2 * Linux IPv6 multicast routing support for BSD pim6sd
3 * Based on net/ipv4/ipmr.c.
5 * (c) 2004 Mickael Hoerdt, <hoerdt@clarinet.u-strasbg.fr>
6 * LSIIT Laboratory, Strasbourg, France
7 * (c) 2004 Jean-Philippe Andriot, <jean-philippe.andriot@6WIND.com>
9 * Copyright (C)2007,2008 USAGI/WIDE Project
10 * YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
12 * This program is free software; you can redistribute it and/or
13 * modify it under the terms of the GNU General Public License
14 * as published by the Free Software Foundation; either version
15 * 2 of the License, or (at your option) any later version.
19 #include <asm/system.h>
20 #include <asm/uaccess.h>
21 #include <linux/types.h>
22 #include <linux/sched.h>
23 #include <linux/errno.h>
24 #include <linux/timer.h>
26 #include <linux/kernel.h>
27 #include <linux/fcntl.h>
28 #include <linux/stat.h>
29 #include <linux/socket.h>
30 #include <linux/inet.h>
31 #include <linux/netdevice.h>
32 #include <linux/inetdevice.h>
33 #include <linux/proc_fs.h>
34 #include <linux/seq_file.h>
35 #include <linux/init.h>
36 #include <net/protocol.h>
37 #include <linux/skbuff.h>
40 #include <linux/notifier.h>
41 #include <linux/if_arp.h>
42 #include <net/checksum.h>
43 #include <net/netlink.h>
46 #include <net/ip6_route.h>
47 #include <linux/mroute6.h>
48 #include <linux/pim.h>
49 #include <net/addrconf.h>
50 #include <linux/netfilter_ipv6.h>
51 #include <net/ip6_checksum.h>
53 /* Big lock, protecting vif table, mrt cache and mroute socket state.
54 Note that the changes are semaphored via rtnl_lock.
57 static DEFINE_RWLOCK(mrt_lock);
60 * Multicast router control variables
63 #define MIF_EXISTS(_net, _idx) ((_net)->ipv6.vif6_table[_idx].dev != NULL)
65 static struct mfc6_cache *mfc_unres_queue; /* Queue of unresolved entries */
67 /* Special spinlock for queue of unresolved entries */
68 static DEFINE_SPINLOCK(mfc_unres_lock);
70 /* We return to original Alan's scheme. Hash table of resolved
71 entries is changed only in process context and protected
72 with weak lock mrt_lock. Queue of unresolved entries is protected
73 with strong spinlock mfc_unres_lock.
75 In this case data path is free of exclusive locks at all.
78 static struct kmem_cache *mrt_cachep __read_mostly;
80 static int ip6_mr_forward(struct sk_buff *skb, struct mfc6_cache *cache);
81 static int ip6mr_cache_report(struct net *net, struct sk_buff *pkt,
82 mifi_t mifi, int assert);
83 static int ip6mr_fill_mroute(struct sk_buff *skb, struct mfc6_cache *c, struct rtmsg *rtm);
84 static void mroute_clean_tables(struct net *net);
86 #ifdef CONFIG_IPV6_PIMSM_V2
87 static struct inet6_protocol pim6_protocol;
90 static struct timer_list ipmr_expire_timer;
95 struct ipmr_mfc_iter {
96 struct seq_net_private p;
97 struct mfc6_cache **cache;
102 static struct mfc6_cache *ipmr_mfc_seq_idx(struct net *net,
103 struct ipmr_mfc_iter *it, loff_t pos)
105 struct mfc6_cache *mfc;
107 it->cache = net->ipv6.mfc6_cache_array;
108 read_lock(&mrt_lock);
109 for (it->ct = 0; it->ct < MFC6_LINES; it->ct++)
110 for (mfc = net->ipv6.mfc6_cache_array[it->ct];
111 mfc; mfc = mfc->next)
114 read_unlock(&mrt_lock);
116 it->cache = &mfc_unres_queue;
117 spin_lock_bh(&mfc_unres_lock);
118 for (mfc = mfc_unres_queue; mfc; mfc = mfc->next)
119 if (net_eq(mfc6_net(mfc), net) &&
122 spin_unlock_bh(&mfc_unres_lock);
132 * The /proc interfaces to multicast routing /proc/ip6_mr_cache /proc/ip6_mr_vif
135 struct ipmr_vif_iter {
136 struct seq_net_private p;
140 static struct mif_device *ip6mr_vif_seq_idx(struct net *net,
141 struct ipmr_vif_iter *iter,
144 for (iter->ct = 0; iter->ct < net->ipv6.maxvif; ++iter->ct) {
145 if (!MIF_EXISTS(net, iter->ct))
148 return &net->ipv6.vif6_table[iter->ct];
153 static void *ip6mr_vif_seq_start(struct seq_file *seq, loff_t *pos)
156 struct net *net = seq_file_net(seq);
158 read_lock(&mrt_lock);
159 return *pos ? ip6mr_vif_seq_idx(net, seq->private, *pos - 1)
163 static void *ip6mr_vif_seq_next(struct seq_file *seq, void *v, loff_t *pos)
165 struct ipmr_vif_iter *iter = seq->private;
166 struct net *net = seq_file_net(seq);
169 if (v == SEQ_START_TOKEN)
170 return ip6mr_vif_seq_idx(net, iter, 0);
172 while (++iter->ct < net->ipv6.maxvif) {
173 if (!MIF_EXISTS(net, iter->ct))
175 return &net->ipv6.vif6_table[iter->ct];
180 static void ip6mr_vif_seq_stop(struct seq_file *seq, void *v)
183 read_unlock(&mrt_lock);
186 static int ip6mr_vif_seq_show(struct seq_file *seq, void *v)
188 struct net *net = seq_file_net(seq);
190 if (v == SEQ_START_TOKEN) {
