1 // SPDX-License-Identifier: GPL-2.0
2 /* Copyright (C) B.A.T.M.A.N. contributors:
3  *
4  * Antonio Quartulli
5  */
6 
7 #include "distributed-arp-table.h"
8 #include "main.h"
9 
10 #include <asm/unaligned.h>
11 #include <linux/atomic.h>
12 #include <linux/bitops.h>
13 #include <linux/byteorder/generic.h>
14 #include <linux/errno.h>
15 #include <linux/etherdevice.h>
16 #include <linux/gfp.h>
17 #include <linux/if_arp.h>
18 #include <linux/if_ether.h>
19 #include <linux/if_vlan.h>
20 #include <linux/in.h>
21 #include <linux/ip.h>
22 #include <linux/jiffies.h>
23 #include <linux/kernel.h>
24 #include <linux/kref.h>
25 #include <linux/list.h>
26 #include <linux/netlink.h>
27 #include <linux/rculist.h>
28 #include <linux/rcupdate.h>
29 #include <linux/skbuff.h>
30 #include <linux/slab.h>
31 #include <linux/spinlock.h>
32 #include <linux/stddef.h>
33 #include <linux/string.h>
34 #include <linux/udp.h>
35 #include <linux/workqueue.h>
36 #include <net/arp.h>
37 #include <net/genetlink.h>
38 #include <net/netlink.h>
39 #include <net/sock.h>
40 #include <uapi/linux/batman_adv.h>
41 
42 #include "bridge_loop_avoidance.h"
43 #include "hard-interface.h"
44 #include "hash.h"
45 #include "log.h"
46 #include "netlink.h"
47 #include "originator.h"
48 #include "send.h"
49 #include "soft-interface.h"
50 #include "translation-table.h"
51 #include "tvlv.h"
52 
53 enum batadv_bootpop {
54 	BATADV_BOOTREPLY	= 2,
55 };
56 
57 enum batadv_boothtype {
58 	BATADV_HTYPE_ETHERNET	= 1,
59 };
60 
61 enum batadv_dhcpoptioncode {
62 	BATADV_DHCP_OPT_PAD		= 0,
63 	BATADV_DHCP_OPT_MSG_TYPE	= 53,
64 	BATADV_DHCP_OPT_END		= 255,
65 };
66 
67 enum batadv_dhcptype {
68 	BATADV_DHCPACK		= 5,
69 };
70 
71 /* { 99, 130, 83, 99 } */
72 #define BATADV_DHCP_MAGIC 1669485411
73 
74 struct batadv_dhcp_packet {
75 	__u8 op;
76 	__u8 htype;
77 	__u8 hlen;
78 	__u8 hops;
79 	__be32 xid;
80 	__be16 secs;
81 	__be16 flags;
82 	__be32 ciaddr;
83 	__be32 yiaddr;
84 	__be32 siaddr;
85 	__be32 giaddr;
86 	__u8 chaddr[16];
87 	__u8 sname[64];
88 	__u8 file[128];
89 	__be32 magic;
90 	/* __u8 options[]; */
91 };
92 
93 #define BATADV_DHCP_YIADDR_LEN sizeof(((struct batadv_dhcp_packet *)0)->yiaddr)
94 #define BATADV_DHCP_CHADDR_LEN sizeof(((struct batadv_dhcp_packet *)0)->chaddr)
95 
96 static void batadv_dat_purge(struct work_struct *work);
97 
98 /**
99  * batadv_dat_start_timer() - initialise the DAT periodic worker
100  * @bat_priv: the bat priv with all the soft interface information
101  */
102 static void batadv_dat_start_timer(struct batadv_priv *bat_priv)
103 {
104 	INIT_DELAYED_WORK(&bat_priv->dat.work, batadv_dat_purge);
105 	queue_delayed_work(batadv_event_workqueue, &bat_priv->dat.work,
106 			   msecs_to_jiffies(10000));
107 }
108 
109 /**
110  * batadv_dat_entry_release() - release dat_entry from lists and queue for free
111  *  after rcu grace period
112  * @ref: kref pointer of the dat_entry
113  */
114 static void batadv_dat_entry_release(struct kref *ref)
115 {
116 	struct batadv_dat_entry *dat_entry;
117 
118 	dat_entry = container_of(ref, struct batadv_dat_entry, refcount);
119 
120 	kfree_rcu(dat_entry, rcu);
121 }
122 
123 /**
124  * batadv_dat_entry_put() - decrement the dat_entry refcounter and possibly
125  *  release it
126  * @dat_entry: dat_entry to be free'd
127  */
128 static void batadv_dat_entry_put(struct batadv_dat_entry *dat_entry)
129 {
130 	if (!dat_entry)
131 		return;
132 
133 	kref_put(&dat_entry->refcount, batadv_dat_entry_release);
134 }
135 
136 /**
137  * batadv_dat_to_purge() - check whether a dat_entry has to be purged or not
138  * @dat_entry: the entry to check
139  *
140  * Return: true if the entry has to be purged now, false otherwise.
141  */
142 static bool batadv_dat_to_purge(struct batadv_dat_entry *dat_entry)
143 {
144 	return batadv_has_timed_out(dat_entry->last_update,
145 				    BATADV_DAT_ENTRY_TIMEOUT);
146 }
147 
148 /**
149  * __batadv_dat_purge() - delete entries from the DAT local storage
150  * @bat_priv: the bat priv with all the soft interface information
151  * @to_purge: function in charge to decide whether an entry has to be purged or
152  *	      not. This function takes the dat_entry as argument and has to
153  *	      returns a boolean value: true is the entry has to be deleted,
154  *	      false otherwise
155  *
156  * Loops over each entry in the DAT local storage and deletes it if and only if
157  * the to_purge function passed as argument returns true.
158  */
159 static void __batadv_dat_purge(struct batadv_priv *bat_priv,
160 			       bool (*to_purge)(struct batadv_dat_entry *))
161 {
162 	spinlock_t *list_lock; /* protects write access to the hash lists */
163 	struct batadv_dat_entry *dat_entry;
164 	struct hlist_node *node_tmp;
165 	struct hlist_head *head;
166 	u32 i;
167 
168 	if (!bat_priv->dat.hash)
169 		return;
170 
171 	for (i = 0; i < bat_priv->dat.hash->size; i++) {
172 		head = &bat_priv->dat.hash->table[i];
173 		list_lock = &bat_priv->dat.hash->list_locks[i];
174 
175 		spin_lock_bh(list_lock);
176 		hlist_for_each_entry_safe(dat_entry, node_tmp, head,
177 					  hash_entry) {
178 			/* if a helper function has been passed as parameter,
179 			 * ask it if the entry has to be purged or not
180 			 */
181 			if (to_purge && !to_purge(dat_entry))
182 				continue;
183 
184 			hlist_del_rcu(&dat_entry->hash_entry);
185 			batadv_dat_entry_put(dat_entry);
186 		}
187 		spin_unlock_bh(list_lock);
188 	}
189 }
190 
191 /**
192  * batadv_dat_purge() - periodic task that deletes old entries from the local
193  *  DAT hash table
194  * @work: kernel work struct
195  */
196 static void batadv_dat_purge(struct work_struct *work)
197 {
198 	struct delayed_work *delayed_work;
199 	struct batadv_priv_dat *priv_dat;
200 	struct batadv_priv *bat_priv;
201 
202 	delayed_work = to_delayed_work(work);
203 	priv_dat = container_of(delayed_work, struct batadv_priv_dat, work);
204 	bat_priv = container_of(priv_dat, struct batadv_priv, dat);
205 
206 	__batadv_dat_purge(bat_priv, batadv_dat_to_purge);
207 	batadv_dat_start_timer(bat_priv);
208 }
209 
210 /**
211  * batadv_compare_dat() - comparing function used in the local DAT hash table
212  * @node: node in the local table
213  * @data2: second object to compare the node to
214  *
215  * Return: true if the two entries are the same, false otherwise.
216  */
217 static bool batadv_compare_dat(const struct hlist_node *node, const void *data2)
218 {
219 	const void *data1 = container_of(node, struct batadv_dat_entry,
220 					 hash_entry);
221 
222 	return memcmp(data1, data2, sizeof(__be32)) == 0;
223 }
224 
225 /**
226  * batadv_arp_hw_src() - extract the hw_src field from an ARP packet
227  * @skb: ARP packet
228  * @hdr_size: size of the possible header before the ARP packet
229  *
230  * Return: the value of the hw_src field in the ARP packet.
231  */
232 static u8 *batadv_arp_hw_src(struct sk_buff *skb, int hdr_size)
233 {
234 	u8 *addr;
235 
236 	addr = (u8 *)(skb->data + hdr_size);
237 	addr += ETH_HLEN + sizeof(struct arphdr);
238 
239 	return addr;
240 }
241 
242 /**
243  * batadv_arp_ip_src() - extract the ip_src field from an ARP packet
244  * @skb: ARP packet
245  * @hdr_size: size of the possible header before the ARP packet
246  *
247  * Return: the value of the ip_src field in the ARP packet.
248  */
249 static __be32 batadv_arp_ip_src(struct sk_buff *skb, int hdr_size)
250 {
251 	return *(__force __be32 *)(batadv_arp_hw_src(skb, hdr_size) + ETH_ALEN);
252 }
253 
254 /**
255  * batadv_arp_hw_dst() - extract the hw_dst field from an ARP packet
256  * @skb: ARP packet
257  * @hdr_size: size of the possible header before the ARP packet
258  *
259  * Return: the value of the hw_dst field in the ARP packet.
