2 * Neighbour Discovery for IPv6
3 * Linux INET6 implementation
6 * Pedro Roque <roque@di.fc.ul.pt>
7 * Mike Shaver <shaver@ingenia.com>
9 * This program is free software; you can redistribute it and/or
10 * modify it under the terms of the GNU General Public License
11 * as published by the Free Software Foundation; either version
12 * 2 of the License, or (at your option) any later version.
18 * Pierre Ynard : export userland ND options
19 * through netlink (RDNSS support)
20 * Lars Fenneberg : fixed MTU setting on receipt
22 * Janos Farkas : kmalloc failure checks
23 * Alexey Kuznetsov : state machine reworked
24 * and moved to net/core.
25 * Pekka Savola : RFC2461 validation
26 * YOSHIFUJI Hideaki @USAGI : Verify ND options properly
29 /* Set to 3 to get tracing... */
32 #define ND_PRINTK(fmt, args...) do { if (net_ratelimit()) { printk(fmt, ## args); } } while(0)
33 #define ND_NOPRINTK(x...) do { ; } while(0)
34 #define ND_PRINTK0 ND_PRINTK
35 #define ND_PRINTK1 ND_NOPRINTK
36 #define ND_PRINTK2 ND_NOPRINTK
37 #define ND_PRINTK3 ND_NOPRINTK
40 #define ND_PRINTK1 ND_PRINTK
44 #define ND_PRINTK2 ND_PRINTK
48 #define ND_PRINTK3 ND_PRINTK
51 #include <linux/module.h>
52 #include <linux/errno.h>
53 #include <linux/types.h>
54 #include <linux/socket.h>
55 #include <linux/sockios.h>
56 #include <linux/sched.h>
57 #include <linux/net.h>
58 #include <linux/in6.h>
59 #include <linux/route.h>
60 #include <linux/init.h>
61 #include <linux/rcupdate.h>
63 #include <linux/sysctl.h>
66 #include <linux/if_addr.h>
67 #include <linux/if_arp.h>
68 #include <linux/ipv6.h>
69 #include <linux/icmpv6.h>
70 #include <linux/jhash.h>
76 #include <net/protocol.h>
77 #include <net/ndisc.h>
78 #include <net/ip6_route.h>
79 #include <net/addrconf.h>
82 #include <net/netlink.h>
83 #include <linux/rtnetlink.h>
86 #include <net/ip6_checksum.h>
87 #include <linux/proc_fs.h>
89 #include <linux/netfilter.h>
90 #include <linux/netfilter_ipv6.h>
92 static struct socket *ndisc_socket;
94 static u32 ndisc_hash(const void *pkey, const struct net_device *dev);
95 static int ndisc_constructor(struct neighbour *neigh);
96 static void ndisc_solicit(struct neighbour *neigh, struct sk_buff *skb);
97 static void ndisc_error_report(struct neighbour *neigh, struct sk_buff *skb);
98 static int pndisc_constructor(struct pneigh_entry *n);
99 static void pndisc_destructor(struct pneigh_entry *n);
100 static void pndisc_redo(struct sk_buff *skb);
102 static struct neigh_ops ndisc_generic_ops = {
104 .solicit = ndisc_solicit,
105 .error_report = ndisc_error_report,
106 .output = neigh_resolve_output,
107 .connected_output = neigh_connected_output,
108 .hh_output = dev_queue_xmit,
109 .queue_xmit = dev_queue_xmit,
112 static struct neigh_ops ndisc_hh_ops = {
114 .solicit = ndisc_solicit,
115 .error_report = ndisc_error_report,
116 .output = neigh_resolve_output,
117 .connected_output = neigh_resolve_output,
118 .hh_output = dev_queue_xmit,
119 .queue_xmit = dev_queue_xmit,
123 static struct neigh_ops ndisc_direct_ops = {
125 .output = dev_queue_xmit,
126 .connected_output = dev_queue_xmit,
127 .hh_output = dev_queue_xmit,
128 .queue_xmit = dev_queue_xmit,
131 struct neigh_table nd_tbl = {
133 .entry_size = sizeof(struct neighbour) + sizeof(struct in6_addr),
134 .key_len = sizeof(struct in6_addr),
136 .constructor = ndisc_constructor,
137 .pconstructor = pndisc_constructor,
138 .pdestructor = pndisc_destructor,
139 .proxy_redo = pndisc_redo,
143 .base_reachable_time = 30 * HZ,
144 .retrans_time = 1 * HZ,
145 .gc_staletime = 60 * HZ,
146 .reachable_time = 30 * HZ,
147 .delay_probe_time = 5 * HZ,
151 .anycast_delay = 1 * HZ,
152 .proxy_delay = (8 * HZ) / 10,
155 .gc_interval = 30 * HZ,
162 struct ndisc_options {
163 struct nd_opt_hdr *nd_opt_array[__ND_OPT_ARRAY_MAX];
164 #ifdef CONFIG_IPV6_ROUTE_INFO
165 struct nd_opt_hdr *nd_opts_ri;
166 struct nd_opt_hdr *nd_opts_ri_end;
168 struct nd_opt_hdr *nd_useropts;
169 struct nd_opt_hdr *nd_useropts_end;
172 #define nd_opts_src_lladdr nd_opt_array[ND_OPT_SOURCE_LL_ADDR]
173 #define nd_opts_tgt_lladdr nd_opt_array[ND_OPT_TARGET_LL_ADDR]
174 #define nd_opts_pi nd_opt_array[ND_OPT_PREFIX_INFO]
175 #define nd_opts_pi_end nd_opt_array[__ND_OPT_PREFIX_INFO_END]
176 #define nd_opts_rh nd_opt_array[ND_OPT_REDIRECT_HDR]
177 #define nd_opts_mtu nd_opt_array[ND_OPT_MTU]
179 #define NDISC_OPT_SPACE(len) (((len)+2+7)&~7)
182 * Return the padding between the option length and the start of the
183 * link addr. Currently only IP-over-InfiniBand needs this, although
184 * if RFC 3831 IPv6-over-Fibre Channel is ever implemented it may
185 * also need a pad of 2.
