1562f5bbe7eeSWei Wang entry->rt6i_pmtu = mtu; 1563f5bbe7eeSWei Wang } 1564f5bbe7eeSWei Wang bucket++; 1565f5bbe7eeSWei Wang } 1566f5bbe7eeSWei Wang } 1567f5bbe7eeSWei Wang 1568b16cb459SWei Wang #define RTF_CACHE_GATEWAY (RTF_GATEWAY | RTF_CACHE) 1569b16cb459SWei Wang 1570b16cb459SWei Wang static void rt6_exceptions_clean_tohost(struct rt6_info *rt, 1571b16cb459SWei Wang struct in6_addr *gateway) 1572b16cb459SWei Wang { 1573b16cb459SWei Wang struct rt6_exception_bucket *bucket; 1574b16cb459SWei Wang struct rt6_exception *rt6_ex; 1575b16cb459SWei Wang struct hlist_node *tmp; 1576b16cb459SWei Wang int i; 1577b16cb459SWei Wang 1578b16cb459SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1579b16cb459SWei Wang return; 1580b16cb459SWei Wang 1581b16cb459SWei Wang spin_lock_bh(&rt6_exception_lock); 1582b16cb459SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1583b16cb459SWei Wang lockdep_is_held(&rt6_exception_lock)); 1584b16cb459SWei Wang 1585b16cb459SWei Wang if (bucket) { 1586b16cb459SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1587b16cb459SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1588b16cb459SWei Wang &bucket->chain, hlist) { 1589b16cb459SWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1590b16cb459SWei Wang 1591b16cb459SWei Wang if ((entry->rt6i_flags & RTF_CACHE_GATEWAY) == 1592b16cb459SWei Wang RTF_CACHE_GATEWAY && 1593b16cb459SWei Wang ipv6_addr_equal(gateway, 1594b16cb459SWei Wang &entry->rt6i_gateway)) { 1595b16cb459SWei Wang rt6_remove_exception(bucket, rt6_ex); 1596b16cb459SWei Wang } 1597b16cb459SWei Wang } 1598b16cb459SWei Wang bucket++; 1599b16cb459SWei Wang } 1600b16cb459SWei Wang } 1601b16cb459SWei Wang 1602b16cb459SWei Wang spin_unlock_bh(&rt6_exception_lock); 1603b16cb459SWei Wang } 1604b16cb459SWei Wang 1605c757faa8SWei Wang static void rt6_age_examine_exception(struct rt6_exception_bucket *bucket, 1606c757faa8SWei Wang struct rt6_exception *rt6_ex, 1607c757faa8SWei Wang struct fib6_gc_args *gc_args, 1608c757faa8SWei Wang unsigned long now) 1609c757faa8SWei Wang { 1610c757faa8SWei Wang struct rt6_info *rt = rt6_ex->rt6i; 1611c757faa8SWei Wang 16121859bac0SPaolo Abeni /* we are pruning and obsoleting aged-out and non gateway exceptions 16131859bac0SPaolo Abeni * even if others have still references to them, so that on next 16141859bac0SPaolo Abeni * dst_check() such references can be dropped. 16151859bac0SPaolo Abeni * EXPIRES exceptions - e.g. pmtu-generated ones are pruned when 16161859bac0SPaolo Abeni * expired, independently from their aging, as per RFC 8201 section 4 16171859bac0SPaolo Abeni */ 161831afeb42SWei Wang if (!(rt->rt6i_flags & RTF_EXPIRES)) { 161931afeb42SWei Wang if (time_after_eq(now, rt->dst.lastuse + gc_args->timeout)) { 1620c757faa8SWei Wang RT6_TRACE("aging clone %p\n", rt); 1621c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1622c757faa8SWei Wang return; 162331afeb42SWei Wang } 162431afeb42SWei Wang } else if (time_after(jiffies, rt->dst.expires)) { 162531afeb42SWei Wang RT6_TRACE("purging expired route %p\n", rt); 162631afeb42SWei Wang rt6_remove_exception(bucket, rt6_ex); 162731afeb42SWei Wang return; 162831afeb42SWei Wang } 162931afeb42SWei Wang 163031afeb42SWei Wang if (rt->rt6i_flags & RTF_GATEWAY) { 1631c757faa8SWei Wang struct neighbour *neigh; 1632c757faa8SWei Wang __u8 neigh_flags = 0; 1633c757faa8SWei Wang 1634c757faa8SWei Wang neigh = dst_neigh_lookup(&rt->dst, &rt->rt6i_gateway); 1635c757faa8SWei Wang if (neigh) { 1636c757faa8SWei Wang neigh_flags = neigh->flags; 1637c757faa8SWei Wang neigh_release(neigh); 1638c757faa8SWei Wang } 1639c757faa8SWei Wang if (!(neigh_flags & NTF_ROUTER)) { 1640c757faa8SWei Wang RT6_TRACE("purging route %p via non-router but gateway\n", 1641c757faa8SWei Wang rt); 1642c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1643c757faa8SWei Wang return; 1644c757faa8SWei Wang } 1645c757faa8SWei Wang } 164631afeb42SWei Wang 1647c757faa8SWei Wang gc_args->more++; 1648c757faa8SWei Wang } 1649c757faa8SWei Wang 1650c757faa8SWei Wang void rt6_age_exceptions(struct rt6_info *rt, 1651c757faa8SWei Wang struct fib6_gc_args *gc_args, 1652c757faa8SWei Wang unsigned long now) 1653c757faa8SWei Wang { 1654c757faa8SWei Wang struct rt6_exception_bucket *bucket; 1655c757faa8SWei Wang struct rt6_exception *rt6_ex; 1656c757faa8SWei Wang struct hlist_node *tmp; 1657c757faa8SWei Wang int i; 1658c757faa8SWei Wang 1659c757faa8SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1660c757faa8SWei Wang return; 1661c757faa8SWei Wang 1662c757faa8SWei Wang spin_lock_bh(&rt6_exception_lock); 1663c757faa8SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1664c757faa8SWei Wang lockdep_is_held(&rt6_exception_lock)); 1665c757faa8SWei Wang 1666c757faa8SWei Wang if (bucket) { 1667c757faa8SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1668c757faa8SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1669c757faa8SWei Wang &bucket->chain, hlist) { 1670c757faa8SWei Wang rt6_age_examine_exception(bucket, rt6_ex, 1671c757faa8SWei Wang gc_args, now); 1672c757faa8SWei Wang } 1673c757faa8SWei Wang bucket++; 1674c757faa8SWei Wang } 1675c757faa8SWei Wang } 1676c757faa8SWei Wang spin_unlock_bh(&rt6_exception_lock); 1677c757faa8SWei Wang } 1678c757faa8SWei Wang 16799ff74384SDavid Ahern struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, 1680b75cc8f9SDavid Ahern int oif, struct flowi6 *fl6, 1681b75cc8f9SDavid Ahern const struct sk_buff *skb, int flags) 16821da177e4SLinus Torvalds { 1683367efcb9SMartin KaFai Lau struct fib6_node *fn, *saved_fn; 16842b760fcfSWei Wang struct rt6_info *rt, *rt_cache; 1685c71099acSThomas Graf int strict = 0; 16861da177e4SLinus Torvalds 168777d16f45SYOSHIFUJI Hideaki strict |= flags & RT6_LOOKUP_F_IFACE; 1688d5d32e4bSDavid Ahern strict |= flags & RT6_LOOKUP_F_IGNORE_LINKSTATE; 1689367efcb9SMartin KaFai Lau if (net->ipv6.devconf_all->forwarding == 0) 1690367efcb9SMartin KaFai Lau strict |= RT6_LOOKUP_F_REACHABLE; 16911da177e4SLinus Torvalds 169266f5d6ceSWei Wang rcu_read_lock(); 16931da177e4SLinus Torvalds 16944c9483b2SDavid S. Miller fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1695367efcb9SMartin KaFai Lau saved_fn = fn; 16961da177e4SLinus Torvalds 1697ca254490SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1698ca254490SDavid Ahern oif = 0; 1699ca254490SDavid Ahern 1700a3c00e46SMartin KaFai Lau redo_rt6_select: 17018d1040e8SWei Wang rt = rt6_select(net, fn, oif, strict); 170252bd4c0cSNicolas Dichtel if (rt->rt6i_nsiblings) 1703b4bac172SDavid Ahern rt = rt6_multipath_select(net, rt, fl6, oif, skb, strict); 1704a3c00e46SMartin KaFai Lau if (rt == net->ipv6.ip6_null_entry) { 1705a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1706a3c00e46SMartin KaFai Lau if (fn) 1707a3c00e46SMartin KaFai Lau goto redo_rt6_select; 1708367efcb9SMartin KaFai Lau else if (strict & RT6_LOOKUP_F_REACHABLE) { 1709367efcb9SMartin KaFai Lau /* also consider unreachable route */ 1710367efcb9SMartin KaFai Lau strict &= ~RT6_LOOKUP_F_REACHABLE; 1711367efcb9SMartin KaFai Lau fn = saved_fn; 1712367efcb9SMartin KaFai Lau goto redo_rt6_select; 1713367efcb9SMartin KaFai Lau } 1714a3c00e46SMartin KaFai Lau } 1715a3c00e46SMartin KaFai Lau 17162b760fcfSWei Wang /*Search through exception table */ 17172b760fcfSWei Wang rt_cache = rt6_find_cached_rt(rt, &fl6->daddr, &fl6->saddr); 17182b760fcfSWei Wang if (rt_cache) 17192b760fcfSWei Wang rt = rt_cache; 1720d52d3997SMartin KaFai Lau 1721d3843fe5SWei Wang if (rt == net->ipv6.ip6_null_entry) { 172266f5d6ceSWei Wang rcu_read_unlock(); 1723d3843fe5SWei Wang dst_hold(&rt->dst); 1724b65f164dSPaolo Abeni trace_fib6_table_lookup(net, rt, table, fl6); 1725d3843fe5SWei Wang return rt; 1726d3843fe5SWei Wang } else if (rt->rt6i_flags & RTF_CACHE) { 1727d3843fe5SWei Wang if (ip6_hold_safe(net, &rt, true)) { 1728d3843fe5SWei Wang dst_use_noref(&rt->dst, jiffies); 1729d52d3997SMartin KaFai Lau rt6_dst_from_metrics_check(rt); 1730d3843fe5SWei Wang } 173166f5d6ceSWei Wang rcu_read_unlock(); 1732b65f164dSPaolo Abeni trace_fib6_table_lookup(net, rt, table, fl6); 1733d52d3997SMartin KaFai Lau return rt; 17343da59bd9SMartin KaFai Lau } else if (unlikely((fl6->flowi6_flags & FLOWI_FLAG_KNOWN_NH) && 17353da59bd9SMartin KaFai Lau !(rt->rt6i_flags & RTF_GATEWAY))) { 17363da59bd9SMartin KaFai Lau /* Create a RTF_CACHE clone which will not be 17373da59bd9SMartin KaFai Lau * owned by the fib6 tree. It is for the special case where 17383da59bd9SMartin KaFai Lau * the daddr in the skb during the neighbor look-up is different 17393da59bd9SMartin KaFai Lau * from the fl6->daddr used to look-up route here. 17403da59bd9SMartin KaFai Lau */ 1741c71099acSThomas Graf 17423da59bd9SMartin KaFai Lau struct rt6_info *uncached_rt; 17433da59bd9SMartin KaFai Lau 1744d3843fe5SWei Wang if (ip6_hold_safe(net, &rt, true)) { 1745d3843fe5SWei Wang dst_use_noref(&rt->dst, jiffies); 1746d3843fe5SWei Wang } else { 174766f5d6ceSWei Wang rcu_read_unlock(); 1748d3843fe5SWei Wang uncached_rt = rt; 1749d3843fe5SWei Wang goto uncached_rt_out; 1750d3843fe5SWei Wang } 175166f5d6ceSWei Wang rcu_read_unlock(); 1752d52d3997SMartin KaFai Lau 17533da59bd9SMartin KaFai Lau uncached_rt = ip6_rt_cache_alloc(rt, &fl6->daddr, NULL); 17543da59bd9SMartin KaFai Lau dst_release(&rt->dst); 17553da59bd9SMartin KaFai Lau 17561cfb71eeSWei Wang if (uncached_rt) { 17571cfb71eeSWei Wang /* Uncached_rt's refcnt is taken during ip6_rt_cache_alloc() 17581cfb71eeSWei Wang * No need for another dst_hold() 17591cfb71eeSWei Wang */ 17608d0b94afSMartin KaFai Lau rt6_uncached_list_add(uncached_rt); 176181eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 17621cfb71eeSWei Wang } else { 17633da59bd9SMartin KaFai Lau uncached_rt = net->ipv6.ip6_null_entry; 17643da59bd9SMartin KaFai Lau dst_hold(&uncached_rt->dst); 17651cfb71eeSWei Wang } 1766b811580dSDavid Ahern 1767d3843fe5SWei Wang uncached_rt_out: 1768b65f164dSPaolo Abeni trace_fib6_table_lookup(net, uncached_rt, table, fl6); 17693da59bd9SMartin KaFai Lau return uncached_rt; 17703da59bd9SMartin KaFai Lau 1771d52d3997SMartin KaFai Lau } else { 1772d52d3997SMartin KaFai Lau /* Get a percpu copy */ 1773d52d3997SMartin KaFai Lau 1774d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1775d52d3997SMartin KaFai Lau 1776d3843fe5SWei Wang dst_use_noref(&rt->dst, jiffies); 1777951f788aSEric Dumazet local_bh_disable(); 1778d52d3997SMartin KaFai Lau pcpu_rt = rt6_get_pcpu_route(rt); 1779d52d3997SMartin KaFai Lau 1780951f788aSEric Dumazet if (!pcpu_rt) { 1781a94b9367SWei Wang /* atomic_inc_not_zero() is needed when using rcu */ 1782a94b9367SWei Wang if (atomic_inc_not_zero(&rt->rt6i_ref)) { 1783951f788aSEric Dumazet /* No dst_hold() on rt is needed because grabbing 1784a94b9367SWei Wang * rt->rt6i_ref makes sure rt can't be released. 17859c7370a1SMartin KaFai Lau */ 17869c7370a1SMartin KaFai Lau pcpu_rt = rt6_make_pcpu_route(rt); 1787a94b9367SWei Wang rt6_release(rt); 1788a94b9367SWei Wang } else { 1789a94b9367SWei Wang /* rt is already removed from tree */ 1790a94b9367SWei Wang pcpu_rt = net->ipv6.ip6_null_entry; 1791a94b9367SWei Wang dst_hold(&pcpu_rt->dst); 1792a94b9367SWei Wang } 17939c7370a1SMartin KaFai Lau } 1794951f788aSEric Dumazet local_bh_enable(); 1795951f788aSEric Dumazet rcu_read_unlock(); 1796b65f164dSPaolo Abeni trace_fib6_table_lookup(net, pcpu_rt, table, fl6); 1797d52d3997SMartin KaFai Lau return pcpu_rt; 1798d52d3997SMartin KaFai Lau } 1799c71099acSThomas Graf } 18009ff74384SDavid Ahern EXPORT_SYMBOL_GPL(ip6_pol_route); 1801c71099acSThomas Graf 1802b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_input(struct net *net, 1803b75cc8f9SDavid Ahern struct fib6_table *table, 1804b75cc8f9SDavid Ahern struct flowi6 *fl6, 1805b75cc8f9SDavid Ahern const struct sk_buff *skb, 1806b75cc8f9SDavid Ahern int flags) 18074acad72dSPavel Emelyanov { 1808b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_iif, fl6, skb, flags); 18094acad72dSPavel Emelyanov } 18104acad72dSPavel Emelyanov 1811d409b847SMahesh Bandewar struct dst_entry *ip6_route_input_lookup(struct net *net, 181272331bc0SShmulik Ladkani struct net_device *dev, 1813b75cc8f9SDavid Ahern struct flowi6 *fl6, 1814b75cc8f9SDavid Ahern const struct sk_buff *skb, 1815b75cc8f9SDavid Ahern int flags) 181672331bc0SShmulik Ladkani { 181772331bc0SShmulik Ladkani if (rt6_need_strict(&fl6->daddr) && dev->type != ARPHRD_PIMREG) 181872331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_IFACE; 181972331bc0SShmulik Ladkani 1820b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_input); 182172331bc0SShmulik Ladkani } 1822d409b847SMahesh Bandewar EXPORT_SYMBOL_GPL(ip6_route_input_lookup); 182372331bc0SShmulik Ladkani 182423aebdacSJakub Sitnicki static void ip6_multipath_l3_keys(const struct sk_buff *skb, 18255e5d6fedSRoopa Prabhu struct flow_keys *keys, 18265e5d6fedSRoopa Prabhu struct flow_keys *flkeys) 182723aebdacSJakub Sitnicki { 182823aebdacSJakub Sitnicki const struct ipv6hdr *outer_iph = ipv6_hdr(skb); 182923aebdacSJakub Sitnicki const struct ipv6hdr *key_iph = outer_iph; 18305e5d6fedSRoopa Prabhu struct flow_keys *_flkeys = flkeys; 183123aebdacSJakub Sitnicki const struct ipv6hdr *inner_iph; 183223aebdacSJakub Sitnicki const struct icmp6hdr *icmph; 183323aebdacSJakub Sitnicki struct ipv6hdr _inner_iph; 183423aebdacSJakub Sitnicki 183523aebdacSJakub Sitnicki if (likely(outer_iph->nexthdr != IPPROTO_ICMPV6)) 183623aebdacSJakub Sitnicki goto out; 183723aebdacSJakub Sitnicki 183823aebdacSJakub Sitnicki icmph = icmp6_hdr(skb); 183923aebdacSJakub Sitnicki if (icmph->icmp6_type != ICMPV6_DEST_UNREACH && 184023aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PKT_TOOBIG && 184123aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_TIME_EXCEED && 184223aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PARAMPROB) 184323aebdacSJakub Sitnicki goto out; 184423aebdacSJakub Sitnicki 184523aebdacSJakub Sitnicki inner_iph = skb_header_pointer(skb, 184623aebdacSJakub Sitnicki skb_transport_offset(skb) + sizeof(*icmph), 184723aebdacSJakub Sitnicki sizeof(_inner_iph), &_inner_iph); 184823aebdacSJakub Sitnicki if (!inner_iph) 184923aebdacSJakub Sitnicki goto out; 185023aebdacSJakub Sitnicki 185123aebdacSJakub Sitnicki key_iph = inner_iph; 18525e5d6fedSRoopa Prabhu _flkeys = NULL; 185323aebdacSJakub Sitnicki out: 18545e5d6fedSRoopa Prabhu if (_flkeys) { 18555e5d6fedSRoopa Prabhu keys->addrs.v6addrs.src = _flkeys->addrs.v6addrs.src; 18565e5d6fedSRoopa Prabhu keys->addrs.v6addrs.dst = _flkeys->addrs.v6addrs.dst; 18575e5d6fedSRoopa Prabhu keys->tags.flow_label = _flkeys->tags.flow_label; 18585e5d6fedSRoopa Prabhu keys->basic.ip_proto = _flkeys->basic.ip_proto; 18595e5d6fedSRoopa Prabhu } else { 186023aebdacSJakub Sitnicki keys->addrs.v6addrs.src = key_iph->saddr; 186123aebdacSJakub Sitnicki keys->addrs.v6addrs.dst = key_iph->daddr; 186223aebdacSJakub Sitnicki keys->tags.flow_label = ip6_flowinfo(key_iph); 186323aebdacSJakub Sitnicki keys->basic.ip_proto = key_iph->nexthdr; 186423aebdacSJakub Sitnicki } 18655e5d6fedSRoopa Prabhu } 186623aebdacSJakub Sitnicki 186723aebdacSJakub Sitnicki /* if skb is set it will be used and fl6 can be NULL */ 1868b4bac172SDavid Ahern u32 rt6_multipath_hash(const struct net *net, const struct flowi6 *fl6, 1869b4bac172SDavid Ahern const struct sk_buff *skb, struct flow_keys *flkeys) 187023aebdacSJakub Sitnicki { 187123aebdacSJakub Sitnicki struct flow_keys hash_keys; 18729a2a537aSDavid Ahern u32 mhash; 187323aebdacSJakub Sitnicki 1874bbfa047aSDavid S. Miller switch (ip6_multipath_hash_policy(net)) { 1875b4bac172SDavid Ahern case 0: 18766f74b6c2SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 18776f74b6c2SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 18789a2a537aSDavid Ahern if (skb) { 18795e5d6fedSRoopa Prabhu ip6_multipath_l3_keys(skb, &hash_keys, flkeys); 18809a2a537aSDavid Ahern } else { 18819a2a537aSDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 18829a2a537aSDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 18839a2a537aSDavid Ahern hash_keys.tags.flow_label = (__force u32)fl6->flowlabel; 18849a2a537aSDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 188523aebdacSJakub Sitnicki } 1886b4bac172SDavid Ahern break; 1887b4bac172SDavid Ahern case 1: 1888b4bac172SDavid Ahern if (skb) { 1889b4bac172SDavid Ahern unsigned int flag = FLOW_DISSECTOR_F_STOP_AT_ENCAP; 1890b4bac172SDavid Ahern struct flow_keys keys; 1891b4bac172SDavid Ahern 1892b4bac172SDavid Ahern /* short-circuit if we already have L4 hash present */ 1893b4bac172SDavid Ahern if (skb->l4_hash) 1894b4bac172SDavid Ahern return skb_get_hash_raw(skb) >> 1; 1895b4bac172SDavid Ahern 1896b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 1897b4bac172SDavid Ahern 1898b4bac172SDavid Ahern if (!flkeys) { 1899b4bac172SDavid Ahern skb_flow_dissect_flow_keys(skb, &keys, flag); 1900b4bac172SDavid Ahern flkeys = &keys; 1901b4bac172SDavid Ahern } 1902b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 1903b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = flkeys->addrs.v6addrs.src; 1904b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = flkeys->addrs.v6addrs.dst; 1905b4bac172SDavid Ahern hash_keys.ports.src = flkeys->ports.src; 1906b4bac172SDavid Ahern hash_keys.ports.dst = flkeys->ports.dst; 1907b4bac172SDavid Ahern hash_keys.basic.ip_proto = flkeys->basic.ip_proto; 1908b4bac172SDavid Ahern } else { 1909b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 1910b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 1911b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 1912b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 1913b4bac172SDavid Ahern hash_keys.ports.src = fl6->fl6_sport; 1914b4bac172SDavid Ahern hash_keys.ports.dst = fl6->fl6_dport; 1915b4bac172SDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 1916b4bac172SDavid Ahern } 1917b4bac172SDavid Ahern break; 1918b4bac172SDavid Ahern } 19199a2a537aSDavid Ahern mhash = flow_hash_from_keys(&hash_keys); 192023aebdacSJakub Sitnicki 19219a2a537aSDavid Ahern return mhash >> 1; 192223aebdacSJakub Sitnicki } 192323aebdacSJakub Sitnicki 1924c71099acSThomas Graf void ip6_route_input(struct sk_buff *skb) 1925c71099acSThomas Graf { 1926b71d1d42SEric Dumazet const struct ipv6hdr *iph = ipv6_hdr(skb); 1927c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(skb->dev); 1928adaa70bbSThomas Graf int flags = RT6_LOOKUP_F_HAS_SADDR; 1929904af04dSJiri Benc struct ip_tunnel_info *tun_info; 19304c9483b2SDavid S. Miller struct flowi6 fl6 = { 1931e0d56fddSDavid Ahern .flowi6_iif = skb->dev->ifindex, 19324c9483b2SDavid S. Miller .daddr = iph->daddr, 19334c9483b2SDavid S. Miller .saddr = iph->saddr, 19346502ca52SYOSHIFUJI Hideaki / 吉藤英明 .flowlabel = ip6_flowinfo(iph), 19354c9483b2SDavid S. Miller .flowi6_mark = skb->mark, 19364c9483b2SDavid S. Miller .flowi6_proto = iph->nexthdr, 1937c71099acSThomas Graf }; 19385e5d6fedSRoopa Prabhu struct flow_keys *flkeys = NULL, _flkeys; 1939adaa70bbSThomas Graf 1940904af04dSJiri Benc tun_info = skb_tunnel_info(skb); 194146fa062aSJiri Benc if (tun_info && !(tun_info->mode & IP_TUNNEL_INFO_TX)) 1942904af04dSJiri Benc fl6.flowi6_tun_key.tun_id = tun_info->key.tun_id; 19435e5d6fedSRoopa Prabhu 19445e5d6fedSRoopa Prabhu if (fib6_rules_early_flow_dissect(net, skb, &fl6, &_flkeys)) 19455e5d6fedSRoopa Prabhu flkeys = &_flkeys; 19465e5d6fedSRoopa Prabhu 194723aebdacSJakub Sitnicki if (unlikely(fl6.flowi6_proto == IPPROTO_ICMPV6)) 1948b4bac172SDavid Ahern fl6.mp_hash = rt6_multipath_hash(net, &fl6, skb, flkeys); 194906e9d040SJiri Benc skb_dst_drop(skb); 1950b75cc8f9SDavid Ahern skb_dst_set(skb, 1951b75cc8f9SDavid Ahern ip6_route_input_lookup(net, skb->dev, &fl6, skb, flags)); 1952c71099acSThomas Graf } 1953c71099acSThomas Graf 1954b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_output(struct net *net, 1955b75cc8f9SDavid Ahern struct fib6_table *table, 1956b75cc8f9SDavid Ahern struct flowi6 *fl6, 1957b75cc8f9SDavid Ahern const struct sk_buff *skb, 1958b75cc8f9SDavid Ahern int flags) 1959c71099acSThomas Graf { 1960b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_oif, fl6, skb, flags); 1961c71099acSThomas Graf } 1962c71099acSThomas Graf 19636f21c96aSPaolo Abeni struct dst_entry *ip6_route_output_flags(struct net *net, const struct sock *sk, 19646f21c96aSPaolo Abeni struct flowi6 *fl6, int flags) 1965c71099acSThomas Graf { 1966d46a9d67SDavid Ahern bool any_src; 1967c71099acSThomas Graf 19684c1feac5SDavid Ahern if (rt6_need_strict(&fl6->daddr)) { 19694c1feac5SDavid Ahern struct dst_entry *dst; 19704c1feac5SDavid Ahern 19714c1feac5SDavid Ahern dst = l3mdev_link_scope_lookup(net, fl6); 1972ca254490SDavid Ahern if (dst) 1973ca254490SDavid Ahern return dst; 19744c1feac5SDavid Ahern } 1975ca254490SDavid Ahern 19761fb9489bSPavel Emelyanov fl6->flowi6_iif = LOOPBACK_IFINDEX; 19774dc27d1cSDavid McCullough 1978d46a9d67SDavid Ahern any_src = ipv6_addr_any(&fl6->saddr); 1979741a11d9SDavid Ahern if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl6->daddr) || 1980d46a9d67SDavid Ahern (fl6->flowi6_oif && any_src)) 198177d16f45SYOSHIFUJI Hideaki flags |= RT6_LOOKUP_F_IFACE; 1982c71099acSThomas Graf 1983d46a9d67SDavid Ahern if (!any_src) 1984adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 19850c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 else if (sk) 19860c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs); 1987adaa70bbSThomas Graf 1988b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, NULL, flags, ip6_pol_route_output); 19891da177e4SLinus Torvalds } 19906f21c96aSPaolo Abeni EXPORT_SYMBOL_GPL(ip6_route_output_flags); 19911da177e4SLinus Torvalds 19922774c131SDavid S. Miller struct dst_entry *ip6_blackhole_route(struct net *net, struct dst_entry *dst_orig) 199314e50e57SDavid S. Miller { 19945c1e6aa3SDavid S. Miller struct rt6_info *rt, *ort = (struct rt6_info *) dst_orig; 19951dbe3252SWei Wang struct net_device *loopback_dev = net->loopback_dev; 199614e50e57SDavid S. Miller struct dst_entry *new = NULL; 199714e50e57SDavid S. Miller 19981dbe3252SWei Wang rt = dst_alloc(&ip6_dst_blackhole_ops, loopback_dev, 1, 199962cf27e5SSteffen Klassert DST_OBSOLETE_DEAD, 0); 200014e50e57SDavid S. Miller if (rt) { 20010a1f5962SMartin KaFai Lau rt6_info_init(rt); 200281eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 20030a1f5962SMartin KaFai Lau 2004d8d1f30bSChangli Gao new = &rt->dst; 200514e50e57SDavid S. Miller new->__use = 1; 2006352e512cSHerbert Xu new->input = dst_discard; 2007ede2059dSEric W. Biederman new->output = dst_discard_out; 200814e50e57SDavid S. Miller 2009defb3519SDavid S. Miller dst_copy_metrics(new, &ort->dst); 201014e50e57SDavid S. Miller 20111dbe3252SWei Wang rt->rt6i_idev = in6_dev_get(loopback_dev); 20124e3fd7a0SAlexey Dobriyan rt->rt6i_gateway = ort->rt6i_gateway; 20130a1f5962SMartin KaFai Lau rt->rt6i_flags = ort->rt6i_flags & ~RTF_PCPU; 201414e50e57SDavid S. Miller rt->rt6i_metric = 0; 201514e50e57SDavid S. Miller 201614e50e57SDavid S. Miller memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key)); 201714e50e57SDavid S. Miller #ifdef CONFIG_IPV6_SUBTREES 201814e50e57SDavid S. Miller memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key)); 201914e50e57SDavid S. Miller #endif 202014e50e57SDavid S. Miller } 202114e50e57SDavid S. Miller 202269ead7afSDavid S. Miller dst_release(dst_orig); 202369ead7afSDavid S. Miller return new ? new : ERR_PTR(-ENOMEM); 202414e50e57SDavid S. Miller } 202514e50e57SDavid S. Miller 20261da177e4SLinus Torvalds /* 20271da177e4SLinus Torvalds * Destination cache support functions 20281da177e4SLinus Torvalds */ 20291da177e4SLinus Torvalds 20304b32b5adSMartin KaFai Lau static void rt6_dst_from_metrics_check(struct rt6_info *rt) 20314b32b5adSMartin KaFai Lau { 20323a2232e9SDavid Miller if (rt->from && 20333a2232e9SDavid Miller dst_metrics_ptr(&rt->dst) != dst_metrics_ptr(&rt->from->dst)) 20343a2232e9SDavid Miller dst_init_metrics(&rt->dst, dst_metrics_ptr(&rt->from->dst), true); 20354b32b5adSMartin KaFai Lau } 20364b32b5adSMartin KaFai Lau 20373da59bd9SMartin KaFai Lau static struct dst_entry *rt6_check(struct rt6_info *rt, u32 cookie) 20383da59bd9SMartin KaFai Lau { 203936143645SSteffen Klassert u32 rt_cookie = 0; 2040c5cff856SWei Wang 2041c5cff856SWei Wang if (!rt6_get_cookie_safe(rt, &rt_cookie) || rt_cookie != cookie) 20423da59bd9SMartin KaFai Lau return NULL; 20433da59bd9SMartin KaFai Lau 20443da59bd9SMartin KaFai Lau if (rt6_check_expired(rt)) 20453da59bd9SMartin KaFai Lau return NULL; 20463da59bd9SMartin KaFai Lau 20473da59bd9SMartin KaFai Lau return &rt->dst; 20483da59bd9SMartin KaFai Lau } 20493da59bd9SMartin KaFai Lau 20503da59bd9SMartin KaFai Lau static struct dst_entry *rt6_dst_from_check(struct rt6_info *rt, u32 cookie) 20513da59bd9SMartin KaFai Lau { 20525973fb1eSMartin KaFai Lau if (!