2 * Linux INET6 implementation
6 * Pedro Roque <roque@di.fc.ul.pt>
8 * This program is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU General Public License
10 * as published by the Free Software Foundation; either version
11 * 2 of the License, or (at your option) any later version.
16 * YOSHIFUJI Hideaki @USAGI
17 * reworked default router selection.
18 * - respect outgoing interface
19 * - select from (probably) reachable routers (i.e.
20 * routers in REACHABLE, STALE, DELAY or PROBE states).
21 * - always select the same router if it is (probably)
22 * reachable. otherwise, round-robin the list.
24 * Fixed routing subtrees.
27 #include <linux/capability.h>
28 #include <linux/errno.h>
29 #include <linux/export.h>
30 #include <linux/types.h>
31 #include <linux/times.h>
32 #include <linux/socket.h>
33 #include <linux/sockios.h>
34 #include <linux/net.h>
35 #include <linux/route.h>
36 #include <linux/netdevice.h>
37 #include <linux/in6.h>
38 #include <linux/mroute6.h>
39 #include <linux/init.h>
40 #include <linux/if_arp.h>
41 #include <linux/proc_fs.h>
42 #include <linux/seq_file.h>
43 #include <linux/nsproxy.h>
44 #include <linux/slab.h>
45 #include <net/net_namespace.h>
48 #include <net/ip6_fib.h>
49 #include <net/ip6_route.h>
50 #include <net/ndisc.h>
51 #include <net/addrconf.h>
53 #include <linux/rtnetlink.h>
56 #include <net/netevent.h>
57 #include <net/netlink.h>
59 #include <asm/uaccess.h>
62 #include <linux/sysctl.h>
65 /* Set to 3 to get tracing. */
69 #define RDBG(x) printk x
70 #define RT6_TRACE(x...) printk(KERN_DEBUG x)
73 #define RT6_TRACE(x...) do { ; } while (0)
76 static struct rt6_info *ip6_rt_copy(const struct rt6_info *ort,
77 const struct in6_addr *dest);
78 static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie);
79 static unsigned int ip6_default_advmss(const struct dst_entry *dst);
80 static unsigned int ip6_default_mtu(const struct dst_entry *dst);
81 static struct dst_entry *ip6_negative_advice(struct dst_entry *);
82 static void ip6_dst_destroy(struct dst_entry *);
83 static void ip6_dst_ifdown(struct dst_entry *,
84 struct net_device *dev, int how);
85 static int ip6_dst_gc(struct dst_ops *ops);
87 static int ip6_pkt_discard(struct sk_buff *skb);
88 static int ip6_pkt_discard_out(struct sk_buff *skb);
89 static void ip6_link_failure(struct sk_buff *skb);
90 static void ip6_rt_update_pmtu(struct dst_entry *dst, u32 mtu);
92 #ifdef CONFIG_IPV6_ROUTE_INFO
93 static struct rt6_info *rt6_add_route_info(struct net *net,
94 const struct in6_addr *prefix, int prefixlen,
95 const struct in6_addr *gwaddr, int ifindex,
97 static struct rt6_info *rt6_get_route_info(struct net *net,
98 const struct in6_addr *prefix, int prefixlen,
99 const struct in6_addr *gwaddr, int ifindex);
102 static u32 *ipv6_cow_metrics(struct dst_entry *dst, unsigned long old)
104 struct rt6_info *rt = (struct rt6_info *) dst;
105 struct inet_peer *peer;
108 if (!(rt->dst.flags & DST_HOST))
112 rt6_bind_peer(rt, 1);
114 peer = rt->rt6i_peer;
116 u32 *old_p = __DST_METRICS_PTR(old);
117 unsigned long prev, new;
120 if (inet_metrics_new(peer))
121 memcpy(p, old_p, sizeof(u32) * RTAX_MAX);
123 new = (unsigned long) p;
124 prev = cmpxchg(&dst->_metrics, old, new);
127 p = __DST_METRICS_PTR(prev);
128 if (prev & DST_METRICS_READ_ONLY)
135 static struct neighbour *ip6_neigh_lookup(const struct dst_entry *dst, const void *daddr)
137 return __neigh_lookup_errno(&nd_tbl, daddr, dst->dev);
140 static struct dst_ops ip6_dst_ops_template = {
142 .protocol = cpu_to_be16(ETH_P_IPV6),
145 .check = ip6_dst_check,
146 .default_advmss = ip6_default_advmss,
147 .default_mtu = ip6_default_mtu,
148 .cow_metrics = ipv6_cow_metrics,
149 .destroy = ip6_dst_destroy,
150 .ifdown = ip6_dst_ifdown,
151 .negative_advice = ip6_negative_advice,
152 .link_failure = ip6_link_failure,
153 .update_pmtu = ip6_rt_update_pmtu,
154 .local_out = __ip6_local_out,
155 .neigh_lookup = ip6_neigh_lookup,
158 static unsigned int ip6_blackhole_default_mtu(const struct dst_entry *dst)
163 static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, u32 mtu)
167 static u32 *ip6_rt_blackhole_cow_metrics(struct dst_entry *dst,
173 static struct dst_ops ip6_dst_blackhole_ops = {
175 .protocol = cpu_to_be16(ETH_P_IPV6),
176 .destroy = ip6_dst_destroy,
177 .check = ip6_dst_check,
178 .default_mtu = ip6_blackhole_default_mtu,
179 .default_advmss = ip6_default_advmss,
180 .update_pmtu = ip6_rt_blackhole_update_pmtu,
181 .cow_metrics = ip6_rt_blackhole_cow_metrics,
182 .neigh_lookup = ip6_neigh_lookup,
185 static const u32 ip6_template_metrics[RTAX_MAX] = {
186 [RTAX_HOPLIMIT - 1] = 255,
189 static struct rt6_info ip6_null_entry_template = {
191 .__refcnt = ATOMIC_INIT(1),
194 .error = -ENETUNREACH,
195 .input = ip6_pkt_discard,
196 .output = ip6_pkt_discard_out,
198 .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
199 .rt6i_protocol = RTPROT_KERNEL,
200 .rt6i_metric = ~(u32) 0,
201 .rt6i_ref = ATOMIC_INIT(1),
204 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
206 static int ip6_pkt_prohibit(struct sk_buff *skb);
207 static int ip6_pkt_prohibit_out(struct sk_buff *skb);
209 static struct rt6_info ip6_prohibit_entry_template = {
211 .__refcnt = ATOMIC_INIT(1),
215 .input = ip6_pkt_prohibit,
216 .output = ip6_pkt_prohibit_out,
218 .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
219 .rt6i_protocol = RTPROT_KERNEL,
220 .rt6i_metric = ~(u32) 0,
221 .rt6i_ref = ATOMIC_INIT(1),
224 static struct rt6_info ip6_blk_hole_entry_template = {
226 .__refcnt = ATOMIC_INIT(1),
230 .input = dst_discard,
231 .output = dst_discard,
233 .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
234 .rt6i_protocol = RTPROT_KERNEL,
235 .rt6i_metric = ~(u32) 0,
236 .rt6i_ref = ATOMIC_INIT(1),
241 /* allocate dst with ip6_dst_ops */
242 static inline struct rt6_info *ip6_dst_alloc(struct dst_ops *ops,
243 struct net_device *dev,
246 struct rt6_info *rt = dst_alloc(ops, dev, 0, 0, flags);
249 memset(&rt->rt6i_table, 0,
250 sizeof(*rt) - sizeof(struct dst_entry));
255 static void ip6_dst_destroy(struct dst_entry *dst)
257 struct rt6_info *rt = (struct rt6_info *)dst;
258 struct inet6_dev *idev = rt->rt6i_idev;
259 struct inet_peer *peer = rt->rt6i_peer;
261 if (!(rt->dst.flags & DST_HOST))
262 dst_destroy_metrics_generic(dst);
265 rt->rt6i_idev = NULL;
269 rt->rt6i_peer = NULL;
274 static atomic_t __rt6_peer_genid = ATOMIC_INIT(0);
276 static u32 rt6_peer_genid(void)
278 return atomic_read(&__rt6_peer_genid);
281 void rt6_bind_peer(struct rt6_info *rt, int create)
283 struct inet_peer *peer;
285 peer = inet_getpeer_v6(&rt->rt6i_dst.addr, create);
286 if (peer && cmpxchg(&rt->rt6i_peer, NULL, peer) != NULL)
289 rt->rt6i_peer_genid = rt6_peer_genid();
292 static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev,
295 struct rt6_info *rt = (struct rt6_info *)dst;
296 struct inet6_dev *idev = rt->rt6i_idev;
297 struct net_device *loopback_dev =
298 dev_net(dev)->loopback_dev;
300 if (dev != loopback_dev && idev != NULL && idev->dev == dev) {
301 struct inet6_dev *loopback_idev =
302 in6_dev_get(loopback_dev);
303 if (loopback_idev != NULL) {
304 rt->rt6i_idev = loopback_idev;
310 static __inline__ int rt6_check_expired(const struct rt6_info *rt)
312 return (rt->rt6i_flags & RTF_EXPIRES) &&
313 time_after(jiffies, rt->rt6i_expires);
316 static inline int rt6_need_strict(const struct in6_addr *daddr)
318 return ipv6_addr_type(daddr) &
319 (IPV6_ADDR_MULTICAST | IPV6_ADDR_LINKLOCAL | IPV6_ADDR_LOOPBACK);
323 * Route lookup. Any table->tb6_lock is implied.
326 static inline struct rt6_info *rt6_device_match(struct net *net,
328 const struct in6_addr *saddr,
332 struct rt6_info *local = NULL;
333 struct rt6_info *sprt;
335 if (!oif && ipv6_addr_any(saddr))
338 for (sprt = rt; sprt; sprt = sprt->dst.rt6_next) {
339 struct net_device *dev = sprt->rt6i_dev;
342 if (dev->ifindex == oif)
344 if (dev->flags & IFF_LOOPBACK) {
345 if (sprt->rt6i_idev == NULL ||
346 sprt->rt6i_idev->dev->ifindex != oif) {
347 if (flags & RT6_LOOKUP_F_IFACE && oif)
349 if (local && (!oif ||
350 local->rt6i_idev->dev->ifindex == oif))
356 if (ipv6_chk_addr(net, saddr, dev,
357 flags & RT6_LOOKUP_F_IFACE))
366 if (flags & RT6_LOOKUP_F_IFACE)
367 return net->ipv6.ip6_null_entry;
373 #ifdef CONFIG_IPV6_ROUTER_PREF
374 static void rt6_probe(struct rt6_info *rt)
376 struct neighbour *neigh;
378 * Okay, this does not seem to be appropriate
379 * for now, however, we need to check if it
380 * is really so; aka Router Reachability Probing.
