11da177e4SLinus Torvalds /* 21da177e4SLinus Torvalds * Linux INET6 implementation 31da177e4SLinus Torvalds * FIB front-end. 41da177e4SLinus Torvalds * 51da177e4SLinus Torvalds * Authors: 61da177e4SLinus Torvalds * Pedro Roque <roque@di.fc.ul.pt> 71da177e4SLinus Torvalds * 81da177e4SLinus Torvalds * This program is free software; you can redistribute it and/or 91da177e4SLinus Torvalds * modify it under the terms of the GNU General Public License 101da177e4SLinus Torvalds * as published by the Free Software Foundation; either version 111da177e4SLinus Torvalds * 2 of the License, or (at your option) any later version. 121da177e4SLinus Torvalds */ 131da177e4SLinus Torvalds 141da177e4SLinus Torvalds /* Changes: 151da177e4SLinus Torvalds * 161da177e4SLinus Torvalds * YOSHIFUJI Hideaki @USAGI 171da177e4SLinus Torvalds * reworked default router selection. 181da177e4SLinus Torvalds * - respect outgoing interface 191da177e4SLinus Torvalds * - select from (probably) reachable routers (i.e. 201da177e4SLinus Torvalds * routers in REACHABLE, STALE, DELAY or PROBE states). 211da177e4SLinus Torvalds * - always select the same router if it is (probably) 221da177e4SLinus Torvalds * reachable. otherwise, round-robin the list. 23c0bece9fSYOSHIFUJI Hideaki * Ville Nuorvala 24c0bece9fSYOSHIFUJI Hideaki * Fixed routing subtrees. 251da177e4SLinus Torvalds */ 261da177e4SLinus Torvalds 27f3213831SJoe Perches #define pr_fmt(fmt) "IPv6: " fmt 28f3213831SJoe Perches 294fc268d2SRandy Dunlap #include <linux/capability.h> 301da177e4SLinus Torvalds #include <linux/errno.h> 31bc3b2d7fSPaul Gortmaker #include <linux/export.h> 321da177e4SLinus Torvalds #include <linux/types.h> 331da177e4SLinus Torvalds #include <linux/times.h> 341da177e4SLinus Torvalds #include <linux/socket.h> 351da177e4SLinus Torvalds #include <linux/sockios.h> 361da177e4SLinus Torvalds #include <linux/net.h> 371da177e4SLinus Torvalds #include <linux/route.h> 381da177e4SLinus Torvalds #include <linux/netdevice.h> 391da177e4SLinus Torvalds #include <linux/in6.h> 407bc570c8SYOSHIFUJI Hideaki #include <linux/mroute6.h> 411da177e4SLinus Torvalds #include <linux/init.h> 421da177e4SLinus Torvalds #include <linux/if_arp.h> 431da177e4SLinus Torvalds #include <linux/proc_fs.h> 441da177e4SLinus Torvalds #include <linux/seq_file.h> 455b7c931dSDaniel Lezcano #include <linux/nsproxy.h> 465a0e3ad6STejun Heo #include <linux/slab.h> 4735732d01SWei Wang #include <linux/jhash.h> 48457c4cbcSEric W. Biederman #include <net/net_namespace.h> 491da177e4SLinus Torvalds #include <net/snmp.h> 501da177e4SLinus Torvalds #include <net/ipv6.h> 511da177e4SLinus Torvalds #include <net/ip6_fib.h> 521da177e4SLinus Torvalds #include <net/ip6_route.h> 531da177e4SLinus Torvalds #include <net/ndisc.h> 541da177e4SLinus Torvalds #include <net/addrconf.h> 551da177e4SLinus Torvalds #include <net/tcp.h> 561da177e4SLinus Torvalds #include <linux/rtnetlink.h> 571da177e4SLinus Torvalds #include <net/dst.h> 58904af04dSJiri Benc #include <net/dst_metadata.h> 591da177e4SLinus Torvalds #include <net/xfrm.h> 608d71740cSTom Tucker #include <net/netevent.h> 6121713ebcSThomas Graf #include <net/netlink.h> 6251ebd318SNicolas Dichtel #include <net/nexthop.h> 6319e42e45SRoopa Prabhu #include <net/lwtunnel.h> 64904af04dSJiri Benc #include <net/ip_tunnels.h> 65ca254490SDavid Ahern #include <net/l3mdev.h> 66eacb9384SRoopa Prabhu #include <net/ip.h> 677c0f6ba6SLinus Torvalds #include <linux/uaccess.h> 681da177e4SLinus Torvalds 691da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 701da177e4SLinus Torvalds #include <linux/sysctl.h> 711da177e4SLinus Torvalds #endif 721da177e4SLinus Torvalds 7330d444d3SDavid Ahern static int ip6_rt_type_to_error(u8 fib6_type); 7430d444d3SDavid Ahern 7530d444d3SDavid Ahern #define CREATE_TRACE_POINTS 7630d444d3SDavid Ahern #include <trace/events/fib6.h> 7730d444d3SDavid Ahern EXPORT_TRACEPOINT_SYMBOL_GPL(fib6_table_lookup); 7830d444d3SDavid Ahern #undef CREATE_TRACE_POINTS 7930d444d3SDavid Ahern 80afc154e9SHannes Frederic Sowa enum rt6_nud_state { 817e980569SJiri Benc RT6_NUD_FAIL_HARD = -3, 827e980569SJiri Benc RT6_NUD_FAIL_PROBE = -2, 837e980569SJiri Benc RT6_NUD_FAIL_DO_RR = -1, 84afc154e9SHannes Frederic Sowa RT6_NUD_SUCCEED = 1 85afc154e9SHannes Frederic Sowa }; 86afc154e9SHannes Frederic Sowa 871da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie); 880dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst); 89ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst); 901da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *); 911da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *); 921da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *, 931da177e4SLinus Torvalds struct net_device *dev, int how); 94569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops); 951da177e4SLinus Torvalds 961da177e4SLinus Torvalds static int ip6_pkt_discard(struct sk_buff *skb); 97ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb); 987150aedeSKamala R static int ip6_pkt_prohibit(struct sk_buff *skb); 99ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb); 1001da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb); 1016700c270SDavid S. Miller static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 1026700c270SDavid S. Miller struct sk_buff *skb, u32 mtu); 1036700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, 1046700c270SDavid S. Miller struct sk_buff *skb); 105702cea56SDavid Ahern static int rt6_score_route(const struct fib6_nh *nh, u32 fib6_flags, int oif, 106702cea56SDavid Ahern int strict); 1078d1c802bSDavid Ahern static size_t rt6_nlmsg_size(struct fib6_info *rt); 108d4ead6b3SDavid Ahern static int rt6_fill_node(struct net *net, struct sk_buff *skb, 1098d1c802bSDavid Ahern struct fib6_info *rt, struct dst_entry *dst, 110d4ead6b3SDavid Ahern struct in6_addr *dest, struct in6_addr *src, 11116a16cd3SDavid Ahern int iif, int type, u32 portid, u32 seq, 11216a16cd3SDavid Ahern unsigned int flags); 1137e4b5128SDavid Ahern static struct rt6_info *rt6_find_cached_rt(const struct fib6_result *res, 11435732d01SWei Wang struct in6_addr *daddr, 11535732d01SWei Wang struct in6_addr *saddr); 1161da177e4SLinus Torvalds 11770ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 1188d1c802bSDavid Ahern static struct fib6_info *rt6_add_route_info(struct net *net, 119b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 120830218c1SDavid Ahern const struct in6_addr *gwaddr, 121830218c1SDavid Ahern struct net_device *dev, 12295c96174SEric Dumazet unsigned int pref); 1238d1c802bSDavid Ahern static struct fib6_info *rt6_get_route_info(struct net *net, 124b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 125830218c1SDavid Ahern const struct in6_addr *gwaddr, 126830218c1SDavid Ahern struct net_device *dev); 12770ceb4f5SYOSHIFUJI Hideaki #endif 12870ceb4f5SYOSHIFUJI Hideaki 1298d0b94afSMartin KaFai Lau struct uncached_list { 1308d0b94afSMartin KaFai Lau spinlock_t lock; 1318d0b94afSMartin KaFai Lau struct list_head head; 1328d0b94afSMartin KaFai Lau }; 1338d0b94afSMartin KaFai Lau 1348d0b94afSMartin KaFai Lau static DEFINE_PER_CPU_ALIGNED(struct uncached_list, rt6_uncached_list); 1358d0b94afSMartin KaFai Lau 136510c321bSXin Long void rt6_uncached_list_add(struct rt6_info *rt) 1378d0b94afSMartin KaFai Lau { 1388d0b94afSMartin KaFai Lau struct uncached_list *ul = raw_cpu_ptr(&rt6_uncached_list); 1398d0b94afSMartin KaFai Lau 1408d0b94afSMartin KaFai Lau rt->rt6i_uncached_list = ul; 1418d0b94afSMartin KaFai Lau 1428d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1438d0b94afSMartin KaFai Lau list_add_tail(&rt->rt6i_uncached, &ul->head); 1448d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1458d0b94afSMartin KaFai Lau } 1468d0b94afSMartin KaFai Lau 147510c321bSXin Long void rt6_uncached_list_del(struct rt6_info *rt) 1488d0b94afSMartin KaFai Lau { 1498d0b94afSMartin KaFai Lau if (!list_empty(&rt->rt6i_uncached)) { 1508d0b94afSMartin KaFai Lau struct uncached_list *ul = rt->rt6i_uncached_list; 15181eb8447SWei Wang struct net *net = dev_net(rt->dst.dev); 1528d0b94afSMartin KaFai Lau 1538d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1548d0b94afSMartin KaFai Lau list_del(&rt->rt6i_uncached); 15581eb8447SWei Wang atomic_dec(&net->ipv6.rt6_stats->fib_rt_uncache); 1568d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1578d0b94afSMartin KaFai Lau } 1588d0b94afSMartin KaFai Lau } 1598d0b94afSMartin KaFai Lau 1608d0b94afSMartin KaFai Lau static void rt6_uncached_list_flush_dev(struct net *net, struct net_device *dev) 1618d0b94afSMartin KaFai Lau { 1628d0b94afSMartin KaFai Lau struct net_device *loopback_dev = net->loopback_dev; 1638d0b94afSMartin KaFai Lau int cpu; 1648d0b94afSMartin KaFai Lau 165e332bc67SEric W. Biederman if (dev == loopback_dev) 166e332bc67SEric W. Biederman return; 167e332bc67SEric W. Biederman 1688d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 1698d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 1708d0b94afSMartin KaFai Lau struct rt6_info *rt; 1718d0b94afSMartin KaFai Lau 1728d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1738d0b94afSMartin KaFai Lau list_for_each_entry(rt, &ul->head, rt6i_uncached) { 1748d0b94afSMartin KaFai Lau struct inet6_dev *rt_idev = rt->rt6i_idev; 1758d0b94afSMartin KaFai Lau struct net_device *rt_dev = rt->dst.dev; 1768d0b94afSMartin KaFai Lau 177e332bc67SEric W. Biederman if (rt_idev->dev == dev) { 1788d0b94afSMartin KaFai Lau rt->rt6i_idev = in6_dev_get(loopback_dev); 1798d0b94afSMartin KaFai Lau in6_dev_put(rt_idev); 1808d0b94afSMartin KaFai Lau } 1818d0b94afSMartin KaFai Lau 182e332bc67SEric W. Biederman if (rt_dev == dev) { 1838d0b94afSMartin KaFai Lau rt->dst.dev = loopback_dev; 1848d0b94afSMartin KaFai Lau dev_hold(rt->dst.dev); 1858d0b94afSMartin KaFai Lau dev_put(rt_dev); 1868d0b94afSMartin KaFai Lau } 1878d0b94afSMartin KaFai Lau } 1888d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1898d0b94afSMartin KaFai Lau } 1908d0b94afSMartin KaFai Lau } 1918d0b94afSMartin KaFai Lau 192f8a1b43bSDavid Ahern static inline const void *choose_neigh_daddr(const struct in6_addr *p, 193f894cbf8SDavid S. Miller struct sk_buff *skb, 194f894cbf8SDavid S. Miller const void *daddr) 19539232973SDavid S. Miller { 196a7563f34SDavid S. Miller if (!ipv6_addr_any(p)) 19739232973SDavid S. Miller return (const void *) p; 198f894cbf8SDavid S. Miller else if (skb) 199f894cbf8SDavid S. Miller return &ipv6_hdr(skb)->daddr; 20039232973SDavid S. Miller return daddr; 20139232973SDavid S. Miller } 20239232973SDavid S. Miller 203f8a1b43bSDavid Ahern struct neighbour *ip6_neigh_lookup(const struct in6_addr *gw, 204f8a1b43bSDavid Ahern struct net_device *dev, 205f894cbf8SDavid S. Miller struct sk_buff *skb, 206f894cbf8SDavid S. Miller const void *daddr) 207d3aaeb38SDavid S. Miller { 20839232973SDavid S. Miller struct neighbour *n; 20939232973SDavid S. Miller 210f8a1b43bSDavid Ahern daddr = choose_neigh_daddr(gw, skb, daddr); 211f8a1b43bSDavid Ahern n = __ipv6_neigh_lookup(dev, daddr); 212f83c7790SDavid S. Miller if (n) 213f83c7790SDavid S. Miller return n; 2147adf3246SStefano Brivio 2157adf3246SStefano Brivio n = neigh_create(&nd_tbl, daddr, dev); 2167adf3246SStefano Brivio return IS_ERR(n) ? NULL : n; 217f8a1b43bSDavid Ahern } 218f8a1b43bSDavid Ahern 219f8a1b43bSDavid Ahern static struct neighbour *ip6_dst_neigh_lookup(const struct dst_entry *dst, 220f8a1b43bSDavid Ahern struct sk_buff *skb, 221f8a1b43bSDavid Ahern const void *daddr) 222f8a1b43bSDavid Ahern { 223f8a1b43bSDavid Ahern const struct rt6_info *rt = container_of(dst, struct rt6_info, dst); 224f8a1b43bSDavid Ahern 225f8a1b43bSDavid Ahern return ip6_neigh_lookup(&rt->rt6i_gateway, dst->dev, skb, daddr); 226f83c7790SDavid S. Miller } 227f83c7790SDavid S. Miller 22863fca65dSJulian Anastasov static void ip6_confirm_neigh(const struct dst_entry *dst, const void *daddr) 22963fca65dSJulian Anastasov { 23063fca65dSJulian Anastasov struct net_device *dev = dst->dev; 23163fca65dSJulian Anastasov struct rt6_info *rt = (struct rt6_info *)dst; 23263fca65dSJulian Anastasov 233f8a1b43bSDavid Ahern daddr = choose_neigh_daddr(&rt->rt6i_gateway, NULL, daddr); 23463fca65dSJulian Anastasov if (!daddr) 23563fca65dSJulian Anastasov return; 23663fca65dSJulian Anastasov if (dev->flags & (IFF_NOARP | IFF_LOOPBACK)) 23763fca65dSJulian Anastasov return; 23863fca65dSJulian Anastasov if (ipv6_addr_is_multicast((const struct in6_addr *)daddr)) 23963fca65dSJulian Anastasov return; 24063fca65dSJulian Anastasov __ipv6_confirm_neigh(dev, daddr); 24163fca65dSJulian Anastasov } 24263fca65dSJulian Anastasov 2439a7ec3a9SDaniel Lezcano static struct dst_ops ip6_dst_ops_template = { 2441da177e4SLinus Torvalds .family = AF_INET6, 2451da177e4SLinus Torvalds .gc = ip6_dst_gc, 2461da177e4SLinus Torvalds .gc_thresh = 1024, 2471da177e4SLinus Torvalds .check = ip6_dst_check, 2480dbaee3bSDavid S. Miller .default_advmss = ip6_default_advmss, 249ebb762f2SSteffen Klassert .mtu = ip6_mtu, 250d4ead6b3SDavid Ahern .cow_metrics = dst_cow_metrics_generic, 2511da177e4SLinus Torvalds .destroy = ip6_dst_destroy, 2521da177e4SLinus Torvalds .ifdown = ip6_dst_ifdown, 2531da177e4SLinus Torvalds .negative_advice = ip6_negative_advice, 2541da177e4SLinus Torvalds .link_failure = ip6_link_failure, 2551da177e4SLinus Torvalds .update_pmtu = ip6_rt_update_pmtu, 2566e157b6aSDavid S. Miller .redirect = rt6_do_redirect, 2579f8955ccSEric W. Biederman .local_out = __ip6_local_out, 258f8a1b43bSDavid Ahern .neigh_lookup = ip6_dst_neigh_lookup, 25963fca65dSJulian Anastasov .confirm_neigh = ip6_confirm_neigh, 2601da177e4SLinus Torvalds }; 2611da177e4SLinus Torvalds 262ebb762f2SSteffen Klassert static unsigned int ip6_blackhole_mtu(const struct dst_entry *dst) 263ec831ea7SRoland Dreier { 264618f9bc7SSteffen Klassert unsigned int mtu = dst_metric_raw(dst, RTAX_MTU); 265618f9bc7SSteffen Klassert 266618f9bc7SSteffen Klassert return mtu ? : dst->dev->mtu; 267ec831ea7SRoland Dreier } 268ec831ea7SRoland Dreier 2696700c270SDavid S. Miller static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, struct sock *sk, 2706700c270SDavid S. Miller struct sk_buff *skb, u32 mtu) 27114e50e57SDavid S. Miller { 27214e50e57SDavid S. Miller } 27314e50e57SDavid S. Miller 2746700c270SDavid S. Miller static void ip6_rt_blackhole_redirect(struct dst_entry *dst, struct sock *sk, 2756700c270SDavid S. Miller struct sk_buff *skb) 276b587ee3bSDavid S. Miller { 277b587ee3bSDavid S. Miller } 278b587ee3bSDavid S. Miller 27914e50e57SDavid S. Miller static struct dst_ops ip6_dst_blackhole_ops = { 28014e50e57SDavid S. Miller .family = AF_INET6, 28114e50e57SDavid S. Miller .destroy = ip6_dst_destroy, 28214e50e57SDavid S. Miller .check = ip6_dst_check, 283ebb762f2SSteffen Klassert .mtu = ip6_blackhole_mtu, 284214f45c9SEric Dumazet .default_advmss = ip6_default_advmss, 28514e50e57SDavid S. Miller .update_pmtu = ip6_rt_blackhole_update_pmtu, 286b587ee3bSDavid S. Miller .redirect = ip6_rt_blackhole_redirect, 2870a1f5962SMartin KaFai Lau .cow_metrics = dst_cow_metrics_generic, 288f8a1b43bSDavid Ahern .neigh_lookup = ip6_dst_neigh_lookup, 28914e50e57SDavid S. Miller }; 29014e50e57SDavid S. Miller 29162fa8a84SDavid S. Miller static const u32 ip6_template_metrics[RTAX_MAX] = { 29214edd87dSLi RongQing [RTAX_HOPLIMIT - 1] = 0, 29362fa8a84SDavid S. Miller }; 29462fa8a84SDavid S. Miller 2958d1c802bSDavid Ahern static const struct fib6_info fib6_null_entry_template = { 29693c2fb25SDavid Ahern .fib6_flags = (RTF_REJECT | RTF_NONEXTHOP), 29793c2fb25SDavid Ahern .fib6_protocol = RTPROT_KERNEL, 29893c2fb25SDavid Ahern .fib6_metric = ~(u32)0, 29993c2fb25SDavid Ahern .fib6_ref = ATOMIC_INIT(1), 300421842edSDavid Ahern .fib6_type = RTN_UNREACHABLE, 301421842edSDavid Ahern .fib6_metrics = (struct dst_metrics *)&dst_default_metrics, 302421842edSDavid Ahern }; 303421842edSDavid Ahern 304fb0af4c7SEric Dumazet static const struct rt6_info ip6_null_entry_template = { 3051da177e4SLinus Torvalds .dst = { 3061da177e4SLinus Torvalds .__refcnt = ATOMIC_INIT(1), 3071da177e4SLinus Torvalds .__use = 1, 3082c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 3091da177e4SLinus Torvalds .error = -ENETUNREACH, 3101da177e4SLinus Torvalds .input = ip6_pkt_discard, 3111da177e4SLinus Torvalds .output = ip6_pkt_discard_out, 3121da177e4SLinus Torvalds }, 3131da177e4SLinus Torvalds .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 3141da177e4SLinus Torvalds }; 3151da177e4SLinus Torvalds 316101367c2SThomas Graf #ifdef CONFIG_IPV6_MULTIPLE_TABLES 317101367c2SThomas Graf 318fb0af4c7SEric Dumazet static const struct rt6_info ip6_prohibit_entry_template = { 319101367c2SThomas Graf .dst = { 320101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 321101367c2SThomas Graf .__use = 1, 3222c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 323101367c2SThomas Graf .error = -EACCES, 3249ce8ade0SThomas Graf .input = ip6_pkt_prohibit, 3259ce8ade0SThomas Graf .output = ip6_pkt_prohibit_out, 326101367c2SThomas Graf }, 327101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 328101367c2SThomas Graf }; 329101367c2SThomas Graf 330fb0af4c7SEric Dumazet static const struct rt6_info ip6_blk_hole_entry_template = { 331101367c2SThomas Graf .dst = { 332101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 333101367c2SThomas Graf .__use = 1, 3342c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 335101367c2SThomas Graf .error = -EINVAL, 336352e512cSHerbert Xu .input = dst_discard, 337ede2059dSEric W. Biederman .output = dst_discard_out, 338101367c2SThomas Graf }, 339101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 340101367c2SThomas Graf }; 341101367c2SThomas Graf 342101367c2SThomas Graf #endif 343101367c2SThomas Graf 344ebfa45f0SMartin KaFai Lau static void rt6_info_init(struct rt6_info *rt) 345ebfa45f0SMartin KaFai Lau { 346ebfa45f0SMartin KaFai Lau struct dst_entry *dst = &rt->dst; 347ebfa45f0SMartin KaFai Lau 348ebfa45f0SMartin KaFai Lau memset(dst + 1, 0, sizeof(*rt) - sizeof(*dst)); 349ebfa45f0SMartin KaFai Lau INIT_LIST_HEAD(&rt->rt6i_uncached); 350ebfa45f0SMartin KaFai Lau } 351ebfa45f0SMartin KaFai Lau 3521da177e4SLinus Torvalds /* allocate dst with ip6_dst_ops */ 35393531c67SDavid Ahern struct rt6_info *ip6_dst_alloc(struct net *net, struct net_device *dev, 354ad706862SMartin KaFai Lau int flags) 3551da177e4SLinus Torvalds { 35697bab73fSDavid S. Miller struct rt6_info *rt = dst_alloc(&net->ipv6.ip6_dst_ops, dev, 357b2a9c0edSWei Wang 1, DST_OBSOLETE_FORCE_CHK, flags); 358cf911662SDavid S. Miller 35981eb8447SWei Wang if (rt) { 360ebfa45f0SMartin KaFai Lau rt6_info_init(rt); 36181eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 36281eb8447SWei Wang } 3638104891bSSteffen Klassert 364cf911662SDavid S. Miller return rt; 3651da177e4SLinus Torvalds } 3669ab179d8SDavid Ahern EXPORT_SYMBOL(ip6_dst_alloc); 367d52d3997SMartin KaFai Lau 3681da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *dst) 3691da177e4SLinus Torvalds { 3701da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 371a68886a6SDavid Ahern struct fib6_info *from; 3728d0b94afSMartin KaFai Lau struct inet6_dev *idev; 3731da177e4SLinus Torvalds 3741620a336SDavid Ahern ip_dst_metrics_put(dst); 3758d0b94afSMartin KaFai Lau rt6_uncached_list_del(rt); 3768d0b94afSMartin KaFai Lau 3778d0b94afSMartin KaFai Lau idev = rt->rt6i_idev; 37838308473SDavid S. Miller if (idev) { 3791da177e4SLinus Torvalds rt->rt6i_idev = NULL; 3801da177e4SLinus Torvalds in6_dev_put(idev); 3811da177e4SLinus Torvalds } 3821716a961SGao feng 383a68886a6SDavid Ahern rcu_read_lock(); 384a68886a6SDavid Ahern from = rcu_dereference(rt->from); 385a68886a6SDavid Ahern rcu_assign_pointer(rt->from, NULL); 38693531c67SDavid Ahern fib6_info_release(from); 387a68886a6SDavid Ahern rcu_read_unlock(); 388b3419363SDavid S. Miller } 389b3419363SDavid S. Miller 3901da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev, 3911da177e4SLinus Torvalds int how) 3921da177e4SLinus Torvalds { 3931da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 3941da177e4SLinus Torvalds struct inet6_dev *idev = rt->rt6i_idev; 3955a3e55d6SDenis V. Lunev struct net_device *loopback_dev = 396c346dca1SYOSHIFUJI Hideaki dev_net(dev)->loopback_dev; 3971da177e4SLinus Torvalds 398e5645f51SWei Wang if (idev && idev->dev != loopback_dev) { 399e5645f51SWei Wang struct inet6_dev *loopback_idev = in6_dev_get(loopback_dev); 40038308473SDavid S. Miller if (loopback_idev) { 4011da177e4SLinus Torvalds rt->rt6i_idev = loopback_idev; 4021da177e4SLinus Torvalds in6_dev_put(idev); 4031da177e4SLinus Torvalds } 4041da177e4SLinus Torvalds } 40597cac082SDavid S. Miller } 4061da177e4SLinus Torvalds 4075973fb1eSMartin KaFai Lau static bool __rt6_check_expired(const struct rt6_info *rt) 4085973fb1eSMartin KaFai Lau { 4095973fb1eSMartin KaFai Lau if (rt->rt6i_flags & RTF_EXPIRES) 4105973fb1eSMartin KaFai Lau return time_after(jiffies, rt->dst.expires); 4115973fb1eSMartin KaFai Lau else 4125973fb1eSMartin KaFai Lau return false; 4135973fb1eSMartin KaFai Lau } 4145973fb1eSMartin KaFai Lau 415a50feda5SEric Dumazet static bool rt6_check_expired(const struct rt6_info *rt) 4161da177e4SLinus Torvalds { 417a68886a6SDavid Ahern struct fib6_info *from; 418a68886a6SDavid Ahern 419a68886a6SDavid Ahern from = rcu_dereference(rt->from); 420a68886a6SDavid Ahern 4211716a961SGao feng if (rt->rt6i_flags & RTF_EXPIRES) { 4221716a961SGao feng if (time_after(jiffies, rt->dst.expires)) 423a50feda5SEric Dumazet return true; 424a68886a6SDavid Ahern } else if (from) { 4251e2ea8adSXin Long return rt->dst.obsolete != DST_OBSOLETE_FORCE_CHK || 426a68886a6SDavid Ahern fib6_check_expired(from); 4271716a961SGao feng } 428a50feda5SEric Dumazet return false; 4291da177e4SLinus Torvalds } 4301da177e4SLinus Torvalds 431b1d40991SDavid Ahern void fib6_select_path(const struct net *net, struct fib6_result *res, 432b1d40991SDavid Ahern struct flowi6 *fl6, int oif, bool have_oif_match, 433b1d40991SDavid Ahern const struct sk_buff *skb, int strict) 43451ebd318SNicolas Dichtel { 4358d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 436b1d40991SDavid Ahern struct fib6_info *match = res->f6i; 437b1d40991SDavid Ahern 438b1d40991SDavid Ahern if (!match->fib6_nsiblings || have_oif_match) 439b1d40991SDavid Ahern goto out; 44051ebd318SNicolas Dichtel 441b673d6ccSJakub Sitnicki /* We might have already computed the hash for ICMPv6 errors. In such 442b673d6ccSJakub Sitnicki * case it will always be non-zero. Otherwise now is the time to do it. 443b673d6ccSJakub Sitnicki */ 444b673d6ccSJakub Sitnicki if (!fl6->mp_hash) 445b4bac172SDavid Ahern fl6->mp_hash = rt6_multipath_hash(net, fl6, skb, NULL); 446b673d6ccSJakub Sitnicki 447ad1601aeSDavid Ahern if (fl6->mp_hash <= atomic_read(&match->fib6_nh.fib_nh_upper_bound)) 448b1d40991SDavid Ahern goto out; 449bbfcd776SIdo Schimmel 45093c2fb25SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, &match->fib6_siblings, 45193c2fb25SDavid Ahern fib6_siblings) { 452702cea56SDavid Ahern const struct fib6_nh *nh = &sibling->fib6_nh; 4535e670d84SDavid Ahern int nh_upper_bound; 4545e670d84SDavid Ahern 455702cea56SDavid Ahern nh_upper_bound = atomic_read(&nh->fib_nh_upper_bound); 4565e670d84SDavid Ahern if (fl6->mp_hash > nh_upper_bound) 4573d709f69SIdo Schimmel continue; 458702cea56SDavid Ahern if (rt6_score_route(nh, sibling->fib6_flags, oif, strict) < 0) 45952bd4c0cSNicolas Dichtel break; 46051ebd318SNicolas Dichtel match = sibling; 46151ebd318SNicolas Dichtel break; 46251ebd318SNicolas Dichtel } 4633d709f69SIdo Schimmel 464b1d40991SDavid Ahern out: 465b1d40991SDavid Ahern res->f6i = match; 466b1d40991SDavid Ahern res->nh = &match->fib6_nh; 46751ebd318SNicolas Dichtel } 46851ebd318SNicolas Dichtel 4691da177e4SLinus Torvalds /* 47066f5d6ceSWei Wang * Route lookup. rcu_read_lock() should be held. 4711da177e4SLinus Torvalds */ 4721da177e4SLinus Torvalds 4730c59d006SDavid Ahern static bool __rt6_device_match(struct net *net, const struct fib6_nh *nh, 4740c59d006SDavid Ahern const struct in6_addr *saddr, int oif, int flags) 4750c59d006SDavid Ahern { 4760c59d006SDavid Ahern const struct net_device *dev; 4770c59d006SDavid Ahern 4780c59d006SDavid Ahern if (nh->fib_nh_flags & RTNH_F_DEAD) 4790c59d006SDavid Ahern return false; 4800c59d006SDavid Ahern 4810c59d006SDavid Ahern dev = nh->fib_nh_dev; 4820c59d006SDavid Ahern if (oif) { 4830c59d006SDavid Ahern if (dev->ifindex == oif) 4840c59d006SDavid Ahern return true; 4850c59d006SDavid Ahern } else { 4860c59d006SDavid Ahern if (ipv6_chk_addr(net, saddr, dev, 4870c59d006SDavid Ahern flags & RT6_LOOKUP_F_IFACE)) 4880c59d006SDavid Ahern return true; 4890c59d006SDavid Ahern } 4900c59d006SDavid Ahern 4910c59d006SDavid Ahern return false; 4920c59d006SDavid Ahern } 4930c59d006SDavid Ahern 49475ef7389SDavid Ahern static void rt6_device_match(struct net *net, struct fib6_result *res, 49575ef7389SDavid Ahern const struct in6_addr *saddr, int oif, int flags) 4961da177e4SLinus Torvalds { 49775ef7389SDavid Ahern struct fib6_info *f6i = res->f6i; 49875ef7389SDavid Ahern struct fib6_info *spf6i; 49975ef7389SDavid Ahern struct fib6_nh *nh; 5001da177e4SLinus Torvalds 50175ef7389SDavid Ahern if (!oif && ipv6_addr_any(saddr)) { 50275ef7389SDavid Ahern nh = &f6i->fib6_nh; 50375ef7389SDavid Ahern if (!(nh->fib_nh_flags & RTNH_F_DEAD)) { 50475ef7389SDavid Ahern res->nh = nh; 50575ef7389SDavid Ahern return; 50675ef7389SDavid Ahern } 5071da177e4SLinus Torvalds } 5081da177e4SLinus Torvalds 50975ef7389SDavid Ahern for (spf6i = f6i; spf6i; spf6i = rcu_dereference(spf6i->fib6_next)) { 51075ef7389SDavid Ahern nh = &spf6i->fib6_nh; 51175ef7389SDavid Ahern if (__rt6_device_match(net, nh, saddr, oif, flags)) { 51275ef7389SDavid Ahern res->f6i = spf6i; 51375ef7389SDavid Ahern res->nh = nh; 51475ef7389SDavid Ahern } 51575ef7389SDavid Ahern } 5161da177e4SLinus Torvalds 51775ef7389SDavid Ahern if (oif && flags & RT6_LOOKUP_F_IFACE) { 51875ef7389SDavid Ahern res->f6i = net->ipv6.fib6_null_entry; 51975ef7389SDavid Ahern res->nh = &res->f6i->fib6_nh; 52075ef7389SDavid Ahern return; 52175ef7389SDavid Ahern } 52275ef7389SDavid Ahern 52375ef7389SDavid Ahern res->nh = &f6i->fib6_nh; 52475ef7389SDavid Ahern if (res->nh->fib_nh_flags & RTNH_F_DEAD) { 52575ef7389SDavid Ahern res->f6i = net->ipv6.fib6_null_entry; 52675ef7389SDavid Ahern res->nh = &res->f6i->fib6_nh; 52775ef7389SDavid Ahern } 5281da177e4SLinus Torvalds } 5291da177e4SLinus Torvalds 53027097255SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 531c2f17e82SHannes Frederic Sowa struct __rt6_probe_work { 532c2f17e82SHannes Frederic Sowa struct work_struct work; 533c2f17e82SHannes Frederic Sowa struct in6_addr target; 534c2f17e82SHannes Frederic Sowa struct net_device *dev; 535c2f17e82SHannes Frederic Sowa }; 536c2f17e82SHannes Frederic Sowa 537c2f17e82SHannes Frederic Sowa static void rt6_probe_deferred(struct work_struct *w) 538c2f17e82SHannes Frederic Sowa { 539c2f17e82SHannes Frederic Sowa struct in6_addr mcaddr; 540c2f17e82SHannes Frederic Sowa struct __rt6_probe_work *work = 541c2f17e82SHannes Frederic Sowa container_of(w, struct __rt6_probe_work, work); 542c2f17e82SHannes Frederic Sowa 543c2f17e82SHannes Frederic Sowa addrconf_addr_solict_mult(&work->target, &mcaddr); 544adc176c5SErik Nordmark ndisc_send_ns(work->dev, &work->target, &mcaddr, NULL, 0); 545c2f17e82SHannes Frederic Sowa dev_put(work->dev); 546662f5533SMichael Büsch kfree(work); 547c2f17e82SHannes Frederic Sowa } 548c2f17e82SHannes Frederic Sowa 549cc3a86c8SDavid Ahern static void rt6_probe(struct fib6_nh *fib6_nh) 55027097255SYOSHIFUJI Hideaki { 551f547fac6SSabrina Dubroca struct __rt6_probe_work *work = NULL; 5525e670d84SDavid Ahern const struct in6_addr *nh_gw; 553f2c31e32SEric Dumazet struct neighbour *neigh; 5545e670d84SDavid Ahern struct net_device *dev; 555f547fac6SSabrina Dubroca struct inet6_dev *idev; 5565e670d84SDavid Ahern 55727097255SYOSHIFUJI Hideaki /* 55827097255SYOSHIFUJI Hideaki * Okay, this does not seem to be appropriate 55927097255SYOSHIFUJI Hideaki * for now, however, we need to check if it 56027097255SYOSHIFUJI Hideaki * is really so; aka Router Reachability Probing. 56127097255SYOSHIFUJI Hideaki * 56227097255SYOSHIFUJI Hideaki * Router Reachability Probe MUST be rate-limited 56327097255SYOSHIFUJI Hideaki * to no more than one per minute. 56427097255SYOSHIFUJI Hideaki */ 565cc3a86c8SDavid Ahern if (fib6_nh->fib_nh_gw_family) 566fdd6681dSAmerigo Wang return; 5675e670d84SDavid Ahern 568cc3a86c8SDavid Ahern nh_gw = &fib6_nh->fib_nh_gw6; 569cc3a86c8SDavid Ahern dev = fib6_nh->fib_nh_dev; 5702152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 571f547fac6SSabrina Dubroca idev = __in6_dev_get(dev); 5725e670d84SDavid Ahern neigh = __ipv6_neigh_lookup_noref(dev, nh_gw); 5732152caeaSYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 5748d6c31bfSMartin KaFai Lau if (neigh->nud_state & NUD_VALID) 5758d6c31bfSMartin KaFai Lau goto out; 5768d6c31bfSMartin KaFai Lau 5772152caeaSYOSHIFUJI Hideaki / 吉藤英明 write_lock(&neigh->lock); 578990edb42SMartin KaFai Lau if (!(neigh->nud_state & NUD_VALID) && 579990edb42SMartin KaFai Lau time_after(jiffies, 580dcd1f572SDavid Ahern neigh->updated + idev->cnf.rtr_probe_interval)) { 581c2f17e82SHannes Frederic Sowa work = kmalloc(sizeof(*work), GFP_ATOMIC); 582990edb42SMartin KaFai Lau if (work) 5837e980569SJiri Benc __neigh_set_probe_once(neigh); 584990edb42SMartin KaFai Lau } 585c2f17e82SHannes Frederic Sowa write_unlock(&neigh->lock); 586cc3a86c8SDavid Ahern } else if (time_after(jiffies, fib6_nh->last_probe + 587f547fac6SSabrina Dubroca idev->cnf.rtr_probe_interval)) { 588990edb42SMartin KaFai Lau work = kmalloc(sizeof(*work), GFP_ATOMIC); 589990edb42SMartin KaFai Lau } 590c2f17e82SHannes Frederic Sowa 591c2f17e82SHannes Frederic Sowa if (work) { 592cc3a86c8SDavid Ahern fib6_nh->last_probe = jiffies; 593c2f17e82SHannes Frederic Sowa INIT_WORK(&work->work, rt6_probe_deferred); 5945e670d84SDavid Ahern work->target = *nh_gw; 5955e670d84SDavid Ahern dev_hold(dev); 5965e670d84SDavid Ahern work->dev = dev; 597c2f17e82SHannes Frederic Sowa schedule_work(&work->work); 598c2f17e82SHannes Frederic Sowa } 599990edb42SMartin KaFai Lau 6008d6c31bfSMartin KaFai Lau out: 6012152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 602f2c31e32SEric Dumazet } 60327097255SYOSHIFUJI Hideaki #else 604cc3a86c8SDavid Ahern static inline void rt6_probe(struct fib6_nh *fib6_nh) 60527097255SYOSHIFUJI Hideaki { 60627097255SYOSHIFUJI Hideaki } 60727097255SYOSHIFUJI Hideaki #endif 60827097255SYOSHIFUJI Hideaki 6091da177e4SLinus Torvalds /* 610554cfb7eSYOSHIFUJI Hideaki * Default Router Selection (RFC 2461 6.3.6) 6111da177e4SLinus Torvalds */ 6121ba9a895SDavid Ahern static enum rt6_nud_state rt6_check_neigh(const struct fib6_nh *fib6_nh) 6131da177e4SLinus Torvalds { 614afc154e9SHannes Frederic Sowa enum rt6_nud_state ret = RT6_NUD_FAIL_HARD; 6155e670d84SDavid Ahern struct neighbour *neigh; 616f2c31e32SEric Dumazet 617145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 6181ba9a895SDavid Ahern neigh = __ipv6_neigh_lookup_noref(fib6_nh->fib_nh_dev, 6191ba9a895SDavid Ahern &fib6_nh->fib_nh_gw6); 620145a3621SYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 621145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_lock(&neigh->lock); 622554cfb7eSYOSHIFUJI Hideaki if (neigh->nud_state & NUD_VALID) 623afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 624398bcbebSYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 625a5a81f0bSPaul Marks else if (!(neigh->nud_state & NUD_FAILED)) 626afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 6277e980569SJiri Benc else 6287e980569SJiri Benc ret = RT6_NUD_FAIL_PROBE; 629398bcbebSYOSHIFUJI Hideaki #endif 630145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_unlock(&neigh->lock); 631afc154e9SHannes Frederic Sowa } else { 632afc154e9SHannes Frederic Sowa ret = IS_ENABLED(CONFIG_IPV6_ROUTER_PREF) ? 6337e980569SJiri Benc RT6_NUD_SUCCEED : RT6_NUD_FAIL_DO_RR; 634a5a81f0bSPaul Marks } 635145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 636145a3621SYOSHIFUJI Hideaki / 吉藤英明 637a5a81f0bSPaul Marks return ret; 6381da177e4SLinus Torvalds } 6391da177e4SLinus Torvalds 640702cea56SDavid Ahern static int rt6_score_route(const struct fib6_nh *nh, u32 fib6_flags, int oif, 641702cea56SDavid Ahern int strict) 642554cfb7eSYOSHIFUJI Hideaki { 6436e1809a5SDavid Ahern int m = 0; 6444d0c5911SYOSHIFUJI Hideaki 6456e1809a5SDavid Ahern if (!oif || nh->fib_nh_dev->ifindex == oif) 6466e1809a5SDavid Ahern m = 2; 6476e1809a5SDavid Ahern 64877d16f45SYOSHIFUJI Hideaki if (!m && (strict & RT6_LOOKUP_F_IFACE)) 649afc154e9SHannes Frederic Sowa return RT6_NUD_FAIL_HARD; 650ebacaaa0SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 651702cea56SDavid Ahern m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(fib6_flags)) << 2; 652ebacaaa0SYOSHIFUJI Hideaki #endif 6531ba9a895SDavid Ahern if ((strict & RT6_LOOKUP_F_REACHABLE) && 654702cea56SDavid Ahern !(fib6_flags & RTF_NONEXTHOP) && nh->fib_nh_gw_family) { 6551ba9a895SDavid Ahern int n = rt6_check_neigh(nh); 656afc154e9SHannes Frederic Sowa if (n < 0) 657afc154e9SHannes Frederic Sowa return n; 658afc154e9SHannes Frederic Sowa } 659554cfb7eSYOSHIFUJI Hideaki return m; 660554cfb7eSYOSHIFUJI Hideaki } 661554cfb7eSYOSHIFUJI Hideaki 66228679ed1SDavid Ahern static bool find_match(struct fib6_nh *nh, u32 fib6_flags, 66328679ed1SDavid Ahern int oif, int strict, int *mpri, bool *do_rr) 664554cfb7eSYOSHIFUJI Hideaki { 665afc154e9SHannes Frederic Sowa bool match_do_rr = false; 66628679ed1SDavid Ahern bool rc = false; 66728679ed1SDavid Ahern int m; 66835103d11SAndy Gospodarek 66928679ed1SDavid Ahern if (nh->fib_nh_flags & RTNH_F_DEAD) 6708067bb8cSIdo Schimmel goto out; 6718067bb8cSIdo Schimmel 67228679ed1SDavid Ahern if (ip6_ignore_linkdown(nh->fib_nh_dev) && 67328679ed1SDavid Ahern nh->fib_nh_flags & RTNH_F_LINKDOWN && 674d5d32e4bSDavid Ahern !