260  */
261 static u8 *batadv_arp_hw_dst(struct sk_buff *skb, int hdr_size)
262 {
263 	return batadv_arp_hw_src(skb, hdr_size) + ETH_ALEN + 4;
264 }
265 
266 /**
267  * batadv_arp_ip_dst() - extract the ip_dst field from an ARP packet
268  * @skb: ARP packet
269  * @hdr_size: size of the possible header before the ARP packet
270  *
271  * Return: the value of the ip_dst field in the ARP packet.
272  */
273 static __be32 batadv_arp_ip_dst(struct sk_buff *skb, int hdr_size)
274 {
275 	u8 *dst = batadv_arp_hw_src(skb, hdr_size) + ETH_ALEN * 2 + 4;
276 
277 	return *(__force __be32 *)dst;
278 }
279 
280 /**
281  * batadv_hash_dat() - compute the hash value for an IP address
282  * @data: data to hash
283  * @size: size of the hash table
284  *
285  * Return: the selected index in the hash table for the given data.
286  */
287 static u32 batadv_hash_dat(const void *data, u32 size)
288 {
289 	u32 hash = 0;
290 	const struct batadv_dat_entry *dat = data;
291 	const unsigned char *key;
292 	__be16 vid;
293 	u32 i;
294 
295 	key = (__force const unsigned char *)&dat->ip;
296 	for (i = 0; i < sizeof(dat->ip); i++) {
297 		hash += key[i];
298 		hash += (hash << 10);
299 		hash ^= (hash >> 6);
300 	}
301 
302 	vid = htons(dat->vid);
303 	key = (__force const unsigned char *)&vid;
304 	for (i = 0; i < sizeof(dat->vid); i++) {
305 		hash += key[i];
306 		hash += (hash << 10);
307 		hash ^= (hash >> 6);
308 	}
309 
310 	hash += (hash << 3);
311 	hash ^= (hash >> 11);
312 	hash += (hash << 15);
313 
314 	return hash % size;
315 }
316 
317 /**
318  * batadv_dat_entry_hash_find() - look for a given dat_entry in the local hash
319  * table
320  * @bat_priv: the bat priv with all the soft interface information
321  * @ip: search key
322  * @vid: VLAN identifier
323  *
324  * Return: the dat_entry if found, NULL otherwise.
325  */
326 static struct batadv_dat_entry *
327 batadv_dat_entry_hash_find(struct batadv_priv *bat_priv, __be32 ip,
328 			   unsigned short vid)
329 {
330 	struct hlist_head *head;
331 	struct batadv_dat_entry to_find, *dat_entry, *dat_entry_tmp = NULL;
332 	struct batadv_hashtable *hash = bat_priv->dat.hash;
333 	u32 index;
334 
335 	if (!hash)
336 		return NULL;
337 
338 	to_find.ip = ip;
339 	to_find.vid = vid;
340 
341 	index = batadv_hash_dat(&to_find, hash->size);
342 	head = &hash->table[index];
343 
344 	rcu_read_lock();
345 	hlist_for_each_entry_rcu(dat_entry, head, hash_entry) {
346 		if (dat_entry->ip != ip)
347 			continue;
348 
349 		if (!kref_get_unless_zero(&dat_entry->refcount))
350 			continue;
351 
352 		dat_entry_tmp = dat_entry;
353 		break;
354 	}
355 	rcu_read_unlock();
356 
357 	return dat_entry_tmp;
358 }
359 
360 /**
361  * batadv_dat_entry_add() - add a new dat entry or update it if already exists
362  * @bat_priv: the bat priv with all the soft interface information
363  * @ip: ipv4 to add/edit
364  * @mac_addr: mac address to assign to the given ipv4
365  * @vid: VLAN identifier
366  */
367 static void batadv_dat_entry_add(struct batadv_priv *bat_priv, __be32 ip,
368 				 u8 *mac_addr, unsigned short vid)
369 {
370 	struct batadv_dat_entry *dat_entry;
371 	int hash_added;
372 
373 	dat_entry = batadv_dat_entry_hash_find(bat_priv, ip, vid);
374 	/* if this entry is already known, just update it */
375 	if (dat_entry) {
376 		if (!batadv_compare_eth(dat_entry->mac_addr, mac_addr))
377 			ether_addr_copy(dat_entry->mac_addr, mac_addr);
378 		dat_entry->last_update = jiffies;
379 		batadv_dbg(BATADV_DBG_DAT, bat_priv,
380 			   "Entry updated: %pI4 %pM (vid: %d)\n",
381 			   &dat_entry->ip, dat_entry->mac_addr,
382 			   batadv_print_vid(vid));
383 		goto out;
384 	}
385 
386 	dat_entry = kmalloc(sizeof(*dat_entry), GFP_ATOMIC);
387 	if (!dat_entry)
388 		goto out;
389 
390 	dat_entry->ip = ip;
391 	dat_entry->vid = vid;
392 	ether_addr_copy(dat_entry->mac_addr, mac_addr);
393 	dat_entry->last_update = jiffies;
394 	kref_init(&dat_entry->refcount);
395 
396 	kref_get(&dat_entry->refcount);
397 	hash_added = batadv_hash_add(bat_priv->dat.hash, batadv_compare_dat,
398 				     batadv_hash_dat, dat_entry,
399 				     &dat_entry->hash_entry);
400 
401 	if (unlikely(hash_added != 0)) {
402 		/* remove the reference for the hash */
403 		batadv_dat_entry_put(dat_entry);
404 		goto out;
405 	}
406 
407 	batadv_dbg(BATADV_DBG_DAT, bat_priv, "New entry added: %pI4 %pM (vid: %d)\n",
408 		   &dat_entry->ip, dat_entry->mac_addr, batadv_print_vid(vid));
409 
410 out:
411 	batadv_dat_entry_put(dat_entry);
412 }
413 
414 #ifdef CONFIG_BATMAN_ADV_DEBUG
415 
416 /**
417  * batadv_dbg_arp() - print a debug message containing all the ARP packet
418  *  details
419  * @bat_priv: the bat priv with all the soft interface information
420  * @skb: ARP packet
421  * @hdr_size: size of the possible header before the ARP packet
422  * @msg: message to print together with the debugging information
423  */
424 static void batadv_dbg_arp(struct batadv_priv *bat_priv, struct sk_buff *skb,
425 			   int hdr_size, char *msg)
426 {
427 	struct batadv_unicast_4addr_packet *unicast_4addr_packet;
428 	struct batadv_bcast_packet *bcast_pkt;
429 	u8 *orig_addr;
430 	__be32 ip_src, ip_dst;
431 
432 	if (msg)
433 		batadv_dbg(BATADV_DBG_DAT, bat_priv, "%s\n", msg);
434 
435 	ip_src = batadv_arp_ip_src(skb, hdr_size);
436 	ip_dst = batadv_arp_ip_dst(skb, hdr_size);
437 	batadv_dbg(BATADV_DBG_DAT, bat_priv,
438 		   "ARP MSG = [src: %pM-%pI4 dst: %pM-%pI4]\n",
439 		   batadv_arp_hw_src(skb, hdr_size), &ip_src,
440 		   batadv_arp_hw_dst(skb, hdr_size), &ip_dst);
441 
442 	if (hdr_size < sizeof(struct batadv_unicast_packet))
443 		return;
444 
445 	unicast_4addr_packet = (struct batadv_unicast_4addr_packet *)skb->data;
446 
447 	switch (unicast_4addr_packet->u.packet_type) {
448 	case BATADV_UNICAST:
449 		batadv_dbg(BATADV_DBG_DAT, bat_priv,
450 			   "* encapsulated within a UNICAST packet\n");
451 		break;
452 	case BATADV_UNICAST_4ADDR:
453 		batadv_dbg(BATADV_DBG_DAT, bat_priv,
454 			   "* encapsulated within a UNICAST_4ADDR packet (src: %pM)\n",
455 			   unicast_4addr_packet->src);
456 		switch (unicast_4addr_packet->subtype) {
457 		case BATADV_P_DAT_DHT_PUT:
458 			batadv_dbg(BATADV_DBG_DAT, bat_priv, "* type: DAT_DHT_PUT\n");
459 			break;
460 		case BATADV_P_DAT_DHT_GET:
461 			batadv_dbg(BATADV_DBG_DAT, bat_priv, "* type: DAT_DHT_GET\n");
462 			break;
463 		case BATADV_P_DAT_CACHE_REPLY:
464 			batadv_dbg(BATADV_DBG_DAT, bat_priv,
465 				   "* type: DAT_CACHE_REPLY\n");
466 			break;
467 		case BATADV_P_DATA:
468 			batadv_dbg(BATADV_DBG_DAT, bat_priv, "* type: DATA\n");
469 			break;
470 		default:
471 			batadv_dbg(BATADV_DBG_DAT, bat_priv, "* type: Unknown (%u)!\n",
472 				   unicast_4addr_packet->u.packet_type);
473 		}
474 		break;
475 	case BATADV_BCAST:
476 		bcast_pkt = (struct batadv_bcast_packet *)unicast_4addr_packet;
477 		orig_addr = bcast_pkt->orig;
478 		batadv_dbg(BATADV_DBG_DAT, bat_priv,
479 			   "* encapsulated within a BCAST packet (src: %pM)\n",
480 			   orig_addr);
481 		break;
482 	default:
483 		batadv_dbg(BATADV_DBG_DAT, bat_priv,
484 			   "* encapsulated within an unknown packet type (0x%x)\n",
485 			   unicast_4addr_packet->u.packet_type);
486 	}
487 }
488 
489 #else
490 
491 static void batadv_dbg_arp(struct batadv_priv *bat_priv, struct sk_buff *skb,
492 			   int hdr_size, char *msg)
493 {
494 }
495 
496 #endif /* CONFIG_BATMAN_ADV_DEBUG */
497 
498 /**
499  * batadv_is_orig_node_eligible() - check whether a node can be a DHT candidate
500  * @res: the array with the already selected candidates
501  * @select: number of already selected candidates
502  * @tmp_max: address of the currently evaluated node
503  * @max: current round max address
504  * @last_max: address of the last selected candidate
505  * @candidate: orig_node under evaluation
506  * @max_orig_node: last selected candidate
507  *
508  * Return: true if the node has been elected as next candidate or false
509  * otherwise.