382 * Router Reachability Probe MUST be rate-limited
383 * to no more than one per minute.
386 neigh = rt ? dst_get_neighbour(&rt->dst) : NULL;
387 if (!neigh || (neigh->nud_state & NUD_VALID))
389 read_lock_bh(&neigh->lock);
390 if (!(neigh->nud_state & NUD_VALID) &&
391 time_after(jiffies, neigh->updated + rt->rt6i_idev->cnf.rtr_probe_interval)) {
392 struct in6_addr mcaddr;
393 struct in6_addr *target;
395 neigh->updated = jiffies;
396 read_unlock_bh(&neigh->lock);
398 target = (struct in6_addr *)&neigh->primary_key;
399 addrconf_addr_solict_mult(target, &mcaddr);
400 ndisc_send_ns(rt->rt6i_dev, NULL, target, &mcaddr, NULL);
402 read_unlock_bh(&neigh->lock);
408 static inline void rt6_probe(struct rt6_info *rt)
414 * Default Router Selection (RFC 2461 6.3.6)
416 static inline int rt6_check_dev(struct rt6_info *rt, int oif)
418 struct net_device *dev = rt->rt6i_dev;
419 if (!oif || dev->ifindex == oif)
421 if ((dev->flags & IFF_LOOPBACK) &&
422 rt->rt6i_idev && rt->rt6i_idev->dev->ifindex == oif)
427 static inline int rt6_check_neigh(struct rt6_info *rt)
429 struct neighbour *neigh;
433 neigh = dst_get_neighbour(&rt->dst);
434 if (rt->rt6i_flags & RTF_NONEXTHOP ||
435 !(rt->rt6i_flags & RTF_GATEWAY))
438 read_lock_bh(&neigh->lock);
439 if (neigh->nud_state & NUD_VALID)
441 #ifdef CONFIG_IPV6_ROUTER_PREF
442 else if (neigh->nud_state & NUD_FAILED)
447 read_unlock_bh(&neigh->lock);
454 static int rt6_score_route(struct rt6_info *rt, int oif,
459 m = rt6_check_dev(rt, oif);
460 if (!m && (strict & RT6_LOOKUP_F_IFACE))
462 #ifdef CONFIG_IPV6_ROUTER_PREF
463 m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(rt->rt6i_flags)) << 2;
465 n = rt6_check_neigh(rt);
466 if (!n && (strict & RT6_LOOKUP_F_REACHABLE))
471 static struct rt6_info *find_match(struct rt6_info *rt, int oif, int strict,
472 int *mpri, struct rt6_info *match)
476 if (rt6_check_expired(rt))
479 m = rt6_score_route(rt, oif, strict);
484 if (strict & RT6_LOOKUP_F_REACHABLE)
488 } else if (strict & RT6_LOOKUP_F_REACHABLE) {
496 static struct rt6_info *find_rr_leaf(struct fib6_node *fn,
497 struct rt6_info *rr_head,
498 u32 metric, int oif, int strict)
500 struct rt6_info *rt, *match;
504 for (rt = rr_head; rt && rt->rt6i_metric == metric;
505 rt = rt->dst.rt6_next)
506 match = find_match(rt, oif, strict, &mpri, match);
507 for (rt = fn->leaf; rt && rt != rr_head && rt->rt6i_metric == metric;
508 rt = rt->dst.rt6_next)
509 match = find_match(rt, oif, strict, &mpri, match);
514 static struct rt6_info *rt6_select(struct fib6_node *fn, int oif, int strict)
516 struct rt6_info *match, *rt0;
519 RT6_TRACE("%s(fn->leaf=%p, oif=%d)\n",
520 __func__, fn->leaf, oif);
524 fn->rr_ptr = rt0 = fn->leaf;
526 match = find_rr_leaf(fn, rt0, rt0->rt6i_metric, oif, strict);
529 (strict & RT6_LOOKUP_F_REACHABLE)) {
530 struct rt6_info *next = rt0->dst.rt6_next;
532 /* no entries matched; do round-robin */
533 if (!next || next->rt6i_metric != rt0->rt6i_metric)
540 RT6_TRACE("%s() => %p\n",
543 net = dev_net(rt0->rt6i_dev);
544 return match ? match : net->ipv6.ip6_null_entry;
547 #ifdef CONFIG_IPV6_ROUTE_INFO
548 int rt6_route_rcv(struct net_device *dev, u8 *opt, int len,
549 const struct in6_addr *gwaddr)
551 struct net *net = dev_net(dev);
552 struct route_info *rinfo = (struct route_info *) opt;
553 struct in6_addr prefix_buf, *prefix;
555 unsigned long lifetime;
558 if (len < sizeof(struct route_info)) {
562 /* Sanity check for prefix_len and length */
563 if (rinfo->length > 3) {
565 } else if (rinfo->prefix_len > 128) {
567 } else if (rinfo->prefix_len > 64) {
568 if (rinfo->length < 2) {
571 } else if (rinfo->prefix_len > 0) {
572 if (rinfo->length < 1) {
577 pref = rinfo->route_pref;
578 if (pref == ICMPV6_ROUTER_PREF_INVALID)
581 lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ);
583 if (rinfo->length == 3)
584 prefix = (struct in6_addr *)rinfo->prefix;
586 /* this function is safe */
587 ipv6_addr_prefix(&prefix_buf,
588 (struct in6_addr *)rinfo->prefix,
590 prefix = &prefix_buf;
593 rt = rt6_get_route_info(net, prefix, rinfo->prefix_len, gwaddr,
596 if (rt && !lifetime) {
602 rt = rt6_add_route_info(net, prefix, rinfo->prefix_len, gwaddr, dev->ifindex,
605 rt->rt6i_flags = RTF_ROUTEINFO |
606 (rt->rt6i_flags & ~RTF_PREF_MASK) | RTF_PREF(pref);
609 if (!addrconf_finite_timeout(lifetime)) {
610 rt->rt6i_flags &= ~RTF_EXPIRES;
612 rt->rt6i_expires = jiffies + HZ * lifetime;
613 rt->rt6i_flags |= RTF_EXPIRES;
615 dst_release(&rt->dst);
621 #define BACKTRACK(__net, saddr) \
623 if (rt == __net->ipv6.ip6_null_entry) { \
624 struct fib6_node *pn; \
626 if (fn->fn_flags & RTN_TL_ROOT) \
629 if (FIB6_SUBTREE(pn) && FIB6_SUBTREE(pn) != fn) \
630 fn = fib6_lookup(FIB6_SUBTREE(pn), NULL, saddr); \
633 if (fn->fn_flags & RTN_RTINFO) \
639 static struct rt6_info *ip6_pol_route_lookup(struct net *net,
640 struct fib6_table *table,
641 struct flowi6 *fl6, int flags)
643 struct fib6_node *fn;
646 read_lock_bh(&table->tb6_lock);
647 fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
650 rt = rt6_device_match(net, rt, &fl6->saddr, fl6->flowi6_oif, flags);
651 BACKTRACK(net, &fl6->saddr);
653 dst_use(&rt->dst, jiffies);
654 read_unlock_bh(&table->tb6_lock);
659 struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr,
660 const struct in6_addr *saddr, int oif, int strict)
662 struct flowi6 fl6 = {
666 struct dst_entry *dst;
667 int flags = strict ? RT6_LOOKUP_F_IFACE : 0;
670 memcpy(&fl6.saddr, saddr, sizeof(*saddr));
671 flags |= RT6_LOOKUP_F_HAS_SADDR;
674 dst = fib6_rule_lookup(net, &fl6, flags, ip6_pol_route_lookup);
676 return (struct rt6_info *) dst;
683 EXPORT_SYMBOL(rt6_lookup);
685 /* ip6_ins_rt is called with FREE table->tb6_lock.
686 It takes new route entry, the addition fails by any reason the
687 route is freed. In any case, if caller does not hold it, it may
691 static int __ip6_ins_rt(struct rt6_info *rt, struct nl_info *info)
694 struct fib6_table *table;
696 table = rt->rt6i_table;
697 write_lock_bh(&table->tb6_lock);
698 err = fib6_add(&table->tb6_root, rt, info);
699 write_unlock_bh(&table->tb6_lock);
704 int ip6_ins_rt(struct rt6_info *rt)
706 struct nl_info info = {
707 .nl_net = dev_net(rt->rt6i_dev),
709 return __ip6_ins_rt(rt, &info);
712 static struct rt6_info *rt6_alloc_cow(const struct rt6_info *ort,
713 const struct in6_addr *daddr,
714 const struct in6_addr *saddr)
722 rt = ip6_rt_copy(ort, daddr);
725 struct neighbour *neigh;
726 int attempts = !in_softirq();
728 if (!(rt->rt6i_flags&RTF_GATEWAY)) {
729 if (rt->rt6i_dst.plen != 128 &&
730 ipv6_addr_equal(&ort->rt6i_dst.addr, daddr))
731 rt->rt6i_flags |= RTF_ANYCAST;
732 ipv6_addr_copy(&rt->rt6i_gateway, daddr);
735 rt->rt6i_flags |= RTF_CACHE;
737 #ifdef CONFIG_IPV6_SUBTREES
738 if (rt->rt6i_src.plen && saddr) {
739 ipv6_addr_copy(&rt->rt6i_src.addr, saddr);
740 rt->rt6i_src.plen = 128;
745 neigh = ndisc_get_neigh(rt->rt6i_dev, &rt->rt6i_gateway);
747 struct net *net = dev_net(rt->rt6i_dev);
748 int saved_rt_min_interval =
749 net->ipv6.sysctl.ip6_rt_gc_min_interval;
750 int saved_rt_elasticity =
751 net->ipv6.sysctl.ip6_rt_gc_elasticity;
753 if (attempts-- > 0) {
754 net->ipv6.sysctl.ip6_rt_gc_elasticity = 1;
755 net->ipv6.sysctl.ip6_rt_gc_min_interval = 0;
757 ip6_dst_gc(&net->ipv6.ip6_dst_ops);
759 net->ipv6.sysctl.ip6_rt_gc_elasticity =
761 net->ipv6.sysctl.ip6_rt_gc_min_interval =
762 saved_rt_min_interval;
768 "ipv6: Neighbour table overflow.\n");
772 dst_set_neighbour(&rt->dst, neigh);
779 static struct rt6_info *rt6_alloc_clone(struct rt6_info *ort,
780 const struct in6_addr *daddr)
782 struct rt6_info *rt = ip6_rt_copy(ort, daddr);
785 rt->rt6i_flags |= RTF_CACHE;
786 dst_set_neighbour(&rt->dst, neigh_clone(dst_get_neighbour_raw(&ort->dst)));
791 static struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, int oif,
792 struct flowi6 *fl6, int flags)
794 struct fib6_node *fn;
795 struct rt6_info *rt, *nrt;
799 int reachable = net->ipv6.devconf_all->forwarding ? 0 : RT6_LOOKUP_F_REACHABLE;
801 strict |= flags & RT6_LOOKUP_F_IFACE;
804 read_lock_bh(&table->tb6_lock);
807 fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
810 rt = rt6_select(fn, oif, strict | reachable);
812 BACKTRACK(net, &fl6->saddr);
813 if (rt == net->ipv6.ip6_null_entry ||
814 rt->rt6i_flags & RTF_CACHE)
818 read_unlock_bh(&table->tb6_lock);
820 if (!dst_get_neighbour_raw(&rt->dst) && !(rt->rt6i_flags & RTF_NONEXTHOP))
821 nrt = rt6_alloc_cow(rt, &fl6->daddr, &fl6->saddr);
822 else if (!(rt->dst.flags & DST_HOST))
823 nrt = rt6_alloc_clone(rt, &fl6->daddr);
827 dst_release(&rt->dst);
828 rt = nrt ? : net->ipv6.ip6_null_entry;
832 err = ip6_ins_rt(nrt);
841 * Race condition! In the gap, when table->tb6_lock was
842 * released someone could insert this route. Relookup.
