162306a36Sopenharmony_ci// SPDX-License-Identifier: GPL-2.0-or-later 262306a36Sopenharmony_ci/* 362306a36Sopenharmony_ci * Copyright (C)2003,2004 USAGI/WIDE Project 462306a36Sopenharmony_ci * 562306a36Sopenharmony_ci * Authors Mitsuru KANDA <mk@linux-ipv6.org> 662306a36Sopenharmony_ci * YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org> 762306a36Sopenharmony_ci */ 862306a36Sopenharmony_ci 962306a36Sopenharmony_ci#define pr_fmt(fmt) "IPv6: " fmt 1062306a36Sopenharmony_ci 1162306a36Sopenharmony_ci#include <linux/icmpv6.h> 1262306a36Sopenharmony_ci#include <linux/init.h> 1362306a36Sopenharmony_ci#include <linux/module.h> 1462306a36Sopenharmony_ci#include <linux/mutex.h> 1562306a36Sopenharmony_ci#include <linux/netdevice.h> 1662306a36Sopenharmony_ci#include <linux/skbuff.h> 1762306a36Sopenharmony_ci#include <linux/slab.h> 1862306a36Sopenharmony_ci#include <net/ipv6.h> 1962306a36Sopenharmony_ci#include <net/protocol.h> 2062306a36Sopenharmony_ci#include <net/xfrm.h> 2162306a36Sopenharmony_ci 2262306a36Sopenharmony_cistatic struct xfrm6_tunnel __rcu *tunnel6_handlers __read_mostly; 2362306a36Sopenharmony_cistatic struct xfrm6_tunnel __rcu *tunnel46_handlers __read_mostly; 2462306a36Sopenharmony_cistatic struct xfrm6_tunnel __rcu *tunnelmpls6_handlers __read_mostly; 2562306a36Sopenharmony_cistatic DEFINE_MUTEX(tunnel6_mutex); 2662306a36Sopenharmony_ci 2762306a36Sopenharmony_cistatic inline int xfrm6_tunnel_mpls_supported(void) 2862306a36Sopenharmony_ci{ 2962306a36Sopenharmony_ci return IS_ENABLED(CONFIG_MPLS); 3062306a36Sopenharmony_ci} 3162306a36Sopenharmony_ci 3262306a36Sopenharmony_ciint xfrm6_tunnel_register(struct xfrm6_tunnel *handler, unsigned short family) 3362306a36Sopenharmony_ci{ 3462306a36Sopenharmony_ci struct xfrm6_tunnel __rcu **pprev; 3562306a36Sopenharmony_ci struct xfrm6_tunnel *t; 3662306a36Sopenharmony_ci int ret = -EEXIST; 3762306a36Sopenharmony_ci int priority = handler->priority; 3862306a36Sopenharmony_ci 3962306a36Sopenharmony_ci mutex_lock(&tunnel6_mutex); 4062306a36Sopenharmony_ci 4162306a36Sopenharmony_ci switch (family) { 4262306a36Sopenharmony_ci case AF_INET6: 4362306a36Sopenharmony_ci pprev = &tunnel6_handlers; 4462306a36Sopenharmony_ci break; 4562306a36Sopenharmony_ci case AF_INET: 4662306a36Sopenharmony_ci pprev = &tunnel46_handlers; 4762306a36Sopenharmony_ci break; 4862306a36Sopenharmony_ci case AF_MPLS: 4962306a36Sopenharmony_ci pprev = &tunnelmpls6_handlers; 5062306a36Sopenharmony_ci break; 5162306a36Sopenharmony_ci default: 5262306a36Sopenharmony_ci goto err; 5362306a36Sopenharmony_ci } 5462306a36Sopenharmony_ci 5562306a36Sopenharmony_ci for (; (t = rcu_dereference_protected(*pprev, 5662306a36Sopenharmony_ci lockdep_is_held(&tunnel6_mutex))) != NULL; 5762306a36Sopenharmony_ci pprev = &t->next) { 5862306a36Sopenharmony_ci if (t->priority > priority) 5962306a36Sopenharmony_ci break; 6062306a36Sopenharmony_ci if (t->priority == priority) 6162306a36Sopenharmony_ci goto err; 6262306a36Sopenharmony_ci } 6362306a36Sopenharmony_ci 6462306a36Sopenharmony_ci handler->next = *pprev; 6562306a36Sopenharmony_ci rcu_assign_pointer(*pprev, handler); 6662306a36Sopenharmony_ci 6762306a36Sopenharmony_ci ret = 0; 6862306a36Sopenharmony_ci 6962306a36Sopenharmony_cierr: 7062306a36Sopenharmony_ci mutex_unlock(&tunnel6_mutex); 7162306a36Sopenharmony_ci 7262306a36Sopenharmony_ci return ret; 7362306a36Sopenharmony_ci} 7462306a36Sopenharmony_ciEXPORT_SYMBOL(xfrm6_tunnel_register); 7562306a36Sopenharmony_ci 7662306a36Sopenharmony_ciint xfrm6_tunnel_deregister(struct xfrm6_tunnel *handler, unsigned short family) 7762306a36Sopenharmony_ci{ 7862306a36Sopenharmony_ci struct xfrm6_tunnel __rcu **pprev; 7962306a36Sopenharmony_ci struct xfrm6_tunnel *t; 8062306a36Sopenharmony_ci int ret = -ENOENT; 8162306a36Sopenharmony_ci 8262306a36Sopenharmony_ci mutex_lock(&tunnel6_mutex); 8362306a36Sopenharmony_ci 8462306a36Sopenharmony_ci switch (family) { 8562306a36Sopenharmony_ci case AF_INET6: 8662306a36Sopenharmony_ci pprev = &tunnel6_handlers; 8762306a36Sopenharmony_ci break; 8862306a36Sopenharmony_ci case AF_INET: 8962306a36Sopenharmony_ci pprev = &tunnel46_handlers; 9062306a36Sopenharmony_ci break; 9162306a36Sopenharmony_ci case AF_MPLS: 9262306a36Sopenharmony_ci pprev = &tunnelmpls6_handlers; 9362306a36Sopenharmony_ci break; 9462306a36Sopenharmony_ci default: 9562306a36Sopenharmony_ci goto err; 9662306a36Sopenharmony_ci } 9762306a36Sopenharmony_ci 9862306a36Sopenharmony_ci for (; (t = rcu_dereference_protected(*pprev, 9962306a36Sopenharmony_ci lockdep_is_held(&tunnel6_mutex))) != NULL; 10062306a36Sopenharmony_ci pprev = &t->next) { 10162306a36Sopenharmony_ci if (t == handler) { 10262306a36Sopenharmony_ci *pprev = handler->next; 10362306a36Sopenharmony_ci ret = 0; 10462306a36Sopenharmony_ci break; 10562306a36Sopenharmony_ci } 10662306a36Sopenharmony_ci } 10762306a36Sopenharmony_ci 10862306a36Sopenharmony_cierr: 10962306a36Sopenharmony_ci mutex_unlock(&tunnel6_mutex); 11062306a36Sopenharmony_ci 11162306a36Sopenharmony_ci synchronize_net(); 11262306a36Sopenharmony_ci 11362306a36Sopenharmony_ci return ret; 11462306a36Sopenharmony_ci} 11562306a36Sopenharmony_ciEXPORT_SYMBOL(xfrm6_tunnel_deregister); 11662306a36Sopenharmony_ci 11762306a36Sopenharmony_ci#define for_each_tunnel_rcu(head, handler) \ 11862306a36Sopenharmony_ci for (handler = rcu_dereference(head); \ 11962306a36Sopenharmony_ci handler != NULL; \ 12062306a36Sopenharmony_ci handler = rcu_dereference(handler->next)) \ 12162306a36Sopenharmony_ci 12262306a36Sopenharmony_cistatic int tunnelmpls6_rcv(struct sk_buff *skb) 12362306a36Sopenharmony_ci{ 12462306a36Sopenharmony_ci struct xfrm6_tunnel *handler; 12562306a36Sopenharmony_ci 12662306a36Sopenharmony_ci if (!pskb_may_pull(skb, sizeof(struct ipv6hdr))) 12762306a36Sopenharmony_ci goto drop; 12862306a36Sopenharmony_ci 12962306a36Sopenharmony_ci for_each_tunnel_rcu(tunnelmpls6_handlers, handler) 13062306a36Sopenharmony_ci if (!handler->handler(skb)) 