11da177e4SLinus Torvalds /* 21da177e4SLinus Torvalds * Linux INET6 implementation 31da177e4SLinus Torvalds * FIB front-end. 41da177e4SLinus Torvalds * 51da177e4SLinus Torvalds * Authors: 61da177e4SLinus Torvalds * Pedro Roque <roque@di.fc.ul.pt> 71da177e4SLinus Torvalds * 81da177e4SLinus Torvalds * This program is free software; you can redistribute it and/or 91da177e4SLinus Torvalds * modify it under the terms of the GNU General Public License 101da177e4SLinus Torvalds * as published by the Free Software Foundation; either version 111da177e4SLinus Torvalds * 2 of the License, or (at your option) any later version. 121da177e4SLinus Torvalds */ 131da177e4SLinus Torvalds 141da177e4SLinus Torvalds /* Changes: 151da177e4SLinus Torvalds * 161da177e4SLinus Torvalds * YOSHIFUJI Hideaki @USAGI 171da177e4SLinus Torvalds * reworked default router selection. 181da177e4SLinus Torvalds * - respect outgoing interface 191da177e4SLinus Torvalds * - select from (probably) reachable routers (i.e. 201da177e4SLinus Torvalds * routers in REACHABLE, STALE, DELAY or PROBE states). 211da177e4SLinus Torvalds * - always select the same router if it is (probably) 221da177e4SLinus Torvalds * reachable. otherwise, round-robin the list. 23c0bece9fSYOSHIFUJI Hideaki * Ville Nuorvala 24c0bece9fSYOSHIFUJI Hideaki * Fixed routing subtrees. 251da177e4SLinus Torvalds */ 261da177e4SLinus Torvalds 27f3213831SJoe Perches #define pr_fmt(fmt) "IPv6: " fmt 28f3213831SJoe Perches 294fc268d2SRandy Dunlap #include <linux/capability.h> 301da177e4SLinus Torvalds #include <linux/errno.h> 31bc3b2d7fSPaul Gortmaker #include <linux/export.h> 321da177e4SLinus Torvalds #include <linux/types.h> 331da177e4SLinus Torvalds #include <linux/times.h> 341da177e4SLinus Torvalds #include <linux/socket.h> 351da177e4SLinus Torvalds #include <linux/sockios.h> 361da177e4SLinus Torvalds #include <linux/net.h> 371da177e4SLinus Torvalds #include <linux/route.h> 381da177e4SLinus Torvalds #include <linux/netdevice.h> 391da177e4SLinus Torvalds #include <linux/in6.h> 407bc570c8SYOSHIFUJI Hideaki #include <linux/mroute6.h> 411da177e4SLinus Torvalds #include <linux/init.h> 421da177e4SLinus Torvalds #include <linux/if_arp.h> 431da177e4SLinus Torvalds #include <linux/proc_fs.h> 441da177e4SLinus Torvalds #include <linux/seq_file.h> 455b7c931dSDaniel Lezcano #include <linux/nsproxy.h> 465a0e3ad6STejun Heo #include <linux/slab.h> 4735732d01SWei Wang #include <linux/jhash.h> 48457c4cbcSEric W. Biederman #include <net/net_namespace.h> 491da177e4SLinus Torvalds #include <net/snmp.h> 501da177e4SLinus Torvalds #include <net/ipv6.h> 511da177e4SLinus Torvalds #include <net/ip6_fib.h> 521da177e4SLinus Torvalds #include <net/ip6_route.h> 531da177e4SLinus Torvalds #include <net/ndisc.h> 541da177e4SLinus Torvalds #include <net/addrconf.h> 551da177e4SLinus Torvalds #include <net/tcp.h> 561da177e4SLinus Torvalds #include <linux/rtnetlink.h> 571da177e4SLinus Torvalds #include <net/dst.h> 58904af04dSJiri Benc #include <net/dst_metadata.h> 591da177e4SLinus Torvalds #include <net/xfrm.h> 608d71740cSTom Tucker #include <net/netevent.h> 6121713ebcSThomas Graf #include <net/netlink.h> 6251ebd318SNicolas Dichtel #include <net/nexthop.h> 6319e42e45SRoopa Prabhu #include <net/lwtunnel.h> 64904af04dSJiri Benc #include <net/ip_tunnels.h> 65ca254490SDavid Ahern #include <net/l3mdev.h> 66eacb9384SRoopa Prabhu #include <net/ip.h> 677c0f6ba6SLinus Torvalds #include <linux/uaccess.h> 681da177e4SLinus Torvalds 691da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 701da177e4SLinus Torvalds #include <linux/sysctl.h> 711da177e4SLinus Torvalds #endif 721da177e4SLinus Torvalds 7330d444d3SDavid Ahern static int ip6_rt_type_to_error(u8 fib6_type); 7430d444d3SDavid Ahern 7530d444d3SDavid Ahern #define CREATE_TRACE_POINTS 7630d444d3SDavid Ahern #include <trace/events/fib6.h> 7730d444d3SDavid Ahern EXPORT_TRACEPOINT_SYMBOL_GPL(fib6_table_lookup); 7830d444d3SDavid Ahern #undef CREATE_TRACE_POINTS 7930d444d3SDavid Ahern 80afc154e9SHannes Frederic Sowa enum rt6_nud_state { 817e980569SJiri Benc RT6_NUD_FAIL_HARD = -3, 827e980569SJiri Benc RT6_NUD_FAIL_PROBE = -2, 837e980569SJiri Benc RT6_NUD_FAIL_DO_RR = -1, 84afc154e9SHannes Frederic Sowa RT6_NUD_SUCCEED = 1 85afc154e9SHannes Frederic Sowa }; 86afc154e9SHannes Frederic Sowa 871da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie); 880dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst); 89ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst); 901da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *); 911da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *); 921da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *, 931da177e4SLinus Torvalds struct net_device *dev, int how); 94569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops); 951da177e4SLinus Torvalds 961da177e4SLinus Torvalds static int ip6_pkt_discard(struct sk_buff *skb); 97ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb); 987150aedeSKamala R static int ip6_pkt_prohibit(struct sk_buff *skb); 99ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb); 1001da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb); 1016700c270SDavid S. Miller static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 1026700c270SDavid S. Miller struct sk_buff *skb, u32 mtu); 1036700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, 1046700c270SDavid S. Miller struct sk_buff *skb); 105702cea56SDavid Ahern static int rt6_score_route(const struct fib6_nh *nh, u32 fib6_flags, int oif, 106702cea56SDavid Ahern int strict); 1078d1c802bSDavid Ahern static size_t rt6_nlmsg_size(struct fib6_info *rt); 108d4ead6b3SDavid Ahern static int rt6_fill_node(struct net *net, struct sk_buff *skb, 1098d1c802bSDavid Ahern struct fib6_info *rt, struct dst_entry *dst, 110d4ead6b3SDavid Ahern struct in6_addr *dest, struct in6_addr *src, 11116a16cd3SDavid Ahern int iif, int type, u32 portid, u32 seq, 11216a16cd3SDavid Ahern unsigned int flags); 1137e4b5128SDavid Ahern static struct rt6_info *rt6_find_cached_rt(const struct fib6_result *res, 11435732d01SWei Wang struct in6_addr *daddr, 11535732d01SWei Wang struct in6_addr *saddr); 1161da177e4SLinus Torvalds 11770ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 1188d1c802bSDavid Ahern static struct fib6_info *rt6_add_route_info(struct net *net, 119b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 120830218c1SDavid Ahern const struct in6_addr *gwaddr, 121830218c1SDavid Ahern struct net_device *dev, 12295c96174SEric Dumazet unsigned int pref); 1238d1c802bSDavid Ahern static struct fib6_info *rt6_get_route_info(struct net *net, 124b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 125830218c1SDavid Ahern const struct in6_addr *gwaddr, 126830218c1SDavid Ahern struct net_device *dev); 12770ceb4f5SYOSHIFUJI Hideaki #endif 12870ceb4f5SYOSHIFUJI Hideaki 1298d0b94afSMartin KaFai Lau struct uncached_list { 1308d0b94afSMartin KaFai Lau spinlock_t lock; 1318d0b94afSMartin KaFai Lau struct list_head head; 1328d0b94afSMartin KaFai Lau }; 1338d0b94afSMartin KaFai Lau 1348d0b94afSMartin KaFai Lau static DEFINE_PER_CPU_ALIGNED(struct uncached_list, rt6_uncached_list); 1358d0b94afSMartin KaFai Lau 136510c321bSXin Long void rt6_uncached_list_add(struct rt6_info *rt) 1378d0b94afSMartin KaFai Lau { 1388d0b94afSMartin KaFai Lau struct uncached_list *ul = raw_cpu_ptr(&rt6_uncached_list); 1398d0b94afSMartin KaFai Lau 1408d0b94afSMartin KaFai Lau rt->rt6i_uncached_list = ul; 1418d0b94afSMartin KaFai Lau 1428d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1438d0b94afSMartin KaFai Lau list_add_tail(&rt->rt6i_uncached, &ul->head); 1448d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1458d0b94afSMartin KaFai Lau } 1468d0b94afSMartin KaFai Lau 147510c321bSXin Long void rt6_uncached_list_del(struct rt6_info *rt) 1488d0b94afSMartin KaFai Lau { 1498d0b94afSMartin KaFai Lau if (!list_empty(&rt->rt6i_uncached)) { 1508d0b94afSMartin KaFai Lau struct uncached_list *ul = rt->rt6i_uncached_list; 15181eb8447SWei Wang struct net *net = dev_net(rt->dst.dev); 1528d0b94afSMartin KaFai Lau 1538d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1548d0b94afSMartin KaFai Lau list_del(&rt->rt6i_uncached); 15581eb8447SWei Wang atomic_dec(&net->ipv6.rt6_stats->fib_rt_uncache); 1568d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1578d0b94afSMartin KaFai Lau } 1588d0b94afSMartin KaFai Lau } 1598d0b94afSMartin KaFai Lau 1608d0b94afSMartin KaFai Lau static void rt6_uncached_list_flush_dev(struct net *net, struct net_device *dev) 1618d0b94afSMartin KaFai Lau { 1628d0b94afSMartin KaFai Lau struct net_device *loopback_dev = net->loopback_dev; 1638d0b94afSMartin KaFai Lau int cpu; 1648d0b94afSMartin KaFai Lau 165e332bc67SEric W. Biederman if (dev == loopback_dev) 166e332bc67SEric W. Biederman return; 167e332bc67SEric W. Biederman 1688d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 1698d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 1708d0b94afSMartin KaFai Lau struct rt6_info *rt; 1718d0b94afSMartin KaFai Lau 1728d0b94afSMartin KaFai Lau spin_lock_bh(&ul->lock); 1738d0b94afSMartin KaFai Lau list_for_each_entry(rt, &ul->head, rt6i_uncached) { 1748d0b94afSMartin KaFai Lau struct inet6_dev *rt_idev = rt->rt6i_idev; 1758d0b94afSMartin KaFai Lau struct net_device *rt_dev = rt->dst.dev; 1768d0b94afSMartin KaFai Lau 177e332bc67SEric W. Biederman if (rt_idev->dev == dev) { 1788d0b94afSMartin KaFai Lau rt->rt6i_idev = in6_dev_get(loopback_dev); 1798d0b94afSMartin KaFai Lau in6_dev_put(rt_idev); 1808d0b94afSMartin KaFai Lau } 1818d0b94afSMartin KaFai Lau 182e332bc67SEric W. Biederman if (rt_dev == dev) { 1838d0b94afSMartin KaFai Lau rt->dst.dev = loopback_dev; 1848d0b94afSMartin KaFai Lau dev_hold(rt->dst.dev); 1858d0b94afSMartin KaFai Lau dev_put(rt_dev); 1868d0b94afSMartin KaFai Lau } 1878d0b94afSMartin KaFai Lau } 1888d0b94afSMartin KaFai Lau spin_unlock_bh(&ul->lock); 1898d0b94afSMartin KaFai Lau } 1908d0b94afSMartin KaFai Lau } 1918d0b94afSMartin KaFai Lau 192f8a1b43bSDavid Ahern static inline const void *choose_neigh_daddr(const struct in6_addr *p, 193f894cbf8SDavid S. Miller struct sk_buff *skb, 194f894cbf8SDavid S. Miller const void *daddr) 19539232973SDavid S. Miller { 196a7563f34SDavid S. Miller if (!ipv6_addr_any(p)) 19739232973SDavid S. Miller return (const void *) p; 198f894cbf8SDavid S. Miller else if (skb) 199f894cbf8SDavid S. Miller return &ipv6_hdr(skb)->daddr; 20039232973SDavid S. Miller return daddr; 20139232973SDavid S. Miller } 20239232973SDavid S. Miller 203f8a1b43bSDavid Ahern struct neighbour *ip6_neigh_lookup(const struct in6_addr *gw, 204f8a1b43bSDavid Ahern struct net_device *dev, 205f894cbf8SDavid S. Miller struct sk_buff *skb, 206f894cbf8SDavid S. Miller const void *daddr) 207d3aaeb38SDavid S. Miller { 20839232973SDavid S. Miller struct neighbour *n; 20939232973SDavid S. Miller 210f8a1b43bSDavid Ahern daddr = choose_neigh_daddr(gw, skb, daddr); 211f8a1b43bSDavid Ahern n = __ipv6_neigh_lookup(dev, daddr); 212f83c7790SDavid S. Miller if (n) 213f83c7790SDavid S. Miller return n; 2147adf3246SStefano Brivio 2157adf3246SStefano Brivio n = neigh_create(&nd_tbl, daddr, dev); 2167adf3246SStefano Brivio return IS_ERR(n) ? NULL : n; 217f8a1b43bSDavid Ahern } 218f8a1b43bSDavid Ahern 219f8a1b43bSDavid Ahern static struct neighbour *ip6_dst_neigh_lookup(const struct dst_entry *dst, 220f8a1b43bSDavid Ahern struct sk_buff *skb, 221f8a1b43bSDavid Ahern const void *daddr) 222f8a1b43bSDavid Ahern { 223f8a1b43bSDavid Ahern const struct rt6_info *rt = container_of(dst, struct rt6_info, dst); 224f8a1b43bSDavid Ahern 225f8a1b43bSDavid Ahern return ip6_neigh_lookup(&rt->rt6i_gateway, dst->dev, skb, daddr); 226f83c7790SDavid S. Miller } 227f83c7790SDavid S. Miller 22863fca65dSJulian Anastasov static void ip6_confirm_neigh(const struct dst_entry *dst, const void *daddr) 22963fca65dSJulian Anastasov { 23063fca65dSJulian Anastasov struct net_device *dev = dst->dev; 23163fca65dSJulian Anastasov struct rt6_info *rt = (struct rt6_info *)dst; 23263fca65dSJulian Anastasov 233f8a1b43bSDavid Ahern daddr = choose_neigh_daddr(&rt->rt6i_gateway, NULL, daddr); 23463fca65dSJulian Anastasov if (!daddr) 23563fca65dSJulian Anastasov return; 23663fca65dSJulian Anastasov if (dev->flags & (IFF_NOARP | IFF_LOOPBACK)) 23763fca65dSJulian Anastasov return; 23863fca65dSJulian Anastasov if (ipv6_addr_is_multicast((const struct in6_addr *)daddr)) 23963fca65dSJulian Anastasov return; 24063fca65dSJulian Anastasov __ipv6_confirm_neigh(dev, daddr); 24163fca65dSJulian Anastasov } 24263fca65dSJulian Anastasov 2439a7ec3a9SDaniel Lezcano static struct dst_ops ip6_dst_ops_template = { 2441da177e4SLinus Torvalds .family = AF_INET6, 2451da177e4SLinus Torvalds .gc = ip6_dst_gc, 2461da177e4SLinus Torvalds .gc_thresh = 1024, 2471da177e4SLinus Torvalds .check = ip6_dst_check, 2480dbaee3bSDavid S. Miller .default_advmss = ip6_default_advmss, 249ebb762f2SSteffen Klassert .mtu = ip6_mtu, 250d4ead6b3SDavid Ahern .cow_metrics = dst_cow_metrics_generic, 2511da177e4SLinus Torvalds .destroy = ip6_dst_destroy, 2521da177e4SLinus Torvalds .ifdown = ip6_dst_ifdown, 2531da177e4SLinus Torvalds .negative_advice = ip6_negative_advice, 2541da177e4SLinus Torvalds .link_failure = ip6_link_failure, 2551da177e4SLinus Torvalds .update_pmtu = ip6_rt_update_pmtu, 2566e157b6aSDavid S. Miller .redirect = rt6_do_redirect, 2579f8955ccSEric W. Biederman .local_out = __ip6_local_out, 258f8a1b43bSDavid Ahern .neigh_lookup = ip6_dst_neigh_lookup, 25963fca65dSJulian Anastasov .confirm_neigh = ip6_confirm_neigh, 2601da177e4SLinus Torvalds }; 2611da177e4SLinus Torvalds 262ebb762f2SSteffen Klassert static unsigned int ip6_blackhole_mtu(const struct dst_entry *dst) 263ec831ea7SRoland Dreier { 264618f9bc7SSteffen Klassert unsigned int mtu = dst_metric_raw(dst, RTAX_MTU); 265618f9bc7SSteffen Klassert 266618f9bc7SSteffen Klassert return mtu ? : dst->dev->mtu; 267ec831ea7SRoland Dreier } 268ec831ea7SRoland Dreier 2696700c270SDavid S. Miller static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, struct sock *sk, 2706700c270SDavid S. Miller struct sk_buff *skb, u32 mtu) 27114e50e57SDavid S. Miller { 27214e50e57SDavid S. Miller } 27314e50e57SDavid S. Miller 2746700c270SDavid S. Miller static void ip6_rt_blackhole_redirect(struct dst_entry *dst, struct sock *sk, 2756700c270SDavid S. Miller struct sk_buff *skb) 276b587ee3bSDavid S. Miller { 277b587ee3bSDavid S. Miller } 278b587ee3bSDavid S. Miller 27914e50e57SDavid S. Miller static struct dst_ops ip6_dst_blackhole_ops = { 28014e50e57SDavid S. Miller .family = AF_INET6, 28114e50e57SDavid S. Miller .destroy = ip6_dst_destroy, 28214e50e57SDavid S. Miller .check = ip6_dst_check, 283ebb762f2SSteffen Klassert .mtu = ip6_blackhole_mtu, 284214f45c9SEric Dumazet .default_advmss = ip6_default_advmss, 28514e50e57SDavid S. Miller .update_pmtu = ip6_rt_blackhole_update_pmtu, 286b587ee3bSDavid S. Miller .redirect = ip6_rt_blackhole_redirect, 2870a1f5962SMartin KaFai Lau .cow_metrics = dst_cow_metrics_generic, 288f8a1b43bSDavid Ahern .neigh_lookup = ip6_dst_neigh_lookup, 28914e50e57SDavid S. Miller }; 29014e50e57SDavid S. Miller 29162fa8a84SDavid S. Miller static const u32 ip6_template_metrics[RTAX_MAX] = { 29214edd87dSLi RongQing [RTAX_HOPLIMIT - 1] = 0, 29362fa8a84SDavid S. Miller }; 29462fa8a84SDavid S. Miller 2958d1c802bSDavid Ahern static const struct fib6_info fib6_null_entry_template = { 29693c2fb25SDavid Ahern .fib6_flags = (RTF_REJECT | RTF_NONEXTHOP), 29793c2fb25SDavid Ahern .fib6_protocol = RTPROT_KERNEL, 29893c2fb25SDavid Ahern .fib6_metric = ~(u32)0, 29993c2fb25SDavid Ahern .fib6_ref = ATOMIC_INIT(1), 300421842edSDavid Ahern .fib6_type = RTN_UNREACHABLE, 301421842edSDavid Ahern .fib6_metrics = (struct dst_metrics *)&dst_default_metrics, 302421842edSDavid Ahern }; 303421842edSDavid Ahern 304fb0af4c7SEric Dumazet static const struct rt6_info ip6_null_entry_template = { 3051da177e4SLinus Torvalds .dst = { 3061da177e4SLinus Torvalds .__refcnt = ATOMIC_INIT(1), 3071da177e4SLinus Torvalds .__use = 1, 3082c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 3091da177e4SLinus Torvalds .error = -ENETUNREACH, 3101da177e4SLinus Torvalds .input = ip6_pkt_discard, 3111da177e4SLinus Torvalds .output = ip6_pkt_discard_out, 3121da177e4SLinus Torvalds }, 3131da177e4SLinus Torvalds .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 3141da177e4SLinus Torvalds }; 3151da177e4SLinus Torvalds 316101367c2SThomas Graf #ifdef CONFIG_IPV6_MULTIPLE_TABLES 317101367c2SThomas Graf 318fb0af4c7SEric Dumazet static const struct rt6_info ip6_prohibit_entry_template = { 319101367c2SThomas Graf .dst = { 320101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 321101367c2SThomas Graf .__use = 1, 3222c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 323101367c2SThomas Graf .error = -EACCES, 3249ce8ade0SThomas Graf .input = ip6_pkt_prohibit, 3259ce8ade0SThomas Graf .output = ip6_pkt_prohibit_out, 326101367c2SThomas Graf }, 327101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 328101367c2SThomas Graf }; 329101367c2SThomas Graf 330fb0af4c7SEric Dumazet static const struct rt6_info ip6_blk_hole_entry_template = { 331101367c2SThomas Graf .dst = { 332101367c2SThomas Graf .__refcnt = ATOMIC_INIT(1), 333101367c2SThomas Graf .__use = 1, 3342c20cbd7SNicolas Dichtel .obsolete = DST_OBSOLETE_FORCE_CHK, 335101367c2SThomas Graf .error = -EINVAL, 336352e512cSHerbert Xu .input = dst_discard, 337ede2059dSEric W. Biederman .output = dst_discard_out, 338101367c2SThomas Graf }, 339101367c2SThomas Graf .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP), 340101367c2SThomas Graf }; 341101367c2SThomas Graf 342101367c2SThomas Graf #endif 343101367c2SThomas Graf 344ebfa45f0SMartin KaFai Lau static void rt6_info_init(struct rt6_info *rt) 345ebfa45f0SMartin KaFai Lau { 346ebfa45f0SMartin KaFai Lau struct dst_entry *dst = &rt->dst; 347ebfa45f0SMartin KaFai Lau 348ebfa45f0SMartin KaFai Lau memset(dst + 1, 0, sizeof(*rt) - sizeof(*dst)); 349ebfa45f0SMartin KaFai Lau INIT_LIST_HEAD(&rt->rt6i_uncached); 350ebfa45f0SMartin KaFai Lau } 351ebfa45f0SMartin KaFai Lau 3521da177e4SLinus Torvalds /* allocate dst with ip6_dst_ops */ 35393531c67SDavid Ahern struct rt6_info *ip6_dst_alloc(struct net *net, struct net_device *dev, 354ad706862SMartin KaFai Lau int flags) 3551da177e4SLinus Torvalds { 35697bab73fSDavid S. Miller struct rt6_info *rt = dst_alloc(&net->ipv6.ip6_dst_ops, dev, 357b2a9c0edSWei Wang 1, DST_OBSOLETE_FORCE_CHK, flags); 358cf911662SDavid S. Miller 35981eb8447SWei Wang if (rt) { 360ebfa45f0SMartin KaFai Lau rt6_info_init(rt); 36181eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 36281eb8447SWei Wang } 3638104891bSSteffen Klassert 364cf911662SDavid S. Miller return rt; 3651da177e4SLinus Torvalds } 3669ab179d8SDavid Ahern EXPORT_SYMBOL(ip6_dst_alloc); 367d52d3997SMartin KaFai Lau 3681da177e4SLinus Torvalds static void ip6_dst_destroy(struct dst_entry *dst) 3691da177e4SLinus Torvalds { 3701da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 371a68886a6SDavid Ahern struct fib6_info *from; 3728d0b94afSMartin KaFai Lau struct inet6_dev *idev; 3731da177e4SLinus Torvalds 3741620a336SDavid Ahern ip_dst_metrics_put(dst); 3758d0b94afSMartin KaFai Lau rt6_uncached_list_del(rt); 3768d0b94afSMartin KaFai Lau 3778d0b94afSMartin KaFai Lau idev = rt->rt6i_idev; 37838308473SDavid S. Miller if (idev) { 3791da177e4SLinus Torvalds rt->rt6i_idev = NULL; 3801da177e4SLinus Torvalds in6_dev_put(idev); 3811da177e4SLinus Torvalds } 3821716a961SGao feng 383a68886a6SDavid Ahern rcu_read_lock(); 384a68886a6SDavid Ahern from = rcu_dereference(rt->from); 385a68886a6SDavid Ahern rcu_assign_pointer(rt->from, NULL); 38693531c67SDavid Ahern fib6_info_release(from); 387a68886a6SDavid Ahern rcu_read_unlock(); 388b3419363SDavid S. Miller } 389b3419363SDavid S. Miller 3901da177e4SLinus Torvalds static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev, 3911da177e4SLinus Torvalds int how) 3921da177e4SLinus Torvalds { 3931da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *)dst; 3941da177e4SLinus Torvalds struct inet6_dev *idev = rt->rt6i_idev; 3955a3e55d6SDenis V. Lunev struct net_device *loopback_dev = 396c346dca1SYOSHIFUJI Hideaki dev_net(dev)->loopback_dev; 3971da177e4SLinus Torvalds 398e5645f51SWei Wang if (idev && idev->dev != loopback_dev) { 399e5645f51SWei Wang struct inet6_dev *loopback_idev = in6_dev_get(loopback_dev); 40038308473SDavid S. Miller if (loopback_idev) { 4011da177e4SLinus Torvalds rt->rt6i_idev = loopback_idev; 4021da177e4SLinus Torvalds in6_dev_put(idev); 4031da177e4SLinus Torvalds } 4041da177e4SLinus Torvalds } 40597cac082SDavid S. Miller } 4061da177e4SLinus Torvalds 4075973fb1eSMartin KaFai Lau static bool __rt6_check_expired(const struct rt6_info *rt) 4085973fb1eSMartin KaFai Lau { 4095973fb1eSMartin KaFai Lau if (rt->rt6i_flags & RTF_EXPIRES) 4105973fb1eSMartin KaFai Lau return time_after(jiffies, rt->dst.expires); 4115973fb1eSMartin KaFai Lau else 4125973fb1eSMartin KaFai Lau return false; 4135973fb1eSMartin KaFai Lau } 4145973fb1eSMartin KaFai Lau 415a50feda5SEric Dumazet static bool rt6_check_expired(const struct rt6_info *rt) 4161da177e4SLinus Torvalds { 417a68886a6SDavid Ahern struct fib6_info *from; 418a68886a6SDavid Ahern 419a68886a6SDavid Ahern from = rcu_dereference(rt->from); 420a68886a6SDavid Ahern 4211716a961SGao feng if (rt->rt6i_flags & RTF_EXPIRES) { 4221716a961SGao feng if (time_after(jiffies, rt->dst.expires)) 423a50feda5SEric Dumazet return true; 424a68886a6SDavid Ahern } else if (from) { 4251e2ea8adSXin Long return rt->dst.obsolete != DST_OBSOLETE_FORCE_CHK || 426a68886a6SDavid Ahern fib6_check_expired(from); 4271716a961SGao feng } 428a50feda5SEric Dumazet return false; 4291da177e4SLinus Torvalds } 4301da177e4SLinus Torvalds 431b1d40991SDavid Ahern void fib6_select_path(const struct net *net, struct fib6_result *res, 432b1d40991SDavid Ahern struct flowi6 *fl6, int oif, bool have_oif_match, 433b1d40991SDavid Ahern const struct sk_buff *skb, int strict) 43451ebd318SNicolas Dichtel { 4358d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 436b1d40991SDavid Ahern struct fib6_info *match = res->f6i; 437b1d40991SDavid Ahern 438b1d40991SDavid Ahern if (!match->fib6_nsiblings || have_oif_match) 439b1d40991SDavid Ahern goto out; 44051ebd318SNicolas Dichtel 441b673d6ccSJakub Sitnicki /* We might have already computed the hash for ICMPv6 errors. In such 442b673d6ccSJakub Sitnicki * case it will always be non-zero. Otherwise now is the time to do it. 443b673d6ccSJakub Sitnicki */ 444b673d6ccSJakub Sitnicki if (!fl6->mp_hash) 445b4bac172SDavid Ahern fl6->mp_hash = rt6_multipath_hash(net, fl6, skb, NULL); 446b673d6ccSJakub Sitnicki 447ad1601aeSDavid Ahern if (fl6->mp_hash <= atomic_read(&match->fib6_nh.fib_nh_upper_bound)) 448b1d40991SDavid Ahern goto out; 449bbfcd776SIdo Schimmel 45093c2fb25SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, &match->fib6_siblings, 45193c2fb25SDavid Ahern fib6_siblings) { 452702cea56SDavid Ahern const struct fib6_nh *nh = &sibling->fib6_nh; 4535e670d84SDavid Ahern int nh_upper_bound; 4545e670d84SDavid Ahern 455702cea56SDavid Ahern nh_upper_bound = atomic_read(&nh->fib_nh_upper_bound); 4565e670d84SDavid Ahern if (fl6->mp_hash > nh_upper_bound) 4573d709f69SIdo Schimmel continue; 458702cea56SDavid Ahern if (rt6_score_route(nh, sibling->fib6_flags, oif, strict) < 0) 45952bd4c0cSNicolas Dichtel break; 46051ebd318SNicolas Dichtel match = sibling; 46151ebd318SNicolas Dichtel break; 46251ebd318SNicolas Dichtel } 4633d709f69SIdo Schimmel 464b1d40991SDavid Ahern out: 465b1d40991SDavid Ahern res->f6i = match; 466b1d40991SDavid Ahern res->nh = &match->fib6_nh; 46751ebd318SNicolas Dichtel } 46851ebd318SNicolas Dichtel 4691da177e4SLinus Torvalds /* 47066f5d6ceSWei Wang * Route lookup. rcu_read_lock() should be held. 4711da177e4SLinus Torvalds */ 4721da177e4SLinus Torvalds 4730c59d006SDavid Ahern static bool __rt6_device_match(struct net *net, const struct fib6_nh *nh, 4740c59d006SDavid Ahern const struct in6_addr *saddr, int oif, int flags) 4750c59d006SDavid Ahern { 4760c59d006SDavid Ahern const struct net_device *dev; 4770c59d006SDavid Ahern 4780c59d006SDavid Ahern if (nh->fib_nh_flags & RTNH_F_DEAD) 4790c59d006SDavid Ahern return false; 4800c59d006SDavid Ahern 4810c59d006SDavid Ahern dev = nh->fib_nh_dev; 4820c59d006SDavid Ahern if (oif) { 4830c59d006SDavid Ahern if (dev->ifindex == oif) 4840c59d006SDavid Ahern return true; 4850c59d006SDavid Ahern } else { 4860c59d006SDavid Ahern if (ipv6_chk_addr(net, saddr, dev, 4870c59d006SDavid Ahern flags & RT6_LOOKUP_F_IFACE)) 4880c59d006SDavid Ahern return true; 4890c59d006SDavid Ahern } 4900c59d006SDavid Ahern 4910c59d006SDavid Ahern return false; 4920c59d006SDavid Ahern } 4930c59d006SDavid Ahern 49475ef7389SDavid Ahern static void rt6_device_match(struct net *net, struct fib6_result *res, 49575ef7389SDavid Ahern const struct in6_addr *saddr, int oif, int flags) 4961da177e4SLinus Torvalds { 49775ef7389SDavid Ahern struct fib6_info *f6i = res->f6i; 49875ef7389SDavid Ahern struct fib6_info *spf6i; 49975ef7389SDavid Ahern struct fib6_nh *nh; 5001da177e4SLinus Torvalds 50175ef7389SDavid Ahern if (!oif && ipv6_addr_any(saddr)) { 50275ef7389SDavid Ahern nh = &f6i->fib6_nh; 50375ef7389SDavid Ahern if (!(nh->fib_nh_flags & RTNH_F_DEAD)) { 50475ef7389SDavid Ahern res->nh = nh; 50575ef7389SDavid Ahern return; 50675ef7389SDavid Ahern } 5071da177e4SLinus Torvalds } 5081da177e4SLinus Torvalds 50975ef7389SDavid Ahern for (spf6i = f6i; spf6i; spf6i = rcu_dereference(spf6i->fib6_next)) { 51075ef7389SDavid Ahern nh = &spf6i->fib6_nh; 51175ef7389SDavid Ahern if (__rt6_device_match(net, nh, saddr, oif, flags)) { 51275ef7389SDavid Ahern res->f6i = spf6i; 51375ef7389SDavid Ahern res->nh = nh; 51475ef7389SDavid Ahern } 51575ef7389SDavid Ahern } 5161da177e4SLinus Torvalds 51775ef7389SDavid Ahern if (oif && flags & RT6_LOOKUP_F_IFACE) { 51875ef7389SDavid Ahern res->f6i = net->ipv6.fib6_null_entry; 51975ef7389SDavid Ahern res->nh = &res->f6i->fib6_nh; 52075ef7389SDavid Ahern return; 52175ef7389SDavid Ahern } 52275ef7389SDavid Ahern 52375ef7389SDavid Ahern res->nh = &f6i->fib6_nh; 52475ef7389SDavid Ahern if (res->nh->fib_nh_flags & RTNH_F_DEAD) { 52575ef7389SDavid Ahern res->f6i = net->ipv6.fib6_null_entry; 52675ef7389SDavid Ahern res->nh = &res->f6i->fib6_nh; 52775ef7389SDavid Ahern } 5281da177e4SLinus Torvalds } 5291da177e4SLinus Torvalds 53027097255SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 531c2f17e82SHannes Frederic Sowa struct __rt6_probe_work { 532c2f17e82SHannes Frederic Sowa struct work_struct work; 533c2f17e82SHannes Frederic Sowa struct in6_addr target; 534c2f17e82SHannes Frederic Sowa struct net_device *dev; 535c2f17e82SHannes Frederic Sowa }; 536c2f17e82SHannes Frederic Sowa 537c2f17e82SHannes Frederic Sowa static void rt6_probe_deferred(struct work_struct *w) 538c2f17e82SHannes Frederic Sowa { 539c2f17e82SHannes Frederic Sowa struct in6_addr mcaddr; 540c2f17e82SHannes Frederic Sowa struct __rt6_probe_work *work = 541c2f17e82SHannes Frederic Sowa container_of(w, struct __rt6_probe_work, work); 542c2f17e82SHannes Frederic Sowa 543c2f17e82SHannes Frederic Sowa addrconf_addr_solict_mult(&work->target, &mcaddr); 544adc176c5SErik Nordmark ndisc_send_ns(work->dev, &work->target, &mcaddr, NULL, 0); 545c2f17e82SHannes Frederic Sowa dev_put(work->dev); 546662f5533SMichael Büsch kfree(work); 547c2f17e82SHannes Frederic Sowa } 548c2f17e82SHannes Frederic Sowa 549cc3a86c8SDavid Ahern static void rt6_probe(struct fib6_nh *fib6_nh) 55027097255SYOSHIFUJI Hideaki { 551f547fac6SSabrina Dubroca struct __rt6_probe_work *work = NULL; 5525e670d84SDavid Ahern const struct in6_addr *nh_gw; 553f2c31e32SEric Dumazet struct neighbour *neigh; 5545e670d84SDavid Ahern struct net_device *dev; 555f547fac6SSabrina Dubroca struct inet6_dev *idev; 5565e670d84SDavid Ahern 55727097255SYOSHIFUJI Hideaki /* 55827097255SYOSHIFUJI Hideaki * Okay, this does not seem to be appropriate 55927097255SYOSHIFUJI Hideaki * for now, however, we need to check if it 56027097255SYOSHIFUJI Hideaki * is really so; aka Router Reachability Probing. 56127097255SYOSHIFUJI Hideaki * 56227097255SYOSHIFUJI Hideaki * Router Reachability Probe MUST be rate-limited 56327097255SYOSHIFUJI Hideaki * to no more than one per minute. 56427097255SYOSHIFUJI Hideaki */ 565cc3a86c8SDavid Ahern if (fib6_nh->fib_nh_gw_family) 566fdd6681dSAmerigo Wang return; 5675e670d84SDavid Ahern 568cc3a86c8SDavid Ahern nh_gw = &fib6_nh->fib_nh_gw6; 569cc3a86c8SDavid Ahern dev = fib6_nh->fib_nh_dev; 5702152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 571f547fac6SSabrina Dubroca idev = __in6_dev_get(dev); 5725e670d84SDavid Ahern neigh = __ipv6_neigh_lookup_noref(dev, nh_gw); 5732152caeaSYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 5748d6c31bfSMartin KaFai Lau if (neigh->nud_state & NUD_VALID) 5758d6c31bfSMartin KaFai Lau goto out; 5768d6c31bfSMartin KaFai Lau 5772152caeaSYOSHIFUJI Hideaki / 吉藤英明 write_lock(&neigh->lock); 578990edb42SMartin KaFai Lau if (!(neigh->nud_state & NUD_VALID) && 579990edb42SMartin KaFai Lau time_after(jiffies, 580dcd1f572SDavid Ahern neigh->updated + idev->cnf.rtr_probe_interval)) { 581c2f17e82SHannes Frederic Sowa work = kmalloc(sizeof(*work), GFP_ATOMIC); 582990edb42SMartin KaFai Lau if (work) 5837e980569SJiri Benc __neigh_set_probe_once(neigh); 584990edb42SMartin KaFai Lau } 585c2f17e82SHannes Frederic Sowa write_unlock(&neigh->lock); 586cc3a86c8SDavid Ahern } else if (time_after(jiffies, fib6_nh->last_probe + 587f547fac6SSabrina Dubroca idev->cnf.rtr_probe_interval)) { 588990edb42SMartin KaFai Lau work = kmalloc(sizeof(*work), GFP_ATOMIC); 589990edb42SMartin KaFai Lau } 590c2f17e82SHannes Frederic Sowa 591c2f17e82SHannes Frederic Sowa if (work) { 592cc3a86c8SDavid Ahern fib6_nh->last_probe = jiffies; 593c2f17e82SHannes Frederic Sowa INIT_WORK(&work->work, rt6_probe_deferred); 5945e670d84SDavid Ahern work->target = *nh_gw; 5955e670d84SDavid Ahern dev_hold(dev); 5965e670d84SDavid Ahern work->dev = dev; 597c2f17e82SHannes Frederic Sowa schedule_work(&work->work); 598c2f17e82SHannes Frederic Sowa } 599990edb42SMartin KaFai Lau 6008d6c31bfSMartin KaFai Lau out: 6012152caeaSYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 602f2c31e32SEric Dumazet } 60327097255SYOSHIFUJI Hideaki #else 604cc3a86c8SDavid Ahern static inline void rt6_probe(struct fib6_nh *fib6_nh) 60527097255SYOSHIFUJI Hideaki { 60627097255SYOSHIFUJI Hideaki } 60727097255SYOSHIFUJI Hideaki #endif 60827097255SYOSHIFUJI Hideaki 6091da177e4SLinus Torvalds /* 610554cfb7eSYOSHIFUJI Hideaki * Default Router Selection (RFC 2461 6.3.6) 6111da177e4SLinus Torvalds */ 6121ba9a895SDavid Ahern static enum rt6_nud_state rt6_check_neigh(const struct fib6_nh *fib6_nh) 6131da177e4SLinus Torvalds { 614afc154e9SHannes Frederic Sowa enum rt6_nud_state ret = RT6_NUD_FAIL_HARD; 6155e670d84SDavid Ahern struct neighbour *neigh; 616f2c31e32SEric Dumazet 617145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_lock_bh(); 6181ba9a895SDavid Ahern neigh = __ipv6_neigh_lookup_noref(fib6_nh->fib_nh_dev, 6191ba9a895SDavid Ahern &fib6_nh->fib_nh_gw6); 620145a3621SYOSHIFUJI Hideaki / 吉藤英明 if (neigh) { 621145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_lock(&neigh->lock); 622554cfb7eSYOSHIFUJI Hideaki if (neigh->nud_state & NUD_VALID) 623afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 624398bcbebSYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 625a5a81f0bSPaul Marks else if (!(neigh->nud_state & NUD_FAILED)) 626afc154e9SHannes Frederic Sowa ret = RT6_NUD_SUCCEED; 6277e980569SJiri Benc else 6287e980569SJiri Benc ret = RT6_NUD_FAIL_PROBE; 629398bcbebSYOSHIFUJI Hideaki #endif 630145a3621SYOSHIFUJI Hideaki / 吉藤英明 read_unlock(&neigh->lock); 631afc154e9SHannes Frederic Sowa } else { 632afc154e9SHannes Frederic Sowa ret = IS_ENABLED(CONFIG_IPV6_ROUTER_PREF) ? 6337e980569SJiri Benc RT6_NUD_SUCCEED : RT6_NUD_FAIL_DO_RR; 634a5a81f0bSPaul Marks } 635145a3621SYOSHIFUJI Hideaki / 吉藤英明 rcu_read_unlock_bh(); 636145a3621SYOSHIFUJI Hideaki / 吉藤英明 637a5a81f0bSPaul Marks return ret; 6381da177e4SLinus Torvalds } 6391da177e4SLinus Torvalds 640702cea56SDavid Ahern static int rt6_score_route(const struct fib6_nh *nh, u32 fib6_flags, int oif, 641702cea56SDavid Ahern int strict) 642554cfb7eSYOSHIFUJI Hideaki { 6436e1809a5SDavid Ahern int m = 0; 6444d0c5911SYOSHIFUJI Hideaki 6456e1809a5SDavid Ahern if (!oif || nh->fib_nh_dev->ifindex == oif) 6466e1809a5SDavid Ahern m = 2; 6476e1809a5SDavid Ahern 64877d16f45SYOSHIFUJI Hideaki if (!m && (strict & RT6_LOOKUP_F_IFACE)) 649afc154e9SHannes Frederic Sowa return RT6_NUD_FAIL_HARD; 650ebacaaa0SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTER_PREF 651702cea56SDavid Ahern m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(fib6_flags)) << 2; 652ebacaaa0SYOSHIFUJI Hideaki #endif 6531ba9a895SDavid Ahern if ((strict & RT6_LOOKUP_F_REACHABLE) && 654702cea56SDavid Ahern !(fib6_flags & RTF_NONEXTHOP) && nh->fib_nh_gw_family) { 6551ba9a895SDavid Ahern int n = rt6_check_neigh(nh); 656afc154e9SHannes Frederic Sowa if (n < 0) 657afc154e9SHannes Frederic Sowa return n; 658afc154e9SHannes Frederic Sowa } 659554cfb7eSYOSHIFUJI Hideaki return m; 660554cfb7eSYOSHIFUJI Hideaki } 661554cfb7eSYOSHIFUJI Hideaki 66228679ed1SDavid Ahern static bool find_match(struct fib6_nh *nh, u32 fib6_flags, 66328679ed1SDavid Ahern int oif, int strict, int *mpri, bool *do_rr) 664554cfb7eSYOSHIFUJI Hideaki { 665afc154e9SHannes Frederic Sowa bool match_do_rr = false; 66628679ed1SDavid Ahern bool rc = false; 66728679ed1SDavid Ahern int m; 66835103d11SAndy Gospodarek 66928679ed1SDavid Ahern if (nh->fib_nh_flags & RTNH_F_DEAD) 6708067bb8cSIdo Schimmel goto out; 6718067bb8cSIdo Schimmel 67228679ed1SDavid Ahern if (ip6_ignore_linkdown(nh->fib_nh_dev) && 67328679ed1SDavid Ahern nh->fib_nh_flags & RTNH_F_LINKDOWN && 674d5d32e4bSDavid Ahern !