net/ipv6/route.c at v2.6.37-rc5

tjh.dev / kernel
fork
Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel os linux
fork
kernel / net / ipv6 / route.c
at v2.6.37-rc5 2842 lines 70 kB view raw
wrap content
   1/*
   2 *	Linux INET6 implementation
   3 *	FIB front-end.
   4 *
   5 *	Authors:
   6 *	Pedro Roque		<roque@di.fc.ul.pt>
   7 *
   8 *	This program is free software; you can redistribute it and/or
   9 *      modify it under the terms of the GNU General Public License
  10 *      as published by the Free Software Foundation; either version
  11 *      2 of the License, or (at your option) any later version.
  12 */
  13
  14/*	Changes:
  15 *
  16 *	YOSHIFUJI Hideaki @USAGI
  17 *		reworked default router selection.
  18 *		- respect outgoing interface
  19 *		- select from (probably) reachable routers (i.e.
  20 *		routers in REACHABLE, STALE, DELAY or PROBE states).
  21 *		- always select the same router if it is (probably)
  22 *		reachable.  otherwise, round-robin the list.
  23 *	Ville Nuorvala
  24 *		Fixed routing subtrees.
  25 */
  26
  27#include <linux/capability.h>
  28#include <linux/errno.h>
  29#include <linux/types.h>
  30#include <linux/times.h>
  31#include <linux/socket.h>
  32#include <linux/sockios.h>
  33#include <linux/net.h>
  34#include <linux/route.h>
  35#include <linux/netdevice.h>
  36#include <linux/in6.h>
  37#include <linux/mroute6.h>
  38#include <linux/init.h>
  39#include <linux/if_arp.h>
  40#include <linux/proc_fs.h>
  41#include <linux/seq_file.h>
  42#include <linux/nsproxy.h>
  43#include <linux/slab.h>
  44#include <net/net_namespace.h>
  45#include <net/snmp.h>
  46#include <net/ipv6.h>
  47#include <net/ip6_fib.h>
  48#include <net/ip6_route.h>
  49#include <net/ndisc.h>
  50#include <net/addrconf.h>
  51#include <net/tcp.h>
  52#include <linux/rtnetlink.h>
  53#include <net/dst.h>
  54#include <net/xfrm.h>
  55#include <net/netevent.h>
  56#include <net/netlink.h>
  57
  58#include <asm/uaccess.h>
  59
  60#ifdef CONFIG_SYSCTL
  61#include <linux/sysctl.h>
  62#endif
  63
  64/* Set to 3 to get tracing. */
  65#define RT6_DEBUG 2
  66
  67#if RT6_DEBUG >= 3
  68#define RDBG(x) printk x
  69#define RT6_TRACE(x...) printk(KERN_DEBUG x)
  70#else
  71#define RDBG(x)
  72#define RT6_TRACE(x...) do { ; } while (0)
  73#endif
  74
  75#define CLONE_OFFLINK_ROUTE 0
  76
  77static struct rt6_info * ip6_rt_copy(struct rt6_info *ort);
  78static struct dst_entry	*ip6_dst_check(struct dst_entry *dst, u32 cookie);
  79static struct dst_entry *ip6_negative_advice(struct dst_entry *);
  80static void		ip6_dst_destroy(struct dst_entry *);
  81static void		ip6_dst_ifdown(struct dst_entry *,
  82				       struct net_device *dev, int how);
  83static int		 ip6_dst_gc(struct dst_ops *ops);
  84
  85static int		ip6_pkt_discard(struct sk_buff *skb);
  86static int		ip6_pkt_discard_out(struct sk_buff *skb);
  87static void		ip6_link_failure(struct sk_buff *skb);
  88static void		ip6_rt_update_pmtu(struct dst_entry *dst, u32 mtu);
  89
  90#ifdef CONFIG_IPV6_ROUTE_INFO
  91static struct rt6_info *rt6_add_route_info(struct net *net,
  92					   struct in6_addr *prefix, int prefixlen,
  93					   struct in6_addr *gwaddr, int ifindex,
  94					   unsigned pref);
  95static struct rt6_info *rt6_get_route_info(struct net *net,
  96					   struct in6_addr *prefix, int prefixlen,
  97					   struct in6_addr *gwaddr, int ifindex);
  98#endif
  99
 100static struct dst_ops ip6_dst_ops_template = {
 101	.family			=	AF_INET6,
 102	.protocol		=	cpu_to_be16(ETH_P_IPV6),
 103	.gc			=	ip6_dst_gc,
 104	.gc_thresh		=	1024,
 105	.check			=	ip6_dst_check,
 106	.destroy		=	ip6_dst_destroy,
 107	.ifdown			=	ip6_dst_ifdown,
 108	.negative_advice	=	ip6_negative_advice,
 109	.link_failure		=	ip6_link_failure,
 110	.update_pmtu		=	ip6_rt_update_pmtu,
 111	.local_out		=	__ip6_local_out,
 112};
 113
 114static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, u32 mtu)
 115{
 116}
 117
 118static struct dst_ops ip6_dst_blackhole_ops = {
 119	.family			=	AF_INET6,
 120	.protocol		=	cpu_to_be16(ETH_P_IPV6),
 121	.destroy		=	ip6_dst_destroy,
 122	.check			=	ip6_dst_check,
 123	.update_pmtu		=	ip6_rt_blackhole_update_pmtu,
 124};
 125
 126static struct rt6_info ip6_null_entry_template = {
 127	.dst = {
 128		.__refcnt	= ATOMIC_INIT(1),
 129		.__use		= 1,
 130		.obsolete	= -1,
 131		.error		= -ENETUNREACH,
 132		.metrics	= { [RTAX_HOPLIMIT - 1] = 255, },
 133		.input		= ip6_pkt_discard,
 134		.output		= ip6_pkt_discard_out,
 135	},
 136	.rt6i_flags	= (RTF_REJECT | RTF_NONEXTHOP),
 137	.rt6i_protocol  = RTPROT_KERNEL,
 138	.rt6i_metric	= ~(u32) 0,
 139	.rt6i_ref	= ATOMIC_INIT(1),
 140};
 141
 142#ifdef CONFIG_IPV6_MULTIPLE_TABLES
 143
 144static int ip6_pkt_prohibit(struct sk_buff *skb);
 145static int ip6_pkt_prohibit_out(struct sk_buff *skb);
 146
 147static struct rt6_info ip6_prohibit_entry_template = {
 148	.dst = {
 149		.__refcnt	= ATOMIC_INIT(1),
 150		.__use		= 1,
 151		.obsolete	= -1,
 152		.error		= -EACCES,
 153		.metrics	= { [RTAX_HOPLIMIT - 1] = 255, },
 154		.input		= ip6_pkt_prohibit,
 155		.output		= ip6_pkt_prohibit_out,
 156	},
 157	.rt6i_flags	= (RTF_REJECT | RTF_NONEXTHOP),
 158	.rt6i_protocol  = RTPROT_KERNEL,
 159	.rt6i_metric	= ~(u32) 0,
 160	.rt6i_ref	= ATOMIC_INIT(1),
 161};
 162
 163static struct rt6_info ip6_blk_hole_entry_template = {
 164	.dst = {
 165		.__refcnt	= ATOMIC_INIT(1),
 166		.__use		= 1,
 167		.obsolete	= -1,
 168		.error		= -EINVAL,
 169		.metrics	= { [RTAX_HOPLIMIT - 1] = 255, },
 170		.input		= dst_discard,
 171		.output		= dst_discard,
 172	},
 173	.rt6i_flags	= (RTF_REJECT | RTF_NONEXTHOP),
 174	.rt6i_protocol  = RTPROT_KERNEL,
 175	.rt6i_metric	= ~(u32) 0,
 176	.rt6i_ref	= ATOMIC_INIT(1),
 177};
 178
 179#endif
 180
 181/* allocate dst with ip6_dst_ops */
 182static inline struct rt6_info *ip6_dst_alloc(struct dst_ops *ops)
 183{
 184	return (struct rt6_info *)dst_alloc(ops);
 185}
 186
 187static void ip6_dst_destroy(struct dst_entry *dst)
 188{
 189	struct rt6_info *rt = (struct rt6_info *)dst;
 190	struct inet6_dev *idev = rt->rt6i_idev;
 191
 192	if (idev != NULL) {
 193		rt->rt6i_idev = NULL;
 194		in6_dev_put(idev);
 195	}
 196}
 197
 198static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev,
 199			   int how)
 200{
 201	struct rt6_info *rt = (struct rt6_info *)dst;
 202	struct inet6_dev *idev = rt->rt6i_idev;
 203	struct net_device *loopback_dev =
 204		dev_net(dev)->loopback_dev;
 205
 206	if (dev != loopback_dev && idev != NULL && idev->dev == dev) {
 207		struct inet6_dev *loopback_idev =
 208			in6_dev_get(loopback_dev);
 209		if (loopback_idev != NULL) {
 210			rt->rt6i_idev = loopback_idev;
 211			in6_dev_put(idev);
 212		}
 213	}
 214}
 215
 216static __inline__ int rt6_check_expired(const struct rt6_info *rt)
 217{
 218	return (rt->rt6i_flags & RTF_EXPIRES) &&
 219		time_after(jiffies, rt->rt6i_expires);
 220}
 221
 222static inline int rt6_need_strict(struct in6_addr *daddr)
 223{
 224	return ipv6_addr_type(daddr) &
 225		(IPV6_ADDR_MULTICAST | IPV6_ADDR_LINKLOCAL | IPV6_ADDR_LOOPBACK);
 226}
 227
 228/*
 229 *	Route lookup. Any table->tb6_lock is implied.
 230 */
 231
 232static inline struct rt6_info *rt6_device_match(struct net *net,
 233						    struct rt6_info *rt,
 234						    struct in6_addr *saddr,
 235						    int oif,
 236						    int flags)
 237{
 238	struct rt6_info *local = NULL;
 239	struct rt6_info *sprt;
 240
 241	if (!oif && ipv6_addr_any(saddr))
 242		goto out;
 243
 244	for (sprt = rt; sprt; sprt = sprt->dst.rt6_next) {
 245		struct net_device *dev = sprt->rt6i_dev;
 246
 247		if (oif) {
 248			if (dev->ifindex == oif)
 249				return sprt;
 250			if (dev->flags & IFF_LOOPBACK) {
 251				if (sprt->rt6i_idev == NULL ||
 252				    sprt->rt6i_idev->dev->ifindex != oif) {
 253					if (flags & RT6_LOOKUP_F_IFACE && oif)
 254						continue;
 255					if (local && (!oif ||
 256						      local->rt6i_idev->dev->ifindex == oif))
 257						continue;
 258				}
 259				local = sprt;
 260			}
 261		} else {
 262			if (ipv6_chk_addr(net, saddr, dev,
 263					  flags & RT6_LOOKUP_F_IFACE))
 264				return sprt;
 265		}
 266	}
 267
 268	if (oif) {
 269		if (local)
 270			return local;
 271
 272		if (flags & RT6_LOOKUP_F_IFACE)
 273			return net->ipv6.ip6_null_entry;
 274	}
 275out:
 276	return rt;
 277}
 278
 279#ifdef CONFIG_IPV6_ROUTER_PREF
 280static void rt6_probe(struct rt6_info *rt)
 281{
 282	struct neighbour *neigh = rt ? rt->rt6i_nexthop : NULL;
 283	/*
 284	 * Okay, this does not seem to be appropriate
 285	 * for now, however, we need to check if it
 286	 * is really so; aka Router Reachability Probing.
 287	 *
 288	 * Router Reachability Probe MUST be rate-limited
 289	 * to no more than one per minute.