(strict & RT6_LOOKUP_F_IGNORE_LINKSTATE)) 67535103d11SAndy Gospodarek goto out; 676554cfb7eSYOSHIFUJI Hideaki 67728679ed1SDavid Ahern m = rt6_score_route(nh, fib6_flags, oif, strict); 6787e980569SJiri Benc if (m == RT6_NUD_FAIL_DO_RR) { 679afc154e9SHannes Frederic Sowa match_do_rr = true; 680afc154e9SHannes Frederic Sowa m = 0; /* lowest valid score */ 6817e980569SJiri Benc } else if (m == RT6_NUD_FAIL_HARD) { 682f11e6659SDavid S. Miller goto out; 6831da177e4SLinus Torvalds } 684f11e6659SDavid S. Miller 685afc154e9SHannes Frederic Sowa if (strict & RT6_LOOKUP_F_REACHABLE) 68628679ed1SDavid Ahern rt6_probe(nh); 687afc154e9SHannes Frederic Sowa 6887e980569SJiri Benc /* note that m can be RT6_NUD_FAIL_PROBE at this point */ 689afc154e9SHannes Frederic Sowa if (m > *mpri) { 690afc154e9SHannes Frederic Sowa *do_rr = match_do_rr; 691afc154e9SHannes Frederic Sowa *mpri = m; 69228679ed1SDavid Ahern rc = true; 693afc154e9SHannes Frederic Sowa } 694f11e6659SDavid S. Miller out: 69528679ed1SDavid Ahern return rc; 6961da177e4SLinus Torvalds } 6971da177e4SLinus Torvalds 698b7bc4b6aSDavid Ahern static void __find_rr_leaf(struct fib6_info *f6i_start, 69930c15f03SDavid Ahern struct fib6_info *nomatch, u32 metric, 700b7bc4b6aSDavid Ahern struct fib6_result *res, struct fib6_info **cont, 70130c15f03SDavid Ahern int oif, int strict, bool *do_rr, int *mpri) 70230c15f03SDavid Ahern { 703b7bc4b6aSDavid Ahern struct fib6_info *f6i; 70430c15f03SDavid Ahern 705b7bc4b6aSDavid Ahern for (f6i = f6i_start; 706b7bc4b6aSDavid Ahern f6i && f6i != nomatch; 707b7bc4b6aSDavid Ahern f6i = rcu_dereference(f6i->fib6_next)) { 70830c15f03SDavid Ahern struct fib6_nh *nh; 70930c15f03SDavid Ahern 710b7bc4b6aSDavid Ahern if (cont && f6i->fib6_metric != metric) { 711b7bc4b6aSDavid Ahern *cont = f6i; 71230c15f03SDavid Ahern return; 71330c15f03SDavid Ahern } 71430c15f03SDavid Ahern 715b7bc4b6aSDavid Ahern if (fib6_check_expired(f6i)) 71630c15f03SDavid Ahern continue; 71730c15f03SDavid Ahern 718b7bc4b6aSDavid Ahern nh = &f6i->fib6_nh; 719b7bc4b6aSDavid Ahern if (find_match(nh, f6i->fib6_flags, oif, strict, mpri, do_rr)) { 720b7bc4b6aSDavid Ahern res->f6i = f6i; 721b7bc4b6aSDavid Ahern res->nh = nh; 722b7bc4b6aSDavid Ahern } 72330c15f03SDavid Ahern } 72430c15f03SDavid Ahern } 72530c15f03SDavid Ahern 726b7bc4b6aSDavid Ahern static void find_rr_leaf(struct fib6_node *fn, struct fib6_info *leaf, 727b7bc4b6aSDavid Ahern struct fib6_info *rr_head, int oif, int strict, 728b7bc4b6aSDavid Ahern bool *do_rr, struct fib6_result *res) 729f11e6659SDavid S. Miller { 730b7bc4b6aSDavid Ahern u32 metric = rr_head->fib6_metric; 731b7bc4b6aSDavid Ahern struct fib6_info *cont = NULL; 732f11e6659SDavid S. Miller int mpri = -1; 733f11e6659SDavid S. Miller 734b7bc4b6aSDavid Ahern __find_rr_leaf(rr_head, NULL, metric, res, &cont, 73530c15f03SDavid Ahern oif, strict, do_rr, &mpri); 7369fbdcfafSSteffen Klassert 737b7bc4b6aSDavid Ahern __find_rr_leaf(leaf, rr_head, metric, res, &cont, 73830c15f03SDavid Ahern oif, strict, do_rr, &mpri); 7399fbdcfafSSteffen Klassert 740b7bc4b6aSDavid Ahern if (res->f6i || !cont) 741b7bc4b6aSDavid Ahern return; 7429fbdcfafSSteffen Klassert 743b7bc4b6aSDavid Ahern __find_rr_leaf(cont, NULL, metric, res, NULL, 74430c15f03SDavid Ahern oif, strict, do_rr, &mpri); 745f11e6659SDavid S. Miller } 746f11e6659SDavid S. Miller 747b7bc4b6aSDavid Ahern static void rt6_select(struct net *net, struct fib6_node *fn, int oif, 748b7bc4b6aSDavid Ahern struct fib6_result *res, int strict) 749f11e6659SDavid S. Miller { 7508d1c802bSDavid Ahern struct fib6_info *leaf = rcu_dereference(fn->leaf); 751b7bc4b6aSDavid Ahern struct fib6_info *rt0; 752afc154e9SHannes Frederic Sowa bool do_rr = false; 75317ecf590SWei Wang int key_plen; 754f11e6659SDavid S. Miller 755b7bc4b6aSDavid Ahern /* make sure this function or its helpers sets f6i */ 756b7bc4b6aSDavid Ahern res->f6i = NULL; 757b7bc4b6aSDavid Ahern 758421842edSDavid Ahern if (!leaf || leaf == net->ipv6.fib6_null_entry) 759b7bc4b6aSDavid Ahern goto out; 7608d1040e8SWei Wang 76166f5d6ceSWei Wang rt0 = rcu_dereference(fn->rr_ptr); 762f11e6659SDavid S. Miller if (!rt0) 76366f5d6ceSWei Wang rt0 = leaf; 764f11e6659SDavid S. Miller 76517ecf590SWei Wang /* Double check to make sure fn is not an intermediate node 76617ecf590SWei Wang * and fn->leaf does not points to its child's leaf 76717ecf590SWei Wang * (This might happen if all routes under fn are deleted from 76817ecf590SWei Wang * the tree and fib6_repair_tree() is called on the node.) 76917ecf590SWei Wang */ 77093c2fb25SDavid Ahern key_plen = rt0->fib6_dst.plen; 77117ecf590SWei Wang #ifdef CONFIG_IPV6_SUBTREES 77293c2fb25SDavid Ahern if (rt0->fib6_src.plen) 77393c2fb25SDavid Ahern key_plen = rt0->fib6_src.plen; 77417ecf590SWei Wang #endif 77517ecf590SWei Wang if (fn->fn_bit != key_plen) 776b7bc4b6aSDavid Ahern goto out; 77717ecf590SWei Wang 778b7bc4b6aSDavid Ahern find_rr_leaf(fn, leaf, rt0, oif, strict, &do_rr, res); 779afc154e9SHannes Frederic Sowa if (do_rr) { 7808fb11a9aSDavid Ahern struct fib6_info *next = rcu_dereference(rt0->fib6_next); 781f11e6659SDavid S. Miller 782554cfb7eSYOSHIFUJI Hideaki /* no entries matched; do round-robin */ 78393c2fb25SDavid Ahern if (!next || next->fib6_metric != rt0->fib6_metric) 7848d1040e8SWei Wang next = leaf; 785f11e6659SDavid S. Miller 78666f5d6ceSWei Wang if (next != rt0) { 78793c2fb25SDavid Ahern spin_lock_bh(&leaf->fib6_table->tb6_lock); 78866f5d6ceSWei Wang /* make sure next is not being deleted from the tree */ 78993c2fb25SDavid Ahern if (next->fib6_node) 79066f5d6ceSWei Wang rcu_assign_pointer(fn->rr_ptr, next); 79193c2fb25SDavid Ahern spin_unlock_bh(&leaf->fib6_table->tb6_lock); 79266f5d6ceSWei Wang } 793554cfb7eSYOSHIFUJI Hideaki } 794554cfb7eSYOSHIFUJI Hideaki 795b7bc4b6aSDavid Ahern out: 796b7bc4b6aSDavid Ahern if (!res->f6i) { 797b7bc4b6aSDavid Ahern res->f6i = net->ipv6.fib6_null_entry; 798b7bc4b6aSDavid Ahern res->nh = &res->f6i->fib6_nh; 799b7bc4b6aSDavid Ahern } 8001da177e4SLinus Torvalds } 8011da177e4SLinus Torvalds 80285bd05deSDavid Ahern static bool rt6_is_gw_or_nonexthop(const struct fib6_result *res) 8038b9df265SMartin KaFai Lau { 80485bd05deSDavid Ahern return (res->f6i->fib6_flags & RTF_NONEXTHOP) || 80585bd05deSDavid Ahern res->nh->fib_nh_gw_family; 8068b9df265SMartin KaFai Lau } 8078b9df265SMartin KaFai Lau 80870ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 80970ceb4f5SYOSHIFUJI Hideaki int rt6_route_rcv(struct net_device *dev, u8 *opt, int len, 810b71d1d42SEric Dumazet const struct in6_addr *gwaddr) 81170ceb4f5SYOSHIFUJI Hideaki { 812c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 81370ceb4f5SYOSHIFUJI Hideaki struct route_info *rinfo = (struct route_info *) opt; 81470ceb4f5SYOSHIFUJI Hideaki struct in6_addr prefix_buf, *prefix; 81570ceb4f5SYOSHIFUJI Hideaki unsigned int pref; 8164bed72e4SYOSHIFUJI Hideaki unsigned long lifetime; 8178d1c802bSDavid Ahern struct fib6_info *rt; 81870ceb4f5SYOSHIFUJI Hideaki 81970ceb4f5SYOSHIFUJI Hideaki if (len < sizeof(struct route_info)) { 82070ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82170ceb4f5SYOSHIFUJI Hideaki } 82270ceb4f5SYOSHIFUJI Hideaki 82370ceb4f5SYOSHIFUJI Hideaki /* Sanity check for prefix_len and length */ 82470ceb4f5SYOSHIFUJI Hideaki if (rinfo->length > 3) { 82570ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82670ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 128) { 82770ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82870ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 64) { 82970ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 2) { 83070ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 83170ceb4f5SYOSHIFUJI Hideaki } 83270ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 0) { 83370ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 1) { 83470ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 83570ceb4f5SYOSHIFUJI Hideaki } 83670ceb4f5SYOSHIFUJI Hideaki } 83770ceb4f5SYOSHIFUJI Hideaki 83870ceb4f5SYOSHIFUJI Hideaki pref = rinfo->route_pref; 83970ceb4f5SYOSHIFUJI Hideaki if (pref == ICMPV6_ROUTER_PREF_INVALID) 8403933fc95SJens Rosenboom return -EINVAL; 84170ceb4f5SYOSHIFUJI Hideaki 8424bed72e4SYOSHIFUJI Hideaki lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ); 84370ceb4f5SYOSHIFUJI Hideaki 84470ceb4f5SYOSHIFUJI Hideaki if (rinfo->length == 3) 84570ceb4f5SYOSHIFUJI Hideaki prefix = (struct in6_addr *)rinfo->prefix; 84670ceb4f5SYOSHIFUJI Hideaki else { 84770ceb4f5SYOSHIFUJI Hideaki /* this function is safe */ 84870ceb4f5SYOSHIFUJI Hideaki ipv6_addr_prefix(&prefix_buf, 84970ceb4f5SYOSHIFUJI Hideaki (struct in6_addr *)rinfo->prefix, 85070ceb4f5SYOSHIFUJI Hideaki rinfo->prefix_len); 85170ceb4f5SYOSHIFUJI Hideaki prefix = &prefix_buf; 85270ceb4f5SYOSHIFUJI Hideaki } 85370ceb4f5SYOSHIFUJI Hideaki 854f104a567SDuan Jiong if (rinfo->prefix_len == 0) 855afb1d4b5SDavid Ahern rt = rt6_get_dflt_router(net, gwaddr, dev); 856f104a567SDuan Jiong else 857f104a567SDuan Jiong rt = rt6_get_route_info(net, prefix, rinfo->prefix_len, 858830218c1SDavid Ahern gwaddr, dev); 85970ceb4f5SYOSHIFUJI Hideaki 86070ceb4f5SYOSHIFUJI Hideaki if (rt && !lifetime) { 861afb1d4b5SDavid Ahern ip6_del_rt(net, rt); 86270ceb4f5SYOSHIFUJI Hideaki rt = NULL; 86370ceb4f5SYOSHIFUJI Hideaki } 86470ceb4f5SYOSHIFUJI Hideaki 86570ceb4f5SYOSHIFUJI Hideaki if (!rt && lifetime) 866830218c1SDavid Ahern rt = rt6_add_route_info(net, prefix, rinfo->prefix_len, gwaddr, 867830218c1SDavid Ahern dev, pref); 86870ceb4f5SYOSHIFUJI Hideaki else if (rt) 86993c2fb25SDavid Ahern rt->fib6_flags = RTF_ROUTEINFO | 87093c2fb25SDavid Ahern (rt->fib6_flags & ~RTF_PREF_MASK) | RTF_PREF(pref); 87170ceb4f5SYOSHIFUJI Hideaki 87270ceb4f5SYOSHIFUJI Hideaki if (rt) { 8731716a961SGao feng if (!addrconf_finite_timeout(lifetime)) 87414895687SDavid Ahern fib6_clean_expires(rt); 8751716a961SGao feng else 87614895687SDavid Ahern fib6_set_expires(rt, jiffies + HZ * lifetime); 8771716a961SGao feng 87893531c67SDavid Ahern fib6_info_release(rt); 87970ceb4f5SYOSHIFUJI Hideaki } 88070ceb4f5SYOSHIFUJI Hideaki return 0; 88170ceb4f5SYOSHIFUJI Hideaki } 88270ceb4f5SYOSHIFUJI Hideaki #endif 88370ceb4f5SYOSHIFUJI Hideaki 884ae90d867SDavid Ahern /* 885ae90d867SDavid Ahern * Misc support functions 886ae90d867SDavid Ahern */ 887ae90d867SDavid Ahern 888ae90d867SDavid Ahern /* called with rcu_lock held */ 8890d161581SDavid Ahern static struct net_device *ip6_rt_get_dev_rcu(const struct fib6_result *res) 890ae90d867SDavid Ahern { 8910d161581SDavid Ahern struct net_device *dev = res->nh->fib_nh_dev; 8920d161581SDavid Ahern const struct fib6_info *f6i = res->f6i; 893ae90d867SDavid Ahern 8940d161581SDavid Ahern if (f6i->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) { 895ae90d867SDavid Ahern /* for copies of local routes, dst->dev needs to be the 896ae90d867SDavid Ahern * device if it is a master device, the master device if 897ae90d867SDavid Ahern * device is enslaved, and the loopback as the default 898ae90d867SDavid Ahern */ 899ae90d867SDavid Ahern if (netif_is_l3_slave(dev) && 9000d161581SDavid Ahern !rt6_need_strict(&f6i->fib6_dst.addr)) 901ae90d867SDavid Ahern dev = l3mdev_master_dev_rcu(dev); 902ae90d867SDavid Ahern else if (!netif_is_l3_master(dev)) 903ae90d867SDavid Ahern dev = dev_net(dev)->loopback_dev; 904ae90d867SDavid Ahern /* last case is netif_is_l3_master(dev) is true in which 905ae90d867SDavid Ahern * case we want dev returned to be dev 906ae90d867SDavid Ahern */ 907ae90d867SDavid Ahern } 908ae90d867SDavid Ahern 909ae90d867SDavid Ahern return dev; 910ae90d867SDavid Ahern } 911ae90d867SDavid Ahern 9126edb3c96SDavid Ahern static const int fib6_prop[RTN_MAX + 1] = { 9136edb3c96SDavid Ahern [RTN_UNSPEC] = 0, 9146edb3c96SDavid Ahern [RTN_UNICAST] = 0, 9156edb3c96SDavid Ahern [RTN_LOCAL] = 0, 9166edb3c96SDavid Ahern [RTN_BROADCAST] = 0, 9176edb3c96SDavid Ahern [RTN_ANYCAST] = 0, 9186edb3c96SDavid Ahern [RTN_MULTICAST] = 0, 9196edb3c96SDavid Ahern [RTN_BLACKHOLE] = -EINVAL, 9206edb3c96SDavid Ahern [RTN_UNREACHABLE] = -EHOSTUNREACH, 9216edb3c96SDavid Ahern [RTN_PROHIBIT] = -EACCES, 9226edb3c96SDavid Ahern [RTN_THROW] = -EAGAIN, 9236edb3c96SDavid Ahern [RTN_NAT] = -EINVAL, 9246edb3c96SDavid Ahern [RTN_XRESOLVE] = -EINVAL, 9256edb3c96SDavid Ahern }; 9266edb3c96SDavid Ahern 9276edb3c96SDavid Ahern static int ip6_rt_type_to_error(u8 fib6_type) 9286edb3c96SDavid Ahern { 9296edb3c96SDavid Ahern return fib6_prop[fib6_type]; 9306edb3c96SDavid Ahern } 9316edb3c96SDavid Ahern 9328d1c802bSDavid Ahern static unsigned short fib6_info_dst_flags(struct fib6_info *rt) 9333b6761d1SDavid Ahern { 9343b6761d1SDavid Ahern unsigned short flags = 0; 9353b6761d1SDavid Ahern 9363b6761d1SDavid Ahern if (rt->dst_nocount) 9373b6761d1SDavid Ahern flags |= DST_NOCOUNT; 9383b6761d1SDavid Ahern if (rt->dst_nopolicy) 9393b6761d1SDavid Ahern flags |= DST_NOPOLICY; 9403b6761d1SDavid Ahern if (rt->dst_host) 9413b6761d1SDavid Ahern flags |= DST_HOST; 9423b6761d1SDavid Ahern 9433b6761d1SDavid Ahern return flags; 9443b6761d1SDavid Ahern } 9453b6761d1SDavid Ahern 9468d1c802bSDavid Ahern static void ip6_rt_init_dst_reject(struct rt6_info *rt, struct fib6_info *ort) 9476edb3c96SDavid Ahern { 9486edb3c96SDavid Ahern rt->dst.error = ip6_rt_type_to_error(ort->fib6_type); 9496edb3c96SDavid Ahern 9506edb3c96SDavid Ahern switch (ort->fib6_type) { 9516edb3c96SDavid Ahern case RTN_BLACKHOLE: 9526edb3c96SDavid Ahern rt->dst.output = dst_discard_out; 9536edb3c96SDavid Ahern rt->dst.input = dst_discard; 9546edb3c96SDavid Ahern break; 9556edb3c96SDavid Ahern case RTN_PROHIBIT: 9566edb3c96SDavid Ahern rt->dst.output = ip6_pkt_prohibit_out; 9576edb3c96SDavid Ahern rt->dst.input = ip6_pkt_prohibit; 9586edb3c96SDavid Ahern break; 9596edb3c96SDavid Ahern case RTN_THROW: 9606edb3c96SDavid Ahern case RTN_UNREACHABLE: 9616edb3c96SDavid Ahern default: 9626edb3c96SDavid Ahern rt->dst.output = ip6_pkt_discard_out; 9636edb3c96SDavid Ahern rt->dst.input = ip6_pkt_discard; 9646edb3c96SDavid Ahern break; 9656edb3c96SDavid Ahern } 9666edb3c96SDavid Ahern } 9676edb3c96SDavid Ahern 9680d161581SDavid Ahern static void ip6_rt_init_dst(struct rt6_info *rt, const struct fib6_result *res) 9696edb3c96SDavid Ahern { 9700d161581SDavid Ahern struct fib6_info *ort = res->f6i; 9710d161581SDavid Ahern 97293c2fb25SDavid Ahern if (ort->fib6_flags & RTF_REJECT) { 9736edb3c96SDavid Ahern ip6_rt_init_dst_reject(rt, ort); 9746edb3c96SDavid Ahern return; 9756edb3c96SDavid Ahern } 9766edb3c96SDavid Ahern 9776edb3c96SDavid Ahern rt->dst.error = 0; 9786edb3c96SDavid Ahern rt->dst.output = ip6_output; 9796edb3c96SDavid Ahern 980d23c4b63SHangbin Liu if (ort->fib6_type == RTN_LOCAL || ort->fib6_type == RTN_ANYCAST) { 9816edb3c96SDavid Ahern rt->dst.input = ip6_input; 98293c2fb25SDavid Ahern } else if (ipv6_addr_type(&ort->fib6_dst.addr) & IPV6_ADDR_MULTICAST) { 9836edb3c96SDavid Ahern rt->dst.input = ip6_mc_input; 9846edb3c96SDavid Ahern } else { 9856edb3c96SDavid Ahern rt->dst.input = ip6_forward; 9866edb3c96SDavid Ahern } 9876edb3c96SDavid Ahern 9880d161581SDavid Ahern if (res->nh->fib_nh_lws) { 9890d161581SDavid Ahern rt->dst.lwtstate = lwtstate_get(res->nh->fib_nh_lws); 9906edb3c96SDavid Ahern lwtunnel_set_redirect(&rt->dst); 9916edb3c96SDavid Ahern } 9926edb3c96SDavid Ahern 9936edb3c96SDavid Ahern rt->dst.lastuse = jiffies; 9946edb3c96SDavid Ahern } 9956edb3c96SDavid Ahern 996e873e4b9SWei Wang /* Caller must already hold reference to @from */ 9978d1c802bSDavid Ahern static void rt6_set_from(struct rt6_info *rt, struct fib6_info *from) 998ae90d867SDavid Ahern { 999ae90d867SDavid Ahern rt->rt6i_flags &= ~RTF_EXPIRES; 1000a68886a6SDavid Ahern rcu_assign_pointer(rt->from, from); 1001e1255ed4SDavid Ahern ip_dst_init_metrics(&rt->dst, from->fib6_metrics); 1002ae90d867SDavid Ahern } 1003ae90d867SDavid Ahern 10040d161581SDavid Ahern /* Caller must already hold reference to f6i in result */ 10050d161581SDavid Ahern static void ip6_rt_copy_init(struct rt6_info *rt, const struct fib6_result *res) 1006ae90d867SDavid Ahern { 10070d161581SDavid Ahern const struct fib6_nh *nh = res->nh; 10080d161581SDavid Ahern const struct net_device *dev = nh->fib_nh_dev; 10090d161581SDavid Ahern struct fib6_info *f6i = res->f6i; 1010dcd1f572SDavid Ahern 10110d161581SDavid Ahern ip6_rt_init_dst(rt, res); 10126edb3c96SDavid Ahern 10130d161581SDavid Ahern rt->rt6i_dst = f6i->fib6_dst; 1014dcd1f572SDavid Ahern rt->rt6i_idev = dev ? in6_dev_get(dev) : NULL; 10150d161581SDavid Ahern rt->rt6i_flags = f6i->fib6_flags; 10160d161581SDavid Ahern if (nh->fib_nh_gw_family) { 10170d161581SDavid Ahern rt->rt6i_gateway = nh->fib_nh_gw6; 10182b2450caSDavid Ahern rt->rt6i_flags |= RTF_GATEWAY; 10192b2450caSDavid Ahern } 10200d161581SDavid Ahern rt6_set_from(rt, f6i); 1021ae90d867SDavid Ahern #ifdef CONFIG_IPV6_SUBTREES 10220d161581SDavid Ahern rt->rt6i_src = f6i->fib6_src; 1023ae90d867SDavid Ahern #endif 1024ae90d867SDavid Ahern } 1025ae90d867SDavid Ahern 1026a3c00e46SMartin KaFai Lau static struct fib6_node* fib6_backtrack(struct fib6_node *fn, 1027a3c00e46SMartin KaFai Lau struct in6_addr *saddr) 1028a3c00e46SMartin KaFai Lau { 102966f5d6ceSWei Wang struct fib6_node *pn, *sn; 1030a3c00e46SMartin KaFai Lau while (1) { 1031a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_TL_ROOT) 1032a3c00e46SMartin KaFai Lau return NULL; 103366f5d6ceSWei Wang pn = rcu_dereference(fn->parent); 103466f5d6ceSWei Wang sn = FIB6_SUBTREE(pn); 103566f5d6ceSWei Wang if (sn && sn != fn) 10366454743bSDavid Ahern fn = fib6_node_lookup(sn, NULL, saddr); 1037a3c00e46SMartin KaFai Lau else 1038a3c00e46SMartin KaFai Lau fn = pn; 1039a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_RTINFO) 1040a3c00e46SMartin KaFai Lau return fn; 1041a3c00e46SMartin KaFai Lau } 1042a3c00e46SMartin KaFai Lau } 1043c71099acSThomas Graf 104410585b43SDavid Ahern static bool ip6_hold_safe(struct net *net, struct rt6_info **prt) 1045d3843fe5SWei Wang { 1046d3843fe5SWei Wang struct rt6_info *rt = *prt; 1047d3843fe5SWei Wang 1048d3843fe5SWei Wang if (dst_hold_safe(&rt->dst)) 1049d3843fe5SWei Wang return true; 105010585b43SDavid Ahern if (net) { 1051d3843fe5SWei Wang rt = net->ipv6.ip6_null_entry; 1052d3843fe5SWei Wang dst_hold(&rt->dst); 1053d3843fe5SWei Wang } else { 1054d3843fe5SWei Wang rt = NULL; 1055d3843fe5SWei Wang } 1056d3843fe5SWei Wang *prt = rt; 1057d3843fe5SWei Wang return false; 1058d3843fe5SWei Wang } 1059d3843fe5SWei Wang 1060dec9b0e2SDavid Ahern /* called with rcu_lock held */ 10619b6b35abSDavid Ahern static struct rt6_info *ip6_create_rt_rcu(const struct fib6_result *res) 1062dec9b0e2SDavid Ahern { 10639b6b35abSDavid Ahern struct net_device *dev = res->nh->fib_nh_dev; 10649b6b35abSDavid Ahern struct fib6_info *f6i = res->f6i; 10659b6b35abSDavid Ahern unsigned short flags; 1066dec9b0e2SDavid Ahern struct rt6_info *nrt; 1067dec9b0e2SDavid Ahern 10689b6b35abSDavid Ahern if (!fib6_info_hold_safe(f6i)) 10691c87e79aSXin Long goto fallback; 1070e873e4b9SWei Wang 10719b6b35abSDavid Ahern flags = fib6_info_dst_flags(f6i); 107293531c67SDavid Ahern nrt = ip6_dst_alloc(dev_net(dev), dev, flags); 10731c87e79aSXin Long if (!nrt) { 10749b6b35abSDavid Ahern fib6_info_release(f6i); 10751c87e79aSXin Long goto fallback; 10761c87e79aSXin Long } 1077dec9b0e2SDavid Ahern 10780d161581SDavid Ahern ip6_rt_copy_init(nrt, res); 10791c87e79aSXin Long return nrt; 10801c87e79aSXin Long 10811c87e79aSXin Long fallback: 10821c87e79aSXin Long nrt = dev_net(dev)->ipv6.ip6_null_entry; 10831c87e79aSXin Long dst_hold(&nrt->dst); 1084dec9b0e2SDavid Ahern return nrt; 1085dec9b0e2SDavid Ahern } 1086dec9b0e2SDavid Ahern 10878ed67789SDaniel Lezcano static struct rt6_info *ip6_pol_route_lookup(struct net *net, 10888ed67789SDaniel Lezcano struct fib6_table *table, 1089b75cc8f9SDavid Ahern struct flowi6 *fl6, 1090b75cc8f9SDavid Ahern const struct sk_buff *skb, 1091b75cc8f9SDavid Ahern int flags) 10921da177e4SLinus Torvalds { 1093b1d40991SDavid Ahern struct fib6_result res = {}; 10941da177e4SLinus Torvalds struct fib6_node *fn; 109523fb93a4SDavid Ahern struct rt6_info *rt; 10961da177e4SLinus Torvalds 1097b6cdbc85SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1098b6cdbc85SDavid Ahern flags &= ~RT6_LOOKUP_F_IFACE; 1099b6cdbc85SDavid Ahern 110066f5d6ceSWei Wang rcu_read_lock(); 11016454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1102c71099acSThomas Graf restart: 1103b1d40991SDavid Ahern res.f6i = rcu_dereference(fn->leaf); 1104b1d40991SDavid Ahern if (!res.f6i) 1105b1d40991SDavid Ahern res.f6i = net->ipv6.fib6_null_entry; 1106af52a52cSDavid Ahern else 110775ef7389SDavid Ahern rt6_device_match(net, &res, &fl6->saddr, fl6->flowi6_oif, 110875ef7389SDavid Ahern flags); 1109af52a52cSDavid Ahern 1110b1d40991SDavid Ahern if (res.f6i == net->ipv6.fib6_null_entry) { 1111a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1112a3c00e46SMartin KaFai Lau if (fn) 1113a3c00e46SMartin KaFai Lau goto restart; 1114af52a52cSDavid Ahern 1115af52a52cSDavid Ahern rt = net->ipv6.ip6_null_entry; 1116af52a52cSDavid Ahern dst_hold(&rt->dst); 1117af52a52cSDavid Ahern goto out; 1118a3c00e46SMartin KaFai Lau } 11192b760fcfSWei Wang 1120b1d40991SDavid Ahern fib6_select_path(net, &res, fl6, fl6->flowi6_oif, 1121b1d40991SDavid Ahern fl6->flowi6_oif != 0, skb, flags); 1122b1d40991SDavid Ahern 11234c9483b2SDavid S. Miller /* Search through exception table */ 11247e4b5128SDavid Ahern rt = rt6_find_cached_rt(&res, &fl6->daddr, &fl6->saddr); 112523fb93a4SDavid Ahern if (rt) { 112610585b43SDavid Ahern if (ip6_hold_safe(net, &rt)) 1127d3843fe5SWei Wang dst_use_noref(&rt->dst, jiffies); 112823fb93a4SDavid Ahern } else { 11299b6b35abSDavid Ahern rt = ip6_create_rt_rcu(&res); 1130dec9b0e2SDavid Ahern } 1131d3843fe5SWei Wang 1132af52a52cSDavid Ahern out: 1133*8ff2e5b2SDavid Ahern trace_fib6_table_lookup(net, &res, table, fl6); 1134af52a52cSDavid Ahern 113566f5d6ceSWei Wang rcu_read_unlock(); 1136b811580dSDavid Ahern 11371da177e4SLinus Torvalds return rt; 1138c71099acSThomas Graf } 1139c71099acSThomas Graf 1140ea6e574eSFlorian Westphal struct dst_entry *ip6_route_lookup(struct net *net, struct flowi6 *fl6, 1141b75cc8f9SDavid Ahern const struct sk_buff *skb, int flags) 1142ea6e574eSFlorian Westphal { 1143b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_lookup); 1144ea6e574eSFlorian Westphal } 1145ea6e574eSFlorian Westphal EXPORT_SYMBOL_GPL(ip6_route_lookup); 1146ea6e574eSFlorian Westphal 11479acd9f3aSYOSHIFUJI Hideaki struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr, 1148b75cc8f9SDavid Ahern const struct in6_addr *saddr, int oif, 1149b75cc8f9SDavid Ahern const struct sk_buff *skb, int strict) 1150c71099acSThomas Graf { 11514c9483b2SDavid S. Miller struct flowi6 fl6 = { 11524c9483b2SDavid S. Miller .flowi6_oif = oif, 11534c9483b2SDavid S. Miller .daddr = *daddr, 1154c71099acSThomas Graf }; 1155c71099acSThomas Graf struct dst_entry *dst; 115677d16f45SYOSHIFUJI Hideaki int flags = strict ? RT6_LOOKUP_F_IFACE : 0; 1157c71099acSThomas Graf 1158adaa70bbSThomas Graf if (saddr) { 11594c9483b2SDavid S. Miller memcpy(&fl6.saddr, saddr, sizeof(*saddr)); 1160adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 1161adaa70bbSThomas Graf } 1162adaa70bbSThomas Graf 1163b75cc8f9SDavid Ahern dst = fib6_rule_lookup(net, &fl6, skb, flags, ip6_pol_route_lookup); 1164c71099acSThomas Graf if (dst->error == 0) 1165c71099acSThomas Graf return (struct rt6_info *) dst; 1166c71099acSThomas Graf 1167c71099acSThomas Graf dst_release(dst); 1168c71099acSThomas Graf 11691da177e4SLinus Torvalds return NULL; 11701da177e4SLinus Torvalds } 11717159039aSYOSHIFUJI Hideaki EXPORT_SYMBOL(rt6_lookup); 11727159039aSYOSHIFUJI Hideaki 1173c71099acSThomas Graf /* ip6_ins_rt is called with FREE table->tb6_lock. 11741cfb71eeSWei Wang * It takes new route entry, the addition fails by any reason the 11751cfb71eeSWei Wang * route is released. 11761cfb71eeSWei Wang * Caller must hold dst before calling it. 11771da177e4SLinus Torvalds */ 11781da177e4SLinus Torvalds 11798d1c802bSDavid Ahern static int __ip6_ins_rt(struct fib6_info *rt, struct nl_info *info, 1180333c4301SDavid Ahern struct netlink_ext_ack *extack) 11811da177e4SLinus Torvalds { 11821da177e4SLinus Torvalds int err; 1183c71099acSThomas Graf struct fib6_table *table; 11841da177e4SLinus Torvalds 118593c2fb25SDavid Ahern table = rt->fib6_table; 118666f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 1187d4ead6b3SDavid Ahern err = fib6_add(&table->tb6_root, rt, info, extack); 118866f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 11891da177e4SLinus Torvalds 11901da177e4SLinus Torvalds return err; 11911da177e4SLinus Torvalds } 11921da177e4SLinus Torvalds 11938d1c802bSDavid Ahern int ip6_ins_rt(struct net *net, struct fib6_info *rt) 119440e22e8fSThomas Graf { 1195afb1d4b5SDavid Ahern struct nl_info info = { .nl_net = net, }; 1196e715b6d3SFlorian Westphal 1197d4ead6b3SDavid Ahern return __ip6_ins_rt(rt, &info, NULL); 119840e22e8fSThomas Graf } 119940e22e8fSThomas Graf 120085bd05deSDavid Ahern static struct rt6_info *ip6_rt_cache_alloc(const struct fib6_result *res, 120121efcfa0SEric Dumazet const struct in6_addr *daddr, 1202b71d1d42SEric Dumazet const struct in6_addr *saddr) 12031da177e4SLinus Torvalds { 120485bd05deSDavid Ahern struct fib6_info *f6i = res->f6i; 12054832c30dSDavid Ahern struct net_device *dev; 12061da177e4SLinus Torvalds struct rt6_info *rt; 12071da177e4SLinus Torvalds 12081da177e4SLinus Torvalds /* 12091da177e4SLinus Torvalds * Clone the route. 12101da177e4SLinus Torvalds */ 12111da177e4SLinus Torvalds 121285bd05deSDavid Ahern if (!fib6_info_hold_safe(f6i)) 1213e873e4b9SWei Wang return NULL; 1214e873e4b9SWei Wang 12150d161581SDavid Ahern dev = ip6_rt_get_dev_rcu(res); 121693531c67SDavid Ahern rt = ip6_dst_alloc(dev_net(dev), dev, 0); 1217e873e4b9SWei Wang if (!rt) { 121885bd05deSDavid Ahern fib6_info_release(f6i); 121983a09abdSMartin KaFai Lau return NULL; 1220e873e4b9SWei Wang } 122183a09abdSMartin KaFai Lau 12220d161581SDavid Ahern ip6_rt_copy_init(rt, res); 12238b9df265SMartin KaFai Lau rt->rt6i_flags |= RTF_CACHE; 122483a09abdSMartin KaFai Lau rt->dst.flags |= DST_HOST; 122583a09abdSMartin KaFai Lau rt->rt6i_dst.addr = *daddr; 122683a09abdSMartin KaFai Lau rt->rt6i_dst.plen = 128; 12278b9df265SMartin KaFai Lau 122885bd05deSDavid Ahern if (!rt6_is_gw_or_nonexthop(res)) { 122985bd05deSDavid Ahern if (f6i->fib6_dst.plen != 128 && 123085bd05deSDavid Ahern ipv6_addr_equal(&f6i->fib6_dst.addr, daddr)) 123158c4fb86SYOSHIFUJI Hideaki rt->rt6i_flags |= RTF_ANYCAST; 12321da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 12331da177e4SLinus Torvalds if (rt->rt6i_src.plen && saddr) { 12344e3fd7a0SAlexey Dobriyan rt->rt6i_src.addr = *saddr; 12351da177e4SLinus Torvalds rt->rt6i_src.plen = 128; 12361da177e4SLinus Torvalds } 12371da177e4SLinus Torvalds #endif 123895a9a5baSYOSHIFUJI Hideaki } 123995a9a5baSYOSHIFUJI Hideaki 1240299d9939SYOSHIFUJI Hideaki return rt; 1241299d9939SYOSHIFUJI Hideaki } 1242299d9939SYOSHIFUJI Hideaki 1243db3fedeeSDavid Ahern static struct rt6_info *ip6_rt_pcpu_alloc(const struct fib6_result *res) 1244d52d3997SMartin KaFai Lau { 1245db3fedeeSDavid Ahern struct fib6_info *f6i = res->f6i; 1246db3fedeeSDavid Ahern unsigned short flags = fib6_info_dst_flags(f6i); 12474832c30dSDavid Ahern struct net_device *dev; 1248d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1249d52d3997SMartin KaFai Lau 1250db3fedeeSDavid Ahern if (!fib6_info_hold_safe(f6i)) 1251e873e4b9SWei Wang return NULL; 1252e873e4b9SWei Wang 12534832c30dSDavid Ahern rcu_read_lock(); 12540d161581SDavid Ahern dev = ip6_rt_get_dev_rcu(res); 125593531c67SDavid Ahern pcpu_rt = ip6_dst_alloc(dev_net(dev), dev, flags); 12564832c30dSDavid Ahern rcu_read_unlock(); 1257e873e4b9SWei Wang if (!pcpu_rt) { 1258db3fedeeSDavid Ahern fib6_info_release(f6i); 1259d52d3997SMartin KaFai Lau return NULL; 1260e873e4b9SWei Wang } 12610d161581SDavid Ahern ip6_rt_copy_init(pcpu_rt, res); 1262d52d3997SMartin KaFai Lau pcpu_rt->rt6i_flags |= RTF_PCPU; 1263d52d3997SMartin KaFai Lau return pcpu_rt; 1264d52d3997SMartin KaFai Lau } 1265d52d3997SMartin KaFai Lau 126666f5d6ceSWei Wang /* It should be called with rcu_read_lock() acquired */ 1267db3fedeeSDavid Ahern static struct rt6_info *rt6_get_pcpu_route(const struct fib6_result *res) 1268d52d3997SMartin KaFai Lau { 1269a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, **p; 1270d52d3997SMartin KaFai Lau 1271db3fedeeSDavid Ahern p = this_cpu_ptr(res->f6i->rt6i_pcpu); 1272d52d3997SMartin KaFai Lau pcpu_rt = *p; 1273d52d3997SMartin KaFai Lau 1274d4ead6b3SDavid Ahern if (pcpu_rt) 127510585b43SDavid Ahern ip6_hold_safe(NULL, &pcpu_rt); 1276d3843fe5SWei Wang 1277a73e4195SMartin KaFai Lau return pcpu_rt; 1278a73e4195SMartin KaFai Lau } 1279a73e4195SMartin KaFai Lau 1280afb1d4b5SDavid Ahern static struct rt6_info *rt6_make_pcpu_route(struct net *net, 1281db3fedeeSDavid Ahern const struct fib6_result *res) 1282a73e4195SMartin KaFai Lau { 1283a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, *prev, **p; 1284d52d3997SMartin KaFai Lau 1285db3fedeeSDavid Ahern pcpu_rt = ip6_rt_pcpu_alloc(res); 1286d52d3997SMartin KaFai Lau if (!pcpu_rt) { 12879c7370a1SMartin KaFai Lau dst_hold(&net->ipv6.ip6_null_entry->dst); 12889c7370a1SMartin KaFai Lau return net->ipv6.ip6_null_entry; 1289d52d3997SMartin KaFai Lau } 1290d52d3997SMartin KaFai Lau 1291a94b9367SWei Wang dst_hold(&pcpu_rt->dst); 1292db3fedeeSDavid Ahern p = this_cpu_ptr(res->f6i->rt6i_pcpu); 1293d52d3997SMartin KaFai Lau prev = cmpxchg(p, NULL, pcpu_rt); 1294951f788aSEric Dumazet BUG_ON(prev); 1295a94b9367SWei Wang 1296d52d3997SMartin KaFai Lau return pcpu_rt; 1297d52d3997SMartin KaFai Lau } 1298d52d3997SMartin KaFai Lau 129935732d01SWei Wang /* exception hash table implementation 130035732d01SWei Wang */ 130135732d01SWei Wang static DEFINE_SPINLOCK(rt6_exception_lock); 130235732d01SWei Wang 130335732d01SWei Wang /* Remove rt6_ex from hash table and free the memory 130435732d01SWei Wang * Caller must hold rt6_exception_lock 130535732d01SWei Wang */ 130635732d01SWei Wang static void rt6_remove_exception(struct rt6_exception_bucket *bucket, 130735732d01SWei Wang struct rt6_exception *rt6_ex) 130835732d01SWei Wang { 1309f5b51fe8SPaolo Abeni struct fib6_info *from; 1310b2427e67SColin Ian King struct net *net; 131181eb8447SWei Wang 131235732d01SWei Wang if (!bucket || !rt6_ex) 131335732d01SWei Wang return; 1314b2427e67SColin Ian King 1315b2427e67SColin Ian King net = dev_net(rt6_ex->rt6i->dst.dev); 1316f5b51fe8SPaolo Abeni net->ipv6.rt6_stats->fib_rt_cache--; 1317f5b51fe8SPaolo Abeni 1318f5b51fe8SPaolo Abeni /* purge completely the exception to allow releasing the held resources: 1319f5b51fe8SPaolo Abeni * some [sk] cache may keep the dst around for unlimited time 1320f5b51fe8SPaolo Abeni */ 1321f5b51fe8SPaolo Abeni from = rcu_dereference_protected(rt6_ex->rt6i->from, 1322f5b51fe8SPaolo Abeni lockdep_is_held(&rt6_exception_lock)); 1323f5b51fe8SPaolo Abeni rcu_assign_pointer(rt6_ex->rt6i->from, NULL); 1324f5b51fe8SPaolo Abeni fib6_info_release(from); 1325f5b51fe8SPaolo Abeni dst_dev_put(&rt6_ex->rt6i->dst); 1326f5b51fe8SPaolo Abeni 132735732d01SWei Wang hlist_del_rcu(&rt6_ex->hlist); 132877634cc6SDavid Ahern dst_release(&rt6_ex->rt6i->dst); 132935732d01SWei Wang kfree_rcu(rt6_ex, rcu); 133035732d01SWei Wang WARN_ON_ONCE(!bucket->depth); 133135732d01SWei Wang bucket->depth--; 133235732d01SWei Wang } 133335732d01SWei Wang 133435732d01SWei Wang /* Remove oldest rt6_ex in bucket and free the memory 133535732d01SWei Wang * Caller must hold rt6_exception_lock 133635732d01SWei Wang */ 133735732d01SWei Wang static void rt6_exception_remove_oldest(struct rt6_exception_bucket *bucket) 133835732d01SWei Wang { 133935732d01SWei Wang struct rt6_exception *rt6_ex, *oldest = NULL; 134035732d01SWei Wang 134135732d01SWei Wang if (!bucket) 134235732d01SWei Wang return; 134335732d01SWei Wang 134435732d01SWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 134535732d01SWei Wang if (!oldest || time_before(rt6_ex->stamp, oldest->stamp)) 134635732d01SWei Wang oldest = rt6_ex; 134735732d01SWei Wang } 134835732d01SWei Wang rt6_remove_exception(bucket, oldest); 134935732d01SWei Wang } 135035732d01SWei Wang 135135732d01SWei Wang static u32 rt6_exception_hash(const struct in6_addr *dst, 135235732d01SWei Wang const struct in6_addr *src) 135335732d01SWei Wang { 135435732d01SWei Wang static u32 seed __read_mostly; 135535732d01SWei Wang u32 val; 135635732d01SWei Wang 135735732d01SWei Wang net_get_random_once(&seed, sizeof(seed)); 135835732d01SWei Wang val = jhash(dst, sizeof(*dst), seed); 135935732d01SWei Wang 136035732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 136135732d01SWei Wang if (src) 136235732d01SWei Wang val = jhash(src, sizeof(*src), val); 136335732d01SWei Wang #endif 136435732d01SWei Wang return hash_32(val, FIB6_EXCEPTION_BUCKET_SIZE_SHIFT); 136535732d01SWei Wang } 136635732d01SWei Wang 136735732d01SWei Wang /* Helper function to find the cached rt in the hash table 136835732d01SWei Wang * and update bucket pointer to point to the bucket for this 136935732d01SWei Wang * (daddr, saddr) pair 137035732d01SWei Wang * Caller must hold rt6_exception_lock 137135732d01SWei Wang */ 137235732d01SWei Wang static struct rt6_exception * 137335732d01SWei Wang __rt6_find_exception_spinlock(struct rt6_exception_bucket **bucket, 137435732d01SWei Wang const struct in6_addr *daddr, 137535732d01SWei Wang const struct in6_addr *saddr) 137635732d01SWei Wang { 137735732d01SWei Wang struct rt6_exception *rt6_ex; 137835732d01SWei Wang u32 hval; 137935732d01SWei Wang 138035732d01SWei Wang if (!(*bucket) || !daddr) 138135732d01SWei Wang return NULL; 138235732d01SWei Wang 138335732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 138435732d01SWei Wang *bucket += hval; 138535732d01SWei Wang 138635732d01SWei Wang hlist_for_each_entry(rt6_ex, &(*bucket)->chain, hlist) { 138735732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 138835732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 138935732d01SWei Wang 139035732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 139135732d01SWei Wang if (matched && saddr) 139235732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 139335732d01SWei Wang #endif 139435732d01SWei Wang if (matched) 139535732d01SWei Wang return rt6_ex; 139635732d01SWei Wang } 139735732d01SWei Wang return NULL; 139835732d01SWei Wang } 139935732d01SWei Wang 140035732d01SWei Wang /* Helper function to find the cached rt in the hash table 140135732d01SWei Wang * and update bucket pointer to point to the bucket for this 140235732d01SWei Wang * (daddr, saddr) pair 140335732d01SWei Wang * Caller must hold rcu_read_lock() 140435732d01SWei Wang */ 140535732d01SWei Wang static struct rt6_exception * 140635732d01SWei Wang __rt6_find_exception_rcu(struct rt6_exception_bucket **bucket, 140735732d01SWei Wang const struct in6_addr *daddr, 140835732d01SWei Wang const struct in6_addr *saddr) 140935732d01SWei Wang { 141035732d01SWei Wang struct rt6_exception *rt6_ex; 141135732d01SWei Wang u32 hval; 141235732d01SWei Wang 141335732d01SWei Wang WARN_ON_ONCE(!rcu_read_lock_held()); 141435732d01SWei Wang 141535732d01SWei Wang if (!