(strict & RT6_LOOKUP_F_IGNORE_LINKSTATE)) 67535103d11SAndy Gospodarek goto out; 676554cfb7eSYOSHIFUJI Hideaki 67728679ed1SDavid Ahern m = rt6_score_route(nh, fib6_flags, oif, strict); 6787e980569SJiri Benc if (m == RT6_NUD_FAIL_DO_RR) { 679afc154e9SHannes Frederic Sowa match_do_rr = true; 680afc154e9SHannes Frederic Sowa m = 0; /* lowest valid score */ 6817e980569SJiri Benc } else if (m == RT6_NUD_FAIL_HARD) { 682f11e6659SDavid S. Miller goto out; 6831da177e4SLinus Torvalds } 684f11e6659SDavid S. Miller 685afc154e9SHannes Frederic Sowa if (strict & RT6_LOOKUP_F_REACHABLE) 68628679ed1SDavid Ahern rt6_probe(nh); 687afc154e9SHannes Frederic Sowa 6887e980569SJiri Benc /* note that m can be RT6_NUD_FAIL_PROBE at this point */ 689afc154e9SHannes Frederic Sowa if (m > *mpri) { 690afc154e9SHannes Frederic Sowa *do_rr = match_do_rr; 691afc154e9SHannes Frederic Sowa *mpri = m; 69228679ed1SDavid Ahern rc = true; 693afc154e9SHannes Frederic Sowa } 694f11e6659SDavid S. Miller out: 69528679ed1SDavid Ahern return rc; 6961da177e4SLinus Torvalds } 6971da177e4SLinus Torvalds 698b7bc4b6aSDavid Ahern static void __find_rr_leaf(struct fib6_info *f6i_start, 69930c15f03SDavid Ahern struct fib6_info *nomatch, u32 metric, 700b7bc4b6aSDavid Ahern struct fib6_result *res, struct fib6_info **cont, 70130c15f03SDavid Ahern int oif, int strict, bool *do_rr, int *mpri) 70230c15f03SDavid Ahern { 703b7bc4b6aSDavid Ahern struct fib6_info *f6i; 70430c15f03SDavid Ahern 705b7bc4b6aSDavid Ahern for (f6i = f6i_start; 706b7bc4b6aSDavid Ahern f6i && f6i != nomatch; 707b7bc4b6aSDavid Ahern f6i = rcu_dereference(f6i->fib6_next)) { 70830c15f03SDavid Ahern struct fib6_nh *nh; 70930c15f03SDavid Ahern 710b7bc4b6aSDavid Ahern if (cont && f6i->fib6_metric != metric) { 711b7bc4b6aSDavid Ahern *cont = f6i; 71230c15f03SDavid Ahern return; 71330c15f03SDavid Ahern } 71430c15f03SDavid Ahern 715b7bc4b6aSDavid Ahern if (fib6_check_expired(f6i)) 71630c15f03SDavid Ahern continue; 71730c15f03SDavid Ahern 718b7bc4b6aSDavid Ahern nh = &f6i->fib6_nh; 719b7bc4b6aSDavid Ahern if (find_match(nh, f6i->fib6_flags, oif, strict, mpri, do_rr)) { 720b7bc4b6aSDavid Ahern res->f6i = f6i; 721b7bc4b6aSDavid Ahern res->nh = nh; 722b7bc4b6aSDavid Ahern } 72330c15f03SDavid Ahern } 72430c15f03SDavid Ahern } 72530c15f03SDavid Ahern 726b7bc4b6aSDavid Ahern static void find_rr_leaf(struct fib6_node *fn, struct fib6_info *leaf, 727b7bc4b6aSDavid Ahern struct fib6_info *rr_head, int oif, int strict, 728b7bc4b6aSDavid Ahern bool *do_rr, struct fib6_result *res) 729f11e6659SDavid S. Miller { 730b7bc4b6aSDavid Ahern u32 metric = rr_head->fib6_metric; 731b7bc4b6aSDavid Ahern struct fib6_info *cont = NULL; 732f11e6659SDavid S. Miller int mpri = -1; 733f11e6659SDavid S. Miller 734b7bc4b6aSDavid Ahern __find_rr_leaf(rr_head, NULL, metric, res, &cont, 73530c15f03SDavid Ahern oif, strict, do_rr, &mpri); 7369fbdcfafSSteffen Klassert 737b7bc4b6aSDavid Ahern __find_rr_leaf(leaf, rr_head, metric, res, &cont, 73830c15f03SDavid Ahern oif, strict, do_rr, &mpri); 7399fbdcfafSSteffen Klassert 740b7bc4b6aSDavid Ahern if (res->f6i || !cont) 741b7bc4b6aSDavid Ahern return; 7429fbdcfafSSteffen Klassert 743b7bc4b6aSDavid Ahern __find_rr_leaf(cont, NULL, metric, res, NULL, 74430c15f03SDavid Ahern oif, strict, do_rr, &mpri); 745f11e6659SDavid S. Miller } 746f11e6659SDavid S. Miller 747b7bc4b6aSDavid Ahern static void rt6_select(struct net *net, struct fib6_node *fn, int oif, 748b7bc4b6aSDavid Ahern struct fib6_result *res, int strict) 749f11e6659SDavid S. Miller { 7508d1c802bSDavid Ahern struct fib6_info *leaf = rcu_dereference(fn->leaf); 751b7bc4b6aSDavid Ahern struct fib6_info *rt0; 752afc154e9SHannes Frederic Sowa bool do_rr = false; 75317ecf590SWei Wang int key_plen; 754f11e6659SDavid S. Miller 755b7bc4b6aSDavid Ahern /* make sure this function or its helpers sets f6i */ 756b7bc4b6aSDavid Ahern res->f6i = NULL; 757b7bc4b6aSDavid Ahern 758421842edSDavid Ahern if (!leaf || leaf == net->ipv6.fib6_null_entry) 759b7bc4b6aSDavid Ahern goto out; 7608d1040e8SWei Wang 76166f5d6ceSWei Wang rt0 = rcu_dereference(fn->rr_ptr); 762f11e6659SDavid S. Miller if (!rt0) 76366f5d6ceSWei Wang rt0 = leaf; 764f11e6659SDavid S. Miller 76517ecf590SWei Wang /* Double check to make sure fn is not an intermediate node 76617ecf590SWei Wang * and fn->leaf does not points to its child's leaf 76717ecf590SWei Wang * (This might happen if all routes under fn are deleted from 76817ecf590SWei Wang * the tree and fib6_repair_tree() is called on the node.) 76917ecf590SWei Wang */ 77093c2fb25SDavid Ahern key_plen = rt0->fib6_dst.plen; 77117ecf590SWei Wang #ifdef CONFIG_IPV6_SUBTREES 77293c2fb25SDavid Ahern if (rt0->fib6_src.plen) 77393c2fb25SDavid Ahern key_plen = rt0->fib6_src.plen; 77417ecf590SWei Wang #endif 77517ecf590SWei Wang if (fn->fn_bit != key_plen) 776b7bc4b6aSDavid Ahern goto out; 77717ecf590SWei Wang 778b7bc4b6aSDavid Ahern find_rr_leaf(fn, leaf, rt0, oif, strict, &do_rr, res); 779afc154e9SHannes Frederic Sowa if (do_rr) { 7808fb11a9aSDavid Ahern struct fib6_info *next = rcu_dereference(rt0->fib6_next); 781f11e6659SDavid S. Miller 782554cfb7eSYOSHIFUJI Hideaki /* no entries matched; do round-robin */ 78393c2fb25SDavid Ahern if (!next || next->fib6_metric != rt0->fib6_metric) 7848d1040e8SWei Wang next = leaf; 785f11e6659SDavid S. Miller 78666f5d6ceSWei Wang if (next != rt0) { 78793c2fb25SDavid Ahern spin_lock_bh(&leaf->fib6_table->tb6_lock); 78866f5d6ceSWei Wang /* make sure next is not being deleted from the tree */ 78993c2fb25SDavid Ahern if (next->fib6_node) 79066f5d6ceSWei Wang rcu_assign_pointer(fn->rr_ptr, next); 79193c2fb25SDavid Ahern spin_unlock_bh(&leaf->fib6_table->tb6_lock); 79266f5d6ceSWei Wang } 793554cfb7eSYOSHIFUJI Hideaki } 794554cfb7eSYOSHIFUJI Hideaki 795b7bc4b6aSDavid Ahern out: 796b7bc4b6aSDavid Ahern if (!res->f6i) { 797b7bc4b6aSDavid Ahern res->f6i = net->ipv6.fib6_null_entry; 798b7bc4b6aSDavid Ahern res->nh = &res->f6i->fib6_nh; 799b7bc4b6aSDavid Ahern } 8001da177e4SLinus Torvalds } 8011da177e4SLinus Torvalds 80285bd05deSDavid Ahern static bool rt6_is_gw_or_nonexthop(const struct fib6_result *res) 8038b9df265SMartin KaFai Lau { 80485bd05deSDavid Ahern return (res->f6i->fib6_flags & RTF_NONEXTHOP) || 80585bd05deSDavid Ahern res->nh->fib_nh_gw_family; 8068b9df265SMartin KaFai Lau } 8078b9df265SMartin KaFai Lau 80870ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 80970ceb4f5SYOSHIFUJI Hideaki int rt6_route_rcv(struct net_device *dev, u8 *opt, int len, 810b71d1d42SEric Dumazet const struct in6_addr *gwaddr) 81170ceb4f5SYOSHIFUJI Hideaki { 812c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 81370ceb4f5SYOSHIFUJI Hideaki struct route_info *rinfo = (struct route_info *) opt; 81470ceb4f5SYOSHIFUJI Hideaki struct in6_addr prefix_buf, *prefix; 81570ceb4f5SYOSHIFUJI Hideaki unsigned int pref; 8164bed72e4SYOSHIFUJI Hideaki unsigned long lifetime; 8178d1c802bSDavid Ahern struct fib6_info *rt; 81870ceb4f5SYOSHIFUJI Hideaki 81970ceb4f5SYOSHIFUJI Hideaki if (len < sizeof(struct route_info)) { 82070ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82170ceb4f5SYOSHIFUJI Hideaki } 82270ceb4f5SYOSHIFUJI Hideaki 82370ceb4f5SYOSHIFUJI Hideaki /* Sanity check for prefix_len and length */ 82470ceb4f5SYOSHIFUJI Hideaki if (rinfo->length > 3) { 82570ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82670ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 128) { 82770ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 82870ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 64) { 82970ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 2) { 83070ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 83170ceb4f5SYOSHIFUJI Hideaki } 83270ceb4f5SYOSHIFUJI Hideaki } else if (rinfo->prefix_len > 0) { 83370ceb4f5SYOSHIFUJI Hideaki if (rinfo->length < 1) { 83470ceb4f5SYOSHIFUJI Hideaki return -EINVAL; 83570ceb4f5SYOSHIFUJI Hideaki } 83670ceb4f5SYOSHIFUJI Hideaki } 83770ceb4f5SYOSHIFUJI Hideaki 83870ceb4f5SYOSHIFUJI Hideaki pref = rinfo->route_pref; 83970ceb4f5SYOSHIFUJI Hideaki if (pref == ICMPV6_ROUTER_PREF_INVALID) 8403933fc95SJens Rosenboom return -EINVAL; 84170ceb4f5SYOSHIFUJI Hideaki 8424bed72e4SYOSHIFUJI Hideaki lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ); 84370ceb4f5SYOSHIFUJI Hideaki 84470ceb4f5SYOSHIFUJI Hideaki if (rinfo->length == 3) 84570ceb4f5SYOSHIFUJI Hideaki prefix = (struct in6_addr *)rinfo->prefix; 84670ceb4f5SYOSHIFUJI Hideaki else { 84770ceb4f5SYOSHIFUJI Hideaki /* this function is safe */ 84870ceb4f5SYOSHIFUJI Hideaki ipv6_addr_prefix(&prefix_buf, 84970ceb4f5SYOSHIFUJI Hideaki (struct in6_addr *)rinfo->prefix, 85070ceb4f5SYOSHIFUJI Hideaki rinfo->prefix_len); 85170ceb4f5SYOSHIFUJI Hideaki prefix = &prefix_buf; 85270ceb4f5SYOSHIFUJI Hideaki } 85370ceb4f5SYOSHIFUJI Hideaki 854f104a567SDuan Jiong if (rinfo->prefix_len == 0) 855afb1d4b5SDavid Ahern rt = rt6_get_dflt_router(net, gwaddr, dev); 856f104a567SDuan Jiong else 857f104a567SDuan Jiong rt = rt6_get_route_info(net, prefix, rinfo->prefix_len, 858830218c1SDavid Ahern gwaddr, dev); 85970ceb4f5SYOSHIFUJI Hideaki 86070ceb4f5SYOSHIFUJI Hideaki if (rt && !lifetime) { 861afb1d4b5SDavid Ahern ip6_del_rt(net, rt); 86270ceb4f5SYOSHIFUJI Hideaki rt = NULL; 86370ceb4f5SYOSHIFUJI Hideaki } 86470ceb4f5SYOSHIFUJI Hideaki 86570ceb4f5SYOSHIFUJI Hideaki if (!rt && lifetime) 866830218c1SDavid Ahern rt = rt6_add_route_info(net, prefix, rinfo->prefix_len, gwaddr, 867830218c1SDavid Ahern dev, pref); 86870ceb4f5SYOSHIFUJI Hideaki else if (rt) 86993c2fb25SDavid Ahern rt->fib6_flags = RTF_ROUTEINFO | 87093c2fb25SDavid Ahern (rt->fib6_flags & ~RTF_PREF_MASK) | RTF_PREF(pref); 87170ceb4f5SYOSHIFUJI Hideaki 87270ceb4f5SYOSHIFUJI Hideaki if (rt) { 8731716a961SGao feng if (!addrconf_finite_timeout(lifetime)) 87414895687SDavid Ahern fib6_clean_expires(rt); 8751716a961SGao feng else 87614895687SDavid Ahern fib6_set_expires(rt, jiffies + HZ * lifetime); 8771716a961SGao feng 87893531c67SDavid Ahern fib6_info_release(rt); 87970ceb4f5SYOSHIFUJI Hideaki } 88070ceb4f5SYOSHIFUJI Hideaki return 0; 88170ceb4f5SYOSHIFUJI Hideaki } 88270ceb4f5SYOSHIFUJI Hideaki #endif 88370ceb4f5SYOSHIFUJI Hideaki 884ae90d867SDavid Ahern /* 885ae90d867SDavid Ahern * Misc support functions 886ae90d867SDavid Ahern */ 887ae90d867SDavid Ahern 888ae90d867SDavid Ahern /* called with rcu_lock held */ 8890d161581SDavid Ahern static struct net_device *ip6_rt_get_dev_rcu(const struct fib6_result *res) 890ae90d867SDavid Ahern { 8910d161581SDavid Ahern struct net_device *dev = res->nh->fib_nh_dev; 8920d161581SDavid Ahern const struct fib6_info *f6i = res->f6i; 893ae90d867SDavid Ahern 8940d161581SDavid Ahern if (f6i->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) { 895ae90d867SDavid Ahern /* for copies of local routes, dst->dev needs to be the 896ae90d867SDavid Ahern * device if it is a master device, the master device if 897ae90d867SDavid Ahern * device is enslaved, and the loopback as the default 898ae90d867SDavid Ahern */ 899ae90d867SDavid Ahern if (netif_is_l3_slave(dev) && 9000d161581SDavid Ahern !rt6_need_strict(&f6i->fib6_dst.addr)) 901ae90d867SDavid Ahern dev = l3mdev_master_dev_rcu(dev); 902ae90d867SDavid Ahern else if (!netif_is_l3_master(dev)) 903ae90d867SDavid Ahern dev = dev_net(dev)->loopback_dev; 904ae90d867SDavid Ahern /* last case is netif_is_l3_master(dev) is true in which 905ae90d867SDavid Ahern * case we want dev returned to be dev 906ae90d867SDavid Ahern */ 907ae90d867SDavid Ahern } 908ae90d867SDavid Ahern 909ae90d867SDavid Ahern return dev; 910ae90d867SDavid Ahern } 911ae90d867SDavid Ahern 9126edb3c96SDavid Ahern static const int fib6_prop[RTN_MAX + 1] = { 9136edb3c96SDavid Ahern [RTN_UNSPEC] = 0, 9146edb3c96SDavid Ahern [RTN_UNICAST] = 0, 9156edb3c96SDavid Ahern [RTN_LOCAL] = 0, 9166edb3c96SDavid Ahern [RTN_BROADCAST] = 0, 9176edb3c96SDavid Ahern [RTN_ANYCAST] = 0, 9186edb3c96SDavid Ahern [RTN_MULTICAST] = 0, 9196edb3c96SDavid Ahern [RTN_BLACKHOLE] = -EINVAL, 9206edb3c96SDavid Ahern [RTN_UNREACHABLE] = -EHOSTUNREACH, 9216edb3c96SDavid Ahern [RTN_PROHIBIT] = -EACCES, 9226edb3c96SDavid Ahern [RTN_THROW] = -EAGAIN, 9236edb3c96SDavid Ahern [RTN_NAT] = -EINVAL, 9246edb3c96SDavid Ahern [RTN_XRESOLVE] = -EINVAL, 9256edb3c96SDavid Ahern }; 9266edb3c96SDavid Ahern 9276edb3c96SDavid Ahern static int ip6_rt_type_to_error(u8 fib6_type) 9286edb3c96SDavid Ahern { 9296edb3c96SDavid Ahern return fib6_prop[fib6_type]; 9306edb3c96SDavid Ahern } 9316edb3c96SDavid Ahern 9328d1c802bSDavid Ahern static unsigned short fib6_info_dst_flags(struct fib6_info *rt) 9333b6761d1SDavid Ahern { 9343b6761d1SDavid Ahern unsigned short flags = 0; 9353b6761d1SDavid Ahern 9363b6761d1SDavid Ahern if (rt->dst_nocount) 9373b6761d1SDavid Ahern flags |= DST_NOCOUNT; 9383b6761d1SDavid Ahern if (rt->dst_nopolicy) 9393b6761d1SDavid Ahern flags |= DST_NOPOLICY; 9403b6761d1SDavid Ahern if (rt->dst_host) 9413b6761d1SDavid Ahern flags |= DST_HOST; 9423b6761d1SDavid Ahern 9433b6761d1SDavid Ahern return flags; 9443b6761d1SDavid Ahern } 9453b6761d1SDavid Ahern 9468d1c802bSDavid Ahern static void ip6_rt_init_dst_reject(struct rt6_info *rt, struct fib6_info *ort) 9476edb3c96SDavid Ahern { 9486edb3c96SDavid Ahern rt->dst.error = ip6_rt_type_to_error(ort->fib6_type); 9496edb3c96SDavid Ahern 9506edb3c96SDavid Ahern switch (ort->fib6_type) { 9516edb3c96SDavid Ahern case RTN_BLACKHOLE: 9526edb3c96SDavid Ahern rt->dst.output = dst_discard_out; 9536edb3c96SDavid Ahern rt->dst.input = dst_discard; 9546edb3c96SDavid Ahern break; 9556edb3c96SDavid Ahern case RTN_PROHIBIT: 9566edb3c96SDavid Ahern rt->dst.output = ip6_pkt_prohibit_out; 9576edb3c96SDavid Ahern rt->dst.input = ip6_pkt_prohibit; 9586edb3c96SDavid Ahern break; 9596edb3c96SDavid Ahern case RTN_THROW: 9606edb3c96SDavid Ahern case RTN_UNREACHABLE: 9616edb3c96SDavid Ahern default: 9626edb3c96SDavid Ahern rt->dst.output = ip6_pkt_discard_out; 9636edb3c96SDavid Ahern rt->dst.input = ip6_pkt_discard; 9646edb3c96SDavid Ahern break; 9656edb3c96SDavid Ahern } 9666edb3c96SDavid Ahern } 9676edb3c96SDavid Ahern 9680d161581SDavid Ahern static void ip6_rt_init_dst(struct rt6_info *rt, const struct fib6_result *res) 9696edb3c96SDavid Ahern { 9700d161581SDavid Ahern struct fib6_info *ort = res->f6i; 9710d161581SDavid Ahern 97293c2fb25SDavid Ahern if (ort->fib6_flags & RTF_REJECT) { 9736edb3c96SDavid Ahern ip6_rt_init_dst_reject(rt, ort); 9746edb3c96SDavid Ahern return; 9756edb3c96SDavid Ahern } 9766edb3c96SDavid Ahern 9776edb3c96SDavid Ahern rt->dst.error = 0; 9786edb3c96SDavid Ahern rt->dst.output = ip6_output; 9796edb3c96SDavid Ahern 980d23c4b63SHangbin Liu if (ort->fib6_type == RTN_LOCAL || ort->fib6_type == RTN_ANYCAST) { 9816edb3c96SDavid Ahern rt->dst.input = ip6_input; 98293c2fb25SDavid Ahern } else if (ipv6_addr_type(&ort->fib6_dst.addr) & IPV6_ADDR_MULTICAST) { 9836edb3c96SDavid Ahern rt->dst.input = ip6_mc_input; 9846edb3c96SDavid Ahern } else { 9856edb3c96SDavid Ahern rt->dst.input = ip6_forward; 9866edb3c96SDavid Ahern } 9876edb3c96SDavid Ahern 9880d161581SDavid Ahern if (res->nh->fib_nh_lws) { 9890d161581SDavid Ahern rt->dst.lwtstate = lwtstate_get(res->nh->fib_nh_lws); 9906edb3c96SDavid Ahern lwtunnel_set_redirect(&rt->dst); 9916edb3c96SDavid Ahern } 9926edb3c96SDavid Ahern 9936edb3c96SDavid Ahern rt->dst.lastuse = jiffies; 9946edb3c96SDavid Ahern } 9956edb3c96SDavid Ahern 996e873e4b9SWei Wang /* Caller must already hold reference to @from */ 9978d1c802bSDavid Ahern static void rt6_set_from(struct rt6_info *rt, struct fib6_info *from) 998ae90d867SDavid Ahern { 999ae90d867SDavid Ahern rt->rt6i_flags &= ~RTF_EXPIRES; 1000a68886a6SDavid Ahern rcu_assign_pointer(rt->from, from); 1001e1255ed4SDavid Ahern ip_dst_init_metrics(&rt->dst, from->fib6_metrics); 1002ae90d867SDavid Ahern } 1003ae90d867SDavid Ahern 10040d161581SDavid Ahern /* Caller must already hold reference to f6i in result */ 10050d161581SDavid Ahern static void ip6_rt_copy_init(struct rt6_info *rt, const struct fib6_result *res) 1006ae90d867SDavid Ahern { 10070d161581SDavid Ahern const struct fib6_nh *nh = res->nh; 10080d161581SDavid Ahern const struct net_device *dev = nh->fib_nh_dev; 10090d161581SDavid Ahern struct fib6_info *f6i = res->f6i; 1010dcd1f572SDavid Ahern 10110d161581SDavid Ahern ip6_rt_init_dst(rt, res); 10126edb3c96SDavid Ahern 10130d161581SDavid Ahern rt->rt6i_dst = f6i->fib6_dst; 1014dcd1f572SDavid Ahern rt->rt6i_idev = dev ? in6_dev_get(dev) : NULL; 10150d161581SDavid Ahern rt->rt6i_flags = f6i->fib6_flags; 10160d161581SDavid Ahern if (nh->fib_nh_gw_family) { 10170d161581SDavid Ahern rt->rt6i_gateway = nh->fib_nh_gw6; 10182b2450caSDavid Ahern rt->rt6i_flags |= RTF_GATEWAY; 10192b2450caSDavid Ahern } 10200d161581SDavid Ahern rt6_set_from(rt, f6i); 1021ae90d867SDavid Ahern #ifdef CONFIG_IPV6_SUBTREES 10220d161581SDavid Ahern rt->rt6i_src = f6i->fib6_src; 1023ae90d867SDavid Ahern #endif 1024ae90d867SDavid Ahern } 1025ae90d867SDavid Ahern 1026a3c00e46SMartin KaFai Lau static struct fib6_node* fib6_backtrack(struct fib6_node *fn, 1027a3c00e46SMartin KaFai Lau struct in6_addr *saddr) 1028a3c00e46SMartin KaFai Lau { 102966f5d6ceSWei Wang struct fib6_node *pn, *sn; 1030a3c00e46SMartin KaFai Lau while (1) { 1031a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_TL_ROOT) 1032a3c00e46SMartin KaFai Lau return NULL; 103366f5d6ceSWei Wang pn = rcu_dereference(fn->parent); 103466f5d6ceSWei Wang sn = FIB6_SUBTREE(pn); 103566f5d6ceSWei Wang if (sn && sn != fn) 10366454743bSDavid Ahern fn = fib6_node_lookup(sn, NULL, saddr); 1037a3c00e46SMartin KaFai Lau else 1038a3c00e46SMartin KaFai Lau fn = pn; 1039a3c00e46SMartin KaFai Lau if (fn->fn_flags & RTN_RTINFO) 1040a3c00e46SMartin KaFai Lau return fn; 1041a3c00e46SMartin KaFai Lau } 1042a3c00e46SMartin KaFai Lau } 1043c71099acSThomas Graf 104410585b43SDavid Ahern static bool ip6_hold_safe(struct net *net, struct rt6_info **prt) 1045d3843fe5SWei Wang { 1046d3843fe5SWei Wang struct rt6_info *rt = *prt; 1047d3843fe5SWei Wang 1048d3843fe5SWei Wang if (dst_hold_safe(&rt->dst)) 1049d3843fe5SWei Wang return true; 105010585b43SDavid Ahern if (net) { 1051d3843fe5SWei Wang rt = net->ipv6.ip6_null_entry; 1052d3843fe5SWei Wang dst_hold(&rt->dst); 1053d3843fe5SWei Wang } else { 1054d3843fe5SWei Wang rt = NULL; 1055d3843fe5SWei Wang } 1056d3843fe5SWei Wang *prt = rt; 1057d3843fe5SWei Wang return false; 1058d3843fe5SWei Wang } 1059d3843fe5SWei Wang 1060dec9b0e2SDavid Ahern /* called with rcu_lock held */ 10619b6b35abSDavid Ahern static struct rt6_info *ip6_create_rt_rcu(const struct fib6_result *res) 1062dec9b0e2SDavid Ahern { 10639b6b35abSDavid Ahern struct net_device *dev = res->nh->fib_nh_dev; 10649b6b35abSDavid Ahern struct fib6_info *f6i = res->f6i; 10659b6b35abSDavid Ahern unsigned short flags; 1066dec9b0e2SDavid Ahern struct rt6_info *nrt; 1067dec9b0e2SDavid Ahern 10689b6b35abSDavid Ahern if (!fib6_info_hold_safe(f6i)) 10691c87e79aSXin Long goto fallback; 1070e873e4b9SWei Wang 10719b6b35abSDavid Ahern flags = fib6_info_dst_flags(f6i); 107293531c67SDavid Ahern nrt = ip6_dst_alloc(dev_net(dev), dev, flags); 10731c87e79aSXin Long if (!nrt) { 10749b6b35abSDavid Ahern fib6_info_release(f6i); 10751c87e79aSXin Long goto fallback; 10761c87e79aSXin Long } 1077dec9b0e2SDavid Ahern 10780d161581SDavid Ahern ip6_rt_copy_init(nrt, res); 10791c87e79aSXin Long return nrt; 10801c87e79aSXin Long 10811c87e79aSXin Long fallback: 10821c87e79aSXin Long nrt = dev_net(dev)->ipv6.ip6_null_entry; 10831c87e79aSXin Long dst_hold(&nrt->dst); 1084dec9b0e2SDavid Ahern return nrt; 1085dec9b0e2SDavid Ahern } 1086dec9b0e2SDavid Ahern 10878ed67789SDaniel Lezcano static struct rt6_info *ip6_pol_route_lookup(struct net *net, 10888ed67789SDaniel Lezcano struct fib6_table *table, 1089b75cc8f9SDavid Ahern struct flowi6 *fl6, 1090b75cc8f9SDavid Ahern const struct sk_buff *skb, 1091b75cc8f9SDavid Ahern int flags) 10921da177e4SLinus Torvalds { 1093b1d40991SDavid Ahern struct fib6_result res = {}; 10941da177e4SLinus Torvalds struct fib6_node *fn; 109523fb93a4SDavid Ahern struct rt6_info *rt; 10961da177e4SLinus Torvalds 1097b6cdbc85SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1098b6cdbc85SDavid Ahern flags &= ~RT6_LOOKUP_F_IFACE; 1099b6cdbc85SDavid Ahern 110066f5d6ceSWei Wang rcu_read_lock(); 11016454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1102c71099acSThomas Graf restart: 1103b1d40991SDavid Ahern res.f6i = rcu_dereference(fn->leaf); 1104b1d40991SDavid Ahern if (!res.f6i) 1105b1d40991SDavid Ahern res.f6i = net->ipv6.fib6_null_entry; 1106af52a52cSDavid Ahern else 110775ef7389SDavid Ahern rt6_device_match(net, &res, &fl6->saddr, fl6->flowi6_oif, 110875ef7389SDavid Ahern flags); 1109af52a52cSDavid Ahern 1110b1d40991SDavid Ahern if (res.f6i == net->ipv6.fib6_null_entry) { 1111a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1112a3c00e46SMartin KaFai Lau if (fn) 1113a3c00e46SMartin KaFai Lau goto restart; 1114af52a52cSDavid Ahern 1115af52a52cSDavid Ahern rt = net->ipv6.ip6_null_entry; 1116af52a52cSDavid Ahern dst_hold(&rt->dst); 1117af52a52cSDavid Ahern goto out; 1118a3c00e46SMartin KaFai Lau } 11192b760fcfSWei Wang 1120b1d40991SDavid Ahern fib6_select_path(net, &res, fl6, fl6->flowi6_oif, 1121b1d40991SDavid Ahern fl6->flowi6_oif != 0, skb, flags); 1122b1d40991SDavid Ahern 11234c9483b2SDavid S. Miller /* Search through exception table */ 11247e4b5128SDavid Ahern rt = rt6_find_cached_rt(&res, &fl6->daddr, &fl6->saddr); 112523fb93a4SDavid Ahern if (rt) { 112610585b43SDavid Ahern if (ip6_hold_safe(net, &rt)) 1127d3843fe5SWei Wang dst_use_noref(&rt->dst, jiffies); 112823fb93a4SDavid Ahern } else { 11299b6b35abSDavid Ahern rt = ip6_create_rt_rcu(&res); 1130dec9b0e2SDavid Ahern } 1131d3843fe5SWei Wang 1132af52a52cSDavid Ahern out: 11338ff2e5b2SDavid Ahern trace_fib6_table_lookup(net, &res, table, fl6); 1134af52a52cSDavid Ahern 113566f5d6ceSWei Wang rcu_read_unlock(); 1136b811580dSDavid Ahern 11371da177e4SLinus Torvalds return rt; 1138c71099acSThomas Graf } 1139c71099acSThomas Graf 1140ea6e574eSFlorian Westphal struct dst_entry *ip6_route_lookup(struct net *net, struct flowi6 *fl6, 1141b75cc8f9SDavid Ahern const struct sk_buff *skb, int flags) 1142ea6e574eSFlorian Westphal { 1143b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_lookup); 1144ea6e574eSFlorian Westphal } 1145ea6e574eSFlorian Westphal EXPORT_SYMBOL_GPL(ip6_route_lookup); 1146ea6e574eSFlorian Westphal 11479acd9f3aSYOSHIFUJI Hideaki struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr, 1148b75cc8f9SDavid Ahern const struct in6_addr *saddr, int oif, 1149b75cc8f9SDavid Ahern const struct sk_buff *skb, int strict) 1150c71099acSThomas Graf { 11514c9483b2SDavid S. Miller struct flowi6 fl6 = { 11524c9483b2SDavid S. Miller .flowi6_oif = oif, 11534c9483b2SDavid S. Miller .daddr = *daddr, 1154c71099acSThomas Graf }; 1155c71099acSThomas Graf struct dst_entry *dst; 115677d16f45SYOSHIFUJI Hideaki int flags = strict ? RT6_LOOKUP_F_IFACE : 0; 1157c71099acSThomas Graf 1158adaa70bbSThomas Graf if (saddr) { 11594c9483b2SDavid S. Miller memcpy(&fl6.saddr, saddr, sizeof(*saddr)); 1160adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 1161adaa70bbSThomas Graf } 1162adaa70bbSThomas Graf 1163b75cc8f9SDavid Ahern dst = fib6_rule_lookup(net, &fl6, skb, flags, ip6_pol_route_lookup); 1164c71099acSThomas Graf if (dst->error == 0) 1165c71099acSThomas Graf return (struct rt6_info *) dst; 1166c71099acSThomas Graf 1167c71099acSThomas Graf dst_release(dst); 1168c71099acSThomas Graf 11691da177e4SLinus Torvalds return NULL; 11701da177e4SLinus Torvalds } 11717159039aSYOSHIFUJI Hideaki EXPORT_SYMBOL(rt6_lookup); 11727159039aSYOSHIFUJI Hideaki 1173c71099acSThomas Graf /* ip6_ins_rt is called with FREE table->tb6_lock. 11741cfb71eeSWei Wang * It takes new route entry, the addition fails by any reason the 11751cfb71eeSWei Wang * route is released. 11761cfb71eeSWei Wang * Caller must hold dst before calling it. 11771da177e4SLinus Torvalds */ 11781da177e4SLinus Torvalds 11798d1c802bSDavid Ahern static int __ip6_ins_rt(struct fib6_info *rt, struct nl_info *info, 1180333c4301SDavid Ahern struct netlink_ext_ack *extack) 11811da177e4SLinus Torvalds { 11821da177e4SLinus Torvalds int err; 1183c71099acSThomas Graf struct fib6_table *table; 11841da177e4SLinus Torvalds 118593c2fb25SDavid Ahern table = rt->fib6_table; 118666f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 1187d4ead6b3SDavid Ahern err = fib6_add(&table->tb6_root, rt, info, extack); 118866f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 11891da177e4SLinus Torvalds 11901da177e4SLinus Torvalds return err; 11911da177e4SLinus Torvalds } 11921da177e4SLinus Torvalds 11938d1c802bSDavid Ahern int ip6_ins_rt(struct net *net, struct fib6_info *rt) 119440e22e8fSThomas Graf { 1195afb1d4b5SDavid Ahern struct nl_info info = { .nl_net = net, }; 1196e715b6d3SFlorian Westphal 1197d4ead6b3SDavid Ahern return __ip6_ins_rt(rt, &info, NULL); 119840e22e8fSThomas Graf } 119940e22e8fSThomas Graf 120085bd05deSDavid Ahern static struct rt6_info *ip6_rt_cache_alloc(const struct fib6_result *res, 120121efcfa0SEric Dumazet const struct in6_addr *daddr, 1202b71d1d42SEric Dumazet const struct in6_addr *saddr) 12031da177e4SLinus Torvalds { 120485bd05deSDavid Ahern struct fib6_info *f6i = res->f6i; 12054832c30dSDavid Ahern struct net_device *dev; 12061da177e4SLinus Torvalds struct rt6_info *rt; 12071da177e4SLinus Torvalds 12081da177e4SLinus Torvalds /* 12091da177e4SLinus Torvalds * Clone the route. 12101da177e4SLinus Torvalds */ 12111da177e4SLinus Torvalds 121285bd05deSDavid Ahern if (!fib6_info_hold_safe(f6i)) 1213e873e4b9SWei Wang return NULL; 1214e873e4b9SWei Wang 12150d161581SDavid Ahern dev = ip6_rt_get_dev_rcu(res); 121693531c67SDavid Ahern rt = ip6_dst_alloc(dev_net(dev), dev, 0); 1217e873e4b9SWei Wang if (!rt) { 121885bd05deSDavid Ahern fib6_info_release(f6i); 121983a09abdSMartin KaFai Lau return NULL; 1220e873e4b9SWei Wang } 122183a09abdSMartin KaFai Lau 12220d161581SDavid Ahern ip6_rt_copy_init(rt, res); 12238b9df265SMartin KaFai Lau rt->rt6i_flags |= RTF_CACHE; 122483a09abdSMartin KaFai Lau rt->dst.flags |= DST_HOST; 122583a09abdSMartin KaFai Lau rt->rt6i_dst.addr = *daddr; 122683a09abdSMartin KaFai Lau rt->rt6i_dst.plen = 128; 12278b9df265SMartin KaFai Lau 122885bd05deSDavid Ahern if (!rt6_is_gw_or_nonexthop(res)) { 122985bd05deSDavid Ahern if (f6i->fib6_dst.plen != 128 && 123085bd05deSDavid Ahern ipv6_addr_equal(&f6i->fib6_dst.addr, daddr)) 123158c4fb86SYOSHIFUJI Hideaki rt->rt6i_flags |= RTF_ANYCAST; 12321da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 12331da177e4SLinus Torvalds if (rt->rt6i_src.plen && saddr) { 12344e3fd7a0SAlexey Dobriyan rt->rt6i_src.addr = *saddr; 12351da177e4SLinus Torvalds rt->rt6i_src.plen = 128; 12361da177e4SLinus Torvalds } 12371da177e4SLinus Torvalds #endif 123895a9a5baSYOSHIFUJI Hideaki } 123995a9a5baSYOSHIFUJI Hideaki 1240299d9939SYOSHIFUJI Hideaki return rt; 1241299d9939SYOSHIFUJI Hideaki } 1242299d9939SYOSHIFUJI Hideaki 1243db3fedeeSDavid Ahern static struct rt6_info *ip6_rt_pcpu_alloc(const struct fib6_result *res) 1244d52d3997SMartin KaFai Lau { 1245db3fedeeSDavid Ahern struct fib6_info *f6i = res->f6i; 1246db3fedeeSDavid Ahern unsigned short flags = fib6_info_dst_flags(f6i); 12474832c30dSDavid Ahern struct net_device *dev; 1248d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1249d52d3997SMartin KaFai Lau 1250db3fedeeSDavid Ahern if (!fib6_info_hold_safe(f6i)) 1251e873e4b9SWei Wang return NULL; 1252e873e4b9SWei Wang 12534832c30dSDavid Ahern rcu_read_lock(); 12540d161581SDavid Ahern dev = ip6_rt_get_dev_rcu(res); 125593531c67SDavid Ahern pcpu_rt = ip6_dst_alloc(dev_net(dev), dev, flags); 12564832c30dSDavid Ahern rcu_read_unlock(); 1257e873e4b9SWei Wang if (!pcpu_rt) { 1258db3fedeeSDavid Ahern fib6_info_release(f6i); 1259d52d3997SMartin KaFai Lau return NULL; 1260e873e4b9SWei Wang } 12610d161581SDavid Ahern ip6_rt_copy_init(pcpu_rt, res); 1262d52d3997SMartin KaFai Lau pcpu_rt->rt6i_flags |= RTF_PCPU; 1263d52d3997SMartin KaFai Lau return pcpu_rt; 1264d52d3997SMartin KaFai Lau } 1265d52d3997SMartin KaFai Lau 126666f5d6ceSWei Wang /* It should be called with rcu_read_lock() acquired */ 1267db3fedeeSDavid Ahern static struct rt6_info *rt6_get_pcpu_route(const struct fib6_result *res) 1268d52d3997SMartin KaFai Lau { 1269a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, **p; 1270d52d3997SMartin KaFai Lau 1271db3fedeeSDavid Ahern p = this_cpu_ptr(res->f6i->rt6i_pcpu); 1272d52d3997SMartin KaFai Lau pcpu_rt = *p; 1273d52d3997SMartin KaFai Lau 1274d4ead6b3SDavid Ahern if (pcpu_rt) 127510585b43SDavid Ahern ip6_hold_safe(NULL, &pcpu_rt); 1276d3843fe5SWei Wang 1277a73e4195SMartin KaFai Lau return pcpu_rt; 1278a73e4195SMartin KaFai Lau } 1279a73e4195SMartin KaFai Lau 1280afb1d4b5SDavid Ahern static struct rt6_info *rt6_make_pcpu_route(struct net *net, 1281db3fedeeSDavid Ahern const struct fib6_result *res) 1282a73e4195SMartin KaFai Lau { 1283a73e4195SMartin KaFai Lau struct rt6_info *pcpu_rt, *prev, **p; 1284d52d3997SMartin KaFai Lau 1285db3fedeeSDavid Ahern pcpu_rt = ip6_rt_pcpu_alloc(res); 1286d52d3997SMartin KaFai Lau if (!pcpu_rt) { 12879c7370a1SMartin KaFai Lau dst_hold(&net->ipv6.ip6_null_entry->dst); 12889c7370a1SMartin KaFai Lau return net->ipv6.ip6_null_entry; 1289d52d3997SMartin KaFai Lau } 1290d52d3997SMartin KaFai Lau 1291a94b9367SWei Wang dst_hold(&pcpu_rt->dst); 1292db3fedeeSDavid Ahern p = this_cpu_ptr(res->f6i->rt6i_pcpu); 1293d52d3997SMartin KaFai Lau prev = cmpxchg(p, NULL, pcpu_rt); 1294951f788aSEric Dumazet BUG_ON(prev); 1295a94b9367SWei Wang 1296d52d3997SMartin KaFai Lau return pcpu_rt; 1297d52d3997SMartin KaFai Lau } 1298d52d3997SMartin KaFai Lau 129935732d01SWei Wang /* exception hash table implementation 130035732d01SWei Wang */ 130135732d01SWei Wang static DEFINE_SPINLOCK(rt6_exception_lock); 130235732d01SWei Wang 130335732d01SWei Wang /* Remove rt6_ex from hash table and free the memory 130435732d01SWei Wang * Caller must hold rt6_exception_lock 130535732d01SWei Wang */ 130635732d01SWei Wang static void rt6_remove_exception(struct rt6_exception_bucket *bucket, 130735732d01SWei Wang struct rt6_exception *rt6_ex) 130835732d01SWei Wang { 1309f5b51fe8SPaolo Abeni struct fib6_info *from; 1310b2427e67SColin Ian King struct net *net; 131181eb8447SWei Wang 131235732d01SWei Wang if (!bucket || !rt6_ex) 131335732d01SWei Wang return; 1314b2427e67SColin Ian King 1315b2427e67SColin Ian King net = dev_net(rt6_ex->rt6i->dst.dev); 1316f5b51fe8SPaolo Abeni net->ipv6.rt6_stats->fib_rt_cache--; 1317f5b51fe8SPaolo Abeni 1318f5b51fe8SPaolo Abeni /* purge completely the exception to allow releasing the held resources: 1319f5b51fe8SPaolo Abeni * some [sk] cache may keep the dst around for unlimited time 1320f5b51fe8SPaolo Abeni */ 1321f5b51fe8SPaolo Abeni from = rcu_dereference_protected(rt6_ex->rt6i->from, 1322f5b51fe8SPaolo Abeni lockdep_is_held(&rt6_exception_lock)); 1323f5b51fe8SPaolo Abeni rcu_assign_pointer(rt6_ex->rt6i->from, NULL); 1324f5b51fe8SPaolo Abeni fib6_info_release(from); 1325f5b51fe8SPaolo Abeni dst_dev_put(&rt6_ex->rt6i->dst); 1326f5b51fe8SPaolo Abeni 132735732d01SWei Wang hlist_del_rcu(&rt6_ex->hlist); 132877634cc6SDavid Ahern dst_release(&rt6_ex->rt6i->dst); 132935732d01SWei Wang kfree_rcu(rt6_ex, rcu); 133035732d01SWei Wang WARN_ON_ONCE(!bucket->depth); 133135732d01SWei Wang bucket->depth--; 133235732d01SWei Wang } 133335732d01SWei Wang 133435732d01SWei Wang /* Remove oldest rt6_ex in bucket and free the memory 133535732d01SWei Wang * Caller must hold rt6_exception_lock 133635732d01SWei Wang */ 133735732d01SWei Wang static void rt6_exception_remove_oldest(struct rt6_exception_bucket *bucket) 133835732d01SWei Wang { 133935732d01SWei Wang struct rt6_exception *rt6_ex, *oldest = NULL; 134035732d01SWei Wang 134135732d01SWei Wang if (!bucket) 134235732d01SWei Wang return; 134335732d01SWei Wang 134435732d01SWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 134535732d01SWei Wang if (!oldest || time_before(rt6_ex->stamp, oldest->stamp)) 134635732d01SWei Wang oldest = rt6_ex; 134735732d01SWei Wang } 134835732d01SWei Wang rt6_remove_exception(bucket, oldest); 134935732d01SWei Wang } 135035732d01SWei Wang 135135732d01SWei Wang static u32 rt6_exception_hash(const struct in6_addr *dst, 135235732d01SWei Wang const struct in6_addr *src) 135335732d01SWei Wang { 135435732d01SWei Wang static u32 seed __read_mostly; 135535732d01SWei Wang u32 val; 135635732d01SWei Wang 135735732d01SWei Wang net_get_random_once(&seed, sizeof(seed)); 135835732d01SWei Wang val = jhash(dst, sizeof(*dst), seed); 135935732d01SWei Wang 136035732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 136135732d01SWei Wang if (src) 136235732d01SWei Wang val = jhash(src, sizeof(*src), val); 136335732d01SWei Wang #endif 136435732d01SWei Wang return hash_32(val, FIB6_EXCEPTION_BUCKET_SIZE_SHIFT); 136535732d01SWei Wang } 136635732d01SWei Wang 136735732d01SWei Wang /* Helper function to find the cached rt in the hash table 136835732d01SWei Wang * and update bucket pointer to point to the bucket for this 136935732d01SWei Wang * (daddr, saddr) pair 137035732d01SWei Wang * Caller must hold rt6_exception_lock 137135732d01SWei Wang */ 137235732d01SWei Wang static struct rt6_exception * 137335732d01SWei Wang __rt6_find_exception_spinlock(struct rt6_exception_bucket **bucket, 137435732d01SWei Wang const struct in6_addr *daddr, 137535732d01SWei Wang const struct in6_addr *saddr) 137635732d01SWei Wang { 137735732d01SWei Wang struct rt6_exception *rt6_ex; 137835732d01SWei Wang u32 hval; 137935732d01SWei Wang 138035732d01SWei Wang if (!(*bucket) || !daddr) 138135732d01SWei Wang return NULL; 138235732d01SWei Wang 138335732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 138435732d01SWei Wang *bucket += hval; 138535732d01SWei Wang 138635732d01SWei Wang hlist_for_each_entry(rt6_ex, &(*bucket)->chain, hlist) { 138735732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 138835732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 138935732d01SWei Wang 139035732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 139135732d01SWei Wang if (matched && saddr) 139235732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 139335732d01SWei Wang #endif 139435732d01SWei Wang if (matched) 139535732d01SWei Wang return rt6_ex; 139635732d01SWei Wang } 139735732d01SWei Wang return NULL; 139835732d01SWei Wang } 139935732d01SWei Wang 140035732d01SWei Wang /* Helper function to find the cached rt in the hash table 140135732d01SWei Wang * and update bucket pointer to point to the bucket for this 140235732d01SWei Wang * (daddr, saddr) pair 140335732d01SWei Wang * Caller must hold rcu_read_lock() 140435732d01SWei Wang */ 140535732d01SWei Wang static struct rt6_exception * 140635732d01SWei Wang __rt6_find_exception_rcu(struct rt6_exception_bucket **bucket, 140735732d01SWei Wang const struct in6_addr *daddr, 140835732d01SWei Wang const struct in6_addr *saddr) 140935732d01SWei Wang { 141035732d01SWei Wang struct rt6_exception *rt6_ex; 141135732d01SWei Wang u32 hval; 141235732d01SWei Wang 141335732d01SWei Wang WARN_ON_ONCE(!rcu_read_lock_held()); 141435732d01SWei Wang 141535732d01SWei Wang if (!