2 * Linux INET6 implementation
6 * Pedro Roque <roque@di.fc.ul.pt>
8 * This program is free software; you can redistribute it and/or
9 * modify it under the terms of the GNU General Public License
10 * as published by the Free Software Foundation; either version
11 * 2 of the License, or (at your option) any later version.
16 * YOSHIFUJI Hideaki @USAGI
17 * reworked default router selection.
18 * - respect outgoing interface
19 * - select from (probably) reachable routers (i.e.
20 * routers in REACHABLE, STALE, DELAY or PROBE states).
21 * - always select the same router if it is (probably)
22 * reachable. otherwise, round-robin the list.
24 * Fixed routing subtrees.
27 #define pr_fmt(fmt) "IPv6: " fmt
29 #include <linux/capability.h>
30 #include <linux/errno.h>
31 #include <linux/export.h>
32 #include <linux/types.h>
33 #include <linux/times.h>
34 #include <linux/socket.h>
35 #include <linux/sockios.h>
36 #include <linux/net.h>
37 #include <linux/route.h>
38 #include <linux/netdevice.h>
39 #include <linux/in6.h>
40 #include <linux/mroute6.h>
41 #include <linux/init.h>
42 #include <linux/if_arp.h>
43 #include <linux/proc_fs.h>
44 #include <linux/seq_file.h>
45 #include <linux/nsproxy.h>
46 #include <linux/slab.h>
47 #include <net/net_namespace.h>
50 #include <net/ip6_fib.h>
51 #include <net/ip6_route.h>
52 #include <net/ndisc.h>
53 #include <net/addrconf.h>
55 #include <linux/rtnetlink.h>
58 #include <net/netevent.h>
59 #include <net/netlink.h>
60 #include <net/nexthop.h>
62 #include <asm/uaccess.h>
65 #include <linux/sysctl.h>
69 RT6_NUD_FAIL_HARD = -3,
70 RT6_NUD_FAIL_PROBE = -2,
71 RT6_NUD_FAIL_DO_RR = -1,
75 static struct rt6_info *ip6_rt_copy(struct rt6_info *ort,
76 const struct in6_addr *dest);
77 static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie);
78 static unsigned int ip6_default_advmss(const struct dst_entry *dst);
79 static unsigned int ip6_mtu(const struct dst_entry *dst);
80 static struct dst_entry *ip6_negative_advice(struct dst_entry *);
81 static void ip6_dst_destroy(struct dst_entry *);
82 static void ip6_dst_ifdown(struct dst_entry *,
83 struct net_device *dev, int how);
84 static int ip6_dst_gc(struct dst_ops *ops);
86 static int ip6_pkt_discard(struct sk_buff *skb);
87 static int ip6_pkt_discard_out(struct sock *sk, struct sk_buff *skb);
88 static int ip6_pkt_prohibit(struct sk_buff *skb);
89 static int ip6_pkt_prohibit_out(struct sock *sk, struct sk_buff *skb);
90 static void ip6_link_failure(struct sk_buff *skb);
91 static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk,
92 struct sk_buff *skb, u32 mtu);
93 static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk,
95 static void rt6_dst_from_metrics_check(struct rt6_info *rt);
96 static int rt6_score_route(struct rt6_info *rt, int oif, int strict);
98 #ifdef CONFIG_IPV6_ROUTE_INFO
99 static struct rt6_info *rt6_add_route_info(struct net *net,
100 const struct in6_addr *prefix, int prefixlen,
101 const struct in6_addr *gwaddr, int ifindex,
103 static struct rt6_info *rt6_get_route_info(struct net *net,
104 const struct in6_addr *prefix, int prefixlen,
105 const struct in6_addr *gwaddr, int ifindex);
108 static u32 *ipv6_cow_metrics(struct dst_entry *dst, unsigned long old)
110 struct rt6_info *rt = (struct rt6_info *)dst;
112 if (rt->rt6i_flags & RTF_CACHE)
115 return dst_cow_metrics_generic(dst, old);
118 static inline const void *choose_neigh_daddr(struct rt6_info *rt,
122 struct in6_addr *p = &rt->rt6i_gateway;
124 if (!ipv6_addr_any(p))
125 return (const void *) p;
127 return &ipv6_hdr(skb)->daddr;
131 static struct neighbour *ip6_neigh_lookup(const struct dst_entry *dst,
135 struct rt6_info *rt = (struct rt6_info *) dst;
138 daddr = choose_neigh_daddr(rt, skb, daddr);
139 n = __ipv6_neigh_lookup(dst->dev, daddr);
142 return neigh_create(&nd_tbl, daddr, dst->dev);
145 static struct dst_ops ip6_dst_ops_template = {
149 .check = ip6_dst_check,
150 .default_advmss = ip6_default_advmss,
152 .cow_metrics = ipv6_cow_metrics,
153 .destroy = ip6_dst_destroy,
154 .ifdown = ip6_dst_ifdown,
155 .negative_advice = ip6_negative_advice,
156 .link_failure = ip6_link_failure,
157 .update_pmtu = ip6_rt_update_pmtu,
158 .redirect = rt6_do_redirect,
159 .local_out = __ip6_local_out,
160 .neigh_lookup = ip6_neigh_lookup,
163 static unsigned int ip6_blackhole_mtu(const struct dst_entry *dst)
165 unsigned int mtu = dst_metric_raw(dst, RTAX_MTU);
167 return mtu ? : dst->dev->mtu;
170 static void ip6_rt_blackhole_update_pmtu(struct dst_entry *dst, struct sock *sk,
171 struct sk_buff *skb, u32 mtu)
175 static void ip6_rt_blackhole_redirect(struct dst_entry *dst, struct sock *sk,
180 static u32 *ip6_rt_blackhole_cow_metrics(struct dst_entry *dst,
186 static struct dst_ops ip6_dst_blackhole_ops = {
188 .destroy = ip6_dst_destroy,
189 .check = ip6_dst_check,
190 .mtu = ip6_blackhole_mtu,
191 .default_advmss = ip6_default_advmss,
192 .update_pmtu = ip6_rt_blackhole_update_pmtu,
193 .redirect = ip6_rt_blackhole_redirect,
194 .cow_metrics = ip6_rt_blackhole_cow_metrics,
195 .neigh_lookup = ip6_neigh_lookup,
198 static const u32 ip6_template_metrics[RTAX_MAX] = {
199 [RTAX_HOPLIMIT - 1] = 0,
202 static const struct rt6_info ip6_null_entry_template = {
204 .__refcnt = ATOMIC_INIT(1),
206 .obsolete = DST_OBSOLETE_FORCE_CHK,
207 .error = -ENETUNREACH,
208 .input = ip6_pkt_discard,
209 .output = ip6_pkt_discard_out,
211 .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
212 .rt6i_protocol = RTPROT_KERNEL,
213 .rt6i_metric = ~(u32) 0,
214 .rt6i_ref = ATOMIC_INIT(1),
217 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
219 static const struct rt6_info ip6_prohibit_entry_template = {
221 .__refcnt = ATOMIC_INIT(1),
223 .obsolete = DST_OBSOLETE_FORCE_CHK,
225 .input = ip6_pkt_prohibit,
226 .output = ip6_pkt_prohibit_out,
228 .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
229 .rt6i_protocol = RTPROT_KERNEL,
230 .rt6i_metric = ~(u32) 0,
231 .rt6i_ref = ATOMIC_INIT(1),
234 static const struct rt6_info ip6_blk_hole_entry_template = {
236 .__refcnt = ATOMIC_INIT(1),
238 .obsolete = DST_OBSOLETE_FORCE_CHK,
240 .input = dst_discard,
241 .output = dst_discard_sk,
243 .rt6i_flags = (RTF_REJECT | RTF_NONEXTHOP),
244 .rt6i_protocol = RTPROT_KERNEL,
245 .rt6i_metric = ~(u32) 0,
246 .rt6i_ref = ATOMIC_INIT(1),
251 /* allocate dst with ip6_dst_ops */
252 static inline struct rt6_info *ip6_dst_alloc(struct net *net,
253 struct net_device *dev,
255 struct fib6_table *table)
257 struct rt6_info *rt = dst_alloc(&net->ipv6.ip6_dst_ops, dev,
258 0, DST_OBSOLETE_FORCE_CHK, flags);
261 struct dst_entry *dst = &rt->dst;
263 memset(dst + 1, 0, sizeof(*rt) - sizeof(*dst));
264 INIT_LIST_HEAD(&rt->rt6i_siblings);
269 static void ip6_dst_destroy(struct dst_entry *dst)
271 struct rt6_info *rt = (struct rt6_info *)dst;
272 struct inet6_dev *idev = rt->rt6i_idev;
273 struct dst_entry *from = dst->from;
275 dst_destroy_metrics_generic(dst);
278 rt->rt6i_idev = NULL;
286 static void ip6_dst_ifdown(struct dst_entry *dst, struct net_device *dev,
289 struct rt6_info *rt = (struct rt6_info *)dst;
290 struct inet6_dev *idev = rt->rt6i_idev;
291 struct net_device *loopback_dev =
292 dev_net(dev)->loopback_dev;
294 if (dev != loopback_dev) {
295 if (idev && idev->dev == dev) {
296 struct inet6_dev *loopback_idev =
297 in6_dev_get(loopback_dev);
299 rt->rt6i_idev = loopback_idev;
306 static bool rt6_check_expired(const struct rt6_info *rt)
308 if (rt->rt6i_flags & RTF_EXPIRES) {
309 if (time_after(jiffies, rt->dst.expires))
311 } else if (rt->dst.from) {
312 return rt6_check_expired((struct rt6_info *) rt->dst.from);
317 /* Multipath route selection:
318 * Hash based function using packet header and flowlabel.
319 * Adapted from fib_info_hashfn()
321 static int rt6_info_hash_nhsfn(unsigned int candidate_count,
322 const struct flowi6 *fl6)
324 unsigned int val = fl6->flowi6_proto;
326 val ^= ipv6_addr_hash(&fl6->daddr);
327 val ^= ipv6_addr_hash(&fl6->saddr);
329 /* Work only if this not encapsulated */
330 switch (fl6->flowi6_proto) {
334 val ^= (__force u16)fl6->fl6_sport;
335 val ^= (__force u16)fl6->fl6_dport;
339 val ^= (__force u16)fl6->fl6_icmp_type;
340 val ^= (__force u16)fl6->fl6_icmp_code;
343 /* RFC6438 recommands to use flowlabel */
344 val ^= (__force u32)fl6->flowlabel;
346 /* Perhaps, we need to tune, this function? */
347 val = val ^ (val >> 7) ^ (val >> 12);
348 return val % candidate_count;
351 static struct rt6_info *rt6_multipath_select(struct rt6_info *match,
352 struct flowi6 *fl6, int oif,
355 struct rt6_info *sibling, *next_sibling;
358 route_choosen = rt6_info_hash_nhsfn(match->rt6i_nsiblings + 1, fl6);
359 /* Don't change the route, if route_choosen == 0
360 * (siblings does not include ourself)
363 list_for_each_entry_safe(sibling, next_sibling,
364 &match->rt6i_siblings, rt6i_siblings) {
366 if (route_choosen == 0) {
367 if (rt6_score_route(sibling, oif, strict) < 0)
377 * Route lookup. Any table->tb6_lock is implied.
380 static inline struct rt6_info *rt6_device_match(struct net *net,
382 const struct in6_addr *saddr,
386 struct rt6_info *local = NULL;
387 struct rt6_info *sprt;
389 if (!oif && ipv6_addr_any(saddr))
392 for (sprt = rt; sprt; sprt = sprt->dst.rt6_next) {
393 struct net_device *dev = sprt->dst.dev;
396 if (dev->ifindex == oif)
398 if (dev->flags & IFF_LOOPBACK) {
399 if (!sprt->rt6i_idev ||
400 sprt->rt6i_idev->dev->ifindex != oif) {
401 if (flags & RT6_LOOKUP_F_IFACE && oif)
403 if (local && (!oif ||
404 local->rt6i_idev->dev->ifindex == oif))
410 if (ipv6_chk_addr(net, saddr, dev,
411 flags & RT6_LOOKUP_F_IFACE))
420 if (flags & RT6_LOOKUP_F_IFACE)
421 return net->ipv6.ip6_null_entry;
427 #ifdef CONFIG_IPV6_ROUTER_PREF
428 struct __rt6_probe_work {
429 struct work_struct work;
430 struct in6_addr target;
431 struct net_device *dev;
434 static void rt6_probe_deferred(struct work_struct *w)
436 struct in6_addr mcaddr;
437 struct __rt6_probe_work *work =
438 container_of(w, struct __rt6_probe_work, work);
440 addrconf_addr_solict_mult(&work->target, &mcaddr);
441 ndisc_send_ns(work->dev, NULL, &work->target, &mcaddr, NULL);
446 static void rt6_probe(struct rt6_info *rt)
448 struct neighbour *neigh;
450 * Okay, this does not seem to be appropriate
451 * for now, however, we need to check if it
452 * is really so; aka Router Reachability Probing.
