1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41#define pr_fmt(fmt) "IPv6: " fmt
42
43#include <linux/errno.h>
44#include <linux/types.h>
45#include <linux/kernel.h>
46#include <linux/sched/signal.h>
47#include <linux/socket.h>
48#include <linux/sockios.h>
49#include <linux/net.h>
50#include <linux/inet.h>
51#include <linux/in6.h>
52#include <linux/netdevice.h>
53#include <linux/if_addr.h>
54#include <linux/if_arp.h>
55#include <linux/if_arcnet.h>
56#include <linux/if_infiniband.h>
57#include <linux/route.h>
58#include <linux/inetdevice.h>
59#include <linux/init.h>
60#include <linux/slab.h>
61#ifdef CONFIG_SYSCTL
62#include <linux/sysctl.h>
63#endif
64#include <linux/capability.h>
65#include <linux/delay.h>
66#include <linux/notifier.h>
67#include <linux/string.h>
68#include <linux/hash.h>
69
70#include <net/net_namespace.h>
71#include <net/sock.h>
72#include <net/snmp.h>
73
74#include <net/6lowpan.h>
75#include <net/firewire.h>
76#include <net/ipv6.h>
77#include <net/protocol.h>
78#include <net/ndisc.h>
79#include <net/ip6_route.h>
80#include <net/addrconf.h>
81#include <net/tcp.h>
82#include <net/ip.h>
83#include <net/netlink.h>
84#include <net/pkt_sched.h>
85#include <net/l3mdev.h>
86#include <linux/if_tunnel.h>
87#include <linux/rtnetlink.h>
88#include <linux/netconf.h>
89#include <linux/random.h>
90#include <linux/uaccess.h>
91#include <asm/unaligned.h>
92
93#include <linux/proc_fs.h>
94#include <linux/seq_file.h>
95#include <linux/export.h>
96
97#define INFINITY_LIFE_TIME 0xFFFFFFFF
98
99#define IPV6_MAX_STRLEN \
100 sizeof("ffff:ffff:ffff:ffff:ffff:ffff:255.255.255.255")
101
102static inline u32 cstamp_delta(unsigned long cstamp)
103{
104 return (cstamp - INITIAL_JIFFIES) * 100UL / HZ;
105}
106
107static inline s32 rfc3315_s14_backoff_init(s32 irt)
108{
109
110 u64 tmp = (900000 + prandom_u32() % 200001) * (u64)irt;
111 do_div(tmp, 1000000);
112 return (s32)tmp;
113}
114
115static inline s32 rfc3315_s14_backoff_update(s32 rt, s32 mrt)
116{
117
118 u64 tmp = (1900000 + prandom_u32() % 200001) * (u64)rt;
119 do_div(tmp, 1000000);
120 if ((s32)tmp > mrt) {
121
122 tmp = (900000 + prandom_u32() % 200001) * (u64)mrt;
123 do_div(tmp, 1000000);
124 }
125 return (s32)tmp;
126}
127
128#ifdef CONFIG_SYSCTL
129static int addrconf_sysctl_register(struct inet6_dev *idev);
130static void addrconf_sysctl_unregister(struct inet6_dev *idev);
131#else
132static inline int addrconf_sysctl_register(struct inet6_dev *idev)
133{
134 return 0;
135}
136
137static inline void addrconf_sysctl_unregister(struct inet6_dev *idev)
138{
139}
140#endif
141
142static void ipv6_regen_rndid(struct inet6_dev *idev);
143static void ipv6_try_regen_rndid(struct inet6_dev *idev, struct in6_addr *tmpaddr);
144
145static int ipv6_generate_eui64(u8 *eui, struct net_device *dev);
146static int ipv6_count_addresses(const struct inet6_dev *idev);
147static int ipv6_generate_stable_address(struct in6_addr *addr,
148 u8 dad_count,
149 const struct inet6_dev *idev);
150
151#define IN6_ADDR_HSIZE_SHIFT 8
152#define IN6_ADDR_HSIZE (1 << IN6_ADDR_HSIZE_SHIFT)
153
154
155
156static struct hlist_head inet6_addr_lst[IN6_ADDR_HSIZE];
157static DEFINE_SPINLOCK(addrconf_hash_lock);
158
159static void addrconf_verify(void);
160static void addrconf_verify_rtnl(void);
161static void addrconf_verify_work(struct work_struct *);
162
163static struct workqueue_struct *addrconf_wq;
164static DECLARE_DELAYED_WORK(addr_chk_work, addrconf_verify_work);
165
166static void addrconf_join_anycast(struct inet6_ifaddr *ifp);
167static void addrconf_leave_anycast(struct inet6_ifaddr *ifp);
168
169static void addrconf_type_change(struct net_device *dev,
170 unsigned long event);
171static int addrconf_ifdown(struct net_device *dev, int how);
172
173static struct fib6_info *addrconf_get_prefix_route(const struct in6_addr *pfx,
174 int plen,
175 const struct net_device *dev,
176 u32 flags, u32 noflags);
177
178static void addrconf_dad_start(struct inet6_ifaddr *ifp);
179static void addrconf_dad_work(struct work_struct *w);
180static void addrconf_dad_completed(struct inet6_ifaddr *ifp, bool bump_id,
181 bool send_na);
182static void addrconf_dad_run(struct inet6_dev *idev);
183static void addrconf_rs_timer(struct timer_list *t);
184static void __ipv6_ifa_notify(int event, struct inet6_ifaddr *ifa);
185static void ipv6_ifa_notify(int event, struct inet6_ifaddr *ifa);
186
187static void inet6_prefix_notify(int event, struct inet6_dev *idev,
188 struct prefix_info *pinfo);
189
190static struct ipv6_devconf ipv6_devconf __read_mostly = {
191 .forwarding = 0,
192 .hop_limit = IPV6_DEFAULT_HOPLIMIT,
193 .mtu6 = IPV6_MIN_MTU,
194 .accept_ra = 1,
195 .accept_redirects = 1,
196 .autoconf = 1,
197 .force_mld_version = 0,
198 .mldv1_unsolicited_report_interval = 10 * HZ,
199 .mldv2_unsolicited_report_interval = HZ,
200 .dad_transmits = 1,
201 .rtr_solicits = MAX_RTR_SOLICITATIONS,
202 .rtr_solicit_interval = RTR_SOLICITATION_INTERVAL,
203 .rtr_solicit_max_interval = RTR_SOLICITATION_MAX_INTERVAL,
204 .rtr_solicit_delay = MAX_RTR_SOLICITATION_DELAY,
205 .use_tempaddr = 0,
206 .temp_valid_lft = TEMP_VALID_LIFETIME,
207 .temp_prefered_lft = TEMP_PREFERRED_LIFETIME,
208 .regen_max_retry = REGEN_MAX_RETRY,
209 .max_desync_factor = MAX_DESYNC_FACTOR,
210 .max_addresses = IPV6_MAX_ADDRESSES,
211 .accept_ra_defrtr = 1,
212 .accept_ra_from_local = 0,
213 .accept_ra_min_hop_limit= 1,
214 .accept_ra_pinfo = 1,
215#ifdef CONFIG_IPV6_ROUTER_PREF
216 .accept_ra_rtr_pref = 1,
217 .rtr_probe_interval = 60 * HZ,
218#ifdef CONFIG_IPV6_ROUTE_INFO
219 .accept_ra_rt_info_min_plen = 0,
220 .accept_ra_rt_info_max_plen = 0,
221#endif
222#endif
223 .proxy_ndp = 0,
224 .accept_source_route = 0,
225 .disable_ipv6 = 0,
226 .accept_dad = 0,
227 .suppress_frag_ndisc = 1,
228 .accept_ra_mtu = 1,
229 .stable_secret = {
230 .initialized = false,
231 },
232 .use_oif_addrs_only = 0,
233 .ignore_routes_with_linkdown = 0,
234 .keep_addr_on_down = 0,
235 .seg6_enabled = 0,
236#ifdef CONFIG_IPV6_SEG6_HMAC
237 .seg6_require_hmac = 0,
238#endif
239 .enhanced_dad = 1,
240 .addr_gen_mode = IN6_ADDR_GEN_MODE_EUI64,
241 .disable_policy = 0,
242};
243
244static struct ipv6_devconf ipv6_devconf_dflt __read_mostly = {
245 .forwarding = 0,
246 .hop_limit = IPV6_DEFAULT_HOPLIMIT,
247 .mtu6 = IPV6_MIN_MTU,
248 .accept_ra = 1,
249 .accept_redirects = 1,
250 .autoconf = 1,
251 .force_mld_version = 0,
252 .mldv1_unsolicited_report_interval = 10 * HZ,
253 .mldv2_unsolicited_report_interval = HZ,
254 .dad_transmits = 1,
255 .rtr_solicits = MAX_RTR_SOLICITATIONS,
256 .rtr_solicit_interval = RTR_SOLICITATION_INTERVAL,
257 .rtr_solicit_max_interval = RTR_SOLICITATION_MAX_INTERVAL,
258 .rtr_solicit_delay = MAX_RTR_SOLICITATION_DELAY,
259 .use_tempaddr = 0,
260 .temp_valid_lft = TEMP_VALID_LIFETIME,
261 .temp_prefered_lft = TEMP_PREFERRED_LIFETIME,
262 .regen_max_retry = REGEN_MAX_RETRY,
263 .max_desync_factor = MAX_DESYNC_FACTOR,
264 .max_addresses = IPV6_MAX_ADDRESSES,
265 .accept_ra_defrtr = 1,
266 .accept_ra_from_local = 0,
267 .accept_ra_min_hop_limit= 1,
268 .accept_ra_pinfo = 1,
269#ifdef CONFIG_IPV6_ROUTER_PREF
270 .accept_ra_rtr_pref = 1,
271 .rtr_probe_interval = 60 * HZ,
272#ifdef CONFIG_IPV6_ROUTE_INFO
273 .accept_ra_rt_info_min_plen = 0,
274 .accept_ra_rt_info_max_plen = 0,
275#endif
276#endif
277 .proxy_ndp = 0,
278 .accept_source_route = 0,
279 .disable_ipv6 = 0,
280 .accept_dad = 1,
281 .suppress_frag_ndisc = 1,
282 .accept_ra_mtu = 1,
283 .stable_secret = {
284 .initialized = false,
285 },
286 .use_oif_addrs_only = 0,
287 .ignore_routes_with_linkdown = 0,
288 .keep_addr_on_down = 0,
289 .seg6_enabled = 0,
290#ifdef CONFIG_IPV6_SEG6_HMAC
291 .seg6_require_hmac = 0,
292#endif
293 .enhanced_dad = 1,
294 .addr_gen_mode = IN6_ADDR_GEN_MODE_EUI64,
295 .disable_policy = 0,
296};
297
298
299static inline bool addrconf_link_ready(const struct net_device *dev)
300{
301 return netif_oper_up(dev) && !qdisc_tx_is_noop(dev);
302}
303
304static void addrconf_del_rs_timer(struct inet6_dev *idev)
305{
306 if (del_timer(&idev->rs_timer))
307 __in6_dev_put(idev);
308}
309
310static void addrconf_del_dad_work(struct inet6_ifaddr *ifp)
311{
312 if (cancel_delayed_work(&ifp->dad_work))
313 __in6_ifa_put(ifp);
314}
315
316static void addrconf_mod_rs_timer(struct inet6_dev *idev,
317 unsigned long when)
318{
319 if (!timer_pending(&idev->rs_timer))
320 in6_dev_hold(idev);
321 mod_timer(&idev->rs_timer, jiffies + when);
322}
323
324static void addrconf_mod_dad_work(struct inet6_ifaddr *ifp,
325 unsigned long delay)
326{
327 in6_ifa_hold(ifp);
328 if (mod_delayed_work(addrconf_wq, &ifp->dad_work, delay))
329 in6_ifa_put(ifp);
330}
331
332static int snmp6_alloc_dev(struct inet6_dev *idev)
333{
334 int i;
335
336 idev->stats.ipv6 = alloc_percpu(struct ipstats_mib);
337 if (!idev->stats.ipv6)
338 goto err_ip;
339
340 for_each_possible_cpu(i) {
341 struct ipstats_mib *addrconf_stats;
342 addrconf_stats = per_cpu_ptr(idev->stats.ipv6, i);
343 u64_stats_init(&addrconf_stats->syncp);
344 }
345
346
347 idev->stats.icmpv6dev = kzalloc(sizeof(struct icmpv6_mib_device),
348 GFP_KERNEL);
349 if (!idev->stats.icmpv6dev)
350 goto err_icmp;
351 idev->stats.icmpv6msgdev = kzalloc(sizeof(struct icmpv6msg_mib_device),
352 GFP_KERNEL);
353 if (!idev->stats.icmpv6msgdev)
354 goto err_icmpmsg;
355
356 return 0;
357
358err_icmpmsg:
359 kfree(idev->stats.icmpv6dev);
360err_icmp:
361 free_percpu(idev->stats.ipv6);
362err_ip:
363 return -ENOMEM;
364}
365
366static struct inet6_dev *ipv6_add_dev(struct net_device *dev)
367{
368 struct inet6_dev *ndev;
369 int err = -ENOMEM;
370
371 ASSERT_RTNL();
372
373 if (dev->mtu < IPV6_MIN_MTU)
374 return ERR_PTR(-EINVAL);
375
376 ndev = kzalloc(sizeof(struct inet6_dev), GFP_KERNEL);
377 if (!ndev)
378 return ERR_PTR(err);
379
380 rwlock_init(&ndev->lock);
381 ndev->dev = dev;
382 INIT_LIST_HEAD(&ndev->addr_list);
383 timer_setup(&ndev->rs_timer, addrconf_rs_timer, 0);
384 memcpy(&ndev->cnf, dev_net(dev)->ipv6.devconf_dflt, sizeof(ndev->cnf));
385
386 if (ndev->cnf.stable_secret.initialized)
387 ndev->cnf.addr_gen_mode = IN6_ADDR_GEN_MODE_STABLE_PRIVACY;
388 else
389 ndev->cnf.addr_gen_mode = ipv6_devconf_dflt.addr_gen_mode;
390
391 ndev->cnf.mtu6 = dev->mtu;
392 ndev->nd_parms = neigh_parms_alloc(dev, &nd_tbl);
393 if (!ndev->nd_parms) {
394 kfree(ndev);
395 return ERR_PTR(err);
396 }
397 if (ndev->cnf.forwarding)
398 dev_disable_lro(dev);
399
400 dev_hold(dev);
401
402 if (snmp6_alloc_dev(ndev) < 0) {
403 netdev_dbg(dev, "%s: cannot allocate memory for statistics\n",
404 __func__);
405 neigh_parms_release(&nd_tbl, ndev->nd_parms);
406 dev_put(dev);
407 kfree(ndev);
408 return ERR_PTR(err);
409 }
410
411 if (snmp6_register_dev(ndev) < 0) {
412 netdev_dbg(dev, "%s: cannot create /proc/net/dev_snmp6/%s\n",
413 __func__, dev->name);
414 goto err_release;
415 }
416
417
418 refcount_set(&ndev->refcnt, 1);
419
420 if (dev->flags & (IFF_NOARP | IFF_LOOPBACK))
421 ndev->cnf.accept_dad = -1;
422
423#if IS_ENABLED(CONFIG_IPV6_SIT)
424 if (dev->type == ARPHRD_SIT && (dev->priv_flags & IFF_ISATAP)) {
425 pr_info("%s: Disabled Multicast RS\n", dev->name);
426 ndev->cnf.rtr_solicits = 0;
427 }
428#endif
429
430 INIT_LIST_HEAD(&ndev->tempaddr_list);
431 ndev->desync_factor = U32_MAX;
432 if ((dev->flags&IFF_LOOPBACK) ||
433 dev->type == ARPHRD_TUNNEL ||
434 dev->type == ARPHRD_TUNNEL6 ||
435 dev->type == ARPHRD_SIT ||
436 dev->type == ARPHRD_NONE) {
437 ndev->cnf.use_tempaddr = -1;
438 } else
439 ipv6_regen_rndid(ndev);
440
441 ndev->token = in6addr_any;
442
443 if (netif_running(dev) && addrconf_link_ready(dev))
444 ndev->if_flags |= IF_READY;
445
446 ipv6_mc_init_dev(ndev);
447 ndev->tstamp = jiffies;
448 err = addrconf_sysctl_register(ndev);
449 if (err) {
450 ipv6_mc_destroy_dev(ndev);
451 snmp6_unregister_dev(ndev);
452 goto err_release;
453 }
454
455 rcu_assign_pointer(dev->ip6_ptr, ndev);
456
457
458 ipv6_dev_mc_inc(dev, &in6addr_interfacelocal_allnodes);
459
460
461 ipv6_dev_mc_inc(dev, &in6addr_linklocal_allnodes);
462
463
464 if (ndev->cnf.forwarding && (dev->flags & IFF_MULTICAST))
465 ipv6_dev_mc_inc(dev, &in6addr_linklocal_allrouters);
466
467 return ndev;
468
469err_release:
470 neigh_parms_release(&nd_tbl, ndev->nd_parms);
471 ndev->dead = 1;
472 in6_dev_finish_destroy(ndev);
473 return ERR_PTR(err);
474}
475
476static struct inet6_dev *ipv6_find_idev(struct net_device *dev)
477{
478 struct inet6_dev *idev;
479
480 ASSERT_RTNL();
481
482 idev = __in6_dev_get(dev);
483 if (!idev) {
484 idev = ipv6_add_dev(dev);
485 if (IS_ERR(idev))
486 return NULL;
487 }
488
489 if (dev->flags&IFF_UP)
490 ipv6_mc_up(idev);
491 return idev;
492}
493
494static int inet6_netconf_msgsize_devconf(int type)
495{
496 int size = NLMSG_ALIGN(sizeof(struct netconfmsg))
497 + nla_total_size(4);
498 bool all = false;
499
500 if (type == NETCONFA_ALL)
501 all = true;
502
503 if (all || type == NETCONFA_FORWARDING)
504 size += nla_total_size(4);
505#ifdef CONFIG_IPV6_MROUTE
506 if (all || type == NETCONFA_MC_FORWARDING)
507 size += nla_total_size(4);
508#endif
509 if (all || type == NETCONFA_PROXY_NEIGH)
510 size += nla_total_size(4);
511
512 if (all || type == NETCONFA_IGNORE_ROUTES_WITH_LINKDOWN)
513 size += nla_total_size(4);
514
515 return size;
516}
517
518static int inet6_netconf_fill_devconf(struct sk_buff *skb, int ifindex,
519 struct ipv6_devconf *devconf, u32 portid,
520 u32 seq, int event, unsigned int flags,
521 int type)
522{
523 struct nlmsghdr *nlh;
524 struct netconfmsg *ncm;
525 bool all = false;
526
527 nlh = nlmsg_put(skb, portid, seq, event, sizeof(struct netconfmsg),
528 flags);
529 if (!nlh)
530 return -EMSGSIZE;
531
532 if (type == NETCONFA_ALL)
533 all = true;
534
535 ncm = nlmsg_data(nlh);
536 ncm->ncm_family = AF_INET6;
537
538 if (nla_put_s32(skb, NETCONFA_IFINDEX, ifindex) < 0)
539 goto nla_put_failure;
540
541 if (!devconf)
542 goto out;
543
544 if ((all || type == NETCONFA_FORWARDING) &&
545 nla_put_s32(skb, NETCONFA_FORWARDING, devconf->forwarding) < 0)
546 goto nla_put_failure;
547#ifdef CONFIG_IPV6_MROUTE
548 if ((all || type == NETCONFA_MC_FORWARDING) &&
549 nla_put_s32(skb, NETCONFA_MC_FORWARDING,
550 devconf->mc_forwarding) < 0)
551 goto nla_put_failure;
552#endif
553 if ((all || type == NETCONFA_PROXY_NEIGH) &&
554 nla_put_s32(skb, NETCONFA_PROXY_NEIGH, devconf->proxy_ndp) < 0)
555 goto nla_put_failure;
556
557 if ((all || type == NETCONFA_IGNORE_ROUTES_WITH_LINKDOWN) &&
558 nla_put_s32(skb, NETCONFA_IGNORE_ROUTES_WITH_LINKDOWN,
559 devconf->ignore_routes_with_linkdown) < 0)
560 goto nla_put_failure;
561
562out:
563 nlmsg_end(skb, nlh);
564 return 0;
565
566nla_put_failure:
567 nlmsg_cancel(skb, nlh);
568 return -EMSGSIZE;
569}
570
571void inet6_netconf_notify_devconf(struct net *net, int event, int type,
572 int ifindex, struct ipv6_devconf *devconf)
573{
574 struct sk_buff *skb;
575 int err = -ENOBUFS;
576
577 skb = nlmsg_new(inet6_netconf_msgsize_devconf(type), GFP_KERNEL);
578 if (!skb)
579 goto errout;
580
581 err = inet6_netconf_fill_devconf(skb, ifindex, devconf, 0, 0,
582 event, 0, type);
583 if (err < 0) {
584
585 WARN_ON(err == -EMSGSIZE);
586 kfree_skb(skb);
587 goto errout;
588 }
589 rtnl_notify(skb, net, 0, RTNLGRP_IPV6_NETCONF, NULL, GFP_KERNEL);
590 return;
591errout:
592 rtnl_set_sk_err(net, RTNLGRP_IPV6_NETCONF, err);
593}
594
595static const struct nla_policy devconf_ipv6_policy[NETCONFA_MAX+1] = {
596 [NETCONFA_IFINDEX] = { .len = sizeof(int) },
597 [NETCONFA_FORWARDING] = { .len = sizeof(int) },
598 [NETCONFA_PROXY_NEIGH] = { .len = sizeof(int) },
599 [NETCONFA_IGNORE_ROUTES_WITH_LINKDOWN] = { .len = sizeof(int) },
600};
601
602static int inet6_netconf_get_devconf(struct sk_buff *in_skb,
603 struct nlmsghdr *nlh,
604 struct netlink_ext_ack *extack)
605{
606 struct net *net = sock_net(in_skb->sk);
607 struct nlattr *tb[NETCONFA_MAX+1];
608 struct inet6_dev *in6_dev = NULL;
609 struct net_device *dev = NULL;
610 struct netconfmsg *ncm;
611 struct sk_buff *skb;
612 struct ipv6_devconf *devconf;
613 int ifindex;
614 int err;
615
616 err = nlmsg_parse(nlh, sizeof(*ncm), tb, NETCONFA_MAX,
617 devconf_ipv6_policy, extack);
618 if (err < 0)
619 return err;
620
621 if (!tb[NETCONFA_IFINDEX])
622 return -EINVAL;
623
624 err = -EINVAL;
625 ifindex = nla_get_s32(tb[NETCONFA_IFINDEX]);
626 switch (ifindex) {
627 case NETCONFA_IFINDEX_ALL:
628 devconf = net->ipv6.devconf_all;
629 break;
630 case NETCONFA_IFINDEX_DEFAULT:
631 devconf = net->ipv6.devconf_dflt;
632 break;
633 default:
634 dev = dev_get_by_index(net, ifindex);
635 if (!dev)
636 return -EINVAL;
637 in6_dev = in6_dev_get(dev);
638 if (!in6_dev)
639 goto errout;
640 devconf = &in6_dev->cnf;
641 break;
642 }
643
644 err = -ENOBUFS;
645 skb = nlmsg_new(inet6_netconf_msgsize_devconf(NETCONFA_ALL), GFP_KERNEL);
646 if (!skb)
647 goto errout;
648
649 err = inet6_netconf_fill_devconf(skb, ifindex, devconf,
650 NETLINK_CB(in_skb).portid,
651 nlh->nlmsg_seq, RTM_NEWNETCONF, 0,
652 NETCONFA_ALL);
653 if (err < 0) {
654
655 WARN_ON(err == -EMSGSIZE);
656 kfree_skb(skb);
657 goto errout;
658 }
659 err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).portid);
660errout:
661 if (in6_dev)
662 in6_dev_put(in6_dev);
663 if (dev)
664 dev_put(dev);
665 return err;
666}
667
668static int inet6_netconf_dump_devconf(struct sk_buff *skb,
669 struct netlink_callback *cb)
670{
671 struct net *net = sock_net(skb->sk);
672 int h, s_h;
673 int idx, s_idx;
674 struct net_device *dev;
675 struct inet6_dev *idev;
676 struct hlist_head *head;
677
678 s_h = cb->args[0];
679 s_idx = idx = cb->args[1];
680
681 for (h = s_h; h < NETDEV_HASHENTRIES; h++, s_idx = 0) {
682 idx = 0;
683 head = &net->dev_index_head[h];
684 rcu_read_lock();
685 cb->seq = atomic_read(&net->ipv6.dev_addr_genid) ^
686 net->dev_base_seq;
687 hlist_for_each_entry_rcu(dev, head, index_hlist) {
688 if (idx < s_idx)
689 goto cont;
690 idev = __in6_dev_get(dev);
691 if (!idev)
692 goto cont;
693
694 if (inet6_netconf_fill_devconf(skb, dev->ifindex,
695 &idev->cnf,
696 NETLINK_CB(cb->skb).portid,
697 cb->nlh->nlmsg_seq,
698 RTM_NEWNETCONF,
699 NLM_F_MULTI,
700 NETCONFA_ALL) < 0) {
701 rcu_read_unlock();
702 goto done;
703 }
704 nl_dump_check_consistent(cb, nlmsg_hdr(skb));
705cont:
706 idx++;
707 }
708 rcu_read_unlock();
709 }
710 if (h == NETDEV_HASHENTRIES) {
711 if (inet6_netconf_fill_devconf(skb, NETCONFA_IFINDEX_ALL,
712 net->ipv6.devconf_all,
713 NETLINK_CB(cb->skb).portid,
714 cb->nlh->nlmsg_seq,
715 RTM_NEWNETCONF, NLM_F_MULTI,
716 NETCONFA_ALL) < 0)
717 goto done;
718 else
719 h++;
720 }
721 if (h == NETDEV_HASHENTRIES + 1) {
722 if (inet6_netconf_fill_devconf(skb, NETCONFA_IFINDEX_DEFAULT,
723 net->ipv6.devconf_dflt,
724 NETLINK_CB(cb->skb).portid,
725 cb->nlh->nlmsg_seq,
726 RTM_NEWNETCONF, NLM_F_MULTI,
727 NETCONFA_ALL) < 0)
728 goto done;
729 else
730 h++;
731 }
732done:
733 cb->args[0] = h;
734 cb->args[1] = idx;
735
736 return skb->len;
737}
738
739#ifdef CONFIG_SYSCTL
740static void dev_forward_change(struct inet6_dev *idev)
741{
742 struct net_device *dev;
743 struct inet6_ifaddr *ifa;
744
745 if (!idev)
746 return;
747 dev = idev->dev;
748 if (idev->cnf.forwarding)
749 dev_disable_lro(dev);