510  */
511 static bool batadv_is_orig_node_eligible(struct batadv_dat_candidate *res,
512 					 int select, batadv_dat_addr_t tmp_max,
513 					 batadv_dat_addr_t max,
514 					 batadv_dat_addr_t last_max,
515 					 struct batadv_orig_node *candidate,
516 					 struct batadv_orig_node *max_orig_node)
517 {
518 	bool ret = false;
519 	int j;
520 
521 	/* check if orig node candidate is running DAT */
522 	if (!test_bit(BATADV_ORIG_CAPA_HAS_DAT, &candidate->capabilities))
523 		goto out;
524 
525 	/* Check if this node has already been selected... */
526 	for (j = 0; j < select; j++)
527 		if (res[j].orig_node == candidate)
528 			break;
529 	/* ..and possibly skip it */
530 	if (j < select)
531 		goto out;
532 	/* sanity check: has it already been selected? This should not happen */
533 	if (tmp_max > last_max)
534 		goto out;
535 	/* check if during this iteration an originator with a closer dht
536 	 * address has already been found
537 	 */
538 	if (tmp_max < max)
539 		goto out;
540 	/* this is an hash collision with the temporary selected node. Choose
541 	 * the one with the lowest address
542 	 */
543 	if (tmp_max == max && max_orig_node &&
544 	    batadv_compare_eth(candidate->orig, max_orig_node->orig))
545 		goto out;
546 
547 	ret = true;
548 out:
549 	return ret;
550 }
551 
552 /**
553  * batadv_choose_next_candidate() - select the next DHT candidate
554  * @bat_priv: the bat priv with all the soft interface information
555  * @cands: candidates array
556  * @select: number of candidates already present in the array
557  * @ip_key: key to look up in the DHT
558  * @last_max: pointer where the address of the selected candidate will be saved
559  */
560 static void batadv_choose_next_candidate(struct batadv_priv *bat_priv,
561 					 struct batadv_dat_candidate *cands,
562 					 int select, batadv_dat_addr_t ip_key,
563 					 batadv_dat_addr_t *last_max)
564 {
565 	batadv_dat_addr_t max = 0;
566 	batadv_dat_addr_t tmp_max = 0;
567 	struct batadv_orig_node *orig_node, *max_orig_node = NULL;
568 	struct batadv_hashtable *hash = bat_priv->orig_hash;
569 	struct hlist_head *head;
570 	int i;
571 
572 	/* if no node is eligible as candidate, leave the candidate type as
573 	 * NOT_FOUND
574 	 */
575 	cands[select].type = BATADV_DAT_CANDIDATE_NOT_FOUND;
576 
577 	/* iterate over the originator list and find the node with the closest
578 	 * dat_address which has not been selected yet
579 	 */
580 	for (i = 0; i < hash->size; i++) {
581 		head = &hash->table[i];
582 
583 		rcu_read_lock();
584 		hlist_for_each_entry_rcu(orig_node, head, hash_entry) {
585 			/* the dht space is a ring using unsigned addresses */
586 			tmp_max = BATADV_DAT_ADDR_MAX - orig_node->dat_addr +
587 				  ip_key;
588 
589 			if (!batadv_is_orig_node_eligible(cands, select,
590 							  tmp_max, max,
591 							  *last_max, orig_node,
592 							  max_orig_node))
593 				continue;
594 
595 			if (!kref_get_unless_zero(&orig_node->refcount))
596 				continue;
597 
598 			max = tmp_max;
599 			batadv_orig_node_put(max_orig_node);
600 			max_orig_node = orig_node;
601 		}
602 		rcu_read_unlock();
603 	}
604 	if (max_orig_node) {
605 		cands[select].type = BATADV_DAT_CANDIDATE_ORIG;
606 		cands[select].orig_node = max_orig_node;
607 		batadv_dbg(BATADV_DBG_DAT, bat_priv,
608 			   "dat_select_candidates() %d: selected %pM addr=%u dist=%u\n",
609 			   select, max_orig_node->orig, max_orig_node->dat_addr,
610 			   max);
611 	}
612 	*last_max = max;
613 }
614 
615 /**
616  * batadv_dat_select_candidates() - select the nodes which the DHT message has
617  *  to be sent to
618  * @bat_priv: the bat priv with all the soft interface information
619  * @ip_dst: ipv4 to look up in the DHT
620  * @vid: VLAN identifier
621  *
622  * An originator O is selected if and only if its DHT_ID value is one of three
623  * closest values (from the LEFT, with wrap around if needed) then the hash
624  * value of the key. ip_dst is the key.
625  *
626  * Return: the candidate array of size BATADV_DAT_CANDIDATE_NUM.
627  */
628 static struct batadv_dat_candidate *
629 batadv_dat_select_candidates(struct batadv_priv *bat_priv, __be32 ip_dst,
630 			     unsigned short vid)
631 {
632 	int select;
633 	batadv_dat_addr_t last_max = BATADV_DAT_ADDR_MAX, ip_key;
634 	struct batadv_dat_candidate *res;
635 	struct batadv_dat_entry dat;
636 
637 	if (!bat_priv->orig_hash)
638 		return NULL;
639 
640 	res = kmalloc_array(BATADV_DAT_CANDIDATES_NUM, sizeof(*res),
641 			    GFP_ATOMIC);
642 	if (!res)
643 		return NULL;
644 
645 	dat.ip = ip_dst;
646 	dat.vid = vid;
647 	ip_key = (batadv_dat_addr_t)batadv_hash_dat(&dat,
648 						    BATADV_DAT_ADDR_MAX);
649 
650 	batadv_dbg(BATADV_DBG_DAT, bat_priv,
651 		   "%s(): IP=%pI4 hash(IP)=%u\n", __func__, &ip_dst,
652 		   ip_key);
653 
654 	for (select = 0; select < BATADV_DAT_CANDIDATES_NUM; select++)
655 		batadv_choose_next_candidate(bat_priv, res, select, ip_key,
656 					     &last_max);
657 
658 	return res;
659 }
660 
661 /**
662  * batadv_dat_forward_data() - copy and send payload to the selected candidates
663  * @bat_priv: the bat priv with all the soft interface information
664  * @skb: payload to send
665  * @ip: the DHT key
666  * @vid: VLAN identifier
667  * @packet_subtype: unicast4addr packet subtype to use
668  *
669  * This function copies the skb with pskb_copy() and is sent as a unicast packet
670  * to each of the selected candidates.
671  *
672  * Return: true if the packet is sent to at least one candidate, false
673  * otherwise.
