2 * Neighbour Discovery for IPv6
3 * Linux INET6 implementation
6 * Pedro Roque <roque@di.fc.ul.pt>
7 * Mike Shaver <shaver@ingenia.com>
9 * This program is free software; you can redistribute it and/or
10 * modify it under the terms of the GNU General Public License
11 * as published by the Free Software Foundation; either version
12 * 2 of the License, or (at your option) any later version.
18 * Pierre Ynard : export userland ND options
19 * through netlink (RDNSS support)
20 * Lars Fenneberg : fixed MTU setting on receipt
22 * Janos Farkas : kmalloc failure checks
23 * Alexey Kuznetsov : state machine reworked
24 * and moved to net/core.
25 * Pekka Savola : RFC2461 validation
26 * YOSHIFUJI Hideaki @USAGI : Verify ND options properly
29 /* Set to 3 to get tracing... */
32 #define ND_PRINTK(fmt, args...) do { if (net_ratelimit()) { printk(fmt, ## args); } } while(0)
33 #define ND_NOPRINTK(x...) do { ; } while(0)
34 #define ND_PRINTK0 ND_PRINTK
35 #define ND_PRINTK1 ND_NOPRINTK
36 #define ND_PRINTK2 ND_NOPRINTK
37 #define ND_PRINTK3 ND_NOPRINTK
40 #define ND_PRINTK1 ND_PRINTK
44 #define ND_PRINTK2 ND_PRINTK
48 #define ND_PRINTK3 ND_PRINTK
51 #include <linux/module.h>
52 #include <linux/errno.h>
53 #include <linux/types.h>
54 #include <linux/socket.h>
55 #include <linux/sockios.h>
56 #include <linux/sched.h>
57 #include <linux/net.h>
58 #include <linux/in6.h>
59 #include <linux/route.h>
60 #include <linux/init.h>
61 #include <linux/rcupdate.h>
63 #include <linux/sysctl.h>
66 #include <linux/if_addr.h>
67 #include <linux/if_arp.h>
68 #include <linux/ipv6.h>
69 #include <linux/icmpv6.h>
70 #include <linux/jhash.h>
76 #include <net/protocol.h>
77 #include <net/ndisc.h>
78 #include <net/ip6_route.h>
79 #include <net/addrconf.h>
82 #include <net/netlink.h>
83 #include <linux/rtnetlink.h>
86 #include <net/ip6_checksum.h>
87 #include <linux/proc_fs.h>
89 #include <linux/netfilter.h>
90 #include <linux/netfilter_ipv6.h>
92 static u32 ndisc_hash(const void *pkey, const struct net_device *dev);
93 static int ndisc_constructor(struct neighbour *neigh);
94 static void ndisc_solicit(struct neighbour *neigh, struct sk_buff *skb);
95 static void ndisc_error_report(struct neighbour *neigh, struct sk_buff *skb);
96 static int pndisc_constructor(struct pneigh_entry *n);
97 static void pndisc_destructor(struct pneigh_entry *n);
98 static void pndisc_redo(struct sk_buff *skb);
100 static struct neigh_ops ndisc_generic_ops = {
102 .solicit = ndisc_solicit,
103 .error_report = ndisc_error_report,
104 .output = neigh_resolve_output,
105 .connected_output = neigh_connected_output,
106 .hh_output = dev_queue_xmit,
107 .queue_xmit = dev_queue_xmit,
110 static struct neigh_ops ndisc_hh_ops = {
112 .solicit = ndisc_solicit,
113 .error_report = ndisc_error_report,
114 .output = neigh_resolve_output,
115 .connected_output = neigh_resolve_output,
116 .hh_output = dev_queue_xmit,
117 .queue_xmit = dev_queue_xmit,
121 static struct neigh_ops ndisc_direct_ops = {
123 .output = dev_queue_xmit,
124 .connected_output = dev_queue_xmit,
125 .hh_output = dev_queue_xmit,
126 .queue_xmit = dev_queue_xmit,
129 struct neigh_table nd_tbl = {
131 .entry_size = sizeof(struct neighbour) + sizeof(struct in6_addr),
132 .key_len = sizeof(struct in6_addr),
134 .constructor = ndisc_constructor,
135 .pconstructor = pndisc_constructor,
136 .pdestructor = pndisc_destructor,
137 .proxy_redo = pndisc_redo,
141 .base_reachable_time = 30 * HZ,
142 .retrans_time = 1 * HZ,
143 .gc_staletime = 60 * HZ,
144 .reachable_time = 30 * HZ,
145 .delay_probe_time = 5 * HZ,
149 .anycast_delay = 1 * HZ,
150 .proxy_delay = (8 * HZ) / 10,
153 .gc_interval = 30 * HZ,
160 struct ndisc_options {
161 struct nd_opt_hdr *nd_opt_array[__ND_OPT_ARRAY_MAX];
162 #ifdef CONFIG_IPV6_ROUTE_INFO
163 struct nd_opt_hdr *nd_opts_ri;
164 struct nd_opt_hdr *nd_opts_ri_end;
166 struct nd_opt_hdr *nd_useropts;
167 struct nd_opt_hdr *nd_useropts_end;
170 #define nd_opts_src_lladdr nd_opt_array[ND_OPT_SOURCE_LL_ADDR]
171 #define nd_opts_tgt_lladdr nd_opt_array[ND_OPT_TARGET_LL_ADDR]
172 #define nd_opts_pi nd_opt_array[ND_OPT_PREFIX_INFO]
173 #define nd_opts_pi_end nd_opt_array[__ND_OPT_PREFIX_INFO_END]
174 #define nd_opts_rh nd_opt_array[ND_OPT_REDIRECT_HDR]
175 #define nd_opts_mtu nd_opt_array[ND_OPT_MTU]
177 #define NDISC_OPT_SPACE(len) (((len)+2+7)&~7)
180 * Return the padding between the option length and the start of the
181 * link addr. Currently only IP-over-InfiniBand needs this, although
182 * if RFC 3831 IPv6-over-Fibre Channel is ever implemented it may
183 * also need a pad of 2.
