blob: 3008651713947c76dac697d466f1301d05bba025 [file] [log] [blame]
Linus Torvalds1da177e2005-04-16 15:20:36 -07001/*
2 * Neighbour Discovery for IPv6
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +09003 * Linux INET6 implementation
Linus Torvalds1da177e2005-04-16 15:20:36 -07004 *
5 * Authors:
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +09006 * Pedro Roque <roque@di.fc.ul.pt>
Linus Torvalds1da177e2005-04-16 15:20:36 -07007 * Mike Shaver <shaver@ingenia.com>
8 *
9 * This program is free software; you can redistribute it and/or
10 * modify it under the terms of the GNU General Public License
11 * as published by the Free Software Foundation; either version
12 * 2 of the License, or (at your option) any later version.
13 */
14
15/*
16 * Changes:
17 *
Alexey I. Froloffe35f30c2012-04-06 05:50:58 +000018 * Alexey I. Froloff : RFC6106 (DNSSL) support
Pierre Ynard31910572007-10-10 21:22:05 -070019 * Pierre Ynard : export userland ND options
20 * through netlink (RDNSS support)
Linus Torvalds1da177e2005-04-16 15:20:36 -070021 * Lars Fenneberg : fixed MTU setting on receipt
22 * of an RA.
Linus Torvalds1da177e2005-04-16 15:20:36 -070023 * Janos Farkas : kmalloc failure checks
24 * Alexey Kuznetsov : state machine reworked
25 * and moved to net/core.
26 * Pekka Savola : RFC2461 validation
27 * YOSHIFUJI Hideaki @USAGI : Verify ND options properly
28 */
29
Joe Perches675418d2012-05-16 19:28:38 +000030#define pr_fmt(fmt) "ICMPv6: " fmt
Linus Torvalds1da177e2005-04-16 15:20:36 -070031
32#include <linux/module.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -070033#include <linux/errno.h>
34#include <linux/types.h>
35#include <linux/socket.h>
36#include <linux/sockios.h>
37#include <linux/sched.h>
38#include <linux/net.h>
39#include <linux/in6.h>
40#include <linux/route.h>
41#include <linux/init.h>
42#include <linux/rcupdate.h>
Tejun Heo5a0e3ad2010-03-24 17:04:11 +090043#include <linux/slab.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -070044#ifdef CONFIG_SYSCTL
45#include <linux/sysctl.h>
46#endif
47
Thomas Graf18237302006-08-04 23:04:54 -070048#include <linux/if_addr.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -070049#include <linux/if_arp.h>
50#include <linux/ipv6.h>
51#include <linux/icmpv6.h>
52#include <linux/jhash.h>
53
54#include <net/sock.h>
55#include <net/snmp.h>
56
57#include <net/ipv6.h>
58#include <net/protocol.h>
59#include <net/ndisc.h>
60#include <net/ip6_route.h>
61#include <net/addrconf.h>
62#include <net/icmp.h>
63
Pierre Ynard31910572007-10-10 21:22:05 -070064#include <net/netlink.h>
65#include <linux/rtnetlink.h>
66
Linus Torvalds1da177e2005-04-16 15:20:36 -070067#include <net/flow.h>
68#include <net/ip6_checksum.h>
Denis V. Lunev1ed85162008-04-03 14:31:03 -070069#include <net/inet_common.h>
Linus Torvalds1da177e2005-04-16 15:20:36 -070070#include <linux/proc_fs.h>
71
72#include <linux/netfilter.h>
73#include <linux/netfilter_ipv6.h>
74
Joe Perches675418d2012-05-16 19:28:38 +000075/* Set to 3 to get tracing... */
76#define ND_DEBUG 1
77
78#define ND_PRINTK(val, level, fmt, ...) \
79do { \
80 if (val <= ND_DEBUG) \
81 net_##level##_ratelimited(fmt, ##__VA_ARGS__); \
82} while (0)
83
Eric Dumazetd6bf7812010-10-04 06:15:44 +000084static u32 ndisc_hash(const void *pkey,
85 const struct net_device *dev,
David S. Miller2c2aba62011-12-28 15:06:58 -050086 __u32 *hash_rnd);
Linus Torvalds1da177e2005-04-16 15:20:36 -070087static int ndisc_constructor(struct neighbour *neigh);
88static void ndisc_solicit(struct neighbour *neigh, struct sk_buff *skb);
89static void ndisc_error_report(struct neighbour *neigh, struct sk_buff *skb);
90static int pndisc_constructor(struct pneigh_entry *n);
91static void pndisc_destructor(struct pneigh_entry *n);
92static void pndisc_redo(struct sk_buff *skb);
93
Stephen Hemminger89d69d22009-09-01 11:13:19 +000094static const struct neigh_ops ndisc_generic_ops = {
Linus Torvalds1da177e2005-04-16 15:20:36 -070095 .family = AF_INET6,
96 .solicit = ndisc_solicit,
97 .error_report = ndisc_error_report,
98 .output = neigh_resolve_output,
99 .connected_output = neigh_connected_output,
Linus Torvalds1da177e2005-04-16 15:20:36 -0700100};
101
Stephen Hemminger89d69d22009-09-01 11:13:19 +0000102static const struct neigh_ops ndisc_hh_ops = {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700103 .family = AF_INET6,
104 .solicit = ndisc_solicit,
105 .error_report = ndisc_error_report,
106 .output = neigh_resolve_output,
107 .connected_output = neigh_resolve_output,
Linus Torvalds1da177e2005-04-16 15:20:36 -0700108};
109
110
Stephen Hemminger89d69d22009-09-01 11:13:19 +0000111static const struct neigh_ops ndisc_direct_ops = {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700112 .family = AF_INET6,
David S. Miller8f40b162011-07-17 13:34:11 -0700113 .output = neigh_direct_output,
114 .connected_output = neigh_direct_output,
Linus Torvalds1da177e2005-04-16 15:20:36 -0700115};
116
117struct neigh_table nd_tbl = {
118 .family = AF_INET6,
Linus Torvalds1da177e2005-04-16 15:20:36 -0700119 .key_len = sizeof(struct in6_addr),
120 .hash = ndisc_hash,
121 .constructor = ndisc_constructor,
122 .pconstructor = pndisc_constructor,
123 .pdestructor = pndisc_destructor,
124 .proxy_redo = pndisc_redo,
125 .id = "ndisc_cache",
126 .parms = {
Shan Weib6720832010-12-01 18:05:12 +0000127 .tbl = &nd_tbl,
128 .base_reachable_time = ND_REACHABLE_TIME,
129 .retrans_time = ND_RETRANS_TIMER,
130 .gc_staletime = 60 * HZ,
131 .reachable_time = ND_REACHABLE_TIME,
132 .delay_probe_time = 5 * HZ,
Eric Dumazet8b5c1712011-11-09 12:07:14 +0000133 .queue_len_bytes = 64*1024,
Shan Weib6720832010-12-01 18:05:12 +0000134 .ucast_probes = 3,
135 .mcast_probes = 3,
136 .anycast_delay = 1 * HZ,
137 .proxy_delay = (8 * HZ) / 10,
138 .proxy_qlen = 64,
Linus Torvalds1da177e2005-04-16 15:20:36 -0700139 },
140 .gc_interval = 30 * HZ,
141 .gc_thresh1 = 128,
142 .gc_thresh2 = 512,
143 .gc_thresh3 = 1024,
144};
145
YOSHIFUJI Hideaki / 吉藤英明5f5a0112013-01-21 06:48:53 +0000146static void ndisc_fill_addr_option(struct sk_buff *skb, int type, void *data)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700147{
YOSHIFUJI Hideaki / 吉藤英明5f5a0112013-01-21 06:48:53 +0000148 int pad = ndisc_addr_option_pad(skb->dev->type);
149 int data_len = skb->dev->addr_len;
150 int space = ndisc_opt_addr_space(skb->dev);
151 u8 *opt = skb_put(skb, space);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700152
153 opt[0] = type;
154 opt[1] = space>>3;
155
156 memset(opt + 2, 0, pad);
157 opt += pad;
158 space -= pad;
159
160 memcpy(opt+2, data, data_len);
161 data_len += 2;
162 opt += data_len;
163 if ((space -= data_len) > 0)
164 memset(opt, 0, space);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700165}
166
167static struct nd_opt_hdr *ndisc_next_option(struct nd_opt_hdr *cur,
168 struct nd_opt_hdr *end)
169{
170 int type;
171 if (!cur || !end || cur >= end)
172 return NULL;
173 type = cur->nd_opt_type;
174 do {
175 cur = ((void *)cur) + (cur->nd_opt_len << 3);
176 } while(cur < end && cur->nd_opt_type != type);
Eric Dumazeta02cec22010-09-22 20:43:57 +0000177 return cur <= end && cur->nd_opt_type == type ? cur : NULL;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700178}
179
Pierre Ynard31910572007-10-10 21:22:05 -0700180static inline int ndisc_is_useropt(struct nd_opt_hdr *opt)
181{
Alexey I. Froloffe35f30c2012-04-06 05:50:58 +0000182 return opt->nd_opt_type == ND_OPT_RDNSS ||
183 opt->nd_opt_type == ND_OPT_DNSSL;
Pierre Ynard31910572007-10-10 21:22:05 -0700184}
185
186static struct nd_opt_hdr *ndisc_next_useropt(struct nd_opt_hdr *cur,
187 struct nd_opt_hdr *end)
188{
189 if (!cur || !end || cur >= end)
190 return NULL;
191 do {
192 cur = ((void *)cur) + (cur->nd_opt_len << 3);
193 } while(cur < end && !ndisc_is_useropt(cur));
Eric Dumazeta02cec22010-09-22 20:43:57 +0000194 return cur <= end && ndisc_is_useropt(cur) ? cur : NULL;
Pierre Ynard31910572007-10-10 21:22:05 -0700195}
196
David S. Miller30f2a5f2012-07-11 23:26:46 -0700197struct ndisc_options *ndisc_parse_options(u8 *opt, int opt_len,
198 struct ndisc_options *ndopts)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700199{
200 struct nd_opt_hdr *nd_opt = (struct nd_opt_hdr *)opt;
201
202 if (!nd_opt || opt_len < 0 || !ndopts)
203 return NULL;
204 memset(ndopts, 0, sizeof(*ndopts));
205 while (opt_len) {
206 int l;
207 if (opt_len < sizeof(struct nd_opt_hdr))
208 return NULL;
209 l = nd_opt->nd_opt_len << 3;
210 if (opt_len < l || l == 0)
211 return NULL;
212 switch (nd_opt->nd_opt_type) {
213 case ND_OPT_SOURCE_LL_ADDR:
214 case ND_OPT_TARGET_LL_ADDR:
215 case ND_OPT_MTU:
216 case ND_OPT_REDIRECT_HDR:
217 if (ndopts->nd_opt_array[nd_opt->nd_opt_type]) {
Joe Perches675418d2012-05-16 19:28:38 +0000218 ND_PRINTK(2, warn,
219 "%s: duplicated ND6 option found: type=%d\n",
220 __func__, nd_opt->nd_opt_type);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700221 } else {
222 ndopts->nd_opt_array[nd_opt->nd_opt_type] = nd_opt;
223 }
224 break;
225 case ND_OPT_PREFIX_INFO:
226 ndopts->nd_opts_pi_end = nd_opt;
Stephen Hemmingercfcabdc2007-10-09 01:59:42 -0700227 if (!ndopts->nd_opt_array[nd_opt->nd_opt_type])
Linus Torvalds1da177e2005-04-16 15:20:36 -0700228 ndopts->nd_opt_array[nd_opt->nd_opt_type] = nd_opt;
229 break;
YOSHIFUJI Hideaki70ceb4f2006-03-20 17:06:24 -0800230#ifdef CONFIG_IPV6_ROUTE_INFO
231 case ND_OPT_ROUTE_INFO:
232 ndopts->nd_opts_ri_end = nd_opt;
233 if (!ndopts->nd_opts_ri)
234 ndopts->nd_opts_ri = nd_opt;
235 break;
236#endif
Linus Torvalds1da177e2005-04-16 15:20:36 -0700237 default:
Pierre Ynard31910572007-10-10 21:22:05 -0700238 if (ndisc_is_useropt(nd_opt)) {
239 ndopts->nd_useropts_end = nd_opt;
240 if (!ndopts->nd_useropts)
241 ndopts->nd_useropts = nd_opt;
242 } else {
243 /*
244 * Unknown options must be silently ignored,
245 * to accommodate future extension to the
246 * protocol.