674  */
675 static bool batadv_dat_forward_data(struct batadv_priv *bat_priv,
676 				    struct sk_buff *skb, __be32 ip,
677 				    unsigned short vid, int packet_subtype)
678 {
679 	int i;
680 	bool ret = false;
681 	int send_status;
682 	struct batadv_neigh_node *neigh_node = NULL;
683 	struct sk_buff *tmp_skb;
684 	struct batadv_dat_candidate *cand;
685 
686 	cand = batadv_dat_select_candidates(bat_priv, ip, vid);
687 	if (!cand)
688 		goto out;
689 
690 	batadv_dbg(BATADV_DBG_DAT, bat_priv, "DHT_SEND for %pI4\n", &ip);
691 
692 	for (i = 0; i < BATADV_DAT_CANDIDATES_NUM; i++) {
693 		if (cand[i].type == BATADV_DAT_CANDIDATE_NOT_FOUND)
694 			continue;
695 
696 		neigh_node = batadv_orig_router_get(cand[i].orig_node,
697 						    BATADV_IF_DEFAULT);
698 		if (!neigh_node)
699 			goto free_orig;
700 
701 		tmp_skb = pskb_copy_for_clone(skb, GFP_ATOMIC);
702 		if (!batadv_send_skb_prepare_unicast_4addr(bat_priv, tmp_skb,
703 							   cand[i].orig_node,
704 							   packet_subtype)) {
705 			kfree_skb(tmp_skb);
706 			goto free_neigh;
707 		}
708 
709 		send_status = batadv_send_unicast_skb(tmp_skb, neigh_node);
710 		if (send_status == NET_XMIT_SUCCESS) {
711 			/* count the sent packet */
712 			switch (packet_subtype) {
713 			case BATADV_P_DAT_DHT_GET:
714 				batadv_inc_counter(bat_priv,
715 						   BATADV_CNT_DAT_GET_TX);
716 				break;
717 			case BATADV_P_DAT_DHT_PUT:
718 				batadv_inc_counter(bat_priv,
719 						   BATADV_CNT_DAT_PUT_TX);
720 				break;
721 			}
722 
723 			/* packet sent to a candidate: return true */
724 			ret = true;
725 		}
726 free_neigh:
727 		batadv_neigh_node_put(neigh_node);
728 free_orig:
729 		batadv_orig_node_put(cand[i].orig_node);
730 	}
731 
732 out:
733 	kfree(cand);
734 	return ret;
735 }
736 
737 /**
738  * batadv_dat_tvlv_container_update() - update the dat tvlv container after dat
739  *  setting change
740  * @bat_priv: the bat priv with all the soft interface information
741  */
742 static void batadv_dat_tvlv_container_update(struct batadv_priv *bat_priv)
743 {
744 	char dat_mode;
745 
746 	dat_mode = atomic_read(&bat_priv->distributed_arp_table);
747 
748 	switch (dat_mode) {
749 	case 0:
750 		batadv_tvlv_container_unregister(bat_priv, BATADV_TVLV_DAT, 1);
751 		break;
752 	case 1:
753 		batadv_tvlv_container_register(bat_priv, BATADV_TVLV_DAT, 1,
754 					       NULL, 0);
755 		break;
756 	}
757 }
758 
759 /**
760  * batadv_dat_status_update() - update the dat tvlv container after dat
761  *  setting change
762  * @net_dev: the soft interface net device
763  */
764 void batadv_dat_status_update(struct net_device *net_dev)
765 {
766 	struct batadv_priv *bat_priv = netdev_priv(net_dev);
767 
768 	batadv_dat_tvlv_container_update(bat_priv);
769 }
770 
771 /**
772  * batadv_dat_tvlv_ogm_handler_v1() - process incoming dat tvlv container
773  * @bat_priv: the bat priv with all the soft interface information
774  * @orig: the orig_node of the ogm
775  * @flags: flags indicating the tvlv state (see batadv_tvlv_handler_flags)
776  * @tvlv_value: tvlv buffer containing the gateway data
777  * @tvlv_value_len: tvlv buffer length
778  */
779 static void batadv_dat_tvlv_ogm_handler_v1(struct batadv_priv *bat_priv,
780 					   struct batadv_orig_node *orig,
781 					   u8 flags,
782 					   void *tvlv_value, u16 tvlv_value_len)
783 {
784 	if (flags & BATADV_TVLV_HANDLER_OGM_CIFNOTFND)
785 		clear_bit(BATADV_ORIG_CAPA_HAS_DAT, &orig->capabilities);
786 	else
787 		set_bit(BATADV_ORIG_CAPA_HAS_DAT, &orig->capabilities);
788 }
789 
790 /**
791  * batadv_dat_hash_free() - free the local DAT hash table
792  * @bat_priv: the bat priv with all the soft interface information
793  */
794 static void batadv_dat_hash_free(struct batadv_priv *bat_priv)
795 {
796 	if (!bat_priv->dat.hash)
797 		return;
798 
799 	__batadv_dat_purge(bat_priv, NULL);
800 
801 	batadv_hash_destroy(bat_priv->dat.hash);
802 
803 	bat_priv->dat.hash = NULL;
804 }
805 
806 /**
807  * batadv_dat_init() - initialise the DAT internals
808  * @bat_priv: the bat priv with all the soft interface information
809  *
810  * Return: 0 in case of success, a negative error code otherwise
811  */
812 int batadv_dat_init(struct batadv_priv *bat_priv)
813 {
814 	if (bat_priv->dat.hash)
815 		return 0;
816 
817 	bat_priv->dat.hash = batadv_hash_new(1024);
818 
819 	if (!bat_priv->dat.hash)
820 		return -ENOMEM;
821 
822 	batadv_dat_start_timer(bat_priv);
823 
824 	batadv_tvlv_handler_register(bat_priv, batadv_dat_tvlv_ogm_handler_v1,
825 				     NULL, BATADV_TVLV_DAT, 1,
826 				     BATADV_TVLV_HANDLER_OGM_CIFNOTFND);
827 	batadv_dat_tvlv_container_update(bat_priv);
828 	return 0;
829 }
830 
831 /**
832  * batadv_dat_free() - free the DAT internals
833  * @bat_priv: the bat priv with all the soft interface information
834  */
835 void batadv_dat_free(struct batadv_priv *bat_priv)
836 {
837 	batadv_tvlv_container_unregister(bat_priv, BATADV_TVLV_DAT, 1);
838 	batadv_tvlv_handler_unregister(bat_priv, BATADV_TVLV_DAT, 1);
839 
840 	cancel_delayed_work_sync(&bat_priv->dat.work);
841 
842 	batadv_dat_hash_free(bat_priv);
843 }
844 
845 /**
846  * batadv_dat_cache_dump_entry() - dump one entry of the DAT cache table to a
847  *  netlink socket
848  * @msg: buffer for the message
849  * @portid: netlink port
850  * @cb: Control block containing additional options
851  * @dat_entry: entry to dump
852  *
853  * Return: 0 or error code.
854  */
855 static int
856 batadv_dat_cache_dump_entry(struct sk_buff *msg, u32 portid,
857 			    struct netlink_callback *cb,
858 			    struct batadv_dat_entry *dat_entry)
859 {
860 	int msecs;
861 	void *hdr;
862 
863 	hdr = genlmsg_put(msg, portid, cb->nlh->nlmsg_seq,
864 			  &batadv_netlink_family, NLM_F_MULTI,
865 			  BATADV_CMD_GET_DAT_CACHE);
866 	if (!hdr)
867 		return -ENOBUFS;
868 
869 	genl_dump_check_consistent(cb, hdr);
870 
871 	msecs = jiffies_to_msecs(jiffies - dat_entry->last_update);
872 
873 	if (nla_put_in_addr(msg, BATADV_ATTR_DAT_CACHE_IP4ADDRESS,
874 			    dat_entry->ip) ||
875 	    nla_put(msg, BATADV_ATTR_DAT_CACHE_HWADDRESS, ETH_ALEN,
876 		    dat_entry->mac_addr) ||
877 	    nla_put_u16(msg, BATADV_ATTR_DAT_CACHE_VID, dat_entry->vid) ||
878 	    nla_put_u32(msg, BATADV_ATTR_LAST_SEEN_MSECS, msecs)) {
879 		genlmsg_cancel(msg, hdr);
880 		return -EMSGSIZE;
881 	}
882 
883 	genlmsg_end(msg, hdr);
884 	return 0;
885 }
886 
887 /**
888  * batadv_dat_cache_dump_bucket() - dump one bucket of the DAT cache table to
889  *  a netlink socket
890  * @msg: buffer for the message
891  * @portid: netlink port
892  * @cb: Control block containing additional options
893  * @hash: hash to dump
894  * @bucket: bucket index to dump
895  * @idx_skip: How many entries to skip
896  *
897  * Return: 0 or error code.
898  */
899 static int
900 batadv_dat_cache_dump_bucket(struct sk_buff *msg, u32 portid,
901 			     struct netlink_callback *cb,
902 			     struct batadv_hashtable *hash, unsigned int bucket,
903 			     int *idx_skip)
904 {
905 	struct batadv_dat_entry *dat_entry;
906 	int idx = 0;
907 
908 	spin_lock_bh(&hash->list_locks[bucket]);
909 	cb->seq = atomic_read(&hash->generation) << 1 | 1;
910 
911 	hlist_for_each_entry(dat_entry, &hash->table[bucket], hash_entry) {
912 		if (idx < *idx_skip)
913 			goto skip;
914 
915 		if (batadv_dat_cache_dump_entry(msg, portid, cb, dat_entry)) {
916 			spin_unlock_bh(&hash->list_locks[bucket]);
917 			*idx_skip = idx;
918 
919 			return -EMSGSIZE;
920 		}
921 
922 skip:
923 		idx++;
924 	}
925 	spin_unlock_bh(&hash->list_locks[bucket]);
926 
927 	return 0;
928 }
929 
930 /**
931  * batadv_dat_cache_dump() - dump DAT cache table to a netlink socket
932  * @msg: buffer for the message
933  * @cb: callback structure containing arguments
934  *
935  * Return: message length.
936  */
937 int batadv_dat_cache_dump(struct sk_buff *msg, struct netlink_callback *cb)
938 {
939 	struct batadv_hard_iface *primary_if = NULL;
940 	int portid = NETLINK_CB(cb->skb).portid;
941 	struct net *net = sock_net(cb->skb->sk);
942 	struct net_device *soft_iface;
943 	struct batadv_hashtable *hash;
944 	struct batadv_priv *bat_priv;
945 	int bucket = cb->args[0];
946 	int idx = cb->args[1];
947 	int ifindex;
948 	int ret = 0;
949 
950 	ifindex = batadv_netlink_get_ifindex(cb->nlh,
951 					     BATADV_ATTR_MESH_IFINDEX);
952 	if (!ifindex)
953 		return -EINVAL;
954 
955 	soft_iface = dev_get_by_index(net, ifindex);
956 	if (!soft_iface || !batadv_softif_is_valid(soft_iface)) {
957 		ret = -ENODEV;
958 		goto out;
959 	}
960 
961 	bat_priv = netdev_priv(soft_iface);
962 	hash = bat_priv->dat.hash;
963 
964 	primary_if = batadv_primary_if_get_selected(bat_priv);
965 	if (!primary_if || primary_if->if_status != BATADV_IF_ACTIVE) {
966 		ret = -ENOENT;
967 		goto out;
968 	}
969 
970 	while (bucket < hash->size) {
971 		if (batadv_dat_cache_dump_bucket(msg, portid, cb, hash, bucket,
972 						 &idx))
973 			break;
974 
975 		bucket++;
976 		idx = 0;
977 	}
978 
979 	cb->args[0] = bucket;
980 	cb->args[1] = idx;
981 
982 	ret = msg->len;
983 
984 out:
985 	batadv_hardif_put(primary_if);
986 
987 	dev_put(soft_iface);
988 
989 	return ret;
990 }
991 
992 /**
993  * batadv_arp_get_type() - parse an ARP packet and gets the type
994  * @bat_priv: the bat priv with all the soft interface information
995  * @skb: packet to analyse
996  * @hdr_size: size of the possible header before the ARP packet in the skb
997  *
998  * Return: the ARP type if the skb contains a valid ARP packet, 0 otherwise.
