Blame - net/ipv6/ndisc.c - kernel/msm

blob: 36cd98a0016f8fffa96f8dbda235fc3c21d219db [file] [log] [blame]

Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1	/*
				2	* Neighbour Discovery for IPv6
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	3	* Linux INET6 implementation
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	4	*
				5	* Authors:
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	6	* Pedro Roque <roque@di.fc.ul.pt>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	7	* Mike Shaver <shaver@ingenia.com>
				8	*
				9	* This program is free software; you can redistribute it and/or
				10	* modify it under the terms of the GNU General Public License
				11	* as published by the Free Software Foundation; either version
				12	* 2 of the License, or (at your option) any later version.
				13	*/
				14
				15	/*
				16	* Changes:
				17	*
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	18	* Pierre Ynard : export userland ND options
				19	* through netlink (RDNSS support)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	20	* Lars Fenneberg : fixed MTU setting on receipt
				21	* of an RA.
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	22	* Janos Farkas : kmalloc failure checks
				23	* Alexey Kuznetsov : state machine reworked
				24	* and moved to net/core.
				25	* Pekka Savola : RFC2461 validation
				26	* YOSHIFUJI Hideaki @USAGI : Verify ND options properly
				27	*/
				28
				29	/* Set to 3 to get tracing... */
				30	#define ND_DEBUG 1
				31
				32	#define ND_PRINTK(fmt, args...) do { if (net_ratelimit()) { printk(fmt, ## args); } } while(0)
				33	#define ND_NOPRINTK(x...) do { ; } while(0)
				34	#define ND_PRINTK0 ND_PRINTK
				35	#define ND_PRINTK1 ND_NOPRINTK
				36	#define ND_PRINTK2 ND_NOPRINTK
				37	#define ND_PRINTK3 ND_NOPRINTK
				38	#if ND_DEBUG >= 1
				39	#undef ND_PRINTK1
				40	#define ND_PRINTK1 ND_PRINTK
				41	#endif
				42	#if ND_DEBUG >= 2
				43	#undef ND_PRINTK2
				44	#define ND_PRINTK2 ND_PRINTK
				45	#endif
				46	#if ND_DEBUG >= 3
				47	#undef ND_PRINTK3
				48	#define ND_PRINTK3 ND_PRINTK
				49	#endif
				50
				51	#include <linux/module.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	52	#include <linux/errno.h>
				53	#include <linux/types.h>
				54	#include <linux/socket.h>
				55	#include <linux/sockios.h>
				56	#include <linux/sched.h>
				57	#include <linux/net.h>
				58	#include <linux/in6.h>
				59	#include <linux/route.h>
				60	#include <linux/init.h>
				61	#include <linux/rcupdate.h>
Tejun Heo	5a0e3ad	2010-03-24 17:04:11 +0900	[diff] [blame]	62	#include <linux/slab.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	63	#ifdef CONFIG_SYSCTL
				64	#include <linux/sysctl.h>
				65	#endif
				66
Thomas Graf	1823730	2006-08-04 23:04:54 -0700	[diff] [blame]	67	#include <linux/if_addr.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	68	#include <linux/if_arp.h>
				69	#include <linux/ipv6.h>
				70	#include <linux/icmpv6.h>
				71	#include <linux/jhash.h>
				72
				73	#include <net/sock.h>
				74	#include <net/snmp.h>
				75
				76	#include <net/ipv6.h>
				77	#include <net/protocol.h>
				78	#include <net/ndisc.h>
				79	#include <net/ip6_route.h>
				80	#include <net/addrconf.h>
				81	#include <net/icmp.h>
				82
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	83	#include <net/netlink.h>
				84	#include <linux/rtnetlink.h>
				85
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	86	#include <net/flow.h>
				87	#include <net/ip6_checksum.h>
Denis V. Lunev	1ed8516	2008-04-03 14:31:03 -0700	[diff] [blame]	88	#include <net/inet_common.h>
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	89	#include <linux/proc_fs.h>
				90
				91	#include <linux/netfilter.h>
				92	#include <linux/netfilter_ipv6.h>
				93
Eric Dumazet	d6bf781	2010-10-04 06:15:44 +0000	[diff] [blame]	94	static u32 ndisc_hash(const void *pkey,
				95	const struct net_device *dev,
David S. Miller	2c2aba6	2011-12-28 15:06:58 -0500	[diff] [blame]	96	__u32 *hash_rnd);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	97	static int ndisc_constructor(struct neighbour *neigh);
				98	static void ndisc_solicit(struct neighbour neigh, struct sk_buff skb);
				99	static void ndisc_error_report(struct neighbour neigh, struct sk_buff skb);
				100	static int pndisc_constructor(struct pneigh_entry *n);
				101	static void pndisc_destructor(struct pneigh_entry *n);
				102	static void pndisc_redo(struct sk_buff *skb);
				103
Stephen Hemminger	89d69d2	2009-09-01 11:13:19 +0000	[diff] [blame]	104	static const struct neigh_ops ndisc_generic_ops = {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	105	.family = AF_INET6,
				106	.solicit = ndisc_solicit,
				107	.error_report = ndisc_error_report,
				108	.output = neigh_resolve_output,
				109	.connected_output = neigh_connected_output,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	110	};
				111
Stephen Hemminger	89d69d2	2009-09-01 11:13:19 +0000	[diff] [blame]	112	static const struct neigh_ops ndisc_hh_ops = {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	113	.family = AF_INET6,
				114	.solicit = ndisc_solicit,
				115	.error_report = ndisc_error_report,
				116	.output = neigh_resolve_output,
				117	.connected_output = neigh_resolve_output,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	118	};
				119
				120
Stephen Hemminger	89d69d2	2009-09-01 11:13:19 +0000	[diff] [blame]	121	static const struct neigh_ops ndisc_direct_ops = {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	122	.family = AF_INET6,
David S. Miller	8f40b16	2011-07-17 13:34:11 -0700	[diff] [blame]	123	.output = neigh_direct_output,
				124	.connected_output = neigh_direct_output,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	125	};
				126
				127	struct neigh_table nd_tbl = {
				128	.family = AF_INET6,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	129	.key_len = sizeof(struct in6_addr),
				130	.hash = ndisc_hash,
				131	.constructor = ndisc_constructor,
				132	.pconstructor = pndisc_constructor,
				133	.pdestructor = pndisc_destructor,
				134	.proxy_redo = pndisc_redo,
				135	.id = "ndisc_cache",
				136	.parms = {
Shan Wei	b672083	2010-12-01 18:05:12 +0000	[diff] [blame]	137	.tbl = &nd_tbl,
				138	.base_reachable_time = ND_REACHABLE_TIME,
				139	.retrans_time = ND_RETRANS_TIMER,
				140	.gc_staletime = 60 * HZ,
				141	.reachable_time = ND_REACHABLE_TIME,
				142	.delay_probe_time = 5 * HZ,
Eric Dumazet	8b5c171	2011-11-09 12:07:14 +0000	[diff] [blame]	143	.queue_len_bytes = 64*1024,
Shan Wei	b672083	2010-12-01 18:05:12 +0000	[diff] [blame]	144	.ucast_probes = 3,
				145	.mcast_probes = 3,
				146	.anycast_delay = 1 * HZ,
				147	.proxy_delay = (8 * HZ) / 10,
				148	.proxy_qlen = 64,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	149	},
				150	.gc_interval = 30 * HZ,
				151	.gc_thresh1 = 128,
				152	.gc_thresh2 = 512,
				153	.gc_thresh3 = 1024,
				154	};
				155
				156	/* ND options */
				157	struct ndisc_options {
YOSHIFUJI Hideaki	70ceb4f	2006-03-20 17:06:24 -0800	[diff] [blame]	158	struct nd_opt_hdr *nd_opt_array[__ND_OPT_ARRAY_MAX];
				159	#ifdef CONFIG_IPV6_ROUTE_INFO
				160	struct nd_opt_hdr *nd_opts_ri;
				161	struct nd_opt_hdr *nd_opts_ri_end;
				162	#endif
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	163	struct nd_opt_hdr *nd_useropts;
				164	struct nd_opt_hdr *nd_useropts_end;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	165	};
				166
				167	#define nd_opts_src_lladdr nd_opt_array[ND_OPT_SOURCE_LL_ADDR]
				168	#define nd_opts_tgt_lladdr nd_opt_array[ND_OPT_TARGET_LL_ADDR]
				169	#define nd_opts_pi nd_opt_array[ND_OPT_PREFIX_INFO]
				170	#define nd_opts_pi_end nd_opt_array[__ND_OPT_PREFIX_INFO_END]
				171	#define nd_opts_rh nd_opt_array[ND_OPT_REDIRECT_HDR]
				172	#define nd_opts_mtu nd_opt_array[ND_OPT_MTU]
				173
				174	#define NDISC_OPT_SPACE(len) (((len)+2+7)&~7)
				175
				176	/*
				177	* Return the padding between the option length and the start of the
				178	* link addr. Currently only IP-over-InfiniBand needs this, although
				179	* if RFC 3831 IPv6-over-Fibre Channel is ever implemented it may
				180	* also need a pad of 2.
				181	*/
				182	static int ndisc_addr_option_pad(unsigned short type)
				183	{
				184	switch (type) {
				185	case ARPHRD_INFINIBAND: return 2;
				186	default: return 0;
				187	}
				188	}
				189
				190	static inline int ndisc_opt_addr_space(struct net_device *dev)
				191	{
				192	return NDISC_OPT_SPACE(dev->addr_len + ndisc_addr_option_pad(dev->type));
				193	}
				194
				195	static u8 ndisc_fill_addr_option(u8 opt, int type, void *data, int data_len,
				196	unsigned short addr_type)
				197	{
				198	int space = NDISC_OPT_SPACE(data_len);
				199	int pad = ndisc_addr_option_pad(addr_type);
				200
				201	opt[0] = type;
				202	opt[1] = space>>3;
				203
				204	memset(opt + 2, 0, pad);
				205	opt += pad;
				206	space -= pad;
				207
				208	memcpy(opt+2, data, data_len);
				209	data_len += 2;
				210	opt += data_len;
				211	if ((space -= data_len) > 0)
				212	memset(opt, 0, space);
				213	return opt + space;
				214	}
				215
				216	static struct nd_opt_hdr ndisc_next_option(struct nd_opt_hdr cur,
				217	struct nd_opt_hdr *end)
				218	{
				219	int type;
				220	if (!cur \|\| !end \|\| cur >= end)
				221	return NULL;
				222	type = cur->nd_opt_type;
				223	do {
				224	cur = ((void *)cur) + (cur->nd_opt_len << 3);
				225	} while(cur < end && cur->nd_opt_type != type);
Eric Dumazet	a02cec2	2010-09-22 20:43:57 +0000	[diff] [blame]	226	return cur <= end && cur->nd_opt_type == type ? cur : NULL;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	227	}
				228
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	229	static inline int ndisc_is_useropt(struct nd_opt_hdr *opt)
				230	{
Eric Dumazet	a02cec2	2010-09-22 20:43:57 +0000	[diff] [blame]	231	return opt->nd_opt_type == ND_OPT_RDNSS;
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	232	}
				233
				234	static struct nd_opt_hdr ndisc_next_useropt(struct nd_opt_hdr cur,
				235	struct nd_opt_hdr *end)
				236	{
				237	if (!cur \|\| !end \|\| cur >= end)
				238	return NULL;
				239	do {
				240	cur = ((void *)cur) + (cur->nd_opt_len << 3);
				241	} while(cur < end && !ndisc_is_useropt(cur));
Eric Dumazet	a02cec2	2010-09-22 20:43:57 +0000	[diff] [blame]	242	return cur <= end && ndisc_is_useropt(cur) ? cur : NULL;
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	243	}
				244
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	245	static struct ndisc_options ndisc_parse_options(u8 opt, int opt_len,
				246	struct ndisc_options *ndopts)
				247	{
				248	struct nd_opt_hdr nd_opt = (struct nd_opt_hdr )opt;
				249
				250	if (!nd_opt \|\| opt_len < 0 \|\| !ndopts)
				251	return NULL;
				252	memset(ndopts, 0, sizeof(*ndopts));
				253	while (opt_len) {
				254	int l;
				255	if (opt_len < sizeof(struct nd_opt_hdr))
				256	return NULL;
				257	l = nd_opt->nd_opt_len << 3;
				258	if (opt_len < l \|\| l == 0)
				259	return NULL;
				260	switch (nd_opt->nd_opt_type) {
				261	case ND_OPT_SOURCE_LL_ADDR:
				262	case ND_OPT_TARGET_LL_ADDR:
				263	case ND_OPT_MTU:
				264	case ND_OPT_REDIRECT_HDR:
				265	if (ndopts->nd_opt_array[nd_opt->nd_opt_type]) {
				266	ND_PRINTK2(KERN_WARNING
Joe Perches	c7e7451	2012-05-15 14:11:53 +0000	[diff] [blame]	267	"%s: duplicated ND6 option found: type=%d\n",
Harvey Harrison	0dc4787	2008-03-05 20:47:47 -0800	[diff] [blame]	268	__func__,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	269	nd_opt->nd_opt_type);
				270	} else {
				271	ndopts->nd_opt_array[nd_opt->nd_opt_type] = nd_opt;
				272	}
				273	break;
				274	case ND_OPT_PREFIX_INFO:
				275	ndopts->nd_opts_pi_end = nd_opt;
Stephen Hemminger	cfcabdc	2007-10-09 01:59:42 -0700	[diff] [blame]	276	if (!ndopts->nd_opt_array[nd_opt->nd_opt_type])
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	277	ndopts->nd_opt_array[nd_opt->nd_opt_type] = nd_opt;
				278	break;
YOSHIFUJI Hideaki	70ceb4f	2006-03-20 17:06:24 -0800	[diff] [blame]	279	#ifdef CONFIG_IPV6_ROUTE_INFO
				280	case ND_OPT_ROUTE_INFO:
				281	ndopts->nd_opts_ri_end = nd_opt;
				282	if (!ndopts->nd_opts_ri)
				283	ndopts->nd_opts_ri = nd_opt;
				284	break;
				285	#endif
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	286	default:
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	287	if (ndisc_is_useropt(nd_opt)) {
				288	ndopts->nd_useropts_end = nd_opt;
				289	if (!ndopts->nd_useropts)
				290	ndopts->nd_useropts = nd_opt;
				291	} else {
				292	/*
				293	* Unknown options must be silently ignored,
				294	* to accommodate future extension to the
				295	* protocol.