__rt6_check_expired(rt) && 20535973fb1eSMartin KaFai Lau rt->dst.obsolete == DST_OBSOLETE_FORCE_CHK && 20543a2232e9SDavid Miller rt6_check(rt->from, cookie)) 20553da59bd9SMartin KaFai Lau return &rt->dst; 20563da59bd9SMartin KaFai Lau else 20573da59bd9SMartin KaFai Lau return NULL; 20583da59bd9SMartin KaFai Lau } 20593da59bd9SMartin KaFai Lau 20601da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie) 20611da177e4SLinus Torvalds { 20621da177e4SLinus Torvalds struct rt6_info *rt; 20631da177e4SLinus Torvalds 20641da177e4SLinus Torvalds rt = (struct rt6_info *) dst; 20651da177e4SLinus Torvalds 20666f3118b5SNicolas Dichtel /* All IPV6 dsts are created with ->obsolete set to the value 20676f3118b5SNicolas Dichtel * DST_OBSOLETE_FORCE_CHK which forces validation calls down 20686f3118b5SNicolas Dichtel * into this function always. 20696f3118b5SNicolas Dichtel */ 2070e3bc10bdSHannes Frederic Sowa 20714b32b5adSMartin KaFai Lau rt6_dst_from_metrics_check(rt); 20724b32b5adSMartin KaFai Lau 207302bcf4e0SMartin KaFai Lau if (rt->rt6i_flags & RTF_PCPU || 20743a2232e9SDavid Miller (unlikely(!list_empty(&rt->rt6i_uncached)) && rt->from)) 20753da59bd9SMartin KaFai Lau return rt6_dst_from_check(rt, cookie); 20763da59bd9SMartin KaFai Lau else 20773da59bd9SMartin KaFai Lau return rt6_check(rt, cookie); 20781da177e4SLinus Torvalds } 20791da177e4SLinus Torvalds 20801da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *dst) 20811da177e4SLinus Torvalds { 20821da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *) dst; 20831da177e4SLinus Torvalds 20841da177e4SLinus Torvalds if (rt) { 208554c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt->rt6i_flags & RTF_CACHE) { 208654c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt6_check_expired(rt)) { 2087e0a1ad73SThomas Graf ip6_del_rt(rt); 208854c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 20891da177e4SLinus Torvalds } 209054c1a859SYOSHIFUJI Hideaki / 吉藤英明 } else { 209154c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst_release(dst); 209254c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 209354c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 209454c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 209554c1a859SYOSHIFUJI Hideaki / 吉藤英明 return dst; 20961da177e4SLinus Torvalds } 20971da177e4SLinus Torvalds 20981da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb) 20991da177e4SLinus Torvalds { 21001da177e4SLinus Torvalds struct rt6_info *rt; 21011da177e4SLinus Torvalds 21023ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0); 21031da177e4SLinus Torvalds 2104adf30907SEric Dumazet rt = (struct rt6_info *) skb_dst(skb); 21051da177e4SLinus Torvalds if (rt) { 21061eb4f758SHannes Frederic Sowa if (rt->rt6i_flags & RTF_CACHE) { 2107ad65a2f0SWei Wang if (dst_hold_safe(&rt->dst)) 21088e3d5be7SMartin KaFai Lau ip6_del_rt(rt); 2109c5cff856SWei Wang } else { 2110c5cff856SWei Wang struct fib6_node *fn; 2111c5cff856SWei Wang 2112c5cff856SWei Wang rcu_read_lock(); 2113c5cff856SWei Wang fn = rcu_dereference(rt->rt6i_node); 2114c5cff856SWei Wang if (fn && (rt->rt6i_flags & RTF_DEFAULT)) 2115c5cff856SWei Wang fn->fn_sernum = -1; 2116c5cff856SWei Wang rcu_read_unlock(); 21171da177e4SLinus Torvalds } 21181da177e4SLinus Torvalds } 21191eb4f758SHannes Frederic Sowa } 21201da177e4SLinus Torvalds 212145e4fd26SMartin KaFai Lau static void rt6_do_update_pmtu(struct rt6_info *rt, u32 mtu) 212245e4fd26SMartin KaFai Lau { 212345e4fd26SMartin KaFai Lau struct net *net = dev_net(rt->dst.dev); 212445e4fd26SMartin KaFai Lau 212545e4fd26SMartin KaFai Lau rt->rt6i_flags |= RTF_MODIFIED; 212645e4fd26SMartin KaFai Lau rt->rt6i_pmtu = mtu; 212745e4fd26SMartin KaFai Lau rt6_update_expires(rt, net->ipv6.sysctl.ip6_rt_mtu_expires); 212845e4fd26SMartin KaFai Lau } 212945e4fd26SMartin KaFai Lau 21300d3f6d29SMartin KaFai Lau static bool rt6_cache_allowed_for_pmtu(const struct rt6_info *rt) 21310d3f6d29SMartin KaFai Lau { 21320d3f6d29SMartin KaFai Lau return !(rt->rt6i_flags & RTF_CACHE) && 21334e587ea7SWei Wang (rt->rt6i_flags & RTF_PCPU || 21344e587ea7SWei Wang rcu_access_pointer(rt->rt6i_node)); 21350d3f6d29SMartin KaFai Lau } 21360d3f6d29SMartin KaFai Lau 213745e4fd26SMartin KaFai Lau static void __ip6_rt_update_pmtu(struct dst_entry *dst, const struct sock *sk, 213845e4fd26SMartin KaFai Lau const struct ipv6hdr *iph, u32 mtu) 21391da177e4SLinus Torvalds { 21400dec879fSJulian Anastasov const struct in6_addr *daddr, *saddr; 21411da177e4SLinus Torvalds struct rt6_info *rt6 = (struct rt6_info *)dst; 21421da177e4SLinus Torvalds 214345e4fd26SMartin KaFai Lau if (rt6->rt6i_flags & RTF_LOCAL) 214445e4fd26SMartin KaFai Lau return; 214545e4fd26SMartin KaFai Lau 214619bda36cSXin Long if (dst_metric_locked(dst, RTAX_MTU)) 214719bda36cSXin Long return; 214819bda36cSXin Long 214945e4fd26SMartin KaFai Lau if (iph) { 215045e4fd26SMartin KaFai Lau daddr = &iph->daddr; 215145e4fd26SMartin KaFai Lau saddr = &iph->saddr; 215245e4fd26SMartin KaFai Lau } else if (sk) { 215345e4fd26SMartin KaFai Lau daddr = &sk->sk_v6_daddr; 215445e4fd26SMartin KaFai Lau saddr = &inet6_sk(sk)->saddr; 215545e4fd26SMartin KaFai Lau } else { 21560dec879fSJulian Anastasov daddr = NULL; 21570dec879fSJulian Anastasov saddr = NULL; 21581da177e4SLinus Torvalds } 21590dec879fSJulian Anastasov dst_confirm_neigh(dst, daddr); 21600dec879fSJulian Anastasov mtu = max_t(u32, mtu, IPV6_MIN_MTU); 21610dec879fSJulian Anastasov if (mtu >= dst_mtu(dst)) 21620dec879fSJulian Anastasov return; 21630dec879fSJulian Anastasov 21640dec879fSJulian Anastasov if (!rt6_cache_allowed_for_pmtu(rt6)) { 21650dec879fSJulian Anastasov rt6_do_update_pmtu(rt6, mtu); 21662b760fcfSWei Wang /* update rt6_ex->stamp for cache */ 21672b760fcfSWei Wang if (rt6->rt6i_flags & RTF_CACHE) 21682b760fcfSWei Wang rt6_update_exception_stamp_rt(rt6); 21690dec879fSJulian Anastasov } else if (daddr) { 21700dec879fSJulian Anastasov struct rt6_info *nrt6; 21710dec879fSJulian Anastasov 217245e4fd26SMartin KaFai Lau nrt6 = ip6_rt_cache_alloc(rt6, daddr, saddr); 217345e4fd26SMartin KaFai Lau if (nrt6) { 217445e4fd26SMartin KaFai Lau rt6_do_update_pmtu(nrt6, mtu); 21752b760fcfSWei Wang if (rt6_insert_exception(nrt6, rt6)) 21762b760fcfSWei Wang dst_release_immediate(&nrt6->dst); 217745e4fd26SMartin KaFai Lau } 217845e4fd26SMartin KaFai Lau } 217945e4fd26SMartin KaFai Lau } 218045e4fd26SMartin KaFai Lau 218145e4fd26SMartin KaFai Lau static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 218245e4fd26SMartin KaFai Lau struct sk_buff *skb, u32 mtu) 218345e4fd26SMartin KaFai Lau { 218445e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, sk, skb ? ipv6_hdr(skb) : NULL, mtu); 21851da177e4SLinus Torvalds } 21861da177e4SLinus Torvalds 218742ae66c8SDavid S. Miller void ip6_update_pmtu(struct sk_buff *skb, struct net *net, __be32 mtu, 2188e2d118a1SLorenzo Colitti int oif, u32 mark, kuid_t uid) 218981aded24SDavid S. Miller { 219081aded24SDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 219181aded24SDavid S. Miller struct dst_entry *dst; 219281aded24SDavid S. Miller struct flowi6 fl6; 219381aded24SDavid S. Miller 219481aded24SDavid S. Miller memset(&fl6, 0, sizeof(fl6)); 219581aded24SDavid S. Miller fl6.flowi6_oif = oif; 21961b3c61dcSLorenzo Colitti fl6.flowi6_mark = mark ? mark : IP6_REPLY_MARK(net, skb->mark); 219781aded24SDavid S. Miller fl6.daddr = iph->daddr; 219881aded24SDavid S. Miller fl6.saddr = iph->saddr; 21996502ca52SYOSHIFUJI Hideaki / 吉藤英明 fl6.flowlabel = ip6_flowinfo(iph); 2200e2d118a1SLorenzo Colitti fl6.flowi6_uid = uid; 220181aded24SDavid S. Miller 220281aded24SDavid S. Miller dst = ip6_route_output(net, NULL, &fl6); 220381aded24SDavid S. Miller if (!dst->error) 220445e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, NULL, iph, ntohl(mtu)); 220581aded24SDavid S. Miller dst_release(dst); 220681aded24SDavid S. Miller } 220781aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_update_pmtu); 220881aded24SDavid S. Miller 220981aded24SDavid S. Miller void ip6_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, __be32 mtu) 221081aded24SDavid S. Miller { 221133c162a9SMartin KaFai Lau struct dst_entry *dst; 221233c162a9SMartin KaFai Lau 221381aded24SDavid S. Miller ip6_update_pmtu(skb, sock_net(sk), mtu, 2214e2d118a1SLorenzo Colitti sk->sk_bound_dev_if, sk->sk_mark, sk->sk_uid); 221533c162a9SMartin KaFai Lau 221633c162a9SMartin KaFai Lau dst = __sk_dst_get(sk); 221733c162a9SMartin KaFai Lau if (!dst || !dst->obsolete || 221833c162a9SMartin KaFai Lau dst->ops->check(dst, inet6_sk(sk)->dst_cookie)) 221933c162a9SMartin KaFai Lau return; 222033c162a9SMartin KaFai Lau 222133c162a9SMartin KaFai Lau bh_lock_sock(sk); 222233c162a9SMartin KaFai Lau if (!sock_owned_by_user(sk) && !ipv6_addr_v4mapped(&sk->sk_v6_daddr)) 222333c162a9SMartin KaFai Lau ip6_datagram_dst_update(sk, false); 222433c162a9SMartin KaFai Lau bh_unlock_sock(sk); 222581aded24SDavid S. Miller } 222681aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_update_pmtu); 222781aded24SDavid S. Miller 2228b55b76b2SDuan Jiong /* Handle redirects */ 2229b55b76b2SDuan Jiong struct ip6rd_flowi { 2230b55b76b2SDuan Jiong struct flowi6 fl6; 2231b55b76b2SDuan Jiong struct in6_addr gateway; 2232b55b76b2SDuan Jiong }; 2233b55b76b2SDuan Jiong 2234b55b76b2SDuan Jiong static struct rt6_info *__ip6_route_redirect(struct net *net, 2235b55b76b2SDuan Jiong struct fib6_table *table, 2236b55b76b2SDuan Jiong struct flowi6 *fl6, 2237b75cc8f9SDavid Ahern const struct sk_buff *skb, 2238b55b76b2SDuan Jiong int flags) 2239b55b76b2SDuan Jiong { 2240b55b76b2SDuan Jiong struct ip6rd_flowi *rdfl = (struct ip6rd_flowi *)fl6; 22412b760fcfSWei Wang struct rt6_info *rt, *rt_cache; 2242b55b76b2SDuan Jiong struct fib6_node *fn; 2243b55b76b2SDuan Jiong 2244b55b76b2SDuan Jiong /* Get the "current" route for this destination and 224567c408cfSAlexander Alemayhu * check if the redirect has come from appropriate router. 2246b55b76b2SDuan Jiong * 2247b55b76b2SDuan Jiong * RFC 4861 specifies that redirects should only be 2248b55b76b2SDuan Jiong * accepted if they come from the nexthop to the target. 2249b55b76b2SDuan Jiong * Due to the way the routes are chosen, this notion 2250b55b76b2SDuan Jiong * is a bit fuzzy and one might need to check all possible 2251b55b76b2SDuan Jiong * routes. 2252b55b76b2SDuan Jiong */ 2253b55b76b2SDuan Jiong 225466f5d6ceSWei Wang rcu_read_lock(); 2255b55b76b2SDuan Jiong fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 2256b55b76b2SDuan Jiong restart: 225766f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 22588067bb8cSIdo Schimmel if (rt->rt6i_nh_flags & RTNH_F_DEAD) 22598067bb8cSIdo Schimmel continue; 2260b55b76b2SDuan Jiong if (rt6_check_expired(rt)) 2261b55b76b2SDuan Jiong continue; 2262b55b76b2SDuan Jiong if (rt->dst.error) 2263b55b76b2SDuan Jiong break; 2264b55b76b2SDuan Jiong if (!(rt->rt6i_flags & RTF_GATEWAY)) 2265b55b76b2SDuan Jiong continue; 2266b55b76b2SDuan Jiong if (fl6->flowi6_oif != rt->dst.dev->ifindex) 2267b55b76b2SDuan Jiong continue; 22682b760fcfSWei Wang /* rt_cache's gateway might be different from its 'parent' 22692b760fcfSWei Wang * in the case of an ip redirect. 22702b760fcfSWei Wang * So we keep searching in the exception table if the gateway 22712b760fcfSWei Wang * is different. 22722b760fcfSWei Wang */ 22732b760fcfSWei Wang if (!ipv6_addr_equal(&rdfl->gateway, &rt->rt6i_gateway)) { 22742b760fcfSWei Wang rt_cache = rt6_find_cached_rt(rt, 22752b760fcfSWei Wang &fl6->daddr, 22762b760fcfSWei Wang &fl6->saddr); 22772b760fcfSWei Wang if (rt_cache && 22782b760fcfSWei Wang ipv6_addr_equal(&rdfl->gateway, 22792b760fcfSWei Wang &rt_cache->rt6i_gateway)) { 22802b760fcfSWei Wang rt = rt_cache; 22812b760fcfSWei Wang break; 22822b760fcfSWei Wang } 2283b55b76b2SDuan Jiong continue; 22842b760fcfSWei Wang } 2285b55b76b2SDuan Jiong break; 2286b55b76b2SDuan Jiong } 2287b55b76b2SDuan Jiong 2288b55b76b2SDuan Jiong if (!rt) 2289b55b76b2SDuan Jiong rt = net->ipv6.ip6_null_entry; 2290b55b76b2SDuan Jiong else if (rt->dst.error) { 2291b55b76b2SDuan Jiong rt = net->ipv6.ip6_null_entry; 2292b0a1ba59SMartin KaFai Lau goto out; 2293b0a1ba59SMartin KaFai Lau } 2294b0a1ba59SMartin KaFai Lau 2295b0a1ba59SMartin KaFai Lau if (rt == net->ipv6.ip6_null_entry) { 2296a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 2297a3c00e46SMartin KaFai Lau if (fn) 2298a3c00e46SMartin KaFai Lau goto restart; 2299b55b76b2SDuan Jiong } 2300a3c00e46SMartin KaFai Lau 2301b0a1ba59SMartin KaFai Lau out: 2302d3843fe5SWei Wang ip6_hold_safe(net, &rt, true); 2303b55b76b2SDuan Jiong 230466f5d6ceSWei Wang rcu_read_unlock(); 2305b55b76b2SDuan Jiong 2306b65f164dSPaolo Abeni trace_fib6_table_lookup(net, rt, table, fl6); 2307b55b76b2SDuan Jiong return rt; 2308b55b76b2SDuan Jiong }; 2309b55b76b2SDuan Jiong 2310b55b76b2SDuan Jiong static struct dst_entry *ip6_route_redirect(struct net *net, 2311b55b76b2SDuan Jiong const struct flowi6 *fl6, 2312b75cc8f9SDavid Ahern const struct sk_buff *skb, 2313b55b76b2SDuan Jiong const struct in6_addr *gateway) 2314b55b76b2SDuan Jiong { 2315b55b76b2SDuan Jiong int flags = RT6_LOOKUP_F_HAS_SADDR; 2316b55b76b2SDuan Jiong struct ip6rd_flowi rdfl; 2317b55b76b2SDuan Jiong 2318b55b76b2SDuan Jiong rdfl.fl6 = *fl6; 2319b55b76b2SDuan Jiong rdfl.gateway = *gateway; 2320b55b76b2SDuan Jiong 2321b75cc8f9SDavid Ahern return fib6_rule_lookup(net, &rdfl.fl6, skb, 2322b55b76b2SDuan Jiong flags, __ip6_route_redirect); 2323b55b76b2SDuan Jiong } 2324b55b76b2SDuan Jiong 2325e2d118a1SLorenzo Colitti void ip6_redirect(struct sk_buff *skb, struct net *net, int oif, u32 mark, 2326e2d118a1SLorenzo Colitti kuid_t uid) 23273a5ad2eeSDavid S. Miller { 23283a5ad2eeSDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 23293a5ad2eeSDavid S. Miller struct dst_entry *dst; 23303a5ad2eeSDavid S. Miller struct flowi6 fl6; 23313a5ad2eeSDavid S. Miller 23323a5ad2eeSDavid S. Miller memset(&fl6, 0, sizeof(fl6)); 2333e374c618SJulian Anastasov fl6.flowi6_iif = LOOPBACK_IFINDEX; 23343a5ad2eeSDavid S. Miller fl6.flowi6_oif = oif; 23353a5ad2eeSDavid S. Miller fl6.flowi6_mark = mark; 23363a5ad2eeSDavid S. Miller fl6.daddr = iph->daddr; 23373a5ad2eeSDavid S. Miller fl6.saddr = iph->saddr; 23386502ca52SYOSHIFUJI Hideaki / 吉藤英明 fl6.flowlabel = ip6_flowinfo(iph); 2339e2d118a1SLorenzo Colitti fl6.flowi6_uid = uid; 23403a5ad2eeSDavid S. Miller 2341b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &ipv6_hdr(skb)->saddr); 23426700c270SDavid S. Miller rt6_do_redirect(dst, NULL, skb); 23433a5ad2eeSDavid S. Miller dst_release(dst); 23443a5ad2eeSDavid S. Miller } 23453a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_redirect); 23463a5ad2eeSDavid S. Miller 2347c92a59ecSDuan Jiong void ip6_redirect_no_header(struct sk_buff *skb, struct net *net, int oif, 2348c92a59ecSDuan Jiong u32 mark) 2349c92a59ecSDuan Jiong { 2350c92a59ecSDuan Jiong const struct ipv6hdr *iph = ipv6_hdr(skb); 2351c92a59ecSDuan Jiong const struct rd_msg *msg = (struct rd_msg *)icmp6_hdr(skb); 2352c92a59ecSDuan Jiong struct dst_entry *dst; 2353c92a59ecSDuan Jiong struct flowi6 fl6; 2354c92a59ecSDuan Jiong 2355c92a59ecSDuan Jiong memset(&fl6, 0, sizeof(fl6)); 2356e374c618SJulian Anastasov fl6.flowi6_iif = LOOPBACK_IFINDEX; 2357c92a59ecSDuan Jiong fl6.flowi6_oif = oif; 2358c92a59ecSDuan Jiong fl6.flowi6_mark = mark; 2359c92a59ecSDuan Jiong fl6.daddr = msg->dest; 2360c92a59ecSDuan Jiong fl6.saddr = iph->daddr; 2361e2d118a1SLorenzo Colitti fl6.flowi6_uid = sock_net_uid(net, NULL); 2362c92a59ecSDuan Jiong 2363b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &iph->saddr); 2364c92a59ecSDuan Jiong rt6_do_redirect(dst, NULL, skb); 2365c92a59ecSDuan Jiong dst_release(dst); 2366c92a59ecSDuan Jiong } 2367c92a59ecSDuan Jiong 23683a5ad2eeSDavid S. Miller void ip6_sk_redirect(struct sk_buff *skb, struct sock *sk) 23693a5ad2eeSDavid S. Miller { 2370e2d118a1SLorenzo Colitti ip6_redirect(skb, sock_net(sk), sk->sk_bound_dev_if, sk->sk_mark, 2371e2d118a1SLorenzo Colitti sk->sk_uid); 23723a5ad2eeSDavid S. Miller } 23733a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_redirect); 23743a5ad2eeSDavid S. Miller 23750dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst) 23761da177e4SLinus Torvalds { 23770dbaee3bSDavid S. Miller struct net_device *dev = dst->dev; 23780dbaee3bSDavid S. Miller unsigned int mtu = dst_mtu(dst); 23790dbaee3bSDavid S. Miller struct net *net = dev_net(dev); 23800dbaee3bSDavid S. Miller 23811da177e4SLinus Torvalds mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr); 23821da177e4SLinus Torvalds 23835578689aSDaniel Lezcano if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss) 23845578689aSDaniel Lezcano mtu = net->ipv6.sysctl.ip6_rt_min_advmss; 23851da177e4SLinus Torvalds 23861da177e4SLinus Torvalds /* 23871da177e4SLinus Torvalds * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and 23881da177e4SLinus Torvalds * corresponding MSS is IPV6_MAXPLEN - tcp_header_size. 23891da177e4SLinus Torvalds * IPV6_MAXPLEN is also valid and means: "any MSS, 23901da177e4SLinus Torvalds * rely only on pmtu discovery" 23911da177e4SLinus Torvalds */ 23921da177e4SLinus Torvalds if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr)) 23931da177e4SLinus Torvalds mtu = IPV6_MAXPLEN; 23941da177e4SLinus Torvalds return mtu; 23951da177e4SLinus Torvalds } 23961da177e4SLinus Torvalds 2397ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst) 2398d33e4553SDavid S. Miller { 23994b32b5adSMartin KaFai Lau const struct rt6_info *rt = (const struct rt6_info *)dst; 24004b32b5adSMartin KaFai Lau unsigned int mtu = rt->rt6i_pmtu; 2401d33e4553SDavid S. Miller struct inet6_dev *idev; 2402618f9bc7SSteffen Klassert 2403618f9bc7SSteffen Klassert if (mtu) 240430f78d8eSEric Dumazet goto out; 2405618f9bc7SSteffen Klassert 24064b32b5adSMartin KaFai Lau mtu = dst_metric_raw(dst, RTAX_MTU); 24074b32b5adSMartin KaFai Lau if (mtu) 24084b32b5adSMartin KaFai Lau goto out; 24094b32b5adSMartin KaFai Lau 2410618f9bc7SSteffen Klassert mtu = IPV6_MIN_MTU; 2411d33e4553SDavid S. Miller 2412d33e4553SDavid S. Miller rcu_read_lock(); 2413d33e4553SDavid S. Miller idev = __in6_dev_get(dst->dev); 2414d33e4553SDavid S. Miller if (idev) 2415d33e4553SDavid S. Miller mtu = idev->cnf.mtu6; 2416d33e4553SDavid S. Miller rcu_read_unlock(); 2417d33e4553SDavid S. Miller 241830f78d8eSEric Dumazet out: 241914972cbdSRoopa Prabhu mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 242014972cbdSRoopa Prabhu 242114972cbdSRoopa Prabhu return mtu - lwtunnel_headroom(dst->lwtstate, mtu); 2422d33e4553SDavid S. Miller } 2423d33e4553SDavid S. Miller 24243b00944cSYOSHIFUJI Hideaki struct dst_entry *icmp6_dst_alloc(struct net_device *dev, 242587a11578SDavid S. Miller struct flowi6 *fl6) 24261da177e4SLinus Torvalds { 242787a11578SDavid S. Miller struct dst_entry *dst; 24281da177e4SLinus Torvalds struct rt6_info *rt; 24291da177e4SLinus Torvalds struct inet6_dev *idev = in6_dev_get(dev); 2430c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 24311da177e4SLinus Torvalds 243238308473SDavid S. Miller if (unlikely(!idev)) 2433122bdf67SEric Dumazet return ERR_PTR(-ENODEV); 24341da177e4SLinus Torvalds 2435ad706862SMartin KaFai Lau rt = ip6_dst_alloc(net, dev, 0); 243638308473SDavid S. Miller if (unlikely(!rt)) { 24371da177e4SLinus Torvalds in6_dev_put(idev); 243887a11578SDavid S. Miller dst = ERR_PTR(-ENOMEM); 24391da177e4SLinus Torvalds goto out; 24401da177e4SLinus Torvalds } 24411da177e4SLinus Torvalds 24428e2ec639SYan, Zheng rt->dst.flags |= DST_HOST; 2443588753f1SBrendan McGrath rt->dst.input = ip6_input; 24448e2ec639SYan, Zheng rt->dst.output = ip6_output; 2445550bab42SJulian Anastasov rt->rt6i_gateway = fl6->daddr; 244687a11578SDavid S. Miller rt->rt6i_dst.addr = fl6->daddr; 24478e2ec639SYan, Zheng rt->rt6i_dst.plen = 128; 24488e2ec639SYan, Zheng rt->rt6i_idev = idev; 244914edd87dSLi RongQing dst_metric_set(&rt->dst, RTAX_HOPLIMIT, 0); 24501da177e4SLinus Torvalds 24514c981e28SIdo Schimmel /* Add this dst into uncached_list so that rt6_disable_ip() can 2452587fea74SWei Wang * do proper release of the net_device 2453587fea74SWei Wang */ 2454587fea74SWei Wang rt6_uncached_list_add(rt); 245581eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 24561da177e4SLinus Torvalds 245787a11578SDavid S. Miller dst = xfrm_lookup(net, &rt->dst, flowi6_to_flowi(fl6), NULL, 0); 245887a11578SDavid S. Miller 24591da177e4SLinus Torvalds out: 246087a11578SDavid S. Miller return dst; 24611da177e4SLinus Torvalds } 24621da177e4SLinus Torvalds 2463569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops) 24641da177e4SLinus Torvalds { 246586393e52SAlexey Dobriyan struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops); 24667019b78eSDaniel Lezcano int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval; 24677019b78eSDaniel Lezcano int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size; 24687019b78eSDaniel Lezcano int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity; 24697019b78eSDaniel Lezcano int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout; 24707019b78eSDaniel Lezcano unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc; 2471fc66f95cSEric Dumazet int entries; 24721da177e4SLinus