185 static int ndisc_addr_option_pad(unsigned short type)
188 case ARPHRD_INFINIBAND: return 2;
193 static inline int ndisc_opt_addr_space(struct net_device *dev)
195 return NDISC_OPT_SPACE(dev->addr_len + ndisc_addr_option_pad(dev->type));
198 static u8 *ndisc_fill_addr_option(u8 *opt, int type, void *data, int data_len,
199 unsigned short addr_type)
201 int space = NDISC_OPT_SPACE(data_len);
202 int pad = ndisc_addr_option_pad(addr_type);
207 memset(opt + 2, 0, pad);
211 memcpy(opt+2, data, data_len);
214 if ((space -= data_len) > 0)
215 memset(opt, 0, space);
219 static struct nd_opt_hdr *ndisc_next_option(struct nd_opt_hdr *cur,
220 struct nd_opt_hdr *end)
223 if (!cur || !end || cur >= end)
225 type = cur->nd_opt_type;
227 cur = ((void *)cur) + (cur->nd_opt_len << 3);
228 } while(cur < end && cur->nd_opt_type != type);
229 return (cur <= end && cur->nd_opt_type == type ? cur : NULL);
232 static inline int ndisc_is_useropt(struct nd_opt_hdr *opt)
234 return (opt->nd_opt_type == ND_OPT_RDNSS);
237 static struct nd_opt_hdr *ndisc_next_useropt(struct nd_opt_hdr *cur,
238 struct nd_opt_hdr *end)
240 if (!cur || !end || cur >= end)
243 cur = ((void *)cur) + (cur->nd_opt_len << 3);
244 } while(cur < end && !ndisc_is_useropt(cur));
245 return (cur <= end && ndisc_is_useropt(cur) ? cur : NULL);
248 static struct ndisc_options *ndisc_parse_options(u8 *opt, int opt_len,
249 struct ndisc_options *ndopts)
251 struct nd_opt_hdr *nd_opt = (struct nd_opt_hdr *)opt;
253 if (!nd_opt || opt_len < 0 || !ndopts)
255 memset(ndopts, 0, sizeof(*ndopts));
258 if (opt_len < sizeof(struct nd_opt_hdr))
260 l = nd_opt->nd_opt_len << 3;
261 if (opt_len < l || l == 0)
263 switch (nd_opt->nd_opt_type) {
264 case ND_OPT_SOURCE_LL_ADDR:
265 case ND_OPT_TARGET_LL_ADDR:
267 case ND_OPT_REDIRECT_HDR:
268 if (ndopts->nd_opt_array[nd_opt->nd_opt_type]) {
269 ND_PRINTK2(KERN_WARNING
270 "%s(): duplicated ND6 option found: type=%d\n",
272 nd_opt->nd_opt_type);
274 ndopts->nd_opt_array[nd_opt->nd_opt_type] = nd_opt;
277 case ND_OPT_PREFIX_INFO:
278 ndopts->nd_opts_pi_end = nd_opt;
279 if (!ndopts->nd_opt_array[nd_opt->nd_opt_type])
280 ndopts->nd_opt_array[nd_opt->nd_opt_type] = nd_opt;
282 #ifdef CONFIG_IPV6_ROUTE_INFO
283 case ND_OPT_ROUTE_INFO:
284 ndopts->nd_opts_ri_end = nd_opt;
285 if (!ndopts->nd_opts_ri)
286 ndopts->nd_opts_ri = nd_opt;
290 if (ndisc_is_useropt(nd_opt)) {
291 ndopts->nd_useropts_end = nd_opt;
292 if (!ndopts->nd_useropts)
293 ndopts->nd_useropts = nd_opt;
296 * Unknown options must be silently ignored,
297 * to accommodate future extension to the
300 ND_PRINTK2(KERN_NOTICE
301 "%s(): ignored unsupported option; type=%d, len=%d\n",
303 nd_opt->nd_opt_type, nd_opt->nd_opt_len);
307 nd_opt = ((void *)nd_opt) + l;
312 static inline u8 *ndisc_opt_addr_data(struct nd_opt_hdr *p,
313 struct net_device *dev)
315 u8 *lladdr = (u8 *)(p + 1);
316 int lladdrlen = p->nd_opt_len << 3;
317 int prepad = ndisc_addr_option_pad(dev->type);
318 if (lladdrlen != NDISC_OPT_SPACE(dev->addr_len + prepad))
320 return (lladdr + prepad);
323 int ndisc_mc_map(struct in6_addr *addr, char *buf, struct net_device *dev, int dir)
327 case ARPHRD_IEEE802: /* Not sure. Check it later. --ANK */
329 ipv6_eth_mc_map(addr, buf);
331 case ARPHRD_IEEE802_TR:
332 ipv6_tr_mc_map(addr,buf);
335 ipv6_arcnet_mc_map(addr, buf);
337 case ARPHRD_INFINIBAND:
338 ipv6_ib_mc_map(addr, dev->broadcast, buf);
342 memcpy(buf, dev->broadcast, dev->addr_len);
349 EXPORT_SYMBOL(ndisc_mc_map);
351 static u32 ndisc_hash(const void *pkey, const struct net_device *dev)
353 const u32 *p32 = pkey;
357 for (i = 0; i < (sizeof(struct in6_addr) / sizeof(u32)); i++)
360 return jhash_2words(addr_hash, dev->ifindex, nd_tbl.hash_rnd);
363 static int ndisc_constructor(struct neighbour *neigh)
365 struct in6_addr *addr = (struct in6_addr*)&neigh->primary_key;
366 struct net_device *dev = neigh->dev;
367 struct inet6_dev *in6_dev;
368 struct neigh_parms *parms;
369 int is_multicast = ipv6_addr_is_multicast(addr);
372 in6_dev = in6_dev_get(dev);
373 if (in6_dev == NULL) {
378 parms = in6_dev->nd_parms;
379 __neigh_parms_put(neigh->parms);
380 neigh->parms = neigh_parms_clone(parms);
383 neigh->type = is_multicast ? RTN_MULTICAST : RTN_UNICAST;
384 if (!dev->header_ops) {
385 neigh->nud_state = NUD_NOARP;
386 neigh->ops = &ndisc_direct_ops;
387 neigh->output = neigh->ops->queue_xmit;
390 neigh->nud_state = NUD_NOARP;
391 ndisc_mc_map(addr, neigh->ha, dev, 1);
392 } else if (dev->flags&(IFF_NOARP|IFF_LOOPBACK)) {
393 neigh->nud_state = NUD_NOARP;
394 memcpy(neigh->ha, dev->dev_addr, dev->addr_len);
395 if (dev->flags&IFF_LOOPBACK)
396 neigh->type = RTN_LOCAL;
397 } else if (dev->flags&IFF_POINTOPOINT) {
398 neigh->nud_state = NUD_NOARP;
399 memcpy(neigh->ha, dev->broadcast, dev->addr_len);
401 if (dev->header_ops->cache)
402 neigh->ops = &ndisc_hh_ops;
404 neigh->ops = &ndisc_generic_ops;
405 if (neigh->nud_state&NUD_VALID)
406 neigh->output = neigh->ops->connected_output;
408 neigh->output = neigh->ops->output;
410 in6_dev_put(in6_dev);
414 static int pndisc_constructor(struct pneigh_entry *n)
416 struct in6_addr *addr = (struct in6_addr*)&n->key;
417 struct in6_addr maddr;
418 struct net_device *dev = n->dev;
420 if (dev == NULL || __in6_dev_get(dev) == NULL)
422 addrconf_addr_solict_mult(addr, &maddr);
423 ipv6_dev_mc_inc(dev, &maddr);
427 static void pndisc_destructor(struct pneigh_entry *n)
429 struct in6_addr *addr = (struct in6_addr*)&n->key;
430 struct in6_addr maddr;
431 struct net_device *dev = n->dev;
433 if (dev == NULL || __in6_dev_get(dev) == NULL)
