2 * Anycast support for IPv6
3 * Linux INET6 implementation
6 * David L Stevens (dlstevens@us.ibm.com)
8 * based heavily on net/ipv6/mcast.c
10 * This program is free software; you can redistribute it and/or
11 * modify it under the terms of the GNU General Public License
12 * as published by the Free Software Foundation; either version
13 * 2 of the License, or (at your option) any later version.
16 #include <linux/capability.h>
17 #include <linux/module.h>
18 #include <linux/errno.h>
19 #include <linux/types.h>
20 #include <linux/random.h>
21 #include <linux/string.h>
22 #include <linux/socket.h>
23 #include <linux/sockios.h>
24 #include <linux/net.h>
25 #include <linux/in6.h>
26 #include <linux/netdevice.h>
27 #include <linux/if_arp.h>
28 #include <linux/route.h>
29 #include <linux/init.h>
30 #include <linux/proc_fs.h>
31 #include <linux/seq_file.h>
33 #include <net/net_namespace.h>
38 #include <net/protocol.h>
39 #include <net/if_inet6.h>
40 #include <net/ndisc.h>
41 #include <net/addrconf.h>
42 #include <net/ip6_route.h>
44 #include <net/checksum.h>
46 static int ipv6_dev_ac_dec(struct net_device *dev, struct in6_addr *addr);
48 /* Big ac list lock for all the sockets */
49 static DEFINE_RWLOCK(ipv6_sk_ac_lock);
53 * socket join an anycast group
56 int ipv6_sock_ac_join(struct sock *sk, int ifindex, struct in6_addr *addr)
58 struct ipv6_pinfo *np = inet6_sk(sk);
59 struct net_device *dev = NULL;
60 struct inet6_dev *idev;
61 struct ipv6_ac_socklist *pac;
62 struct net *net = sock_net(sk);
63 int ishost = !ipv6_devconf.forwarding;
66 if (!capable(CAP_NET_ADMIN))
68 if (ipv6_addr_is_multicast(addr))
70 if (ipv6_chk_addr(net, addr, NULL, 0))
73 pac = sock_kmalloc(sk, sizeof(struct ipv6_ac_socklist), GFP_KERNEL);
77 ipv6_addr_copy(&pac->acl_addr, addr);
82 rt = rt6_lookup(net, addr, NULL, 0, 0);
86 dst_release(&rt->u.dst);
91 /* router, no matching interface: just pick one */
93 dev = dev_get_by_flags(net, IFF_UP, IFF_UP|IFF_LOOPBACK);
96 dev = dev_get_by_index(net, ifindex);
103 idev = in6_dev_get(dev);
108 err = -EADDRNOTAVAIL;
111 /* reset ishost, now that we have a specific device */
112 ishost = !idev->cnf.forwarding;
115 pac->acl_ifindex = dev->ifindex;
118 * For hosts, allow link-local or matching prefix anycasts.
119 * This obviates the need for propagating anycast routes while
120 * still allowing some non-router anycast participation.
122 if (!ipv6_chk_prefix(addr, dev)) {
124 err = -EADDRNOTAVAIL;
129 err = ipv6_dev_ac_inc(dev, addr);
133 write_lock_bh(&ipv6_sk_ac_lock);
134 pac->acl_next = np->ipv6_ac_list;
135 np->ipv6_ac_list = pac;
136 write_unlock_bh(&ipv6_sk_ac_lock);
145 sock_kfree_s(sk, pac, sizeof(*pac));
150 * socket leave an anycast group
152 int ipv6_sock_ac_drop(struct sock *sk, int ifindex, struct in6_addr *addr)
154 struct ipv6_pinfo *np = inet6_sk(sk);
155 struct net_device *dev;
156 struct ipv6_ac_socklist *pac, *prev_pac;
157 struct net *net = sock_net(sk);
159 write_lock_bh(&ipv6_sk_ac_lock);
161 for (pac = np->ipv6_ac_list; pac; pac = pac->acl_next) {
162 if ((ifindex == 0 || pac->acl_ifindex == ifindex) &&
163 ipv6_addr_equal(&pac->acl_addr, addr))
168 write_unlock_bh(&ipv6_sk_ac_lock);
172 prev_pac->acl_next = pac->acl_next;
174 np->ipv6_ac_list = pac->acl_next;
176 write_unlock_bh(&ipv6_sk_ac_lock);
178 dev = dev_get_by_index(net, pac->acl_ifindex);
180 ipv6_dev_ac_dec(dev, &pac->acl_addr);
183 sock_kfree_s(sk, pac, sizeof(*pac));
187 void ipv6_sock_ac_close(struct sock *sk)
189 struct ipv6_pinfo *np = inet6_sk(sk);
190 struct net_device *dev = NULL;
191 struct ipv6_ac_socklist *pac;
192 struct net *net = sock_net(sk);
195 write_lock_bh(&ipv6_sk_ac_lock);
196 pac = np->ipv6_ac_list;
197 np->ipv6_ac_list = NULL;
198 write_unlock_bh(&ipv6_sk_ac_lock);
202 struct ipv6_ac_socklist *next = pac->acl_next;
204 if (pac->acl_ifindex != prev_index) {
207 dev = dev_get_by_index(net, pac->acl_ifindex);
208 prev_index = pac->acl_ifindex;
211 ipv6_dev_ac_dec(dev, &pac->acl_addr);
212 sock_kfree_s(sk, pac, sizeof(*pac));
220 /* The function is not used, which is funny. Apparently, author
221 * supposed to use it to filter out datagrams inside udp/raw but forgot.
