tjh.dev
Linux kernel mirror (for testing)
git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel
os
linux
net: ipv6_stub: use ip6_dst_lookup_flow instead of ip6_dst_lookup
ipv6_stub uses the ip6_dst_lookup function to allow other modules to
perform IPv6 lookups. However, this function skips the XFRM layer
entirely.
All users of ipv6_stub->ip6_dst_lookup use ip_route_output_flow (via the
ip_route_output_key and ip_route_output helpers) for their IPv4 lookups,
which calls xfrm_lookup_route(). This patch fixes this inconsistent
behavior by switching the stub to ip6_dst_lookup_flow, which also calls
xfrm_lookup_route().
This requires some changes in all the callers, as these two functions
take different arguments and have different return types.
Fixes: 5f81bd2e5d80 ("ipv6: export a stub for IPv6 symbols used by vxlan")
Reported-by: Xiumei Mu <xmu@redhat.com>
Signed-off-by: Sabrina Dubroca <sd@queasysnail.net>
Signed-off-by: David S. Miller <davem@davemloft.net>
authored by
Sabrina Dubroca
and committed by
David S. Miller
6c8991f4
c4e85f73
+39
-35
+3
-4
drivers/infiniband/core/addr.c
+3
-4
drivers/infiniband/core/addr.c
···
421
421
(const struct sockaddr_in6 *)dst_sock;
422
422
struct flowi6 fl6;
423
423
struct dst_entry *dst;
424
-
int ret;
425
424
426
425
memset(&fl6, 0, sizeof fl6);
427
426
fl6.daddr = dst_in->sin6_addr;
428
427
fl6.saddr = src_in->sin6_addr;
429
428
fl6.flowi6_oif = addr->bound_dev_if;
430
429
431
-
ret = ipv6_stub->ipv6_dst_lookup(addr->net, NULL, &dst, &fl6);
432
-
if (ret < 0)
433
-
return ret;
430
+
dst = ipv6_stub->ipv6_dst_lookup_flow(addr->net, NULL, &fl6, NULL);
431
+
if (IS_ERR(dst))
432
+
return PTR_ERR(dst);
434
433
435
434
if (ipv6_addr_any(&src_in->sin6_addr))
436
435
src_in->sin6_addr = fl6.saddr;
+5
-3
drivers/infiniband/sw/rxe/rxe_net.c
+5
-3
drivers/infiniband/sw/rxe/rxe_net.c
···
117
117
memcpy(&fl6.daddr, daddr, sizeof(*daddr));
118
118
fl6.flowi6_proto = IPPROTO_UDP;
119
119
120
-
if (unlikely(ipv6_stub->ipv6_dst_lookup(sock_net(recv_sockets.sk6->sk),
121
-
recv_sockets.sk6->sk, &ndst, &fl6))) {
120
+
ndst = ipv6_stub->ipv6_dst_lookup_flow(sock_net(recv_sockets.sk6->sk),
121
+
recv_sockets.sk6->sk, &fl6,
122
+
NULL);
123
+
if (unlikely(IS_ERR(ndst))) {
122
124
pr_err_ratelimited("no route to %pI6\n", daddr);
123
-
goto put;
125
+
return NULL;
124
126
}
125
127
126
128
if (unlikely(ndst->error)) {
+4
-4
drivers/net/ethernet/mellanox/mlx5/core/en/tc_tun.c
+4
-4
drivers/net/ethernet/mellanox/mlx5/core/en/tc_tun.c
···
297
297
298
298
int ret;
299
299
300
-
ret = ipv6_stub->ipv6_dst_lookup(dev_net(mirred_dev), NULL, &dst,
301
-
fl6);
302
-
if (ret < 0)
303
-
return ret;
300
+
dst = ipv6_stub->ipv6_dst_lookup_flow(dev_net(mirred_dev), NULL, fl6,
301
+
NULL);
302
+
if (IS_ERR(dst))
303
+
return PTR_ERR(dst);
304
304
305
305
if (!(*out_ttl))
306
306
*out_ttl = ip6_dst_hoplimit(dst);
+3
-1
drivers/net/geneve.c
+3
-1
drivers/net/geneve.c
···
853
853
if (dst)
854
854
return dst;
855
855
}
856
-
if (ipv6_stub->ipv6_dst_lookup(geneve->net, gs6->sock->sk, &dst, fl6)) {
856
+
dst = ipv6_stub->ipv6_dst_lookup_flow(geneve->net, gs6->sock->sk, fl6,
857
+
NULL);
858
+
if (IS_ERR(dst)) {
857
859
netdev_dbg(dev, "no route to %pI6\n", &fl6->daddr);
858
860
return ERR_PTR(-ENETUNREACH);
859
861
}
+3
-5
drivers/net/vxlan.c
+3
-5
drivers/net/vxlan.c
···
2275
2275
bool use_cache = ip_tunnel_dst_cache_usable(skb, info);
2276
2276
struct dst_entry *ndst;
2277
2277
struct flowi6 fl6;
2278
-
int err;
2279
2278
2280
2279
if (!sock6)
2281
2280
return ERR_PTR(-EIO);
···
2297
2298
fl6.fl6_dport = dport;
2298
2299
fl6.fl6_sport = sport;
2299
2300
2300
-
err = ipv6_stub->ipv6_dst_lookup(vxlan->net,
2301
-
sock6->sock->sk,
2302
-
&ndst, &fl6);
2303
-
if (unlikely(err < 0)) {
2301
+