435 addrconf_addr_solict_mult(addr, &maddr);
436 ipv6_dev_mc_dec(dev, &maddr);
440 * Send a Neighbour Advertisement
442 static void __ndisc_send(struct net_device *dev,
443 struct neighbour *neigh,
444 struct in6_addr *daddr, struct in6_addr *saddr,
445 struct icmp6hdr *icmp6h, struct in6_addr *target,
449 struct dst_entry *dst;
450 struct net *net = dev->nd_net;
451 struct sock *sk = net->ipv6.ndisc_sk;
453 struct icmp6hdr *hdr;
454 struct inet6_dev *idev;
459 type = icmp6h->icmp6_type;
461 icmpv6_flow_init(sk, &fl, type, saddr, daddr, dev->ifindex);
463 dst = icmp6_dst_alloc(dev, neigh, daddr);
467 err = xfrm_lookup(&dst, &fl, NULL, 0);
474 len = sizeof(struct icmp6hdr) + (target ? sizeof(*target) : 0);
476 len += ndisc_opt_addr_space(dev);
478 skb = sock_alloc_send_skb(sk,
479 (MAX_HEADER + sizeof(struct ipv6hdr) +
480 len + LL_RESERVED_SPACE(dev)),
484 "ICMPv6 ND: %s() failed to allocate an skb.\n",
490 skb_reserve(skb, LL_RESERVED_SPACE(dev));
491 ip6_nd_hdr(sk, skb, dev, saddr, daddr, IPPROTO_ICMPV6, len);
493 skb->transport_header = skb->tail;
496 hdr = (struct icmp6hdr *)skb_transport_header(skb);
497 memcpy(hdr, icmp6h, sizeof(*hdr));
499 opt = skb_transport_header(skb) + sizeof(struct icmp6hdr);
501 ipv6_addr_copy((struct in6_addr *)opt, target);
502 opt += sizeof(*target);
506 ndisc_fill_addr_option(opt, llinfo, dev->dev_addr,
507 dev->addr_len, dev->type);
509 hdr->icmp6_cksum = csum_ipv6_magic(saddr, daddr, len,
511 csum_partial((__u8 *) hdr,
516 idev = in6_dev_get(dst->dev);
517 IP6_INC_STATS(idev, IPSTATS_MIB_OUTREQUESTS);
519 err = NF_HOOK(PF_INET6, NF_INET_LOCAL_OUT, skb, NULL, dst->dev,
522 ICMP6MSGOUT_INC_STATS(idev, type);
523 ICMP6_INC_STATS(idev, ICMP6_MIB_OUTMSGS);
526 if (likely(idev != NULL))
530 static void ndisc_send_na(struct net_device *dev, struct neighbour *neigh,
531 struct in6_addr *daddr, struct in6_addr *solicited_addr,
532 int router, int solicited, int override, int inc_opt)
534 struct in6_addr tmpaddr;
535 struct inet6_ifaddr *ifp;
536 struct in6_addr *src_addr;
537 struct icmp6hdr icmp6h = {
538 .icmp6_type = NDISC_NEIGHBOUR_ADVERTISEMENT,
541 /* for anycast or proxy, solicited_addr != src_addr */
542 ifp = ipv6_get_ifaddr(dev->nd_net, solicited_addr, dev, 1);
544 src_addr = solicited_addr;
545 if (ifp->flags & IFA_F_OPTIMISTIC)
549 if (ipv6_dev_get_saddr(dev, daddr, &tmpaddr))
554 icmp6h.icmp6_router = router;
555 icmp6h.icmp6_solicited = solicited;
556 icmp6h.icmp6_override = override;
558 __ndisc_send(dev, neigh, daddr, src_addr,
559 &icmp6h, solicited_addr,
560 inc_opt ? ND_OPT_TARGET_LL_ADDR : 0);
563 void ndisc_send_ns(struct net_device *dev, struct neighbour *neigh,
564 struct in6_addr *solicit,
565 struct in6_addr *daddr, struct in6_addr *saddr)
567 struct in6_addr addr_buf;
568 struct icmp6hdr icmp6h = {
569 .icmp6_type = NDISC_NEIGHBOUR_SOLICITATION,
573 if (ipv6_get_lladdr(dev, &addr_buf,
574 (IFA_F_TENTATIVE|IFA_F_OPTIMISTIC)))
579 __ndisc_send(dev, neigh, daddr, saddr,
581 !ipv6_addr_any(saddr) ? ND_OPT_SOURCE_LL_ADDR : 0);
584 void ndisc_send_rs(struct net_device *dev, struct in6_addr *saddr,
585 struct in6_addr *daddr)
587 struct icmp6hdr icmp6h = {
588 .icmp6_type = NDISC_ROUTER_SOLICITATION,
590 int send_sllao = dev->addr_len;
592 #ifdef CONFIG_IPV6_OPTIMISTIC_DAD
594 * According to section 2.2 of RFC 4429, we must not
595 * send router solicitations with a sllao from
596 * optimistic addresses, but we may send the solicitation
597 * if we don't include the sllao. So here we check
598 * if our address is optimistic, and if so, we
599 * suppress the inclusion of the sllao.
602 struct inet6_ifaddr *ifp = ipv6_get_ifaddr(dev->nd_net, saddr,
605 if (ifp->flags & IFA_F_OPTIMISTIC) {
614 __ndisc_send(dev, NULL, daddr, saddr,
616 send_sllao ? ND_OPT_SOURCE_LL_ADDR : 0);
620 static void ndisc_error_report(struct neighbour *neigh, struct sk_buff *skb)
623 * "The sender MUST return an ICMP
624 * destination unreachable"
626 dst_link_failure(skb);
630 /* Called with locked neigh: either read or both */
632 static void ndisc_solicit(struct neighbour *neigh, struct sk_buff *skb)
634 struct in6_addr *saddr = NULL;
635 struct in6_addr mcaddr;
636 struct net_device *dev = neigh->dev;
637 struct in6_addr *target = (struct in6_addr *)&neigh->primary_key;
638 int probes = atomic_read(&neigh->probes);
640 if (skb && ipv6_chk_addr(dev->nd_net, &ipv6_hdr(skb)->saddr, dev, 1))
641 saddr = &ipv6_hdr(skb)->saddr;
643 if ((probes -= neigh->parms->ucast_probes) < 0) {
644 if (!(neigh->nud_state & NUD_VALID)) {
645 ND_PRINTK1(KERN_DEBUG
646 "%s(): trying to ucast probe in NUD_INVALID: "
651 ndisc_send_ns(dev, neigh, target, target, saddr);
652 } else if ((probes -= neigh->parms->app_probes) < 0) {
657 addrconf_addr_solict_mult(target, &mcaddr);
658 ndisc_send_ns(dev, NULL, target, &mcaddr, saddr);
662 static void ndisc_recv_ns(struct sk_buff *skb)
664 struct nd_msg *msg = (struct nd_msg *)skb_transport_header(skb);
665 struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
666 struct in6_addr *daddr = &ipv6_hdr(skb)->daddr;
668 u32 ndoptlen = skb->tail - (skb->transport_header +
669 offsetof(struct nd_msg, opt));
670 struct ndisc_options ndopts;
671 struct net_device *dev = skb->dev;
672 struct inet6_ifaddr *ifp;
673 struct inet6_dev *idev = NULL;
674 struct neighbour *neigh;
675 struct pneigh_entry *pneigh = NULL;
676 int dad = ipv6_addr_any(saddr);
680 if (ipv6_addr_is_multicast(&msg->target)) {
681 ND_PRINTK2(KERN_WARNING
682 "ICMPv6 NS: multicast target address");
688 * DAD has to be destined for solicited node multicast address.