750 if (dev->flags & IFF_MULTICAST) {
751 if (idev->cnf.forwarding) {
752 ipv6_dev_mc_inc(dev, &in6addr_linklocal_allrouters);
753 ipv6_dev_mc_inc(dev, &in6addr_interfacelocal_allrouters);
754 ipv6_dev_mc_inc(dev, &in6addr_sitelocal_allrouters);
755 } else {
756 ipv6_dev_mc_dec(dev, &in6addr_linklocal_allrouters);
757 ipv6_dev_mc_dec(dev, &in6addr_interfacelocal_allrouters);
758 ipv6_dev_mc_dec(dev, &in6addr_sitelocal_allrouters);
759 }
760 }
761
762 list_for_each_entry(ifa, &idev->addr_list, if_list) {
763 if (ifa->flags&IFA_F_TENTATIVE)
764 continue;
765 if (idev->cnf.forwarding)
766 addrconf_join_anycast(ifa);
767 else
768 addrconf_leave_anycast(ifa);
769 }
770 inet6_netconf_notify_devconf(dev_net(dev), RTM_NEWNETCONF,
771 NETCONFA_FORWARDING,
772 dev->ifindex, &idev->cnf);
773}
774
775
776static void addrconf_forward_change(struct net *net, __s32 newf)
777{
778 struct net_device *dev;
779 struct inet6_dev *idev;
780
781 for_each_netdev(net, dev) {
782 idev = __in6_dev_get(dev);
783 if (idev) {
784 int changed = (!idev->cnf.forwarding) ^ (!newf);
785 idev->cnf.forwarding = newf;
786 if (changed)
787 dev_forward_change(idev);
788 }
789 }
790}
791
792static int addrconf_fixup_forwarding(struct ctl_table *table, int *p, int newf)
793{
794 struct net *net;
795 int old;
796
797 if (!rtnl_trylock())
798 return restart_syscall();
799
800 net = (struct net *)table->extra2;
801 old = *p;
802 *p = newf;
803
804 if (p == &net->ipv6.devconf_dflt->forwarding) {
805 if ((!newf) ^ (!old))
806 inet6_netconf_notify_devconf(net, RTM_NEWNETCONF,
807 NETCONFA_FORWARDING,
808 NETCONFA_IFINDEX_DEFAULT,
809 net->ipv6.devconf_dflt);
810 rtnl_unlock();
811 return 0;
812 }
813
814 if (p == &net->ipv6.devconf_all->forwarding) {
815 int old_dflt = net->ipv6.devconf_dflt->forwarding;
816
817 net->ipv6.devconf_dflt->forwarding = newf;
818 if ((!newf) ^ (!old_dflt))
819 inet6_netconf_notify_devconf(net, RTM_NEWNETCONF,
820 NETCONFA_FORWARDING,
821 NETCONFA_IFINDEX_DEFAULT,
822 net->ipv6.devconf_dflt);
823
824 addrconf_forward_change(net, newf);
825 if ((!newf) ^ (!old))
826 inet6_netconf_notify_devconf(net, RTM_NEWNETCONF,
827 NETCONFA_FORWARDING,
828 NETCONFA_IFINDEX_ALL,
829 net->ipv6.devconf_all);
830 } else if ((!newf) ^ (!old))
831 dev_forward_change((struct inet6_dev *)table->extra1);
832 rtnl_unlock();
833
834 if (newf)
835 rt6_purge_dflt_routers(net);
836 return 1;
837}
838
839static void addrconf_linkdown_change(struct net *net, __s32 newf)
840{
841 struct net_device *dev;
842 struct inet6_dev *idev;
843
844 for_each_netdev(net, dev) {
845 idev = __in6_dev_get(dev);
846 if (idev) {
847 int changed = (!idev->cnf.ignore_routes_with_linkdown) ^ (!newf);
848
849 idev->cnf.ignore_routes_with_linkdown = newf;
850 if (changed)
851 inet6_netconf_notify_devconf(dev_net(dev),
852 RTM_NEWNETCONF,
853 NETCONFA_IGNORE_ROUTES_WITH_LINKDOWN,
854 dev->ifindex,
855 &idev->cnf);
856 }
857 }
858}
859
860static int addrconf_fixup_linkdown(struct ctl_table *table, int *p, int newf)
861{
862 struct net *net;
863 int old;
864
865 if (!rtnl_trylock())
866 return restart_syscall();
867
868 net = (struct net *)table->extra2;
869 old = *p;
870 *p = newf;
871
872 if (p == &net->ipv6.devconf_dflt->ignore_routes_with_linkdown) {
873 if ((!newf) ^ (!old))
874 inet6_netconf_notify_devconf(net,
875 RTM_NEWNETCONF,
876 NETCONFA_IGNORE_ROUTES_WITH_LINKDOWN,
877 NETCONFA_IFINDEX_DEFAULT,
878 net->ipv6.devconf_dflt);
879 rtnl_unlock();
880 return 0;
881 }
882
883 if (p == &net->ipv6.devconf_all->ignore_routes_with_linkdown) {
884 net->ipv6.devconf_dflt->ignore_routes_with_linkdown = newf;
885 addrconf_linkdown_change(net, newf);
886 if ((!newf) ^ (!old))
887 inet6_netconf_notify_devconf(net,
888 RTM_NEWNETCONF,
889 NETCONFA_IGNORE_ROUTES_WITH_LINKDOWN,
890 NETCONFA_IFINDEX_ALL,
891 net->ipv6.devconf_all);
892 }
893 rtnl_unlock();
894
895 return 1;
896}
897
898#endif
899
900
901void inet6_ifa_finish_destroy(struct inet6_ifaddr *ifp)
902{
903 WARN_ON(!hlist_unhashed(&ifp->addr_lst));
904
905#ifdef NET_REFCNT_DEBUG
906 pr_debug("%s\n", __func__);
907#endif
908
909 in6_dev_put(ifp->idev);
910
911 if (cancel_delayed_work(&ifp->dad_work))
912 pr_notice("delayed DAD work was pending while freeing ifa=%p\n",
913 ifp);
914
915 if (ifp->state != INET6_IFADDR_STATE_DEAD) {
916 pr_warn("Freeing alive inet6 address %p\n", ifp);
917 return;
918 }
919
920 kfree_rcu(ifp, rcu);
921}
922
923static void
924ipv6_link_dev_addr(struct inet6_dev *idev, struct inet6_ifaddr *ifp)
925{
926 struct list_head *p;
927 int ifp_scope = ipv6_addr_src_scope(&ifp->addr);
928
929
930
931
932
933 list_for_each(p, &idev->addr_list) {
934 struct inet6_ifaddr *ifa
935 = list_entry(p, struct inet6_ifaddr, if_list);
936 if (ifp_scope >= ipv6_addr_src_scope(&ifa->addr))
937 break;
938 }
939
940 list_add_tail_rcu(&ifp->if_list, p);
941}
942
943static u32 inet6_addr_hash(const struct net *net, const struct in6_addr *addr)
944{
945 u32 val = ipv6_addr_hash(addr) ^ net_hash_mix(net);
946
947 return hash_32(val, IN6_ADDR_HSIZE_SHIFT);
948}
949
950static bool ipv6_chk_same_addr(struct net *net, const struct in6_addr *addr,
951 struct net_device *dev, unsigned int hash)
952{
953 struct inet6_ifaddr *ifp;
954
955 hlist_for_each_entry(ifp, &inet6_addr_lst[hash], addr_lst) {
956 if (!net_eq(dev_net(ifp->idev->dev), net))
957 continue;
958 if (ipv6_addr_equal(&ifp->addr, addr)) {
959 if (!dev || ifp->idev->dev == dev)
960 return true;
961 }
962 }
963 return false;
964}
965
966static int ipv6_add_addr_hash(struct net_device *dev, struct inet6_ifaddr *ifa)
967{
968 unsigned int hash = inet6_addr_hash(dev_net(dev), &ifa->addr);
969 int err = 0;
970
971 spin_lock(&addrconf_hash_lock);
972
973
974 if (ipv6_chk_same_addr(dev_net(dev), &ifa->addr, dev, hash)) {
975 netdev_dbg(dev, "ipv6_add_addr: already assigned\n");
976 err = -EEXIST;
977 } else {
978 hlist_add_head_rcu(&ifa->addr_lst, &inet6_addr_lst[hash]);
979 }
980
981 spin_unlock(&addrconf_hash_lock);
982
983 return err;
984}
985
986
987
988static struct inet6_ifaddr *
989ipv6_add_addr(struct inet6_dev *idev, struct ifa6_config *cfg,
990 bool can_block, struct netlink_ext_ack *extack)
991{
992 gfp_t gfp_flags = can_block ? GFP_KERNEL : GFP_ATOMIC;
993 int addr_type = ipv6_addr_type(cfg->pfx);
994 struct net *net = dev_net(idev->dev);
995 struct inet6_ifaddr *ifa = NULL;
996 struct fib6_info *f6i = NULL;
997 int err = 0;
998
999 if (addr_type == IPV6_ADDR_ANY ||
1000 addr_type & IPV6_ADDR_MULTICAST ||
1001 (!(idev->dev->flags & IFF_LOOPBACK) &&
1002 addr_type & IPV6_ADDR_LOOPBACK))
1003 return ERR_PTR(-EADDRNOTAVAIL);
1004
1005 if (idev->dead) {
1006 err = -ENODEV;
1007 goto out;
1008 }
1009
1010 if (idev->cnf.disable_ipv6) {
1011 err = -EACCES;
1012 goto out;
1013 }
1014
1015
1016
1017
1018 if (can_block) {
1019 struct in6_validator_info i6vi = {
1020 .i6vi_addr = *cfg->pfx,
1021 .i6vi_dev = idev,
1022 .extack = extack,
1023 };
1024
1025 err = inet6addr_validator_notifier_call_chain(NETDEV_UP, &i6vi);
1026 err = notifier_to_errno(err);
1027 if (err < 0)
1028 goto out;
1029 }
1030
1031 ifa = kzalloc(sizeof(*ifa), gfp_flags);
1032 if (!ifa) {
1033 err = -ENOBUFS;
1034 goto out;
1035 }
1036
1037 f6i = addrconf_f6i_alloc(net, idev, cfg->pfx, false, gfp_flags);
1038 if (IS_ERR(f6i)) {
1039 err = PTR_ERR(f6i);
1040 f6i = NULL;
1041 goto out;
1042 }
1043
1044 if (net->ipv6.devconf_all->disable_policy ||
1045 idev->cnf.disable_policy)
1046 f6i->dst_nopolicy = true;
1047
1048 neigh_parms_data_state_setall(idev->nd_parms);
1049
1050 ifa->addr = *cfg->pfx;
1051 if (cfg->peer_pfx)
1052 ifa->peer_addr = *cfg->peer_pfx;
1053
1054 spin_lock_init(&ifa->lock);
1055 INIT_DELAYED_WORK(&ifa->dad_work, addrconf_dad_work);
1056 INIT_HLIST_NODE(&ifa->addr_lst);
1057 ifa->scope = cfg->scope;
1058 ifa->prefix_len = cfg->plen;
1059 ifa->rt_priority = cfg->rt_priority;
1060 ifa->flags = cfg->ifa_flags;
1061
1062 if (!(cfg->ifa_flags & IFA_F_NODAD))
1063 ifa->flags |= IFA_F_TENTATIVE;
1064 ifa->valid_lft = cfg->valid_lft;
1065 ifa->prefered_lft = cfg->preferred_lft;
1066 ifa->cstamp = ifa->tstamp = jiffies;
1067 ifa->tokenized = false;
1068
1069 ifa->rt = f6i;
1070
1071 ifa->idev = idev;
1072 in6_dev_hold(idev);
1073
1074
1075 refcount_set(&ifa->refcnt, 1);
1076
1077 rcu_read_lock_bh();
1078
1079 err = ipv6_add_addr_hash(idev->dev, ifa);
1080 if (err < 0) {
1081 rcu_read_unlock_bh();
1082 goto out;
1083 }
1084
1085 write_lock(&idev->lock);
1086
1087
1088 ipv6_link_dev_addr(idev, ifa);
1089
1090 if (ifa->flags&IFA_F_TEMPORARY) {
1091 list_add(&ifa->tmp_list, &idev->tempaddr_list);
1092 in6_ifa_hold(ifa);
1093 }
1094
1095 in6_ifa_hold(ifa);
1096 write_unlock(&idev->lock);
1097
1098 rcu_read_unlock_bh();
1099
1100 inet6addr_notifier_call_chain(NETDEV_UP, ifa);
1101out:
1102 if (unlikely(err < 0)) {
1103 fib6_info_release(f6i);
1104
1105 if (ifa) {
1106 if (ifa->idev)
1107 in6_dev_put(ifa->idev);
1108 kfree(ifa);
1109 }
1110 ifa = ERR_PTR(err);
1111 }
1112
1113 return ifa;
1114}
1115
1116enum cleanup_prefix_rt_t {
1117 CLEANUP_PREFIX_RT_NOP,
1118 CLEANUP_PREFIX_RT_DEL,
1119 CLEANUP_PREFIX_RT_EXPIRE,
1120};
1121
1122
1123
1124
1125
1126
1127
1128
1129
1130
1131
1132
1133
1134
1135
1136
1137
1138
1139
1140static enum cleanup_prefix_rt_t
1141check_cleanup_prefix_route(struct inet6_ifaddr *ifp, unsigned long *expires)
1142{
1143 struct inet6_ifaddr *ifa;
1144 struct inet6_dev *idev = ifp->idev;
1145 unsigned long lifetime;
1146 enum cleanup_prefix_rt_t action = CLEANUP_PREFIX_RT_DEL;
1147
1148 *expires = jiffies;
1149
1150 list_for_each_entry(ifa, &idev->addr_list, if_list) {
1151 if (ifa == ifp)
1152 continue;
1153 if (!ipv6_prefix_equal(&ifa->addr, &ifp->addr,
1154 ifp->prefix_len))
1155 continue;
1156 if (ifa->flags & (IFA_F_PERMANENT | IFA_F_NOPREFIXROUTE))
1157 return CLEANUP_PREFIX_RT_NOP;
1158
1159 action = CLEANUP_PREFIX_RT_EXPIRE;
1160
1161 spin_lock(&ifa->lock);
1162
1163 lifetime = addrconf_timeout_fixup(ifa->valid_lft, HZ);
1164
1165
1166
1167
1168
1169 if (time_before(*expires, ifa->tstamp + lifetime * HZ))
1170 *expires = ifa->tstamp + lifetime * HZ;
1171 spin_unlock(&ifa->lock);
1172 }
1173
1174 return action;
1175}
1176
1177static void
1178cleanup_prefix_route(struct inet6_ifaddr *ifp, unsigned long expires, bool del_rt)
1179{
1180 struct fib6_info *f6i;
1181
1182 f6i = addrconf_get_prefix_route(&ifp->addr,
1183 ifp->prefix_len,
1184 ifp->idev->dev,
1185 0, RTF_GATEWAY | RTF_DEFAULT);
1186 if (f6i) {
1187 if (del_rt)
1188 ip6_del_rt(dev_net(ifp->idev->dev), f6i);
1189 else {
1190 if (!(f6i->fib6_flags & RTF_EXPIRES))
1191 fib6_set_expires(f6i, expires);
1192 fib6_info_release(f6i);
1193 }
1194 }
1195}
1196
1197
1198
1199
1200static void ipv6_del_addr(struct inet6_ifaddr *ifp)
1201{
1202 int state;
1203 enum cleanup_prefix_rt_t action = CLEANUP_PREFIX_RT_NOP;
1204 unsigned long expires;
1205
1206 ASSERT_RTNL();
1207
1208 spin_lock_bh(&ifp->lock);
1209 state = ifp->state;
1210 ifp->state = INET6_IFADDR_STATE_DEAD;
1211 spin_unlock_bh(&ifp->lock);
1212
1213 if (state == INET6_IFADDR_STATE_DEAD)
1214 goto out;
1215
1216 spin_lock_bh(&addrconf_hash_lock);
1217 hlist_del_init_rcu(&ifp->addr_lst);
1218 spin_unlock_bh(&addrconf_hash_lock);
1219
1220 write_lock_bh(&ifp->idev->lock);
1221
1222 if (ifp->flags&IFA_F_TEMPORARY) {
1223 list_del(&ifp->tmp_list);
1224 if (ifp->ifpub) {
1225 in6_ifa_put(ifp->ifpub);
1226 ifp->ifpub = NULL;
1227 }
1228 __in6_ifa_put(ifp);
1229 }
1230
1231 if (ifp->flags & IFA_F_PERMANENT && !(ifp->flags & IFA_F_NOPREFIXROUTE))
1232 action = check_cleanup_prefix_route(ifp, &expires);
1233
1234 list_del_rcu(&ifp->if_list);
1235 __in6_ifa_put(ifp);
1236
1237 write_unlock_bh(&ifp->idev->lock);
1238
1239 addrconf_del_dad_work(ifp);
1240
1241 ipv6_ifa_notify(RTM_DELADDR, ifp);
1242
1243 inet6addr_notifier_call_chain(NETDEV_DOWN, ifp);
1244
1245 if (action != CLEANUP_PREFIX_RT_NOP) {
1246 cleanup_prefix_route(ifp, expires,
1247 action == CLEANUP_PREFIX_RT_DEL);
1248 }
1249
1250
1251 rt6_remove_prefsrc(ifp);
1252out:
1253 in6_ifa_put(ifp);
1254}
1255
1256static int ipv6_create_tempaddr(struct inet6_ifaddr *ifp,
1257 struct inet6_ifaddr *ift,
1258 bool block)
1259{
1260 struct inet6_dev *idev = ifp->idev;
1261 struct in6_addr addr, *tmpaddr;
1262 unsigned long tmp_tstamp, age;
1263 unsigned long regen_advance;
1264 struct ifa6_config cfg;
1265 int ret = 0;
1266 unsigned long now = jiffies;
1267 long max_desync_factor;
1268 s32 cnf_temp_preferred_lft;
1269
1270 write_lock_bh(&idev->lock);
1271 if (ift) {
1272 spin_lock_bh(&ift->lock);
1273 memcpy(&addr.s6_addr[8], &ift->addr.s6_addr[8], 8);
1274 spin_unlock_bh(&ift->lock);
1275 tmpaddr = &addr;
1276 } else {
1277 tmpaddr = NULL;
1278 }
1279retry:
1280 in6_dev_hold(idev);
1281 if (idev->cnf.use_tempaddr <= 0) {
1282 write_unlock_bh(&idev->lock);
1283 pr_info("%s: use_tempaddr is disabled\n", __func__);
1284 in6_dev_put(idev);
1285 ret = -1;
1286 goto out;
1287 }
1288 spin_lock_bh(&ifp->lock);
1289 if (ifp->regen_count++ >= idev->cnf.regen_max_retry) {
1290 idev->cnf.use_tempaddr = -1;
1291 spin_unlock_bh(&ifp->lock);
1292 write_unlock_bh(&idev->lock);
1293 pr_warn("%s: regeneration time exceeded - disabled temporary address support\n",
1294 __func__);
1295 in6_dev_put(idev);
1296 ret = -1;
1297 goto out;
1298 }
1299 in6_ifa_hold(ifp);
1300 memcpy(addr.s6_addr, ifp->addr.s6_addr, 8);
1301 ipv6_try_regen_rndid(idev, tmpaddr);
1302 memcpy(&addr.s6_addr[8], idev->rndid, 8);
1303 age = (now - ifp->tstamp) / HZ;
1304
1305 regen_advance = idev->cnf.regen_max_retry *
1306 idev->cnf.dad_transmits *
1307 NEIGH_VAR(idev->nd_parms, RETRANS_TIME) / HZ;
1308
1309
1310
1311
1312 cnf_temp_preferred_lft = READ_ONCE(idev->cnf.temp_prefered_lft);
1313 max_desync_factor = min_t(__u32,
1314 idev->cnf.max_desync_factor,
1315 cnf_temp_preferred_lft - regen_advance);
1316
1317 if (unlikely(idev->desync_factor > max_desync_factor)) {
1318 if (max_desync_factor > 0) {
1319 get_random_bytes(&idev->desync_factor,
1320 sizeof(idev->desync_factor));
1321 idev->desync_factor %= max_desync_factor;
1322 } else {
1323 idev->desync_factor = 0;
1324 }
1325 }
1326
1327 memset(&cfg, 0, sizeof(cfg));
1328 cfg.valid_lft = min_t(__u32, ifp->valid_lft,
1329 idev->cnf.temp_valid_lft + age);
1330 cfg.preferred_lft = cnf_temp_preferred_lft + age - idev->desync_factor;
1331 cfg.preferred_lft = min_t(__u32, ifp->prefered_lft, cfg.preferred_lft);
1332
1333 cfg.plen = ifp->prefix_len;
1334 tmp_tstamp = ifp->tstamp;
1335 spin_unlock_bh(&ifp->lock);
1336
1337 write_unlock_bh(&idev->lock);
1338
1339
1340
1341
1342
1343
1344
1345
1346 age = (now - tmp_tstamp + ADDRCONF_TIMER_FUZZ_MINUS) / HZ;
1347 if (cfg.preferred_lft <= regen_advance + age) {
1348 in6_ifa_put(ifp);
1349 in6_dev_put(idev);
1350 ret = -1;
1351 goto out;
1352 }
1353
1354 cfg.ifa_flags = IFA_F_TEMPORARY;
1355
1356 if (ifp->flags & IFA_F_OPTIMISTIC)
1357 cfg.ifa_flags |= IFA_F_OPTIMISTIC;
1358
1359 cfg.pfx = &addr;
1360 cfg.scope = ipv6_addr_scope(cfg.pfx);
1361
1362 ift = ipv6_add_addr(idev, &cfg, block, NULL);
1363 if (IS_ERR(ift)) {
1364 in6_ifa_put(ifp);
1365 in6_dev_put(idev);
1366 pr_info("%s: retry temporary address regeneration\n", __func__);
1367 tmpaddr = &addr;
1368 write_lock_bh(&idev->lock);
1369 goto retry;
1370 }
1371
1372 spin_lock_bh(&ift->lock);
1373 ift->ifpub = ifp;
1374 ift->cstamp = now;
1375 ift->tstamp = tmp_tstamp;
1376 spin_unlock_bh(&ift->lock);
1377
1378 addrconf_dad_start(ift);
1379 in6_ifa_put(ift);
1380 in6_dev_put(idev);
1381out:
1382 return ret;
1383}
1384
1385
1386
1387
1388enum {
1389 IPV6_SADDR_RULE_INIT = 0,
1390 IPV6_SADDR_RULE_LOCAL,
1391 IPV6_SADDR_RULE_SCOPE,
1392 IPV6_SADDR_RULE_PREFERRED,
1393#ifdef CONFIG_IPV6_MIP6
1394 IPV6_SADDR_RULE_HOA,
1395#endif
1396 IPV6_SADDR_RULE_OIF,
1397 IPV6_SADDR_RULE_LABEL,
1398 IPV6_SADDR_RULE_PRIVACY,
1399 IPV6_SADDR_RULE_ORCHID,
1400 IPV6_SADDR_RULE_PREFIX,
1401#ifdef CONFIG_IPV6_OPTIMISTIC_DAD
1402 IPV6_SADDR_RULE_NOT_OPTIMISTIC,
1403#endif
1404 IPV6_SADDR_RULE_MAX
1405};
1406
1407struct ipv6_saddr_score {
1408 int rule;
1409 int addr_type;
1410 struct inet6_ifaddr *ifa;
1411 DECLARE_BITMAP(scorebits, IPV6_SADDR_RULE_MAX);
1412 int scopedist;
1413 int matchlen;
1414};
1415
1416struct ipv6_saddr_dst {
1417 const struct in6_addr *addr;
1418 int ifindex;
1419 int scope;
1420 int label;
1421 unsigned int prefs;
1422};
1423
1424static inline int ipv6_saddr_preferred(int type)
1425{
1426 if (type & (IPV6_ADDR_MAPPED|IPV6_ADDR_COMPATv4|IPV6_ADDR_LOOPBACK))
1427 return 1;
1428 return 0;
1429}
1430
1431static bool ipv6_use_optimistic_addr(struct net *net,
1432 struct inet6_dev *idev)
1433{
1434#ifdef CONFIG_IPV6_OPTIMISTIC_DAD
1435 if (!idev)
1436 return false;
1437 if (!net->ipv6.devconf_all->optimistic_dad && !idev->cnf.optimistic_dad)
1438 return false;
1439 if (!net->ipv6.devconf_all->use_optimistic && !idev->cnf.use_optimistic)
1440 return false;
1441
1442 return true;
1443#else
1444 return false;
1445#endif
1446}
1447
1448static bool ipv6_allow_optimistic_dad(struct net *net,
1449 struct inet6_dev *idev)
1450{
1451#ifdef CONFIG_IPV6_OPTIMISTIC_DAD
1452 if (!idev)
1453 return false;
1454 if (!net->ipv6.devconf_all->optimistic_dad && !idev->cnf.optimistic_dad)
1455 return false;
1456
1457 return true;
1458#else
1459 return false;
1460#endif
1461}
1462
1463static int ipv6_get_saddr_eval(struct net *net,
1464 struct ipv6_saddr_score *score,
1465 struct ipv6_saddr_dst *dst,
1466 int i)
1467{
1468 int ret;
1469
1470 if (i <= score->rule) {
1471 switch (i) {
1472 case IPV6_SADDR_RULE_SCOPE:
1473 ret = score->scopedist;
1474 break;
1475 case IPV6_SADDR_RULE_PREFIX:
1476 ret = score->matchlen;
1477 break;
1478 default:
1479 ret = !!test_bit(i, score->scorebits);
1480 }
1481 goto out;
1482 }
1483
1484 switch (i) {
1485 case IPV6_SADDR_RULE_INIT:
1486
1487 ret = !!score->ifa;
1488 break;
1489 case IPV6_SADDR_RULE_LOCAL:
1490
1491 ret = ipv6_addr_equal(&score->ifa->addr, dst->addr);
1492 break;
1493 case IPV6_SADDR_RULE_SCOPE:
1494
1495
1496
1497
1498
1499
1500
1501
1502
1503
1504
1505
1506
1507
1508
1509
1510
1511
1512
1513
1514
1515 ret = __ipv6_addr_src_scope(score->addr_type);
1516 if (ret >= dst->scope)
1517 ret = -ret;
1518 else
1519 ret -= 128;
1520 score->scopedist = ret;
1521 break;
1522 case IPV6_SADDR_RULE_PREFERRED:
1523 {
1524
1525 u8 avoid = IFA_F_DEPRECATED;
1526
1527 if (!ipv6_use_optimistic_addr(net, score->ifa->idev))
1528 avoid |= IFA_F_OPTIMISTIC;
1529 ret = ipv6_saddr_preferred(score->addr_type) ||
1530 !(score->ifa->flags & avoid);
1531 break;
1532 }
1533#ifdef CONFIG_IPV6_MIP6
1534 case IPV6_SADDR_RULE_HOA:
1535 {
1536
1537 int prefhome = !(dst->prefs & IPV6_PREFER_SRC_COA);
1538 ret = !(score->ifa->flags & IFA_F_HOMEADDRESS) ^ prefhome;
1539 break;
1540 }
1541#endif
1542 case IPV6_SADDR_RULE_OIF:
1543
1544 ret = (!dst->ifindex ||
1545 dst->ifindex == score->ifa->idev->dev->ifindex);
1546 break;
1547 case IPV6_SADDR_RULE_LABEL:
1548
1549 ret = ipv6_addr_label(net,
1550 &score->ifa->addr, score->addr_type,
1551 score->ifa->idev->dev->ifindex) == dst->label;
1552 break;
1553 case IPV6_SADDR_RULE_PRIVACY:
1554 {
1555
1556
1557
1558 int preftmp = dst->prefs & (IPV6_PREFER_SRC_PUBLIC|IPV6_PREFER_SRC_TMP) ?
