2019-05-27 06:55:01 +00:00
|
|
|
// SPDX-License-Identifier: GPL-2.0-or-later
|
2005-04-16 22:20:36 +00:00
|
|
|
/*
|
|
|
|
|
* IPv6 over IPv4 tunnel device - Simple Internet Transition (SIT)
|
|
|
|
|
* Linux INET6 implementation
|
|
|
|
|
*
|
|
|
|
|
* Authors:
|
2007-02-09 14:24:49 +00:00
|
|
|
* Pedro Roque <roque@di.fc.ul.pt>
|
2005-04-16 22:20:36 +00:00
|
|
|
* Alexey Kuznetsov <kuznet@ms2.inr.ac.ru>
|
|
|
|
|
*
|
|
|
|
|
* Changes:
|
|
|
|
|
* Roger Venning <r.venning@telstra.com>: 6to4 support
|
|
|
|
|
* Nate Thompson <nate@thebog.net>: 6to4 support
|
2008-03-11 22:35:59 +00:00
|
|
|
* Fred Templin <fred.l.templin@boeing.com>: isatap support
|
2005-04-16 22:20:36 +00:00
|
|
|
*/
|
|
|
|
|
|
2012-05-15 14:11:53 +00:00
|
|
|
#define pr_fmt(fmt) KBUILD_MODNAME ": " fmt
|
|
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
#include <linux/module.h>
|
2006-01-11 20:17:47 +00:00
|
|
|
#include <linux/capability.h>
|
2005-04-16 22:20:36 +00:00
|
|
|
#include <linux/errno.h>
|
|
|
|
|
#include <linux/types.h>
|
|
|
|
|
#include <linux/socket.h>
|
|
|
|
|
#include <linux/sockios.h>
|
|
|
|
|
#include <linux/net.h>
|
|
|
|
|
#include <linux/in6.h>
|
|
|
|
|
#include <linux/netdevice.h>
|
|
|
|
|
#include <linux/if_arp.h>
|
|
|
|
|
#include <linux/icmp.h>
|
include cleanup: Update gfp.h and slab.h includes to prepare for breaking implicit slab.h inclusion from percpu.h
percpu.h is included by sched.h and module.h and thus ends up being
included when building most .c files. percpu.h includes slab.h which
in turn includes gfp.h making everything defined by the two files
universally available and complicating inclusion dependencies.
percpu.h -> slab.h dependency is about to be removed. Prepare for
this change by updating users of gfp and slab facilities include those
headers directly instead of assuming availability. As this conversion
needs to touch large number of source files, the following script is
used as the basis of conversion.
http://userweb.kernel.org/~tj/misc/slabh-sweep.py
The script does the followings.
* Scan files for gfp and slab usages and update includes such that
only the necessary includes are there. ie. if only gfp is used,
gfp.h, if slab is used, slab.h.
* When the script inserts a new include, it looks at the include
blocks and try to put the new include such that its order conforms
to its surrounding. It's put in the include block which contains
core kernel includes, in the same order that the rest are ordered -
alphabetical, Christmas tree, rev-Xmas-tree or at the end if there
doesn't seem to be any matching order.
* If the script can't find a place to put a new include (mostly
because the file doesn't have fitting include block), it prints out
an error message indicating which .h file needs to be added to the
file.
The conversion was done in the following steps.
1. The initial automatic conversion of all .c files updated slightly
over 4000 files, deleting around 700 includes and adding ~480 gfp.h
and ~3000 slab.h inclusions. The script emitted errors for ~400
files.
2. Each error was manually checked. Some didn't need the inclusion,
some needed manual addition while adding it to implementation .h or
embedding .c file was more appropriate for others. This step added
inclusions to around 150 files.
3. The script was run again and the output was compared to the edits
from #2 to make sure no file was left behind.
4. Several build tests were done and a couple of problems were fixed.
e.g. lib/decompress_*.c used malloc/free() wrappers around slab
APIs requiring slab.h to be added manually.
5. The script was run on all .h files but without automatically
editing them as sprinkling gfp.h and slab.h inclusions around .h
files could easily lead to inclusion dependency hell. Most gfp.h
inclusion directives were ignored as stuff from gfp.h was usually
wildly available and often used in preprocessor macros. Each
slab.h inclusion directive was examined and added manually as
necessary.
6. percpu.h was updated not to include slab.h.
7. Build test were done on the following configurations and failures
were fixed. CONFIG_GCOV_KERNEL was turned off for all tests (as my
distributed build env didn't work with gcov compiles) and a few
more options had to be turned off depending on archs to make things
build (like ipr on powerpc/64 which failed due to missing writeq).
* x86 and x86_64 UP and SMP allmodconfig and a custom test config.
* powerpc and powerpc64 SMP allmodconfig
* sparc and sparc64 SMP allmodconfig
* ia64 SMP allmodconfig
* s390 SMP allmodconfig
* alpha SMP allmodconfig
* um on x86_64 SMP allmodconfig
8. percpu.h modifications were reverted so that it could be applied as
a separate patch and serve as bisection point.
Given the fact that I had only a couple of failures from tests on step
6, I'm fairly confident about the coverage of this conversion patch.
If there is a breakage, it's likely to be something in one of the arch
headers which should be easily discoverable easily on most builds of
the specific arch.
Signed-off-by: Tejun Heo <tj@kernel.org>
Guess-its-ok-by: Christoph Lameter <cl@linux-foundation.org>
Cc: Ingo Molnar <mingo@redhat.com>
Cc: Lee Schermerhorn <Lee.Schermerhorn@hp.com>
2010-03-24 08:04:11 +00:00
|
|
|
#include <linux/slab.h>
|
2016-12-24 19:46:01 +00:00
|
|
|
#include <linux/uaccess.h>
|
2005-04-16 22:20:36 +00:00
|
|
|
#include <linux/init.h>
|
|
|
|
|
#include <linux/netfilter_ipv4.h>
|
2006-01-06 00:35:42 +00:00
|
|
|
#include <linux/if_ether.h>
|
2005-04-16 22:20:36 +00:00
|
|
|
|
|
|
|
|
#include <net/sock.h>
|
|
|
|
|
#include <net/snmp.h>
|
|
|
|
|
|
|
|
|
|
#include <net/ipv6.h>
|
|
|
|
|
#include <net/protocol.h>
|
|
|
|
|
#include <net/transp_v6.h>
|
|
|
|
|
#include <net/ip6_fib.h>
|
|
|
|
|
#include <net/ip6_route.h>
|
|
|
|
|
#include <net/ndisc.h>
|
|
|
|
|
#include <net/addrconf.h>
|
|
|
|
|
#include <net/ip.h>
|
|
|
|
|
#include <net/udp.h>
|
|
|
|
|
#include <net/icmp.h>
|
2013-03-25 14:49:35 +00:00
|
|
|
#include <net/ip_tunnels.h>
|
2005-04-16 22:20:36 +00:00
|
|
|
#include <net/inet_ecn.h>
|
|
|
|
|
#include <net/xfrm.h>
|
|
|
|
|
#include <net/dsfield.h>
|
2008-04-16 08:15:17 +00:00
|
|
|
#include <net/net_namespace.h>
|
|
|
|
|
#include <net/netns/generic.h>
|
2005-04-16 22:20:36 +00:00
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
This version of net/ipv6/sit.c is cloned of net/ipv4/ip_gre.c
|
|
|
|
|
|
|
|
|
|
For comments look at net/ipv4/ip_gre.c --ANK
|
|
|
|
|
*/
|
|
|
|
|
|
2016-08-10 09:03:35 +00:00
|
|
|
#define IP6_SIT_HASH_SIZE 16
|
2006-11-15 04:56:00 +00:00
|
|
|
#define HASH(addr) (((__force u32)addr^((__force u32)addr>>4))&0xF)
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2012-11-27 03:07:11 +00:00
|
|
|
static bool log_ecn_error = true;
|
|
|
|
|
module_param(log_ecn_error, bool, 0644);
|
|
|
|
|
MODULE_PARM_DESC(log_ecn_error, "Log packets received with corrupted ECN");
|
|
|
|
|
|
2010-09-27 00:38:18 +00:00
|
|
|
static int ipip6_tunnel_init(struct net_device *dev);
|
2005-04-16 22:20:36 +00:00
|
|
|
static void ipip6_tunnel_setup(struct net_device *dev);
|
2010-09-27 00:38:18 +00:00
|
|
|
static void ipip6_dev_free(struct net_device *dev);
|
2013-01-29 08:24:25 +00:00
|
|
|
static bool check_6rd(struct ip_tunnel *tunnel, const struct in6_addr *v6dst,
|
|
|
|
|
__be32 *v4dst);
|
2012-11-09 06:10:00 +00:00
|
|
|
static struct rtnl_link_ops sit_link_ops __read_mostly;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
netns: make struct pernet_operations::id unsigned int
Make struct pernet_operations::id unsigned.
There are 2 reasons to do so:
1)
This field is really an index into an zero based array and
thus is unsigned entity. Using negative value is out-of-bound
access by definition.
2)
On x86_64 unsigned 32-bit data which are mixed with pointers
via array indexing or offsets added or subtracted to pointers
are preffered to signed 32-bit data.
"int" being used as an array index needs to be sign-extended
to 64-bit before being used.
void f(long *p, int i)
{
g(p[i]);
}
roughly translates to
movsx rsi, esi
mov rdi, [rsi+...]
call g
MOVSX is 3 byte instruction which isn't necessary if the variable is
unsigned because x86_64 is zero extending by default.
Now, there is net_generic() function which, you guessed it right, uses
"int" as an array index:
static inline void *net_generic(const struct net *net, int id)
{
...
ptr = ng->ptr[id - 1];
...
}
And this function is used a lot, so those sign extensions add up.
Patch snipes ~1730 bytes on allyesconfig kernel (without all junk
messing with code generation):
add/remove: 0/0 grow/shrink: 70/598 up/down: 396/-2126 (-1730)
Unfortunately some functions actually grow bigger.
This is a semmingly random artefact of code generation with register
allocator being used differently. gcc decides that some variable
needs to live in new r8+ registers and every access now requires REX
prefix. Or it is shifted into r12, so [r12+0] addressing mode has to be
used which is longer than [r8]
However, overall balance is in negative direction:
add/remove: 0/0 grow/shrink: 70/598 up/down: 396/-2126 (-1730)
function old new delta
nfsd4_lock 3886 3959 +73
tipc_link_build_proto_msg 1096 1140 +44
mac80211_hwsim_new_radio 2776 2808 +32
tipc_mon_rcv 1032 1058 +26
svcauth_gss_legacy_init 1413 1429 +16
tipc_bcbase_select_primary 379 392 +13
nfsd4_exchange_id 1247 1260 +13
nfsd4_setclientid_confirm 782 793 +11
...
put_client_renew_locked 494 480 -14
ip_set_sockfn_get 730 716 -14
geneve_sock_add 829 813 -16
nfsd4_sequence_done 721 703 -18
nlmclnt_lookup_host 708 686 -22
nfsd4_lockt 1085 1063 -22
nfs_get_client 1077 1050 -27
tcf_bpf_init 1106 1076 -30
nfsd4_encode_fattr 5997 5930 -67
Total: Before=154856051, After=154854321, chg -0.00%
Signed-off-by: Alexey Dobriyan <adobriyan@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2016-11-17 01:58:21 +00:00
|
|
|
static unsigned int sit_net_id __read_mostly;
|
2008-04-16 08:15:17 +00:00
|
|
|
struct sit_net {
|
2016-08-10 09:03:35 +00:00
|
|
|
struct ip_tunnel __rcu *tunnels_r_l[IP6_SIT_HASH_SIZE];
|
|
|
|
|
struct ip_tunnel __rcu *tunnels_r[IP6_SIT_HASH_SIZE];
|
|
|
|
|
struct ip_tunnel __rcu *tunnels_l[IP6_SIT_HASH_SIZE];
|
2010-09-15 11:35:10 +00:00
|
|
|
struct ip_tunnel __rcu *tunnels_wc[1];
|
|
|
|
|
struct ip_tunnel __rcu **tunnels[4];
|
2008-04-16 08:16:38 +00:00
|
|
|
|
2008-04-16 08:16:18 +00:00
|
|
|
struct net_device *fb_tunnel_dev;
|
2008-04-16 08:15:17 +00:00
|
|
|
};
|
|
|
|
|
|
2020-05-19 13:03:15 +00:00
|
|
|
static inline struct sit_net *dev_to_sit_net(struct net_device *dev)
|
|
|
|
|
{
|
|
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
|
|
|
|
|
|
|
|
|
return net_generic(t->net, sit_net_id);
|
|
|
|
|
}
|
|
|
|
|
|
2009-10-23 17:52:14 +00:00
|
|
|
/*
|
|
|
|
|
* Must be invoked with rcu_read_lock
|
|
|
|
|
*/
|
2012-04-01 07:49:01 +00:00
|
|
|
static struct ip_tunnel *ipip6_tunnel_lookup(struct net *net,
|
2017-10-30 17:07:17 +00:00
|
|
|
struct net_device *dev,
|
|
|
|
|
__be32 remote, __be32 local,
|
|
|
|
|
int sifindex)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2010-09-15 11:35:10 +00:00
|
|
|
unsigned int h0 = HASH(remote);
|
|
|
|
|
unsigned int h1 = HASH(local);
|
2005-04-16 22:20:36 +00:00
|
|
|
struct ip_tunnel *t;
|
2008-04-16 08:16:38 +00:00
|
|
|
struct sit_net *sitn = net_generic(net, sit_net_id);
|
2017-10-30 17:07:17 +00:00
|
|
|
int ifindex = dev ? dev->ifindex : 0;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2012-11-11 21:52:34 +00:00
|
|
|
for_each_ip_tunnel_rcu(t, sitn->tunnels_r_l[h0 ^ h1]) {
|
2005-04-16 22:20:36 +00:00
|
|
|
if (local == t->parms.iph.saddr &&
|
2009-05-19 12:56:49 +00:00
|
|
|
remote == t->parms.iph.daddr &&
|
2017-10-30 17:07:17 +00:00
|
|
|
(!dev || !t->parms.link || ifindex == t->parms.link ||
|
|
|
|
|
sifindex == t->parms.link) &&
|
2009-05-19 12:56:49 +00:00
|
|
|
(t->dev->flags & IFF_UP))
|
2005-04-16 22:20:36 +00:00
|
|
|
return t;
|
|
|
|
|
}
|
2012-11-11 21:52:34 +00:00
|
|
|
for_each_ip_tunnel_rcu(t, sitn->tunnels_r[h0]) {
|
2009-05-19 12:56:49 +00:00
|
|
|
if (remote == t->parms.iph.daddr &&
|
2017-10-30 17:07:17 +00:00
|
|
|
(!dev || !t->parms.link || ifindex == t->parms.link ||
|
|
|
|
|
sifindex == t->parms.link) &&
|
2009-05-19 12:56:49 +00:00
|
|
|
(t->dev->flags & IFF_UP))
|
2005-04-16 22:20:36 +00:00
|
|
|
return t;
|
|
|
|
|
}
|
2012-11-11 21:52:34 +00:00
|
|
|
for_each_ip_tunnel_rcu(t, sitn->tunnels_l[h1]) {
|
2009-05-19 12:56:49 +00:00
|
|
|
if (local == t->parms.iph.saddr &&
|
2017-10-30 17:07:17 +00:00
|
|
|
(!dev || !t->parms.link || ifindex == t->parms.link ||
|
|
|
|
|
sifindex == t->parms.link) &&
|
2009-05-19 12:56:49 +00:00
|
|
|
(t->dev->flags & IFF_UP))
|
2005-04-16 22:20:36 +00:00
|
|
|
return t;
|
|
|
|
|
}
|
2009-10-23 17:52:14 +00:00
|
|
|
t = rcu_dereference(sitn->tunnels_wc[0]);
|
2015-03-29 13:00:05 +00:00
|
|
|
if (t && (t->dev->flags & IFF_UP))
|
2005-04-16 22:20:36 +00:00
|
|
|
return t;
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2024-03-27 15:23:52 +00:00
|
|
|
static struct ip_tunnel __rcu **
|
|
|
|
|
__ipip6_bucket(struct sit_net *sitn, struct ip_tunnel_parm_kern *parms)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2007-04-24 11:44:47 +00:00
|
|
|
__be32 remote = parms->iph.daddr;
|
|
|
|
|
__be32 local = parms->iph.saddr;
|
2010-09-15 11:35:10 +00:00
|
|
|
unsigned int h = 0;
|
2005-04-16 22:20:36 +00:00
|
|
|
int prio = 0;
|
|
|
|
|
|
|
|
|
|
if (remote) {
|
|
|
|
|
prio |= 2;
|
|
|
|
|
h ^= HASH(remote);
|
|
|
|
|
}
|
|
|
|
|
if (local) {
|
|
|
|
|
prio |= 1;
|
|
|
|
|
h ^= HASH(local);
|
|
|
|
|
}
|
2008-04-16 08:16:38 +00:00
|
|
|
return &sitn->tunnels[prio][h];
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2010-09-15 11:35:10 +00:00
|
|
|
static inline struct ip_tunnel __rcu **ipip6_bucket(struct sit_net *sitn,
|
2008-04-16 08:15:39 +00:00
|
|
|
struct ip_tunnel *t)
|
2007-04-24 11:44:47 +00:00
|
|
|
{
|
2008-04-16 08:15:39 +00:00
|
|
|
return __ipip6_bucket(sitn, &t->parms);
|
2007-04-24 11:44:47 +00:00
|
|
|
}
|
|
|
|
|
|
2008-04-16 08:15:39 +00:00
|
|
|
static void ipip6_tunnel_unlink(struct sit_net *sitn, struct ip_tunnel *t)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2010-09-15 11:35:10 +00:00
|
|
|
struct ip_tunnel __rcu **tp;
|
|
|
|
|
struct ip_tunnel *iter;
|
|
|
|
|
|
|
|
|
|
for (tp = ipip6_bucket(sitn, t);
|
|
|
|
|
(iter = rtnl_dereference(*tp)) != NULL;
|
|
|
|
|
tp = &iter->next) {
|
|
|
|
|
if (t == iter) {
|
2012-01-12 04:41:32 +00:00
|
|
|
rcu_assign_pointer(*tp, t->next);
|
2005-04-16 22:20:36 +00:00
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2008-04-16 08:15:39 +00:00
|
|
|
static void ipip6_tunnel_link(struct sit_net *sitn, struct ip_tunnel *t)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2010-09-15 11:35:10 +00:00
|
|
|
struct ip_tunnel __rcu **tp = ipip6_bucket(sitn, t);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2012-01-12 04:41:32 +00:00
|
|
|
rcu_assign_pointer(t->next, rtnl_dereference(*tp));
|
|
|
|
|
rcu_assign_pointer(*tp, t);
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2009-10-11 03:31:34 +00:00
|
|
|
static void ipip6_tunnel_clone_6rd(struct net_device *dev, struct sit_net *sitn)
|
2009-09-22 23:43:14 +00:00
|
|
|
{
|
|
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
2009-10-11 03:31:34 +00:00
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
|
|
|
|
|
net: do not create fallback tunnels for non-default namespaces
fallback tunnels (like tunl0, gre0, gretap0, erspan0, sit0,
ip6tnl0, ip6gre0) are automatically created when the corresponding
module is loaded.
These tunnels are also automatically created when a new network
namespace is created, at a great cost.
In many cases, netns are used for isolation purposes, and these
extra network devices are a waste of resources. We are using
thousands of netns per host, and hit the netns creation/delete
bottleneck a lot. (Many thanks to Kirill for recent work on this)
Add a new sysctl so that we can opt-out from this automatic creation.
Note that these tunnels are still created for the initial namespace,
to be the least intrusive for typical setups.