13162306a36Sopenharmony_ci return 0; 13262306a36Sopenharmony_ci 13362306a36Sopenharmony_ci icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_PORT_UNREACH, 0); 13462306a36Sopenharmony_ci 13562306a36Sopenharmony_cidrop: 13662306a36Sopenharmony_ci kfree_skb(skb); 13762306a36Sopenharmony_ci return 0; 13862306a36Sopenharmony_ci} 13962306a36Sopenharmony_ci 14062306a36Sopenharmony_cistatic int tunnel6_rcv(struct sk_buff *skb) 14162306a36Sopenharmony_ci{ 14262306a36Sopenharmony_ci struct xfrm6_tunnel *handler; 14362306a36Sopenharmony_ci 14462306a36Sopenharmony_ci if (!pskb_may_pull(skb, sizeof(struct ipv6hdr))) 14562306a36Sopenharmony_ci goto drop; 14662306a36Sopenharmony_ci 14762306a36Sopenharmony_ci for_each_tunnel_rcu(tunnel6_handlers, handler) 14862306a36Sopenharmony_ci if (!handler->handler(skb)) 14962306a36Sopenharmony_ci return 0; 15062306a36Sopenharmony_ci 15162306a36Sopenharmony_ci icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_PORT_UNREACH, 0); 15262306a36Sopenharmony_ci 15362306a36Sopenharmony_cidrop: 15462306a36Sopenharmony_ci kfree_skb(skb); 15562306a36Sopenharmony_ci return 0; 15662306a36Sopenharmony_ci} 15762306a36Sopenharmony_ci 15862306a36Sopenharmony_ci#if IS_ENABLED(CONFIG_INET6_XFRM_TUNNEL) 15962306a36Sopenharmony_cistatic int tunnel6_rcv_cb(struct sk_buff *skb, u8 proto, int err) 16062306a36Sopenharmony_ci{ 16162306a36Sopenharmony_ci struct xfrm6_tunnel __rcu *head; 16262306a36Sopenharmony_ci struct xfrm6_tunnel *handler; 16362306a36Sopenharmony_ci int ret; 16462306a36Sopenharmony_ci 16562306a36Sopenharmony_ci head = (proto == IPPROTO_IPV6) ? tunnel6_handlers : tunnel46_handlers; 16662306a36Sopenharmony_ci 16762306a36Sopenharmony_ci for_each_tunnel_rcu(head, handler) { 16862306a36Sopenharmony_ci if (handler->cb_handler) { 16962306a36Sopenharmony_ci ret = handler->cb_handler(skb, err); 17062306a36Sopenharmony_ci if (ret <= 0) 17162306a36Sopenharmony_ci return ret; 17262306a36Sopenharmony_ci } 17362306a36Sopenharmony_ci } 17462306a36Sopenharmony_ci 17562306a36Sopenharmony_ci return 0; 17662306a36Sopenharmony_ci} 17762306a36Sopenharmony_ci 17862306a36Sopenharmony_cistatic const struct xfrm_input_afinfo tunnel6_input_afinfo = { 17962306a36Sopenharmony_ci .family = AF_INET6, 18062306a36Sopenharmony_ci .is_ipip = true, 18162306a36Sopenharmony_ci .callback = tunnel6_rcv_cb, 18262306a36Sopenharmony_ci}; 18362306a36Sopenharmony_ci#endif 18462306a36Sopenharmony_ci 18562306a36Sopenharmony_cistatic int tunnel46_rcv(struct sk_buff *skb) 18662306a36Sopenharmony_ci{ 18762306a36Sopenharmony_ci struct xfrm6_tunnel *handler; 18862306a36Sopenharmony_ci 18962306a36Sopenharmony_ci if (!pskb_may_pull(skb, sizeof(struct iphdr))) 19062306a36Sopenharmony_ci goto drop; 19162306a36Sopenharmony_ci 19262306a36Sopenharmony_ci for_each_tunnel_rcu(tunnel46_handlers, handler) 19362306a36Sopenharmony_ci if (!handler->handler(skb)) 19462306a36Sopenharmony_ci return 0; 19562306a36Sopenharmony_ci 19662306a36Sopenharmony_ci