2 * Linux INET6 implementation
6 * Pedro Roque <roque@di.fc.ul.pt>
8 * This program is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU General Public License
10 * as published by the Free Software Foundation; either version
11 * 2 of the License, or (at your option) any later version.
16 * YOSHIFUJI Hideaki @USAGI
17 * reworked default router selection.
18 * - respect outgoing interface
19 * - select from (probably) reachable routers (i.e.
20 * routers in REACHABLE, STALE, DELAY or PROBE states).
21 * - always select the same router if it is (probably)
22 * reachable. otherwise, round-robin the list.
24 * Fixed routing subtrees.
27 #define pr_fmt(fmt) "IPv6: " fmt
29 #include <linux/capability.h>
30 #include <linux/errno.h>
31 #include <linux/export.h>
32 #include <linux/types.h>
33 #include <linux/times.h>
34 #include <linux/socket.h>
35 #include <linux/sockios.h>
36 #include <linux/net.h>
37 #include <linux/route.h>
38 #include <linux/netdevice.h>
39 #include <linux/in6.h>
40 #include <linux/mroute6.h>
41 #include <linux/init.h>
42 #include <linux/if_arp.h>
43 #include <linux/proc_fs.h>
44 #include <linux/seq_file.h>
45 #include <linux/nsproxy.h>
46 #include <linux/slab.h>
47 #include <net/net_namespace.h>
50 #include <net/ip6_fib.h>
51 #include <net/ip6_route.h>
52 #include <net/ndisc.h>
53 #include <net/addrconf.h>
55 #include <linux/rtnetlink.h>
58 #include <net/netevent.h>
59 #include <net/netlink.h>
61 #include <asm/uaccess.h>
64 #include <linux/sysctl.h>
67 static struct rt6_info *ip6_rt_copy(struct rt6_info *ort,
68 const struct in6_addr *dest);
69 static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie);
70 static unsigned int ip6_default_advmss(const struct dst_entry *dst);
71 static unsigned int ip6_mtu(const struct dst_entry *dst);
72 static struct dst_entry *ip6_negative_advice(struct dst_entry *);
73 static void ip6_dst_destroy(struct dst_entry *);
74 static void ip6_dst_ifdown(struct dst_entry *,
75 struct net_device *dev, int how);
76 static int ip6_dst_gc(struct dst_ops *ops);
78 static int ip6_pkt_discard(struct sk_buff *skb);
79 static int ip6_pkt_discard_out(struct sk_buff *skb);
80 static void ip6_link_failure(struct sk_buff *skb);
81 static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk,
82 struct sk_buff *skb, u32 mtu);
83 static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk,
86 #ifdef CONFIG_IPV6_ROUTE_INFO
87 static struct rt6_info *rt6_add_route_info(struct net *net,
88 const struct in6_addr *prefix, int prefixlen,
89 const struct in6_addr *gwaddr, int ifindex,
91 static struct rt6_info *rt6_get_route_info(struct net *net,
92 const struct in6_addr *prefix, int prefixlen,
93 const struct in6_addr *gwaddr, int ifindex);
96 static u32 *ipv6_cow_metrics(struct dst_entry *dst, unsigned long old)
98 struct rt6_info *rt = (struct rt6_info *) dst;
99 struct inet_peer *peer;
102 if (!(rt->dst.flags & DST_HOST))
105 peer = rt6_get_peer_create(rt);
107 u32 *old_p = __DST_METRICS_PTR(old);
108 unsigned long prev, new;
111 if (inet_metrics_new(peer))
112 memcpy(p, old_p, sizeof(u32) * RTAX_MAX);
114 new = (unsigned long) p;
115 prev = cmpxchg(&dst->_metrics, old, new);
118 p = __DST_METRICS_PTR(prev);
119 if (prev & DST_METRICS_READ_ONLY)
126 static inline const void *choose_neigh_daddr(struct rt6_info *rt,
130 struct in6_addr *p = &rt->rt6i_gateway;
132 if (!ipv6_addr_any(p))
133 return (const void *) p;
135 return &ipv6_hdr(skb)->daddr;
139 static struct neighbour *ip6_neigh_lookup(const struct dst_entry *dst,
143 struct rt6_info *rt = (struct rt6_info *) dst;
146 daddr = choose_neigh_daddr(rt, skb, daddr);
147 n = __ipv6_neigh_lookup(&nd_tbl, dst->dev, daddr);
150 return neigh_create(&nd_tbl, daddr, dst->dev);
153 static int rt6_bind_neighbour(struct rt6_info *rt, struct net_device *dev)
155 struct neighbour *n = __ipv6_neigh_lookup(&nd_tbl, dev, &rt->rt6i_gateway);
157 n = neigh_create(&nd_tbl, &rt->rt6i_gateway, dev);
166 static struct dst_ops ip6_dst_ops_template = {
168 .protocol = cpu_to_be16(ETH_P_IPV6),
171 .check = ip6_dst_check,
172 .default_advmss = ip6_default_advmss,
174 .cow_metrics = ipv6_cow_metrics,
175 .destroy = ip6_dst_destroy,
176 .ifdown = ip6_dst_ifdown,
177 .negative_advice = ip6_negative_advice,
178 .link_failure = ip6_link_failure,
179 .update_pmtu = ip6_rt_update_pmtu,
180 .redirect = rt6_do_redirect,
181 .local_out = __ip6_local_out,
182 .neigh_lookup = ip6_neigh_lookup,
185 static unsigned int ip6_blackhole_mtu(const struct dst_entry *dst)
187 unsigned int mtu = dst_metric_raw(dst, RTAX_MTU);
189 return mtu ? : dst->dev->mtu;
192 static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, struct sock *sk,
193 struct sk_buff *skb, u32 mtu)
197 static void ip6_rt_blackhole_redirect(struct dst_entry *dst, struct sock *sk,
202 static u32 *ip6_rt_blackhole_cow_metrics(struct dst_entry *dst,
208 static struct dst_ops ip6_dst_blackhole_ops = {
210 .protocol = cpu_to_be16(ETH_P_IPV6),
211 .destroy = ip6_dst_destroy,
212 .check = ip6_dst_check,
213 .mtu = ip6_blackhole_mtu,
214 .default_advmss = ip6_default_advmss,
215 .update_pmtu = ip6_rt_blackhole_update_pmtu,
216 .redirect = ip6_rt_blackhole_redirect,
217 .cow_metrics = ip6_rt_blackhole_cow_metrics,
218 .neigh_lookup = ip6_neigh_lookup,
221 static const u32 ip6_template_metrics[RTAX_MAX] = {
222 [RTAX_HOPLIMIT - 1] = 255,
225 static struct rt6_info ip6_null_entry_template = {
227 .__refcnt = ATOMIC_INIT(1),
230 .error = -ENETUNREACH,
231 .input = ip6_pkt_discard,
232 .output = ip6_pkt_discard_out,
234 .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
235 .rt6i_protocol = RTPROT_KERNEL,
236 .rt6i_metric = ~(u32) 0,
237 .rt6i_ref = ATOMIC_INIT(1),
240 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
242 static int ip6_pkt_prohibit(struct sk_buff *skb);
243 static int ip6_pkt_prohibit_out(struct sk_buff *skb);
245 static struct rt6_info ip6_prohibit_entry_template = {
247 .__refcnt = ATOMIC_INIT(1),
251 .input = ip6_pkt_prohibit,
252 .output = ip6_pkt_prohibit_out,
254 .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
255 .rt6i_protocol = RTPROT_KERNEL,
256 .rt6i_metric = ~(u32) 0,
257 .rt6i_ref = ATOMIC_INIT(1),
260 static struct rt6_info ip6_blk_hole_entry_template = {
262 .__refcnt = ATOMIC_INIT(1),
266 .input = dst_discard,
267 .output = dst_discard,
269 .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
270 .rt6i_protocol = RTPROT_KERNEL,
271 .rt6i_metric = ~(u32) 0,
272 .rt6i_ref = ATOMIC_INIT(1),
277 /* allocate dst with ip6_dst_ops */
278 static inline struct rt6_info *ip6_dst_alloc(struct net *net,
279 struct net_device *dev,
281 struct fib6_table *table)
283 struct rt6_info *rt = dst_alloc(&net->ipv6.ip6_dst_ops, dev,
284 0, DST_OBSOLETE_NONE, flags);
287 struct dst_entry *dst = &rt->dst;
289 memset(dst + 1, 0, sizeof(*rt) - sizeof(*dst));
290 rt6_init_peer(rt, table ? &table->tb6_peers : net->ipv6.peers);
295 static void ip6_dst_destroy(struct dst_entry *dst)
297 struct rt6_info *rt = (struct rt6_info *)dst;
298 struct inet6_dev *idev = rt->rt6i_idev;
301 neigh_release(rt->n);
303 if (!(rt->dst.flags & DST_HOST))
304 dst_destroy_metrics_generic(dst);
307 rt->rt6i_idev = NULL;
311 if (!(rt->rt6i_flags & RTF_EXPIRES) && dst->from)
312 dst_release(dst->from);
314 if (rt6_has_peer(rt)) {
315 struct inet_peer *peer = rt6_peer_ptr(rt);
320 static atomic_t __rt6_peer_genid = ATOMIC_INIT(0);
322 static u32 rt6_peer_genid(void)
324 return atomic_read(&__rt6_peer_genid);
327 void rt6_bind_peer(struct rt6_info *rt, int create)
329 struct inet_peer_base *base;
330 struct inet_peer *peer;
332 base = inetpeer_base_ptr(rt->_rt6i_peer);
336 peer = inet_getpeer_v6(base, &rt->rt6i_dst.addr, create);
338 if (!rt6_set_peer(rt, peer))
341 rt->rt6i_peer_genid = rt6_peer_genid();
345 static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev,
348 struct rt6_info *rt = (struct rt6_info *)dst;
349 struct inet6_dev *idev = rt->rt6i_idev;
350 struct net_device *loopback_dev =
351 dev_net(dev)->loopback_dev;
353 if (dev != loopback_dev) {
354 if (idev && idev->dev == dev) {
355 struct inet6_dev *loopback_idev =
356 in6_dev_get(loopback_dev);
358 rt->rt6i_idev = loopback_idev;
362 if (rt->n && rt->n->dev == dev) {
363 rt->n->dev = loopback_dev;
364 dev_hold(loopback_dev);
370 static bool rt6_check_expired(const struct rt6_info *rt)
372 struct rt6_info *ort = NULL;
374 if (rt->rt6i_flags & RTF_EXPIRES) {
375 if (time_after(jiffies, rt->dst.expires))
377 } else if (rt->dst.from) {
378 ort = (struct rt6_info *) rt->dst.from;
379 return (ort->rt6i_flags & RTF_EXPIRES) &&
380 time_after(jiffies, ort->dst.expires);
385 static bool rt6_need_strict(const struct in6_addr *daddr)
387 return ipv6_addr_type(daddr) &
388 (IPV6_ADDR_MULTICAST | IPV6_ADDR_LINKLOCAL | IPV6_ADDR_LOOPBACK);
392 * Route lookup. Any table->tb6_lock is implied.