ndst = ipv6_stub->ipv6_dst_lookup_flow(vxlan->net, sock6->sock->sk,
2302
+
&fl6, NULL);
2303
+
if (unlikely(IS_ERR(ndst))) {
2304
2304
netdev_dbg(dev, "no route to %pI6\n", daddr);
2305
2305
return ERR_PTR(-ENETUNREACH);
2306
2306
}
+4
-2
include/net/ipv6_stubs.h
+4
-2
include/net/ipv6_stubs.h
···
24
24
const struct in6_addr *addr);
25
25
int (*ipv6_sock_mc_drop)(struct sock *sk, int ifindex,
26
26
const struct in6_addr *addr);
27
-
int (*ipv6_dst_lookup)(struct net *net, struct sock *sk,
28
-
struct dst_entry **dst, struct flowi6 *fl6);
27
+
struct dst_entry *(*ipv6_dst_lookup_flow)(struct net *net,
28
+
const struct sock *sk,
29
+
struct flowi6 *fl6,
30
+
const struct in6_addr *final_dst);
29
31
int (*ipv6_route_input)(struct sk_buff *skb);
30
32
31
33
struct fib6_table *(*fib6_get_table)(struct net *net, u32 id);
+1
-3
net/core/lwt_bpf.c
+1
-3
net/core/lwt_bpf.c
···
230
230
fl6.daddr = iph6->daddr;
231
231
fl6.saddr = iph6->saddr;
232
232
233
-
err = ipv6_stub->ipv6_dst_lookup(net, skb->sk, &dst, &fl6);
234
-
if (unlikely(err))
235
-
goto err;
233
+
dst = ipv6_stub->ipv6_dst_lookup_flow(net, skb->sk, &fl6, NULL);
236
234
if (IS_ERR(dst)) {
237
235
err = PTR_ERR(dst);
238
236
goto err;
+6
-5
net/ipv6/addrconf_core.c
+6
-5
net/ipv6/addrconf_core.c
···
129
129
}
130
130
EXPORT_SYMBOL(inet6addr_validator_notifier_call_chain);
131
131
132
-
static int eafnosupport_ipv6_dst_lookup(struct net *net, struct sock *u1,
133
-
struct dst_entry **u2,
134
-
struct flowi6 *u3)
132
+
static struct dst_entry *eafnosupport_ipv6_dst_lookup_flow(struct net *net,
133
+
const struct sock *sk,
134
+
struct flowi6 *fl6,
135
+
const struct in6_addr *final_dst)
135
136
{
136
-
return -EAFNOSUPPORT;
137
+
return ERR_PTR(-EAFNOSUPPORT);
137
138
}
138
139
139
140
static int eafnosupport_ipv6_route_input(struct sk_buff *skb)
···
191
190
}
192
191
193
192
const struct ipv6_stub *ipv6_stub __read_mostly = &(struct ipv6_stub) {
194
-
.ipv6_dst_lookup = eafnosupport_ipv6_dst_lookup,
193
+
.ipv6_dst_lookup_flow = eafnosupport_ipv6_dst_lookup_flow,
195
194
.ipv6_route_input = eafnosupport_ipv6_route_input,
196
195
.fib6_get_table = eafnosupport_fib6_get_table,
197
196
.fib6_table_lookup = eafnosupport_fib6_table_lookup,
+1
-1
net/ipv6/af_inet6.c
+1
-1
net/ipv6/af_inet6.c
···
946
946
static const struct ipv6_stub ipv6_stub_impl = {
947
947
.ipv6_sock_mc_join = ipv6_sock_mc_join,
948
948
.ipv6_sock_mc_drop = ipv6_sock_mc_drop,
949
-
.ipv6_dst_lookup = ip6_dst_lookup,
949
+
.ipv6_dst_lookup_flow = ip6_dst_lookup_flow,
950
950
.ipv6_route_input = ipv6_route_input,
951
951
.fib6_get_table = fib6_get_table,
952
952
.fib6_table_lookup = fib6_table_lookup,
+3
-4
net/mpls/af_mpls.c
+3
-4
net/mpls/af_mpls.c
···
617
617
struct net_device *dev;
618
618
struct dst_entry *dst;
619
619
struct flowi6 fl6;
620
-
int err;
621
620
622
621
if (!ipv6_stub)
623
622
return ERR_PTR(-EAFNOSUPPORT);
624
623
625
624
memset(&fl6, 0, sizeof(fl6));
626
625
memcpy(&fl6.daddr, addr, sizeof(struct in6_addr));
627
-
err = ipv6_stub->ipv6_dst_lookup(net, NULL, &dst, &fl6);
628
-
if (err)
629
-
return ERR_PTR(err);
626
+
dst = ipv6_stub->ipv6_dst_lookup_flow(net, NULL, &fl6, NULL);
627
+
if (IS_ERR(dst))
628
+
return ERR_CAST(dst);
630
629
631
630
dev = dst->dev;
632
631
dev_hold(dev);
+6
-3
net/tipc/udp_media.c
+6
-3
net/tipc/udp_media.c
···
195
195
.saddr = src->ipv6,
196
196
.flowi6_proto = IPPROTO_UDP
197
197
};
198
-
err = ipv6_stub->ipv6_dst_lookup(net, ub->ubsock->sk,
199
-
&ndst, &fl6);
200
-
if (err)
198
+
ndst = ipv6_stub->ipv6_dst_lookup_flow(net,
199
+
ub->ubsock->sk,
200
+
&fl6, NULL);
201
+
if (IS_ERR(ndst)) {
202
+
err = PTR_ERR(ndst);
201
203
goto tx_error;
204
+
}
202
205
dst_cache_set_ip6(cache, ndst, &fl6.saddr);
203
206
}
204
207
ttl = ip6_dst_hoplimit(ndst);