844 dst_release(&rt->dst);
853 read_unlock_bh(&table->tb6_lock);
855 rt->dst.lastuse = jiffies;
861 static struct rt6_info *ip6_pol_route_input(struct net *net, struct fib6_table *table,
862 struct flowi6 *fl6, int flags)
864 return ip6_pol_route(net, table, fl6->flowi6_iif, fl6, flags);
867 void ip6_route_input(struct sk_buff *skb)
869 const struct ipv6hdr *iph = ipv6_hdr(skb);
870 struct net *net = dev_net(skb->dev);
871 int flags = RT6_LOOKUP_F_HAS_SADDR;
872 struct flowi6 fl6 = {
873 .flowi6_iif = skb->dev->ifindex,
876 .flowlabel = (* (__be32 *) iph)&IPV6_FLOWINFO_MASK,
877 .flowi6_mark = skb->mark,
878 .flowi6_proto = iph->nexthdr,
881 if (rt6_need_strict(&iph->daddr) && skb->dev->type != ARPHRD_PIMREG)
882 flags |= RT6_LOOKUP_F_IFACE;
884 skb_dst_set(skb, fib6_rule_lookup(net, &fl6, flags, ip6_pol_route_input));
887 static struct rt6_info *ip6_pol_route_output(struct net *net, struct fib6_table *table,
888 struct flowi6 *fl6, int flags)
890 return ip6_pol_route(net, table, fl6->flowi6_oif, fl6, flags);
893 struct dst_entry * ip6_route_output(struct net *net, const struct sock *sk,
898 if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl6->daddr))
899 flags |= RT6_LOOKUP_F_IFACE;
901 if (!ipv6_addr_any(&fl6->saddr))
902 flags |= RT6_LOOKUP_F_HAS_SADDR;
904 flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs);
906 return fib6_rule_lookup(net, fl6, flags, ip6_pol_route_output);
909 EXPORT_SYMBOL(ip6_route_output);
911 struct dst_entry *ip6_blackhole_route(struct net *net, struct dst_entry *dst_orig)
913 struct rt6_info *rt, *ort = (struct rt6_info *) dst_orig;
914 struct dst_entry *new = NULL;
916 rt = dst_alloc(&ip6_dst_blackhole_ops, ort->dst.dev, 1, 0, 0);
918 memset(&rt->rt6i_table, 0, sizeof(*rt) - sizeof(struct dst_entry));
923 new->input = dst_discard;
924 new->output = dst_discard;
926 if (dst_metrics_read_only(&ort->dst))
927 new->_metrics = ort->dst._metrics;
929 dst_copy_metrics(new, &ort->dst);
930 rt->rt6i_idev = ort->rt6i_idev;
932 in6_dev_hold(rt->rt6i_idev);
933 rt->rt6i_expires = 0;
935 ipv6_addr_copy(&rt->rt6i_gateway, &ort->rt6i_gateway);
936 rt->rt6i_flags = ort->rt6i_flags & ~RTF_EXPIRES;
939 memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key));
940 #ifdef CONFIG_IPV6_SUBTREES
941 memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key));
947 dst_release(dst_orig);
948 return new ? new : ERR_PTR(-ENOMEM);
952 * Destination cache support functions
955 static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie)
959 rt = (struct rt6_info *) dst;
961 if (rt->rt6i_node && (rt->rt6i_node->fn_sernum == cookie)) {
962 if (rt->rt6i_peer_genid != rt6_peer_genid()) {
964 rt6_bind_peer(rt, 0);
965 rt->rt6i_peer_genid = rt6_peer_genid();
972 static struct dst_entry *ip6_negative_advice(struct dst_entry *dst)
974 struct rt6_info *rt = (struct rt6_info *) dst;
977 if (rt->rt6i_flags & RTF_CACHE) {
978 if (rt6_check_expired(rt)) {
990 static void ip6_link_failure(struct sk_buff *skb)
994 icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0);
996 rt = (struct rt6_info *) skb_dst(skb);
998 if (rt->rt6i_flags&RTF_CACHE) {
999 dst_set_expires(&rt->dst, 0);
1000 rt->rt6i_flags |= RTF_EXPIRES;
1001 } else if (rt->rt6i_node && (rt->rt6i_flags & RTF_DEFAULT))
1002 rt->rt6i_node->fn_sernum = -1;
1006 static void ip6_rt_update_pmtu(struct dst_entry *dst, u32 mtu)
1008 struct rt6_info *rt6 = (struct rt6_info*)dst;
1010 if (mtu < dst_mtu(dst) && rt6->rt6i_dst.plen == 128) {
1011 rt6->rt6i_flags |= RTF_MODIFIED;
1012 if (mtu < IPV6_MIN_MTU) {
1013 u32 features = dst_metric(dst, RTAX_FEATURES);
1015 features |= RTAX_FEATURE_ALLFRAG;
1016 dst_metric_set(dst, RTAX_FEATURES, features);
1018 dst_metric_set(dst, RTAX_MTU, mtu);
1022 static unsigned int ip6_default_advmss(const struct dst_entry *dst)
1024 struct net_device *dev = dst->dev;
1025 unsigned int mtu = dst_mtu(dst);
1026 struct net *net = dev_net(dev);
1028 mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr);
1030 if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss)
1031 mtu = net->ipv6.sysctl.ip6_rt_min_advmss;
1034 * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and
1035 * corresponding MSS is IPV6_MAXPLEN - tcp_header_size.
1036 * IPV6_MAXPLEN is also valid and means: "any MSS,
1037 * rely only on pmtu discovery"
1039 if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr))
1044 static unsigned int ip6_default_mtu(const struct dst_entry *dst)
1046 unsigned int mtu = IPV6_MIN_MTU;
1047 struct inet6_dev *idev;
1050 idev = __in6_dev_get(dst->dev);
1052 mtu = idev->cnf.mtu6;
1058 static struct dst_entry *icmp6_dst_gc_list;
1059 static DEFINE_SPINLOCK(icmp6_dst_lock);
1061 struct dst_entry *icmp6_dst_alloc(struct net_device *dev,
1062 struct neighbour *neigh,
1063 const struct in6_addr *addr)
1065 struct rt6_info *rt;
1066 struct inet6_dev *idev = in6_dev_get(dev);
1067 struct net *net = dev_net(dev);
1069 if (unlikely(idev == NULL))
1072 rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops, dev, 0);
1073 if (unlikely(rt == NULL)) {
1081 neigh = ndisc_get_neigh(dev, addr);
1086 rt->dst.flags |= DST_HOST;
1087 rt->dst.output = ip6_output;
1088 dst_set_neighbour(&rt->dst, neigh);
1089 atomic_set(&rt->dst.__refcnt, 1);
1090 dst_metric_set(&rt->dst, RTAX_HOPLIMIT, 255);
1092 ipv6_addr_copy(&rt->rt6i_dst.addr, addr);
1093 rt->rt6i_dst.plen = 128;
1094 rt->rt6i_idev = idev;
1096 spin_lock_bh(&icmp6_dst_lock);
1097 rt->dst.next = icmp6_dst_gc_list;
1098 icmp6_dst_gc_list = &rt->dst;
1099 spin_unlock_bh(&icmp6_dst_lock);
1101 fib6_force_start_gc(net);
1107 int icmp6_dst_gc(void)
1109 struct dst_entry *dst, **pprev;
1112 spin_lock_bh(&icmp6_dst_lock);
1113 pprev = &icmp6_dst_gc_list;
1115 while ((dst = *pprev) != NULL) {
1116 if (!atomic_read(&dst->__refcnt)) {
1125 spin_unlock_bh(&icmp6_dst_lock);
1130 static void icmp6_clean_all(int (*func)(struct rt6_info *rt, void *arg),
1133 struct dst_entry *dst, **pprev;
1135 spin_lock_bh(&icmp6_dst_lock);
1136 pprev = &icmp6_dst_gc_list;
1137 while ((dst = *pprev) != NULL) {
1138 struct rt6_info *rt = (struct rt6_info *) dst;
1139 if (func(rt, arg)) {
1146 spin_unlock_bh(&icmp6_dst_lock);
1149 static int ip6_dst_gc(struct dst_ops *ops)
1151 unsigned long now = jiffies;
1152 struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops);
1153 int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval;
1154 int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size;
1155 int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity;
1156 int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout;
1157 unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc;
1160 entries = dst_entries_get_fast(ops);
1161 if (time_after(rt_last_gc + rt_min_interval, now) &&
1162 entries <= rt_max_size)
1165 net->ipv6.ip6_rt_gc_expire++;
1166 fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net);
1167 net->ipv6.ip6_rt_last_gc = now;
1168 entries = dst_entries_get_slow(ops);
1169 if (entries < ops->gc_thresh)
1170 net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1;
1172 net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity;
1173 return entries > rt_max_size;
1176 /* Clean host part of a prefix. Not necessary in radix tree,
1177 but results in cleaner routing tables.