454 * Router Reachability Probe MUST be rate-limited
455 * to no more than one per minute.
457 if (!rt || !(rt->rt6i_flags & RTF_GATEWAY))
460 neigh = __ipv6_neigh_lookup_noref(rt->dst.dev, &rt->rt6i_gateway);
462 write_lock(&neigh->lock);
463 if (neigh->nud_state & NUD_VALID)
468 time_after(jiffies, neigh->updated + rt->rt6i_idev->cnf.rtr_probe_interval)) {
469 struct __rt6_probe_work *work;
471 work = kmalloc(sizeof(*work), GFP_ATOMIC);
474 __neigh_set_probe_once(neigh);
477 write_unlock(&neigh->lock);
480 INIT_WORK(&work->work, rt6_probe_deferred);
481 work->target = rt->rt6i_gateway;
482 dev_hold(rt->dst.dev);
483 work->dev = rt->dst.dev;
484 schedule_work(&work->work);
488 write_unlock(&neigh->lock);
490 rcu_read_unlock_bh();
493 static inline void rt6_probe(struct rt6_info *rt)
499 * Default Router Selection (RFC 2461 6.3.6)
501 static inline int rt6_check_dev(struct rt6_info *rt, int oif)
503 struct net_device *dev = rt->dst.dev;
504 if (!oif || dev->ifindex == oif)
506 if ((dev->flags & IFF_LOOPBACK) &&
507 rt->rt6i_idev && rt->rt6i_idev->dev->ifindex == oif)
512 static inline enum rt6_nud_state rt6_check_neigh(struct rt6_info *rt)
514 struct neighbour *neigh;
515 enum rt6_nud_state ret = RT6_NUD_FAIL_HARD;
517 if (rt->rt6i_flags & RTF_NONEXTHOP ||
518 !(rt->rt6i_flags & RTF_GATEWAY))
519 return RT6_NUD_SUCCEED;
522 neigh = __ipv6_neigh_lookup_noref(rt->dst.dev, &rt->rt6i_gateway);
524 read_lock(&neigh->lock);
525 if (neigh->nud_state & NUD_VALID)
526 ret = RT6_NUD_SUCCEED;
527 #ifdef CONFIG_IPV6_ROUTER_PREF
528 else if (!(neigh->nud_state & NUD_FAILED))
529 ret = RT6_NUD_SUCCEED;
531 ret = RT6_NUD_FAIL_PROBE;
533 read_unlock(&neigh->lock);
535 ret = IS_ENABLED(CONFIG_IPV6_ROUTER_PREF) ?
536 RT6_NUD_SUCCEED : RT6_NUD_FAIL_DO_RR;
538 rcu_read_unlock_bh();
543 static int rt6_score_route(struct rt6_info *rt, int oif,
548 m = rt6_check_dev(rt, oif);
549 if (!m && (strict & RT6_LOOKUP_F_IFACE))
550 return RT6_NUD_FAIL_HARD;
551 #ifdef CONFIG_IPV6_ROUTER_PREF
552 m |= IPV6_DECODE_PREF(IPV6_EXTRACT_PREF(rt->rt6i_flags)) << 2;
554 if (strict & RT6_LOOKUP_F_REACHABLE) {
555 int n = rt6_check_neigh(rt);
562 static struct rt6_info *find_match(struct rt6_info *rt, int oif, int strict,
563 int *mpri, struct rt6_info *match,
567 bool match_do_rr = false;
569 if (rt6_check_expired(rt))
572 m = rt6_score_route(rt, oif, strict);
573 if (m == RT6_NUD_FAIL_DO_RR) {
575 m = 0; /* lowest valid score */
576 } else if (m == RT6_NUD_FAIL_HARD) {
580 if (strict & RT6_LOOKUP_F_REACHABLE)
583 /* note that m can be RT6_NUD_FAIL_PROBE at this point */
585 *do_rr = match_do_rr;
593 static struct rt6_info *find_rr_leaf(struct fib6_node *fn,
594 struct rt6_info *rr_head,
595 u32 metric, int oif, int strict,
598 struct rt6_info *rt, *match, *cont;
603 for (rt = rr_head; rt; rt = rt->dst.rt6_next) {
604 if (rt->rt6i_metric != metric) {
609 match = find_match(rt, oif, strict, &mpri, match, do_rr);
612 for (rt = fn->leaf; rt && rt != rr_head; rt = rt->dst.rt6_next) {
613 if (rt->rt6i_metric != metric) {
618 match = find_match(rt, oif, strict, &mpri, match, do_rr);
624 for (rt = cont; rt; rt = rt->dst.rt6_next)
625 match = find_match(rt, oif, strict, &mpri, match, do_rr);
630 static struct rt6_info *rt6_select(struct fib6_node *fn, int oif, int strict)
632 struct rt6_info *match, *rt0;
638 fn->rr_ptr = rt0 = fn->leaf;
640 match = find_rr_leaf(fn, rt0, rt0->rt6i_metric, oif, strict,
644 struct rt6_info *next = rt0->dst.rt6_next;
646 /* no entries matched; do round-robin */
647 if (!next || next->rt6i_metric != rt0->rt6i_metric)
654 net = dev_net(rt0->dst.dev);
655 return match ? match : net->ipv6.ip6_null_entry;
658 #ifdef CONFIG_IPV6_ROUTE_INFO
659 int rt6_route_rcv(struct net_device *dev, u8 *opt, int len,
660 const struct in6_addr *gwaddr)
662 struct net *net = dev_net(dev);
663 struct route_info *rinfo = (struct route_info *) opt;
664 struct in6_addr prefix_buf, *prefix;
666 unsigned long lifetime;
669 if (len < sizeof(struct route_info)) {
673 /* Sanity check for prefix_len and length */
674 if (rinfo->length > 3) {
676 } else if (rinfo->prefix_len > 128) {
678 } else if (rinfo->prefix_len > 64) {
679 if (rinfo->length < 2) {
682 } else if (rinfo->prefix_len > 0) {
683 if (rinfo->length < 1) {
688 pref = rinfo->route_pref;
689 if (pref == ICMPV6_ROUTER_PREF_INVALID)
692 lifetime = addrconf_timeout_fixup(ntohl(rinfo->lifetime), HZ);
694 if (rinfo->length == 3)
695 prefix = (struct in6_addr *)rinfo->prefix;
697 /* this function is safe */
698 ipv6_addr_prefix(&prefix_buf,
699 (struct in6_addr *)rinfo->prefix,
701 prefix = &prefix_buf;
704 if (rinfo->prefix_len == 0)
705 rt = rt6_get_dflt_router(gwaddr, dev);
707 rt = rt6_get_route_info(net, prefix, rinfo->prefix_len,
708 gwaddr, dev->ifindex);
710 if (rt && !lifetime) {
716 rt = rt6_add_route_info(net, prefix, rinfo->prefix_len, gwaddr, dev->ifindex,
719 rt->rt6i_flags = RTF_ROUTEINFO |
720 (rt->rt6i_flags & ~RTF_PREF_MASK) | RTF_PREF(pref);
723 if (!addrconf_finite_timeout(lifetime))
724 rt6_clean_expires(rt);
726 rt6_set_expires(rt, jiffies + HZ * lifetime);
734 static struct fib6_node* fib6_backtrack(struct fib6_node *fn,
735 struct in6_addr *saddr)
737 struct fib6_node *pn;
739 if (fn->fn_flags & RTN_TL_ROOT)
742 if (FIB6_SUBTREE(pn) && FIB6_SUBTREE(pn) != fn)
743 fn = fib6_lookup(FIB6_SUBTREE(pn), NULL, saddr);
746 if (fn->fn_flags & RTN_RTINFO)
751 static struct rt6_info *ip6_pol_route_lookup(struct net *net,
752 struct fib6_table *table,
753 struct flowi6 *fl6, int flags)
755 struct fib6_node *fn;
758 read_lock_bh(&table->tb6_lock);
759 fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
762 rt = rt6_device_match(net, rt, &fl6->saddr, fl6->flowi6_oif, flags);
763 if (rt->rt6i_nsiblings && fl6->flowi6_oif == 0)
764 rt = rt6_multipath_select(rt, fl6, fl6->flowi6_oif, flags);
765 if (rt == net->ipv6.ip6_null_entry) {
766 fn = fib6_backtrack(fn, &fl6->saddr);
770 dst_use(&rt->dst, jiffies);
771 read_unlock_bh(&table->tb6_lock);
776 struct dst_entry *ip6_route_lookup(struct net *net, struct flowi6 *fl6,
779 return fib6_rule_lookup(net, fl6, flags, ip6_pol_route_lookup);
781 EXPORT_SYMBOL_GPL(ip6_route_lookup);
783 struct rt6_info *rt6_lookup(struct net *net, const struct in6_addr *daddr,
784 const struct in6_addr *saddr, int oif, int strict)
786 struct flowi6 fl6 = {
790 struct dst_entry *dst;
791 int flags = strict ? RT6_LOOKUP_F_IFACE : 0;
794 memcpy(&fl6.saddr, saddr, sizeof(*saddr));
795 flags |= RT6_LOOKUP_F_HAS_SADDR;
798 dst = fib6_rule_lookup(net, &fl6, flags, ip6_pol_route_lookup);
800 return (struct rt6_info *) dst;
806 EXPORT_SYMBOL(rt6_lookup);
808 /* ip6_ins_rt is called with FREE table->tb6_lock.
809 It takes new route entry, the addition fails by any reason the
810 route is freed. In any case, if caller does not hold it, it may
814 static int __ip6_ins_rt(struct rt6_info *rt, struct nl_info *info,
815 struct mx6_config *mxc)
818 struct fib6_table *table;
820 table = rt->rt6i_table;
821 write_lock_bh(&table->tb6_lock);
822 err = fib6_add(&table->tb6_root, rt, info, mxc);
823 write_unlock_bh(&table->tb6_lock);
828 int ip6_ins_rt(struct rt6_info *rt)
830 struct nl_info info = { .nl_net = dev_net(rt->dst.dev), };
831 struct mx6_config mxc = { .mx = NULL, };
833 return __ip6_ins_rt(rt, &info, &mxc);
836 static struct rt6_info *rt6_alloc_cow(struct rt6_info *ort,
837 const struct in6_addr *daddr,
838 const struct in6_addr *saddr)
846 rt = ip6_rt_copy(ort, daddr);
849 if (ort->rt6i_dst.plen != 128 &&
850 ipv6_addr_equal(&ort->rt6i_dst.addr, daddr))
851 rt->rt6i_flags |= RTF_ANYCAST;
853 rt->rt6i_flags |= RTF_CACHE;
855 #ifdef CONFIG_IPV6_SUBTREES
856 if (rt->rt6i_src.plen && saddr) {
857 rt->rt6i_src.addr = *saddr;
858 rt->rt6i_src.plen = 128;
866 static struct rt6_info *rt6_alloc_clone(struct rt6_info *ort,
867 const struct in6_addr *daddr)
869 struct rt6_info *rt = ip6_rt_copy(ort, daddr);
872 rt->rt6i_flags |= RTF_CACHE;
876 static struct rt6_info *ip6_pol_route(struct net *net, struct fib6_table *table, int oif,
877 struct flowi6 *fl6, int flags)
879 struct fib6_node *fn, *saved_fn;
880 struct rt6_info *rt, *nrt;
885 strict |= flags & RT6_LOOKUP_F_IFACE;
886 if (net->ipv6.devconf_all->forwarding == 0)
887 strict |= RT6_LOOKUP_F_REACHABLE;
889 redo_fib6_lookup_lock:
890 read_lock_bh(&table->tb6_lock);
892 fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
896 rt = rt6_select(fn, oif, strict);
897 if (rt->rt6i_nsiblings)
898 rt = rt6_multipath_select(rt, fl6, oif, strict);
899 if (rt == net->ipv6.ip6_null_entry) {
900 fn = fib6_backtrack(fn, &fl6->saddr);
902 goto redo_rt6_select;
903 else if (strict & RT6_LOOKUP_F_REACHABLE) {
904 /* also consider unreachable route */
905 strict &= ~RT6_LOOKUP_F_REACHABLE;
907 goto redo_rt6_select;
910 read_unlock_bh(&table->tb6_lock);
916 read_unlock_bh(&table->tb6_lock);
918 if (rt->rt6i_flags & RTF_CACHE)
921 if (!(rt->rt6i_flags & (RTF_NONEXTHOP | RTF_GATEWAY)))
922 nrt = rt6_alloc_cow(rt, &fl6->daddr, &fl6->saddr);
923 else if (!(rt->dst.flags & DST_HOST) || !(rt->rt6i_flags & RTF_LOCAL))
924 nrt = rt6_alloc_clone(rt, &fl6->daddr);
929 rt = nrt ? : net->ipv6.ip6_null_entry;
933 err = ip6_ins_rt(nrt);
942 * Race condition! In the gap, when table->tb6_lock was
943 * released someone could insert this route. Relookup.