				296	*/
				297	ND_PRINTK2(KERN_NOTICE
Joe Perches	c7e7451	2012-05-15 14:11:53 +0000	[diff] [blame]	298	"%s: ignored unsupported option; type=%d, len=%d\n",
Harvey Harrison	0dc4787	2008-03-05 20:47:47 -0800	[diff] [blame]	299	__func__,
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	300	nd_opt->nd_opt_type, nd_opt->nd_opt_len);
				301	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	302	}
				303	opt_len -= l;
				304	nd_opt = ((void *)nd_opt) + l;
				305	}
				306	return ndopts;
				307	}
				308
				309	static inline u8 ndisc_opt_addr_data(struct nd_opt_hdr p,
				310	struct net_device *dev)
				311	{
				312	u8 lladdr = (u8 )(p + 1);
				313	int lladdrlen = p->nd_opt_len << 3;
				314	int prepad = ndisc_addr_option_pad(dev->type);
				315	if (lladdrlen != NDISC_OPT_SPACE(dev->addr_len + prepad))
				316	return NULL;
Eric Dumazet	a02cec2	2010-09-22 20:43:57 +0000	[diff] [blame]	317	return lladdr + prepad;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	318	}
				319
Eric Dumazet	b71d1d4	2011-04-22 04:53:02 +0000	[diff] [blame]	320	int ndisc_mc_map(const struct in6_addr addr, char buf, struct net_device *dev, int dir)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	321	{
				322	switch (dev->type) {
				323	case ARPHRD_ETHER:
				324	case ARPHRD_IEEE802: /* Not sure. Check it later. --ANK */
				325	case ARPHRD_FDDI:
				326	ipv6_eth_mc_map(addr, buf);
				327	return 0;
				328	case ARPHRD_IEEE802_TR:
				329	ipv6_tr_mc_map(addr,buf);
				330	return 0;
				331	case ARPHRD_ARCNET:
				332	ipv6_arcnet_mc_map(addr, buf);
				333	return 0;
				334	case ARPHRD_INFINIBAND:
Rolf Manderscheid	a9e527e	2007-12-10 13:38:41 -0700	[diff] [blame]	335	ipv6_ib_mc_map(addr, dev->broadcast, buf);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	336	return 0;
Timo Teräs	93ca3bb	2011-03-28 22:40:53 +0000	[diff] [blame]	337	case ARPHRD_IPGRE:
				338	return ipv6_ipgre_mc_map(addr, dev->broadcast, buf);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	339	default:
				340	if (dir) {
				341	memcpy(buf, dev->broadcast, dev->addr_len);
				342	return 0;
				343	}
				344	}
				345	return -EINVAL;
				346	}
				347
YOSHIFUJI Hideaki	7159039	2007-02-22 22:05:40 +0900	[diff] [blame]	348	EXPORT_SYMBOL(ndisc_mc_map);
				349
Eric Dumazet	d6bf781	2010-10-04 06:15:44 +0000	[diff] [blame]	350	static u32 ndisc_hash(const void *pkey,
				351	const struct net_device *dev,
David S. Miller	2c2aba6	2011-12-28 15:06:58 -0500	[diff] [blame]	352	__u32 *hash_rnd)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	353	{
David S. Miller	2c2aba6	2011-12-28 15:06:58 -0500	[diff] [blame]	354	return ndisc_hashfn(pkey, dev, hash_rnd);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	355	}
				356
				357	static int ndisc_constructor(struct neighbour *neigh)
				358	{
				359	struct in6_addr addr = (struct in6_addr)&neigh->primary_key;
				360	struct net_device *dev = neigh->dev;
				361	struct inet6_dev *in6_dev;
				362	struct neigh_parms *parms;
				363	int is_multicast = ipv6_addr_is_multicast(addr);
				364
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	365	in6_dev = in6_dev_get(dev);
				366	if (in6_dev == NULL) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	367	return -EINVAL;
				368	}
				369
				370	parms = in6_dev->nd_parms;
				371	__neigh_parms_put(neigh->parms);
				372	neigh->parms = neigh_parms_clone(parms);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	373
				374	neigh->type = is_multicast ? RTN_MULTICAST : RTN_UNICAST;
Stephen Hemminger	3b04ddd	2007-10-09 01:40:57 -0700	[diff] [blame]	375	if (!dev->header_ops) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	376	neigh->nud_state = NUD_NOARP;
				377	neigh->ops = &ndisc_direct_ops;
David S. Miller	8f40b16	2011-07-17 13:34:11 -0700	[diff] [blame]	378	neigh->output = neigh_direct_output;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	379	} else {
				380	if (is_multicast) {
				381	neigh->nud_state = NUD_NOARP;
				382	ndisc_mc_map(addr, neigh->ha, dev, 1);
				383	} else if (dev->flags&(IFF_NOARP\|IFF_LOOPBACK)) {
				384	neigh->nud_state = NUD_NOARP;
				385	memcpy(neigh->ha, dev->dev_addr, dev->addr_len);
				386	if (dev->flags&IFF_LOOPBACK)
				387	neigh->type = RTN_LOCAL;
				388	} else if (dev->flags&IFF_POINTOPOINT) {
				389	neigh->nud_state = NUD_NOARP;
				390	memcpy(neigh->ha, dev->broadcast, dev->addr_len);
				391	}
Stephen Hemminger	3b04ddd	2007-10-09 01:40:57 -0700	[diff] [blame]	392	if (dev->header_ops->cache)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	393	neigh->ops = &ndisc_hh_ops;
				394	else
				395	neigh->ops = &ndisc_generic_ops;
				396	if (neigh->nud_state&NUD_VALID)
				397	neigh->output = neigh->ops->connected_output;
				398	else
				399	neigh->output = neigh->ops->output;
				400	}
				401	in6_dev_put(in6_dev);
				402	return 0;
				403	}
				404
				405	static int pndisc_constructor(struct pneigh_entry *n)
				406	{
				407	struct in6_addr addr = (struct in6_addr)&n->key;
				408	struct in6_addr maddr;
				409	struct net_device *dev = n->dev;
				410
				411	if (dev == NULL \|\| __in6_dev_get(dev) == NULL)
				412	return -EINVAL;
				413	addrconf_addr_solict_mult(addr, &maddr);
				414	ipv6_dev_mc_inc(dev, &maddr);
				415	return 0;
				416	}
				417
				418	static void pndisc_destructor(struct pneigh_entry *n)
				419	{
				420	struct in6_addr addr = (struct in6_addr)&n->key;
				421	struct in6_addr maddr;
				422	struct net_device *dev = n->dev;
				423
				424	if (dev == NULL \|\| __in6_dev_get(dev) == NULL)
				425	return;
				426	addrconf_addr_solict_mult(addr, &maddr);
				427	ipv6_dev_mc_dec(dev, &maddr);
				428	}
				429
Brian Haley	305d552	2008-11-04 17:51:14 -0800	[diff] [blame]	430	struct sk_buff ndisc_build_skb(struct net_device dev,
				431	const struct in6_addr *daddr,
				432	const struct in6_addr *saddr,
				433	struct icmp6hdr *icmp6h,
				434	const struct in6_addr *target,
				435	int llinfo)
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	436	{
YOSHIFUJI Hideaki	c346dca	2008-03-25 21:47:49 +0900	[diff] [blame]	437	struct net *net = dev_net(dev);
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	438	struct sock *sk = net->ipv6.ndisc_sk;
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	439	struct sk_buff *skb;
				440	struct icmp6hdr *hdr;
Herbert Xu	a7ae199	2011-11-18 02:20:04 +0000	[diff] [blame]	441	int hlen = LL_RESERVED_SPACE(dev);
				442	int tlen = dev->needed_tailroom;
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	443	int len;
Brian Haley	305d552	2008-11-04 17:51:14 -0800	[diff] [blame]	444	u8 *opt;
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	445
				446	if (!dev->addr_len)
				447	llinfo = 0;
				448
				449	len = sizeof(struct icmp6hdr) + (target ? sizeof(*target) : 0);
				450	if (llinfo)
				451	len += ndisc_opt_addr_space(dev);
				452
Thomas Graf	c7641a3	2013-09-03 13:37:01 +0200	[diff] [blame]	453	skb = alloc_skb((MAX_HEADER + sizeof(struct ipv6hdr) +
				454	len + hlen + tlen), GFP_ATOMIC);
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	455	if (!skb) {
				456	ND_PRINTK0(KERN_ERR
Joe Perches	c7e7451	2012-05-15 14:11:53 +0000	[diff] [blame]	457	"ICMPv6 ND: %s failed to allocate an skb.\n",
Thomas Graf	c7641a3	2013-09-03 13:37:01 +0200	[diff] [blame]	458	__func__);
Brian Haley	305d552	2008-11-04 17:51:14 -0800	[diff] [blame]	459	return NULL;
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	460	}
				461
Herbert Xu	a7ae199	2011-11-18 02:20:04 +0000	[diff] [blame]	462	skb_reserve(skb, hlen);
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	463	ip6_nd_hdr(sk, skb, dev, saddr, daddr, IPPROTO_ICMPV6, len);
				464
				465	skb->transport_header = skb->tail;
				466	skb_put(skb, len);
				467
				468	hdr = (struct icmp6hdr *)skb_transport_header(skb);
				469	memcpy(hdr, icmp6h, sizeof(*hdr));
				470
				471	opt = skb_transport_header(skb) + sizeof(struct icmp6hdr);
				472	if (target) {
Alexey Dobriyan	4e3fd7a	2011-11-21 03:39:03 +0000	[diff] [blame]	473	(struct in6_addr )opt = *target;
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	474	opt += sizeof(*target);
				475	}
				476
				477	if (llinfo)
				478	ndisc_fill_addr_option(opt, llinfo, dev->dev_addr,
				479	dev->addr_len, dev->type);
				480
				481	hdr->icmp6_cksum = csum_ipv6_magic(saddr, daddr, len,
				482	IPPROTO_ICMPV6,
Joe Perches	07f0757	2008-11-19 15:44:53 -0800	[diff] [blame]	483	csum_partial(hdr,
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	484	len, 0));
				485
Thomas Graf	c7641a3	2013-09-03 13:37:01 +0200	[diff] [blame]	486	/* Manually assign socket ownership as we avoid calling
				487	* sock_alloc_send_pskb() to bypass wmem buffer limits
				488	*/
				489	skb_set_owner_w(skb, sk);
				490
Brian Haley	305d552	2008-11-04 17:51:14 -0800	[diff] [blame]	491	return skb;
				492	}
				493
				494	EXPORT_SYMBOL(ndisc_build_skb);
				495
				496	void ndisc_send_skb(struct sk_buff *skb,
				497	struct net_device *dev,
				498	struct neighbour *neigh,
				499	const struct in6_addr *daddr,
				500	const struct in6_addr *saddr,
				501	struct icmp6hdr *icmp6h)
				502	{
David S. Miller	4c9483b	2011-03-12 16:22:43 -0500	[diff] [blame]	503	struct flowi6 fl6;
Brian Haley	305d552	2008-11-04 17:51:14 -0800	[diff] [blame]	504	struct dst_entry *dst;
				505	struct net *net = dev_net(dev);
				506	struct sock *sk = net->ipv6.ndisc_sk;
				507	struct inet6_dev *idev;
				508	int err;
				509	u8 type;
				510
				511	type = icmp6h->icmp6_type;
				512
David S. Miller	4c9483b	2011-03-12 16:22:43 -0500	[diff] [blame]	513	icmpv6_flow_init(sk, &fl6, type, saddr, daddr, dev->ifindex);
David S. Miller	87a1157	2011-12-06 17:04:13 -0500	[diff] [blame]	514	dst = icmp6_dst_alloc(dev, neigh, &fl6);
David S. Miller	452edd5	2011-03-02 13:27:41 -0800	[diff] [blame]	515	if (IS_ERR(dst)) {
Brian Haley	305d552	2008-11-04 17:51:14 -0800	[diff] [blame]	516	kfree_skb(skb);
				517	return;
				518	}
				519
Eric Dumazet	adf3090	2009-06-02 05:19:30 +0000	[diff] [blame]	520	skb_dst_set(skb, dst);
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	521
Eric Dumazet	cfdf764	2011-07-27 21:13:03 +0000	[diff] [blame]	522	rcu_read_lock();
				523	idev = __in6_dev_get(dst->dev);
Neil Horman	edf391f	2009-04-27 02:45:02 -0700	[diff] [blame]	524	IP6_UPD_PO_STATS(net, idev, IPSTATS_MIB_OUT, skb->len);
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	525
Jan Engelhardt	b2e0b38	2010-03-23 04:09:07 +0100	[diff] [blame]	526	err = NF_HOOK(NFPROTO_IPV6, NF_INET_LOCAL_OUT, skb, NULL, dst->dev,
Patrick McHardy	6e23ae2	2007-11-19 18:53:30 -0800	[diff] [blame]	527	dst_output);
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	528	if (!err) {
Denis V. Lunev	5c5d244	2008-10-08 10:33:50 -0700	[diff] [blame]	529	ICMP6MSGOUT_INC_STATS(net, idev, type);
Denis V. Lunev	a862f6a	2008-10-08 10:33:06 -0700	[diff] [blame]	530	ICMP6_INC_STATS(net, idev, ICMP6_MIB_OUTMSGS);
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	531	}
				532
Eric Dumazet	cfdf764	2011-07-27 21:13:03 +0000	[diff] [blame]	533	rcu_read_unlock();
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	534	}
				535
Brian Haley	305d552	2008-11-04 17:51:14 -0800	[diff] [blame]	536	EXPORT_SYMBOL(ndisc_send_skb);
				537
				538	/*
				539	* Send a Neighbour Discover packet
				540	*/
