2 * Linux IPv6 multicast routing support for BSD pim6sd
3 * Based on net/ipv4/ipmr.c.
5 * (c) 2004 Mickael Hoerdt, <hoerdt@clarinet.u-strasbg.fr>
6 * LSIIT Laboratory, Strasbourg, France
7 * (c) 2004 Jean-Philippe Andriot, <jean-philippe.andriot@6WIND.com>
9 * Copyright (C)2007,2008 USAGI/WIDE Project
10 * YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
12 * This program is free software; you can redistribute it and/or
13 * modify it under the terms of the GNU General Public License
14 * as published by the Free Software Foundation; either version
15 * 2 of the License, or (at your option) any later version.
19 #include <asm/uaccess.h>
20 #include <linux/types.h>
21 #include <linux/sched.h>
22 #include <linux/errno.h>
23 #include <linux/timer.h>
25 #include <linux/kernel.h>
26 #include <linux/fcntl.h>
27 #include <linux/stat.h>
28 #include <linux/socket.h>
29 #include <linux/inet.h>
30 #include <linux/netdevice.h>
31 #include <linux/inetdevice.h>
32 #include <linux/proc_fs.h>
33 #include <linux/seq_file.h>
34 #include <linux/init.h>
35 #include <linux/slab.h>
36 #include <linux/compat.h>
37 #include <net/protocol.h>
38 #include <linux/skbuff.h>
41 #include <linux/notifier.h>
42 #include <linux/if_arp.h>
43 #include <net/checksum.h>
44 #include <net/netlink.h>
45 #include <net/fib_rules.h>
48 #include <net/ip6_route.h>
49 #include <linux/mroute6.h>
50 #include <linux/pim.h>
51 #include <net/addrconf.h>
52 #include <linux/netfilter_ipv6.h>
53 #include <linux/export.h>
54 #include <net/ip6_checksum.h>
55 #include <linux/netconf.h>
58 struct list_head list;
61 struct sock *mroute6_sk;
62 struct timer_list ipmr_expire_timer;
63 struct list_head mfc6_unres_queue;
64 struct list_head mfc6_cache_array[MFC6_LINES];
65 struct mif_device vif6_table[MAXMIFS];
67 atomic_t cache_resolve_queue_len;
68 bool mroute_do_assert;
70 #ifdef CONFIG_IPV6_PIMSM_V2
71 int mroute_reg_vif_num;
76 struct fib_rule common;
80 struct mr6_table *mrt;
83 /* Big lock, protecting vif table, mrt cache and mroute socket state.
84 Note that the changes are semaphored via rtnl_lock.
87 static DEFINE_RWLOCK(mrt_lock);
90 * Multicast router control variables
93 #define MIF_EXISTS(_mrt, _idx) ((_mrt)->vif6_table[_idx].dev != NULL)
95 /* Special spinlock for queue of unresolved entries */
96 static DEFINE_SPINLOCK(mfc_unres_lock);
98 /* We return to original Alan's scheme. Hash table of resolved
99 entries is changed only in process context and protected
100 with weak lock mrt_lock. Queue of unresolved entries is protected
101 with strong spinlock mfc_unres_lock.
103 In this case data path is free of exclusive locks at all.
106 static struct kmem_cache *mrt_cachep __read_mostly;
108 static struct mr6_table *ip6mr_new_table(struct net *net, u32 id);
109 static void ip6mr_free_table(struct mr6_table *mrt);
111 static void ip6_mr_forward(struct net *net, struct mr6_table *mrt,
112 struct sk_buff *skb, struct mfc6_cache *cache);
113 static int ip6mr_cache_report(struct mr6_table *mrt, struct sk_buff *pkt,
114 mifi_t mifi, int assert);
115 static int __ip6mr_fill_mroute(struct mr6_table *mrt, struct sk_buff *skb,
116 struct mfc6_cache *c, struct rtmsg *rtm);
117 static void mr6_netlink_event(struct mr6_table *mrt, struct mfc6_cache *mfc,
119 static int ip6mr_rtm_dumproute(struct sk_buff *skb,
120 struct netlink_callback *cb);
121 static void mroute_clean_tables(struct mr6_table *mrt);
122 static void ipmr_expire_process(unsigned long arg);
124 #ifdef CONFIG_IPV6_MROUTE_MULTIPLE_TABLES
125 #define ip6mr_for_each_table(mrt, net) \
126 list_for_each_entry_rcu(mrt, &net->ipv6.mr6_tables, list)
128 static struct mr6_table *ip6mr_get_table(struct net *net, u32 id)
130 struct mr6_table *mrt;
132 ip6mr_for_each_table(mrt, net) {
139 static int ip6mr_fib_lookup(struct net *net, struct flowi6 *flp6,
140 struct mr6_table **mrt)
143 struct ip6mr_result res;
144 struct fib_lookup_arg arg = {
146 .flags = FIB_LOOKUP_NOREF,
149 err = fib_rules_lookup(net->ipv6.mr6_rules_ops,
150 flowi6_to_flowi(flp6), 0, &arg);
157 static int ip6mr_rule_action(struct fib_rule *rule, struct flowi *flp,
158 int flags, struct fib_lookup_arg *arg)
160 struct ip6mr_result *res = arg->result;
161 struct mr6_table *mrt;
163 switch (rule->action) {
166 case FR_ACT_UNREACHABLE:
168 case FR_ACT_PROHIBIT:
170 case FR_ACT_BLACKHOLE:
175 mrt = ip6mr_get_table(rule->fr_net, rule->table);
182 static int ip6mr_rule_match(struct fib_rule *rule, struct flowi *flp, int flags)
187 static const struct nla_policy ip6mr_rule_policy[FRA_MAX + 1] = {
191 static int ip6mr_rule_configure(struct fib_rule *rule, struct sk_buff *skb,
192 struct fib_rule_hdr *frh, struct nlattr **tb)
197 static int ip6mr_rule_compare(struct fib_rule *rule, struct fib_rule_hdr *frh,
203 static int ip6mr_rule_fill(struct fib_rule *rule, struct sk_buff *skb,
204 struct fib_rule_hdr *frh)
212 static const struct fib_rules_ops __net_initconst ip6mr_rules_ops_template = {
213 .family = RTNL_FAMILY_IP6MR,
214 .rule_size = sizeof(struct ip6mr_rule),
215 .addr_size = sizeof(struct in6_addr),
216 .action = ip6mr_rule_action,
217 .match = ip6mr_rule_match,
218 .configure = ip6mr_rule_configure,
219 .compare = ip6mr_rule_compare,
220 .default_pref = fib_default_rule_pref,
221 .fill = ip6mr_rule_fill,
222 .nlgroup = RTNLGRP_IPV6_RULE,
223 .policy = ip6mr_rule_policy,
224 .owner = THIS_MODULE,
227 static int __net_init ip6mr_rules_init(struct net *net)
229 struct fib_rules_ops *ops;
230 struct mr6_table *mrt;
233 ops = fib_rules_register(&ip6mr_rules_ops_template, net);
237 INIT_LIST_HEAD(&net->ipv6.mr6_tables);
239 mrt = ip6mr_new_table(net, RT6_TABLE_DFLT);
245 err = fib_default_rule_add(ops, 0x7fff, RT6_TABLE_DFLT, 0);
249 net->ipv6.mr6_rules_ops = ops;
253 ip6mr_free_table(mrt);
255 fib_rules_unregister(ops);
259 static void __net_exit ip6mr_rules_exit(struct net *net)
261 struct mr6_table *mrt, *next;
264 list_for_each_entry_safe(mrt, next, &net->ipv6.mr6_tables, list) {
265 list_del(&mrt->list);
266 ip6mr_free_table(mrt);
268 fib_rules_unregister(net->ipv6.mr6_rules_ops);
272 #define ip6mr_for_each_table(mrt, net) \
273 for (mrt = net->ipv6.mrt6; mrt; mrt = NULL)
275 static struct mr6_table *ip6mr_get_table(struct net *net, u32 id)
277 return net->ipv6.mrt6;
280 static int ip6mr_fib_lookup(struct net *net, struct flowi6 *flp6,
281 struct mr6_table **mrt)
283 *mrt = net->ipv6.mrt6;
287 static int __net_init ip6mr_rules_init(struct net *net)