(*bucket) || !daddr) 141635732d01SWei Wang return NULL; 141735732d01SWei Wang 141835732d01SWei Wang hval = rt6_exception_hash(daddr, saddr); 141935732d01SWei Wang *bucket += hval; 142035732d01SWei Wang 142135732d01SWei Wang hlist_for_each_entry_rcu(rt6_ex, &(*bucket)->chain, hlist) { 142235732d01SWei Wang struct rt6_info *rt6 = rt6_ex->rt6i; 142335732d01SWei Wang bool matched = ipv6_addr_equal(daddr, &rt6->rt6i_dst.addr); 142435732d01SWei Wang 142535732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 142635732d01SWei Wang if (matched && saddr) 142735732d01SWei Wang matched = ipv6_addr_equal(saddr, &rt6->rt6i_src.addr); 142835732d01SWei Wang #endif 142935732d01SWei Wang if (matched) 143035732d01SWei Wang return rt6_ex; 143135732d01SWei Wang } 143235732d01SWei Wang return NULL; 143335732d01SWei Wang } 143435732d01SWei Wang 1435b748f260SDavid Ahern static unsigned int fib6_mtu(const struct fib6_result *res) 143635732d01SWei Wang { 1437b748f260SDavid Ahern const struct fib6_nh *nh = res->nh; 1438d4ead6b3SDavid Ahern unsigned int mtu; 1439d4ead6b3SDavid Ahern 1440b748f260SDavid Ahern if (res->f6i->fib6_pmtu) { 1441b748f260SDavid Ahern mtu = res->f6i->fib6_pmtu; 1442dcd1f572SDavid Ahern } else { 1443b748f260SDavid Ahern struct net_device *dev = nh->fib_nh_dev; 1444dcd1f572SDavid Ahern struct inet6_dev *idev; 1445dcd1f572SDavid Ahern 1446dcd1f572SDavid Ahern rcu_read_lock(); 1447dcd1f572SDavid Ahern idev = __in6_dev_get(dev); 1448dcd1f572SDavid Ahern mtu = idev->cnf.mtu6; 1449dcd1f572SDavid Ahern rcu_read_unlock(); 1450dcd1f572SDavid Ahern } 1451dcd1f572SDavid Ahern 1452d4ead6b3SDavid Ahern mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 1453d4ead6b3SDavid Ahern 1454b748f260SDavid Ahern return mtu - lwtunnel_headroom(nh->fib_nh_lws, mtu); 1455d4ead6b3SDavid Ahern } 1456d4ead6b3SDavid Ahern 145735732d01SWei Wang static int rt6_insert_exception(struct rt6_info *nrt, 14585012f0a5SDavid Ahern const struct fib6_result *res) 145935732d01SWei Wang { 14605e670d84SDavid Ahern struct net *net = dev_net(nrt->dst.dev); 146135732d01SWei Wang struct rt6_exception_bucket *bucket; 146235732d01SWei Wang struct in6_addr *src_key = NULL; 146335732d01SWei Wang struct rt6_exception *rt6_ex; 14645012f0a5SDavid Ahern struct fib6_info *f6i = res->f6i; 146535732d01SWei Wang int err = 0; 146635732d01SWei Wang 146735732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 146835732d01SWei Wang 14695012f0a5SDavid Ahern if (f6i->exception_bucket_flushed) { 147035732d01SWei Wang err = -EINVAL; 147135732d01SWei Wang goto out; 147235732d01SWei Wang } 147335732d01SWei Wang 14745012f0a5SDavid Ahern bucket = rcu_dereference_protected(f6i->rt6i_exception_bucket, 147535732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 147635732d01SWei Wang if (!bucket) { 147735732d01SWei Wang bucket = kcalloc(FIB6_EXCEPTION_BUCKET_SIZE, sizeof(*bucket), 147835732d01SWei Wang GFP_ATOMIC); 147935732d01SWei Wang if (!bucket) { 148035732d01SWei Wang err = -ENOMEM; 148135732d01SWei Wang goto out; 148235732d01SWei Wang } 14835012f0a5SDavid Ahern rcu_assign_pointer(f6i->rt6i_exception_bucket, bucket); 148435732d01SWei Wang } 148535732d01SWei Wang 148635732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 14875012f0a5SDavid Ahern /* fib6_src.plen != 0 indicates f6i is in subtree 148835732d01SWei Wang * and exception table is indexed by a hash of 14895012f0a5SDavid Ahern * both fib6_dst and fib6_src. 149035732d01SWei Wang * Otherwise, the exception table is indexed by 14915012f0a5SDavid Ahern * a hash of only fib6_dst. 149235732d01SWei Wang */ 14935012f0a5SDavid Ahern if (f6i->fib6_src.plen) 149435732d01SWei Wang src_key = &nrt->rt6i_src.addr; 149535732d01SWei Wang #endif 14965012f0a5SDavid Ahern /* rt6_mtu_change() might lower mtu on f6i. 1497f5bbe7eeSWei Wang * Only insert this exception route if its mtu 14985012f0a5SDavid Ahern * is less than f6i's mtu value. 1499f5bbe7eeSWei Wang */ 1500b748f260SDavid Ahern if (dst_metric_raw(&nrt->dst, RTAX_MTU) >= fib6_mtu(res)) { 1501f5bbe7eeSWei Wang err = -EINVAL; 1502f5bbe7eeSWei Wang goto out; 1503f5bbe7eeSWei Wang } 150460006a48SWei Wang 150535732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, &nrt->rt6i_dst.addr, 150635732d01SWei Wang src_key); 150735732d01SWei Wang if (rt6_ex) 150835732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 150935732d01SWei Wang 151035732d01SWei Wang rt6_ex = kzalloc(sizeof(*rt6_ex), GFP_ATOMIC); 151135732d01SWei Wang if (!rt6_ex) { 151235732d01SWei Wang err = -ENOMEM; 151335732d01SWei Wang goto out; 151435732d01SWei Wang } 151535732d01SWei Wang rt6_ex->rt6i = nrt; 151635732d01SWei Wang rt6_ex->stamp = jiffies; 151735732d01SWei Wang hlist_add_head_rcu(&rt6_ex->hlist, &bucket->chain); 151835732d01SWei Wang bucket->depth++; 151981eb8447SWei Wang net->ipv6.rt6_stats->fib_rt_cache++; 152035732d01SWei Wang 152135732d01SWei Wang if (bucket->depth > FIB6_MAX_DEPTH) 152235732d01SWei Wang rt6_exception_remove_oldest(bucket); 152335732d01SWei Wang 152435732d01SWei Wang out: 152535732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 152635732d01SWei Wang 152735732d01SWei Wang /* Update fn->fn_sernum to invalidate all cached dst */ 1528b886d5f2SPaolo Abeni if (!err) { 15295012f0a5SDavid Ahern spin_lock_bh(&f6i->fib6_table->tb6_lock); 15305012f0a5SDavid Ahern fib6_update_sernum(net, f6i); 15315012f0a5SDavid Ahern spin_unlock_bh(&f6i->fib6_table->tb6_lock); 1532b886d5f2SPaolo Abeni fib6_force_start_gc(net); 1533b886d5f2SPaolo Abeni } 153435732d01SWei Wang 153535732d01SWei Wang return err; 153635732d01SWei Wang } 153735732d01SWei Wang 15388d1c802bSDavid Ahern void rt6_flush_exceptions(struct fib6_info *rt) 153935732d01SWei Wang { 154035732d01SWei Wang struct rt6_exception_bucket *bucket; 154135732d01SWei Wang struct rt6_exception *rt6_ex; 154235732d01SWei Wang struct hlist_node *tmp; 154335732d01SWei Wang int i; 154435732d01SWei Wang 154535732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 154635732d01SWei Wang /* Prevent rt6_insert_exception() to recreate the bucket list */ 154735732d01SWei Wang rt->exception_bucket_flushed = 1; 154835732d01SWei Wang 154935732d01SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 155035732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 155135732d01SWei Wang if (!bucket) 155235732d01SWei Wang goto out; 155335732d01SWei Wang 155435732d01SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 155535732d01SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, &bucket->chain, hlist) 155635732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 155735732d01SWei Wang WARN_ON_ONCE(bucket->depth); 155835732d01SWei Wang bucket++; 155935732d01SWei Wang } 156035732d01SWei Wang 156135732d01SWei Wang out: 156235732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 156335732d01SWei Wang } 156435732d01SWei Wang 156535732d01SWei Wang /* Find cached rt in the hash table inside passed in rt 156635732d01SWei Wang * Caller has to hold rcu_read_lock() 156735732d01SWei Wang */ 15687e4b5128SDavid Ahern static struct rt6_info *rt6_find_cached_rt(const struct fib6_result *res, 156935732d01SWei Wang struct in6_addr *daddr, 157035732d01SWei Wang struct in6_addr *saddr) 157135732d01SWei Wang { 157235732d01SWei Wang struct rt6_exception_bucket *bucket; 157335732d01SWei Wang struct in6_addr *src_key = NULL; 157435732d01SWei Wang struct rt6_exception *rt6_ex; 15757e4b5128SDavid Ahern struct rt6_info *ret = NULL; 157635732d01SWei Wang 15777e4b5128SDavid Ahern bucket = rcu_dereference(res->f6i->rt6i_exception_bucket); 157835732d01SWei Wang 157935732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 15807e4b5128SDavid Ahern /* fib6i_src.plen != 0 indicates f6i is in subtree 158135732d01SWei Wang * and exception table is indexed by a hash of 15827e4b5128SDavid Ahern * both fib6_dst and fib6_src. 158335732d01SWei Wang * Otherwise, the exception table is indexed by 15847e4b5128SDavid Ahern * a hash of only fib6_dst. 158535732d01SWei Wang */ 15867e4b5128SDavid Ahern if (res->f6i->fib6_src.plen) 158735732d01SWei Wang src_key = saddr; 158835732d01SWei Wang #endif 158935732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, daddr, src_key); 159035732d01SWei Wang 159135732d01SWei Wang if (rt6_ex && !rt6_check_expired(rt6_ex->rt6i)) 15927e4b5128SDavid Ahern ret = rt6_ex->rt6i; 159335732d01SWei Wang 15947e4b5128SDavid Ahern return ret; 159535732d01SWei Wang } 159635732d01SWei Wang 159735732d01SWei Wang /* Remove the passed in cached rt from the hash table that contains it */ 159823fb93a4SDavid Ahern static int rt6_remove_exception_rt(struct rt6_info *rt) 159935732d01SWei Wang { 160035732d01SWei Wang struct rt6_exception_bucket *bucket; 160135732d01SWei Wang struct in6_addr *src_key = NULL; 160235732d01SWei Wang struct rt6_exception *rt6_ex; 16038a14e46fSDavid Ahern struct fib6_info *from; 160435732d01SWei Wang int err; 160535732d01SWei Wang 1606091311deSEric Dumazet from = rcu_dereference(rt->from); 160735732d01SWei Wang if (!from || 1608442d713bSColin Ian King !(rt->rt6i_flags & RTF_CACHE)) 160935732d01SWei Wang return -EINVAL; 161035732d01SWei Wang 161135732d01SWei Wang if (!rcu_access_pointer(from->rt6i_exception_bucket)) 161235732d01SWei Wang return -ENOENT; 161335732d01SWei Wang 161435732d01SWei Wang spin_lock_bh(&rt6_exception_lock); 161535732d01SWei Wang bucket = rcu_dereference_protected(from->rt6i_exception_bucket, 161635732d01SWei Wang lockdep_is_held(&rt6_exception_lock)); 161735732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 161835732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 161935732d01SWei Wang * and exception table is indexed by a hash of 162035732d01SWei Wang * both rt6i_dst and rt6i_src. 162135732d01SWei Wang * Otherwise, the exception table is indexed by 162235732d01SWei Wang * a hash of only rt6i_dst. 162335732d01SWei Wang */ 162493c2fb25SDavid Ahern if (from->fib6_src.plen) 162535732d01SWei Wang src_key = &rt->rt6i_src.addr; 162635732d01SWei Wang #endif 162735732d01SWei Wang rt6_ex = __rt6_find_exception_spinlock(&bucket, 162835732d01SWei Wang &rt->rt6i_dst.addr, 162935732d01SWei Wang src_key); 163035732d01SWei Wang if (rt6_ex) { 163135732d01SWei Wang rt6_remove_exception(bucket, rt6_ex); 163235732d01SWei Wang err = 0; 163335732d01SWei Wang } else { 163435732d01SWei Wang err = -ENOENT; 163535732d01SWei Wang } 163635732d01SWei Wang 163735732d01SWei Wang spin_unlock_bh(&rt6_exception_lock); 163835732d01SWei Wang return err; 163935732d01SWei Wang } 164035732d01SWei Wang 164135732d01SWei Wang /* Find rt6_ex which contains the passed in rt cache and 164235732d01SWei Wang * refresh its stamp 164335732d01SWei Wang */ 164435732d01SWei Wang static void rt6_update_exception_stamp_rt(struct rt6_info *rt) 164535732d01SWei Wang { 164635732d01SWei Wang struct rt6_exception_bucket *bucket; 164735732d01SWei Wang struct in6_addr *src_key = NULL; 164835732d01SWei Wang struct rt6_exception *rt6_ex; 1649193f3685SPaolo Abeni struct fib6_info *from; 165035732d01SWei Wang 165135732d01SWei Wang rcu_read_lock(); 1652193f3685SPaolo Abeni from = rcu_dereference(rt->from); 1653193f3685SPaolo Abeni if (!from || !(rt->rt6i_flags & RTF_CACHE)) 1654193f3685SPaolo Abeni goto unlock; 1655193f3685SPaolo Abeni 165635732d01SWei Wang bucket = rcu_dereference(from->rt6i_exception_bucket); 165735732d01SWei Wang 165835732d01SWei Wang #ifdef CONFIG_IPV6_SUBTREES 165935732d01SWei Wang /* rt6i_src.plen != 0 indicates 'from' is in subtree 166035732d01SWei Wang * and exception table is indexed by a hash of 166135732d01SWei Wang * both rt6i_dst and rt6i_src. 166235732d01SWei Wang * Otherwise, the exception table is indexed by 166335732d01SWei Wang * a hash of only rt6i_dst. 166435732d01SWei Wang */ 166593c2fb25SDavid Ahern if (from->fib6_src.plen) 166635732d01SWei Wang src_key = &rt->rt6i_src.addr; 166735732d01SWei Wang #endif 166835732d01SWei Wang rt6_ex = __rt6_find_exception_rcu(&bucket, 166935732d01SWei Wang &rt->rt6i_dst.addr, 167035732d01SWei Wang src_key); 167135732d01SWei Wang if (rt6_ex) 167235732d01SWei Wang rt6_ex->stamp = jiffies; 167335732d01SWei Wang 1674193f3685SPaolo Abeni unlock: 167535732d01SWei Wang rcu_read_unlock(); 167635732d01SWei Wang } 167735732d01SWei Wang 1678e9fa1495SStefano Brivio static bool rt6_mtu_change_route_allowed(struct inet6_dev *idev, 1679e9fa1495SStefano Brivio struct rt6_info *rt, int mtu) 1680e9fa1495SStefano Brivio { 1681e9fa1495SStefano Brivio /* If the new MTU is lower than the route PMTU, this new MTU will be the 1682e9fa1495SStefano Brivio * lowest MTU in the path: always allow updating the route PMTU to 1683e9fa1495SStefano Brivio * reflect PMTU decreases. 1684e9fa1495SStefano Brivio * 1685e9fa1495SStefano Brivio * If the new MTU is higher, and the route PMTU is equal to the local 1686e9fa1495SStefano Brivio * MTU, this means the old MTU is the lowest in the path, so allow 1687e9fa1495SStefano Brivio * updating it: if other nodes now have lower MTUs, PMTU discovery will 1688e9fa1495SStefano Brivio * handle this. 1689e9fa1495SStefano Brivio */ 1690e9fa1495SStefano Brivio 1691e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) >= mtu) 1692e9fa1495SStefano Brivio return true; 1693e9fa1495SStefano Brivio 1694e9fa1495SStefano Brivio if (dst_mtu(&rt->dst) == idev->cnf.mtu6) 1695e9fa1495SStefano Brivio return true; 1696e9fa1495SStefano Brivio 1697e9fa1495SStefano Brivio return false; 1698e9fa1495SStefano Brivio } 1699e9fa1495SStefano Brivio 1700e9fa1495SStefano Brivio static void rt6_exceptions_update_pmtu(struct inet6_dev *idev, 17018d1c802bSDavid Ahern struct fib6_info *rt, int mtu) 1702f5bbe7eeSWei Wang { 1703f5bbe7eeSWei Wang struct rt6_exception_bucket *bucket; 1704f5bbe7eeSWei Wang struct rt6_exception *rt6_ex; 1705f5bbe7eeSWei Wang int i; 1706f5bbe7eeSWei Wang 1707f5bbe7eeSWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1708f5bbe7eeSWei Wang lockdep_is_held(&rt6_exception_lock)); 1709f5bbe7eeSWei Wang 1710e9fa1495SStefano Brivio if (!bucket) 1711e9fa1495SStefano Brivio return; 1712e9fa1495SStefano Brivio 1713f5bbe7eeSWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1714f5bbe7eeSWei Wang hlist_for_each_entry(rt6_ex, &bucket->chain, hlist) { 1715f5bbe7eeSWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1716e9fa1495SStefano Brivio 1717e9fa1495SStefano Brivio /* For RTF_CACHE with rt6i_pmtu == 0 (i.e. a redirected 1718d4ead6b3SDavid Ahern * route), the metrics of its rt->from have already 1719f5bbe7eeSWei Wang * been updated. 1720f5bbe7eeSWei Wang */ 1721d4ead6b3SDavid Ahern if (dst_metric_raw(&entry->dst, RTAX_MTU) && 1722e9fa1495SStefano Brivio rt6_mtu_change_route_allowed(idev, entry, mtu)) 1723d4ead6b3SDavid Ahern dst_metric_set(&entry->dst, RTAX_MTU, mtu); 1724f5bbe7eeSWei Wang } 1725f5bbe7eeSWei Wang bucket++; 1726f5bbe7eeSWei Wang } 1727f5bbe7eeSWei Wang } 1728f5bbe7eeSWei Wang 1729b16cb459SWei Wang #define RTF_CACHE_GATEWAY (RTF_GATEWAY | RTF_CACHE) 1730b16cb459SWei Wang 17318d1c802bSDavid Ahern static void rt6_exceptions_clean_tohost(struct fib6_info *rt, 1732b16cb459SWei Wang struct in6_addr *gateway) 1733b16cb459SWei Wang { 1734b16cb459SWei Wang struct rt6_exception_bucket *bucket; 1735b16cb459SWei Wang struct rt6_exception *rt6_ex; 1736b16cb459SWei Wang struct hlist_node *tmp; 1737b16cb459SWei Wang int i; 1738b16cb459SWei Wang 1739b16cb459SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1740b16cb459SWei Wang return; 1741b16cb459SWei Wang 1742b16cb459SWei Wang spin_lock_bh(&rt6_exception_lock); 1743b16cb459SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1744b16cb459SWei Wang lockdep_is_held(&rt6_exception_lock)); 1745b16cb459SWei Wang 1746b16cb459SWei Wang if (bucket) { 1747b16cb459SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1748b16cb459SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1749b16cb459SWei Wang &bucket->chain, hlist) { 1750b16cb459SWei Wang struct rt6_info *entry = rt6_ex->rt6i; 1751b16cb459SWei Wang 1752b16cb459SWei Wang if ((entry->rt6i_flags & RTF_CACHE_GATEWAY) == 1753b16cb459SWei Wang RTF_CACHE_GATEWAY && 1754b16cb459SWei Wang ipv6_addr_equal(gateway, 1755b16cb459SWei Wang &entry->rt6i_gateway)) { 1756b16cb459SWei Wang rt6_remove_exception(bucket, rt6_ex); 1757b16cb459SWei Wang } 1758b16cb459SWei Wang } 1759b16cb459SWei Wang bucket++; 1760b16cb459SWei Wang } 1761b16cb459SWei Wang } 1762b16cb459SWei Wang 1763b16cb459SWei Wang spin_unlock_bh(&rt6_exception_lock); 1764b16cb459SWei Wang } 1765b16cb459SWei Wang 1766c757faa8SWei Wang static void rt6_age_examine_exception(struct rt6_exception_bucket *bucket, 1767c757faa8SWei Wang struct rt6_exception *rt6_ex, 1768c757faa8SWei Wang struct fib6_gc_args *gc_args, 1769c757faa8SWei Wang unsigned long now) 1770c757faa8SWei Wang { 1771c757faa8SWei Wang struct rt6_info *rt = rt6_ex->rt6i; 1772c757faa8SWei Wang 17731859bac0SPaolo Abeni /* we are pruning and obsoleting aged-out and non gateway exceptions 17741859bac0SPaolo Abeni * even if others have still references to them, so that on next 17751859bac0SPaolo Abeni * dst_check() such references can be dropped. 17761859bac0SPaolo Abeni * EXPIRES exceptions - e.g. pmtu-generated ones are pruned when 17771859bac0SPaolo Abeni * expired, independently from their aging, as per RFC 8201 section 4 17781859bac0SPaolo Abeni */ 177931afeb42SWei Wang if (!(rt->rt6i_flags & RTF_EXPIRES)) { 178031afeb42SWei Wang if (time_after_eq(now, rt->dst.lastuse + gc_args->timeout)) { 1781c757faa8SWei Wang RT6_TRACE("aging clone %p\n", rt); 1782c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1783c757faa8SWei Wang return; 178431afeb42SWei Wang } 178531afeb42SWei Wang } else if (time_after(jiffies, rt->dst.expires)) { 178631afeb42SWei Wang RT6_TRACE("purging expired route %p\n", rt); 178731afeb42SWei Wang rt6_remove_exception(bucket, rt6_ex); 178831afeb42SWei Wang return; 178931afeb42SWei Wang } 179031afeb42SWei Wang 179131afeb42SWei Wang if (rt->rt6i_flags & RTF_GATEWAY) { 1792c757faa8SWei Wang struct neighbour *neigh; 1793c757faa8SWei Wang __u8 neigh_flags = 0; 1794c757faa8SWei Wang 17951bfa26ffSEric Dumazet neigh = __ipv6_neigh_lookup_noref(rt->dst.dev, &rt->rt6i_gateway); 17961bfa26ffSEric Dumazet if (neigh) 1797c757faa8SWei Wang neigh_flags = neigh->flags; 17981bfa26ffSEric Dumazet 1799c757faa8SWei Wang if (!(neigh_flags & NTF_ROUTER)) { 1800c757faa8SWei Wang RT6_TRACE("purging route %p via non-router but gateway\n", 1801c757faa8SWei Wang rt); 1802c757faa8SWei Wang rt6_remove_exception(bucket, rt6_ex); 1803c757faa8SWei Wang return; 1804c757faa8SWei Wang } 1805c757faa8SWei Wang } 180631afeb42SWei Wang 1807c757faa8SWei Wang gc_args->more++; 1808c757faa8SWei Wang } 1809c757faa8SWei Wang 18108d1c802bSDavid Ahern void rt6_age_exceptions(struct fib6_info *rt, 1811c757faa8SWei Wang struct fib6_gc_args *gc_args, 1812c757faa8SWei Wang unsigned long now) 1813c757faa8SWei Wang { 1814c757faa8SWei Wang struct rt6_exception_bucket *bucket; 1815c757faa8SWei Wang struct rt6_exception *rt6_ex; 1816c757faa8SWei Wang struct hlist_node *tmp; 1817c757faa8SWei Wang int i; 1818c757faa8SWei Wang 1819c757faa8SWei Wang if (!rcu_access_pointer(rt->rt6i_exception_bucket)) 1820c757faa8SWei Wang return; 1821c757faa8SWei Wang 18221bfa26ffSEric Dumazet rcu_read_lock_bh(); 18231bfa26ffSEric Dumazet spin_lock(&rt6_exception_lock); 1824c757faa8SWei Wang bucket = rcu_dereference_protected(rt->rt6i_exception_bucket, 1825c757faa8SWei Wang lockdep_is_held(&rt6_exception_lock)); 1826c757faa8SWei Wang 1827c757faa8SWei Wang if (bucket) { 1828c757faa8SWei Wang for (i = 0; i < FIB6_EXCEPTION_BUCKET_SIZE; i++) { 1829c757faa8SWei Wang hlist_for_each_entry_safe(rt6_ex, tmp, 1830c757faa8SWei Wang &bucket->chain, hlist) { 1831c757faa8SWei Wang rt6_age_examine_exception(bucket, rt6_ex, 1832c757faa8SWei Wang gc_args, now); 1833c757faa8SWei Wang } 1834c757faa8SWei Wang bucket++; 1835c757faa8SWei Wang } 1836c757faa8SWei Wang } 18371bfa26ffSEric Dumazet spin_unlock(&rt6_exception_lock); 18381bfa26ffSEric Dumazet rcu_read_unlock_bh(); 1839c757faa8SWei Wang } 1840c757faa8SWei Wang 18411d053da9SDavid Ahern /* must be called with rcu lock held */ 1842*effda4ddSDavid Ahern int fib6_table_lookup(struct net *net, struct fib6_table *table, int oif, 1843*effda4ddSDavid Ahern struct flowi6 *fl6, struct fib6_result *res, int strict) 18441da177e4SLinus Torvalds { 1845367efcb9SMartin KaFai Lau struct fib6_node *fn, *saved_fn; 18461da177e4SLinus Torvalds 18476454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 1848367efcb9SMartin KaFai Lau saved_fn = fn; 18491da177e4SLinus Torvalds 1850ca254490SDavid Ahern if (fl6->flowi6_flags & FLOWI_FLAG_SKIP_NH_OIF) 1851ca254490SDavid Ahern oif = 0; 1852ca254490SDavid Ahern 1853a3c00e46SMartin KaFai Lau redo_rt6_select: 1854*effda4ddSDavid Ahern rt6_select(net, fn, oif, res, strict); 1855*effda4ddSDavid Ahern if (res->f6i == net->ipv6.fib6_null_entry) { 1856a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 1857a3c00e46SMartin KaFai Lau if (fn) 1858a3c00e46SMartin KaFai Lau goto redo_rt6_select; 1859367efcb9SMartin KaFai Lau else if (strict & RT6_LOOKUP_F_REACHABLE) { 1860367efcb9SMartin KaFai Lau /* also consider unreachable route */ 1861367efcb9SMartin KaFai Lau strict &= ~RT6_LOOKUP_F_REACHABLE; 1862367efcb9SMartin KaFai Lau fn = saved_fn; 1863367efcb9SMartin KaFai Lau goto redo_rt6_select; 1864367efcb9SMartin KaFai Lau } 1865a3c00e46SMartin KaFai Lau } 1866a3c00e46SMartin KaFai Lau 1867*effda4ddSDavid Ahern trace_fib6_table_lookup(net, res, table, fl6); 1868d52d3997SMartin KaFai Lau 1869*effda4ddSDavid Ahern return 0; 18701d053da9SDavid Ahern } 18711d053da9SDavid Ahern 18721d053da9SDavid Ahern struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, 18731d053da9SDavid Ahern int oif, struct flowi6 *fl6, 18741d053da9SDavid Ahern const struct sk_buff *skb, int flags) 18751d053da9SDavid Ahern { 1876b1d40991SDavid Ahern struct fib6_result res = {}; 18771d053da9SDavid Ahern struct rt6_info *rt; 18781d053da9SDavid Ahern int strict = 0; 18791d053da9SDavid Ahern 18801d053da9SDavid Ahern strict |= flags & RT6_LOOKUP_F_IFACE; 18811d053da9SDavid Ahern strict |= flags & RT6_LOOKUP_F_IGNORE_LINKSTATE; 18821d053da9SDavid Ahern if (net->ipv6.devconf_all->forwarding == 0) 18831d053da9SDavid Ahern strict |= RT6_LOOKUP_F_REACHABLE; 18841d053da9SDavid Ahern 18851d053da9SDavid Ahern rcu_read_lock(); 18861d053da9SDavid Ahern 1887*effda4ddSDavid Ahern fib6_table_lookup(net, table, oif, fl6, &res, strict); 1888b1d40991SDavid Ahern if (res.f6i == net->ipv6.fib6_null_entry) { 1889421842edSDavid Ahern rt = net->ipv6.ip6_null_entry; 189066f5d6ceSWei Wang rcu_read_unlock(); 1891d3843fe5SWei Wang dst_hold(&rt->dst); 1892d3843fe5SWei Wang return rt; 1893d3843fe5SWei Wang } 189423fb93a4SDavid Ahern 1895b1d40991SDavid Ahern fib6_select_path(net, &res, fl6, oif, false, skb, strict); 1896d83009d4SDavid Ahern 189723fb93a4SDavid Ahern /*Search through exception table */ 18987e4b5128SDavid Ahern rt = rt6_find_cached_rt(&res, &fl6->daddr, &fl6->saddr); 189923fb93a4SDavid Ahern if (rt) { 190010585b43SDavid Ahern if (ip6_hold_safe(net, &rt)) 19011da177e4SLinus Torvalds dst_use_noref(&rt->dst, jiffies); 1902d4ead6b3SDavid Ahern 190366f5d6ceSWei Wang rcu_read_unlock(); 1904d52d3997SMartin KaFai Lau return rt; 19053da59bd9SMartin KaFai Lau } else if (unlikely((fl6->flowi6_flags & FLOWI_FLAG_KNOWN_NH) && 1906b1d40991SDavid Ahern !res.nh->fib_nh_gw_family)) { 19073da59bd9SMartin KaFai Lau /* Create a RTF_CACHE clone which will not be 19083da59bd9SMartin KaFai Lau * owned by the fib6 tree. It is for the special case where 19093da59bd9SMartin KaFai Lau * the daddr in the skb during the neighbor look-up is different 19103da59bd9SMartin KaFai Lau * from the fl6->daddr used to look-up route here. 19113da59bd9SMartin KaFai Lau */ 19123da59bd9SMartin KaFai Lau struct rt6_info *uncached_rt; 19133da59bd9SMartin KaFai Lau 191485bd05deSDavid Ahern uncached_rt = ip6_rt_cache_alloc(&res, &fl6->daddr, NULL); 1915d52d3997SMartin KaFai Lau 19164d85cd0cSDavid Ahern rcu_read_unlock(); 19173da59bd9SMartin KaFai Lau 19181cfb71eeSWei Wang if (uncached_rt) { 19191cfb71eeSWei Wang /* Uncached_rt's refcnt is taken during ip6_rt_cache_alloc() 19201cfb71eeSWei Wang * No need for another dst_hold() 19211cfb71eeSWei Wang */ 19228d0b94afSMartin KaFai Lau rt6_uncached_list_add(uncached_rt); 192381eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 19241cfb71eeSWei Wang } else { 19253da59bd9SMartin KaFai Lau uncached_rt = net->ipv6.ip6_null_entry; 19263da59bd9SMartin KaFai Lau dst_hold(&uncached_rt->dst); 19271cfb71eeSWei Wang } 1928b811580dSDavid Ahern 19293da59bd9SMartin KaFai Lau return uncached_rt; 1930d52d3997SMartin KaFai Lau } else { 1931d52d3997SMartin KaFai Lau /* Get a percpu copy */ 1932d52d3997SMartin KaFai Lau 1933d52d3997SMartin KaFai Lau struct rt6_info *pcpu_rt; 1934d52d3997SMartin KaFai Lau 1935951f788aSEric Dumazet local_bh_disable(); 1936db3fedeeSDavid Ahern pcpu_rt = rt6_get_pcpu_route(&res); 1937d52d3997SMartin KaFai Lau 193893531c67SDavid Ahern if (!pcpu_rt) 1939db3fedeeSDavid Ahern pcpu_rt = rt6_make_pcpu_route(net, &res); 194093531c67SDavid Ahern 1941951f788aSEric Dumazet local_bh_enable(); 1942951f788aSEric Dumazet rcu_read_unlock(); 1943d4bea421SDavid Ahern 1944d52d3997SMartin KaFai Lau return pcpu_rt; 1945d52d3997SMartin KaFai Lau } 1946c71099acSThomas Graf } 19479ff74384SDavid Ahern EXPORT_SYMBOL_GPL(ip6_pol_route); 1948c71099acSThomas Graf 1949b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_input(struct net *net, 1950b75cc8f9SDavid Ahern struct fib6_table *table, 1951b75cc8f9SDavid Ahern struct flowi6 *fl6, 1952b75cc8f9SDavid Ahern const struct sk_buff *skb, 1953b75cc8f9SDavid Ahern int flags) 19544acad72dSPavel Emelyanov { 1955b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_iif, fl6, skb, flags); 19564acad72dSPavel Emelyanov } 19574acad72dSPavel Emelyanov 1958d409b847SMahesh Bandewar struct dst_entry *ip6_route_input_lookup(struct net *net, 195972331bc0SShmulik Ladkani struct net_device *dev, 1960b75cc8f9SDavid Ahern struct flowi6 *fl6, 1961b75cc8f9SDavid Ahern const struct sk_buff *skb, 1962b75cc8f9SDavid Ahern int flags) 196372331bc0SShmulik Ladkani { 196472331bc0SShmulik Ladkani if (rt6_need_strict(&fl6->daddr) && dev->type != ARPHRD_PIMREG) 196572331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_IFACE; 196672331bc0SShmulik Ladkani 1967b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, skb, flags, ip6_pol_route_input); 196872331bc0SShmulik Ladkani } 1969d409b847SMahesh Bandewar EXPORT_SYMBOL_GPL(ip6_route_input_lookup); 197072331bc0SShmulik Ladkani 197123aebdacSJakub Sitnicki static void ip6_multipath_l3_keys(const struct sk_buff *skb, 19725e5d6fedSRoopa Prabhu struct flow_keys *keys, 19735e5d6fedSRoopa Prabhu struct flow_keys *flkeys) 197423aebdacSJakub Sitnicki { 197523aebdacSJakub Sitnicki const struct ipv6hdr *outer_iph = ipv6_hdr(skb); 197623aebdacSJakub Sitnicki const struct ipv6hdr *key_iph = outer_iph; 19775e5d6fedSRoopa Prabhu struct flow_keys *_flkeys = flkeys; 197823aebdacSJakub Sitnicki const struct ipv6hdr *inner_iph; 197923aebdacSJakub Sitnicki const struct icmp6hdr *icmph; 198023aebdacSJakub Sitnicki struct ipv6hdr _inner_iph; 1981cea67a2dSEric Dumazet struct icmp6hdr _icmph; 198223aebdacSJakub Sitnicki 198323aebdacSJakub Sitnicki if (likely(outer_iph->nexthdr != IPPROTO_ICMPV6)) 198423aebdacSJakub Sitnicki goto out; 198523aebdacSJakub Sitnicki 1986cea67a2dSEric Dumazet icmph = skb_header_pointer(skb, skb_transport_offset(skb), 1987cea67a2dSEric Dumazet sizeof(_icmph), &_icmph); 1988cea67a2dSEric Dumazet if (!icmph) 1989cea67a2dSEric Dumazet goto out; 1990cea67a2dSEric Dumazet 199123aebdacSJakub Sitnicki if (icmph->icmp6_type != ICMPV6_DEST_UNREACH && 199223aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PKT_TOOBIG && 199323aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_TIME_EXCEED && 199423aebdacSJakub Sitnicki icmph->icmp6_type != ICMPV6_PARAMPROB) 199523aebdacSJakub Sitnicki goto out; 199623aebdacSJakub Sitnicki 199723aebdacSJakub Sitnicki inner_iph = skb_header_pointer(skb, 199823aebdacSJakub Sitnicki skb_transport_offset(skb) + sizeof(*icmph), 199923aebdacSJakub Sitnicki sizeof(_inner_iph), &_inner_iph); 200023aebdacSJakub Sitnicki if (!inner_iph) 200123aebdacSJakub Sitnicki goto out; 200223aebdacSJakub Sitnicki 200323aebdacSJakub Sitnicki key_iph = inner_iph; 20045e5d6fedSRoopa Prabhu _flkeys = NULL; 200523aebdacSJakub Sitnicki out: 20065e5d6fedSRoopa Prabhu if (_flkeys) { 20075e5d6fedSRoopa Prabhu keys->addrs.v6addrs.src = _flkeys->addrs.v6addrs.src; 20085e5d6fedSRoopa Prabhu keys->addrs.v6addrs.dst = _flkeys->addrs.v6addrs.dst; 20095e5d6fedSRoopa Prabhu keys->tags.flow_label = _flkeys->tags.flow_label; 20105e5d6fedSRoopa Prabhu keys->basic.ip_proto = _flkeys->basic.ip_proto; 20115e5d6fedSRoopa Prabhu } else { 201223aebdacSJakub Sitnicki keys->addrs.v6addrs.src = key_iph->saddr; 201323aebdacSJakub Sitnicki keys->addrs.v6addrs.dst = key_iph->daddr; 2014fa1be7e0SMichal Kubecek keys->tags.flow_label = ip6_flowlabel(key_iph); 201523aebdacSJakub Sitnicki keys->basic.ip_proto = key_iph->nexthdr; 201623aebdacSJakub Sitnicki } 20175e5d6fedSRoopa Prabhu } 201823aebdacSJakub Sitnicki 201923aebdacSJakub Sitnicki /* if skb is set it will be used and fl6 can be NULL */ 2020b4bac172SDavid Ahern u32 rt6_multipath_hash(const struct net *net, const struct flowi6 *fl6, 2021b4bac172SDavid Ahern const struct sk_buff *skb, struct flow_keys *flkeys) 202223aebdacSJakub Sitnicki { 202323aebdacSJakub Sitnicki struct flow_keys hash_keys; 20249a2a537aSDavid Ahern u32 mhash; 202523aebdacSJakub Sitnicki 2026bbfa047aSDavid S. Miller switch (ip6_multipath_hash_policy(net)) { 2027b4bac172SDavid Ahern case 0: 20286f74b6c2SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 20296f74b6c2SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 20309a2a537aSDavid Ahern if (skb) { 20315e5d6fedSRoopa Prabhu ip6_multipath_l3_keys(skb, &hash_keys, flkeys); 20329a2a537aSDavid Ahern } else { 20339a2a537aSDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 20349a2a537aSDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 2035fa1be7e0SMichal Kubecek hash_keys.tags.flow_label = (__force u32)flowi6_get_flowlabel(fl6); 20369a2a537aSDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 203723aebdacSJakub Sitnicki } 2038b4bac172SDavid Ahern break; 2039b4bac172SDavid Ahern case 1: 2040b4bac172SDavid Ahern if (skb) { 2041b4bac172SDavid Ahern unsigned int flag = FLOW_DISSECTOR_F_STOP_AT_ENCAP; 2042b4bac172SDavid Ahern struct flow_keys keys; 2043b4bac172SDavid Ahern 2044b4bac172SDavid Ahern /* short-circuit if we already have L4 hash present */ 2045b4bac172SDavid Ahern if (skb->l4_hash) 2046b4bac172SDavid Ahern return skb_get_hash_raw(skb) >> 1; 2047b4bac172SDavid Ahern 2048b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 2049b4bac172SDavid Ahern 2050b4bac172SDavid Ahern if (!flkeys) { 2051b4bac172SDavid Ahern skb_flow_dissect_flow_keys(skb, &keys, flag); 2052b4bac172SDavid Ahern flkeys = &keys; 2053b4bac172SDavid Ahern } 2054b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 2055b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = flkeys->addrs.v6addrs.src; 2056b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = flkeys->addrs.v6addrs.dst; 2057b4bac172SDavid Ahern hash_keys.ports.src = flkeys->ports.src; 2058b4bac172SDavid Ahern hash_keys.ports.dst = flkeys->ports.dst; 2059b4bac172SDavid Ahern hash_keys.basic.ip_proto = flkeys->basic.ip_proto; 2060b4bac172SDavid Ahern } else { 2061b4bac172SDavid Ahern memset(&hash_keys, 0, sizeof(hash_keys)); 2062b4bac172SDavid Ahern hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS; 2063b4bac172SDavid Ahern hash_keys.addrs.v6addrs.src = fl6->saddr; 2064b4bac172SDavid Ahern hash_keys.addrs.v6addrs.dst = fl6->daddr; 2065b4bac172SDavid Ahern hash_keys.ports.src = fl6->fl6_sport; 2066b4bac172SDavid Ahern hash_keys.ports.dst = fl6->fl6_dport; 2067b4bac172SDavid Ahern hash_keys.basic.ip_proto = fl6->flowi6_proto; 2068b4bac172SDavid Ahern } 2069b4bac172SDavid Ahern break; 2070b4bac172SDavid Ahern } 20719a2a537aSDavid Ahern mhash = flow_hash_from_keys(&hash_keys); 207223aebdacSJakub Sitnicki 20739a2a537aSDavid Ahern return mhash >> 1; 207423aebdacSJakub Sitnicki } 207523aebdacSJakub Sitnicki 2076c71099acSThomas Graf void ip6_route_input(struct sk_buff *skb) 2077c71099acSThomas Graf { 2078b71d1d42SEric Dumazet const struct ipv6hdr *iph = ipv6_hdr(skb); 2079c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(skb->dev); 2080adaa70bbSThomas Graf int flags = RT6_LOOKUP_F_HAS_SADDR; 2081904af04dSJiri Benc struct ip_tunnel_info *tun_info; 20824c9483b2SDavid S. Miller struct flowi6 fl6 = { 2083e0d56fddSDavid Ahern .flowi6_iif = skb->dev->ifindex, 20844c9483b2SDavid S. Miller .daddr = iph->daddr, 20854c9483b2SDavid S. Miller .saddr = iph->saddr, 20866502ca52SYOSHIFUJI Hideaki / 吉藤英明 .flowlabel = ip6_flowinfo(iph), 20874c9483b2SDavid S. Miller .flowi6_mark = skb->mark, 20884c9483b2SDavid S. Miller .flowi6_proto = iph->nexthdr, 2089c71099acSThomas Graf }; 20905e5d6fedSRoopa Prabhu struct flow_keys *flkeys = NULL, _flkeys; 2091adaa70bbSThomas Graf 2092904af04dSJiri Benc tun_info = skb_tunnel_info(skb); 209346fa062aSJiri Benc if (tun_info && !