 290	 */
 291	if (!neigh || (neigh->nud_state & NUD_VALID))
 292		return;
 293	read_lock_bh(&neigh->lock);
 294	if (!(neigh->nud_state & NUD_VALID) &&
 295	    time_after(jiffies, neigh->updated + rt->rt6i_idev->cnf.rtr_probe_interval)) {
 296		struct in6_addr mcaddr;
 297		struct in6_addr *target;
 298
 299		neigh->updated = jiffies;
 300		read_unlock_bh(&neigh->lock);
 301
 302		target = (struct in6_addr *)&neigh->primary_key;
 303		addrconf_addr_solict_mult(target, &mcaddr);
 304		ndisc_send_ns(rt->rt6i_dev, NULL, target, &mcaddr, NULL);
 305	} else
 306		read_unlock_bh(&neigh->lock);
 307}
 308#else
 309static inline void rt6_probe(struct rt6_info *rt)
 310{
 311}
 312#endif
 313
 314/*
 315 * Default Router Selection (RFC 2461 6.3.6)
 316 */
 317static inline int rt6_check_dev(struct rt6_info *rt, int oif)
 318{
 319	struct net_device *dev = rt->rt6i_dev;
 320	if (!oif || dev->ifindex == oif)
 321		return 2;
 322	if ((dev->flags & IFF_LOOPBACK) &&
 323	    rt->rt6i_idev && rt->rt6i_idev->dev->ifindex == oif)
 324		return 1;
 325	return 0;
 326}
 327
 328static inline int rt6_check_neigh(struct rt6_info *rt)
 329{
 330	struct neighbour *neigh = rt->rt6i_nexthop;
 331	int m;
 332	if (rt->rt6i_flags & RTF_NONEXTHOP ||
 333	    !(rt->rt6i_flags & RTF_GATEWAY))
 334		m = 1;
 335	else if (neigh) {
 336		read_lock_bh(&neigh->lock);
 337		if (neigh->nud_state & NUD_VALID)
 338			m = 2;
 339#ifdef CONFIG_IPV6_ROUTER_PREF
 340		else if (neigh->nud_state & NUD_FAILED)
 341			m = 0;
 342#endif
 343		else
 344			m = 1;
 345		read_unlock_bh(&neigh->lock);
 346	} else
 347		m = 0;
 348	return m;
 349}
 350
 351static int rt6_score_route(struct rt6_info *rt, int oif,
 352			   int strict)
 353{
 354	int m, n;
 355
 356	m = rt6_check_dev(rt, oif);
 357	if (!m && (strict & RT6_LOOKUP_F_IFACE))
 358		return -1;
 359#ifdef CONFIG_IPV6_ROUTER_PREF
 360	m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(rt->rt6i_flags)) << 2;
 361#endif
 362	n = rt6_check_neigh(rt);
 363	if (!n && (strict & RT6_LOOKUP_F_REACHABLE))
 364		return -1;
 365	return m;
 366}
 367
 368static struct rt6_info *find_match(struct rt6_info *rt, int oif, int strict,
 369				   int *mpri, struct rt6_info *match)
 370{
 371	int m;
 372
 373	if (rt6_check_expired(rt))
 374		goto out;
 375
 376	m = rt6_score_route(rt, oif, strict);
 377	if (m < 0)
 378		goto out;
 379
 380	if (m > *mpri) {
 381		if (strict & RT6_LOOKUP_F_REACHABLE)
 382			rt6_probe(match);
 383		*mpri = m;
 384		match = rt;
 385	} else if (strict & RT6_LOOKUP_F_REACHABLE) {
 386		rt6_probe(rt);
 387	}
 388
 389out:
 390	return match;
 391}
 392
 393static struct rt6_info *find_rr_leaf(struct fib6_node *fn,
 394				     struct rt6_info *rr_head,
 395				     u32 metric, int oif, int strict)
 396{
 397	struct rt6_info *rt, *match;
 398	int mpri = -1;
 399
 400	match = NULL;
 401	for (rt = rr_head; rt && rt->rt6i_metric == metric;
 402	     rt = rt->dst.rt6_next)
 403		match = find_match(rt, oif, strict, &mpri, match);
 404	for (rt = fn->leaf; rt && rt != rr_head && rt->rt6i_metric == metric;
 405	     rt = rt->dst.rt6_next)
 406		match = find_match(rt, oif, strict, &mpri, match);
 407
 408	return match;
 409}
 410
 411static struct rt6_info *rt6_select(struct fib6_node *fn, int oif, int strict)
 412{
 413	struct rt6_info *match, *rt0;
 414	struct net *net;
 415
 416	RT6_TRACE("%s(fn->leaf=%p, oif=%d)\n",
 417		  __func__, fn->leaf, oif);
 418
 419	rt0 = fn->rr_ptr;
 420	if (!rt0)
 421		fn->rr_ptr = rt0 = fn->leaf;
 422
 423	match = find_rr_leaf(fn, rt0, rt0->rt6i_metric, oif, strict);
 424
 425	if (!match &&
 426	    (strict & RT6_LOOKUP_F_REACHABLE)) {
 427		struct rt6_info *next = rt0->dst.rt6_next;
 428
 429		/* no entries matched; do round-robin */
 430		if (!next || next->rt6i_metric != rt0->rt6i_metric)
 431			next = fn->leaf;
 432
 433		if (next != rt0)
 434			fn->rr_ptr = next;
 435	}
 436
 437	RT6_TRACE("%s() => %p\n",
 438		  __func__, match);
 439
 440	net = dev_net(rt0->rt6i_dev);
 441	return match ? match : net->ipv6.ip6_null_entry;
 442}
 443
 444#ifdef CONFIG_IPV6_ROUTE_INFO
 445int rt6_route_rcv(struct net_device *dev, u8 *opt, int len,
 446		  struct in6_addr *gwaddr)
 447{
 448	struct net *net = dev_net(dev);
 449	struct route_info *rinfo = (struct route_info *) opt;
 450	struct in6_addr prefix_buf, *prefix;
 451	unsigned int pref;
 452	unsigned long lifetime;
 453	struct rt6_info *rt;
 454
 455	if (len < sizeof(struct route_info)) {
 456		return -EINVAL;
 457	}
 458
 459	/* Sanity check for prefix_len and length */
 460	if (rinfo->length > 3) {
 461		return -EINVAL;
 462	} else if (rinfo->prefix_len > 128) {
 463		return -EINVAL;
 464	} else if (rinfo->prefix_len > 64) {
 465		if (rinfo->length < 2) {
 466			return -EINVAL;
 467		}
 468	} else if (rinfo->prefix_len > 0) {
 469		if (rinfo->length < 1) {
 470			return -EINVAL;
 471		}
 472	}
 473
 474	pref = rinfo->route_pref;
 475	if (pref == ICMPV6_ROUTER_PREF_INVALID)
 476		return -EINVAL;
 477
 478	lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ);
 479
 480	if (rinfo->length == 3)
 481		prefix = (struct in6_addr *)rinfo->prefix;
 482	else {
 483		/* this function is safe */
 484		ipv6_addr_prefix(&prefix_buf,
 485				 (struct in6_addr *)rinfo->prefix,
 486				 rinfo->prefix_len);
 487		prefix = &prefix_buf;
 488	}
 489
 490	rt = rt6_get_route_info(net, prefix, rinfo->prefix_len, gwaddr,
 491				dev->ifindex);
 492
 493	if (rt && !lifetime) {
 494		ip6_del_rt(rt);
 495		rt = NULL;
 496	}
 497
 498	if (!rt && lifetime)
 499		rt = rt6_add_route_info(net, prefix, rinfo->prefix_len, gwaddr, dev->ifindex,
 500					pref);
 501	else if (rt)
 502		rt->rt6i_flags = RTF_ROUTEINFO |
 503				 (rt->rt6i_flags & ~RTF_PREF_MASK) | RTF_PREF(pref);
 504
 505	if (rt) {
 506		if (!addrconf_finite_timeout(lifetime)) {
 507			rt->rt6i_flags &= ~RTF_EXPIRES;
 508		} else {
 509			rt->rt6i_expires = jiffies + HZ * lifetime;
 510			rt->rt6i_flags |= RTF_EXPIRES;
 511		}
 512		dst_release(&rt->dst);
 513	}
 514	return 0;
 515}
 516#endif
 517
 518#define BACKTRACK(__net, saddr)			\
 519do { \
 520	if (rt == __net->ipv6.ip6_null_entry) {	\
 521		struct fib6_node *pn; \
 522		while (1) { \
 523			if (fn->fn_flags & RTN_TL_ROOT) \
 524				goto out; \
 525			pn = fn->parent; \
 526			if (FIB6_SUBTREE(pn) && FIB6_SUBTREE(pn) != fn) \
 527				fn = fib6_lookup(FIB6_SUBTREE(pn), NULL, saddr); \
 528			else \
 529				fn = pn; \
 530			if (fn->fn_flags & RTN_RTINFO) \
 531				goto restart; \
 532		} \
 533	} \
 534} while(0)
 535
 536static struct rt6_info *ip6_pol_route_lookup(struct net *net,
 537					     struct fib6_table *table,
 538					     struct flowi *fl, int flags)
 539{
 540	struct fib6_node *fn;
 541	struct rt6_info *rt;
 542
 543	read_lock_bh(&table->tb6_lock);
 544	fn = fib6_lookup(&table->tb6_root, &fl->fl6_dst, &fl->fl6_src);
 545restart:
 546	rt = fn->leaf;
 547	rt = rt6_device_match(net, rt, &fl->fl6_src, fl->oif, flags);
 548	BACKTRACK(net, &fl->fl6_src);
 549out:
 550	dst_use(&rt->dst, jiffies);
 551	read_unlock_bh(&table->tb6_lock);
 552	return rt;
 553
 554}
 555
 556struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr,
 557			    const struct in6_addr *saddr, int oif, int strict)
 558{
 559	struct flowi fl = {
 560		.oif = oif,
 561		.nl_u = {
 562			.ip6_u = {
 563				.daddr = *daddr,
 564			},
 565		},
 566	};
 567	struct dst_entry *dst;
 568	int flags = strict ? RT6_LOOKUP_F_IFACE : 0;
 569
 570	if (saddr) {
 571		memcpy(&fl.fl6_src, saddr, sizeof(*saddr));
 572		flags |= RT6_LOOKUP_F_HAS_SADDR;
 573	}
 574
 575	dst = fib6_rule_lookup(net, &fl, flags, ip6_pol_route_lookup);
 576	if (dst->error == 0)
 577		return (struct rt6_info *) dst;
 578
 579	dst_release(dst);
 580
 581	return NULL;
 582}
 583
 584EXPORT_SYMBOL(rt6_lookup);
 585
 586/* ip6_ins_rt is called with FREE table->tb6_lock.
 587   It takes new route entry, the addition fails by any reason the
 588   route is freed. In any case, if caller does not hold it, it may
 589   be destroyed.
 590 */
 591
 592static int __ip6_ins_rt(struct rt6_info *rt, struct nl_info *info)
 593{
 594	int err;
 595	struct fib6_table *table;
 596
 597	table = rt->rt6i_table;
 598	write_lock_bh(&table->tb6_lock);
 599	err = fib6_add(&table->tb6_root, rt, info);
 600	write_unlock_bh(&table->tb6_lock);
 601
 602	return err;
 603}
 604
 605int ip6_ins_rt(struct rt6_info *rt)
 606{
 607	struct nl_info info = {
 608		.nl_net = dev_net(rt->rt6i_dev),
 609	};
 610	return __ip6_ins_rt(rt, &info);
 611}
 612
 613static struct rt6_info *rt6_alloc_cow(struct rt6_info *ort, struct in6_addr *daddr,
 614				      struct in6_addr *saddr)
 615{
 616	struct rt6_info *rt;
 617
 618	/*
 619	 *	Clone the route.
 620	 */
 621
 622	rt = ip6_rt_copy(ort);
 623
 624	if (rt) {
 625		struct neighbour *neigh;
 626		int attempts = !in_softirq();
 627
 628		if (!(rt->rt6i_flags&RTF_GATEWAY)) {
 629			if (rt->rt6i_dst.plen != 128 &&
 630			    ipv6_addr_equal(&rt->rt6i_dst.addr, daddr))
 631				rt->rt6i_flags |= RTF_ANYCAST;
 632			ipv6_addr_copy(&rt->rt6i_gateway, daddr);
 633		}
 634
 635		ipv6_addr_copy(&rt->rt6i_dst.addr, daddr);
 636		rt->rt6i_dst.plen = 128;
 637		rt->rt6i_flags |= RTF_CACHE;
 638		rt->dst.flags |= DST_HOST;
 639
 640#ifdef CONFIG_IPV6_SUBTREES
 641		if (rt->rt6i_src.plen && saddr) {
 642			ipv6_addr_copy(&rt->rt6i_src.addr, saddr);
 643			rt->rt6i_src.plen = 128;
 644		}
 645#endif
 646
 647	retry:
 648		neigh = ndisc_get_neigh(rt->rt6i_dev, &rt->rt6i_gateway);
 649		if (IS_ERR(neigh)) {
 650			struct net *net = dev_net(rt->rt6i_dev);
 651			int saved_rt_min_interval =
 652				net->ipv6.sysctl.ip6_rt_gc_min_interval;
 653			int saved_rt_elasticity =
 654				net->ipv6.sysctl.ip6_rt_gc_elasticity;
 655
 656			if (attempts-- > 0) {
 657				net->ipv6.sysctl.ip6_rt_gc_elasticity = 1;
 658				net->ipv6.sysctl.ip6_rt_gc_min_interval = 0;
 659
 660				ip6_dst_gc(&net->ipv6.ip6_dst_ops);
 661
 662				net->ipv6.sysctl.ip6_rt_gc_elasticity =
 663					saved_rt_elasticity;
 664				net->ipv6.sysctl.ip6_rt_gc_min_interval =
 665					saved_rt_min_interval;
 666				goto retry;
 667			}
 668
 669			if (net_ratelimit())
 670				printk(KERN_WARNING
 671				       "ipv6: Neighbour table overflow.\n");
 672			dst_free(&rt->dst);
 673			return NULL;
 674		}
 675		rt->rt6i_nexthop = neigh;
 676
 677	}
 678
 679	return rt;
 680}
 681
 682static struct rt6_info *rt6_alloc_clone(struct rt6_info *ort, struct in6_addr *daddr)
 683{
 684	struct rt6_info *rt = ip6_rt_copy(ort);
 685	if (rt) {
 686		ipv6_addr_copy(&rt->rt6i_dst.addr, daddr);
 687		rt->rt6i_dst.plen = 128;
 688		rt->rt6i_flags |= RTF_CACHE;
 689		rt->dst.flags |= DST_HOST;
 690		rt->rt6i_nexthop = neigh_clone(ort->rt6i_nexthop);
 691	}
 692	return rt;
 693}
 694
 695static struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, int oif,
 696				      struct flowi *fl, int flags)
 697{
 698	struct fib6_node *fn;
 699	struct rt6_info *rt, *nrt;
 700	int strict = 0;
 701	int attempts = 3;
 702	int err;
 703	int reachable = net->ipv6.devconf_all->forwarding ? 0 : RT6_LOOKUP_F_REACHABLE;
 704
 705	strict |= flags & RT6_LOOKUP_F_IFACE;
 706
 707relookup:
 708	read_lock_bh(&table->tb6_lock);
 709
 710restart_2:
 711	fn = fib6_lookup(&table->tb6_root, &fl->fl6_dst, &fl->fl6_src);
 712
 713restart:
 714	rt = rt6_select(fn, oif, strict | reachable);
 715
 716	BACKTRACK(net, &fl->fl6_src);
 717	if (rt == net->ipv6.ip6_null_entry ||
 718	    rt->rt6i_flags & RTF_CACHE)
 719		goto out;
 720
 721	dst_hold(&rt->dst);
 722	read_unlock_bh(&table->tb6_lock);
 723
 724	if (!rt->rt6i_nexthop && !(rt->rt6i_flags & RTF_NONEXTHOP))
 725		nrt = rt6_alloc_cow(rt, &fl->fl6_dst, &fl->fl6_src);
 726	else {
 727#if CLONE_OFFLINK_ROUTE
 728		nrt = rt6_alloc_clone(rt, &fl->fl6_dst);
 729#else
 730		goto out2;
 731#endif
 732	}
 733
 734	dst_release(&rt->dst);
 735	rt = nrt ? : net->ipv6.ip6_null_entry;
 736
 737	dst_hold(&rt->dst);
 738	if (nrt) {
 739		err = ip6_ins_rt(nrt);
 740		if (!err)
 741			goto out2;
 742	}
 743
 744	if (--attempts <= 0)
 745		goto out2;
 746
 747	/*
 748	 * Race condition! In the gap, when table->tb6_lock was
 749	 * released someone could insert this route.  Relookup.