192 "Interface BytesIn PktsIn BytesOut PktsOut Flags\n");
194 const struct mif_device *vif = v;
195 const char *name = vif->dev ? vif->dev->name : "none";
198 "%2td %-10s %8ld %7ld %8ld %7ld %05X\n",
199 vif - net->ipv6.vif6_table,
200 name, vif->bytes_in, vif->pkt_in,
201 vif->bytes_out, vif->pkt_out,
207 static const struct seq_operations ip6mr_vif_seq_ops = {
208 .start = ip6mr_vif_seq_start,
209 .next = ip6mr_vif_seq_next,
210 .stop = ip6mr_vif_seq_stop,
211 .show = ip6mr_vif_seq_show,
214 static int ip6mr_vif_open(struct inode *inode, struct file *file)
216 return seq_open_net(inode, file, &ip6mr_vif_seq_ops,
217 sizeof(struct ipmr_vif_iter));
220 static const struct file_operations ip6mr_vif_fops = {
221 .owner = THIS_MODULE,
222 .open = ip6mr_vif_open,
225 .release = seq_release_net,
228 static void *ipmr_mfc_seq_start(struct seq_file *seq, loff_t *pos)
230 struct net *net = seq_file_net(seq);
232 return *pos ? ipmr_mfc_seq_idx(net, seq->private, *pos - 1)
236 static void *ipmr_mfc_seq_next(struct seq_file *seq, void *v, loff_t *pos)
238 struct mfc6_cache *mfc = v;
239 struct ipmr_mfc_iter *it = seq->private;
240 struct net *net = seq_file_net(seq);
244 if (v == SEQ_START_TOKEN)
245 return ipmr_mfc_seq_idx(net, seq->private, 0);
250 if (it->cache == &mfc_unres_queue)
253 BUG_ON(it->cache != net->ipv6.mfc6_cache_array);
255 while (++it->ct < MFC6_LINES) {
256 mfc = net->ipv6.mfc6_cache_array[it->ct];
261 /* exhausted cache_array, show unresolved */
262 read_unlock(&mrt_lock);
263 it->cache = &mfc_unres_queue;
266 spin_lock_bh(&mfc_unres_lock);
267 mfc = mfc_unres_queue;
272 spin_unlock_bh(&mfc_unres_lock);
278 static void ipmr_mfc_seq_stop(struct seq_file *seq, void *v)
280 struct ipmr_mfc_iter *it = seq->private;
281 struct net *net = seq_file_net(seq);
283 if (it->cache == &mfc_unres_queue)
284 spin_unlock_bh(&mfc_unres_lock);
285 else if (it->cache == net->ipv6.mfc6_cache_array)
286 read_unlock(&mrt_lock);
289 static int ipmr_mfc_seq_show(struct seq_file *seq, void *v)
292 struct net *net = seq_file_net(seq);
294 if (v == SEQ_START_TOKEN) {
298 "Iif Pkts Bytes Wrong Oifs\n");
300 const struct mfc6_cache *mfc = v;
301 const struct ipmr_mfc_iter *it = seq->private;
303 seq_printf(seq, "%pI6 %pI6 %-3hd",
304 &mfc->mf6c_mcastgrp, &mfc->mf6c_origin,
307 if (it->cache != &mfc_unres_queue) {
308 seq_printf(seq, " %8lu %8lu %8lu",
310 mfc->mfc_un.res.bytes,
311 mfc->mfc_un.res.wrong_if);
312 for (n = mfc->mfc_un.res.minvif;
313 n < mfc->mfc_un.res.maxvif; n++) {
314 if (MIF_EXISTS(net, n) &&
315 mfc->mfc_un.res.ttls[n] < 255)
318 n, mfc->mfc_un.res.ttls[n]);
321 /* unresolved mfc_caches don't contain
322 * pkt, bytes and wrong_if values
324 seq_printf(seq, " %8lu %8lu %8lu", 0ul, 0ul, 0ul);
331 static struct seq_operations ipmr_mfc_seq_ops = {
332 .start = ipmr_mfc_seq_start,
333 .next = ipmr_mfc_seq_next,
334 .stop = ipmr_mfc_seq_stop,
335 .show = ipmr_mfc_seq_show,
338 static int ipmr_mfc_open(struct inode *inode, struct file *file)
340 return seq_open_net(inode, file, &ipmr_mfc_seq_ops,
341 sizeof(struct ipmr_mfc_iter));
344 static const struct file_operations ip6mr_mfc_fops = {
345 .owner = THIS_MODULE,
346 .open = ipmr_mfc_open,
349 .release = seq_release_net,
353 #ifdef CONFIG_IPV6_PIMSM_V2
355 static int pim6_rcv(struct sk_buff *skb)
357 struct pimreghdr *pim;
358 struct ipv6hdr *encap;
359 struct net_device *reg_dev = NULL;
360 struct net *net = dev_net(skb->dev);
361 int reg_vif_num = net->ipv6.mroute_reg_vif_num;
363 if (!pskb_may_pull(skb, sizeof(*pim) + sizeof(*encap)))
366 pim = (struct pimreghdr *)skb_transport_header(skb);
367 if (pim->type != ((PIM_VERSION << 4) | PIM_REGISTER) ||
368 (pim->flags & PIM_NULL_REGISTER) ||
369 (csum_ipv6_magic(&ipv6_hdr(skb)->saddr, &ipv6_hdr(skb)->daddr,
370 sizeof(*pim), IPPROTO_PIM,
371 csum_partial((void *)pim, sizeof(*pim), 0)) &&
372 csum_fold(skb_checksum(skb, 0, skb->len, 0))))
375 /* check if the inner packet is destined to mcast group */
376 encap = (struct ipv6hdr *)(skb_transport_header(skb) +
379 if (!ipv6_addr_is_multicast(&encap->daddr) ||
380 encap->payload_len == 0 ||
381 ntohs(encap->payload_len) + sizeof(*pim) > skb->len)
384 read_lock(&mrt_lock);
385 if (reg_vif_num >= 0)
386 reg_dev = net->ipv6.vif6_table[reg_vif_num].dev;
389 read_unlock(&mrt_lock);
394 skb->mac_header = skb->network_header;
395 skb_pull(skb, (u8 *)encap - skb->data);
396 skb_reset_network_header(skb);
398 skb->protocol = htons(ETH_P_IPV6);
400 skb->pkt_type = PACKET_HOST;
402 reg_dev->stats.rx_bytes += skb->len;
403 reg_dev->stats.rx_packets++;