187 static int ndisc_addr_option_pad(unsigned short type)
190 case ARPHRD_INFINIBAND: return 2;
195 static inline int ndisc_opt_addr_space(struct net_device *dev)
197 return NDISC_OPT_SPACE(dev->addr_len + ndisc_addr_option_pad(dev->type));
200 static u8 *ndisc_fill_addr_option(u8 *opt, int type, void *data, int data_len,
201 unsigned short addr_type)
203 int space = NDISC_OPT_SPACE(data_len);
204 int pad = ndisc_addr_option_pad(addr_type);
209 memset(opt + 2, 0, pad);
213 memcpy(opt+2, data, data_len);
216 if ((space -= data_len) > 0)
217 memset(opt, 0, space);
221 static struct nd_opt_hdr *ndisc_next_option(struct nd_opt_hdr *cur,
222 struct nd_opt_hdr *end)
225 if (!cur || !end || cur >= end)
227 type = cur->nd_opt_type;
229 cur = ((void *)cur) + (cur->nd_opt_len << 3);
230 } while(cur < end && cur->nd_opt_type != type);
231 return (cur <= end && cur->nd_opt_type == type ? cur : NULL);
234 static inline int ndisc_is_useropt(struct nd_opt_hdr *opt)
236 return (opt->nd_opt_type == ND_OPT_RDNSS);
239 static struct nd_opt_hdr *ndisc_next_useropt(struct nd_opt_hdr *cur,
240 struct nd_opt_hdr *end)
242 if (!cur || !end || cur >= end)
245 cur = ((void *)cur) + (cur->nd_opt_len << 3);
246 } while(cur < end && !ndisc_is_useropt(cur));
247 return (cur <= end && ndisc_is_useropt(cur) ? cur : NULL);
250 static struct ndisc_options *ndisc_parse_options(u8 *opt, int opt_len,
251 struct ndisc_options *ndopts)
253 struct nd_opt_hdr *nd_opt = (struct nd_opt_hdr *)opt;
255 if (!nd_opt || opt_len < 0 || !ndopts)
257 memset(ndopts, 0, sizeof(*ndopts));
260 if (opt_len < sizeof(struct nd_opt_hdr))
262 l = nd_opt->nd_opt_len << 3;
263 if (opt_len < l || l == 0)
265 switch (nd_opt->nd_opt_type) {
266 case ND_OPT_SOURCE_LL_ADDR:
267 case ND_OPT_TARGET_LL_ADDR:
269 case ND_OPT_REDIRECT_HDR:
270 if (ndopts->nd_opt_array[nd_opt->nd_opt_type]) {
271 ND_PRINTK2(KERN_WARNING
272 "%s(): duplicated ND6 option found: type=%d\n",
274 nd_opt->nd_opt_type);
276 ndopts->nd_opt_array[nd_opt->nd_opt_type] = nd_opt;
279 case ND_OPT_PREFIX_INFO:
280 ndopts->nd_opts_pi_end = nd_opt;
281 if (!ndopts->nd_opt_array[nd_opt->nd_opt_type])
282 ndopts->nd_opt_array[nd_opt->nd_opt_type] = nd_opt;
284 #ifdef CONFIG_IPV6_ROUTE_INFO
285 case ND_OPT_ROUTE_INFO:
286 ndopts->nd_opts_ri_end = nd_opt;
287 if (!ndopts->nd_opts_ri)
288 ndopts->nd_opts_ri = nd_opt;
292 if (ndisc_is_useropt(nd_opt)) {
293 ndopts->nd_useropts_end = nd_opt;
294 if (!ndopts->nd_useropts)
295 ndopts->nd_useropts = nd_opt;
298 * Unknown options must be silently ignored,
299 * to accommodate future extension to the
302 ND_PRINTK2(KERN_NOTICE
303 "%s(): ignored unsupported option; type=%d, len=%d\n",
305 nd_opt->nd_opt_type, nd_opt->nd_opt_len);
309 nd_opt = ((void *)nd_opt) + l;
314 static inline u8 *ndisc_opt_addr_data(struct nd_opt_hdr *p,
315 struct net_device *dev)
317 u8 *lladdr = (u8 *)(p + 1);
318 int lladdrlen = p->nd_opt_len << 3;
319 int prepad = ndisc_addr_option_pad(dev->type);
320 if (lladdrlen != NDISC_OPT_SPACE(dev->addr_len + prepad))
322 return (lladdr + prepad);
325 int ndisc_mc_map(struct in6_addr *addr, char *buf, struct net_device *dev, int dir)
329 case ARPHRD_IEEE802: /* Not sure. Check it later. --ANK */
331 ipv6_eth_mc_map(addr, buf);
333 case ARPHRD_IEEE802_TR:
334 ipv6_tr_mc_map(addr,buf);
337 ipv6_arcnet_mc_map(addr, buf);
339 case ARPHRD_INFINIBAND:
340 ipv6_ib_mc_map(addr, buf);
344 memcpy(buf, dev->broadcast, dev->addr_len);
351 EXPORT_SYMBOL(ndisc_mc_map);
353 static u32 ndisc_hash(const void *pkey, const struct net_device *dev)
355 const u32 *p32 = pkey;
359 for (i = 0; i < (sizeof(struct in6_addr) / sizeof(u32)); i++)
362 return jhash_2words(addr_hash, dev->ifindex, nd_tbl.hash_rnd);
365 static int ndisc_constructor(struct neighbour *neigh)
367 struct in6_addr *addr = (struct in6_addr*)&neigh->primary_key;
368 struct net_device *dev = neigh->dev;
369 struct inet6_dev *in6_dev;
370 struct neigh_parms *parms;
371 int is_multicast = ipv6_addr_is_multicast(addr);
374 in6_dev = in6_dev_get(dev);
375 if (in6_dev == NULL) {
380 parms = in6_dev->nd_parms;
381 __neigh_parms_put(neigh->parms);
382 neigh->parms = neigh_parms_clone(parms);
385 neigh->type = is_multicast ? RTN_MULTICAST : RTN_UNICAST;
386 if (!dev->header_ops) {
387 neigh->nud_state = NUD_NOARP;
388 neigh->ops = &ndisc_direct_ops;
389 neigh->output = neigh->ops->queue_xmit;
392 neigh->nud_state = NUD_NOARP;
393 ndisc_mc_map(addr, neigh->ha, dev, 1);
394 } else if (dev->flags&(IFF_NOARP|IFF_LOOPBACK)) {
395 neigh->nud_state = NUD_NOARP;
396 memcpy(neigh->ha, dev->dev_addr, dev->addr_len);
397 if (dev->flags&IFF_LOOPBACK)
398 neigh->type = RTN_LOCAL;
399 } else if (dev->flags&IFF_POINTOPOINT) {
400 neigh->nud_state = NUD_NOARP;
401 memcpy(neigh->ha, dev->broadcast, dev->addr_len);
403 if (dev->header_ops->cache)
404 neigh->ops = &ndisc_hh_ops;
406 neigh->ops = &ndisc_generic_ops;
407 if (neigh->nud_state&NUD_VALID)
408 neigh->output = neigh->ops->connected_output;
410 neigh->output = neigh->ops->output;
412 in6_dev_put(in6_dev);
416 static int pndisc_constructor(struct pneigh_entry *n)
418 struct in6_addr *addr = (struct in6_addr*)&n->key;
419 struct in6_addr maddr;
420 struct net_device *dev = n->dev;
422 if (dev == NULL || __in6_dev_get(dev) == NULL)
424 addrconf_addr_solict_mult(addr, &maddr);
425 ipv6_dev_mc_inc(dev, &maddr);
429 static void pndisc_destructor(struct pneigh_entry *n)
431 struct in6_addr *addr = (struct in6_addr*)&n->key;
432 struct in6_addr maddr;
433 struct net_device *dev = n->dev;
435 if (dev == NULL || __in6_dev_get(dev) == NULL)
437 addrconf_addr_solict_mult(addr, &maddr);
438 ipv6_dev_mc_dec(dev, &maddr);
442 * Send a Neighbour Advertisement
445 static inline void ndisc_flow_init(struct flowi *fl, u8 type,