289 net->ipv6.mrt6 = ip6mr_new_table(net, RT6_TABLE_DFLT);
290 return net->ipv6.mrt6 ? 0 : -ENOMEM;
293 static void __net_exit ip6mr_rules_exit(struct net *net)
296 ip6mr_free_table(net->ipv6.mrt6);
297 net->ipv6.mrt6 = NULL;
302 static struct mr6_table *ip6mr_new_table(struct net *net, u32 id)
304 struct mr6_table *mrt;
307 mrt = ip6mr_get_table(net, id);
311 mrt = kzalloc(sizeof(*mrt), GFP_KERNEL);
315 write_pnet(&mrt->net, net);
317 /* Forwarding cache */
318 for (i = 0; i < MFC6_LINES; i++)
319 INIT_LIST_HEAD(&mrt->mfc6_cache_array[i]);
321 INIT_LIST_HEAD(&mrt->mfc6_unres_queue);
323 setup_timer(&mrt->ipmr_expire_timer, ipmr_expire_process,
326 #ifdef CONFIG_IPV6_PIMSM_V2
327 mrt->mroute_reg_vif_num = -1;
329 #ifdef CONFIG_IPV6_MROUTE_MULTIPLE_TABLES
330 list_add_tail_rcu(&mrt->list, &net->ipv6.mr6_tables);
335 static void ip6mr_free_table(struct mr6_table *mrt)
337 del_timer_sync(&mrt->ipmr_expire_timer);
338 mroute_clean_tables(mrt);
342 #ifdef CONFIG_PROC_FS
344 struct ipmr_mfc_iter {
345 struct seq_net_private p;
346 struct mr6_table *mrt;
347 struct list_head *cache;
352 static struct mfc6_cache *ipmr_mfc_seq_idx(struct net *net,
353 struct ipmr_mfc_iter *it, loff_t pos)
355 struct mr6_table *mrt = it->mrt;
356 struct mfc6_cache *mfc;
358 read_lock(&mrt_lock);
359 for (it->ct = 0; it->ct < MFC6_LINES; it->ct++) {
360 it->cache = &mrt->mfc6_cache_array[it->ct];
361 list_for_each_entry(mfc, it->cache, list)
365 read_unlock(&mrt_lock);
367 spin_lock_bh(&mfc_unres_lock);
368 it->cache = &mrt->mfc6_unres_queue;
369 list_for_each_entry(mfc, it->cache, list)
372 spin_unlock_bh(&mfc_unres_lock);
379 * The /proc interfaces to multicast routing /proc/ip6_mr_cache /proc/ip6_mr_vif
382 struct ipmr_vif_iter {
383 struct seq_net_private p;
384 struct mr6_table *mrt;
388 static struct mif_device *ip6mr_vif_seq_idx(struct net *net,
389 struct ipmr_vif_iter *iter,
392 struct mr6_table *mrt = iter->mrt;
394 for (iter->ct = 0; iter->ct < mrt->maxvif; ++iter->ct) {
395 if (!MIF_EXISTS(mrt, iter->ct))
398 return &mrt->vif6_table[iter->ct];
403 static void *ip6mr_vif_seq_start(struct seq_file *seq, loff_t *pos)
406 struct ipmr_vif_iter *iter = seq->private;
407 struct net *net = seq_file_net(seq);
408 struct mr6_table *mrt;
410 mrt = ip6mr_get_table(net, RT6_TABLE_DFLT);
412 return ERR_PTR(-ENOENT);
416 read_lock(&mrt_lock);
417 return *pos ? ip6mr_vif_seq_idx(net, seq->private, *pos - 1)
421 static void *ip6mr_vif_seq_next(struct seq_file *seq, void *v, loff_t *pos)
423 struct ipmr_vif_iter *iter = seq->private;
424 struct net *net = seq_file_net(seq);
425 struct mr6_table *mrt = iter->mrt;
428 if (v == SEQ_START_TOKEN)
429 return ip6mr_vif_seq_idx(net, iter, 0);
431 while (++iter->ct < mrt->maxvif) {
432 if (!MIF_EXISTS(mrt, iter->ct))
434 return &mrt->vif6_table[iter->ct];
439 static void ip6mr_vif_seq_stop(struct seq_file *seq, void *v)
442 read_unlock(&mrt_lock);
445 static int ip6mr_vif_seq_show(struct seq_file *seq, void *v)
447 struct ipmr_vif_iter *iter = seq->private;
448 struct mr6_table *mrt = iter->mrt;
450 if (v == SEQ_START_TOKEN) {
452 "Interface BytesIn PktsIn BytesOut PktsOut Flags\n");
454 const struct mif_device *vif = v;
455 const char *name = vif->dev ? vif->dev->name : "none";
458 "%2td %-10s %8ld %7ld %8ld %7ld %05X\n",
459 vif - mrt->vif6_table,
460 name, vif->bytes_in, vif->pkt_in,
461 vif->bytes_out, vif->pkt_out,
467 static const struct seq_operations ip6mr_vif_seq_ops = {
468 .start = ip6mr_vif_seq_start,
469 .next = ip6mr_vif_seq_next,
470 .stop = ip6mr_vif_seq_stop,
471 .show = ip6mr_vif_seq_show,
474 static int ip6mr_vif_open(struct inode *inode, struct file *file)
476 return seq_open_net(inode, file, &ip6mr_vif_seq_ops,
477 sizeof(struct ipmr_vif_iter));
480 static const struct file_operations ip6mr_vif_fops = {
481 .owner = THIS_MODULE,
482 .open = ip6mr_vif_open,
485 .release = seq_release_net,
488 static void *ipmr_mfc_seq_start(struct seq_file *seq, loff_t *pos)
490 struct ipmr_mfc_iter *it = seq->private;
491 struct net *net = seq_file_net(seq);
492 struct mr6_table *mrt;
494 mrt = ip6mr_get_table(net, RT6_TABLE_DFLT);
496 return ERR_PTR(-ENOENT);
499 return *pos ? ipmr_mfc_seq_idx(net, seq->private, *pos - 1)
503 static void *ipmr_mfc_seq_next(struct seq_file *seq, void *v, loff_t *pos)
505 struct mfc6_cache *mfc = v;
506 struct ipmr_mfc_iter *it = seq->private;
507 struct net *net = seq_file_net(seq);
508 struct mr6_table *mrt = it->mrt;
512 if (v == SEQ_START_TOKEN)
513 return ipmr_mfc_seq_idx(net, seq->private, 0);
515 if (mfc->list.next != it->cache)
516 return list_entry(mfc->list.next, struct mfc6_cache, list);
518 if (it->cache == &mrt->mfc6_unres_queue)
521 BUG_ON(it->cache != &mrt->mfc6_cache_array[it->ct]);
523 while (++it->ct < MFC6_LINES) {
524 it->cache = &mrt->mfc6_cache_array[it->ct];
525 if (list_empty(it->cache))
527 return list_first_entry(it->cache, struct mfc6_cache, list);
530 /* exhausted cache_array, show unresolved */
531 read_unlock(&mrt_lock);
532 it->cache = &mrt->mfc6_unres_queue;
535 spin_lock_bh(&mfc_unres_lock);
536 if (!list_empty(it->cache))
537 return list_first_entry(it->cache, struct mfc6_cache, list);
540 spin_unlock_bh(&mfc_unres_lock);
546 static void ipmr_mfc_seq_stop(struct seq_file *seq, void *v)
548 struct ipmr_mfc_iter *it = seq->private;
549 struct mr6_table *mrt = it->mrt;
551 if (it->cache == &mrt->mfc6_unres_queue)
552 spin_unlock_bh(&mfc_unres_lock);
553 else if (it->cache == mrt->mfc6_cache_array)
554 read_unlock(&mrt_lock);
557 static int ipmr_mfc_seq_show(struct seq_file *seq, void *v)
561 if (v == SEQ_START_TOKEN) {
565 "Iif Pkts Bytes Wrong Oifs\n");
567 const struct mfc6_cache *mfc = v;
568 const struct ipmr_mfc_iter *it = seq->private;
569 struct mr6_table *mrt = it->mrt;
571 seq_printf(seq, "%pI6 %pI6 %-3hd",
572 &mfc->mf6c_mcastgrp, &mfc->mf6c_origin,
575 if (it->cache != &mrt->mfc6_unres_queue) {
576 seq_printf(seq, " %8lu %8lu %8lu",
578 mfc->mfc_un.res.bytes,
579 mfc->mfc_un.res.wrong_if);
580 for (n = mfc->mfc_un.res.minvif;
581 n < mfc->mfc_un.res.maxvif; n++) {
582 if (MIF_EXISTS(mrt, n) &&
583 mfc->mfc_un.res.ttls[n] < 255)
586 n, mfc->mfc_un.res.ttls[n]);
589 /* unresolved mfc_caches don't contain
590 * pkt, bytes and wrong_if values
592 seq_printf(seq, " %8lu %8lu %8lu", 0ul, 0ul, 0ul);
599 static const struct seq_operations ipmr_mfc_seq_ops = {
600 .start = ipmr_mfc_seq_start,
601 .next = ipmr_mfc_seq_next,
602 .stop = ipmr_mfc_seq_stop,
603 .show = ipmr_mfc_seq_show,