413 static struct inet6_protocol pim6_protocol = {
417 /* Service routines creating virtual interfaces: PIMREG */
419 static netdev_tx_t reg_vif_xmit(struct sk_buff *skb,
420 struct net_device *dev)
422 struct net *net = dev_net(dev);
424 read_lock(&mrt_lock);
425 dev->stats.tx_bytes += skb->len;
426 dev->stats.tx_packets++;
427 ip6mr_cache_report(net, skb, net->ipv6.mroute_reg_vif_num,
429 read_unlock(&mrt_lock);
434 static const struct net_device_ops reg_vif_netdev_ops = {
435 .ndo_start_xmit = reg_vif_xmit,
438 static void reg_vif_setup(struct net_device *dev)
440 dev->type = ARPHRD_PIMREG;
441 dev->mtu = 1500 - sizeof(struct ipv6hdr) - 8;
442 dev->flags = IFF_NOARP;
443 dev->netdev_ops = ®_vif_netdev_ops;
444 dev->destructor = free_netdev;
445 dev->features |= NETIF_F_NETNS_LOCAL;
448 static struct net_device *ip6mr_reg_vif(struct net *net)
450 struct net_device *dev;
452 dev = alloc_netdev(0, "pim6reg", reg_vif_setup);
456 dev_net_set(dev, net);
458 if (register_netdevice(dev)) {
471 /* allow the register to be completed before unregistering. */
475 unregister_netdevice(dev);
484 static int mif6_delete(struct net *net, int vifi)
486 struct mif_device *v;
487 struct net_device *dev;
488 struct inet6_dev *in6_dev;
489 if (vifi < 0 || vifi >= net->ipv6.maxvif)
490 return -EADDRNOTAVAIL;
492 v = &net->ipv6.vif6_table[vifi];
494 write_lock_bh(&mrt_lock);
499 write_unlock_bh(&mrt_lock);
500 return -EADDRNOTAVAIL;
503 #ifdef CONFIG_IPV6_PIMSM_V2
504 if (vifi == net->ipv6.mroute_reg_vif_num)
505 net->ipv6.mroute_reg_vif_num = -1;
508 if (vifi + 1 == net->ipv6.maxvif) {
510 for (tmp = vifi - 1; tmp >= 0; tmp--) {
511 if (MIF_EXISTS(net, tmp))
514 net->ipv6.maxvif = tmp + 1;
517 write_unlock_bh(&mrt_lock);
519 dev_set_allmulti(dev, -1);
521 in6_dev = __in6_dev_get(dev);
523 in6_dev->cnf.mc_forwarding--;
525 if (v->flags & MIFF_REGISTER)
526 unregister_netdevice(dev);
532 static inline void ip6mr_cache_free(struct mfc6_cache *c)
534 release_net(mfc6_net(c));
535 kmem_cache_free(mrt_cachep, c);
538 /* Destroy an unresolved cache entry, killing queued skbs
539 and reporting error to netlink readers.
542 static void ip6mr_destroy_unres(struct mfc6_cache *c)
545 struct net *net = mfc6_net(c);
547 atomic_dec(&net->ipv6.cache_resolve_queue_len);
549 while((skb = skb_dequeue(&c->mfc_un.unres.unresolved)) != NULL) {
550 if (ipv6_hdr(skb)->version == 0) {
551 struct nlmsghdr *nlh = (struct nlmsghdr *)skb_pull(skb, sizeof(struct ipv6hdr));
552 nlh->nlmsg_type = NLMSG_ERROR;
553 nlh->nlmsg_len = NLMSG_LENGTH(sizeof(struct nlmsgerr));
554 skb_trim(skb, nlh->nlmsg_len);
555 ((struct nlmsgerr *)NLMSG_DATA(nlh))->error = -ETIMEDOUT;
556 rtnl_unicast(skb, net, NETLINK_CB(skb).pid);
565 /* Single timer process for all the unresolved queue. */
567 static void ipmr_do_expire_process(unsigned long dummy)
569 unsigned long now = jiffies;
570 unsigned long expires = 10 * HZ;
571 struct mfc6_cache *c, **cp;
573 cp = &mfc_unres_queue;
575 while ((c = *cp) != NULL) {
576 if (time_after(c->mfc_un.unres.expires, now)) {
578 unsigned long interval = c->mfc_un.unres.expires - now;
579 if (interval < expires)
586 ip6mr_destroy_unres(c);
589 if (mfc_unres_queue != NULL)
590 mod_timer(&ipmr_expire_timer, jiffies + expires);
593 static void ipmr_expire_process(unsigned long dummy)
595 if (!spin_trylock(&mfc_unres_lock)) {
596 mod_timer(&ipmr_expire_timer, jiffies + 1);
600 if (mfc_unres_queue != NULL)
601 ipmr_do_expire_process(dummy);
603 spin_unlock(&mfc_unres_lock);
606 /* Fill oifs list. It is called under write locked mrt_lock. */
608 static void ip6mr_update_thresholds(struct mfc6_cache *cache, unsigned char *ttls)
611 struct net *net = mfc6_net(cache);
613 cache->mfc_un.res.minvif = MAXMIFS;
614 cache->mfc_un.res.maxvif = 0;
615 memset(cache->mfc_un.res.ttls, 255, MAXMIFS);
617 for (vifi = 0; vifi < net->ipv6.maxvif; vifi++) {
618 if (MIF_EXISTS(net, vifi) &&
619 ttls[vifi] && ttls[vifi] < 255) {
620 cache->mfc_un.res.ttls[vifi] = ttls[vifi];
621 if (cache->mfc_un.res.minvif > vifi)
622 cache->mfc_un.res.minvif = vifi;
623 if (cache->mfc_un.res.maxvif <= vifi)
624 cache->mfc_un.res.maxvif = vifi + 1;
629 static int mif6_add(struct net *net, struct mif6ctl *vifc, int mrtsock)
631 int vifi = vifc->mif6c_mifi;
632 struct mif_device *v = &net->ipv6.vif6_table[vifi];
633 struct net_device *dev;
634 struct inet6_dev *in6_dev;
638 if (MIF_EXISTS(net, vifi))
641 switch (vifc->mif6c_flags) {
642 #ifdef CONFIG_IPV6_PIMSM_V2
645 * Special Purpose VIF in PIM
646 * All the packets will be sent to the daemon