(*bucket) || !daddr) 141635732d01SWei Wang return NULL; 141735732d01SWei Wang 141835732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 141935732d01SWei Wang *bucket += hval; 142035732d01SWei Wang 142135732d01SWei Wang hlist_for_each_entry_rcu(rt6_ex, &(*bucket)->chain, hlist) { 142235732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 142335732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 142435732d01SWei Wang 142535732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 142635732d01SWei Wang if (matched && saddr) 142735732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 142835732d01SWei Wang #endif 142935732d01SWei Wang if (matched) 143035732d01SWei Wang return rt6_ex; 143135732d01SWei Wang } 143235732d01SWei Wang return NULL; 143335732d01SWei Wang } 143435732d01SWei Wang 1435b748f260SDavid Ahern static unsigned int fib6_mtu(const struct fib6_result *res) 143635732d01SWei Wang { 1437b748f260SDavid Ahern const struct fib6_nh *nh = res->nh; 1438d4ead6b3SDavid Ahern unsigned int mtu; 1439d4ead6b3SDavid Ahern 1440b748f260SDavid Ahern if (res->f6i->fib6_pmtu) { 1441b748f260SDavid Ahern mtu = res->f6i->fib6_pmtu; 1442dcd1f572SDavid Ahern } else { 1443b748f260SDavid Ahern struct net_device *dev = nh->fib_nh_dev; 1444dcd1f572SDavid Ahern struct inet6_dev *idev; 1445dcd1f572SDavid Ahern 1446dcd1f572SDavid Ahern rcu_read_lock(); 1447dcd1f572SDavid Ahern idev = __in6_dev_get(dev); 1448dcd1f572SDavid Ahern mtu = idev->cnf.mtu6; 1449dcd1f572SDavid Ahern rcu_read_unlock(); 1450dcd1f572SDavid Ahern } 1451dcd1f572SDavid Ahern 1452d4ead6b3SDavid Ahern mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 1453d4ead6b3SDavid Ahern 1454b748f260SDavid Ahern return mtu - lwtunnel_headroom(nh->fib_nh_lws, mtu); 1455d4ead6b3SDavid Ahern } 1456d4ead6b3SDavid Ahern 145735732d01SWei Wang static int rt6_insert_exception(struct rt6_info *nrt, 14585012f0a5SDavid Ahern const struct fib6_result *res) 145935732d01SWei Wang { 14605e670d84SDavid Ahern struct net *net = dev_net(nrt->dst.dev); 146135732d01SWei Wang struct rt6_exception_bucket *bucket; 146235732d01SWei Wang struct in6_addr *src_key = NULL; 146335732d01SWei Wang struct rt6_exception *rt6_ex; 14645012f0a5SDavid Ahern struct fib6_info *f6i = res->f6i; 146535732d01SWei Wang int err = 0; 146635732d01SWei Wang 146735732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 146835732d01SWei Wang 14695012f0a5SDavid Ahern if (f6i->exception_bucket_flushed) { 147035732d01SWei Wang err = -EINVAL; 147135732d01SWei Wang goto out; 147235732d01SWei Wang } 147335732d01SWei Wang 14745012f0a5SDavid Ahern bucket = rcu_dereference_protected(f6i->rt6i_exception_bucket, 147535732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 147635732d01SWei Wang if (!bucket) { 147735732d01SWei Wang bucket = kcalloc(FIB6_EXCEPTION_BUCKET_SIZE, sizeof(*bucket), 147835732d01SWei Wang GFP_ATOMIC); 147935732d01SWei Wang if (!bucket) { 148035732d01SWei Wang err = -ENOMEM; 148135732d01SWei Wang goto out; 148235732d01SWei Wang } 14835012f0a5SDavid Ahern rcu_assign_pointer(f6i->rt6i_exception_bucket, bucket); 148435732d01SWei Wang } 148535732d01SWei Wang 148635732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 14875012f0a5SDavid Ahern /* fib6_src.plen != 0 indicates f6i is in subtree 148835732d01SWei Wang * and exception table is indexed by a hash of 14895012f0a5SDavid Ahern * both fib6_dst and fib6_src. 149035732d01SWei Wang * Otherwise, the exception table is indexed by 14915012f0a5SDavid Ahern * a hash of only fib6_dst. 149235732d01SWei Wang */ 14935012f0a5SDavid Ahern if (f6i->fib6_src.plen) 149435732d01SWei Wang src_key = &nrt->rt6i_src.addr; 149535732d01SWei Wang #endif 14965012f0a5SDavid Ahern /* rt6_mtu_change() might lower mtu on f6i. 1497f5bbe7eeSWei Wang * Only insert this exception route if its mtu 14985012f0a5SDavid Ahern * is less than f6i's mtu value. 1499f5bbe7eeSWei Wang */ 1500b748f260SDavid Ahern if (dst_metric_raw(&nrt->dst, RTAX_MTU) >= fib6_mtu(res)) { 1501f5bbe7eeSWei Wang err = -EINVAL; 1502f5bbe7eeSWei Wang goto out; 1503f5bbe7eeSWei Wang } 150460006a48SWei Wang 150535732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, &nrt->rt6i_dst.addr, 150635732d01SWei Wang src_key); 150735732d01SWei Wang if (rt6_ex) 150835732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 150935732d01SWei Wang 151035732d01SWei Wang rt6_ex = kzalloc(sizeof(*rt6_ex), GFP_ATOMIC); 151135732d01SWei Wang if (!rt6_ex) { 151235732d01SWei Wang err = -ENOMEM; 151335732d01SWei Wang goto out; 151435732d01SWei Wang } 151535732d01SWei Wang rt6_ex->rt6i = nrt; 151635732d01SWei Wang rt6_ex->stamp = jiffies; 151735732d01SWei Wang hlist_add_head_rcu(&rt6_ex->hlist, &bucket->chain); 151835732d01SWei Wang bucket->depth++; 151981eb8447SWei Wang net->ipv6.rt6_stats->fib_rt_cache++; 152035732d01SWei Wang 152135732d01SWei Wang if (bucket->depth > FIB6_MAX_DEPTH) 152235732d01SWei Wang rt6_exception_remove_oldest(bucket); 152335732d01SWei Wang 152435732d01SWei Wang out: 152535732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 152635732d01SWei Wang 152735732d01SWei Wang /* Update fn->fn_sernum to invalidate all cached dst */ 1528b886d5f2SPaolo Abeni if (!err) { 15295012f0a5SDavid Ahern spin_lock_bh(&f6i->fib6_table->tb6_lock); 15305012f0a5SDavid Ahern fib6_update_sernum(net, f6i); 15315012f0a5SDavid Ahern spin_unlock_bh(&f6i->fib6_table->tb6_lock); 1532b886d5f2SPaolo Abeni fib6_force_start_gc(net); 1533b886d5f2SPaolo Abeni } 153435732d01SWei Wang 153535732d01SWei Wang return err; 153635732d01SWei Wang } 153735732d01SWei Wang 15388d1c802bSDavid Ahern void rt6_flush_exceptions(struct fib6_info *rt) 153935732d01SWei Wang { 154035732d01SWei Wang struct rt6_exception_bucket *bucket; 154135732d01SWei Wang struct rt6_exception *rt6_ex; 154235732d01SWei Wang struct hlist_node *tmp; 154335732d01SWei Wang int i; 154435732d01SWei Wang 154535732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 154635732d01SWei Wang /* Prevent rt6_insert_exception() to recreate the bucket list */ 154735732d01SWei Wang rt->exception_bucket_flushed = 1; 154835732d01SWei Wang 154935732d01SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 155035732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 155135732d01SWei Wang if (!bucket) 155235732d01SWei Wang goto out; 155335732d01SWei Wang 155435732d01SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 155535732d01SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, &bucket->chain, hlist) 155635732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 155735732d01SWei Wang WARN_ON_ONCE(bucket->depth); 155835732d01SWei Wang bucket++; 155935732d01SWei Wang } 156035732d01SWei Wang 156135732d01SWei Wang out: 156235732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 156335732d01SWei Wang } 156435732d01SWei Wang 156535732d01SWei Wang /* Find cached rt in the hash table inside passed in rt 156635732d01SWei Wang * Caller has to hold rcu_read_lock() 156735732d01SWei Wang */ 15687e4b5128SDavid Ahern static struct rt6_info *rt6_find_cached_rt(const struct fib6_result *res, 156935732d01SWei Wang struct in6_addr *daddr, 157035732d01SWei Wang struct in6_addr *saddr) 157135732d01SWei Wang { 157235732d01SWei Wang struct rt6_exception_bucket *bucket; 157335732d01SWei Wang struct in6_addr *src_key = NULL; 157435732d01SWei Wang struct rt6_exception *rt6_ex; 15757e4b5128SDavid Ahern struct rt6_info *ret = NULL; 157635732d01SWei Wang 15777e4b5128SDavid Ahern bucket = rcu_dereference(res->f6i->rt6i_exception_bucket); 157835732d01SWei Wang 157935732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 15807e4b5128SDavid Ahern /* fib6i_src.plen != 0 indicates f6i is in subtree 158135732d01SWei Wang * and exception table is indexed by a hash of 15827e4b5128SDavid Ahern * both fib6_dst and fib6_src. 158335732d01SWei Wang * Otherwise, the exception table is indexed by 15847e4b5128SDavid Ahern * a hash of only fib6_dst. 158535732d01SWei Wang */ 15867e4b5128SDavid Ahern if (res->f6i->fib6_src.plen) 158735732d01SWei Wang src_key = saddr; 158835732d01SWei Wang #endif 158935732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, daddr, src_key); 159035732d01SWei Wang 159135732d01SWei Wang if (rt6_ex && !rt6_check_expired(rt6_ex->rt6i)) 15927e4b5128SDavid Ahern ret = rt6_ex->rt6i; 159335732d01SWei Wang 15947e4b5128SDavid Ahern return ret; 159535732d01SWei Wang } 159635732d01SWei Wang 159735732d01SWei Wang /* Remove the passed in cached rt from the hash table that contains it */ 159823fb93a4SDavid Ahern static int rt6_remove_exception_rt(struct rt6_info *rt) 159935732d01SWei Wang { 160035732d01SWei Wang struct rt6_exception_bucket *bucket; 160135732d01SWei Wang struct in6_addr *src_key = NULL; 160235732d01SWei Wang struct rt6_exception *rt6_ex; 16038a14e46fSDavid Ahern struct fib6_info *from; 160435732d01SWei Wang int err; 160535732d01SWei Wang 1606091311deSEric Dumazet from = rcu_dereference(rt->from); 160735732d01SWei Wang if (!from || 1608442d713bSColin Ian King !(rt->rt6i_flags & RTF_CACHE)) 160935732d01SWei Wang return -EINVAL; 161035732d01SWei Wang 161135732d01SWei Wang if (!rcu_access_pointer(from->rt6i_exception_bucket)) 161235732d01SWei Wang return -ENOENT; 161335732d01SWei Wang 161435732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 161535732d01SWei Wang bucket = rcu_dereference_protected(from->rt6i_exception_bucket, 161635732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 161735732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 161835732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 161935732d01SWei Wang * and exception table is indexed by a hash of 162035732d01SWei Wang * both rt6i_dst and rt6i_src. 162135732d01SWei Wang * Otherwise, the exception table is indexed by 162235732d01SWei Wang * a hash of only rt6i_dst. 162335732d01SWei Wang */ 162493c2fb25SDavid Ahern if (from->fib6_src.plen) 162535732d01SWei Wang src_key = &rt->rt6i_src.addr; 162635732d01SWei Wang #endif 162735732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, 162835732d01SWei Wang &rt->rt6i_dst.addr, 162935732d01SWei Wang src_key); 163035732d01SWei Wang if (rt6_ex) { 163135732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 163235732d01SWei Wang err = 0; 163335732d01SWei Wang } else { 163435732d01SWei Wang err = -ENOENT; 163535732d01SWei Wang } 163635732d01SWei Wang 163735732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 163835732d01SWei Wang return err; 163935732d01SWei Wang } 164035732d01SWei Wang 164135732d01SWei Wang /* Find rt6_ex which contains the passed in rt cache and 164235732d01SWei Wang * refresh its stamp 164335732d01SWei Wang */ 164435732d01SWei Wang static void rt6_update_exception_stamp_rt(struct rt6_info *rt) 164535732d01SWei Wang { 164635732d01SWei Wang struct rt6_exception_bucket *bucket; 164735732d01SWei Wang struct in6_addr *src_key = NULL; 164835732d01SWei Wang struct rt6_exception *rt6_ex; 1649193f3685SPaolo Abeni struct fib6_info *from; 165035732d01SWei Wang 165135732d01SWei Wang rcu_read_lock(); 1652193f3685SPaolo Abeni from = rcu_dereference(rt->from); 1653193f3685SPaolo Abeni if (!from || !(rt->rt6i_flags & RTF_CACHE)) 1654193f3685SPaolo Abeni goto unlock; 1655193f3685SPaolo Abeni 165635732d01SWei Wang bucket = rcu_dereference(from->rt6i_exception_bucket); 165735732d01SWei Wang 165835732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 165935732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 166035732d01SWei Wang * and exception table is indexed by a hash of 166135732d01SWei Wang * both rt6i_dst and rt6i_src. 166235732d01SWei Wang * Otherwise, the exception table is indexed by 166335732d01SWei Wang * a hash of only rt6i_dst. 166435732d01SWei Wang */ 166593c2fb25SDavid Ahern if (from->fib6_src.plen) 166635732d01SWei Wang src_key = &rt->rt6i_src.addr; 166735732d01SWei Wang #endif 166835732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, 166935732d01SWei Wang &rt->rt6i_dst.addr, 167035732d01SWei Wang src_key); 167135732d01SWei Wang if (rt6_ex) 167235732d01SWei Wang rt6_ex->stamp = jiffies; 167335732d01SWei Wang 1674193f3685SPaolo Abeni unlock: 167535732d01SWei Wang rcu_read_unlock(); 167635732d01SWei Wang } 167735732d01SWei Wang 1678e9fa1495SStefano Brivio static bool rt6_mtu_change_route_allowed(struct inet6_dev *idev, 1679e9fa1495SStefano Brivio struct rt6_info *rt, int mtu) 1680e9fa1495SStefano Brivio { 1681e9fa1495SStefano Brivio /* If the new MTU is lower than the route PMTU, this new MTU will be the 1682e9fa1495SStefano Brivio * lowest MTU in the path: always allow updating the route PMTU to 1683e9fa1495SStefano Brivio * reflect PMTU decreases. 1684e9fa1495SStefano Brivio * 1685e9fa1495SStefano Brivio * If the new MTU is higher, and the route PMTU is equal to the local 1686e9fa1495SStefano Brivio * MTU, this means the old MTU is the lowest in the path, so allow 1687e9fa1495SStefano Brivio * updating it: if other nodes now have lower MTUs, PMTU discovery will 1688e9fa1495SStefano Brivio * handle this. 1689e9fa1495SStefano Brivio */ 1690e9fa1495SStefano Brivio 1691e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) >= mtu) 1692e9fa1495SStefano Brivio return true; 1693e9fa1495SStefano Brivio 1694e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) == idev->cnf.mtu6) 1695e9fa1495SStefano Brivio return true; 1696e9fa1495SStefano Brivio 1697e9fa1495SStefano Brivio return false; 1698e9fa1495SStefano Brivio } 1699e9fa1495SStefano Brivio 1700e9fa1495SStefano Brivio static void rt6_exceptions_update_pmtu(struct inet6_dev *idev, 17018d1c802bSDavid Ahern struct fib6_info *rt, int mtu) 1702f5bbe7eeSWei Wang { 1703f5bbe7eeSWei Wang struct rt6_exception_bucket *bucket; 1704f5bbe7eeSWei Wang struct rt6_exception *rt6_ex; 1705f5bbe7eeSWei Wang int i; 1706f5bbe7eeSWei Wang 1707f5bbe7eeSWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1708f5bbe7eeSWei Wang lockdep_is_held(&rt6_exception_lock)); 1709f5bbe7eeSWei Wang 1710e9fa1495SStefano Brivio if (!bucket) 1711e9fa1495SStefano Brivio return; 1712e9fa1495SStefano Brivio 1713f5bbe7eeSWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1714f5bbe7eeSWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 1715f5bbe7eeSWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1716e9fa1495SStefano Brivio 1717e9fa1495SStefano Brivio /* For RTF_CACHE with rt6i_pmtu == 0 (i.e. a redirected 1718d4ead6b3SDavid Ahern * route), the metrics of its rt->from have already 1719f5bbe7eeSWei Wang * been updated. 1720f5bbe7eeSWei Wang */ 1721d4ead6b3SDavid Ahern if (dst_metric_raw(&entry->dst, RTAX_MTU) && 1722e9fa1495SStefano Brivio rt6_mtu_change_route_allowed(idev, entry, mtu)) 1723d4ead6b3SDavid Ahern dst_metric_set(&entry->dst, RTAX_MTU, mtu); 1724f5bbe7eeSWei Wang } 1725f5bbe7eeSWei Wang bucket++; 1726f5bbe7eeSWei Wang } 1727f5bbe7eeSWei Wang } 1728f5bbe7eeSWei Wang 1729b16cb459SWei Wang #define RTF_CACHE_GATEWAY (RTF_GATEWAY | RTF_CACHE) 1730b16cb459SWei Wang 17318d1c802bSDavid Ahern static void rt6_exceptions_clean_tohost(struct fib6_info *rt, 1732b16cb459SWei Wang struct in6_addr *gateway) 1733b16cb459SWei Wang { 1734b16cb459SWei Wang struct rt6_exception_bucket *bucket; 1735b16cb459SWei Wang struct rt6_exception *rt6_ex; 1736b16cb459SWei Wang struct hlist_node *tmp; 1737b16cb459SWei Wang int i; 1738b16cb459SWei Wang 1739b16cb459SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1740b16cb459SWei Wang return; 1741b16cb459SWei Wang 1742b16cb459SWei Wang spin_lock_bh(&rt6_exception_lock); 1743b16cb459SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1744b16cb459SWei Wang lockdep_is_held(&rt6_exception_lock)); 1745b16cb459SWei Wang 1746b16cb459SWei Wang if (bucket) { 1747b16cb459SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1748b16cb459SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1749b16cb459SWei Wang &bucket->chain, hlist) { 1750b16cb459SWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1751b16cb459SWei Wang 1752b16cb459SWei Wang if ((entry->rt6i_flags & RTF_CACHE_GATEWAY) == 1753b16cb459SWei Wang RTF_CACHE_GATEWAY && 1754b16cb459SWei Wang ipv6_addr_equal(gateway, 1755b16cb459SWei Wang &entry->rt6i_gateway)) { 1756b16cb459SWei Wang rt6_remove_exception(bucket, rt6_ex); 1757b16cb459SWei Wang } 1758b16cb459SWei Wang } 1759b16cb459SWei Wang bucket++; 1760b16cb459SWei Wang } 1761b16cb459SWei Wang } 1762b16cb459SWei Wang 1763b16cb459SWei Wang spin_unlock_bh(&rt6_exception_lock); 1764b16cb459SWei Wang } 1765b16cb459SWei Wang 1766c757faa8SWei Wang static void rt6_age_examine_exception(struct rt6_exception_bucket *bucket, 1767c757faa8SWei Wang struct rt6_exception *rt6_ex, 1768c757faa8SWei Wang struct fib6_gc_args *gc_args, 1769c757faa8SWei Wang unsigned long now) 1770c757faa8SWei Wang { 1771c757faa8SWei Wang struct rt6_info *rt = rt6_ex->rt6i; 1772c757faa8SWei Wang 17731859bac0SPaolo Abeni /* we are pruning and obsoleting aged-out and non gateway exceptions 17741859bac0SPaolo Abeni * even if others have still references to them, so that on next 17751859bac0SPaolo Abeni * dst_check() such references can be dropped. 17761859bac0SPaolo Abeni * EXPIRES exceptions - e.g. pmtu-generated ones are pruned when 17771859bac0SPaolo Abeni * expired, independently from their aging, as per RFC 8201 section 4 17781859bac0SPaolo Abeni */ 177931afeb42SWei Wang if (!(rt->rt6i_flags & RTF_EXPIRES)) { 178031afeb42SWei Wang if (time_after_eq(now, rt->dst.lastuse + gc_args->timeout)) { 1781c757faa8SWei Wang RT6_TRACE("aging clone %p\n", rt); 1782c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1783c757faa8SWei Wang return; 178431afeb42SWei Wang } 178531afeb42SWei Wang } else if (time_after(jiffies, rt->dst.expires)) { 178631afeb42SWei Wang RT6_TRACE("purging expired route %p\n", rt); 178731afeb42SWei Wang rt6_remove_exception(bucket, rt6_ex); 178831afeb42SWei Wang return; 178931afeb42SWei Wang } 179031afeb42SWei Wang 179131afeb42SWei Wang if (rt->rt6i_flags & RTF_GATEWAY) { 1792c757faa8SWei Wang struct neighbour *neigh; 1793c757faa8SWei Wang __u8 neigh_flags = 0; 1794c757faa8SWei Wang 17951bfa26ffSEric Dumazet neigh = __ipv6_neigh_lookup_noref(rt->dst.dev, &rt->rt6i_gateway); 17961bfa26ffSEric Dumazet if (neigh) 1797c757faa8SWei Wang neigh_flags = neigh->flags; 17981bfa26ffSEric Dumazet 1799c757faa8SWei Wang if (!(neigh_flags & NTF_ROUTER)) { 1800c757faa8SWei Wang RT6_TRACE("purging route %p via non-router but gateway\n", 1801c757faa8SWei Wang rt); 1802c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1803c757faa8SWei Wang return; 1804c757faa8SWei Wang } 1805c757faa8SWei Wang } 180631afeb42SWei Wang 1807c757faa8SWei Wang gc_args->more++; 1808c757faa8SWei Wang } 1809c757faa8SWei Wang 18108d1c802bSDavid Ahern void rt6_age_exceptions(struct fib6_info *rt, 1811c757faa8SWei Wang struct fib6_gc_args *gc_args, 1812c757faa8SWei Wang unsigned long now) 1813c757faa8SWei Wang { 1814c757faa8SWei Wang struct rt6_exception_bucket *bucket; 1815c757faa8SWei Wang struct rt6_exception *rt6_ex; 1816c757faa8SWei Wang struct hlist_node *tmp; 1817c757faa8SWei Wang int i; 1818c757faa8SWei Wang 1819c757faa8SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1820c757faa8SWei Wang return; 1821c757faa8SWei Wang 18221bfa26ffSEric Dumazet rcu_read_lock_bh(); 18231bfa26ffSEric Dumazet spin_lock(&rt6_exception_lock); 1824c757faa8SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1825c757faa8SWei Wang lockdep_is_held(&rt6_exception_lock)); 1826c757faa8SWei Wang 1827c757faa8SWei Wang if (bucket) { 1828c757faa8SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1829c757faa8SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1830c757faa8SWei Wang &bucket->chain, hlist) { 1831c757faa8SWei Wang rt6_age_examine_exception(bucket, rt6_ex, 1832c757faa8SWei Wang gc_args, now); 1833c757faa8SWei Wang } 1834c757faa8SWei Wang bucket++; 1835c757faa8SWei Wang } 1836c757faa8SWei Wang } 18371bfa26ffSEric Dumazet spin_unlock(&rt6_exception_lock); 18381bfa26ffSEric Dumazet rcu_read_unlock_bh(); 1839c757faa8SWei Wang } 1840c757faa8SWei Wang 18411d053da9SDavid Ahern /* must be called with rcu lock held */ 18421d053da9SDavid Ahern struct fib6_info *fib6_table_lookup(struct net *net, struct fib6_table *table, 18431d053da9SDavid Ahern int oif, struct flowi6 *fl6, int strict) 18441da177e4SLinus Torvalds { 1845367efcb9SMartin KaFai Lau struct fib6_node *fn, *saved_fn; 1846b7bc4b6aSDavid Ahern struct fib6_result res; 18471da177e4SLinus Torvalds 18486454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1849367efcb9SMartin KaFai Lau saved_fn = fn; 18501da177e4SLinus Torvalds 1851ca254490SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1852ca254490SDavid Ahern oif = 0; 1853ca254490SDavid Ahern 1854a3c00e46SMartin KaFai Lau redo_rt6_select: 1855b7bc4b6aSDavid Ahern rt6_select(net, fn, oif, &res, strict); 1856b7bc4b6aSDavid Ahern if (res.f6i == net->ipv6.fib6_null_entry) { 1857a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1858a3c00e46SMartin KaFai Lau if (fn) 1859a3c00e46SMartin KaFai Lau goto redo_rt6_select; 1860367efcb9SMartin KaFai Lau else if (strict & RT6_LOOKUP_F_REACHABLE) { 1861367efcb9SMartin KaFai Lau /* also consider unreachable route */ 1862367efcb9SMartin KaFai Lau strict &= ~RT6_LOOKUP_F_REACHABLE; 1863367efcb9SMartin KaFai Lau fn = saved_fn; 1864367efcb9SMartin KaFai Lau goto redo_rt6_select; 1865367efcb9SMartin KaFai Lau } 1866a3c00e46SMartin KaFai Lau } 1867a3c00e46SMartin KaFai Lau 1868*8ff2e5b2SDavid Ahern trace_fib6_table_lookup(net, &res, table, fl6); 1869d52d3997SMartin KaFai Lau 1870b7bc4b6aSDavid Ahern return res.f6i; 18711d053da9SDavid Ahern } 18721d053da9SDavid Ahern 18731d053da9SDavid Ahern struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, 18741d053da9SDavid Ahern int oif, struct flowi6 *fl6, 18751d053da9SDavid Ahern const struct sk_buff *skb, int flags) 18761d053da9SDavid Ahern { 1877b1d40991SDavid Ahern struct fib6_result res = {}; 18781d053da9SDavid Ahern struct rt6_info *rt; 18791d053da9SDavid Ahern int strict = 0; 18801d053da9SDavid Ahern 18811d053da9SDavid Ahern strict |= flags & RT6_LOOKUP_F_IFACE; 18821d053da9SDavid Ahern strict |= flags & RT6_LOOKUP_F_IGNORE_LINKSTATE; 18831d053da9SDavid Ahern if (net->ipv6.devconf_all->forwarding == 0) 18841d053da9SDavid Ahern strict |= RT6_LOOKUP_F_REACHABLE; 18851d053da9SDavid Ahern 18861d053da9SDavid Ahern rcu_read_lock(); 18871d053da9SDavid Ahern 1888b1d40991SDavid Ahern res.f6i = fib6_table_lookup(net, table, oif, fl6, strict); 1889b1d40991SDavid Ahern if (res.f6i == net->ipv6.fib6_null_entry) { 1890421842edSDavid Ahern rt = net->ipv6.ip6_null_entry; 189166f5d6ceSWei Wang rcu_read_unlock(); 1892d3843fe5SWei Wang dst_hold(&rt->dst); 1893d3843fe5SWei Wang return rt; 1894d3843fe5SWei Wang } 189523fb93a4SDavid Ahern 1896b1d40991SDavid Ahern fib6_select_path(net, &res, fl6, oif, false, skb, strict); 1897d83009d4SDavid Ahern 189823fb93a4SDavid Ahern /*Search through exception table */ 18997e4b5128SDavid Ahern rt = rt6_find_cached_rt(&res, &fl6->daddr, &fl6->saddr); 190023fb93a4SDavid Ahern if (rt) { 190110585b43SDavid Ahern if (ip6_hold_safe(net, &rt)) 19021da177e4SLinus Torvalds dst_use_noref(&rt->dst, jiffies); 1903d4ead6b3SDavid Ahern 190466f5d6ceSWei Wang rcu_read_unlock(); 1905d52d3997SMartin KaFai Lau return rt; 19063da59bd9SMartin KaFai Lau } else if (unlikely((fl6->flowi6_flags & FLOWI_FLAG_KNOWN_NH) && 1907b1d40991SDavid Ahern !res.nh->fib_nh_gw_family)) { 19083da59bd9SMartin KaFai Lau /* Create a RTF_CACHE clone which will not be 19093da59bd9SMartin KaFai Lau * owned by the fib6 tree. It is for the special case where 19103da59bd9SMartin KaFai Lau * the daddr in the skb during the neighbor look-up is different 19113da59bd9SMartin KaFai Lau * from the fl6->daddr used to look-up route here. 19123da59bd9SMartin KaFai Lau */ 19133da59bd9SMartin KaFai Lau struct rt6_info *uncached_rt; 19143da59bd9SMartin KaFai Lau 191585bd05deSDavid Ahern uncached_rt = ip6_rt_cache_alloc(&res, &fl6->daddr, NULL); 1916d52d3997SMartin KaFai Lau 19174d85cd0cSDavid Ahern rcu_read_unlock(); 19183da59bd9SMartin KaFai Lau 19191cfb71eeSWei Wang if (uncached_rt) { 19201cfb71eeSWei Wang /* Uncached_rt's refcnt is taken during ip6_rt_cache_alloc() 19211cfb71eeSWei Wang * No need for another dst_hold() 19221cfb71eeSWei Wang */ 19238d0b94afSMartin KaFai Lau rt6_uncached_list_add(uncached_rt); 192481eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 19251cfb71eeSWei Wang } else { 19263da59bd9SMartin KaFai Lau uncached_rt = net->ipv6.ip6_null_entry; 19273da59bd9SMartin KaFai Lau dst_hold(&uncached_rt->dst); 19281cfb71eeSWei Wang } 1929b811580dSDavid Ahern 19303da59bd9SMartin KaFai Lau return uncached_rt; 1931d52d3997SMartin KaFai Lau } else { 1932d52d3997SMartin KaFai Lau /* Get a percpu copy */ 1933d52d3997SMartin KaFai Lau 1934d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1935d52d3997SMartin KaFai Lau 1936951f788aSEric Dumazet local_bh_disable(); 1937db3fedeeSDavid Ahern pcpu_rt = rt6_get_pcpu_route(&res); 1938d52d3997SMartin KaFai Lau 193993531c67SDavid Ahern if (!pcpu_rt) 1940db3fedeeSDavid Ahern pcpu_rt = rt6_make_pcpu_route(net, &res); 194193531c67SDavid Ahern 1942951f788aSEric Dumazet local_bh_enable(); 1943951f788aSEric Dumazet rcu_read_unlock(); 1944d4bea421SDavid Ahern 1945d52d3997SMartin KaFai Lau return pcpu_rt; 1946d52d3997SMartin KaFai Lau } 1947c71099acSThomas Graf } 19489ff74384SDavid Ahern EXPORT_SYMBOL_GPL(ip6_pol_route); 1949c71099acSThomas Graf 1950b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_input(struct net *net, 1951b75cc8f9SDavid Ahern struct fib6_table *table, 1952b75cc8f9SDavid Ahern struct flowi6 *fl6, 1953b75cc8f9SDavid Ahern const struct sk_buff *skb, 1954b75cc8f9SDavid Ahern int flags) 19554acad72dSPavel Emelyanov { 1956b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_iif, fl6, skb, flags); 19574acad72dSPavel Emelyanov } 19584acad72dSPavel Emelyanov 1959d409b847SMahesh Bandewar struct dst_entry *ip6_route_input_lookup(struct net *net, 196072331bc0SShmulik Ladkani struct net_device *dev, 1961b75cc8f9SDavid Ahern struct flowi6 *fl6, 1962b75cc8f9SDavid Ahern const struct sk_buff *skb, 1963b75cc8f9SDavid Ahern int flags) 196472331bc0SShmulik Ladkani { 196572331bc0SShmulik Ladkani if (rt6_need_strict(&fl6->daddr) && dev->type != ARPHRD_PIMREG) 196672331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_IFACE; 196772331bc0SShmulik Ladkani 1968b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_input); 196972331bc0SShmulik Ladkani } 1970d409b847SMahesh Bandewar EXPORT_SYMBOL_GPL(ip6_route_input_lookup); 197172331bc0SShmulik Ladkani 197223aebdacSJakub Sitnicki static void ip6_multipath_l3_keys(const struct sk_buff *skb, 19735e5d6fedSRoopa Prabhu struct flow_keys *keys, 19745e5d6fedSRoopa Prabhu struct flow_keys *flkeys) 197523aebdacSJakub Sitnicki { 197623aebdacSJakub Sitnicki const struct ipv6hdr *outer_iph = ipv6_hdr(skb); 197723aebdacSJakub Sitnicki const struct ipv6hdr *key_iph = outer_iph; 19785e5d6fedSRoopa Prabhu struct flow_keys *_flkeys = flkeys; 197923aebdacSJakub Sitnicki const struct ipv6hdr *inner_iph; 198023aebdacSJakub Sitnicki const struct icmp6hdr *icmph; 198123aebdacSJakub Sitnicki struct ipv6hdr _inner_iph; 1982cea67a2dSEric Dumazet struct icmp6hdr _icmph; 198323aebdacSJakub Sitnicki 198423aebdacSJakub Sitnicki if (likely(outer_iph->nexthdr != IPPROTO_ICMPV6)) 198523aebdacSJakub Sitnicki goto out; 198623aebdacSJakub Sitnicki 1987cea67a2dSEric Dumazet icmph = skb_header_pointer(skb, skb_transport_offset(skb), 1988cea67a2dSEric Dumazet sizeof(_icmph), &_icmph); 1989cea67a2dSEric Dumazet if (!icmph) 1990cea67a2dSEric Dumazet goto out; 1991cea67a2dSEric Dumazet 199223aebdacSJakub Sitnicki if (icmph->icmp6_type != ICMPV6_DEST_UNREACH && 199323aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PKT_TOOBIG && 199423aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_TIME_EXCEED && 199523aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PARAMPROB) 199623aebdacSJakub Sitnicki goto out; 199723aebdacSJakub Sitnicki 199823aebdacSJakub Sitnicki inner_iph = skb_header_pointer(skb, 199923aebdacSJakub Sitnicki skb_transport_offset(skb) + sizeof(*icmph), 200023aebdacSJakub Sitnicki sizeof(_inner_iph), &_inner_iph); 200123aebdacSJakub Sitnicki if (!inner_iph) 200223aebdacSJakub Sitnicki goto out; 200323aebdacSJakub Sitnicki 200423aebdacSJakub Sitnicki key_iph = inner_iph; 20055e5d6fedSRoopa Prabhu _flkeys = NULL; 200623aebdacSJakub Sitnicki out: 20075e5d6fedSRoopa Prabhu if (_flkeys) { 20085e5d6fedSRoopa Prabhu keys->addrs.v6addrs.src = _flkeys->addrs.v6addrs.src; 20095e5d6fedSRoopa Prabhu keys->addrs.v6addrs.dst = _flkeys->addrs.v6addrs.dst; 20105e5d6fedSRoopa Prabhu keys->tags.flow_label = _flkeys->tags.flow_label; 20115e5d6fedSRoopa Prabhu keys->basic.ip_proto = _flkeys->basic.ip_proto; 20125e5d6fedSRoopa Prabhu } else { 201323aebdacSJakub Sitnicki keys->addrs.v6addrs.src = key_iph->saddr; 201423aebdacSJakub Sitnicki keys->addrs.v6addrs.dst = key_iph->daddr; 2015fa1be7e0SMichal Kubecek keys->tags.flow_label = ip6_flowlabel(key_iph); 201623aebdacSJakub Sitnicki keys->basic.ip_proto = key_iph->nexthdr; 201723aebdacSJakub Sitnicki } 20185e5d6fedSRoopa Prabhu } 201923aebdacSJakub Sitnicki 202023aebdacSJakub Sitnicki /* if skb is set it will be used and fl6 can be NULL */ 2021b4bac172SDavid Ahern u32 rt6_multipath_hash(const struct net *net, const struct flowi6 *fl6, 2022b4bac172SDavid Ahern const struct sk_buff *skb, struct flow_keys *flkeys) 202323aebdacSJakub Sitnicki { 202423aebdacSJakub Sitnicki struct flow_keys hash_keys; 20259a2a537aSDavid Ahern u32 mhash; 202623aebdacSJakub Sitnicki 2027bbfa047aSDavid S. Miller switch (ip6_multipath_hash_policy(net)) { 2028b4bac172SDavid Ahern case 0: 20296f74b6c2SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 20306f74b6c2SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 20319a2a537aSDavid Ahern if (skb) { 20325e5d6fedSRoopa Prabhu ip6_multipath_l3_keys(skb, &hash_keys, flkeys); 20339a2a537aSDavid Ahern } else { 20349a2a537aSDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 20359a2a537aSDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 2036fa1be7e0SMichal Kubecek hash_keys.tags.flow_label = (__force u32)flowi6_get_flowlabel(fl6); 20379a2a537aSDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 203823aebdacSJakub Sitnicki } 2039b4bac172SDavid Ahern break; 2040b4bac172SDavid Ahern case 1: 2041b4bac172SDavid Ahern if (skb) { 2042b4bac172SDavid Ahern unsigned int flag = FLOW_DISSECTOR_F_STOP_AT_ENCAP; 2043b4bac172SDavid Ahern struct flow_keys keys; 2044b4bac172SDavid Ahern 2045b4bac172SDavid Ahern /* short-circuit if we already have L4 hash present */ 2046b4bac172SDavid Ahern if (skb->l4_hash) 2047b4bac172SDavid Ahern return skb_get_hash_raw(skb) >> 1; 2048b4bac172SDavid Ahern 2049b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 2050b4bac172SDavid Ahern 2051b4bac172SDavid Ahern if (!flkeys) { 2052b4bac172SDavid Ahern skb_flow_dissect_flow_keys(skb, &keys, flag); 2053b4bac172SDavid Ahern flkeys = &keys; 2054b4bac172SDavid Ahern } 2055b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 2056b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = flkeys->addrs.v6addrs.src; 2057b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = flkeys->addrs.v6addrs.dst; 2058b4bac172SDavid Ahern hash_keys.ports.src = flkeys->ports.src; 2059b4bac172SDavid Ahern hash_keys.ports.dst = flkeys->ports.dst; 2060b4bac172SDavid Ahern hash_keys.basic.ip_proto = flkeys->basic.ip_proto; 2061b4bac172SDavid Ahern } else { 2062b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 2063b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 2064b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 2065b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 2066b4bac172SDavid Ahern hash_keys.ports.src = fl6->fl6_sport; 2067b4bac172SDavid Ahern hash_keys.ports.dst = fl6->fl6_dport; 2068b4bac172SDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 2069b4bac172SDavid Ahern } 2070b4bac172SDavid Ahern break; 2071b4bac172SDavid Ahern } 20729a2a537aSDavid Ahern mhash = flow_hash_from_keys(&hash_keys); 207323aebdacSJakub Sitnicki 20749a2a537aSDavid Ahern return mhash >> 1; 207523aebdacSJakub Sitnicki } 207623aebdacSJakub Sitnicki 2077c71099acSThomas Graf void ip6_route_input(struct sk_buff *skb) 2078c71099acSThomas Graf { 2079b71d1d42SEric Dumazet const struct ipv6hdr *iph = ipv6_hdr(skb); 2080c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(skb->dev); 2081adaa70bbSThomas Graf int flags = RT6_LOOKUP_F_HAS_SADDR; 2082904af04dSJiri Benc struct ip_tunnel_info *tun_info; 20834c9483b2SDavid S. Miller struct flowi6 fl6 = { 2084e0d56fddSDavid Ahern .flowi6_iif = skb->dev->ifindex, 20854c9483b2SDavid S. Miller .daddr = iph->daddr, 20864c9483b2SDavid S. Miller .saddr = iph->saddr, 20876502ca52SYOSHIFUJI Hideaki / 吉藤英明 .flowlabel = ip6_flowinfo(iph), 20884c9483b2SDavid S. Miller .flowi6_mark = skb->mark, 20894c9483b2SDavid S. Miller .flowi6_proto = iph->nexthdr, 2090c71099acSThomas Graf }; 20915e5d6fedSRoopa Prabhu struct flow_keys *flkeys = NULL, _flkeys; 2092adaa70bbSThomas Graf 2093904af04dSJiri Benc tun_info = skb_tunnel_info(skb); 209446fa062aSJiri Benc if (tun_info && !