1559 !!(dst->prefs & IPV6_PREFER_SRC_TMP) :
1560 score->ifa->idev->cnf.use_tempaddr >= 2;
1561 ret = (!(score->ifa->flags & IFA_F_TEMPORARY)) ^ preftmp;
1562 break;
1563 }
1564 case IPV6_SADDR_RULE_ORCHID:
1565
1566
1567
1568 ret = !(ipv6_addr_orchid(&score->ifa->addr) ^
1569 ipv6_addr_orchid(dst->addr));
1570 break;
1571 case IPV6_SADDR_RULE_PREFIX:
1572
1573 ret = ipv6_addr_diff(&score->ifa->addr, dst->addr);
1574 if (ret > score->ifa->prefix_len)
1575 ret = score->ifa->prefix_len;
1576 score->matchlen = ret;
1577 break;
1578#ifdef CONFIG_IPV6_OPTIMISTIC_DAD
1579 case IPV6_SADDR_RULE_NOT_OPTIMISTIC:
1580
1581
1582
1583 ret = !(score->ifa->flags & IFA_F_OPTIMISTIC);
1584 break;
1585#endif
1586 default:
1587 ret = 0;
1588 }
1589
1590 if (ret)
1591 __set_bit(i, score->scorebits);
1592 score->rule = i;
1593out:
1594 return ret;
1595}
1596
1597static int __ipv6_dev_get_saddr(struct net *net,
1598 struct ipv6_saddr_dst *dst,
1599 struct inet6_dev *idev,
1600 struct ipv6_saddr_score *scores,
1601 int hiscore_idx)
1602{
1603 struct ipv6_saddr_score *score = &scores[1 - hiscore_idx], *hiscore = &scores[hiscore_idx];
1604
1605 list_for_each_entry_rcu(score->ifa, &idev->addr_list, if_list) {
1606 int i;
1607
1608
1609
1610
1611
1612
1613
1614
1615
1616
1617
1618 if ((score->ifa->flags & IFA_F_TENTATIVE) &&
1619 (!(score->ifa->flags & IFA_F_OPTIMISTIC)))
1620 continue;
1621
1622 score->addr_type = __ipv6_addr_type(&score->ifa->addr);
1623
1624 if (unlikely(score->addr_type == IPV6_ADDR_ANY ||
1625 score->addr_type & IPV6_ADDR_MULTICAST)) {
1626 net_dbg_ratelimited("ADDRCONF: unspecified / multicast address assigned as unicast address on %s",
1627 idev->dev->name);
1628 continue;
1629 }
1630
1631 score->rule = -1;
1632 bitmap_zero(score->scorebits, IPV6_SADDR_RULE_MAX);
1633
1634 for (i = 0; i < IPV6_SADDR_RULE_MAX; i++) {
1635 int minihiscore, miniscore;
1636
1637 minihiscore = ipv6_get_saddr_eval(net, hiscore, dst, i);
1638 miniscore = ipv6_get_saddr_eval(net, score, dst, i);
1639
1640 if (minihiscore > miniscore) {
1641 if (i == IPV6_SADDR_RULE_SCOPE &&
1642 score->scopedist > 0) {
1643
1644
1645
1646
1647
1648
1649
1650
1651 goto out;
1652 }
1653 break;
1654 } else if (minihiscore < miniscore) {
1655 swap(hiscore, score);
1656 hiscore_idx = 1 - hiscore_idx;
1657
1658
1659 score->ifa = hiscore->ifa;
1660
1661 break;
1662 }
1663 }
1664 }
1665out:
1666 return hiscore_idx;
1667}
1668
1669static int ipv6_get_saddr_master(struct net *net,
1670 const struct net_device *dst_dev,
1671 const struct net_device *master,
1672 struct ipv6_saddr_dst *dst,
1673 struct ipv6_saddr_score *scores,
1674 int hiscore_idx)
1675{
1676 struct inet6_dev *idev;
1677
1678 idev = __in6_dev_get(dst_dev);
1679 if (idev)
1680 hiscore_idx = __ipv6_dev_get_saddr(net, dst, idev,
1681 scores, hiscore_idx);
1682
1683 idev = __in6_dev_get(master);
1684 if (idev)
1685 hiscore_idx = __ipv6_dev_get_saddr(net, dst, idev,
1686 scores, hiscore_idx);
1687
1688 return hiscore_idx;
1689}
1690
1691int ipv6_dev_get_saddr(struct net *net, const struct net_device *dst_dev,
1692 const struct in6_addr *daddr, unsigned int prefs,
1693 struct in6_addr *saddr)
1694{
1695 struct ipv6_saddr_score scores[2], *hiscore;
1696 struct ipv6_saddr_dst dst;
1697 struct inet6_dev *idev;
1698 struct net_device *dev;
1699 int dst_type;
1700 bool use_oif_addr = false;
1701 int hiscore_idx = 0;
1702 int ret = 0;
1703
1704 dst_type = __ipv6_addr_type(daddr);
1705 dst.addr = daddr;
1706 dst.ifindex = dst_dev ? dst_dev->ifindex : 0;
1707 dst.scope = __ipv6_addr_src_scope(dst_type);
1708 dst.label = ipv6_addr_label(net, daddr, dst_type, dst.ifindex);
1709 dst.prefs = prefs;
1710
1711 scores[hiscore_idx].rule = -1;
1712 scores[hiscore_idx].ifa = NULL;
1713
1714 rcu_read_lock();
1715
1716
1717
1718
1719
1720
1721
1722
1723
1724
1725
1726
1727
1728
1729
1730
1731
1732 if (dst_dev) {
1733 idev = __in6_dev_get(dst_dev);
1734 if ((dst_type & IPV6_ADDR_MULTICAST) ||
1735 dst.scope <= IPV6_ADDR_SCOPE_LINKLOCAL ||
1736 (idev && idev->cnf.use_oif_addrs_only)) {
1737 use_oif_addr = true;
1738 }
1739 }
1740
1741 if (use_oif_addr) {
1742 if (idev)
1743 hiscore_idx = __ipv6_dev_get_saddr(net, &dst, idev, scores, hiscore_idx);
1744 } else {
1745 const struct net_device *master;
1746 int master_idx = 0;
1747
1748
1749
1750
1751
1752 master = l3mdev_master_dev_rcu(dst_dev);
1753 if (master) {
1754 master_idx = master->ifindex;
1755
1756 hiscore_idx = ipv6_get_saddr_master(net, dst_dev,
1757 master, &dst,
1758 scores, hiscore_idx);
1759
1760 if (scores[hiscore_idx].ifa)
1761 goto out;
1762 }
1763
1764 for_each_netdev_rcu(net, dev) {
1765
1766
1767
1768 if (l3mdev_master_ifindex_rcu(dev) != master_idx)
1769 continue;
1770 idev = __in6_dev_get(dev);
1771 if (!idev)
1772 continue;
1773 hiscore_idx = __ipv6_dev_get_saddr(net, &dst, idev, scores, hiscore_idx);
1774 }
1775 }
1776
1777out:
1778 hiscore = &scores[hiscore_idx];
1779 if (!hiscore->ifa)
1780 ret = -EADDRNOTAVAIL;
1781 else
1782 *saddr = hiscore->ifa->addr;
1783
1784 rcu_read_unlock();
1785 return ret;
1786}
1787EXPORT_SYMBOL(ipv6_dev_get_saddr);
1788
1789int __ipv6_get_lladdr(struct inet6_dev *idev, struct in6_addr *addr,
1790 u32 banned_flags)
1791{
1792 struct inet6_ifaddr *ifp;
1793 int err = -EADDRNOTAVAIL;
1794
1795 list_for_each_entry_reverse(ifp, &idev->addr_list, if_list) {
1796 if (ifp->scope > IFA_LINK)
1797 break;
1798 if (ifp->scope == IFA_LINK &&
1799 !(ifp->flags & banned_flags)) {
1800 *addr = ifp->addr;
1801 err = 0;
1802 break;
1803 }
1804 }
1805 return err;
1806}
1807
1808int ipv6_get_lladdr(struct net_device *dev, struct in6_addr *addr,
1809 u32 banned_flags)
1810{
1811 struct inet6_dev *idev;
1812 int err = -EADDRNOTAVAIL;
1813
1814 rcu_read_lock();
1815 idev = __in6_dev_get(dev);
1816 if (idev) {
1817 read_lock_bh(&idev->lock);
1818 err = __ipv6_get_lladdr(idev, addr, banned_flags);
1819 read_unlock_bh(&idev->lock);
1820 }
1821 rcu_read_unlock();
1822 return err;
1823}
1824
1825static int ipv6_count_addresses(const struct inet6_dev *idev)
1826{
1827 const struct inet6_ifaddr *ifp;
1828 int cnt = 0;
1829
1830 rcu_read_lock();
1831 list_for_each_entry_rcu(ifp, &idev->addr_list, if_list)
1832 cnt++;
1833 rcu_read_unlock();
1834 return cnt;
1835}
1836
1837int ipv6_chk_addr(struct net *net, const struct in6_addr *addr,
1838 const struct net_device *dev, int strict)
1839{
1840 return ipv6_chk_addr_and_flags(net, addr, dev, !dev,
1841 strict, IFA_F_TENTATIVE);
1842}
1843EXPORT_SYMBOL(ipv6_chk_addr);
1844
1845
1846
1847
1848
1849
1850
1851
1852
1853
1854int ipv6_chk_addr_and_flags(struct net *net, const struct in6_addr *addr,
1855 const struct net_device *dev, bool skip_dev_check,
1856 int strict, u32 banned_flags)
1857{
1858 unsigned int hash = inet6_addr_hash(net, addr);
1859 const struct net_device *l3mdev;
1860 struct inet6_ifaddr *ifp;
1861 u32 ifp_flags;
1862
1863 rcu_read_lock();
1864
1865 l3mdev = l3mdev_master_dev_rcu(dev);
1866 if (skip_dev_check)
1867 dev = NULL;
1868
1869 hlist_for_each_entry_rcu(ifp, &inet6_addr_lst[hash], addr_lst) {
1870 if (!net_eq(dev_net(ifp->idev->dev), net))
1871 continue;
1872
1873 if (l3mdev_master_dev_rcu(ifp->idev->dev) != l3mdev)
1874 continue;
1875
1876
1877
1878
1879 ifp_flags = (ifp->flags&IFA_F_OPTIMISTIC)
1880 ? (ifp->flags&~IFA_F_TENTATIVE)
1881 : ifp->flags;
1882 if (ipv6_addr_equal(&ifp->addr, addr) &&
1883 !(ifp_flags&banned_flags) &&
1884 (!dev || ifp->idev->dev == dev ||
1885 !(ifp->scope&(IFA_LINK|IFA_HOST) || strict))) {
1886 rcu_read_unlock();
1887 return 1;
1888 }
1889 }
1890
1891 rcu_read_unlock();
1892 return 0;
1893}
1894EXPORT_SYMBOL(ipv6_chk_addr_and_flags);
1895
1896
1897
1898
1899
1900bool ipv6_chk_custom_prefix(const struct in6_addr *addr,
1901 const unsigned int prefix_len, struct net_device *dev)
1902{
1903 const struct inet6_ifaddr *ifa;
1904 const struct inet6_dev *idev;
1905 bool ret = false;
1906
1907 rcu_read_lock();
1908 idev = __in6_dev_get(dev);
1909 if (idev) {
1910 list_for_each_entry_rcu(ifa, &idev->addr_list, if_list) {
1911 ret = ipv6_prefix_equal(addr, &ifa->addr, prefix_len);
1912 if (ret)
1913 break;
1914 }
1915 }
1916 rcu_read_unlock();
1917
1918 return ret;
1919}
1920EXPORT_SYMBOL(ipv6_chk_custom_prefix);
1921
1922int ipv6_chk_prefix(const struct in6_addr *addr, struct net_device *dev)
1923{
1924 const struct inet6_ifaddr *ifa;
1925 const struct inet6_dev *idev;
1926 int onlink;
1927
1928 onlink = 0;
1929 rcu_read_lock();
1930 idev = __in6_dev_get(dev);
1931 if (idev) {
1932 list_for_each_entry_rcu(ifa, &idev->addr_list, if_list) {
1933 onlink = ipv6_prefix_equal(addr, &ifa->addr,
1934 ifa->prefix_len);
1935 if (onlink)
1936 break;
1937 }
1938 }
1939 rcu_read_unlock();
1940 return onlink;
1941}
1942EXPORT_SYMBOL(ipv6_chk_prefix);
1943
1944struct inet6_ifaddr *ipv6_get_ifaddr(struct net *net, const struct in6_addr *addr,
1945 struct net_device *dev, int strict)
1946{
1947 unsigned int hash = inet6_addr_hash(net, addr);
1948 struct inet6_ifaddr *ifp, *result = NULL;
1949
1950 rcu_read_lock();
1951 hlist_for_each_entry_rcu(ifp, &inet6_addr_lst[hash], addr_lst) {
1952 if (!net_eq(dev_net(ifp->idev->dev), net))
1953 continue;
1954 if (ipv6_addr_equal(&ifp->addr, addr)) {
1955 if (!dev || ifp->idev->dev == dev ||
1956 !(ifp->scope&(IFA_LINK|IFA_HOST) || strict)) {
1957 result = ifp;
1958 in6_ifa_hold(ifp);
1959 break;
1960 }
1961 }
1962 }
1963 rcu_read_unlock();
1964
1965 return result;
1966}
1967
1968
1969
1970static void addrconf_dad_stop(struct inet6_ifaddr *ifp, int dad_failed)
1971{
1972 if (dad_failed)
1973 ifp->flags |= IFA_F_DADFAILED;
1974
1975 if (ifp->flags&IFA_F_TEMPORARY) {
1976 struct inet6_ifaddr *ifpub;
1977 spin_lock_bh(&ifp->lock);
1978 ifpub = ifp->ifpub;
1979 if (ifpub) {
1980 in6_ifa_hold(ifpub);
1981 spin_unlock_bh(&ifp->lock);
1982 ipv6_create_tempaddr(ifpub, ifp, true);
1983 in6_ifa_put(ifpub);
1984 } else {
1985 spin_unlock_bh(&ifp->lock);
1986 }
1987 ipv6_del_addr(ifp);
1988 } else if (ifp->flags&IFA_F_PERMANENT || !dad_failed) {
1989 spin_lock_bh(&ifp->lock);
1990 addrconf_del_dad_work(ifp);
1991 ifp->flags |= IFA_F_TENTATIVE;
1992 if (dad_failed)
1993 ifp->flags &= ~IFA_F_OPTIMISTIC;
1994 spin_unlock_bh(&ifp->lock);
1995 if (dad_failed)
1996 ipv6_ifa_notify(0, ifp);
1997 in6_ifa_put(ifp);
1998 } else {
1999 ipv6_del_addr(ifp);
2000 }
2001}
2002
2003static int addrconf_dad_end(struct inet6_ifaddr *ifp)
2004{
2005 int err = -ENOENT;
2006
2007 spin_lock_bh(&ifp->lock);
2008 if (ifp->state == INET6_IFADDR_STATE_DAD) {
2009 ifp->state = INET6_IFADDR_STATE_POSTDAD;
2010 err = 0;
2011 }
2012 spin_unlock_bh(&ifp->lock);
2013
2014 return err;
2015}
2016
2017void addrconf_dad_failure(struct sk_buff *skb, struct inet6_ifaddr *ifp)
2018{
2019 struct inet6_dev *idev = ifp->idev;
2020 struct net *net = dev_net(ifp->idev->dev);
2021
2022 if (addrconf_dad_end(ifp)) {
2023 in6_ifa_put(ifp);
2024 return;
2025 }
2026
2027 net_info_ratelimited("%s: IPv6 duplicate address %pI6c used by %pM detected!\n",
2028 ifp->idev->dev->name, &ifp->addr, eth_hdr(skb)->h_source);
2029
2030 spin_lock_bh(&ifp->lock);
2031
2032 if (ifp->flags & IFA_F_STABLE_PRIVACY) {
2033 struct in6_addr new_addr;
2034 struct inet6_ifaddr *ifp2;
2035 int retries = ifp->stable_privacy_retry + 1;
2036 struct ifa6_config cfg = {
2037 .pfx = &new_addr,
2038 .plen = ifp->prefix_len,
2039 .ifa_flags = ifp->flags,
2040 .valid_lft = ifp->valid_lft,
2041 .preferred_lft = ifp->prefered_lft,
2042 .scope = ifp->scope,
2043 };
2044
2045 if (retries > net->ipv6.sysctl.idgen_retries) {
2046 net_info_ratelimited("%s: privacy stable address generation failed because of DAD conflicts!\n",
2047 ifp->idev->dev->name);
2048 goto errdad;
2049 }
2050
2051 new_addr = ifp->addr;
2052 if (ipv6_generate_stable_address(&new_addr, retries,
2053 idev))
2054 goto errdad;
2055
2056 spin_unlock_bh(&ifp->lock);
2057
2058 if (idev->cnf.max_addresses &&
2059 ipv6_count_addresses(idev) >=
2060 idev->cnf.max_addresses)
2061 goto lock_errdad;
2062
2063 net_info_ratelimited("%s: generating new stable privacy address because of DAD conflict\n",
2064 ifp->idev->dev->name);
2065
2066 ifp2 = ipv6_add_addr(idev, &cfg, false, NULL);
2067 if (IS_ERR(ifp2))
2068 goto lock_errdad;
2069
2070 spin_lock_bh(&ifp2->lock);
2071 ifp2->stable_privacy_retry = retries;
2072 ifp2->state = INET6_IFADDR_STATE_PREDAD;
2073 spin_unlock_bh(&ifp2->lock);
2074
2075 addrconf_mod_dad_work(ifp2, net->ipv6.sysctl.idgen_delay);
2076 in6_ifa_put(ifp2);
2077lock_errdad:
2078 spin_lock_bh(&ifp->lock);
2079 }
2080
2081errdad:
2082
2083 ifp->state = INET6_IFADDR_STATE_ERRDAD;
2084 spin_unlock_bh(&ifp->lock);
2085
2086 addrconf_mod_dad_work(ifp, 0);
2087 in6_ifa_put(ifp);
2088}
2089
2090
2091
2092void addrconf_join_solict(struct net_device *dev, const struct in6_addr *addr)
2093{
2094 struct in6_addr maddr;
2095
2096 if (dev->flags&(IFF_LOOPBACK|IFF_NOARP))
2097 return;
2098
2099 addrconf_addr_solict_mult(addr, &maddr);
2100 ipv6_dev_mc_inc(dev, &maddr);
2101}
2102
2103
2104void addrconf_leave_solict(struct inet6_dev *idev, const struct in6_addr *addr)
2105{
2106 struct in6_addr maddr;
2107
2108 if (idev->dev->flags&(IFF_LOOPBACK|IFF_NOARP))
2109 return;
2110
2111 addrconf_addr_solict_mult(addr, &maddr);
2112 __ipv6_dev_mc_dec(idev, &maddr);
2113}
2114
2115
2116static void addrconf_join_anycast(struct inet6_ifaddr *ifp)
2117{
2118 struct in6_addr addr;
2119
2120 if (ifp->prefix_len >= 127)
2121 return;
2122 ipv6_addr_prefix(&addr, &ifp->addr, ifp->prefix_len);
2123 if (ipv6_addr_any(&addr))
2124 return;
2125 __ipv6_dev_ac_inc(ifp->idev, &addr);
2126}
2127
2128
2129static void addrconf_leave_anycast(struct inet6_ifaddr *ifp)
2130{
2131 struct in6_addr addr;
2132
2133 if (ifp->prefix_len >= 127)
2134 return;
2135 ipv6_addr_prefix(&addr, &ifp->addr, ifp->prefix_len);
2136 if (ipv6_addr_any(&addr))
2137 return;
2138 __ipv6_dev_ac_dec(ifp->idev, &addr);
2139}
2140
2141static int addrconf_ifid_6lowpan(u8 *eui, struct net_device *dev)
2142{
2143 switch (dev->addr_len) {
2144 case ETH_ALEN:
2145 memcpy(eui, dev->dev_addr, 3);
2146 eui[3] = 0xFF;
2147 eui[4] = 0xFE;
2148 memcpy(eui + 5, dev->dev_addr + 3, 3);
2149 break;
2150 case EUI64_ADDR_LEN:
2151 memcpy(eui, dev->dev_addr, EUI64_ADDR_LEN);
2152 eui[0] ^= 2;
2153 break;
2154 default:
2155 return -1;
2156 }
2157
2158 return 0;
2159}
2160
2161static int addrconf_ifid_ieee1394(u8 *eui, struct net_device *dev)
2162{
2163 union fwnet_hwaddr *ha;
2164
2165 if (dev->addr_len != FWNET_ALEN)
2166 return -1;
2167
2168 ha = (union fwnet_hwaddr *)dev->dev_addr;
2169
2170 memcpy(eui, &ha->uc.uniq_id, sizeof(ha->uc.uniq_id));
2171 eui[0] ^= 2;
2172 return 0;
2173}
2174
2175static int addrconf_ifid_arcnet(u8 *eui, struct net_device *dev)
2176{
2177
2178 if (dev->addr_len != ARCNET_ALEN)
2179 return -1;
2180 memset(eui, 0, 7);
2181 eui[7] = *(u8 *)dev->dev_addr;
2182 return 0;
2183}
2184
2185static int addrconf_ifid_infiniband(u8 *eui, struct net_device *dev)
2186{
2187 if (dev->addr_len != INFINIBAND_ALEN)
2188 return -1;
2189 memcpy(eui, dev->dev_addr + 12, 8);
2190 eui[0] |= 2;
2191 return 0;
2192}
2193
2194static int __ipv6_isatap_ifid(u8 *eui, __be32 addr)
2195{
2196 if (addr == 0)
2197 return -1;
2198 eui[0] = (ipv4_is_zeronet(addr) || ipv4_is_private_10(addr) ||
2199 ipv4_is_loopback(addr) || ipv4_is_linklocal_169(addr) ||
2200 ipv4_is_private_172(addr) || ipv4_is_test_192(addr) ||
2201 ipv4_is_anycast_6to4(addr) || ipv4_is_private_192(addr) ||
2202 ipv4_is_test_198(addr) || ipv4_is_multicast(addr) ||
2203 ipv4_is_lbcast(addr)) ? 0x00 : 0x02;
2204 eui[1] = 0;
2205 eui[2] = 0x5E;
2206 eui[3] = 0xFE;
2207 memcpy(eui + 4, &addr, 4);
2208 return 0;
2209}
2210
2211static int addrconf_ifid_sit(u8 *eui, struct net_device *dev)
2212{
2213 if (dev->priv_flags & IFF_ISATAP)
2214 return __ipv6_isatap_ifid(eui, *(__be32 *)dev->dev_addr);
2215 return -1;
2216}
2217
2218static int addrconf_ifid_gre(u8 *eui, struct net_device *dev)
2219{
2220 return __ipv6_isatap_ifid(eui, *(__be32 *)dev->dev_addr);
2221}
2222
2223static int addrconf_ifid_ip6tnl(u8 *eui, struct net_device *dev)
2224{
2225 memcpy(eui, dev->perm_addr, 3);
2226 memcpy(eui + 5, dev->perm_addr + 3, 3);
2227 eui[3] = 0xFF;
2228 eui[4] = 0xFE;
2229 eui[0] ^= 2;
2230 return 0;
2231}
2232
2233static int ipv6_generate_eui64(u8 *eui, struct net_device *dev)
2234{
2235 switch (dev->type) {
2236 case ARPHRD_ETHER:
2237 case ARPHRD_FDDI:
2238 return addrconf_ifid_eui48(eui, dev);
2239 case ARPHRD_ARCNET:
2240 return addrconf_ifid_arcnet(eui, dev);
2241 case ARPHRD_INFINIBAND:
2242 return addrconf_ifid_infiniband(eui, dev);
2243 case ARPHRD_SIT:
2244 return addrconf_ifid_sit(eui, dev);
2245 case ARPHRD_IPGRE:
2246 case ARPHRD_TUNNEL:
2247 return addrconf_ifid_gre(eui, dev);
2248 case ARPHRD_6LOWPAN:
2249 return addrconf_ifid_6lowpan(eui, dev);
2250 case ARPHRD_IEEE1394:
2251 return addrconf_ifid_ieee1394(eui, dev);
2252 case ARPHRD_TUNNEL6:
2253 case ARPHRD_IP6GRE:
2254 case ARPHRD_RAWIP:
2255 return addrconf_ifid_ip6tnl(eui, dev);
2256 }
2257 return -1;
2258}
2259
2260static int ipv6_inherit_eui64(u8 *eui, struct inet6_dev *idev)
2261{
2262 int err = -1;
2263 struct inet6_ifaddr *ifp;
2264
2265 read_lock_bh(&idev->lock);
2266 list_for_each_entry_reverse(ifp, &idev->addr_list, if_list) {
2267 if (ifp->scope > IFA_LINK)
2268 break;
2269 if (ifp->scope == IFA_LINK && !(ifp->flags&IFA_F_TENTATIVE)) {
2270 memcpy(eui, ifp->addr.s6_addr+8, 8);
2271 err = 0;
2272 break;
2273 }
2274 }
2275 read_unlock_bh(&idev->lock);
2276 return err;
2277}
2278
2279
2280static void ipv6_regen_rndid(struct inet6_dev *idev)
2281{
2282regen:
2283 get_random_bytes(idev->rndid, sizeof(idev->rndid));
2284 idev->rndid[0] &= ~0x02;
2285
2286
2287
2288
2289
2290
2291
2292
2293
2294
2295
2296
2297 if (idev->rndid[0] == 0xfd &&
2298 (idev->rndid[1]&idev->rndid[2]&idev->rndid[3]&idev->rndid[4]&idev->rndid[5]&idev->rndid[6]) == 0xff &&
2299 (idev->rndid[7]&0x80))
2300 goto regen;
2301 if ((idev->rndid[0]|idev->rndid[1]) == 0) {
2302 if (idev->rndid[2] == 0x5e && idev->rndid[3] == 0xfe)
2303 goto regen;
2304 if ((idev->rndid[2]|idev->rndid[3]|idev->rndid[4]|idev->rndid[5]|idev->rndid[6]|idev->rndid[7]) == 0x00)
2305 goto regen;
2306 }
2307}
2308
2309static void ipv6_try_regen_rndid(struct inet6_dev *idev, struct in6_addr *tmpaddr)
2310{
2311 if (tmpaddr && memcmp(idev->rndid, &tmpaddr->s6_addr[8], 8) == 0)
2312 ipv6_regen_rndid(idev);
2313}
2314
2315
2316
2317
2318
2319static void
2320addrconf_prefix_route(struct in6_addr *pfx, int plen, u32 metric,
2321 struct net_device *dev, unsigned long expires,
2322 u32 flags, gfp_t gfp_flags)
2323{
2324 struct fib6_config cfg = {
2325 .fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_PREFIX,
2326 .fc_metric = metric ? : IP6_RT_PRIO_ADDRCONF,
2327 .fc_ifindex = dev->ifindex,
2328 .fc_expires = expires,
2329 .fc_dst_len = plen,
2330 .fc_flags = RTF_UP | flags,
2331 .fc_nlinfo.nl_net = dev_net(dev),
2332 .fc_protocol = RTPROT_KERNEL,
2333 .fc_type = RTN_UNICAST,
2334 };
2335
2336 cfg.fc_dst = *pfx;
2337
2338
2339
2340
2341
2342#if IS_ENABLED(CONFIG_IPV6_SIT)
2343 if (dev->type == ARPHRD_SIT && (dev->flags & IFF_POINTOPOINT))
2344 cfg.fc_flags |= RTF_NONEXTHOP;
2345#endif
2346
2347 ip6_route_add(&cfg, gfp_flags, NULL);
2348}
2349
2350
2351static struct fib6_info *addrconf_get_prefix_route(const struct in6_addr *pfx,
2352 int plen,
2353 const struct net_device *dev,
2354 u32 flags, u32 noflags)
2355{
2356 struct fib6_node *fn;
2357 struct fib6_info *rt = NULL;
2358 struct fib6_table *table;
2359 u32 tb_id = l3mdev_fib_table(dev) ? : RT6_TABLE_PREFIX;
2360
2361 table = fib6_get_table(dev_net(dev), tb_id);
2362 if (!table)
2363 return NULL;
2364
2365 rcu_read_lock();
2366 fn = fib6_locate(&table->tb6_root, pfx, plen, NULL, 0, true);
2367 if (!fn)
2368 goto out;
2369
2370 for_each_fib6_node_rt_rcu(fn) {
2371 if (rt->fib6_nh.nh_dev->ifindex != dev->ifindex)
2372 continue;
2373 if ((rt->fib6_flags & flags) != flags)
2374 continue;
2375 if ((rt->fib6_flags & noflags) != 0)
2376 continue;
2377 if (!fib6_info_hold_safe(rt))
2378 continue;
2379 break;
2380 }
2381out:
2382 rcu_read_unlock();
2383 return rt;
2384}
2385
2386
2387
2388
2389static void addrconf_add_mroute(struct net_device *dev)
2390{
2391 struct fib6_config cfg = {
2392 .fc_table = l3mdev_fib_table(dev) ? : RT6_TABLE_LOCAL,
2393 .fc_metric = IP6_RT_PRIO_ADDRCONF,
2394 .fc_ifindex = dev->ifindex,
2395 .fc_dst_len = 8,
2396 .fc_flags = RTF_UP,
2397 .fc_type = RTN_UNICAST,
2398 .fc_nlinfo.nl_net = dev_net(dev),
2399 };
2400
2401 ipv6_addr_set(&cfg.fc_dst, htonl(0xFF000000), 0, 0, 0);
2402
2403 ip6_route_add(&cfg, GFP_ATOMIC, NULL);
2404}
2405
2406static struct inet6_dev *addrconf_add_dev(struct net_device *dev)
2407{
2408 struct inet6_dev *idev;
2409
2410 ASSERT_RTNL();
2411
2412 idev = ipv6_find_idev(dev);
2413 if (!idev)
2414 return ERR_PTR(-ENOBUFS);
2415
2416 if (idev->cnf.disable_ipv6)
2417 return ERR_PTR(-EACCES);
2418
2419
2420 if (!(dev->flags & IFF_LOOPBACK) && !netif_is_l3_master(dev))
2421 addrconf_add_mroute(dev);
2422
2423 return idev;
2424}
2425
2426static void manage_tempaddrs(struct inet6_dev *idev,
2427 struct inet6_ifaddr *ifp,
2428 __u32 valid_lft, __u32 prefered_lft,
2429 bool create, unsigned long now)
2430{
2431 u32 flags;
2432 struct inet6_ifaddr *ift;
2433
2434 read_lock_bh(&idev->lock);
2435
2436 list_for_each_entry(ift, &idev->tempaddr_list, tmp_list) {
2437 int age, max_valid, max_prefered;
2438
2439 if (ifp != ift->ifpub)
2440 continue;
2441
2442
2443
2444
2445
2446
2447
2448
2449
2450 age = (now - ift->cstamp) / HZ;
2451 max_valid = idev->cnf.temp_valid_lft - age;
2452 if (max_valid < 0)
2453 max_valid = 0;
2454
2455 max_prefered = idev->cnf.temp_prefered_lft -
2456 idev->desync_factor - age;
2457 if (max_prefered < 0)
2458 max_prefered = 0;
2459
2460 if (valid_lft > max_valid)
2461 valid_lft = max_valid;
2462
2463 if (prefered_lft > max_prefered)
2464 prefered_lft = max_prefered;
2465
2466 spin_lock(&ift->lock);
2467 flags = ift->flags;
2468 ift->valid_lft = valid_lft;
2469 ift->prefered_lft = prefered_lft;