				541	static void __ndisc_send(struct net_device *dev,
				542	struct neighbour *neigh,
				543	const struct in6_addr *daddr,
				544	const struct in6_addr *saddr,
				545	struct icmp6hdr icmp6h, const struct in6_addr target,
				546	int llinfo)
				547	{
				548	struct sk_buff *skb;
				549
				550	skb = ndisc_build_skb(dev, daddr, saddr, icmp6h, target, llinfo);
				551	if (!skb)
				552	return;
				553
				554	ndisc_send_skb(skb, dev, neigh, daddr, saddr, icmp6h);
				555	}
				556
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	557	static void ndisc_send_na(struct net_device dev, struct neighbour neigh,
YOSHIFUJI Hideaki	9acd9f3	2008-04-10 15:42:10 +0900	[diff] [blame]	558	const struct in6_addr *daddr,
				559	const struct in6_addr *solicited_addr,
				560	int router, int solicited, int override, int inc_opt)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	561	{
				562	struct in6_addr tmpaddr;
				563	struct inet6_ifaddr *ifp;
YOSHIFUJI Hideaki	9acd9f3	2008-04-10 15:42:10 +0900	[diff] [blame]	564	const struct in6_addr *src_addr;
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	565	struct icmp6hdr icmp6h = {
				566	.icmp6_type = NDISC_NEIGHBOUR_ADVERTISEMENT,
				567	};
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	568
				569	/* for anycast or proxy, solicited_addr != src_addr */
YOSHIFUJI Hideaki	c346dca	2008-03-25 21:47:49 +0900	[diff] [blame]	570	ifp = ipv6_get_ifaddr(dev_net(dev), solicited_addr, dev, 1);
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	571	if (ifp) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	572	src_addr = solicited_addr;
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	573	if (ifp->flags & IFA_F_OPTIMISTIC)
				574	override = 0;
stephen hemminger	9f88816	2010-06-21 11:00:13 +0000	[diff] [blame]	575	inc_opt \|= ifp->idev->cnf.force_tllao;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	576	in6_ifa_put(ifp);
				577	} else {
Brian Haley	191cd58	2008-08-14 15:33:21 -0700	[diff] [blame]	578	if (ipv6_dev_get_saddr(dev_net(dev), dev, daddr,
YOSHIFUJI Hideaki	c346dca	2008-03-25 21:47:49 +0900	[diff] [blame]	579	inet6_sk(dev_net(dev)->ipv6.ndisc_sk)->srcprefs,
YOSHIFUJI Hideaki	7cbca67	2008-03-25 09:37:42 +0900	[diff] [blame]	580	&tmpaddr))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	581	return;
				582	src_addr = &tmpaddr;
				583	}
				584
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	585	icmp6h.icmp6_router = router;
				586	icmp6h.icmp6_solicited = solicited;
				587	icmp6h.icmp6_override = override;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	588
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	589	__ndisc_send(dev, neigh, daddr, src_addr,
				590	&icmp6h, solicited_addr,
David L Stevens	14878f7	2007-09-16 16:52:35 -0700	[diff] [blame]	591	inc_opt ? ND_OPT_TARGET_LL_ADDR : 0);
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	592	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	593
Ben Hutchings	f47b946	2011-04-15 13:46:02 +0000	[diff] [blame]	594	static void ndisc_send_unsol_na(struct net_device *dev)
				595	{
				596	struct inet6_dev *idev;
				597	struct inet6_ifaddr *ifa;
Hannes Frederic Sowa	b8fc040	2012-11-06 16:18:41 +0000	[diff] [blame]	598	struct in6_addr mcaddr = IN6ADDR_LINKLOCAL_ALLNODES_INIT;
Ben Hutchings	f47b946	2011-04-15 13:46:02 +0000	[diff] [blame]	599
				600	idev = in6_dev_get(dev);
				601	if (!idev)
				602	return;
				603
				604	read_lock_bh(&idev->lock);
				605	list_for_each_entry(ifa, &idev->addr_list, if_list) {
Ben Hutchings	f47b946	2011-04-15 13:46:02 +0000	[diff] [blame]	606	ndisc_send_na(dev, NULL, &mcaddr, &ifa->addr,
				607	/router=/ !!idev->cnf.forwarding,
				608	/solicited=/ false, /override=/ true,
				609	/inc_opt=/ true);
				610	}
				611	read_unlock_bh(&idev->lock);
				612
				613	in6_dev_put(idev);
				614	}
				615
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	616	void ndisc_send_ns(struct net_device dev, struct neighbour neigh,
YOSHIFUJI Hideaki	9acd9f3	2008-04-10 15:42:10 +0900	[diff] [blame]	617	const struct in6_addr *solicit,
				618	const struct in6_addr daddr, const struct in6_addr saddr)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	619	{
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	620	struct in6_addr addr_buf;
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	621	struct icmp6hdr icmp6h = {
				622	.icmp6_type = NDISC_NEIGHBOUR_SOLICITATION,
				623	};
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	624
				625	if (saddr == NULL) {
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	626	if (ipv6_get_lladdr(dev, &addr_buf,
				627	(IFA_F_TENTATIVE\|IFA_F_OPTIMISTIC)))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	628	return;
				629	saddr = &addr_buf;
				630	}
				631
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	632	__ndisc_send(dev, neigh, daddr, saddr,
				633	&icmp6h, solicit,
David L Stevens	14878f7	2007-09-16 16:52:35 -0700	[diff] [blame]	634	!ipv6_addr_any(saddr) ? ND_OPT_SOURCE_LL_ADDR : 0);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	635	}
				636
YOSHIFUJI Hideaki	9acd9f3	2008-04-10 15:42:10 +0900	[diff] [blame]	637	void ndisc_send_rs(struct net_device dev, const struct in6_addr saddr,
				638	const struct in6_addr *daddr)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	639	{
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	640	struct icmp6hdr icmp6h = {
				641	.icmp6_type = NDISC_ROUTER_SOLICITATION,
				642	};
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	643	int send_sllao = dev->addr_len;
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	644
				645	#ifdef CONFIG_IPV6_OPTIMISTIC_DAD
				646	/*
				647	* According to section 2.2 of RFC 4429, we must not
				648	* send router solicitations with a sllao from
				649	* optimistic addresses, but we may send the solicitation
				650	* if we don't include the sllao. So here we check
				651	* if our address is optimistic, and if so, we
Joe Perches	bea8519	2007-12-20 14:01:35 -0800	[diff] [blame]	652	* suppress the inclusion of the sllao.
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	653	*/
				654	if (send_sllao) {
YOSHIFUJI Hideaki	c346dca	2008-03-25 21:47:49 +0900	[diff] [blame]	655	struct inet6_ifaddr *ifp = ipv6_get_ifaddr(dev_net(dev), saddr,
Daniel Lezcano	1cab3da	2008-01-10 22:44:09 -0800	[diff] [blame]	656	dev, 1);
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	657	if (ifp) {
				658	if (ifp->flags & IFA_F_OPTIMISTIC) {
YOSHIFUJI Hideaki	ca04356	2007-02-28 23:13:20 +0900	[diff] [blame]	659	send_sllao = 0;
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	660	}
YOSHIFUJI Hideaki	ca04356	2007-02-28 23:13:20 +0900	[diff] [blame]	661	in6_ifa_put(ifp);
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	662	} else {
				663	send_sllao = 0;
				664	}
				665	}
				666	#endif
YOSHIFUJI Hideaki	e1ec784	2007-04-24 20:44:52 +0900	[diff] [blame]	667	__ndisc_send(dev, NULL, daddr, saddr,
				668	&icmp6h, NULL,
David L Stevens	14878f7	2007-09-16 16:52:35 -0700	[diff] [blame]	669	send_sllao ? ND_OPT_SOURCE_LL_ADDR : 0);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	670	}
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	671
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	672
				673	static void ndisc_error_report(struct neighbour neigh, struct sk_buff skb)
				674	{
				675	/*
				676	* "The sender MUST return an ICMP
				677	* destination unreachable"
				678	*/
				679	dst_link_failure(skb);
				680	kfree_skb(skb);
				681	}
				682
				683	/* Called with locked neigh: either read or both */
				684
				685	static void ndisc_solicit(struct neighbour neigh, struct sk_buff skb)
				686	{
				687	struct in6_addr *saddr = NULL;
				688	struct in6_addr mcaddr;
				689	struct net_device *dev = neigh->dev;
				690	struct in6_addr target = (struct in6_addr )&neigh->primary_key;
				691	int probes = atomic_read(&neigh->probes);
				692
YOSHIFUJI Hideaki	c346dca	2008-03-25 21:47:49 +0900	[diff] [blame]	693	if (skb && ipv6_chk_addr(dev_net(dev), &ipv6_hdr(skb)->saddr, dev, 1))
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	694	saddr = &ipv6_hdr(skb)->saddr;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	695
				696	if ((probes -= neigh->parms->ucast_probes) < 0) {
				697	if (!(neigh->nud_state & NUD_VALID)) {
Joe Perches	c7e7451	2012-05-15 14:11:53 +0000	[diff] [blame]	698	ND_PRINTK1(KERN_DEBUG "%s: trying to ucast probe in NUD_INVALID: %pI6\n",
Harvey Harrison	0c6ce78	2008-10-28 16:09:23 -0700	[diff] [blame]	699	__func__, target);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	700	}
				701	ndisc_send_ns(dev, neigh, target, target, saddr);
				702	} else if ((probes -= neigh->parms->app_probes) < 0) {
				703	#ifdef CONFIG_ARPD
				704	neigh_app_ns(neigh);
				705	#endif
				706	} else {
				707	addrconf_addr_solict_mult(target, &mcaddr);
				708	ndisc_send_ns(dev, NULL, target, &mcaddr, saddr);
				709	}
				710	}
				711
YOSHIFUJI Hideaki	0736ffc	2008-03-28 13:37:58 +0900	[diff] [blame]	712	static int pndisc_is_router(const void *pkey,
				713	struct net_device *dev)
Pavel Emelyanov	fa86d32	2008-03-24 14:48:59 -0700	[diff] [blame]	714	{
				715	struct pneigh_entry *n;
YOSHIFUJI Hideaki	0736ffc	2008-03-28 13:37:58 +0900	[diff] [blame]	716	int ret = -1;
Pavel Emelyanov	fa86d32	2008-03-24 14:48:59 -0700	[diff] [blame]	717
				718	read_lock_bh(&nd_tbl.lock);
YOSHIFUJI Hideaki	0736ffc	2008-03-28 13:37:58 +0900	[diff] [blame]	719	n = __pneigh_lookup(&nd_tbl, dev_net(dev), pkey, dev);
				720	if (n)
				721	ret = !!(n->flags & NTF_ROUTER);
Pavel Emelyanov	fa86d32	2008-03-24 14:48:59 -0700	[diff] [blame]	722	read_unlock_bh(&nd_tbl.lock);
				723
YOSHIFUJI Hideaki	0736ffc	2008-03-28 13:37:58 +0900	[diff] [blame]	724	return ret;
Pavel Emelyanov	fa86d32	2008-03-24 14:48:59 -0700	[diff] [blame]	725	}
				726
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	727	static void ndisc_recv_ns(struct sk_buff *skb)
				728	{
Arnaldo Carvalho de Melo	9c70220	2007-04-25 18:04:18 -0700	[diff] [blame]	729	struct nd_msg msg = (struct nd_msg )skb_transport_header(skb);
Eric Dumazet	b71d1d4	2011-04-22 04:53:02 +0000	[diff] [blame]	730	const struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
				731	const struct in6_addr *daddr = &ipv6_hdr(skb)->daddr;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	732	u8 *lladdr = NULL;
Arnaldo Carvalho de Melo	27a884d	2007-04-19 20:29:13 -0700	[diff] [blame]	733	u32 ndoptlen = skb->tail - (skb->transport_header +
				734	offsetof(struct nd_msg, opt));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	735	struct ndisc_options ndopts;
				736	struct net_device *dev = skb->dev;
				737	struct inet6_ifaddr *ifp;
				738	struct inet6_dev *idev = NULL;
				739	struct neighbour *neigh;
				740	int dad = ipv6_addr_any(saddr);
				741	int inc;
YOSHIFUJI Hideaki	0736ffc	2008-03-28 13:37:58 +0900	[diff] [blame]	742	int is_router = -1;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	743
				744	if (ipv6_addr_is_multicast(&msg->target)) {
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	745	ND_PRINTK2(KERN_WARNING
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	746	"ICMPv6 NS: multicast target address");
				747	return;
				748	}
				749
				750	/*
				751	* RFC2461 7.1.1:
				752	* DAD has to be destined for solicited node multicast address.