446 struct in6_addr *saddr, struct in6_addr *daddr,
449 memset(fl, 0, sizeof(*fl));
450 ipv6_addr_copy(&fl->fl6_src, saddr);
451 ipv6_addr_copy(&fl->fl6_dst, daddr);
452 fl->proto = IPPROTO_ICMPV6;
453 fl->fl_icmp_type = type;
454 fl->fl_icmp_code = 0;
456 security_sk_classify_flow(ndisc_socket->sk, fl);
459 static void __ndisc_send(struct net_device *dev,
460 struct neighbour *neigh,
461 struct in6_addr *daddr, struct in6_addr *saddr,
462 struct icmp6hdr *icmp6h, struct in6_addr *target,
466 struct dst_entry *dst;
467 struct sock *sk = ndisc_socket->sk;
469 struct icmp6hdr *hdr;
470 struct inet6_dev *idev;
475 type = icmp6h->icmp6_type;
477 ndisc_flow_init(&fl, type, saddr, daddr,
480 dst = ndisc_dst_alloc(dev, neigh, daddr, ip6_output);
484 err = xfrm_lookup(&dst, &fl, NULL, 0);
491 len = sizeof(struct icmp6hdr) + (target ? sizeof(*target) : 0);
493 len += ndisc_opt_addr_space(dev);
495 skb = sock_alloc_send_skb(sk,
496 (MAX_HEADER + sizeof(struct ipv6hdr) +
497 len + LL_RESERVED_SPACE(dev)),
501 "ICMPv6 ND: %s() failed to allocate an skb.\n",
507 skb_reserve(skb, LL_RESERVED_SPACE(dev));
508 ip6_nd_hdr(sk, skb, dev, saddr, daddr, IPPROTO_ICMPV6, len);
510 skb->transport_header = skb->tail;
513 hdr = (struct icmp6hdr *)skb_transport_header(skb);
514 memcpy(hdr, icmp6h, sizeof(*hdr));
516 opt = skb_transport_header(skb) + sizeof(struct icmp6hdr);
518 ipv6_addr_copy((struct in6_addr *)opt, target);
519 opt += sizeof(*target);
523 ndisc_fill_addr_option(opt, llinfo, dev->dev_addr,
524 dev->addr_len, dev->type);
526 hdr->icmp6_cksum = csum_ipv6_magic(saddr, daddr, len,
528 csum_partial((__u8 *) hdr,
533 idev = in6_dev_get(dst->dev);
534 IP6_INC_STATS(idev, IPSTATS_MIB_OUTREQUESTS);
536 err = NF_HOOK(PF_INET6, NF_IP6_LOCAL_OUT, skb, NULL, dst->dev, dst_output);
538 ICMP6MSGOUT_INC_STATS(idev, type);
539 ICMP6_INC_STATS(idev, ICMP6_MIB_OUTMSGS);
542 if (likely(idev != NULL))
546 static void ndisc_send_na(struct net_device *dev, struct neighbour *neigh,
547 struct in6_addr *daddr, struct in6_addr *solicited_addr,
548 int router, int solicited, int override, int inc_opt)
550 struct in6_addr tmpaddr;
551 struct inet6_ifaddr *ifp;
552 struct in6_addr *src_addr;
553 struct icmp6hdr icmp6h = {
554 .icmp6_type = NDISC_NEIGHBOUR_ADVERTISEMENT,
557 /* for anycast or proxy, solicited_addr != src_addr */
558 ifp = ipv6_get_ifaddr(solicited_addr, dev, 1);
560 src_addr = solicited_addr;
561 if (ifp->flags & IFA_F_OPTIMISTIC)
565 if (ipv6_dev_get_saddr(dev, daddr, &tmpaddr))
570 icmp6h.icmp6_router = router;
571 icmp6h.icmp6_solicited = solicited;
572 icmp6h.icmp6_override = override;
574 __ndisc_send(dev, neigh, daddr, src_addr,
575 &icmp6h, solicited_addr,
576 inc_opt ? ND_OPT_TARGET_LL_ADDR : 0);
579 void ndisc_send_ns(struct net_device *dev, struct neighbour *neigh,
580 struct in6_addr *solicit,
581 struct in6_addr *daddr, struct in6_addr *saddr)
583 struct in6_addr addr_buf;
584 struct icmp6hdr icmp6h = {
585 .icmp6_type = NDISC_NEIGHBOUR_SOLICITATION,
589 if (ipv6_get_lladdr(dev, &addr_buf,
590 (IFA_F_TENTATIVE|IFA_F_OPTIMISTIC)))
595 __ndisc_send(dev, neigh, daddr, saddr,
597 !ipv6_addr_any(saddr) ? ND_OPT_SOURCE_LL_ADDR : 0);
600 void ndisc_send_rs(struct net_device *dev, struct in6_addr *saddr,
601 struct in6_addr *daddr)
603 struct icmp6hdr icmp6h = {
604 .icmp6_type = NDISC_ROUTER_SOLICITATION,
606 int send_sllao = dev->addr_len;
608 #ifdef CONFIG_IPV6_OPTIMISTIC_DAD
610 * According to section 2.2 of RFC 4429, we must not
611 * send router solicitations with a sllao from
612 * optimistic addresses, but we may send the solicitation
613 * if we don't include the sllao. So here we check
614 * if our address is optimistic, and if so, we
615 * supress the inclusion of the sllao.
618 struct inet6_ifaddr *ifp = ipv6_get_ifaddr(saddr, dev, 1);
620 if (ifp->flags & IFA_F_OPTIMISTIC) {
629 __ndisc_send(dev, NULL, daddr, saddr,
631 send_sllao ? ND_OPT_SOURCE_LL_ADDR : 0);
635 static void ndisc_error_report(struct neighbour *neigh, struct sk_buff *skb)
638 * "The sender MUST return an ICMP
639 * destination unreachable"
641 dst_link_failure(skb);
645 /* Called with locked neigh: either read or both */
647 static void ndisc_solicit(struct neighbour *neigh, struct sk_buff *skb)
649 struct in6_addr *saddr = NULL;
650 struct in6_addr mcaddr;
651 struct net_device *dev = neigh->dev;
652 struct in6_addr *target = (struct in6_addr *)&neigh->primary_key;
653 int probes = atomic_read(&neigh->probes);
655 if (skb && ipv6_chk_addr(&ipv6_hdr(skb)->saddr, dev, 1))
656 saddr = &ipv6_hdr(skb)->saddr;
658 if ((probes -= neigh->parms->ucast_probes) < 0) {
659 if (!(neigh->nud_state & NUD_VALID)) {
660 ND_PRINTK1(KERN_DEBUG
661 "%s(): trying to ucast probe in NUD_INVALID: "
666 ndisc_send_ns(dev, neigh, target, target, saddr);
667 } else if ((probes -= neigh->parms->app_probes) < 0) {
672 addrconf_addr_solict_mult(target, &mcaddr);
673 ndisc_send_ns(dev, NULL, target, &mcaddr, saddr);
677 static void ndisc_recv_ns(struct sk_buff *skb)
679 struct nd_msg *msg = (struct nd_msg *)skb_transport_header(skb);
680 struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
681 struct in6_addr *daddr = &ipv6_hdr(skb)->daddr;
683 u32 ndoptlen = skb->tail - (skb->transport_header +
684 offsetof(struct nd_msg, opt));
685 struct ndisc_options ndopts;
686 struct net_device *dev = skb->dev;
687 struct inet6_ifaddr *ifp;
688 struct inet6_dev *idev = NULL;
689 struct neighbour *neigh;
690 struct pneigh_entry *pneigh = NULL;
691 int dad = ipv6_addr_any(saddr);
695 if (ipv6_addr_is_multicast(&msg->target)) {
696 ND_PRINTK2(KERN_WARNING
697 "ICMPv6 NS: multicast target address");
703 * DAD has to be destined for solicited node multicast address.