(tun_info->mode & IP_TUNNEL_INFO_TX)) 2094904af04dSJiri Benc fl6.flowi6_tun_key.tun_id = tun_info->key.tun_id; 20955e5d6fedSRoopa Prabhu 20965e5d6fedSRoopa Prabhu if (fib6_rules_early_flow_dissect(net, skb, &fl6, &_flkeys)) 20975e5d6fedSRoopa Prabhu flkeys = &_flkeys; 20985e5d6fedSRoopa Prabhu 209923aebdacSJakub Sitnicki if (unlikely(fl6.flowi6_proto == IPPROTO_ICMPV6)) 2100b4bac172SDavid Ahern fl6.mp_hash = rt6_multipath_hash(net, &fl6, skb, flkeys); 210106e9d040SJiri Benc skb_dst_drop(skb); 2102b75cc8f9SDavid Ahern skb_dst_set(skb, 2103b75cc8f9SDavid Ahern ip6_route_input_lookup(net, skb->dev, &fl6, skb, flags)); 2104c71099acSThomas Graf } 2105c71099acSThomas Graf 2106b75cc8f9SDavid Ahern static struct rt6_info *ip6_pol_route_output(struct net *net, 2107b75cc8f9SDavid Ahern struct fib6_table *table, 2108b75cc8f9SDavid Ahern struct flowi6 *fl6, 2109b75cc8f9SDavid Ahern const struct sk_buff *skb, 2110b75cc8f9SDavid Ahern int flags) 2111c71099acSThomas Graf { 2112b75cc8f9SDavid Ahern return ip6_pol_route(net, table, fl6->flowi6_oif, fl6, skb, flags); 2113c71099acSThomas Graf } 2114c71099acSThomas Graf 21156f21c96aSPaolo Abeni struct dst_entry *ip6_route_output_flags(struct net *net, const struct sock *sk, 21166f21c96aSPaolo Abeni struct flowi6 *fl6, int flags) 2117c71099acSThomas Graf { 2118d46a9d67SDavid Ahern bool any_src; 2119c71099acSThomas Graf 21203ede0bbcSRobert Shearman if (ipv6_addr_type(&fl6->daddr) & 21213ede0bbcSRobert Shearman (IPV6_ADDR_MULTICAST | IPV6_ADDR_LINKLOCAL)) { 21224c1feac5SDavid Ahern struct dst_entry *dst; 21234c1feac5SDavid Ahern 21244c1feac5SDavid Ahern dst = l3mdev_link_scope_lookup(net, fl6); 2125ca254490SDavid Ahern if (dst) 2126ca254490SDavid Ahern return dst; 21274c1feac5SDavid Ahern } 2128ca254490SDavid Ahern 21291fb9489bSPavel Emelyanov fl6->flowi6_iif = LOOPBACK_IFINDEX; 21304dc27d1cSDavid McCullough 2131d46a9d67SDavid Ahern any_src = ipv6_addr_any(&fl6->saddr); 2132741a11d9SDavid Ahern if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl6->daddr) || 2133d46a9d67SDavid Ahern (fl6->flowi6_oif && any_src)) 213477d16f45SYOSHIFUJI Hideaki flags |= RT6_LOOKUP_F_IFACE; 2135c71099acSThomas Graf 2136d46a9d67SDavid Ahern if (!any_src) 2137adaa70bbSThomas Graf flags |= RT6_LOOKUP_F_HAS_SADDR; 21380c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 else if (sk) 21390c9a2ac1SYOSHIFUJI Hideaki / 吉藤英明 flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs); 2140adaa70bbSThomas Graf 2141b75cc8f9SDavid Ahern return fib6_rule_lookup(net, fl6, NULL, flags, ip6_pol_route_output); 21421da177e4SLinus Torvalds } 21436f21c96aSPaolo Abeni EXPORT_SYMBOL_GPL(ip6_route_output_flags); 21441da177e4SLinus Torvalds 21452774c131SDavid S. Miller struct dst_entry *ip6_blackhole_route(struct net *net, struct dst_entry *dst_orig) 214614e50e57SDavid S. Miller { 21475c1e6aa3SDavid S. Miller struct rt6_info *rt, *ort = (struct rt6_info *) dst_orig; 21481dbe3252SWei Wang struct net_device *loopback_dev = net->loopback_dev; 214914e50e57SDavid S. Miller struct dst_entry *new = NULL; 215014e50e57SDavid S. Miller 21511dbe3252SWei Wang rt = dst_alloc(&ip6_dst_blackhole_ops, loopback_dev, 1, 215262cf27e5SSteffen Klassert DST_OBSOLETE_DEAD, 0); 215314e50e57SDavid S. Miller if (rt) { 21540a1f5962SMartin KaFai Lau rt6_info_init(rt); 215581eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_alloc); 21560a1f5962SMartin KaFai Lau 2157d8d1f30bSChangli Gao new = &rt->dst; 215814e50e57SDavid S. Miller new->__use = 1; 2159352e512cSHerbert Xu new->input = dst_discard; 2160ede2059dSEric W. Biederman new->output = dst_discard_out; 216114e50e57SDavid S. Miller 2162defb3519SDavid S. Miller dst_copy_metrics(new, &ort->dst); 216314e50e57SDavid S. Miller 21641dbe3252SWei Wang rt->rt6i_idev = in6_dev_get(loopback_dev); 21654e3fd7a0SAlexey Dobriyan rt->rt6i_gateway = ort->rt6i_gateway; 21660a1f5962SMartin KaFai Lau rt->rt6i_flags = ort->rt6i_flags & ~RTF_PCPU; 216714e50e57SDavid S. Miller 216814e50e57SDavid S. Miller memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key)); 216914e50e57SDavid S. Miller #ifdef CONFIG_IPV6_SUBTREES 217014e50e57SDavid S. Miller memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key)); 217114e50e57SDavid S. Miller #endif 217214e50e57SDavid S. Miller } 217314e50e57SDavid S. Miller 217469ead7afSDavid S. Miller dst_release(dst_orig); 217569ead7afSDavid S. Miller return new ? new : ERR_PTR(-ENOMEM); 217614e50e57SDavid S. Miller } 217714e50e57SDavid S. Miller 21781da177e4SLinus Torvalds /* 21791da177e4SLinus Torvalds * Destination cache support functions 21801da177e4SLinus Torvalds */ 21811da177e4SLinus Torvalds 21828d1c802bSDavid Ahern static bool fib6_check(struct fib6_info *f6i, u32 cookie) 21833da59bd9SMartin KaFai Lau { 218436143645SSteffen Klassert u32 rt_cookie = 0; 2185c5cff856SWei Wang 21868ae86971SDavid Ahern if (!fib6_get_cookie_safe(f6i, &rt_cookie) || rt_cookie != cookie) 218793531c67SDavid Ahern return false; 218893531c67SDavid Ahern 218993531c67SDavid Ahern if (fib6_check_expired(f6i)) 219093531c67SDavid Ahern return false; 219193531c67SDavid Ahern 219293531c67SDavid Ahern return true; 219393531c67SDavid Ahern } 219493531c67SDavid Ahern 2195a68886a6SDavid Ahern static struct dst_entry *rt6_check(struct rt6_info *rt, 2196a68886a6SDavid Ahern struct fib6_info *from, 2197a68886a6SDavid Ahern u32 cookie) 21983da59bd9SMartin KaFai Lau { 2199c5cff856SWei Wang u32 rt_cookie = 0; 2200c5cff856SWei Wang 2201a68886a6SDavid Ahern if ((from && !fib6_get_cookie_safe(from, &rt_cookie)) || 220293531c67SDavid Ahern rt_cookie != cookie) 22033da59bd9SMartin KaFai Lau return NULL; 22043da59bd9SMartin KaFai Lau 22053da59bd9SMartin KaFai Lau if (rt6_check_expired(rt)) 22063da59bd9SMartin KaFai Lau return NULL; 22073da59bd9SMartin KaFai Lau 22083da59bd9SMartin KaFai Lau return &rt->dst; 22093da59bd9SMartin KaFai Lau } 22103da59bd9SMartin KaFai Lau 2211a68886a6SDavid Ahern static struct dst_entry *rt6_dst_from_check(struct rt6_info *rt, 2212a68886a6SDavid Ahern struct fib6_info *from, 2213a68886a6SDavid Ahern u32 cookie) 22143da59bd9SMartin KaFai Lau { 22155973fb1eSMartin KaFai Lau if (!__rt6_check_expired(rt) && 22165973fb1eSMartin KaFai Lau rt->dst.obsolete == DST_OBSOLETE_FORCE_CHK && 2217a68886a6SDavid Ahern fib6_check(from, cookie)) 22183da59bd9SMartin KaFai Lau return &rt->dst; 22193da59bd9SMartin KaFai Lau else 22203da59bd9SMartin KaFai Lau return NULL; 22213da59bd9SMartin KaFai Lau } 22223da59bd9SMartin KaFai Lau 22231da177e4SLinus Torvalds static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie) 22241da177e4SLinus Torvalds { 2225a87b7dc9SDavid Ahern struct dst_entry *dst_ret; 2226a68886a6SDavid Ahern struct fib6_info *from; 22271da177e4SLinus Torvalds struct rt6_info *rt; 22281da177e4SLinus Torvalds 2229a87b7dc9SDavid Ahern rt = container_of(dst, struct rt6_info, dst); 2230a87b7dc9SDavid Ahern 2231a87b7dc9SDavid Ahern rcu_read_lock(); 22321da177e4SLinus Torvalds 22336f3118b5SNicolas Dichtel /* All IPV6 dsts are created with ->obsolete set to the value 22346f3118b5SNicolas Dichtel * DST_OBSOLETE_FORCE_CHK which forces validation calls down 22356f3118b5SNicolas Dichtel * into this function always. 22366f3118b5SNicolas Dichtel */ 2237e3bc10bdSHannes Frederic Sowa 2238a68886a6SDavid Ahern from = rcu_dereference(rt->from); 22394b32b5adSMartin KaFai Lau 2240a68886a6SDavid Ahern if (from && (rt->rt6i_flags & RTF_PCPU || 2241a68886a6SDavid Ahern unlikely(!list_empty(&rt->rt6i_uncached)))) 2242a68886a6SDavid Ahern dst_ret = rt6_dst_from_check(rt, from, cookie); 22433da59bd9SMartin KaFai Lau else 2244a68886a6SDavid Ahern dst_ret = rt6_check(rt, from, cookie); 2245a87b7dc9SDavid Ahern 2246a87b7dc9SDavid Ahern rcu_read_unlock(); 2247a87b7dc9SDavid Ahern 2248a87b7dc9SDavid Ahern return dst_ret; 22491da177e4SLinus Torvalds } 22501da177e4SLinus Torvalds 22511da177e4SLinus Torvalds static struct dst_entry *ip6_negative_advice(struct dst_entry *dst) 22521da177e4SLinus Torvalds { 22531da177e4SLinus Torvalds struct rt6_info *rt = (struct rt6_info *) dst; 22541da177e4SLinus Torvalds 22551da177e4SLinus Torvalds if (rt) { 225654c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt->rt6i_flags & RTF_CACHE) { 2257c3c14da0SDavid Ahern rcu_read_lock(); 225854c1a859SYOSHIFUJI Hideaki / 吉藤英明 if (rt6_check_expired(rt)) { 225993531c67SDavid Ahern rt6_remove_exception_rt(rt); 226054c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 22611da177e4SLinus Torvalds } 2262c3c14da0SDavid Ahern rcu_read_unlock(); 226354c1a859SYOSHIFUJI Hideaki / 吉藤英明 } else { 226454c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst_release(dst); 226554c1a859SYOSHIFUJI Hideaki / 吉藤英明 dst = NULL; 226654c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 226754c1a859SYOSHIFUJI Hideaki / 吉藤英明 } 226854c1a859SYOSHIFUJI Hideaki / 吉藤英明 return dst; 22691da177e4SLinus Torvalds } 22701da177e4SLinus Torvalds 22711da177e4SLinus Torvalds static void ip6_link_failure(struct sk_buff *skb) 22721da177e4SLinus Torvalds { 22731da177e4SLinus Torvalds struct rt6_info *rt; 22741da177e4SLinus Torvalds 22753ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0); 22761da177e4SLinus Torvalds 2277adf30907SEric Dumazet rt = (struct rt6_info *) skb_dst(skb); 22781da177e4SLinus Torvalds if (rt) { 22798a14e46fSDavid Ahern rcu_read_lock(); 22801eb4f758SHannes Frederic Sowa if (rt->rt6i_flags & RTF_CACHE) { 228193531c67SDavid Ahern rt6_remove_exception_rt(rt); 2282c5cff856SWei Wang } else { 2283a68886a6SDavid Ahern struct fib6_info *from; 2284c5cff856SWei Wang struct fib6_node *fn; 2285c5cff856SWei Wang 2286a68886a6SDavid Ahern from = rcu_dereference(rt->from); 2287a68886a6SDavid Ahern if (from) { 2288a68886a6SDavid Ahern fn = rcu_dereference(from->fib6_node); 2289c5cff856SWei Wang if (fn && (rt->rt6i_flags & RTF_DEFAULT)) 2290c5cff856SWei Wang fn->fn_sernum = -1; 2291a68886a6SDavid Ahern } 22921da177e4SLinus Torvalds } 22931da177e4SLinus Torvalds rcu_read_unlock(); 22941da177e4SLinus Torvalds } 22951da177e4SLinus Torvalds } 22961da177e4SLinus Torvalds 22976a3e030fSDavid Ahern static void rt6_update_expires(struct rt6_info *rt0, int timeout) 22986a3e030fSDavid Ahern { 2299a68886a6SDavid Ahern if (!(rt0->rt6i_flags & RTF_EXPIRES)) { 2300a68886a6SDavid Ahern struct fib6_info *from; 2301a68886a6SDavid Ahern 2302a68886a6SDavid Ahern rcu_read_lock(); 2303a68886a6SDavid Ahern from = rcu_dereference(rt0->from); 2304a68886a6SDavid Ahern if (from) 2305a68886a6SDavid Ahern rt0->dst.expires = from->expires; 2306a68886a6SDavid Ahern rcu_read_unlock(); 2307a68886a6SDavid Ahern } 23086a3e030fSDavid Ahern 23096a3e030fSDavid Ahern dst_set_expires(&rt0->dst, timeout); 23106a3e030fSDavid Ahern rt0->rt6i_flags |= RTF_EXPIRES; 23116700c270SDavid S. Miller } 23121da177e4SLinus Torvalds 231345e4fd26SMartin KaFai Lau static void rt6_do_update_pmtu(struct rt6_info *rt, u32 mtu) 231445e4fd26SMartin KaFai Lau { 231545e4fd26SMartin KaFai Lau struct net *net = dev_net(rt->dst.dev); 231645e4fd26SMartin KaFai Lau 2317d4ead6b3SDavid Ahern dst_metric_set(&rt->dst, RTAX_MTU, mtu); 231845e4fd26SMartin KaFai Lau rt->rt6i_flags |= RTF_MODIFIED; 231945e4fd26SMartin KaFai Lau rt6_update_expires(rt, net->ipv6.sysctl.ip6_rt_mtu_expires); 232045e4fd26SMartin KaFai Lau } 232145e4fd26SMartin KaFai Lau 23220d3f6d29SMartin KaFai Lau static bool rt6_cache_allowed_for_pmtu(const struct rt6_info *rt) 23230d3f6d29SMartin KaFai Lau { 23240d3f6d29SMartin KaFai Lau return !(rt->rt6i_flags & RTF_CACHE) && 23251490ed2aSPaolo Abeni (rt->rt6i_flags & RTF_PCPU || rcu_access_pointer(rt->from)); 23260d3f6d29SMartin KaFai Lau } 23270d3f6d29SMartin KaFai Lau 232845e4fd26SMartin KaFai Lau static void __ip6_rt_update_pmtu(struct dst_entry *dst, const struct sock *sk, 232945e4fd26SMartin KaFai Lau const struct ipv6hdr *iph, u32 mtu) 23301da177e4SLinus Torvalds { 23310dec879fSJulian Anastasov const struct in6_addr *daddr, *saddr; 23321da177e4SLinus Torvalds struct rt6_info *rt6 = (struct rt6_info *)dst; 23331da177e4SLinus Torvalds 233419bda36cSXin Long if (dst_metric_locked(dst, RTAX_MTU)) 233519bda36cSXin Long return; 233619bda36cSXin Long 233745e4fd26SMartin KaFai Lau if (iph) { 233845e4fd26SMartin KaFai Lau daddr = &iph->daddr; 233945e4fd26SMartin KaFai Lau saddr = &iph->saddr; 234045e4fd26SMartin KaFai Lau } else if (sk) { 234145e4fd26SMartin KaFai Lau daddr = &sk->sk_v6_daddr; 234245e4fd26SMartin KaFai Lau saddr = &inet6_sk(sk)->saddr; 234345e4fd26SMartin KaFai Lau } else { 23440dec879fSJulian Anastasov daddr = NULL; 23450dec879fSJulian Anastasov saddr = NULL; 23461da177e4SLinus Torvalds } 23470dec879fSJulian Anastasov dst_confirm_neigh(dst, daddr); 23480dec879fSJulian Anastasov mtu = max_t(u32, mtu, IPV6_MIN_MTU); 23490dec879fSJulian Anastasov if (mtu >= dst_mtu(dst)) 23500dec879fSJulian Anastasov return; 23510dec879fSJulian Anastasov 23520dec879fSJulian Anastasov if (!rt6_cache_allowed_for_pmtu(rt6)) { 23530dec879fSJulian Anastasov rt6_do_update_pmtu(rt6, mtu); 23542b760fcfSWei Wang /* update rt6_ex->stamp for cache */ 23552b760fcfSWei Wang if (rt6->rt6i_flags & RTF_CACHE) 23562b760fcfSWei Wang rt6_update_exception_stamp_rt(rt6); 23570dec879fSJulian Anastasov } else if (daddr) { 235885bd05deSDavid Ahern struct fib6_result res = {}; 23590dec879fSJulian Anastasov struct rt6_info *nrt6; 23600dec879fSJulian Anastasov 23614d85cd0cSDavid Ahern rcu_read_lock(); 236285bd05deSDavid Ahern res.f6i = rcu_dereference(rt6->from); 236385bd05deSDavid Ahern if (!res.f6i) { 23649c69a132SJonathan Lemon rcu_read_unlock(); 23659c69a132SJonathan Lemon return; 23669c69a132SJonathan Lemon } 236785bd05deSDavid Ahern res.nh = &res.f6i->fib6_nh; 236885bd05deSDavid Ahern nrt6 = ip6_rt_cache_alloc(&res, daddr, saddr); 236945e4fd26SMartin KaFai Lau if (nrt6) { 237045e4fd26SMartin KaFai Lau rt6_do_update_pmtu(nrt6, mtu); 23715012f0a5SDavid Ahern if (rt6_insert_exception(nrt6, &res)) 23722b760fcfSWei Wang dst_release_immediate(&nrt6->dst); 237345e4fd26SMartin KaFai Lau } 2374a68886a6SDavid Ahern rcu_read_unlock(); 237545e4fd26SMartin KaFai Lau } 237645e4fd26SMartin KaFai Lau } 237745e4fd26SMartin KaFai Lau 237845e4fd26SMartin KaFai Lau static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk, 237945e4fd26SMartin KaFai Lau struct sk_buff *skb, u32 mtu) 238045e4fd26SMartin KaFai Lau { 238145e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, sk, skb ? ipv6_hdr(skb) : NULL, mtu); 23821da177e4SLinus Torvalds } 23831da177e4SLinus Torvalds 238442ae66c8SDavid S. Miller void ip6_update_pmtu(struct sk_buff *skb, struct net *net, __be32 mtu, 2385e2d118a1SLorenzo Colitti int oif, u32 mark, kuid_t uid) 238681aded24SDavid S. Miller { 238781aded24SDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 238881aded24SDavid S. Miller struct dst_entry *dst; 2389dc92095dSMaciej Żenczykowski struct flowi6 fl6 = { 2390dc92095dSMaciej Żenczykowski .flowi6_oif = oif, 2391dc92095dSMaciej Żenczykowski .flowi6_mark = mark ? mark : IP6_REPLY_MARK(net, skb->mark), 2392dc92095dSMaciej Żenczykowski .daddr = iph->daddr, 2393dc92095dSMaciej Żenczykowski .saddr = iph->saddr, 2394dc92095dSMaciej Żenczykowski .flowlabel = ip6_flowinfo(iph), 2395dc92095dSMaciej Żenczykowski .flowi6_uid = uid, 2396dc92095dSMaciej Żenczykowski }; 239781aded24SDavid S. Miller 239881aded24SDavid S. Miller dst = ip6_route_output(net, NULL, &fl6); 239981aded24SDavid S. Miller if (!dst->error) 240045e4fd26SMartin KaFai Lau __ip6_rt_update_pmtu(dst, NULL, iph, ntohl(mtu)); 240181aded24SDavid S. Miller dst_release(dst); 240281aded24SDavid S. Miller } 240381aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_update_pmtu); 240481aded24SDavid S. Miller 240581aded24SDavid S. Miller void ip6_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, __be32 mtu) 240681aded24SDavid S. Miller { 24077ddacfa5SDavid Ahern int oif = sk->sk_bound_dev_if; 240833c162a9SMartin KaFai Lau struct dst_entry *dst; 240933c162a9SMartin KaFai Lau 24107ddacfa5SDavid Ahern if (!oif && skb->dev) 24117ddacfa5SDavid Ahern oif = l3mdev_master_ifindex(skb->dev); 24127ddacfa5SDavid Ahern 24137ddacfa5SDavid Ahern ip6_update_pmtu(skb, sock_net(sk), mtu, oif, sk->sk_mark, sk->sk_uid); 241433c162a9SMartin KaFai Lau 241533c162a9SMartin KaFai Lau dst = __sk_dst_get(sk); 241633c162a9SMartin KaFai Lau if (!dst || !dst->obsolete || 241733c162a9SMartin KaFai Lau dst->ops->check(dst, inet6_sk(sk)->dst_cookie)) 241833c162a9SMartin KaFai Lau return; 241933c162a9SMartin KaFai Lau 242033c162a9SMartin KaFai Lau bh_lock_sock(sk); 242133c162a9SMartin KaFai Lau if (!sock_owned_by_user(sk) && !ipv6_addr_v4mapped(&sk->sk_v6_daddr)) 242233c162a9SMartin KaFai Lau ip6_datagram_dst_update(sk, false); 242333c162a9SMartin KaFai Lau bh_unlock_sock(sk); 242481aded24SDavid S. Miller } 242581aded24SDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_update_pmtu); 242681aded24SDavid S. Miller 24277d6850f7SAlexey Kodanev void ip6_sk_dst_store_flow(struct sock *sk, struct dst_entry *dst, 24287d6850f7SAlexey Kodanev const struct flowi6 *fl6) 24297d6850f7SAlexey Kodanev { 24307d6850f7SAlexey Kodanev #ifdef CONFIG_IPV6_SUBTREES 24317d6850f7SAlexey Kodanev struct ipv6_pinfo *np = inet6_sk(sk); 24327d6850f7SAlexey Kodanev #endif 24337d6850f7SAlexey Kodanev 24347d6850f7SAlexey Kodanev ip6_dst_store(sk, dst, 24357d6850f7SAlexey Kodanev ipv6_addr_equal(&fl6->daddr, &sk->sk_v6_daddr) ? 24367d6850f7SAlexey Kodanev &sk->sk_v6_daddr : NULL, 24377d6850f7SAlexey Kodanev #ifdef CONFIG_IPV6_SUBTREES 24387d6850f7SAlexey Kodanev ipv6_addr_equal(&fl6->saddr, &np->saddr) ? 24397d6850f7SAlexey Kodanev &np->saddr : 24407d6850f7SAlexey Kodanev #endif 24417d6850f7SAlexey Kodanev NULL); 24427d6850f7SAlexey Kodanev } 24437d6850f7SAlexey Kodanev 24449b6b35abSDavid Ahern static bool ip6_redirect_nh_match(const struct fib6_result *res, 24450b34eb00SDavid Ahern struct flowi6 *fl6, 24460b34eb00SDavid Ahern const struct in6_addr *gw, 24470b34eb00SDavid Ahern struct rt6_info **ret) 24480b34eb00SDavid Ahern { 24499b6b35abSDavid Ahern const struct fib6_nh *nh = res->nh; 24509b6b35abSDavid Ahern 24510b34eb00SDavid Ahern if (nh->fib_nh_flags & RTNH_F_DEAD || !nh->fib_nh_gw_family || 24520b34eb00SDavid Ahern fl6->flowi6_oif != nh->fib_nh_dev->ifindex) 24530b34eb00SDavid Ahern return false; 24540b34eb00SDavid Ahern 24550b34eb00SDavid Ahern /* rt_cache's gateway might be different from its 'parent' 24560b34eb00SDavid Ahern * in the case of an ip redirect. 24570b34eb00SDavid Ahern * So we keep searching in the exception table if the gateway 24580b34eb00SDavid Ahern * is different. 24590b34eb00SDavid Ahern */ 24600b34eb00SDavid Ahern if (!ipv6_addr_equal(gw, &nh->fib_nh_gw6)) { 24610b34eb00SDavid Ahern struct rt6_info *rt_cache; 24620b34eb00SDavid Ahern 24639b6b35abSDavid Ahern rt_cache = rt6_find_cached_rt(res, &fl6->daddr, &fl6->saddr); 24640b34eb00SDavid Ahern if (rt_cache && 24650b34eb00SDavid Ahern ipv6_addr_equal(gw, &rt_cache->rt6i_gateway)) { 24660b34eb00SDavid Ahern *ret = rt_cache; 24670b34eb00SDavid Ahern return true; 24680b34eb00SDavid Ahern } 24690b34eb00SDavid Ahern return false; 24700b34eb00SDavid Ahern } 24710b34eb00SDavid Ahern return true; 24720b34eb00SDavid Ahern } 24730b34eb00SDavid Ahern 2474b55b76b2SDuan Jiong /* Handle redirects */ 2475b55b76b2SDuan Jiong struct ip6rd_flowi { 2476b55b76b2SDuan Jiong struct flowi6 fl6; 2477b55b76b2SDuan Jiong struct in6_addr gateway; 2478b55b76b2SDuan Jiong }; 2479b55b76b2SDuan Jiong 2480b55b76b2SDuan Jiong static struct rt6_info *__ip6_route_redirect(struct net *net, 2481b55b76b2SDuan Jiong struct fib6_table *table, 2482b55b76b2SDuan Jiong struct flowi6 *fl6, 2483b75cc8f9SDavid Ahern const struct sk_buff *skb, 2484b55b76b2SDuan Jiong int flags) 2485b55b76b2SDuan Jiong { 2486b55b76b2SDuan Jiong struct ip6rd_flowi *rdfl = (struct ip6rd_flowi *)fl6; 24870b34eb00SDavid Ahern struct rt6_info *ret = NULL; 24889b6b35abSDavid Ahern struct fib6_result res = {}; 24898d1c802bSDavid Ahern struct fib6_info *rt; 2490b55b76b2SDuan Jiong struct fib6_node *fn; 2491b55b76b2SDuan Jiong 2492b55b76b2SDuan Jiong /* Get the "current" route for this destination and 249367c408cfSAlexander Alemayhu * check if the redirect has come from appropriate router. 2494b55b76b2SDuan Jiong * 2495b55b76b2SDuan Jiong * RFC 4861 specifies that redirects should only be 2496b55b76b2SDuan Jiong * accepted if they come from the nexthop to the target. 2497b55b76b2SDuan Jiong * Due to the way the routes are chosen, this notion 2498b55b76b2SDuan Jiong * is a bit fuzzy and one might need to check all possible 2499b55b76b2SDuan Jiong * routes. 2500b55b76b2SDuan Jiong */ 2501b55b76b2SDuan Jiong 250266f5d6ceSWei Wang rcu_read_lock(); 25036454743bSDavid Ahern fn = fib6_node_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr); 2504b55b76b2SDuan Jiong restart: 250566f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 25069b6b35abSDavid Ahern res.f6i = rt; 25079b6b35abSDavid Ahern res.nh = &rt->fib6_nh; 25089b6b35abSDavid Ahern 250914895687SDavid Ahern if (fib6_check_expired(rt)) 2510b55b76b2SDuan Jiong continue; 251193c2fb25SDavid Ahern if (rt->fib6_flags & RTF_REJECT) 2512b55b76b2SDuan Jiong break; 25139b6b35abSDavid Ahern if (ip6_redirect_nh_match(&res, fl6, &rdfl->gateway, &ret)) 25140b34eb00SDavid Ahern goto out; 2515b55b76b2SDuan Jiong } 2516b55b76b2SDuan Jiong 2517b55b76b2SDuan Jiong if (!rt) 2518421842edSDavid Ahern rt = net->ipv6.fib6_null_entry; 251993c2fb25SDavid Ahern else if (rt->fib6_flags & RTF_REJECT) { 252023fb93a4SDavid Ahern ret = net->ipv6.ip6_null_entry; 2521b0a1ba59SMartin KaFai Lau goto out; 2522b0a1ba59SMartin KaFai Lau } 2523b0a1ba59SMartin KaFai Lau 2524421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) { 2525a3c00e46SMartin KaFai Lau fn = fib6_backtrack(fn, &fl6->saddr); 2526a3c00e46SMartin KaFai Lau if (fn) 2527a3c00e46SMartin KaFai Lau goto restart; 2528b55b76b2SDuan Jiong } 2529a3c00e46SMartin KaFai Lau 25309b6b35abSDavid Ahern res.f6i = rt; 25319b6b35abSDavid Ahern res.nh = &rt->fib6_nh; 2532b0a1ba59SMartin KaFai Lau out: 253323fb93a4SDavid Ahern if (ret) 253410585b43SDavid Ahern ip6_hold_safe(net, &ret); 253523fb93a4SDavid Ahern else 25369b6b35abSDavid Ahern ret = ip6_create_rt_rcu(&res); 2537b55b76b2SDuan Jiong 253866f5d6ceSWei Wang rcu_read_unlock(); 2539b55b76b2SDuan Jiong 25408ff2e5b2SDavid Ahern trace_fib6_table_lookup(net, &res, table, fl6); 254123fb93a4SDavid Ahern return ret; 2542b55b76b2SDuan Jiong }; 2543b55b76b2SDuan Jiong 2544b55b76b2SDuan Jiong static struct dst_entry *ip6_route_redirect(struct net *net, 2545b55b76b2SDuan Jiong const struct flowi6 *fl6, 2546b75cc8f9SDavid Ahern const struct sk_buff *skb, 2547b55b76b2SDuan Jiong const struct in6_addr *gateway) 2548b55b76b2SDuan Jiong { 2549b55b76b2SDuan Jiong int flags = RT6_LOOKUP_F_HAS_SADDR; 2550b55b76b2SDuan Jiong struct ip6rd_flowi rdfl; 2551b55b76b2SDuan Jiong 2552b55b76b2SDuan Jiong rdfl.fl6 = *fl6; 2553b55b76b2SDuan Jiong rdfl.gateway = *gateway; 2554b55b76b2SDuan Jiong 2555b75cc8f9SDavid Ahern return fib6_rule_lookup(net, &rdfl.fl6, skb, 2556b55b76b2SDuan Jiong flags, __ip6_route_redirect); 2557b55b76b2SDuan Jiong } 2558b55b76b2SDuan Jiong 2559e2d118a1SLorenzo Colitti void ip6_redirect(struct sk_buff *skb, struct net *net, int oif, u32 mark, 2560e2d118a1SLorenzo Colitti kuid_t uid) 25613a5ad2eeSDavid S. Miller { 25623a5ad2eeSDavid S. Miller const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data; 25633a5ad2eeSDavid S. Miller struct dst_entry *dst; 25641f7f10acSMaciej Żenczykowski struct flowi6 fl6 = { 25651f7f10acSMaciej Żenczykowski .flowi6_iif = LOOPBACK_IFINDEX, 25661f7f10acSMaciej Żenczykowski .flowi6_oif = oif, 25671f7f10acSMaciej Żenczykowski .flowi6_mark = mark, 25681f7f10acSMaciej Żenczykowski .daddr = iph->daddr, 25691f7f10acSMaciej Żenczykowski .saddr = iph->saddr, 25701f7f10acSMaciej Żenczykowski .flowlabel = ip6_flowinfo(iph), 25711f7f10acSMaciej Żenczykowski .flowi6_uid = uid, 25721f7f10acSMaciej Żenczykowski }; 25733a5ad2eeSDavid S. Miller 2574b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &ipv6_hdr(skb)->saddr); 25756700c270SDavid S. Miller rt6_do_redirect(dst, NULL, skb); 25763a5ad2eeSDavid S. Miller dst_release(dst); 25773a5ad2eeSDavid S. Miller } 25783a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_redirect); 25793a5ad2eeSDavid S. Miller 2580d456336dSMaciej Żenczykowski void ip6_redirect_no_header(struct sk_buff *skb, struct net *net, int oif) 2581c92a59ecSDuan Jiong { 2582c92a59ecSDuan Jiong const struct ipv6hdr *iph = ipv6_hdr(skb); 2583c92a59ecSDuan Jiong const struct rd_msg *msg = (struct rd_msg *)icmp6_hdr(skb); 2584c92a59ecSDuan Jiong struct dst_entry *dst; 25850b26fb17SMaciej Żenczykowski struct flowi6 fl6 = { 25860b26fb17SMaciej Żenczykowski .flowi6_iif = LOOPBACK_IFINDEX, 25870b26fb17SMaciej Żenczykowski .flowi6_oif = oif, 25880b26fb17SMaciej Żenczykowski .daddr = msg->dest, 25890b26fb17SMaciej Żenczykowski .saddr = iph->daddr, 25900b26fb17SMaciej Żenczykowski .flowi6_uid = sock_net_uid(net, NULL), 25910b26fb17SMaciej Żenczykowski }; 2592c92a59ecSDuan Jiong 2593b75cc8f9SDavid Ahern dst = ip6_route_redirect(net, &fl6, skb, &iph->saddr); 2594c92a59ecSDuan Jiong rt6_do_redirect(dst, NULL, skb); 2595c92a59ecSDuan Jiong dst_release(dst); 2596c92a59ecSDuan Jiong } 2597c92a59ecSDuan Jiong 25983a5ad2eeSDavid S. Miller void ip6_sk_redirect(struct sk_buff *skb, struct sock *sk) 25993a5ad2eeSDavid S. Miller { 2600e2d118a1SLorenzo Colitti ip6_redirect(skb, sock_net(sk), sk->sk_bound_dev_if, sk->sk_mark, 2601e2d118a1SLorenzo Colitti sk->sk_uid); 26023a5ad2eeSDavid S. Miller } 26033a5ad2eeSDavid S. Miller EXPORT_SYMBOL_GPL(ip6_sk_redirect); 26043a5ad2eeSDavid S. Miller 26050dbaee3bSDavid S. Miller static unsigned int ip6_default_advmss(const struct dst_entry *dst) 26061da177e4SLinus Torvalds { 26070dbaee3bSDavid S. Miller struct net_device *dev = dst->dev; 26080dbaee3bSDavid S. Miller unsigned int mtu = dst_mtu(dst); 26090dbaee3bSDavid S. Miller struct net *net = dev_net(dev); 26100dbaee3bSDavid S. Miller 26111da177e4SLinus Torvalds mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr); 26121da177e4SLinus Torvalds 26135578689aSDaniel Lezcano if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss) 26145578689aSDaniel Lezcano mtu = net->ipv6.sysctl.ip6_rt_min_advmss; 26151da177e4SLinus Torvalds 26161da177e4SLinus Torvalds /* 26171da177e4SLinus Torvalds * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and 26181da177e4SLinus Torvalds * corresponding MSS is IPV6_MAXPLEN - tcp_header_size. 26191da177e4SLinus Torvalds * IPV6_MAXPLEN is also valid and means: "any MSS, 26201da177e4SLinus Torvalds * rely only on pmtu discovery" 26211da177e4SLinus Torvalds */ 26221da177e4SLinus Torvalds if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr)) 26231da177e4SLinus Torvalds mtu = IPV6_MAXPLEN; 26241da177e4SLinus Torvalds return mtu; 26251da177e4SLinus Torvalds } 26261da177e4SLinus Torvalds 2627ebb762f2SSteffen Klassert static unsigned int ip6_mtu(const struct dst_entry *dst) 2628d33e4553SDavid S. Miller { 2629d33e4553SDavid S. Miller struct inet6_dev *idev; 2630d4ead6b3SDavid Ahern unsigned int mtu; 2631618f9bc7SSteffen Klassert 26324b32b5adSMartin KaFai Lau mtu = dst_metric_raw(dst, RTAX_MTU); 26334b32b5adSMartin KaFai Lau if (mtu) 26344b32b5adSMartin KaFai Lau goto out; 26354b32b5adSMartin KaFai Lau 2636618f9bc7SSteffen Klassert mtu = IPV6_MIN_MTU; 2637d33e4553SDavid S. Miller 2638d33e4553SDavid S. Miller rcu_read_lock(); 2639d33e4553SDavid S. Miller idev = __in6_dev_get(dst->dev); 2640d33e4553SDavid S. Miller if (idev) 2641d33e4553SDavid S. Miller mtu = idev->cnf.mtu6; 2642d33e4553SDavid S. Miller rcu_read_unlock(); 2643d33e4553SDavid S. Miller 264430f78d8eSEric Dumazet out: 264514972cbdSRoopa Prabhu mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 264614972cbdSRoopa Prabhu 264714972cbdSRoopa Prabhu return mtu - lwtunnel_headroom(dst->lwtstate, mtu); 2648d33e4553SDavid S. Miller } 2649d33e4553SDavid S. Miller 2650901731b8SDavid Ahern /* MTU selection: 2651901731b8SDavid Ahern * 1. mtu on route is locked - use it 2652901731b8SDavid Ahern * 2. mtu from nexthop exception 2653901731b8SDavid Ahern * 3. mtu from egress device 2654901731b8SDavid Ahern * 2655901731b8SDavid Ahern * based on ip6_dst_mtu_forward and exception logic of 2656901731b8SDavid Ahern * rt6_find_cached_rt; called with rcu_read_lock 2657901731b8SDavid Ahern */ 2658b748f260SDavid Ahern u32 ip6_mtu_from_fib6(const struct fib6_result *res, 2659b748f260SDavid Ahern const struct in6_addr *daddr, 2660b748f260SDavid Ahern const struct in6_addr *saddr) 2661901731b8SDavid Ahern { 2662901731b8SDavid Ahern struct rt6_exception_bucket *bucket; 2663b748f260SDavid Ahern const struct fib6_nh *nh = res->nh; 2664b748f260SDavid Ahern struct fib6_info *f6i = res->f6i; 2665b748f260SDavid Ahern const struct in6_addr *src_key; 2666901731b8SDavid Ahern struct rt6_exception *rt6_ex; 2667901731b8SDavid Ahern struct inet6_dev *idev; 2668901731b8SDavid Ahern u32 mtu = 0; 2669901731b8SDavid Ahern 2670901731b8SDavid Ahern if (unlikely(fib6_metric_locked(f6i, RTAX_MTU))) { 2671901731b8SDavid Ahern mtu = f6i->fib6_pmtu; 2672901731b8SDavid Ahern if (mtu) 2673901731b8SDavid Ahern goto out; 2674901731b8SDavid Ahern } 2675901731b8SDavid Ahern 2676901731b8SDavid Ahern src_key = NULL; 2677901731b8SDavid Ahern #ifdef CONFIG_IPV6_SUBTREES 2678901731b8SDavid Ahern if (f6i->fib6_src.plen) 2679901731b8SDavid Ahern src_key = saddr; 2680901731b8SDavid Ahern #endif 2681901731b8SDavid Ahern 2682901731b8SDavid Ahern bucket = rcu_dereference(f6i->rt6i_exception_bucket); 2683901731b8SDavid Ahern rt6_ex = __rt6_find_exception_rcu(&bucket, daddr, src_key); 2684901731b8SDavid Ahern if (rt6_ex && !rt6_check_expired(rt6_ex->rt6i)) 2685901731b8SDavid Ahern mtu = dst_metric_raw(&rt6_ex->rt6i->dst, RTAX_MTU); 2686901731b8SDavid Ahern 2687901731b8SDavid Ahern if (likely(!mtu)) { 2688b748f260SDavid Ahern struct net_device *dev = nh->fib_nh_dev; 2689901731b8SDavid Ahern 2690901731b8SDavid Ahern mtu = IPV6_MIN_MTU; 2691901731b8SDavid Ahern idev = __in6_dev_get(dev); 2692901731b8SDavid Ahern if (idev && idev->cnf.mtu6 > mtu) 2693901731b8SDavid Ahern mtu = idev->cnf.mtu6; 2694901731b8SDavid Ahern } 2695901731b8SDavid Ahern 2696901731b8SDavid Ahern mtu = min_t(unsigned int, mtu, IP6_MAX_MTU); 2697901731b8SDavid Ahern out: 2698b748f260SDavid Ahern return mtu - lwtunnel_headroom(nh->fib_nh_lws, mtu); 2699901731b8SDavid Ahern } 2700901731b8SDavid Ahern 27013b00944cSYOSHIFUJI Hideaki struct dst_entry *icmp6_dst_alloc(struct net_device *dev, 270287a11578SDavid S. Miller struct flowi6 *fl6) 27031da177e4SLinus Torvalds { 270487a11578SDavid S. Miller struct dst_entry *dst; 27051da177e4SLinus Torvalds struct rt6_info *rt; 27061da177e4SLinus Torvalds struct inet6_dev *idev = in6_dev_get(dev); 2707c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 27081da177e4SLinus Torvalds 270938308473SDavid S. Miller if (unlikely(!idev)) 2710122bdf67SEric Dumazet return ERR_PTR(-ENODEV); 27111da177e4SLinus Torvalds 2712ad706862SMartin KaFai Lau rt = ip6_dst_alloc(net, dev, 0); 271338308473SDavid S. Miller if (unlikely(!rt)) { 27141da177e4SLinus Torvalds in6_dev_put(idev); 271587a11578SDavid S. Miller dst = ERR_PTR(-ENOMEM); 27161da177e4SLinus Torvalds goto out; 27171da177e4SLinus Torvalds } 27181da177e4SLinus Torvalds 27198e2ec639SYan, Zheng rt->dst.flags |= DST_HOST; 2720588753f1SBrendan McGrath rt->dst.input = ip6_input; 27218e2ec639SYan, Zheng rt->dst.output = ip6_output; 2722550bab42SJulian Anastasov rt->rt6i_gateway = fl6->daddr; 272387a11578SDavid S. Miller rt->rt6i_dst.addr = fl6->daddr; 27248e2ec639SYan, Zheng rt->rt6i_dst.plen = 128; 27258e2ec639SYan, Zheng rt->rt6i_idev = idev; 272614edd87dSLi RongQing dst_metric_set(&rt->dst, RTAX_HOPLIMIT, 0); 27271da177e4SLinus Torvalds 27284c981e28SIdo Schimmel /* Add this dst into uncached_list so that rt6_disable_ip() can 2729587fea74SWei Wang * do proper release of the net_device 2730587fea74SWei Wang */ 2731587fea74SWei Wang rt6_uncached_list_add(rt); 273281eb8447SWei Wang atomic_inc(&net->ipv6.rt6_stats->fib_rt_uncache); 27331da177e4SLinus Torvalds 273487a11578SDavid S. Miller dst = xfrm_lookup(net, &rt->dst, flowi6_to_flowi(fl6), NULL, 0); 273587a11578SDavid S. Miller 27361da177e4SLinus Torvalds out: 273787a11578SDavid S. Miller return dst; 27381da177e4SLinus Torvalds } 27391da177e4SLinus Torvalds 2740569d3645SDaniel Lezcano static int ip6_dst_gc(struct dst_ops *ops) 27411da177e4SLinus Torvalds { 274286393e52SAlexey Dobriyan struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops); 27437019b78eSDaniel Lezcano int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval; 27447019b78eSDaniel Lezcano int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size; 27457019b78eSDaniel Lezcano int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity; 27467019b78eSDaniel Lezcano int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout; 27477019b78eSDaniel Lezcano unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc; 2748fc66f95cSEric Dumazet int entries; 27491da177e4SLinus Torvalds 2750fc66f95cSEric Dumazet entries = dst_entries_get_fast(ops); 275149a18d86SMichal Kubeček if (time_after(rt_last_gc + rt_min_interval, jiffies) && 2752fc66f95cSEric Dumazet entries <= rt_max_size) 27531da177e4SLinus Torvalds goto out; 27541da177e4SLinus Torvalds 27556891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire++; 275614956643SLi RongQing fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net, true); 2757fc66f95cSEric Dumazet entries = dst_entries_get_slow(ops); 2758fc66f95cSEric Dumazet if (entries < ops->gc_thresh) 27597019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1; 27601da177e4SLinus Torvalds out: 27617019b78eSDaniel Lezcano net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity; 2762fc66f95cSEric Dumazet return entries > rt_max_size; 27631da177e4SLinus Torvalds } 27641da177e4SLinus Torvalds 27658c14586fSDavid Ahern static struct rt6_info *ip6_nh_lookup_table(struct net *net, 27668c14586fSDavid Ahern struct fib6_config *cfg, 2767f4797b33SDavid Ahern const struct in6_addr *gw_addr, 2768f4797b33SDavid Ahern u32 tbid, int flags) 27698c14586fSDavid Ahern { 27708c14586fSDavid Ahern struct flowi6 fl6 = { 27718c14586fSDavid Ahern .flowi6_oif = cfg->fc_ifindex, 27728c14586fSDavid Ahern .daddr = *gw_addr, 27738c14586fSDavid Ahern .saddr = cfg->fc_prefsrc, 27748c14586fSDavid Ahern }; 27758c14586fSDavid Ahern struct fib6_table *table; 27768c14586fSDavid Ahern struct rt6_info *rt; 27778c14586fSDavid Ahern 2778f4797b33SDavid Ahern table = fib6_get_table(net, tbid); 27798c14586fSDavid Ahern if (!table) 27808c14586fSDavid Ahern return NULL; 27818c14586fSDavid Ahern 27828c14586fSDavid Ahern if (!ipv6_addr_any(&cfg->fc_prefsrc)) 27838c14586fSDavid Ahern flags |= RT6_LOOKUP_F_HAS_SADDR; 27848c14586fSDavid Ahern 2785f4797b33SDavid Ahern flags |= RT6_LOOKUP_F_IGNORE_LINKSTATE; 2786b75cc8f9SDavid Ahern rt = ip6_pol_route(net, table, cfg->fc_ifindex, &fl6, NULL, flags); 27878c14586fSDavid Ahern 27888c14586fSDavid Ahern /* if table lookup failed, fall back to full lookup */ 27898c14586fSDavid Ahern if (rt == net->ipv6.ip6_null_entry) { 27908c14586fSDavid Ahern ip6_rt_put(rt); 27918c14586fSDavid Ahern rt = NULL; 27928c14586fSDavid Ahern } 27938c14586fSDavid Ahern 27948c14586fSDavid Ahern return rt; 27958c14586fSDavid Ahern } 27968c14586fSDavid Ahern 2797fc1e64e1SDavid Ahern static int ip6_route_check_nh_onlink(struct net *net, 2798fc1e64e1SDavid Ahern struct fib6_config *cfg, 27999fbb704cSDavid Ahern const struct net_device *dev, 2800fc1e64e1SDavid Ahern struct netlink_ext_ack *extack) 2801fc1e64e1SDavid Ahern { 280244750f84SDavid Ahern u32 tbid = l3mdev_fib_table(dev) ? : RT_TABLE_MAIN; 2803fc1e64e1SDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 2804fc1e64e1SDavid Ahern u32 flags = RTF_LOCAL | RTF_ANYCAST | RTF_REJECT; 2805bf1dc8baSPaolo Abeni struct fib6_info *from; 2806fc1e64e1SDavid Ahern struct rt6_info *grt; 2807fc1e64e1SDavid Ahern int err; 2808fc1e64e1SDavid Ahern 2809fc1e64e1SDavid Ahern err = 0; 2810fc1e64e1SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, tbid, 0); 2811fc1e64e1SDavid Ahern if (grt) { 2812bf1dc8baSPaolo Abeni rcu_read_lock(); 2813bf1dc8baSPaolo Abeni from = rcu_dereference(grt->from); 281458e354c0SDavid Ahern if (!grt->dst.error && 28154ed591c8SDavid Ahern /* ignore match if it is the default route */ 2816bf1dc8baSPaolo Abeni from && !ipv6_addr_any(&from->fib6_dst.addr) && 281758e354c0SDavid Ahern (grt->rt6i_flags & flags || dev != grt->dst.dev)) { 281844750f84SDavid Ahern NL_SET_ERR_MSG(extack, 281944750f84SDavid Ahern "Nexthop has invalid gateway or device mismatch"); 2820fc1e64e1SDavid Ahern err = -EINVAL; 2821fc1e64e1SDavid Ahern } 2822bf1dc8baSPaolo Abeni rcu_read_unlock(); 2823fc1e64e1SDavid Ahern 2824fc1e64e1SDavid Ahern ip6_rt_put(grt); 2825fc1e64e1SDavid Ahern } 2826fc1e64e1SDavid Ahern 2827fc1e64e1SDavid Ahern return err; 2828fc1e64e1SDavid Ahern } 2829fc1e64e1SDavid Ahern 28301edce99fSDavid Ahern static int ip6_route_check_nh(struct net *net, 28311edce99fSDavid Ahern struct fib6_config *cfg, 28321edce99fSDavid Ahern struct net_device **_dev, 28331edce99fSDavid Ahern struct inet6_dev **idev) 28341edce99fSDavid Ahern { 28351edce99fSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 28361edce99fSDavid Ahern struct net_device *dev = _dev ? *_dev : NULL; 28371edce99fSDavid Ahern struct rt6_info *grt = NULL; 28381edce99fSDavid Ahern int err = -EHOSTUNREACH; 28391edce99fSDavid Ahern 28401edce99fSDavid Ahern if (cfg->fc_table) { 2841f4797b33SDavid Ahern int flags = RT6_LOOKUP_F_IFACE; 2842f4797b33SDavid Ahern 2843f4797b33SDavid Ahern grt = ip6_nh_lookup_table(net, cfg, gw_addr, 2844f4797b33SDavid Ahern cfg->fc_table, flags); 28451edce99fSDavid Ahern if (grt) { 28461edce99fSDavid Ahern if (grt->rt6i_flags & RTF_GATEWAY || 28471edce99fSDavid Ahern (dev && dev != grt->dst.dev)) { 28481edce99fSDavid Ahern ip6_rt_put(grt); 28491edce99fSDavid Ahern grt = NULL; 28501edce99fSDavid Ahern } 28511edce99fSDavid Ahern } 28521edce99fSDavid Ahern } 28531edce99fSDavid Ahern 28541edce99fSDavid Ahern if (!grt) 2855b75cc8f9SDavid Ahern grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, NULL, 1); 28561edce99fSDavid Ahern 28571edce99fSDavid Ahern if (!grt) 28581edce99fSDavid Ahern goto out; 28591edce99fSDavid Ahern 28601edce99fSDavid Ahern if (dev) { 28611edce99fSDavid Ahern if (dev != grt->dst.dev) { 28621edce99fSDavid Ahern ip6_rt_put(grt); 28631edce99fSDavid Ahern goto out; 28641edce99fSDavid Ahern } 28651edce99fSDavid Ahern } else { 28661edce99fSDavid Ahern *_dev = dev = grt->dst.dev; 28671edce99fSDavid Ahern *idev = grt->rt6i_idev; 28681edce99fSDavid Ahern dev_hold(dev); 28691edce99fSDavid Ahern in6_dev_hold(grt->rt6i_idev); 28701edce99fSDavid Ahern } 28711edce99fSDavid Ahern 28721edce99fSDavid Ahern if (!