606 static int ipmr_mfc_open(struct inode *inode, struct file *file)
608 return seq_open_net(inode, file, &ipmr_mfc_seq_ops,
609 sizeof(struct ipmr_mfc_iter));
612 static const struct file_operations ip6mr_mfc_fops = {
613 .owner = THIS_MODULE,
614 .open = ipmr_mfc_open,
617 .release = seq_release_net,
621 #ifdef CONFIG_IPV6_PIMSM_V2
623 static int pim6_rcv(struct sk_buff *skb)
625 struct pimreghdr *pim;
626 struct ipv6hdr *encap;
627 struct net_device *reg_dev = NULL;
628 struct net *net = dev_net(skb->dev);
629 struct mr6_table *mrt;
630 struct flowi6 fl6 = {
631 .flowi6_iif = skb->dev->ifindex,
632 .flowi6_mark = skb->mark,
636 if (!pskb_may_pull(skb, sizeof(*pim) + sizeof(*encap)))
639 pim = (struct pimreghdr *)skb_transport_header(skb);
640 if (pim->type != ((PIM_VERSION << 4) | PIM_REGISTER) ||
641 (pim->flags & PIM_NULL_REGISTER) ||
642 (csum_ipv6_magic(&ipv6_hdr(skb)->saddr, &ipv6_hdr(skb)->daddr,
643 sizeof(*pim), IPPROTO_PIM,
644 csum_partial((void *)pim, sizeof(*pim), 0)) &&
645 csum_fold(skb_checksum(skb, 0, skb->len, 0))))
648 /* check if the inner packet is destined to mcast group */
649 encap = (struct ipv6hdr *)(skb_transport_header(skb) +
652 if (!ipv6_addr_is_multicast(&encap->daddr) ||
653 encap->payload_len == 0 ||
654 ntohs(encap->payload_len) + sizeof(*pim) > skb->len)
657 if (ip6mr_fib_lookup(net, &fl6, &mrt) < 0)
659 reg_vif_num = mrt->mroute_reg_vif_num;
661 read_lock(&mrt_lock);
662 if (reg_vif_num >= 0)
663 reg_dev = mrt->vif6_table[reg_vif_num].dev;
666 read_unlock(&mrt_lock);
671 skb->mac_header = skb->network_header;
672 skb_pull(skb, (u8 *)encap - skb->data);
673 skb_reset_network_header(skb);
674 skb->protocol = htons(ETH_P_IPV6);
675 skb->ip_summed = CHECKSUM_NONE;
677 skb_tunnel_rx(skb, reg_dev, dev_net(reg_dev));
688 static const struct inet6_protocol pim6_protocol = {
692 /* Service routines creating virtual interfaces: PIMREG */
694 static netdev_tx_t reg_vif_xmit(struct sk_buff *skb,
695 struct net_device *dev)
697 struct net *net = dev_net(dev);
698 struct mr6_table *mrt;
699 struct flowi6 fl6 = {
700 .flowi6_oif = dev->ifindex,
701 .flowi6_iif = skb->skb_iif ? : LOOPBACK_IFINDEX,
702 .flowi6_mark = skb->mark,
706 err = ip6mr_fib_lookup(net, &fl6, &mrt);
712 read_lock(&mrt_lock);
713 dev->stats.tx_bytes += skb->len;
714 dev->stats.tx_packets++;
715 ip6mr_cache_report(mrt, skb, mrt->mroute_reg_vif_num, MRT6MSG_WHOLEPKT);
716 read_unlock(&mrt_lock);
721 static int reg_vif_get_iflink(const struct net_device *dev)
726 static const struct net_device_ops reg_vif_netdev_ops = {
727 .ndo_start_xmit = reg_vif_xmit,
728 .ndo_get_iflink = reg_vif_get_iflink,
731 static void reg_vif_setup(struct net_device *dev)
733 dev->type = ARPHRD_PIMREG;
734 dev->mtu = 1500 - sizeof(struct ipv6hdr) - 8;
735 dev->flags = IFF_NOARP;
736 dev->netdev_ops = ®_vif_netdev_ops;
737 dev->destructor = free_netdev;
738 dev->features |= NETIF_F_NETNS_LOCAL;
741 static struct net_device *ip6mr_reg_vif(struct net *net, struct mr6_table *mrt)
743 struct net_device *dev;
746 if (mrt->id == RT6_TABLE_DFLT)
747 sprintf(name, "pim6reg");
749 sprintf(name, "pim6reg%u", mrt->id);
751 dev = alloc_netdev(0, name, NET_NAME_UNKNOWN, reg_vif_setup);
755 dev_net_set(dev, net);
757 if (register_netdevice(dev)) {
769 /* allow the register to be completed before unregistering. */
773 unregister_netdevice(dev);
782 static int mif6_delete(struct mr6_table *mrt, int vifi, struct list_head *head)
784 struct mif_device *v;
785 struct net_device *dev;
786 struct inet6_dev *in6_dev;
788 if (vifi < 0 || vifi >= mrt->maxvif)
789 return -EADDRNOTAVAIL;
791 v = &mrt->vif6_table[vifi];
793 write_lock_bh(&mrt_lock);
798 write_unlock_bh(&mrt_lock);
799 return -EADDRNOTAVAIL;
802 #ifdef CONFIG_IPV6_PIMSM_V2
803 if (vifi == mrt->mroute_reg_vif_num)
804 mrt->mroute_reg_vif_num = -1;
807 if (vifi + 1 == mrt->maxvif) {
809 for (tmp = vifi - 1; tmp >= 0; tmp--) {
810 if (MIF_EXISTS(mrt, tmp))
813 mrt->maxvif = tmp + 1;
816 write_unlock_bh(&mrt_lock);
818 dev_set_allmulti(dev, -1);
820 in6_dev = __in6_dev_get(dev);
822 in6_dev->cnf.mc_forwarding--;
823 inet6_netconf_notify_devconf(dev_net(dev),
824 NETCONFA_MC_FORWARDING,
825 dev->ifindex, &in6_dev->cnf);
828 if (v->flags & MIFF_REGISTER)
829 unregister_netdevice_queue(dev, head);
835 static inline void ip6mr_cache_free(struct mfc6_cache *c)
837 kmem_cache_free(mrt_cachep, c);
840 /* Destroy an unresolved cache entry, killing queued skbs
841 and reporting error to netlink readers.
844 static void ip6mr_destroy_unres(struct mr6_table *mrt, struct mfc6_cache *c)
846 struct net *net = read_pnet(&mrt->net);
849 atomic_dec(&mrt->cache_resolve_queue_len);
851 while ((skb = skb_dequeue(&c->mfc_un.unres.unresolved)) != NULL) {
852 if (ipv6_hdr(skb)->version == 0) {
853 struct nlmsghdr *nlh = (struct nlmsghdr *)skb_pull(skb, sizeof(struct ipv6hdr));
854 nlh->nlmsg_type = NLMSG_ERROR;
855 nlh->nlmsg_len = nlmsg_msg_size(sizeof(struct nlmsgerr));
856 skb_trim(skb, nlh->nlmsg_len);
857 ((struct nlmsgerr *)nlmsg_data(nlh))->error = -ETIMEDOUT;
858 rtnl_unicast(skb, net, NETLINK_CB(skb).portid);
867 /* Timer process for all the unresolved queue. */
869 static void ipmr_do_expire_process(struct mr6_table *mrt)
871 unsigned long now = jiffies;
872 unsigned long expires = 10 * HZ;
873 struct mfc6_cache *c, *next;
875 list_for_each_entry_safe(c, next, &mrt->mfc6_unres_queue, list) {
876 if (time_after(c->mfc_un.unres.expires, now)) {
878 unsigned long interval = c->mfc_un.unres.expires - now;
879 if (interval < expires)
885 mr6_netlink_event(mrt, c, RTM_DELROUTE);
886 ip6mr_destroy_unres(mrt, c);
889 if (!list_empty(&mrt->mfc6_unres_queue))
890 mod_timer(&mrt->ipmr_expire_timer, jiffies + expires);
893 static void ipmr_expire_process(unsigned long arg)
895 struct mr6_table *mrt = (struct mr6_table *)arg;
897 if (!spin_trylock(&mfc_unres_lock)) {
898 mod_timer(&mrt->ipmr_expire_timer, jiffies + 1);
902 if (!list_empty(&mrt->mfc6_unres_queue))
903 ipmr_do_expire_process(mrt);
905 spin_unlock(&mfc_unres_lock);
908 /* Fill oifs list. It is called under write locked mrt_lock. */
910 static void ip6mr_update_thresholds(struct mr6_table *mrt, struct mfc6_cache *cache,
915 cache->mfc_un.res.minvif = MAXMIFS;
916 cache->mfc_un.res.maxvif = 0;
917 memset(cache->mfc_un.res.ttls, 255, MAXMIFS);
919 for (vifi = 0; vifi < mrt->maxvif; vifi++) {
920 if (MIF_EXISTS(mrt, vifi) &&
921 ttls[vifi] && ttls[vifi] < 255) {
922 cache->mfc_un.res.ttls[vifi] = ttls[vifi];