706 !(daddr->s6_addr32[0] == htonl(0xff020000) &&
707 daddr->s6_addr32[1] == htonl(0x00000000) &&
708 daddr->s6_addr32[2] == htonl(0x00000001) &&
709 daddr->s6_addr [12] == 0xff )) {
710 ND_PRINTK2(KERN_WARNING
711 "ICMPv6 NS: bad DAD packet (wrong destination)\n");
715 if (!ndisc_parse_options(msg->opt, ndoptlen, &ndopts)) {
716 ND_PRINTK2(KERN_WARNING
717 "ICMPv6 NS: invalid ND options\n");
721 if (ndopts.nd_opts_src_lladdr) {
722 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr, dev);
724 ND_PRINTK2(KERN_WARNING
725 "ICMPv6 NS: invalid link-layer address length\n");
730 * If the IP source address is the unspecified address,
731 * there MUST NOT be source link-layer address option
735 ND_PRINTK2(KERN_WARNING
736 "ICMPv6 NS: bad DAD packet (link-layer address option)\n");
741 inc = ipv6_addr_is_multicast(daddr);
743 if ((ifp = ipv6_get_ifaddr(&msg->target, dev, 1)) != NULL) {
745 if (ifp->flags & (IFA_F_TENTATIVE|IFA_F_OPTIMISTIC)) {
747 if (dev->type == ARPHRD_IEEE802_TR) {
748 const unsigned char *sadr;
749 sadr = skb_mac_header(skb);
750 if (((sadr[8] ^ dev->dev_addr[0]) & 0x7f) == 0 &&
751 sadr[9] == dev->dev_addr[1] &&
752 sadr[10] == dev->dev_addr[2] &&
753 sadr[11] == dev->dev_addr[3] &&
754 sadr[12] == dev->dev_addr[4] &&
755 sadr[13] == dev->dev_addr[5]) {
756 /* looped-back to us */
762 * We are colliding with another node
764 * so fail our DAD process
766 addrconf_dad_failure(ifp);
770 * This is not a dad solicitation.
771 * If we are an optimistic node,
773 * Otherwise, we should ignore it.
775 if (!(ifp->flags & IFA_F_OPTIMISTIC))
782 idev = in6_dev_get(dev);
784 /* XXX: count this drop? */
788 if (ipv6_chk_acast_addr(dev, &msg->target) ||
789 (idev->cnf.forwarding &&
790 (ipv6_devconf.proxy_ndp || idev->cnf.proxy_ndp) &&
791 (pneigh = pneigh_lookup(&nd_tbl,
792 &msg->target, dev, 0)) != NULL)) {
793 if (!(NEIGH_CB(skb)->flags & LOCALLY_ENQUEUED) &&
794 skb->pkt_type != PACKET_HOST &&
796 idev->nd_parms->proxy_delay != 0) {
798 * for anycast or proxy,
799 * sender should delay its response
800 * by a random time between 0 and
801 * MAX_ANYCAST_DELAY_TIME seconds.
802 * (RFC2461) -- yoshfuji
804 struct sk_buff *n = skb_clone(skb, GFP_ATOMIC);
806 pneigh_enqueue(&nd_tbl, idev->nd_parms, n);
813 is_router = !!(pneigh ? pneigh->flags & NTF_ROUTER : idev->cnf.forwarding);
816 struct in6_addr maddr;
818 ipv6_addr_all_nodes(&maddr);
819 ndisc_send_na(dev, NULL, &maddr, &msg->target,
820 is_router, 0, (ifp != NULL), 1);
825 NEIGH_CACHE_STAT_INC(&nd_tbl, rcv_probes_mcast);
827 NEIGH_CACHE_STAT_INC(&nd_tbl, rcv_probes_ucast);
830 * update / create cache entry
831 * for the source address
833 neigh = __neigh_lookup(&nd_tbl, saddr, dev,
834 !inc || lladdr || !dev->addr_len);
836 neigh_update(neigh, lladdr, NUD_STALE,
837 NEIGH_UPDATE_F_WEAK_OVERRIDE|
838 NEIGH_UPDATE_F_OVERRIDE);
839 if (neigh || !dev->header_ops) {
840 ndisc_send_na(dev, neigh, saddr, &msg->target,
842 1, (ifp != NULL && inc), inc);
844 neigh_release(neigh);
856 static void ndisc_recv_na(struct sk_buff *skb)
858 struct nd_msg *msg = (struct nd_msg *)skb_transport_header(skb);
859 struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
860 struct in6_addr *daddr = &ipv6_hdr(skb)->daddr;
862 u32 ndoptlen = skb->tail - (skb->transport_header +
863 offsetof(struct nd_msg, opt));
864 struct ndisc_options ndopts;
865 struct net_device *dev = skb->dev;
866 struct inet6_ifaddr *ifp;
867 struct neighbour *neigh;
869 if (skb->len < sizeof(struct nd_msg)) {
870 ND_PRINTK2(KERN_WARNING
871 "ICMPv6 NA: packet too short\n");
875 if (ipv6_addr_is_multicast(&msg->target)) {
876 ND_PRINTK2(KERN_WARNING
877 "ICMPv6 NA: target address is multicast.\n");
881 if (ipv6_addr_is_multicast(daddr) &&
882 msg->icmph.icmp6_solicited) {
883 ND_PRINTK2(KERN_WARNING
884 "ICMPv6 NA: solicited NA is multicasted.\n");
888 if (!ndisc_parse_options(msg->opt, ndoptlen, &ndopts)) {
889 ND_PRINTK2(KERN_WARNING
890 "ICMPv6 NS: invalid ND option\n");
893 if (ndopts.nd_opts_tgt_lladdr) {
894 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr, dev);
896 ND_PRINTK2(KERN_WARNING
897 "ICMPv6 NA: invalid link-layer address length\n");
901 if ((ifp = ipv6_get_ifaddr(&msg->target, dev, 1))) {
902 if (ifp->flags & IFA_F_TENTATIVE) {
903 addrconf_dad_failure(ifp);
906 /* What should we make now? The advertisement
907 is invalid, but ndisc specs say nothing
908 about it. It could be misconfiguration, or
909 an smart proxy agent tries to help us :-)
911 ND_PRINTK1(KERN_WARNING
912 "ICMPv6 NA: someone advertises our address on %s!\n",
913 ifp->idev->dev->name);
917 neigh = neigh_lookup(&nd_tbl, &msg->target, dev);
920 u8 old_flags = neigh->flags;
922 if (neigh->nud_state & NUD_FAILED)
926 * Don't update the neighbor cache entry on a proxy NA from
927 * ourselves because either the proxied node is off link or it
928 * has already sent a NA to us.