Tested:
lpk43:~# cat add_del_unshare.sh
for i in `seq 1 40`
do
(for j in `seq 1 100` ; do unshare -n /bin/true >/dev/null ; done) &
done
wait
lpk43:~# echo 0 >/proc/sys/net/core/fb_tunnels_only_for_init_net
lpk43:~# time ./add_del_unshare.sh
real 0m37.521s
user 0m0.886s
sys 7m7.084s
lpk43:~# echo 1 >/proc/sys/net/core/fb_tunnels_only_for_init_net
lpk43:~# time ./add_del_unshare.sh
real 0m4.761s
user 0m0.851s
sys 1m8.343s
lpk43:~#
Signed-off-by: Eric Dumazet <edumazet@google.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2018-03-08 20:51:41 +00:00
|
|
|
if (dev == sitn->fb_tunnel_dev || !sitn->fb_tunnel_dev) {
|
2009-09-22 23:43:14 +00:00
|
|
|
ipv6_addr_set(&t->ip6rd.prefix, htonl(0x20020000), 0, 0, 0);
|
|
|
|
|
t->ip6rd.relay_prefix = 0;
|
|
|
|
|
t->ip6rd.prefixlen = 16;
|
|
|
|
|
t->ip6rd.relay_prefixlen = 0;
|
|
|
|
|
} else {
|
|
|
|
|
struct ip_tunnel *t0 = netdev_priv(sitn->fb_tunnel_dev);
|
|
|
|
|
memcpy(&t->ip6rd, &t0->ip6rd, sizeof(t->ip6rd));
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-14 05:14:07 +00:00
|
|
|
static int ipip6_tunnel_create(struct net_device *dev)
|
|
|
|
|
{
|
|
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
|
|
|
|
struct net *net = dev_net(dev);
|
|
|
|
|
struct sit_net *sitn = net_generic(net, sit_net_id);
|
|
|
|
|
int err;
|
|
|
|
|
|
2021-10-12 16:06:34 +00:00
|
|
|
__dev_addr_set(dev, &t->parms.iph.saddr, 4);
|
2014-11-03 08:19:29 +00:00
|
|
|
memcpy(dev->broadcast, &t->parms.iph.daddr, 4);
|
2012-11-14 05:14:07 +00:00
|
|
|
|
ip_tunnel: convert __be16 tunnel flags to bitmaps
Historically, tunnel flags like TUNNEL_CSUM or TUNNEL_ERSPAN_OPT
have been defined as __be16. Now all of those 16 bits are occupied
and there's no more free space for new flags.
It can't be simply switched to a bigger container with no
adjustments to the values, since it's an explicit Endian storage,
and on LE systems (__be16)0x0001 equals to
(__be64)0x0001000000000000.
We could probably define new 64-bit flags depending on the
Endianness, i.e. (__be64)0x0001 on BE and (__be64)0x00010000... on
LE, but that would introduce an Endianness dependency and spawn a
ton of Sparse warnings. To mitigate them, all of those places which
were adjusted with this change would be touched anyway, so why not
define stuff properly if there's no choice.
Define IP_TUNNEL_*_BIT counterparts as a bit number instead of the
value already coded and a fistful of <16 <-> bitmap> converters and
helpers. The two flags which have a different bit position are
SIT_ISATAP_BIT and VTI_ISVTI_BIT, as they were defined not as
__cpu_to_be16(), but as (__force __be16), i.e. had different
positions on LE and BE. Now they both have strongly defined places.
Change all __be16 fields which were used to store those flags, to
IP_TUNNEL_DECLARE_FLAGS() -> DECLARE_BITMAP(__IP_TUNNEL_FLAG_NUM) ->
unsigned long[1] for now, and replace all TUNNEL_* occurrences to
their bitmap counterparts. Use the converters in the places which talk
to the userspace, hardware (NFP) or other hosts (GRE header). The rest
must explicitly use the new flags only. This must be done at once,
otherwise there will be too many conversions throughout the code in
the intermediate commits.
Finally, disable the old __be16 flags for use in the kernel code
(except for the two 'irregular' flags mentioned above), to prevent
any accidental (mis)use of them. For the userspace, nothing is
changed, only additions were made.
Most noticeable bloat-o-meter difference (.text):
vmlinux: 307/-1 (306)
gre.ko: 62/0 (62)
ip_gre.ko: 941/-217 (724) [*]
ip_tunnel.ko: 390/-900 (-510) [**]
ip_vti.ko: 138/0 (138)
ip6_gre.ko: 534/-18 (516) [*]
ip6_tunnel.ko: 118/-10 (108)
[*] gre_flags_to_tnl_flags() grew, but still is inlined
[**] ip_tunnel_find() got uninlined, hence such decrease
The average code size increase in non-extreme case is 100-200 bytes
per module, mostly due to sizeof(long) > sizeof(__be16), as
%__IP_TUNNEL_FLAG_NUM is less than %BITS_PER_LONG and the compilers
are able to expand the majority of bitmap_*() calls here into direct
operations on scalars.
Reviewed-by: Simon Horman <horms@kernel.org>
Signed-off-by: Alexander Lobakin <aleksander.lobakin@intel.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2024-03-27 15:23:53 +00:00
|
|
|
if (test_bit(IP_TUNNEL_SIT_ISATAP_BIT, t->parms.i_flags))
|
2012-11-14 05:14:07 +00:00
|
|
|
dev->priv_flags |= IFF_ISATAP;
|
|
|
|
|
|
2016-01-25 13:29:19 +00:00
|
|
|
dev->rtnl_link_ops = &sit_link_ops;
|
|
|
|
|
|
2012-11-14 05:14:07 +00:00
|
|
|
err = register_netdevice(dev);
|
|
|
|
|
if (err < 0)
|
|
|
|
|
goto out;
|
|
|
|
|
|
2014-11-03 08:19:29 +00:00
|
|
|
ipip6_tunnel_clone_6rd(dev, sitn);
|
|
|
|
|
|
2012-11-14 05:14:07 +00:00
|
|
|
ipip6_tunnel_link(sitn, t);
|
|
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
out:
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
2010-09-15 11:35:10 +00:00
|
|
|
static struct ip_tunnel *ipip6_tunnel_locate(struct net *net,
|
2024-03-27 15:23:52 +00:00
|
|
|
struct ip_tunnel_parm_kern *parms,
|
|
|
|
|
int create)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2006-11-15 04:56:00 +00:00
|
|
|
__be32 remote = parms->iph.daddr;
|
|
|
|
|
__be32 local = parms->iph.saddr;
|
2010-09-15 11:35:10 +00:00
|
|
|
struct ip_tunnel *t, *nt;
|
|
|
|
|
struct ip_tunnel __rcu **tp;
|
2005-04-16 22:20:36 +00:00
|
|
|
struct net_device *dev;
|
|
|
|
|
char name[IFNAMSIZ];
|
2008-04-16 08:15:39 +00:00
|
|
|
struct sit_net *sitn = net_generic(net, sit_net_id);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2010-09-15 11:35:10 +00:00
|
|
|
for (tp = __ipip6_bucket(sitn, parms);
|
|
|
|
|
(t = rtnl_dereference(*tp)) != NULL;
|
|
|
|
|
tp = &t->next) {
|
2009-05-19 12:56:48 +00:00
|
|
|
if (local == t->parms.iph.saddr &&
|
2009-05-19 12:56:49 +00:00
|
|
|
remote == t->parms.iph.daddr &&
|
|
|
|
|
parms->link == t->parms.link) {
|
2009-05-19 12:56:48 +00:00
|
|
|
if (create)
|
|
|
|
|
return NULL;
|
|
|
|
|
else
|
|
|
|
|
return t;
|
|
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
if (!create)
|
|
|
|
|
goto failed;
|
|
|
|
|
|
2018-04-05 13:39:28 +00:00
|
|
|
if (parms->name[0]) {
|
|
|
|
|
if (!dev_valid_name(parms->name))
|
|
|
|
|
goto failed;
|
2022-08-18 21:02:20 +00:00
|
|
|
strscpy(name, parms->name, IFNAMSIZ);
|
2018-04-05 13:39:28 +00:00
|
|
|
} else {
|
2010-09-27 00:38:18 +00:00
|
|
|
strcpy(name, "sit%d");
|
2018-04-05 13:39:28 +00:00
|
|
|
}
|
net: set name_assign_type in alloc_netdev()
Extend alloc_netdev{,_mq{,s}}() to take name_assign_type as argument, and convert
all users to pass NET_NAME_UNKNOWN.
Coccinelle patch:
@@
expression sizeof_priv, name, setup, txqs, rxqs, count;
@@
(
-alloc_netdev_mqs(sizeof_priv, name, setup, txqs, rxqs)
+alloc_netdev_mqs(sizeof_priv, name, NET_NAME_UNKNOWN, setup, txqs, rxqs)
|
-alloc_netdev_mq(sizeof_priv, name, setup, count)
+alloc_netdev_mq(sizeof_priv, name, NET_NAME_UNKNOWN, setup, count)
|
-alloc_netdev(sizeof_priv, name, setup)
+alloc_netdev(sizeof_priv, name, NET_NAME_UNKNOWN, setup)
)
v9: move comments here from the wrong commit
Signed-off-by: Tom Gundersen <teg@jklm.no>
Reviewed-by: David Herrmann <dh.herrmann@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2014-07-14 14:37:24 +00:00
|
|
|
dev = alloc_netdev(sizeof(*t), name, NET_NAME_UNKNOWN,
|
|
|
|
|
ipip6_tunnel_setup);
|
2015-03-29 13:00:04 +00:00
|
|
|
if (!dev)
|
2005-04-16 22:20:36 +00:00
|
|
|
return NULL;
|
|
|
|
|
|
2008-04-16 08:17:18 +00:00
|
|
|
dev_net_set(dev, net);
|
|
|
|
|
|
2006-01-09 06:05:26 +00:00
|
|
|
nt = netdev_priv(dev);
|
2008-11-21 04:33:56 +00:00
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
nt->parms = *parms;
|
2012-11-14 05:14:07 +00:00
|
|
|
if (ipip6_tunnel_create(dev) < 0)
|
[INET]: Don't create tunnels with '%' in name.
Four tunnel drivers (ip_gre, ipip, ip6_tunnel and sit) can receive a
pre-defined name for a device from the userspace. Since these drivers
call the register_netdevice() (rtnl_lock, is held), which does _not_
generate the device's name, this name may contain a '%' character.
Not sure how bad is this to have a device with a '%' in its name, but
all the other places either use the register_netdev(), which call the
dev_alloc_name(), or explicitly call the dev_alloc_name() before
registering, i.e. do not allow for such names.
This had to be prior to the commit 34cc7b, but I forgot to number the
patches and this one got lost, sorry.
Signed-off-by: Pavel Emelyanov <xemul@openvz.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
2008-02-27 07:51:04 +00:00
|
|
|
goto failed_free;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2021-06-02 10:36:26 +00:00
|
|
|
if (!parms->name[0])
|
|
|
|
|
strcpy(parms->name, dev->name);
|
|
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
return nt;
|
|
|
|
|
|
[INET]: Don't create tunnels with '%' in name.
Four tunnel drivers (ip_gre, ipip, ip6_tunnel and sit) can receive a
pre-defined name for a device from the userspace. Since these drivers
call the register_netdevice() (rtnl_lock, is held), which does _not_
generate the device's name, this name may contain a '%' character.
Not sure how bad is this to have a device with a '%' in its name, but
all the other places either use the register_netdev(), which call the
dev_alloc_name(), or explicitly call the dev_alloc_name() before
registering, i.e. do not allow for such names.
This had to be prior to the commit 34cc7b, but I forgot to number the
patches and this one got lost, sorry.
Signed-off-by: Pavel Emelyanov <xemul@openvz.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
2008-02-27 07:51:04 +00:00
|
|
|
failed_free:
|
net: Fix inconsistent teardown and release of private netdev state.
Network devices can allocate reasources and private memory using
netdev_ops->ndo_init(). However, the release of these resources
can occur in one of two different places.
Either netdev_ops->ndo_uninit() or netdev->destructor().
The decision of which operation frees the resources depends upon
whether it is necessary for all netdev refs to be released before it
is safe to perform the freeing.
netdev_ops->ndo_uninit() presumably can occur right after the
NETDEV_UNREGISTER notifier completes and the unicast and multicast
address lists are flushed.
netdev->destructor(), on the other hand, does not run until the
netdev references all go away.
Further complicating the situation is that netdev->destructor()
almost universally does also a free_netdev().
This creates a problem for the logic in register_netdevice().
Because all callers of register_netdevice() manage the freeing
of the netdev, and invoke free_netdev(dev) if register_netdevice()
fails.
If netdev_ops->ndo_init() succeeds, but something else fails inside
of register_netdevice(), it does call ndo_ops->ndo_uninit(). But
it is not able to invoke netdev->destructor().
This is because netdev->destructor() will do a free_netdev() and
then the caller of register_netdevice() will do the same.
However, this means that the resources that would normally be released
by netdev->destructor() will not be.
Over the years drivers have added local hacks to deal with this, by
invoking their destructor parts by hand when register_netdevice()
fails.
Many drivers do not try to deal with this, and instead we have leaks.
Let's close this hole by formalizing the distinction between what
private things need to be freed up by netdev->destructor() and whether
the driver needs unregister_netdevice() to perform the free_netdev().
netdev->priv_destructor() performs all actions to free up the private
resources that used to be freed by netdev->destructor(), except for
free_netdev().
netdev->needs_free_netdev is a boolean that indicates whether
free_netdev() should be done at the end of unregister_netdevice().
Now, register_netdevice() can sanely release all resources after
ndo_ops->ndo_init() succeeds, by invoking both ndo_ops->ndo_uninit()
and netdev->priv_destructor().
And at the end of unregister_netdevice(), we invoke
netdev->priv_destructor() and optionally call free_netdev().
Signed-off-by: David S. Miller <davem@davemloft.net>
2017-05-08 16:52:56 +00:00
|
|
|
free_netdev(dev);
|
2005-04-16 22:20:36 +00:00
|
|
|
failed:
|
|
|
|
|
return NULL;
|
|
|
|
|
}
|
|
|
|
|
|
2009-10-23 17:51:26 +00:00
|
|
|
#define for_each_prl_rcu(start) \
|
|
|
|
|
for (prl = rcu_dereference(start); \
|
|
|
|
|
prl; \
|
|
|
|
|
prl = rcu_dereference(prl->next))
|
|
|
|
|
|
2008-03-11 22:35:59 +00:00
|
|
|
static struct ip_tunnel_prl_entry *
|
2008-03-22 08:42:57 +00:00
|
|
|
__ipip6_tunnel_locate_prl(struct ip_tunnel *t, __be32 addr)
|
2008-03-11 22:35:59 +00:00
|
|
|
{
|
2009-10-23 17:51:26 +00:00
|
|
|
struct ip_tunnel_prl_entry *prl;
|
2008-03-11 22:35:59 +00:00
|
|
|
|
2009-10-23 17:51:26 +00:00
|
|
|
for_each_prl_rcu(t->prl)
|
|
|
|
|
if (prl->addr == addr)
|
2008-03-11 22:35:59 +00:00
|
|
|
break;
|
2009-10-23 17:51:26 +00:00
|
|
|
return prl;
|
2008-03-11 22:35:59 +00:00
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
2021-07-27 13:45:06 +00:00
|
|
|
static int ipip6_tunnel_get_prl(struct net_device *dev, struct ip_tunnel_prl __user *a)
|
2008-03-24 09:28:39 +00:00
|
|
|
{
|
2020-05-19 13:03:15 +00:00
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
2008-06-16 23:48:20 +00:00
|
|
|
struct ip_tunnel_prl kprl, *kp;
|
2008-03-24 09:28:39 +00:00
|
|
|
struct ip_tunnel_prl_entry *prl;
|
|
|
|
|
unsigned int cmax, c = 0, ca, len;
|
|
|
|
|
int ret = 0;
|
|
|
|
|
|
2020-05-19 13:03:15 +00:00
|
|
|
if (dev == dev_to_sit_net(dev)->fb_tunnel_dev)
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
2008-06-16 23:48:20 +00:00
|
|
|
if (copy_from_user(&kprl, a, sizeof(kprl)))
|
|
|
|
|
return -EFAULT;
|
|
|
|
|
cmax = kprl.datalen / sizeof(kprl);
|
|
|
|
|
if (cmax > 1 && kprl.addr != htonl(INADDR_ANY))
|
2008-03-24 09:28:39 +00:00
|
|
|
cmax = 1;
|
|
|
|
|
|
|
|
|
|
/* For simple GET or for root users,
|
|
|
|
|
* we try harder to allocate.
|
|
|
|
|
*/
|
|
|
|
|
kp = (cmax <= 1 || capable(CAP_NET_ADMIN)) ?
|
2021-07-19 10:44:50 +00:00
|
|
|
kcalloc(cmax, sizeof(*kp), GFP_KERNEL_ACCOUNT | __GFP_NOWARN) :
|
2008-03-24 09:28:39 +00:00
|
|
|
NULL;
|
|
|
|
|
|
2021-03-27 09:29:32 +00:00
|
|
|
ca = min(t->prl_count, cmax);
|
2008-03-24 09:28:39 +00:00
|
|
|
|
|
|
|
|
if (!kp) {
|
|
|
|
|
/* We don't try hard to allocate much memory for
|
|
|
|
|
* non-root users.
|
|
|
|
|
* For root users, retry allocating enough memory for
|
|
|
|
|
* the answer.