395 static inline struct rt6_info *rt6_device_match(struct net *net,
397 const struct in6_addr *saddr,
401 struct rt6_info *local = NULL;
402 struct rt6_info *sprt;
404 if (!oif && ipv6_addr_any(saddr))
407 for (sprt = rt; sprt; sprt = sprt->dst.rt6_next) {
408 struct net_device *dev = sprt->dst.dev;
411 if (dev->ifindex == oif)
413 if (dev->flags & IFF_LOOPBACK) {
414 if (!sprt->rt6i_idev ||
415 sprt->rt6i_idev->dev->ifindex != oif) {
416 if (flags & RT6_LOOKUP_F_IFACE && oif)
418 if (local && (!oif ||
419 local->rt6i_idev->dev->ifindex == oif))
425 if (ipv6_chk_addr(net, saddr, dev,
426 flags & RT6_LOOKUP_F_IFACE))
435 if (flags & RT6_LOOKUP_F_IFACE)
436 return net->ipv6.ip6_null_entry;
442 #ifdef CONFIG_IPV6_ROUTER_PREF
443 static void rt6_probe(struct rt6_info *rt)
445 struct neighbour *neigh;
447 * Okay, this does not seem to be appropriate
448 * for now, however, we need to check if it
449 * is really so; aka Router Reachability Probing.
451 * Router Reachability Probe MUST be rate-limited
452 * to no more than one per minute.
455 neigh = rt ? rt->n : NULL;
456 if (!neigh || (neigh->nud_state & NUD_VALID))
458 read_lock_bh(&neigh->lock);
459 if (!(neigh->nud_state & NUD_VALID) &&
460 time_after(jiffies, neigh->updated + rt->rt6i_idev->cnf.rtr_probe_interval)) {
461 struct in6_addr mcaddr;
462 struct in6_addr *target;
464 neigh->updated = jiffies;
465 read_unlock_bh(&neigh->lock);
467 target = (struct in6_addr *)&neigh->primary_key;
468 addrconf_addr_solict_mult(target, &mcaddr);
469 ndisc_send_ns(rt->dst.dev, NULL, target, &mcaddr, NULL);
471 read_unlock_bh(&neigh->lock);
477 static inline void rt6_probe(struct rt6_info *rt)
483 * Default Router Selection (RFC 2461 6.3.6)
485 static inline int rt6_check_dev(struct rt6_info *rt, int oif)
487 struct net_device *dev = rt->dst.dev;
488 if (!oif || dev->ifindex == oif)
490 if ((dev->flags & IFF_LOOPBACK) &&
491 rt->rt6i_idev && rt->rt6i_idev->dev->ifindex == oif)
496 static inline int rt6_check_neigh(struct rt6_info *rt)
498 struct neighbour *neigh;
503 if (rt->rt6i_flags & RTF_NONEXTHOP ||
504 !(rt->rt6i_flags & RTF_GATEWAY))
507 read_lock_bh(&neigh->lock);
508 if (neigh->nud_state & NUD_VALID)
510 #ifdef CONFIG_IPV6_ROUTER_PREF
511 else if (neigh->nud_state & NUD_FAILED)
516 read_unlock_bh(&neigh->lock);
523 static int rt6_score_route(struct rt6_info *rt, int oif,
528 m = rt6_check_dev(rt, oif);
529 if (!m && (strict & RT6_LOOKUP_F_IFACE))
531 #ifdef CONFIG_IPV6_ROUTER_PREF
532 m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(rt->rt6i_flags)) << 2;
534 n = rt6_check_neigh(rt);
535 if (!n && (strict & RT6_LOOKUP_F_REACHABLE))
540 static struct rt6_info *find_match(struct rt6_info *rt, int oif, int strict,
541 int *mpri, struct rt6_info *match)
545 if (rt6_check_expired(rt))
548 m = rt6_score_route(rt, oif, strict);
553 if (strict & RT6_LOOKUP_F_REACHABLE)
557 } else if (strict & RT6_LOOKUP_F_REACHABLE) {
565 static struct rt6_info *find_rr_leaf(struct fib6_node *fn,
566 struct rt6_info *rr_head,
567 u32 metric, int oif, int strict)
569 struct rt6_info *rt, *match;
573 for (rt = rr_head; rt && rt->rt6i_metric == metric;
574 rt = rt->dst.rt6_next)
575 match = find_match(rt, oif, strict, &mpri, match);
576 for (rt = fn->leaf; rt && rt != rr_head && rt->rt6i_metric == metric;
577 rt = rt->dst.rt6_next)
578 match = find_match(rt, oif, strict, &mpri, match);
583 static struct rt6_info *rt6_select(struct fib6_node *fn, int oif, int strict)
585 struct rt6_info *match, *rt0;
590 fn->rr_ptr = rt0 = fn->leaf;
592 match = find_rr_leaf(fn, rt0, rt0->rt6i_metric, oif, strict);
595 (strict & RT6_LOOKUP_F_REACHABLE)) {
596 struct rt6_info *next = rt0->dst.rt6_next;
598 /* no entries matched; do round-robin */
599 if (!next || next->rt6i_metric != rt0->rt6i_metric)
606 net = dev_net(rt0->dst.dev);
607 return match ? match : net->ipv6.ip6_null_entry;
610 #ifdef CONFIG_IPV6_ROUTE_INFO
611 int rt6_route_rcv(struct net_device *dev, u8 *opt, int len,
612 const struct in6_addr *gwaddr)
614 struct net *net = dev_net(dev);
615 struct route_info *rinfo = (struct route_info *) opt;
616 struct in6_addr prefix_buf, *prefix;
618 unsigned long lifetime;
621 if (len < sizeof(struct route_info)) {
625 /* Sanity check for prefix_len and length */
626 if (rinfo->length > 3) {
628 } else if (rinfo->prefix_len > 128) {
630 } else if (rinfo->prefix_len > 64) {
631 if (rinfo->length < 2) {
634 } else if (rinfo->prefix_len > 0) {
635 if (rinfo->length < 1) {
640 pref = rinfo->route_pref;
641 if (pref == ICMPV6_ROUTER_PREF_INVALID)
644 lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ);
646 if (rinfo->length == 3)
647 prefix = (struct in6_addr *)rinfo->prefix;
649 /* this function is safe */
650 ipv6_addr_prefix(&prefix_buf,
651 (struct in6_addr *)rinfo->prefix,
653 prefix = &prefix_buf;
656 rt = rt6_get_route_info(net, prefix, rinfo->prefix_len, gwaddr,
659 if (rt && !lifetime) {
665 rt = rt6_add_route_info(net, prefix, rinfo->prefix_len, gwaddr, dev->ifindex,
668 rt->rt6i_flags = RTF_ROUTEINFO |
669 (rt->rt6i_flags & ~RTF_PREF_MASK) | RTF_PREF(pref);
672 if (!addrconf_finite_timeout(lifetime))
673 rt6_clean_expires(rt);
675 rt6_set_expires(rt, jiffies + HZ * lifetime);
677 dst_release(&rt->dst);
683 #define BACKTRACK(__net, saddr) \
685 if (rt == __net->ipv6.ip6_null_entry) { \
686 struct fib6_node *pn; \
688 if (fn->fn_flags & RTN_TL_ROOT) \
691 if (FIB6_SUBTREE(pn) && FIB6_SUBTREE(pn) != fn) \
692 fn = fib6_lookup(FIB6_SUBTREE(pn), NULL, saddr); \
695 if (fn->fn_flags & RTN_RTINFO) \
701 static struct rt6_info *ip6_pol_route_lookup(struct net *net,
702 struct fib6_table *table,
703 struct flowi6 *fl6, int flags)
705 struct fib6_node *fn;
708 read_lock_bh(&table->tb6_lock);
709 fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
712 rt = rt6_device_match(net, rt, &fl6->saddr, fl6->flowi6_oif, flags);
713 BACKTRACK(net, &fl6->saddr);
715 dst_use(&rt->dst, jiffies);
716 read_unlock_bh(&table->tb6_lock);
721 struct dst_entry * ip6_route_lookup(struct net *net, struct flowi6 *fl6,
724 return fib6_rule_lookup(net, fl6, flags, ip6_pol_route_lookup);
726 EXPORT_SYMBOL_GPL(ip6_route_lookup);
728 struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr,
729 const struct in6_addr *saddr, int oif, int strict)
731 struct flowi6 fl6 = {
735 struct dst_entry *dst;
736 int flags = strict ? RT6_LOOKUP_F_IFACE : 0;
739 memcpy(&fl6.saddr, saddr, sizeof(*saddr));
740 flags |= RT6_LOOKUP_F_HAS_SADDR;
743 dst = fib6_rule_lookup(net, &fl6, flags, ip6_pol_route_lookup);
745 return (struct rt6_info *) dst;
752 EXPORT_SYMBOL(rt6_lookup);
754 /* ip6_ins_rt is called with FREE table->tb6_lock.