(tun_info->mode & IP_TUNNEL_INFO_TX)) 2095904af04dSJiri Benc fl6.flowi6_tun_key.tun_id = tun_info->key.tun_id; 20965e5d6fedSRoopa Prabhu 20975e5d6fedSRoopa Prabhu if (fib6_rules_early_flow_dissect(net, skb, &fl6, &_flkeys)) 20985e5d6fedSRoopa Prabhu flkeys = &_flkeys; 20995e5d6fedSRoopa Prabhu 210023aebdacSJakub Sitnicki if (unlikely(fl6.flowi6_proto == IPPROTO_ICMPV6)) 2101b4bac172SDavid Ahern fl6.mp_hash = rt6_multipath_hash(net, &fl6, skb, flkeys); 210206e9d040SJiri Benc skb_dst_drop(skb); 2103b75cc8f9SDavid Ahern skb_dst_set(skb, 2104b75cc8f9SDavid Ahern ip6_route_input_lookup(net, skb->dev, &fl6, skb, flags)); 2105c71099acSThomas Graf } 2106c71099acSThomas Graf 2107b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_output(struct net *net, 2108b75cc8f9SDavid Ahern struct fib6_table *table, 2109b75cc8f9SDavid Ahern struct flowi6 *fl6, 2110b75cc8f9SDavid Ahern const struct sk_buff *skb, 2111b75cc8f9SDavid Ahern int flags) 2112c71099acSThomas Graf { 2113b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_oif, fl6, skb, flags); 2114c71099acSThomas Graf } 2115c71099acSThomas Graf 21166f21c96aSPaolo Abeni struct dst_entry *ip6_route_output_flags(struct net *net, const struct sock *sk, 21176f21c96aSPaolo Abeni struct flowi6 *fl6, int flags) 2118c71099acSThomas Graf { 2119d46a9d67SDavid Ahern bool any_src; 2120c71099acSThomas Graf 21213ede0bbcSRobert Shearman if (ipv6_addr_type(&fl6->daddr) & 21223ede0bbcSRobert Shearman (IPV6_ADDR_MULTICAST | IPV6_ADDR_LINKLOCAL)) { 21234c1feac5SDavid Ahern struct dst_entry *dst; 21244c1feac5SDavid Ahern 21254c1feac5SDavid Ahern dst = l3mdev_link_scope_lookup(net, fl6); 2126ca254490SDavid Ahern if (dst) 2127ca254490SDavid Ahern return dst; 21284c1feac5SDavid Ahern } 2129ca254490SDavid Ahern 21301fb9489bSPavel Emelyanov fl6->flowi6_iif = LOOPBACK_IFINDEX; 21314dc27d1cSDavid McCullough 2132d46a9d67SDavid Ahern any_src = ipv6_addr_any(&fl6->saddr); 2133741a11d9SDavid Ahern if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl6->daddr) || 2134d46a9d67SDavid Ahern (fl6->flowi6_oif && any_src)) 213577d16f45SYOSHIFUJI Hideaki flags |= RT6_LOOKUP_F_IFACE; 2136c71099acSThomas Graf 2137d46a9d67SDavid Ahern if (!any_src) 2138adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 21390c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 else if (sk) 21400c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs); 2141adaa70bbSThomas Graf 2142b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, NULL, flags, ip6_pol_route_output); 21431da177e4SLinus Torvalds } 21446f21c96aSPaolo Abeni EXPORT_SYMBOL_GPL(ip6_route_output_flags); 21451da177e4SLinus Torvalds 21462774c131SDavid S. Miller struct dst_entry *ip6_blackhole_route(struct net *net, struct dst_entry *dst_orig) 214714e50e57SDavid S. Miller { 21485c1e6aa3SDavid S. Miller struct rt6_info *rt, *ort = (struct rt6_info *) dst_orig; 21491dbe3252SWei Wang struct net_device *loopback_dev = net->loopback_dev; 215014e50e57SDavid S. Miller struct dst_entry *new = NULL; 215114e50e57SDavid S. Miller 21521dbe3252SWei Wang rt = dst_alloc(&ip6_dst_blackhole_ops, loopback_dev, 1, 215362cf27e5SSteffen Klassert DST_OBSOLETE_DEAD, 0); 215414e50e57SDavid S. Miller if (rt) { 21550a1f5962SMartin KaFai Lau rt6_info_init(rt); 215681eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 21570a1f5962SMartin KaFai Lau 2158d8d1f30bSChangli Gao new = &rt->dst; 215914e50e57SDavid S. Miller new->__use = 1; 2160352e512cSHerbert Xu new->input = dst_discard; 2161ede2059dSEric W. Biederman new->output = dst_discard_out; 216214e50e57SDavid S. Miller 2163defb3519SDavid S. Miller dst_copy_metrics(new, &ort->dst); 216414e50e57SDavid S. Miller 21651dbe3252SWei Wang rt->rt6i_idev = in6_dev_get(loopback_dev); 21664e3fd7a0SAlexey Dobriyan rt->rt6i_gateway = ort->rt6i_gateway; 21670a1f5962SMartin KaFai Lau rt->rt6i_flags = ort->rt6i_flags & ~RTF_PCPU; 216814e50e57SDavid S. Miller 216914e50e57SDavid S. Miller memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key)); 217014e50e57SDavid S. Miller #ifdef CONFIG_IPV6_SUBTREES 217114e50e57SDavid S. Miller memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key)); 217214e50e57SDavid S. Miller #endif 217314e50e57SDavid S. Miller } 217414e50e57SDavid S. Miller 217569ead7afSDavid S. Miller dst_release(dst_orig); 217669ead7afSDavid S. Miller return new ? new : ERR_PTR(-ENOMEM); 217714e50e57SDavid S. Miller } 217814e50e57SDavid S. Miller 21791da177e4SLinus Torvalds /* 21801da177e4SLinus Torvalds * Destination cache support functions 21811da177e4SLinus Torvalds */ 21821da177e4SLinus Torvalds 21838d1c802bSDavid Ahern static bool fib6_check(struct fib6_info *f6i, u32 cookie) 21843da59bd9SMartin KaFai Lau { 218536143645SSteffen Klassert u32 rt_cookie = 0; 2186c5cff856SWei Wang 21878ae86971SDavid Ahern if (!fib6_get_cookie_safe(f6i, &rt_cookie) || rt_cookie != cookie) 218893531c67SDavid Ahern return false; 218993531c67SDavid Ahern 219093531c67SDavid Ahern if (fib6_check_expired(f6i)) 219193531c67SDavid Ahern return false; 219293531c67SDavid Ahern 219393531c67SDavid Ahern return true; 219493531c67SDavid Ahern } 219593531c67SDavid Ahern 2196a68886a6SDavid Ahern static struct dst_entry *rt6_check(struct rt6_info *rt, 2197a68886a6SDavid Ahern struct fib6_info *from, 2198a68886a6SDavid Ahern u32 cookie) 21993da59bd9SMartin KaFai Lau { 2200c5cff856SWei Wang u32 rt_cookie = 0; 2201c5cff856SWei Wang 2202a68886a6SDavid Ahern if ((from && !fib6_get_cookie_safe(from, &rt_cookie)) || 220393531c67SDavid Ahern rt_cookie != cookie) 22043da59bd9SMartin KaFai Lau return NULL; 22053da59bd9SMartin KaFai Lau 22063da59bd9SMartin KaFai Lau if (rt6_check_expired(rt)) 22073da59bd9SMartin KaFai Lau return NULL; 22083da59bd9SMartin KaFai Lau 22093da59bd9SMartin KaFai Lau return &rt->dst; 22103da59bd9SMartin KaFai Lau } 22113da59bd9SMartin KaFai Lau 2212a68886a6SDavid Ahern static struct dst_entry *rt6_dst_from_check(struct rt6_info *rt, 2213a68886a6SDavid Ahern struct fib6_info *from, 2214a68886a6SDavid Ahern u32 cookie) 22153da59bd9SMartin KaFai Lau { 22165973fb1eSMartin KaFai Lau if (!__rt6_check_expired(rt) && 22175973fb1eSMartin KaFai Lau rt->dst.obsolete == DST_OBSOLETE_FORCE_CHK && 2218a68886a6SDavid Ahern fib6_check(from, cookie)) 22193da59bd9SMartin KaFai Lau return &rt->dst; 22203da59bd9SMartin KaFai Lau else 22213da59bd9SMartin KaFai Lau return NULL; 22223da59bd9SMartin KaFai Lau } 22233da59bd9SMartin KaFai Lau 22241da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie) 22251da177e4SLinus Torvalds { 2226a87b7dc9SDavid Ahern struct dst_entry *dst_ret; 2227a68886a6SDavid Ahern struct fib6_info *from; 22281da177e4SLinus Torvalds struct rt6_info *rt; 22291da177e4SLinus Torvalds 2230a87b7dc9SDavid Ahern rt = container_of(dst, struct rt6_info, dst); 2231a87b7dc9SDavid Ahern 2232a87b7dc9SDavid Ahern rcu_read_lock(); 22331da177e4SLinus Torvalds 22346f3118b5SNicolas Dichtel /* All IPV6 dsts are created with ->obsolete set to the value 22356f3118b5SNicolas Dichtel * DST_OBSOLETE_FORCE_CHK which forces validation calls down 22366f3118b5SNicolas Dichtel * into this function always. 22376f3118b5SNicolas Dichtel */ 2238e3bc10bdSHannes Frederic Sowa 2239a68886a6SDavid Ahern from = rcu_dereference(rt->from); 22404b32b5adSMartin KaFai Lau 2241a68886a6SDavid Ahern if (from && (rt->rt6i_flags & RTF_PCPU || 2242a68886a6SDavid Ahern unlikely(!list_empty(&rt->rt6i_uncached)))) 2243a68886a6SDavid Ahern dst_ret = rt6_dst_from_check(rt, from, cookie); 22443da59bd9SMartin KaFai Lau else 2245a68886a6SDavid Ahern dst_ret = rt6_check(rt, from, cookie); 2246a87b7dc9SDavid Ahern 2247a87b7dc9SDavid Ahern rcu_read_unlock(); 2248a87b7dc9SDavid Ahern 2249a87b7dc9SDavid Ahern return dst_ret; 22501da177e4SLinus Torvalds } 22511da177e4SLinus Torvalds 22521da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *dst) 22531da177e4SLinus Torvalds { 22541da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *) dst; 22551da177e4SLinus Torvalds 22561da177e4SLinus Torvalds if (rt) { 225754c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt->rt6i_flags & RTF_CACHE) { 2258c3c14da0SDavid Ahern rcu_read_lock(); 225954c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt6_check_expired(rt)) { 226093531c67SDavid Ahern rt6_remove_exception_rt(rt); 226154c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 22621da177e4SLinus Torvalds } 2263c3c14da0SDavid Ahern rcu_read_unlock(); 226454c1a859SYOSHIFUJI Hideaki / 吉藤英明 } else { 226554c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst_release(dst); 226654c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 226754c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 226854c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 226954c1a859SYOSHIFUJI Hideaki / 吉藤英明 return dst; 22701da177e4SLinus Torvalds } 22711da177e4SLinus Torvalds 22721da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb) 22731da177e4SLinus Torvalds { 22741da177e4SLinus Torvalds struct rt6_info *rt; 22751da177e4SLinus Torvalds 22763ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0); 22771da177e4SLinus Torvalds 2278adf30907SEric Dumazet rt = (struct rt6_info *) skb_dst(skb); 22791da177e4SLinus Torvalds if (rt) { 22808a14e46fSDavid Ahern rcu_read_lock(); 22811eb4f758SHannes Frederic Sowa if (rt->rt6i_flags & RTF_CACHE) { 228293531c67SDavid Ahern rt6_remove_exception_rt(rt); 2283c5cff856SWei Wang } else { 2284a68886a6SDavid Ahern struct fib6_info *from; 2285c5cff856SWei Wang struct fib6_node *fn; 2286c5cff856SWei Wang 2287a68886a6SDavid Ahern from = rcu_dereference(rt->from); 2288a68886a6SDavid Ahern if (from) { 2289a68886a6SDavid Ahern fn = rcu_dereference(from->fib6_node); 2290c5cff856SWei Wang if (fn && (rt->rt6i_flags & RTF_DEFAULT)) 2291c5cff856SWei Wang fn->fn_sernum = -1; 2292a68886a6SDavid Ahern } 22931da177e4SLinus Torvalds } 22941da177e4SLinus Torvalds rcu_read_unlock(); 22951da177e4SLinus Torvalds } 22961da177e4SLinus Torvalds } 22971da177e4SLinus Torvalds 22986a3e030fSDavid Ahern static void rt6_update_expires(struct rt6_info *rt0, int timeout) 22996a3e030fSDavid Ahern { 2300a68886a6SDavid Ahern if (!(rt0->rt6i_flags & RTF_EXPIRES)) { 2301a68886a6SDavid Ahern struct fib6_info *from; 2302a68886a6SDavid Ahern 2303a68886a6SDavid Ahern rcu_read_lock(); 2304a68886a6SDavid Ahern from = rcu_dereference(rt0->from); 2305a68886a6SDavid Ahern if (from) 2306a68886a6SDavid Ahern rt0->dst.expires = from->expires; 2307a68886a6SDavid Ahern rcu_read_unlock(); 2308a68886a6SDavid Ahern } 23096a3e030fSDavid Ahern 23106a3e030fSDavid Ahern dst_set_expires(&rt0->dst, timeout); 23116a3e030fSDavid Ahern rt0->rt6i_flags |= RTF_EXPIRES; 23126700c270SDavid S. Miller } 23131da177e4SLinus Torvalds 231445e4fd26SMartin KaFai Lau static void rt6_do_update_pmtu(struct rt6_info *rt, u32 mtu) 231545e4fd26SMartin KaFai Lau { 231645e4fd26SMartin KaFai Lau struct net *net = dev_net(rt->dst.dev); 231745e4fd26SMartin KaFai Lau 2318d4ead6b3SDavid Ahern dst_metric_set(&rt->dst, RTAX_MTU, mtu); 231945e4fd26SMartin KaFai Lau rt->rt6i_flags |= RTF_MODIFIED; 232045e4fd26SMartin KaFai Lau rt6_update_expires(rt, net->ipv6.sysctl.ip6_rt_mtu_expires); 232145e4fd26SMartin KaFai Lau } 232245e4fd26SMartin KaFai Lau 23230d3f6d29SMartin KaFai Lau static bool rt6_cache_allowed_for_pmtu(const struct rt6_info *rt) 23240d3f6d29SMartin KaFai Lau { 23250d3f6d29SMartin KaFai Lau return !(rt->rt6i_flags & RTF_CACHE) && 23261490ed2aSPaolo Abeni (rt->rt6i_flags & RTF_PCPU || rcu_access_pointer(rt->from)); 23270d3f6d29SMartin KaFai Lau } 23280d3f6d29SMartin KaFai Lau 232945e4fd26SMartin KaFai Lau static void __ip6_rt_update_pmtu(struct dst_entry *dst, const struct sock *sk, 233045e4fd26SMartin KaFai Lau const struct ipv6hdr *iph, u32 mtu) 23311da177e4SLinus Torvalds { 23320dec879fSJulian Anastasov const struct in6_addr *daddr, *saddr; 23331da177e4SLinus Torvalds struct rt6_info *rt6 = (struct rt6_info *)dst; 23341da177e4SLinus Torvalds 233519bda36cSXin Long if (dst_metric_locked(dst, RTAX_MTU)) 233619bda36cSXin Long return; 233719bda36cSXin Long 233845e4fd26SMartin KaFai Lau if (iph) { 233945e4fd26SMartin KaFai Lau daddr = &iph->daddr; 234045e4fd26SMartin KaFai Lau saddr = &iph->saddr; 234145e4fd26SMartin KaFai Lau } else if (sk) { 234245e4fd26SMartin KaFai Lau daddr = &sk->sk_v6_daddr; 234345e4fd26SMartin KaFai Lau saddr = &inet6_sk(sk)->saddr; 234445e4fd26SMartin KaFai Lau } else { 23450dec879fSJulian Anastasov daddr = NULL; 23460dec879fSJulian Anastasov saddr = NULL; 23471da177e4SLinus Torvalds } 23480dec879fSJulian Anastasov dst_confirm_neigh(dst, daddr); 23490dec879fSJulian Anastasov mtu = max_t(u32, mtu, IPV6_MIN_MTU); 23500dec879fSJulian Anastasov if (mtu >= dst_mtu(dst)) 23510dec879fSJulian Anastasov return; 23520dec879fSJulian Anastasov 23530dec879fSJulian Anastasov if (!rt6_cache_allowed_for_pmtu(rt6)) { 23540dec879fSJulian Anastasov rt6_do_update_pmtu(rt6, mtu); 23552b760fcfSWei Wang /* update rt6_ex->stamp for cache */ 23562b760fcfSWei Wang if (rt6->rt6i_flags & RTF_CACHE) 23572b760fcfSWei Wang rt6_update_exception_stamp_rt(rt6); 23580dec879fSJulian Anastasov } else if (daddr) { 235985bd05deSDavid Ahern struct fib6_result res = {}; 23600dec879fSJulian Anastasov struct rt6_info *nrt6; 23610dec879fSJulian Anastasov 23624d85cd0cSDavid Ahern rcu_read_lock(); 236385bd05deSDavid Ahern res.f6i = rcu_dereference(rt6->from); 236485bd05deSDavid Ahern if (!res.f6i) { 23659c69a132SJonathan Lemon rcu_read_unlock(); 23669c69a132SJonathan Lemon return; 23679c69a132SJonathan Lemon } 236885bd05deSDavid Ahern res.nh = &res.f6i->fib6_nh; 236985bd05deSDavid Ahern nrt6 = ip6_rt_cache_alloc(&res, daddr, saddr); 237045e4fd26SMartin KaFai Lau if (nrt6) { 237145e4fd26SMartin KaFai Lau rt6_do_update_pmtu(nrt6, mtu); 23725012f0a5SDavid Ahern if (rt6_insert_exception(nrt6, &res)) 23732b760fcfSWei Wang dst_release_immediate(&nrt6->dst); 237445e4fd26SMartin KaFai Lau } 2375a68886a6SDavid Ahern rcu_read_unlock(); 237645e4fd26SMartin KaFai Lau } 237745e4fd26SMartin KaFai Lau } 237845e4fd26SMartin KaFai Lau 237945e4fd26SMartin KaFai Lau static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 238045e4fd26SMartin KaFai Lau struct sk_buff *skb, u32 mtu) 238145e4fd26SMartin KaFai Lau { 238245e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, sk, skb ? ipv6_hdr(skb) : NULL, mtu); 23831da177e4SLinus Torvalds } 23841da177e4SLinus Torvalds 238542ae66c8SDavid S. Miller void ip6_update_pmtu(struct sk_buff *skb, struct net *net, __be32 mtu, 2386e2d118a1SLorenzo Colitti int oif, u32 mark, kuid_t uid) 238781aded24SDavid S. Miller { 238881aded24SDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 238981aded24SDavid S. Miller struct dst_entry *dst; 2390dc92095dSMaciej Żenczykowski struct flowi6 fl6 = { 2391dc92095dSMaciej Żenczykowski .flowi6_oif = oif, 2392dc92095dSMaciej Żenczykowski .flowi6_mark = mark ? mark : IP6_REPLY_MARK(net, skb->mark), 2393dc92095dSMaciej Żenczykowski .daddr = iph->daddr, 2394dc92095dSMaciej Żenczykowski .saddr = iph->saddr, 2395dc92095dSMaciej Żenczykowski .flowlabel = ip6_flowinfo(iph), 2396dc92095dSMaciej Żenczykowski .flowi6_uid = uid, 2397dc92095dSMaciej Żenczykowski }; 239881aded24SDavid S. Miller 239981aded24SDavid S. Miller dst = ip6_route_output(net, NULL, &fl6); 240081aded24SDavid S. Miller if (!dst->error) 240145e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, NULL, iph, ntohl(mtu)); 240281aded24SDavid S. Miller dst_release(dst); 240381aded24SDavid S. Miller } 240481aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_update_pmtu); 240581aded24SDavid S. Miller 240681aded24SDavid S. Miller void ip6_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, __be32 mtu) 240781aded24SDavid S. Miller { 24087ddacfa5SDavid Ahern int oif = sk->sk_bound_dev_if; 240933c162a9SMartin KaFai Lau struct dst_entry *dst; 241033c162a9SMartin KaFai Lau 24117ddacfa5SDavid Ahern if (!oif && skb->dev) 24127ddacfa5SDavid Ahern oif = l3mdev_master_ifindex(skb->dev); 24137ddacfa5SDavid Ahern 24147ddacfa5SDavid Ahern ip6_update_pmtu(skb, sock_net(sk), mtu, oif, sk->sk_mark, sk->sk_uid); 241533c162a9SMartin KaFai Lau 241633c162a9SMartin KaFai Lau dst = __sk_dst_get(sk); 241733c162a9SMartin KaFai Lau if (!dst || !dst->obsolete || 241833c162a9SMartin KaFai Lau dst->ops->check(dst, inet6_sk(sk)->dst_cookie)) 241933c162a9SMartin KaFai Lau return; 242033c162a9SMartin KaFai Lau 242133c162a9SMartin KaFai Lau bh_lock_sock(sk); 242233c162a9SMartin KaFai Lau if (!sock_owned_by_user(sk) && !ipv6_addr_v4mapped(&sk->sk_v6_daddr)) 242333c162a9SMartin KaFai Lau ip6_datagram_dst_update(sk, false); 242433c162a9SMartin KaFai Lau bh_unlock_sock(sk); 242581aded24SDavid S. Miller } 242681aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_update_pmtu); 242781aded24SDavid S. Miller 24287d6850f7SAlexey Kodanev void ip6_sk_dst_store_flow(struct sock *sk, struct dst_entry *dst, 24297d6850f7SAlexey Kodanev const struct flowi6 *fl6) 24307d6850f7SAlexey Kodanev { 24317d6850f7SAlexey Kodanev #ifdef CONFIG_IPV6_SUBTREES 24327d6850f7SAlexey Kodanev struct ipv6_pinfo *np = inet6_sk(sk); 24337d6850f7SAlexey Kodanev #endif 24347d6850f7SAlexey Kodanev 24357d6850f7SAlexey Kodanev ip6_dst_store(sk, dst, 24367d6850f7SAlexey Kodanev ipv6_addr_equal(&fl6->daddr, &sk->sk_v6_daddr) ? 24377d6850f7SAlexey Kodanev &sk->sk_v6_daddr : NULL, 24387d6850f7SAlexey Kodanev #ifdef CONFIG_IPV6_SUBTREES 24397d6850f7SAlexey Kodanev ipv6_addr_equal(&fl6->saddr, &np->saddr) ? 24407d6850f7SAlexey Kodanev &np->saddr : 24417d6850f7SAlexey Kodanev #endif 24427d6850f7SAlexey Kodanev NULL); 24437d6850f7SAlexey Kodanev } 24447d6850f7SAlexey Kodanev 24459b6b35abSDavid Ahern static bool ip6_redirect_nh_match(const struct fib6_result *res, 24460b34eb00SDavid Ahern struct flowi6 *fl6, 24470b34eb00SDavid Ahern const struct in6_addr *gw, 24480b34eb00SDavid Ahern struct rt6_info **ret) 24490b34eb00SDavid Ahern { 24509b6b35abSDavid Ahern const struct fib6_nh *nh = res->nh; 24519b6b35abSDavid Ahern 24520b34eb00SDavid Ahern if (nh->fib_nh_flags & RTNH_F_DEAD || !nh->fib_nh_gw_family || 24530b34eb00SDavid Ahern fl6->flowi6_oif != nh->fib_nh_dev->ifindex) 24540b34eb00SDavid Ahern return false; 24550b34eb00SDavid Ahern 24560b34eb00SDavid Ahern /* rt_cache's gateway might be different from its 'parent' 24570b34eb00SDavid Ahern * in the case of an ip redirect. 24580b34eb00SDavid Ahern * So we keep searching in the exception table if the gateway 24590b34eb00SDavid Ahern * is different. 24600b34eb00SDavid Ahern */ 24610b34eb00SDavid Ahern if (!ipv6_addr_equal(gw, &nh->fib_nh_gw6)) { 24620b34eb00SDavid Ahern struct rt6_info *rt_cache; 24630b34eb00SDavid Ahern 24649b6b35abSDavid Ahern rt_cache = rt6_find_cached_rt(res, &fl6->daddr, &fl6->saddr); 24650b34eb00SDavid Ahern if (rt_cache && 24660b34eb00SDavid Ahern ipv6_addr_equal(gw, &rt_cache->rt6i_gateway)) { 24670b34eb00SDavid Ahern *ret = rt_cache; 24680b34eb00SDavid Ahern return true; 24690b34eb00SDavid Ahern } 24700b34eb00SDavid Ahern return false; 24710b34eb00SDavid Ahern } 24720b34eb00SDavid Ahern return true; 24730b34eb00SDavid Ahern } 24740b34eb00SDavid Ahern 2475b55b76b2SDuan Jiong /* Handle redirects */ 2476b55b76b2SDuan Jiong struct ip6rd_flowi { 2477b55b76b2SDuan Jiong struct flowi6 fl6; 2478b55b76b2SDuan Jiong struct in6_addr gateway; 2479b55b76b2SDuan Jiong }; 2480b55b76b2SDuan Jiong 2481b55b76b2SDuan Jiong static struct rt6_info *__ip6_route_redirect(struct net *net, 2482b55b76b2SDuan Jiong struct fib6_table *table, 2483b55b76b2SDuan Jiong struct flowi6 *fl6, 2484b75cc8f9SDavid Ahern const struct sk_buff *skb, 2485b55b76b2SDuan Jiong int flags) 2486b55b76b2SDuan Jiong { 2487b55b76b2SDuan Jiong struct ip6rd_flowi *rdfl = (struct ip6rd_flowi *)fl6; 24880b34eb00SDavid Ahern struct rt6_info *ret = NULL; 24899b6b35abSDavid Ahern struct fib6_result res = {}; 24908d1c802bSDavid Ahern struct fib6_info *rt; 2491b55b76b2SDuan Jiong struct fib6_node *fn; 2492b55b76b2SDuan Jiong 2493b55b76b2SDuan Jiong /* Get the "current" route for this destination and 249467c408cfSAlexander Alemayhu * check if the redirect has come from appropriate router. 2495b55b76b2SDuan Jiong * 2496b55b76b2SDuan Jiong * RFC 4861 specifies that redirects should only be 2497b55b76b2SDuan Jiong * accepted if they come from the nexthop to the target. 2498b55b76b2SDuan Jiong * Due to the way the routes are chosen, this notion 2499b55b76b2SDuan Jiong * is a bit fuzzy and one might need to check all possible 2500b55b76b2SDuan Jiong * routes. 2501b55b76b2SDuan Jiong */ 2502b55b76b2SDuan Jiong 250366f5d6ceSWei Wang rcu_read_lock(); 25046454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 2505b55b76b2SDuan Jiong restart: 250666f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 25079b6b35abSDavid Ahern res.f6i = rt; 25089b6b35abSDavid Ahern res.nh = &rt->fib6_nh; 25099b6b35abSDavid Ahern 251014895687SDavid Ahern if (fib6_check_expired(rt)) 2511b55b76b2SDuan Jiong continue; 251293c2fb25SDavid Ahern if (rt->fib6_flags & RTF_REJECT) 2513b55b76b2SDuan Jiong break; 25149b6b35abSDavid Ahern if (ip6_redirect_nh_match(&res, fl6, &rdfl->gateway, &ret)) 25150b34eb00SDavid Ahern goto out; 2516b55b76b2SDuan Jiong } 2517b55b76b2SDuan Jiong 2518b55b76b2SDuan Jiong if (!rt) 2519421842edSDavid Ahern rt = net->ipv6.fib6_null_entry; 252093c2fb25SDavid Ahern else if (rt->fib6_flags & RTF_REJECT) { 252123fb93a4SDavid Ahern ret = net->ipv6.ip6_null_entry; 2522b0a1ba59SMartin KaFai Lau goto out; 2523b0a1ba59SMartin KaFai Lau } 2524b0a1ba59SMartin KaFai Lau 2525421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) { 2526a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 2527a3c00e46SMartin KaFai Lau if (fn) 2528a3c00e46SMartin KaFai Lau goto restart; 2529b55b76b2SDuan Jiong } 2530a3c00e46SMartin KaFai Lau 25319b6b35abSDavid Ahern res.f6i = rt; 25329b6b35abSDavid Ahern res.nh = &rt->fib6_nh; 2533b0a1ba59SMartin KaFai Lau out: 253423fb93a4SDavid Ahern if (ret) 253510585b43SDavid Ahern ip6_hold_safe(net, &ret); 253623fb93a4SDavid Ahern else 25379b6b35abSDavid Ahern ret = ip6_create_rt_rcu(&res); 2538b55b76b2SDuan Jiong 253966f5d6ceSWei Wang rcu_read_unlock(); 2540b55b76b2SDuan Jiong 2541*8ff2e5b2SDavid Ahern trace_fib6_table_lookup(net, &res, table, fl6); 254223fb93a4SDavid Ahern return ret; 2543b55b76b2SDuan Jiong }; 2544b55b76b2SDuan Jiong 2545b55b76b2SDuan Jiong static struct dst_entry *ip6_route_redirect(struct net *net, 2546b55b76b2SDuan Jiong const struct flowi6 *fl6, 2547b75cc8f9SDavid Ahern const struct sk_buff *skb, 2548b55b76b2SDuan Jiong const struct in6_addr *gateway) 2549b55b76b2SDuan Jiong { 2550b55b76b2SDuan Jiong int flags = RT6_LOOKUP_F_HAS_SADDR; 2551b55b76b2SDuan Jiong struct ip6rd_flowi rdfl; 2552b55b76b2SDuan Jiong 2553b55b76b2SDuan Jiong rdfl.fl6 = *fl6; 2554b55b76b2SDuan Jiong rdfl.gateway = *gateway; 2555b55b76b2SDuan Jiong 2556b75cc8f9SDavid Ahern return fib6_rule_lookup(net, &rdfl.fl6, skb, 2557b55b76b2SDuan Jiong flags, __ip6_route_redirect); 2558b55b76b2SDuan Jiong } 2559b55b76b2SDuan Jiong 2560e2d118a1SLorenzo Colitti void ip6_redirect(struct sk_buff *skb, struct net *net, int oif, u32 mark, 2561e2d118a1SLorenzo Colitti kuid_t uid) 25623a5ad2eeSDavid S. Miller { 25633a5ad2eeSDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 25643a5ad2eeSDavid S. Miller struct dst_entry *dst; 25651f7f10acSMaciej Żenczykowski struct flowi6 fl6 = { 25661f7f10acSMaciej Żenczykowski .flowi6_iif = LOOPBACK_IFINDEX, 25671f7f10acSMaciej Żenczykowski .flowi6_oif = oif, 25681f7f10acSMaciej Żenczykowski .flowi6_mark = mark, 25691f7f10acSMaciej Żenczykowski .daddr = iph->daddr, 25701f7f10acSMaciej Żenczykowski .saddr = iph->saddr, 25711f7f10acSMaciej Żenczykowski .flowlabel = ip6_flowinfo(iph), 25721f7f10acSMaciej Żenczykowski .flowi6_uid = uid, 25731f7f10acSMaciej Żenczykowski }; 25743a5ad2eeSDavid S. Miller 2575b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &ipv6_hdr(skb)->saddr); 25766700c270SDavid S. Miller rt6_do_redirect(dst, NULL, skb); 25773a5ad2eeSDavid S. Miller dst_release(dst); 25783a5ad2eeSDavid S. Miller } 25793a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_redirect); 25803a5ad2eeSDavid S. Miller 2581d456336dSMaciej Żenczykowski void ip6_redirect_no_header(struct sk_buff *skb, struct net *net, int oif) 2582c92a59ecSDuan Jiong { 2583c92a59ecSDuan Jiong const struct ipv6hdr *iph = ipv6_hdr(skb); 2584c92a59ecSDuan Jiong const struct rd_msg *msg = (struct rd_msg *)icmp6_hdr(skb); 2585c92a59ecSDuan Jiong struct dst_entry *dst; 25860b26fb17SMaciej Żenczykowski struct flowi6 fl6 = { 25870b26fb17SMaciej Żenczykowski .flowi6_iif = LOOPBACK_IFINDEX, 25880b26fb17SMaciej Żenczykowski .flowi6_oif = oif, 25890b26fb17SMaciej Żenczykowski .daddr = msg->dest, 25900b26fb17SMaciej Żenczykowski .saddr = iph->daddr, 25910b26fb17SMaciej Żenczykowski .flowi6_uid = sock_net_uid(net, NULL), 25920b26fb17SMaciej Żenczykowski }; 2593c92a59ecSDuan Jiong 2594b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &iph->saddr); 2595c92a59ecSDuan Jiong rt6_do_redirect(dst, NULL, skb); 2596c92a59ecSDuan Jiong dst_release(dst); 2597c92a59ecSDuan Jiong } 2598c92a59ecSDuan Jiong 25993a5ad2eeSDavid S. Miller void ip6_sk_redirect(struct sk_buff *skb, struct sock *sk) 26003a5ad2eeSDavid S. Miller { 2601e2d118a1SLorenzo Colitti ip6_redirect(skb, sock_net(sk), sk->sk_bound_dev_if, sk->sk_mark, 2602e2d118a1SLorenzo Colitti sk->sk_uid); 26033a5ad2eeSDavid S. Miller } 26043a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_redirect); 26053a5ad2eeSDavid S. Miller 26060dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst) 26071da177e4SLinus Torvalds { 26080dbaee3bSDavid S. Miller struct net_device *dev = dst->dev; 26090dbaee3bSDavid S. Miller unsigned int mtu = dst_mtu(dst); 26100dbaee3bSDavid S. Miller struct net *net = dev_net(dev); 26110dbaee3bSDavid S. Miller 26121da177e4SLinus Torvalds mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr); 26131da177e4SLinus Torvalds 26145578689aSDaniel Lezcano if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss) 26155578689aSDaniel Lezcano mtu = net->ipv6.sysctl.ip6_rt_min_advmss; 26161da177e4SLinus Torvalds 26171da177e4SLinus Torvalds /* 26181da177e4SLinus Torvalds * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and 26191da177e4SLinus Torvalds * corresponding MSS is IPV6_MAXPLEN - tcp_header_size. 26201da177e4SLinus Torvalds * IPV6_MAXPLEN is also valid and means: "any MSS, 26211da177e4SLinus Torvalds * rely only on pmtu discovery" 26221da177e4SLinus Torvalds */ 26231da177e4SLinus Torvalds if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr)) 26241da177e4SLinus Torvalds mtu = IPV6_MAXPLEN; 26251da177e4SLinus Torvalds return mtu; 26261da177e4SLinus Torvalds } 26271da177e4SLinus Torvalds 2628ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst) 2629d33e4553SDavid S. Miller { 2630d33e4553SDavid S. Miller struct inet6_dev *idev; 2631d4ead6b3SDavid Ahern unsigned int mtu; 2632618f9bc7SSteffen Klassert 26334b32b5adSMartin KaFai Lau mtu = dst_metric_raw(dst, RTAX_MTU); 26344b32b5adSMartin KaFai Lau if (mtu) 26354b32b5adSMartin KaFai Lau goto out; 26364b32b5adSMartin KaFai Lau 2637618f9bc7SSteffen Klassert mtu = IPV6_MIN_MTU; 2638d33e4553SDavid S. Miller 2639d33e4553SDavid S. Miller rcu_read_lock(); 2640d33e4553SDavid S. Miller idev = __in6_dev_get(dst->dev); 2641d33e4553SDavid S. Miller if (idev) 2642d33e4553SDavid S. Miller mtu = idev->cnf.mtu6; 2643d33e4553SDavid S. Miller rcu_read_unlock(); 2644d33e4553SDavid S. Miller 264530f78d8eSEric Dumazet out: 264614972cbdSRoopa Prabhu mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 264714972cbdSRoopa Prabhu 264814972cbdSRoopa Prabhu return mtu - lwtunnel_headroom(dst->lwtstate, mtu); 2649d33e4553SDavid S. Miller } 2650d33e4553SDavid S. Miller 2651901731b8SDavid Ahern /* MTU selection: 2652901731b8SDavid Ahern * 1. mtu on route is locked - use it 2653901731b8SDavid Ahern * 2. mtu from nexthop exception 2654901731b8SDavid Ahern * 3. mtu from egress device 2655901731b8SDavid Ahern * 2656901731b8SDavid Ahern * based on ip6_dst_mtu_forward and exception logic of 2657901731b8SDavid Ahern * rt6_find_cached_rt; called with rcu_read_lock 2658901731b8SDavid Ahern */ 2659b748f260SDavid Ahern u32 ip6_mtu_from_fib6(const struct fib6_result *res, 2660b748f260SDavid Ahern const struct in6_addr *daddr, 2661b748f260SDavid Ahern const struct in6_addr *saddr) 2662901731b8SDavid Ahern { 2663901731b8SDavid Ahern struct rt6_exception_bucket *bucket; 2664b748f260SDavid Ahern const struct fib6_nh *nh = res->nh; 2665b748f260SDavid Ahern struct fib6_info *f6i = res->f6i; 2666b748f260SDavid Ahern const struct in6_addr *src_key; 2667901731b8SDavid Ahern struct rt6_exception *rt6_ex; 2668901731b8SDavid Ahern struct inet6_dev *idev; 2669901731b8SDavid Ahern u32 mtu = 0; 2670901731b8SDavid Ahern 2671901731b8SDavid Ahern if (unlikely(fib6_metric_locked(f6i, RTAX_MTU))) { 2672901731b8SDavid Ahern mtu = f6i->fib6_pmtu; 2673901731b8SDavid Ahern if (mtu) 2674901731b8SDavid Ahern goto out; 2675901731b8SDavid Ahern } 2676901731b8SDavid Ahern 2677901731b8SDavid Ahern src_key = NULL; 2678901731b8SDavid Ahern #ifdef CONFIG_IPV6_SUBTREES 2679901731b8SDavid Ahern if (f6i->fib6_src.plen) 2680901731b8SDavid Ahern src_key = saddr; 2681901731b8SDavid Ahern #endif 2682901731b8SDavid Ahern 2683901731b8SDavid Ahern bucket = rcu_dereference(f6i->rt6i_exception_bucket); 2684901731b8SDavid Ahern rt6_ex = __rt6_find_exception_rcu(&bucket, daddr, src_key); 2685901731b8SDavid Ahern if (rt6_ex && !rt6_check_expired(rt6_ex->rt6i)) 2686901731b8SDavid Ahern mtu = dst_metric_raw(&rt6_ex->rt6i->dst, RTAX_MTU); 2687901731b8SDavid Ahern 2688901731b8SDavid Ahern if (likely(!mtu)) { 2689b748f260SDavid Ahern struct net_device *dev = nh->fib_nh_dev; 2690901731b8SDavid Ahern 2691901731b8SDavid Ahern mtu = IPV6_MIN_MTU; 2692901731b8SDavid Ahern idev = __in6_dev_get(dev); 2693901731b8SDavid Ahern if (idev && idev->cnf.mtu6 > mtu) 2694901731b8SDavid Ahern mtu = idev->cnf.mtu6; 2695901731b8SDavid Ahern } 2696901731b8SDavid Ahern 2697901731b8SDavid Ahern mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 2698901731b8SDavid Ahern out: 2699b748f260SDavid Ahern return mtu - lwtunnel_headroom(nh->fib_nh_lws, mtu); 2700901731b8SDavid Ahern } 2701901731b8SDavid Ahern 27023b00944cSYOSHIFUJI Hideaki struct dst_entry *icmp6_dst_alloc(struct net_device *dev, 270387a11578SDavid S. Miller struct flowi6 *fl6) 27041da177e4SLinus Torvalds { 270587a11578SDavid S. Miller struct dst_entry *dst; 27061da177e4SLinus Torvalds struct rt6_info *rt; 27071da177e4SLinus Torvalds struct inet6_dev *idev = in6_dev_get(dev); 2708c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 27091da177e4SLinus Torvalds 271038308473SDavid S. Miller if (unlikely(!idev)) 2711122bdf67SEric Dumazet return ERR_PTR(-ENODEV); 27121da177e4SLinus Torvalds 2713ad706862SMartin KaFai Lau rt = ip6_dst_alloc(net, dev, 0); 271438308473SDavid S. Miller if (unlikely(!rt)) { 27151da177e4SLinus Torvalds in6_dev_put(idev); 271687a11578SDavid S. Miller dst = ERR_PTR(-ENOMEM); 27171da177e4SLinus Torvalds goto out; 27181da177e4SLinus Torvalds } 27191da177e4SLinus Torvalds 27208e2ec639SYan, Zheng rt->dst.flags |= DST_HOST; 2721588753f1SBrendan McGrath rt->dst.input = ip6_input; 27228e2ec639SYan, Zheng rt->dst.output = ip6_output; 2723550bab42SJulian Anastasov rt->rt6i_gateway = fl6->daddr; 272487a11578SDavid S. Miller rt->rt6i_dst.addr = fl6->daddr; 27258e2ec639SYan, Zheng rt->rt6i_dst.plen = 128; 27268e2ec639SYan, Zheng rt->rt6i_idev = idev; 272714edd87dSLi RongQing dst_metric_set(&rt->dst, RTAX_HOPLIMIT, 0); 27281da177e4SLinus Torvalds 27294c981e28SIdo Schimmel /* Add this dst into uncached_list so that rt6_disable_ip() can 2730587fea74SWei Wang * do proper release of the net_device 2731587fea74SWei Wang */ 2732587fea74SWei Wang rt6_uncached_list_add(rt); 273381eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 27341da177e4SLinus Torvalds 273587a11578SDavid S. Miller dst = xfrm_lookup(net, &rt->dst, flowi6_to_flowi(fl6), NULL, 0); 273687a11578SDavid S. Miller 27371da177e4SLinus Torvalds out: 273887a11578SDavid S. Miller return dst; 27391da177e4SLinus Torvalds } 27401da177e4SLinus Torvalds 2741569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops) 27421da177e4SLinus Torvalds { 274386393e52SAlexey Dobriyan struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops); 27447019b78eSDaniel Lezcano int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval; 27457019b78eSDaniel Lezcano int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size; 27467019b78eSDaniel Lezcano int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity; 27477019b78eSDaniel Lezcano int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout; 27487019b78eSDaniel Lezcano unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc; 2749fc66f95cSEric Dumazet int entries; 27501da177e4SLinus Torvalds 2751fc66f95cSEric Dumazet entries = dst_entries_get_fast(ops); 275249a18d86SMichal Kubeček if (time_after(rt_last_gc + rt_min_interval, jiffies) && 2753fc66f95cSEric Dumazet entries <= rt_max_size) 27541da177e4SLinus Torvalds goto out; 27551da177e4SLinus Torvalds 27566891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire++; 275714956643SLi RongQing fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net, true); 2758fc66f95cSEric Dumazet entries = dst_entries_get_slow(ops); 2759fc66f95cSEric Dumazet if (entries < ops->gc_thresh) 27607019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1; 27611da177e4SLinus Torvalds out: 27627019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity; 2763fc66f95cSEric Dumazet return entries > rt_max_size; 27641da177e4SLinus Torvalds } 27651da177e4SLinus Torvalds 27668c14586fSDavid Ahern static struct rt6_info *ip6_nh_lookup_table(struct net *net, 27678c14586fSDavid Ahern struct fib6_config *cfg, 2768f4797b33SDavid Ahern const struct in6_addr *gw_addr, 2769f4797b33SDavid Ahern u32 tbid, int flags) 27708c14586fSDavid Ahern { 27718c14586fSDavid Ahern struct flowi6 fl6 = { 27728c14586fSDavid Ahern .flowi6_oif = cfg->fc_ifindex, 27738c14586fSDavid Ahern .daddr = *gw_addr, 27748c14586fSDavid Ahern .saddr = cfg->fc_prefsrc, 27758c14586fSDavid Ahern }; 27768c14586fSDavid Ahern struct fib6_table *table; 27778c14586fSDavid Ahern struct rt6_info *rt; 27788c14586fSDavid Ahern 2779f4797b33SDavid Ahern table = fib6_get_table(net, tbid); 27808c14586fSDavid Ahern if (!table) 27818c14586fSDavid Ahern return NULL; 27828c14586fSDavid Ahern 27838c14586fSDavid Ahern if (!ipv6_addr_any(&cfg->fc_prefsrc)) 27848c14586fSDavid Ahern flags |= RT6_LOOKUP_F_HAS_SADDR; 27858c14586fSDavid Ahern 2786f4797b33SDavid Ahern flags |= RT6_LOOKUP_F_IGNORE_LINKSTATE; 2787b75cc8f9SDavid Ahern rt = ip6_pol_route(net, table, cfg->fc_ifindex, &fl6, NULL, flags); 27888c14586fSDavid Ahern 27898c14586fSDavid Ahern /* if table lookup failed, fall back to full lookup */ 27908c14586fSDavid Ahern if (rt == net->ipv6.ip6_null_entry) { 27918c14586fSDavid Ahern ip6_rt_put(rt); 27928c14586fSDavid Ahern rt = NULL; 27938c14586fSDavid Ahern } 27948c14586fSDavid Ahern 27958c14586fSDavid Ahern return rt; 27968c14586fSDavid Ahern } 27978c14586fSDavid Ahern 2798fc1e64e1SDavid Ahern static int ip6_route_check_nh_onlink(struct net *net, 2799fc1e64e1SDavid Ahern struct fib6_config *cfg, 28009fbb704cSDavid Ahern const struct net_device *dev, 2801fc1e64e1SDavid Ahern struct netlink_ext_ack *extack) 2802fc1e64e1SDavid Ahern { 280344750f84SDavid Ahern u32 tbid = l3mdev_fib_table(dev) ? : RT_TABLE_MAIN; 2804fc1e64e1SDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 2805fc1e64e1SDavid Ahern u32 flags = RTF_LOCAL | RTF_ANYCAST | RTF_REJECT; 2806bf1dc8baSPaolo Abeni struct fib6_info *from; 2807fc1e64e1SDavid Ahern struct rt6_info *grt; 2808fc1e64e1SDavid Ahern int err; 2809fc1e64e1SDavid Ahern 2810fc1e64e1SDavid Ahern err = 0; 2811fc1e64e1SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, tbid, 0); 2812fc1e64e1SDavid Ahern if (grt) { 2813bf1dc8baSPaolo Abeni rcu_read_lock(); 2814bf1dc8baSPaolo Abeni from = rcu_dereference(grt->from); 281558e354c0SDavid Ahern if (!grt->dst.error && 28164ed591c8SDavid Ahern /* ignore match if it is the default route */ 2817bf1dc8baSPaolo Abeni from && !ipv6_addr_any(&from->fib6_dst.addr) && 281858e354c0SDavid Ahern (grt->rt6i_flags & flags || dev != grt->dst.dev)) { 281944750f84SDavid Ahern NL_SET_ERR_MSG(extack, 282044750f84SDavid Ahern "Nexthop has invalid gateway or device mismatch"); 2821fc1e64e1SDavid Ahern err = -EINVAL; 2822fc1e64e1SDavid Ahern } 2823bf1dc8baSPaolo Abeni rcu_read_unlock(); 2824fc1e64e1SDavid Ahern 2825fc1e64e1SDavid Ahern ip6_rt_put(grt); 2826fc1e64e1SDavid Ahern } 2827fc1e64e1SDavid Ahern 2828fc1e64e1SDavid Ahern return err; 2829fc1e64e1SDavid Ahern } 2830fc1e64e1SDavid Ahern 28311edce99fSDavid Ahern static int ip6_route_check_nh(struct net *net, 28321edce99fSDavid Ahern struct fib6_config *cfg, 28331edce99fSDavid Ahern struct net_device **_dev, 28341edce99fSDavid Ahern struct inet6_dev **idev) 28351edce99fSDavid Ahern { 28361edce99fSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 28371edce99fSDavid Ahern struct net_device *dev = _dev ? *_dev : NULL; 28381edce99fSDavid Ahern struct rt6_info *grt = NULL; 28391edce99fSDavid Ahern int err = -EHOSTUNREACH; 28401edce99fSDavid Ahern 28411edce99fSDavid Ahern if (cfg->fc_table) { 2842f4797b33SDavid Ahern int flags = RT6_LOOKUP_F_IFACE; 2843f4797b33SDavid Ahern 2844f4797b33SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, 2845f4797b33SDavid Ahern cfg->fc_table, flags); 28461edce99fSDavid Ahern if (grt) { 28471edce99fSDavid Ahern if (grt->rt6i_flags & RTF_GATEWAY || 28481edce99fSDavid Ahern (dev && dev != grt->dst.dev)) { 28491edce99fSDavid Ahern ip6_rt_put(grt); 28501edce99fSDavid Ahern grt = NULL; 28511edce99fSDavid Ahern } 28521edce99fSDavid Ahern } 28531edce99fSDavid Ahern } 28541edce99fSDavid Ahern 28551edce99fSDavid Ahern if (!grt) 2856b75cc8f9SDavid Ahern grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, NULL, 1); 28571edce99fSDavid Ahern 28581edce99fSDavid Ahern if (!grt) 28591edce99fSDavid Ahern goto out; 28601edce99fSDavid Ahern 28611edce99fSDavid Ahern if (dev) { 28621edce99fSDavid Ahern if (dev != grt->dst.dev) { 28631edce99fSDavid Ahern ip6_rt_put(grt); 28641edce99fSDavid Ahern goto out; 28651edce99fSDavid Ahern } 28661edce99fSDavid Ahern } else { 28671edce99fSDavid Ahern *_dev = dev = grt->dst.dev; 28681edce99fSDavid Ahern *idev = grt->rt6i_idev; 28691edce99fSDavid Ahern dev_hold(dev); 28701edce99fSDavid Ahern in6_dev_hold(grt->rt6i_idev); 28711edce99fSDavid Ahern } 28721edce99fSDavid Ahern 28731edce99fSDavid Ahern if (!