11da177e4SLinus Torvalds /* 21da177e4SLinus Torvalds * Linux INET6 implementation 31da177e4SLinus Torvalds * FIB front-end. 41da177e4SLinus Torvalds * 51da177e4SLinus Torvalds * Authors: 61da177e4SLinus Torvalds * Pedro Roque <roque@di.fc.ul.pt> 71da177e4SLinus Torvalds * 81da177e4SLinus Torvalds * This program is free software; you can redistribute it and/or 91da177e4SLinus Torvalds * modify it under the terms of the GNU General Public License 101da177e4SLinus Torvalds * as published by the Free Software Foundation; either version 111da177e4SLinus Torvalds * 2 of the License, or (at your option) any later version. 121da177e4SLinus Torvalds */ 131da177e4SLinus Torvalds 141da177e4SLinus Torvalds /* Changes: 151da177e4SLinus Torvalds * 161da177e4SLinus Torvalds * YOSHIFUJI Hideaki @USAGI 171da177e4SLinus Torvalds * reworked default router selection. 181da177e4SLinus Torvalds * - respect outgoing interface 191da177e4SLinus Torvalds * - select from (probably) reachable routers (i.e. 201da177e4SLinus Torvalds * routers in REACHABLE, STALE, DELAY or PROBE states). 211da177e4SLinus Torvalds * - always select the same router if it is (probably) 221da177e4SLinus Torvalds * reachable. otherwise, round-robin the list. 23c0bece9fSYOSHIFUJI Hideaki * Ville Nuorvala 24c0bece9fSYOSHIFUJI Hideaki * Fixed routing subtrees. 251da177e4SLinus Torvalds */ 261da177e4SLinus Torvalds 27f3213831SJoe Perches #define pr_fmt(fmt) "IPv6: " fmt 28f3213831SJoe Perches 294fc268d2SRandy Dunlap #include <linux/capability.h> 301da177e4SLinus Torvalds #include <linux/errno.h> 31bc3b2d7fSPaul Gortmaker #include <linux/export.h> 321da177e4SLinus Torvalds #include <linux/types.h> 331da177e4SLinus Torvalds #include <linux/times.h> 341da177e4SLinus Torvalds #include <linux/socket.h> 351da177e4SLinus Torvalds #include <linux/sockios.h> 361da177e4SLinus Torvalds #include <linux/net.h> 371da177e4SLinus Torvalds #include <linux/route.h> 381da177e4SLinus Torvalds #include <linux/netdevice.h> 391da177e4SLinus Torvalds #include <linux/in6.h> 407bc570c8SYOSHIFUJI Hideaki #include <linux/mroute6.h> 411da177e4SLinus Torvalds #include <linux/init.h> 421da177e4SLinus Torvalds #include <linux/if_arp.h> 431da177e4SLinus Torvalds #include <linux/proc_fs.h> 441da177e4SLinus Torvalds #include <linux/seq_file.h> 455b7c931dSDaniel Lezcano #include <linux/nsproxy.h> 465a0e3ad6STejun Heo #include <linux/slab.h> 4735732d01SWei Wang #include <linux/jhash.h> 48457c4cbcSEric W. Biederman #include <net/net_namespace.h> 491da177e4SLinus Torvalds #include <net/snmp.h> 501da177e4SLinus Torvalds #include <net/ipv6.h> 511da177e4SLinus Torvalds #include <net/ip6_fib.h> 521da177e4SLinus Torvalds #include <net/ip6_route.h> 531da177e4SLinus Torvalds #include <net/ndisc.h> 541da177e4SLinus Torvalds #include <net/addrconf.h> 551da177e4SLinus Torvalds #include <net/tcp.h> 561da177e4SLinus Torvalds #include <linux/rtnetlink.h> 571da177e4SLinus Torvalds #include <net/dst.h> 58904af04dSJiri Benc #include <net/dst_metadata.h> 591da177e4SLinus Torvalds #include <net/xfrm.h> 608d71740cSTom Tucker #include <net/netevent.h> 6121713ebcSThomas Graf #include <net/netlink.h> 6251ebd318SNicolas Dichtel #include <net/nexthop.h> 6319e42e45SRoopa Prabhu #include <net/lwtunnel.h> 64904af04dSJiri Benc #include <net/ip_tunnels.h> 65ca254490SDavid Ahern #include <net/l3mdev.h> 66eacb9384SRoopa Prabhu #include <net/ip.h> 677c0f6ba6SLinus Torvalds #include <linux/uaccess.h> 681da177e4SLinus Torvalds 691da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 701da177e4SLinus Torvalds #include <linux/sysctl.h> 711da177e4SLinus Torvalds #endif 721da177e4SLinus Torvalds 7330d444d3SDavid Ahern static int ip6_rt_type_to_error(u8 fib6_type); 7430d444d3SDavid Ahern 7530d444d3SDavid Ahern #define CREATE_TRACE_POINTS 7630d444d3SDavid Ahern #include <trace/events/fib6.h> 7730d444d3SDavid Ahern EXPORT_TRACEPOINT_SYMBOL_GPL(fib6_table_lookup); 7830d444d3SDavid Ahern #undef CREATE_TRACE_POINTS 7930d444d3SDavid Ahern 80afc154e9SHannes Frederic Sowa enum rt6_nud_state { 817e980569SJiri Benc RT6_NUD_FAIL_HARD = -3, 827e980569SJiri Benc RT6_NUD_FAIL_PROBE = -2, 837e980569SJiri Benc RT6_NUD_FAIL_DO_RR = -1, 84afc154e9SHannes Frederic Sowa RT6_NUD_SUCCEED = 1 85afc154e9SHannes Frederic Sowa }; 86afc154e9SHannes Frederic Sowa 871da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie); 880dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst); 89ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst); 901da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *); 911da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *); 921da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *, 931da177e4SLinus Torvalds struct net_device *dev, int how); 94569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops); 951da177e4SLinus Torvalds 961da177e4SLinus Torvalds static int ip6_pkt_discard(struct sk_buff *skb); 97ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb); 987150aedeSKamala R static int ip6_pkt_prohibit(struct sk_buff *skb); 99ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb); 1001da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb); 1016700c270SDavid S. Miller static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 1026700c270SDavid S. Miller struct sk_buff *skb, u32 mtu); 1036700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, 1046700c270SDavid S. Miller struct sk_buff *skb); 1058d1c802bSDavid Ahern static int rt6_score_route(struct fib6_info *rt, int oif, int strict); 1068d1c802bSDavid Ahern static size_t rt6_nlmsg_size(struct fib6_info *rt); 107d4ead6b3SDavid Ahern static int rt6_fill_node(struct net *net, struct sk_buff *skb, 1088d1c802bSDavid Ahern struct fib6_info *rt, struct dst_entry *dst, 109d4ead6b3SDavid Ahern struct in6_addr *dest, struct in6_addr *src, 11016a16cd3SDavid Ahern int iif, int type, u32 portid, u32 seq, 11116a16cd3SDavid Ahern unsigned int flags); 1128d1c802bSDavid Ahern static struct rt6_info *rt6_find_cached_rt(struct fib6_info *rt, 11335732d01SWei Wang struct in6_addr *daddr, 11435732d01SWei Wang struct in6_addr *saddr); 1151da177e4SLinus Torvalds 11670ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 1178d1c802bSDavid Ahern static struct fib6_info *rt6_add_route_info(struct net *net, 118b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 119830218c1SDavid Ahern const struct in6_addr *gwaddr, 120830218c1SDavid Ahern struct net_device *dev, 12195c96174SEric Dumazet unsigned int pref); 1228d1c802bSDavid Ahern static struct fib6_info *rt6_get_route_info(struct net *net, 123b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 124830218c1SDavid Ahern const struct in6_addr *gwaddr, 125830218c1SDavid Ahern struct net_device *dev); 12670ceb4f5SYOSHIFUJI Hideaki #endif 12770ceb4f5SYOSHIFUJI Hideaki 1288d0b94afSMartin KaFai Lau struct uncached_list { 1298d0b94afSMartin KaFai Lau spinlock_t lock; 1308d0b94afSMartin KaFai Lau struct list_head head; 1318d0b94afSMartin KaFai Lau }; 1328d0b94afSMartin KaFai Lau 1338d0b94afSMartin KaFai Lau static DEFINE_PER_CPU_ALIGNED(struct uncached_list, rt6_uncached_list); 1348d0b94afSMartin KaFai Lau 135510c321bSXin Long void rt6_uncached_list_add(struct rt6_info *rt) 1368d0b94afSMartin KaFai Lau { 1378d0b94afSMartin KaFai Lau struct uncached_list *ul = raw_cpu_ptr(&rt6_uncached_list); 1388d0b94afSMartin KaFai Lau 1398d0b94afSMartin KaFai Lau rt->rt6i_uncached_list = ul; 1408d0b94afSMartin KaFai Lau 1418d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1428d0b94afSMartin KaFai Lau list_add_tail(&rt->rt6i_uncached, &ul->head); 1438d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1448d0b94afSMartin KaFai Lau } 1458d0b94afSMartin KaFai Lau 146510c321bSXin Long void rt6_uncached_list_del(struct rt6_info *rt) 1478d0b94afSMartin KaFai Lau { 1488d0b94afSMartin KaFai Lau if (!list_empty(&rt->rt6i_uncached)) { 1498d0b94afSMartin KaFai Lau struct uncached_list *ul = rt->rt6i_uncached_list; 15081eb8447SWei Wang struct net *net = dev_net(rt->dst.dev); 1518d0b94afSMartin KaFai Lau 1528d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1538d0b94afSMartin KaFai Lau list_del(&rt->rt6i_uncached); 15481eb8447SWei Wang atomic_dec(&net->ipv6.rt6_stats->fib_rt_uncache); 1558d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1568d0b94afSMartin KaFai Lau } 1578d0b94afSMartin KaFai Lau } 1588d0b94afSMartin KaFai Lau 1598d0b94afSMartin KaFai Lau static void rt6_uncached_list_flush_dev(struct net *net, struct net_device *dev) 1608d0b94afSMartin KaFai Lau { 1618d0b94afSMartin KaFai Lau struct net_device *loopback_dev = net->loopback_dev; 1628d0b94afSMartin KaFai Lau int cpu; 1638d0b94afSMartin KaFai Lau 164e332bc67SEric W. Biederman if (dev == loopback_dev) 165e332bc67SEric W. Biederman return; 166e332bc67SEric W. Biederman 1678d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 1688d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 1698d0b94afSMartin KaFai Lau struct rt6_info *rt; 1708d0b94afSMartin KaFai Lau 1718d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1728d0b94afSMartin KaFai Lau list_for_each_entry(rt, &ul->head, rt6i_uncached) { 1738d0b94afSMartin KaFai Lau struct inet6_dev *rt_idev = rt->rt6i_idev; 1748d0b94afSMartin KaFai Lau struct net_device *rt_dev = rt->dst.dev; 1758d0b94afSMartin KaFai Lau 176e332bc67SEric W. Biederman if (rt_idev->dev == dev) { 1778d0b94afSMartin KaFai Lau rt->rt6i_idev = in6_dev_get(loopback_dev); 1788d0b94afSMartin KaFai Lau in6_dev_put(rt_idev); 1798d0b94afSMartin KaFai Lau } 1808d0b94afSMartin KaFai Lau 181e332bc67SEric W. Biederman if (rt_dev == dev) { 1828d0b94afSMartin KaFai Lau rt->dst.dev = loopback_dev; 1838d0b94afSMartin KaFai Lau dev_hold(rt->dst.dev); 1848d0b94afSMartin KaFai Lau dev_put(rt_dev); 1858d0b94afSMartin KaFai Lau } 1868d0b94afSMartin KaFai Lau } 1878d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1888d0b94afSMartin KaFai Lau } 1898d0b94afSMartin KaFai Lau } 1908d0b94afSMartin KaFai Lau 191f8a1b43bSDavid Ahern static inline const void *choose_neigh_daddr(const struct in6_addr *p, 192f894cbf8SDavid S. Miller struct sk_buff *skb, 193f894cbf8SDavid S. Miller const void *daddr) 19439232973SDavid S. Miller { 195a7563f34SDavid S. Miller if (!ipv6_addr_any(p)) 19639232973SDavid S. Miller return (const void *) p; 197f894cbf8SDavid S. Miller else if (skb) 198f894cbf8SDavid S. Miller return &ipv6_hdr(skb)->daddr; 19939232973SDavid S. Miller return daddr; 20039232973SDavid S. Miller } 20139232973SDavid S. Miller 202f8a1b43bSDavid Ahern struct neighbour *ip6_neigh_lookup(const struct in6_addr *gw, 203f8a1b43bSDavid Ahern struct net_device *dev, 204f894cbf8SDavid S. Miller struct sk_buff *skb, 205f894cbf8SDavid S. Miller const void *daddr) 206d3aaeb38SDavid S. Miller { 20739232973SDavid S. Miller struct neighbour *n; 20839232973SDavid S. Miller 209f8a1b43bSDavid Ahern daddr = choose_neigh_daddr(gw, skb, daddr); 210f8a1b43bSDavid Ahern n = __ipv6_neigh_lookup(dev, daddr); 211f83c7790SDavid S. Miller if (n) 212f83c7790SDavid S. Miller return n; 2137adf3246SStefano Brivio 2147adf3246SStefano Brivio n = neigh_create(&nd_tbl, daddr, dev); 2157adf3246SStefano Brivio return IS_ERR(n) ? NULL : n; 216f8a1b43bSDavid Ahern } 217f8a1b43bSDavid Ahern 218f8a1b43bSDavid Ahern static struct neighbour *ip6_dst_neigh_lookup(const struct dst_entry *dst, 219f8a1b43bSDavid Ahern struct sk_buff *skb, 220f8a1b43bSDavid Ahern const void *daddr) 221f8a1b43bSDavid Ahern { 222f8a1b43bSDavid Ahern const struct rt6_info *rt = container_of(dst, struct rt6_info, dst); 223f8a1b43bSDavid Ahern 224f8a1b43bSDavid Ahern return ip6_neigh_lookup(&rt->rt6i_gateway, dst->dev, skb, daddr); 225f83c7790SDavid S. Miller } 226f83c7790SDavid S. Miller 22763fca65dSJulian Anastasov static void ip6_confirm_neigh(const struct dst_entry *dst, const void *daddr) 22863fca65dSJulian Anastasov { 22963fca65dSJulian Anastasov struct net_device *dev = dst->dev; 23063fca65dSJulian Anastasov struct rt6_info *rt = (struct rt6_info *)dst; 23163fca65dSJulian Anastasov 232f8a1b43bSDavid Ahern daddr = choose_neigh_daddr(&rt->rt6i_gateway, NULL, daddr); 23363fca65dSJulian Anastasov if (!daddr) 23463fca65dSJulian Anastasov return; 23563fca65dSJulian Anastasov if (dev->flags & (IFF_NOARP | IFF_LOOPBACK)) 23663fca65dSJulian Anastasov return; 23763fca65dSJulian Anastasov if (ipv6_addr_is_multicast((const struct in6_addr *)daddr)) 23863fca65dSJulian Anastasov return; 23963fca65dSJulian Anastasov __ipv6_confirm_neigh(dev, daddr); 24063fca65dSJulian Anastasov } 24163fca65dSJulian Anastasov 2429a7ec3a9SDaniel Lezcano static struct dst_ops ip6_dst_ops_template = { 2431da177e4SLinus Torvalds .family = AF_INET6, 2441da177e4SLinus Torvalds .gc = ip6_dst_gc, 2451da177e4SLinus Torvalds .gc_thresh = 1024, 2461da177e4SLinus Torvalds .check = ip6_dst_check, 2470dbaee3bSDavid S. Miller .default_advmss = ip6_default_advmss, 248ebb762f2SSteffen Klassert .mtu = ip6_mtu, 249d4ead6b3SDavid Ahern .cow_metrics = dst_cow_metrics_generic, 2501da177e4SLinus Torvalds .destroy = ip6_dst_destroy, 2511da177e4SLinus Torvalds .ifdown = ip6_dst_ifdown, 2521da177e4SLinus Torvalds .negative_advice = ip6_negative_advice, 2531da177e4SLinus Torvalds .link_failure = ip6_link_failure, 2541da177e4SLinus Torvalds .update_pmtu = ip6_rt_update_pmtu, 2556e157b6aSDavid S. Miller .redirect = rt6_do_redirect, 2569f8955ccSEric W. Biederman .local_out = __ip6_local_out, 257f8a1b43bSDavid Ahern .neigh_lookup = ip6_dst_neigh_lookup, 25863fca65dSJulian Anastasov .confirm_neigh = ip6_confirm_neigh, 2591da177e4SLinus Torvalds }; 2601da177e4SLinus Torvalds 261ebb762f2SSteffen Klassert static unsigned int ip6_blackhole_mtu(const struct dst_entry *dst) 262ec831ea7SRoland Dreier { 263618f9bc7SSteffen Klassert unsigned int mtu = dst_metric_raw(dst, RTAX_MTU); 264618f9bc7SSteffen Klassert 265618f9bc7SSteffen Klassert return mtu ? : dst->dev->mtu; 266ec831ea7SRoland Dreier } 267ec831ea7SRoland Dreier 2686700c270SDavid S. Miller static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, struct sock *sk, 2696700c270SDavid S. Miller struct sk_buff *skb, u32 mtu) 27014e50e57SDavid S. Miller { 27114e50e57SDavid S. Miller } 27214e50e57SDavid S. Miller 2736700c270SDavid S. Miller static void ip6_rt_blackhole_redirect(struct dst_entry *dst, struct sock *sk, 2746700c270SDavid S. Miller struct sk_buff *skb) 275b587ee3bSDavid S. Miller { 276b587ee3bSDavid S. Miller } 277b587ee3bSDavid S. Miller 27814e50e57SDavid S. Miller static struct dst_ops ip6_dst_blackhole_ops = { 27914e50e57SDavid S. Miller .family = AF_INET6, 28014e50e57SDavid S. Miller .destroy = ip6_dst_destroy, 28114e50e57SDavid S. Miller .check = ip6_dst_check, 282ebb762f2SSteffen Klassert .mtu = ip6_blackhole_mtu, 283214f45c9SEric Dumazet .default_advmss = ip6_default_advmss, 28414e50e57SDavid S. Miller .update_pmtu = ip6_rt_blackhole_update_pmtu, 285b587ee3bSDavid S. Miller .redirect = ip6_rt_blackhole_redirect, 2860a1f5962SMartin KaFai Lau .cow_metrics = dst_cow_metrics_generic, 287f8a1b43bSDavid Ahern .neigh_lookup = ip6_dst_neigh_lookup, 28814e50e57SDavid S. Miller }; 28914e50e57SDavid S. Miller 29062fa8a84SDavid S. Miller static const u32 ip6_template_metrics[RTAX_MAX] = { 29114edd87dSLi RongQing [RTAX_HOPLIMIT - 1] = 0, 29262fa8a84SDavid S. Miller }; 29362fa8a84SDavid S. Miller 2948d1c802bSDavid Ahern static const struct fib6_info fib6_null_entry_template = { 29593c2fb25SDavid Ahern .fib6_flags = (RTF_REJECT | RTF_NONEXTHOP), 29693c2fb25SDavid Ahern .fib6_protocol = RTPROT_KERNEL, 29793c2fb25SDavid Ahern .fib6_metric = ~(u32)0, 29893c2fb25SDavid Ahern .fib6_ref = ATOMIC_INIT(1), 299421842edSDavid Ahern .fib6_type = RTN_UNREACHABLE, 300421842edSDavid Ahern .fib6_metrics = (struct dst_metrics *)&dst_default_metrics, 301421842edSDavid Ahern }; 302421842edSDavid Ahern 303fb0af4c7SEric Dumazet static const struct rt6_info ip6_null_entry_template = { 3041da177e4SLinus Torvalds .dst = { 3051da177e4SLinus Torvalds .__refcnt = ATOMIC_INIT(1), 3061da177e4SLinus Torvalds .__use = 1, 3072c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 3081da177e4SLinus Torvalds .error = -ENETUNREACH, 3091da177e4SLinus Torvalds .input = ip6_pkt_discard, 3101da177e4SLinus Torvalds .output = ip6_pkt_discard_out, 3111da177e4SLinus Torvalds }, 3121da177e4SLinus Torvalds .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 3131da177e4SLinus Torvalds }; 3141da177e4SLinus Torvalds 315101367c2SThomas Graf #ifdef CONFIG_IPV6_MULTIPLE_TABLES 316101367c2SThomas Graf 317fb0af4c7SEric Dumazet static const struct rt6_info ip6_prohibit_entry_template = { 318101367c2SThomas Graf .dst = { 319101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 320101367c2SThomas Graf .__use = 1, 3212c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 322101367c2SThomas Graf .error = -EACCES, 3239ce8ade0SThomas Graf .input = ip6_pkt_prohibit, 3249ce8ade0SThomas Graf .output = ip6_pkt_prohibit_out, 325101367c2SThomas Graf }, 326101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 327101367c2SThomas Graf }; 328101367c2SThomas Graf 329fb0af4c7SEric Dumazet static const struct rt6_info ip6_blk_hole_entry_template = { 330101367c2SThomas Graf .dst = { 331101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 332101367c2SThomas Graf .__use = 1, 3332c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 334101367c2SThomas Graf .error = -EINVAL, 335352e512cSHerbert Xu .input = dst_discard, 336ede2059dSEric W. Biederman .output = dst_discard_out, 337101367c2SThomas Graf }, 338101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 339101367c2SThomas Graf }; 340101367c2SThomas Graf 341101367c2SThomas Graf #endif 342101367c2SThomas Graf 343ebfa45f0SMartin KaFai Lau static void rt6_info_init(struct rt6_info *rt) 344ebfa45f0SMartin KaFai Lau { 345ebfa45f0SMartin KaFai Lau struct dst_entry *dst = &rt->dst; 346ebfa45f0SMartin KaFai Lau 347ebfa45f0SMartin KaFai Lau memset(dst + 1, 0, sizeof(*rt) - sizeof(*dst)); 348ebfa45f0SMartin KaFai Lau INIT_LIST_HEAD(&rt->rt6i_uncached); 349ebfa45f0SMartin KaFai Lau } 350ebfa45f0SMartin KaFai Lau 3511da177e4SLinus Torvalds /* allocate dst with ip6_dst_ops */ 35293531c67SDavid Ahern struct rt6_info *ip6_dst_alloc(struct net *net, struct net_device *dev, 353ad706862SMartin KaFai Lau int flags) 3541da177e4SLinus Torvalds { 35597bab73fSDavid S. Miller struct rt6_info *rt = dst_alloc(&net->ipv6.ip6_dst_ops, dev, 356b2a9c0edSWei Wang 1, DST_OBSOLETE_FORCE_CHK, flags); 357cf911662SDavid S. Miller 35881eb8447SWei Wang if (rt) { 359ebfa45f0SMartin KaFai Lau rt6_info_init(rt); 36081eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 36181eb8447SWei Wang } 3628104891bSSteffen Klassert 363cf911662SDavid S. Miller return rt; 3641da177e4SLinus Torvalds } 3659ab179d8SDavid Ahern EXPORT_SYMBOL(ip6_dst_alloc); 366d52d3997SMartin KaFai Lau 3671da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *dst) 3681da177e4SLinus Torvalds { 3691da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 370a68886a6SDavid Ahern struct fib6_info *from; 3718d0b94afSMartin KaFai Lau struct inet6_dev *idev; 3721da177e4SLinus Torvalds 3731620a336SDavid Ahern ip_dst_metrics_put(dst); 3748d0b94afSMartin KaFai Lau rt6_uncached_list_del(rt); 3758d0b94afSMartin KaFai Lau 3768d0b94afSMartin KaFai Lau idev = rt->rt6i_idev; 37738308473SDavid S. Miller if (idev) { 3781da177e4SLinus Torvalds rt->rt6i_idev = NULL; 3791da177e4SLinus Torvalds in6_dev_put(idev); 3801da177e4SLinus Torvalds } 3811716a961SGao feng 382a68886a6SDavid Ahern rcu_read_lock(); 383a68886a6SDavid Ahern from = rcu_dereference(rt->from); 384a68886a6SDavid Ahern rcu_assign_pointer(rt->from, NULL); 38593531c67SDavid Ahern fib6_info_release(from); 386a68886a6SDavid Ahern rcu_read_unlock(); 387b3419363SDavid S. Miller } 388b3419363SDavid S. Miller 3891da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev, 3901da177e4SLinus Torvalds int how) 3911da177e4SLinus Torvalds { 3921da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 3931da177e4SLinus Torvalds struct inet6_dev *idev = rt->rt6i_idev; 3945a3e55d6SDenis V. Lunev struct net_device *loopback_dev = 395c346dca1SYOSHIFUJI Hideaki dev_net(dev)->loopback_dev; 3961da177e4SLinus Torvalds 397e5645f51SWei Wang if (idev && idev->dev != loopback_dev) { 398e5645f51SWei Wang struct inet6_dev *loopback_idev = in6_dev_get(loopback_dev); 39938308473SDavid S. Miller if (loopback_idev) { 4001da177e4SLinus Torvalds rt->rt6i_idev = loopback_idev; 4011da177e4SLinus Torvalds in6_dev_put(idev); 4021da177e4SLinus Torvalds } 4031da177e4SLinus Torvalds } 40497cac082SDavid S. Miller } 4051da177e4SLinus Torvalds 4065973fb1eSMartin KaFai Lau static bool __rt6_check_expired(const struct rt6_info *rt) 4075973fb1eSMartin KaFai Lau { 4085973fb1eSMartin KaFai Lau if (rt->rt6i_flags & RTF_EXPIRES) 4095973fb1eSMartin KaFai Lau return time_after(jiffies, rt->dst.expires); 4105973fb1eSMartin KaFai Lau else 4115973fb1eSMartin KaFai Lau return false; 4125973fb1eSMartin KaFai Lau } 4135973fb1eSMartin KaFai Lau 414a50feda5SEric Dumazet static bool rt6_check_expired(const struct rt6_info *rt) 4151da177e4SLinus Torvalds { 416a68886a6SDavid Ahern struct fib6_info *from; 417a68886a6SDavid Ahern 418a68886a6SDavid Ahern from = rcu_dereference(rt->from); 419a68886a6SDavid Ahern 4201716a961SGao feng if (rt->rt6i_flags & RTF_EXPIRES) { 4211716a961SGao feng if (time_after(jiffies, rt->dst.expires)) 422a50feda5SEric Dumazet return true; 423a68886a6SDavid Ahern } else if (from) { 4241e2ea8adSXin Long return rt->dst.obsolete != DST_OBSOLETE_FORCE_CHK || 425a68886a6SDavid Ahern fib6_check_expired(from); 4261716a961SGao feng } 427a50feda5SEric Dumazet return false; 4281da177e4SLinus Torvalds } 4291da177e4SLinus Torvalds 4303b290a31SDavid Ahern struct fib6_info *fib6_multipath_select(const struct net *net, 4318d1c802bSDavid Ahern struct fib6_info *match, 43252bd4c0cSNicolas Dichtel struct flowi6 *fl6, int oif, 433b75cc8f9SDavid Ahern const struct sk_buff *skb, 43452bd4c0cSNicolas Dichtel int strict) 43551ebd318SNicolas Dichtel { 4368d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 43751ebd318SNicolas Dichtel 438b673d6ccSJakub Sitnicki /* We might have already computed the hash for ICMPv6 errors. In such 439b673d6ccSJakub Sitnicki * case it will always be non-zero. Otherwise now is the time to do it. 440b673d6ccSJakub Sitnicki */ 441b673d6ccSJakub Sitnicki if (!fl6->mp_hash) 442b4bac172SDavid Ahern fl6->mp_hash = rt6_multipath_hash(net, fl6, skb, NULL); 443b673d6ccSJakub Sitnicki 4445e670d84SDavid Ahern if (fl6->mp_hash <= atomic_read(&match->fib6_nh.nh_upper_bound)) 4453d709f69SIdo Schimmel return match; 446bbfcd776SIdo Schimmel 44793c2fb25SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, &match->fib6_siblings, 44893c2fb25SDavid Ahern fib6_siblings) { 4495e670d84SDavid Ahern int nh_upper_bound; 4505e670d84SDavid Ahern 4515e670d84SDavid Ahern nh_upper_bound = atomic_read(&sibling->fib6_nh.nh_upper_bound); 4525e670d84SDavid Ahern if (fl6->mp_hash > nh_upper_bound) 4533d709f69SIdo Schimmel continue; 45452bd4c0cSNicolas Dichtel if (rt6_score_route(sibling, oif, strict) < 0) 45552bd4c0cSNicolas Dichtel break; 45651ebd318SNicolas Dichtel match = sibling; 45751ebd318SNicolas Dichtel break; 45851ebd318SNicolas Dichtel } 4593d709f69SIdo Schimmel 46051ebd318SNicolas Dichtel return match; 46151ebd318SNicolas Dichtel } 46251ebd318SNicolas Dichtel 4631da177e4SLinus Torvalds /* 46466f5d6ceSWei Wang * Route lookup. rcu_read_lock() should be held. 4651da177e4SLinus Torvalds */ 4661da177e4SLinus Torvalds 4678d1c802bSDavid Ahern static inline struct fib6_info *rt6_device_match(struct net *net, 4688d1c802bSDavid Ahern struct fib6_info *rt, 469b71d1d42SEric Dumazet const struct in6_addr *saddr, 4701da177e4SLinus Torvalds int oif, 471d420895eSYOSHIFUJI Hideaki int flags) 4721da177e4SLinus Torvalds { 4738d1c802bSDavid Ahern struct fib6_info *sprt; 4741da177e4SLinus Torvalds 4755e670d84SDavid Ahern if (!oif && ipv6_addr_any(saddr) && 4765e670d84SDavid Ahern !(rt->fib6_nh.nh_flags & RTNH_F_DEAD)) 4778067bb8cSIdo Schimmel return rt; 478dd3abc4eSYOSHIFUJI Hideaki 4798fb11a9aSDavid Ahern for (sprt = rt; sprt; sprt = rcu_dereference(sprt->fib6_next)) { 4805e670d84SDavid Ahern const struct net_device *dev = sprt->fib6_nh.nh_dev; 481dd3abc4eSYOSHIFUJI Hideaki 4825e670d84SDavid Ahern if (sprt->fib6_nh.nh_flags & RTNH_F_DEAD) 4838067bb8cSIdo Schimmel continue; 4848067bb8cSIdo Schimmel 485dd3abc4eSYOSHIFUJI Hideaki if (oif) { 4861da177e4SLinus Torvalds if (dev->ifindex == oif) 4871da177e4SLinus Torvalds return sprt; 488dd3abc4eSYOSHIFUJI Hideaki } else { 489dd3abc4eSYOSHIFUJI Hideaki if (ipv6_chk_addr(net, saddr, dev, 490dd3abc4eSYOSHIFUJI Hideaki flags & RT6_LOOKUP_F_IFACE)) 491dd3abc4eSYOSHIFUJI Hideaki return sprt; 492dd3abc4eSYOSHIFUJI Hideaki } 4931da177e4SLinus Torvalds } 4941da177e4SLinus Torvalds 495eea68cd3SDavid Ahern if (oif && flags & RT6_LOOKUP_F_IFACE) 496421842edSDavid Ahern return net->ipv6.fib6_null_entry; 4971da177e4SLinus Torvalds 498421842edSDavid Ahern return rt->fib6_nh.nh_flags & RTNH_F_DEAD ? net->ipv6.fib6_null_entry : rt; 4991da177e4SLinus Torvalds } 5001da177e4SLinus Torvalds 50127097255SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 502c2f17e82SHannes Frederic Sowa struct __rt6_probe_work { 503c2f17e82SHannes Frederic Sowa struct work_struct work; 504c2f17e82SHannes Frederic Sowa struct in6_addr target; 505c2f17e82SHannes Frederic Sowa struct net_device *dev; 506c2f17e82SHannes Frederic Sowa }; 507c2f17e82SHannes Frederic Sowa 508c2f17e82SHannes Frederic Sowa static void rt6_probe_deferred(struct work_struct *w) 509c2f17e82SHannes Frederic Sowa { 510c2f17e82SHannes Frederic Sowa struct in6_addr mcaddr; 511c2f17e82SHannes Frederic Sowa struct __rt6_probe_work *work = 512c2f17e82SHannes Frederic Sowa container_of(w, struct __rt6_probe_work, work); 513c2f17e82SHannes Frederic Sowa 514c2f17e82SHannes Frederic Sowa addrconf_addr_solict_mult(&work->target, &mcaddr); 515adc176c5SErik Nordmark ndisc_send_ns(work->dev, &work->target, &mcaddr, NULL, 0); 516c2f17e82SHannes Frederic Sowa dev_put(work->dev); 517662f5533SMichael Büsch kfree(work); 518c2f17e82SHannes Frederic Sowa } 519c2f17e82SHannes Frederic Sowa 5208d1c802bSDavid Ahern static void rt6_probe(struct fib6_info *rt) 52127097255SYOSHIFUJI Hideaki { 522f547fac6SSabrina Dubroca struct __rt6_probe_work *work = NULL; 5235e670d84SDavid Ahern const struct in6_addr *nh_gw; 524f2c31e32SEric Dumazet struct neighbour *neigh; 5255e670d84SDavid Ahern struct net_device *dev; 526f547fac6SSabrina Dubroca struct inet6_dev *idev; 5275e670d84SDavid Ahern 52827097255SYOSHIFUJI Hideaki /* 52927097255SYOSHIFUJI Hideaki * Okay, this does not seem to be appropriate 53027097255SYOSHIFUJI Hideaki * for now, however, we need to check if it 53127097255SYOSHIFUJI Hideaki * is really so; aka Router Reachability Probing. 53227097255SYOSHIFUJI Hideaki * 53327097255SYOSHIFUJI Hideaki * Router Reachability Probe MUST be rate-limited 53427097255SYOSHIFUJI Hideaki * to no more than one per minute. 53527097255SYOSHIFUJI Hideaki */ 53693c2fb25SDavid Ahern if (!rt || !(rt->fib6_flags & RTF_GATEWAY)) 537fdd6681dSAmerigo Wang return; 5385e670d84SDavid Ahern 5395e670d84SDavid Ahern nh_gw = &rt->fib6_nh.nh_gw; 5405e670d84SDavid Ahern dev = rt->fib6_nh.nh_dev; 5412152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 542f547fac6SSabrina Dubroca idev = __in6_dev_get(dev); 5435e670d84SDavid Ahern neigh = __ipv6_neigh_lookup_noref(dev, nh_gw); 5442152caeaSYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 5458d6c31bfSMartin KaFai Lau if (neigh->nud_state & NUD_VALID) 5468d6c31bfSMartin KaFai Lau goto out; 5478d6c31bfSMartin KaFai Lau 5482152caeaSYOSHIFUJI Hideaki / 吉藤英明 write_lock(&neigh->lock); 549990edb42SMartin KaFai Lau if (!(neigh->nud_state & NUD_VALID) && 550990edb42SMartin KaFai Lau time_after(jiffies, 551dcd1f572SDavid Ahern neigh->updated + idev->cnf.rtr_probe_interval)) { 552c2f17e82SHannes Frederic Sowa work = kmalloc(sizeof(*work), GFP_ATOMIC); 553990edb42SMartin KaFai Lau if (work) 5547e980569SJiri Benc __neigh_set_probe_once(neigh); 555990edb42SMartin KaFai Lau } 556c2f17e82SHannes Frederic Sowa write_unlock(&neigh->lock); 557f547fac6SSabrina Dubroca } else if (time_after(jiffies, rt->last_probe + 558f547fac6SSabrina Dubroca idev->cnf.rtr_probe_interval)) { 559990edb42SMartin KaFai Lau work = kmalloc(sizeof(*work), GFP_ATOMIC); 560990edb42SMartin KaFai Lau } 561c2f17e82SHannes Frederic Sowa 562c2f17e82SHannes Frederic Sowa if (work) { 563f547fac6SSabrina Dubroca rt->last_probe = jiffies; 564c2f17e82SHannes Frederic Sowa INIT_WORK(&work->work, rt6_probe_deferred); 5655e670d84SDavid Ahern work->target = *nh_gw; 5665e670d84SDavid Ahern dev_hold(dev); 5675e670d84SDavid Ahern work->dev = dev; 568c2f17e82SHannes Frederic Sowa schedule_work(&work->work); 569c2f17e82SHannes Frederic Sowa } 570990edb42SMartin KaFai Lau 5718d6c31bfSMartin KaFai Lau out: 5722152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 573f2c31e32SEric Dumazet } 57427097255SYOSHIFUJI Hideaki #else 5758d1c802bSDavid Ahern static inline void rt6_probe(struct fib6_info *rt) 57627097255SYOSHIFUJI Hideaki { 57727097255SYOSHIFUJI Hideaki } 57827097255SYOSHIFUJI Hideaki #endif 57927097255SYOSHIFUJI Hideaki 5801da177e4SLinus Torvalds /* 581554cfb7eSYOSHIFUJI Hideaki * Default Router Selection (RFC 2461 6.3.6) 5821da177e4SLinus Torvalds */ 5838d1c802bSDavid Ahern static inline int rt6_check_dev(struct fib6_info *rt, int oif) 5841da177e4SLinus Torvalds { 5855e670d84SDavid Ahern const struct net_device *dev = rt->fib6_nh.nh_dev; 5865e670d84SDavid Ahern 587161980f4SDavid S. Miller if (!oif || dev->ifindex == oif) 588554cfb7eSYOSHIFUJI Hideaki return 2; 589554cfb7eSYOSHIFUJI Hideaki return 0; 5901da177e4SLinus Torvalds } 5911da177e4SLinus Torvalds 5928d1c802bSDavid Ahern static inline enum rt6_nud_state rt6_check_neigh(struct fib6_info *rt) 5931da177e4SLinus Torvalds { 594afc154e9SHannes Frederic Sowa enum rt6_nud_state ret = RT6_NUD_FAIL_HARD; 5955e670d84SDavid Ahern struct neighbour *neigh; 596f2c31e32SEric Dumazet 59793c2fb25SDavid Ahern if (rt->fib6_flags & RTF_NONEXTHOP || 59893c2fb25SDavid Ahern !(rt->fib6_flags & RTF_GATEWAY)) 599afc154e9SHannes Frederic Sowa return RT6_NUD_SUCCEED; 600145a3621SYOSHIFUJI Hideaki / 吉藤英明 601145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 6025e670d84SDavid Ahern neigh = __ipv6_neigh_lookup_noref(rt->fib6_nh.nh_dev, 6035e670d84SDavid Ahern &rt->fib6_nh.nh_gw); 604145a3621SYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 605145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_lock(&neigh->lock); 606554cfb7eSYOSHIFUJI Hideaki if (neigh->nud_state & NUD_VALID) 607afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 608398bcbebSYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 609a5a81f0bSPaul Marks else if (!(neigh->nud_state & NUD_FAILED)) 610afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 6117e980569SJiri Benc else 6127e980569SJiri Benc ret = RT6_NUD_FAIL_PROBE; 613398bcbebSYOSHIFUJI Hideaki #endif 614145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_unlock(&neigh->lock); 615afc154e9SHannes Frederic Sowa } else { 616afc154e9SHannes Frederic Sowa ret = IS_ENABLED(CONFIG_IPV6_ROUTER_PREF) ? 6177e980569SJiri Benc RT6_NUD_SUCCEED : RT6_NUD_FAIL_DO_RR; 618a5a81f0bSPaul Marks } 619145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 620145a3621SYOSHIFUJI Hideaki / 吉藤英明 621a5a81f0bSPaul Marks return ret; 6221da177e4SLinus Torvalds } 6231da177e4SLinus Torvalds 6248d1c802bSDavid Ahern static int rt6_score_route(struct fib6_info *rt, int oif, int strict) 625554cfb7eSYOSHIFUJI Hideaki { 626a5a81f0bSPaul Marks int m; 6274d0c5911SYOSHIFUJI Hideaki 6284d0c5911SYOSHIFUJI Hideaki m = rt6_check_dev(rt, oif); 62977d16f45SYOSHIFUJI Hideaki if (!m && (strict & RT6_LOOKUP_F_IFACE)) 630afc154e9SHannes Frederic Sowa return RT6_NUD_FAIL_HARD; 631ebacaaa0SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 63293c2fb25SDavid Ahern m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(rt->fib6_flags)) << 2; 633ebacaaa0SYOSHIFUJI Hideaki #endif 634afc154e9SHannes Frederic Sowa if (strict & RT6_LOOKUP_F_REACHABLE) { 635afc154e9SHannes Frederic Sowa int n = rt6_check_neigh(rt); 636afc154e9SHannes Frederic Sowa if (n < 0) 637afc154e9SHannes Frederic Sowa return n; 638afc154e9SHannes Frederic Sowa } 639554cfb7eSYOSHIFUJI Hideaki return m; 640554cfb7eSYOSHIFUJI Hideaki } 641554cfb7eSYOSHIFUJI Hideaki 642dcd1f572SDavid Ahern /* called with rc_read_lock held */ 643dcd1f572SDavid Ahern static inline bool fib6_ignore_linkdown(const struct fib6_info *f6i) 644dcd1f572SDavid Ahern { 645dcd1f572SDavid Ahern const struct net_device *dev = fib6_info_nh_dev(f6i); 646dcd1f572SDavid Ahern bool rc = false; 647dcd1f572SDavid Ahern 648dcd1f572SDavid Ahern if (dev) { 649dcd1f572SDavid Ahern const struct inet6_dev *idev = __in6_dev_get(dev); 650dcd1f572SDavid Ahern 651dcd1f572SDavid Ahern rc = !!idev->cnf.ignore_routes_with_linkdown; 652dcd1f572SDavid Ahern } 653dcd1f572SDavid Ahern 654dcd1f572SDavid Ahern return rc; 655dcd1f572SDavid Ahern } 656dcd1f572SDavid Ahern 6578d1c802bSDavid Ahern static struct fib6_info *find_match(struct fib6_info *rt, int oif, int strict, 6588d1c802bSDavid Ahern int *mpri, struct fib6_info *match, 659afc154e9SHannes Frederic Sowa bool *do_rr) 660554cfb7eSYOSHIFUJI Hideaki { 661554cfb7eSYOSHIFUJI Hideaki int m; 662afc154e9SHannes Frederic Sowa bool match_do_rr = false; 66335103d11SAndy Gospodarek 6645e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_DEAD) 6658067bb8cSIdo Schimmel goto out; 6668067bb8cSIdo Schimmel 667dcd1f572SDavid Ahern if (fib6_ignore_linkdown(rt) && 6685e670d84SDavid Ahern rt->fib6_nh.nh_flags & RTNH_F_LINKDOWN && 669d5d32e4bSDavid Ahern !