923 if (cache->mfc_un.res.minvif > vifi)
924 cache->mfc_un.res.minvif = vifi;
925 if (cache->mfc_un.res.maxvif <= vifi)
926 cache->mfc_un.res.maxvif = vifi + 1;
931 static int mif6_add(struct net *net, struct mr6_table *mrt,
932 struct mif6ctl *vifc, int mrtsock)
934 int vifi = vifc->mif6c_mifi;
935 struct mif_device *v = &mrt->vif6_table[vifi];
936 struct net_device *dev;
937 struct inet6_dev *in6_dev;
941 if (MIF_EXISTS(mrt, vifi))
944 switch (vifc->mif6c_flags) {
945 #ifdef CONFIG_IPV6_PIMSM_V2
948 * Special Purpose VIF in PIM
949 * All the packets will be sent to the daemon
951 if (mrt->mroute_reg_vif_num >= 0)
953 dev = ip6mr_reg_vif(net, mrt);
956 err = dev_set_allmulti(dev, 1);
958 unregister_netdevice(dev);
965 dev = dev_get_by_index(net, vifc->mif6c_pifi);
967 return -EADDRNOTAVAIL;
968 err = dev_set_allmulti(dev, 1);
978 in6_dev = __in6_dev_get(dev);
980 in6_dev->cnf.mc_forwarding++;
981 inet6_netconf_notify_devconf(dev_net(dev),
982 NETCONFA_MC_FORWARDING,
983 dev->ifindex, &in6_dev->cnf);
987 * Fill in the VIF structures
989 v->rate_limit = vifc->vifc_rate_limit;
990 v->flags = vifc->mif6c_flags;
992 v->flags |= VIFF_STATIC;
993 v->threshold = vifc->vifc_threshold;
998 v->link = dev->ifindex;
999 if (v->flags & MIFF_REGISTER)
1000 v->link = dev_get_iflink(dev);
1002 /* And finish update writing critical data */
1003 write_lock_bh(&mrt_lock);
1005 #ifdef CONFIG_IPV6_PIMSM_V2
1006 if (v->flags & MIFF_REGISTER)
1007 mrt->mroute_reg_vif_num = vifi;
1009 if (vifi + 1 > mrt->maxvif)
1010 mrt->maxvif = vifi + 1;
1011 write_unlock_bh(&mrt_lock);
1015 static struct mfc6_cache *ip6mr_cache_find(struct mr6_table *mrt,
1016 const struct in6_addr *origin,
1017 const struct in6_addr *mcastgrp)
1019 int line = MFC6_HASH(mcastgrp, origin);
1020 struct mfc6_cache *c;
1022 list_for_each_entry(c, &mrt->mfc6_cache_array[line], list) {
1023 if (ipv6_addr_equal(&c->mf6c_origin, origin) &&
1024 ipv6_addr_equal(&c->mf6c_mcastgrp, mcastgrp))
1030 /* Look for a (*,*,oif) entry */
1031 static struct mfc6_cache *ip6mr_cache_find_any_parent(struct mr6_table *mrt,
1034 int line = MFC6_HASH(&in6addr_any, &in6addr_any);
1035 struct mfc6_cache *c;
1037 list_for_each_entry(c, &mrt->mfc6_cache_array[line], list)
1038 if (ipv6_addr_any(&c->mf6c_origin) &&
1039 ipv6_addr_any(&c->mf6c_mcastgrp) &&
1040 (c->mfc_un.res.ttls[mifi] < 255))
1046 /* Look for a (*,G) entry */
1047 static struct mfc6_cache *ip6mr_cache_find_any(struct mr6_table *mrt,
1048 struct in6_addr *mcastgrp,
1051 int line = MFC6_HASH(mcastgrp, &in6addr_any);
1052 struct mfc6_cache *c, *proxy;
1054 if (ipv6_addr_any(mcastgrp))
1057 list_for_each_entry(c, &mrt->mfc6_cache_array[line], list)
1058 if (ipv6_addr_any(&c->mf6c_origin) &&
1059 ipv6_addr_equal(&c->mf6c_mcastgrp, mcastgrp)) {
1060 if (c->mfc_un.res.ttls[mifi] < 255)
1063 /* It's ok if the mifi is part of the static tree */
1064 proxy = ip6mr_cache_find_any_parent(mrt,
1066 if (proxy && proxy->mfc_un.res.ttls[mifi] < 255)
1071 return ip6mr_cache_find_any_parent(mrt, mifi);
1075 * Allocate a multicast cache entry
1077 static struct mfc6_cache *ip6mr_cache_alloc(void)
1079 struct mfc6_cache *c = kmem_cache_zalloc(mrt_cachep, GFP_KERNEL);
1082 c->mfc_un.res.minvif = MAXMIFS;
1086 static struct mfc6_cache *ip6mr_cache_alloc_unres(void)
1088 struct mfc6_cache *c = kmem_cache_zalloc(mrt_cachep, GFP_ATOMIC);
1091 skb_queue_head_init(&c->mfc_un.unres.unresolved);
1092 c->mfc_un.unres.expires = jiffies + 10 * HZ;
1097 * A cache entry has gone into a resolved state from queued
1100 static void ip6mr_cache_resolve(struct net *net, struct mr6_table *mrt,
1101 struct mfc6_cache *uc, struct mfc6_cache *c)
1103 struct sk_buff *skb;
1106 * Play the pending entries through our router
1109 while ((skb = __skb_dequeue(&uc->mfc_un.unres.unresolved))) {
1110 if (ipv6_hdr(skb)->version == 0) {
1111 struct nlmsghdr *nlh = (struct nlmsghdr *)skb_pull(skb, sizeof(struct ipv6hdr));
1113 if (__ip6mr_fill_mroute(mrt, skb, c, nlmsg_data(nlh)) > 0) {
1114 nlh->nlmsg_len = skb_tail_pointer(skb) - (u8 *)nlh;
1116 nlh->nlmsg_type = NLMSG_ERROR;
1117 nlh->nlmsg_len = nlmsg_msg_size(sizeof(struct nlmsgerr));
1118 skb_trim(skb, nlh->nlmsg_len);
1119 ((struct nlmsgerr *)nlmsg_data(nlh))->error = -EMSGSIZE;
1121 rtnl_unicast(skb, net, NETLINK_CB(skb).portid);
1123 ip6_mr_forward(net, mrt, skb, c);
1128 * Bounce a cache query up to pim6sd. We could use netlink for this but pim6sd
1129 * expects the following bizarre scheme.
1131 * Called under mrt_lock.
1134 static int ip6mr_cache_report(struct mr6_table *mrt, struct sk_buff *pkt,
1135 mifi_t mifi, int assert)
1137 struct sk_buff *skb;
1138 struct mrt6msg *msg;
1141 #ifdef CONFIG_IPV6_PIMSM_V2
1142 if (assert == MRT6MSG_WHOLEPKT)
1143 skb = skb_realloc_headroom(pkt, -skb_network_offset(pkt)
1147 skb = alloc_skb(sizeof(struct ipv6hdr) + sizeof(*msg), GFP_ATOMIC);
1152 /* I suppose that internal messages
1153 * do not require checksums */
1155 skb->ip_summed = CHECKSUM_UNNECESSARY;
1157 #ifdef CONFIG_IPV6_PIMSM_V2
1158 if (assert == MRT6MSG_WHOLEPKT) {
1159 /* Ugly, but we have no choice with this interface.
1160 Duplicate old header, fix length etc.
1161 And all this only to mangle msg->im6_msgtype and
1162 to set msg->im6_mbz to "mbz" :-)
1164 skb_push(skb, -skb_network_offset(pkt));
1166 skb_push(skb, sizeof(*msg));
1167 skb_reset_transport_header(skb);
1168 msg = (struct mrt6msg *)skb_transport_header(skb);
1170 msg->im6_msgtype = MRT6MSG_WHOLEPKT;
1171 msg->im6_mif = mrt->mroute_reg_vif_num;
1173 msg->im6_src = ipv6_hdr(pkt)->saddr;
1174 msg->im6_dst = ipv6_hdr(pkt)->daddr;
1176 skb->ip_summed = CHECKSUM_UNNECESSARY;
1181 * Copy the IP header
1184 skb_put(skb, sizeof(struct ipv6hdr));
1185 skb_reset_network_header(skb);
1186 skb_copy_to_linear_data(skb, ipv6_hdr(pkt), sizeof(struct ipv6hdr));
1191 skb_put(skb, sizeof(*msg));
1192 skb_reset_transport_header(skb);
1193 msg = (struct mrt6msg *)skb_transport_header(skb);
1196 msg->im6_msgtype = assert;
1197 msg->im6_mif = mifi;
1199 msg->im6_src = ipv6_hdr(pkt)->saddr;
1200 msg->im6_dst = ipv6_hdr(pkt)->daddr;
1202 skb_dst_set(skb, dst_clone(skb_dst(pkt)));
1203 skb->ip_summed = CHECKSUM_UNNECESSARY;
1206 if (!mrt->mroute6_sk) {
1212 * Deliver to user space multicast routing algorithms
1214 ret = sock_queue_rcv_skb(mrt->mroute6_sk, skb);
1216 net_warn_ratelimited("mroute6: pending queue full, dropping entries\n");
1224 * Queue a packet for resolution. It gets locked cache entry!