|
|
|
|
|
*/
|
2021-07-19 10:44:50 +00:00
|
|
|
kp = kcalloc(ca, sizeof(*kp), GFP_ATOMIC | __GFP_ACCOUNT |
|
|
|
|
|
__GFP_NOWARN);
|
2008-03-24 09:28:39 +00:00
|
|
|
if (!kp) {
|
|
|
|
|
ret = -ENOMEM;
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-28 03:50:30 +00:00
|
|
|
rcu_read_lock();
|
2009-10-23 17:51:26 +00:00
|
|
|
for_each_prl_rcu(t->prl) {
|
2009-09-29 11:27:05 +00:00
|
|
|
if (c >= cmax)
|
2008-03-24 09:28:39 +00:00
|
|
|
break;
|
2008-06-16 23:48:20 +00:00
|
|
|
if (kprl.addr != htonl(INADDR_ANY) && prl->addr != kprl.addr)
|
2008-03-24 09:28:39 +00:00
|
|
|
continue;
|
|
|
|
|
kp[c].addr = prl->addr;
|
|
|
|
|
kp[c].flags = prl->flags;
|
|
|
|
|
c++;
|
2008-06-16 23:48:20 +00:00
|
|
|
if (kprl.addr != htonl(INADDR_ANY))
|
2008-03-24 09:28:39 +00:00
|
|
|
break;
|
|
|
|
|
}
|
2022-06-28 03:50:30 +00:00
|
|
|
|
2009-10-23 17:51:26 +00:00
|
|
|
rcu_read_unlock();
|
2008-03-24 09:28:39 +00:00
|
|
|
|
|
|
|
|
len = sizeof(*kp) * c;
|
2008-06-16 23:48:20 +00:00
|
|
|
ret = 0;
|
|
|
|
|
if ((len && copy_to_user(a + 1, kp, len)) || put_user(len, &a->datalen))
|
|
|
|
|
ret = -EFAULT;
|
2008-03-24 09:28:39 +00:00
|
|
|
|
|
|
|
|
kfree(kp);
|
2022-06-28 03:50:30 +00:00
|
|
|
out:
|
2008-06-16 23:48:20 +00:00
|
|
|
return ret;
|
2008-03-24 09:28:39 +00:00
|
|
|
}
|
|
|
|
|
|
2008-03-11 22:35:59 +00:00
|
|
|
static int
|
|
|
|
|
ipip6_tunnel_add_prl(struct ip_tunnel *t, struct ip_tunnel_prl *a, int chg)
|
|
|
|
|
{
|
|
|
|
|
struct ip_tunnel_prl_entry *p;
|
2008-03-22 08:42:57 +00:00
|
|
|
int err = 0;
|
|
|
|
|
|
2008-03-22 08:50:59 +00:00
|
|
|
if (a->addr == htonl(INADDR_ANY))
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
2010-06-01 07:26:58 +00:00
|
|
|
ASSERT_RTNL();
|
2008-03-11 22:35:59 +00:00
|
|
|
|
2010-09-15 11:35:10 +00:00
|
|
|
for (p = rtnl_dereference(t->prl); p; p = rtnl_dereference(p->next)) {
|
2008-03-24 09:28:39 +00:00
|
|
|
if (p->addr == a->addr) {
|
2009-10-23 17:51:26 +00:00
|
|
|
if (chg) {
|
|
|
|
|
p->flags = a->flags;
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
2008-03-22 08:42:57 +00:00
|
|
|
err = -EEXIST;
|
|
|
|
|
goto out;
|
2008-03-11 22:35:59 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2008-03-22 08:42:57 +00:00
|
|
|
if (chg) {
|
|
|
|
|
err = -ENXIO;
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
2008-03-11 22:35:59 +00:00
|
|
|
|
|
|
|
|
p = kzalloc(sizeof(struct ip_tunnel_prl_entry), GFP_KERNEL);
|
2008-03-22 08:42:57 +00:00
|
|
|
if (!p) {
|
|
|
|
|
err = -ENOBUFS;
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
2008-03-11 22:35:59 +00:00
|
|
|
|
|
|
|
|
p->next = t->prl;
|
2008-03-24 09:28:39 +00:00
|
|
|
p->addr = a->addr;
|
|
|
|
|
p->flags = a->flags;
|
2009-10-23 17:51:26 +00:00
|
|
|
t->prl_count++;
|
2012-01-12 04:41:32 +00:00
|
|
|
rcu_assign_pointer(t->prl, p);
|
2008-03-22 08:42:57 +00:00
|
|
|
out:
|
|
|
|
|
return err;
|
2008-03-11 22:35:59 +00:00
|
|
|
}
|
|
|
|
|
|
2009-10-23 17:51:26 +00:00
|
|
|
static void prl_list_destroy_rcu(struct rcu_head *head)
|
|
|
|
|
{
|
|
|
|
|
struct ip_tunnel_prl_entry *p, *n;
|
|
|
|
|
|
|
|
|
|
p = container_of(head, struct ip_tunnel_prl_entry, rcu_head);
|
|
|
|
|
do {
|
2011-01-20 07:16:24 +00:00
|
|
|
n = rcu_dereference_protected(p->next, 1);
|
2009-10-23 17:51:26 +00:00
|
|
|
kfree(p);
|
|
|
|
|
p = n;
|
|
|
|
|
} while (p);
|
|
|
|
|
}
|
|
|
|
|
|
2008-03-11 22:35:59 +00:00
|
|
|
static int
|
|
|
|
|
ipip6_tunnel_del_prl(struct ip_tunnel *t, struct ip_tunnel_prl *a)
|
|
|
|
|
{
|
2011-01-20 07:16:24 +00:00
|
|
|
struct ip_tunnel_prl_entry *x;
|
|
|
|
|
struct ip_tunnel_prl_entry __rcu **p;
|
2008-03-22 08:42:57 +00:00
|
|
|
int err = 0;
|
|
|
|
|
|
2010-06-01 07:26:58 +00:00
|
|
|
ASSERT_RTNL();
|
2008-03-11 22:35:59 +00:00
|
|
|
|
2008-03-22 08:50:59 +00:00
|
|
|
if (a && a->addr != htonl(INADDR_ANY)) {
|
2011-01-20 07:16:24 +00:00
|
|
|
for (p = &t->prl;
|
|
|
|
|
(x = rtnl_dereference(*p)) != NULL;
|
|
|
|
|
p = &x->next) {
|
|
|
|
|
if (x->addr == a->addr) {
|
2008-03-11 22:35:59 +00:00
|
|
|
*p = x->next;
|
2011-05-02 07:56:57 +00:00
|
|
|
kfree_rcu(x, rcu_head);
|
2008-03-24 09:28:39 +00:00
|
|
|
t->prl_count--;
|
2008-03-22 08:42:57 +00:00
|
|
|
goto out;
|
2008-03-11 22:35:59 +00:00
|
|
|
}
|
|
|
|
|
}
|
2008-03-22 08:42:57 +00:00
|
|
|
err = -ENXIO;
|
2008-03-11 22:35:59 +00:00
|
|
|
} else {
|
2011-01-20 07:16:24 +00:00
|
|
|
x = rtnl_dereference(t->prl);
|
|
|
|
|
if (x) {
|
2009-10-23 17:51:26 +00:00
|
|
|
t->prl_count = 0;
|
|
|
|
|
call_rcu(&x->rcu_head, prl_list_destroy_rcu);
|
|
|
|
|
t->prl = NULL;
|
2008-03-11 22:35:59 +00:00
|
|
|
}
|
|
|
|
|
}
|
2008-03-22 08:42:57 +00:00
|
|
|
out:
|
2009-05-19 12:56:50 +00:00
|
|
|
return err;
|
2008-03-11 22:35:59 +00:00
|
|
|
}
|
|
|
|
|
|
2021-07-27 13:45:06 +00:00
|
|
|
static int ipip6_tunnel_prl_ctl(struct net_device *dev,
|
|
|
|
|
struct ip_tunnel_prl __user *data, int cmd)
|
2020-05-19 13:03:15 +00:00
|
|
|
{
|
|
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
|
|
|
|
struct ip_tunnel_prl prl;
|
|
|
|
|
int err;
|
|
|
|
|
|
|
|
|
|
if (!ns_capable(t->net->user_ns, CAP_NET_ADMIN))
|
|
|
|
|
return -EPERM;
|
|
|
|
|
if (dev == dev_to_sit_net(dev)->fb_tunnel_dev)
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
2021-07-27 13:45:06 +00:00
|
|
|
if (copy_from_user(&prl, data, sizeof(prl)))
|
2020-05-19 13:03:15 +00:00
|
|
|
return -EFAULT;
|
|
|
|
|
|
|
|
|
|
switch (cmd) {
|
|
|
|
|
case SIOCDELPRL:
|
|
|
|
|
err = ipip6_tunnel_del_prl(t, &prl);
|
|
|
|
|
break;
|
|
|
|
|
case SIOCADDPRL:
|
|
|
|
|
case SIOCCHGPRL:
|
|
|
|
|
err = ipip6_tunnel_add_prl(t, &prl, cmd == SIOCCHGPRL);
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
dst_cache_reset(&t->dst_cache);
|
|
|
|
|
netdev_state_change(dev);
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
2008-03-11 22:35:59 +00:00
|
|
|
static int
|
2011-04-22 04:53:02 +00:00
|
|
|
isatap_chksrc(struct sk_buff *skb, const struct iphdr *iph, struct ip_tunnel *t)
|
2008-03-11 22:35:59 +00:00
|
|
|
{
|
2008-03-22 08:42:57 +00:00
|
|
|
struct ip_tunnel_prl_entry *p;
|
2008-03-11 22:35:59 +00:00
|
|
|
int ok = 1;
|
|
|
|
|
|
2009-10-23 17:51:26 +00:00
|
|
|
rcu_read_lock();
|
2008-03-22 08:42:57 +00:00
|
|
|
p = __ipip6_tunnel_locate_prl(t, iph->saddr);
|
2008-03-11 22:35:59 +00:00
|
|
|
if (p) {
|
2008-03-24 09:28:39 +00:00
|
|
|
if (p->flags & PRL_DEFAULT)
|
2008-03-11 22:35:59 +00:00
|
|
|
skb->ndisc_nodetype = NDISC_NODETYPE_DEFAULT;
|
|
|
|
|
else
|
|
|
|
|
skb->ndisc_nodetype = NDISC_NODETYPE_NODEFAULT;
|
|
|
|
|
} else {
|
2011-04-22 04:53:02 +00:00
|
|
|
const struct in6_addr *addr6 = &ipv6_hdr(skb)->saddr;
|
|
|
|
|
|
2008-03-11 22:35:59 +00:00
|
|
|
if (ipv6_addr_is_isatap(addr6) &&
|
|
|
|
|
(addr6->s6_addr32[3] == iph->saddr) &&
|
2008-03-16 02:54:23 +00:00
|
|
|
ipv6_chk_prefix(addr6, t->dev))
|
2008-03-11 22:35:59 +00:00
|
|
|
skb->ndisc_nodetype = NDISC_NODETYPE_HOST;
|
|
|
|
|
else
|
|
|
|
|
ok = 0;
|
|
|
|
|
}
|
2009-10-23 17:51:26 +00:00
|
|
|
rcu_read_unlock();
|
2008-03-11 22:35:59 +00:00
|
|
|
return ok;
|
|
|
|
|
}
|
|
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
static void ipip6_tunnel_uninit(struct net_device *dev)
|
|
|
|
|
{
|
2013-06-26 14:11:28 +00:00
|
|
|
struct ip_tunnel *tunnel = netdev_priv(dev);
|
|
|
|
|
struct sit_net *sitn = net_generic(tunnel->net, sit_net_id);
|
2008-04-16 08:15:39 +00:00
|
|
|
|
2008-04-16 08:16:18 +00:00
|
|
|
if (dev == sitn->fb_tunnel_dev) {
|
2011-08-01 16:19:00 +00:00
|
|
|
RCU_INIT_POINTER(sitn->tunnels_wc[0], NULL);
|
2005-04-16 22:20:36 +00:00
|
|
|
} else {
|
2013-06-26 14:11:28 +00:00
|
|
|
ipip6_tunnel_unlink(sitn, tunnel);
|
|
|
|
|
ipip6_tunnel_del_prl(tunnel, NULL);
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
2016-02-12 14:43:55 +00:00
|
|
|
dst_cache_reset(&tunnel->dst_cache);
|
2022-06-08 04:39:55 +00:00
|
|
|
netdev_put(dev, &tunnel->dev_tracker);
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2007-02-13 20:55:25 +00:00
|
|
|
static int ipip6_err(struct sk_buff *skb, u32 info)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2011-04-22 04:53:02 +00:00
|
|
|
const struct iphdr *iph = (const struct iphdr *)skb->data;
|
2007-03-13 17:43:18 +00:00
|
|
|
const int type = icmp_hdr(skb)->type;
|
|
|
|
|
const int code = icmp_hdr(skb)->code;
|
2016-06-19 04:52:06 +00:00
|
|
|
unsigned int data_len = 0;
|
2005-04-16 22:20:36 +00:00
|
|
|
struct ip_tunnel *t;
|
2017-10-30 17:07:17 +00:00
|
|
|
int sifindex;
|
2007-02-13 20:55:25 +00:00
|
|
|
int err;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
|
|
|
|
switch (type) {
|
|
|
|
|
default:
|
|
|
|
|
case ICMP_PARAMETERPROB:
|
2007-02-13 20:55:25 +00:00
|
|
|
return 0;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
|
|
|
|
case ICMP_DEST_UNREACH:
|
|
|
|
|
switch (code) {
|
|
|
|
|
case ICMP_SR_FAILED:
|
|
|
|
|
/* Impossible event. */
|
2007-02-13 20:55:25 +00:00
|
|
|
return 0;
|
2005-04-16 22:20:36 +00:00
|
|
|
default:
|
|
|
|
|
/* All others are translated to HOST_UNREACH.
|
|
|
|
|
rfc2003 contains "deep thoughts" about NET_UNREACH,
|
|
|
|
|
I believe they are just ether pollution. --ANK
|
|
|
|
|
*/
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
break;
|
|
|
|
|
case ICMP_TIME_EXCEEDED:
|
|
|
|
|
if (code != ICMP_EXC_TTL)
|
2007-02-13 20:55:25 +00:00
|
|
|
return 0;
|
2016-06-19 04:52:06 +00:00
|
|
|
data_len = icmp_hdr(skb)->un.reserved[1] * 4; /* RFC 4884 4.1 */
|
2005-04-16 22:20:36 +00:00
|
|
|
break;
|
2012-07-12 07:25:15 +00:00
|
|
|
case ICMP_REDIRECT:
|
|
|
|
|
break;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2007-02-13 20:55:25 +00:00
|
|
|
err = -ENOENT;
|
|
|
|
|
|
2017-10-30 17:07:17 +00:00
|
|
|
sifindex = netif_is_l3_master(skb->dev) ? IPCB(skb)->iif : 0;
|
|
|
|
|
t = ipip6_tunnel_lookup(dev_net(skb->dev), skb->dev,
|
|
|
|
|
iph->daddr, iph->saddr, sifindex);
|
2015-03-29 13:00:04 +00:00
|
|
|
if (!t)
|
2012-06-15 05:21:46 +00:00
|
|
|
goto out;
|
|
|
|
|
|
|
|
|
|
if (type == ICMP_DEST_UNREACH && code == ICMP_FRAG_NEEDED) {
|
|
|
|
|
ipv4_update_pmtu(skb, dev_net(skb->dev), info,
|
2018-09-26 03:56:26 +00:00
|
|
|
t->parms.link, iph->protocol);
|
2012-06-15 05:21:46 +00:00
|
|
|
err = 0;
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
2012-07-12 07:25:15 +00:00
|
|
|
if (type == ICMP_REDIRECT) {
|
2018-09-26 03:56:27 +00:00
|
|
|
ipv4_redirect(skb, dev_net(skb->dev), t->parms.link,
|
|
|
|
|
iph->protocol);
|
2012-07-12 07:25:15 +00:00
|
|
|
err = 0;
|
|
|
|
|
goto out;
|
|
|
|
|
}
|
2012-06-15 05:21:46 +00:00
|
|
|
|
2016-06-19 04:52:04 +00:00
|
|
|
err = 0;
|
2019-02-07 10:36:11 +00:00
|
|
|
if (__in6_dev_get(skb->dev) &&
|
|
|
|
|
!ip6_err_gen_icmpv6_unreach(skb, iph->ihl * 4, type, data_len))
|
2005-04-16 22:20:36 +00:00
|
|
|
goto out;
|
2007-02-13 20:55:25 +00:00
|
|
|
|
2016-06-19 04:52:04 +00:00
|
|
|
if (t->parms.iph.daddr == 0)
|
2013-11-22 15:23:20 +00:00
|
|
|
goto out;
|
|
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
if (t->parms.iph.ttl == 0 && type == ICMP_TIME_EXCEEDED)
|
|
|
|
|
goto out;
|
|
|
|
|
|
2009-02-25 07:37:19 +00:00
|
|
|
if (time_before(jiffies, t->err_time + IPTUNNEL_ERR_TIMEO))
|
2005-04-16 22:20:36 +00:00
|
|
|
t->err_count++;
|
|
|
|
|
else
|
|
|
|
|
t->err_count = 1;
|
|
|
|
|
t->err_time = jiffies;
|
|
|
|
|
out:
|
2007-02-13 20:55:25 +00:00
|
|
|
return err;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2013-01-29 08:24:25 +00:00
|
|
|
static inline bool is_spoofed_6rd(struct ip_tunnel *tunnel, const __be32 v4addr,
|
|
|
|
|
const struct in6_addr *v6addr)
|
|
|
|
|
{
|
|
|
|
|
__be32 v4embed = 0;
|
|
|
|
|
if (check_6rd(tunnel, v6addr, &v4embed) && v4addr != v4embed)
|
|
|
|
|
return true;
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2013-09-23 20:04:19 +00:00
|
|
|
/* Checks if an address matches an address on the tunnel interface.
|
|
|
|
|
* Used to detect the NAT of proto 41 packets and let them pass spoofing test.
|
|
|
|
|
* Long story:
|
|
|
|
|
* This function is called after we considered the packet as spoofed
|
|
|
|
|
* in is_spoofed_6rd.
|
|
|
|
|
* We may have a router that is doing NAT for proto 41 packets
|
|
|
|
|
* for an internal station. Destination a.a.a.a/PREFIX:bbbb:bbbb
|
|
|
|
|
* will be translated to n.n.n.n/PREFIX:bbbb:bbbb. And is_spoofed_6rd
|
|
|
|
|
* function will return true, dropping the packet.
|
|
|
|
|
* But, we can still check if is spoofed against the IP
|
|
|
|
|
* addresses associated with the interface.
|
|
|
|
|
*/
|
|
|
|
|
static bool only_dnatted(const struct ip_tunnel *tunnel,
|
|
|
|
|
const struct in6_addr *v6dst)
|
|
|
|
|
{
|
|
|
|
|
int prefix_len;
|
|
|
|
|
|
|
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
|
|
|
|
prefix_len = tunnel->ip6rd.prefixlen + 32
|
|
|
|
|
- tunnel->ip6rd.relay_prefixlen;
|
|
|
|
|
#else
|
|
|
|
|
prefix_len = 48;
|
|
|
|
|
#endif
|
|
|
|
|
return ipv6_chk_custom_prefix(v6dst, prefix_len, tunnel->dev);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/* Returns true if a packet is spoofed */
|
|
|
|
|
static bool packet_is_spoofed(struct sk_buff *skb,
|
|
|
|
|
const struct iphdr *iph,
|
|
|
|
|
struct ip_tunnel *tunnel)
|
|
|
|
|
{
|
|
|
|
|
const struct ipv6hdr *ipv6h;
|
|
|
|
|
|
|
|
|
|
if (tunnel->dev->priv_flags & IFF_ISATAP) {
|
|
|
|
|
if (!isatap_chksrc(skb, iph, tunnel))
|
|
|
|
|
return true;
|
|
|
|
|
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (tunnel->dev->flags & IFF_POINTOPOINT)
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
ipv6h = ipv6_hdr(skb);
|
|
|
|
|
|
|
|
|
|
if (unlikely(is_spoofed_6rd(tunnel, iph->saddr, &ipv6h->saddr))) {
|
|
|
|
|
net_warn_ratelimited("Src spoofed %pI4/%pI6c -> %pI4/%pI6c\n",
|
|
|
|
|
&iph->saddr, &ipv6h->saddr,
|
|
|
|
|
&iph->daddr, &ipv6h->daddr);
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (likely(!is_spoofed_6rd(tunnel, iph->daddr, &ipv6h->daddr)))
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
if (only_dnatted(tunnel, &ipv6h->daddr))
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
net_warn_ratelimited("Dst spoofed %pI4/%pI6c -> %pI4/%pI6c\n",
|
|
|
|
|
&iph->saddr, &ipv6h->saddr,
|
|
|
|
|
&iph->daddr, &ipv6h->daddr);
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
static int ipip6_rcv(struct sk_buff *skb)
|
|
|
|
|
{
|
2013-01-18 09:18:17 +00:00
|
|
|
const struct iphdr *iph = ip_hdr(skb);
|
2005-04-16 22:20:36 +00:00
|
|
|
struct ip_tunnel *tunnel;
|
2017-10-30 17:07:17 +00:00
|
|
|
int sifindex;
|
2012-11-27 03:07:11 +00:00
|
|
|
int err;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2017-10-30 17:07:17 +00:00
|
|
|
sifindex = netif_is_l3_master(skb->dev) ? IPCB(skb)->iif : 0;
|
2009-05-19 12:56:49 +00:00
|
|
|
tunnel = ipip6_tunnel_lookup(dev_net(skb->dev), skb->dev,
|
2017-10-30 17:07:17 +00:00
|
|
|
iph->saddr, iph->daddr, sifindex);
|
2015-03-29 13:00:05 +00:00
|
|
|
if (tunnel) {
|
2013-05-27 23:48:16 +00:00
|
|
|
if (tunnel->parms.iph.protocol != IPPROTO_IPV6 &&
|
|
|
|
|
tunnel->parms.iph.protocol != 0)
|
|
|
|
|
goto out;
|
|
|
|
|
|
2007-04-11 04:21:55 +00:00
|
|
|
skb->mac_header = skb->network_header;
|
2007-04-11 03:45:18 +00:00
|
|
|
skb_reset_network_header(skb);
|
2006-01-07 07:04:01 +00:00
|
|
|
IPCB(skb)->flags = 0;
|
2016-03-19 16:32:02 +00:00
|
|
|
skb->dev = tunnel->dev;
|
2007-11-29 11:11:40 +00:00
|
|
|
|
2013-09-23 20:04:19 +00:00
|
|
|
if (packet_is_spoofed(skb, iph, tunnel)) {
|
2022-11-15 08:53:56 +00:00
|
|
|
DEV_STATS_INC(tunnel->dev, rx_errors);
|
2013-09-23 20:04:19 +00:00
|
|
|
goto out;
|
2012-11-27 03:07:11 +00:00
|
|
|
}
|
|
|
|
|
|
2016-03-19 16:32:02 +00:00
|
|
|
if (iptunnel_pull_header(skb, 0, htons(ETH_P_IPV6),
|
|
|
|
|
!net_eq(tunnel->net, dev_net(tunnel->dev))))
|
|
|
|
|
goto out;
|
2012-11-27 03:07:11 +00:00
|
|
|
|
2019-04-04 14:37:53 +00:00
|
|
|
/* skb can be uncloned in iptunnel_pull_header, so
|
|
|
|
|
* old iph is no longer valid
|
|
|
|
|
*/
|
|
|
|
|
iph = (const struct iphdr *)skb_mac_header(skb);
|
2021-06-25 13:33:08 +00:00
|
|
|
skb_reset_mac_header(skb);
|
|
|
|
|
|
2012-11-27 03:07:11 +00:00
|
|
|
err = IP_ECN_decapsulate(iph, skb);
|
|
|
|
|
if (unlikely(err)) {
|
|
|
|
|
if (log_ecn_error)
|
|
|
|
|
net_info_ratelimited("non-ECT from %pI4 with TOS=%#x\n",
|
|
|
|
|
&iph->saddr, iph->tos);
|
|
|
|
|
if (err > 1) {
|
2022-11-15 08:53:56 +00:00
|
|
|
DEV_STATS_INC(tunnel->dev, rx_frame_errors);
|
|
|
|
|
DEV_STATS_INC(tunnel->dev, rx_errors);
|
2012-11-27 03:07:11 +00:00
|
|
|
goto out;
|
|
|
|
|
}
|
2007-11-29 11:11:40 +00:00
|
|
|
}
|
2010-05-18 05:36:55 +00:00
|
|
|
|
2022-06-08 15:46:34 +00:00
|
|
|
dev_sw_netstats_rx_add(tunnel->dev, skb->len);
|
2010-09-27 00:38:18 +00:00
|
|
|
|
2010-09-30 21:06:55 +00:00
|
|
|
netif_rx(skb);
|
2010-09-20 00:12:11 +00:00
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2010-11-29 19:32:34 +00:00
|
|
|
/* no tunnel matched, let upstream know, ipsec may handle it */
|
|
|
|
|
return 1;
|
2005-04-16 22:20:36 +00:00
|
|
|
out:
|
2008-05-09 06:40:26 +00:00
|
|
|
kfree_skb(skb);
|
2005-04-16 22:20:36 +00:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2016-07-07 05:56:13 +00:00
|
|
|
static const struct tnl_ptk_info ipip_tpi = {
|
2013-05-27 23:48:16 +00:00
|
|
|
/* no tunnel info required for ipip. */
|
|
|
|
|
.proto = htons(ETH_P_IP),
|
|
|
|
|
};
|
|
|
|
|
|
2016-07-07 05:56:13 +00:00
|
|
|
#if IS_ENABLED(CONFIG_MPLS)
|
|
|
|
|
static const struct tnl_ptk_info mplsip_tpi = {
|
|
|
|
|
/* no tunnel info required for mplsip. */
|
|
|
|
|
.proto = htons(ETH_P_MPLS_UC),
|
|
|
|
|
};
|
|
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
static int sit_tunnel_rcv(struct sk_buff *skb, u8 ipproto)
|
2013-05-27 23:48:16 +00:00
|
|
|
{
|
2013-06-18 00:50:02 +00:00
|
|
|
const struct iphdr *iph;
|
2013-05-27 23:48:16 +00:00
|
|
|
struct ip_tunnel *tunnel;
|
2017-10-30 17:07:17 +00:00
|
|
|
int sifindex;
|
|
|
|
|
|
|
|
|
|
sifindex = netif_is_l3_master(skb->dev) ? IPCB(skb)->iif : 0;
|
2013-05-27 23:48:16 +00:00
|
|
|
|
2013-06-18 00:50:02 +00:00
|
|
|
iph = ip_hdr(skb);
|
2013-05-27 23:48:16 +00:00
|
|
|
tunnel = ipip6_tunnel_lookup(dev_net(skb->dev), skb->dev,
|
2017-10-30 17:07:17 +00:00
|
|
|
iph->saddr, iph->daddr, sifindex);
|
2015-03-29 13:00:05 +00:00
|
|
|
if (tunnel) {
|
2016-07-07 05:56:13 +00:00
|
|
|
const struct tnl_ptk_info *tpi;
|
|
|
|
|
|
|
|
|
|
if (tunnel->parms.iph.protocol != ipproto &&
|
2013-05-27 23:48:16 +00:00
|
|
|
tunnel->parms.iph.protocol != 0)
|
|
|
|
|
goto drop;
|
|
|
|
|
|
|
|
|
|
if (!xfrm4_policy_check(NULL, XFRM_POLICY_IN, skb))
|
|
|
|
|
goto drop;
|
2016-07-07 05:56:13 +00:00
|
|
|
#if IS_ENABLED(CONFIG_MPLS)
|
|
|
|
|
if (ipproto == IPPROTO_MPLS)
|
|
|
|
|
tpi = &mplsip_tpi;
|
|
|
|
|
else
|
|
|
|
|
#endif
|
|
|
|
|
tpi = &ipip_tpi;
|
|
|
|
|
if (iptunnel_pull_header(skb, 0, tpi->proto, false))
|
2013-08-28 09:54:50 +00:00
|
|
|
goto drop;
|
2021-06-25 13:33:08 +00:00
|
|
|
skb_reset_mac_header(skb);
|
|
|
|
|
|
2016-07-07 05:56:13 +00:00
|
|
|
return ip_tunnel_rcv(tunnel, skb, tpi, NULL, log_ecn_error);
|
2013-05-27 23:48:16 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return 1;
|
|
|
|
|
|
|
|
|
|
drop:
|
|
|
|
|
kfree_skb(skb);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2016-07-07 05:56:13 +00:00
|
|
|
static int ipip_rcv(struct sk_buff *skb)
|
|
|
|
|
{
|
|
|
|
|
return sit_tunnel_rcv(skb, IPPROTO_IPIP);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#if IS_ENABLED(CONFIG_MPLS)
|
|
|
|
|
static int mplsip_rcv(struct sk_buff *skb)
|
|
|
|
|
{
|
|
|
|
|
return sit_tunnel_rcv(skb, IPPROTO_MPLS);
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
2009-09-22 23:43:14 +00:00
|
|
|
/*
|
2013-01-29 08:24:25 +00:00
|
|
|
* If the IPv6 address comes from 6rd / 6to4 (RFC 3056) addr space this function
|
|
|
|
|
* stores the embedded IPv4 address in v4dst and returns true.