1179 Remove it only when all the things will work!
1182 int ip6_dst_hoplimit(struct dst_entry *dst)
1184 int hoplimit = dst_metric_raw(dst, RTAX_HOPLIMIT);
1185 if (hoplimit == 0) {
1186 struct net_device *dev = dst->dev;
1187 struct inet6_dev *idev;
1190 idev = __in6_dev_get(dev);
1192 hoplimit = idev->cnf.hop_limit;
1194 hoplimit = dev_net(dev)->ipv6.devconf_all->hop_limit;
1199 EXPORT_SYMBOL(ip6_dst_hoplimit);
1205 int ip6_route_add(struct fib6_config *cfg)
1208 struct net *net = cfg->fc_nlinfo.nl_net;
1209 struct rt6_info *rt = NULL;
1210 struct net_device *dev = NULL;
1211 struct inet6_dev *idev = NULL;
1212 struct fib6_table *table;
1215 if (cfg->fc_dst_len > 128 || cfg->fc_src_len > 128)
1217 #ifndef CONFIG_IPV6_SUBTREES
1218 if (cfg->fc_src_len)
1221 if (cfg->fc_ifindex) {
1223 dev = dev_get_by_index(net, cfg->fc_ifindex);
1226 idev = in6_dev_get(dev);
1231 if (cfg->fc_metric == 0)
1232 cfg->fc_metric = IP6_RT_PRIO_USER;
1234 table = fib6_new_table(net, cfg->fc_table);
1235 if (table == NULL) {
1240 rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops, NULL, DST_NOCOUNT);
1247 rt->dst.obsolete = -1;
1248 rt->rt6i_expires = (cfg->fc_flags & RTF_EXPIRES) ?
1249 jiffies + clock_t_to_jiffies(cfg->fc_expires) :
1252 if (cfg->fc_protocol == RTPROT_UNSPEC)
1253 cfg->fc_protocol = RTPROT_BOOT;
1254 rt->rt6i_protocol = cfg->fc_protocol;
1256 addr_type = ipv6_addr_type(&cfg->fc_dst);
1258 if (addr_type & IPV6_ADDR_MULTICAST)
1259 rt->dst.input = ip6_mc_input;
1260 else if (cfg->fc_flags & RTF_LOCAL)
1261 rt->dst.input = ip6_input;
1263 rt->dst.input = ip6_forward;
1265 rt->dst.output = ip6_output;
1267 ipv6_addr_prefix(&rt->rt6i_dst.addr, &cfg->fc_dst, cfg->fc_dst_len);
1268 rt->rt6i_dst.plen = cfg->fc_dst_len;
1269 if (rt->rt6i_dst.plen == 128)
1270 rt->dst.flags |= DST_HOST;
1272 if (!(rt->dst.flags & DST_HOST) && cfg->fc_mx) {
1273 u32 *metrics = kzalloc(sizeof(u32) * RTAX_MAX, GFP_KERNEL);
1278 dst_init_metrics(&rt->dst, metrics, 0);
1280 #ifdef CONFIG_IPV6_SUBTREES
1281 ipv6_addr_prefix(&rt->rt6i_src.addr, &cfg->fc_src, cfg->fc_src_len);
1282 rt->rt6i_src.plen = cfg->fc_src_len;
1285 rt->rt6i_metric = cfg->fc_metric;
1287 /* We cannot add true routes via loopback here,
1288 they would result in kernel looping; promote them to reject routes
1290 if ((cfg->fc_flags & RTF_REJECT) ||
1291 (dev && (dev->flags&IFF_LOOPBACK) && !(addr_type&IPV6_ADDR_LOOPBACK)
1292 && !(cfg->fc_flags&RTF_LOCAL))) {
1293 /* hold loopback dev/idev if we haven't done so. */
1294 if (dev != net->loopback_dev) {
1299 dev = net->loopback_dev;
1301 idev = in6_dev_get(dev);
1307 rt->dst.output = ip6_pkt_discard_out;
1308 rt->dst.input = ip6_pkt_discard;
1309 rt->dst.error = -ENETUNREACH;
1310 rt->rt6i_flags = RTF_REJECT|RTF_NONEXTHOP;
1314 if (cfg->fc_flags & RTF_GATEWAY) {
1315 const struct in6_addr *gw_addr;
1318 gw_addr = &cfg->fc_gateway;
1319 ipv6_addr_copy(&rt->rt6i_gateway, gw_addr);
1320 gwa_type = ipv6_addr_type(gw_addr);
1322 if (gwa_type != (IPV6_ADDR_LINKLOCAL|IPV6_ADDR_UNICAST)) {
1323 struct rt6_info *grt;
1325 /* IPv6 strictly inhibits using not link-local
1326 addresses as nexthop address.
1327 Otherwise, router will not able to send redirects.
1328 It is very good, but in some (rare!) circumstances
1329 (SIT, PtP, NBMA NOARP links) it is handy to allow
1330 some exceptions. --ANK
1333 if (!(gwa_type&IPV6_ADDR_UNICAST))
1336 grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, 1);
1338 err = -EHOSTUNREACH;
1342 if (dev != grt->rt6i_dev) {
1343 dst_release(&grt->dst);
1347 dev = grt->rt6i_dev;
1348 idev = grt->rt6i_idev;
1350 in6_dev_hold(grt->rt6i_idev);
1352 if (!(grt->rt6i_flags&RTF_GATEWAY))
1354 dst_release(&grt->dst);
1360 if (dev == NULL || (dev->flags&IFF_LOOPBACK))
1368 if (!ipv6_addr_any(&cfg->fc_prefsrc)) {
1369 if (!ipv6_chk_addr(net, &cfg->fc_prefsrc, dev, 0)) {
1373 ipv6_addr_copy(&rt->rt6i_prefsrc.addr, &cfg->fc_prefsrc);
1374 rt->rt6i_prefsrc.plen = 128;
1376 rt->rt6i_prefsrc.plen = 0;
1378 if (cfg->fc_flags & (RTF_GATEWAY | RTF_NONEXTHOP)) {
1379 struct neighbour *n = __neigh_lookup_errno(&nd_tbl, &rt->rt6i_gateway, dev);
1384 dst_set_neighbour(&rt->dst, n);
1387 rt->rt6i_flags = cfg->fc_flags;
1394 nla_for_each_attr(nla, cfg->fc_mx, cfg->fc_mx_len, remaining) {
1395 int type = nla_type(nla);
1398 if (type > RTAX_MAX) {
1403 dst_metric_set(&rt->dst, type, nla_get_u32(nla));
1409 rt->rt6i_idev = idev;
1410 rt->rt6i_table = table;
1412 cfg->fc_nlinfo.nl_net = dev_net(dev);
1414 return __ip6_ins_rt(rt, &cfg->fc_nlinfo);
1426 static int __ip6_del_rt(struct rt6_info *rt, struct nl_info *info)
1429 struct fib6_table *table;
1430 struct net *net = dev_net(rt->rt6i_dev);
1432 if (rt == net->ipv6.ip6_null_entry)
1435 table = rt->rt6i_table;
1436 write_lock_bh(&table->tb6_lock);
1438 err = fib6_del(rt, info);
1439 dst_release(&rt->dst);
1441 write_unlock_bh(&table->tb6_lock);
1446 int ip6_del_rt(struct rt6_info *rt)
1448 struct nl_info info = {
1449 .nl_net = dev_net(rt->rt6i_dev),
1451 return __ip6_del_rt(rt, &info);
1454 static int ip6_route_del(struct fib6_config *cfg)
1456 struct fib6_table *table;
1457 struct fib6_node *fn;
1458 struct rt6_info *rt;
1461 table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table);
1465 read_lock_bh(&table->tb6_lock);
1467 fn = fib6_locate(&table->tb6_root,
1468 &cfg->fc_dst, cfg->fc_dst_len,
1469 &cfg->fc_src, cfg->fc_src_len);
1472 for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1473 if (cfg->fc_ifindex &&
1474 (rt->rt6i_dev == NULL ||
1475 rt->rt6i_dev->ifindex != cfg->fc_ifindex))
1477 if (cfg->fc_flags & RTF_GATEWAY &&
1478 !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway))
1480 if (cfg->fc_metric && cfg->fc_metric != rt->rt6i_metric)
1483 read_unlock_bh(&table->tb6_lock);
1485 return __ip6_del_rt(rt, &cfg->fc_nlinfo);
1488 read_unlock_bh(&table->tb6_lock);
1496 struct ip6rd_flowi {
1498 struct in6_addr gateway;
1501 static struct rt6_info *__ip6_route_redirect(struct net *net,
1502 struct fib6_table *table,
1506 struct ip6rd_flowi *rdfl = (struct ip6rd_flowi *)fl6;
1507 struct rt6_info *rt;
1508 struct fib6_node *fn;
1511 * Get the "current" route for this destination and
1512 * check if the redirect has come from approriate router.
1514 * RFC 2461 specifies that redirects should only be
1515 * accepted if they come from the nexthop to the target.
1516 * Due to the way the routes are chosen, this notion
1517 * is a bit fuzzy and one might need to check all possible
1521 read_lock_bh(&table->tb6_lock);
1522 fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
1524 for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1526 * Current route is on-link; redirect is always invalid.
1528 * Seems, previous statement is not true. It could
1529 * be node, which looks for us as on-link (f.e. proxy ndisc)
1530 * But then router serving it might decide, that we should
1531 * know truth 8)8) --ANK (980726).
1533 if (rt6_check_expired(rt))
1535 if (!(rt->rt6i_flags & RTF_GATEWAY))
1537 if (fl6->flowi6_oif != rt->rt6i_dev->ifindex)
1539 if (!ipv6_addr_equal(&rdfl->gateway, &rt->rt6i_gateway))
1545 rt = net->ipv6.ip6_null_entry;
1546 BACKTRACK(net, &fl6->saddr);
1550 read_unlock_bh(&table->tb6_lock);
1555 static struct rt6_info *ip6_route_redirect(const struct in6_addr *dest,
1556 const struct in6_addr *src,
1557 const struct in6_addr *gateway,
1558 struct net_device *dev)
1560 int flags = RT6_LOOKUP_F_HAS_SADDR;
1561 struct net *net = dev_net(dev);
1562 struct ip6rd_flowi rdfl = {
1564 .flowi6_oif = dev->ifindex,
1570 ipv6_addr_copy(&rdfl.gateway, gateway);
1572 if (rt6_need_strict(dest))
1573 flags |= RT6_LOOKUP_F_IFACE;
1575 return (struct rt6_info *)fib6_rule_lookup(net, &rdfl.fl6,
1576 flags, __ip6_route_redirect);
1579 void rt6_redirect(const struct in6_addr *dest, const struct in6_addr *src,
1580 const struct in6_addr *saddr,
1581 struct neighbour *neigh, u8 *lladdr, int on_link)
1583 struct rt6_info *rt, *nrt = NULL;
1584 struct netevent_redirect netevent;
1585 struct net *net = dev_net(neigh->dev);
1587 rt = ip6_route_redirect(dest, src, saddr, neigh->dev);
1589 if (rt == net->ipv6.ip6_null_entry) {
1590 if (net_ratelimit())
1591 printk(KERN_DEBUG "rt6_redirect: source isn't a valid nexthop "
1592 "for redirect target\n");
1597 * We have finally decided to accept it.