(grt->rt6i_flags & RTF_GATEWAY)) 28731edce99fSDavid Ahern err = 0; 28741edce99fSDavid Ahern 28751edce99fSDavid Ahern ip6_rt_put(grt); 28761edce99fSDavid Ahern 28771edce99fSDavid Ahern out: 28781edce99fSDavid Ahern return err; 28791edce99fSDavid Ahern } 28801edce99fSDavid Ahern 28819fbb704cSDavid Ahern static int ip6_validate_gw(struct net *net, struct fib6_config *cfg, 28829fbb704cSDavid Ahern struct net_device **_dev, struct inet6_dev **idev, 28839fbb704cSDavid Ahern struct netlink_ext_ack *extack) 28849fbb704cSDavid Ahern { 28859fbb704cSDavid Ahern const struct in6_addr *gw_addr = &cfg->fc_gateway; 28869fbb704cSDavid Ahern int gwa_type = ipv6_addr_type(gw_addr); 2887232378e8SDavid Ahern bool skip_dev = gwa_type & IPV6_ADDR_LINKLOCAL ? false : true; 28889fbb704cSDavid Ahern const struct net_device *dev = *_dev; 2889232378e8SDavid Ahern bool need_addr_check = !dev; 28909fbb704cSDavid Ahern int err = -EINVAL; 28919fbb704cSDavid Ahern 28929fbb704cSDavid Ahern /* if gw_addr is local we will fail to detect this in case 28939fbb704cSDavid Ahern * address is still TENTATIVE (DAD in progress). rt6_lookup() 28949fbb704cSDavid Ahern * will return already-added prefix route via interface that 28959fbb704cSDavid Ahern * prefix route was assigned to, which might be non-loopback. 28969fbb704cSDavid Ahern */ 2897232378e8SDavid Ahern if (dev && 2898232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2899232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 29009fbb704cSDavid Ahern goto out; 29019fbb704cSDavid Ahern } 29029fbb704cSDavid Ahern 29039fbb704cSDavid Ahern if (gwa_type != (IPV6_ADDR_LINKLOCAL | IPV6_ADDR_UNICAST)) { 29049fbb704cSDavid Ahern /* IPv6 strictly inhibits using not link-local 29059fbb704cSDavid Ahern * addresses as nexthop address. 29069fbb704cSDavid Ahern * Otherwise, router will not able to send redirects. 29079fbb704cSDavid Ahern * It is very good, but in some (rare!) circumstances 29089fbb704cSDavid Ahern * (SIT, PtP, NBMA NOARP links) it is handy to allow 29099fbb704cSDavid Ahern * some exceptions. --ANK 29109fbb704cSDavid Ahern * We allow IPv4-mapped nexthops to support RFC4798-type 29119fbb704cSDavid Ahern * addressing 29129fbb704cSDavid Ahern */ 29139fbb704cSDavid Ahern if (!(gwa_type & (IPV6_ADDR_UNICAST | IPV6_ADDR_MAPPED))) { 29149fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid gateway address"); 29159fbb704cSDavid Ahern goto out; 29169fbb704cSDavid Ahern } 29179fbb704cSDavid Ahern 29189fbb704cSDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) 29199fbb704cSDavid Ahern err = ip6_route_check_nh_onlink(net, cfg, dev, extack); 29209fbb704cSDavid Ahern else 29219fbb704cSDavid Ahern err = ip6_route_check_nh(net, cfg, _dev, idev); 29229fbb704cSDavid Ahern 29239fbb704cSDavid Ahern if (err) 29249fbb704cSDavid Ahern goto out; 29259fbb704cSDavid Ahern } 29269fbb704cSDavid Ahern 29279fbb704cSDavid Ahern /* reload in case device was changed */ 29289fbb704cSDavid Ahern dev = *_dev; 29299fbb704cSDavid Ahern 29309fbb704cSDavid Ahern err = -EINVAL; 29319fbb704cSDavid Ahern if (!dev) { 29329fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, "Egress device not specified"); 29339fbb704cSDavid Ahern goto out; 29349fbb704cSDavid Ahern } else if (dev->flags & IFF_LOOPBACK) { 29359fbb704cSDavid Ahern NL_SET_ERR_MSG(extack, 29369fbb704cSDavid Ahern "Egress device can not be loopback device for this route"); 29379fbb704cSDavid Ahern goto out; 29389fbb704cSDavid Ahern } 2939232378e8SDavid Ahern 2940232378e8SDavid Ahern /* if we did not check gw_addr above, do so now that the 2941232378e8SDavid Ahern * egress device has been resolved. 2942232378e8SDavid Ahern */ 2943232378e8SDavid Ahern if (need_addr_check && 2944232378e8SDavid Ahern ipv6_chk_addr_and_flags(net, gw_addr, dev, skip_dev, 0, 0)) { 2945232378e8SDavid Ahern NL_SET_ERR_MSG(extack, "Gateway can not be a local address"); 2946232378e8SDavid Ahern goto out; 2947232378e8SDavid Ahern } 2948232378e8SDavid Ahern 29499fbb704cSDavid Ahern err = 0; 29509fbb704cSDavid Ahern out: 29519fbb704cSDavid Ahern return err; 29529fbb704cSDavid Ahern } 29539fbb704cSDavid Ahern 295483c44251SDavid Ahern static bool fib6_is_reject(u32 flags, struct net_device *dev, int addr_type) 295583c44251SDavid Ahern { 295683c44251SDavid Ahern if ((flags & RTF_REJECT) || 295783c44251SDavid Ahern (dev && (dev->flags & IFF_LOOPBACK) && 295883c44251SDavid Ahern !(addr_type & IPV6_ADDR_LOOPBACK) && 295983c44251SDavid Ahern !(flags & RTF_LOCAL))) 296083c44251SDavid Ahern return true; 296183c44251SDavid Ahern 296283c44251SDavid Ahern return false; 296383c44251SDavid Ahern } 296483c44251SDavid Ahern 296583c44251SDavid Ahern int fib6_nh_init(struct net *net, struct fib6_nh *fib6_nh, 296683c44251SDavid Ahern struct fib6_config *cfg, gfp_t gfp_flags, 296783c44251SDavid Ahern struct netlink_ext_ack *extack) 296883c44251SDavid Ahern { 296983c44251SDavid Ahern struct net_device *dev = NULL; 297083c44251SDavid Ahern struct inet6_dev *idev = NULL; 297183c44251SDavid Ahern int addr_type; 297283c44251SDavid Ahern int err; 297383c44251SDavid Ahern 2974f1741730SDavid Ahern fib6_nh->fib_nh_family = AF_INET6; 2975f1741730SDavid Ahern 297683c44251SDavid Ahern err = -ENODEV; 297783c44251SDavid Ahern if (cfg->fc_ifindex) { 297883c44251SDavid Ahern dev = dev_get_by_index(net, cfg->fc_ifindex); 297983c44251SDavid Ahern if (!dev) 298083c44251SDavid Ahern goto out; 298183c44251SDavid Ahern idev = in6_dev_get(dev); 298283c44251SDavid Ahern if (!idev) 298383c44251SDavid Ahern goto out; 298483c44251SDavid Ahern } 298583c44251SDavid Ahern 298683c44251SDavid Ahern if (cfg->fc_flags & RTNH_F_ONLINK) { 298783c44251SDavid Ahern if (!dev) { 298883c44251SDavid Ahern NL_SET_ERR_MSG(extack, 298983c44251SDavid Ahern "Nexthop device required for onlink"); 299083c44251SDavid Ahern goto out; 299183c44251SDavid Ahern } 299283c44251SDavid Ahern 299383c44251SDavid Ahern if (!(dev->flags & IFF_UP)) { 299483c44251SDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 299583c44251SDavid Ahern err = -ENETDOWN; 299683c44251SDavid Ahern goto out; 299783c44251SDavid Ahern } 299883c44251SDavid Ahern 2999ad1601aeSDavid Ahern fib6_nh->fib_nh_flags |= RTNH_F_ONLINK; 300083c44251SDavid Ahern } 300183c44251SDavid Ahern 3002ad1601aeSDavid Ahern fib6_nh->fib_nh_weight = 1; 300383c44251SDavid Ahern 300483c44251SDavid Ahern /* We cannot add true routes via loopback here, 300583c44251SDavid Ahern * they would result in kernel looping; promote them to reject routes 300683c44251SDavid Ahern */ 300783c44251SDavid Ahern addr_type = ipv6_addr_type(&cfg->fc_dst); 300883c44251SDavid Ahern if (fib6_is_reject(cfg->fc_flags, dev, addr_type)) { 300983c44251SDavid Ahern /* hold loopback dev/idev if we haven't done so. */ 301083c44251SDavid Ahern if (dev != net->loopback_dev) { 301183c44251SDavid Ahern if (dev) { 301283c44251SDavid Ahern dev_put(dev); 301383c44251SDavid Ahern in6_dev_put(idev); 301483c44251SDavid Ahern } 301583c44251SDavid Ahern dev = net->loopback_dev; 301683c44251SDavid Ahern dev_hold(dev); 301783c44251SDavid Ahern idev = in6_dev_get(dev); 301883c44251SDavid Ahern if (!idev) { 301983c44251SDavid Ahern err = -ENODEV; 302083c44251SDavid Ahern goto out; 302183c44251SDavid Ahern } 302283c44251SDavid Ahern } 302383c44251SDavid Ahern goto set_dev; 302483c44251SDavid Ahern } 302583c44251SDavid Ahern 302683c44251SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY) { 302783c44251SDavid Ahern err = ip6_validate_gw(net, cfg, &dev, &idev, extack); 302883c44251SDavid Ahern if (err) 302983c44251SDavid Ahern goto out; 303083c44251SDavid Ahern 3031ad1601aeSDavid Ahern fib6_nh->fib_nh_gw6 = cfg->fc_gateway; 3032bdf00467SDavid Ahern fib6_nh->fib_nh_gw_family = AF_INET6; 303383c44251SDavid Ahern } 303483c44251SDavid Ahern 303583c44251SDavid Ahern err = -ENODEV; 303683c44251SDavid Ahern if (!dev) 303783c44251SDavid Ahern goto out; 303883c44251SDavid Ahern 303983c44251SDavid Ahern if (idev->cnf.disable_ipv6) { 304083c44251SDavid Ahern NL_SET_ERR_MSG(extack, "IPv6 is disabled on nexthop device"); 304183c44251SDavid Ahern err = -EACCES; 304283c44251SDavid Ahern goto out; 304383c44251SDavid Ahern } 304483c44251SDavid Ahern 304583c44251SDavid Ahern if (!(dev->flags & IFF_UP) && !cfg->fc_ignore_dev_down) { 304683c44251SDavid Ahern NL_SET_ERR_MSG(extack, "Nexthop device is not up"); 304783c44251SDavid Ahern err = -ENETDOWN; 304883c44251SDavid Ahern goto out; 304983c44251SDavid Ahern } 305083c44251SDavid Ahern 305183c44251SDavid Ahern if (!(cfg->fc_flags & (RTF_LOCAL | RTF_ANYCAST)) && 305283c44251SDavid Ahern !netif_carrier_ok(dev)) 3053ad1601aeSDavid Ahern fib6_nh->fib_nh_flags |= RTNH_F_LINKDOWN; 305483c44251SDavid Ahern 3055979e276eSDavid Ahern err = fib_nh_common_init(&fib6_nh->nh_common, cfg->fc_encap, 3056979e276eSDavid Ahern cfg->fc_encap_type, cfg, gfp_flags, extack); 3057979e276eSDavid Ahern if (err) 3058979e276eSDavid Ahern goto out; 305983c44251SDavid Ahern set_dev: 3060ad1601aeSDavid Ahern fib6_nh->fib_nh_dev = dev; 3061f1741730SDavid Ahern fib6_nh->fib_nh_oif = dev->ifindex; 306283c44251SDavid Ahern err = 0; 306383c44251SDavid Ahern out: 306483c44251SDavid Ahern if (idev) 306583c44251SDavid Ahern in6_dev_put(idev); 306683c44251SDavid Ahern 306783c44251SDavid Ahern if (err) { 3068ad1601aeSDavid Ahern lwtstate_put(fib6_nh->fib_nh_lws); 3069ad1601aeSDavid Ahern fib6_nh->fib_nh_lws = NULL; 307083c44251SDavid Ahern if (dev) 307183c44251SDavid Ahern dev_put(dev); 307283c44251SDavid Ahern } 307383c44251SDavid Ahern 307483c44251SDavid Ahern return err; 307583c44251SDavid Ahern } 307683c44251SDavid Ahern 3077dac7d0f2SDavid Ahern void fib6_nh_release(struct fib6_nh *fib6_nh) 3078dac7d0f2SDavid Ahern { 3079979e276eSDavid Ahern fib_nh_common_release(&fib6_nh->nh_common); 3080dac7d0f2SDavid Ahern } 3081dac7d0f2SDavid Ahern 30828d1c802bSDavid Ahern static struct fib6_info *ip6_route_info_create(struct fib6_config *cfg, 3083acb54e3cSDavid Ahern gfp_t gfp_flags, 3084333c4301SDavid Ahern struct netlink_ext_ack *extack) 30851da177e4SLinus Torvalds { 30865578689aSDaniel Lezcano struct net *net = cfg->fc_nlinfo.nl_net; 30878d1c802bSDavid Ahern struct fib6_info *rt = NULL; 3088c71099acSThomas Graf struct fib6_table *table; 30898c5b83f0SRoopa Prabhu int err = -EINVAL; 309083c44251SDavid Ahern int addr_type; 30911da177e4SLinus Torvalds 3092557c44beSDavid Ahern /* RTF_PCPU is an internal flag; can not be set by userspace */ 3093d5d531cbSDavid Ahern if (cfg->fc_flags & RTF_PCPU) { 3094d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Userspace can not set RTF_PCPU"); 3095557c44beSDavid Ahern goto out; 3096d5d531cbSDavid Ahern } 3097557c44beSDavid Ahern 30982ea2352eSWei Wang /* RTF_CACHE is an internal flag; can not be set by userspace */ 30992ea2352eSWei Wang if (cfg->fc_flags & RTF_CACHE) { 31002ea2352eSWei Wang NL_SET_ERR_MSG(extack, "Userspace can not set RTF_CACHE"); 31012ea2352eSWei Wang goto out; 31022ea2352eSWei Wang } 31032ea2352eSWei Wang 3104e8478e80SDavid Ahern if (cfg->fc_type > RTN_MAX) { 3105e8478e80SDavid Ahern NL_SET_ERR_MSG(extack, "Invalid route type"); 3106e8478e80SDavid Ahern goto out; 3107e8478e80SDavid Ahern } 3108e8478e80SDavid Ahern 3109d5d531cbSDavid Ahern if (cfg->fc_dst_len > 128) { 3110d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid prefix length"); 31118c5b83f0SRoopa Prabhu goto out; 3112d5d531cbSDavid Ahern } 3113d5d531cbSDavid Ahern if (cfg->fc_src_len > 128) { 3114d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address length"); 3115d5d531cbSDavid Ahern goto out; 3116d5d531cbSDavid Ahern } 31171da177e4SLinus Torvalds #ifndef CONFIG_IPV6_SUBTREES 3118d5d531cbSDavid Ahern if (cfg->fc_src_len) { 3119d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, 3120d5d531cbSDavid Ahern "Specifying source address requires IPV6_SUBTREES to be enabled"); 31218c5b83f0SRoopa Prabhu goto out; 3122d5d531cbSDavid Ahern } 31231da177e4SLinus Torvalds #endif 3124fc1e64e1SDavid Ahern 3125c71099acSThomas Graf err = -ENOBUFS; 312638308473SDavid S. Miller if (cfg->fc_nlinfo.nlh && 3127d71314b4SMatti Vaittinen !(cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_CREATE)) { 3128d71314b4SMatti Vaittinen table = fib6_get_table(net, cfg->fc_table); 312938308473SDavid S. Miller if (!table) { 3130f3213831SJoe Perches pr_warn("NLM_F_CREATE should be specified when creating new route\n"); 3131d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 3132d71314b4SMatti Vaittinen } 3133d71314b4SMatti Vaittinen } else { 3134d71314b4SMatti Vaittinen table = fib6_new_table(net, cfg->fc_table); 3135d71314b4SMatti Vaittinen } 313638308473SDavid S. Miller 313738308473SDavid S. Miller if (!table) 3138c71099acSThomas Graf goto out; 3139c71099acSThomas Graf 31401da177e4SLinus Torvalds err = -ENOMEM; 314193531c67SDavid Ahern rt = fib6_info_alloc(gfp_flags); 314293531c67SDavid Ahern if (!rt) 31431da177e4SLinus Torvalds goto out; 314493531c67SDavid Ahern 3145d7e774f3SDavid Ahern rt->fib6_metrics = ip_fib_metrics_init(net, cfg->fc_mx, cfg->fc_mx_len, 3146d7e774f3SDavid Ahern extack); 3147767a2217SDavid Ahern if (IS_ERR(rt->fib6_metrics)) { 3148767a2217SDavid Ahern err = PTR_ERR(rt->fib6_metrics); 3149fda21d46SEric Dumazet /* Do not leave garbage there. */ 3150fda21d46SEric Dumazet rt->fib6_metrics = (struct dst_metrics *)&dst_default_metrics; 3151767a2217SDavid Ahern goto out; 3152767a2217SDavid Ahern } 3153767a2217SDavid Ahern 315493531c67SDavid Ahern if (cfg->fc_flags & RTF_ADDRCONF) 315593531c67SDavid Ahern rt->dst_nocount = true; 31561da177e4SLinus Torvalds 31571716a961SGao feng if (cfg->fc_flags & RTF_EXPIRES) 315814895687SDavid Ahern fib6_set_expires(rt, jiffies + 31591716a961SGao feng clock_t_to_jiffies(cfg->fc_expires)); 31601716a961SGao feng else 316114895687SDavid Ahern fib6_clean_expires(rt); 31621da177e4SLinus Torvalds 316386872cb5SThomas Graf if (cfg->fc_protocol == RTPROT_UNSPEC) 316486872cb5SThomas Graf cfg->fc_protocol = RTPROT_BOOT; 316593c2fb25SDavid Ahern rt->fib6_protocol = cfg->fc_protocol; 316686872cb5SThomas Graf 316783c44251SDavid Ahern rt->fib6_table = table; 316883c44251SDavid Ahern rt->fib6_metric = cfg->fc_metric; 316983c44251SDavid Ahern rt->fib6_type = cfg->fc_type; 31702b2450caSDavid Ahern rt->fib6_flags = cfg->fc_flags & ~RTF_GATEWAY; 317119e42e45SRoopa Prabhu 317293c2fb25SDavid Ahern ipv6_addr_prefix(&rt->fib6_dst.addr, &cfg->fc_dst, cfg->fc_dst_len); 317393c2fb25SDavid Ahern rt->fib6_dst.plen = cfg->fc_dst_len; 317493c2fb25SDavid Ahern if (rt->fib6_dst.plen == 128) 31753b6761d1SDavid Ahern rt->dst_host = true; 31761da177e4SLinus Torvalds 31771da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 317893c2fb25SDavid Ahern ipv6_addr_prefix(&rt->fib6_src.addr, &cfg->fc_src, cfg->fc_src_len); 317993c2fb25SDavid Ahern rt->fib6_src.plen = cfg->fc_src_len; 31801da177e4SLinus Torvalds #endif 318183c44251SDavid Ahern err = fib6_nh_init(net, &rt->fib6_nh, cfg, gfp_flags, extack); 31821da177e4SLinus Torvalds if (err) 31831da177e4SLinus Torvalds goto out; 31849fbb704cSDavid Ahern 318583c44251SDavid Ahern /* We cannot add true routes via loopback here, 318683c44251SDavid Ahern * they would result in kernel looping; promote them to reject routes 318783c44251SDavid Ahern */ 318883c44251SDavid Ahern addr_type = ipv6_addr_type(&cfg->fc_dst); 3189ad1601aeSDavid Ahern if (fib6_is_reject(cfg->fc_flags, rt->fib6_nh.fib_nh_dev, addr_type)) 319083c44251SDavid Ahern rt->fib6_flags = RTF_REJECT | RTF_NONEXTHOP; 3191955ec4cbSDavid Ahern 3192c3968a85SDaniel Walter if (!ipv6_addr_any(&cfg->fc_prefsrc)) { 319383c44251SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 319483c44251SDavid Ahern 3195c3968a85SDaniel Walter if (!ipv6_chk_addr(net, &cfg->fc_prefsrc, dev, 0)) { 3196d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "Invalid source address"); 3197c3968a85SDaniel Walter err = -EINVAL; 3198c3968a85SDaniel Walter goto out; 3199c3968a85SDaniel Walter } 320093c2fb25SDavid Ahern rt->fib6_prefsrc.addr = cfg->fc_prefsrc; 320193c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 128; 3202c3968a85SDaniel Walter } else 320393c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 0; 3204c3968a85SDaniel Walter 32058c5b83f0SRoopa Prabhu return rt; 32061da177e4SLinus Torvalds out: 320793531c67SDavid Ahern fib6_info_release(rt); 32088c5b83f0SRoopa Prabhu return ERR_PTR(err); 32096b9ea5a6SRoopa Prabhu } 32106b9ea5a6SRoopa Prabhu 3211acb54e3cSDavid Ahern int ip6_route_add(struct fib6_config *cfg, gfp_t gfp_flags, 3212333c4301SDavid Ahern struct netlink_ext_ack *extack) 32136b9ea5a6SRoopa Prabhu { 32148d1c802bSDavid Ahern struct fib6_info *rt; 32156b9ea5a6SRoopa Prabhu int err; 32166b9ea5a6SRoopa Prabhu 3217acb54e3cSDavid Ahern rt = ip6_route_info_create(cfg, gfp_flags, extack); 3218d4ead6b3SDavid Ahern if (IS_ERR(rt)) 3219d4ead6b3SDavid Ahern return PTR_ERR(rt); 32206b9ea5a6SRoopa Prabhu 3221d4ead6b3SDavid Ahern err = __ip6_ins_rt(rt, &cfg->fc_nlinfo, extack); 322293531c67SDavid Ahern fib6_info_release(rt); 32236b9ea5a6SRoopa Prabhu 32241da177e4SLinus Torvalds return err; 32251da177e4SLinus Torvalds } 32261da177e4SLinus Torvalds 32278d1c802bSDavid Ahern static int __ip6_del_rt(struct fib6_info *rt, struct nl_info *info) 32281da177e4SLinus Torvalds { 3229afb1d4b5SDavid Ahern struct net *net = info->nl_net; 3230c71099acSThomas Graf struct fib6_table *table; 3231afb1d4b5SDavid Ahern int err; 32321da177e4SLinus Torvalds 3233421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) { 32346825a26cSGao feng err = -ENOENT; 32356825a26cSGao feng goto out; 32366825a26cSGao feng } 32376c813a72SPatrick McHardy 323893c2fb25SDavid Ahern table = rt->fib6_table; 323966f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 324086872cb5SThomas Graf err = fib6_del(rt, info); 324166f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 32421da177e4SLinus Torvalds 32436825a26cSGao feng out: 324493531c67SDavid Ahern fib6_info_release(rt); 32451da177e4SLinus Torvalds return err; 32461da177e4SLinus Torvalds } 32471da177e4SLinus Torvalds 32488d1c802bSDavid Ahern int ip6_del_rt(struct net *net, struct fib6_info *rt) 3249e0a1ad73SThomas Graf { 3250afb1d4b5SDavid Ahern struct nl_info info = { .nl_net = net }; 3251afb1d4b5SDavid Ahern 3252528c4cebSDenis V. Lunev return __ip6_del_rt(rt, &info); 3253e0a1ad73SThomas Graf } 3254e0a1ad73SThomas Graf 32558d1c802bSDavid Ahern static int __ip6_del_rt_siblings(struct fib6_info *rt, struct fib6_config *cfg) 32560ae81335SDavid Ahern { 32570ae81335SDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 3258e3330039SWANG Cong struct net *net = info->nl_net; 325916a16cd3SDavid Ahern struct sk_buff *skb = NULL; 32600ae81335SDavid Ahern struct fib6_table *table; 3261e3330039SWANG Cong int err = -ENOENT; 32620ae81335SDavid Ahern 3263421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 3264e3330039SWANG Cong goto out_put; 326593c2fb25SDavid Ahern table = rt->fib6_table; 326666f5d6ceSWei Wang spin_lock_bh(&table->tb6_lock); 32670ae81335SDavid Ahern 326893c2fb25SDavid Ahern if (rt->fib6_nsiblings && cfg->fc_delete_all_nh) { 32698d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 32700ae81335SDavid Ahern 327116a16cd3SDavid Ahern /* prefer to send a single notification with all hops */ 327216a16cd3SDavid Ahern skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 327316a16cd3SDavid Ahern if (skb) { 327416a16cd3SDavid Ahern u32 seq = info->nlh ? info->nlh->nlmsg_seq : 0; 327516a16cd3SDavid Ahern 3276d4ead6b3SDavid Ahern if (rt6_fill_node(net, skb, rt, NULL, 327716a16cd3SDavid Ahern NULL, NULL, 0, RTM_DELROUTE, 327816a16cd3SDavid Ahern info->portid, seq, 0) < 0) { 327916a16cd3SDavid Ahern kfree_skb(skb); 328016a16cd3SDavid Ahern skb = NULL; 328116a16cd3SDavid Ahern } else 328216a16cd3SDavid Ahern info->skip_notify = 1; 328316a16cd3SDavid Ahern } 328416a16cd3SDavid Ahern 32850ae81335SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 328693c2fb25SDavid Ahern &rt->fib6_siblings, 328793c2fb25SDavid Ahern fib6_siblings) { 32880ae81335SDavid Ahern err = fib6_del(sibling, info); 32890ae81335SDavid Ahern if (err) 3290e3330039SWANG Cong goto out_unlock; 32910ae81335SDavid Ahern } 32920ae81335SDavid Ahern } 32930ae81335SDavid Ahern 32940ae81335SDavid Ahern err = fib6_del(rt, info); 3295e3330039SWANG Cong out_unlock: 329666f5d6ceSWei Wang spin_unlock_bh(&table->tb6_lock); 3297e3330039SWANG Cong out_put: 329893531c67SDavid Ahern fib6_info_release(rt); 329916a16cd3SDavid Ahern 330016a16cd3SDavid Ahern if (skb) { 3301e3330039SWANG Cong rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 330216a16cd3SDavid Ahern info->nlh, gfp_any()); 330316a16cd3SDavid Ahern } 33040ae81335SDavid Ahern return err; 33050ae81335SDavid Ahern } 33060ae81335SDavid Ahern 330723fb93a4SDavid Ahern static int ip6_del_cached_rt(struct rt6_info *rt, struct fib6_config *cfg) 330823fb93a4SDavid Ahern { 330923fb93a4SDavid Ahern int rc = -ESRCH; 331023fb93a4SDavid Ahern 331123fb93a4SDavid Ahern if (cfg->fc_ifindex && rt->dst.dev->ifindex != cfg->fc_ifindex) 331223fb93a4SDavid Ahern goto out; 331323fb93a4SDavid Ahern 331423fb93a4SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY && 331523fb93a4SDavid Ahern !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway)) 331623fb93a4SDavid Ahern goto out; 3317761f6026SXin Long 331823fb93a4SDavid Ahern rc = rt6_remove_exception_rt(rt); 331923fb93a4SDavid Ahern out: 332023fb93a4SDavid Ahern return rc; 332123fb93a4SDavid Ahern } 332223fb93a4SDavid Ahern 3323333c4301SDavid Ahern static int ip6_route_del(struct fib6_config *cfg, 3324333c4301SDavid Ahern struct netlink_ext_ack *extack) 33251da177e4SLinus Torvalds { 33268d1c802bSDavid Ahern struct rt6_info *rt_cache; 3327c71099acSThomas Graf struct fib6_table *table; 33288d1c802bSDavid Ahern struct fib6_info *rt; 33291da177e4SLinus Torvalds struct fib6_node *fn; 33301da177e4SLinus Torvalds int err = -ESRCH; 33311da177e4SLinus Torvalds 33325578689aSDaniel Lezcano table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table); 3333d5d531cbSDavid Ahern if (!table) { 3334d5d531cbSDavid Ahern NL_SET_ERR_MSG(extack, "FIB table does not exist"); 3335c71099acSThomas Graf return err; 3336d5d531cbSDavid Ahern } 33371da177e4SLinus Torvalds 333866f5d6ceSWei Wang rcu_read_lock(); 3339c71099acSThomas Graf 3340c71099acSThomas Graf fn = fib6_locate(&table->tb6_root, 334186872cb5SThomas Graf &cfg->fc_dst, cfg->fc_dst_len, 334238fbeeeeSWei Wang &cfg->fc_src, cfg->fc_src_len, 33432b760fcfSWei Wang !(cfg->fc_flags & RTF_CACHE)); 33441da177e4SLinus Torvalds 33451da177e4SLinus Torvalds if (fn) { 334666f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 3347ad1601aeSDavid Ahern struct fib6_nh *nh; 3348ad1601aeSDavid Ahern 33492b760fcfSWei Wang if (cfg->fc_flags & RTF_CACHE) { 33507e4b5128SDavid Ahern struct fib6_result res = { 33517e4b5128SDavid Ahern .f6i = rt, 33527e4b5128SDavid Ahern }; 335323fb93a4SDavid Ahern int rc; 335423fb93a4SDavid Ahern 33557e4b5128SDavid Ahern rt_cache = rt6_find_cached_rt(&res, 33567e4b5128SDavid Ahern &cfg->fc_dst, 33572b760fcfSWei Wang &cfg->fc_src); 335823fb93a4SDavid Ahern if (rt_cache) { 335923fb93a4SDavid Ahern rc = ip6_del_cached_rt(rt_cache, cfg); 33609e575010SEric Dumazet if (rc != -ESRCH) { 33619e575010SEric Dumazet rcu_read_unlock(); 336223fb93a4SDavid Ahern return rc; 336323fb93a4SDavid Ahern } 33649e575010SEric Dumazet } 33651f56a01fSMartin KaFai Lau continue; 33662b760fcfSWei Wang } 3367ad1601aeSDavid Ahern 3368ad1601aeSDavid Ahern nh = &rt->fib6_nh; 336986872cb5SThomas Graf if (cfg->fc_ifindex && 3370ad1601aeSDavid Ahern (!nh->fib_nh_dev || 3371ad1601aeSDavid Ahern nh->fib_nh_dev->ifindex != cfg->fc_ifindex)) 33721da177e4SLinus Torvalds continue; 337386872cb5SThomas Graf if (cfg->fc_flags & RTF_GATEWAY && 3374ad1601aeSDavid Ahern !ipv6_addr_equal(&cfg->fc_gateway, &nh->fib_nh_gw6)) 33751da177e4SLinus Torvalds continue; 337693c2fb25SDavid Ahern if (cfg->fc_metric && cfg->fc_metric != rt->fib6_metric) 33771da177e4SLinus Torvalds continue; 337893c2fb25SDavid Ahern if (cfg->fc_protocol && cfg->fc_protocol != rt->fib6_protocol) 3379c2ed1880SMantas M continue; 3380e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 3381e873e4b9SWei Wang continue; 338266f5d6ceSWei Wang rcu_read_unlock(); 33831da177e4SLinus Torvalds 33840ae81335SDavid Ahern /* if gateway was specified only delete the one hop */ 33850ae81335SDavid Ahern if (cfg->fc_flags & RTF_GATEWAY) 338686872cb5SThomas Graf return __ip6_del_rt(rt, &cfg->fc_nlinfo); 33870ae81335SDavid Ahern 33880ae81335SDavid Ahern return __ip6_del_rt_siblings(rt, cfg); 33891da177e4SLinus Torvalds } 33901da177e4SLinus Torvalds } 339166f5d6ceSWei Wang rcu_read_unlock(); 33921da177e4SLinus Torvalds 33931da177e4SLinus Torvalds return err; 33941da177e4SLinus Torvalds } 33951da177e4SLinus Torvalds 33966700c270SDavid S. Miller static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, struct sk_buff *skb) 3397a6279458SYOSHIFUJI Hideaki { 3398a6279458SYOSHIFUJI Hideaki struct netevent_redirect netevent; 3399e8599ff4SDavid S. Miller struct rt6_info *rt, *nrt = NULL; 340085bd05deSDavid Ahern struct fib6_result res = {}; 3401e8599ff4SDavid S. Miller struct ndisc_options ndopts; 3402e8599ff4SDavid S. Miller struct inet6_dev *in6_dev; 3403e8599ff4SDavid S. Miller struct neighbour *neigh; 340471bcdba0SYOSHIFUJI Hideaki / 吉藤英明 struct rd_msg *msg; 34056e157b6aSDavid S. Miller int optlen, on_link; 34066e157b6aSDavid S. Miller u8 *lladdr; 3407e8599ff4SDavid S. Miller 340829a3cad5SSimon Horman optlen = skb_tail_pointer(skb) - skb_transport_header(skb); 340971bcdba0SYOSHIFUJI Hideaki / 吉藤英明 optlen -= sizeof(*msg); 3410e8599ff4SDavid S. Miller 3411e8599ff4SDavid S. Miller if (optlen < 0) { 34126e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: packet too short\n"); 3413e8599ff4SDavid S. Miller return; 3414e8599ff4SDavid S. Miller } 3415e8599ff4SDavid S. Miller 341671bcdba0SYOSHIFUJI Hideaki / 吉藤英明 msg = (struct rd_msg *)icmp6_hdr(skb); 3417e8599ff4SDavid S. Miller 341871bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_is_multicast(&msg->dest)) { 34196e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: destination address is multicast\n"); 3420e8599ff4SDavid S. Miller return; 3421e8599ff4SDavid S. Miller } 3422e8599ff4SDavid S. Miller 34236e157b6aSDavid S. Miller on_link = 0; 342471bcdba0SYOSHIFUJI Hideaki / 吉藤英明 if (ipv6_addr_equal(&msg->dest, &msg->target)) { 3425e8599ff4SDavid S. Miller on_link = 1; 342671bcdba0SYOSHIFUJI Hideaki / 吉藤英明 } else if (ipv6_addr_type(&msg->target) != 3427e8599ff4SDavid S. Miller (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) { 34286e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_do_redirect: target address is not link-local unicast\n"); 3429e8599ff4SDavid S. Miller return; 3430e8599ff4SDavid S. Miller } 3431e8599ff4SDavid S. Miller 3432e8599ff4SDavid S. Miller in6_dev = __in6_dev_get(skb->dev); 3433e8599ff4SDavid S. Miller if (!in6_dev) 3434e8599ff4SDavid S. Miller return; 3435e8599ff4SDavid S. Miller if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_redirects) 3436e8599ff4SDavid S. Miller return; 3437e8599ff4SDavid S. Miller 3438e8599ff4SDavid S. Miller /* RFC2461 8.1: 3439e8599ff4SDavid S. Miller * The IP source address of the Redirect MUST be the same as the current 3440e8599ff4SDavid S. Miller * first-hop router for the specified ICMP Destination Address. 3441e8599ff4SDavid S. Miller */ 3442e8599ff4SDavid S. Miller 3443f997c55cSAlexander Aring if (!ndisc_parse_options(skb->dev, msg->opt, optlen, &ndopts)) { 3444e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid ND options\n"); 3445e8599ff4SDavid S. Miller return; 3446e8599ff4SDavid S. Miller } 34476e157b6aSDavid S. Miller 34486e157b6aSDavid S. Miller lladdr = NULL; 3449e8599ff4SDavid S. Miller if (ndopts.nd_opts_tgt_lladdr) { 3450e8599ff4SDavid S. Miller lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr, 3451e8599ff4SDavid S. Miller skb->dev); 3452e8599ff4SDavid S. Miller if (!lladdr) { 3453e8599ff4SDavid S. Miller net_dbg_ratelimited("rt6_redirect: invalid link-layer address length\n"); 3454e8599ff4SDavid S. Miller return; 3455e8599ff4SDavid S. Miller } 3456e8599ff4SDavid S. Miller } 3457e8599ff4SDavid S. Miller 34586e157b6aSDavid S. Miller rt = (struct rt6_info *) dst; 3459ec13ad1dSMatthias Schiffer if (rt->rt6i_flags & RTF_REJECT) { 34606e157b6aSDavid S. Miller net_dbg_ratelimited("rt6_redirect: source isn't a valid nexthop for redirect target\n"); 34616e157b6aSDavid S. Miller return; 34626e157b6aSDavid S. Miller } 34636e157b6aSDavid S. Miller 34646e157b6aSDavid S. Miller /* Redirect received -> path was valid. 