691 !(daddr->s6_addr32[0] == htonl(0xff020000) &&
692 daddr->s6_addr32[1] == htonl(0x00000000) &&
693 daddr->s6_addr32[2] == htonl(0x00000001) &&
694 daddr->s6_addr [12] == 0xff )) {
695 ND_PRINTK2(KERN_WARNING
696 "ICMPv6 NS: bad DAD packet (wrong destination)\n");
700 if (!ndisc_parse_options(msg->opt, ndoptlen, &ndopts)) {
701 ND_PRINTK2(KERN_WARNING
702 "ICMPv6 NS: invalid ND options\n");
706 if (ndopts.nd_opts_src_lladdr) {
707 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr, dev);
709 ND_PRINTK2(KERN_WARNING
710 "ICMPv6 NS: invalid link-layer address length\n");
715 * If the IP source address is the unspecified address,
716 * there MUST NOT be source link-layer address option
720 ND_PRINTK2(KERN_WARNING
721 "ICMPv6 NS: bad DAD packet (link-layer address option)\n");
726 inc = ipv6_addr_is_multicast(daddr);
728 ifp = ipv6_get_ifaddr(dev->nd_net, &msg->target, dev, 1);
731 if (ifp->flags & (IFA_F_TENTATIVE|IFA_F_OPTIMISTIC)) {
733 if (dev->type == ARPHRD_IEEE802_TR) {
734 const unsigned char *sadr;
735 sadr = skb_mac_header(skb);
736 if (((sadr[8] ^ dev->dev_addr[0]) & 0x7f) == 0 &&
737 sadr[9] == dev->dev_addr[1] &&
738 sadr[10] == dev->dev_addr[2] &&
739 sadr[11] == dev->dev_addr[3] &&
740 sadr[12] == dev->dev_addr[4] &&
741 sadr[13] == dev->dev_addr[5]) {
742 /* looped-back to us */
748 * We are colliding with another node
750 * so fail our DAD process
752 addrconf_dad_failure(ifp);
756 * This is not a dad solicitation.
757 * If we are an optimistic node,
759 * Otherwise, we should ignore it.
761 if (!(ifp->flags & IFA_F_OPTIMISTIC))
768 idev = in6_dev_get(dev);
770 /* XXX: count this drop? */
774 if (ipv6_chk_acast_addr(dev, &msg->target) ||
775 (idev->cnf.forwarding &&
776 (ipv6_devconf.proxy_ndp || idev->cnf.proxy_ndp) &&
777 (pneigh = pneigh_lookup(&nd_tbl, dev->nd_net,
778 &msg->target, dev, 0)) != NULL)) {
779 if (!(NEIGH_CB(skb)->flags & LOCALLY_ENQUEUED) &&
780 skb->pkt_type != PACKET_HOST &&
782 idev->nd_parms->proxy_delay != 0) {
784 * for anycast or proxy,
785 * sender should delay its response
786 * by a random time between 0 and
787 * MAX_ANYCAST_DELAY_TIME seconds.
788 * (RFC2461) -- yoshfuji
790 struct sk_buff *n = skb_clone(skb, GFP_ATOMIC);
792 pneigh_enqueue(&nd_tbl, idev->nd_parms, n);
799 is_router = !!(pneigh ? pneigh->flags & NTF_ROUTER : idev->cnf.forwarding);
802 struct in6_addr maddr;
804 ipv6_addr_all_nodes(&maddr);
805 ndisc_send_na(dev, NULL, &maddr, &msg->target,
806 is_router, 0, (ifp != NULL), 1);
811 NEIGH_CACHE_STAT_INC(&nd_tbl, rcv_probes_mcast);
813 NEIGH_CACHE_STAT_INC(&nd_tbl, rcv_probes_ucast);
816 * update / create cache entry
817 * for the source address
819 neigh = __neigh_lookup(&nd_tbl, saddr, dev,
820 !inc || lladdr || !dev->addr_len);
822 neigh_update(neigh, lladdr, NUD_STALE,
823 NEIGH_UPDATE_F_WEAK_OVERRIDE|
824 NEIGH_UPDATE_F_OVERRIDE);
825 if (neigh || !dev->header_ops) {
826 ndisc_send_na(dev, neigh, saddr, &msg->target,
828 1, (ifp != NULL && inc), inc);
830 neigh_release(neigh);
842 static void ndisc_recv_na(struct sk_buff *skb)
844 struct nd_msg *msg = (struct nd_msg *)skb_transport_header(skb);
845 struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
846 struct in6_addr *daddr = &ipv6_hdr(skb)->daddr;
848 u32 ndoptlen = skb->tail - (skb->transport_header +
849 offsetof(struct nd_msg, opt));
850 struct ndisc_options ndopts;
851 struct net_device *dev = skb->dev;
852 struct inet6_ifaddr *ifp;
853 struct neighbour *neigh;
855 if (skb->len < sizeof(struct nd_msg)) {
856 ND_PRINTK2(KERN_WARNING
857 "ICMPv6 NA: packet too short\n");
861 if (ipv6_addr_is_multicast(&msg->target)) {
862 ND_PRINTK2(KERN_WARNING
863 "ICMPv6 NA: target address is multicast.\n");
867 if (ipv6_addr_is_multicast(daddr) &&
868 msg->icmph.icmp6_solicited) {
869 ND_PRINTK2(KERN_WARNING
870 "ICMPv6 NA: solicited NA is multicasted.\n");
874 if (!ndisc_parse_options(msg->opt, ndoptlen, &ndopts)) {
875 ND_PRINTK2(KERN_WARNING
876 "ICMPv6 NS: invalid ND option\n");
879 if (ndopts.nd_opts_tgt_lladdr) {
880 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr, dev);
882 ND_PRINTK2(KERN_WARNING
883 "ICMPv6 NA: invalid link-layer address length\n");
887 ifp = ipv6_get_ifaddr(dev->nd_net, &msg->target, dev, 1);
889 if (ifp->flags & IFA_F_TENTATIVE) {
890 addrconf_dad_failure(ifp);
893 /* What should we make now? The advertisement
894 is invalid, but ndisc specs say nothing
895 about it. It could be misconfiguration, or
896 an smart proxy agent tries to help us :-)
898 ND_PRINTK1(KERN_WARNING
899 "ICMPv6 NA: someone advertises our address on %s!\n",
900 ifp->idev->dev->name);
904 neigh = neigh_lookup(&nd_tbl, &msg->target, dev);
907 u8 old_flags = neigh->flags;
909 if (neigh->nud_state & NUD_FAILED)
913 * Don't update the neighbor cache entry on a proxy NA from
914 * ourselves because either the proxied node is off link or it
915 * has already sent a NA to us.