946 goto redo_fib6_lookup_lock;
949 rt6_dst_from_metrics_check(rt);
950 rt->dst.lastuse = jiffies;
956 static struct rt6_info *ip6_pol_route_input(struct net *net, struct fib6_table *table,
957 struct flowi6 *fl6, int flags)
959 return ip6_pol_route(net, table, fl6->flowi6_iif, fl6, flags);
962 static struct dst_entry *ip6_route_input_lookup(struct net *net,
963 struct net_device *dev,
964 struct flowi6 *fl6, int flags)
966 if (rt6_need_strict(&fl6->daddr) && dev->type != ARPHRD_PIMREG)
967 flags |= RT6_LOOKUP_F_IFACE;
969 return fib6_rule_lookup(net, fl6, flags, ip6_pol_route_input);
972 void ip6_route_input(struct sk_buff *skb)
974 const struct ipv6hdr *iph = ipv6_hdr(skb);
975 struct net *net = dev_net(skb->dev);
976 int flags = RT6_LOOKUP_F_HAS_SADDR;
977 struct flowi6 fl6 = {
978 .flowi6_iif = skb->dev->ifindex,
981 .flowlabel = ip6_flowinfo(iph),
982 .flowi6_mark = skb->mark,
983 .flowi6_proto = iph->nexthdr,
986 skb_dst_set(skb, ip6_route_input_lookup(net, skb->dev, &fl6, flags));
989 static struct rt6_info *ip6_pol_route_output(struct net *net, struct fib6_table *table,
990 struct flowi6 *fl6, int flags)
992 return ip6_pol_route(net, table, fl6->flowi6_oif, fl6, flags);
995 struct dst_entry *ip6_route_output(struct net *net, const struct sock *sk,
1000 fl6->flowi6_iif = LOOPBACK_IFINDEX;
1002 if ((sk && sk->sk_bound_dev_if) || rt6_need_strict(&fl6->daddr))
1003 flags |= RT6_LOOKUP_F_IFACE;
1005 if (!ipv6_addr_any(&fl6->saddr))
1006 flags |= RT6_LOOKUP_F_HAS_SADDR;
1008 flags |= rt6_srcprefs2flags(inet6_sk(sk)->srcprefs);
1010 return fib6_rule_lookup(net, fl6, flags, ip6_pol_route_output);
1012 EXPORT_SYMBOL(ip6_route_output);
1014 struct dst_entry *ip6_blackhole_route(struct net *net, struct dst_entry *dst_orig)
1016 struct rt6_info *rt, *ort = (struct rt6_info *) dst_orig;
1017 struct dst_entry *new = NULL;
1019 rt = dst_alloc(&ip6_dst_blackhole_ops, ort->dst.dev, 1, DST_OBSOLETE_NONE, 0);
1023 memset(new + 1, 0, sizeof(*rt) - sizeof(*new));
1026 new->input = dst_discard;
1027 new->output = dst_discard_sk;
1029 if (dst_metrics_read_only(&ort->dst))
1030 new->_metrics = ort->dst._metrics;
1032 dst_copy_metrics(new, &ort->dst);
1033 rt->rt6i_idev = ort->rt6i_idev;
1035 in6_dev_hold(rt->rt6i_idev);
1037 rt->rt6i_gateway = ort->rt6i_gateway;
1038 rt->rt6i_flags = ort->rt6i_flags;
1039 rt->rt6i_metric = 0;
1041 memcpy(&rt->rt6i_dst, &ort->rt6i_dst, sizeof(struct rt6key));
1042 #ifdef CONFIG_IPV6_SUBTREES
1043 memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key));
1049 dst_release(dst_orig);
1050 return new ? new : ERR_PTR(-ENOMEM);
1054 * Destination cache support functions
1057 static void rt6_dst_from_metrics_check(struct rt6_info *rt)
1060 dst_metrics_ptr(&rt->dst) != dst_metrics_ptr(rt->dst.from))
1061 dst_init_metrics(&rt->dst, dst_metrics_ptr(rt->dst.from), true);
1064 static struct dst_entry *ip6_dst_check(struct dst_entry *dst, u32 cookie)
1066 struct rt6_info *rt;
1068 rt = (struct rt6_info *) dst;
1070 /* All IPV6 dsts are created with ->obsolete set to the value
1071 * DST_OBSOLETE_FORCE_CHK which forces validation calls down
1072 * into this function always.
1074 if (!rt->rt6i_node || (rt->rt6i_node->fn_sernum != cookie))
1077 if (rt6_check_expired(rt))
1080 rt6_dst_from_metrics_check(rt);
1085 static struct dst_entry *ip6_negative_advice(struct dst_entry *dst)
1087 struct rt6_info *rt = (struct rt6_info *) dst;
1090 if (rt->rt6i_flags & RTF_CACHE) {
1091 if (rt6_check_expired(rt)) {
1103 static void ip6_link_failure(struct sk_buff *skb)
1105 struct rt6_info *rt;
1107 icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH, 0);
1109 rt = (struct rt6_info *) skb_dst(skb);
1111 if (rt->rt6i_flags & RTF_CACHE) {
1115 } else if (rt->rt6i_node && (rt->rt6i_flags & RTF_DEFAULT)) {
1116 rt->rt6i_node->fn_sernum = -1;
1121 static void ip6_rt_update_pmtu(struct dst_entry *dst, struct sock *sk,
1122 struct sk_buff *skb, u32 mtu)
1124 struct rt6_info *rt6 = (struct rt6_info *)dst;
1127 if (mtu < dst_mtu(dst) && (rt6->rt6i_flags & RTF_CACHE)) {
1128 struct net *net = dev_net(dst->dev);
1130 rt6->rt6i_flags |= RTF_MODIFIED;
1131 if (mtu < IPV6_MIN_MTU)
1134 rt6->rt6i_pmtu = mtu;
1135 rt6_update_expires(rt6, net->ipv6.sysctl.ip6_rt_mtu_expires);
1139 void ip6_update_pmtu(struct sk_buff *skb, struct net *net, __be32 mtu,
1142 const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data;
1143 struct dst_entry *dst;
1146 memset(&fl6, 0, sizeof(fl6));
1147 fl6.flowi6_oif = oif;
1148 fl6.flowi6_mark = mark ? mark : IP6_REPLY_MARK(net, skb->mark);
1149 fl6.daddr = iph->daddr;
1150 fl6.saddr = iph->saddr;
1151 fl6.flowlabel = ip6_flowinfo(iph);
1153 dst = ip6_route_output(net, NULL, &fl6);
1155 ip6_rt_update_pmtu(dst, NULL, skb, ntohl(mtu));
1158 EXPORT_SYMBOL_GPL(ip6_update_pmtu);
1160 void ip6_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, __be32 mtu)
1162 ip6_update_pmtu(skb, sock_net(sk), mtu,
1163 sk->sk_bound_dev_if, sk->sk_mark);
1165 EXPORT_SYMBOL_GPL(ip6_sk_update_pmtu);
1167 /* Handle redirects */
1168 struct ip6rd_flowi {
1170 struct in6_addr gateway;
1173 static struct rt6_info *__ip6_route_redirect(struct net *net,
1174 struct fib6_table *table,
1178 struct ip6rd_flowi *rdfl = (struct ip6rd_flowi *)fl6;
1179 struct rt6_info *rt;
1180 struct fib6_node *fn;
1182 /* Get the "current" route for this destination and
1183 * check if the redirect has come from approriate router.
1185 * RFC 4861 specifies that redirects should only be
1186 * accepted if they come from the nexthop to the target.
1187 * Due to the way the routes are chosen, this notion
1188 * is a bit fuzzy and one might need to check all possible
1192 read_lock_bh(&table->tb6_lock);
1193 fn = fib6_lookup(&table->tb6_root, &fl6->daddr, &fl6->saddr);
1195 for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1196 if (rt6_check_expired(rt))
1200 if (!(rt->rt6i_flags & RTF_GATEWAY))
1202 if (fl6->flowi6_oif != rt->dst.dev->ifindex)
1204 if (!ipv6_addr_equal(&rdfl->gateway, &rt->rt6i_gateway))
1210 rt = net->ipv6.ip6_null_entry;
1211 else if (rt->dst.error) {
1212 rt = net->ipv6.ip6_null_entry;
1216 if (rt == net->ipv6.ip6_null_entry) {
1217 fn = fib6_backtrack(fn, &fl6->saddr);
1225 read_unlock_bh(&table->tb6_lock);
1230 static struct dst_entry *ip6_route_redirect(struct net *net,
1231 const struct flowi6 *fl6,
1232 const struct in6_addr *gateway)
1234 int flags = RT6_LOOKUP_F_HAS_SADDR;
1235 struct ip6rd_flowi rdfl;
1238 rdfl.gateway = *gateway;
1240 return fib6_rule_lookup(net, &rdfl.fl6,
1241 flags, __ip6_route_redirect);
1244 void ip6_redirect(struct sk_buff *skb, struct net *net, int oif, u32 mark)
1246 const struct ipv6hdr *iph = (struct ipv6hdr *) skb->data;
1247 struct dst_entry *dst;
1250 memset(&fl6, 0, sizeof(fl6));
1251 fl6.flowi6_iif = LOOPBACK_IFINDEX;
1252 fl6.flowi6_oif = oif;
1253 fl6.flowi6_mark = mark;
1254 fl6.daddr = iph->daddr;
1255 fl6.saddr = iph->saddr;
1256 fl6.flowlabel = ip6_flowinfo(iph);
1258 dst = ip6_route_redirect(net, &fl6, &ipv6_hdr(skb)->saddr);
1259 rt6_do_redirect(dst, NULL, skb);
1262 EXPORT_SYMBOL_GPL(ip6_redirect);
1264 void ip6_redirect_no_header(struct sk_buff *skb, struct net *net, int oif,
1267 const struct ipv6hdr *iph = ipv6_hdr(skb);
1268 const struct rd_msg *msg = (struct rd_msg *)icmp6_hdr(skb);
1269 struct dst_entry *dst;
1272 memset(&fl6, 0, sizeof(fl6));
1273 fl6.flowi6_iif = LOOPBACK_IFINDEX;
1274 fl6.flowi6_oif = oif;
1275 fl6.flowi6_mark = mark;
1276 fl6.daddr = msg->dest;
1277 fl6.saddr = iph->daddr;
1279 dst = ip6_route_redirect(net, &fl6, &iph->saddr);
1280 rt6_do_redirect(dst, NULL, skb);
1284 void ip6_sk_redirect(struct sk_buff *skb, struct sock *sk)
1286 ip6_redirect(skb, sock_net(sk), sk->sk_bound_dev_if, sk->sk_mark);
1288 EXPORT_SYMBOL_GPL(ip6_sk_redirect);
1290 static unsigned int ip6_default_advmss(const struct dst_entry *dst)
1292 struct net_device *dev = dst->dev;
1293 unsigned int mtu = dst_mtu(dst);
1294 struct net *net = dev_net(dev);
1296 mtu -= sizeof(struct ipv6hdr) + sizeof(struct tcphdr);
1298 if (mtu < net->ipv6.sysctl.ip6_rt_min_advmss)
1299 mtu = net->ipv6.sysctl.ip6_rt_min_advmss;
1302 * Maximal non-jumbo IPv6 payload is IPV6_MAXPLEN and
1303 * corresponding MSS is IPV6_MAXPLEN - tcp_header_size.