34656e157b6aSDavid S. Miller * Look, redirects are sent only in response to data packets, 34666e157b6aSDavid S. Miller * so that this nexthop apparently is reachable. --ANK 34676e157b6aSDavid S. Miller */ 34680dec879fSJulian Anastasov dst_confirm_neigh(&rt->dst, &ipv6_hdr(skb)->saddr); 34696e157b6aSDavid S. Miller 347071bcdba0SYOSHIFUJI Hideaki / 吉藤英明 neigh = __neigh_lookup(&nd_tbl, &msg->target, skb->dev, 1); 3471e8599ff4SDavid S. Miller if (!neigh) 3472e8599ff4SDavid S. Miller return; 3473e8599ff4SDavid S. Miller 34741da177e4SLinus Torvalds /* 34751da177e4SLinus Torvalds * We have finally decided to accept it. 34761da177e4SLinus Torvalds */ 34771da177e4SLinus Torvalds 3478f997c55cSAlexander Aring ndisc_update(skb->dev, neigh, lladdr, NUD_STALE, 34791da177e4SLinus Torvalds NEIGH_UPDATE_F_WEAK_OVERRIDE| 34801da177e4SLinus Torvalds NEIGH_UPDATE_F_OVERRIDE| 34811da177e4SLinus Torvalds (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER| 3482f997c55cSAlexander Aring NEIGH_UPDATE_F_ISROUTER)), 3483f997c55cSAlexander Aring NDISC_REDIRECT, &ndopts); 34841da177e4SLinus Torvalds 34854d85cd0cSDavid Ahern rcu_read_lock(); 348685bd05deSDavid Ahern res.f6i = rcu_dereference(rt->from); 3487e873e4b9SWei Wang /* This fib6_info_hold() is safe here because we hold reference to rt 3488e873e4b9SWei Wang * and rt already holds reference to fib6_info. 3489e873e4b9SWei Wang */ 349085bd05deSDavid Ahern fib6_info_hold(res.f6i); 34914d85cd0cSDavid Ahern rcu_read_unlock(); 34928a14e46fSDavid Ahern 349385bd05deSDavid Ahern res.nh = &res.f6i->fib6_nh; 349485bd05deSDavid Ahern nrt = ip6_rt_cache_alloc(&res, &msg->dest, NULL); 349538308473SDavid S. Miller if (!nrt) 34961da177e4SLinus Torvalds goto out; 34971da177e4SLinus Torvalds 34981da177e4SLinus Torvalds nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE; 34991da177e4SLinus Torvalds if (on_link) 35001da177e4SLinus Torvalds nrt->rt6i_flags &= ~RTF_GATEWAY; 35011da177e4SLinus Torvalds 35024e3fd7a0SAlexey Dobriyan nrt->rt6i_gateway = *(struct in6_addr *)neigh->primary_key; 35031da177e4SLinus Torvalds 35042b760fcfSWei Wang /* No need to remove rt from the exception table if rt is 35052b760fcfSWei Wang * a cached route because rt6_insert_exception() will 35062b760fcfSWei Wang * takes care of it 35072b760fcfSWei Wang */ 35085012f0a5SDavid Ahern if (rt6_insert_exception(nrt, &res)) { 35092b760fcfSWei Wang dst_release_immediate(&nrt->dst); 35102b760fcfSWei Wang goto out; 35112b760fcfSWei Wang } 35121da177e4SLinus Torvalds 3513d8d1f30bSChangli Gao netevent.old = &rt->dst; 3514d8d1f30bSChangli Gao netevent.new = &nrt->dst; 351571bcdba0SYOSHIFUJI Hideaki / 吉藤英明 netevent.daddr = &msg->dest; 351660592833SYOSHIFUJI Hideaki / 吉藤英明 netevent.neigh = neigh; 35178d71740cSTom Tucker call_netevent_notifiers(NETEVENT_REDIRECT, &netevent); 35188d71740cSTom Tucker 35191da177e4SLinus Torvalds out: 352085bd05deSDavid Ahern fib6_info_release(res.f6i); 3521e8599ff4SDavid S. Miller neigh_release(neigh); 35226e157b6aSDavid S. Miller } 35236e157b6aSDavid S. Miller 352470ceb4f5SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_ROUTE_INFO 35258d1c802bSDavid Ahern static struct fib6_info *rt6_get_route_info(struct net *net, 3526b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3527830218c1SDavid Ahern const struct in6_addr *gwaddr, 3528830218c1SDavid Ahern struct net_device *dev) 352970ceb4f5SYOSHIFUJI Hideaki { 3530830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO; 3531830218c1SDavid Ahern int ifindex = dev->ifindex; 353270ceb4f5SYOSHIFUJI Hideaki struct fib6_node *fn; 35338d1c802bSDavid Ahern struct fib6_info *rt = NULL; 3534c71099acSThomas Graf struct fib6_table *table; 353570ceb4f5SYOSHIFUJI Hideaki 3536830218c1SDavid Ahern table = fib6_get_table(net, tb_id); 353738308473SDavid S. Miller if (!table) 3538c71099acSThomas Graf return NULL; 3539c71099acSThomas Graf 354066f5d6ceSWei Wang rcu_read_lock(); 354138fbeeeeSWei Wang fn = fib6_locate(&table->tb6_root, prefix, prefixlen, NULL, 0, true); 354270ceb4f5SYOSHIFUJI Hideaki if (!fn) 354370ceb4f5SYOSHIFUJI Hideaki goto out; 354470ceb4f5SYOSHIFUJI Hideaki 354566f5d6ceSWei Wang for_each_fib6_node_rt_rcu(fn) { 3546ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev->ifindex != ifindex) 354770ceb4f5SYOSHIFUJI Hideaki continue; 35482b2450caSDavid Ahern if (!(rt->fib6_flags & RTF_ROUTEINFO) || 3549bdf00467SDavid Ahern !rt->fib6_nh.fib_nh_gw_family) 355070ceb4f5SYOSHIFUJI Hideaki continue; 3551ad1601aeSDavid Ahern if (!ipv6_addr_equal(&rt->fib6_nh.fib_nh_gw6, gwaddr)) 355270ceb4f5SYOSHIFUJI Hideaki continue; 3553e873e4b9SWei Wang if (!fib6_info_hold_safe(rt)) 3554e873e4b9SWei Wang continue; 355570ceb4f5SYOSHIFUJI Hideaki break; 355670ceb4f5SYOSHIFUJI Hideaki } 355770ceb4f5SYOSHIFUJI Hideaki out: 355866f5d6ceSWei Wang rcu_read_unlock(); 355970ceb4f5SYOSHIFUJI Hideaki return rt; 356070ceb4f5SYOSHIFUJI Hideaki } 356170ceb4f5SYOSHIFUJI Hideaki 35628d1c802bSDavid Ahern static struct fib6_info *rt6_add_route_info(struct net *net, 3563b71d1d42SEric Dumazet const struct in6_addr *prefix, int prefixlen, 3564830218c1SDavid Ahern const struct in6_addr *gwaddr, 3565830218c1SDavid Ahern struct net_device *dev, 356695c96174SEric Dumazet unsigned int pref) 356770ceb4f5SYOSHIFUJI Hideaki { 356886872cb5SThomas Graf struct fib6_config cfg = { 3569238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 3570830218c1SDavid Ahern .fc_ifindex = dev->ifindex, 357186872cb5SThomas Graf .fc_dst_len = prefixlen, 357286872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO | 357386872cb5SThomas Graf RTF_UP | RTF_PREF(pref), 3574b91d5329SXin Long .fc_protocol = RTPROT_RA, 3575e8478e80SDavid Ahern .fc_type = RTN_UNICAST, 357615e47304SEric W. Biederman .fc_nlinfo.portid = 0, 3577efa2cea0SDaniel Lezcano .fc_nlinfo.nlh = NULL, 3578efa2cea0SDaniel Lezcano .fc_nlinfo.nl_net = net, 357986872cb5SThomas Graf }; 358070ceb4f5SYOSHIFUJI Hideaki 3581830218c1SDavid Ahern cfg.fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_INFO, 35824e3fd7a0SAlexey Dobriyan cfg.fc_dst = *prefix; 35834e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 358486872cb5SThomas Graf 3585e317da96SYOSHIFUJI Hideaki /* We should treat it as a default route if prefix length is 0. */ 3586e317da96SYOSHIFUJI Hideaki if (!prefixlen) 358786872cb5SThomas Graf cfg.fc_flags |= RTF_DEFAULT; 358870ceb4f5SYOSHIFUJI Hideaki 3589acb54e3cSDavid Ahern ip6_route_add(&cfg, GFP_ATOMIC, NULL); 359070ceb4f5SYOSHIFUJI Hideaki 3591830218c1SDavid Ahern return rt6_get_route_info(net, prefix, prefixlen, gwaddr, dev); 359270ceb4f5SYOSHIFUJI Hideaki } 359370ceb4f5SYOSHIFUJI Hideaki #endif 359470ceb4f5SYOSHIFUJI Hideaki 35958d1c802bSDavid Ahern struct fib6_info *rt6_get_dflt_router(struct net *net, 3596afb1d4b5SDavid Ahern const struct in6_addr *addr, 3597afb1d4b5SDavid Ahern struct net_device *dev) 35981da177e4SLinus Torvalds { 3599830218c1SDavid Ahern u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT; 36008d1c802bSDavid Ahern struct fib6_info *rt; 3601c71099acSThomas Graf struct fib6_table *table; 36021da177e4SLinus Torvalds 3603afb1d4b5SDavid Ahern table = fib6_get_table(net, tb_id); 360438308473SDavid S. Miller if (!table) 3605c71099acSThomas Graf return NULL; 36061da177e4SLinus Torvalds 360766f5d6ceSWei Wang rcu_read_lock(); 360866f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 3609ad1601aeSDavid Ahern struct fib6_nh *nh = &rt->fib6_nh; 3610ad1601aeSDavid Ahern 3611ad1601aeSDavid Ahern if (dev == nh->fib_nh_dev && 361293c2fb25SDavid Ahern ((rt->fib6_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) && 3613ad1601aeSDavid Ahern ipv6_addr_equal(&nh->fib_nh_gw6, addr)) 36141da177e4SLinus Torvalds break; 36151da177e4SLinus Torvalds } 3616e873e4b9SWei Wang if (rt && !fib6_info_hold_safe(rt)) 3617e873e4b9SWei Wang rt = NULL; 361866f5d6ceSWei Wang rcu_read_unlock(); 36191da177e4SLinus Torvalds return rt; 36201da177e4SLinus Torvalds } 36211da177e4SLinus Torvalds 36228d1c802bSDavid Ahern struct fib6_info *rt6_add_dflt_router(struct net *net, 3623afb1d4b5SDavid Ahern const struct in6_addr *gwaddr, 3624ebacaaa0SYOSHIFUJI Hideaki struct net_device *dev, 3625ebacaaa0SYOSHIFUJI Hideaki unsigned int pref) 36261da177e4SLinus Torvalds { 362786872cb5SThomas Graf struct fib6_config cfg = { 3628ca254490SDavid Ahern .fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_DFLT, 3629238fc7eaSRami Rosen .fc_metric = IP6_RT_PRIO_USER, 363086872cb5SThomas Graf .fc_ifindex = dev->ifindex, 363186872cb5SThomas Graf .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT | 363286872cb5SThomas Graf RTF_UP | RTF_EXPIRES | RTF_PREF(pref), 3633b91d5329SXin Long .fc_protocol = RTPROT_RA, 3634e8478e80SDavid Ahern .fc_type = RTN_UNICAST, 363515e47304SEric W. Biederman .fc_nlinfo.portid = 0, 36365578689aSDaniel Lezcano .fc_nlinfo.nlh = NULL, 3637afb1d4b5SDavid Ahern .fc_nlinfo.nl_net = net, 363886872cb5SThomas Graf }; 36391da177e4SLinus Torvalds 36404e3fd7a0SAlexey Dobriyan cfg.fc_gateway = *gwaddr; 36411da177e4SLinus Torvalds 3642acb54e3cSDavid Ahern if (!ip6_route_add(&cfg, GFP_ATOMIC, NULL)) { 3643830218c1SDavid Ahern struct fib6_table *table; 3644830218c1SDavid Ahern 3645830218c1SDavid Ahern table = fib6_get_table(dev_net(dev), cfg.fc_table); 3646830218c1SDavid Ahern if (table) 3647830218c1SDavid Ahern table->flags |= RT6_TABLE_HAS_DFLT_ROUTER; 3648830218c1SDavid Ahern } 36491da177e4SLinus Torvalds 3650afb1d4b5SDavid Ahern return rt6_get_dflt_router(net, gwaddr, dev); 36511da177e4SLinus Torvalds } 36521da177e4SLinus Torvalds 3653afb1d4b5SDavid Ahern static void __rt6_purge_dflt_routers(struct net *net, 3654afb1d4b5SDavid Ahern struct fib6_table *table) 36551da177e4SLinus Torvalds { 36568d1c802bSDavid Ahern struct fib6_info *rt; 36571da177e4SLinus Torvalds 36581da177e4SLinus Torvalds restart: 365966f5d6ceSWei Wang rcu_read_lock(); 366066f5d6ceSWei Wang for_each_fib6_node_rt_rcu(&table->tb6_root) { 3661dcd1f572SDavid Ahern struct net_device *dev = fib6_info_nh_dev(rt); 3662dcd1f572SDavid Ahern struct inet6_dev *idev = dev ? __in6_dev_get(dev) : NULL; 3663dcd1f572SDavid Ahern 366493c2fb25SDavid Ahern if (rt->fib6_flags & (RTF_DEFAULT | RTF_ADDRCONF) && 3665e873e4b9SWei Wang (!idev || idev->cnf.accept_ra != 2) && 3666e873e4b9SWei Wang fib6_info_hold_safe(rt)) { 366766f5d6ceSWei Wang rcu_read_unlock(); 3668afb1d4b5SDavid Ahern ip6_del_rt(net, rt); 36691da177e4SLinus Torvalds goto restart; 36701da177e4SLinus Torvalds } 36711da177e4SLinus Torvalds } 367266f5d6ceSWei Wang rcu_read_unlock(); 3673830218c1SDavid Ahern 3674830218c1SDavid Ahern table->flags &= ~RT6_TABLE_HAS_DFLT_ROUTER; 3675830218c1SDavid Ahern } 3676830218c1SDavid Ahern 3677830218c1SDavid Ahern void rt6_purge_dflt_routers(struct net *net) 3678830218c1SDavid Ahern { 3679830218c1SDavid Ahern struct fib6_table *table; 3680830218c1SDavid Ahern struct hlist_head *head; 3681830218c1SDavid Ahern unsigned int h; 3682830218c1SDavid Ahern 3683830218c1SDavid Ahern rcu_read_lock(); 3684830218c1SDavid Ahern 3685830218c1SDavid Ahern for (h = 0; h < FIB6_TABLE_HASHSZ; h++) { 3686830218c1SDavid Ahern head = &net->ipv6.fib_table_hash[h]; 3687830218c1SDavid Ahern hlist_for_each_entry_rcu(table, head, tb6_hlist) { 3688830218c1SDavid Ahern if (table->flags & RT6_TABLE_HAS_DFLT_ROUTER) 3689afb1d4b5SDavid Ahern __rt6_purge_dflt_routers(net, table); 3690830218c1SDavid Ahern } 3691830218c1SDavid Ahern } 3692830218c1SDavid Ahern 3693830218c1SDavid Ahern rcu_read_unlock(); 36941da177e4SLinus Torvalds } 36951da177e4SLinus Torvalds 36965578689aSDaniel Lezcano static void rtmsg_to_fib6_config(struct net *net, 36975578689aSDaniel Lezcano struct in6_rtmsg *rtmsg, 369886872cb5SThomas Graf struct fib6_config *cfg) 369986872cb5SThomas Graf { 37008823a3acSMaciej Żenczykowski *cfg = (struct fib6_config){ 37018823a3acSMaciej Żenczykowski .fc_table = l3mdev_fib_table_by_index(net, rtmsg->rtmsg_ifindex) ? 37028823a3acSMaciej Żenczykowski : RT6_TABLE_MAIN, 37038823a3acSMaciej Żenczykowski .fc_ifindex = rtmsg->rtmsg_ifindex, 370467f69513SDavid Ahern .fc_metric = rtmsg->rtmsg_metric ? : IP6_RT_PRIO_USER, 37058823a3acSMaciej Żenczykowski .fc_expires = rtmsg->rtmsg_info, 37068823a3acSMaciej Żenczykowski .fc_dst_len = rtmsg->rtmsg_dst_len, 37078823a3acSMaciej Żenczykowski .fc_src_len = rtmsg->rtmsg_src_len, 37088823a3acSMaciej Żenczykowski .fc_flags = rtmsg->rtmsg_flags, 37098823a3acSMaciej Żenczykowski .fc_type = rtmsg->rtmsg_type, 371086872cb5SThomas Graf 37118823a3acSMaciej Żenczykowski .fc_nlinfo.nl_net = net, 371286872cb5SThomas Graf 37138823a3acSMaciej Żenczykowski .fc_dst = rtmsg->rtmsg_dst, 37148823a3acSMaciej Żenczykowski .fc_src = rtmsg->rtmsg_src, 37158823a3acSMaciej Żenczykowski .fc_gateway = rtmsg->rtmsg_gateway, 37168823a3acSMaciej Żenczykowski }; 371786872cb5SThomas Graf } 371886872cb5SThomas Graf 37195578689aSDaniel Lezcano int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg) 37201da177e4SLinus Torvalds { 372186872cb5SThomas Graf struct fib6_config cfg; 37221da177e4SLinus Torvalds struct in6_rtmsg rtmsg; 37231da177e4SLinus Torvalds int err; 37241da177e4SLinus Torvalds 37251da177e4SLinus Torvalds switch (cmd) { 37261da177e4SLinus Torvalds case SIOCADDRT: /* Add a route */ 37271da177e4SLinus Torvalds case SIOCDELRT: /* Delete a route */ 3728af31f412SEric W. Biederman if (!ns_capable(net->user_ns, CAP_NET_ADMIN)) 37291da177e4SLinus Torvalds return -EPERM; 37301da177e4SLinus Torvalds err = copy_from_user(&rtmsg, arg, 37311da177e4SLinus Torvalds sizeof(struct in6_rtmsg)); 37321da177e4SLinus Torvalds if (err) 37331da177e4SLinus Torvalds return -EFAULT; 37341da177e4SLinus Torvalds 37355578689aSDaniel Lezcano rtmsg_to_fib6_config(net, &rtmsg, &cfg); 373686872cb5SThomas Graf 37371da177e4SLinus Torvalds rtnl_lock(); 37381da177e4SLinus Torvalds switch (cmd) { 37391da177e4SLinus Torvalds case SIOCADDRT: 3740acb54e3cSDavid Ahern err = ip6_route_add(&cfg, GFP_KERNEL, NULL); 37411da177e4SLinus Torvalds break; 37421da177e4SLinus Torvalds case SIOCDELRT: 3743333c4301SDavid Ahern err = ip6_route_del(&cfg, NULL); 37441da177e4SLinus Torvalds break; 37451da177e4SLinus Torvalds default: 37461da177e4SLinus Torvalds err = -EINVAL; 37471da177e4SLinus Torvalds } 37481da177e4SLinus Torvalds rtnl_unlock(); 37491da177e4SLinus Torvalds 37501da177e4SLinus Torvalds return err; 37513ff50b79SStephen Hemminger } 37521da177e4SLinus Torvalds 37531da177e4SLinus Torvalds return -EINVAL; 37541da177e4SLinus Torvalds } 37551da177e4SLinus Torvalds 37561da177e4SLinus Torvalds /* 37571da177e4SLinus Torvalds * Drop the packet on the floor 37581da177e4SLinus Torvalds */ 37591da177e4SLinus Torvalds 3760d5fdd6baSBrian Haley static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes) 37611da177e4SLinus Torvalds { 3762612f09e8SYOSHIFUJI Hideaki int type; 3763adf30907SEric Dumazet struct dst_entry *dst = skb_dst(skb); 3764612f09e8SYOSHIFUJI Hideaki switch (ipstats_mib_noroutes) { 3765612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_INNOROUTES: 37660660e03fSArnaldo Carvalho de Melo type = ipv6_addr_type(&ipv6_hdr(skb)->daddr); 376745bb0060SUlrich Weber if (type == IPV6_ADDR_ANY) { 3768bdb7cc64SStephen Suryaputra IP6_INC_STATS(dev_net(dst->dev), 3769bdb7cc64SStephen Suryaputra __in6_dev_get_safely(skb->dev), 37703bd653c8SDenis V. Lunev IPSTATS_MIB_INADDRERRORS); 3771612f09e8SYOSHIFUJI Hideaki break; 3772612f09e8SYOSHIFUJI Hideaki } 3773612f09e8SYOSHIFUJI Hideaki /* FALLTHROUGH */ 3774612f09e8SYOSHIFUJI Hideaki case IPSTATS_MIB_OUTNOROUTES: 37753bd653c8SDenis V. Lunev IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst), 37763bd653c8SDenis V. Lunev ipstats_mib_noroutes); 3777612f09e8SYOSHIFUJI Hideaki break; 3778612f09e8SYOSHIFUJI Hideaki } 37793ffe533cSAlexey Dobriyan icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0); 37801da177e4SLinus Torvalds kfree_skb(skb); 37811da177e4SLinus Torvalds return 0; 37821da177e4SLinus Torvalds } 37831da177e4SLinus Torvalds 37849ce8ade0SThomas Graf static int ip6_pkt_discard(struct sk_buff *skb) 37859ce8ade0SThomas Graf { 3786612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES); 37879ce8ade0SThomas Graf } 37889ce8ade0SThomas Graf 3789ede2059dSEric W. Biederman static int ip6_pkt_discard_out(struct net *net, struct sock *sk, struct sk_buff *skb) 37901da177e4SLinus Torvalds { 3791adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3792612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES); 37931da177e4SLinus Torvalds } 37941da177e4SLinus Torvalds 37959ce8ade0SThomas Graf static int ip6_pkt_prohibit(struct sk_buff *skb) 37969ce8ade0SThomas Graf { 3797612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES); 37989ce8ade0SThomas Graf } 37999ce8ade0SThomas Graf 3800ede2059dSEric W. Biederman static int ip6_pkt_prohibit_out(struct net *net, struct sock *sk, struct sk_buff *skb) 38019ce8ade0SThomas Graf { 3802adf30907SEric Dumazet skb->dev = skb_dst(skb)->dev; 3803612f09e8SYOSHIFUJI Hideaki return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES); 38049ce8ade0SThomas Graf } 38059ce8ade0SThomas Graf 38061da177e4SLinus Torvalds /* 38071da177e4SLinus Torvalds * Allocate a dst for local (unicast / anycast) address. 38081da177e4SLinus Torvalds */ 38091da177e4SLinus Torvalds 3810360a9887SDavid Ahern struct fib6_info *addrconf_f6i_alloc(struct net *net, 3811afb1d4b5SDavid Ahern struct inet6_dev *idev, 38121da177e4SLinus Torvalds const struct in6_addr *addr, 3813acb54e3cSDavid Ahern bool anycast, gfp_t gfp_flags) 38141da177e4SLinus Torvalds { 3815c7a1ce39SDavid Ahern struct fib6_config cfg = { 3816c7a1ce39SDavid Ahern .fc_table = l3mdev_fib_table(idev->dev) ? : RT6_TABLE_LOCAL, 3817c7a1ce39SDavid Ahern .fc_ifindex = idev->dev->ifindex, 3818c7a1ce39SDavid Ahern .fc_flags = RTF_UP | RTF_ADDRCONF | RTF_NONEXTHOP, 3819c7a1ce39SDavid Ahern .fc_dst = *addr, 3820c7a1ce39SDavid Ahern .fc_dst_len = 128, 3821c7a1ce39SDavid Ahern .fc_protocol = RTPROT_KERNEL, 3822c7a1ce39SDavid Ahern .fc_nlinfo.nl_net = net, 3823c7a1ce39SDavid Ahern .fc_ignore_dev_down = true, 3824c7a1ce39SDavid Ahern }; 38255f02ce24SDavid Ahern 3826e8478e80SDavid Ahern if (anycast) { 3827c7a1ce39SDavid Ahern cfg.fc_type = RTN_ANYCAST; 3828c7a1ce39SDavid Ahern cfg.fc_flags |= RTF_ANYCAST; 3829e8478e80SDavid Ahern } else { 3830c7a1ce39SDavid Ahern cfg.fc_type = RTN_LOCAL; 3831c7a1ce39SDavid Ahern cfg.fc_flags |= RTF_LOCAL; 3832e8478e80SDavid Ahern } 38331da177e4SLinus Torvalds 3834c7a1ce39SDavid Ahern return ip6_route_info_create(&cfg, gfp_flags, NULL); 38351da177e4SLinus Torvalds } 38361da177e4SLinus Torvalds 3837c3968a85SDaniel Walter /* remove deleted ip from prefsrc entries */ 3838c3968a85SDaniel Walter struct arg_dev_net_ip { 3839c3968a85SDaniel Walter struct net_device *dev; 3840c3968a85SDaniel Walter struct net *net; 3841c3968a85SDaniel Walter struct in6_addr *addr; 3842c3968a85SDaniel Walter }; 3843c3968a85SDaniel Walter 38448d1c802bSDavid Ahern static int fib6_remove_prefsrc(struct fib6_info *rt, void *arg) 3845c3968a85SDaniel Walter { 3846c3968a85SDaniel Walter struct net_device *dev = ((struct arg_dev_net_ip *)arg)->dev; 3847c3968a85SDaniel Walter struct net *net = ((struct arg_dev_net_ip *)arg)->net; 3848c3968a85SDaniel Walter struct in6_addr *addr = ((struct arg_dev_net_ip *)arg)->addr; 3849c3968a85SDaniel Walter 3850ad1601aeSDavid Ahern if (((void *)rt->fib6_nh.fib_nh_dev == dev || !dev) && 3851421842edSDavid Ahern rt != net->ipv6.fib6_null_entry && 385293c2fb25SDavid Ahern ipv6_addr_equal(addr, &rt->fib6_prefsrc.addr)) { 385360006a48SWei Wang spin_lock_bh(&rt6_exception_lock); 3854c3968a85SDaniel Walter /* remove prefsrc entry */ 385593c2fb25SDavid Ahern rt->fib6_prefsrc.plen = 0; 385660006a48SWei Wang spin_unlock_bh(&rt6_exception_lock); 3857c3968a85SDaniel Walter } 3858c3968a85SDaniel Walter return 0; 3859c3968a85SDaniel Walter } 3860c3968a85SDaniel Walter 3861c3968a85SDaniel Walter void rt6_remove_prefsrc(struct inet6_ifaddr *ifp) 3862c3968a85SDaniel Walter { 3863c3968a85SDaniel Walter struct net *net = dev_net(ifp->idev->dev); 3864c3968a85SDaniel Walter struct arg_dev_net_ip adni = { 3865c3968a85SDaniel Walter .dev = ifp->idev->dev, 3866c3968a85SDaniel Walter .net = net, 3867c3968a85SDaniel Walter .addr = &ifp->addr, 3868c3968a85SDaniel Walter }; 38690c3584d5SLi RongQing fib6_clean_all(net, fib6_remove_prefsrc, &adni); 3870c3968a85SDaniel Walter } 3871c3968a85SDaniel Walter 38722b2450caSDavid Ahern #define RTF_RA_ROUTER (RTF_ADDRCONF | RTF_DEFAULT) 3873be7a010dSDuan Jiong 3874be7a010dSDuan Jiong /* Remove routers and update dst entries when gateway turn into host. */ 38758d1c802bSDavid Ahern static int fib6_clean_tohost(struct fib6_info *rt, void *arg) 3876be7a010dSDuan Jiong { 3877be7a010dSDuan Jiong struct in6_addr *gateway = (struct in6_addr *)arg; 3878be7a010dSDuan Jiong 387993c2fb25SDavid Ahern if (((rt->fib6_flags & RTF_RA_ROUTER) == RTF_RA_ROUTER) && 3880bdf00467SDavid Ahern rt->fib6_nh.fib_nh_gw_family && 3881ad1601aeSDavid Ahern ipv6_addr_equal(gateway, &rt->fib6_nh.fib_nh_gw6)) { 3882be7a010dSDuan Jiong return -1; 3883be7a010dSDuan Jiong } 3884b16cb459SWei Wang 3885b16cb459SWei Wang /* Further clean up cached routes in exception table. 3886b16cb459SWei Wang * This is needed because cached route may have a different 3887b16cb459SWei Wang * gateway than its 'parent' in the case of an ip redirect. 3888b16cb459SWei Wang */ 3889b16cb459SWei Wang rt6_exceptions_clean_tohost(rt, gateway); 3890b16cb459SWei Wang 3891be7a010dSDuan Jiong return 0; 3892be7a010dSDuan Jiong } 3893be7a010dSDuan Jiong 3894be7a010dSDuan Jiong void rt6_clean_tohost(struct net *net, struct in6_addr *gateway) 3895be7a010dSDuan Jiong { 3896be7a010dSDuan Jiong fib6_clean_all(net, fib6_clean_tohost, gateway); 3897be7a010dSDuan Jiong } 3898be7a010dSDuan Jiong 38992127d95aSIdo Schimmel struct arg_netdev_event { 39002127d95aSIdo Schimmel const struct net_device *dev; 39014c981e28SIdo Schimmel union { 39022127d95aSIdo Schimmel unsigned int nh_flags; 39034c981e28SIdo Schimmel unsigned long event; 39044c981e28SIdo Schimmel }; 39052127d95aSIdo Schimmel }; 39062127d95aSIdo Schimmel 39078d1c802bSDavid Ahern static struct fib6_info *rt6_multipath_first_sibling(const struct fib6_info *rt) 3908d7dedee1SIdo Schimmel { 39098d1c802bSDavid Ahern struct fib6_info *iter; 3910d7dedee1SIdo Schimmel struct fib6_node *fn; 3911d7dedee1SIdo Schimmel 391293c2fb25SDavid Ahern fn = rcu_dereference_protected(rt->fib6_node, 391393c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3914d7dedee1SIdo Schimmel iter = rcu_dereference_protected(fn->leaf, 391593c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3916d7dedee1SIdo Schimmel while (iter) { 391793c2fb25SDavid Ahern if (iter->fib6_metric == rt->fib6_metric && 391833bd5ac5SDavid Ahern rt6_qualify_for_ecmp(iter)) 3919d7dedee1SIdo Schimmel return iter; 39208fb11a9aSDavid Ahern iter = rcu_dereference_protected(iter->fib6_next, 392193c2fb25SDavid Ahern lockdep_is_held(&rt->fib6_table->tb6_lock)); 3922d7dedee1SIdo Schimmel } 3923d7dedee1SIdo Schimmel 3924d7dedee1SIdo Schimmel return NULL; 3925d7dedee1SIdo Schimmel } 3926d7dedee1SIdo Schimmel 39278d1c802bSDavid Ahern static bool rt6_is_dead(const struct fib6_info *rt) 3928d7dedee1SIdo Schimmel { 3929ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_flags & RTNH_F_DEAD || 3930ad1601aeSDavid Ahern (rt->fib6_nh.fib_nh_flags & RTNH_F_LINKDOWN && 3931ad1601aeSDavid Ahern ip6_ignore_linkdown(rt->fib6_nh.fib_nh_dev))) 3932d7dedee1SIdo Schimmel return true; 3933d7dedee1SIdo Schimmel 3934d7dedee1SIdo Schimmel return false; 3935d7dedee1SIdo Schimmel } 3936d7dedee1SIdo Schimmel 39378d1c802bSDavid Ahern static int rt6_multipath_total_weight(const struct fib6_info *rt) 3938d7dedee1SIdo Schimmel { 39398d1c802bSDavid Ahern struct fib6_info *iter; 3940d7dedee1SIdo Schimmel int total = 0; 3941d7dedee1SIdo Schimmel 3942d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) 3943ad1601aeSDavid Ahern total += rt->fib6_nh.fib_nh_weight; 3944d7dedee1SIdo Schimmel 394593c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) { 3946d7dedee1SIdo Schimmel if (!rt6_is_dead(iter)) 3947ad1601aeSDavid Ahern total += iter->fib6_nh.fib_nh_weight; 3948d7dedee1SIdo Schimmel } 3949d7dedee1SIdo Schimmel 3950d7dedee1SIdo Schimmel return total; 3951d7dedee1SIdo Schimmel } 3952d7dedee1SIdo Schimmel 39538d1c802bSDavid Ahern static void rt6_upper_bound_set(struct fib6_info *rt, int *weight, int total) 3954d7dedee1SIdo Schimmel { 3955d7dedee1SIdo Schimmel int upper_bound = -1; 3956d7dedee1SIdo Schimmel 3957d7dedee1SIdo Schimmel if (!rt6_is_dead(rt)) { 3958ad1601aeSDavid Ahern *weight += rt->fib6_nh.fib_nh_weight; 3959d7dedee1SIdo Schimmel upper_bound = DIV_ROUND_CLOSEST_ULL((u64) (*weight) << 31, 3960d7dedee1SIdo Schimmel total) - 1; 3961d7dedee1SIdo Schimmel } 3962ad1601aeSDavid Ahern atomic_set(&rt->fib6_nh.fib_nh_upper_bound, upper_bound); 3963d7dedee1SIdo Schimmel } 3964d7dedee1SIdo Schimmel 39658d1c802bSDavid Ahern static void rt6_multipath_upper_bound_set(struct fib6_info *rt, int total) 3966d7dedee1SIdo Schimmel { 39678d1c802bSDavid Ahern struct fib6_info *iter; 3968d7dedee1SIdo Schimmel int weight = 0; 3969d7dedee1SIdo Schimmel 3970d7dedee1SIdo Schimmel rt6_upper_bound_set(rt, &weight, total); 3971d7dedee1SIdo Schimmel 397293c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 3973d7dedee1SIdo Schimmel rt6_upper_bound_set(iter, &weight, total); 3974d7dedee1SIdo Schimmel } 3975d7dedee1SIdo Schimmel 39768d1c802bSDavid Ahern void rt6_multipath_rebalance(struct fib6_info *rt) 3977d7dedee1SIdo Schimmel { 39788d1c802bSDavid Ahern struct fib6_info *first; 3979d7dedee1SIdo Schimmel int total; 3980d7dedee1SIdo Schimmel 3981d7dedee1SIdo Schimmel /* In case the entire multipath route was marked for flushing, 3982d7dedee1SIdo Schimmel * then there is no need to rebalance upon the removal of every 3983d7dedee1SIdo Schimmel * sibling route. 3984d7dedee1SIdo Schimmel */ 398593c2fb25SDavid Ahern if (!rt->fib6_nsiblings || rt->should_flush) 3986d7dedee1SIdo Schimmel return; 3987d7dedee1SIdo Schimmel 3988d7dedee1SIdo Schimmel /* During lookup routes are evaluated in order, so we need to 3989d7dedee1SIdo Schimmel * make sure upper bounds are assigned from the first sibling 3990d7dedee1SIdo Schimmel * onwards. 3991d7dedee1SIdo Schimmel */ 3992d7dedee1SIdo Schimmel first = rt6_multipath_first_sibling(rt); 3993d7dedee1SIdo Schimmel if (WARN_ON_ONCE(!first)) 3994d7dedee1SIdo Schimmel return; 3995d7dedee1SIdo Schimmel 3996d7dedee1SIdo Schimmel total = rt6_multipath_total_weight(first); 3997d7dedee1SIdo Schimmel rt6_multipath_upper_bound_set(first, total); 3998d7dedee1SIdo Schimmel } 3999d7dedee1SIdo Schimmel 40008d1c802bSDavid Ahern static int fib6_ifup(struct fib6_info *rt, void *p_arg) 40012127d95aSIdo Schimmel { 40022127d95aSIdo Schimmel const struct arg_netdev_event *arg = p_arg; 40037aef6859SDavid Ahern struct net *net = dev_net(arg->dev); 40042127d95aSIdo Schimmel 4005ad1601aeSDavid Ahern if (rt != net->ipv6.fib6_null_entry && 4006ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_dev == arg->dev) { 4007ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags &= ~arg->nh_flags; 40087aef6859SDavid Ahern fib6_update_sernum_upto_root(net, rt); 4009d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 40101de178edSIdo Schimmel } 40112127d95aSIdo Schimmel 40122127d95aSIdo Schimmel return 0; 40132127d95aSIdo Schimmel } 40142127d95aSIdo Schimmel 40152127d95aSIdo Schimmel void rt6_sync_up(struct net_device *dev, unsigned int nh_flags) 40162127d95aSIdo Schimmel { 40172127d95aSIdo Schimmel struct arg_netdev_event arg = { 40182127d95aSIdo Schimmel .dev = dev, 40196802f3adSIdo Schimmel { 40202127d95aSIdo Schimmel .nh_flags = nh_flags, 40216802f3adSIdo Schimmel }, 40222127d95aSIdo Schimmel }; 40232127d95aSIdo Schimmel 40242127d95aSIdo Schimmel if (nh_flags & RTNH_F_DEAD && netif_carrier_ok(dev)) 40252127d95aSIdo Schimmel arg.nh_flags |= RTNH_F_LINKDOWN; 40262127d95aSIdo Schimmel 40272127d95aSIdo Schimmel fib6_clean_all(dev_net(dev), fib6_ifup, &arg); 40282127d95aSIdo Schimmel } 40292127d95aSIdo Schimmel 40308d1c802bSDavid Ahern static bool rt6_multipath_uses_dev(const struct fib6_info *rt, 40311de178edSIdo Schimmel const struct net_device *dev) 40321de178edSIdo Schimmel { 40338d1c802bSDavid Ahern struct fib6_info *iter; 40341de178edSIdo Schimmel 4035ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == dev) 40361de178edSIdo Schimmel return true; 403793c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 4038ad1601aeSDavid Ahern if (iter->fib6_nh.fib_nh_dev == dev) 40391de178edSIdo Schimmel return true; 40401de178edSIdo Schimmel 40411de178edSIdo Schimmel return false; 40421de178edSIdo Schimmel } 40431de178edSIdo Schimmel 40448d1c802bSDavid Ahern static void rt6_multipath_flush(struct fib6_info *rt) 40451de178edSIdo Schimmel { 40468d1c802bSDavid Ahern struct fib6_info *iter; 40471de178edSIdo Schimmel 40481de178edSIdo Schimmel rt->should_flush = 1; 404993c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 40501de178edSIdo Schimmel iter->should_flush = 1; 40511de178edSIdo Schimmel } 40521de178edSIdo Schimmel 40538d1c802bSDavid Ahern static unsigned int rt6_multipath_dead_count(const struct fib6_info *rt, 40541de178edSIdo Schimmel const struct net_device *down_dev) 40551de178edSIdo Schimmel { 40568d1c802bSDavid Ahern struct fib6_info *iter; 40571de178edSIdo Schimmel unsigned int dead = 0; 40581de178edSIdo Schimmel 4059ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == down_dev || 4060ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags & RTNH_F_DEAD) 40611de178edSIdo Schimmel dead++; 406293c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 4063ad1601aeSDavid Ahern if (iter->fib6_nh.fib_nh_dev == down_dev || 4064ad1601aeSDavid Ahern iter->fib6_nh.fib_nh_flags & RTNH_F_DEAD) 40651de178edSIdo Schimmel dead++; 40661de178edSIdo Schimmel 40671de178edSIdo Schimmel return dead; 40681de178edSIdo Schimmel } 40691de178edSIdo Schimmel 40708d1c802bSDavid Ahern static void rt6_multipath_nh_flags_set(struct fib6_info *rt, 40711de178edSIdo Schimmel const struct net_device *dev, 40721de178edSIdo Schimmel unsigned int nh_flags) 40731de178edSIdo Schimmel { 40748d1c802bSDavid Ahern struct fib6_info *iter; 40751de178edSIdo Schimmel 4076ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == dev) 4077ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags |= nh_flags; 407893c2fb25SDavid Ahern list_for_each_entry(iter, &rt->fib6_siblings, fib6_siblings) 4079ad1601aeSDavid Ahern if (iter->fib6_nh.fib_nh_dev == dev) 4080ad1601aeSDavid Ahern iter->fib6_nh.fib_nh_flags |= nh_flags; 40811de178edSIdo Schimmel } 40821de178edSIdo Schimmel 4083a1a22c12SDavid Ahern /* called with write lock held for table with rt */ 40848d1c802bSDavid Ahern static int fib6_ifdown(struct fib6_info *rt, void *p_arg) 40851da177e4SLinus Torvalds { 40864c981e28SIdo Schimmel const struct arg_netdev_event *arg = p_arg; 40874c981e28SIdo Schimmel const struct net_device *dev = arg->dev; 40887aef6859SDavid Ahern struct net *net = dev_net(dev); 40898ed67789SDaniel Lezcano 4090421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 409127c6fa73SIdo Schimmel return 0; 409227c6fa73SIdo Schimmel 409327c6fa73SIdo Schimmel switch (arg->event) { 409427c6fa73SIdo Schimmel case NETDEV_UNREGISTER: 4095ad1601aeSDavid Ahern return rt->fib6_nh.fib_nh_dev == dev ? -1 : 0; 409627c6fa73SIdo Schimmel case NETDEV_DOWN: 40971de178edSIdo Schimmel if (rt->should_flush) 409827c6fa73SIdo Schimmel return -1; 409993c2fb25SDavid Ahern if (!rt->fib6_nsiblings) 4100ad1601aeSDavid Ahern return rt->fib6_nh.fib_nh_dev == dev ? -1 : 0; 41011de178edSIdo Schimmel if (rt6_multipath_uses_dev(rt, dev)) { 41021de178edSIdo Schimmel unsigned int count; 41031de178edSIdo Schimmel 41041de178edSIdo Schimmel count = rt6_multipath_dead_count(rt, dev); 410593c2fb25SDavid Ahern if (rt->fib6_nsiblings + 1 == count) { 41061de178edSIdo Schimmel rt6_multipath_flush(rt); 41071de178edSIdo Schimmel return -1; 41081de178edSIdo Schimmel } 41091de178edSIdo Schimmel rt6_multipath_nh_flags_set(rt, dev, RTNH_F_DEAD | 41101de178edSIdo Schimmel RTNH_F_LINKDOWN); 41117aef6859SDavid Ahern fib6_update_sernum(net, rt); 4112d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 41131de178edSIdo Schimmel } 41141de178edSIdo Schimmel return -2; 411527c6fa73SIdo Schimmel case NETDEV_CHANGE: 4116ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev != dev || 411793c2fb25SDavid Ahern rt->fib6_flags & (RTF_LOCAL | RTF_ANYCAST)) 411827c6fa73SIdo Schimmel break; 4119ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_flags |= RTNH_F_LINKDOWN; 4120d7dedee1SIdo Schimmel rt6_multipath_rebalance(rt); 412127c6fa73SIdo Schimmel break; 41222b241361SIdo Schimmel } 4123c159d30cSDavid S. Miller 41241da177e4SLinus Torvalds return 0; 41251da177e4SLinus Torvalds } 41261da177e4SLinus Torvalds 412727c6fa73SIdo Schimmel void rt6_sync_down_dev(struct net_device *dev, unsigned long event) 41281da177e4SLinus Torvalds { 41294c981e28SIdo Schimmel struct arg_netdev_event arg = { 41308ed67789SDaniel Lezcano .dev = dev, 41316802f3adSIdo Schimmel { 41324c981e28SIdo Schimmel .event = event, 41336802f3adSIdo Schimmel }, 41348ed67789SDaniel Lezcano }; 41357c6bb7d2SDavid Ahern struct net *net = dev_net(dev); 41368ed67789SDaniel Lezcano 41377c6bb7d2SDavid Ahern if (net->ipv6.sysctl.skip_notify_on_dev_down) 41387c6bb7d2SDavid Ahern fib6_clean_all_skip_notify(net, fib6_ifdown, &arg); 41397c6bb7d2SDavid Ahern else 41407c6bb7d2SDavid Ahern fib6_clean_all(net, fib6_ifdown, &arg); 41414c981e28SIdo Schimmel } 41424c981e28SIdo Schimmel 41434c981e28SIdo Schimmel void rt6_disable_ip(struct net_device *dev, unsigned long event) 41444c981e28SIdo Schimmel { 41454c981e28SIdo Schimmel rt6_sync_down_dev(dev, event); 41464c981e28SIdo Schimmel rt6_uncached_list_flush_dev(dev_net(dev), dev); 41474c981e28SIdo Schimmel neigh_ifdown(&nd_tbl, dev); 41481da177e4SLinus Torvalds } 41491da177e4SLinus Torvalds 415095c96174SEric Dumazet struct rt6_mtu_change_arg { 41511da177e4SLinus Torvalds struct net_device *dev; 415295c96174SEric Dumazet unsigned int mtu; 41531da177e4SLinus Torvalds }; 41541da177e4SLinus Torvalds 41558d1c802bSDavid Ahern static int rt6_mtu_change_route(struct fib6_info *rt, void *p_arg) 41561da177e4SLinus Torvalds { 41571da177e4SLinus Torvalds struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg; 41581da177e4SLinus Torvalds struct inet6_dev *idev; 41591da177e4SLinus Torvalds 41601da177e4SLinus Torvalds /* In IPv6 pmtu discovery is not optional, 41611da177e4SLinus Torvalds so that RTAX_MTU lock cannot disable it. 41621da177e4SLinus Torvalds We still use this lock to block changes 41631da177e4SLinus Torvalds caused by addrconf/ndisc. 