917 if (lladdr && !memcmp(lladdr, dev->dev_addr, dev->addr_len) &&
918 ipv6_devconf.forwarding && ipv6_devconf.proxy_ndp &&
919 pneigh_lookup(&nd_tbl, dev->nd_net, &msg->target, dev, 0)) {
920 /* XXX: idev->cnf.prixy_ndp */
924 neigh_update(neigh, lladdr,
925 msg->icmph.icmp6_solicited ? NUD_REACHABLE : NUD_STALE,
926 NEIGH_UPDATE_F_WEAK_OVERRIDE|
927 (msg->icmph.icmp6_override ? NEIGH_UPDATE_F_OVERRIDE : 0)|
928 NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
929 (msg->icmph.icmp6_router ? NEIGH_UPDATE_F_ISROUTER : 0));
931 if ((old_flags & ~neigh->flags) & NTF_ROUTER) {
933 * Change: router to host
936 rt = rt6_get_dflt_router(saddr, dev);
942 neigh_release(neigh);
946 static void ndisc_recv_rs(struct sk_buff *skb)
948 struct rs_msg *rs_msg = (struct rs_msg *)skb_transport_header(skb);
949 unsigned long ndoptlen = skb->len - sizeof(*rs_msg);
950 struct neighbour *neigh;
951 struct inet6_dev *idev;
952 struct in6_addr *saddr = &ipv6_hdr(skb)->saddr;
953 struct ndisc_options ndopts;
956 if (skb->len < sizeof(*rs_msg))
959 idev = in6_dev_get(skb->dev);
962 ND_PRINTK1("ICMP6 RS: can't find in6 device\n");
966 /* Don't accept RS if we're not in router mode */
967 if (!idev->cnf.forwarding)
971 * Don't update NCE if src = ::;
972 * this implies that the source node has no ip address assigned yet.
974 if (ipv6_addr_any(saddr))
977 /* Parse ND options */
978 if (!ndisc_parse_options(rs_msg->opt, ndoptlen, &ndopts)) {
980 ND_PRINTK2("ICMP6 NS: invalid ND option, ignored\n");
984 if (ndopts.nd_opts_src_lladdr) {
985 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr,
991 neigh = __neigh_lookup(&nd_tbl, saddr, skb->dev, 1);
993 neigh_update(neigh, lladdr, NUD_STALE,
994 NEIGH_UPDATE_F_WEAK_OVERRIDE|
995 NEIGH_UPDATE_F_OVERRIDE|
996 NEIGH_UPDATE_F_OVERRIDE_ISROUTER);
997 neigh_release(neigh);
1003 static void ndisc_ra_useropt(struct sk_buff *ra, struct nd_opt_hdr *opt)
1005 struct icmp6hdr *icmp6h = (struct icmp6hdr *)skb_transport_header(ra);
1006 struct sk_buff *skb;
1007 struct nlmsghdr *nlh;
1008 struct nduseroptmsg *ndmsg;
1009 struct net *net = ra->dev->nd_net;
1011 int base_size = NLMSG_ALIGN(sizeof(struct nduseroptmsg)
1012 + (opt->nd_opt_len << 3));
1013 size_t msg_size = base_size + nla_total_size(sizeof(struct in6_addr));
1015 skb = nlmsg_new(msg_size, GFP_ATOMIC);
1021 nlh = nlmsg_put(skb, 0, 0, RTM_NEWNDUSEROPT, base_size, 0);
1023 goto nla_put_failure;
1026 ndmsg = nlmsg_data(nlh);
1027 ndmsg->nduseropt_family = AF_INET6;
1028 ndmsg->nduseropt_ifindex = ra->dev->ifindex;
1029 ndmsg->nduseropt_icmp_type = icmp6h->icmp6_type;
1030 ndmsg->nduseropt_icmp_code = icmp6h->icmp6_code;
1031 ndmsg->nduseropt_opts_len = opt->nd_opt_len << 3;
1033 memcpy(ndmsg + 1, opt, opt->nd_opt_len << 3);
1035 NLA_PUT(skb, NDUSEROPT_SRCADDR, sizeof(struct in6_addr),
1036 &ipv6_hdr(ra)->saddr);
1037 nlmsg_end(skb, nlh);
1039 err = rtnl_notify(skb, net, 0, RTNLGRP_ND_USEROPT, NULL,
1050 rtnl_set_sk_err(net, RTNLGRP_ND_USEROPT, err);
1053 static void ndisc_router_discovery(struct sk_buff *skb)
1055 struct ra_msg *ra_msg = (struct ra_msg *)skb_transport_header(skb);
1056 struct neighbour *neigh = NULL;
1057 struct inet6_dev *in6_dev;
1058 struct rt6_info *rt = NULL;
1060 struct ndisc_options ndopts;
1062 unsigned int pref = 0;
1064 __u8 * opt = (__u8 *)(ra_msg + 1);
1066 optlen = (skb->tail - skb->transport_header) - sizeof(struct ra_msg);
1068 if (!(ipv6_addr_type(&ipv6_hdr(skb)->saddr) & IPV6_ADDR_LINKLOCAL)) {
1069 ND_PRINTK2(KERN_WARNING
1070 "ICMPv6 RA: source address is not link-local.\n");
1074 ND_PRINTK2(KERN_WARNING
1075 "ICMPv6 RA: packet too short\n");
1080 * set the RA_RECV flag in the interface
1083 in6_dev = in6_dev_get(skb->dev);
1084 if (in6_dev == NULL) {
1086 "ICMPv6 RA: can't find inet6 device for %s.\n",
1090 if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_ra) {
1091 in6_dev_put(in6_dev);
1095 if (!ndisc_parse_options(opt, optlen, &ndopts)) {
1096 in6_dev_put(in6_dev);
1097 ND_PRINTK2(KERN_WARNING
1098 "ICMP6 RA: invalid ND options\n");
1102 if (in6_dev->if_flags & IF_RS_SENT) {
1104 * flag that an RA was received after an RS was sent
1105 * out on this interface.
1107 in6_dev->if_flags |= IF_RA_RCVD;
1111 * Remember the managed/otherconf flags from most recently
1112 * received RA message (RFC 2462) -- yoshfuji
1114 in6_dev->if_flags = (in6_dev->if_flags & ~(IF_RA_MANAGED |
1116 (ra_msg->icmph.icmp6_addrconf_managed ?
1117 IF_RA_MANAGED : 0) |
1118 (ra_msg->icmph.icmp6_addrconf_other ?