247 */
Joe Perches675418d2012-05-16 19:28:38 +0000248 ND_PRINTK(2, notice,
249 "%s: ignored unsupported option; type=%d, len=%d\n",
250 __func__,
251 nd_opt->nd_opt_type,
252 nd_opt->nd_opt_len);
Pierre Ynard31910572007-10-10 21:22:05 -0700253 }
Linus Torvalds1da177e2005-04-16 15:20:36 -0700254 }
255 opt_len -= l;
256 nd_opt = ((void *)nd_opt) + l;
257 }
258 return ndopts;
259}
260
Eric Dumazetb71d1d42011-04-22 04:53:02 +0000261int ndisc_mc_map(const struct in6_addr *addr, char *buf, struct net_device *dev, int dir)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700262{
263 switch (dev->type) {
264 case ARPHRD_ETHER:
265 case ARPHRD_IEEE802: /* Not sure. Check it later. --ANK */
266 case ARPHRD_FDDI:
267 ipv6_eth_mc_map(addr, buf);
268 return 0;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700269 case ARPHRD_ARCNET:
270 ipv6_arcnet_mc_map(addr, buf);
271 return 0;
272 case ARPHRD_INFINIBAND:
Rolf Manderscheida9e527e2007-12-10 13:38:41 -0700273 ipv6_ib_mc_map(addr, dev->broadcast, buf);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700274 return 0;
Timo Teräs93ca3bb2011-03-28 22:40:53 +0000275 case ARPHRD_IPGRE:
276 return ipv6_ipgre_mc_map(addr, dev->broadcast, buf);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700277 default:
278 if (dir) {
279 memcpy(buf, dev->broadcast, dev->addr_len);
280 return 0;
281 }
282 }
283 return -EINVAL;
284}
285
YOSHIFUJI Hideaki71590392007-02-22 22:05:40 +0900286EXPORT_SYMBOL(ndisc_mc_map);
287
Eric Dumazetd6bf7812010-10-04 06:15:44 +0000288static u32 ndisc_hash(const void *pkey,
289 const struct net_device *dev,
David S. Miller2c2aba62011-12-28 15:06:58 -0500290 __u32 *hash_rnd)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700291{
David S. Miller2c2aba62011-12-28 15:06:58 -0500292 return ndisc_hashfn(pkey, dev, hash_rnd);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700293}
294
295static int ndisc_constructor(struct neighbour *neigh)
296{
297 struct in6_addr *addr = (struct in6_addr*)&neigh->primary_key;
298 struct net_device *dev = neigh->dev;
299 struct inet6_dev *in6_dev;
300 struct neigh_parms *parms;
Eric Dumazeta50feda2012-05-18 18:57:34 +0000301 bool is_multicast = ipv6_addr_is_multicast(addr);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700302
Linus Torvalds1da177e2005-04-16 15:20:36 -0700303 in6_dev = in6_dev_get(dev);
304 if (in6_dev == NULL) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700305 return -EINVAL;
306 }
307
308 parms = in6_dev->nd_parms;
309 __neigh_parms_put(neigh->parms);
310 neigh->parms = neigh_parms_clone(parms);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700311
312 neigh->type = is_multicast ? RTN_MULTICAST : RTN_UNICAST;
Stephen Hemminger3b04ddd2007-10-09 01:40:57 -0700313 if (!dev->header_ops) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700314 neigh->nud_state = NUD_NOARP;
315 neigh->ops = &ndisc_direct_ops;
David S. Miller8f40b162011-07-17 13:34:11 -0700316 neigh->output = neigh_direct_output;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700317 } else {
318 if (is_multicast) {
319 neigh->nud_state = NUD_NOARP;
320 ndisc_mc_map(addr, neigh->ha, dev, 1);
321 } else if (dev->flags&(IFF_NOARP|IFF_LOOPBACK)) {
322 neigh->nud_state = NUD_NOARP;
323 memcpy(neigh->ha, dev->dev_addr, dev->addr_len);
324 if (dev->flags&IFF_LOOPBACK)
325 neigh->type = RTN_LOCAL;
326 } else if (dev->flags&IFF_POINTOPOINT) {
327 neigh->nud_state = NUD_NOARP;
328 memcpy(neigh->ha, dev->broadcast, dev->addr_len);
329 }
Stephen Hemminger3b04ddd2007-10-09 01:40:57 -0700330 if (dev->header_ops->cache)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700331 neigh->ops = &ndisc_hh_ops;
332 else
333 neigh->ops = &ndisc_generic_ops;
334 if (neigh->nud_state&NUD_VALID)
335 neigh->output = neigh->ops->connected_output;
336 else
337 neigh->output = neigh->ops->output;
338 }
339 in6_dev_put(in6_dev);
340 return 0;
341}
342
343static int pndisc_constructor(struct pneigh_entry *n)
344{
345 struct in6_addr *addr = (struct in6_addr*)&n->key;
346 struct in6_addr maddr;
347 struct net_device *dev = n->dev;
348
349 if (dev == NULL || __in6_dev_get(dev) == NULL)
350 return -EINVAL;
351 addrconf_addr_solict_mult(addr, &maddr);
352 ipv6_dev_mc_inc(dev, &maddr);
353 return 0;
354}
355
356static void pndisc_destructor(struct pneigh_entry *n)
357{
358 struct in6_addr *addr = (struct in6_addr*)&n->key;
359 struct in6_addr maddr;
360 struct net_device *dev = n->dev;
361
362 if (dev == NULL || __in6_dev_get(dev) == NULL)
363 return;
364 addrconf_addr_solict_mult(addr, &maddr);
365 ipv6_dev_mc_dec(dev, &maddr);
366}
367
YOSHIFUJI Hideaki / 吉藤英明de093342013-01-21 06:48:14 +0000368static struct sk_buff *ndisc_alloc_skb(struct net_device *dev,
369 int len)
370{
371 int hlen = LL_RESERVED_SPACE(dev);
372 int tlen = dev->needed_tailroom;
373 struct sock *sk = dev_net(dev)->ipv6.ndisc_sk;
374 struct sk_buff *skb;
YOSHIFUJI Hideaki / 吉藤英明de093342013-01-21 06:48:14 +0000375
Thomas Graf25a6e6b2013-09-03 13:37:01 +0200376 skb = alloc_skb(hlen + sizeof(struct ipv6hdr) + len + tlen, GFP_ATOMIC);
YOSHIFUJI Hideaki / 吉藤英明de093342013-01-21 06:48:14 +0000377 if (!skb) {
Thomas Graf25a6e6b2013-09-03 13:37:01 +0200378 ND_PRINTK(0, err, "ndisc: %s failed to allocate an skb\n",
379 __func__);
YOSHIFUJI Hideaki / 吉藤英明de093342013-01-21 06:48:14 +0000380 return NULL;
381 }
382
YOSHIFUJI Hideaki / 吉藤英明f382d032013-01-21 06:48:29 +0000383 skb->protocol = htons(ETH_P_IPV6);
384 skb->dev = dev;
385
YOSHIFUJI Hideaki / 吉藤英明527a1502013-01-21 06:48:39 +0000386 skb_reserve(skb, hlen + sizeof(struct ipv6hdr));
YOSHIFUJI Hideaki / 吉藤英明5135e632013-01-21 06:48:44 +0000387 skb_reset_transport_header(skb);
YOSHIFUJI Hideaki / 吉藤英明de093342013-01-21 06:48:14 +0000388
Thomas Graf25a6e6b2013-09-03 13:37:01 +0200389 /* Manually assign socket ownership as we avoid calling
390 * sock_alloc_send_pskb() to bypass wmem buffer limits
391 */
392 skb_set_owner_w(skb, sk);
393
YOSHIFUJI Hideaki / 吉藤英明de093342013-01-21 06:48:14 +0000394 return skb;
395}
396
YOSHIFUJI Hideaki / 吉藤英明f382d032013-01-21 06:48:29 +0000397static void ip6_nd_hdr(struct sk_buff *skb,
YOSHIFUJI Hideaki / 吉藤英明2576f172013-01-21 06:48:19 +0000398 const struct in6_addr *saddr,
399 const struct in6_addr *daddr,
YOSHIFUJI Hideaki / 吉藤英明c8d6c382013-01-21 06:48:24 +0000400 int hop_limit, int len)
YOSHIFUJI Hideaki / 吉藤英明2576f172013-01-21 06:48:19 +0000401{
402 struct ipv6hdr *hdr;
403
YOSHIFUJI Hideaki / 吉藤英明527a1502013-01-21 06:48:39 +0000404 skb_push(skb, sizeof(*hdr));
YOSHIFUJI Hideaki / 吉藤英明2576f172013-01-21 06:48:19 +0000405 skb_reset_network_header(skb);
YOSHIFUJI Hideaki / 吉藤英明2576f172013-01-21 06:48:19 +0000406 hdr = ipv6_hdr(skb);
407
408 ip6_flow_hdr(hdr, 0, 0);
409
410 hdr->payload_len = htons(len);
YOSHIFUJI Hideaki / 吉藤英明c8d6c382013-01-21 06:48:24 +0000411 hdr->nexthdr = IPPROTO_ICMPV6;
412 hdr->hop_limit = hop_limit;
YOSHIFUJI Hideaki / 吉藤英明2576f172013-01-21 06:48:19 +0000413
414 hdr->saddr = *saddr;
415 hdr->daddr = *daddr;
416}
417
YOSHIFUJI Hideaki / 吉藤英明af9a9972013-01-21 06:48:34 +0000418static void ndisc_send_skb(struct sk_buff *skb,
YOSHIFUJI Hideakifd0ea7d2012-12-13 02:40:26 +0900419 const struct in6_addr *daddr,
YOSHIFUJI Hideaki / 吉藤英明aa4bdd42013-01-21 06:48:58 +0000420 const struct in6_addr *saddr)
Brian Haley305d5522008-11-04 17:51:14 -0800421{
YOSHIFUJI Hideaki / 吉藤英明f4de84c2013-01-21 06:49:03 +0000422 struct dst_entry *dst = skb_dst(skb);
YOSHIFUJI Hideaki / 吉藤英明af9a9972013-01-21 06:48:34 +0000423 struct net *net = dev_net(skb->dev);
YOSHIFUJI Hideaki / 吉藤英明7b3d9b02013-01-21 06:49:08 +0000424 struct sock *sk = net->ipv6.ndisc_sk;
Brian Haley305d5522008-11-04 17:51:14 -0800425 struct inet6_dev *idev;
426 int err;
YOSHIFUJI Hideaki / 吉藤英明aa4bdd42013-01-21 06:48:58 +0000427 struct icmp6hdr *icmp6h = icmp6_hdr(skb);
Brian Haley305d5522008-11-04 17:51:14 -0800428 u8 type;
429
430 type = icmp6h->icmp6_type;
431
YOSHIFUJI Hideaki / 吉藤英明f4de84c2013-01-21 06:49:03 +0000432 if (!dst) {
YOSHIFUJI Hideaki / 吉藤英明f4de84c2013-01-21 06:49:03 +0000433 struct flowi6 fl6;
Brian Haley305d5522008-11-04 17:51:14 -0800434
YOSHIFUJI Hideaki / 吉藤英明f4de84c2013-01-21 06:49:03 +0000435 icmpv6_flow_init(sk, &fl6, type, saddr, daddr, skb->dev->ifindex);
436 dst = icmp6_dst_alloc(skb->dev, &fl6);
437 if (IS_ERR(dst)) {
438 kfree_skb(skb);
439 return;
440 }
441
442 skb_dst_set(skb, dst);
443 }
YOSHIFUJI Hideakie1ec7842007-04-24 20:44:52 +0900444
YOSHIFUJI Hideaki / 吉藤英明7b3d9b02013-01-21 06:49:08 +0000445 icmp6h->icmp6_cksum = csum_ipv6_magic(saddr, daddr, skb->len,
446 IPPROTO_ICMPV6,
447 csum_partial(icmp6h,
448 skb->len, 0));
449
450 ip6_nd_hdr(skb, saddr, daddr, inet6_sk(sk)->hop_limit, skb->len);
451
Eric Dumazetcfdf7642011-07-27 21:13:03 +0000452 rcu_read_lock();
453 idev = __in6_dev_get(dst->dev);
Neil Hormanedf391f2009-04-27 02:45:02 -0700454 IP6_UPD_PO_STATS(net, idev, IPSTATS_MIB_OUT, skb->len);
YOSHIFUJI Hideakie1ec7842007-04-24 20:44:52 +0900455
Jan Engelhardtb2e0b382010-03-23 04:09:07 +0100456 err = NF_HOOK(NFPROTO_IPV6, NF_INET_LOCAL_OUT, skb, NULL, dst->dev,
Patrick McHardy6e23ae22007-11-19 18:53:30 -0800457 dst_output);
YOSHIFUJI Hideakie1ec7842007-04-24 20:44:52 +0900458 if (!err) {
Denis V. Lunev5c5d2442008-10-08 10:33:50 -0700459 ICMP6MSGOUT_INC_STATS(net, idev, type);
Denis V. Luneva862f6a2008-10-08 10:33:06 -0700460 ICMP6_INC_STATS(net, idev, ICMP6_MIB_OUTMSGS);
YOSHIFUJI Hideakie1ec7842007-04-24 20:44:52 +0900461 }
462
Eric Dumazetcfdf7642011-07-27 21:13:03 +0000463 rcu_read_unlock();
YOSHIFUJI Hideakie1ec7842007-04-24 20:44:52 +0900464}
465
Cong Wangf564f452013-08-31 13:44:36 +0800466void ndisc_send_na(struct net_device *dev, struct neighbour *neigh,
467 const struct in6_addr *daddr,
468 const struct in6_addr *solicited_addr,
469 bool router, bool solicited, bool override, bool inc_opt)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700470{
YOSHIFUJI Hideaki / 吉藤英明b44b5f42013-01-21 06:49:13 +0000471 struct sk_buff *skb;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700472 struct in6_addr tmpaddr;
473 struct inet6_ifaddr *ifp;
YOSHIFUJI Hideaki9acd9f32008-04-10 15:42:10 +0900474 const struct in6_addr *src_addr;
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000475 struct nd_msg *msg;
476 int optlen = 0;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700477
478 /* for anycast or proxy, solicited_addr != src_addr */
YOSHIFUJI Hideakic346dca2008-03-25 21:47:49 +0900479 ifp = ipv6_get_ifaddr(dev_net(dev), solicited_addr, dev, 1);
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +0900480 if (ifp) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700481 src_addr = solicited_addr;