				753	*/
				754	if (dad &&
				755	!(daddr->s6_addr32[0] == htonl(0xff020000) &&
				756	daddr->s6_addr32[1] == htonl(0x00000000) &&
				757	daddr->s6_addr32[2] == htonl(0x00000001) &&
				758	daddr->s6_addr [12] == 0xff )) {
				759	ND_PRINTK2(KERN_WARNING
				760	"ICMPv6 NS: bad DAD packet (wrong destination)\n");
				761	return;
				762	}
				763
				764	if (!ndisc_parse_options(msg->opt, ndoptlen, &ndopts)) {
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	765	ND_PRINTK2(KERN_WARNING
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	766	"ICMPv6 NS: invalid ND options\n");
				767	return;
				768	}
				769
				770	if (ndopts.nd_opts_src_lladdr) {
				771	lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr, dev);
				772	if (!lladdr) {
				773	ND_PRINTK2(KERN_WARNING
				774	"ICMPv6 NS: invalid link-layer address length\n");
				775	return;
				776	}
				777
				778	/* RFC2461 7.1.1:
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	779	* If the IP source address is the unspecified address,
				780	* there MUST NOT be source link-layer address option
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	781	* in the message.
				782	*/
				783	if (dad) {
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	784	ND_PRINTK2(KERN_WARNING
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	785	"ICMPv6 NS: bad DAD packet (link-layer address option)\n");
				786	return;
				787	}
				788	}
				789
				790	inc = ipv6_addr_is_multicast(daddr);
				791
YOSHIFUJI Hideaki	c346dca	2008-03-25 21:47:49 +0900	[diff] [blame]	792	ifp = ipv6_get_ifaddr(dev_net(dev), &msg->target, dev, 1);
Daniel Lezcano	a18bc69	2008-03-07 11:14:49 -0800	[diff] [blame]	793	if (ifp) {
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	794
				795	if (ifp->flags & (IFA_F_TENTATIVE\|IFA_F_OPTIMISTIC)) {
				796	if (dad) {
				797	if (dev->type == ARPHRD_IEEE802_TR) {
Arnaldo Carvalho de Melo	98e399f	2007-03-19 15:33:04 -0700	[diff] [blame]	798	const unsigned char *sadr;
				799	sadr = skb_mac_header(skb);
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	800	if (((sadr[8] ^ dev->dev_addr[0]) & 0x7f) == 0 &&
				801	sadr[9] == dev->dev_addr[1] &&
				802	sadr[10] == dev->dev_addr[2] &&
				803	sadr[11] == dev->dev_addr[3] &&
				804	sadr[12] == dev->dev_addr[4] &&
				805	sadr[13] == dev->dev_addr[5]) {
				806	/* looped-back to us */
				807	goto out;
				808	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	809	}
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	810
				811	/*
				812	* We are colliding with another node
				813	* who is doing DAD
				814	* so fail our DAD process
				815	*/
				816	addrconf_dad_failure(ifp);
Denis V. Lunev	9e3be4b	2007-09-11 11:04:49 +0200	[diff] [blame]	817	return;
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	818	} else {
				819	/*
				820	* This is not a dad solicitation.
				821	* If we are an optimistic node,
				822	* we should respond.
				823	* Otherwise, we should ignore it.
				824	*/
				825	if (!(ifp->flags & IFA_F_OPTIMISTIC))
				826	goto out;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	827	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	828	}
				829
				830	idev = ifp->idev;
				831	} else {
YOSHIFUJI Hideaki	53b7997	2008-07-19 22:35:03 -0700	[diff] [blame]	832	struct net *net = dev_net(dev);
				833
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	834	idev = in6_dev_get(dev);
				835	if (!idev) {
				836	/* XXX: count this drop? */
				837	return;
				838	}
				839
YOSHIFUJI Hideaki	53b7997	2008-07-19 22:35:03 -0700	[diff] [blame]	840	if (ipv6_chk_acast_addr(net, dev, &msg->target) \|\|
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	841	(idev->cnf.forwarding &&
YOSHIFUJI Hideaki	53b7997	2008-07-19 22:35:03 -0700	[diff] [blame]	842	(net->ipv6.devconf_all->proxy_ndp \|\| idev->cnf.proxy_ndp) &&
YOSHIFUJI Hideaki	0736ffc	2008-03-28 13:37:58 +0900	[diff] [blame]	843	(is_router = pndisc_is_router(&msg->target, dev)) >= 0)) {
Patrick McHardy	a61bbcf	2005-08-14 17:24:31 -0700	[diff] [blame]	844	if (!(NEIGH_CB(skb)->flags & LOCALLY_ENQUEUED) &&
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	845	skb->pkt_type != PACKET_HOST &&
				846	inc != 0 &&
				847	idev->nd_parms->proxy_delay != 0) {
				848	/*
				849	* for anycast or proxy,
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	850	* sender should delay its response
				851	* by a random time between 0 and
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	852	* MAX_ANYCAST_DELAY_TIME seconds.
				853	* (RFC2461) -- yoshfuji
				854	*/
				855	struct sk_buff *n = skb_clone(skb, GFP_ATOMIC);
				856	if (n)
				857	pneigh_enqueue(&nd_tbl, idev->nd_parms, n);
				858	goto out;
				859	}
				860	} else
				861	goto out;
				862	}
				863
YOSHIFUJI Hideaki	0736ffc	2008-03-28 13:37:58 +0900	[diff] [blame]	864	if (is_router < 0)
				865	is_router = !!idev->cnf.forwarding;
Ville Nuorvala	62dd931	2006-09-22 14:43:19 -0700	[diff] [blame]	866
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	867	if (dad) {
YOSHIFUJI Hideaki	f3ee401	2008-04-10 15:42:11 +0900	[diff] [blame]	868	ndisc_send_na(dev, NULL, &in6addr_linklocal_allnodes, &msg->target,
Ville Nuorvala	62dd931	2006-09-22 14:43:19 -0700	[diff] [blame]	869	is_router, 0, (ifp != NULL), 1);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	870	goto out;
				871	}
				872
				873	if (inc)
				874	NEIGH_CACHE_STAT_INC(&nd_tbl, rcv_probes_mcast);
				875	else
				876	NEIGH_CACHE_STAT_INC(&nd_tbl, rcv_probes_ucast);
				877
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	878	/*
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	879	* update / create cache entry
				880	* for the source address
				881	*/
				882	neigh = __neigh_lookup(&nd_tbl, saddr, dev,
				883	!inc \|\| lladdr \|\| !dev->addr_len);
				884	if (neigh)
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	885	neigh_update(neigh, lladdr, NUD_STALE,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	886	NEIGH_UPDATE_F_WEAK_OVERRIDE\|
				887	NEIGH_UPDATE_F_OVERRIDE);
Stephen Hemminger	3b04ddd	2007-10-09 01:40:57 -0700	[diff] [blame]	888	if (neigh \|\| !dev->header_ops) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	889	ndisc_send_na(dev, neigh, saddr, &msg->target,
Ville Nuorvala	62dd931	2006-09-22 14:43:19 -0700	[diff] [blame]	890	is_router,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	891	1, (ifp != NULL && inc), inc);
				892	if (neigh)
				893	neigh_release(neigh);
				894	}
				895
				896	out:
				897	if (ifp)
				898	in6_ifa_put(ifp);
				899	else
				900	in6_dev_put(idev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	901	}
				902
				903	static void ndisc_recv_na(struct sk_buff *skb)
				904	{
Arnaldo Carvalho de Melo	9c70220	2007-04-25 18:04:18 -0700	[diff] [blame]	905	struct nd_msg msg = (struct nd_msg )skb_transport_header(skb);
Eric Dumazet	b71d1d4	2011-04-22 04:53:02 +0000	[diff] [blame]	906	const struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
				907	const struct in6_addr *daddr = &ipv6_hdr(skb)->daddr;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	908	u8 *lladdr = NULL;
Arnaldo Carvalho de Melo	27a884d	2007-04-19 20:29:13 -0700	[diff] [blame]	909	u32 ndoptlen = skb->tail - (skb->transport_header +
				910	offsetof(struct nd_msg, opt));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	911	struct ndisc_options ndopts;
				912	struct net_device *dev = skb->dev;
Johannes Berg	393f209	2016-02-04 13:31:20 +0100	[diff] [blame]	913	struct inet6_dev *idev = __in6_dev_get(dev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	914	struct inet6_ifaddr *ifp;
				915	struct neighbour *neigh;
				916
				917	if (skb->len < sizeof(struct nd_msg)) {
				918	ND_PRINTK2(KERN_WARNING
				919	"ICMPv6 NA: packet too short\n");
				920	return;
				921	}
				922
				923	if (ipv6_addr_is_multicast(&msg->target)) {
				924	ND_PRINTK2(KERN_WARNING
				925	"ICMPv6 NA: target address is multicast.\n");
				926	return;
				927	}
				928
				929	if (ipv6_addr_is_multicast(daddr) &&
				930	msg->icmph.icmp6_solicited) {
				931	ND_PRINTK2(KERN_WARNING
				932	"ICMPv6 NA: solicited NA is multicasted.\n");
				933	return;
				934	}
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	935
Johannes Berg	393f209	2016-02-04 13:31:20 +0100	[diff] [blame]	936	/* For some 802.11 wireless deployments (and possibly other networks),
				937	* there will be a NA proxy and unsolicitd packets are attacks
				938	* and thus should not be accepted.
				939	*/
				940	if (!msg->icmph.icmp6_solicited && idev &&
				941	idev->cnf.drop_unsolicited_na)
				942	return;
				943
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	944	if (!ndisc_parse_options(msg->opt, ndoptlen, &ndopts)) {
				945	ND_PRINTK2(KERN_WARNING
				946	"ICMPv6 NS: invalid ND option\n");
				947	return;
				948	}
				949	if (ndopts.nd_opts_tgt_lladdr) {
				950	lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr, dev);
				951	if (!lladdr) {
				952	ND_PRINTK2(KERN_WARNING
				953	"ICMPv6 NA: invalid link-layer address length\n");
				954	return;
				955	}
				956	}
YOSHIFUJI Hideaki	c346dca	2008-03-25 21:47:49 +0900	[diff] [blame]	957	ifp = ipv6_get_ifaddr(dev_net(dev), &msg->target, dev, 1);
Daniel Lezcano	a18bc69	2008-03-07 11:14:49 -0800	[diff] [blame]	958	if (ifp) {
Daniel Walter	bd01592	2011-04-13 21:09:25 +0000	[diff] [blame]	959	if (skb->pkt_type != PACKET_LOOPBACK
				960	&& (ifp->flags & IFA_F_TENTATIVE)) {
				961	addrconf_dad_failure(ifp);
				962	return;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	963	}
				964	/* What should we make now? The advertisement
				965	is invalid, but ndisc specs say nothing
				966	about it. It could be misconfiguration, or
				967	an smart proxy agent tries to help us :-)
Jan Sembera	24fc7b8	2008-12-09 15:48:32 -0800	[diff] [blame]	968
				969	We should not print the error if NA has been
				970	received from loopback - it is just our own
				971	unsolicited advertisement.
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	972	*/
Jan Sembera	24fc7b8	2008-12-09 15:48:32 -0800	[diff] [blame]	973	if (skb->pkt_type != PACKET_LOOPBACK)
				974	ND_PRINTK1(KERN_WARNING
Jens Rosenboom	a6fa328	2009-08-12 22:16:04 +0000	[diff] [blame]	975	"ICMPv6 NA: someone advertises our address %pI6 on %s!\n",
				976	&ifp->addr, ifp->idev->dev->name);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	977	in6_ifa_put(ifp);
				978	return;
				979	}
				980	neigh = neigh_lookup(&nd_tbl, &msg->target, dev);
				981
				982	if (neigh) {
				983	u8 old_flags = neigh->flags;
YOSHIFUJI Hideaki	53b7997	2008-07-19 22:35:03 -0700	[diff] [blame]	984	struct net *net = dev_net(dev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	985
				986	if (neigh->nud_state & NUD_FAILED)
				987	goto out;
				988
Ville Nuorvala	5f3e6e9	2006-09-22 14:42:46 -0700	[diff] [blame]	989	/*
				990	* Don't update the neighbor cache entry on a proxy NA from
				991	* ourselves because either the proxied node is off link or it
				992	* has already sent a NA to us.