930 if (lladdr && !memcmp(lladdr, dev->dev_addr, dev->addr_len) &&
931 ipv6_devconf.forwarding && ipv6_devconf.proxy_ndp &&
932 pneigh_lookup(&nd_tbl, &msg->target, dev, 0)) {
933 /* XXX: idev->cnf.prixy_ndp */
937 neigh_update(neigh, lladdr,
938 msg->icmph.icmp6_solicited ? NUD_REACHABLE : NUD_STALE,
939 NEIGH_UPDATE_F_WEAK_OVERRIDE|
940 (msg->icmph.icmp6_override ? NEIGH_UPDATE_F_OVERRIDE : 0)|
941 NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
942 (msg->icmph.icmp6_router ? NEIGH_UPDATE_F_ISROUTER : 0));
944 if ((old_flags & ~neigh->flags) & NTF_ROUTER) {
946 * Change: router to host
949 rt = rt6_get_dflt_router(saddr, dev);
955 neigh_release(neigh);
959 static void ndisc_recv_rs(struct sk_buff *skb)
961 struct rs_msg *rs_msg = (struct rs_msg *)skb_transport_header(skb);
962 unsigned long ndoptlen = skb->len - sizeof(*rs_msg);
963 struct neighbour *neigh;
964 struct inet6_dev *idev;
965 struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
966 struct ndisc_options ndopts;
969 if (skb->len < sizeof(*rs_msg))
972 idev = in6_dev_get(skb->dev);
975 ND_PRINTK1("ICMP6 RS: can't find in6 device\n");
979 /* Don't accept RS if we're not in router mode */
980 if (!idev->cnf.forwarding)
984 * Don't update NCE if src = ::;
985 * this implies that the source node has no ip address assigned yet.
987 if (ipv6_addr_any(saddr))
990 /* Parse ND options */
991 if (!ndisc_parse_options(rs_msg->opt, ndoptlen, &ndopts)) {
993 ND_PRINTK2("ICMP6 NS: invalid ND option, ignored\n");
997 if (ndopts.nd_opts_src_lladdr) {
998 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr,
1004 neigh = __neigh_lookup(&nd_tbl, saddr, skb->dev, 1);
1006 neigh_update(neigh, lladdr, NUD_STALE,
1007 NEIGH_UPDATE_F_WEAK_OVERRIDE|
1008 NEIGH_UPDATE_F_OVERRIDE|
1009 NEIGH_UPDATE_F_OVERRIDE_ISROUTER);
1010 neigh_release(neigh);
1016 static void ndisc_ra_useropt(struct sk_buff *ra, struct nd_opt_hdr *opt)
1018 struct icmp6hdr *icmp6h = (struct icmp6hdr *)skb_transport_header(ra);
1019 struct sk_buff *skb;
1020 struct nlmsghdr *nlh;
1021 struct nduseroptmsg *ndmsg;
1023 int base_size = NLMSG_ALIGN(sizeof(struct nduseroptmsg)
1024 + (opt->nd_opt_len << 3));
1025 size_t msg_size = base_size + nla_total_size(sizeof(struct in6_addr));
1027 skb = nlmsg_new(msg_size, GFP_ATOMIC);
1033 nlh = nlmsg_put(skb, 0, 0, RTM_NEWNDUSEROPT, base_size, 0);
1035 goto nla_put_failure;
1038 ndmsg = nlmsg_data(nlh);
1039 ndmsg->nduseropt_family = AF_INET6;
1040 ndmsg->nduseropt_icmp_type = icmp6h->icmp6_type;
1041 ndmsg->nduseropt_icmp_code = icmp6h->icmp6_code;
1042 ndmsg->nduseropt_opts_len = opt->nd_opt_len << 3;
1044 memcpy(ndmsg + 1, opt, opt->nd_opt_len << 3);
1046 NLA_PUT(skb, NDUSEROPT_SRCADDR, sizeof(struct in6_addr),
1047 &ipv6_hdr(ra)->saddr);
1048 nlmsg_end(skb, nlh);
1050 err = rtnl_notify(skb, 0, RTNLGRP_ND_USEROPT, NULL, GFP_ATOMIC);
1060 rtnl_set_sk_err(RTNLGRP_ND_USEROPT, err);
1063 static void ndisc_router_discovery(struct sk_buff *skb)
1065 struct ra_msg *ra_msg = (struct ra_msg *)skb_transport_header(skb);
1066 struct neighbour *neigh = NULL;
1067 struct inet6_dev *in6_dev;
1068 struct rt6_info *rt = NULL;
1070 struct ndisc_options ndopts;
1072 unsigned int pref = 0;
1074 __u8 * opt = (__u8 *)(ra_msg + 1);
1076 optlen = (skb->tail - skb->transport_header) - sizeof(struct ra_msg);
1078 if (!(ipv6_addr_type(&ipv6_hdr(skb)->saddr) & IPV6_ADDR_LINKLOCAL)) {
1079 ND_PRINTK2(KERN_WARNING
1080 "ICMPv6 RA: source address is not link-local.\n");
1084 ND_PRINTK2(KERN_WARNING
1085 "ICMPv6 RA: packet too short\n");
1090 * set the RA_RECV flag in the interface
1093 in6_dev = in6_dev_get(skb->dev);
1094 if (in6_dev == NULL) {
1096 "ICMPv6 RA: can't find inet6 device for %s.\n",
1100 if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_ra) {
1101 in6_dev_put(in6_dev);
1105 if (!ndisc_parse_options(opt, optlen, &ndopts)) {
1106 in6_dev_put(in6_dev);
1107 ND_PRINTK2(KERN_WARNING
1108 "ICMP6 RA: invalid ND options\n");
1112 if (in6_dev->if_flags & IF_RS_SENT) {
1114 * flag that an RA was received after an RS was sent
1115 * out on this interface.
1117 in6_dev->if_flags |= IF_RA_RCVD;
1121 * Remember the managed/otherconf flags from most recently
1122 * received RA message (RFC 2462) -- yoshfuji
1124 in6_dev->if_flags = (in6_dev->if_flags & ~(IF_RA_MANAGED |
1126 (ra_msg->icmph.icmp6_addrconf_managed ?