 750	 */
 751	dst_release(&rt->dst);
 752	goto relookup;
 753
 754out:
 755	if (reachable) {
 756		reachable = 0;
 757		goto restart_2;
 758	}
 759	dst_hold(&rt->dst);
 760	read_unlock_bh(&table->tb6_lock);
 761out2:
 762	rt->dst.lastuse = jiffies;
 763	rt->dst.__use++;
 764
 765	return rt;
 766}
 767
 768static struct rt6_info *ip6_pol_route_input(struct net *net, struct fib6_table *table,
 769					    struct flowi *fl, int flags)
 770{
 771	return ip6_pol_route(net, table, fl->iif, fl, flags);
 772}
 773
 774void ip6_route_input(struct sk_buff *skb)
 775{
 776	struct ipv6hdr *iph = ipv6_hdr(skb);
 777	struct net *net = dev_net(skb->dev);
 778	int flags = RT6_LOOKUP_F_HAS_SADDR;
 779	struct flowi fl = {
 780		.iif = skb->dev->ifindex,
 781		.nl_u = {
 782			.ip6_u = {
 783				.daddr = iph->daddr,
 784				.saddr = iph->saddr,
 785				.flowlabel = (* (__be32 *) iph)&IPV6_FLOWINFO_MASK,
 786			},
 787		},
 788		.mark = skb->mark,
 789		.proto = iph->nexthdr,
 790	};
 791
 792	if (rt6_need_strict(&iph->daddr) && skb->dev->type != ARPHRD_PIMREG)
 793		flags |= RT6_LOOKUP_F_IFACE;
 794
 795	skb_dst_set(skb, fib6_rule_lookup(net, &fl, flags, ip6_pol_route_input));
 796}
 797
 798static struct rt6_info *ip6_pol_route_output(struct net *net, struct fib6_table *table,
 799					     struct flowi *fl, int flags)
 800{
 801	return ip6_pol_route(net, table, fl->oif, fl, flags);
 802}
 803
 804struct dst_entry * ip6_route_output(struct net *net, struct sock *sk,
 805				    struct flowi *fl)
 806{
 807	int flags = 0;
 808
 809	if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl->fl6_dst))
 810		flags |= RT6_LOOKUP_F_IFACE;
 811
 812	if (!ipv6_addr_any(&fl->fl6_src))
 813		flags |= RT6_LOOKUP_F_HAS_SADDR;
 814	else if (sk)
 815		flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs);
 816
 817	return fib6_rule_lookup(net, fl, flags, ip6_pol_route_output);
 818}
 819
 820EXPORT_SYMBOL(ip6_route_output);
 821
 822int ip6_dst_blackhole(struct sock *sk, struct dst_entry **dstp, struct flowi *fl)
 823{
 824	struct rt6_info *ort = (struct rt6_info *) *dstp;
 825	struct rt6_info *rt = (struct rt6_info *)
 826		dst_alloc(&ip6_dst_blackhole_ops);
 827	struct dst_entry *new = NULL;
 828
 829	if (rt) {
 830		new = &rt->dst;
 831
 832		atomic_set(&new->__refcnt, 1);
 833		new->__use = 1;
 834		new->input = dst_discard;
 835		new->output = dst_discard;
 836
 837		memcpy(new->metrics, ort->dst.metrics, RTAX_MAX*sizeof(u32));
 838		new->dev = ort->dst.dev;
 839		if (new->dev)
 840			dev_hold(new->dev);
 841		rt->rt6i_idev = ort->rt6i_idev;
 842		if (rt->rt6i_idev)
 843			in6_dev_hold(rt->rt6i_idev);
 844		rt->rt6i_expires = 0;
 845
 846		ipv6_addr_copy(&rt->rt6i_gateway, &ort->rt6i_gateway);
 847		rt->rt6i_flags = ort->rt6i_flags & ~RTF_EXPIRES;
 848		rt->rt6i_metric = 0;
 849
 850		memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key));
 851#ifdef CONFIG_IPV6_SUBTREES
 852		memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key));
 853#endif
 854
 855		dst_free(new);
 856	}
 857
 858	dst_release(*dstp);
 859	*dstp = new;
 860	return new ? 0 : -ENOMEM;
 861}
 862EXPORT_SYMBOL_GPL(ip6_dst_blackhole);
 863
 864/*
 865 *	Destination cache support functions
 866 */
 867
 868static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie)
 869{
 870	struct rt6_info *rt;
 871
 872	rt = (struct rt6_info *) dst;
 873
 874	if (rt->rt6i_node && (rt->rt6i_node->fn_sernum == cookie))
 875		return dst;
 876
 877	return NULL;
 878}
 879
 880static struct dst_entry *ip6_negative_advice(struct dst_entry *dst)
 881{
 882	struct rt6_info *rt = (struct rt6_info *) dst;
 883
 884	if (rt) {
 885		if (rt->rt6i_flags & RTF_CACHE) {
 886			if (rt6_check_expired(rt)) {
 887				ip6_del_rt(rt);
 888				dst = NULL;
 889			}
 890		} else {
 891			dst_release(dst);
 892			dst = NULL;
 893		}
 894	}
 895	return dst;
 896}
 897
 898static void ip6_link_failure(struct sk_buff *skb)
 899{
 900	struct rt6_info *rt;
 901
 902	icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0);
 903
 904	rt = (struct rt6_info *) skb_dst(skb);
 905	if (rt) {
 906		if (rt->rt6i_flags&RTF_CACHE) {
 907			dst_set_expires(&rt->dst, 0);
 908			rt->rt6i_flags |= RTF_EXPIRES;
 909		} else if (rt->rt6i_node && (rt->rt6i_flags & RTF_DEFAULT))
 910			rt->rt6i_node->fn_sernum = -1;
 911	}
 912}
 913
 914static void ip6_rt_update_pmtu(struct dst_entry *dst, u32 mtu)
 915{
 916	struct rt6_info *rt6 = (struct rt6_info*)dst;
 917
 918	if (mtu < dst_mtu(dst) && rt6->rt6i_dst.plen == 128) {
 919		rt6->rt6i_flags |= RTF_MODIFIED;
 920		if (mtu < IPV6_MIN_MTU) {
 921			mtu = IPV6_MIN_MTU;
 922			dst->metrics[RTAX_FEATURES-1] |= RTAX_FEATURE_ALLFRAG;
 923		}
 924		dst->metrics[RTAX_MTU-1] = mtu;
 925		call_netevent_notifiers(NETEVENT_PMTU_UPDATE, dst);
 926	}
 927}
 928
 929static int ipv6_get_mtu(struct net_device *dev);
 930
 931static inline unsigned int ipv6_advmss(struct net *net, unsigned int mtu)
 932{
 933	mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr);
 934
 935	if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss)
 936		mtu = net->ipv6.sysctl.ip6_rt_min_advmss;
 937
 938	/*
 939	 * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and
 940	 * corresponding MSS is IPV6_MAXPLEN - tcp_header_size.
 941	 * IPV6_MAXPLEN is also valid and means: "any MSS,
 942	 * rely only on pmtu discovery"
 943	 */
 944	if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr))
 945		mtu = IPV6_MAXPLEN;
 946	return mtu;
 947}
 948
 949static struct dst_entry *icmp6_dst_gc_list;
 950static DEFINE_SPINLOCK(icmp6_dst_lock);
 951
 952struct dst_entry *icmp6_dst_alloc(struct net_device *dev,
 953				  struct neighbour *neigh,
 954				  const struct in6_addr *addr)
 955{
 956	struct rt6_info *rt;
 957	struct inet6_dev *idev = in6_dev_get(dev);
 958	struct net *net = dev_net(dev);
 959
 960	if (unlikely(idev == NULL))
 961		return NULL;
 962
 963	rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops);
 964	if (unlikely(rt == NULL)) {
 965		in6_dev_put(idev);
 966		goto out;
 967	}
 968
 969	dev_hold(dev);
 970	if (neigh)
 971		neigh_hold(neigh);
 972	else {
 973		neigh = ndisc_get_neigh(dev, addr);
 974		if (IS_ERR(neigh))
 975			neigh = NULL;
 976	}
 977
 978	rt->rt6i_dev	  = dev;
 979	rt->rt6i_idev     = idev;
 980	rt->rt6i_nexthop  = neigh;
 981	atomic_set(&rt->dst.__refcnt, 1);
 982	rt->dst.metrics[RTAX_HOPLIMIT-1] = 255;
 983	rt->dst.metrics[RTAX_MTU-1] = ipv6_get_mtu(rt->rt6i_dev);
 984	rt->dst.metrics[RTAX_ADVMSS-1] = ipv6_advmss(net, dst_mtu(&rt->dst));
 985	rt->dst.output  = ip6_output;
 986
 987#if 0	/* there's no chance to use these for ndisc */
 988	rt->dst.flags   = ipv6_addr_type(addr) & IPV6_ADDR_UNICAST
 989				? DST_HOST
 990				: 0;
 991	ipv6_addr_copy(&rt->rt6i_dst.addr, addr);
 992	rt->rt6i_dst.plen = 128;
 993#endif
 994
 995	spin_lock_bh(&icmp6_dst_lock);
 996	rt->dst.next = icmp6_dst_gc_list;
 997	icmp6_dst_gc_list = &rt->dst;
 998	spin_unlock_bh(&icmp6_dst_lock);
 999
1000	fib6_force_start_gc(net);
1001
1002out:
1003	return &rt->dst;
1004}
1005
1006int icmp6_dst_gc(void)
1007{
1008	struct dst_entry *dst, *next, **pprev;
1009	int more = 0;
1010
1011	next = NULL;
1012
1013	spin_lock_bh(&icmp6_dst_lock);
1014	pprev = &icmp6_dst_gc_list;
1015
1016	while ((dst = *pprev) != NULL) {
1017		if (!atomic_read(&dst->__refcnt)) {
1018			*pprev = dst->next;
1019			dst_free(dst);
1020		} else {
1021			pprev = &dst->next;
1022			++more;
1023		}
1024	}
1025
1026	spin_unlock_bh(&icmp6_dst_lock);
1027
1028	return more;
1029}
1030
1031static void icmp6_clean_all(int (*func)(struct rt6_info *rt, void *arg),
1032			    void *arg)
1033{
1034	struct dst_entry *dst, **pprev;
1035
1036	spin_lock_bh(&icmp6_dst_lock);
1037	pprev = &icmp6_dst_gc_list;
1038	while ((dst = *pprev) != NULL) {
1039		struct rt6_info *rt = (struct rt6_info *) dst;
1040		if (func(rt, arg)) {
1041			*pprev = dst->next;
1042			dst_free(dst);
1043		} else {
1044			pprev = &dst->next;
1045		}
1046	}
1047	spin_unlock_bh(&icmp6_dst_lock);
1048}
1049
1050static int ip6_dst_gc(struct dst_ops *ops)
1051{
1052	unsigned long now = jiffies;
1053	struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops);
1054	int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval;
1055	int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size;
1056	int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity;
1057	int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout;
1058	unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc;
1059	int entries;
1060
1061	entries = dst_entries_get_fast(ops);
1062	if (time_after(rt_last_gc + rt_min_interval, now) &&
1063	    entries <= rt_max_size)
1064		goto out;
1065
1066	net->ipv6.ip6_rt_gc_expire++;
1067	fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net);
1068	net->ipv6.ip6_rt_last_gc = now;
1069	entries = dst_entries_get_slow(ops);
1070	if (entries < ops->gc_thresh)
1071		net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1;
1072out:
1073	net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity;
1074	return entries > rt_max_size;
1075}
1076
1077/* Clean host part of a prefix. Not necessary in radix tree,
1078   but results in cleaner routing tables.