(grt->rt6i_flags & RTF_GATEWAY)) 28741edce99fSDavid Ahern err = 0; 28751edce99fSDavid Ahern 28761edce99fSDavid Ahern ip6_rt_put(grt); 28771edce99fSDavid Ahern 28781edce99fSDavid Ahern out: 28791edce99fSDavid Ahern return err; 28801edce99fSDavid Ahern } 28811edce99fSDavid Ahern 28829fbb704cSDavid Ahern static int ip6_validate_gw(struct net *net, struct fib6_config *cfg, 28839fbb704cSDavid Ahern struct net_device **_dev, struct inet6_dev **idev, 28849fbb704cSDavid Ahern struct netlink_ext_ack *extack) 28859fbb704cSDavid Ahern { 28869fbb704cSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 28879fbb704cSDavid Ahern int gwa_type = ipv6_addr_type(gw_addr); 2888232378e8SDavid Ahern bool skip_dev = gwa_type & IPV6_ADDR_LINKLOCAL ? false : true; 28899fbb704cSDavid Ahern const struct net_device *dev = *_dev; 2890232378e8SDavid Ahern bool need_addr_check = !dev; 28919fbb704cSDavid Ahern int err = -EINVAL; 28929fbb704cSDavid Ahern 28939fbb704cSDavid Ahern /* if gw_addr is local we will fail to detect this in case 28949fbb704cSDavid Ahern * address is still TENTATIVE (DAD in progress). rt6_lookup() 28959fbb704cSDavid Ahern * will return already-added prefix route via interface that 28969fbb704cSDavid Ahern * prefix route was assigned to, which might be non-loopback. 28979fbb704cSDavid Ahern */ 2898232378e8SDavid Ahern if (dev && 2899232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2900232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 29019fbb704cSDavid Ahern goto out; 29029fbb704cSDavid Ahern } 29039fbb704cSDavid Ahern 29049fbb704cSDavid Ahern if (gwa_type != (IPV6_ADDR_LINKLOCAL | IPV6_ADDR_UNICAST)) { 29059fbb704cSDavid Ahern /* IPv6 strictly inhibits using not link-local 29069fbb704cSDavid Ahern * addresses as nexthop address. 29079fbb704cSDavid Ahern * Otherwise, router will not able to send redirects. 29089fbb704cSDavid Ahern * It is very good, but in some (rare!) circumstances 29099fbb704cSDavid Ahern * (SIT, PtP, NBMA NOARP links) it is handy to allow 29109fbb704cSDavid Ahern * some exceptions. --ANK 29119fbb704cSDavid Ahern * We allow IPv4-mapped nexthops to support RFC4798-type 29129fbb704cSDavid Ahern * addressing 29139fbb704cSDavid Ahern */ 29149fbb704cSDavid Ahern if (!(gwa_type & (IPV6_ADDR_UNICAST | IPV6_ADDR_MAPPED))) { 29159fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid gateway address"); 29169fbb704cSDavid Ahern goto out; 29179fbb704cSDavid Ahern } 29189fbb704cSDavid Ahern 29199fbb704cSDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) 29209fbb704cSDavid Ahern err = ip6_route_check_nh_onlink(net, cfg, dev, extack); 29219fbb704cSDavid Ahern else 29229fbb704cSDavid Ahern err = ip6_route_check_nh(net, cfg, _dev, idev); 29239fbb704cSDavid Ahern 29249fbb704cSDavid Ahern if (err) 29259fbb704cSDavid Ahern goto out; 29269fbb704cSDavid Ahern } 29279fbb704cSDavid Ahern 29289fbb704cSDavid Ahern /* reload in case device was changed */ 29299fbb704cSDavid Ahern dev = *_dev; 29309fbb704cSDavid Ahern 29319fbb704cSDavid Ahern err = -EINVAL; 29329fbb704cSDavid Ahern if (!dev) { 29339fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Egress device not specified"); 29349fbb704cSDavid Ahern goto out; 29359fbb704cSDavid Ahern } else if (dev->flags & IFF_LOOPBACK) { 29369fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, 29379fbb704cSDavid Ahern "Egress device can not be loopback device for this route"); 29389fbb704cSDavid Ahern goto out; 29399fbb704cSDavid Ahern } 2940232378e8SDavid Ahern 2941232378e8SDavid Ahern /* if we did not check gw_addr above, do so now that the 2942232378e8SDavid Ahern * egress device has been resolved. 2943232378e8SDavid Ahern */ 2944232378e8SDavid Ahern if (need_addr_check && 2945232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2946232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 2947232378e8SDavid Ahern goto out; 2948232378e8SDavid Ahern } 2949232378e8SDavid Ahern 29509fbb704cSDavid Ahern err = 0; 29519fbb704cSDavid Ahern out: 29529fbb704cSDavid Ahern return err; 29539fbb704cSDavid Ahern } 29549fbb704cSDavid Ahern 295583c44251SDavid Ahern static bool fib6_is_reject(u32 flags, struct net_device *dev, int addr_type) 295683c44251SDavid Ahern { 295783c44251SDavid Ahern if ((flags & RTF_REJECT) || 295883c44251SDavid Ahern (dev && (dev->flags & IFF_LOOPBACK) && 295983c44251SDavid Ahern !(addr_type & IPV6_ADDR_LOOPBACK) && 296083c44251SDavid Ahern !(flags & RTF_LOCAL))) 296183c44251SDavid Ahern return true; 296283c44251SDavid Ahern 296383c44251SDavid Ahern return false; 296483c44251SDavid Ahern } 296583c44251SDavid Ahern 296683c44251SDavid Ahern int fib6_nh_init(struct net *net, struct fib6_nh *fib6_nh, 296783c44251SDavid Ahern struct fib6_config *cfg, gfp_t gfp_flags, 296883c44251SDavid Ahern struct netlink_ext_ack *extack) 296983c44251SDavid Ahern { 297083c44251SDavid Ahern struct net_device *dev = NULL; 297183c44251SDavid Ahern struct inet6_dev *idev = NULL; 297283c44251SDavid Ahern int addr_type; 297383c44251SDavid Ahern int err; 297483c44251SDavid Ahern 2975f1741730SDavid Ahern fib6_nh->fib_nh_family = AF_INET6; 2976f1741730SDavid Ahern 297783c44251SDavid Ahern err = -ENODEV; 297883c44251SDavid Ahern if (cfg->fc_ifindex) { 297983c44251SDavid Ahern dev = dev_get_by_index(net, cfg->fc_ifindex); 298083c44251SDavid Ahern if (!dev) 298183c44251SDavid Ahern goto out; 298283c44251SDavid Ahern idev = in6_dev_get(dev); 298383c44251SDavid Ahern if (!idev) 298483c44251SDavid Ahern goto out; 298583c44251SDavid Ahern } 298683c44251SDavid Ahern 298783c44251SDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) { 298883c44251SDavid Ahern if (!dev) { 298983c44251SDavid Ahern NL_SET_ERR_MSG(extack, 299083c44251SDavid Ahern "Nexthop device required for onlink"); 299183c44251SDavid Ahern goto out; 299283c44251SDavid Ahern } 299383c44251SDavid Ahern 299483c44251SDavid Ahern if (!(dev->flags & IFF_UP)) { 299583c44251SDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 299683c44251SDavid Ahern err = -ENETDOWN; 299783c44251SDavid Ahern goto out; 299883c44251SDavid Ahern } 299983c44251SDavid Ahern 3000ad1601aeSDavid Ahern fib6_nh->fib_nh_flags |= RTNH_F_ONLINK; 300183c44251SDavid Ahern } 300283c44251SDavid Ahern 3003ad1601aeSDavid Ahern fib6_nh->fib_nh_weight = 1; 300483c44251SDavid Ahern 300583c44251SDavid Ahern /* We cannot add true routes via loopback here, 300683c44251SDavid Ahern * they would result in kernel looping; promote them to reject routes 300783c44251SDavid Ahern */ 300883c44251SDavid Ahern addr_type = ipv6_addr_type(&cfg->fc_dst); 300983c44251SDavid Ahern if (fib6_is_reject(cfg->fc_flags, dev, addr_type)) { 301083c44251SDavid Ahern /* hold loopback dev/idev if we haven't done so. */ 301183c44251SDavid Ahern if (dev != net->loopback_dev) { 301283c44251SDavid Ahern if (dev) { 301383c44251SDavid Ahern dev_put(dev); 301483c44251SDavid Ahern in6_dev_put(idev); 301583c44251SDavid Ahern } 301683c44251SDavid Ahern dev = net->loopback_dev; 301783c44251SDavid Ahern dev_hold(dev); 301883c44251SDavid Ahern idev = in6_dev_get(dev); 301983c44251SDavid Ahern if (!idev) { 302083c44251SDavid Ahern err = -ENODEV; 302183c44251SDavid Ahern goto out; 302283c44251SDavid Ahern } 302383c44251SDavid Ahern } 302483c44251SDavid Ahern goto set_dev; 302583c44251SDavid Ahern } 302683c44251SDavid Ahern 302783c44251SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY) { 302883c44251SDavid Ahern err = ip6_validate_gw(net, cfg, &dev, &idev, extack); 302983c44251SDavid Ahern if (err) 303083c44251SDavid Ahern goto out; 303183c44251SDavid Ahern 3032ad1601aeSDavid Ahern fib6_nh->fib_nh_gw6 = cfg->fc_gateway; 3033bdf00467SDavid Ahern fib6_nh->fib_nh_gw_family = AF_INET6; 303483c44251SDavid Ahern } 303583c44251SDavid Ahern 303683c44251SDavid Ahern err = -ENODEV; 303783c44251SDavid Ahern if (!dev) 303883c44251SDavid Ahern goto out; 303983c44251SDavid Ahern 304083c44251SDavid Ahern if (idev->cnf.disable_ipv6) { 304183c44251SDavid Ahern NL_SET_ERR_MSG(extack, "IPv6 is disabled on nexthop device"); 304283c44251SDavid Ahern err = -EACCES; 304383c44251SDavid Ahern goto out; 304483c44251SDavid Ahern } 304583c44251SDavid Ahern 304683c44251SDavid Ahern if (!(dev->flags & IFF_UP) && !cfg->fc_ignore_dev_down) { 304783c44251SDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 304883c44251SDavid Ahern err = -ENETDOWN; 304983c44251SDavid Ahern goto out; 305083c44251SDavid Ahern } 305183c44251SDavid Ahern 305283c44251SDavid Ahern if (!(cfg->fc_flags & (RTF_LOCAL | RTF_ANYCAST)) && 305383c44251SDavid Ahern !netif_carrier_ok(dev)) 3054ad1601aeSDavid Ahern fib6_nh->fib_nh_flags |= RTNH_F_LINKDOWN; 305583c44251SDavid Ahern 3056979e276eSDavid Ahern err = fib_nh_common_init(&fib6_nh->nh_common, cfg->fc_encap, 3057979e276eSDavid Ahern cfg->fc_encap_type, cfg, gfp_flags, extack); 3058979e276eSDavid Ahern if (err) 3059979e276eSDavid Ahern goto out; 306083c44251SDavid Ahern set_dev: 3061ad1601aeSDavid Ahern fib6_nh->fib_nh_dev = dev; 3062f1741730SDavid Ahern fib6_nh->fib_nh_oif = dev->ifindex; 306383c44251SDavid Ahern err = 0; 306483c44251SDavid Ahern out: 306583c44251SDavid Ahern if (idev) 306683c44251SDavid Ahern in6_dev_put(idev); 306783c44251SDavid Ahern 306883c44251SDavid Ahern if (err) { 3069ad1601aeSDavid Ahern lwtstate_put(fib6_nh->fib_nh_lws); 3070ad1601aeSDavid Ahern fib6_nh->fib_nh_lws = NULL; 307183c44251SDavid Ahern if (dev) 307283c44251SDavid Ahern dev_put(dev); 307383c44251SDavid Ahern } 307483c44251SDavid Ahern 307583c44251SDavid Ahern return err; 307683c44251SDavid Ahern } 307783c44251SDavid Ahern 3078dac7d0f2SDavid Ahern void fib6_nh_release(struct fib6_nh *fib6_nh) 3079dac7d0f2SDavid Ahern { 3080979e276eSDavid Ahern fib_nh_common_release(&fib6_nh->nh_common); 3081dac7d0f2SDavid Ahern } 3082dac7d0f2SDavid Ahern 30838d1c802bSDavid Ahern static struct fib6_info *ip6_route_info_create(struct fib6_config *cfg, 3084acb54e3cSDavid Ahern gfp_t gfp_flags, 3085333c4301SDavid Ahern struct netlink_ext_ack *extack) 30861da177e4SLinus Torvalds { 30875578689aSDaniel Lezcano struct net *net = cfg->fc_nlinfo.nl_net; 30888d1c802bSDavid Ahern struct fib6_info *rt = NULL; 3089c71099acSThomas Graf struct fib6_table *table; 30908c5b83f0SRoopa Prabhu int err = -EINVAL; 309183c44251SDavid Ahern int addr_type; 30921da177e4SLinus Torvalds 3093557c44beSDavid Ahern /* RTF_PCPU is an internal flag; can not be set by userspace */ 3094d5d531cbSDavid Ahern if (cfg->fc_flags & RTF_PCPU) { 3095d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Userspace can not set RTF_PCPU"); 3096557c44beSDavid Ahern goto out; 3097d5d531cbSDavid Ahern } 3098557c44beSDavid Ahern 30992ea2352eSWei Wang /* RTF_CACHE is an internal flag; can not be set by userspace */ 31002ea2352eSWei Wang if (cfg->fc_flags & RTF_CACHE) { 31012ea2352eSWei Wang NL_SET_ERR_MSG(extack, "Userspace can not set RTF_CACHE"); 31022ea2352eSWei Wang goto out; 31032ea2352eSWei Wang } 31042ea2352eSWei Wang 3105e8478e80SDavid Ahern if (cfg->fc_type > RTN_MAX) { 3106e8478e80SDavid Ahern NL_SET_ERR_MSG(extack, "Invalid route type"); 3107e8478e80SDavid Ahern goto out; 3108e8478e80SDavid Ahern } 3109e8478e80SDavid Ahern 3110d5d531cbSDavid Ahern if (cfg->fc_dst_len > 128) { 3111d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid prefix length"); 31128c5b83f0SRoopa Prabhu goto out; 3113d5d531cbSDavid Ahern } 3114d5d531cbSDavid Ahern if (cfg->fc_src_len > 128) { 3115d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address length"); 3116d5d531cbSDavid Ahern goto out; 3117d5d531cbSDavid Ahern } 31181da177e4SLinus Torvalds #ifndef CONFIG_IPV6_SUBTREES 3119d5d531cbSDavid Ahern if (cfg->fc_src_len) { 3120d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, 3121d5d531cbSDavid Ahern "Specifying source address requires IPV6_SUBTREES to be enabled"); 31228c5b83f0SRoopa Prabhu goto out; 3123d5d531cbSDavid Ahern } 31241da177e4SLinus Torvalds #endif 3125fc1e64e1SDavid Ahern 3126c71099acSThomas Graf err = -ENOBUFS; 312738308473SDavid S. Miller if (cfg->fc_nlinfo.nlh && 3128d71314b4SMatti Vaittinen !(cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_CREATE)) { 3129d71314b4SMatti Vaittinen table = fib6_get_table(net, cfg->fc_table); 313038308473SDavid S. Miller if (!table) { 3131f3213831SJoe Perches pr_warn("NLM_F_CREATE should be specified when creating new route\n"); 3132d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 3133d71314b4SMatti Vaittinen } 3134d71314b4SMatti Vaittinen } else { 3135d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 3136d71314b4SMatti Vaittinen } 313738308473SDavid S. Miller 313838308473SDavid S. Miller if (!table) 3139c71099acSThomas Graf goto out; 3140c71099acSThomas Graf 31411da177e4SLinus Torvalds err = -ENOMEM; 314293531c67SDavid Ahern rt = fib6_info_alloc(gfp_flags); 314393531c67SDavid Ahern if (!rt) 31441da177e4SLinus Torvalds goto out; 314593531c67SDavid Ahern 3146d7e774f3SDavid Ahern rt->fib6_metrics = ip_fib_metrics_init(net, cfg->fc_mx, cfg->fc_mx_len, 3147d7e774f3SDavid Ahern extack); 3148767a2217SDavid Ahern if (IS_ERR(rt->fib6_metrics)) { 3149767a2217SDavid Ahern err = PTR_ERR(rt->fib6_metrics); 3150fda21d46SEric Dumazet /* Do not leave garbage there. */ 3151fda21d46SEric Dumazet rt->fib6_metrics = (struct dst_metrics *)&dst_default_metrics; 3152767a2217SDavid Ahern goto out; 3153767a2217SDavid Ahern } 3154767a2217SDavid Ahern 315593531c67SDavid Ahern if (cfg->fc_flags & RTF_ADDRCONF) 315693531c67SDavid Ahern rt->dst_nocount = true; 31571da177e4SLinus Torvalds 31581716a961SGao feng if (cfg->fc_flags & RTF_EXPIRES) 315914895687SDavid Ahern fib6_set_expires(rt, jiffies + 31601716a961SGao feng clock_t_to_jiffies(cfg->fc_expires)); 31611716a961SGao feng else 316214895687SDavid Ahern fib6_clean_expires(rt); 31631da177e4SLinus Torvalds 316486872cb5SThomas Graf if (cfg->fc_protocol == RTPROT_UNSPEC) 316586872cb5SThomas Graf cfg->fc_protocol = RTPROT_BOOT; 316693c2fb25SDavid Ahern rt->fib6_protocol = cfg->fc_protocol; 316786872cb5SThomas Graf 316883c44251SDavid Ahern rt->fib6_table = table; 316983c44251SDavid Ahern rt->fib6_metric = cfg->fc_metric; 317083c44251SDavid Ahern rt->fib6_type = cfg->fc_type; 31712b2450caSDavid Ahern rt->fib6_flags = cfg->fc_flags & ~RTF_GATEWAY; 317219e42e45SRoopa Prabhu 317393c2fb25SDavid Ahern ipv6_addr_prefix(&rt->fib6_dst.addr, &cfg->fc_dst, cfg->fc_dst_len); 317493c2fb25SDavid Ahern rt->fib6_dst.plen = cfg->fc_dst_len; 317593c2fb25SDavid Ahern if (rt->fib6_dst.plen == 128) 31763b6761d1SDavid Ahern rt->dst_host = true; 31771da177e4SLinus Torvalds 31781da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 317993c2fb25SDavid Ahern ipv6_addr_prefix(&rt->fib6_src.addr, &cfg->fc_src, cfg->fc_src_len); 318093c2fb25SDavid Ahern rt->fib6_src.plen = cfg->fc_src_len; 31811da177e4SLinus Torvalds #endif 318283c44251SDavid Ahern err = fib6_nh_init(net, &rt->fib6_nh, cfg, gfp_flags, extack); 31831da177e4SLinus Torvalds if (err) 31841da177e4SLinus Torvalds goto out; 31859fbb704cSDavid Ahern 318683c44251SDavid Ahern /* We cannot add true routes via loopback here, 318783c44251SDavid Ahern * they would result in kernel looping; promote them to reject routes 318883c44251SDavid Ahern */ 318983c44251SDavid Ahern addr_type = ipv6_addr_type(&cfg->fc_dst); 3190ad1601aeSDavid Ahern if (fib6_is_reject(cfg->fc_flags, rt->fib6_nh.fib_nh_dev, addr_type)) 319183c44251SDavid Ahern rt->fib6_flags = RTF_REJECT | RTF_NONEXTHOP; 3192955ec4cbSDavid Ahern 3193c3968a85SDaniel Walter if (!ipv6_addr_any(&cfg->fc_prefsrc)) { 319483c44251SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 319583c44251SDavid Ahern 3196c3968a85SDaniel Walter if (!ipv6_chk_addr(net, &cfg->fc_prefsrc, dev, 0)) { 3197d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address"); 3198c3968a85SDaniel Walter err = -EINVAL; 3199c3968a85SDaniel Walter goto out; 3200c3968a85SDaniel Walter } 320193c2fb25SDavid Ahern rt->fib6_prefsrc.addr = cfg->fc_prefsrc; 320293c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 128; 3203c3968a85SDaniel Walter } else 320493c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 0; 3205c3968a85SDaniel Walter 32068c5b83f0SRoopa Prabhu return rt; 32071da177e4SLinus Torvalds out: 320893531c67SDavid Ahern fib6_info_release(rt); 32098c5b83f0SRoopa Prabhu return ERR_PTR(err); 32106b9ea5a6SRoopa Prabhu } 32116b9ea5a6SRoopa Prabhu 3212acb54e3cSDavid Ahern int ip6_route_add(struct fib6_config *cfg, gfp_t gfp_flags, 3213333c4301SDavid Ahern struct netlink_ext_ack *extack) 32146b9ea5a6SRoopa Prabhu { 32158d1c802bSDavid Ahern struct fib6_info *rt; 32166b9ea5a6SRoopa Prabhu int err; 32176b9ea5a6SRoopa Prabhu 3218acb54e3cSDavid Ahern rt = ip6_route_info_create(cfg, gfp_flags, extack); 3219d4ead6b3SDavid Ahern if (IS_ERR(rt)) 3220d4ead6b3SDavid Ahern return PTR_ERR(rt); 32216b9ea5a6SRoopa Prabhu 3222d4ead6b3SDavid Ahern err = __ip6_ins_rt(rt, &cfg->fc_nlinfo, extack); 322393531c67SDavid Ahern fib6_info_release(rt); 32246b9ea5a6SRoopa Prabhu 32251da177e4SLinus Torvalds return err; 32261da177e4SLinus Torvalds } 32271da177e4SLinus Torvalds 32288d1c802bSDavid Ahern static int __ip6_del_rt(struct fib6_info *rt, struct nl_info *info) 32291da177e4SLinus Torvalds { 3230afb1d4b5SDavid Ahern struct net *net = info->nl_net; 3231c71099acSThomas Graf struct fib6_table *table; 3232afb1d4b5SDavid Ahern int err; 32331da177e4SLinus Torvalds 3234421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) { 32356825a26cSGao feng err = -ENOENT; 32366825a26cSGao feng goto out; 32376825a26cSGao feng } 32386c813a72SPatrick McHardy 323993c2fb25SDavid Ahern table = rt->fib6_table; 324066f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 324186872cb5SThomas Graf err = fib6_del(rt, info); 324266f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 32431da177e4SLinus Torvalds 32446825a26cSGao feng out: 324593531c67SDavid Ahern fib6_info_release(rt); 32461da177e4SLinus Torvalds return err; 32471da177e4SLinus Torvalds } 32481da177e4SLinus Torvalds 32498d1c802bSDavid Ahern int ip6_del_rt(struct net *net, struct fib6_info *rt) 3250e0a1ad73SThomas Graf { 3251afb1d4b5SDavid Ahern struct nl_info info = { .nl_net = net }; 3252afb1d4b5SDavid Ahern 3253528c4cebSDenis V. Lunev return __ip6_del_rt(rt, &info); 3254e0a1ad73SThomas Graf } 3255e0a1ad73SThomas Graf 32568d1c802bSDavid Ahern static int __ip6_del_rt_siblings(struct fib6_info *rt, struct fib6_config *cfg) 32570ae81335SDavid Ahern { 32580ae81335SDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 3259e3330039SWANG Cong struct net *net = info->nl_net; 326016a16cd3SDavid Ahern struct sk_buff *skb = NULL; 32610ae81335SDavid Ahern struct fib6_table *table; 3262e3330039SWANG Cong int err = -ENOENT; 32630ae81335SDavid Ahern 3264421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 3265e3330039SWANG Cong goto out_put; 326693c2fb25SDavid Ahern table = rt->fib6_table; 326766f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 32680ae81335SDavid Ahern 326993c2fb25SDavid Ahern if (rt->fib6_nsiblings && cfg->fc_delete_all_nh) { 32708d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 32710ae81335SDavid Ahern 327216a16cd3SDavid Ahern /* prefer to send a single notification with all hops */ 327316a16cd3SDavid Ahern skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 327416a16cd3SDavid Ahern if (skb) { 327516a16cd3SDavid Ahern u32 seq = info->nlh ? info->nlh->nlmsg_seq : 0; 327616a16cd3SDavid Ahern 3277d4ead6b3SDavid Ahern if (rt6_fill_node(net, skb, rt, NULL, 327816a16cd3SDavid Ahern NULL, NULL, 0, RTM_DELROUTE, 327916a16cd3SDavid Ahern info->portid, seq, 0) < 0) { 328016a16cd3SDavid Ahern kfree_skb(skb); 328116a16cd3SDavid Ahern skb = NULL; 328216a16cd3SDavid Ahern } else 328316a16cd3SDavid Ahern info->skip_notify = 1; 328416a16cd3SDavid Ahern } 328516a16cd3SDavid Ahern 32860ae81335SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 328793c2fb25SDavid Ahern &rt->fib6_siblings, 328893c2fb25SDavid Ahern fib6_siblings) { 32890ae81335SDavid Ahern err = fib6_del(sibling, info); 32900ae81335SDavid Ahern if (err) 3291e3330039SWANG Cong goto out_unlock; 32920ae81335SDavid Ahern } 32930ae81335SDavid Ahern } 32940ae81335SDavid Ahern 32950ae81335SDavid Ahern err = fib6_del(rt, info); 3296e3330039SWANG Cong out_unlock: 329766f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 3298e3330039SWANG Cong out_put: 329993531c67SDavid Ahern fib6_info_release(rt); 330016a16cd3SDavid Ahern 330116a16cd3SDavid Ahern if (skb) { 3302e3330039SWANG Cong rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 330316a16cd3SDavid Ahern info->nlh, gfp_any()); 330416a16cd3SDavid Ahern } 33050ae81335SDavid Ahern return err; 33060ae81335SDavid Ahern } 33070ae81335SDavid Ahern 330823fb93a4SDavid Ahern static int ip6_del_cached_rt(struct rt6_info *rt, struct fib6_config *cfg) 330923fb93a4SDavid Ahern { 331023fb93a4SDavid Ahern int rc = -ESRCH; 331123fb93a4SDavid Ahern 331223fb93a4SDavid Ahern if (cfg->fc_ifindex && rt->dst.dev->ifindex != cfg->fc_ifindex) 331323fb93a4SDavid Ahern goto out; 331423fb93a4SDavid Ahern 331523fb93a4SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY && 331623fb93a4SDavid Ahern !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway)) 331723fb93a4SDavid Ahern goto out; 3318761f6026SXin Long 331923fb93a4SDavid Ahern rc = rt6_remove_exception_rt(rt); 332023fb93a4SDavid Ahern out: 332123fb93a4SDavid Ahern return rc; 332223fb93a4SDavid Ahern } 332323fb93a4SDavid Ahern 3324333c4301SDavid Ahern static int ip6_route_del(struct fib6_config *cfg, 3325333c4301SDavid Ahern struct netlink_ext_ack *extack) 33261da177e4SLinus Torvalds { 33278d1c802bSDavid Ahern struct rt6_info *rt_cache; 3328c71099acSThomas Graf struct fib6_table *table; 33298d1c802bSDavid Ahern struct fib6_info *rt; 33301da177e4SLinus Torvalds struct fib6_node *fn; 33311da177e4SLinus Torvalds int err = -ESRCH; 33321da177e4SLinus Torvalds 33335578689aSDaniel Lezcano table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table); 3334d5d531cbSDavid Ahern if (!table) { 3335d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "FIB table does not exist"); 3336c71099acSThomas Graf return err; 3337d5d531cbSDavid Ahern } 33381da177e4SLinus Torvalds 333966f5d6ceSWei Wang rcu_read_lock(); 3340c71099acSThomas Graf 3341c71099acSThomas Graf fn = fib6_locate(&table->tb6_root, 334286872cb5SThomas Graf &cfg->fc_dst, cfg->fc_dst_len, 334338fbeeeeSWei Wang &cfg->fc_src, cfg->fc_src_len, 33442b760fcfSWei Wang !(cfg->fc_flags & RTF_CACHE)); 33451da177e4SLinus Torvalds 33461da177e4SLinus Torvalds if (fn) { 334766f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 3348ad1601aeSDavid Ahern struct fib6_nh *nh; 3349ad1601aeSDavid Ahern 33502b760fcfSWei Wang if (cfg->fc_flags & RTF_CACHE) { 33517e4b5128SDavid Ahern struct fib6_result res = { 33527e4b5128SDavid Ahern .f6i = rt, 33537e4b5128SDavid Ahern }; 335423fb93a4SDavid Ahern int rc; 335523fb93a4SDavid Ahern 33567e4b5128SDavid Ahern rt_cache = rt6_find_cached_rt(&res, 33577e4b5128SDavid Ahern &cfg->fc_dst, 33582b760fcfSWei Wang &cfg->fc_src); 335923fb93a4SDavid Ahern if (rt_cache) { 336023fb93a4SDavid Ahern rc = ip6_del_cached_rt(rt_cache, cfg); 33619e575010SEric Dumazet if (rc != -ESRCH) { 33629e575010SEric Dumazet rcu_read_unlock(); 336323fb93a4SDavid Ahern return rc; 336423fb93a4SDavid Ahern } 33659e575010SEric Dumazet } 33661f56a01fSMartin KaFai Lau continue; 33672b760fcfSWei Wang } 3368ad1601aeSDavid Ahern 3369ad1601aeSDavid Ahern nh = &rt->fib6_nh; 337086872cb5SThomas Graf if (cfg->fc_ifindex && 3371ad1601aeSDavid Ahern (!nh->fib_nh_dev || 3372ad1601aeSDavid Ahern nh->fib_nh_dev->ifindex != cfg->fc_ifindex)) 33731da177e4SLinus Torvalds continue; 337486872cb5SThomas Graf if (cfg->fc_flags & RTF_GATEWAY && 3375ad1601aeSDavid Ahern !ipv6_addr_equal(&cfg->fc_gateway, &nh->fib_nh_gw6)) 33761da177e4SLinus Torvalds continue; 337793c2fb25SDavid Ahern if (cfg->fc_metric && cfg->fc_metric != rt->fib6_metric) 33781da177e4SLinus Torvalds continue; 337993c2fb25SDavid Ahern if (cfg->fc_protocol && cfg->fc_protocol != rt->fib6_protocol) 3380c2ed1880SMantas M continue; 3381e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 3382e873e4b9SWei Wang continue; 338366f5d6ceSWei Wang rcu_read_unlock(); 33841da177e4SLinus Torvalds 33850ae81335SDavid Ahern /* if gateway was specified only delete the one hop */ 33860ae81335SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY) 338786872cb5SThomas Graf return __ip6_del_rt(rt, &cfg->fc_nlinfo); 33880ae81335SDavid Ahern 33890ae81335SDavid Ahern return __ip6_del_rt_siblings(rt, cfg); 33901da177e4SLinus Torvalds } 33911da177e4SLinus Torvalds } 339266f5d6ceSWei Wang rcu_read_unlock(); 33931da177e4SLinus Torvalds 33941da177e4SLinus Torvalds return err; 33951da177e4SLinus Torvalds } 33961da177e4SLinus Torvalds 33976700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, struct sk_buff *skb) 3398a6279458SYOSHIFUJI Hideaki { 3399a6279458SYOSHIFUJI Hideaki struct netevent_redirect netevent; 3400e8599ff4SDavid S. Miller struct rt6_info *rt, *nrt = NULL; 340185bd05deSDavid Ahern struct fib6_result res = {}; 3402e8599ff4SDavid S. Miller struct ndisc_options ndopts; 3403e8599ff4SDavid S. Miller struct inet6_dev *in6_dev; 3404e8599ff4SDavid S. Miller struct neighbour *neigh; 340571bcdba0SYOSHIFUJI Hideaki / 吉藤英明 struct rd_msg *msg; 34066e157b6aSDavid S. Miller int optlen, on_link; 34076e157b6aSDavid S. Miller u8 *lladdr; 3408e8599ff4SDavid S. Miller 340929a3cad5SSimon Horman optlen = skb_tail_pointer(skb) - skb_transport_header(skb); 341071bcdba0SYOSHIFUJI Hideaki / 吉藤英明 optlen -= sizeof(*msg); 3411e8599ff4SDavid S. Miller 3412e8599ff4SDavid S. Miller if (optlen < 0) { 34136e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: packet too short\n"); 3414e8599ff4SDavid S. Miller return; 3415e8599ff4SDavid S. Miller } 3416e8599ff4SDavid S. Miller 341771bcdba0SYOSHIFUJI Hideaki / 吉藤英明 msg = (struct rd_msg *)icmp6_hdr(skb); 3418e8599ff4SDavid S. Miller 341971bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_is_multicast(&msg->dest)) { 34206e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: destination address is multicast\n"); 3421e8599ff4SDavid S. Miller return; 3422e8599ff4SDavid S. Miller } 3423e8599ff4SDavid S. Miller 34246e157b6aSDavid S. Miller on_link = 0; 342571bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_equal(&msg->dest, &msg->target)) { 3426e8599ff4SDavid S. Miller on_link = 1; 342771bcdba0SYOSHIFUJI Hideaki / 吉藤英明 } else if (ipv6_addr_type(&msg->target) != 3428e8599ff4SDavid S. Miller (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) { 34296e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: target address is not link-local unicast\n"); 3430e8599ff4SDavid S. Miller return; 3431e8599ff4SDavid S. Miller } 3432e8599ff4SDavid S. Miller 3433e8599ff4SDavid S. Miller in6_dev = __in6_dev_get(skb->dev); 3434e8599ff4SDavid S. Miller if (!in6_dev) 3435e8599ff4SDavid S. Miller return; 3436e8599ff4SDavid S. Miller if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_redirects) 3437e8599ff4SDavid S. Miller return; 3438e8599ff4SDavid S. Miller 3439e8599ff4SDavid S. Miller /* RFC2461 8.1: 3440e8599ff4SDavid S. Miller * The IP source address of the Redirect MUST be the same as the current 3441e8599ff4SDavid S. Miller * first-hop router for the specified ICMP Destination Address. 3442e8599ff4SDavid S. Miller */ 3443e8599ff4SDavid S. Miller 3444f997c55cSAlexander Aring if (!ndisc_parse_options(skb->dev, msg->opt, optlen, &ndopts)) { 3445e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid ND options\n"); 3446e8599ff4SDavid S. Miller return; 3447e8599ff4SDavid S. Miller } 34486e157b6aSDavid S. Miller 34496e157b6aSDavid S. Miller lladdr = NULL; 3450e8599ff4SDavid S. Miller if (ndopts.nd_opts_tgt_lladdr) { 3451e8599ff4SDavid S. Miller lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr, 3452e8599ff4SDavid S. Miller skb->dev); 3453e8599ff4SDavid S. Miller if (!lladdr) { 3454e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid link-layer address length\n"); 3455e8599ff4SDavid S. Miller return; 3456e8599ff4SDavid S. Miller } 3457e8599ff4SDavid S. Miller } 3458e8599ff4SDavid S. Miller 34596e157b6aSDavid S. Miller rt = (struct rt6_info *) dst; 3460ec13ad1dSMatthias Schiffer if (rt->rt6i_flags & RTF_REJECT) { 34616e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_redirect: source isn't a valid nexthop for redirect target\n"); 34626e157b6aSDavid S. Miller return; 34636e157b6aSDavid S. Miller } 34646e157b6aSDavid S. Miller 34656e157b6aSDavid S. Miller /* Redirect received -> path was valid. 