755 It takes new route entry, the addition fails by any reason the
756 route is freed. In any case, if caller does not hold it, it may
760 static int __ip6_ins_rt(struct rt6_info *rt, struct nl_info *info)
763 struct fib6_table *table;
765 table = rt->rt6i_table;
766 write_lock_bh(&table->tb6_lock);
767 err = fib6_add(&table->tb6_root, rt, info);
768 write_unlock_bh(&table->tb6_lock);
773 int ip6_ins_rt(struct rt6_info *rt)
775 struct nl_info info = {
776 .nl_net = dev_net(rt->dst.dev),
778 return __ip6_ins_rt(rt, &info);
781 static struct rt6_info *rt6_alloc_cow(struct rt6_info *ort,
782 const struct in6_addr *daddr,
783 const struct in6_addr *saddr)
791 rt = ip6_rt_copy(ort, daddr);
794 int attempts = !in_softirq();
796 if (!(rt->rt6i_flags & RTF_GATEWAY)) {
797 if (ort->rt6i_dst.plen != 128 &&
798 ipv6_addr_equal(&ort->rt6i_dst.addr, daddr))
799 rt->rt6i_flags |= RTF_ANYCAST;
800 rt->rt6i_gateway = *daddr;
803 rt->rt6i_flags |= RTF_CACHE;
805 #ifdef CONFIG_IPV6_SUBTREES
806 if (rt->rt6i_src.plen && saddr) {
807 rt->rt6i_src.addr = *saddr;
808 rt->rt6i_src.plen = 128;
813 if (rt6_bind_neighbour(rt, rt->dst.dev)) {
814 struct net *net = dev_net(rt->dst.dev);
815 int saved_rt_min_interval =
816 net->ipv6.sysctl.ip6_rt_gc_min_interval;
817 int saved_rt_elasticity =
818 net->ipv6.sysctl.ip6_rt_gc_elasticity;
820 if (attempts-- > 0) {
821 net->ipv6.sysctl.ip6_rt_gc_elasticity = 1;
822 net->ipv6.sysctl.ip6_rt_gc_min_interval = 0;
824 ip6_dst_gc(&net->ipv6.ip6_dst_ops);
826 net->ipv6.sysctl.ip6_rt_gc_elasticity =
828 net->ipv6.sysctl.ip6_rt_gc_min_interval =
829 saved_rt_min_interval;
833 net_warn_ratelimited("Neighbour table overflow\n");
842 static struct rt6_info *rt6_alloc_clone(struct rt6_info *ort,
843 const struct in6_addr *daddr)
845 struct rt6_info *rt = ip6_rt_copy(ort, daddr);
848 rt->rt6i_flags |= RTF_CACHE;
849 rt->n = neigh_clone(ort->n);
854 static struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, int oif,
855 struct flowi6 *fl6, int flags)
857 struct fib6_node *fn;
858 struct rt6_info *rt, *nrt;
862 int reachable = net->ipv6.devconf_all->forwarding ? 0 : RT6_LOOKUP_F_REACHABLE;
864 strict |= flags & RT6_LOOKUP_F_IFACE;
867 read_lock_bh(&table->tb6_lock);
870 fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
873 rt = rt6_select(fn, oif, strict | reachable);
875 BACKTRACK(net, &fl6->saddr);
876 if (rt == net->ipv6.ip6_null_entry ||
877 rt->rt6i_flags & RTF_CACHE)
881 read_unlock_bh(&table->tb6_lock);
883 if (!rt->n && !(rt->rt6i_flags & RTF_NONEXTHOP))
884 nrt = rt6_alloc_cow(rt, &fl6->daddr, &fl6->saddr);
885 else if (!(rt->dst.flags & DST_HOST))
886 nrt = rt6_alloc_clone(rt, &fl6->daddr);
890 dst_release(&rt->dst);
891 rt = nrt ? : net->ipv6.ip6_null_entry;
895 err = ip6_ins_rt(nrt);
904 * Race condition! In the gap, when table->tb6_lock was
905 * released someone could insert this route. Relookup.
907 dst_release(&rt->dst);
916 read_unlock_bh(&table->tb6_lock);
918 rt->dst.lastuse = jiffies;
924 static struct rt6_info *ip6_pol_route_input(struct net *net, struct fib6_table *table,
925 struct flowi6 *fl6, int flags)
927 return ip6_pol_route(net, table, fl6->flowi6_iif, fl6, flags);
930 static struct dst_entry *ip6_route_input_lookup(struct net *net,
931 struct net_device *dev,
932 struct flowi6 *fl6, int flags)
934 if (rt6_need_strict(&fl6->daddr) && dev->type != ARPHRD_PIMREG)
935 flags |= RT6_LOOKUP_F_IFACE;
937 return fib6_rule_lookup(net, fl6, flags, ip6_pol_route_input);
940 void ip6_route_input(struct sk_buff *skb)
942 const struct ipv6hdr *iph = ipv6_hdr(skb);
943 struct net *net = dev_net(skb->dev);
944 int flags = RT6_LOOKUP_F_HAS_SADDR;
945 struct flowi6 fl6 = {
946 .flowi6_iif = skb->dev->ifindex,
949 .flowlabel = (* (__be32 *) iph) & IPV6_FLOWINFO_MASK,
950 .flowi6_mark = skb->mark,
951 .flowi6_proto = iph->nexthdr,
954 skb_dst_set(skb, ip6_route_input_lookup(net, skb->dev, &fl6, flags));
957 static struct rt6_info *ip6_pol_route_output(struct net *net, struct fib6_table *table,
958 struct flowi6 *fl6, int flags)
960 return ip6_pol_route(net, table, fl6->flowi6_oif, fl6, flags);
963 struct dst_entry * ip6_route_output(struct net *net, const struct sock *sk,
968 fl6->flowi6_iif = net->loopback_dev->ifindex;
970 if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl6->daddr))
971 flags |= RT6_LOOKUP_F_IFACE;
973 if (!ipv6_addr_any(&fl6->saddr))
974 flags |= RT6_LOOKUP_F_HAS_SADDR;
976 flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs);
978 return fib6_rule_lookup(net, fl6, flags, ip6_pol_route_output);
981 EXPORT_SYMBOL(ip6_route_output);
983 struct dst_entry *ip6_blackhole_route(struct net *net, struct dst_entry *dst_orig)
985 struct rt6_info *rt, *ort = (struct rt6_info *) dst_orig;
986 struct dst_entry *new = NULL;
988 rt = dst_alloc(&ip6_dst_blackhole_ops, ort->dst.dev, 1, DST_OBSOLETE_NONE, 0);
992 memset(new + 1, 0, sizeof(*rt) - sizeof(*new));
993 rt6_init_peer(rt, net->ipv6.peers);
996 new->input = dst_discard;
997 new->output = dst_discard;
999 if (dst_metrics_read_only(&ort->dst))
1000 new->_metrics = ort->dst._metrics;
1002 dst_copy_metrics(new, &ort->dst);
1003 rt->rt6i_idev = ort->rt6i_idev;
1005 in6_dev_hold(rt->rt6i_idev);
1007 rt->rt6i_gateway = ort->rt6i_gateway;
1008 rt->rt6i_flags = ort->rt6i_flags;
1009 rt6_clean_expires(rt);
1010 rt->rt6i_metric = 0;
1012 memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key));
1013 #ifdef CONFIG_IPV6_SUBTREES
1014 memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key));
1020 dst_release(dst_orig);
1021 return new ? new : ERR_PTR(-ENOMEM);
1025 * Destination cache support functions
1028 static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie)
1030 struct rt6_info *rt;
1032 rt = (struct rt6_info *) dst;
1034 if (rt->rt6i_node && (rt->rt6i_node->fn_sernum == cookie)) {
1035 if (rt->rt6i_peer_genid != rt6_peer_genid()) {
1036 if (!rt6_has_peer(rt))
1037 rt6_bind_peer(rt, 0);
1038 rt->rt6i_peer_genid = rt6_peer_genid();
1045 static struct dst_entry *ip6_negative_advice(struct dst_entry *dst)
1047 struct rt6_info *rt = (struct rt6_info *) dst;
1050 if (rt->rt6i_flags & RTF_CACHE) {
1051 if (rt6_check_expired(rt)) {
1063 static void ip6_link_failure(struct sk_buff *skb)
1065 struct rt6_info *rt;
1067 icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0);
1069 rt = (struct rt6_info *) skb_dst(skb);
1071 if (rt->rt6i_flags & RTF_CACHE)
1072 rt6_update_expires(rt, 0);
1073 else if (rt->rt6i_node && (rt->rt6i_flags & RTF_DEFAULT))
1074 rt->rt6i_node->fn_sernum = -1;
1078 static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk,
1079 struct sk_buff *skb, u32 mtu)
1081 struct rt6_info *rt6 = (struct rt6_info*)dst;
1084 if (mtu < dst_mtu(dst) && rt6->rt6i_dst.plen == 128) {
1085 struct net *net = dev_net(dst->dev);
1087 rt6->rt6i_flags |= RTF_MODIFIED;
1088 if (mtu < IPV6_MIN_MTU) {
1089 u32 features = dst_metric(dst, RTAX_FEATURES);
1091 features |= RTAX_FEATURE_ALLFRAG;
1092 dst_metric_set(dst, RTAX_FEATURES, features);
1094 dst_metric_set(dst, RTAX_MTU, mtu);
1095 rt6_update_expires(rt6, net->ipv6.sysctl.ip6_rt_mtu_expires);
1099 void ip6_update_pmtu(struct sk_buff *skb, struct net *net, __be32 mtu,
1102 const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data;
1103 struct dst_entry *dst;
1106 memset(&fl6, 0, sizeof(fl6));
1107 fl6.flowi6_oif = oif;
1108 fl6.flowi6_mark = mark;
1109 fl6.flowi6_flags = 0;
1110 fl6.daddr = iph->daddr;
1111 fl6.saddr = iph->saddr;
1112 fl6.flowlabel = (*(__be32 *) iph) & IPV6_FLOWINFO_MASK;
1114 dst = ip6_route_output(net, NULL, &fl6);
1116 ip6_rt_update_pmtu(dst, NULL, skb, ntohl(mtu));
1119 EXPORT_SYMBOL_GPL(ip6_update_pmtu);
1121 void ip6_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, __be32 mtu)
1123 ip6_update_pmtu(skb, sock_net(sk), mtu,
1124 sk->sk_bound_dev_if, sk->sk_mark);
1126 EXPORT_SYMBOL_GPL(ip6_sk_update_pmtu);
1128 void ip6_redirect(struct sk_buff *skb, struct net *net, int oif, u32 mark)
1130 const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data;
1131 struct dst_entry *dst;
1134 memset(&fl6, 0, sizeof(fl6));
1135 fl6.flowi6_oif = oif;
1136 fl6.flowi6_mark = mark;
1137 fl6.flowi6_flags = 0;
1138 fl6.daddr = iph->daddr;
1139 fl6.saddr = iph->saddr;
1140 fl6.flowlabel = (*(__be32 *) iph) & IPV6_FLOWINFO_MASK;
1142 dst = ip6_route_output(net, NULL, &fl6);
1144 rt6_do_redirect(dst, NULL, skb);
1147 EXPORT_SYMBOL_GPL(ip6_redirect);
1149 void ip6_sk_redirect(struct sk_buff *skb, struct sock *sk)
1151 ip6_redirect(skb, sock_net(sk), sk->sk_bound_dev_if, sk->sk_mark);
1153 EXPORT_SYMBOL_GPL(ip6_sk_redirect);
1155 static unsigned int ip6_default_advmss(const struct dst_entry *dst)
1157 struct net_device *dev = dst->dev;
1158 unsigned int mtu = dst_mtu(dst);
1159 struct net *net = dev_net(dev);
1161 mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr);
1163 if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss)
1164 mtu = net->ipv6.sysctl.ip6_rt_min_advmss;
1167 * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and
1168 * corresponding MSS is IPV6_MAXPLEN - tcp_header_size.