				993	*/
				994	if (lladdr && !memcmp(lladdr, dev->dev_addr, dev->addr_len) &&
YOSHIFUJI Hideaki	53b7997	2008-07-19 22:35:03 -0700	[diff] [blame]	995	net->ipv6.devconf_all->forwarding && net->ipv6.devconf_all->proxy_ndp &&
				996	pneigh_lookup(&nd_tbl, net, &msg->target, dev, 0)) {
YOSHIFUJI Hideaki	fbea49e	2006-09-22 14:43:49 -0700	[diff] [blame]	997	/* XXX: idev->cnf.prixy_ndp */
Ville Nuorvala	5f3e6e9	2006-09-22 14:42:46 -0700	[diff] [blame]	998	goto out;
YOSHIFUJI Hideaki	fbea49e	2006-09-22 14:43:49 -0700	[diff] [blame]	999	}
Ville Nuorvala	5f3e6e9	2006-09-22 14:42:46 -0700	[diff] [blame]	1000
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1001	neigh_update(neigh, lladdr,
				1002	msg->icmph.icmp6_solicited ? NUD_REACHABLE : NUD_STALE,
				1003	NEIGH_UPDATE_F_WEAK_OVERRIDE\|
				1004	(msg->icmph.icmp6_override ? NEIGH_UPDATE_F_OVERRIDE : 0)\|
				1005	NEIGH_UPDATE_F_OVERRIDE_ISROUTER\|
				1006	(msg->icmph.icmp6_router ? NEIGH_UPDATE_F_ISROUTER : 0));
				1007
				1008	if ((old_flags & ~neigh->flags) & NTF_ROUTER) {
				1009	/*
				1010	* Change: router to host
				1011	*/
				1012	struct rt6_info *rt;
				1013	rt = rt6_get_dflt_router(saddr, dev);
				1014	if (rt)
Thomas Graf	e0a1ad73	2006-08-22 00:00:21 -0700	[diff] [blame]	1015	ip6_del_rt(rt);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1016	}
				1017
				1018	out:
				1019	neigh_release(neigh);
				1020	}
				1021	}
				1022
				1023	static void ndisc_recv_rs(struct sk_buff *skb)
				1024	{
Arnaldo Carvalho de Melo	9c70220	2007-04-25 18:04:18 -0700	[diff] [blame]	1025	struct rs_msg rs_msg = (struct rs_msg )skb_transport_header(skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1026	unsigned long ndoptlen = skb->len - sizeof(*rs_msg);
				1027	struct neighbour *neigh;
				1028	struct inet6_dev *idev;
Eric Dumazet	b71d1d4	2011-04-22 04:53:02 +0000	[diff] [blame]	1029	const struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1030	struct ndisc_options ndopts;
				1031	u8 *lladdr = NULL;
				1032
				1033	if (skb->len < sizeof(*rs_msg))
				1034	return;
				1035
Eric Dumazet	cfdf764	2011-07-27 21:13:03 +0000	[diff] [blame]	1036	idev = __in6_dev_get(skb->dev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1037	if (!idev) {
				1038	if (net_ratelimit())
				1039	ND_PRINTK1("ICMP6 RS: can't find in6 device\n");
				1040	return;
				1041	}
				1042
				1043	/* Don't accept RS if we're not in router mode */
				1044	if (!idev->cnf.forwarding)
				1045	goto out;
				1046
				1047	/*
				1048	* Don't update NCE if src = ::;
				1049	* this implies that the source node has no ip address assigned yet.
				1050	*/
				1051	if (ipv6_addr_any(saddr))
				1052	goto out;
				1053
				1054	/* Parse ND options */
				1055	if (!ndisc_parse_options(rs_msg->opt, ndoptlen, &ndopts)) {
				1056	if (net_ratelimit())
				1057	ND_PRINTK2("ICMP6 NS: invalid ND option, ignored\n");
				1058	goto out;
				1059	}
				1060
				1061	if (ndopts.nd_opts_src_lladdr) {
				1062	lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr,
				1063	skb->dev);
				1064	if (!lladdr)
				1065	goto out;
				1066	}
				1067
				1068	neigh = __neigh_lookup(&nd_tbl, saddr, skb->dev, 1);
				1069	if (neigh) {
				1070	neigh_update(neigh, lladdr, NUD_STALE,
				1071	NEIGH_UPDATE_F_WEAK_OVERRIDE\|
				1072	NEIGH_UPDATE_F_OVERRIDE\|
				1073	NEIGH_UPDATE_F_OVERRIDE_ISROUTER);
				1074	neigh_release(neigh);
				1075	}
				1076	out:
Eric Dumazet	cfdf764	2011-07-27 21:13:03 +0000	[diff] [blame]	1077	return;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1078	}
				1079
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	1080	static void ndisc_ra_useropt(struct sk_buff ra, struct nd_opt_hdr opt)
				1081	{
				1082	struct icmp6hdr icmp6h = (struct icmp6hdr )skb_transport_header(ra);
				1083	struct sk_buff *skb;
				1084	struct nlmsghdr *nlh;
				1085	struct nduseroptmsg *ndmsg;
YOSHIFUJI Hideaki	c346dca	2008-03-25 21:47:49 +0900	[diff] [blame]	1086	struct net *net = dev_net(ra->dev);
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	1087	int err;
				1088	int base_size = NLMSG_ALIGN(sizeof(struct nduseroptmsg)
				1089	+ (opt->nd_opt_len << 3));
				1090	size_t msg_size = base_size + nla_total_size(sizeof(struct in6_addr));
				1091
				1092	skb = nlmsg_new(msg_size, GFP_ATOMIC);
				1093	if (skb == NULL) {
				1094	err = -ENOBUFS;
				1095	goto errout;
				1096	}
				1097
				1098	nlh = nlmsg_put(skb, 0, 0, RTM_NEWNDUSEROPT, base_size, 0);
				1099	if (nlh == NULL) {
				1100	goto nla_put_failure;
				1101	}
				1102
				1103	ndmsg = nlmsg_data(nlh);
				1104	ndmsg->nduseropt_family = AF_INET6;
Pierre Ynard	dbb2ed2	2007-11-12 17:58:35 -0800	[diff] [blame]	1105	ndmsg->nduseropt_ifindex = ra->dev->ifindex;
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	1106	ndmsg->nduseropt_icmp_type = icmp6h->icmp6_type;
				1107	ndmsg->nduseropt_icmp_code = icmp6h->icmp6_code;
				1108	ndmsg->nduseropt_opts_len = opt->nd_opt_len << 3;
				1109
				1110	memcpy(ndmsg + 1, opt, opt->nd_opt_len << 3);
				1111
				1112	NLA_PUT(skb, NDUSEROPT_SRCADDR, sizeof(struct in6_addr),
				1113	&ipv6_hdr(ra)->saddr);
				1114	nlmsg_end(skb, nlh);
				1115
Pablo Neira Ayuso	1ce85fe	2009-02-24 23:18:28 -0800	[diff] [blame]	1116	rtnl_notify(skb, net, 0, RTNLGRP_ND_USEROPT, NULL, GFP_ATOMIC);
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	1117	return;
				1118
				1119	nla_put_failure:
				1120	nlmsg_free(skb);
				1121	err = -EMSGSIZE;
				1122	errout:
Daniel Lezcano	a18bc69	2008-03-07 11:14:49 -0800	[diff] [blame]	1123	rtnl_set_sk_err(net, RTNLGRP_ND_USEROPT, err);
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	1124	}
				1125
Thomas Graf	65e9b62	2010-09-03 02:59:14 +0000	[diff] [blame]	1126	static inline int accept_ra(struct inet6_dev *in6_dev)
				1127	{
				1128	/*
				1129	* If forwarding is enabled, RA are not accepted unless the special
				1130	* hybrid mode (accept_ra=2) is enabled.
				1131	*/
				1132	if (in6_dev->cnf.forwarding && in6_dev->cnf.accept_ra < 2)
				1133	return 0;
				1134
				1135	return in6_dev->cnf.accept_ra;
				1136	}
				1137
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1138	static void ndisc_router_discovery(struct sk_buff *skb)
				1139	{
Arnaldo Carvalho de Melo	9c70220	2007-04-25 18:04:18 -0700	[diff] [blame]	1140	struct ra_msg ra_msg = (struct ra_msg )skb_transport_header(skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1141	struct neighbour *neigh = NULL;
				1142	struct inet6_dev *in6_dev;
YOSHIFUJI Hideaki	65f5c7c	2006-03-20 16:55:08 -0800	[diff] [blame]	1143	struct rt6_info *rt = NULL;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1144	int lifetime;
				1145	struct ndisc_options ndopts;
				1146	int optlen;
YOSHIFUJI Hideaki	ebacaaa	2006-03-20 17:04:53 -0800	[diff] [blame]	1147	unsigned int pref = 0;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1148
				1149	__u8 * opt = (__u8 *)(ra_msg + 1);
				1150
Arnaldo Carvalho de Melo	27a884d	2007-04-19 20:29:13 -0700	[diff] [blame]	1151	optlen = (skb->tail - skb->transport_header) - sizeof(struct ra_msg);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1152
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1153	if (!(ipv6_addr_type(&ipv6_hdr(skb)->saddr) & IPV6_ADDR_LINKLOCAL)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1154	ND_PRINTK2(KERN_WARNING
				1155	"ICMPv6 RA: source address is not link-local.\n");
				1156	return;
				1157	}
				1158	if (optlen < 0) {
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1159	ND_PRINTK2(KERN_WARNING
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1160	"ICMPv6 RA: packet too short\n");
				1161	return;
				1162	}
				1163
YOSHIFUJI Hideaki	de357cc	2008-03-15 23:59:18 -0400	[diff] [blame]	1164	#ifdef CONFIG_IPV6_NDISC_NODETYPE
Templin, Fred L	fadf6bf	2008-03-11 18:35:59 -0400	[diff] [blame]	1165	if (skb->ndisc_nodetype == NDISC_NODETYPE_HOST) {
				1166	ND_PRINTK2(KERN_WARNING
				1167	"ICMPv6 RA: from host or unauthorized router\n");
				1168	return;
				1169	}
YOSHIFUJI Hideaki	de357cc	2008-03-15 23:59:18 -0400	[diff] [blame]	1170	#endif
Templin, Fred L	fadf6bf	2008-03-11 18:35:59 -0400	[diff] [blame]	1171
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1172	/*
				1173	* set the RA_RECV flag in the interface
				1174	*/
				1175
Eric Dumazet	cfdf764	2011-07-27 21:13:03 +0000	[diff] [blame]	1176	in6_dev = __in6_dev_get(skb->dev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1177	if (in6_dev == NULL) {
				1178	ND_PRINTK0(KERN_ERR
				1179	"ICMPv6 RA: can't find inet6 device for %s.\n",
				1180	skb->dev->name);
				1181	return;
				1182	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1183
				1184	if (!ndisc_parse_options(opt, optlen, &ndopts)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1185	ND_PRINTK2(KERN_WARNING
				1186	"ICMP6 RA: invalid ND options\n");
				1187	return;
				1188	}
				1189
Thomas Graf	65e9b62	2010-09-03 02:59:14 +0000	[diff] [blame]	1190	if (!accept_ra(in6_dev))
David Ward	31ce8c7	2009-08-29 00:04:09 -0700	[diff] [blame]	1191	goto skip_linkparms;
				1192
YOSHIFUJI Hideaki	de357cc	2008-03-15 23:59:18 -0400	[diff] [blame]	1193	#ifdef CONFIG_IPV6_NDISC_NODETYPE
Templin, Fred L	fadf6bf	2008-03-11 18:35:59 -0400	[diff] [blame]	1194	/* skip link-specific parameters from interior routers */
				1195	if (skb->ndisc_nodetype == NDISC_NODETYPE_NODEFAULT)
				1196	goto skip_linkparms;
YOSHIFUJI Hideaki	de357cc	2008-03-15 23:59:18 -0400	[diff] [blame]	1197	#endif
Templin, Fred L	fadf6bf	2008-03-11 18:35:59 -0400	[diff] [blame]	1198
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1199	if (in6_dev->if_flags & IF_RS_SENT) {
				1200	/*
				1201	* flag that an RA was received after an RS was sent
				1202	* out on this interface.
				1203	*/
				1204	in6_dev->if_flags \|= IF_RA_RCVD;
				1205	}
				1206
				1207	/*
				1208	* Remember the managed/otherconf flags from most recently
				1209	* received RA message (RFC 2462) -- yoshfuji
				1210	*/
				1211	in6_dev->if_flags = (in6_dev->if_flags & ~(IF_RA_MANAGED \|
				1212	IF_RA_OTHERCONF)) \|
				1213	(ra_msg->icmph.icmp6_addrconf_managed ?
				1214	IF_RA_MANAGED : 0) \|
				1215	(ra_msg->icmph.icmp6_addrconf_other ?