648 if (net->ipv6.mroute_reg_vif_num >= 0)
650 dev = ip6mr_reg_vif(net);
653 err = dev_set_allmulti(dev, 1);
655 unregister_netdevice(dev);
662 dev = dev_get_by_index(net, vifc->mif6c_pifi);
664 return -EADDRNOTAVAIL;
665 err = dev_set_allmulti(dev, 1);
675 in6_dev = __in6_dev_get(dev);
677 in6_dev->cnf.mc_forwarding++;
680 * Fill in the VIF structures
682 v->rate_limit = vifc->vifc_rate_limit;
683 v->flags = vifc->mif6c_flags;
685 v->flags |= VIFF_STATIC;
686 v->threshold = vifc->vifc_threshold;
691 v->link = dev->ifindex;
692 if (v->flags & MIFF_REGISTER)
693 v->link = dev->iflink;
695 /* And finish update writing critical data */
696 write_lock_bh(&mrt_lock);
698 #ifdef CONFIG_IPV6_PIMSM_V2
699 if (v->flags & MIFF_REGISTER)
700 net->ipv6.mroute_reg_vif_num = vifi;
702 if (vifi + 1 > net->ipv6.maxvif)
703 net->ipv6.maxvif = vifi + 1;
704 write_unlock_bh(&mrt_lock);
708 static struct mfc6_cache *ip6mr_cache_find(struct net *net,
709 struct in6_addr *origin,
710 struct in6_addr *mcastgrp)
712 int line = MFC6_HASH(mcastgrp, origin);
713 struct mfc6_cache *c;
715 for (c = net->ipv6.mfc6_cache_array[line]; c; c = c->next) {
716 if (ipv6_addr_equal(&c->mf6c_origin, origin) &&
717 ipv6_addr_equal(&c->mf6c_mcastgrp, mcastgrp))
724 * Allocate a multicast cache entry
726 static struct mfc6_cache *ip6mr_cache_alloc(struct net *net)
728 struct mfc6_cache *c = kmem_cache_zalloc(mrt_cachep, GFP_KERNEL);
731 c->mfc_un.res.minvif = MAXMIFS;
732 mfc6_net_set(c, net);
736 static struct mfc6_cache *ip6mr_cache_alloc_unres(struct net *net)
738 struct mfc6_cache *c = kmem_cache_zalloc(mrt_cachep, GFP_ATOMIC);
741 skb_queue_head_init(&c->mfc_un.unres.unresolved);
742 c->mfc_un.unres.expires = jiffies + 10 * HZ;
743 mfc6_net_set(c, net);
748 * A cache entry has gone into a resolved state from queued
751 static void ip6mr_cache_resolve(struct mfc6_cache *uc, struct mfc6_cache *c)
756 * Play the pending entries through our router
759 while((skb = __skb_dequeue(&uc->mfc_un.unres.unresolved))) {
760 if (ipv6_hdr(skb)->version == 0) {
762 struct nlmsghdr *nlh = (struct nlmsghdr *)skb_pull(skb, sizeof(struct ipv6hdr));
764 if (ip6mr_fill_mroute(skb, c, NLMSG_DATA(nlh)) > 0) {
765 nlh->nlmsg_len = skb_tail_pointer(skb) - (u8 *)nlh;
767 nlh->nlmsg_type = NLMSG_ERROR;
768 nlh->nlmsg_len = NLMSG_LENGTH(sizeof(struct nlmsgerr));
769 skb_trim(skb, nlh->nlmsg_len);
770 ((struct nlmsgerr *)NLMSG_DATA(nlh))->error = -EMSGSIZE;
772 err = rtnl_unicast(skb, mfc6_net(uc), NETLINK_CB(skb).pid);
774 ip6_mr_forward(skb, c);
779 * Bounce a cache query up to pim6sd. We could use netlink for this but pim6sd
780 * expects the following bizarre scheme.
782 * Called under mrt_lock.
785 static int ip6mr_cache_report(struct net *net, struct sk_buff *pkt, mifi_t mifi,
792 #ifdef CONFIG_IPV6_PIMSM_V2
793 if (assert == MRT6MSG_WHOLEPKT)
794 skb = skb_realloc_headroom(pkt, -skb_network_offset(pkt)
798 skb = alloc_skb(sizeof(struct ipv6hdr) + sizeof(*msg), GFP_ATOMIC);
803 /* I suppose that internal messages
804 * do not require checksums */
806 skb->ip_summed = CHECKSUM_UNNECESSARY;
808 #ifdef CONFIG_IPV6_PIMSM_V2
809 if (assert == MRT6MSG_WHOLEPKT) {
810 /* Ugly, but we have no choice with this interface.
811 Duplicate old header, fix length etc.
812 And all this only to mangle msg->im6_msgtype and
813 to set msg->im6_mbz to "mbz" :-)
815 skb_push(skb, -skb_network_offset(pkt));
817 skb_push(skb, sizeof(*msg));
818 skb_reset_transport_header(skb);
819 msg = (struct mrt6msg *)skb_transport_header(skb);
821 msg->im6_msgtype = MRT6MSG_WHOLEPKT;
822 msg->im6_mif = net->ipv6.mroute_reg_vif_num;
824 ipv6_addr_copy(&msg->im6_src, &ipv6_hdr(pkt)->saddr);
825 ipv6_addr_copy(&msg->im6_dst, &ipv6_hdr(pkt)->daddr);
827 skb->ip_summed = CHECKSUM_UNNECESSARY;
835 skb_put(skb, sizeof(struct ipv6hdr));
836 skb_reset_network_header(skb);
837 skb_copy_to_linear_data(skb, ipv6_hdr(pkt), sizeof(struct ipv6hdr));
842 skb_put(skb, sizeof(*msg));
843 skb_reset_transport_header(skb);
844 msg = (struct mrt6msg *)skb_transport_header(skb);
847 msg->im6_msgtype = assert;
850 ipv6_addr_copy(&msg->im6_src, &ipv6_hdr(pkt)->saddr);
851 ipv6_addr_copy(&msg->im6_dst, &ipv6_hdr(pkt)->daddr);
853 skb_dst_set(skb, dst_clone(skb_dst(pkt)));
854 skb->ip_summed = CHECKSUM_UNNECESSARY;
857 if (net->ipv6.mroute6_sk == NULL) {
863 * Deliver to user space multicast routing algorithms
865 ret = sock_queue_rcv_skb(net->ipv6.mroute6_sk, skb);
868 printk(KERN_WARNING "mroute6: pending queue full, dropping entries.\n");
876 * Queue a packet for resolution. It gets locked cache entry!