1169 * IPV6_MAXPLEN is also valid and means: "any MSS,
1170 * rely only on pmtu discovery"
1172 if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr))
1177 static unsigned int ip6_mtu(const struct dst_entry *dst)
1179 struct inet6_dev *idev;
1180 unsigned int mtu = dst_metric_raw(dst, RTAX_MTU);
1188 idev = __in6_dev_get(dst->dev);
1190 mtu = idev->cnf.mtu6;
1196 static struct dst_entry *icmp6_dst_gc_list;
1197 static DEFINE_SPINLOCK(icmp6_dst_lock);
1199 struct dst_entry *icmp6_dst_alloc(struct net_device *dev,
1200 struct neighbour *neigh,
1203 struct dst_entry *dst;
1204 struct rt6_info *rt;
1205 struct inet6_dev *idev = in6_dev_get(dev);
1206 struct net *net = dev_net(dev);
1208 if (unlikely(!idev))
1209 return ERR_PTR(-ENODEV);
1211 rt = ip6_dst_alloc(net, dev, 0, NULL);
1212 if (unlikely(!rt)) {
1214 dst = ERR_PTR(-ENOMEM);
1221 neigh = ip6_neigh_lookup(&rt->dst, NULL, &fl6->daddr);
1222 if (IS_ERR(neigh)) {
1225 return ERR_CAST(neigh);
1229 rt->dst.flags |= DST_HOST;
1230 rt->dst.output = ip6_output;
1232 atomic_set(&rt->dst.__refcnt, 1);
1233 rt->rt6i_dst.addr = fl6->daddr;
1234 rt->rt6i_dst.plen = 128;
1235 rt->rt6i_idev = idev;
1236 dst_metric_set(&rt->dst, RTAX_HOPLIMIT, 255);
1238 spin_lock_bh(&icmp6_dst_lock);
1239 rt->dst.next = icmp6_dst_gc_list;
1240 icmp6_dst_gc_list = &rt->dst;
1241 spin_unlock_bh(&icmp6_dst_lock);
1243 fib6_force_start_gc(net);
1245 dst = xfrm_lookup(net, &rt->dst, flowi6_to_flowi(fl6), NULL, 0);
1251 int icmp6_dst_gc(void)
1253 struct dst_entry *dst, **pprev;
1256 spin_lock_bh(&icmp6_dst_lock);
1257 pprev = &icmp6_dst_gc_list;
1259 while ((dst = *pprev) != NULL) {
1260 if (!atomic_read(&dst->__refcnt)) {
1269 spin_unlock_bh(&icmp6_dst_lock);
1274 static void icmp6_clean_all(int (*func)(struct rt6_info *rt, void *arg),
1277 struct dst_entry *dst, **pprev;
1279 spin_lock_bh(&icmp6_dst_lock);
1280 pprev = &icmp6_dst_gc_list;
1281 while ((dst = *pprev) != NULL) {
1282 struct rt6_info *rt = (struct rt6_info *) dst;
1283 if (func(rt, arg)) {
1290 spin_unlock_bh(&icmp6_dst_lock);
1293 static int ip6_dst_gc(struct dst_ops *ops)
1295 unsigned long now = jiffies;
1296 struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops);
1297 int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval;
1298 int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size;
1299 int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity;
1300 int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout;
1301 unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc;
1304 entries = dst_entries_get_fast(ops);
1305 if (time_after(rt_last_gc + rt_min_interval, now) &&
1306 entries <= rt_max_size)
1309 net->ipv6.ip6_rt_gc_expire++;
1310 fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net);
1311 net->ipv6.ip6_rt_last_gc = now;
1312 entries = dst_entries_get_slow(ops);
1313 if (entries < ops->gc_thresh)
1314 net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1;
1316 net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity;
1317 return entries > rt_max_size;
1320 /* Clean host part of a prefix. Not necessary in radix tree,
1321 but results in cleaner routing tables.
1323 Remove it only when all the things will work!
1326 int ip6_dst_hoplimit(struct dst_entry *dst)
1328 int hoplimit = dst_metric_raw(dst, RTAX_HOPLIMIT);
1329 if (hoplimit == 0) {
1330 struct net_device *dev = dst->dev;
1331 struct inet6_dev *idev;
1334 idev = __in6_dev_get(dev);
1336 hoplimit = idev->cnf.hop_limit;
1338 hoplimit = dev_net(dev)->ipv6.devconf_all->hop_limit;
1343 EXPORT_SYMBOL(ip6_dst_hoplimit);
1349 int ip6_route_add(struct fib6_config *cfg)
1352 struct net *net = cfg->fc_nlinfo.nl_net;
1353 struct rt6_info *rt = NULL;
1354 struct net_device *dev = NULL;
1355 struct inet6_dev *idev = NULL;
1356 struct fib6_table *table;
1359 if (cfg->fc_dst_len > 128 || cfg->fc_src_len > 128)
1361 #ifndef CONFIG_IPV6_SUBTREES
1362 if (cfg->fc_src_len)
1365 if (cfg->fc_ifindex) {
1367 dev = dev_get_by_index(net, cfg->fc_ifindex);
1370 idev = in6_dev_get(dev);
1375 if (cfg->fc_metric == 0)
1376 cfg->fc_metric = IP6_RT_PRIO_USER;
1379 if (cfg->fc_nlinfo.nlh &&
1380 !(cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_CREATE)) {
1381 table = fib6_get_table(net, cfg->fc_table);
1383 pr_warn("NLM_F_CREATE should be specified when creating new route\n");
1384 table = fib6_new_table(net, cfg->fc_table);
1387 table = fib6_new_table(net, cfg->fc_table);
1393 rt = ip6_dst_alloc(net, NULL, DST_NOCOUNT, table);
1400 rt->dst.obsolete = -1;
1402 if (cfg->fc_flags & RTF_EXPIRES)
1403 rt6_set_expires(rt, jiffies +
1404 clock_t_to_jiffies(cfg->fc_expires));
1406 rt6_clean_expires(rt);
1408 if (cfg->fc_protocol == RTPROT_UNSPEC)
1409 cfg->fc_protocol = RTPROT_BOOT;
1410 rt->rt6i_protocol = cfg->fc_protocol;
1412 addr_type = ipv6_addr_type(&cfg->fc_dst);
1414 if (addr_type & IPV6_ADDR_MULTICAST)
1415 rt->dst.input = ip6_mc_input;
1416 else if (cfg->fc_flags & RTF_LOCAL)
1417 rt->dst.input = ip6_input;
1419 rt->dst.input = ip6_forward;
1421 rt->dst.output = ip6_output;
1423 ipv6_addr_prefix(&rt->rt6i_dst.addr, &cfg->fc_dst, cfg->fc_dst_len);
1424 rt->rt6i_dst.plen = cfg->fc_dst_len;
1425 if (rt->rt6i_dst.plen == 128)
1426 rt->dst.flags |= DST_HOST;
1428 if (!(rt->dst.flags & DST_HOST) && cfg->fc_mx) {
1429 u32 *metrics = kzalloc(sizeof(u32) * RTAX_MAX, GFP_KERNEL);
1434 dst_init_metrics(&rt->dst, metrics, 0);
1436 #ifdef CONFIG_IPV6_SUBTREES
1437 ipv6_addr_prefix(&rt->rt6i_src.addr, &cfg->fc_src, cfg->fc_src_len);
1438 rt->rt6i_src.plen = cfg->fc_src_len;
1441 rt->rt6i_metric = cfg->fc_metric;
1443 /* We cannot add true routes via loopback here,
1444 they would result in kernel looping; promote them to reject routes
1446 if ((cfg->fc_flags & RTF_REJECT) ||
1447 (dev && (dev->flags & IFF_LOOPBACK) &&
1448 !(addr_type & IPV6_ADDR_LOOPBACK) &&
1449 !(cfg->fc_flags & RTF_LOCAL))) {
1450 /* hold loopback dev/idev if we haven't done so. */
1451 if (dev != net->loopback_dev) {
1456 dev = net->loopback_dev;
1458 idev = in6_dev_get(dev);
1464 rt->dst.output = ip6_pkt_discard_out;
1465 rt->dst.input = ip6_pkt_discard;
1466 rt->dst.error = -ENETUNREACH;
1467 rt->rt6i_flags = RTF_REJECT|RTF_NONEXTHOP;
1471 if (cfg->fc_flags & RTF_GATEWAY) {
1472 const struct in6_addr *gw_addr;
1475 gw_addr = &cfg->fc_gateway;
1476 rt->rt6i_gateway = *gw_addr;
1477 gwa_type = ipv6_addr_type(gw_addr);
1479 if (gwa_type != (IPV6_ADDR_LINKLOCAL|IPV6_ADDR_UNICAST)) {
1480 struct rt6_info *grt;
1482 /* IPv6 strictly inhibits using not link-local
1483 addresses as nexthop address.
1484 Otherwise, router will not able to send redirects.
1485 It is very good, but in some (rare!) circumstances
1486 (SIT, PtP, NBMA NOARP links) it is handy to allow
1487 some exceptions. --ANK
1490 if (!(gwa_type & IPV6_ADDR_UNICAST))
1493 grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, 1);
1495 err = -EHOSTUNREACH;
1499 if (dev != grt->dst.dev) {
1500 dst_release(&grt->dst);
1505 idev = grt->rt6i_idev;
1507 in6_dev_hold(grt->rt6i_idev);
1509 if (!(grt->rt6i_flags & RTF_GATEWAY))
1511 dst_release(&grt->dst);
1517 if (!dev || (dev->flags & IFF_LOOPBACK))
1525 if (!ipv6_addr_any(&cfg->fc_prefsrc)) {
1526 if (!ipv6_chk_addr(net, &cfg->fc_prefsrc, dev, 0)) {
1530 rt->rt6i_prefsrc.addr = cfg->fc_prefsrc;
1531 rt->rt6i_prefsrc.plen = 128;
1533 rt->rt6i_prefsrc.plen = 0;
1535 if (cfg->fc_flags & (RTF_GATEWAY | RTF_NONEXTHOP)) {
1536 err = rt6_bind_neighbour(rt, dev);
1541 rt->rt6i_flags = cfg->fc_flags;
1548 nla_for_each_attr(nla, cfg->fc_mx, cfg->fc_mx_len, remaining) {
1549 int type = nla_type(nla);
1552 if (type > RTAX_MAX) {
1557 dst_metric_set(&rt->dst, type, nla_get_u32(nla));
1563 rt->rt6i_idev = idev;
1564 rt->rt6i_table = table;
1566 cfg->fc_nlinfo.nl_net = dev_net(dev);
1568 return __ip6_ins_rt(rt, &cfg->fc_nlinfo);
1580 static int __ip6_del_rt(struct rt6_info *rt, struct nl_info *info)
1583 struct fib6_table *table;
1584 struct net *net = dev_net(rt->dst.dev);
1586 if (rt == net->ipv6.ip6_null_entry)
1589 table = rt->rt6i_table;
1590 write_lock_bh(&table->tb6_lock);
1592 err = fib6_del(rt, info);
1593 dst_release(&rt->dst);
1595 write_unlock_bh(&table->tb6_lock);
1600 int ip6_del_rt(struct rt6_info *rt)
1602 struct nl_info info = {
1603 .nl_net = dev_net(rt->dst.dev),
1605 return __ip6_del_rt(rt, &info);
1608 static int ip6_route_del(struct fib6_config *cfg)
1610 struct fib6_table *table;
1611 struct fib6_node *fn;
1612 struct rt6_info *rt;
1615 table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table);
1619 read_lock_bh(&table->tb6_lock);
1621 fn = fib6_locate(&table->tb6_root,
1622 &cfg->fc_dst, cfg->fc_dst_len,
1623 &cfg->fc_src, cfg->fc_src_len);
1626 for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1627 if (cfg->fc_ifindex &&
1629 rt->dst.dev->ifindex != cfg->fc_ifindex))
1631 if (cfg->fc_flags & RTF_GATEWAY &&
1632 !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway))
1634 if (cfg->fc_metric && cfg->fc_metric != rt->rt6i_metric)
1637 read_unlock_bh(&table->tb6_lock);
1639 return __ip6_del_rt(rt, &cfg->fc_nlinfo);
1642 read_unlock_bh(&table->tb6_lock);
1647 static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, struct sk_buff *skb)
1649 struct net *net = dev_net(skb->dev);
1650 struct netevent_redirect netevent;
1651 struct rt6_info *rt, *nrt = NULL;
1652 const struct in6_addr *target;
1653 struct ndisc_options ndopts;
1654 const struct in6_addr *dest;
1655 struct neighbour *old_neigh;
1656 struct inet6_dev *in6_dev;
1657 struct neighbour *neigh;
1658 struct icmp6hdr *icmph;
1659 int optlen, on_link;
1662 optlen = skb->tail - skb->transport_header;
1663 optlen -= sizeof(struct icmp6hdr) + 2 * sizeof(struct in6_addr);
1666 net_dbg_ratelimited("rt6_do_redirect: packet too short\n");
1670 icmph = icmp6_hdr(skb);
1671 target = (const struct in6_addr *) (icmph + 1);
1674 if (ipv6_addr_is_multicast(dest)) {
1675 net_dbg_ratelimited("rt6_do_redirect: destination address is multicast\n");
1680 if (ipv6_addr_equal(dest, target)) {
1682 } else if (ipv6_addr_type(target) !=
1683 (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) {
1684 net_dbg_ratelimited("rt6_do_redirect: target address is not link-local unicast\n");
1688 in6_dev = __in6_dev_get(skb->dev);
1691 if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_redirects)
1695 * The IP source address of the Redirect MUST be the same as the current
1696 * first-hop router for the specified ICMP Destination Address.