|
2009-09-22 23:43:14 +00:00
|
|
|
*/
|
2013-01-29 08:24:25 +00:00
|
|
|
static bool check_6rd(struct ip_tunnel *tunnel, const struct in6_addr *v6dst,
|
|
|
|
|
__be32 *v4dst)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2009-09-22 23:43:14 +00:00
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
|
|
|
|
if (ipv6_prefix_equal(v6dst, &tunnel->ip6rd.prefix,
|
|
|
|
|
tunnel->ip6rd.prefixlen)) {
|
2010-09-15 11:35:10 +00:00
|
|
|
unsigned int pbw0, pbi0;
|
2009-09-22 23:43:14 +00:00
|
|
|
int pbi1;
|
|
|
|
|
u32 d;
|
|
|
|
|
|
|
|
|
|
pbw0 = tunnel->ip6rd.prefixlen >> 5;
|
|
|
|
|
pbi0 = tunnel->ip6rd.prefixlen & 0x1f;
|
|
|
|
|
|
2019-03-11 08:29:32 +00:00
|
|
|
d = tunnel->ip6rd.relay_prefixlen < 32 ?
|
|
|
|
|
(ntohl(v6dst->s6_addr32[pbw0]) << pbi0) >>
|
|
|
|
|
tunnel->ip6rd.relay_prefixlen : 0;
|
2009-09-22 23:43:14 +00:00
|
|
|
|
|
|
|
|
pbi1 = pbi0 - tunnel->ip6rd.relay_prefixlen;
|
|
|
|
|
if (pbi1 > 0)
|
2009-10-11 03:44:45 +00:00
|
|
|
d |= ntohl(v6dst->s6_addr32[pbw0 + 1]) >>
|
2009-09-22 23:43:14 +00:00
|
|
|
(32 - pbi1);
|
|
|
|
|
|
2013-01-29 08:24:25 +00:00
|
|
|
*v4dst = tunnel->ip6rd.relay_prefix | htonl(d);
|
|
|
|
|
return true;
|
2009-09-22 23:43:14 +00:00
|
|
|
}
|
|
|
|
|
#else
|
2005-04-16 22:20:36 +00:00
|
|
|
if (v6dst->s6_addr16[0] == htons(0x2002)) {
|
2007-02-09 14:24:49 +00:00
|
|
|
/* 6to4 v6 addr has 16 bits prefix, 32 v4addr, 16 SLA, ... */
|
2013-01-29 08:24:25 +00:00
|
|
|
memcpy(v4dst, &v6dst->s6_addr16[1], 4);
|
|
|
|
|
return true;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
2009-09-22 23:43:14 +00:00
|
|
|
#endif
|
2013-01-29 08:24:25 +00:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static inline __be32 try_6rd(struct ip_tunnel *tunnel,
|
|
|
|
|
const struct in6_addr *v6dst)
|
|
|
|
|
{
|
|
|
|
|
__be32 dst = 0;
|
|
|
|
|
check_6rd(tunnel, v6dst, &dst);
|
2005-04-16 22:20:36 +00:00
|
|
|
return dst;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* This function assumes it is being called from dev_queue_xmit()
|
|
|
|
|
* and that skb is filled properly by that function.
|
|
|
|
|
*/
|
|
|
|
|
|
2009-08-31 19:50:41 +00:00
|
|
|
static netdev_tx_t ipip6_tunnel_xmit(struct sk_buff *skb,
|
|
|
|
|
struct net_device *dev)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2006-01-09 06:05:26 +00:00
|
|
|
struct ip_tunnel *tunnel = netdev_priv(dev);
|
2011-04-22 04:53:02 +00:00
|
|
|
const struct iphdr *tiph = &tunnel->parms.iph;
|
|
|
|
|
const struct ipv6hdr *iph6 = ipv6_hdr(skb);
|
2005-04-16 22:20:36 +00:00
|
|
|
u8 tos = tunnel->parms.iph.tos;
|
2009-11-09 08:42:01 +00:00
|
|
|
__be16 df = tiph->frag_off;
|
2014-08-24 20:53:10 +00:00
|
|
|
struct rtable *rt; /* Route to the other host */
|
|
|
|
|
struct net_device *tdev; /* Device to other host */
|
|
|
|
|
unsigned int max_headroom; /* The extra header space needed */
|
2006-11-15 04:56:00 +00:00
|
|
|
__be32 dst = tiph->daddr;
|
2011-05-04 03:25:42 +00:00
|
|
|
struct flowi4 fl4;
|
2005-04-16 22:20:36 +00:00
|
|
|
int mtu;
|
2011-04-22 04:53:02 +00:00
|
|
|
const struct in6_addr *addr6;
|
2005-04-16 22:20:36 +00:00
|
|
|
int addr_type;
|
2013-06-18 00:49:56 +00:00
|
|
|
u8 ttl;
|
2014-09-17 19:25:59 +00:00
|
|
|
u8 protocol = IPPROTO_IPV6;
|
|
|
|
|
int t_hlen = tunnel->hlen + sizeof(struct iphdr);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2011-08-13 14:04:38 +00:00
|
|
|
if (tos == 1)
|
|
|
|
|
tos = ipv6_get_dsfield(iph6);
|
|
|
|
|
|
2007-11-29 11:11:40 +00:00
|
|
|
/* ISATAP (RFC4214) - must come before 6to4 */
|
|
|
|
|
if (dev->priv_flags & IFF_ISATAP) {
|
|
|
|
|
struct neighbour *neigh = NULL;
|
2012-01-26 20:23:21 +00:00
|
|
|
bool do_tx_error = false;
|
2007-11-29 11:11:40 +00:00
|
|
|
|
2009-06-02 05:19:30 +00:00
|
|
|
if (skb_dst(skb))
|
2012-01-26 20:23:21 +00:00
|
|
|
neigh = dst_neigh_lookup(skb_dst(skb), &iph6->daddr);
|
2007-11-29 11:11:40 +00:00
|
|
|
|
2015-03-29 13:00:04 +00:00
|
|
|
if (!neigh) {
|
2013-09-23 20:04:19 +00:00
|
|
|
net_dbg_ratelimited("nexthop == NULL\n");
|
2007-11-29 11:11:40 +00:00
|
|
|
goto tx_error;
|
|
|
|
|
}
|
|
|
|
|
|
2012-04-01 07:49:01 +00:00
|
|
|
addr6 = (const struct in6_addr *)&neigh->primary_key;
|
2007-11-29 11:11:40 +00:00
|
|
|
addr_type = ipv6_addr_type(addr6);
|
|
|
|
|
|
|
|
|
|
if ((addr_type & IPV6_ADDR_UNICAST) &&
|
|
|
|
|
ipv6_addr_is_isatap(addr6))
|
|
|
|
|
dst = addr6->s6_addr32[3];
|
|
|
|
|
else
|
2012-01-26 20:23:21 +00:00
|
|
|
do_tx_error = true;
|
|
|
|
|
|
|
|
|
|
neigh_release(neigh);
|
|
|
|
|
if (do_tx_error)
|
2007-11-29 11:11:40 +00:00
|
|
|
goto tx_error;
|
|
|
|
|
}
|
|
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
if (!dst)
|
2013-01-29 08:24:25 +00:00
|
|
|
dst = try_6rd(tunnel, &iph6->daddr);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
|
|
|
|
if (!dst) {
|
|
|
|
|
struct neighbour *neigh = NULL;
|
2012-01-26 20:23:21 +00:00
|
|
|
bool do_tx_error = false;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2009-06-02 05:19:30 +00:00
|
|
|
if (skb_dst(skb))
|
2012-01-26 20:23:21 +00:00
|
|
|
neigh = dst_neigh_lookup(skb_dst(skb), &iph6->daddr);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2015-03-29 13:00:04 +00:00
|
|
|
if (!neigh) {
|
2013-09-23 20:04:19 +00:00
|
|
|
net_dbg_ratelimited("nexthop == NULL\n");
|
2005-04-16 22:20:36 +00:00
|
|
|
goto tx_error;
|
|
|
|
|
}
|
|
|
|
|
|
2012-04-01 07:49:01 +00:00
|
|
|
addr6 = (const struct in6_addr *)&neigh->primary_key;
|
2005-04-16 22:20:36 +00:00
|
|
|
addr_type = ipv6_addr_type(addr6);
|
|
|
|
|
|
|
|
|
|
if (addr_type == IPV6_ADDR_ANY) {
|
2007-04-26 00:54:47 +00:00
|
|
|
addr6 = &ipv6_hdr(skb)->daddr;
|
2005-04-16 22:20:36 +00:00
|
|
|
addr_type = ipv6_addr_type(addr6);
|
|
|
|
|
}
|
|
|
|
|
|
2012-01-26 20:23:21 +00:00
|
|
|
if ((addr_type & IPV6_ADDR_COMPATv4) != 0)
|
|
|
|
|
dst = addr6->s6_addr32[3];
|
|
|
|
|
else
|
|
|
|
|
do_tx_error = true;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2012-01-26 20:23:21 +00:00
|
|
|
neigh_release(neigh);
|
|
|
|
|
if (do_tx_error)
|
|
|
|
|
goto tx_error;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2017-04-19 16:30:54 +00:00
|
|
|
flowi4_init_output(&fl4, tunnel->parms.link, tunnel->fwmark,
|
|
|
|
|
RT_TOS(tos), RT_SCOPE_UNIVERSE, IPPROTO_IPV6,
|
|
|
|
|
0, dst, tiph->saddr, 0, 0,
|
|
|
|
|
sock_net_uid(tunnel->net, NULL));
|
|
|
|
|
|
2019-07-14 13:31:22 +00:00
|
|
|
rt = dst_cache_get_ip4(&tunnel->dst_cache, &fl4.saddr);
|
|
|
|
|
if (!rt) {
|
|
|
|
|
rt = ip_route_output_flow(tunnel->net, &fl4, NULL);
|
|
|
|
|
if (IS_ERR(rt)) {
|
2022-11-15 08:53:56 +00:00
|
|
|
DEV_STATS_INC(dev, tx_carrier_errors);
|
2019-07-14 13:31:22 +00:00
|
|
|
goto tx_error_icmp;
|
|
|
|
|
}
|
|
|
|
|
dst_cache_set_ip4(&tunnel->dst_cache, &rt->dst, fl4.saddr);
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
2019-07-14 13:31:22 +00:00
|
|
|
|
2022-01-07 12:38:42 +00:00
|
|
|
if (rt->rt_type != RTN_UNICAST && rt->rt_type != RTN_LOCAL) {
|
2005-04-16 22:20:36 +00:00
|
|
|
ip_rt_put(rt);
|
2022-11-15 08:53:56 +00:00
|
|
|
DEV_STATS_INC(dev, tx_carrier_errors);
|
2005-04-16 22:20:36 +00:00
|
|
|
goto tx_error_icmp;
|
|
|
|
|
}
|
2010-06-11 06:31:35 +00:00
|
|
|
tdev = rt->dst.dev;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
|
|
|
|
if (tdev == dev) {
|
|
|
|
|
ip_rt_put(rt);
|
2022-11-15 08:53:56 +00:00
|
|
|
DEV_STATS_INC(dev, collisions);
|
2005-04-16 22:20:36 +00:00
|
|
|
goto tx_error;
|
|
|
|
|
}
|
|
|
|
|
|
2016-05-18 16:06:10 +00:00
|
|
|
if (iptunnel_handle_offloads(skb, SKB_GSO_IPXIP4)) {
|
2014-09-17 19:25:59 +00:00
|
|
|
ip_rt_put(rt);
|
2016-04-14 19:33:37 +00:00
|
|
|
goto tx_error;
|
2014-09-17 19:25:59 +00:00
|
|
|
}
|
|
|
|
|
|
2009-11-09 08:42:01 +00:00
|
|
|
if (df) {
|
2014-09-17 19:25:59 +00:00
|
|
|
mtu = dst_mtu(&rt->dst) - t_hlen;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2021-06-02 01:50:39 +00:00
|
|
|
if (mtu < IPV4_MIN_MTU) {
|
2022-11-15 08:53:56 +00:00
|
|
|
DEV_STATS_INC(dev, collisions);
|
2009-11-09 08:42:01 +00:00
|
|
|
ip_rt_put(rt);
|
|
|
|
|
goto tx_error;
|
|
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2009-11-09 08:42:01 +00:00
|
|
|
if (mtu < IPV6_MIN_MTU) {
|
|
|
|
|
mtu = IPV6_MIN_MTU;
|
|
|
|
|
df = 0;
|
|
|
|
|
}
|
|
|
|
|
|
2018-01-25 18:03:03 +00:00
|
|
|
if (tunnel->parms.iph.daddr)
|
2019-12-22 02:51:15 +00:00
|
|
|
skb_dst_update_pmtu_no_confirm(skb, mtu);
|
2009-11-09 08:42:01 +00:00
|
|
|
|
2013-12-16 14:31:23 +00:00
|
|
|
if (skb->len > mtu && !skb_is_gso(skb)) {
|
2021-02-27 00:40:19 +00:00
|
|
|
icmpv6_ndo_send(skb, ICMPV6_PKT_TOOBIG, 0, mtu);
|
2009-11-09 08:42:01 +00:00
|
|
|
ip_rt_put(rt);
|
|
|
|
|
goto tx_error;
|
|
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (tunnel->err_count > 0) {
|
2009-02-25 07:37:19 +00:00
|
|
|
if (time_before(jiffies,
|
|
|
|
|
tunnel->err_time + IPTUNNEL_ERR_TIMEO)) {
|
2005-04-16 22:20:36 +00:00
|
|
|
tunnel->err_count--;
|
|
|
|
|
dst_link_failure(skb);
|
|
|
|
|
} else
|
|
|
|
|
tunnel->err_count = 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Okay, now see if we can stuff it in the buffer as-is.