880 ip6mr_cache_unresolved(struct net *net, mifi_t mifi, struct sk_buff *skb)
883 struct mfc6_cache *c;
885 spin_lock_bh(&mfc_unres_lock);
886 for (c = mfc_unres_queue; c; c = c->next) {
887 if (net_eq(mfc6_net(c), net) &&
888 ipv6_addr_equal(&c->mf6c_mcastgrp, &ipv6_hdr(skb)->daddr) &&
889 ipv6_addr_equal(&c->mf6c_origin, &ipv6_hdr(skb)->saddr))
895 * Create a new entry if allowable
898 if (atomic_read(&net->ipv6.cache_resolve_queue_len) >= 10 ||
899 (c = ip6mr_cache_alloc_unres(net)) == NULL) {
900 spin_unlock_bh(&mfc_unres_lock);
907 * Fill in the new cache entry
910 c->mf6c_origin = ipv6_hdr(skb)->saddr;
911 c->mf6c_mcastgrp = ipv6_hdr(skb)->daddr;
914 * Reflect first query at pim6sd
916 err = ip6mr_cache_report(net, skb, mifi, MRT6MSG_NOCACHE);
918 /* If the report failed throw the cache entry
921 spin_unlock_bh(&mfc_unres_lock);
928 atomic_inc(&net->ipv6.cache_resolve_queue_len);
929 c->next = mfc_unres_queue;
932 ipmr_do_expire_process(1);
936 * See if we can append the packet
938 if (c->mfc_un.unres.unresolved.qlen > 3) {
942 skb_queue_tail(&c->mfc_un.unres.unresolved, skb);
946 spin_unlock_bh(&mfc_unres_lock);
951 * MFC6 cache manipulation by user space
954 static int ip6mr_mfc_delete(struct net *net, struct mf6cctl *mfc)
957 struct mfc6_cache *c, **cp;
959 line = MFC6_HASH(&mfc->mf6cc_mcastgrp.sin6_addr, &mfc->mf6cc_origin.sin6_addr);
961 for (cp = &net->ipv6.mfc6_cache_array[line];
962 (c = *cp) != NULL; cp = &c->next) {
963 if (ipv6_addr_equal(&c->mf6c_origin, &mfc->mf6cc_origin.sin6_addr) &&
964 ipv6_addr_equal(&c->mf6c_mcastgrp, &mfc->mf6cc_mcastgrp.sin6_addr)) {
965 write_lock_bh(&mrt_lock);
967 write_unlock_bh(&mrt_lock);
976 static int ip6mr_device_event(struct notifier_block *this,
977 unsigned long event, void *ptr)
979 struct net_device *dev = ptr;
980 struct net *net = dev_net(dev);
981 struct mif_device *v;
984 if (event != NETDEV_UNREGISTER)
987 v = &net->ipv6.vif6_table[0];
988 for (ct = 0; ct < net->ipv6.maxvif; ct++, v++) {
990 mif6_delete(net, ct);
995 static struct notifier_block ip6_mr_notifier = {
996 .notifier_call = ip6mr_device_event
1000 * Setup for IP multicast routing
1003 static int __net_init ip6mr_net_init(struct net *net)
1006 net->ipv6.vif6_table = kcalloc(MAXMIFS, sizeof(struct mif_device),
1008 if (!net->ipv6.vif6_table) {
1013 /* Forwarding cache */
1014 net->ipv6.mfc6_cache_array = kcalloc(MFC6_LINES,
1015 sizeof(struct mfc6_cache *),
1017 if (!net->ipv6.mfc6_cache_array) {
1019 goto fail_mfc6_cache;
1022 #ifdef CONFIG_IPV6_PIMSM_V2
1023 net->ipv6.mroute_reg_vif_num = -1;
1026 #ifdef CONFIG_PROC_FS
1028 if (!proc_net_fops_create(net, "ip6_mr_vif", 0, &ip6mr_vif_fops))
1030 if (!proc_net_fops_create(net, "ip6_mr_cache", 0, &ip6mr_mfc_fops))
1031 goto proc_cache_fail;
1035 #ifdef CONFIG_PROC_FS
1037 proc_net_remove(net, "ip6_mr_vif");
1039 kfree(net->ipv6.mfc6_cache_array);
1042 kfree(net->ipv6.vif6_table);
1047 static void __net_exit ip6mr_net_exit(struct net *net)
1049 #ifdef CONFIG_PROC_FS
1050 proc_net_remove(net, "ip6_mr_cache");
1051 proc_net_remove(net, "ip6_mr_vif");
1053 mroute_clean_tables(net);
1054 kfree(net->ipv6.mfc6_cache_array);
1055 kfree(net->ipv6.vif6_table);
1058 static struct pernet_operations ip6mr_net_ops = {
1059 .init = ip6mr_net_init,
1060 .exit = ip6mr_net_exit,
1063 int __init ip6_mr_init(void)
1067 mrt_cachep = kmem_cache_create("ip6_mrt_cache",
1068 sizeof(struct mfc6_cache),
1069 0, SLAB_HWCACHE_ALIGN,
1074 err = register_pernet_subsys(&ip6mr_net_ops);
1076 goto reg_pernet_fail;
1078 setup_timer(&ipmr_expire_timer, ipmr_expire_process, 0);
1079 err = register_netdevice_notifier(&ip6_mr_notifier);
1081 goto reg_notif_fail;
1082 #ifdef CONFIG_IPV6_PIMSM_V2
1083 if (inet6_add_protocol(&pim6_protocol, IPPROTO_PIM) < 0) {
1084 printk(KERN_ERR "ip6_mr_init: can't add PIM protocol\n");
1086 goto add_proto_fail;
1090 #ifdef CONFIG_IPV6_PIMSM_V2
1092 unregister_netdevice_notifier(&ip6_mr_notifier);
1095 del_timer(&ipmr_expire_timer);
1096 unregister_pernet_subsys(&ip6mr_net_ops);
1098 kmem_cache_destroy(mrt_cachep);
1102 void ip6_mr_cleanup(void)
1104 unregister_netdevice_notifier(&ip6_mr_notifier);
1105 del_timer(&ipmr_expire_timer);
1106 unregister_pernet_subsys(&ip6mr_net_ops);
1107 kmem_cache_destroy(mrt_cachep);
