1 // SPDX-License-Identifier: GPL-2.0-or-later
2 /*
3 * INET An implementation of the TCP/IP protocol suite for the LINUX
4 * operating system. INET is implemented using the BSD Socket
5 * interface as the means of communication with the user level.
6 *
7 * "Ping" sockets
8 *
9 * Based on ipv4/ping.c code.
10 *
11 * Authors: Lorenzo Colitti (IPv6 support)
12 * Vasiliy Kulikov / Openwall (IPv4 implementation, for Linux 2.6),
13 * Pavel Kankovsky (IPv4 implementation, for Linux 2.4.32)
14 */
15
16 #include <net/addrconf.h>
17 #include <net/ipv6.h>
18 #include <net/ip6_route.h>
19 #include <net/protocol.h>
20 #include <net/udp.h>
21 #include <net/transp_v6.h>
22 #include <linux/proc_fs.h>
23 #include <net/ping.h>
24
ping_v6_destroy(struct sock * sk)25 static void ping_v6_destroy(struct sock *sk)
26 {
27 inet6_destroy_sock(sk);
28 }
29
30 /* Compatibility glue so we can support IPv6 when it's compiled as a module */
dummy_ipv6_recv_error(struct sock * sk,struct msghdr * msg,int len,int * addr_len)31 static int dummy_ipv6_recv_error(struct sock *sk, struct msghdr *msg, int len,
32 int *addr_len)
33 {
34 return -EAFNOSUPPORT;
35 }
dummy_ip6_datagram_recv_ctl(struct sock * sk,struct msghdr * msg,struct sk_buff * skb)36 static void dummy_ip6_datagram_recv_ctl(struct sock *sk, struct msghdr *msg,
37 struct sk_buff *skb)
38 {
39 }
dummy_icmpv6_err_convert(u8 type,u8 code,int * err)40 static int dummy_icmpv6_err_convert(u8 type, u8 code, int *err)
41 {
42 return -EAFNOSUPPORT;
43 }
dummy_ipv6_icmp_error(struct sock * sk,struct sk_buff * skb,int err,__be16 port,u32 info,u8 * payload)44 static void dummy_ipv6_icmp_error(struct sock *sk, struct sk_buff *skb, int err,
45 __be16 port, u32 info, u8 *payload) {}
dummy_ipv6_chk_addr(struct net * net,const struct in6_addr * addr,const struct net_device * dev,int strict)46 static int dummy_ipv6_chk_addr(struct net *net, const struct in6_addr *addr,
47 const struct net_device *dev, int strict)
48 {
49 return 0;
50 }
51
ping_v6_sendmsg(struct sock * sk,struct msghdr * msg,size_t len)52 static int ping_v6_sendmsg(struct sock *sk, struct msghdr *msg, size_t len)
53 {
54 struct inet_sock *inet = inet_sk(sk);
55 struct ipv6_pinfo *np = inet6_sk(sk);
56 struct icmp6hdr user_icmph;
57 int addr_type;
58 struct in6_addr *daddr;
59 int oif = 0;
60 struct flowi6 fl6;
61 int err;
62 struct dst_entry *dst;
63 struct rt6_info *rt;
64 struct pingfakehdr pfh;
65 struct ipcm6_cookie ipc6;
66
67 pr_debug("ping_v6_sendmsg(sk=%p,sk->num=%u)\n", inet, inet->inet_num);
68
69 err = ping_common_sendmsg(AF_INET6, msg, len, &user_icmph,
70 sizeof(user_icmph));
71 if (err)
72 return err;
73
74 if (msg->msg_name) {
75 DECLARE_SOCKADDR(struct sockaddr_in6 *, u, msg->msg_name);
76 if (msg->msg_namelen < sizeof(*u))
77 return -EINVAL;
78 if (u->sin6_family != AF_INET6) {
79 return -EAFNOSUPPORT;
80 }
81 daddr = &(u->sin6_addr);
82 if (__ipv6_addr_needs_scope_id(ipv6_addr_type(daddr)))