Neil Horman95c385b2007-04-25 17:08:10 -0700482 if (ifp->flags & IFA_F_OPTIMISTIC)
Daniel Balutaf2f79cc2013-07-13 11:26:51 +0300483 override = false;
stephen hemminger9f888162010-06-21 11:00:13 +0000484 inc_opt |= ifp->idev->cnf.force_tllao;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700485 in6_ifa_put(ifp);
486 } else {
Brian Haley191cd582008-08-14 15:33:21 -0700487 if (ipv6_dev_get_saddr(dev_net(dev), dev, daddr,
YOSHIFUJI Hideakic346dca2008-03-25 21:47:49 +0900488 inet6_sk(dev_net(dev)->ipv6.ndisc_sk)->srcprefs,
YOSHIFUJI Hideaki7cbca672008-03-25 09:37:42 +0900489 &tmpaddr))
Linus Torvalds1da177e2005-04-16 15:20:36 -0700490 return;
491 src_addr = &tmpaddr;
492 }
493
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000494 if (!dev->addr_len)
495 inc_opt = 0;
496 if (inc_opt)
497 optlen += ndisc_opt_addr_space(dev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700498
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000499 skb = ndisc_alloc_skb(dev, sizeof(*msg) + optlen);
YOSHIFUJI Hideaki / 吉藤英明b44b5f42013-01-21 06:49:13 +0000500 if (!skb)
501 return;
502
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000503 msg = (struct nd_msg *)skb_put(skb, sizeof(*msg));
504 *msg = (struct nd_msg) {
505 .icmph = {
506 .icmp6_type = NDISC_NEIGHBOUR_ADVERTISEMENT,
507 .icmp6_router = router,
508 .icmp6_solicited = solicited,
509 .icmp6_override = override,
510 },
511 .target = *solicited_addr,
512 };
513
514 if (inc_opt)
515 ndisc_fill_addr_option(skb, ND_OPT_TARGET_LL_ADDR,
516 dev->dev_addr);
517
518
YOSHIFUJI Hideaki / 吉藤英明b44b5f42013-01-21 06:49:13 +0000519 ndisc_send_skb(skb, daddr, src_addr);
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +0900520}
Linus Torvalds1da177e2005-04-16 15:20:36 -0700521
Ben Hutchingsf47b9462011-04-15 13:46:02 +0000522static void ndisc_send_unsol_na(struct net_device *dev)
523{
524 struct inet6_dev *idev;
525 struct inet6_ifaddr *ifa;
Ben Hutchingsf47b9462011-04-15 13:46:02 +0000526
527 idev = in6_dev_get(dev);
528 if (!idev)
529 return;
530
531 read_lock_bh(&idev->lock);
532 list_for_each_entry(ifa, &idev->addr_list, if_list) {
YOSHIFUJI Hideaki / 吉藤英明9fafd652012-11-12 07:50:17 +0000533 ndisc_send_na(dev, NULL, &in6addr_linklocal_allnodes, &ifa->addr,
Ben Hutchingsf47b9462011-04-15 13:46:02 +0000534 /*router=*/ !!idev->cnf.forwarding,
535 /*solicited=*/ false, /*override=*/ true,
536 /*inc_opt=*/ true);
537 }
538 read_unlock_bh(&idev->lock);
539
540 in6_dev_put(idev);
541}
542
Linus Torvalds1da177e2005-04-16 15:20:36 -0700543void ndisc_send_ns(struct net_device *dev, struct neighbour *neigh,
YOSHIFUJI Hideaki9acd9f32008-04-10 15:42:10 +0900544 const struct in6_addr *solicit,
545 const struct in6_addr *daddr, const struct in6_addr *saddr)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700546{
YOSHIFUJI Hideaki / 吉藤英明b44b5f42013-01-21 06:49:13 +0000547 struct sk_buff *skb;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700548 struct in6_addr addr_buf;
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000549 int inc_opt = dev->addr_len;
550 int optlen = 0;
551 struct nd_msg *msg;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700552
553 if (saddr == NULL) {
Neil Horman95c385b2007-04-25 17:08:10 -0700554 if (ipv6_get_lladdr(dev, &addr_buf,
555 (IFA_F_TENTATIVE|IFA_F_OPTIMISTIC)))
Linus Torvalds1da177e2005-04-16 15:20:36 -0700556 return;
557 saddr = &addr_buf;
558 }
559
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000560 if (ipv6_addr_any(saddr))
Daniel Balutaf2f79cc2013-07-13 11:26:51 +0300561 inc_opt = false;
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000562 if (inc_opt)
563 optlen += ndisc_opt_addr_space(dev);
564
565 skb = ndisc_alloc_skb(dev, sizeof(*msg) + optlen);
YOSHIFUJI Hideaki / 吉藤英明b44b5f42013-01-21 06:49:13 +0000566 if (!skb)
567 return;
568
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000569 msg = (struct nd_msg *)skb_put(skb, sizeof(*msg));
570 *msg = (struct nd_msg) {
571 .icmph = {
572 .icmp6_type = NDISC_NEIGHBOUR_SOLICITATION,
573 },
574 .target = *solicit,
575 };
576
577 if (inc_opt)
578 ndisc_fill_addr_option(skb, ND_OPT_SOURCE_LL_ADDR,
579 dev->dev_addr);
580
YOSHIFUJI Hideaki / 吉藤英明b44b5f42013-01-21 06:49:13 +0000581 ndisc_send_skb(skb, daddr, saddr);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700582}
583
YOSHIFUJI Hideaki9acd9f32008-04-10 15:42:10 +0900584void ndisc_send_rs(struct net_device *dev, const struct in6_addr *saddr,
585 const struct in6_addr *daddr)
Linus Torvalds1da177e2005-04-16 15:20:36 -0700586{
YOSHIFUJI Hideaki / 吉藤英明b44b5f42013-01-21 06:49:13 +0000587 struct sk_buff *skb;
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000588 struct rs_msg *msg;
Neil Horman95c385b2007-04-25 17:08:10 -0700589 int send_sllao = dev->addr_len;
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000590 int optlen = 0;
Neil Horman95c385b2007-04-25 17:08:10 -0700591
592#ifdef CONFIG_IPV6_OPTIMISTIC_DAD
593 /*
594 * According to section 2.2 of RFC 4429, we must not
595 * send router solicitations with a sllao from
596 * optimistic addresses, but we may send the solicitation
597 * if we don't include the sllao. So here we check
598 * if our address is optimistic, and if so, we
Joe Perchesbea85192007-12-20 14:01:35 -0800599 * suppress the inclusion of the sllao.
Neil Horman95c385b2007-04-25 17:08:10 -0700600 */
601 if (send_sllao) {
YOSHIFUJI Hideakic346dca2008-03-25 21:47:49 +0900602 struct inet6_ifaddr *ifp = ipv6_get_ifaddr(dev_net(dev), saddr,
Daniel Lezcano1cab3da2008-01-10 22:44:09 -0800603 dev, 1);
Neil Horman95c385b2007-04-25 17:08:10 -0700604 if (ifp) {
605 if (ifp->flags & IFA_F_OPTIMISTIC) {
YOSHIFUJI Hideakica043562007-02-28 23:13:20 +0900606 send_sllao = 0;
Neil Horman95c385b2007-04-25 17:08:10 -0700607 }
YOSHIFUJI Hideakica043562007-02-28 23:13:20 +0900608 in6_ifa_put(ifp);
Neil Horman95c385b2007-04-25 17:08:10 -0700609 } else {
610 send_sllao = 0;
611 }
612 }
613#endif
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000614 if (send_sllao)
615 optlen += ndisc_opt_addr_space(dev);
616
617 skb = ndisc_alloc_skb(dev, sizeof(*msg) + optlen);
YOSHIFUJI Hideaki / 吉藤英明b44b5f42013-01-21 06:49:13 +0000618 if (!skb)
619 return;
620
YOSHIFUJI Hideaki / 吉藤英明1cb3fe52013-01-21 06:49:17 +0000621 msg = (struct rs_msg *)skb_put(skb, sizeof(*msg));
622 *msg = (struct rs_msg) {
623 .icmph = {
624 .icmp6_type = NDISC_ROUTER_SOLICITATION,
625 },
626 };
627
628 if (send_sllao)
629 ndisc_fill_addr_option(skb, ND_OPT_SOURCE_LL_ADDR,
630 dev->dev_addr);
631
YOSHIFUJI Hideaki / 吉藤英明b44b5f42013-01-21 06:49:13 +0000632 ndisc_send_skb(skb, daddr, saddr);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700633}
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +0900634
Linus Torvalds1da177e2005-04-16 15:20:36 -0700635
636static void ndisc_error_report(struct neighbour *neigh, struct sk_buff *skb)
637{
638 /*
639 * "The sender MUST return an ICMP
640 * destination unreachable"
641 */
642 dst_link_failure(skb);
643 kfree_skb(skb);
644}
645
646/* Called with locked neigh: either read or both */
647
648static void ndisc_solicit(struct neighbour *neigh, struct sk_buff *skb)
649{
650 struct in6_addr *saddr = NULL;
651 struct in6_addr mcaddr;
652 struct net_device *dev = neigh->dev;
653 struct in6_addr *target = (struct in6_addr *)&neigh->primary_key;
654 int probes = atomic_read(&neigh->probes);
655
YOSHIFUJI Hideakic346dca2008-03-25 21:47:49 +0900656 if (skb && ipv6_chk_addr(dev_net(dev), &ipv6_hdr(skb)->saddr, dev, 1))
Arnaldo Carvalho de Melo0660e032007-04-25 17:54:47 -0700657 saddr = &ipv6_hdr(skb)->saddr;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700658
659 if ((probes -= neigh->parms->ucast_probes) < 0) {
660 if (!(neigh->nud_state & NUD_VALID)) {
Joe Perches675418d2012-05-16 19:28:38 +0000661 ND_PRINTK(1, dbg,
662 "%s: trying to ucast probe in NUD_INVALID: %pI6\n",
663 __func__, target);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700664 }
665 ndisc_send_ns(dev, neigh, target, target, saddr);
666 } else if ((probes -= neigh->parms->app_probes) < 0) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700667 neigh_app_ns(neigh);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700668 } else {
669 addrconf_addr_solict_mult(target, &mcaddr);
670 ndisc_send_ns(dev, NULL, target, &mcaddr, saddr);
671 }
672}
673
YOSHIFUJI Hideaki0736ffc2008-03-28 13:37:58 +0900674static int pndisc_is_router(const void *pkey,
675 struct net_device *dev)
Pavel Emelyanovfa86d322008-03-24 14:48:59 -0700676{
677 struct pneigh_entry *n;
YOSHIFUJI Hideaki0736ffc2008-03-28 13:37:58 +0900678 int ret = -1;
Pavel Emelyanovfa86d322008-03-24 14:48:59 -0700679
680 read_lock_bh(&nd_tbl.lock);
YOSHIFUJI Hideaki0736ffc2008-03-28 13:37:58 +0900681 n = __pneigh_lookup(&nd_tbl, dev_net(dev), pkey, dev);
682 if (n)
683 ret = !!(n->flags & NTF_ROUTER);
Pavel Emelyanovfa86d322008-03-24 14:48:59 -0700684 read_unlock_bh(&nd_tbl.lock);
685
YOSHIFUJI Hideaki0736ffc2008-03-28 13:37:58 +0900686 return ret;
Pavel Emelyanovfa86d322008-03-24 14:48:59 -0700687}
688
Linus Torvalds1da177e2005-04-16 15:20:36 -0700689static void ndisc_recv_ns(struct sk_buff *skb)
690{
Arnaldo Carvalho de Melo9c702202007-04-25 18:04:18 -0700691 struct nd_msg *msg = (struct nd_msg *)skb_transport_header(skb);
Eric Dumazetb71d1d42011-04-22 04:53:02 +0000692 const struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
693 const struct in6_addr *daddr = &ipv6_hdr(skb)->daddr;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700694 u8 *lladdr = NULL;
Simon Horman29a3cad2013-05-28 20:34:26 +0000695 u32 ndoptlen = skb_tail_pointer(skb) - (skb_transport_header(skb) +
Arnaldo Carvalho de Melo27a884d2007-04-19 20:29:13 -0700696 offsetof(struct nd_msg, opt));
Linus Torvalds1da177e2005-04-16 15:20:36 -0700697 struct ndisc_options ndopts;
698 struct net_device *dev = skb->dev;
699 struct inet6_ifaddr *ifp;
700 struct inet6_dev *idev = NULL;
701 struct neighbour *neigh;
702 int dad = ipv6_addr_any(saddr);
Eric Dumazeta50feda2012-05-18 18:57:34 +0000703 bool inc;
YOSHIFUJI Hideaki0736ffc2008-03-28 13:37:58 +0900704 int is_router = -1;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700705
YOSHIFUJI Hideaki / 吉藤英明115b0aa2013-01-18 02:05:03 +0000706 if (skb->len < sizeof(struct nd_msg)) {
707 ND_PRINTK(2, warn, "NS: packet too short\n");
708 return;
709 }
710
Linus Torvalds1da177e2005-04-16 15:20:36 -0700711 if (ipv6_addr_is_multicast(&msg->target)) {
Joe Perches675418d2012-05-16 19:28:38 +0000712 ND_PRINTK(2, warn, "NS: multicast target address\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700713 return;
714 }
715
716 /*
717 * RFC2461 7.1.1:
718 * DAD has to be destined for solicited node multicast address.