999  */
1000 static u16 batadv_arp_get_type(struct batadv_priv *bat_priv,
1001 			       struct sk_buff *skb, int hdr_size)
1002 {
1003 	struct arphdr *arphdr;
1004 	struct ethhdr *ethhdr;
1005 	__be32 ip_src, ip_dst;
1006 	u8 *hw_src, *hw_dst;
1007 	u16 type = 0;
1008 
1009 	/* pull the ethernet header */
1010 	if (unlikely(!pskb_may_pull(skb, hdr_size + ETH_HLEN)))
1011 		goto out;
1012 
1013 	ethhdr = (struct ethhdr *)(skb->data + hdr_size);
1014 
1015 	if (ethhdr->h_proto != htons(ETH_P_ARP))
1016 		goto out;
1017 
1018 	/* pull the ARP payload */
1019 	if (unlikely(!pskb_may_pull(skb, hdr_size + ETH_HLEN +
1020 				    arp_hdr_len(skb->dev))))
1021 		goto out;
1022 
1023 	arphdr = (struct arphdr *)(skb->data + hdr_size + ETH_HLEN);
1024 
1025 	/* check whether the ARP packet carries a valid IP information */
1026 	if (arphdr->ar_hrd != htons(ARPHRD_ETHER))
1027 		goto out;
1028 
1029 	if (arphdr->ar_pro != htons(ETH_P_IP))
1030 		goto out;
1031 
1032 	if (arphdr->ar_hln != ETH_ALEN)
1033 		goto out;
1034 
1035 	if (arphdr->ar_pln != 4)
1036 		goto out;
1037 
1038 	/* Check for bad reply/request. If the ARP message is not sane, DAT
1039 	 * will simply ignore it
1040 	 */
1041 	ip_src = batadv_arp_ip_src(skb, hdr_size);
1042 	ip_dst = batadv_arp_ip_dst(skb, hdr_size);
1043 	if (ipv4_is_loopback(ip_src) || ipv4_is_multicast(ip_src) ||
1044 	    ipv4_is_loopback(ip_dst) || ipv4_is_multicast(ip_dst) ||
1045 	    ipv4_is_zeronet(ip_src) || ipv4_is_lbcast(ip_src) ||
1046 	    ipv4_is_zeronet(ip_dst) || ipv4_is_lbcast(ip_dst))
1047 		goto out;
1048 
1049 	hw_src = batadv_arp_hw_src(skb, hdr_size);
1050 	if (is_zero_ether_addr(hw_src) || is_multicast_ether_addr(hw_src))
1051 		goto out;
1052 
1053 	/* don't care about the destination MAC address in ARP requests */
1054 	if (arphdr->ar_op != htons(ARPOP_REQUEST)) {
1055 		hw_dst = batadv_arp_hw_dst(skb, hdr_size);
1056 		if (is_zero_ether_addr(hw_dst) ||
1057 		    is_multicast_ether_addr(hw_dst))
1058 			goto out;
1059 	}
1060 
1061 	type = ntohs(arphdr->ar_op);
1062 out:
1063 	return type;
1064 }
1065 
1066 /**
1067  * batadv_dat_get_vid() - extract the VLAN identifier from skb if any
1068  * @skb: the buffer containing the packet to extract the VID from
1069  * @hdr_size: the size of the batman-adv header encapsulating the packet
1070  *
1071  * Return: If the packet embedded in the skb is vlan tagged this function
1072  * returns the VID with the BATADV_VLAN_HAS_TAG flag. Otherwise BATADV_NO_FLAGS
1073  * is returned.
1074  */
1075 static unsigned short batadv_dat_get_vid(struct sk_buff *skb, int *hdr_size)
1076 {
1077 	unsigned short vid;
1078 
1079 	vid = batadv_get_vid(skb, *hdr_size);
1080 
1081 	/* ARP parsing functions jump forward of hdr_size + ETH_HLEN.
1082 	 * If the header contained in the packet is a VLAN one (which is longer)
1083 	 * hdr_size is updated so that the functions will still skip the
1084 	 * correct amount of bytes.
1085 	 */
1086 	if (vid & BATADV_VLAN_HAS_TAG)
1087 		*hdr_size += VLAN_HLEN;
1088 
1089 	return vid;
1090 }
1091 
1092 /**
1093  * batadv_dat_arp_create_reply() - create an ARP Reply
1094  * @bat_priv: the bat priv with all the soft interface information
1095  * @ip_src: ARP sender IP
1096  * @ip_dst: ARP target IP
1097  * @hw_src: Ethernet source and ARP sender MAC
1098  * @hw_dst: Ethernet destination and ARP target MAC
1099  * @vid: VLAN identifier (optional, set to zero otherwise)
1100  *
1101  * Creates an ARP Reply from the given values, optionally encapsulated in a
1102  * VLAN header.
1103  *
1104  * Return: An skb containing an ARP Reply.
1105  */
1106 static struct sk_buff *
1107 batadv_dat_arp_create_reply(struct batadv_priv *bat_priv, __be32 ip_src,
1108 			    __be32 ip_dst, u8 *hw_src, u8 *hw_dst,
1109 			    unsigned short vid)
1110 {
1111 	struct sk_buff *skb;
1112 
1113 	skb = arp_create(ARPOP_REPLY, ETH_P_ARP, ip_dst, bat_priv->soft_iface,
1114 			 ip_src, hw_dst, hw_src, hw_dst);
1115 	if (!skb)
1116 		return NULL;
1117 
1118 	skb_reset_mac_header(skb);
1119 
1120 	if (vid & BATADV_VLAN_HAS_TAG)
1121 		skb = vlan_insert_tag(skb, htons(ETH_P_8021Q),
1122 				      vid & VLAN_VID_MASK);
1123 
1124 	return skb;
1125 }
1126 
1127 /**
1128  * batadv_dat_snoop_outgoing_arp_request() - snoop the ARP request and try to
1129  * answer using DAT
1130  * @bat_priv: the bat priv with all the soft interface information
1131  * @skb: packet to check
1132  *
1133  * Return: true if the message has been sent to the dht candidates, false
1134  * otherwise. In case of a positive return value the message has to be enqueued
1135  * to permit the fallback.
1136  */
1137 bool batadv_dat_snoop_outgoing_arp_request(struct batadv_priv *bat_priv,
1138 					   struct sk_buff *skb)
1139 {
1140 	u16 type = 0;
1141 	__be32 ip_dst, ip_src;
1142 	u8 *hw_src;
1143 	bool ret = false;
1144 	struct batadv_dat_entry *dat_entry = NULL;
1145 	struct sk_buff *skb_new;
1146 	struct net_device *soft_iface = bat_priv->soft_iface;
1147 	int hdr_size = 0;
1148 	unsigned short vid;
1149 
1150 	if (!atomic_read(&bat_priv->distributed_arp_table))
1151 		goto out;
1152 
1153 	vid = batadv_dat_get_vid(skb, &hdr_size);
1154 
1155 	type = batadv_arp_get_type(bat_priv, skb, hdr_size);
1156 	/* If the node gets an ARP_REQUEST it has to send a DHT_GET unicast
1157 	 * message to the selected DHT candidates
1158 	 */
1159 	if (type != ARPOP_REQUEST)
1160 		goto out;
1161 
1162 	batadv_dbg_arp(bat_priv, skb, hdr_size, "Parsing outgoing ARP REQUEST");
1163 
1164 	ip_src = batadv_arp_ip_src(skb, hdr_size);
1165 	hw_src = batadv_arp_hw_src(skb, hdr_size);
1166 	ip_dst = batadv_arp_ip_dst(skb, hdr_size);
1167 
1168 	batadv_dat_entry_add(bat_priv, ip_src, hw_src, vid);
1169 
1170 	dat_entry = batadv_dat_entry_hash_find(bat_priv, ip_dst, vid);
1171 	if (dat_entry) {
1172 		/* If the ARP request is destined for a local client the local
1173 		 * client will answer itself. DAT would only generate a
1174 		 * duplicate packet.
1175 		 *
1176 		 * Moreover, if the soft-interface is enslaved into a bridge, an
1177 		 * additional DAT answer may trigger kernel warnings about
1178 		 * a packet coming from the wrong port.
1179 		 */
1180 		if (batadv_is_my_client(bat_priv, dat_entry->mac_addr, vid)) {
1181 			ret = true;
1182 			goto out;
1183 		}
1184 
1185 		/* If BLA is enabled, only send ARP replies if we have claimed
1186 		 * the destination for the ARP request or if no one else of
1187 		 * the backbone gws belonging to our backbone has claimed the
1188 		 * destination.