(strict & RT6_LOOKUP_F_IGNORE_LINKSTATE)) 67035103d11SAndy Gospodarek goto out; 671554cfb7eSYOSHIFUJI Hideaki 67214895687SDavid Ahern if (fib6_check_expired(rt)) 673f11e6659SDavid S. Miller goto out; 674554cfb7eSYOSHIFUJI Hideaki 675554cfb7eSYOSHIFUJI Hideaki m = rt6_score_route(rt, oif, strict); 6767e980569SJiri Benc if (m == RT6_NUD_FAIL_DO_RR) { 677afc154e9SHannes Frederic Sowa match_do_rr = true; 678afc154e9SHannes Frederic Sowa m = 0; /* lowest valid score */ 6797e980569SJiri Benc } else if (m == RT6_NUD_FAIL_HARD) { 680f11e6659SDavid S. Miller goto out; 6811da177e4SLinus Torvalds } 682f11e6659SDavid S. Miller 683afc154e9SHannes Frederic Sowa if (strict & RT6_LOOKUP_F_REACHABLE) 684afc154e9SHannes Frederic Sowa rt6_probe(rt); 685afc154e9SHannes Frederic Sowa 6867e980569SJiri Benc /* note that m can be RT6_NUD_FAIL_PROBE at this point */ 687afc154e9SHannes Frederic Sowa if (m > *mpri) { 688afc154e9SHannes Frederic Sowa *do_rr = match_do_rr; 689afc154e9SHannes Frederic Sowa *mpri = m; 690afc154e9SHannes Frederic Sowa match = rt; 691afc154e9SHannes Frederic Sowa } 692f11e6659SDavid S. Miller out: 693f11e6659SDavid S. Miller return match; 6941da177e4SLinus Torvalds } 6951da177e4SLinus Torvalds 6968d1c802bSDavid Ahern static struct fib6_info *find_rr_leaf(struct fib6_node *fn, 6978d1c802bSDavid Ahern struct fib6_info *leaf, 6988d1c802bSDavid Ahern struct fib6_info *rr_head, 699afc154e9SHannes Frederic Sowa u32 metric, int oif, int strict, 700afc154e9SHannes Frederic Sowa bool *do_rr) 701f11e6659SDavid S. Miller { 7028d1c802bSDavid Ahern struct fib6_info *rt, *match, *cont; 703f11e6659SDavid S. Miller int mpri = -1; 704f11e6659SDavid S. Miller 705f11e6659SDavid S. Miller match = NULL; 7069fbdcfafSSteffen Klassert cont = NULL; 7078fb11a9aSDavid Ahern for (rt = rr_head; rt; rt = rcu_dereference(rt->fib6_next)) { 70893c2fb25SDavid Ahern if (rt->fib6_metric != metric) { 7099fbdcfafSSteffen Klassert cont = rt; 7109fbdcfafSSteffen Klassert break; 7119fbdcfafSSteffen Klassert } 7129fbdcfafSSteffen Klassert 713afc154e9SHannes Frederic Sowa match = find_match(rt, oif, strict, &mpri, match, do_rr); 7149fbdcfafSSteffen Klassert } 7159fbdcfafSSteffen Klassert 71666f5d6ceSWei Wang for (rt = leaf; rt && rt != rr_head; 7178fb11a9aSDavid Ahern rt = rcu_dereference(rt->fib6_next)) { 71893c2fb25SDavid Ahern if (rt->fib6_metric != metric) { 7199fbdcfafSSteffen Klassert cont = rt; 7209fbdcfafSSteffen Klassert break; 7219fbdcfafSSteffen Klassert } 7229fbdcfafSSteffen Klassert 7239fbdcfafSSteffen Klassert match = find_match(rt, oif, strict, &mpri, match, do_rr); 7249fbdcfafSSteffen Klassert } 7259fbdcfafSSteffen Klassert 7269fbdcfafSSteffen Klassert if (match || !cont) 7279fbdcfafSSteffen Klassert return match; 7289fbdcfafSSteffen Klassert 7298fb11a9aSDavid Ahern for (rt = cont; rt; rt = rcu_dereference(rt->fib6_next)) 730afc154e9SHannes Frederic Sowa match = find_match(rt, oif, strict, &mpri, match, do_rr); 731f11e6659SDavid S. Miller 732f11e6659SDavid S. Miller return match; 733f11e6659SDavid S. Miller } 734f11e6659SDavid S. Miller 7358d1c802bSDavid Ahern static struct fib6_info *rt6_select(struct net *net, struct fib6_node *fn, 7368d1040e8SWei Wang int oif, int strict) 737f11e6659SDavid S. Miller { 7388d1c802bSDavid Ahern struct fib6_info *leaf = rcu_dereference(fn->leaf); 7398d1c802bSDavid Ahern struct fib6_info *match, *rt0; 740afc154e9SHannes Frederic Sowa bool do_rr = false; 74117ecf590SWei Wang int key_plen; 742f11e6659SDavid S. Miller 743421842edSDavid Ahern if (!leaf || leaf == net->ipv6.fib6_null_entry) 744421842edSDavid Ahern return net->ipv6.fib6_null_entry; 7458d1040e8SWei Wang 74666f5d6ceSWei Wang rt0 = rcu_dereference(fn->rr_ptr); 747f11e6659SDavid S. Miller if (!rt0) 74866f5d6ceSWei Wang rt0 = leaf; 749f11e6659SDavid S. Miller 75017ecf590SWei Wang /* Double check to make sure fn is not an intermediate node 75117ecf590SWei Wang * and fn->leaf does not points to its child's leaf 75217ecf590SWei Wang * (This might happen if all routes under fn are deleted from 75317ecf590SWei Wang * the tree and fib6_repair_tree() is called on the node.) 75417ecf590SWei Wang */ 75593c2fb25SDavid Ahern key_plen = rt0->fib6_dst.plen; 75617ecf590SWei Wang #ifdef CONFIG_IPV6_SUBTREES 75793c2fb25SDavid Ahern if (rt0->fib6_src.plen) 75893c2fb25SDavid Ahern key_plen = rt0->fib6_src.plen; 75917ecf590SWei Wang #endif 76017ecf590SWei Wang if (fn->fn_bit != key_plen) 761421842edSDavid Ahern return net->ipv6.fib6_null_entry; 76217ecf590SWei Wang 76393c2fb25SDavid Ahern match = find_rr_leaf(fn, leaf, rt0, rt0->fib6_metric, oif, strict, 764afc154e9SHannes Frederic Sowa &do_rr); 765f11e6659SDavid S. Miller 766afc154e9SHannes Frederic Sowa if (do_rr) { 7678fb11a9aSDavid Ahern struct fib6_info *next = rcu_dereference(rt0->fib6_next); 768f11e6659SDavid S. Miller 769554cfb7eSYOSHIFUJI Hideaki /* no entries matched; do round-robin */ 77093c2fb25SDavid Ahern if (!next || next->fib6_metric != rt0->fib6_metric) 7718d1040e8SWei Wang next = leaf; 772f11e6659SDavid S. Miller 77366f5d6ceSWei Wang if (next != rt0) { 77493c2fb25SDavid Ahern spin_lock_bh(&leaf->fib6_table->tb6_lock); 77566f5d6ceSWei Wang /* make sure next is not being deleted from the tree */ 77693c2fb25SDavid Ahern if (next->fib6_node) 77766f5d6ceSWei Wang rcu_assign_pointer(fn->rr_ptr, next); 77893c2fb25SDavid Ahern spin_unlock_bh(&leaf->fib6_table->tb6_lock); 77966f5d6ceSWei Wang } 780554cfb7eSYOSHIFUJI Hideaki } 781554cfb7eSYOSHIFUJI Hideaki 782421842edSDavid Ahern return match ? match : net->ipv6.fib6_null_entry; 7831da177e4SLinus Torvalds } 7841da177e4SLinus Torvalds 7858d1c802bSDavid Ahern static bool rt6_is_gw_or_nonexthop(const struct fib6_info *rt) 7868b9df265SMartin KaFai Lau { 78793c2fb25SDavid Ahern return (rt->fib6_flags & (RTF_NONEXTHOP | RTF_GATEWAY)); 7888b9df265SMartin KaFai Lau } 7898b9df265SMartin KaFai Lau 79070ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 79170ceb4f5SYOSHIFUJI Hideaki int rt6_route_rcv(struct net_device *dev, u8 *opt, int len, 792b71d1d42SEric Dumazet const struct in6_addr *gwaddr) 79370ceb4f5SYOSHIFUJI Hideaki { 794c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 79570ceb4f5SYOSHIFUJI Hideaki struct route_info *rinfo = (struct route_info *) opt; 79670ceb4f5SYOSHIFUJI Hideaki struct in6_addr prefix_buf, *prefix; 79770ceb4f5SYOSHIFUJI Hideaki unsigned int pref; 7984bed72e4SYOSHIFUJI Hideaki unsigned long lifetime; 7998d1c802bSDavid Ahern struct fib6_info *rt; 80070ceb4f5SYOSHIFUJI Hideaki 80170ceb4f5SYOSHIFUJI Hideaki if (len < sizeof(struct route_info)) { 80270ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 80370ceb4f5SYOSHIFUJI Hideaki } 80470ceb4f5SYOSHIFUJI Hideaki 80570ceb4f5SYOSHIFUJI Hideaki /* Sanity check for prefix_len and length */ 80670ceb4f5SYOSHIFUJI Hideaki if (rinfo->length > 3) { 80770ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 80870ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 128) { 80970ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 81070ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 64) { 81170ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 2) { 81270ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 81370ceb4f5SYOSHIFUJI Hideaki } 81470ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 0) { 81570ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 1) { 81670ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 81770ceb4f5SYOSHIFUJI Hideaki } 81870ceb4f5SYOSHIFUJI Hideaki } 81970ceb4f5SYOSHIFUJI Hideaki 82070ceb4f5SYOSHIFUJI Hideaki pref = rinfo->route_pref; 82170ceb4f5SYOSHIFUJI Hideaki if (pref == ICMPV6_ROUTER_PREF_INVALID) 8223933fc95SJens Rosenboom return -EINVAL; 82370ceb4f5SYOSHIFUJI Hideaki 8244bed72e4SYOSHIFUJI Hideaki lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ); 82570ceb4f5SYOSHIFUJI Hideaki 82670ceb4f5SYOSHIFUJI Hideaki if (rinfo->length == 3) 82770ceb4f5SYOSHIFUJI Hideaki prefix = (struct in6_addr *)rinfo->prefix; 82870ceb4f5SYOSHIFUJI Hideaki else { 82970ceb4f5SYOSHIFUJI Hideaki /* this function is safe */ 83070ceb4f5SYOSHIFUJI Hideaki ipv6_addr_prefix(&prefix_buf, 83170ceb4f5SYOSHIFUJI Hideaki (struct in6_addr *)rinfo->prefix, 83270ceb4f5SYOSHIFUJI Hideaki rinfo->prefix_len); 83370ceb4f5SYOSHIFUJI Hideaki prefix = &prefix_buf; 83470ceb4f5SYOSHIFUJI Hideaki } 83570ceb4f5SYOSHIFUJI Hideaki 836f104a567SDuan Jiong if (rinfo->prefix_len == 0) 837afb1d4b5SDavid Ahern rt = rt6_get_dflt_router(net, gwaddr, dev); 838f104a567SDuan Jiong else 839f104a567SDuan Jiong rt = rt6_get_route_info(net, prefix, rinfo->prefix_len, 840830218c1SDavid Ahern gwaddr, dev); 84170ceb4f5SYOSHIFUJI Hideaki 84270ceb4f5SYOSHIFUJI Hideaki if (rt && !lifetime) { 843afb1d4b5SDavid Ahern ip6_del_rt(net, rt); 84470ceb4f5SYOSHIFUJI Hideaki rt = NULL; 84570ceb4f5SYOSHIFUJI Hideaki } 84670ceb4f5SYOSHIFUJI Hideaki 84770ceb4f5SYOSHIFUJI Hideaki if (!rt && lifetime) 848830218c1SDavid Ahern rt = rt6_add_route_info(net, prefix, rinfo->prefix_len, gwaddr, 849830218c1SDavid Ahern dev, pref); 85070ceb4f5SYOSHIFUJI Hideaki else if (rt) 85193c2fb25SDavid Ahern rt->fib6_flags = RTF_ROUTEINFO | 85293c2fb25SDavid Ahern (rt->fib6_flags & ~RTF_PREF_MASK) | RTF_PREF(pref); 85370ceb4f5SYOSHIFUJI Hideaki 85470ceb4f5SYOSHIFUJI Hideaki if (rt) { 8551716a961SGao feng if (!addrconf_finite_timeout(lifetime)) 85614895687SDavid Ahern fib6_clean_expires(rt); 8571716a961SGao feng else 85814895687SDavid Ahern fib6_set_expires(rt, jiffies + HZ * lifetime); 8591716a961SGao feng 86093531c67SDavid Ahern fib6_info_release(rt); 86170ceb4f5SYOSHIFUJI Hideaki } 86270ceb4f5SYOSHIFUJI Hideaki return 0; 86370ceb4f5SYOSHIFUJI Hideaki } 86470ceb4f5SYOSHIFUJI Hideaki #endif 86570ceb4f5SYOSHIFUJI Hideaki 866ae90d867SDavid Ahern /* 867ae90d867SDavid Ahern * Misc support functions 868ae90d867SDavid Ahern */ 869ae90d867SDavid Ahern 870ae90d867SDavid Ahern /* called with rcu_lock held */ 8718d1c802bSDavid Ahern static struct net_device *ip6_rt_get_dev_rcu(struct fib6_info *rt) 872ae90d867SDavid Ahern { 8735e670d84SDavid Ahern struct net_device *dev = rt->fib6_nh.nh_dev; 874ae90d867SDavid Ahern 87593c2fb25SDavid Ahern if (rt->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) { 876ae90d867SDavid Ahern /* for copies of local routes, dst->dev needs to be the 877ae90d867SDavid Ahern * device if it is a master device, the master device if 878ae90d867SDavid Ahern * device is enslaved, and the loopback as the default 879ae90d867SDavid Ahern */ 880ae90d867SDavid Ahern if (netif_is_l3_slave(dev) && 88193c2fb25SDavid Ahern !rt6_need_strict(&rt->fib6_dst.addr)) 882ae90d867SDavid Ahern dev = l3mdev_master_dev_rcu(dev); 883ae90d867SDavid Ahern else if (!netif_is_l3_master(dev)) 884ae90d867SDavid Ahern dev = dev_net(dev)->loopback_dev; 885ae90d867SDavid Ahern /* last case is netif_is_l3_master(dev) is true in which 886ae90d867SDavid Ahern * case we want dev returned to be dev 887ae90d867SDavid Ahern */ 888ae90d867SDavid Ahern } 889ae90d867SDavid Ahern 890ae90d867SDavid Ahern return dev; 891ae90d867SDavid Ahern } 892ae90d867SDavid Ahern 8936edb3c96SDavid Ahern static const int fib6_prop[RTN_MAX + 1] = { 8946edb3c96SDavid Ahern [RTN_UNSPEC] = 0, 8956edb3c96SDavid Ahern [RTN_UNICAST] = 0, 8966edb3c96SDavid Ahern [RTN_LOCAL] = 0, 8976edb3c96SDavid Ahern [RTN_BROADCAST] = 0, 8986edb3c96SDavid Ahern [RTN_ANYCAST] = 0, 8996edb3c96SDavid Ahern [RTN_MULTICAST] = 0, 9006edb3c96SDavid Ahern [RTN_BLACKHOLE] = -EINVAL, 9016edb3c96SDavid Ahern [RTN_UNREACHABLE] = -EHOSTUNREACH, 9026edb3c96SDavid Ahern [RTN_PROHIBIT] = -EACCES, 9036edb3c96SDavid Ahern [RTN_THROW] = -EAGAIN, 9046edb3c96SDavid Ahern [RTN_NAT] = -EINVAL, 9056edb3c96SDavid Ahern [RTN_XRESOLVE] = -EINVAL, 9066edb3c96SDavid Ahern }; 9076edb3c96SDavid Ahern 9086edb3c96SDavid Ahern static int ip6_rt_type_to_error(u8 fib6_type) 9096edb3c96SDavid Ahern { 9106edb3c96SDavid Ahern return fib6_prop[fib6_type]; 9116edb3c96SDavid Ahern } 9126edb3c96SDavid Ahern 9138d1c802bSDavid Ahern static unsigned short fib6_info_dst_flags(struct fib6_info *rt) 9143b6761d1SDavid Ahern { 9153b6761d1SDavid Ahern unsigned short flags = 0; 9163b6761d1SDavid Ahern 9173b6761d1SDavid Ahern if (rt->dst_nocount) 9183b6761d1SDavid Ahern flags |= DST_NOCOUNT; 9193b6761d1SDavid Ahern if (rt->dst_nopolicy) 9203b6761d1SDavid Ahern flags |= DST_NOPOLICY; 9213b6761d1SDavid Ahern if (rt->dst_host) 9223b6761d1SDavid Ahern flags |= DST_HOST; 9233b6761d1SDavid Ahern 9243b6761d1SDavid Ahern return flags; 9253b6761d1SDavid Ahern } 9263b6761d1SDavid Ahern 9278d1c802bSDavid Ahern static void ip6_rt_init_dst_reject(struct rt6_info *rt, struct fib6_info *ort) 9286edb3c96SDavid Ahern { 9296edb3c96SDavid Ahern rt->dst.error = ip6_rt_type_to_error(ort->fib6_type); 9306edb3c96SDavid Ahern 9316edb3c96SDavid Ahern switch (ort->fib6_type) { 9326edb3c96SDavid Ahern case RTN_BLACKHOLE: 9336edb3c96SDavid Ahern rt->dst.output = dst_discard_out; 9346edb3c96SDavid Ahern rt->dst.input = dst_discard; 9356edb3c96SDavid Ahern break; 9366edb3c96SDavid Ahern case RTN_PROHIBIT: 9376edb3c96SDavid Ahern rt->dst.output = ip6_pkt_prohibit_out; 9386edb3c96SDavid Ahern rt->dst.input = ip6_pkt_prohibit; 9396edb3c96SDavid Ahern break; 9406edb3c96SDavid Ahern case RTN_THROW: 9416edb3c96SDavid Ahern case RTN_UNREACHABLE: 9426edb3c96SDavid Ahern default: 9436edb3c96SDavid Ahern rt->dst.output = ip6_pkt_discard_out; 9446edb3c96SDavid Ahern rt->dst.input = ip6_pkt_discard; 9456edb3c96SDavid Ahern break; 9466edb3c96SDavid Ahern } 9476edb3c96SDavid Ahern } 9486edb3c96SDavid Ahern 9498d1c802bSDavid Ahern static void ip6_rt_init_dst(struct rt6_info *rt, struct fib6_info *ort) 9506edb3c96SDavid Ahern { 95193c2fb25SDavid Ahern if (ort->fib6_flags & RTF_REJECT) { 9526edb3c96SDavid Ahern ip6_rt_init_dst_reject(rt, ort); 9536edb3c96SDavid Ahern return; 9546edb3c96SDavid Ahern } 9556edb3c96SDavid Ahern 9566edb3c96SDavid Ahern rt->dst.error = 0; 9576edb3c96SDavid Ahern rt->dst.output = ip6_output; 9586edb3c96SDavid Ahern 959d23c4b63SHangbin Liu if (ort->fib6_type == RTN_LOCAL || ort->fib6_type == RTN_ANYCAST) { 9606edb3c96SDavid Ahern rt->dst.input = ip6_input; 96193c2fb25SDavid Ahern } else if (ipv6_addr_type(&ort->fib6_dst.addr) & IPV6_ADDR_MULTICAST) { 9626edb3c96SDavid Ahern rt->dst.input = ip6_mc_input; 9636edb3c96SDavid Ahern } else { 9646edb3c96SDavid Ahern rt->dst.input = ip6_forward; 9656edb3c96SDavid Ahern } 9666edb3c96SDavid Ahern 9676edb3c96SDavid Ahern if (ort->fib6_nh.nh_lwtstate) { 9686edb3c96SDavid Ahern rt->dst.lwtstate = lwtstate_get(ort->fib6_nh.nh_lwtstate); 9696edb3c96SDavid Ahern lwtunnel_set_redirect(&rt->dst); 9706edb3c96SDavid Ahern } 9716edb3c96SDavid Ahern 9726edb3c96SDavid Ahern rt->dst.lastuse = jiffies; 9736edb3c96SDavid Ahern } 9746edb3c96SDavid Ahern 975e873e4b9SWei Wang /* Caller must already hold reference to @from */ 9768d1c802bSDavid Ahern static void rt6_set_from(struct rt6_info *rt, struct fib6_info *from) 977ae90d867SDavid Ahern { 978ae90d867SDavid Ahern rt->rt6i_flags &= ~RTF_EXPIRES; 979a68886a6SDavid Ahern rcu_assign_pointer(rt->from, from); 980e1255ed4SDavid Ahern ip_dst_init_metrics(&rt->dst, from->fib6_metrics); 981ae90d867SDavid Ahern } 982ae90d867SDavid Ahern 983e873e4b9SWei Wang /* Caller must already hold reference to @ort */ 9848d1c802bSDavid Ahern static void ip6_rt_copy_init(struct rt6_info *rt, struct fib6_info *ort) 985ae90d867SDavid Ahern { 986dcd1f572SDavid Ahern struct net_device *dev = fib6_info_nh_dev(ort); 987dcd1f572SDavid Ahern 9886edb3c96SDavid Ahern ip6_rt_init_dst(rt, ort); 9896edb3c96SDavid Ahern 99093c2fb25SDavid Ahern rt->rt6i_dst = ort->fib6_dst; 991dcd1f572SDavid Ahern rt->rt6i_idev = dev ? in6_dev_get(dev) : NULL; 9925e670d84SDavid Ahern rt->rt6i_gateway = ort->fib6_nh.nh_gw; 99393c2fb25SDavid Ahern rt->rt6i_flags = ort->fib6_flags; 994ae90d867SDavid Ahern rt6_set_from(rt, ort); 995ae90d867SDavid Ahern #ifdef CONFIG_IPV6_SUBTREES 99693c2fb25SDavid Ahern rt->rt6i_src = ort->fib6_src; 997ae90d867SDavid Ahern #endif 998ae90d867SDavid Ahern } 999ae90d867SDavid Ahern 1000a3c00e46SMartin KaFai Lau static struct fib6_node* fib6_backtrack(struct fib6_node *fn, 1001a3c00e46SMartin KaFai Lau struct in6_addr *saddr) 1002a3c00e46SMartin KaFai Lau { 100366f5d6ceSWei Wang struct fib6_node *pn, *sn; 1004a3c00e46SMartin KaFai Lau while (1) { 1005a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_TL_ROOT) 1006a3c00e46SMartin KaFai Lau return NULL; 100766f5d6ceSWei Wang pn = rcu_dereference(fn->parent); 100866f5d6ceSWei Wang sn = FIB6_SUBTREE(pn); 100966f5d6ceSWei Wang if (sn && sn != fn) 10106454743bSDavid Ahern fn = fib6_node_lookup(sn, NULL, saddr); 1011a3c00e46SMartin KaFai Lau else 1012a3c00e46SMartin KaFai Lau fn = pn; 1013a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_RTINFO) 1014a3c00e46SMartin KaFai Lau return fn; 1015a3c00e46SMartin KaFai Lau } 1016a3c00e46SMartin KaFai Lau } 1017c71099acSThomas Graf 101810585b43SDavid Ahern static bool ip6_hold_safe(struct net *net, struct rt6_info **prt) 1019d3843fe5SWei Wang { 1020d3843fe5SWei Wang struct rt6_info *rt = *prt; 1021d3843fe5SWei Wang 1022d3843fe5SWei Wang if (dst_hold_safe(&rt->dst)) 1023d3843fe5SWei Wang return true; 102410585b43SDavid Ahern if (net) { 1025d3843fe5SWei Wang rt = net->ipv6.ip6_null_entry; 1026d3843fe5SWei Wang dst_hold(&rt->dst); 1027d3843fe5SWei Wang } else { 1028d3843fe5SWei Wang rt = NULL; 1029d3843fe5SWei Wang } 1030d3843fe5SWei Wang *prt = rt; 1031d3843fe5SWei Wang return false; 1032d3843fe5SWei Wang } 1033d3843fe5SWei Wang 1034dec9b0e2SDavid Ahern /* called with rcu_lock held */ 10358d1c802bSDavid Ahern static struct rt6_info *ip6_create_rt_rcu(struct fib6_info *rt) 1036dec9b0e2SDavid Ahern { 10373b6761d1SDavid Ahern unsigned short flags = fib6_info_dst_flags(rt); 1038dec9b0e2SDavid Ahern struct net_device *dev = rt->fib6_nh.nh_dev; 1039dec9b0e2SDavid Ahern struct rt6_info *nrt; 1040dec9b0e2SDavid Ahern 1041e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 10421c87e79aSXin Long goto fallback; 1043e873e4b9SWei Wang 104493531c67SDavid Ahern nrt = ip6_dst_alloc(dev_net(dev), dev, flags); 10451c87e79aSXin Long if (!nrt) { 1046e873e4b9SWei Wang fib6_info_release(rt); 10471c87e79aSXin Long goto fallback; 10481c87e79aSXin Long } 1049dec9b0e2SDavid Ahern 10501c87e79aSXin Long ip6_rt_copy_init(nrt, rt); 10511c87e79aSXin Long return nrt; 10521c87e79aSXin Long 10531c87e79aSXin Long fallback: 10541c87e79aSXin Long nrt = dev_net(dev)->ipv6.ip6_null_entry; 10551c87e79aSXin Long dst_hold(&nrt->dst); 1056dec9b0e2SDavid Ahern return nrt; 1057dec9b0e2SDavid Ahern } 1058dec9b0e2SDavid Ahern 10598ed67789SDaniel Lezcano static struct rt6_info *ip6_pol_route_lookup(struct net *net, 10608ed67789SDaniel Lezcano struct fib6_table *table, 1061b75cc8f9SDavid Ahern struct flowi6 *fl6, 1062b75cc8f9SDavid Ahern const struct sk_buff *skb, 1063b75cc8f9SDavid Ahern int flags) 10641da177e4SLinus Torvalds { 10658d1c802bSDavid Ahern struct fib6_info *f6i; 10661da177e4SLinus Torvalds struct fib6_node *fn; 106723fb93a4SDavid Ahern struct rt6_info *rt; 10681da177e4SLinus Torvalds 1069b6cdbc85SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1070b6cdbc85SDavid Ahern flags &= ~RT6_LOOKUP_F_IFACE; 1071b6cdbc85SDavid Ahern 107266f5d6ceSWei Wang rcu_read_lock(); 10736454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1074c71099acSThomas Graf restart: 107523fb93a4SDavid Ahern f6i = rcu_dereference(fn->leaf); 107623fb93a4SDavid Ahern if (!f6i) { 107723fb93a4SDavid Ahern f6i = net->ipv6.fib6_null_entry; 107866f5d6ceSWei Wang } else { 107923fb93a4SDavid Ahern f6i = rt6_device_match(net, f6i, &fl6->saddr, 108066f5d6ceSWei Wang fl6->flowi6_oif, flags); 108193c2fb25SDavid Ahern if (f6i->fib6_nsiblings && fl6->flowi6_oif == 0) 10823b290a31SDavid Ahern f6i = fib6_multipath_select(net, f6i, fl6, 10833b290a31SDavid Ahern fl6->flowi6_oif, skb, 10843b290a31SDavid Ahern flags); 108566f5d6ceSWei Wang } 108623fb93a4SDavid Ahern if (f6i == net->ipv6.fib6_null_entry) { 1087a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1088a3c00e46SMartin KaFai Lau if (fn) 1089a3c00e46SMartin KaFai Lau goto restart; 1090a3c00e46SMartin KaFai Lau } 10912b760fcfSWei Wang 1092d4bea421SDavid Ahern trace_fib6_table_lookup(net, f6i, table, fl6); 1093d4bea421SDavid Ahern 10944c9483b2SDavid S. Miller /* Search through exception table */ 109523fb93a4SDavid Ahern rt = rt6_find_cached_rt(f6i, &fl6->daddr, &fl6->saddr); 109623fb93a4SDavid Ahern if (rt) { 109710585b43SDavid Ahern if (ip6_hold_safe(net, &rt)) 1098d3843fe5SWei Wang dst_use_noref(&rt->dst, jiffies); 109923fb93a4SDavid Ahern } else if (f6i == net->ipv6.fib6_null_entry) { 1100dec9b0e2SDavid Ahern rt = net->ipv6.ip6_null_entry; 1101dec9b0e2SDavid Ahern dst_hold(&rt->dst); 110223fb93a4SDavid Ahern } else { 110323fb93a4SDavid Ahern rt = ip6_create_rt_rcu(f6i); 1104dec9b0e2SDavid Ahern } 1105d3843fe5SWei Wang 110666f5d6ceSWei Wang rcu_read_unlock(); 1107b811580dSDavid Ahern 11081da177e4SLinus Torvalds return rt; 1109c71099acSThomas Graf } 1110c71099acSThomas Graf 1111ea6e574eSFlorian Westphal struct dst_entry *ip6_route_lookup(struct net *net, struct flowi6 *fl6, 1112b75cc8f9SDavid Ahern const struct sk_buff *skb, int flags) 1113ea6e574eSFlorian Westphal { 1114b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_lookup); 1115ea6e574eSFlorian Westphal } 1116ea6e574eSFlorian Westphal EXPORT_SYMBOL_GPL(ip6_route_lookup); 1117ea6e574eSFlorian Westphal 11189acd9f3aSYOSHIFUJI Hideaki struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr, 1119b75cc8f9SDavid Ahern const struct in6_addr *saddr, int oif, 1120b75cc8f9SDavid Ahern const struct sk_buff *skb, int strict) 1121c71099acSThomas Graf { 11224c9483b2SDavid S. Miller struct flowi6 fl6 = { 11234c9483b2SDavid S. Miller .flowi6_oif = oif, 11244c9483b2SDavid S. Miller .daddr = *daddr, 1125c71099acSThomas Graf }; 1126c71099acSThomas Graf struct dst_entry *dst; 112777d16f45SYOSHIFUJI Hideaki int flags = strict ? RT6_LOOKUP_F_IFACE : 0; 1128c71099acSThomas Graf 1129adaa70bbSThomas Graf if (saddr) { 11304c9483b2SDavid S. Miller memcpy(&fl6.saddr, saddr, sizeof(*saddr)); 1131adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 1132adaa70bbSThomas Graf } 1133adaa70bbSThomas Graf 1134b75cc8f9SDavid Ahern dst = fib6_rule_lookup(net, &fl6, skb, flags, ip6_pol_route_lookup); 1135c71099acSThomas Graf if (dst->error == 0) 1136c71099acSThomas Graf return (struct rt6_info *) dst; 1137c71099acSThomas Graf 1138c71099acSThomas Graf dst_release(dst); 1139c71099acSThomas Graf 11401da177e4SLinus Torvalds return NULL; 11411da177e4SLinus Torvalds } 11427159039aSYOSHIFUJI Hideaki EXPORT_SYMBOL(rt6_lookup); 11437159039aSYOSHIFUJI Hideaki 1144c71099acSThomas Graf /* ip6_ins_rt is called with FREE table->tb6_lock. 11451cfb71eeSWei Wang * It takes new route entry, the addition fails by any reason the 11461cfb71eeSWei Wang * route is released. 11471cfb71eeSWei Wang * Caller must hold dst before calling it. 11481da177e4SLinus Torvalds */ 11491da177e4SLinus Torvalds 11508d1c802bSDavid Ahern static int __ip6_ins_rt(struct fib6_info *rt, struct nl_info *info, 1151333c4301SDavid Ahern struct netlink_ext_ack *extack) 11521da177e4SLinus Torvalds { 11531da177e4SLinus Torvalds int err; 1154c71099acSThomas Graf struct fib6_table *table; 11551da177e4SLinus Torvalds 115693c2fb25SDavid Ahern table = rt->fib6_table; 115766f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 1158d4ead6b3SDavid Ahern err = fib6_add(&table->tb6_root, rt, info, extack); 115966f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 11601da177e4SLinus Torvalds 11611da177e4SLinus Torvalds return err; 11621da177e4SLinus Torvalds } 11631da177e4SLinus Torvalds 11648d1c802bSDavid Ahern int ip6_ins_rt(struct net *net, struct fib6_info *rt) 116540e22e8fSThomas Graf { 1166afb1d4b5SDavid Ahern struct nl_info info = { .nl_net = net, }; 1167e715b6d3SFlorian Westphal 1168d4ead6b3SDavid Ahern return __ip6_ins_rt(rt, &info, NULL); 116940e22e8fSThomas Graf } 117040e22e8fSThomas Graf 11718d1c802bSDavid Ahern static struct rt6_info *ip6_rt_cache_alloc(struct fib6_info *ort, 117221efcfa0SEric Dumazet const struct in6_addr *daddr, 1173b71d1d42SEric Dumazet const struct in6_addr *saddr) 11741da177e4SLinus Torvalds { 11754832c30dSDavid Ahern struct net_device *dev; 11761da177e4SLinus Torvalds struct rt6_info *rt; 11771da177e4SLinus Torvalds 11781da177e4SLinus Torvalds /* 11791da177e4SLinus Torvalds * Clone the route. 11801da177e4SLinus Torvalds */ 11811da177e4SLinus Torvalds 1182e873e4b9SWei Wang if (!fib6_info_hold_safe(ort)) 1183e873e4b9SWei Wang return NULL; 1184e873e4b9SWei Wang 11854832c30dSDavid Ahern dev = ip6_rt_get_dev_rcu(ort); 118693531c67SDavid Ahern rt = ip6_dst_alloc(dev_net(dev), dev, 0); 1187e873e4b9SWei Wang if (!rt) { 1188e873e4b9SWei Wang fib6_info_release(ort); 118983a09abdSMartin KaFai Lau return NULL; 1190e873e4b9SWei Wang } 119183a09abdSMartin KaFai Lau 119283a09abdSMartin KaFai Lau ip6_rt_copy_init(rt, ort); 11938b9df265SMartin KaFai Lau rt->rt6i_flags |= RTF_CACHE; 119483a09abdSMartin KaFai Lau rt->dst.flags |= DST_HOST; 119583a09abdSMartin KaFai Lau rt->rt6i_dst.addr = *daddr; 119683a09abdSMartin KaFai Lau rt->rt6i_dst.plen = 128; 11978b9df265SMartin KaFai Lau 11988b9df265SMartin KaFai Lau if (!rt6_is_gw_or_nonexthop(ort)) { 119993c2fb25SDavid Ahern if (ort->fib6_dst.plen != 128 && 120093c2fb25SDavid Ahern ipv6_addr_equal(&ort->fib6_dst.addr, daddr)) 120158c4fb86SYOSHIFUJI Hideaki rt->rt6i_flags |= RTF_ANYCAST; 12021da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 12031da177e4SLinus Torvalds if (rt->rt6i_src.plen && saddr) { 12044e3fd7a0SAlexey Dobriyan rt->rt6i_src.addr = *saddr; 12051da177e4SLinus Torvalds rt->rt6i_src.plen = 128; 12061da177e4SLinus Torvalds } 12071da177e4SLinus Torvalds #endif 120895a9a5baSYOSHIFUJI Hideaki } 120995a9a5baSYOSHIFUJI Hideaki 1210299d9939SYOSHIFUJI Hideaki return rt; 1211299d9939SYOSHIFUJI Hideaki } 1212299d9939SYOSHIFUJI Hideaki 12138d1c802bSDavid Ahern static struct rt6_info *ip6_rt_pcpu_alloc(struct fib6_info *rt) 1214d52d3997SMartin KaFai Lau { 12153b6761d1SDavid Ahern unsigned short flags = fib6_info_dst_flags(rt); 12164832c30dSDavid Ahern struct net_device *dev; 1217d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1218d52d3997SMartin KaFai Lau 1219e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 1220e873e4b9SWei Wang return NULL; 1221e873e4b9SWei Wang 12224832c30dSDavid Ahern rcu_read_lock(); 12234832c30dSDavid Ahern dev = ip6_rt_get_dev_rcu(rt); 122493531c67SDavid Ahern pcpu_rt = ip6_dst_alloc(dev_net(dev), dev, flags); 12254832c30dSDavid Ahern rcu_read_unlock(); 1226e873e4b9SWei Wang if (!pcpu_rt) { 1227e873e4b9SWei Wang fib6_info_release(rt); 1228d52d3997SMartin KaFai Lau return NULL; 1229e873e4b9SWei Wang } 1230d52d3997SMartin KaFai Lau ip6_rt_copy_init(pcpu_rt, rt); 1231d52d3997SMartin KaFai Lau pcpu_rt->rt6i_flags |= RTF_PCPU; 1232d52d3997SMartin KaFai Lau return pcpu_rt; 1233d52d3997SMartin KaFai Lau } 1234d52d3997SMartin KaFai Lau 123566f5d6ceSWei Wang /* It should be called with rcu_read_lock() acquired */ 12368d1c802bSDavid Ahern static struct rt6_info *rt6_get_pcpu_route(struct fib6_info *rt) 1237d52d3997SMartin KaFai Lau { 1238a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, **p; 1239d52d3997SMartin KaFai Lau 1240d52d3997SMartin KaFai Lau p = this_cpu_ptr(rt->rt6i_pcpu); 1241d52d3997SMartin KaFai Lau pcpu_rt = *p; 1242d52d3997SMartin KaFai Lau 1243d4ead6b3SDavid Ahern if (pcpu_rt) 124410585b43SDavid Ahern ip6_hold_safe(NULL, &pcpu_rt); 1245d3843fe5SWei Wang 1246a73e4195SMartin KaFai Lau return pcpu_rt; 1247a73e4195SMartin KaFai Lau } 1248a73e4195SMartin KaFai Lau 1249afb1d4b5SDavid Ahern static struct rt6_info *rt6_make_pcpu_route(struct net *net, 12508d1c802bSDavid Ahern struct fib6_info *rt) 1251a73e4195SMartin KaFai Lau { 1252a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, *prev, **p; 1253d52d3997SMartin KaFai Lau 1254d52d3997SMartin KaFai Lau pcpu_rt = ip6_rt_pcpu_alloc(rt); 1255d52d3997SMartin KaFai Lau if (!pcpu_rt) { 12569c7370a1SMartin KaFai Lau dst_hold(&net->ipv6.ip6_null_entry->dst); 12579c7370a1SMartin KaFai Lau return net->ipv6.ip6_null_entry; 1258d52d3997SMartin KaFai Lau } 1259d52d3997SMartin KaFai Lau 1260a94b9367SWei Wang dst_hold(&pcpu_rt->dst); 1261a73e4195SMartin KaFai Lau p = this_cpu_ptr(rt->rt6i_pcpu); 1262d52d3997SMartin KaFai Lau prev = cmpxchg(p, NULL, pcpu_rt); 1263951f788aSEric Dumazet BUG_ON(prev); 1264a94b9367SWei Wang 1265d52d3997SMartin KaFai Lau return pcpu_rt; 1266d52d3997SMartin KaFai Lau } 1267d52d3997SMartin KaFai Lau 126835732d01SWei Wang /* exception hash table implementation 126935732d01SWei Wang */ 127035732d01SWei Wang static DEFINE_SPINLOCK(rt6_exception_lock); 127135732d01SWei Wang 127235732d01SWei Wang /* Remove rt6_ex from hash table and free the memory 127335732d01SWei Wang * Caller must hold rt6_exception_lock 127435732d01SWei Wang */ 127535732d01SWei Wang static void rt6_remove_exception(struct rt6_exception_bucket *bucket, 127635732d01SWei Wang struct rt6_exception *rt6_ex) 127735732d01SWei Wang { 1278f5b51fe8SPaolo Abeni struct fib6_info *from; 1279b2427e67SColin Ian King struct net *net; 128081eb8447SWei Wang 128135732d01SWei Wang if (!bucket || !rt6_ex) 128235732d01SWei Wang return; 1283b2427e67SColin Ian King 1284b2427e67SColin Ian King net = dev_net(rt6_ex->rt6i->dst.dev); 1285f5b51fe8SPaolo Abeni net->ipv6.rt6_stats->fib_rt_cache--; 1286f5b51fe8SPaolo Abeni 1287f5b51fe8SPaolo Abeni /* purge completely the exception to allow releasing the held resources: 1288f5b51fe8SPaolo Abeni * some [sk] cache may keep the dst around for unlimited time 1289f5b51fe8SPaolo Abeni */ 1290f5b51fe8SPaolo Abeni from = rcu_dereference_protected(rt6_ex->rt6i->from, 1291f5b51fe8SPaolo Abeni lockdep_is_held(&rt6_exception_lock)); 1292f5b51fe8SPaolo Abeni rcu_assign_pointer(rt6_ex->rt6i->from, NULL); 1293f5b51fe8SPaolo Abeni fib6_info_release(from); 1294f5b51fe8SPaolo Abeni dst_dev_put(&rt6_ex->rt6i->dst); 1295f5b51fe8SPaolo Abeni 129635732d01SWei Wang hlist_del_rcu(&rt6_ex->hlist); 129777634cc6SDavid Ahern dst_release(&rt6_ex->rt6i->dst); 129835732d01SWei Wang kfree_rcu(rt6_ex, rcu); 129935732d01SWei Wang WARN_ON_ONCE(!bucket->depth); 130035732d01SWei Wang bucket->depth--; 130135732d01SWei Wang } 130235732d01SWei Wang 130335732d01SWei Wang /* Remove oldest rt6_ex in bucket and free the memory 130435732d01SWei Wang * Caller must hold rt6_exception_lock 130535732d01SWei Wang */ 130635732d01SWei Wang static void rt6_exception_remove_oldest(struct rt6_exception_bucket *bucket) 130735732d01SWei Wang { 130835732d01SWei Wang struct rt6_exception *rt6_ex, *oldest = NULL; 130935732d01SWei Wang 131035732d01SWei Wang if (!bucket) 131135732d01SWei Wang return; 131235732d01SWei Wang 131335732d01SWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 131435732d01SWei Wang if (!oldest || time_before(rt6_ex->stamp, oldest->stamp)) 131535732d01SWei Wang oldest = rt6_ex; 131635732d01SWei Wang } 131735732d01SWei Wang rt6_remove_exception(bucket, oldest); 131835732d01SWei Wang } 131935732d01SWei Wang 132035732d01SWei Wang static u32 rt6_exception_hash(const struct in6_addr *dst, 132135732d01SWei Wang const struct in6_addr *src) 132235732d01SWei Wang { 132335732d01SWei Wang static u32 seed __read_mostly; 132435732d01SWei Wang u32 val; 132535732d01SWei Wang 132635732d01SWei Wang net_get_random_once(&seed, sizeof(seed)); 132735732d01SWei Wang val = jhash(dst, sizeof(*dst), seed); 132835732d01SWei Wang 132935732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 133035732d01SWei Wang if (src) 133135732d01SWei Wang val = jhash(src, sizeof(*src), val); 133235732d01SWei Wang #endif 133335732d01SWei Wang return hash_32(val, FIB6_EXCEPTION_BUCKET_SIZE_SHIFT); 133435732d01SWei Wang } 133535732d01SWei Wang 133635732d01SWei Wang /* Helper function to find the cached rt in the hash table 133735732d01SWei Wang * and update bucket pointer to point to the bucket for this 133835732d01SWei Wang * (daddr, saddr) pair 133935732d01SWei Wang * Caller must hold rt6_exception_lock 134035732d01SWei Wang */ 134135732d01SWei Wang static struct rt6_exception * 134235732d01SWei Wang __rt6_find_exception_spinlock(struct rt6_exception_bucket **bucket, 134335732d01SWei Wang const struct in6_addr *daddr, 134435732d01SWei Wang const struct in6_addr *saddr) 134535732d01SWei Wang { 134635732d01SWei Wang struct rt6_exception *rt6_ex; 134735732d01SWei Wang u32 hval; 134835732d01SWei Wang 134935732d01SWei Wang if (!(*bucket) || !daddr) 135035732d01SWei Wang return NULL; 135135732d01SWei Wang 135235732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 135335732d01SWei Wang *bucket += hval; 135435732d01SWei Wang 135535732d01SWei Wang hlist_for_each_entry(rt6_ex, &(*bucket)->chain, hlist) { 135635732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 135735732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 135835732d01SWei Wang 135935732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 136035732d01SWei Wang if (matched && saddr) 136135732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 136235732d01SWei Wang #endif 136335732d01SWei Wang if (matched) 136435732d01SWei Wang return rt6_ex; 136535732d01SWei Wang } 136635732d01SWei Wang return NULL; 136735732d01SWei Wang } 136835732d01SWei Wang 136935732d01SWei Wang /* Helper function to find the cached rt in the hash table 137035732d01SWei Wang * and update bucket pointer to point to the bucket for this 137135732d01SWei Wang * (daddr, saddr) pair 137235732d01SWei Wang * Caller must hold rcu_read_lock() 137335732d01SWei Wang */ 137435732d01SWei Wang static struct rt6_exception * 137535732d01SWei Wang __rt6_find_exception_rcu(struct rt6_exception_bucket **bucket, 137635732d01SWei Wang const struct in6_addr *daddr, 137735732d01SWei Wang const struct in6_addr *saddr) 137835732d01SWei Wang { 137935732d01SWei Wang struct rt6_exception *rt6_ex; 138035732d01SWei Wang u32 hval; 138135732d01SWei Wang 138235732d01SWei Wang WARN_ON_ONCE(!rcu_read_lock_held()); 138335732d01SWei Wang 138435732d01SWei Wang if (!