				1216	IF_RA_OTHERCONF : 0);
				1217
YOSHIFUJI Hideaki	65f5c7c	2006-03-20 16:55:08 -0800	[diff] [blame]	1218	if (!in6_dev->cnf.accept_ra_defrtr)
				1219	goto skip_defrtr;
				1220
Andreas Hofmeister	9f56220	2011-10-24 19:13:15 -0400	[diff] [blame]	1221	if (ipv6_chk_addr(dev_net(in6_dev->dev), &ipv6_hdr(skb)->saddr, NULL, 0))
				1222	goto skip_defrtr;
				1223
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1224	lifetime = ntohs(ra_msg->icmph.icmp6_rt_lifetime);
				1225
YOSHIFUJI Hideaki	ebacaaa	2006-03-20 17:04:53 -0800	[diff] [blame]	1226	#ifdef CONFIG_IPV6_ROUTER_PREF
				1227	pref = ra_msg->icmph.icmp6_router_pref;
				1228	/* 10b is handled as if it were 00b (medium) */
YOSHIFUJI Hideaki	930d6ff	2006-03-20 17:05:30 -0800	[diff] [blame]	1229	if (pref == ICMPV6_ROUTER_PREF_INVALID \|\|
YOSHIFUJI Hideaki	6d5b78c	2007-06-22 16:07:04 -0700	[diff] [blame]	1230	!in6_dev->cnf.accept_ra_rtr_pref)
YOSHIFUJI Hideaki	ebacaaa	2006-03-20 17:04:53 -0800	[diff] [blame]	1231	pref = ICMPV6_ROUTER_PREF_MEDIUM;
				1232	#endif
				1233
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1234	rt = rt6_get_dflt_router(&ipv6_hdr(skb)->saddr, skb->dev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1235
David S. Miller	eb85718	2012-01-27 15:07:56 -0800	[diff] [blame]	1236	if (rt) {
				1237	neigh = dst_neigh_lookup(&rt->dst, &ipv6_hdr(skb)->saddr);
				1238	if (!neigh) {
				1239	ND_PRINTK0(KERN_ERR
Joe Perches	c7e7451	2012-05-15 14:11:53 +0000	[diff] [blame]	1240	"ICMPv6 RA: %s got default router without neighbour.\n",
David S. Miller	eb85718	2012-01-27 15:07:56 -0800	[diff] [blame]	1241	__func__);
				1242	dst_release(&rt->dst);
				1243	return;
				1244	}
				1245	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1246	if (rt && lifetime == 0) {
Thomas Graf	e0a1ad73	2006-08-22 00:00:21 -0700	[diff] [blame]	1247	ip6_del_rt(rt);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1248	rt = NULL;
				1249	}
				1250
				1251	if (rt == NULL && lifetime) {
				1252	ND_PRINTK3(KERN_DEBUG
				1253	"ICMPv6 RA: adding default router.\n");
				1254
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1255	rt = rt6_add_dflt_router(&ipv6_hdr(skb)->saddr, skb->dev, pref);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1256	if (rt == NULL) {
				1257	ND_PRINTK0(KERN_ERR
Joe Perches	c7e7451	2012-05-15 14:11:53 +0000	[diff] [blame]	1258	"ICMPv6 RA: %s failed to add default route.\n",
Harvey Harrison	0dc4787	2008-03-05 20:47:47 -0800	[diff] [blame]	1259	__func__);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1260	return;
				1261	}
				1262
David S. Miller	eb85718	2012-01-27 15:07:56 -0800	[diff] [blame]	1263	neigh = dst_neigh_lookup(&rt->dst, &ipv6_hdr(skb)->saddr);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1264	if (neigh == NULL) {
				1265	ND_PRINTK0(KERN_ERR
Joe Perches	c7e7451	2012-05-15 14:11:53 +0000	[diff] [blame]	1266	"ICMPv6 RA: %s got default router without neighbour.\n",
Harvey Harrison	0dc4787	2008-03-05 20:47:47 -0800	[diff] [blame]	1267	__func__);
Changli Gao	d8d1f30	2010-06-10 23:31:35 -0700	[diff] [blame]	1268	dst_release(&rt->dst);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1269	return;
				1270	}
				1271	neigh->flags \|= NTF_ROUTER;
YOSHIFUJI Hideaki	ebacaaa	2006-03-20 17:04:53 -0800	[diff] [blame]	1272	} else if (rt) {
Pedro Ribeiro	22441cf	2008-10-15 15:47:49 -0700	[diff] [blame]	1273	rt->rt6i_flags = (rt->rt6i_flags & ~RTF_PREF_MASK) \| RTF_PREF(pref);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1274	}
				1275
				1276	if (rt)
Gao feng	1716a96	2012-04-06 00:13:10 +0000	[diff] [blame]	1277	rt6_set_expires(rt, jiffies + (HZ * lifetime));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1278	if (ra_msg->icmph.icmp6_hop_limit) {
D.S. Ljungmark	3c72acd	2015-03-25 09:28:15 +0100	[diff] [blame]	1279	/* Only set hop_limit on the interface if it is higher than
				1280	* the current hop_limit.
				1281	*/
				1282	if (in6_dev->cnf.hop_limit < ra_msg->icmph.icmp6_hop_limit) {
				1283	in6_dev->cnf.hop_limit = ra_msg->icmph.icmp6_hop_limit;
				1284	} else {
				1285	ND_PRINTK2(KERN_WARNING "RA: Got route advertisement with lower hop_limit than current\n");
				1286	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1287	if (rt)
David S. Miller	defb351	2010-12-08 21:16:57 -0800	[diff] [blame]	1288	dst_metric_set(&rt->dst, RTAX_HOPLIMIT,
				1289	ra_msg->icmph.icmp6_hop_limit);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1290	}
				1291
YOSHIFUJI Hideaki	65f5c7c	2006-03-20 16:55:08 -0800	[diff] [blame]	1292	skip_defrtr:
				1293
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1294	/*
				1295	* Update Reachable Time and Retrans Timer
				1296	*/
				1297
				1298	if (in6_dev->nd_parms) {
				1299	unsigned long rtime = ntohl(ra_msg->retrans_timer);
				1300
				1301	if (rtime && rtime/1000 < MAX_SCHEDULE_TIMEOUT/HZ) {
				1302	rtime = (rtime*HZ)/1000;
				1303	if (rtime < HZ/10)
				1304	rtime = HZ/10;
				1305	in6_dev->nd_parms->retrans_time = rtime;
				1306	in6_dev->tstamp = jiffies;
				1307	inet6_ifinfo_notify(RTM_NEWLINK, in6_dev);
				1308	}
				1309
				1310	rtime = ntohl(ra_msg->reachable_time);
				1311	if (rtime && rtime/1000 < MAX_SCHEDULE_TIMEOUT/(3*HZ)) {
				1312	rtime = (rtime*HZ)/1000;
				1313
				1314	if (rtime < HZ/10)
				1315	rtime = HZ/10;
				1316
				1317	if (rtime != in6_dev->nd_parms->base_reachable_time) {
				1318	in6_dev->nd_parms->base_reachable_time = rtime;
				1319	in6_dev->nd_parms->gc_staletime = 3 * rtime;
				1320	in6_dev->nd_parms->reachable_time = neigh_rand_reach_time(rtime);
				1321	in6_dev->tstamp = jiffies;
				1322	inet6_ifinfo_notify(RTM_NEWLINK, in6_dev);
				1323	}
				1324	}
				1325	}
				1326
Templin, Fred L	fadf6bf	2008-03-11 18:35:59 -0400	[diff] [blame]	1327	skip_linkparms:
				1328
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1329	/*
				1330	* Process options.
				1331	*/
				1332
				1333	if (!neigh)
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1334	neigh = __neigh_lookup(&nd_tbl, &ipv6_hdr(skb)->saddr,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1335	skb->dev, 1);
				1336	if (neigh) {
				1337	u8 *lladdr = NULL;
				1338	if (ndopts.nd_opts_src_lladdr) {
				1339	lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr,
				1340	skb->dev);
				1341	if (!lladdr) {
				1342	ND_PRINTK2(KERN_WARNING
				1343	"ICMPv6 RA: invalid link-layer address length\n");
				1344	goto out;
				1345	}
				1346	}
				1347	neigh_update(neigh, lladdr, NUD_STALE,
				1348	NEIGH_UPDATE_F_WEAK_OVERRIDE\|
				1349	NEIGH_UPDATE_F_OVERRIDE\|
				1350	NEIGH_UPDATE_F_OVERRIDE_ISROUTER\|
				1351	NEIGH_UPDATE_F_ISROUTER);
				1352	}
				1353
Thomas Graf	65e9b62	2010-09-03 02:59:14 +0000	[diff] [blame]	1354	if (!accept_ra(in6_dev))
David Ward	31ce8c7	2009-08-29 00:04:09 -0700	[diff] [blame]	1355	goto out;
				1356
YOSHIFUJI Hideaki	70ceb4f	2006-03-20 17:06:24 -0800	[diff] [blame]	1357	#ifdef CONFIG_IPV6_ROUTE_INFO
Andreas Hofmeister	9f56220	2011-10-24 19:13:15 -0400	[diff] [blame]	1358	if (ipv6_chk_addr(dev_net(in6_dev->dev), &ipv6_hdr(skb)->saddr, NULL, 0))
				1359	goto skip_routeinfo;
				1360
YOSHIFUJI Hideaki	09c884d	2006-03-20 17:07:03 -0800	[diff] [blame]	1361	if (in6_dev->cnf.accept_ra_rtr_pref && ndopts.nd_opts_ri) {
YOSHIFUJI Hideaki	70ceb4f	2006-03-20 17:06:24 -0800	[diff] [blame]	1362	struct nd_opt_hdr *p;
				1363	for (p = ndopts.nd_opts_ri;
				1364	p;
				1365	p = ndisc_next_option(p, ndopts.nd_opts_ri_end)) {
YOSHIFUJI Hideaki	6294e00	2008-03-15 23:56:52 -0400	[diff] [blame]	1366	struct route_info ri = (struct route_info )p;
				1367	#ifdef CONFIG_IPV6_NDISC_NODETYPE
				1368	if (skb->ndisc_nodetype == NDISC_NODETYPE_NODEFAULT &&
				1369	ri->prefix_len == 0)
				1370	continue;
				1371	#endif
Joel Scherpelz	4de3bd3	2017-03-22 18:19:04 +0900	[diff] [blame]	1372	if (ri->prefix_len < in6_dev->cnf.accept_ra_rt_info_min_plen)
				1373	continue;
YOSHIFUJI Hideaki	6294e00	2008-03-15 23:56:52 -0400	[diff] [blame]	1374	if (ri->prefix_len > in6_dev->cnf.accept_ra_rt_info_max_plen)
YOSHIFUJI Hideaki	09c884d	2006-03-20 17:07:03 -0800	[diff] [blame]	1375	continue;
YOSHIFUJI Hideaki	70ceb4f	2006-03-20 17:06:24 -0800	[diff] [blame]	1376	rt6_route_rcv(skb->dev, (u8*)p, (p->nd_opt_len) << 3,
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1377	&ipv6_hdr(skb)->saddr);
YOSHIFUJI Hideaki	70ceb4f	2006-03-20 17:06:24 -0800	[diff] [blame]	1378	}
				1379	}
Andreas Hofmeister	9f56220	2011-10-24 19:13:15 -0400	[diff] [blame]	1380
				1381	skip_routeinfo:
YOSHIFUJI Hideaki	70ceb4f	2006-03-20 17:06:24 -0800	[diff] [blame]	1382	#endif
				1383
YOSHIFUJI Hideaki	de357cc	2008-03-15 23:59:18 -0400	[diff] [blame]	1384	#ifdef CONFIG_IPV6_NDISC_NODETYPE
Templin, Fred L	fadf6bf	2008-03-11 18:35:59 -0400	[diff] [blame]	1385	/* skip link-specific ndopts from interior routers */
				1386	if (skb->ndisc_nodetype == NDISC_NODETYPE_NODEFAULT)
				1387	goto out;
YOSHIFUJI Hideaki	de357cc	2008-03-15 23:59:18 -0400	[diff] [blame]	1388	#endif
Templin, Fred L	fadf6bf	2008-03-11 18:35:59 -0400	[diff] [blame]	1389
YOSHIFUJI Hideaki	c4fd30e	2006-03-20 16:55:26 -0800	[diff] [blame]	1390	if (in6_dev->cnf.accept_ra_pinfo && ndopts.nd_opts_pi) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1391	struct nd_opt_hdr *p;
				1392	for (p = ndopts.nd_opts_pi;
				1393	p;
				1394	p = ndisc_next_option(p, ndopts.nd_opts_pi_end)) {
Neil Horman	e6bff99	2012-01-04 10:49:15 +0000	[diff] [blame]	1395	addrconf_prefix_rcv(skb->dev, (u8 *)p,
				1396	(p->nd_opt_len) << 3,
				1397	ndopts.nd_opts_src_lladdr != NULL);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1398	}
				1399	}
				1400
Harout Hedeshian	e517037	2015-01-26 15:54:18 -0700	[diff] [blame]	1401	if (ndopts.nd_opts_mtu && in6_dev->cnf.accept_ra_mtu) {
Al Viro	e69a4ad	2006-11-14 20:56:00 -0800	[diff] [blame]	1402	__be32 n;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1403	u32 mtu;
				1404
Al Viro	e69a4ad	2006-11-14 20:56:00 -0800	[diff] [blame]	1405	memcpy(&n, ((u8*)(ndopts.nd_opts_mtu+1))+2, sizeof(mtu));
				1406	mtu = ntohl(n);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1407
				1408	if (mtu < IPV6_MIN_MTU \|\| mtu > skb->dev->mtu) {
				1409	ND_PRINTK2(KERN_WARNING
				1410	"ICMPv6 RA: invalid mtu: %d\n",
				1411	mtu);
				1412	} else if (in6_dev->cnf.mtu6 != mtu) {
				1413	in6_dev->cnf.mtu6 = mtu;
				1414
				1415	if (rt)
David S. Miller	defb351	2010-12-08 21:16:57 -0800	[diff] [blame]	1416	dst_metric_set(&rt->dst, RTAX_MTU, mtu);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1417
				1418	rt6_mtu_change(skb->dev, mtu);
				1419	}
				1420	}
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1421
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	1422	if (ndopts.nd_useropts) {
YOSHIFUJI Hideaki	61cf46a	2008-01-22 17:32:53 +0900	[diff] [blame]	1423	struct nd_opt_hdr *p;
				1424	for (p = ndopts.nd_useropts;
				1425	p;
				1426	p = ndisc_next_useropt(p, ndopts.nd_useropts_end)) {
				1427	ndisc_ra_useropt(skb, p);
Pierre Ynard	3191057	2007-10-10 21:22:05 -0700	[diff] [blame]	1428	}
				1429	}
				1430
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1431	if (ndopts.nd_opts_tgt_lladdr \|\| ndopts.nd_opts_rh) {
				1432	ND_PRINTK2(KERN_WARNING
				1433	"ICMPv6 RA: invalid RA options");
				1434	}
				1435	out:
				1436	if (rt)
Changli Gao	d8d1f30	2010-06-10 23:31:35 -0700	[diff] [blame]	1437	dst_release(&rt->dst);
David S. Miller	eb85718	2012-01-27 15:07:56 -0800	[diff] [blame]	1438	if (neigh)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1439	neigh_release(neigh);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1440	}
				1441
				1442	static void ndisc_redirect_rcv(struct sk_buff *skb)
				1443	{
				1444	struct inet6_dev *in6_dev;
				1445	struct icmp6hdr *icmph;
Eric Dumazet	b71d1d4	2011-04-22 04:53:02 +0000	[diff] [blame]	1446	const struct in6_addr *dest;
				1447	const struct in6_addr target; / new first hop to destination */
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1448	struct neighbour *neigh;
				1449	int on_link = 0;
				1450	struct ndisc_options ndopts;
				1451	int optlen;
				1452	u8 *lladdr = NULL;
				1453
YOSHIFUJI Hideaki	de357cc	2008-03-15 23:59:18 -0400	[diff] [blame]	1454	#ifdef CONFIG_IPV6_NDISC_NODETYPE
Templin, Fred L	fadf6bf	2008-03-11 18:35:59 -0400	[diff] [blame]	1455	switch (skb->ndisc_nodetype) {
				1456	case NDISC_NODETYPE_HOST:
				1457	case NDISC_NODETYPE_NODEFAULT:
				1458	ND_PRINTK2(KERN_WARNING
				1459	"ICMPv6 Redirect: from host or unauthorized router\n");
				1460	return;
				1461	}
YOSHIFUJI Hideaki	de357cc	2008-03-15 23:59:18 -0400	[diff] [blame]	1462	#endif
Templin, Fred L	fadf6bf	2008-03-11 18:35:59 -0400	[diff] [blame]	1463
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1464	if (!(ipv6_addr_type(&ipv6_hdr(skb)->saddr) & IPV6_ADDR_LINKLOCAL)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1465	ND_PRINTK2(KERN_WARNING
				1466	"ICMPv6 Redirect: source address is not link-local.\n");
				1467	return;
				1468	}
				1469
Arnaldo Carvalho de Melo	27a884d	2007-04-19 20:29:13 -0700	[diff] [blame]	1470	optlen = skb->tail - skb->transport_header;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1471	optlen -= sizeof(struct icmp6hdr) + 2 * sizeof(struct in6_addr);
				1472
				1473	if (optlen < 0) {
				1474	ND_PRINTK2(KERN_WARNING
				1475	"ICMPv6 Redirect: packet too short\n");
				1476	return;
				1477	}
				1478
Arnaldo Carvalho de Melo	cc70ab2	2007-03-13 14:03:22 -0300	[diff] [blame]	1479	icmph = icmp6_hdr(skb);
Eric Dumazet	b71d1d4	2011-04-22 04:53:02 +0000	[diff] [blame]	1480	target = (const struct in6_addr *) (icmph + 1);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1481	dest = target + 1;
				1482
				1483	if (ipv6_addr_is_multicast(dest)) {
				1484	ND_PRINTK2(KERN_WARNING
				1485	"ICMPv6 Redirect: destination address is multicast.\n");
				1486	return;
				1487	}
				1488
				1489	if (ipv6_addr_equal(dest, target)) {
				1490	on_link = 1;
Brian Haley	bf0b48d	2007-10-08 00:12:05 -0700	[diff] [blame]	1491	} else if (ipv6_addr_type(target) !=
				1492	(IPV6_ADDR_UNICAST\|IPV6_ADDR_LINKLOCAL)) {
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1493	ND_PRINTK2(KERN_WARNING
Brian Haley	bf0b48d	2007-10-08 00:12:05 -0700	[diff] [blame]	1494	"ICMPv6 Redirect: target address is not link-local unicast.\n");
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1495	return;
				1496	}
				1497
Eric Dumazet	cfdf764	2011-07-27 21:13:03 +0000	[diff] [blame]	1498	in6_dev = __in6_dev_get(skb->dev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1499	if (!in6_dev)
				1500	return;
Eric Dumazet	cfdf764	2011-07-27 21:13:03 +0000	[diff] [blame]	1501	if (in6_dev->cnf.forwarding \|\| !in6_dev->cnf.accept_redirects)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1502	return;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1503
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1504	/* RFC2461 8.1:
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1505	* The IP source address of the Redirect MUST be the same as the current
				1506	* first-hop router for the specified ICMP Destination Address.