Torvalds 2473fc66f95cSEric Dumazet entries = dst_entries_get_fast(ops); 247449a18d86SMichal Kubeček if (time_after(rt_last_gc + rt_min_interval, jiffies) && 2475fc66f95cSEric Dumazet entries <= rt_max_size) 24761da177e4SLinus Torvalds goto out; 24771da177e4SLinus Torvalds 24786891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire++; 247914956643SLi RongQing fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net, true); 2480fc66f95cSEric Dumazet entries = dst_entries_get_slow(ops); 2481fc66f95cSEric Dumazet if (entries < ops->gc_thresh) 24827019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1; 24831da177e4SLinus Torvalds out: 24847019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity; 2485fc66f95cSEric Dumazet return entries > rt_max_size; 24861da177e4SLinus Torvalds } 24871da177e4SLinus Torvalds 2488e715b6d3SFlorian Westphal static int ip6_convert_metrics(struct mx6_config *mxc, 2489e715b6d3SFlorian Westphal const struct fib6_config *cfg) 2490e715b6d3SFlorian Westphal { 24916670e152SStephen Hemminger struct net *net = cfg->fc_nlinfo.nl_net; 2492c3a8d947SDaniel Borkmann bool ecn_ca = false; 2493e715b6d3SFlorian Westphal struct nlattr *nla; 2494e715b6d3SFlorian Westphal int remaining; 2495e715b6d3SFlorian Westphal u32 *mp; 2496e715b6d3SFlorian Westphal 249763159f29SIan Morris if (!cfg->fc_mx) 2498e715b6d3SFlorian Westphal return 0; 2499e715b6d3SFlorian Westphal 2500e715b6d3SFlorian Westphal mp = kzalloc(sizeof(u32) * RTAX_MAX, GFP_KERNEL); 2501e715b6d3SFlorian Westphal if (unlikely(!mp)) 2502e715b6d3SFlorian Westphal return -ENOMEM; 2503e715b6d3SFlorian Westphal 2504e715b6d3SFlorian Westphal nla_for_each_attr(nla, cfg->fc_mx, cfg->fc_mx_len, remaining) { 2505e715b6d3SFlorian Westphal int type = nla_type(nla); 2506ea697639SDaniel Borkmann u32 val; 2507ea697639SDaniel Borkmann 25081bb14807SDaniel Borkmann if (!type) 25091bb14807SDaniel Borkmann continue; 2510e715b6d3SFlorian Westphal if (unlikely(type > RTAX_MAX)) 2511e715b6d3SFlorian Westphal goto err; 25121bb14807SDaniel Borkmann 2513ea697639SDaniel Borkmann if (type == RTAX_CC_ALGO) { 2514ea697639SDaniel Borkmann char tmp[TCP_CA_NAME_MAX]; 2515e715b6d3SFlorian Westphal 2516ea697639SDaniel Borkmann nla_strlcpy(tmp, nla, sizeof(tmp)); 25176670e152SStephen Hemminger val = tcp_ca_get_key_by_name(net, tmp, &ecn_ca); 2518ea697639SDaniel Borkmann if (val == TCP_CA_UNSPEC) 2519ea697639SDaniel Borkmann goto err; 2520ea697639SDaniel Borkmann } else { 2521ea697639SDaniel Borkmann val = nla_get_u32(nla); 2522ea697639SDaniel Borkmann } 2523626abd59SPaolo Abeni if (type == RTAX_HOPLIMIT && val > 255) 2524626abd59SPaolo Abeni val = 255; 2525b8d3e416SDaniel Borkmann if (type == RTAX_FEATURES && (val & ~RTAX_FEATURE_MASK)) 2526b8d3e416SDaniel Borkmann goto err; 2527ea697639SDaniel Borkmann 2528ea697639SDaniel Borkmann mp[type - 1] = val; 2529e715b6d3SFlorian Westphal __set_bit(type - 1, mxc->mx_valid); 2530e715b6d3SFlorian Westphal } 2531e715b6d3SFlorian Westphal 2532c3a8d947SDaniel Borkmann if (ecn_ca) { 2533c3a8d947SDaniel Borkmann __set_bit(RTAX_FEATURES - 1, mxc->mx_valid); 2534c3a8d947SDaniel Borkmann mp[RTAX_FEATURES - 1] |= DST_FEATURE_ECN_CA; 2535c3a8d947SDaniel Borkmann } 2536e715b6d3SFlorian Westphal 2537c3a8d947SDaniel Borkmann mxc->mx = mp; 2538e715b6d3SFlorian Westphal return 0; 2539e715b6d3SFlorian Westphal err: 2540e715b6d3SFlorian Westphal kfree(mp); 2541e715b6d3SFlorian Westphal return -EINVAL; 2542e715b6d3SFlorian Westphal } 25431da177e4SLinus Torvalds 25448c14586fSDavid Ahern static struct rt6_info *ip6_nh_lookup_table(struct net *net, 25458c14586fSDavid Ahern struct fib6_config *cfg, 2546f4797b33SDavid Ahern const struct in6_addr *gw_addr, 2547f4797b33SDavid Ahern u32 tbid, int flags) 25488c14586fSDavid Ahern { 25498c14586fSDavid Ahern struct flowi6 fl6 = { 25508c14586fSDavid Ahern .flowi6_oif = cfg->fc_ifindex, 25518c14586fSDavid Ahern .daddr = *gw_addr, 25528c14586fSDavid Ahern .saddr = cfg->fc_prefsrc, 25538c14586fSDavid Ahern }; 25548c14586fSDavid Ahern struct fib6_table *table; 25558c14586fSDavid Ahern struct rt6_info *rt; 25568c14586fSDavid Ahern 2557f4797b33SDavid Ahern table = fib6_get_table(net, tbid); 25588c14586fSDavid Ahern if (!table) 25598c14586fSDavid Ahern return NULL; 25608c14586fSDavid Ahern 25618c14586fSDavid Ahern if (!ipv6_addr_any(&cfg->fc_prefsrc)) 25628c14586fSDavid Ahern flags |= RT6_LOOKUP_F_HAS_SADDR; 25638c14586fSDavid Ahern 2564f4797b33SDavid Ahern flags |= RT6_LOOKUP_F_IGNORE_LINKSTATE; 2565b75cc8f9SDavid Ahern rt = ip6_pol_route(net, table, cfg->fc_ifindex, &fl6, NULL, flags); 25668c14586fSDavid Ahern 25678c14586fSDavid Ahern /* if table lookup failed, fall back to full lookup */ 25688c14586fSDavid Ahern if (rt == net->ipv6.ip6_null_entry) { 25698c14586fSDavid Ahern ip6_rt_put(rt); 25708c14586fSDavid Ahern rt = NULL; 25718c14586fSDavid Ahern } 25728c14586fSDavid Ahern 25738c14586fSDavid Ahern return rt; 25748c14586fSDavid Ahern } 25758c14586fSDavid Ahern 2576fc1e64e1SDavid Ahern static int ip6_route_check_nh_onlink(struct net *net, 2577fc1e64e1SDavid Ahern struct fib6_config *cfg, 25789fbb704cSDavid Ahern const struct net_device *dev, 2579fc1e64e1SDavid Ahern struct netlink_ext_ack *extack) 2580fc1e64e1SDavid Ahern { 258144750f84SDavid Ahern u32 tbid = l3mdev_fib_table(dev) ? : RT_TABLE_MAIN; 2582fc1e64e1SDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 2583fc1e64e1SDavid Ahern u32 flags = RTF_LOCAL | RTF_ANYCAST | RTF_REJECT; 2584fc1e64e1SDavid Ahern struct rt6_info *grt; 2585fc1e64e1SDavid Ahern int err; 2586fc1e64e1SDavid Ahern 2587fc1e64e1SDavid Ahern err = 0; 2588fc1e64e1SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, tbid, 0); 2589fc1e64e1SDavid Ahern if (grt) { 259058e354c0SDavid Ahern if (!grt->dst.error && 259158e354c0SDavid Ahern (grt->rt6i_flags & flags || dev != grt->dst.dev)) { 259244750f84SDavid Ahern NL_SET_ERR_MSG(extack, 259344750f84SDavid Ahern "Nexthop has invalid gateway or device mismatch"); 2594fc1e64e1SDavid Ahern err = -EINVAL; 2595fc1e64e1SDavid Ahern } 2596fc1e64e1SDavid Ahern 2597fc1e64e1SDavid Ahern ip6_rt_put(grt); 2598fc1e64e1SDavid Ahern } 2599fc1e64e1SDavid Ahern 2600fc1e64e1SDavid Ahern return err; 2601fc1e64e1SDavid Ahern } 2602fc1e64e1SDavid Ahern 26031edce99fSDavid Ahern static int ip6_route_check_nh(struct net *net, 26041edce99fSDavid Ahern struct fib6_config *cfg, 26051edce99fSDavid Ahern struct net_device **_dev, 26061edce99fSDavid Ahern struct inet6_dev **idev) 26071edce99fSDavid Ahern { 26081edce99fSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 26091edce99fSDavid Ahern struct net_device *dev = _dev ? *_dev : NULL; 26101edce99fSDavid Ahern struct rt6_info *grt = NULL; 26111edce99fSDavid Ahern int err = -EHOSTUNREACH; 26121edce99fSDavid Ahern 26131edce99fSDavid Ahern if (cfg->fc_table) { 2614f4797b33SDavid Ahern int flags = RT6_LOOKUP_F_IFACE; 2615f4797b33SDavid Ahern 2616f4797b33SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, 2617f4797b33SDavid Ahern cfg->fc_table, flags); 26181edce99fSDavid Ahern if (grt) { 26191edce99fSDavid Ahern if (grt->rt6i_flags & RTF_GATEWAY || 26201edce99fSDavid Ahern (dev && dev != grt->dst.dev)) { 26211edce99fSDavid Ahern ip6_rt_put(grt); 26221edce99fSDavid Ahern grt = NULL; 26231edce99fSDavid Ahern } 26241edce99fSDavid Ahern } 26251edce99fSDavid Ahern } 26261edce99fSDavid Ahern 26271edce99fSDavid Ahern if (!grt) 2628b75cc8f9SDavid Ahern grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, NULL, 1); 26291edce99fSDavid Ahern 26301edce99fSDavid Ahern if (!grt) 26311edce99fSDavid Ahern goto out; 26321edce99fSDavid Ahern 26331edce99fSDavid Ahern if (dev) { 26341edce99fSDavid Ahern if (dev != grt->dst.dev) { 26351edce99fSDavid Ahern ip6_rt_put(grt); 26361edce99fSDavid Ahern goto out; 26371edce99fSDavid Ahern } 26381edce99fSDavid Ahern } else { 26391edce99fSDavid Ahern *_dev = dev = grt->dst.dev; 26401edce99fSDavid Ahern *idev = grt->rt6i_idev; 26411edce99fSDavid Ahern dev_hold(dev); 26421edce99fSDavid Ahern in6_dev_hold(grt->rt6i_idev); 26431edce99fSDavid Ahern } 26441edce99fSDavid Ahern 26451edce99fSDavid Ahern if (!(grt->rt6i_flags & RTF_GATEWAY)) 26461edce99fSDavid Ahern err = 0; 26471edce99fSDavid Ahern 26481edce99fSDavid Ahern ip6_rt_put(grt); 26491edce99fSDavid Ahern 26501edce99fSDavid Ahern out: 26511edce99fSDavid Ahern return err; 26521edce99fSDavid Ahern } 26531edce99fSDavid Ahern 26549fbb704cSDavid Ahern static int ip6_validate_gw(struct net *net, struct fib6_config *cfg, 26559fbb704cSDavid Ahern struct net_device **_dev, struct inet6_dev **idev, 26569fbb704cSDavid Ahern struct netlink_ext_ack *extack) 26579fbb704cSDavid Ahern { 26589fbb704cSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 26599fbb704cSDavid Ahern int gwa_type = ipv6_addr_type(gw_addr); 2660232378e8SDavid Ahern bool skip_dev = gwa_type & IPV6_ADDR_LINKLOCAL ? false : true; 26619fbb704cSDavid Ahern const struct net_device *dev = *_dev; 2662232378e8SDavid Ahern bool need_addr_check = !dev; 26639fbb704cSDavid Ahern int err = -EINVAL; 26649fbb704cSDavid Ahern 26659fbb704cSDavid Ahern /* if gw_addr is local we will fail to detect this in case 26669fbb704cSDavid Ahern * address is still TENTATIVE (DAD in progress). rt6_lookup() 26679fbb704cSDavid Ahern * will return already-added prefix route via interface that 26689fbb704cSDavid Ahern * prefix route was assigned to, which might be non-loopback. 26699fbb704cSDavid Ahern */ 2670232378e8SDavid Ahern if (dev && 2671232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2672232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 26739fbb704cSDavid Ahern goto out; 26749fbb704cSDavid Ahern } 26759fbb704cSDavid Ahern 26769fbb704cSDavid Ahern if (gwa_type != (IPV6_ADDR_LINKLOCAL | IPV6_ADDR_UNICAST)) { 26779fbb704cSDavid Ahern /* IPv6 strictly inhibits using not link-local 26789fbb704cSDavid Ahern * addresses as nexthop address. 26799fbb704cSDavid Ahern * Otherwise, router will not able to send redirects. 26809fbb704cSDavid Ahern * It is very good, but in some (rare!) circumstances 26819fbb704cSDavid Ahern * (SIT, PtP, NBMA NOARP links) it is handy to allow 26829fbb704cSDavid Ahern * some exceptions. --ANK 26839fbb704cSDavid Ahern * We allow IPv4-mapped nexthops to support RFC4798-type 26849fbb704cSDavid Ahern * addressing 26859fbb704cSDavid Ahern */ 26869fbb704cSDavid Ahern if (!(gwa_type & (IPV6_ADDR_UNICAST | IPV6_ADDR_MAPPED))) { 26879fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid gateway address"); 26889fbb704cSDavid Ahern goto out; 26899fbb704cSDavid Ahern } 26909fbb704cSDavid Ahern 26919fbb704cSDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) 26929fbb704cSDavid Ahern err = ip6_route_check_nh_onlink(net, cfg, dev, extack); 26939fbb704cSDavid Ahern else 26949fbb704cSDavid Ahern err = ip6_route_check_nh(net, cfg, _dev, idev); 26959fbb704cSDavid Ahern 26969fbb704cSDavid Ahern if (err) 26979fbb704cSDavid Ahern goto out; 26989fbb704cSDavid Ahern } 26999fbb704cSDavid Ahern 27009fbb704cSDavid Ahern /* reload in case device was changed */ 27019fbb704cSDavid Ahern dev = *_dev; 27029fbb704cSDavid Ahern 27039fbb704cSDavid Ahern err = -EINVAL; 27049fbb704cSDavid Ahern if (!dev) { 27059fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Egress device not specified"); 27069fbb704cSDavid Ahern goto out; 27079fbb704cSDavid Ahern } else if (dev->flags & IFF_LOOPBACK) { 27089fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, 27099fbb704cSDavid Ahern "Egress device can not be loopback device for this route"); 27109fbb704cSDavid Ahern goto out; 27119fbb704cSDavid Ahern } 2712232378e8SDavid Ahern 2713232378e8SDavid Ahern /* if we did not check gw_addr above, do so now that the 2714232378e8SDavid Ahern * egress device has been resolved. 2715232378e8SDavid Ahern */ 2716232378e8SDavid Ahern if (need_addr_check && 2717232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2718232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 2719232378e8SDavid Ahern goto out; 2720232378e8SDavid Ahern } 2721232378e8SDavid Ahern 27229fbb704cSDavid Ahern err = 0; 27239fbb704cSDavid Ahern out: 27249fbb704cSDavid Ahern return err; 27259fbb704cSDavid Ahern } 27269fbb704cSDavid Ahern 2727333c4301SDavid Ahern static struct rt6_info *ip6_route_info_create(struct fib6_config *cfg, 2728333c4301SDavid Ahern struct netlink_ext_ack *extack) 27291da177e4SLinus Torvalds { 27305578689aSDaniel Lezcano struct net *net = cfg->fc_nlinfo.nl_net; 27311da177e4SLinus Torvalds struct rt6_info *rt = NULL; 27321da177e4SLinus Torvalds struct net_device *dev = NULL; 27331da177e4SLinus Torvalds struct inet6_dev *idev = NULL; 2734c71099acSThomas Graf struct fib6_table *table; 27351da177e4SLinus Torvalds int addr_type; 27368c5b83f0SRoopa Prabhu int err = -EINVAL; 27371da177e4SLinus Torvalds 2738557c44beSDavid Ahern /* RTF_PCPU is an internal flag; can not be set by userspace */ 2739d5d531cbSDavid Ahern if (cfg->fc_flags & RTF_PCPU) { 2740d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Userspace can not set RTF_PCPU"); 2741557c44beSDavid Ahern goto out; 2742d5d531cbSDavid Ahern } 2743557c44beSDavid Ahern 27442ea2352eSWei Wang /* RTF_CACHE is an internal flag; can not be set by userspace */ 27452ea2352eSWei Wang if (cfg->fc_flags & RTF_CACHE) { 27462ea2352eSWei Wang NL_SET_ERR_MSG(extack, "Userspace can not set RTF_CACHE"); 27472ea2352eSWei Wang goto out; 27482ea2352eSWei Wang } 27492ea2352eSWei Wang 2750d5d531cbSDavid Ahern if (cfg->fc_dst_len > 128) { 2751d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid prefix length"); 27528c5b83f0SRoopa Prabhu goto out; 2753d5d531cbSDavid Ahern } 2754d5d531cbSDavid Ahern if (cfg->fc_src_len > 128) { 2755d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address length"); 2756d5d531cbSDavid Ahern goto out; 2757d5d531cbSDavid Ahern } 27581da177e4SLinus Torvalds #ifndef CONFIG_IPV6_SUBTREES 2759d5d531cbSDavid Ahern if (cfg->fc_src_len) { 2760d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, 2761d5d531cbSDavid Ahern "Specifying source address requires IPV6_SUBTREES to be enabled"); 27628c5b83f0SRoopa Prabhu goto out; 2763d5d531cbSDavid Ahern } 27641da177e4SLinus Torvalds #endif 276586872cb5SThomas Graf if (cfg->fc_ifindex) { 27661da177e4SLinus Torvalds err = -ENODEV; 27675578689aSDaniel Lezcano dev = dev_get_by_index(net, cfg->fc_ifindex); 27681da177e4SLinus Torvalds if (!dev) 27691da177e4SLinus Torvalds goto out; 27701da177e4SLinus Torvalds idev = in6_dev_get(dev); 27711da177e4SLinus Torvalds if (!idev) 27721da177e4SLinus Torvalds goto out; 27731da177e4SLinus Torvalds } 27741da177e4SLinus Torvalds 277586872cb5SThomas Graf if (cfg->fc_metric == 0) 277686872cb5SThomas Graf cfg->fc_metric = IP6_RT_PRIO_USER; 27771da177e4SLinus Torvalds 2778fc1e64e1SDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) { 2779fc1e64e1SDavid Ahern if (!dev) { 2780fc1e64e1SDavid Ahern NL_SET_ERR_MSG(extack, 2781fc1e64e1SDavid Ahern "Nexthop device required for onlink"); 2782fc1e64e1SDavid Ahern err = -ENODEV; 2783fc1e64e1SDavid Ahern goto out; 2784fc1e64e1SDavid Ahern } 2785fc1e64e1SDavid Ahern 2786fc1e64e1SDavid Ahern if (!(dev->flags & IFF_UP)) { 2787fc1e64e1SDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 2788fc1e64e1SDavid Ahern err = -ENETDOWN; 2789fc1e64e1SDavid Ahern goto out; 2790fc1e64e1SDavid Ahern } 2791fc1e64e1SDavid Ahern } 2792fc1e64e1SDavid Ahern 2793c71099acSThomas Graf err = -ENOBUFS; 279438308473SDavid S. Miller if (cfg->fc_nlinfo.nlh && 2795d71314b4SMatti Vaittinen !(cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_CREATE)) { 2796d71314b4SMatti Vaittinen table = fib6_get_table(net, cfg->fc_table); 279738308473SDavid S. Miller if (!table) { 2798f3213831SJoe Perches pr_warn("NLM_F_CREATE should be specified when creating new route\n"); 2799d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 2800d71314b4SMatti Vaittinen } 2801d71314b4SMatti Vaittinen } else { 2802d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 2803d71314b4SMatti Vaittinen } 280438308473SDavid S. Miller 280538308473SDavid S. Miller if (!table) 2806c71099acSThomas Graf goto out; 2807c71099acSThomas Graf 2808ad706862SMartin KaFai Lau rt = ip6_dst_alloc(net, NULL, 2809ad706862SMartin KaFai Lau (cfg->fc_flags & RTF_ADDRCONF) ? 0 : DST_NOCOUNT); 28101da177e4SLinus Torvalds 281138308473SDavid S. Miller if (!rt) { 28121da177e4SLinus Torvalds err = -ENOMEM; 28131da177e4SLinus Torvalds goto out; 28141da177e4SLinus Torvalds } 28151da177e4SLinus Torvalds 28161716a961SGao feng if (cfg->fc_flags & RTF_EXPIRES) 28171716a961SGao feng rt6_set_expires(rt, jiffies + 28181716a961SGao feng clock_t_to_jiffies(cfg->fc_expires)); 28191716a961SGao feng else 28201716a961SGao feng rt6_clean_expires(rt); 28211da177e4SLinus Torvalds 282286872cb5SThomas Graf if (cfg->fc_protocol == RTPROT_UNSPEC) 282386872cb5SThomas Graf cfg->fc_protocol = RTPROT_BOOT; 282486872cb5SThomas Graf rt->rt6i_protocol = cfg->fc_protocol; 282586872cb5SThomas Graf 282686872cb5SThomas Graf addr_type = ipv6_addr_type(&cfg->fc_dst); 28271da177e4SLinus Torvalds 28281da177e4SLinus Torvalds if (addr_type & IPV6_ADDR_MULTICAST) 2829d8d1f30bSChangli Gao rt->dst.input = ip6_mc_input; 2830ab79ad14SMaciej Żenczykowski else if (cfg->fc_flags & RTF_LOCAL) 2831ab79ad14SMaciej Żenczykowski rt->dst.input = ip6_input; 28321da177e4SLinus Torvalds else 2833d8d1f30bSChangli Gao rt->dst.input = ip6_forward; 28341da177e4SLinus Torvalds 2835d8d1f30bSChangli Gao rt->dst.output = ip6_output; 28361da177e4SLinus Torvalds 283719e42e45SRoopa Prabhu if (cfg->fc_encap) { 283819e42e45SRoopa Prabhu struct lwtunnel_state *lwtstate; 283919e42e45SRoopa Prabhu 284030357d7dSDavid Ahern err = lwtunnel_build_state(cfg->fc_encap_type, 2841127eb7cdSTom Herbert cfg->fc_encap, AF_INET6, cfg, 28429ae28727SDavid Ahern &lwtstate, extack); 284319e42e45SRoopa Prabhu if (err) 284419e42e45SRoopa Prabhu goto out; 284561adedf3SJiri Benc rt->dst.lwtstate = lwtstate_get(lwtstate); 28469942895bSDavid Ahern lwtunnel_set_redirect(&rt->dst); 284725368623STom Herbert } 284819e42e45SRoopa Prabhu 284986872cb5SThomas Graf ipv6_addr_prefix(&rt->rt6i_dst.addr, &cfg->fc_dst, cfg->fc_dst_len); 285086872cb5SThomas Graf rt->rt6i_dst.plen = cfg->fc_dst_len; 2851afc4eef8SMartin KaFai Lau if (rt->rt6i_dst.plen == 128) 285211d53b49SDavid S. Miller rt->dst.flags |= DST_HOST; 28531da177e4SLinus Torvalds 28541da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 285586872cb5SThomas Graf ipv6_addr_prefix(&rt->rt6i_src.addr, &cfg->fc_src, cfg->fc_src_len); 285686872cb5SThomas Graf rt->rt6i_src.plen = cfg->fc_src_len; 28571da177e4SLinus Torvalds #endif 28581da177e4SLinus Torvalds 285986872cb5SThomas Graf rt->rt6i_metric = cfg->fc_metric; 2860398958aeSIdo Schimmel rt->rt6i_nh_weight = 1; 28611da177e4SLinus Torvalds 28621da177e4SLinus Torvalds /* We cannot add true routes via loopback here, 28631da177e4SLinus Torvalds they would result in kernel looping; promote them to reject routes 28641da177e4SLinus Torvalds */ 286586872cb5SThomas Graf if ((cfg->fc_flags & RTF_REJECT) || 286638308473SDavid S. Miller (dev && (dev->flags & IFF_LOOPBACK) && 286738308473SDavid S. Miller !(addr_type & IPV6_ADDR_LOOPBACK) && 286838308473SDavid S. Miller !(cfg->fc_flags & RTF_LOCAL))) { 28691da177e4SLinus Torvalds /* hold loopback dev/idev if we haven't done so. */ 28705578689aSDaniel Lezcano if (dev != net->loopback_dev) { 28711da177e4SLinus Torvalds if (dev) { 28721da177e4SLinus Torvalds dev_put(dev); 28731da177e4SLinus Torvalds in6_dev_put(idev); 28741da177e4SLinus Torvalds } 28755578689aSDaniel Lezcano dev = net->loopback_dev; 28761da177e4SLinus Torvalds dev_hold(dev); 28771da177e4SLinus Torvalds idev = in6_dev_get(dev); 28781da177e4SLinus Torvalds if (!idev) { 28791da177e4SLinus Torvalds err = -ENODEV; 28801da177e4SLinus Torvalds goto out; 28811da177e4SLinus Torvalds } 28821da177e4SLinus Torvalds } 28831da177e4SLinus Torvalds rt->rt6i_flags = RTF_REJECT|RTF_NONEXTHOP; 2884ef2c7d7bSNicolas Dichtel switch (cfg->fc_type) { 2885ef2c7d7bSNicolas Dichtel case RTN_BLACKHOLE: 2886ef2c7d7bSNicolas Dichtel rt->dst.error = -EINVAL; 2887ede2059dSEric W. Biederman rt->dst.output = dst_discard_out; 28887150aedeSKamala R rt->dst.input = dst_discard; 2889ef2c7d7bSNicolas Dichtel break; 2890ef2c7d7bSNicolas Dichtel case RTN_PROHIBIT: 2891ef2c7d7bSNicolas Dichtel rt->dst.error = -EACCES; 28927150aedeSKamala R rt->dst.output = ip6_pkt_prohibit_out; 28937150aedeSKamala R rt->dst.input = ip6_pkt_prohibit; 2894ef2c7d7bSNicolas Dichtel break; 2895b4949ab2SNicolas Dichtel case RTN_THROW: 28960315e382SNikola Forró case RTN_UNREACHABLE: 2897ef2c7d7bSNicolas Dichtel default: 28987150aedeSKamala R rt->dst.error = (cfg->fc_type == RTN_THROW) ? -EAGAIN 28990315e382SNikola Forró : (cfg->fc_type == RTN_UNREACHABLE) 29000315e382SNikola Forró ? -EHOSTUNREACH : -ENETUNREACH; 29017150aedeSKamala R rt->dst.output = ip6_pkt_discard_out; 29027150aedeSKamala R rt->dst.input = ip6_pkt_discard; 2903ef2c7d7bSNicolas Dichtel break; 2904ef2c7d7bSNicolas Dichtel } 29051da177e4SLinus Torvalds goto install_route; 29061da177e4SLinus Torvalds } 29071da177e4SLinus Torvalds 290886872cb5SThomas Graf if (cfg->fc_flags & RTF_GATEWAY) { 29099fbb704cSDavid Ahern err = ip6_validate_gw(net, cfg, &dev, &idev, extack); 29101da177e4SLinus Torvalds if (err) 29111da177e4SLinus Torvalds goto out; 29129fbb704cSDavid Ahern 29139fbb704cSDavid Ahern rt->rt6i_gateway = cfg->fc_gateway; 29141da177e4SLinus Torvalds } 29151da177e4SLinus Torvalds 29161da177e4SLinus Torvalds err = -ENODEV; 291738308473SDavid S. Miller if (!dev) 29181da177e4SLinus Torvalds goto out; 29191da177e4SLinus Torvalds 2920*428604fbSLorenzo Bianconi if (idev->cnf.disable_ipv6) { 2921*428604fbSLorenzo Bianconi NL_SET_ERR_MSG(extack, "IPv6 is disabled on nexthop device"); 2922*428604fbSLorenzo Bianconi err = -EACCES; 2923*428604fbSLorenzo Bianconi goto out; 2924*428604fbSLorenzo Bianconi } 2925*428604fbSLorenzo Bianconi 2926955ec4cbSDavid Ahern if (!(dev->flags & IFF_UP)) { 2927955ec4cbSDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 2928955ec4cbSDavid Ahern err = -ENETDOWN; 2929955ec4cbSDavid Ahern goto out; 2930955ec4cbSDavid Ahern } 2931955ec4cbSDavid Ahern 2932c3968a85SDaniel Walter if (!ipv6_addr_any(&cfg->fc_prefsrc)) { 2933c3968a85SDaniel Walter if (!ipv6_chk_addr(net, &cfg->fc_prefsrc, dev, 0)) { 2934d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address"); 2935c3968a85SDaniel Walter err = -EINVAL; 2936c3968a85SDaniel Walter goto out; 2937c3968a85SDaniel Walter } 29384e3fd7a0SAlexey Dobriyan rt->rt6i_prefsrc.addr = cfg->fc_prefsrc; 2939c3968a85SDaniel Walter rt->rt6i_prefsrc.plen = 128; 2940c3968a85SDaniel Walter } else 2941c3968a85SDaniel Walter rt->rt6i_prefsrc.plen = 0; 2942c3968a85SDaniel Walter 294386872cb5SThomas Graf rt->rt6i_flags = cfg->fc_flags; 29441da177e4SLinus Torvalds 29451da177e4SLinus Torvalds install_route: 29465609b80aSIdo Schimmel if (!