83 oif = u->sin6_scope_id;
84 } else {
85 if (sk->sk_state != TCP_ESTABLISHED)
86 return -EDESTADDRREQ;
87 daddr = &sk->sk_v6_daddr;
88 }
89
90 if (!oif)
91 oif = sk->sk_bound_dev_if;
92
93 if (!oif)
94 oif = np->sticky_pktinfo.ipi6_ifindex;
95
96 if (!oif && ipv6_addr_is_multicast(daddr))
97 oif = np->mcast_oif;
98 else if (!oif)
99 oif = np->ucast_oif;
100
101 addr_type = ipv6_addr_type(daddr);
102 if ((__ipv6_addr_needs_scope_id(addr_type) && !oif) ||
103 (addr_type & IPV6_ADDR_MAPPED) ||
104 (oif && sk->sk_bound_dev_if && oif != sk->sk_bound_dev_if))
105 return -EINVAL;
106
107 /* TODO: use ip6_datagram_send_ctl to get options from cmsg */
108
109 memset(&fl6, 0, sizeof(fl6));
110
111 fl6.flowi6_proto = IPPROTO_ICMPV6;
112 fl6.saddr = np->saddr;
113 fl6.daddr = *daddr;
114 fl6.flowi6_oif = oif;
115 fl6.flowi6_mark = sk->sk_mark;
116 fl6.flowi6_uid = sk->sk_uid;
117 fl6.fl6_icmp_type = user_icmph.icmp6_type;
118 fl6.fl6_icmp_code = user_icmph.icmp6_code;
119 security_sk_classify_flow(sk, flowi6_to_flowi_common(&fl6));
120
121 ipcm6_init_sk(&ipc6, np);
122 ipc6.sockc.mark = sk->sk_mark;
123 fl6.flowlabel = ip6_make_flowinfo(ipc6.tclass, fl6.flowlabel);
124
125 dst = ip6_sk_dst_lookup_flow(sk, &fl6, daddr, false);
126 if (IS_ERR(dst))
127 return PTR_ERR(dst);
128 rt = (struct rt6_info *) dst;
129
130 if (!fl6.flowi6_oif && ipv6_addr_is_multicast(&fl6.daddr))
131 fl6.flowi6_oif = np->mcast_oif;
132 else if (!fl6.flowi6_oif)
133 fl6.flowi6_oif = np->ucast_oif;
134
135 pfh.icmph.type = user_icmph.icmp6_type;
136 pfh.icmph.code = user_icmph.icmp6_code;
137 pfh.icmph.checksum = 0;
138 pfh.icmph.un.echo.id = inet->inet_sport;
139 pfh.icmph.un.echo.sequence = user_icmph.icmp6_sequence;
140 pfh.msg = msg;
141 pfh.wcheck = 0;
142 pfh.family = AF_INET6;
143
144 ipc6.hlimit = ip6_sk_dst_hoplimit(np, &fl6, dst);
145
146 lock_sock(sk);
147 err = ip6_append_data(sk, ping_getfrag, &pfh, len,
148 0, &ipc6, &fl6, rt,
149 MSG_DONTWAIT);
150
151 if (err) {
152 ICMP6_INC_STATS(sock_net(sk), rt->rt6i_idev,
153 ICMP6_MIB_OUTERRORS);
154 ip6_flush_pending_frames(sk);
155 } else {
156 icmpv6_push_pending_frames(sk, &fl6,
157 (struct icmp6hdr *)&pfh.icmph, len);
158 }
159 release_sock(sk);
160
161 dst_release(dst);
162
163 if (err)
164 return err;
165
166 return len;
167 }
168
169 struct proto pingv6_prot = {
170 .name = "PINGv6",
171 .owner = THIS_MODULE,
172 .init = ping_init_sock,
173 .close = ping_close,
174 .destroy = ping_v6_destroy,
175 .connect = ip6_datagram_connect_v6_only,
176 .disconnect = __udp_disconnect,
177 .setsockopt = ipv6_setsockopt,
178 .getsockopt = ipv6_getsockopt,
179 .sendmsg = ping_v6_sendmsg,
180 .recvmsg = ping_recvmsg,
181 .bind = ping_bind,
182 .backlog_rcv = ping_queue_rcv_skb,
183 .hash = ping_hash,
184 .unhash = ping_unhash,
185 .get_port = ping_get_port,
186 .obj_size = sizeof(struct raw6_sock),
187 };
188 EXPORT_SYMBOL_GPL(pingv6_prot);
189