719 */
YOSHIFUJI Hideaki / 吉藤英明ca97a642013-01-20 07:39:00 +0000720 if (dad && !ipv6_addr_is_solict_mult(daddr)) {
Joe Perches675418d2012-05-16 19:28:38 +0000721 ND_PRINTK(2, warn, "NS: bad DAD packet (wrong destination)\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700722 return;
723 }
724
725 if (!ndisc_parse_options(msg->opt, ndoptlen, &ndopts)) {
Joe Perches675418d2012-05-16 19:28:38 +0000726 ND_PRINTK(2, warn, "NS: invalid ND options\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700727 return;
728 }
729
730 if (ndopts.nd_opts_src_lladdr) {
731 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr, dev);
732 if (!lladdr) {
Joe Perches675418d2012-05-16 19:28:38 +0000733 ND_PRINTK(2, warn,
734 "NS: invalid link-layer address length\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700735 return;
736 }
737
738 /* RFC2461 7.1.1:
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +0900739 * If the IP source address is the unspecified address,
740 * there MUST NOT be source link-layer address option
Linus Torvalds1da177e2005-04-16 15:20:36 -0700741 * in the message.
742 */
743 if (dad) {
Joe Perches675418d2012-05-16 19:28:38 +0000744 ND_PRINTK(2, warn,
745 "NS: bad DAD packet (link-layer address option)\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700746 return;
747 }
748 }
749
750 inc = ipv6_addr_is_multicast(daddr);
751
YOSHIFUJI Hideakic346dca2008-03-25 21:47:49 +0900752 ifp = ipv6_get_ifaddr(dev_net(dev), &msg->target, dev, 1);
Daniel Lezcanoa18bc692008-03-07 11:14:49 -0800753 if (ifp) {
Neil Horman95c385b2007-04-25 17:08:10 -0700754
755 if (ifp->flags & (IFA_F_TENTATIVE|IFA_F_OPTIMISTIC)) {
756 if (dad) {
Neil Horman95c385b2007-04-25 17:08:10 -0700757 /*
758 * We are colliding with another node
759 * who is doing DAD
760 * so fail our DAD process
761 */
762 addrconf_dad_failure(ifp);
Denis V. Lunev9e3be4b2007-09-11 11:04:49 +0200763 return;
Neil Horman95c385b2007-04-25 17:08:10 -0700764 } else {
765 /*
766 * This is not a dad solicitation.
767 * If we are an optimistic node,
768 * we should respond.
769 * Otherwise, we should ignore it.
770 */
771 if (!(ifp->flags & IFA_F_OPTIMISTIC))
772 goto out;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700773 }
Linus Torvalds1da177e2005-04-16 15:20:36 -0700774 }
775
776 idev = ifp->idev;
777 } else {
YOSHIFUJI Hideaki53b79972008-07-19 22:35:03 -0700778 struct net *net = dev_net(dev);
779
Linus Torvalds1da177e2005-04-16 15:20:36 -0700780 idev = in6_dev_get(dev);
781 if (!idev) {
782 /* XXX: count this drop? */
783 return;
784 }
785
YOSHIFUJI Hideaki53b79972008-07-19 22:35:03 -0700786 if (ipv6_chk_acast_addr(net, dev, &msg->target) ||
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +0900787 (idev->cnf.forwarding &&
YOSHIFUJI Hideaki53b79972008-07-19 22:35:03 -0700788 (net->ipv6.devconf_all->proxy_ndp || idev->cnf.proxy_ndp) &&
YOSHIFUJI Hideaki0736ffc2008-03-28 13:37:58 +0900789 (is_router = pndisc_is_router(&msg->target, dev)) >= 0)) {
Patrick McHardya61bbcf2005-08-14 17:24:31 -0700790 if (!(NEIGH_CB(skb)->flags & LOCALLY_ENQUEUED) &&
Linus Torvalds1da177e2005-04-16 15:20:36 -0700791 skb->pkt_type != PACKET_HOST &&
Daniel Balutaf2f79cc2013-07-13 11:26:51 +0300792 inc &&
Linus Torvalds1da177e2005-04-16 15:20:36 -0700793 idev->nd_parms->proxy_delay != 0) {
794 /*
795 * for anycast or proxy,
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +0900796 * sender should delay its response
797 * by a random time between 0 and
Linus Torvalds1da177e2005-04-16 15:20:36 -0700798 * MAX_ANYCAST_DELAY_TIME seconds.
799 * (RFC2461) -- yoshfuji
800 */
801 struct sk_buff *n = skb_clone(skb, GFP_ATOMIC);
802 if (n)
803 pneigh_enqueue(&nd_tbl, idev->nd_parms, n);
804 goto out;
805 }
806 } else
807 goto out;
808 }
809
YOSHIFUJI Hideaki0736ffc2008-03-28 13:37:58 +0900810 if (is_router < 0)
YOSHIFUJI Hideaki / 吉藤英明fb568632013-01-20 07:39:18 +0000811 is_router = idev->cnf.forwarding;
Ville Nuorvala62dd9312006-09-22 14:43:19 -0700812
Linus Torvalds1da177e2005-04-16 15:20:36 -0700813 if (dad) {
YOSHIFUJI Hideakif3ee4012008-04-10 15:42:11 +0900814 ndisc_send_na(dev, NULL, &in6addr_linklocal_allnodes, &msg->target,
YOSHIFUJI Hideaki / 吉藤英明fb568632013-01-20 07:39:18 +0000815 !!is_router, false, (ifp != NULL), true);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700816 goto out;
817 }
818
819 if (inc)
820 NEIGH_CACHE_STAT_INC(&nd_tbl, rcv_probes_mcast);
821 else
822 NEIGH_CACHE_STAT_INC(&nd_tbl, rcv_probes_ucast);
823
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +0900824 /*
Linus Torvalds1da177e2005-04-16 15:20:36 -0700825 * update / create cache entry
826 * for the source address
827 */
828 neigh = __neigh_lookup(&nd_tbl, saddr, dev,
829 !inc || lladdr || !dev->addr_len);
830 if (neigh)
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +0900831 neigh_update(neigh, lladdr, NUD_STALE,
Linus Torvalds1da177e2005-04-16 15:20:36 -0700832 NEIGH_UPDATE_F_WEAK_OVERRIDE|
833 NEIGH_UPDATE_F_OVERRIDE);
Stephen Hemminger3b04ddd2007-10-09 01:40:57 -0700834 if (neigh || !dev->header_ops) {
Linus Torvalds1da177e2005-04-16 15:20:36 -0700835 ndisc_send_na(dev, neigh, saddr, &msg->target,
YOSHIFUJI Hideaki / 吉藤英明fb568632013-01-20 07:39:18 +0000836 !!is_router,
837 true, (ifp != NULL && inc), inc);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700838 if (neigh)
839 neigh_release(neigh);
840 }
841
842out:
843 if (ifp)
844 in6_ifa_put(ifp);
845 else
846 in6_dev_put(idev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700847}
848
849static void ndisc_recv_na(struct sk_buff *skb)
850{
Arnaldo Carvalho de Melo9c702202007-04-25 18:04:18 -0700851 struct nd_msg *msg = (struct nd_msg *)skb_transport_header(skb);
Eric Dumazetb71d1d42011-04-22 04:53:02 +0000852 const struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
853 const struct in6_addr *daddr = &ipv6_hdr(skb)->daddr;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700854 u8 *lladdr = NULL;
Simon Horman29a3cad2013-05-28 20:34:26 +0000855 u32 ndoptlen = skb_tail_pointer(skb) - (skb_transport_header(skb) +
Arnaldo Carvalho de Melo27a884d2007-04-19 20:29:13 -0700856 offsetof(struct nd_msg, opt));
Linus Torvalds1da177e2005-04-16 15:20:36 -0700857 struct ndisc_options ndopts;
858 struct net_device *dev = skb->dev;
859 struct inet6_ifaddr *ifp;
860 struct neighbour *neigh;
861
862 if (skb->len < sizeof(struct nd_msg)) {
Joe Perches675418d2012-05-16 19:28:38 +0000863 ND_PRINTK(2, warn, "NA: packet too short\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700864 return;
865 }
866
867 if (ipv6_addr_is_multicast(&msg->target)) {
Joe Perches675418d2012-05-16 19:28:38 +0000868 ND_PRINTK(2, warn, "NA: target address is multicast\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700869 return;
870 }
871
872 if (ipv6_addr_is_multicast(daddr) &&
873 msg->icmph.icmp6_solicited) {
Joe Perches675418d2012-05-16 19:28:38 +0000874 ND_PRINTK(2, warn, "NA: solicited NA is multicasted\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700875 return;
876 }
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +0900877
Linus Torvalds1da177e2005-04-16 15:20:36 -0700878 if (!ndisc_parse_options(msg->opt, ndoptlen, &ndopts)) {
Joe Perches675418d2012-05-16 19:28:38 +0000879 ND_PRINTK(2, warn, "NS: invalid ND option\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700880 return;
881 }
882 if (ndopts.nd_opts_tgt_lladdr) {
883 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr, dev);
884 if (!lladdr) {
Joe Perches675418d2012-05-16 19:28:38 +0000885 ND_PRINTK(2, warn,
886 "NA: invalid link-layer address length\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700887 return;
888 }
889 }
YOSHIFUJI Hideakic346dca2008-03-25 21:47:49 +0900890 ifp = ipv6_get_ifaddr(dev_net(dev), &msg->target, dev, 1);
Daniel Lezcanoa18bc692008-03-07 11:14:49 -0800891 if (ifp) {
Daniel Walterbd015922011-04-13 21:09:25 +0000892 if (skb->pkt_type != PACKET_LOOPBACK
893 && (ifp->flags & IFA_F_TENTATIVE)) {
894 addrconf_dad_failure(ifp);
895 return;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700896 }
897 /* What should we make now? The advertisement
898 is invalid, but ndisc specs say nothing
899 about it. It could be misconfiguration, or
900 an smart proxy agent tries to help us :-)
Jan Sembera24fc7b82008-12-09 15:48:32 -0800901
902 We should not print the error if NA has been
903 received from loopback - it is just our own
904 unsolicited advertisement.