(*bucket) || !daddr) 138535732d01SWei Wang return NULL; 138635732d01SWei Wang 138735732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 138835732d01SWei Wang *bucket += hval; 138935732d01SWei Wang 139035732d01SWei Wang hlist_for_each_entry_rcu(rt6_ex, &(*bucket)->chain, hlist) { 139135732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 139235732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 139335732d01SWei Wang 139435732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 139535732d01SWei Wang if (matched && saddr) 139635732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 139735732d01SWei Wang #endif 139835732d01SWei Wang if (matched) 139935732d01SWei Wang return rt6_ex; 140035732d01SWei Wang } 140135732d01SWei Wang return NULL; 140235732d01SWei Wang } 140335732d01SWei Wang 14048d1c802bSDavid Ahern static unsigned int fib6_mtu(const struct fib6_info *rt) 140535732d01SWei Wang { 1406d4ead6b3SDavid Ahern unsigned int mtu; 1407d4ead6b3SDavid Ahern 1408dcd1f572SDavid Ahern if (rt->fib6_pmtu) { 1409dcd1f572SDavid Ahern mtu = rt->fib6_pmtu; 1410dcd1f572SDavid Ahern } else { 1411dcd1f572SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 1412dcd1f572SDavid Ahern struct inet6_dev *idev; 1413dcd1f572SDavid Ahern 1414dcd1f572SDavid Ahern rcu_read_lock(); 1415dcd1f572SDavid Ahern idev = __in6_dev_get(dev); 1416dcd1f572SDavid Ahern mtu = idev->cnf.mtu6; 1417dcd1f572SDavid Ahern rcu_read_unlock(); 1418dcd1f572SDavid Ahern } 1419dcd1f572SDavid Ahern 1420d4ead6b3SDavid Ahern mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 1421d4ead6b3SDavid Ahern 1422d4ead6b3SDavid Ahern return mtu - lwtunnel_headroom(rt->fib6_nh.nh_lwtstate, mtu); 1423d4ead6b3SDavid Ahern } 1424d4ead6b3SDavid Ahern 142535732d01SWei Wang static int rt6_insert_exception(struct rt6_info *nrt, 14268d1c802bSDavid Ahern struct fib6_info *ort) 142735732d01SWei Wang { 14285e670d84SDavid Ahern struct net *net = dev_net(nrt->dst.dev); 142935732d01SWei Wang struct rt6_exception_bucket *bucket; 143035732d01SWei Wang struct in6_addr *src_key = NULL; 143135732d01SWei Wang struct rt6_exception *rt6_ex; 143235732d01SWei Wang int err = 0; 143335732d01SWei Wang 143435732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 143535732d01SWei Wang 143635732d01SWei Wang if (ort->exception_bucket_flushed) { 143735732d01SWei Wang err = -EINVAL; 143835732d01SWei Wang goto out; 143935732d01SWei Wang } 144035732d01SWei Wang 144135732d01SWei Wang bucket = rcu_dereference_protected(ort->rt6i_exception_bucket, 144235732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 144335732d01SWei Wang if (!bucket) { 144435732d01SWei Wang bucket = kcalloc(FIB6_EXCEPTION_BUCKET_SIZE, sizeof(*bucket), 144535732d01SWei Wang GFP_ATOMIC); 144635732d01SWei Wang if (!bucket) { 144735732d01SWei Wang err = -ENOMEM; 144835732d01SWei Wang goto out; 144935732d01SWei Wang } 145035732d01SWei Wang rcu_assign_pointer(ort->rt6i_exception_bucket, bucket); 145135732d01SWei Wang } 145235732d01SWei Wang 145335732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 145435732d01SWei Wang /* rt6i_src.plen != 0 indicates ort is in subtree 145535732d01SWei Wang * and exception table is indexed by a hash of 145635732d01SWei Wang * both rt6i_dst and rt6i_src. 145735732d01SWei Wang * Otherwise, the exception table is indexed by 145835732d01SWei Wang * a hash of only rt6i_dst. 145935732d01SWei Wang */ 146093c2fb25SDavid Ahern if (ort->fib6_src.plen) 146135732d01SWei Wang src_key = &nrt->rt6i_src.addr; 146235732d01SWei Wang #endif 1463f5bbe7eeSWei Wang /* rt6_mtu_change() might lower mtu on ort. 1464f5bbe7eeSWei Wang * Only insert this exception route if its mtu 1465f5bbe7eeSWei Wang * is less than ort's mtu value. 1466f5bbe7eeSWei Wang */ 1467d4ead6b3SDavid Ahern if (dst_metric_raw(&nrt->dst, RTAX_MTU) >= fib6_mtu(ort)) { 1468f5bbe7eeSWei Wang err = -EINVAL; 1469f5bbe7eeSWei Wang goto out; 1470f5bbe7eeSWei Wang } 147160006a48SWei Wang 147235732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, &nrt->rt6i_dst.addr, 147335732d01SWei Wang src_key); 147435732d01SWei Wang if (rt6_ex) 147535732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 147635732d01SWei Wang 147735732d01SWei Wang rt6_ex = kzalloc(sizeof(*rt6_ex), GFP_ATOMIC); 147835732d01SWei Wang if (!rt6_ex) { 147935732d01SWei Wang err = -ENOMEM; 148035732d01SWei Wang goto out; 148135732d01SWei Wang } 148235732d01SWei Wang rt6_ex->rt6i = nrt; 148335732d01SWei Wang rt6_ex->stamp = jiffies; 148435732d01SWei Wang hlist_add_head_rcu(&rt6_ex->hlist, &bucket->chain); 148535732d01SWei Wang bucket->depth++; 148681eb8447SWei Wang net->ipv6.rt6_stats->fib_rt_cache++; 148735732d01SWei Wang 148835732d01SWei Wang if (bucket->depth > FIB6_MAX_DEPTH) 148935732d01SWei Wang rt6_exception_remove_oldest(bucket); 149035732d01SWei Wang 149135732d01SWei Wang out: 149235732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 149335732d01SWei Wang 149435732d01SWei Wang /* Update fn->fn_sernum to invalidate all cached dst */ 1495b886d5f2SPaolo Abeni if (!err) { 149693c2fb25SDavid Ahern spin_lock_bh(&ort->fib6_table->tb6_lock); 14977aef6859SDavid Ahern fib6_update_sernum(net, ort); 149893c2fb25SDavid Ahern spin_unlock_bh(&ort->fib6_table->tb6_lock); 1499b886d5f2SPaolo Abeni fib6_force_start_gc(net); 1500b886d5f2SPaolo Abeni } 150135732d01SWei Wang 150235732d01SWei Wang return err; 150335732d01SWei Wang } 150435732d01SWei Wang 15058d1c802bSDavid Ahern void rt6_flush_exceptions(struct fib6_info *rt) 150635732d01SWei Wang { 150735732d01SWei Wang struct rt6_exception_bucket *bucket; 150835732d01SWei Wang struct rt6_exception *rt6_ex; 150935732d01SWei Wang struct hlist_node *tmp; 151035732d01SWei Wang int i; 151135732d01SWei Wang 151235732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 151335732d01SWei Wang /* Prevent rt6_insert_exception() to recreate the bucket list */ 151435732d01SWei Wang rt->exception_bucket_flushed = 1; 151535732d01SWei Wang 151635732d01SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 151735732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 151835732d01SWei Wang if (!bucket) 151935732d01SWei Wang goto out; 152035732d01SWei Wang 152135732d01SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 152235732d01SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, &bucket->chain, hlist) 152335732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 152435732d01SWei Wang WARN_ON_ONCE(bucket->depth); 152535732d01SWei Wang bucket++; 152635732d01SWei Wang } 152735732d01SWei Wang 152835732d01SWei Wang out: 152935732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 153035732d01SWei Wang } 153135732d01SWei Wang 153235732d01SWei Wang /* Find cached rt in the hash table inside passed in rt 153335732d01SWei Wang * Caller has to hold rcu_read_lock() 153435732d01SWei Wang */ 15358d1c802bSDavid Ahern static struct rt6_info *rt6_find_cached_rt(struct fib6_info *rt, 153635732d01SWei Wang struct in6_addr *daddr, 153735732d01SWei Wang struct in6_addr *saddr) 153835732d01SWei Wang { 153935732d01SWei Wang struct rt6_exception_bucket *bucket; 154035732d01SWei Wang struct in6_addr *src_key = NULL; 154135732d01SWei Wang struct rt6_exception *rt6_ex; 154235732d01SWei Wang struct rt6_info *res = NULL; 154335732d01SWei Wang 154435732d01SWei Wang bucket = rcu_dereference(rt->rt6i_exception_bucket); 154535732d01SWei Wang 154635732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 154735732d01SWei Wang /* rt6i_src.plen != 0 indicates rt is in subtree 154835732d01SWei Wang * and exception table is indexed by a hash of 154935732d01SWei Wang * both rt6i_dst and rt6i_src. 155035732d01SWei Wang * Otherwise, the exception table is indexed by 155135732d01SWei Wang * a hash of only rt6i_dst. 155235732d01SWei Wang */ 155393c2fb25SDavid Ahern if (rt->fib6_src.plen) 155435732d01SWei Wang src_key = saddr; 155535732d01SWei Wang #endif 155635732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, daddr, src_key); 155735732d01SWei Wang 155835732d01SWei Wang if (rt6_ex && !rt6_check_expired(rt6_ex->rt6i)) 155935732d01SWei Wang res = rt6_ex->rt6i; 156035732d01SWei Wang 156135732d01SWei Wang return res; 156235732d01SWei Wang } 156335732d01SWei Wang 156435732d01SWei Wang /* Remove the passed in cached rt from the hash table that contains it */ 156523fb93a4SDavid Ahern static int rt6_remove_exception_rt(struct rt6_info *rt) 156635732d01SWei Wang { 156735732d01SWei Wang struct rt6_exception_bucket *bucket; 156835732d01SWei Wang struct in6_addr *src_key = NULL; 156935732d01SWei Wang struct rt6_exception *rt6_ex; 15708a14e46fSDavid Ahern struct fib6_info *from; 157135732d01SWei Wang int err; 157235732d01SWei Wang 1573091311deSEric Dumazet from = rcu_dereference(rt->from); 157435732d01SWei Wang if (!from || 1575442d713bSColin Ian King !(rt->rt6i_flags & RTF_CACHE)) 157635732d01SWei Wang return -EINVAL; 157735732d01SWei Wang 157835732d01SWei Wang if (!rcu_access_pointer(from->rt6i_exception_bucket)) 157935732d01SWei Wang return -ENOENT; 158035732d01SWei Wang 158135732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 158235732d01SWei Wang bucket = rcu_dereference_protected(from->rt6i_exception_bucket, 158335732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 158435732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 158535732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 158635732d01SWei Wang * and exception table is indexed by a hash of 158735732d01SWei Wang * both rt6i_dst and rt6i_src. 158835732d01SWei Wang * Otherwise, the exception table is indexed by 158935732d01SWei Wang * a hash of only rt6i_dst. 159035732d01SWei Wang */ 159193c2fb25SDavid Ahern if (from->fib6_src.plen) 159235732d01SWei Wang src_key = &rt->rt6i_src.addr; 159335732d01SWei Wang #endif 159435732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, 159535732d01SWei Wang &rt->rt6i_dst.addr, 159635732d01SWei Wang src_key); 159735732d01SWei Wang if (rt6_ex) { 159835732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 159935732d01SWei Wang err = 0; 160035732d01SWei Wang } else { 160135732d01SWei Wang err = -ENOENT; 160235732d01SWei Wang } 160335732d01SWei Wang 160435732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 160535732d01SWei Wang return err; 160635732d01SWei Wang } 160735732d01SWei Wang 160835732d01SWei Wang /* Find rt6_ex which contains the passed in rt cache and 160935732d01SWei Wang * refresh its stamp 161035732d01SWei Wang */ 161135732d01SWei Wang static void rt6_update_exception_stamp_rt(struct rt6_info *rt) 161235732d01SWei Wang { 161335732d01SWei Wang struct rt6_exception_bucket *bucket; 161435732d01SWei Wang struct in6_addr *src_key = NULL; 161535732d01SWei Wang struct rt6_exception *rt6_ex; 1616193f3685SPaolo Abeni struct fib6_info *from; 161735732d01SWei Wang 161835732d01SWei Wang rcu_read_lock(); 1619193f3685SPaolo Abeni from = rcu_dereference(rt->from); 1620193f3685SPaolo Abeni if (!from || !(rt->rt6i_flags & RTF_CACHE)) 1621193f3685SPaolo Abeni goto unlock; 1622193f3685SPaolo Abeni 162335732d01SWei Wang bucket = rcu_dereference(from->rt6i_exception_bucket); 162435732d01SWei Wang 162535732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 162635732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 162735732d01SWei Wang * and exception table is indexed by a hash of 162835732d01SWei Wang * both rt6i_dst and rt6i_src. 162935732d01SWei Wang * Otherwise, the exception table is indexed by 163035732d01SWei Wang * a hash of only rt6i_dst. 163135732d01SWei Wang */ 163293c2fb25SDavid Ahern if (from->fib6_src.plen) 163335732d01SWei Wang src_key = &rt->rt6i_src.addr; 163435732d01SWei Wang #endif 163535732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, 163635732d01SWei Wang &rt->rt6i_dst.addr, 163735732d01SWei Wang src_key); 163835732d01SWei Wang if (rt6_ex) 163935732d01SWei Wang rt6_ex->stamp = jiffies; 164035732d01SWei Wang 1641193f3685SPaolo Abeni unlock: 164235732d01SWei Wang rcu_read_unlock(); 164335732d01SWei Wang } 164435732d01SWei Wang 1645e9fa1495SStefano Brivio static bool rt6_mtu_change_route_allowed(struct inet6_dev *idev, 1646e9fa1495SStefano Brivio struct rt6_info *rt, int mtu) 1647e9fa1495SStefano Brivio { 1648e9fa1495SStefano Brivio /* If the new MTU is lower than the route PMTU, this new MTU will be the 1649e9fa1495SStefano Brivio * lowest MTU in the path: always allow updating the route PMTU to 1650e9fa1495SStefano Brivio * reflect PMTU decreases. 1651e9fa1495SStefano Brivio * 1652e9fa1495SStefano Brivio * If the new MTU is higher, and the route PMTU is equal to the local 1653e9fa1495SStefano Brivio * MTU, this means the old MTU is the lowest in the path, so allow 1654e9fa1495SStefano Brivio * updating it: if other nodes now have lower MTUs, PMTU discovery will 1655e9fa1495SStefano Brivio * handle this. 1656e9fa1495SStefano Brivio */ 1657e9fa1495SStefano Brivio 1658e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) >= mtu) 1659e9fa1495SStefano Brivio return true; 1660e9fa1495SStefano Brivio 1661e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) == idev->cnf.mtu6) 1662e9fa1495SStefano Brivio return true; 1663e9fa1495SStefano Brivio 1664e9fa1495SStefano Brivio return false; 1665e9fa1495SStefano Brivio } 1666e9fa1495SStefano Brivio 1667e9fa1495SStefano Brivio static void rt6_exceptions_update_pmtu(struct inet6_dev *idev, 16688d1c802bSDavid Ahern struct fib6_info *rt, int mtu) 1669f5bbe7eeSWei Wang { 1670f5bbe7eeSWei Wang struct rt6_exception_bucket *bucket; 1671f5bbe7eeSWei Wang struct rt6_exception *rt6_ex; 1672f5bbe7eeSWei Wang int i; 1673f5bbe7eeSWei Wang 1674f5bbe7eeSWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1675f5bbe7eeSWei Wang lockdep_is_held(&rt6_exception_lock)); 1676f5bbe7eeSWei Wang 1677e9fa1495SStefano Brivio if (!bucket) 1678e9fa1495SStefano Brivio return; 1679e9fa1495SStefano Brivio 1680f5bbe7eeSWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1681f5bbe7eeSWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 1682f5bbe7eeSWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1683e9fa1495SStefano Brivio 1684e9fa1495SStefano Brivio /* For RTF_CACHE with rt6i_pmtu == 0 (i.e. a redirected 1685d4ead6b3SDavid Ahern * route), the metrics of its rt->from have already 1686f5bbe7eeSWei Wang * been updated. 1687f5bbe7eeSWei Wang */ 1688d4ead6b3SDavid Ahern if (dst_metric_raw(&entry->dst, RTAX_MTU) && 1689e9fa1495SStefano Brivio rt6_mtu_change_route_allowed(idev, entry, mtu)) 1690d4ead6b3SDavid Ahern dst_metric_set(&entry->dst, RTAX_MTU, mtu); 1691f5bbe7eeSWei Wang } 1692f5bbe7eeSWei Wang bucket++; 1693f5bbe7eeSWei Wang } 1694f5bbe7eeSWei Wang } 1695f5bbe7eeSWei Wang 1696b16cb459SWei Wang #define RTF_CACHE_GATEWAY (RTF_GATEWAY | RTF_CACHE) 1697b16cb459SWei Wang 16988d1c802bSDavid Ahern static void rt6_exceptions_clean_tohost(struct fib6_info *rt, 1699b16cb459SWei Wang struct in6_addr *gateway) 1700b16cb459SWei Wang { 1701b16cb459SWei Wang struct rt6_exception_bucket *bucket; 1702b16cb459SWei Wang struct rt6_exception *rt6_ex; 1703b16cb459SWei Wang struct hlist_node *tmp; 1704b16cb459SWei Wang int i; 1705b16cb459SWei Wang 1706b16cb459SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1707b16cb459SWei Wang return; 1708b16cb459SWei Wang 1709b16cb459SWei Wang spin_lock_bh(&rt6_exception_lock); 1710b16cb459SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1711b16cb459SWei Wang lockdep_is_held(&rt6_exception_lock)); 1712b16cb459SWei Wang 1713b16cb459SWei Wang if (bucket) { 1714b16cb459SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1715b16cb459SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1716b16cb459SWei Wang &bucket->chain, hlist) { 1717b16cb459SWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1718b16cb459SWei Wang 1719b16cb459SWei Wang if ((entry->rt6i_flags & RTF_CACHE_GATEWAY) == 1720b16cb459SWei Wang RTF_CACHE_GATEWAY && 1721b16cb459SWei Wang ipv6_addr_equal(gateway, 1722b16cb459SWei Wang &entry->rt6i_gateway)) { 1723b16cb459SWei Wang rt6_remove_exception(bucket, rt6_ex); 1724b16cb459SWei Wang } 1725b16cb459SWei Wang } 1726b16cb459SWei Wang bucket++; 1727b16cb459SWei Wang } 1728b16cb459SWei Wang } 1729b16cb459SWei Wang 1730b16cb459SWei Wang spin_unlock_bh(&rt6_exception_lock); 1731b16cb459SWei Wang } 1732b16cb459SWei Wang 1733c757faa8SWei Wang static void rt6_age_examine_exception(struct rt6_exception_bucket *bucket, 1734c757faa8SWei Wang struct rt6_exception *rt6_ex, 1735c757faa8SWei Wang struct fib6_gc_args *gc_args, 1736c757faa8SWei Wang unsigned long now) 1737c757faa8SWei Wang { 1738c757faa8SWei Wang struct rt6_info *rt = rt6_ex->rt6i; 1739c757faa8SWei Wang 17401859bac0SPaolo Abeni /* we are pruning and obsoleting aged-out and non gateway exceptions 17411859bac0SPaolo Abeni * even if others have still references to them, so that on next 17421859bac0SPaolo Abeni * dst_check() such references can be dropped. 17431859bac0SPaolo Abeni * EXPIRES exceptions - e.g. pmtu-generated ones are pruned when 17441859bac0SPaolo Abeni * expired, independently from their aging, as per RFC 8201 section 4 17451859bac0SPaolo Abeni */ 174631afeb42SWei Wang if (!(rt->rt6i_flags & RTF_EXPIRES)) { 174731afeb42SWei Wang if (time_after_eq(now, rt->dst.lastuse + gc_args->timeout)) { 1748c757faa8SWei Wang RT6_TRACE("aging clone %p\n", rt); 1749c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1750c757faa8SWei Wang return; 175131afeb42SWei Wang } 175231afeb42SWei Wang } else if (time_after(jiffies, rt->dst.expires)) { 175331afeb42SWei Wang RT6_TRACE("purging expired route %p\n", rt); 175431afeb42SWei Wang rt6_remove_exception(bucket, rt6_ex); 175531afeb42SWei Wang return; 175631afeb42SWei Wang } 175731afeb42SWei Wang 175831afeb42SWei Wang if (rt->rt6i_flags & RTF_GATEWAY) { 1759c757faa8SWei Wang struct neighbour *neigh; 1760c757faa8SWei Wang __u8 neigh_flags = 0; 1761c757faa8SWei Wang 17621bfa26ffSEric Dumazet neigh = __ipv6_neigh_lookup_noref(rt->dst.dev, &rt->rt6i_gateway); 17631bfa26ffSEric Dumazet if (neigh) 1764c757faa8SWei Wang neigh_flags = neigh->flags; 17651bfa26ffSEric Dumazet 1766c757faa8SWei Wang if (!(neigh_flags & NTF_ROUTER)) { 1767c757faa8SWei Wang RT6_TRACE("purging route %p via non-router but gateway\n", 1768c757faa8SWei Wang rt); 1769c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1770c757faa8SWei Wang return; 1771c757faa8SWei Wang } 1772c757faa8SWei Wang } 177331afeb42SWei Wang 1774c757faa8SWei Wang gc_args->more++; 1775c757faa8SWei Wang } 1776c757faa8SWei Wang 17778d1c802bSDavid Ahern void rt6_age_exceptions(struct fib6_info *rt, 1778c757faa8SWei Wang struct fib6_gc_args *gc_args, 1779c757faa8SWei Wang unsigned long now) 1780c757faa8SWei Wang { 1781c757faa8SWei Wang struct rt6_exception_bucket *bucket; 1782c757faa8SWei Wang struct rt6_exception *rt6_ex; 1783c757faa8SWei Wang struct hlist_node *tmp; 1784c757faa8SWei Wang int i; 1785c757faa8SWei Wang 1786c757faa8SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1787c757faa8SWei Wang return; 1788c757faa8SWei Wang 17891bfa26ffSEric Dumazet rcu_read_lock_bh(); 17901bfa26ffSEric Dumazet spin_lock(&rt6_exception_lock); 1791c757faa8SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1792c757faa8SWei Wang lockdep_is_held(&rt6_exception_lock)); 1793c757faa8SWei Wang 1794c757faa8SWei Wang if (bucket) { 1795c757faa8SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1796c757faa8SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1797c757faa8SWei Wang &bucket->chain, hlist) { 1798c757faa8SWei Wang rt6_age_examine_exception(bucket, rt6_ex, 1799c757faa8SWei Wang gc_args, now); 1800c757faa8SWei Wang } 1801c757faa8SWei Wang bucket++; 1802c757faa8SWei Wang } 1803c757faa8SWei Wang } 18041bfa26ffSEric Dumazet spin_unlock(&rt6_exception_lock); 18051bfa26ffSEric Dumazet rcu_read_unlock_bh(); 1806c757faa8SWei Wang } 1807c757faa8SWei Wang 18081d053da9SDavid Ahern /* must be called with rcu lock held */ 18091d053da9SDavid Ahern struct fib6_info *fib6_table_lookup(struct net *net, struct fib6_table *table, 18101d053da9SDavid Ahern int oif, struct flowi6 *fl6, int strict) 18111da177e4SLinus Torvalds { 1812367efcb9SMartin KaFai Lau struct fib6_node *fn, *saved_fn; 18138d1c802bSDavid Ahern struct fib6_info *f6i; 18141da177e4SLinus Torvalds 18156454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1816367efcb9SMartin KaFai Lau saved_fn = fn; 18171da177e4SLinus Torvalds 1818ca254490SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1819ca254490SDavid Ahern oif = 0; 1820ca254490SDavid Ahern 1821a3c00e46SMartin KaFai Lau redo_rt6_select: 182223fb93a4SDavid Ahern f6i = rt6_select(net, fn, oif, strict); 182323fb93a4SDavid Ahern if (f6i == net->ipv6.fib6_null_entry) { 1824a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1825a3c00e46SMartin KaFai Lau if (fn) 1826a3c00e46SMartin KaFai Lau goto redo_rt6_select; 1827367efcb9SMartin KaFai Lau else if (strict & RT6_LOOKUP_F_REACHABLE) { 1828367efcb9SMartin KaFai Lau /* also consider unreachable route */ 1829367efcb9SMartin KaFai Lau strict &= ~RT6_LOOKUP_F_REACHABLE; 1830367efcb9SMartin KaFai Lau fn = saved_fn; 1831367efcb9SMartin KaFai Lau goto redo_rt6_select; 1832367efcb9SMartin KaFai Lau } 1833a3c00e46SMartin KaFai Lau } 1834a3c00e46SMartin KaFai Lau 1835d4bea421SDavid Ahern trace_fib6_table_lookup(net, f6i, table, fl6); 1836d52d3997SMartin KaFai Lau 18371d053da9SDavid Ahern return f6i; 18381d053da9SDavid Ahern } 18391d053da9SDavid Ahern 18401d053da9SDavid Ahern struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, 18411d053da9SDavid Ahern int oif, struct flowi6 *fl6, 18421d053da9SDavid Ahern const struct sk_buff *skb, int flags) 18431d053da9SDavid Ahern { 18441d053da9SDavid Ahern struct fib6_info *f6i; 18451d053da9SDavid Ahern struct rt6_info *rt; 18461d053da9SDavid Ahern int strict = 0; 18471d053da9SDavid Ahern 18481d053da9SDavid Ahern strict |= flags & RT6_LOOKUP_F_IFACE; 18491d053da9SDavid Ahern strict |= flags & RT6_LOOKUP_F_IGNORE_LINKSTATE; 18501d053da9SDavid Ahern if (net->ipv6.devconf_all->forwarding == 0) 18511d053da9SDavid Ahern strict |= RT6_LOOKUP_F_REACHABLE; 18521d053da9SDavid Ahern 18531d053da9SDavid Ahern rcu_read_lock(); 18541d053da9SDavid Ahern 18551d053da9SDavid Ahern f6i = fib6_table_lookup(net, table, oif, fl6, strict); 18561d053da9SDavid Ahern if (f6i->fib6_nsiblings) 18571d053da9SDavid Ahern f6i = fib6_multipath_select(net, f6i, fl6, oif, skb, strict); 18581d053da9SDavid Ahern 185923fb93a4SDavid Ahern if (f6i == net->ipv6.fib6_null_entry) { 1860421842edSDavid Ahern rt = net->ipv6.ip6_null_entry; 186166f5d6ceSWei Wang rcu_read_unlock(); 1862d3843fe5SWei Wang dst_hold(&rt->dst); 1863d3843fe5SWei Wang return rt; 1864d3843fe5SWei Wang } 186523fb93a4SDavid Ahern 186623fb93a4SDavid Ahern /*Search through exception table */ 186723fb93a4SDavid Ahern rt = rt6_find_cached_rt(f6i, &fl6->daddr, &fl6->saddr); 186823fb93a4SDavid Ahern if (rt) { 186910585b43SDavid Ahern if (ip6_hold_safe(net, &rt)) 18701da177e4SLinus Torvalds dst_use_noref(&rt->dst, jiffies); 1871d4ead6b3SDavid Ahern 187266f5d6ceSWei Wang rcu_read_unlock(); 1873d52d3997SMartin KaFai Lau return rt; 18743da59bd9SMartin KaFai Lau } else if (unlikely((fl6->flowi6_flags & FLOWI_FLAG_KNOWN_NH) && 187593c2fb25SDavid Ahern !(f6i->fib6_flags & RTF_GATEWAY))) { 18763da59bd9SMartin KaFai Lau /* Create a RTF_CACHE clone which will not be 18773da59bd9SMartin KaFai Lau * owned by the fib6 tree. It is for the special case where 18783da59bd9SMartin KaFai Lau * the daddr in the skb during the neighbor look-up is different 18793da59bd9SMartin KaFai Lau * from the fl6->daddr used to look-up route here. 18803da59bd9SMartin KaFai Lau */ 18813da59bd9SMartin KaFai Lau struct rt6_info *uncached_rt; 18823da59bd9SMartin KaFai Lau 188323fb93a4SDavid Ahern uncached_rt = ip6_rt_cache_alloc(f6i, &fl6->daddr, NULL); 1884d52d3997SMartin KaFai Lau 18854d85cd0cSDavid Ahern rcu_read_unlock(); 18863da59bd9SMartin KaFai Lau 18871cfb71eeSWei Wang if (uncached_rt) { 18881cfb71eeSWei Wang /* Uncached_rt's refcnt is taken during ip6_rt_cache_alloc() 18891cfb71eeSWei Wang * No need for another dst_hold() 18901cfb71eeSWei Wang */ 18918d0b94afSMartin KaFai Lau rt6_uncached_list_add(uncached_rt); 189281eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 18931cfb71eeSWei Wang } else { 18943da59bd9SMartin KaFai Lau uncached_rt = net->ipv6.ip6_null_entry; 18953da59bd9SMartin KaFai Lau dst_hold(&uncached_rt->dst); 18961cfb71eeSWei Wang } 1897b811580dSDavid Ahern 18983da59bd9SMartin KaFai Lau return uncached_rt; 1899d52d3997SMartin KaFai Lau } else { 1900d52d3997SMartin KaFai Lau /* Get a percpu copy */ 1901d52d3997SMartin KaFai Lau 1902d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1903d52d3997SMartin KaFai Lau 1904951f788aSEric Dumazet local_bh_disable(); 190523fb93a4SDavid Ahern pcpu_rt = rt6_get_pcpu_route(f6i); 1906d52d3997SMartin KaFai Lau 190793531c67SDavid Ahern if (!pcpu_rt) 190823fb93a4SDavid Ahern pcpu_rt = rt6_make_pcpu_route(net, f6i); 190993531c67SDavid Ahern 1910951f788aSEric Dumazet local_bh_enable(); 1911951f788aSEric Dumazet rcu_read_unlock(); 1912d4bea421SDavid Ahern 1913d52d3997SMartin KaFai Lau return pcpu_rt; 1914d52d3997SMartin KaFai Lau } 1915c71099acSThomas Graf } 19169ff74384SDavid Ahern EXPORT_SYMBOL_GPL(ip6_pol_route); 1917c71099acSThomas Graf 1918b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_input(struct net *net, 1919b75cc8f9SDavid Ahern struct fib6_table *table, 1920b75cc8f9SDavid Ahern struct flowi6 *fl6, 1921b75cc8f9SDavid Ahern const struct sk_buff *skb, 1922b75cc8f9SDavid Ahern int flags) 19234acad72dSPavel Emelyanov { 1924b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_iif, fl6, skb, flags); 19254acad72dSPavel Emelyanov } 19264acad72dSPavel Emelyanov 1927d409b847SMahesh Bandewar struct dst_entry *ip6_route_input_lookup(struct net *net, 192872331bc0SShmulik Ladkani struct net_device *dev, 1929b75cc8f9SDavid Ahern struct flowi6 *fl6, 1930b75cc8f9SDavid Ahern const struct sk_buff *skb, 1931b75cc8f9SDavid Ahern int flags) 193272331bc0SShmulik Ladkani { 193372331bc0SShmulik Ladkani if (rt6_need_strict(&fl6->daddr) && dev->type != ARPHRD_PIMREG) 193472331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_IFACE; 193572331bc0SShmulik Ladkani 1936b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_input); 193772331bc0SShmulik Ladkani } 1938d409b847SMahesh Bandewar EXPORT_SYMBOL_GPL(ip6_route_input_lookup); 193972331bc0SShmulik Ladkani 194023aebdacSJakub Sitnicki static void ip6_multipath_l3_keys(const struct sk_buff *skb, 19415e5d6fedSRoopa Prabhu struct flow_keys *keys, 19425e5d6fedSRoopa Prabhu struct flow_keys *flkeys) 194323aebdacSJakub Sitnicki { 194423aebdacSJakub Sitnicki const struct ipv6hdr *outer_iph = ipv6_hdr(skb); 194523aebdacSJakub Sitnicki const struct ipv6hdr *key_iph = outer_iph; 19465e5d6fedSRoopa Prabhu struct flow_keys *_flkeys = flkeys; 194723aebdacSJakub Sitnicki const struct ipv6hdr *inner_iph; 194823aebdacSJakub Sitnicki const struct icmp6hdr *icmph; 194923aebdacSJakub Sitnicki struct ipv6hdr _inner_iph; 1950cea67a2dSEric Dumazet struct icmp6hdr _icmph; 195123aebdacSJakub Sitnicki 195223aebdacSJakub Sitnicki if (likely(outer_iph->nexthdr != IPPROTO_ICMPV6)) 195323aebdacSJakub Sitnicki goto out; 195423aebdacSJakub Sitnicki 1955cea67a2dSEric Dumazet icmph = skb_header_pointer(skb, skb_transport_offset(skb), 1956cea67a2dSEric Dumazet sizeof(_icmph), &_icmph); 1957cea67a2dSEric Dumazet if (!icmph) 1958cea67a2dSEric Dumazet goto out; 1959cea67a2dSEric Dumazet 196023aebdacSJakub Sitnicki if (icmph->icmp6_type != ICMPV6_DEST_UNREACH && 196123aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PKT_TOOBIG && 196223aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_TIME_EXCEED && 196323aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PARAMPROB) 196423aebdacSJakub Sitnicki goto out; 196523aebdacSJakub Sitnicki 196623aebdacSJakub Sitnicki inner_iph = skb_header_pointer(skb, 196723aebdacSJakub Sitnicki skb_transport_offset(skb) + sizeof(*icmph), 196823aebdacSJakub Sitnicki sizeof(_inner_iph), &_inner_iph); 196923aebdacSJakub Sitnicki if (!inner_iph) 197023aebdacSJakub Sitnicki goto out; 197123aebdacSJakub Sitnicki 197223aebdacSJakub Sitnicki key_iph = inner_iph; 19735e5d6fedSRoopa Prabhu _flkeys = NULL; 197423aebdacSJakub Sitnicki out: 19755e5d6fedSRoopa Prabhu if (_flkeys) { 19765e5d6fedSRoopa Prabhu keys->addrs.v6addrs.src = _flkeys->addrs.v6addrs.src; 19775e5d6fedSRoopa Prabhu keys->addrs.v6addrs.dst = _flkeys->addrs.v6addrs.dst; 19785e5d6fedSRoopa Prabhu keys->tags.flow_label = _flkeys->tags.flow_label; 19795e5d6fedSRoopa Prabhu keys->basic.ip_proto = _flkeys->basic.ip_proto; 19805e5d6fedSRoopa Prabhu } else { 198123aebdacSJakub Sitnicki keys->addrs.v6addrs.src = key_iph->saddr; 198223aebdacSJakub Sitnicki keys->addrs.v6addrs.dst = key_iph->daddr; 1983fa1be7e0SMichal Kubecek keys->tags.flow_label = ip6_flowlabel(key_iph); 198423aebdacSJakub Sitnicki keys->basic.ip_proto = key_iph->nexthdr; 198523aebdacSJakub Sitnicki } 19865e5d6fedSRoopa Prabhu } 198723aebdacSJakub Sitnicki 198823aebdacSJakub Sitnicki /* if skb is set it will be used and fl6 can be NULL */ 1989b4bac172SDavid Ahern u32 rt6_multipath_hash(const struct net *net, const struct flowi6 *fl6, 1990b4bac172SDavid Ahern const struct sk_buff *skb, struct flow_keys *flkeys) 199123aebdacSJakub Sitnicki { 199223aebdacSJakub Sitnicki struct flow_keys hash_keys; 19939a2a537aSDavid Ahern u32 mhash; 199423aebdacSJakub Sitnicki 1995bbfa047aSDavid S. Miller switch (ip6_multipath_hash_policy(net)) { 1996b4bac172SDavid Ahern case 0: 19976f74b6c2SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 19986f74b6c2SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 19999a2a537aSDavid Ahern if (skb) { 20005e5d6fedSRoopa Prabhu ip6_multipath_l3_keys(skb, &hash_keys, flkeys); 20019a2a537aSDavid Ahern } else { 20029a2a537aSDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 20039a2a537aSDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 2004fa1be7e0SMichal Kubecek hash_keys.tags.flow_label = (__force u32)flowi6_get_flowlabel(fl6); 20059a2a537aSDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 200623aebdacSJakub Sitnicki } 2007b4bac172SDavid Ahern break; 2008b4bac172SDavid Ahern case 1: 2009b4bac172SDavid Ahern if (skb) { 2010b4bac172SDavid Ahern unsigned int flag = FLOW_DISSECTOR_F_STOP_AT_ENCAP; 2011b4bac172SDavid Ahern struct flow_keys keys; 2012b4bac172SDavid Ahern 2013b4bac172SDavid Ahern /* short-circuit if we already have L4 hash present */ 2014b4bac172SDavid Ahern if (skb->l4_hash) 2015b4bac172SDavid Ahern return skb_get_hash_raw(skb) >> 1; 2016b4bac172SDavid Ahern 2017b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 2018b4bac172SDavid Ahern 2019b4bac172SDavid Ahern if (!flkeys) { 2020b4bac172SDavid Ahern skb_flow_dissect_flow_keys(skb, &keys, flag); 2021b4bac172SDavid Ahern flkeys = &keys; 2022b4bac172SDavid Ahern } 2023b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 2024b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = flkeys->addrs.v6addrs.src; 2025b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = flkeys->addrs.v6addrs.dst; 2026b4bac172SDavid Ahern hash_keys.ports.src = flkeys->ports.src; 2027b4bac172SDavid Ahern hash_keys.ports.dst = flkeys->ports.dst; 2028b4bac172SDavid Ahern hash_keys.basic.ip_proto = flkeys->basic.ip_proto; 2029b4bac172SDavid Ahern } else { 2030b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 2031b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 2032b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 2033b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 2034b4bac172SDavid Ahern hash_keys.ports.src = fl6->fl6_sport; 2035b4bac172SDavid Ahern hash_keys.ports.dst = fl6->fl6_dport; 2036b4bac172SDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 2037b4bac172SDavid Ahern } 2038b4bac172SDavid Ahern break; 2039b4bac172SDavid Ahern } 20409a2a537aSDavid Ahern mhash = flow_hash_from_keys(&hash_keys); 204123aebdacSJakub Sitnicki 20429a2a537aSDavid Ahern return mhash >> 1; 204323aebdacSJakub Sitnicki } 204423aebdacSJakub Sitnicki 2045c71099acSThomas Graf void ip6_route_input(struct sk_buff *skb) 2046c71099acSThomas Graf { 2047b71d1d42SEric Dumazet const struct ipv6hdr *iph = ipv6_hdr(skb); 2048c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(skb->dev); 2049adaa70bbSThomas Graf int flags = RT6_LOOKUP_F_HAS_SADDR; 2050904af04dSJiri Benc struct ip_tunnel_info *tun_info; 20514c9483b2SDavid S. Miller struct flowi6 fl6 = { 2052e0d56fddSDavid Ahern .flowi6_iif = skb->dev->ifindex, 20534c9483b2SDavid S. Miller .daddr = iph->daddr, 20544c9483b2SDavid S. Miller .saddr = iph->saddr, 20556502ca52SYOSHIFUJI Hideaki / 吉藤英明 .flowlabel = ip6_flowinfo(iph), 20564c9483b2SDavid S. Miller .flowi6_mark = skb->mark, 20574c9483b2SDavid S. Miller .flowi6_proto = iph->nexthdr, 2058c71099acSThomas Graf }; 20595e5d6fedSRoopa Prabhu struct flow_keys *flkeys = NULL, _flkeys; 2060adaa70bbSThomas Graf 2061904af04dSJiri Benc tun_info = skb_tunnel_info(skb); 206246fa062aSJiri Benc if (tun_info && !