(rt->rt6i_flags & (RTF_LOCAL | RTF_ANYCAST)) && 29475609b80aSIdo Schimmel !netif_carrier_ok(dev)) 29485609b80aSIdo Schimmel rt->rt6i_nh_flags |= RTNH_F_LINKDOWN; 2949fc1e64e1SDavid Ahern rt->rt6i_nh_flags |= (cfg->fc_flags & RTNH_F_ONLINK); 2950d8d1f30bSChangli Gao rt->dst.dev = dev; 29511da177e4SLinus Torvalds rt->rt6i_idev = idev; 2952c71099acSThomas Graf rt->rt6i_table = table; 295363152fc0SDaniel Lezcano 2954c346dca1SYOSHIFUJI Hideaki cfg->fc_nlinfo.nl_net = dev_net(dev); 295563152fc0SDaniel Lezcano 29568c5b83f0SRoopa Prabhu return rt; 29571da177e4SLinus Torvalds out: 29581da177e4SLinus Torvalds if (dev) 29591da177e4SLinus Torvalds dev_put(dev); 29601da177e4SLinus Torvalds if (idev) 29611da177e4SLinus Torvalds in6_dev_put(idev); 2962587fea74SWei Wang if (rt) 2963587fea74SWei Wang dst_release_immediate(&rt->dst); 29646b9ea5a6SRoopa Prabhu 29658c5b83f0SRoopa Prabhu return ERR_PTR(err); 29666b9ea5a6SRoopa Prabhu } 29676b9ea5a6SRoopa Prabhu 2968333c4301SDavid Ahern int ip6_route_add(struct fib6_config *cfg, 2969333c4301SDavid Ahern struct netlink_ext_ack *extack) 29706b9ea5a6SRoopa Prabhu { 29716b9ea5a6SRoopa Prabhu struct mx6_config mxc = { .mx = NULL, }; 29728c5b83f0SRoopa Prabhu struct rt6_info *rt; 29736b9ea5a6SRoopa Prabhu int err; 29746b9ea5a6SRoopa Prabhu 2975333c4301SDavid Ahern rt = ip6_route_info_create(cfg, extack); 29768c5b83f0SRoopa Prabhu if (IS_ERR(rt)) { 29778c5b83f0SRoopa Prabhu err = PTR_ERR(rt); 29788c5b83f0SRoopa Prabhu rt = NULL; 29796b9ea5a6SRoopa Prabhu goto out; 29808c5b83f0SRoopa Prabhu } 29816b9ea5a6SRoopa Prabhu 29826b9ea5a6SRoopa Prabhu err = ip6_convert_metrics(&mxc, cfg); 29836b9ea5a6SRoopa Prabhu if (err) 29846b9ea5a6SRoopa Prabhu goto out; 29856b9ea5a6SRoopa Prabhu 2986333c4301SDavid Ahern err = __ip6_ins_rt(rt, &cfg->fc_nlinfo, &mxc, extack); 29876b9ea5a6SRoopa Prabhu 29886b9ea5a6SRoopa Prabhu kfree(mxc.mx); 29896b9ea5a6SRoopa Prabhu 29906b9ea5a6SRoopa Prabhu return err; 29916b9ea5a6SRoopa Prabhu out: 2992587fea74SWei Wang if (rt) 2993587fea74SWei Wang dst_release_immediate(&rt->dst); 29946b9ea5a6SRoopa Prabhu 29951da177e4SLinus Torvalds return err; 29961da177e4SLinus Torvalds } 29971da177e4SLinus Torvalds 299886872cb5SThomas Graf static int __ip6_del_rt(struct rt6_info *rt, struct nl_info *info) 29991da177e4SLinus Torvalds { 30001da177e4SLinus Torvalds int err; 3001c71099acSThomas Graf struct fib6_table *table; 3002d1918542SDavid S. Miller struct net *net = dev_net(rt->dst.dev); 30031da177e4SLinus Torvalds 3004a4c2fd7fSWei Wang if (rt == net->ipv6.ip6_null_entry) { 30056825a26cSGao feng err = -ENOENT; 30066825a26cSGao feng goto out; 30076825a26cSGao feng } 30086c813a72SPatrick McHardy 3009c71099acSThomas Graf table = rt->rt6i_table; 301066f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 301186872cb5SThomas Graf err = fib6_del(rt, info); 301266f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 30131da177e4SLinus Torvalds 30146825a26cSGao feng out: 301594e187c0SAmerigo Wang ip6_rt_put(rt); 30161da177e4SLinus Torvalds return err; 30171da177e4SLinus Torvalds } 30181da177e4SLinus Torvalds 3019e0a1ad73SThomas Graf int ip6_del_rt(struct rt6_info *rt) 3020e0a1ad73SThomas Graf { 30214d1169c1SDenis V. Lunev struct nl_info info = { 3022d1918542SDavid S. Miller .nl_net = dev_net(rt->dst.dev), 30234d1169c1SDenis V. Lunev }; 3024528c4cebSDenis V. Lunev return __ip6_del_rt(rt, &info); 3025e0a1ad73SThomas Graf } 3026e0a1ad73SThomas Graf 30270ae81335SDavid Ahern static int __ip6_del_rt_siblings(struct rt6_info *rt, struct fib6_config *cfg) 30280ae81335SDavid Ahern { 30290ae81335SDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 3030e3330039SWANG Cong struct net *net = info->nl_net; 303116a16cd3SDavid Ahern struct sk_buff *skb = NULL; 30320ae81335SDavid Ahern struct fib6_table *table; 3033e3330039SWANG Cong int err = -ENOENT; 30340ae81335SDavid Ahern 3035e3330039SWANG Cong if (rt == net->ipv6.ip6_null_entry) 3036e3330039SWANG Cong goto out_put; 30370ae81335SDavid Ahern table = rt->rt6i_table; 303866f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 30390ae81335SDavid Ahern 30400ae81335SDavid Ahern if (rt->rt6i_nsiblings && cfg->fc_delete_all_nh) { 30410ae81335SDavid Ahern struct rt6_info *sibling, *next_sibling; 30420ae81335SDavid Ahern 304316a16cd3SDavid Ahern /* prefer to send a single notification with all hops */ 304416a16cd3SDavid Ahern skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 304516a16cd3SDavid Ahern if (skb) { 304616a16cd3SDavid Ahern u32 seq = info->nlh ? info->nlh->nlmsg_seq : 0; 304716a16cd3SDavid Ahern 3048e3330039SWANG Cong if (rt6_fill_node(net, skb, rt, 304916a16cd3SDavid Ahern NULL, NULL, 0, RTM_DELROUTE, 305016a16cd3SDavid Ahern info->portid, seq, 0) < 0) { 305116a16cd3SDavid Ahern kfree_skb(skb); 305216a16cd3SDavid Ahern skb = NULL; 305316a16cd3SDavid Ahern } else 305416a16cd3SDavid Ahern info->skip_notify = 1; 305516a16cd3SDavid Ahern } 305616a16cd3SDavid Ahern 30570ae81335SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 30580ae81335SDavid Ahern &rt->rt6i_siblings, 30590ae81335SDavid Ahern rt6i_siblings) { 30600ae81335SDavid Ahern err = fib6_del(sibling, info); 30610ae81335SDavid Ahern if (err) 3062e3330039SWANG Cong goto out_unlock; 30630ae81335SDavid Ahern } 30640ae81335SDavid Ahern } 30650ae81335SDavid Ahern 30660ae81335SDavid Ahern err = fib6_del(rt, info); 3067e3330039SWANG Cong out_unlock: 306866f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 3069e3330039SWANG Cong out_put: 30700ae81335SDavid Ahern ip6_rt_put(rt); 307116a16cd3SDavid Ahern 307216a16cd3SDavid Ahern if (skb) { 3073e3330039SWANG Cong rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 307416a16cd3SDavid Ahern info->nlh, gfp_any()); 307516a16cd3SDavid Ahern } 30760ae81335SDavid Ahern return err; 30770ae81335SDavid Ahern } 30780ae81335SDavid Ahern 3079333c4301SDavid Ahern static int ip6_route_del(struct fib6_config *cfg, 3080333c4301SDavid Ahern struct netlink_ext_ack *extack) 30811da177e4SLinus Torvalds { 30822b760fcfSWei Wang struct rt6_info *rt, *rt_cache; 3083c71099acSThomas Graf struct fib6_table *table; 30841da177e4SLinus Torvalds struct fib6_node *fn; 30851da177e4SLinus Torvalds int err = -ESRCH; 30861da177e4SLinus Torvalds 30875578689aSDaniel Lezcano table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table); 3088d5d531cbSDavid Ahern if (!table) { 3089d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "FIB table does not exist"); 3090c71099acSThomas Graf return err; 3091d5d531cbSDavid Ahern } 30921da177e4SLinus Torvalds 309366f5d6ceSWei Wang rcu_read_lock(); 3094c71099acSThomas Graf 3095c71099acSThomas Graf fn = fib6_locate(&table->tb6_root, 309686872cb5SThomas Graf &cfg->fc_dst, cfg->fc_dst_len, 309738fbeeeeSWei Wang &cfg->fc_src, cfg->fc_src_len, 30982b760fcfSWei Wang !(cfg->fc_flags & RTF_CACHE)); 30991da177e4SLinus Torvalds 31001da177e4SLinus Torvalds if (fn) { 310166f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 31022b760fcfSWei Wang if (cfg->fc_flags & RTF_CACHE) { 31032b760fcfSWei Wang rt_cache = rt6_find_cached_rt(rt, &cfg->fc_dst, 31042b760fcfSWei Wang &cfg->fc_src); 31052b760fcfSWei Wang if (!rt_cache) 31061f56a01fSMartin KaFai Lau continue; 31072b760fcfSWei Wang rt = rt_cache; 31082b760fcfSWei Wang } 310986872cb5SThomas Graf if (cfg->fc_ifindex && 3110d1918542SDavid S. Miller (!rt->dst.dev || 3111d1918542SDavid S. Miller rt->dst.dev->ifindex != cfg->fc_ifindex)) 31121da177e4SLinus Torvalds continue; 311386872cb5SThomas Graf if (cfg->fc_flags & RTF_GATEWAY && 311486872cb5SThomas Graf !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway)) 31151da177e4SLinus Torvalds continue; 311686872cb5SThomas Graf if (cfg->fc_metric && cfg->fc_metric != rt->rt6i_metric) 31171da177e4SLinus Torvalds continue; 3118c2ed1880SMantas M if (cfg->fc_protocol && cfg->fc_protocol != rt->rt6i_protocol) 3119c2ed1880SMantas M continue; 3120d3843fe5SWei Wang if (!dst_hold_safe(&rt->dst)) 3121d3843fe5SWei Wang break; 312266f5d6ceSWei Wang rcu_read_unlock(); 31231da177e4SLinus Torvalds 31240ae81335SDavid Ahern /* if gateway was specified only delete the one hop */ 31250ae81335SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY) 312686872cb5SThomas Graf return __ip6_del_rt(rt, &cfg->fc_nlinfo); 31270ae81335SDavid Ahern 31280ae81335SDavid Ahern return __ip6_del_rt_siblings(rt, cfg); 31291da177e4SLinus Torvalds } 31301da177e4SLinus Torvalds } 313166f5d6ceSWei Wang rcu_read_unlock(); 31321da177e4SLinus Torvalds 31331da177e4SLinus Torvalds return err; 31341da177e4SLinus Torvalds } 31351da177e4SLinus Torvalds 31366700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, struct sk_buff *skb) 3137a6279458SYOSHIFUJI Hideaki { 3138a6279458SYOSHIFUJI Hideaki struct netevent_redirect netevent; 3139e8599ff4SDavid S. Miller struct rt6_info *rt, *nrt = NULL; 3140e8599ff4SDavid S. Miller struct ndisc_options ndopts; 3141e8599ff4SDavid S. Miller struct inet6_dev *in6_dev; 3142e8599ff4SDavid S. Miller struct neighbour *neigh; 314371bcdba0SYOSHIFUJI Hideaki / 吉藤英明 struct rd_msg *msg; 31446e157b6aSDavid S. Miller int optlen, on_link; 31456e157b6aSDavid S. Miller u8 *lladdr; 3146e8599ff4SDavid S. Miller 314729a3cad5SSimon Horman optlen = skb_tail_pointer(skb) - skb_transport_header(skb); 314871bcdba0SYOSHIFUJI Hideaki / 吉藤英明 optlen -= sizeof(*msg); 3149e8599ff4SDavid S. Miller 3150e8599ff4SDavid S. Miller if (optlen < 0) { 31516e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: packet too short\n"); 3152e8599ff4SDavid S. Miller return; 3153e8599ff4SDavid S. Miller } 3154e8599ff4SDavid S. Miller 315571bcdba0SYOSHIFUJI Hideaki / 吉藤英明 msg = (struct rd_msg *)icmp6_hdr(skb); 3156e8599ff4SDavid S. Miller 315771bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_is_multicast(&msg->dest)) { 31586e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: destination address is multicast\n"); 3159e8599ff4SDavid S. Miller return; 3160e8599ff4SDavid S. Miller } 3161e8599ff4SDavid S. Miller 31626e157b6aSDavid S. Miller on_link = 0; 316371bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_equal(&msg->dest, &msg->target)) { 3164e8599ff4SDavid S. Miller on_link = 1; 316571bcdba0SYOSHIFUJI Hideaki / 吉藤英明 } else if (ipv6_addr_type(&msg->target) != 3166e8599ff4SDavid S. Miller (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) { 31676e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: target address is not link-local unicast\n"); 3168e8599ff4SDavid S. Miller return; 3169e8599ff4SDavid S. Miller } 3170e8599ff4SDavid S. Miller 3171e8599ff4SDavid S. Miller in6_dev = __in6_dev_get(skb->dev); 3172e8599ff4SDavid S. Miller if (!in6_dev) 3173e8599ff4SDavid S. Miller return; 3174e8599ff4SDavid S. Miller if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_redirects) 3175e8599ff4SDavid S. Miller return; 3176e8599ff4SDavid S. Miller 3177e8599ff4SDavid S. Miller /* RFC2461 8.1: 3178e8599ff4SDavid S. Miller * The IP source address of the Redirect MUST be the same as the current 3179e8599ff4SDavid S. Miller * first-hop router for the specified ICMP Destination Address. 3180e8599ff4SDavid S. Miller */ 3181e8599ff4SDavid S. Miller 3182f997c55cSAlexander Aring if (!ndisc_parse_options(skb->dev, msg->opt, optlen, &ndopts)) { 3183e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid ND options\n"); 3184e8599ff4SDavid S. Miller return; 3185e8599ff4SDavid S. Miller } 31866e157b6aSDavid S. Miller 31876e157b6aSDavid S. Miller lladdr = NULL; 3188e8599ff4SDavid S. Miller if (ndopts.nd_opts_tgt_lladdr) { 3189e8599ff4SDavid S. Miller lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr, 3190e8599ff4SDavid S. Miller skb->dev); 3191e8599ff4SDavid S. Miller if (!lladdr) { 3192e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid link-layer address length\n"); 3193e8599ff4SDavid S. Miller return; 3194e8599ff4SDavid S. Miller } 3195e8599ff4SDavid S. Miller } 3196e8599ff4SDavid S. Miller 31976e157b6aSDavid S. Miller rt = (struct rt6_info *) dst; 3198ec13ad1dSMatthias Schiffer if (rt->rt6i_flags & RTF_REJECT) { 31996e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_redirect: source isn't a valid nexthop for redirect target\n"); 32006e157b6aSDavid S. Miller return; 32016e157b6aSDavid S. Miller } 32026e157b6aSDavid S. Miller 32036e157b6aSDavid S. Miller /* Redirect received -> path was valid. 32046e157b6aSDavid S. Miller * Look, redirects are sent only in response to data packets, 32056e157b6aSDavid S. Miller * so that this nexthop apparently is reachable. --ANK 32066e157b6aSDavid S. Miller */ 32070dec879fSJulian Anastasov dst_confirm_neigh(&rt->dst, &ipv6_hdr(skb)->saddr); 32086e157b6aSDavid S. Miller 320971bcdba0SYOSHIFUJI Hideaki / 吉藤英明 neigh = __neigh_lookup(&nd_tbl, &msg->target, skb->dev, 1); 3210e8599ff4SDavid S. Miller if (!neigh) 3211e8599ff4SDavid S. Miller return; 3212e8599ff4SDavid S. Miller 32131da177e4SLinus Torvalds /* 32141da177e4SLinus Torvalds * We have finally decided to accept it. 32151da177e4SLinus Torvalds */ 32161da177e4SLinus Torvalds 3217f997c55cSAlexander Aring ndisc_update(skb->dev, neigh, lladdr, NUD_STALE, 32181da177e4SLinus Torvalds NEIGH_UPDATE_F_WEAK_OVERRIDE| 32191da177e4SLinus Torvalds NEIGH_UPDATE_F_OVERRIDE| 32201da177e4SLinus Torvalds (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER| 3221f997c55cSAlexander Aring NEIGH_UPDATE_F_ISROUTER)), 3222f997c55cSAlexander Aring NDISC_REDIRECT, &ndopts); 32231da177e4SLinus Torvalds 322483a09abdSMartin KaFai Lau nrt = ip6_rt_cache_alloc(rt, &msg->dest, NULL); 322538308473SDavid S. Miller if (!nrt) 32261da177e4SLinus Torvalds goto out; 32271da177e4SLinus Torvalds 32281da177e4SLinus Torvalds nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE; 32291da177e4SLinus Torvalds if (on_link) 32301da177e4SLinus Torvalds nrt->rt6i_flags &= ~RTF_GATEWAY; 32311da177e4SLinus Torvalds 3232b91d5329SXin Long nrt->rt6i_protocol = RTPROT_REDIRECT; 32334e3fd7a0SAlexey Dobriyan nrt->rt6i_gateway = *(struct in6_addr *)neigh->primary_key; 32341da177e4SLinus Torvalds 32352b760fcfSWei Wang /* No need to remove rt from the exception table if rt is 32362b760fcfSWei Wang * a cached route because rt6_insert_exception() will 32372b760fcfSWei Wang * takes care of it 32382b760fcfSWei Wang */ 32392b760fcfSWei Wang if (rt6_insert_exception(nrt, rt)) { 32402b760fcfSWei Wang dst_release_immediate(&nrt->dst); 32412b760fcfSWei Wang goto out; 32422b760fcfSWei Wang } 32431da177e4SLinus Torvalds 3244d8d1f30bSChangli Gao netevent.old = &rt->dst; 3245d8d1f30bSChangli Gao netevent.new = &nrt->dst; 324671bcdba0SYOSHIFUJI Hideaki / 吉藤英明 netevent.daddr = &msg->dest; 324760592833SYOSHIFUJI Hideaki / 吉藤英明 netevent.neigh = neigh; 32488d71740cSTom Tucker call_netevent_notifiers(NETEVENT_REDIRECT, &netevent); 32498d71740cSTom Tucker 32501da177e4SLinus Torvalds out: 3251e8599ff4SDavid S. Miller neigh_release(neigh); 32526e157b6aSDavid S. Miller } 32536e157b6aSDavid S. Miller 32541da177e4SLinus Torvalds /* 32551da177e4SLinus Torvalds * Misc support functions 32561da177e4SLinus Torvalds */ 32571da177e4SLinus Torvalds 32584b32b5adSMartin KaFai Lau static void rt6_set_from(struct rt6_info *rt, struct rt6_info *from) 32594b32b5adSMartin KaFai Lau { 32603a2232e9SDavid Miller BUG_ON(from->from); 32614b32b5adSMartin KaFai Lau 32624b32b5adSMartin KaFai Lau rt->rt6i_flags &= ~RTF_EXPIRES; 32634b32b5adSMartin KaFai Lau dst_hold(&from->dst); 32643a2232e9SDavid Miller rt->from = from; 32654b32b5adSMartin KaFai Lau dst_init_metrics(&rt->dst, dst_metrics_ptr(&from->dst), true); 32664b32b5adSMartin KaFai Lau } 32674b32b5adSMartin KaFai Lau 326883a09abdSMartin KaFai Lau static void ip6_rt_copy_init(struct rt6_info *rt, struct rt6_info *ort) 32691da177e4SLinus Torvalds { 3270d8d1f30bSChangli Gao rt->dst.input = ort->dst.input; 3271d8d1f30bSChangli Gao rt->dst.output = ort->dst.output; 327283a09abdSMartin KaFai Lau rt->rt6i_dst = ort->rt6i_dst; 3273d8d1f30bSChangli Gao rt->dst.error = ort->dst.error; 32741da177e4SLinus Torvalds rt->rt6i_idev = ort->rt6i_idev; 32751da177e4SLinus Torvalds if (rt->rt6i_idev) 32761da177e4SLinus Torvalds in6_dev_hold(rt->rt6i_idev); 3277d8d1f30bSChangli Gao rt->dst.lastuse = jiffies; 32784e3fd7a0SAlexey Dobriyan rt->rt6i_gateway = ort->rt6i_gateway; 32791716a961SGao feng rt->rt6i_flags = ort->rt6i_flags; 32801716a961SGao feng rt6_set_from(rt, ort); 328183a09abdSMartin KaFai Lau rt->rt6i_metric = ort->rt6i_metric; 32821da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 328383a09abdSMartin KaFai Lau rt->rt6i_src = ort->rt6i_src; 32841da177e4SLinus Torvalds #endif 328583a09abdSMartin KaFai Lau rt->rt6i_prefsrc = ort->rt6i_prefsrc; 3286c71099acSThomas Graf rt->rt6i_table = ort->rt6i_table; 328761adedf3SJiri Benc rt->dst.lwtstate = lwtstate_get(ort->dst.lwtstate); 32881da177e4SLinus Torvalds } 32891da177e4SLinus Torvalds 329070ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 3291efa2cea0SDaniel Lezcano static struct rt6_info *rt6_get_route_info(struct net *net, 3292b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3293830218c1SDavid Ahern const struct in6_addr *gwaddr, 3294830218c1SDavid Ahern struct net_device *dev) 329570ceb4f5SYOSHIFUJI Hideaki { 3296830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO; 3297830218c1SDavid Ahern int ifindex = dev->ifindex; 329870ceb4f5SYOSHIFUJI Hideaki struct fib6_node *fn; 329970ceb4f5SYOSHIFUJI Hideaki struct rt6_info *rt = NULL; 3300c71099acSThomas Graf struct fib6_table *table; 330170ceb4f5SYOSHIFUJI Hideaki 3302830218c1SDavid Ahern table = fib6_get_table(net, tb_id); 330338308473SDavid S. Miller if (!table) 3304c71099acSThomas Graf return NULL; 3305c71099acSThomas Graf 330666f5d6ceSWei Wang rcu_read_lock(); 330738fbeeeeSWei Wang fn = fib6_locate(&table->tb6_root, prefix, prefixlen, NULL, 0, true); 330870ceb4f5SYOSHIFUJI Hideaki if (!fn) 330970ceb4f5SYOSHIFUJI Hideaki goto out; 331070ceb4f5SYOSHIFUJI Hideaki 331166f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 3312d1918542SDavid S. Miller if (rt->dst.dev->ifindex != ifindex) 331370ceb4f5SYOSHIFUJI Hideaki continue; 331470ceb4f5SYOSHIFUJI Hideaki if ((rt->rt6i_flags & (RTF_ROUTEINFO|RTF_GATEWAY)) != (RTF_ROUTEINFO|RTF_GATEWAY)) 331570ceb4f5SYOSHIFUJI Hideaki continue; 331670ceb4f5SYOSHIFUJI Hideaki if (!ipv6_addr_equal(&rt->rt6i_gateway, gwaddr)) 331770ceb4f5SYOSHIFUJI Hideaki continue; 3318d3843fe5SWei Wang ip6_hold_safe(NULL, &rt, false); 331970ceb4f5SYOSHIFUJI Hideaki break; 332070ceb4f5SYOSHIFUJI Hideaki } 332170ceb4f5SYOSHIFUJI Hideaki out: 332266f5d6ceSWei Wang rcu_read_unlock(); 332370ceb4f5SYOSHIFUJI Hideaki return rt; 332470ceb4f5SYOSHIFUJI Hideaki } 332570ceb4f5SYOSHIFUJI Hideaki 3326efa2cea0SDaniel Lezcano static struct rt6_info *rt6_add_route_info(struct net *net, 3327b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3328830218c1SDavid Ahern const struct in6_addr *gwaddr, 3329830218c1SDavid Ahern struct net_device *dev, 333095c96174SEric Dumazet unsigned int pref) 333170ceb4f5SYOSHIFUJI Hideaki { 333286872cb5SThomas Graf struct fib6_config cfg = { 3333238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 3334830218c1SDavid Ahern .fc_ifindex = dev->ifindex, 333586872cb5SThomas Graf .fc_dst_len = prefixlen, 333686872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO | 333786872cb5SThomas Graf RTF_UP | RTF_PREF(pref), 3338b91d5329SXin Long .fc_protocol = RTPROT_RA, 333915e47304SEric W. Biederman .fc_nlinfo.portid = 0, 3340efa2cea0SDaniel Lezcano .fc_nlinfo.nlh = NULL, 3341efa2cea0SDaniel Lezcano .fc_nlinfo.nl_net = net, 334286872cb5SThomas Graf }; 334370ceb4f5SYOSHIFUJI Hideaki 3344830218c1SDavid Ahern cfg.fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO, 33454e3fd7a0SAlexey Dobriyan cfg.fc_dst = *prefix; 33464e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 334786872cb5SThomas Graf 3348e317da96SYOSHIFUJI Hideaki /* We should treat it as a default route if prefix length is 0. */ 3349e317da96SYOSHIFUJI Hideaki if (!prefixlen) 335086872cb5SThomas Graf cfg.fc_flags |= RTF_DEFAULT; 335170ceb4f5SYOSHIFUJI Hideaki 3352333c4301SDavid Ahern ip6_route_add(&cfg, NULL); 335370ceb4f5SYOSHIFUJI Hideaki 3354830218c1SDavid Ahern return rt6_get_route_info(net, prefix, prefixlen, gwaddr, dev); 335570ceb4f5SYOSHIFUJI Hideaki } 335670ceb4f5SYOSHIFUJI Hideaki #endif 335770ceb4f5SYOSHIFUJI Hideaki 3358b71d1d42SEric Dumazet struct rt6_info *rt6_get_dflt_router(const struct in6_addr *addr, struct net_device *dev) 33591da177e4SLinus Torvalds { 3360830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT; 33611da177e4SLinus Torvalds struct rt6_info *rt; 3362c71099acSThomas Graf struct fib6_table *table; 33631da177e4SLinus Torvalds 3364830218c1SDavid Ahern table = fib6_get_table(dev_net(dev), tb_id); 336538308473SDavid S. Miller if (!table) 3366c71099acSThomas Graf return NULL; 33671da177e4SLinus Torvalds 336866f5d6ceSWei Wang rcu_read_lock(); 336966f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 3370d1918542SDavid S. Miller if (dev == rt->dst.dev && 3371045927ffSYOSHIFUJI Hideaki ((rt->rt6i_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) && 33721da177e4SLinus Torvalds ipv6_addr_equal(&rt->rt6i_gateway, addr)) 33731da177e4SLinus Torvalds break; 33741da177e4SLinus Torvalds } 33751da177e4SLinus Torvalds if (rt) 3376d3843fe5SWei Wang ip6_hold_safe(NULL, &rt, false); 337766f5d6ceSWei Wang rcu_read_unlock(); 33781da177e4SLinus Torvalds return rt; 33791da177e4SLinus Torvalds } 33801da177e4SLinus Torvalds 3381b71d1d42SEric Dumazet struct rt6_info *rt6_add_dflt_router(const struct in6_addr *gwaddr, 3382ebacaaa0SYOSHIFUJI Hideaki struct net_device *dev, 3383ebacaaa0SYOSHIFUJI Hideaki unsigned int pref) 33841da177e4SLinus Torvalds { 338586872cb5SThomas Graf struct fib6_config cfg = { 3386ca254490SDavid Ahern .fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT, 3387238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 338886872cb5SThomas Graf .fc_ifindex = dev->ifindex, 338986872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT | 339086872cb5SThomas Graf RTF_UP | RTF_EXPIRES | RTF_PREF(pref), 3391b91d5329SXin Long .fc_protocol = RTPROT_RA, 339215e47304SEric W. Biederman .fc_nlinfo.portid = 0, 33935578689aSDaniel Lezcano .fc_nlinfo.nlh = NULL, 3394c346dca1SYOSHIFUJI Hideaki .fc_nlinfo.nl_net = dev_net(dev), 339586872cb5SThomas Graf }; 33961da177e4SLinus Torvalds 33974e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 33981da177e4SLinus Torvalds 3399333c4301SDavid Ahern if (!ip6_route_add(&cfg, NULL)) { 3400830218c1SDavid Ahern struct fib6_table *table; 3401830218c1SDavid Ahern 3402830218c1SDavid Ahern table = fib6_get_table(dev_net(dev), cfg.fc_table); 3403830218c1SDavid Ahern if (table) 3404830218c1SDavid Ahern table->flags |= RT6_TABLE_HAS_DFLT_ROUTER; 3405830218c1SDavid Ahern } 34061da177e4SLinus Torvalds 34071da177e4SLinus Torvalds return rt6_get_dflt_router(gwaddr, dev); 34081da177e4SLinus Torvalds } 34091da177e4SLinus Torvalds 3410830218c1SDavid Ahern static void __rt6_purge_dflt_routers(struct fib6_table *table) 34111da177e4SLinus Torvalds { 34121da177e4SLinus Torvalds struct rt6_info *rt; 34131da177e4SLinus Torvalds 34141da177e4SLinus Torvalds restart: 341566f5d6ceSWei Wang rcu_read_lock(); 341666f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 34173e8b0ac3SLorenzo Colitti if (rt->rt6i_flags & (RTF_DEFAULT | RTF_ADDRCONF) && 34183e8b0ac3SLorenzo Colitti (!rt->rt6i_idev || rt->rt6i_idev->cnf.accept_ra != 2)) { 3419d3843fe5SWei Wang if (dst_hold_safe(&rt->dst)) { 342066f5d6ceSWei Wang rcu_read_unlock(); 3421e0a1ad73SThomas Graf ip6_del_rt(rt); 3422d3843fe5SWei Wang } else { 342366f5d6ceSWei Wang rcu_read_unlock(); 3424d3843fe5SWei Wang } 34251da177e4SLinus Torvalds goto restart; 34261da177e4SLinus Torvalds } 34271da177e4SLinus Torvalds } 342866f5d6ceSWei Wang rcu_read_unlock(); 3429830218c1SDavid Ahern 3430830218c1SDavid Ahern table->flags &= ~RT6_TABLE_HAS_DFLT_ROUTER; 3431830218c1SDavid Ahern } 3432830218c1SDavid Ahern 3433830218c1SDavid Ahern void rt6_purge_dflt_routers(struct net *net) 3434830218c1SDavid Ahern { 3435830218c1SDavid Ahern struct fib6_table *table; 3436830218c1SDavid Ahern struct hlist_head *head; 3437830218c1SDavid Ahern unsigned int h; 3438830218c1SDavid Ahern 3439830218c1SDavid Ahern rcu_read_lock(); 3440830218c1SDavid Ahern 3441830218c1SDavid Ahern for (h = 0; h < FIB6_TABLE_HASHSZ; h++) { 3442830218c1SDavid Ahern head = &net->ipv6.fib_table_hash[h]; 3443830218c1SDavid Ahern hlist_for_each_entry_rcu(table, head, tb6_hlist) { 3444830218c1SDavid Ahern if (table->flags & RT6_TABLE_HAS_DFLT_ROUTER) 3445830218c1SDavid Ahern __rt6_purge_dflt_routers(table); 3446830218c1SDavid Ahern } 3447830218c1SDavid Ahern } 3448830218c1SDavid Ahern 3449830218c1SDavid Ahern rcu_read_unlock(); 34501da177e4SLinus Torvalds } 34511da177e4SLinus Torvalds 34525578689aSDaniel Lezcano static void rtmsg_to_fib6_config(struct net *net, 34535578689aSDaniel Lezcano struct in6_rtmsg *rtmsg, 345486872cb5SThomas Graf struct fib6_config *cfg) 345586872cb5SThomas Graf { 345686872cb5SThomas Graf memset(cfg, 0, sizeof(*cfg)); 345786872cb5SThomas Graf 3458ca254490SDavid Ahern cfg->fc_table = l3mdev_fib_table_by_index(net, rtmsg->rtmsg_ifindex) ? 