1600 neigh_update(neigh, lladdr, NUD_STALE,
1601 NEIGH_UPDATE_F_WEAK_OVERRIDE|
1602 NEIGH_UPDATE_F_OVERRIDE|
1603 (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
1604 NEIGH_UPDATE_F_ISROUTER))
1608 * Redirect received -> path was valid.
1609 * Look, redirects are sent only in response to data packets,
1610 * so that this nexthop apparently is reachable. --ANK
1612 dst_confirm(&rt->dst);
1614 /* Duplicate redirect: silently ignore. */
1615 if (neigh == dst_get_neighbour_raw(&rt->dst))
1618 nrt = ip6_rt_copy(rt, dest);
1622 nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE;
1624 nrt->rt6i_flags &= ~RTF_GATEWAY;
1626 ipv6_addr_copy(&nrt->rt6i_gateway, (struct in6_addr*)neigh->primary_key);
1627 dst_set_neighbour(&nrt->dst, neigh_clone(neigh));
1629 if (ip6_ins_rt(nrt))
1632 netevent.old = &rt->dst;
1633 netevent.new = &nrt->dst;
1634 call_netevent_notifiers(NETEVENT_REDIRECT, &netevent);
1636 if (rt->rt6i_flags&RTF_CACHE) {
1642 dst_release(&rt->dst);
1646 * Handle ICMP "packet too big" messages
1647 * i.e. Path MTU discovery
1650 static void rt6_do_pmtu_disc(const struct in6_addr *daddr, const struct in6_addr *saddr,
1651 struct net *net, u32 pmtu, int ifindex)
1653 struct rt6_info *rt, *nrt;
1656 rt = rt6_lookup(net, daddr, saddr, ifindex, 0);
1660 if (rt6_check_expired(rt)) {
1665 if (pmtu >= dst_mtu(&rt->dst))
1668 if (pmtu < IPV6_MIN_MTU) {
1670 * According to RFC2460, PMTU is set to the IPv6 Minimum Link
1671 * MTU (1280) and a fragment header should always be included
1672 * after a node receiving Too Big message reporting PMTU is
1673 * less than the IPv6 Minimum Link MTU.
1675 pmtu = IPV6_MIN_MTU;
1679 /* New mtu received -> path was valid.
1680 They are sent only in response to data packets,
1681 so that this nexthop apparently is reachable. --ANK
1683 dst_confirm(&rt->dst);
1685 /* Host route. If it is static, it would be better
1686 not to override it, but add new one, so that
1687 when cache entry will expire old pmtu
1688 would return automatically.
1690 if (rt->rt6i_flags & RTF_CACHE) {
1691 dst_metric_set(&rt->dst, RTAX_MTU, pmtu);
1693 u32 features = dst_metric(&rt->dst, RTAX_FEATURES);
1694 features |= RTAX_FEATURE_ALLFRAG;
1695 dst_metric_set(&rt->dst, RTAX_FEATURES, features);
1697 dst_set_expires(&rt->dst, net->ipv6.sysctl.ip6_rt_mtu_expires);
1698 rt->rt6i_flags |= RTF_MODIFIED|RTF_EXPIRES;
1703 Two cases are possible:
1704 1. It is connected route. Action: COW
1705 2. It is gatewayed route or NONEXTHOP route. Action: clone it.
1707 if (!dst_get_neighbour_raw(&rt->dst) && !(rt->rt6i_flags & RTF_NONEXTHOP))
1708 nrt = rt6_alloc_cow(rt, daddr, saddr);
1710 nrt = rt6_alloc_clone(rt, daddr);
1713 dst_metric_set(&nrt->dst, RTAX_MTU, pmtu);
1715 u32 features = dst_metric(&nrt->dst, RTAX_FEATURES);
1716 features |= RTAX_FEATURE_ALLFRAG;
1717 dst_metric_set(&nrt->dst, RTAX_FEATURES, features);
1720 /* According to RFC 1981, detecting PMTU increase shouldn't be
1721 * happened within 5 mins, the recommended timer is 10 mins.
1722 * Here this route expiration time is set to ip6_rt_mtu_expires
1723 * which is 10 mins. After 10 mins the decreased pmtu is expired
1724 * and detecting PMTU increase will be automatically happened.
1726 dst_set_expires(&nrt->dst, net->ipv6.sysctl.ip6_rt_mtu_expires);
1727 nrt->rt6i_flags |= RTF_DYNAMIC|RTF_EXPIRES;
1732 dst_release(&rt->dst);
1735 void rt6_pmtu_discovery(const struct in6_addr *daddr, const struct in6_addr *saddr,
1736 struct net_device *dev, u32 pmtu)
1738 struct net *net = dev_net(dev);
1741 * RFC 1981 states that a node "MUST reduce the size of the packets it
1742 * is sending along the path" that caused the Packet Too Big message.
1743 * Since it's not possible in the general case to determine which
1744 * interface was used to send the original packet, we update the MTU
1745 * on the interface that will be used to send future packets. We also
1746 * update the MTU on the interface that received the Packet Too Big in
1747 * case the original packet was forced out that interface with
1748 * SO_BINDTODEVICE or similar. This is the next best thing to the
1749 * correct behaviour, which would be to update the MTU on all
1752 rt6_do_pmtu_disc(daddr, saddr, net, pmtu, 0);
1753 rt6_do_pmtu_disc(daddr, saddr, net, pmtu, dev->ifindex);
1757 * Misc support functions
1760 static struct rt6_info *ip6_rt_copy(const struct rt6_info *ort,
1761 const struct in6_addr *dest)
1763 struct net *net = dev_net(ort->rt6i_dev);
1764 struct rt6_info *rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops,
1768 rt->dst.input = ort->dst.input;
1769 rt->dst.output = ort->dst.output;
1770 rt->dst.flags |= DST_HOST;
1772 ipv6_addr_copy(&rt->rt6i_dst.addr, dest);
1773 rt->rt6i_dst.plen = 128;
1774 dst_copy_metrics(&rt->dst, &ort->dst);
1775 rt->dst.error = ort->dst.error;
1776 rt->rt6i_idev = ort->rt6i_idev;
1778 in6_dev_hold(rt->rt6i_idev);
1779 rt->dst.lastuse = jiffies;
1780 rt->rt6i_expires = 0;
1782 ipv6_addr_copy(&rt->rt6i_gateway, &ort->rt6i_gateway);
1783 rt->rt6i_flags = ort->rt6i_flags & ~RTF_EXPIRES;
1784 rt->rt6i_metric = 0;
1786 #ifdef CONFIG_IPV6_SUBTREES
1787 memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key));
1789 memcpy(&rt->rt6i_prefsrc, &ort->rt6i_prefsrc, sizeof(struct rt6key));
1790 rt->rt6i_table = ort->rt6i_table;
1795 #ifdef CONFIG_IPV6_ROUTE_INFO
1796 static struct rt6_info *rt6_get_route_info(struct net *net,
1797 const struct in6_addr *prefix, int prefixlen,
1798 const struct in6_addr *gwaddr, int ifindex)
1800 struct fib6_node *fn;
1801 struct rt6_info *rt = NULL;
1802 struct fib6_table *table;
1804 table = fib6_get_table(net, RT6_TABLE_INFO);
1808 write_lock_bh(&table->tb6_lock);
1809 fn = fib6_locate(&table->tb6_root, prefix ,prefixlen, NULL, 0);
1813 for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1814 if (rt->rt6i_dev->ifindex != ifindex)
1816 if ((rt->rt6i_flags & (RTF_ROUTEINFO|RTF_GATEWAY)) != (RTF_ROUTEINFO|RTF_GATEWAY))
1818 if (!ipv6_addr_equal(&rt->rt6i_gateway, gwaddr))
1824 write_unlock_bh(&table->tb6_lock);
1828 static struct rt6_info *rt6_add_route_info(struct net *net,
1829 const struct in6_addr *prefix, int prefixlen,
1830 const struct in6_addr *gwaddr, int ifindex,
1833 struct fib6_config cfg = {
1834 .fc_table = RT6_TABLE_INFO,
1835 .fc_metric = IP6_RT_PRIO_USER,
1836 .fc_ifindex = ifindex,
1837 .fc_dst_len = prefixlen,
1838 .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO |
1839 RTF_UP | RTF_PREF(pref),
1841 .fc_nlinfo.nlh = NULL,
1842 .fc_nlinfo.nl_net = net,
1845 ipv6_addr_copy(&cfg.fc_dst, prefix);
1846 ipv6_addr_copy(&cfg.fc_gateway, gwaddr);
1848 /* We should treat it as a default route if prefix length is 0. */
1850 cfg.fc_flags |= RTF_DEFAULT;
1852 ip6_route_add(&cfg);
1854 return rt6_get_route_info(net, prefix, prefixlen, gwaddr, ifindex);
1858 struct rt6_info *rt6_get_dflt_router(const struct in6_addr *addr, struct net_device *dev)
1860 struct rt6_info *rt;
1861 struct fib6_table *table;
1863 table = fib6_get_table(dev_net(dev), RT6_TABLE_DFLT);
1867 write_lock_bh(&table->tb6_lock);
1868 for (rt = table->tb6_root.leaf; rt; rt=rt->dst.rt6_next) {
1869 if (dev == rt->rt6i_dev &&
1870 ((rt->rt6i_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) &&
1871 ipv6_addr_equal(&rt->rt6i_gateway, addr))
1876 write_unlock_bh(&table->tb6_lock);
1880 struct rt6_info *rt6_add_dflt_router(const struct in6_addr *gwaddr,
1881 struct net_device *dev,
1884 struct fib6_config cfg = {
1885 .fc_table = RT6_TABLE_DFLT,
1886 .fc_metric = IP6_RT_PRIO_USER,
1887 .fc_ifindex = dev->ifindex,
1888 .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT |
1889 RTF_UP | RTF_EXPIRES | RTF_PREF(pref),
1891 .fc_nlinfo.nlh = NULL,
1892 .fc_nlinfo.nl_net = dev_net(dev),
1895 ipv6_addr_copy(&cfg.fc_gateway, gwaddr);
1897 ip6_route_add(&cfg);
1899 return rt6_get_dflt_router(gwaddr, dev);
1902 void rt6_purge_dflt_routers(struct net *net)
1904 struct rt6_info *rt;
1905 struct fib6_table *table;
1907 /* NOTE: Keep consistent with rt6_get_dflt_router */
1908 table = fib6_get_table(net, RT6_TABLE_DFLT);
1913 read_lock_bh(&table->tb6_lock);
1914 for (rt = table->tb6_root.leaf; rt; rt = rt->dst.rt6_next) {
1915 if (rt->rt6i_flags & (RTF_DEFAULT | RTF_ADDRCONF)) {
1917 read_unlock_bh(&table->tb6_lock);
1922 read_unlock_bh(&table->tb6_lock);
1925 static void rtmsg_to_fib6_config(struct net *net,
1926 struct in6_rtmsg *rtmsg,
1927 struct fib6_config *cfg)
1929 memset(cfg, 0, sizeof(*cfg));
1931 cfg->fc_table = RT6_TABLE_MAIN;
1932 cfg->fc_ifindex = rtmsg->rtmsg_ifindex;
1933 cfg->fc_metric = rtmsg->rtmsg_metric;
1934 cfg->fc_expires = rtmsg->rtmsg_info;
1935 cfg->fc_dst_len = rtmsg->rtmsg_dst_len;
1936 cfg->fc_src_len = rtmsg->rtmsg_src_len;
1937 cfg->fc_flags = rtmsg->rtmsg_flags;
1939 cfg->fc_nlinfo.nl_net = net;
1941 ipv6_addr_copy(&cfg->fc_dst, &rtmsg->rtmsg_dst);
1942 ipv6_addr_copy(&cfg->fc_src, &rtmsg->rtmsg_src);
1943 ipv6_addr_copy(&cfg->fc_gateway, &rtmsg->rtmsg_gateway);
1946 int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg)
1948 struct fib6_config cfg;
1949 struct in6_rtmsg rtmsg;
1953 case SIOCADDRT: /* Add a route */
1954 case SIOCDELRT: /* Delete a route */
1955 if (!capable(CAP_NET_ADMIN))
1957 err = copy_from_user(&rtmsg, arg,
1958 sizeof(struct in6_rtmsg));
1962 rtmsg_to_fib6_config(net, &rtmsg, &cfg);
1967 err = ip6_route_add(&cfg);
1970 err = ip6_route_del(&cfg);
1984 * Drop the packet on the floor
1987 static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes)
1990 struct dst_entry *dst = skb_dst(skb);
1991 switch (ipstats_mib_noroutes) {
1992 case IPSTATS_MIB_INNOROUTES:
1993 type = ipv6_addr_type(&ipv6_hdr(skb)->daddr);
1994 if (type == IPV6_ADDR_ANY) {
1995 IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst),
1996 IPSTATS_MIB_INADDRERRORS);
2000 case IPSTATS_MIB_OUTNOROUTES:
2001 IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst),
2002 ipstats_mib_noroutes);
2005 icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0);
2010 static int ip6_pkt_discard(struct sk_buff *skb)
2012 return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES);
2015 static int ip6_pkt_discard_out(struct sk_buff *skb)
2017 skb->dev = skb_dst(skb)->dev;
2018 return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES);
2021 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2023 static int ip6_pkt_prohibit(struct sk_buff *skb)
2025 return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES);
2028 static int ip6_pkt_prohibit_out(struct sk_buff *skb)
2030 skb->dev = skb_dst(skb)->dev;
2031 return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES);
2037 * Allocate a dst for local (unicast / anycast) address.