1119 IF_RA_OTHERCONF : 0);
1121 if (!in6_dev->cnf.accept_ra_defrtr)
1124 lifetime = ntohs(ra_msg->icmph.icmp6_rt_lifetime);
1126 #ifdef CONFIG_IPV6_ROUTER_PREF
1127 pref = ra_msg->icmph.icmp6_router_pref;
1128 /* 10b is handled as if it were 00b (medium) */
1129 if (pref == ICMPV6_ROUTER_PREF_INVALID ||
1130 !in6_dev->cnf.accept_ra_rtr_pref)
1131 pref = ICMPV6_ROUTER_PREF_MEDIUM;
1134 rt = rt6_get_dflt_router(&ipv6_hdr(skb)->saddr, skb->dev);
1137 neigh = rt->rt6i_nexthop;
1139 if (rt && lifetime == 0) {
1145 if (rt == NULL && lifetime) {
1146 ND_PRINTK3(KERN_DEBUG
1147 "ICMPv6 RA: adding default router.\n");
1149 rt = rt6_add_dflt_router(&ipv6_hdr(skb)->saddr, skb->dev, pref);
1152 "ICMPv6 RA: %s() failed to add default route.\n",
1154 in6_dev_put(in6_dev);
1158 neigh = rt->rt6i_nexthop;
1159 if (neigh == NULL) {
1161 "ICMPv6 RA: %s() got default router without neighbour.\n",
1163 dst_release(&rt->u.dst);
1164 in6_dev_put(in6_dev);
1167 neigh->flags |= NTF_ROUTER;
1169 rt->rt6i_flags |= (rt->rt6i_flags & ~RTF_PREF_MASK) | RTF_PREF(pref);
1173 rt->rt6i_expires = jiffies + (HZ * lifetime);
1175 if (ra_msg->icmph.icmp6_hop_limit) {
1176 in6_dev->cnf.hop_limit = ra_msg->icmph.icmp6_hop_limit;
1178 rt->u.dst.metrics[RTAX_HOPLIMIT-1] = ra_msg->icmph.icmp6_hop_limit;
1184 * Update Reachable Time and Retrans Timer
1187 if (in6_dev->nd_parms) {
1188 unsigned long rtime = ntohl(ra_msg->retrans_timer);
1190 if (rtime && rtime/1000 < MAX_SCHEDULE_TIMEOUT/HZ) {
1191 rtime = (rtime*HZ)/1000;
1194 in6_dev->nd_parms->retrans_time = rtime;
1195 in6_dev->tstamp = jiffies;
1196 inet6_ifinfo_notify(RTM_NEWLINK, in6_dev);
1199 rtime = ntohl(ra_msg->reachable_time);
1200 if (rtime && rtime/1000 < MAX_SCHEDULE_TIMEOUT/(3*HZ)) {
1201 rtime = (rtime*HZ)/1000;
1206 if (rtime != in6_dev->nd_parms->base_reachable_time) {
1207 in6_dev->nd_parms->base_reachable_time = rtime;
1208 in6_dev->nd_parms->gc_staletime = 3 * rtime;
1209 in6_dev->nd_parms->reachable_time = neigh_rand_reach_time(rtime);
1210 in6_dev->tstamp = jiffies;
1211 inet6_ifinfo_notify(RTM_NEWLINK, in6_dev);
1221 neigh = __neigh_lookup(&nd_tbl, &ipv6_hdr(skb)->saddr,
1225 if (ndopts.nd_opts_src_lladdr) {
1226 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_src_lladdr,
1229 ND_PRINTK2(KERN_WARNING
1230 "ICMPv6 RA: invalid link-layer address length\n");
1234 neigh_update(neigh, lladdr, NUD_STALE,
1235 NEIGH_UPDATE_F_WEAK_OVERRIDE|
1236 NEIGH_UPDATE_F_OVERRIDE|
1237 NEIGH_UPDATE_F_OVERRIDE_ISROUTER|
1238 NEIGH_UPDATE_F_ISROUTER);
1241 #ifdef CONFIG_IPV6_ROUTE_INFO
1242 if (in6_dev->cnf.accept_ra_rtr_pref && ndopts.nd_opts_ri) {
1243 struct nd_opt_hdr *p;
1244 for (p = ndopts.nd_opts_ri;
1246 p = ndisc_next_option(p, ndopts.nd_opts_ri_end)) {
1247 if (((struct route_info *)p)->prefix_len > in6_dev->cnf.accept_ra_rt_info_max_plen)
1249 rt6_route_rcv(skb->dev, (u8*)p, (p->nd_opt_len) << 3,
1250 &ipv6_hdr(skb)->saddr);
1255 if (in6_dev->cnf.accept_ra_pinfo && ndopts.nd_opts_pi) {
1256 struct nd_opt_hdr *p;
1257 for (p = ndopts.nd_opts_pi;
1259 p = ndisc_next_option(p, ndopts.nd_opts_pi_end)) {
1260 addrconf_prefix_rcv(skb->dev, (u8*)p, (p->nd_opt_len) << 3);
1264 if (ndopts.nd_opts_mtu) {
1268 memcpy(&n, ((u8*)(ndopts.nd_opts_mtu+1))+2, sizeof(mtu));
1271 if (mtu < IPV6_MIN_MTU || mtu > skb->dev->mtu) {
1272 ND_PRINTK2(KERN_WARNING
1273 "ICMPv6 RA: invalid mtu: %d\n",
1275 } else if (in6_dev->cnf.mtu6 != mtu) {
1276 in6_dev->cnf.mtu6 = mtu;
1279 rt->u.dst.metrics[RTAX_MTU-1] = mtu;
1281 rt6_mtu_change(skb->dev, mtu);
1285 if (ndopts.nd_useropts) {
1286 struct nd_opt_hdr *p;
1287 for (p = ndopts.nd_useropts;
1289 p = ndisc_next_useropt(p, ndopts.nd_useropts_end)) {
1290 ndisc_ra_useropt(skb, p);
1294 if (ndopts.nd_opts_tgt_lladdr || ndopts.nd_opts_rh) {
1295 ND_PRINTK2(KERN_WARNING
1296 "ICMPv6 RA: invalid RA options");
1300 dst_release(&rt->u.dst);
1302 neigh_release(neigh);
1303 in6_dev_put(in6_dev);
1306 static void ndisc_redirect_rcv(struct sk_buff *skb)
1308 struct inet6_dev *in6_dev;
1309 struct icmp6hdr *icmph;
1310 struct in6_addr *dest;
1311 struct in6_addr *target; /* new first hop to destination */
1312 struct neighbour *neigh;
1314 struct ndisc_options ndopts;
1318 if (!(ipv6_addr_type(&ipv6_hdr(skb)->saddr) & IPV6_ADDR_LINKLOCAL)) {
1319 ND_PRINTK2(KERN_WARNING
1320 "ICMPv6 Redirect: source address is not link-local.\n");
1324 optlen = skb->tail - skb->transport_header;
1325 optlen -= sizeof(struct icmp6hdr) + 2 * sizeof(struct in6_addr);
1328 ND_PRINTK2(KERN_WARNING
1329 "ICMPv6 Redirect: packet too short\n");
1333 icmph = icmp6_hdr(skb);
1334 target = (struct in6_addr *) (icmph + 1);
1337 if (ipv6_addr_is_multicast(dest)) {
1338 ND_PRINTK2(KERN_WARNING
1339 "ICMPv6 Redirect: destination address is multicast.\n");
1343 if (ipv6_addr_equal(dest, target)) {
1345 } else if (ipv6_addr_type(target) !=
1346 (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) {
1347 ND_PRINTK2(KERN_WARNING
1348 "ICMPv6 Redirect: target address is not link-local unicast.\n");
1352 in6_dev = in6_dev_get(skb->dev);
1355 if (in6_dev->cnf.forwarding || !in6_dev->cnf.accept_redirects) {
1356 in6_dev_put(in6_dev);
1361 * The IP source address of the Redirect MUST be the same as the current
1362 * first-hop router for the specified ICMP Destination Address.