1079
1080   Remove it only when all the things will work!
1081 */
1082
1083static int ipv6_get_mtu(struct net_device *dev)
1084{
1085	int mtu = IPV6_MIN_MTU;
1086	struct inet6_dev *idev;
1087
1088	rcu_read_lock();
1089	idev = __in6_dev_get(dev);
1090	if (idev)
1091		mtu = idev->cnf.mtu6;
1092	rcu_read_unlock();
1093	return mtu;
1094}
1095
1096int ip6_dst_hoplimit(struct dst_entry *dst)
1097{
1098	int hoplimit = dst_metric(dst, RTAX_HOPLIMIT);
1099	if (hoplimit < 0) {
1100		struct net_device *dev = dst->dev;
1101		struct inet6_dev *idev;
1102
1103		rcu_read_lock();
1104		idev = __in6_dev_get(dev);
1105		if (idev)
1106			hoplimit = idev->cnf.hop_limit;
1107		else
1108			hoplimit = dev_net(dev)->ipv6.devconf_all->hop_limit;
1109		rcu_read_unlock();
1110	}
1111	return hoplimit;
1112}
1113
1114/*
1115 *
1116 */
1117
1118int ip6_route_add(struct fib6_config *cfg)
1119{
1120	int err;
1121	struct net *net = cfg->fc_nlinfo.nl_net;
1122	struct rt6_info *rt = NULL;
1123	struct net_device *dev = NULL;
1124	struct inet6_dev *idev = NULL;
1125	struct fib6_table *table;
1126	int addr_type;
1127
1128	if (cfg->fc_dst_len > 128 || cfg->fc_src_len > 128)
1129		return -EINVAL;
1130#ifndef CONFIG_IPV6_SUBTREES
1131	if (cfg->fc_src_len)
1132		return -EINVAL;
1133#endif
1134	if (cfg->fc_ifindex) {
1135		err = -ENODEV;
1136		dev = dev_get_by_index(net, cfg->fc_ifindex);
1137		if (!dev)
1138			goto out;
1139		idev = in6_dev_get(dev);
1140		if (!idev)
1141			goto out;
1142	}
1143
1144	if (cfg->fc_metric == 0)
1145		cfg->fc_metric = IP6_RT_PRIO_USER;
1146
1147	table = fib6_new_table(net, cfg->fc_table);
1148	if (table == NULL) {
1149		err = -ENOBUFS;
1150		goto out;
1151	}
1152
1153	rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops);
1154
1155	if (rt == NULL) {
1156		err = -ENOMEM;
1157		goto out;
1158	}
1159
1160	rt->dst.obsolete = -1;
1161	rt->rt6i_expires = (cfg->fc_flags & RTF_EXPIRES) ?
1162				jiffies + clock_t_to_jiffies(cfg->fc_expires) :
1163				0;
1164
1165	if (cfg->fc_protocol == RTPROT_UNSPEC)
1166		cfg->fc_protocol = RTPROT_BOOT;
1167	rt->rt6i_protocol = cfg->fc_protocol;
1168
1169	addr_type = ipv6_addr_type(&cfg->fc_dst);
1170
1171	if (addr_type & IPV6_ADDR_MULTICAST)
1172		rt->dst.input = ip6_mc_input;
1173	else if (cfg->fc_flags & RTF_LOCAL)
1174		rt->dst.input = ip6_input;
1175	else
1176		rt->dst.input = ip6_forward;
1177
1178	rt->dst.output = ip6_output;
1179
1180	ipv6_addr_prefix(&rt->rt6i_dst.addr, &cfg->fc_dst, cfg->fc_dst_len);
1181	rt->rt6i_dst.plen = cfg->fc_dst_len;
1182	if (rt->rt6i_dst.plen == 128)
1183	       rt->dst.flags = DST_HOST;
1184
1185#ifdef CONFIG_IPV6_SUBTREES
1186	ipv6_addr_prefix(&rt->rt6i_src.addr, &cfg->fc_src, cfg->fc_src_len);
1187	rt->rt6i_src.plen = cfg->fc_src_len;
1188#endif
1189
1190	rt->rt6i_metric = cfg->fc_metric;
1191
1192	/* We cannot add true routes via loopback here,
1193	   they would result in kernel looping; promote them to reject routes
1194	 */
1195	if ((cfg->fc_flags & RTF_REJECT) ||
1196	    (dev && (dev->flags&IFF_LOOPBACK) && !(addr_type&IPV6_ADDR_LOOPBACK)
1197					      && !(cfg->fc_flags&RTF_LOCAL))) {
1198		/* hold loopback dev/idev if we haven't done so. */
1199		if (dev != net->loopback_dev) {
1200			if (dev) {
1201				dev_put(dev);
1202				in6_dev_put(idev);
1203			}
1204			dev = net->loopback_dev;
1205			dev_hold(dev);
1206			idev = in6_dev_get(dev);
1207			if (!idev) {
1208				err = -ENODEV;
1209				goto out;
1210			}
1211		}
1212		rt->dst.output = ip6_pkt_discard_out;
1213		rt->dst.input = ip6_pkt_discard;
1214		rt->dst.error = -ENETUNREACH;
1215		rt->rt6i_flags = RTF_REJECT|RTF_NONEXTHOP;
1216		goto install_route;
1217	}
1218
1219	if (cfg->fc_flags & RTF_GATEWAY) {
1220		struct in6_addr *gw_addr;
1221		int gwa_type;
1222
1223		gw_addr = &cfg->fc_gateway;
1224		ipv6_addr_copy(&rt->rt6i_gateway, gw_addr);
1225		gwa_type = ipv6_addr_type(gw_addr);
1226
1227		if (gwa_type != (IPV6_ADDR_LINKLOCAL|IPV6_ADDR_UNICAST)) {
1228			struct rt6_info *grt;
1229
1230			/* IPv6 strictly inhibits using not link-local
1231			   addresses as nexthop address.
1232			   Otherwise, router will not able to send redirects.
1233			   It is very good, but in some (rare!) circumstances
1234			   (SIT, PtP, NBMA NOARP links) it is handy to allow
1235			   some exceptions. --ANK
1236			 */
1237			err = -EINVAL;
1238			if (!(gwa_type&IPV6_ADDR_UNICAST))
1239				goto out;
1240
1241			grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, 1);
1242
1243			err = -EHOSTUNREACH;
1244			if (grt == NULL)
1245				goto out;
1246			if (dev) {
1247				if (dev != grt->rt6i_dev) {
1248					dst_release(&grt->dst);
1249					goto out;
1250				}
1251			} else {
1252				dev = grt->rt6i_dev;
1253				idev = grt->rt6i_idev;
1254				dev_hold(dev);
1255				in6_dev_hold(grt->rt6i_idev);
1256			}
1257			if (!(grt->rt6i_flags&RTF_GATEWAY))
1258				err = 0;
1259			dst_release(&grt->dst);
1260
1261			if (err)
1262				goto out;
1263		}
1264		err = -EINVAL;
1265		if (dev == NULL || (dev->flags&IFF_LOOPBACK))
1266			goto out;
1267	}
1268
1269	err = -ENODEV;
1270	if (dev == NULL)
1271		goto out;
1272
1273	if (cfg->fc_flags & (RTF_GATEWAY | RTF_NONEXTHOP)) {
1274		rt->rt6i_nexthop = __neigh_lookup_errno(&nd_tbl, &rt->rt6i_gateway, dev);
1275		if (IS_ERR(rt->rt6i_nexthop)) {
1276			err = PTR_ERR(rt->rt6i_nexthop);
1277			rt->rt6i_nexthop = NULL;
1278			goto out;
1279		}
1280	}
1281
1282	rt->rt6i_flags = cfg->fc_flags;
1283
1284install_route:
1285	if (cfg->fc_mx) {
1286		struct nlattr *nla;
1287		int remaining;
1288
1289		nla_for_each_attr(nla, cfg->fc_mx, cfg->fc_mx_len, remaining) {
1290			int type = nla_type(nla);
1291
1292			if (type) {
1293				if (type > RTAX_MAX) {
1294					err = -EINVAL;
1295					goto out;
1296				}
1297
1298				rt->dst.metrics[type - 1] = nla_get_u32(nla);
1299			}
1300		}
1301	}
1302
1303	if (dst_metric(&rt->dst, RTAX_HOPLIMIT) == 0)
1304		rt->dst.metrics[RTAX_HOPLIMIT-1] = -1;
1305	if (!dst_mtu(&rt->dst))
1306		rt->dst.metrics[RTAX_MTU-1] = ipv6_get_mtu(dev);
1307	if (!dst_metric(&rt->dst, RTAX_ADVMSS))
1308		rt->dst.metrics[RTAX_ADVMSS-1] = ipv6_advmss(net, dst_mtu(&rt->dst));
1309	rt->dst.dev = dev;
1310	rt->rt6i_idev = idev;
1311	rt->rt6i_table = table;
1312
1313	cfg->fc_nlinfo.nl_net = dev_net(dev);
1314
1315	return __ip6_ins_rt(rt, &cfg->fc_nlinfo);
1316
1317out:
1318	if (dev)
1319		dev_put(dev);
1320	if (idev)
1321		in6_dev_put(idev);
1322	if (rt)
1323		dst_free(&rt->dst);
1324	return err;
1325}
1326
1327static int __ip6_del_rt(struct rt6_info *rt, struct nl_info *info)
1328{
1329	int err;
1330	struct fib6_table *table;
1331	struct net *net = dev_net(rt->rt6i_dev);
1332
1333	if (rt == net->ipv6.ip6_null_entry)
1334		return -ENOENT;
1335
1336	table = rt->rt6i_table;
1337	write_lock_bh(&table->tb6_lock);
1338
1339	err = fib6_del(rt, info);
1340	dst_release(&rt->dst);
1341
1342	write_unlock_bh(&table->tb6_lock);
1343
1344	return err;
1345}
1346
1347int ip6_del_rt(struct rt6_info *rt)
1348{
1349	struct nl_info info = {
1350		.nl_net = dev_net(rt->rt6i_dev),
1351	};
1352	return __ip6_del_rt(rt, &info);
1353}
1354
1355static int ip6_route_del(struct fib6_config *cfg)
1356{
1357	struct fib6_table *table;
1358	struct fib6_node *fn;
1359	struct rt6_info *rt;
1360	int err = -ESRCH;
1361
1362	table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table);
1363	if (table == NULL)
1364		return err;
1365
1366	read_lock_bh(&table->tb6_lock);
1367
1368	fn = fib6_locate(&table->tb6_root,
1369			 &cfg->fc_dst, cfg->fc_dst_len,
1370			 &cfg->fc_src, cfg->fc_src_len);
1371
1372	if (fn) {
1373		for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1374			if (cfg->fc_ifindex &&
1375			    (rt->rt6i_dev == NULL ||
1376			     rt->rt6i_dev->ifindex != cfg->fc_ifindex))
1377				continue;
1378			if (cfg->fc_flags & RTF_GATEWAY &&
1379			    !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway))
1380				continue;
1381			if (cfg->fc_metric && cfg->fc_metric != rt->rt6i_metric)
1382				continue;
1383			dst_hold(&rt->dst);
1384			read_unlock_bh(&table->tb6_lock);
1385
1386			return __ip6_del_rt(rt, &cfg->fc_nlinfo);
1387		}
1388	}
1389	read_unlock_bh(&table->tb6_lock);
1390
1391	return err;
1392}
1393
1394/*
1395 *	Handle redirects
1396 */
1397struct ip6rd_flowi {
1398	struct flowi fl;
1399	struct in6_addr gateway;
1400};
1401
1402static struct rt6_info *__ip6_route_redirect(struct net *net,
1403					     struct fib6_table *table,
1404					     struct flowi *fl,
1405					     int flags)
1406{
1407	struct ip6rd_flowi *rdfl = (struct ip6rd_flowi *)fl;
1408	struct rt6_info *rt;
1409	struct fib6_node *fn;
1410
1411	/*
1412	 * Get the "current" route for this destination and
1413	 * check if the redirect has come from approriate router.
1414	 *
1415	 * RFC 2461 specifies that redirects should only be
1416	 * accepted if they come from the nexthop to the target.
1417	 * Due to the way the routes are chosen, this notion
1418	 * is a bit fuzzy and one might need to check all possible
1419	 * routes.
1420	 */
1421
1422	read_lock_bh(&table->tb6_lock);
1423	fn = fib6_lookup(&table->tb6_root, &fl->fl6_dst, &fl->fl6_src);
1424restart:
1425	for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1426		/*
1427		 * Current route is on-link; redirect is always invalid.
1428		 *
1429		 * Seems, previous statement is not true. It could
1430		 * be node, which looks for us as on-link (f.e. proxy ndisc)
1431		 * But then router serving it might decide, that we should
1432		 * know truth 8)8) --ANK (980726).