1110 static int ip6mr_mfc_add(struct net *net, struct mf6cctl *mfc, int mrtsock)
1113 struct mfc6_cache *uc, *c, **cp;
1114 unsigned char ttls[MAXMIFS];
1117 memset(ttls, 255, MAXMIFS);
1118 for (i = 0; i < MAXMIFS; i++) {
1119 if (IF_ISSET(i, &mfc->mf6cc_ifset))
1124 line = MFC6_HASH(&mfc->mf6cc_mcastgrp.sin6_addr, &mfc->mf6cc_origin.sin6_addr);
1126 for (cp = &net->ipv6.mfc6_cache_array[line];
1127 (c = *cp) != NULL; cp = &c->next) {
1128 if (ipv6_addr_equal(&c->mf6c_origin, &mfc->mf6cc_origin.sin6_addr) &&
1129 ipv6_addr_equal(&c->mf6c_mcastgrp, &mfc->mf6cc_mcastgrp.sin6_addr))
1134 write_lock_bh(&mrt_lock);
1135 c->mf6c_parent = mfc->mf6cc_parent;
1136 ip6mr_update_thresholds(c, ttls);
1138 c->mfc_flags |= MFC_STATIC;
1139 write_unlock_bh(&mrt_lock);
1143 if (!ipv6_addr_is_multicast(&mfc->mf6cc_mcastgrp.sin6_addr))
1146 c = ip6mr_cache_alloc(net);
1150 c->mf6c_origin = mfc->mf6cc_origin.sin6_addr;
1151 c->mf6c_mcastgrp = mfc->mf6cc_mcastgrp.sin6_addr;
1152 c->mf6c_parent = mfc->mf6cc_parent;
1153 ip6mr_update_thresholds(c, ttls);
1155 c->mfc_flags |= MFC_STATIC;
1157 write_lock_bh(&mrt_lock);
1158 c->next = net->ipv6.mfc6_cache_array[line];
1159 net->ipv6.mfc6_cache_array[line] = c;
1160 write_unlock_bh(&mrt_lock);
1163 * Check to see if we resolved a queued list. If so we
1164 * need to send on the frames and tidy up.
1166 spin_lock_bh(&mfc_unres_lock);
1167 for (cp = &mfc_unres_queue; (uc = *cp) != NULL;
1169 if (net_eq(mfc6_net(uc), net) &&
1170 ipv6_addr_equal(&uc->mf6c_origin, &c->mf6c_origin) &&
1171 ipv6_addr_equal(&uc->mf6c_mcastgrp, &c->mf6c_mcastgrp)) {
1173 atomic_dec(&net->ipv6.cache_resolve_queue_len);
1177 if (mfc_unres_queue == NULL)
1178 del_timer(&ipmr_expire_timer);
1179 spin_unlock_bh(&mfc_unres_lock);
1182 ip6mr_cache_resolve(uc, c);
1183 ip6mr_cache_free(uc);
1189 * Close the multicast socket, and clear the vif tables etc
1192 static void mroute_clean_tables(struct net *net)
1197 * Shut down all active vif entries
1199 for (i = 0; i < net->ipv6.maxvif; i++) {
1200 if (!(net->ipv6.vif6_table[i].flags & VIFF_STATIC))
1201 mif6_delete(net, i);
1207 for (i = 0; i < MFC6_LINES; i++) {
1208 struct mfc6_cache *c, **cp;
1210 cp = &net->ipv6.mfc6_cache_array[i];
1211 while ((c = *cp) != NULL) {
1212 if (c->mfc_flags & MFC_STATIC) {
1216 write_lock_bh(&mrt_lock);
1218 write_unlock_bh(&mrt_lock);
1220 ip6mr_cache_free(c);
1224 if (atomic_read(&net->ipv6.cache_resolve_queue_len) != 0) {
1225 struct mfc6_cache *c, **cp;
1227 spin_lock_bh(&mfc_unres_lock);
1228 cp = &mfc_unres_queue;
1229 while ((c = *cp) != NULL) {
1230 if (!net_eq(mfc6_net(c), net)) {
1235 ip6mr_destroy_unres(c);
1237 spin_unlock_bh(&mfc_unres_lock);
1241 static int ip6mr_sk_init(struct sock *sk)
1244 struct net *net = sock_net(sk);
1247 write_lock_bh(&mrt_lock);
1248 if (likely(net->ipv6.mroute6_sk == NULL)) {
1249 net->ipv6.mroute6_sk = sk;
1250 net->ipv6.devconf_all->mc_forwarding++;
1254 write_unlock_bh(&mrt_lock);
1261 int ip6mr_sk_done(struct sock *sk)
1264 struct net *net = sock_net(sk);
1267 if (sk == net->ipv6.mroute6_sk) {
1268 write_lock_bh(&mrt_lock);
1269 net->ipv6.mroute6_sk = NULL;
1270 net->ipv6.devconf_all->mc_forwarding--;
1271 write_unlock_bh(&mrt_lock);
1273 mroute_clean_tables(net);
1282 * Socket options and virtual interface manipulation. The whole
1283 * virtual interface system is a complete heap, but unfortunately
1284 * that's how BSD mrouted happens to think. Maybe one day with a proper
1285 * MOSPF/PIM router set up we can clean this up.
1288 int ip6_mroute_setsockopt(struct sock *sk, int optname, char __user *optval, int optlen)
1294 struct net *net = sock_net(sk);
1296 if (optname != MRT6_INIT) {
1297 if (sk != net->ipv6.mroute6_sk && !capable(CAP_NET_ADMIN))
1303 if (sk->sk_type != SOCK_RAW ||
1304 inet_sk(sk)->num != IPPROTO_ICMPV6)
1306 if (optlen < sizeof(int))
1309 return ip6mr_sk_init(sk);
1312 return ip6mr_sk_done(sk);
1315 if (optlen < sizeof(vif))
1317 if (copy_from_user(&vif, optval, sizeof(vif)))
1319 if (vif.mif6c_mifi >= MAXMIFS)
1322 ret = mif6_add(net, &vif, sk == net->ipv6.mroute6_sk);
1327 if (optlen < sizeof(mifi_t))
1329 if (copy_from_user(&mifi, optval, sizeof(mifi_t)))
1332 ret = mif6_delete(net, mifi);
1337 * Manipulate the forwarding caches. These live
1338 * in a sort of kernel/user symbiosis.