1304 * IPV6_MAXPLEN is also valid and means: "any MSS,
1305 * rely only on pmtu discovery"
1307 if (mtu > IPV6_MAXPLEN - sizeof(struct tcphdr))
1312 static unsigned int ip6_mtu(const struct dst_entry *dst)
1314 const struct rt6_info *rt = (const struct rt6_info *)dst;
1315 unsigned int mtu = rt->rt6i_pmtu;
1316 struct inet6_dev *idev;
1321 mtu = dst_metric_raw(dst, RTAX_MTU);
1328 idev = __in6_dev_get(dst->dev);
1330 mtu = idev->cnf.mtu6;
1334 return min_t(unsigned int, mtu, IP6_MAX_MTU);
1337 static struct dst_entry *icmp6_dst_gc_list;
1338 static DEFINE_SPINLOCK(icmp6_dst_lock);
1340 struct dst_entry *icmp6_dst_alloc(struct net_device *dev,
1343 struct dst_entry *dst;
1344 struct rt6_info *rt;
1345 struct inet6_dev *idev = in6_dev_get(dev);
1346 struct net *net = dev_net(dev);
1348 if (unlikely(!idev))
1349 return ERR_PTR(-ENODEV);
1351 rt = ip6_dst_alloc(net, dev, 0, NULL);
1352 if (unlikely(!rt)) {
1354 dst = ERR_PTR(-ENOMEM);
1358 rt->dst.flags |= DST_HOST;
1359 rt->dst.output = ip6_output;
1360 atomic_set(&rt->dst.__refcnt, 1);
1361 rt->rt6i_gateway = fl6->daddr;
1362 rt->rt6i_dst.addr = fl6->daddr;
1363 rt->rt6i_dst.plen = 128;
1364 rt->rt6i_idev = idev;
1365 dst_metric_set(&rt->dst, RTAX_HOPLIMIT, 0);
1367 spin_lock_bh(&icmp6_dst_lock);
1368 rt->dst.next = icmp6_dst_gc_list;
1369 icmp6_dst_gc_list = &rt->dst;
1370 spin_unlock_bh(&icmp6_dst_lock);
1372 fib6_force_start_gc(net);
1374 dst = xfrm_lookup(net, &rt->dst, flowi6_to_flowi(fl6), NULL, 0);
1380 int icmp6_dst_gc(void)
1382 struct dst_entry *dst, **pprev;
1385 spin_lock_bh(&icmp6_dst_lock);
1386 pprev = &icmp6_dst_gc_list;
1388 while ((dst = *pprev) != NULL) {
1389 if (!atomic_read(&dst->__refcnt)) {
1398 spin_unlock_bh(&icmp6_dst_lock);
1403 static void icmp6_clean_all(int (*func)(struct rt6_info *rt, void *arg),
1406 struct dst_entry *dst, **pprev;
1408 spin_lock_bh(&icmp6_dst_lock);
1409 pprev = &icmp6_dst_gc_list;
1410 while ((dst = *pprev) != NULL) {
1411 struct rt6_info *rt = (struct rt6_info *) dst;
1412 if (func(rt, arg)) {
1419 spin_unlock_bh(&icmp6_dst_lock);
1422 static int ip6_dst_gc(struct dst_ops *ops)
1424 struct net *net = container_of(ops, struct net, ipv6.ip6_dst_ops);
1425 int rt_min_interval = net->ipv6.sysctl.ip6_rt_gc_min_interval;
1426 int rt_max_size = net->ipv6.sysctl.ip6_rt_max_size;
1427 int rt_elasticity = net->ipv6.sysctl.ip6_rt_gc_elasticity;
1428 int rt_gc_timeout = net->ipv6.sysctl.ip6_rt_gc_timeout;
1429 unsigned long rt_last_gc = net->ipv6.ip6_rt_last_gc;
1432 entries = dst_entries_get_fast(ops);
1433 if (time_after(rt_last_gc + rt_min_interval, jiffies) &&
1434 entries <= rt_max_size)
1437 net->ipv6.ip6_rt_gc_expire++;
1438 fib6_run_gc(net->ipv6.ip6_rt_gc_expire, net, true);
1439 entries = dst_entries_get_slow(ops);
1440 if (entries < ops->gc_thresh)
1441 net->ipv6.ip6_rt_gc_expire = rt_gc_timeout>>1;
1443 net->ipv6.ip6_rt_gc_expire -= net->ipv6.ip6_rt_gc_expire>>rt_elasticity;
1444 return entries > rt_max_size;
1447 static int ip6_convert_metrics(struct mx6_config *mxc,
1448 const struct fib6_config *cfg)
1457 mp = kzalloc(sizeof(u32) * RTAX_MAX, GFP_KERNEL);
1461 nla_for_each_attr(nla, cfg->fc_mx, cfg->fc_mx_len, remaining) {
1462 int type = nla_type(nla);
1467 if (unlikely(type > RTAX_MAX))
1469 if (type == RTAX_CC_ALGO) {
1470 char tmp[TCP_CA_NAME_MAX];
1472 nla_strlcpy(tmp, nla, sizeof(tmp));
1473 val = tcp_ca_get_key_by_name(tmp);
1474 if (val == TCP_CA_UNSPEC)
1477 val = nla_get_u32(nla);
1481 __set_bit(type - 1, mxc->mx_valid);
1493 int ip6_route_add(struct fib6_config *cfg)
1496 struct net *net = cfg->fc_nlinfo.nl_net;
1497 struct rt6_info *rt = NULL;
1498 struct net_device *dev = NULL;
1499 struct inet6_dev *idev = NULL;
1500 struct fib6_table *table;
1501 struct mx6_config mxc = { .mx = NULL, };
1504 if (cfg->fc_dst_len > 128 || cfg->fc_src_len > 128)
1506 #ifndef CONFIG_IPV6_SUBTREES
1507 if (cfg->fc_src_len)
1510 if (cfg->fc_ifindex) {
1512 dev = dev_get_by_index(net, cfg->fc_ifindex);
1515 idev = in6_dev_get(dev);
1520 if (cfg->fc_metric == 0)
1521 cfg->fc_metric = IP6_RT_PRIO_USER;
1524 if (cfg->fc_nlinfo.nlh &&
1525 !(cfg->fc_nlinfo.nlh->nlmsg_flags & NLM_F_CREATE)) {
1526 table = fib6_get_table(net, cfg->fc_table);
1528 pr_warn("NLM_F_CREATE should be specified when creating new route\n");
1529 table = fib6_new_table(net, cfg->fc_table);
1532 table = fib6_new_table(net, cfg->fc_table);
1538 rt = ip6_dst_alloc(net, NULL, (cfg->fc_flags & RTF_ADDRCONF) ? 0 : DST_NOCOUNT, table);
1545 if (cfg->fc_flags & RTF_EXPIRES)
1546 rt6_set_expires(rt, jiffies +
1547 clock_t_to_jiffies(cfg->fc_expires));
1549 rt6_clean_expires(rt);
1551 if (cfg->fc_protocol == RTPROT_UNSPEC)
1552 cfg->fc_protocol = RTPROT_BOOT;
1553 rt->rt6i_protocol = cfg->fc_protocol;
1555 addr_type = ipv6_addr_type(&cfg->fc_dst);
1557 if (addr_type & IPV6_ADDR_MULTICAST)
1558 rt->dst.input = ip6_mc_input;
1559 else if (cfg->fc_flags & RTF_LOCAL)
1560 rt->dst.input = ip6_input;
1562 rt->dst.input = ip6_forward;
1564 rt->dst.output = ip6_output;
1566 ipv6_addr_prefix(&rt->rt6i_dst.addr, &cfg->fc_dst, cfg->fc_dst_len);
1567 rt->rt6i_dst.plen = cfg->fc_dst_len;
1568 if (rt->rt6i_dst.plen == 128)
1569 rt->dst.flags |= DST_HOST;
1571 #ifdef CONFIG_IPV6_SUBTREES
1572 ipv6_addr_prefix(&rt->rt6i_src.addr, &cfg->fc_src, cfg->fc_src_len);
1573 rt->rt6i_src.plen = cfg->fc_src_len;
1576 rt->rt6i_metric = cfg->fc_metric;
1578 /* We cannot add true routes via loopback here,
1579 they would result in kernel looping; promote them to reject routes
1581 if ((cfg->fc_flags & RTF_REJECT) ||
1582 (dev && (dev->flags & IFF_LOOPBACK) &&
1583 !(addr_type & IPV6_ADDR_LOOPBACK) &&
1584 !(cfg->fc_flags & RTF_LOCAL))) {
1585 /* hold loopback dev/idev if we haven't done so. */
1586 if (dev != net->loopback_dev) {
1591 dev = net->loopback_dev;
1593 idev = in6_dev_get(dev);
1599 rt->rt6i_flags = RTF_REJECT|RTF_NONEXTHOP;
1600 switch (cfg->fc_type) {
1602 rt->dst.error = -EINVAL;
1603 rt->dst.output = dst_discard_sk;
1604 rt->dst.input = dst_discard;
1607 rt->dst.error = -EACCES;
1608 rt->dst.output = ip6_pkt_prohibit_out;
1609 rt->dst.input = ip6_pkt_prohibit;
1613 rt->dst.error = (cfg->fc_type == RTN_THROW) ? -EAGAIN
1615 rt->dst.output = ip6_pkt_discard_out;
1616 rt->dst.input = ip6_pkt_discard;
1622 if (cfg->fc_flags & RTF_GATEWAY) {
1623 const struct in6_addr *gw_addr;
1626 gw_addr = &cfg->fc_gateway;
1628 /* if gw_addr is local we will fail to detect this in case
1629 * address is still TENTATIVE (DAD in progress). rt6_lookup()
1630 * will return already-added prefix route via interface that
1631 * prefix route was assigned to, which might be non-loopback.
1634 if (ipv6_chk_addr_and_flags(net, gw_addr, NULL, 0, 0))
1637 rt->rt6i_gateway = *gw_addr;
1638 gwa_type = ipv6_addr_type(gw_addr);
1640 if (gwa_type != (IPV6_ADDR_LINKLOCAL|IPV6_ADDR_UNICAST)) {
1641 struct rt6_info *grt;
1643 /* IPv6 strictly inhibits using not link-local
1644 addresses as nexthop address.
1645 Otherwise, router will not able to send redirects.
1646 It is very good, but in some (rare!) circumstances
1647 (SIT, PtP, NBMA NOARP links) it is handy to allow
1648 some exceptions. --ANK
1650 if (!(gwa_type & IPV6_ADDR_UNICAST))
1653 grt = rt6_lookup(net, gw_addr, NULL, cfg->fc_ifindex, 1);
1655 err = -EHOSTUNREACH;
1659 if (dev != grt->dst.dev) {
1665 idev = grt->rt6i_idev;
1667 in6_dev_hold(grt->rt6i_idev);
1669 if (!(grt->rt6i_flags & RTF_GATEWAY))
1677 if (!dev || (dev->flags & IFF_LOOPBACK))
1685 if (!ipv6_addr_any(&cfg->fc_prefsrc)) {
1686 if (!ipv6_chk_addr(net, &cfg->fc_prefsrc, dev, 0)) {
1690 rt->rt6i_prefsrc.addr = cfg->fc_prefsrc;
1691 rt->rt6i_prefsrc.plen = 128;
1693 rt->rt6i_prefsrc.plen = 0;
1695 rt->rt6i_flags = cfg->fc_flags;
1699 rt->rt6i_idev = idev;
1700 rt->rt6i_table = table;
1702 cfg->fc_nlinfo.nl_net = dev_net(dev);
1704 err = ip6_convert_metrics(&mxc, cfg);
1708 err = __ip6_ins_rt(rt, &cfg->fc_nlinfo, &mxc);
1722 static int __ip6_del_rt(struct rt6_info *rt, struct nl_info *info)
1725 struct fib6_table *table;
1726 struct net *net = dev_net(rt->dst.dev);
1728 if (rt == net->ipv6.ip6_null_entry) {
1733 table = rt->rt6i_table;
1734 write_lock_bh(&table->tb6_lock);
1735 err = fib6_del(rt, info);
1736 write_unlock_bh(&table->tb6_lock);
1743 int ip6_del_rt(struct rt6_info *rt)
1745 struct nl_info info = {
1746 .nl_net = dev_net(rt->dst.dev),
1748 return __ip6_del_rt(rt, &info);
1751 static int ip6_route_del(struct fib6_config *cfg)
1753 struct fib6_table *table;
1754 struct fib6_node *fn;
1755 struct rt6_info *rt;
1758 table = fib6_get_table(cfg->fc_nlinfo.nl_net, cfg->fc_table);
1762 read_lock_bh(&table->tb6_lock);
1764 fn = fib6_locate(&table->tb6_root,
1765 &cfg->fc_dst, cfg->fc_dst_len,
1766 &cfg->fc_src, cfg->fc_src_len);
1769 for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1770 if ((rt->rt6i_flags & RTF_CACHE) &&
1771 !(cfg->fc_flags & RTF_CACHE))
1773 if (cfg->fc_ifindex &&
1775 rt->dst.dev->ifindex != cfg->fc_ifindex))
1777 if (cfg->fc_flags & RTF_GATEWAY &&
1778 !ipv6_addr_equal(&cfg->fc_gateway, &rt->rt6i_gateway))
1780 if (cfg->fc_metric && cfg->fc_metric != rt->rt6i_metric)
1783 read_unlock_bh(&table->tb6_lock);
1785 return __ip6_del_rt(rt, &cfg->fc_nlinfo);
1788 read_unlock_bh(&table->tb6_lock);
1793 static void rt6_do_redirect(struct dst_entry *dst, struct sock *sk, struct sk_buff *skb)
1795 struct net *net = dev_net(skb->dev);
1796 struct netevent_redirect netevent;
1797 struct rt6_info *rt, *nrt = NULL;
1798 struct ndisc_options ndopts;
1799 struct inet6_dev *in6_dev;
1800 struct neighbour *neigh;
1802 int optlen, on_link;
1805 optlen = skb_tail_pointer(skb) - skb_transport_header(skb);
1806 optlen -= sizeof(*msg);
1809 net_dbg_ratelimited("rt6_do_redirect: packet too short\n");
1813 msg = (struct rd_msg *)icmp6_hdr(skb);
1815 if (ipv6_addr_is_multicast(&msg->dest)) {
1816 net_dbg_ratelimited("rt6_do_redirect: destination address is multicast\n");
1821 if (ipv6_addr_equal(&msg->dest, &msg->target)) {
1823 } else if (ipv6_addr_type(&msg->target) !=
1824 (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) {
1825 net_dbg_ratelimited("rt6_do_redirect: target address is not link-local unicast\n");
1829 in6_dev = __in6_dev_get(skb->dev);
1832 if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_redirects)
1836 * The IP source address of the Redirect MUST be the same as the current
1837 * first-hop router for the specified ICMP Destination Address.