34666e157b6aSDavid S. Miller * Look, redirects are sent only in response to data packets, 34676e157b6aSDavid S. Miller * so that this nexthop apparently is reachable. --ANK 34686e157b6aSDavid S. Miller */ 34690dec879fSJulian Anastasov dst_confirm_neigh(&rt->dst, &ipv6_hdr(skb)->saddr); 34706e157b6aSDavid S. Miller 347171bcdba0SYOSHIFUJI Hideaki / 吉藤英明 neigh = __neigh_lookup(&nd_tbl, &msg->target, skb->dev, 1); 3472e8599ff4SDavid S. Miller if (!neigh) 3473e8599ff4SDavid S. Miller return; 3474e8599ff4SDavid S. Miller 34751da177e4SLinus Torvalds /* 34761da177e4SLinus Torvalds * We have finally decided to accept it. 34771da177e4SLinus Torvalds */ 34781da177e4SLinus Torvalds 3479f997c55cSAlexander Aring ndisc_update(skb->dev, neigh, lladdr, NUD_STALE, 34801da177e4SLinus Torvalds NEIGH_UPDATE_F_WEAK_OVERRIDE| 34811da177e4SLinus Torvalds NEIGH_UPDATE_F_OVERRIDE| 34821da177e4SLinus Torvalds (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER| 3483f997c55cSAlexander Aring NEIGH_UPDATE_F_ISROUTER)), 3484f997c55cSAlexander Aring NDISC_REDIRECT, &ndopts); 34851da177e4SLinus Torvalds 34864d85cd0cSDavid Ahern rcu_read_lock(); 348785bd05deSDavid Ahern res.f6i = rcu_dereference(rt->from); 3488e873e4b9SWei Wang /* This fib6_info_hold() is safe here because we hold reference to rt 3489e873e4b9SWei Wang * and rt already holds reference to fib6_info. 3490e873e4b9SWei Wang */ 349185bd05deSDavid Ahern fib6_info_hold(res.f6i); 34924d85cd0cSDavid Ahern rcu_read_unlock(); 34938a14e46fSDavid Ahern 349485bd05deSDavid Ahern res.nh = &res.f6i->fib6_nh; 349585bd05deSDavid Ahern nrt = ip6_rt_cache_alloc(&res, &msg->dest, NULL); 349638308473SDavid S. Miller if (!nrt) 34971da177e4SLinus Torvalds goto out; 34981da177e4SLinus Torvalds 34991da177e4SLinus Torvalds nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE; 35001da177e4SLinus Torvalds if (on_link) 35011da177e4SLinus Torvalds nrt->rt6i_flags &= ~RTF_GATEWAY; 35021da177e4SLinus Torvalds 35034e3fd7a0SAlexey Dobriyan nrt->rt6i_gateway = *(struct in6_addr *)neigh->primary_key; 35041da177e4SLinus Torvalds 35052b760fcfSWei Wang /* No need to remove rt from the exception table if rt is 35062b760fcfSWei Wang * a cached route because rt6_insert_exception() will 35072b760fcfSWei Wang * takes care of it 35082b760fcfSWei Wang */ 35095012f0a5SDavid Ahern if (rt6_insert_exception(nrt, &res)) { 35102b760fcfSWei Wang dst_release_immediate(&nrt->dst); 35112b760fcfSWei Wang goto out; 35122b760fcfSWei Wang } 35131da177e4SLinus Torvalds 3514d8d1f30bSChangli Gao netevent.old = &rt->dst; 3515d8d1f30bSChangli Gao netevent.new = &nrt->dst; 351671bcdba0SYOSHIFUJI Hideaki / 吉藤英明 netevent.daddr = &msg->dest; 351760592833SYOSHIFUJI Hideaki / 吉藤英明 netevent.neigh = neigh; 35188d71740cSTom Tucker call_netevent_notifiers(NETEVENT_REDIRECT, &netevent); 35198d71740cSTom Tucker 35201da177e4SLinus Torvalds out: 352185bd05deSDavid Ahern fib6_info_release(res.f6i); 3522e8599ff4SDavid S. Miller neigh_release(neigh); 35236e157b6aSDavid S. Miller } 35246e157b6aSDavid S. Miller 352570ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 35268d1c802bSDavid Ahern static struct fib6_info *rt6_get_route_info(struct net *net, 3527b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3528830218c1SDavid Ahern const struct in6_addr *gwaddr, 3529830218c1SDavid Ahern struct net_device *dev) 353070ceb4f5SYOSHIFUJI Hideaki { 3531830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO; 3532830218c1SDavid Ahern int ifindex = dev->ifindex; 353370ceb4f5SYOSHIFUJI Hideaki struct fib6_node *fn; 35348d1c802bSDavid Ahern struct fib6_info *rt = NULL; 3535c71099acSThomas Graf struct fib6_table *table; 353670ceb4f5SYOSHIFUJI Hideaki 3537830218c1SDavid Ahern table = fib6_get_table(net, tb_id); 353838308473SDavid S. Miller if (!table) 3539c71099acSThomas Graf return NULL; 3540c71099acSThomas Graf 354166f5d6ceSWei Wang rcu_read_lock(); 354238fbeeeeSWei Wang fn = fib6_locate(&table->tb6_root, prefix, prefixlen, NULL, 0, true); 354370ceb4f5SYOSHIFUJI Hideaki if (!fn) 354470ceb4f5SYOSHIFUJI Hideaki goto out; 354570ceb4f5SYOSHIFUJI Hideaki 354666f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 3547ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev->ifindex != ifindex) 354870ceb4f5SYOSHIFUJI Hideaki continue; 35492b2450caSDavid Ahern if (!(rt->fib6_flags & RTF_ROUTEINFO) || 3550bdf00467SDavid Ahern !rt->fib6_nh.fib_nh_gw_family) 355170ceb4f5SYOSHIFUJI Hideaki continue; 3552ad1601aeSDavid Ahern if (!ipv6_addr_equal(&rt->fib6_nh.fib_nh_gw6, gwaddr)) 355370ceb4f5SYOSHIFUJI Hideaki continue; 3554e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 3555e873e4b9SWei Wang continue; 355670ceb4f5SYOSHIFUJI Hideaki break; 355770ceb4f5SYOSHIFUJI Hideaki } 355870ceb4f5SYOSHIFUJI Hideaki out: 355966f5d6ceSWei Wang rcu_read_unlock(); 356070ceb4f5SYOSHIFUJI Hideaki return rt; 356170ceb4f5SYOSHIFUJI Hideaki } 356270ceb4f5SYOSHIFUJI Hideaki 35638d1c802bSDavid Ahern static struct fib6_info *rt6_add_route_info(struct net *net, 3564b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3565830218c1SDavid Ahern const struct in6_addr *gwaddr, 3566830218c1SDavid Ahern struct net_device *dev, 356795c96174SEric Dumazet unsigned int pref) 356870ceb4f5SYOSHIFUJI Hideaki { 356986872cb5SThomas Graf struct fib6_config cfg = { 3570238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 3571830218c1SDavid Ahern .fc_ifindex = dev->ifindex, 357286872cb5SThomas Graf .fc_dst_len = prefixlen, 357386872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO | 357486872cb5SThomas Graf RTF_UP | RTF_PREF(pref), 3575b91d5329SXin Long .fc_protocol = RTPROT_RA, 3576e8478e80SDavid Ahern .fc_type = RTN_UNICAST, 357715e47304SEric W. Biederman .fc_nlinfo.portid = 0, 3578efa2cea0SDaniel Lezcano .fc_nlinfo.nlh = NULL, 3579efa2cea0SDaniel Lezcano .fc_nlinfo.nl_net = net, 358086872cb5SThomas Graf }; 358170ceb4f5SYOSHIFUJI Hideaki 3582830218c1SDavid Ahern cfg.fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO, 35834e3fd7a0SAlexey Dobriyan cfg.fc_dst = *prefix; 35844e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 358586872cb5SThomas Graf 3586e317da96SYOSHIFUJI Hideaki /* We should treat it as a default route if prefix length is 0. */ 3587e317da96SYOSHIFUJI Hideaki if (!prefixlen) 358886872cb5SThomas Graf cfg.fc_flags |= RTF_DEFAULT; 358970ceb4f5SYOSHIFUJI Hideaki 3590acb54e3cSDavid Ahern ip6_route_add(&cfg, GFP_ATOMIC, NULL); 359170ceb4f5SYOSHIFUJI Hideaki 3592830218c1SDavid Ahern return rt6_get_route_info(net, prefix, prefixlen, gwaddr, dev); 359370ceb4f5SYOSHIFUJI Hideaki } 359470ceb4f5SYOSHIFUJI Hideaki #endif 359570ceb4f5SYOSHIFUJI Hideaki 35968d1c802bSDavid Ahern struct fib6_info *rt6_get_dflt_router(struct net *net, 3597afb1d4b5SDavid Ahern const struct in6_addr *addr, 3598afb1d4b5SDavid Ahern struct net_device *dev) 35991da177e4SLinus Torvalds { 3600830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT; 36018d1c802bSDavid Ahern struct fib6_info *rt; 3602c71099acSThomas Graf struct fib6_table *table; 36031da177e4SLinus Torvalds 3604afb1d4b5SDavid Ahern table = fib6_get_table(net, tb_id); 360538308473SDavid S. Miller if (!table) 3606c71099acSThomas Graf return NULL; 36071da177e4SLinus Torvalds 360866f5d6ceSWei Wang rcu_read_lock(); 360966f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 3610ad1601aeSDavid Ahern struct fib6_nh *nh = &rt->fib6_nh; 3611ad1601aeSDavid Ahern 3612ad1601aeSDavid Ahern if (dev == nh->fib_nh_dev && 361393c2fb25SDavid Ahern ((rt->fib6_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) && 3614ad1601aeSDavid Ahern ipv6_addr_equal(&nh->fib_nh_gw6, addr)) 36151da177e4SLinus Torvalds break; 36161da177e4SLinus Torvalds } 3617e873e4b9SWei Wang if (rt && !fib6_info_hold_safe(rt)) 3618e873e4b9SWei Wang rt = NULL; 361966f5d6ceSWei Wang rcu_read_unlock(); 36201da177e4SLinus Torvalds return rt; 36211da177e4SLinus Torvalds } 36221da177e4SLinus Torvalds 36238d1c802bSDavid Ahern struct fib6_info *rt6_add_dflt_router(struct net *net, 3624afb1d4b5SDavid Ahern const struct in6_addr *gwaddr, 3625ebacaaa0SYOSHIFUJI Hideaki struct net_device *dev, 3626ebacaaa0SYOSHIFUJI Hideaki unsigned int pref) 36271da177e4SLinus Torvalds { 362886872cb5SThomas Graf struct fib6_config cfg = { 3629ca254490SDavid Ahern .fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT, 3630238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 363186872cb5SThomas Graf .fc_ifindex = dev->ifindex, 363286872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT | 363386872cb5SThomas Graf RTF_UP | RTF_EXPIRES | RTF_PREF(pref), 3634b91d5329SXin Long .fc_protocol = RTPROT_RA, 3635e8478e80SDavid Ahern .fc_type = RTN_UNICAST, 363615e47304SEric W. Biederman .fc_nlinfo.portid = 0, 36375578689aSDaniel Lezcano .fc_nlinfo.nlh = NULL, 3638afb1d4b5SDavid Ahern .fc_nlinfo.nl_net = net, 363986872cb5SThomas Graf }; 36401da177e4SLinus Torvalds 36414e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 36421da177e4SLinus Torvalds 3643acb54e3cSDavid Ahern if (!ip6_route_add(&cfg, GFP_ATOMIC, NULL)) { 3644830218c1SDavid Ahern struct fib6_table *table; 3645830218c1SDavid Ahern 3646830218c1SDavid Ahern table = fib6_get_table(dev_net(dev), cfg.fc_table); 3647830218c1SDavid Ahern if (table) 3648830218c1SDavid Ahern table->flags |= RT6_TABLE_HAS_DFLT_ROUTER; 3649830218c1SDavid Ahern } 36501da177e4SLinus Torvalds 3651afb1d4b5SDavid Ahern return rt6_get_dflt_router(net, gwaddr, dev); 36521da177e4SLinus Torvalds } 36531da177e4SLinus Torvalds 3654afb1d4b5SDavid Ahern static void __rt6_purge_dflt_routers(struct net *net, 3655afb1d4b5SDavid Ahern struct fib6_table *table) 36561da177e4SLinus Torvalds { 36578d1c802bSDavid Ahern struct fib6_info *rt; 36581da177e4SLinus Torvalds 36591da177e4SLinus Torvalds restart: 366066f5d6ceSWei Wang rcu_read_lock(); 366166f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 3662dcd1f572SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 3663dcd1f572SDavid Ahern struct inet6_dev *idev = dev ? __in6_dev_get(dev) : NULL; 3664dcd1f572SDavid Ahern 366593c2fb25SDavid Ahern if (rt->fib6_flags & (RTF_DEFAULT | RTF_ADDRCONF) && 3666e873e4b9SWei Wang (!idev || idev->cnf.accept_ra != 2) && 3667e873e4b9SWei Wang fib6_info_hold_safe(rt)) { 366866f5d6ceSWei Wang rcu_read_unlock(); 3669afb1d4b5SDavid Ahern ip6_del_rt(net, rt); 36701da177e4SLinus Torvalds goto restart; 36711da177e4SLinus Torvalds } 36721da177e4SLinus Torvalds } 367366f5d6ceSWei Wang rcu_read_unlock(); 3674830218c1SDavid Ahern 3675830218c1SDavid Ahern table->flags &= ~RT6_TABLE_HAS_DFLT_ROUTER; 3676830218c1SDavid Ahern } 3677830218c1SDavid Ahern 3678830218c1SDavid Ahern void rt6_purge_dflt_routers(struct net *net) 3679830218c1SDavid Ahern { 3680830218c1SDavid Ahern struct fib6_table *table; 3681830218c1SDavid Ahern struct hlist_head *head; 3682830218c1SDavid Ahern unsigned int h; 3683830218c1SDavid Ahern 3684830218c1SDavid Ahern rcu_read_lock(); 3685830218c1SDavid Ahern 3686830218c1SDavid Ahern for (h = 0; h < FIB6_TABLE_HASHSZ; h++) { 3687830218c1SDavid Ahern head = &net->ipv6.fib_table_hash[h]; 3688830218c1SDavid Ahern hlist_for_each_entry_rcu(table, head, tb6_hlist) { 3689830218c1SDavid Ahern if (table->flags & RT6_TABLE_HAS_DFLT_ROUTER) 3690afb1d4b5SDavid Ahern __rt6_purge_dflt_routers(net, table); 3691830218c1SDavid Ahern } 3692830218c1SDavid Ahern } 3693830218c1SDavid Ahern 3694830218c1SDavid Ahern rcu_read_unlock(); 36951da177e4SLinus Torvalds } 36961da177e4SLinus Torvalds 36975578689aSDaniel Lezcano static void rtmsg_to_fib6_config(struct net *net, 36985578689aSDaniel Lezcano struct in6_rtmsg *rtmsg, 369986872cb5SThomas Graf struct fib6_config *cfg) 370086872cb5SThomas Graf { 37018823a3acSMaciej Żenczykowski *cfg = (struct fib6_config){ 37028823a3acSMaciej Żenczykowski .fc_table = l3mdev_fib_table_by_index(net, rtmsg->rtmsg_ifindex) ? 37038823a3acSMaciej Żenczykowski : RT6_TABLE_MAIN, 37048823a3acSMaciej Żenczykowski .fc_ifindex = rtmsg->rtmsg_ifindex, 370567f69513SDavid Ahern .fc_metric = rtmsg->rtmsg_metric ? : IP6_RT_PRIO_USER, 37068823a3acSMaciej Żenczykowski .fc_expires = rtmsg->rtmsg_info, 37078823a3acSMaciej Żenczykowski .fc_dst_len = rtmsg->rtmsg_dst_len, 37088823a3acSMaciej Żenczykowski .fc_src_len = rtmsg->rtmsg_src_len, 37098823a3acSMaciej Żenczykowski .fc_flags = rtmsg->rtmsg_flags, 37108823a3acSMaciej Żenczykowski .fc_type = rtmsg->rtmsg_type, 371186872cb5SThomas Graf 37128823a3acSMaciej Żenczykowski .fc_nlinfo.nl_net = net, 371386872cb5SThomas Graf 37148823a3acSMaciej Żenczykowski .fc_dst = rtmsg->rtmsg_dst, 37158823a3acSMaciej Żenczykowski .fc_src = rtmsg->rtmsg_src, 37168823a3acSMaciej Żenczykowski .fc_gateway = rtmsg->rtmsg_gateway, 37178823a3acSMaciej Żenczykowski }; 371886872cb5SThomas Graf } 371986872cb5SThomas Graf 37205578689aSDaniel Lezcano int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg) 37211da177e4SLinus Torvalds { 372286872cb5SThomas Graf struct fib6_config cfg; 37231da177e4SLinus Torvalds struct in6_rtmsg rtmsg; 37241da177e4SLinus Torvalds int err; 37251da177e4SLinus Torvalds 37261da177e4SLinus Torvalds switch (cmd) { 37271da177e4SLinus Torvalds case SIOCADDRT: /* Add a route */ 37281da177e4SLinus Torvalds case SIOCDELRT: /* Delete a route */ 3729af31f412SEric W. Biederman if (!ns_capable(net->user_ns, CAP_NET_ADMIN)) 37301da177e4SLinus Torvalds return -EPERM; 37311da177e4SLinus Torvalds err = copy_from_user(&rtmsg, arg, 37321da177e4SLinus Torvalds sizeof(struct in6_rtmsg)); 37331da177e4SLinus Torvalds if (err) 37341da177e4SLinus Torvalds return -EFAULT; 37351da177e4SLinus Torvalds 37365578689aSDaniel Lezcano rtmsg_to_fib6_config(net, &rtmsg, &cfg); 373786872cb5SThomas Graf 37381da177e4SLinus Torvalds rtnl_lock(); 37391da177e4SLinus Torvalds switch (cmd) { 37401da177e4SLinus Torvalds case SIOCADDRT: 3741acb54e3cSDavid Ahern err = ip6_route_add(&cfg, GFP_KERNEL, NULL); 37421da177e4SLinus Torvalds break; 37431da177e4SLinus Torvalds case SIOCDELRT: 3744333c4301SDavid Ahern err = ip6_route_del(&cfg, NULL); 37451da177e4SLinus Torvalds break; 37461da177e4SLinus Torvalds default: 37471da177e4SLinus Torvalds err = -EINVAL; 37481da177e4SLinus Torvalds } 37491da177e4SLinus Torvalds rtnl_unlock(); 37501da177e4SLinus Torvalds 37511da177e4SLinus Torvalds return err; 37523ff50b79SStephen Hemminger } 37531da177e4SLinus Torvalds 37541da177e4SLinus Torvalds return -EINVAL; 37551da177e4SLinus Torvalds } 37561da177e4SLinus Torvalds 37571da177e4SLinus Torvalds /* 37581da177e4SLinus Torvalds * Drop the packet on the floor 37591da177e4SLinus Torvalds */ 37601da177e4SLinus Torvalds 3761d5fdd6baSBrian Haley static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes) 37621da177e4SLinus Torvalds { 3763612f09e8SYOSHIFUJI Hideaki int type; 3764adf30907SEric Dumazet struct dst_entry *dst = skb_dst(skb); 3765612f09e8SYOSHIFUJI Hideaki switch (ipstats_mib_noroutes) { 3766612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_INNOROUTES: 37670660e03fSArnaldo Carvalho de Melo type = ipv6_addr_type(&ipv6_hdr(skb)->daddr); 376845bb0060SUlrich Weber if (type == IPV6_ADDR_ANY) { 3769bdb7cc64SStephen Suryaputra IP6_INC_STATS(dev_net(dst->dev), 3770bdb7cc64SStephen Suryaputra __in6_dev_get_safely(skb->dev), 37713bd653c8SDenis V. Lunev IPSTATS_MIB_INADDRERRORS); 3772612f09e8SYOSHIFUJI Hideaki break; 3773612f09e8SYOSHIFUJI Hideaki } 3774612f09e8SYOSHIFUJI Hideaki /* FALLTHROUGH */ 3775612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_OUTNOROUTES: 37763bd653c8SDenis V. Lunev IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst), 37773bd653c8SDenis V. Lunev ipstats_mib_noroutes); 3778612f09e8SYOSHIFUJI Hideaki break; 3779612f09e8SYOSHIFUJI Hideaki } 37803ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0); 37811da177e4SLinus Torvalds kfree_skb(skb); 37821da177e4SLinus Torvalds return 0; 37831da177e4SLinus Torvalds } 37841da177e4SLinus Torvalds 37859ce8ade0SThomas Graf static int ip6_pkt_discard(struct sk_buff *skb) 37869ce8ade0SThomas Graf { 3787612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES); 37889ce8ade0SThomas Graf } 37899ce8ade0SThomas Graf 3790ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb) 37911da177e4SLinus Torvalds { 3792adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3793612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES); 37941da177e4SLinus Torvalds } 37951da177e4SLinus Torvalds 37969ce8ade0SThomas Graf static int ip6_pkt_prohibit(struct sk_buff *skb) 37979ce8ade0SThomas Graf { 3798612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES); 37999ce8ade0SThomas Graf } 38009ce8ade0SThomas Graf 3801ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb) 38029ce8ade0SThomas Graf { 3803adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3804612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES); 38059ce8ade0SThomas Graf } 38069ce8ade0SThomas Graf 38071da177e4SLinus Torvalds /* 38081da177e4SLinus Torvalds * Allocate a dst for local (unicast / anycast) address. 38091da177e4SLinus Torvalds */ 38101da177e4SLinus Torvalds 3811360a9887SDavid Ahern struct fib6_info *addrconf_f6i_alloc(struct net *net, 3812afb1d4b5SDavid Ahern struct inet6_dev *idev, 38131da177e4SLinus Torvalds const struct in6_addr *addr, 3814acb54e3cSDavid Ahern bool anycast, gfp_t gfp_flags) 38151da177e4SLinus Torvalds { 3816c7a1ce39SDavid Ahern struct fib6_config cfg = { 3817c7a1ce39SDavid Ahern .fc_table = l3mdev_fib_table(idev->dev) ? : RT6_TABLE_LOCAL, 3818c7a1ce39SDavid Ahern .fc_ifindex = idev->dev->ifindex, 3819c7a1ce39SDavid Ahern .fc_flags = RTF_UP | RTF_ADDRCONF | RTF_NONEXTHOP, 3820c7a1ce39SDavid Ahern .fc_dst = *addr, 3821c7a1ce39SDavid Ahern .fc_dst_len = 128, 3822c7a1ce39SDavid Ahern .fc_protocol = RTPROT_KERNEL, 3823c7a1ce39SDavid Ahern .fc_nlinfo.nl_net = net, 3824c7a1ce39SDavid Ahern .fc_ignore_dev_down = true, 3825c7a1ce39SDavid Ahern }; 38265f02ce24SDavid Ahern 3827e8478e80SDavid Ahern if (anycast) { 3828c7a1ce39SDavid Ahern cfg.fc_type = RTN_ANYCAST; 3829c7a1ce39SDavid Ahern cfg.fc_flags |= RTF_ANYCAST; 3830e8478e80SDavid Ahern } else { 3831c7a1ce39SDavid Ahern cfg.fc_type = RTN_LOCAL; 3832c7a1ce39SDavid Ahern cfg.fc_flags |= RTF_LOCAL; 3833e8478e80SDavid Ahern } 38341da177e4SLinus Torvalds 3835c7a1ce39SDavid Ahern return ip6_route_info_create(&cfg, gfp_flags, NULL); 38361da177e4SLinus Torvalds } 38371da177e4SLinus Torvalds 3838c3968a85SDaniel Walter /* remove deleted ip from prefsrc entries */ 3839c3968a85SDaniel Walter struct arg_dev_net_ip { 3840c3968a85SDaniel Walter struct net_device *dev; 3841c3968a85SDaniel Walter struct net *net; 3842c3968a85SDaniel Walter struct in6_addr *addr; 3843c3968a85SDaniel Walter }; 3844c3968a85SDaniel Walter 38458d1c802bSDavid Ahern static int fib6_remove_prefsrc(struct fib6_info *rt, void *arg) 3846c3968a85SDaniel Walter { 3847c3968a85SDaniel Walter struct net_device *dev = ((struct arg_dev_net_ip *)arg)->dev; 3848c3968a85SDaniel Walter struct net *net = ((struct arg_dev_net_ip *)arg)->net; 3849c3968a85SDaniel Walter struct in6_addr *addr = ((struct arg_dev_net_ip *)arg)->addr; 3850c3968a85SDaniel Walter 3851ad1601aeSDavid Ahern if (((void *)rt->fib6_nh.fib_nh_dev == dev || !dev) && 3852421842edSDavid Ahern rt != net->ipv6.fib6_null_entry && 385393c2fb25SDavid Ahern ipv6_addr_equal(addr, &rt->fib6_prefsrc.addr)) { 385460006a48SWei Wang spin_lock_bh(&rt6_exception_lock); 3855c3968a85SDaniel Walter /* remove prefsrc entry */ 385693c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 0; 385760006a48SWei Wang spin_unlock_bh(&rt6_exception_lock); 3858c3968a85SDaniel Walter } 3859c3968a85SDaniel Walter return 0; 3860c3968a85SDaniel Walter } 3861c3968a85SDaniel Walter 3862c3968a85SDaniel Walter void rt6_remove_prefsrc(struct inet6_ifaddr *ifp) 3863c3968a85SDaniel Walter { 3864c3968a85SDaniel Walter struct net *net = dev_net(ifp->idev->dev); 3865c3968a85SDaniel Walter struct arg_dev_net_ip adni = { 3866c3968a85SDaniel Walter .dev = ifp->idev->dev, 3867c3968a85SDaniel Walter .net = net, 3868c3968a85SDaniel Walter .addr = &ifp->addr, 3869c3968a85SDaniel Walter }; 38700c3584d5SLi RongQing fib6_clean_all(net, fib6_remove_prefsrc, &adni); 3871c3968a85SDaniel Walter } 3872c3968a85SDaniel Walter 38732b2450caSDavid Ahern #define RTF_RA_ROUTER (RTF_ADDRCONF | RTF_DEFAULT) 3874be7a010dSDuan Jiong 3875be7a010dSDuan Jiong /* Remove routers and update dst entries when gateway turn into host. */ 38768d1c802bSDavid Ahern static int fib6_clean_tohost(struct fib6_info *rt, void *arg) 3877be7a010dSDuan Jiong { 3878be7a010dSDuan Jiong struct in6_addr *gateway = (struct in6_addr *)arg; 3879be7a010dSDuan Jiong 388093c2fb25SDavid Ahern if (((rt->fib6_flags & RTF_RA_ROUTER) == RTF_RA_ROUTER) && 3881bdf00467SDavid Ahern rt->fib6_nh.fib_nh_gw_family && 3882ad1601aeSDavid Ahern ipv6_addr_equal(gateway, &rt->fib6_nh.fib_nh_gw6)) { 3883be7a010dSDuan Jiong return -1; 3884be7a010dSDuan Jiong } 3885b16cb459SWei Wang 3886b16cb459SWei Wang /* Further clean up cached routes in exception table. 3887b16cb459SWei Wang * This is needed because cached route may have a different 3888b16cb459SWei Wang * gateway than its 'parent' in the case of an ip redirect. 3889b16cb459SWei Wang */ 3890b16cb459SWei Wang rt6_exceptions_clean_tohost(rt, gateway); 3891b16cb459SWei Wang 3892be7a010dSDuan Jiong return 0; 3893be7a010dSDuan Jiong } 3894be7a010dSDuan Jiong 3895be7a010dSDuan Jiong void rt6_clean_tohost(struct net *net, struct in6_addr *gateway) 3896be7a010dSDuan Jiong { 3897be7a010dSDuan Jiong fib6_clean_all(net, fib6_clean_tohost, gateway); 3898be7a010dSDuan Jiong } 3899be7a010dSDuan Jiong 39002127d95aSIdo Schimmel struct arg_netdev_event { 39012127d95aSIdo Schimmel const struct net_device *dev; 39024c981e28SIdo Schimmel union { 39032127d95aSIdo Schimmel unsigned int nh_flags; 39044c981e28SIdo Schimmel unsigned long event; 39054c981e28SIdo Schimmel }; 39062127d95aSIdo Schimmel }; 39072127d95aSIdo Schimmel 39088d1c802bSDavid Ahern static struct fib6_info *rt6_multipath_first_sibling(const struct fib6_info *rt) 3909d7dedee1SIdo Schimmel { 39108d1c802bSDavid Ahern struct fib6_info *iter; 3911d7dedee1SIdo Schimmel struct fib6_node *fn; 3912d7dedee1SIdo Schimmel 391393c2fb25SDavid Ahern fn = rcu_dereference_protected(rt->fib6_node, 391493c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3915d7dedee1SIdo Schimmel iter = rcu_dereference_protected(fn->leaf, 391693c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3917d7dedee1SIdo Schimmel while (iter) { 391893c2fb25SDavid Ahern if (iter->fib6_metric == rt->fib6_metric && 391933bd5ac5SDavid Ahern rt6_qualify_for_ecmp(iter)) 3920d7dedee1SIdo Schimmel return iter; 39218fb11a9aSDavid Ahern iter = rcu_dereference_protected(iter->fib6_next, 392293c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3923d7dedee1SIdo Schimmel } 3924d7dedee1SIdo Schimmel 3925d7dedee1SIdo Schimmel return NULL; 3926d7dedee1SIdo Schimmel } 3927d7dedee1SIdo Schimmel 39288d1c802bSDavid Ahern static bool rt6_is_dead(const struct fib6_info *rt) 3929d7dedee1SIdo Schimmel { 3930ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_flags & RTNH_F_DEAD || 3931ad1601aeSDavid Ahern (rt->fib6_nh.fib_nh_flags & RTNH_F_LINKDOWN && 3932ad1601aeSDavid Ahern ip6_ignore_linkdown(rt->fib6_nh.fib_nh_dev))) 3933d7dedee1SIdo Schimmel return true; 3934d7dedee1SIdo Schimmel 3935d7dedee1SIdo Schimmel return false; 3936d7dedee1SIdo Schimmel } 3937d7dedee1SIdo Schimmel 39388d1c802bSDavid Ahern static int rt6_multipath_total_weight(const struct fib6_info *rt) 3939d7dedee1SIdo Schimmel { 39408d1c802bSDavid Ahern struct fib6_info *iter; 3941d7dedee1SIdo Schimmel int total = 0; 3942d7dedee1SIdo Schimmel 3943d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) 3944ad1601aeSDavid Ahern total += rt->fib6_nh.fib_nh_weight; 3945d7dedee1SIdo Schimmel 394693c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) { 3947d7dedee1SIdo Schimmel if (!rt6_is_dead(iter)) 3948ad1601aeSDavid Ahern total += iter->fib6_nh.fib_nh_weight; 3949d7dedee1SIdo Schimmel } 3950d7dedee1SIdo Schimmel 3951d7dedee1SIdo Schimmel return total; 3952d7dedee1SIdo Schimmel } 3953d7dedee1SIdo Schimmel 39548d1c802bSDavid Ahern static void rt6_upper_bound_set(struct fib6_info *rt, int *weight, int total) 3955d7dedee1SIdo Schimmel { 3956d7dedee1SIdo Schimmel int upper_bound = -1; 3957d7dedee1SIdo Schimmel 3958d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) { 3959ad1601aeSDavid Ahern *weight += rt->fib6_nh.fib_nh_weight; 3960d7dedee1SIdo Schimmel upper_bound = DIV_ROUND_CLOSEST_ULL((u64) (*weight) << 31, 3961d7dedee1SIdo Schimmel total) - 1; 3962d7dedee1SIdo Schimmel } 3963ad1601aeSDavid Ahern atomic_set(&rt->fib6_nh.fib_nh_upper_bound, upper_bound); 3964d7dedee1SIdo Schimmel } 3965d7dedee1SIdo Schimmel 39668d1c802bSDavid Ahern static void rt6_multipath_upper_bound_set(struct fib6_info *rt, int total) 3967d7dedee1SIdo Schimmel { 39688d1c802bSDavid Ahern struct fib6_info *iter; 3969d7dedee1SIdo Schimmel int weight = 0; 3970d7dedee1SIdo Schimmel 3971d7dedee1SIdo Schimmel rt6_upper_bound_set(rt, &weight, total); 3972d7dedee1SIdo Schimmel 397393c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 3974d7dedee1SIdo Schimmel rt6_upper_bound_set(iter, &weight, total); 3975d7dedee1SIdo Schimmel } 3976d7dedee1SIdo Schimmel 39778d1c802bSDavid Ahern void rt6_multipath_rebalance(struct fib6_info *rt) 3978d7dedee1SIdo Schimmel { 39798d1c802bSDavid Ahern struct fib6_info *first; 3980d7dedee1SIdo Schimmel int total; 3981d7dedee1SIdo Schimmel 3982d7dedee1SIdo Schimmel /* In case the entire multipath route was marked for flushing, 3983d7dedee1SIdo Schimmel * then there is no need to rebalance upon the removal of every 3984d7dedee1SIdo Schimmel * sibling route. 3985d7dedee1SIdo Schimmel */ 398693c2fb25SDavid Ahern if (!rt->fib6_nsiblings || rt->should_flush) 3987d7dedee1SIdo Schimmel return; 3988d7dedee1SIdo Schimmel 3989d7dedee1SIdo Schimmel /* During lookup routes are evaluated in order, so we need to 3990d7dedee1SIdo Schimmel * make sure upper bounds are assigned from the first sibling 3991d7dedee1SIdo Schimmel * onwards. 3992d7dedee1SIdo Schimmel */ 3993d7dedee1SIdo Schimmel first = rt6_multipath_first_sibling(rt); 3994d7dedee1SIdo Schimmel if (WARN_ON_ONCE(!first)) 3995d7dedee1SIdo Schimmel return; 3996d7dedee1SIdo Schimmel 3997d7dedee1SIdo Schimmel total = rt6_multipath_total_weight(first); 3998d7dedee1SIdo Schimmel rt6_multipath_upper_bound_set(first, total); 3999d7dedee1SIdo Schimmel } 4000d7dedee1SIdo Schimmel 40018d1c802bSDavid Ahern static int fib6_ifup(struct fib6_info *rt, void *p_arg) 40022127d95aSIdo Schimmel { 40032127d95aSIdo Schimmel const struct arg_netdev_event *arg = p_arg; 40047aef6859SDavid Ahern struct net *net = dev_net(arg->dev); 40052127d95aSIdo Schimmel 4006ad1601aeSDavid Ahern if (rt != net->ipv6.fib6_null_entry && 4007ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_dev == arg->dev) { 4008ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags &= ~arg->nh_flags; 40097aef6859SDavid Ahern fib6_update_sernum_upto_root(net, rt); 4010d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 40111de178edSIdo Schimmel } 40122127d95aSIdo Schimmel 40132127d95aSIdo Schimmel return 0; 40142127d95aSIdo Schimmel } 40152127d95aSIdo Schimmel 40162127d95aSIdo Schimmel void rt6_sync_up(struct net_device *dev, unsigned int nh_flags) 40172127d95aSIdo Schimmel { 40182127d95aSIdo Schimmel struct arg_netdev_event arg = { 40192127d95aSIdo Schimmel .dev = dev, 40206802f3adSIdo Schimmel { 40212127d95aSIdo Schimmel .nh_flags = nh_flags, 40226802f3adSIdo Schimmel }, 40232127d95aSIdo Schimmel }; 40242127d95aSIdo Schimmel 40252127d95aSIdo Schimmel if (nh_flags & RTNH_F_DEAD && netif_carrier_ok(dev)) 40262127d95aSIdo Schimmel arg.nh_flags |= RTNH_F_LINKDOWN; 40272127d95aSIdo Schimmel 40282127d95aSIdo Schimmel fib6_clean_all(dev_net(dev), fib6_ifup, &arg); 40292127d95aSIdo Schimmel } 40302127d95aSIdo Schimmel 40318d1c802bSDavid Ahern static bool rt6_multipath_uses_dev(const struct fib6_info *rt, 40321de178edSIdo Schimmel const struct net_device *dev) 40331de178edSIdo Schimmel { 40348d1c802bSDavid Ahern struct fib6_info *iter; 40351de178edSIdo Schimmel 4036ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == dev) 40371de178edSIdo Schimmel return true; 403893c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 4039ad1601aeSDavid Ahern if (iter->fib6_nh.fib_nh_dev == dev) 40401de178edSIdo Schimmel return true; 40411de178edSIdo Schimmel 40421de178edSIdo Schimmel return false; 40431de178edSIdo Schimmel } 40441de178edSIdo Schimmel 40458d1c802bSDavid Ahern static void rt6_multipath_flush(struct fib6_info *rt) 40461de178edSIdo Schimmel { 40478d1c802bSDavid Ahern struct fib6_info *iter; 40481de178edSIdo Schimmel 40491de178edSIdo Schimmel rt->should_flush = 1; 405093c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 40511de178edSIdo Schimmel iter->should_flush = 1; 40521de178edSIdo Schimmel } 40531de178edSIdo Schimmel 40548d1c802bSDavid Ahern static unsigned int rt6_multipath_dead_count(const struct fib6_info *rt, 40551de178edSIdo Schimmel const struct net_device *down_dev) 40561de178edSIdo Schimmel { 40578d1c802bSDavid Ahern struct fib6_info *iter; 40581de178edSIdo Schimmel unsigned int dead = 0; 40591de178edSIdo Schimmel 4060ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == down_dev || 4061ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags & RTNH_F_DEAD) 40621de178edSIdo Schimmel dead++; 406393c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 4064ad1601aeSDavid Ahern if (iter->fib6_nh.fib_nh_dev == down_dev || 4065ad1601aeSDavid Ahern iter->fib6_nh.fib_nh_flags & RTNH_F_DEAD) 40661de178edSIdo Schimmel dead++; 40671de178edSIdo Schimmel 40681de178edSIdo Schimmel return dead; 40691de178edSIdo Schimmel } 40701de178edSIdo Schimmel 40718d1c802bSDavid Ahern static void rt6_multipath_nh_flags_set(struct fib6_info *rt, 40721de178edSIdo Schimmel const struct net_device *dev, 40731de178edSIdo Schimmel unsigned int nh_flags) 40741de178edSIdo Schimmel { 40758d1c802bSDavid Ahern struct fib6_info *iter; 40761de178edSIdo Schimmel 4077ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == dev) 4078ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags |= nh_flags; 407993c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 4080ad1601aeSDavid Ahern if (iter->fib6_nh.fib_nh_dev == dev) 4081ad1601aeSDavid Ahern iter->fib6_nh.fib_nh_flags |= nh_flags; 40821de178edSIdo Schimmel } 40831de178edSIdo Schimmel 4084a1a22c12SDavid Ahern /* called with write lock held for table with rt */ 40858d1c802bSDavid Ahern static int fib6_ifdown(struct fib6_info *rt, void *p_arg) 40861da177e4SLinus Torvalds { 40874c981e28SIdo Schimmel const struct arg_netdev_event *arg = p_arg; 40884c981e28SIdo Schimmel const struct net_device *dev = arg->dev; 40897aef6859SDavid Ahern struct net *net = dev_net(dev); 40908ed67789SDaniel Lezcano 4091421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 409227c6fa73SIdo Schimmel return 0; 409327c6fa73SIdo Schimmel 409427c6fa73SIdo Schimmel switch (arg->event) { 409527c6fa73SIdo Schimmel case NETDEV_UNREGISTER: 4096ad1601aeSDavid Ahern return rt->fib6_nh.fib_nh_dev == dev ? -1 : 0; 409727c6fa73SIdo Schimmel case NETDEV_DOWN: 40981de178edSIdo Schimmel if (rt->should_flush) 409927c6fa73SIdo Schimmel return -1; 410093c2fb25SDavid Ahern if (!rt->fib6_nsiblings) 4101ad1601aeSDavid Ahern return rt->fib6_nh.fib_nh_dev == dev ? -1 : 0; 41021de178edSIdo Schimmel if (rt6_multipath_uses_dev(rt, dev)) { 41031de178edSIdo Schimmel unsigned int count; 41041de178edSIdo Schimmel 41051de178edSIdo Schimmel count = rt6_multipath_dead_count(rt, dev); 410693c2fb25SDavid Ahern if (rt->fib6_nsiblings + 1 == count) { 41071de178edSIdo Schimmel rt6_multipath_flush(rt); 41081de178edSIdo Schimmel return -1; 41091de178edSIdo Schimmel } 41101de178edSIdo Schimmel rt6_multipath_nh_flags_set(rt, dev, RTNH_F_DEAD | 41111de178edSIdo Schimmel RTNH_F_LINKDOWN); 41127aef6859SDavid Ahern fib6_update_sernum(net, rt); 4113d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 41141de178edSIdo Schimmel } 41151de178edSIdo Schimmel return -2; 411627c6fa73SIdo Schimmel case NETDEV_CHANGE: 4117ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev != dev || 411893c2fb25SDavid Ahern rt->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) 411927c6fa73SIdo Schimmel break; 4120ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags |= RTNH_F_LINKDOWN; 4121d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 412227c6fa73SIdo Schimmel break; 41232b241361SIdo Schimmel } 4124c159d30cSDavid S. Miller 41251da177e4SLinus Torvalds return 0; 41261da177e4SLinus Torvalds } 41271da177e4SLinus Torvalds 412827c6fa73SIdo Schimmel void rt6_sync_down_dev(struct net_device *dev, unsigned long event) 41291da177e4SLinus Torvalds { 41304c981e28SIdo Schimmel struct arg_netdev_event arg = { 41318ed67789SDaniel Lezcano .dev = dev, 41326802f3adSIdo Schimmel { 41334c981e28SIdo Schimmel .event = event, 41346802f3adSIdo Schimmel }, 41358ed67789SDaniel Lezcano }; 41367c6bb7d2SDavid Ahern struct net *net = dev_net(dev); 41378ed67789SDaniel Lezcano 41387c6bb7d2SDavid Ahern if (net->ipv6.sysctl.skip_notify_on_dev_down) 41397c6bb7d2SDavid Ahern fib6_clean_all_skip_notify(net, fib6_ifdown, &arg); 41407c6bb7d2SDavid Ahern else 41417c6bb7d2SDavid Ahern fib6_clean_all(net, fib6_ifdown, &arg); 41424c981e28SIdo Schimmel } 41434c981e28SIdo Schimmel 41444c981e28SIdo Schimmel void rt6_disable_ip(struct net_device *dev, unsigned long event) 41454c981e28SIdo Schimmel { 41464c981e28SIdo Schimmel rt6_sync_down_dev(dev, event); 41474c981e28SIdo Schimmel rt6_uncached_list_flush_dev(dev_net(dev), dev); 41484c981e28SIdo Schimmel neigh_ifdown(&nd_tbl, dev); 41491da177e4SLinus Torvalds } 41501da177e4SLinus Torvalds 415195c96174SEric Dumazet struct rt6_mtu_change_arg { 41521da177e4SLinus Torvalds struct net_device *dev; 415395c96174SEric Dumazet unsigned int mtu; 41541da177e4SLinus Torvalds }; 41551da177e4SLinus Torvalds 41568d1c802bSDavid Ahern static int rt6_mtu_change_route(struct fib6_info *rt, void *p_arg) 41571da177e4SLinus Torvalds { 41581da177e4SLinus Torvalds struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg; 41591da177e4SLinus Torvalds struct inet6_dev *idev; 41601da177e4SLinus Torvalds 41611da177e4SLinus Torvalds /* In IPv6 pmtu discovery is not optional, 41621da177e4SLinus Torvalds so that RTAX_MTU lock cannot disable it. 41631da177e4SLinus Torvalds We still use this lock to block changes 41641da177e4SLinus Torvalds caused by addrconf/ndisc. 