2040 struct rt6_info *addrconf_dst_alloc(struct inet6_dev *idev,
2041 const struct in6_addr *addr,
2044 struct net *net = dev_net(idev->dev);
2045 struct rt6_info *rt = ip6_dst_alloc(&net->ipv6.ip6_dst_ops,
2046 net->loopback_dev, 0);
2047 struct neighbour *neigh;
2050 if (net_ratelimit())
2051 pr_warning("IPv6: Maximum number of routes reached,"
2052 " consider increasing route/max_size.\n");
2053 return ERR_PTR(-ENOMEM);
2058 rt->dst.flags |= DST_HOST;
2059 rt->dst.input = ip6_input;
2060 rt->dst.output = ip6_output;
2061 rt->rt6i_idev = idev;
2062 rt->dst.obsolete = -1;
2064 rt->rt6i_flags = RTF_UP | RTF_NONEXTHOP;
2066 rt->rt6i_flags |= RTF_ANYCAST;
2068 rt->rt6i_flags |= RTF_LOCAL;
2069 neigh = ndisc_get_neigh(rt->rt6i_dev, &rt->rt6i_gateway);
2070 if (IS_ERR(neigh)) {
2073 return ERR_CAST(neigh);
2075 dst_set_neighbour(&rt->dst, neigh);
2077 ipv6_addr_copy(&rt->rt6i_dst.addr, addr);
2078 rt->rt6i_dst.plen = 128;
2079 rt->rt6i_table = fib6_get_table(net, RT6_TABLE_LOCAL);
2081 atomic_set(&rt->dst.__refcnt, 1);
2086 int ip6_route_get_saddr(struct net *net,
2087 struct rt6_info *rt,
2088 const struct in6_addr *daddr,
2090 struct in6_addr *saddr)
2092 struct inet6_dev *idev = ip6_dst_idev((struct dst_entry*)rt);
2094 if (rt->rt6i_prefsrc.plen)
2095 ipv6_addr_copy(saddr, &rt->rt6i_prefsrc.addr);
2097 err = ipv6_dev_get_saddr(net, idev ? idev->dev : NULL,
2098 daddr, prefs, saddr);
2102 /* remove deleted ip from prefsrc entries */
2103 struct arg_dev_net_ip {
2104 struct net_device *dev;
2106 struct in6_addr *addr;
2109 static int fib6_remove_prefsrc(struct rt6_info *rt, void *arg)
2111 struct net_device *dev = ((struct arg_dev_net_ip *)arg)->dev;
2112 struct net *net = ((struct arg_dev_net_ip *)arg)->net;
2113 struct in6_addr *addr = ((struct arg_dev_net_ip *)arg)->addr;
2115 if (((void *)rt->rt6i_dev == dev || dev == NULL) &&
2116 rt != net->ipv6.ip6_null_entry &&
2117 ipv6_addr_equal(addr, &rt->rt6i_prefsrc.addr)) {
2118 /* remove prefsrc entry */
2119 rt->rt6i_prefsrc.plen = 0;
2124 void rt6_remove_prefsrc(struct inet6_ifaddr *ifp)
2126 struct net *net = dev_net(ifp->idev->dev);
2127 struct arg_dev_net_ip adni = {
2128 .dev = ifp->idev->dev,
2132 fib6_clean_all(net, fib6_remove_prefsrc, 0, &adni);
2135 struct arg_dev_net {
2136 struct net_device *dev;
2140 static int fib6_ifdown(struct rt6_info *rt, void *arg)
2142 const struct arg_dev_net *adn = arg;
2143 const struct net_device *dev = adn->dev;
2145 if ((rt->rt6i_dev == dev || dev == NULL) &&
2146 rt != adn->net->ipv6.ip6_null_entry) {
2147 RT6_TRACE("deleted by ifdown %p\n", rt);
2153 void rt6_ifdown(struct net *net, struct net_device *dev)
2155 struct arg_dev_net adn = {
2160 fib6_clean_all(net, fib6_ifdown, 0, &adn);
2161 icmp6_clean_all(fib6_ifdown, &adn);
2164 struct rt6_mtu_change_arg
2166 struct net_device *dev;
2170 static int rt6_mtu_change_route(struct rt6_info *rt, void *p_arg)
2172 struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg;
2173 struct inet6_dev *idev;
2175 /* In IPv6 pmtu discovery is not optional,
2176 so that RTAX_MTU lock cannot disable it.
2177 We still use this lock to block changes
2178 caused by addrconf/ndisc.
2181 idev = __in6_dev_get(arg->dev);