1189 		 */
1190 		if (!batadv_bla_check_claim(bat_priv,
1191 					    dat_entry->mac_addr, vid)) {
1192 			batadv_dbg(BATADV_DBG_DAT, bat_priv,
1193 				   "Device %pM claimed by another backbone gw. Don't send ARP reply!",
1194 				   dat_entry->mac_addr);
1195 			ret = true;
1196 			goto out;
1197 		}
1198 
1199 		skb_new = batadv_dat_arp_create_reply(bat_priv, ip_dst, ip_src,
1200 						      dat_entry->mac_addr,
1201 						      hw_src, vid);
1202 		if (!skb_new)
1203 			goto out;
1204 
1205 		skb_new->protocol = eth_type_trans(skb_new, soft_iface);
1206 
1207 		batadv_inc_counter(bat_priv, BATADV_CNT_RX);
1208 		batadv_add_counter(bat_priv, BATADV_CNT_RX_BYTES,
1209 				   skb->len + ETH_HLEN + hdr_size);
1210 
1211 		netif_rx(skb_new);
1212 		batadv_dbg(BATADV_DBG_DAT, bat_priv, "ARP request replied locally\n");
1213 		ret = true;
1214 	} else {
1215 		/* Send the request to the DHT */
1216 		ret = batadv_dat_forward_data(bat_priv, skb, ip_dst, vid,
1217 					      BATADV_P_DAT_DHT_GET);
1218 	}
1219 out:
1220 	batadv_dat_entry_put(dat_entry);
1221 	return ret;
1222 }
1223 
1224 /**
1225  * batadv_dat_snoop_incoming_arp_request() - snoop the ARP request and try to
1226  * answer using the local DAT storage
1227  * @bat_priv: the bat priv with all the soft interface information
1228  * @skb: packet to check
1229  * @hdr_size: size of the encapsulation header
1230  *
1231  * Return: true if the request has been answered, false otherwise.
1232  */
1233 bool batadv_dat_snoop_incoming_arp_request(struct batadv_priv *bat_priv,
1234 					   struct sk_buff *skb, int hdr_size)
1235 {
1236 	u16 type;
1237 	__be32 ip_src, ip_dst;
1238 	u8 *hw_src;
1239 	struct sk_buff *skb_new;
1240 	struct batadv_dat_entry *dat_entry = NULL;
1241 	bool ret = false;
1242 	unsigned short vid;
1243 	int err;
1244 
1245 	if (!atomic_read(&bat_priv->distributed_arp_table))
1246 		goto out;
1247 
1248 	vid = batadv_dat_get_vid(skb, &hdr_size);
1249 
1250 	type = batadv_arp_get_type(bat_priv, skb, hdr_size);
1251 	if (type != ARPOP_REQUEST)
1252 		goto out;
1253 
1254 	hw_src = batadv_arp_hw_src(skb, hdr_size);
1255 	ip_src = batadv_arp_ip_src(skb, hdr_size);
1256 	ip_dst = batadv_arp_ip_dst(skb, hdr_size);
1257 
1258 	batadv_dbg_arp(bat_priv, skb, hdr_size, "Parsing incoming ARP REQUEST");
1259 
1260 	batadv_dat_entry_add(bat_priv, ip_src, hw_src, vid);
1261 
1262 	dat_entry = batadv_dat_entry_hash_find(bat_priv, ip_dst, vid);
1263 	if (!dat_entry)
1264 		goto out;
1265 
1266 	skb_new = batadv_dat_arp_create_reply(bat_priv, ip_dst, ip_src,
1267 					      dat_entry->mac_addr, hw_src, vid);
1268 	if (!skb_new)
1269 		goto out;
1270 
1271 	/* To preserve backwards compatibility, the node has choose the outgoing
1272 	 * format based on the incoming request packet type. The assumption is
1273 	 * that a node not using the 4addr packet format doesn't support it.
1274 	 */
1275 	if (hdr_size == sizeof(struct batadv_unicast_4addr_packet))
1276 		err = batadv_send_skb_via_tt_4addr(bat_priv, skb_new,
1277 						   BATADV_P_DAT_CACHE_REPLY,
1278 						   NULL, vid);
1279 	else
1280 		err = batadv_send_skb_via_tt(bat_priv, skb_new, NULL, vid);
1281 
1282 	if (err != NET_XMIT_DROP) {
1283 		batadv_inc_counter(bat_priv, BATADV_CNT_DAT_CACHED_REPLY_TX);
1284 		ret = true;
1285 	}
1286 out:
1287 	batadv_dat_entry_put(dat_entry);
1288 	if (ret)
1289 		kfree_skb(skb);
1290 	return ret;
1291 }
1292 
1293 /**
1294  * batadv_dat_snoop_outgoing_arp_reply() - snoop the ARP reply and fill the DHT
1295  * @bat_priv: the bat priv with all the soft interface information
1296  * @skb: packet to check
1297  */
1298 void batadv_dat_snoop_outgoing_arp_reply(struct batadv_priv *bat_priv,
1299 					 struct sk_buff *skb)
1300 {
1301 	u16 type;
1302 	__be32 ip_src, ip_dst;
1303 	u8 *hw_src, *hw_dst;
1304 	int hdr_size = 0;
1305 	unsigned short vid;
1306 
1307 	if (!atomic_read(&bat_priv->distributed_arp_table))
1308 		return;
1309 
1310 	vid = batadv_dat_get_vid(skb, &hdr_size);
1311 
1312 	type = batadv_arp_get_type(bat_priv, skb, hdr_size);
1313 	if (type != ARPOP_REPLY)
1314 		return;
1315 
1316 	batadv_dbg_arp(bat_priv, skb, hdr_size, "Parsing outgoing ARP REPLY");
1317 
1318 	hw_src = batadv_arp_hw_src(skb, hdr_size);
1319 	ip_src = batadv_arp_ip_src(skb, hdr_size);
1320 	hw_dst = batadv_arp_hw_dst(skb, hdr_size);
1321 	ip_dst = batadv_arp_ip_dst(skb, hdr_size);
1322 
1323 	batadv_dat_entry_add(bat_priv, ip_src, hw_src, vid);
1324 	batadv_dat_entry_add(bat_priv, ip_dst, hw_dst, vid);
1325 
1326 	/* Send the ARP reply to the candidates for both the IP addresses that
1327 	 * the node obtained from the ARP reply
1328 	 */
1329 	batadv_dat_forward_data(bat_priv, skb, ip_src, vid,
1330 				BATADV_P_DAT_DHT_PUT);
1331 	batadv_dat_forward_data(bat_priv, skb, ip_dst, vid,
1332 				BATADV_P_DAT_DHT_PUT);
1333 }
1334 
1335 /**
1336  * batadv_dat_snoop_incoming_arp_reply() - snoop the ARP reply and fill the
1337  *  local DAT storage only
1338  * @bat_priv: the bat priv with all the soft interface information
1339  * @skb: packet to check
1340  * @hdr_size: size of the encapsulation header
1341  *
1342  * Return: true if the packet was snooped and consumed by DAT. False if the
1343  * packet has to be delivered to the interface
1344  */
1345 bool batadv_dat_snoop_incoming_arp_reply(struct batadv_priv *bat_priv,
1346 					 struct sk_buff *skb, int hdr_size)
1347 {
1348 	struct batadv_dat_entry *dat_entry = NULL;
1349 	u16 type;
1350 	__be32 ip_src, ip_dst;
1351 	u8 *hw_src, *hw_dst;
1352 	bool dropped = false;
1353 	unsigned short vid;
1354 
1355 	if (!atomic_read(&bat_priv->distributed_arp_table))
1356 		goto out;
1357 
1358 	vid = batadv_dat_get_vid(skb, &hdr_size);
1359 
1360 	type = batadv_arp_get_type(bat_priv, skb, hdr_size);
1361 	if (type != ARPOP_REPLY)
1362 		goto out;
1363 
1364 	batadv_dbg_arp(bat_priv, skb, hdr_size, "Parsing incoming ARP REPLY");
1365 
1366 	hw_src = batadv_arp_hw_src(skb, hdr_size);
1367 	ip_src = batadv_arp_ip_src(skb, hdr_size);
1368 	hw_dst = batadv_arp_hw_dst(skb, hdr_size);
1369 	ip_dst = batadv_arp_ip_dst(skb, hdr_size);
1370 
1371 	/* If ip_dst is already in cache and has the right mac address,
1372 	 * drop this frame if this ARP reply is destined for us because it's
1373 	 * most probably an ARP reply generated by another node of the DHT.
1374 	 * We have most probably received already a reply earlier. Delivering
1375 	 * this frame would lead to doubled receive of an ARP reply.
1376 	 */
1377 	dat_entry = batadv_dat_entry_hash_find(bat_priv, ip_src, vid);
1378 	if (dat_entry && batadv_compare_eth(hw_src, dat_entry->mac_addr)) {
1379 		batadv_dbg(BATADV_DBG_DAT, bat_priv, "Doubled ARP reply removed: ARP MSG = [src: %pM-%pI4 dst: %pM-%pI4]; dat_entry: %pM-%pI4\n",
1380 			   hw_src, &ip_src, hw_dst, &ip_dst,
1381 			   dat_entry->mac_addr,	&dat_entry->ip);
1382 		dropped = true;
1383 	}
1384 
1385 	/* Update our internal cache with both the IP addresses the node got
1386 	 * within the ARP reply
1387 	 */
1388 	batadv_dat_entry_add(bat_priv, ip_src, hw_src, vid);
1389 	batadv_dat_entry_add(bat_priv, ip_dst, hw_dst, vid);
1390 
1391 	if (dropped)
1392 		goto out;
1393 
1394 	/* If BLA is enabled, only forward ARP replies if we have claimed the
1395 	 * source of the ARP reply or if no one else of the same backbone has
1396 	 * already claimed that client. This prevents that different gateways
1397 	 * to the same backbone all forward the ARP reply leading to multiple
1398 	 * replies in the backbone.