1342 if (optlen < sizeof(mfc))
1344 if (copy_from_user(&mfc, optval, sizeof(mfc)))
1347 if (optname == MRT6_DEL_MFC)
1348 ret = ip6mr_mfc_delete(net, &mfc);
1350 ret = ip6mr_mfc_add(net, &mfc,
1351 sk == net->ipv6.mroute6_sk);
1356 * Control PIM assert (to activate pim will activate assert)
1361 if (get_user(v, (int __user *)optval))
1363 net->ipv6.mroute_do_assert = !!v;
1367 #ifdef CONFIG_IPV6_PIMSM_V2
1371 if (get_user(v, (int __user *)optval))
1376 if (v != net->ipv6.mroute_do_pim) {
1377 net->ipv6.mroute_do_pim = v;
1378 net->ipv6.mroute_do_assert = v;
1386 * Spurious command, or MRT6_VERSION which you cannot
1390 return -ENOPROTOOPT;
1395 * Getsock opt support for the multicast routing system.
1398 int ip6_mroute_getsockopt(struct sock *sk, int optname, char __user *optval,
1403 struct net *net = sock_net(sk);
1409 #ifdef CONFIG_IPV6_PIMSM_V2
1411 val = net->ipv6.mroute_do_pim;
1415 val = net->ipv6.mroute_do_assert;
1418 return -ENOPROTOOPT;
1421 if (get_user(olr, optlen))
1424 olr = min_t(int, olr, sizeof(int));
1428 if (put_user(olr, optlen))
1430 if (copy_to_user(optval, &val, olr))
1436 * The IP multicast ioctl support routines.
1439 int ip6mr_ioctl(struct sock *sk, int cmd, void __user *arg)
1441 struct sioc_sg_req6 sr;
1442 struct sioc_mif_req6 vr;
1443 struct mif_device *vif;
1444 struct mfc6_cache *c;
1445 struct net *net = sock_net(sk);
1448 case SIOCGETMIFCNT_IN6:
1449 if (copy_from_user(&vr, arg, sizeof(vr)))
1451 if (vr.mifi >= net->ipv6.maxvif)
1453 read_lock(&mrt_lock);
1454 vif = &net->ipv6.vif6_table[vr.mifi];
1455 if (MIF_EXISTS(net, vr.mifi)) {
1456 vr.icount = vif->pkt_in;
1457 vr.ocount = vif->pkt_out;
1458 vr.ibytes = vif->bytes_in;
1459 vr.obytes = vif->bytes_out;
1460 read_unlock(&mrt_lock);
1462 if (copy_to_user(arg, &vr, sizeof(vr)))
1466 read_unlock(&mrt_lock);
1467 return -EADDRNOTAVAIL;
1468 case SIOCGETSGCNT_IN6:
1469 if (copy_from_user(&sr, arg, sizeof(sr)))
1472 read_lock(&mrt_lock);
1473 c = ip6mr_cache_find(net, &sr.src.sin6_addr, &sr.grp.sin6_addr);
1475 sr.pktcnt = c->mfc_un.res.pkt;
1476 sr.bytecnt = c->mfc_un.res.bytes;
1477 sr.wrong_if = c->mfc_un.res.wrong_if;
1478 read_unlock(&mrt_lock);
1480 if (copy_to_user(arg, &sr, sizeof(sr)))
1484 read_unlock(&mrt_lock);
1485 return -EADDRNOTAVAIL;
1487 return -ENOIOCTLCMD;
1492 static inline int ip6mr_forward2_finish(struct sk_buff *skb)
1494 IP6_INC_STATS_BH(dev_net(skb_dst(skb)->dev), ip6_dst_idev(skb_dst(skb)),
1495 IPSTATS_MIB_OUTFORWDATAGRAMS);
1496 return dst_output(skb);
1500 * Processing handlers for ip6mr_forward
1503 static int ip6mr_forward2(struct sk_buff *skb, struct mfc6_cache *c, int vifi)
1505 struct ipv6hdr *ipv6h;
1506 struct net *net = mfc6_net(c);
1507 struct mif_device *vif = &net->ipv6.vif6_table[vifi];
1508 struct net_device *dev;
1509 struct dst_entry *dst;
1512 if (vif->dev == NULL)
1515 #ifdef CONFIG_IPV6_PIMSM_V2
1516 if (vif->flags & MIFF_REGISTER) {
1518 vif->bytes_out += skb->len;
1519 vif->dev->stats.tx_bytes += skb->len;
1520 vif->dev->stats.tx_packets++;
1521 ip6mr_cache_report(net, skb, vifi, MRT6MSG_WHOLEPKT);
1526 ipv6h = ipv6_hdr(skb);
1528 fl = (struct flowi) {
1531 { .daddr = ipv6h->daddr, }
1535 dst = ip6_route_output(net, NULL, &fl);
1540 skb_dst_set(skb, dst);
1543 * RFC1584 teaches, that DVMRP/PIM router must deliver packets locally
1544 * not only before forwarding, but after forwarding on all output
1545 * interfaces. It is clear, if mrouter runs a multicasting
1546 * program, it should receive packets not depending to what interface
1547 * program is joined.
1548 * If we will not make it, the program will have to join on all
1549 * interfaces. On the other hand, multihoming host (or router, but
1550 * not mrouter) cannot join to more than one interface - it will
1551 * result in receiving multiple packets.
1556 vif->bytes_out += skb->len;
1558 /* We are about to write */
1559 /* XXX: extension headers? */
1560 if (skb_cow(skb, sizeof(*ipv6h) + LL_RESERVED_SPACE(dev)))
1563 ipv6h = ipv6_hdr(skb);
1566 IP6CB(skb)->flags |= IP6SKB_FORWARDED;
1568 return NF_HOOK(PF_INET6, NF_INET_FORWARD, skb, skb->dev, dev,
1569 ip6mr_forward2_finish);
1576 static int ip6mr_find_vif(struct net_device *dev)
1578 struct net *net = dev_net(dev);
1580 for (ct = net->ipv6.maxvif - 1; ct >= 0; ct--) {
1581 if (net->ipv6.vif6_table[ct].dev == dev)
1587 static int ip6_mr_forward(struct sk_buff *skb, struct mfc6_cache *cache)
1591 struct net *net = mfc6_net(cache);
1593 vif = cache->mf6c_parent;
1594 cache->mfc_un.res.pkt++;
1595 cache->mfc_un.res.bytes += skb->len;
1598 * Wrong interface: drop packet and (maybe) send PIM assert.