3459ca254490SDavid Ahern : RT6_TABLE_MAIN; 346086872cb5SThomas Graf cfg->fc_ifindex = rtmsg->rtmsg_ifindex; 346186872cb5SThomas Graf cfg->fc_metric = rtmsg->rtmsg_metric; 346286872cb5SThomas Graf cfg->fc_expires = rtmsg->rtmsg_info; 346386872cb5SThomas Graf cfg->fc_dst_len = rtmsg->rtmsg_dst_len; 346486872cb5SThomas Graf cfg->fc_src_len = rtmsg->rtmsg_src_len; 346586872cb5SThomas Graf cfg->fc_flags = rtmsg->rtmsg_flags; 346686872cb5SThomas Graf 34675578689aSDaniel Lezcano cfg->fc_nlinfo.nl_net = net; 3468f1243c2dSBenjamin Thery 34694e3fd7a0SAlexey Dobriyan cfg->fc_dst = rtmsg->rtmsg_dst; 34704e3fd7a0SAlexey Dobriyan cfg->fc_src = rtmsg->rtmsg_src; 34714e3fd7a0SAlexey Dobriyan cfg->fc_gateway = rtmsg->rtmsg_gateway; 347286872cb5SThomas Graf } 347386872cb5SThomas Graf 34745578689aSDaniel Lezcano int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg) 34751da177e4SLinus Torvalds { 347686872cb5SThomas Graf struct fib6_config cfg; 34771da177e4SLinus Torvalds struct in6_rtmsg rtmsg; 34781da177e4SLinus Torvalds int err; 34791da177e4SLinus Torvalds 34801da177e4SLinus Torvalds switch (cmd) { 34811da177e4SLinus Torvalds case SIOCADDRT: /* Add a route */ 34821da177e4SLinus Torvalds case SIOCDELRT: /* Delete a route */ 3483af31f412SEric W. Biederman if (!ns_capable(net->user_ns, CAP_NET_ADMIN)) 34841da177e4SLinus Torvalds return -EPERM; 34851da177e4SLinus Torvalds err = copy_from_user(&rtmsg, arg, 34861da177e4SLinus Torvalds sizeof(struct in6_rtmsg)); 34871da177e4SLinus Torvalds if (err) 34881da177e4SLinus Torvalds return -EFAULT; 34891da177e4SLinus Torvalds 34905578689aSDaniel Lezcano rtmsg_to_fib6_config(net, &rtmsg, &cfg); 349186872cb5SThomas Graf 34921da177e4SLinus Torvalds rtnl_lock(); 34931da177e4SLinus Torvalds switch (cmd) { 34941da177e4SLinus Torvalds case SIOCADDRT: 3495333c4301SDavid Ahern err = ip6_route_add(&cfg, NULL); 34961da177e4SLinus Torvalds break; 34971da177e4SLinus Torvalds case SIOCDELRT: 3498333c4301SDavid Ahern err = ip6_route_del(&cfg, NULL); 34991da177e4SLinus Torvalds break; 35001da177e4SLinus Torvalds default: 35011da177e4SLinus Torvalds err = -EINVAL; 35021da177e4SLinus Torvalds } 35031da177e4SLinus Torvalds rtnl_unlock(); 35041da177e4SLinus Torvalds 35051da177e4SLinus Torvalds return err; 35063ff50b79SStephen Hemminger } 35071da177e4SLinus Torvalds 35081da177e4SLinus Torvalds return -EINVAL; 35091da177e4SLinus Torvalds } 35101da177e4SLinus Torvalds 35111da177e4SLinus Torvalds /* 35121da177e4SLinus Torvalds * Drop the packet on the floor 35131da177e4SLinus Torvalds */ 35141da177e4SLinus Torvalds 3515d5fdd6baSBrian Haley static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes) 35161da177e4SLinus Torvalds { 3517612f09e8SYOSHIFUJI Hideaki int type; 3518adf30907SEric Dumazet struct dst_entry *dst = skb_dst(skb); 3519612f09e8SYOSHIFUJI Hideaki switch (ipstats_mib_noroutes) { 3520612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_INNOROUTES: 35210660e03fSArnaldo Carvalho de Melo type = ipv6_addr_type(&ipv6_hdr(skb)->daddr); 352245bb0060SUlrich Weber if (type == IPV6_ADDR_ANY) { 35233bd653c8SDenis V. Lunev IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst), 35243bd653c8SDenis V. Lunev IPSTATS_MIB_INADDRERRORS); 3525612f09e8SYOSHIFUJI Hideaki break; 3526612f09e8SYOSHIFUJI Hideaki } 3527612f09e8SYOSHIFUJI Hideaki /* FALLTHROUGH */ 3528612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_OUTNOROUTES: 35293bd653c8SDenis V. Lunev IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst), 35303bd653c8SDenis V. Lunev ipstats_mib_noroutes); 3531612f09e8SYOSHIFUJI Hideaki break; 3532612f09e8SYOSHIFUJI Hideaki } 35333ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0); 35341da177e4SLinus Torvalds kfree_skb(skb); 35351da177e4SLinus Torvalds return 0; 35361da177e4SLinus Torvalds } 35371da177e4SLinus Torvalds 35389ce8ade0SThomas Graf static int ip6_pkt_discard(struct sk_buff *skb) 35399ce8ade0SThomas Graf { 3540612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES); 35419ce8ade0SThomas Graf } 35429ce8ade0SThomas Graf 3543ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb) 35441da177e4SLinus Torvalds { 3545adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3546612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES); 35471da177e4SLinus Torvalds } 35481da177e4SLinus Torvalds 35499ce8ade0SThomas Graf static int ip6_pkt_prohibit(struct sk_buff *skb) 35509ce8ade0SThomas Graf { 3551612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES); 35529ce8ade0SThomas Graf } 35539ce8ade0SThomas Graf 3554ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb) 35559ce8ade0SThomas Graf { 3556adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3557612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES); 35589ce8ade0SThomas Graf } 35599ce8ade0SThomas Graf 35601da177e4SLinus Torvalds /* 35611da177e4SLinus Torvalds * Allocate a dst for local (unicast / anycast) address. 35621da177e4SLinus Torvalds */ 35631da177e4SLinus Torvalds 35641da177e4SLinus Torvalds struct rt6_info *addrconf_dst_alloc(struct inet6_dev *idev, 35651da177e4SLinus Torvalds const struct in6_addr *addr, 35668f031519SDavid S. Miller bool anycast) 35671da177e4SLinus Torvalds { 3568ca254490SDavid Ahern u32 tb_id; 3569c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(idev->dev); 35704832c30dSDavid Ahern struct net_device *dev = idev->dev; 35715f02ce24SDavid Ahern struct rt6_info *rt; 35725f02ce24SDavid Ahern 35735f02ce24SDavid Ahern rt = ip6_dst_alloc(net, dev, DST_NOCOUNT); 3574a3300ef4SHannes Frederic Sowa if (!rt) 35751da177e4SLinus Torvalds return ERR_PTR(-ENOMEM); 35761da177e4SLinus Torvalds 35771da177e4SLinus Torvalds in6_dev_hold(idev); 35781da177e4SLinus Torvalds 357911d53b49SDavid S. Miller rt->dst.flags |= DST_HOST; 3580d8d1f30bSChangli Gao rt->dst.input = ip6_input; 3581d8d1f30bSChangli Gao rt->dst.output = ip6_output; 35821da177e4SLinus Torvalds rt->rt6i_idev = idev; 35831da177e4SLinus Torvalds 358494b5e0f9SDavid Ahern rt->rt6i_protocol = RTPROT_KERNEL; 35851da177e4SLinus Torvalds rt->rt6i_flags = RTF_UP | RTF_NONEXTHOP; 358658c4fb86SYOSHIFUJI Hideaki if (anycast) 358758c4fb86SYOSHIFUJI Hideaki rt->rt6i_flags |= RTF_ANYCAST; 358858c4fb86SYOSHIFUJI Hideaki else 35891da177e4SLinus Torvalds rt->rt6i_flags |= RTF_LOCAL; 35901da177e4SLinus Torvalds 3591550bab42SJulian Anastasov rt->rt6i_gateway = *addr; 35924e3fd7a0SAlexey Dobriyan rt->rt6i_dst.addr = *addr; 35931da177e4SLinus Torvalds rt->rt6i_dst.plen = 128; 3594ca254490SDavid Ahern tb_id = l3mdev_fib_table(idev->dev) ? : RT6_TABLE_LOCAL; 3595ca254490SDavid Ahern rt->rt6i_table = fib6_get_table(net, tb_id); 35961da177e4SLinus Torvalds 35971da177e4SLinus Torvalds return rt; 35981da177e4SLinus Torvalds } 35991da177e4SLinus Torvalds 3600c3968a85SDaniel Walter /* remove deleted ip from prefsrc entries */ 3601c3968a85SDaniel Walter struct arg_dev_net_ip { 3602c3968a85SDaniel Walter struct net_device *dev; 3603c3968a85SDaniel Walter struct net *net; 3604c3968a85SDaniel Walter struct in6_addr *addr; 3605c3968a85SDaniel Walter }; 3606c3968a85SDaniel Walter 3607c3968a85SDaniel Walter static int fib6_remove_prefsrc(struct rt6_info *rt, void *arg) 3608c3968a85SDaniel Walter { 3609c3968a85SDaniel Walter struct net_device *dev = ((struct arg_dev_net_ip *)arg)->dev; 3610c3968a85SDaniel Walter struct net *net = ((struct arg_dev_net_ip *)arg)->net; 3611c3968a85SDaniel Walter struct in6_addr *addr = ((struct arg_dev_net_ip *)arg)->addr; 3612c3968a85SDaniel Walter 3613d1918542SDavid S. Miller if (((void *)rt->dst.dev == dev || !dev) && 3614c3968a85SDaniel Walter rt != net->ipv6.ip6_null_entry && 3615c3968a85SDaniel Walter ipv6_addr_equal(addr, &rt->rt6i_prefsrc.addr)) { 361660006a48SWei Wang spin_lock_bh(&rt6_exception_lock); 3617c3968a85SDaniel Walter /* remove prefsrc entry */ 3618c3968a85SDaniel Walter rt->rt6i_prefsrc.plen = 0; 361960006a48SWei Wang /* need to update cache as well */ 362060006a48SWei Wang rt6_exceptions_remove_prefsrc(rt); 362160006a48SWei Wang spin_unlock_bh(&rt6_exception_lock); 3622c3968a85SDaniel Walter } 3623c3968a85SDaniel Walter return 0; 3624c3968a85SDaniel Walter } 3625c3968a85SDaniel Walter 3626c3968a85SDaniel Walter void rt6_remove_prefsrc(struct inet6_ifaddr *ifp) 3627c3968a85SDaniel Walter { 3628c3968a85SDaniel Walter struct net *net = dev_net(ifp->idev->dev); 3629c3968a85SDaniel Walter struct arg_dev_net_ip adni = { 3630c3968a85SDaniel Walter .dev = ifp->idev->dev, 3631c3968a85SDaniel Walter .net = net, 3632c3968a85SDaniel Walter .addr = &ifp->addr, 3633c3968a85SDaniel Walter }; 36340c3584d5SLi RongQing fib6_clean_all(net, fib6_remove_prefsrc, &adni); 3635c3968a85SDaniel Walter } 3636c3968a85SDaniel Walter 3637be7a010dSDuan Jiong #define RTF_RA_ROUTER (RTF_ADDRCONF | RTF_DEFAULT | RTF_GATEWAY) 3638be7a010dSDuan Jiong 3639be7a010dSDuan Jiong /* Remove routers and update dst entries when gateway turn into host. */ 3640be7a010dSDuan Jiong static int fib6_clean_tohost(struct rt6_info *rt, void *arg) 3641be7a010dSDuan Jiong { 3642be7a010dSDuan Jiong struct in6_addr *gateway = (struct in6_addr *)arg; 3643be7a010dSDuan Jiong 36442b760fcfSWei Wang if (((rt->rt6i_flags & RTF_RA_ROUTER) == RTF_RA_ROUTER) && 3645be7a010dSDuan Jiong ipv6_addr_equal(gateway, &rt->rt6i_gateway)) { 3646be7a010dSDuan Jiong return -1; 3647be7a010dSDuan Jiong } 3648b16cb459SWei Wang 3649b16cb459SWei Wang /* Further clean up cached routes in exception table. 3650b16cb459SWei Wang * This is needed because cached route may have a different 3651b16cb459SWei Wang * gateway than its 'parent' in the case of an ip redirect. 3652b16cb459SWei Wang */ 3653b16cb459SWei Wang rt6_exceptions_clean_tohost(rt, gateway); 3654b16cb459SWei Wang 3655be7a010dSDuan Jiong return 0; 3656be7a010dSDuan Jiong } 3657be7a010dSDuan Jiong 3658be7a010dSDuan Jiong void rt6_clean_tohost(struct net *net, struct in6_addr *gateway) 3659be7a010dSDuan Jiong { 3660be7a010dSDuan Jiong fib6_clean_all(net, fib6_clean_tohost, gateway); 3661be7a010dSDuan Jiong } 3662be7a010dSDuan Jiong 36632127d95aSIdo Schimmel struct arg_netdev_event { 36642127d95aSIdo Schimmel const struct net_device *dev; 36654c981e28SIdo Schimmel union { 36662127d95aSIdo Schimmel unsigned int nh_flags; 36674c981e28SIdo Schimmel unsigned long event; 36684c981e28SIdo Schimmel }; 36692127d95aSIdo Schimmel }; 36702127d95aSIdo Schimmel 3671d7dedee1SIdo Schimmel static struct rt6_info *rt6_multipath_first_sibling(const struct rt6_info *rt) 3672d7dedee1SIdo Schimmel { 3673d7dedee1SIdo Schimmel struct rt6_info *iter; 3674d7dedee1SIdo Schimmel struct fib6_node *fn; 3675d7dedee1SIdo Schimmel 3676d7dedee1SIdo Schimmel fn = rcu_dereference_protected(rt->rt6i_node, 3677d7dedee1SIdo Schimmel lockdep_is_held(&rt->rt6i_table->tb6_lock)); 3678d7dedee1SIdo Schimmel iter = rcu_dereference_protected(fn->leaf, 3679d7dedee1SIdo Schimmel lockdep_is_held(&rt->rt6i_table->tb6_lock)); 3680d7dedee1SIdo Schimmel while (iter) { 3681d7dedee1SIdo Schimmel if (iter->rt6i_metric == rt->rt6i_metric && 3682d7dedee1SIdo Schimmel rt6_qualify_for_ecmp(iter)) 3683d7dedee1SIdo Schimmel return iter; 3684d7dedee1SIdo Schimmel iter = rcu_dereference_protected(iter->rt6_next, 3685d7dedee1SIdo Schimmel lockdep_is_held(&rt->rt6i_table->tb6_lock)); 3686d7dedee1SIdo Schimmel } 3687d7dedee1SIdo Schimmel 3688d7dedee1SIdo Schimmel return NULL; 3689d7dedee1SIdo Schimmel } 3690d7dedee1SIdo Schimmel 3691d7dedee1SIdo Schimmel static bool rt6_is_dead(const struct rt6_info *rt) 3692d7dedee1SIdo Schimmel { 3693d7dedee1SIdo Schimmel if (rt->rt6i_nh_flags & RTNH_F_DEAD || 3694d7dedee1SIdo Schimmel (rt->rt6i_nh_flags & RTNH_F_LINKDOWN && 3695d7dedee1SIdo Schimmel rt->rt6i_idev->cnf.ignore_routes_with_linkdown)) 3696d7dedee1SIdo Schimmel return true; 3697d7dedee1SIdo Schimmel 3698d7dedee1SIdo Schimmel return false; 3699d7dedee1SIdo Schimmel } 3700d7dedee1SIdo Schimmel 3701d7dedee1SIdo Schimmel static int rt6_multipath_total_weight(const struct rt6_info *rt) 3702d7dedee1SIdo Schimmel { 3703d7dedee1SIdo Schimmel struct rt6_info *iter; 3704d7dedee1SIdo Schimmel int total = 0; 3705d7dedee1SIdo Schimmel 3706d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) 3707398958aeSIdo Schimmel total += rt->rt6i_nh_weight; 3708d7dedee1SIdo Schimmel 3709d7dedee1SIdo Schimmel list_for_each_entry(iter, &rt->rt6i_siblings, rt6i_siblings) { 3710d7dedee1SIdo Schimmel if (!rt6_is_dead(iter)) 3711398958aeSIdo Schimmel total += iter->rt6i_nh_weight; 3712d7dedee1SIdo Schimmel } 3713d7dedee1SIdo Schimmel 3714d7dedee1SIdo Schimmel return total; 3715d7dedee1SIdo Schimmel } 3716d7dedee1SIdo Schimmel 3717d7dedee1SIdo Schimmel static void rt6_upper_bound_set(struct rt6_info *rt, int *weight, int total) 3718d7dedee1SIdo Schimmel { 3719d7dedee1SIdo Schimmel int upper_bound = -1; 3720d7dedee1SIdo Schimmel 3721d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) { 3722398958aeSIdo Schimmel *weight += rt->rt6i_nh_weight; 3723d7dedee1SIdo Schimmel upper_bound = DIV_ROUND_CLOSEST_ULL((u64) (*weight) << 31, 3724d7dedee1SIdo Schimmel total) - 1; 3725d7dedee1SIdo Schimmel } 3726d7dedee1SIdo Schimmel atomic_set(&rt->rt6i_nh_upper_bound, upper_bound); 3727d7dedee1SIdo Schimmel } 3728d7dedee1SIdo Schimmel 3729d7dedee1SIdo Schimmel static void rt6_multipath_upper_bound_set(struct rt6_info *rt, int total) 3730d7dedee1SIdo Schimmel { 3731d7dedee1SIdo Schimmel struct rt6_info *iter; 3732d7dedee1SIdo Schimmel int weight = 0; 3733d7dedee1SIdo Schimmel 3734d7dedee1SIdo Schimmel rt6_upper_bound_set(rt, &weight, total); 3735d7dedee1SIdo Schimmel 3736d7dedee1SIdo Schimmel list_for_each_entry(iter, &rt->rt6i_siblings, rt6i_siblings) 3737d7dedee1SIdo Schimmel rt6_upper_bound_set(iter, &weight, total); 3738d7dedee1SIdo Schimmel } 3739d7dedee1SIdo Schimmel 3740d7dedee1SIdo Schimmel void rt6_multipath_rebalance(struct rt6_info *rt) 3741d7dedee1SIdo Schimmel { 3742d7dedee1SIdo Schimmel struct rt6_info *first; 3743d7dedee1SIdo Schimmel int total; 3744d7dedee1SIdo Schimmel 3745d7dedee1SIdo Schimmel /* In case the entire multipath route was marked for flushing, 3746d7dedee1SIdo Schimmel * then there is no need to rebalance upon the removal of every 3747d7dedee1SIdo Schimmel * sibling route. 3748d7dedee1SIdo Schimmel */ 3749d7dedee1SIdo Schimmel if (!rt->rt6i_nsiblings || rt->should_flush) 3750d7dedee1SIdo Schimmel return; 3751d7dedee1SIdo Schimmel 3752d7dedee1SIdo Schimmel /* During lookup routes are evaluated in order, so we need to 3753d7dedee1SIdo Schimmel * make sure upper bounds are assigned from the first sibling 3754d7dedee1SIdo Schimmel * onwards. 3755d7dedee1SIdo Schimmel */ 3756d7dedee1SIdo Schimmel first = rt6_multipath_first_sibling(rt); 3757d7dedee1SIdo Schimmel if (WARN_ON_ONCE(!first)) 3758d7dedee1SIdo Schimmel return; 3759d7dedee1SIdo Schimmel 3760d7dedee1SIdo Schimmel total = rt6_multipath_total_weight(first); 3761d7dedee1SIdo Schimmel rt6_multipath_upper_bound_set(first, total); 3762d7dedee1SIdo Schimmel } 3763d7dedee1SIdo Schimmel 37642127d95aSIdo Schimmel static int fib6_ifup(struct rt6_info *rt, void *p_arg) 37652127d95aSIdo Schimmel { 37662127d95aSIdo Schimmel const struct arg_netdev_event *arg = p_arg; 37672127d95aSIdo Schimmel const struct net *net = dev_net(arg->dev); 37682127d95aSIdo Schimmel 37691de178edSIdo Schimmel if (rt != net->ipv6.ip6_null_entry && rt->dst.dev == arg->dev) { 37702127d95aSIdo Schimmel rt->rt6i_nh_flags &= ~arg->nh_flags; 37711de178edSIdo Schimmel fib6_update_sernum_upto_root(dev_net(rt->dst.dev), rt); 3772d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 37731de178edSIdo Schimmel } 37742127d95aSIdo Schimmel 37752127d95aSIdo Schimmel return 0; 37762127d95aSIdo Schimmel } 37772127d95aSIdo Schimmel 37782127d95aSIdo Schimmel void rt6_sync_up(struct net_device *dev, unsigned int nh_flags) 37792127d95aSIdo Schimmel { 37802127d95aSIdo Schimmel struct arg_netdev_event arg = { 37812127d95aSIdo Schimmel .dev = dev, 37826802f3adSIdo Schimmel { 37832127d95aSIdo Schimmel .nh_flags = nh_flags, 37846802f3adSIdo Schimmel }, 37852127d95aSIdo Schimmel }; 37862127d95aSIdo Schimmel 37872127d95aSIdo Schimmel if (nh_flags & RTNH_F_DEAD && netif_carrier_ok(dev)) 37882127d95aSIdo Schimmel arg.nh_flags |= RTNH_F_LINKDOWN; 37892127d95aSIdo Schimmel 37902127d95aSIdo Schimmel fib6_clean_all(dev_net(dev), fib6_ifup, &arg); 37912127d95aSIdo Schimmel } 37922127d95aSIdo Schimmel 37931de178edSIdo Schimmel static bool rt6_multipath_uses_dev(const struct rt6_info *rt, 37941de178edSIdo Schimmel const struct net_device *dev) 37951de178edSIdo Schimmel { 37961de178edSIdo Schimmel struct rt6_info *iter; 37971de178edSIdo Schimmel 37981de178edSIdo Schimmel if (rt->dst.dev == dev) 37991de178edSIdo Schimmel return true; 38001de178edSIdo Schimmel list_for_each_entry(iter, &rt->rt6i_siblings, rt6i_siblings) 38011de178edSIdo Schimmel if (iter->dst.dev == dev) 38021de178edSIdo Schimmel return true; 38031de178edSIdo Schimmel 38041de178edSIdo Schimmel return false; 38051de178edSIdo Schimmel } 38061de178edSIdo Schimmel 38071de178edSIdo Schimmel static void rt6_multipath_flush(struct rt6_info *rt) 38081de178edSIdo Schimmel { 38091de178edSIdo Schimmel struct rt6_info *iter; 38101de178edSIdo Schimmel 38111de178edSIdo Schimmel rt->should_flush = 1; 38121de178edSIdo Schimmel list_for_each_entry(iter, &rt->rt6i_siblings, rt6i_siblings) 38131de178edSIdo Schimmel iter->should_flush = 1; 38141de178edSIdo Schimmel } 38151de178edSIdo Schimmel 38161de178edSIdo Schimmel static unsigned int rt6_multipath_dead_count(const struct rt6_info *rt, 38171de178edSIdo Schimmel const struct net_device *down_dev) 38181de178edSIdo Schimmel { 38191de178edSIdo Schimmel struct rt6_info *iter; 38201de178edSIdo Schimmel unsigned int dead = 0; 38211de178edSIdo Schimmel 38221de178edSIdo Schimmel if (rt->dst.dev == down_dev || rt->rt6i_nh_flags & RTNH_F_DEAD) 38231de178edSIdo Schimmel dead++; 38241de178edSIdo Schimmel list_for_each_entry(iter, &rt->rt6i_siblings, rt6i_siblings) 38251de178edSIdo Schimmel if (iter->dst.dev == down_dev || 38261de178edSIdo Schimmel iter->rt6i_nh_flags & RTNH_F_DEAD) 38271de178edSIdo Schimmel dead++; 38281de178edSIdo Schimmel 38291de178edSIdo Schimmel return dead; 38301de178edSIdo Schimmel } 38311de178edSIdo Schimmel 38321de178edSIdo Schimmel static void rt6_multipath_nh_flags_set(struct rt6_info *rt, 38331de178edSIdo Schimmel const struct net_device *dev, 38341de178edSIdo Schimmel unsigned int nh_flags) 38351de178edSIdo Schimmel { 38361de178edSIdo Schimmel struct rt6_info *iter; 38371de178edSIdo Schimmel 38381de178edSIdo Schimmel if (rt->dst.dev == dev) 38391de178edSIdo Schimmel rt->rt6i_nh_flags |= nh_flags; 38401de178edSIdo Schimmel list_for_each_entry(iter, &rt->rt6i_siblings, rt6i_siblings) 38411de178edSIdo Schimmel if (iter->dst.dev == dev) 38421de178edSIdo Schimmel iter->rt6i_nh_flags |= nh_flags; 38431de178edSIdo Schimmel } 38441de178edSIdo Schimmel 3845a1a22c12SDavid Ahern /* called with write lock held for table with rt */ 38464c981e28SIdo Schimmel static int fib6_ifdown(struct rt6_info *rt, void *p_arg) 38471da177e4SLinus Torvalds { 38484c981e28SIdo Schimmel const struct arg_netdev_event *arg = p_arg; 38494c981e28SIdo Schimmel const struct net_device *dev = arg->dev; 38504c981e28SIdo Schimmel const struct net *net = dev_net(dev); 38518ed67789SDaniel Lezcano 38521de178edSIdo Schimmel if (rt == net->ipv6.ip6_null_entry) 385327c6fa73SIdo Schimmel return 0; 385427c6fa73SIdo Schimmel 385527c6fa73SIdo Schimmel switch (arg->event) { 385627c6fa73SIdo Schimmel case NETDEV_UNREGISTER: 38571de178edSIdo Schimmel return rt->dst.dev == dev ? -1 : 0; 385827c6fa73SIdo Schimmel case NETDEV_DOWN: 38591de178edSIdo Schimmel if (rt->should_flush) 386027c6fa73SIdo Schimmel return -1; 38611de178edSIdo Schimmel if (!rt->rt6i_nsiblings) 38621de178edSIdo Schimmel return rt->dst.dev == dev ? -1 : 0; 38631de178edSIdo Schimmel if (rt6_multipath_uses_dev(rt, dev)) { 38641de178edSIdo Schimmel unsigned int count; 38651de178edSIdo Schimmel 38661de178edSIdo Schimmel count = rt6_multipath_dead_count(rt, dev); 38671de178edSIdo Schimmel if (rt->rt6i_nsiblings + 1 == count) { 38681de178edSIdo Schimmel rt6_multipath_flush(rt); 38691de178edSIdo Schimmel return -1; 38701de178edSIdo Schimmel } 38711de178edSIdo Schimmel rt6_multipath_nh_flags_set(rt, dev, RTNH_F_DEAD | 38721de178edSIdo Schimmel RTNH_F_LINKDOWN); 38731de178edSIdo Schimmel fib6_update_sernum(rt); 3874d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 38751de178edSIdo Schimmel } 38761de178edSIdo Schimmel return -2; 387727c6fa73SIdo Schimmel case NETDEV_CHANGE: 38781de178edSIdo Schimmel if (rt->dst.dev != dev || 38791de178edSIdo Schimmel rt->rt6i_flags & (RTF_LOCAL | RTF_ANYCAST)) 388027c6fa73SIdo Schimmel break; 388127c6fa73SIdo Schimmel rt->rt6i_nh_flags |= RTNH_F_LINKDOWN; 3882d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 388327c6fa73SIdo Schimmel break; 38842b241361SIdo Schimmel } 3885c159d30cSDavid S. Miller 38861da177e4SLinus Torvalds return 0; 38871da177e4SLinus Torvalds } 38881da177e4SLinus Torvalds 388927c6fa73SIdo Schimmel void rt6_sync_down_dev(struct net_device *dev, unsigned long event) 38901da177e4SLinus Torvalds { 38914c981e28SIdo Schimmel struct arg_netdev_event arg = { 38928ed67789SDaniel Lezcano .dev = dev, 38936802f3adSIdo Schimmel { 38944c981e28SIdo Schimmel .event = event, 38956802f3adSIdo Schimmel }, 38968ed67789SDaniel Lezcano }; 38978ed67789SDaniel Lezcano 38984c981e28SIdo Schimmel fib6_clean_all(dev_net(dev), fib6_ifdown, &arg); 38994c981e28SIdo Schimmel } 39004c981e28SIdo Schimmel 39014c981e28SIdo Schimmel void rt6_disable_ip(struct net_device *dev, unsigned long event) 39024c981e28SIdo Schimmel { 39034c981e28SIdo Schimmel rt6_sync_down_dev(dev, event); 39044c981e28SIdo Schimmel rt6_uncached_list_flush_dev(dev_net(dev), dev); 39054c981e28SIdo Schimmel neigh_ifdown(&nd_tbl, dev); 39061da177e4SLinus Torvalds } 39071da177e4SLinus Torvalds 390895c96174SEric Dumazet struct rt6_mtu_change_arg { 39091da177e4SLinus Torvalds struct net_device *dev; 391095c96174SEric Dumazet unsigned int mtu; 39111da177e4SLinus Torvalds }; 39121da177e4SLinus Torvalds 39131da177e4SLinus Torvalds static int rt6_mtu_change_route(struct rt6_info *rt, void *p_arg) 39141da177e4SLinus Torvalds { 39151da177e4SLinus Torvalds struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg; 39161da177e4SLinus Torvalds struct inet6_dev *idev; 39171da177e4SLinus Torvalds 39181da177e4SLinus Torvalds /* In IPv6 pmtu discovery is not optional, 39191da177e4SLinus Torvalds so that RTAX_MTU lock cannot disable it. 39201da177e4SLinus Torvalds We still use this lock to block changes 39211da177e4SLinus Torvalds caused by addrconf/ndisc. 