|
|
|
|
|
*/
|
2014-09-17 19:25:59 +00:00
|
|
|
max_headroom = LL_RESERVED_SPACE(tdev) + t_hlen;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2007-07-09 22:33:40 +00:00
|
|
|
if (skb_headroom(skb) < max_headroom || skb_shared(skb) ||
|
|
|
|
|
(skb_cloned(skb) && !skb_clone_writable(skb, 0))) {
|
2005-04-16 22:20:36 +00:00
|
|
|
struct sk_buff *new_skb = skb_realloc_headroom(skb, max_headroom);
|
|
|
|
|
if (!new_skb) {
|
|
|
|
|
ip_rt_put(rt);
|
2022-11-15 08:53:56 +00:00
|
|
|
DEV_STATS_INC(dev, tx_dropped);
|
2013-11-25 09:21:24 +00:00
|
|
|
kfree_skb(skb);
|
2009-06-23 06:03:08 +00:00
|
|
|
return NETDEV_TX_OK;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
if (skb->sk)
|
|
|
|
|
skb_set_owner_w(new_skb, skb->sk);
|
|
|
|
|
dev_kfree_skb(skb);
|
|
|
|
|
skb = new_skb;
|
2007-04-26 00:54:47 +00:00
|
|
|
iph6 = ipv6_hdr(skb);
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
2013-06-18 00:49:56 +00:00
|
|
|
ttl = tiph->ttl;
|
|
|
|
|
if (ttl == 0)
|
|
|
|
|
ttl = iph6->hop_limit;
|
|
|
|
|
tos = INET_ECN_encapsulate(tos, ipv6_get_dsfield(iph6));
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2023-04-07 13:38:53 +00:00
|
|
|
if (ip_tunnel_encap(skb, &tunnel->encap, &protocol, &fl4) < 0) {
|
2013-12-20 09:20:12 +00:00
|
|
|
ip_rt_put(rt);
|
2014-09-17 19:25:59 +00:00
|
|
|
goto tx_error;
|
2013-12-20 09:20:12 +00:00
|
|
|
}
|
2013-08-18 11:46:52 +00:00
|
|
|
|
2014-09-30 03:22:30 +00:00
|
|
|
skb_set_inner_ipproto(skb, IPPROTO_IPV6);
|
|
|
|
|
|
2015-12-24 22:34:54 +00:00
|
|
|
iptunnel_xmit(NULL, rt, skb, fl4.saddr, fl4.daddr, protocol, tos, ttl,
|
|
|
|
|
df, !net_eq(tunnel->net, dev_net(dev)));
|
2009-06-23 06:03:08 +00:00
|
|
|
return NETDEV_TX_OK;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
|
|
|
|
tx_error_icmp:
|
|
|
|
|
dst_link_failure(skb);
|
|
|
|
|
tx_error:
|
2013-11-25 09:21:24 +00:00
|
|
|
kfree_skb(skb);
|
2022-11-15 08:53:56 +00:00
|
|
|
DEV_STATS_INC(dev, tx_errors);
|
2009-06-23 06:03:08 +00:00
|
|
|
return NETDEV_TX_OK;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2016-07-07 05:56:13 +00:00
|
|
|
static netdev_tx_t sit_tunnel_xmit__(struct sk_buff *skb,
|
|
|
|
|
struct net_device *dev, u8 ipproto)
|
2013-05-27 23:48:16 +00:00
|
|
|
{
|
|
|
|
|
struct ip_tunnel *tunnel = netdev_priv(dev);
|
|
|
|
|
const struct iphdr *tiph = &tunnel->parms.iph;
|
|
|
|
|
|
2016-05-18 16:06:10 +00:00
|
|
|
if (iptunnel_handle_offloads(skb, SKB_GSO_IPXIP4))
|
2016-04-14 19:33:37 +00:00
|
|
|
goto tx_error;
|
2013-05-27 23:48:16 +00:00
|
|
|
|
2016-07-07 05:56:13 +00:00
|
|
|
skb_set_inner_ipproto(skb, ipproto);
|
2014-09-30 03:22:30 +00:00
|
|
|
|
2016-07-07 05:56:13 +00:00
|
|
|
ip_tunnel_xmit(skb, dev, tiph, ipproto);
|
2013-05-27 23:48:16 +00:00
|
|
|
return NETDEV_TX_OK;
|
2016-04-14 19:33:37 +00:00
|
|
|
tx_error:
|
|
|
|
|
kfree_skb(skb);
|
2022-11-15 08:53:56 +00:00
|
|
|
DEV_STATS_INC(dev, tx_errors);
|
2013-10-21 03:47:30 +00:00
|
|
|
return NETDEV_TX_OK;
|
2013-05-27 23:48:16 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static netdev_tx_t sit_tunnel_xmit(struct sk_buff *skb,
|
|
|
|
|
struct net_device *dev)
|
|
|
|
|
{
|
2018-12-30 22:24:36 +00:00
|
|
|
if (!pskb_inet_may_pull(skb))
|
|
|
|
|
goto tx_err;
|
|
|
|
|
|
2013-05-27 23:48:16 +00:00
|
|
|
switch (skb->protocol) {
|
|
|
|
|
case htons(ETH_P_IP):
|
2016-07-07 05:56:13 +00:00
|
|
|
sit_tunnel_xmit__(skb, dev, IPPROTO_IPIP);
|
2013-05-27 23:48:16 +00:00
|
|
|
break;
|
|
|
|
|
case htons(ETH_P_IPV6):
|
|
|
|
|
ipip6_tunnel_xmit(skb, dev);
|
|
|
|
|
break;
|
2016-07-07 05:56:13 +00:00
|
|
|
#if IS_ENABLED(CONFIG_MPLS)
|
|
|
|
|
case htons(ETH_P_MPLS_UC):
|
|
|
|
|
sit_tunnel_xmit__(skb, dev, IPPROTO_MPLS);
|
|
|
|
|
break;
|
|
|
|
|
#endif
|
2013-05-27 23:48:16 +00:00
|
|
|
default:
|
|
|
|
|
goto tx_err;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return NETDEV_TX_OK;
|
|
|
|
|
|
|
|
|
|
tx_err:
|
2022-11-15 08:53:56 +00:00
|
|
|
DEV_STATS_INC(dev, tx_errors);
|
2013-11-25 09:21:24 +00:00
|
|
|
kfree_skb(skb);
|
2013-05-27 23:48:16 +00:00
|
|
|
return NETDEV_TX_OK;
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
2007-12-13 17:47:00 +00:00
|
|
|
static void ipip6_tunnel_bind_dev(struct net_device *dev)
|
|
|
|
|
{
|
2023-04-27 06:00:06 +00:00
|
|
|
struct ip_tunnel *tunnel = netdev_priv(dev);
|
|
|
|
|
int t_hlen = tunnel->hlen + sizeof(struct iphdr);
|
2007-12-13 17:47:00 +00:00
|
|
|
struct net_device *tdev = NULL;
|
2023-04-27 06:00:06 +00:00
|
|
|
int hlen = LL_MAX_HEADER;
|
2011-04-22 04:53:02 +00:00
|
|
|
const struct iphdr *iph;
|
2011-05-04 03:25:42 +00:00
|
|
|
struct flowi4 fl4;
|
2007-12-13 17:47:00 +00:00
|
|
|
|
|
|
|
|
iph = &tunnel->parms.iph;
|
|
|
|
|
|
|
|
|
|
if (iph->daddr) {
|
2013-06-26 14:11:28 +00:00
|
|
|
struct rtable *rt = ip_route_output_ports(tunnel->net, &fl4,
|
|
|
|
|
NULL,
|
2011-03-12 05:00:52 +00:00
|
|
|
iph->daddr, iph->saddr,
|
|
|
|
|
0, 0,
|
|
|
|
|
IPPROTO_IPV6,
|
|
|
|
|
RT_TOS(iph->tos),
|
|
|
|
|
tunnel->parms.link);
|
2011-03-02 22:31:35 +00:00
|
|
|
|
|
|
|
|
if (!IS_ERR(rt)) {
|
2010-06-11 06:31:35 +00:00
|
|
|
tdev = rt->dst.dev;
|
2007-12-13 17:47:00 +00:00
|
|
|
ip_rt_put(rt);
|
|
|
|
|
}
|
|
|
|
|
dev->flags |= IFF_POINTOPOINT;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!tdev && tunnel->parms.link)
|
2013-06-26 14:11:28 +00:00
|
|
|
tdev = __dev_get_by_index(tunnel->net, tunnel->parms.link);
|
2007-12-13 17:47:00 +00:00
|
|
|
|
2019-05-06 19:00:01 +00:00
|
|
|
if (tdev && !netif_is_l3_master(tdev)) {
|
2022-10-24 02:01:24 +00:00
|
|
|
int mtu;
|
2014-09-17 19:25:59 +00:00
|
|
|
|
2022-10-24 02:01:24 +00:00
|
|
|
mtu = tdev->mtu - t_hlen;
|
|
|
|
|
if (mtu < IPV6_MIN_MTU)
|
|
|
|
|
mtu = IPV6_MIN_MTU;
|
|
|
|
|
WRITE_ONCE(dev->mtu, mtu);
|
2023-04-27 06:00:06 +00:00
|
|
|
hlen = tdev->hard_header_len + tdev->needed_headroom;
|
2007-12-13 17:47:00 +00:00
|
|
|
}
|
2023-04-27 06:00:06 +00:00
|
|
|
dev->needed_headroom = t_hlen + hlen;
|
2007-12-13 17:47:00 +00:00
|
|
|
}
|
|
|
|
|
|
2024-03-27 15:23:52 +00:00
|
|
|
static void ipip6_tunnel_update(struct ip_tunnel *t,
|
|
|
|
|
struct ip_tunnel_parm_kern *p,
|
2017-04-19 16:30:54 +00:00
|
|
|
__u32 fwmark)
|
2012-11-14 05:14:07 +00:00
|
|
|
{
|
2013-06-26 14:11:28 +00:00
|
|
|
struct net *net = t->net;
|
2012-11-14 05:14:07 +00:00
|
|
|
struct sit_net *sitn = net_generic(net, sit_net_id);
|
|
|
|
|
|
|
|
|
|
ipip6_tunnel_unlink(sitn, t);
|
|
|
|
|
synchronize_net();
|
|
|
|
|
t->parms.iph.saddr = p->iph.saddr;
|
|
|
|
|
t->parms.iph.daddr = p->iph.daddr;
|
2021-10-12 16:06:34 +00:00
|
|
|
__dev_addr_set(t->dev, &p->iph.saddr, 4);
|
2012-11-14 05:14:07 +00:00
|
|
|
memcpy(t->dev->broadcast, &p->iph.daddr, 4);
|
|
|
|
|
ipip6_tunnel_link(sitn, t);
|
|
|
|
|
t->parms.iph.ttl = p->iph.ttl;
|
|
|
|
|
t->parms.iph.tos = p->iph.tos;
|
2017-11-30 02:41:14 +00:00
|
|
|
t->parms.iph.frag_off = p->iph.frag_off;
|
2017-04-19 16:30:54 +00:00
|
|
|
if (t->parms.link != p->link || t->fwmark != fwmark) {
|
2012-11-14 05:14:07 +00:00
|
|
|
t->parms.link = p->link;
|
2017-04-19 16:30:54 +00:00
|
|
|
t->fwmark = fwmark;
|
2012-11-14 05:14:07 +00:00
|
|
|
ipip6_tunnel_bind_dev(t->dev);
|
|
|
|
|
}
|
2016-02-12 14:43:55 +00:00
|
|
|
dst_cache_reset(&t->dst_cache);
|
2012-11-14 05:14:07 +00:00
|
|
|
netdev_state_change(t->dev);
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-19 22:41:45 +00:00
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
|
|
|
|
static int ipip6_tunnel_update_6rd(struct ip_tunnel *t,
|
|
|
|
|
struct ip_tunnel_6rd *ip6rd)
|
|
|
|
|
{
|
|
|
|
|
struct in6_addr prefix;
|
|
|
|
|
__be32 relay_prefix;
|
|
|
|
|
|
|
|
|
|
if (ip6rd->relay_prefixlen > 32 ||
|
|
|
|
|
ip6rd->prefixlen + (32 - ip6rd->relay_prefixlen) > 64)
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
|
|
|
|
ipv6_addr_prefix(&prefix, &ip6rd->prefix, ip6rd->prefixlen);
|
|
|
|
|
if (!ipv6_addr_equal(&prefix, &ip6rd->prefix))
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
if (ip6rd->relay_prefixlen)
|
|
|
|
|
relay_prefix = ip6rd->relay_prefix &
|
|
|
|
|
htonl(0xffffffffUL <<
|
|
|
|
|
(32 - ip6rd->relay_prefixlen));
|
|
|
|
|
else
|
|
|
|
|
relay_prefix = 0;
|
|
|
|
|
if (relay_prefix != ip6rd->relay_prefix)
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
|
|
|
|
t->ip6rd.prefix = prefix;
|
|
|
|
|
t->ip6rd.relay_prefix = relay_prefix;
|
|
|
|
|
t->ip6rd.prefixlen = ip6rd->prefixlen;
|
|
|
|
|
t->ip6rd.relay_prefixlen = ip6rd->relay_prefixlen;
|
2016-02-12 14:43:55 +00:00
|
|
|
dst_cache_reset(&t->dst_cache);
|
2012-11-19 22:41:45 +00:00
|
|
|
netdev_state_change(t->dev);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
2020-05-19 13:03:15 +00:00
|
|
|
|
|
|
|
|
static int
|
2021-07-27 13:45:06 +00:00
|
|
|
ipip6_tunnel_get6rd(struct net_device *dev, struct ip_tunnel_parm __user *data)
|
2020-05-19 13:03:15 +00:00
|
|
|
{
|
|
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
2024-03-27 15:23:52 +00:00
|
|
|
struct ip_tunnel_parm_kern p;
|
2020-05-19 13:03:15 +00:00
|
|
|
struct ip_tunnel_6rd ip6rd;
|
|
|
|
|
|
|
|
|
|
if (dev == dev_to_sit_net(dev)->fb_tunnel_dev) {
|
2024-03-27 15:23:52 +00:00
|
|
|
if (!ip_tunnel_parm_from_user(&p, data))
|
2020-05-19 13:03:15 +00:00
|
|
|
return -EFAULT;
|
|
|
|
|
t = ipip6_tunnel_locate(t->net, &p, 0);
|
|
|
|
|
}
|
|
|
|
|
if (!t)
|
|
|
|
|
t = netdev_priv(dev);
|
|
|
|
|
|
|
|
|
|
ip6rd.prefix = t->ip6rd.prefix;
|
|
|
|
|
ip6rd.relay_prefix = t->ip6rd.relay_prefix;
|
|
|
|
|
ip6rd.prefixlen = t->ip6rd.prefixlen;
|
|
|
|
|
ip6rd.relay_prefixlen = t->ip6rd.relay_prefixlen;
|
2021-07-27 13:45:06 +00:00
|
|
|
if (copy_to_user(data, &ip6rd, sizeof(ip6rd)))
|
2020-05-19 13:03:15 +00:00
|
|
|
return -EFAULT;
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
2021-07-27 13:45:06 +00:00
|
|
|
ipip6_tunnel_6rdctl(struct net_device *dev, struct ip_tunnel_6rd __user *data,
|
|
|
|
|
int cmd)
|
2020-05-19 13:03:15 +00:00
|
|
|
{
|
|
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
|
|
|
|
struct ip_tunnel_6rd ip6rd;
|
|
|
|
|
int err;
|
|
|
|
|
|
|
|
|
|
if (!ns_capable(t->net->user_ns, CAP_NET_ADMIN))
|
|
|
|
|
return -EPERM;
|
2021-07-27 13:45:06 +00:00
|
|
|
if (copy_from_user(&ip6rd, data, sizeof(ip6rd)))
|
2020-05-19 13:03:15 +00:00
|
|
|
return -EFAULT;
|
|
|
|
|
|
|
|
|
|
if (cmd != SIOCDEL6RD) {
|
|
|
|
|
err = ipip6_tunnel_update_6rd(t, &ip6rd);
|
|
|
|
|
if (err < 0)
|
|
|
|
|
return err;
|
|
|
|
|
} else
|
|
|
|
|
ipip6_tunnel_clone_6rd(dev, dev_to_sit_net(dev));
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#endif /* CONFIG_IPV6_SIT_6RD */
|
2012-11-19 22:41:45 +00:00
|
|
|
|
2016-08-13 01:54:15 +00:00
|
|
|
static bool ipip6_valid_ip_proto(u8 ipproto)
|
2016-07-07 05:56:13 +00:00
|
|
|
{
|
|
|
|
|
return ipproto == IPPROTO_IPV6 ||
|
|
|
|
|
ipproto == IPPROTO_IPIP ||
|
|
|
|
|
#if IS_ENABLED(CONFIG_MPLS)
|
|
|
|
|
ipproto == IPPROTO_MPLS ||
|
|
|
|
|
#endif
|
|
|
|
|
ipproto == 0;
|
|
|
|
|
}
|
|
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
static int
|
2024-03-27 15:23:52 +00:00
|
|
|
__ipip6_tunnel_ioctl_validate(struct net *net, struct ip_tunnel_parm_kern *p)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2020-05-19 13:03:15 +00:00
|
|
|
if (!ns_capable(net->user_ns, CAP_NET_ADMIN))
|
|
|
|
|
return -EPERM;
|
|
|
|
|
|
|
|
|
|
if (!ipip6_valid_ip_proto(p->iph.protocol))
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
if (p->iph.version != 4 ||
|
|
|
|
|
p->iph.ihl != 5 || (p->iph.frag_off & htons(~IP_DF)))
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
|
|
|
|
if (p->iph.ttl)
|
|
|
|
|
p->iph.frag_off |= htons(IP_DF);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
2024-03-27 15:23:52 +00:00
|
|
|
ipip6_tunnel_get(struct net_device *dev, struct ip_tunnel_parm_kern *p)
|
2020-05-19 13:03:15 +00:00
|
|
|
{
|
|
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
|
|
|
|
|
2020-05-19 13:03:16 +00:00
|
|
|
if (dev == dev_to_sit_net(dev)->fb_tunnel_dev)
|
|
|
|
|
t = ipip6_tunnel_locate(t->net, p, 0);
|
2020-05-19 13:03:15 +00:00
|
|
|
if (!t)
|
|
|
|
|
t = netdev_priv(dev);
|
2020-05-19 13:03:16 +00:00
|
|
|
memcpy(p, &t->parms, sizeof(*p));
|
2020-05-19 13:03:15 +00:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
2024-03-27 15:23:52 +00:00
|
|
|
ipip6_tunnel_add(struct net_device *dev, struct ip_tunnel_parm_kern *p)
|
2020-05-19 13:03:15 +00:00
|
|
|
{
|
2014-04-16 09:19:33 +00:00
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
2020-05-19 13:03:15 +00:00
|
|
|
int err;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2020-05-19 13:03:16 +00:00
|
|
|
err = __ipip6_tunnel_ioctl_validate(t->net, p);
|
2020-05-19 13:03:15 +00:00
|
|
|
if (err)
|
|
|
|
|
return err;
|
2009-09-22 23:43:14 +00:00
|
|
|
|
2020-05-19 13:03:16 +00:00
|
|
|
t = ipip6_tunnel_locate(t->net, p, 1);
|
2020-05-19 13:03:15 +00:00
|
|
|
if (!t)
|
|
|
|
|
return -ENOBUFS;
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int
|
2024-03-27 15:23:52 +00:00
|
|
|
ipip6_tunnel_change(struct net_device *dev, struct ip_tunnel_parm_kern *p)
|
2020-05-19 13:03:15 +00:00
|
|
|
{
|
|
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
|
|
|
|
int err;
|
|
|
|
|
|
2020-05-19 13:03:16 +00:00
|
|
|
err = __ipip6_tunnel_ioctl_validate(t->net, p);
|
2020-05-19 13:03:15 +00:00
|
|
|
if (err)
|
|
|
|
|
return err;
|
|
|
|
|
|
2020-05-19 13:03:16 +00:00
|
|
|
t = ipip6_tunnel_locate(t->net, p, 0);
|
2020-05-19 13:03:15 +00:00
|
|
|
if (dev == dev_to_sit_net(dev)->fb_tunnel_dev) {
|
|
|
|
|
if (!t)
|
|
|
|
|
return -ENOENT;
|
|
|
|
|
} else {
|
|
|
|
|
if (t) {
|
|
|
|
|
if (t->dev != dev)
|
|
|
|
|
return -EEXIST;
|
2009-09-22 23:43:14 +00:00
|
|
|
} else {
|
2020-05-19 13:03:16 +00:00
|
|
|
if (((dev->flags & IFF_POINTOPOINT) && !p->iph.daddr) ||
|
|
|
|
|
(!(dev->flags & IFF_POINTOPOINT) && p->iph.daddr))
|
2020-05-19 13:03:15 +00:00
|
|
|
return -EINVAL;
|
|
|
|
|
t = netdev_priv(dev);
|
2009-09-22 23:43:14 +00:00
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2020-05-19 13:03:16 +00:00
|
|
|
ipip6_tunnel_update(t, p, t->fwmark);
|
2020-05-19 13:03:15 +00:00
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2020-05-19 13:03:15 +00:00
|
|
|
return 0;
|
|
|
|
|
}
|
2012-11-14 05:14:04 +00:00
|
|
|
|
2020-05-19 13:03:15 +00:00
|
|
|
static int
|
2024-03-27 15:23:52 +00:00
|
|
|
ipip6_tunnel_del(struct net_device *dev, struct ip_tunnel_parm_kern *p)
|
2020-05-19 13:03:15 +00:00
|
|
|
{
|
|
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2020-05-19 13:03:15 +00:00
|
|
|
if (!ns_capable(t->net->user_ns, CAP_NET_ADMIN))
|
|
|
|
|
return -EPERM;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2020-05-19 13:03:15 +00:00
|
|
|
if (dev == dev_to_sit_net(dev)->fb_tunnel_dev) {
|
2020-05-19 13:03:16 +00:00
|
|
|
t = ipip6_tunnel_locate(t->net, p, 0);
|
2020-05-19 13:03:15 +00:00
|
|
|
if (!t)
|
|
|
|
|
return -ENOENT;
|
|
|
|
|
if (t == netdev_priv(dev_to_sit_net(dev)->fb_tunnel_dev))
|
|
|
|
|
return -EPERM;
|
|
|
|
|
dev = t->dev;
|
|
|
|
|
}
|
|
|
|
|
unregister_netdevice(dev);
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2020-05-19 13:03:16 +00:00
|
|
|
static int
|
2024-03-27 15:23:52 +00:00
|
|
|
ipip6_tunnel_ctl(struct net_device *dev, struct ip_tunnel_parm_kern *p,
|
|
|
|
|
int cmd)
|
2020-05-19 13:03:16 +00:00
|
|
|
{
|
|
|
|
|
switch (cmd) {
|
|
|
|
|
case SIOCGETTUNNEL:
|
|
|
|
|
return ipip6_tunnel_get(dev, p);
|
|
|
|
|
case SIOCADDTUNNEL:
|
|
|
|
|
return ipip6_tunnel_add(dev, p);
|
|
|
|
|
case SIOCCHGTUNNEL:
|
|
|
|
|
return ipip6_tunnel_change(dev, p);
|
|
|
|
|
case SIOCDELTUNNEL:
|
|
|
|
|
return ipip6_tunnel_del(dev, p);
|
|
|
|
|
default:
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-05-19 13:03:15 +00:00
|
|
|
static int
|
2021-07-27 13:45:06 +00:00
|
|
|
ipip6_tunnel_siocdevprivate(struct net_device *dev, struct ifreq *ifr,
|
|
|
|
|
void __user *data, int cmd)
|
2020-05-19 13:03:15 +00:00
|
|
|
{
|
|
|
|
|
switch (cmd) {
|
|
|
|
|
case SIOCGETTUNNEL:
|
|
|
|
|
case SIOCADDTUNNEL:
|
|
|
|
|
case SIOCCHGTUNNEL:
|
|
|
|
|
case SIOCDELTUNNEL:
|
2021-07-27 13:45:06 +00:00
|
|
|
return ip_tunnel_siocdevprivate(dev, ifr, data, cmd);
|
2008-03-24 09:28:39 +00:00
|
|
|
case SIOCGETPRL:
|
2021-07-27 13:45:06 +00:00
|
|
|
return ipip6_tunnel_get_prl(dev, data);
|
2008-03-11 22:35:59 +00:00
|
|
|
case SIOCADDPRL:
|
|
|
|
|
case SIOCDELPRL:
|
|
|
|
|
case SIOCCHGPRL:
|
2021-07-27 13:45:06 +00:00
|
|
|
return ipip6_tunnel_prl_ctl(dev, data, cmd);
|
2009-09-22 23:43:14 +00:00
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
2020-05-19 13:03:15 +00:00
|
|
|
case SIOCGET6RD:
|
2021-07-27 13:45:06 +00:00
|
|
|
return ipip6_tunnel_get6rd(dev, data);
|
2009-09-22 23:43:14 +00:00
|
|
|
case SIOCADD6RD:
|
|
|
|
|
case SIOCCHG6RD:
|
|
|
|
|
case SIOCDEL6RD:
|
2021-07-27 13:45:06 +00:00
|
|
|
return ipip6_tunnel_6rdctl(dev, data, cmd);
|
2009-09-22 23:43:14 +00:00
|
|
|
#endif
|
2005-04-16 22:20:36 +00:00
|
|
|
default:
|
2020-05-19 13:03:15 +00:00
|
|
|
return -EINVAL;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2008-11-21 04:33:56 +00:00
|
|
|
static const struct net_device_ops ipip6_netdev_ops = {
|
2014-11-03 08:19:29 +00:00
|
|
|
.ndo_init = ipip6_tunnel_init,
|
2008-11-21 04:33:56 +00:00
|
|
|
.ndo_uninit = ipip6_tunnel_uninit,
|
2013-05-27 23:48:16 +00:00
|
|
|
.ndo_start_xmit = sit_tunnel_xmit,
|
2021-07-27 13:45:06 +00:00
|
|
|
.ndo_siocdevprivate = ipip6_tunnel_siocdevprivate,
|
2015-04-02 15:07:02 +00:00
|
|
|
.ndo_get_iflink = ip_tunnel_get_iflink,
|
2020-05-19 13:03:16 +00:00
|
|
|
.ndo_tunnel_ctl = ipip6_tunnel_ctl,
|
2008-11-21 04:33:56 +00:00
|
|
|
};
|
|
|
|
|
|
2010-09-27 00:38:18 +00:00
|
|
|
static void ipip6_dev_free(struct net_device *dev)
|
|
|
|
|
{
|
2014-02-20 09:19:31 +00:00
|
|
|
struct ip_tunnel *tunnel = netdev_priv(dev);
|
|
|
|
|
|
2016-02-12 14:43:55 +00:00
|
|
|
dst_cache_destroy(&tunnel->dst_cache);
|
2010-09-27 00:38:18 +00:00
|
|
|
}
|
|
|
|
|
|
2013-10-21 03:47:30 +00:00
|
|
|
#define SIT_FEATURES (NETIF_F_SG | \
|
|
|
|
|
NETIF_F_FRAGLIST | \
|
|
|
|
|
NETIF_F_HIGHDMA | \
|
|
|
|
|
NETIF_F_GSO_SOFTWARE | \
|
|
|
|
|
NETIF_F_HW_CSUM)
|
|
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
static void ipip6_tunnel_setup(struct net_device *dev)
|
|
|
|
|
{
|
2014-09-17 19:25:59 +00:00
|
|
|
struct ip_tunnel *tunnel = netdev_priv(dev);
|
|
|
|
|
int t_hlen = tunnel->hlen + sizeof(struct iphdr);
|
|
|
|
|
|
2008-11-21 04:33:56 +00:00
|
|
|
dev->netdev_ops = &ipip6_netdev_ops;
|
2020-06-30 01:06:24 +00:00
|
|
|
dev->header_ops = &ip_tunnel_header_ops;
|
net: Fix inconsistent teardown and release of private netdev state.