1600 if (net->ipv6.vif6_table[vif].dev != skb->dev) {
1603 cache->mfc_un.res.wrong_if++;
1604 true_vifi = ip6mr_find_vif(skb->dev);
1606 if (true_vifi >= 0 && net->ipv6.mroute_do_assert &&
1607 /* pimsm uses asserts, when switching from RPT to SPT,
1608 so that we cannot check that packet arrived on an oif.
1609 It is bad, but otherwise we would need to move pretty
1610 large chunk of pimd to kernel. Ough... --ANK
1612 (net->ipv6.mroute_do_pim ||
1613 cache->mfc_un.res.ttls[true_vifi] < 255) &&
1615 cache->mfc_un.res.last_assert + MFC_ASSERT_THRESH)) {
1616 cache->mfc_un.res.last_assert = jiffies;
1617 ip6mr_cache_report(net, skb, true_vifi, MRT6MSG_WRONGMIF);
1622 net->ipv6.vif6_table[vif].pkt_in++;
1623 net->ipv6.vif6_table[vif].bytes_in += skb->len;
1628 for (ct = cache->mfc_un.res.maxvif - 1; ct >= cache->mfc_un.res.minvif; ct--) {
1629 if (ipv6_hdr(skb)->hop_limit > cache->mfc_un.res.ttls[ct]) {
1631 struct sk_buff *skb2 = skb_clone(skb, GFP_ATOMIC);
1633 ip6mr_forward2(skb2, cache, psend);
1639 ip6mr_forward2(skb, cache, psend);
1650 * Multicast packets for forwarding arrive here
1653 int ip6_mr_input(struct sk_buff *skb)
1655 struct mfc6_cache *cache;
1656 struct net *net = dev_net(skb->dev);
1658 read_lock(&mrt_lock);
1659 cache = ip6mr_cache_find(net,
1660 &ipv6_hdr(skb)->saddr, &ipv6_hdr(skb)->daddr);
1663 * No usable cache entry
1665 if (cache == NULL) {
1668 vif = ip6mr_find_vif(skb->dev);
1670 int err = ip6mr_cache_unresolved(net, vif, skb);
1671 read_unlock(&mrt_lock);
1675 read_unlock(&mrt_lock);
1680 ip6_mr_forward(skb, cache);
1682 read_unlock(&mrt_lock);
1689 ip6mr_fill_mroute(struct sk_buff *skb, struct mfc6_cache *c, struct rtmsg *rtm)
1692 struct rtnexthop *nhp;
1693 struct net *net = mfc6_net(c);
1694 struct net_device *dev = net->ipv6.vif6_table[c->mf6c_parent].dev;
1695 u8 *b = skb_tail_pointer(skb);
1696 struct rtattr *mp_head;
1699 RTA_PUT(skb, RTA_IIF, 4, &dev->ifindex);
1701 mp_head = (struct rtattr *)skb_put(skb, RTA_LENGTH(0));
1703 for (ct = c->mfc_un.res.minvif; ct < c->mfc_un.res.maxvif; ct++) {
1704 if (c->mfc_un.res.ttls[ct] < 255) {
1705 if (skb_tailroom(skb) < RTA_ALIGN(RTA_ALIGN(sizeof(*nhp)) + 4))
1706 goto rtattr_failure;
1707 nhp = (struct rtnexthop *)skb_put(skb, RTA_ALIGN(sizeof(*nhp)));
1708 nhp->rtnh_flags = 0;
1709 nhp->rtnh_hops = c->mfc_un.res.ttls[ct];
1710 nhp->rtnh_ifindex = net->ipv6.vif6_table[ct].dev->ifindex;
1711 nhp->rtnh_len = sizeof(*nhp);
1714 mp_head->rta_type = RTA_MULTIPATH;
1715 mp_head->rta_len = skb_tail_pointer(skb) - (u8 *)mp_head;
1716 rtm->rtm_type = RTN_MULTICAST;
1724 int ip6mr_get_route(struct net *net,
1725 struct sk_buff *skb, struct rtmsg *rtm, int nowait)
1728 struct mfc6_cache *cache;
1729 struct rt6_info *rt = (struct rt6_info *)skb_dst(skb);
1731 read_lock(&mrt_lock);
1732 cache = ip6mr_cache_find(net, &rt->rt6i_src.addr, &rt->rt6i_dst.addr);
1735 struct sk_buff *skb2;
1736 struct ipv6hdr *iph;
1737 struct net_device *dev;
1741 read_unlock(&mrt_lock);
1746 if (dev == NULL || (vif = ip6mr_find_vif(dev)) < 0) {
1747 read_unlock(&mrt_lock);
1751 /* really correct? */
1752 skb2 = alloc_skb(sizeof(struct ipv6hdr), GFP_ATOMIC);
1754 read_unlock(&mrt_lock);
1758 skb_reset_transport_header(skb2);
1760 skb_put(skb2, sizeof(struct ipv6hdr));
1761 skb_reset_network_header(skb2);
1763 iph = ipv6_hdr(skb2);
1766 iph->flow_lbl[0] = 0;
1767 iph->flow_lbl[1] = 0;
1768 iph->flow_lbl[2] = 0;
1769 iph->payload_len = 0;
1770 iph->nexthdr = IPPROTO_NONE;
1772 ipv6_addr_copy(&iph->saddr, &rt->rt6i_src.addr);
1773 ipv6_addr_copy(&iph->daddr, &rt->rt6i_dst.addr);
1775 err = ip6mr_cache_unresolved(net, vif, skb2);
1776 read_unlock(&mrt_lock);
1781 if (!nowait && (rtm->rtm_flags&RTM_F_NOTIFY))
1782 cache->mfc_flags |= MFC_NOTIFY;
1784 err = ip6mr_fill_mroute(skb, cache, rtm);
1785 read_unlock(&mrt_lock);
git://ftp.safe.ca / safe / jmp / linux-2.6 / blob