(tun_info->mode & IP_TUNNEL_INFO_TX)) 2063904af04dSJiri Benc fl6.flowi6_tun_key.tun_id = tun_info->key.tun_id; 20645e5d6fedSRoopa Prabhu 20655e5d6fedSRoopa Prabhu if (fib6_rules_early_flow_dissect(net, skb, &fl6, &_flkeys)) 20665e5d6fedSRoopa Prabhu flkeys = &_flkeys; 20675e5d6fedSRoopa Prabhu 206823aebdacSJakub Sitnicki if (unlikely(fl6.flowi6_proto == IPPROTO_ICMPV6)) 2069b4bac172SDavid Ahern fl6.mp_hash = rt6_multipath_hash(net, &fl6, skb, flkeys); 207006e9d040SJiri Benc skb_dst_drop(skb); 2071b75cc8f9SDavid Ahern skb_dst_set(skb, 2072b75cc8f9SDavid Ahern ip6_route_input_lookup(net, skb->dev, &fl6, skb, flags)); 2073c71099acSThomas Graf } 2074c71099acSThomas Graf 2075b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_output(struct net *net, 2076b75cc8f9SDavid Ahern struct fib6_table *table, 2077b75cc8f9SDavid Ahern struct flowi6 *fl6, 2078b75cc8f9SDavid Ahern const struct sk_buff *skb, 2079b75cc8f9SDavid Ahern int flags) 2080c71099acSThomas Graf { 2081b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_oif, fl6, skb, flags); 2082c71099acSThomas Graf } 2083c71099acSThomas Graf 20846f21c96aSPaolo Abeni struct dst_entry *ip6_route_output_flags(struct net *net, const struct sock *sk, 20856f21c96aSPaolo Abeni struct flowi6 *fl6, int flags) 2086c71099acSThomas Graf { 2087d46a9d67SDavid Ahern bool any_src; 2088c71099acSThomas Graf 20893ede0bbcSRobert Shearman if (ipv6_addr_type(&fl6->daddr) & 20903ede0bbcSRobert Shearman (IPV6_ADDR_MULTICAST | IPV6_ADDR_LINKLOCAL)) { 20914c1feac5SDavid Ahern struct dst_entry *dst; 20924c1feac5SDavid Ahern 20934c1feac5SDavid Ahern dst = l3mdev_link_scope_lookup(net, fl6); 2094ca254490SDavid Ahern if (dst) 2095ca254490SDavid Ahern return dst; 20964c1feac5SDavid Ahern } 2097ca254490SDavid Ahern 20981fb9489bSPavel Emelyanov fl6->flowi6_iif = LOOPBACK_IFINDEX; 20994dc27d1cSDavid McCullough 2100d46a9d67SDavid Ahern any_src = ipv6_addr_any(&fl6->saddr); 2101741a11d9SDavid Ahern if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl6->daddr) || 2102d46a9d67SDavid Ahern (fl6->flowi6_oif && any_src)) 210377d16f45SYOSHIFUJI Hideaki flags |= RT6_LOOKUP_F_IFACE; 2104c71099acSThomas Graf 2105d46a9d67SDavid Ahern if (!any_src) 2106adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 21070c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 else if (sk) 21080c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs); 2109adaa70bbSThomas Graf 2110b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, NULL, flags, ip6_pol_route_output); 21111da177e4SLinus Torvalds } 21126f21c96aSPaolo Abeni EXPORT_SYMBOL_GPL(ip6_route_output_flags); 21131da177e4SLinus Torvalds 21142774c131SDavid S. Miller struct dst_entry *ip6_blackhole_route(struct net *net, struct dst_entry *dst_orig) 211514e50e57SDavid S. Miller { 21165c1e6aa3SDavid S. Miller struct rt6_info *rt, *ort = (struct rt6_info *) dst_orig; 21171dbe3252SWei Wang struct net_device *loopback_dev = net->loopback_dev; 211814e50e57SDavid S. Miller struct dst_entry *new = NULL; 211914e50e57SDavid S. Miller 21201dbe3252SWei Wang rt = dst_alloc(&ip6_dst_blackhole_ops, loopback_dev, 1, 212162cf27e5SSteffen Klassert DST_OBSOLETE_DEAD, 0); 212214e50e57SDavid S. Miller if (rt) { 21230a1f5962SMartin KaFai Lau rt6_info_init(rt); 212481eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 21250a1f5962SMartin KaFai Lau 2126d8d1f30bSChangli Gao new = &rt->dst; 212714e50e57SDavid S. Miller new->__use = 1; 2128352e512cSHerbert Xu new->input = dst_discard; 2129ede2059dSEric W. Biederman new->output = dst_discard_out; 213014e50e57SDavid S. Miller 2131defb3519SDavid S. Miller dst_copy_metrics(new, &ort->dst); 213214e50e57SDavid S. Miller 21331dbe3252SWei Wang rt->rt6i_idev = in6_dev_get(loopback_dev); 21344e3fd7a0SAlexey Dobriyan rt->rt6i_gateway = ort->rt6i_gateway; 21350a1f5962SMartin KaFai Lau rt->rt6i_flags = ort->rt6i_flags & ~RTF_PCPU; 213614e50e57SDavid S. Miller 213714e50e57SDavid S. Miller memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key)); 213814e50e57SDavid S. Miller #ifdef CONFIG_IPV6_SUBTREES 213914e50e57SDavid S. Miller memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key)); 214014e50e57SDavid S. Miller #endif 214114e50e57SDavid S. Miller } 214214e50e57SDavid S. Miller 214369ead7afSDavid S. Miller dst_release(dst_orig); 214469ead7afSDavid S. Miller return new ? new : ERR_PTR(-ENOMEM); 214514e50e57SDavid S. Miller } 214614e50e57SDavid S. Miller 21471da177e4SLinus Torvalds /* 21481da177e4SLinus Torvalds * Destination cache support functions 21491da177e4SLinus Torvalds */ 21501da177e4SLinus Torvalds 21518d1c802bSDavid Ahern static bool fib6_check(struct fib6_info *f6i, u32 cookie) 21523da59bd9SMartin KaFai Lau { 215336143645SSteffen Klassert u32 rt_cookie = 0; 2154c5cff856SWei Wang 21558ae86971SDavid Ahern if (!fib6_get_cookie_safe(f6i, &rt_cookie) || rt_cookie != cookie) 215693531c67SDavid Ahern return false; 215793531c67SDavid Ahern 215893531c67SDavid Ahern if (fib6_check_expired(f6i)) 215993531c67SDavid Ahern return false; 216093531c67SDavid Ahern 216193531c67SDavid Ahern return true; 216293531c67SDavid Ahern } 216393531c67SDavid Ahern 2164a68886a6SDavid Ahern static struct dst_entry *rt6_check(struct rt6_info *rt, 2165a68886a6SDavid Ahern struct fib6_info *from, 2166a68886a6SDavid Ahern u32 cookie) 21673da59bd9SMartin KaFai Lau { 2168c5cff856SWei Wang u32 rt_cookie = 0; 2169c5cff856SWei Wang 2170a68886a6SDavid Ahern if ((from && !fib6_get_cookie_safe(from, &rt_cookie)) || 217193531c67SDavid Ahern rt_cookie != cookie) 21723da59bd9SMartin KaFai Lau return NULL; 21733da59bd9SMartin KaFai Lau 21743da59bd9SMartin KaFai Lau if (rt6_check_expired(rt)) 21753da59bd9SMartin KaFai Lau return NULL; 21763da59bd9SMartin KaFai Lau 21773da59bd9SMartin KaFai Lau return &rt->dst; 21783da59bd9SMartin KaFai Lau } 21793da59bd9SMartin KaFai Lau 2180a68886a6SDavid Ahern static struct dst_entry *rt6_dst_from_check(struct rt6_info *rt, 2181a68886a6SDavid Ahern struct fib6_info *from, 2182a68886a6SDavid Ahern u32 cookie) 21833da59bd9SMartin KaFai Lau { 21845973fb1eSMartin KaFai Lau if (!__rt6_check_expired(rt) && 21855973fb1eSMartin KaFai Lau rt->dst.obsolete == DST_OBSOLETE_FORCE_CHK && 2186a68886a6SDavid Ahern fib6_check(from, cookie)) 21873da59bd9SMartin KaFai Lau return &rt->dst; 21883da59bd9SMartin KaFai Lau else 21893da59bd9SMartin KaFai Lau return NULL; 21903da59bd9SMartin KaFai Lau } 21913da59bd9SMartin KaFai Lau 21921da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie) 21931da177e4SLinus Torvalds { 2194a87b7dc9SDavid Ahern struct dst_entry *dst_ret; 2195a68886a6SDavid Ahern struct fib6_info *from; 21961da177e4SLinus Torvalds struct rt6_info *rt; 21971da177e4SLinus Torvalds 2198a87b7dc9SDavid Ahern rt = container_of(dst, struct rt6_info, dst); 2199a87b7dc9SDavid Ahern 2200a87b7dc9SDavid Ahern rcu_read_lock(); 22011da177e4SLinus Torvalds 22026f3118b5SNicolas Dichtel /* All IPV6 dsts are created with ->obsolete set to the value 22036f3118b5SNicolas Dichtel * DST_OBSOLETE_FORCE_CHK which forces validation calls down 22046f3118b5SNicolas Dichtel * into this function always. 22056f3118b5SNicolas Dichtel */ 2206e3bc10bdSHannes Frederic Sowa 2207a68886a6SDavid Ahern from = rcu_dereference(rt->from); 22084b32b5adSMartin KaFai Lau 2209a68886a6SDavid Ahern if (from && (rt->rt6i_flags & RTF_PCPU || 2210a68886a6SDavid Ahern unlikely(!list_empty(&rt->rt6i_uncached)))) 2211a68886a6SDavid Ahern dst_ret = rt6_dst_from_check(rt, from, cookie); 22123da59bd9SMartin KaFai Lau else 2213a68886a6SDavid Ahern dst_ret = rt6_check(rt, from, cookie); 2214a87b7dc9SDavid Ahern 2215a87b7dc9SDavid Ahern rcu_read_unlock(); 2216a87b7dc9SDavid Ahern 2217a87b7dc9SDavid Ahern return dst_ret; 22181da177e4SLinus Torvalds } 22191da177e4SLinus Torvalds 22201da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *dst) 22211da177e4SLinus Torvalds { 22221da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *) dst; 22231da177e4SLinus Torvalds 22241da177e4SLinus Torvalds if (rt) { 222554c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt->rt6i_flags & RTF_CACHE) { 2226c3c14da0SDavid Ahern rcu_read_lock(); 222754c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt6_check_expired(rt)) { 222893531c67SDavid Ahern rt6_remove_exception_rt(rt); 222954c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 22301da177e4SLinus Torvalds } 2231c3c14da0SDavid Ahern rcu_read_unlock(); 223254c1a859SYOSHIFUJI Hideaki / 吉藤英明 } else { 223354c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst_release(dst); 223454c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 223554c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 223654c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 223754c1a859SYOSHIFUJI Hideaki / 吉藤英明 return dst; 22381da177e4SLinus Torvalds } 22391da177e4SLinus Torvalds 22401da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb) 22411da177e4SLinus Torvalds { 22421da177e4SLinus Torvalds struct rt6_info *rt; 22431da177e4SLinus Torvalds 22443ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0); 22451da177e4SLinus Torvalds 2246adf30907SEric Dumazet rt = (struct rt6_info *) skb_dst(skb); 22471da177e4SLinus Torvalds if (rt) { 22488a14e46fSDavid Ahern rcu_read_lock(); 22491eb4f758SHannes Frederic Sowa if (rt->rt6i_flags & RTF_CACHE) { 225093531c67SDavid Ahern rt6_remove_exception_rt(rt); 2251c5cff856SWei Wang } else { 2252a68886a6SDavid Ahern struct fib6_info *from; 2253c5cff856SWei Wang struct fib6_node *fn; 2254c5cff856SWei Wang 2255a68886a6SDavid Ahern from = rcu_dereference(rt->from); 2256a68886a6SDavid Ahern if (from) { 2257a68886a6SDavid Ahern fn = rcu_dereference(from->fib6_node); 2258c5cff856SWei Wang if (fn && (rt->rt6i_flags & RTF_DEFAULT)) 2259c5cff856SWei Wang fn->fn_sernum = -1; 2260a68886a6SDavid Ahern } 22611da177e4SLinus Torvalds } 22621da177e4SLinus Torvalds rcu_read_unlock(); 22631da177e4SLinus Torvalds } 22641da177e4SLinus Torvalds } 22651da177e4SLinus Torvalds 22666a3e030fSDavid Ahern static void rt6_update_expires(struct rt6_info *rt0, int timeout) 22676a3e030fSDavid Ahern { 2268a68886a6SDavid Ahern if (!(rt0->rt6i_flags & RTF_EXPIRES)) { 2269a68886a6SDavid Ahern struct fib6_info *from; 2270a68886a6SDavid Ahern 2271a68886a6SDavid Ahern rcu_read_lock(); 2272a68886a6SDavid Ahern from = rcu_dereference(rt0->from); 2273a68886a6SDavid Ahern if (from) 2274a68886a6SDavid Ahern rt0->dst.expires = from->expires; 2275a68886a6SDavid Ahern rcu_read_unlock(); 2276a68886a6SDavid Ahern } 22776a3e030fSDavid Ahern 22786a3e030fSDavid Ahern dst_set_expires(&rt0->dst, timeout); 22796a3e030fSDavid Ahern rt0->rt6i_flags |= RTF_EXPIRES; 22806700c270SDavid S. Miller } 22811da177e4SLinus Torvalds 228245e4fd26SMartin KaFai Lau static void rt6_do_update_pmtu(struct rt6_info *rt, u32 mtu) 228345e4fd26SMartin KaFai Lau { 228445e4fd26SMartin KaFai Lau struct net *net = dev_net(rt->dst.dev); 228545e4fd26SMartin KaFai Lau 2286d4ead6b3SDavid Ahern dst_metric_set(&rt->dst, RTAX_MTU, mtu); 228745e4fd26SMartin KaFai Lau rt->rt6i_flags |= RTF_MODIFIED; 228845e4fd26SMartin KaFai Lau rt6_update_expires(rt, net->ipv6.sysctl.ip6_rt_mtu_expires); 228945e4fd26SMartin KaFai Lau } 229045e4fd26SMartin KaFai Lau 22910d3f6d29SMartin KaFai Lau static bool rt6_cache_allowed_for_pmtu(const struct rt6_info *rt) 22920d3f6d29SMartin KaFai Lau { 22930d3f6d29SMartin KaFai Lau return !(rt->rt6i_flags & RTF_CACHE) && 22941490ed2aSPaolo Abeni (rt->rt6i_flags & RTF_PCPU || rcu_access_pointer(rt->from)); 22950d3f6d29SMartin KaFai Lau } 22960d3f6d29SMartin KaFai Lau 229745e4fd26SMartin KaFai Lau static void __ip6_rt_update_pmtu(struct dst_entry *dst, const struct sock *sk, 229845e4fd26SMartin KaFai Lau const struct ipv6hdr *iph, u32 mtu) 22991da177e4SLinus Torvalds { 23000dec879fSJulian Anastasov const struct in6_addr *daddr, *saddr; 23011da177e4SLinus Torvalds struct rt6_info *rt6 = (struct rt6_info *)dst; 23021da177e4SLinus Torvalds 230319bda36cSXin Long if (dst_metric_locked(dst, RTAX_MTU)) 230419bda36cSXin Long return; 230519bda36cSXin Long 230645e4fd26SMartin KaFai Lau if (iph) { 230745e4fd26SMartin KaFai Lau daddr = &iph->daddr; 230845e4fd26SMartin KaFai Lau saddr = &iph->saddr; 230945e4fd26SMartin KaFai Lau } else if (sk) { 231045e4fd26SMartin KaFai Lau daddr = &sk->sk_v6_daddr; 231145e4fd26SMartin KaFai Lau saddr = &inet6_sk(sk)->saddr; 231245e4fd26SMartin KaFai Lau } else { 23130dec879fSJulian Anastasov daddr = NULL; 23140dec879fSJulian Anastasov saddr = NULL; 23151da177e4SLinus Torvalds } 23160dec879fSJulian Anastasov dst_confirm_neigh(dst, daddr); 23170dec879fSJulian Anastasov mtu = max_t(u32, mtu, IPV6_MIN_MTU); 23180dec879fSJulian Anastasov if (mtu >= dst_mtu(dst)) 23190dec879fSJulian Anastasov return; 23200dec879fSJulian Anastasov 23210dec879fSJulian Anastasov if (!rt6_cache_allowed_for_pmtu(rt6)) { 23220dec879fSJulian Anastasov rt6_do_update_pmtu(rt6, mtu); 23232b760fcfSWei Wang /* update rt6_ex->stamp for cache */ 23242b760fcfSWei Wang if (rt6->rt6i_flags & RTF_CACHE) 23252b760fcfSWei Wang rt6_update_exception_stamp_rt(rt6); 23260dec879fSJulian Anastasov } else if (daddr) { 2327a68886a6SDavid Ahern struct fib6_info *from; 23280dec879fSJulian Anastasov struct rt6_info *nrt6; 23290dec879fSJulian Anastasov 23304d85cd0cSDavid Ahern rcu_read_lock(); 2331a68886a6SDavid Ahern from = rcu_dereference(rt6->from); 2332a68886a6SDavid Ahern nrt6 = ip6_rt_cache_alloc(from, daddr, saddr); 233345e4fd26SMartin KaFai Lau if (nrt6) { 233445e4fd26SMartin KaFai Lau rt6_do_update_pmtu(nrt6, mtu); 2335a68886a6SDavid Ahern if (rt6_insert_exception(nrt6, from)) 23362b760fcfSWei Wang dst_release_immediate(&nrt6->dst); 233745e4fd26SMartin KaFai Lau } 2338a68886a6SDavid Ahern rcu_read_unlock(); 233945e4fd26SMartin KaFai Lau } 234045e4fd26SMartin KaFai Lau } 234145e4fd26SMartin KaFai Lau 234245e4fd26SMartin KaFai Lau static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 234345e4fd26SMartin KaFai Lau struct sk_buff *skb, u32 mtu) 234445e4fd26SMartin KaFai Lau { 234545e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, sk, skb ? ipv6_hdr(skb) : NULL, mtu); 23461da177e4SLinus Torvalds } 23471da177e4SLinus Torvalds 234842ae66c8SDavid S. Miller void ip6_update_pmtu(struct sk_buff *skb, struct net *net, __be32 mtu, 2349e2d118a1SLorenzo Colitti int oif, u32 mark, kuid_t uid) 235081aded24SDavid S. Miller { 235181aded24SDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 235281aded24SDavid S. Miller struct dst_entry *dst; 2353dc92095dSMaciej Żenczykowski struct flowi6 fl6 = { 2354dc92095dSMaciej Żenczykowski .flowi6_oif = oif, 2355dc92095dSMaciej Żenczykowski .flowi6_mark = mark ? mark : IP6_REPLY_MARK(net, skb->mark), 2356dc92095dSMaciej Żenczykowski .daddr = iph->daddr, 2357dc92095dSMaciej Żenczykowski .saddr = iph->saddr, 2358dc92095dSMaciej Żenczykowski .flowlabel = ip6_flowinfo(iph), 2359dc92095dSMaciej Żenczykowski .flowi6_uid = uid, 2360dc92095dSMaciej Żenczykowski }; 236181aded24SDavid S. Miller 236281aded24SDavid S. Miller dst = ip6_route_output(net, NULL, &fl6); 236381aded24SDavid S. Miller if (!dst->error) 236445e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, NULL, iph, ntohl(mtu)); 236581aded24SDavid S. Miller dst_release(dst); 236681aded24SDavid S. Miller } 236781aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_update_pmtu); 236881aded24SDavid S. Miller 236981aded24SDavid S. Miller void ip6_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, __be32 mtu) 237081aded24SDavid S. Miller { 23717ddacfa5SDavid Ahern int oif = sk->sk_bound_dev_if; 237233c162a9SMartin KaFai Lau struct dst_entry *dst; 237333c162a9SMartin KaFai Lau 23747ddacfa5SDavid Ahern if (!oif && skb->dev) 23757ddacfa5SDavid Ahern oif = l3mdev_master_ifindex(skb->dev); 23767ddacfa5SDavid Ahern 23777ddacfa5SDavid Ahern ip6_update_pmtu(skb, sock_net(sk), mtu, oif, sk->sk_mark, sk->sk_uid); 237833c162a9SMartin KaFai Lau 237933c162a9SMartin KaFai Lau dst = __sk_dst_get(sk); 238033c162a9SMartin KaFai Lau if (!dst || !dst->obsolete || 238133c162a9SMartin KaFai Lau dst->ops->check(dst, inet6_sk(sk)->dst_cookie)) 238233c162a9SMartin KaFai Lau return; 238333c162a9SMartin KaFai Lau 238433c162a9SMartin KaFai Lau bh_lock_sock(sk); 238533c162a9SMartin KaFai Lau if (!sock_owned_by_user(sk) && !ipv6_addr_v4mapped(&sk->sk_v6_daddr)) 238633c162a9SMartin KaFai Lau ip6_datagram_dst_update(sk, false); 238733c162a9SMartin KaFai Lau bh_unlock_sock(sk); 238881aded24SDavid S. Miller } 238981aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_update_pmtu); 239081aded24SDavid S. Miller 23917d6850f7SAlexey Kodanev void ip6_sk_dst_store_flow(struct sock *sk, struct dst_entry *dst, 23927d6850f7SAlexey Kodanev const struct flowi6 *fl6) 23937d6850f7SAlexey Kodanev { 23947d6850f7SAlexey Kodanev #ifdef CONFIG_IPV6_SUBTREES 23957d6850f7SAlexey Kodanev struct ipv6_pinfo *np = inet6_sk(sk); 23967d6850f7SAlexey Kodanev #endif 23977d6850f7SAlexey Kodanev 23987d6850f7SAlexey Kodanev ip6_dst_store(sk, dst, 23997d6850f7SAlexey Kodanev ipv6_addr_equal(&fl6->daddr, &sk->sk_v6_daddr) ? 24007d6850f7SAlexey Kodanev &sk->sk_v6_daddr : NULL, 24017d6850f7SAlexey Kodanev #ifdef CONFIG_IPV6_SUBTREES 24027d6850f7SAlexey Kodanev ipv6_addr_equal(&fl6->saddr, &np->saddr) ? 24037d6850f7SAlexey Kodanev &np->saddr : 24047d6850f7SAlexey Kodanev #endif 24057d6850f7SAlexey Kodanev NULL); 24067d6850f7SAlexey Kodanev } 24077d6850f7SAlexey Kodanev 2408b55b76b2SDuan Jiong /* Handle redirects */ 2409b55b76b2SDuan Jiong struct ip6rd_flowi { 2410b55b76b2SDuan Jiong struct flowi6 fl6; 2411b55b76b2SDuan Jiong struct in6_addr gateway; 2412b55b76b2SDuan Jiong }; 2413b55b76b2SDuan Jiong 2414b55b76b2SDuan Jiong static struct rt6_info *__ip6_route_redirect(struct net *net, 2415b55b76b2SDuan Jiong struct fib6_table *table, 2416b55b76b2SDuan Jiong struct flowi6 *fl6, 2417b75cc8f9SDavid Ahern const struct sk_buff *skb, 2418b55b76b2SDuan Jiong int flags) 2419b55b76b2SDuan Jiong { 2420b55b76b2SDuan Jiong struct ip6rd_flowi *rdfl = (struct ip6rd_flowi *)fl6; 242123fb93a4SDavid Ahern struct rt6_info *ret = NULL, *rt_cache; 24228d1c802bSDavid Ahern struct fib6_info *rt; 2423b55b76b2SDuan Jiong struct fib6_node *fn; 2424b55b76b2SDuan Jiong 2425b55b76b2SDuan Jiong /* Get the "current" route for this destination and 242667c408cfSAlexander Alemayhu * check if the redirect has come from appropriate router. 2427b55b76b2SDuan Jiong * 2428b55b76b2SDuan Jiong * RFC 4861 specifies that redirects should only be 2429b55b76b2SDuan Jiong * accepted if they come from the nexthop to the target. 2430b55b76b2SDuan Jiong * Due to the way the routes are chosen, this notion 2431b55b76b2SDuan Jiong * is a bit fuzzy and one might need to check all possible 2432b55b76b2SDuan Jiong * routes. 2433b55b76b2SDuan Jiong */ 2434b55b76b2SDuan Jiong 243566f5d6ceSWei Wang rcu_read_lock(); 24366454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 2437b55b76b2SDuan Jiong restart: 243866f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 24395e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_DEAD) 24408067bb8cSIdo Schimmel continue; 244114895687SDavid Ahern if (fib6_check_expired(rt)) 2442b55b76b2SDuan Jiong continue; 244393c2fb25SDavid Ahern if (rt->fib6_flags & RTF_REJECT) 2444b55b76b2SDuan Jiong break; 244593c2fb25SDavid Ahern if (!(rt->fib6_flags & RTF_GATEWAY)) 2446b55b76b2SDuan Jiong continue; 24475e670d84SDavid Ahern if (fl6->flowi6_oif != rt->fib6_nh.nh_dev->ifindex) 2448b55b76b2SDuan Jiong continue; 24492b760fcfSWei Wang /* rt_cache's gateway might be different from its 'parent' 24502b760fcfSWei Wang * in the case of an ip redirect. 24512b760fcfSWei Wang * So we keep searching in the exception table if the gateway 24522b760fcfSWei Wang * is different. 24532b760fcfSWei Wang */ 24545e670d84SDavid Ahern if (!ipv6_addr_equal(&rdfl->gateway, &rt->fib6_nh.nh_gw)) { 24552b760fcfSWei Wang rt_cache = rt6_find_cached_rt(rt, 24562b760fcfSWei Wang &fl6->daddr, 24572b760fcfSWei Wang &fl6->saddr); 24582b760fcfSWei Wang if (rt_cache && 24592b760fcfSWei Wang ipv6_addr_equal(&rdfl->gateway, 24602b760fcfSWei Wang &rt_cache->rt6i_gateway)) { 246123fb93a4SDavid Ahern ret = rt_cache; 24622b760fcfSWei Wang break; 24632b760fcfSWei Wang } 2464b55b76b2SDuan Jiong continue; 24652b760fcfSWei Wang } 2466b55b76b2SDuan Jiong break; 2467b55b76b2SDuan Jiong } 2468b55b76b2SDuan Jiong 2469b55b76b2SDuan Jiong if (!rt) 2470421842edSDavid Ahern rt = net->ipv6.fib6_null_entry; 247193c2fb25SDavid Ahern else if (rt->fib6_flags & RTF_REJECT) { 247223fb93a4SDavid Ahern ret = net->ipv6.ip6_null_entry; 2473b0a1ba59SMartin KaFai Lau goto out; 2474b0a1ba59SMartin KaFai Lau } 2475b0a1ba59SMartin KaFai Lau 2476421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) { 2477a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 2478a3c00e46SMartin KaFai Lau if (fn) 2479a3c00e46SMartin KaFai Lau goto restart; 2480b55b76b2SDuan Jiong } 2481a3c00e46SMartin KaFai Lau 2482b0a1ba59SMartin KaFai Lau out: 248323fb93a4SDavid Ahern if (ret) 248410585b43SDavid Ahern ip6_hold_safe(net, &ret); 248523fb93a4SDavid Ahern else 248623fb93a4SDavid Ahern ret = ip6_create_rt_rcu(rt); 2487b55b76b2SDuan Jiong 248866f5d6ceSWei Wang rcu_read_unlock(); 2489b55b76b2SDuan Jiong 2490b65f164dSPaolo Abeni trace_fib6_table_lookup(net, rt, table, fl6); 249123fb93a4SDavid Ahern return ret; 2492b55b76b2SDuan Jiong }; 2493b55b76b2SDuan Jiong 2494b55b76b2SDuan Jiong static struct dst_entry *ip6_route_redirect(struct net *net, 2495b55b76b2SDuan Jiong const struct flowi6 *fl6, 2496b75cc8f9SDavid Ahern const struct sk_buff *skb, 2497b55b76b2SDuan Jiong const struct in6_addr *gateway) 2498b55b76b2SDuan Jiong { 2499b55b76b2SDuan Jiong int flags = RT6_LOOKUP_F_HAS_SADDR; 2500b55b76b2SDuan Jiong struct ip6rd_flowi rdfl; 2501b55b76b2SDuan Jiong 2502b55b76b2SDuan Jiong rdfl.fl6 = *fl6; 2503b55b76b2SDuan Jiong rdfl.gateway = *gateway; 2504b55b76b2SDuan Jiong 2505b75cc8f9SDavid Ahern return fib6_rule_lookup(net, &rdfl.fl6, skb, 2506b55b76b2SDuan Jiong flags, __ip6_route_redirect); 2507b55b76b2SDuan Jiong } 2508b55b76b2SDuan Jiong 2509e2d118a1SLorenzo Colitti void ip6_redirect(struct sk_buff *skb, struct net *net, int oif, u32 mark, 2510e2d118a1SLorenzo Colitti kuid_t uid) 25113a5ad2eeSDavid S. Miller { 25123a5ad2eeSDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 25133a5ad2eeSDavid S. Miller struct dst_entry *dst; 25141f7f10acSMaciej Żenczykowski struct flowi6 fl6 = { 25151f7f10acSMaciej Żenczykowski .flowi6_iif = LOOPBACK_IFINDEX, 25161f7f10acSMaciej Żenczykowski .flowi6_oif = oif, 25171f7f10acSMaciej Żenczykowski .flowi6_mark = mark, 25181f7f10acSMaciej Żenczykowski .daddr = iph->daddr, 25191f7f10acSMaciej Żenczykowski .saddr = iph->saddr, 25201f7f10acSMaciej Żenczykowski .flowlabel = ip6_flowinfo(iph), 25211f7f10acSMaciej Żenczykowski .flowi6_uid = uid, 25221f7f10acSMaciej Żenczykowski }; 25233a5ad2eeSDavid S. Miller 2524b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &ipv6_hdr(skb)->saddr); 25256700c270SDavid S. Miller rt6_do_redirect(dst, NULL, skb); 25263a5ad2eeSDavid S. Miller dst_release(dst); 25273a5ad2eeSDavid S. Miller } 25283a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_redirect); 25293a5ad2eeSDavid S. Miller 2530d456336dSMaciej Żenczykowski void ip6_redirect_no_header(struct sk_buff *skb, struct net *net, int oif) 2531c92a59ecSDuan Jiong { 2532c92a59ecSDuan Jiong const struct ipv6hdr *iph = ipv6_hdr(skb); 2533c92a59ecSDuan Jiong const struct rd_msg *msg = (struct rd_msg *)icmp6_hdr(skb); 2534c92a59ecSDuan Jiong struct dst_entry *dst; 25350b26fb17SMaciej Żenczykowski struct flowi6 fl6 = { 25360b26fb17SMaciej Żenczykowski .flowi6_iif = LOOPBACK_IFINDEX, 25370b26fb17SMaciej Żenczykowski .flowi6_oif = oif, 25380b26fb17SMaciej Żenczykowski .daddr = msg->dest, 25390b26fb17SMaciej Żenczykowski .saddr = iph->daddr, 25400b26fb17SMaciej Żenczykowski .flowi6_uid = sock_net_uid(net, NULL), 25410b26fb17SMaciej Żenczykowski }; 2542c92a59ecSDuan Jiong 2543b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &iph->saddr); 2544c92a59ecSDuan Jiong rt6_do_redirect(dst, NULL, skb); 2545c92a59ecSDuan Jiong dst_release(dst); 2546c92a59ecSDuan Jiong } 2547c92a59ecSDuan Jiong 25483a5ad2eeSDavid S. Miller void ip6_sk_redirect(struct sk_buff *skb, struct sock *sk) 25493a5ad2eeSDavid S. Miller { 2550e2d118a1SLorenzo Colitti ip6_redirect(skb, sock_net(sk), sk->sk_bound_dev_if, sk->sk_mark, 2551e2d118a1SLorenzo Colitti sk->sk_uid); 25523a5ad2eeSDavid S. Miller } 25533a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_redirect); 25543a5ad2eeSDavid S. Miller 25550dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst) 25561da177e4SLinus Torvalds { 25570dbaee3bSDavid S. Miller struct net_device *dev = dst->dev; 25580dbaee3bSDavid S. Miller unsigned int mtu = dst_mtu(dst); 25590dbaee3bSDavid S. Miller struct net *net = dev_net(dev); 25600dbaee3bSDavid S. Miller 25611da177e4SLinus Torvalds mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr); 25621da177e4SLinus Torvalds 25635578689aSDaniel Lezcano if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss) 25645578689aSDaniel Lezcano mtu = net->ipv6.sysctl.ip6_rt_min_advmss; 25651da177e4SLinus Torvalds 25661da177e4SLinus Torvalds /* 25671da177e4SLinus Torvalds * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and 25681da177e4SLinus Torvalds * corresponding MSS is IPV6_MAXPLEN - tcp_header_size. 25691da177e4SLinus Torvalds * IPV6_MAXPLEN is also valid and means: "any MSS, 25701da177e4SLinus Torvalds * rely only on pmtu discovery" 25711da177e4SLinus Torvalds */ 25721da177e4SLinus Torvalds if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr)) 25731da177e4SLinus Torvalds mtu = IPV6_MAXPLEN; 25741da177e4SLinus Torvalds return mtu; 25751da177e4SLinus Torvalds } 25761da177e4SLinus Torvalds 2577ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst) 2578d33e4553SDavid S. Miller { 2579d33e4553SDavid S. Miller struct inet6_dev *idev; 2580d4ead6b3SDavid Ahern unsigned int mtu; 2581618f9bc7SSteffen Klassert 25824b32b5adSMartin KaFai Lau mtu = dst_metric_raw(dst, RTAX_MTU); 25834b32b5adSMartin KaFai Lau if (mtu) 25844b32b5adSMartin KaFai Lau goto out; 25854b32b5adSMartin KaFai Lau 2586618f9bc7SSteffen Klassert mtu = IPV6_MIN_MTU; 2587d33e4553SDavid S. Miller 2588d33e4553SDavid S. Miller rcu_read_lock(); 2589d33e4553SDavid S. Miller idev = __in6_dev_get(dst->dev); 2590d33e4553SDavid S. Miller if (idev) 2591d33e4553SDavid S. Miller mtu = idev->cnf.mtu6; 2592d33e4553SDavid S. Miller rcu_read_unlock(); 2593d33e4553SDavid S. Miller 259430f78d8eSEric Dumazet out: 259514972cbdSRoopa Prabhu mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 259614972cbdSRoopa Prabhu 259714972cbdSRoopa Prabhu return mtu - lwtunnel_headroom(dst->lwtstate, mtu); 2598d33e4553SDavid S. Miller } 2599d33e4553SDavid S. Miller 2600901731b8SDavid Ahern /* MTU selection: 2601901731b8SDavid Ahern * 1. mtu on route is locked - use it 2602901731b8SDavid Ahern * 2. mtu from nexthop exception 2603901731b8SDavid Ahern * 3. mtu from egress device 2604901731b8SDavid Ahern * 2605901731b8SDavid Ahern * based on ip6_dst_mtu_forward and exception logic of 2606901731b8SDavid Ahern * rt6_find_cached_rt; called with rcu_read_lock 2607901731b8SDavid Ahern */ 2608901731b8SDavid Ahern u32 ip6_mtu_from_fib6(struct fib6_info *f6i, struct in6_addr *daddr, 2609901731b8SDavid Ahern struct in6_addr *saddr) 2610901731b8SDavid Ahern { 2611901731b8SDavid Ahern struct rt6_exception_bucket *bucket; 2612901731b8SDavid Ahern struct rt6_exception *rt6_ex; 2613901731b8SDavid Ahern struct in6_addr *src_key; 2614901731b8SDavid Ahern struct inet6_dev *idev; 2615901731b8SDavid Ahern u32 mtu = 0; 2616901731b8SDavid Ahern 2617901731b8SDavid Ahern if (unlikely(fib6_metric_locked(f6i, RTAX_MTU))) { 2618901731b8SDavid Ahern mtu = f6i->fib6_pmtu; 2619901731b8SDavid Ahern if (mtu) 2620901731b8SDavid Ahern goto out; 2621901731b8SDavid Ahern } 2622901731b8SDavid Ahern 2623901731b8SDavid Ahern src_key = NULL; 2624901731b8SDavid Ahern #ifdef CONFIG_IPV6_SUBTREES 2625901731b8SDavid Ahern if (f6i->fib6_src.plen) 2626901731b8SDavid Ahern src_key = saddr; 2627901731b8SDavid Ahern #endif 2628901731b8SDavid Ahern 2629901731b8SDavid Ahern bucket = rcu_dereference(f6i->rt6i_exception_bucket); 2630901731b8SDavid Ahern rt6_ex = __rt6_find_exception_rcu(&bucket, daddr, src_key); 2631901731b8SDavid Ahern if (rt6_ex && !rt6_check_expired(rt6_ex->rt6i)) 2632901731b8SDavid Ahern mtu = dst_metric_raw(&rt6_ex->rt6i->dst, RTAX_MTU); 2633901731b8SDavid Ahern 2634901731b8SDavid Ahern if (likely(!mtu)) { 2635901731b8SDavid Ahern struct net_device *dev = fib6_info_nh_dev(f6i); 2636901731b8SDavid Ahern 2637901731b8SDavid Ahern mtu = IPV6_MIN_MTU; 2638901731b8SDavid Ahern idev = __in6_dev_get(dev); 2639901731b8SDavid Ahern if (idev && idev->cnf.mtu6 > mtu) 2640901731b8SDavid Ahern mtu = idev->cnf.mtu6; 2641901731b8SDavid Ahern } 2642901731b8SDavid Ahern 2643901731b8SDavid Ahern mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 2644901731b8SDavid Ahern out: 2645901731b8SDavid Ahern return mtu - lwtunnel_headroom(fib6_info_nh_lwt(f6i), mtu); 2646901731b8SDavid Ahern } 2647901731b8SDavid Ahern 26483b00944cSYOSHIFUJI Hideaki struct dst_entry *icmp6_dst_alloc(struct net_device *dev, 264987a11578SDavid S. Miller struct flowi6 *fl6) 26501da177e4SLinus Torvalds { 265187a11578SDavid S. Miller struct dst_entry *dst; 26521da177e4SLinus Torvalds struct rt6_info *rt; 26531da177e4SLinus Torvalds struct inet6_dev *idev = in6_dev_get(dev); 2654c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 26551da177e4SLinus Torvalds 265638308473SDavid S. Miller if (unlikely(!idev)) 2657122bdf67SEric Dumazet return ERR_PTR(-ENODEV); 26581da177e4SLinus Torvalds 2659ad706862SMartin KaFai Lau rt = ip6_dst_alloc(net, dev, 0); 266038308473SDavid S. Miller if (unlikely(!rt)) { 26611da177e4SLinus Torvalds in6_dev_put(idev); 266287a11578SDavid S. Miller dst = ERR_PTR(-ENOMEM); 26631da177e4SLinus Torvalds goto out; 26641da177e4SLinus Torvalds } 26651da177e4SLinus Torvalds 26668e2ec639SYan, Zheng rt->dst.flags |= DST_HOST; 2667588753f1SBrendan McGrath rt->dst.input = ip6_input; 26688e2ec639SYan, Zheng rt->dst.output = ip6_output; 2669550bab42SJulian Anastasov rt->rt6i_gateway = fl6->daddr; 267087a11578SDavid S. Miller rt->rt6i_dst.addr = fl6->daddr; 26718e2ec639SYan, Zheng rt->rt6i_dst.plen = 128; 26728e2ec639SYan, Zheng rt->rt6i_idev = idev; 267314edd87dSLi RongQing dst_metric_set(&rt->dst, RTAX_HOPLIMIT, 0); 26741da177e4SLinus Torvalds 26754c981e28SIdo Schimmel /* Add this dst into uncached_list so that rt6_disable_ip() can 2676587fea74SWei Wang * do proper release of the net_device 2677587fea74SWei Wang */ 2678587fea74SWei Wang rt6_uncached_list_add(rt); 267981eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 26801da177e4SLinus Torvalds 268187a11578SDavid S. Miller dst = xfrm_lookup(net, &rt->dst, flowi6_to_flowi(fl6), NULL, 0); 268287a11578SDavid S. Miller 26831da177e4SLinus Torvalds out: 268487a11578SDavid S. Miller return dst; 26851da177e4SLinus Torvalds } 26861da177e4SLinus Torvalds 2687569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops) 26881da177e4SLinus Torvalds { 268986393e52SAlexey Dobriyan struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops); 26907019b78eSDaniel Lezcano int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval; 26917019b78eSDaniel Lezcano int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size; 26927019b78eSDaniel Lezcano int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity; 26937019b78eSDaniel Lezcano int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout; 26947019b78eSDaniel Lezcano unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc; 2695fc66f95cSEric Dumazet int entries; 26961da177e4SLinus Torvalds 2697fc66f95cSEric Dumazet entries = dst_entries_get_fast(ops); 269849a18d86SMichal Kubeček if (time_after(rt_last_gc + rt_min_interval, jiffies) && 2699fc66f95cSEric Dumazet entries <= rt_max_size) 27001da177e4SLinus Torvalds goto out; 27011da177e4SLinus Torvalds 27026891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire++; 270314956643SLi RongQing fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net, true); 2704fc66f95cSEric Dumazet entries = dst_entries_get_slow(ops); 2705fc66f95cSEric Dumazet if (entries < ops->gc_thresh) 27067019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1; 27071da177e4SLinus Torvalds out: 27087019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity; 2709fc66f95cSEric Dumazet return entries > rt_max_size; 27101da177e4SLinus Torvalds } 27111da177e4SLinus Torvalds 27128c14586fSDavid Ahern static struct rt6_info *ip6_nh_lookup_table(struct net *net, 27138c14586fSDavid Ahern struct fib6_config *cfg, 2714f4797b33SDavid Ahern const struct in6_addr *gw_addr, 2715f4797b33SDavid Ahern u32 tbid, int flags) 27168c14586fSDavid Ahern { 27178c14586fSDavid Ahern struct flowi6 fl6 = { 27188c14586fSDavid Ahern .flowi6_oif = cfg->fc_ifindex, 27198c14586fSDavid Ahern .daddr = *gw_addr, 27208c14586fSDavid Ahern .saddr = cfg->fc_prefsrc, 27218c14586fSDavid Ahern }; 27228c14586fSDavid Ahern struct fib6_table *table; 27238c14586fSDavid Ahern struct rt6_info *rt; 27248c14586fSDavid Ahern 2725f4797b33SDavid Ahern table = fib6_get_table(net, tbid); 27268c14586fSDavid Ahern if (!table) 27278c14586fSDavid Ahern return NULL; 27288c14586fSDavid Ahern 27298c14586fSDavid Ahern if (!ipv6_addr_any(&cfg->fc_prefsrc)) 27308c14586fSDavid Ahern flags |= RT6_LOOKUP_F_HAS_SADDR; 27318c14586fSDavid Ahern 2732f4797b33SDavid Ahern flags |= RT6_LOOKUP_F_IGNORE_LINKSTATE; 2733b75cc8f9SDavid Ahern rt = ip6_pol_route(net, table, cfg->fc_ifindex, &fl6, NULL, flags); 27348c14586fSDavid Ahern 27358c14586fSDavid Ahern /* if table lookup failed, fall back to full lookup */ 27368c14586fSDavid Ahern if (rt == net->ipv6.ip6_null_entry) { 27378c14586fSDavid Ahern ip6_rt_put(rt); 27388c14586fSDavid Ahern rt = NULL; 27398c14586fSDavid Ahern } 27408c14586fSDavid Ahern 27418c14586fSDavid Ahern return rt; 27428c14586fSDavid Ahern } 27438c14586fSDavid Ahern 2744fc1e64e1SDavid Ahern static int ip6_route_check_nh_onlink(struct net *net, 2745fc1e64e1SDavid Ahern struct fib6_config *cfg, 27469fbb704cSDavid Ahern const struct net_device *dev, 2747fc1e64e1SDavid Ahern struct netlink_ext_ack *extack) 2748fc1e64e1SDavid Ahern { 274944750f84SDavid Ahern u32 tbid = l3mdev_fib_table(dev) ? : RT_TABLE_MAIN; 2750fc1e64e1SDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 2751fc1e64e1SDavid Ahern u32 flags = RTF_LOCAL | RTF_ANYCAST | RTF_REJECT; 2752bf1dc8baSPaolo Abeni struct fib6_info *from; 2753fc1e64e1SDavid Ahern struct rt6_info *grt; 2754fc1e64e1SDavid Ahern int err; 2755fc1e64e1SDavid Ahern 2756fc1e64e1SDavid Ahern err = 0; 2757fc1e64e1SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, tbid, 0); 2758fc1e64e1SDavid Ahern if (grt) { 2759bf1dc8baSPaolo Abeni rcu_read_lock(); 2760bf1dc8baSPaolo Abeni from = rcu_dereference(grt->from); 276158e354c0SDavid Ahern if (!grt->dst.error && 27624ed591c8SDavid Ahern /* ignore match if it is the default route */ 2763bf1dc8baSPaolo Abeni from && !ipv6_addr_any(&from->fib6_dst.addr) && 276458e354c0SDavid Ahern (grt->rt6i_flags & flags || dev != grt->dst.dev)) { 276544750f84SDavid Ahern NL_SET_ERR_MSG(extack, 276644750f84SDavid Ahern "Nexthop has invalid gateway or device mismatch"); 2767fc1e64e1SDavid Ahern err = -EINVAL; 2768fc1e64e1SDavid Ahern } 2769bf1dc8baSPaolo Abeni rcu_read_unlock(); 2770fc1e64e1SDavid Ahern 2771fc1e64e1SDavid Ahern ip6_rt_put(grt); 2772fc1e64e1SDavid Ahern } 2773fc1e64e1SDavid Ahern 2774fc1e64e1SDavid Ahern return err; 2775fc1e64e1SDavid Ahern } 2776fc1e64e1SDavid Ahern 27771edce99fSDavid Ahern static int ip6_route_check_nh(struct net *net, 27781edce99fSDavid Ahern struct fib6_config *cfg, 27791edce99fSDavid Ahern struct net_device **_dev, 27801edce99fSDavid Ahern struct inet6_dev **idev) 27811edce99fSDavid Ahern { 27821edce99fSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 27831edce99fSDavid Ahern struct net_device *dev = _dev ? *_dev : NULL; 27841edce99fSDavid Ahern struct rt6_info *grt = NULL; 27851edce99fSDavid Ahern int err = -EHOSTUNREACH; 27861edce99fSDavid Ahern 27871edce99fSDavid Ahern if (cfg->fc_table) { 2788f4797b33SDavid Ahern int flags = RT6_LOOKUP_F_IFACE; 2789f4797b33SDavid Ahern 2790f4797b33SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, 2791f4797b33SDavid Ahern cfg->fc_table, flags); 27921edce99fSDavid Ahern if (grt) { 27931edce99fSDavid Ahern if (grt->rt6i_flags & RTF_GATEWAY || 27941edce99fSDavid Ahern (dev && dev != grt->dst.dev)) { 27951edce99fSDavid Ahern ip6_rt_put(grt); 27961edce99fSDavid Ahern grt = NULL; 27971edce99fSDavid Ahern } 27981edce99fSDavid Ahern } 27991edce99fSDavid Ahern } 28001edce99fSDavid Ahern 28011edce99fSDavid Ahern if (!grt) 2802b75cc8f9SDavid Ahern grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, NULL, 1); 28031edce99fSDavid Ahern 28041edce99fSDavid Ahern if (!grt) 28051edce99fSDavid Ahern goto out; 28061edce99fSDavid Ahern 28071edce99fSDavid Ahern if (dev) { 28081edce99fSDavid Ahern if (dev != grt->dst.dev) { 28091edce99fSDavid Ahern ip6_rt_put(grt); 28101edce99fSDavid Ahern goto out; 28111edce99fSDavid Ahern } 28121edce99fSDavid Ahern } else { 28131edce99fSDavid Ahern *_dev = dev = grt->dst.dev; 28141edce99fSDavid Ahern *idev = grt->rt6i_idev; 28151edce99fSDavid Ahern dev_hold(dev); 28161edce99fSDavid Ahern in6_dev_hold(grt->rt6i_idev); 28171edce99fSDavid Ahern } 28181edce99fSDavid Ahern 28191edce99fSDavid Ahern if (!