				1507	*/
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1508
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1509	if (!ndisc_parse_options((u8*)(dest + 1), optlen, &ndopts)) {
				1510	ND_PRINTK2(KERN_WARNING
				1511	"ICMPv6 Redirect: invalid ND options\n");
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1512	return;
				1513	}
				1514	if (ndopts.nd_opts_tgt_lladdr) {
				1515	lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr,
				1516	skb->dev);
				1517	if (!lladdr) {
				1518	ND_PRINTK2(KERN_WARNING
				1519	"ICMPv6 Redirect: invalid link-layer address length\n");
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1520	return;
				1521	}
				1522	}
				1523
				1524	neigh = __neigh_lookup(&nd_tbl, target, skb->dev, 1);
				1525	if (neigh) {
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1526	rt6_redirect(dest, &ipv6_hdr(skb)->daddr,
				1527	&ipv6_hdr(skb)->saddr, neigh, lladdr,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1528	on_link);
				1529	neigh_release(neigh);
				1530	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1531	}
				1532
David S. Miller	4991969	2012-01-27 15:30:48 -0800	[diff] [blame]	1533	void ndisc_send_redirect(struct sk_buff skb, const struct in6_addr target)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1534	{
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1535	struct net_device *dev = skb->dev;
YOSHIFUJI Hideaki	c346dca	2008-03-25 21:47:49 +0900	[diff] [blame]	1536	struct net *net = dev_net(dev);
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1537	struct sock *sk = net->ipv6.ndisc_sk;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1538	int len = sizeof(struct icmp6hdr) + 2 * sizeof(struct in6_addr);
				1539	struct sk_buff *buff;
				1540	struct icmp6hdr *icmph;
				1541	struct in6_addr saddr_buf;
				1542	struct in6_addr *addrp;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1543	struct rt6_info *rt;
				1544	struct dst_entry *dst;
				1545	struct inet6_dev *idev;
David S. Miller	4c9483b	2011-03-12 16:22:43 -0500	[diff] [blame]	1546	struct flowi6 fl6;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1547	u8 *opt;
Herbert Xu	a7ae199	2011-11-18 02:20:04 +0000	[diff] [blame]	1548	int hlen, tlen;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1549	int rd_len;
				1550	int err;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1551	u8 ha_buf[MAX_ADDR_LEN], *ha = NULL;
				1552
Neil Horman	95c385b	2007-04-25 17:08:10 -0700	[diff] [blame]	1553	if (ipv6_get_lladdr(dev, &saddr_buf, IFA_F_TENTATIVE)) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1554	ND_PRINTK2(KERN_WARNING
				1555	"ICMPv6 Redirect: no link-local address on %s\n",
				1556	dev->name);
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1557	return;
				1558	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1559
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1560	if (!ipv6_addr_equal(&ipv6_hdr(skb)->daddr, target) &&
Brian Haley	bf0b48d	2007-10-08 00:12:05 -0700	[diff] [blame]	1561	ipv6_addr_type(target) != (IPV6_ADDR_UNICAST\|IPV6_ADDR_LINKLOCAL)) {
Li Yewang	2955652	2007-01-30 14:33:20 -0800	[diff] [blame]	1562	ND_PRINTK2(KERN_WARNING
Brian Haley	bf0b48d	2007-10-08 00:12:05 -0700	[diff] [blame]	1563	"ICMPv6 Redirect: target address is not link-local unicast.\n");
Li Yewang	2955652	2007-01-30 14:33:20 -0800	[diff] [blame]	1564	return;
				1565	}
				1566
David S. Miller	4c9483b	2011-03-12 16:22:43 -0500	[diff] [blame]	1567	icmpv6_flow_init(sk, &fl6, NDISC_REDIRECT,
YOSHIFUJI Hideaki	95e41e9	2007-12-06 15:43:30 -0800	[diff] [blame]	1568	&saddr_buf, &ipv6_hdr(skb)->saddr, dev->ifindex);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1569
David S. Miller	4c9483b	2011-03-12 16:22:43 -0500	[diff] [blame]	1570	dst = ip6_route_output(net, NULL, &fl6);
RongQing.Li	5095d64	2012-02-21 22:10:49 +0000	[diff] [blame]	1571	if (dst->error) {
				1572	dst_release(dst);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1573	return;
RongQing.Li	5095d64	2012-02-21 22:10:49 +0000	[diff] [blame]	1574	}
David S. Miller	4c9483b	2011-03-12 16:22:43 -0500	[diff] [blame]	1575	dst = xfrm_lookup(net, dst, flowi6_to_flowi(&fl6), NULL, 0);
David S. Miller	452edd5	2011-03-02 13:27:41 -0800	[diff] [blame]	1576	if (IS_ERR(dst))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1577	return;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1578
				1579	rt = (struct rt6_info *) dst;
				1580
				1581	if (rt->rt6i_flags & RTF_GATEWAY) {
				1582	ND_PRINTK2(KERN_WARNING
				1583	"ICMPv6 Redirect: destination is not a neighbour.\n");
Ilpo Järvinen	d73f080	2009-02-06 23:47:37 -0800	[diff] [blame]	1584	goto release;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1585	}
David S. Miller	92d8682	2011-02-04 15:55:25 -0800	[diff] [blame]	1586	if (!rt->rt6i_peer)
				1587	rt6_bind_peer(rt, 1);
Li Wei	4d65a24	2011-11-23 03:51:54 -0500	[diff] [blame]	1588	if (!inet_peer_xrlim_allow(rt->rt6i_peer, 1*HZ))
Ilpo Järvinen	d73f080	2009-02-06 23:47:37 -0800	[diff] [blame]	1589	goto release;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1590
				1591	if (dev->addr_len) {
David S. Miller	4991969	2012-01-27 15:30:48 -0800	[diff] [blame]	1592	struct neighbour *neigh = dst_neigh_lookup(skb_dst(skb), target);
				1593	if (!neigh) {
				1594	ND_PRINTK2(KERN_WARNING
				1595	"ICMPv6 Redirect: no neigh for target address\n");
				1596	goto release;
				1597	}
				1598
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1599	read_lock_bh(&neigh->lock);
				1600	if (neigh->nud_state & NUD_VALID) {
				1601	memcpy(ha_buf, neigh->ha, dev->addr_len);
				1602	read_unlock_bh(&neigh->lock);
				1603	ha = ha_buf;
				1604	len += ndisc_opt_addr_space(dev);
				1605	} else
				1606	read_unlock_bh(&neigh->lock);
David S. Miller	4991969	2012-01-27 15:30:48 -0800	[diff] [blame]	1607
				1608	neigh_release(neigh);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1609	}
				1610
				1611	rd_len = min_t(unsigned int,
				1612	IPV6_MIN_MTU-sizeof(struct ipv6hdr)-len, skb->len + 8);
				1613	rd_len &= ~0x7;
				1614	len += rd_len;
				1615
Herbert Xu	a7ae199	2011-11-18 02:20:04 +0000	[diff] [blame]	1616	hlen = LL_RESERVED_SPACE(dev);
				1617	tlen = dev->needed_tailroom;
David S. Miller	d54a81d	2006-12-02 21:00:06 -0800	[diff] [blame]	1618	buff = sock_alloc_send_skb(sk,
				1619	(MAX_HEADER + sizeof(struct ipv6hdr) +
Herbert Xu	a7ae199	2011-11-18 02:20:04 +0000	[diff] [blame]	1620	len + hlen + tlen),
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1621	1, &err);
				1622	if (buff == NULL) {
				1623	ND_PRINTK0(KERN_ERR
Joe Perches	c7e7451	2012-05-15 14:11:53 +0000	[diff] [blame]	1624	"ICMPv6 Redirect: %s failed to allocate an skb, err=%d.\n",
Brian Haley	dae9de8	2009-06-02 00:20:26 -0700	[diff] [blame]	1625	__func__, err);
Ilpo Järvinen	d73f080	2009-02-06 23:47:37 -0800	[diff] [blame]	1626	goto release;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1627	}
				1628
Herbert Xu	a7ae199	2011-11-18 02:20:04 +0000	[diff] [blame]	1629	skb_reserve(buff, hlen);
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1630	ip6_nd_hdr(sk, buff, dev, &saddr_buf, &ipv6_hdr(skb)->saddr,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1631	IPPROTO_ICMPV6, len);
				1632
Arnaldo Carvalho de Melo	27a884d	2007-04-19 20:29:13 -0700	[diff] [blame]	1633	skb_set_transport_header(buff, skb_tail_pointer(buff) - buff->data);
Arnaldo Carvalho de Melo	d10ba34	2007-03-14 21:05:37 -0300	[diff] [blame]	1634	skb_put(buff, len);
				1635	icmph = icmp6_hdr(buff);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1636
				1637	memset(icmph, 0, sizeof(struct icmp6hdr));
				1638	icmph->icmp6_type = NDISC_REDIRECT;
				1639
				1640	/*
				1641	* copy target and destination addresses
				1642	*/
				1643
				1644	addrp = (struct in6_addr *)(icmph + 1);
Alexey Dobriyan	4e3fd7a	2011-11-21 03:39:03 +0000	[diff] [blame]	1645	addrp = target;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1646	addrp++;
Alexey Dobriyan	4e3fd7a	2011-11-21 03:39:03 +0000	[diff] [blame]	1647	*addrp = ipv6_hdr(skb)->daddr;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1648
				1649	opt = (u8*) (addrp + 1);
				1650
				1651	/*
				1652	* include target_address option
				1653	*/
				1654
				1655	if (ha)
				1656	opt = ndisc_fill_addr_option(opt, ND_OPT_TARGET_LL_ADDR, ha,
				1657	dev->addr_len, dev->type);
				1658
				1659	/*
				1660	* build redirect option and copy skb over to the new packet.