Linus Torvalds1da177e2005-04-16 15:20:36 -0700905 */
Jan Sembera24fc7b82008-12-09 15:48:32 -0800906 if (skb->pkt_type != PACKET_LOOPBACK)
Joe Perches675418d2012-05-16 19:28:38 +0000907 ND_PRINTK(1, warn,
908 "NA: someone advertises our address %pI6 on %s!\n",
909 &ifp->addr, ifp->idev->dev->name);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700910 in6_ifa_put(ifp);
911 return;
912 }
913 neigh = neigh_lookup(&nd_tbl, &msg->target, dev);
914
915 if (neigh) {
916 u8 old_flags = neigh->flags;
YOSHIFUJI Hideaki53b79972008-07-19 22:35:03 -0700917 struct net *net = dev_net(dev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700918
919 if (neigh->nud_state & NUD_FAILED)
920 goto out;
921
Ville Nuorvala5f3e6e92006-09-22 14:42:46 -0700922 /*
923 * Don't update the neighbor cache entry on a proxy NA from
924 * ourselves because either the proxied node is off link or it
925 * has already sent a NA to us.
926 */
927 if (lladdr && !memcmp(lladdr, dev->dev_addr, dev->addr_len) &&
YOSHIFUJI Hideaki53b79972008-07-19 22:35:03 -0700928 net->ipv6.devconf_all->forwarding && net->ipv6.devconf_all->proxy_ndp &&
929 pneigh_lookup(&nd_tbl, net, &msg->target, dev, 0)) {
Nicolas Dichtelb20b6d92012-11-07 05:05:38 +0000930 /* XXX: idev->cnf.proxy_ndp */
Ville Nuorvala5f3e6e92006-09-22 14:42:46 -0700931 goto out;
YOSHIFUJI Hideakifbea49e2006-09-22 14:43:49 -0700932 }
Ville Nuorvala5f3e6e92006-09-22 14:42:46 -0700933
Linus Torvalds1da177e2005-04-16 15:20:36 -0700934 neigh_update(neigh, lladdr,
935 msg->icmph.icmp6_solicited ? NUD_REACHABLE : NUD_STALE,
936 NEIGH_UPDATE_F_WEAK_OVERRIDE|
937 (msg->icmph.icmp6_override ? NEIGH_UPDATE_F_OVERRIDE : 0)|
938 NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
939 (msg->icmph.icmp6_router ? NEIGH_UPDATE_F_ISROUTER : 0));
940
941 if ((old_flags & ~neigh->flags) & NTF_ROUTER) {
942 /*
943 * Change: router to host
944 */
945 struct rt6_info *rt;
946 rt = rt6_get_dflt_router(saddr, dev);
947 if (rt)
Thomas Grafe0a1ad732006-08-22 00:00:21 -0700948 ip6_del_rt(rt);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700949 }
950
951out:
952 neigh_release(neigh);
953 }
954}
955
956static void ndisc_recv_rs(struct sk_buff *skb)
957{
Arnaldo Carvalho de Melo9c702202007-04-25 18:04:18 -0700958 struct rs_msg *rs_msg = (struct rs_msg *)skb_transport_header(skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700959 unsigned long ndoptlen = skb->len - sizeof(*rs_msg);
960 struct neighbour *neigh;
961 struct inet6_dev *idev;
Eric Dumazetb71d1d42011-04-22 04:53:02 +0000962 const struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
Linus Torvalds1da177e2005-04-16 15:20:36 -0700963 struct ndisc_options ndopts;
964 u8 *lladdr = NULL;
965
966 if (skb->len < sizeof(*rs_msg))
967 return;
968
Eric Dumazetcfdf7642011-07-27 21:13:03 +0000969 idev = __in6_dev_get(skb->dev);
Linus Torvalds1da177e2005-04-16 15:20:36 -0700970 if (!idev) {
Joe Perches675418d2012-05-16 19:28:38 +0000971 ND_PRINTK(1, err, "RS: can't find in6 device\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700972 return;
973 }
974
975 /* Don't accept RS if we're not in router mode */
976 if (!idev->cnf.forwarding)
977 goto out;
978
979 /*
980 * Don't update NCE if src = ::;
981 * this implies that the source node has no ip address assigned yet.
982 */
983 if (ipv6_addr_any(saddr))
984 goto out;
985
986 /* Parse ND options */
987 if (!ndisc_parse_options(rs_msg->opt, ndoptlen, &ndopts)) {
Joe Perches675418d2012-05-16 19:28:38 +0000988 ND_PRINTK(2, notice, "NS: invalid ND option, ignored\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -0700989 goto out;
990 }
991
992 if (ndopts.nd_opts_src_lladdr) {
993 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr,
994 skb->dev);
995 if (!lladdr)
996 goto out;
997 }
998
999 neigh = __neigh_lookup(&nd_tbl, saddr, skb->dev, 1);
1000 if (neigh) {
1001 neigh_update(neigh, lladdr, NUD_STALE,
1002 NEIGH_UPDATE_F_WEAK_OVERRIDE|
1003 NEIGH_UPDATE_F_OVERRIDE|
1004 NEIGH_UPDATE_F_OVERRIDE_ISROUTER);
1005 neigh_release(neigh);
1006 }
1007out:
Eric Dumazetcfdf7642011-07-27 21:13:03 +00001008 return;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001009}
1010
Pierre Ynard31910572007-10-10 21:22:05 -07001011static void ndisc_ra_useropt(struct sk_buff *ra, struct nd_opt_hdr *opt)
1012{
1013 struct icmp6hdr *icmp6h = (struct icmp6hdr *)skb_transport_header(ra);
1014 struct sk_buff *skb;
1015 struct nlmsghdr *nlh;
1016 struct nduseroptmsg *ndmsg;
YOSHIFUJI Hideakic346dca2008-03-25 21:47:49 +09001017 struct net *net = dev_net(ra->dev);
Pierre Ynard31910572007-10-10 21:22:05 -07001018 int err;
1019 int base_size = NLMSG_ALIGN(sizeof(struct nduseroptmsg)
1020 + (opt->nd_opt_len << 3));
1021 size_t msg_size = base_size + nla_total_size(sizeof(struct in6_addr));
1022
1023 skb = nlmsg_new(msg_size, GFP_ATOMIC);
1024 if (skb == NULL) {
1025 err = -ENOBUFS;
1026 goto errout;
1027 }
1028
1029 nlh = nlmsg_put(skb, 0, 0, RTM_NEWNDUSEROPT, base_size, 0);
1030 if (nlh == NULL) {
1031 goto nla_put_failure;
1032 }
1033
1034 ndmsg = nlmsg_data(nlh);
1035 ndmsg->nduseropt_family = AF_INET6;
Pierre Ynarddbb2ed22007-11-12 17:58:35 -08001036 ndmsg->nduseropt_ifindex = ra->dev->ifindex;
Pierre Ynard31910572007-10-10 21:22:05 -07001037 ndmsg->nduseropt_icmp_type = icmp6h->icmp6_type;
1038 ndmsg->nduseropt_icmp_code = icmp6h->icmp6_code;
1039 ndmsg->nduseropt_opts_len = opt->nd_opt_len << 3;
1040
1041 memcpy(ndmsg + 1, opt, opt->nd_opt_len << 3);
1042
David S. Millerc78679e2012-04-01 20:27:33 -04001043 if (nla_put(skb, NDUSEROPT_SRCADDR, sizeof(struct in6_addr),
1044 &ipv6_hdr(ra)->saddr))
1045 goto nla_put_failure;
Pierre Ynard31910572007-10-10 21:22:05 -07001046 nlmsg_end(skb, nlh);
1047
Pablo Neira Ayuso1ce85fe2009-02-24 23:18:28 -08001048 rtnl_notify(skb, net, 0, RTNLGRP_ND_USEROPT, NULL, GFP_ATOMIC);
Pierre Ynard31910572007-10-10 21:22:05 -07001049 return;
1050
1051nla_put_failure:
1052 nlmsg_free(skb);
1053 err = -EMSGSIZE;
1054errout:
Daniel Lezcanoa18bc692008-03-07 11:14:49 -08001055 rtnl_set_sk_err(net, RTNLGRP_ND_USEROPT, err);
Pierre Ynard31910572007-10-10 21:22:05 -07001056}
1057
Linus Torvalds1da177e2005-04-16 15:20:36 -07001058static void ndisc_router_discovery(struct sk_buff *skb)
1059{
Arnaldo Carvalho de Melo9c702202007-04-25 18:04:18 -07001060 struct ra_msg *ra_msg = (struct ra_msg *)skb_transport_header(skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001061 struct neighbour *neigh = NULL;
1062 struct inet6_dev *in6_dev;
YOSHIFUJI Hideaki65f5c7c2006-03-20 16:55:08 -08001063 struct rt6_info *rt = NULL;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001064 int lifetime;
1065 struct ndisc_options ndopts;
1066 int optlen;
YOSHIFUJI Hideakiebacaaa2006-03-20 17:04:53 -08001067 unsigned int pref = 0;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001068
1069 __u8 * opt = (__u8 *)(ra_msg + 1);
1070
Simon Horman29a3cad2013-05-28 20:34:26 +00001071 optlen = (skb_tail_pointer(skb) - skb_transport_header(skb)) -
1072 sizeof(struct ra_msg);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001073
Arnaldo Carvalho de Melo0660e032007-04-25 17:54:47 -07001074 if (!(ipv6_addr_type(&ipv6_hdr(skb)->saddr) & IPV6_ADDR_LINKLOCAL)) {
Joe Perches675418d2012-05-16 19:28:38 +00001075 ND_PRINTK(2, warn, "RA: source address is not link-local\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -07001076 return;
1077 }
1078 if (optlen < 0) {
Joe Perches675418d2012-05-16 19:28:38 +00001079 ND_PRINTK(2, warn, "RA: packet too short\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -07001080 return;
1081 }
1082
YOSHIFUJI Hideakide357cc2008-03-15 23:59:18 -04001083#ifdef CONFIG_IPV6_NDISC_NODETYPE
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001084 if (skb->ndisc_nodetype == NDISC_NODETYPE_HOST) {
Joe Perches675418d2012-05-16 19:28:38 +00001085 ND_PRINTK(2, warn, "RA: from host or unauthorized router\n");
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001086 return;
1087 }
YOSHIFUJI Hideakide357cc2008-03-15 23:59:18 -04001088#endif
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001089
Linus Torvalds1da177e2005-04-16 15:20:36 -07001090 /*
1091 * set the RA_RECV flag in the interface
1092 */
1093
Eric Dumazetcfdf7642011-07-27 21:13:03 +00001094 in6_dev = __in6_dev_get(skb->dev);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001095 if (in6_dev == NULL) {
Joe Perches675418d2012-05-16 19:28:38 +00001096 ND_PRINTK(0, err, "RA: can't find inet6 device for %s\n",
1097 skb->dev->name);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001098 return;
1099 }
Linus Torvalds1da177e2005-04-16 15:20:36 -07001100
1101 if (!ndisc_parse_options(opt, optlen, &ndopts)) {
Joe Perches675418d2012-05-16 19:28:38 +00001102 ND_PRINTK(2, warn, "RA: invalid ND options\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -07001103 return;
1104 }
1105
Shmulik Ladkaniaeaf6e92012-11-30 10:25:59 +00001106 if (!ipv6_accept_ra(in6_dev))
David Ward31ce8c72009-08-29 00:04:09 -07001107 goto skip_linkparms;
1108
YOSHIFUJI Hideakide357cc2008-03-15 23:59:18 -04001109#ifdef CONFIG_IPV6_NDISC_NODETYPE
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001110 /* skip link-specific parameters from interior routers */
1111 if (skb->ndisc_nodetype == NDISC_NODETYPE_NODEFAULT)
1112 goto skip_linkparms;
YOSHIFUJI Hideakide357cc2008-03-15 23:59:18 -04001113#endif
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001114
Linus Torvalds1da177e2005-04-16 15:20:36 -07001115 if (in6_dev->if_flags & IF_RS_SENT) {
1116 /*
1117 * flag that an RA was received after an RS was sent
1118 * out on this interface.
1119 */
1120 in6_dev->if_flags |= IF_RA_RCVD;
1121 }
1122
1123 /*
1124 * Remember the managed/otherconf flags from most recently
1125 * received RA message (RFC 2462) -- yoshfuji
1126 */
1127 in6_dev->if_flags = (in6_dev->if_flags & ~(IF_RA_MANAGED |
1128 IF_RA_OTHERCONF)) |
1129 (ra_msg->icmph.icmp6_addrconf_managed ?
1130 IF_RA_MANAGED : 0) |
1131 (ra_msg->icmph.icmp6_addrconf_other ?