39221da177e4SLinus Torvalds */ 39231da177e4SLinus Torvalds 39241da177e4SLinus Torvalds idev = __in6_dev_get(arg->dev); 392538308473SDavid S. Miller if (!idev) 39261da177e4SLinus Torvalds return 0; 39271da177e4SLinus Torvalds 39281da177e4SLinus Torvalds /* For administrative MTU increase, there is no way to discover 39291da177e4SLinus Torvalds IPv6 PMTU increase, so PMTU increase should be updated here. 39301da177e4SLinus Torvalds Since RFC 1981 doesn't include administrative MTU increase 39311da177e4SLinus Torvalds update PMTU increase is a MUST. (i.e. jumbo frame) 39321da177e4SLinus Torvalds */ 3933d1918542SDavid S. Miller if (rt->dst.dev == arg->dev && 39344b32b5adSMartin KaFai Lau !dst_metric_locked(&rt->dst, RTAX_MTU)) { 3935f5bbe7eeSWei Wang spin_lock_bh(&rt6_exception_lock); 3936e9fa1495SStefano Brivio if (dst_metric_raw(&rt->dst, RTAX_MTU) && 3937e9fa1495SStefano Brivio rt6_mtu_change_route_allowed(idev, rt, arg->mtu)) 3938defb3519SDavid S. Miller dst_metric_set(&rt->dst, RTAX_MTU, arg->mtu); 3939e9fa1495SStefano Brivio rt6_exceptions_update_pmtu(idev, rt, arg->mtu); 3940f5bbe7eeSWei Wang spin_unlock_bh(&rt6_exception_lock); 39414b32b5adSMartin KaFai Lau } 39421da177e4SLinus Torvalds return 0; 39431da177e4SLinus Torvalds } 39441da177e4SLinus Torvalds 394595c96174SEric Dumazet void rt6_mtu_change(struct net_device *dev, unsigned int mtu) 39461da177e4SLinus Torvalds { 3947c71099acSThomas Graf struct rt6_mtu_change_arg arg = { 3948c71099acSThomas Graf .dev = dev, 3949c71099acSThomas Graf .mtu = mtu, 3950c71099acSThomas Graf }; 39511da177e4SLinus Torvalds 39520c3584d5SLi RongQing fib6_clean_all(dev_net(dev), rt6_mtu_change_route, &arg); 39531da177e4SLinus Torvalds } 39541da177e4SLinus Torvalds 3955ef7c79edSPatrick McHardy static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = { 39565176f91eSThomas Graf [RTA_GATEWAY] = { .len = sizeof(struct in6_addr) }, 395786872cb5SThomas Graf [RTA_OIF] = { .type = NLA_U32 }, 3958ab364a6fSThomas Graf [RTA_IIF] = { .type = NLA_U32 }, 395986872cb5SThomas Graf [RTA_PRIORITY] = { .type = NLA_U32 }, 396086872cb5SThomas Graf [RTA_METRICS] = { .type = NLA_NESTED }, 396151ebd318SNicolas Dichtel [RTA_MULTIPATH] = { .len = sizeof(struct rtnexthop) }, 3962c78ba6d6SLubomir Rintel [RTA_PREF] = { .type = NLA_U8 }, 396319e42e45SRoopa Prabhu [RTA_ENCAP_TYPE] = { .type = NLA_U16 }, 396419e42e45SRoopa Prabhu [RTA_ENCAP] = { .type = NLA_NESTED }, 396532bc201eSXin Long [RTA_EXPIRES] = { .type = NLA_U32 }, 3966622ec2c9SLorenzo Colitti [RTA_UID] = { .type = NLA_U32 }, 39673b45a410SLiping Zhang [RTA_MARK] = { .type = NLA_U32 }, 396886872cb5SThomas Graf }; 396986872cb5SThomas Graf 397086872cb5SThomas Graf static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh, 3971333c4301SDavid Ahern struct fib6_config *cfg, 3972333c4301SDavid Ahern struct netlink_ext_ack *extack) 39731da177e4SLinus Torvalds { 397486872cb5SThomas Graf struct rtmsg *rtm; 397586872cb5SThomas Graf struct nlattr *tb[RTA_MAX+1]; 3976c78ba6d6SLubomir Rintel unsigned int pref; 397786872cb5SThomas Graf int err; 39781da177e4SLinus Torvalds 3979fceb6435SJohannes Berg err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy, 3980fceb6435SJohannes Berg NULL); 398186872cb5SThomas Graf if (err < 0) 398286872cb5SThomas Graf goto errout; 39831da177e4SLinus Torvalds 398486872cb5SThomas Graf err = -EINVAL; 398586872cb5SThomas Graf rtm = nlmsg_data(nlh); 398686872cb5SThomas Graf memset(cfg, 0, sizeof(*cfg)); 398786872cb5SThomas Graf 398886872cb5SThomas Graf cfg->fc_table = rtm->rtm_table; 398986872cb5SThomas Graf cfg->fc_dst_len = rtm->rtm_dst_len; 399086872cb5SThomas Graf cfg->fc_src_len = rtm->rtm_src_len; 399186872cb5SThomas Graf cfg->fc_flags = RTF_UP; 399286872cb5SThomas Graf cfg->fc_protocol = rtm->rtm_protocol; 3993ef2c7d7bSNicolas Dichtel cfg->fc_type = rtm->rtm_type; 399486872cb5SThomas Graf 3995ef2c7d7bSNicolas Dichtel if (rtm->rtm_type == RTN_UNREACHABLE || 3996ef2c7d7bSNicolas Dichtel rtm->rtm_type == RTN_BLACKHOLE || 3997b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_PROHIBIT || 3998b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_THROW) 399986872cb5SThomas Graf cfg->fc_flags |= RTF_REJECT; 400086872cb5SThomas Graf 4001ab79ad14SMaciej Żenczykowski if (rtm->rtm_type == RTN_LOCAL) 4002ab79ad14SMaciej Żenczykowski cfg->fc_flags |= RTF_LOCAL; 4003ab79ad14SMaciej Żenczykowski 40041f56a01fSMartin KaFai Lau if (rtm->rtm_flags & RTM_F_CLONED) 40051f56a01fSMartin KaFai Lau cfg->fc_flags |= RTF_CACHE; 40061f56a01fSMartin KaFai Lau 4007fc1e64e1SDavid Ahern cfg->fc_flags |= (rtm->rtm_flags & RTNH_F_ONLINK); 4008fc1e64e1SDavid Ahern 400915e47304SEric W. Biederman cfg->fc_nlinfo.portid = NETLINK_CB(skb).portid; 401086872cb5SThomas Graf cfg->fc_nlinfo.nlh = nlh; 40113b1e0a65SYOSHIFUJI Hideaki cfg->fc_nlinfo.nl_net = sock_net(skb->sk); 401286872cb5SThomas Graf 401386872cb5SThomas Graf if (tb[RTA_GATEWAY]) { 401467b61f6cSJiri Benc cfg->fc_gateway = nla_get_in6_addr(tb[RTA_GATEWAY]); 401586872cb5SThomas Graf cfg->fc_flags |= RTF_GATEWAY; 40161da177e4SLinus Torvalds } 401786872cb5SThomas Graf 401886872cb5SThomas Graf if (tb[RTA_DST]) { 401986872cb5SThomas Graf int plen = (rtm->rtm_dst_len + 7) >> 3; 402086872cb5SThomas Graf 402186872cb5SThomas Graf if (nla_len(tb[RTA_DST]) < plen) 402286872cb5SThomas Graf goto errout; 402386872cb5SThomas Graf 402486872cb5SThomas Graf nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen); 40251da177e4SLinus Torvalds } 402686872cb5SThomas Graf 402786872cb5SThomas Graf if (tb[RTA_SRC]) { 402886872cb5SThomas Graf int plen = (rtm->rtm_src_len + 7) >> 3; 402986872cb5SThomas Graf 403086872cb5SThomas Graf if (nla_len(tb[RTA_SRC]) < plen) 403186872cb5SThomas Graf goto errout; 403286872cb5SThomas Graf 403386872cb5SThomas Graf nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen); 40341da177e4SLinus Torvalds } 403586872cb5SThomas Graf 4036c3968a85SDaniel Walter if (tb[RTA_PREFSRC]) 403767b61f6cSJiri Benc cfg->fc_prefsrc = nla_get_in6_addr(tb[RTA_PREFSRC]); 4038c3968a85SDaniel Walter 403986872cb5SThomas Graf if (tb[RTA_OIF]) 404086872cb5SThomas Graf cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]); 404186872cb5SThomas Graf 404286872cb5SThomas Graf if (tb[RTA_PRIORITY]) 404386872cb5SThomas Graf cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]); 404486872cb5SThomas Graf 404586872cb5SThomas Graf if (tb[RTA_METRICS]) { 404686872cb5SThomas Graf cfg->fc_mx = nla_data(tb[RTA_METRICS]); 404786872cb5SThomas Graf cfg->fc_mx_len = nla_len(tb[RTA_METRICS]); 40481da177e4SLinus Torvalds } 404986872cb5SThomas Graf 405086872cb5SThomas Graf if (tb[RTA_TABLE]) 405186872cb5SThomas Graf cfg->fc_table = nla_get_u32(tb[RTA_TABLE]); 405286872cb5SThomas Graf 405351ebd318SNicolas Dichtel if (tb[RTA_MULTIPATH]) { 405451ebd318SNicolas Dichtel cfg->fc_mp = nla_data(tb[RTA_MULTIPATH]); 405551ebd318SNicolas Dichtel cfg->fc_mp_len = nla_len(tb[RTA_MULTIPATH]); 40569ed59592SDavid Ahern 40579ed59592SDavid Ahern err = lwtunnel_valid_encap_type_attr(cfg->fc_mp, 4058c255bd68SDavid Ahern cfg->fc_mp_len, extack); 40599ed59592SDavid Ahern if (err < 0) 40609ed59592SDavid Ahern goto errout; 406151ebd318SNicolas Dichtel } 406251ebd318SNicolas Dichtel 4063c78ba6d6SLubomir Rintel if (tb[RTA_PREF]) { 4064c78ba6d6SLubomir Rintel pref = nla_get_u8(tb[RTA_PREF]); 4065c78ba6d6SLubomir Rintel if (pref != ICMPV6_ROUTER_PREF_LOW && 4066c78ba6d6SLubomir Rintel pref != ICMPV6_ROUTER_PREF_HIGH) 4067c78ba6d6SLubomir Rintel pref = ICMPV6_ROUTER_PREF_MEDIUM; 4068c78ba6d6SLubomir Rintel cfg->fc_flags |= RTF_PREF(pref); 4069c78ba6d6SLubomir Rintel } 4070c78ba6d6SLubomir Rintel 407119e42e45SRoopa Prabhu if (tb[RTA_ENCAP]) 407219e42e45SRoopa Prabhu cfg->fc_encap = tb[RTA_ENCAP]; 407319e42e45SRoopa Prabhu 40749ed59592SDavid Ahern if (tb[RTA_ENCAP_TYPE]) { 407519e42e45SRoopa Prabhu cfg->fc_encap_type = nla_get_u16(tb[RTA_ENCAP_TYPE]); 407619e42e45SRoopa Prabhu 4077c255bd68SDavid Ahern err = lwtunnel_valid_encap_type(cfg->fc_encap_type, extack); 40789ed59592SDavid Ahern if (err < 0) 40799ed59592SDavid Ahern goto errout; 40809ed59592SDavid Ahern } 40819ed59592SDavid Ahern 408232bc201eSXin Long if (tb[RTA_EXPIRES]) { 408332bc201eSXin Long unsigned long timeout = addrconf_timeout_fixup(nla_get_u32(tb[RTA_EXPIRES]), HZ); 408432bc201eSXin Long 408532bc201eSXin Long if (addrconf_finite_timeout(timeout)) { 408632bc201eSXin Long cfg->fc_expires = jiffies_to_clock_t(timeout * HZ); 408732bc201eSXin Long cfg->fc_flags |= RTF_EXPIRES; 408832bc201eSXin Long } 408932bc201eSXin Long } 409032bc201eSXin Long 409186872cb5SThomas Graf err = 0; 409286872cb5SThomas Graf errout: 409386872cb5SThomas Graf return err; 40941da177e4SLinus Torvalds } 40951da177e4SLinus Torvalds 40966b9ea5a6SRoopa Prabhu struct rt6_nh { 40976b9ea5a6SRoopa Prabhu struct rt6_info *rt6_info; 40986b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 40996b9ea5a6SRoopa Prabhu struct mx6_config mxc; 41006b9ea5a6SRoopa Prabhu struct list_head next; 41016b9ea5a6SRoopa Prabhu }; 41026b9ea5a6SRoopa Prabhu 41036b9ea5a6SRoopa Prabhu static void ip6_print_replace_route_err(struct list_head *rt6_nh_list) 41046b9ea5a6SRoopa Prabhu { 41056b9ea5a6SRoopa Prabhu struct rt6_nh *nh; 41066b9ea5a6SRoopa Prabhu 41076b9ea5a6SRoopa Prabhu list_for_each_entry(nh, rt6_nh_list, next) { 41087d4d5065SDavid Ahern pr_warn("IPV6: multipath route replace failed (check consistency of installed routes): %pI6c nexthop %pI6c ifi %d\n", 41096b9ea5a6SRoopa Prabhu &nh->r_cfg.fc_dst, &nh->r_cfg.fc_gateway, 41106b9ea5a6SRoopa Prabhu nh->r_cfg.fc_ifindex); 41116b9ea5a6SRoopa Prabhu } 41126b9ea5a6SRoopa Prabhu } 41136b9ea5a6SRoopa Prabhu 41146b9ea5a6SRoopa Prabhu static int ip6_route_info_append(struct list_head *rt6_nh_list, 41156b9ea5a6SRoopa Prabhu struct rt6_info *rt, struct fib6_config *r_cfg) 41166b9ea5a6SRoopa Prabhu { 41176b9ea5a6SRoopa Prabhu struct rt6_nh *nh; 41186b9ea5a6SRoopa Prabhu int err = -EEXIST; 41196b9ea5a6SRoopa Prabhu 41206b9ea5a6SRoopa Prabhu list_for_each_entry(nh, rt6_nh_list, next) { 41216b9ea5a6SRoopa Prabhu /* check if rt6_info already exists */ 4122f06b7549SDavid Ahern if (rt6_duplicate_nexthop(nh->rt6_info, rt)) 41236b9ea5a6SRoopa Prabhu return err; 41246b9ea5a6SRoopa Prabhu } 41256b9ea5a6SRoopa Prabhu 41266b9ea5a6SRoopa Prabhu nh = kzalloc(sizeof(*nh), GFP_KERNEL); 41276b9ea5a6SRoopa Prabhu if (!nh) 41286b9ea5a6SRoopa Prabhu return -ENOMEM; 41296b9ea5a6SRoopa Prabhu nh->rt6_info = rt; 41306b9ea5a6SRoopa Prabhu err = ip6_convert_metrics(&nh->mxc, r_cfg); 41316b9ea5a6SRoopa Prabhu if (err) { 41326b9ea5a6SRoopa Prabhu kfree(nh); 41336b9ea5a6SRoopa Prabhu return err; 41346b9ea5a6SRoopa Prabhu } 41356b9ea5a6SRoopa Prabhu memcpy(&nh->r_cfg, r_cfg, sizeof(*r_cfg)); 41366b9ea5a6SRoopa Prabhu list_add_tail(&nh->next, rt6_nh_list); 41376b9ea5a6SRoopa Prabhu 41386b9ea5a6SRoopa Prabhu return 0; 41396b9ea5a6SRoopa Prabhu } 41406b9ea5a6SRoopa Prabhu 41413b1137feSDavid Ahern static void ip6_route_mpath_notify(struct rt6_info *rt, 41423b1137feSDavid Ahern struct rt6_info *rt_last, 41433b1137feSDavid Ahern struct nl_info *info, 41443b1137feSDavid Ahern __u16 nlflags) 41453b1137feSDavid Ahern { 41463b1137feSDavid Ahern /* if this is an APPEND route, then rt points to the first route 41473b1137feSDavid Ahern * inserted and rt_last points to last route inserted. Userspace 41483b1137feSDavid Ahern * wants a consistent dump of the route which starts at the first 41493b1137feSDavid Ahern * nexthop. Since sibling routes are always added at the end of 41503b1137feSDavid Ahern * the list, find the first sibling of the last route appended 41513b1137feSDavid Ahern */ 41523b1137feSDavid Ahern if ((nlflags & NLM_F_APPEND) && rt_last && rt_last->rt6i_nsiblings) { 41533b1137feSDavid Ahern rt = list_first_entry(&rt_last->rt6i_siblings, 41543b1137feSDavid Ahern struct rt6_info, 41553b1137feSDavid Ahern rt6i_siblings); 41563b1137feSDavid Ahern } 41573b1137feSDavid Ahern 41583b1137feSDavid Ahern if (rt) 41593b1137feSDavid Ahern inet6_rt_notify(RTM_NEWROUTE, rt, info, nlflags); 41603b1137feSDavid Ahern } 41613b1137feSDavid Ahern 4162333c4301SDavid Ahern static int ip6_route_multipath_add(struct fib6_config *cfg, 4163333c4301SDavid Ahern struct netlink_ext_ack *extack) 416451ebd318SNicolas Dichtel { 41653b1137feSDavid Ahern struct rt6_info *rt_notif = NULL, *rt_last = NULL; 41663b1137feSDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 416751ebd318SNicolas Dichtel struct fib6_config r_cfg; 416851ebd318SNicolas Dichtel struct rtnexthop *rtnh; 41696b9ea5a6SRoopa Prabhu struct rt6_info *rt; 41706b9ea5a6SRoopa Prabhu struct rt6_nh *err_nh; 41716b9ea5a6SRoopa Prabhu struct rt6_nh *nh, *nh_safe; 41723b1137feSDavid Ahern __u16 nlflags; 417351ebd318SNicolas Dichtel int remaining; 417451ebd318SNicolas Dichtel int attrlen; 41756b9ea5a6SRoopa Prabhu int err = 1; 41766b9ea5a6SRoopa Prabhu int nhn = 0; 41776b9ea5a6SRoopa Prabhu int replace = (cfg->fc_nlinfo.nlh && 41786b9ea5a6SRoopa Prabhu (cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_REPLACE)); 41796b9ea5a6SRoopa Prabhu LIST_HEAD(rt6_nh_list); 418051ebd318SNicolas Dichtel 41813b1137feSDavid Ahern nlflags = replace ? NLM_F_REPLACE : NLM_F_CREATE; 41823b1137feSDavid Ahern if (info->nlh && info->nlh->nlmsg_flags & NLM_F_APPEND) 41833b1137feSDavid Ahern nlflags |= NLM_F_APPEND; 41843b1137feSDavid Ahern 418535f1b4e9SMichal Kubeček remaining = cfg->fc_mp_len; 418651ebd318SNicolas Dichtel rtnh = (struct rtnexthop *)cfg->fc_mp; 418751ebd318SNicolas Dichtel 41886b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry and build a list (rt6_nh_list) of 41896b9ea5a6SRoopa Prabhu * rt6_info structs per nexthop 41906b9ea5a6SRoopa Prabhu */ 419151ebd318SNicolas Dichtel while (rtnh_ok(rtnh, remaining)) { 419251ebd318SNicolas Dichtel memcpy(&r_cfg, cfg, sizeof(*cfg)); 419351ebd318SNicolas Dichtel if (rtnh->rtnh_ifindex) 419451ebd318SNicolas Dichtel r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 419551ebd318SNicolas Dichtel 419651ebd318SNicolas Dichtel attrlen = rtnh_attrlen(rtnh); 419751ebd318SNicolas Dichtel if (attrlen > 0) { 419851ebd318SNicolas Dichtel struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 419951ebd318SNicolas Dichtel 420051ebd318SNicolas Dichtel nla = nla_find(attrs, attrlen, RTA_GATEWAY); 420151ebd318SNicolas Dichtel if (nla) { 420267b61f6cSJiri Benc r_cfg.fc_gateway = nla_get_in6_addr(nla); 420351ebd318SNicolas Dichtel r_cfg.fc_flags |= RTF_GATEWAY; 420451ebd318SNicolas Dichtel } 420519e42e45SRoopa Prabhu r_cfg.fc_encap = nla_find(attrs, attrlen, RTA_ENCAP); 420619e42e45SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_ENCAP_TYPE); 420719e42e45SRoopa Prabhu if (nla) 420819e42e45SRoopa Prabhu r_cfg.fc_encap_type = nla_get_u16(nla); 420951ebd318SNicolas Dichtel } 42106b9ea5a6SRoopa Prabhu 421168e2ffdeSDavid Ahern r_cfg.fc_flags |= (rtnh->rtnh_flags & RTNH_F_ONLINK); 4212333c4301SDavid Ahern rt = ip6_route_info_create(&r_cfg, extack); 42138c5b83f0SRoopa Prabhu if (IS_ERR(rt)) { 42148c5b83f0SRoopa Prabhu err = PTR_ERR(rt); 42158c5b83f0SRoopa Prabhu rt = NULL; 42166b9ea5a6SRoopa Prabhu goto cleanup; 42178c5b83f0SRoopa Prabhu } 42186b9ea5a6SRoopa Prabhu 4219398958aeSIdo Schimmel rt->rt6i_nh_weight = rtnh->rtnh_hops + 1; 4220398958aeSIdo Schimmel 42216b9ea5a6SRoopa Prabhu err = ip6_route_info_append(&rt6_nh_list, rt, &r_cfg); 422251ebd318SNicolas Dichtel if (err) { 4223587fea74SWei Wang dst_release_immediate(&rt->dst); 42246b9ea5a6SRoopa Prabhu goto cleanup; 422551ebd318SNicolas Dichtel } 42266b9ea5a6SRoopa Prabhu 42276b9ea5a6SRoopa Prabhu rtnh = rtnh_next(rtnh, &remaining); 422851ebd318SNicolas Dichtel } 42296b9ea5a6SRoopa Prabhu 42303b1137feSDavid Ahern /* for add and replace send one notification with all nexthops. 42313b1137feSDavid Ahern * Skip the notification in fib6_add_rt2node and send one with 42323b1137feSDavid Ahern * the full route when done 42333b1137feSDavid Ahern */ 42343b1137feSDavid Ahern info->skip_notify = 1; 42353b1137feSDavid Ahern 42366b9ea5a6SRoopa Prabhu err_nh = NULL; 42376b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 42383b1137feSDavid Ahern rt_last = nh->rt6_info; 4239333c4301SDavid Ahern err = __ip6_ins_rt(nh->rt6_info, info, &nh->mxc, extack); 42403b1137feSDavid Ahern /* save reference to first route for notification */ 42413b1137feSDavid Ahern if (!rt_notif && !err) 42423b1137feSDavid Ahern rt_notif = nh->rt6_info; 42433b1137feSDavid Ahern 42446b9ea5a6SRoopa Prabhu /* nh->rt6_info is used or freed at this point, reset to NULL*/ 42456b9ea5a6SRoopa Prabhu nh->rt6_info = NULL; 42466b9ea5a6SRoopa Prabhu if (err) { 42476b9ea5a6SRoopa Prabhu if (replace && nhn) 42486b9ea5a6SRoopa Prabhu ip6_print_replace_route_err(&rt6_nh_list); 42496b9ea5a6SRoopa Prabhu err_nh = nh; 42506b9ea5a6SRoopa Prabhu goto add_errout; 42516b9ea5a6SRoopa Prabhu } 42526b9ea5a6SRoopa Prabhu 42531a72418bSNicolas Dichtel /* Because each route is added like a single route we remove 425427596472SMichal Kubeček * these flags after the first nexthop: if there is a collision, 425527596472SMichal Kubeček * we have already failed to add the first nexthop: 425627596472SMichal Kubeček * fib6_add_rt2node() has rejected it; when replacing, old 425727596472SMichal Kubeček * nexthops have been replaced by first new, the rest should 425827596472SMichal Kubeček * be added to it. 42591a72418bSNicolas Dichtel */ 426027596472SMichal Kubeček cfg->fc_nlinfo.nlh->nlmsg_flags &= ~(NLM_F_EXCL | 426127596472SMichal Kubeček NLM_F_REPLACE); 42626b9ea5a6SRoopa Prabhu nhn++; 42636b9ea5a6SRoopa Prabhu } 42646b9ea5a6SRoopa Prabhu 42653b1137feSDavid Ahern /* success ... tell user about new route */ 42663b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 42676b9ea5a6SRoopa Prabhu goto cleanup; 42686b9ea5a6SRoopa Prabhu 42696b9ea5a6SRoopa Prabhu add_errout: 42703b1137feSDavid Ahern /* send notification for routes that were added so that 42713b1137feSDavid Ahern * the delete notifications sent by ip6_route_del are 42723b1137feSDavid Ahern * coherent 42733b1137feSDavid Ahern */ 42743b1137feSDavid Ahern if (rt_notif) 42753b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 42763b1137feSDavid Ahern 42776b9ea5a6SRoopa Prabhu /* Delete routes that were already added */ 42786b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 42796b9ea5a6SRoopa Prabhu if (err_nh == nh) 42806b9ea5a6SRoopa Prabhu break; 4281333c4301SDavid Ahern ip6_route_del(&nh->r_cfg, extack); 42826b9ea5a6SRoopa Prabhu } 42836b9ea5a6SRoopa Prabhu 42846b9ea5a6SRoopa Prabhu cleanup: 42856b9ea5a6SRoopa Prabhu list_for_each_entry_safe(nh, nh_safe, &rt6_nh_list, next) { 4286587fea74SWei Wang if (nh->rt6_info) 4287587fea74SWei Wang dst_release_immediate(&nh->rt6_info->dst); 42886b9ea5a6SRoopa Prabhu kfree(nh->mxc.mx); 42896b9ea5a6SRoopa Prabhu list_del(&nh->next); 42906b9ea5a6SRoopa Prabhu kfree(nh); 42916b9ea5a6SRoopa Prabhu } 42926b9ea5a6SRoopa Prabhu 42936b9ea5a6SRoopa Prabhu return err; 42946b9ea5a6SRoopa Prabhu } 42956b9ea5a6SRoopa Prabhu 4296333c4301SDavid Ahern static int ip6_route_multipath_del(struct fib6_config *cfg, 4297333c4301SDavid Ahern struct netlink_ext_ack *extack) 42986b9ea5a6SRoopa Prabhu { 42996b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 43006b9ea5a6SRoopa Prabhu struct rtnexthop *rtnh; 43016b9ea5a6SRoopa Prabhu int remaining; 43026b9ea5a6SRoopa Prabhu int attrlen; 43036b9ea5a6SRoopa Prabhu int err = 1, last_err = 0; 43046b9ea5a6SRoopa Prabhu 43056b9ea5a6SRoopa Prabhu remaining = cfg->fc_mp_len; 43066b9ea5a6SRoopa Prabhu rtnh = (struct rtnexthop *)cfg->fc_mp; 43076b9ea5a6SRoopa Prabhu 43086b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry */ 43096b9ea5a6SRoopa Prabhu while (rtnh_ok(rtnh, remaining)) { 43106b9ea5a6SRoopa Prabhu memcpy(&r_cfg, cfg, sizeof(*cfg)); 43116b9ea5a6SRoopa Prabhu if (rtnh->rtnh_ifindex) 43126b9ea5a6SRoopa Prabhu r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 43136b9ea5a6SRoopa Prabhu 43146b9ea5a6SRoopa Prabhu attrlen = rtnh_attrlen(rtnh); 43156b9ea5a6SRoopa Prabhu if (attrlen > 0) { 43166b9ea5a6SRoopa Prabhu struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 43176b9ea5a6SRoopa Prabhu 43186b9ea5a6SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_GATEWAY); 43196b9ea5a6SRoopa Prabhu if (nla) { 43206b9ea5a6SRoopa Prabhu nla_memcpy(&r_cfg.fc_gateway, nla, 16); 43216b9ea5a6SRoopa Prabhu r_cfg.fc_flags |= RTF_GATEWAY; 43226b9ea5a6SRoopa Prabhu } 43236b9ea5a6SRoopa Prabhu } 4324333c4301SDavid Ahern err = ip6_route_del(&r_cfg, extack); 43256b9ea5a6SRoopa Prabhu if (err) 43266b9ea5a6SRoopa Prabhu last_err = err; 43276b9ea5a6SRoopa Prabhu 432851ebd318SNicolas Dichtel rtnh = rtnh_next(rtnh, &remaining); 432951ebd318SNicolas Dichtel } 433051ebd318SNicolas Dichtel 433151ebd318SNicolas Dichtel return last_err; 433251ebd318SNicolas Dichtel } 433351ebd318SNicolas Dichtel 4334c21ef3e3SDavid Ahern static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4335c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 43361da177e4SLinus Torvalds { 433786872cb5SThomas Graf struct fib6_config cfg; 433886872cb5SThomas Graf int err; 43391da177e4SLinus Torvalds 4340333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 434186872cb5SThomas Graf if (err < 0) 434286872cb5SThomas Graf return err; 434386872cb5SThomas