41641da177e4SLinus Torvalds */ 41651da177e4SLinus Torvalds 41661da177e4SLinus Torvalds idev = __in6_dev_get(arg->dev); 416738308473SDavid S. Miller if (!idev) 41681da177e4SLinus Torvalds return 0; 41691da177e4SLinus Torvalds 41701da177e4SLinus Torvalds /* For administrative MTU increase, there is no way to discover 41711da177e4SLinus Torvalds IPv6 PMTU increase, so PMTU increase should be updated here. 41721da177e4SLinus Torvalds Since RFC 1981 doesn't include administrative MTU increase 41731da177e4SLinus Torvalds update PMTU increase is a MUST. (i.e. jumbo frame) 41741da177e4SLinus Torvalds */ 4175ad1601aeSDavid Ahern if (rt->fib6_nh.fib_nh_dev == arg->dev && 4176d4ead6b3SDavid Ahern !fib6_metric_locked(rt, RTAX_MTU)) { 4177d4ead6b3SDavid Ahern u32 mtu = rt->fib6_pmtu; 4178d4ead6b3SDavid Ahern 4179d4ead6b3SDavid Ahern if (mtu >= arg->mtu || 4180d4ead6b3SDavid Ahern (mtu < arg->mtu && mtu == idev->cnf.mtu6)) 4181d4ead6b3SDavid Ahern fib6_metric_set(rt, RTAX_MTU, arg->mtu); 4182d4ead6b3SDavid Ahern 4183f5bbe7eeSWei Wang spin_lock_bh(&rt6_exception_lock); 4184e9fa1495SStefano Brivio rt6_exceptions_update_pmtu(idev, rt, arg->mtu); 4185f5bbe7eeSWei Wang spin_unlock_bh(&rt6_exception_lock); 41864b32b5adSMartin KaFai Lau } 41871da177e4SLinus Torvalds return 0; 41881da177e4SLinus Torvalds } 41891da177e4SLinus Torvalds 419095c96174SEric Dumazet void rt6_mtu_change(struct net_device *dev, unsigned int mtu) 41911da177e4SLinus Torvalds { 4192c71099acSThomas Graf struct rt6_mtu_change_arg arg = { 4193c71099acSThomas Graf .dev = dev, 4194c71099acSThomas Graf .mtu = mtu, 4195c71099acSThomas Graf }; 41961da177e4SLinus Torvalds 41970c3584d5SLi RongQing fib6_clean_all(dev_net(dev), rt6_mtu_change_route, &arg); 41981da177e4SLinus Torvalds } 41991da177e4SLinus Torvalds 4200ef7c79edSPatrick McHardy static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = { 42015176f91eSThomas Graf [RTA_GATEWAY] = { .len = sizeof(struct in6_addr) }, 4202aa8f8778SEric Dumazet [RTA_PREFSRC] = { .len = sizeof(struct in6_addr) }, 420386872cb5SThomas Graf [RTA_OIF] = { .type = NLA_U32 }, 4204ab364a6fSThomas Graf [RTA_IIF] = { .type = NLA_U32 }, 420586872cb5SThomas Graf [RTA_PRIORITY] = { .type = NLA_U32 }, 420686872cb5SThomas Graf [RTA_METRICS] = { .type = NLA_NESTED }, 420751ebd318SNicolas Dichtel [RTA_MULTIPATH] = { .len = sizeof(struct rtnexthop) }, 4208c78ba6d6SLubomir Rintel [RTA_PREF] = { .type = NLA_U8 }, 420919e42e45SRoopa Prabhu [RTA_ENCAP_TYPE] = { .type = NLA_U16 }, 421019e42e45SRoopa Prabhu [RTA_ENCAP] = { .type = NLA_NESTED }, 421132bc201eSXin Long [RTA_EXPIRES] = { .type = NLA_U32 }, 4212622ec2c9SLorenzo Colitti [RTA_UID] = { .type = NLA_U32 }, 42133b45a410SLiping Zhang [RTA_MARK] = { .type = NLA_U32 }, 4214aa8f8778SEric Dumazet [RTA_TABLE] = { .type = NLA_U32 }, 4215eacb9384SRoopa Prabhu [RTA_IP_PROTO] = { .type = NLA_U8 }, 4216eacb9384SRoopa Prabhu [RTA_SPORT] = { .type = NLA_U16 }, 4217eacb9384SRoopa Prabhu [RTA_DPORT] = { .type = NLA_U16 }, 421886872cb5SThomas Graf }; 421986872cb5SThomas Graf 422086872cb5SThomas Graf static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh, 4221333c4301SDavid Ahern struct fib6_config *cfg, 4222333c4301SDavid Ahern struct netlink_ext_ack *extack) 42231da177e4SLinus Torvalds { 422486872cb5SThomas Graf struct rtmsg *rtm; 422586872cb5SThomas Graf struct nlattr *tb[RTA_MAX+1]; 4226c78ba6d6SLubomir Rintel unsigned int pref; 422786872cb5SThomas Graf int err; 42281da177e4SLinus Torvalds 4229fceb6435SJohannes Berg err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy, 4230dac9c979SDavid Ahern extack); 423186872cb5SThomas Graf if (err < 0) 423286872cb5SThomas Graf goto errout; 42331da177e4SLinus Torvalds 423486872cb5SThomas Graf err = -EINVAL; 423586872cb5SThomas Graf rtm = nlmsg_data(nlh); 423686872cb5SThomas Graf 423784db8407SMaciej Żenczykowski *cfg = (struct fib6_config){ 423884db8407SMaciej Żenczykowski .fc_table = rtm->rtm_table, 423984db8407SMaciej Żenczykowski .fc_dst_len = rtm->rtm_dst_len, 424084db8407SMaciej Żenczykowski .fc_src_len = rtm->rtm_src_len, 424184db8407SMaciej Żenczykowski .fc_flags = RTF_UP, 424284db8407SMaciej Żenczykowski .fc_protocol = rtm->rtm_protocol, 424384db8407SMaciej Żenczykowski .fc_type = rtm->rtm_type, 424484db8407SMaciej Żenczykowski 424584db8407SMaciej Żenczykowski .fc_nlinfo.portid = NETLINK_CB(skb).portid, 424684db8407SMaciej Żenczykowski .fc_nlinfo.nlh = nlh, 424784db8407SMaciej Żenczykowski .fc_nlinfo.nl_net = sock_net(skb->sk), 424884db8407SMaciej Żenczykowski }; 424986872cb5SThomas Graf 4250ef2c7d7bSNicolas Dichtel if (rtm->rtm_type == RTN_UNREACHABLE || 4251ef2c7d7bSNicolas Dichtel rtm->rtm_type == RTN_BLACKHOLE || 4252b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_PROHIBIT || 4253b4949ab2SNicolas Dichtel rtm->rtm_type == RTN_THROW) 425486872cb5SThomas Graf cfg->fc_flags |= RTF_REJECT; 425586872cb5SThomas Graf 4256ab79ad14SMaciej Żenczykowski if (rtm->rtm_type == RTN_LOCAL) 4257ab79ad14SMaciej Żenczykowski cfg->fc_flags |= RTF_LOCAL; 4258ab79ad14SMaciej Żenczykowski 42591f56a01fSMartin KaFai Lau if (rtm->rtm_flags & RTM_F_CLONED) 42601f56a01fSMartin KaFai Lau cfg->fc_flags |= RTF_CACHE; 42611f56a01fSMartin KaFai Lau 4262fc1e64e1SDavid Ahern cfg->fc_flags |= (rtm->rtm_flags & RTNH_F_ONLINK); 4263fc1e64e1SDavid Ahern 426486872cb5SThomas Graf if (tb[RTA_GATEWAY]) { 426567b61f6cSJiri Benc cfg->fc_gateway = nla_get_in6_addr(tb[RTA_GATEWAY]); 426686872cb5SThomas Graf cfg->fc_flags |= RTF_GATEWAY; 42671da177e4SLinus Torvalds } 4268e3818541SDavid Ahern if (tb[RTA_VIA]) { 4269e3818541SDavid Ahern NL_SET_ERR_MSG(extack, "IPv6 does not support RTA_VIA attribute"); 4270e3818541SDavid Ahern goto errout; 4271e3818541SDavid Ahern } 427286872cb5SThomas Graf 427386872cb5SThomas Graf if (tb[RTA_DST]) { 427486872cb5SThomas Graf int plen = (rtm->rtm_dst_len + 7) >> 3; 427586872cb5SThomas Graf 427686872cb5SThomas Graf if (nla_len(tb[RTA_DST]) < plen) 427786872cb5SThomas Graf goto errout; 427886872cb5SThomas Graf 427986872cb5SThomas Graf nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen); 42801da177e4SLinus Torvalds } 428186872cb5SThomas Graf 428286872cb5SThomas Graf if (tb[RTA_SRC]) { 428386872cb5SThomas Graf int plen = (rtm->rtm_src_len + 7) >> 3; 428486872cb5SThomas Graf 428586872cb5SThomas Graf if (nla_len(tb[RTA_SRC]) < plen) 428686872cb5SThomas Graf goto errout; 428786872cb5SThomas Graf 428886872cb5SThomas Graf nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen); 42891da177e4SLinus Torvalds } 429086872cb5SThomas Graf 4291c3968a85SDaniel Walter if (tb[RTA_PREFSRC]) 429267b61f6cSJiri Benc cfg->fc_prefsrc = nla_get_in6_addr(tb[RTA_PREFSRC]); 4293c3968a85SDaniel Walter 429486872cb5SThomas Graf if (tb[RTA_OIF]) 429586872cb5SThomas Graf cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]); 429686872cb5SThomas Graf 429786872cb5SThomas Graf if (tb[RTA_PRIORITY]) 429886872cb5SThomas Graf cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]); 429986872cb5SThomas Graf 430086872cb5SThomas Graf if (tb[RTA_METRICS]) { 430186872cb5SThomas Graf cfg->fc_mx = nla_data(tb[RTA_METRICS]); 430286872cb5SThomas Graf cfg->fc_mx_len = nla_len(tb[RTA_METRICS]); 43031da177e4SLinus Torvalds } 430486872cb5SThomas Graf 430586872cb5SThomas Graf if (tb[RTA_TABLE]) 430686872cb5SThomas Graf cfg->fc_table = nla_get_u32(tb[RTA_TABLE]); 430786872cb5SThomas Graf 430851ebd318SNicolas Dichtel if (tb[RTA_MULTIPATH]) { 430951ebd318SNicolas Dichtel cfg->fc_mp = nla_data(tb[RTA_MULTIPATH]); 431051ebd318SNicolas Dichtel cfg->fc_mp_len = nla_len(tb[RTA_MULTIPATH]); 43119ed59592SDavid Ahern 43129ed59592SDavid Ahern err = lwtunnel_valid_encap_type_attr(cfg->fc_mp, 4313c255bd68SDavid Ahern cfg->fc_mp_len, extack); 43149ed59592SDavid Ahern if (err < 0) 43159ed59592SDavid Ahern goto errout; 431651ebd318SNicolas Dichtel } 431751ebd318SNicolas Dichtel 4318c78ba6d6SLubomir Rintel if (tb[RTA_PREF]) { 4319c78ba6d6SLubomir Rintel pref = nla_get_u8(tb[RTA_PREF]); 4320c78ba6d6SLubomir Rintel if (pref != ICMPV6_ROUTER_PREF_LOW && 4321c78ba6d6SLubomir Rintel pref != ICMPV6_ROUTER_PREF_HIGH) 4322c78ba6d6SLubomir Rintel pref = ICMPV6_ROUTER_PREF_MEDIUM; 4323c78ba6d6SLubomir Rintel cfg->fc_flags |= RTF_PREF(pref); 4324c78ba6d6SLubomir Rintel } 4325c78ba6d6SLubomir Rintel 432619e42e45SRoopa Prabhu if (tb[RTA_ENCAP]) 432719e42e45SRoopa Prabhu cfg->fc_encap = tb[RTA_ENCAP]; 432819e42e45SRoopa Prabhu 43299ed59592SDavid Ahern if (tb[RTA_ENCAP_TYPE]) { 433019e42e45SRoopa Prabhu cfg->fc_encap_type = nla_get_u16(tb[RTA_ENCAP_TYPE]); 433119e42e45SRoopa Prabhu 4332c255bd68SDavid Ahern err = lwtunnel_valid_encap_type(cfg->fc_encap_type, extack); 43339ed59592SDavid Ahern if (err < 0) 43349ed59592SDavid Ahern goto errout; 43359ed59592SDavid Ahern } 43369ed59592SDavid Ahern 433732bc201eSXin Long if (tb[RTA_EXPIRES]) { 433832bc201eSXin Long unsigned long timeout = addrconf_timeout_fixup(nla_get_u32(tb[RTA_EXPIRES]), HZ); 433932bc201eSXin Long 434032bc201eSXin Long if (addrconf_finite_timeout(timeout)) { 434132bc201eSXin Long cfg->fc_expires = jiffies_to_clock_t(timeout * HZ); 434232bc201eSXin Long cfg->fc_flags |= RTF_EXPIRES; 434332bc201eSXin Long } 434432bc201eSXin Long } 434532bc201eSXin Long 434686872cb5SThomas Graf err = 0; 434786872cb5SThomas Graf errout: 434886872cb5SThomas Graf return err; 43491da177e4SLinus Torvalds } 43501da177e4SLinus Torvalds 43516b9ea5a6SRoopa Prabhu struct rt6_nh { 43528d1c802bSDavid Ahern struct fib6_info *fib6_info; 43536b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 43546b9ea5a6SRoopa Prabhu struct list_head next; 43556b9ea5a6SRoopa Prabhu }; 43566b9ea5a6SRoopa Prabhu 4357d4ead6b3SDavid Ahern static int ip6_route_info_append(struct net *net, 4358d4ead6b3SDavid Ahern struct list_head *rt6_nh_list, 43598d1c802bSDavid Ahern struct fib6_info *rt, 43608d1c802bSDavid Ahern struct fib6_config *r_cfg) 43616b9ea5a6SRoopa Prabhu { 43626b9ea5a6SRoopa Prabhu struct rt6_nh *nh; 43636b9ea5a6SRoopa Prabhu int err = -EEXIST; 43646b9ea5a6SRoopa Prabhu 43656b9ea5a6SRoopa Prabhu list_for_each_entry(nh, rt6_nh_list, next) { 43668d1c802bSDavid Ahern /* check if fib6_info already exists */ 43678d1c802bSDavid Ahern if (rt6_duplicate_nexthop(nh->fib6_info, rt)) 43686b9ea5a6SRoopa Prabhu return err; 43696b9ea5a6SRoopa Prabhu } 43706b9ea5a6SRoopa Prabhu 43716b9ea5a6SRoopa Prabhu nh = kzalloc(sizeof(*nh), GFP_KERNEL); 43726b9ea5a6SRoopa Prabhu if (!nh) 43736b9ea5a6SRoopa Prabhu return -ENOMEM; 43748d1c802bSDavid Ahern nh->fib6_info = rt; 43756b9ea5a6SRoopa Prabhu memcpy(&nh->r_cfg, r_cfg, sizeof(*r_cfg)); 43766b9ea5a6SRoopa Prabhu list_add_tail(&nh->next, rt6_nh_list); 43776b9ea5a6SRoopa Prabhu 43786b9ea5a6SRoopa Prabhu return 0; 43796b9ea5a6SRoopa Prabhu } 43806b9ea5a6SRoopa Prabhu 43818d1c802bSDavid Ahern static void ip6_route_mpath_notify(struct fib6_info *rt, 43828d1c802bSDavid Ahern struct fib6_info *rt_last, 43833b1137feSDavid Ahern struct nl_info *info, 43843b1137feSDavid Ahern __u16 nlflags) 43853b1137feSDavid Ahern { 43863b1137feSDavid Ahern /* if this is an APPEND route, then rt points to the first route 43873b1137feSDavid Ahern * inserted and rt_last points to last route inserted. Userspace 43883b1137feSDavid Ahern * wants a consistent dump of the route which starts at the first 43893b1137feSDavid Ahern * nexthop. Since sibling routes are always added at the end of 43903b1137feSDavid Ahern * the list, find the first sibling of the last route appended 43913b1137feSDavid Ahern */ 439293c2fb25SDavid Ahern if ((nlflags & NLM_F_APPEND) && rt_last && rt_last->fib6_nsiblings) { 439393c2fb25SDavid Ahern rt = list_first_entry(&rt_last->fib6_siblings, 43948d1c802bSDavid Ahern struct fib6_info, 439593c2fb25SDavid Ahern fib6_siblings); 43963b1137feSDavid Ahern } 43973b1137feSDavid Ahern 43983b1137feSDavid Ahern if (rt) 43993b1137feSDavid Ahern inet6_rt_notify(RTM_NEWROUTE, rt, info, nlflags); 44003b1137feSDavid Ahern } 44013b1137feSDavid Ahern 4402333c4301SDavid Ahern static int ip6_route_multipath_add(struct fib6_config *cfg, 4403333c4301SDavid Ahern struct netlink_ext_ack *extack) 440451ebd318SNicolas Dichtel { 44058d1c802bSDavid Ahern struct fib6_info *rt_notif = NULL, *rt_last = NULL; 44063b1137feSDavid Ahern struct nl_info *info = &cfg->fc_nlinfo; 440751ebd318SNicolas Dichtel struct fib6_config r_cfg; 440851ebd318SNicolas Dichtel struct rtnexthop *rtnh; 44098d1c802bSDavid Ahern struct fib6_info *rt; 44106b9ea5a6SRoopa Prabhu struct rt6_nh *err_nh; 44116b9ea5a6SRoopa Prabhu struct rt6_nh *nh, *nh_safe; 44123b1137feSDavid Ahern __u16 nlflags; 441351ebd318SNicolas Dichtel int remaining; 441451ebd318SNicolas Dichtel int attrlen; 44156b9ea5a6SRoopa Prabhu int err = 1; 44166b9ea5a6SRoopa Prabhu int nhn = 0; 44176b9ea5a6SRoopa Prabhu int replace = (cfg->fc_nlinfo.nlh && 44186b9ea5a6SRoopa Prabhu (cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_REPLACE)); 44196b9ea5a6SRoopa Prabhu LIST_HEAD(rt6_nh_list); 442051ebd318SNicolas Dichtel 44213b1137feSDavid Ahern nlflags = replace ? NLM_F_REPLACE : NLM_F_CREATE; 44223b1137feSDavid Ahern if (info->nlh && info->nlh->nlmsg_flags & NLM_F_APPEND) 44233b1137feSDavid Ahern nlflags |= NLM_F_APPEND; 44243b1137feSDavid Ahern 442535f1b4e9SMichal Kubeček remaining = cfg->fc_mp_len; 442651ebd318SNicolas Dichtel rtnh = (struct rtnexthop *)cfg->fc_mp; 442751ebd318SNicolas Dichtel 44286b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry and build a list (rt6_nh_list) of 44298d1c802bSDavid Ahern * fib6_info structs per nexthop 44306b9ea5a6SRoopa Prabhu */ 443151ebd318SNicolas Dichtel while (rtnh_ok(rtnh, remaining)) { 443251ebd318SNicolas Dichtel memcpy(&r_cfg, cfg, sizeof(*cfg)); 443351ebd318SNicolas Dichtel if (rtnh->rtnh_ifindex) 443451ebd318SNicolas Dichtel r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 443551ebd318SNicolas Dichtel 443651ebd318SNicolas Dichtel attrlen = rtnh_attrlen(rtnh); 443751ebd318SNicolas Dichtel if (attrlen > 0) { 443851ebd318SNicolas Dichtel struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 443951ebd318SNicolas Dichtel 444051ebd318SNicolas Dichtel nla = nla_find(attrs, attrlen, RTA_GATEWAY); 444151ebd318SNicolas Dichtel if (nla) { 444267b61f6cSJiri Benc r_cfg.fc_gateway = nla_get_in6_addr(nla); 444351ebd318SNicolas Dichtel r_cfg.fc_flags |= RTF_GATEWAY; 444451ebd318SNicolas Dichtel } 444519e42e45SRoopa Prabhu r_cfg.fc_encap = nla_find(attrs, attrlen, RTA_ENCAP); 444619e42e45SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_ENCAP_TYPE); 444719e42e45SRoopa Prabhu if (nla) 444819e42e45SRoopa Prabhu r_cfg.fc_encap_type = nla_get_u16(nla); 444951ebd318SNicolas Dichtel } 44506b9ea5a6SRoopa Prabhu 445168e2ffdeSDavid Ahern r_cfg.fc_flags |= (rtnh->rtnh_flags & RTNH_F_ONLINK); 4452acb54e3cSDavid Ahern rt = ip6_route_info_create(&r_cfg, GFP_KERNEL, extack); 44538c5b83f0SRoopa Prabhu if (IS_ERR(rt)) { 44548c5b83f0SRoopa Prabhu err = PTR_ERR(rt); 44558c5b83f0SRoopa Prabhu rt = NULL; 44566b9ea5a6SRoopa Prabhu goto cleanup; 44578c5b83f0SRoopa Prabhu } 4458b5d2d75eSDavid Ahern if (!rt6_qualify_for_ecmp(rt)) { 4459b5d2d75eSDavid Ahern err = -EINVAL; 4460b5d2d75eSDavid Ahern NL_SET_ERR_MSG(extack, 4461b5d2d75eSDavid Ahern "Device only routes can not be added for IPv6 using the multipath API."); 4462b5d2d75eSDavid Ahern fib6_info_release(rt); 4463b5d2d75eSDavid Ahern goto cleanup; 4464b5d2d75eSDavid Ahern } 44656b9ea5a6SRoopa Prabhu 4466ad1601aeSDavid Ahern rt->fib6_nh.fib_nh_weight = rtnh->rtnh_hops + 1; 4467398958aeSIdo Schimmel 4468d4ead6b3SDavid Ahern err = ip6_route_info_append(info->nl_net, &rt6_nh_list, 4469d4ead6b3SDavid Ahern rt, &r_cfg); 447051ebd318SNicolas Dichtel if (err) { 447193531c67SDavid Ahern fib6_info_release(rt); 44726b9ea5a6SRoopa Prabhu goto cleanup; 447351ebd318SNicolas Dichtel } 44746b9ea5a6SRoopa Prabhu 44756b9ea5a6SRoopa Prabhu rtnh = rtnh_next(rtnh, &remaining); 447651ebd318SNicolas Dichtel } 44776b9ea5a6SRoopa Prabhu 44783b1137feSDavid Ahern /* for add and replace send one notification with all nexthops. 44793b1137feSDavid Ahern * Skip the notification in fib6_add_rt2node and send one with 44803b1137feSDavid Ahern * the full route when done 44813b1137feSDavid Ahern */ 44823b1137feSDavid Ahern info->skip_notify = 1; 44833b1137feSDavid Ahern 44846b9ea5a6SRoopa Prabhu err_nh = NULL; 44856b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 44868d1c802bSDavid Ahern err = __ip6_ins_rt(nh->fib6_info, info, extack); 44878d1c802bSDavid Ahern fib6_info_release(nh->fib6_info); 44883b1137feSDavid Ahern 4489f7225172SDavid Ahern if (!err) { 4490f7225172SDavid Ahern /* save reference to last route successfully inserted */ 4491f7225172SDavid Ahern rt_last = nh->fib6_info; 4492f7225172SDavid Ahern 44936b9ea5a6SRoopa Prabhu /* save reference to first route for notification */ 4494f7225172SDavid Ahern if (!rt_notif) 44958d1c802bSDavid Ahern rt_notif = nh->fib6_info; 4496f7225172SDavid Ahern } 44976b9ea5a6SRoopa Prabhu 44988d1c802bSDavid Ahern /* nh->fib6_info is used or freed at this point, reset to NULL*/ 44998d1c802bSDavid Ahern nh->fib6_info = NULL; 45006b9ea5a6SRoopa Prabhu if (err) { 45016b9ea5a6SRoopa Prabhu if (replace && nhn) 4502a5a82d84SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 4503a5a82d84SJakub Kicinski "multipath route replace failed (check consistency of installed routes)"); 45046b9ea5a6SRoopa Prabhu err_nh = nh; 45056b9ea5a6SRoopa Prabhu goto add_errout; 45066b9ea5a6SRoopa Prabhu } 45076b9ea5a6SRoopa Prabhu 45081a72418bSNicolas Dichtel /* Because each route is added like a single route we remove 450927596472SMichal Kubeček * these flags after the first nexthop: if there is a collision, 451027596472SMichal Kubeček * we have already failed to add the first nexthop: 451127596472SMichal Kubeček * fib6_add_rt2node() has rejected it; when replacing, old 451227596472SMichal Kubeček * nexthops have been replaced by first new, the rest should 451327596472SMichal Kubeček * be added to it. 45141a72418bSNicolas Dichtel */ 451527596472SMichal Kubeček cfg->fc_nlinfo.nlh->nlmsg_flags &= ~(NLM_F_EXCL | 451627596472SMichal Kubeček NLM_F_REPLACE); 45176b9ea5a6SRoopa Prabhu nhn++; 45186b9ea5a6SRoopa Prabhu } 45196b9ea5a6SRoopa Prabhu 45203b1137feSDavid Ahern /* success ... tell user about new route */ 45213b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 45226b9ea5a6SRoopa Prabhu goto cleanup; 45236b9ea5a6SRoopa Prabhu 45246b9ea5a6SRoopa Prabhu add_errout: 45253b1137feSDavid Ahern /* send notification for routes that were added so that 45263b1137feSDavid Ahern * the delete notifications sent by ip6_route_del are 45273b1137feSDavid Ahern * coherent 45283b1137feSDavid Ahern */ 45293b1137feSDavid Ahern if (rt_notif) 45303b1137feSDavid Ahern ip6_route_mpath_notify(rt_notif, rt_last, info, nlflags); 45313b1137feSDavid Ahern 45326b9ea5a6SRoopa Prabhu /* Delete routes that were already added */ 45336b9ea5a6SRoopa Prabhu list_for_each_entry(nh, &rt6_nh_list, next) { 45346b9ea5a6SRoopa Prabhu if (err_nh == nh) 45356b9ea5a6SRoopa Prabhu break; 4536333c4301SDavid Ahern ip6_route_del(&nh->r_cfg, extack); 45376b9ea5a6SRoopa Prabhu } 45386b9ea5a6SRoopa Prabhu 45396b9ea5a6SRoopa Prabhu cleanup: 45406b9ea5a6SRoopa Prabhu list_for_each_entry_safe(nh, nh_safe, &rt6_nh_list, next) { 45418d1c802bSDavid Ahern if (nh->fib6_info) 45428d1c802bSDavid Ahern fib6_info_release(nh->fib6_info); 45436b9ea5a6SRoopa Prabhu list_del(&nh->next); 45446b9ea5a6SRoopa Prabhu kfree(nh); 45456b9ea5a6SRoopa Prabhu } 45466b9ea5a6SRoopa Prabhu 45476b9ea5a6SRoopa Prabhu return err; 45486b9ea5a6SRoopa Prabhu } 45496b9ea5a6SRoopa Prabhu 4550333c4301SDavid Ahern static int ip6_route_multipath_del(struct fib6_config *cfg, 4551333c4301SDavid Ahern struct netlink_ext_ack *extack) 45526b9ea5a6SRoopa Prabhu { 45536b9ea5a6SRoopa Prabhu struct fib6_config r_cfg; 45546b9ea5a6SRoopa Prabhu struct rtnexthop *rtnh; 45556b9ea5a6SRoopa Prabhu int remaining; 45566b9ea5a6SRoopa Prabhu int attrlen; 45576b9ea5a6SRoopa Prabhu int err = 1, last_err = 0; 45586b9ea5a6SRoopa Prabhu 45596b9ea5a6SRoopa Prabhu remaining = cfg->fc_mp_len; 45606b9ea5a6SRoopa Prabhu rtnh = (struct rtnexthop *)cfg->fc_mp; 45616b9ea5a6SRoopa Prabhu 45626b9ea5a6SRoopa Prabhu /* Parse a Multipath Entry */ 45636b9ea5a6SRoopa Prabhu while (rtnh_ok(rtnh, remaining)) { 45646b9ea5a6SRoopa Prabhu memcpy(&r_cfg, cfg, sizeof(*cfg)); 45656b9ea5a6SRoopa Prabhu if (rtnh->rtnh_ifindex) 45666b9ea5a6SRoopa Prabhu r_cfg.fc_ifindex = rtnh->rtnh_ifindex; 45676b9ea5a6SRoopa Prabhu 45686b9ea5a6SRoopa Prabhu attrlen = rtnh_attrlen(rtnh); 45696b9ea5a6SRoopa Prabhu if (attrlen > 0) { 45706b9ea5a6SRoopa Prabhu struct nlattr *nla, *attrs = rtnh_attrs(rtnh); 45716b9ea5a6SRoopa Prabhu 45726b9ea5a6SRoopa Prabhu nla = nla_find(attrs, attrlen, RTA_GATEWAY); 45736b9ea5a6SRoopa Prabhu if (nla) { 45746b9ea5a6SRoopa Prabhu nla_memcpy(&r_cfg.fc_gateway, nla, 16); 45756b9ea5a6SRoopa Prabhu r_cfg.fc_flags |= RTF_GATEWAY; 45766b9ea5a6SRoopa Prabhu } 45776b9ea5a6SRoopa Prabhu } 4578333c4301SDavid Ahern err = ip6_route_del(&r_cfg, extack); 45796b9ea5a6SRoopa Prabhu if (err) 45806b9ea5a6SRoopa Prabhu last_err = err; 45816b9ea5a6SRoopa Prabhu 458251ebd318SNicolas Dichtel rtnh = rtnh_next(rtnh, &remaining); 458351ebd318SNicolas Dichtel } 458451ebd318SNicolas Dichtel 458551ebd318SNicolas Dichtel return last_err; 458651ebd318SNicolas Dichtel } 458751ebd318SNicolas Dichtel 4588c21ef3e3SDavid Ahern static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4589c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 45901da177e4SLinus Torvalds { 459186872cb5SThomas Graf struct fib6_config cfg; 459286872cb5SThomas Graf int err; 45931da177e4SLinus Torvalds 4594333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 459586872cb5SThomas Graf if (err < 0) 459686872cb5SThomas Graf return err; 459786872cb5SThomas Graf 459851ebd318SNicolas Dichtel if (cfg.fc_mp) 4599333c4301SDavid Ahern return ip6_route_multipath_del(&cfg, extack); 46000ae81335SDavid Ahern else { 46010ae81335SDavid Ahern cfg.fc_delete_all_nh = 1; 4602333c4301SDavid Ahern return ip6_route_del(&cfg, extack); 46031da177e4SLinus Torvalds } 46040ae81335SDavid Ahern } 46051da177e4SLinus Torvalds 4606c21ef3e3SDavid Ahern static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr *nlh, 4607c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 46081da177e4SLinus Torvalds { 460986872cb5SThomas Graf struct fib6_config cfg; 461086872cb5SThomas Graf int err; 46111da177e4SLinus Torvalds 4612333c4301SDavid Ahern err = rtm_to_fib6_config(skb, nlh, &cfg, extack); 461386872cb5SThomas Graf if (err < 0) 461486872cb5SThomas Graf return err; 461586872cb5SThomas Graf 461667f69513SDavid Ahern if (cfg.fc_metric == 0) 461767f69513SDavid Ahern cfg.fc_metric = IP6_RT_PRIO_USER; 461867f69513SDavid Ahern 461951ebd318SNicolas Dichtel if (cfg.fc_mp) 4620333c4301SDavid Ahern return ip6_route_multipath_add(&cfg, extack); 462151ebd318SNicolas Dichtel else 4622acb54e3cSDavid Ahern return ip6_route_add(&cfg, GFP_KERNEL, extack); 46231da177e4SLinus Torvalds } 46241da177e4SLinus Torvalds 46258d1c802bSDavid Ahern static size_t rt6_nlmsg_size(struct fib6_info *rt) 4626339bf98fSThomas Graf { 4627beb1afacSDavid Ahern int nexthop_len = 0; 4628beb1afacSDavid Ahern 462993c2fb25SDavid Ahern if (rt->fib6_nsiblings) { 4630beb1afacSDavid Ahern nexthop_len = nla_total_size(0) /* RTA_MULTIPATH */ 4631beb1afacSDavid Ahern + NLA_ALIGN(sizeof(struct rtnexthop)) 4632beb1afacSDavid Ahern + nla_total_size(16) /* RTA_GATEWAY */ 4633ad1601aeSDavid Ahern + lwtunnel_get_encap_size(rt->fib6_nh.fib_nh_lws); 4634beb1afacSDavid Ahern 463593c2fb25SDavid Ahern nexthop_len *= rt->fib6_nsiblings; 4636beb1afacSDavid Ahern } 4637beb1afacSDavid Ahern 4638339bf98fSThomas Graf return NLMSG_ALIGN(sizeof(struct rtmsg)) 4639339bf98fSThomas Graf + nla_total_size(16) /* RTA_SRC */ 4640339bf98fSThomas Graf + nla_total_size(16) /* RTA_DST */ 4641339bf98fSThomas Graf + nla_total_size(16) /* RTA_GATEWAY */ 4642339bf98fSThomas Graf + nla_total_size(16) /* RTA_PREFSRC */ 4643339bf98fSThomas Graf + nla_total_size(4) /* RTA_TABLE */ 4644339bf98fSThomas Graf + nla_total_size(4) /* RTA_IIF */ 4645339bf98fSThomas Graf + nla_total_size(4) /* RTA_OIF */ 4646339bf98fSThomas Graf + nla_total_size(4) /* RTA_PRIORITY */ 46476a2b9ce0SNoriaki TAKAMIYA + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */ 4648ea697639SDaniel Borkmann + nla_total_size(sizeof(struct rta_cacheinfo)) 4649c78ba6d6SLubomir Rintel + nla_total_size(TCP_CA_NAME_MAX) /* RTAX_CC_ALGO */ 465019e42e45SRoopa Prabhu + nla_total_size(1) /* RTA_PREF */ 4651ad1601aeSDavid Ahern + lwtunnel_get_encap_size(rt->fib6_nh.fib_nh_lws) 4652beb1afacSDavid Ahern + nexthop_len; 4653beb1afacSDavid Ahern } 4654beb1afacSDavid Ahern 4655d4ead6b3SDavid Ahern static int rt6_fill_node(struct net *net, struct sk_buff *skb, 46568d1c802bSDavid Ahern struct fib6_info *rt, struct dst_entry *dst, 4657d4ead6b3SDavid Ahern struct in6_addr *dest, struct in6_addr *src, 465815e47304SEric W. Biederman int iif, int type, u32 portid, u32 seq, 4659f8cfe2ceSDavid Ahern unsigned int flags) 46601da177e4SLinus Torvalds { 466122d0bd82SXin Long struct rt6_info *rt6 = (struct rt6_info *)dst; 466222d0bd82SXin Long struct rt6key *rt6_dst, *rt6_src; 466322d0bd82SXin Long u32 *pmetrics, table, rt6_flags; 46641da177e4SLinus Torvalds struct nlmsghdr *nlh; 466522d0bd82SXin Long struct rtmsg *rtm; 4666d4ead6b3SDavid Ahern long expires = 0; 46671da177e4SLinus Torvalds 466815e47304SEric W. Biederman nlh = nlmsg_put(skb, portid, seq, type, sizeof(*rtm), flags); 466938308473SDavid S. Miller if (!nlh) 467026932566SPatrick McHardy return -EMSGSIZE; 46712d7202bfSThomas Graf 467222d0bd82SXin Long if (rt6) { 467322d0bd82SXin Long rt6_dst = &rt6->rt6i_dst; 467422d0bd82SXin Long rt6_src = &rt6->rt6i_src; 467522d0bd82SXin Long rt6_flags = rt6->rt6i_flags; 467622d0bd82SXin Long } else { 467722d0bd82SXin Long rt6_dst = &rt->fib6_dst; 467822d0bd82SXin Long rt6_src = &rt->fib6_src; 467922d0bd82SXin Long rt6_flags = rt->fib6_flags; 468022d0bd82SXin Long } 468122d0bd82SXin Long 46822d7202bfSThomas Graf rtm = nlmsg_data(nlh); 46831da177e4SLinus Torvalds rtm->rtm_family = AF_INET6; 468422d0bd82SXin Long rtm->rtm_dst_len = rt6_dst->plen; 468522d0bd82SXin Long rtm->rtm_src_len = rt6_src->plen; 46861da177e4SLinus Torvalds rtm->rtm_tos = 0; 468793c2fb25SDavid Ahern if (rt->fib6_table) 468893c2fb25SDavid Ahern table = rt->fib6_table->tb6_id; 4689c71099acSThomas Graf else 46909e762a4aSPatrick McHardy table = RT6_TABLE_UNSPEC; 469197f0082aSKalash Nainwal rtm->rtm_table = table < 256 ? table : RT_TABLE_COMPAT; 4692c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_TABLE, table)) 4693c78679e8SDavid S. Miller goto nla_put_failure; 4694e8478e80SDavid Ahern 4695e8478e80SDavid Ahern rtm->rtm_type = rt->fib6_type; 46961da177e4SLinus Torvalds rtm->rtm_flags = 0; 46971da177e4SLinus Torvalds rtm->rtm_scope = RT_SCOPE_UNIVERSE; 469893c2fb25SDavid Ahern rtm->rtm_protocol = rt->fib6_protocol; 46991da177e4SLinus Torvalds 470022d0bd82SXin Long if (rt6_flags & RTF_CACHE) 47011da177e4SLinus Torvalds rtm->rtm_flags |= RTM_F_CLONED; 47021da177e4SLinus Torvalds 4703d4ead6b3SDavid Ahern if (dest) { 4704d4ead6b3SDavid Ahern if (nla_put_in6_addr(skb, RTA_DST, dest)) 4705c78679e8SDavid S. Miller goto nla_put_failure; 47061da177e4SLinus Torvalds rtm->rtm_dst_len = 128; 47071da177e4SLinus Torvalds } else if (rtm->rtm_dst_len) 470822d0bd82SXin Long if (nla_put_in6_addr(skb, RTA_DST, &rt6_dst->addr)) 4709c78679e8SDavid S. Miller goto nla_put_failure; 47101da177e4SLinus Torvalds #ifdef CONFIG_IPV6_SUBTREES 47111da177e4SLinus Torvalds if (src) { 4712930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_SRC, src)) 4713c78679e8SDavid S. Miller goto nla_put_failure; 47141da177e4SLinus Torvalds rtm->rtm_src_len = 128; 4715c78679e8SDavid S. Miller } else if (rtm->rtm_src_len && 471622d0bd82SXin Long nla_put_in6_addr(skb, RTA_SRC, &rt6_src->addr)) 4717c78679e8SDavid S. Miller goto nla_put_failure; 47181da177e4SLinus Torvalds #endif 47197bc570c8SYOSHIFUJI Hideaki if (iif) { 47207bc570c8SYOSHIFUJI Hideaki #ifdef CONFIG_IPV6_MROUTE 472122d0bd82SXin Long if (ipv6_addr_is_multicast(&rt6_dst->addr)) { 4722fd61c6baSDavid Ahern int err = ip6mr_get_route(net, skb, rtm, portid); 47232cf75070SNikolay Aleksandrov 47247bc570c8SYOSHIFUJI Hideaki if (err == 0) 47257bc570c8SYOSHIFUJI Hideaki return 0; 4726fd61c6baSDavid Ahern if (err < 0) 47277bc570c8SYOSHIFUJI Hideaki goto nla_put_failure; 47287bc570c8SYOSHIFUJI Hideaki } else 47297bc570c8SYOSHIFUJI Hideaki #endif 4730c78679e8SDavid S. Miller if (nla_put_u32(skb, RTA_IIF, iif)) 4731c78679e8SDavid S. Miller goto nla_put_failure; 4732d4ead6b3SDavid Ahern } else if (dest) { 47331da177e4SLinus Torvalds struct in6_addr saddr_buf; 4734d4ead6b3SDavid Ahern if (ip6_route_get_saddr(net, rt, dest, 0, &saddr_buf) == 0 && 4735930345eaSJiri Benc nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4736c78679e8SDavid S. Miller goto nla_put_failure; 4737c3968a85SDaniel Walter } 4738c3968a85SDaniel Walter 473993c2fb25SDavid Ahern if (rt->fib6_prefsrc.plen) { 4740c3968a85SDaniel Walter struct in6_addr saddr_buf; 474193c2fb25SDavid Ahern saddr_buf = rt->fib6_prefsrc.addr; 4742930345eaSJiri Benc if (nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf)) 4743c78679e8SDavid S. Miller goto nla_put_failure; 47441da177e4SLinus Torvalds } 47452d7202bfSThomas Graf 4746d4ead6b3SDavid Ahern pmetrics = dst ? dst_metrics_ptr(dst) : rt->fib6_metrics->metrics; 4747d4ead6b3SDavid Ahern if (rtnetlink_put_metrics(skb, pmetrics) < 0) 47482d7202bfSThomas Graf goto nla_put_failure; 47492d7202bfSThomas Graf 475093c2fb25SDavid Ahern if (nla_put_u32(skb, RTA_PRIORITY, rt->fib6_metric)) 4751beb1afacSDavid Ahern goto nla_put_failure; 4752beb1afacSDavid Ahern 4753beb1afacSDavid Ahern /* For multipath routes, walk the siblings list and add 4754beb1afacSDavid Ahern * each as a nexthop within RTA_MULTIPATH. 4755beb1afacSDavid Ahern */ 475622d0bd82SXin Long if (rt6) { 475722d0bd82SXin Long if (rt6_flags & RTF_GATEWAY && 475822d0bd82SXin Long nla_put_in6_addr(skb, RTA_GATEWAY, &rt6->rt6i_gateway)) 475922d0bd82SXin Long goto nla_put_failure; 476022d0bd82SXin Long 476122d0bd82SXin Long if (dst->dev && nla_put_u32(skb, RTA_OIF, dst->dev->ifindex)) 476222d0bd82SXin Long goto nla_put_failure; 476322d0bd82SXin Long } else if (rt->fib6_nsiblings) { 47648d1c802bSDavid Ahern struct fib6_info *sibling, *next_sibling; 4765beb1afacSDavid Ahern struct nlattr *mp; 4766beb1afacSDavid Ahern 4767beb1afacSDavid Ahern mp = nla_nest_start(skb, RTA_MULTIPATH); 4768beb1afacSDavid Ahern if (!mp) 4769beb1afacSDavid Ahern goto nla_put_failure; 4770beb1afacSDavid Ahern 4771c0a72077SDavid Ahern if (fib_add_nexthop(skb, &rt->fib6_nh.nh_common, 4772c0a72077SDavid Ahern rt->fib6_nh.fib_nh_weight) < 0) 4773beb1afacSDavid Ahern goto nla_put_failure; 4774beb1afacSDavid Ahern 4775beb1afacSDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 477693c2fb25SDavid Ahern &rt->fib6_siblings, fib6_siblings) { 4777c0a72077SDavid Ahern if (fib_add_nexthop(skb, &sibling->fib6_nh.nh_common, 4778c0a72077SDavid Ahern sibling->fib6_nh.fib_nh_weight) < 0) 477994f826b8SEric Dumazet goto nla_put_failure; 478094f826b8SEric Dumazet } 47812d7202bfSThomas Graf 4782beb1afacSDavid Ahern nla_nest_end(skb, mp); 4783beb1afacSDavid Ahern } else { 4784c0a72077SDavid Ahern if (fib_nexthop_info(skb, &rt->fib6_nh.nh_common, 4785c0a72077SDavid Ahern &rtm->rtm_flags, false) < 0) 4786c78679e8SDavid S. Miller goto nla_put_failure; 4787beb1afacSDavid Ahern } 47888253947eSLi Wei 478922d0bd82SXin Long if (rt6_flags & RTF_EXPIRES) { 479014895687SDavid Ahern expires = dst ? dst->expires : rt->expires; 479114895687SDavid Ahern expires -= jiffies; 479214895687SDavid Ahern } 479369cdf8f9SYOSHIFUJI Hideaki 4794d4ead6b3SDavid Ahern if (rtnl_put_cacheinfo(skb, dst, 0, expires, dst ? dst->error : 0) < 0) 4795e3703b3dSThomas Graf goto nla_put_failure; 47961da177e4SLinus Torvalds 479722d0bd82SXin Long if (nla_put_u8(skb, RTA_PREF, IPV6_EXTRACT_PREF(rt6_flags))) 4798c78ba6d6SLubomir Rintel goto nla_put_failure; 4799c78ba6d6SLubomir Rintel 480019e42e45SRoopa Prabhu 4801053c095aSJohannes Berg nlmsg_end(skb, nlh); 4802053c095aSJohannes Berg return 0; 48032d7202bfSThomas Graf 48042d7202bfSThomas Graf nla_put_failure: 480526932566SPatrick McHardy nlmsg_cancel(skb, nlh); 480626932566SPatrick McHardy return -EMSGSIZE; 48071da177e4SLinus Torvalds } 48081da177e4SLinus Torvalds 480913e38901SDavid Ahern static bool fib6_info_uses_dev(const struct fib6_info *f6i, 481013e38901SDavid Ahern const struct net_device *dev) 481113e38901SDavid Ahern { 4812ad1601aeSDavid Ahern if (f6i->fib6_nh.fib_nh_dev == dev) 481313e38901SDavid Ahern return true; 481413e38901SDavid Ahern 481513e38901SDavid Ahern if (f6i->fib6_nsiblings) { 481613e38901SDavid Ahern struct fib6_info *sibling, *next_sibling; 481713e38901SDavid Ahern 481813e38901SDavid Ahern list_for_each_entry_safe(sibling, next_sibling, 481913e38901SDavid Ahern &f6i->fib6_siblings, fib6_siblings) { 4820ad1601aeSDavid Ahern if (sibling->fib6_nh.fib_nh_dev == dev) 482113e38901SDavid Ahern return true; 482213e38901SDavid Ahern } 482313e38901SDavid Ahern } 482413e38901SDavid Ahern 482513e38901SDavid Ahern return false; 482613e38901SDavid Ahern } 482713e38901SDavid Ahern 48288d1c802bSDavid Ahern int rt6_dump_route(struct fib6_info *rt, void *p_arg) 48291da177e4SLinus Torvalds { 48301da177e4SLinus Torvalds struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg; 483113e38901SDavid Ahern struct fib_dump_filter *filter = &arg->filter; 483213e38901SDavid Ahern unsigned int flags = NLM_F_MULTI; 48331f17e2f2SDavid Ahern struct net *net = arg->net; 48341f17e2f2SDavid Ahern 4835421842edSDavid Ahern if (rt == net->ipv6.fib6_null_entry) 48361f17e2f2SDavid Ahern return 0; 48371da177e4SLinus Torvalds 483813e38901SDavid Ahern if ((filter->flags & RTM_F_PREFIX) && 483993c2fb25SDavid Ahern !