2470 ift->tstamp = now;
2471 if (prefered_lft > 0)
2472 ift->flags &= ~IFA_F_DEPRECATED;
2473
2474 spin_unlock(&ift->lock);
2475 if (!(flags&IFA_F_TENTATIVE))
2476 ipv6_ifa_notify(0, ift);
2477 }
2478
2479 if ((create || list_empty(&idev->tempaddr_list)) &&
2480 idev->cnf.use_tempaddr > 0) {
2481
2482
2483
2484
2485
2486 read_unlock_bh(&idev->lock);
2487 ipv6_create_tempaddr(ifp, NULL, false);
2488 } else {
2489 read_unlock_bh(&idev->lock);
2490 }
2491}
2492
2493static bool is_addr_mode_generate_stable(struct inet6_dev *idev)
2494{
2495 return idev->cnf.addr_gen_mode == IN6_ADDR_GEN_MODE_STABLE_PRIVACY ||
2496 idev->cnf.addr_gen_mode == IN6_ADDR_GEN_MODE_RANDOM;
2497}
2498
2499int addrconf_prefix_rcv_add_addr(struct net *net, struct net_device *dev,
2500 const struct prefix_info *pinfo,
2501 struct inet6_dev *in6_dev,
2502 const struct in6_addr *addr, int addr_type,
2503 u32 addr_flags, bool sllao, bool tokenized,
2504 __u32 valid_lft, u32 prefered_lft)
2505{
2506 struct inet6_ifaddr *ifp = ipv6_get_ifaddr(net, addr, dev, 1);
2507 int create = 0, update_lft = 0;
2508
2509 if (!ifp && valid_lft) {
2510 int max_addresses = in6_dev->cnf.max_addresses;
2511 struct ifa6_config cfg = {
2512 .pfx = addr,
2513 .plen = pinfo->prefix_len,
2514 .ifa_flags = addr_flags,
2515 .valid_lft = valid_lft,
2516 .preferred_lft = prefered_lft,
2517 .scope = addr_type & IPV6_ADDR_SCOPE_MASK,
2518 };
2519
2520#ifdef CONFIG_IPV6_OPTIMISTIC_DAD
2521 if ((net->ipv6.devconf_all->optimistic_dad ||
2522 in6_dev->cnf.optimistic_dad) &&
2523 !net->ipv6.devconf_all->forwarding && sllao)
2524 cfg.ifa_flags |= IFA_F_OPTIMISTIC;
2525#endif
2526
2527
2528
2529
2530 if (!max_addresses ||
2531 ipv6_count_addresses(in6_dev) < max_addresses)
2532 ifp = ipv6_add_addr(in6_dev, &cfg, false, NULL);
2533
2534 if (IS_ERR_OR_NULL(ifp))
2535 return -1;
2536
2537 create = 1;
2538 spin_lock_bh(&ifp->lock);
2539 ifp->flags |= IFA_F_MANAGETEMPADDR;
2540 ifp->cstamp = jiffies;
2541 ifp->tokenized = tokenized;
2542 spin_unlock_bh(&ifp->lock);
2543 addrconf_dad_start(ifp);
2544 }
2545
2546 if (ifp) {
2547 u32 flags;
2548 unsigned long now;
2549 u32 stored_lft;
2550
2551
2552 spin_lock_bh(&ifp->lock);
2553 now = jiffies;
2554 if (ifp->valid_lft > (now - ifp->tstamp) / HZ)
2555 stored_lft = ifp->valid_lft - (now - ifp->tstamp) / HZ;
2556 else
2557 stored_lft = 0;
2558 if (!create && stored_lft) {
2559 const u32 minimum_lft = min_t(u32,
2560 stored_lft, MIN_VALID_LIFETIME);
2561 valid_lft = max(valid_lft, minimum_lft);
2562
2563
2564
2565
2566
2567
2568
2569
2570
2571
2572
2573 update_lft = 1;
2574 }
2575
2576 if (update_lft) {
2577 ifp->valid_lft = valid_lft;
2578 ifp->prefered_lft = prefered_lft;
2579 ifp->tstamp = now;
2580 flags = ifp->flags;
2581 ifp->flags &= ~IFA_F_DEPRECATED;
2582 spin_unlock_bh(&ifp->lock);
2583
2584 if (!(flags&IFA_F_TENTATIVE))
2585 ipv6_ifa_notify(0, ifp);
2586 } else
2587 spin_unlock_bh(&ifp->lock);
2588
2589 manage_tempaddrs(in6_dev, ifp, valid_lft, prefered_lft,
2590 create, now);
2591
2592 in6_ifa_put(ifp);
2593 addrconf_verify();
2594 }
2595
2596 return 0;
2597}
2598EXPORT_SYMBOL_GPL(addrconf_prefix_rcv_add_addr);
2599
2600void addrconf_prefix_rcv(struct net_device *dev, u8 *opt, int len, bool sllao)
2601{
2602 struct prefix_info *pinfo;
2603 __u32 valid_lft;
2604 __u32 prefered_lft;
2605 int addr_type, err;
2606 u32 addr_flags = 0;
2607 struct inet6_dev *in6_dev;
2608 struct net *net = dev_net(dev);
2609
2610 pinfo = (struct prefix_info *) opt;
2611
2612 if (len < sizeof(struct prefix_info)) {
2613 netdev_dbg(dev, "addrconf: prefix option too short\n");
2614 return;
2615 }
2616
2617
2618
2619
2620
2621 addr_type = ipv6_addr_type(&pinfo->prefix);
2622
2623 if (addr_type & (IPV6_ADDR_MULTICAST|IPV6_ADDR_LINKLOCAL))
2624 return;
2625
2626 valid_lft = ntohl(pinfo->valid);
2627 prefered_lft = ntohl(pinfo->prefered);
2628
2629 if (prefered_lft > valid_lft) {
2630 net_warn_ratelimited("addrconf: prefix option has invalid lifetime\n");
2631 return;
2632 }
2633
2634 in6_dev = in6_dev_get(dev);
2635
2636 if (!in6_dev) {
2637 net_dbg_ratelimited("addrconf: device %s not configured\n",
2638 dev->name);
2639 return;
2640 }
2641
2642
2643
2644
2645
2646
2647
2648 if (pinfo->onlink) {
2649 struct fib6_info *rt;
2650 unsigned long rt_expires;
2651
2652
2653
2654
2655
2656
2657 if (HZ > USER_HZ)
2658 rt_expires = addrconf_timeout_fixup(valid_lft, HZ);
2659 else
2660 rt_expires = addrconf_timeout_fixup(valid_lft, USER_HZ);
2661
2662 if (addrconf_finite_timeout(rt_expires))
2663 rt_expires *= HZ;
2664
2665 rt = addrconf_get_prefix_route(&pinfo->prefix,
2666 pinfo->prefix_len,
2667 dev,
2668 RTF_ADDRCONF | RTF_PREFIX_RT,
2669 RTF_GATEWAY | RTF_DEFAULT);
2670
2671 if (rt) {
2672
2673 if (valid_lft == 0) {
2674 ip6_del_rt(net, rt);
2675 rt = NULL;
2676 } else if (addrconf_finite_timeout(rt_expires)) {
2677
2678 fib6_set_expires(rt, jiffies + rt_expires);
2679 } else {
2680 fib6_clean_expires(rt);
2681 }
2682 } else if (valid_lft) {
2683 clock_t expires = 0;
2684 int flags = RTF_ADDRCONF | RTF_PREFIX_RT;
2685 if (addrconf_finite_timeout(rt_expires)) {
2686
2687 flags |= RTF_EXPIRES;
2688 expires = jiffies_to_clock_t(rt_expires);
2689 }
2690 addrconf_prefix_route(&pinfo->prefix, pinfo->prefix_len,
2691 0, dev, expires, flags,
2692 GFP_ATOMIC);
2693 }
2694 fib6_info_release(rt);
2695 }
2696
2697
2698
2699 if (pinfo->autoconf && in6_dev->cnf.autoconf) {
2700 struct in6_addr addr;
2701 bool tokenized = false, dev_addr_generated = false;
2702
2703 if (pinfo->prefix_len == 64) {
2704 memcpy(&addr, &pinfo->prefix, 8);
2705
2706 if (!ipv6_addr_any(&in6_dev->token)) {
2707 read_lock_bh(&in6_dev->lock);
2708 memcpy(addr.s6_addr + 8,
2709 in6_dev->token.s6_addr + 8, 8);
2710 read_unlock_bh(&in6_dev->lock);
2711 tokenized = true;
2712 } else if (is_addr_mode_generate_stable(in6_dev) &&
2713 !ipv6_generate_stable_address(&addr, 0,
2714 in6_dev)) {
2715 addr_flags |= IFA_F_STABLE_PRIVACY;
2716 goto ok;
2717 } else if (ipv6_generate_eui64(addr.s6_addr + 8, dev) &&
2718 ipv6_inherit_eui64(addr.s6_addr + 8, in6_dev)) {
2719 goto put;
2720 } else {
2721 dev_addr_generated = true;
2722 }
2723 goto ok;
2724 }
2725 net_dbg_ratelimited("IPv6 addrconf: prefix with wrong length %d\n",
2726 pinfo->prefix_len);
2727 goto put;
2728
2729ok:
2730 err = addrconf_prefix_rcv_add_addr(net, dev, pinfo, in6_dev,
2731 &addr, addr_type,
2732 addr_flags, sllao,
2733 tokenized, valid_lft,
2734 prefered_lft);
2735 if (err)
2736 goto put;
2737
2738
2739
2740
2741 ndisc_ops_prefix_rcv_add_addr(net, dev, pinfo, in6_dev, &addr,
2742 addr_type, addr_flags, sllao,
2743 tokenized, valid_lft,
2744 prefered_lft,
2745 dev_addr_generated);
2746 }
2747 inet6_prefix_notify(RTM_NEWPREFIX, in6_dev, pinfo);
2748put:
2749 in6_dev_put(in6_dev);
2750}
2751
2752
2753
2754
2755
2756
2757int addrconf_set_dstaddr(struct net *net, void __user *arg)
2758{
2759 struct in6_ifreq ireq;
2760 struct net_device *dev;
2761 int err = -EINVAL;
2762
2763 rtnl_lock();
2764
2765 err = -EFAULT;
2766 if (copy_from_user(&ireq, arg, sizeof(struct in6_ifreq)))
2767 goto err_exit;
2768
2769 dev = __dev_get_by_index(net, ireq.ifr6_ifindex);
2770
2771 err = -ENODEV;
2772 if (!dev)
2773 goto err_exit;
2774
2775#if IS_ENABLED(CONFIG_IPV6_SIT)
2776 if (dev->type == ARPHRD_SIT) {
2777 const struct net_device_ops *ops = dev->netdev_ops;
2778 struct ifreq ifr;
2779 struct ip_tunnel_parm p;
2780
2781 err = -EADDRNOTAVAIL;
2782 if (!(ipv6_addr_type(&ireq.ifr6_addr) & IPV6_ADDR_COMPATv4))
2783 goto err_exit;
2784
2785 memset(&p, 0, sizeof(p));
2786 p.iph.daddr = ireq.ifr6_addr.s6_addr32[3];
2787 p.iph.saddr = 0;
2788 p.iph.version = 4;
2789 p.iph.ihl = 5;
2790 p.iph.protocol = IPPROTO_IPV6;
2791 p.iph.ttl = 64;
2792 ifr.ifr_ifru.ifru_data = (__force void __user *)&p;
2793
2794 if (ops->ndo_do_ioctl) {
2795 mm_segment_t oldfs = get_fs();
2796
2797 set_fs(KERNEL_DS);
2798 err = ops->ndo_do_ioctl(dev, &ifr, SIOCADDTUNNEL);
2799 set_fs(oldfs);
2800 } else
2801 err = -EOPNOTSUPP;
2802
2803 if (err == 0) {
2804 err = -ENOBUFS;
2805 dev = __dev_get_by_name(net, p.name);
2806 if (!dev)
2807 goto err_exit;
2808 err = dev_open(dev);
2809 }
2810 }
2811#endif
2812
2813err_exit:
2814 rtnl_unlock();
2815 return err;
2816}
2817
2818static int ipv6_mc_config(struct sock *sk, bool join,
2819 const struct in6_addr *addr, int ifindex)
2820{
2821 int ret;
2822
2823 ASSERT_RTNL();
2824
2825 lock_sock(sk);
2826 if (join)
2827 ret = ipv6_sock_mc_join(sk, ifindex, addr);
2828 else
2829 ret = ipv6_sock_mc_drop(sk, ifindex, addr);
2830 release_sock(sk);
2831
2832 return ret;
2833}
2834
2835
2836
2837
2838static int inet6_addr_add(struct net *net, int ifindex,
2839 struct ifa6_config *cfg,
2840 struct netlink_ext_ack *extack)
2841{
2842 struct inet6_ifaddr *ifp;
2843 struct inet6_dev *idev;
2844 struct net_device *dev;
2845 unsigned long timeout;
2846 clock_t expires;
2847 u32 flags;
2848
2849 ASSERT_RTNL();
2850
2851 if (cfg->plen > 128)
2852 return -EINVAL;
2853
2854
2855 if (!cfg->valid_lft || cfg->preferred_lft > cfg->valid_lft)
2856 return -EINVAL;
2857
2858 if (cfg->ifa_flags & IFA_F_MANAGETEMPADDR && cfg->plen != 64)
2859 return -EINVAL;
2860
2861 dev = __dev_get_by_index(net, ifindex);
2862 if (!dev)
2863 return -ENODEV;
2864
2865 idev = addrconf_add_dev(dev);
2866 if (IS_ERR(idev))
2867 return PTR_ERR(idev);
2868
2869 if (cfg->ifa_flags & IFA_F_MCAUTOJOIN) {
2870 int ret = ipv6_mc_config(net->ipv6.mc_autojoin_sk,
2871 true, cfg->pfx, ifindex);
2872
2873 if (ret < 0)
2874 return ret;
2875 }
2876
2877 cfg->scope = ipv6_addr_scope(cfg->pfx);
2878
2879 timeout = addrconf_timeout_fixup(cfg->valid_lft, HZ);
2880 if (addrconf_finite_timeout(timeout)) {
2881 expires = jiffies_to_clock_t(timeout * HZ);
2882 cfg->valid_lft = timeout;
2883 flags = RTF_EXPIRES;
2884 } else {
2885 expires = 0;
2886 flags = 0;
2887 cfg->ifa_flags |= IFA_F_PERMANENT;
2888 }
2889
2890 timeout = addrconf_timeout_fixup(cfg->preferred_lft, HZ);
2891 if (addrconf_finite_timeout(timeout)) {
2892 if (timeout == 0)
2893 cfg->ifa_flags |= IFA_F_DEPRECATED;
2894 cfg->preferred_lft = timeout;
2895 }
2896
2897 ifp = ipv6_add_addr(idev, cfg, true, extack);
2898 if (!IS_ERR(ifp)) {
2899 if (!(cfg->ifa_flags & IFA_F_NOPREFIXROUTE)) {
2900 addrconf_prefix_route(&ifp->addr, ifp->prefix_len,
2901 ifp->rt_priority, dev, expires,
2902 flags, GFP_KERNEL);
2903 }
2904
2905
2906
2907
2908 if (!(ifp->flags & (IFA_F_OPTIMISTIC | IFA_F_NODAD)))
2909 ipv6_ifa_notify(0, ifp);
2910
2911
2912
2913
2914
2915 addrconf_dad_start(ifp);
2916 if (cfg->ifa_flags & IFA_F_MANAGETEMPADDR)
2917 manage_tempaddrs(idev, ifp, cfg->valid_lft,
2918 cfg->preferred_lft, true, jiffies);
2919 in6_ifa_put(ifp);
2920 addrconf_verify_rtnl();
2921 return 0;
2922 } else if (cfg->ifa_flags & IFA_F_MCAUTOJOIN) {
2923 ipv6_mc_config(net->ipv6.mc_autojoin_sk, false,
2924 cfg->pfx, ifindex);
2925 }
2926
2927 return PTR_ERR(ifp);
2928}
2929
2930static int inet6_addr_del(struct net *net, int ifindex, u32 ifa_flags,
2931 const struct in6_addr *pfx, unsigned int plen)
2932{
2933 struct inet6_ifaddr *ifp;
2934 struct inet6_dev *idev;
2935 struct net_device *dev;
2936
2937 if (plen > 128)
2938 return -EINVAL;
2939
2940 dev = __dev_get_by_index(net, ifindex);
2941 if (!dev)
2942 return -ENODEV;
2943
2944 idev = __in6_dev_get(dev);
2945 if (!idev)
2946 return -ENXIO;
2947
2948 read_lock_bh(&idev->lock);
2949 list_for_each_entry(ifp, &idev->addr_list, if_list) {
2950 if (ifp->prefix_len == plen &&
2951 ipv6_addr_equal(pfx, &ifp->addr)) {
2952 in6_ifa_hold(ifp);
2953 read_unlock_bh(&idev->lock);
2954
2955 if (!(ifp->flags & IFA_F_TEMPORARY) &&
2956 (ifa_flags & IFA_F_MANAGETEMPADDR))
2957 manage_tempaddrs(idev, ifp, 0, 0, false,
2958 jiffies);
2959 ipv6_del_addr(ifp);
2960 addrconf_verify_rtnl();
2961 if (ipv6_addr_is_multicast(pfx)) {
2962 ipv6_mc_config(net->ipv6.mc_autojoin_sk,
2963 false, pfx, dev->ifindex);
2964 }
2965 return 0;
2966 }
2967 }
2968 read_unlock_bh(&idev->lock);
2969 return -EADDRNOTAVAIL;
2970}
2971
2972
2973int addrconf_add_ifaddr(struct net *net, void __user *arg)
2974{
2975 struct ifa6_config cfg = {
2976 .ifa_flags = IFA_F_PERMANENT,
2977 .preferred_lft = INFINITY_LIFE_TIME,
2978 .valid_lft = INFINITY_LIFE_TIME,
2979 };
2980 struct in6_ifreq ireq;
2981 int err;
2982
2983 if (!ns_capable(net->user_ns, CAP_NET_ADMIN))
2984 return -EPERM;
2985
2986 if (copy_from_user(&ireq, arg, sizeof(struct in6_ifreq)))
2987 return -EFAULT;
2988
2989 cfg.pfx = &ireq.ifr6_addr;
2990 cfg.plen = ireq.ifr6_prefixlen;
2991
2992 rtnl_lock();
2993 err = inet6_addr_add(net, ireq.ifr6_ifindex, &cfg, NULL);
2994 rtnl_unlock();
2995 return err;
2996}
2997
2998int addrconf_del_ifaddr(struct net *net, void __user *arg)
2999{
3000 struct in6_ifreq ireq;
3001 int err;
3002
3003 if (!ns_capable(net->user_ns, CAP_NET_ADMIN))
3004 return -EPERM;
3005
3006 if (copy_from_user(&ireq, arg, sizeof(struct in6_ifreq)))
3007 return -EFAULT;
3008
3009 rtnl_lock();
3010 err = inet6_addr_del(net, ireq.ifr6_ifindex, 0, &ireq.ifr6_addr,
3011 ireq.ifr6_prefixlen);
3012 rtnl_unlock();
3013 return err;
3014}
3015
3016static void add_addr(struct inet6_dev *idev, const struct in6_addr *addr,
3017 int plen, int scope)
3018{
3019 struct inet6_ifaddr *ifp;
3020 struct ifa6_config cfg = {
3021 .pfx = addr,
3022 .plen = plen,
3023 .ifa_flags = IFA_F_PERMANENT,
3024 .valid_lft = INFINITY_LIFE_TIME,
3025 .preferred_lft = INFINITY_LIFE_TIME,
3026 .scope = scope
3027 };
3028
3029 ifp = ipv6_add_addr(idev, &cfg, true, NULL);
3030 if (!IS_ERR(ifp)) {
3031 spin_lock_bh(&ifp->lock);
3032 ifp->flags &= ~IFA_F_TENTATIVE;
3033 spin_unlock_bh(&ifp->lock);
3034 rt_genid_bump_ipv6(dev_net(idev->dev));
3035 ipv6_ifa_notify(RTM_NEWADDR, ifp);
3036 in6_ifa_put(ifp);
3037 }
3038}
3039
3040#if IS_ENABLED(CONFIG_IPV6_SIT)
3041static void sit_add_v4_addrs(struct inet6_dev *idev)
3042{
3043 struct in6_addr addr;
3044 struct net_device *dev;
3045 struct net *net = dev_net(idev->dev);
3046 int scope, plen;
3047 u32 pflags = 0;
3048
3049 ASSERT_RTNL();
3050
3051 memset(&addr, 0, sizeof(struct in6_addr));
3052 memcpy(&addr.s6_addr32[3], idev->dev->dev_addr, 4);
3053
3054 if (idev->dev->flags&IFF_POINTOPOINT) {
3055 addr.s6_addr32[0] = htonl(0xfe800000);
3056 scope = IFA_LINK;
3057 plen = 64;
3058 } else {
3059 scope = IPV6_ADDR_COMPATv4;
3060 plen = 96;
3061 pflags |= RTF_NONEXTHOP;
3062 }
3063
3064 if (addr.s6_addr32[3]) {
3065 add_addr(idev, &addr, plen, scope);
3066 addrconf_prefix_route(&addr, plen, 0, idev->dev, 0, pflags,
3067 GFP_ATOMIC);
3068 return;
3069 }
3070
3071 for_each_netdev(net, dev) {
3072 struct in_device *in_dev = __in_dev_get_rtnl(dev);
3073 if (in_dev && (dev->flags & IFF_UP)) {
3074 struct in_ifaddr *ifa;
3075
3076 int flag = scope;
3077
3078 for (ifa = in_dev->ifa_list; ifa; ifa = ifa->ifa_next) {
3079
3080 addr.s6_addr32[3] = ifa->ifa_local;
3081
3082 if (ifa->ifa_scope == RT_SCOPE_LINK)
3083 continue;
3084 if (ifa->ifa_scope >= RT_SCOPE_HOST) {
3085 if (idev->dev->flags&IFF_POINTOPOINT)
3086 continue;
3087 flag |= IFA_HOST;
3088 }
3089
3090 add_addr(idev, &addr, plen, flag);
3091 addrconf_prefix_route(&addr, plen, 0, idev->dev,
3092 0, pflags, GFP_ATOMIC);
3093 }
3094 }
3095 }
3096}
3097#endif
3098
3099static void init_loopback(struct net_device *dev)
3100{
3101 struct inet6_dev *idev;
3102
3103
3104
3105 ASSERT_RTNL();
3106
3107 idev = ipv6_find_idev(dev);
3108 if (!idev) {
3109 pr_debug("%s: add_dev failed\n", __func__);
3110 return;
3111 }
3112
3113 add_addr(idev, &in6addr_loopback, 128, IFA_HOST);
3114}
3115
3116void addrconf_add_linklocal(struct inet6_dev *idev,
3117 const struct in6_addr *addr, u32 flags)
3118{
3119 struct ifa6_config cfg = {
3120 .pfx = addr,
3121 .plen = 64,
3122 .ifa_flags = flags | IFA_F_PERMANENT,
3123 .valid_lft = INFINITY_LIFE_TIME,
3124 .preferred_lft = INFINITY_LIFE_TIME,
3125 .scope = IFA_LINK
3126 };
3127 struct inet6_ifaddr *ifp;
3128
3129#ifdef CONFIG_IPV6_OPTIMISTIC_DAD
3130 if ((dev_net(idev->dev)->ipv6.devconf_all->optimistic_dad ||
3131 idev->cnf.optimistic_dad) &&
3132 !dev_net(idev->dev)->ipv6.devconf_all->forwarding)
3133 cfg.ifa_flags |= IFA_F_OPTIMISTIC;
3134#endif
3135
3136 ifp = ipv6_add_addr(idev, &cfg, true, NULL);
3137 if (!IS_ERR(ifp)) {
3138 addrconf_prefix_route(&ifp->addr, ifp->prefix_len, 0, idev->dev,
3139 0, 0, GFP_ATOMIC);
3140 addrconf_dad_start(ifp);
3141 in6_ifa_put(ifp);
3142 }
3143}
3144EXPORT_SYMBOL_GPL(addrconf_add_linklocal);
3145
3146static bool ipv6_reserved_interfaceid(struct in6_addr address)
3147{
3148 if ((address.s6_addr32[2] | address.s6_addr32[3]) == 0)
3149 return true;
3150
3151 if (address.s6_addr32[2] == htonl(0x02005eff) &&
3152 ((address.s6_addr32[3] & htonl(0xfe000000)) == htonl(0xfe000000)))
3153 return true;
3154
3155 if (address.s6_addr32[2] == htonl(0xfdffffff) &&
3156 ((address.s6_addr32[3] & htonl(0xffffff80)) == htonl(0xffffff80)))
3157 return true;
3158
3159 return false;
3160}
3161
3162static int ipv6_generate_stable_address(struct in6_addr *address,
3163 u8 dad_count,
3164 const struct inet6_dev *idev)
3165{
3166 static DEFINE_SPINLOCK(lock);
3167 static __u32 digest[SHA_DIGEST_WORDS];
3168 static __u32 workspace[SHA_WORKSPACE_WORDS];
3169
3170 static union {
3171 char __data[SHA_MESSAGE_BYTES];
3172 struct {
3173 struct in6_addr secret;
3174 __be32 prefix[2];
3175 unsigned char hwaddr[MAX_ADDR_LEN];
3176 u8 dad_count;
3177 } __packed;
3178 } data;
3179
3180 struct in6_addr secret;
3181 struct in6_addr temp;
3182 struct net *net = dev_net(idev->dev);
3183
3184 BUILD_BUG_ON(sizeof(data.__data) != sizeof(data));
3185
3186 if (idev->cnf.stable_secret.initialized)
3187 secret = idev->cnf.stable_secret.secret;
3188 else if (net->ipv6.devconf_dflt->stable_secret.initialized)
3189 secret = net->ipv6.devconf_dflt->stable_secret.secret;
3190 else
3191 return -1;
3192
3193retry:
3194 spin_lock_bh(&lock);
3195
3196 sha_init(digest);
3197 memset(&data, 0, sizeof(data));
3198 memset(workspace, 0, sizeof(workspace));
3199 memcpy(data.hwaddr, idev->dev->perm_addr, idev->dev->addr_len);
3200 data.prefix[0] = address->s6_addr32[0];
3201 data.prefix[1] = address->s6_addr32[1];
3202 data.secret = secret;
3203 data.dad_count = dad_count;
3204
3205 sha_transform(digest, data.__data, workspace);
3206
3207 temp = *address;
3208 temp.s6_addr32[2] = (__force __be32)digest[0];
3209 temp.s6_addr32[3] = (__force __be32)digest[1];
3210
3211 spin_unlock_bh(&lock);
3212
3213 if (ipv6_reserved_interfaceid(temp)) {
3214 dad_count++;
3215 if (dad_count > dev_net(idev->dev)->ipv6.sysctl.idgen_retries)
3216 return -1;
3217 goto retry;
3218 }
3219
3220 *address = temp;
3221 return 0;
3222}
3223
3224static void ipv6_gen_mode_random_init(struct inet6_dev *idev)
3225{
3226 struct ipv6_stable_secret *s = &idev->cnf.stable_secret;
3227
3228 if (s->initialized)
3229 return;
3230 s = &idev->cnf.stable_secret;
3231 get_random_bytes(&s->secret, sizeof(s->secret));
3232 s->initialized = true;
3233}
3234
3235static void addrconf_addr_gen(struct inet6_dev *idev, bool prefix_route)
3236{
3237 struct in6_addr addr;
3238
3239
3240 if (netif_is_l3_master(idev->dev))
3241 return;
3242
3243 ipv6_addr_set(&addr, htonl(0xFE800000), 0, 0, 0);
3244
3245 switch (idev->cnf.addr_gen_mode) {
3246 case IN6_ADDR_GEN_MODE_RANDOM:
3247 ipv6_gen_mode_random_init(idev);
3248
3249 case IN6_ADDR_GEN_MODE_STABLE_PRIVACY:
3250 if (!ipv6_generate_stable_address(&addr, 0, idev))
3251 addrconf_add_linklocal(idev, &addr,
3252 IFA_F_STABLE_PRIVACY);
3253 else if (prefix_route)
3254 addrconf_prefix_route(&addr, 64, 0, idev->dev,
3255 0, 0, GFP_KERNEL);
3256 break;
3257 case IN6_ADDR_GEN_MODE_EUI64:
3258
3259
3260
3261
3262 if (ipv6_generate_eui64(addr.s6_addr + 8, idev->dev) == 0)
3263 addrconf_add_linklocal(idev, &addr, 0);
3264 else if (prefix_route)
3265 addrconf_prefix_route(&addr, 64, 0, idev->dev,
3266 0, 0, GFP_KERNEL);
3267 break;
3268 case IN6_ADDR_GEN_MODE_NONE:
3269 default:
3270
3271 break;
3272 }
3273}
3274
3275static void addrconf_dev_config(struct net_device *dev)
3276{
3277 struct inet6_dev *idev;
3278
3279 ASSERT_RTNL();
3280
3281 if ((dev->type != ARPHRD_ETHER) &&
3282 (dev->type != ARPHRD_FDDI) &&
3283 (dev->type != ARPHRD_ARCNET) &&
3284 (dev->type != ARPHRD_INFINIBAND) &&
3285 (dev->type != ARPHRD_IEEE1394) &&
3286 (dev->type != ARPHRD_TUNNEL6) &&
3287 (dev->type != ARPHRD_6LOWPAN) &&
3288 (dev->type != ARPHRD_IP6GRE) &&
3289 (dev->type != ARPHRD_IPGRE) &&
3290 (dev->type != ARPHRD_TUNNEL) &&
3291 (dev->type != ARPHRD_NONE) &&
3292 (dev->type != ARPHRD_RAWIP)) {
3293
3294 return;
3295 }
3296
3297 idev = addrconf_add_dev(dev);
3298 if (IS_ERR(idev))
3299 return;
3300
3301
3302 if (dev->type == ARPHRD_NONE &&
3303 idev->cnf.addr_gen_mode == IN6_ADDR_GEN_MODE_EUI64)
3304 idev->cnf.addr_gen_mode = IN6_ADDR_GEN_MODE_RANDOM;
3305
3306 addrconf_addr_gen(idev, false);
3307}
3308
3309#if IS_ENABLED(CONFIG_IPV6_SIT)
3310static void addrconf_sit_config(struct net_device *dev)
3311{
3312 struct inet6_dev *idev;
3313
3314 ASSERT_RTNL();
3315
3316
3317
3318
3319
3320
3321
3322 idev = ipv6_find_idev(dev);
3323 if (!idev) {
3324 pr_debug("%s: add_dev failed\n", __func__);
3325 return;
3326 }
3327
3328 if (dev->priv_flags & IFF_ISATAP) {
3329 addrconf_addr_gen(idev, false);
3330 return;
3331 }
3332
3333 sit_add_v4_addrs(idev);
3334
3335 if (dev->flags&IFF_POINTOPOINT)
3336 addrconf_add_mroute(dev);
3337}
3338#endif
3339
3340#if IS_ENABLED(CONFIG_NET_IPGRE)
3341static void addrconf_gre_config(struct net_device *dev)
3342{
3343 struct inet6_dev *idev;
3344
3345 ASSERT_RTNL();
3346
3347 idev = ipv6_find_idev(dev);
3348 if (!idev) {
3349 pr_debug("%s: add_dev failed\n", __func__);
3350 return;
3351 }
3352
3353 addrconf_addr_gen(idev, true);
3354 if (dev->flags & IFF_POINTOPOINT)
3355 addrconf_add_mroute(dev);
3356}
3357#endif
3358
3359static int fixup_permanent_addr(struct net *net,
3360 struct inet6_dev *idev,
3361 struct inet6_ifaddr *ifp)
3362{
3363
3364
3365
3366
3367 if (!ifp->rt || !ifp->rt->fib6_node) {
3368 struct fib6_info *f6i, *prev;
3369
3370 f6i = addrconf_f6i_alloc(net, idev, &ifp->addr, false,