1433		 */
1434		if (rt6_check_expired(rt))
1435			continue;
1436		if (!(rt->rt6i_flags & RTF_GATEWAY))
1437			continue;
1438		if (fl->oif != rt->rt6i_dev->ifindex)
1439			continue;
1440		if (!ipv6_addr_equal(&rdfl->gateway, &rt->rt6i_gateway))
1441			continue;
1442		break;
1443	}
1444
1445	if (!rt)
1446		rt = net->ipv6.ip6_null_entry;
1447	BACKTRACK(net, &fl->fl6_src);
1448out:
1449	dst_hold(&rt->dst);
1450
1451	read_unlock_bh(&table->tb6_lock);
1452
1453	return rt;
1454};
1455
1456static struct rt6_info *ip6_route_redirect(struct in6_addr *dest,
1457					   struct in6_addr *src,
1458					   struct in6_addr *gateway,
1459					   struct net_device *dev)
1460{
1461	int flags = RT6_LOOKUP_F_HAS_SADDR;
1462	struct net *net = dev_net(dev);
1463	struct ip6rd_flowi rdfl = {
1464		.fl = {
1465			.oif = dev->ifindex,
1466			.nl_u = {
1467				.ip6_u = {
1468					.daddr = *dest,
1469					.saddr = *src,
1470				},
1471			},
1472		},
1473	};
1474
1475	ipv6_addr_copy(&rdfl.gateway, gateway);
1476
1477	if (rt6_need_strict(dest))
1478		flags |= RT6_LOOKUP_F_IFACE;
1479
1480	return (struct rt6_info *)fib6_rule_lookup(net, (struct flowi *)&rdfl,
1481						   flags, __ip6_route_redirect);
1482}
1483
1484void rt6_redirect(struct in6_addr *dest, struct in6_addr *src,
1485		  struct in6_addr *saddr,
1486		  struct neighbour *neigh, u8 *lladdr, int on_link)
1487{
1488	struct rt6_info *rt, *nrt = NULL;
1489	struct netevent_redirect netevent;
1490	struct net *net = dev_net(neigh->dev);
1491
1492	rt = ip6_route_redirect(dest, src, saddr, neigh->dev);
1493
1494	if (rt == net->ipv6.ip6_null_entry) {
1495		if (net_ratelimit())
1496			printk(KERN_DEBUG "rt6_redirect: source isn't a valid nexthop "
1497			       "for redirect target\n");
1498		goto out;
1499	}
1500
1501	/*
1502	 *	We have finally decided to accept it.
1503	 */
1504
1505	neigh_update(neigh, lladdr, NUD_STALE,
1506		     NEIGH_UPDATE_F_WEAK_OVERRIDE|
1507		     NEIGH_UPDATE_F_OVERRIDE|
1508		     (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
1509				     NEIGH_UPDATE_F_ISROUTER))
1510		     );
1511
1512	/*
1513	 * Redirect received -> path was valid.
1514	 * Look, redirects are sent only in response to data packets,
1515	 * so that this nexthop apparently is reachable. --ANK
1516	 */
1517	dst_confirm(&rt->dst);
1518
1519	/* Duplicate redirect: silently ignore. */
1520	if (neigh == rt->dst.neighbour)
1521		goto out;
1522
1523	nrt = ip6_rt_copy(rt);
1524	if (nrt == NULL)
1525		goto out;
1526
1527	nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE;
1528	if (on_link)
1529		nrt->rt6i_flags &= ~RTF_GATEWAY;
1530
1531	ipv6_addr_copy(&nrt->rt6i_dst.addr, dest);
1532	nrt->rt6i_dst.plen = 128;
1533	nrt->dst.flags |= DST_HOST;
1534
1535	ipv6_addr_copy(&nrt->rt6i_gateway, (struct in6_addr*)neigh->primary_key);
1536	nrt->rt6i_nexthop = neigh_clone(neigh);
1537	/* Reset pmtu, it may be better */
1538	nrt->dst.metrics[RTAX_MTU-1] = ipv6_get_mtu(neigh->dev);
1539	nrt->dst.metrics[RTAX_ADVMSS-1] = ipv6_advmss(dev_net(neigh->dev),
1540							dst_mtu(&nrt->dst));
1541
1542	if (ip6_ins_rt(nrt))
1543		goto out;
1544
1545	netevent.old = &rt->dst;
1546	netevent.new = &nrt->dst;
1547	call_netevent_notifiers(NETEVENT_REDIRECT, &netevent);
1548
1549	if (rt->rt6i_flags&RTF_CACHE) {
1550		ip6_del_rt(rt);
1551		return;
1552	}
1553
1554out:
1555	dst_release(&rt->dst);
1556}
1557
1558/*
1559 *	Handle ICMP "packet too big" messages
1560 *	i.e. Path MTU discovery
1561 */
1562
1563static void rt6_do_pmtu_disc(struct in6_addr *daddr, struct in6_addr *saddr,
1564			     struct net *net, u32 pmtu, int ifindex)
1565{
1566	struct rt6_info *rt, *nrt;
1567	int allfrag = 0;
1568
1569	rt = rt6_lookup(net, daddr, saddr, ifindex, 0);
1570	if (rt == NULL)
1571		return;
1572
1573	if (pmtu >= dst_mtu(&rt->dst))
1574		goto out;
1575
1576	if (pmtu < IPV6_MIN_MTU) {
1577		/*
1578		 * According to RFC2460, PMTU is set to the IPv6 Minimum Link
1579		 * MTU (1280) and a fragment header should always be included
1580		 * after a node receiving Too Big message reporting PMTU is
1581		 * less than the IPv6 Minimum Link MTU.
1582		 */
1583		pmtu = IPV6_MIN_MTU;
1584		allfrag = 1;
1585	}
1586
1587	/* New mtu received -> path was valid.
1588	   They are sent only in response to data packets,
1589	   so that this nexthop apparently is reachable. --ANK
1590	 */
1591	dst_confirm(&rt->dst);
1592
1593	/* Host route. If it is static, it would be better
1594	   not to override it, but add new one, so that
1595	   when cache entry will expire old pmtu
1596	   would return automatically.
1597	 */
1598	if (rt->rt6i_flags & RTF_CACHE) {
1599		rt->dst.metrics[RTAX_MTU-1] = pmtu;
1600		if (allfrag)
1601			rt->dst.metrics[RTAX_FEATURES-1] |= RTAX_FEATURE_ALLFRAG;
1602		dst_set_expires(&rt->dst, net->ipv6.sysctl.ip6_rt_mtu_expires);
1603		rt->rt6i_flags |= RTF_MODIFIED|RTF_EXPIRES;
1604		goto out;
1605	}
1606
1607	/* Network route.
1608	   Two cases are possible:
1609	   1. It is connected route. Action: COW
1610	   2. It is gatewayed route or NONEXTHOP route. Action: clone it.
1611	 */
1612	if (!rt->rt6i_nexthop && !(rt->rt6i_flags & RTF_NONEXTHOP))
1613		nrt = rt6_alloc_cow(rt, daddr, saddr);
1614	else
1615		nrt = rt6_alloc_clone(rt, daddr);
1616
1617	if (nrt) {
1618		nrt->dst.metrics[RTAX_MTU-1] = pmtu;
1619		if (allfrag)
1620			nrt->dst.metrics[RTAX_FEATURES-1] |= RTAX_FEATURE_ALLFRAG;
1621
1622		/* According to RFC 1981, detecting PMTU increase shouldn't be
1623		 * happened within 5 mins, the recommended timer is 10 mins.
1624		 * Here this route expiration time is set to ip6_rt_mtu_expires
1625		 * which is 10 mins. After 10 mins the decreased pmtu is expired
1626		 * and detecting PMTU increase will be automatically happened.
1627		 */
1628		dst_set_expires(&nrt->dst, net->ipv6.sysctl.ip6_rt_mtu_expires);
1629		nrt->rt6i_flags |= RTF_DYNAMIC|RTF_EXPIRES;
1630
1631		ip6_ins_rt(nrt);
1632	}
1633out:
1634	dst_release(&rt->dst);
1635}
1636
1637void rt6_pmtu_discovery(struct in6_addr *daddr, struct in6_addr *saddr,
1638			struct net_device *dev, u32 pmtu)
1639{
1640	struct net *net = dev_net(dev);
1641
1642	/*
1643	 * RFC 1981 states that a node "MUST reduce the size of the packets it
1644	 * is sending along the path" that caused the Packet Too Big message.
1645	 * Since it's not possible in the general case to determine which
1646	 * interface was used to send the original packet, we update the MTU
1647	 * on the interface that will be used to send future packets. We also
1648	 * update the MTU on the interface that received the Packet Too Big in
1649	 * case the original packet was forced out that interface with
1650	 * SO_BINDTODEVICE or similar. This is the next best thing to the
1651	 * correct behaviour, which would be to update the MTU on all
1652	 * interfaces.
1653	 */
1654	rt6_do_pmtu_disc(daddr, saddr, net, pmtu, 0);
1655	rt6_do_pmtu_disc(daddr, saddr, net, pmtu, dev->ifindex);
1656}
1657
1658/*
1659 *	Misc support functions
1660 */
1661
1662static struct rt6_info * ip6_rt_copy(struct rt6_info *ort)
1663{
1664	struct net *net = dev_net(ort->rt6i_dev);
1665	struct rt6_info *rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops);
1666
1667	if (rt) {
1668		rt->dst.input = ort->dst.input;
1669		rt->dst.output = ort->dst.output;
1670
1671		memcpy(rt->dst.metrics, ort->dst.metrics, RTAX_MAX*sizeof(u32));
1672		rt->dst.error = ort->dst.error;
1673		rt->dst.dev = ort->dst.dev;
1674		if (rt->dst.dev)
1675			dev_hold(rt->dst.dev);
1676		rt->rt6i_idev = ort->rt6i_idev;
1677		if (rt->rt6i_idev)
1678			in6_dev_hold(rt->rt6i_idev);
1679		rt->dst.lastuse = jiffies;
1680		rt->rt6i_expires = 0;
1681
1682		ipv6_addr_copy(&rt->rt6i_gateway, &ort->rt6i_gateway);
1683		rt->rt6i_flags = ort->rt6i_flags & ~RTF_EXPIRES;
1684		rt->rt6i_metric = 0;
1685
1686		memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key));
1687#ifdef CONFIG_IPV6_SUBTREES
1688		memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key));
1689#endif
1690		rt->rt6i_table = ort->rt6i_table;
1691	}
1692	return rt;
1693}
1694
1695#ifdef CONFIG_IPV6_ROUTE_INFO
1696static struct rt6_info *rt6_get_route_info(struct net *net,
1697					   struct in6_addr *prefix, int prefixlen,
1698					   struct in6_addr *gwaddr, int ifindex)
1699{
1700	struct fib6_node *fn;
1701	struct rt6_info *rt = NULL;
1702	struct fib6_table *table;
1703
1704	table = fib6_get_table(net, RT6_TABLE_INFO);
1705	if (table == NULL)
1706		return NULL;
1707
1708	write_lock_bh(&table->tb6_lock);
1709	fn = fib6_locate(&table->tb6_root, prefix ,prefixlen, NULL, 0);
1710	if (!fn)
1711		goto out;
1712
1713	for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1714		if (rt->rt6i_dev->ifindex != ifindex)
1715			continue;
1716		if ((rt->rt6i_flags & (RTF_ROUTEINFO|RTF_GATEWAY)) != (RTF_ROUTEINFO|RTF_GATEWAY))
1717			continue;
1718		if (!ipv6_addr_equal(&rt->rt6i_gateway, gwaddr))
1719			continue;
1720		dst_hold(&rt->dst);
1721		break;
1722	}
1723out:
1724	write_unlock_bh(&table->tb6_lock);
1725	return rt;
1726}
1727
1728static struct rt6_info *rt6_add_route_info(struct net *net,
1729					   struct in6_addr *prefix, int prefixlen,