1399 	 */
1400 	if (!batadv_bla_check_claim(bat_priv, hw_src, vid)) {
1401 		batadv_dbg(BATADV_DBG_DAT, bat_priv,
1402 			   "Device %pM claimed by another backbone gw. Drop ARP reply.\n",
1403 			   hw_src);
1404 		dropped = true;
1405 		goto out;
1406 	}
1407 
1408 	/* if this REPLY is directed to a client of mine, let's deliver the
1409 	 * packet to the interface
1410 	 */
1411 	dropped = !batadv_is_my_client(bat_priv, hw_dst, vid);
1412 
1413 	/* if this REPLY is sent on behalf of a client of mine, let's drop the
1414 	 * packet because the client will reply by itself
1415 	 */
1416 	dropped |= batadv_is_my_client(bat_priv, hw_src, vid);
1417 out:
1418 	if (dropped)
1419 		kfree_skb(skb);
1420 	batadv_dat_entry_put(dat_entry);
1421 	/* if dropped == false -> deliver to the interface */
1422 	return dropped;
1423 }
1424 
1425 /**
1426  * batadv_dat_check_dhcp_ipudp() - check skb for IP+UDP headers valid for DHCP
1427  * @skb: the packet to check
1428  * @ip_src: a buffer to store the IPv4 source address in
1429  *
1430  * Checks whether the given skb has an IP and UDP header valid for a DHCP
1431  * message from a DHCP server. And if so, stores the IPv4 source address in
1432  * the provided buffer.
1433  *
1434  * Return: True if valid, false otherwise.
1435  */
1436 static bool
1437 batadv_dat_check_dhcp_ipudp(struct sk_buff *skb, __be32 *ip_src)
1438 {
1439 	unsigned int offset = skb_network_offset(skb);
1440 	struct udphdr *udphdr, _udphdr;
1441 	struct iphdr *iphdr, _iphdr;
1442 
1443 	iphdr = skb_header_pointer(skb, offset, sizeof(_iphdr), &_iphdr);
1444 	if (!iphdr || iphdr->version != 4 || iphdr->ihl * 4 < sizeof(_iphdr))
1445 		return false;
1446 
1447 	if (iphdr->protocol != IPPROTO_UDP)
1448 		return false;
1449 
1450 	offset += iphdr->ihl * 4;
1451 	skb_set_transport_header(skb, offset);
1452 
1453 	udphdr = skb_header_pointer(skb, offset, sizeof(_udphdr), &_udphdr);
1454 	if (!udphdr || udphdr->source != htons(67))
1455 		return false;
1456 
1457 	*ip_src = get_unaligned(&iphdr->saddr);
1458 
1459 	return true;
1460 }
1461 
1462 /**
1463  * batadv_dat_check_dhcp() - examine packet for valid DHCP message
1464  * @skb: the packet to check
1465  * @proto: ethernet protocol hint (behind a potential vlan)
1466  * @ip_src: a buffer to store the IPv4 source address in
1467  *
1468  * Checks whether the given skb is a valid DHCP packet. And if so, stores the
1469  * IPv4 source address in the provided buffer.
1470  *
1471  * Caller needs to ensure that the skb network header is set correctly.
1472  *
1473  * Return: If skb is a valid DHCP packet, then returns its op code
1474  * (e.g. BOOTREPLY vs. BOOTREQUEST). Otherwise returns -EINVAL.
1475  */
1476 static int
1477 batadv_dat_check_dhcp(struct sk_buff *skb, __be16 proto, __be32 *ip_src)
1478 {
1479 	__be32 *magic, _magic;
1480 	unsigned int offset;
1481 	struct {
1482 		__u8 op;
1483 		__u8 htype;
1484 		__u8 hlen;
1485 		__u8 hops;
1486 	} *dhcp_h, _dhcp_h;
1487 
1488 	if (proto != htons(ETH_P_IP))
1489 		return -EINVAL;
1490 
1491 	if (!batadv_dat_check_dhcp_ipudp(skb, ip_src))
1492 		return -EINVAL;
1493 
1494 	offset = skb_transport_offset(skb) + sizeof(struct udphdr);
1495 	if (skb->len < offset + sizeof(struct batadv_dhcp_packet))
1496 		return -EINVAL;
1497 
1498 	dhcp_h = skb_header_pointer(skb, offset, sizeof(_dhcp_h), &_dhcp_h);
1499 	if (!dhcp_h || dhcp_h->htype != BATADV_HTYPE_ETHERNET ||
1500 	    dhcp_h->hlen != ETH_ALEN)
1501 		return -EINVAL;
1502 
1503 	offset += offsetof(struct batadv_dhcp_packet, magic);
1504 
1505 	magic = skb_header_pointer(skb, offset, sizeof(_magic), &_magic);
1506 	if (!magic || get_unaligned(magic) != htonl(BATADV_DHCP_MAGIC))
1507 		return -EINVAL;
1508 
1509 	return dhcp_h->op;
1510 }
1511 
1512 /**
1513  * batadv_dat_get_dhcp_message_type() - get message type of a DHCP packet
1514  * @skb: the DHCP packet to parse
1515  *
1516  * Iterates over the DHCP options of the given DHCP packet to find a
1517  * DHCP Message Type option and parse it.
1518  *
1519  * Caller needs to ensure that the given skb is a valid DHCP packet and
1520  * that the skb transport header is set correctly.
1521  *
1522  * Return: The found DHCP message type value, if found. -EINVAL otherwise.
1523  */
1524 static int batadv_dat_get_dhcp_message_type(struct sk_buff *skb)
1525 {
1526 	unsigned int offset = skb_transport_offset(skb) + sizeof(struct udphdr);
1527 	u8 *type, _type;
1528 	struct {
1529 		u8 type;
1530 		u8 len;
1531 	} *tl, _tl;
1532 
1533 	offset += sizeof(struct batadv_dhcp_packet);
1534 
1535 	while ((tl = skb_header_pointer(skb, offset, sizeof(_tl), &_tl))) {
1536 		if (tl->type == BATADV_DHCP_OPT_MSG_TYPE)
1537 			break;
1538 
1539 		if (tl->type == BATADV_DHCP_OPT_END)
1540 			break;
1541 
1542 		if (tl->type == BATADV_DHCP_OPT_PAD)
1543 			offset++;
1544 		else
1545 			offset += tl->len + sizeof(_tl);
1546 	}
1547 
1548 	/* Option Overload Code not supported */
1549 	if (!tl || tl->type != BATADV_DHCP_OPT_MSG_TYPE ||
1550 	    tl->len != sizeof(_type))
1551 		return -EINVAL;
1552 
1553 	offset += sizeof(_tl);
1554 
1555 	type = skb_header_pointer(skb, offset, sizeof(_type), &_type);
1556 	if (!type)
1557 		return -EINVAL;
1558 
1559 	return *type;
1560 }
1561 
1562 /**
1563  * batadv_dat_dhcp_get_yiaddr() - get yiaddr from a DHCP packet
1564  * @skb: the DHCP packet to parse
1565  * @buf: a buffer to store the yiaddr in
1566  *
1567  * Caller needs to ensure that the given skb is a valid DHCP packet and
1568  * that the skb transport header is set correctly.
1569  *
1570  * Return: True on success, false otherwise.
1571  */
1572 static bool batadv_dat_dhcp_get_yiaddr(struct sk_buff *skb, __be32 *buf)
1573 {
1574 	unsigned int offset = skb_transport_offset(skb) + sizeof(struct udphdr);
1575 	__be32 *yiaddr;
1576 
1577 	offset += offsetof(struct batadv_dhcp_packet, yiaddr);
1578 	yiaddr = skb_header_pointer(skb, offset, BATADV_DHCP_YIADDR_LEN, buf);
1579 
1580 	if (!yiaddr)
1581 		return false;
1582 
1583 	if (yiaddr != buf)
1584 		*buf = get_unaligned(yiaddr);
1585 
1586 	return true;
1587 }
1588 
1589 /**
1590  * batadv_dat_get_dhcp_chaddr() - get chaddr from a DHCP packet
1591  * @skb: the DHCP packet to parse
1592  * @buf: a buffer to store the chaddr in
1593  *
1594  * Caller needs to ensure that the given skb is a valid DHCP packet and
1595  * that the skb transport header is set correctly.
1596  *
1597  * Return: True on success, false otherwise
1598  */
1599 static bool batadv_dat_get_dhcp_chaddr(struct sk_buff *skb, u8 *buf)
1600 {
1601 	unsigned int offset = skb_transport_offset(skb) + sizeof(struct udphdr);
1602 	u8 *chaddr;
1603 
1604 	offset += offsetof(struct batadv_dhcp_packet, chaddr);
1605 	chaddr = skb_header_pointer(skb, offset, BATADV_DHCP_CHADDR_LEN, buf);
1606 
1607 	if (!chaddr)
1608 		return false;
1609 
1610 	if (chaddr != buf)
1611 		memcpy(buf, chaddr, BATADV_DHCP_CHADDR_LEN);
1612 
1613 	return true;
1614 }
1615 
1616 /**
1617  * batadv_dat_put_dhcp() - puts addresses from a DHCP packet into the DHT and
1618  *  DAT cache
1619  * @bat_priv: the bat priv with all the soft interface information
1620  * @chaddr: the DHCP client MAC address
1621  * @yiaddr: the DHCP client IP address
1622  * @hw_dst: the DHCP server MAC address
1623  * @ip_dst: the DHCP server IP address
1624  * @vid: VLAN identifier
1625  *
1626  * Adds given MAC/IP pairs to the local DAT cache and propagates them further
1627  * into the DHT.
1628  *
1629  * For the DHT propagation, client MAC + IP will appear as the ARP Reply
1630  * transmitter (and hw_dst/ip_dst as the target).