3371 GFP_ATOMIC);
3372 if (IS_ERR(f6i))
3373 return PTR_ERR(f6i);
3374
3375
3376 spin_lock(&ifp->lock);
3377 prev = ifp->rt;
3378 ifp->rt = f6i;
3379 spin_unlock(&ifp->lock);
3380
3381 fib6_info_release(prev);
3382 }
3383
3384 if (!(ifp->flags & IFA_F_NOPREFIXROUTE)) {
3385 addrconf_prefix_route(&ifp->addr, ifp->prefix_len,
3386 ifp->rt_priority, idev->dev, 0, 0,
3387 GFP_ATOMIC);
3388 }
3389
3390 if (ifp->state == INET6_IFADDR_STATE_PREDAD)
3391 addrconf_dad_start(ifp);
3392
3393 return 0;
3394}
3395
3396static void addrconf_permanent_addr(struct net *net, struct net_device *dev)
3397{
3398 struct inet6_ifaddr *ifp, *tmp;
3399 struct inet6_dev *idev;
3400
3401 idev = __in6_dev_get(dev);
3402 if (!idev)
3403 return;
3404
3405 write_lock_bh(&idev->lock);
3406
3407 list_for_each_entry_safe(ifp, tmp, &idev->addr_list, if_list) {
3408 if ((ifp->flags & IFA_F_PERMANENT) &&
3409 fixup_permanent_addr(net, idev, ifp) < 0) {
3410 write_unlock_bh(&idev->lock);
3411 in6_ifa_hold(ifp);
3412 ipv6_del_addr(ifp);
3413 write_lock_bh(&idev->lock);
3414
3415 net_info_ratelimited("%s: Failed to add prefix route for address %pI6c; dropping\n",
3416 idev->dev->name, &ifp->addr);
3417 }
3418 }
3419
3420 write_unlock_bh(&idev->lock);
3421}
3422
3423static int addrconf_notify(struct notifier_block *this, unsigned long event,
3424 void *ptr)
3425{
3426 struct net_device *dev = netdev_notifier_info_to_dev(ptr);
3427 struct netdev_notifier_changeupper_info *info;
3428 struct inet6_dev *idev = __in6_dev_get(dev);
3429 struct net *net = dev_net(dev);
3430 int run_pending = 0;
3431 int err;
3432
3433 switch (event) {
3434 case NETDEV_REGISTER:
3435 if (!idev && dev->mtu >= IPV6_MIN_MTU) {
3436 idev = ipv6_add_dev(dev);
3437 if (IS_ERR(idev))
3438 return notifier_from_errno(PTR_ERR(idev));
3439 }
3440 break;
3441
3442 case NETDEV_CHANGEMTU:
3443
3444 if (dev->mtu < IPV6_MIN_MTU) {
3445 addrconf_ifdown(dev, dev != net->loopback_dev);
3446 break;
3447 }
3448
3449 if (idev) {
3450 rt6_mtu_change(dev, dev->mtu);
3451 idev->cnf.mtu6 = dev->mtu;
3452 break;
3453 }
3454
3455
3456 idev = ipv6_add_dev(dev);
3457 if (IS_ERR(idev))
3458 break;
3459
3460
3461 if (!(idev->if_flags & IF_READY))
3462 break;
3463
3464 run_pending = 1;
3465
3466
3467
3468 case NETDEV_UP:
3469 case NETDEV_CHANGE:
3470 if (dev->flags & IFF_SLAVE)
3471 break;
3472
3473 if (idev && idev->cnf.disable_ipv6)
3474 break;
3475
3476 if (event == NETDEV_UP) {
3477
3478 addrconf_permanent_addr(net, dev);
3479
3480 if (!addrconf_link_ready(dev)) {
3481
3482 pr_info("ADDRCONF(NETDEV_UP): %s: link is not ready\n",
3483 dev->name);
3484 break;
3485 }
3486
3487 if (!idev && dev->mtu >= IPV6_MIN_MTU)
3488 idev = ipv6_add_dev(dev);
3489
3490 if (!IS_ERR_OR_NULL(idev)) {
3491 idev->if_flags |= IF_READY;
3492 run_pending = 1;
3493 }
3494 } else if (event == NETDEV_CHANGE) {
3495 if (!addrconf_link_ready(dev)) {
3496
3497 rt6_sync_down_dev(dev, event);
3498 break;
3499 }
3500
3501 if (idev) {
3502 if (idev->if_flags & IF_READY) {
3503
3504
3505
3506
3507
3508 ipv6_mc_up(idev);
3509 rt6_sync_up(dev, RTNH_F_LINKDOWN);
3510 break;
3511 }
3512 idev->if_flags |= IF_READY;
3513 }
3514
3515 pr_info("ADDRCONF(NETDEV_CHANGE): %s: link becomes ready\n",
3516 dev->name);
3517
3518 run_pending = 1;
3519 }
3520
3521 switch (dev->type) {
3522#if IS_ENABLED(CONFIG_IPV6_SIT)
3523 case ARPHRD_SIT:
3524 addrconf_sit_config(dev);
3525 break;
3526#endif
3527#if IS_ENABLED(CONFIG_NET_IPGRE)
3528 case ARPHRD_IPGRE:
3529 addrconf_gre_config(dev);
3530 break;
3531#endif
3532 case ARPHRD_LOOPBACK:
3533 init_loopback(dev);
3534 break;
3535
3536 default:
3537 addrconf_dev_config(dev);
3538 break;
3539 }
3540
3541 if (!IS_ERR_OR_NULL(idev)) {
3542 if (run_pending)
3543 addrconf_dad_run(idev);
3544
3545
3546 rt6_sync_up(dev, RTNH_F_DEAD);
3547
3548
3549
3550
3551
3552
3553 if (idev->cnf.mtu6 != dev->mtu &&
3554 dev->mtu >= IPV6_MIN_MTU) {
3555 rt6_mtu_change(dev, dev->mtu);
3556 idev->cnf.mtu6 = dev->mtu;
3557 }
3558 idev->tstamp = jiffies;
3559 inet6_ifinfo_notify(RTM_NEWLINK, idev);
3560
3561
3562
3563
3564
3565 if (dev->mtu < IPV6_MIN_MTU)
3566 addrconf_ifdown(dev, dev != net->loopback_dev);
3567 }
3568 break;
3569
3570 case NETDEV_DOWN:
3571 case NETDEV_UNREGISTER:
3572
3573
3574
3575 addrconf_ifdown(dev, event != NETDEV_DOWN);
3576 break;
3577
3578 case NETDEV_CHANGENAME:
3579 if (idev) {
3580 snmp6_unregister_dev(idev);
3581 addrconf_sysctl_unregister(idev);
3582 err = addrconf_sysctl_register(idev);
3583 if (err)
3584 return notifier_from_errno(err);
3585 err = snmp6_register_dev(idev);
3586 if (err) {
3587 addrconf_sysctl_unregister(idev);
3588 return notifier_from_errno(err);
3589 }
3590 }
3591 break;
3592
3593 case NETDEV_PRE_TYPE_CHANGE:
3594 case NETDEV_POST_TYPE_CHANGE:
3595 if (idev)
3596 addrconf_type_change(dev, event);
3597 break;
3598
3599 case NETDEV_CHANGEUPPER:
3600 info = ptr;
3601
3602
3603
3604
3605 if (info->upper_dev && netif_is_l3_master(info->upper_dev))
3606 addrconf_ifdown(dev, 0);
3607 }
3608
3609 return NOTIFY_OK;
3610}
3611
3612
3613
3614
3615static struct notifier_block ipv6_dev_notf = {
3616 .notifier_call = addrconf_notify,
3617 .priority = ADDRCONF_NOTIFY_PRIORITY,
3618};
3619
3620static void addrconf_type_change(struct net_device *dev, unsigned long event)
3621{
3622 struct inet6_dev *idev;
3623 ASSERT_RTNL();
3624
3625 idev = __in6_dev_get(dev);
3626
3627 if (event == NETDEV_POST_TYPE_CHANGE)
3628 ipv6_mc_remap(idev);
3629 else if (event == NETDEV_PRE_TYPE_CHANGE)
3630 ipv6_mc_unmap(idev);
3631}
3632
3633static bool addr_is_local(const struct in6_addr *addr)
3634{
3635 return ipv6_addr_type(addr) &
3636 (IPV6_ADDR_LINKLOCAL | IPV6_ADDR_LOOPBACK);
3637}
3638
3639static int addrconf_ifdown(struct net_device *dev, int how)
3640{
3641 unsigned long event = how ? NETDEV_UNREGISTER : NETDEV_DOWN;
3642 struct net *net = dev_net(dev);
3643 struct inet6_dev *idev;
3644 struct inet6_ifaddr *ifa, *tmp;
3645 bool keep_addr = false;
3646 int state, i;
3647
3648 ASSERT_RTNL();
3649
3650 rt6_disable_ip(dev, event);
3651
3652 idev = __in6_dev_get(dev);
3653 if (!idev)
3654 return -ENODEV;
3655
3656
3657
3658
3659
3660 if (how) {
3661 idev->dead = 1;
3662
3663
3664 RCU_INIT_POINTER(dev->ip6_ptr, NULL);
3665
3666
3667 snmp6_unregister_dev(idev);
3668
3669 }
3670
3671
3672
3673
3674 if (!how && !idev->cnf.disable_ipv6) {
3675
3676 int _keep_addr = net->ipv6.devconf_all->keep_addr_on_down;
3677
3678 if (!_keep_addr)
3679 _keep_addr = idev->cnf.keep_addr_on_down;
3680
3681 keep_addr = (_keep_addr > 0);
3682 }
3683
3684
3685 for (i = 0; i < IN6_ADDR_HSIZE; i++) {
3686 struct hlist_head *h = &inet6_addr_lst[i];
3687
3688 spin_lock_bh(&addrconf_hash_lock);
3689restart:
3690 hlist_for_each_entry_rcu(ifa, h, addr_lst) {
3691 if (ifa->idev == idev) {
3692 addrconf_del_dad_work(ifa);
3693
3694
3695
3696 if (!keep_addr ||
3697 !(ifa->flags & IFA_F_PERMANENT) ||
3698 addr_is_local(&ifa->addr)) {
3699 hlist_del_init_rcu(&ifa->addr_lst);
3700 goto restart;
3701 }
3702 }
3703 }
3704 spin_unlock_bh(&addrconf_hash_lock);
3705 }
3706
3707 write_lock_bh(&idev->lock);
3708
3709 addrconf_del_rs_timer(idev);
3710
3711
3712 if (!how)
3713 idev->if_flags &= ~(IF_RS_SENT|IF_RA_RCVD|IF_READY);
3714
3715
3716 while (!list_empty(&idev->tempaddr_list)) {
3717 ifa = list_first_entry(&idev->tempaddr_list,
3718 struct inet6_ifaddr, tmp_list);
3719 list_del(&ifa->tmp_list);
3720 write_unlock_bh(&idev->lock);
3721 spin_lock_bh(&ifa->lock);
3722
3723 if (ifa->ifpub) {
3724 in6_ifa_put(ifa->ifpub);
3725 ifa->ifpub = NULL;
3726 }
3727 spin_unlock_bh(&ifa->lock);
3728 in6_ifa_put(ifa);
3729 write_lock_bh(&idev->lock);
3730 }
3731
3732 list_for_each_entry_safe(ifa, tmp, &idev->addr_list, if_list) {
3733 struct fib6_info *rt = NULL;
3734 bool keep;
3735
3736 addrconf_del_dad_work(ifa);
3737
3738 keep = keep_addr && (ifa->flags & IFA_F_PERMANENT) &&
3739 !addr_is_local(&ifa->addr);
3740
3741 write_unlock_bh(&idev->lock);
3742 spin_lock_bh(&ifa->lock);
3743
3744 if (keep) {
3745
3746 state = INET6_IFADDR_STATE_DEAD;
3747 ifa->state = INET6_IFADDR_STATE_PREDAD;
3748 if (!(ifa->flags & IFA_F_NODAD))
3749 ifa->flags |= IFA_F_TENTATIVE;
3750
3751 rt = ifa->rt;
3752 ifa->rt = NULL;
3753 } else {
3754 state = ifa->state;
3755 ifa->state = INET6_IFADDR_STATE_DEAD;
3756 }
3757
3758 spin_unlock_bh(&ifa->lock);
3759
3760 if (rt)
3761 ip6_del_rt(net, rt);
3762
3763 if (state != INET6_IFADDR_STATE_DEAD) {
3764 __ipv6_ifa_notify(RTM_DELADDR, ifa);
3765 inet6addr_notifier_call_chain(NETDEV_DOWN, ifa);
3766 } else {
3767 if (idev->cnf.forwarding)
3768 addrconf_leave_anycast(ifa);
3769 addrconf_leave_solict(ifa->idev, &ifa->addr);
3770 }
3771
3772 write_lock_bh(&idev->lock);
3773 if (!keep) {
3774 list_del_rcu(&ifa->if_list);
3775 in6_ifa_put(ifa);
3776 }
3777 }
3778
3779 write_unlock_bh(&idev->lock);
3780
3781
3782 if (how) {
3783 ipv6_ac_destroy_dev(idev);
3784 ipv6_mc_destroy_dev(idev);
3785 } else {
3786 ipv6_mc_down(idev);
3787 }
3788
3789 idev->tstamp = jiffies;
3790
3791
3792 if (how) {
3793 addrconf_sysctl_unregister(idev);
3794 neigh_parms_release(&nd_tbl, idev->nd_parms);
3795 neigh_ifdown(&nd_tbl, dev);
3796 in6_dev_put(idev);
3797 }
3798 return 0;
3799}
3800
3801static void addrconf_rs_timer(struct timer_list *t)
3802{
3803 struct inet6_dev *idev = from_timer(idev, t, rs_timer);
3804 struct net_device *dev = idev->dev;
3805 struct in6_addr lladdr;
3806
3807 write_lock(&idev->lock);
3808 if (idev->dead || !(idev->if_flags & IF_READY))
3809 goto out;
3810
3811 if (!ipv6_accept_ra(idev))
3812 goto out;
3813
3814
3815 if (idev->if_flags & IF_RA_RCVD)
3816 goto out;
3817
3818 if (idev->rs_probes++ < idev->cnf.rtr_solicits || idev->cnf.rtr_solicits < 0) {
3819 write_unlock(&idev->lock);
3820 if (!ipv6_get_lladdr(dev, &lladdr, IFA_F_TENTATIVE))
3821 ndisc_send_rs(dev, &lladdr,
3822 &in6addr_linklocal_allrouters);
3823 else
3824 goto put;
3825
3826 write_lock(&idev->lock);
3827 idev->rs_interval = rfc3315_s14_backoff_update(
3828 idev->rs_interval, idev->cnf.rtr_solicit_max_interval);
3829
3830 addrconf_mod_rs_timer(idev, (idev->rs_probes ==
3831 idev->cnf.rtr_solicits) ?
3832 idev->cnf.rtr_solicit_delay :
3833 idev->rs_interval);
3834 } else {
3835
3836
3837
3838
3839 pr_debug("%s: no IPv6 routers present\n", idev->dev->name);
3840 }
3841
3842out:
3843 write_unlock(&idev->lock);
3844put:
3845 in6_dev_put(idev);
3846}
3847
3848
3849
3850
3851static void addrconf_dad_kick(struct inet6_ifaddr *ifp)
3852{
3853 unsigned long rand_num;
3854 struct inet6_dev *idev = ifp->idev;
3855 u64 nonce;
3856
3857 if (ifp->flags & IFA_F_OPTIMISTIC)
3858 rand_num = 0;
3859 else
3860 rand_num = prandom_u32() % (idev->cnf.rtr_solicit_delay ? : 1);
3861
3862 nonce = 0;
3863 if (idev->cnf.enhanced_dad ||
3864 dev_net(idev->dev)->ipv6.devconf_all->enhanced_dad) {
3865 do
3866 get_random_bytes(&nonce, 6);
3867 while (nonce == 0);
3868 }
3869 ifp->dad_nonce = nonce;
3870 ifp->dad_probes = idev->cnf.dad_transmits;
3871 addrconf_mod_dad_work(ifp, rand_num);
3872}
3873
3874static void addrconf_dad_begin(struct inet6_ifaddr *ifp)
3875{
3876 struct inet6_dev *idev = ifp->idev;
3877 struct net_device *dev = idev->dev;
3878 bool bump_id, notify = false;
3879 struct net *net;
3880
3881 addrconf_join_solict(dev, &ifp->addr);
3882
3883 prandom_seed((__force u32) ifp->addr.s6_addr32[3]);
3884
3885 read_lock_bh(&idev->lock);
3886 spin_lock(&ifp->lock);
3887 if (ifp->state == INET6_IFADDR_STATE_DEAD)
3888 goto out;
3889
3890 net = dev_net(dev);
3891 if (dev->flags&(IFF_NOARP|IFF_LOOPBACK) ||
3892 (net->ipv6.devconf_all->accept_dad < 1 &&
3893 idev->cnf.accept_dad < 1) ||
3894 !(ifp->flags&IFA_F_TENTATIVE) ||
3895 ifp->flags & IFA_F_NODAD) {
3896 bool send_na = false;
3897
3898 if (ifp->flags & IFA_F_TENTATIVE &&
3899 !(ifp->flags & IFA_F_OPTIMISTIC))
3900 send_na = true;
3901 bump_id = ifp->flags & IFA_F_TENTATIVE;
3902 ifp->flags &= ~(IFA_F_TENTATIVE|IFA_F_OPTIMISTIC|IFA_F_DADFAILED);
3903 spin_unlock(&ifp->lock);
3904 read_unlock_bh(&idev->lock);
3905
3906 addrconf_dad_completed(ifp, bump_id, send_na);
3907 return;
3908 }
3909
3910 if (!(idev->if_flags & IF_READY)) {
3911 spin_unlock(&ifp->lock);
3912 read_unlock_bh(&idev->lock);
3913
3914
3915
3916
3917
3918 in6_ifa_hold(ifp);
3919 addrconf_dad_stop(ifp, 0);
3920 return;
3921 }
3922
3923
3924
3925
3926
3927 if (ifp->flags & IFA_F_OPTIMISTIC) {
3928 ip6_ins_rt(net, ifp->rt);
3929 if (ipv6_use_optimistic_addr(net, idev)) {
3930
3931
3932
3933 notify = true;
3934 }
3935 }
3936
3937 addrconf_dad_kick(ifp);
3938out:
3939 spin_unlock(&ifp->lock);
3940 read_unlock_bh(&idev->lock);
3941 if (notify)
3942 ipv6_ifa_notify(RTM_NEWADDR, ifp);
3943}
3944
3945static void addrconf_dad_start(struct inet6_ifaddr *ifp)
3946{
3947 bool begin_dad = false;
3948
3949 spin_lock_bh(&ifp->lock);
3950 if (ifp->state != INET6_IFADDR_STATE_DEAD) {
3951 ifp->state = INET6_IFADDR_STATE_PREDAD;
3952 begin_dad = true;
3953 }
3954 spin_unlock_bh(&ifp->lock);
3955
3956 if (begin_dad)
3957 addrconf_mod_dad_work(ifp, 0);
3958}
3959
3960static void addrconf_dad_work(struct work_struct *w)
3961{
3962 struct inet6_ifaddr *ifp = container_of(to_delayed_work(w),
3963 struct inet6_ifaddr,
3964 dad_work);
3965 struct inet6_dev *idev = ifp->idev;
3966 bool bump_id, disable_ipv6 = false;
3967 struct in6_addr mcaddr;
3968
3969 enum {
3970 DAD_PROCESS,
3971 DAD_BEGIN,
3972 DAD_ABORT,
3973 } action = DAD_PROCESS;
3974
3975 rtnl_lock();
3976
3977 spin_lock_bh(&ifp->lock);
3978 if (ifp->state == INET6_IFADDR_STATE_PREDAD) {
3979 action = DAD_BEGIN;
3980 ifp->state = INET6_IFADDR_STATE_DAD;
3981 } else if (ifp->state == INET6_IFADDR_STATE_ERRDAD) {
3982 action = DAD_ABORT;
3983 ifp->state = INET6_IFADDR_STATE_POSTDAD;
3984
3985 if ((dev_net(idev->dev)->ipv6.devconf_all->accept_dad > 1 ||
3986 idev->cnf.accept_dad > 1) &&
3987 !idev->cnf.disable_ipv6 &&
3988 !(ifp->flags & IFA_F_STABLE_PRIVACY)) {
3989 struct in6_addr addr;
3990
3991 addr.s6_addr32[0] = htonl(0xfe800000);
3992 addr.s6_addr32[1] = 0;
3993
3994 if (!ipv6_generate_eui64(addr.s6_addr + 8, idev->dev) &&
3995 ipv6_addr_equal(&ifp->addr, &addr)) {
3996
3997 idev->cnf.disable_ipv6 = 1;
3998
3999 pr_info("%s: IPv6 being disabled!\n",
4000 ifp->idev->dev->name);
4001 disable_ipv6 = true;
4002 }
4003 }
4004 }
4005 spin_unlock_bh(&ifp->lock);
4006
4007 if (action == DAD_BEGIN) {
4008 addrconf_dad_begin(ifp);
4009 goto out;
4010 } else if (action == DAD_ABORT) {
4011 in6_ifa_hold(ifp);
4012 addrconf_dad_stop(ifp, 1);
4013 if (disable_ipv6)
4014 addrconf_ifdown(idev->dev, 0);
4015 goto out;
4016 }
4017
4018 if (!ifp->dad_probes && addrconf_dad_end(ifp))
4019 goto out;
4020
4021 write_lock_bh(&idev->lock);
4022 if (idev->dead || !(idev->if_flags & IF_READY)) {
4023 write_unlock_bh(&idev->lock);
4024 goto out;
4025 }
4026
4027 spin_lock(&ifp->lock);
4028 if (ifp->state == INET6_IFADDR_STATE_DEAD) {
4029 spin_unlock(&ifp->lock);
4030 write_unlock_bh(&idev->lock);
4031 goto out;
4032 }
4033
4034 if (ifp->dad_probes == 0) {
4035 bool send_na = false;
4036
4037
4038
4039
4040
4041 if (ifp->flags & IFA_F_TENTATIVE &&
4042 !(ifp->flags & IFA_F_OPTIMISTIC))
4043 send_na = true;
4044 bump_id = ifp->flags & IFA_F_TENTATIVE;
4045 ifp->flags &= ~(IFA_F_TENTATIVE|IFA_F_OPTIMISTIC|IFA_F_DADFAILED);
4046 spin_unlock(&ifp->lock);
4047 write_unlock_bh(&idev->lock);
4048
4049 addrconf_dad_completed(ifp, bump_id, send_na);
4050
4051 goto out;
4052 }
4053
4054 ifp->dad_probes--;
4055 addrconf_mod_dad_work(ifp,
4056 NEIGH_VAR(ifp->idev->nd_parms, RETRANS_TIME));
4057 spin_unlock(&ifp->lock);
4058 write_unlock_bh(&idev->lock);
4059
4060
4061 addrconf_addr_solict_mult(&ifp->addr, &mcaddr);
4062 ndisc_send_ns(ifp->idev->dev, &ifp->addr, &mcaddr, &in6addr_any,
4063 ifp->dad_nonce);
4064out:
4065 in6_ifa_put(ifp);
4066 rtnl_unlock();
4067}
4068
4069
4070static bool ipv6_lonely_lladdr(struct inet6_ifaddr *ifp)
4071{
4072 struct inet6_ifaddr *ifpiter;
4073 struct inet6_dev *idev = ifp->idev;
4074
4075 list_for_each_entry_reverse(ifpiter, &idev->addr_list, if_list) {
4076 if (ifpiter->scope > IFA_LINK)
4077 break;
4078 if (ifp != ifpiter && ifpiter->scope == IFA_LINK &&
4079 (ifpiter->flags & (IFA_F_PERMANENT|IFA_F_TENTATIVE|
4080 IFA_F_OPTIMISTIC|IFA_F_DADFAILED)) ==
4081 IFA_F_PERMANENT)
4082 return false;
4083 }
4084 return true;
4085}
4086
4087static void addrconf_dad_completed(struct inet6_ifaddr *ifp, bool bump_id,
4088 bool send_na)
4089{
4090 struct net_device *dev = ifp->idev->dev;
4091 struct in6_addr lladdr;
4092 bool send_rs, send_mld;
4093
4094 addrconf_del_dad_work(ifp);
4095
4096
4097
4098
4099
4100 ipv6_ifa_notify(RTM_NEWADDR, ifp);
4101
4102
4103
4104
4105
4106 read_lock_bh(&ifp->idev->lock);
4107 send_mld = ifp->scope == IFA_LINK && ipv6_lonely_lladdr(ifp);
4108 send_rs = send_mld &&
4109 ipv6_accept_ra(ifp->idev) &&
4110 ifp->idev->cnf.rtr_solicits != 0 &&
4111 (dev->flags&IFF_LOOPBACK) == 0;
4112 read_unlock_bh(&ifp->idev->lock);
4113
4114
4115
4116
4117 if (send_mld)
4118 ipv6_mc_dad_complete(ifp->idev);
4119
4120
4121 if (send_na &&
4122 (ifp->idev->cnf.ndisc_notify ||
4123 dev_net(dev)->ipv6.devconf_all->ndisc_notify)) {
4124 ndisc_send_na(dev, &in6addr_linklocal_allnodes, &ifp->addr,
4125 !!ifp->idev->cnf.forwarding,
4126 false, true,
4127 true);
4128 }
4129
4130 if (send_rs) {
4131
4132
4133
4134
4135
4136 if (ipv6_get_lladdr(dev, &lladdr, IFA_F_TENTATIVE))
4137 return;
4138 ndisc_send_rs(dev, &lladdr, &in6addr_linklocal_allrouters);
4139
4140 write_lock_bh(&ifp->idev->lock);
4141 spin_lock(&ifp->lock);
4142 ifp->idev->rs_interval = rfc3315_s14_backoff_init(
4143 ifp->idev->cnf.rtr_solicit_interval);
4144 ifp->idev->rs_probes = 1;
4145 ifp->idev->if_flags |= IF_RS_SENT;
4146 addrconf_mod_rs_timer(ifp->idev, ifp->idev->rs_interval);
4147 spin_unlock(&ifp->lock);
4148 write_unlock_bh(&ifp->idev->lock);
4149 }
4150
4151 if (bump_id)
4152 rt_genid_bump_ipv6(dev_net(dev));
4153
4154
4155
4156
4157 if (ifp->flags & IFA_F_TEMPORARY)
4158 addrconf_verify_rtnl();
4159}
4160
4161static void addrconf_dad_run(struct inet6_dev *idev)
4162{
4163 struct inet6_ifaddr *ifp;
4164
4165 read_lock_bh(&idev->lock);
4166 list_for_each_entry(ifp, &idev->addr_list, if_list) {
4167 spin_lock(&ifp->lock);
4168 if (ifp->flags & IFA_F_TENTATIVE &&
4169 ifp->state == INET6_IFADDR_STATE_DAD)
4170 addrconf_dad_kick(ifp);
4171 spin_unlock(&ifp->lock);
4172 }
4173 read_unlock_bh(&idev->lock);
4174}
4175
4176#ifdef CONFIG_PROC_FS
4177struct if6_iter_state {
4178 struct seq_net_private p;
4179 int bucket;
4180 int offset;
4181};
4182
4183static struct inet6_ifaddr *if6_get_first(struct seq_file *seq, loff_t pos)
4184{
4185 struct if6_iter_state *state = seq->private;
4186 struct net *net = seq_file_net(seq);
4187 struct inet6_ifaddr *ifa = NULL;
4188 int p = 0;
4189
4190
4191 if (pos == 0) {
4192 state->bucket = 0;
4193 state->offset = 0;
4194 }
4195
4196 for (; state->bucket < IN6_ADDR_HSIZE; ++state->bucket) {
4197 hlist_for_each_entry_rcu(ifa, &inet6_addr_lst[state->bucket],
4198 addr_lst) {
4199 if (!net_eq(dev_net(ifa->idev->dev), net))
4200 continue;
4201
4202 if (p < state->offset) {
4203 p++;
4204 continue;
4205 }
4206 state->offset++;
4207 return ifa;
4208 }
4209
4210
4211 state->offset = 0;
4212 p = 0;
4213 }
4214 return NULL;
4215}
4216
4217static struct inet6_ifaddr *if6_get_next(struct seq_file *seq,
4218 struct inet6_ifaddr *ifa)
4219{
4220 struct if6_iter_state *state = seq->private;
4221 struct net *net = seq_file_net(seq);
4222
4223 hlist_for_each_entry_continue_rcu(ifa, addr_lst) {
4224 if (!net_eq(dev_net(ifa->idev->dev), net))
4225 continue;
4226 state->offset++;
4227 return ifa;
4228 }
4229
4230 while (++state->bucket < IN6_ADDR_HSIZE) {
4231 state->offset = 0;
4232 hlist_for_each_entry_rcu(ifa,
4233 &inet6_addr_lst[state->bucket], addr_lst) {
4234 if (!net_eq(dev_net(ifa->idev->dev), net))
4235 continue;
4236 state->offset++;
4237 return ifa;
4238 }
4239 }
4240
4241 return NULL;
4242}
4243
4244static void *if6_seq_start(struct seq_file *seq, loff_t *pos)
4245 __acquires(rcu)
4246{
4247 rcu_read_lock();
4248 return if6_get_first(seq, *pos);
4249}
4250
4251static void *if6_seq_next(struct seq_file *seq, void *v, loff_t *pos)
4252{
4253 struct inet6_ifaddr *ifa;
4254
4255 ifa = if6_get_next(seq, v);
4256 ++*pos;
4257 return ifa;
4258}
4259
4260static void if6_seq_stop(struct seq_file *seq, void *v)
4261 __releases(rcu)
4262{
4263 rcu_read_unlock();
4264}
4265
4266static int if6_seq_show(struct seq_file *seq, void *v)
4267{
4268 struct inet6_ifaddr *ifp = (struct inet6_ifaddr *)v;
4269 seq_printf(seq, "%pi6 %02x %02x %02x %02x %8s\n",
4270 &ifp->addr,
4271 ifp->idev->dev->ifindex,
4272 ifp->prefix_len,
4273 ifp->scope,
4274 (u8) ifp->flags,
4275 ifp->idev->dev->name);
4276 return 0;
4277}
4278
4279static const struct seq_operations if6_seq_ops = {
4280 .start = if6_seq_start,
4281 .next = if6_seq_next,
4282 .show = if6_seq_show,
4283 .stop = if6_seq_stop,
4284};
4285
4286static int __net_init if6_proc_net_init(struct net *net)
4287{
4288 if (!proc_create_net("if_inet6", 0444, net->proc_net, &if6_seq_ops,
4289 sizeof(struct if6_iter_state)))
4290 return -ENOMEM;
4291 return 0;
4292}
4293
4294static void __net_exit if6_proc_net_exit(struct net *net)
4295{
4296 remove_proc_entry("if_inet6", net->proc_net);
4297}
4298
4299static struct pernet_operations if6_proc_net_ops = {
4300 .init = if6_proc_net_init,
4301 .exit = if6_proc_net_exit,
4302};
4303
4304int __init if6_proc_init(void)
4305{
4306 return register_pernet_subsys(&if6_proc_net_ops);
4307}
4308
4309void if6_proc_exit(void)
4310{
4311 unregister_pernet_subsys(&if6_proc_net_ops);
4312}
4313#endif
4314
4315#if IS_ENABLED(CONFIG_IPV6_MIP6)
4316
4317int ipv6_chk_home_addr(struct net *net, const struct in6_addr *addr)
4318{
4319 unsigned int hash = inet6_addr_hash(net, addr);
4320 struct inet6_ifaddr *ifp = NULL;
4321 int ret = 0;
4322
4323 rcu_read_lock();
4324 hlist_for_each_entry_rcu(ifp, &inet6_addr_lst[hash], addr_lst) {
4325 if (!net_eq(dev_net(ifp->idev->dev), net))
4326 continue;
4327 if (ipv6_addr_equal(&ifp->addr, addr) &&