(grt->rt6i_flags & RTF_GATEWAY)) 28201edce99fSDavid Ahern err = 0; 28211edce99fSDavid Ahern 28221edce99fSDavid Ahern ip6_rt_put(grt); 28231edce99fSDavid Ahern 28241edce99fSDavid Ahern out: 28251edce99fSDavid Ahern return err; 28261edce99fSDavid Ahern } 28271edce99fSDavid Ahern 28289fbb704cSDavid Ahern static int ip6_validate_gw(struct net *net, struct fib6_config *cfg, 28299fbb704cSDavid Ahern struct net_device **_dev, struct inet6_dev **idev, 28309fbb704cSDavid Ahern struct netlink_ext_ack *extack) 28319fbb704cSDavid Ahern { 28329fbb704cSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 28339fbb704cSDavid Ahern int gwa_type = ipv6_addr_type(gw_addr); 2834232378e8SDavid Ahern bool skip_dev = gwa_type & IPV6_ADDR_LINKLOCAL ? false : true; 28359fbb704cSDavid Ahern const struct net_device *dev = *_dev; 2836232378e8SDavid Ahern bool need_addr_check = !dev; 28379fbb704cSDavid Ahern int err = -EINVAL; 28389fbb704cSDavid Ahern 28399fbb704cSDavid Ahern /* if gw_addr is local we will fail to detect this in case 28409fbb704cSDavid Ahern * address is still TENTATIVE (DAD in progress). rt6_lookup() 28419fbb704cSDavid Ahern * will return already-added prefix route via interface that 28429fbb704cSDavid Ahern * prefix route was assigned to, which might be non-loopback. 28439fbb704cSDavid Ahern */ 2844232378e8SDavid Ahern if (dev && 2845232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2846232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 28479fbb704cSDavid Ahern goto out; 28489fbb704cSDavid Ahern } 28499fbb704cSDavid Ahern 28509fbb704cSDavid Ahern if (gwa_type != (IPV6_ADDR_LINKLOCAL | IPV6_ADDR_UNICAST)) { 28519fbb704cSDavid Ahern /* IPv6 strictly inhibits using not link-local 28529fbb704cSDavid Ahern * addresses as nexthop address. 28539fbb704cSDavid Ahern * Otherwise, router will not able to send redirects. 28549fbb704cSDavid Ahern * It is very good, but in some (rare!) circumstances 28559fbb704cSDavid Ahern * (SIT, PtP, NBMA NOARP links) it is handy to allow 28569fbb704cSDavid Ahern * some exceptions. --ANK 28579fbb704cSDavid Ahern * We allow IPv4-mapped nexthops to support RFC4798-type 28589fbb704cSDavid Ahern * addressing 28599fbb704cSDavid Ahern */ 28609fbb704cSDavid Ahern if (!(gwa_type & (IPV6_ADDR_UNICAST | IPV6_ADDR_MAPPED))) { 28619fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid gateway address"); 28629fbb704cSDavid Ahern goto out; 28639fbb704cSDavid Ahern } 28649fbb704cSDavid Ahern 28659fbb704cSDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) 28669fbb704cSDavid Ahern err = ip6_route_check_nh_onlink(net, cfg, dev, extack); 28679fbb704cSDavid Ahern else 28689fbb704cSDavid Ahern err = ip6_route_check_nh(net, cfg, _dev, idev); 28699fbb704cSDavid Ahern 28709fbb704cSDavid Ahern if (err) 28719fbb704cSDavid Ahern goto out; 28729fbb704cSDavid Ahern } 28739fbb704cSDavid Ahern 28749fbb704cSDavid Ahern /* reload in case device was changed */ 28759fbb704cSDavid Ahern dev = *_dev; 28769fbb704cSDavid Ahern 28779fbb704cSDavid Ahern err = -EINVAL; 28789fbb704cSDavid Ahern if (!dev) { 28799fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Egress device not specified"); 28809fbb704cSDavid Ahern goto out; 28819fbb704cSDavid Ahern } else if (dev->flags & IFF_LOOPBACK) { 28829fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, 28839fbb704cSDavid Ahern "Egress device can not be loopback device for this route"); 28849fbb704cSDavid Ahern goto out; 28859fbb704cSDavid Ahern } 2886232378e8SDavid Ahern 2887232378e8SDavid Ahern /* if we did not check gw_addr above, do so now that the 2888232378e8SDavid Ahern * egress device has been resolved. 2889232378e8SDavid Ahern */ 2890232378e8SDavid Ahern if (need_addr_check && 2891232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2892232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 2893232378e8SDavid Ahern goto out; 2894232378e8SDavid Ahern } 2895232378e8SDavid Ahern 28969fbb704cSDavid Ahern err = 0; 28979fbb704cSDavid Ahern out: 28989fbb704cSDavid Ahern return err; 28999fbb704cSDavid Ahern } 29009fbb704cSDavid Ahern 290183c44251SDavid Ahern static bool fib6_is_reject(u32 flags, struct net_device *dev, int addr_type) 290283c44251SDavid Ahern { 290383c44251SDavid Ahern if ((flags & RTF_REJECT) || 290483c44251SDavid Ahern (dev && (dev->flags & IFF_LOOPBACK) && 290583c44251SDavid Ahern !(addr_type & IPV6_ADDR_LOOPBACK) && 290683c44251SDavid Ahern !(flags & RTF_LOCAL))) 290783c44251SDavid Ahern return true; 290883c44251SDavid Ahern 290983c44251SDavid Ahern return false; 291083c44251SDavid Ahern } 291183c44251SDavid Ahern 291283c44251SDavid Ahern int fib6_nh_init(struct net *net, struct fib6_nh *fib6_nh, 291383c44251SDavid Ahern struct fib6_config *cfg, gfp_t gfp_flags, 291483c44251SDavid Ahern struct netlink_ext_ack *extack) 291583c44251SDavid Ahern { 291683c44251SDavid Ahern struct net_device *dev = NULL; 291783c44251SDavid Ahern struct inet6_dev *idev = NULL; 291883c44251SDavid Ahern int addr_type; 291983c44251SDavid Ahern int err; 292083c44251SDavid Ahern 292183c44251SDavid Ahern err = -ENODEV; 292283c44251SDavid Ahern if (cfg->fc_ifindex) { 292383c44251SDavid Ahern dev = dev_get_by_index(net, cfg->fc_ifindex); 292483c44251SDavid Ahern if (!dev) 292583c44251SDavid Ahern goto out; 292683c44251SDavid Ahern idev = in6_dev_get(dev); 292783c44251SDavid Ahern if (!idev) 292883c44251SDavid Ahern goto out; 292983c44251SDavid Ahern } 293083c44251SDavid Ahern 293183c44251SDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) { 293283c44251SDavid Ahern if (!dev) { 293383c44251SDavid Ahern NL_SET_ERR_MSG(extack, 293483c44251SDavid Ahern "Nexthop device required for onlink"); 293583c44251SDavid Ahern goto out; 293683c44251SDavid Ahern } 293783c44251SDavid Ahern 293883c44251SDavid Ahern if (!(dev->flags & IFF_UP)) { 293983c44251SDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 294083c44251SDavid Ahern err = -ENETDOWN; 294183c44251SDavid Ahern goto out; 294283c44251SDavid Ahern } 294383c44251SDavid Ahern 294483c44251SDavid Ahern fib6_nh->nh_flags |= RTNH_F_ONLINK; 294583c44251SDavid Ahern } 294683c44251SDavid Ahern 294783c44251SDavid Ahern if (cfg->fc_encap) { 294883c44251SDavid Ahern struct lwtunnel_state *lwtstate; 294983c44251SDavid Ahern 295083c44251SDavid Ahern err = lwtunnel_build_state(cfg->fc_encap_type, 295183c44251SDavid Ahern cfg->fc_encap, AF_INET6, cfg, 295283c44251SDavid Ahern &lwtstate, extack); 295383c44251SDavid Ahern if (err) 295483c44251SDavid Ahern goto out; 295583c44251SDavid Ahern 295683c44251SDavid Ahern fib6_nh->nh_lwtstate = lwtstate_get(lwtstate); 295783c44251SDavid Ahern } 295883c44251SDavid Ahern 295983c44251SDavid Ahern fib6_nh->nh_weight = 1; 296083c44251SDavid Ahern 296183c44251SDavid Ahern /* We cannot add true routes via loopback here, 296283c44251SDavid Ahern * they would result in kernel looping; promote them to reject routes 296383c44251SDavid Ahern */ 296483c44251SDavid Ahern addr_type = ipv6_addr_type(&cfg->fc_dst); 296583c44251SDavid Ahern if (fib6_is_reject(cfg->fc_flags, dev, addr_type)) { 296683c44251SDavid Ahern /* hold loopback dev/idev if we haven't done so. */ 296783c44251SDavid Ahern if (dev != net->loopback_dev) { 296883c44251SDavid Ahern if (dev) { 296983c44251SDavid Ahern dev_put(dev); 297083c44251SDavid Ahern in6_dev_put(idev); 297183c44251SDavid Ahern } 297283c44251SDavid Ahern dev = net->loopback_dev; 297383c44251SDavid Ahern dev_hold(dev); 297483c44251SDavid Ahern idev = in6_dev_get(dev); 297583c44251SDavid Ahern if (!idev) { 297683c44251SDavid Ahern err = -ENODEV; 297783c44251SDavid Ahern goto out; 297883c44251SDavid Ahern } 297983c44251SDavid Ahern } 298083c44251SDavid Ahern goto set_dev; 298183c44251SDavid Ahern } 298283c44251SDavid Ahern 298383c44251SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY) { 298483c44251SDavid Ahern err = ip6_validate_gw(net, cfg, &dev, &idev, extack); 298583c44251SDavid Ahern if (err) 298683c44251SDavid Ahern goto out; 298783c44251SDavid Ahern 298883c44251SDavid Ahern fib6_nh->nh_gw = cfg->fc_gateway; 298983c44251SDavid Ahern } 299083c44251SDavid Ahern 299183c44251SDavid Ahern err = -ENODEV; 299283c44251SDavid Ahern if (!dev) 299383c44251SDavid Ahern goto out; 299483c44251SDavid Ahern 299583c44251SDavid Ahern if (idev->cnf.disable_ipv6) { 299683c44251SDavid Ahern NL_SET_ERR_MSG(extack, "IPv6 is disabled on nexthop device"); 299783c44251SDavid Ahern err = -EACCES; 299883c44251SDavid Ahern goto out; 299983c44251SDavid Ahern } 300083c44251SDavid Ahern 300183c44251SDavid Ahern if (!(dev->flags & IFF_UP) && !cfg->fc_ignore_dev_down) { 300283c44251SDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 300383c44251SDavid Ahern err = -ENETDOWN; 300483c44251SDavid Ahern goto out; 300583c44251SDavid Ahern } 300683c44251SDavid Ahern 300783c44251SDavid Ahern if (!(cfg->fc_flags & (RTF_LOCAL | RTF_ANYCAST)) && 300883c44251SDavid Ahern !netif_carrier_ok(dev)) 300983c44251SDavid Ahern fib6_nh->nh_flags |= RTNH_F_LINKDOWN; 301083c44251SDavid Ahern 301183c44251SDavid Ahern set_dev: 301283c44251SDavid Ahern fib6_nh->nh_dev = dev; 301383c44251SDavid Ahern err = 0; 301483c44251SDavid Ahern out: 301583c44251SDavid Ahern if (idev) 301683c44251SDavid Ahern in6_dev_put(idev); 301783c44251SDavid Ahern 301883c44251SDavid Ahern if (err) { 301983c44251SDavid Ahern lwtstate_put(fib6_nh->nh_lwtstate); 302083c44251SDavid Ahern fib6_nh->nh_lwtstate = NULL; 302183c44251SDavid Ahern if (dev) 302283c44251SDavid Ahern dev_put(dev); 302383c44251SDavid Ahern } 302483c44251SDavid Ahern 302583c44251SDavid Ahern return err; 302683c44251SDavid Ahern } 302783c44251SDavid Ahern 3028*dac7d0f2SDavid Ahern void fib6_nh_release(struct fib6_nh *fib6_nh) 3029*dac7d0f2SDavid Ahern { 3030*dac7d0f2SDavid Ahern lwtstate_put(fib6_nh->nh_lwtstate); 3031*dac7d0f2SDavid Ahern 3032*dac7d0f2SDavid Ahern if (fib6_nh->nh_dev) 3033*dac7d0f2SDavid Ahern dev_put(fib6_nh->nh_dev); 3034*dac7d0f2SDavid Ahern } 3035*dac7d0f2SDavid Ahern 30368d1c802bSDavid Ahern static struct fib6_info *ip6_route_info_create(struct fib6_config *cfg, 3037acb54e3cSDavid Ahern gfp_t gfp_flags, 3038333c4301SDavid Ahern struct netlink_ext_ack *extack) 30391da177e4SLinus Torvalds { 30405578689aSDaniel Lezcano struct net *net = cfg->fc_nlinfo.nl_net; 30418d1c802bSDavid Ahern struct fib6_info *rt = NULL; 3042c71099acSThomas Graf struct fib6_table *table; 30438c5b83f0SRoopa Prabhu int err = -EINVAL; 304483c44251SDavid Ahern int addr_type; 30451da177e4SLinus Torvalds 3046557c44beSDavid Ahern /* RTF_PCPU is an internal flag; can not be set by userspace */ 3047d5d531cbSDavid Ahern if (cfg->fc_flags & RTF_PCPU) { 3048d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Userspace can not set RTF_PCPU"); 3049557c44beSDavid Ahern goto out; 3050d5d531cbSDavid Ahern } 3051557c44beSDavid Ahern 30522ea2352eSWei Wang /* RTF_CACHE is an internal flag; can not be set by userspace */ 30532ea2352eSWei Wang if (cfg->fc_flags & RTF_CACHE) { 30542ea2352eSWei Wang NL_SET_ERR_MSG(extack, "Userspace can not set RTF_CACHE"); 30552ea2352eSWei Wang goto out; 30562ea2352eSWei Wang } 30572ea2352eSWei Wang 3058e8478e80SDavid Ahern if (cfg->fc_type > RTN_MAX) { 3059e8478e80SDavid Ahern NL_SET_ERR_MSG(extack, "Invalid route type"); 3060e8478e80SDavid Ahern goto out; 3061e8478e80SDavid Ahern } 3062e8478e80SDavid Ahern 3063d5d531cbSDavid Ahern if (cfg->fc_dst_len > 128) { 3064d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid prefix length"); 30658c5b83f0SRoopa Prabhu goto out; 3066d5d531cbSDavid Ahern } 3067d5d531cbSDavid Ahern if (cfg->fc_src_len > 128) { 3068d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address length"); 3069d5d531cbSDavid Ahern goto out; 3070d5d531cbSDavid Ahern } 30711da177e4SLinus Torvalds #ifndef CONFIG_IPV6_SUBTREES 3072d5d531cbSDavid Ahern if (cfg->fc_src_len) { 3073d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, 3074d5d531cbSDavid Ahern "Specifying source address requires IPV6_SUBTREES to be enabled"); 30758c5b83f0SRoopa Prabhu goto out; 3076d5d531cbSDavid Ahern } 30771da177e4SLinus Torvalds #endif 3078fc1e64e1SDavid Ahern 3079c71099acSThomas Graf err = -ENOBUFS; 308038308473SDavid S. Miller if (cfg->fc_nlinfo.nlh && 3081d71314b4SMatti Vaittinen !(cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_CREATE)) { 3082d71314b4SMatti Vaittinen table = fib6_get_table(net, cfg->fc_table); 308338308473SDavid S. Miller if (!table) { 3084f3213831SJoe Perches pr_warn("NLM_F_CREATE should be specified when creating new route\n"); 3085d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 3086d71314b4SMatti Vaittinen } 3087d71314b4SMatti Vaittinen } else { 3088d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 3089d71314b4SMatti Vaittinen } 309038308473SDavid S. Miller 309138308473SDavid S. Miller if (!table) 3092c71099acSThomas Graf goto out; 3093c71099acSThomas Graf 30941da177e4SLinus Torvalds err = -ENOMEM; 309593531c67SDavid Ahern rt = fib6_info_alloc(gfp_flags); 309693531c67SDavid Ahern if (!rt) 30971da177e4SLinus Torvalds goto out; 309893531c67SDavid Ahern 3099d7e774f3SDavid Ahern rt->fib6_metrics = ip_fib_metrics_init(net, cfg->fc_mx, cfg->fc_mx_len, 3100d7e774f3SDavid Ahern extack); 3101767a2217SDavid Ahern if (IS_ERR(rt->fib6_metrics)) { 3102767a2217SDavid Ahern err = PTR_ERR(rt->fib6_metrics); 3103fda21d46SEric Dumazet /* Do not leave garbage there. */ 3104fda21d46SEric Dumazet rt->fib6_metrics = (struct dst_metrics *)&dst_default_metrics; 3105767a2217SDavid Ahern goto out; 3106767a2217SDavid Ahern } 3107767a2217SDavid Ahern 310893531c67SDavid Ahern if (cfg->fc_flags & RTF_ADDRCONF) 310993531c67SDavid Ahern rt->dst_nocount = true; 31101da177e4SLinus Torvalds 31111716a961SGao feng if (cfg->fc_flags & RTF_EXPIRES) 311214895687SDavid Ahern fib6_set_expires(rt, jiffies + 31131716a961SGao feng clock_t_to_jiffies(cfg->fc_expires)); 31141716a961SGao feng else 311514895687SDavid Ahern fib6_clean_expires(rt); 31161da177e4SLinus Torvalds 311786872cb5SThomas Graf if (cfg->fc_protocol == RTPROT_UNSPEC) 311886872cb5SThomas Graf cfg->fc_protocol = RTPROT_BOOT; 311993c2fb25SDavid Ahern rt->fib6_protocol = cfg->fc_protocol; 312086872cb5SThomas Graf 312183c44251SDavid Ahern rt->fib6_table = table; 312283c44251SDavid Ahern rt->fib6_metric = cfg->fc_metric; 312383c44251SDavid Ahern rt->fib6_type = cfg->fc_type; 312483c44251SDavid Ahern rt->fib6_flags = cfg->fc_flags; 312519e42e45SRoopa Prabhu 312693c2fb25SDavid Ahern ipv6_addr_prefix(&rt->fib6_dst.addr, &cfg->fc_dst, cfg->fc_dst_len); 312793c2fb25SDavid Ahern rt->fib6_dst.plen = cfg->fc_dst_len; 312893c2fb25SDavid Ahern if (rt->fib6_dst.plen == 128) 31293b6761d1SDavid Ahern rt->dst_host = true; 31301da177e4SLinus Torvalds 31311da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 313293c2fb25SDavid Ahern ipv6_addr_prefix(&rt->fib6_src.addr, &cfg->fc_src, cfg->fc_src_len); 313393c2fb25SDavid Ahern rt->fib6_src.plen = cfg->fc_src_len; 31341da177e4SLinus Torvalds #endif 313583c44251SDavid Ahern err = fib6_nh_init(net, &rt->fib6_nh, cfg, gfp_flags, extack); 31361da177e4SLinus Torvalds if (err) 31371da177e4SLinus Torvalds goto out; 31389fbb704cSDavid Ahern 313983c44251SDavid Ahern /* We cannot add true routes via loopback here, 314083c44251SDavid Ahern * they would result in kernel looping; promote them to reject routes 314183c44251SDavid Ahern */ 314283c44251SDavid Ahern addr_type = ipv6_addr_type(&cfg->fc_dst); 314383c44251SDavid Ahern if (fib6_is_reject(cfg->fc_flags, rt->fib6_nh.nh_dev, addr_type)) 314483c44251SDavid Ahern rt->fib6_flags = RTF_REJECT | RTF_NONEXTHOP; 3145955ec4cbSDavid Ahern 3146c3968a85SDaniel Walter if (!ipv6_addr_any(&cfg->fc_prefsrc)) { 314783c44251SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 314883c44251SDavid Ahern 3149c3968a85SDaniel Walter if (!ipv6_chk_addr(net, &cfg->fc_prefsrc, dev, 0)) { 3150d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address"); 3151c3968a85SDaniel Walter err = -EINVAL; 3152c3968a85SDaniel Walter goto out; 3153c3968a85SDaniel Walter } 315493c2fb25SDavid Ahern rt->fib6_prefsrc.addr = cfg->fc_prefsrc; 315593c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 128; 3156c3968a85SDaniel Walter } else 315793c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 0; 3158c3968a85SDaniel Walter 31598c5b83f0SRoopa Prabhu return rt; 31601da177e4SLinus Torvalds out: 316193531c67SDavid Ahern fib6_info_release(rt); 31628c5b83f0SRoopa Prabhu return ERR_PTR(err); 31636b9ea5a6SRoopa Prabhu } 31646b9ea5a6SRoopa Prabhu 3165acb54e3cSDavid Ahern int ip6_route_add(struct fib6_config *cfg, gfp_t gfp_flags, 3166333c4301SDavid Ahern struct netlink_ext_ack *extack) 31676b9ea5a6SRoopa Prabhu { 31688d1c802bSDavid Ahern struct fib6_info *rt; 31696b9ea5a6SRoopa Prabhu int err; 31706b9ea5a6SRoopa Prabhu 3171acb54e3cSDavid Ahern rt = ip6_route_info_create(cfg, gfp_flags, extack); 3172d4ead6b3SDavid Ahern if (IS_ERR(rt)) 3173d4ead6b3SDavid Ahern return PTR_ERR(rt); 31746b9ea5a6SRoopa Prabhu 3175d4ead6b3SDavid Ahern err = __ip6_ins_rt(rt, &cfg->fc_nlinfo, extack); 317693531c67SDavid Ahern fib6_info_release(rt); 31776b9ea5a6SRoopa Prabhu 31781da177e4SLinus Torvalds return err; 31791da177e4SLinus Torvalds } 31801da177e4SLinus Torvalds 31818d1c802bSDavid Ahern static int __ip6_del_rt(struct fib6_info *rt, struct nl_info *info) 31821da177e4SLinus Torvalds { 3183afb1d4b5SDavid Ahern struct net *net = info->nl_net; 3184c71099acSThomas Graf struct fib6_table *table; 3185afb1d4b5SDavid Ahern int err; 31861da177e4SLinus Torvalds 3187421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) { 31886825a26cSGao feng err = -ENOENT; 31896825a26cSGao feng goto out; 31906825a26cSGao feng } 31916c813a72SPatrick McHardy 319293c2fb25SDavid Ahern table = rt->fib6_table; 319366f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 319486872cb5SThomas Graf err = fib6_del(rt, info); 319566f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 31961da177e4SLinus Torvalds 31976825a26cSGao feng out: 319893531c67SDavid Ahern fib6_info_release(rt); 31991da177e4SLinus Torvalds return err; 32001da177e4SLinus Torvalds } 32011da177e4SLinus Torvalds 32028d1c802bSDavid Ahern int ip6_del_rt(struct net *net, struct fib6_info *rt) 3203e0a1ad73SThomas Graf { 3204afb1d4b5SDavid Ahern struct nl_info info = { .nl_net = net }; 3205afb1d4b5SDavid Ahern 3206528c4cebSDenis V. Lunev return __ip6_del_rt(rt, &info); 3207e0a1ad73SThomas Graf } 3208e0a1ad73SThomas Graf 32098d1c802bSDavid Ahern static int __ip6_del_rt_siblings(struct fib6_info *rt, struct fib6_config *cfg) 32100ae81335SDavid Ahern { 32110ae81335SDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 3212e3330039SWANG Cong struct net *net = info->nl_net; 321316a16cd3SDavid Ahern struct sk_buff *skb = NULL; 32140ae81335SDavid Ahern struct fib6_table *table; 3215e3330039SWANG Cong int err = -ENOENT; 32160ae81335SDavid Ahern 3217421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 3218e3330039SWANG Cong goto out_put; 321993c2fb25SDavid Ahern table = rt->fib6_table; 322066f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 32210ae81335SDavid Ahern 322293c2fb25SDavid Ahern if (rt->fib6_nsiblings && cfg->fc_delete_all_nh) { 32238d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 32240ae81335SDavid Ahern 322516a16cd3SDavid Ahern /* prefer to send a single notification with all hops */ 322616a16cd3SDavid Ahern skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 322716a16cd3SDavid Ahern if (skb) { 322816a16cd3SDavid Ahern u32 seq = info->nlh ? info->nlh->nlmsg_seq : 0; 322916a16cd3SDavid Ahern 3230d4ead6b3SDavid Ahern if (rt6_fill_node(net, skb, rt, NULL, 323116a16cd3SDavid Ahern NULL, NULL, 0, RTM_DELROUTE, 323216a16cd3SDavid Ahern info->portid, seq, 0) < 0) { 323316a16cd3SDavid Ahern kfree_skb(skb); 323416a16cd3SDavid Ahern skb = NULL; 323516a16cd3SDavid Ahern } else 323616a16cd3SDavid Ahern info->skip_notify = 1; 323716a16cd3SDavid Ahern } 323816a16cd3SDavid Ahern 32390ae81335SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 324093c2fb25SDavid Ahern &rt->fib6_siblings, 324193c2fb25SDavid Ahern fib6_siblings) { 32420ae81335SDavid Ahern err = fib6_del(sibling, info); 32430ae81335SDavid Ahern if (err) 3244e3330039SWANG Cong goto out_unlock; 32450ae81335SDavid Ahern } 32460ae81335SDavid Ahern } 32470ae81335SDavid Ahern 32480ae81335SDavid Ahern err = fib6_del(rt, info); 3249e3330039SWANG Cong out_unlock: 325066f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 3251e3330039SWANG Cong out_put: 325293531c67SDavid Ahern fib6_info_release(rt); 325316a16cd3SDavid Ahern 325416a16cd3SDavid Ahern if (skb) { 3255e3330039SWANG Cong rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 325616a16cd3SDavid Ahern info->nlh, gfp_any()); 325716a16cd3SDavid Ahern } 32580ae81335SDavid Ahern return err; 32590ae81335SDavid Ahern } 32600ae81335SDavid Ahern 326123fb93a4SDavid Ahern static int ip6_del_cached_rt(struct rt6_info *rt, struct fib6_config *cfg) 326223fb93a4SDavid Ahern { 326323fb93a4SDavid Ahern int rc = -ESRCH; 326423fb93a4SDavid Ahern 326523fb93a4SDavid Ahern if (cfg->fc_ifindex && rt->dst.dev->ifindex != cfg->fc_ifindex) 326623fb93a4SDavid Ahern goto out; 326723fb93a4SDavid Ahern 326823fb93a4SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY && 326923fb93a4SDavid Ahern !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway)) 327023fb93a4SDavid Ahern goto out; 3271761f6026SXin Long 327223fb93a4SDavid Ahern rc = rt6_remove_exception_rt(rt); 327323fb93a4SDavid Ahern out: 327423fb93a4SDavid Ahern return rc; 327523fb93a4SDavid Ahern } 327623fb93a4SDavid Ahern 3277333c4301SDavid Ahern static int ip6_route_del(struct fib6_config *cfg, 3278333c4301SDavid Ahern struct netlink_ext_ack *extack) 32791da177e4SLinus Torvalds { 32808d1c802bSDavid Ahern struct rt6_info *rt_cache; 3281c71099acSThomas Graf struct fib6_table *table; 32828d1c802bSDavid Ahern struct fib6_info *rt; 32831da177e4SLinus Torvalds struct fib6_node *fn; 32841da177e4SLinus Torvalds int err = -ESRCH; 32851da177e4SLinus Torvalds 32865578689aSDaniel Lezcano table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table); 3287d5d531cbSDavid Ahern if (!table) { 3288d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "FIB table does not exist"); 3289c71099acSThomas Graf return err; 3290d5d531cbSDavid Ahern } 32911da177e4SLinus Torvalds 329266f5d6ceSWei Wang rcu_read_lock(); 3293c71099acSThomas Graf 3294c71099acSThomas Graf fn = fib6_locate(&table->tb6_root, 329586872cb5SThomas Graf &cfg->fc_dst, cfg->fc_dst_len, 329638fbeeeeSWei Wang &cfg->fc_src, cfg->fc_src_len, 32972b760fcfSWei Wang !(cfg->fc_flags & RTF_CACHE)); 32981da177e4SLinus Torvalds 32991da177e4SLinus Torvalds if (fn) { 330066f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 33012b760fcfSWei Wang if (cfg->fc_flags & RTF_CACHE) { 330223fb93a4SDavid Ahern int rc; 330323fb93a4SDavid Ahern 33042b760fcfSWei Wang rt_cache = rt6_find_cached_rt(rt, &cfg->fc_dst, 33052b760fcfSWei Wang &cfg->fc_src); 330623fb93a4SDavid Ahern if (rt_cache) { 330723fb93a4SDavid Ahern rc = ip6_del_cached_rt(rt_cache, cfg); 33089e575010SEric Dumazet if (rc != -ESRCH) { 33099e575010SEric Dumazet rcu_read_unlock(); 331023fb93a4SDavid Ahern return rc; 331123fb93a4SDavid Ahern } 33129e575010SEric Dumazet } 33131f56a01fSMartin KaFai Lau continue; 33142b760fcfSWei Wang } 331586872cb5SThomas Graf if (cfg->fc_ifindex && 33165e670d84SDavid Ahern (!rt->fib6_nh.nh_dev || 33175e670d84SDavid Ahern rt->fib6_nh.nh_dev->ifindex != cfg->fc_ifindex)) 33181da177e4SLinus Torvalds continue; 331986872cb5SThomas Graf if (cfg->fc_flags & RTF_GATEWAY && 33205e670d84SDavid Ahern !ipv6_addr_equal(&cfg->fc_gateway, &rt->fib6_nh.nh_gw)) 33211da177e4SLinus Torvalds continue; 332293c2fb25SDavid Ahern if (cfg->fc_metric && cfg->fc_metric != rt->fib6_metric) 33231da177e4SLinus Torvalds continue; 332493c2fb25SDavid Ahern if (cfg->fc_protocol && cfg->fc_protocol != rt->fib6_protocol) 3325c2ed1880SMantas M continue; 3326e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 3327e873e4b9SWei Wang continue; 332866f5d6ceSWei Wang rcu_read_unlock(); 33291da177e4SLinus Torvalds 33300ae81335SDavid Ahern /* if gateway was specified only delete the one hop */ 33310ae81335SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY) 333286872cb5SThomas Graf return __ip6_del_rt(rt, &cfg->fc_nlinfo); 33330ae81335SDavid Ahern 33340ae81335SDavid Ahern return __ip6_del_rt_siblings(rt, cfg); 33351da177e4SLinus Torvalds } 33361da177e4SLinus Torvalds } 333766f5d6ceSWei Wang rcu_read_unlock(); 33381da177e4SLinus Torvalds 33391da177e4SLinus Torvalds return err; 33401da177e4SLinus Torvalds } 33411da177e4SLinus Torvalds 33426700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, struct sk_buff *skb) 3343a6279458SYOSHIFUJI Hideaki { 3344a6279458SYOSHIFUJI Hideaki struct netevent_redirect netevent; 3345e8599ff4SDavid S. Miller struct rt6_info *rt, *nrt = NULL; 3346e8599ff4SDavid S. Miller struct ndisc_options ndopts; 3347e8599ff4SDavid S. Miller struct inet6_dev *in6_dev; 3348e8599ff4SDavid S. Miller struct neighbour *neigh; 3349a68886a6SDavid Ahern struct fib6_info *from; 335071bcdba0SYOSHIFUJI Hideaki / 吉藤英明 struct rd_msg *msg; 33516e157b6aSDavid S. Miller int optlen, on_link; 33526e157b6aSDavid S. Miller u8 *lladdr; 3353e8599ff4SDavid S. Miller 335429a3cad5SSimon Horman optlen = skb_tail_pointer(skb) - skb_transport_header(skb); 335571bcdba0SYOSHIFUJI Hideaki / 吉藤英明 optlen -= sizeof(*msg); 3356e8599ff4SDavid S. Miller 3357e8599ff4SDavid S. Miller if (optlen < 0) { 33586e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: packet too short\n"); 3359e8599ff4SDavid S. Miller return; 3360e8599ff4SDavid S. Miller } 3361e8599ff4SDavid S. Miller 336271bcdba0SYOSHIFUJI Hideaki / 吉藤英明 msg = (struct rd_msg *)icmp6_hdr(skb); 3363e8599ff4SDavid S. Miller 336471bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_is_multicast(&msg->dest)) { 33656e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: destination address is multicast\n"); 3366e8599ff4SDavid S. Miller return; 3367e8599ff4SDavid S. Miller } 3368e8599ff4SDavid S. Miller 33696e157b6aSDavid S. Miller on_link = 0; 337071bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_equal(&msg->dest, &msg->target)) { 3371e8599ff4SDavid S. Miller on_link = 1; 337271bcdba0SYOSHIFUJI Hideaki / 吉藤英明 } else if (ipv6_addr_type(&msg->target) != 3373e8599ff4SDavid S. Miller (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) { 33746e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: target address is not link-local unicast\n"); 3375e8599ff4SDavid S. Miller return; 3376e8599ff4SDavid S. Miller } 3377e8599ff4SDavid S. Miller 3378e8599ff4SDavid S. Miller in6_dev = __in6_dev_get(skb->dev); 3379e8599ff4SDavid S. Miller if (!in6_dev) 3380e8599ff4SDavid S. Miller return; 3381e8599ff4SDavid S. Miller if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_redirects) 3382e8599ff4SDavid S. Miller return; 3383e8599ff4SDavid S. Miller 3384e8599ff4SDavid S. Miller /* RFC2461 8.1: 3385e8599ff4SDavid S. Miller * The IP source address of the Redirect MUST be the same as the current 3386e8599ff4SDavid S. Miller * first-hop router for the specified ICMP Destination Address. 3387e8599ff4SDavid S. Miller */ 3388e8599ff4SDavid S. Miller 3389f997c55cSAlexander Aring if (!ndisc_parse_options(skb->dev, msg->opt, optlen, &ndopts)) { 3390e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid ND options\n"); 3391e8599ff4SDavid S. Miller return; 3392e8599ff4SDavid S. Miller } 33936e157b6aSDavid S. Miller 33946e157b6aSDavid S. Miller lladdr = NULL; 3395e8599ff4SDavid S. Miller if (ndopts.nd_opts_tgt_lladdr) { 3396e8599ff4SDavid S. Miller lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr, 3397e8599ff4SDavid S. Miller skb->dev); 3398e8599ff4SDavid S. Miller if (!lladdr) { 3399e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid link-layer address length\n"); 3400e8599ff4SDavid S. Miller return; 3401e8599ff4SDavid S. Miller } 3402e8599ff4SDavid S. Miller } 3403e8599ff4SDavid S. Miller 34046e157b6aSDavid S. Miller rt = (struct rt6_info *) dst; 3405ec13ad1dSMatthias Schiffer if (rt->rt6i_flags & RTF_REJECT) { 34066e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_redirect: source isn't a valid nexthop for redirect target\n"); 34076e157b6aSDavid S. Miller return; 34086e157b6aSDavid S. Miller } 34096e157b6aSDavid S. Miller 34106e157b6aSDavid S. Miller /* Redirect received -> path was valid. 