1699 if (!ndisc_parse_options((u8*)(dest + 1), optlen, &ndopts)) {
1700 net_dbg_ratelimited("rt6_redirect: invalid ND options\n");
1705 if (ndopts.nd_opts_tgt_lladdr) {
1706 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr,
1709 net_dbg_ratelimited("rt6_redirect: invalid link-layer address length\n");
1714 rt = (struct rt6_info *) dst;
1715 if (rt == net->ipv6.ip6_null_entry) {
1716 net_dbg_ratelimited("rt6_redirect: source isn't a valid nexthop for redirect target\n");
1720 /* Redirect received -> path was valid.
1721 * Look, redirects are sent only in response to data packets,
1722 * so that this nexthop apparently is reachable. --ANK
1724 dst_confirm(&rt->dst);
1726 neigh = __neigh_lookup(&nd_tbl, target, skb->dev, 1);
1730 /* Duplicate redirect: silently ignore. */
1732 if (neigh == old_neigh)
1736 * We have finally decided to accept it.
1739 neigh_update(neigh, lladdr, NUD_STALE,
1740 NEIGH_UPDATE_F_WEAK_OVERRIDE|
1741 NEIGH_UPDATE_F_OVERRIDE|
1742 (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
1743 NEIGH_UPDATE_F_ISROUTER))
1746 nrt = ip6_rt_copy(rt, dest);
1750 nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE;
1752 nrt->rt6i_flags &= ~RTF_GATEWAY;
1754 nrt->rt6i_gateway = *(struct in6_addr *)neigh->primary_key;
1755 nrt->n = neigh_clone(neigh);
1757 if (ip6_ins_rt(nrt))
1760 netevent.old = &rt->dst;
1761 netevent.old_neigh = old_neigh;
1762 netevent.new = &nrt->dst;
1763 netevent.new_neigh = neigh;
1764 netevent.daddr = dest;
1765 call_netevent_notifiers(NETEVENT_REDIRECT, &netevent);
1767 if (rt->rt6i_flags & RTF_CACHE) {
1768 rt = (struct rt6_info *) dst_clone(&rt->dst);
1773 neigh_release(neigh);
1777 * Misc support functions
1780 static struct rt6_info *ip6_rt_copy(struct rt6_info *ort,
1781 const struct in6_addr *dest)
1783 struct net *net = dev_net(ort->dst.dev);
1784 struct rt6_info *rt = ip6_dst_alloc(net, ort->dst.dev, 0,
1788 rt->dst.input = ort->dst.input;
1789 rt->dst.output = ort->dst.output;
1790 rt->dst.flags |= DST_HOST;
1792 rt->rt6i_dst.addr = *dest;
1793 rt->rt6i_dst.plen = 128;
1794 dst_copy_metrics(&rt->dst, &ort->dst);
1795 rt->dst.error = ort->dst.error;
1796 rt->rt6i_idev = ort->rt6i_idev;
1798 in6_dev_hold(rt->rt6i_idev);
1799 rt->dst.lastuse = jiffies;
1801 rt->rt6i_gateway = ort->rt6i_gateway;
1802 rt->rt6i_flags = ort->rt6i_flags;
1803 if ((ort->rt6i_flags & (RTF_DEFAULT | RTF_ADDRCONF)) ==
1804 (RTF_DEFAULT | RTF_ADDRCONF))
1805 rt6_set_from(rt, ort);
1807 rt6_clean_expires(rt);
1808 rt->rt6i_metric = 0;
1810 #ifdef CONFIG_IPV6_SUBTREES
1811 memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key));
1813 memcpy(&rt->rt6i_prefsrc, &ort->rt6i_prefsrc, sizeof(struct rt6key));
1814 rt->rt6i_table = ort->rt6i_table;
1819 #ifdef CONFIG_IPV6_ROUTE_INFO
1820 static struct rt6_info *rt6_get_route_info(struct net *net,
1821 const struct in6_addr *prefix, int prefixlen,
1822 const struct in6_addr *gwaddr, int ifindex)
1824 struct fib6_node *fn;
1825 struct rt6_info *rt = NULL;
1826 struct fib6_table *table;
1828 table = fib6_get_table(net, RT6_TABLE_INFO);
1832 write_lock_bh(&table->tb6_lock);
1833 fn = fib6_locate(&table->tb6_root, prefix ,prefixlen, NULL, 0);
1837 for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1838 if (rt->dst.dev->ifindex != ifindex)
1840 if ((rt->rt6i_flags & (RTF_ROUTEINFO|RTF_GATEWAY)) != (RTF_ROUTEINFO|RTF_GATEWAY))
1842 if (!ipv6_addr_equal(&rt->rt6i_gateway, gwaddr))
1848 write_unlock_bh(&table->tb6_lock);
1852 static struct rt6_info *rt6_add_route_info(struct net *net,
1853 const struct in6_addr *prefix, int prefixlen,
1854 const struct in6_addr *gwaddr, int ifindex,
1857 struct fib6_config cfg = {
1858 .fc_table = RT6_TABLE_INFO,
1859 .fc_metric = IP6_RT_PRIO_USER,
1860 .fc_ifindex = ifindex,
1861 .fc_dst_len = prefixlen,
1862 .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO |
1863 RTF_UP | RTF_PREF(pref),
1865 .fc_nlinfo.nlh = NULL,
1866 .fc_nlinfo.nl_net = net,
1869 cfg.fc_dst = *prefix;
1870 cfg.fc_gateway = *gwaddr;
1872 /* We should treat it as a default route if prefix length is 0. */
1874 cfg.fc_flags |= RTF_DEFAULT;
1876 ip6_route_add(&cfg);
1878 return rt6_get_route_info(net, prefix, prefixlen, gwaddr, ifindex);
1882 struct rt6_info *rt6_get_dflt_router(const struct in6_addr *addr, struct net_device *dev)
1884 struct rt6_info *rt;
1885 struct fib6_table *table;
1887 table = fib6_get_table(dev_net(dev), RT6_TABLE_DFLT);
1891 write_lock_bh(&table->tb6_lock);
1892 for (rt = table->tb6_root.leaf; rt; rt=rt->dst.rt6_next) {
1893 if (dev == rt->dst.dev &&
1894 ((rt->rt6i_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) &&
1895 ipv6_addr_equal(&rt->rt6i_gateway, addr))
1900 write_unlock_bh(&table->tb6_lock);
1904 struct rt6_info *rt6_add_dflt_router(const struct in6_addr *gwaddr,
1905 struct net_device *dev,
1908 struct fib6_config cfg = {
1909 .fc_table = RT6_TABLE_DFLT,
1910 .fc_metric = IP6_RT_PRIO_USER,
1911 .fc_ifindex = dev->ifindex,
1912 .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT |
1913 RTF_UP | RTF_EXPIRES | RTF_PREF(pref),
1915 .fc_nlinfo.nlh = NULL,
1916 .fc_nlinfo.nl_net = dev_net(dev),
1919 cfg.fc_gateway = *gwaddr;
1921 ip6_route_add(&cfg);
1923 return rt6_get_dflt_router(gwaddr, dev);
1926 void rt6_purge_dflt_routers(struct net *net)
1928 struct rt6_info *rt;
1929 struct fib6_table *table;
1931 /* NOTE: Keep consistent with rt6_get_dflt_router */
1932 table = fib6_get_table(net, RT6_TABLE_DFLT);
1937 read_lock_bh(&table->tb6_lock);
1938 for (rt = table->tb6_root.leaf; rt; rt = rt->dst.rt6_next) {
1939 if (rt->rt6i_flags & (RTF_DEFAULT | RTF_ADDRCONF)) {
1941 read_unlock_bh(&table->tb6_lock);
1946 read_unlock_bh(&table->tb6_lock);
1949 static void rtmsg_to_fib6_config(struct net *net,
1950 struct in6_rtmsg *rtmsg,
1951 struct fib6_config *cfg)
1953 memset(cfg, 0, sizeof(*cfg));
1955 cfg->fc_table = RT6_TABLE_MAIN;
1956 cfg->fc_ifindex = rtmsg->rtmsg_ifindex;
1957 cfg->fc_metric = rtmsg->rtmsg_metric;
1958 cfg->fc_expires = rtmsg->rtmsg_info;
1959 cfg->fc_dst_len = rtmsg->rtmsg_dst_len;
1960 cfg->fc_src_len = rtmsg->rtmsg_src_len;
1961 cfg->fc_flags = rtmsg->rtmsg_flags;
1963 cfg->fc_nlinfo.nl_net = net;
1965 cfg->fc_dst = rtmsg->rtmsg_dst;
1966 cfg->fc_src = rtmsg->rtmsg_src;
1967 cfg->fc_gateway = rtmsg->rtmsg_gateway;
1970 int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg)
1972 struct fib6_config cfg;
1973 struct in6_rtmsg rtmsg;
1977 case SIOCADDRT: /* Add a route */
1978 case SIOCDELRT: /* Delete a route */
1979 if (!capable(CAP_NET_ADMIN))
1981 err = copy_from_user(&rtmsg, arg,
1982 sizeof(struct in6_rtmsg));
1986 rtmsg_to_fib6_config(net, &rtmsg, &cfg);
1991 err = ip6_route_add(&cfg);
1994 err = ip6_route_del(&cfg);
2008 * Drop the packet on the floor
2011 static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes)
2014 struct dst_entry *dst = skb_dst(skb);
2015 switch (ipstats_mib_noroutes) {
2016 case IPSTATS_MIB_INNOROUTES:
2017 type = ipv6_addr_type(&ipv6_hdr(skb)->daddr);
2018 if (type == IPV6_ADDR_ANY) {
2019 IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst),
2020 IPSTATS_MIB_INADDRERRORS);
2024 case IPSTATS_MIB_OUTNOROUTES:
2025 IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst),
2026 ipstats_mib_noroutes);
2029 icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0);
2034 static int ip6_pkt_discard(struct sk_buff *skb)
2036 return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES);
2039 static int ip6_pkt_discard_out(struct sk_buff *skb)
2041 skb->dev = skb_dst(skb)->dev;
2042 return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES);
2045 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2047 static int ip6_pkt_prohibit(struct sk_buff *skb)
2049 return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES);
2052 static int ip6_pkt_prohibit_out(struct sk_buff *skb)
2054 skb->dev = skb_dst(skb)->dev;
2055 return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES);
2061 * Allocate a dst for local (unicast / anycast) address.