4328 (ifp->flags & IFA_F_HOMEADDRESS)) {
4329 ret = 1;
4330 break;
4331 }
4332 }
4333 rcu_read_unlock();
4334 return ret;
4335}
4336#endif
4337
4338
4339
4340
4341
4342static void addrconf_verify_rtnl(void)
4343{
4344 unsigned long now, next, next_sec, next_sched;
4345 struct inet6_ifaddr *ifp;
4346 int i;
4347
4348 ASSERT_RTNL();
4349
4350 rcu_read_lock_bh();
4351 now = jiffies;
4352 next = round_jiffies_up(now + ADDR_CHECK_FREQUENCY);
4353
4354 cancel_delayed_work(&addr_chk_work);
4355
4356 for (i = 0; i < IN6_ADDR_HSIZE; i++) {
4357restart:
4358 hlist_for_each_entry_rcu_bh(ifp, &inet6_addr_lst[i], addr_lst) {
4359 unsigned long age;
4360
4361
4362
4363
4364
4365 if ((ifp->flags & IFA_F_PERMANENT) &&
4366 (ifp->prefered_lft == INFINITY_LIFE_TIME))
4367 continue;
4368
4369 spin_lock(&ifp->lock);
4370
4371 age = (now - ifp->tstamp + ADDRCONF_TIMER_FUZZ_MINUS) / HZ;
4372
4373 if (ifp->valid_lft != INFINITY_LIFE_TIME &&
4374 age >= ifp->valid_lft) {
4375 spin_unlock(&ifp->lock);
4376 in6_ifa_hold(ifp);
4377 ipv6_del_addr(ifp);
4378 goto restart;
4379 } else if (ifp->prefered_lft == INFINITY_LIFE_TIME) {
4380 spin_unlock(&ifp->lock);
4381 continue;
4382 } else if (age >= ifp->prefered_lft) {
4383
4384 int deprecate = 0;
4385
4386 if (!(ifp->flags&IFA_F_DEPRECATED)) {
4387 deprecate = 1;
4388 ifp->flags |= IFA_F_DEPRECATED;
4389 }
4390
4391 if ((ifp->valid_lft != INFINITY_LIFE_TIME) &&
4392 (time_before(ifp->tstamp + ifp->valid_lft * HZ, next)))
4393 next = ifp->tstamp + ifp->valid_lft * HZ;
4394
4395 spin_unlock(&ifp->lock);
4396
4397 if (deprecate) {
4398 in6_ifa_hold(ifp);
4399
4400 ipv6_ifa_notify(0, ifp);
4401 in6_ifa_put(ifp);
4402 goto restart;
4403 }
4404 } else if ((ifp->flags&IFA_F_TEMPORARY) &&
4405 !(ifp->flags&IFA_F_TENTATIVE)) {
4406 unsigned long regen_advance = ifp->idev->cnf.regen_max_retry *
4407 ifp->idev->cnf.dad_transmits *
4408 NEIGH_VAR(ifp->idev->nd_parms, RETRANS_TIME) / HZ;
4409
4410 if (age >= ifp->prefered_lft - regen_advance) {
4411 struct inet6_ifaddr *ifpub = ifp->ifpub;
4412 if (time_before(ifp->tstamp + ifp->prefered_lft * HZ, next))
4413 next = ifp->tstamp + ifp->prefered_lft * HZ;
4414 if (!ifp->regen_count && ifpub) {
4415 ifp->regen_count++;
4416 in6_ifa_hold(ifp);
4417 in6_ifa_hold(ifpub);
4418 spin_unlock(&ifp->lock);
4419
4420 spin_lock(&ifpub->lock);
4421 ifpub->regen_count = 0;
4422 spin_unlock(&ifpub->lock);
4423 rcu_read_unlock_bh();
4424 ipv6_create_tempaddr(ifpub, ifp, true);
4425 in6_ifa_put(ifpub);
4426 in6_ifa_put(ifp);
4427 rcu_read_lock_bh();
4428 goto restart;
4429 }
4430 } else if (time_before(ifp->tstamp + ifp->prefered_lft * HZ - regen_advance * HZ, next))
4431 next = ifp->tstamp + ifp->prefered_lft * HZ - regen_advance * HZ;
4432 spin_unlock(&ifp->lock);
4433 } else {
4434
4435 if (time_before(ifp->tstamp + ifp->prefered_lft * HZ, next))
4436 next = ifp->tstamp + ifp->prefered_lft * HZ;
4437 spin_unlock(&ifp->lock);
4438 }
4439 }
4440 }
4441
4442 next_sec = round_jiffies_up(next);
4443 next_sched = next;
4444
4445
4446 if (time_before(next_sec, next + ADDRCONF_TIMER_FUZZ))
4447 next_sched = next_sec;
4448
4449
4450 if (time_before(next_sched, jiffies + ADDRCONF_TIMER_FUZZ_MAX))
4451 next_sched = jiffies + ADDRCONF_TIMER_FUZZ_MAX;
4452
4453 pr_debug("now = %lu, schedule = %lu, rounded schedule = %lu => %lu\n",
4454 now, next, next_sec, next_sched);
4455 mod_delayed_work(addrconf_wq, &addr_chk_work, next_sched - now);
4456 rcu_read_unlock_bh();
4457}
4458
4459static void addrconf_verify_work(struct work_struct *w)
4460{
4461 rtnl_lock();
4462 addrconf_verify_rtnl();
4463 rtnl_unlock();
4464}
4465
4466static void addrconf_verify(void)
4467{
4468 mod_delayed_work(addrconf_wq, &addr_chk_work, 0);
4469}
4470
4471static struct in6_addr *extract_addr(struct nlattr *addr, struct nlattr *local,
4472 struct in6_addr **peer_pfx)
4473{
4474 struct in6_addr *pfx = NULL;
4475
4476 *peer_pfx = NULL;
4477
4478 if (addr)
4479 pfx = nla_data(addr);
4480
4481 if (local) {
4482 if (pfx && nla_memcmp(local, pfx, sizeof(*pfx)))
4483 *peer_pfx = pfx;
4484 pfx = nla_data(local);
4485 }
4486
4487 return pfx;
4488}
4489
4490static const struct nla_policy ifa_ipv6_policy[IFA_MAX+1] = {
4491 [IFA_ADDRESS] = { .len = sizeof(struct in6_addr) },
4492 [IFA_LOCAL] = { .len = sizeof(struct in6_addr) },
4493 [IFA_CACHEINFO] = { .len = sizeof(struct ifa_cacheinfo) },
4494 [IFA_FLAGS] = { .len = sizeof(u32) },
4495 [IFA_RT_PRIORITY] = { .len = sizeof(u32) },
4496};
4497
4498static int
4499inet6_rtm_deladdr(struct sk_buff *skb, struct nlmsghdr *nlh,
4500 struct netlink_ext_ack *extack)
4501{
4502 struct net *net = sock_net(skb->sk);
4503 struct ifaddrmsg *ifm;
4504 struct nlattr *tb[IFA_MAX+1];
4505 struct in6_addr *pfx, *peer_pfx;
4506 u32 ifa_flags;
4507 int err;
4508
4509 err = nlmsg_parse(nlh, sizeof(*ifm), tb, IFA_MAX, ifa_ipv6_policy,
4510 extack);
4511 if (err < 0)
4512 return err;
4513
4514 ifm = nlmsg_data(nlh);
4515 pfx = extract_addr(tb[IFA_ADDRESS], tb[IFA_LOCAL], &peer_pfx);
4516 if (!pfx)
4517 return -EINVAL;
4518
4519 ifa_flags = tb[IFA_FLAGS] ? nla_get_u32(tb[IFA_FLAGS]) : ifm->ifa_flags;
4520
4521
4522 ifa_flags &= IFA_F_MANAGETEMPADDR;
4523
4524 return inet6_addr_del(net, ifm->ifa_index, ifa_flags, pfx,
4525 ifm->ifa_prefixlen);
4526}
4527
4528static int modify_prefix_route(struct inet6_ifaddr *ifp,
4529 unsigned long expires, u32 flags)
4530{
4531 struct fib6_info *f6i;
4532 u32 prio;
4533
4534 f6i = addrconf_get_prefix_route(&ifp->addr,
4535 ifp->prefix_len,
4536 ifp->idev->dev,
4537 0, RTF_GATEWAY | RTF_DEFAULT);
4538 if (!f6i)
4539 return -ENOENT;
4540
4541 prio = ifp->rt_priority ? : IP6_RT_PRIO_ADDRCONF;
4542 if (f6i->fib6_metric != prio) {
4543
4544 ip6_del_rt(dev_net(ifp->idev->dev), f6i);
4545
4546
4547 addrconf_prefix_route(&ifp->addr, ifp->prefix_len,
4548 ifp->rt_priority, ifp->idev->dev,
4549 expires, flags, GFP_KERNEL);
4550 } else {
4551 if (!expires)
4552 fib6_clean_expires(f6i);
4553 else
4554 fib6_set_expires(f6i, expires);
4555
4556 fib6_info_release(f6i);
4557 }
4558
4559 return 0;
4560}
4561
4562static int inet6_addr_modify(struct inet6_ifaddr *ifp, struct ifa6_config *cfg)
4563{
4564 u32 flags;
4565 clock_t expires;
4566 unsigned long timeout;
4567 bool was_managetempaddr;
4568 bool had_prefixroute;
4569
4570 ASSERT_RTNL();
4571
4572 if (!cfg->valid_lft || cfg->preferred_lft > cfg->valid_lft)
4573 return -EINVAL;
4574
4575 if (cfg->ifa_flags & IFA_F_MANAGETEMPADDR &&
4576 (ifp->flags & IFA_F_TEMPORARY || ifp->prefix_len != 64))
4577 return -EINVAL;
4578
4579 if (!(ifp->flags & IFA_F_TENTATIVE) || ifp->flags & IFA_F_DADFAILED)
4580 cfg->ifa_flags &= ~IFA_F_OPTIMISTIC;
4581
4582 timeout = addrconf_timeout_fixup(cfg->valid_lft, HZ);
4583 if (addrconf_finite_timeout(timeout)) {
4584 expires = jiffies_to_clock_t(timeout * HZ);
4585 cfg->valid_lft = timeout;
4586 flags = RTF_EXPIRES;
4587 } else {
4588 expires = 0;
4589 flags = 0;
4590 cfg->ifa_flags |= IFA_F_PERMANENT;
4591 }
4592
4593 timeout = addrconf_timeout_fixup(cfg->preferred_lft, HZ);
4594 if (addrconf_finite_timeout(timeout)) {
4595 if (timeout == 0)
4596 cfg->ifa_flags |= IFA_F_DEPRECATED;
4597 cfg->preferred_lft = timeout;
4598 }
4599
4600 spin_lock_bh(&ifp->lock);
4601 was_managetempaddr = ifp->flags & IFA_F_MANAGETEMPADDR;
4602 had_prefixroute = ifp->flags & IFA_F_PERMANENT &&
4603 !(ifp->flags & IFA_F_NOPREFIXROUTE);
4604 ifp->flags &= ~(IFA_F_DEPRECATED | IFA_F_PERMANENT | IFA_F_NODAD |
4605 IFA_F_HOMEADDRESS | IFA_F_MANAGETEMPADDR |
4606 IFA_F_NOPREFIXROUTE);
4607 ifp->flags |= cfg->ifa_flags;
4608 ifp->tstamp = jiffies;
4609 ifp->valid_lft = cfg->valid_lft;
4610 ifp->prefered_lft = cfg->preferred_lft;
4611
4612 if (cfg->rt_priority && cfg->rt_priority != ifp->rt_priority)
4613 ifp->rt_priority = cfg->rt_priority;
4614
4615 spin_unlock_bh(&ifp->lock);
4616 if (!(ifp->flags&IFA_F_TENTATIVE))
4617 ipv6_ifa_notify(0, ifp);
4618
4619 if (!(cfg->ifa_flags & IFA_F_NOPREFIXROUTE)) {
4620 int rc = -ENOENT;
4621
4622 if (had_prefixroute)
4623 rc = modify_prefix_route(ifp, expires, flags);
4624
4625
4626 if (rc == -ENOENT) {
4627 addrconf_prefix_route(&ifp->addr, ifp->prefix_len,
4628 ifp->rt_priority, ifp->idev->dev,
4629 expires, flags, GFP_KERNEL);
4630 }
4631 } else if (had_prefixroute) {
4632 enum cleanup_prefix_rt_t action;
4633 unsigned long rt_expires;
4634
4635 write_lock_bh(&ifp->idev->lock);
4636 action = check_cleanup_prefix_route(ifp, &rt_expires);
4637 write_unlock_bh(&ifp->idev->lock);
4638
4639 if (action != CLEANUP_PREFIX_RT_NOP) {
4640 cleanup_prefix_route(ifp, rt_expires,
4641 action == CLEANUP_PREFIX_RT_DEL);
4642 }
4643 }
4644
4645 if (was_managetempaddr || ifp->flags & IFA_F_MANAGETEMPADDR) {
4646 if (was_managetempaddr &&
4647 !(ifp->flags & IFA_F_MANAGETEMPADDR)) {
4648 cfg->valid_lft = 0;
4649 cfg->preferred_lft = 0;
4650 }
4651 manage_tempaddrs(ifp->idev, ifp, cfg->valid_lft,
4652 cfg->preferred_lft, !was_managetempaddr,
4653 jiffies);
4654 }
4655
4656 addrconf_verify_rtnl();
4657
4658 return 0;
4659}
4660
4661static int
4662inet6_rtm_newaddr(struct sk_buff *skb, struct nlmsghdr *nlh,
4663 struct netlink_ext_ack *extack)
4664{
4665 struct net *net = sock_net(skb->sk);
4666 struct ifaddrmsg *ifm;
4667 struct nlattr *tb[IFA_MAX+1];
4668 struct in6_addr *peer_pfx;
4669 struct inet6_ifaddr *ifa;
4670 struct net_device *dev;
4671 struct inet6_dev *idev;
4672 struct ifa6_config cfg;
4673 int err;
4674
4675 err = nlmsg_parse(nlh, sizeof(*ifm), tb, IFA_MAX, ifa_ipv6_policy,
4676 extack);
4677 if (err < 0)
4678 return err;
4679
4680 memset(&cfg, 0, sizeof(cfg));
4681
4682 ifm = nlmsg_data(nlh);
4683 cfg.pfx = extract_addr(tb[IFA_ADDRESS], tb[IFA_LOCAL], &peer_pfx);
4684 if (!cfg.pfx)
4685 return -EINVAL;
4686
4687 cfg.peer_pfx = peer_pfx;
4688 cfg.plen = ifm->ifa_prefixlen;
4689 if (tb[IFA_RT_PRIORITY])
4690 cfg.rt_priority = nla_get_u32(tb[IFA_RT_PRIORITY]);
4691
4692 cfg.valid_lft = INFINITY_LIFE_TIME;
4693 cfg.preferred_lft = INFINITY_LIFE_TIME;
4694
4695 if (tb[IFA_CACHEINFO]) {
4696 struct ifa_cacheinfo *ci;
4697
4698 ci = nla_data(tb[IFA_CACHEINFO]);
4699 cfg.valid_lft = ci->ifa_valid;
4700 cfg.preferred_lft = ci->ifa_prefered;
4701 }
4702
4703 dev = __dev_get_by_index(net, ifm->ifa_index);
4704 if (!dev)
4705 return -ENODEV;
4706
4707 if (tb[IFA_FLAGS])
4708 cfg.ifa_flags = nla_get_u32(tb[IFA_FLAGS]);
4709 else
4710 cfg.ifa_flags = ifm->ifa_flags;
4711
4712
4713 cfg.ifa_flags &= IFA_F_NODAD | IFA_F_HOMEADDRESS |
4714 IFA_F_MANAGETEMPADDR | IFA_F_NOPREFIXROUTE |
4715 IFA_F_MCAUTOJOIN | IFA_F_OPTIMISTIC;
4716
4717 idev = ipv6_find_idev(dev);
4718 if (IS_ERR(idev))
4719 return PTR_ERR(idev);
4720
4721 if (!ipv6_allow_optimistic_dad(net, idev))
4722 cfg.ifa_flags &= ~IFA_F_OPTIMISTIC;
4723
4724 if (cfg.ifa_flags & IFA_F_NODAD &&
4725 cfg.ifa_flags & IFA_F_OPTIMISTIC) {
4726 NL_SET_ERR_MSG(extack, "IFA_F_NODAD and IFA_F_OPTIMISTIC are mutually exclusive");
4727 return -EINVAL;
4728 }
4729
4730 ifa = ipv6_get_ifaddr(net, cfg.pfx, dev, 1);
4731 if (!ifa) {
4732
4733
4734
4735
4736 return inet6_addr_add(net, ifm->ifa_index, &cfg, extack);
4737 }
4738
4739 if (nlh->nlmsg_flags & NLM_F_EXCL ||
4740 !(nlh->nlmsg_flags & NLM_F_REPLACE))
4741 err = -EEXIST;
4742 else
4743 err = inet6_addr_modify(ifa, &cfg);
4744
4745 in6_ifa_put(ifa);
4746
4747 return err;
4748}
4749
4750static void put_ifaddrmsg(struct nlmsghdr *nlh, u8 prefixlen, u32 flags,
4751 u8 scope, int ifindex)
4752{
4753 struct ifaddrmsg *ifm;
4754
4755 ifm = nlmsg_data(nlh);
4756 ifm->ifa_family = AF_INET6;
4757 ifm->ifa_prefixlen = prefixlen;
4758 ifm->ifa_flags = flags;
4759 ifm->ifa_scope = scope;
4760 ifm->ifa_index = ifindex;
4761}
4762
4763static int put_cacheinfo(struct sk_buff *skb, unsigned long cstamp,
4764 unsigned long tstamp, u32 preferred, u32 valid)
4765{
4766 struct ifa_cacheinfo ci;
4767
4768 ci.cstamp = cstamp_delta(cstamp);
4769 ci.tstamp = cstamp_delta(tstamp);
4770 ci.ifa_prefered = preferred;
4771 ci.ifa_valid = valid;
4772
4773 return nla_put(skb, IFA_CACHEINFO, sizeof(ci), &ci);
4774}
4775
4776static inline int rt_scope(int ifa_scope)
4777{
4778 if (ifa_scope & IFA_HOST)
4779 return RT_SCOPE_HOST;
4780 else if (ifa_scope & IFA_LINK)
4781 return RT_SCOPE_LINK;
4782 else if (ifa_scope & IFA_SITE)
4783 return RT_SCOPE_SITE;
4784 else
4785 return RT_SCOPE_UNIVERSE;
4786}
4787
4788static inline int inet6_ifaddr_msgsize(void)
4789{
4790 return NLMSG_ALIGN(sizeof(struct ifaddrmsg))
4791 + nla_total_size(16)
4792 + nla_total_size(16)
4793 + nla_total_size(sizeof(struct ifa_cacheinfo))
4794 + nla_total_size(4)
4795 + nla_total_size(4) ;
4796}
4797
4798static int inet6_fill_ifaddr(struct sk_buff *skb, struct inet6_ifaddr *ifa,
4799 u32 portid, u32 seq, int event, unsigned int flags)
4800{
4801 struct nlmsghdr *nlh;
4802 u32 preferred, valid;
4803
4804 nlh = nlmsg_put(skb, portid, seq, event, sizeof(struct ifaddrmsg), flags);
4805 if (!nlh)
4806 return -EMSGSIZE;
4807
4808 put_ifaddrmsg(nlh, ifa->prefix_len, ifa->flags, rt_scope(ifa->scope),
4809 ifa->idev->dev->ifindex);
4810
4811 if (!((ifa->flags&IFA_F_PERMANENT) &&
4812 (ifa->prefered_lft == INFINITY_LIFE_TIME))) {
4813 preferred = ifa->prefered_lft;
4814 valid = ifa->valid_lft;
4815 if (preferred != INFINITY_LIFE_TIME) {
4816 long tval = (jiffies - ifa->tstamp)/HZ;
4817 if (preferred > tval)
4818 preferred -= tval;
4819 else
4820 preferred = 0;
4821 if (valid != INFINITY_LIFE_TIME) {
4822 if (valid > tval)
4823 valid -= tval;
4824 else
4825 valid = 0;
4826 }
4827 }
4828 } else {
4829 preferred = INFINITY_LIFE_TIME;
4830 valid = INFINITY_LIFE_TIME;
4831 }
4832
4833 if (!ipv6_addr_any(&ifa->peer_addr)) {
4834 if (nla_put_in6_addr(skb, IFA_LOCAL, &ifa->addr) < 0 ||
4835 nla_put_in6_addr(skb, IFA_ADDRESS, &ifa->peer_addr) < 0)
4836 goto error;
4837 } else
4838 if (nla_put_in6_addr(skb, IFA_ADDRESS, &ifa->addr) < 0)
4839 goto error;
4840
4841 if (ifa->rt_priority &&
4842 nla_put_u32(skb, IFA_RT_PRIORITY, ifa->rt_priority))
4843 goto error;
4844
4845 if (put_cacheinfo(skb, ifa->cstamp, ifa->tstamp, preferred, valid) < 0)
4846 goto error;
4847
4848 if (nla_put_u32(skb, IFA_FLAGS, ifa->flags) < 0)
4849 goto error;
4850
4851 nlmsg_end(skb, nlh);
4852 return 0;
4853
4854error:
4855 nlmsg_cancel(skb, nlh);
4856 return -EMSGSIZE;
4857}
4858
4859static int inet6_fill_ifmcaddr(struct sk_buff *skb, struct ifmcaddr6 *ifmca,
4860 u32 portid, u32 seq, int event, u16 flags)
4861{
4862 struct nlmsghdr *nlh;
4863 u8 scope = RT_SCOPE_UNIVERSE;
4864 int ifindex = ifmca->idev->dev->ifindex;
4865
4866 if (ipv6_addr_scope(&ifmca->mca_addr) & IFA_SITE)
4867 scope = RT_SCOPE_SITE;
4868
4869 nlh = nlmsg_put(skb, portid, seq, event, sizeof(struct ifaddrmsg), flags);
4870 if (!nlh)
4871 return -EMSGSIZE;
4872
4873 put_ifaddrmsg(nlh, 128, IFA_F_PERMANENT, scope, ifindex);
4874 if (nla_put_in6_addr(skb, IFA_MULTICAST, &ifmca->mca_addr) < 0 ||
4875 put_cacheinfo(skb, ifmca->mca_cstamp, ifmca->mca_tstamp,
4876 INFINITY_LIFE_TIME, INFINITY_LIFE_TIME) < 0) {
4877 nlmsg_cancel(skb, nlh);
4878 return -EMSGSIZE;
4879 }
4880
4881 nlmsg_end(skb, nlh);
4882 return 0;
4883}
4884
4885static int inet6_fill_ifacaddr(struct sk_buff *skb, struct ifacaddr6 *ifaca,
4886 u32 portid, u32 seq, int event, unsigned int flags)
4887{
4888 struct net_device *dev = fib6_info_nh_dev(ifaca->aca_rt);
4889 int ifindex = dev ? dev->ifindex : 1;
4890 struct nlmsghdr *nlh;
4891 u8 scope = RT_SCOPE_UNIVERSE;
4892
4893 if (ipv6_addr_scope(&ifaca->aca_addr) & IFA_SITE)
4894 scope = RT_SCOPE_SITE;
4895
4896 nlh = nlmsg_put(skb, portid, seq, event, sizeof(struct ifaddrmsg), flags);
4897 if (!nlh)
4898 return -EMSGSIZE;
4899
4900 put_ifaddrmsg(nlh, 128, IFA_F_PERMANENT, scope, ifindex);
4901 if (nla_put_in6_addr(skb, IFA_ANYCAST, &ifaca->aca_addr) < 0 ||
4902 put_cacheinfo(skb, ifaca->aca_cstamp, ifaca->aca_tstamp,
4903 INFINITY_LIFE_TIME, INFINITY_LIFE_TIME) < 0) {
4904 nlmsg_cancel(skb, nlh);
4905 return -EMSGSIZE;
4906 }
4907
4908 nlmsg_end(skb, nlh);
4909 return 0;
4910}
4911
4912enum addr_type_t {
4913 UNICAST_ADDR,
4914 MULTICAST_ADDR,
4915 ANYCAST_ADDR,
4916};
4917
4918
4919static int in6_dump_addrs(struct inet6_dev *idev, struct sk_buff *skb,
4920 struct netlink_callback *cb, enum addr_type_t type,
4921 int s_ip_idx, int *p_ip_idx)
4922{
4923 struct ifmcaddr6 *ifmca;
4924 struct ifacaddr6 *ifaca;
4925 int err = 1;
4926 int ip_idx = *p_ip_idx;
4927
4928 read_lock_bh(&idev->lock);
4929 switch (type) {
4930 case UNICAST_ADDR: {
4931 struct inet6_ifaddr *ifa;
4932
4933
4934 list_for_each_entry(ifa, &idev->addr_list, if_list) {
4935 if (++ip_idx < s_ip_idx)
4936 continue;
4937 err = inet6_fill_ifaddr(skb, ifa,
4938 NETLINK_CB(cb->skb).portid,
4939 cb->nlh->nlmsg_seq,
4940 RTM_NEWADDR,
4941 NLM_F_MULTI);
4942 if (err < 0)
4943 break;
4944 nl_dump_check_consistent(cb, nlmsg_hdr(skb));
4945 }
4946 break;
4947 }
4948 case MULTICAST_ADDR:
4949
4950 for (ifmca = idev->mc_list; ifmca;
4951 ifmca = ifmca->next, ip_idx++) {
4952 if (ip_idx < s_ip_idx)
4953 continue;
4954 err = inet6_fill_ifmcaddr(skb, ifmca,
4955 NETLINK_CB(cb->skb).portid,
4956 cb->nlh->nlmsg_seq,
4957 RTM_GETMULTICAST,
4958 NLM_F_MULTI);
4959 if (err < 0)
4960 break;
4961 }
4962 break;
4963 case ANYCAST_ADDR:
4964
4965 for (ifaca = idev->ac_list; ifaca;
4966 ifaca = ifaca->aca_next, ip_idx++) {
4967 if (ip_idx < s_ip_idx)
4968 continue;
4969 err = inet6_fill_ifacaddr(skb, ifaca,
4970 NETLINK_CB(cb->skb).portid,
4971 cb->nlh->nlmsg_seq,
4972 RTM_GETANYCAST,
4973 NLM_F_MULTI);
4974 if (err < 0)
4975 break;
4976 }
4977 break;
4978 default:
4979 break;
4980 }
4981 read_unlock_bh(&idev->lock);
4982 *p_ip_idx = ip_idx;
4983 return err;
4984}
4985
4986static int inet6_dump_addr(struct sk_buff *skb, struct netlink_callback *cb,
4987 enum addr_type_t type)
4988{
4989 struct net *net = sock_net(skb->sk);
4990 int h, s_h;
4991 int idx, ip_idx;
4992 int s_idx, s_ip_idx;
4993 struct net_device *dev;
4994 struct inet6_dev *idev;
4995 struct hlist_head *head;
4996
4997 s_h = cb->args[0];
4998 s_idx = idx = cb->args[1];
4999 s_ip_idx = ip_idx = cb->args[2];
5000
5001 rcu_read_lock();
5002 cb->seq = atomic_read(&net->ipv6.dev_addr_genid) ^ net->dev_base_seq;
5003 for (h = s_h; h < NETDEV_HASHENTRIES; h++, s_idx = 0) {
5004 idx = 0;
5005 head = &net->dev_index_head[h];
5006 hlist_for_each_entry_rcu(dev, head, index_hlist) {
5007 if (idx < s_idx)
5008 goto cont;
5009 if (h > s_h || idx > s_idx)
5010 s_ip_idx = 0;
5011 ip_idx = 0;
5012 idev = __in6_dev_get(dev);
5013 if (!idev)
5014 goto cont;
5015
5016 if (in6_dump_addrs(idev, skb, cb, type,
5017 s_ip_idx, &ip_idx) < 0)
5018 goto done;
5019cont:
5020 idx++;
5021 }
5022 }
5023done:
5024 rcu_read_unlock();
5025 cb->args[0] = h;
5026 cb->args[1] = idx;
5027 cb->args[2] = ip_idx;
5028
5029 return skb->len;
5030}
5031
5032static int inet6_dump_ifaddr(struct sk_buff *skb, struct netlink_callback *cb)
5033{
5034 enum addr_type_t type = UNICAST_ADDR;
5035
5036 return inet6_dump_addr(skb, cb, type);
5037}
5038
5039static int inet6_dump_ifmcaddr(struct sk_buff *skb, struct netlink_callback *cb)
5040{
5041 enum addr_type_t type = MULTICAST_ADDR;
5042
5043 return inet6_dump_addr(skb, cb, type);
5044}
5045
5046
5047static int inet6_dump_ifacaddr(struct sk_buff *skb, struct netlink_callback *cb)
5048{
5049 enum addr_type_t type = ANYCAST_ADDR;
5050
5051 return inet6_dump_addr(skb, cb, type);
5052}
5053
5054static int inet6_rtm_getaddr(struct sk_buff *in_skb, struct nlmsghdr *nlh,
5055 struct netlink_ext_ack *extack)
5056{
5057 struct net *net = sock_net(in_skb->sk);
5058 struct ifaddrmsg *ifm;
5059 struct nlattr *tb[IFA_MAX+1];
5060 struct in6_addr *addr = NULL, *peer;
5061 struct net_device *dev = NULL;
5062 struct inet6_ifaddr *ifa;
5063 struct sk_buff *skb;
5064 int err;
5065
5066 err = nlmsg_parse(nlh, sizeof(*ifm), tb, IFA_MAX, ifa_ipv6_policy,
5067 extack);
5068 if (err < 0)
5069 return err;
5070
5071 addr = extract_addr(tb[IFA_ADDRESS], tb[IFA_LOCAL], &peer);
5072 if (!addr)
5073 return -EINVAL;
5074
5075 ifm = nlmsg_data(nlh);
5076 if (ifm->ifa_index)
5077 dev = dev_get_by_index(net, ifm->ifa_index);
5078
5079 ifa = ipv6_get_ifaddr(net, addr, dev, 1);
5080 if (!ifa) {
5081 err = -EADDRNOTAVAIL;
5082 goto errout;
5083 }
5084
5085 skb = nlmsg_new(inet6_ifaddr_msgsize(), GFP_KERNEL);
5086 if (!skb) {
5087 err = -ENOBUFS;
5088 goto errout_ifa;
5089 }
5090
5091 err = inet6_fill_ifaddr(skb, ifa, NETLINK_CB(in_skb).portid,
5092 nlh->nlmsg_seq, RTM_NEWADDR, 0);
5093 if (err < 0) {
5094
5095 WARN_ON(err == -EMSGSIZE);
5096 kfree_skb(skb);
5097 goto errout_ifa;
5098 }
5099 err = rtnl_unicast(skb, net, NETLINK_CB(in_skb).portid);
5100errout_ifa:
5101 in6_ifa_put(ifa);
5102errout:
5103 if (dev)
5104 dev_put(dev);
5105 return err;
5106}
5107
5108static void inet6_ifa_notify(int event, struct inet6_ifaddr *ifa)
5109{
5110 struct sk_buff *skb;
5111 struct net *net = dev_net(ifa->idev->dev);
5112 int err = -ENOBUFS;
5113
5114 skb = nlmsg_new(inet6_ifaddr_msgsize(), GFP_ATOMIC);
5115 if (!skb)
5116 goto errout;
5117
5118 err = inet6_fill_ifaddr(skb, ifa, 0, 0, event, 0);
5119 if (err < 0) {
5120
5121 WARN_ON(err == -EMSGSIZE);
5122 kfree_skb(skb);
5123 goto errout;
5124 }
5125 rtnl_notify(skb, net, 0, RTNLGRP_IPV6_IFADDR, NULL, GFP_ATOMIC);
5126 return;
5127errout:
5128 if (err < 0)
5129 rtnl_set_sk_err(net, RTNLGRP_IPV6_IFADDR, err);
5130}
5131
5132static inline void ipv6_store_devconf(struct ipv6_devconf *cnf,
5133 __s32 *array, int bytes)
5134{
5135 BUG_ON(bytes < (DEVCONF_MAX * 4));
5136
5137 memset(array, 0, bytes);
5138 array[DEVCONF_FORWARDING] = cnf->forwarding;
5139 array[DEVCONF_HOPLIMIT] = cnf->hop_limit;
5140 array[DEVCONF_MTU6] = cnf->mtu6;
5141 array[DEVCONF_ACCEPT_RA] = cnf->accept_ra;
5142 array[DEVCONF_ACCEPT_REDIRECTS] = cnf->accept_redirects;
5143 array[DEVCONF_AUTOCONF] = cnf->autoconf;
5144 array[DEVCONF_DAD_TRANSMITS] = cnf->dad_transmits;
5145 array[DEVCONF_RTR_SOLICITS] = cnf->rtr_solicits;
5146 array[DEVCONF_RTR_SOLICIT_INTERVAL] =
5147 jiffies_to_msecs(cnf->rtr_solicit_interval);
5148 array[DEVCONF_RTR_SOLICIT_MAX_INTERVAL] =