1127 IF_RA_MANAGED : 0) |
1128 (ra_msg->icmph.icmp6_addrconf_other ?
1129 IF_RA_OTHERCONF : 0);
1131 if (!in6_dev->cnf.accept_ra_defrtr)
1134 lifetime = ntohs(ra_msg->icmph.icmp6_rt_lifetime);
1136 #ifdef CONFIG_IPV6_ROUTER_PREF
1137 pref = ra_msg->icmph.icmp6_router_pref;
1138 /* 10b is handled as if it were 00b (medium) */
1139 if (pref == ICMPV6_ROUTER_PREF_INVALID ||
1140 !in6_dev->cnf.accept_ra_rtr_pref)
1141 pref = ICMPV6_ROUTER_PREF_MEDIUM;
1144 rt = rt6_get_dflt_router(&ipv6_hdr(skb)->saddr, skb->dev);
1147 neigh = rt->rt6i_nexthop;
1149 if (rt && lifetime == 0) {
1155 if (rt == NULL && lifetime) {
1156 ND_PRINTK3(KERN_DEBUG
1157 "ICMPv6 RA: adding default router.\n");
1159 rt = rt6_add_dflt_router(&ipv6_hdr(skb)->saddr, skb->dev, pref);
1162 "ICMPv6 RA: %s() failed to add default route.\n",
1164 in6_dev_put(in6_dev);
1168 neigh = rt->rt6i_nexthop;
1169 if (neigh == NULL) {
1171 "ICMPv6 RA: %s() got default router without neighbour.\n",
1173 dst_release(&rt->u.dst);
1174 in6_dev_put(in6_dev);
1177 neigh->flags |= NTF_ROUTER;
1179 rt->rt6i_flags |= (rt->rt6i_flags & ~RTF_PREF_MASK) | RTF_PREF(pref);
1183 rt->rt6i_expires = jiffies + (HZ * lifetime);
1185 if (ra_msg->icmph.icmp6_hop_limit) {
1186 in6_dev->cnf.hop_limit = ra_msg->icmph.icmp6_hop_limit;
1188 rt->u.dst.metrics[RTAX_HOPLIMIT-1] = ra_msg->icmph.icmp6_hop_limit;
1194 * Update Reachable Time and Retrans Timer
1197 if (in6_dev->nd_parms) {
1198 unsigned long rtime = ntohl(ra_msg->retrans_timer);
1200 if (rtime && rtime/1000 < MAX_SCHEDULE_TIMEOUT/HZ) {
1201 rtime = (rtime*HZ)/1000;
1204 in6_dev->nd_parms->retrans_time = rtime;
1205 in6_dev->tstamp = jiffies;
1206 inet6_ifinfo_notify(RTM_NEWLINK, in6_dev);
1209 rtime = ntohl(ra_msg->reachable_time);
1210 if (rtime && rtime/1000 < MAX_SCHEDULE_TIMEOUT/(3*HZ)) {
1211 rtime = (rtime*HZ)/1000;
1216 if (rtime != in6_dev->nd_parms->base_reachable_time) {
1217 in6_dev->nd_parms->base_reachable_time = rtime;
1218 in6_dev->nd_parms->gc_staletime = 3 * rtime;
1219 in6_dev->nd_parms->reachable_time = neigh_rand_reach_time(rtime);
1220 in6_dev->tstamp = jiffies;
1221 inet6_ifinfo_notify(RTM_NEWLINK, in6_dev);
1231 neigh = __neigh_lookup(&nd_tbl, &ipv6_hdr(skb)->saddr,
1235 if (ndopts.nd_opts_src_lladdr) {
1236 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr,
1239 ND_PRINTK2(KERN_WARNING
1240 "ICMPv6 RA: invalid link-layer address length\n");
1244 neigh_update(neigh, lladdr, NUD_STALE,
1245 NEIGH_UPDATE_F_WEAK_OVERRIDE|
1246 NEIGH_UPDATE_F_OVERRIDE|
1247 NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
1248 NEIGH_UPDATE_F_ISROUTER);
1251 #ifdef CONFIG_IPV6_ROUTE_INFO
1252 if (in6_dev->cnf.accept_ra_rtr_pref && ndopts.nd_opts_ri) {
1253 struct nd_opt_hdr *p;
1254 for (p = ndopts.nd_opts_ri;
1256 p = ndisc_next_option(p, ndopts.nd_opts_ri_end)) {
1257 if (((struct route_info *)p)->prefix_len > in6_dev->cnf.accept_ra_rt_info_max_plen)
1259 rt6_route_rcv(skb->dev, (u8*)p, (p->nd_opt_len) << 3,
1260 &ipv6_hdr(skb)->saddr);
1265 if (in6_dev->cnf.accept_ra_pinfo && ndopts.nd_opts_pi) {
1266 struct nd_opt_hdr *p;
1267 for (p = ndopts.nd_opts_pi;
1269 p = ndisc_next_option(p, ndopts.nd_opts_pi_end)) {
1270 addrconf_prefix_rcv(skb->dev, (u8*)p, (p->nd_opt_len) << 3);
1274 if (ndopts.nd_opts_mtu) {
1278 memcpy(&n, ((u8*)(ndopts.nd_opts_mtu+1))+2, sizeof(mtu));
1281 if (mtu < IPV6_MIN_MTU || mtu > skb->dev->mtu) {
1282 ND_PRINTK2(KERN_WARNING
1283 "ICMPv6 RA: invalid mtu: %d\n",
1285 } else if (in6_dev->cnf.mtu6 != mtu) {
1286 in6_dev->cnf.mtu6 = mtu;
1289 rt->u.dst.metrics[RTAX_MTU-1] = mtu;
1291 rt6_mtu_change(skb->dev, mtu);
1295 if (ndopts.nd_useropts) {
1296 struct nd_opt_hdr *opt;
1297 for (opt = ndopts.nd_useropts;
1299 opt = ndisc_next_useropt(opt, ndopts.nd_useropts_end)) {
1300 ndisc_ra_useropt(skb, opt);
1304 if (ndopts.nd_opts_tgt_lladdr || ndopts.nd_opts_rh) {
1305 ND_PRINTK2(KERN_WARNING
1306 "ICMPv6 RA: invalid RA options");
1310 dst_release(&rt->u.dst);
1312 neigh_release(neigh);
1313 in6_dev_put(in6_dev);
1316 static void ndisc_redirect_rcv(struct sk_buff *skb)
1318 struct inet6_dev *in6_dev;
1319 struct icmp6hdr *icmph;
1320 struct in6_addr *dest;
1321 struct in6_addr *target; /* new first hop to destination */
1322 struct neighbour *neigh;
1324 struct ndisc_options ndopts;
1328 if (!(ipv6_addr_type(&ipv6_hdr(skb)->saddr) & IPV6_ADDR_LINKLOCAL)) {
1329 ND_PRINTK2(KERN_WARNING
1330 "ICMPv6 Redirect: source address is not link-local.\n");
1334 optlen = skb->tail - skb->transport_header;
1335 optlen -= sizeof(struct icmp6hdr) + 2 * sizeof(struct in6_addr);
1338 ND_PRINTK2(KERN_WARNING
1339 "ICMPv6 Redirect: packet too short\n");
1343 icmph = icmp6_hdr(skb);
1344 target = (struct in6_addr *) (icmph + 1);
1347 if (ipv6_addr_is_multicast(dest)) {
1348 ND_PRINTK2(KERN_WARNING
1349 "ICMPv6 Redirect: destination address is multicast.\n");
1353 if (ipv6_addr_equal(dest, target)) {
1355 } else if (ipv6_addr_type(target) !=
1356 (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) {
1357 ND_PRINTK2(KERN_WARNING
1358 "ICMPv6 Redirect: target address is not link-local unicast.\n");
1362 in6_dev = in6_dev_get(skb->dev);
1365 if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_redirects) {
1366 in6_dev_put(in6_dev);
1371 * The IP source address of the Redirect MUST be the same as the current
1372 * first-hop router for the specified ICMP Destination Address.