1730					   struct in6_addr *gwaddr, int ifindex,
1731					   unsigned pref)
1732{
1733	struct fib6_config cfg = {
1734		.fc_table	= RT6_TABLE_INFO,
1735		.fc_metric	= IP6_RT_PRIO_USER,
1736		.fc_ifindex	= ifindex,
1737		.fc_dst_len	= prefixlen,
1738		.fc_flags	= RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO |
1739				  RTF_UP | RTF_PREF(pref),
1740		.fc_nlinfo.pid = 0,
1741		.fc_nlinfo.nlh = NULL,
1742		.fc_nlinfo.nl_net = net,
1743	};
1744
1745	ipv6_addr_copy(&cfg.fc_dst, prefix);
1746	ipv6_addr_copy(&cfg.fc_gateway, gwaddr);
1747
1748	/* We should treat it as a default route if prefix length is 0. */
1749	if (!prefixlen)
1750		cfg.fc_flags |= RTF_DEFAULT;
1751
1752	ip6_route_add(&cfg);
1753
1754	return rt6_get_route_info(net, prefix, prefixlen, gwaddr, ifindex);
1755}
1756#endif
1757
1758struct rt6_info *rt6_get_dflt_router(struct in6_addr *addr, struct net_device *dev)
1759{
1760	struct rt6_info *rt;
1761	struct fib6_table *table;
1762
1763	table = fib6_get_table(dev_net(dev), RT6_TABLE_DFLT);
1764	if (table == NULL)
1765		return NULL;
1766
1767	write_lock_bh(&table->tb6_lock);
1768	for (rt = table->tb6_root.leaf; rt; rt=rt->dst.rt6_next) {
1769		if (dev == rt->rt6i_dev &&
1770		    ((rt->rt6i_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) &&
1771		    ipv6_addr_equal(&rt->rt6i_gateway, addr))
1772			break;
1773	}
1774	if (rt)
1775		dst_hold(&rt->dst);
1776	write_unlock_bh(&table->tb6_lock);
1777	return rt;
1778}
1779
1780struct rt6_info *rt6_add_dflt_router(struct in6_addr *gwaddr,
1781				     struct net_device *dev,
1782				     unsigned int pref)
1783{
1784	struct fib6_config cfg = {
1785		.fc_table	= RT6_TABLE_DFLT,
1786		.fc_metric	= IP6_RT_PRIO_USER,
1787		.fc_ifindex	= dev->ifindex,
1788		.fc_flags	= RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT |
1789				  RTF_UP | RTF_EXPIRES | RTF_PREF(pref),
1790		.fc_nlinfo.pid = 0,
1791		.fc_nlinfo.nlh = NULL,
1792		.fc_nlinfo.nl_net = dev_net(dev),
1793	};
1794
1795	ipv6_addr_copy(&cfg.fc_gateway, gwaddr);
1796
1797	ip6_route_add(&cfg);
1798
1799	return rt6_get_dflt_router(gwaddr, dev);
1800}
1801
1802void rt6_purge_dflt_routers(struct net *net)
1803{
1804	struct rt6_info *rt;
1805	struct fib6_table *table;
1806
1807	/* NOTE: Keep consistent with rt6_get_dflt_router */
1808	table = fib6_get_table(net, RT6_TABLE_DFLT);
1809	if (table == NULL)
1810		return;
1811
1812restart:
1813	read_lock_bh(&table->tb6_lock);
1814	for (rt = table->tb6_root.leaf; rt; rt = rt->dst.rt6_next) {
1815		if (rt->rt6i_flags & (RTF_DEFAULT | RTF_ADDRCONF)) {
1816			dst_hold(&rt->dst);
1817			read_unlock_bh(&table->tb6_lock);
1818			ip6_del_rt(rt);
1819			goto restart;
1820		}
1821	}
1822	read_unlock_bh(&table->tb6_lock);
1823}
1824
1825static void rtmsg_to_fib6_config(struct net *net,
1826				 struct in6_rtmsg *rtmsg,
1827				 struct fib6_config *cfg)
1828{
1829	memset(cfg, 0, sizeof(*cfg));
1830
1831	cfg->fc_table = RT6_TABLE_MAIN;
1832	cfg->fc_ifindex = rtmsg->rtmsg_ifindex;
1833	cfg->fc_metric = rtmsg->rtmsg_metric;
1834	cfg->fc_expires = rtmsg->rtmsg_info;
1835	cfg->fc_dst_len = rtmsg->rtmsg_dst_len;
1836	cfg->fc_src_len = rtmsg->rtmsg_src_len;
1837	cfg->fc_flags = rtmsg->rtmsg_flags;
1838
1839	cfg->fc_nlinfo.nl_net = net;
1840
1841	ipv6_addr_copy(&cfg->fc_dst, &rtmsg->rtmsg_dst);
1842	ipv6_addr_copy(&cfg->fc_src, &rtmsg->rtmsg_src);
1843	ipv6_addr_copy(&cfg->fc_gateway, &rtmsg->rtmsg_gateway);
1844}
1845
1846int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg)
1847{
1848	struct fib6_config cfg;
1849	struct in6_rtmsg rtmsg;
1850	int err;
1851
1852	switch(cmd) {
1853	case SIOCADDRT:		/* Add a route */
1854	case SIOCDELRT:		/* Delete a route */
1855		if (!capable(CAP_NET_ADMIN))
1856			return -EPERM;
1857		err = copy_from_user(&rtmsg, arg,
1858				     sizeof(struct in6_rtmsg));
1859		if (err)
1860			return -EFAULT;
1861
1862		rtmsg_to_fib6_config(net, &rtmsg, &cfg);
1863
1864		rtnl_lock();
1865		switch (cmd) {
1866		case SIOCADDRT:
1867			err = ip6_route_add(&cfg);
1868			break;
1869		case SIOCDELRT:
1870			err = ip6_route_del(&cfg);
1871			break;
1872		default:
1873			err = -EINVAL;
1874		}
1875		rtnl_unlock();
1876
1877		return err;
1878	}
1879
1880	return -EINVAL;
1881}
1882
1883/*
1884 *	Drop the packet on the floor
1885 */
1886
1887static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes)
1888{
1889	int type;
1890	struct dst_entry *dst = skb_dst(skb);
1891	switch (ipstats_mib_noroutes) {
1892	case IPSTATS_MIB_INNOROUTES:
1893		type = ipv6_addr_type(&ipv6_hdr(skb)->daddr);
1894		if (type == IPV6_ADDR_ANY) {
1895			IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst),
1896				      IPSTATS_MIB_INADDRERRORS);
1897			break;
1898		}
1899		/* FALLTHROUGH */
1900	case IPSTATS_MIB_OUTNOROUTES:
1901		IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst),
1902			      ipstats_mib_noroutes);
1903		break;
1904	}
1905	icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0);
1906	kfree_skb(skb);
1907	return 0;
1908}
1909
1910static int ip6_pkt_discard(struct sk_buff *skb)
1911{
1912	return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES);
1913}
1914
1915static int ip6_pkt_discard_out(struct sk_buff *skb)
1916{
1917	skb->dev = skb_dst(skb)->dev;
1918	return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES);
1919}
1920
1921#ifdef CONFIG_IPV6_MULTIPLE_TABLES
1922
1923static int ip6_pkt_prohibit(struct sk_buff *skb)
1924{
1925	return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES);
1926}
1927
1928static int ip6_pkt_prohibit_out(struct sk_buff *skb)
1929{
1930	skb->dev = skb_dst(skb)->dev;
1931	return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES);
1932}
1933
1934#endif
1935
1936/*
1937 *	Allocate a dst for local (unicast / anycast) address.
1938 */
1939
1940struct rt6_info *addrconf_dst_alloc(struct inet6_dev *idev,
1941				    const struct in6_addr *addr,
1942				    int anycast)
1943{
1944	struct net *net = dev_net(idev->dev);
1945	struct rt6_info *rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops);
1946	struct neighbour *neigh;
1947
1948	if (rt == NULL) {
1949		if (net_ratelimit())
1950			pr_warning("IPv6:  Maximum number of routes reached,"
1951				   " consider increasing route/max_size.\n");
1952		return ERR_PTR(-ENOMEM);
1953	}
1954
1955	dev_hold(net->loopback_dev);
1956	in6_dev_hold(idev);
1957
1958	rt->dst.flags = DST_HOST;
1959	rt->dst.input = ip6_input;
1960	rt->dst.output = ip6_output;
1961	rt->rt6i_dev = net->loopback_dev;
1962	rt->rt6i_idev = idev;
1963	rt->dst.metrics[RTAX_MTU-1] = ipv6_get_mtu(rt->rt6i_dev);
1964	rt->dst.metrics[RTAX_ADVMSS-1] = ipv6_advmss(net, dst_mtu(&rt->dst));
1965	rt->dst.metrics[RTAX_HOPLIMIT-1] = -1;
1966	rt->dst.obsolete = -1;
1967
1968	rt->rt6i_flags = RTF_UP | RTF_NONEXTHOP;
1969	if (anycast)
1970		rt->rt6i_flags |= RTF_ANYCAST;
1971	else
1972		rt->rt6i_flags |= RTF_LOCAL;
1973	neigh = ndisc_get_neigh(rt->rt6i_dev, &rt->rt6i_gateway);
1974	if (IS_ERR(neigh)) {
1975		dst_free(&rt->dst);
1976
1977		/* We are casting this because that is the return
1978		 * value type.  But an errno encoded pointer is the
1979		 * same regardless of the underlying pointer type,
1980		 * and that's what we are returning.  So this is OK.
1981		 */
1982		return (struct rt6_info *) neigh;
1983	}
1984	rt->rt6i_nexthop = neigh;
1985
1986	ipv6_addr_copy(&rt->rt6i_dst.addr, addr);
1987	rt->rt6i_dst.plen = 128;
1988	rt->rt6i_table = fib6_get_table(net, RT6_TABLE_LOCAL);
1989
1990	atomic_set(&rt->dst.__refcnt, 1);
1991
1992	return rt;
1993}
1994
1995struct arg_dev_net {
1996	struct net_device *dev;
1997	struct net *net;
1998};
1999
2000static int fib6_ifdown(struct rt6_info *rt, void *arg)
2001{
2002	struct net_device *dev = ((struct arg_dev_net *)arg)->dev;
2003	struct net *net = ((struct arg_dev_net *)arg)->net;
2004
2005	if (((void *)rt->rt6i_dev == dev || dev == NULL) &&
2006	    rt != net->ipv6.ip6_null_entry) {
2007		RT6_TRACE("deleted by ifdown %p\n", rt);
2008		return -1;
2009	}
2010	return 0;
2011}
2012
2013void rt6_ifdown(struct net *net, struct net_device *dev)
2014{
2015	struct arg_dev_net adn = {
2016		.dev = dev,
2017		.net = net,
2018	};
2019
2020	fib6_clean_all(net, fib6_ifdown, 0, &adn);
2021	icmp6_clean_all(fib6_ifdown, &adn);
2022}
2023
2024struct rt6_mtu_change_arg
2025{
2026	struct net_device *dev;
2027	unsigned mtu;
2028};
2029
2030static int rt6_mtu_change_route(struct rt6_info *rt, void *p_arg)
2031{
2032	struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg;
2033	struct inet6_dev *idev;
2034	struct net *net = dev_net(arg->dev);
2035
2036	/* In IPv6 pmtu discovery is not optional,
2037	   so that RTAX_MTU lock cannot disable it.
2038	   We still use this lock to block changes
2039	   caused by addrconf/ndisc.
2040	*/
2041
2042	idev = __in6_dev_get(arg->dev);
2043	if (idev == NULL)
2044		return 0;
2045
2046	/* For administrative MTU increase, there is no way to discover
2047	   IPv6 PMTU increase, so PMTU increase should be updated here.
2048	   Since RFC 1981 doesn't include administrative MTU increase
2049	   update PMTU increase is a MUST. (i.e. jumbo frame)