Network devices can allocate reasources and private memory using
netdev_ops->ndo_init(). However, the release of these resources
can occur in one of two different places.
Either netdev_ops->ndo_uninit() or netdev->destructor().
The decision of which operation frees the resources depends upon
whether it is necessary for all netdev refs to be released before it
is safe to perform the freeing.
netdev_ops->ndo_uninit() presumably can occur right after the
NETDEV_UNREGISTER notifier completes and the unicast and multicast
address lists are flushed.
netdev->destructor(), on the other hand, does not run until the
netdev references all go away.
Further complicating the situation is that netdev->destructor()
almost universally does also a free_netdev().
This creates a problem for the logic in register_netdevice().
Because all callers of register_netdevice() manage the freeing
of the netdev, and invoke free_netdev(dev) if register_netdevice()
fails.
If netdev_ops->ndo_init() succeeds, but something else fails inside
of register_netdevice(), it does call ndo_ops->ndo_uninit(). But
it is not able to invoke netdev->destructor().
This is because netdev->destructor() will do a free_netdev() and
then the caller of register_netdevice() will do the same.
However, this means that the resources that would normally be released
by netdev->destructor() will not be.
Over the years drivers have added local hacks to deal with this, by
invoking their destructor parts by hand when register_netdevice()
fails.
Many drivers do not try to deal with this, and instead we have leaks.
Let's close this hole by formalizing the distinction between what
private things need to be freed up by netdev->destructor() and whether
the driver needs unregister_netdevice() to perform the free_netdev().
netdev->priv_destructor() performs all actions to free up the private
resources that used to be freed by netdev->destructor(), except for
free_netdev().
netdev->needs_free_netdev is a boolean that indicates whether
free_netdev() should be done at the end of unregister_netdevice().
Now, register_netdevice() can sanely release all resources after
ndo_ops->ndo_init() succeeds, by invoking both ndo_ops->ndo_uninit()
and netdev->priv_destructor().
And at the end of unregister_netdevice(), we invoke
netdev->priv_destructor() and optionally call free_netdev().
Signed-off-by: David S. Miller <davem@davemloft.net>
2017-05-08 16:52:56 +00:00
|
|
|
dev->needs_free_netdev = true;
|
|
|
|
|
dev->priv_destructor = ipip6_dev_free;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
|
|
|
|
dev->type = ARPHRD_SIT;
|
2014-09-17 19:25:59 +00:00
|
|
|
dev->mtu = ETH_DATA_LEN - t_hlen;
|
2016-10-20 17:55:24 +00:00
|
|
|
dev->min_mtu = IPV6_MIN_MTU;
|
2018-05-31 08:59:33 +00:00
|
|
|
dev->max_mtu = IP6_MAX_MTU - t_hlen;
|
2005-04-16 22:20:36 +00:00
|
|
|
dev->flags = IFF_NOARP;
|
2014-10-06 01:38:35 +00:00
|
|
|
netif_keep_dst(dev);
|
2005-04-16 22:20:36 +00:00
|
|
|
dev->addr_len = 4;
|
2010-09-28 02:53:41 +00:00
|
|
|
dev->features |= NETIF_F_LLTX;
|
2013-10-21 03:47:30 +00:00
|
|
|
dev->features |= SIT_FEATURES;
|
|
|
|
|
dev->hw_features |= SIT_FEATURES;
|
2024-02-21 16:17:32 +00:00
|
|
|
dev->pcpu_stat_type = NETDEV_PCPU_STAT_TSTATS;
|
|
|
|
|
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2010-09-27 00:38:18 +00:00
|
|
|
static int ipip6_tunnel_init(struct net_device *dev)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2008-11-21 04:33:56 +00:00
|
|
|
struct ip_tunnel *tunnel = netdev_priv(dev);
|
2016-02-12 14:43:55 +00:00
|
|
|
int err;
|
2005-04-16 22:20:36 +00:00
|
|
|
|
|
|
|
|
tunnel->dev = dev;
|
2013-06-26 14:11:28 +00:00
|
|
|
tunnel->net = dev_net(dev);
|
2014-11-03 08:19:29 +00:00
|
|
|
strcpy(tunnel->parms.name, dev->name);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2007-12-13 17:47:00 +00:00
|
|
|
ipip6_tunnel_bind_dev(dev);
|
2010-09-27 00:38:18 +00:00
|
|
|
|
2016-02-12 14:43:55 +00:00
|
|
|
err = dst_cache_init(&tunnel->dst_cache, GFP_KERNEL);
|
2024-02-21 16:17:32 +00:00
|
|
|
if (err)
|
2016-02-12 14:43:55 +00:00
|
|
|
return err;
|
2024-02-21 16:17:32 +00:00
|
|
|
|
2022-06-08 04:39:55 +00:00
|
|
|
netdev_hold(dev, &tunnel->dev_tracker, GFP_KERNEL);
|
net: add netdev_lockdep_set_classes() to virtual drivers
Based on a syzbot report, it appears many virtual
drivers do not yet use netdev_lockdep_set_classes(),
triggerring lockdep false positives.
WARNING: possible recursive locking detected
6.8.0-rc4-next-20240212-syzkaller #0 Not tainted
syz-executor.0/19016 is trying to acquire lock:
ffff8880162cb298 (_xmit_ETHER#2){+.-.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline]
ffff8880162cb298 (_xmit_ETHER#2){+.-.}-{2:2}, at: __netif_tx_lock include/linux/netdevice.h:4452 [inline]
ffff8880162cb298 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0 net/sched/sch_generic.c:340
but task is already holding lock:
ffff8880223db4d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline]
ffff8880223db4d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: __netif_tx_lock include/linux/netdevice.h:4452 [inline]
ffff8880223db4d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0 net/sched/sch_generic.c:340
other info that might help us debug this:
Possible unsafe locking scenario:
CPU0
lock(_xmit_ETHER#2);
lock(_xmit_ETHER#2);
*** DEADLOCK ***
May be due to missing lock nesting notation
9 locks held by syz-executor.0/19016:
#0: ffffffff8f385208 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
#0: ffffffff8f385208 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x82c/0x1040 net/core/rtnetlink.c:6603
#1: ffffc90000a08c00 ((&in_dev->mr_ifc_timer)){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x600 kernel/time/timer.c:1697
#2: ffffffff8e131520 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire include/linux/rcupdate.h:298 [inline]
#2: ffffffff8e131520 (rcu_read_lock){....}-{1:2}, at: rcu_read_lock include/linux/rcupdate.h:750 [inline]
#2: ffffffff8e131520 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x45f/0x1360 net/ipv4/ip_output.c:228
#3: ffffffff8e131580 (rcu_read_lock_bh){....}-{1:2}, at: local_bh_disable include/linux/bottom_half.h:20 [inline]
#3: ffffffff8e131580 (rcu_read_lock_bh){....}-{1:2}, at: rcu_read_lock_bh include/linux/rcupdate.h:802 [inline]
#3: ffffffff8e131580 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x2c4/0x3b10 net/core/dev.c:4284
#4: ffff8880416e3258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: spin_trylock include/linux/spinlock.h:361 [inline]
#4: ffff8880416e3258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: qdisc_run_begin include/net/sch_generic.h:195 [inline]
#4: ffff8880416e3258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_xmit_skb net/core/dev.c:3771 [inline]
#4: ffff8880416e3258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_queue_xmit+0x1262/0x3b10 net/core/dev.c:4325
#5: ffff8880223db4d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: spin_lock include/linux/spinlock.h:351 [inline]
#5: ffff8880223db4d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: __netif_tx_lock include/linux/netdevice.h:4452 [inline]
#5: ffff8880223db4d8 (_xmit_ETHER#2){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0 net/sched/sch_generic.c:340
#6: ffffffff8e131520 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire include/linux/rcupdate.h:298 [inline]
#6: ffffffff8e131520 (rcu_read_lock){....}-{1:2}, at: rcu_read_lock include/linux/rcupdate.h:750 [inline]
#6: ffffffff8e131520 (rcu_read_lock){....}-{1:2}, at: ip_finish_output2+0x45f/0x1360 net/ipv4/ip_output.c:228
#7: ffffffff8e131580 (rcu_read_lock_bh){....}-{1:2}, at: local_bh_disable include/linux/bottom_half.h:20 [inline]
#7: ffffffff8e131580 (rcu_read_lock_bh){....}-{1:2}, at: rcu_read_lock_bh include/linux/rcupdate.h:802 [inline]
#7: ffffffff8e131580 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x2c4/0x3b10 net/core/dev.c:4284
#8: ffff888014d9d258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: spin_trylock include/linux/spinlock.h:361 [inline]
#8: ffff888014d9d258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: qdisc_run_begin include/net/sch_generic.h:195 [inline]
#8: ffff888014d9d258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_xmit_skb net/core/dev.c:3771 [inline]
#8: ffff888014d9d258 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock){+...}-{2:2}, at: __dev_queue_xmit+0x1262/0x3b10 net/core/dev.c:4325
stack backtrace:
CPU: 1 PID: 19016 Comm: syz-executor.0 Not tainted 6.8.0-rc4-next-20240212-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024
Call Trace:
<IRQ>
__dump_stack lib/dump_stack.c:88 [inline]
dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114
check_deadlock kernel/locking/lockdep.c:3062 [inline]
validate_chain+0x15c1/0x58e0 kernel/locking/lockdep.c:3856
__lock_acquire+0x1346/0x1fd0 kernel/locking/lockdep.c:5137
lock_acquire+0x1e4/0x530 kernel/locking/lockdep.c:5754
__raw_spin_lock include/linux/spinlock_api_smp.h:133 [inline]
_raw_spin_lock+0x2e/0x40 kernel/locking/spinlock.c:154
spin_lock include/linux/spinlock.h:351 [inline]
__netif_tx_lock include/linux/netdevice.h:4452 [inline]
sch_direct_xmit+0x1c4/0x5f0 net/sched/sch_generic.c:340
__dev_xmit_skb net/core/dev.c:3784 [inline]
__dev_queue_xmit+0x1912/0x3b10 net/core/dev.c:4325
neigh_output include/net/neighbour.h:542 [inline]
ip_finish_output2+0xe66/0x1360 net/ipv4/ip_output.c:235
iptunnel_xmit+0x540/0x9b0 net/ipv4/ip_tunnel_core.c:82
ip_tunnel_xmit+0x20ee/0x2960 net/ipv4/ip_tunnel.c:831
erspan_xmit+0x9de/0x1460 net/ipv4/ip_gre.c:720
__netdev_start_xmit include/linux/netdevice.h:4989 [inline]
netdev_start_xmit include/linux/netdevice.h:5003 [inline]
xmit_one net/core/dev.c:3555 [inline]
dev_hard_start_xmit+0x242/0x770 net/core/dev.c:3571
sch_direct_xmit+0x2b6/0x5f0 net/sched/sch_generic.c:342
__dev_xmit_skb net/core/dev.c:3784 [inline]
__dev_queue_xmit+0x1912/0x3b10 net/core/dev.c:4325
neigh_output include/net/neighbour.h:542 [inline]
ip_finish_output2+0xe66/0x1360 net/ipv4/ip_output.c:235
igmpv3_send_cr net/ipv4/igmp.c:723 [inline]
igmp_ifc_timer_expire+0xb71/0xd90 net/ipv4/igmp.c:813
call_timer_fn+0x17e/0x600 kernel/time/timer.c:1700
expire_timers kernel/time/timer.c:1751 [inline]
__run_timers+0x621/0x830 kernel/time/timer.c:2038
run_timer_softirq+0x67/0xf0 kernel/time/timer.c:2051
__do_softirq+0x2bc/0x943 kernel/softirq.c:554
invoke_softirq kernel/softirq.c:428 [inline]
__irq_exit_rcu+0xf2/0x1c0 kernel/softirq.c:633
irq_exit_rcu+0x9/0x30 kernel/softirq.c:645
instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1076 [inline]
sysvec_apic_timer_interrupt+0xa6/0xc0 arch/x86/kernel/apic/apic.c:1076
</IRQ>
<TASK>
asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0010:resched_offsets_ok kernel/sched/core.c:10127 [inline]
RIP: 0010:__might_resched+0x16f/0x780 kernel/sched/core.c:10142
Code: 00 4c 89 e8 48 c1 e8 03 48 ba 00 00 00 00 00 fc ff df 48 89 44 24 38 0f b6 04 10 84 c0 0f 85 87 04 00 00 41 8b 45 00 c1 e0 08 <01> d8 44 39 e0 0f 85 d6 00 00 00 44 89 64 24 1c 48 8d bc 24 a0 00
RSP: 0018:ffffc9000ee069e0 EFLAGS: 00000246
RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8880296a9e00
RDX: dffffc0000000000 RSI: ffff8880296a9e00 RDI: ffffffff8bfe8fa0
RBP: ffffc9000ee06b00 R08: ffffffff82326877 R09: 1ffff11002b5ad1b
R10: dffffc0000000000 R11: ffffed1002b5ad1c R12: 0000000000000000
R13: ffff8880296aa23c R14: 000000000000062a R15: 1ffff92001dc0d44
down_write+0x19/0x50 kernel/locking/rwsem.c:1578
kernfs_activate fs/kernfs/dir.c:1403 [inline]
kernfs_add_one+0x4af/0x8b0 fs/kernfs/dir.c:819
__kernfs_create_file+0x22e/0x2e0 fs/kernfs/file.c:1056
sysfs_add_file_mode_ns+0x24a/0x310 fs/sysfs/file.c:307
create_files fs/sysfs/group.c:64 [inline]
internal_create_group+0x4f4/0xf20 fs/sysfs/group.c:152
internal_create_groups fs/sysfs/group.c:192 [inline]
sysfs_create_groups+0x56/0x120 fs/sysfs/group.c:218
create_dir lib/kobject.c:78 [inline]
kobject_add_internal+0x472/0x8d0 lib/kobject.c:240
kobject_add_varg lib/kobject.c:374 [inline]
kobject_init_and_add+0x124/0x190 lib/kobject.c:457
netdev_queue_add_kobject net/core/net-sysfs.c:1706 [inline]
netdev_queue_update_kobjects+0x1f3/0x480 net/core/net-sysfs.c:1758
register_queue_kobjects net/core/net-sysfs.c:1819 [inline]
netdev_register_kobject+0x265/0x310 net/core/net-sysfs.c:2059
register_netdevice+0x1191/0x19c0 net/core/dev.c:10298
bond_newlink+0x3b/0x90 drivers/net/bonding/bond_netlink.c:576
rtnl_newlink_create net/core/rtnetlink.c:3506 [inline]
__rtnl_newlink net/core/rtnetlink.c:3726 [inline]
rtnl_newlink+0x158f/0x20a0 net/core/rtnetlink.c:3739
rtnetlink_rcv_msg+0x885/0x1040 net/core/rtnetlink.c:6606
netlink_rcv_skb+0x1e3/0x430 net/netlink/af_netlink.c:2543
netlink_unicast_kernel net/netlink/af_netlink.c:1341 [inline]
netlink_unicast+0x7ea/0x980 net/netlink/af_netlink.c:1367
netlink_sendmsg+0xa3c/0xd70 net/netlink/af_netlink.c:1908
sock_sendmsg_nosec net/socket.c:730 [inline]
__sock_sendmsg+0x221/0x270 net/socket.c:745
__sys_sendto+0x3a4/0x4f0 net/socket.c:2191
__do_sys_sendto net/socket.c:2203 [inline]
__se_sys_sendto net/socket.c:2199 [inline]
__x64_sys_sendto+0xde/0x100 net/socket.c:2199
do_syscall_64+0xfb/0x240