223 * It is OK, anycasts are not special comparing to delivery to unicasts.
226 int inet6_ac_check(struct sock *sk, struct in6_addr *addr, int ifindex)
228 struct ipv6_ac_socklist *pac;
229 struct ipv6_pinfo *np = inet6_sk(sk);
233 read_lock(&ipv6_sk_ac_lock);
234 for (pac=np->ipv6_ac_list; pac; pac=pac->acl_next) {
235 if (ifindex && pac->acl_ifindex != ifindex)
237 found = ipv6_addr_equal(&pac->acl_addr, addr);
241 read_unlock(&ipv6_sk_ac_lock);
248 static void aca_put(struct ifacaddr6 *ac)
250 if (atomic_dec_and_test(&ac->aca_refcnt)) {
251 in6_dev_put(ac->aca_idev);
252 dst_release(&ac->aca_rt->u.dst);
258 * device anycast group inc (add if not found)
260 int ipv6_dev_ac_inc(struct net_device *dev, struct in6_addr *addr)
262 struct ifacaddr6 *aca;
263 struct inet6_dev *idev;
267 idev = in6_dev_get(dev);
272 write_lock_bh(&idev->lock);
278 for (aca = idev->ac_list; aca; aca = aca->aca_next) {
279 if (ipv6_addr_equal(&aca->aca_addr, addr)) {
287 * not found: create a new one.
290 aca = kzalloc(sizeof(struct ifacaddr6), GFP_ATOMIC);
297 rt = addrconf_dst_alloc(idev, addr, 1);
304 ipv6_addr_copy(&aca->aca_addr, addr);
305 aca->aca_idev = idev;
308 /* aca_tstamp should be updated upon changes */
309 aca->aca_cstamp = aca->aca_tstamp = jiffies;
310 atomic_set(&aca->aca_refcnt, 2);
311 spin_lock_init(&aca->aca_lock);
313 aca->aca_next = idev->ac_list;
315 write_unlock_bh(&idev->lock);
317 dst_hold(&rt->u.dst);
319 dst_release(&rt->u.dst);
321 addrconf_join_solict(dev, &aca->aca_addr);
326 write_unlock_bh(&idev->lock);
332 * device anycast group decrement
334 int __ipv6_dev_ac_dec(struct inet6_dev *idev, struct in6_addr *addr)
336 struct ifacaddr6 *aca, *prev_aca;
338 write_lock_bh(&idev->lock);
340 for (aca = idev->ac_list; aca; aca = aca->aca_next) {
341 if (ipv6_addr_equal(&aca->aca_addr, addr))
346 write_unlock_bh(&idev->lock);
349 if (--aca->aca_users > 0) {
350 write_unlock_bh(&idev->lock);
354 prev_aca->aca_next = aca->aca_next;
356 idev->ac_list = aca->aca_next;
357 write_unlock_bh(&idev->lock);
358 addrconf_leave_solict(idev, &aca->aca_addr);
360 dst_hold(&aca->aca_rt->u.dst);
361 if (ip6_del_rt(aca->aca_rt))
362 dst_free(&aca->aca_rt->u.dst);
364 dst_release(&aca->aca_rt->u.dst);
370 static int ipv6_dev_ac_dec(struct net_device *dev, struct in6_addr *addr)
373 struct inet6_dev *idev = in6_dev_get(dev);
376 ret = __ipv6_dev_ac_dec(idev, addr);
382 * check if the interface has this anycast address
384 static int ipv6_chk_acast_dev(struct net_device *dev, struct in6_addr *addr)
386 struct inet6_dev *idev;
387 struct ifacaddr6 *aca;
389 idev = in6_dev_get(dev);
391 read_lock_bh(&idev->lock);
392 for (aca = idev->ac_list; aca; aca = aca->aca_next)
393 if (ipv6_addr_equal(&aca->aca_addr, addr))
395 read_unlock_bh(&idev->lock);
403 * check if given interface (or any, if dev==0) has this anycast address
405 int ipv6_chk_acast_addr(struct net *net, struct net_device *dev,