34116e157b6aSDavid S. Miller * Look, redirects are sent only in response to data packets, 34126e157b6aSDavid S. Miller * so that this nexthop apparently is reachable. --ANK 34136e157b6aSDavid S. Miller */ 34140dec879fSJulian Anastasov dst_confirm_neigh(&rt->dst, &ipv6_hdr(skb)->saddr); 34156e157b6aSDavid S. Miller 341671bcdba0SYOSHIFUJI Hideaki / 吉藤英明 neigh = __neigh_lookup(&nd_tbl, &msg->target, skb->dev, 1); 3417e8599ff4SDavid S. Miller if (!neigh) 3418e8599ff4SDavid S. Miller return; 3419e8599ff4SDavid S. Miller 34201da177e4SLinus Torvalds /* 34211da177e4SLinus Torvalds * We have finally decided to accept it. 34221da177e4SLinus Torvalds */ 34231da177e4SLinus Torvalds 3424f997c55cSAlexander Aring ndisc_update(skb->dev, neigh, lladdr, NUD_STALE, 34251da177e4SLinus Torvalds NEIGH_UPDATE_F_WEAK_OVERRIDE| 34261da177e4SLinus Torvalds NEIGH_UPDATE_F_OVERRIDE| 34271da177e4SLinus Torvalds (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER| 3428f997c55cSAlexander Aring NEIGH_UPDATE_F_ISROUTER)), 3429f997c55cSAlexander Aring NDISC_REDIRECT, &ndopts); 34301da177e4SLinus Torvalds 34314d85cd0cSDavid Ahern rcu_read_lock(); 3432a68886a6SDavid Ahern from = rcu_dereference(rt->from); 3433e873e4b9SWei Wang /* This fib6_info_hold() is safe here because we hold reference to rt 3434e873e4b9SWei Wang * and rt already holds reference to fib6_info. 3435e873e4b9SWei Wang */ 34368a14e46fSDavid Ahern fib6_info_hold(from); 34374d85cd0cSDavid Ahern rcu_read_unlock(); 34388a14e46fSDavid Ahern 34398a14e46fSDavid Ahern nrt = ip6_rt_cache_alloc(from, &msg->dest, NULL); 344038308473SDavid S. Miller if (!nrt) 34411da177e4SLinus Torvalds goto out; 34421da177e4SLinus Torvalds 34431da177e4SLinus Torvalds nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE; 34441da177e4SLinus Torvalds if (on_link) 34451da177e4SLinus Torvalds nrt->rt6i_flags &= ~RTF_GATEWAY; 34461da177e4SLinus Torvalds 34474e3fd7a0SAlexey Dobriyan nrt->rt6i_gateway = *(struct in6_addr *)neigh->primary_key; 34481da177e4SLinus Torvalds 34492b760fcfSWei Wang /* No need to remove rt from the exception table if rt is 34502b760fcfSWei Wang * a cached route because rt6_insert_exception() will 34512b760fcfSWei Wang * takes care of it 34522b760fcfSWei Wang */ 34538a14e46fSDavid Ahern if (rt6_insert_exception(nrt, from)) { 34542b760fcfSWei Wang dst_release_immediate(&nrt->dst); 34552b760fcfSWei Wang goto out; 34562b760fcfSWei Wang } 34571da177e4SLinus Torvalds 3458d8d1f30bSChangli Gao netevent.old = &rt->dst; 3459d8d1f30bSChangli Gao netevent.new = &nrt->dst; 346071bcdba0SYOSHIFUJI Hideaki / 吉藤英明 netevent.daddr = &msg->dest; 346160592833SYOSHIFUJI Hideaki / 吉藤英明 netevent.neigh = neigh; 34628d71740cSTom Tucker call_netevent_notifiers(NETEVENT_REDIRECT, &netevent); 34638d71740cSTom Tucker 34641da177e4SLinus Torvalds out: 34658a14e46fSDavid Ahern fib6_info_release(from); 3466e8599ff4SDavid S. Miller neigh_release(neigh); 34676e157b6aSDavid S. Miller } 34686e157b6aSDavid S. Miller 346970ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 34708d1c802bSDavid Ahern static struct fib6_info *rt6_get_route_info(struct net *net, 3471b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3472830218c1SDavid Ahern const struct in6_addr *gwaddr, 3473830218c1SDavid Ahern struct net_device *dev) 347470ceb4f5SYOSHIFUJI Hideaki { 3475830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO; 3476830218c1SDavid Ahern int ifindex = dev->ifindex; 347770ceb4f5SYOSHIFUJI Hideaki struct fib6_node *fn; 34788d1c802bSDavid Ahern struct fib6_info *rt = NULL; 3479c71099acSThomas Graf struct fib6_table *table; 348070ceb4f5SYOSHIFUJI Hideaki 3481830218c1SDavid Ahern table = fib6_get_table(net, tb_id); 348238308473SDavid S. Miller if (!table) 3483c71099acSThomas Graf return NULL; 3484c71099acSThomas Graf 348566f5d6ceSWei Wang rcu_read_lock(); 348638fbeeeeSWei Wang fn = fib6_locate(&table->tb6_root, prefix, prefixlen, NULL, 0, true); 348770ceb4f5SYOSHIFUJI Hideaki if (!fn) 348870ceb4f5SYOSHIFUJI Hideaki goto out; 348970ceb4f5SYOSHIFUJI Hideaki 349066f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 34915e670d84SDavid Ahern if (rt->fib6_nh.nh_dev->ifindex != ifindex) 349270ceb4f5SYOSHIFUJI Hideaki continue; 349393c2fb25SDavid Ahern if ((rt->fib6_flags & (RTF_ROUTEINFO|RTF_GATEWAY)) != (RTF_ROUTEINFO|RTF_GATEWAY)) 349470ceb4f5SYOSHIFUJI Hideaki continue; 34955e670d84SDavid Ahern if (!ipv6_addr_equal(&rt->fib6_nh.nh_gw, gwaddr)) 349670ceb4f5SYOSHIFUJI Hideaki continue; 3497e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 3498e873e4b9SWei Wang continue; 349970ceb4f5SYOSHIFUJI Hideaki break; 350070ceb4f5SYOSHIFUJI Hideaki } 350170ceb4f5SYOSHIFUJI Hideaki out: 350266f5d6ceSWei Wang rcu_read_unlock(); 350370ceb4f5SYOSHIFUJI Hideaki return rt; 350470ceb4f5SYOSHIFUJI Hideaki } 350570ceb4f5SYOSHIFUJI Hideaki 35068d1c802bSDavid Ahern static struct fib6_info *rt6_add_route_info(struct net *net, 3507b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3508830218c1SDavid Ahern const struct in6_addr *gwaddr, 3509830218c1SDavid Ahern struct net_device *dev, 351095c96174SEric Dumazet unsigned int pref) 351170ceb4f5SYOSHIFUJI Hideaki { 351286872cb5SThomas Graf struct fib6_config cfg = { 3513238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 3514830218c1SDavid Ahern .fc_ifindex = dev->ifindex, 351586872cb5SThomas Graf .fc_dst_len = prefixlen, 351686872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO | 351786872cb5SThomas Graf RTF_UP | RTF_PREF(pref), 3518b91d5329SXin Long .fc_protocol = RTPROT_RA, 3519e8478e80SDavid Ahern .fc_type = RTN_UNICAST, 352015e47304SEric W. Biederman .fc_nlinfo.portid = 0, 3521efa2cea0SDaniel Lezcano .fc_nlinfo.nlh = NULL, 3522efa2cea0SDaniel Lezcano .fc_nlinfo.nl_net = net, 352386872cb5SThomas Graf }; 352470ceb4f5SYOSHIFUJI Hideaki 3525830218c1SDavid Ahern cfg.fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO, 35264e3fd7a0SAlexey Dobriyan cfg.fc_dst = *prefix; 35274e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 352886872cb5SThomas Graf 3529e317da96SYOSHIFUJI Hideaki /* We should treat it as a default route if prefix length is 0. */ 3530e317da96SYOSHIFUJI Hideaki if (!prefixlen) 353186872cb5SThomas Graf cfg.fc_flags |= RTF_DEFAULT; 353270ceb4f5SYOSHIFUJI Hideaki 3533acb54e3cSDavid Ahern ip6_route_add(&cfg, GFP_ATOMIC, NULL); 353470ceb4f5SYOSHIFUJI Hideaki 3535830218c1SDavid Ahern return rt6_get_route_info(net, prefix, prefixlen, gwaddr, dev); 353670ceb4f5SYOSHIFUJI Hideaki } 353770ceb4f5SYOSHIFUJI Hideaki #endif 353870ceb4f5SYOSHIFUJI Hideaki 35398d1c802bSDavid Ahern struct fib6_info *rt6_get_dflt_router(struct net *net, 3540afb1d4b5SDavid Ahern const struct in6_addr *addr, 3541afb1d4b5SDavid Ahern struct net_device *dev) 35421da177e4SLinus Torvalds { 3543830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT; 35448d1c802bSDavid Ahern struct fib6_info *rt; 3545c71099acSThomas Graf struct fib6_table *table; 35461da177e4SLinus Torvalds 3547afb1d4b5SDavid Ahern table = fib6_get_table(net, tb_id); 354838308473SDavid S. Miller if (!table) 3549c71099acSThomas Graf return NULL; 35501da177e4SLinus Torvalds 355166f5d6ceSWei Wang rcu_read_lock(); 355266f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 35535e670d84SDavid Ahern if (dev == rt->fib6_nh.nh_dev && 355493c2fb25SDavid Ahern ((rt->fib6_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) && 35555e670d84SDavid Ahern ipv6_addr_equal(&rt->fib6_nh.nh_gw, addr)) 35561da177e4SLinus Torvalds break; 35571da177e4SLinus Torvalds } 3558e873e4b9SWei Wang if (rt && !fib6_info_hold_safe(rt)) 3559e873e4b9SWei Wang rt = NULL; 356066f5d6ceSWei Wang rcu_read_unlock(); 35611da177e4SLinus Torvalds return rt; 35621da177e4SLinus Torvalds } 35631da177e4SLinus Torvalds 35648d1c802bSDavid Ahern struct fib6_info *rt6_add_dflt_router(struct net *net, 3565afb1d4b5SDavid Ahern const struct in6_addr *gwaddr, 3566ebacaaa0SYOSHIFUJI Hideaki struct net_device *dev, 3567ebacaaa0SYOSHIFUJI Hideaki unsigned int pref) 35681da177e4SLinus Torvalds { 356986872cb5SThomas Graf struct fib6_config cfg = { 3570ca254490SDavid Ahern .fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT, 3571238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 357286872cb5SThomas Graf .fc_ifindex = dev->ifindex, 357386872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT | 357486872cb5SThomas Graf RTF_UP | RTF_EXPIRES | RTF_PREF(pref), 3575b91d5329SXin Long .fc_protocol = RTPROT_RA, 3576e8478e80SDavid Ahern .fc_type = RTN_UNICAST, 357715e47304SEric W. Biederman .fc_nlinfo.portid = 0, 35785578689aSDaniel Lezcano .fc_nlinfo.nlh = NULL, 3579afb1d4b5SDavid Ahern .fc_nlinfo.nl_net = net, 358086872cb5SThomas Graf }; 35811da177e4SLinus Torvalds 35824e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 35831da177e4SLinus Torvalds 3584acb54e3cSDavid Ahern if (!ip6_route_add(&cfg, GFP_ATOMIC, NULL)) { 3585830218c1SDavid Ahern struct fib6_table *table; 3586830218c1SDavid Ahern 3587830218c1SDavid Ahern table = fib6_get_table(dev_net(dev), cfg.fc_table); 3588830218c1SDavid Ahern if (table) 3589830218c1SDavid Ahern table->flags |= RT6_TABLE_HAS_DFLT_ROUTER; 3590830218c1SDavid Ahern } 35911da177e4SLinus Torvalds 3592afb1d4b5SDavid Ahern return rt6_get_dflt_router(net, gwaddr, dev); 35931da177e4SLinus Torvalds } 35941da177e4SLinus Torvalds 3595afb1d4b5SDavid Ahern static void __rt6_purge_dflt_routers(struct net *net, 3596afb1d4b5SDavid Ahern struct fib6_table *table) 35971da177e4SLinus Torvalds { 35988d1c802bSDavid Ahern struct fib6_info *rt; 35991da177e4SLinus Torvalds 36001da177e4SLinus Torvalds restart: 360166f5d6ceSWei Wang rcu_read_lock(); 360266f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 3603dcd1f572SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 3604dcd1f572SDavid Ahern struct inet6_dev *idev = dev ? __in6_dev_get(dev) : NULL; 3605dcd1f572SDavid Ahern 360693c2fb25SDavid Ahern if (rt->fib6_flags & (RTF_DEFAULT | RTF_ADDRCONF) && 3607e873e4b9SWei Wang (!idev || idev->cnf.accept_ra != 2) && 3608e873e4b9SWei Wang fib6_info_hold_safe(rt)) { 360966f5d6ceSWei Wang rcu_read_unlock(); 3610afb1d4b5SDavid Ahern ip6_del_rt(net, rt); 36111da177e4SLinus Torvalds goto restart; 36121da177e4SLinus Torvalds } 36131da177e4SLinus Torvalds } 361466f5d6ceSWei Wang rcu_read_unlock(); 3615830218c1SDavid Ahern 3616830218c1SDavid Ahern table->flags &= ~RT6_TABLE_HAS_DFLT_ROUTER; 3617830218c1SDavid Ahern } 3618830218c1SDavid Ahern 3619830218c1SDavid Ahern void rt6_purge_dflt_routers(struct net *net) 3620830218c1SDavid Ahern { 3621830218c1SDavid Ahern struct fib6_table *table; 3622830218c1SDavid Ahern struct hlist_head *head; 3623830218c1SDavid Ahern unsigned int h; 3624830218c1SDavid Ahern 3625830218c1SDavid Ahern rcu_read_lock(); 3626830218c1SDavid Ahern 3627830218c1SDavid Ahern for (h = 0; h < FIB6_TABLE_HASHSZ; h++) { 3628830218c1SDavid Ahern head = &net->ipv6.fib_table_hash[h]; 3629830218c1SDavid Ahern hlist_for_each_entry_rcu(table, head, tb6_hlist) { 3630830218c1SDavid Ahern if (table->flags & RT6_TABLE_HAS_DFLT_ROUTER) 3631afb1d4b5SDavid Ahern __rt6_purge_dflt_routers(net, table); 3632830218c1SDavid Ahern } 3633830218c1SDavid Ahern } 3634830218c1SDavid Ahern 3635830218c1SDavid Ahern rcu_read_unlock(); 36361da177e4SLinus Torvalds } 36371da177e4SLinus Torvalds 36385578689aSDaniel Lezcano static void rtmsg_to_fib6_config(struct net *net, 36395578689aSDaniel Lezcano struct in6_rtmsg *rtmsg, 364086872cb5SThomas Graf struct fib6_config *cfg) 364186872cb5SThomas Graf { 36428823a3acSMaciej Żenczykowski *cfg = (struct fib6_config){ 36438823a3acSMaciej Żenczykowski .fc_table = l3mdev_fib_table_by_index(net, rtmsg->rtmsg_ifindex) ? 36448823a3acSMaciej Żenczykowski : RT6_TABLE_MAIN, 36458823a3acSMaciej Żenczykowski .fc_ifindex = rtmsg->rtmsg_ifindex, 364667f69513SDavid Ahern .fc_metric = rtmsg->rtmsg_metric ? : IP6_RT_PRIO_USER, 36478823a3acSMaciej Żenczykowski .fc_expires = rtmsg->rtmsg_info, 36488823a3acSMaciej Żenczykowski .fc_dst_len = rtmsg->rtmsg_dst_len, 36498823a3acSMaciej Żenczykowski .fc_src_len = rtmsg->rtmsg_src_len, 36508823a3acSMaciej Żenczykowski .fc_flags = rtmsg->rtmsg_flags, 36518823a3acSMaciej Żenczykowski .fc_type = rtmsg->rtmsg_type, 365286872cb5SThomas Graf 36538823a3acSMaciej Żenczykowski .fc_nlinfo.nl_net = net, 365486872cb5SThomas Graf 36558823a3acSMaciej Żenczykowski .fc_dst = rtmsg->rtmsg_dst, 36568823a3acSMaciej Żenczykowski .fc_src = rtmsg->rtmsg_src, 36578823a3acSMaciej Żenczykowski .fc_gateway = rtmsg->rtmsg_gateway, 36588823a3acSMaciej Żenczykowski }; 365986872cb5SThomas Graf } 366086872cb5SThomas Graf 36615578689aSDaniel Lezcano int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg) 36621da177e4SLinus Torvalds { 366386872cb5SThomas Graf struct fib6_config cfg; 36641da177e4SLinus Torvalds struct in6_rtmsg rtmsg; 36651da177e4SLinus Torvalds int err; 36661da177e4SLinus Torvalds 36671da177e4SLinus Torvalds switch (cmd) { 36681da177e4SLinus Torvalds case SIOCADDRT: /* Add a route */ 36691da177e4SLinus Torvalds case SIOCDELRT: /* Delete a route */ 3670af31f412SEric W. Biederman if (!ns_capable(net->user_ns, CAP_NET_ADMIN)) 36711da177e4SLinus Torvalds return -EPERM; 36721da177e4SLinus Torvalds err = copy_from_user(&rtmsg, arg, 36731da177e4SLinus Torvalds sizeof(struct in6_rtmsg)); 36741da177e4SLinus Torvalds if (err) 36751da177e4SLinus Torvalds return -EFAULT; 36761da177e4SLinus Torvalds 36775578689aSDaniel Lezcano rtmsg_to_fib6_config(net, &rtmsg, &cfg); 367886872cb5SThomas Graf 36791da177e4SLinus Torvalds rtnl_lock(); 36801da177e4SLinus Torvalds switch (cmd) { 36811da177e4SLinus Torvalds case SIOCADDRT: 3682acb54e3cSDavid Ahern err = ip6_route_add(&cfg, GFP_KERNEL, NULL); 36831da177e4SLinus Torvalds break; 36841da177e4SLinus Torvalds case SIOCDELRT: 3685333c4301SDavid Ahern err = ip6_route_del(&cfg, NULL); 36861da177e4SLinus Torvalds break; 36871da177e4SLinus Torvalds default: 36881da177e4SLinus Torvalds err = -EINVAL; 36891da177e4SLinus Torvalds } 36901da177e4SLinus Torvalds rtnl_unlock(); 36911da177e4SLinus Torvalds 36921da177e4SLinus Torvalds return err; 36933ff50b79SStephen Hemminger } 36941da177e4SLinus Torvalds 36951da177e4SLinus Torvalds return -EINVAL; 36961da177e4SLinus Torvalds } 36971da177e4SLinus Torvalds 36981da177e4SLinus Torvalds /* 36991da177e4SLinus Torvalds * Drop the packet on the floor 37001da177e4SLinus Torvalds */ 37011da177e4SLinus Torvalds 3702d5fdd6baSBrian Haley static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes) 37031da177e4SLinus Torvalds { 3704612f09e8SYOSHIFUJI Hideaki int type; 3705adf30907SEric Dumazet struct dst_entry *dst = skb_dst(skb); 3706612f09e8SYOSHIFUJI Hideaki switch (ipstats_mib_noroutes) { 3707612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_INNOROUTES: 37080660e03fSArnaldo Carvalho de Melo type = ipv6_addr_type(&ipv6_hdr(skb)->daddr); 370945bb0060SUlrich Weber if (type == IPV6_ADDR_ANY) { 3710bdb7cc64SStephen Suryaputra IP6_INC_STATS(dev_net(dst->dev), 3711bdb7cc64SStephen Suryaputra __in6_dev_get_safely(skb->dev), 37123bd653c8SDenis V. Lunev IPSTATS_MIB_INADDRERRORS); 3713612f09e8SYOSHIFUJI Hideaki break; 3714612f09e8SYOSHIFUJI Hideaki } 3715612f09e8SYOSHIFUJI Hideaki /* FALLTHROUGH */ 3716612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_OUTNOROUTES: 37173bd653c8SDenis V. Lunev IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst), 37183bd653c8SDenis V. Lunev ipstats_mib_noroutes); 3719612f09e8SYOSHIFUJI Hideaki break; 3720612f09e8SYOSHIFUJI Hideaki } 37213ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0); 37221da177e4SLinus Torvalds kfree_skb(skb); 37231da177e4SLinus Torvalds return 0; 37241da177e4SLinus Torvalds } 37251da177e4SLinus Torvalds 37269ce8ade0SThomas Graf static int ip6_pkt_discard(struct sk_buff *skb) 37279ce8ade0SThomas Graf { 3728612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES); 37299ce8ade0SThomas Graf } 37309ce8ade0SThomas Graf 3731ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb) 37321da177e4SLinus Torvalds { 3733adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3734612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES); 37351da177e4SLinus Torvalds } 37361da177e4SLinus Torvalds 37379ce8ade0SThomas Graf static int ip6_pkt_prohibit(struct sk_buff *skb) 37389ce8ade0SThomas Graf { 3739612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES); 37409ce8ade0SThomas Graf } 37419ce8ade0SThomas Graf 3742ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb) 37439ce8ade0SThomas Graf { 3744adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3745612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES); 37469ce8ade0SThomas Graf } 37479ce8ade0SThomas Graf 37481da177e4SLinus Torvalds /* 37491da177e4SLinus Torvalds * Allocate a dst for local (unicast / anycast) address. 37501da177e4SLinus Torvalds */ 37511da177e4SLinus Torvalds 3752360a9887SDavid Ahern struct fib6_info *addrconf_f6i_alloc(struct net *net, 3753afb1d4b5SDavid Ahern struct inet6_dev *idev, 37541da177e4SLinus Torvalds const struct in6_addr *addr, 3755acb54e3cSDavid Ahern bool anycast, gfp_t gfp_flags) 37561da177e4SLinus Torvalds { 3757c7a1ce39SDavid Ahern struct fib6_config cfg = { 3758c7a1ce39SDavid Ahern .fc_table = l3mdev_fib_table(idev->dev) ? : RT6_TABLE_LOCAL, 3759c7a1ce39SDavid Ahern .fc_ifindex = idev->dev->ifindex, 3760c7a1ce39SDavid Ahern .fc_flags = RTF_UP | RTF_ADDRCONF | RTF_NONEXTHOP, 3761c7a1ce39SDavid Ahern .fc_dst = *addr, 3762c7a1ce39SDavid Ahern .fc_dst_len = 128, 3763c7a1ce39SDavid Ahern .fc_protocol = RTPROT_KERNEL, 3764c7a1ce39SDavid Ahern .fc_nlinfo.nl_net = net, 3765c7a1ce39SDavid Ahern .fc_ignore_dev_down = true, 3766c7a1ce39SDavid Ahern }; 37675f02ce24SDavid Ahern 3768e8478e80SDavid Ahern if (anycast) { 3769c7a1ce39SDavid Ahern cfg.fc_type = RTN_ANYCAST; 3770c7a1ce39SDavid Ahern cfg.fc_flags |= RTF_ANYCAST; 3771e8478e80SDavid Ahern } else { 3772c7a1ce39SDavid Ahern cfg.fc_type = RTN_LOCAL; 3773c7a1ce39SDavid Ahern cfg.fc_flags |= RTF_LOCAL; 3774e8478e80SDavid Ahern } 37751da177e4SLinus Torvalds 3776c7a1ce39SDavid Ahern return ip6_route_info_create(&cfg, gfp_flags, NULL); 37771da177e4SLinus Torvalds } 37781da177e4SLinus Torvalds 3779c3968a85SDaniel Walter /* remove deleted ip from prefsrc entries */ 3780c3968a85SDaniel Walter struct arg_dev_net_ip { 3781c3968a85SDaniel Walter struct net_device *dev; 3782c3968a85SDaniel Walter struct net *net; 3783c3968a85SDaniel Walter struct in6_addr *addr; 3784c3968a85SDaniel Walter }; 3785c3968a85SDaniel Walter 37868d1c802bSDavid Ahern static int fib6_remove_prefsrc(struct fib6_info *rt, void *arg) 3787c3968a85SDaniel Walter { 3788c3968a85SDaniel Walter struct net_device *dev = ((struct arg_dev_net_ip *)arg)->dev; 3789c3968a85SDaniel Walter struct net *net = ((struct arg_dev_net_ip *)arg)->net; 3790c3968a85SDaniel Walter struct in6_addr *addr = ((struct arg_dev_net_ip *)arg)->addr; 3791c3968a85SDaniel Walter 37925e670d84SDavid Ahern if (((void *)rt->fib6_nh.nh_dev == dev || !dev) && 3793421842edSDavid Ahern rt != net->ipv6.fib6_null_entry && 379493c2fb25SDavid Ahern ipv6_addr_equal(addr, &rt->fib6_prefsrc.addr)) { 379560006a48SWei Wang spin_lock_bh(&rt6_exception_lock); 3796c3968a85SDaniel Walter /* remove prefsrc entry */ 379793c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 0; 379860006a48SWei Wang spin_unlock_bh(&rt6_exception_lock); 3799c3968a85SDaniel Walter } 3800c3968a85SDaniel Walter return 0; 3801c3968a85SDaniel Walter } 3802c3968a85SDaniel Walter 3803c3968a85SDaniel Walter void rt6_remove_prefsrc(struct inet6_ifaddr *ifp) 3804c3968a85SDaniel Walter { 3805c3968a85SDaniel Walter struct net *net = dev_net(ifp->idev->dev); 3806c3968a85SDaniel Walter struct arg_dev_net_ip adni = { 3807c3968a85SDaniel Walter .dev = ifp->idev->dev, 3808c3968a85SDaniel Walter .net = net, 3809c3968a85SDaniel Walter .addr = &ifp->addr, 3810c3968a85SDaniel Walter }; 38110c3584d5SLi RongQing fib6_clean_all(net, fib6_remove_prefsrc, &adni); 3812c3968a85SDaniel Walter } 3813c3968a85SDaniel Walter 3814be7a010dSDuan Jiong #define RTF_RA_ROUTER (RTF_ADDRCONF | RTF_DEFAULT | RTF_GATEWAY) 3815be7a010dSDuan Jiong 3816be7a010dSDuan Jiong /* Remove routers and update dst entries when gateway turn into host. */ 38178d1c802bSDavid Ahern static int fib6_clean_tohost(struct fib6_info *rt, void *arg) 3818be7a010dSDuan Jiong { 3819be7a010dSDuan Jiong struct in6_addr *gateway = (struct in6_addr *)arg; 3820be7a010dSDuan Jiong 382193c2fb25SDavid Ahern if (((rt->fib6_flags & RTF_RA_ROUTER) == RTF_RA_ROUTER) && 38225e670d84SDavid Ahern ipv6_addr_equal(gateway, &rt->fib6_nh.nh_gw)) { 3823be7a010dSDuan Jiong return -1; 3824be7a010dSDuan Jiong } 3825b16cb459SWei Wang 3826b16cb459SWei Wang /* Further clean up cached routes in exception table. 3827b16cb459SWei Wang * This is needed because cached route may have a different 3828b16cb459SWei Wang * gateway than its 'parent' in the case of an ip redirect. 3829b16cb459SWei Wang */ 3830b16cb459SWei Wang rt6_exceptions_clean_tohost(rt, gateway); 3831b16cb459SWei Wang 3832be7a010dSDuan Jiong return 0; 3833be7a010dSDuan Jiong } 3834be7a010dSDuan Jiong 3835be7a010dSDuan Jiong void rt6_clean_tohost(struct net *net, struct in6_addr *gateway) 3836be7a010dSDuan Jiong { 3837be7a010dSDuan Jiong fib6_clean_all(net, fib6_clean_tohost, gateway); 3838be7a010dSDuan Jiong } 3839be7a010dSDuan Jiong 38402127d95aSIdo Schimmel struct arg_netdev_event { 38412127d95aSIdo Schimmel const struct net_device *dev; 38424c981e28SIdo Schimmel union { 38432127d95aSIdo Schimmel unsigned int nh_flags; 38444c981e28SIdo Schimmel unsigned long event; 38454c981e28SIdo Schimmel }; 38462127d95aSIdo Schimmel }; 38472127d95aSIdo Schimmel 38488d1c802bSDavid Ahern static struct fib6_info *rt6_multipath_first_sibling(const struct fib6_info *rt) 3849d7dedee1SIdo Schimmel { 38508d1c802bSDavid Ahern struct fib6_info *iter; 3851d7dedee1SIdo Schimmel struct fib6_node *fn; 3852d7dedee1SIdo Schimmel 385393c2fb25SDavid Ahern fn = rcu_dereference_protected(rt->fib6_node, 385493c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3855d7dedee1SIdo Schimmel iter = rcu_dereference_protected(fn->leaf, 385693c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3857d7dedee1SIdo Schimmel while (iter) { 385893c2fb25SDavid Ahern if (iter->fib6_metric == rt->fib6_metric && 385933bd5ac5SDavid Ahern rt6_qualify_for_ecmp(iter)) 3860d7dedee1SIdo Schimmel return iter; 38618fb11a9aSDavid Ahern iter = rcu_dereference_protected(iter->fib6_next, 386293c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3863d7dedee1SIdo Schimmel } 3864d7dedee1SIdo Schimmel 3865d7dedee1SIdo Schimmel return NULL; 3866d7dedee1SIdo Schimmel } 3867d7dedee1SIdo Schimmel 38688d1c802bSDavid Ahern static bool rt6_is_dead(const struct fib6_info *rt) 3869d7dedee1SIdo Schimmel { 38705e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_DEAD || 38715e670d84SDavid Ahern (rt->fib6_nh.nh_flags & RTNH_F_LINKDOWN && 3872dcd1f572SDavid Ahern fib6_ignore_linkdown(rt))) 3873d7dedee1SIdo Schimmel return true; 3874d7dedee1SIdo Schimmel 3875d7dedee1SIdo Schimmel return false; 3876d7dedee1SIdo Schimmel } 3877d7dedee1SIdo Schimmel 38788d1c802bSDavid Ahern static int rt6_multipath_total_weight(const struct fib6_info *rt) 3879d7dedee1SIdo Schimmel { 38808d1c802bSDavid Ahern struct fib6_info *iter; 3881d7dedee1SIdo Schimmel int total = 0; 3882d7dedee1SIdo Schimmel 3883d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) 38845e670d84SDavid Ahern total += rt->fib6_nh.nh_weight; 3885d7dedee1SIdo Schimmel 388693c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) { 3887d7dedee1SIdo Schimmel if (!rt6_is_dead(iter)) 38885e670d84SDavid Ahern total += iter->fib6_nh.nh_weight; 3889d7dedee1SIdo Schimmel } 3890d7dedee1SIdo Schimmel 3891d7dedee1SIdo Schimmel return total; 3892d7dedee1SIdo Schimmel } 3893d7dedee1SIdo Schimmel 38948d1c802bSDavid Ahern static void rt6_upper_bound_set(struct fib6_info *rt, int *weight, int total) 3895d7dedee1SIdo Schimmel { 3896d7dedee1SIdo Schimmel int upper_bound = -1; 3897d7dedee1SIdo Schimmel 3898d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) { 38995e670d84SDavid Ahern *weight += rt->fib6_nh.nh_weight; 3900d7dedee1SIdo Schimmel upper_bound = DIV_ROUND_CLOSEST_ULL((u64) (*weight) << 31, 3901d7dedee1SIdo Schimmel total) - 1; 3902d7dedee1SIdo Schimmel } 39035e670d84SDavid Ahern atomic_set(&rt->fib6_nh.nh_upper_bound, upper_bound); 3904d7dedee1SIdo Schimmel } 3905d7dedee1SIdo Schimmel 39068d1c802bSDavid Ahern static void rt6_multipath_upper_bound_set(struct fib6_info *rt, int total) 3907d7dedee1SIdo Schimmel { 39088d1c802bSDavid Ahern struct fib6_info *iter; 3909d7dedee1SIdo Schimmel int weight = 0; 3910d7dedee1SIdo Schimmel 3911d7dedee1SIdo Schimmel rt6_upper_bound_set(rt, &weight, total); 3912d7dedee1SIdo Schimmel 391393c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 3914d7dedee1SIdo Schimmel rt6_upper_bound_set(iter, &weight, total); 3915d7dedee1SIdo Schimmel } 3916d7dedee1SIdo Schimmel 39178d1c802bSDavid Ahern void rt6_multipath_rebalance(struct fib6_info *rt) 3918d7dedee1SIdo Schimmel { 39198d1c802bSDavid Ahern struct fib6_info *first; 3920d7dedee1SIdo Schimmel int total; 3921d7dedee1SIdo Schimmel 3922d7dedee1SIdo Schimmel /* In case the entire multipath route was marked for flushing, 3923d7dedee1SIdo Schimmel * then there is no need to rebalance upon the removal of every 3924d7dedee1SIdo Schimmel * sibling route. 3925d7dedee1SIdo Schimmel */ 392693c2fb25SDavid Ahern if (!rt->fib6_nsiblings || rt->should_flush) 3927d7dedee1SIdo Schimmel return; 3928d7dedee1SIdo Schimmel 3929d7dedee1SIdo Schimmel /* During lookup routes are evaluated in order, so we need to 3930d7dedee1SIdo Schimmel * make sure upper bounds are assigned from the first sibling 3931d7dedee1SIdo Schimmel * onwards. 3932d7dedee1SIdo Schimmel */ 3933d7dedee1SIdo Schimmel first = rt6_multipath_first_sibling(rt); 3934d7dedee1SIdo Schimmel if (WARN_ON_ONCE(!first)) 3935d7dedee1SIdo Schimmel return; 3936d7dedee1SIdo Schimmel 3937d7dedee1SIdo Schimmel total = rt6_multipath_total_weight(first); 3938d7dedee1SIdo Schimmel rt6_multipath_upper_bound_set(first, total); 3939d7dedee1SIdo Schimmel } 3940d7dedee1SIdo Schimmel 39418d1c802bSDavid Ahern static int fib6_ifup(struct fib6_info *rt, void *p_arg) 39422127d95aSIdo Schimmel { 39432127d95aSIdo Schimmel const struct arg_netdev_event *arg = p_arg; 39447aef6859SDavid Ahern struct net *net = dev_net(arg->dev); 39452127d95aSIdo Schimmel 3946421842edSDavid Ahern if (rt != net->ipv6.fib6_null_entry && rt->fib6_nh.nh_dev == arg->dev) { 39475e670d84SDavid Ahern rt->fib6_nh.nh_flags &= ~arg->nh_flags; 39487aef6859SDavid Ahern fib6_update_sernum_upto_root(net, rt); 3949d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 39501de178edSIdo Schimmel } 39512127d95aSIdo Schimmel 39522127d95aSIdo Schimmel return 0; 39532127d95aSIdo Schimmel } 39542127d95aSIdo Schimmel 39552127d95aSIdo Schimmel void rt6_sync_up(struct net_device *dev, unsigned int nh_flags) 39562127d95aSIdo Schimmel { 39572127d95aSIdo Schimmel struct arg_netdev_event arg = { 39582127d95aSIdo Schimmel .dev = dev, 39596802f3adSIdo Schimmel { 39602127d95aSIdo Schimmel .nh_flags = nh_flags, 39616802f3adSIdo Schimmel }, 39622127d95aSIdo Schimmel }; 39632127d95aSIdo Schimmel 39642127d95aSIdo Schimmel if (nh_flags & RTNH_F_DEAD && netif_carrier_ok(dev)) 39652127d95aSIdo Schimmel arg.nh_flags |= RTNH_F_LINKDOWN; 39662127d95aSIdo Schimmel 39672127d95aSIdo Schimmel fib6_clean_all(dev_net(dev), fib6_ifup, &arg); 39682127d95aSIdo Schimmel } 39692127d95aSIdo Schimmel 39708d1c802bSDavid Ahern static bool rt6_multipath_uses_dev(const struct fib6_info *rt, 39711de178edSIdo Schimmel const struct net_device *dev) 39721de178edSIdo Schimmel { 39738d1c802bSDavid Ahern struct fib6_info *iter; 39741de178edSIdo Schimmel 39755e670d84SDavid Ahern if (rt->fib6_nh.nh_dev == dev) 39761de178edSIdo Schimmel return true; 397793c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 39785e670d84SDavid Ahern if (iter->fib6_nh.nh_dev == dev) 39791de178edSIdo Schimmel return true; 39801de178edSIdo Schimmel 39811de178edSIdo Schimmel return false; 39821de178edSIdo Schimmel } 39831de178edSIdo Schimmel 39848d1c802bSDavid Ahern static void rt6_multipath_flush(struct fib6_info *rt) 39851de178edSIdo Schimmel { 39868d1c802bSDavid Ahern struct fib6_info *iter; 39871de178edSIdo Schimmel 39881de178edSIdo Schimmel rt->should_flush = 1; 398993c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 39901de178edSIdo Schimmel iter->should_flush = 1; 39911de178edSIdo Schimmel } 39921de178edSIdo Schimmel 39938d1c802bSDavid Ahern static unsigned int rt6_multipath_dead_count(const struct fib6_info *rt, 39941de178edSIdo Schimmel const struct net_device *down_dev) 39951de178edSIdo Schimmel { 39968d1c802bSDavid Ahern struct fib6_info *iter; 39971de178edSIdo Schimmel unsigned int dead = 0; 39981de178edSIdo Schimmel 39995e670d84SDavid Ahern if (rt->fib6_nh.nh_dev == down_dev || 40005e670d84SDavid Ahern rt->fib6_nh.nh_flags & RTNH_F_DEAD) 40011de178edSIdo Schimmel dead++; 400293c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 40035e670d84SDavid Ahern if (iter->fib6_nh.nh_dev == down_dev || 40045e670d84SDavid Ahern iter->fib6_nh.nh_flags & RTNH_F_DEAD) 40051de178edSIdo Schimmel dead++; 40061de178edSIdo Schimmel 40071de178edSIdo Schimmel return dead; 40081de178edSIdo Schimmel } 40091de178edSIdo Schimmel 40108d1c802bSDavid Ahern static void rt6_multipath_nh_flags_set(struct fib6_info *rt, 40111de178edSIdo Schimmel const struct net_device *dev, 40121de178edSIdo Schimmel unsigned int nh_flags) 40131de178edSIdo Schimmel { 40148d1c802bSDavid Ahern struct fib6_info *iter; 40151de178edSIdo Schimmel 40165e670d84SDavid Ahern if (rt->fib6_nh.nh_dev == dev) 40175e670d84SDavid Ahern rt->fib6_nh.nh_flags |= nh_flags; 401893c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 40195e670d84SDavid Ahern if (iter->fib6_nh.nh_dev == dev) 40205e670d84SDavid Ahern iter->fib6_nh.nh_flags |= nh_flags; 40211de178edSIdo Schimmel } 40221de178edSIdo Schimmel 4023a1a22c12SDavid Ahern /* called with write lock held for table with rt */ 40248d1c802bSDavid Ahern static int fib6_ifdown(struct fib6_info *rt, void *p_arg) 40251da177e4SLinus Torvalds { 40264c981e28SIdo Schimmel const struct arg_netdev_event *arg = p_arg; 40274c981e28SIdo Schimmel const struct net_device *dev = arg->dev; 40287aef6859SDavid Ahern struct net *net = dev_net(dev); 40298ed67789SDaniel Lezcano 4030421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 403127c6fa73SIdo Schimmel return 0; 403227c6fa73SIdo Schimmel 403327c6fa73SIdo Schimmel switch (arg->event) { 403427c6fa73SIdo Schimmel case NETDEV_UNREGISTER: 40355e670d84SDavid Ahern return rt->fib6_nh.nh_dev == dev ? -1 : 0; 403627c6fa73SIdo Schimmel case NETDEV_DOWN: 40371de178edSIdo Schimmel if (rt->should_flush) 403827c6fa73SIdo Schimmel return -1; 403993c2fb25SDavid Ahern if (!rt->fib6_nsiblings) 40405e670d84SDavid Ahern return rt->fib6_nh.nh_dev == dev ? -1 : 0; 40411de178edSIdo Schimmel if (rt6_multipath_uses_dev(rt, dev)) { 40421de178edSIdo Schimmel unsigned int count; 40431de178edSIdo Schimmel 40441de178edSIdo Schimmel count = rt6_multipath_dead_count(rt, dev); 404593c2fb25SDavid Ahern if (rt->fib6_nsiblings + 1 == count) { 40461de178edSIdo Schimmel rt6_multipath_flush(rt); 40471de178edSIdo Schimmel return -1; 40481de178edSIdo Schimmel } 40491de178edSIdo Schimmel rt6_multipath_nh_flags_set(rt, dev, RTNH_F_DEAD | 40501de178edSIdo Schimmel RTNH_F_LINKDOWN); 40517aef6859SDavid Ahern fib6_update_sernum(net, rt); 4052d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 40531de178edSIdo Schimmel } 40541de178edSIdo Schimmel return -2; 405527c6fa73SIdo Schimmel case NETDEV_CHANGE: 40565e670d84SDavid Ahern if (rt->fib6_nh.nh_dev != dev || 405793c2fb25SDavid Ahern rt->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) 405827c6fa73SIdo Schimmel break; 40595e670d84SDavid Ahern rt->fib6_nh.nh_flags |= RTNH_F_LINKDOWN; 4060d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 406127c6fa73SIdo Schimmel break; 40622b241361SIdo Schimmel } 4063c159d30cSDavid S. Miller 40641da177e4SLinus Torvalds return 0; 40651da177e4SLinus Torvalds } 40661da177e4SLinus Torvalds 406727c6fa73SIdo Schimmel void rt6_sync_down_dev(struct net_device *dev, unsigned long event) 40681da177e4SLinus Torvalds { 40694c981e28SIdo Schimmel struct arg_netdev_event arg = { 40708ed67789SDaniel Lezcano .dev = dev, 40716802f3adSIdo Schimmel { 40724c981e28SIdo Schimmel .event = event, 40736802f3adSIdo Schimmel }, 40748ed67789SDaniel Lezcano }; 40757c6bb7d2SDavid Ahern struct net *net = dev_net(dev); 40768ed67789SDaniel Lezcano 40777c6bb7d2SDavid Ahern if (net->ipv6.sysctl.skip_notify_on_dev_down) 40787c6bb7d2SDavid Ahern fib6_clean_all_skip_notify(net, fib6_ifdown, &arg); 40797c6bb7d2SDavid Ahern else 40807c6bb7d2SDavid Ahern fib6_clean_all(net, fib6_ifdown, &arg); 40814c981e28SIdo Schimmel } 40824c981e28SIdo Schimmel 40834c981e28SIdo Schimmel void rt6_disable_ip(struct net_device *dev, unsigned long event) 40844c981e28SIdo Schimmel { 40854c981e28SIdo Schimmel rt6_sync_down_dev(dev, event); 40864c981e28SIdo Schimmel rt6_uncached_list_flush_dev(dev_net(dev), dev); 40874c981e28SIdo Schimmel neigh_ifdown(&nd_tbl, dev); 40881da177e4SLinus Torvalds } 40891da177e4SLinus Torvalds 409095c96174SEric Dumazet struct rt6_mtu_change_arg { 40911da177e4SLinus Torvalds struct net_device *dev; 409295c96174SEric Dumazet unsigned int mtu; 40931da177e4SLinus Torvalds }; 40941da177e4SLinus Torvalds 40958d1c802bSDavid Ahern static int rt6_mtu_change_route(struct fib6_info *rt, void *p_arg) 40961da177e4SLinus Torvalds { 40971da177e4SLinus Torvalds struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg; 40981da177e4SLinus Torvalds struct inet6_dev *idev; 40991da177e4SLinus Torvalds 41001da177e4SLinus Torvalds /* In IPv6 pmtu discovery is not optional, 41011da177e4SLinus Torvalds so that RTAX_MTU lock cannot disable it. 41021da177e4SLinus Torvalds We still use this lock to block changes 41031da177e4SLinus Torvalds caused by addrconf/ndisc. 