				1661	*/
				1662
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1663	memset(opt, 0, 8);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1664	*(opt++) = ND_OPT_REDIRECT_HDR;
				1665	*(opt++) = (rd_len >> 3);
				1666	opt += 6;
				1667
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1668	memcpy(opt, ipv6_hdr(skb), rd_len - 8);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1669
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1670	icmph->icmp6_cksum = csum_ipv6_magic(&saddr_buf, &ipv6_hdr(skb)->saddr,
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1671	len, IPPROTO_ICMPV6,
Joe Perches	07f0757	2008-11-19 15:44:53 -0800	[diff] [blame]	1672	csum_partial(icmph, len, 0));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1673
Eric Dumazet	adf3090	2009-06-02 05:19:30 +0000	[diff] [blame]	1674	skb_dst_set(buff, dst);
Eric Dumazet	cfdf764	2011-07-27 21:13:03 +0000	[diff] [blame]	1675	rcu_read_lock();
				1676	idev = __in6_dev_get(dst->dev);
Neil Horman	edf391f	2009-04-27 02:45:02 -0700	[diff] [blame]	1677	IP6_UPD_PO_STATS(net, idev, IPSTATS_MIB_OUT, skb->len);
Jan Engelhardt	b2e0b38	2010-03-23 04:09:07 +0100	[diff] [blame]	1678	err = NF_HOOK(NFPROTO_IPV6, NF_INET_LOCAL_OUT, buff, NULL, dst->dev,
Patrick McHardy	6e23ae2	2007-11-19 18:53:30 -0800	[diff] [blame]	1679	dst_output);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1680	if (!err) {
Denis V. Lunev	5c5d244	2008-10-08 10:33:50 -0700	[diff] [blame]	1681	ICMP6MSGOUT_INC_STATS(net, idev, NDISC_REDIRECT);
Denis V. Lunev	a862f6a	2008-10-08 10:33:06 -0700	[diff] [blame]	1682	ICMP6_INC_STATS(net, idev, ICMP6_MIB_OUTMSGS);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1683	}
				1684
Eric Dumazet	cfdf764	2011-07-27 21:13:03 +0000	[diff] [blame]	1685	rcu_read_unlock();
Ilpo Järvinen	d73f080	2009-02-06 23:47:37 -0800	[diff] [blame]	1686	return;
				1687
				1688	release:
				1689	dst_release(dst);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1690	}
				1691
				1692	static void pndisc_redo(struct sk_buff *skb)
				1693	{
YOSHIFUJI Hideaki	140e26fc	2005-10-05 12:11:41 -0700	[diff] [blame]	1694	ndisc_recv_ns(skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1695	kfree_skb(skb);
				1696	}
				1697
				1698	int ndisc_rcv(struct sk_buff *skb)
				1699	{
				1700	struct nd_msg *msg;
				1701
				1702	if (!pskb_may_pull(skb, skb->len))
				1703	return 0;
				1704
Arnaldo Carvalho de Melo	9c70220	2007-04-25 18:04:18 -0700	[diff] [blame]	1705	msg = (struct nd_msg *)skb_transport_header(skb);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1706
Arnaldo Carvalho de Melo	9c70220	2007-04-25 18:04:18 -0700	[diff] [blame]	1707	__skb_push(skb, skb->data - skb_transport_header(skb));
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1708
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1709	if (ipv6_hdr(skb)->hop_limit != 255) {
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1710	ND_PRINTK2(KERN_WARNING
				1711	"ICMPv6 NDISC: invalid hop-limit: %d\n",
Arnaldo Carvalho de Melo	0660e03	2007-04-25 17:54:47 -0700	[diff] [blame]	1712	ipv6_hdr(skb)->hop_limit);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1713	return 0;
				1714	}
				1715
				1716	if (msg->icmph.icmp6_code != 0) {
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1717	ND_PRINTK2(KERN_WARNING
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1718	"ICMPv6 NDISC: invalid ICMPv6 code: %d\n",
				1719	msg->icmph.icmp6_code);
				1720	return 0;
				1721	}
				1722
Patrick McHardy	a61bbcf	2005-08-14 17:24:31 -0700	[diff] [blame]	1723	memset(NEIGH_CB(skb), 0, sizeof(struct neighbour_cb));
				1724
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1725	switch (msg->icmph.icmp6_type) {
				1726	case NDISC_NEIGHBOUR_SOLICITATION:
				1727	ndisc_recv_ns(skb);
				1728	break;
				1729
				1730	case NDISC_NEIGHBOUR_ADVERTISEMENT:
				1731	ndisc_recv_na(skb);
				1732	break;
				1733
				1734	case NDISC_ROUTER_SOLICITATION:
				1735	ndisc_recv_rs(skb);
				1736	break;
				1737
				1738	case NDISC_ROUTER_ADVERTISEMENT:
				1739	ndisc_router_discovery(skb);
				1740	break;
				1741
				1742	case NDISC_REDIRECT:
				1743	ndisc_redirect_rcv(skb);
				1744	break;
Stephen Hemminger	3ff50b7	2007-04-20 17:09:22 -0700	[diff] [blame]	1745	}
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1746
				1747	return 0;
				1748	}
				1749
				1750	static int ndisc_netdev_event(struct notifier_block this, unsigned long event, void ptr)
				1751	{
				1752	struct net_device *dev = ptr;
YOSHIFUJI Hideaki	c346dca	2008-03-25 21:47:49 +0900	[diff] [blame]	1753	struct net *net = dev_net(dev);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1754
				1755	switch (event) {
				1756	case NETDEV_CHANGEADDR:
				1757	neigh_changeaddr(&nd_tbl, dev);
Michal Kubeček	dd24aba	2013-08-01 10:04:14 +0200	[diff] [blame]	1758	fib6_run_gc(0, net, false);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1759	break;
				1760	case NETDEV_DOWN:
				1761	neigh_ifdown(&nd_tbl, dev);
Michal Kubeček	dd24aba	2013-08-01 10:04:14 +0200	[diff] [blame]	1762	fib6_run_gc(0, net, false);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1763	break;
Ben Hutchings	f47b946	2011-04-15 13:46:02 +0000	[diff] [blame]	1764	case NETDEV_NOTIFY_PEERS:
				1765	ndisc_send_unsol_na(dev);
				1766	break;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1767	default:
				1768	break;
				1769	}
				1770
				1771	return NOTIFY_DONE;
				1772	}
				1773
				1774	static struct notifier_block ndisc_netdev_notifier = {
				1775	.notifier_call = ndisc_netdev_event,
				1776	};
				1777
				1778	#ifdef CONFIG_SYSCTL
				1779	static void ndisc_warn_deprecated_sysctl(struct ctl_table *ctl,
				1780	const char func, const char dev_name)
				1781	{
				1782	static char warncomm[TASK_COMM_LEN];
				1783	static int warned;
				1784	if (strcmp(warncomm, current->comm) && warned < 5) {
				1785	strcpy(warncomm, current->comm);
Joe Perches	c7e7451	2012-05-15 14:11:53 +0000	[diff] [blame]	1786	pr_warn("process `%s' is using deprecated sysctl (%s) net.ipv6.neigh.%s.%s - use net.ipv6.neigh.%s.%s_ms instead\n",
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1787	warncomm, func,
				1788	dev_name, ctl->procname,
				1789	dev_name, ctl->procname);
				1790	warned++;
				1791	}
				1792	}
				1793
Alexey Dobriyan	8d65af7	2009-09-23 15:57:19 -0700	[diff] [blame]	1794	int ndisc_ifinfo_sysctl_change(struct ctl_table ctl, int write, void __user buffer, size_t lenp, loff_t ppos)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1795	{
				1796	struct net_device *dev = ctl->extra1;
				1797	struct inet6_dev *idev;
				1798	int ret;
				1799
Eric W. Biederman	d12af67	2007-10-18 03:05:25 -0700	[diff] [blame]	1800	if ((strcmp(ctl->procname, "retrans_time") == 0) \|\|
				1801	(strcmp(ctl->procname, "base_reachable_time") == 0))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1802	ndisc_warn_deprecated_sysctl(ctl, "syscall", dev ? dev->name : "default");
				1803
Eric W. Biederman	d12af67	2007-10-18 03:05:25 -0700	[diff] [blame]	1804	if (strcmp(ctl->procname, "retrans_time") == 0)
Alexey Dobriyan	8d65af7	2009-09-23 15:57:19 -0700	[diff] [blame]	1805	ret = proc_dointvec(ctl, write, buffer, lenp, ppos);
Eric W. Biederman	d12af67	2007-10-18 03:05:25 -0700	[diff] [blame]	1806
				1807	else if (strcmp(ctl->procname, "base_reachable_time") == 0)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1808	ret = proc_dointvec_jiffies(ctl, write,
Alexey Dobriyan	8d65af7	2009-09-23 15:57:19 -0700	[diff] [blame]	1809	buffer, lenp, ppos);
Eric W. Biederman	d12af67	2007-10-18 03:05:25 -0700	[diff] [blame]	1810
				1811	else if ((strcmp(ctl->procname, "retrans_time_ms") == 0) \|\|
YOSHIFUJI Hideaki	ad02ac1	2007-10-29 01:32:23 -0700	[diff] [blame]	1812	(strcmp(ctl->procname, "base_reachable_time_ms") == 0))
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1813	ret = proc_dointvec_ms_jiffies(ctl, write,
Alexey Dobriyan	8d65af7	2009-09-23 15:57:19 -0700	[diff] [blame]	1814	buffer, lenp, ppos);
Eric W. Biederman	d12af67	2007-10-18 03:05:25 -0700	[diff] [blame]	1815	else
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1816	ret = -1;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1817
				1818	if (write && ret == 0 && dev && (idev = in6_dev_get(dev)) != NULL) {
Eric W. Biederman	d12af67	2007-10-18 03:05:25 -0700	[diff] [blame]	1819	if (ctl->data == &idev->nd_parms->base_reachable_time)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1820	idev->nd_parms->reachable_time = neigh_rand_reach_time(idev->nd_parms->base_reachable_time);
				1821	idev->tstamp = jiffies;
				1822	inet6_ifinfo_notify(RTM_NEWLINK, idev);
				1823	in6_dev_put(idev);
				1824	}
				1825	return ret;
				1826	}
				1827
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1828
				1829	#endif
				1830
Alexey Dobriyan	2c8c1e7	2010-01-17 03:35:32 +0000	[diff] [blame]	1831	static int __net_init ndisc_net_init(struct net *net)
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1832	{
				1833	struct ipv6_pinfo *np;
				1834	struct sock *sk;
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1835	int err;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1836
Denis V. Lunev	1ed8516	2008-04-03 14:31:03 -0700	[diff] [blame]	1837	err = inet_ctl_sock_create(&sk, PF_INET6,
				1838	SOCK_RAW, IPPROTO_ICMPV6, net);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1839	if (err < 0) {
				1840	ND_PRINTK0(KERN_ERR
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1841	"ICMPv6 NDISC: Failed to initialize the control socket (err %d).\n",
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1842	err);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1843	return err;
				1844	}
				1845
Denis V. Lunev	1ed8516	2008-04-03 14:31:03 -0700	[diff] [blame]	1846	net->ipv6.ndisc_sk = sk;
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1847
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1848	np = inet6_sk(sk);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1849	np->hop_limit = 255;
				1850	/* Do not loopback ndisc messages */
				1851	np->mc_loop = 0;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1852
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1853	return 0;
				1854	}
				1855
Alexey Dobriyan	2c8c1e7	2010-01-17 03:35:32 +0000	[diff] [blame]	1856	static void __net_exit ndisc_net_exit(struct net *net)
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1857	{
Denis V. Lunev	1ed8516	2008-04-03 14:31:03 -0700	[diff] [blame]	1858	inet_ctl_sock_destroy(net->ipv6.ndisc_sk);
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1859	}
				1860
				1861	static struct pernet_operations ndisc_net_ops = {
				1862	.init = ndisc_net_init,
				1863	.exit = ndisc_net_exit,
				1864	};
				1865
				1866	int __init ndisc_init(void)
				1867	{
				1868	int err;
				1869
				1870	err = register_pernet_subsys(&ndisc_net_ops);
				1871	if (err)
				1872	return err;
YOSHIFUJI Hideaki	1ab1457	2007-02-09 23:24:49 +0900	[diff] [blame]	1873	/*
				1874	* Initialize the neighbour table
				1875	*/
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1876	neigh_table_init(&nd_tbl);
				1877
				1878	#ifdef CONFIG_SYSCTL
Eric W. Biederman	54716e3	2010-02-14 03:27:03 +0000	[diff] [blame]	1879	err = neigh_sysctl_register(NULL, &nd_tbl.parms, "ipv6",
Eric W. Biederman	f8572d8	2009-11-05 13:32:03 -0800	[diff] [blame]	1880	&ndisc_ifinfo_sysctl_change);
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1881	if (err)
				1882	goto out_unregister_pernet;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1883	#endif
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1884	out:
				1885	return err;
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1886
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1887	#ifdef CONFIG_SYSCTL
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1888	out_unregister_pernet:
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1889	unregister_pernet_subsys(&ndisc_net_ops);
				1890	goto out;
Michal Kubeček	9377f76	2013-09-09 21:45:04 +0200	[diff] [blame]	1891	#endif
				1892	}
				1893
				1894	int __init ndisc_late_init(void)
				1895	{
				1896	return register_netdevice_notifier(&ndisc_netdev_notifier);
				1897	}
				1898
				1899	void ndisc_late_cleanup(void)
				1900	{
				1901	unregister_netdevice_notifier(&ndisc_netdev_notifier);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1902	}
				1903
				1904	void ndisc_cleanup(void)
				1905	{
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1906	#ifdef CONFIG_SYSCTL
				1907	neigh_sysctl_unregister(&nd_tbl.parms);
				1908	#endif
				1909	neigh_table_clear(&nd_tbl);
Daniel Lezcano	1762f7e	2008-03-07 11:15:34 -0800	[diff] [blame]	1910	unregister_pernet_subsys(&ndisc_net_ops);
Linus Torvalds	1da177e	2005-04-16 15:20:36 -0700	[diff] [blame]	1911	}