entry_SYSCALL_64_after_hwframe+0x6d/0x75
RIP: 0033:0x7fc3fa87fa9c
Reported-by: syzbot <syzkaller@googlegroups.com>
Signed-off-by: Eric Dumazet <edumazet@google.com>
Link: https://lore.kernel.org/r/20240212140700.2795436-4-edumazet@google.com
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
2024-02-12 14:07:00 +00:00
|
|
|
netdev_lockdep_set_classes(dev);
|
2010-09-27 00:38:18 +00:00
|
|
|
return 0;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2015-11-03 01:08:19 +00:00
|
|
|
static void __net_init ipip6_fb_tunnel_init(struct net_device *dev)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2006-01-09 06:05:26 +00:00
|
|
|
struct ip_tunnel *tunnel = netdev_priv(dev);
|
2005-04-16 22:20:36 +00:00
|
|
|
struct iphdr *iph = &tunnel->parms.iph;
|
2008-04-16 08:16:38 +00:00
|
|
|
struct net *net = dev_net(dev);
|
|
|
|
|
struct sit_net *sitn = net_generic(net, sit_net_id);
|
2005-04-16 22:20:36 +00:00
|
|
|
|
|
|
|
|
iph->version = 4;
|
|
|
|
|
iph->protocol = IPPROTO_IPV6;
|
|
|
|
|
iph->ihl = 5;
|
|
|
|
|
iph->ttl = 64;
|
|
|
|
|
|
2012-01-12 04:41:32 +00:00
|
|
|
rcu_assign_pointer(sitn->tunnels_wc[0], tunnel);
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2017-06-25 21:56:01 +00:00
|
|
|
static int ipip6_validate(struct nlattr *tb[], struct nlattr *data[],
|
|
|
|
|
struct netlink_ext_ack *extack)
|
2013-05-27 23:48:16 +00:00
|
|
|
{
|
|
|
|
|
u8 proto;
|
|
|
|
|
|
2013-06-19 10:03:13 +00:00
|
|
|
if (!data || !data[IFLA_IPTUN_PROTO])
|
2013-05-27 23:48:16 +00:00
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
proto = nla_get_u8(data[IFLA_IPTUN_PROTO]);
|
2016-07-07 05:56:13 +00:00
|
|
|
if (!ipip6_valid_ip_proto(proto))
|
2013-05-27 23:48:16 +00:00
|
|
|
return -EINVAL;
|
|
|
|
|
|
|
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-14 05:14:07 +00:00
|
|
|
static void ipip6_netlink_parms(struct nlattr *data[],
|
2024-03-27 15:23:52 +00:00
|
|
|
struct ip_tunnel_parm_kern *parms,
|
2017-04-19 16:30:54 +00:00
|
|
|
__u32 *fwmark)
|
2012-11-14 05:14:07 +00:00
|
|
|
{
|
|
|
|
|
memset(parms, 0, sizeof(*parms));
|
|
|
|
|
|
|
|
|
|
parms->iph.version = 4;
|
|
|
|
|
parms->iph.protocol = IPPROTO_IPV6;
|
|
|
|
|
parms->iph.ihl = 5;
|
|
|
|
|
parms->iph.ttl = 64;
|
|
|
|
|
|
|
|
|
|
if (!data)
|
|
|
|
|
return;
|
|
|
|
|
|
2022-09-29 13:52:03 +00:00
|
|
|
ip_tunnel_netlink_parms(data, parms);
|
2013-05-27 23:48:16 +00:00
|
|
|
|
2017-04-19 16:30:54 +00:00
|
|
|
if (data[IFLA_IPTUN_FWMARK])
|
|
|
|
|
*fwmark = nla_get_u32(data[IFLA_IPTUN_FWMARK]);
|
2012-11-14 05:14:07 +00:00
|
|
|
}
|
|
|
|
|
|
2012-11-19 22:41:45 +00:00
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
|
|
|
|
/* This function returns true when 6RD attributes are present in the nl msg */
|
|
|
|
|
static bool ipip6_netlink_6rd_parms(struct nlattr *data[],
|
|
|
|
|
struct ip_tunnel_6rd *ip6rd)
|
|
|
|
|
{
|
|
|
|
|
bool ret = false;
|
|
|
|
|
memset(ip6rd, 0, sizeof(*ip6rd));
|
|
|
|
|
|
|
|
|
|
if (!data)
|
|
|
|
|
return ret;
|
|
|
|
|
|
|
|
|
|
if (data[IFLA_IPTUN_6RD_PREFIX]) {
|
|
|
|
|
ret = true;
|
2015-03-29 14:59:26 +00:00
|
|
|
ip6rd->prefix = nla_get_in6_addr(data[IFLA_IPTUN_6RD_PREFIX]);
|
2012-11-19 22:41:45 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (data[IFLA_IPTUN_6RD_RELAY_PREFIX]) {
|
|
|
|
|
ret = true;
|
|
|
|
|
ip6rd->relay_prefix =
|
|
|
|
|
nla_get_be32(data[IFLA_IPTUN_6RD_RELAY_PREFIX]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (data[IFLA_IPTUN_6RD_PREFIXLEN]) {
|
|
|
|
|
ret = true;
|
|
|
|
|
ip6rd->prefixlen = nla_get_u16(data[IFLA_IPTUN_6RD_PREFIXLEN]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (data[IFLA_IPTUN_6RD_RELAY_PREFIXLEN]) {
|
|
|
|
|
ret = true;
|
|
|
|
|
ip6rd->relay_prefixlen =
|
|
|
|
|
nla_get_u16(data[IFLA_IPTUN_6RD_RELAY_PREFIXLEN]);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return ret;
|
|
|
|
|
}
|
|
|
|
|
#endif
|
|
|
|
|
|
2012-11-14 05:14:07 +00:00
|
|
|
static int ipip6_newlink(struct net *src_net, struct net_device *dev,
|
2017-06-25 21:55:59 +00:00
|
|
|
struct nlattr *tb[], struct nlattr *data[],
|
|
|
|
|
struct netlink_ext_ack *extack)
|
2012-11-14 05:14:07 +00:00
|
|
|
{
|
|
|
|
|
struct net *net = dev_net(dev);
|
|
|
|
|
struct ip_tunnel *nt;
|
2014-09-17 19:25:59 +00:00
|
|
|
struct ip_tunnel_encap ipencap;
|
2012-11-19 22:41:45 +00:00
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
|
|
|
|
struct ip_tunnel_6rd ip6rd;
|
|
|
|
|
#endif
|
|
|
|
|
int err;
|
2012-11-14 05:14:07 +00:00
|
|
|
|
|
|
|
|
nt = netdev_priv(dev);
|
2014-09-17 19:25:59 +00:00
|
|
|
|
2022-09-29 13:52:02 +00:00
|
|
|
if (ip_tunnel_netlink_encap_parms(data, &ipencap)) {
|
2014-09-17 19:25:59 +00:00
|
|
|
err = ip_tunnel_encap_setup(nt, &ipencap);
|
|
|
|
|
if (err < 0)
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
2017-04-19 16:30:54 +00:00
|
|
|
ipip6_netlink_parms(data, &nt->parms, &nt->fwmark);
|
2012-11-14 05:14:07 +00:00
|
|
|
|
|
|
|
|
if (ipip6_tunnel_locate(net, &nt->parms, 0))
|
|
|
|
|
return -EEXIST;
|
|
|
|
|
|
2012-11-19 22:41:45 +00:00
|
|
|
err = ipip6_tunnel_create(dev);
|
|
|
|
|
if (err < 0)
|
|
|
|
|
return err;
|
|
|
|
|
|
2018-02-27 11:19:41 +00:00
|
|
|
if (tb[IFLA_MTU]) {
|
|
|
|
|
u32 mtu = nla_get_u32(tb[IFLA_MTU]);
|
|
|
|
|
|
2018-05-31 08:59:33 +00:00
|
|
|
if (mtu >= IPV6_MIN_MTU &&
|
|
|
|
|
mtu <= IP6_MAX_MTU - dev->hard_header_len)
|
2018-02-27 11:19:41 +00:00
|
|
|
dev->mtu = mtu;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-19 22:41:45 +00:00
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
2021-01-14 01:29:47 +00:00
|
|
|
if (ipip6_netlink_6rd_parms(data, &ip6rd)) {
|
2012-11-19 22:41:45 +00:00
|
|
|
err = ipip6_tunnel_update_6rd(nt, &ip6rd);
|
2021-01-14 01:29:47 +00:00
|
|
|
if (err < 0)
|
|
|
|
|
unregister_netdevice_queue(dev, NULL);
|
|
|
|
|
}
|
2012-11-19 22:41:45 +00:00
|
|
|
#endif
|
|
|
|
|
|
|
|
|
|
return err;
|
2012-11-14 05:14:07 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static int ipip6_changelink(struct net_device *dev, struct nlattr *tb[],
|
2017-06-25 21:56:00 +00:00
|
|
|
struct nlattr *data[],
|
|
|
|
|
struct netlink_ext_ack *extack)
|
2012-11-14 05:14:07 +00:00
|
|
|
{
|
2013-07-03 15:00:34 +00:00
|
|
|
struct ip_tunnel *t = netdev_priv(dev);
|
2014-09-17 19:25:59 +00:00
|
|
|
struct ip_tunnel_encap ipencap;
|
2024-03-27 15:23:52 +00:00
|
|
|
struct ip_tunnel_parm_kern p;
|
2013-07-03 15:00:34 +00:00
|
|
|
struct net *net = t->net;
|
2012-11-14 05:14:07 +00:00
|
|
|
struct sit_net *sitn = net_generic(net, sit_net_id);
|
2012-11-19 22:41:45 +00:00
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
|
|
|
|
struct ip_tunnel_6rd ip6rd;
|
|
|
|
|
#endif
|
2017-04-19 16:30:54 +00:00
|
|
|
__u32 fwmark = t->fwmark;
|
2014-09-17 19:25:59 +00:00
|
|
|
int err;
|
2012-11-14 05:14:07 +00:00
|
|
|
|
|
|
|
|
if (dev == sitn->fb_tunnel_dev)
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
2022-09-29 13:52:02 +00:00
|
|
|
if (ip_tunnel_netlink_encap_parms(data, &ipencap)) {
|
2014-09-17 19:25:59 +00:00
|
|
|
err = ip_tunnel_encap_setup(t, &ipencap);
|
|
|
|
|
if (err < 0)
|
|
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
2017-04-19 16:30:54 +00:00
|
|
|
ipip6_netlink_parms(data, &p, &fwmark);
|
2012-11-14 05:14:07 +00:00
|
|
|
|
|
|
|
|
if (((dev->flags & IFF_POINTOPOINT) && !p.iph.daddr) ||
|
|
|
|
|
(!(dev->flags & IFF_POINTOPOINT) && p.iph.daddr))
|
|
|
|
|
return -EINVAL;
|
|
|
|
|
|
|
|
|
|
t = ipip6_tunnel_locate(net, &p, 0);
|
|
|
|
|
|
|
|
|
|
if (t) {
|
|
|
|
|
if (t->dev != dev)
|
|
|
|
|
return -EEXIST;
|
|
|
|
|
} else
|
|
|
|
|
t = netdev_priv(dev);
|
|
|
|
|
|
2017-04-19 16:30:54 +00:00
|
|
|
ipip6_tunnel_update(t, &p, fwmark);
|
2012-11-19 22:41:45 +00:00
|
|
|
|
|
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
|
|
|
|
if (ipip6_netlink_6rd_parms(data, &ip6rd))
|
|
|
|
|
return ipip6_tunnel_update_6rd(t, &ip6rd);
|
|
|
|
|
#endif
|
|
|
|
|
|
2012-11-14 05:14:07 +00:00
|
|
|
return 0;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-14 05:14:06 +00:00
|
|
|
static size_t ipip6_get_size(const struct net_device *dev)
|
2012-11-09 06:10:00 +00:00
|
|
|
{
|
|
|
|
|
return
|
|
|
|
|
/* IFLA_IPTUN_LINK */
|
|
|
|
|
nla_total_size(4) +
|
|
|
|
|
/* IFLA_IPTUN_LOCAL */
|
|
|
|
|
nla_total_size(4) +
|
|
|
|
|
/* IFLA_IPTUN_REMOTE */
|
|
|
|
|
nla_total_size(4) +
|
|
|
|
|
/* IFLA_IPTUN_TTL */
|
|
|
|
|
nla_total_size(1) +
|
|
|
|
|
/* IFLA_IPTUN_TOS */
|
|
|
|
|
nla_total_size(1) +
|
2012-11-14 05:14:05 +00:00
|
|
|
/* IFLA_IPTUN_PMTUDISC */
|
|
|
|
|
nla_total_size(1) +
|
|
|
|
|
/* IFLA_IPTUN_FLAGS */
|
|
|
|
|
nla_total_size(2) +
|
2013-05-27 23:48:16 +00:00
|
|
|
/* IFLA_IPTUN_PROTO */
|
|
|
|
|
nla_total_size(1) +
|
2012-11-19 22:41:45 +00:00
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
|
|
|
|
/* IFLA_IPTUN_6RD_PREFIX */
|
|
|
|
|
nla_total_size(sizeof(struct in6_addr)) +
|
|
|
|
|
/* IFLA_IPTUN_6RD_RELAY_PREFIX */
|
|
|
|
|
nla_total_size(4) +
|
|
|
|
|
/* IFLA_IPTUN_6RD_PREFIXLEN */
|
|
|
|
|
nla_total_size(2) +
|
|
|
|
|
/* IFLA_IPTUN_6RD_RELAY_PREFIXLEN */
|
|
|
|
|
nla_total_size(2) +
|
|
|
|
|
#endif
|
2014-09-17 19:25:59 +00:00
|
|
|
/* IFLA_IPTUN_ENCAP_TYPE */
|
|
|
|
|
nla_total_size(2) +
|
|
|
|
|
/* IFLA_IPTUN_ENCAP_FLAGS */
|
|
|
|
|
nla_total_size(2) +
|
|
|
|
|
/* IFLA_IPTUN_ENCAP_SPORT */
|
|
|
|
|
nla_total_size(2) +
|
|
|
|
|
/* IFLA_IPTUN_ENCAP_DPORT */
|
|
|
|
|
nla_total_size(2) +
|
2017-04-19 16:30:54 +00:00
|
|
|
/* IFLA_IPTUN_FWMARK */
|
|
|
|
|
nla_total_size(4) +
|
2012-11-09 06:10:00 +00:00
|
|
|
0;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-14 05:14:06 +00:00
|
|
|
static int ipip6_fill_info(struct sk_buff *skb, const struct net_device *dev)
|
2012-11-09 06:10:00 +00:00
|
|
|
{
|
|
|
|
|
struct ip_tunnel *tunnel = netdev_priv(dev);
|
2024-03-27 15:23:52 +00:00
|
|
|
struct ip_tunnel_parm_kern *parm = &tunnel->parms;
|
2012-11-09 06:10:00 +00:00
|
|
|
|
|
|
|
|
if (nla_put_u32(skb, IFLA_IPTUN_LINK, parm->link) ||
|
2015-03-29 14:59:25 +00:00
|
|
|
nla_put_in_addr(skb, IFLA_IPTUN_LOCAL, parm->iph.saddr) ||
|
|
|
|
|
nla_put_in_addr(skb, IFLA_IPTUN_REMOTE, parm->iph.daddr) ||
|
2012-11-09 06:10:00 +00:00
|
|
|
nla_put_u8(skb, IFLA_IPTUN_TTL, parm->iph.ttl) ||
|
2012-11-14 05:14:05 +00:00
|
|
|
nla_put_u8(skb, IFLA_IPTUN_TOS, parm->iph.tos) ||
|
|
|
|
|
nla_put_u8(skb, IFLA_IPTUN_PMTUDISC,
|
|
|
|
|
!!(parm->iph.frag_off & htons(IP_DF))) ||
|
2013-05-27 23:48:16 +00:00
|
|
|
nla_put_u8(skb, IFLA_IPTUN_PROTO, parm->iph.protocol) ||
|
ip_tunnel: convert __be16 tunnel flags to bitmaps
Historically, tunnel flags like TUNNEL_CSUM or TUNNEL_ERSPAN_OPT
have been defined as __be16. Now all of those 16 bits are occupied
and there's no more free space for new flags.
It can't be simply switched to a bigger container with no
adjustments to the values, since it's an explicit Endian storage,
and on LE systems (__be16)0x0001 equals to
(__be64)0x0001000000000000.
We could probably define new 64-bit flags depending on the
Endianness, i.e. (__be64)0x0001 on BE and (__be64)0x00010000... on
LE, but that would introduce an Endianness dependency and spawn a
ton of Sparse warnings. To mitigate them, all of those places which
were adjusted with this change would be touched anyway, so why not
define stuff properly if there's no choice.
Define IP_TUNNEL_*_BIT counterparts as a bit number instead of the
value already coded and a fistful of <16 <-> bitmap> converters and
helpers. The two flags which have a different bit position are
SIT_ISATAP_BIT and VTI_ISVTI_BIT, as they were defined not as
__cpu_to_be16(), but as (__force __be16), i.e. had different
positions on LE and BE. Now they both have strongly defined places.
Change all __be16 fields which were used to store those flags, to
IP_TUNNEL_DECLARE_FLAGS() -> DECLARE_BITMAP(__IP_TUNNEL_FLAG_NUM) ->
unsigned long[1] for now, and replace all TUNNEL_* occurrences to
their bitmap counterparts. Use the converters in the places which talk
to the userspace, hardware (NFP) or other hosts (GRE header). The rest
must explicitly use the new flags only. This must be done at once,
otherwise there will be too many conversions throughout the code in
the intermediate commits.
Finally, disable the old __be16 flags for use in the kernel code
(except for the two 'irregular' flags mentioned above), to prevent
any accidental (mis)use of them. For the userspace, nothing is
changed, only additions were made.
Most noticeable bloat-o-meter difference (.text):
vmlinux: 307/-1 (306)
gre.ko: 62/0 (62)
ip_gre.ko: 941/-217 (724) [*]
ip_tunnel.ko: 390/-900 (-510) [**]
ip_vti.ko: 138/0 (138)
ip6_gre.ko: 534/-18 (516) [*]
ip6_tunnel.ko: 118/-10 (108)
[*] gre_flags_to_tnl_flags() grew, but still is inlined
[**] ip_tunnel_find() got uninlined, hence such decrease
The average code size increase in non-extreme case is 100-200 bytes
per module, mostly due to sizeof(long) > sizeof(__be16), as
%__IP_TUNNEL_FLAG_NUM is less than %BITS_PER_LONG and the compilers
are able to expand the majority of bitmap_*() calls here into direct
operations on scalars.