1132 IF_RA_OTHERCONF : 0);
1133
YOSHIFUJI Hideaki65f5c7c2006-03-20 16:55:08 -08001134 if (!in6_dev->cnf.accept_ra_defrtr)
1135 goto skip_defrtr;
1136
Andreas Hofmeister9f562202011-10-24 19:13:15 -04001137 if (ipv6_chk_addr(dev_net(in6_dev->dev), &ipv6_hdr(skb)->saddr, NULL, 0))
1138 goto skip_defrtr;
1139
Linus Torvalds1da177e2005-04-16 15:20:36 -07001140 lifetime = ntohs(ra_msg->icmph.icmp6_rt_lifetime);
1141
YOSHIFUJI Hideakiebacaaa2006-03-20 17:04:53 -08001142#ifdef CONFIG_IPV6_ROUTER_PREF
1143 pref = ra_msg->icmph.icmp6_router_pref;
1144 /* 10b is handled as if it were 00b (medium) */
YOSHIFUJI Hideaki930d6ff2006-03-20 17:05:30 -08001145 if (pref == ICMPV6_ROUTER_PREF_INVALID ||
YOSHIFUJI Hideaki6d5b78c2007-06-22 16:07:04 -07001146 !in6_dev->cnf.accept_ra_rtr_pref)
YOSHIFUJI Hideakiebacaaa2006-03-20 17:04:53 -08001147 pref = ICMPV6_ROUTER_PREF_MEDIUM;
1148#endif
1149
Arnaldo Carvalho de Melo0660e032007-04-25 17:54:47 -07001150 rt = rt6_get_dflt_router(&ipv6_hdr(skb)->saddr, skb->dev);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001151
David S. Millereb857182012-01-27 15:07:56 -08001152 if (rt) {
1153 neigh = dst_neigh_lookup(&rt->dst, &ipv6_hdr(skb)->saddr);
1154 if (!neigh) {
Joe Perches675418d2012-05-16 19:28:38 +00001155 ND_PRINTK(0, err,
1156 "RA: %s got default router without neighbour\n",
1157 __func__);
Amerigo Wang94e187c2012-10-29 00:13:19 +00001158 ip6_rt_put(rt);
David S. Millereb857182012-01-27 15:07:56 -08001159 return;
1160 }
1161 }
Linus Torvalds1da177e2005-04-16 15:20:36 -07001162 if (rt && lifetime == 0) {
Thomas Grafe0a1ad732006-08-22 00:00:21 -07001163 ip6_del_rt(rt);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001164 rt = NULL;
1165 }
1166
1167 if (rt == NULL && lifetime) {
Joe Perches675418d2012-05-16 19:28:38 +00001168 ND_PRINTK(3, dbg, "RA: adding default router\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -07001169
Arnaldo Carvalho de Melo0660e032007-04-25 17:54:47 -07001170 rt = rt6_add_dflt_router(&ipv6_hdr(skb)->saddr, skb->dev, pref);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001171 if (rt == NULL) {
Joe Perches675418d2012-05-16 19:28:38 +00001172 ND_PRINTK(0, err,
1173 "RA: %s failed to add default route\n",
1174 __func__);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001175 return;
1176 }
1177
David S. Millereb857182012-01-27 15:07:56 -08001178 neigh = dst_neigh_lookup(&rt->dst, &ipv6_hdr(skb)->saddr);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001179 if (neigh == NULL) {
Joe Perches675418d2012-05-16 19:28:38 +00001180 ND_PRINTK(0, err,
1181 "RA: %s got default router without neighbour\n",
1182 __func__);
Amerigo Wang94e187c2012-10-29 00:13:19 +00001183 ip6_rt_put(rt);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001184 return;
1185 }
1186 neigh->flags |= NTF_ROUTER;
YOSHIFUJI Hideakiebacaaa2006-03-20 17:04:53 -08001187 } else if (rt) {
Pedro Ribeiro22441cf2008-10-15 15:47:49 -07001188 rt->rt6i_flags = (rt->rt6i_flags & ~RTF_PREF_MASK) | RTF_PREF(pref);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001189 }
1190
1191 if (rt)
Gao feng1716a962012-04-06 00:13:10 +00001192 rt6_set_expires(rt, jiffies + (HZ * lifetime));
Linus Torvalds1da177e2005-04-16 15:20:36 -07001193 if (ra_msg->icmph.icmp6_hop_limit) {
1194 in6_dev->cnf.hop_limit = ra_msg->icmph.icmp6_hop_limit;
1195 if (rt)
David S. Millerdefb3512010-12-08 21:16:57 -08001196 dst_metric_set(&rt->dst, RTAX_HOPLIMIT,
1197 ra_msg->icmph.icmp6_hop_limit);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001198 }
1199
YOSHIFUJI Hideaki65f5c7c2006-03-20 16:55:08 -08001200skip_defrtr:
1201
Linus Torvalds1da177e2005-04-16 15:20:36 -07001202 /*
1203 * Update Reachable Time and Retrans Timer
1204 */
1205
1206 if (in6_dev->nd_parms) {
1207 unsigned long rtime = ntohl(ra_msg->retrans_timer);
1208
1209 if (rtime && rtime/1000 < MAX_SCHEDULE_TIMEOUT/HZ) {
1210 rtime = (rtime*HZ)/1000;
1211 if (rtime < HZ/10)
1212 rtime = HZ/10;
1213 in6_dev->nd_parms->retrans_time = rtime;
1214 in6_dev->tstamp = jiffies;
1215 inet6_ifinfo_notify(RTM_NEWLINK, in6_dev);
1216 }
1217
1218 rtime = ntohl(ra_msg->reachable_time);
1219 if (rtime && rtime/1000 < MAX_SCHEDULE_TIMEOUT/(3*HZ)) {
1220 rtime = (rtime*HZ)/1000;
1221
1222 if (rtime < HZ/10)
1223 rtime = HZ/10;
1224
1225 if (rtime != in6_dev->nd_parms->base_reachable_time) {
1226 in6_dev->nd_parms->base_reachable_time = rtime;
1227 in6_dev->nd_parms->gc_staletime = 3 * rtime;
1228 in6_dev->nd_parms->reachable_time = neigh_rand_reach_time(rtime);
1229 in6_dev->tstamp = jiffies;
1230 inet6_ifinfo_notify(RTM_NEWLINK, in6_dev);
1231 }
1232 }
1233 }
1234
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001235skip_linkparms:
1236
Linus Torvalds1da177e2005-04-16 15:20:36 -07001237 /*
1238 * Process options.
1239 */
1240
1241 if (!neigh)
Arnaldo Carvalho de Melo0660e032007-04-25 17:54:47 -07001242 neigh = __neigh_lookup(&nd_tbl, &ipv6_hdr(skb)->saddr,
Linus Torvalds1da177e2005-04-16 15:20:36 -07001243 skb->dev, 1);
1244 if (neigh) {
1245 u8 *lladdr = NULL;
1246 if (ndopts.nd_opts_src_lladdr) {
1247 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr,
1248 skb->dev);
1249 if (!lladdr) {
Joe Perches675418d2012-05-16 19:28:38 +00001250 ND_PRINTK(2, warn,
1251 "RA: invalid link-layer address length\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -07001252 goto out;
1253 }
1254 }
1255 neigh_update(neigh, lladdr, NUD_STALE,
1256 NEIGH_UPDATE_F_WEAK_OVERRIDE|
1257 NEIGH_UPDATE_F_OVERRIDE|
1258 NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
1259 NEIGH_UPDATE_F_ISROUTER);
1260 }
1261
Shmulik Ladkaniaeaf6e92012-11-30 10:25:59 +00001262 if (!ipv6_accept_ra(in6_dev))
David Ward31ce8c72009-08-29 00:04:09 -07001263 goto out;
1264
YOSHIFUJI Hideaki70ceb4f2006-03-20 17:06:24 -08001265#ifdef CONFIG_IPV6_ROUTE_INFO
Andreas Hofmeister9f562202011-10-24 19:13:15 -04001266 if (ipv6_chk_addr(dev_net(in6_dev->dev), &ipv6_hdr(skb)->saddr, NULL, 0))
1267 goto skip_routeinfo;
1268
YOSHIFUJI Hideaki09c884d2006-03-20 17:07:03 -08001269 if (in6_dev->cnf.accept_ra_rtr_pref && ndopts.nd_opts_ri) {
YOSHIFUJI Hideaki70ceb4f2006-03-20 17:06:24 -08001270 struct nd_opt_hdr *p;
1271 for (p = ndopts.nd_opts_ri;
1272 p;
1273 p = ndisc_next_option(p, ndopts.nd_opts_ri_end)) {
YOSHIFUJI Hideaki6294e002008-03-15 23:56:52 -04001274 struct route_info *ri = (struct route_info *)p;
1275#ifdef CONFIG_IPV6_NDISC_NODETYPE
1276 if (skb->ndisc_nodetype == NDISC_NODETYPE_NODEFAULT &&
1277 ri->prefix_len == 0)
1278 continue;
1279#endif
Duan Jiong30e56912013-11-26 15:46:56 +08001280 if (ri->prefix_len == 0 &&
1281 !in6_dev->cnf.accept_ra_defrtr)
1282 continue;
YOSHIFUJI Hideaki6294e002008-03-15 23:56:52 -04001283 if (ri->prefix_len > in6_dev->cnf.accept_ra_rt_info_max_plen)
YOSHIFUJI Hideaki09c884d2006-03-20 17:07:03 -08001284 continue;
YOSHIFUJI Hideaki70ceb4f2006-03-20 17:06:24 -08001285 rt6_route_rcv(skb->dev, (u8*)p, (p->nd_opt_len) << 3,
Arnaldo Carvalho de Melo0660e032007-04-25 17:54:47 -07001286 &ipv6_hdr(skb)->saddr);
YOSHIFUJI Hideaki70ceb4f2006-03-20 17:06:24 -08001287 }
1288 }
Andreas Hofmeister9f562202011-10-24 19:13:15 -04001289
1290skip_routeinfo:
YOSHIFUJI Hideaki70ceb4f2006-03-20 17:06:24 -08001291#endif
1292
YOSHIFUJI Hideakide357cc2008-03-15 23:59:18 -04001293#ifdef CONFIG_IPV6_NDISC_NODETYPE
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001294 /* skip link-specific ndopts from interior routers */
1295 if (skb->ndisc_nodetype == NDISC_NODETYPE_NODEFAULT)
1296 goto out;
YOSHIFUJI Hideakide357cc2008-03-15 23:59:18 -04001297#endif
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001298
YOSHIFUJI Hideakic4fd30e2006-03-20 16:55:26 -08001299 if (in6_dev->cnf.accept_ra_pinfo && ndopts.nd_opts_pi) {
Linus Torvalds1da177e2005-04-16 15:20:36 -07001300 struct nd_opt_hdr *p;
1301 for (p = ndopts.nd_opts_pi;
1302 p;
1303 p = ndisc_next_option(p, ndopts.nd_opts_pi_end)) {
Neil Hormane6bff992012-01-04 10:49:15 +00001304 addrconf_prefix_rcv(skb->dev, (u8 *)p,
1305 (p->nd_opt_len) << 3,
1306 ndopts.nd_opts_src_lladdr != NULL);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001307 }
1308 }
1309
1310 if (ndopts.nd_opts_mtu) {
Al Viroe69a4ad2006-11-14 20:56:00 -08001311 __be32 n;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001312 u32 mtu;
1313
Al Viroe69a4ad2006-11-14 20:56:00 -08001314 memcpy(&n, ((u8*)(ndopts.nd_opts_mtu+1))+2, sizeof(mtu));
1315 mtu = ntohl(n);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001316
1317 if (mtu < IPV6_MIN_MTU || mtu > skb->dev->mtu) {
Joe Perches675418d2012-05-16 19:28:38 +00001318 ND_PRINTK(2, warn, "RA: invalid mtu: %d\n", mtu);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001319 } else if (in6_dev->cnf.mtu6 != mtu) {
1320 in6_dev->cnf.mtu6 = mtu;
1321
1322 if (rt)
David S. Millerdefb3512010-12-08 21:16:57 -08001323 dst_metric_set(&rt->dst, RTAX_MTU, mtu);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001324
1325 rt6_mtu_change(skb->dev, mtu);
1326 }
1327 }
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +09001328
Pierre Ynard31910572007-10-10 21:22:05 -07001329 if (ndopts.nd_useropts) {
YOSHIFUJI Hideaki61cf46ad2008-01-22 17:32:53 +09001330 struct nd_opt_hdr *p;
1331 for (p = ndopts.nd_useropts;
1332 p;
1333 p = ndisc_next_useropt(p, ndopts.nd_useropts_end)) {