406 struct in6_addr *addr)
411 return ipv6_chk_acast_dev(dev, addr);
412 read_lock(&dev_base_lock);
413 for_each_netdev(net, dev)
414 if (ipv6_chk_acast_dev(dev, addr)) {
418 read_unlock(&dev_base_lock);
423 #ifdef CONFIG_PROC_FS
424 struct ac6_iter_state {
425 struct seq_net_private p;
426 struct net_device *dev;
427 struct inet6_dev *idev;
430 #define ac6_seq_private(seq) ((struct ac6_iter_state *)(seq)->private)
432 static inline struct ifacaddr6 *ac6_get_first(struct seq_file *seq)
434 struct ifacaddr6 *im = NULL;
435 struct ac6_iter_state *state = ac6_seq_private(seq);
436 struct net *net = seq_file_net(seq);
439 for_each_netdev(net, state->dev) {
440 struct inet6_dev *idev;
441 idev = in6_dev_get(state->dev);
444 read_lock_bh(&idev->lock);
450 read_unlock_bh(&idev->lock);
456 static struct ifacaddr6 *ac6_get_next(struct seq_file *seq, struct ifacaddr6 *im)
458 struct ac6_iter_state *state = ac6_seq_private(seq);
462 if (likely(state->idev != NULL)) {
463 read_unlock_bh(&state->idev->lock);
464 in6_dev_put(state->idev);
466 state->dev = next_net_device(state->dev);
471 state->idev = in6_dev_get(state->dev);
474 read_lock_bh(&state->idev->lock);
475 im = state->idev->ac_list;
480 static struct ifacaddr6 *ac6_get_idx(struct seq_file *seq, loff_t pos)
482 struct ifacaddr6 *im = ac6_get_first(seq);
484 while (pos && (im = ac6_get_next(seq, im)) != NULL)
486 return pos ? NULL : im;
489 static void *ac6_seq_start(struct seq_file *seq, loff_t *pos)
490 __acquires(dev_base_lock)
492 read_lock(&dev_base_lock);
493 return ac6_get_idx(seq, *pos);
496 static void *ac6_seq_next(struct seq_file *seq, void *v, loff_t *pos)
498 struct ifacaddr6 *im;
499 im = ac6_get_next(seq, v);
504 static void ac6_seq_stop(struct seq_file *seq, void *v)
505 __releases(dev_base_lock)
507 struct ac6_iter_state *state = ac6_seq_private(seq);
508 if (likely(state->idev != NULL)) {
509 read_unlock_bh(&state->idev->lock);
510 in6_dev_put(state->idev);
512 read_unlock(&dev_base_lock);
515 static int ac6_seq_show(struct seq_file *seq, void *v)
517 struct ifacaddr6 *im = (struct ifacaddr6 *)v;
518 struct ac6_iter_state *state = ac6_seq_private(seq);
521 "%-4d %-15s " NIP6_SEQFMT " %5d\n",
522 state->dev->ifindex, state->dev->name,
528 static const struct seq_operations ac6_seq_ops = {
529 .start = ac6_seq_start,
530 .next = ac6_seq_next,
531 .stop = ac6_seq_stop,
532 .show = ac6_seq_show,
535 static int ac6_seq_open(struct inode *inode, struct file *file)
537 return seq_open_net(inode, file, &ac6_seq_ops,
538 sizeof(struct ac6_iter_state));
541 static const struct file_operations ac6_seq_fops = {
542 .owner = THIS_MODULE,
543 .open = ac6_seq_open,
546 .release = seq_release_net,
549 int ac6_proc_init(struct net *net)
551 if (!proc_net_fops_create(net, "anycast6", S_IRUGO, &ac6_seq_fops))
557 void ac6_proc_exit(struct net *net)
559 proc_net_remove(net, "anycast6");
git://ftp.safe.ca / safe / jmp / linux-2.6 / blob