(rt->fib6_flags & RTF_PREFIX_RT)) { 4840f8cfe2ceSDavid Ahern /* success since this is not a prefix route */ 4841f8cfe2ceSDavid Ahern return 1; 4842f8cfe2ceSDavid Ahern } 484313e38901SDavid Ahern if (filter->filter_set) { 484413e38901SDavid Ahern if ((filter->rt_type && rt->fib6_type != filter->rt_type) || 484513e38901SDavid Ahern (filter->dev && !fib6_info_uses_dev(rt, filter->dev)) || 484613e38901SDavid Ahern (filter->protocol && rt->fib6_protocol != filter->protocol)) { 484713e38901SDavid Ahern return 1; 484813e38901SDavid Ahern } 484913e38901SDavid Ahern flags |= NLM_F_DUMP_FILTERED; 4850f8cfe2ceSDavid Ahern } 48511da177e4SLinus Torvalds 4852d4ead6b3SDavid Ahern return rt6_fill_node(net, arg->skb, rt, NULL, NULL, NULL, 0, 4853d4ead6b3SDavid Ahern RTM_NEWROUTE, NETLINK_CB(arg->cb->skb).portid, 485413e38901SDavid Ahern arg->cb->nlh->nlmsg_seq, flags); 48551da177e4SLinus Torvalds } 48561da177e4SLinus Torvalds 48570eff0a27SJakub Kicinski static int inet6_rtm_valid_getroute_req(struct sk_buff *skb, 48580eff0a27SJakub Kicinski const struct nlmsghdr *nlh, 48590eff0a27SJakub Kicinski struct nlattr **tb, 48600eff0a27SJakub Kicinski struct netlink_ext_ack *extack) 48610eff0a27SJakub Kicinski { 48620eff0a27SJakub Kicinski struct rtmsg *rtm; 48630eff0a27SJakub Kicinski int i, err; 48640eff0a27SJakub Kicinski 48650eff0a27SJakub Kicinski if (nlh->nlmsg_len < nlmsg_msg_size(sizeof(*rtm))) { 48660eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 48670eff0a27SJakub Kicinski "Invalid header for get route request"); 48680eff0a27SJakub Kicinski return -EINVAL; 48690eff0a27SJakub Kicinski } 48700eff0a27SJakub Kicinski 48710eff0a27SJakub Kicinski if (!netlink_strict_get_check(skb)) 48720eff0a27SJakub Kicinski return nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, 48730eff0a27SJakub Kicinski rtm_ipv6_policy, extack); 48740eff0a27SJakub Kicinski 48750eff0a27SJakub Kicinski rtm = nlmsg_data(nlh); 48760eff0a27SJakub Kicinski if ((rtm->rtm_src_len && rtm->rtm_src_len != 128) || 48770eff0a27SJakub Kicinski (rtm->rtm_dst_len && rtm->rtm_dst_len != 128) || 48780eff0a27SJakub Kicinski rtm->rtm_table || rtm->rtm_protocol || rtm->rtm_scope || 48790eff0a27SJakub Kicinski rtm->rtm_type) { 48800eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "Invalid values in header for get route request"); 48810eff0a27SJakub Kicinski return -EINVAL; 48820eff0a27SJakub Kicinski } 48830eff0a27SJakub Kicinski if (rtm->rtm_flags & ~RTM_F_FIB_MATCH) { 48840eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, 48850eff0a27SJakub Kicinski "Invalid flags for get route request"); 48860eff0a27SJakub Kicinski return -EINVAL; 48870eff0a27SJakub Kicinski } 48880eff0a27SJakub Kicinski 48890eff0a27SJakub Kicinski err = nlmsg_parse_strict(nlh, sizeof(*rtm), tb, RTA_MAX, 48900eff0a27SJakub Kicinski rtm_ipv6_policy, extack); 48910eff0a27SJakub Kicinski if (err) 48920eff0a27SJakub Kicinski return err; 48930eff0a27SJakub Kicinski 48940eff0a27SJakub Kicinski if ((tb[RTA_SRC] && !rtm->rtm_src_len) || 48950eff0a27SJakub Kicinski (tb[RTA_DST] && !rtm->rtm_dst_len)) { 48960eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "rtm_src_len and rtm_dst_len must be 128 for IPv6"); 48970eff0a27SJakub Kicinski return -EINVAL; 48980eff0a27SJakub Kicinski } 48990eff0a27SJakub Kicinski 49000eff0a27SJakub Kicinski for (i = 0; i <= RTA_MAX; i++) { 49010eff0a27SJakub Kicinski if (!tb[i]) 49020eff0a27SJakub Kicinski continue; 49030eff0a27SJakub Kicinski 49040eff0a27SJakub Kicinski switch (i) { 49050eff0a27SJakub Kicinski case RTA_SRC: 49060eff0a27SJakub Kicinski case RTA_DST: 49070eff0a27SJakub Kicinski case RTA_IIF: 49080eff0a27SJakub Kicinski case RTA_OIF: 49090eff0a27SJakub Kicinski case RTA_MARK: 49100eff0a27SJakub Kicinski case RTA_UID: 49110eff0a27SJakub Kicinski case RTA_SPORT: 49120eff0a27SJakub Kicinski case RTA_DPORT: 49130eff0a27SJakub Kicinski case RTA_IP_PROTO: 49140eff0a27SJakub Kicinski break; 49150eff0a27SJakub Kicinski default: 49160eff0a27SJakub Kicinski NL_SET_ERR_MSG_MOD(extack, "Unsupported attribute in get route request"); 49170eff0a27SJakub Kicinski return -EINVAL; 49180eff0a27SJakub Kicinski } 49190eff0a27SJakub Kicinski } 49200eff0a27SJakub Kicinski 49210eff0a27SJakub Kicinski return 0; 49220eff0a27SJakub Kicinski } 49230eff0a27SJakub Kicinski 4924c21ef3e3SDavid Ahern static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr *nlh, 4925c21ef3e3SDavid Ahern struct netlink_ext_ack *extack) 49261da177e4SLinus Torvalds { 49273b1e0a65SYOSHIFUJI Hideaki struct net *net = sock_net(in_skb->sk); 4928ab364a6fSThomas Graf struct nlattr *tb[RTA_MAX+1]; 492918c3a61cSRoopa Prabhu int err, iif = 0, oif = 0; 4930a68886a6SDavid Ahern struct fib6_info *from; 493118c3a61cSRoopa Prabhu struct dst_entry *dst; 49321da177e4SLinus Torvalds struct rt6_info *rt; 4933ab364a6fSThomas Graf struct sk_buff *skb; 4934ab364a6fSThomas Graf struct rtmsg *rtm; 4935744486d4SMaciej Żenczykowski struct flowi6 fl6 = {}; 493618c3a61cSRoopa Prabhu bool fibmatch; 4937ab364a6fSThomas Graf 49380eff0a27SJakub Kicinski err = inet6_rtm_valid_getroute_req(in_skb, nlh, tb, extack); 4939ab364a6fSThomas Graf if (err < 0) 4940ab364a6fSThomas Graf goto errout; 4941ab364a6fSThomas Graf 4942ab364a6fSThomas Graf err = -EINVAL; 494338b7097bSHannes Frederic Sowa rtm = nlmsg_data(nlh); 494438b7097bSHannes Frederic Sowa fl6.flowlabel = ip6_make_flowinfo(rtm->rtm_tos, 0); 494518c3a61cSRoopa Prabhu fibmatch = !!(rtm->rtm_flags & RTM_F_FIB_MATCH); 4946ab364a6fSThomas Graf 4947ab364a6fSThomas Graf if (tb[RTA_SRC]) { 4948ab364a6fSThomas Graf if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr)) 4949ab364a6fSThomas Graf goto errout; 4950ab364a6fSThomas Graf 49514e3fd7a0SAlexey Dobriyan fl6.saddr = *(struct in6_addr *)nla_data(tb[RTA_SRC]); 4952ab364a6fSThomas Graf } 4953ab364a6fSThomas Graf 4954ab364a6fSThomas Graf if (tb[RTA_DST]) { 4955ab364a6fSThomas Graf if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr)) 4956ab364a6fSThomas Graf goto errout; 4957ab364a6fSThomas Graf 49584e3fd7a0SAlexey Dobriyan fl6.daddr = *(struct in6_addr *)nla_data(tb[RTA_DST]); 4959ab364a6fSThomas Graf } 4960ab364a6fSThomas Graf 4961ab364a6fSThomas Graf if (tb[RTA_IIF]) 4962ab364a6fSThomas Graf iif = nla_get_u32(tb[RTA_IIF]); 4963ab364a6fSThomas Graf 4964ab364a6fSThomas Graf if (tb[RTA_OIF]) 496572331bc0SShmulik Ladkani oif = nla_get_u32(tb[RTA_OIF]); 4966ab364a6fSThomas Graf 49672e47b291SLorenzo Colitti if (tb[RTA_MARK]) 49682e47b291SLorenzo Colitti fl6.flowi6_mark = nla_get_u32(tb[RTA_MARK]); 49692e47b291SLorenzo Colitti 4970622ec2c9SLorenzo Colitti if (tb[RTA_UID]) 4971622ec2c9SLorenzo Colitti fl6.flowi6_uid = make_kuid(current_user_ns(), 4972622ec2c9SLorenzo Colitti nla_get_u32(tb[RTA_UID])); 4973622ec2c9SLorenzo Colitti else 4974622ec2c9SLorenzo Colitti fl6.flowi6_uid = iif ? INVALID_UID : current_uid(); 4975622ec2c9SLorenzo Colitti 4976eacb9384SRoopa Prabhu if (tb[RTA_SPORT]) 4977eacb9384SRoopa Prabhu fl6.fl6_sport = nla_get_be16(tb[RTA_SPORT]); 4978eacb9384SRoopa Prabhu 4979eacb9384SRoopa Prabhu if (tb[RTA_DPORT]) 4980eacb9384SRoopa Prabhu fl6.fl6_dport = nla_get_be16(tb[RTA_DPORT]); 4981eacb9384SRoopa Prabhu 4982eacb9384SRoopa Prabhu if (tb[RTA_IP_PROTO]) { 4983eacb9384SRoopa Prabhu err = rtm_getroute_parse_ip_proto(tb[RTA_IP_PROTO], 49845e1a99eaSHangbin Liu &fl6.flowi6_proto, AF_INET6, 49855e1a99eaSHangbin Liu extack); 4986eacb9384SRoopa Prabhu if (err) 4987eacb9384SRoopa Prabhu goto errout; 4988eacb9384SRoopa Prabhu } 4989eacb9384SRoopa Prabhu 4990ab364a6fSThomas Graf if (iif) { 4991ab364a6fSThomas Graf struct net_device *dev; 499272331bc0SShmulik Ladkani int flags = 0; 499372331bc0SShmulik Ladkani 4994121622dbSFlorian Westphal rcu_read_lock(); 4995121622dbSFlorian Westphal 4996121622dbSFlorian Westphal dev = dev_get_by_index_rcu(net, iif); 4997ab364a6fSThomas Graf if (!dev) { 4998121622dbSFlorian Westphal rcu_read_unlock(); 4999ab364a6fSThomas Graf err = -ENODEV; 5000ab364a6fSThomas Graf goto errout; 5001ab364a6fSThomas Graf } 500272331bc0SShmulik Ladkani 500372331bc0SShmulik Ladkani fl6.flowi6_iif = iif; 500472331bc0SShmulik Ladkani 500572331bc0SShmulik Ladkani if (!ipv6_addr_any(&fl6.saddr)) 500672331bc0SShmulik Ladkani flags |= RT6_LOOKUP_F_HAS_SADDR; 500772331bc0SShmulik Ladkani 5008b75cc8f9SDavid Ahern dst = ip6_route_input_lookup(net, dev, &fl6, NULL, flags); 5009121622dbSFlorian Westphal 5010121622dbSFlorian Westphal rcu_read_unlock(); 501172331bc0SShmulik Ladkani } else { 501272331bc0SShmulik Ladkani fl6.flowi6_oif = oif; 501372331bc0SShmulik Ladkani 501418c3a61cSRoopa Prabhu dst = ip6_route_output(net, NULL, &fl6); 501518c3a61cSRoopa Prabhu } 501618c3a61cSRoopa Prabhu 501718c3a61cSRoopa Prabhu 501818c3a61cSRoopa Prabhu rt = container_of(dst, struct rt6_info, dst); 501918c3a61cSRoopa Prabhu if (rt->dst.error) { 502018c3a61cSRoopa Prabhu err = rt->dst.error; 502118c3a61cSRoopa Prabhu ip6_rt_put(rt); 502218c3a61cSRoopa Prabhu goto errout; 5023ab364a6fSThomas Graf } 50241da177e4SLinus Torvalds 50259d6acb3bSWANG Cong if (rt == net->ipv6.ip6_null_entry) { 50269d6acb3bSWANG Cong err = rt->dst.error; 50279d6acb3bSWANG Cong ip6_rt_put(rt); 50289d6acb3bSWANG Cong goto errout; 50299d6acb3bSWANG Cong } 50309d6acb3bSWANG Cong 50311da177e4SLinus Torvalds skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL); 503238308473SDavid S. Miller if (!skb) { 503394e187c0SAmerigo Wang ip6_rt_put(rt); 5034ab364a6fSThomas Graf err = -ENOBUFS; 5035ab364a6fSThomas Graf goto errout; 5036ab364a6fSThomas Graf } 50371da177e4SLinus Torvalds 5038d8d1f30bSChangli Gao skb_dst_set(skb, &rt->dst); 5039a68886a6SDavid Ahern 5040a68886a6SDavid Ahern rcu_read_lock(); 5041a68886a6SDavid Ahern from = rcu_dereference(rt->from); 5042a68886a6SDavid Ahern 504318c3a61cSRoopa Prabhu if (fibmatch) 5044a68886a6SDavid Ahern err = rt6_fill_node(net, skb, from, NULL, NULL, NULL, iif, 504518c3a61cSRoopa Prabhu RTM_NEWROUTE, NETLINK_CB(in_skb).portid, 504618c3a61cSRoopa Prabhu nlh->nlmsg_seq, 0); 504718c3a61cSRoopa Prabhu else 5048a68886a6SDavid Ahern err = rt6_fill_node(net, skb, from, dst, &fl6.daddr, 5049a68886a6SDavid Ahern &fl6.saddr, iif, RTM_NEWROUTE, 5050d4ead6b3SDavid Ahern NETLINK_CB(in_skb).portid, nlh->nlmsg_seq, 5051d4ead6b3SDavid Ahern 0); 5052a68886a6SDavid Ahern rcu_read_unlock(); 5053a68886a6SDavid Ahern 50541da177e4SLinus Torvalds if (err < 0) { 5055ab364a6fSThomas Graf kfree_skb(skb); 5056ab364a6fSThomas Graf goto errout; 50571da177e4SLinus Torvalds } 50581da177e4SLinus Torvalds 505915e47304SEric W. Biederman err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).portid); 5060ab364a6fSThomas Graf errout: 50611da177e4SLinus Torvalds return err; 50621da177e4SLinus Torvalds } 50631da177e4SLinus Torvalds 50648d1c802bSDavid Ahern void inet6_rt_notify(int event, struct fib6_info *rt, struct nl_info *info, 506537a1d361SRoopa Prabhu unsigned int nlm_flags) 50661da177e4SLinus Torvalds { 50671da177e4SLinus Torvalds struct sk_buff *skb; 50685578689aSDaniel Lezcano struct net *net = info->nl_net; 5069528c4cebSDenis V. Lunev u32 seq; 5070528c4cebSDenis V. Lunev int err; 50710d51aa80SJamal Hadi Salim 5072528c4cebSDenis V. Lunev err = -ENOBUFS; 507338308473SDavid S. Miller seq = info->nlh ? info->nlh->nlmsg_seq : 0; 507486872cb5SThomas Graf 507519e42e45SRoopa Prabhu skb = nlmsg_new(rt6_nlmsg_size(rt), gfp_any()); 507638308473SDavid S. Miller if (!skb) 507721713ebcSThomas Graf goto errout; 50781da177e4SLinus Torvalds 5079d4ead6b3SDavid Ahern err = rt6_fill_node(net, skb, rt, NULL, NULL, NULL, 0, 5080f8cfe2ceSDavid Ahern event, info->portid, seq, nlm_flags); 508126932566SPatrick McHardy if (err < 0) { 508226932566SPatrick McHardy /* -EMSGSIZE implies BUG in rt6_nlmsg_size() */ 508326932566SPatrick McHardy WARN_ON(err == -EMSGSIZE); 508426932566SPatrick McHardy kfree_skb(skb); 508526932566SPatrick McHardy goto errout; 508626932566SPatrick McHardy } 508715e47304SEric W. Biederman rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE, 50885578689aSDaniel Lezcano info->nlh, gfp_any()); 50891ce85fe4SPablo Neira Ayuso return; 509021713ebcSThomas Graf errout: 509121713ebcSThomas Graf if (err < 0) 50925578689aSDaniel Lezcano rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err); 50931da177e4SLinus Torvalds } 50941da177e4SLinus Torvalds 50958ed67789SDaniel Lezcano static int ip6_route_dev_notify(struct notifier_block *this, 5096351638e7SJiri Pirko unsigned long event, void *ptr) 50978ed67789SDaniel Lezcano { 5098351638e7SJiri Pirko struct net_device *dev = netdev_notifier_info_to_dev(ptr); 5099c346dca1SYOSHIFUJI Hideaki struct net *net = dev_net(dev); 51008ed67789SDaniel Lezcano 5101242d3a49SWANG Cong if (!(dev->flags & IFF_LOOPBACK)) 5102242d3a49SWANG Cong return NOTIFY_OK; 5103242d3a49SWANG Cong 5104242d3a49SWANG Cong if (event == NETDEV_REGISTER) { 5105ad1601aeSDavid Ahern net->ipv6.fib6_null_entry->fib6_nh.fib_nh_dev = dev; 5106d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.dev = dev; 51078ed67789SDaniel Lezcano net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev); 51088ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5109d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.dev = dev; 51108ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev); 5111d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.dev = dev; 51128ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev); 51138ed67789SDaniel Lezcano #endif 511476da0704SWANG Cong } else if (event == NETDEV_UNREGISTER && 511576da0704SWANG Cong dev->reg_state != NETREG_UNREGISTERED) { 511676da0704SWANG Cong /* NETDEV_UNREGISTER could be fired for multiple times by 511776da0704SWANG Cong * netdev_wait_allrefs(). Make sure we only call this once. 511876da0704SWANG Cong */ 511912d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_null_entry->rt6i_idev); 5120242d3a49SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 512112d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_prohibit_entry->rt6i_idev); 512212d94a80SEric Dumazet in6_dev_put_clear(&net->ipv6.ip6_blk_hole_entry->rt6i_idev); 5123242d3a49SWANG Cong #endif 51248ed67789SDaniel Lezcano } 51258ed67789SDaniel Lezcano 51268ed67789SDaniel Lezcano return NOTIFY_OK; 51278ed67789SDaniel Lezcano } 51288ed67789SDaniel Lezcano 51291da177e4SLinus Torvalds /* 51301da177e4SLinus Torvalds * /proc 51311da177e4SLinus Torvalds */ 51321da177e4SLinus Torvalds 51331da177e4SLinus Torvalds #ifdef CONFIG_PROC_FS 51341da177e4SLinus Torvalds static int rt6_stats_seq_show(struct seq_file *seq, void *v) 51351da177e4SLinus Torvalds { 513669ddb805SDaniel Lezcano struct net *net = (struct net *)seq->private; 51371da177e4SLinus Torvalds seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n", 513869ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_nodes, 513969ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_route_nodes, 514081eb8447SWei Wang atomic_read(&net->ipv6.rt6_stats->fib_rt_alloc), 514169ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_entries, 514269ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_rt_cache, 5143fc66f95cSEric Dumazet dst_entries_get_slow(&net->ipv6.ip6_dst_ops), 514469ddb805SDaniel Lezcano net->ipv6.rt6_stats->fib_discarded_routes); 51451da177e4SLinus Torvalds 51461da177e4SLinus Torvalds return 0; 51471da177e4SLinus Torvalds } 51481da177e4SLinus Torvalds #endif /* CONFIG_PROC_FS */ 51491da177e4SLinus Torvalds 51501da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 51511da177e4SLinus Torvalds 51521da177e4SLinus Torvalds static 5153fe2c6338SJoe Perches int ipv6_sysctl_rtcache_flush(struct ctl_table *ctl, int write, 51541da177e4SLinus Torvalds void __user *buffer, size_t *lenp, loff_t *ppos) 51551da177e4SLinus Torvalds { 5156c486da34SLucian Adrian Grijincu struct net *net; 5157c486da34SLucian Adrian Grijincu int delay; 5158f0fb9b28SAditya Pakki int ret; 5159c486da34SLucian Adrian Grijincu if (!write) 5160c486da34SLucian Adrian Grijincu return -EINVAL; 5161c486da34SLucian Adrian Grijincu 5162c486da34SLucian Adrian Grijincu net = (struct net *)ctl->extra1; 5163c486da34SLucian Adrian Grijincu delay = net->ipv6.sysctl.flush_delay; 5164f0fb9b28SAditya Pakki ret = proc_dointvec(ctl, write, buffer, lenp, ppos); 5165f0fb9b28SAditya Pakki if (ret) 5166f0fb9b28SAditya Pakki return ret; 5167f0fb9b28SAditya Pakki 51682ac3ac8fSMichal Kubeček fib6_run_gc(delay <= 0 ? 0 : (unsigned long)delay, net, delay > 0); 51691da177e4SLinus Torvalds return 0; 51701da177e4SLinus Torvalds } 51711da177e4SLinus Torvalds 51727c6bb7d2SDavid Ahern static int zero; 51737c6bb7d2SDavid Ahern static int one = 1; 51747c6bb7d2SDavid Ahern 5175ed792e28SDavid Ahern static struct ctl_table ipv6_route_table_template[] = { 51761da177e4SLinus Torvalds { 51771da177e4SLinus Torvalds .procname = "flush", 51784990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.flush_delay, 51791da177e4SLinus Torvalds .maxlen = sizeof(int), 518089c8b3a1SDave Jones .mode = 0200, 51816d9f239aSAlexey Dobriyan .proc_handler = ipv6_sysctl_rtcache_flush 51821da177e4SLinus Torvalds }, 51831da177e4SLinus Torvalds { 51841da177e4SLinus Torvalds .procname = "gc_thresh", 51859a7ec3a9SDaniel Lezcano .data = &ip6_dst_ops_template.gc_thresh, 51861da177e4SLinus Torvalds .maxlen = sizeof(int), 51871da177e4SLinus Torvalds .mode = 0644, 51886d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 51891da177e4SLinus Torvalds }, 51901da177e4SLinus Torvalds { 51911da177e4SLinus Torvalds .procname = "max_size", 51924990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_max_size, 51931da177e4SLinus Torvalds .maxlen = sizeof(int), 51941da177e4SLinus Torvalds .mode = 0644, 51956d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec, 51961da177e4SLinus Torvalds }, 51971da177e4SLinus Torvalds { 51981da177e4SLinus Torvalds .procname = "gc_min_interval", 51994990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 52001da177e4SLinus Torvalds .maxlen = sizeof(int), 52011da177e4SLinus Torvalds .mode = 0644, 52026d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52031da177e4SLinus Torvalds }, 52041da177e4SLinus Torvalds { 52051da177e4SLinus Torvalds .procname = "gc_timeout", 52064990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_timeout, 52071da177e4SLinus Torvalds .maxlen = sizeof(int), 52081da177e4SLinus Torvalds .mode = 0644, 52096d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52101da177e4SLinus Torvalds }, 52111da177e4SLinus Torvalds { 52121da177e4SLinus Torvalds .procname = "gc_interval", 52134990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_interval, 52141da177e4SLinus Torvalds .maxlen = sizeof(int), 52151da177e4SLinus Torvalds .mode = 0644, 52166d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52171da177e4SLinus Torvalds }, 52181da177e4SLinus Torvalds { 52191da177e4SLinus Torvalds .procname = "gc_elasticity", 52204990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_elasticity, 52211da177e4SLinus Torvalds .maxlen = sizeof(int), 52221da177e4SLinus Torvalds .mode = 0644, 5223f3d3f616SMin Zhang .proc_handler = proc_dointvec, 52241da177e4SLinus Torvalds }, 52251da177e4SLinus Torvalds { 52261da177e4SLinus Torvalds .procname = "mtu_expires", 52274990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_mtu_expires, 52281da177e4SLinus Torvalds .maxlen = sizeof(int), 52291da177e4SLinus Torvalds .mode = 0644, 52306d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_jiffies, 52311da177e4SLinus Torvalds }, 52321da177e4SLinus Torvalds { 52331da177e4SLinus Torvalds .procname = "min_adv_mss", 52344990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_min_advmss, 52351da177e4SLinus Torvalds .maxlen = sizeof(int), 52361da177e4SLinus Torvalds .mode = 0644, 5237f3d3f616SMin Zhang .proc_handler = proc_dointvec, 52381da177e4SLinus Torvalds }, 52391da177e4SLinus Torvalds { 52401da177e4SLinus Torvalds .procname = "gc_min_interval_ms", 52414990509fSDaniel Lezcano .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval, 52421da177e4SLinus Torvalds .maxlen = sizeof(int), 52431da177e4SLinus Torvalds .mode = 0644, 52446d9f239aSAlexey Dobriyan .proc_handler = proc_dointvec_ms_jiffies, 52451da177e4SLinus Torvalds }, 52467c6bb7d2SDavid Ahern { 52477c6bb7d2SDavid Ahern .procname = "skip_notify_on_dev_down", 52487c6bb7d2SDavid Ahern .data = &init_net.ipv6.sysctl.skip_notify_on_dev_down, 52497c6bb7d2SDavid Ahern .maxlen = sizeof(int), 52507c6bb7d2SDavid Ahern .mode = 0644, 52517c6bb7d2SDavid Ahern .proc_handler = proc_dointvec, 52527c6bb7d2SDavid Ahern .extra1 = &zero, 52537c6bb7d2SDavid Ahern .extra2 = &one, 52547c6bb7d2SDavid Ahern }, 5255f8572d8fSEric W. Biederman { } 52561da177e4SLinus Torvalds }; 52571da177e4SLinus Torvalds 52582c8c1e72SAlexey Dobriyan struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net) 5259760f2d01SDaniel Lezcano { 5260760f2d01SDaniel Lezcano struct ctl_table *table; 5261760f2d01SDaniel Lezcano 5262760f2d01SDaniel Lezcano table = kmemdup(ipv6_route_table_template, 5263760f2d01SDaniel Lezcano sizeof(ipv6_route_table_template), 5264760f2d01SDaniel Lezcano GFP_KERNEL); 52655ee09105SYOSHIFUJI Hideaki 52665ee09105SYOSHIFUJI Hideaki if (table) { 52675ee09105SYOSHIFUJI Hideaki table[0].data = &net->ipv6.sysctl.flush_delay; 5268c486da34SLucian Adrian Grijincu table[0].extra1 = net; 526986393e52SAlexey Dobriyan table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh; 52705ee09105SYOSHIFUJI Hideaki table[2].data = &net->ipv6.sysctl.ip6_rt_max_size; 52715ee09105SYOSHIFUJI Hideaki table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 52725ee09105SYOSHIFUJI Hideaki table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout; 52735ee09105SYOSHIFUJI Hideaki table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval; 52745ee09105SYOSHIFUJI Hideaki table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity; 52755ee09105SYOSHIFUJI Hideaki table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires; 52765ee09105SYOSHIFUJI Hideaki table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss; 52779c69fabeSAlexey Dobriyan table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval; 52787c6bb7d2SDavid Ahern table[10].data = &net->ipv6.sysctl.skip_notify_on_dev_down; 5279464dc801SEric W. Biederman 5280464dc801SEric W. Biederman /* Don't export sysctls to unprivileged users */ 5281464dc801SEric W. Biederman if (net->user_ns != &init_user_ns) 5282464dc801SEric W. Biederman table[0].procname = NULL; 52835ee09105SYOSHIFUJI Hideaki } 52845ee09105SYOSHIFUJI Hideaki 5285760f2d01SDaniel Lezcano return table; 5286760f2d01SDaniel Lezcano } 52871da177e4SLinus Torvalds #endif 52881da177e4SLinus Torvalds 52892c8c1e72SAlexey Dobriyan static int __net_init ip6_route_net_init(struct net *net) 5290cdb18761SDaniel Lezcano { 5291633d424bSPavel Emelyanov int ret = -ENOMEM; 52928ed67789SDaniel Lezcano 529386393e52SAlexey Dobriyan memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template, 529486393e52SAlexey Dobriyan sizeof(net->ipv6.ip6_dst_ops)); 5295f2fc6a54SBenjamin Thery 5296fc66f95cSEric Dumazet if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0) 5297fc66f95cSEric Dumazet goto out_ip6_dst_ops; 5298fc66f95cSEric Dumazet 5299421842edSDavid Ahern net->ipv6.fib6_null_entry = kmemdup(&fib6_null_entry_template, 5300421842edSDavid Ahern sizeof(*net->ipv6.fib6_null_entry), 5301421842edSDavid Ahern GFP_KERNEL); 5302421842edSDavid Ahern if (!net->ipv6.fib6_null_entry) 5303421842edSDavid Ahern goto out_ip6_dst_entries; 5304421842edSDavid Ahern 53058ed67789SDaniel Lezcano net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template, 53068ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_null_entry), 53078ed67789SDaniel Lezcano GFP_KERNEL); 53088ed67789SDaniel Lezcano if (!net->ipv6.ip6_null_entry) 5309421842edSDavid Ahern goto out_fib6_null_entry; 5310d8d1f30bSChangli Gao net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops; 531162fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_null_entry->dst, 531262fa8a84SDavid S. Miller ip6_template_metrics, true); 53138ed67789SDaniel Lezcano 53148ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 5315feca7d8cSVincent Bernat net->ipv6.fib6_has_custom_rules = false; 53168ed67789SDaniel Lezcano net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template, 53178ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_prohibit_entry), 53188ed67789SDaniel Lezcano GFP_KERNEL); 531968fffc67SPeter Zijlstra if (!net->ipv6.ip6_prohibit_entry) 532068fffc67SPeter Zijlstra goto out_ip6_null_entry; 5321d8d1f30bSChangli Gao net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops; 532262fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_prohibit_entry->dst, 532362fa8a84SDavid S. Miller ip6_template_metrics, true); 53248ed67789SDaniel Lezcano 53258ed67789SDaniel Lezcano net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template, 53268ed67789SDaniel Lezcano sizeof(*net->ipv6.ip6_blk_hole_entry), 53278ed67789SDaniel Lezcano GFP_KERNEL); 532868fffc67SPeter Zijlstra if (!net->ipv6.ip6_blk_hole_entry) 532968fffc67SPeter Zijlstra goto out_ip6_prohibit_entry; 5330d8d1f30bSChangli Gao net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops; 533162fa8a84SDavid S. Miller dst_init_metrics(&net->ipv6.ip6_blk_hole_entry->dst, 533262fa8a84SDavid S. Miller ip6_template_metrics, true); 53338ed67789SDaniel Lezcano #endif 53348ed67789SDaniel Lezcano 5335b339a47cSPeter Zijlstra net->ipv6.sysctl.flush_delay = 0; 5336b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_max_size = 4096; 5337b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2; 5338b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ; 5339b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ; 5340b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_gc_elasticity = 9; 5341b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ; 5342b339a47cSPeter Zijlstra net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40; 53437c6bb7d2SDavid Ahern net->ipv6.sysctl.skip_notify_on_dev_down = 0; 5344b339a47cSPeter Zijlstra 53456891a346SBenjamin Thery net->ipv6.ip6_rt_gc_expire = 30*HZ; 53466891a346SBenjamin Thery 53478ed67789SDaniel Lezcano ret = 0; 53488ed67789SDaniel Lezcano out: 53498ed67789SDaniel Lezcano return ret; 5350f2fc6a54SBenjamin Thery 535168fffc67SPeter Zijlstra #ifdef CONFIG_IPV6_MULTIPLE_TABLES 535268fffc67SPeter Zijlstra out_ip6_prohibit_entry: 535368fffc67SPeter Zijlstra kfree(net->ipv6.ip6_prohibit_entry); 535468fffc67SPeter Zijlstra out_ip6_null_entry: 535568fffc67SPeter Zijlstra kfree(net->ipv6.ip6_null_entry); 535668fffc67SPeter Zijlstra #endif 5357421842edSDavid Ahern out_fib6_null_entry: 5358421842edSDavid Ahern kfree(net->ipv6.fib6_null_entry); 5359fc66f95cSEric Dumazet out_ip6_dst_entries: 5360fc66f95cSEric Dumazet dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5361f2fc6a54SBenjamin Thery out_ip6_dst_ops: 5362f2fc6a54SBenjamin Thery goto out; 5363cdb18761SDaniel Lezcano } 5364cdb18761SDaniel Lezcano 53652c8c1e72SAlexey Dobriyan static void __net_exit ip6_route_net_exit(struct net *net) 5366cdb18761SDaniel Lezcano { 5367421842edSDavid Ahern kfree(net->ipv6.fib6_null_entry); 53688ed67789SDaniel Lezcano kfree(net->ipv6.ip6_null_entry); 53698ed67789SDaniel Lezcano #ifdef CONFIG_IPV6_MULTIPLE_TABLES 53708ed67789SDaniel Lezcano kfree(net->ipv6.ip6_prohibit_entry); 53718ed67789SDaniel Lezcano kfree(net->ipv6.ip6_blk_hole_entry); 53728ed67789SDaniel Lezcano #endif 537341bb78b4SXiaotian Feng dst_entries_destroy(&net->ipv6.ip6_dst_ops); 5374cdb18761SDaniel Lezcano } 5375cdb18761SDaniel Lezcano 5376d189634eSThomas Graf static int __net_init ip6_route_net_init_late(struct net *net) 5377d189634eSThomas Graf { 5378d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5379c3506372SChristoph Hellwig proc_create_net("ipv6_route", 0, net->proc_net, &ipv6_route_seq_ops, 5380c3506372SChristoph Hellwig sizeof(struct ipv6_route_iter)); 53813617d949SChristoph Hellwig proc_create_net_single("rt6_stats", 0444, net->proc_net, 53823617d949SChristoph Hellwig rt6_stats_seq_show, NULL); 5383d189634eSThomas Graf #endif 5384d189634eSThomas Graf return 0; 5385d189634eSThomas Graf } 5386d189634eSThomas Graf 5387d189634eSThomas Graf static void __net_exit ip6_route_net_exit_late(struct net *net) 5388d189634eSThomas Graf { 5389d189634eSThomas Graf #ifdef CONFIG_PROC_FS 5390ece31ffdSGao feng remove_proc_entry("ipv6_route", net->proc_net); 5391ece31ffdSGao feng remove_proc_entry("rt6_stats", net->proc_net); 5392d189634eSThomas Graf #endif 5393d189634eSThomas Graf } 5394d189634eSThomas Graf 5395cdb18761SDaniel Lezcano static struct pernet_operations ip6_route_net_ops = { 5396cdb18761SDaniel Lezcano .init = ip6_route_net_init, 5397cdb18761SDaniel Lezcano .exit = ip6_route_net_exit, 5398cdb18761SDaniel Lezcano }; 5399cdb18761SDaniel Lezcano 5400c3426b47SDavid S. Miller static int __net_init ipv6_inetpeer_init(struct net *net) 5401c3426b47SDavid S. Miller { 5402c3426b47SDavid S. Miller struct inet_peer_base *bp = kmalloc(sizeof(*bp), GFP_KERNEL); 5403c3426b47SDavid S. Miller 5404c3426b47SDavid S. Miller if (!bp) 5405c3426b47SDavid S. Miller return -ENOMEM; 5406c3426b47SDavid S. Miller inet_peer_base_init(bp); 5407c3426b47SDavid S. Miller net->ipv6.peers = bp; 5408c3426b47SDavid S. Miller return 0; 5409c3426b47SDavid S. Miller } 5410c3426b47SDavid S. Miller 5411c3426b47SDavid S. Miller static void __net_exit ipv6_inetpeer_exit(struct net *net) 5412c3426b47SDavid S. Miller { 5413c3426b47SDavid S. Miller struct inet_peer_base *bp = net->ipv6.peers; 5414c3426b47SDavid S. Miller 5415c3426b47SDavid S. Miller net->ipv6.peers = NULL; 541656a6b248SDavid S. Miller inetpeer_invalidate_tree(bp); 5417c3426b47SDavid S. Miller kfree(bp); 5418c3426b47SDavid S. Miller } 5419c3426b47SDavid S. Miller 54202b823f72SDavid S. Miller static struct pernet_operations ipv6_inetpeer_ops = { 5421c3426b47SDavid S. Miller .init = ipv6_inetpeer_init, 5422c3426b47SDavid S. Miller .exit = ipv6_inetpeer_exit, 5423c3426b47SDavid S. Miller }; 5424c3426b47SDavid S. Miller 5425d189634eSThomas Graf static struct pernet_operations ip6_route_net_late_ops = { 5426d189634eSThomas Graf .init = ip6_route_net_init_late, 5427d189634eSThomas Graf .exit = ip6_route_net_exit_late, 5428d189634eSThomas Graf }; 5429d189634eSThomas Graf 54308ed67789SDaniel Lezcano static struct notifier_block ip6_route_dev_notifier = { 54318ed67789SDaniel Lezcano .notifier_call = ip6_route_dev_notify, 5432242d3a49SWANG Cong .priority = ADDRCONF_NOTIFY_PRIORITY - 10, 54338ed67789SDaniel Lezcano }; 54348ed67789SDaniel Lezcano 54352f460933SWANG Cong void __init ip6_route_init_special_entries(void) 54362f460933SWANG Cong { 54372f460933SWANG Cong /* Registering of the loopback is done before this portion of code, 54382f460933SWANG Cong * the loopback reference in rt6_info will not be taken, do it 54392f460933SWANG Cong * manually for init_net */ 5440ad1601aeSDavid Ahern init_net.ipv6.fib6_null_entry->fib6_nh.fib_nh_dev = init_net.loopback_dev; 54412f460933SWANG Cong init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev; 54422f460933SWANG Cong init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54432f460933SWANG Cong #ifdef CONFIG_IPV6_MULTIPLE_TABLES 54442f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev; 54452f460933SWANG Cong init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54462f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev; 54472f460933SWANG Cong init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev); 54482f460933SWANG Cong #endif 54492f460933SWANG Cong } 54502f460933SWANG Cong 5451433d49c3SDaniel Lezcano int __init ip6_route_init(void) 54521da177e4SLinus Torvalds { 5453433d49c3SDaniel Lezcano int ret; 54548d0b94afSMartin KaFai Lau int cpu; 5455433d49c3SDaniel Lezcano 54569a7ec3a9SDaniel Lezcano ret = -ENOMEM; 54579a7ec3a9SDaniel Lezcano ip6_dst_ops_template.kmem_cachep = 54589a7ec3a9SDaniel Lezcano kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0, 54599a7ec3a9SDaniel Lezcano SLAB_HWCACHE_ALIGN, NULL); 54609a7ec3a9SDaniel Lezcano if (!ip6_dst_ops_template.kmem_cachep) 5461c19a28e1SFernando Carrijo goto out; 546214e50e57SDavid S. Miller 5463fc66f95cSEric Dumazet ret = dst_entries_init(&ip6_dst_blackhole_ops); 54648ed67789SDaniel Lezcano if (ret) 5465bdb3289fSDaniel Lezcano goto out_kmem_cache; 5466bdb3289fSDaniel Lezcano 5467c3426b47SDavid S. Miller ret = register_pernet_subsys(&ipv6_inetpeer_ops); 5468c3426b47SDavid S. Miller if (ret) 5469e8803b6cSDavid S. Miller goto out_dst_entries; 54702a0c451aSThomas Graf 54717e52b33bSDavid S. Miller ret = register_pernet_subsys(&ip6_route_net_ops); 54727e52b33bSDavid S. Miller if (ret) 54737e52b33bSDavid S. Miller goto out_register_inetpeer; 5474c3426b47SDavid S. Miller 54755dc121e9SArnaud Ebalard ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep; 54765dc121e9SArnaud Ebalard 5477e8803b6cSDavid S. Miller ret = fib6_init(); 5478433d49c3SDaniel Lezcano if (ret) 54798ed67789SDaniel Lezcano goto out_register_subsys; 5480433d49c3SDaniel Lezcano 5481433d49c3SDaniel Lezcano ret = xfrm6_init(); 5482433d49c3SDaniel Lezcano if (ret) 5483e8803b6cSDavid S. Miller goto out_fib6_init; 5484c35b7e72SDaniel Lezcano 5485433d49c3SDaniel Lezcano ret = fib6_rules_init(); 5486433d49c3SDaniel Lezcano if (ret) 5487433d49c3SDaniel Lezcano goto xfrm6_init; 54887e5449c2SDaniel Lezcano 5489d189634eSThomas Graf ret = register_pernet_subsys(&ip6_route_net_late_ops); 5490d189634eSThomas Graf if (ret) 5491d189634eSThomas Graf goto fib6_rules_init; 5492d189634eSThomas Graf 549316feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_NEWROUTE, 549416feebcfSFlorian Westphal inet6_rtm_newroute, NULL, 0); 549516feebcfSFlorian Westphal if (ret < 0) 549616feebcfSFlorian Westphal goto out_register_late_subsys; 549716feebcfSFlorian Westphal 549816feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_DELROUTE, 549916feebcfSFlorian Westphal inet6_rtm_delroute, NULL, 0); 550016feebcfSFlorian Westphal if (ret < 0) 550116feebcfSFlorian Westphal goto out_register_late_subsys; 550216feebcfSFlorian Westphal 550316feebcfSFlorian Westphal ret = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETROUTE, 550416feebcfSFlorian Westphal inet6_rtm_getroute, NULL, 550516feebcfSFlorian Westphal RTNL_FLAG_DOIT_UNLOCKED); 550616feebcfSFlorian Westphal if (ret < 0) 5507d189634eSThomas Graf goto out_register_late_subsys; 5508433d49c3SDaniel Lezcano 55098ed67789SDaniel Lezcano ret = register_netdevice_notifier(&ip6_route_dev_notifier); 5510cdb18761SDaniel Lezcano if (ret) 5511d189634eSThomas Graf goto out_register_late_subsys; 55128ed67789SDaniel Lezcano 55138d0b94afSMartin KaFai Lau for_each_possible_cpu(cpu) { 55148d0b94afSMartin KaFai Lau struct uncached_list *ul = per_cpu_ptr(&rt6_uncached_list, cpu); 55158d0b94afSMartin KaFai Lau 55168d0b94afSMartin KaFai Lau INIT_LIST_HEAD(&ul->head); 55178d0b94afSMartin KaFai Lau spin_lock_init(&ul->lock); 55188d0b94afSMartin KaFai Lau } 55198d0b94afSMartin KaFai Lau 5520433d49c3SDaniel Lezcano out: 5521433d49c3SDaniel Lezcano return ret; 5522433d49c3SDaniel Lezcano 5523d189634eSThomas Graf out_register_late_subsys: 552416feebcfSFlorian Westphal rtnl_unregister_all(PF_INET6); 5525d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5526433d49c3SDaniel Lezcano fib6_rules_init: 5527433d49c3SDaniel Lezcano fib6_rules_cleanup(); 5528433d49c3SDaniel Lezcano xfrm6_init: 5529433d49c3SDaniel Lezcano xfrm6_fini(); 55302a0c451aSThomas Graf out_fib6_init: 55312a0c451aSThomas Graf fib6_gc_cleanup(); 55328ed67789SDaniel Lezcano out_register_subsys: 55338ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 55347e52b33bSDavid S. Miller out_register_inetpeer: 55357e52b33bSDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 5536fc66f95cSEric Dumazet out_dst_entries: 5537fc66f95cSEric Dumazet dst_entries_destroy(&ip6_dst_blackhole_ops); 5538433d49c3SDaniel Lezcano out_kmem_cache: 5539f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 5540433d49c3SDaniel Lezcano goto out; 55411da177e4SLinus Torvalds } 55421da177e4SLinus Torvalds 55431da177e4SLinus Torvalds void ip6_route_cleanup(void) 55441da177e4SLinus Torvalds { 55458ed67789SDaniel Lezcano unregister_netdevice_notifier(&ip6_route_dev_notifier); 5546d189634eSThomas Graf unregister_pernet_subsys(&ip6_route_net_late_ops); 5547101367c2SThomas Graf fib6_rules_cleanup(); 55481da177e4SLinus Torvalds xfrm6_fini(); 55491da177e4SLinus Torvalds fib6_gc_cleanup(); 5550c3426b47SDavid S. Miller unregister_pernet_subsys(&ipv6_inetpeer_ops); 55518ed67789SDaniel Lezcano unregister_pernet_subsys(&ip6_route_net_ops); 555241bb78b4SXiaotian Feng dst_entries_destroy(&ip6_dst_blackhole_ops); 5553f2fc6a54SBenjamin Thery kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep); 55541da177e4SLinus Torvalds } 5555