2064 struct rt6_info *addrconf_dst_alloc(struct inet6_dev *idev,
2065 const struct in6_addr *addr,
2068 struct net *net = dev_net(idev->dev);
2069 struct rt6_info *rt = ip6_dst_alloc(net, net->loopback_dev, 0, NULL);
2073 net_warn_ratelimited("Maximum number of routes reached, consider increasing route/max_size\n");
2074 return ERR_PTR(-ENOMEM);
2079 rt->dst.flags |= DST_HOST;
2080 rt->dst.input = ip6_input;
2081 rt->dst.output = ip6_output;
2082 rt->rt6i_idev = idev;
2083 rt->dst.obsolete = -1;
2085 rt->rt6i_flags = RTF_UP | RTF_NONEXTHOP;
2087 rt->rt6i_flags |= RTF_ANYCAST;
2089 rt->rt6i_flags |= RTF_LOCAL;
2090 err = rt6_bind_neighbour(rt, rt->dst.dev);
2093 return ERR_PTR(err);
2096 rt->rt6i_dst.addr = *addr;
2097 rt->rt6i_dst.plen = 128;
2098 rt->rt6i_table = fib6_get_table(net, RT6_TABLE_LOCAL);
2100 atomic_set(&rt->dst.__refcnt, 1);
2105 int ip6_route_get_saddr(struct net *net,
2106 struct rt6_info *rt,
2107 const struct in6_addr *daddr,
2109 struct in6_addr *saddr)
2111 struct inet6_dev *idev = ip6_dst_idev((struct dst_entry*)rt);
2113 if (rt->rt6i_prefsrc.plen)
2114 *saddr = rt->rt6i_prefsrc.addr;
2116 err = ipv6_dev_get_saddr(net, idev ? idev->dev : NULL,
2117 daddr, prefs, saddr);
2121 /* remove deleted ip from prefsrc entries */
2122 struct arg_dev_net_ip {
2123 struct net_device *dev;
2125 struct in6_addr *addr;
2128 static int fib6_remove_prefsrc(struct rt6_info *rt, void *arg)
2130 struct net_device *dev = ((struct arg_dev_net_ip *)arg)->dev;
2131 struct net *net = ((struct arg_dev_net_ip *)arg)->net;
2132 struct in6_addr *addr = ((struct arg_dev_net_ip *)arg)->addr;
2134 if (((void *)rt->dst.dev == dev || !dev) &&
2135 rt != net->ipv6.ip6_null_entry &&
2136 ipv6_addr_equal(addr, &rt->rt6i_prefsrc.addr)) {
2137 /* remove prefsrc entry */
2138 rt->rt6i_prefsrc.plen = 0;
2143 void rt6_remove_prefsrc(struct inet6_ifaddr *ifp)
2145 struct net *net = dev_net(ifp->idev->dev);
2146 struct arg_dev_net_ip adni = {
2147 .dev = ifp->idev->dev,
2151 fib6_clean_all(net, fib6_remove_prefsrc, 0, &adni);
2154 struct arg_dev_net {
2155 struct net_device *dev;
2159 static int fib6_ifdown(struct rt6_info *rt, void *arg)
2161 const struct arg_dev_net *adn = arg;
2162 const struct net_device *dev = adn->dev;
2164 if ((rt->dst.dev == dev || !dev) &&
2165 rt != adn->net->ipv6.ip6_null_entry)
2171 void rt6_ifdown(struct net *net, struct net_device *dev)
2173 struct arg_dev_net adn = {
2178 fib6_clean_all(net, fib6_ifdown, 0, &adn);
2179 icmp6_clean_all(fib6_ifdown, &adn);
2182 struct rt6_mtu_change_arg {
2183 struct net_device *dev;
2187 static int rt6_mtu_change_route(struct rt6_info *rt, void *p_arg)
2189 struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg;
2190 struct inet6_dev *idev;
2192 /* In IPv6 pmtu discovery is not optional,
2193 so that RTAX_MTU lock cannot disable it.
2194 We still use this lock to block changes
2195 caused by addrconf/ndisc.
2198 idev = __in6_dev_get(arg->dev);
2202 /* For administrative MTU increase, there is no way to discover
2203 IPv6 PMTU increase, so PMTU increase should be updated here.
2204 Since RFC 1981 doesn't include administrative MTU increase
2205 update PMTU increase is a MUST. (i.e. jumbo frame)
2208 If new MTU is less than route PMTU, this new MTU will be the
2209 lowest MTU in the path, update the route PMTU to reflect PMTU
2210 decreases; if new MTU is greater than route PMTU, and the
2211 old MTU is the lowest MTU in the path, update the route PMTU
2212 to reflect the increase. In this case if the other nodes' MTU
2213 also have the lowest MTU, TOO BIG MESSAGE will be lead to
2216 if (rt->dst.dev == arg->dev &&
2217 !dst_metric_locked(&rt->dst, RTAX_MTU) &&
2218 (dst_mtu(&rt->dst) >= arg->mtu ||
2219 (dst_mtu(&rt->dst) < arg->mtu &&
2220 dst_mtu(&rt->dst) == idev->cnf.mtu6))) {
2221 dst_metric_set(&rt->dst, RTAX_MTU, arg->mtu);
2226 void rt6_mtu_change(struct net_device *dev, unsigned int mtu)
2228 struct rt6_mtu_change_arg arg = {
2233 fib6_clean_all(dev_net(dev), rt6_mtu_change_route, 0, &arg);
2236 static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = {
2237 [RTA_GATEWAY] = { .len = sizeof(struct in6_addr) },
2238 [RTA_OIF] = { .type = NLA_U32 },
2239 [RTA_IIF] = { .type = NLA_U32 },
2240 [RTA_PRIORITY] = { .type = NLA_U32 },
2241 [RTA_METRICS] = { .type = NLA_NESTED },
2244 static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh,
2245 struct fib6_config *cfg)
2248 struct nlattr *tb[RTA_MAX+1];
2251 err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy);
2256 rtm = nlmsg_data(nlh);
2257 memset(cfg, 0, sizeof(*cfg));
2259 cfg->fc_table = rtm->rtm_table;
2260 cfg->fc_dst_len = rtm->rtm_dst_len;
2261 cfg->fc_src_len = rtm->rtm_src_len;
2262 cfg->fc_flags = RTF_UP;
2263 cfg->fc_protocol = rtm->rtm_protocol;
2265 if (rtm->rtm_type == RTN_UNREACHABLE)
2266 cfg->fc_flags |= RTF_REJECT;
2268 if (rtm->rtm_type == RTN_LOCAL)
2269 cfg->fc_flags |= RTF_LOCAL;
2271 cfg->fc_nlinfo.pid = NETLINK_CB(skb).pid;
2272 cfg->fc_nlinfo.nlh = nlh;
2273 cfg->fc_nlinfo.nl_net = sock_net(skb->sk);
2275 if (tb[RTA_GATEWAY]) {
2276 nla_memcpy(&cfg->fc_gateway, tb[RTA_GATEWAY], 16);
2277 cfg->fc_flags |= RTF_GATEWAY;
2281 int plen = (rtm->rtm_dst_len + 7) >> 3;
2283 if (nla_len(tb[RTA_DST]) < plen)
2286 nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen);
2290 int plen = (rtm->rtm_src_len + 7) >> 3;
2292 if (nla_len(tb[RTA_SRC]) < plen)
2295 nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen);
2298 if (tb[RTA_PREFSRC])
2299 nla_memcpy(&cfg->fc_prefsrc, tb[RTA_PREFSRC], 16);
2302 cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]);
2304 if (tb[RTA_PRIORITY])
2305 cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]);
2307 if (tb[RTA_METRICS]) {
2308 cfg->fc_mx = nla_data(tb[RTA_METRICS]);
2309 cfg->fc_mx_len = nla_len(tb[RTA_METRICS]);
2313 cfg->fc_table = nla_get_u32(tb[RTA_TABLE]);
2320 static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr* nlh, void *arg)
2322 struct fib6_config cfg;
2325 err = rtm_to_fib6_config(skb, nlh, &cfg);
2329 return ip6_route_del(&cfg);
2332 static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr* nlh, void *arg)
2334 struct fib6_config cfg;
2337 err = rtm_to_fib6_config(skb, nlh, &cfg);
2341 return ip6_route_add(&cfg);
2344 static inline size_t rt6_nlmsg_size(void)
2346 return NLMSG_ALIGN(sizeof(struct rtmsg))
2347 + nla_total_size(16) /* RTA_SRC */
2348 + nla_total_size(16) /* RTA_DST */
2349 + nla_total_size(16) /* RTA_GATEWAY */
2350 + nla_total_size(16) /* RTA_PREFSRC */
2351 + nla_total_size(4) /* RTA_TABLE */
2352 + nla_total_size(4) /* RTA_IIF */
2353 + nla_total_size(4) /* RTA_OIF */
2354 + nla_total_size(4) /* RTA_PRIORITY */
2355 + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */
2356 + nla_total_size(sizeof(struct rta_cacheinfo));
2359 static int rt6_fill_node(struct net *net,
2360 struct sk_buff *skb, struct rt6_info *rt,
2361 struct in6_addr *dst, struct in6_addr *src,
2362 int iif, int type, u32 pid, u32 seq,
2363 int prefix, int nowait, unsigned int flags)
2366 struct nlmsghdr *nlh;
2369 struct neighbour *n;
2371 if (prefix) { /* user wants prefix routes only */
2372 if (!(rt->rt6i_flags & RTF_PREFIX_RT)) {
2373 /* success since this is not a prefix route */
2378 nlh = nlmsg_put(skb, pid, seq, type, sizeof(*rtm), flags);
2382 rtm = nlmsg_data(nlh);
2383 rtm->rtm_family = AF_INET6;
2384 rtm->rtm_dst_len = rt->rt6i_dst.plen;
2385 rtm->rtm_src_len = rt->rt6i_src.plen;
2388 table = rt->rt6i_table->tb6_id;
2390 table = RT6_TABLE_UNSPEC;
2391 rtm->rtm_table = table;
2392 if (nla_put_u32(skb, RTA_TABLE, table))
2393 goto nla_put_failure;
2394 if (rt->rt6i_flags & RTF_REJECT)
2395 rtm->rtm_type = RTN_UNREACHABLE;
2396 else if (rt->rt6i_flags & RTF_LOCAL)
2397 rtm->rtm_type = RTN_LOCAL;
2398 else if (rt->dst.dev && (rt->dst.dev->flags & IFF_LOOPBACK))
2399 rtm->rtm_type = RTN_LOCAL;
2401 rtm->rtm_type = RTN_UNICAST;
2403 rtm->rtm_scope = RT_SCOPE_UNIVERSE;
2404 rtm->rtm_protocol = rt->rt6i_protocol;
2405 if (rt->rt6i_flags & RTF_DYNAMIC)
2406 rtm->rtm_protocol = RTPROT_REDIRECT;
2407 else if (rt->rt6i_flags & RTF_ADDRCONF) {
2408 if (rt->rt6i_flags & (RTF_DEFAULT | RTF_ROUTEINFO))