2185 /* For administrative MTU increase, there is no way to discover
2186 IPv6 PMTU increase, so PMTU increase should be updated here.
2187 Since RFC 1981 doesn't include administrative MTU increase
2188 update PMTU increase is a MUST. (i.e. jumbo frame)
2191 If new MTU is less than route PMTU, this new MTU will be the
2192 lowest MTU in the path, update the route PMTU to reflect PMTU
2193 decreases; if new MTU is greater than route PMTU, and the
2194 old MTU is the lowest MTU in the path, update the route PMTU
2195 to reflect the increase. In this case if the other nodes' MTU
2196 also have the lowest MTU, TOO BIG MESSAGE will be lead to
2199 if (rt->rt6i_dev == arg->dev &&
2200 !dst_metric_locked(&rt->dst, RTAX_MTU) &&
2201 (dst_mtu(&rt->dst) >= arg->mtu ||
2202 (dst_mtu(&rt->dst) < arg->mtu &&
2203 dst_mtu(&rt->dst) == idev->cnf.mtu6))) {
2204 dst_metric_set(&rt->dst, RTAX_MTU, arg->mtu);
2209 void rt6_mtu_change(struct net_device *dev, unsigned mtu)
2211 struct rt6_mtu_change_arg arg = {
2216 fib6_clean_all(dev_net(dev), rt6_mtu_change_route, 0, &arg);
2219 static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = {
2220 [RTA_GATEWAY] = { .len = sizeof(struct in6_addr) },
2221 [RTA_OIF] = { .type = NLA_U32 },
2222 [RTA_IIF] = { .type = NLA_U32 },
2223 [RTA_PRIORITY] = { .type = NLA_U32 },
2224 [RTA_METRICS] = { .type = NLA_NESTED },
2227 static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh,
2228 struct fib6_config *cfg)
2231 struct nlattr *tb[RTA_MAX+1];
2234 err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy);
2239 rtm = nlmsg_data(nlh);
2240 memset(cfg, 0, sizeof(*cfg));
2242 cfg->fc_table = rtm->rtm_table;
2243 cfg->fc_dst_len = rtm->rtm_dst_len;
2244 cfg->fc_src_len = rtm->rtm_src_len;
2245 cfg->fc_flags = RTF_UP;
2246 cfg->fc_protocol = rtm->rtm_protocol;
2248 if (rtm->rtm_type == RTN_UNREACHABLE)
2249 cfg->fc_flags |= RTF_REJECT;
2251 if (rtm->rtm_type == RTN_LOCAL)
2252 cfg->fc_flags |= RTF_LOCAL;
2254 cfg->fc_nlinfo.pid = NETLINK_CB(skb).pid;
2255 cfg->fc_nlinfo.nlh = nlh;
2256 cfg->fc_nlinfo.nl_net = sock_net(skb->sk);
2258 if (tb[RTA_GATEWAY]) {
2259 nla_memcpy(&cfg->fc_gateway, tb[RTA_GATEWAY], 16);
2260 cfg->fc_flags |= RTF_GATEWAY;
2264 int plen = (rtm->rtm_dst_len + 7) >> 3;
2266 if (nla_len(tb[RTA_DST]) < plen)
2269 nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen);
2273 int plen = (rtm->rtm_src_len + 7) >> 3;
2275 if (nla_len(tb[RTA_SRC]) < plen)
2278 nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen);
2281 if (tb[RTA_PREFSRC])
2282 nla_memcpy(&cfg->fc_prefsrc, tb[RTA_PREFSRC], 16);
2285 cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]);
2287 if (tb[RTA_PRIORITY])
2288 cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]);
2290 if (tb[RTA_METRICS]) {
2291 cfg->fc_mx = nla_data(tb[RTA_METRICS]);
2292 cfg->fc_mx_len = nla_len(tb[RTA_METRICS]);
2296 cfg->fc_table = nla_get_u32(tb[RTA_TABLE]);
2303 static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr* nlh, void *arg)
2305 struct fib6_config cfg;
2308 err = rtm_to_fib6_config(skb, nlh, &cfg);
2312 return ip6_route_del(&cfg);
2315 static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr* nlh, void *arg)
2317 struct fib6_config cfg;
2320 err = rtm_to_fib6_config(skb, nlh, &cfg);
2324 return ip6_route_add(&cfg);
2327 static inline size_t rt6_nlmsg_size(void)
2329 return NLMSG_ALIGN(sizeof(struct rtmsg))
2330 + nla_total_size(16) /* RTA_SRC */
2331 + nla_total_size(16) /* RTA_DST */
2332 + nla_total_size(16) /* RTA_GATEWAY */
2333 + nla_total_size(16) /* RTA_PREFSRC */
2334 + nla_total_size(4) /* RTA_TABLE */
2335 + nla_total_size(4) /* RTA_IIF */
2336 + nla_total_size(4) /* RTA_OIF */
2337 + nla_total_size(4) /* RTA_PRIORITY */
2338 + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */
2339 + nla_total_size(sizeof(struct rta_cacheinfo));
2342 static int rt6_fill_node(struct net *net,
2343 struct sk_buff *skb, struct rt6_info *rt,
2344 struct in6_addr *dst, struct in6_addr *src,
2345 int iif, int type, u32 pid, u32 seq,
2346 int prefix, int nowait, unsigned int flags)
2349 struct nlmsghdr *nlh;
2352 struct neighbour *n;
2354 if (prefix) { /* user wants prefix routes only */
2355 if (!(rt->rt6i_flags & RTF_PREFIX_RT)) {
2356 /* success since this is not a prefix route */
2361 nlh = nlmsg_put(skb, pid, seq, type, sizeof(*rtm), flags);
2365 rtm = nlmsg_data(nlh);
2366 rtm->rtm_family = AF_INET6;
2367 rtm->rtm_dst_len = rt->rt6i_dst.plen;
2368 rtm->rtm_src_len = rt->rt6i_src.plen;
2371 table = rt->rt6i_table->tb6_id;
2373 table = RT6_TABLE_UNSPEC;
2374 rtm->rtm_table = table;
2375 NLA_PUT_U32(skb, RTA_TABLE, table);
2376 if (rt->rt6i_flags&RTF_REJECT)
2377 rtm->rtm_type = RTN_UNREACHABLE;
2378 else if (rt->rt6i_flags&RTF_LOCAL)
2379 rtm->rtm_type = RTN_LOCAL;
2380 else if (rt->rt6i_dev && (rt->rt6i_dev->flags&IFF_LOOPBACK))
2381 rtm->rtm_type = RTN_LOCAL;
2383 rtm->rtm_type = RTN_UNICAST;
2385 rtm->rtm_scope = RT_SCOPE_UNIVERSE;
2386 rtm->rtm_protocol = rt->rt6i_protocol;
2387 if (rt->rt6i_flags&RTF_DYNAMIC)
2388 rtm->rtm_protocol = RTPROT_REDIRECT;
2389 else if (rt->rt6i_flags & RTF_ADDRCONF)
2390 rtm->rtm_protocol = RTPROT_KERNEL;
2391 else if (rt->rt6i_flags&RTF_DEFAULT)
2392 rtm->rtm_protocol = RTPROT_RA;
2394 if (rt->rt6i_flags&RTF_CACHE)
2395 rtm->rtm_flags |= RTM_F_CLONED;
2398 NLA_PUT(skb, RTA_DST, 16, dst);
2399 rtm->rtm_dst_len = 128;
2400 } else if (rtm->rtm_dst_len)
2401 NLA_PUT(skb, RTA_DST, 16, &rt->rt6i_dst.addr);
2402 #ifdef CONFIG_IPV6_SUBTREES
2404 NLA_PUT(skb, RTA_SRC, 16, src);
2405 rtm->rtm_src_len = 128;
2406 } else if (rtm->rtm_src_len)
2407 NLA_PUT(skb, RTA_SRC, 16, &rt->rt6i_src.addr);
2410 #ifdef CONFIG_IPV6_MROUTE
2411 if (ipv6_addr_is_multicast(&rt->rt6i_dst.addr)) {
2412 int err = ip6mr_get_route(net, skb, rtm, nowait);
2417 goto nla_put_failure;
2419 if (err == -EMSGSIZE)
2420 goto nla_put_failure;
2425 NLA_PUT_U32(skb, RTA_IIF, iif);
2427 struct in6_addr saddr_buf;
2428 if (ip6_route_get_saddr(net, rt, dst, 0, &saddr_buf) == 0)
2429 NLA_PUT(skb, RTA_PREFSRC, 16, &saddr_buf);
2432 if (rt->rt6i_prefsrc.plen) {
2433 struct in6_addr saddr_buf;
2434 ipv6_addr_copy(&saddr_buf, &rt->rt6i_prefsrc.addr);
2435 NLA_PUT(skb, RTA_PREFSRC, 16, &saddr_buf);
2438 if (rtnetlink_put_metrics(skb, dst_metrics_ptr(&rt->dst)) < 0)
2439 goto nla_put_failure;
2442 n = dst_get_neighbour(&rt->dst);
2444 NLA_PUT(skb, RTA_GATEWAY, 16, &n->primary_key);
2448 NLA_PUT_U32(skb, RTA_OIF, rt->rt6i_dev->ifindex);
2450 NLA_PUT_U32(skb, RTA_PRIORITY, rt->rt6i_metric);
2452 if (!(rt->rt6i_flags & RTF_EXPIRES))
2454 else if (rt->rt6i_expires - jiffies < INT_MAX)
2455 expires = rt->rt6i_expires - jiffies;
2459 if (rtnl_put_cacheinfo(skb, &rt->dst, 0, 0, 0,
2460 expires, rt->dst.error) < 0)
2461 goto nla_put_failure;
2463 return nlmsg_end(skb, nlh);
2466 nlmsg_cancel(skb, nlh);
2470 int rt6_dump_route(struct rt6_info *rt, void *p_arg)
2472 struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg;
2475 if (nlmsg_len(arg->cb->nlh) >= sizeof(struct rtmsg)) {
2476 struct rtmsg *rtm = nlmsg_data(arg->cb->nlh);
2477 prefix = (rtm->rtm_flags & RTM_F_PREFIX) != 0;
2481 return rt6_fill_node(arg->net,
2482 arg->skb, rt, NULL, NULL, 0, RTM_NEWROUTE,
2483 NETLINK_CB(arg->cb->skb).pid, arg->cb->nlh->nlmsg_seq,
2484 prefix, 0, NLM_F_MULTI);
2487 static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr* nlh, void *arg)
2489 struct net *net = sock_net(in_skb->sk);
2490 struct nlattr *tb[RTA_MAX+1];
2491 struct rt6_info *rt;
2492 struct sk_buff *skb;
2497 err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy);
2502 memset(&fl6, 0, sizeof(fl6));
2505 if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr))
2508 ipv6_addr_copy(&fl6.saddr, nla_data(tb[RTA_SRC]));
2512 if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr))
2515 ipv6_addr_copy(&fl6.daddr, nla_data(tb[RTA_DST]));
2519 iif = nla_get_u32(tb[RTA_IIF]);
2522 fl6.flowi6_oif = nla_get_u32(tb[RTA_OIF]);
2525 struct net_device *dev;
2526 dev = __dev_get_by_index(net, iif);
2533 skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL);
2539 /* Reserve room for dummy headers, this skb can pass
2540 through good chunk of routing engine.