41651da177e4SLinus Torvalds */ 41661da177e4SLinus Torvalds 41671da177e4SLinus Torvalds idev = __in6_dev_get(arg->dev); 416838308473SDavid S. Miller if (!idev) 41691da177e4SLinus Torvalds return 0; 41701da177e4SLinus Torvalds 41711da177e4SLinus Torvalds /* For administrative MTU increase, there is no way to discover 41721da177e4SLinus Torvalds IPv6 PMTU increase, so PMTU increase should be updated here. 41731da177e4SLinus Torvalds Since RFC 1981 doesn't include administrative MTU increase 41741da177e4SLinus Torvalds update PMTU increase is a MUST. (i.e. jumbo frame) 41751da177e4SLinus Torvalds */ 4176ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == arg->dev && 4177d4ead6b3SDavid Ahern !fib6_metric_locked(rt, RTAX_MTU)) { 4178d4ead6b3SDavid Ahern u32 mtu = rt->fib6_pmtu; 4179d4ead6b3SDavid Ahern 4180d4ead6b3SDavid Ahern if (mtu >= arg->mtu || 4181d4ead6b3SDavid Ahern (mtu < arg->mtu && mtu == idev->cnf.mtu6)) 4182d4ead6b3SDavid Ahern fib6_metric_set(rt, RTAX_MTU, arg->mtu); 4183d4ead6b3SDavid Ahern 4184f5bbe7eeSWei Wang spin_lock_bh(&rt6_exception_lock); 4185e9fa1495SStefano Brivio rt6_exceptions_update_pmtu(idev, rt, arg->mtu); 4186f5bbe7eeSWei Wang spin_unlock_bh(&rt6_exception_lock); 41874b32b5adSMartin KaFai Lau } 41881da177e4SLinus Torvalds return 0; 41891da177e4SLinus Torvalds } 41901da177e4SLinus Torvalds 419195c96174SEric Dumazet void rt6_mtu_change(struct net_device *dev, unsigned int mtu) 41921da177e4SLinus Torvalds { 4193c71099acSThomas Graf struct rt6_mtu_change_arg arg = { 4194c71099acSThomas Graf .dev = dev, 4195c71099acSThomas Graf .mtu = mtu, 4196c71099acSThomas Graf }; 41971da177e4SLinus Torvalds 41980c3584d5SLi RongQing fib6_clean_all(dev_net(dev), rt6_mtu_change_route, &arg); 41991da177e4SLinus Torvalds } 42001da177e4SLinus Torvalds 4201ef7c79edSPatrick McHardy static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = { 42025176f91eSThomas Graf [RTA_GATEWAY] = { .len = sizeof(struct in6_addr) }, 4203aa8f8778SEric Dumazet [RTA_PREFSRC] = { .len = sizeof(struct in6_addr) }, 420486872cb5SThomas Graf [RTA_OIF] = { .type = NLA_U32 }, 4205ab364a6fSThomas Graf [RTA_IIF] = { .type = NLA_U32 }, 420686872cb5SThomas Graf [RTA_PRIORITY] = { .type = NLA_U32 }, 420786872cb5SThomas Graf [RTA_METRICS] = { .type = NLA_NESTED }, 420851ebd318SNicolas Dichtel [RTA_MULTIPATH] = { .len = sizeof(struct rtnexthop) }, 4209c78ba6d6SLubomir Rintel [RTA_PREF] = { .type = NLA_U8 }, 421019e42e45SRoopa Prabhu [RTA_ENCAP_TYPE] = { .type = NLA_U16 }, 421119e42e45SRoopa Prabhu [RTA_ENCAP] = { .type = NLA_NESTED }, 421232bc201eSXin Long [RTA_EXPIRES] = { .type = NLA_U32 }, 4213622ec2c9SLorenzo Colitti [RTA_UID] = { .type = NLA_U32 }, 42143b45a410SLiping Zhang [RTA_MARK] = { .type = NLA_U32 }, 4215aa8f8778SEric Dumazet [RTA_TABLE] = { .type = NLA_U32 }, 4216eacb9384SRoopa Prabhu [RTA_IP_PROTO] = { .type = NLA_U8 }, 4217eacb9384SRoopa Prabhu [RTA_SPORT] = { .type = NLA_U16 }, 4218eacb9384SRoopa Prabhu [RTA_DPORT] = { .type = NLA_U16 }, 421986872cb5SThomas Graf }; 422086872cb5SThomas Graf 422186872cb5SThomas Graf static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh, 4222333c4301SDavid Ahern struct fib6_config *cfg, 4223333c4301SDavid Ahern struct netlink_ext_ack *extack) 42241da177e4SLinus Torvalds { 422586872cb5SThomas Graf struct rtmsg *rtm; 422686872cb5SThomas Graf struct nlattr *tb[RTA_MAX+1]; 4227c78ba6d6SLubomir Rintel unsigned int pref; 422886872cb5SThomas Graf int err; 42291da177e4SLinus Torvalds 4230fceb6435SJohannes Berg err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy, 4231dac9c979SDavid Ahern extack); 423286872cb5SThomas Graf if (err < 0) 423386872cb5SThomas Graf goto errout; 42341da177e4SLinus Torvalds 423586872cb5SThomas Graf err = -EINVAL; 423686872cb5SThomas Graf rtm = nlmsg_data(nlh); 423786872cb5SThomas Graf 423884db8407SMaciej Żenczykowski *cfg = (struct fib6_config){ 423984db8407SMaciej Żenczykowski .fc_table = rtm->rtm_table, 424084db8407SMaciej Żenczykowski .fc_dst_len = rtm->rtm_dst_len, 424184db8407SMaciej Żenczykowski .fc_src_len = rtm->rtm_src_len, 424284db8407SMaciej Żenczykowski .fc_flags = RTF_UP, 424384db8407SMaciej Żenczykowski .fc_protocol = rtm->rtm_protocol, 424484db8407SMaciej Żenczykowski .fc_type = rtm->rtm_type, 424584db8407SMaciej Żenczykowski 424684db8407SMaciej Żenczykowski .fc_nlinfo.portid = NETLINK_CB(skb).portid, 424784db8407SMaciej Żenczykowski .fc_nlinfo.nlh = nlh, 424884db8407SMaciej Żenczykowski .fc_nlinfo.nl_net = sock_net(skb->sk), 424984db8407SMaciej Żenczykowski }; 425086872cb5SThomas Graf 4251ef2c7d7bSNicolas Dichtel if (rtm->rtm_type == RTN_UNREACHABLE || 4252ef2c7d7bSNicolas Dichtel rtm->rtm_type == RTN_BLACKHOLE || 4253b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_PROHIBIT || 4254b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_THROW) 425586872cb5SThomas Graf cfg->fc_flags |= RTF_REJECT; 425686872cb5SThomas Graf 4257ab79ad14SMaciej Żenczykowski if (rtm->rtm_type == RTN_LOCAL) 4258ab79ad14SMaciej Żenczykowski cfg->fc_flags |= RTF_LOCAL; 4259ab79ad14SMaciej Żenczykowski 42601f56a01fSMartin KaFai Lau if (rtm->rtm_flags & RTM_F_CLONED) 42611f56a01fSMartin KaFai Lau cfg->fc_flags |= RTF_CACHE; 42621f56a01fSMartin KaFai Lau 4263fc1e64e1SDavid Ahern cfg->fc_flags |= (rtm->rtm_flags & RTNH_F_ONLINK); 4264fc1e64e1SDavid Ahern 426586872cb5SThomas Graf if (tb[RTA_GATEWAY]) { 426667b61f6cSJiri Benc cfg->fc_gateway = nla_get_in6_addr(tb[RTA_GATEWAY]); 426786872cb5SThomas Graf cfg->fc_flags |= RTF_GATEWAY; 42681da177e4SLinus Torvalds } 4269e3818541SDavid Ahern if (tb[RTA_VIA]) { 4270e3818541SDavid Ahern NL_SET_ERR_MSG(extack, "IPv6 does not support RTA_VIA attribute"); 4271e3818541SDavid Ahern goto errout; 4272e3818541SDavid Ahern } 427386872cb5SThomas Graf 427486872cb5SThomas Graf if (tb[RTA_DST]) { 427586872cb5SThomas Graf int plen = (rtm->rtm_dst_len + 7) >> 3; 427686872cb5SThomas Graf 427786872cb5SThomas Graf if (nla_len(tb[RTA_DST]) < plen) 427886872cb5SThomas Graf goto errout; 427986872cb5SThomas Graf 428086872cb5SThomas Graf nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen); 42811da177e4SLinus Torvalds } 428286872cb5SThomas Graf 428386872cb5SThomas Graf if (tb[RTA_SRC]) { 428486872cb5SThomas Graf int plen = (rtm->rtm_src_len + 7) >> 3; 428586872cb5SThomas Graf 428686872cb5SThomas Graf if (nla_len(tb[RTA_SRC]) < plen) 428786872cb5SThomas Graf goto errout; 428886872cb5SThomas Graf 428986872cb5SThomas Graf nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen); 42901da177e4SLinus Torvalds } 429186872cb5SThomas Graf 4292c3968a85SDaniel Walter if (tb[RTA_PREFSRC]) 429367b61f6cSJiri Benc cfg->fc_prefsrc = nla_get_in6_addr(tb[RTA_PREFSRC]); 4294c3968a85SDaniel Walter 429586872cb5SThomas Graf if (tb[RTA_OIF]) 429686872cb5SThomas Graf cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]); 429786872cb5SThomas Graf 429886872cb5SThomas Graf if (tb[RTA_PRIORITY]) 429986872cb5SThomas Graf cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]); 430086872cb5SThomas Graf 430186872cb5SThomas Graf if (tb[RTA_METRICS]) { 430286872cb5SThomas Graf cfg->fc_mx = nla_data(tb[RTA_METRICS]); 430386872cb5SThomas Graf cfg->fc_mx_len = nla_len(tb[RTA_METRICS]); 43041da177e4SLinus Torvalds } 430586872cb5SThomas Graf 430686872cb5SThomas Graf if (tb[RTA_TABLE]) 430786872cb5SThomas Graf cfg->fc_table = nla_get_u32(tb[RTA_TABLE]); 430886872cb5SThomas Graf 430951ebd318SNicolas Dichtel if (tb[RTA_MULTIPATH]) { 431051ebd318SNicolas Dichtel cfg->fc_mp = nla_data(tb[RTA_MULTIPATH]); 431151ebd318SNicolas Dichtel cfg->fc_mp_len = nla_len(tb[RTA_MULTIPATH]); 43129ed59592SDavid Ahern 43139ed59592SDavid Ahern err = lwtunnel_valid_encap_type_attr(cfg->fc_mp, 4314c255bd68SDavid Ahern cfg->fc_mp_len, extack); 43159ed59592SDavid Ahern if (err < 0) 43169ed59592SDavid Ahern goto errout; 431751ebd318SNicolas Dichtel } 431851ebd318SNicolas Dichtel 4319c78ba6d6SLubomir Rintel if (tb[RTA_PREF]) { 4320c78ba6d6SLubomir Rintel pref = nla_get_u8(tb[RTA_PREF]); 4321c78ba6d6SLubomir Rintel if (pref != ICMPV6_ROUTER_PREF_LOW && 4322c78ba6d6SLubomir Rintel pref != ICMPV6_ROUTER_PREF_HIGH) 4323c78ba6d6SLubomir Rintel pref = ICMPV6_ROUTER_PREF_MEDIUM; 4324c78ba6d6SLubomir Rintel cfg->fc_flags |= RTF_PREF(pref); 4325c78ba6d6SLubomir Rintel } 4326c78ba6d6SLubomir Rintel 432719e42e45SRoopa Prabhu if (tb[RTA_ENCAP]) 432819e42e45SRoopa Prabhu cfg->fc_encap = tb[RTA_ENCAP]; 432919e42e45SRoopa Prabhu 43309ed59592SDavid Ahern if (tb[RTA_ENCAP_TYPE]) { 433119e42e45SRoopa Prabhu cfg->fc_encap_type = nla_get_u16(tb[RTA_ENCAP_TYPE]); 433219e42e45SRoopa Prabhu 4333c255bd68SDavid Ahern err = lwtunnel_valid_encap_type(cfg->fc_encap_type, extack); 43349ed59592SDavid Ahern if (err < 0) 43359ed59592SDavid Ahern goto errout; 43369ed59592SDavid Ahern } 43379ed59592SDavid Ahern 433832bc201eSXin Long if (tb[RTA_EXPIRES]) { 433932bc201eSXin Long unsigned long timeout = addrconf_timeout_fixup(nla_get_u32(tb[RTA_EXPIRES]), HZ); 434032bc201eSXin Long 434132bc201eSXin Long if (addrconf_finite_timeout(timeout)) { 434232bc201eSXin Long cfg->fc_expires = jiffies_to_clock_t(timeout * HZ); 434332bc201eSXin Long cfg->fc_flags |= RTF_EXPIRES; 434432bc201eSXin Long } 434532bc201eSXin Long } 434632bc201eSXin Long 434786872cb5SThomas Graf err = 0; 434886872cb5SThomas Graf errout: 434986872cb5SThomas Graf return err; 43501da177e4SLinus Torvalds } 43511da177e4SLinus Torvalds 43526b9ea5a6SRoopa Prabhu struct rt6_nh { 43538d1c802bSDavid Ahern struct fib6_info *fib6_info; 43546b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 43556b9ea5a6SRoopa Prabhu struct list_head next; 43566b9ea5a6SRoopa Prabhu }; 43576b9ea5a6SRoopa Prabhu 4358d4ead6b3SDavid Ahern static int ip6_route_info_append(struct net *net, 4359d4ead6b3SDavid Ahern struct list_head *rt6_nh_list, 43608d1c802bSDavid Ahern struct fib6_info *rt, 43618d1c802bSDavid Ahern struct fib6_config *r_cfg) 43626b9ea5a6SRoopa Prabhu { 43636b9ea5a6SRoopa Prabhu struct rt6_nh *nh; 43646b9ea5a6SRoopa Prabhu int err = -EEXIST; 43656b9ea5a6SRoopa Prabhu 43666b9ea5a6SRoopa Prabhu list_for_each_entry(nh, rt6_nh_list, next) { 43678d1c802bSDavid Ahern /* check if fib6_info already exists */ 43688d1c802bSDavid Ahern if (rt6_duplicate_nexthop(nh->fib6_info, rt)) 43696b9ea5a6SRoopa Prabhu return err; 43706b9ea5a6SRoopa Prabhu } 43716b9ea5a6SRoopa Prabhu 43726b9ea5a6SRoopa Prabhu nh = kzalloc(sizeof(*nh), GFP_KERNEL); 43736b9ea5a6SRoopa Prabhu if (!nh) 43746b9ea5a6SRoopa Prabhu return -ENOMEM; 43758d1c802bSDavid Ahern nh->fib6_info = rt; 43766b9ea5a6SRoopa Prabhu memcpy(&nh->r_cfg, r_cfg, sizeof(*r_cfg)); 43776b9ea5a6SRoopa Prabhu list_add_tail(&nh->next, rt6_nh_list); 43786b9ea5a6SRoopa Prabhu 43796b9ea5a6SRoopa Prabhu return 0; 43806b9ea5a6SRoopa Prabhu } 43816b9ea5a6SRoopa Prabhu 43828d1c802bSDavid Ahern static void ip6_route_mpath_notify(struct fib6_info *rt, 43838d1c802bSDavid Ahern struct fib6_info *rt_last, 43843b1137feSDavid Ahern struct nl_info *info, 43853b1137feSDavid Ahern __u16 nlflags) 43863b1137feSDavid Ahern { 43873b1137feSDavid Ahern /* if this is an APPEND route, then rt points to the first route 43883b1137feSDavid Ahern * inserted and rt_last points to last route inserted. Userspace 43893b1137feSDavid Ahern * wants a consistent dump of the route which starts at the first 43903b1137feSDavid Ahern * nexthop. Since sibling routes are always added at the end of 43913b1137feSDavid Ahern * the list, find the first sibling of the last route appended 43923b1137feSDavid Ahern */ 439393c2fb25SDavid Ahern if ((nlflags & NLM_F_APPEND) && rt_last && rt_last->fib6_nsiblings) { 439493c2fb25SDavid Ahern rt = list_first_entry(&rt_last->fib6_siblings, 43958d1c802bSDavid Ahern struct fib6_info, 439693c2fb25SDavid Ahern fib6_siblings); 43973b1137feSDavid Ahern } 43983b1137feSDavid Ahern 43993b1137feSDavid Ahern if (rt) 44003b1137feSDavid Ahern inet6_rt_notify(RTM_NEWROUTE, rt, info, nlflags); 44013b1137feSDavid Ahern } 44023b1137feSDavid Ahern 4403333c4301SDavid Ahern static int ip6_route_multipath_add(struct fib6_config *cfg, 4404333c4301SDavid Ahern struct netlink_ext_ack *extack) 440551ebd318SNicolas Dichtel { 44068d1c802bSDavid Ahern struct fib6_info *rt_notif = NULL, *rt_last = NULL; 44073b1137feSDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 440851ebd318SNicolas Dichtel struct fib6_config r_cfg; 440951ebd318SNicolas Dichtel struct rtnexthop *rtnh; 44108d1c802bSDavid Ahern struct fib6_info *rt; 44116b9ea5a6SRoopa Prabhu struct rt6_nh *err_nh; 44126b9ea5a6SRoopa Prabhu struct rt6_nh *nh, *nh_safe; 44133b1137feSDavid Ahern __u16 nlflags; 441451ebd318SNicolas Dichtel int remaining; 441551ebd318SNicolas Dichtel int attrlen; 44166b9ea5a6SRoopa Prabhu int err = 1; 44176b9ea5a6SRoopa Prabhu int nhn = 0; 44186b9ea5a6SRoopa Prabhu int replace = (cfg->fc_nlinfo.nlh && 44196b9ea5a6SRoopa Prabhu (cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_REPLACE)); 44206b9ea5a6SRoopa Prabhu LIST_HEAD(rt6_nh_list); 442151ebd318SNicolas Dichtel 44223b1137feSDavid Ahern nlflags = replace ? NLM_F_REPLACE : NLM_F_CREATE; 44233b1137feSDavid Ahern if (info->nlh && info->nlh->nlmsg_flags & NLM_F_APPEND) 44243b1137feSDavid Ahern nlflags |= NLM_F_APPEND; 44253b1137feSDavid Ahern 442635f1b4e9SMichal Kubeček remaining = cfg->fc_mp_len; 442751ebd318SNicolas Dichtel rtnh = (struct rtnexthop *)cfg->fc_mp; 442851ebd318SNicolas Dichtel 44296b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry and build a list (rt6_nh_list) of 44308d1c802bSDavid Ahern * fib6_info structs per nexthop 44316b9ea5a6SRoopa Prabhu */ 443251ebd318SNicolas Dichtel while (rtnh_ok(rtnh, remaining)) { 443351ebd318SNicolas Dichtel memcpy(&r_cfg, cfg, sizeof(*cfg)); 443451ebd318SNicolas Dichtel if (rtnh->rtnh_ifindex) 443551ebd318SNicolas Dichtel r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 443651ebd318SNicolas Dichtel 443751ebd318SNicolas Dichtel attrlen = rtnh_attrlen(rtnh); 443851ebd318SNicolas Dichtel if (attrlen > 0) { 443951ebd318SNicolas Dichtel struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 444051ebd318SNicolas Dichtel 444151ebd318SNicolas Dichtel nla = nla_find(attrs, attrlen, RTA_GATEWAY); 444251ebd318SNicolas Dichtel if (nla) { 444367b61f6cSJiri Benc r_cfg.fc_gateway = nla_get_in6_addr(nla); 444451ebd318SNicolas Dichtel r_cfg.fc_flags |= RTF_GATEWAY; 444551ebd318SNicolas Dichtel } 444619e42e45SRoopa Prabhu r_cfg.fc_encap = nla_find(attrs, attrlen, RTA_ENCAP); 444719e42e45SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_ENCAP_TYPE); 444819e42e45SRoopa Prabhu if (nla) 444919e42e45SRoopa Prabhu r_cfg.fc_encap_type = nla_get_u16(nla); 445051ebd318SNicolas Dichtel } 44516b9ea5a6SRoopa Prabhu 445268e2ffdeSDavid Ahern r_cfg.fc_flags |= (rtnh->rtnh_flags & RTNH_F_ONLINK); 4453acb54e3cSDavid Ahern rt = ip6_route_info_create(&r_cfg, GFP_KERNEL, extack); 44548c5b83f0SRoopa Prabhu if (IS_ERR(rt)) { 44558c5b83f0SRoopa Prabhu err = PTR_ERR(rt); 44568c5b83f0SRoopa Prabhu rt = NULL; 44576b9ea5a6SRoopa Prabhu goto cleanup; 44588c5b83f0SRoopa Prabhu } 4459b5d2d75eSDavid Ahern if (!rt6_qualify_for_ecmp(rt)) { 4460b5d2d75eSDavid Ahern err = -EINVAL; 4461b5d2d75eSDavid Ahern NL_SET_ERR_MSG(extack, 4462b5d2d75eSDavid Ahern "Device only routes can not be added for IPv6 using the multipath API."); 4463b5d2d75eSDavid Ahern fib6_info_release(rt); 4464b5d2d75eSDavid Ahern goto cleanup; 4465b5d2d75eSDavid Ahern } 44666b9ea5a6SRoopa Prabhu 4467ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_weight = rtnh->rtnh_hops + 1; 4468398958aeSIdo Schimmel 4469d4ead6b3SDavid Ahern err = ip6_route_info_append(info->nl_net, &rt6_nh_list, 4470d4ead6b3SDavid Ahern rt, &r_cfg); 447151ebd318SNicolas Dichtel if (err) { 447293531c67SDavid Ahern fib6_info_release(rt); 44736b9ea5a6SRoopa Prabhu goto cleanup; 447451ebd318SNicolas Dichtel } 44756b9ea5a6SRoopa Prabhu 44766b9ea5a6SRoopa Prabhu rtnh = rtnh_next(rtnh, &remaining); 447751ebd318SNicolas Dichtel } 44786b9ea5a6SRoopa Prabhu 44793b1137feSDavid Ahern /* for add and replace send one notification with all nexthops. 44803b1137feSDavid Ahern * Skip the notification in fib6_add_rt2node and send one with 44813b1137feSDavid Ahern * the full route when done 44823b1137feSDavid Ahern */ 44833b1137feSDavid Ahern info->skip_notify = 1; 44843b1137feSDavid Ahern 44856b9ea5a6SRoopa Prabhu err_nh = NULL; 44866b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 44878d1c802bSDavid Ahern err = __ip6_ins_rt(nh->fib6_info, info, extack); 44888d1c802bSDavid Ahern fib6_info_release(nh->fib6_info); 44893b1137feSDavid Ahern 4490f7225172SDavid Ahern if (!err) { 4491f7225172SDavid Ahern /* save reference to last route successfully inserted */ 4492f7225172SDavid Ahern rt_last = nh->fib6_info; 4493f7225172SDavid Ahern 44946b9ea5a6SRoopa Prabhu /* save reference to first route for notification */ 4495f7225172SDavid Ahern if (!rt_notif) 44968d1c802bSDavid Ahern rt_notif = nh->fib6_info; 4497f7225172SDavid Ahern } 44986b9ea5a6SRoopa Prabhu 44998d1c802bSDavid Ahern /* nh->fib6_info is used or freed at this point, reset to NULL*/ 45008d1c802bSDavid Ahern nh->fib6_info = NULL; 45016b9ea5a6SRoopa Prabhu if (err) { 45026b9ea5a6SRoopa Prabhu if (replace && nhn) 4503a5a82d84SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 4504a5a82d84SJakub Kicinski "multipath route replace failed (check consistency of installed routes)"); 45056b9ea5a6SRoopa Prabhu err_nh = nh; 45066b9ea5a6SRoopa Prabhu goto add_errout; 45076b9ea5a6SRoopa Prabhu } 45086b9ea5a6SRoopa Prabhu 45091a72418bSNicolas Dichtel /* Because each route is added like a single route we remove 451027596472SMichal Kubeček * these flags after the first nexthop: if there is a collision, 451127596472SMichal Kubeček * we have already failed to add the first nexthop: 451227596472SMichal Kubeček * fib6_add_rt2node() has rejected it; when replacing, old 451327596472SMichal Kubeček * nexthops have been replaced by first new, the rest should 451427596472SMichal Kubeček * be added to it. 45151a72418bSNicolas Dichtel */ 451627596472SMichal Kubeček cfg->fc_nlinfo.nlh->nlmsg_flags &= ~(NLM_F_EXCL | 451727596472SMichal Kubeček NLM_F_REPLACE); 45186b9ea5a6SRoopa Prabhu nhn++; 45196b9ea5a6SRoopa Prabhu } 45206b9ea5a6SRoopa Prabhu 45213b1137feSDavid Ahern /* success ... tell user about new route */ 45223b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 45236b9ea5a6SRoopa Prabhu goto cleanup; 45246b9ea5a6SRoopa Prabhu 45256b9ea5a6SRoopa Prabhu add_errout: 45263b1137feSDavid Ahern /* send notification for routes that were added so that 45273b1137feSDavid Ahern * the delete notifications sent by ip6_route_del are 45283b1137feSDavid Ahern * coherent 45293b1137feSDavid Ahern */ 45303b1137feSDavid Ahern if (rt_notif) 45313b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 45323b1137feSDavid Ahern 45336b9ea5a6SRoopa Prabhu /* Delete routes that were already added */ 45346b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 45356b9ea5a6SRoopa Prabhu if (err_nh == nh) 45366b9ea5a6SRoopa Prabhu break; 4537333c4301SDavid Ahern ip6_route_del(&nh->r_cfg, extack); 45386b9ea5a6SRoopa Prabhu } 45396b9ea5a6SRoopa Prabhu 45406b9ea5a6SRoopa Prabhu cleanup: 45416b9ea5a6SRoopa Prabhu list_for_each_entry_safe(nh, nh_safe, &rt6_nh_list, next) { 45428d1c802bSDavid Ahern if (nh->fib6_info) 45438d1c802bSDavid Ahern fib6_info_release(nh->fib6_info); 45446b9ea5a6SRoopa Prabhu list_del(&nh->next); 45456b9ea5a6SRoopa Prabhu kfree(nh); 45466b9ea5a6SRoopa Prabhu } 45476b9ea5a6SRoopa Prabhu 45486b9ea5a6SRoopa Prabhu return err; 45496b9ea5a6SRoopa Prabhu } 45506b9ea5a6SRoopa Prabhu 4551333c4301SDavid Ahern static int ip6_route_multipath_del(struct fib6_config *cfg, 4552333c4301SDavid Ahern struct netlink_ext_ack *extack) 45536b9ea5a6SRoopa Prabhu { 45546b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 45556b9ea5a6SRoopa Prabhu struct rtnexthop *rtnh; 45566b9ea5a6SRoopa Prabhu int remaining; 45576b9ea5a6SRoopa Prabhu int attrlen; 45586b9ea5a6SRoopa Prabhu int err = 1, last_err = 0; 45596b9ea5a6SRoopa Prabhu 45606b9ea5a6SRoopa Prabhu remaining = cfg->fc_mp_len; 45616b9ea5a6SRoopa Prabhu rtnh = (struct rtnexthop *)cfg->fc_mp; 45626b9ea5a6SRoopa Prabhu 45636b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry */ 45646b9ea5a6SRoopa Prabhu while (rtnh_ok(rtnh, remaining)) { 45656b9ea5a6SRoopa Prabhu memcpy(&r_cfg, cfg, sizeof(*cfg)); 45666b9ea5a6SRoopa Prabhu if (rtnh->rtnh_ifindex) 45676b9ea5a6SRoopa Prabhu r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 45686b9ea5a6SRoopa Prabhu 45696b9ea5a6SRoopa Prabhu attrlen = rtnh_attrlen(rtnh); 45706b9ea5a6SRoopa Prabhu if (attrlen > 0) { 45716b9ea5a6SRoopa Prabhu struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 45726b9ea5a6SRoopa Prabhu 45736b9ea5a6SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_GATEWAY); 45746b9ea5a6SRoopa Prabhu if (nla) { 45756b9ea5a6SRoopa Prabhu nla_memcpy(&r_cfg.fc_gateway, nla, 16); 45766b9ea5a6SRoopa Prabhu r_cfg.fc_flags |= RTF_GATEWAY; 45776b9ea5a6SRoopa Prabhu } 45786b9ea5a6SRoopa Prabhu } 4579333c4301SDavid Ahern err = ip6_route_del(&r_cfg, extack); 45806b9ea5a6SRoopa Prabhu if (err) 45816b9ea5a6SRoopa Prabhu last_err = err; 45826b9ea5a6SRoopa Prabhu 458351ebd318SNicolas Dichtel rtnh = rtnh_next(rtnh, &remaining); 458451ebd318SNicolas Dichtel } 458551ebd318SNicolas Dichtel 458651ebd318SNicolas Dichtel return last_err; 458751ebd318SNicolas Dichtel } 458851ebd318SNicolas Dichtel 4589c21ef3e3SDavid Ahern static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4590c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 45911da177e4SLinus Torvalds { 459286872cb5SThomas Graf struct fib6_config cfg; 459386872cb5SThomas Graf int err; 45941da177e4SLinus Torvalds 4595333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 459686872cb5SThomas Graf if (err < 0) 459786872cb5SThomas Graf return err; 459886872cb5SThomas Graf 459951ebd318SNicolas Dichtel if (cfg.fc_mp) 4600333c4301SDavid Ahern return ip6_route_multipath_del(&cfg, extack); 46010ae81335SDavid Ahern else { 46020ae81335SDavid Ahern cfg.fc_delete_all_nh = 1; 4603333c4301SDavid Ahern return ip6_route_del(&cfg, extack); 46041da177e4SLinus Torvalds } 46050ae81335SDavid Ahern } 46061da177e4SLinus Torvalds 4607c21ef3e3SDavid Ahern static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4608c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 46091da177e4SLinus Torvalds { 461086872cb5SThomas Graf struct fib6_config cfg; 461186872cb5SThomas Graf int err; 46121da177e4SLinus Torvalds 4613333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 461486872cb5SThomas Graf if (err < 0) 461586872cb5SThomas Graf return err; 461686872cb5SThomas Graf 461767f69513SDavid Ahern if (cfg.fc_metric == 0) 461867f69513SDavid Ahern cfg.fc_metric = IP6_RT_PRIO_USER; 461967f69513SDavid Ahern 462051ebd318SNicolas Dichtel if (cfg.fc_mp) 4621333c4301SDavid Ahern return ip6_route_multipath_add(&cfg, extack); 462251ebd318SNicolas Dichtel else 4623acb54e3cSDavid Ahern return ip6_route_add(&cfg, GFP_KERNEL, extack); 46241da177e4SLinus Torvalds } 46251da177e4SLinus Torvalds 46268d1c802bSDavid Ahern static size_t rt6_nlmsg_size(struct fib6_info *rt) 4627339bf98fSThomas Graf { 4628beb1afacSDavid Ahern int nexthop_len = 0; 4629beb1afacSDavid Ahern 463093c2fb25SDavid Ahern if (rt->fib6_nsiblings) { 4631beb1afacSDavid Ahern nexthop_len = nla_total_size(0) /* RTA_MULTIPATH */ 4632beb1afacSDavid Ahern + NLA_ALIGN(sizeof(struct rtnexthop)) 4633beb1afacSDavid Ahern + nla_total_size(16) /* RTA_GATEWAY */ 4634ad1601aeSDavid Ahern + lwtunnel_get_encap_size(rt->fib6_nh.fib_nh_lws); 4635beb1afacSDavid Ahern 463693c2fb25SDavid Ahern nexthop_len *= rt->fib6_nsiblings; 4637beb1afacSDavid Ahern } 4638beb1afacSDavid Ahern 4639339bf98fSThomas Graf return NLMSG_ALIGN(sizeof(struct rtmsg)) 4640339bf98fSThomas Graf + nla_total_size(16) /* RTA_SRC */ 4641339bf98fSThomas Graf + nla_total_size(16) /* RTA_DST */ 4642339bf98fSThomas Graf + nla_total_size(16) /* RTA_GATEWAY */ 4643339bf98fSThomas Graf + nla_total_size(16) /* RTA_PREFSRC */ 4644339bf98fSThomas Graf + nla_total_size(4) /* RTA_TABLE */ 4645339bf98fSThomas Graf + nla_total_size(4) /* RTA_IIF */ 4646339bf98fSThomas Graf + nla_total_size(4) /* RTA_OIF */ 4647339bf98fSThomas Graf + nla_total_size(4) /* RTA_PRIORITY */ 46486a2b9ce0SNoriaki TAKAMIYA + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */ 4649ea697639SDaniel Borkmann + nla_total_size(sizeof(struct rta_cacheinfo)) 4650c78ba6d6SLubomir Rintel + nla_total_size(TCP_CA_NAME_MAX) /* RTAX_CC_ALGO */ 465119e42e45SRoopa Prabhu + nla_total_size(1) /* RTA_PREF */ 4652ad1601aeSDavid Ahern + lwtunnel_get_encap_size(rt->fib6_nh.fib_nh_lws) 4653beb1afacSDavid Ahern + nexthop_len; 4654beb1afacSDavid Ahern } 4655beb1afacSDavid Ahern 4656d4ead6b3SDavid Ahern static int rt6_fill_node(struct net *net, struct sk_buff *skb, 46578d1c802bSDavid Ahern struct fib6_info *rt, struct dst_entry *dst, 4658d4ead6b3SDavid Ahern struct in6_addr *dest, struct in6_addr *src, 465915e47304SEric W. Biederman int iif, int type, u32 portid, u32 seq, 4660f8cfe2ceSDavid Ahern unsigned int flags) 46611da177e4SLinus Torvalds { 466222d0bd82SXin Long struct rt6_info *rt6 = (struct rt6_info *)dst; 466322d0bd82SXin Long struct rt6key *rt6_dst, *rt6_src; 466422d0bd82SXin Long u32 *pmetrics, table, rt6_flags; 46651da177e4SLinus Torvalds struct nlmsghdr *nlh; 466622d0bd82SXin Long struct rtmsg *rtm; 4667d4ead6b3SDavid Ahern long expires = 0; 46681da177e4SLinus Torvalds 466915e47304SEric W. Biederman nlh = nlmsg_put(skb, portid, seq, type, sizeof(*rtm), flags); 467038308473SDavid S. Miller if (!nlh) 467126932566SPatrick McHardy return -EMSGSIZE; 46722d7202bfSThomas Graf 467322d0bd82SXin Long if (rt6) { 467422d0bd82SXin Long rt6_dst = &rt6->rt6i_dst; 467522d0bd82SXin Long rt6_src = &rt6->rt6i_src; 467622d0bd82SXin Long rt6_flags = rt6->rt6i_flags; 467722d0bd82SXin Long } else { 467822d0bd82SXin Long rt6_dst = &rt->fib6_dst; 467922d0bd82SXin Long rt6_src = &rt->fib6_src; 468022d0bd82SXin Long rt6_flags = rt->fib6_flags; 468122d0bd82SXin Long } 468222d0bd82SXin Long 46832d7202bfSThomas Graf rtm = nlmsg_data(nlh); 46841da177e4SLinus Torvalds rtm->rtm_family = AF_INET6; 468522d0bd82SXin Long rtm->rtm_dst_len = rt6_dst->plen; 468622d0bd82SXin Long rtm->rtm_src_len = rt6_src->plen; 46871da177e4SLinus Torvalds rtm->rtm_tos = 0; 468893c2fb25SDavid Ahern if (rt->fib6_table) 468993c2fb25SDavid Ahern table = rt->fib6_table->tb6_id; 4690c71099acSThomas Graf else 46919e762a4aSPatrick McHardy table = RT6_TABLE_UNSPEC; 469297f0082aSKalash Nainwal rtm->rtm_table = table < 256 ? table : RT_TABLE_COMPAT; 4693c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_TABLE, table)) 4694c78679e8SDavid S. Miller goto nla_put_failure; 4695e8478e80SDavid Ahern 4696e8478e80SDavid Ahern rtm->rtm_type = rt->fib6_type; 46971da177e4SLinus Torvalds rtm->rtm_flags = 0; 46981da177e4SLinus Torvalds rtm->rtm_scope = RT_SCOPE_UNIVERSE; 469993c2fb25SDavid Ahern rtm->rtm_protocol = rt->fib6_protocol; 47001da177e4SLinus Torvalds 470122d0bd82SXin Long if (rt6_flags & RTF_CACHE) 47021da177e4SLinus Torvalds rtm->rtm_flags |= RTM_F_CLONED; 47031da177e4SLinus Torvalds 4704d4ead6b3SDavid Ahern if (dest) { 4705d4ead6b3SDavid Ahern if (nla_put_in6_addr(skb, RTA_DST, dest)) 4706c78679e8SDavid S. Miller goto nla_put_failure; 47071da177e4SLinus Torvalds rtm->rtm_dst_len = 128; 47081da177e4SLinus Torvalds } else if (rtm->rtm_dst_len) 470922d0bd82SXin Long if (nla_put_in6_addr(skb, RTA_DST, &rt6_dst->addr)) 4710c78679e8SDavid S. Miller goto nla_put_failure; 47111da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 47121da177e4SLinus Torvalds if (src) { 4713930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_SRC, src)) 4714c78679e8SDavid S. Miller goto nla_put_failure; 47151da177e4SLinus Torvalds rtm->rtm_src_len = 128; 4716c78679e8SDavid S. Miller } else if (rtm->rtm_src_len && 471722d0bd82SXin Long nla_put_in6_addr(skb, RTA_SRC, &rt6_src->addr)) 4718c78679e8SDavid S. Miller goto nla_put_failure; 47191da177e4SLinus Torvalds #endif 47207bc570c8SYOSHIFUJI Hideaki if (iif) { 47217bc570c8SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_MROUTE 472222d0bd82SXin Long if (ipv6_addr_is_multicast(&rt6_dst->addr)) { 4723fd61c6baSDavid Ahern int err = ip6mr_get_route(net, skb, rtm, portid); 47242cf75070SNikolay Aleksandrov 47257bc570c8SYOSHIFUJI Hideaki if (err == 0) 47267bc570c8SYOSHIFUJI Hideaki return 0; 4727fd61c6baSDavid Ahern if (err < 0) 47287bc570c8SYOSHIFUJI Hideaki goto nla_put_failure; 47297bc570c8SYOSHIFUJI Hideaki } else 47307bc570c8SYOSHIFUJI Hideaki #endif 4731c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_IIF, iif)) 4732c78679e8SDavid S. Miller goto nla_put_failure; 4733d4ead6b3SDavid Ahern } else if (dest) { 47341da177e4SLinus Torvalds struct in6_addr saddr_buf; 4735d4ead6b3SDavid Ahern if (ip6_route_get_saddr(net, rt, dest, 0, &saddr_buf) == 0 && 4736930345eaSJiri Benc nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4737c78679e8SDavid S. Miller goto nla_put_failure; 4738c3968a85SDaniel Walter } 4739c3968a85SDaniel Walter 474093c2fb25SDavid Ahern if (rt->fib6_prefsrc.plen) { 4741c3968a85SDaniel Walter struct in6_addr saddr_buf; 474293c2fb25SDavid Ahern saddr_buf = rt->fib6_prefsrc.addr; 4743930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4744c78679e8SDavid S. Miller goto nla_put_failure; 47451da177e4SLinus Torvalds } 47462d7202bfSThomas Graf 4747d4ead6b3SDavid Ahern pmetrics = dst ? dst_metrics_ptr(dst) : rt->fib6_metrics->metrics; 4748d4ead6b3SDavid Ahern if (rtnetlink_put_metrics(skb, pmetrics) < 0) 47492d7202bfSThomas Graf goto nla_put_failure; 47502d7202bfSThomas Graf 475193c2fb25SDavid Ahern if (nla_put_u32(skb, RTA_PRIORITY, rt->fib6_metric)) 4752beb1afacSDavid Ahern goto nla_put_failure; 4753beb1afacSDavid Ahern 4754beb1afacSDavid Ahern /* For multipath routes, walk the siblings list and add 4755beb1afacSDavid Ahern * each as a nexthop within RTA_MULTIPATH. 4756beb1afacSDavid Ahern */ 475722d0bd82SXin Long if (rt6) { 475822d0bd82SXin Long if (rt6_flags & RTF_GATEWAY && 475922d0bd82SXin Long nla_put_in6_addr(skb, RTA_GATEWAY, &rt6->rt6i_gateway)) 476022d0bd82SXin Long goto nla_put_failure; 476122d0bd82SXin Long 476222d0bd82SXin Long if (dst->dev && nla_put_u32(skb, RTA_OIF, dst->dev->ifindex)) 476322d0bd82SXin Long goto nla_put_failure; 476422d0bd82SXin Long } else if (rt->fib6_nsiblings) { 47658d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 4766beb1afacSDavid Ahern struct nlattr *mp; 4767beb1afacSDavid Ahern 4768beb1afacSDavid Ahern mp = nla_nest_start(skb, RTA_MULTIPATH); 4769beb1afacSDavid Ahern if (!mp) 4770beb1afacSDavid Ahern goto nla_put_failure; 4771beb1afacSDavid Ahern 4772c0a72077SDavid Ahern if (fib_add_nexthop(skb, &rt->fib6_nh.nh_common, 4773c0a72077SDavid Ahern rt->fib6_nh.fib_nh_weight) < 0) 4774beb1afacSDavid Ahern goto nla_put_failure; 4775beb1afacSDavid Ahern 4776beb1afacSDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 477793c2fb25SDavid Ahern &rt->fib6_siblings, fib6_siblings) { 4778c0a72077SDavid Ahern if (fib_add_nexthop(skb, &sibling->fib6_nh.nh_common, 4779c0a72077SDavid Ahern sibling->fib6_nh.fib_nh_weight) < 0) 478094f826b8SEric Dumazet goto nla_put_failure; 478194f826b8SEric Dumazet } 47822d7202bfSThomas Graf 4783beb1afacSDavid Ahern nla_nest_end(skb, mp); 4784beb1afacSDavid Ahern } else { 4785c0a72077SDavid Ahern if (fib_nexthop_info(skb, &rt->fib6_nh.nh_common, 4786c0a72077SDavid Ahern &rtm->rtm_flags, false) < 0) 4787c78679e8SDavid S. Miller goto nla_put_failure; 4788beb1afacSDavid Ahern } 47898253947eSLi Wei 479022d0bd82SXin Long if (rt6_flags & RTF_EXPIRES) { 479114895687SDavid Ahern expires = dst ? dst->expires : rt->expires; 479214895687SDavid Ahern expires -= jiffies; 479314895687SDavid Ahern } 479469cdf8f9SYOSHIFUJI Hideaki 4795d4ead6b3SDavid Ahern if (rtnl_put_cacheinfo(skb, dst, 0, expires, dst ? dst->error : 0) < 0) 4796e3703b3dSThomas Graf goto nla_put_failure; 47971da177e4SLinus Torvalds 479822d0bd82SXin Long if (nla_put_u8(skb, RTA_PREF, IPV6_EXTRACT_PREF(rt6_flags))) 4799c78ba6d6SLubomir Rintel goto nla_put_failure; 4800c78ba6d6SLubomir Rintel 480119e42e45SRoopa Prabhu 4802053c095aSJohannes Berg nlmsg_end(skb, nlh); 4803053c095aSJohannes Berg return 0; 48042d7202bfSThomas Graf 48052d7202bfSThomas Graf nla_put_failure: 480626932566SPatrick McHardy nlmsg_cancel(skb, nlh); 480726932566SPatrick McHardy return -EMSGSIZE; 48081da177e4SLinus Torvalds } 48091da177e4SLinus Torvalds 481013e38901SDavid Ahern static bool fib6_info_uses_dev(const struct fib6_info *f6i, 481113e38901SDavid Ahern const struct net_device *dev) 481213e38901SDavid Ahern { 4813ad1601aeSDavid Ahern if (f6i->fib6_nh.fib_nh_dev == dev) 481413e38901SDavid Ahern return true; 481513e38901SDavid Ahern 481613e38901SDavid Ahern if (f6i->fib6_nsiblings) { 481713e38901SDavid Ahern struct fib6_info *sibling, *next_sibling; 481813e38901SDavid Ahern 481913e38901SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 482013e38901SDavid Ahern &f6i->fib6_siblings, fib6_siblings) { 4821ad1601aeSDavid Ahern if (sibling->fib6_nh.fib_nh_dev == dev) 482213e38901SDavid Ahern return true; 482313e38901SDavid Ahern } 482413e38901SDavid Ahern } 482513e38901SDavid Ahern 482613e38901SDavid Ahern return false; 482713e38901SDavid Ahern } 482813e38901SDavid Ahern 48298d1c802bSDavid Ahern int rt6_dump_route(struct fib6_info *rt, void *p_arg) 48301da177e4SLinus Torvalds { 48311da177e4SLinus Torvalds struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg; 483213e38901SDavid Ahern struct fib_dump_filter *filter = &arg->filter; 483313e38901SDavid Ahern unsigned int flags = NLM_F_MULTI; 48341f17e2f2SDavid Ahern struct net *net = arg->net; 48351f17e2f2SDavid Ahern 4836421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 48371f17e2f2SDavid Ahern return 0; 48381da177e4SLinus Torvalds 483913e38901SDavid Ahern if ((filter->flags & RTM_F_PREFIX) && 484093c2fb25SDavid Ahern !