1840 if (!ndisc_parse_options(msg->opt, optlen, &ndopts)) {
1841 net_dbg_ratelimited("rt6_redirect: invalid ND options\n");
1846 if (ndopts.nd_opts_tgt_lladdr) {
1847 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr,
1850 net_dbg_ratelimited("rt6_redirect: invalid link-layer address length\n");
1855 rt = (struct rt6_info *) dst;
1856 if (rt == net->ipv6.ip6_null_entry) {
1857 net_dbg_ratelimited("rt6_redirect: source isn't a valid nexthop for redirect target\n");
1861 /* Redirect received -> path was valid.
1862 * Look, redirects are sent only in response to data packets,
1863 * so that this nexthop apparently is reachable. --ANK
1865 dst_confirm(&rt->dst);
1867 neigh = __neigh_lookup(&nd_tbl, &msg->target, skb->dev, 1);
1872 * We have finally decided to accept it.
1875 neigh_update(neigh, lladdr, NUD_STALE,
1876 NEIGH_UPDATE_F_WEAK_OVERRIDE|
1877 NEIGH_UPDATE_F_OVERRIDE|
1878 (on_link ? 0 : (NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
1879 NEIGH_UPDATE_F_ISROUTER))
1882 nrt = ip6_rt_copy(rt, &msg->dest);
1886 nrt->rt6i_flags = RTF_GATEWAY|RTF_UP|RTF_DYNAMIC|RTF_CACHE;
1888 nrt->rt6i_flags &= ~RTF_GATEWAY;
1890 nrt->rt6i_gateway = *(struct in6_addr *)neigh->primary_key;
1892 if (ip6_ins_rt(nrt))
1895 netevent.old = &rt->dst;
1896 netevent.new = &nrt->dst;
1897 netevent.daddr = &msg->dest;
1898 netevent.neigh = neigh;
1899 call_netevent_notifiers(NETEVENT_REDIRECT, &netevent);
1901 if (rt->rt6i_flags & RTF_CACHE) {
1902 rt = (struct rt6_info *) dst_clone(&rt->dst);
1907 neigh_release(neigh);
1911 * Misc support functions
1914 static void rt6_set_from(struct rt6_info *rt, struct rt6_info *from)
1916 BUG_ON(from->dst.from);
1918 rt->rt6i_flags &= ~RTF_EXPIRES;
1919 dst_hold(&from->dst);
1920 rt->dst.from = &from->dst;
1921 dst_init_metrics(&rt->dst, dst_metrics_ptr(&from->dst), true);
1924 static struct rt6_info *ip6_rt_copy(struct rt6_info *ort,
1925 const struct in6_addr *dest)
1927 struct net *net = dev_net(ort->dst.dev);
1928 struct rt6_info *rt;
1930 if (ort->rt6i_flags & RTF_CACHE)
1931 ort = (struct rt6_info *)ort->dst.from;
1933 rt = ip6_dst_alloc(net, ort->dst.dev, 0,
1937 rt->dst.input = ort->dst.input;
1938 rt->dst.output = ort->dst.output;
1939 rt->dst.flags |= DST_HOST;
1941 rt->rt6i_dst.addr = *dest;
1942 rt->rt6i_dst.plen = 128;
1943 rt->dst.error = ort->dst.error;
1944 rt->rt6i_idev = ort->rt6i_idev;
1946 in6_dev_hold(rt->rt6i_idev);
1947 rt->dst.lastuse = jiffies;
1949 if (ort->rt6i_flags & RTF_GATEWAY)
1950 rt->rt6i_gateway = ort->rt6i_gateway;
1952 rt->rt6i_gateway = *dest;
1953 rt->rt6i_flags = ort->rt6i_flags;
1954 rt6_set_from(rt, ort);
1955 rt->rt6i_metric = 0;
1957 #ifdef CONFIG_IPV6_SUBTREES
1958 memcpy(&rt->rt6i_src, &ort->rt6i_src, sizeof(struct rt6key));
1960 memcpy(&rt->rt6i_prefsrc, &ort->rt6i_prefsrc, sizeof(struct rt6key));
1961 rt->rt6i_table = ort->rt6i_table;
1966 #ifdef CONFIG_IPV6_ROUTE_INFO
1967 static struct rt6_info *rt6_get_route_info(struct net *net,
1968 const struct in6_addr *prefix, int prefixlen,
1969 const struct in6_addr *gwaddr, int ifindex)
1971 struct fib6_node *fn;
1972 struct rt6_info *rt = NULL;
1973 struct fib6_table *table;
1975 table = fib6_get_table(net, RT6_TABLE_INFO);
1979 read_lock_bh(&table->tb6_lock);
1980 fn = fib6_locate(&table->tb6_root, prefix, prefixlen, NULL, 0);
1984 for (rt = fn->leaf; rt; rt = rt->dst.rt6_next) {
1985 if (rt->dst.dev->ifindex != ifindex)
1987 if ((rt->rt6i_flags & (RTF_ROUTEINFO|RTF_GATEWAY)) != (RTF_ROUTEINFO|RTF_GATEWAY))
1989 if (!ipv6_addr_equal(&rt->rt6i_gateway, gwaddr))
1995 read_unlock_bh(&table->tb6_lock);
1999 static struct rt6_info *rt6_add_route_info(struct net *net,
2000 const struct in6_addr *prefix, int prefixlen,
2001 const struct in6_addr *gwaddr, int ifindex,
2004 struct fib6_config cfg = {
2005 .fc_table = RT6_TABLE_INFO,
2006 .fc_metric = IP6_RT_PRIO_USER,
2007 .fc_ifindex = ifindex,
2008 .fc_dst_len = prefixlen,
2009 .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_ROUTEINFO |
2010 RTF_UP | RTF_PREF(pref),
2011 .fc_nlinfo.portid = 0,
2012 .fc_nlinfo.nlh = NULL,
2013 .fc_nlinfo.nl_net = net,
2016 cfg.fc_dst = *prefix;
2017 cfg.fc_gateway = *gwaddr;
2019 /* We should treat it as a default route if prefix length is 0. */
2021 cfg.fc_flags |= RTF_DEFAULT;
2023 ip6_route_add(&cfg);
2025 return rt6_get_route_info(net, prefix, prefixlen, gwaddr, ifindex);
2029 struct rt6_info *rt6_get_dflt_router(const struct in6_addr *addr, struct net_device *dev)
2031 struct rt6_info *rt;
2032 struct fib6_table *table;
2034 table = fib6_get_table(dev_net(dev), RT6_TABLE_DFLT);
2038 read_lock_bh(&table->tb6_lock);
2039 for (rt = table->tb6_root.leaf; rt; rt = rt->dst.rt6_next) {
2040 if (dev == rt->dst.dev &&
2041 ((rt->rt6i_flags & (RTF_ADDRCONF | RTF_DEFAULT)) == (RTF_ADDRCONF | RTF_DEFAULT)) &&
2042 ipv6_addr_equal(&rt->rt6i_gateway, addr))
2047 read_unlock_bh(&table->tb6_lock);
2051 struct rt6_info *rt6_add_dflt_router(const struct in6_addr *gwaddr,
2052 struct net_device *dev,
2055 struct fib6_config cfg = {
2056 .fc_table = RT6_TABLE_DFLT,
2057 .fc_metric = IP6_RT_PRIO_USER,
2058 .fc_ifindex = dev->ifindex,
2059 .fc_flags = RTF_GATEWAY | RTF_ADDRCONF | RTF_DEFAULT |
2060 RTF_UP | RTF_EXPIRES | RTF_PREF(pref),
2061 .fc_nlinfo.portid = 0,
2062 .fc_nlinfo.nlh = NULL,
2063 .fc_nlinfo.nl_net = dev_net(dev),
2066 cfg.fc_gateway = *gwaddr;
2068 ip6_route_add(&cfg);
2070 return rt6_get_dflt_router(gwaddr, dev);
2073 void rt6_purge_dflt_routers(struct net *net)
2075 struct rt6_info *rt;
2076 struct fib6_table *table;
2078 /* NOTE: Keep consistent with rt6_get_dflt_router */
2079 table = fib6_get_table(net, RT6_TABLE_DFLT);
2084 read_lock_bh(&table->tb6_lock);
2085 for (rt = table->tb6_root.leaf; rt; rt = rt->dst.rt6_next) {
2086 if (rt->rt6i_flags & (RTF_DEFAULT | RTF_ADDRCONF) &&
2087 (!rt->rt6i_idev || rt->rt6i_idev->cnf.accept_ra != 2)) {
2089 read_unlock_bh(&table->tb6_lock);
2094 read_unlock_bh(&table->tb6_lock);
2097 static void rtmsg_to_fib6_config(struct net *net,
2098 struct in6_rtmsg *rtmsg,
2099 struct fib6_config *cfg)
2101 memset(cfg, 0, sizeof(*cfg));
2103 cfg->fc_table = RT6_TABLE_MAIN;
2104 cfg->fc_ifindex = rtmsg->rtmsg_ifindex;
2105 cfg->fc_metric = rtmsg->rtmsg_metric;
2106 cfg->fc_expires = rtmsg->rtmsg_info;
2107 cfg->fc_dst_len = rtmsg->rtmsg_dst_len;
2108 cfg->fc_src_len = rtmsg->rtmsg_src_len;
2109 cfg->fc_flags = rtmsg->rtmsg_flags;
2111 cfg->fc_nlinfo.nl_net = net;
2113 cfg->fc_dst = rtmsg->rtmsg_dst;
2114 cfg->fc_src = rtmsg->rtmsg_src;
2115 cfg->fc_gateway = rtmsg->rtmsg_gateway;
2118 int ipv6_route_ioctl(struct net *net, unsigned int cmd, void __user *arg)
2120 struct fib6_config cfg;
2121 struct in6_rtmsg rtmsg;
2125 case SIOCADDRT: /* Add a route */
2126 case SIOCDELRT: /* Delete a route */
2127 if (!ns_capable(net->user_ns, CAP_NET_ADMIN))
2129 err = copy_from_user(&rtmsg, arg,
2130 sizeof(struct in6_rtmsg));
2134 rtmsg_to_fib6_config(net, &rtmsg, &cfg);
2139 err = ip6_route_add(&cfg);
2142 err = ip6_route_del(&cfg);
2156 * Drop the packet on the floor
2159 static int ip6_pkt_drop(struct sk_buff *skb, u8 code, int ipstats_mib_noroutes)
2162 struct dst_entry *dst = skb_dst(skb);
2163 switch (ipstats_mib_noroutes) {
2164 case IPSTATS_MIB_INNOROUTES:
2165 type = ipv6_addr_type(&ipv6_hdr(skb)->daddr);
2166 if (type == IPV6_ADDR_ANY) {
2167 IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst),
2168 IPSTATS_MIB_INADDRERRORS);
2172 case IPSTATS_MIB_OUTNOROUTES:
2173 IP6_INC_STATS(dev_net(dst->dev), ip6_dst_idev(dst),
2174 ipstats_mib_noroutes);
2177 icmpv6_send(skb, ICMPV6_DEST_UNREACH, code, 0);
2182 static int ip6_pkt_discard(struct sk_buff *skb)
2184 return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_INNOROUTES);
2187 static int ip6_pkt_discard_out(struct sock *sk, struct sk_buff *skb)
2189 skb->dev = skb_dst(skb)->dev;
2190 return ip6_pkt_drop(skb, ICMPV6_NOROUTE, IPSTATS_MIB_OUTNOROUTES);
2193 static int ip6_pkt_prohibit(struct sk_buff *skb)
2195 return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_INNOROUTES);
2198 static int ip6_pkt_prohibit_out(struct sock *sk, struct sk_buff *skb)
2200 skb->dev = skb_dst(skb)->dev;
2201 return ip6_pkt_drop(skb, ICMPV6_ADM_PROHIBITED, IPSTATS_MIB_OUTNOROUTES);
2205 * Allocate a dst for local (unicast / anycast) address.
2208 struct rt6_info *addrconf_dst_alloc(struct inet6_dev *idev,
2209 const struct in6_addr *addr,
2212 struct net *net = dev_net(idev->dev);
2213 struct rt6_info *rt = ip6_dst_alloc(net, net->loopback_dev,
2216 return ERR_PTR(-ENOMEM);
2220 rt->dst.flags |= DST_HOST;
2221 rt->dst.input = ip6_input;
2222 rt->dst.output = ip6_output;
2223 rt->rt6i_idev = idev;
2225 rt->rt6i_flags = RTF_UP | RTF_NONEXTHOP;
2227 rt->rt6i_flags |= RTF_ANYCAST;
2229 rt->rt6i_flags |= RTF_LOCAL;
2231 rt->rt6i_gateway = *addr;
2232 rt->rt6i_dst.addr = *addr;
2233 rt->rt6i_dst.plen = 128;
2234 rt->rt6i_table = fib6_get_table(net, RT6_TABLE_LOCAL);
2236 atomic_set(&rt->dst.__refcnt, 1);
2241 int ip6_route_get_saddr(struct net *net,
2242 struct rt6_info *rt,
2243 const struct in6_addr *daddr,
2245 struct in6_addr *saddr)
2247 struct inet6_dev *idev =
2248 rt ? ip6_dst_idev((struct dst_entry *)rt) : NULL;
2250 if (rt && rt->rt6i_prefsrc.plen)
2251 *saddr = rt->rt6i_prefsrc.addr;
2253 err = ipv6_dev_get_saddr(net, idev ? idev->dev : NULL,
2254 daddr, prefs, saddr);
2258 /* remove deleted ip from prefsrc entries */
2259 struct arg_dev_net_ip {
2260 struct net_device *dev;
2262 struct in6_addr *addr;
2265 static int fib6_remove_prefsrc(struct rt6_info *rt, void *arg)
2267 struct net_device *dev = ((struct arg_dev_net_ip *)arg)->dev;
2268 struct net *net = ((struct arg_dev_net_ip *)arg)->net;
2269 struct in6_addr *addr = ((struct arg_dev_net_ip *)arg)->addr;
2271 if (((void *)rt->dst.dev == dev || !dev) &&
2272 rt != net->ipv6.ip6_null_entry &&
2273 ipv6_addr_equal(addr, &rt->rt6i_prefsrc.addr)) {
2274 /* remove prefsrc entry */
2275 rt->rt6i_prefsrc.plen = 0;
2280 void rt6_remove_prefsrc(struct inet6_ifaddr *ifp)
2282 struct net *net = dev_net(ifp->idev->dev);
2283 struct arg_dev_net_ip adni = {
2284 .dev = ifp->idev->dev,
2288 fib6_clean_all(net, fib6_remove_prefsrc, &adni);
2291 #define RTF_RA_ROUTER (RTF_ADDRCONF | RTF_DEFAULT | RTF_GATEWAY)
2292 #define RTF_CACHE_GATEWAY (RTF_GATEWAY | RTF_CACHE)
2294 /* Remove routers and update dst entries when gateway turn into host. */
2295 static int fib6_clean_tohost(struct rt6_info *rt, void *arg)
2297 struct in6_addr *gateway = (struct in6_addr *)arg;
2299 if ((((rt->rt6i_flags & RTF_RA_ROUTER) == RTF_RA_ROUTER) ||
2300 ((rt->rt6i_flags & RTF_CACHE_GATEWAY) == RTF_CACHE_GATEWAY)) &&
2301 ipv6_addr_equal(gateway, &rt->rt6i_gateway)) {
2307 void rt6_clean_tohost(struct net *net, struct in6_addr *gateway)
2309 fib6_clean_all(net, fib6_clean_tohost, gateway);
2312 struct arg_dev_net {
2313 struct net_device *dev;
2317 static int fib6_ifdown(struct rt6_info *rt, void *arg)
2319 const struct arg_dev_net *adn = arg;
2320 const struct net_device *dev = adn->dev;
2322 if ((rt->dst.dev == dev || !dev) &&
2323 rt != adn->net->ipv6.ip6_null_entry)
2329 void rt6_ifdown(struct net *net, struct net_device *dev)
2331 struct arg_dev_net adn = {
2336 fib6_clean_all(net, fib6_ifdown, &adn);
2337 icmp6_clean_all(fib6_ifdown, &adn);
2340 struct rt6_mtu_change_arg {
2341 struct net_device *dev;
2345 static int rt6_mtu_change_route(struct rt6_info *rt, void *p_arg)
2347 struct rt6_mtu_change_arg *arg = (struct rt6_mtu_change_arg *) p_arg;
2348 struct inet6_dev *idev;
2350 /* In IPv6 pmtu discovery is not optional,
2351 so that RTAX_MTU lock cannot disable it.
2352 We still use this lock to block changes
2353 caused by addrconf/ndisc.
2356 idev = __in6_dev_get(arg->dev);
2360 /* For administrative MTU increase, there is no way to discover
2361 IPv6 PMTU increase, so PMTU increase should be updated here.
2362 Since RFC 1981 doesn't include administrative MTU increase
2363 update PMTU increase is a MUST. (i.e. jumbo frame)
2366 If new MTU is less than route PMTU, this new MTU will be the
2367 lowest MTU in the path, update the route PMTU to reflect PMTU
2368 decreases; if new MTU is greater than route PMTU, and the
2369 old MTU is the lowest MTU in the path, update the route PMTU
2370 to reflect the increase. In this case if the other nodes' MTU
2371 also have the lowest MTU, TOO BIG MESSAGE will be lead to
2374 if (rt->dst.dev == arg->dev &&
2375 !dst_metric_locked(&rt->dst, RTAX_MTU)) {
2376 if (rt->rt6i_flags & RTF_CACHE) {
2377 /* For RTF_CACHE with rt6i_pmtu == 0
2378 * (i.e. a redirected route),
2379 * the metrics of its rt->dst.from has already
2382 if (rt->rt6i_pmtu && rt->rt6i_pmtu > arg->mtu)
2383 rt->rt6i_pmtu = arg->mtu;
2384 } else if (dst_mtu(&rt->dst) >= arg->mtu ||
2385 (dst_mtu(&rt->dst) < arg->mtu &&
2386 dst_mtu(&rt->dst) == idev->cnf.mtu6)) {
2387 dst_metric_set(&rt->dst, RTAX_MTU, arg->mtu);
2393 void rt6_mtu_change(struct net_device *dev, unsigned int mtu)
2395 struct rt6_mtu_change_arg arg = {
2400 fib6_clean_all(dev_net(dev), rt6_mtu_change_route, &arg);
2403 static const struct nla_policy rtm_ipv6_policy[RTA_MAX+1] = {
2404 [RTA_GATEWAY] = { .len = sizeof(struct in6_addr) },
2405 [RTA_OIF] = { .type = NLA_U32 },
2406 [RTA_IIF] = { .type = NLA_U32 },
2407 [RTA_PRIORITY] = { .type = NLA_U32 },
2408 [RTA_METRICS] = { .type = NLA_NESTED },
2409 [RTA_MULTIPATH] = { .len = sizeof(struct rtnexthop) },
2410 [RTA_PREF] = { .type = NLA_U8 },
2413 static int rtm_to_fib6_config(struct sk_buff *skb, struct nlmsghdr *nlh,
2414 struct fib6_config *cfg)
2417 struct nlattr *tb[RTA_MAX+1];
2421 err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy);
2426 rtm = nlmsg_data(nlh);
2427 memset(cfg, 0, sizeof(*cfg));
2429 cfg->fc_table = rtm->rtm_table;
2430 cfg->fc_dst_len = rtm->rtm_dst_len;
2431 cfg->fc_src_len = rtm->rtm_src_len;
2432 cfg->fc_flags = RTF_UP;
2433 cfg->fc_protocol = rtm->rtm_protocol;
2434 cfg->fc_type = rtm->rtm_type;
2436 if (rtm->rtm_type == RTN_UNREACHABLE ||
2437 rtm->rtm_type == RTN_BLACKHOLE ||
2438 rtm->rtm_type == RTN_PROHIBIT ||
2439 rtm->rtm_type == RTN_THROW)
2440 cfg->fc_flags |= RTF_REJECT;
2442 if (rtm->rtm_type == RTN_LOCAL)
2443 cfg->fc_flags |= RTF_LOCAL;
2445 if (rtm->rtm_flags & RTM_F_CLONED)
2446 cfg->fc_flags |= RTF_CACHE;
2448 cfg->fc_nlinfo.portid = NETLINK_CB(skb).portid;
2449 cfg->fc_nlinfo.nlh = nlh;
2450 cfg->fc_nlinfo.nl_net = sock_net(skb->sk);
2452 if (tb[RTA_GATEWAY]) {
2453 cfg->fc_gateway = nla_get_in6_addr(tb[RTA_GATEWAY]);
2454 cfg->fc_flags |= RTF_GATEWAY;
2458 int plen = (rtm->rtm_dst_len + 7) >> 3;
2460 if (nla_len(tb[RTA_DST]) < plen)
2463 nla_memcpy(&cfg->fc_dst, tb[RTA_DST], plen);
2467 int plen = (rtm->rtm_src_len + 7) >> 3;
2469 if (nla_len(tb[RTA_SRC]) < plen)
2472 nla_memcpy(&cfg->fc_src, tb[RTA_SRC], plen);
2475 if (tb[RTA_PREFSRC])
2476 cfg->fc_prefsrc = nla_get_in6_addr(tb[RTA_PREFSRC]);
2479 cfg->fc_ifindex = nla_get_u32(tb[RTA_OIF]);
2481 if (tb[RTA_PRIORITY])
2482 cfg->fc_metric = nla_get_u32(tb[RTA_PRIORITY]);
2484 if (tb[RTA_METRICS]) {
2485 cfg->fc_mx = nla_data(tb[RTA_METRICS]);
2486 cfg->fc_mx_len = nla_len(tb[RTA_METRICS]);
2490 cfg->fc_table = nla_get_u32(tb[RTA_TABLE]);
2492 if (tb[RTA_MULTIPATH]) {
2493 cfg->fc_mp = nla_data(tb[RTA_MULTIPATH]);
2494 cfg->fc_mp_len = nla_len(tb[RTA_MULTIPATH]);
2498 pref = nla_get_u8(tb[RTA_PREF]);
2499 if (pref != ICMPV6_ROUTER_PREF_LOW &&
2500 pref != ICMPV6_ROUTER_PREF_HIGH)
2501 pref = ICMPV6_ROUTER_PREF_MEDIUM;
2502 cfg->fc_flags |= RTF_PREF(pref);
2510 static int ip6_route_multipath(struct fib6_config *cfg, int add)
2512 struct fib6_config r_cfg;
2513 struct rtnexthop *rtnh;
2516 int err = 0, last_err = 0;
2518 remaining = cfg->fc_mp_len;
2520 rtnh = (struct rtnexthop *)cfg->fc_mp;
2522 /* Parse a Multipath Entry */
2523 while (rtnh_ok(rtnh, remaining)) {
2524 memcpy(&r_cfg, cfg, sizeof(*cfg));
2525 if (rtnh->rtnh_ifindex)
2526 r_cfg.fc_ifindex = rtnh->rtnh_ifindex;
2528 attrlen = rtnh_attrlen(rtnh);
2530 struct nlattr *nla, *attrs = rtnh_attrs(rtnh);
2532 nla = nla_find(attrs, attrlen, RTA_GATEWAY);
2534 r_cfg.fc_gateway = nla_get_in6_addr(nla);
2535 r_cfg.fc_flags |= RTF_GATEWAY;
2538 err = add ? ip6_route_add(&r_cfg) : ip6_route_del(&r_cfg);
2541 /* If we are trying to remove a route, do not stop the
2542 * loop when ip6_route_del() fails (because next hop is
2543 * already gone), we should try to remove all next hops.
2546 /* If add fails, we should try to delete all
2547 * next hops that have been already added.
2550 remaining = cfg->fc_mp_len - remaining;
2554 /* Because each route is added like a single route we remove
2555 * these flags after the first nexthop: if there is a collision,
2556 * we have already failed to add the first nexthop:
2557 * fib6_add_rt2node() has rejected it; when replacing, old
2558 * nexthops have been replaced by first new, the rest should
2561 cfg->fc_nlinfo.nlh->nlmsg_flags &= ~(NLM_F_EXCL |
2563 rtnh = rtnh_next(rtnh, &remaining);
2569 static int inet6_rtm_delroute(struct sk_buff *skb, struct nlmsghdr *nlh)
2571 struct fib6_config cfg;
2574 err = rtm_to_fib6_config(skb, nlh, &cfg);
2579 return ip6_route_multipath(&cfg, 0);
2581 return ip6_route_del(&cfg);
2584 static int inet6_rtm_newroute(struct sk_buff *skb, struct nlmsghdr *nlh)
2586 struct fib6_config cfg;
2589 err = rtm_to_fib6_config(skb, nlh, &cfg);
2594 return ip6_route_multipath(&cfg, 1);
2596 return ip6_route_add(&cfg);
2599 static inline size_t rt6_nlmsg_size(void)
2601 return NLMSG_ALIGN(sizeof(struct rtmsg))
2602 + nla_total_size(16) /* RTA_SRC */
2603 + nla_total_size(16) /* RTA_DST */
2604 + nla_total_size(16) /* RTA_GATEWAY */
2605 + nla_total_size(16) /* RTA_PREFSRC */
2606 + nla_total_size(4) /* RTA_TABLE */
2607 + nla_total_size(4) /* RTA_IIF */
2608 + nla_total_size(4) /* RTA_OIF */
2609 + nla_total_size(4) /* RTA_PRIORITY */
2610 + RTAX_MAX * nla_total_size(4) /* RTA_METRICS */
2611 + nla_total_size(sizeof(struct rta_cacheinfo))
2612 + nla_total_size(TCP_CA_NAME_MAX) /* RTAX_CC_ALGO */
2613 + nla_total_size(1); /* RTA_PREF */
2616 static int rt6_fill_node(struct net *net,
2617 struct sk_buff *skb, struct rt6_info *rt,
2618 struct in6_addr *dst, struct in6_addr *src,
2619 int iif, int type, u32 portid, u32 seq,
2620 int prefix, int nowait, unsigned int flags)
2622 u32 metrics[RTAX_MAX];
2624 struct nlmsghdr *nlh;
2628 if (prefix) { /* user wants prefix routes only */
2629 if (!(rt->rt6i_flags & RTF_PREFIX_RT)) {
2630 /* success since this is not a prefix route */
2635 nlh = nlmsg_put(skb, portid, seq, type, sizeof(*rtm), flags);
2639 rtm = nlmsg_data(nlh);
2640 rtm->rtm_family = AF_INET6;
2641 rtm->rtm_dst_len = rt->rt6i_dst.plen;
2642 rtm->rtm_src_len = rt->rt6i_src.plen;
2645 table = rt->rt6i_table->tb6_id;
2647 table = RT6_TABLE_UNSPEC;
2648 rtm->rtm_table = table;
2649 if (nla_put_u32(skb, RTA_TABLE, table))
2650 goto nla_put_failure;
2651 if (rt->rt6i_flags & RTF_REJECT) {
2652 switch (rt->dst.error) {
2654 rtm->rtm_type = RTN_BLACKHOLE;
2657 rtm->rtm_type = RTN_PROHIBIT;
2660 rtm->rtm_type = RTN_THROW;
2663 rtm->rtm_type = RTN_UNREACHABLE;
2667 else if (rt->rt6i_flags & RTF_LOCAL)
2668 rtm->rtm_type = RTN_LOCAL;
2669 else if (rt->dst.dev && (rt->dst.dev->flags & IFF_LOOPBACK))
2670 rtm->rtm_type = RTN_LOCAL;
2672 rtm->rtm_type = RTN_UNICAST;
2674 rtm->rtm_scope = RT_SCOPE_UNIVERSE;
2675 rtm->rtm_protocol = rt->rt6i_protocol;
2676 if (rt->rt6i_flags & RTF_DYNAMIC)
2677 rtm->rtm_protocol = RTPROT_REDIRECT;
2678 else if (rt->rt6i_flags & RTF_ADDRCONF) {
2679 if (rt->rt6i_flags & (RTF_DEFAULT | RTF_ROUTEINFO))
2680 rtm->rtm_protocol = RTPROT_RA;
2682 rtm->rtm_protocol = RTPROT_KERNEL;
2685 if (rt->rt6i_flags & RTF_CACHE)
2686 rtm->rtm_flags |= RTM_F_CLONED;
2689 if (nla_put_in6_addr(skb, RTA_DST, dst))
2690 goto nla_put_failure;
2691 rtm->rtm_dst_len = 128;
2692 } else if (rtm->rtm_dst_len)
2693 if (nla_put_in6_addr(skb, RTA_DST, &rt->rt6i_dst.addr))
2694 goto nla_put_failure;
2695 #ifdef CONFIG_IPV6_SUBTREES
2697 if (nla_put_in6_addr(skb, RTA_SRC, src))
2698 goto nla_put_failure;
2699 rtm->rtm_src_len = 128;
2700 } else if (rtm->rtm_src_len &&
2701 nla_put_in6_addr(skb, RTA_SRC, &rt->rt6i_src.addr))
2702 goto nla_put_failure;
2705 #ifdef CONFIG_IPV6_MROUTE
2706 if (ipv6_addr_is_multicast(&rt->rt6i_dst.addr)) {
2707 int err = ip6mr_get_route(net, skb, rtm, nowait);
2712 goto nla_put_failure;
2714 if (err == -EMSGSIZE)
2715 goto nla_put_failure;
2720 if (nla_put_u32(skb, RTA_IIF, iif))
2721 goto nla_put_failure;
2723 struct in6_addr saddr_buf;
2724 if (ip6_route_get_saddr(net, rt, dst, 0, &saddr_buf) == 0 &&
2725 nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf))
2726 goto nla_put_failure;
2729 if (rt->rt6i_prefsrc.plen) {
2730 struct in6_addr saddr_buf;
2731 saddr_buf = rt->rt6i_prefsrc.addr;
2732 if (nla_put_in6_addr(skb, RTA_PREFSRC, &saddr_buf))
2733 goto nla_put_failure;
2736 memcpy(metrics, dst_metrics_ptr(&rt->dst), sizeof(metrics));
2738 metrics[RTAX_MTU - 1] = rt->rt6i_pmtu;
2739 if (rtnetlink_put_metrics(skb, metrics) < 0)
2740 goto nla_put_failure;
2742 if (rt->rt6i_flags & RTF_GATEWAY) {
2743 if (nla_put_in6_addr(skb, RTA_GATEWAY, &rt->rt6i_gateway) < 0)
2744 goto nla_put_failure;
2748 nla_put_u32(skb, RTA_OIF, rt->dst.dev->ifindex))
2749 goto nla_put_failure;
2750 if (nla_put_u32(skb, RTA_PRIORITY, rt->rt6i_metric))
2751 goto nla_put_failure;
2753 expires = (rt->rt6i_flags & RTF_EXPIRES) ? rt->dst.expires - jiffies : 0;
2755 if (rtnl_put_cacheinfo(skb, &rt->dst, 0, expires, rt->dst.error) < 0)
2756 goto nla_put_failure;
2758 if (nla_put_u8(skb, RTA_PREF, IPV6_EXTRACT_PREF(rt->rt6i_flags)))
2759 goto nla_put_failure;
2761 nlmsg_end(skb, nlh);
2765 nlmsg_cancel(skb, nlh);
2769 int rt6_dump_route(struct rt6_info *rt, void *p_arg)
2771 struct rt6_rtnl_dump_arg *arg = (struct rt6_rtnl_dump_arg *) p_arg;
2774 if (nlmsg_len(arg->cb->nlh) >= sizeof(struct rtmsg)) {
2775 struct rtmsg *rtm = nlmsg_data(arg->cb->nlh);
2776 prefix = (rtm->rtm_flags & RTM_F_PREFIX) != 0;
2780 return rt6_fill_node(arg->net,
2781 arg->skb, rt, NULL, NULL, 0, RTM_NEWROUTE,
2782 NETLINK_CB(arg->cb->skb).portid, arg->cb->nlh->nlmsg_seq,
2783 prefix, 0, NLM_F_MULTI);
2786 static int inet6_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr *nlh)
2788 struct net *net = sock_net(in_skb->sk);
2789 struct nlattr *tb[RTA_MAX+1];
2790 struct rt6_info *rt;
2791 struct sk_buff *skb;
2794 int err, iif = 0, oif = 0;
2796 err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv6_policy);
2801 memset(&fl6, 0, sizeof(fl6));
2804 if (nla_len(tb[RTA_SRC]) < sizeof(struct in6_addr))
2807 fl6.saddr = *(struct in6_addr *)nla_data(tb[RTA_SRC]);
2811 if (nla_len(tb[RTA_DST]) < sizeof(struct in6_addr))
2814 fl6.daddr = *(struct in6_addr *)nla_data(tb[RTA_DST]);
2818 iif = nla_get_u32(tb[RTA_IIF]);
2821 oif = nla_get_u32(tb[RTA_OIF]);
2824 fl6.flowi6_mark = nla_get_u32(tb[RTA_MARK]);
2827 struct net_device *dev;
2830 dev = __dev_get_by_index(net, iif);
2836 fl6.flowi6_iif = iif;
2838 if (!ipv6_addr_any(&fl6.saddr))
2839 flags |= RT6_LOOKUP_F_HAS_SADDR;
2841 rt = (struct rt6_info *)ip6_route_input_lookup(net, dev, &fl6,
2844 fl6.flowi6_oif = oif;
2846 rt = (struct rt6_info *)ip6_route_output(net, NULL, &fl6);
2849 skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL);
2856 /* Reserve room for dummy headers, this skb can pass
2857 through good chunk of routing engine.
2859 skb_reset_mac_header(skb);
2860 skb_reserve(skb, MAX_HEADER + sizeof(struct ipv6hdr));
2862 skb_dst_set(skb, &rt->dst);
2864 err = rt6_fill_node(net, skb, rt, &fl6.daddr, &fl6.saddr, iif,
2865 RTM_NEWROUTE, NETLINK_CB(in_skb).portid,
2866 nlh->nlmsg_seq, 0, 0, 0);
2872 err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).portid);
2877 void inet6_rt_notify(int event, struct rt6_info *rt, struct nl_info *info)
2879 struct sk_buff *skb;
2880 struct net *net = info->nl_net;
2885 seq = info->nlh ? info->nlh->nlmsg_seq : 0;
2887 skb = nlmsg_new(rt6_nlmsg_size(), gfp_any());
2891 err = rt6_fill_node(net, skb, rt, NULL, NULL, 0,
2892 event, info->portid, seq, 0, 0, 0);
2894 /* -EMSGSIZE implies BUG in rt6_nlmsg_size() */
2895 WARN_ON(err == -EMSGSIZE);
2899 rtnl_notify(skb, net, info->portid, RTNLGRP_IPV6_ROUTE,
2900 info->nlh, gfp_any());
2904 rtnl_set_sk_err(net, RTNLGRP_IPV6_ROUTE, err);
2907 static int ip6_route_dev_notify(struct notifier_block *this,
2908 unsigned long event, void *ptr)
2910 struct net_device *dev = netdev_notifier_info_to_dev(ptr);
2911 struct net *net = dev_net(dev);
2913 if (event == NETDEV_REGISTER && (dev->flags & IFF_LOOPBACK)) {
2914 net->ipv6.ip6_null_entry->dst.dev = dev;
2915 net->ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(dev);
2916 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
2917 net->ipv6.ip6_prohibit_entry->dst.dev = dev;
2918 net->ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(dev);
2919 net->ipv6.ip6_blk_hole_entry->dst.dev = dev;
2920 net->ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(dev);
2931 #ifdef CONFIG_PROC_FS
2933 static const struct file_operations ipv6_route_proc_fops = {
2934 .owner = THIS_MODULE,
2935 .open = ipv6_route_open,
2937 .llseek = seq_lseek,
2938 .release = seq_release_net,
2941 static int rt6_stats_seq_show(struct seq_file *seq, void *v)
2943 struct net *net = (struct net *)seq->private;
2944 seq_printf(seq, "%04x %04x %04x %04x %04x %04x %04x\n",
2945 net->ipv6.rt6_stats->fib_nodes,
2946 net->ipv6.rt6_stats->fib_route_nodes,
2947 net->ipv6.rt6_stats->fib_rt_alloc,
2948 net->ipv6.rt6_stats->fib_rt_entries,
2949 net->ipv6.rt6_stats->fib_rt_cache,
2950 dst_entries_get_slow(&net->ipv6.ip6_dst_ops),
2951 net->ipv6.rt6_stats->fib_discarded_routes);
2956 static int rt6_stats_seq_open(struct inode *inode, struct file *file)
2958 return single_open_net(inode, file, rt6_stats_seq_show);
2961 static const struct file_operations rt6_stats_seq_fops = {
2962 .owner = THIS_MODULE,
2963 .open = rt6_stats_seq_open,
2965 .llseek = seq_lseek,
2966 .release = single_release_net,
2968 #endif /* CONFIG_PROC_FS */
2970 #ifdef CONFIG_SYSCTL
2973 int ipv6_sysctl_rtcache_flush(struct ctl_table *ctl, int write,
2974 void __user *buffer, size_t *lenp, loff_t *ppos)
2981 net = (struct net *)ctl->extra1;
2982 delay = net->ipv6.sysctl.flush_delay;
2983 proc_dointvec(ctl, write, buffer, lenp, ppos);
2984 fib6_run_gc(delay <= 0 ? 0 : (unsigned long)delay, net, delay > 0);
2988 struct ctl_table ipv6_route_table_template[] = {
2990 .procname = "flush",
2991 .data = &init_net.ipv6.sysctl.flush_delay,
2992 .maxlen = sizeof(int),
2994 .proc_handler = ipv6_sysctl_rtcache_flush
2997 .procname = "gc_thresh",
2998 .data = &ip6_dst_ops_template.gc_thresh,
2999 .maxlen = sizeof(int),
3001 .proc_handler = proc_dointvec,
3004 .procname = "max_size",
3005 .data = &init_net.ipv6.sysctl.ip6_rt_max_size,
3006 .maxlen = sizeof(int),
3008 .proc_handler = proc_dointvec,
3011 .procname = "gc_min_interval",
3012 .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval,
3013 .maxlen = sizeof(int),
3015 .proc_handler = proc_dointvec_jiffies,
3018 .procname = "gc_timeout",
3019 .data = &init_net.ipv6.sysctl.ip6_rt_gc_timeout,
3020 .maxlen = sizeof(int),
3022 .proc_handler = proc_dointvec_jiffies,
3025 .procname = "gc_interval",
3026 .data = &init_net.ipv6.sysctl.ip6_rt_gc_interval,
3027 .maxlen = sizeof(int),
3029 .proc_handler = proc_dointvec_jiffies,
3032 .procname = "gc_elasticity",
3033 .data = &init_net.ipv6.sysctl.ip6_rt_gc_elasticity,
3034 .maxlen = sizeof(int),
3036 .proc_handler = proc_dointvec,
3039 .procname = "mtu_expires",
3040 .data = &init_net.ipv6.sysctl.ip6_rt_mtu_expires,
3041 .maxlen = sizeof(int),
3043 .proc_handler = proc_dointvec_jiffies,
3046 .procname = "min_adv_mss",
3047 .data = &init_net.ipv6.sysctl.ip6_rt_min_advmss,
3048 .maxlen = sizeof(int),
3050 .proc_handler = proc_dointvec,
3053 .procname = "gc_min_interval_ms",
3054 .data = &init_net.ipv6.sysctl.ip6_rt_gc_min_interval,
3055 .maxlen = sizeof(int),
3057 .proc_handler = proc_dointvec_ms_jiffies,
3062 struct ctl_table * __net_init ipv6_route_sysctl_init(struct net *net)
3064 struct ctl_table *table;
3066 table = kmemdup(ipv6_route_table_template,
3067 sizeof(ipv6_route_table_template),
3071 table[0].data = &net->ipv6.sysctl.flush_delay;
3072 table[0].extra1 = net;
3073 table[1].data = &net->ipv6.ip6_dst_ops.gc_thresh;
3074 table[2].data = &net->ipv6.sysctl.ip6_rt_max_size;
3075 table[3].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval;
3076 table[4].data = &net->ipv6.sysctl.ip6_rt_gc_timeout;
3077 table[5].data = &net->ipv6.sysctl.ip6_rt_gc_interval;
3078 table[6].data = &net->ipv6.sysctl.ip6_rt_gc_elasticity;
3079 table[7].data = &net->ipv6.sysctl.ip6_rt_mtu_expires;
3080 table[8].data = &net->ipv6.sysctl.ip6_rt_min_advmss;
3081 table[9].data = &net->ipv6.sysctl.ip6_rt_gc_min_interval;
3083 /* Don't export sysctls to unprivileged users */
3084 if (net->user_ns != &init_user_ns)
3085 table[0].procname = NULL;
3092 static int __net_init ip6_route_net_init(struct net *net)
3096 memcpy(&net->ipv6.ip6_dst_ops, &ip6_dst_ops_template,
3097 sizeof(net->ipv6.ip6_dst_ops));
3099 if (dst_entries_init(&net->ipv6.ip6_dst_ops) < 0)
3100 goto out_ip6_dst_ops;
3102 net->ipv6.ip6_null_entry = kmemdup(&ip6_null_entry_template,
3103 sizeof(*net->ipv6.ip6_null_entry),
3105 if (!net->ipv6.ip6_null_entry)
3106 goto out_ip6_dst_entries;
3107 net->ipv6.ip6_null_entry->dst.path =
3108 (struct dst_entry *)net->ipv6.ip6_null_entry;
3109 net->ipv6.ip6_null_entry->dst.ops = &net->ipv6.ip6_dst_ops;
3110 dst_init_metrics(&net->ipv6.ip6_null_entry->dst,
3111 ip6_template_metrics, true);
3113 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
3114 net->ipv6.ip6_prohibit_entry = kmemdup(&ip6_prohibit_entry_template,
3115 sizeof(*net->ipv6.ip6_prohibit_entry),
3117 if (!net->ipv6.ip6_prohibit_entry)
3118 goto out_ip6_null_entry;
3119 net->ipv6.ip6_prohibit_entry->dst.path =
3120 (struct dst_entry *)net->ipv6.ip6_prohibit_entry;
3121 net->ipv6.ip6_prohibit_entry->dst.ops = &net->ipv6.ip6_dst_ops;
3122 dst_init_metrics(&net->ipv6.ip6_prohibit_entry->dst,
3123 ip6_template_metrics, true);
3125 net->ipv6.ip6_blk_hole_entry = kmemdup(&ip6_blk_hole_entry_template,
3126 sizeof(*net->ipv6.ip6_blk_hole_entry),
3128 if (!net->ipv6.ip6_blk_hole_entry)
3129 goto out_ip6_prohibit_entry;
3130 net->ipv6.ip6_blk_hole_entry->dst.path =
3131 (struct dst_entry *)net->ipv6.ip6_blk_hole_entry;
3132 net->ipv6.ip6_blk_hole_entry->dst.ops = &net->ipv6.ip6_dst_ops;
3133 dst_init_metrics(&net->ipv6.ip6_blk_hole_entry->dst,
3134 ip6_template_metrics, true);
3137 net->ipv6.sysctl.flush_delay = 0;
3138 net->ipv6.sysctl.ip6_rt_max_size = 4096;
3139 net->ipv6.sysctl.ip6_rt_gc_min_interval = HZ / 2;
3140 net->ipv6.sysctl.ip6_rt_gc_timeout = 60*HZ;
3141 net->ipv6.sysctl.ip6_rt_gc_interval = 30*HZ;
3142 net->ipv6.sysctl.ip6_rt_gc_elasticity = 9;
3143 net->ipv6.sysctl.ip6_rt_mtu_expires = 10*60*HZ;
3144 net->ipv6.sysctl.ip6_rt_min_advmss = IPV6_MIN_MTU - 20 - 40;
3146 net->ipv6.ip6_rt_gc_expire = 30*HZ;
3152 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
3153 out_ip6_prohibit_entry:
3154 kfree(net->ipv6.ip6_prohibit_entry);
3156 kfree(net->ipv6.ip6_null_entry);
3158 out_ip6_dst_entries:
3159 dst_entries_destroy(&net->ipv6.ip6_dst_ops);
3164 static void __net_exit ip6_route_net_exit(struct net *net)
3166 kfree(net->ipv6.ip6_null_entry);
3167 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
3168 kfree(net->ipv6.ip6_prohibit_entry);
3169 kfree(net->ipv6.ip6_blk_hole_entry);
3171 dst_entries_destroy(&net->ipv6.ip6_dst_ops);
3174 static int __net_init ip6_route_net_init_late(struct net *net)
3176 #ifdef CONFIG_PROC_FS
3177 proc_create("ipv6_route", 0, net->proc_net, &ipv6_route_proc_fops);
3178 proc_create("rt6_stats", S_IRUGO, net->proc_net, &rt6_stats_seq_fops);
3183 static void __net_exit ip6_route_net_exit_late(struct net *net)
3185 #ifdef CONFIG_PROC_FS
3186 remove_proc_entry("ipv6_route", net->proc_net);
3187 remove_proc_entry("rt6_stats", net->proc_net);
3191 static struct pernet_operations ip6_route_net_ops = {
3192 .init = ip6_route_net_init,
3193 .exit = ip6_route_net_exit,
3196 static int __net_init ipv6_inetpeer_init(struct net *net)
3198 struct inet_peer_base *bp = kmalloc(sizeof(*bp), GFP_KERNEL);
3202 inet_peer_base_init(bp);
3203 net->ipv6.peers = bp;
3207 static void __net_exit ipv6_inetpeer_exit(struct net *net)
3209 struct inet_peer_base *bp = net->ipv6.peers;
3211 net->ipv6.peers = NULL;
3212 inetpeer_invalidate_tree(bp);
3216 static struct pernet_operations ipv6_inetpeer_ops = {
3217 .init = ipv6_inetpeer_init,
3218 .exit = ipv6_inetpeer_exit,
3221 static struct pernet_operations ip6_route_net_late_ops = {
3222 .init = ip6_route_net_init_late,
3223 .exit = ip6_route_net_exit_late,
3226 static struct notifier_block ip6_route_dev_notifier = {
3227 .notifier_call = ip6_route_dev_notify,
3231 int __init ip6_route_init(void)
3236 ip6_dst_ops_template.kmem_cachep =
3237 kmem_cache_create("ip6_dst_cache", sizeof(struct rt6_info), 0,
3238 SLAB_HWCACHE_ALIGN, NULL);
3239 if (!ip6_dst_ops_template.kmem_cachep)
3242 ret = dst_entries_init(&ip6_dst_blackhole_ops);
3244 goto out_kmem_cache;
3246 ret = register_pernet_subsys(&ipv6_inetpeer_ops);
3248 goto out_dst_entries;
3250 ret = register_pernet_subsys(&ip6_route_net_ops);
3252 goto out_register_inetpeer;
3254 ip6_dst_blackhole_ops.kmem_cachep = ip6_dst_ops_template.kmem_cachep;
3256 /* Registering of the loopback is done before this portion of code,
3257 * the loopback reference in rt6_info will not be taken, do it
3258 * manually for init_net */
3259 init_net.ipv6.ip6_null_entry->dst.dev = init_net.loopback_dev;
3260 init_net.ipv6.ip6_null_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
3261 #ifdef CONFIG_IPV6_MULTIPLE_TABLES
3262 init_net.ipv6.ip6_prohibit_entry->dst.dev = init_net.loopback_dev;
3263 init_net.ipv6.ip6_prohibit_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
3264 init_net.ipv6.ip6_blk_hole_entry->dst.dev = init_net.loopback_dev;
3265 init_net.ipv6.ip6_blk_hole_entry->rt6i_idev = in6_dev_get(init_net.loopback_dev);
3269 goto out_register_subsys;
3275 ret = fib6_rules_init();
3279 ret = register_pernet_subsys(&ip6_route_net_late_ops);
3281 goto fib6_rules_init;
3284 if (__rtnl_register(PF_INET6, RTM_NEWROUTE, inet6_rtm_newroute, NULL, NULL) ||
3285 __rtnl_register(PF_INET6, RTM_DELROUTE, inet6_rtm_delroute, NULL, NULL) ||
3286 __rtnl_register(PF_INET6, RTM_GETROUTE, inet6_rtm_getroute, NULL, NULL))
3287 goto out_register_late_subsys;
3289 ret = register_netdevice_notifier(&ip6_route_dev_notifier);
3291 goto out_register_late_subsys;
3296 out_register_late_subsys:
3297 unregister_pernet_subsys(&ip6_route_net_late_ops);
3299 fib6_rules_cleanup();
3304 out_register_subsys:
3305 unregister_pernet_subsys(&ip6_route_net_ops);
3306 out_register_inetpeer:
3307 unregister_pernet_subsys(&ipv6_inetpeer_ops);
3309 dst_entries_destroy(&ip6_dst_blackhole_ops);
3311 kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep);
3315 void ip6_route_cleanup(void)
3317 unregister_netdevice_notifier(&ip6_route_dev_notifier);
3318 unregister_pernet_subsys(&ip6_route_net_late_ops);
3319 fib6_rules_cleanup();
3322 unregister_pernet_subsys(&ipv6_inetpeer_ops);
3323 unregister_pernet_subsys(&ip6_route_net_ops);
3324 dst_entries_destroy(&ip6_dst_blackhole_ops);
3325 kmem_cache_destroy(ip6_dst_ops_template.kmem_cachep);