Graf 434451ebd318SNicolas Dichtel if (cfg.fc_mp) 4345333c4301SDavid Ahern return ip6_route_multipath_del(&cfg, extack); 43460ae81335SDavid Ahern else { 43470ae81335SDavid Ahern cfg.fc_delete_all_nh = 1; 4348333c4301SDavid Ahern return ip6_route_del(&cfg, extack); 43491da177e4SLinus Torvalds } 43500ae81335SDavid Ahern } 43511da177e4SLinus Torvalds 4352c21ef3e3SDavid Ahern static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4353c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 43541da177e4SLinus Torvalds { 435586872cb5SThomas Graf struct fib6_config cfg; 435686872cb5SThomas Graf int err; 43571da177e4SLinus Torvalds 4358333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 435986872cb5SThomas Graf if (err < 0) 436086872cb5SThomas Graf return err; 436186872cb5SThomas Graf 436251ebd318SNicolas Dichtel if (cfg.fc_mp) 4363333c4301SDavid Ahern return ip6_route_multipath_add(&cfg, extack); 436451ebd318SNicolas Dichtel else 4365333c4301SDavid Ahern return ip6_route_add(&cfg, extack); 43661da177e4SLinus Torvalds } 43671da177e4SLinus Torvalds 4368beb1afacSDavid Ahern static size_t rt6_nlmsg_size(struct rt6_info *rt) 4369339bf98fSThomas Graf { 4370beb1afacSDavid Ahern int nexthop_len = 0; 4371beb1afacSDavid Ahern 4372beb1afacSDavid Ahern if (rt->rt6i_nsiblings) { 4373beb1afacSDavid Ahern nexthop_len = nla_total_size(0) /* RTA_MULTIPATH */ 4374beb1afacSDavid Ahern + NLA_ALIGN(sizeof(struct rtnexthop)) 4375beb1afacSDavid Ahern + nla_total_size(16) /* RTA_GATEWAY */ 4376beb1afacSDavid Ahern + lwtunnel_get_encap_size(rt->dst.lwtstate); 4377beb1afacSDavid Ahern 4378beb1afacSDavid Ahern nexthop_len *= rt->rt6i_nsiblings; 4379beb1afacSDavid Ahern } 4380beb1afacSDavid Ahern 4381339bf98fSThomas Graf return NLMSG_ALIGN(sizeof(struct rtmsg)) 4382339bf98fSThomas Graf + nla_total_size(16) /* RTA_SRC */ 4383339bf98fSThomas Graf + nla_total_size(16) /* RTA_DST */ 4384339bf98fSThomas Graf + nla_total_size(16) /* RTA_GATEWAY */ 4385339bf98fSThomas Graf + nla_total_size(16) /* RTA_PREFSRC */ 4386339bf98fSThomas Graf + nla_total_size(4) /* RTA_TABLE */ 4387339bf98fSThomas Graf + nla_total_size(4) /* RTA_IIF */ 4388339bf98fSThomas Graf + nla_total_size(4) /* RTA_OIF */ 4389339bf98fSThomas Graf + nla_total_size(4) /* RTA_PRIORITY */ 43906a2b9ce0SNoriaki TAKAMIYA + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */ 4391ea697639SDaniel Borkmann + nla_total_size(sizeof(struct rta_cacheinfo)) 4392c78ba6d6SLubomir Rintel + nla_total_size(TCP_CA_NAME_MAX) /* RTAX_CC_ALGO */ 439319e42e45SRoopa Prabhu + nla_total_size(1) /* RTA_PREF */ 4394beb1afacSDavid Ahern + lwtunnel_get_encap_size(rt->dst.lwtstate) 4395beb1afacSDavid Ahern + nexthop_len; 4396beb1afacSDavid Ahern } 4397beb1afacSDavid Ahern 4398beb1afacSDavid Ahern static int rt6_nexthop_info(struct sk_buff *skb, struct rt6_info *rt, 43995be083ceSDavid Ahern unsigned int *flags, bool skip_oif) 4400beb1afacSDavid Ahern { 4401f9d882eaSIdo Schimmel if (rt->rt6i_nh_flags & RTNH_F_DEAD) 4402f9d882eaSIdo Schimmel *flags |= RTNH_F_DEAD; 4403f9d882eaSIdo Schimmel 440444c9f2f2SIdo Schimmel if (rt->rt6i_nh_flags & RTNH_F_LINKDOWN) { 4405beb1afacSDavid Ahern *flags |= RTNH_F_LINKDOWN; 4406beb1afacSDavid Ahern if (rt->rt6i_idev->cnf.ignore_routes_with_linkdown) 4407beb1afacSDavid Ahern *flags |= RTNH_F_DEAD; 4408beb1afacSDavid Ahern } 4409beb1afacSDavid Ahern 4410beb1afacSDavid Ahern if (rt->rt6i_flags & RTF_GATEWAY) { 4411beb1afacSDavid Ahern if (nla_put_in6_addr(skb, RTA_GATEWAY, &rt->rt6i_gateway) < 0) 4412beb1afacSDavid Ahern goto nla_put_failure; 4413beb1afacSDavid Ahern } 4414beb1afacSDavid Ahern 4415fc1e64e1SDavid Ahern *flags |= (rt->rt6i_nh_flags & RTNH_F_ONLINK); 4416fe400799SIdo Schimmel if (rt->rt6i_nh_flags & RTNH_F_OFFLOAD) 441761e4d01eSIdo Schimmel *flags |= RTNH_F_OFFLOAD; 441861e4d01eSIdo Schimmel 44195be083ceSDavid Ahern /* not needed for multipath encoding b/c it has a rtnexthop struct */ 44205be083ceSDavid Ahern if (!skip_oif && rt->dst.dev && 4421beb1afacSDavid Ahern nla_put_u32(skb, RTA_OIF, rt->dst.dev->ifindex)) 4422beb1afacSDavid Ahern goto nla_put_failure; 4423beb1afacSDavid Ahern 4424beb1afacSDavid Ahern if (rt->dst.lwtstate && 4425beb1afacSDavid Ahern lwtunnel_fill_encap(skb, rt->dst.lwtstate) < 0) 4426beb1afacSDavid Ahern goto nla_put_failure; 4427beb1afacSDavid Ahern 4428beb1afacSDavid Ahern return 0; 4429beb1afacSDavid Ahern 4430beb1afacSDavid Ahern nla_put_failure: 4431beb1afacSDavid Ahern return -EMSGSIZE; 4432beb1afacSDavid Ahern } 4433beb1afacSDavid Ahern 44345be083ceSDavid Ahern /* add multipath next hop */ 4435beb1afacSDavid Ahern static int rt6_add_nexthop(struct sk_buff *skb, struct rt6_info *rt) 4436beb1afacSDavid Ahern { 4437beb1afacSDavid Ahern struct rtnexthop *rtnh; 4438beb1afacSDavid Ahern unsigned int flags = 0; 4439beb1afacSDavid Ahern 4440beb1afacSDavid Ahern rtnh = nla_reserve_nohdr(skb, sizeof(*rtnh)); 4441beb1afacSDavid Ahern if (!rtnh) 4442beb1afacSDavid Ahern goto nla_put_failure; 4443beb1afacSDavid Ahern 4444398958aeSIdo Schimmel rtnh->rtnh_hops = rt->rt6i_nh_weight - 1; 4445beb1afacSDavid Ahern rtnh->rtnh_ifindex = rt->dst.dev ? rt->dst.dev->ifindex : 0; 4446beb1afacSDavid Ahern 44475be083ceSDavid Ahern if (rt6_nexthop_info(skb, rt, &flags, true) < 0) 4448beb1afacSDavid Ahern goto nla_put_failure; 4449beb1afacSDavid Ahern 4450beb1afacSDavid Ahern rtnh->rtnh_flags = flags; 4451beb1afacSDavid Ahern 4452beb1afacSDavid Ahern /* length of rtnetlink header + attributes */ 4453beb1afacSDavid Ahern rtnh->rtnh_len = nlmsg_get_pos(skb) - (void *)rtnh; 4454beb1afacSDavid Ahern 4455beb1afacSDavid Ahern return 0; 4456beb1afacSDavid Ahern 4457beb1afacSDavid Ahern nla_put_failure: 4458beb1afacSDavid Ahern return -EMSGSIZE; 4459339bf98fSThomas Graf } 4460339bf98fSThomas Graf 4461191cd582SBrian Haley static int rt6_fill_node(struct net *net, 4462191cd582SBrian Haley struct sk_buff *skb, struct rt6_info *rt, 44630d51aa80SJamal Hadi Salim struct in6_addr *dst, struct in6_addr *src, 446415e47304SEric W. Biederman int iif, int type, u32 portid, u32 seq, 4465f8cfe2ceSDavid Ahern unsigned int flags) 44661da177e4SLinus Torvalds { 44674b32b5adSMartin KaFai Lau u32 metrics[RTAX_MAX]; 44681da177e4SLinus Torvalds struct rtmsg *rtm; 44691da177e4SLinus Torvalds struct nlmsghdr *nlh; 4470e3703b3dSThomas Graf long expires; 44719e762a4aSPatrick McHardy u32 table; 44721da177e4SLinus Torvalds 447315e47304SEric W. Biederman nlh = nlmsg_put(skb, portid, seq, type, sizeof(*rtm), flags); 447438308473SDavid S. Miller if (!nlh) 447526932566SPatrick McHardy return -EMSGSIZE; 44762d7202bfSThomas Graf 44772d7202bfSThomas Graf rtm = nlmsg_data(nlh); 44781da177e4SLinus Torvalds rtm->rtm_family = AF_INET6; 44791da177e4SLinus Torvalds rtm->rtm_dst_len = rt->rt6i_dst.plen; 44801da177e4SLinus Torvalds rtm->rtm_src_len = rt->rt6i_src.plen; 44811da177e4SLinus Torvalds rtm->rtm_tos = 0; 4482c71099acSThomas Graf if (rt->rt6i_table) 44839e762a4aSPatrick McHardy table = rt->rt6i_table->tb6_id; 4484c71099acSThomas Graf else 44859e762a4aSPatrick McHardy table = RT6_TABLE_UNSPEC; 44869e762a4aSPatrick McHardy rtm->rtm_table = table; 4487c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_TABLE, table)) 4488c78679e8SDavid S. Miller goto nla_put_failure; 4489ef2c7d7bSNicolas Dichtel if (rt->rt6i_flags & RTF_REJECT) { 4490ef2c7d7bSNicolas Dichtel switch (rt->dst.error) { 4491ef2c7d7bSNicolas Dichtel case -EINVAL: 4492ef2c7d7bSNicolas Dichtel rtm->rtm_type = RTN_BLACKHOLE; 4493ef2c7d7bSNicolas Dichtel break; 4494ef2c7d7bSNicolas Dichtel case -EACCES: 4495ef2c7d7bSNicolas Dichtel rtm->rtm_type = RTN_PROHIBIT; 4496ef2c7d7bSNicolas Dichtel break; 4497b4949ab2SNicolas Dichtel case -EAGAIN: 4498b4949ab2SNicolas Dichtel rtm->rtm_type = RTN_THROW; 4499b4949ab2SNicolas Dichtel break; 4500ef2c7d7bSNicolas Dichtel default: 45011da177e4SLinus Torvalds rtm->rtm_type = RTN_UNREACHABLE; 4502ef2c7d7bSNicolas Dichtel break; 4503ef2c7d7bSNicolas Dichtel } 4504ef2c7d7bSNicolas Dichtel } 4505ab79ad14SMaciej Żenczykowski else if (rt->rt6i_flags & RTF_LOCAL) 4506ab79ad14SMaciej Żenczykowski rtm->rtm_type = RTN_LOCAL; 45074ee39733SDavid Ahern else if (rt->rt6i_flags & RTF_ANYCAST) 45084ee39733SDavid Ahern rtm->rtm_type = RTN_ANYCAST; 4509d1918542SDavid S. Miller else if (rt->dst.dev && (rt->dst.dev->flags & IFF_LOOPBACK)) 45101da177e4SLinus Torvalds rtm->rtm_type = RTN_LOCAL; 45111da177e4SLinus Torvalds else 45121da177e4SLinus Torvalds rtm->rtm_type = RTN_UNICAST; 45131da177e4SLinus Torvalds rtm->rtm_flags = 0; 45141da177e4SLinus Torvalds rtm->rtm_scope = RT_SCOPE_UNIVERSE; 45151da177e4SLinus Torvalds rtm->rtm_protocol = rt->rt6i_protocol; 45161da177e4SLinus Torvalds 45171da177e4SLinus Torvalds if (rt->rt6i_flags & RTF_CACHE) 45181da177e4SLinus Torvalds rtm->rtm_flags |= RTM_F_CLONED; 45191da177e4SLinus Torvalds 45201da177e4SLinus Torvalds if (dst) { 4521930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_DST, dst)) 4522c78679e8SDavid S. Miller goto nla_put_failure; 45231da177e4SLinus Torvalds rtm->rtm_dst_len = 128; 45241da177e4SLinus Torvalds } else if (rtm->rtm_dst_len) 4525930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_DST, &rt->rt6i_dst.addr)) 4526c78679e8SDavid S. Miller goto nla_put_failure; 45271da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 45281da177e4SLinus Torvalds if (src) { 4529930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_SRC, src)) 4530c78679e8SDavid S. Miller goto nla_put_failure; 45311da177e4SLinus Torvalds rtm->rtm_src_len = 128; 4532c78679e8SDavid S. Miller } else if (rtm->rtm_src_len && 4533930345eaSJiri Benc nla_put_in6_addr(skb, RTA_SRC, &rt->rt6i_src.addr)) 4534c78679e8SDavid S. Miller goto nla_put_failure; 45351da177e4SLinus Torvalds #endif 45367bc570c8SYOSHIFUJI Hideaki if (iif) { 45377bc570c8SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_MROUTE 45387bc570c8SYOSHIFUJI Hideaki if (ipv6_addr_is_multicast(&rt->rt6i_dst.addr)) { 4539fd61c6baSDavid Ahern int err = ip6mr_get_route(net, skb, rtm, portid); 45402cf75070SNikolay Aleksandrov 45417bc570c8SYOSHIFUJI Hideaki if (err == 0) 45427bc570c8SYOSHIFUJI Hideaki return 0; 4543fd61c6baSDavid Ahern if (err < 0) 45447bc570c8SYOSHIFUJI Hideaki goto nla_put_failure; 45457bc570c8SYOSHIFUJI Hideaki } else 45467bc570c8SYOSHIFUJI Hideaki #endif 4547c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_IIF, iif)) 4548c78679e8SDavid S. Miller goto nla_put_failure; 45497bc570c8SYOSHIFUJI Hideaki } else if (dst) { 45501da177e4SLinus Torvalds struct in6_addr saddr_buf; 4551c78679e8SDavid S. Miller if (ip6_route_get_saddr(net, rt, dst, 0, &saddr_buf) == 0 && 4552930345eaSJiri Benc nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4553c78679e8SDavid S. Miller goto nla_put_failure; 4554c3968a85SDaniel Walter } 4555c3968a85SDaniel Walter 4556c3968a85SDaniel Walter if (rt->rt6i_prefsrc.plen) { 4557c3968a85SDaniel Walter struct in6_addr saddr_buf; 45584e3fd7a0SAlexey Dobriyan saddr_buf = rt->rt6i_prefsrc.addr; 4559930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4560c78679e8SDavid S. Miller goto nla_put_failure; 45611da177e4SLinus Torvalds } 45622d7202bfSThomas Graf 45634b32b5adSMartin KaFai Lau memcpy(metrics, dst_metrics_ptr(&rt->dst), sizeof(metrics)); 45644b32b5adSMartin KaFai Lau if (rt->rt6i_pmtu) 45654b32b5adSMartin KaFai Lau metrics[RTAX_MTU - 1] = rt->rt6i_pmtu; 45664b32b5adSMartin KaFai Lau if (rtnetlink_put_metrics(skb, metrics) < 0) 45672d7202bfSThomas Graf goto nla_put_failure; 45682d7202bfSThomas Graf 4569beb1afacSDavid Ahern if (nla_put_u32(skb, RTA_PRIORITY, rt->rt6i_metric)) 4570beb1afacSDavid Ahern goto nla_put_failure; 4571beb1afacSDavid Ahern 4572beb1afacSDavid Ahern /* For multipath routes, walk the siblings list and add 4573beb1afacSDavid Ahern * each as a nexthop within RTA_MULTIPATH. 4574beb1afacSDavid Ahern */ 4575beb1afacSDavid Ahern if (rt->rt6i_nsiblings) { 4576beb1afacSDavid Ahern struct rt6_info *sibling, *next_sibling; 4577beb1afacSDavid Ahern struct nlattr *mp; 4578beb1afacSDavid Ahern 4579beb1afacSDavid Ahern mp = nla_nest_start(skb, RTA_MULTIPATH); 4580beb1afacSDavid Ahern if (!mp) 4581beb1afacSDavid Ahern goto nla_put_failure; 4582beb1afacSDavid Ahern 4583beb1afacSDavid Ahern if (rt6_add_nexthop(skb, rt) < 0) 4584beb1afacSDavid Ahern goto nla_put_failure; 4585beb1afacSDavid Ahern 4586beb1afacSDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 4587beb1afacSDavid Ahern &rt->rt6i_siblings, rt6i_siblings) { 4588beb1afacSDavid Ahern if (rt6_add_nexthop(skb, sibling) < 0) 458994f826b8SEric Dumazet goto nla_put_failure; 459094f826b8SEric Dumazet } 45912d7202bfSThomas Graf 4592beb1afacSDavid Ahern nla_nest_end(skb, mp); 4593beb1afacSDavid Ahern } else { 45945be083ceSDavid Ahern if (rt6_nexthop_info(skb, rt, &rtm->rtm_flags, false) < 0) 4595c78679e8SDavid S. Miller goto nla_put_failure; 4596beb1afacSDavid Ahern } 45978253947eSLi Wei 45988253947eSLi Wei expires = (rt->rt6i_flags & RTF_EXPIRES) ? rt->dst.expires - jiffies : 0; 459969cdf8f9SYOSHIFUJI Hideaki 460087a50699SDavid S. Miller if (rtnl_put_cacheinfo(skb, &rt->dst, 0, expires, rt->dst.error) < 0) 4601e3703b3dSThomas Graf goto nla_put_failure; 46021da177e4SLinus Torvalds 4603c78ba6d6SLubomir Rintel if (nla_put_u8(skb, RTA_PREF, IPV6_EXTRACT_PREF(rt->rt6i_flags))) 4604c78ba6d6SLubomir Rintel goto nla_put_failure; 4605c78ba6d6SLubomir Rintel 460619e42e45SRoopa Prabhu 4607053c095aSJohannes Berg nlmsg_end(skb, nlh); 4608053c095aSJohannes Berg return 0; 46092d7202bfSThomas Graf 46102d7202bfSThomas Graf nla_put_failure: 461126932566SPatrick McHardy nlmsg_cancel(skb, nlh); 461226932566SPatrick McHardy return -EMSGSIZE; 46131da177e4SLinus Torvalds } 46141da177e4SLinus Torvalds 46151b43af54SPatrick McHardy int rt6_dump_route(struct rt6_info *rt, void *p_arg) 46161da177e4SLinus Torvalds { 46171da177e4SLinus Torvalds struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg; 46181f17e2f2SDavid Ahern struct net *net = arg->net; 46191f17e2f2SDavid Ahern 46201f17e2f2SDavid Ahern if (rt == net->ipv6.ip6_null_entry) 46211f17e2f2SDavid Ahern return 0; 46221da177e4SLinus Torvalds 46232d7202bfSThomas Graf if (nlmsg_len(arg->cb->nlh) >= sizeof(struct rtmsg)) { 46242d7202bfSThomas Graf struct rtmsg *rtm = nlmsg_data(arg->cb->nlh); 4625f8cfe2ceSDavid Ahern 4626f8cfe2ceSDavid Ahern /* user wants prefix routes only */ 4627f8cfe2ceSDavid Ahern if (rtm->rtm_flags & RTM_F_PREFIX && 4628f8cfe2ceSDavid Ahern !(rt->rt6i_flags & RTF_PREFIX_RT)) { 4629f8cfe2ceSDavid Ahern /* success since this is not a prefix route */ 4630f8cfe2ceSDavid Ahern return 1; 4631f8cfe2ceSDavid Ahern } 4632f8cfe2ceSDavid Ahern } 46331da177e4SLinus Torvalds 46341f17e2f2SDavid Ahern return rt6_fill_node(net, 4635191cd582SBrian Haley arg->skb, rt, NULL, NULL, 0, RTM_NEWROUTE, 463615e47304SEric W. Biederman NETLINK_CB(arg->cb->skb).portid, arg->cb->nlh->nlmsg_seq, 4637f8cfe2ceSDavid Ahern NLM_F_MULTI); 46381da177e4SLinus Torvalds } 46391da177e4SLinus Torvalds 4640c21ef3e3SDavid Ahern static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr *nlh, 4641c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 46421da177e4SLinus Torvalds { 46433b1e0a65SYOSHIFUJI Hideaki struct net *net = sock_net(in_skb->sk); 4644ab364a6fSThomas Graf struct nlattr *tb[RTA_MAX+1]; 464518c3a61cSRoopa Prabhu int err, iif = 0, oif = 0; 464618c3a61cSRoopa Prabhu struct dst_entry *dst; 46471da177e4SLinus Torvalds struct rt6_info *rt; 4648ab364a6fSThomas Graf struct sk_buff *skb; 4649ab364a6fSThomas Graf struct rtmsg *rtm; 46504c9483b2SDavid S. Miller struct flowi6 fl6; 465118c3a61cSRoopa Prabhu bool fibmatch; 4652ab364a6fSThomas Graf 4653fceb6435SJohannes Berg err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy, 4654c21ef3e3SDavid Ahern extack); 4655ab364a6fSThomas Graf if (err < 0) 4656ab364a6fSThomas Graf goto errout; 4657ab364a6fSThomas Graf 4658ab364a6fSThomas Graf err = -EINVAL; 46594c9483b2SDavid S. Miller memset(&fl6, 0, sizeof(fl6)); 466038b7097bSHannes Frederic Sowa rtm = nlmsg_data(nlh); 466138b7097bSHannes Frederic Sowa fl6.flowlabel = ip6_make_flowinfo(rtm->rtm_tos, 0); 466218c3a61cSRoopa Prabhu fibmatch = !!(rtm->rtm_flags & RTM_F_FIB_MATCH); 4663ab364a6fSThomas Graf 4664ab364a6fSThomas Graf if (tb[RTA_SRC]) { 4665ab364a6fSThomas Graf if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr)) 4666ab364a6fSThomas Graf goto errout; 4667ab364a6fSThomas Graf 46684e3fd7a0SAlexey Dobriyan fl6.saddr = *(struct in6_addr *)nla_data(tb[RTA_SRC]); 4669ab364a6fSThomas Graf } 4670ab364a6fSThomas Graf 4671ab364a6fSThomas Graf if (tb[RTA_DST]) { 4672ab364a6fSThomas Graf if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr)) 4673ab364a6fSThomas Graf goto errout; 4674ab364a6fSThomas Graf 46754e3fd7a0SAlexey Dobriyan fl6.daddr = *(struct in6_addr *)nla_data(tb[RTA_DST]); 4676ab364a6fSThomas Graf } 4677ab364a6fSThomas Graf 4678ab364a6fSThomas Graf if (tb[RTA_IIF]) 4679ab364a6fSThomas Graf iif = nla_get_u32(tb[RTA_IIF]); 4680ab364a6fSThomas Graf 4681ab364a6fSThomas Graf if (tb[RTA_OIF]) 468272331bc0SShmulik Ladkani oif = nla_get_u32(tb[RTA_OIF]); 4683ab364a6fSThomas Graf 46842e47b291SLorenzo Colitti if (tb[RTA_MARK]) 46852e47b291SLorenzo Colitti fl6.flowi6_mark = nla_get_u32(tb[RTA_MARK]); 46862e47b291SLorenzo Colitti 4687622ec2c9SLorenzo Colitti if (tb[RTA_UID]) 4688622ec2c9SLorenzo Colitti fl6.flowi6_uid = make_kuid(current_user_ns(), 4689622ec2c9SLorenzo Colitti nla_get_u32(tb[RTA_UID])); 4690622ec2c9SLorenzo Colitti else 4691622ec2c9SLorenzo Colitti fl6.flowi6_uid = iif ? INVALID_UID : current_uid(); 4692622ec2c9SLorenzo Colitti 4693ab364a6fSThomas Graf if (iif) { 4694ab364a6fSThomas Graf struct net_device *dev; 469572331bc0SShmulik Ladkani int flags = 0; 469672331bc0SShmulik Ladkani 4697121622dbSFlorian Westphal rcu_read_lock(); 4698121622dbSFlorian Westphal 4699121622dbSFlorian Westphal dev = dev_get_by_index_rcu(net, iif); 4700ab364a6fSThomas Graf if (!dev) { 4701121622dbSFlorian Westphal rcu_read_unlock(); 4702ab364a6fSThomas Graf err = -ENODEV; 4703ab364a6fSThomas Graf goto errout; 4704ab364a6fSThomas Graf } 470572331bc0SShmulik Ladkani 470672331bc0SShmulik Ladkani fl6.flowi6_iif = iif; 470772331bc0SShmulik Ladkani 470872331bc0SShmulik Ladkani if (!ipv6_addr_any(&fl6.saddr)) 470972331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_HAS_SADDR; 471072331bc0SShmulik Ladkani 4711b75cc8f9SDavid Ahern dst = ip6_route_input_lookup(net, dev, &fl6, NULL, flags); 4712121622dbSFlorian Westphal 4713121622dbSFlorian Westphal rcu_read_unlock(); 471472331bc0SShmulik Ladkani } else { 471572331bc0SShmulik Ladkani fl6.flowi6_oif = oif; 471672331bc0SShmulik Ladkani 471718c3a61cSRoopa Prabhu dst = ip6_route_output(net, NULL, &fl6); 471818c3a61cSRoopa Prabhu } 471918c3a61cSRoopa Prabhu 472018c3a61cSRoopa Prabhu 472118c3a61cSRoopa Prabhu rt = container_of(dst, struct rt6_info, dst); 472218c3a61cSRoopa Prabhu if (rt->dst.error) { 472318c3a61cSRoopa Prabhu err = rt->dst.error; 472418c3a61cSRoopa Prabhu ip6_rt_put(rt); 472518c3a61cSRoopa Prabhu goto errout; 4726ab364a6fSThomas Graf } 47271da177e4SLinus Torvalds 47289d6acb3bSWANG Cong if (rt == net->ipv6.ip6_null_entry) { 47299d6acb3bSWANG Cong err = rt->dst.error; 47309d6acb3bSWANG Cong ip6_rt_put(rt); 47319d6acb3bSWANG Cong goto errout; 47329d6acb3bSWANG Cong } 47339d6acb3bSWANG Cong 4734fba961abSDavid S. Miller if (fibmatch && rt->from) { 4735fba961abSDavid S. Miller struct rt6_info *ort = rt->from; 473658acfd71SIdo Schimmel 473758acfd71SIdo Schimmel dst_hold(&ort->dst); 473858acfd71SIdo Schimmel ip6_rt_put(rt); 473958acfd71SIdo Schimmel rt = ort; 474058acfd71SIdo Schimmel } 474158acfd71SIdo Schimmel 47421da177e4SLinus Torvalds skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL); 474338308473SDavid S. Miller if (!skb) { 474494e187c0SAmerigo Wang ip6_rt_put(rt); 4745ab364a6fSThomas Graf err = -ENOBUFS; 4746ab364a6fSThomas Graf goto errout; 4747ab364a6fSThomas Graf } 47481da177e4SLinus Torvalds 4749d8d1f30bSChangli Gao skb_dst_set(skb, &rt->dst); 475018c3a61cSRoopa Prabhu if (fibmatch) 475118c3a61cSRoopa Prabhu err = rt6_fill_node(net, skb, rt, NULL, NULL, iif, 475218c3a61cSRoopa Prabhu RTM_NEWROUTE, NETLINK_CB(in_skb).portid, 475318c3a61cSRoopa Prabhu nlh->nlmsg_seq, 0); 475418c3a61cSRoopa Prabhu else 47554c9483b2SDavid S. Miller err = rt6_fill_node(net, skb, rt, &fl6.daddr, &fl6.saddr, iif, 475615e47304SEric W. Biederman RTM_NEWROUTE, NETLINK_CB(in_skb).portid, 4757f8cfe2ceSDavid Ahern nlh->nlmsg_seq, 0); 47581da177e4SLinus Torvalds if (err < 0) { 4759ab364a6fSThomas Graf kfree_skb(skb); 4760ab364a6fSThomas Graf goto errout; 47611da177e4SLinus Torvalds } 47621da177e4SLinus Torvalds 476315e47304SEric W. Biederman err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).portid); 4764ab364a6fSThomas Graf errout: 47651da177e4SLinus Torvalds return err; 47661da177e4SLinus Torvalds } 47671da177e4SLinus Torvalds 476837a1d361SRoopa Prabhu void inet6_rt_notify(int event, struct rt6_info *rt, struct nl_info *info, 476937a1d361SRoopa Prabhu unsigned int nlm_flags) 47701da177e4SLinus Torvalds { 47711da177e4SLinus Torvalds struct sk_buff *skb; 47725578689aSDaniel Lezcano struct net *net = info->nl_net; 4773528c4cebSDenis V. Lunev u32 seq; 4774528c4cebSDenis V. Lunev int err; 47750d51aa80SJamal Hadi Salim 4776528c4cebSDenis V. Lunev err = -ENOBUFS; 477738308473SDavid S. Miller seq = info->nlh ? info->nlh->nlmsg_seq : 0; 477886872cb5SThomas Graf 477919e42e45SRoopa Prabhu skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 478038308473SDavid S. Miller if (!skb) 478121713ebcSThomas Graf goto errout; 47821da177e4SLinus Torvalds 4783191cd582SBrian Haley err = rt6_fill_node(net, skb, rt, NULL, NULL, 0, 4784f8cfe2ceSDavid Ahern event, info->portid, seq, nlm_flags); 478526932566SPatrick McHardy if (err < 0) { 478626932566SPatrick McHardy /* -EMSGSIZE implies BUG in rt6_nlmsg_size() */ 478726932566SPatrick McHardy WARN_ON(err == -EMSGSIZE); 478826932566SPatrick McHardy kfree_skb(skb); 478926932566SPatrick McHardy goto errout; 479026932566SPatrick McHardy } 479115e47304SEric W. Biederman rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 47925578689aSDaniel Lezcano info->nlh, gfp_any()); 47931ce85fe4SPablo Neira Ayuso return; 479421713ebcSThomas Graf errout: 479521713ebcSThomas Graf if (err < 0) 47965578689aSDaniel Lezcano rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err); 47971da177e4SLinus Torvalds } 47981da177e4SLinus Torvalds 47998ed67789SDaniel Lezcano static int ip6_route_dev_notify(struct notifier_block *this, 4800351638e7SJiri Pirko unsigned long event, void *ptr) 48018ed67789SDaniel Lezcano { 4802351638e7SJiri Pirko struct net_device *dev = netdev_notifier_info_to_dev(ptr); 4803c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 48048ed67789SDaniel Lezcano 4805242d3a49SWANG Cong if (!