1631  */
1632 static void batadv_dat_put_dhcp(struct batadv_priv *bat_priv, u8 *chaddr,
1633 				__be32 yiaddr, u8 *hw_dst, __be32 ip_dst,
1634 				unsigned short vid)
1635 {
1636 	struct sk_buff *skb;
1637 
1638 	skb = batadv_dat_arp_create_reply(bat_priv, yiaddr, ip_dst, chaddr,
1639 					  hw_dst, vid);
1640 	if (!skb)
1641 		return;
1642 
1643 	skb_set_network_header(skb, ETH_HLEN);
1644 
1645 	batadv_dat_entry_add(bat_priv, yiaddr, chaddr, vid);
1646 	batadv_dat_entry_add(bat_priv, ip_dst, hw_dst, vid);
1647 
1648 	batadv_dat_forward_data(bat_priv, skb, yiaddr, vid,
1649 				BATADV_P_DAT_DHT_PUT);
1650 	batadv_dat_forward_data(bat_priv, skb, ip_dst, vid,
1651 				BATADV_P_DAT_DHT_PUT);
1652 
1653 	consume_skb(skb);
1654 
1655 	batadv_dbg(BATADV_DBG_DAT, bat_priv,
1656 		   "Snooped from outgoing DHCPACK (server address): %pI4, %pM (vid: %i)\n",
1657 		   &ip_dst, hw_dst, batadv_print_vid(vid));
1658 	batadv_dbg(BATADV_DBG_DAT, bat_priv,
1659 		   "Snooped from outgoing DHCPACK (client address): %pI4, %pM (vid: %i)\n",
1660 		   &yiaddr, chaddr, batadv_print_vid(vid));
1661 }
1662 
1663 /**
1664  * batadv_dat_check_dhcp_ack() - examine packet for valid DHCP message
1665  * @skb: the packet to check
1666  * @proto: ethernet protocol hint (behind a potential vlan)
1667  * @ip_src: a buffer to store the IPv4 source address in
1668  * @chaddr: a buffer to store the DHCP Client Hardware Address in
1669  * @yiaddr: a buffer to store the DHCP Your IP Address in
1670  *
1671  * Checks whether the given skb is a valid DHCPACK. And if so, stores the
1672  * IPv4 server source address (ip_src), client MAC address (chaddr) and client
1673  * IPv4 address (yiaddr) in the provided buffers.
1674  *
1675  * Caller needs to ensure that the skb network header is set correctly.
1676  *
1677  * Return: True if the skb is a valid DHCPACK. False otherwise.
1678  */
1679 static bool
1680 batadv_dat_check_dhcp_ack(struct sk_buff *skb, __be16 proto, __be32 *ip_src,
1681 			  u8 *chaddr, __be32 *yiaddr)
1682 {
1683 	int type;
1684 
1685 	type = batadv_dat_check_dhcp(skb, proto, ip_src);
1686 	if (type != BATADV_BOOTREPLY)
1687 		return false;
1688 
1689 	type = batadv_dat_get_dhcp_message_type(skb);
1690 	if (type != BATADV_DHCPACK)
1691 		return false;
1692 
1693 	if (!batadv_dat_dhcp_get_yiaddr(skb, yiaddr))
1694 		return false;
1695 
1696 	if (!batadv_dat_get_dhcp_chaddr(skb, chaddr))
1697 		return false;
1698 
1699 	return true;
1700 }
1701 
1702 /**
1703  * batadv_dat_snoop_outgoing_dhcp_ack() - snoop DHCPACK and fill DAT with it
1704  * @bat_priv: the bat priv with all the soft interface information
1705  * @skb: the packet to snoop
1706  * @proto: ethernet protocol hint (behind a potential vlan)
1707  * @vid: VLAN identifier
1708  *
1709  * This function first checks whether the given skb is a valid DHCPACK. If
1710  * so then its source MAC and IP as well as its DHCP Client Hardware Address
1711  * field and DHCP Your IP Address field are added to the local DAT cache and
1712  * propagated into the DHT.
1713  *
1714  * Caller needs to ensure that the skb mac and network headers are set
1715  * correctly.
1716  */
1717 void batadv_dat_snoop_outgoing_dhcp_ack(struct batadv_priv *bat_priv,
1718 					struct sk_buff *skb,
1719 					__be16 proto,
1720 					unsigned short vid)
1721 {
1722 	u8 chaddr[BATADV_DHCP_CHADDR_LEN];
1723 	__be32 ip_src, yiaddr;
1724 
1725 	if (!atomic_read(&bat_priv->distributed_arp_table))
1726 		return;
1727 
1728 	if (!batadv_dat_check_dhcp_ack(skb, proto, &ip_src, chaddr, &yiaddr))
1729 		return;
1730 
1731 	batadv_dat_put_dhcp(bat_priv, chaddr, yiaddr, eth_hdr(skb)->h_source,
1732 			    ip_src, vid);
1733 }
1734 
1735 /**
1736  * batadv_dat_snoop_incoming_dhcp_ack() - snoop DHCPACK and fill DAT cache
1737  * @bat_priv: the bat priv with all the soft interface information
1738  * @skb: the packet to snoop
1739  * @hdr_size: header size, up to the tail of the batman-adv header
1740  *
1741  * This function first checks whether the given skb is a valid DHCPACK. If
1742  * so then its source MAC and IP as well as its DHCP Client Hardware Address
1743  * field and DHCP Your IP Address field are added to the local DAT cache.
1744  */
1745 void batadv_dat_snoop_incoming_dhcp_ack(struct batadv_priv *bat_priv,
1746 					struct sk_buff *skb, int hdr_size)
1747 {
1748 	u8 chaddr[BATADV_DHCP_CHADDR_LEN];
1749 	struct ethhdr *ethhdr;
1750 	__be32 ip_src, yiaddr;
1751 	unsigned short vid;
1752 	__be16 proto;
1753 	u8 *hw_src;
1754 
1755 	if (!atomic_read(&bat_priv->distributed_arp_table))
1756 		return;
1757 
1758 	if (unlikely(!pskb_may_pull(skb, hdr_size + ETH_HLEN)))
1759 		return;
1760 
1761 	ethhdr = (struct ethhdr *)(skb->data + hdr_size);
1762 	skb_set_network_header(skb, hdr_size + ETH_HLEN);
1763 	proto = ethhdr->h_proto;
1764 
1765 	if (!batadv_dat_check_dhcp_ack(skb, proto, &ip_src, chaddr, &yiaddr))
1766 		return;
1767 
1768 	hw_src = ethhdr->h_source;
1769 	vid = batadv_dat_get_vid(skb, &hdr_size);
1770 
1771 	batadv_dat_entry_add(bat_priv, yiaddr, chaddr, vid);
1772 	batadv_dat_entry_add(bat_priv, ip_src, hw_src, vid);
1773 
1774 	batadv_dbg(BATADV_DBG_DAT, bat_priv,
1775 		   "Snooped from incoming DHCPACK (server address): %pI4, %pM (vid: %i)\n",
1776 		   &ip_src, hw_src, batadv_print_vid(vid));
1777 	batadv_dbg(BATADV_DBG_DAT, bat_priv,
1778 		   "Snooped from incoming DHCPACK (client address): %pI4, %pM (vid: %i)\n",
1779 		   &yiaddr, chaddr, batadv_print_vid(vid));
1780 }
1781 
1782 /**
1783  * batadv_dat_drop_broadcast_packet() - check if an ARP request has to be
1784  *  dropped (because the node has already obtained the reply via DAT) or not
1785  * @bat_priv: the bat priv with all the soft interface information
1786  * @forw_packet: the broadcast packet
1787  *
1788  * Return: true if the node can drop the packet, false otherwise.
1789  */
1790 bool batadv_dat_drop_broadcast_packet(struct batadv_priv *bat_priv,
1791 				      struct batadv_forw_packet *forw_packet)
1792 {
1793 	u16 type;
1794 	__be32 ip_dst;
1795 	struct batadv_dat_entry *dat_entry = NULL;
1796 	bool ret = false;
1797 	int hdr_size = sizeof(struct batadv_bcast_packet);
1798 	unsigned short vid;
1799 
1800 	if (!atomic_read(&bat_priv->distributed_arp_table))
1801 		goto out;
1802 
1803 	/* If this packet is an ARP_REQUEST and the node already has the
1804 	 * information that it is going to ask, then the packet can be dropped
1805 	 */
1806 	if (batadv_forw_packet_is_rebroadcast(forw_packet))
1807 		goto out;
1808 
1809 	vid = batadv_dat_get_vid(forw_packet->skb, &hdr_size);
1810 
1811 	type = batadv_arp_get_type(bat_priv, forw_packet->skb, hdr_size);
1812 	if (type != ARPOP_REQUEST)
1813 		goto out;
1814 
1815 	ip_dst = batadv_arp_ip_dst(forw_packet->skb, hdr_size);
1816 	dat_entry = batadv_dat_entry_hash_find(bat_priv, ip_dst, vid);
1817 	/* check if the node already got this entry */
1818 	if (!dat_entry) {
1819 		batadv_dbg(BATADV_DBG_DAT, bat_priv,
1820 			   "ARP Request for %pI4: fallback\n", &ip_dst);
1821 		goto out;
1822 	}
1823 
1824 	batadv_dbg(BATADV_DBG_DAT, bat_priv,
1825 		   "ARP Request for %pI4: fallback prevented\n", &ip_dst);
1826 	ret = true;
1827 
1828 out:
1829 	batadv_dat_entry_put(dat_entry);
1830 	return ret;
1831 }
1832