41041da177e4SLinus Torvalds */ 41051da177e4SLinus Torvalds 41061da177e4SLinus Torvalds idev = __in6_dev_get(arg->dev); 410738308473SDavid S. Miller if (!idev) 41081da177e4SLinus Torvalds return 0; 41091da177e4SLinus Torvalds 41101da177e4SLinus Torvalds /* For administrative MTU increase, there is no way to discover 41111da177e4SLinus Torvalds IPv6 PMTU increase, so PMTU increase should be updated here. 41121da177e4SLinus Torvalds Since RFC 1981 doesn't include administrative MTU increase 41131da177e4SLinus Torvalds update PMTU increase is a MUST. (i.e. jumbo frame) 41141da177e4SLinus Torvalds */ 41155e670d84SDavid Ahern if (rt->fib6_nh.nh_dev == arg->dev && 4116d4ead6b3SDavid Ahern !fib6_metric_locked(rt, RTAX_MTU)) { 4117d4ead6b3SDavid Ahern u32 mtu = rt->fib6_pmtu; 4118d4ead6b3SDavid Ahern 4119d4ead6b3SDavid Ahern if (mtu >= arg->mtu || 4120d4ead6b3SDavid Ahern (mtu < arg->mtu && mtu == idev->cnf.mtu6)) 4121d4ead6b3SDavid Ahern fib6_metric_set(rt, RTAX_MTU, arg->mtu); 4122d4ead6b3SDavid Ahern 4123f5bbe7eeSWei Wang spin_lock_bh(&rt6_exception_lock); 4124e9fa1495SStefano Brivio rt6_exceptions_update_pmtu(idev, rt, arg->mtu); 4125f5bbe7eeSWei Wang spin_unlock_bh(&rt6_exception_lock); 41264b32b5adSMartin KaFai Lau } 41271da177e4SLinus Torvalds return 0; 41281da177e4SLinus Torvalds } 41291da177e4SLinus Torvalds 413095c96174SEric Dumazet void rt6_mtu_change(struct net_device *dev, unsigned int mtu) 41311da177e4SLinus Torvalds { 4132c71099acSThomas Graf struct rt6_mtu_change_arg arg = { 4133c71099acSThomas Graf .dev = dev, 4134c71099acSThomas Graf .mtu = mtu, 4135c71099acSThomas Graf }; 41361da177e4SLinus Torvalds 41370c3584d5SLi RongQing fib6_clean_all(dev_net(dev), rt6_mtu_change_route, &arg); 41381da177e4SLinus Torvalds } 41391da177e4SLinus Torvalds 4140ef7c79edSPatrick McHardy static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = { 41415176f91eSThomas Graf [RTA_GATEWAY] = { .len = sizeof(struct in6_addr) }, 4142aa8f8778SEric Dumazet [RTA_PREFSRC] = { .len = sizeof(struct in6_addr) }, 414386872cb5SThomas Graf [RTA_OIF] = { .type = NLA_U32 }, 4144ab364a6fSThomas Graf [RTA_IIF] = { .type = NLA_U32 }, 414586872cb5SThomas Graf [RTA_PRIORITY] = { .type = NLA_U32 }, 414686872cb5SThomas Graf [RTA_METRICS] = { .type = NLA_NESTED }, 414751ebd318SNicolas Dichtel [RTA_MULTIPATH] = { .len = sizeof(struct rtnexthop) }, 4148c78ba6d6SLubomir Rintel [RTA_PREF] = { .type = NLA_U8 }, 414919e42e45SRoopa Prabhu [RTA_ENCAP_TYPE] = { .type = NLA_U16 }, 415019e42e45SRoopa Prabhu [RTA_ENCAP] = { .type = NLA_NESTED }, 415132bc201eSXin Long [RTA_EXPIRES] = { .type = NLA_U32 }, 4152622ec2c9SLorenzo Colitti [RTA_UID] = { .type = NLA_U32 }, 41533b45a410SLiping Zhang [RTA_MARK] = { .type = NLA_U32 }, 4154aa8f8778SEric Dumazet [RTA_TABLE] = { .type = NLA_U32 }, 4155eacb9384SRoopa Prabhu [RTA_IP_PROTO] = { .type = NLA_U8 }, 4156eacb9384SRoopa Prabhu [RTA_SPORT] = { .type = NLA_U16 }, 4157eacb9384SRoopa Prabhu [RTA_DPORT] = { .type = NLA_U16 }, 415886872cb5SThomas Graf }; 415986872cb5SThomas Graf 416086872cb5SThomas Graf static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh, 4161333c4301SDavid Ahern struct fib6_config *cfg, 4162333c4301SDavid Ahern struct netlink_ext_ack *extack) 41631da177e4SLinus Torvalds { 416486872cb5SThomas Graf struct rtmsg *rtm; 416586872cb5SThomas Graf struct nlattr *tb[RTA_MAX+1]; 4166c78ba6d6SLubomir Rintel unsigned int pref; 416786872cb5SThomas Graf int err; 41681da177e4SLinus Torvalds 4169fceb6435SJohannes Berg err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy, 4170dac9c979SDavid Ahern extack); 417186872cb5SThomas Graf if (err < 0) 417286872cb5SThomas Graf goto errout; 41731da177e4SLinus Torvalds 417486872cb5SThomas Graf err = -EINVAL; 417586872cb5SThomas Graf rtm = nlmsg_data(nlh); 417686872cb5SThomas Graf 417784db8407SMaciej Żenczykowski *cfg = (struct fib6_config){ 417884db8407SMaciej Żenczykowski .fc_table = rtm->rtm_table, 417984db8407SMaciej Żenczykowski .fc_dst_len = rtm->rtm_dst_len, 418084db8407SMaciej Żenczykowski .fc_src_len = rtm->rtm_src_len, 418184db8407SMaciej Żenczykowski .fc_flags = RTF_UP, 418284db8407SMaciej Żenczykowski .fc_protocol = rtm->rtm_protocol, 418384db8407SMaciej Żenczykowski .fc_type = rtm->rtm_type, 418484db8407SMaciej Żenczykowski 418584db8407SMaciej Żenczykowski .fc_nlinfo.portid = NETLINK_CB(skb).portid, 418684db8407SMaciej Żenczykowski .fc_nlinfo.nlh = nlh, 418784db8407SMaciej Żenczykowski .fc_nlinfo.nl_net = sock_net(skb->sk), 418884db8407SMaciej Żenczykowski }; 418986872cb5SThomas Graf 4190ef2c7d7bSNicolas Dichtel if (rtm->rtm_type == RTN_UNREACHABLE || 4191ef2c7d7bSNicolas Dichtel rtm->rtm_type == RTN_BLACKHOLE || 4192b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_PROHIBIT || 4193b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_THROW) 419486872cb5SThomas Graf cfg->fc_flags |= RTF_REJECT; 419586872cb5SThomas Graf 4196ab79ad14SMaciej Żenczykowski if (rtm->rtm_type == RTN_LOCAL) 4197ab79ad14SMaciej Żenczykowski cfg->fc_flags |= RTF_LOCAL; 4198ab79ad14SMaciej Żenczykowski 41991f56a01fSMartin KaFai Lau if (rtm->rtm_flags & RTM_F_CLONED) 42001f56a01fSMartin KaFai Lau cfg->fc_flags |= RTF_CACHE; 42011f56a01fSMartin KaFai Lau 4202fc1e64e1SDavid Ahern cfg->fc_flags |= (rtm->rtm_flags & RTNH_F_ONLINK); 4203fc1e64e1SDavid Ahern 420486872cb5SThomas Graf if (tb[RTA_GATEWAY]) { 420567b61f6cSJiri Benc cfg->fc_gateway = nla_get_in6_addr(tb[RTA_GATEWAY]); 420686872cb5SThomas Graf cfg->fc_flags |= RTF_GATEWAY; 42071da177e4SLinus Torvalds } 4208e3818541SDavid Ahern if (tb[RTA_VIA]) { 4209e3818541SDavid Ahern NL_SET_ERR_MSG(extack, "IPv6 does not support RTA_VIA attribute"); 4210e3818541SDavid Ahern goto errout; 4211e3818541SDavid Ahern } 421286872cb5SThomas Graf 421386872cb5SThomas Graf if (tb[RTA_DST]) { 421486872cb5SThomas Graf int plen = (rtm->rtm_dst_len + 7) >> 3; 421586872cb5SThomas Graf 421686872cb5SThomas Graf if (nla_len(tb[RTA_DST]) < plen) 421786872cb5SThomas Graf goto errout; 421886872cb5SThomas Graf 421986872cb5SThomas Graf nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen); 42201da177e4SLinus Torvalds } 422186872cb5SThomas Graf 422286872cb5SThomas Graf if (tb[RTA_SRC]) { 422386872cb5SThomas Graf int plen = (rtm->rtm_src_len + 7) >> 3; 422486872cb5SThomas Graf 422586872cb5SThomas Graf if (nla_len(tb[RTA_SRC]) < plen) 422686872cb5SThomas Graf goto errout; 422786872cb5SThomas Graf 422886872cb5SThomas Graf nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen); 42291da177e4SLinus Torvalds } 423086872cb5SThomas Graf 4231c3968a85SDaniel Walter if (tb[RTA_PREFSRC]) 423267b61f6cSJiri Benc cfg->fc_prefsrc = nla_get_in6_addr(tb[RTA_PREFSRC]); 4233c3968a85SDaniel Walter 423486872cb5SThomas Graf if (tb[RTA_OIF]) 423586872cb5SThomas Graf cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]); 423686872cb5SThomas Graf 423786872cb5SThomas Graf if (tb[RTA_PRIORITY]) 423886872cb5SThomas Graf cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]); 423986872cb5SThomas Graf 424086872cb5SThomas Graf if (tb[RTA_METRICS]) { 424186872cb5SThomas Graf cfg->fc_mx = nla_data(tb[RTA_METRICS]); 424286872cb5SThomas Graf cfg->fc_mx_len = nla_len(tb[RTA_METRICS]); 42431da177e4SLinus Torvalds } 424486872cb5SThomas Graf 424586872cb5SThomas Graf if (tb[RTA_TABLE]) 424686872cb5SThomas Graf cfg->fc_table = nla_get_u32(tb[RTA_TABLE]); 424786872cb5SThomas Graf 424851ebd318SNicolas Dichtel if (tb[RTA_MULTIPATH]) { 424951ebd318SNicolas Dichtel cfg->fc_mp = nla_data(tb[RTA_MULTIPATH]); 425051ebd318SNicolas Dichtel cfg->fc_mp_len = nla_len(tb[RTA_MULTIPATH]); 42519ed59592SDavid Ahern 42529ed59592SDavid Ahern err = lwtunnel_valid_encap_type_attr(cfg->fc_mp, 4253c255bd68SDavid Ahern cfg->fc_mp_len, extack); 42549ed59592SDavid Ahern if (err < 0) 42559ed59592SDavid Ahern goto errout; 425651ebd318SNicolas Dichtel } 425751ebd318SNicolas Dichtel 4258c78ba6d6SLubomir Rintel if (tb[RTA_PREF]) { 4259c78ba6d6SLubomir Rintel pref = nla_get_u8(tb[RTA_PREF]); 4260c78ba6d6SLubomir Rintel if (pref != ICMPV6_ROUTER_PREF_LOW && 4261c78ba6d6SLubomir Rintel pref != ICMPV6_ROUTER_PREF_HIGH) 4262c78ba6d6SLubomir Rintel pref = ICMPV6_ROUTER_PREF_MEDIUM; 4263c78ba6d6SLubomir Rintel cfg->fc_flags |= RTF_PREF(pref); 4264c78ba6d6SLubomir Rintel } 4265c78ba6d6SLubomir Rintel 426619e42e45SRoopa Prabhu if (tb[RTA_ENCAP]) 426719e42e45SRoopa Prabhu cfg->fc_encap = tb[RTA_ENCAP]; 426819e42e45SRoopa Prabhu 42699ed59592SDavid Ahern if (tb[RTA_ENCAP_TYPE]) { 427019e42e45SRoopa Prabhu cfg->fc_encap_type = nla_get_u16(tb[RTA_ENCAP_TYPE]); 427119e42e45SRoopa Prabhu 4272c255bd68SDavid Ahern err = lwtunnel_valid_encap_type(cfg->fc_encap_type, extack); 42739ed59592SDavid Ahern if (err < 0) 42749ed59592SDavid Ahern goto errout; 42759ed59592SDavid Ahern } 42769ed59592SDavid Ahern 427732bc201eSXin Long if (tb[RTA_EXPIRES]) { 427832bc201eSXin Long unsigned long timeout = addrconf_timeout_fixup(nla_get_u32(tb[RTA_EXPIRES]), HZ); 427932bc201eSXin Long 428032bc201eSXin Long if (addrconf_finite_timeout(timeout)) { 428132bc201eSXin Long cfg->fc_expires = jiffies_to_clock_t(timeout * HZ); 428232bc201eSXin Long cfg->fc_flags |= RTF_EXPIRES; 428332bc201eSXin Long } 428432bc201eSXin Long } 428532bc201eSXin Long 428686872cb5SThomas Graf err = 0; 428786872cb5SThomas Graf errout: 428886872cb5SThomas Graf return err; 42891da177e4SLinus Torvalds } 42901da177e4SLinus Torvalds 42916b9ea5a6SRoopa Prabhu struct rt6_nh { 42928d1c802bSDavid Ahern struct fib6_info *fib6_info; 42936b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 42946b9ea5a6SRoopa Prabhu struct list_head next; 42956b9ea5a6SRoopa Prabhu }; 42966b9ea5a6SRoopa Prabhu 4297d4ead6b3SDavid Ahern static int ip6_route_info_append(struct net *net, 4298d4ead6b3SDavid Ahern struct list_head *rt6_nh_list, 42998d1c802bSDavid Ahern struct fib6_info *rt, 43008d1c802bSDavid Ahern struct fib6_config *r_cfg) 43016b9ea5a6SRoopa Prabhu { 43026b9ea5a6SRoopa Prabhu struct rt6_nh *nh; 43036b9ea5a6SRoopa Prabhu int err = -EEXIST; 43046b9ea5a6SRoopa Prabhu 43056b9ea5a6SRoopa Prabhu list_for_each_entry(nh, rt6_nh_list, next) { 43068d1c802bSDavid Ahern /* check if fib6_info already exists */ 43078d1c802bSDavid Ahern if (rt6_duplicate_nexthop(nh->fib6_info, rt)) 43086b9ea5a6SRoopa Prabhu return err; 43096b9ea5a6SRoopa Prabhu } 43106b9ea5a6SRoopa Prabhu 43116b9ea5a6SRoopa Prabhu nh = kzalloc(sizeof(*nh), GFP_KERNEL); 43126b9ea5a6SRoopa Prabhu if (!nh) 43136b9ea5a6SRoopa Prabhu return -ENOMEM; 43148d1c802bSDavid Ahern nh->fib6_info = rt; 43156b9ea5a6SRoopa Prabhu memcpy(&nh->r_cfg, r_cfg, sizeof(*r_cfg)); 43166b9ea5a6SRoopa Prabhu list_add_tail(&nh->next, rt6_nh_list); 43176b9ea5a6SRoopa Prabhu 43186b9ea5a6SRoopa Prabhu return 0; 43196b9ea5a6SRoopa Prabhu } 43206b9ea5a6SRoopa Prabhu 43218d1c802bSDavid Ahern static void ip6_route_mpath_notify(struct fib6_info *rt, 43228d1c802bSDavid Ahern struct fib6_info *rt_last, 43233b1137feSDavid Ahern struct nl_info *info, 43243b1137feSDavid Ahern __u16 nlflags) 43253b1137feSDavid Ahern { 43263b1137feSDavid Ahern /* if this is an APPEND route, then rt points to the first route 43273b1137feSDavid Ahern * inserted and rt_last points to last route inserted. Userspace 43283b1137feSDavid Ahern * wants a consistent dump of the route which starts at the first 43293b1137feSDavid Ahern * nexthop. Since sibling routes are always added at the end of 43303b1137feSDavid Ahern * the list, find the first sibling of the last route appended 43313b1137feSDavid Ahern */ 433293c2fb25SDavid Ahern if ((nlflags & NLM_F_APPEND) && rt_last && rt_last->fib6_nsiblings) { 433393c2fb25SDavid Ahern rt = list_first_entry(&rt_last->fib6_siblings, 43348d1c802bSDavid Ahern struct fib6_info, 433593c2fb25SDavid Ahern fib6_siblings); 43363b1137feSDavid Ahern } 43373b1137feSDavid Ahern 43383b1137feSDavid Ahern if (rt) 43393b1137feSDavid Ahern inet6_rt_notify(RTM_NEWROUTE, rt, info, nlflags); 43403b1137feSDavid Ahern } 43413b1137feSDavid Ahern 4342333c4301SDavid Ahern static int ip6_route_multipath_add(struct fib6_config *cfg, 4343333c4301SDavid Ahern struct netlink_ext_ack *extack) 434451ebd318SNicolas Dichtel { 43458d1c802bSDavid Ahern struct fib6_info *rt_notif = NULL, *rt_last = NULL; 43463b1137feSDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 434751ebd318SNicolas Dichtel struct fib6_config r_cfg; 434851ebd318SNicolas Dichtel struct rtnexthop *rtnh; 43498d1c802bSDavid Ahern struct fib6_info *rt; 43506b9ea5a6SRoopa Prabhu struct rt6_nh *err_nh; 43516b9ea5a6SRoopa Prabhu struct rt6_nh *nh, *nh_safe; 43523b1137feSDavid Ahern __u16 nlflags; 435351ebd318SNicolas Dichtel int remaining; 435451ebd318SNicolas Dichtel int attrlen; 43556b9ea5a6SRoopa Prabhu int err = 1; 43566b9ea5a6SRoopa Prabhu int nhn = 0; 43576b9ea5a6SRoopa Prabhu int replace = (cfg->fc_nlinfo.nlh && 43586b9ea5a6SRoopa Prabhu (cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_REPLACE)); 43596b9ea5a6SRoopa Prabhu LIST_HEAD(rt6_nh_list); 436051ebd318SNicolas Dichtel 43613b1137feSDavid Ahern nlflags = replace ? NLM_F_REPLACE : NLM_F_CREATE; 43623b1137feSDavid Ahern if (info->nlh && info->nlh->nlmsg_flags & NLM_F_APPEND) 43633b1137feSDavid Ahern nlflags |= NLM_F_APPEND; 43643b1137feSDavid Ahern 436535f1b4e9SMichal Kubeček remaining = cfg->fc_mp_len; 436651ebd318SNicolas Dichtel rtnh = (struct rtnexthop *)cfg->fc_mp; 436751ebd318SNicolas Dichtel 43686b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry and build a list (rt6_nh_list) of 43698d1c802bSDavid Ahern * fib6_info structs per nexthop 43706b9ea5a6SRoopa Prabhu */ 437151ebd318SNicolas Dichtel while (rtnh_ok(rtnh, remaining)) { 437251ebd318SNicolas Dichtel memcpy(&r_cfg, cfg, sizeof(*cfg)); 437351ebd318SNicolas Dichtel if (rtnh->rtnh_ifindex) 437451ebd318SNicolas Dichtel r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 437551ebd318SNicolas Dichtel 437651ebd318SNicolas Dichtel attrlen = rtnh_attrlen(rtnh); 437751ebd318SNicolas Dichtel if (attrlen > 0) { 437851ebd318SNicolas Dichtel struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 437951ebd318SNicolas Dichtel 438051ebd318SNicolas Dichtel nla = nla_find(attrs, attrlen, RTA_GATEWAY); 438151ebd318SNicolas Dichtel if (nla) { 438267b61f6cSJiri Benc r_cfg.fc_gateway = nla_get_in6_addr(nla); 438351ebd318SNicolas Dichtel r_cfg.fc_flags |= RTF_GATEWAY; 438451ebd318SNicolas Dichtel } 438519e42e45SRoopa Prabhu r_cfg.fc_encap = nla_find(attrs, attrlen, RTA_ENCAP); 438619e42e45SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_ENCAP_TYPE); 438719e42e45SRoopa Prabhu if (nla) 438819e42e45SRoopa Prabhu r_cfg.fc_encap_type = nla_get_u16(nla); 438951ebd318SNicolas Dichtel } 43906b9ea5a6SRoopa Prabhu 439168e2ffdeSDavid Ahern r_cfg.fc_flags |= (rtnh->rtnh_flags & RTNH_F_ONLINK); 4392acb54e3cSDavid Ahern rt = ip6_route_info_create(&r_cfg, GFP_KERNEL, extack); 43938c5b83f0SRoopa Prabhu if (IS_ERR(rt)) { 43948c5b83f0SRoopa Prabhu err = PTR_ERR(rt); 43958c5b83f0SRoopa Prabhu rt = NULL; 43966b9ea5a6SRoopa Prabhu goto cleanup; 43978c5b83f0SRoopa Prabhu } 4398b5d2d75eSDavid Ahern if (!rt6_qualify_for_ecmp(rt)) { 4399b5d2d75eSDavid Ahern err = -EINVAL; 4400b5d2d75eSDavid Ahern NL_SET_ERR_MSG(extack, 4401b5d2d75eSDavid Ahern "Device only routes can not be added for IPv6 using the multipath API."); 4402b5d2d75eSDavid Ahern fib6_info_release(rt); 4403b5d2d75eSDavid Ahern goto cleanup; 4404b5d2d75eSDavid Ahern } 44056b9ea5a6SRoopa Prabhu 44065e670d84SDavid Ahern rt->fib6_nh.nh_weight = rtnh->rtnh_hops + 1; 4407398958aeSIdo Schimmel 4408d4ead6b3SDavid Ahern err = ip6_route_info_append(info->nl_net, &rt6_nh_list, 4409d4ead6b3SDavid Ahern rt, &r_cfg); 441051ebd318SNicolas Dichtel if (err) { 441193531c67SDavid Ahern fib6_info_release(rt); 44126b9ea5a6SRoopa Prabhu goto cleanup; 441351ebd318SNicolas Dichtel } 44146b9ea5a6SRoopa Prabhu 44156b9ea5a6SRoopa Prabhu rtnh = rtnh_next(rtnh, &remaining); 441651ebd318SNicolas Dichtel } 44176b9ea5a6SRoopa Prabhu 44183b1137feSDavid Ahern /* for add and replace send one notification with all nexthops. 44193b1137feSDavid Ahern * Skip the notification in fib6_add_rt2node and send one with 44203b1137feSDavid Ahern * the full route when done 44213b1137feSDavid Ahern */ 44223b1137feSDavid Ahern info->skip_notify = 1; 44233b1137feSDavid Ahern 44246b9ea5a6SRoopa Prabhu err_nh = NULL; 44256b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 44268d1c802bSDavid Ahern err = __ip6_ins_rt(nh->fib6_info, info, extack); 44278d1c802bSDavid Ahern fib6_info_release(nh->fib6_info); 44283b1137feSDavid Ahern 4429f7225172SDavid Ahern if (!err) { 4430f7225172SDavid Ahern /* save reference to last route successfully inserted */ 4431f7225172SDavid Ahern rt_last = nh->fib6_info; 4432f7225172SDavid Ahern 44336b9ea5a6SRoopa Prabhu /* save reference to first route for notification */ 4434f7225172SDavid Ahern if (!rt_notif) 44358d1c802bSDavid Ahern rt_notif = nh->fib6_info; 4436f7225172SDavid Ahern } 44376b9ea5a6SRoopa Prabhu 44388d1c802bSDavid Ahern /* nh->fib6_info is used or freed at this point, reset to NULL*/ 44398d1c802bSDavid Ahern nh->fib6_info = NULL; 44406b9ea5a6SRoopa Prabhu if (err) { 44416b9ea5a6SRoopa Prabhu if (replace && nhn) 4442a5a82d84SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 4443a5a82d84SJakub Kicinski "multipath route replace failed (check consistency of installed routes)"); 44446b9ea5a6SRoopa Prabhu err_nh = nh; 44456b9ea5a6SRoopa Prabhu goto add_errout; 44466b9ea5a6SRoopa Prabhu } 44476b9ea5a6SRoopa Prabhu 44481a72418bSNicolas Dichtel /* Because each route is added like a single route we remove 444927596472SMichal Kubeček * these flags after the first nexthop: if there is a collision, 445027596472SMichal Kubeček * we have already failed to add the first nexthop: 445127596472SMichal Kubeček * fib6_add_rt2node() has rejected it; when replacing, old 445227596472SMichal Kubeček * nexthops have been replaced by first new, the rest should 445327596472SMichal Kubeček * be added to it. 44541a72418bSNicolas Dichtel */ 445527596472SMichal Kubeček cfg->fc_nlinfo.nlh->nlmsg_flags &= ~(NLM_F_EXCL | 445627596472SMichal Kubeček NLM_F_REPLACE); 44576b9ea5a6SRoopa Prabhu nhn++; 44586b9ea5a6SRoopa Prabhu } 44596b9ea5a6SRoopa Prabhu 44603b1137feSDavid Ahern /* success ... tell user about new route */ 44613b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 44626b9ea5a6SRoopa Prabhu goto cleanup; 44636b9ea5a6SRoopa Prabhu 44646b9ea5a6SRoopa Prabhu add_errout: 44653b1137feSDavid Ahern /* send notification for routes that were added so that 44663b1137feSDavid Ahern * the delete notifications sent by ip6_route_del are 44673b1137feSDavid Ahern * coherent 44683b1137feSDavid Ahern */ 44693b1137feSDavid Ahern if (rt_notif) 44703b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 44713b1137feSDavid Ahern 44726b9ea5a6SRoopa Prabhu /* Delete routes that were already added */ 44736b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 44746b9ea5a6SRoopa Prabhu if (err_nh == nh) 44756b9ea5a6SRoopa Prabhu break; 4476333c4301SDavid Ahern ip6_route_del(&nh->r_cfg, extack); 44776b9ea5a6SRoopa Prabhu } 44786b9ea5a6SRoopa Prabhu 44796b9ea5a6SRoopa Prabhu cleanup: 44806b9ea5a6SRoopa Prabhu list_for_each_entry_safe(nh, nh_safe, &rt6_nh_list, next) { 44818d1c802bSDavid Ahern if (nh->fib6_info) 44828d1c802bSDavid Ahern fib6_info_release(nh->fib6_info); 44836b9ea5a6SRoopa Prabhu list_del(&nh->next); 44846b9ea5a6SRoopa Prabhu kfree(nh); 44856b9ea5a6SRoopa Prabhu } 44866b9ea5a6SRoopa Prabhu 44876b9ea5a6SRoopa Prabhu return err; 44886b9ea5a6SRoopa Prabhu } 44896b9ea5a6SRoopa Prabhu 4490333c4301SDavid Ahern static int ip6_route_multipath_del(struct fib6_config *cfg, 4491333c4301SDavid Ahern struct netlink_ext_ack *extack) 44926b9ea5a6SRoopa Prabhu { 44936b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 44946b9ea5a6SRoopa Prabhu struct rtnexthop *rtnh; 44956b9ea5a6SRoopa Prabhu int remaining; 44966b9ea5a6SRoopa Prabhu int attrlen; 44976b9ea5a6SRoopa Prabhu int err = 1, last_err = 0; 44986b9ea5a6SRoopa Prabhu 44996b9ea5a6SRoopa Prabhu remaining = cfg->fc_mp_len; 45006b9ea5a6SRoopa Prabhu rtnh = (struct rtnexthop *)cfg->fc_mp; 45016b9ea5a6SRoopa Prabhu 45026b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry */ 45036b9ea5a6SRoopa Prabhu while (rtnh_ok(rtnh, remaining)) { 45046b9ea5a6SRoopa Prabhu memcpy(&r_cfg, cfg, sizeof(*cfg)); 45056b9ea5a6SRoopa Prabhu if (rtnh->rtnh_ifindex) 45066b9ea5a6SRoopa Prabhu r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 45076b9ea5a6SRoopa Prabhu 45086b9ea5a6SRoopa Prabhu attrlen = rtnh_attrlen(rtnh); 45096b9ea5a6SRoopa Prabhu if (attrlen > 0) { 45106b9ea5a6SRoopa Prabhu struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 45116b9ea5a6SRoopa Prabhu 45126b9ea5a6SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_GATEWAY); 45136b9ea5a6SRoopa Prabhu if (nla) { 45146b9ea5a6SRoopa Prabhu nla_memcpy(&r_cfg.fc_gateway, nla, 16); 45156b9ea5a6SRoopa Prabhu r_cfg.fc_flags |= RTF_GATEWAY; 45166b9ea5a6SRoopa Prabhu } 45176b9ea5a6SRoopa Prabhu } 4518333c4301SDavid Ahern err = ip6_route_del(&r_cfg, extack); 45196b9ea5a6SRoopa Prabhu if (err) 45206b9ea5a6SRoopa Prabhu last_err = err; 45216b9ea5a6SRoopa Prabhu 452251ebd318SNicolas Dichtel rtnh = rtnh_next(rtnh, &remaining); 452351ebd318SNicolas Dichtel } 452451ebd318SNicolas Dichtel 452551ebd318SNicolas Dichtel return last_err; 452651ebd318SNicolas Dichtel } 452751ebd318SNicolas Dichtel 4528c21ef3e3SDavid Ahern static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4529c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 45301da177e4SLinus Torvalds { 453186872cb5SThomas Graf struct fib6_config cfg; 453286872cb5SThomas Graf int err; 45331da177e4SLinus Torvalds 4534333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 453586872cb5SThomas Graf if (err < 0) 453686872cb5SThomas Graf return err; 453786872cb5SThomas Graf 453851ebd318SNicolas Dichtel if (cfg.fc_mp) 4539333c4301SDavid Ahern return ip6_route_multipath_del(&cfg, extack); 45400ae81335SDavid Ahern else { 45410ae81335SDavid Ahern cfg.fc_delete_all_nh = 1; 4542333c4301SDavid Ahern return ip6_route_del(&cfg, extack); 45431da177e4SLinus Torvalds } 45440ae81335SDavid Ahern } 45451da177e4SLinus Torvalds 4546c21ef3e3SDavid Ahern static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4547c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 45481da177e4SLinus Torvalds { 454986872cb5SThomas Graf struct fib6_config cfg; 455086872cb5SThomas Graf int err; 45511da177e4SLinus Torvalds 4552333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 455386872cb5SThomas Graf if (err < 0) 455486872cb5SThomas Graf return err; 455586872cb5SThomas Graf 455667f69513SDavid Ahern if (cfg.fc_metric == 0) 455767f69513SDavid Ahern cfg.fc_metric = IP6_RT_PRIO_USER; 455867f69513SDavid Ahern 455951ebd318SNicolas Dichtel if (cfg.fc_mp) 4560333c4301SDavid Ahern return ip6_route_multipath_add(&cfg, extack); 456151ebd318SNicolas Dichtel else 4562acb54e3cSDavid Ahern return ip6_route_add(&cfg, GFP_KERNEL, extack); 45631da177e4SLinus Torvalds } 45641da177e4SLinus Torvalds 45658d1c802bSDavid Ahern static size_t rt6_nlmsg_size(struct fib6_info *rt) 4566339bf98fSThomas Graf { 4567beb1afacSDavid Ahern int nexthop_len = 0; 4568beb1afacSDavid Ahern 456993c2fb25SDavid Ahern if (rt->fib6_nsiblings) { 4570beb1afacSDavid Ahern nexthop_len = nla_total_size(0) /* RTA_MULTIPATH */ 4571beb1afacSDavid Ahern + NLA_ALIGN(sizeof(struct rtnexthop)) 4572beb1afacSDavid Ahern + nla_total_size(16) /* RTA_GATEWAY */ 45735e670d84SDavid Ahern + lwtunnel_get_encap_size(rt->fib6_nh.nh_lwtstate); 4574beb1afacSDavid Ahern 457593c2fb25SDavid Ahern nexthop_len *= rt->fib6_nsiblings; 4576beb1afacSDavid Ahern } 4577beb1afacSDavid Ahern 4578339bf98fSThomas Graf return NLMSG_ALIGN(sizeof(struct rtmsg)) 4579339bf98fSThomas Graf + nla_total_size(16) /* RTA_SRC */ 4580339bf98fSThomas Graf + nla_total_size(16) /* RTA_DST */ 4581339bf98fSThomas Graf + nla_total_size(16) /* RTA_GATEWAY */ 4582339bf98fSThomas Graf + nla_total_size(16) /* RTA_PREFSRC */ 4583339bf98fSThomas Graf + nla_total_size(4) /* RTA_TABLE */ 4584339bf98fSThomas Graf + nla_total_size(4) /* RTA_IIF */ 4585339bf98fSThomas Graf + nla_total_size(4) /* RTA_OIF */ 4586339bf98fSThomas Graf + nla_total_size(4) /* RTA_PRIORITY */ 45876a2b9ce0SNoriaki TAKAMIYA + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */ 4588ea697639SDaniel Borkmann + nla_total_size(sizeof(struct rta_cacheinfo)) 4589c78ba6d6SLubomir Rintel + nla_total_size(TCP_CA_NAME_MAX) /* RTAX_CC_ALGO */ 459019e42e45SRoopa Prabhu + nla_total_size(1) /* RTA_PREF */ 45915e670d84SDavid Ahern + lwtunnel_get_encap_size(rt->fib6_nh.nh_lwtstate) 4592beb1afacSDavid Ahern + nexthop_len; 4593beb1afacSDavid Ahern } 4594beb1afacSDavid Ahern 45958d1c802bSDavid Ahern static int rt6_nexthop_info(struct sk_buff *skb, struct fib6_info *rt, 45965be083ceSDavid Ahern unsigned int *flags, bool skip_oif) 4597beb1afacSDavid Ahern { 45985e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_DEAD) 4599f9d882eaSIdo Schimmel *flags |= RTNH_F_DEAD; 4600f9d882eaSIdo Schimmel 46015e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_LINKDOWN) { 4602beb1afacSDavid Ahern *flags |= RTNH_F_LINKDOWN; 4603dcd1f572SDavid Ahern 4604dcd1f572SDavid Ahern rcu_read_lock(); 4605dcd1f572SDavid Ahern if (fib6_ignore_linkdown(rt)) 4606beb1afacSDavid Ahern *flags |= RTNH_F_DEAD; 4607dcd1f572SDavid Ahern rcu_read_unlock(); 4608beb1afacSDavid Ahern } 4609beb1afacSDavid Ahern 461093c2fb25SDavid Ahern if (rt->fib6_flags & RTF_GATEWAY) { 46115e670d84SDavid Ahern if (nla_put_in6_addr(skb, RTA_GATEWAY, &rt->fib6_nh.nh_gw) < 0) 4612beb1afacSDavid Ahern goto nla_put_failure; 4613beb1afacSDavid Ahern } 4614beb1afacSDavid Ahern 46155e670d84SDavid Ahern *flags |= (rt->fib6_nh.nh_flags & RTNH_F_ONLINK); 46165e670d84SDavid Ahern if (rt->fib6_nh.nh_flags & RTNH_F_OFFLOAD) 461761e4d01eSIdo Schimmel *flags |= RTNH_F_OFFLOAD; 461861e4d01eSIdo Schimmel 46195be083ceSDavid Ahern /* not needed for multipath encoding b/c it has a rtnexthop struct */ 46205e670d84SDavid Ahern if (!skip_oif && rt->fib6_nh.nh_dev && 46215e670d84SDavid Ahern nla_put_u32(skb, RTA_OIF, rt->fib6_nh.nh_dev->ifindex)) 4622beb1afacSDavid Ahern goto nla_put_failure; 4623beb1afacSDavid Ahern 46245e670d84SDavid Ahern if (rt->fib6_nh.nh_lwtstate && 46255e670d84SDavid Ahern lwtunnel_fill_encap(skb, rt->fib6_nh.nh_lwtstate) < 0) 4626beb1afacSDavid Ahern goto nla_put_failure; 4627beb1afacSDavid Ahern 4628beb1afacSDavid Ahern return 0; 4629beb1afacSDavid Ahern 4630beb1afacSDavid Ahern nla_put_failure: 4631beb1afacSDavid Ahern return -EMSGSIZE; 4632beb1afacSDavid Ahern } 4633beb1afacSDavid Ahern 46345be083ceSDavid Ahern /* add multipath next hop */ 46358d1c802bSDavid Ahern static int rt6_add_nexthop(struct sk_buff *skb, struct fib6_info *rt) 4636beb1afacSDavid Ahern { 46375e670d84SDavid Ahern const struct net_device *dev = rt->fib6_nh.nh_dev; 4638beb1afacSDavid Ahern struct rtnexthop *rtnh; 4639beb1afacSDavid Ahern unsigned int flags = 0; 4640beb1afacSDavid Ahern 4641beb1afacSDavid Ahern rtnh = nla_reserve_nohdr(skb, sizeof(*rtnh)); 4642beb1afacSDavid Ahern if (!rtnh) 4643beb1afacSDavid Ahern goto nla_put_failure; 4644beb1afacSDavid Ahern 46455e670d84SDavid Ahern rtnh->rtnh_hops = rt->fib6_nh.nh_weight - 1; 46465e670d84SDavid Ahern rtnh->rtnh_ifindex = dev ? dev->ifindex : 0; 4647beb1afacSDavid Ahern 46485be083ceSDavid Ahern if (rt6_nexthop_info(skb, rt, &flags, true) < 0) 4649beb1afacSDavid Ahern goto nla_put_failure; 4650beb1afacSDavid Ahern 4651beb1afacSDavid Ahern rtnh->rtnh_flags = flags; 4652beb1afacSDavid Ahern 4653beb1afacSDavid Ahern /* length of rtnetlink header + attributes */ 4654beb1afacSDavid Ahern rtnh->rtnh_len = nlmsg_get_pos(skb) - (void *)rtnh; 4655beb1afacSDavid Ahern 4656beb1afacSDavid Ahern return 0; 4657beb1afacSDavid Ahern 4658beb1afacSDavid Ahern nla_put_failure: 4659beb1afacSDavid Ahern return -EMSGSIZE; 4660339bf98fSThomas Graf } 4661339bf98fSThomas Graf 4662d4ead6b3SDavid Ahern static int rt6_fill_node(struct net *net, struct sk_buff *skb, 46638d1c802bSDavid Ahern struct fib6_info *rt, struct dst_entry *dst, 4664d4ead6b3SDavid Ahern struct in6_addr *dest, struct in6_addr *src, 466515e47304SEric W. Biederman int iif, int type, u32 portid, u32 seq, 4666f8cfe2ceSDavid Ahern unsigned int flags) 46671da177e4SLinus Torvalds { 466822d0bd82SXin Long struct rt6_info *rt6 = (struct rt6_info *)dst; 466922d0bd82SXin Long struct rt6key *rt6_dst, *rt6_src; 467022d0bd82SXin Long u32 *pmetrics, table, rt6_flags; 46711da177e4SLinus Torvalds struct nlmsghdr *nlh; 467222d0bd82SXin Long struct rtmsg *rtm; 4673d4ead6b3SDavid Ahern long expires = 0; 46741da177e4SLinus Torvalds 467515e47304SEric W. Biederman nlh = nlmsg_put(skb, portid, seq, type, sizeof(*rtm), flags); 467638308473SDavid S. Miller if (!nlh) 467726932566SPatrick McHardy return -EMSGSIZE; 46782d7202bfSThomas Graf 467922d0bd82SXin Long if (rt6) { 468022d0bd82SXin Long rt6_dst = &rt6->rt6i_dst; 468122d0bd82SXin Long rt6_src = &rt6->rt6i_src; 468222d0bd82SXin Long rt6_flags = rt6->rt6i_flags; 468322d0bd82SXin Long } else { 468422d0bd82SXin Long rt6_dst = &rt->fib6_dst; 468522d0bd82SXin Long rt6_src = &rt->fib6_src; 468622d0bd82SXin Long rt6_flags = rt->fib6_flags; 468722d0bd82SXin Long } 468822d0bd82SXin Long 46892d7202bfSThomas Graf rtm = nlmsg_data(nlh); 46901da177e4SLinus Torvalds rtm->rtm_family = AF_INET6; 469122d0bd82SXin Long rtm->rtm_dst_len = rt6_dst->plen; 469222d0bd82SXin Long rtm->rtm_src_len = rt6_src->plen; 46931da177e4SLinus Torvalds rtm->rtm_tos = 0; 469493c2fb25SDavid Ahern if (rt->fib6_table) 469593c2fb25SDavid Ahern table = rt->fib6_table->tb6_id; 4696c71099acSThomas Graf else 46979e762a4aSPatrick McHardy table = RT6_TABLE_UNSPEC; 469897f0082aSKalash Nainwal rtm->rtm_table = table < 256 ? table : RT_TABLE_COMPAT; 4699c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_TABLE, table)) 4700c78679e8SDavid S. Miller goto nla_put_failure; 4701e8478e80SDavid Ahern 4702e8478e80SDavid Ahern rtm->rtm_type = rt->fib6_type; 47031da177e4SLinus Torvalds rtm->rtm_flags = 0; 47041da177e4SLinus Torvalds rtm->rtm_scope = RT_SCOPE_UNIVERSE; 470593c2fb25SDavid Ahern rtm->rtm_protocol = rt->fib6_protocol; 47061da177e4SLinus Torvalds 470722d0bd82SXin Long if (rt6_flags & RTF_CACHE) 47081da177e4SLinus Torvalds rtm->rtm_flags |= RTM_F_CLONED; 47091da177e4SLinus Torvalds 4710d4ead6b3SDavid Ahern if (dest) { 4711d4ead6b3SDavid Ahern if (nla_put_in6_addr(skb, RTA_DST, dest)) 4712c78679e8SDavid S. Miller goto nla_put_failure; 47131da177e4SLinus Torvalds rtm->rtm_dst_len = 128; 47141da177e4SLinus Torvalds } else if (rtm->rtm_dst_len) 471522d0bd82SXin Long if (nla_put_in6_addr(skb, RTA_DST, &rt6_dst->addr)) 4716c78679e8SDavid S. Miller goto nla_put_failure; 47171da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 47181da177e4SLinus Torvalds if (src) { 4719930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_SRC, src)) 4720c78679e8SDavid S. Miller goto nla_put_failure; 47211da177e4SLinus Torvalds rtm->rtm_src_len = 128; 4722c78679e8SDavid S. Miller } else if (rtm->rtm_src_len && 472322d0bd82SXin Long nla_put_in6_addr(skb, RTA_SRC, &rt6_src->addr)) 4724c78679e8SDavid S. Miller goto nla_put_failure; 47251da177e4SLinus Torvalds #endif 47267bc570c8SYOSHIFUJI Hideaki if (iif) { 47277bc570c8SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_MROUTE 472822d0bd82SXin Long if (ipv6_addr_is_multicast(&rt6_dst->addr)) { 4729fd61c6baSDavid Ahern int err = ip6mr_get_route(net, skb, rtm, portid); 47302cf75070SNikolay Aleksandrov 47317bc570c8SYOSHIFUJI Hideaki if (err == 0) 47327bc570c8SYOSHIFUJI Hideaki return 0; 4733fd61c6baSDavid Ahern if (err < 0) 47347bc570c8SYOSHIFUJI Hideaki goto nla_put_failure; 47357bc570c8SYOSHIFUJI Hideaki } else 47367bc570c8SYOSHIFUJI Hideaki #endif 4737c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_IIF, iif)) 4738c78679e8SDavid S. Miller goto nla_put_failure; 4739d4ead6b3SDavid Ahern } else if (dest) { 47401da177e4SLinus Torvalds struct in6_addr saddr_buf; 4741d4ead6b3SDavid Ahern if (ip6_route_get_saddr(net, rt, dest, 0, &saddr_buf) == 0 && 4742930345eaSJiri Benc nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4743c78679e8SDavid S. Miller goto nla_put_failure; 4744c3968a85SDaniel Walter } 4745c3968a85SDaniel Walter 474693c2fb25SDavid Ahern if (rt->fib6_prefsrc.plen) { 4747c3968a85SDaniel Walter struct in6_addr saddr_buf; 474893c2fb25SDavid Ahern saddr_buf = rt->fib6_prefsrc.addr; 4749930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4750c78679e8SDavid S. Miller goto nla_put_failure; 47511da177e4SLinus Torvalds } 47522d7202bfSThomas Graf 4753d4ead6b3SDavid Ahern pmetrics = dst ? dst_metrics_ptr(dst) : rt->fib6_metrics->metrics; 4754d4ead6b3SDavid Ahern if (rtnetlink_put_metrics(skb, pmetrics) < 0) 47552d7202bfSThomas Graf goto nla_put_failure; 47562d7202bfSThomas Graf 475793c2fb25SDavid Ahern if (nla_put_u32(skb, RTA_PRIORITY, rt->fib6_metric)) 4758beb1afacSDavid Ahern goto nla_put_failure; 4759beb1afacSDavid Ahern 4760beb1afacSDavid Ahern /* For multipath routes, walk the siblings list and add 4761beb1afacSDavid Ahern * each as a nexthop within RTA_MULTIPATH. 4762beb1afacSDavid Ahern */ 476322d0bd82SXin Long if (rt6) { 476422d0bd82SXin Long if (rt6_flags & RTF_GATEWAY && 476522d0bd82SXin Long nla_put_in6_addr(skb, RTA_GATEWAY, &rt6->rt6i_gateway)) 476622d0bd82SXin Long goto nla_put_failure; 476722d0bd82SXin Long 476822d0bd82SXin Long if (dst->dev && nla_put_u32(skb, RTA_OIF, dst->dev->ifindex)) 476922d0bd82SXin Long goto nla_put_failure; 477022d0bd82SXin Long } else if (rt->fib6_nsiblings) { 47718d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 4772beb1afacSDavid Ahern struct nlattr *mp; 4773beb1afacSDavid Ahern 4774beb1afacSDavid Ahern mp = nla_nest_start(skb, RTA_MULTIPATH); 4775beb1afacSDavid Ahern if (!mp) 4776beb1afacSDavid Ahern goto nla_put_failure; 4777beb1afacSDavid Ahern 4778beb1afacSDavid Ahern if (rt6_add_nexthop(skb, rt) < 0) 4779beb1afacSDavid Ahern goto nla_put_failure; 4780beb1afacSDavid Ahern 4781beb1afacSDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 478293c2fb25SDavid Ahern &rt->fib6_siblings, fib6_siblings) { 4783beb1afacSDavid Ahern if (rt6_add_nexthop(skb, sibling) < 0) 478494f826b8SEric Dumazet goto nla_put_failure; 478594f826b8SEric Dumazet } 47862d7202bfSThomas Graf 4787beb1afacSDavid Ahern nla_nest_end(skb, mp); 4788beb1afacSDavid Ahern } else { 47895be083ceSDavid Ahern if (rt6_nexthop_info(skb, rt, &rtm->rtm_flags, false) < 0) 4790c78679e8SDavid S. Miller goto nla_put_failure; 4791beb1afacSDavid Ahern } 47928253947eSLi Wei 479322d0bd82SXin Long if (rt6_flags & RTF_EXPIRES) { 479414895687SDavid Ahern expires = dst ? dst->expires : rt->expires; 479514895687SDavid Ahern expires -= jiffies; 479614895687SDavid Ahern } 479769cdf8f9SYOSHIFUJI Hideaki 4798d4ead6b3SDavid Ahern if (rtnl_put_cacheinfo(skb, dst, 0, expires, dst ? dst->error : 0) < 0) 4799e3703b3dSThomas Graf goto nla_put_failure; 48001da177e4SLinus Torvalds 480122d0bd82SXin Long if (nla_put_u8(skb, RTA_PREF, IPV6_EXTRACT_PREF(rt6_flags))) 4802c78ba6d6SLubomir Rintel goto nla_put_failure; 4803c78ba6d6SLubomir Rintel 480419e42e45SRoopa Prabhu 4805053c095aSJohannes Berg nlmsg_end(skb, nlh); 4806053c095aSJohannes Berg return 0; 48072d7202bfSThomas Graf 48082d7202bfSThomas Graf nla_put_failure: 480926932566SPatrick McHardy nlmsg_cancel(skb, nlh); 481026932566SPatrick McHardy return -EMSGSIZE; 48111da177e4SLinus Torvalds } 48121da177e4SLinus Torvalds 481313e38901SDavid Ahern static bool fib6_info_uses_dev(const struct fib6_info *f6i, 481413e38901SDavid Ahern const struct net_device *dev) 481513e38901SDavid Ahern { 481613e38901SDavid Ahern if (f6i->fib6_nh.nh_dev == dev) 481713e38901SDavid Ahern return true; 481813e38901SDavid Ahern 481913e38901SDavid Ahern if (f6i->fib6_nsiblings) { 482013e38901SDavid Ahern struct fib6_info *sibling, *next_sibling; 482113e38901SDavid Ahern 482213e38901SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 482313e38901SDavid Ahern &f6i->fib6_siblings, fib6_siblings) { 482413e38901SDavid Ahern if (sibling->fib6_nh.nh_dev == dev) 482513e38901SDavid Ahern return true; 482613e38901SDavid Ahern } 482713e38901SDavid Ahern } 482813e38901SDavid Ahern 482913e38901SDavid Ahern return false; 483013e38901SDavid Ahern } 483113e38901SDavid Ahern 48328d1c802bSDavid Ahern int rt6_dump_route(struct fib6_info *rt, void *p_arg) 48331da177e4SLinus Torvalds { 48341da177e4SLinus Torvalds struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg; 483513e38901SDavid Ahern struct fib_dump_filter *filter = &arg->filter; 483613e38901SDavid Ahern unsigned int flags = NLM_F_MULTI; 48371f17e2f2SDavid Ahern struct net *net = arg->net; 48381f17e2f2SDavid Ahern 4839421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 48401f17e2f2SDavid Ahern return 0; 48411da177e4SLinus Torvalds 484213e38901SDavid Ahern if ((filter->flags & RTM_F_PREFIX) && 484393c2fb25SDavid Ahern !