(dev->flags & IFF_LOOPBACK)) 4806242d3a49SWANG Cong return NOTIFY_OK; 4807242d3a49SWANG Cong 4808242d3a49SWANG Cong if (event == NETDEV_REGISTER) { 4809d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.dev = dev; 48108ed67789SDaniel Lezcano net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev); 48118ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 4812d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.dev = dev; 48138ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev); 4814d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.dev = dev; 48158ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev); 48168ed67789SDaniel Lezcano #endif 481776da0704SWANG Cong } else if (event == NETDEV_UNREGISTER && 481876da0704SWANG Cong dev->reg_state != NETREG_UNREGISTERED) { 481976da0704SWANG Cong /* NETDEV_UNREGISTER could be fired for multiple times by 482076da0704SWANG Cong * netdev_wait_allrefs(). Make sure we only call this once. 482176da0704SWANG Cong */ 482212d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_null_entry->rt6i_idev); 4823242d3a49SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 482412d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_prohibit_entry->rt6i_idev); 482512d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_blk_hole_entry->rt6i_idev); 4826242d3a49SWANG Cong #endif 48278ed67789SDaniel Lezcano } 48288ed67789SDaniel Lezcano 48298ed67789SDaniel Lezcano return NOTIFY_OK; 48308ed67789SDaniel Lezcano } 48318ed67789SDaniel Lezcano 48321da177e4SLinus Torvalds /* 48331da177e4SLinus Torvalds * /proc 48341da177e4SLinus Torvalds */ 48351da177e4SLinus Torvalds 48361da177e4SLinus Torvalds #ifdef CONFIG_PROC_FS 48371da177e4SLinus Torvalds 483833120b30SAlexey Dobriyan static const struct file_operations ipv6_route_proc_fops = { 483933120b30SAlexey Dobriyan .open = ipv6_route_open, 484033120b30SAlexey Dobriyan .read = seq_read, 484133120b30SAlexey Dobriyan .llseek = seq_lseek, 48428d2ca1d7SHannes Frederic Sowa .release = seq_release_net, 484333120b30SAlexey Dobriyan }; 484433120b30SAlexey Dobriyan 48451da177e4SLinus Torvalds static int rt6_stats_seq_show(struct seq_file *seq, void *v) 48461da177e4SLinus Torvalds { 484769ddb805SDaniel Lezcano struct net *net = (struct net *)seq->private; 48481da177e4SLinus Torvalds seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n", 484969ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_nodes, 485069ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_route_nodes, 485181eb8447SWei Wang atomic_read(&net->ipv6.rt6_stats->fib_rt_alloc), 485269ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_entries, 485369ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_cache, 4854fc66f95cSEric Dumazet dst_entries_get_slow(&net->ipv6.ip6_dst_ops), 485569ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_discarded_routes); 48561da177e4SLinus Torvalds 48571da177e4SLinus Torvalds return 0; 48581da177e4SLinus Torvalds } 48591da177e4SLinus Torvalds 48601da177e4SLinus Torvalds static int rt6_stats_seq_open(struct inode *inode, struct file *file) 48611da177e4SLinus Torvalds { 4862de05c557SPavel Emelyanov return single_open_net(inode, file, rt6_stats_seq_show); 486369ddb805SDaniel Lezcano } 486469ddb805SDaniel Lezcano 48659a32144eSArjan van de Ven static const struct file_operations rt6_stats_seq_fops = { 48661da177e4SLinus Torvalds .open = rt6_stats_seq_open, 48671da177e4SLinus Torvalds .read = seq_read, 48681da177e4SLinus Torvalds .llseek = seq_lseek, 4869b6fcbdb4SPavel Emelyanov .release = single_release_net, 48701da177e4SLinus Torvalds }; 48711da177e4SLinus Torvalds #endif /* CONFIG_PROC_FS */ 48721da177e4SLinus Torvalds 48731da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 48741da177e4SLinus Torvalds 48751da177e4SLinus Torvalds static 4876fe2c6338SJoe Perches int ipv6_sysctl_rtcache_flush(struct ctl_table *ctl, int write, 48771da177e4SLinus Torvalds void __user *buffer, size_t *lenp, loff_t *ppos) 48781da177e4SLinus Torvalds { 4879c486da34SLucian Adrian Grijincu struct net *net; 4880c486da34SLucian Adrian Grijincu int delay; 4881c486da34SLucian Adrian Grijincu if (!write) 4882c486da34SLucian Adrian Grijincu return -EINVAL; 4883c486da34SLucian Adrian Grijincu 4884c486da34SLucian Adrian Grijincu net = (struct net *)ctl->extra1; 4885c486da34SLucian Adrian Grijincu delay = net->ipv6.sysctl.flush_delay; 48868d65af78SAlexey Dobriyan proc_dointvec(ctl, write, buffer, lenp, ppos); 48872ac3ac8fSMichal Kubeček fib6_run_gc(delay <= 0 ? 0 : (unsigned long)delay, net, delay > 0); 48881da177e4SLinus Torvalds return 0; 48891da177e4SLinus Torvalds } 48901da177e4SLinus Torvalds 4891fe2c6338SJoe Perches struct ctl_table ipv6_route_table_template[] = { 48921da177e4SLinus Torvalds { 48931da177e4SLinus Torvalds .procname = "flush", 48944990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.flush_delay, 48951da177e4SLinus Torvalds .maxlen = sizeof(int), 489689c8b3a1SDave Jones .mode = 0200, 48976d9f239aSAlexey Dobriyan .proc_handler = ipv6_sysctl_rtcache_flush 48981da177e4SLinus Torvalds }, 48991da177e4SLinus Torvalds { 49001da177e4SLinus Torvalds .procname = "gc_thresh", 49019a7ec3a9SDaniel Lezcano .data = &ip6_dst_ops_template.gc_thresh, 49021da177e4SLinus Torvalds .maxlen = sizeof(int), 49031da177e4SLinus Torvalds .mode = 0644, 49046d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 49051da177e4SLinus Torvalds }, 49061da177e4SLinus Torvalds { 49071da177e4SLinus Torvalds .procname = "max_size", 49084990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_max_size, 49091da177e4SLinus Torvalds .maxlen = sizeof(int), 49101da177e4SLinus Torvalds .mode = 0644, 49116d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 49121da177e4SLinus Torvalds }, 49131da177e4SLinus Torvalds { 49141da177e4SLinus Torvalds .procname = "gc_min_interval", 49154990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 49161da177e4SLinus Torvalds .maxlen = sizeof(int), 49171da177e4SLinus Torvalds .mode = 0644, 49186d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 49191da177e4SLinus Torvalds }, 49201da177e4SLinus Torvalds { 49211da177e4SLinus Torvalds .procname = "gc_timeout", 49224990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_timeout, 49231da177e4SLinus Torvalds .maxlen = sizeof(int), 49241da177e4SLinus Torvalds .mode = 0644, 49256d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 49261da177e4SLinus Torvalds }, 49271da177e4SLinus Torvalds { 49281da177e4SLinus Torvalds .procname = "gc_interval", 49294990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_interval, 49301da177e4SLinus Torvalds .maxlen = sizeof(int), 49311da177e4SLinus Torvalds .mode = 0644, 49326d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 49331da177e4SLinus Torvalds }, 49341da177e4SLinus Torvalds { 49351da177e4SLinus Torvalds .procname = "gc_elasticity", 49364990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_elasticity, 49371da177e4SLinus Torvalds .maxlen = sizeof(int), 49381da177e4SLinus Torvalds .mode = 0644, 4939f3d3f616SMin Zhang .proc_handler = proc_dointvec, 49401da177e4SLinus Torvalds }, 49411da177e4SLinus Torvalds { 49421da177e4SLinus Torvalds .procname = "mtu_expires", 49434990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_mtu_expires, 49441da177e4SLinus Torvalds .maxlen = sizeof(int), 49451da177e4SLinus Torvalds .mode = 0644, 49466d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 49471da177e4SLinus Torvalds }, 49481da177e4SLinus Torvalds { 49491da177e4SLinus Torvalds .procname = "min_adv_mss", 49504990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_min_advmss, 49511da177e4SLinus Torvalds .maxlen = sizeof(int), 49521da177e4SLinus Torvalds .mode = 0644, 4953f3d3f616SMin Zhang .proc_handler = proc_dointvec, 49541da177e4SLinus Torvalds }, 49551da177e4SLinus Torvalds { 49561da177e4SLinus Torvalds .procname = "gc_min_interval_ms", 49574990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 49581da177e4SLinus Torvalds .maxlen = sizeof(int), 49591da177e4SLinus Torvalds .mode = 0644, 49606d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_ms_jiffies, 49611da177e4SLinus Torvalds }, 4962f8572d8fSEric W. Biederman { } 49631da177e4SLinus Torvalds }; 49641da177e4SLinus Torvalds 49652c8c1e72SAlexey Dobriyan struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net) 4966760f2d01SDaniel Lezcano { 4967760f2d01SDaniel Lezcano struct ctl_table *table; 4968760f2d01SDaniel Lezcano 4969760f2d01SDaniel Lezcano table = kmemdup(ipv6_route_table_template, 4970760f2d01SDaniel Lezcano sizeof(ipv6_route_table_template), 4971760f2d01SDaniel Lezcano GFP_KERNEL); 49725ee09105SYOSHIFUJI Hideaki 49735ee09105SYOSHIFUJI Hideaki if (table) { 49745ee09105SYOSHIFUJI Hideaki table[0].data = &net->ipv6.sysctl.flush_delay; 4975c486da34SLucian Adrian Grijincu table[0].extra1 = net; 497686393e52SAlexey Dobriyan table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh; 49775ee09105SYOSHIFUJI Hideaki table[2].data = &net->ipv6.sysctl.ip6_rt_max_size; 49785ee09105SYOSHIFUJI Hideaki table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 49795ee09105SYOSHIFUJI Hideaki table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout; 49805ee09105SYOSHIFUJI Hideaki table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval; 49815ee09105SYOSHIFUJI Hideaki table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity; 49825ee09105SYOSHIFUJI Hideaki table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires; 49835ee09105SYOSHIFUJI Hideaki table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss; 49849c69fabeSAlexey Dobriyan table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 4985464dc801SEric W. Biederman 4986464dc801SEric W. Biederman /* Don't export sysctls to unprivileged users */ 4987464dc801SEric W. Biederman if (net->user_ns != &init_user_ns) 4988464dc801SEric W. Biederman table[0].procname = NULL; 49895ee09105SYOSHIFUJI Hideaki } 49905ee09105SYOSHIFUJI Hideaki 4991760f2d01SDaniel Lezcano return table; 4992760f2d01SDaniel Lezcano } 49931da177e4SLinus Torvalds #endif 49941da177e4SLinus Torvalds 49952c8c1e72SAlexey Dobriyan static int __net_init ip6_route_net_init(struct net *net) 4996cdb18761SDaniel Lezcano { 4997633d424bSPavel Emelyanov int ret = -ENOMEM; 49988ed67789SDaniel Lezcano 499986393e52SAlexey Dobriyan memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template, 500086393e52SAlexey Dobriyan sizeof(net->ipv6.ip6_dst_ops)); 5001f2fc6a54SBenjamin Thery 5002fc66f95cSEric Dumazet if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0) 5003fc66f95cSEric Dumazet goto out_ip6_dst_ops; 5004fc66f95cSEric Dumazet 50058ed67789SDaniel Lezcano net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template, 50068ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_null_entry), 50078ed67789SDaniel Lezcano GFP_KERNEL); 50088ed67789SDaniel Lezcano if (!net->ipv6.ip6_null_entry) 5009fc66f95cSEric Dumazet goto out_ip6_dst_entries; 5010d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops; 501162fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_null_entry->dst, 501262fa8a84SDavid S. Miller ip6_template_metrics, true); 50138ed67789SDaniel Lezcano 50148ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5015feca7d8cSVincent Bernat net->ipv6.fib6_has_custom_rules = false; 50168ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template, 50178ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_prohibit_entry), 50188ed67789SDaniel Lezcano GFP_KERNEL); 501968fffc67SPeter Zijlstra if (!net->ipv6.ip6_prohibit_entry) 502068fffc67SPeter Zijlstra goto out_ip6_null_entry; 5021d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops; 502262fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_prohibit_entry->dst, 502362fa8a84SDavid S. Miller ip6_template_metrics, true); 50248ed67789SDaniel Lezcano 50258ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template, 50268ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_blk_hole_entry), 50278ed67789SDaniel Lezcano GFP_KERNEL); 502868fffc67SPeter Zijlstra if (!net->ipv6.ip6_blk_hole_entry) 502968fffc67SPeter Zijlstra goto out_ip6_prohibit_entry; 5030d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops; 503162fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_blk_hole_entry->dst, 503262fa8a84SDavid S. Miller ip6_template_metrics, true); 50338ed67789SDaniel Lezcano #endif 50348ed67789SDaniel Lezcano 5035b339a47cSPeter Zijlstra net->ipv6.sysctl.flush_delay = 0; 5036b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_max_size = 4096; 5037b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2; 5038b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ; 5039b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ; 5040b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_elasticity = 9; 5041b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ; 5042b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40; 5043b339a47cSPeter Zijlstra 50446891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire = 30*HZ; 50456891a346SBenjamin Thery 50468ed67789SDaniel Lezcano ret = 0; 50478ed67789SDaniel Lezcano out: 50488ed67789SDaniel Lezcano return ret; 5049f2fc6a54SBenjamin Thery 505068fffc67SPeter Zijlstra #ifdef CONFIG_IPV6_MULTIPLE_TABLES 505168fffc67SPeter Zijlstra out_ip6_prohibit_entry: 505268fffc67SPeter Zijlstra kfree(net->ipv6.ip6_prohibit_entry); 505368fffc67SPeter Zijlstra out_ip6_null_entry: 505468fffc67SPeter Zijlstra kfree(net->ipv6.ip6_null_entry); 505568fffc67SPeter Zijlstra #endif 5056fc66f95cSEric Dumazet out_ip6_dst_entries: 5057fc66f95cSEric Dumazet dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5058f2fc6a54SBenjamin Thery out_ip6_dst_ops: 5059f2fc6a54SBenjamin Thery goto out; 5060cdb18761SDaniel Lezcano } 5061cdb18761SDaniel Lezcano 50622c8c1e72SAlexey Dobriyan static void __net_exit ip6_route_net_exit(struct net *net) 5063cdb18761SDaniel Lezcano { 50648ed67789SDaniel Lezcano kfree(net->ipv6.ip6_null_entry); 50658ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 50668ed67789SDaniel Lezcano kfree(net->ipv6.ip6_prohibit_entry); 50678ed67789SDaniel Lezcano kfree(net->ipv6.ip6_blk_hole_entry); 50688ed67789SDaniel Lezcano #endif 506941bb78b4SXiaotian Feng dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5070cdb18761SDaniel Lezcano } 5071cdb18761SDaniel Lezcano 5072d189634eSThomas Graf static int __net_init ip6_route_net_init_late(struct net *net) 5073d189634eSThomas Graf { 5074d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5075d4beaa66SGao feng proc_create("ipv6_route", 0, net->proc_net, &ipv6_route_proc_fops); 5076d6444062SJoe Perches proc_create("rt6_stats", 0444, net->proc_net, &rt6_stats_seq_fops); 5077d189634eSThomas Graf #endif 5078d189634eSThomas Graf return 0; 5079d189634eSThomas Graf } 5080d189634eSThomas Graf 5081d189634eSThomas Graf static void __net_exit ip6_route_net_exit_late(struct net *net) 5082d189634eSThomas Graf { 5083d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5084ece31ffdSGao feng remove_proc_entry("ipv6_route", net->proc_net); 5085ece31ffdSGao feng remove_proc_entry("rt6_stats", net->proc_net); 5086d189634eSThomas Graf #endif 5087d189634eSThomas Graf } 5088d189634eSThomas Graf 5089cdb18761SDaniel Lezcano static struct pernet_operations ip6_route_net_ops = { 5090cdb18761SDaniel Lezcano .init = ip6_route_net_init, 5091cdb18761SDaniel Lezcano .exit = ip6_route_net_exit, 5092cdb18761SDaniel Lezcano }; 5093cdb18761SDaniel Lezcano 5094c3426b47SDavid S. Miller static int __net_init ipv6_inetpeer_init(struct net *net) 5095c3426b47SDavid S. Miller { 5096c3426b47SDavid S. Miller struct inet_peer_base *bp = kmalloc(sizeof(*bp), GFP_KERNEL); 5097c3426b47SDavid S. Miller 5098c3426b47SDavid S. Miller if (!bp) 5099c3426b47SDavid S. Miller return -ENOMEM; 5100c3426b47SDavid S. Miller inet_peer_base_init(bp); 5101c3426b47SDavid S. Miller net->ipv6.peers = bp; 5102c3426b47SDavid S. Miller return 0; 5103c3426b47SDavid S. Miller } 5104c3426b47SDavid S. Miller 5105c3426b47SDavid S. Miller static void __net_exit ipv6_inetpeer_exit(struct net *net) 5106c3426b47SDavid S. Miller { 5107c3426b47SDavid S. Miller struct inet_peer_base *bp = net->ipv6.peers; 5108c3426b47SDavid S. Miller 5109c3426b47SDavid S. Miller net->ipv6.peers = NULL; 511056a6b248SDavid S. Miller inetpeer_invalidate_tree(bp); 5111c3426b47SDavid S. Miller kfree(bp); 5112c3426b47SDavid S. Miller } 5113c3426b47SDavid S. Miller 51142b823f72SDavid S. Miller static struct pernet_operations ipv6_inetpeer_ops = { 5115c3426b47SDavid S. Miller .init = ipv6_inetpeer_init, 5116c3426b47SDavid S. Miller .exit = ipv6_inetpeer_exit, 5117c3426b47SDavid S. Miller }; 5118c3426b47SDavid S. Miller 5119d189634eSThomas Graf static struct pernet_operations ip6_route_net_late_ops = { 5120d189634eSThomas Graf .init = ip6_route_net_init_late, 5121d189634eSThomas Graf .exit = ip6_route_net_exit_late, 5122d189634eSThomas Graf }; 5123d189634eSThomas Graf 51248ed67789SDaniel Lezcano static struct notifier_block ip6_route_dev_notifier = { 51258ed67789SDaniel Lezcano .notifier_call = ip6_route_dev_notify, 5126242d3a49SWANG Cong .priority = ADDRCONF_NOTIFY_PRIORITY - 10, 51278ed67789SDaniel Lezcano }; 51288ed67789SDaniel Lezcano 51292f460933SWANG Cong void __init ip6_route_init_special_entries(void) 51302f460933SWANG Cong { 51312f460933SWANG Cong /* Registering of the loopback is done before this portion of code, 51322f460933SWANG Cong * the loopback reference in rt6_info will not be taken, do it 51332f460933SWANG Cong * manually for init_net */ 51342f460933SWANG Cong init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev; 51352f460933SWANG Cong init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 51362f460933SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 51372f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev; 51382f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 51392f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev; 51402f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 51412f460933SWANG Cong #endif 51422f460933SWANG Cong } 51432f460933SWANG Cong 5144433d49c3SDaniel Lezcano int __init ip6_route_init(void) 51451da177e4SLinus Torvalds { 5146433d49c3SDaniel Lezcano int ret; 51478d0b94afSMartin KaFai Lau int cpu; 5148433d49c3SDaniel Lezcano 51499a7ec3a9SDaniel Lezcano ret = -ENOMEM; 51509a7ec3a9SDaniel Lezcano ip6_dst_ops_template.kmem_cachep = 51519a7ec3a9SDaniel Lezcano kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0, 51529a7ec3a9SDaniel Lezcano SLAB_HWCACHE_ALIGN, NULL); 51539a7ec3a9SDaniel Lezcano if (!ip6_dst_ops_template.kmem_cachep) 5154c19a28e1SFernando Carrijo goto out; 515514e50e57SDavid S. Miller 5156fc66f95cSEric Dumazet ret = dst_entries_init(&ip6_dst_blackhole_ops); 51578ed67789SDaniel Lezcano if (ret) 5158bdb3289fSDaniel Lezcano goto out_kmem_cache; 5159bdb3289fSDaniel Lezcano 5160c3426b47SDavid S. Miller ret = register_pernet_subsys(&ipv6_inetpeer_ops); 5161c3426b47SDavid S. Miller if (ret) 5162e8803b6cSDavid S. Miller goto out_dst_entries; 51632a0c451aSThomas Graf 51647e52b33bSDavid S. Miller ret = register_pernet_subsys(&ip6_route_net_ops); 51657e52b33bSDavid S. Miller if (ret) 51667e52b33bSDavid S. Miller goto out_register_inetpeer; 5167c3426b47SDavid S. Miller 51685dc121e9SArnaud Ebalard ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep; 51695dc121e9SArnaud Ebalard 5170e8803b6cSDavid S. Miller ret = fib6_init(); 5171433d49c3SDaniel Lezcano if (ret) 51728ed67789SDaniel Lezcano goto out_register_subsys; 5173433d49c3SDaniel Lezcano 5174433d49c3SDaniel Lezcano ret = xfrm6_init(); 5175433d49c3SDaniel Lezcano if (ret) 5176e8803b6cSDavid S. Miller goto out_fib6_init; 5177c35b7e72SDaniel Lezcano 5178433d49c3SDaniel Lezcano ret = fib6_rules_init(); 5179433d49c3SDaniel Lezcano if (ret) 5180433d49c3SDaniel Lezcano goto xfrm6_init; 51817e5449c2SDaniel Lezcano 5182d189634eSThomas Graf ret = register_pernet_subsys(&ip6_route_net_late_ops); 5183d189634eSThomas Graf if (ret) 5184d189634eSThomas Graf goto fib6_rules_init; 5185d189634eSThomas Graf 518616feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_NEWROUTE, 518716feebcfSFlorian Westphal inet6_rtm_newroute, NULL, 0); 518816feebcfSFlorian Westphal if (ret < 0) 518916feebcfSFlorian Westphal goto out_register_late_subsys; 519016feebcfSFlorian Westphal 519116feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_DELROUTE, 519216feebcfSFlorian Westphal inet6_rtm_delroute, NULL, 0); 519316feebcfSFlorian Westphal if (ret < 0) 519416feebcfSFlorian Westphal goto out_register_late_subsys; 519516feebcfSFlorian Westphal 519616feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETROUTE, 519716feebcfSFlorian Westphal inet6_rtm_getroute, NULL, 519816feebcfSFlorian Westphal RTNL_FLAG_DOIT_UNLOCKED); 519916feebcfSFlorian Westphal if (ret < 0) 5200d189634eSThomas Graf goto out_register_late_subsys; 5201433d49c3SDaniel Lezcano 52028ed67789SDaniel Lezcano ret = register_netdevice_notifier(&ip6_route_dev_notifier); 5203cdb18761SDaniel Lezcano if (ret) 5204d189634eSThomas Graf goto out_register_late_subsys; 52058ed67789SDaniel Lezcano 52068d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 52078d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 52088d0b94afSMartin KaFai Lau 52098d0b94afSMartin KaFai Lau INIT_LIST_HEAD(&ul->head); 52108d0b94afSMartin KaFai Lau spin_lock_init(&ul->lock); 52118d0b94afSMartin KaFai Lau } 52128d0b94afSMartin KaFai Lau 5213433d49c3SDaniel Lezcano out: 5214433d49c3SDaniel Lezcano return ret; 5215433d49c3SDaniel Lezcano 5216d189634eSThomas Graf out_register_late_subsys: 521716feebcfSFlorian Westphal rtnl_unregister_all(PF_INET6); 5218d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5219433d49c3SDaniel Lezcano fib6_rules_init: 5220433d49c3SDaniel Lezcano fib6_rules_cleanup(); 5221433d49c3SDaniel Lezcano xfrm6_init: 5222433d49c3SDaniel Lezcano xfrm6_fini(); 52232a0c451aSThomas Graf out_fib6_init: 52242a0c451aSThomas Graf fib6_gc_cleanup(); 52258ed67789SDaniel Lezcano out_register_subsys: 52268ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 52277e52b33bSDavid S. Miller out_register_inetpeer: 52287e52b33bSDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 5229fc66f95cSEric Dumazet out_dst_entries: 5230fc66f95cSEric Dumazet dst_entries_destroy(&ip6_dst_blackhole_ops); 5231433d49c3SDaniel Lezcano out_kmem_cache: 5232f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 5233433d49c3SDaniel Lezcano goto out; 52341da177e4SLinus Torvalds } 52351da177e4SLinus Torvalds 52361da177e4SLinus Torvalds void ip6_route_cleanup(void) 52371da177e4SLinus Torvalds { 52388ed67789SDaniel Lezcano unregister_netdevice_notifier(&ip6_route_dev_notifier); 5239d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5240101367c2SThomas Graf fib6_rules_cleanup(); 52411da177e4SLinus Torvalds xfrm6_fini(); 52421da177e4SLinus Torvalds fib6_gc_cleanup(); 5243c3426b47SDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 52448ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 524541bb78b4SXiaotian Feng dst_entries_destroy(&ip6_dst_blackhole_ops); 5246f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 52471da177e4SLinus Torvalds } 5248