5149 jiffies_to_msecs(cnf->rtr_solicit_max_interval);
5150 array[DEVCONF_RTR_SOLICIT_DELAY] =
5151 jiffies_to_msecs(cnf->rtr_solicit_delay);
5152 array[DEVCONF_FORCE_MLD_VERSION] = cnf->force_mld_version;
5153 array[DEVCONF_MLDV1_UNSOLICITED_REPORT_INTERVAL] =
5154 jiffies_to_msecs(cnf->mldv1_unsolicited_report_interval);
5155 array[DEVCONF_MLDV2_UNSOLICITED_REPORT_INTERVAL] =
5156 jiffies_to_msecs(cnf->mldv2_unsolicited_report_interval);
5157 array[DEVCONF_USE_TEMPADDR] = cnf->use_tempaddr;
5158 array[DEVCONF_TEMP_VALID_LFT] = cnf->temp_valid_lft;
5159 array[DEVCONF_TEMP_PREFERED_LFT] = cnf->temp_prefered_lft;
5160 array[DEVCONF_REGEN_MAX_RETRY] = cnf->regen_max_retry;
5161 array[DEVCONF_MAX_DESYNC_FACTOR] = cnf->max_desync_factor;
5162 array[DEVCONF_MAX_ADDRESSES] = cnf->max_addresses;
5163 array[DEVCONF_ACCEPT_RA_DEFRTR] = cnf->accept_ra_defrtr;
5164 array[DEVCONF_ACCEPT_RA_MIN_HOP_LIMIT] = cnf->accept_ra_min_hop_limit;
5165 array[DEVCONF_ACCEPT_RA_PINFO] = cnf->accept_ra_pinfo;
5166#ifdef CONFIG_IPV6_ROUTER_PREF
5167 array[DEVCONF_ACCEPT_RA_RTR_PREF] = cnf->accept_ra_rtr_pref;
5168 array[DEVCONF_RTR_PROBE_INTERVAL] =
5169 jiffies_to_msecs(cnf->rtr_probe_interval);
5170#ifdef CONFIG_IPV6_ROUTE_INFO
5171 array[DEVCONF_ACCEPT_RA_RT_INFO_MIN_PLEN] = cnf->accept_ra_rt_info_min_plen;
5172 array[DEVCONF_ACCEPT_RA_RT_INFO_MAX_PLEN] = cnf->accept_ra_rt_info_max_plen;
5173#endif
5174#endif
5175 array[DEVCONF_PROXY_NDP] = cnf->proxy_ndp;
5176 array[DEVCONF_ACCEPT_SOURCE_ROUTE] = cnf->accept_source_route;
5177#ifdef CONFIG_IPV6_OPTIMISTIC_DAD
5178 array[DEVCONF_OPTIMISTIC_DAD] = cnf->optimistic_dad;
5179 array[DEVCONF_USE_OPTIMISTIC] = cnf->use_optimistic;
5180#endif
5181#ifdef CONFIG_IPV6_MROUTE
5182 array[DEVCONF_MC_FORWARDING] = cnf->mc_forwarding;
5183#endif
5184 array[DEVCONF_DISABLE_IPV6] = cnf->disable_ipv6;
5185 array[DEVCONF_ACCEPT_DAD] = cnf->accept_dad;
5186 array[DEVCONF_FORCE_TLLAO] = cnf->force_tllao;
5187 array[DEVCONF_NDISC_NOTIFY] = cnf->ndisc_notify;
5188 array[DEVCONF_SUPPRESS_FRAG_NDISC] = cnf->suppress_frag_ndisc;
5189 array[DEVCONF_ACCEPT_RA_FROM_LOCAL] = cnf->accept_ra_from_local;
5190 array[DEVCONF_ACCEPT_RA_MTU] = cnf->accept_ra_mtu;
5191 array[DEVCONF_IGNORE_ROUTES_WITH_LINKDOWN] = cnf->ignore_routes_with_linkdown;
5192
5193 array[DEVCONF_USE_OIF_ADDRS_ONLY] = cnf->use_oif_addrs_only;
5194 array[DEVCONF_DROP_UNICAST_IN_L2_MULTICAST] = cnf->drop_unicast_in_l2_multicast;
5195 array[DEVCONF_DROP_UNSOLICITED_NA] = cnf->drop_unsolicited_na;
5196 array[DEVCONF_KEEP_ADDR_ON_DOWN] = cnf->keep_addr_on_down;
5197 array[DEVCONF_SEG6_ENABLED] = cnf->seg6_enabled;
5198#ifdef CONFIG_IPV6_SEG6_HMAC
5199 array[DEVCONF_SEG6_REQUIRE_HMAC] = cnf->seg6_require_hmac;
5200#endif
5201 array[DEVCONF_ENHANCED_DAD] = cnf->enhanced_dad;
5202 array[DEVCONF_ADDR_GEN_MODE] = cnf->addr_gen_mode;
5203 array[DEVCONF_DISABLE_POLICY] = cnf->disable_policy;
5204 array[DEVCONF_NDISC_TCLASS] = cnf->ndisc_tclass;
5205}
5206
5207static inline size_t inet6_ifla6_size(void)
5208{
5209 return nla_total_size(4)
5210 + nla_total_size(sizeof(struct ifla_cacheinfo))
5211 + nla_total_size(DEVCONF_MAX * 4)
5212 + nla_total_size(IPSTATS_MIB_MAX * 8)
5213 + nla_total_size(ICMP6_MIB_MAX * 8)
5214 + nla_total_size(sizeof(struct in6_addr));
5215}
5216
5217static inline size_t inet6_if_nlmsg_size(void)
5218{
5219 return NLMSG_ALIGN(sizeof(struct ifinfomsg))
5220 + nla_total_size(IFNAMSIZ)
5221 + nla_total_size(MAX_ADDR_LEN)
5222 + nla_total_size(4)
5223 + nla_total_size(4)
5224 + nla_total_size(1)
5225 + nla_total_size(inet6_ifla6_size());
5226}
5227
5228static inline void __snmp6_fill_statsdev(u64 *stats, atomic_long_t *mib,
5229 int bytes)
5230{
5231 int i;
5232 int pad = bytes - sizeof(u64) * ICMP6_MIB_MAX;
5233 BUG_ON(pad < 0);
5234
5235
5236 put_unaligned(ICMP6_MIB_MAX, &stats[0]);
5237 for (i = 1; i < ICMP6_MIB_MAX; i++)
5238 put_unaligned(atomic_long_read(&mib[i]), &stats[i]);
5239
5240 memset(&stats[ICMP6_MIB_MAX], 0, pad);
5241}
5242
5243static inline void __snmp6_fill_stats64(u64 *stats, void __percpu *mib,
5244 int bytes, size_t syncpoff)
5245{
5246 int i, c;
5247 u64 buff[IPSTATS_MIB_MAX];
5248 int pad = bytes - sizeof(u64) * IPSTATS_MIB_MAX;
5249
5250 BUG_ON(pad < 0);
5251
5252 memset(buff, 0, sizeof(buff));
5253 buff[0] = IPSTATS_MIB_MAX;
5254
5255 for_each_possible_cpu(c) {
5256 for (i = 1; i < IPSTATS_MIB_MAX; i++)
5257 buff[i] += snmp_get_cpu_field64(mib, c, i, syncpoff);
5258 }
5259
5260 memcpy(stats, buff, IPSTATS_MIB_MAX * sizeof(u64));
5261 memset(&stats[IPSTATS_MIB_MAX], 0, pad);
5262}
5263
5264static void snmp6_fill_stats(u64 *stats, struct inet6_dev *idev, int attrtype,
5265 int bytes)
5266{
5267 switch (attrtype) {
5268 case IFLA_INET6_STATS:
5269 __snmp6_fill_stats64(stats, idev->stats.ipv6, bytes,
5270 offsetof(struct ipstats_mib, syncp));
5271 break;
5272 case IFLA_INET6_ICMP6STATS:
5273 __snmp6_fill_statsdev(stats, idev->stats.icmpv6dev->mibs, bytes);
5274 break;
5275 }
5276}
5277
5278static int inet6_fill_ifla6_attrs(struct sk_buff *skb, struct inet6_dev *idev,
5279 u32 ext_filter_mask)
5280{
5281 struct nlattr *nla;
5282 struct ifla_cacheinfo ci;
5283
5284 if (nla_put_u32(skb, IFLA_INET6_FLAGS, idev->if_flags))
5285 goto nla_put_failure;
5286 ci.max_reasm_len = IPV6_MAXPLEN;
5287 ci.tstamp = cstamp_delta(idev->tstamp);
5288 ci.reachable_time = jiffies_to_msecs(idev->nd_parms->reachable_time);
5289 ci.retrans_time = jiffies_to_msecs(NEIGH_VAR(idev->nd_parms, RETRANS_TIME));
5290 if (nla_put(skb, IFLA_INET6_CACHEINFO, sizeof(ci), &ci))
5291 goto nla_put_failure;
5292 nla = nla_reserve(skb, IFLA_INET6_CONF, DEVCONF_MAX * sizeof(s32));
5293 if (!nla)
5294 goto nla_put_failure;
5295 ipv6_store_devconf(&idev->cnf, nla_data(nla), nla_len(nla));
5296
5297
5298
5299 if (ext_filter_mask & RTEXT_FILTER_SKIP_STATS)
5300 return 0;
5301
5302 nla = nla_reserve(skb, IFLA_INET6_STATS, IPSTATS_MIB_MAX * sizeof(u64));
5303 if (!nla)
5304 goto nla_put_failure;
5305 snmp6_fill_stats(nla_data(nla), idev, IFLA_INET6_STATS, nla_len(nla));
5306
5307 nla = nla_reserve(skb, IFLA_INET6_ICMP6STATS, ICMP6_MIB_MAX * sizeof(u64));
5308 if (!nla)
5309 goto nla_put_failure;
5310 snmp6_fill_stats(nla_data(nla), idev, IFLA_INET6_ICMP6STATS, nla_len(nla));
5311
5312 nla = nla_reserve(skb, IFLA_INET6_TOKEN, sizeof(struct in6_addr));
5313 if (!nla)
5314 goto nla_put_failure;
5315
5316 if (nla_put_u8(skb, IFLA_INET6_ADDR_GEN_MODE, idev->cnf.addr_gen_mode))
5317 goto nla_put_failure;
5318
5319 read_lock_bh(&idev->lock);
5320 memcpy(nla_data(nla), idev->token.s6_addr, nla_len(nla));
5321 read_unlock_bh(&idev->lock);
5322
5323 return 0;
5324
5325nla_put_failure:
5326 return -EMSGSIZE;
5327}
5328
5329static size_t inet6_get_link_af_size(const struct net_device *dev,
5330 u32 ext_filter_mask)
5331{
5332 if (!__in6_dev_get(dev))
5333 return 0;
5334
5335 return inet6_ifla6_size();
5336}
5337
5338static int inet6_fill_link_af(struct sk_buff *skb, const struct net_device *dev,
5339 u32 ext_filter_mask)
5340{
5341 struct inet6_dev *idev = __in6_dev_get(dev);
5342
5343 if (!idev)
5344 return -ENODATA;
5345
5346 if (inet6_fill_ifla6_attrs(skb, idev, ext_filter_mask) < 0)
5347 return -EMSGSIZE;
5348
5349 return 0;
5350}
5351
5352static int inet6_set_iftoken(struct inet6_dev *idev, struct in6_addr *token)
5353{
5354 struct inet6_ifaddr *ifp;
5355 struct net_device *dev = idev->dev;
5356 bool clear_token, update_rs = false;
5357 struct in6_addr ll_addr;
5358
5359 ASSERT_RTNL();
5360
5361 if (!token)
5362 return -EINVAL;
5363 if (dev->flags & (IFF_LOOPBACK | IFF_NOARP))
5364 return -EINVAL;
5365 if (!ipv6_accept_ra(idev))
5366 return -EINVAL;
5367 if (idev->cnf.rtr_solicits == 0)
5368 return -EINVAL;
5369
5370 write_lock_bh(&idev->lock);
5371
5372 BUILD_BUG_ON(sizeof(token->s6_addr) != 16);
5373 memcpy(idev->token.s6_addr + 8, token->s6_addr + 8, 8);
5374
5375 write_unlock_bh(&idev->lock);
5376
5377 clear_token = ipv6_addr_any(token);
5378 if (clear_token)
5379 goto update_lft;
5380
5381 if (!idev->dead && (idev->if_flags & IF_READY) &&
5382 !ipv6_get_lladdr(dev, &ll_addr, IFA_F_TENTATIVE |
5383 IFA_F_OPTIMISTIC)) {
5384
5385
5386
5387 ndisc_send_rs(dev, &ll_addr, &in6addr_linklocal_allrouters);
5388 update_rs = true;
5389 }
5390
5391update_lft:
5392 write_lock_bh(&idev->lock);
5393
5394 if (update_rs) {
5395 idev->if_flags |= IF_RS_SENT;
5396 idev->rs_interval = rfc3315_s14_backoff_init(
5397 idev->cnf.rtr_solicit_interval);
5398 idev->rs_probes = 1;
5399 addrconf_mod_rs_timer(idev, idev->rs_interval);
5400 }
5401
5402
5403 list_for_each_entry(ifp, &idev->addr_list, if_list) {
5404 spin_lock(&ifp->lock);
5405 if (ifp->tokenized) {
5406 ifp->valid_lft = 0;
5407 ifp->prefered_lft = 0;
5408 }
5409 spin_unlock(&ifp->lock);
5410 }
5411
5412 write_unlock_bh(&idev->lock);
5413 inet6_ifinfo_notify(RTM_NEWLINK, idev);
5414 addrconf_verify_rtnl();
5415 return 0;
5416}
5417
5418static const struct nla_policy inet6_af_policy[IFLA_INET6_MAX + 1] = {
5419 [IFLA_INET6_ADDR_GEN_MODE] = { .type = NLA_U8 },
5420 [IFLA_INET6_TOKEN] = { .len = sizeof(struct in6_addr) },
5421};
5422
5423static int inet6_validate_link_af(const struct net_device *dev,
5424 const struct nlattr *nla)
5425{
5426 struct nlattr *tb[IFLA_INET6_MAX + 1];
5427
5428 if (dev && !__in6_dev_get(dev))
5429 return -EAFNOSUPPORT;
5430
5431 return nla_parse_nested(tb, IFLA_INET6_MAX, nla, inet6_af_policy,
5432 NULL);
5433}
5434
5435static int check_addr_gen_mode(int mode)
5436{
5437 if (mode != IN6_ADDR_GEN_MODE_EUI64 &&
5438 mode != IN6_ADDR_GEN_MODE_NONE &&
5439 mode != IN6_ADDR_GEN_MODE_STABLE_PRIVACY &&
5440 mode != IN6_ADDR_GEN_MODE_RANDOM)
5441 return -EINVAL;
5442 return 1;
5443}
5444
5445static int check_stable_privacy(struct inet6_dev *idev, struct net *net,
5446 int mode)
5447{
5448 if (mode == IN6_ADDR_GEN_MODE_STABLE_PRIVACY &&
5449 !idev->cnf.stable_secret.initialized &&
5450 !net->ipv6.devconf_dflt->stable_secret.initialized)
5451 return -EINVAL;
5452 return 1;
5453}
5454
5455static int inet6_set_link_af(struct net_device *dev, const struct nlattr *nla)
5456{
5457 int err = -EINVAL;
5458 struct inet6_dev *idev = __in6_dev_get(dev);
5459 struct nlattr *tb[IFLA_INET6_MAX + 1];
5460
5461 if (!idev)
5462 return -EAFNOSUPPORT;
5463
5464 if (nla_parse_nested(tb, IFLA_INET6_MAX, nla, NULL, NULL) < 0)
5465 BUG();
5466
5467 if (tb[IFLA_INET6_TOKEN]) {
5468 err = inet6_set_iftoken(idev, nla_data(tb[IFLA_INET6_TOKEN]));
5469 if (err)
5470 return err;
5471 }
5472
5473 if (tb[IFLA_INET6_ADDR_GEN_MODE]) {
5474 u8 mode = nla_get_u8(tb[IFLA_INET6_ADDR_GEN_MODE]);
5475
5476 if (check_addr_gen_mode(mode) < 0 ||
5477 check_stable_privacy(idev, dev_net(dev), mode) < 0)
5478 return -EINVAL;
5479
5480 idev->cnf.addr_gen_mode = mode;
5481 err = 0;
5482 }
5483
5484 return err;
5485}
5486
5487static int inet6_fill_ifinfo(struct sk_buff *skb, struct inet6_dev *idev,
5488 u32 portid, u32 seq, int event, unsigned int flags)
5489{
5490 struct net_device *dev = idev->dev;
5491 struct ifinfomsg *hdr;
5492 struct nlmsghdr *nlh;
5493 void *protoinfo;
5494
5495 nlh = nlmsg_put(skb, portid, seq, event, sizeof(*hdr), flags);
5496 if (!nlh)
5497 return -EMSGSIZE;
5498
5499 hdr = nlmsg_data(nlh);
5500 hdr->ifi_family = AF_INET6;
5501 hdr->__ifi_pad = 0;
5502 hdr->ifi_type = dev->type;
5503 hdr->ifi_index = dev->ifindex;
5504 hdr->ifi_flags = dev_get_flags(dev);
5505 hdr->ifi_change = 0;
5506
5507 if (nla_put_string(skb, IFLA_IFNAME, dev->name) ||
5508 (dev->addr_len &&
5509 nla_put(skb, IFLA_ADDRESS, dev->addr_len, dev->dev_addr)) ||
5510 nla_put_u32(skb, IFLA_MTU, dev->mtu) ||
5511 (dev->ifindex != dev_get_iflink(dev) &&
5512 nla_put_u32(skb, IFLA_LINK, dev_get_iflink(dev))) ||
5513 nla_put_u8(skb, IFLA_OPERSTATE,
5514 netif_running(dev) ? dev->operstate : IF_OPER_DOWN))
5515 goto nla_put_failure;
5516 protoinfo = nla_nest_start(skb, IFLA_PROTINFO);
5517 if (!protoinfo)
5518 goto nla_put_failure;
5519
5520 if (inet6_fill_ifla6_attrs(skb, idev, 0) < 0)
5521 goto nla_put_failure;
5522
5523 nla_nest_end(skb, protoinfo);
5524 nlmsg_end(skb, nlh);
5525 return 0;
5526
5527nla_put_failure:
5528 nlmsg_cancel(skb, nlh);
5529 return -EMSGSIZE;
5530}
5531
5532static int inet6_dump_ifinfo(struct sk_buff *skb, struct netlink_callback *cb)
5533{
5534 struct net *net = sock_net(skb->sk);
5535 int h, s_h;
5536 int idx = 0, s_idx;
5537 struct net_device *dev;
5538 struct inet6_dev *idev;
5539 struct hlist_head *head;
5540
5541 s_h = cb->args[0];
5542 s_idx = cb->args[1];
5543
5544 rcu_read_lock();
5545 for (h = s_h; h < NETDEV_HASHENTRIES; h++, s_idx = 0) {
5546 idx = 0;
5547 head = &net->dev_index_head[h];
5548 hlist_for_each_entry_rcu(dev, head, index_hlist) {
5549 if (idx < s_idx)
5550 goto cont;
5551 idev = __in6_dev_get(dev);
5552 if (!idev)
5553 goto cont;
5554 if (inet6_fill_ifinfo(skb, idev,
5555 NETLINK_CB(cb->skb).portid,
5556 cb->nlh->nlmsg_seq,
5557 RTM_NEWLINK, NLM_F_MULTI) < 0)
5558 goto out;
5559cont:
5560 idx++;
5561 }
5562 }
5563out:
5564 rcu_read_unlock();
5565 cb->args[1] = idx;
5566 cb->args[0] = h;
5567
5568 return skb->len;
5569}
5570
5571void inet6_ifinfo_notify(int event, struct inet6_dev *idev)
5572{
5573 struct sk_buff *skb;
5574 struct net *net = dev_net(idev->dev);
5575 int err = -ENOBUFS;
5576
5577 skb = nlmsg_new(inet6_if_nlmsg_size(), GFP_ATOMIC);
5578 if (!skb)
5579 goto errout;
5580
5581 err = inet6_fill_ifinfo(skb, idev, 0, 0, event, 0);
5582 if (err < 0) {
5583
5584 WARN_ON(err == -EMSGSIZE);
5585 kfree_skb(skb);
5586 goto errout;
5587 }
5588 rtnl_notify(skb, net, 0, RTNLGRP_IPV6_IFINFO, NULL, GFP_ATOMIC);
5589 return;
5590errout:
5591 if (err < 0)
5592 rtnl_set_sk_err(net, RTNLGRP_IPV6_IFINFO, err);
5593}
5594
5595static inline size_t inet6_prefix_nlmsg_size(void)
5596{
5597 return NLMSG_ALIGN(sizeof(struct prefixmsg))
5598 + nla_total_size(sizeof(struct in6_addr))
5599 + nla_total_size(sizeof(struct prefix_cacheinfo));
5600}
5601
5602static int inet6_fill_prefix(struct sk_buff *skb, struct inet6_dev *idev,
5603 struct prefix_info *pinfo, u32 portid, u32 seq,
5604 int event, unsigned int flags)
5605{
5606 struct prefixmsg *pmsg;
5607 struct nlmsghdr *nlh;
5608 struct prefix_cacheinfo ci;
5609
5610 nlh = nlmsg_put(skb, portid, seq, event, sizeof(*pmsg), flags);
5611 if (!nlh)
5612 return -EMSGSIZE;
5613
5614 pmsg = nlmsg_data(nlh);
5615 pmsg->prefix_family = AF_INET6;
5616 pmsg->prefix_pad1 = 0;
5617 pmsg->prefix_pad2 = 0;
5618 pmsg->prefix_ifindex = idev->dev->ifindex;
5619 pmsg->prefix_len = pinfo->prefix_len;
5620 pmsg->prefix_type = pinfo->type;
5621 pmsg->prefix_pad3 = 0;
5622 pmsg->prefix_flags = 0;
5623 if (pinfo->onlink)
5624 pmsg->prefix_flags |= IF_PREFIX_ONLINK;
5625 if (pinfo->autoconf)
5626 pmsg->prefix_flags |= IF_PREFIX_AUTOCONF;
5627
5628 if (nla_put(skb, PREFIX_ADDRESS, sizeof(pinfo->prefix), &pinfo->prefix))
5629 goto nla_put_failure;
5630 ci.preferred_time = ntohl(pinfo->prefered);
5631 ci.valid_time = ntohl(pinfo->valid);
5632 if (nla_put(skb, PREFIX_CACHEINFO, sizeof(ci), &ci))
5633 goto nla_put_failure;
5634 nlmsg_end(skb, nlh);
5635 return 0;
5636
5637nla_put_failure:
5638 nlmsg_cancel(skb, nlh);
5639 return -EMSGSIZE;
5640}
5641
5642static void inet6_prefix_notify(int event, struct inet6_dev *idev,
5643 struct prefix_info *pinfo)
5644{
5645 struct sk_buff *skb;
5646 struct net *net = dev_net(idev->dev);
5647 int err = -ENOBUFS;
5648
5649 skb = nlmsg_new(inet6_prefix_nlmsg_size(), GFP_ATOMIC);
5650 if (!skb)
5651 goto errout;
5652
5653 err = inet6_fill_prefix(skb, idev, pinfo, 0, 0, event, 0);
5654 if (err < 0) {
5655
5656 WARN_ON(err == -EMSGSIZE);
5657 kfree_skb(skb);
5658 goto errout;
5659 }
5660 rtnl_notify(skb, net, 0, RTNLGRP_IPV6_PREFIX, NULL, GFP_ATOMIC);
5661 return;
5662errout:
5663 if (err < 0)
5664 rtnl_set_sk_err(net, RTNLGRP_IPV6_PREFIX, err);
5665}
5666
5667static void __ipv6_ifa_notify(int event, struct inet6_ifaddr *ifp)
5668{
5669 struct net *net = dev_net(ifp->idev->dev);
5670
5671 if (event)
5672 ASSERT_RTNL();
5673
5674 inet6_ifa_notify(event ? : RTM_NEWADDR, ifp);
5675
5676 switch (event) {
5677 case RTM_NEWADDR:
5678
5679
5680
5681
5682
5683
5684 if (!rcu_access_pointer(ifp->rt->fib6_node))
5685 ip6_ins_rt(net, ifp->rt);
5686 if (ifp->idev->cnf.forwarding)
5687 addrconf_join_anycast(ifp);
5688 if (!ipv6_addr_any(&ifp->peer_addr))
5689 addrconf_prefix_route(&ifp->peer_addr, 128, 0,
5690 ifp->idev->dev, 0, 0,
5691 GFP_ATOMIC);
5692 break;
5693 case RTM_DELADDR:
5694 if (ifp->idev->cnf.forwarding)
5695 addrconf_leave_anycast(ifp);
5696 addrconf_leave_solict(ifp->idev, &ifp->addr);
5697 if (!ipv6_addr_any(&ifp->peer_addr)) {
5698 struct fib6_info *rt;
5699
5700 rt = addrconf_get_prefix_route(&ifp->peer_addr, 128,
5701 ifp->idev->dev, 0, 0);
5702 if (rt)
5703 ip6_del_rt(net, rt);
5704 }
5705 if (ifp->rt) {
5706 ip6_del_rt(net, ifp->rt);
5707 ifp->rt = NULL;
5708 }
5709 rt_genid_bump_ipv6(net);
5710 break;
5711 }
5712 atomic_inc(&net->ipv6.dev_addr_genid);
5713}
5714
5715static void ipv6_ifa_notify(int event, struct inet6_ifaddr *ifp)
5716{
5717 rcu_read_lock_bh();
5718 if (likely(ifp->idev->dead == 0))
5719 __ipv6_ifa_notify(event, ifp);
5720 rcu_read_unlock_bh();
5721}
5722
5723#ifdef CONFIG_SYSCTL
5724
5725static
5726int addrconf_sysctl_forward(struct ctl_table *ctl, int write,
5727 void __user *buffer, size_t *lenp, loff_t *ppos)
5728{
5729 int *valp = ctl->data;
5730 int val = *valp;
5731 loff_t pos = *ppos;
5732 struct ctl_table lctl;
5733 int ret;
5734
5735
5736
5737
5738
5739 lctl = *ctl;
5740 lctl.data = &val;
5741
5742 ret = proc_dointvec(&lctl, write, buffer, lenp, ppos);
5743
5744 if (write)
5745 ret = addrconf_fixup_forwarding(ctl, valp, val);
5746 if (ret)
5747 *ppos = pos;
5748 return ret;
5749}
5750
5751static
5752int addrconf_sysctl_mtu(struct ctl_table *ctl, int write,
5753 void __user *buffer, size_t *lenp, loff_t *ppos)
5754{
5755 struct inet6_dev *idev = ctl->extra1;
5756 int min_mtu = IPV6_MIN_MTU;
5757 struct ctl_table lctl;
5758
5759 lctl = *ctl;
5760 lctl.extra1 = &min_mtu;
5761 lctl.extra2 = idev ? &idev->dev->mtu : NULL;
5762
5763 return proc_dointvec_minmax(&lctl, write, buffer, lenp, ppos);
5764}
5765
5766static void dev_disable_change(struct inet6_dev *idev)
5767{
5768 struct netdev_notifier_info info;
5769
5770 if (!idev || !idev->dev)
5771 return;
5772
5773 netdev_notifier_info_init(&info, idev->dev);
5774 if (idev->cnf.disable_ipv6)
5775 addrconf_notify(NULL, NETDEV_DOWN, &info);
5776 else
5777 addrconf_notify(NULL, NETDEV_UP, &info);
5778}
5779
5780static void addrconf_disable_change(struct net *net, __s32 newf)
5781{
5782 struct net_device *dev;
5783 struct inet6_dev *idev;
5784
5785 for_each_netdev(net, dev) {
5786 idev = __in6_dev_get(dev);
5787 if (idev) {
5788 int changed = (!idev->cnf.disable_ipv6) ^ (!newf);
5789 idev->cnf.disable_ipv6 = newf;
5790 if (changed)
5791 dev_disable_change(idev);
5792 }
5793 }
5794}
5795
5796static int addrconf_disable_ipv6(struct ctl_table *table, int *p, int newf)
5797{
5798 struct net *net;
5799 int old;
5800
5801 if (!rtnl_trylock())
5802 return restart_syscall();
5803
5804 net = (struct net *)table->extra2;
5805 old = *p;
5806 *p = newf;
5807
5808 if (p == &net->ipv6.devconf_dflt->disable_ipv6) {
5809 rtnl_unlock();
5810 return 0;
5811 }
5812
5813 if (p == &net->ipv6.devconf_all->disable_ipv6) {
5814 net->ipv6.devconf_dflt->disable_ipv6 = newf;
5815 addrconf_disable_change(net, newf);
5816 } else if ((!newf) ^ (!old))
5817 dev_disable_change((struct inet6_dev *)table->extra1);
5818
5819 rtnl_unlock();
5820 return 0;
5821}
5822
5823static
5824int addrconf_sysctl_disable(struct ctl_table *ctl, int write,
5825 void __user *buffer, size_t *lenp, loff_t *ppos)
5826{
5827 int *valp = ctl->data;
5828 int val = *valp;
5829 loff_t pos = *ppos;
5830 struct ctl_table lctl;
5831 int ret;
5832
5833
5834
5835
5836
5837 lctl = *ctl;
5838 lctl.data = &val;
5839
5840 ret = proc_dointvec(&lctl, write, buffer, lenp, ppos);
5841
5842 if (write)
5843 ret = addrconf_disable_ipv6(ctl, valp, val);
5844 if (ret)
5845 *ppos = pos;
5846 return ret;
5847}
5848
5849static
5850int addrconf_sysctl_proxy_ndp(struct ctl_table *ctl, int write,
5851 void __user *buffer, size_t *lenp, loff_t *ppos)
5852{
5853 int *valp = ctl->data;
5854 int ret;
5855 int old, new;
5856
5857 old = *valp;
5858 ret = proc_dointvec(ctl, write, buffer, lenp, ppos);
5859 new = *valp;
5860
5861 if (write && old != new) {
5862 struct net *net = ctl->extra2;
5863
5864 if (!rtnl_trylock())
5865 return restart_syscall();
5866
5867 if (valp == &net->ipv6.devconf_dflt->proxy_ndp)
5868 inet6_netconf_notify_devconf(net, RTM_NEWNETCONF,
5869 NETCONFA_PROXY_NEIGH,
5870 NETCONFA_IFINDEX_DEFAULT,
5871 net->ipv6.devconf_dflt);
5872 else if (valp == &net->ipv6.devconf_all->proxy_ndp)
5873 inet6_netconf_notify_devconf(net, RTM_NEWNETCONF,
5874 NETCONFA_PROXY_NEIGH,
5875 NETCONFA_IFINDEX_ALL,
5876 net->ipv6.devconf_all);
5877 else {
5878 struct inet6_dev *idev = ctl->extra1;
5879
5880 inet6_netconf_notify_devconf(net, RTM_NEWNETCONF,
5881 NETCONFA_PROXY_NEIGH,
5882 idev->dev->ifindex,
5883 &idev->cnf);
5884 }
5885 rtnl_unlock();
5886 }
5887
5888 return ret;
5889}
5890
5891static int addrconf_sysctl_addr_gen_mode(struct ctl_table *ctl, int write,
5892 void __user *buffer, size_t *lenp,
5893 loff_t *ppos)
5894{
5895 int ret = 0;
5896 int new_val;
5897 struct inet6_dev *idev = (struct inet6_dev *)ctl->extra1;
5898 struct net *net = (struct net *)ctl->extra2;
5899
5900 if (!rtnl_trylock())
5901 return restart_syscall();
5902
5903 ret = proc_dointvec(ctl, write, buffer, lenp, ppos);
5904
5905 if (write) {
5906 new_val = *((int *)ctl->data);
5907
5908 if (check_addr_gen_mode(new_val) < 0) {
5909 ret = -EINVAL;
5910 goto out;
5911 }
5912
5913
5914 if (&net->ipv6.devconf_dflt->addr_gen_mode == ctl->data) {
5915 ipv6_devconf_dflt.addr_gen_mode = new_val;
5916
5917
5918 } else {
5919 if (!idev)
5920 goto out;
5921
5922 if (check_stable_privacy(idev, net, new_val) < 0) {
5923 ret = -EINVAL;
5924 goto out;
5925 }
5926
5927 if (idev->cnf.addr_gen_mode != new_val) {
5928 idev->cnf.addr_gen_mode = new_val;
5929 addrconf_dev_config(idev->dev);