2050	 */
2051	/*
2052	   If new MTU is less than route PMTU, this new MTU will be the
2053	   lowest MTU in the path, update the route PMTU to reflect PMTU
2054	   decreases; if new MTU is greater than route PMTU, and the
2055	   old MTU is the lowest MTU in the path, update the route PMTU
2056	   to reflect the increase. In this case if the other nodes' MTU
2057	   also have the lowest MTU, TOO BIG MESSAGE will be lead to
2058	   PMTU discouvery.
2059	 */
2060	if (rt->rt6i_dev == arg->dev &&
2061	    !dst_metric_locked(&rt->dst, RTAX_MTU) &&
2062	    (dst_mtu(&rt->dst) >= arg->mtu ||
2063	     (dst_mtu(&rt->dst) < arg->mtu &&
2064	      dst_mtu(&rt->dst) == idev->cnf.mtu6))) {
2065		rt->dst.metrics[RTAX_MTU-1] = arg->mtu;
2066		rt->dst.metrics[RTAX_ADVMSS-1] = ipv6_advmss(net, arg->mtu);
2067	}
2068	return 0;
2069}
2070
2071void rt6_mtu_change(struct net_device *dev, unsigned mtu)
2072{
2073	struct rt6_mtu_change_arg arg = {
2074		.dev = dev,
2075		.mtu = mtu,
2076	};
2077
2078	fib6_clean_all(dev_net(dev), rt6_mtu_change_route, 0, &arg);
2079}
2080
2081static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = {
2082	[RTA_GATEWAY]           = { .len = sizeof(struct in6_addr) },
2083	[RTA_OIF]               = { .type = NLA_U32 },
2084	[RTA_IIF]		= { .type = NLA_U32 },
2085	[RTA_PRIORITY]          = { .type = NLA_U32 },
2086	[RTA_METRICS]           = { .type = NLA_NESTED },
2087};
2088
2089static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh,
2090			      struct fib6_config *cfg)
2091{
2092	struct rtmsg *rtm;
2093	struct nlattr *tb[RTA_MAX+1];
2094	int err;
2095
2096	err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy);
2097	if (err < 0)
2098		goto errout;
2099
2100	err = -EINVAL;
2101	rtm = nlmsg_data(nlh);
2102	memset(cfg, 0, sizeof(*cfg));
2103
2104	cfg->fc_table = rtm->rtm_table;
2105	cfg->fc_dst_len = rtm->rtm_dst_len;
2106	cfg->fc_src_len = rtm->rtm_src_len;
2107	cfg->fc_flags = RTF_UP;
2108	cfg->fc_protocol = rtm->rtm_protocol;
2109
2110	if (rtm->rtm_type == RTN_UNREACHABLE)
2111		cfg->fc_flags |= RTF_REJECT;
2112
2113	if (rtm->rtm_type == RTN_LOCAL)
2114		cfg->fc_flags |= RTF_LOCAL;
2115
2116	cfg->fc_nlinfo.pid = NETLINK_CB(skb).pid;
2117	cfg->fc_nlinfo.nlh = nlh;
2118	cfg->fc_nlinfo.nl_net = sock_net(skb->sk);
2119
2120	if (tb[RTA_GATEWAY]) {
2121		nla_memcpy(&cfg->fc_gateway, tb[RTA_GATEWAY], 16);
2122		cfg->fc_flags |= RTF_GATEWAY;
2123	}
2124
2125	if (tb[RTA_DST]) {
2126		int plen = (rtm->rtm_dst_len + 7) >> 3;
2127
2128		if (nla_len(tb[RTA_DST]) < plen)
2129			goto errout;
2130
2131		nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen);
2132	}
2133
2134	if (tb[RTA_SRC]) {
2135		int plen = (rtm->rtm_src_len + 7) >> 3;
2136
2137		if (nla_len(tb[RTA_SRC]) < plen)
2138			goto errout;
2139
2140		nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen);
2141	}
2142
2143	if (tb[RTA_OIF])
2144		cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]);
2145
2146	if (tb[RTA_PRIORITY])
2147		cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]);
2148
2149	if (tb[RTA_METRICS]) {
2150		cfg->fc_mx = nla_data(tb[RTA_METRICS]);
2151		cfg->fc_mx_len = nla_len(tb[RTA_METRICS]);
2152	}
2153
2154	if (tb[RTA_TABLE])
2155		cfg->fc_table = nla_get_u32(tb[RTA_TABLE]);
2156
2157	err = 0;
2158errout:
2159	return err;
2160}
2161
2162static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr* nlh, void *arg)
2163{
2164	struct fib6_config cfg;
2165	int err;
2166
2167	err = rtm_to_fib6_config(skb, nlh, &cfg);
2168	if (err < 0)
2169		return err;
2170
2171	return ip6_route_del(&cfg);
2172}
2173
2174static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr* nlh, void *arg)
2175{
2176	struct fib6_config cfg;
2177	int err;
2178
2179	err = rtm_to_fib6_config(skb, nlh, &cfg);
2180	if (err < 0)
2181		return err;
2182
2183	return ip6_route_add(&cfg);
2184}
2185
2186static inline size_t rt6_nlmsg_size(void)
2187{
2188	return NLMSG_ALIGN(sizeof(struct rtmsg))
2189	       + nla_total_size(16) /* RTA_SRC */
2190	       + nla_total_size(16) /* RTA_DST */
2191	       + nla_total_size(16) /* RTA_GATEWAY */
2192	       + nla_total_size(16) /* RTA_PREFSRC */
2193	       + nla_total_size(4) /* RTA_TABLE */
2194	       + nla_total_size(4) /* RTA_IIF */
2195	       + nla_total_size(4) /* RTA_OIF */
2196	       + nla_total_size(4) /* RTA_PRIORITY */
2197	       + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */
2198	       + nla_total_size(sizeof(struct rta_cacheinfo));
2199}
2200
2201static int rt6_fill_node(struct net *net,
2202			 struct sk_buff *skb, struct rt6_info *rt,
2203			 struct in6_addr *dst, struct in6_addr *src,
2204			 int iif, int type, u32 pid, u32 seq,
2205			 int prefix, int nowait, unsigned int flags)
2206{
2207	struct rtmsg *rtm;
2208	struct nlmsghdr *nlh;
2209	long expires;
2210	u32 table;
2211
2212	if (prefix) {	/* user wants prefix routes only */
2213		if (!(rt->rt6i_flags & RTF_PREFIX_RT)) {
2214			/* success since this is not a prefix route */
2215			return 1;
2216		}
2217	}
2218
2219	nlh = nlmsg_put(skb, pid, seq, type, sizeof(*rtm), flags);
2220	if (nlh == NULL)
2221		return -EMSGSIZE;
2222
2223	rtm = nlmsg_data(nlh);
2224	rtm->rtm_family = AF_INET6;
2225	rtm->rtm_dst_len = rt->rt6i_dst.plen;
2226	rtm->rtm_src_len = rt->rt6i_src.plen;
2227	rtm->rtm_tos = 0;
2228	if (rt->rt6i_table)
2229		table = rt->rt6i_table->tb6_id;
2230	else
2231		table = RT6_TABLE_UNSPEC;
2232	rtm->rtm_table = table;
2233	NLA_PUT_U32(skb, RTA_TABLE, table);
2234	if (rt->rt6i_flags&RTF_REJECT)
2235		rtm->rtm_type = RTN_UNREACHABLE;
2236	else if (rt->rt6i_flags&RTF_LOCAL)
2237		rtm->rtm_type = RTN_LOCAL;
2238	else if (rt->rt6i_dev && (rt->rt6i_dev->flags&IFF_LOOPBACK))
2239		rtm->rtm_type = RTN_LOCAL;
2240	else
2241		rtm->rtm_type = RTN_UNICAST;
2242	rtm->rtm_flags = 0;
2243	rtm->rtm_scope = RT_SCOPE_UNIVERSE;
2244	rtm->rtm_protocol = rt->rt6i_protocol;
2245	if (rt->rt6i_flags&RTF_DYNAMIC)
2246		rtm->rtm_protocol = RTPROT_REDIRECT;
2247	else if (rt->rt6i_flags & RTF_ADDRCONF)
2248		rtm->rtm_protocol = RTPROT_KERNEL;
2249	else if (rt->rt6i_flags&RTF_DEFAULT)
2250		rtm->rtm_protocol = RTPROT_RA;
2251
2252	if (rt->rt6i_flags&RTF_CACHE)
2253		rtm->rtm_flags |= RTM_F_CLONED;
2254
2255	if (dst) {
2256		NLA_PUT(skb, RTA_DST, 16, dst);
2257		rtm->rtm_dst_len = 128;
2258	} else if (rtm->rtm_dst_len)
2259		NLA_PUT(skb, RTA_DST, 16, &rt->rt6i_dst.addr);
2260#ifdef CONFIG_IPV6_SUBTREES
2261	if (src) {
2262		NLA_PUT(skb, RTA_SRC, 16, src);
2263		rtm->rtm_src_len = 128;
2264	} else if (rtm->rtm_src_len)
2265		NLA_PUT(skb, RTA_SRC, 16, &rt->rt6i_src.addr);
2266#endif
2267	if (iif) {
2268#ifdef CONFIG_IPV6_MROUTE
2269		if (ipv6_addr_is_multicast(&rt->rt6i_dst.addr)) {
2270			int err = ip6mr_get_route(net, skb, rtm, nowait);
2271			if (err <= 0) {
2272				if (!nowait) {
2273					if (err == 0)
2274						return 0;
2275					goto nla_put_failure;
2276				} else {
2277					if (err == -EMSGSIZE)
2278						goto nla_put_failure;
2279				}
2280			}
2281		} else
2282#endif
2283			NLA_PUT_U32(skb, RTA_IIF, iif);
2284	} else if (dst) {
2285		struct inet6_dev *idev = ip6_dst_idev(&rt->dst);
2286		struct in6_addr saddr_buf;
2287		if (ipv6_dev_get_saddr(net, idev ? idev->dev : NULL,
2288				       dst, 0, &saddr_buf) == 0)
2289			NLA_PUT(skb, RTA_PREFSRC, 16, &saddr_buf);
2290	}
2291
2292	if (rtnetlink_put_metrics(skb, rt->dst.metrics) < 0)
2293		goto nla_put_failure;
2294
2295	if (rt->dst.neighbour)
2296		NLA_PUT(skb, RTA_GATEWAY, 16, &rt->dst.neighbour->primary_key);
2297
2298	if (rt->dst.dev)
2299		NLA_PUT_U32(skb, RTA_OIF, rt->rt6i_dev->ifindex);
2300
2301	NLA_PUT_U32(skb, RTA_PRIORITY, rt->rt6i_metric);
2302
2303	if (!(rt->rt6i_flags & RTF_EXPIRES))
2304		expires = 0;
2305	else if (rt->rt6i_expires - jiffies < INT_MAX)
2306		expires = rt->rt6i_expires - jiffies;
2307	else
2308		expires = INT_MAX;
2309
2310	if (rtnl_put_cacheinfo(skb, &rt->dst, 0, 0, 0,
2311			       expires, rt->dst.error) < 0)
2312		goto nla_put_failure;
2313
2314	return nlmsg_end(skb, nlh);
2315
2316nla_put_failure:
2317	nlmsg_cancel(skb, nlh);
2318	return -EMSGSIZE;
2319}
2320
2321int rt6_dump_route(struct rt6_info *rt, void *p_arg)
2322{
2323	struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg;
2324	int prefix;
2325
2326	if (nlmsg_len(arg->cb->nlh) >= sizeof(struct rtmsg)) {
2327		struct rtmsg *rtm = nlmsg_data(arg->cb->nlh);
2328		prefix = (rtm->rtm_flags & RTM_F_PREFIX) != 0;
2329	} else
2330		prefix = 0;
2331
2332	return rt6_fill_node(arg->net,
2333		     arg->skb, rt, NULL, NULL, 0, RTM_NEWROUTE,
2334		     NETLINK_CB(arg->cb->skb).pid, arg->cb->nlh->nlmsg_seq,
2335		     prefix, 0, NLM_F_MULTI);
2336}
2337
2338static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr* nlh, void *arg)
2339{
2340	struct net *net = sock_net(in_skb->sk);
2341	struct nlattr *tb[RTA_MAX+1];
2342	struct rt6_info *rt;
2343	struct sk_buff *skb;
2344	struct rtmsg *rtm;
2345	struct flowi fl;
2346	int err, iif = 0;
2347
2348	err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy);
2349	if (err < 0)
2350		goto errout;
2351
2352	err = -EINVAL;
2353	memset(&fl, 0, sizeof(fl));
2354
2355	if (tb[RTA_SRC]) {
2356		if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr))
2357			goto errout;
2358
2359		ipv6_addr_copy(&fl.fl6_src, nla_data(tb[RTA_SRC]));
2360	}
2361
2362	if (tb[RTA_DST]) {
2363		if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr))
2364			goto errout;
2365
2366		ipv6_addr_copy(&fl.fl6_dst, nla_data(tb[RTA_DST]));
2367	}
2368
2369	if (tb[RTA_IIF])
2370		iif = nla_get_u32(tb[RTA_IIF]);
2371
2372	if (tb[RTA_OIF])
2373		fl.oif = nla_get_u32(tb[RTA_OIF]);
2374
2375	if (iif) {
2376		struct net_device *dev;
2377		dev = __dev_get_by_index(net, iif);
2378		if (!dev) {
2379			err = -ENODEV;
2380			goto errout;
2381		}
2382	}
2383
2384	skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL);
2385	if (skb == NULL) {
2386		err = -ENOBUFS;
2387		goto errout;
2388	}
2389
2390	/* Reserve room for dummy headers, this skb can pass
2391	   through good chunk of routing engine.