1365 if (!ndisc_parse_options((u8*)(dest + 1), optlen, &ndopts)) {
1366 ND_PRINTK2(KERN_WARNING
1367 "ICMPv6 Redirect: invalid ND options\n");
1368 in6_dev_put(in6_dev);
1371 if (ndopts.nd_opts_tgt_lladdr) {
1372 lladdr = ndisc_opt_addr_data(ndopts.nd_opts_tgt_lladdr,
1375 ND_PRINTK2(KERN_WARNING
1376 "ICMPv6 Redirect: invalid link-layer address length\n");
1377 in6_dev_put(in6_dev);
1382 neigh = __neigh_lookup(&nd_tbl, target, skb->dev, 1);
1384 rt6_redirect(dest, &ipv6_hdr(skb)->daddr,
1385 &ipv6_hdr(skb)->saddr, neigh, lladdr,
1387 neigh_release(neigh);
1389 in6_dev_put(in6_dev);
1392 void ndisc_send_redirect(struct sk_buff *skb, struct neighbour *neigh,
1393 struct in6_addr *target)
1395 struct net_device *dev = skb->dev;
1396 struct net *net = dev->nd_net;
1397 struct sock *sk = net->ipv6.ndisc_sk;
1398 int len = sizeof(struct icmp6hdr) + 2 * sizeof(struct in6_addr);
1399 struct sk_buff *buff;
1400 struct icmp6hdr *icmph;
1401 struct in6_addr saddr_buf;
1402 struct in6_addr *addrp;
1403 struct rt6_info *rt;
1404 struct dst_entry *dst;
1405 struct inet6_dev *idev;
1411 u8 ha_buf[MAX_ADDR_LEN], *ha = NULL;
1413 if (ipv6_get_lladdr(dev, &saddr_buf, IFA_F_TENTATIVE)) {
1414 ND_PRINTK2(KERN_WARNING
1415 "ICMPv6 Redirect: no link-local address on %s\n",
1420 if (!ipv6_addr_equal(&ipv6_hdr(skb)->daddr, target) &&
1421 ipv6_addr_type(target) != (IPV6_ADDR_UNICAST|IPV6_ADDR_LINKLOCAL)) {
1422 ND_PRINTK2(KERN_WARNING
1423 "ICMPv6 Redirect: target address is not link-local unicast.\n");
1427 icmpv6_flow_init(sk, &fl, NDISC_REDIRECT,
1428 &saddr_buf, &ipv6_hdr(skb)->saddr, dev->ifindex);
1430 dst = ip6_route_output(net, NULL, &fl);
1434 err = xfrm_lookup(&dst, &fl, NULL, 0);
1438 rt = (struct rt6_info *) dst;
1440 if (rt->rt6i_flags & RTF_GATEWAY) {
1441 ND_PRINTK2(KERN_WARNING
1442 "ICMPv6 Redirect: destination is not a neighbour.\n");
1446 if (!xrlim_allow(dst, 1*HZ)) {
1451 if (dev->addr_len) {
1452 read_lock_bh(&neigh->lock);
1453 if (neigh->nud_state & NUD_VALID) {
1454 memcpy(ha_buf, neigh->ha, dev->addr_len);
1455 read_unlock_bh(&neigh->lock);
1457 len += ndisc_opt_addr_space(dev);
1459 read_unlock_bh(&neigh->lock);
1462 rd_len = min_t(unsigned int,
1463 IPV6_MIN_MTU-sizeof(struct ipv6hdr)-len, skb->len + 8);
1467 buff = sock_alloc_send_skb(sk,
1468 (MAX_HEADER + sizeof(struct ipv6hdr) +
1469 len + LL_RESERVED_SPACE(dev)),
1473 "ICMPv6 Redirect: %s() failed to allocate an skb.\n",
1481 skb_reserve(buff, LL_RESERVED_SPACE(dev));
1482 ip6_nd_hdr(sk, buff, dev, &saddr_buf, &ipv6_hdr(skb)->saddr,
1483 IPPROTO_ICMPV6, len);
1485 skb_set_transport_header(buff, skb_tail_pointer(buff) - buff->data);
1487 icmph = icmp6_hdr(buff);
1489 memset(icmph, 0, sizeof(struct icmp6hdr));
1490 icmph->icmp6_type = NDISC_REDIRECT;
1493 * copy target and destination addresses
1496 addrp = (struct in6_addr *)(icmph + 1);
1497 ipv6_addr_copy(addrp, target);
1499 ipv6_addr_copy(addrp, &ipv6_hdr(skb)->daddr);
1501 opt = (u8*) (addrp + 1);
1504 * include target_address option
1508 opt = ndisc_fill_addr_option(opt, ND_OPT_TARGET_LL_ADDR, ha,
1509 dev->addr_len, dev->type);
1512 * build redirect option and copy skb over to the new packet.