1334 ndisc_ra_useropt(skb, p);
Pierre Ynard31910572007-10-10 21:22:05 -07001335 }
1336 }
1337
Linus Torvalds1da177e2005-04-16 15:20:36 -07001338 if (ndopts.nd_opts_tgt_lladdr || ndopts.nd_opts_rh) {
Joe Perches675418d2012-05-16 19:28:38 +00001339 ND_PRINTK(2, warn, "RA: invalid RA options\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -07001340 }
1341out:
Amerigo Wang94e187c2012-10-29 00:13:19 +00001342 ip6_rt_put(rt);
David S. Millereb857182012-01-27 15:07:56 -08001343 if (neigh)
Linus Torvalds1da177e2005-04-16 15:20:36 -07001344 neigh_release(neigh);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001345}
1346
1347static void ndisc_redirect_rcv(struct sk_buff *skb)
1348{
Duan Jiong093d04d2012-12-14 02:59:59 +00001349 u8 *hdr;
1350 struct ndisc_options ndopts;
1351 struct rd_msg *msg = (struct rd_msg *)skb_transport_header(skb);
Simon Horman29a3cad2013-05-28 20:34:26 +00001352 u32 ndoptlen = skb_tail_pointer(skb) - (skb_transport_header(skb) +
Duan Jiong093d04d2012-12-14 02:59:59 +00001353 offsetof(struct rd_msg, opt));
1354
YOSHIFUJI Hideakide357cc2008-03-15 23:59:18 -04001355#ifdef CONFIG_IPV6_NDISC_NODETYPE
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001356 switch (skb->ndisc_nodetype) {
1357 case NDISC_NODETYPE_HOST:
1358 case NDISC_NODETYPE_NODEFAULT:
Joe Perches675418d2012-05-16 19:28:38 +00001359 ND_PRINTK(2, warn,
1360 "Redirect: from host or unauthorized router\n");
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001361 return;
1362 }
YOSHIFUJI Hideakide357cc2008-03-15 23:59:18 -04001363#endif
Templin, Fred Lfadf6bf2008-03-11 18:35:59 -04001364
Arnaldo Carvalho de Melo0660e032007-04-25 17:54:47 -07001365 if (!(ipv6_addr_type(&ipv6_hdr(skb)->saddr) & IPV6_ADDR_LINKLOCAL)) {
Joe Perches675418d2012-05-16 19:28:38 +00001366 ND_PRINTK(2, warn,
1367 "Redirect: source address is not link-local\n");
Linus Torvalds1da177e2005-04-16 15:20:36 -07001368 return;
1369 }
1370
Duan Jiong093d04d2012-12-14 02:59:59 +00001371 if (!ndisc_parse_options(msg->opt, ndoptlen, &ndopts))
1372 return;
1373
Duan Jiongc92a59e2013-08-22 12:07:35 +08001374 if (!ndopts.nd_opts_rh) {
Duan Jiongb55b76b2013-09-04 19:44:21 +08001375 ip6_redirect_no_header(skb, dev_net(skb->dev),
1376 skb->dev->ifindex, 0);
Duan Jiong093d04d2012-12-14 02:59:59 +00001377 return;
Duan Jiongc92a59e2013-08-22 12:07:35 +08001378 }
Duan Jiong093d04d2012-12-14 02:59:59 +00001379
1380 hdr = (u8 *)ndopts.nd_opts_rh;
1381 hdr += 8;
1382 if (!pskb_pull(skb, hdr - skb_transport_header(skb)))
1383 return;
1384
David S. Millerb94f1c02012-07-12 00:33:37 -07001385 icmpv6_notify(skb, NDISC_REDIRECT, 0, 0);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001386}
1387
YOSHIFUJI Hideaki / 吉藤英明5f5a0112013-01-21 06:48:53 +00001388static void ndisc_fill_redirect_hdr_option(struct sk_buff *skb,
1389 struct sk_buff *orig_skb,
1390 int rd_len)
YOSHIFUJI Hideaki / 吉藤英明9c86daf2013-01-21 06:48:09 +00001391{
YOSHIFUJI Hideaki / 吉藤英明5f5a0112013-01-21 06:48:53 +00001392 u8 *opt = skb_put(skb, rd_len);
1393
YOSHIFUJI Hideaki / 吉藤英明9c86daf2013-01-21 06:48:09 +00001394 memset(opt, 0, 8);
1395 *(opt++) = ND_OPT_REDIRECT_HDR;
1396 *(opt++) = (rd_len >> 3);
1397 opt += 6;
1398
1399 memcpy(opt, ipv6_hdr(orig_skb), rd_len - 8);
YOSHIFUJI Hideaki / 吉藤英明9c86daf2013-01-21 06:48:09 +00001400}
1401
David S. Miller49919692012-01-27 15:30:48 -08001402void ndisc_send_redirect(struct sk_buff *skb, const struct in6_addr *target)
Linus Torvalds1da177e2005-04-16 15:20:36 -07001403{
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001404 struct net_device *dev = skb->dev;
YOSHIFUJI Hideakic346dca2008-03-25 21:47:49 +09001405 struct net *net = dev_net(dev);
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001406 struct sock *sk = net->ipv6.ndisc_sk;
YOSHIFUJI Hideaki / 吉藤英明2ce135762013-01-21 06:48:49 +00001407 int optlen = 0;
David S. Millerfbfe95a2012-06-08 23:24:18 -07001408 struct inet_peer *peer;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001409 struct sk_buff *buff;
YOSHIFUJI Hideaki / 吉藤英明71bcdba2013-01-05 16:34:51 +00001410 struct rd_msg *msg;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001411 struct in6_addr saddr_buf;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001412 struct rt6_info *rt;
1413 struct dst_entry *dst;
David S. Miller4c9483b2011-03-12 16:22:43 -05001414 struct flowi6 fl6;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001415 int rd_len;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001416 u8 ha_buf[MAX_ADDR_LEN], *ha = NULL;
David S. Miller1d861aa2012-07-10 03:58:16 -07001417 bool ret;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001418
Neil Horman95c385b2007-04-25 17:08:10 -07001419 if (ipv6_get_lladdr(dev, &saddr_buf, IFA_F_TENTATIVE)) {
Joe Perches675418d2012-05-16 19:28:38 +00001420 ND_PRINTK(2, warn, "Redirect: no link-local address on %s\n",
1421 dev->name);
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +09001422 return;
1423 }
Linus Torvalds1da177e2005-04-16 15:20:36 -07001424
Arnaldo Carvalho de Melo0660e032007-04-25 17:54:47 -07001425 if (!ipv6_addr_equal(&ipv6_hdr(skb)->daddr, target) &&
Brian Haleybf0b48d2007-10-08 00:12:05 -07001426 ipv6_addr_type(target) != (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) {
Joe Perches675418d2012-05-16 19:28:38 +00001427 ND_PRINTK(2, warn,
1428 "Redirect: target address is not link-local unicast\n");
Li Yewang29556522007-01-30 14:33:20 -08001429 return;
1430 }
1431
David S. Miller4c9483b2011-03-12 16:22:43 -05001432 icmpv6_flow_init(sk, &fl6, NDISC_REDIRECT,
YOSHIFUJI Hideaki95e41e92007-12-06 15:43:30 -08001433 &saddr_buf, &ipv6_hdr(skb)->saddr, dev->ifindex);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001434
David S. Miller4c9483b2011-03-12 16:22:43 -05001435 dst = ip6_route_output(net, NULL, &fl6);
RongQing.Li5095d642012-02-21 22:10:49 +00001436 if (dst->error) {
1437 dst_release(dst);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001438 return;
RongQing.Li5095d642012-02-21 22:10:49 +00001439 }
David S. Miller4c9483b2011-03-12 16:22:43 -05001440 dst = xfrm_lookup(net, dst, flowi6_to_flowi(&fl6), NULL, 0);
David S. Miller452edd52011-03-02 13:27:41 -08001441 if (IS_ERR(dst))
Linus Torvalds1da177e2005-04-16 15:20:36 -07001442 return;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001443
1444 rt = (struct rt6_info *) dst;
1445
1446 if (rt->rt6i_flags & RTF_GATEWAY) {
Joe Perches675418d2012-05-16 19:28:38 +00001447 ND_PRINTK(2, warn,
1448 "Redirect: destination is not a neighbour\n");
Ilpo Järvinend73f0802009-02-06 23:47:37 -08001449 goto release;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001450 }
David S. Miller1d861aa2012-07-10 03:58:16 -07001451 peer = inet_getpeer_v6(net->ipv6.peers, &rt->rt6i_dst.addr, 1);
1452 ret = inet_peer_xrlim_allow(peer, 1*HZ);
1453 if (peer)
1454 inet_putpeer(peer);
1455 if (!ret)
Ilpo Järvinend73f0802009-02-06 23:47:37 -08001456 goto release;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001457
1458 if (dev->addr_len) {
David S. Miller49919692012-01-27 15:30:48 -08001459 struct neighbour *neigh = dst_neigh_lookup(skb_dst(skb), target);
1460 if (!neigh) {
Joe Perches675418d2012-05-16 19:28:38 +00001461 ND_PRINTK(2, warn,
1462 "Redirect: no neigh for target address\n");
David S. Miller49919692012-01-27 15:30:48 -08001463 goto release;
1464 }
1465
Linus Torvalds1da177e2005-04-16 15:20:36 -07001466 read_lock_bh(&neigh->lock);
1467 if (neigh->nud_state & NUD_VALID) {
1468 memcpy(ha_buf, neigh->ha, dev->addr_len);
1469 read_unlock_bh(&neigh->lock);
1470 ha = ha_buf;
YOSHIFUJI Hideaki / 吉藤英明2ce135762013-01-21 06:48:49 +00001471 optlen += ndisc_opt_addr_space(dev);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001472 } else
1473 read_unlock_bh(&neigh->lock);
David S. Miller49919692012-01-27 15:30:48 -08001474
1475 neigh_release(neigh);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001476 }
1477
1478 rd_len = min_t(unsigned int,
YOSHIFUJI Hideaki / 吉藤英明2ce135762013-01-21 06:48:49 +00001479 IPV6_MIN_MTU - sizeof(struct ipv6hdr) - sizeof(*msg) - optlen,
1480 skb->len + 8);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001481 rd_len &= ~0x7;
YOSHIFUJI Hideaki / 吉藤英明2ce135762013-01-21 06:48:49 +00001482 optlen += rd_len;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001483
YOSHIFUJI Hideaki / 吉藤英明2ce135762013-01-21 06:48:49 +00001484 buff = ndisc_alloc_skb(dev, sizeof(*msg) + optlen);
YOSHIFUJI Hideaki / 吉藤英明de093342013-01-21 06:48:14 +00001485 if (!buff)
Ilpo Järvinend73f0802009-02-06 23:47:37 -08001486 goto release;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001487
YOSHIFUJI Hideaki / 吉藤英明4d5c1522013-01-21 06:49:25 +00001488 msg = (struct rd_msg *)skb_put(buff, sizeof(*msg));
1489 *msg = (struct rd_msg) {
1490 .icmph = {
1491 .icmp6_type = NDISC_REDIRECT,
1492 },
1493 .target = *target,
1494 .dest = ipv6_hdr(skb)->daddr,
1495 };
Linus Torvalds1da177e2005-04-16 15:20:36 -07001496
Linus Torvalds1da177e2005-04-16 15:20:36 -07001497 /*
1498 * include target_address option
1499 */
1500
1501 if (ha)
Matthias Schiffer33be0812013-05-31 03:27:55 +02001502 ndisc_fill_addr_option(buff, ND_OPT_TARGET_LL_ADDR, ha);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001503
1504 /*
1505 * build redirect option and copy skb over to the new packet.