1228 ip6mr_cache_unresolved(struct mr6_table *mrt, mifi_t mifi, struct sk_buff *skb)
1232 struct mfc6_cache *c;
1234 spin_lock_bh(&mfc_unres_lock);
1235 list_for_each_entry(c, &mrt->mfc6_unres_queue, list) {
1236 if (ipv6_addr_equal(&c->mf6c_mcastgrp, &ipv6_hdr(skb)->daddr) &&
1237 ipv6_addr_equal(&c->mf6c_origin, &ipv6_hdr(skb)->saddr)) {
1245 * Create a new entry if allowable
1248 if (atomic_read(&mrt->cache_resolve_queue_len) >= 10 ||
1249 (c = ip6mr_cache_alloc_unres()) == NULL) {
1250 spin_unlock_bh(&mfc_unres_lock);
1257 * Fill in the new cache entry
1259 c->mf6c_parent = -1;
1260 c->mf6c_origin = ipv6_hdr(skb)->saddr;
1261 c->mf6c_mcastgrp = ipv6_hdr(skb)->daddr;
1264 * Reflect first query at pim6sd
1266 err = ip6mr_cache_report(mrt, skb, mifi, MRT6MSG_NOCACHE);
1268 /* If the report failed throw the cache entry
1271 spin_unlock_bh(&mfc_unres_lock);
1273 ip6mr_cache_free(c);
1278 atomic_inc(&mrt->cache_resolve_queue_len);
1279 list_add(&c->list, &mrt->mfc6_unres_queue);
1280 mr6_netlink_event(mrt, c, RTM_NEWROUTE);
1282 ipmr_do_expire_process(mrt);
1286 * See if we can append the packet
1288 if (c->mfc_un.unres.unresolved.qlen > 3) {
1292 skb_queue_tail(&c->mfc_un.unres.unresolved, skb);
1296 spin_unlock_bh(&mfc_unres_lock);
1301 * MFC6 cache manipulation by user space
1304 static int ip6mr_mfc_delete(struct mr6_table *mrt, struct mf6cctl *mfc,
1308 struct mfc6_cache *c, *next;
1310 line = MFC6_HASH(&mfc->mf6cc_mcastgrp.sin6_addr, &mfc->mf6cc_origin.sin6_addr);
1312 list_for_each_entry_safe(c, next, &mrt->mfc6_cache_array[line], list) {
1313 if (ipv6_addr_equal(&c->mf6c_origin, &mfc->mf6cc_origin.sin6_addr) &&
1314 ipv6_addr_equal(&c->mf6c_mcastgrp,
1315 &mfc->mf6cc_mcastgrp.sin6_addr) &&
1316 (parent == -1 || parent == c->mf6c_parent)) {
1317 write_lock_bh(&mrt_lock);
1319 write_unlock_bh(&mrt_lock);
1321 mr6_netlink_event(mrt, c, RTM_DELROUTE);
1322 ip6mr_cache_free(c);
1329 static int ip6mr_device_event(struct notifier_block *this,
1330 unsigned long event, void *ptr)
1332 struct net_device *dev = netdev_notifier_info_to_dev(ptr);
1333 struct net *net = dev_net(dev);
1334 struct mr6_table *mrt;
1335 struct mif_device *v;
1339 if (event != NETDEV_UNREGISTER)
1342 ip6mr_for_each_table(mrt, net) {
1343 v = &mrt->vif6_table[0];
1344 for (ct = 0; ct < mrt->maxvif; ct++, v++) {
1346 mif6_delete(mrt, ct, &list);
1349 unregister_netdevice_many(&list);
1354 static struct notifier_block ip6_mr_notifier = {
1355 .notifier_call = ip6mr_device_event
1359 * Setup for IP multicast routing
1362 static int __net_init ip6mr_net_init(struct net *net)
1366 err = ip6mr_rules_init(net);
1370 #ifdef CONFIG_PROC_FS
1372 if (!proc_create("ip6_mr_vif", 0, net->proc_net, &ip6mr_vif_fops))
1374 if (!proc_create("ip6_mr_cache", 0, net->proc_net, &ip6mr_mfc_fops))
1375 goto proc_cache_fail;
1380 #ifdef CONFIG_PROC_FS
1382 remove_proc_entry("ip6_mr_vif", net->proc_net);
1384 ip6mr_rules_exit(net);
1390 static void __net_exit ip6mr_net_exit(struct net *net)
1392 #ifdef CONFIG_PROC_FS
1393 remove_proc_entry("ip6_mr_cache", net->proc_net);
1394 remove_proc_entry("ip6_mr_vif", net->proc_net);
1396 ip6mr_rules_exit(net);
1399 static struct pernet_operations ip6mr_net_ops = {
1400 .init = ip6mr_net_init,
1401 .exit = ip6mr_net_exit,
1404 int __init ip6_mr_init(void)
1408 mrt_cachep = kmem_cache_create("ip6_mrt_cache",
1409 sizeof(struct mfc6_cache),
1410 0, SLAB_HWCACHE_ALIGN,
1415 err = register_pernet_subsys(&ip6mr_net_ops);
1417 goto reg_pernet_fail;
1419 err = register_netdevice_notifier(&ip6_mr_notifier);
1421 goto reg_notif_fail;
1422 #ifdef CONFIG_IPV6_PIMSM_V2
1423 if (inet6_add_protocol(&pim6_protocol, IPPROTO_PIM) < 0) {
1424 pr_err("%s: can't add PIM protocol\n", __func__);
1426 goto add_proto_fail;
1429 rtnl_register(RTNL_FAMILY_IP6MR, RTM_GETROUTE, NULL,
1430 ip6mr_rtm_dumproute, NULL);
1432 #ifdef CONFIG_IPV6_PIMSM_V2
1434 unregister_netdevice_notifier(&ip6_mr_notifier);
1437 unregister_pernet_subsys(&ip6mr_net_ops);
1439 kmem_cache_destroy(mrt_cachep);
1443 void ip6_mr_cleanup(void)
1445 rtnl_unregister(RTNL_FAMILY_IP6MR, RTM_GETROUTE);
1446 #ifdef CONFIG_IPV6_PIMSM_V2
1447 inet6_del_protocol(&pim6_protocol, IPPROTO_PIM);
1449 unregister_netdevice_notifier(&ip6_mr_notifier);
1450 unregister_pernet_subsys(&ip6mr_net_ops);
1451 kmem_cache_destroy(mrt_cachep);
1454 static int ip6mr_mfc_add(struct net *net, struct mr6_table *mrt,
1455 struct mf6cctl *mfc, int mrtsock, int parent)
1459 struct mfc6_cache *uc, *c;
1460 unsigned char ttls[MAXMIFS];
1463 if (mfc->mf6cc_parent >= MAXMIFS)
1466 memset(ttls, 255, MAXMIFS);
1467 for (i = 0; i < MAXMIFS; i++) {
1468 if (IF_ISSET(i, &mfc->mf6cc_ifset))
1473 line = MFC6_HASH(&mfc->mf6cc_mcastgrp.sin6_addr, &mfc->mf6cc_origin.sin6_addr);
1475 list_for_each_entry(c, &mrt->mfc6_cache_array[line], list) {
1476 if (ipv6_addr_equal(&c->mf6c_origin, &mfc->mf6cc_origin.sin6_addr) &&
1477 ipv6_addr_equal(&c->mf6c_mcastgrp,
1478 &mfc->mf6cc_mcastgrp.sin6_addr) &&
1479 (parent == -1 || parent == mfc->mf6cc_parent)) {
1486 write_lock_bh(&mrt_lock);
1487 c->mf6c_parent = mfc->mf6cc_parent;
1488 ip6mr_update_thresholds(mrt, c, ttls);
1490 c->mfc_flags |= MFC_STATIC;
1491 write_unlock_bh(&mrt_lock);
1492 mr6_netlink_event(mrt, c, RTM_NEWROUTE);
1496 if (!ipv6_addr_any(&mfc->mf6cc_mcastgrp.sin6_addr) &&
1497 !ipv6_addr_is_multicast(&mfc->mf6cc_mcastgrp.sin6_addr))
1500 c = ip6mr_cache_alloc();
1504 c->mf6c_origin = mfc->mf6cc_origin.sin6_addr;
1505 c->mf6c_mcastgrp = mfc->mf6cc_mcastgrp.sin6_addr;
1506 c->mf6c_parent = mfc->mf6cc_parent;
1507 ip6mr_update_thresholds(mrt, c, ttls);
1509 c->mfc_flags |= MFC_STATIC;
1511 write_lock_bh(&mrt_lock);
1512 list_add(&c->list, &mrt->mfc6_cache_array[line]);
1513 write_unlock_bh(&mrt_lock);
1516 * Check to see if we resolved a queued list. If so we
1517 * need to send on the frames and tidy up.