190 static struct inet_protosw pingv6_protosw = {
191 .type = SOCK_DGRAM,
192 .protocol = IPPROTO_ICMPV6,
193 .prot = &pingv6_prot,
194 .ops = &inet6_sockraw_ops,
195 .flags = INET_PROTOSW_REUSE,
196 };
197
198 #ifdef CONFIG_PROC_FS
ping_v6_seq_start(struct seq_file * seq,loff_t * pos)199 static void *ping_v6_seq_start(struct seq_file *seq, loff_t *pos)
200 {
201 return ping_seq_start(seq, pos, AF_INET6);
202 }
203
ping_v6_seq_show(struct seq_file * seq,void * v)204 static int ping_v6_seq_show(struct seq_file *seq, void *v)
205 {
206 if (v == SEQ_START_TOKEN) {
207 seq_puts(seq, IPV6_SEQ_DGRAM_HEADER);
208 } else {
209 int bucket = ((struct ping_iter_state *) seq->private)->bucket;
210 struct inet_sock *inet = inet_sk(v);
211 __u16 srcp = ntohs(inet->inet_sport);
212 __u16 destp = ntohs(inet->inet_dport);
213 ip6_dgram_sock_seq_show(seq, v, srcp, destp, bucket);
214 }
215 return 0;
216 }
217
218 static const struct seq_operations ping_v6_seq_ops = {
219 .start = ping_v6_seq_start,
220 .show = ping_v6_seq_show,
221 .next = ping_seq_next,
222 .stop = ping_seq_stop,
223 };
224
ping_v6_proc_init_net(struct net * net)225 static int __net_init ping_v6_proc_init_net(struct net *net)
226 {
227 if (!proc_create_net("icmp6", 0444, net->proc_net, &ping_v6_seq_ops,
228 sizeof(struct ping_iter_state)))
229 return -ENOMEM;
230 return 0;
231 }
232
ping_v6_proc_exit_net(struct net * net)233 static void __net_exit ping_v6_proc_exit_net(struct net *net)
234 {
235 remove_proc_entry("icmp6", net->proc_net);
236 }
237
238 static struct pernet_operations ping_v6_net_ops = {
239 .init = ping_v6_proc_init_net,
240 .exit = ping_v6_proc_exit_net,
241 };
242 #endif
243
pingv6_init(void)244 int __init pingv6_init(void)
245 {
246 #ifdef CONFIG_PROC_FS
247 int ret = register_pernet_subsys(&ping_v6_net_ops);
248 if (ret)
249 return ret;
250 #endif
251 pingv6_ops.ipv6_recv_error = ipv6_recv_error;
252 pingv6_ops.ip6_datagram_recv_common_ctl = ip6_datagram_recv_common_ctl;
253 pingv6_ops.ip6_datagram_recv_specific_ctl =
254 ip6_datagram_recv_specific_ctl;
255 pingv6_ops.icmpv6_err_convert = icmpv6_err_convert;
256 pingv6_ops.ipv6_icmp_error = ipv6_icmp_error;
257 pingv6_ops.ipv6_chk_addr = ipv6_chk_addr;
258 return inet6_register_protosw(&pingv6_protosw);
259 }
260
261 /* This never gets called because it's not possible to unload the ipv6 module,
262 * but just in case.
263 */
pingv6_exit(void)264 void pingv6_exit(void)
265 {
266 pingv6_ops.ipv6_recv_error = dummy_ipv6_recv_error;
267 pingv6_ops.ip6_datagram_recv_common_ctl = dummy_ip6_datagram_recv_ctl;
268 pingv6_ops.ip6_datagram_recv_specific_ctl = dummy_ip6_datagram_recv_ctl;
269 pingv6_ops.icmpv6_err_convert = dummy_icmpv6_err_convert;
270 pingv6_ops.ipv6_icmp_error = dummy_ipv6_icmp_error;
271 pingv6_ops.ipv6_chk_addr = dummy_ipv6_chk_addr;
272 #ifdef CONFIG_PROC_FS
273 unregister_pernet_subsys(&ping_v6_net_ops);
274 #endif
275 inet6_unregister_protosw(&pingv6_protosw);
276 }
277