1516 *(opt++) = ND_OPT_REDIRECT_HDR;
1517 *(opt++) = (rd_len >> 3);
1520 memcpy(opt, ipv6_hdr(skb), rd_len - 8);
1522 icmph->icmp6_cksum = csum_ipv6_magic(&saddr_buf, &ipv6_hdr(skb)->saddr,
1523 len, IPPROTO_ICMPV6,
1524 csum_partial((u8 *) icmph, len, 0));
1527 idev = in6_dev_get(dst->dev);
1528 IP6_INC_STATS(idev, IPSTATS_MIB_OUTREQUESTS);
1529 err = NF_HOOK(PF_INET6, NF_INET_LOCAL_OUT, buff, NULL, dst->dev,
1532 ICMP6MSGOUT_INC_STATS(idev, NDISC_REDIRECT);
1533 ICMP6_INC_STATS(idev, ICMP6_MIB_OUTMSGS);
1536 if (likely(idev != NULL))
1540 static void pndisc_redo(struct sk_buff *skb)
1546 int ndisc_rcv(struct sk_buff *skb)
1550 if (!pskb_may_pull(skb, skb->len))
1553 msg = (struct nd_msg *)skb_transport_header(skb);
1555 __skb_push(skb, skb->data - skb_transport_header(skb));
1557 if (ipv6_hdr(skb)->hop_limit != 255) {
1558 ND_PRINTK2(KERN_WARNING
1559 "ICMPv6 NDISC: invalid hop-limit: %d\n",
1560 ipv6_hdr(skb)->hop_limit);
1564 if (msg->icmph.icmp6_code != 0) {
1565 ND_PRINTK2(KERN_WARNING
1566 "ICMPv6 NDISC: invalid ICMPv6 code: %d\n",
1567 msg->icmph.icmp6_code);
1571 memset(NEIGH_CB(skb), 0, sizeof(struct neighbour_cb));
1573 switch (msg->icmph.icmp6_type) {
1574 case NDISC_NEIGHBOUR_SOLICITATION:
1578 case NDISC_NEIGHBOUR_ADVERTISEMENT:
1582 case NDISC_ROUTER_SOLICITATION:
1586 case NDISC_ROUTER_ADVERTISEMENT:
1587 ndisc_router_discovery(skb);
1590 case NDISC_REDIRECT:
1591 ndisc_redirect_rcv(skb);
1598 static int ndisc_netdev_event(struct notifier_block *this, unsigned long event, void *ptr)
1600 struct net_device *dev = ptr;
1601 struct net *net = dev->nd_net;
1604 case NETDEV_CHANGEADDR:
1605 neigh_changeaddr(&nd_tbl, dev);
1606 fib6_run_gc(~0UL, net);
1609 neigh_ifdown(&nd_tbl, dev);
1610 fib6_run_gc(~0UL, net);
1619 static struct notifier_block ndisc_netdev_notifier = {
1620 .notifier_call = ndisc_netdev_event,
1623 #ifdef CONFIG_SYSCTL
1624 static void ndisc_warn_deprecated_sysctl(struct ctl_table *ctl,
1625 const char *func, const char *dev_name)
1627 static char warncomm[TASK_COMM_LEN];
1629 if (strcmp(warncomm, current->comm) && warned < 5) {
1630 strcpy(warncomm, current->comm);
1632 "process `%s' is using deprecated sysctl (%s) "
1633 "net.ipv6.neigh.%s.%s; "
1634 "Use net.ipv6.neigh.%s.%s_ms "
1637 dev_name, ctl->procname,
1638 dev_name, ctl->procname);
1643 int ndisc_ifinfo_sysctl_change(struct ctl_table *ctl, int write, struct file * filp, void __user *buffer, size_t *lenp, loff_t *ppos)
1645 struct net_device *dev = ctl->extra1;
1646 struct inet6_dev *idev;
1649 if ((strcmp(ctl->procname, "retrans_time") == 0) ||
1650 (strcmp(ctl->procname, "base_reachable_time") == 0))
1651 ndisc_warn_deprecated_sysctl(ctl, "syscall", dev ? dev->name : "default");
1653 if (strcmp(ctl->procname, "retrans_time") == 0)
1654 ret = proc_dointvec(ctl, write, filp, buffer, lenp, ppos);
1656 else if (strcmp(ctl->procname, "base_reachable_time") == 0)
1657 ret = proc_dointvec_jiffies(ctl, write,
1658 filp, buffer, lenp, ppos);
1660 else if ((strcmp(ctl->procname, "retrans_time_ms") == 0) ||
1661 (strcmp(ctl->procname, "base_reachable_time_ms") == 0))
1662 ret = proc_dointvec_ms_jiffies(ctl, write,
1663 filp, buffer, lenp, ppos);
1667 if (write && ret == 0 && dev && (idev = in6_dev_get(dev)) != NULL) {
1668 if (ctl->data == &idev->nd_parms->base_reachable_time)
1669 idev->nd_parms->reachable_time = neigh_rand_reach_time(idev->nd_parms->base_reachable_time);
1670 idev->tstamp = jiffies;
1671 inet6_ifinfo_notify(RTM_NEWLINK, idev);
1677 static int ndisc_ifinfo_sysctl_strategy(ctl_table *ctl, int __user *name,
1678 int nlen, void __user *oldval,
1679 size_t __user *oldlenp,
1680 void __user *newval, size_t newlen)
1682 struct net_device *dev = ctl->extra1;
1683 struct inet6_dev *idev;
1686 if (ctl->ctl_name == NET_NEIGH_RETRANS_TIME ||
1687 ctl->ctl_name == NET_NEIGH_REACHABLE_TIME)
1688 ndisc_warn_deprecated_sysctl(ctl, "procfs", dev ? dev->name : "default");
1690 switch (ctl->ctl_name) {
1691 case NET_NEIGH_REACHABLE_TIME:
1692 ret = sysctl_jiffies(ctl, name, nlen,
1693 oldval, oldlenp, newval, newlen);
1695 case NET_NEIGH_RETRANS_TIME_MS:
1696 case NET_NEIGH_REACHABLE_TIME_MS:
1697 ret = sysctl_ms_jiffies(ctl, name, nlen,
1698 oldval, oldlenp, newval, newlen);
1704 if (newval && newlen && ret > 0 &&
1705 dev && (idev = in6_dev_get(dev)) != NULL) {
1706 if (ctl->ctl_name == NET_NEIGH_REACHABLE_TIME ||
1707 ctl->ctl_name == NET_NEIGH_REACHABLE_TIME_MS)
1708 idev->nd_parms->reachable_time = neigh_rand_reach_time(idev->nd_parms->base_reachable_time);
1709 idev->tstamp = jiffies;
1710 inet6_ifinfo_notify(RTM_NEWLINK, idev);
1719 static int ndisc_net_init(struct net *net)
1721 struct socket *sock;
1722 struct ipv6_pinfo *np;
1726 err = sock_create_kern(PF_INET6, SOCK_RAW, IPPROTO_ICMPV6, &sock);
1729 "ICMPv6 NDISC: Failed to initialize the control socket (err %d).\n",
1734 net->ipv6.ndisc_sk = sk = sock->sk;
1735 sk_change_net(sk, net);
1738 sk->sk_allocation = GFP_ATOMIC;
1739 np->hop_limit = 255;
1740 /* Do not loopback ndisc messages */
1742 sk->sk_prot->unhash(sk);
1747 static void ndisc_net_exit(struct net *net)
1749 sk_release_kernel(net->ipv6.ndisc_sk);
1752 static struct pernet_operations ndisc_net_ops = {
1753 .init = ndisc_net_init,
1754 .exit = ndisc_net_exit,
1757 int __init ndisc_init(void)
1761 err = register_pernet_subsys(&ndisc_net_ops);
1765 * Initialize the neighbour table
1767 neigh_table_init(&nd_tbl);
1769 #ifdef CONFIG_SYSCTL
1770 err = neigh_sysctl_register(NULL, &nd_tbl.parms, NET_IPV6,
1771 NET_IPV6_NEIGH, "ipv6",
1772 &ndisc_ifinfo_sysctl_change,
1773 &ndisc_ifinfo_sysctl_strategy);
1775 goto out_unregister_pernet;
1777 err = register_netdevice_notifier(&ndisc_netdev_notifier);
1779 goto out_unregister_sysctl;
1783 out_unregister_sysctl:
1784 #ifdef CONFIG_SYSCTL
1785 neigh_sysctl_unregister(&nd_tbl.parms);
1786 out_unregister_pernet:
1788 unregister_pernet_subsys(&ndisc_net_ops);
1792 void ndisc_cleanup(void)
1794 unregister_netdevice_notifier(&ndisc_netdev_notifier);
1795 #ifdef CONFIG_SYSCTL
1796 neigh_sysctl_unregister(&nd_tbl.parms);
1798 neigh_table_clear(&nd_tbl);
1799 unregister_pernet_subsys(&ndisc_net_ops);