icmpv6_send(skb, ICMPV6_DEST_UNREACH, ICMPV6_PORT_UNREACH, 0); 19762306a36Sopenharmony_ci 19862306a36Sopenharmony_cidrop: 19962306a36Sopenharmony_ci kfree_skb(skb); 20062306a36Sopenharmony_ci return 0; 20162306a36Sopenharmony_ci} 20262306a36Sopenharmony_ci 20362306a36Sopenharmony_cistatic int tunnel6_err(struct sk_buff *skb, struct inet6_skb_parm *opt, 20462306a36Sopenharmony_ci u8 type, u8 code, int offset, __be32 info) 20562306a36Sopenharmony_ci{ 20662306a36Sopenharmony_ci struct xfrm6_tunnel *handler; 20762306a36Sopenharmony_ci 20862306a36Sopenharmony_ci for_each_tunnel_rcu(tunnel6_handlers, handler) 20962306a36Sopenharmony_ci if (!handler->err_handler(skb, opt, type, code, offset, info)) 21062306a36Sopenharmony_ci return 0; 21162306a36Sopenharmony_ci 21262306a36Sopenharmony_ci return -ENOENT; 21362306a36Sopenharmony_ci} 21462306a36Sopenharmony_ci 21562306a36Sopenharmony_cistatic int tunnel46_err(struct sk_buff *skb, struct inet6_skb_parm *opt, 21662306a36Sopenharmony_ci u8 type, u8 code, int offset, __be32 info) 21762306a36Sopenharmony_ci{ 21862306a36Sopenharmony_ci struct xfrm6_tunnel *handler; 21962306a36Sopenharmony_ci 22062306a36Sopenharmony_ci for_each_tunnel_rcu(tunnel46_handlers, handler) 22162306a36Sopenharmony_ci if (!handler->err_handler(skb, opt, type, code, offset, info)) 22262306a36Sopenharmony_ci return 0; 22362306a36Sopenharmony_ci 22462306a36Sopenharmony_ci return -ENOENT; 22562306a36Sopenharmony_ci} 22662306a36Sopenharmony_ci 22762306a36Sopenharmony_cistatic int tunnelmpls6_err(struct sk_buff *skb, struct inet6_skb_parm *opt, 22862306a36Sopenharmony_ci u8 type, u8 code, int offset, __be32 info) 22962306a36Sopenharmony_ci{ 23062306a36Sopenharmony_ci struct xfrm6_tunnel *handler; 23162306a36Sopenharmony_ci 23262306a36Sopenharmony_ci for_each_tunnel_rcu(tunnelmpls6_handlers, handler) 23362306a36Sopenharmony_ci if (!handler->err_handler(skb, opt, type, code, offset, info)) 23462306a36Sopenharmony_ci return 0; 23562306a36Sopenharmony_ci 23662306a36Sopenharmony_ci return -ENOENT; 23762306a36Sopenharmony_ci} 23862306a36Sopenharmony_ci 23962306a36Sopenharmony_cistatic const struct inet6_protocol tunnel6_protocol = { 24062306a36Sopenharmony_ci .handler = tunnel6_rcv, 24162306a36Sopenharmony_ci .err_handler = tunnel6_err, 24262306a36Sopenharmony_ci .flags = INET6_PROTO_NOPOLICY|INET6_PROTO_FINAL, 24362306a36Sopenharmony_ci}; 24462306a36Sopenharmony_ci 24562306a36Sopenharmony_cistatic const struct inet6_protocol tunnel46_protocol = { 24662306a36Sopenharmony_ci .handler = tunnel46_rcv, 24762306a36Sopenharmony_ci .err_handler = tunnel46_err, 24862306a36Sopenharmony_ci .flags = INET6_PROTO_NOPOLICY|INET6_PROTO_FINAL, 24962306a36Sopenharmony_ci}; 25062306a36Sopenharmony_ci 25162306a36Sopenharmony_cistatic const struct inet6_protocol tunnelmpls6_protocol = { 25262306a36Sopenharmony_ci .handler = tunnelmpls6_rcv, 25362306a36Sopenharmony_ci .err_handler = tunnelmpls6_err, 25462306a36Sopenharmony_ci .flags = INET6_PROTO_NOPOLICY|INET6_PROTO_FINAL, 