1506 */
1507
YOSHIFUJI Hideaki / 吉藤英明9c86daf2013-01-21 06:48:09 +00001508 if (rd_len)
YOSHIFUJI Hideaki / 吉藤英明5f5a0112013-01-21 06:48:53 +00001509 ndisc_fill_redirect_hdr_option(buff, skb, rd_len);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001510
Eric Dumazetadf30902009-06-02 05:19:30 +00001511 skb_dst_set(buff, dst);
YOSHIFUJI Hideaki / 吉藤英明f4de84c2013-01-21 06:49:03 +00001512 ndisc_send_skb(buff, &ipv6_hdr(skb)->saddr, &saddr_buf);
Ilpo Järvinend73f0802009-02-06 23:47:37 -08001513 return;
1514
1515release:
1516 dst_release(dst);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001517}
1518
1519static void pndisc_redo(struct sk_buff *skb)
1520{
YOSHIFUJI Hideaki140e26fc2005-10-05 12:11:41 -07001521 ndisc_recv_ns(skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001522 kfree_skb(skb);
1523}
1524
Hannes Frederic Sowab800c3b2013-08-27 01:36:51 +02001525static bool ndisc_suppress_frag_ndisc(struct sk_buff *skb)
1526{
1527 struct inet6_dev *idev = __in6_dev_get(skb->dev);
1528
1529 if (!idev)
1530 return true;
1531 if (IP6CB(skb)->flags & IP6SKB_FRAGMENTED &&
1532 idev->cnf.suppress_frag_ndisc) {
1533 net_warn_ratelimited("Received fragmented ndisc packet. Carefully consider disabling suppress_frag_ndisc.\n");
1534 return true;
1535 }
1536 return false;
1537}
1538
Linus Torvalds1da177e2005-04-16 15:20:36 -07001539int ndisc_rcv(struct sk_buff *skb)
1540{
1541 struct nd_msg *msg;
1542
Hannes Frederic Sowab800c3b2013-08-27 01:36:51 +02001543 if (ndisc_suppress_frag_ndisc(skb))
1544 return 0;
1545
YOSHIFUJI Hideaki / 吉藤英明6bce6b42013-01-21 06:48:03 +00001546 if (skb_linearize(skb))
Linus Torvalds1da177e2005-04-16 15:20:36 -07001547 return 0;
1548
Arnaldo Carvalho de Melo9c702202007-04-25 18:04:18 -07001549 msg = (struct nd_msg *)skb_transport_header(skb);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001550
Arnaldo Carvalho de Melo9c702202007-04-25 18:04:18 -07001551 __skb_push(skb, skb->data - skb_transport_header(skb));
Linus Torvalds1da177e2005-04-16 15:20:36 -07001552
Arnaldo Carvalho de Melo0660e032007-04-25 17:54:47 -07001553 if (ipv6_hdr(skb)->hop_limit != 255) {
Joe Perches675418d2012-05-16 19:28:38 +00001554 ND_PRINTK(2, warn, "NDISC: invalid hop-limit: %d\n",
1555 ipv6_hdr(skb)->hop_limit);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001556 return 0;
1557 }
1558
1559 if (msg->icmph.icmp6_code != 0) {
Joe Perches675418d2012-05-16 19:28:38 +00001560 ND_PRINTK(2, warn, "NDISC: invalid ICMPv6 code: %d\n",
1561 msg->icmph.icmp6_code);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001562 return 0;
1563 }
1564
Patrick McHardya61bbcf2005-08-14 17:24:31 -07001565 memset(NEIGH_CB(skb), 0, sizeof(struct neighbour_cb));
1566
Linus Torvalds1da177e2005-04-16 15:20:36 -07001567 switch (msg->icmph.icmp6_type) {
1568 case NDISC_NEIGHBOUR_SOLICITATION:
1569 ndisc_recv_ns(skb);
1570 break;
1571
1572 case NDISC_NEIGHBOUR_ADVERTISEMENT:
1573 ndisc_recv_na(skb);
1574 break;
1575
1576 case NDISC_ROUTER_SOLICITATION:
1577 ndisc_recv_rs(skb);
1578 break;
1579
1580 case NDISC_ROUTER_ADVERTISEMENT:
1581 ndisc_router_discovery(skb);
1582 break;
1583
1584 case NDISC_REDIRECT:
1585 ndisc_redirect_rcv(skb);
1586 break;
Stephen Hemminger3ff50b72007-04-20 17:09:22 -07001587 }
Linus Torvalds1da177e2005-04-16 15:20:36 -07001588
1589 return 0;
1590}
1591
1592static int ndisc_netdev_event(struct notifier_block *this, unsigned long event, void *ptr)
1593{
Jiri Pirko351638e2013-05-28 01:30:21 +00001594 struct net_device *dev = netdev_notifier_info_to_dev(ptr);
YOSHIFUJI Hideakic346dca2008-03-25 21:47:49 +09001595 struct net *net = dev_net(dev);
Hannes Frederic Sowa5cb04432012-11-06 16:46:20 +00001596 struct inet6_dev *idev;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001597
1598 switch (event) {
1599 case NETDEV_CHANGEADDR:
1600 neigh_changeaddr(&nd_tbl, dev);
Michal Kubeček2ac3ac82013-08-01 10:04:14 +02001601 fib6_run_gc(0, net, false);
Hannes Frederic Sowa5cb04432012-11-06 16:46:20 +00001602 idev = in6_dev_get(dev);
1603 if (!idev)
1604 break;
1605 if (idev->cnf.ndisc_notify)
1606 ndisc_send_unsol_na(dev);
1607 in6_dev_put(idev);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001608 break;
1609 case NETDEV_DOWN:
1610 neigh_ifdown(&nd_tbl, dev);
Michal Kubeček2ac3ac82013-08-01 10:04:14 +02001611 fib6_run_gc(0, net, false);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001612 break;
Ben Hutchingsf47b9462011-04-15 13:46:02 +00001613 case NETDEV_NOTIFY_PEERS:
1614 ndisc_send_unsol_na(dev);
1615 break;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001616 default:
1617 break;
1618 }
1619
1620 return NOTIFY_DONE;
1621}
1622
1623static struct notifier_block ndisc_netdev_notifier = {
1624 .notifier_call = ndisc_netdev_event,
1625};
1626
1627#ifdef CONFIG_SYSCTL
1628static void ndisc_warn_deprecated_sysctl(struct ctl_table *ctl,
1629 const char *func, const char *dev_name)
1630{
1631 static char warncomm[TASK_COMM_LEN];
1632 static int warned;
1633 if (strcmp(warncomm, current->comm) && warned < 5) {
1634 strcpy(warncomm, current->comm);
Joe Perchesf3213832012-05-15 14:11:53 +00001635 pr_warn("process `%s' is using deprecated sysctl (%s) net.ipv6.neigh.%s.%s - use net.ipv6.neigh.%s.%s_ms instead\n",
Linus Torvalds1da177e2005-04-16 15:20:36 -07001636 warncomm, func,
1637 dev_name, ctl->procname,
1638 dev_name, ctl->procname);
1639 warned++;
1640 }
1641}
1642
Alexey Dobriyan8d65af72009-09-23 15:57:19 -07001643int ndisc_ifinfo_sysctl_change(struct ctl_table *ctl, int write, void __user *buffer, size_t *lenp, loff_t *ppos)
Linus Torvalds1da177e2005-04-16 15:20:36 -07001644{
1645 struct net_device *dev = ctl->extra1;
1646 struct inet6_dev *idev;
1647 int ret;
1648
Eric W. Biedermand12af672007-10-18 03:05:25 -07001649 if ((strcmp(ctl->procname, "retrans_time") == 0) ||
1650 (strcmp(ctl->procname, "base_reachable_time") == 0))
Linus Torvalds1da177e2005-04-16 15:20:36 -07001651 ndisc_warn_deprecated_sysctl(ctl, "syscall", dev ? dev->name : "default");
1652
Eric W. Biedermand12af672007-10-18 03:05:25 -07001653 if (strcmp(ctl->procname, "retrans_time") == 0)
Alexey Dobriyan8d65af72009-09-23 15:57:19 -07001654 ret = proc_dointvec(ctl, write, buffer, lenp, ppos);
Eric W. Biedermand12af672007-10-18 03:05:25 -07001655
1656 else if (strcmp(ctl->procname, "base_reachable_time") == 0)
Linus Torvalds1da177e2005-04-16 15:20:36 -07001657 ret = proc_dointvec_jiffies(ctl, write,
Alexey Dobriyan8d65af72009-09-23 15:57:19 -07001658 buffer, lenp, ppos);
Eric W. Biedermand12af672007-10-18 03:05:25 -07001659
1660 else if ((strcmp(ctl->procname, "retrans_time_ms") == 0) ||
YOSHIFUJI Hideakiad02ac12007-10-29 01:32:23 -07001661 (strcmp(ctl->procname, "base_reachable_time_ms") == 0))
Linus Torvalds1da177e2005-04-16 15:20:36 -07001662 ret = proc_dointvec_ms_jiffies(ctl, write,
Alexey Dobriyan8d65af72009-09-23 15:57:19 -07001663 buffer, lenp, ppos);
Eric W. Biedermand12af672007-10-18 03:05:25 -07001664 else
Linus Torvalds1da177e2005-04-16 15:20:36 -07001665 ret = -1;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001666
1667 if (write && ret == 0 && dev && (idev = in6_dev_get(dev)) != NULL) {
Eric W. Biedermand12af672007-10-18 03:05:25 -07001668 if (ctl->data == &idev->nd_parms->base_reachable_time)
Linus Torvalds1da177e2005-04-16 15:20:36 -07001669 idev->nd_parms->reachable_time = neigh_rand_reach_time(idev->nd_parms->base_reachable_time);
1670 idev->tstamp = jiffies;
1671 inet6_ifinfo_notify(RTM_NEWLINK, idev);
1672 in6_dev_put(idev);
1673 }
1674 return ret;
1675}
1676
Linus Torvalds1da177e2005-04-16 15:20:36 -07001677
1678#endif
1679
Alexey Dobriyan2c8c1e72010-01-17 03:35:32 +00001680static int __net_init ndisc_net_init(struct net *net)
Linus Torvalds1da177e2005-04-16 15:20:36 -07001681{
1682 struct ipv6_pinfo *np;
1683 struct sock *sk;
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +09001684 int err;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001685
Denis V. Lunev1ed85162008-04-03 14:31:03 -07001686 err = inet_ctl_sock_create(&sk, PF_INET6,
1687 SOCK_RAW, IPPROTO_ICMPV6, net);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001688 if (err < 0) {
Joe Perches675418d2012-05-16 19:28:38 +00001689 ND_PRINTK(0, err,
1690 "NDISC: Failed to initialize the control socket (err %d)\n",
1691 err);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001692 return err;
1693 }
1694
Denis V. Lunev1ed85162008-04-03 14:31:03 -07001695 net->ipv6.ndisc_sk = sk;
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001696
Linus Torvalds1da177e2005-04-16 15:20:36 -07001697 np = inet6_sk(sk);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001698 np->hop_limit = 255;
1699 /* Do not loopback ndisc messages */
1700 np->mc_loop = 0;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001701
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001702 return 0;
1703}
1704
Alexey Dobriyan2c8c1e72010-01-17 03:35:32 +00001705static void __net_exit ndisc_net_exit(struct net *net)
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001706{
Denis V. Lunev1ed85162008-04-03 14:31:03 -07001707 inet_ctl_sock_destroy(net->ipv6.ndisc_sk);
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001708}
1709
1710static struct pernet_operations ndisc_net_ops = {
1711 .init = ndisc_net_init,
1712 .exit = ndisc_net_exit,
1713};
1714
1715int __init ndisc_init(void)
1716{
1717 int err;
1718
1719 err = register_pernet_subsys(&ndisc_net_ops);
1720 if (err)
1721 return err;
YOSHIFUJI Hideaki1ab14572007-02-09 23:24:49 +09001722 /*
1723 * Initialize the neighbour table
1724 */
Linus Torvalds1da177e2005-04-16 15:20:36 -07001725 neigh_table_init(&nd_tbl);
1726
1727#ifdef CONFIG_SYSCTL
Eric W. Biederman54716e32010-02-14 03:27:03 +00001728 err = neigh_sysctl_register(NULL, &nd_tbl.parms, "ipv6",
Eric W. Biedermanf8572d82009-11-05 13:32:03 -08001729 &ndisc_ifinfo_sysctl_change);
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001730 if (err)
1731 goto out_unregister_pernet;
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001732out:
Fabio Estevambcd081a2013-11-16 00:52:08 -02001733#endif
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001734 return err;
Linus Torvalds1da177e2005-04-16 15:20:36 -07001735
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001736#ifdef CONFIG_SYSCTL
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001737out_unregister_pernet:
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001738 unregister_pernet_subsys(&ndisc_net_ops);
1739 goto out;
Michal Kubeček2c861cc2013-09-09 21:45:04 +02001740#endif
1741}
1742
1743int __init ndisc_late_init(void)
1744{
1745 return register_netdevice_notifier(&ndisc_netdev_notifier);
1746}
1747
1748void ndisc_late_cleanup(void)
1749{
1750 unregister_netdevice_notifier(&ndisc_netdev_notifier);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001751}
1752
1753void ndisc_cleanup(void)
1754{
Linus Torvalds1da177e2005-04-16 15:20:36 -07001755#ifdef CONFIG_SYSCTL
1756 neigh_sysctl_unregister(&nd_tbl.parms);
1757#endif
1758 neigh_table_clear(&nd_tbl);
Daniel Lezcano1762f7e2008-03-07 11:15:34 -08001759 unregister_pernet_subsys(&ndisc_net_ops);
Linus Torvalds1da177e2005-04-16 15:20:36 -07001760}