5930 }
5931 }
5932 }
5933
5934out:
5935 rtnl_unlock();
5936
5937 return ret;
5938}
5939
5940static int addrconf_sysctl_stable_secret(struct ctl_table *ctl, int write,
5941 void __user *buffer, size_t *lenp,
5942 loff_t *ppos)
5943{
5944 int err;
5945 struct in6_addr addr;
5946 char str[IPV6_MAX_STRLEN];
5947 struct ctl_table lctl = *ctl;
5948 struct net *net = ctl->extra2;
5949 struct ipv6_stable_secret *secret = ctl->data;
5950
5951 if (&net->ipv6.devconf_all->stable_secret == ctl->data)
5952 return -EIO;
5953
5954 lctl.maxlen = IPV6_MAX_STRLEN;
5955 lctl.data = str;
5956
5957 if (!rtnl_trylock())
5958 return restart_syscall();
5959
5960 if (!write && !secret->initialized) {
5961 err = -EIO;
5962 goto out;
5963 }
5964
5965 err = snprintf(str, sizeof(str), "%pI6", &secret->secret);
5966 if (err >= sizeof(str)) {
5967 err = -EIO;
5968 goto out;
5969 }
5970
5971 err = proc_dostring(&lctl, write, buffer, lenp, ppos);
5972 if (err || !write)
5973 goto out;
5974
5975 if (in6_pton(str, -1, addr.in6_u.u6_addr8, -1, NULL) != 1) {
5976 err = -EIO;
5977 goto out;
5978 }
5979
5980 secret->initialized = true;
5981 secret->secret = addr;
5982
5983 if (&net->ipv6.devconf_dflt->stable_secret == ctl->data) {
5984 struct net_device *dev;
5985
5986 for_each_netdev(net, dev) {
5987 struct inet6_dev *idev = __in6_dev_get(dev);
5988
5989 if (idev) {
5990 idev->cnf.addr_gen_mode =
5991 IN6_ADDR_GEN_MODE_STABLE_PRIVACY;
5992 }
5993 }
5994 } else {
5995 struct inet6_dev *idev = ctl->extra1;
5996
5997 idev->cnf.addr_gen_mode = IN6_ADDR_GEN_MODE_STABLE_PRIVACY;
5998 }
5999
6000out:
6001 rtnl_unlock();
6002
6003 return err;
6004}
6005
6006static
6007int addrconf_sysctl_ignore_routes_with_linkdown(struct ctl_table *ctl,
6008 int write,
6009 void __user *buffer,
6010 size_t *lenp,
6011 loff_t *ppos)
6012{
6013 int *valp = ctl->data;
6014 int val = *valp;
6015 loff_t pos = *ppos;
6016 struct ctl_table lctl;
6017 int ret;
6018
6019
6020
6021
6022 lctl = *ctl;
6023 lctl.data = &val;
6024
6025 ret = proc_dointvec(&lctl, write, buffer, lenp, ppos);
6026
6027 if (write)
6028 ret = addrconf_fixup_linkdown(ctl, valp, val);
6029 if (ret)
6030 *ppos = pos;
6031 return ret;
6032}
6033
6034static
6035void addrconf_set_nopolicy(struct rt6_info *rt, int action)
6036{
6037 if (rt) {
6038 if (action)
6039 rt->dst.flags |= DST_NOPOLICY;
6040 else
6041 rt->dst.flags &= ~DST_NOPOLICY;
6042 }
6043}
6044
6045static
6046void addrconf_disable_policy_idev(struct inet6_dev *idev, int val)
6047{
6048 struct inet6_ifaddr *ifa;
6049
6050 read_lock_bh(&idev->lock);
6051 list_for_each_entry(ifa, &idev->addr_list, if_list) {
6052 spin_lock(&ifa->lock);
6053 if (ifa->rt) {
6054 struct fib6_info *rt = ifa->rt;
6055 int cpu;
6056
6057 rcu_read_lock();
6058 ifa->rt->dst_nopolicy = val ? true : false;
6059 if (rt->rt6i_pcpu) {
6060 for_each_possible_cpu(cpu) {
6061 struct rt6_info **rtp;
6062
6063 rtp = per_cpu_ptr(rt->rt6i_pcpu, cpu);
6064 addrconf_set_nopolicy(*rtp, val);
6065 }
6066 }
6067 rcu_read_unlock();
6068 }
6069 spin_unlock(&ifa->lock);
6070 }
6071 read_unlock_bh(&idev->lock);
6072}
6073
6074static
6075int addrconf_disable_policy(struct ctl_table *ctl, int *valp, int val)
6076{
6077 struct inet6_dev *idev;
6078 struct net *net;
6079
6080 if (!rtnl_trylock())
6081 return restart_syscall();
6082
6083 *valp = val;
6084
6085 net = (struct net *)ctl->extra2;
6086 if (valp == &net->ipv6.devconf_dflt->disable_policy) {
6087 rtnl_unlock();
6088 return 0;
6089 }
6090
6091 if (valp == &net->ipv6.devconf_all->disable_policy) {
6092 struct net_device *dev;
6093
6094 for_each_netdev(net, dev) {
6095 idev = __in6_dev_get(dev);
6096 if (idev)
6097 addrconf_disable_policy_idev(idev, val);
6098 }
6099 } else {
6100 idev = (struct inet6_dev *)ctl->extra1;
6101 addrconf_disable_policy_idev(idev, val);
6102 }
6103
6104 rtnl_unlock();
6105 return 0;
6106}
6107
6108static
6109int addrconf_sysctl_disable_policy(struct ctl_table *ctl, int write,
6110 void __user *buffer, size_t *lenp,
6111 loff_t *ppos)
6112{
6113 int *valp = ctl->data;
6114 int val = *valp;
6115 loff_t pos = *ppos;
6116 struct ctl_table lctl;
6117 int ret;
6118
6119 lctl = *ctl;
6120 lctl.data = &val;
6121 ret = proc_dointvec(&lctl, write, buffer, lenp, ppos);
6122
6123 if (write && (*valp != val))
6124 ret = addrconf_disable_policy(ctl, valp, val);
6125
6126 if (ret)
6127 *ppos = pos;
6128
6129 return ret;
6130}
6131
6132static int minus_one = -1;
6133static const int zero = 0;
6134static const int one = 1;
6135static const int two_five_five = 255;
6136
6137static const struct ctl_table addrconf_sysctl[] = {
6138 {
6139 .procname = "forwarding",
6140 .data = &ipv6_devconf.forwarding,
6141 .maxlen = sizeof(int),
6142 .mode = 0644,
6143 .proc_handler = addrconf_sysctl_forward,
6144 },
6145 {
6146 .procname = "hop_limit",
6147 .data = &ipv6_devconf.hop_limit,
6148 .maxlen = sizeof(int),
6149 .mode = 0644,
6150 .proc_handler = proc_dointvec_minmax,
6151 .extra1 = (void *)&one,
6152 .extra2 = (void *)&two_five_five,
6153 },
6154 {
6155 .procname = "mtu",
6156 .data = &ipv6_devconf.mtu6,
6157 .maxlen = sizeof(int),
6158 .mode = 0644,
6159 .proc_handler = addrconf_sysctl_mtu,
6160 },
6161 {
6162 .procname = "accept_ra",
6163 .data = &ipv6_devconf.accept_ra,
6164 .maxlen = sizeof(int),
6165 .mode = 0644,
6166 .proc_handler = proc_dointvec,
6167 },
6168 {
6169 .procname = "accept_redirects",
6170 .data = &ipv6_devconf.accept_redirects,
6171 .maxlen = sizeof(int),
6172 .mode = 0644,
6173 .proc_handler = proc_dointvec,
6174 },
6175 {
6176 .procname = "autoconf",
6177 .data = &ipv6_devconf.autoconf,
6178 .maxlen = sizeof(int),
6179 .mode = 0644,
6180 .proc_handler = proc_dointvec,
6181 },
6182 {
6183 .procname = "dad_transmits",
6184 .data = &ipv6_devconf.dad_transmits,
6185 .maxlen = sizeof(int),
6186 .mode = 0644,
6187 .proc_handler = proc_dointvec,
6188 },
6189 {
6190 .procname = "router_solicitations",
6191 .data = &ipv6_devconf.rtr_solicits,
6192 .maxlen = sizeof(int),
6193 .mode = 0644,
6194 .proc_handler = proc_dointvec_minmax,
6195 .extra1 = &minus_one,
6196 },
6197 {
6198 .procname = "router_solicitation_interval",
6199 .data = &ipv6_devconf.rtr_solicit_interval,
6200 .maxlen = sizeof(int),
6201 .mode = 0644,
6202 .proc_handler = proc_dointvec_jiffies,
6203 },
6204 {
6205 .procname = "router_solicitation_max_interval",
6206 .data = &ipv6_devconf.rtr_solicit_max_interval,
6207 .maxlen = sizeof(int),
6208 .mode = 0644,
6209 .proc_handler = proc_dointvec_jiffies,
6210 },
6211 {
6212 .procname = "router_solicitation_delay",
6213 .data = &ipv6_devconf.rtr_solicit_delay,
6214 .maxlen = sizeof(int),
6215 .mode = 0644,
6216 .proc_handler = proc_dointvec_jiffies,
6217 },
6218 {
6219 .procname = "force_mld_version",
6220 .data = &ipv6_devconf.force_mld_version,
6221 .maxlen = sizeof(int),
6222 .mode = 0644,
6223 .proc_handler = proc_dointvec,
6224 },
6225 {
6226 .procname = "mldv1_unsolicited_report_interval",
6227 .data =
6228 &ipv6_devconf.mldv1_unsolicited_report_interval,
6229 .maxlen = sizeof(int),
6230 .mode = 0644,
6231 .proc_handler = proc_dointvec_ms_jiffies,
6232 },
6233 {
6234 .procname = "mldv2_unsolicited_report_interval",
6235 .data =
6236 &ipv6_devconf.mldv2_unsolicited_report_interval,
6237 .maxlen = sizeof(int),
6238 .mode = 0644,
6239 .proc_handler = proc_dointvec_ms_jiffies,
6240 },
6241 {
6242 .procname = "use_tempaddr",
6243 .data = &ipv6_devconf.use_tempaddr,
6244 .maxlen = sizeof(int),
6245 .mode = 0644,
6246 .proc_handler = proc_dointvec,
6247 },
6248 {
6249 .procname = "temp_valid_lft",
6250 .data = &ipv6_devconf.temp_valid_lft,
6251 .maxlen = sizeof(int),
6252 .mode = 0644,
6253 .proc_handler = proc_dointvec,
6254 },
6255 {
6256 .procname = "temp_prefered_lft",
6257 .data = &ipv6_devconf.temp_prefered_lft,
6258 .maxlen = sizeof(int),
6259 .mode = 0644,
6260 .proc_handler = proc_dointvec,
6261 },
6262 {
6263 .procname = "regen_max_retry",
6264 .data = &ipv6_devconf.regen_max_retry,
6265 .maxlen = sizeof(int),
6266 .mode = 0644,
6267 .proc_handler = proc_dointvec,
6268 },
6269 {
6270 .procname = "max_desync_factor",
6271 .data = &ipv6_devconf.max_desync_factor,
6272 .maxlen = sizeof(int),
6273 .mode = 0644,
6274 .proc_handler = proc_dointvec,
6275 },
6276 {
6277 .procname = "max_addresses",
6278 .data = &ipv6_devconf.max_addresses,
6279 .maxlen = sizeof(int),
6280 .mode = 0644,
6281 .proc_handler = proc_dointvec,
6282 },
6283 {
6284 .procname = "accept_ra_defrtr",
6285 .data = &ipv6_devconf.accept_ra_defrtr,
6286 .maxlen = sizeof(int),
6287 .mode = 0644,
6288 .proc_handler = proc_dointvec,
6289 },
6290 {
6291 .procname = "accept_ra_min_hop_limit",
6292 .data = &ipv6_devconf.accept_ra_min_hop_limit,
6293 .maxlen = sizeof(int),
6294 .mode = 0644,
6295 .proc_handler = proc_dointvec,
6296 },
6297 {
6298 .procname = "accept_ra_pinfo",
6299 .data = &ipv6_devconf.accept_ra_pinfo,
6300 .maxlen = sizeof(int),
6301 .mode = 0644,
6302 .proc_handler = proc_dointvec,
6303 },
6304#ifdef CONFIG_IPV6_ROUTER_PREF
6305 {
6306 .procname = "accept_ra_rtr_pref",
6307 .data = &ipv6_devconf.accept_ra_rtr_pref,
6308 .maxlen = sizeof(int),
6309 .mode = 0644,
6310 .proc_handler = proc_dointvec,
6311 },
6312 {
6313 .procname = "router_probe_interval",
6314 .data = &ipv6_devconf.rtr_probe_interval,
6315 .maxlen = sizeof(int),
6316 .mode = 0644,
6317 .proc_handler = proc_dointvec_jiffies,
6318 },
6319#ifdef CONFIG_IPV6_ROUTE_INFO
6320 {
6321 .procname = "accept_ra_rt_info_min_plen",
6322 .data = &ipv6_devconf.accept_ra_rt_info_min_plen,
6323 .maxlen = sizeof(int),
6324 .mode = 0644,
6325 .proc_handler = proc_dointvec,
6326 },
6327 {
6328 .procname = "accept_ra_rt_info_max_plen",
6329 .data = &ipv6_devconf.accept_ra_rt_info_max_plen,
6330 .maxlen = sizeof(int),
6331 .mode = 0644,
6332 .proc_handler = proc_dointvec,
6333 },
6334#endif
6335#endif
6336 {
6337 .procname = "proxy_ndp",
6338 .data = &ipv6_devconf.proxy_ndp,
6339 .maxlen = sizeof(int),
6340 .mode = 0644,
6341 .proc_handler = addrconf_sysctl_proxy_ndp,
6342 },
6343 {
6344 .procname = "accept_source_route",
6345 .data = &ipv6_devconf.accept_source_route,
6346 .maxlen = sizeof(int),
6347 .mode = 0644,
6348 .proc_handler = proc_dointvec,
6349 },
6350#ifdef CONFIG_IPV6_OPTIMISTIC_DAD
6351 {
6352 .procname = "optimistic_dad",
6353 .data = &ipv6_devconf.optimistic_dad,
6354 .maxlen = sizeof(int),
6355 .mode = 0644,
6356 .proc_handler = proc_dointvec,
6357 },
6358 {
6359 .procname = "use_optimistic",
6360 .data = &ipv6_devconf.use_optimistic,
6361 .maxlen = sizeof(int),
6362 .mode = 0644,
6363 .proc_handler = proc_dointvec,
6364 },
6365#endif
6366#ifdef CONFIG_IPV6_MROUTE
6367 {
6368 .procname = "mc_forwarding",
6369 .data = &ipv6_devconf.mc_forwarding,
6370 .maxlen = sizeof(int),
6371 .mode = 0444,
6372 .proc_handler = proc_dointvec,
6373 },
6374#endif
6375 {
6376 .procname = "disable_ipv6",
6377 .data = &ipv6_devconf.disable_ipv6,
6378 .maxlen = sizeof(int),
6379 .mode = 0644,
6380 .proc_handler = addrconf_sysctl_disable,
6381 },
6382 {
6383 .procname = "accept_dad",
6384 .data = &ipv6_devconf.accept_dad,
6385 .maxlen = sizeof(int),
6386 .mode = 0644,
6387 .proc_handler = proc_dointvec,
6388 },
6389 {
6390 .procname = "force_tllao",
6391 .data = &ipv6_devconf.force_tllao,
6392 .maxlen = sizeof(int),
6393 .mode = 0644,
6394 .proc_handler = proc_dointvec
6395 },
6396 {
6397 .procname = "ndisc_notify",
6398 .data = &ipv6_devconf.ndisc_notify,
6399 .maxlen = sizeof(int),
6400 .mode = 0644,
6401 .proc_handler = proc_dointvec
6402 },
6403 {
6404 .procname = "suppress_frag_ndisc",
6405 .data = &ipv6_devconf.suppress_frag_ndisc,
6406 .maxlen = sizeof(int),
6407 .mode = 0644,
6408 .proc_handler = proc_dointvec
6409 },
6410 {
6411 .procname = "accept_ra_from_local",
6412 .data = &ipv6_devconf.accept_ra_from_local,
6413 .maxlen = sizeof(int),
6414 .mode = 0644,
6415 .proc_handler = proc_dointvec,
6416 },
6417 {
6418 .procname = "accept_ra_mtu",
6419 .data = &ipv6_devconf.accept_ra_mtu,
6420 .maxlen = sizeof(int),
6421 .mode = 0644,
6422 .proc_handler = proc_dointvec,
6423 },
6424 {
6425 .procname = "stable_secret",
6426 .data = &ipv6_devconf.stable_secret,
6427 .maxlen = IPV6_MAX_STRLEN,
6428 .mode = 0600,
6429 .proc_handler = addrconf_sysctl_stable_secret,
6430 },
6431 {
6432 .procname = "use_oif_addrs_only",
6433 .data = &ipv6_devconf.use_oif_addrs_only,
6434 .maxlen = sizeof(int),
6435 .mode = 0644,
6436 .proc_handler = proc_dointvec,
6437 },
6438 {
6439 .procname = "ignore_routes_with_linkdown",
6440 .data = &ipv6_devconf.ignore_routes_with_linkdown,
6441 .maxlen = sizeof(int),
6442 .mode = 0644,
6443 .proc_handler = addrconf_sysctl_ignore_routes_with_linkdown,
6444 },
6445 {
6446 .procname = "drop_unicast_in_l2_multicast",
6447 .data = &ipv6_devconf.drop_unicast_in_l2_multicast,
6448 .maxlen = sizeof(int),
6449 .mode = 0644,
6450 .proc_handler = proc_dointvec,
6451 },
6452 {
6453 .procname = "drop_unsolicited_na",
6454 .data = &ipv6_devconf.drop_unsolicited_na,
6455 .maxlen = sizeof(int),
6456 .mode = 0644,
6457 .proc_handler = proc_dointvec,
6458 },
6459 {
6460 .procname = "keep_addr_on_down",
6461 .data = &ipv6_devconf.keep_addr_on_down,
6462 .maxlen = sizeof(int),
6463 .mode = 0644,
6464 .proc_handler = proc_dointvec,
6465
6466 },
6467 {
6468 .procname = "seg6_enabled",
6469 .data = &ipv6_devconf.seg6_enabled,
6470 .maxlen = sizeof(int),
6471 .mode = 0644,
6472 .proc_handler = proc_dointvec,
6473 },
6474#ifdef CONFIG_IPV6_SEG6_HMAC
6475 {
6476 .procname = "seg6_require_hmac",
6477 .data = &ipv6_devconf.seg6_require_hmac,
6478 .maxlen = sizeof(int),
6479 .mode = 0644,
6480 .proc_handler = proc_dointvec,
6481 },
6482#endif
6483 {
6484 .procname = "enhanced_dad",
6485 .data = &ipv6_devconf.enhanced_dad,
6486 .maxlen = sizeof(int),
6487 .mode = 0644,
6488 .proc_handler = proc_dointvec,
6489 },
6490 {
6491 .procname = "addr_gen_mode",
6492 .data = &ipv6_devconf.addr_gen_mode,
6493 .maxlen = sizeof(int),
6494 .mode = 0644,
6495 .proc_handler = addrconf_sysctl_addr_gen_mode,
6496 },
6497 {
6498 .procname = "disable_policy",
6499 .data = &ipv6_devconf.disable_policy,
6500 .maxlen = sizeof(int),
6501 .mode = 0644,
6502 .proc_handler = addrconf_sysctl_disable_policy,
6503 },
6504 {
6505 .procname = "ndisc_tclass",
6506 .data = &ipv6_devconf.ndisc_tclass,
6507 .maxlen = sizeof(int),
6508 .mode = 0644,
6509 .proc_handler = proc_dointvec_minmax,
6510 .extra1 = (void *)&zero,
6511 .extra2 = (void *)&two_five_five,
6512 },
6513 {
6514
6515 }
6516};
6517
6518static int __addrconf_sysctl_register(struct net *net, char *dev_name,
6519 struct inet6_dev *idev, struct ipv6_devconf *p)
6520{
6521 int i, ifindex;
6522 struct ctl_table *table;
6523 char path[sizeof("net/ipv6/conf/") + IFNAMSIZ];
6524
6525 table = kmemdup(addrconf_sysctl, sizeof(addrconf_sysctl), GFP_KERNEL);
6526 if (!table)
6527 goto out;
6528
6529 for (i = 0; table[i].data; i++) {
6530 table[i].data += (char *)p - (char *)&ipv6_devconf;
6531
6532
6533
6534
6535 if (!table[i].extra1 && !table[i].extra2) {
6536 table[i].extra1 = idev;
6537 table[i].extra2 = net;
6538 }
6539 }
6540
6541 snprintf(path, sizeof(path), "net/ipv6/conf/%s", dev_name);
6542
6543 p->sysctl_header = register_net_sysctl(net, path, table);
6544 if (!p->sysctl_header)
6545 goto free;
6546
6547 if (!strcmp(dev_name, "all"))
6548 ifindex = NETCONFA_IFINDEX_ALL;
6549 else if (!strcmp(dev_name, "default"))
6550 ifindex = NETCONFA_IFINDEX_DEFAULT;
6551 else
6552 ifindex = idev->dev->ifindex;
6553 inet6_netconf_notify_devconf(net, RTM_NEWNETCONF, NETCONFA_ALL,
6554 ifindex, p);
6555 return 0;
6556
6557free:
6558 kfree(table);
6559out:
6560 return -ENOBUFS;
6561}
6562
6563static void __addrconf_sysctl_unregister(struct net *net,
6564 struct ipv6_devconf *p, int ifindex)
6565{
6566 struct ctl_table *table;
6567
6568 if (!p->sysctl_header)
6569 return;
6570
6571 table = p->sysctl_header->ctl_table_arg;
6572 unregister_net_sysctl_table(p->sysctl_header);
6573 p->sysctl_header = NULL;
6574 kfree(table);
6575
6576 inet6_netconf_notify_devconf(net, RTM_DELNETCONF, 0, ifindex, NULL);
6577}
6578
6579static int addrconf_sysctl_register(struct inet6_dev *idev)
6580{
6581 int err;
6582
6583 if (!sysctl_dev_name_is_allowed(idev->dev->name))
6584 return -EINVAL;
6585
6586 err = neigh_sysctl_register(idev->dev, idev->nd_parms,
6587 &ndisc_ifinfo_sysctl_change);
6588 if (err)
6589 return err;
6590 err = __addrconf_sysctl_register(dev_net(idev->dev), idev->dev->name,
6591 idev, &idev->cnf);
6592 if (err)
6593 neigh_sysctl_unregister(idev->nd_parms);
6594
6595 return err;
6596}
6597
6598static void addrconf_sysctl_unregister(struct inet6_dev *idev)
6599{
6600 __addrconf_sysctl_unregister(dev_net(idev->dev), &idev->cnf,
6601 idev->dev->ifindex);
6602 neigh_sysctl_unregister(idev->nd_parms);
6603}
6604
6605
6606#endif
6607
6608static int __net_init addrconf_init_net(struct net *net)
6609{
6610 int err = -ENOMEM;
6611 struct ipv6_devconf *all, *dflt;
6612
6613 all = kmemdup(&ipv6_devconf, sizeof(ipv6_devconf), GFP_KERNEL);
6614 if (!all)
6615 goto err_alloc_all;
6616
6617 dflt = kmemdup(&ipv6_devconf_dflt, sizeof(ipv6_devconf_dflt), GFP_KERNEL);
6618 if (!dflt)
6619 goto err_alloc_dflt;
6620
6621
6622 dflt->autoconf = ipv6_defaults.autoconf;
6623 dflt->disable_ipv6 = ipv6_defaults.disable_ipv6;
6624
6625 dflt->stable_secret.initialized = false;
6626 all->stable_secret.initialized = false;
6627
6628 net->ipv6.devconf_all = all;
6629 net->ipv6.devconf_dflt = dflt;
6630
6631#ifdef CONFIG_SYSCTL
6632 err = __addrconf_sysctl_register(net, "all", NULL, all);
6633 if (err < 0)
6634 goto err_reg_all;
6635
6636 err = __addrconf_sysctl_register(net, "default", NULL, dflt);
6637 if (err < 0)
6638 goto err_reg_dflt;
6639#endif
6640 return 0;
6641
6642#ifdef CONFIG_SYSCTL
6643err_reg_dflt:
6644 __addrconf_sysctl_unregister(net, all, NETCONFA_IFINDEX_ALL);
6645err_reg_all:
6646 kfree(dflt);
6647#endif
6648err_alloc_dflt:
6649 kfree(all);
6650err_alloc_all:
6651 return err;
6652}
6653
6654static void __net_exit addrconf_exit_net(struct net *net)
6655{
6656#ifdef CONFIG_SYSCTL
6657 __addrconf_sysctl_unregister(net, net->ipv6.devconf_dflt,
6658 NETCONFA_IFINDEX_DEFAULT);
6659 __addrconf_sysctl_unregister(net, net->ipv6.devconf_all,
6660 NETCONFA_IFINDEX_ALL);
6661#endif
6662 kfree(net->ipv6.devconf_dflt);
6663 kfree(net->ipv6.devconf_all);
6664}
6665
6666static struct pernet_operations addrconf_ops = {
6667 .init = addrconf_init_net,
6668 .exit = addrconf_exit_net,
6669};
6670
6671static struct rtnl_af_ops inet6_ops __read_mostly = {
6672 .family = AF_INET6,
6673 .fill_link_af = inet6_fill_link_af,
6674 .get_link_af_size = inet6_get_link_af_size,
6675 .validate_link_af = inet6_validate_link_af,
6676 .set_link_af = inet6_set_link_af,
6677};
6678
6679
6680
6681
6682
6683int __init addrconf_init(void)
6684{
6685 struct inet6_dev *idev;
6686 int i, err;
6687
6688 err = ipv6_addr_label_init();
6689 if (err < 0) {
6690 pr_crit("%s: cannot initialize default policy table: %d\n",
6691 __func__, err);
6692 goto out;
6693 }
6694
6695 err = register_pernet_subsys(&addrconf_ops);
6696 if (err < 0)
6697 goto out_addrlabel;
6698
6699 addrconf_wq = create_workqueue("ipv6_addrconf");
6700 if (!addrconf_wq) {
6701 err = -ENOMEM;
6702 goto out_nowq;
6703 }
6704
6705
6706
6707
6708
6709
6710
6711
6712
6713
6714
6715
6716
6717
6718
6719
6720
6721
6722
6723 rtnl_lock();
6724 idev = ipv6_add_dev(init_net.loopback_dev);
6725 rtnl_unlock();
6726 if (IS_ERR(idev)) {
6727 err = PTR_ERR(idev);
6728 goto errlo;
6729 }
6730
6731 ip6_route_init_special_entries();
6732
6733 for (i = 0; i < IN6_ADDR_HSIZE; i++)
6734 INIT_HLIST_HEAD(&inet6_addr_lst[i]);
6735
6736 register_netdevice_notifier(&ipv6_dev_notf);
6737
6738 addrconf_verify();
6739
6740 rtnl_af_register(&inet6_ops);
6741
6742 err = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETLINK,
6743 NULL, inet6_dump_ifinfo, 0);
6744 if (err < 0)
6745 goto errout;
6746
6747 err = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_NEWADDR,
6748 inet6_rtm_newaddr, NULL, 0);
6749 if (err < 0)
6750 goto errout;
6751 err = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_DELADDR,
6752 inet6_rtm_deladdr, NULL, 0);
6753 if (err < 0)
6754 goto errout;
6755 err = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETADDR,
6756 inet6_rtm_getaddr, inet6_dump_ifaddr,
6757 RTNL_FLAG_DOIT_UNLOCKED);
6758 if (err < 0)
6759 goto errout;
6760 err = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETMULTICAST,
6761 NULL, inet6_dump_ifmcaddr, 0);
6762 if (err < 0)
6763 goto errout;
6764 err = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETANYCAST,
6765 NULL, inet6_dump_ifacaddr, 0);
6766 if (err < 0)
6767 goto errout;
6768 err = rtnl_register_module(THIS_MODULE, PF_INET6, RTM_GETNETCONF,
6769 inet6_netconf_get_devconf,
6770 inet6_netconf_dump_devconf,
6771 RTNL_FLAG_DOIT_UNLOCKED);
6772 if (err < 0)
6773 goto errout;
6774 err = ipv6_addr_label_rtnl_register();
6775 if (err < 0)
6776 goto errout;
6777
6778 return 0;
6779errout:
6780 rtnl_unregister_all(PF_INET6);
6781 rtnl_af_unregister(&inet6_ops);
6782 unregister_netdevice_notifier(&ipv6_dev_notf);
6783errlo:
6784 destroy_workqueue(addrconf_wq);
6785out_nowq:
6786 unregister_pernet_subsys(&addrconf_ops);
6787out_addrlabel:
6788 ipv6_addr_label_cleanup();
6789out:
6790 return err;
6791}
6792
6793void addrconf_cleanup(void)
6794{
6795 struct net_device *dev;
6796 int i;
6797
6798 unregister_netdevice_notifier(&ipv6_dev_notf);
6799 unregister_pernet_subsys(&addrconf_ops);
6800 ipv6_addr_label_cleanup();
6801
6802 rtnl_af_unregister(&inet6_ops);
6803
6804 rtnl_lock();
6805
6806
6807 for_each_netdev(&init_net, dev) {
6808 if (__in6_dev_get(dev) == NULL)
6809 continue;
6810 addrconf_ifdown(dev, 1);
6811 }
6812 addrconf_ifdown(init_net.loopback_dev, 2);
6813
6814
6815
6816
6817 spin_lock_bh(&addrconf_hash_lock);
6818 for (i = 0; i < IN6_ADDR_HSIZE; i++)
6819 WARN_ON(!hlist_empty(&inet6_addr_lst[i]));
6820 spin_unlock_bh(&addrconf_hash_lock);
6821 cancel_delayed_work(&addr_chk_work);
6822 rtnl_unlock();
6823
6824 destroy_workqueue(addrconf_wq);
6825}
6826