1520 spin_lock_bh(&mfc_unres_lock);
1521 list_for_each_entry(uc, &mrt->mfc6_unres_queue, list) {
1522 if (ipv6_addr_equal(&uc->mf6c_origin, &c->mf6c_origin) &&
1523 ipv6_addr_equal(&uc->mf6c_mcastgrp, &c->mf6c_mcastgrp)) {
1524 list_del(&uc->list);
1525 atomic_dec(&mrt->cache_resolve_queue_len);
1530 if (list_empty(&mrt->mfc6_unres_queue))
1531 del_timer(&mrt->ipmr_expire_timer);
1532 spin_unlock_bh(&mfc_unres_lock);
1535 ip6mr_cache_resolve(net, mrt, uc, c);
1536 ip6mr_cache_free(uc);
1538 mr6_netlink_event(mrt, c, RTM_NEWROUTE);
1543 * Close the multicast socket, and clear the vif tables etc
1546 static void mroute_clean_tables(struct mr6_table *mrt)
1550 struct mfc6_cache *c, *next;
1553 * Shut down all active vif entries
1555 for (i = 0; i < mrt->maxvif; i++) {
1556 if (!(mrt->vif6_table[i].flags & VIFF_STATIC))
1557 mif6_delete(mrt, i, &list);
1559 unregister_netdevice_many(&list);
1564 for (i = 0; i < MFC6_LINES; i++) {
1565 list_for_each_entry_safe(c, next, &mrt->mfc6_cache_array[i], list) {
1566 if (c->mfc_flags & MFC_STATIC)
1568 write_lock_bh(&mrt_lock);
1570 write_unlock_bh(&mrt_lock);
1572 mr6_netlink_event(mrt, c, RTM_DELROUTE);
1573 ip6mr_cache_free(c);
1577 if (atomic_read(&mrt->cache_resolve_queue_len) != 0) {
1578 spin_lock_bh(&mfc_unres_lock);
1579 list_for_each_entry_safe(c, next, &mrt->mfc6_unres_queue, list) {
1581 mr6_netlink_event(mrt, c, RTM_DELROUTE);
1582 ip6mr_destroy_unres(mrt, c);
1584 spin_unlock_bh(&mfc_unres_lock);
1588 static int ip6mr_sk_init(struct mr6_table *mrt, struct sock *sk)
1591 struct net *net = sock_net(sk);
1594 write_lock_bh(&mrt_lock);
1595 if (likely(mrt->mroute6_sk == NULL)) {
1596 mrt->mroute6_sk = sk;
1597 net->ipv6.devconf_all->mc_forwarding++;
1598 inet6_netconf_notify_devconf(net, NETCONFA_MC_FORWARDING,
1599 NETCONFA_IFINDEX_ALL,
1600 net->ipv6.devconf_all);
1604 write_unlock_bh(&mrt_lock);
1611 int ip6mr_sk_done(struct sock *sk)
1614 struct net *net = sock_net(sk);
1615 struct mr6_table *mrt;
1618 ip6mr_for_each_table(mrt, net) {
1619 if (sk == mrt->mroute6_sk) {
1620 write_lock_bh(&mrt_lock);
1621 mrt->mroute6_sk = NULL;
1622 net->ipv6.devconf_all->mc_forwarding--;
1623 inet6_netconf_notify_devconf(net,
1624 NETCONFA_MC_FORWARDING,
1625 NETCONFA_IFINDEX_ALL,
1626 net->ipv6.devconf_all);
1627 write_unlock_bh(&mrt_lock);
1629 mroute_clean_tables(mrt);
1639 struct sock *mroute6_socket(struct net *net, struct sk_buff *skb)
1641 struct mr6_table *mrt;
1642 struct flowi6 fl6 = {
1643 .flowi6_iif = skb->skb_iif ? : LOOPBACK_IFINDEX,
1644 .flowi6_oif = skb->dev->ifindex,
1645 .flowi6_mark = skb->mark,
1648 if (ip6mr_fib_lookup(net, &fl6, &mrt) < 0)
1651 return mrt->mroute6_sk;
1655 * Socket options and virtual interface manipulation. The whole
1656 * virtual interface system is a complete heap, but unfortunately
1657 * that's how BSD mrouted happens to think. Maybe one day with a proper
1658 * MOSPF/PIM router set up we can clean this up.
1661 int ip6_mroute_setsockopt(struct sock *sk, int optname, char __user *optval, unsigned int optlen)
1663 int ret, parent = 0;
1667 struct net *net = sock_net(sk);
1668 struct mr6_table *mrt;
1670 mrt = ip6mr_get_table(net, raw6_sk(sk)->ip6mr_table ? : RT6_TABLE_DFLT);
1674 if (optname != MRT6_INIT) {
1675 if (sk != mrt->mroute6_sk && !ns_capable(net->user_ns, CAP_NET_ADMIN))
1681 if (sk->sk_type != SOCK_RAW ||
1682 inet_sk(sk)->inet_num != IPPROTO_ICMPV6)
1684 if (optlen < sizeof(int))
1687 return ip6mr_sk_init(mrt, sk);
1690 return ip6mr_sk_done(sk);
1693 if (optlen < sizeof(vif))
1695 if (copy_from_user(&vif, optval, sizeof(vif)))
1697 if (vif.mif6c_mifi >= MAXMIFS)
1700 ret = mif6_add(net, mrt, &vif, sk == mrt->mroute6_sk);
1705 if (optlen < sizeof(mifi_t))
1707 if (copy_from_user(&mifi, optval, sizeof(mifi_t)))
1710 ret = mif6_delete(mrt, mifi, NULL);
1715 * Manipulate the forwarding caches. These live
1716 * in a sort of kernel/user symbiosis.
1721 case MRT6_ADD_MFC_PROXY:
1722 case MRT6_DEL_MFC_PROXY:
1723 if (optlen < sizeof(mfc))
1725 if (copy_from_user(&mfc, optval, sizeof(mfc)))
1728 parent = mfc.mf6cc_parent;
1730 if (optname == MRT6_DEL_MFC || optname == MRT6_DEL_MFC_PROXY)
1731 ret = ip6mr_mfc_delete(mrt, &mfc, parent);
1733 ret = ip6mr_mfc_add(net, mrt, &mfc,
1734 sk == mrt->mroute6_sk, parent);
1739 * Control PIM assert (to activate pim will activate assert)
1745 if (optlen != sizeof(v))
1747 if (get_user(v, (int __user *)optval))
1749 mrt->mroute_do_assert = v;
1753 #ifdef CONFIG_IPV6_PIMSM_V2
1758 if (optlen != sizeof(v))
1760 if (get_user(v, (int __user *)optval))
1765 if (v != mrt->mroute_do_pim) {
1766 mrt->mroute_do_pim = v;
1767 mrt->mroute_do_assert = v;
1774 #ifdef CONFIG_IPV6_MROUTE_MULTIPLE_TABLES
1779 if (optlen != sizeof(u32))
1781 if (get_user(v, (u32 __user *)optval))
1783 /* "pim6reg%u" should not exceed 16 bytes (IFNAMSIZ) */
1784 if (v != RT_TABLE_DEFAULT && v >= 100000000)
1786 if (sk == mrt->mroute6_sk)
1791 if (!ip6mr_new_table(net, v))
1793 raw6_sk(sk)->ip6mr_table = v;
1799 * Spurious command, or MRT6_VERSION which you cannot
1803 return -ENOPROTOOPT;
1808 * Getsock opt support for the multicast routing system.
1811 int ip6_mroute_getsockopt(struct sock *sk, int optname, char __user *optval,
1816 struct net *net = sock_net(sk);
1817 struct mr6_table *mrt;
1819 mrt = ip6mr_get_table(net, raw6_sk(sk)->ip6mr_table ? : RT6_TABLE_DFLT);
1827 #ifdef CONFIG_IPV6_PIMSM_V2
1829 val = mrt->mroute_do_pim;
1833 val = mrt->mroute_do_assert;
1836 return -ENOPROTOOPT;
1839 if (get_user(olr, optlen))
1842 olr = min_t(int, olr, sizeof(int));
1846 if (put_user(olr, optlen))
1848 if (copy_to_user(optval, &val, olr))
1854 * The IP multicast ioctl support routines.