(rt->fib6_flags & RTF_PREFIX_RT)) { 4841f8cfe2ceSDavid Ahern /* success since this is not a prefix route */ 4842f8cfe2ceSDavid Ahern return 1; 4843f8cfe2ceSDavid Ahern } 484413e38901SDavid Ahern if (filter->filter_set) { 484513e38901SDavid Ahern if ((filter->rt_type && rt->fib6_type != filter->rt_type) || 484613e38901SDavid Ahern (filter->dev && !fib6_info_uses_dev(rt, filter->dev)) || 484713e38901SDavid Ahern (filter->protocol && rt->fib6_protocol != filter->protocol)) { 484813e38901SDavid Ahern return 1; 484913e38901SDavid Ahern } 485013e38901SDavid Ahern flags |= NLM_F_DUMP_FILTERED; 4851f8cfe2ceSDavid Ahern } 48521da177e4SLinus Torvalds 4853d4ead6b3SDavid Ahern return rt6_fill_node(net, arg->skb, rt, NULL, NULL, NULL, 0, 4854d4ead6b3SDavid Ahern RTM_NEWROUTE, NETLINK_CB(arg->cb->skb).portid, 485513e38901SDavid Ahern arg->cb->nlh->nlmsg_seq, flags); 48561da177e4SLinus Torvalds } 48571da177e4SLinus Torvalds 48580eff0a27SJakub Kicinski static int inet6_rtm_valid_getroute_req(struct sk_buff *skb, 48590eff0a27SJakub Kicinski const struct nlmsghdr *nlh, 48600eff0a27SJakub Kicinski struct nlattr **tb, 48610eff0a27SJakub Kicinski struct netlink_ext_ack *extack) 48620eff0a27SJakub Kicinski { 48630eff0a27SJakub Kicinski struct rtmsg *rtm; 48640eff0a27SJakub Kicinski int i, err; 48650eff0a27SJakub Kicinski 48660eff0a27SJakub Kicinski if (nlh->nlmsg_len < nlmsg_msg_size(sizeof(*rtm))) { 48670eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 48680eff0a27SJakub Kicinski "Invalid header for get route request"); 48690eff0a27SJakub Kicinski return -EINVAL; 48700eff0a27SJakub Kicinski } 48710eff0a27SJakub Kicinski 48720eff0a27SJakub Kicinski if (!netlink_strict_get_check(skb)) 48730eff0a27SJakub Kicinski return nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, 48740eff0a27SJakub Kicinski rtm_ipv6_policy, extack); 48750eff0a27SJakub Kicinski 48760eff0a27SJakub Kicinski rtm = nlmsg_data(nlh); 48770eff0a27SJakub Kicinski if ((rtm->rtm_src_len && rtm->rtm_src_len != 128) || 48780eff0a27SJakub Kicinski (rtm->rtm_dst_len && rtm->rtm_dst_len != 128) || 48790eff0a27SJakub Kicinski rtm->rtm_table || rtm->rtm_protocol || rtm->rtm_scope || 48800eff0a27SJakub Kicinski rtm->rtm_type) { 48810eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "Invalid values in header for get route request"); 48820eff0a27SJakub Kicinski return -EINVAL; 48830eff0a27SJakub Kicinski } 48840eff0a27SJakub Kicinski if (rtm->rtm_flags & ~RTM_F_FIB_MATCH) { 48850eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 48860eff0a27SJakub Kicinski "Invalid flags for get route request"); 48870eff0a27SJakub Kicinski return -EINVAL; 48880eff0a27SJakub Kicinski } 48890eff0a27SJakub Kicinski 48900eff0a27SJakub Kicinski err = nlmsg_parse_strict(nlh, sizeof(*rtm), tb, RTA_MAX, 48910eff0a27SJakub Kicinski rtm_ipv6_policy, extack); 48920eff0a27SJakub Kicinski if (err) 48930eff0a27SJakub Kicinski return err; 48940eff0a27SJakub Kicinski 48950eff0a27SJakub Kicinski if ((tb[RTA_SRC] && !rtm->rtm_src_len) || 48960eff0a27SJakub Kicinski (tb[RTA_DST] && !rtm->rtm_dst_len)) { 48970eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "rtm_src_len and rtm_dst_len must be 128 for IPv6"); 48980eff0a27SJakub Kicinski return -EINVAL; 48990eff0a27SJakub Kicinski } 49000eff0a27SJakub Kicinski 49010eff0a27SJakub Kicinski for (i = 0; i <= RTA_MAX; i++) { 49020eff0a27SJakub Kicinski if (!tb[i]) 49030eff0a27SJakub Kicinski continue; 49040eff0a27SJakub Kicinski 49050eff0a27SJakub Kicinski switch (i) { 49060eff0a27SJakub Kicinski case RTA_SRC: 49070eff0a27SJakub Kicinski case RTA_DST: 49080eff0a27SJakub Kicinski case RTA_IIF: 49090eff0a27SJakub Kicinski case RTA_OIF: 49100eff0a27SJakub Kicinski case RTA_MARK: 49110eff0a27SJakub Kicinski case RTA_UID: 49120eff0a27SJakub Kicinski case RTA_SPORT: 49130eff0a27SJakub Kicinski case RTA_DPORT: 49140eff0a27SJakub Kicinski case RTA_IP_PROTO: 49150eff0a27SJakub Kicinski break; 49160eff0a27SJakub Kicinski default: 49170eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "Unsupported attribute in get route request"); 49180eff0a27SJakub Kicinski return -EINVAL; 49190eff0a27SJakub Kicinski } 49200eff0a27SJakub Kicinski } 49210eff0a27SJakub Kicinski 49220eff0a27SJakub Kicinski return 0; 49230eff0a27SJakub Kicinski } 49240eff0a27SJakub Kicinski 4925c21ef3e3SDavid Ahern static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr *nlh, 4926c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 49271da177e4SLinus Torvalds { 49283b1e0a65SYOSHIFUJI Hideaki struct net *net = sock_net(in_skb->sk); 4929ab364a6fSThomas Graf struct nlattr *tb[RTA_MAX+1]; 493018c3a61cSRoopa Prabhu int err, iif = 0, oif = 0; 4931a68886a6SDavid Ahern struct fib6_info *from; 493218c3a61cSRoopa Prabhu struct dst_entry *dst; 49331da177e4SLinus Torvalds struct rt6_info *rt; 4934ab364a6fSThomas Graf struct sk_buff *skb; 4935ab364a6fSThomas Graf struct rtmsg *rtm; 4936744486d4SMaciej Żenczykowski struct flowi6 fl6 = {}; 493718c3a61cSRoopa Prabhu bool fibmatch; 4938ab364a6fSThomas Graf 49390eff0a27SJakub Kicinski err = inet6_rtm_valid_getroute_req(in_skb, nlh, tb, extack); 4940ab364a6fSThomas Graf if (err < 0) 4941ab364a6fSThomas Graf goto errout; 4942ab364a6fSThomas Graf 4943ab364a6fSThomas Graf err = -EINVAL; 494438b7097bSHannes Frederic Sowa rtm = nlmsg_data(nlh); 494538b7097bSHannes Frederic Sowa fl6.flowlabel = ip6_make_flowinfo(rtm->rtm_tos, 0); 494618c3a61cSRoopa Prabhu fibmatch = !!(rtm->rtm_flags & RTM_F_FIB_MATCH); 4947ab364a6fSThomas Graf 4948ab364a6fSThomas Graf if (tb[RTA_SRC]) { 4949ab364a6fSThomas Graf if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr)) 4950ab364a6fSThomas Graf goto errout; 4951ab364a6fSThomas Graf 49524e3fd7a0SAlexey Dobriyan fl6.saddr = *(struct in6_addr *)nla_data(tb[RTA_SRC]); 4953ab364a6fSThomas Graf } 4954ab364a6fSThomas Graf 4955ab364a6fSThomas Graf if (tb[RTA_DST]) { 4956ab364a6fSThomas Graf if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr)) 4957ab364a6fSThomas Graf goto errout; 4958ab364a6fSThomas Graf 49594e3fd7a0SAlexey Dobriyan fl6.daddr = *(struct in6_addr *)nla_data(tb[RTA_DST]); 4960ab364a6fSThomas Graf } 4961ab364a6fSThomas Graf 4962ab364a6fSThomas Graf if (tb[RTA_IIF]) 4963ab364a6fSThomas Graf iif = nla_get_u32(tb[RTA_IIF]); 4964ab364a6fSThomas Graf 4965ab364a6fSThomas Graf if (tb[RTA_OIF]) 496672331bc0SShmulik Ladkani oif = nla_get_u32(tb[RTA_OIF]); 4967ab364a6fSThomas Graf 49682e47b291SLorenzo Colitti if (tb[RTA_MARK]) 49692e47b291SLorenzo Colitti fl6.flowi6_mark = nla_get_u32(tb[RTA_MARK]); 49702e47b291SLorenzo Colitti 4971622ec2c9SLorenzo Colitti if (tb[RTA_UID]) 4972622ec2c9SLorenzo Colitti fl6.flowi6_uid = make_kuid(current_user_ns(), 4973622ec2c9SLorenzo Colitti nla_get_u32(tb[RTA_UID])); 4974622ec2c9SLorenzo Colitti else 4975622ec2c9SLorenzo Colitti fl6.flowi6_uid = iif ? INVALID_UID : current_uid(); 4976622ec2c9SLorenzo Colitti 4977eacb9384SRoopa Prabhu if (tb[RTA_SPORT]) 4978eacb9384SRoopa Prabhu fl6.fl6_sport = nla_get_be16(tb[RTA_SPORT]); 4979eacb9384SRoopa Prabhu 4980eacb9384SRoopa Prabhu if (tb[RTA_DPORT]) 4981eacb9384SRoopa Prabhu fl6.fl6_dport = nla_get_be16(tb[RTA_DPORT]); 4982eacb9384SRoopa Prabhu 4983eacb9384SRoopa Prabhu if (tb[RTA_IP_PROTO]) { 4984eacb9384SRoopa Prabhu err = rtm_getroute_parse_ip_proto(tb[RTA_IP_PROTO], 49855e1a99eaSHangbin Liu &fl6.flowi6_proto, AF_INET6, 49865e1a99eaSHangbin Liu extack); 4987eacb9384SRoopa Prabhu if (err) 4988eacb9384SRoopa Prabhu goto errout; 4989eacb9384SRoopa Prabhu } 4990eacb9384SRoopa Prabhu 4991ab364a6fSThomas Graf if (iif) { 4992ab364a6fSThomas Graf struct net_device *dev; 499372331bc0SShmulik Ladkani int flags = 0; 499472331bc0SShmulik Ladkani 4995121622dbSFlorian Westphal rcu_read_lock(); 4996121622dbSFlorian Westphal 4997121622dbSFlorian Westphal dev = dev_get_by_index_rcu(net, iif); 4998ab364a6fSThomas Graf if (!dev) { 4999121622dbSFlorian Westphal rcu_read_unlock(); 5000ab364a6fSThomas Graf err = -ENODEV; 5001ab364a6fSThomas Graf goto errout; 5002ab364a6fSThomas Graf } 500372331bc0SShmulik Ladkani 500472331bc0SShmulik Ladkani fl6.flowi6_iif = iif; 500572331bc0SShmulik Ladkani 500672331bc0SShmulik Ladkani if (!ipv6_addr_any(&fl6.saddr)) 500772331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_HAS_SADDR; 500872331bc0SShmulik Ladkani 5009b75cc8f9SDavid Ahern dst = ip6_route_input_lookup(net, dev, &fl6, NULL, flags); 5010121622dbSFlorian Westphal 5011121622dbSFlorian Westphal rcu_read_unlock(); 501272331bc0SShmulik Ladkani } else { 501372331bc0SShmulik Ladkani fl6.flowi6_oif = oif; 501472331bc0SShmulik Ladkani 501518c3a61cSRoopa Prabhu dst = ip6_route_output(net, NULL, &fl6); 501618c3a61cSRoopa Prabhu } 501718c3a61cSRoopa Prabhu 501818c3a61cSRoopa Prabhu 501918c3a61cSRoopa Prabhu rt = container_of(dst, struct rt6_info, dst); 502018c3a61cSRoopa Prabhu if (rt->dst.error) { 502118c3a61cSRoopa Prabhu err = rt->dst.error; 502218c3a61cSRoopa Prabhu ip6_rt_put(rt); 502318c3a61cSRoopa Prabhu goto errout; 5024ab364a6fSThomas Graf } 50251da177e4SLinus Torvalds 50269d6acb3bSWANG Cong if (rt == net->ipv6.ip6_null_entry) { 50279d6acb3bSWANG Cong err = rt->dst.error; 50289d6acb3bSWANG Cong ip6_rt_put(rt); 50299d6acb3bSWANG Cong goto errout; 50309d6acb3bSWANG Cong } 50319d6acb3bSWANG Cong 50321da177e4SLinus Torvalds skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL); 503338308473SDavid S. Miller if (!skb) { 503494e187c0SAmerigo Wang ip6_rt_put(rt); 5035ab364a6fSThomas Graf err = -ENOBUFS; 5036ab364a6fSThomas Graf goto errout; 5037ab364a6fSThomas Graf } 50381da177e4SLinus Torvalds 5039d8d1f30bSChangli Gao skb_dst_set(skb, &rt->dst); 5040a68886a6SDavid Ahern 5041a68886a6SDavid Ahern rcu_read_lock(); 5042a68886a6SDavid Ahern from = rcu_dereference(rt->from); 5043a68886a6SDavid Ahern 504418c3a61cSRoopa Prabhu if (fibmatch) 5045a68886a6SDavid Ahern err = rt6_fill_node(net, skb, from, NULL, NULL, NULL, iif, 504618c3a61cSRoopa Prabhu RTM_NEWROUTE, NETLINK_CB(in_skb).portid, 504718c3a61cSRoopa Prabhu nlh->nlmsg_seq, 0); 504818c3a61cSRoopa Prabhu else 5049a68886a6SDavid Ahern err = rt6_fill_node(net, skb, from, dst, &fl6.daddr, 5050a68886a6SDavid Ahern &fl6.saddr, iif, RTM_NEWROUTE, 5051d4ead6b3SDavid Ahern NETLINK_CB(in_skb).portid, nlh->nlmsg_seq, 5052d4ead6b3SDavid Ahern 0); 5053a68886a6SDavid Ahern rcu_read_unlock(); 5054a68886a6SDavid Ahern 50551da177e4SLinus Torvalds if (err < 0) { 5056ab364a6fSThomas Graf kfree_skb(skb); 5057ab364a6fSThomas Graf goto errout; 50581da177e4SLinus Torvalds } 50591da177e4SLinus Torvalds 506015e47304SEric W. Biederman err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).portid); 5061ab364a6fSThomas Graf errout: 50621da177e4SLinus Torvalds return err; 50631da177e4SLinus Torvalds } 50641da177e4SLinus Torvalds 50658d1c802bSDavid Ahern void inet6_rt_notify(int event, struct fib6_info *rt, struct nl_info *info, 506637a1d361SRoopa Prabhu unsigned int nlm_flags) 50671da177e4SLinus Torvalds { 50681da177e4SLinus Torvalds struct sk_buff *skb; 50695578689aSDaniel Lezcano struct net *net = info->nl_net; 5070528c4cebSDenis V. Lunev u32 seq; 5071528c4cebSDenis V. Lunev int err; 50720d51aa80SJamal Hadi Salim 5073528c4cebSDenis V. Lunev err = -ENOBUFS; 507438308473SDavid S. Miller seq = info->nlh ? info->nlh->nlmsg_seq : 0; 507586872cb5SThomas Graf 507619e42e45SRoopa Prabhu skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 507738308473SDavid S. Miller if (!skb) 507821713ebcSThomas Graf goto errout; 50791da177e4SLinus Torvalds 5080d4ead6b3SDavid Ahern err = rt6_fill_node(net, skb, rt, NULL, NULL, NULL, 0, 5081f8cfe2ceSDavid Ahern event, info->portid, seq, nlm_flags); 508226932566SPatrick McHardy if (err < 0) { 508326932566SPatrick McHardy /* -EMSGSIZE implies BUG in rt6_nlmsg_size() */ 508426932566SPatrick McHardy WARN_ON(err == -EMSGSIZE); 508526932566SPatrick McHardy kfree_skb(skb); 508626932566SPatrick McHardy goto errout; 508726932566SPatrick McHardy } 508815e47304SEric W. Biederman rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 50895578689aSDaniel Lezcano info->nlh, gfp_any()); 50901ce85fe4SPablo Neira Ayuso return; 509121713ebcSThomas Graf errout: 509221713ebcSThomas Graf if (err < 0) 50935578689aSDaniel Lezcano rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err); 50941da177e4SLinus Torvalds } 50951da177e4SLinus Torvalds 50968ed67789SDaniel Lezcano static int ip6_route_dev_notify(struct notifier_block *this, 5097351638e7SJiri Pirko unsigned long event, void *ptr) 50988ed67789SDaniel Lezcano { 5099351638e7SJiri Pirko struct net_device *dev = netdev_notifier_info_to_dev(ptr); 5100c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 51018ed67789SDaniel Lezcano 5102242d3a49SWANG Cong if (!(dev->flags & IFF_LOOPBACK)) 5103242d3a49SWANG Cong return NOTIFY_OK; 5104242d3a49SWANG Cong 5105242d3a49SWANG Cong if (event == NETDEV_REGISTER) { 5106ad1601aeSDavid Ahern net->ipv6.fib6_null_entry->fib6_nh.fib_nh_dev = dev; 5107d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.dev = dev; 51088ed67789SDaniel Lezcano net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev); 51098ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5110d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.dev = dev; 51118ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev); 5112d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.dev = dev; 51138ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev); 51148ed67789SDaniel Lezcano #endif 511576da0704SWANG Cong } else if (event == NETDEV_UNREGISTER && 511676da0704SWANG Cong dev->reg_state != NETREG_UNREGISTERED) { 511776da0704SWANG Cong /* NETDEV_UNREGISTER could be fired for multiple times by 511876da0704SWANG Cong * netdev_wait_allrefs(). Make sure we only call this once. 511976da0704SWANG Cong */ 512012d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_null_entry->rt6i_idev); 5121242d3a49SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 512212d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_prohibit_entry->rt6i_idev); 512312d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_blk_hole_entry->rt6i_idev); 5124242d3a49SWANG Cong #endif 51258ed67789SDaniel Lezcano } 51268ed67789SDaniel Lezcano 51278ed67789SDaniel Lezcano return NOTIFY_OK; 51288ed67789SDaniel Lezcano } 51298ed67789SDaniel Lezcano 51301da177e4SLinus Torvalds /* 51311da177e4SLinus Torvalds * /proc 51321da177e4SLinus Torvalds */ 51331da177e4SLinus Torvalds 51341da177e4SLinus Torvalds #ifdef CONFIG_PROC_FS 51351da177e4SLinus Torvalds static int rt6_stats_seq_show(struct seq_file *seq, void *v) 51361da177e4SLinus Torvalds { 513769ddb805SDaniel Lezcano struct net *net = (struct net *)seq->private; 51381da177e4SLinus Torvalds seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n", 513969ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_nodes, 514069ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_route_nodes, 514181eb8447SWei Wang atomic_read(&net->ipv6.rt6_stats->fib_rt_alloc), 514269ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_entries, 514369ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_cache, 5144fc66f95cSEric Dumazet dst_entries_get_slow(&net->ipv6.ip6_dst_ops), 514569ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_discarded_routes); 51461da177e4SLinus Torvalds 51471da177e4SLinus Torvalds return 0; 51481da177e4SLinus Torvalds } 51491da177e4SLinus Torvalds #endif /* CONFIG_PROC_FS */ 51501da177e4SLinus Torvalds 51511da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 51521da177e4SLinus Torvalds 51531da177e4SLinus Torvalds static 5154fe2c6338SJoe Perches int ipv6_sysctl_rtcache_flush(struct ctl_table *ctl, int write, 51551da177e4SLinus Torvalds void __user *buffer, size_t *lenp, loff_t *ppos) 51561da177e4SLinus Torvalds { 5157c486da34SLucian Adrian Grijincu struct net *net; 5158c486da34SLucian Adrian Grijincu int delay; 5159f0fb9b28SAditya Pakki int ret; 5160c486da34SLucian Adrian Grijincu if (!write) 5161c486da34SLucian Adrian Grijincu return -EINVAL; 5162c486da34SLucian Adrian Grijincu 5163c486da34SLucian Adrian Grijincu net = (struct net *)ctl->extra1; 5164c486da34SLucian Adrian Grijincu delay = net->ipv6.sysctl.flush_delay; 5165f0fb9b28SAditya Pakki ret = proc_dointvec(ctl, write, buffer, lenp, ppos); 5166f0fb9b28SAditya Pakki if (ret) 5167f0fb9b28SAditya Pakki return ret; 5168f0fb9b28SAditya Pakki 51692ac3ac8fSMichal Kubeček fib6_run_gc(delay <= 0 ? 0 : (unsigned long)delay, net, delay > 0); 51701da177e4SLinus Torvalds return 0; 51711da177e4SLinus Torvalds } 51721da177e4SLinus Torvalds 51737c6bb7d2SDavid Ahern static int zero; 51747c6bb7d2SDavid Ahern static int one = 1; 51757c6bb7d2SDavid Ahern 5176ed792e28SDavid Ahern static struct ctl_table ipv6_route_table_template[] = { 51771da177e4SLinus Torvalds { 51781da177e4SLinus Torvalds .procname = "flush", 51794990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.flush_delay, 51801da177e4SLinus Torvalds .maxlen = sizeof(int), 518189c8b3a1SDave Jones .mode = 0200, 51826d9f239aSAlexey Dobriyan .proc_handler = ipv6_sysctl_rtcache_flush 51831da177e4SLinus Torvalds }, 51841da177e4SLinus Torvalds { 51851da177e4SLinus Torvalds .procname = "gc_thresh", 51869a7ec3a9SDaniel Lezcano .data = &ip6_dst_ops_template.gc_thresh, 51871da177e4SLinus Torvalds .maxlen = sizeof(int), 51881da177e4SLinus Torvalds .mode = 0644, 51896d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 51901da177e4SLinus Torvalds }, 51911da177e4SLinus Torvalds { 51921da177e4SLinus Torvalds .procname = "max_size", 51934990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_max_size, 51941da177e4SLinus Torvalds .maxlen = sizeof(int), 51951da177e4SLinus Torvalds .mode = 0644, 51966d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 51971da177e4SLinus Torvalds }, 51981da177e4SLinus Torvalds { 51991da177e4SLinus Torvalds .procname = "gc_min_interval", 52004990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 52011da177e4SLinus Torvalds .maxlen = sizeof(int), 52021da177e4SLinus Torvalds .mode = 0644, 52036d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52041da177e4SLinus Torvalds }, 52051da177e4SLinus Torvalds { 52061da177e4SLinus Torvalds .procname = "gc_timeout", 52074990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_timeout, 52081da177e4SLinus Torvalds .maxlen = sizeof(int), 52091da177e4SLinus Torvalds .mode = 0644, 52106d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52111da177e4SLinus Torvalds }, 52121da177e4SLinus Torvalds { 52131da177e4SLinus Torvalds .procname = "gc_interval", 52144990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_interval, 52151da177e4SLinus Torvalds .maxlen = sizeof(int), 52161da177e4SLinus Torvalds .mode = 0644, 52176d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52181da177e4SLinus Torvalds }, 52191da177e4SLinus Torvalds { 52201da177e4SLinus Torvalds .procname = "gc_elasticity", 52214990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_elasticity, 52221da177e4SLinus Torvalds .maxlen = sizeof(int), 52231da177e4SLinus Torvalds .mode = 0644, 5224f3d3f616SMin Zhang .proc_handler = proc_dointvec, 52251da177e4SLinus Torvalds }, 52261da177e4SLinus Torvalds { 52271da177e4SLinus Torvalds .procname = "mtu_expires", 52284990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_mtu_expires, 52291da177e4SLinus Torvalds .maxlen = sizeof(int), 52301da177e4SLinus Torvalds .mode = 0644, 52316d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52321da177e4SLinus Torvalds }, 52331da177e4SLinus Torvalds { 52341da177e4SLinus Torvalds .procname = "min_adv_mss", 52354990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_min_advmss, 52361da177e4SLinus Torvalds .maxlen = sizeof(int), 52371da177e4SLinus Torvalds .mode = 0644, 5238f3d3f616SMin Zhang .proc_handler = proc_dointvec, 52391da177e4SLinus Torvalds }, 52401da177e4SLinus Torvalds { 52411da177e4SLinus Torvalds .procname = "gc_min_interval_ms", 52424990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 52431da177e4SLinus Torvalds .maxlen = sizeof(int), 52441da177e4SLinus Torvalds .mode = 0644, 52456d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_ms_jiffies, 52461da177e4SLinus Torvalds }, 52477c6bb7d2SDavid Ahern { 52487c6bb7d2SDavid Ahern .procname = "skip_notify_on_dev_down", 52497c6bb7d2SDavid Ahern .data = &init_net.ipv6.sysctl.skip_notify_on_dev_down, 52507c6bb7d2SDavid Ahern .maxlen = sizeof(int), 52517c6bb7d2SDavid Ahern .mode = 0644, 52527c6bb7d2SDavid Ahern .proc_handler = proc_dointvec, 52537c6bb7d2SDavid Ahern .extra1 = &zero, 52547c6bb7d2SDavid Ahern .extra2 = &one, 52557c6bb7d2SDavid Ahern }, 5256f8572d8fSEric W. Biederman { } 52571da177e4SLinus Torvalds }; 52581da177e4SLinus Torvalds 52592c8c1e72SAlexey Dobriyan struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net) 5260760f2d01SDaniel Lezcano { 5261760f2d01SDaniel Lezcano struct ctl_table *table; 5262760f2d01SDaniel Lezcano 5263760f2d01SDaniel Lezcano table = kmemdup(ipv6_route_table_template, 5264760f2d01SDaniel Lezcano sizeof(ipv6_route_table_template), 5265760f2d01SDaniel Lezcano GFP_KERNEL); 52665ee09105SYOSHIFUJI Hideaki 52675ee09105SYOSHIFUJI Hideaki if (table) { 52685ee09105SYOSHIFUJI Hideaki table[0].data = &net->ipv6.sysctl.flush_delay; 5269c486da34SLucian Adrian Grijincu table[0].extra1 = net; 527086393e52SAlexey Dobriyan table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh; 52715ee09105SYOSHIFUJI Hideaki table[2].data = &net->ipv6.sysctl.ip6_rt_max_size; 52725ee09105SYOSHIFUJI Hideaki table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 52735ee09105SYOSHIFUJI Hideaki table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout; 52745ee09105SYOSHIFUJI Hideaki table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval; 52755ee09105SYOSHIFUJI Hideaki table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity; 52765ee09105SYOSHIFUJI Hideaki table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires; 52775ee09105SYOSHIFUJI Hideaki table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss; 52789c69fabeSAlexey Dobriyan table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 52797c6bb7d2SDavid Ahern table[10].data = &net->ipv6.sysctl.skip_notify_on_dev_down; 5280464dc801SEric W. Biederman 5281464dc801SEric W. Biederman /* Don't export sysctls to unprivileged users */ 5282464dc801SEric W. Biederman if (net->user_ns != &init_user_ns) 5283464dc801SEric W. Biederman table[0].procname = NULL; 52845ee09105SYOSHIFUJI Hideaki } 52855ee09105SYOSHIFUJI Hideaki 5286760f2d01SDaniel Lezcano return table; 5287760f2d01SDaniel Lezcano } 52881da177e4SLinus Torvalds #endif 52891da177e4SLinus Torvalds 52902c8c1e72SAlexey Dobriyan static int __net_init ip6_route_net_init(struct net *net) 5291cdb18761SDaniel Lezcano { 5292633d424bSPavel Emelyanov int ret = -ENOMEM; 52938ed67789SDaniel Lezcano 529486393e52SAlexey Dobriyan memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template, 529586393e52SAlexey Dobriyan sizeof(net->ipv6.ip6_dst_ops)); 5296f2fc6a54SBenjamin Thery 5297fc66f95cSEric Dumazet if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0) 5298fc66f95cSEric Dumazet goto out_ip6_dst_ops; 5299fc66f95cSEric Dumazet 5300421842edSDavid Ahern net->ipv6.fib6_null_entry = kmemdup(&fib6_null_entry_template, 5301421842edSDavid Ahern sizeof(*net->ipv6.fib6_null_entry), 5302421842edSDavid Ahern GFP_KERNEL); 5303421842edSDavid Ahern if (!net->ipv6.fib6_null_entry) 5304421842edSDavid Ahern goto out_ip6_dst_entries; 5305421842edSDavid Ahern 53068ed67789SDaniel Lezcano net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template, 53078ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_null_entry), 53088ed67789SDaniel Lezcano GFP_KERNEL); 53098ed67789SDaniel Lezcano if (!net->ipv6.ip6_null_entry) 5310421842edSDavid Ahern goto out_fib6_null_entry; 5311d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops; 531262fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_null_entry->dst, 531362fa8a84SDavid S. Miller ip6_template_metrics, true); 53148ed67789SDaniel Lezcano 53158ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5316feca7d8cSVincent Bernat net->ipv6.fib6_has_custom_rules = false; 53178ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template, 53188ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_prohibit_entry), 53198ed67789SDaniel Lezcano GFP_KERNEL); 532068fffc67SPeter Zijlstra if (!net->ipv6.ip6_prohibit_entry) 532168fffc67SPeter Zijlstra goto out_ip6_null_entry; 5322d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops; 532362fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_prohibit_entry->dst, 532462fa8a84SDavid S. Miller ip6_template_metrics, true); 53258ed67789SDaniel Lezcano 53268ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template, 53278ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_blk_hole_entry), 53288ed67789SDaniel Lezcano GFP_KERNEL); 532968fffc67SPeter Zijlstra if (!net->ipv6.ip6_blk_hole_entry) 533068fffc67SPeter Zijlstra goto out_ip6_prohibit_entry; 5331d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops; 533262fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_blk_hole_entry->dst, 533362fa8a84SDavid S. Miller ip6_template_metrics, true); 53348ed67789SDaniel Lezcano #endif 53358ed67789SDaniel Lezcano 5336b339a47cSPeter Zijlstra net->ipv6.sysctl.flush_delay = 0; 5337b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_max_size = 4096; 5338b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2; 5339b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ; 5340b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ; 5341b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_elasticity = 9; 5342b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ; 5343b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40; 53447c6bb7d2SDavid Ahern net->ipv6.sysctl.skip_notify_on_dev_down = 0; 5345b339a47cSPeter Zijlstra 53466891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire = 30*HZ; 53476891a346SBenjamin Thery 53488ed67789SDaniel Lezcano ret = 0; 53498ed67789SDaniel Lezcano out: 53508ed67789SDaniel Lezcano return ret; 5351f2fc6a54SBenjamin Thery 535268fffc67SPeter Zijlstra #ifdef CONFIG_IPV6_MULTIPLE_TABLES 535368fffc67SPeter Zijlstra out_ip6_prohibit_entry: 535468fffc67SPeter Zijlstra kfree(net->ipv6.ip6_prohibit_entry); 535568fffc67SPeter Zijlstra out_ip6_null_entry: 535668fffc67SPeter Zijlstra kfree(net->ipv6.ip6_null_entry); 535768fffc67SPeter Zijlstra #endif 5358421842edSDavid Ahern out_fib6_null_entry: 5359421842edSDavid Ahern kfree(net->ipv6.fib6_null_entry); 5360fc66f95cSEric Dumazet out_ip6_dst_entries: 5361fc66f95cSEric Dumazet dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5362f2fc6a54SBenjamin Thery out_ip6_dst_ops: 5363f2fc6a54SBenjamin Thery goto out; 5364cdb18761SDaniel Lezcano } 5365cdb18761SDaniel Lezcano 53662c8c1e72SAlexey Dobriyan static void __net_exit ip6_route_net_exit(struct net *net) 5367cdb18761SDaniel Lezcano { 5368421842edSDavid Ahern kfree(net->ipv6.fib6_null_entry); 53698ed67789SDaniel Lezcano kfree(net->ipv6.ip6_null_entry); 53708ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 53718ed67789SDaniel Lezcano kfree(net->ipv6.ip6_prohibit_entry); 53728ed67789SDaniel Lezcano kfree(net->ipv6.ip6_blk_hole_entry); 53738ed67789SDaniel Lezcano #endif 537441bb78b4SXiaotian Feng dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5375cdb18761SDaniel Lezcano } 5376cdb18761SDaniel Lezcano 5377d189634eSThomas Graf static int __net_init ip6_route_net_init_late(struct net *net) 5378d189634eSThomas Graf { 5379d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5380c3506372SChristoph Hellwig proc_create_net("ipv6_route", 0, net->proc_net, &ipv6_route_seq_ops, 5381c3506372SChristoph Hellwig sizeof(struct ipv6_route_iter)); 53823617d949SChristoph Hellwig proc_create_net_single("rt6_stats", 0444, net->proc_net, 53833617d949SChristoph Hellwig rt6_stats_seq_show, NULL); 5384d189634eSThomas Graf #endif 5385d189634eSThomas Graf return 0; 5386d189634eSThomas Graf } 5387d189634eSThomas Graf 5388d189634eSThomas Graf static void __net_exit ip6_route_net_exit_late(struct net *net) 5389d189634eSThomas Graf { 5390d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5391ece31ffdSGao feng remove_proc_entry("ipv6_route", net->proc_net); 5392ece31ffdSGao feng remove_proc_entry("rt6_stats", net->proc_net); 5393d189634eSThomas Graf #endif 5394d189634eSThomas Graf } 5395d189634eSThomas Graf 5396cdb18761SDaniel Lezcano static struct pernet_operations ip6_route_net_ops = { 5397cdb18761SDaniel Lezcano .init = ip6_route_net_init, 5398cdb18761SDaniel Lezcano .exit = ip6_route_net_exit, 5399cdb18761SDaniel Lezcano }; 5400cdb18761SDaniel Lezcano 5401c3426b47SDavid S. Miller static int __net_init ipv6_inetpeer_init(struct net *net) 5402c3426b47SDavid S. Miller { 5403c3426b47SDavid S. Miller struct inet_peer_base *bp = kmalloc(sizeof(*bp), GFP_KERNEL); 5404c3426b47SDavid S. Miller 5405c3426b47SDavid S. Miller if (!bp) 5406c3426b47SDavid S. Miller return -ENOMEM; 5407c3426b47SDavid S. Miller inet_peer_base_init(bp); 5408c3426b47SDavid S. Miller net->ipv6.peers = bp; 5409c3426b47SDavid S. Miller return 0; 5410c3426b47SDavid S. Miller } 5411c3426b47SDavid S. Miller 5412c3426b47SDavid S. Miller static void __net_exit ipv6_inetpeer_exit(struct net *net) 5413c3426b47SDavid S. Miller { 5414c3426b47SDavid S. Miller struct inet_peer_base *bp = net->ipv6.peers; 5415c3426b47SDavid S. Miller 5416c3426b47SDavid S. Miller net->ipv6.peers = NULL; 541756a6b248SDavid S. Miller inetpeer_invalidate_tree(bp); 5418c3426b47SDavid S. Miller kfree(bp); 5419c3426b47SDavid S. Miller } 5420c3426b47SDavid S. Miller 54212b823f72SDavid S. Miller static struct pernet_operations ipv6_inetpeer_ops = { 5422c3426b47SDavid S. Miller .init = ipv6_inetpeer_init, 5423c3426b47SDavid S. Miller .exit = ipv6_inetpeer_exit, 5424c3426b47SDavid S. Miller }; 5425c3426b47SDavid S. Miller 5426d189634eSThomas Graf static struct pernet_operations ip6_route_net_late_ops = { 5427d189634eSThomas Graf .init = ip6_route_net_init_late, 5428d189634eSThomas Graf .exit = ip6_route_net_exit_late, 5429d189634eSThomas Graf }; 5430d189634eSThomas Graf 54318ed67789SDaniel Lezcano static struct notifier_block ip6_route_dev_notifier = { 54328ed67789SDaniel Lezcano .notifier_call = ip6_route_dev_notify, 5433242d3a49SWANG Cong .priority = ADDRCONF_NOTIFY_PRIORITY - 10, 54348ed67789SDaniel Lezcano }; 54358ed67789SDaniel Lezcano 54362f460933SWANG Cong void __init ip6_route_init_special_entries(void) 54372f460933SWANG Cong { 54382f460933SWANG Cong /* Registering of the loopback is done before this portion of code, 54392f460933SWANG Cong * the loopback reference in rt6_info will not be taken, do it 54402f460933SWANG Cong * manually for init_net */ 5441ad1601aeSDavid Ahern init_net.ipv6.fib6_null_entry->fib6_nh.fib_nh_dev = init_net.loopback_dev; 54422f460933SWANG Cong init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev; 54432f460933SWANG Cong init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54442f460933SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 54452f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev; 54462f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54472f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev; 54482f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54492f460933SWANG Cong #endif 54502f460933SWANG Cong } 54512f460933SWANG Cong 5452433d49c3SDaniel Lezcano int __init ip6_route_init(void) 54531da177e4SLinus Torvalds { 5454433d49c3SDaniel Lezcano int ret; 54558d0b94afSMartin KaFai Lau int cpu; 5456433d49c3SDaniel Lezcano 54579a7ec3a9SDaniel Lezcano ret = -ENOMEM; 54589a7ec3a9SDaniel Lezcano ip6_dst_ops_template.kmem_cachep = 54599a7ec3a9SDaniel Lezcano kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0, 54609a7ec3a9SDaniel Lezcano SLAB_HWCACHE_ALIGN, NULL); 54619a7ec3a9SDaniel Lezcano if (!ip6_dst_ops_template.kmem_cachep) 5462c19a28e1SFernando Carrijo goto out; 546314e50e57SDavid S. Miller 5464fc66f95cSEric Dumazet ret = dst_entries_init(&ip6_dst_blackhole_ops); 54658ed67789SDaniel Lezcano if (ret) 5466bdb3289fSDaniel Lezcano goto out_kmem_cache; 5467bdb3289fSDaniel Lezcano 5468c3426b47SDavid S. Miller ret = register_pernet_subsys(&ipv6_inetpeer_ops); 5469c3426b47SDavid S. Miller if (ret) 5470e8803b6cSDavid S. Miller goto out_dst_entries; 54712a0c451aSThomas Graf 54727e52b33bSDavid S. Miller ret = register_pernet_subsys(&ip6_route_net_ops); 54737e52b33bSDavid S. Miller if (ret) 54747e52b33bSDavid S. Miller goto out_register_inetpeer; 5475c3426b47SDavid S. Miller 54765dc121e9SArnaud Ebalard ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep; 54775dc121e9SArnaud Ebalard 5478e8803b6cSDavid S. Miller ret = fib6_init(); 5479433d49c3SDaniel Lezcano if (ret) 54808ed67789SDaniel Lezcano goto out_register_subsys; 5481433d49c3SDaniel Lezcano 5482433d49c3SDaniel Lezcano ret = xfrm6_init(); 5483433d49c3SDaniel Lezcano if (ret) 5484e8803b6cSDavid S. Miller goto out_fib6_init; 5485c35b7e72SDaniel Lezcano 5486433d49c3SDaniel Lezcano ret = fib6_rules_init(); 5487433d49c3SDaniel Lezcano if (ret) 5488433d49c3SDaniel Lezcano goto xfrm6_init; 54897e5449c2SDaniel Lezcano 5490d189634eSThomas Graf ret = register_pernet_subsys(&ip6_route_net_late_ops); 5491d189634eSThomas Graf if (ret) 5492d189634eSThomas Graf goto fib6_rules_init; 5493d189634eSThomas Graf 549416feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_NEWROUTE, 549516feebcfSFlorian Westphal inet6_rtm_newroute, NULL, 0); 549616feebcfSFlorian Westphal if (ret < 0) 549716feebcfSFlorian Westphal goto out_register_late_subsys; 549816feebcfSFlorian Westphal 549916feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_DELROUTE, 550016feebcfSFlorian Westphal inet6_rtm_delroute, NULL, 0); 550116feebcfSFlorian Westphal if (ret < 0) 550216feebcfSFlorian Westphal goto out_register_late_subsys; 550316feebcfSFlorian Westphal 550416feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETROUTE, 550516feebcfSFlorian Westphal inet6_rtm_getroute, NULL, 550616feebcfSFlorian Westphal RTNL_FLAG_DOIT_UNLOCKED); 550716feebcfSFlorian Westphal if (ret < 0) 5508d189634eSThomas Graf goto out_register_late_subsys; 5509433d49c3SDaniel Lezcano 55108ed67789SDaniel Lezcano ret = register_netdevice_notifier(&ip6_route_dev_notifier); 5511cdb18761SDaniel Lezcano if (ret) 5512d189634eSThomas Graf goto out_register_late_subsys; 55138ed67789SDaniel Lezcano 55148d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 55158d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 55168d0b94afSMartin KaFai Lau 55178d0b94afSMartin KaFai Lau INIT_LIST_HEAD(&ul->head); 55188d0b94afSMartin KaFai Lau spin_lock_init(&ul->lock); 55198d0b94afSMartin KaFai Lau } 55208d0b94afSMartin KaFai Lau 5521433d49c3SDaniel Lezcano out: 5522433d49c3SDaniel Lezcano return ret; 5523433d49c3SDaniel Lezcano 5524d189634eSThomas Graf out_register_late_subsys: 552516feebcfSFlorian Westphal rtnl_unregister_all(PF_INET6); 5526d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5527433d49c3SDaniel Lezcano fib6_rules_init: 5528433d49c3SDaniel Lezcano fib6_rules_cleanup(); 5529433d49c3SDaniel Lezcano xfrm6_init: 5530433d49c3SDaniel Lezcano xfrm6_fini(); 55312a0c451aSThomas Graf out_fib6_init: 55322a0c451aSThomas Graf fib6_gc_cleanup(); 55338ed67789SDaniel Lezcano out_register_subsys: 55348ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 55357e52b33bSDavid S. Miller out_register_inetpeer: 55367e52b33bSDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 5537fc66f95cSEric Dumazet out_dst_entries: 5538fc66f95cSEric Dumazet dst_entries_destroy(&ip6_dst_blackhole_ops); 5539433d49c3SDaniel Lezcano out_kmem_cache: 5540f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 5541433d49c3SDaniel Lezcano goto out; 55421da177e4SLinus Torvalds } 55431da177e4SLinus Torvalds 55441da177e4SLinus Torvalds void ip6_route_cleanup(void) 55451da177e4SLinus Torvalds { 55468ed67789SDaniel Lezcano unregister_netdevice_notifier(&ip6_route_dev_notifier); 5547d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5548101367c2SThomas Graf fib6_rules_cleanup(); 55491da177e4SLinus Torvalds xfrm6_fini(); 55501da177e4SLinus Torvalds fib6_gc_cleanup(); 5551c3426b47SDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 55528ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 555341bb78b4SXiaotian Feng dst_entries_destroy(&ip6_dst_blackhole_ops); 5554f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 55551da177e4SLinus Torvalds } 5556