1375 if (!ndisc_parse_options((u8*)(dest + 1), optlen, &ndopts)) {
1376 ND_PRINTK2(KERN_WARNING
1377 "ICMPv6 Redirect: invalid ND options\n");
1378 in6_dev_put(in6_dev);
1381 if (ndopts.nd_opts_tgt_lladdr) {
1382 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr,
1385 ND_PRINTK2(KERN_WARNING
1386 "ICMPv6 Redirect: invalid link-layer address length\n");
1387 in6_dev_put(in6_dev);
1392 neigh = __neigh_lookup(&nd_tbl, target, skb->dev, 1);
1394 rt6_redirect(dest, &ipv6_hdr(skb)->daddr,
1395 &ipv6_hdr(skb)->saddr, neigh, lladdr,
1397 neigh_release(neigh);
1399 in6_dev_put(in6_dev);
1402 void ndisc_send_redirect(struct sk_buff *skb, struct neighbour *neigh,
1403 struct in6_addr *target)
1405 struct sock *sk = ndisc_socket->sk;
1406 int len = sizeof(struct icmp6hdr) + 2 * sizeof(struct in6_addr);
1407 struct sk_buff *buff;
1408 struct icmp6hdr *icmph;
1409 struct in6_addr saddr_buf;
1410 struct in6_addr *addrp;
1411 struct net_device *dev;
1412 struct rt6_info *rt;
1413 struct dst_entry *dst;
1414 struct inet6_dev *idev;
1420 u8 ha_buf[MAX_ADDR_LEN], *ha = NULL;
1424 if (ipv6_get_lladdr(dev, &saddr_buf, IFA_F_TENTATIVE)) {
1425 ND_PRINTK2(KERN_WARNING
1426 "ICMPv6 Redirect: no link-local address on %s\n",
1431 if (!ipv6_addr_equal(&ipv6_hdr(skb)->daddr, target) &&
1432 ipv6_addr_type(target) != (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) {
1433 ND_PRINTK2(KERN_WARNING
1434 "ICMPv6 Redirect: target address is not link-local unicast.\n");
1438 ndisc_flow_init(&fl, NDISC_REDIRECT, &saddr_buf, &ipv6_hdr(skb)->saddr,
1441 dst = ip6_route_output(NULL, &fl);
1445 err = xfrm_lookup(&dst, &fl, NULL, 0);
1449 rt = (struct rt6_info *) dst;
1451 if (rt->rt6i_flags & RTF_GATEWAY) {
1452 ND_PRINTK2(KERN_WARNING
1453 "ICMPv6 Redirect: destination is not a neighbour.\n");
1457 if (!xrlim_allow(dst, 1*HZ)) {
1462 if (dev->addr_len) {
1463 read_lock_bh(&neigh->lock);
1464 if (neigh->nud_state & NUD_VALID) {
1465 memcpy(ha_buf, neigh->ha, dev->addr_len);
1466 read_unlock_bh(&neigh->lock);
1468 len += ndisc_opt_addr_space(dev);
1470 read_unlock_bh(&neigh->lock);
1473 rd_len = min_t(unsigned int,
1474 IPV6_MIN_MTU-sizeof(struct ipv6hdr)-len, skb->len + 8);
1478 buff = sock_alloc_send_skb(sk,
1479 (MAX_HEADER + sizeof(struct ipv6hdr) +
1480 len + LL_RESERVED_SPACE(dev)),
1484 "ICMPv6 Redirect: %s() failed to allocate an skb.\n",
1492 skb_reserve(buff, LL_RESERVED_SPACE(dev));
1493 ip6_nd_hdr(sk, buff, dev, &saddr_buf, &ipv6_hdr(skb)->saddr,
1494 IPPROTO_ICMPV6, len);
1496 skb_set_transport_header(buff, skb_tail_pointer(buff) - buff->data);
1498 icmph = icmp6_hdr(buff);
1500 memset(icmph, 0, sizeof(struct icmp6hdr));
1501 icmph->icmp6_type = NDISC_REDIRECT;
1504 * copy target and destination addresses
1507 addrp = (struct in6_addr *)(icmph + 1);
1508 ipv6_addr_copy(addrp, target);
1510 ipv6_addr_copy(addrp, &ipv6_hdr(skb)->daddr);
1512 opt = (u8*) (addrp + 1);
1515 * include target_address option
1519 opt = ndisc_fill_addr_option(opt, ND_OPT_TARGET_LL_ADDR, ha,
1520 dev->addr_len, dev->type);
1523 * build redirect option and copy skb over to the new packet.