2409 rtm->rtm_protocol = RTPROT_RA;
2411 rtm->rtm_protocol = RTPROT_KERNEL;
2414 if (rt->rt6i_flags & RTF_CACHE)
2415 rtm->rtm_flags |= RTM_F_CLONED;
2418 if (nla_put(skb, RTA_DST, 16, dst))
2419 goto nla_put_failure;
2420 rtm->rtm_dst_len = 128;
2421 } else if (rtm->rtm_dst_len)
2422 if (nla_put(skb, RTA_DST, 16, &rt->rt6i_dst.addr))
2423 goto nla_put_failure;
2424 #ifdef CONFIG_IPV6_SUBTREES
2426 if (nla_put(skb, RTA_SRC, 16, src))
2427 goto nla_put_failure;
2428 rtm->rtm_src_len = 128;
2429 } else if (rtm->rtm_src_len &&
2430 nla_put(skb, RTA_SRC, 16, &rt->rt6i_src.addr))
2431 goto nla_put_failure;
2434 #ifdef CONFIG_IPV6_MROUTE
2435 if (ipv6_addr_is_multicast(&rt->rt6i_dst.addr)) {
2436 int err = ip6mr_get_route(net, skb, rtm, nowait);
2441 goto nla_put_failure;
2443 if (err == -EMSGSIZE)
2444 goto nla_put_failure;
2449 if (nla_put_u32(skb, RTA_IIF, iif))
2450 goto nla_put_failure;
2452 struct in6_addr saddr_buf;
2453 if (ip6_route_get_saddr(net, rt, dst, 0, &saddr_buf) == 0 &&
2454 nla_put(skb, RTA_PREFSRC, 16, &saddr_buf))
2455 goto nla_put_failure;
2458 if (rt->rt6i_prefsrc.plen) {
2459 struct in6_addr saddr_buf;
2460 saddr_buf = rt->rt6i_prefsrc.addr;
2461 if (nla_put(skb, RTA_PREFSRC, 16, &saddr_buf))
2462 goto nla_put_failure;
2465 if (rtnetlink_put_metrics(skb, dst_metrics_ptr(&rt->dst)) < 0)
2466 goto nla_put_failure;
2471 if (nla_put(skb, RTA_GATEWAY, 16, &n->primary_key) < 0) {
2473 goto nla_put_failure;
2479 nla_put_u32(skb, RTA_OIF, rt->dst.dev->ifindex))
2480 goto nla_put_failure;
2481 if (nla_put_u32(skb, RTA_PRIORITY, rt->rt6i_metric))
2482 goto nla_put_failure;
2484 expires = (rt->rt6i_flags & RTF_EXPIRES) ? rt->dst.expires - jiffies : 0;
2486 if (rtnl_put_cacheinfo(skb, &rt->dst, 0, expires, rt->dst.error) < 0)
2487 goto nla_put_failure;
2489 return nlmsg_end(skb, nlh);
2492 nlmsg_cancel(skb, nlh);
2496 int rt6_dump_route(struct rt6_info *rt, void *p_arg)
2498 struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg;
2501 if (nlmsg_len(arg->cb->nlh) >= sizeof(struct rtmsg)) {
2502 struct rtmsg *rtm = nlmsg_data(arg->cb->nlh);
2503 prefix = (rtm->rtm_flags & RTM_F_PREFIX) != 0;
2507 return rt6_fill_node(arg->net,
2508 arg->skb, rt, NULL, NULL, 0, RTM_NEWROUTE,
2509 NETLINK_CB(arg->cb->skb).pid, arg->cb->nlh->nlmsg_seq,
2510 prefix, 0, NLM_F_MULTI);
2513 static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr* nlh, void *arg)
2515 struct net *net = sock_net(in_skb->sk);
2516 struct nlattr *tb[RTA_MAX+1];
2517 struct rt6_info *rt;
2518 struct sk_buff *skb;
2521 int err, iif = 0, oif = 0;
2523 err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy);
2528 memset(&fl6, 0, sizeof(fl6));
2531 if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr))
2534 fl6.saddr = *(struct in6_addr *)nla_data(tb[RTA_SRC]);
2538 if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr))
2541 fl6.daddr = *(struct in6_addr *)nla_data(tb[RTA_DST]);
2545 iif = nla_get_u32(tb[RTA_IIF]);
2548 oif = nla_get_u32(tb[RTA_OIF]);
2551 struct net_device *dev;
2554 dev = __dev_get_by_index(net, iif);
2560 fl6.flowi6_iif = iif;
2562 if (!ipv6_addr_any(&fl6.saddr))
2563 flags |= RT6_LOOKUP_F_HAS_SADDR;
2565 rt = (struct rt6_info *)ip6_route_input_lookup(net, dev, &fl6,
2568 fl6.flowi6_oif = oif;
2570 rt = (struct rt6_info *)ip6_route_output(net, NULL, &fl6);
2573 skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL);
2575 dst_release(&rt->dst);
2580 /* Reserve room for dummy headers, this skb can pass
2581 through good chunk of routing engine.
2583 skb_reset_mac_header(skb);
2584 skb_reserve(skb, MAX_HEADER + sizeof(struct ipv6hdr));
2586 skb_dst_set(skb, &rt->dst);
2588 err = rt6_fill_node(net, skb, rt, &fl6.daddr, &fl6.saddr, iif,
2589 RTM_NEWROUTE, NETLINK_CB(in_skb).pid,
2590 nlh->nlmsg_seq, 0, 0, 0);
2596 err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).pid);
2601 void inet6_rt_notify(int event, struct rt6_info *rt, struct nl_info *info)
2603 struct sk_buff *skb;
2604 struct net *net = info->nl_net;
2609 seq = info->nlh ? info->nlh->nlmsg_seq : 0;
2611 skb = nlmsg_new(rt6_nlmsg_size(), gfp_any());
2615 err = rt6_fill_node(net, skb, rt, NULL, NULL, 0,
2616 event, info->pid, seq, 0, 0, 0);
2618 /* -EMSGSIZE implies BUG in rt6_nlmsg_size() */
2619 WARN_ON(err == -EMSGSIZE);
2623 rtnl_notify(skb, net, info->pid, RTNLGRP_IPV6_ROUTE,
2624 info->nlh, gfp_any());
2628 rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err);
2631 static int ip6_route_dev_notify(struct notifier_block *this,
2632 unsigned long event, void *data)
2634 struct net_device *dev = (struct net_device *)data;
2635 struct net *net = dev_net(dev);
2637 if (event == NETDEV_REGISTER && (dev->flags & IFF_LOOPBACK)) {
2638 net->ipv6.ip6_null_entry->dst.dev = dev;
2639 net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev);
2640 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2641 net->ipv6.ip6_prohibit_entry->dst.dev = dev;
2642 net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev);
2643 net->ipv6.ip6_blk_hole_entry->dst.dev = dev;
2644 net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev);
2655 #ifdef CONFIG_PROC_FS
2666 static int rt6_info_route(struct rt6_info *rt, void *p_arg)
2668 struct seq_file *m = p_arg;
2669 struct neighbour *n;
2671 seq_printf(m, "%pi6 %02x ", &rt->rt6i_dst.addr, rt->rt6i_dst.plen);
2673 #ifdef CONFIG_IPV6_SUBTREES
2674 seq_printf(m, "%pi6 %02x ", &rt->rt6i_src.addr, rt->rt6i_src.plen);
2676 seq_puts(m, "00000000000000000000000000000000 00 ");
2681 seq_printf(m, "%pi6", n->primary_key);
2683 seq_puts(m, "00000000000000000000000000000000");
2686 seq_printf(m, " %08x %08x %08x %08x %8s\n",
2687 rt->rt6i_metric, atomic_read(&rt->dst.__refcnt),
2688 rt->dst.__use, rt->rt6i_flags,
2689 rt->dst.dev ? rt->dst.dev->name : "");
2693 static int ipv6_route_show(struct seq_file *m, void *v)
2695 struct net *net = (struct net *)m->private;
2696 fib6_clean_all_ro(net, rt6_info_route, 0, m);
2700 static int ipv6_route_open(struct inode *inode, struct file *file)
2702 return single_open_net(inode, file, ipv6_route_show);
2705 static const struct file_operations ipv6_route_proc_fops = {
2706 .owner = THIS_MODULE,
2707 .open = ipv6_route_open,
2709 .llseek = seq_lseek,
2710 .release = single_release_net,
2713 static int rt6_stats_seq_show(struct seq_file *seq, void *v)
2715 struct net *net = (struct net *)seq->private;
2716 seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n",
2717 net->ipv6.rt6_stats->fib_nodes,
2718 net->ipv6.rt6_stats->fib_route_nodes,
2719 net->ipv6.rt6_stats->fib_rt_alloc,
2720 net->ipv6.rt6_stats->fib_rt_entries,
2721 net->ipv6.rt6_stats->fib_rt_cache,
2722 dst_entries_get_slow(&net->ipv6.ip6_dst_ops),
2723 net->ipv6.rt6_stats->fib_discarded_routes);
2728 static int rt6_stats_seq_open(struct inode *inode, struct file *file)
2730 return single_open_net(inode, file, rt6_stats_seq_show);
2733 static const struct file_operations rt6_stats_seq_fops = {
2734 .owner = THIS_MODULE,
2735 .open = rt6_stats_seq_open,
2737 .llseek = seq_lseek,
2738 .release = single_release_net,
2740 #endif /* CONFIG_PROC_FS */
2742 #ifdef CONFIG_SYSCTL
2745 int ipv6_sysctl_rtcache_flush(ctl_table *ctl, int write,
2746 void __user *buffer, size_t *lenp, loff_t *ppos)
2753 net = (struct net *)ctl->extra1;
2754 delay = net->ipv6.sysctl.flush_delay;
2755 proc_dointvec(ctl, write, buffer, lenp, ppos);
2756 fib6_run_gc(delay <= 0 ? ~0UL : (unsigned long)delay, net);
2760 ctl_table ipv6_route_table_template[] = {
2762 .procname = "flush",
2763 .data = &init_net.ipv6.sysctl.flush_delay,
2764 .maxlen = sizeof(int),
2766 .proc_handler = ipv6_sysctl_rtcache_flush
2769 .procname = "gc_thresh",
2770 .data = &ip6_dst_ops_template.gc_thresh,
2771 .maxlen = sizeof(int),
2773 .proc_handler = proc_dointvec,
2776 .procname = "max_size",
2777 .data = &init_net.ipv6.sysctl.ip6_rt_max_size,
2778 .maxlen = sizeof(int),
2780 .proc_handler = proc_dointvec,
2783 .procname = "gc_min_interval",
2784 .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval,
2785 .maxlen = sizeof(int),
2787 .proc_handler = proc_dointvec_jiffies,
2790 .procname = "gc_timeout",
2791 .data = &init_net.ipv6.sysctl.ip6_rt_gc_timeout,