2392	 */
2393	skb_reset_mac_header(skb);
2394	skb_reserve(skb, MAX_HEADER + sizeof(struct ipv6hdr));
2395
2396	rt = (struct rt6_info*) ip6_route_output(net, NULL, &fl);
2397	skb_dst_set(skb, &rt->dst);
2398
2399	err = rt6_fill_node(net, skb, rt, &fl.fl6_dst, &fl.fl6_src, iif,
2400			    RTM_NEWROUTE, NETLINK_CB(in_skb).pid,
2401			    nlh->nlmsg_seq, 0, 0, 0);
2402	if (err < 0) {
2403		kfree_skb(skb);
2404		goto errout;
2405	}
2406
2407	err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).pid);
2408errout:
2409	return err;
2410}
2411
2412void inet6_rt_notify(int event, struct rt6_info *rt, struct nl_info *info)
2413{
2414	struct sk_buff *skb;
2415	struct net *net = info->nl_net;
2416	u32 seq;
2417	int err;
2418
2419	err = -ENOBUFS;
2420	seq = info->nlh != NULL ? info->nlh->nlmsg_seq : 0;
2421
2422	skb = nlmsg_new(rt6_nlmsg_size(), gfp_any());
2423	if (skb == NULL)
2424		goto errout;
2425
2426	err = rt6_fill_node(net, skb, rt, NULL, NULL, 0,
2427				event, info->pid, seq, 0, 0, 0);
2428	if (err < 0) {
2429		/* -EMSGSIZE implies BUG in rt6_nlmsg_size() */
2430		WARN_ON(err == -EMSGSIZE);
2431		kfree_skb(skb);
2432		goto errout;
2433	}
2434	rtnl_notify(skb, net, info->pid, RTNLGRP_IPV6_ROUTE,
2435		    info->nlh, gfp_any());
2436	return;
2437errout:
2438	if (err < 0)
2439		rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err);
2440}
2441
2442static int ip6_route_dev_notify(struct notifier_block *this,
2443				unsigned long event, void *data)
2444{
2445	struct net_device *dev = (struct net_device *)data;
2446	struct net *net = dev_net(dev);
2447
2448	if (event == NETDEV_REGISTER && (dev->flags & IFF_LOOPBACK)) {
2449		net->ipv6.ip6_null_entry->dst.dev = dev;
2450		net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev);
2451#ifdef CONFIG_IPV6_MULTIPLE_TABLES
2452		net->ipv6.ip6_prohibit_entry->dst.dev = dev;
2453		net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev);
2454		net->ipv6.ip6_blk_hole_entry->dst.dev = dev;
2455		net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev);
2456#endif
2457	}
2458
2459	return NOTIFY_OK;
2460}
2461
2462/*
2463 *	/proc
2464 */
2465
2466#ifdef CONFIG_PROC_FS
2467
2468#define RT6_INFO_LEN (32 + 4 + 32 + 4 + 32 + 40 + 5 + 1)
2469
2470struct rt6_proc_arg
2471{
2472	char *buffer;
2473	int offset;
2474	int length;
2475	int skip;
2476	int len;
2477};
2478
2479static int rt6_info_route(struct rt6_info *rt, void *p_arg)
2480{
2481	struct seq_file *m = p_arg;
2482
2483	seq_printf(m, "%pi6 %02x ", &rt->rt6i_dst.addr, rt->rt6i_dst.plen);
2484
2485#ifdef CONFIG_IPV6_SUBTREES
2486	seq_printf(m, "%pi6 %02x ", &rt->rt6i_src.addr, rt->rt6i_src.plen);
2487#else
2488	seq_puts(m, "00000000000000000000000000000000 00 ");
2489#endif
2490
2491	if (rt->rt6i_nexthop) {
2492		seq_printf(m, "%pi6", rt->rt6i_nexthop->primary_key);
2493	} else {
2494		seq_puts(m, "00000000000000000000000000000000");
2495	}
2496	seq_printf(m, " %08x %08x %08x %08x %8s\n",
2497		   rt->rt6i_metric, atomic_read(&rt->dst.__refcnt),
2498		   rt->dst.__use, rt->rt6i_flags,
2499		   rt->rt6i_dev ? rt->rt6i_dev->name : "");
2500	return 0;
2501}
2502
2503static int ipv6_route_show(struct seq_file *m, void *v)
2504{
2505	struct net *net = (struct net *)m->private;
2506	fib6_clean_all(net, rt6_info_route, 0, m);
2507	return 0;
2508}
2509
2510static int ipv6_route_open(struct inode *inode, struct file *file)
2511{
2512	return single_open_net(inode, file, ipv6_route_show);
2513}
2514
2515static const struct file_operations ipv6_route_proc_fops = {
2516	.owner		= THIS_MODULE,
2517	.open		= ipv6_route_open,
2518	.read		= seq_read,
2519	.llseek		= seq_lseek,
2520	.release	= single_release_net,
2521};
2522
2523static int rt6_stats_seq_show(struct seq_file *seq, void *v)
2524{
2525	struct net *net = (struct net *)seq->private;
2526	seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n",
2527		   net->ipv6.rt6_stats->fib_nodes,
2528		   net->ipv6.rt6_stats->fib_route_nodes,
2529		   net->ipv6.rt6_stats->fib_rt_alloc,
2530		   net->ipv6.rt6_stats->fib_rt_entries,
2531		   net->ipv6.rt6_stats->fib_rt_cache,
2532		   dst_entries_get_slow(&net->ipv6.ip6_dst_ops),
2533		   net->ipv6.rt6_stats->fib_discarded_routes);
2534
2535	return 0;
2536}
2537
2538static int rt6_stats_seq_open(struct inode *inode, struct file *file)
2539{
2540	return single_open_net(inode, file, rt6_stats_seq_show);
2541}
2542
2543static const struct file_operations rt6_stats_seq_fops = {
2544	.owner	 = THIS_MODULE,
2545	.open	 = rt6_stats_seq_open,
2546	.read	 = seq_read,
2547	.llseek	 = seq_lseek,
2548	.release = single_release_net,
2549};
2550#endif	/* CONFIG_PROC_FS */
2551
2552#ifdef CONFIG_SYSCTL
2553
2554static
2555int ipv6_sysctl_rtcache_flush(ctl_table *ctl, int write,
2556			      void __user *buffer, size_t *lenp, loff_t *ppos)
2557{
2558	struct net *net = current->nsproxy->net_ns;
2559	int delay = net->ipv6.sysctl.flush_delay;
2560	if (write) {
2561		proc_dointvec(ctl, write, buffer, lenp, ppos);
2562		fib6_run_gc(delay <= 0 ? ~0UL : (unsigned long)delay, net);
2563		return 0;
2564	} else
2565		return -EINVAL;
2566}
2567
2568ctl_table ipv6_route_table_template[] = {
2569	{
2570		.procname	=	"flush",
2571		.data		=	&init_net.ipv6.sysctl.flush_delay,
2572		.maxlen		=	sizeof(int),
2573		.mode		=	0200,
2574		.proc_handler	=	ipv6_sysctl_rtcache_flush
2575	},
2576	{
2577		.procname	=	"gc_thresh",
2578		.data		=	&ip6_dst_ops_template.gc_thresh,
2579		.maxlen		=	sizeof(int),
2580		.mode		=	0644,
2581		.proc_handler	=	proc_dointvec,
2582	},
2583	{
2584		.procname	=	"max_size",
2585		.data		=	&init_net.ipv6.sysctl.ip6_rt_max_size,
2586		.maxlen		=	sizeof(int),
2587		.mode		=	0644,
2588		.proc_handler	=	proc_dointvec,
2589	},
2590	{
2591		.procname	=	"gc_min_interval",
2592		.data		=	&init_net.ipv6.sysctl.ip6_rt_gc_min_interval,
2593		.maxlen		=	sizeof(int),
2594		.mode		=	0644,
2595		.proc_handler	=	proc_dointvec_jiffies,
2596	},
2597	{
2598		.procname	=	"gc_timeout",
2599		.data		=	&init_net.ipv6.sysctl.ip6_rt_gc_timeout,
2600		.maxlen		=	sizeof(int),
2601		.mode		=	0644,
2602		.proc_handler	=	proc_dointvec_jiffies,
2603	},
2604	{
2605		.procname	=	"gc_interval",
2606		.data		=	&init_net.ipv6.sysctl.ip6_rt_gc_interval,
2607		.maxlen		=	sizeof(int),
2608		.mode		=	0644,
2609		.proc_handler	=	proc_dointvec_jiffies,
2610	},
2611	{
2612		.procname	=	"gc_elasticity",
2613		.data		=	&init_net.ipv6.sysctl.ip6_rt_gc_elasticity,
2614		.maxlen		=	sizeof(int),
2615		.mode		=	0644,
2616		.proc_handler	=	proc_dointvec,
2617	},
2618	{
2619		.procname	=	"mtu_expires",
2620		.data		=	&init_net.ipv6.sysctl.ip6_rt_mtu_expires,
2621		.maxlen		=	sizeof(int),
2622		.mode		=	0644,
2623		.proc_handler	=	proc_dointvec_jiffies,
2624	},
2625	{
2626		.procname	=	"min_adv_mss",
2627		.data		=	&init_net.ipv6.sysctl.ip6_rt_min_advmss,
2628		.maxlen		=	sizeof(int),
2629		.mode		=	0644,
2630		.proc_handler	=	proc_dointvec,
2631	},
2632	{
2633		.procname	=	"gc_min_interval_ms",
2634		.data		=	&init_net.ipv6.sysctl.ip6_rt_gc_min_interval,
2635		.maxlen		=	sizeof(int),
2636		.mode		=	0644,
2637		.proc_handler	=	proc_dointvec_ms_jiffies,
2638	},
2639	{ }
2640};
2641
2642struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net)
2643{
2644	struct ctl_table *table;
2645
2646	table = kmemdup(ipv6_route_table_template,
2647			sizeof(ipv6_route_table_template),
2648			GFP_KERNEL);
2649
2650	if (table) {
2651		table[0].data = &net->ipv6.sysctl.flush_delay;
2652		table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh;
2653		table[2].data = &net->ipv6.sysctl.ip6_rt_max_size;
2654		table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval;
2655		table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout;
2656		table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval;
2657		table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity;
2658		table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires;
2659		table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss;
2660		table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval;
2661	}
2662
2663	return table;
2664}
2665#endif
2666
2667static int __net_init ip6_route_net_init(struct net *net)
2668{
2669	int ret = -ENOMEM;
2670
2671	memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template,
2672	       sizeof(net->ipv6.ip6_dst_ops));
2673
2674	if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0)
2675		goto out_ip6_dst_ops;
2676
2677	net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template,
2678					   sizeof(*net->ipv6.ip6_null_entry),
2679					   GFP_KERNEL);
2680	if (!net->ipv6.ip6_null_entry)
2681		goto out_ip6_dst_entries;
2682	net->ipv6.ip6_null_entry->dst.path =
2683		(struct dst_entry *)net->ipv6.ip6_null_entry;
2684	net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops;
2685
2686#ifdef CONFIG_IPV6_MULTIPLE_TABLES
2687	net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template,
2688					       sizeof(*net->ipv6.ip6_prohibit_entry),
2689					       GFP_KERNEL);
2690	if (!net->ipv6.ip6_prohibit_entry)
2691		goto out_ip6_null_entry;
2692	net->ipv6.ip6_prohibit_entry->dst.path =
2693		(struct dst_entry *)net->ipv6.ip6_prohibit_entry;
2694	net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops;
2695
2696	net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template,
2697					       sizeof(*net->ipv6.ip6_blk_hole_entry),
2698					       GFP_KERNEL);
2699	if (!net->ipv6.ip6_blk_hole_entry)
2700		goto out_ip6_prohibit_entry;
2701	net->ipv6.ip6_blk_hole_entry->dst.path =
2702		(struct dst_entry *)net->ipv6.ip6_blk_hole_entry;
2703	net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops;
2704#endif
2705
2706	net->ipv6.sysctl.flush_delay = 0;
2707	net->ipv6.sysctl.ip6_rt_max_size = 4096;
2708	net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2;
2709	net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ;
2710	net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ;
2711	net->ipv6.sysctl.ip6_rt_gc_elasticity = 9;
2712	net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ;
2713	net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40;
2714
2715#ifdef CONFIG_PROC_FS
2716	proc_net_fops_create(net, "ipv6_route", 0, &ipv6_route_proc_fops);
2717	proc_net_fops_create(net, "rt6_stats", S_IRUGO, &rt6_stats_seq_fops);
2718#endif
2719	net->ipv6.ip6_rt_gc_expire = 30*HZ;
2720
2721	ret = 0;
2722out:
2723	return ret;
2724
2725#ifdef CONFIG_IPV6_MULTIPLE_TABLES
2726out_ip6_prohibit_entry:
2727	kfree(net->ipv6.ip6_prohibit_entry);
2728out_ip6_null_entry:
2729	kfree(net->ipv6.ip6_null_entry);
2730#endif
2731out_ip6_dst_entries:
2732	dst_entries_destroy(&net->ipv6.ip6_dst_ops);
2733out_ip6_dst_ops:
2734	goto out;
2735}
2736
2737static void __net_exit ip6_route_net_exit(struct net *net)
2738{
2739#ifdef CONFIG_PROC_FS
2740	proc_net_remove(net, "ipv6_route");
2741	proc_net_remove(net, "rt6_stats");
2742#endif
2743	kfree(net->ipv6.ip6_null_entry);
2744#ifdef CONFIG_IPV6_MULTIPLE_TABLES
2745	kfree(net->ipv6.ip6_prohibit_entry);
2746	kfree(net->ipv6.ip6_blk_hole_entry);
2747#endif
2748	dst_entries_destroy(&net->ipv6.ip6_dst_ops);
2749}
2750
2751static struct pernet_operations ip6_route_net_ops = {
2752	.init = ip6_route_net_init,
2753	.exit = ip6_route_net_exit,
2754};
2755
2756static struct notifier_block ip6_route_dev_notifier = {
2757	.notifier_call = ip6_route_dev_notify,
2758	.priority = 0,
2759};
2760
2761int __init ip6_route_init(void)
2762{
2763	int ret;
2764
2765	ret = -ENOMEM;
2766	ip6_dst_ops_template.kmem_cachep =
2767		kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0,
2768				  SLAB_HWCACHE_ALIGN, NULL);
2769	if (!ip6_dst_ops_template.kmem_cachep)
2770		goto out;
2771
2772	ret = dst_entries_init(&ip6_dst_blackhole_ops);
2773	if (ret)
2774		goto out_kmem_cache;
2775
2776	ret = register_pernet_subsys(&ip6_route_net_ops);
2777	if (ret)
2778		goto out_dst_entries;
2779
2780	ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep;
2781
2782	/* Registering of the loopback is done before this portion of code,
2783	 * the loopback reference in rt6_info will not be taken, do it
2784	 * manually for init_net */
2785	init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev;
2786	init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
2787  #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2788	init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev;
2789	init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
2790	init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev;
2791	init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
2792  #endif
2793	ret = fib6_init();
2794	if (ret)
2795		goto out_register_subsys;
2796
2797	ret = xfrm6_init();
2798	if (ret)
2799		goto out_fib6_init;
2800
2801	ret = fib6_rules_init();
2802	if (ret)
2803		goto xfrm6_init;
2804
2805	ret = -ENOBUFS;
2806	if (__rtnl_register(PF_INET6, RTM_NEWROUTE, inet6_rtm_newroute, NULL) ||
2807	    __rtnl_register(PF_INET6, RTM_DELROUTE, inet6_rtm_delroute, NULL) ||
2808	    __rtnl_register(PF_INET6, RTM_GETROUTE, inet6_rtm_getroute, NULL))
2809		goto fib6_rules_init;
2810
2811	ret = register_netdevice_notifier(&ip6_route_dev_notifier);
2812	if (ret)
2813		goto fib6_rules_init;
2814
2815out:
2816	return ret;
2817
2818fib6_rules_init:
2819	fib6_rules_cleanup();
2820xfrm6_init:
2821	xfrm6_fini();
2822out_fib6_init:
2823	fib6_gc_cleanup();
2824out_register_subsys:
2825	unregister_pernet_subsys(&ip6_route_net_ops);
2826out_dst_entries:
2827	dst_entries_destroy(&ip6_dst_blackhole_ops);
2828out_kmem_cache:
2829	kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep);
2830	goto out;
2831}
2832
2833void ip6_route_cleanup(void)
2834{
2835	unregister_netdevice_notifier(&ip6_route_dev_notifier);
2836	fib6_rules_cleanup();
2837	xfrm6_fini();
2838	fib6_gc_cleanup();
2839	unregister_pernet_subsys(&ip6_route_net_ops);
2840	dst_entries_destroy(&ip6_dst_blackhole_ops);
2841	kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep);
2842}
Configure Feed

Configure Feed