25562306a36Sopenharmony_ci}; 25662306a36Sopenharmony_ci 25762306a36Sopenharmony_cistatic int __init tunnel6_init(void) 25862306a36Sopenharmony_ci{ 25962306a36Sopenharmony_ci if (inet6_add_protocol(&tunnel6_protocol, IPPROTO_IPV6)) { 26062306a36Sopenharmony_ci pr_err("%s: can't add protocol\n", __func__); 26162306a36Sopenharmony_ci return -EAGAIN; 26262306a36Sopenharmony_ci } 26362306a36Sopenharmony_ci if (inet6_add_protocol(&tunnel46_protocol, IPPROTO_IPIP)) { 26462306a36Sopenharmony_ci pr_err("%s: can't add protocol\n", __func__); 26562306a36Sopenharmony_ci inet6_del_protocol(&tunnel6_protocol, IPPROTO_IPV6); 26662306a36Sopenharmony_ci return -EAGAIN; 26762306a36Sopenharmony_ci } 26862306a36Sopenharmony_ci if (xfrm6_tunnel_mpls_supported() && 26962306a36Sopenharmony_ci inet6_add_protocol(&tunnelmpls6_protocol, IPPROTO_MPLS)) { 27062306a36Sopenharmony_ci pr_err("%s: can't add protocol\n", __func__); 27162306a36Sopenharmony_ci inet6_del_protocol(&tunnel6_protocol, IPPROTO_IPV6); 27262306a36Sopenharmony_ci inet6_del_protocol(&tunnel46_protocol, IPPROTO_IPIP); 27362306a36Sopenharmony_ci return -EAGAIN; 27462306a36Sopenharmony_ci } 27562306a36Sopenharmony_ci#if IS_ENABLED(CONFIG_INET6_XFRM_TUNNEL) 27662306a36Sopenharmony_ci if (xfrm_input_register_afinfo(&tunnel6_input_afinfo)) { 27762306a36Sopenharmony_ci pr_err("%s: can't add input afinfo\n", __func__); 27862306a36Sopenharmony_ci inet6_del_protocol(&tunnel6_protocol, IPPROTO_IPV6); 27962306a36Sopenharmony_ci inet6_del_protocol(&tunnel46_protocol, IPPROTO_IPIP); 28062306a36Sopenharmony_ci if (xfrm6_tunnel_mpls_supported()) 28162306a36Sopenharmony_ci inet6_del_protocol(&tunnelmpls6_protocol, IPPROTO_MPLS); 28262306a36Sopenharmony_ci return -EAGAIN; 28362306a36Sopenharmony_ci } 28462306a36Sopenharmony_ci#endif 28562306a36Sopenharmony_ci return 0; 28662306a36Sopenharmony_ci} 28762306a36Sopenharmony_ci 28862306a36Sopenharmony_cistatic void __exit tunnel6_fini(void) 28962306a36Sopenharmony_ci{ 29062306a36Sopenharmony_ci#if IS_ENABLED(CONFIG_INET6_XFRM_TUNNEL) 29162306a36Sopenharmony_ci if (xfrm_input_unregister_afinfo(&tunnel6_input_afinfo)) 29262306a36Sopenharmony_ci pr_err("%s: can't remove input afinfo\n", __func__); 29362306a36Sopenharmony_ci#endif 29462306a36Sopenharmony_ci if (inet6_del_protocol(&tunnel46_protocol, IPPROTO_IPIP)) 29562306a36Sopenharmony_ci pr_err("%s: can't remove protocol\n", __func__); 29662306a36Sopenharmony_ci if (inet6_del_protocol(&tunnel6_protocol, IPPROTO_IPV6)) 29762306a36Sopenharmony_ci pr_err("%s: can't remove protocol\n", __func__); 29862306a36Sopenharmony_ci if (xfrm6_tunnel_mpls_supported() && 29962306a36Sopenharmony_ci inet6_del_protocol(&tunnelmpls6_protocol, IPPROTO_MPLS)) 30062306a36Sopenharmony_ci pr_err("%s: can't remove protocol\n", __func__); 30162306a36Sopenharmony_ci} 30262306a36Sopenharmony_ci 30362306a36Sopenharmony_cimodule_init(tunnel6_init); 30462306a36Sopenharmony_cimodule_exit(tunnel6_fini); 30562306a36Sopenharmony_ciMODULE_LICENSE("GPL"); 306