1527 *(opt++) = ND_OPT_REDIRECT_HDR;
1528 *(opt++) = (rd_len >> 3);
1531 memcpy(opt, ipv6_hdr(skb), rd_len - 8);
1533 icmph->icmp6_cksum = csum_ipv6_magic(&saddr_buf, &ipv6_hdr(skb)->saddr,
1534 len, IPPROTO_ICMPV6,
1535 csum_partial((u8 *) icmph, len, 0));
1538 idev = in6_dev_get(dst->dev);
1539 IP6_INC_STATS(idev, IPSTATS_MIB_OUTREQUESTS);
1540 err = NF_HOOK(PF_INET6, NF_IP6_LOCAL_OUT, buff, NULL, dst->dev, dst_output);
1542 ICMP6MSGOUT_INC_STATS(idev, NDISC_REDIRECT);
1543 ICMP6_INC_STATS(idev, ICMP6_MIB_OUTMSGS);
1546 if (likely(idev != NULL))
1550 static void pndisc_redo(struct sk_buff *skb)
1556 int ndisc_rcv(struct sk_buff *skb)
1560 if (!pskb_may_pull(skb, skb->len))
1563 msg = (struct nd_msg *)skb_transport_header(skb);
1565 __skb_push(skb, skb->data - skb_transport_header(skb));
1567 if (ipv6_hdr(skb)->hop_limit != 255) {
1568 ND_PRINTK2(KERN_WARNING
1569 "ICMPv6 NDISC: invalid hop-limit: %d\n",
1570 ipv6_hdr(skb)->hop_limit);
1574 if (msg->icmph.icmp6_code != 0) {
1575 ND_PRINTK2(KERN_WARNING
1576 "ICMPv6 NDISC: invalid ICMPv6 code: %d\n",
1577 msg->icmph.icmp6_code);
1581 memset(NEIGH_CB(skb), 0, sizeof(struct neighbour_cb));
1583 switch (msg->icmph.icmp6_type) {
1584 case NDISC_NEIGHBOUR_SOLICITATION:
1588 case NDISC_NEIGHBOUR_ADVERTISEMENT:
1592 case NDISC_ROUTER_SOLICITATION:
1596 case NDISC_ROUTER_ADVERTISEMENT:
1597 ndisc_router_discovery(skb);
1600 case NDISC_REDIRECT:
1601 ndisc_redirect_rcv(skb);
1608 static int ndisc_netdev_event(struct notifier_block *this, unsigned long event, void *ptr)
1610 struct net_device *dev = ptr;
1612 if (dev->nd_net != &init_net)
1616 case NETDEV_CHANGEADDR:
1617 neigh_changeaddr(&nd_tbl, dev);
1621 neigh_ifdown(&nd_tbl, dev);
1631 static struct notifier_block ndisc_netdev_notifier = {
1632 .notifier_call = ndisc_netdev_event,
1635 #ifdef CONFIG_SYSCTL
1636 static void ndisc_warn_deprecated_sysctl(struct ctl_table *ctl,
1637 const char *func, const char *dev_name)
1639 static char warncomm[TASK_COMM_LEN];
1641 if (strcmp(warncomm, current->comm) && warned < 5) {
1642 strcpy(warncomm, current->comm);
1644 "process `%s' is using deprecated sysctl (%s) "
1645 "net.ipv6.neigh.%s.%s; "
1646 "Use net.ipv6.neigh.%s.%s_ms "
1649 dev_name, ctl->procname,
1650 dev_name, ctl->procname);
1655 int ndisc_ifinfo_sysctl_change(struct ctl_table *ctl, int write, struct file * filp, void __user *buffer, size_t *lenp, loff_t *ppos)
1657 struct net_device *dev = ctl->extra1;
1658 struct inet6_dev *idev;
1661 if (ctl->ctl_name == NET_NEIGH_RETRANS_TIME ||
1662 ctl->ctl_name == NET_NEIGH_REACHABLE_TIME)
1663 ndisc_warn_deprecated_sysctl(ctl, "syscall", dev ? dev->name : "default");
1665 switch (ctl->ctl_name) {
1666 case NET_NEIGH_RETRANS_TIME:
1667 ret = proc_dointvec(ctl, write, filp, buffer, lenp, ppos);
1669 case NET_NEIGH_REACHABLE_TIME:
1670 ret = proc_dointvec_jiffies(ctl, write,
1671 filp, buffer, lenp, ppos);
1673 case NET_NEIGH_RETRANS_TIME_MS:
1674 case NET_NEIGH_REACHABLE_TIME_MS:
1675 ret = proc_dointvec_ms_jiffies(ctl, write,
1676 filp, buffer, lenp, ppos);
1682 if (write && ret == 0 && dev && (idev = in6_dev_get(dev)) != NULL) {
1683 if (ctl->ctl_name == NET_NEIGH_REACHABLE_TIME ||
1684 ctl->ctl_name == NET_NEIGH_REACHABLE_TIME_MS)
1685 idev->nd_parms->reachable_time = neigh_rand_reach_time(idev->nd_parms->base_reachable_time);
1686 idev->tstamp = jiffies;
1687 inet6_ifinfo_notify(RTM_NEWLINK, idev);
1693 static int ndisc_ifinfo_sysctl_strategy(ctl_table *ctl, int __user *name,
1694 int nlen, void __user *oldval,
1695 size_t __user *oldlenp,
1696 void __user *newval, size_t newlen)
1698 struct net_device *dev = ctl->extra1;
1699 struct inet6_dev *idev;
1702 if (ctl->ctl_name == NET_NEIGH_RETRANS_TIME ||
1703 ctl->ctl_name == NET_NEIGH_REACHABLE_TIME)
1704 ndisc_warn_deprecated_sysctl(ctl, "procfs", dev ? dev->name : "default");
1706 switch (ctl->ctl_name) {
1707 case NET_NEIGH_REACHABLE_TIME:
1708 ret = sysctl_jiffies(ctl, name, nlen,
1709 oldval, oldlenp, newval, newlen);
1711 case NET_NEIGH_RETRANS_TIME_MS:
1712 case NET_NEIGH_REACHABLE_TIME_MS:
1713 ret = sysctl_ms_jiffies(ctl, name, nlen,
1714 oldval, oldlenp, newval, newlen);
1720 if (newval && newlen && ret > 0 &&
1721 dev && (idev = in6_dev_get(dev)) != NULL) {
1722 if (ctl->ctl_name == NET_NEIGH_REACHABLE_TIME ||
1723 ctl->ctl_name == NET_NEIGH_REACHABLE_TIME_MS)
1724 idev->nd_parms->reachable_time = neigh_rand_reach_time(idev->nd_parms->base_reachable_time);
1725 idev->tstamp = jiffies;
1726 inet6_ifinfo_notify(RTM_NEWLINK, idev);
1735 int __init ndisc_init(struct net_proto_family *ops)
1737 struct ipv6_pinfo *np;
1741 err = sock_create_kern(PF_INET6, SOCK_RAW, IPPROTO_ICMPV6, &ndisc_socket);
1744 "ICMPv6 NDISC: Failed to initialize the control socket (err %d).\n",
1746 ndisc_socket = NULL; /* For safety. */
1750 sk = ndisc_socket->sk;
1752 sk->sk_allocation = GFP_ATOMIC;
1753 np->hop_limit = 255;
1754 /* Do not loopback ndisc messages */
1756 sk->sk_prot->unhash(sk);
1759 * Initialize the neighbour table
1762 neigh_table_init(&nd_tbl);
1764 #ifdef CONFIG_SYSCTL
1765 neigh_sysctl_register(NULL, &nd_tbl.parms, NET_IPV6, NET_IPV6_NEIGH,
1767 &ndisc_ifinfo_sysctl_change,
1768 &ndisc_ifinfo_sysctl_strategy);
1771 register_netdevice_notifier(&ndisc_netdev_notifier);
1775 void ndisc_cleanup(void)
1777 unregister_netdevice_notifier(&ndisc_netdev_notifier);
1778 #ifdef CONFIG_SYSCTL
1779 neigh_sysctl_unregister(&nd_tbl.parms);
1781 neigh_table_clear(&nd_tbl);
1782 sock_release(ndisc_socket);
1783 ndisc_socket = NULL; /* For safety. */