2542 skb_reset_mac_header(skb);
2543 skb_reserve(skb, MAX_HEADER + sizeof(struct ipv6hdr));
2545 rt = (struct rt6_info*) ip6_route_output(net, NULL, &fl6);
2546 skb_dst_set(skb, &rt->dst);
2548 err = rt6_fill_node(net, skb, rt, &fl6.daddr, &fl6.saddr, iif,
2549 RTM_NEWROUTE, NETLINK_CB(in_skb).pid,
2550 nlh->nlmsg_seq, 0, 0, 0);
2556 err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).pid);
2561 void inet6_rt_notify(int event, struct rt6_info *rt, struct nl_info *info)
2563 struct sk_buff *skb;
2564 struct net *net = info->nl_net;
2569 seq = info->nlh != NULL ? info->nlh->nlmsg_seq : 0;
2571 skb = nlmsg_new(rt6_nlmsg_size(), gfp_any());
2575 err = rt6_fill_node(net, skb, rt, NULL, NULL, 0,
2576 event, info->pid, seq, 0, 0, 0);
2578 /* -EMSGSIZE implies BUG in rt6_nlmsg_size() */
2579 WARN_ON(err == -EMSGSIZE);
2583 rtnl_notify(skb, net, info->pid, RTNLGRP_IPV6_ROUTE,
2584 info->nlh, gfp_any());
2588 rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err);
2591 static int ip6_route_dev_notify(struct notifier_block *this,
2592 unsigned long event, void *data)
2594 struct net_device *dev = (struct net_device *)data;
2595 struct net *net = dev_net(dev);
2597 if (event == NETDEV_REGISTER && (dev->flags & IFF_LOOPBACK)) {
2598 net->ipv6.ip6_null_entry->dst.dev = dev;
2599 net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev);
2600 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2601 net->ipv6.ip6_prohibit_entry->dst.dev = dev;
2602 net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev);
2603 net->ipv6.ip6_blk_hole_entry->dst.dev = dev;
2604 net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev);
2615 #ifdef CONFIG_PROC_FS
2626 static int rt6_info_route(struct rt6_info *rt, void *p_arg)
2628 struct seq_file *m = p_arg;
2629 struct neighbour *n;
2631 seq_printf(m, "%pi6 %02x ", &rt->rt6i_dst.addr, rt->rt6i_dst.plen);
2633 #ifdef CONFIG_IPV6_SUBTREES
2634 seq_printf(m, "%pi6 %02x ", &rt->rt6i_src.addr, rt->rt6i_src.plen);
2636 seq_puts(m, "00000000000000000000000000000000 00 ");
2639 n = dst_get_neighbour(&rt->dst);
2641 seq_printf(m, "%pi6", n->primary_key);
2643 seq_puts(m, "00000000000000000000000000000000");
2646 seq_printf(m, " %08x %08x %08x %08x %8s\n",
2647 rt->rt6i_metric, atomic_read(&rt->dst.__refcnt),
2648 rt->dst.__use, rt->rt6i_flags,
2649 rt->rt6i_dev ? rt->rt6i_dev->name : "");
2653 static int ipv6_route_show(struct seq_file *m, void *v)
2655 struct net *net = (struct net *)m->private;
2656 fib6_clean_all(net, rt6_info_route, 0, m);
2660 static int ipv6_route_open(struct inode *inode, struct file *file)
2662 return single_open_net(inode, file, ipv6_route_show);
2665 static const struct file_operations ipv6_route_proc_fops = {
2666 .owner = THIS_MODULE,
2667 .open = ipv6_route_open,
2669 .llseek = seq_lseek,
2670 .release = single_release_net,
2673 static int rt6_stats_seq_show(struct seq_file *seq, void *v)
2675 struct net *net = (struct net *)seq->private;
2676 seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n",
2677 net->ipv6.rt6_stats->fib_nodes,
2678 net->ipv6.rt6_stats->fib_route_nodes,
2679 net->ipv6.rt6_stats->fib_rt_alloc,
2680 net->ipv6.rt6_stats->fib_rt_entries,
2681 net->ipv6.rt6_stats->fib_rt_cache,
2682 dst_entries_get_slow(&net->ipv6.ip6_dst_ops),
2683 net->ipv6.rt6_stats->fib_discarded_routes);
2688 static int rt6_stats_seq_open(struct inode *inode, struct file *file)
2690 return single_open_net(inode, file, rt6_stats_seq_show);
2693 static const struct file_operations rt6_stats_seq_fops = {
2694 .owner = THIS_MODULE,
2695 .open = rt6_stats_seq_open,
2697 .llseek = seq_lseek,
2698 .release = single_release_net,
2700 #endif /* CONFIG_PROC_FS */
2702 #ifdef CONFIG_SYSCTL
2705 int ipv6_sysctl_rtcache_flush(ctl_table *ctl, int write,
2706 void __user *buffer, size_t *lenp, loff_t *ppos)
2713 net = (struct net *)ctl->extra1;
2714 delay = net->ipv6.sysctl.flush_delay;
2715 proc_dointvec(ctl, write, buffer, lenp, ppos);
2716 fib6_run_gc(delay <= 0 ? ~0UL : (unsigned long)delay, net);
2720 ctl_table ipv6_route_table_template[] = {
2722 .procname = "flush",
2723 .data = &init_net.ipv6.sysctl.flush_delay,
2724 .maxlen = sizeof(int),
2726 .proc_handler = ipv6_sysctl_rtcache_flush
2729 .procname = "gc_thresh",
2730 .data = &ip6_dst_ops_template.gc_thresh,
2731 .maxlen = sizeof(int),
2733 .proc_handler = proc_dointvec,
2736 .procname = "max_size",
2737 .data = &init_net.ipv6.sysctl.ip6_rt_max_size,
2738 .maxlen = sizeof(int),
2740 .proc_handler = proc_dointvec,
2743 .procname = "gc_min_interval",
2744 .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval,
2745 .maxlen = sizeof(int),
2747 .proc_handler = proc_dointvec_jiffies,
2750 .procname = "gc_timeout",
2751 .data = &init_net.ipv6.sysctl.ip6_rt_gc_timeout,
2752 .maxlen = sizeof(int),
2754 .proc_handler = proc_dointvec_jiffies,
2757 .procname = "gc_interval",
2758 .data = &init_net.ipv6.sysctl.ip6_rt_gc_interval,
2759 .maxlen = sizeof(int),
2761 .proc_handler = proc_dointvec_jiffies,
2764 .procname = "gc_elasticity",
2765 .data = &init_net.ipv6.sysctl.ip6_rt_gc_elasticity,
2766 .maxlen = sizeof(int),
2768 .proc_handler = proc_dointvec,
2771 .procname = "mtu_expires",
2772 .data = &init_net.ipv6.sysctl.ip6_rt_mtu_expires,
2773 .maxlen = sizeof(int),
2775 .proc_handler = proc_dointvec_jiffies,
2778 .procname = "min_adv_mss",
2779 .data = &init_net.ipv6.sysctl.ip6_rt_min_advmss,
2780 .maxlen = sizeof(int),
2782 .proc_handler = proc_dointvec,
2785 .procname = "gc_min_interval_ms",
2786 .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval,
2787 .maxlen = sizeof(int),
2789 .proc_handler = proc_dointvec_ms_jiffies,
2794 struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net)
2796 struct ctl_table *table;
2798 table = kmemdup(ipv6_route_table_template,
2799 sizeof(ipv6_route_table_template),
2803 table[0].data = &net->ipv6.sysctl.flush_delay;
2804 table[0].extra1 = net;
2805 table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh;
2806 table[2].data = &net->ipv6.sysctl.ip6_rt_max_size;
2807 table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval;
2808 table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout;
2809 table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval;
2810 table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity;
2811 table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires;
2812 table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss;
2813 table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval;
2820 static int __net_init ip6_route_net_init(struct net *net)
2824 memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template,
2825 sizeof(net->ipv6.ip6_dst_ops));
2827 if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0)
2828 goto out_ip6_dst_ops;
2830 net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template,
2831 sizeof(*net->ipv6.ip6_null_entry),
2833 if (!net->ipv6.ip6_null_entry)
2834 goto out_ip6_dst_entries;
2835 net->ipv6.ip6_null_entry->dst.path =
2836 (struct dst_entry *)net->ipv6.ip6_null_entry;
2837 net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops;
2838 dst_init_metrics(&net->ipv6.ip6_null_entry->dst,
2839 ip6_template_metrics, true);
2841 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2842 net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template,
2843 sizeof(*net->ipv6.ip6_prohibit_entry),
2845 if (!net->ipv6.ip6_prohibit_entry)
2846 goto out_ip6_null_entry;
2847 net->ipv6.ip6_prohibit_entry->dst.path =
2848 (struct dst_entry *)net->ipv6.ip6_prohibit_entry;
2849 net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops;
2850 dst_init_metrics(&net->ipv6.ip6_prohibit_entry->dst,
2851 ip6_template_metrics, true);
2853 net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template,
2854 sizeof(*net->ipv6.ip6_blk_hole_entry),
2856 if (!net->ipv6.ip6_blk_hole_entry)
2857 goto out_ip6_prohibit_entry;
2858 net->ipv6.ip6_blk_hole_entry->dst.path =
2859 (struct dst_entry *)net->ipv6.ip6_blk_hole_entry;
2860 net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops;
2861 dst_init_metrics(&net->ipv6.ip6_blk_hole_entry->dst,
2862 ip6_template_metrics, true);
2865 net->ipv6.sysctl.flush_delay = 0;
2866 net->ipv6.sysctl.ip6_rt_max_size = 4096;
2867 net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2;
2868 net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ;
2869 net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ;
2870 net->ipv6.sysctl.ip6_rt_gc_elasticity = 9;
2871 net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ;
2872 net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40;
2874 #ifdef CONFIG_PROC_FS
2875 proc_net_fops_create(net, "ipv6_route", 0, &ipv6_route_proc_fops);
2876 proc_net_fops_create(net, "rt6_stats", S_IRUGO, &rt6_stats_seq_fops);
2878 net->ipv6.ip6_rt_gc_expire = 30*HZ;
2884 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2885 out_ip6_prohibit_entry:
2886 kfree(net->ipv6.ip6_prohibit_entry);
2888 kfree(net->ipv6.ip6_null_entry);
2890 out_ip6_dst_entries:
2891 dst_entries_destroy(&net->ipv6.ip6_dst_ops);
2896 static void __net_exit ip6_route_net_exit(struct net *net)
2898 #ifdef CONFIG_PROC_FS
2899 proc_net_remove(net, "ipv6_route");
2900 proc_net_remove(net, "rt6_stats");
2902 kfree(net->ipv6.ip6_null_entry);
2903 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2904 kfree(net->ipv6.ip6_prohibit_entry);
2905 kfree(net->ipv6.ip6_blk_hole_entry);
2907 dst_entries_destroy(&net->ipv6.ip6_dst_ops);
2910 static struct pernet_operations ip6_route_net_ops = {
2911 .init = ip6_route_net_init,
2912 .exit = ip6_route_net_exit,
2915 static struct notifier_block ip6_route_dev_notifier = {
2916 .notifier_call = ip6_route_dev_notify,
2920 int __init ip6_route_init(void)
2925 ip6_dst_ops_template.kmem_cachep =
2926 kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0,
2927 SLAB_HWCACHE_ALIGN, NULL);
2928 if (!ip6_dst_ops_template.kmem_cachep)
2931 ret = dst_entries_init(&ip6_dst_blackhole_ops);
2933 goto out_kmem_cache;
2935 ret = register_pernet_subsys(&ip6_route_net_ops);
2937 goto out_dst_entries;
2939 ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep;
2941 /* Registering of the loopback is done before this portion of code,
2942 * the loopback reference in rt6_info will not be taken, do it
2943 * manually for init_net */
2944 init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev;
2945 init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
2946 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2947 init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev;
2948 init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
2949 init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev;
2950 init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
2954 goto out_register_subsys;
2960 ret = fib6_rules_init();
2965 if (__rtnl_register(PF_INET6, RTM_NEWROUTE, inet6_rtm_newroute, NULL, NULL) ||
2966 __rtnl_register(PF_INET6, RTM_DELROUTE, inet6_rtm_delroute, NULL, NULL) ||
2967 __rtnl_register(PF_INET6, RTM_GETROUTE, inet6_rtm_getroute, NULL, NULL))
2968 goto fib6_rules_init;
2970 ret = register_netdevice_notifier(&ip6_route_dev_notifier);
2972 goto fib6_rules_init;
2978 fib6_rules_cleanup();
2983 out_register_subsys:
2984 unregister_pernet_subsys(&ip6_route_net_ops);
2986 dst_entries_destroy(&ip6_dst_blackhole_ops);
2988 kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep);
2992 void ip6_route_cleanup(void)
2994 unregister_netdevice_notifier(&ip6_route_dev_notifier);
2995 fib6_rules_cleanup();
2998 unregister_pernet_subsys(&ip6_route_net_ops);
2999 dst_entries_destroy(&ip6_dst_blackhole_ops);
3000 kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep);