162306a36Sopenharmony_ci// SPDX-License-Identifier: GPL-2.0-or-later 262306a36Sopenharmony_ci/* 362306a36Sopenharmony_ci * IPv6 tunneling device 462306a36Sopenharmony_ci * Linux INET6 implementation 562306a36Sopenharmony_ci * 662306a36Sopenharmony_ci * Authors: 762306a36Sopenharmony_ci * Ville Nuorvala <vnuorval@tcs.hut.fi> 862306a36Sopenharmony_ci * Yasuyuki Kozakai <kozakai@linux-ipv6.org> 962306a36Sopenharmony_ci * 1062306a36Sopenharmony_ci * Based on: 1162306a36Sopenharmony_ci * linux/net/ipv6/sit.c and linux/net/ipv4/ipip.c 1262306a36Sopenharmony_ci * 1362306a36Sopenharmony_ci * RFC 2473 1462306a36Sopenharmony_ci */ 1562306a36Sopenharmony_ci 1662306a36Sopenharmony_ci#define pr_fmt(fmt) KBUILD_MODNAME ": " fmt 1762306a36Sopenharmony_ci 1862306a36Sopenharmony_ci#include <linux/module.h> 1962306a36Sopenharmony_ci#include <linux/capability.h> 2062306a36Sopenharmony_ci#include <linux/errno.h> 2162306a36Sopenharmony_ci#include <linux/types.h> 2262306a36Sopenharmony_ci#include <linux/sockios.h> 2362306a36Sopenharmony_ci#include <linux/icmp.h> 2462306a36Sopenharmony_ci#include <linux/if.h> 2562306a36Sopenharmony_ci#include <linux/in.h> 2662306a36Sopenharmony_ci#include <linux/ip.h> 2762306a36Sopenharmony_ci#include <linux/net.h> 2862306a36Sopenharmony_ci#include <linux/in6.h> 2962306a36Sopenharmony_ci#include <linux/netdevice.h> 3062306a36Sopenharmony_ci#include <linux/if_arp.h> 3162306a36Sopenharmony_ci#include <linux/icmpv6.h> 3262306a36Sopenharmony_ci#include <linux/init.h> 3362306a36Sopenharmony_ci#include <linux/route.h> 3462306a36Sopenharmony_ci#include <linux/rtnetlink.h> 3562306a36Sopenharmony_ci#include <linux/netfilter_ipv6.h> 3662306a36Sopenharmony_ci#include <linux/slab.h> 3762306a36Sopenharmony_ci#include <linux/hash.h> 3862306a36Sopenharmony_ci#include <linux/etherdevice.h> 3962306a36Sopenharmony_ci 4062306a36Sopenharmony_ci#include <linux/uaccess.h> 4162306a36Sopenharmony_ci#include <linux/atomic.h> 4262306a36Sopenharmony_ci 4362306a36Sopenharmony_ci#include <net/icmp.h> 4462306a36Sopenharmony_ci#include <net/ip.h> 4562306a36Sopenharmony_ci#include <net/ip_tunnels.h> 4662306a36Sopenharmony_ci#include <net/ipv6.h> 4762306a36Sopenharmony_ci#include <net/ip6_route.h> 4862306a36Sopenharmony_ci#include <net/addrconf.h> 4962306a36Sopenharmony_ci#include <net/ip6_tunnel.h> 5062306a36Sopenharmony_ci#include <net/xfrm.h> 5162306a36Sopenharmony_ci#include <net/dsfield.h> 5262306a36Sopenharmony_ci#include <net/inet_ecn.h> 5362306a36Sopenharmony_ci#include <net/net_namespace.h> 5462306a36Sopenharmony_ci#include <net/netns/generic.h> 5562306a36Sopenharmony_ci#include <net/dst_metadata.h> 5662306a36Sopenharmony_ci 5762306a36Sopenharmony_ciMODULE_AUTHOR("Ville Nuorvala"); 5862306a36Sopenharmony_ciMODULE_DESCRIPTION("IPv6 tunneling device"); 5962306a36Sopenharmony_ciMODULE_LICENSE("GPL"); 6062306a36Sopenharmony_ciMODULE_ALIAS_RTNL_LINK("ip6tnl"); 6162306a36Sopenharmony_ciMODULE_ALIAS_NETDEV("ip6tnl0"); 6262306a36Sopenharmony_ci 6362306a36Sopenharmony_ci#define IP6_TUNNEL_HASH_SIZE_SHIFT 5 6462306a36Sopenharmony_ci#define IP6_TUNNEL_HASH_SIZE (1 << IP6_TUNNEL_HASH_SIZE_SHIFT) 6562306a36Sopenharmony_ci 6662306a36Sopenharmony_cistatic bool log_ecn_error = true; 6762306a36Sopenharmony_cimodule_param(log_ecn_error, bool, 0644); 6862306a36Sopenharmony_ciMODULE_PARM_DESC(log_ecn_error, "Log packets received with corrupted ECN"); 6962306a36Sopenharmony_ci 7062306a36Sopenharmony_cistatic u32 HASH(const struct in6_addr *addr1, const struct in6_addr *addr2) 7162306a36Sopenharmony_ci{ 7262306a36Sopenharmony_ci u32 hash = ipv6_addr_hash(addr1) ^ ipv6_addr_hash(addr2); 7362306a36Sopenharmony_ci 7462306a36Sopenharmony_ci return hash_32(hash, IP6_TUNNEL_HASH_SIZE_SHIFT); 7562306a36Sopenharmony_ci} 7662306a36Sopenharmony_ci 7762306a36Sopenharmony_cistatic int ip6_tnl_dev_init(struct net_device *dev); 7862306a36Sopenharmony_cistatic void ip6_tnl_dev_setup(struct net_device *dev); 7962306a36Sopenharmony_cistatic struct rtnl_link_ops ip6_link_ops __read_mostly; 8062306a36Sopenharmony_ci 8162306a36Sopenharmony_cistatic unsigned int ip6_tnl_net_id __read_mostly; 8262306a36Sopenharmony_cistruct ip6_tnl_net { 8362306a36Sopenharmony_ci /* the IPv6 tunnel fallback device */ 8462306a36Sopenharmony_ci struct net_device *fb_tnl_dev; 8562306a36Sopenharmony_ci /* lists for storing tunnels in use */ 8662306a36Sopenharmony_ci struct ip6_tnl __rcu *tnls_r_l[IP6_TUNNEL_HASH_SIZE]; 8762306a36Sopenharmony_ci struct ip6_tnl __rcu *tnls_wc[1]; 8862306a36Sopenharmony_ci struct ip6_tnl __rcu **tnls[2]; 8962306a36Sopenharmony_ci struct ip6_tnl __rcu *collect_md_tun; 9062306a36Sopenharmony_ci}; 9162306a36Sopenharmony_ci 9262306a36Sopenharmony_cistatic inline int ip6_tnl_mpls_supported(void) 9362306a36Sopenharmony_ci{ 9462306a36Sopenharmony_ci return IS_ENABLED(CONFIG_MPLS); 9562306a36Sopenharmony_ci} 9662306a36Sopenharmony_ci 9762306a36Sopenharmony_ci#define for_each_ip6_tunnel_rcu(start) \ 9862306a36Sopenharmony_ci for (t = rcu_dereference(start); t; t = rcu_dereference(t->next)) 9962306a36Sopenharmony_ci 10062306a36Sopenharmony_ci/** 10162306a36Sopenharmony_ci * ip6_tnl_lookup - fetch tunnel matching the end-point addresses 10262306a36Sopenharmony_ci * @net: network namespace 10362306a36Sopenharmony_ci * @link: ifindex of underlying interface 10462306a36Sopenharmony_ci * @remote: the address of the tunnel exit-point 10562306a36Sopenharmony_ci * @local: the address of the tunnel entry-point 10662306a36Sopenharmony_ci * 10762306a36Sopenharmony_ci * Return: 10862306a36Sopenharmony_ci * tunnel matching given end-points if found, 10962306a36Sopenharmony_ci * else fallback tunnel if its device is up, 11062306a36Sopenharmony_ci * else %NULL 11162306a36Sopenharmony_ci **/ 11262306a36Sopenharmony_ci 11362306a36Sopenharmony_cistatic struct ip6_tnl * 11462306a36Sopenharmony_ciip6_tnl_lookup(struct net *net, int link, 11562306a36Sopenharmony_ci const struct in6_addr *remote, const struct in6_addr *local) 11662306a36Sopenharmony_ci{ 11762306a36Sopenharmony_ci unsigned int hash = HASH(remote, local); 11862306a36Sopenharmony_ci struct ip6_tnl *t, *cand = NULL; 11962306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 12062306a36Sopenharmony_ci struct in6_addr any; 12162306a36Sopenharmony_ci 12262306a36Sopenharmony_ci for_each_ip6_tunnel_rcu(ip6n->tnls_r_l[hash]) { 12362306a36Sopenharmony_ci if (!ipv6_addr_equal(local, &t->parms.laddr) || 12462306a36Sopenharmony_ci !ipv6_addr_equal(remote, &t->parms.raddr) || 12562306a36Sopenharmony_ci !(t->dev->flags & IFF_UP)) 12662306a36Sopenharmony_ci continue; 12762306a36Sopenharmony_ci 12862306a36Sopenharmony_ci if (link == t->parms.link) 12962306a36Sopenharmony_ci return t; 13062306a36Sopenharmony_ci else 13162306a36Sopenharmony_ci cand = t; 13262306a36Sopenharmony_ci } 13362306a36Sopenharmony_ci 13462306a36Sopenharmony_ci memset(&any, 0, sizeof(any)); 13562306a36Sopenharmony_ci hash = HASH(&any, local); 13662306a36Sopenharmony_ci for_each_ip6_tunnel_rcu(ip6n->tnls_r_l[hash]) { 13762306a36Sopenharmony_ci if (!ipv6_addr_equal(local, &t->parms.laddr) || 13862306a36Sopenharmony_ci !ipv6_addr_any(&t->parms.raddr) || 13962306a36Sopenharmony_ci !(t->dev->flags & IFF_UP)) 14062306a36Sopenharmony_ci continue; 14162306a36Sopenharmony_ci 14262306a36Sopenharmony_ci if (link == t->parms.link) 14362306a36Sopenharmony_ci return t; 14462306a36Sopenharmony_ci else if (!cand) 14562306a36Sopenharmony_ci cand = t; 14662306a36Sopenharmony_ci } 14762306a36Sopenharmony_ci 14862306a36Sopenharmony_ci hash = HASH(remote, &any); 14962306a36Sopenharmony_ci for_each_ip6_tunnel_rcu(ip6n->tnls_r_l[hash]) { 15062306a36Sopenharmony_ci if (!ipv6_addr_equal(remote, &t->parms.raddr) || 15162306a36Sopenharmony_ci !ipv6_addr_any(&t->parms.laddr) || 15262306a36Sopenharmony_ci !(t->dev->flags & IFF_UP)) 15362306a36Sopenharmony_ci continue; 15462306a36Sopenharmony_ci 15562306a36Sopenharmony_ci if (link == t->parms.link) 15662306a36Sopenharmony_ci return t; 15762306a36Sopenharmony_ci else if (!cand) 15862306a36Sopenharmony_ci cand = t; 15962306a36Sopenharmony_ci } 16062306a36Sopenharmony_ci 16162306a36Sopenharmony_ci if (cand) 16262306a36Sopenharmony_ci return cand; 16362306a36Sopenharmony_ci 16462306a36Sopenharmony_ci t = rcu_dereference(ip6n->collect_md_tun); 16562306a36Sopenharmony_ci if (t && t->dev->flags & IFF_UP) 16662306a36Sopenharmony_ci return t; 16762306a36Sopenharmony_ci 16862306a36Sopenharmony_ci t = rcu_dereference(ip6n->tnls_wc[0]); 16962306a36Sopenharmony_ci if (t && (t->dev->flags & IFF_UP)) 17062306a36Sopenharmony_ci return t; 17162306a36Sopenharmony_ci 17262306a36Sopenharmony_ci return NULL; 17362306a36Sopenharmony_ci} 17462306a36Sopenharmony_ci 17562306a36Sopenharmony_ci/** 17662306a36Sopenharmony_ci * ip6_tnl_bucket - get head of list matching given tunnel parameters 17762306a36Sopenharmony_ci * @ip6n: the private data for ip6_vti in the netns 17862306a36Sopenharmony_ci * @p: parameters containing tunnel end-points 17962306a36Sopenharmony_ci * 18062306a36Sopenharmony_ci * Description: 18162306a36Sopenharmony_ci * ip6_tnl_bucket() returns the head of the list matching the 18262306a36Sopenharmony_ci * &struct in6_addr entries laddr and raddr in @p. 18362306a36Sopenharmony_ci * 18462306a36Sopenharmony_ci * Return: head of IPv6 tunnel list 18562306a36Sopenharmony_ci **/ 18662306a36Sopenharmony_ci 18762306a36Sopenharmony_cistatic struct ip6_tnl __rcu ** 18862306a36Sopenharmony_ciip6_tnl_bucket(struct ip6_tnl_net *ip6n, const struct __ip6_tnl_parm *p) 18962306a36Sopenharmony_ci{ 19062306a36Sopenharmony_ci const struct in6_addr *remote = &p->raddr; 19162306a36Sopenharmony_ci const struct in6_addr *local = &p->laddr; 19262306a36Sopenharmony_ci unsigned int h = 0; 19362306a36Sopenharmony_ci int prio = 0; 19462306a36Sopenharmony_ci 19562306a36Sopenharmony_ci if (!ipv6_addr_any(remote) || !ipv6_addr_any(local)) { 19662306a36Sopenharmony_ci prio = 1; 19762306a36Sopenharmony_ci h = HASH(remote, local); 19862306a36Sopenharmony_ci } 19962306a36Sopenharmony_ci return &ip6n->tnls[prio][h]; 20062306a36Sopenharmony_ci} 20162306a36Sopenharmony_ci 20262306a36Sopenharmony_ci/** 20362306a36Sopenharmony_ci * ip6_tnl_link - add tunnel to hash table 20462306a36Sopenharmony_ci * @ip6n: the private data for ip6_vti in the netns 20562306a36Sopenharmony_ci * @t: tunnel to be added 20662306a36Sopenharmony_ci **/ 20762306a36Sopenharmony_ci 20862306a36Sopenharmony_cistatic void 20962306a36Sopenharmony_ciip6_tnl_link(struct ip6_tnl_net *ip6n, struct ip6_tnl *t) 21062306a36Sopenharmony_ci{ 21162306a36Sopenharmony_ci struct ip6_tnl __rcu **tp = ip6_tnl_bucket(ip6n, &t->parms); 21262306a36Sopenharmony_ci 21362306a36Sopenharmony_ci if (t->parms.collect_md) 21462306a36Sopenharmony_ci rcu_assign_pointer(ip6n->collect_md_tun, t); 21562306a36Sopenharmony_ci rcu_assign_pointer(t->next , rtnl_dereference(*tp)); 21662306a36Sopenharmony_ci rcu_assign_pointer(*tp, t); 21762306a36Sopenharmony_ci} 21862306a36Sopenharmony_ci 21962306a36Sopenharmony_ci/** 22062306a36Sopenharmony_ci * ip6_tnl_unlink - remove tunnel from hash table 22162306a36Sopenharmony_ci * @ip6n: the private data for ip6_vti in the netns 22262306a36Sopenharmony_ci * @t: tunnel to be removed 22362306a36Sopenharmony_ci **/ 22462306a36Sopenharmony_ci 22562306a36Sopenharmony_cistatic void 22662306a36Sopenharmony_ciip6_tnl_unlink(struct ip6_tnl_net *ip6n, struct ip6_tnl *t) 22762306a36Sopenharmony_ci{ 22862306a36Sopenharmony_ci struct ip6_tnl __rcu **tp; 22962306a36Sopenharmony_ci struct ip6_tnl *iter; 23062306a36Sopenharmony_ci 23162306a36Sopenharmony_ci if (t->parms.collect_md) 23262306a36Sopenharmony_ci rcu_assign_pointer(ip6n->collect_md_tun, NULL); 23362306a36Sopenharmony_ci 23462306a36Sopenharmony_ci for (tp = ip6_tnl_bucket(ip6n, &t->parms); 23562306a36Sopenharmony_ci (iter = rtnl_dereference(*tp)) != NULL; 23662306a36Sopenharmony_ci tp = &iter->next) { 23762306a36Sopenharmony_ci if (t == iter) { 23862306a36Sopenharmony_ci rcu_assign_pointer(*tp, t->next); 23962306a36Sopenharmony_ci break; 24062306a36Sopenharmony_ci } 24162306a36Sopenharmony_ci } 24262306a36Sopenharmony_ci} 24362306a36Sopenharmony_ci 24462306a36Sopenharmony_cistatic void ip6_dev_free(struct net_device *dev) 24562306a36Sopenharmony_ci{ 24662306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 24762306a36Sopenharmony_ci 24862306a36Sopenharmony_ci gro_cells_destroy(&t->gro_cells); 24962306a36Sopenharmony_ci dst_cache_destroy(&t->dst_cache); 25062306a36Sopenharmony_ci free_percpu(dev->tstats); 25162306a36Sopenharmony_ci} 25262306a36Sopenharmony_ci 25362306a36Sopenharmony_cistatic int ip6_tnl_create2(struct net_device *dev) 25462306a36Sopenharmony_ci{ 25562306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 25662306a36Sopenharmony_ci struct net *net = dev_net(dev); 25762306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 25862306a36Sopenharmony_ci int err; 25962306a36Sopenharmony_ci 26062306a36Sopenharmony_ci dev->rtnl_link_ops = &ip6_link_ops; 26162306a36Sopenharmony_ci err = register_netdevice(dev); 26262306a36Sopenharmony_ci if (err < 0) 26362306a36Sopenharmony_ci goto out; 26462306a36Sopenharmony_ci 26562306a36Sopenharmony_ci strcpy(t->parms.name, dev->name); 26662306a36Sopenharmony_ci 26762306a36Sopenharmony_ci ip6_tnl_link(ip6n, t); 26862306a36Sopenharmony_ci return 0; 26962306a36Sopenharmony_ci 27062306a36Sopenharmony_ciout: 27162306a36Sopenharmony_ci return err; 27262306a36Sopenharmony_ci} 27362306a36Sopenharmony_ci 27462306a36Sopenharmony_ci/** 27562306a36Sopenharmony_ci * ip6_tnl_create - create a new tunnel 27662306a36Sopenharmony_ci * @net: network namespace 27762306a36Sopenharmony_ci * @p: tunnel parameters 27862306a36Sopenharmony_ci * 27962306a36Sopenharmony_ci * Description: 28062306a36Sopenharmony_ci * Create tunnel matching given parameters. 28162306a36Sopenharmony_ci * 28262306a36Sopenharmony_ci * Return: 28362306a36Sopenharmony_ci * created tunnel or error pointer 28462306a36Sopenharmony_ci **/ 28562306a36Sopenharmony_ci 28662306a36Sopenharmony_cistatic struct ip6_tnl *ip6_tnl_create(struct net *net, struct __ip6_tnl_parm *p) 28762306a36Sopenharmony_ci{ 28862306a36Sopenharmony_ci struct net_device *dev; 28962306a36Sopenharmony_ci struct ip6_tnl *t; 29062306a36Sopenharmony_ci char name[IFNAMSIZ]; 29162306a36Sopenharmony_ci int err = -E2BIG; 29262306a36Sopenharmony_ci 29362306a36Sopenharmony_ci if (p->name[0]) { 29462306a36Sopenharmony_ci if (!dev_valid_name(p->name)) 29562306a36Sopenharmony_ci goto failed; 29662306a36Sopenharmony_ci strscpy(name, p->name, IFNAMSIZ); 29762306a36Sopenharmony_ci } else { 29862306a36Sopenharmony_ci sprintf(name, "ip6tnl%%d"); 29962306a36Sopenharmony_ci } 30062306a36Sopenharmony_ci err = -ENOMEM; 30162306a36Sopenharmony_ci dev = alloc_netdev(sizeof(*t), name, NET_NAME_UNKNOWN, 30262306a36Sopenharmony_ci ip6_tnl_dev_setup); 30362306a36Sopenharmony_ci if (!dev) 30462306a36Sopenharmony_ci goto failed; 30562306a36Sopenharmony_ci 30662306a36Sopenharmony_ci dev_net_set(dev, net); 30762306a36Sopenharmony_ci 30862306a36Sopenharmony_ci t = netdev_priv(dev); 30962306a36Sopenharmony_ci t->parms = *p; 31062306a36Sopenharmony_ci t->net = dev_net(dev); 31162306a36Sopenharmony_ci err = ip6_tnl_create2(dev); 31262306a36Sopenharmony_ci if (err < 0) 31362306a36Sopenharmony_ci goto failed_free; 31462306a36Sopenharmony_ci 31562306a36Sopenharmony_ci return t; 31662306a36Sopenharmony_ci 31762306a36Sopenharmony_cifailed_free: 31862306a36Sopenharmony_ci free_netdev(dev); 31962306a36Sopenharmony_cifailed: 32062306a36Sopenharmony_ci return ERR_PTR(err); 32162306a36Sopenharmony_ci} 32262306a36Sopenharmony_ci 32362306a36Sopenharmony_ci/** 32462306a36Sopenharmony_ci * ip6_tnl_locate - find or create tunnel matching given parameters 32562306a36Sopenharmony_ci * @net: network namespace 32662306a36Sopenharmony_ci * @p: tunnel parameters 32762306a36Sopenharmony_ci * @create: != 0 if allowed to create new tunnel if no match found 32862306a36Sopenharmony_ci * 32962306a36Sopenharmony_ci * Description: 33062306a36Sopenharmony_ci * ip6_tnl_locate() first tries to locate an existing tunnel 33162306a36Sopenharmony_ci * based on @parms. If this is unsuccessful, but @create is set a new 33262306a36Sopenharmony_ci * tunnel device is created and registered for use. 33362306a36Sopenharmony_ci * 33462306a36Sopenharmony_ci * Return: 33562306a36Sopenharmony_ci * matching tunnel or error pointer 33662306a36Sopenharmony_ci **/ 33762306a36Sopenharmony_ci 33862306a36Sopenharmony_cistatic struct ip6_tnl *ip6_tnl_locate(struct net *net, 33962306a36Sopenharmony_ci struct __ip6_tnl_parm *p, int create) 34062306a36Sopenharmony_ci{ 34162306a36Sopenharmony_ci const struct in6_addr *remote = &p->raddr; 34262306a36Sopenharmony_ci const struct in6_addr *local = &p->laddr; 34362306a36Sopenharmony_ci struct ip6_tnl __rcu **tp; 34462306a36Sopenharmony_ci struct ip6_tnl *t; 34562306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 34662306a36Sopenharmony_ci 34762306a36Sopenharmony_ci for (tp = ip6_tnl_bucket(ip6n, p); 34862306a36Sopenharmony_ci (t = rtnl_dereference(*tp)) != NULL; 34962306a36Sopenharmony_ci tp = &t->next) { 35062306a36Sopenharmony_ci if (ipv6_addr_equal(local, &t->parms.laddr) && 35162306a36Sopenharmony_ci ipv6_addr_equal(remote, &t->parms.raddr) && 35262306a36Sopenharmony_ci p->link == t->parms.link) { 35362306a36Sopenharmony_ci if (create) 35462306a36Sopenharmony_ci return ERR_PTR(-EEXIST); 35562306a36Sopenharmony_ci 35662306a36Sopenharmony_ci return t; 35762306a36Sopenharmony_ci } 35862306a36Sopenharmony_ci } 35962306a36Sopenharmony_ci if (!create) 36062306a36Sopenharmony_ci return ERR_PTR(-ENODEV); 36162306a36Sopenharmony_ci return ip6_tnl_create(net, p); 36262306a36Sopenharmony_ci} 36362306a36Sopenharmony_ci 36462306a36Sopenharmony_ci/** 36562306a36Sopenharmony_ci * ip6_tnl_dev_uninit - tunnel device uninitializer 36662306a36Sopenharmony_ci * @dev: the device to be destroyed 36762306a36Sopenharmony_ci * 36862306a36Sopenharmony_ci * Description: 36962306a36Sopenharmony_ci * ip6_tnl_dev_uninit() removes tunnel from its list 37062306a36Sopenharmony_ci **/ 37162306a36Sopenharmony_ci 37262306a36Sopenharmony_cistatic void 37362306a36Sopenharmony_ciip6_tnl_dev_uninit(struct net_device *dev) 37462306a36Sopenharmony_ci{ 37562306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 37662306a36Sopenharmony_ci struct net *net = t->net; 37762306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 37862306a36Sopenharmony_ci 37962306a36Sopenharmony_ci if (dev == ip6n->fb_tnl_dev) 38062306a36Sopenharmony_ci RCU_INIT_POINTER(ip6n->tnls_wc[0], NULL); 38162306a36Sopenharmony_ci else 38262306a36Sopenharmony_ci ip6_tnl_unlink(ip6n, t); 38362306a36Sopenharmony_ci dst_cache_reset(&t->dst_cache); 38462306a36Sopenharmony_ci netdev_put(dev, &t->dev_tracker); 38562306a36Sopenharmony_ci} 38662306a36Sopenharmony_ci 38762306a36Sopenharmony_ci/** 38862306a36Sopenharmony_ci * ip6_tnl_parse_tlv_enc_lim - handle encapsulation limit option 38962306a36Sopenharmony_ci * @skb: received socket buffer 39062306a36Sopenharmony_ci * @raw: the ICMPv6 error message data 39162306a36Sopenharmony_ci * 39262306a36Sopenharmony_ci * Return: 39362306a36Sopenharmony_ci * 0 if none was found, 39462306a36Sopenharmony_ci * else index to encapsulation limit 39562306a36Sopenharmony_ci **/ 39662306a36Sopenharmony_ci 39762306a36Sopenharmony_ci__u16 ip6_tnl_parse_tlv_enc_lim(struct sk_buff *skb, __u8 *raw) 39862306a36Sopenharmony_ci{ 39962306a36Sopenharmony_ci const struct ipv6hdr *ipv6h = (const struct ipv6hdr *)raw; 40062306a36Sopenharmony_ci unsigned int nhoff = raw - skb->data; 40162306a36Sopenharmony_ci unsigned int off = nhoff + sizeof(*ipv6h); 40262306a36Sopenharmony_ci u8 nexthdr = ipv6h->nexthdr; 40362306a36Sopenharmony_ci 40462306a36Sopenharmony_ci while (ipv6_ext_hdr(nexthdr) && nexthdr != NEXTHDR_NONE) { 40562306a36Sopenharmony_ci struct ipv6_opt_hdr *hdr; 40662306a36Sopenharmony_ci u16 optlen; 40762306a36Sopenharmony_ci 40862306a36Sopenharmony_ci if (!pskb_may_pull(skb, off + sizeof(*hdr))) 40962306a36Sopenharmony_ci break; 41062306a36Sopenharmony_ci 41162306a36Sopenharmony_ci hdr = (struct ipv6_opt_hdr *)(skb->data + off); 41262306a36Sopenharmony_ci if (nexthdr == NEXTHDR_FRAGMENT) { 41362306a36Sopenharmony_ci optlen = 8; 41462306a36Sopenharmony_ci } else if (nexthdr == NEXTHDR_AUTH) { 41562306a36Sopenharmony_ci optlen = ipv6_authlen(hdr); 41662306a36Sopenharmony_ci } else { 41762306a36Sopenharmony_ci optlen = ipv6_optlen(hdr); 41862306a36Sopenharmony_ci } 41962306a36Sopenharmony_ci 42062306a36Sopenharmony_ci if (!pskb_may_pull(skb, off + optlen)) 42162306a36Sopenharmony_ci break; 42262306a36Sopenharmony_ci 42362306a36Sopenharmony_ci hdr = (struct ipv6_opt_hdr *)(skb->data + off); 42462306a36Sopenharmony_ci if (nexthdr == NEXTHDR_FRAGMENT) { 42562306a36Sopenharmony_ci struct frag_hdr *frag_hdr = (struct frag_hdr *)hdr; 42662306a36Sopenharmony_ci 42762306a36Sopenharmony_ci if (frag_hdr->frag_off) 42862306a36Sopenharmony_ci break; 42962306a36Sopenharmony_ci } 43062306a36Sopenharmony_ci if (nexthdr == NEXTHDR_DEST) { 43162306a36Sopenharmony_ci u16 i = 2; 43262306a36Sopenharmony_ci 43362306a36Sopenharmony_ci while (1) { 43462306a36Sopenharmony_ci struct ipv6_tlv_tnl_enc_lim *tel; 43562306a36Sopenharmony_ci 43662306a36Sopenharmony_ci /* No more room for encapsulation limit */ 43762306a36Sopenharmony_ci if (i + sizeof(*tel) > optlen) 43862306a36Sopenharmony_ci break; 43962306a36Sopenharmony_ci 44062306a36Sopenharmony_ci tel = (struct ipv6_tlv_tnl_enc_lim *)(skb->data + off + i); 44162306a36Sopenharmony_ci /* return index of option if found and valid */ 44262306a36Sopenharmony_ci if (tel->type == IPV6_TLV_TNL_ENCAP_LIMIT && 44362306a36Sopenharmony_ci tel->length == 1) 44462306a36Sopenharmony_ci return i + off - nhoff; 44562306a36Sopenharmony_ci /* else jump to next option */ 44662306a36Sopenharmony_ci if (tel->type) 44762306a36Sopenharmony_ci i += tel->length + 2; 44862306a36Sopenharmony_ci else 44962306a36Sopenharmony_ci i++; 45062306a36Sopenharmony_ci } 45162306a36Sopenharmony_ci } 45262306a36Sopenharmony_ci nexthdr = hdr->nexthdr; 45362306a36Sopenharmony_ci off += optlen; 45462306a36Sopenharmony_ci } 45562306a36Sopenharmony_ci return 0; 45662306a36Sopenharmony_ci} 45762306a36Sopenharmony_ciEXPORT_SYMBOL(ip6_tnl_parse_tlv_enc_lim); 45862306a36Sopenharmony_ci 45962306a36Sopenharmony_ci/* ip6_tnl_err() should handle errors in the tunnel according to the 46062306a36Sopenharmony_ci * specifications in RFC 2473. 46162306a36Sopenharmony_ci */ 46262306a36Sopenharmony_cistatic int 46362306a36Sopenharmony_ciip6_tnl_err(struct sk_buff *skb, __u8 ipproto, struct inet6_skb_parm *opt, 46462306a36Sopenharmony_ci u8 *type, u8 *code, int *msg, __u32 *info, int offset) 46562306a36Sopenharmony_ci{ 46662306a36Sopenharmony_ci const struct ipv6hdr *ipv6h = (const struct ipv6hdr *)skb->data; 46762306a36Sopenharmony_ci struct net *net = dev_net(skb->dev); 46862306a36Sopenharmony_ci u8 rel_type = ICMPV6_DEST_UNREACH; 46962306a36Sopenharmony_ci u8 rel_code = ICMPV6_ADDR_UNREACH; 47062306a36Sopenharmony_ci __u32 rel_info = 0; 47162306a36Sopenharmony_ci struct ip6_tnl *t; 47262306a36Sopenharmony_ci int err = -ENOENT; 47362306a36Sopenharmony_ci int rel_msg = 0; 47462306a36Sopenharmony_ci u8 tproto; 47562306a36Sopenharmony_ci __u16 len; 47662306a36Sopenharmony_ci 47762306a36Sopenharmony_ci /* If the packet doesn't contain the original IPv6 header we are 47862306a36Sopenharmony_ci in trouble since we might need the source address for further 47962306a36Sopenharmony_ci processing of the error. */ 48062306a36Sopenharmony_ci 48162306a36Sopenharmony_ci rcu_read_lock(); 48262306a36Sopenharmony_ci t = ip6_tnl_lookup(dev_net(skb->dev), skb->dev->ifindex, &ipv6h->daddr, &ipv6h->saddr); 48362306a36Sopenharmony_ci if (!t) 48462306a36Sopenharmony_ci goto out; 48562306a36Sopenharmony_ci 48662306a36Sopenharmony_ci tproto = READ_ONCE(t->parms.proto); 48762306a36Sopenharmony_ci if (tproto != ipproto && tproto != 0) 48862306a36Sopenharmony_ci goto out; 48962306a36Sopenharmony_ci 49062306a36Sopenharmony_ci err = 0; 49162306a36Sopenharmony_ci 49262306a36Sopenharmony_ci switch (*type) { 49362306a36Sopenharmony_ci case ICMPV6_DEST_UNREACH: 49462306a36Sopenharmony_ci net_dbg_ratelimited("%s: Path to destination invalid or inactive!\n", 49562306a36Sopenharmony_ci t->parms.name); 49662306a36Sopenharmony_ci rel_msg = 1; 49762306a36Sopenharmony_ci break; 49862306a36Sopenharmony_ci case ICMPV6_TIME_EXCEED: 49962306a36Sopenharmony_ci if ((*code) == ICMPV6_EXC_HOPLIMIT) { 50062306a36Sopenharmony_ci net_dbg_ratelimited("%s: Too small hop limit or routing loop in tunnel!\n", 50162306a36Sopenharmony_ci t->parms.name); 50262306a36Sopenharmony_ci rel_msg = 1; 50362306a36Sopenharmony_ci } 50462306a36Sopenharmony_ci break; 50562306a36Sopenharmony_ci case ICMPV6_PARAMPROB: { 50662306a36Sopenharmony_ci struct ipv6_tlv_tnl_enc_lim *tel; 50762306a36Sopenharmony_ci __u32 teli; 50862306a36Sopenharmony_ci 50962306a36Sopenharmony_ci teli = 0; 51062306a36Sopenharmony_ci if ((*code) == ICMPV6_HDR_FIELD) 51162306a36Sopenharmony_ci teli = ip6_tnl_parse_tlv_enc_lim(skb, skb->data); 51262306a36Sopenharmony_ci 51362306a36Sopenharmony_ci if (teli && teli == *info - 2) { 51462306a36Sopenharmony_ci tel = (struct ipv6_tlv_tnl_enc_lim *) &skb->data[teli]; 51562306a36Sopenharmony_ci if (tel->encap_limit == 0) { 51662306a36Sopenharmony_ci net_dbg_ratelimited("%s: Too small encapsulation limit or routing loop in tunnel!\n", 51762306a36Sopenharmony_ci t->parms.name); 51862306a36Sopenharmony_ci rel_msg = 1; 51962306a36Sopenharmony_ci } 52062306a36Sopenharmony_ci } else { 52162306a36Sopenharmony_ci net_dbg_ratelimited("%s: Recipient unable to parse tunneled packet!\n", 52262306a36Sopenharmony_ci t->parms.name); 52362306a36Sopenharmony_ci } 52462306a36Sopenharmony_ci break; 52562306a36Sopenharmony_ci } 52662306a36Sopenharmony_ci case ICMPV6_PKT_TOOBIG: { 52762306a36Sopenharmony_ci __u32 mtu; 52862306a36Sopenharmony_ci 52962306a36Sopenharmony_ci ip6_update_pmtu(skb, net, htonl(*info), 0, 0, 53062306a36Sopenharmony_ci sock_net_uid(net, NULL)); 53162306a36Sopenharmony_ci mtu = *info - offset; 53262306a36Sopenharmony_ci if (mtu < IPV6_MIN_MTU) 53362306a36Sopenharmony_ci mtu = IPV6_MIN_MTU; 53462306a36Sopenharmony_ci len = sizeof(*ipv6h) + ntohs(ipv6h->payload_len); 53562306a36Sopenharmony_ci if (len > mtu) { 53662306a36Sopenharmony_ci rel_type = ICMPV6_PKT_TOOBIG; 53762306a36Sopenharmony_ci rel_code = 0; 53862306a36Sopenharmony_ci rel_info = mtu; 53962306a36Sopenharmony_ci rel_msg = 1; 54062306a36Sopenharmony_ci } 54162306a36Sopenharmony_ci break; 54262306a36Sopenharmony_ci } 54362306a36Sopenharmony_ci case NDISC_REDIRECT: 54462306a36Sopenharmony_ci ip6_redirect(skb, net, skb->dev->ifindex, 0, 54562306a36Sopenharmony_ci sock_net_uid(net, NULL)); 54662306a36Sopenharmony_ci break; 54762306a36Sopenharmony_ci } 54862306a36Sopenharmony_ci 54962306a36Sopenharmony_ci *type = rel_type; 55062306a36Sopenharmony_ci *code = rel_code; 55162306a36Sopenharmony_ci *info = rel_info; 55262306a36Sopenharmony_ci *msg = rel_msg; 55362306a36Sopenharmony_ci 55462306a36Sopenharmony_ciout: 55562306a36Sopenharmony_ci rcu_read_unlock(); 55662306a36Sopenharmony_ci return err; 55762306a36Sopenharmony_ci} 55862306a36Sopenharmony_ci 55962306a36Sopenharmony_cistatic int 56062306a36Sopenharmony_ciip4ip6_err(struct sk_buff *skb, struct inet6_skb_parm *opt, 56162306a36Sopenharmony_ci u8 type, u8 code, int offset, __be32 info) 56262306a36Sopenharmony_ci{ 56362306a36Sopenharmony_ci __u32 rel_info = ntohl(info); 56462306a36Sopenharmony_ci const struct iphdr *eiph; 56562306a36Sopenharmony_ci struct sk_buff *skb2; 56662306a36Sopenharmony_ci int err, rel_msg = 0; 56762306a36Sopenharmony_ci u8 rel_type = type; 56862306a36Sopenharmony_ci u8 rel_code = code; 56962306a36Sopenharmony_ci struct rtable *rt; 57062306a36Sopenharmony_ci struct flowi4 fl4; 57162306a36Sopenharmony_ci 57262306a36Sopenharmony_ci err = ip6_tnl_err(skb, IPPROTO_IPIP, opt, &rel_type, &rel_code, 57362306a36Sopenharmony_ci &rel_msg, &rel_info, offset); 57462306a36Sopenharmony_ci if (err < 0) 57562306a36Sopenharmony_ci return err; 57662306a36Sopenharmony_ci 57762306a36Sopenharmony_ci if (rel_msg == 0) 57862306a36Sopenharmony_ci return 0; 57962306a36Sopenharmony_ci 58062306a36Sopenharmony_ci switch (rel_type) { 58162306a36Sopenharmony_ci case ICMPV6_DEST_UNREACH: 58262306a36Sopenharmony_ci if (rel_code != ICMPV6_ADDR_UNREACH) 58362306a36Sopenharmony_ci return 0; 58462306a36Sopenharmony_ci rel_type = ICMP_DEST_UNREACH; 58562306a36Sopenharmony_ci rel_code = ICMP_HOST_UNREACH; 58662306a36Sopenharmony_ci break; 58762306a36Sopenharmony_ci case ICMPV6_PKT_TOOBIG: 58862306a36Sopenharmony_ci if (rel_code != 0) 58962306a36Sopenharmony_ci return 0; 59062306a36Sopenharmony_ci rel_type = ICMP_DEST_UNREACH; 59162306a36Sopenharmony_ci rel_code = ICMP_FRAG_NEEDED; 59262306a36Sopenharmony_ci break; 59362306a36Sopenharmony_ci default: 59462306a36Sopenharmony_ci return 0; 59562306a36Sopenharmony_ci } 59662306a36Sopenharmony_ci 59762306a36Sopenharmony_ci if (!pskb_may_pull(skb, offset + sizeof(struct iphdr))) 59862306a36Sopenharmony_ci return 0; 59962306a36Sopenharmony_ci 60062306a36Sopenharmony_ci skb2 = skb_clone(skb, GFP_ATOMIC); 60162306a36Sopenharmony_ci if (!skb2) 60262306a36Sopenharmony_ci return 0; 60362306a36Sopenharmony_ci 60462306a36Sopenharmony_ci skb_dst_drop(skb2); 60562306a36Sopenharmony_ci 60662306a36Sopenharmony_ci skb_pull(skb2, offset); 60762306a36Sopenharmony_ci skb_reset_network_header(skb2); 60862306a36Sopenharmony_ci eiph = ip_hdr(skb2); 60962306a36Sopenharmony_ci 61062306a36Sopenharmony_ci /* Try to guess incoming interface */ 61162306a36Sopenharmony_ci rt = ip_route_output_ports(dev_net(skb->dev), &fl4, NULL, eiph->saddr, 61262306a36Sopenharmony_ci 0, 0, 0, IPPROTO_IPIP, RT_TOS(eiph->tos), 0); 61362306a36Sopenharmony_ci if (IS_ERR(rt)) 61462306a36Sopenharmony_ci goto out; 61562306a36Sopenharmony_ci 61662306a36Sopenharmony_ci skb2->dev = rt->dst.dev; 61762306a36Sopenharmony_ci ip_rt_put(rt); 61862306a36Sopenharmony_ci 61962306a36Sopenharmony_ci /* route "incoming" packet */ 62062306a36Sopenharmony_ci if (rt->rt_flags & RTCF_LOCAL) { 62162306a36Sopenharmony_ci rt = ip_route_output_ports(dev_net(skb->dev), &fl4, NULL, 62262306a36Sopenharmony_ci eiph->daddr, eiph->saddr, 0, 0, 62362306a36Sopenharmony_ci IPPROTO_IPIP, RT_TOS(eiph->tos), 0); 62462306a36Sopenharmony_ci if (IS_ERR(rt) || rt->dst.dev->type != ARPHRD_TUNNEL6) { 62562306a36Sopenharmony_ci if (!IS_ERR(rt)) 62662306a36Sopenharmony_ci ip_rt_put(rt); 62762306a36Sopenharmony_ci goto out; 62862306a36Sopenharmony_ci } 62962306a36Sopenharmony_ci skb_dst_set(skb2, &rt->dst); 63062306a36Sopenharmony_ci } else { 63162306a36Sopenharmony_ci if (ip_route_input(skb2, eiph->daddr, eiph->saddr, eiph->tos, 63262306a36Sopenharmony_ci skb2->dev) || 63362306a36Sopenharmony_ci skb_dst(skb2)->dev->type != ARPHRD_TUNNEL6) 63462306a36Sopenharmony_ci goto out; 63562306a36Sopenharmony_ci } 63662306a36Sopenharmony_ci 63762306a36Sopenharmony_ci /* change mtu on this route */ 63862306a36Sopenharmony_ci if (rel_type == ICMP_DEST_UNREACH && rel_code == ICMP_FRAG_NEEDED) { 63962306a36Sopenharmony_ci if (rel_info > dst_mtu(skb_dst(skb2))) 64062306a36Sopenharmony_ci goto out; 64162306a36Sopenharmony_ci 64262306a36Sopenharmony_ci skb_dst_update_pmtu_no_confirm(skb2, rel_info); 64362306a36Sopenharmony_ci } 64462306a36Sopenharmony_ci 64562306a36Sopenharmony_ci icmp_send(skb2, rel_type, rel_code, htonl(rel_info)); 64662306a36Sopenharmony_ci 64762306a36Sopenharmony_ciout: 64862306a36Sopenharmony_ci kfree_skb(skb2); 64962306a36Sopenharmony_ci return 0; 65062306a36Sopenharmony_ci} 65162306a36Sopenharmony_ci 65262306a36Sopenharmony_cistatic int 65362306a36Sopenharmony_ciip6ip6_err(struct sk_buff *skb, struct inet6_skb_parm *opt, 65462306a36Sopenharmony_ci u8 type, u8 code, int offset, __be32 info) 65562306a36Sopenharmony_ci{ 65662306a36Sopenharmony_ci __u32 rel_info = ntohl(info); 65762306a36Sopenharmony_ci int err, rel_msg = 0; 65862306a36Sopenharmony_ci u8 rel_type = type; 65962306a36Sopenharmony_ci u8 rel_code = code; 66062306a36Sopenharmony_ci 66162306a36Sopenharmony_ci err = ip6_tnl_err(skb, IPPROTO_IPV6, opt, &rel_type, &rel_code, 66262306a36Sopenharmony_ci &rel_msg, &rel_info, offset); 66362306a36Sopenharmony_ci if (err < 0) 66462306a36Sopenharmony_ci return err; 66562306a36Sopenharmony_ci 66662306a36Sopenharmony_ci if (rel_msg && pskb_may_pull(skb, offset + sizeof(struct ipv6hdr))) { 66762306a36Sopenharmony_ci struct rt6_info *rt; 66862306a36Sopenharmony_ci struct sk_buff *skb2 = skb_clone(skb, GFP_ATOMIC); 66962306a36Sopenharmony_ci 67062306a36Sopenharmony_ci if (!skb2) 67162306a36Sopenharmony_ci return 0; 67262306a36Sopenharmony_ci 67362306a36Sopenharmony_ci skb_dst_drop(skb2); 67462306a36Sopenharmony_ci skb_pull(skb2, offset); 67562306a36Sopenharmony_ci skb_reset_network_header(skb2); 67662306a36Sopenharmony_ci 67762306a36Sopenharmony_ci /* Try to guess incoming interface */ 67862306a36Sopenharmony_ci rt = rt6_lookup(dev_net(skb->dev), &ipv6_hdr(skb2)->saddr, 67962306a36Sopenharmony_ci NULL, 0, skb2, 0); 68062306a36Sopenharmony_ci 68162306a36Sopenharmony_ci if (rt && rt->dst.dev) 68262306a36Sopenharmony_ci skb2->dev = rt->dst.dev; 68362306a36Sopenharmony_ci 68462306a36Sopenharmony_ci icmpv6_send(skb2, rel_type, rel_code, rel_info); 68562306a36Sopenharmony_ci 68662306a36Sopenharmony_ci ip6_rt_put(rt); 68762306a36Sopenharmony_ci 68862306a36Sopenharmony_ci kfree_skb(skb2); 68962306a36Sopenharmony_ci } 69062306a36Sopenharmony_ci 69162306a36Sopenharmony_ci return 0; 69262306a36Sopenharmony_ci} 69362306a36Sopenharmony_ci 69462306a36Sopenharmony_cistatic int 69562306a36Sopenharmony_cimplsip6_err(struct sk_buff *skb, struct inet6_skb_parm *opt, 69662306a36Sopenharmony_ci u8 type, u8 code, int offset, __be32 info) 69762306a36Sopenharmony_ci{ 69862306a36Sopenharmony_ci __u32 rel_info = ntohl(info); 69962306a36Sopenharmony_ci int err, rel_msg = 0; 70062306a36Sopenharmony_ci u8 rel_type = type; 70162306a36Sopenharmony_ci u8 rel_code = code; 70262306a36Sopenharmony_ci 70362306a36Sopenharmony_ci err = ip6_tnl_err(skb, IPPROTO_MPLS, opt, &rel_type, &rel_code, 70462306a36Sopenharmony_ci &rel_msg, &rel_info, offset); 70562306a36Sopenharmony_ci return err; 70662306a36Sopenharmony_ci} 70762306a36Sopenharmony_ci 70862306a36Sopenharmony_cistatic int ip4ip6_dscp_ecn_decapsulate(const struct ip6_tnl *t, 70962306a36Sopenharmony_ci const struct ipv6hdr *ipv6h, 71062306a36Sopenharmony_ci struct sk_buff *skb) 71162306a36Sopenharmony_ci{ 71262306a36Sopenharmony_ci __u8 dsfield = ipv6_get_dsfield(ipv6h) & ~INET_ECN_MASK; 71362306a36Sopenharmony_ci 71462306a36Sopenharmony_ci if (t->parms.flags & IP6_TNL_F_RCV_DSCP_COPY) 71562306a36Sopenharmony_ci ipv4_change_dsfield(ip_hdr(skb), INET_ECN_MASK, dsfield); 71662306a36Sopenharmony_ci 71762306a36Sopenharmony_ci return IP6_ECN_decapsulate(ipv6h, skb); 71862306a36Sopenharmony_ci} 71962306a36Sopenharmony_ci 72062306a36Sopenharmony_cistatic int ip6ip6_dscp_ecn_decapsulate(const struct ip6_tnl *t, 72162306a36Sopenharmony_ci const struct ipv6hdr *ipv6h, 72262306a36Sopenharmony_ci struct sk_buff *skb) 72362306a36Sopenharmony_ci{ 72462306a36Sopenharmony_ci if (t->parms.flags & IP6_TNL_F_RCV_DSCP_COPY) 72562306a36Sopenharmony_ci ipv6_copy_dscp(ipv6_get_dsfield(ipv6h), ipv6_hdr(skb)); 72662306a36Sopenharmony_ci 72762306a36Sopenharmony_ci return IP6_ECN_decapsulate(ipv6h, skb); 72862306a36Sopenharmony_ci} 72962306a36Sopenharmony_ci 73062306a36Sopenharmony_cistatic inline int mplsip6_dscp_ecn_decapsulate(const struct ip6_tnl *t, 73162306a36Sopenharmony_ci const struct ipv6hdr *ipv6h, 73262306a36Sopenharmony_ci struct sk_buff *skb) 73362306a36Sopenharmony_ci{ 73462306a36Sopenharmony_ci /* ECN is not supported in AF_MPLS */ 73562306a36Sopenharmony_ci return 0; 73662306a36Sopenharmony_ci} 73762306a36Sopenharmony_ci 73862306a36Sopenharmony_ci__u32 ip6_tnl_get_cap(struct ip6_tnl *t, 73962306a36Sopenharmony_ci const struct in6_addr *laddr, 74062306a36Sopenharmony_ci const struct in6_addr *raddr) 74162306a36Sopenharmony_ci{ 74262306a36Sopenharmony_ci struct __ip6_tnl_parm *p = &t->parms; 74362306a36Sopenharmony_ci int ltype = ipv6_addr_type(laddr); 74462306a36Sopenharmony_ci int rtype = ipv6_addr_type(raddr); 74562306a36Sopenharmony_ci __u32 flags = 0; 74662306a36Sopenharmony_ci 74762306a36Sopenharmony_ci if (ltype == IPV6_ADDR_ANY || rtype == IPV6_ADDR_ANY) { 74862306a36Sopenharmony_ci flags = IP6_TNL_F_CAP_PER_PACKET; 74962306a36Sopenharmony_ci } else if (ltype & (IPV6_ADDR_UNICAST|IPV6_ADDR_MULTICAST) && 75062306a36Sopenharmony_ci rtype & (IPV6_ADDR_UNICAST|IPV6_ADDR_MULTICAST) && 75162306a36Sopenharmony_ci !((ltype|rtype) & IPV6_ADDR_LOOPBACK) && 75262306a36Sopenharmony_ci (!((ltype|rtype) & IPV6_ADDR_LINKLOCAL) || p->link)) { 75362306a36Sopenharmony_ci if (ltype&IPV6_ADDR_UNICAST) 75462306a36Sopenharmony_ci flags |= IP6_TNL_F_CAP_XMIT; 75562306a36Sopenharmony_ci if (rtype&IPV6_ADDR_UNICAST) 75662306a36Sopenharmony_ci flags |= IP6_TNL_F_CAP_RCV; 75762306a36Sopenharmony_ci } 75862306a36Sopenharmony_ci return flags; 75962306a36Sopenharmony_ci} 76062306a36Sopenharmony_ciEXPORT_SYMBOL(ip6_tnl_get_cap); 76162306a36Sopenharmony_ci 76262306a36Sopenharmony_ci/* called with rcu_read_lock() */ 76362306a36Sopenharmony_ciint ip6_tnl_rcv_ctl(struct ip6_tnl *t, 76462306a36Sopenharmony_ci const struct in6_addr *laddr, 76562306a36Sopenharmony_ci const struct in6_addr *raddr) 76662306a36Sopenharmony_ci{ 76762306a36Sopenharmony_ci struct __ip6_tnl_parm *p = &t->parms; 76862306a36Sopenharmony_ci int ret = 0; 76962306a36Sopenharmony_ci struct net *net = t->net; 77062306a36Sopenharmony_ci 77162306a36Sopenharmony_ci if ((p->flags & IP6_TNL_F_CAP_RCV) || 77262306a36Sopenharmony_ci ((p->flags & IP6_TNL_F_CAP_PER_PACKET) && 77362306a36Sopenharmony_ci (ip6_tnl_get_cap(t, laddr, raddr) & IP6_TNL_F_CAP_RCV))) { 77462306a36Sopenharmony_ci struct net_device *ldev = NULL; 77562306a36Sopenharmony_ci 77662306a36Sopenharmony_ci if (p->link) 77762306a36Sopenharmony_ci ldev = dev_get_by_index_rcu(net, p->link); 77862306a36Sopenharmony_ci 77962306a36Sopenharmony_ci if ((ipv6_addr_is_multicast(laddr) || 78062306a36Sopenharmony_ci likely(ipv6_chk_addr_and_flags(net, laddr, ldev, false, 78162306a36Sopenharmony_ci 0, IFA_F_TENTATIVE))) && 78262306a36Sopenharmony_ci ((p->flags & IP6_TNL_F_ALLOW_LOCAL_REMOTE) || 78362306a36Sopenharmony_ci likely(!ipv6_chk_addr_and_flags(net, raddr, ldev, true, 78462306a36Sopenharmony_ci 0, IFA_F_TENTATIVE)))) 78562306a36Sopenharmony_ci ret = 1; 78662306a36Sopenharmony_ci } 78762306a36Sopenharmony_ci return ret; 78862306a36Sopenharmony_ci} 78962306a36Sopenharmony_ciEXPORT_SYMBOL_GPL(ip6_tnl_rcv_ctl); 79062306a36Sopenharmony_ci 79162306a36Sopenharmony_cistatic int __ip6_tnl_rcv(struct ip6_tnl *tunnel, struct sk_buff *skb, 79262306a36Sopenharmony_ci const struct tnl_ptk_info *tpi, 79362306a36Sopenharmony_ci struct metadata_dst *tun_dst, 79462306a36Sopenharmony_ci int (*dscp_ecn_decapsulate)(const struct ip6_tnl *t, 79562306a36Sopenharmony_ci const struct ipv6hdr *ipv6h, 79662306a36Sopenharmony_ci struct sk_buff *skb), 79762306a36Sopenharmony_ci bool log_ecn_err) 79862306a36Sopenharmony_ci{ 79962306a36Sopenharmony_ci const struct ipv6hdr *ipv6h; 80062306a36Sopenharmony_ci int nh, err; 80162306a36Sopenharmony_ci 80262306a36Sopenharmony_ci if ((!(tpi->flags & TUNNEL_CSUM) && 80362306a36Sopenharmony_ci (tunnel->parms.i_flags & TUNNEL_CSUM)) || 80462306a36Sopenharmony_ci ((tpi->flags & TUNNEL_CSUM) && 80562306a36Sopenharmony_ci !(tunnel->parms.i_flags & TUNNEL_CSUM))) { 80662306a36Sopenharmony_ci DEV_STATS_INC(tunnel->dev, rx_crc_errors); 80762306a36Sopenharmony_ci DEV_STATS_INC(tunnel->dev, rx_errors); 80862306a36Sopenharmony_ci goto drop; 80962306a36Sopenharmony_ci } 81062306a36Sopenharmony_ci 81162306a36Sopenharmony_ci if (tunnel->parms.i_flags & TUNNEL_SEQ) { 81262306a36Sopenharmony_ci if (!(tpi->flags & TUNNEL_SEQ) || 81362306a36Sopenharmony_ci (tunnel->i_seqno && 81462306a36Sopenharmony_ci (s32)(ntohl(tpi->seq) - tunnel->i_seqno) < 0)) { 81562306a36Sopenharmony_ci DEV_STATS_INC(tunnel->dev, rx_fifo_errors); 81662306a36Sopenharmony_ci DEV_STATS_INC(tunnel->dev, rx_errors); 81762306a36Sopenharmony_ci goto drop; 81862306a36Sopenharmony_ci } 81962306a36Sopenharmony_ci tunnel->i_seqno = ntohl(tpi->seq) + 1; 82062306a36Sopenharmony_ci } 82162306a36Sopenharmony_ci 82262306a36Sopenharmony_ci skb->protocol = tpi->proto; 82362306a36Sopenharmony_ci 82462306a36Sopenharmony_ci /* Warning: All skb pointers will be invalidated! */ 82562306a36Sopenharmony_ci if (tunnel->dev->type == ARPHRD_ETHER) { 82662306a36Sopenharmony_ci if (!pskb_may_pull(skb, ETH_HLEN)) { 82762306a36Sopenharmony_ci DEV_STATS_INC(tunnel->dev, rx_length_errors); 82862306a36Sopenharmony_ci DEV_STATS_INC(tunnel->dev, rx_errors); 82962306a36Sopenharmony_ci goto drop; 83062306a36Sopenharmony_ci } 83162306a36Sopenharmony_ci 83262306a36Sopenharmony_ci skb->protocol = eth_type_trans(skb, tunnel->dev); 83362306a36Sopenharmony_ci skb_postpull_rcsum(skb, eth_hdr(skb), ETH_HLEN); 83462306a36Sopenharmony_ci } else { 83562306a36Sopenharmony_ci skb->dev = tunnel->dev; 83662306a36Sopenharmony_ci skb_reset_mac_header(skb); 83762306a36Sopenharmony_ci } 83862306a36Sopenharmony_ci 83962306a36Sopenharmony_ci /* Save offset of outer header relative to skb->head, 84062306a36Sopenharmony_ci * because we are going to reset the network header to the inner header 84162306a36Sopenharmony_ci * and might change skb->head. 84262306a36Sopenharmony_ci */ 84362306a36Sopenharmony_ci nh = skb_network_header(skb) - skb->head; 84462306a36Sopenharmony_ci 84562306a36Sopenharmony_ci skb_reset_network_header(skb); 84662306a36Sopenharmony_ci 84762306a36Sopenharmony_ci if (!pskb_inet_may_pull(skb)) { 84862306a36Sopenharmony_ci DEV_STATS_INC(tunnel->dev, rx_length_errors); 84962306a36Sopenharmony_ci DEV_STATS_INC(tunnel->dev, rx_errors); 85062306a36Sopenharmony_ci goto drop; 85162306a36Sopenharmony_ci } 85262306a36Sopenharmony_ci 85362306a36Sopenharmony_ci /* Get the outer header. */ 85462306a36Sopenharmony_ci ipv6h = (struct ipv6hdr *)(skb->head + nh); 85562306a36Sopenharmony_ci 85662306a36Sopenharmony_ci memset(skb->cb, 0, sizeof(struct inet6_skb_parm)); 85762306a36Sopenharmony_ci 85862306a36Sopenharmony_ci __skb_tunnel_rx(skb, tunnel->dev, tunnel->net); 85962306a36Sopenharmony_ci 86062306a36Sopenharmony_ci err = dscp_ecn_decapsulate(tunnel, ipv6h, skb); 86162306a36Sopenharmony_ci if (unlikely(err)) { 86262306a36Sopenharmony_ci if (log_ecn_err) 86362306a36Sopenharmony_ci net_info_ratelimited("non-ECT from %pI6 with DS=%#x\n", 86462306a36Sopenharmony_ci &ipv6h->saddr, 86562306a36Sopenharmony_ci ipv6_get_dsfield(ipv6h)); 86662306a36Sopenharmony_ci if (err > 1) { 86762306a36Sopenharmony_ci DEV_STATS_INC(tunnel->dev, rx_frame_errors); 86862306a36Sopenharmony_ci DEV_STATS_INC(tunnel->dev, rx_errors); 86962306a36Sopenharmony_ci goto drop; 87062306a36Sopenharmony_ci } 87162306a36Sopenharmony_ci } 87262306a36Sopenharmony_ci 87362306a36Sopenharmony_ci dev_sw_netstats_rx_add(tunnel->dev, skb->len); 87462306a36Sopenharmony_ci 87562306a36Sopenharmony_ci skb_scrub_packet(skb, !net_eq(tunnel->net, dev_net(tunnel->dev))); 87662306a36Sopenharmony_ci 87762306a36Sopenharmony_ci if (tun_dst) 87862306a36Sopenharmony_ci skb_dst_set(skb, (struct dst_entry *)tun_dst); 87962306a36Sopenharmony_ci 88062306a36Sopenharmony_ci gro_cells_receive(&tunnel->gro_cells, skb); 88162306a36Sopenharmony_ci return 0; 88262306a36Sopenharmony_ci 88362306a36Sopenharmony_cidrop: 88462306a36Sopenharmony_ci if (tun_dst) 88562306a36Sopenharmony_ci dst_release((struct dst_entry *)tun_dst); 88662306a36Sopenharmony_ci kfree_skb(skb); 88762306a36Sopenharmony_ci return 0; 88862306a36Sopenharmony_ci} 88962306a36Sopenharmony_ci 89062306a36Sopenharmony_ciint ip6_tnl_rcv(struct ip6_tnl *t, struct sk_buff *skb, 89162306a36Sopenharmony_ci const struct tnl_ptk_info *tpi, 89262306a36Sopenharmony_ci struct metadata_dst *tun_dst, 89362306a36Sopenharmony_ci bool log_ecn_err) 89462306a36Sopenharmony_ci{ 89562306a36Sopenharmony_ci int (*dscp_ecn_decapsulate)(const struct ip6_tnl *t, 89662306a36Sopenharmony_ci const struct ipv6hdr *ipv6h, 89762306a36Sopenharmony_ci struct sk_buff *skb); 89862306a36Sopenharmony_ci 89962306a36Sopenharmony_ci dscp_ecn_decapsulate = ip6ip6_dscp_ecn_decapsulate; 90062306a36Sopenharmony_ci if (tpi->proto == htons(ETH_P_IP)) 90162306a36Sopenharmony_ci dscp_ecn_decapsulate = ip4ip6_dscp_ecn_decapsulate; 90262306a36Sopenharmony_ci 90362306a36Sopenharmony_ci return __ip6_tnl_rcv(t, skb, tpi, tun_dst, dscp_ecn_decapsulate, 90462306a36Sopenharmony_ci log_ecn_err); 90562306a36Sopenharmony_ci} 90662306a36Sopenharmony_ciEXPORT_SYMBOL(ip6_tnl_rcv); 90762306a36Sopenharmony_ci 90862306a36Sopenharmony_cistatic const struct tnl_ptk_info tpi_v6 = { 90962306a36Sopenharmony_ci /* no tunnel info required for ipxip6. */ 91062306a36Sopenharmony_ci .proto = htons(ETH_P_IPV6), 91162306a36Sopenharmony_ci}; 91262306a36Sopenharmony_ci 91362306a36Sopenharmony_cistatic const struct tnl_ptk_info tpi_v4 = { 91462306a36Sopenharmony_ci /* no tunnel info required for ipxip6. */ 91562306a36Sopenharmony_ci .proto = htons(ETH_P_IP), 91662306a36Sopenharmony_ci}; 91762306a36Sopenharmony_ci 91862306a36Sopenharmony_cistatic const struct tnl_ptk_info tpi_mpls = { 91962306a36Sopenharmony_ci /* no tunnel info required for mplsip6. */ 92062306a36Sopenharmony_ci .proto = htons(ETH_P_MPLS_UC), 92162306a36Sopenharmony_ci}; 92262306a36Sopenharmony_ci 92362306a36Sopenharmony_cistatic int ipxip6_rcv(struct sk_buff *skb, u8 ipproto, 92462306a36Sopenharmony_ci const struct tnl_ptk_info *tpi, 92562306a36Sopenharmony_ci int (*dscp_ecn_decapsulate)(const struct ip6_tnl *t, 92662306a36Sopenharmony_ci const struct ipv6hdr *ipv6h, 92762306a36Sopenharmony_ci struct sk_buff *skb)) 92862306a36Sopenharmony_ci{ 92962306a36Sopenharmony_ci struct ip6_tnl *t; 93062306a36Sopenharmony_ci const struct ipv6hdr *ipv6h = ipv6_hdr(skb); 93162306a36Sopenharmony_ci struct metadata_dst *tun_dst = NULL; 93262306a36Sopenharmony_ci int ret = -1; 93362306a36Sopenharmony_ci 93462306a36Sopenharmony_ci rcu_read_lock(); 93562306a36Sopenharmony_ci t = ip6_tnl_lookup(dev_net(skb->dev), skb->dev->ifindex, &ipv6h->saddr, &ipv6h->daddr); 93662306a36Sopenharmony_ci 93762306a36Sopenharmony_ci if (t) { 93862306a36Sopenharmony_ci u8 tproto = READ_ONCE(t->parms.proto); 93962306a36Sopenharmony_ci 94062306a36Sopenharmony_ci if (tproto != ipproto && tproto != 0) 94162306a36Sopenharmony_ci goto drop; 94262306a36Sopenharmony_ci if (!xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb)) 94362306a36Sopenharmony_ci goto drop; 94462306a36Sopenharmony_ci ipv6h = ipv6_hdr(skb); 94562306a36Sopenharmony_ci if (!ip6_tnl_rcv_ctl(t, &ipv6h->daddr, &ipv6h->saddr)) 94662306a36Sopenharmony_ci goto drop; 94762306a36Sopenharmony_ci if (iptunnel_pull_header(skb, 0, tpi->proto, false)) 94862306a36Sopenharmony_ci goto drop; 94962306a36Sopenharmony_ci if (t->parms.collect_md) { 95062306a36Sopenharmony_ci tun_dst = ipv6_tun_rx_dst(skb, 0, 0, 0); 95162306a36Sopenharmony_ci if (!tun_dst) 95262306a36Sopenharmony_ci goto drop; 95362306a36Sopenharmony_ci } 95462306a36Sopenharmony_ci ret = __ip6_tnl_rcv(t, skb, tpi, tun_dst, dscp_ecn_decapsulate, 95562306a36Sopenharmony_ci log_ecn_error); 95662306a36Sopenharmony_ci } 95762306a36Sopenharmony_ci 95862306a36Sopenharmony_ci rcu_read_unlock(); 95962306a36Sopenharmony_ci 96062306a36Sopenharmony_ci return ret; 96162306a36Sopenharmony_ci 96262306a36Sopenharmony_cidrop: 96362306a36Sopenharmony_ci rcu_read_unlock(); 96462306a36Sopenharmony_ci kfree_skb(skb); 96562306a36Sopenharmony_ci return 0; 96662306a36Sopenharmony_ci} 96762306a36Sopenharmony_ci 96862306a36Sopenharmony_cistatic int ip4ip6_rcv(struct sk_buff *skb) 96962306a36Sopenharmony_ci{ 97062306a36Sopenharmony_ci return ipxip6_rcv(skb, IPPROTO_IPIP, &tpi_v4, 97162306a36Sopenharmony_ci ip4ip6_dscp_ecn_decapsulate); 97262306a36Sopenharmony_ci} 97362306a36Sopenharmony_ci 97462306a36Sopenharmony_cistatic int ip6ip6_rcv(struct sk_buff *skb) 97562306a36Sopenharmony_ci{ 97662306a36Sopenharmony_ci return ipxip6_rcv(skb, IPPROTO_IPV6, &tpi_v6, 97762306a36Sopenharmony_ci ip6ip6_dscp_ecn_decapsulate); 97862306a36Sopenharmony_ci} 97962306a36Sopenharmony_ci 98062306a36Sopenharmony_cistatic int mplsip6_rcv(struct sk_buff *skb) 98162306a36Sopenharmony_ci{ 98262306a36Sopenharmony_ci return ipxip6_rcv(skb, IPPROTO_MPLS, &tpi_mpls, 98362306a36Sopenharmony_ci mplsip6_dscp_ecn_decapsulate); 98462306a36Sopenharmony_ci} 98562306a36Sopenharmony_ci 98662306a36Sopenharmony_cistruct ipv6_tel_txoption { 98762306a36Sopenharmony_ci struct ipv6_txoptions ops; 98862306a36Sopenharmony_ci __u8 dst_opt[8]; 98962306a36Sopenharmony_ci}; 99062306a36Sopenharmony_ci 99162306a36Sopenharmony_cistatic void init_tel_txopt(struct ipv6_tel_txoption *opt, __u8 encap_limit) 99262306a36Sopenharmony_ci{ 99362306a36Sopenharmony_ci memset(opt, 0, sizeof(struct ipv6_tel_txoption)); 99462306a36Sopenharmony_ci 99562306a36Sopenharmony_ci opt->dst_opt[2] = IPV6_TLV_TNL_ENCAP_LIMIT; 99662306a36Sopenharmony_ci opt->dst_opt[3] = 1; 99762306a36Sopenharmony_ci opt->dst_opt[4] = encap_limit; 99862306a36Sopenharmony_ci opt->dst_opt[5] = IPV6_TLV_PADN; 99962306a36Sopenharmony_ci opt->dst_opt[6] = 1; 100062306a36Sopenharmony_ci 100162306a36Sopenharmony_ci opt->ops.dst1opt = (struct ipv6_opt_hdr *) opt->dst_opt; 100262306a36Sopenharmony_ci opt->ops.opt_nflen = 8; 100362306a36Sopenharmony_ci} 100462306a36Sopenharmony_ci 100562306a36Sopenharmony_ci/** 100662306a36Sopenharmony_ci * ip6_tnl_addr_conflict - compare packet addresses to tunnel's own 100762306a36Sopenharmony_ci * @t: the outgoing tunnel device 100862306a36Sopenharmony_ci * @hdr: IPv6 header from the incoming packet 100962306a36Sopenharmony_ci * 101062306a36Sopenharmony_ci * Description: 101162306a36Sopenharmony_ci * Avoid trivial tunneling loop by checking that tunnel exit-point 101262306a36Sopenharmony_ci * doesn't match source of incoming packet. 101362306a36Sopenharmony_ci * 101462306a36Sopenharmony_ci * Return: 101562306a36Sopenharmony_ci * 1 if conflict, 101662306a36Sopenharmony_ci * 0 else 101762306a36Sopenharmony_ci **/ 101862306a36Sopenharmony_ci 101962306a36Sopenharmony_cistatic inline bool 102062306a36Sopenharmony_ciip6_tnl_addr_conflict(const struct ip6_tnl *t, const struct ipv6hdr *hdr) 102162306a36Sopenharmony_ci{ 102262306a36Sopenharmony_ci return ipv6_addr_equal(&t->parms.raddr, &hdr->saddr); 102362306a36Sopenharmony_ci} 102462306a36Sopenharmony_ci 102562306a36Sopenharmony_ciint ip6_tnl_xmit_ctl(struct ip6_tnl *t, 102662306a36Sopenharmony_ci const struct in6_addr *laddr, 102762306a36Sopenharmony_ci const struct in6_addr *raddr) 102862306a36Sopenharmony_ci{ 102962306a36Sopenharmony_ci struct __ip6_tnl_parm *p = &t->parms; 103062306a36Sopenharmony_ci int ret = 0; 103162306a36Sopenharmony_ci struct net *net = t->net; 103262306a36Sopenharmony_ci 103362306a36Sopenharmony_ci if (t->parms.collect_md) 103462306a36Sopenharmony_ci return 1; 103562306a36Sopenharmony_ci 103662306a36Sopenharmony_ci if ((p->flags & IP6_TNL_F_CAP_XMIT) || 103762306a36Sopenharmony_ci ((p->flags & IP6_TNL_F_CAP_PER_PACKET) && 103862306a36Sopenharmony_ci (ip6_tnl_get_cap(t, laddr, raddr) & IP6_TNL_F_CAP_XMIT))) { 103962306a36Sopenharmony_ci struct net_device *ldev = NULL; 104062306a36Sopenharmony_ci 104162306a36Sopenharmony_ci rcu_read_lock(); 104262306a36Sopenharmony_ci if (p->link) 104362306a36Sopenharmony_ci ldev = dev_get_by_index_rcu(net, p->link); 104462306a36Sopenharmony_ci 104562306a36Sopenharmony_ci if (unlikely(!ipv6_chk_addr_and_flags(net, laddr, ldev, false, 104662306a36Sopenharmony_ci 0, IFA_F_TENTATIVE))) 104762306a36Sopenharmony_ci pr_warn_ratelimited("%s xmit: Local address not yet configured!\n", 104862306a36Sopenharmony_ci p->name); 104962306a36Sopenharmony_ci else if (!(p->flags & IP6_TNL_F_ALLOW_LOCAL_REMOTE) && 105062306a36Sopenharmony_ci !ipv6_addr_is_multicast(raddr) && 105162306a36Sopenharmony_ci unlikely(ipv6_chk_addr_and_flags(net, raddr, ldev, 105262306a36Sopenharmony_ci true, 0, IFA_F_TENTATIVE))) 105362306a36Sopenharmony_ci pr_warn_ratelimited("%s xmit: Routing loop! Remote address found on this node!\n", 105462306a36Sopenharmony_ci p->name); 105562306a36Sopenharmony_ci else 105662306a36Sopenharmony_ci ret = 1; 105762306a36Sopenharmony_ci rcu_read_unlock(); 105862306a36Sopenharmony_ci } 105962306a36Sopenharmony_ci return ret; 106062306a36Sopenharmony_ci} 106162306a36Sopenharmony_ciEXPORT_SYMBOL_GPL(ip6_tnl_xmit_ctl); 106262306a36Sopenharmony_ci 106362306a36Sopenharmony_ci/** 106462306a36Sopenharmony_ci * ip6_tnl_xmit - encapsulate packet and send 106562306a36Sopenharmony_ci * @skb: the outgoing socket buffer 106662306a36Sopenharmony_ci * @dev: the outgoing tunnel device 106762306a36Sopenharmony_ci * @dsfield: dscp code for outer header 106862306a36Sopenharmony_ci * @fl6: flow of tunneled packet 106962306a36Sopenharmony_ci * @encap_limit: encapsulation limit 107062306a36Sopenharmony_ci * @pmtu: Path MTU is stored if packet is too big 107162306a36Sopenharmony_ci * @proto: next header value 107262306a36Sopenharmony_ci * 107362306a36Sopenharmony_ci * Description: 107462306a36Sopenharmony_ci * Build new header and do some sanity checks on the packet before sending 107562306a36Sopenharmony_ci * it. 107662306a36Sopenharmony_ci * 107762306a36Sopenharmony_ci * Return: 107862306a36Sopenharmony_ci * 0 on success 107962306a36Sopenharmony_ci * -1 fail 108062306a36Sopenharmony_ci * %-EMSGSIZE message too big. return mtu in this case. 108162306a36Sopenharmony_ci **/ 108262306a36Sopenharmony_ci 108362306a36Sopenharmony_ciint ip6_tnl_xmit(struct sk_buff *skb, struct net_device *dev, __u8 dsfield, 108462306a36Sopenharmony_ci struct flowi6 *fl6, int encap_limit, __u32 *pmtu, 108562306a36Sopenharmony_ci __u8 proto) 108662306a36Sopenharmony_ci{ 108762306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 108862306a36Sopenharmony_ci struct net *net = t->net; 108962306a36Sopenharmony_ci struct ipv6hdr *ipv6h; 109062306a36Sopenharmony_ci struct ipv6_tel_txoption opt; 109162306a36Sopenharmony_ci struct dst_entry *dst = NULL, *ndst = NULL; 109262306a36Sopenharmony_ci struct net_device *tdev; 109362306a36Sopenharmony_ci int mtu; 109462306a36Sopenharmony_ci unsigned int eth_hlen = t->dev->type == ARPHRD_ETHER ? ETH_HLEN : 0; 109562306a36Sopenharmony_ci unsigned int psh_hlen = sizeof(struct ipv6hdr) + t->encap_hlen; 109662306a36Sopenharmony_ci unsigned int max_headroom = psh_hlen; 109762306a36Sopenharmony_ci __be16 payload_protocol; 109862306a36Sopenharmony_ci bool use_cache = false; 109962306a36Sopenharmony_ci u8 hop_limit; 110062306a36Sopenharmony_ci int err = -1; 110162306a36Sopenharmony_ci 110262306a36Sopenharmony_ci payload_protocol = skb_protocol(skb, true); 110362306a36Sopenharmony_ci 110462306a36Sopenharmony_ci if (t->parms.collect_md) { 110562306a36Sopenharmony_ci hop_limit = skb_tunnel_info(skb)->key.ttl; 110662306a36Sopenharmony_ci goto route_lookup; 110762306a36Sopenharmony_ci } else { 110862306a36Sopenharmony_ci hop_limit = t->parms.hop_limit; 110962306a36Sopenharmony_ci } 111062306a36Sopenharmony_ci 111162306a36Sopenharmony_ci /* NBMA tunnel */ 111262306a36Sopenharmony_ci if (ipv6_addr_any(&t->parms.raddr)) { 111362306a36Sopenharmony_ci if (payload_protocol == htons(ETH_P_IPV6)) { 111462306a36Sopenharmony_ci struct in6_addr *addr6; 111562306a36Sopenharmony_ci struct neighbour *neigh; 111662306a36Sopenharmony_ci int addr_type; 111762306a36Sopenharmony_ci 111862306a36Sopenharmony_ci if (!skb_dst(skb)) 111962306a36Sopenharmony_ci goto tx_err_link_failure; 112062306a36Sopenharmony_ci 112162306a36Sopenharmony_ci neigh = dst_neigh_lookup(skb_dst(skb), 112262306a36Sopenharmony_ci &ipv6_hdr(skb)->daddr); 112362306a36Sopenharmony_ci if (!neigh) 112462306a36Sopenharmony_ci goto tx_err_link_failure; 112562306a36Sopenharmony_ci 112662306a36Sopenharmony_ci addr6 = (struct in6_addr *)&neigh->primary_key; 112762306a36Sopenharmony_ci addr_type = ipv6_addr_type(addr6); 112862306a36Sopenharmony_ci 112962306a36Sopenharmony_ci if (addr_type == IPV6_ADDR_ANY) 113062306a36Sopenharmony_ci addr6 = &ipv6_hdr(skb)->daddr; 113162306a36Sopenharmony_ci 113262306a36Sopenharmony_ci memcpy(&fl6->daddr, addr6, sizeof(fl6->daddr)); 113362306a36Sopenharmony_ci neigh_release(neigh); 113462306a36Sopenharmony_ci } else if (payload_protocol == htons(ETH_P_IP)) { 113562306a36Sopenharmony_ci const struct rtable *rt = skb_rtable(skb); 113662306a36Sopenharmony_ci 113762306a36Sopenharmony_ci if (!rt) 113862306a36Sopenharmony_ci goto tx_err_link_failure; 113962306a36Sopenharmony_ci 114062306a36Sopenharmony_ci if (rt->rt_gw_family == AF_INET6) 114162306a36Sopenharmony_ci memcpy(&fl6->daddr, &rt->rt_gw6, sizeof(fl6->daddr)); 114262306a36Sopenharmony_ci } 114362306a36Sopenharmony_ci } else if (t->parms.proto != 0 && !(t->parms.flags & 114462306a36Sopenharmony_ci (IP6_TNL_F_USE_ORIG_TCLASS | 114562306a36Sopenharmony_ci IP6_TNL_F_USE_ORIG_FWMARK))) { 114662306a36Sopenharmony_ci /* enable the cache only if neither the outer protocol nor the 114762306a36Sopenharmony_ci * routing decision depends on the current inner header value 114862306a36Sopenharmony_ci */ 114962306a36Sopenharmony_ci use_cache = true; 115062306a36Sopenharmony_ci } 115162306a36Sopenharmony_ci 115262306a36Sopenharmony_ci if (use_cache) 115362306a36Sopenharmony_ci dst = dst_cache_get(&t->dst_cache); 115462306a36Sopenharmony_ci 115562306a36Sopenharmony_ci if (!ip6_tnl_xmit_ctl(t, &fl6->saddr, &fl6->daddr)) 115662306a36Sopenharmony_ci goto tx_err_link_failure; 115762306a36Sopenharmony_ci 115862306a36Sopenharmony_ci if (!dst) { 115962306a36Sopenharmony_ciroute_lookup: 116062306a36Sopenharmony_ci /* add dsfield to flowlabel for route lookup */ 116162306a36Sopenharmony_ci fl6->flowlabel = ip6_make_flowinfo(dsfield, fl6->flowlabel); 116262306a36Sopenharmony_ci 116362306a36Sopenharmony_ci dst = ip6_route_output(net, NULL, fl6); 116462306a36Sopenharmony_ci 116562306a36Sopenharmony_ci if (dst->error) 116662306a36Sopenharmony_ci goto tx_err_link_failure; 116762306a36Sopenharmony_ci dst = xfrm_lookup(net, dst, flowi6_to_flowi(fl6), NULL, 0); 116862306a36Sopenharmony_ci if (IS_ERR(dst)) { 116962306a36Sopenharmony_ci err = PTR_ERR(dst); 117062306a36Sopenharmony_ci dst = NULL; 117162306a36Sopenharmony_ci goto tx_err_link_failure; 117262306a36Sopenharmony_ci } 117362306a36Sopenharmony_ci if (t->parms.collect_md && ipv6_addr_any(&fl6->saddr) && 117462306a36Sopenharmony_ci ipv6_dev_get_saddr(net, ip6_dst_idev(dst)->dev, 117562306a36Sopenharmony_ci &fl6->daddr, 0, &fl6->saddr)) 117662306a36Sopenharmony_ci goto tx_err_link_failure; 117762306a36Sopenharmony_ci ndst = dst; 117862306a36Sopenharmony_ci } 117962306a36Sopenharmony_ci 118062306a36Sopenharmony_ci tdev = dst->dev; 118162306a36Sopenharmony_ci 118262306a36Sopenharmony_ci if (tdev == dev) { 118362306a36Sopenharmony_ci DEV_STATS_INC(dev, collisions); 118462306a36Sopenharmony_ci net_warn_ratelimited("%s: Local routing loop detected!\n", 118562306a36Sopenharmony_ci t->parms.name); 118662306a36Sopenharmony_ci goto tx_err_dst_release; 118762306a36Sopenharmony_ci } 118862306a36Sopenharmony_ci mtu = dst_mtu(dst) - eth_hlen - psh_hlen - t->tun_hlen; 118962306a36Sopenharmony_ci if (encap_limit >= 0) { 119062306a36Sopenharmony_ci max_headroom += 8; 119162306a36Sopenharmony_ci mtu -= 8; 119262306a36Sopenharmony_ci } 119362306a36Sopenharmony_ci mtu = max(mtu, skb->protocol == htons(ETH_P_IPV6) ? 119462306a36Sopenharmony_ci IPV6_MIN_MTU : IPV4_MIN_MTU); 119562306a36Sopenharmony_ci 119662306a36Sopenharmony_ci skb_dst_update_pmtu_no_confirm(skb, mtu); 119762306a36Sopenharmony_ci if (skb->len - t->tun_hlen - eth_hlen > mtu && !skb_is_gso(skb)) { 119862306a36Sopenharmony_ci *pmtu = mtu; 119962306a36Sopenharmony_ci err = -EMSGSIZE; 120062306a36Sopenharmony_ci goto tx_err_dst_release; 120162306a36Sopenharmony_ci } 120262306a36Sopenharmony_ci 120362306a36Sopenharmony_ci if (t->err_count > 0) { 120462306a36Sopenharmony_ci if (time_before(jiffies, 120562306a36Sopenharmony_ci t->err_time + IP6TUNNEL_ERR_TIMEO)) { 120662306a36Sopenharmony_ci t->err_count--; 120762306a36Sopenharmony_ci 120862306a36Sopenharmony_ci dst_link_failure(skb); 120962306a36Sopenharmony_ci } else { 121062306a36Sopenharmony_ci t->err_count = 0; 121162306a36Sopenharmony_ci } 121262306a36Sopenharmony_ci } 121362306a36Sopenharmony_ci 121462306a36Sopenharmony_ci skb_scrub_packet(skb, !net_eq(t->net, dev_net(dev))); 121562306a36Sopenharmony_ci 121662306a36Sopenharmony_ci /* 121762306a36Sopenharmony_ci * Okay, now see if we can stuff it in the buffer as-is. 121862306a36Sopenharmony_ci */ 121962306a36Sopenharmony_ci max_headroom += LL_RESERVED_SPACE(tdev); 122062306a36Sopenharmony_ci 122162306a36Sopenharmony_ci if (skb_headroom(skb) < max_headroom || skb_shared(skb) || 122262306a36Sopenharmony_ci (skb_cloned(skb) && !skb_clone_writable(skb, 0))) { 122362306a36Sopenharmony_ci struct sk_buff *new_skb; 122462306a36Sopenharmony_ci 122562306a36Sopenharmony_ci new_skb = skb_realloc_headroom(skb, max_headroom); 122662306a36Sopenharmony_ci if (!new_skb) 122762306a36Sopenharmony_ci goto tx_err_dst_release; 122862306a36Sopenharmony_ci 122962306a36Sopenharmony_ci if (skb->sk) 123062306a36Sopenharmony_ci skb_set_owner_w(new_skb, skb->sk); 123162306a36Sopenharmony_ci consume_skb(skb); 123262306a36Sopenharmony_ci skb = new_skb; 123362306a36Sopenharmony_ci } 123462306a36Sopenharmony_ci 123562306a36Sopenharmony_ci if (t->parms.collect_md) { 123662306a36Sopenharmony_ci if (t->encap.type != TUNNEL_ENCAP_NONE) 123762306a36Sopenharmony_ci goto tx_err_dst_release; 123862306a36Sopenharmony_ci } else { 123962306a36Sopenharmony_ci if (use_cache && ndst) 124062306a36Sopenharmony_ci dst_cache_set_ip6(&t->dst_cache, ndst, &fl6->saddr); 124162306a36Sopenharmony_ci } 124262306a36Sopenharmony_ci skb_dst_set(skb, dst); 124362306a36Sopenharmony_ci 124462306a36Sopenharmony_ci if (hop_limit == 0) { 124562306a36Sopenharmony_ci if (payload_protocol == htons(ETH_P_IP)) 124662306a36Sopenharmony_ci hop_limit = ip_hdr(skb)->ttl; 124762306a36Sopenharmony_ci else if (payload_protocol == htons(ETH_P_IPV6)) 124862306a36Sopenharmony_ci hop_limit = ipv6_hdr(skb)->hop_limit; 124962306a36Sopenharmony_ci else 125062306a36Sopenharmony_ci hop_limit = ip6_dst_hoplimit(dst); 125162306a36Sopenharmony_ci } 125262306a36Sopenharmony_ci 125362306a36Sopenharmony_ci /* Calculate max headroom for all the headers and adjust 125462306a36Sopenharmony_ci * needed_headroom if necessary. 125562306a36Sopenharmony_ci */ 125662306a36Sopenharmony_ci max_headroom = LL_RESERVED_SPACE(dst->dev) + sizeof(struct ipv6hdr) 125762306a36Sopenharmony_ci + dst->header_len + t->hlen; 125862306a36Sopenharmony_ci if (max_headroom > READ_ONCE(dev->needed_headroom)) 125962306a36Sopenharmony_ci WRITE_ONCE(dev->needed_headroom, max_headroom); 126062306a36Sopenharmony_ci 126162306a36Sopenharmony_ci err = ip6_tnl_encap(skb, t, &proto, fl6); 126262306a36Sopenharmony_ci if (err) 126362306a36Sopenharmony_ci return err; 126462306a36Sopenharmony_ci 126562306a36Sopenharmony_ci if (encap_limit >= 0) { 126662306a36Sopenharmony_ci init_tel_txopt(&opt, encap_limit); 126762306a36Sopenharmony_ci ipv6_push_frag_opts(skb, &opt.ops, &proto); 126862306a36Sopenharmony_ci } 126962306a36Sopenharmony_ci 127062306a36Sopenharmony_ci skb_push(skb, sizeof(struct ipv6hdr)); 127162306a36Sopenharmony_ci skb_reset_network_header(skb); 127262306a36Sopenharmony_ci ipv6h = ipv6_hdr(skb); 127362306a36Sopenharmony_ci ip6_flow_hdr(ipv6h, dsfield, 127462306a36Sopenharmony_ci ip6_make_flowlabel(net, skb, fl6->flowlabel, true, fl6)); 127562306a36Sopenharmony_ci ipv6h->hop_limit = hop_limit; 127662306a36Sopenharmony_ci ipv6h->nexthdr = proto; 127762306a36Sopenharmony_ci ipv6h->saddr = fl6->saddr; 127862306a36Sopenharmony_ci ipv6h->daddr = fl6->daddr; 127962306a36Sopenharmony_ci ip6tunnel_xmit(NULL, skb, dev); 128062306a36Sopenharmony_ci return 0; 128162306a36Sopenharmony_citx_err_link_failure: 128262306a36Sopenharmony_ci DEV_STATS_INC(dev, tx_carrier_errors); 128362306a36Sopenharmony_ci dst_link_failure(skb); 128462306a36Sopenharmony_citx_err_dst_release: 128562306a36Sopenharmony_ci dst_release(dst); 128662306a36Sopenharmony_ci return err; 128762306a36Sopenharmony_ci} 128862306a36Sopenharmony_ciEXPORT_SYMBOL(ip6_tnl_xmit); 128962306a36Sopenharmony_ci 129062306a36Sopenharmony_cistatic inline int 129162306a36Sopenharmony_ciipxip6_tnl_xmit(struct sk_buff *skb, struct net_device *dev, 129262306a36Sopenharmony_ci u8 protocol) 129362306a36Sopenharmony_ci{ 129462306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 129562306a36Sopenharmony_ci struct ipv6hdr *ipv6h; 129662306a36Sopenharmony_ci const struct iphdr *iph; 129762306a36Sopenharmony_ci int encap_limit = -1; 129862306a36Sopenharmony_ci __u16 offset; 129962306a36Sopenharmony_ci struct flowi6 fl6; 130062306a36Sopenharmony_ci __u8 dsfield, orig_dsfield; 130162306a36Sopenharmony_ci __u32 mtu; 130262306a36Sopenharmony_ci u8 tproto; 130362306a36Sopenharmony_ci int err; 130462306a36Sopenharmony_ci 130562306a36Sopenharmony_ci tproto = READ_ONCE(t->parms.proto); 130662306a36Sopenharmony_ci if (tproto != protocol && tproto != 0) 130762306a36Sopenharmony_ci return -1; 130862306a36Sopenharmony_ci 130962306a36Sopenharmony_ci if (t->parms.collect_md) { 131062306a36Sopenharmony_ci struct ip_tunnel_info *tun_info; 131162306a36Sopenharmony_ci const struct ip_tunnel_key *key; 131262306a36Sopenharmony_ci 131362306a36Sopenharmony_ci tun_info = skb_tunnel_info(skb); 131462306a36Sopenharmony_ci if (unlikely(!tun_info || !(tun_info->mode & IP_TUNNEL_INFO_TX) || 131562306a36Sopenharmony_ci ip_tunnel_info_af(tun_info) != AF_INET6)) 131662306a36Sopenharmony_ci return -1; 131762306a36Sopenharmony_ci key = &tun_info->key; 131862306a36Sopenharmony_ci memset(&fl6, 0, sizeof(fl6)); 131962306a36Sopenharmony_ci fl6.flowi6_proto = protocol; 132062306a36Sopenharmony_ci fl6.saddr = key->u.ipv6.src; 132162306a36Sopenharmony_ci fl6.daddr = key->u.ipv6.dst; 132262306a36Sopenharmony_ci fl6.flowlabel = key->label; 132362306a36Sopenharmony_ci dsfield = key->tos; 132462306a36Sopenharmony_ci switch (protocol) { 132562306a36Sopenharmony_ci case IPPROTO_IPIP: 132662306a36Sopenharmony_ci iph = ip_hdr(skb); 132762306a36Sopenharmony_ci orig_dsfield = ipv4_get_dsfield(iph); 132862306a36Sopenharmony_ci break; 132962306a36Sopenharmony_ci case IPPROTO_IPV6: 133062306a36Sopenharmony_ci ipv6h = ipv6_hdr(skb); 133162306a36Sopenharmony_ci orig_dsfield = ipv6_get_dsfield(ipv6h); 133262306a36Sopenharmony_ci break; 133362306a36Sopenharmony_ci default: 133462306a36Sopenharmony_ci orig_dsfield = dsfield; 133562306a36Sopenharmony_ci break; 133662306a36Sopenharmony_ci } 133762306a36Sopenharmony_ci } else { 133862306a36Sopenharmony_ci if (!(t->parms.flags & IP6_TNL_F_IGN_ENCAP_LIMIT)) 133962306a36Sopenharmony_ci encap_limit = t->parms.encap_limit; 134062306a36Sopenharmony_ci if (protocol == IPPROTO_IPV6) { 134162306a36Sopenharmony_ci offset = ip6_tnl_parse_tlv_enc_lim(skb, 134262306a36Sopenharmony_ci skb_network_header(skb)); 134362306a36Sopenharmony_ci /* ip6_tnl_parse_tlv_enc_lim() might have 134462306a36Sopenharmony_ci * reallocated skb->head 134562306a36Sopenharmony_ci */ 134662306a36Sopenharmony_ci if (offset > 0) { 134762306a36Sopenharmony_ci struct ipv6_tlv_tnl_enc_lim *tel; 134862306a36Sopenharmony_ci 134962306a36Sopenharmony_ci tel = (void *)&skb_network_header(skb)[offset]; 135062306a36Sopenharmony_ci if (tel->encap_limit == 0) { 135162306a36Sopenharmony_ci icmpv6_ndo_send(skb, ICMPV6_PARAMPROB, 135262306a36Sopenharmony_ci ICMPV6_HDR_FIELD, offset + 2); 135362306a36Sopenharmony_ci return -1; 135462306a36Sopenharmony_ci } 135562306a36Sopenharmony_ci encap_limit = tel->encap_limit - 1; 135662306a36Sopenharmony_ci } 135762306a36Sopenharmony_ci } 135862306a36Sopenharmony_ci 135962306a36Sopenharmony_ci memcpy(&fl6, &t->fl.u.ip6, sizeof(fl6)); 136062306a36Sopenharmony_ci fl6.flowi6_proto = protocol; 136162306a36Sopenharmony_ci 136262306a36Sopenharmony_ci if (t->parms.flags & IP6_TNL_F_USE_ORIG_FWMARK) 136362306a36Sopenharmony_ci fl6.flowi6_mark = skb->mark; 136462306a36Sopenharmony_ci else 136562306a36Sopenharmony_ci fl6.flowi6_mark = t->parms.fwmark; 136662306a36Sopenharmony_ci switch (protocol) { 136762306a36Sopenharmony_ci case IPPROTO_IPIP: 136862306a36Sopenharmony_ci iph = ip_hdr(skb); 136962306a36Sopenharmony_ci orig_dsfield = ipv4_get_dsfield(iph); 137062306a36Sopenharmony_ci if (t->parms.flags & IP6_TNL_F_USE_ORIG_TCLASS) 137162306a36Sopenharmony_ci dsfield = orig_dsfield; 137262306a36Sopenharmony_ci else 137362306a36Sopenharmony_ci dsfield = ip6_tclass(t->parms.flowinfo); 137462306a36Sopenharmony_ci break; 137562306a36Sopenharmony_ci case IPPROTO_IPV6: 137662306a36Sopenharmony_ci ipv6h = ipv6_hdr(skb); 137762306a36Sopenharmony_ci orig_dsfield = ipv6_get_dsfield(ipv6h); 137862306a36Sopenharmony_ci if (t->parms.flags & IP6_TNL_F_USE_ORIG_TCLASS) 137962306a36Sopenharmony_ci dsfield = orig_dsfield; 138062306a36Sopenharmony_ci else 138162306a36Sopenharmony_ci dsfield = ip6_tclass(t->parms.flowinfo); 138262306a36Sopenharmony_ci if (t->parms.flags & IP6_TNL_F_USE_ORIG_FLOWLABEL) 138362306a36Sopenharmony_ci fl6.flowlabel |= ip6_flowlabel(ipv6h); 138462306a36Sopenharmony_ci break; 138562306a36Sopenharmony_ci default: 138662306a36Sopenharmony_ci orig_dsfield = dsfield = ip6_tclass(t->parms.flowinfo); 138762306a36Sopenharmony_ci break; 138862306a36Sopenharmony_ci } 138962306a36Sopenharmony_ci } 139062306a36Sopenharmony_ci 139162306a36Sopenharmony_ci fl6.flowi6_uid = sock_net_uid(dev_net(dev), NULL); 139262306a36Sopenharmony_ci dsfield = INET_ECN_encapsulate(dsfield, orig_dsfield); 139362306a36Sopenharmony_ci 139462306a36Sopenharmony_ci if (iptunnel_handle_offloads(skb, SKB_GSO_IPXIP6)) 139562306a36Sopenharmony_ci return -1; 139662306a36Sopenharmony_ci 139762306a36Sopenharmony_ci skb_set_inner_ipproto(skb, protocol); 139862306a36Sopenharmony_ci 139962306a36Sopenharmony_ci err = ip6_tnl_xmit(skb, dev, dsfield, &fl6, encap_limit, &mtu, 140062306a36Sopenharmony_ci protocol); 140162306a36Sopenharmony_ci if (err != 0) { 140262306a36Sopenharmony_ci /* XXX: send ICMP error even if DF is not set. */ 140362306a36Sopenharmony_ci if (err == -EMSGSIZE) 140462306a36Sopenharmony_ci switch (protocol) { 140562306a36Sopenharmony_ci case IPPROTO_IPIP: 140662306a36Sopenharmony_ci icmp_ndo_send(skb, ICMP_DEST_UNREACH, 140762306a36Sopenharmony_ci ICMP_FRAG_NEEDED, htonl(mtu)); 140862306a36Sopenharmony_ci break; 140962306a36Sopenharmony_ci case IPPROTO_IPV6: 141062306a36Sopenharmony_ci icmpv6_ndo_send(skb, ICMPV6_PKT_TOOBIG, 0, mtu); 141162306a36Sopenharmony_ci break; 141262306a36Sopenharmony_ci default: 141362306a36Sopenharmony_ci break; 141462306a36Sopenharmony_ci } 141562306a36Sopenharmony_ci return -1; 141662306a36Sopenharmony_ci } 141762306a36Sopenharmony_ci 141862306a36Sopenharmony_ci return 0; 141962306a36Sopenharmony_ci} 142062306a36Sopenharmony_ci 142162306a36Sopenharmony_cistatic netdev_tx_t 142262306a36Sopenharmony_ciip6_tnl_start_xmit(struct sk_buff *skb, struct net_device *dev) 142362306a36Sopenharmony_ci{ 142462306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 142562306a36Sopenharmony_ci u8 ipproto; 142662306a36Sopenharmony_ci int ret; 142762306a36Sopenharmony_ci 142862306a36Sopenharmony_ci if (!pskb_inet_may_pull(skb)) 142962306a36Sopenharmony_ci goto tx_err; 143062306a36Sopenharmony_ci 143162306a36Sopenharmony_ci switch (skb->protocol) { 143262306a36Sopenharmony_ci case htons(ETH_P_IP): 143362306a36Sopenharmony_ci ipproto = IPPROTO_IPIP; 143462306a36Sopenharmony_ci break; 143562306a36Sopenharmony_ci case htons(ETH_P_IPV6): 143662306a36Sopenharmony_ci if (ip6_tnl_addr_conflict(t, ipv6_hdr(skb))) 143762306a36Sopenharmony_ci goto tx_err; 143862306a36Sopenharmony_ci ipproto = IPPROTO_IPV6; 143962306a36Sopenharmony_ci break; 144062306a36Sopenharmony_ci case htons(ETH_P_MPLS_UC): 144162306a36Sopenharmony_ci ipproto = IPPROTO_MPLS; 144262306a36Sopenharmony_ci break; 144362306a36Sopenharmony_ci default: 144462306a36Sopenharmony_ci goto tx_err; 144562306a36Sopenharmony_ci } 144662306a36Sopenharmony_ci 144762306a36Sopenharmony_ci ret = ipxip6_tnl_xmit(skb, dev, ipproto); 144862306a36Sopenharmony_ci if (ret < 0) 144962306a36Sopenharmony_ci goto tx_err; 145062306a36Sopenharmony_ci 145162306a36Sopenharmony_ci return NETDEV_TX_OK; 145262306a36Sopenharmony_ci 145362306a36Sopenharmony_citx_err: 145462306a36Sopenharmony_ci DEV_STATS_INC(dev, tx_errors); 145562306a36Sopenharmony_ci DEV_STATS_INC(dev, tx_dropped); 145662306a36Sopenharmony_ci kfree_skb(skb); 145762306a36Sopenharmony_ci return NETDEV_TX_OK; 145862306a36Sopenharmony_ci} 145962306a36Sopenharmony_ci 146062306a36Sopenharmony_cistatic void ip6_tnl_link_config(struct ip6_tnl *t) 146162306a36Sopenharmony_ci{ 146262306a36Sopenharmony_ci struct net_device *dev = t->dev; 146362306a36Sopenharmony_ci struct net_device *tdev = NULL; 146462306a36Sopenharmony_ci struct __ip6_tnl_parm *p = &t->parms; 146562306a36Sopenharmony_ci struct flowi6 *fl6 = &t->fl.u.ip6; 146662306a36Sopenharmony_ci int t_hlen; 146762306a36Sopenharmony_ci int mtu; 146862306a36Sopenharmony_ci 146962306a36Sopenharmony_ci __dev_addr_set(dev, &p->laddr, sizeof(struct in6_addr)); 147062306a36Sopenharmony_ci memcpy(dev->broadcast, &p->raddr, sizeof(struct in6_addr)); 147162306a36Sopenharmony_ci 147262306a36Sopenharmony_ci /* Set up flowi template */ 147362306a36Sopenharmony_ci fl6->saddr = p->laddr; 147462306a36Sopenharmony_ci fl6->daddr = p->raddr; 147562306a36Sopenharmony_ci fl6->flowi6_oif = p->link; 147662306a36Sopenharmony_ci fl6->flowlabel = 0; 147762306a36Sopenharmony_ci 147862306a36Sopenharmony_ci if (!(p->flags&IP6_TNL_F_USE_ORIG_TCLASS)) 147962306a36Sopenharmony_ci fl6->flowlabel |= IPV6_TCLASS_MASK & p->flowinfo; 148062306a36Sopenharmony_ci if (!(p->flags&IP6_TNL_F_USE_ORIG_FLOWLABEL)) 148162306a36Sopenharmony_ci fl6->flowlabel |= IPV6_FLOWLABEL_MASK & p->flowinfo; 148262306a36Sopenharmony_ci 148362306a36Sopenharmony_ci p->flags &= ~(IP6_TNL_F_CAP_XMIT|IP6_TNL_F_CAP_RCV|IP6_TNL_F_CAP_PER_PACKET); 148462306a36Sopenharmony_ci p->flags |= ip6_tnl_get_cap(t, &p->laddr, &p->raddr); 148562306a36Sopenharmony_ci 148662306a36Sopenharmony_ci if (p->flags&IP6_TNL_F_CAP_XMIT && p->flags&IP6_TNL_F_CAP_RCV) 148762306a36Sopenharmony_ci dev->flags |= IFF_POINTOPOINT; 148862306a36Sopenharmony_ci else 148962306a36Sopenharmony_ci dev->flags &= ~IFF_POINTOPOINT; 149062306a36Sopenharmony_ci 149162306a36Sopenharmony_ci t->tun_hlen = 0; 149262306a36Sopenharmony_ci t->hlen = t->encap_hlen + t->tun_hlen; 149362306a36Sopenharmony_ci t_hlen = t->hlen + sizeof(struct ipv6hdr); 149462306a36Sopenharmony_ci 149562306a36Sopenharmony_ci if (p->flags & IP6_TNL_F_CAP_XMIT) { 149662306a36Sopenharmony_ci int strict = (ipv6_addr_type(&p->raddr) & 149762306a36Sopenharmony_ci (IPV6_ADDR_MULTICAST|IPV6_ADDR_LINKLOCAL)); 149862306a36Sopenharmony_ci 149962306a36Sopenharmony_ci struct rt6_info *rt = rt6_lookup(t->net, 150062306a36Sopenharmony_ci &p->raddr, &p->laddr, 150162306a36Sopenharmony_ci p->link, NULL, strict); 150262306a36Sopenharmony_ci if (rt) { 150362306a36Sopenharmony_ci tdev = rt->dst.dev; 150462306a36Sopenharmony_ci ip6_rt_put(rt); 150562306a36Sopenharmony_ci } 150662306a36Sopenharmony_ci 150762306a36Sopenharmony_ci if (!tdev && p->link) 150862306a36Sopenharmony_ci tdev = __dev_get_by_index(t->net, p->link); 150962306a36Sopenharmony_ci 151062306a36Sopenharmony_ci if (tdev) { 151162306a36Sopenharmony_ci dev->hard_header_len = tdev->hard_header_len + t_hlen; 151262306a36Sopenharmony_ci mtu = min_t(unsigned int, tdev->mtu, IP6_MAX_MTU); 151362306a36Sopenharmony_ci 151462306a36Sopenharmony_ci mtu = mtu - t_hlen; 151562306a36Sopenharmony_ci if (!(t->parms.flags & IP6_TNL_F_IGN_ENCAP_LIMIT)) 151662306a36Sopenharmony_ci mtu -= 8; 151762306a36Sopenharmony_ci 151862306a36Sopenharmony_ci if (mtu < IPV6_MIN_MTU) 151962306a36Sopenharmony_ci mtu = IPV6_MIN_MTU; 152062306a36Sopenharmony_ci WRITE_ONCE(dev->mtu, mtu); 152162306a36Sopenharmony_ci } 152262306a36Sopenharmony_ci } 152362306a36Sopenharmony_ci} 152462306a36Sopenharmony_ci 152562306a36Sopenharmony_ci/** 152662306a36Sopenharmony_ci * ip6_tnl_change - update the tunnel parameters 152762306a36Sopenharmony_ci * @t: tunnel to be changed 152862306a36Sopenharmony_ci * @p: tunnel configuration parameters 152962306a36Sopenharmony_ci * 153062306a36Sopenharmony_ci * Description: 153162306a36Sopenharmony_ci * ip6_tnl_change() updates the tunnel parameters 153262306a36Sopenharmony_ci **/ 153362306a36Sopenharmony_ci 153462306a36Sopenharmony_cistatic void 153562306a36Sopenharmony_ciip6_tnl_change(struct ip6_tnl *t, const struct __ip6_tnl_parm *p) 153662306a36Sopenharmony_ci{ 153762306a36Sopenharmony_ci t->parms.laddr = p->laddr; 153862306a36Sopenharmony_ci t->parms.raddr = p->raddr; 153962306a36Sopenharmony_ci t->parms.flags = p->flags; 154062306a36Sopenharmony_ci t->parms.hop_limit = p->hop_limit; 154162306a36Sopenharmony_ci t->parms.encap_limit = p->encap_limit; 154262306a36Sopenharmony_ci t->parms.flowinfo = p->flowinfo; 154362306a36Sopenharmony_ci t->parms.link = p->link; 154462306a36Sopenharmony_ci t->parms.proto = p->proto; 154562306a36Sopenharmony_ci t->parms.fwmark = p->fwmark; 154662306a36Sopenharmony_ci dst_cache_reset(&t->dst_cache); 154762306a36Sopenharmony_ci ip6_tnl_link_config(t); 154862306a36Sopenharmony_ci} 154962306a36Sopenharmony_ci 155062306a36Sopenharmony_cistatic void ip6_tnl_update(struct ip6_tnl *t, struct __ip6_tnl_parm *p) 155162306a36Sopenharmony_ci{ 155262306a36Sopenharmony_ci struct net *net = t->net; 155362306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 155462306a36Sopenharmony_ci 155562306a36Sopenharmony_ci ip6_tnl_unlink(ip6n, t); 155662306a36Sopenharmony_ci synchronize_net(); 155762306a36Sopenharmony_ci ip6_tnl_change(t, p); 155862306a36Sopenharmony_ci ip6_tnl_link(ip6n, t); 155962306a36Sopenharmony_ci netdev_state_change(t->dev); 156062306a36Sopenharmony_ci} 156162306a36Sopenharmony_ci 156262306a36Sopenharmony_cistatic void ip6_tnl0_update(struct ip6_tnl *t, struct __ip6_tnl_parm *p) 156362306a36Sopenharmony_ci{ 156462306a36Sopenharmony_ci /* for default tnl0 device allow to change only the proto */ 156562306a36Sopenharmony_ci t->parms.proto = p->proto; 156662306a36Sopenharmony_ci netdev_state_change(t->dev); 156762306a36Sopenharmony_ci} 156862306a36Sopenharmony_ci 156962306a36Sopenharmony_cistatic void 157062306a36Sopenharmony_ciip6_tnl_parm_from_user(struct __ip6_tnl_parm *p, const struct ip6_tnl_parm *u) 157162306a36Sopenharmony_ci{ 157262306a36Sopenharmony_ci p->laddr = u->laddr; 157362306a36Sopenharmony_ci p->raddr = u->raddr; 157462306a36Sopenharmony_ci p->flags = u->flags; 157562306a36Sopenharmony_ci p->hop_limit = u->hop_limit; 157662306a36Sopenharmony_ci p->encap_limit = u->encap_limit; 157762306a36Sopenharmony_ci p->flowinfo = u->flowinfo; 157862306a36Sopenharmony_ci p->link = u->link; 157962306a36Sopenharmony_ci p->proto = u->proto; 158062306a36Sopenharmony_ci memcpy(p->name, u->name, sizeof(u->name)); 158162306a36Sopenharmony_ci} 158262306a36Sopenharmony_ci 158362306a36Sopenharmony_cistatic void 158462306a36Sopenharmony_ciip6_tnl_parm_to_user(struct ip6_tnl_parm *u, const struct __ip6_tnl_parm *p) 158562306a36Sopenharmony_ci{ 158662306a36Sopenharmony_ci u->laddr = p->laddr; 158762306a36Sopenharmony_ci u->raddr = p->raddr; 158862306a36Sopenharmony_ci u->flags = p->flags; 158962306a36Sopenharmony_ci u->hop_limit = p->hop_limit; 159062306a36Sopenharmony_ci u->encap_limit = p->encap_limit; 159162306a36Sopenharmony_ci u->flowinfo = p->flowinfo; 159262306a36Sopenharmony_ci u->link = p->link; 159362306a36Sopenharmony_ci u->proto = p->proto; 159462306a36Sopenharmony_ci memcpy(u->name, p->name, sizeof(u->name)); 159562306a36Sopenharmony_ci} 159662306a36Sopenharmony_ci 159762306a36Sopenharmony_ci/** 159862306a36Sopenharmony_ci * ip6_tnl_siocdevprivate - configure ipv6 tunnels from userspace 159962306a36Sopenharmony_ci * @dev: virtual device associated with tunnel 160062306a36Sopenharmony_ci * @ifr: unused 160162306a36Sopenharmony_ci * @data: parameters passed from userspace 160262306a36Sopenharmony_ci * @cmd: command to be performed 160362306a36Sopenharmony_ci * 160462306a36Sopenharmony_ci * Description: 160562306a36Sopenharmony_ci * ip6_tnl_ioctl() is used for managing IPv6 tunnels 160662306a36Sopenharmony_ci * from userspace. 160762306a36Sopenharmony_ci * 160862306a36Sopenharmony_ci * The possible commands are the following: 160962306a36Sopenharmony_ci * %SIOCGETTUNNEL: get tunnel parameters for device 161062306a36Sopenharmony_ci * %SIOCADDTUNNEL: add tunnel matching given tunnel parameters 161162306a36Sopenharmony_ci * %SIOCCHGTUNNEL: change tunnel parameters to those given 161262306a36Sopenharmony_ci * %SIOCDELTUNNEL: delete tunnel 161362306a36Sopenharmony_ci * 161462306a36Sopenharmony_ci * The fallback device "ip6tnl0", created during module 161562306a36Sopenharmony_ci * initialization, can be used for creating other tunnel devices. 161662306a36Sopenharmony_ci * 161762306a36Sopenharmony_ci * Return: 161862306a36Sopenharmony_ci * 0 on success, 161962306a36Sopenharmony_ci * %-EFAULT if unable to copy data to or from userspace, 162062306a36Sopenharmony_ci * %-EPERM if current process hasn't %CAP_NET_ADMIN set 162162306a36Sopenharmony_ci * %-EINVAL if passed tunnel parameters are invalid, 162262306a36Sopenharmony_ci * %-EEXIST if changing a tunnel's parameters would cause a conflict 162362306a36Sopenharmony_ci * %-ENODEV if attempting to change or delete a nonexisting device 162462306a36Sopenharmony_ci **/ 162562306a36Sopenharmony_ci 162662306a36Sopenharmony_cistatic int 162762306a36Sopenharmony_ciip6_tnl_siocdevprivate(struct net_device *dev, struct ifreq *ifr, 162862306a36Sopenharmony_ci void __user *data, int cmd) 162962306a36Sopenharmony_ci{ 163062306a36Sopenharmony_ci int err = 0; 163162306a36Sopenharmony_ci struct ip6_tnl_parm p; 163262306a36Sopenharmony_ci struct __ip6_tnl_parm p1; 163362306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 163462306a36Sopenharmony_ci struct net *net = t->net; 163562306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 163662306a36Sopenharmony_ci 163762306a36Sopenharmony_ci memset(&p1, 0, sizeof(p1)); 163862306a36Sopenharmony_ci 163962306a36Sopenharmony_ci switch (cmd) { 164062306a36Sopenharmony_ci case SIOCGETTUNNEL: 164162306a36Sopenharmony_ci if (dev == ip6n->fb_tnl_dev) { 164262306a36Sopenharmony_ci if (copy_from_user(&p, data, sizeof(p))) { 164362306a36Sopenharmony_ci err = -EFAULT; 164462306a36Sopenharmony_ci break; 164562306a36Sopenharmony_ci } 164662306a36Sopenharmony_ci ip6_tnl_parm_from_user(&p1, &p); 164762306a36Sopenharmony_ci t = ip6_tnl_locate(net, &p1, 0); 164862306a36Sopenharmony_ci if (IS_ERR(t)) 164962306a36Sopenharmony_ci t = netdev_priv(dev); 165062306a36Sopenharmony_ci } else { 165162306a36Sopenharmony_ci memset(&p, 0, sizeof(p)); 165262306a36Sopenharmony_ci } 165362306a36Sopenharmony_ci ip6_tnl_parm_to_user(&p, &t->parms); 165462306a36Sopenharmony_ci if (copy_to_user(data, &p, sizeof(p))) 165562306a36Sopenharmony_ci err = -EFAULT; 165662306a36Sopenharmony_ci break; 165762306a36Sopenharmony_ci case SIOCADDTUNNEL: 165862306a36Sopenharmony_ci case SIOCCHGTUNNEL: 165962306a36Sopenharmony_ci err = -EPERM; 166062306a36Sopenharmony_ci if (!ns_capable(net->user_ns, CAP_NET_ADMIN)) 166162306a36Sopenharmony_ci break; 166262306a36Sopenharmony_ci err = -EFAULT; 166362306a36Sopenharmony_ci if (copy_from_user(&p, data, sizeof(p))) 166462306a36Sopenharmony_ci break; 166562306a36Sopenharmony_ci err = -EINVAL; 166662306a36Sopenharmony_ci if (p.proto != IPPROTO_IPV6 && p.proto != IPPROTO_IPIP && 166762306a36Sopenharmony_ci p.proto != 0) 166862306a36Sopenharmony_ci break; 166962306a36Sopenharmony_ci ip6_tnl_parm_from_user(&p1, &p); 167062306a36Sopenharmony_ci t = ip6_tnl_locate(net, &p1, cmd == SIOCADDTUNNEL); 167162306a36Sopenharmony_ci if (cmd == SIOCCHGTUNNEL) { 167262306a36Sopenharmony_ci if (!IS_ERR(t)) { 167362306a36Sopenharmony_ci if (t->dev != dev) { 167462306a36Sopenharmony_ci err = -EEXIST; 167562306a36Sopenharmony_ci break; 167662306a36Sopenharmony_ci } 167762306a36Sopenharmony_ci } else 167862306a36Sopenharmony_ci t = netdev_priv(dev); 167962306a36Sopenharmony_ci if (dev == ip6n->fb_tnl_dev) 168062306a36Sopenharmony_ci ip6_tnl0_update(t, &p1); 168162306a36Sopenharmony_ci else 168262306a36Sopenharmony_ci ip6_tnl_update(t, &p1); 168362306a36Sopenharmony_ci } 168462306a36Sopenharmony_ci if (!IS_ERR(t)) { 168562306a36Sopenharmony_ci err = 0; 168662306a36Sopenharmony_ci ip6_tnl_parm_to_user(&p, &t->parms); 168762306a36Sopenharmony_ci if (copy_to_user(data, &p, sizeof(p))) 168862306a36Sopenharmony_ci err = -EFAULT; 168962306a36Sopenharmony_ci 169062306a36Sopenharmony_ci } else { 169162306a36Sopenharmony_ci err = PTR_ERR(t); 169262306a36Sopenharmony_ci } 169362306a36Sopenharmony_ci break; 169462306a36Sopenharmony_ci case SIOCDELTUNNEL: 169562306a36Sopenharmony_ci err = -EPERM; 169662306a36Sopenharmony_ci if (!ns_capable(net->user_ns, CAP_NET_ADMIN)) 169762306a36Sopenharmony_ci break; 169862306a36Sopenharmony_ci 169962306a36Sopenharmony_ci if (dev == ip6n->fb_tnl_dev) { 170062306a36Sopenharmony_ci err = -EFAULT; 170162306a36Sopenharmony_ci if (copy_from_user(&p, data, sizeof(p))) 170262306a36Sopenharmony_ci break; 170362306a36Sopenharmony_ci err = -ENOENT; 170462306a36Sopenharmony_ci ip6_tnl_parm_from_user(&p1, &p); 170562306a36Sopenharmony_ci t = ip6_tnl_locate(net, &p1, 0); 170662306a36Sopenharmony_ci if (IS_ERR(t)) 170762306a36Sopenharmony_ci break; 170862306a36Sopenharmony_ci err = -EPERM; 170962306a36Sopenharmony_ci if (t->dev == ip6n->fb_tnl_dev) 171062306a36Sopenharmony_ci break; 171162306a36Sopenharmony_ci dev = t->dev; 171262306a36Sopenharmony_ci } 171362306a36Sopenharmony_ci err = 0; 171462306a36Sopenharmony_ci unregister_netdevice(dev); 171562306a36Sopenharmony_ci break; 171662306a36Sopenharmony_ci default: 171762306a36Sopenharmony_ci err = -EINVAL; 171862306a36Sopenharmony_ci } 171962306a36Sopenharmony_ci return err; 172062306a36Sopenharmony_ci} 172162306a36Sopenharmony_ci 172262306a36Sopenharmony_ci/** 172362306a36Sopenharmony_ci * ip6_tnl_change_mtu - change mtu manually for tunnel device 172462306a36Sopenharmony_ci * @dev: virtual device associated with tunnel 172562306a36Sopenharmony_ci * @new_mtu: the new mtu 172662306a36Sopenharmony_ci * 172762306a36Sopenharmony_ci * Return: 172862306a36Sopenharmony_ci * 0 on success, 172962306a36Sopenharmony_ci * %-EINVAL if mtu too small 173062306a36Sopenharmony_ci **/ 173162306a36Sopenharmony_ci 173262306a36Sopenharmony_ciint ip6_tnl_change_mtu(struct net_device *dev, int new_mtu) 173362306a36Sopenharmony_ci{ 173462306a36Sopenharmony_ci struct ip6_tnl *tnl = netdev_priv(dev); 173562306a36Sopenharmony_ci 173662306a36Sopenharmony_ci if (tnl->parms.proto == IPPROTO_IPV6) { 173762306a36Sopenharmony_ci if (new_mtu < IPV6_MIN_MTU) 173862306a36Sopenharmony_ci return -EINVAL; 173962306a36Sopenharmony_ci } else { 174062306a36Sopenharmony_ci if (new_mtu < ETH_MIN_MTU) 174162306a36Sopenharmony_ci return -EINVAL; 174262306a36Sopenharmony_ci } 174362306a36Sopenharmony_ci if (tnl->parms.proto == IPPROTO_IPV6 || tnl->parms.proto == 0) { 174462306a36Sopenharmony_ci if (new_mtu > IP6_MAX_MTU - dev->hard_header_len) 174562306a36Sopenharmony_ci return -EINVAL; 174662306a36Sopenharmony_ci } else { 174762306a36Sopenharmony_ci if (new_mtu > IP_MAX_MTU - dev->hard_header_len) 174862306a36Sopenharmony_ci return -EINVAL; 174962306a36Sopenharmony_ci } 175062306a36Sopenharmony_ci dev->mtu = new_mtu; 175162306a36Sopenharmony_ci return 0; 175262306a36Sopenharmony_ci} 175362306a36Sopenharmony_ciEXPORT_SYMBOL(ip6_tnl_change_mtu); 175462306a36Sopenharmony_ci 175562306a36Sopenharmony_ciint ip6_tnl_get_iflink(const struct net_device *dev) 175662306a36Sopenharmony_ci{ 175762306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 175862306a36Sopenharmony_ci 175962306a36Sopenharmony_ci return t->parms.link; 176062306a36Sopenharmony_ci} 176162306a36Sopenharmony_ciEXPORT_SYMBOL(ip6_tnl_get_iflink); 176262306a36Sopenharmony_ci 176362306a36Sopenharmony_ciint ip6_tnl_encap_add_ops(const struct ip6_tnl_encap_ops *ops, 176462306a36Sopenharmony_ci unsigned int num) 176562306a36Sopenharmony_ci{ 176662306a36Sopenharmony_ci if (num >= MAX_IPTUN_ENCAP_OPS) 176762306a36Sopenharmony_ci return -ERANGE; 176862306a36Sopenharmony_ci 176962306a36Sopenharmony_ci return !cmpxchg((const struct ip6_tnl_encap_ops **) 177062306a36Sopenharmony_ci &ip6tun_encaps[num], 177162306a36Sopenharmony_ci NULL, ops) ? 0 : -1; 177262306a36Sopenharmony_ci} 177362306a36Sopenharmony_ciEXPORT_SYMBOL(ip6_tnl_encap_add_ops); 177462306a36Sopenharmony_ci 177562306a36Sopenharmony_ciint ip6_tnl_encap_del_ops(const struct ip6_tnl_encap_ops *ops, 177662306a36Sopenharmony_ci unsigned int num) 177762306a36Sopenharmony_ci{ 177862306a36Sopenharmony_ci int ret; 177962306a36Sopenharmony_ci 178062306a36Sopenharmony_ci if (num >= MAX_IPTUN_ENCAP_OPS) 178162306a36Sopenharmony_ci return -ERANGE; 178262306a36Sopenharmony_ci 178362306a36Sopenharmony_ci ret = (cmpxchg((const struct ip6_tnl_encap_ops **) 178462306a36Sopenharmony_ci &ip6tun_encaps[num], 178562306a36Sopenharmony_ci ops, NULL) == ops) ? 0 : -1; 178662306a36Sopenharmony_ci 178762306a36Sopenharmony_ci synchronize_net(); 178862306a36Sopenharmony_ci 178962306a36Sopenharmony_ci return ret; 179062306a36Sopenharmony_ci} 179162306a36Sopenharmony_ciEXPORT_SYMBOL(ip6_tnl_encap_del_ops); 179262306a36Sopenharmony_ci 179362306a36Sopenharmony_ciint ip6_tnl_encap_setup(struct ip6_tnl *t, 179462306a36Sopenharmony_ci struct ip_tunnel_encap *ipencap) 179562306a36Sopenharmony_ci{ 179662306a36Sopenharmony_ci int hlen; 179762306a36Sopenharmony_ci 179862306a36Sopenharmony_ci memset(&t->encap, 0, sizeof(t->encap)); 179962306a36Sopenharmony_ci 180062306a36Sopenharmony_ci hlen = ip6_encap_hlen(ipencap); 180162306a36Sopenharmony_ci if (hlen < 0) 180262306a36Sopenharmony_ci return hlen; 180362306a36Sopenharmony_ci 180462306a36Sopenharmony_ci t->encap.type = ipencap->type; 180562306a36Sopenharmony_ci t->encap.sport = ipencap->sport; 180662306a36Sopenharmony_ci t->encap.dport = ipencap->dport; 180762306a36Sopenharmony_ci t->encap.flags = ipencap->flags; 180862306a36Sopenharmony_ci 180962306a36Sopenharmony_ci t->encap_hlen = hlen; 181062306a36Sopenharmony_ci t->hlen = t->encap_hlen + t->tun_hlen; 181162306a36Sopenharmony_ci 181262306a36Sopenharmony_ci return 0; 181362306a36Sopenharmony_ci} 181462306a36Sopenharmony_ciEXPORT_SYMBOL_GPL(ip6_tnl_encap_setup); 181562306a36Sopenharmony_ci 181662306a36Sopenharmony_cistatic const struct net_device_ops ip6_tnl_netdev_ops = { 181762306a36Sopenharmony_ci .ndo_init = ip6_tnl_dev_init, 181862306a36Sopenharmony_ci .ndo_uninit = ip6_tnl_dev_uninit, 181962306a36Sopenharmony_ci .ndo_start_xmit = ip6_tnl_start_xmit, 182062306a36Sopenharmony_ci .ndo_siocdevprivate = ip6_tnl_siocdevprivate, 182162306a36Sopenharmony_ci .ndo_change_mtu = ip6_tnl_change_mtu, 182262306a36Sopenharmony_ci .ndo_get_stats64 = dev_get_tstats64, 182362306a36Sopenharmony_ci .ndo_get_iflink = ip6_tnl_get_iflink, 182462306a36Sopenharmony_ci}; 182562306a36Sopenharmony_ci 182662306a36Sopenharmony_ci#define IPXIPX_FEATURES (NETIF_F_SG | \ 182762306a36Sopenharmony_ci NETIF_F_FRAGLIST | \ 182862306a36Sopenharmony_ci NETIF_F_HIGHDMA | \ 182962306a36Sopenharmony_ci NETIF_F_GSO_SOFTWARE | \ 183062306a36Sopenharmony_ci NETIF_F_HW_CSUM) 183162306a36Sopenharmony_ci 183262306a36Sopenharmony_ci/** 183362306a36Sopenharmony_ci * ip6_tnl_dev_setup - setup virtual tunnel device 183462306a36Sopenharmony_ci * @dev: virtual device associated with tunnel 183562306a36Sopenharmony_ci * 183662306a36Sopenharmony_ci * Description: 183762306a36Sopenharmony_ci * Initialize function pointers and device parameters 183862306a36Sopenharmony_ci **/ 183962306a36Sopenharmony_ci 184062306a36Sopenharmony_cistatic void ip6_tnl_dev_setup(struct net_device *dev) 184162306a36Sopenharmony_ci{ 184262306a36Sopenharmony_ci dev->netdev_ops = &ip6_tnl_netdev_ops; 184362306a36Sopenharmony_ci dev->header_ops = &ip_tunnel_header_ops; 184462306a36Sopenharmony_ci dev->needs_free_netdev = true; 184562306a36Sopenharmony_ci dev->priv_destructor = ip6_dev_free; 184662306a36Sopenharmony_ci 184762306a36Sopenharmony_ci dev->type = ARPHRD_TUNNEL6; 184862306a36Sopenharmony_ci dev->flags |= IFF_NOARP; 184962306a36Sopenharmony_ci dev->addr_len = sizeof(struct in6_addr); 185062306a36Sopenharmony_ci dev->features |= NETIF_F_LLTX; 185162306a36Sopenharmony_ci netif_keep_dst(dev); 185262306a36Sopenharmony_ci 185362306a36Sopenharmony_ci dev->features |= IPXIPX_FEATURES; 185462306a36Sopenharmony_ci dev->hw_features |= IPXIPX_FEATURES; 185562306a36Sopenharmony_ci 185662306a36Sopenharmony_ci /* This perm addr will be used as interface identifier by IPv6 */ 185762306a36Sopenharmony_ci dev->addr_assign_type = NET_ADDR_RANDOM; 185862306a36Sopenharmony_ci eth_random_addr(dev->perm_addr); 185962306a36Sopenharmony_ci} 186062306a36Sopenharmony_ci 186162306a36Sopenharmony_ci 186262306a36Sopenharmony_ci/** 186362306a36Sopenharmony_ci * ip6_tnl_dev_init_gen - general initializer for all tunnel devices 186462306a36Sopenharmony_ci * @dev: virtual device associated with tunnel 186562306a36Sopenharmony_ci **/ 186662306a36Sopenharmony_ci 186762306a36Sopenharmony_cistatic inline int 186862306a36Sopenharmony_ciip6_tnl_dev_init_gen(struct net_device *dev) 186962306a36Sopenharmony_ci{ 187062306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 187162306a36Sopenharmony_ci int ret; 187262306a36Sopenharmony_ci int t_hlen; 187362306a36Sopenharmony_ci 187462306a36Sopenharmony_ci t->dev = dev; 187562306a36Sopenharmony_ci t->net = dev_net(dev); 187662306a36Sopenharmony_ci dev->tstats = netdev_alloc_pcpu_stats(struct pcpu_sw_netstats); 187762306a36Sopenharmony_ci if (!dev->tstats) 187862306a36Sopenharmony_ci return -ENOMEM; 187962306a36Sopenharmony_ci 188062306a36Sopenharmony_ci ret = dst_cache_init(&t->dst_cache, GFP_KERNEL); 188162306a36Sopenharmony_ci if (ret) 188262306a36Sopenharmony_ci goto free_stats; 188362306a36Sopenharmony_ci 188462306a36Sopenharmony_ci ret = gro_cells_init(&t->gro_cells, dev); 188562306a36Sopenharmony_ci if (ret) 188662306a36Sopenharmony_ci goto destroy_dst; 188762306a36Sopenharmony_ci 188862306a36Sopenharmony_ci t->tun_hlen = 0; 188962306a36Sopenharmony_ci t->hlen = t->encap_hlen + t->tun_hlen; 189062306a36Sopenharmony_ci t_hlen = t->hlen + sizeof(struct ipv6hdr); 189162306a36Sopenharmony_ci 189262306a36Sopenharmony_ci dev->type = ARPHRD_TUNNEL6; 189362306a36Sopenharmony_ci dev->hard_header_len = LL_MAX_HEADER + t_hlen; 189462306a36Sopenharmony_ci dev->mtu = ETH_DATA_LEN - t_hlen; 189562306a36Sopenharmony_ci if (!(t->parms.flags & IP6_TNL_F_IGN_ENCAP_LIMIT)) 189662306a36Sopenharmony_ci dev->mtu -= 8; 189762306a36Sopenharmony_ci dev->min_mtu = ETH_MIN_MTU; 189862306a36Sopenharmony_ci dev->max_mtu = IP6_MAX_MTU - dev->hard_header_len; 189962306a36Sopenharmony_ci 190062306a36Sopenharmony_ci netdev_hold(dev, &t->dev_tracker, GFP_KERNEL); 190162306a36Sopenharmony_ci return 0; 190262306a36Sopenharmony_ci 190362306a36Sopenharmony_cidestroy_dst: 190462306a36Sopenharmony_ci dst_cache_destroy(&t->dst_cache); 190562306a36Sopenharmony_cifree_stats: 190662306a36Sopenharmony_ci free_percpu(dev->tstats); 190762306a36Sopenharmony_ci dev->tstats = NULL; 190862306a36Sopenharmony_ci 190962306a36Sopenharmony_ci return ret; 191062306a36Sopenharmony_ci} 191162306a36Sopenharmony_ci 191262306a36Sopenharmony_ci/** 191362306a36Sopenharmony_ci * ip6_tnl_dev_init - initializer for all non fallback tunnel devices 191462306a36Sopenharmony_ci * @dev: virtual device associated with tunnel 191562306a36Sopenharmony_ci **/ 191662306a36Sopenharmony_ci 191762306a36Sopenharmony_cistatic int ip6_tnl_dev_init(struct net_device *dev) 191862306a36Sopenharmony_ci{ 191962306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 192062306a36Sopenharmony_ci int err = ip6_tnl_dev_init_gen(dev); 192162306a36Sopenharmony_ci 192262306a36Sopenharmony_ci if (err) 192362306a36Sopenharmony_ci return err; 192462306a36Sopenharmony_ci ip6_tnl_link_config(t); 192562306a36Sopenharmony_ci if (t->parms.collect_md) 192662306a36Sopenharmony_ci netif_keep_dst(dev); 192762306a36Sopenharmony_ci return 0; 192862306a36Sopenharmony_ci} 192962306a36Sopenharmony_ci 193062306a36Sopenharmony_ci/** 193162306a36Sopenharmony_ci * ip6_fb_tnl_dev_init - initializer for fallback tunnel device 193262306a36Sopenharmony_ci * @dev: fallback device 193362306a36Sopenharmony_ci * 193462306a36Sopenharmony_ci * Return: 0 193562306a36Sopenharmony_ci **/ 193662306a36Sopenharmony_ci 193762306a36Sopenharmony_cistatic int __net_init ip6_fb_tnl_dev_init(struct net_device *dev) 193862306a36Sopenharmony_ci{ 193962306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 194062306a36Sopenharmony_ci struct net *net = dev_net(dev); 194162306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 194262306a36Sopenharmony_ci 194362306a36Sopenharmony_ci t->parms.proto = IPPROTO_IPV6; 194462306a36Sopenharmony_ci 194562306a36Sopenharmony_ci rcu_assign_pointer(ip6n->tnls_wc[0], t); 194662306a36Sopenharmony_ci return 0; 194762306a36Sopenharmony_ci} 194862306a36Sopenharmony_ci 194962306a36Sopenharmony_cistatic int ip6_tnl_validate(struct nlattr *tb[], struct nlattr *data[], 195062306a36Sopenharmony_ci struct netlink_ext_ack *extack) 195162306a36Sopenharmony_ci{ 195262306a36Sopenharmony_ci u8 proto; 195362306a36Sopenharmony_ci 195462306a36Sopenharmony_ci if (!data || !data[IFLA_IPTUN_PROTO]) 195562306a36Sopenharmony_ci return 0; 195662306a36Sopenharmony_ci 195762306a36Sopenharmony_ci proto = nla_get_u8(data[IFLA_IPTUN_PROTO]); 195862306a36Sopenharmony_ci if (proto != IPPROTO_IPV6 && 195962306a36Sopenharmony_ci proto != IPPROTO_IPIP && 196062306a36Sopenharmony_ci proto != 0) 196162306a36Sopenharmony_ci return -EINVAL; 196262306a36Sopenharmony_ci 196362306a36Sopenharmony_ci return 0; 196462306a36Sopenharmony_ci} 196562306a36Sopenharmony_ci 196662306a36Sopenharmony_cistatic void ip6_tnl_netlink_parms(struct nlattr *data[], 196762306a36Sopenharmony_ci struct __ip6_tnl_parm *parms) 196862306a36Sopenharmony_ci{ 196962306a36Sopenharmony_ci memset(parms, 0, sizeof(*parms)); 197062306a36Sopenharmony_ci 197162306a36Sopenharmony_ci if (!data) 197262306a36Sopenharmony_ci return; 197362306a36Sopenharmony_ci 197462306a36Sopenharmony_ci if (data[IFLA_IPTUN_LINK]) 197562306a36Sopenharmony_ci parms->link = nla_get_u32(data[IFLA_IPTUN_LINK]); 197662306a36Sopenharmony_ci 197762306a36Sopenharmony_ci if (data[IFLA_IPTUN_LOCAL]) 197862306a36Sopenharmony_ci parms->laddr = nla_get_in6_addr(data[IFLA_IPTUN_LOCAL]); 197962306a36Sopenharmony_ci 198062306a36Sopenharmony_ci if (data[IFLA_IPTUN_REMOTE]) 198162306a36Sopenharmony_ci parms->raddr = nla_get_in6_addr(data[IFLA_IPTUN_REMOTE]); 198262306a36Sopenharmony_ci 198362306a36Sopenharmony_ci if (data[IFLA_IPTUN_TTL]) 198462306a36Sopenharmony_ci parms->hop_limit = nla_get_u8(data[IFLA_IPTUN_TTL]); 198562306a36Sopenharmony_ci 198662306a36Sopenharmony_ci if (data[IFLA_IPTUN_ENCAP_LIMIT]) 198762306a36Sopenharmony_ci parms->encap_limit = nla_get_u8(data[IFLA_IPTUN_ENCAP_LIMIT]); 198862306a36Sopenharmony_ci 198962306a36Sopenharmony_ci if (data[IFLA_IPTUN_FLOWINFO]) 199062306a36Sopenharmony_ci parms->flowinfo = nla_get_be32(data[IFLA_IPTUN_FLOWINFO]); 199162306a36Sopenharmony_ci 199262306a36Sopenharmony_ci if (data[IFLA_IPTUN_FLAGS]) 199362306a36Sopenharmony_ci parms->flags = nla_get_u32(data[IFLA_IPTUN_FLAGS]); 199462306a36Sopenharmony_ci 199562306a36Sopenharmony_ci if (data[IFLA_IPTUN_PROTO]) 199662306a36Sopenharmony_ci parms->proto = nla_get_u8(data[IFLA_IPTUN_PROTO]); 199762306a36Sopenharmony_ci 199862306a36Sopenharmony_ci if (data[IFLA_IPTUN_COLLECT_METADATA]) 199962306a36Sopenharmony_ci parms->collect_md = true; 200062306a36Sopenharmony_ci 200162306a36Sopenharmony_ci if (data[IFLA_IPTUN_FWMARK]) 200262306a36Sopenharmony_ci parms->fwmark = nla_get_u32(data[IFLA_IPTUN_FWMARK]); 200362306a36Sopenharmony_ci} 200462306a36Sopenharmony_ci 200562306a36Sopenharmony_cistatic int ip6_tnl_newlink(struct net *src_net, struct net_device *dev, 200662306a36Sopenharmony_ci struct nlattr *tb[], struct nlattr *data[], 200762306a36Sopenharmony_ci struct netlink_ext_ack *extack) 200862306a36Sopenharmony_ci{ 200962306a36Sopenharmony_ci struct net *net = dev_net(dev); 201062306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 201162306a36Sopenharmony_ci struct ip_tunnel_encap ipencap; 201262306a36Sopenharmony_ci struct ip6_tnl *nt, *t; 201362306a36Sopenharmony_ci int err; 201462306a36Sopenharmony_ci 201562306a36Sopenharmony_ci nt = netdev_priv(dev); 201662306a36Sopenharmony_ci 201762306a36Sopenharmony_ci if (ip_tunnel_netlink_encap_parms(data, &ipencap)) { 201862306a36Sopenharmony_ci err = ip6_tnl_encap_setup(nt, &ipencap); 201962306a36Sopenharmony_ci if (err < 0) 202062306a36Sopenharmony_ci return err; 202162306a36Sopenharmony_ci } 202262306a36Sopenharmony_ci 202362306a36Sopenharmony_ci ip6_tnl_netlink_parms(data, &nt->parms); 202462306a36Sopenharmony_ci 202562306a36Sopenharmony_ci if (nt->parms.collect_md) { 202662306a36Sopenharmony_ci if (rtnl_dereference(ip6n->collect_md_tun)) 202762306a36Sopenharmony_ci return -EEXIST; 202862306a36Sopenharmony_ci } else { 202962306a36Sopenharmony_ci t = ip6_tnl_locate(net, &nt->parms, 0); 203062306a36Sopenharmony_ci if (!IS_ERR(t)) 203162306a36Sopenharmony_ci return -EEXIST; 203262306a36Sopenharmony_ci } 203362306a36Sopenharmony_ci 203462306a36Sopenharmony_ci err = ip6_tnl_create2(dev); 203562306a36Sopenharmony_ci if (!err && tb[IFLA_MTU]) 203662306a36Sopenharmony_ci ip6_tnl_change_mtu(dev, nla_get_u32(tb[IFLA_MTU])); 203762306a36Sopenharmony_ci 203862306a36Sopenharmony_ci return err; 203962306a36Sopenharmony_ci} 204062306a36Sopenharmony_ci 204162306a36Sopenharmony_cistatic int ip6_tnl_changelink(struct net_device *dev, struct nlattr *tb[], 204262306a36Sopenharmony_ci struct nlattr *data[], 204362306a36Sopenharmony_ci struct netlink_ext_ack *extack) 204462306a36Sopenharmony_ci{ 204562306a36Sopenharmony_ci struct ip6_tnl *t = netdev_priv(dev); 204662306a36Sopenharmony_ci struct __ip6_tnl_parm p; 204762306a36Sopenharmony_ci struct net *net = t->net; 204862306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 204962306a36Sopenharmony_ci struct ip_tunnel_encap ipencap; 205062306a36Sopenharmony_ci 205162306a36Sopenharmony_ci if (dev == ip6n->fb_tnl_dev) 205262306a36Sopenharmony_ci return -EINVAL; 205362306a36Sopenharmony_ci 205462306a36Sopenharmony_ci if (ip_tunnel_netlink_encap_parms(data, &ipencap)) { 205562306a36Sopenharmony_ci int err = ip6_tnl_encap_setup(t, &ipencap); 205662306a36Sopenharmony_ci 205762306a36Sopenharmony_ci if (err < 0) 205862306a36Sopenharmony_ci return err; 205962306a36Sopenharmony_ci } 206062306a36Sopenharmony_ci ip6_tnl_netlink_parms(data, &p); 206162306a36Sopenharmony_ci if (p.collect_md) 206262306a36Sopenharmony_ci return -EINVAL; 206362306a36Sopenharmony_ci 206462306a36Sopenharmony_ci t = ip6_tnl_locate(net, &p, 0); 206562306a36Sopenharmony_ci if (!IS_ERR(t)) { 206662306a36Sopenharmony_ci if (t->dev != dev) 206762306a36Sopenharmony_ci return -EEXIST; 206862306a36Sopenharmony_ci } else 206962306a36Sopenharmony_ci t = netdev_priv(dev); 207062306a36Sopenharmony_ci 207162306a36Sopenharmony_ci ip6_tnl_update(t, &p); 207262306a36Sopenharmony_ci return 0; 207362306a36Sopenharmony_ci} 207462306a36Sopenharmony_ci 207562306a36Sopenharmony_cistatic void ip6_tnl_dellink(struct net_device *dev, struct list_head *head) 207662306a36Sopenharmony_ci{ 207762306a36Sopenharmony_ci struct net *net = dev_net(dev); 207862306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 207962306a36Sopenharmony_ci 208062306a36Sopenharmony_ci if (dev != ip6n->fb_tnl_dev) 208162306a36Sopenharmony_ci unregister_netdevice_queue(dev, head); 208262306a36Sopenharmony_ci} 208362306a36Sopenharmony_ci 208462306a36Sopenharmony_cistatic size_t ip6_tnl_get_size(const struct net_device *dev) 208562306a36Sopenharmony_ci{ 208662306a36Sopenharmony_ci return 208762306a36Sopenharmony_ci /* IFLA_IPTUN_LINK */ 208862306a36Sopenharmony_ci nla_total_size(4) + 208962306a36Sopenharmony_ci /* IFLA_IPTUN_LOCAL */ 209062306a36Sopenharmony_ci nla_total_size(sizeof(struct in6_addr)) + 209162306a36Sopenharmony_ci /* IFLA_IPTUN_REMOTE */ 209262306a36Sopenharmony_ci nla_total_size(sizeof(struct in6_addr)) + 209362306a36Sopenharmony_ci /* IFLA_IPTUN_TTL */ 209462306a36Sopenharmony_ci nla_total_size(1) + 209562306a36Sopenharmony_ci /* IFLA_IPTUN_ENCAP_LIMIT */ 209662306a36Sopenharmony_ci nla_total_size(1) + 209762306a36Sopenharmony_ci /* IFLA_IPTUN_FLOWINFO */ 209862306a36Sopenharmony_ci nla_total_size(4) + 209962306a36Sopenharmony_ci /* IFLA_IPTUN_FLAGS */ 210062306a36Sopenharmony_ci nla_total_size(4) + 210162306a36Sopenharmony_ci /* IFLA_IPTUN_PROTO */ 210262306a36Sopenharmony_ci nla_total_size(1) + 210362306a36Sopenharmony_ci /* IFLA_IPTUN_ENCAP_TYPE */ 210462306a36Sopenharmony_ci nla_total_size(2) + 210562306a36Sopenharmony_ci /* IFLA_IPTUN_ENCAP_FLAGS */ 210662306a36Sopenharmony_ci nla_total_size(2) + 210762306a36Sopenharmony_ci /* IFLA_IPTUN_ENCAP_SPORT */ 210862306a36Sopenharmony_ci nla_total_size(2) + 210962306a36Sopenharmony_ci /* IFLA_IPTUN_ENCAP_DPORT */ 211062306a36Sopenharmony_ci nla_total_size(2) + 211162306a36Sopenharmony_ci /* IFLA_IPTUN_COLLECT_METADATA */ 211262306a36Sopenharmony_ci nla_total_size(0) + 211362306a36Sopenharmony_ci /* IFLA_IPTUN_FWMARK */ 211462306a36Sopenharmony_ci nla_total_size(4) + 211562306a36Sopenharmony_ci 0; 211662306a36Sopenharmony_ci} 211762306a36Sopenharmony_ci 211862306a36Sopenharmony_cistatic int ip6_tnl_fill_info(struct sk_buff *skb, const struct net_device *dev) 211962306a36Sopenharmony_ci{ 212062306a36Sopenharmony_ci struct ip6_tnl *tunnel = netdev_priv(dev); 212162306a36Sopenharmony_ci struct __ip6_tnl_parm *parm = &tunnel->parms; 212262306a36Sopenharmony_ci 212362306a36Sopenharmony_ci if (nla_put_u32(skb, IFLA_IPTUN_LINK, parm->link) || 212462306a36Sopenharmony_ci nla_put_in6_addr(skb, IFLA_IPTUN_LOCAL, &parm->laddr) || 212562306a36Sopenharmony_ci nla_put_in6_addr(skb, IFLA_IPTUN_REMOTE, &parm->raddr) || 212662306a36Sopenharmony_ci nla_put_u8(skb, IFLA_IPTUN_TTL, parm->hop_limit) || 212762306a36Sopenharmony_ci nla_put_u8(skb, IFLA_IPTUN_ENCAP_LIMIT, parm->encap_limit) || 212862306a36Sopenharmony_ci nla_put_be32(skb, IFLA_IPTUN_FLOWINFO, parm->flowinfo) || 212962306a36Sopenharmony_ci nla_put_u32(skb, IFLA_IPTUN_FLAGS, parm->flags) || 213062306a36Sopenharmony_ci nla_put_u8(skb, IFLA_IPTUN_PROTO, parm->proto) || 213162306a36Sopenharmony_ci nla_put_u32(skb, IFLA_IPTUN_FWMARK, parm->fwmark)) 213262306a36Sopenharmony_ci goto nla_put_failure; 213362306a36Sopenharmony_ci 213462306a36Sopenharmony_ci if (nla_put_u16(skb, IFLA_IPTUN_ENCAP_TYPE, tunnel->encap.type) || 213562306a36Sopenharmony_ci nla_put_be16(skb, IFLA_IPTUN_ENCAP_SPORT, tunnel->encap.sport) || 213662306a36Sopenharmony_ci nla_put_be16(skb, IFLA_IPTUN_ENCAP_DPORT, tunnel->encap.dport) || 213762306a36Sopenharmony_ci nla_put_u16(skb, IFLA_IPTUN_ENCAP_FLAGS, tunnel->encap.flags)) 213862306a36Sopenharmony_ci goto nla_put_failure; 213962306a36Sopenharmony_ci 214062306a36Sopenharmony_ci if (parm->collect_md) 214162306a36Sopenharmony_ci if (nla_put_flag(skb, IFLA_IPTUN_COLLECT_METADATA)) 214262306a36Sopenharmony_ci goto nla_put_failure; 214362306a36Sopenharmony_ci 214462306a36Sopenharmony_ci return 0; 214562306a36Sopenharmony_ci 214662306a36Sopenharmony_cinla_put_failure: 214762306a36Sopenharmony_ci return -EMSGSIZE; 214862306a36Sopenharmony_ci} 214962306a36Sopenharmony_ci 215062306a36Sopenharmony_cistruct net *ip6_tnl_get_link_net(const struct net_device *dev) 215162306a36Sopenharmony_ci{ 215262306a36Sopenharmony_ci struct ip6_tnl *tunnel = netdev_priv(dev); 215362306a36Sopenharmony_ci 215462306a36Sopenharmony_ci return tunnel->net; 215562306a36Sopenharmony_ci} 215662306a36Sopenharmony_ciEXPORT_SYMBOL(ip6_tnl_get_link_net); 215762306a36Sopenharmony_ci 215862306a36Sopenharmony_cistatic const struct nla_policy ip6_tnl_policy[IFLA_IPTUN_MAX + 1] = { 215962306a36Sopenharmony_ci [IFLA_IPTUN_LINK] = { .type = NLA_U32 }, 216062306a36Sopenharmony_ci [IFLA_IPTUN_LOCAL] = { .len = sizeof(struct in6_addr) }, 216162306a36Sopenharmony_ci [IFLA_IPTUN_REMOTE] = { .len = sizeof(struct in6_addr) }, 216262306a36Sopenharmony_ci [IFLA_IPTUN_TTL] = { .type = NLA_U8 }, 216362306a36Sopenharmony_ci [IFLA_IPTUN_ENCAP_LIMIT] = { .type = NLA_U8 }, 216462306a36Sopenharmony_ci [IFLA_IPTUN_FLOWINFO] = { .type = NLA_U32 }, 216562306a36Sopenharmony_ci [IFLA_IPTUN_FLAGS] = { .type = NLA_U32 }, 216662306a36Sopenharmony_ci [IFLA_IPTUN_PROTO] = { .type = NLA_U8 }, 216762306a36Sopenharmony_ci [IFLA_IPTUN_ENCAP_TYPE] = { .type = NLA_U16 }, 216862306a36Sopenharmony_ci [IFLA_IPTUN_ENCAP_FLAGS] = { .type = NLA_U16 }, 216962306a36Sopenharmony_ci [IFLA_IPTUN_ENCAP_SPORT] = { .type = NLA_U16 }, 217062306a36Sopenharmony_ci [IFLA_IPTUN_ENCAP_DPORT] = { .type = NLA_U16 }, 217162306a36Sopenharmony_ci [IFLA_IPTUN_COLLECT_METADATA] = { .type = NLA_FLAG }, 217262306a36Sopenharmony_ci [IFLA_IPTUN_FWMARK] = { .type = NLA_U32 }, 217362306a36Sopenharmony_ci}; 217462306a36Sopenharmony_ci 217562306a36Sopenharmony_cistatic struct rtnl_link_ops ip6_link_ops __read_mostly = { 217662306a36Sopenharmony_ci .kind = "ip6tnl", 217762306a36Sopenharmony_ci .maxtype = IFLA_IPTUN_MAX, 217862306a36Sopenharmony_ci .policy = ip6_tnl_policy, 217962306a36Sopenharmony_ci .priv_size = sizeof(struct ip6_tnl), 218062306a36Sopenharmony_ci .setup = ip6_tnl_dev_setup, 218162306a36Sopenharmony_ci .validate = ip6_tnl_validate, 218262306a36Sopenharmony_ci .newlink = ip6_tnl_newlink, 218362306a36Sopenharmony_ci .changelink = ip6_tnl_changelink, 218462306a36Sopenharmony_ci .dellink = ip6_tnl_dellink, 218562306a36Sopenharmony_ci .get_size = ip6_tnl_get_size, 218662306a36Sopenharmony_ci .fill_info = ip6_tnl_fill_info, 218762306a36Sopenharmony_ci .get_link_net = ip6_tnl_get_link_net, 218862306a36Sopenharmony_ci}; 218962306a36Sopenharmony_ci 219062306a36Sopenharmony_cistatic struct xfrm6_tunnel ip4ip6_handler __read_mostly = { 219162306a36Sopenharmony_ci .handler = ip4ip6_rcv, 219262306a36Sopenharmony_ci .err_handler = ip4ip6_err, 219362306a36Sopenharmony_ci .priority = 1, 219462306a36Sopenharmony_ci}; 219562306a36Sopenharmony_ci 219662306a36Sopenharmony_cistatic struct xfrm6_tunnel ip6ip6_handler __read_mostly = { 219762306a36Sopenharmony_ci .handler = ip6ip6_rcv, 219862306a36Sopenharmony_ci .err_handler = ip6ip6_err, 219962306a36Sopenharmony_ci .priority = 1, 220062306a36Sopenharmony_ci}; 220162306a36Sopenharmony_ci 220262306a36Sopenharmony_cistatic struct xfrm6_tunnel mplsip6_handler __read_mostly = { 220362306a36Sopenharmony_ci .handler = mplsip6_rcv, 220462306a36Sopenharmony_ci .err_handler = mplsip6_err, 220562306a36Sopenharmony_ci .priority = 1, 220662306a36Sopenharmony_ci}; 220762306a36Sopenharmony_ci 220862306a36Sopenharmony_cistatic void __net_exit ip6_tnl_destroy_tunnels(struct net *net, struct list_head *list) 220962306a36Sopenharmony_ci{ 221062306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 221162306a36Sopenharmony_ci struct net_device *dev, *aux; 221262306a36Sopenharmony_ci int h; 221362306a36Sopenharmony_ci struct ip6_tnl *t; 221462306a36Sopenharmony_ci 221562306a36Sopenharmony_ci for_each_netdev_safe(net, dev, aux) 221662306a36Sopenharmony_ci if (dev->rtnl_link_ops == &ip6_link_ops) 221762306a36Sopenharmony_ci unregister_netdevice_queue(dev, list); 221862306a36Sopenharmony_ci 221962306a36Sopenharmony_ci for (h = 0; h < IP6_TUNNEL_HASH_SIZE; h++) { 222062306a36Sopenharmony_ci t = rtnl_dereference(ip6n->tnls_r_l[h]); 222162306a36Sopenharmony_ci while (t) { 222262306a36Sopenharmony_ci /* If dev is in the same netns, it has already 222362306a36Sopenharmony_ci * been added to the list by the previous loop. 222462306a36Sopenharmony_ci */ 222562306a36Sopenharmony_ci if (!net_eq(dev_net(t->dev), net)) 222662306a36Sopenharmony_ci unregister_netdevice_queue(t->dev, list); 222762306a36Sopenharmony_ci t = rtnl_dereference(t->next); 222862306a36Sopenharmony_ci } 222962306a36Sopenharmony_ci } 223062306a36Sopenharmony_ci 223162306a36Sopenharmony_ci t = rtnl_dereference(ip6n->tnls_wc[0]); 223262306a36Sopenharmony_ci while (t) { 223362306a36Sopenharmony_ci /* If dev is in the same netns, it has already 223462306a36Sopenharmony_ci * been added to the list by the previous loop. 223562306a36Sopenharmony_ci */ 223662306a36Sopenharmony_ci if (!net_eq(dev_net(t->dev), net)) 223762306a36Sopenharmony_ci unregister_netdevice_queue(t->dev, list); 223862306a36Sopenharmony_ci t = rtnl_dereference(t->next); 223962306a36Sopenharmony_ci } 224062306a36Sopenharmony_ci} 224162306a36Sopenharmony_ci 224262306a36Sopenharmony_cistatic int __net_init ip6_tnl_init_net(struct net *net) 224362306a36Sopenharmony_ci{ 224462306a36Sopenharmony_ci struct ip6_tnl_net *ip6n = net_generic(net, ip6_tnl_net_id); 224562306a36Sopenharmony_ci struct ip6_tnl *t = NULL; 224662306a36Sopenharmony_ci int err; 224762306a36Sopenharmony_ci 224862306a36Sopenharmony_ci ip6n->tnls[0] = ip6n->tnls_wc; 224962306a36Sopenharmony_ci ip6n->tnls[1] = ip6n->tnls_r_l; 225062306a36Sopenharmony_ci 225162306a36Sopenharmony_ci if (!net_has_fallback_tunnels(net)) 225262306a36Sopenharmony_ci return 0; 225362306a36Sopenharmony_ci err = -ENOMEM; 225462306a36Sopenharmony_ci ip6n->fb_tnl_dev = alloc_netdev(sizeof(struct ip6_tnl), "ip6tnl0", 225562306a36Sopenharmony_ci NET_NAME_UNKNOWN, ip6_tnl_dev_setup); 225662306a36Sopenharmony_ci 225762306a36Sopenharmony_ci if (!ip6n->fb_tnl_dev) 225862306a36Sopenharmony_ci goto err_alloc_dev; 225962306a36Sopenharmony_ci dev_net_set(ip6n->fb_tnl_dev, net); 226062306a36Sopenharmony_ci ip6n->fb_tnl_dev->rtnl_link_ops = &ip6_link_ops; 226162306a36Sopenharmony_ci /* FB netdevice is special: we have one, and only one per netns. 226262306a36Sopenharmony_ci * Allowing to move it to another netns is clearly unsafe. 226362306a36Sopenharmony_ci */ 226462306a36Sopenharmony_ci ip6n->fb_tnl_dev->features |= NETIF_F_NETNS_LOCAL; 226562306a36Sopenharmony_ci 226662306a36Sopenharmony_ci err = ip6_fb_tnl_dev_init(ip6n->fb_tnl_dev); 226762306a36Sopenharmony_ci if (err < 0) 226862306a36Sopenharmony_ci goto err_register; 226962306a36Sopenharmony_ci 227062306a36Sopenharmony_ci err = register_netdev(ip6n->fb_tnl_dev); 227162306a36Sopenharmony_ci if (err < 0) 227262306a36Sopenharmony_ci goto err_register; 227362306a36Sopenharmony_ci 227462306a36Sopenharmony_ci t = netdev_priv(ip6n->fb_tnl_dev); 227562306a36Sopenharmony_ci 227662306a36Sopenharmony_ci strcpy(t->parms.name, ip6n->fb_tnl_dev->name); 227762306a36Sopenharmony_ci return 0; 227862306a36Sopenharmony_ci 227962306a36Sopenharmony_cierr_register: 228062306a36Sopenharmony_ci free_netdev(ip6n->fb_tnl_dev); 228162306a36Sopenharmony_cierr_alloc_dev: 228262306a36Sopenharmony_ci return err; 228362306a36Sopenharmony_ci} 228462306a36Sopenharmony_ci 228562306a36Sopenharmony_cistatic void __net_exit ip6_tnl_exit_batch_net(struct list_head *net_list) 228662306a36Sopenharmony_ci{ 228762306a36Sopenharmony_ci struct net *net; 228862306a36Sopenharmony_ci LIST_HEAD(list); 228962306a36Sopenharmony_ci 229062306a36Sopenharmony_ci rtnl_lock(); 229162306a36Sopenharmony_ci list_for_each_entry(net, net_list, exit_list) 229262306a36Sopenharmony_ci ip6_tnl_destroy_tunnels(net, &list); 229362306a36Sopenharmony_ci unregister_netdevice_many(&list); 229462306a36Sopenharmony_ci rtnl_unlock(); 229562306a36Sopenharmony_ci} 229662306a36Sopenharmony_ci 229762306a36Sopenharmony_cistatic struct pernet_operations ip6_tnl_net_ops = { 229862306a36Sopenharmony_ci .init = ip6_tnl_init_net, 229962306a36Sopenharmony_ci .exit_batch = ip6_tnl_exit_batch_net, 230062306a36Sopenharmony_ci .id = &ip6_tnl_net_id, 230162306a36Sopenharmony_ci .size = sizeof(struct ip6_tnl_net), 230262306a36Sopenharmony_ci}; 230362306a36Sopenharmony_ci 230462306a36Sopenharmony_ci/** 230562306a36Sopenharmony_ci * ip6_tunnel_init - register protocol and reserve needed resources 230662306a36Sopenharmony_ci * 230762306a36Sopenharmony_ci * Return: 0 on success 230862306a36Sopenharmony_ci **/ 230962306a36Sopenharmony_ci 231062306a36Sopenharmony_cistatic int __init ip6_tunnel_init(void) 231162306a36Sopenharmony_ci{ 231262306a36Sopenharmony_ci int err; 231362306a36Sopenharmony_ci 231462306a36Sopenharmony_ci if (!ipv6_mod_enabled()) 231562306a36Sopenharmony_ci return -EOPNOTSUPP; 231662306a36Sopenharmony_ci 231762306a36Sopenharmony_ci err = register_pernet_device(&ip6_tnl_net_ops); 231862306a36Sopenharmony_ci if (err < 0) 231962306a36Sopenharmony_ci goto out_pernet; 232062306a36Sopenharmony_ci 232162306a36Sopenharmony_ci err = xfrm6_tunnel_register(&ip4ip6_handler, AF_INET); 232262306a36Sopenharmony_ci if (err < 0) { 232362306a36Sopenharmony_ci pr_err("%s: can't register ip4ip6\n", __func__); 232462306a36Sopenharmony_ci goto out_ip4ip6; 232562306a36Sopenharmony_ci } 232662306a36Sopenharmony_ci 232762306a36Sopenharmony_ci err = xfrm6_tunnel_register(&ip6ip6_handler, AF_INET6); 232862306a36Sopenharmony_ci if (err < 0) { 232962306a36Sopenharmony_ci pr_err("%s: can't register ip6ip6\n", __func__); 233062306a36Sopenharmony_ci goto out_ip6ip6; 233162306a36Sopenharmony_ci } 233262306a36Sopenharmony_ci 233362306a36Sopenharmony_ci if (ip6_tnl_mpls_supported()) { 233462306a36Sopenharmony_ci err = xfrm6_tunnel_register(&mplsip6_handler, AF_MPLS); 233562306a36Sopenharmony_ci if (err < 0) { 233662306a36Sopenharmony_ci pr_err("%s: can't register mplsip6\n", __func__); 233762306a36Sopenharmony_ci goto out_mplsip6; 233862306a36Sopenharmony_ci } 233962306a36Sopenharmony_ci } 234062306a36Sopenharmony_ci 234162306a36Sopenharmony_ci err = rtnl_link_register(&ip6_link_ops); 234262306a36Sopenharmony_ci if (err < 0) 234362306a36Sopenharmony_ci goto rtnl_link_failed; 234462306a36Sopenharmony_ci 234562306a36Sopenharmony_ci return 0; 234662306a36Sopenharmony_ci 234762306a36Sopenharmony_cirtnl_link_failed: 234862306a36Sopenharmony_ci if (ip6_tnl_mpls_supported()) 234962306a36Sopenharmony_ci xfrm6_tunnel_deregister(&mplsip6_handler, AF_MPLS); 235062306a36Sopenharmony_ciout_mplsip6: 235162306a36Sopenharmony_ci xfrm6_tunnel_deregister(&ip6ip6_handler, AF_INET6); 235262306a36Sopenharmony_ciout_ip6ip6: 235362306a36Sopenharmony_ci xfrm6_tunnel_deregister(&ip4ip6_handler, AF_INET); 235462306a36Sopenharmony_ciout_ip4ip6: 235562306a36Sopenharmony_ci unregister_pernet_device(&ip6_tnl_net_ops); 235662306a36Sopenharmony_ciout_pernet: 235762306a36Sopenharmony_ci return err; 235862306a36Sopenharmony_ci} 235962306a36Sopenharmony_ci 236062306a36Sopenharmony_ci/** 236162306a36Sopenharmony_ci * ip6_tunnel_cleanup - free resources and unregister protocol 236262306a36Sopenharmony_ci **/ 236362306a36Sopenharmony_ci 236462306a36Sopenharmony_cistatic void __exit ip6_tunnel_cleanup(void) 236562306a36Sopenharmony_ci{ 236662306a36Sopenharmony_ci rtnl_link_unregister(&ip6_link_ops); 236762306a36Sopenharmony_ci if (xfrm6_tunnel_deregister(&ip4ip6_handler, AF_INET)) 236862306a36Sopenharmony_ci pr_info("%s: can't deregister ip4ip6\n", __func__); 236962306a36Sopenharmony_ci 237062306a36Sopenharmony_ci if (xfrm6_tunnel_deregister(&ip6ip6_handler, AF_INET6)) 237162306a36Sopenharmony_ci pr_info("%s: can't deregister ip6ip6\n", __func__); 237262306a36Sopenharmony_ci 237362306a36Sopenharmony_ci if (ip6_tnl_mpls_supported() && 237462306a36Sopenharmony_ci xfrm6_tunnel_deregister(&mplsip6_handler, AF_MPLS)) 237562306a36Sopenharmony_ci pr_info("%s: can't deregister mplsip6\n", __func__); 237662306a36Sopenharmony_ci unregister_pernet_device(&ip6_tnl_net_ops); 237762306a36Sopenharmony_ci} 237862306a36Sopenharmony_ci 237962306a36Sopenharmony_cimodule_init(ip6_tunnel_init); 238062306a36Sopenharmony_cimodule_exit(ip6_tunnel_cleanup); 2381