(rt->fib6_flags & RTF_PREFIX_RT)) { 4844f8cfe2ceSDavid Ahern /* success since this is not a prefix route */ 4845f8cfe2ceSDavid Ahern return 1; 4846f8cfe2ceSDavid Ahern } 484713e38901SDavid Ahern if (filter->filter_set) { 484813e38901SDavid Ahern if ((filter->rt_type && rt->fib6_type != filter->rt_type) || 484913e38901SDavid Ahern (filter->dev && !fib6_info_uses_dev(rt, filter->dev)) || 485013e38901SDavid Ahern (filter->protocol && rt->fib6_protocol != filter->protocol)) { 485113e38901SDavid Ahern return 1; 485213e38901SDavid Ahern } 485313e38901SDavid Ahern flags |= NLM_F_DUMP_FILTERED; 4854f8cfe2ceSDavid Ahern } 48551da177e4SLinus Torvalds 4856d4ead6b3SDavid Ahern return rt6_fill_node(net, arg->skb, rt, NULL, NULL, NULL, 0, 4857d4ead6b3SDavid Ahern RTM_NEWROUTE, NETLINK_CB(arg->cb->skb).portid, 485813e38901SDavid Ahern arg->cb->nlh->nlmsg_seq, flags); 48591da177e4SLinus Torvalds } 48601da177e4SLinus Torvalds 48610eff0a27SJakub Kicinski static int inet6_rtm_valid_getroute_req(struct sk_buff *skb, 48620eff0a27SJakub Kicinski const struct nlmsghdr *nlh, 48630eff0a27SJakub Kicinski struct nlattr **tb, 48640eff0a27SJakub Kicinski struct netlink_ext_ack *extack) 48650eff0a27SJakub Kicinski { 48660eff0a27SJakub Kicinski struct rtmsg *rtm; 48670eff0a27SJakub Kicinski int i, err; 48680eff0a27SJakub Kicinski 48690eff0a27SJakub Kicinski if (nlh->nlmsg_len < nlmsg_msg_size(sizeof(*rtm))) { 48700eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 48710eff0a27SJakub Kicinski "Invalid header for get route request"); 48720eff0a27SJakub Kicinski return -EINVAL; 48730eff0a27SJakub Kicinski } 48740eff0a27SJakub Kicinski 48750eff0a27SJakub Kicinski if (!netlink_strict_get_check(skb)) 48760eff0a27SJakub Kicinski return nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, 48770eff0a27SJakub Kicinski rtm_ipv6_policy, extack); 48780eff0a27SJakub Kicinski 48790eff0a27SJakub Kicinski rtm = nlmsg_data(nlh); 48800eff0a27SJakub Kicinski if ((rtm->rtm_src_len && rtm->rtm_src_len != 128) || 48810eff0a27SJakub Kicinski (rtm->rtm_dst_len && rtm->rtm_dst_len != 128) || 48820eff0a27SJakub Kicinski rtm->rtm_table || rtm->rtm_protocol || rtm->rtm_scope || 48830eff0a27SJakub Kicinski rtm->rtm_type) { 48840eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "Invalid values in header for get route request"); 48850eff0a27SJakub Kicinski return -EINVAL; 48860eff0a27SJakub Kicinski } 48870eff0a27SJakub Kicinski if (rtm->rtm_flags & ~RTM_F_FIB_MATCH) { 48880eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 48890eff0a27SJakub Kicinski "Invalid flags for get route request"); 48900eff0a27SJakub Kicinski return -EINVAL; 48910eff0a27SJakub Kicinski } 48920eff0a27SJakub Kicinski 48930eff0a27SJakub Kicinski err = nlmsg_parse_strict(nlh, sizeof(*rtm), tb, RTA_MAX, 48940eff0a27SJakub Kicinski rtm_ipv6_policy, extack); 48950eff0a27SJakub Kicinski if (err) 48960eff0a27SJakub Kicinski return err; 48970eff0a27SJakub Kicinski 48980eff0a27SJakub Kicinski if ((tb[RTA_SRC] && !rtm->rtm_src_len) || 48990eff0a27SJakub Kicinski (tb[RTA_DST] && !rtm->rtm_dst_len)) { 49000eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "rtm_src_len and rtm_dst_len must be 128 for IPv6"); 49010eff0a27SJakub Kicinski return -EINVAL; 49020eff0a27SJakub Kicinski } 49030eff0a27SJakub Kicinski 49040eff0a27SJakub Kicinski for (i = 0; i <= RTA_MAX; i++) { 49050eff0a27SJakub Kicinski if (!tb[i]) 49060eff0a27SJakub Kicinski continue; 49070eff0a27SJakub Kicinski 49080eff0a27SJakub Kicinski switch (i) { 49090eff0a27SJakub Kicinski case RTA_SRC: 49100eff0a27SJakub Kicinski case RTA_DST: 49110eff0a27SJakub Kicinski case RTA_IIF: 49120eff0a27SJakub Kicinski case RTA_OIF: 49130eff0a27SJakub Kicinski case RTA_MARK: 49140eff0a27SJakub Kicinski case RTA_UID: 49150eff0a27SJakub Kicinski case RTA_SPORT: 49160eff0a27SJakub Kicinski case RTA_DPORT: 49170eff0a27SJakub Kicinski case RTA_IP_PROTO: 49180eff0a27SJakub Kicinski break; 49190eff0a27SJakub Kicinski default: 49200eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "Unsupported attribute in get route request"); 49210eff0a27SJakub Kicinski return -EINVAL; 49220eff0a27SJakub Kicinski } 49230eff0a27SJakub Kicinski } 49240eff0a27SJakub Kicinski 49250eff0a27SJakub Kicinski return 0; 49260eff0a27SJakub Kicinski } 49270eff0a27SJakub Kicinski 4928c21ef3e3SDavid Ahern static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr *nlh, 4929c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 49301da177e4SLinus Torvalds { 49313b1e0a65SYOSHIFUJI Hideaki struct net *net = sock_net(in_skb->sk); 4932ab364a6fSThomas Graf struct nlattr *tb[RTA_MAX+1]; 493318c3a61cSRoopa Prabhu int err, iif = 0, oif = 0; 4934a68886a6SDavid Ahern struct fib6_info *from; 493518c3a61cSRoopa Prabhu struct dst_entry *dst; 49361da177e4SLinus Torvalds struct rt6_info *rt; 4937ab364a6fSThomas Graf struct sk_buff *skb; 4938ab364a6fSThomas Graf struct rtmsg *rtm; 4939744486d4SMaciej Żenczykowski struct flowi6 fl6 = {}; 494018c3a61cSRoopa Prabhu bool fibmatch; 4941ab364a6fSThomas Graf 49420eff0a27SJakub Kicinski err = inet6_rtm_valid_getroute_req(in_skb, nlh, tb, extack); 4943ab364a6fSThomas Graf if (err < 0) 4944ab364a6fSThomas Graf goto errout; 4945ab364a6fSThomas Graf 4946ab364a6fSThomas Graf err = -EINVAL; 494738b7097bSHannes Frederic Sowa rtm = nlmsg_data(nlh); 494838b7097bSHannes Frederic Sowa fl6.flowlabel = ip6_make_flowinfo(rtm->rtm_tos, 0); 494918c3a61cSRoopa Prabhu fibmatch = !!(rtm->rtm_flags & RTM_F_FIB_MATCH); 4950ab364a6fSThomas Graf 4951ab364a6fSThomas Graf if (tb[RTA_SRC]) { 4952ab364a6fSThomas Graf if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr)) 4953ab364a6fSThomas Graf goto errout; 4954ab364a6fSThomas Graf 49554e3fd7a0SAlexey Dobriyan fl6.saddr = *(struct in6_addr *)nla_data(tb[RTA_SRC]); 4956ab364a6fSThomas Graf } 4957ab364a6fSThomas Graf 4958ab364a6fSThomas Graf if (tb[RTA_DST]) { 4959ab364a6fSThomas Graf if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr)) 4960ab364a6fSThomas Graf goto errout; 4961ab364a6fSThomas Graf 49624e3fd7a0SAlexey Dobriyan fl6.daddr = *(struct in6_addr *)nla_data(tb[RTA_DST]); 4963ab364a6fSThomas Graf } 4964ab364a6fSThomas Graf 4965ab364a6fSThomas Graf if (tb[RTA_IIF]) 4966ab364a6fSThomas Graf iif = nla_get_u32(tb[RTA_IIF]); 4967ab364a6fSThomas Graf 4968ab364a6fSThomas Graf if (tb[RTA_OIF]) 496972331bc0SShmulik Ladkani oif = nla_get_u32(tb[RTA_OIF]); 4970ab364a6fSThomas Graf 49712e47b291SLorenzo Colitti if (tb[RTA_MARK]) 49722e47b291SLorenzo Colitti fl6.flowi6_mark = nla_get_u32(tb[RTA_MARK]); 49732e47b291SLorenzo Colitti 4974622ec2c9SLorenzo Colitti if (tb[RTA_UID]) 4975622ec2c9SLorenzo Colitti fl6.flowi6_uid = make_kuid(current_user_ns(), 4976622ec2c9SLorenzo Colitti nla_get_u32(tb[RTA_UID])); 4977622ec2c9SLorenzo Colitti else 4978622ec2c9SLorenzo Colitti fl6.flowi6_uid = iif ? INVALID_UID : current_uid(); 4979622ec2c9SLorenzo Colitti 4980eacb9384SRoopa Prabhu if (tb[RTA_SPORT]) 4981eacb9384SRoopa Prabhu fl6.fl6_sport = nla_get_be16(tb[RTA_SPORT]); 4982eacb9384SRoopa Prabhu 4983eacb9384SRoopa Prabhu if (tb[RTA_DPORT]) 4984eacb9384SRoopa Prabhu fl6.fl6_dport = nla_get_be16(tb[RTA_DPORT]); 4985eacb9384SRoopa Prabhu 4986eacb9384SRoopa Prabhu if (tb[RTA_IP_PROTO]) { 4987eacb9384SRoopa Prabhu err = rtm_getroute_parse_ip_proto(tb[RTA_IP_PROTO], 49885e1a99eaSHangbin Liu &fl6.flowi6_proto, AF_INET6, 49895e1a99eaSHangbin Liu extack); 4990eacb9384SRoopa Prabhu if (err) 4991eacb9384SRoopa Prabhu goto errout; 4992eacb9384SRoopa Prabhu } 4993eacb9384SRoopa Prabhu 4994ab364a6fSThomas Graf if (iif) { 4995ab364a6fSThomas Graf struct net_device *dev; 499672331bc0SShmulik Ladkani int flags = 0; 499772331bc0SShmulik Ladkani 4998121622dbSFlorian Westphal rcu_read_lock(); 4999121622dbSFlorian Westphal 5000121622dbSFlorian Westphal dev = dev_get_by_index_rcu(net, iif); 5001ab364a6fSThomas Graf if (!dev) { 5002121622dbSFlorian Westphal rcu_read_unlock(); 5003ab364a6fSThomas Graf err = -ENODEV; 5004ab364a6fSThomas Graf goto errout; 5005ab364a6fSThomas Graf } 500672331bc0SShmulik Ladkani 500772331bc0SShmulik Ladkani fl6.flowi6_iif = iif; 500872331bc0SShmulik Ladkani 500972331bc0SShmulik Ladkani if (!ipv6_addr_any(&fl6.saddr)) 501072331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_HAS_SADDR; 501172331bc0SShmulik Ladkani 5012b75cc8f9SDavid Ahern dst = ip6_route_input_lookup(net, dev, &fl6, NULL, flags); 5013121622dbSFlorian Westphal 5014121622dbSFlorian Westphal rcu_read_unlock(); 501572331bc0SShmulik Ladkani } else { 501672331bc0SShmulik Ladkani fl6.flowi6_oif = oif; 501772331bc0SShmulik Ladkani 501818c3a61cSRoopa Prabhu dst = ip6_route_output(net, NULL, &fl6); 501918c3a61cSRoopa Prabhu } 502018c3a61cSRoopa Prabhu 502118c3a61cSRoopa Prabhu 502218c3a61cSRoopa Prabhu rt = container_of(dst, struct rt6_info, dst); 502318c3a61cSRoopa Prabhu if (rt->dst.error) { 502418c3a61cSRoopa Prabhu err = rt->dst.error; 502518c3a61cSRoopa Prabhu ip6_rt_put(rt); 502618c3a61cSRoopa Prabhu goto errout; 5027ab364a6fSThomas Graf } 50281da177e4SLinus Torvalds 50299d6acb3bSWANG Cong if (rt == net->ipv6.ip6_null_entry) { 50309d6acb3bSWANG Cong err = rt->dst.error; 50319d6acb3bSWANG Cong ip6_rt_put(rt); 50329d6acb3bSWANG Cong goto errout; 50339d6acb3bSWANG Cong } 50349d6acb3bSWANG Cong 50351da177e4SLinus Torvalds skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL); 503638308473SDavid S. Miller if (!skb) { 503794e187c0SAmerigo Wang ip6_rt_put(rt); 5038ab364a6fSThomas Graf err = -ENOBUFS; 5039ab364a6fSThomas Graf goto errout; 5040ab364a6fSThomas Graf } 50411da177e4SLinus Torvalds 5042d8d1f30bSChangli Gao skb_dst_set(skb, &rt->dst); 5043a68886a6SDavid Ahern 5044a68886a6SDavid Ahern rcu_read_lock(); 5045a68886a6SDavid Ahern from = rcu_dereference(rt->from); 5046a68886a6SDavid Ahern 504718c3a61cSRoopa Prabhu if (fibmatch) 5048a68886a6SDavid Ahern err = rt6_fill_node(net, skb, from, NULL, NULL, NULL, iif, 504918c3a61cSRoopa Prabhu RTM_NEWROUTE, NETLINK_CB(in_skb).portid, 505018c3a61cSRoopa Prabhu nlh->nlmsg_seq, 0); 505118c3a61cSRoopa Prabhu else 5052a68886a6SDavid Ahern err = rt6_fill_node(net, skb, from, dst, &fl6.daddr, 5053a68886a6SDavid Ahern &fl6.saddr, iif, RTM_NEWROUTE, 5054d4ead6b3SDavid Ahern NETLINK_CB(in_skb).portid, nlh->nlmsg_seq, 5055d4ead6b3SDavid Ahern 0); 5056a68886a6SDavid Ahern rcu_read_unlock(); 5057a68886a6SDavid Ahern 50581da177e4SLinus Torvalds if (err < 0) { 5059ab364a6fSThomas Graf kfree_skb(skb); 5060ab364a6fSThomas Graf goto errout; 50611da177e4SLinus Torvalds } 50621da177e4SLinus Torvalds 506315e47304SEric W. Biederman err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).portid); 5064ab364a6fSThomas Graf errout: 50651da177e4SLinus Torvalds return err; 50661da177e4SLinus Torvalds } 50671da177e4SLinus Torvalds 50688d1c802bSDavid Ahern void inet6_rt_notify(int event, struct fib6_info *rt, struct nl_info *info, 506937a1d361SRoopa Prabhu unsigned int nlm_flags) 50701da177e4SLinus Torvalds { 50711da177e4SLinus Torvalds struct sk_buff *skb; 50725578689aSDaniel Lezcano struct net *net = info->nl_net; 5073528c4cebSDenis V. Lunev u32 seq; 5074528c4cebSDenis V. Lunev int err; 50750d51aa80SJamal Hadi Salim 5076528c4cebSDenis V. Lunev err = -ENOBUFS; 507738308473SDavid S. Miller seq = info->nlh ? info->nlh->nlmsg_seq : 0; 507886872cb5SThomas Graf 507919e42e45SRoopa Prabhu skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 508038308473SDavid S. Miller if (!skb) 508121713ebcSThomas Graf goto errout; 50821da177e4SLinus Torvalds 5083d4ead6b3SDavid Ahern err = rt6_fill_node(net, skb, rt, NULL, NULL, NULL, 0, 5084f8cfe2ceSDavid Ahern event, info->portid, seq, nlm_flags); 508526932566SPatrick McHardy if (err < 0) { 508626932566SPatrick McHardy /* -EMSGSIZE implies BUG in rt6_nlmsg_size() */ 508726932566SPatrick McHardy WARN_ON(err == -EMSGSIZE); 508826932566SPatrick McHardy kfree_skb(skb); 508926932566SPatrick McHardy goto errout; 509026932566SPatrick McHardy } 509115e47304SEric W. Biederman rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 50925578689aSDaniel Lezcano info->nlh, gfp_any()); 50931ce85fe4SPablo Neira Ayuso return; 509421713ebcSThomas Graf errout: 509521713ebcSThomas Graf if (err < 0) 50965578689aSDaniel Lezcano rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err); 50971da177e4SLinus Torvalds } 50981da177e4SLinus Torvalds 50998ed67789SDaniel Lezcano static int ip6_route_dev_notify(struct notifier_block *this, 5100351638e7SJiri Pirko unsigned long event, void *ptr) 51018ed67789SDaniel Lezcano { 5102351638e7SJiri Pirko struct net_device *dev = netdev_notifier_info_to_dev(ptr); 5103c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 51048ed67789SDaniel Lezcano 5105242d3a49SWANG Cong if (!(dev->flags & IFF_LOOPBACK)) 5106242d3a49SWANG Cong return NOTIFY_OK; 5107242d3a49SWANG Cong 5108242d3a49SWANG Cong if (event == NETDEV_REGISTER) { 5109421842edSDavid Ahern net->ipv6.fib6_null_entry->fib6_nh.nh_dev = dev; 5110d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.dev = dev; 51118ed67789SDaniel Lezcano net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev); 51128ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5113d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.dev = dev; 51148ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev); 5115d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.dev = dev; 51168ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev); 51178ed67789SDaniel Lezcano #endif 511876da0704SWANG Cong } else if (event == NETDEV_UNREGISTER && 511976da0704SWANG Cong dev->reg_state != NETREG_UNREGISTERED) { 512076da0704SWANG Cong /* NETDEV_UNREGISTER could be fired for multiple times by 512176da0704SWANG Cong * netdev_wait_allrefs(). Make sure we only call this once. 512276da0704SWANG Cong */ 512312d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_null_entry->rt6i_idev); 5124242d3a49SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 512512d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_prohibit_entry->rt6i_idev); 512612d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_blk_hole_entry->rt6i_idev); 5127242d3a49SWANG Cong #endif 51288ed67789SDaniel Lezcano } 51298ed67789SDaniel Lezcano 51308ed67789SDaniel Lezcano return NOTIFY_OK; 51318ed67789SDaniel Lezcano } 51328ed67789SDaniel Lezcano 51331da177e4SLinus Torvalds /* 51341da177e4SLinus Torvalds * /proc 51351da177e4SLinus Torvalds */ 51361da177e4SLinus Torvalds 51371da177e4SLinus Torvalds #ifdef CONFIG_PROC_FS 51381da177e4SLinus Torvalds static int rt6_stats_seq_show(struct seq_file *seq, void *v) 51391da177e4SLinus Torvalds { 514069ddb805SDaniel Lezcano struct net *net = (struct net *)seq->private; 51411da177e4SLinus Torvalds seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n", 514269ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_nodes, 514369ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_route_nodes, 514481eb8447SWei Wang atomic_read(&net->ipv6.rt6_stats->fib_rt_alloc), 514569ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_entries, 514669ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_cache, 5147fc66f95cSEric Dumazet dst_entries_get_slow(&net->ipv6.ip6_dst_ops), 514869ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_discarded_routes); 51491da177e4SLinus Torvalds 51501da177e4SLinus Torvalds return 0; 51511da177e4SLinus Torvalds } 51521da177e4SLinus Torvalds #endif /* CONFIG_PROC_FS */ 51531da177e4SLinus Torvalds 51541da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 51551da177e4SLinus Torvalds 51561da177e4SLinus Torvalds static 5157fe2c6338SJoe Perches int ipv6_sysctl_rtcache_flush(struct ctl_table *ctl, int write, 51581da177e4SLinus Torvalds void __user *buffer, size_t *lenp, loff_t *ppos) 51591da177e4SLinus Torvalds { 5160c486da34SLucian Adrian Grijincu struct net *net; 5161c486da34SLucian Adrian Grijincu int delay; 5162f0fb9b28SAditya Pakki int ret; 5163c486da34SLucian Adrian Grijincu if (!write) 5164c486da34SLucian Adrian Grijincu return -EINVAL; 5165c486da34SLucian Adrian Grijincu 5166c486da34SLucian Adrian Grijincu net = (struct net *)ctl->extra1; 5167c486da34SLucian Adrian Grijincu delay = net->ipv6.sysctl.flush_delay; 5168f0fb9b28SAditya Pakki ret = proc_dointvec(ctl, write, buffer, lenp, ppos); 5169f0fb9b28SAditya Pakki if (ret) 5170f0fb9b28SAditya Pakki return ret; 5171f0fb9b28SAditya Pakki 51722ac3ac8fSMichal Kubeček fib6_run_gc(delay <= 0 ? 0 : (unsigned long)delay, net, delay > 0); 51731da177e4SLinus Torvalds return 0; 51741da177e4SLinus Torvalds } 51751da177e4SLinus Torvalds 51767c6bb7d2SDavid Ahern static int zero; 51777c6bb7d2SDavid Ahern static int one = 1; 51787c6bb7d2SDavid Ahern 5179ed792e28SDavid Ahern static struct ctl_table ipv6_route_table_template[] = { 51801da177e4SLinus Torvalds { 51811da177e4SLinus Torvalds .procname = "flush", 51824990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.flush_delay, 51831da177e4SLinus Torvalds .maxlen = sizeof(int), 518489c8b3a1SDave Jones .mode = 0200, 51856d9f239aSAlexey Dobriyan .proc_handler = ipv6_sysctl_rtcache_flush 51861da177e4SLinus Torvalds }, 51871da177e4SLinus Torvalds { 51881da177e4SLinus Torvalds .procname = "gc_thresh", 51899a7ec3a9SDaniel Lezcano .data = &ip6_dst_ops_template.gc_thresh, 51901da177e4SLinus Torvalds .maxlen = sizeof(int), 51911da177e4SLinus Torvalds .mode = 0644, 51926d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 51931da177e4SLinus Torvalds }, 51941da177e4SLinus Torvalds { 51951da177e4SLinus Torvalds .procname = "max_size", 51964990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_max_size, 51971da177e4SLinus Torvalds .maxlen = sizeof(int), 51981da177e4SLinus Torvalds .mode = 0644, 51996d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 52001da177e4SLinus Torvalds }, 52011da177e4SLinus Torvalds { 52021da177e4SLinus Torvalds .procname = "gc_min_interval", 52034990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 52041da177e4SLinus Torvalds .maxlen = sizeof(int), 52051da177e4SLinus Torvalds .mode = 0644, 52066d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52071da177e4SLinus Torvalds }, 52081da177e4SLinus Torvalds { 52091da177e4SLinus Torvalds .procname = "gc_timeout", 52104990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_timeout, 52111da177e4SLinus Torvalds .maxlen = sizeof(int), 52121da177e4SLinus Torvalds .mode = 0644, 52136d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52141da177e4SLinus Torvalds }, 52151da177e4SLinus Torvalds { 52161da177e4SLinus Torvalds .procname = "gc_interval", 52174990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_interval, 52181da177e4SLinus Torvalds .maxlen = sizeof(int), 52191da177e4SLinus Torvalds .mode = 0644, 52206d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52211da177e4SLinus Torvalds }, 52221da177e4SLinus Torvalds { 52231da177e4SLinus Torvalds .procname = "gc_elasticity", 52244990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_elasticity, 52251da177e4SLinus Torvalds .maxlen = sizeof(int), 52261da177e4SLinus Torvalds .mode = 0644, 5227f3d3f616SMin Zhang .proc_handler = proc_dointvec, 52281da177e4SLinus Torvalds }, 52291da177e4SLinus Torvalds { 52301da177e4SLinus Torvalds .procname = "mtu_expires", 52314990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_mtu_expires, 52321da177e4SLinus Torvalds .maxlen = sizeof(int), 52331da177e4SLinus Torvalds .mode = 0644, 52346d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52351da177e4SLinus Torvalds }, 52361da177e4SLinus Torvalds { 52371da177e4SLinus Torvalds .procname = "min_adv_mss", 52384990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_min_advmss, 52391da177e4SLinus Torvalds .maxlen = sizeof(int), 52401da177e4SLinus Torvalds .mode = 0644, 5241f3d3f616SMin Zhang .proc_handler = proc_dointvec, 52421da177e4SLinus Torvalds }, 52431da177e4SLinus Torvalds { 52441da177e4SLinus Torvalds .procname = "gc_min_interval_ms", 52454990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 52461da177e4SLinus Torvalds .maxlen = sizeof(int), 52471da177e4SLinus Torvalds .mode = 0644, 52486d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_ms_jiffies, 52491da177e4SLinus Torvalds }, 52507c6bb7d2SDavid Ahern { 52517c6bb7d2SDavid Ahern .procname = "skip_notify_on_dev_down", 52527c6bb7d2SDavid Ahern .data = &init_net.ipv6.sysctl.skip_notify_on_dev_down, 52537c6bb7d2SDavid Ahern .maxlen = sizeof(int), 52547c6bb7d2SDavid Ahern .mode = 0644, 52557c6bb7d2SDavid Ahern .proc_handler = proc_dointvec, 52567c6bb7d2SDavid Ahern .extra1 = &zero, 52577c6bb7d2SDavid Ahern .extra2 = &one, 52587c6bb7d2SDavid Ahern }, 5259f8572d8fSEric W. Biederman { } 52601da177e4SLinus Torvalds }; 52611da177e4SLinus Torvalds 52622c8c1e72SAlexey Dobriyan struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net) 5263760f2d01SDaniel Lezcano { 5264760f2d01SDaniel Lezcano struct ctl_table *table; 5265760f2d01SDaniel Lezcano 5266760f2d01SDaniel Lezcano table = kmemdup(ipv6_route_table_template, 5267760f2d01SDaniel Lezcano sizeof(ipv6_route_table_template), 5268760f2d01SDaniel Lezcano GFP_KERNEL); 52695ee09105SYOSHIFUJI Hideaki 52705ee09105SYOSHIFUJI Hideaki if (table) { 52715ee09105SYOSHIFUJI Hideaki table[0].data = &net->ipv6.sysctl.flush_delay; 5272c486da34SLucian Adrian Grijincu table[0].extra1 = net; 527386393e52SAlexey Dobriyan table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh; 52745ee09105SYOSHIFUJI Hideaki table[2].data = &net->ipv6.sysctl.ip6_rt_max_size; 52755ee09105SYOSHIFUJI Hideaki table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 52765ee09105SYOSHIFUJI Hideaki table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout; 52775ee09105SYOSHIFUJI Hideaki table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval; 52785ee09105SYOSHIFUJI Hideaki table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity; 52795ee09105SYOSHIFUJI Hideaki table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires; 52805ee09105SYOSHIFUJI Hideaki table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss; 52819c69fabeSAlexey Dobriyan table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 52827c6bb7d2SDavid Ahern table[10].data = &net->ipv6.sysctl.skip_notify_on_dev_down; 5283464dc801SEric W. Biederman 5284464dc801SEric W. Biederman /* Don't export sysctls to unprivileged users */ 5285464dc801SEric W. Biederman if (net->user_ns != &init_user_ns) 5286464dc801SEric W. Biederman table[0].procname = NULL; 52875ee09105SYOSHIFUJI Hideaki } 52885ee09105SYOSHIFUJI Hideaki 5289760f2d01SDaniel Lezcano return table; 5290760f2d01SDaniel Lezcano } 52911da177e4SLinus Torvalds #endif 52921da177e4SLinus Torvalds 52932c8c1e72SAlexey Dobriyan static int __net_init ip6_route_net_init(struct net *net) 5294cdb18761SDaniel Lezcano { 5295633d424bSPavel Emelyanov int ret = -ENOMEM; 52968ed67789SDaniel Lezcano 529786393e52SAlexey Dobriyan memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template, 529886393e52SAlexey Dobriyan sizeof(net->ipv6.ip6_dst_ops)); 5299f2fc6a54SBenjamin Thery 5300fc66f95cSEric Dumazet if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0) 5301fc66f95cSEric Dumazet goto out_ip6_dst_ops; 5302fc66f95cSEric Dumazet 5303421842edSDavid Ahern net->ipv6.fib6_null_entry = kmemdup(&fib6_null_entry_template, 5304421842edSDavid Ahern sizeof(*net->ipv6.fib6_null_entry), 5305421842edSDavid Ahern GFP_KERNEL); 5306421842edSDavid Ahern if (!net->ipv6.fib6_null_entry) 5307421842edSDavid Ahern goto out_ip6_dst_entries; 5308421842edSDavid Ahern 53098ed67789SDaniel Lezcano net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template, 53108ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_null_entry), 53118ed67789SDaniel Lezcano GFP_KERNEL); 53128ed67789SDaniel Lezcano if (!net->ipv6.ip6_null_entry) 5313421842edSDavid Ahern goto out_fib6_null_entry; 5314d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops; 531562fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_null_entry->dst, 531662fa8a84SDavid S. Miller ip6_template_metrics, true); 53178ed67789SDaniel Lezcano 53188ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5319feca7d8cSVincent Bernat net->ipv6.fib6_has_custom_rules = false; 53208ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template, 53218ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_prohibit_entry), 53228ed67789SDaniel Lezcano GFP_KERNEL); 532368fffc67SPeter Zijlstra if (!net->ipv6.ip6_prohibit_entry) 532468fffc67SPeter Zijlstra goto out_ip6_null_entry; 5325d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops; 532662fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_prohibit_entry->dst, 532762fa8a84SDavid S. Miller ip6_template_metrics, true); 53288ed67789SDaniel Lezcano 53298ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template, 53308ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_blk_hole_entry), 53318ed67789SDaniel Lezcano GFP_KERNEL); 533268fffc67SPeter Zijlstra if (!net->ipv6.ip6_blk_hole_entry) 533368fffc67SPeter Zijlstra goto out_ip6_prohibit_entry; 5334d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops; 533562fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_blk_hole_entry->dst, 533662fa8a84SDavid S. Miller ip6_template_metrics, true); 53378ed67789SDaniel Lezcano #endif 53388ed67789SDaniel Lezcano 5339b339a47cSPeter Zijlstra net->ipv6.sysctl.flush_delay = 0; 5340b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_max_size = 4096; 5341b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2; 5342b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ; 5343b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ; 5344b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_elasticity = 9; 5345b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ; 5346b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40; 53477c6bb7d2SDavid Ahern net->ipv6.sysctl.skip_notify_on_dev_down = 0; 5348b339a47cSPeter Zijlstra 53496891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire = 30*HZ; 53506891a346SBenjamin Thery 53518ed67789SDaniel Lezcano ret = 0; 53528ed67789SDaniel Lezcano out: 53538ed67789SDaniel Lezcano return ret; 5354f2fc6a54SBenjamin Thery 535568fffc67SPeter Zijlstra #ifdef CONFIG_IPV6_MULTIPLE_TABLES 535668fffc67SPeter Zijlstra out_ip6_prohibit_entry: 535768fffc67SPeter Zijlstra kfree(net->ipv6.ip6_prohibit_entry); 535868fffc67SPeter Zijlstra out_ip6_null_entry: 535968fffc67SPeter Zijlstra kfree(net->ipv6.ip6_null_entry); 536068fffc67SPeter Zijlstra #endif 5361421842edSDavid Ahern out_fib6_null_entry: 5362421842edSDavid Ahern kfree(net->ipv6.fib6_null_entry); 5363fc66f95cSEric Dumazet out_ip6_dst_entries: 5364fc66f95cSEric Dumazet dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5365f2fc6a54SBenjamin Thery out_ip6_dst_ops: 5366f2fc6a54SBenjamin Thery goto out; 5367cdb18761SDaniel Lezcano } 5368cdb18761SDaniel Lezcano 53692c8c1e72SAlexey Dobriyan static void __net_exit ip6_route_net_exit(struct net *net) 5370cdb18761SDaniel Lezcano { 5371421842edSDavid Ahern kfree(net->ipv6.fib6_null_entry); 53728ed67789SDaniel Lezcano kfree(net->ipv6.ip6_null_entry); 53738ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 53748ed67789SDaniel Lezcano kfree(net->ipv6.ip6_prohibit_entry); 53758ed67789SDaniel Lezcano kfree(net->ipv6.ip6_blk_hole_entry); 53768ed67789SDaniel Lezcano #endif 537741bb78b4SXiaotian Feng dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5378cdb18761SDaniel Lezcano } 5379cdb18761SDaniel Lezcano 5380d189634eSThomas Graf static int __net_init ip6_route_net_init_late(struct net *net) 5381d189634eSThomas Graf { 5382d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5383c3506372SChristoph Hellwig proc_create_net("ipv6_route", 0, net->proc_net, &ipv6_route_seq_ops, 5384c3506372SChristoph Hellwig sizeof(struct ipv6_route_iter)); 53853617d949SChristoph Hellwig proc_create_net_single("rt6_stats", 0444, net->proc_net, 53863617d949SChristoph Hellwig rt6_stats_seq_show, NULL); 5387d189634eSThomas Graf #endif 5388d189634eSThomas Graf return 0; 5389d189634eSThomas Graf } 5390d189634eSThomas Graf 5391d189634eSThomas Graf static void __net_exit ip6_route_net_exit_late(struct net *net) 5392d189634eSThomas Graf { 5393d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5394ece31ffdSGao feng remove_proc_entry("ipv6_route", net->proc_net); 5395ece31ffdSGao feng remove_proc_entry("rt6_stats", net->proc_net); 5396d189634eSThomas Graf #endif 5397d189634eSThomas Graf } 5398d189634eSThomas Graf 5399cdb18761SDaniel Lezcano static struct pernet_operations ip6_route_net_ops = { 5400cdb18761SDaniel Lezcano .init = ip6_route_net_init, 5401cdb18761SDaniel Lezcano .exit = ip6_route_net_exit, 5402cdb18761SDaniel Lezcano }; 5403cdb18761SDaniel Lezcano 5404c3426b47SDavid S. Miller static int __net_init ipv6_inetpeer_init(struct net *net) 5405c3426b47SDavid S. Miller { 5406c3426b47SDavid S. Miller struct inet_peer_base *bp = kmalloc(sizeof(*bp), GFP_KERNEL); 5407c3426b47SDavid S. Miller 5408c3426b47SDavid S. Miller if (!bp) 5409c3426b47SDavid S. Miller return -ENOMEM; 5410c3426b47SDavid S. Miller inet_peer_base_init(bp); 5411c3426b47SDavid S. Miller net->ipv6.peers = bp; 5412c3426b47SDavid S. Miller return 0; 5413c3426b47SDavid S. Miller } 5414c3426b47SDavid S. Miller 5415c3426b47SDavid S. Miller static void __net_exit ipv6_inetpeer_exit(struct net *net) 5416c3426b47SDavid S. Miller { 5417c3426b47SDavid S. Miller struct inet_peer_base *bp = net->ipv6.peers; 5418c3426b47SDavid S. Miller 5419c3426b47SDavid S. Miller net->ipv6.peers = NULL; 542056a6b248SDavid S. Miller inetpeer_invalidate_tree(bp); 5421c3426b47SDavid S. Miller kfree(bp); 5422c3426b47SDavid S. Miller } 5423c3426b47SDavid S. Miller 54242b823f72SDavid S. Miller static struct pernet_operations ipv6_inetpeer_ops = { 5425c3426b47SDavid S. Miller .init = ipv6_inetpeer_init, 5426c3426b47SDavid S. Miller .exit = ipv6_inetpeer_exit, 5427c3426b47SDavid S. Miller }; 5428c3426b47SDavid S. Miller 5429d189634eSThomas Graf static struct pernet_operations ip6_route_net_late_ops = { 5430d189634eSThomas Graf .init = ip6_route_net_init_late, 5431d189634eSThomas Graf .exit = ip6_route_net_exit_late, 5432d189634eSThomas Graf }; 5433d189634eSThomas Graf 54348ed67789SDaniel Lezcano static struct notifier_block ip6_route_dev_notifier = { 54358ed67789SDaniel Lezcano .notifier_call = ip6_route_dev_notify, 5436242d3a49SWANG Cong .priority = ADDRCONF_NOTIFY_PRIORITY - 10, 54378ed67789SDaniel Lezcano }; 54388ed67789SDaniel Lezcano 54392f460933SWANG Cong void __init ip6_route_init_special_entries(void) 54402f460933SWANG Cong { 54412f460933SWANG Cong /* Registering of the loopback is done before this portion of code, 54422f460933SWANG Cong * the loopback reference in rt6_info will not be taken, do it 54432f460933SWANG Cong * manually for init_net */ 5444421842edSDavid Ahern init_net.ipv6.fib6_null_entry->fib6_nh.nh_dev = init_net.loopback_dev; 54452f460933SWANG Cong init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev; 54462f460933SWANG Cong init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54472f460933SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 54482f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev; 54492f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54502f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev; 54512f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54522f460933SWANG Cong #endif 54532f460933SWANG Cong } 54542f460933SWANG Cong 5455433d49c3SDaniel Lezcano int __init ip6_route_init(void) 54561da177e4SLinus Torvalds { 5457433d49c3SDaniel Lezcano int ret; 54588d0b94afSMartin KaFai Lau int cpu; 5459433d49c3SDaniel Lezcano 54609a7ec3a9SDaniel Lezcano ret = -ENOMEM; 54619a7ec3a9SDaniel Lezcano ip6_dst_ops_template.kmem_cachep = 54629a7ec3a9SDaniel Lezcano kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0, 54639a7ec3a9SDaniel Lezcano SLAB_HWCACHE_ALIGN, NULL); 54649a7ec3a9SDaniel Lezcano if (!ip6_dst_ops_template.kmem_cachep) 5465c19a28e1SFernando Carrijo goto out; 546614e50e57SDavid S. Miller 5467fc66f95cSEric Dumazet ret = dst_entries_init(&ip6_dst_blackhole_ops); 54688ed67789SDaniel Lezcano if (ret) 5469bdb3289fSDaniel Lezcano goto out_kmem_cache; 5470bdb3289fSDaniel Lezcano 5471c3426b47SDavid S. Miller ret = register_pernet_subsys(&ipv6_inetpeer_ops); 5472c3426b47SDavid S. Miller if (ret) 5473e8803b6cSDavid S. Miller goto out_dst_entries; 54742a0c451aSThomas Graf 54757e52b33bSDavid S. Miller ret = register_pernet_subsys(&ip6_route_net_ops); 54767e52b33bSDavid S. Miller if (ret) 54777e52b33bSDavid S. Miller goto out_register_inetpeer; 5478c3426b47SDavid S. Miller 54795dc121e9SArnaud Ebalard ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep; 54805dc121e9SArnaud Ebalard 5481e8803b6cSDavid S. Miller ret = fib6_init(); 5482433d49c3SDaniel Lezcano if (ret) 54838ed67789SDaniel Lezcano goto out_register_subsys; 5484433d49c3SDaniel Lezcano 5485433d49c3SDaniel Lezcano ret = xfrm6_init(); 5486433d49c3SDaniel Lezcano if (ret) 5487e8803b6cSDavid S. Miller goto out_fib6_init; 5488c35b7e72SDaniel Lezcano 5489433d49c3SDaniel Lezcano ret = fib6_rules_init(); 5490433d49c3SDaniel Lezcano if (ret) 5491433d49c3SDaniel Lezcano goto xfrm6_init; 54927e5449c2SDaniel Lezcano 5493d189634eSThomas Graf ret = register_pernet_subsys(&ip6_route_net_late_ops); 5494d189634eSThomas Graf if (ret) 5495d189634eSThomas Graf goto fib6_rules_init; 5496d189634eSThomas Graf 549716feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_NEWROUTE, 549816feebcfSFlorian Westphal inet6_rtm_newroute, NULL, 0); 549916feebcfSFlorian Westphal if (ret < 0) 550016feebcfSFlorian Westphal goto out_register_late_subsys; 550116feebcfSFlorian Westphal 550216feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_DELROUTE, 550316feebcfSFlorian Westphal inet6_rtm_delroute, NULL, 0); 550416feebcfSFlorian Westphal if (ret < 0) 550516feebcfSFlorian Westphal goto out_register_late_subsys; 550616feebcfSFlorian Westphal 550716feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETROUTE, 550816feebcfSFlorian Westphal inet6_rtm_getroute, NULL, 550916feebcfSFlorian Westphal RTNL_FLAG_DOIT_UNLOCKED); 551016feebcfSFlorian Westphal if (ret < 0) 5511d189634eSThomas Graf goto out_register_late_subsys; 5512433d49c3SDaniel Lezcano 55138ed67789SDaniel Lezcano ret = register_netdevice_notifier(&ip6_route_dev_notifier); 5514cdb18761SDaniel Lezcano if (ret) 5515d189634eSThomas Graf goto out_register_late_subsys; 55168ed67789SDaniel Lezcano 55178d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 55188d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 55198d0b94afSMartin KaFai Lau 55208d0b94afSMartin KaFai Lau INIT_LIST_HEAD(&ul->head); 55218d0b94afSMartin KaFai Lau spin_lock_init(&ul->lock); 55228d0b94afSMartin KaFai Lau } 55238d0b94afSMartin KaFai Lau 5524433d49c3SDaniel Lezcano out: 5525433d49c3SDaniel Lezcano return ret; 5526433d49c3SDaniel Lezcano 5527d189634eSThomas Graf out_register_late_subsys: 552816feebcfSFlorian Westphal rtnl_unregister_all(PF_INET6); 5529d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5530433d49c3SDaniel Lezcano fib6_rules_init: 5531433d49c3SDaniel Lezcano fib6_rules_cleanup(); 5532433d49c3SDaniel Lezcano xfrm6_init: 5533433d49c3SDaniel Lezcano xfrm6_fini(); 55342a0c451aSThomas Graf out_fib6_init: 55352a0c451aSThomas Graf fib6_gc_cleanup(); 55368ed67789SDaniel Lezcano out_register_subsys: 55378ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 55387e52b33bSDavid S. Miller out_register_inetpeer: 55397e52b33bSDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 5540fc66f95cSEric Dumazet out_dst_entries: 5541fc66f95cSEric Dumazet dst_entries_destroy(&ip6_dst_blackhole_ops); 5542433d49c3SDaniel Lezcano out_kmem_cache: 5543f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 5544433d49c3SDaniel Lezcano goto out; 55451da177e4SLinus Torvalds } 55461da177e4SLinus Torvalds 55471da177e4SLinus Torvalds void ip6_route_cleanup(void) 55481da177e4SLinus Torvalds { 55498ed67789SDaniel Lezcano unregister_netdevice_notifier(&ip6_route_dev_notifier); 5550d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5551101367c2SThomas Graf fib6_rules_cleanup(); 55521da177e4SLinus Torvalds xfrm6_fini(); 55531da177e4SLinus Torvalds fib6_gc_cleanup(); 5554c3426b47SDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 55558ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 555641bb78b4SXiaotian Feng dst_entries_destroy(&ip6_dst_blackhole_ops); 5557f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 55581da177e4SLinus Torvalds } 5559