1857 int ip6mr_ioctl(struct sock *sk, int cmd, void __user *arg)
1859 struct sioc_sg_req6 sr;
1860 struct sioc_mif_req6 vr;
1861 struct mif_device *vif;
1862 struct mfc6_cache *c;
1863 struct net *net = sock_net(sk);
1864 struct mr6_table *mrt;
1866 mrt = ip6mr_get_table(net, raw6_sk(sk)->ip6mr_table ? : RT6_TABLE_DFLT);
1871 case SIOCGETMIFCNT_IN6:
1872 if (copy_from_user(&vr, arg, sizeof(vr)))
1874 if (vr.mifi >= mrt->maxvif)
1876 read_lock(&mrt_lock);
1877 vif = &mrt->vif6_table[vr.mifi];
1878 if (MIF_EXISTS(mrt, vr.mifi)) {
1879 vr.icount = vif->pkt_in;
1880 vr.ocount = vif->pkt_out;
1881 vr.ibytes = vif->bytes_in;
1882 vr.obytes = vif->bytes_out;
1883 read_unlock(&mrt_lock);
1885 if (copy_to_user(arg, &vr, sizeof(vr)))
1889 read_unlock(&mrt_lock);
1890 return -EADDRNOTAVAIL;
1891 case SIOCGETSGCNT_IN6:
1892 if (copy_from_user(&sr, arg, sizeof(sr)))
1895 read_lock(&mrt_lock);
1896 c = ip6mr_cache_find(mrt, &sr.src.sin6_addr, &sr.grp.sin6_addr);
1898 sr.pktcnt = c->mfc_un.res.pkt;
1899 sr.bytecnt = c->mfc_un.res.bytes;
1900 sr.wrong_if = c->mfc_un.res.wrong_if;
1901 read_unlock(&mrt_lock);
1903 if (copy_to_user(arg, &sr, sizeof(sr)))
1907 read_unlock(&mrt_lock);
1908 return -EADDRNOTAVAIL;
1910 return -ENOIOCTLCMD;
1914 #ifdef CONFIG_COMPAT
1915 struct compat_sioc_sg_req6 {
1916 struct sockaddr_in6 src;
1917 struct sockaddr_in6 grp;
1918 compat_ulong_t pktcnt;
1919 compat_ulong_t bytecnt;
1920 compat_ulong_t wrong_if;
1923 struct compat_sioc_mif_req6 {
1925 compat_ulong_t icount;
1926 compat_ulong_t ocount;
1927 compat_ulong_t ibytes;
1928 compat_ulong_t obytes;
1931 int ip6mr_compat_ioctl(struct sock *sk, unsigned int cmd, void __user *arg)
1933 struct compat_sioc_sg_req6 sr;
1934 struct compat_sioc_mif_req6 vr;
1935 struct mif_device *vif;
1936 struct mfc6_cache *c;
1937 struct net *net = sock_net(sk);
1938 struct mr6_table *mrt;
1940 mrt = ip6mr_get_table(net, raw6_sk(sk)->ip6mr_table ? : RT6_TABLE_DFLT);
1945 case SIOCGETMIFCNT_IN6:
1946 if (copy_from_user(&vr, arg, sizeof(vr)))
1948 if (vr.mifi >= mrt->maxvif)
1950 read_lock(&mrt_lock);
1951 vif = &mrt->vif6_table[vr.mifi];
1952 if (MIF_EXISTS(mrt, vr.mifi)) {
1953 vr.icount = vif->pkt_in;
1954 vr.ocount = vif->pkt_out;
1955 vr.ibytes = vif->bytes_in;
1956 vr.obytes = vif->bytes_out;
1957 read_unlock(&mrt_lock);
1959 if (copy_to_user(arg, &vr, sizeof(vr)))
1963 read_unlock(&mrt_lock);
1964 return -EADDRNOTAVAIL;
1965 case SIOCGETSGCNT_IN6:
1966 if (copy_from_user(&sr, arg, sizeof(sr)))
1969 read_lock(&mrt_lock);
1970 c = ip6mr_cache_find(mrt, &sr.src.sin6_addr, &sr.grp.sin6_addr);
1972 sr.pktcnt = c->mfc_un.res.pkt;
1973 sr.bytecnt = c->mfc_un.res.bytes;
1974 sr.wrong_if = c->mfc_un.res.wrong_if;
1975 read_unlock(&mrt_lock);
1977 if (copy_to_user(arg, &sr, sizeof(sr)))
1981 read_unlock(&mrt_lock);
1982 return -EADDRNOTAVAIL;
1984 return -ENOIOCTLCMD;
1989 static inline int ip6mr_forward2_finish(struct sock *sk, struct sk_buff *skb)
1991 IP6_INC_STATS_BH(dev_net(skb_dst(skb)->dev), ip6_dst_idev(skb_dst(skb)),
1992 IPSTATS_MIB_OUTFORWDATAGRAMS);
1993 IP6_ADD_STATS_BH(dev_net(skb_dst(skb)->dev), ip6_dst_idev(skb_dst(skb)),
1994 IPSTATS_MIB_OUTOCTETS, skb->len);
1995 return dst_output_sk(sk, skb);
1999 * Processing handlers for ip6mr_forward
2002 static int ip6mr_forward2(struct net *net, struct mr6_table *mrt,
2003 struct sk_buff *skb, struct mfc6_cache *c, int vifi)
2005 struct ipv6hdr *ipv6h;
2006 struct mif_device *vif = &mrt->vif6_table[vifi];
2007 struct net_device *dev;
2008 struct dst_entry *dst;
2014 #ifdef CONFIG_IPV6_PIMSM_V2
2015 if (vif->flags & MIFF_REGISTER) {
2017 vif->bytes_out += skb->len;
2018 vif->dev->stats.tx_bytes += skb->len;
2019 vif->dev->stats.tx_packets++;
2020 ip6mr_cache_report(mrt, skb, vifi, MRT6MSG_WHOLEPKT);
2025 ipv6h = ipv6_hdr(skb);
2027 fl6 = (struct flowi6) {
2028 .flowi6_oif = vif->link,
2029 .daddr = ipv6h->daddr,
2032 dst = ip6_route_output(net, NULL, &fl6);
2039 skb_dst_set(skb, dst);
2042 * RFC1584 teaches, that DVMRP/PIM router must deliver packets locally
2043 * not only before forwarding, but after forwarding on all output
2044 * interfaces. It is clear, if mrouter runs a multicasting
2045 * program, it should receive packets not depending to what interface
2046 * program is joined.
2047 * If we will not make it, the program will have to join on all
2048 * interfaces. On the other hand, multihoming host (or router, but
2049 * not mrouter) cannot join to more than one interface - it will
2050 * result in receiving multiple packets.
2055 vif->bytes_out += skb->len;
2057 /* We are about to write */
2058 /* XXX: extension headers? */
2059 if (skb_cow(skb, sizeof(*ipv6h) + LL_RESERVED_SPACE(dev)))
2062 ipv6h = ipv6_hdr(skb);
2065 IP6CB(skb)->flags |= IP6SKB_FORWARDED;
2067 return NF_HOOK(NFPROTO_IPV6, NF_INET_FORWARD, NULL, skb,
2069 ip6mr_forward2_finish);
2076 static int ip6mr_find_vif(struct mr6_table *mrt, struct net_device *dev)
2080 for (ct = mrt->maxvif - 1; ct >= 0; ct--) {
2081 if (mrt->vif6_table[ct].dev == dev)
2087 static void ip6_mr_forward(struct net *net, struct mr6_table *mrt,
2088 struct sk_buff *skb, struct mfc6_cache *cache)
2092 int true_vifi = ip6mr_find_vif(mrt, skb->dev);
2094 vif = cache->mf6c_parent;
2095 cache->mfc_un.res.pkt++;
2096 cache->mfc_un.res.bytes += skb->len;
2098 if (ipv6_addr_any(&cache->mf6c_origin) && true_vifi >= 0) {
2099 struct mfc6_cache *cache_proxy;
2101 /* For an (*,G) entry, we only check that the incoming
2102 * interface is part of the static tree.
2104 cache_proxy = ip6mr_cache_find_any_parent(mrt, vif);
2106 cache_proxy->mfc_un.res.ttls[true_vifi] < 255)
2111 * Wrong interface: drop packet and (maybe) send PIM assert.
2113 if (mrt->vif6_table[vif].dev != skb->dev) {
2114 cache->mfc_un.res.wrong_if++;
2116 if (true_vifi >= 0 && mrt->mroute_do_assert &&
2117 /* pimsm uses asserts, when switching from RPT to SPT,
2118 so that we cannot check that packet arrived on an oif.