Reviewed-by: Simon Horman <horms@kernel.org>
Signed-off-by: Alexander Lobakin <aleksander.lobakin@intel.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2024-03-27 15:23:53 +00:00
|
|
|
nla_put_be16(skb, IFLA_IPTUN_FLAGS,
|
|
|
|
|
ip_tunnel_flags_to_be16(parm->i_flags)) ||
|
2017-04-19 16:30:54 +00:00
|
|
|
nla_put_u32(skb, IFLA_IPTUN_FWMARK, tunnel->fwmark))
|
2012-11-09 06:10:00 +00:00
|
|
|
goto nla_put_failure;
|
2012-11-19 22:41:45 +00:00
|
|
|
|
|
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
2015-03-29 14:59:25 +00:00
|
|
|
if (nla_put_in6_addr(skb, IFLA_IPTUN_6RD_PREFIX,
|
|
|
|
|
&tunnel->ip6rd.prefix) ||
|
|
|
|
|
nla_put_in_addr(skb, IFLA_IPTUN_6RD_RELAY_PREFIX,
|
|
|
|
|
tunnel->ip6rd.relay_prefix) ||
|
2012-11-19 22:41:45 +00:00
|
|
|
nla_put_u16(skb, IFLA_IPTUN_6RD_PREFIXLEN,
|
|
|
|
|
tunnel->ip6rd.prefixlen) ||
|
|
|
|
|
nla_put_u16(skb, IFLA_IPTUN_6RD_RELAY_PREFIXLEN,
|
|
|
|
|
tunnel->ip6rd.relay_prefixlen))
|
|
|
|
|
goto nla_put_failure;
|
|
|
|
|
#endif
|
|
|
|
|
|
2014-09-17 19:25:59 +00:00
|
|
|
if (nla_put_u16(skb, IFLA_IPTUN_ENCAP_TYPE,
|
|
|
|
|
tunnel->encap.type) ||
|
2015-02-04 23:12:04 +00:00
|
|
|
nla_put_be16(skb, IFLA_IPTUN_ENCAP_SPORT,
|
2014-09-17 19:25:59 +00:00
|
|
|
tunnel->encap.sport) ||
|
2015-02-04 23:12:04 +00:00
|
|
|
nla_put_be16(skb, IFLA_IPTUN_ENCAP_DPORT,
|
2014-09-17 19:25:59 +00:00
|
|
|
tunnel->encap.dport) ||
|
|
|
|
|
nla_put_u16(skb, IFLA_IPTUN_ENCAP_FLAGS,
|
2014-11-06 00:49:38 +00:00
|
|
|
tunnel->encap.flags))
|
2014-09-17 19:25:59 +00:00
|
|
|
goto nla_put_failure;
|
|
|
|
|
|
2012-11-09 06:10:00 +00:00
|
|
|
return 0;
|
|
|
|
|
|
|
|
|
|
nla_put_failure:
|
|
|
|
|
return -EMSGSIZE;
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-14 05:14:07 +00:00
|
|
|
static const struct nla_policy ipip6_policy[IFLA_IPTUN_MAX + 1] = {
|
|
|
|
|
[IFLA_IPTUN_LINK] = { .type = NLA_U32 },
|
|
|
|
|
[IFLA_IPTUN_LOCAL] = { .type = NLA_U32 },
|
|
|
|
|
[IFLA_IPTUN_REMOTE] = { .type = NLA_U32 },
|
|
|
|
|
[IFLA_IPTUN_TTL] = { .type = NLA_U8 },
|
|
|
|
|
[IFLA_IPTUN_TOS] = { .type = NLA_U8 },
|
|
|
|
|
[IFLA_IPTUN_PMTUDISC] = { .type = NLA_U8 },
|
|
|
|
|
[IFLA_IPTUN_FLAGS] = { .type = NLA_U16 },
|
2013-05-27 23:48:16 +00:00
|
|
|
[IFLA_IPTUN_PROTO] = { .type = NLA_U8 },
|
2012-11-19 22:41:45 +00:00
|
|
|
#ifdef CONFIG_IPV6_SIT_6RD
|
|
|
|
|
[IFLA_IPTUN_6RD_PREFIX] = { .len = sizeof(struct in6_addr) },
|
|
|
|
|
[IFLA_IPTUN_6RD_RELAY_PREFIX] = { .type = NLA_U32 },
|
|
|
|
|
[IFLA_IPTUN_6RD_PREFIXLEN] = { .type = NLA_U16 },
|
|
|
|
|
[IFLA_IPTUN_6RD_RELAY_PREFIXLEN] = { .type = NLA_U16 },
|
|
|
|
|
#endif
|
2014-09-17 19:25:59 +00:00
|
|
|
[IFLA_IPTUN_ENCAP_TYPE] = { .type = NLA_U16 },
|
|
|
|
|
[IFLA_IPTUN_ENCAP_FLAGS] = { .type = NLA_U16 },
|
|
|
|
|
[IFLA_IPTUN_ENCAP_SPORT] = { .type = NLA_U16 },
|
|
|
|
|
[IFLA_IPTUN_ENCAP_DPORT] = { .type = NLA_U16 },
|
2017-04-19 16:30:54 +00:00
|
|
|
[IFLA_IPTUN_FWMARK] = { .type = NLA_U32 },
|
2012-11-14 05:14:07 +00:00
|
|
|
};
|
|
|
|
|
|
2013-11-14 02:27:38 +00:00
|
|
|
static void ipip6_dellink(struct net_device *dev, struct list_head *head)
|
|
|
|
|
{
|
|
|
|
|
struct net *net = dev_net(dev);
|
|
|
|
|
struct sit_net *sitn = net_generic(net, sit_net_id);
|
|
|
|
|
|
|
|
|
|
if (dev != sitn->fb_tunnel_dev)
|
|
|
|
|
unregister_netdevice_queue(dev, head);
|
|
|
|
|
}
|
|
|
|
|
|
2012-11-09 06:10:00 +00:00
|
|
|
static struct rtnl_link_ops sit_link_ops __read_mostly = {
|
|
|
|
|
.kind = "sit",
|
|
|
|
|
.maxtype = IFLA_IPTUN_MAX,
|
2012-11-14 05:14:07 +00:00
|
|
|
.policy = ipip6_policy,
|
2012-11-09 06:10:00 +00:00
|
|
|
.priv_size = sizeof(struct ip_tunnel),
|
2012-11-14 05:14:07 +00:00
|
|
|
.setup = ipip6_tunnel_setup,
|
2013-05-27 23:48:16 +00:00
|
|
|
.validate = ipip6_validate,
|
2012-11-14 05:14:07 +00:00
|
|
|
.newlink = ipip6_newlink,
|
|
|
|
|
.changelink = ipip6_changelink,
|
2012-11-14 05:14:06 +00:00
|
|
|
.get_size = ipip6_get_size,
|
|
|
|
|
.fill_info = ipip6_fill_info,
|
2013-11-14 02:27:38 +00:00
|
|
|
.dellink = ipip6_dellink,
|
2015-01-15 14:11:17 +00:00
|
|
|
.get_link_net = ip_tunnel_get_link_net,
|
2012-11-09 06:10:00 +00:00
|
|
|
};
|
|
|
|
|
|
2010-08-30 07:04:14 +00:00
|
|
|
static struct xfrm_tunnel sit_handler __read_mostly = {
|
2005-04-16 22:20:36 +00:00
|
|
|
.handler = ipip6_rcv,
|
|
|
|
|
.err_handler = ipip6_err,
|
2007-02-13 20:55:25 +00:00
|
|
|
.priority = 1,
|
2005-04-16 22:20:36 +00:00
|
|
|
};
|
|
|
|
|
|
2013-05-27 23:48:16 +00:00
|
|
|
static struct xfrm_tunnel ipip_handler __read_mostly = {
|
|
|
|
|
.handler = ipip_rcv,
|
|
|
|
|
.err_handler = ipip6_err,
|
|
|
|
|
.priority = 2,
|
|
|
|
|
};
|
|
|
|
|
|
2016-07-07 05:56:13 +00:00
|
|
|
#if IS_ENABLED(CONFIG_MPLS)
|
|
|
|
|
static struct xfrm_tunnel mplsip_handler __read_mostly = {
|
|
|
|
|
.handler = mplsip_rcv,
|
|
|
|
|
.err_handler = ipip6_err,
|
|
|
|
|
.priority = 2,
|
|
|
|
|
};
|
|
|
|
|
#endif
|
|
|
|
|
|
2013-11-14 02:27:38 +00:00
|
|
|
static void __net_exit sit_destroy_tunnels(struct net *net,
|
|
|
|
|
struct list_head *head)
|
2005-07-31 00:46:44 +00:00
|
|
|
{
|
2013-11-14 02:27:38 +00:00
|
|
|
struct sit_net *sitn = net_generic(net, sit_net_id);
|
2013-06-26 14:11:28 +00:00
|
|
|
struct net_device *dev, *aux;
|
2005-07-31 00:46:44 +00:00
|
|
|
int prio;
|
|
|
|
|
|
2013-06-26 14:11:28 +00:00
|
|
|
for_each_netdev_safe(net, dev, aux)
|
|
|
|
|
if (dev->rtnl_link_ops == &sit_link_ops)
|
|
|
|
|
unregister_netdevice_queue(dev, head);
|
|
|
|
|
|
2021-04-12 17:41:16 +00:00
|
|
|
for (prio = 0; prio < 4; prio++) {
|
2005-07-31 00:46:44 +00:00
|
|
|
int h;
|
2021-04-12 17:41:16 +00:00
|
|
|
for (h = 0; h < (prio ? IP6_SIT_HASH_SIZE : 1); h++) {
|
2011-01-20 07:16:24 +00:00
|
|
|
struct ip_tunnel *t;
|
2009-10-28 04:37:43 +00:00
|
|
|
|
2011-01-20 07:16:24 +00:00
|
|
|
t = rtnl_dereference(sitn->tunnels[prio][h]);
|
2015-03-29 13:00:05 +00:00
|
|
|
while (t) {
|
2013-06-26 14:11:28 +00:00
|
|
|
/* If dev is in the same netns, it has already
|
|
|
|
|
* been added to the list by the previous loop.
|
|
|
|
|
*/
|
2013-08-13 15:51:10 +00:00
|
|
|
if (!net_eq(dev_net(t->dev), net))
|
2013-06-26 14:11:28 +00:00
|
|
|
unregister_netdevice_queue(t->dev,
|
|
|
|
|
head);
|
2011-01-20 07:16:24 +00:00
|
|
|
t = rtnl_dereference(t->next);
|
2009-10-28 04:37:43 +00:00
|
|
|
}
|
2005-07-31 00:46:44 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2010-01-17 03:35:32 +00:00
|
|
|
static int __net_init sit_init_net(struct net *net)
|
2008-04-16 08:15:17 +00:00
|
|
|
{
|
2009-11-29 15:46:16 +00:00
|
|
|
struct sit_net *sitn = net_generic(net, sit_net_id);
|
2011-12-08 00:46:21 +00:00
|
|
|
struct ip_tunnel *t;
|
2008-04-16 08:15:17 +00:00
|
|
|
int err;
|
|
|
|
|
|
2008-04-16 08:16:38 +00:00
|
|
|
sitn->tunnels[0] = sitn->tunnels_wc;
|
|
|
|
|
sitn->tunnels[1] = sitn->tunnels_l;
|
|
|
|
|
sitn->tunnels[2] = sitn->tunnels_r;
|
|
|
|
|
sitn->tunnels[3] = sitn->tunnels_r_l;
|
|
|
|
|
|
net: do not create fallback tunnels for non-default namespaces
fallback tunnels (like tunl0, gre0, gretap0, erspan0, sit0,
ip6tnl0, ip6gre0) are automatically created when the corresponding
module is loaded.
These tunnels are also automatically created when a new network
namespace is created, at a great cost.
In many cases, netns are used for isolation purposes, and these
extra network devices are a waste of resources. We are using
thousands of netns per host, and hit the netns creation/delete
bottleneck a lot. (Many thanks to Kirill for recent work on this)
Add a new sysctl so that we can opt-out from this automatic creation.
Note that these tunnels are still created for the initial namespace,
to be the least intrusive for typical setups.
Tested:
lpk43:~# cat add_del_unshare.sh
for i in `seq 1 40`
do
(for j in `seq 1 100` ; do unshare -n /bin/true >/dev/null ; done) &
done
wait
lpk43:~# echo 0 >/proc/sys/net/core/fb_tunnels_only_for_init_net
lpk43:~# time ./add_del_unshare.sh
real 0m37.521s
user 0m0.886s
sys 7m7.084s
lpk43:~# echo 1 >/proc/sys/net/core/fb_tunnels_only_for_init_net
lpk43:~# time ./add_del_unshare.sh
real 0m4.761s
user 0m0.851s
sys 1m8.343s
lpk43:~#
Signed-off-by: Eric Dumazet <edumazet@google.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2018-03-08 20:51:41 +00:00
|
|
|
if (!net_has_fallback_tunnels(net))
|
|
|
|
|
return 0;
|
|
|
|
|
|
2008-04-16 08:16:18 +00:00
|
|
|
sitn->fb_tunnel_dev = alloc_netdev(sizeof(struct ip_tunnel), "sit0",
|
net: set name_assign_type in alloc_netdev()
Extend alloc_netdev{,_mq{,s}}() to take name_assign_type as argument, and convert
all users to pass NET_NAME_UNKNOWN.
Coccinelle patch:
@@
expression sizeof_priv, name, setup, txqs, rxqs, count;
@@
(
-alloc_netdev_mqs(sizeof_priv, name, setup, txqs, rxqs)
+alloc_netdev_mqs(sizeof_priv, name, NET_NAME_UNKNOWN, setup, txqs, rxqs)
|
-alloc_netdev_mq(sizeof_priv, name, setup, count)
+alloc_netdev_mq(sizeof_priv, name, NET_NAME_UNKNOWN, setup, count)
|
-alloc_netdev(sizeof_priv, name, setup)
+alloc_netdev(sizeof_priv, name, NET_NAME_UNKNOWN, setup)
)
v9: move comments here from the wrong commit
Signed-off-by: Tom Gundersen <teg@jklm.no>
Reviewed-by: David Herrmann <dh.herrmann@gmail.com>
Signed-off-by: David S. Miller <davem@davemloft.net>
2014-07-14 14:37:24 +00:00
|
|
|
NET_NAME_UNKNOWN,
|
2008-04-16 08:16:18 +00:00
|
|
|
ipip6_tunnel_setup);
|
|
|
|
|
if (!sitn->fb_tunnel_dev) {
|
|
|
|
|
err = -ENOMEM;
|
|
|
|
|
goto err_alloc_dev;
|
|
|
|
|
}
|
2008-11-24 01:26:26 +00:00
|
|
|
dev_net_set(sitn->fb_tunnel_dev, net);
|
2013-10-01 16:04:59 +00:00
|
|
|
sitn->fb_tunnel_dev->rtnl_link_ops = &sit_link_ops;
|
2013-06-26 14:11:28 +00:00
|
|
|
/* FB netdevice is special: we have one, and only one per netns.
|
|
|
|
|
* Allowing to move it to another netns is clearly unsafe.
|
|
|
|
|
*/
|
|
|
|
|
sitn->fb_tunnel_dev->features |= NETIF_F_NETNS_LOCAL;
|
2008-04-16 08:16:18 +00:00
|
|
|
|
2014-11-23 21:28:43 +00:00
|
|
|
err = register_netdev(sitn->fb_tunnel_dev);
|
|
|
|
|
if (err)
|
2008-04-16 08:16:18 +00:00
|
|
|
goto err_reg_dev;
|
|
|
|
|
|
2015-11-03 01:08:19 +00:00
|
|
|
ipip6_tunnel_clone_6rd(sitn->fb_tunnel_dev, sitn);
|
|
|
|
|
ipip6_fb_tunnel_init(sitn->fb_tunnel_dev);
|
|
|
|
|
|
2011-12-08 00:46:21 +00:00
|
|
|
t = netdev_priv(sitn->fb_tunnel_dev);
|
|
|
|
|
|
|
|
|
|
strcpy(t->parms.name, sitn->fb_tunnel_dev->name);
|
2008-04-16 08:15:17 +00:00
|
|
|
return 0;
|
|
|
|
|
|
2008-04-16 08:16:18 +00:00
|
|
|
err_reg_dev:
|
2019-03-01 15:06:40 +00:00
|
|
|
free_netdev(sitn->fb_tunnel_dev);
|
2008-04-16 08:16:18 +00:00
|
|
|
err_alloc_dev:
|
2008-04-16 08:15:17 +00:00
|
|
|
return err;
|
|
|
|
|
}
|
|
|
|
|
|
2024-02-06 14:43:09 +00:00
|
|
|
static void __net_exit sit_exit_batch_rtnl(struct list_head *net_list,
|
|
|
|
|
struct list_head *dev_to_kill)
|
2008-04-16 08:15:17 +00:00
|
|
|
{
|
2017-09-19 23:27:08 +00:00
|
|
|
struct net *net;
|
2008-04-16 08:15:17 +00:00
|
|
|
|
2024-02-06 14:43:09 +00:00
|
|
|
ASSERT_RTNL();
|
2017-09-19 23:27:08 +00:00
|
|
|
list_for_each_entry(net, net_list, exit_list)
|
2024-02-06 14:43:09 +00:00
|
|
|
sit_destroy_tunnels(net, dev_to_kill);
|
2008-04-16 08:15:17 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
static struct pernet_operations sit_net_ops = {
|
|
|
|
|
.init = sit_init_net,
|
2024-02-06 14:43:09 +00:00
|
|
|
.exit_batch_rtnl = sit_exit_batch_rtnl,
|
2009-11-29 15:46:16 +00:00
|
|
|
.id = &sit_net_id,
|
|
|
|
|
.size = sizeof(struct sit_net),
|
2008-04-16 08:15:17 +00:00
|
|
|
};
|
|
|
|
|
|
2006-11-21 00:56:48 +00:00
|
|
|
static void __exit sit_cleanup(void)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
2012-11-09 06:10:00 +00:00
|
|
|
rtnl_link_unregister(&sit_link_ops);
|
2007-02-13 20:55:25 +00:00
|
|
|
xfrm4_tunnel_deregister(&sit_handler, AF_INET6);
|
2013-05-27 23:48:16 +00:00
|
|
|
xfrm4_tunnel_deregister(&ipip_handler, AF_INET);
|
2016-07-07 05:56:13 +00:00
|
|
|
#if IS_ENABLED(CONFIG_MPLS)
|
|
|
|
|
xfrm4_tunnel_deregister(&mplsip_handler, AF_MPLS);
|
|
|
|
|
#endif
|
2005-07-31 00:46:44 +00:00
|
|
|
|
2009-11-29 15:46:16 +00:00
|
|
|
unregister_pernet_device(&sit_net_ops);
|
2009-10-23 17:51:26 +00:00
|
|
|
rcu_barrier(); /* Wait for completion of call_rcu()'s */
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
|
|
|
|
|
2006-11-21 00:56:48 +00:00
|
|
|
static int __init sit_init(void)
|
2005-04-16 22:20:36 +00:00
|
|
|
{
|
|
|
|
|
int err;
|
|
|
|
|
|
2016-07-07 05:56:13 +00:00
|
|
|
pr_info("IPv6, IPv4 and MPLS over IPv4 tunneling driver\n");
|
2005-04-16 22:20:36 +00:00
|
|
|
|
2009-11-29 15:46:16 +00:00
|
|
|
err = register_pernet_device(&sit_net_ops);
|
2008-04-16 08:15:17 +00:00
|
|
|
if (err < 0)
|
2010-02-16 09:05:04 +00:00
|
|
|
return err;
|
|
|
|
|
err = xfrm4_tunnel_register(&sit_handler, AF_INET6);
|
|
|
|
|
if (err < 0) {
|
2013-05-27 23:48:16 +00:00
|
|
|
pr_info("%s: can't register ip6ip4\n", __func__);
|
2012-11-09 06:10:00 +00:00
|
|
|
goto xfrm_tunnel_failed;
|
2010-02-16 09:05:04 +00:00
|
|
|
}
|
2013-05-27 23:48:16 +00:00
|
|
|
err = xfrm4_tunnel_register(&ipip_handler, AF_INET);
|
|
|
|
|
if (err < 0) {
|
|
|
|
|
pr_info("%s: can't register ip4ip4\n", __func__);
|
|
|
|
|
goto xfrm_tunnel4_failed;
|
|
|
|
|
}
|
2016-07-07 05:56:13 +00:00
|
|
|
#if IS_ENABLED(CONFIG_MPLS)
|
|
|
|
|
err = xfrm4_tunnel_register(&mplsip_handler, AF_MPLS);
|
|
|
|
|
if (err < 0) {
|
|
|
|
|
pr_info("%s: can't register mplsip\n", __func__);
|
|
|
|
|
goto xfrm_tunnel_mpls_failed;
|
|
|
|
|
}
|
|
|
|
|
#endif
|
2012-11-09 06:10:00 +00:00
|
|
|
err = rtnl_link_register(&sit_link_ops);
|
|
|
|
|
if (err < 0)
|
|
|
|
|
goto rtnl_link_failed;
|
|
|
|
|
|
|
|
|
|
out:
|
2005-04-16 22:20:36 +00:00
|
|
|
return err;
|
2012-11-09 06:10:00 +00:00
|
|
|
|
|
|
|
|
rtnl_link_failed:
|
2016-07-07 05:56:13 +00:00
|
|
|
#if IS_ENABLED(CONFIG_MPLS)
|
|
|
|
|
xfrm4_tunnel_deregister(&mplsip_handler, AF_MPLS);
|
|
|
|
|
xfrm_tunnel_mpls_failed:
|
|
|
|
|
#endif
|
2013-05-27 23:48:16 +00:00
|
|
|
xfrm4_tunnel_deregister(&ipip_handler, AF_INET);
|
|
|
|
|
xfrm_tunnel4_failed:
|
2012-11-09 06:10:00 +00:00
|
|
|
xfrm4_tunnel_deregister(&sit_handler, AF_INET6);
|
|
|
|
|
xfrm_tunnel_failed:
|
|
|
|
|
unregister_pernet_device(&sit_net_ops);
|
|
|
|
|
goto out;
|
2005-04-16 22:20:36 +00:00
|
|
|
}
|
2006-10-10 21:47:44 +00:00
|
|
|
|
|
|
|
|
module_init(sit_init);
|
|
|
|
|
module_exit(sit_cleanup);
|
2024-02-08 16:42:40 +00:00
|
|
|
MODULE_DESCRIPTION("IPv6-in-IPv4 tunnel SIT driver");
|
2006-10-13 22:05:53 +00:00
|
|
|
MODULE_LICENSE("GPL");
|
2014-05-15 21:21:30 +00:00
|
|
|
MODULE_ALIAS_RTNL_LINK("sit");
|
2011-03-01 21:33:13 +00:00
|
|
|
MODULE_ALIAS_NETDEV("sit0");
|