2792 .maxlen = sizeof(int),
2794 .proc_handler = proc_dointvec_jiffies,
2797 .procname = "gc_interval",
2798 .data = &init_net.ipv6.sysctl.ip6_rt_gc_interval,
2799 .maxlen = sizeof(int),
2801 .proc_handler = proc_dointvec_jiffies,
2804 .procname = "gc_elasticity",
2805 .data = &init_net.ipv6.sysctl.ip6_rt_gc_elasticity,
2806 .maxlen = sizeof(int),
2808 .proc_handler = proc_dointvec,
2811 .procname = "mtu_expires",
2812 .data = &init_net.ipv6.sysctl.ip6_rt_mtu_expires,
2813 .maxlen = sizeof(int),
2815 .proc_handler = proc_dointvec_jiffies,
2818 .procname = "min_adv_mss",
2819 .data = &init_net.ipv6.sysctl.ip6_rt_min_advmss,
2820 .maxlen = sizeof(int),
2822 .proc_handler = proc_dointvec,
2825 .procname = "gc_min_interval_ms",
2826 .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval,
2827 .maxlen = sizeof(int),
2829 .proc_handler = proc_dointvec_ms_jiffies,
2834 struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net)
2836 struct ctl_table *table;
2838 table = kmemdup(ipv6_route_table_template,
2839 sizeof(ipv6_route_table_template),
2843 table[0].data = &net->ipv6.sysctl.flush_delay;
2844 table[0].extra1 = net;
2845 table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh;
2846 table[2].data = &net->ipv6.sysctl.ip6_rt_max_size;
2847 table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval;
2848 table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout;
2849 table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval;
2850 table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity;
2851 table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires;
2852 table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss;
2853 table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval;
2860 static int __net_init ip6_route_net_init(struct net *net)
2864 memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template,
2865 sizeof(net->ipv6.ip6_dst_ops));
2867 if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0)
2868 goto out_ip6_dst_ops;
2870 net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template,
2871 sizeof(*net->ipv6.ip6_null_entry),
2873 if (!net->ipv6.ip6_null_entry)
2874 goto out_ip6_dst_entries;
2875 net->ipv6.ip6_null_entry->dst.path =
2876 (struct dst_entry *)net->ipv6.ip6_null_entry;
2877 net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops;
2878 dst_init_metrics(&net->ipv6.ip6_null_entry->dst,
2879 ip6_template_metrics, true);
2881 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2882 net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template,
2883 sizeof(*net->ipv6.ip6_prohibit_entry),
2885 if (!net->ipv6.ip6_prohibit_entry)
2886 goto out_ip6_null_entry;
2887 net->ipv6.ip6_prohibit_entry->dst.path =
2888 (struct dst_entry *)net->ipv6.ip6_prohibit_entry;
2889 net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops;
2890 dst_init_metrics(&net->ipv6.ip6_prohibit_entry->dst,
2891 ip6_template_metrics, true);
2893 net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template,
2894 sizeof(*net->ipv6.ip6_blk_hole_entry),
2896 if (!net->ipv6.ip6_blk_hole_entry)
2897 goto out_ip6_prohibit_entry;
2898 net->ipv6.ip6_blk_hole_entry->dst.path =
2899 (struct dst_entry *)net->ipv6.ip6_blk_hole_entry;
2900 net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops;
2901 dst_init_metrics(&net->ipv6.ip6_blk_hole_entry->dst,
2902 ip6_template_metrics, true);
2905 net->ipv6.sysctl.flush_delay = 0;
2906 net->ipv6.sysctl.ip6_rt_max_size = 4096;
2907 net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2;
2908 net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ;
2909 net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ;
2910 net->ipv6.sysctl.ip6_rt_gc_elasticity = 9;
2911 net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ;
2912 net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40;
2914 net->ipv6.ip6_rt_gc_expire = 30*HZ;
2920 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2921 out_ip6_prohibit_entry:
2922 kfree(net->ipv6.ip6_prohibit_entry);
2924 kfree(net->ipv6.ip6_null_entry);
2926 out_ip6_dst_entries:
2927 dst_entries_destroy(&net->ipv6.ip6_dst_ops);
2932 static void __net_exit ip6_route_net_exit(struct net *net)
2934 kfree(net->ipv6.ip6_null_entry);
2935 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2936 kfree(net->ipv6.ip6_prohibit_entry);
2937 kfree(net->ipv6.ip6_blk_hole_entry);
2939 dst_entries_destroy(&net->ipv6.ip6_dst_ops);
2942 static int __net_init ip6_route_net_init_late(struct net *net)
2944 #ifdef CONFIG_PROC_FS
2945 proc_net_fops_create(net, "ipv6_route", 0, &ipv6_route_proc_fops);
2946 proc_net_fops_create(net, "rt6_stats", S_IRUGO, &rt6_stats_seq_fops);
2951 static void __net_exit ip6_route_net_exit_late(struct net *net)
2953 #ifdef CONFIG_PROC_FS
2954 proc_net_remove(net, "ipv6_route");
2955 proc_net_remove(net, "rt6_stats");
2959 static struct pernet_operations ip6_route_net_ops = {
2960 .init = ip6_route_net_init,
2961 .exit = ip6_route_net_exit,
2964 static int __net_init ipv6_inetpeer_init(struct net *net)
2966 struct inet_peer_base *bp = kmalloc(sizeof(*bp), GFP_KERNEL);
2970 inet_peer_base_init(bp);
2971 net->ipv6.peers = bp;
2975 static void __net_exit ipv6_inetpeer_exit(struct net *net)
2977 struct inet_peer_base *bp = net->ipv6.peers;
2979 net->ipv6.peers = NULL;
2980 inetpeer_invalidate_tree(bp);
2984 static struct pernet_operations ipv6_inetpeer_ops = {
2985 .init = ipv6_inetpeer_init,
2986 .exit = ipv6_inetpeer_exit,
2989 static struct pernet_operations ip6_route_net_late_ops = {
2990 .init = ip6_route_net_init_late,
2991 .exit = ip6_route_net_exit_late,
2994 static struct notifier_block ip6_route_dev_notifier = {
2995 .notifier_call = ip6_route_dev_notify,
2999 int __init ip6_route_init(void)
3004 ip6_dst_ops_template.kmem_cachep =
3005 kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0,
3006 SLAB_HWCACHE_ALIGN, NULL);
3007 if (!ip6_dst_ops_template.kmem_cachep)
3010 ret = dst_entries_init(&ip6_dst_blackhole_ops);
3012 goto out_kmem_cache;
3014 ret = register_pernet_subsys(&ipv6_inetpeer_ops);
3016 goto out_dst_entries;
3018 ret = register_pernet_subsys(&ip6_route_net_ops);
3020 goto out_register_inetpeer;
3022 ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep;
3024 /* Registering of the loopback is done before this portion of code,
3025 * the loopback reference in rt6_info will not be taken, do it
3026 * manually for init_net */
3027 init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev;
3028 init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
3029 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
3030 init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev;
3031 init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
3032 init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev;
3033 init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
3037 goto out_register_subsys;
3043 ret = fib6_rules_init();
3047 ret = register_pernet_subsys(&ip6_route_net_late_ops);
3049 goto fib6_rules_init;
3052 if (__rtnl_register(PF_INET6, RTM_NEWROUTE, inet6_rtm_newroute, NULL, NULL) ||
3053 __rtnl_register(PF_INET6, RTM_DELROUTE, inet6_rtm_delroute, NULL, NULL) ||
3054 __rtnl_register(PF_INET6, RTM_GETROUTE, inet6_rtm_getroute, NULL, NULL))
3055 goto out_register_late_subsys;
3057 ret = register_netdevice_notifier(&ip6_route_dev_notifier);
3059 goto out_register_late_subsys;
3064 out_register_late_subsys:
3065 unregister_pernet_subsys(&ip6_route_net_late_ops);
3067 fib6_rules_cleanup();
3072 out_register_subsys:
3073 unregister_pernet_subsys(&ip6_route_net_ops);
3074 out_register_inetpeer:
3075 unregister_pernet_subsys(&ipv6_inetpeer_ops);
3077 dst_entries_destroy(&ip6_dst_blackhole_ops);
3079 kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep);
3083 void ip6_route_cleanup(void)
3085 unregister_netdevice_notifier(&ip6_route_dev_notifier);
3086 unregister_pernet_subsys(&ip6_route_net_late_ops);
3087 fib6_rules_cleanup();
3090 unregister_pernet_subsys(&ipv6_inetpeer_ops);
3091 unregister_pernet_subsys(&ip6_route_net_ops);
3092 dst_entries_destroy(&ip6_dst_blackhole_ops);
3093 kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep);
projects / karo-tx-linux.git / blob