2119 It is bad, but otherwise we would need to move pretty
2120 large chunk of pimd to kernel. Ough... --ANK
2122 (mrt->mroute_do_pim ||
2123 cache->mfc_un.res.ttls[true_vifi] < 255) &&
2125 cache->mfc_un.res.last_assert + MFC_ASSERT_THRESH)) {
2126 cache->mfc_un.res.last_assert = jiffies;
2127 ip6mr_cache_report(mrt, skb, true_vifi, MRT6MSG_WRONGMIF);
2133 mrt->vif6_table[vif].pkt_in++;
2134 mrt->vif6_table[vif].bytes_in += skb->len;
2139 if (ipv6_addr_any(&cache->mf6c_origin) &&
2140 ipv6_addr_any(&cache->mf6c_mcastgrp)) {
2141 if (true_vifi >= 0 &&
2142 true_vifi != cache->mf6c_parent &&
2143 ipv6_hdr(skb)->hop_limit >
2144 cache->mfc_un.res.ttls[cache->mf6c_parent]) {
2145 /* It's an (*,*) entry and the packet is not coming from
2146 * the upstream: forward the packet to the upstream
2149 psend = cache->mf6c_parent;
2154 for (ct = cache->mfc_un.res.maxvif - 1; ct >= cache->mfc_un.res.minvif; ct--) {
2155 /* For (*,G) entry, don't forward to the incoming interface */
2156 if ((!ipv6_addr_any(&cache->mf6c_origin) || ct != true_vifi) &&
2157 ipv6_hdr(skb)->hop_limit > cache->mfc_un.res.ttls[ct]) {
2159 struct sk_buff *skb2 = skb_clone(skb, GFP_ATOMIC);
2161 ip6mr_forward2(net, mrt, skb2, cache, psend);
2168 ip6mr_forward2(net, mrt, skb, cache, psend);
2178 * Multicast packets for forwarding arrive here
2181 int ip6_mr_input(struct sk_buff *skb)
2183 struct mfc6_cache *cache;
2184 struct net *net = dev_net(skb->dev);
2185 struct mr6_table *mrt;
2186 struct flowi6 fl6 = {
2187 .flowi6_iif = skb->dev->ifindex,
2188 .flowi6_mark = skb->mark,
2192 err = ip6mr_fib_lookup(net, &fl6, &mrt);
2198 read_lock(&mrt_lock);
2199 cache = ip6mr_cache_find(mrt,
2200 &ipv6_hdr(skb)->saddr, &ipv6_hdr(skb)->daddr);
2202 int vif = ip6mr_find_vif(mrt, skb->dev);
2205 cache = ip6mr_cache_find_any(mrt,
2206 &ipv6_hdr(skb)->daddr,
2211 * No usable cache entry
2216 vif = ip6mr_find_vif(mrt, skb->dev);
2218 int err = ip6mr_cache_unresolved(mrt, vif, skb);
2219 read_unlock(&mrt_lock);
2223 read_unlock(&mrt_lock);
2228 ip6_mr_forward(net, mrt, skb, cache);
2230 read_unlock(&mrt_lock);
2236 static int __ip6mr_fill_mroute(struct mr6_table *mrt, struct sk_buff *skb,
2237 struct mfc6_cache *c, struct rtmsg *rtm)
2240 struct rtnexthop *nhp;
2241 struct nlattr *mp_attr;
2242 struct rta_mfc_stats mfcs;
2244 /* If cache is unresolved, don't try to parse IIF and OIF */
2245 if (c->mf6c_parent >= MAXMIFS)
2248 if (MIF_EXISTS(mrt, c->mf6c_parent) &&
2249 nla_put_u32(skb, RTA_IIF, mrt->vif6_table[c->mf6c_parent].dev->ifindex) < 0)
2251 mp_attr = nla_nest_start(skb, RTA_MULTIPATH);
2255 for (ct = c->mfc_un.res.minvif; ct < c->mfc_un.res.maxvif; ct++) {
2256 if (MIF_EXISTS(mrt, ct) && c->mfc_un.res.ttls[ct] < 255) {
2257 nhp = nla_reserve_nohdr(skb, sizeof(*nhp));
2259 nla_nest_cancel(skb, mp_attr);
2263 nhp->rtnh_flags = 0;
2264 nhp->rtnh_hops = c->mfc_un.res.ttls[ct];
2265 nhp->rtnh_ifindex = mrt->vif6_table[ct].dev->ifindex;
2266 nhp->rtnh_len = sizeof(*nhp);
2270 nla_nest_end(skb, mp_attr);
2272 mfcs.mfcs_packets = c->mfc_un.res.pkt;
2273 mfcs.mfcs_bytes = c->mfc_un.res.bytes;
2274 mfcs.mfcs_wrong_if = c->mfc_un.res.wrong_if;
2275 if (nla_put(skb, RTA_MFC_STATS, sizeof(mfcs), &mfcs) < 0)
2278 rtm->rtm_type = RTN_MULTICAST;
2282 int ip6mr_get_route(struct net *net,
2283 struct sk_buff *skb, struct rtmsg *rtm, int nowait)
2286 struct mr6_table *mrt;
2287 struct mfc6_cache *cache;
2288 struct rt6_info *rt = (struct rt6_info *)skb_dst(skb);
2290 mrt = ip6mr_get_table(net, RT6_TABLE_DFLT);
2294 read_lock(&mrt_lock);
2295 cache = ip6mr_cache_find(mrt, &rt->rt6i_src.addr, &rt->rt6i_dst.addr);
2296 if (!cache && skb->dev) {
2297 int vif = ip6mr_find_vif(mrt, skb->dev);
2300 cache = ip6mr_cache_find_any(mrt, &rt->rt6i_dst.addr,
2305 struct sk_buff *skb2;
2306 struct ipv6hdr *iph;
2307 struct net_device *dev;
2311 read_unlock(&mrt_lock);
2316 if (!dev || (vif = ip6mr_find_vif(mrt, dev)) < 0) {
2317 read_unlock(&mrt_lock);
2321 /* really correct? */
2322 skb2 = alloc_skb(sizeof(struct ipv6hdr), GFP_ATOMIC);
2324 read_unlock(&mrt_lock);
2328 skb_reset_transport_header(skb2);
2330 skb_put(skb2, sizeof(struct ipv6hdr));
2331 skb_reset_network_header(skb2);
2333 iph = ipv6_hdr(skb2);
2336 iph->flow_lbl[0] = 0;
2337 iph->flow_lbl[1] = 0;
2338 iph->flow_lbl[2] = 0;
2339 iph->payload_len = 0;
2340 iph->nexthdr = IPPROTO_NONE;
2342 iph->saddr = rt->rt6i_src.addr;
2343 iph->daddr = rt->rt6i_dst.addr;
2345 err = ip6mr_cache_unresolved(mrt, vif, skb2);
2346 read_unlock(&mrt_lock);
2351 if (!nowait && (rtm->rtm_flags&RTM_F_NOTIFY))
2352 cache->mfc_flags |= MFC_NOTIFY;
2354 err = __ip6mr_fill_mroute(mrt, skb, cache, rtm);
2355 read_unlock(&mrt_lock);
2359 static int ip6mr_fill_mroute(struct mr6_table *mrt, struct sk_buff *skb,
2360 u32 portid, u32 seq, struct mfc6_cache *c, int cmd,
2363 struct nlmsghdr *nlh;
2367 nlh = nlmsg_put(skb, portid, seq, cmd, sizeof(*rtm), flags);
2371 rtm = nlmsg_data(nlh);
2372 rtm->rtm_family = RTNL_FAMILY_IP6MR;
2373 rtm->rtm_dst_len = 128;
2374 rtm->rtm_src_len = 128;
2376 rtm->rtm_table = mrt->id;
2377 if (nla_put_u32(skb, RTA_TABLE, mrt->id))
2378 goto nla_put_failure;
2379 rtm->rtm_type = RTN_MULTICAST;
2380 rtm->rtm_scope = RT_SCOPE_UNIVERSE;
2381 if (c->mfc_flags & MFC_STATIC)
2382 rtm->rtm_protocol = RTPROT_STATIC;
2384 rtm->rtm_protocol = RTPROT_MROUTED;
2387 if (nla_put_in6_addr(skb, RTA_SRC, &c->mf6c_origin) ||
2388 nla_put_in6_addr(skb, RTA_DST, &c->mf6c_mcastgrp))
2389 goto nla_put_failure;
2390 err = __ip6mr_fill_mroute(mrt, skb, c, rtm);
2391 /* do not break the dump if cache is unresolved */
2392 if (err < 0 && err != -ENOENT)
2393 goto nla_put_failure;
2395 nlmsg_end(skb, nlh);
2399 nlmsg_cancel(skb, nlh);
2403 static int mr6_msgsize(bool unresolved, int maxvif)
2406 NLMSG_ALIGN(sizeof(struct rtmsg))
2407 + nla_total_size(4) /* RTA_TABLE */
2408 + nla_total_size(sizeof(struct in6_addr)) /* RTA_SRC */
2409 + nla_total_size(sizeof(struct in6_addr)) /* RTA_DST */
2414 + nla_total_size(4) /* RTA_IIF */
2415 + nla_total_size(0) /* RTA_MULTIPATH */
2416 + maxvif * NLA_ALIGN(sizeof(struct rtnexthop))
2418 + nla_total_size(sizeof(struct rta_mfc_stats))
2424 static void mr6_netlink_event(struct mr6_table *mrt, struct mfc6_cache *mfc,
2427 struct net *net = read_pnet(&mrt->net);
2428 struct sk_buff *skb;
2431 skb = nlmsg_new(mr6_msgsize(mfc->mf6c_parent >= MAXMIFS, mrt->maxvif),
2436 err = ip6mr_fill_mroute(mrt, skb, 0, 0, mfc, cmd, 0);
2440 rtnl_notify(skb, net, 0, RTNLGRP_IPV6_MROUTE, NULL, GFP_ATOMIC);
2446 rtnl_set_sk_err(net, RTNLGRP_IPV6_MROUTE, err);
2449 static int ip6mr_rtm_dumproute(struct sk_buff *skb, struct netlink_callback *cb)
2451 struct net *net = sock_net(skb->sk);
2452 struct mr6_table *mrt;
2453 struct mfc6_cache *mfc;
2454 unsigned int t = 0, s_t;
2455 unsigned int h = 0, s_h;
2456 unsigned int e = 0, s_e;
2462 read_lock(&mrt_lock);
2463 ip6mr_for_each_table(mrt, net) {
2468 for (h = s_h; h < MFC6_LINES; h++) {
2469 list_for_each_entry(mfc, &mrt->mfc6_cache_array[h], list) {
2472 if (ip6mr_fill_mroute(mrt, skb,
2473 NETLINK_CB(cb->skb).portid,
2483 spin_lock_bh(&mfc_unres_lock);
2484 list_for_each_entry(mfc, &mrt->mfc6_unres_queue, list) {
2487 if (ip6mr_fill_mroute(mrt, skb,
2488 NETLINK_CB(cb->skb).portid,
2492 spin_unlock_bh(&mfc_unres_lock);
2498 spin_unlock_bh(&mfc_unres_lock);
2505 read_unlock(&mrt_lock);
Code Review / kvmfornfv.git / blob