1 /* SPDX-License-Identifier: GPL-2.0 */
2 #ifndef _ADDRCONF_H
3 #define _ADDRCONF_H
4
5 #define MAX_RTR_SOLICITATIONS -1 /* unlimited */
6 #define RTR_SOLICITATION_INTERVAL (4*HZ)
7 #define RTR_SOLICITATION_MAX_INTERVAL (3600*HZ) /* 1 hour */
8
9 #define MIN_VALID_LIFETIME (2*3600) /* 2 hours */
10
11 #define TEMP_VALID_LIFETIME (7*86400) /* 1 week */
12 #define TEMP_PREFERRED_LIFETIME (86400) /* 24 hours */
13 #define REGEN_MIN_ADVANCE (2) /* 2 seconds */
14 #define REGEN_MAX_RETRY (3)
15 #define MAX_DESYNC_FACTOR (600)
16
17 #define ADDR_CHECK_FREQUENCY (120*HZ)
18
19 #define IPV6_MAX_ADDRESSES 16
20
21 #define ADDRCONF_TIMER_FUZZ_MINUS (HZ > 50 ? HZ / 50 : 1)
22 #define ADDRCONF_TIMER_FUZZ (HZ / 4)
23 #define ADDRCONF_TIMER_FUZZ_MAX (HZ)
24
25 #define ADDRCONF_NOTIFY_PRIORITY 0
26
27 #include <linux/in.h>
28 #include <linux/in6.h>
29
30 struct prefix_info {
31 __u8 type;
32 __u8 length;
33 __u8 prefix_len;
34
35 union __packed {
36 __u8 flags;
37 struct __packed {
38 #if defined(__BIG_ENDIAN_BITFIELD)
39 __u8 onlink : 1,
40 autoconf : 1,
41 routeraddr : 1,
42 preferpd : 1,
43 reserved : 4;
44 #elif defined(__LITTLE_ENDIAN_BITFIELD)
45 __u8 reserved : 4,
46 preferpd : 1,
47 routeraddr : 1,
48 autoconf : 1,
49 onlink : 1;
50 #else
51 #error "Please fix <asm/byteorder.h>"
52 #endif
53 };
54 };
55 __be32 valid;
56 __be32 prefered;
57 __be32 reserved2;
58
59 struct in6_addr prefix;
60 };
61
62 /* rfc4861 4.6.2: IPv6 PIO is 32 bytes in size */
63 static_assert(sizeof(struct prefix_info) == 32);
64
65 #include <linux/ipv6.h>
66 #include <linux/netdevice.h>
67 #include <net/if_inet6.h>
68 #include <net/ipv6.h>
69
70 struct in6_validator_info {
71 struct in6_addr i6vi_addr;
72 struct inet6_dev *i6vi_dev;
73 struct netlink_ext_ack *extack;
74 };
75
76 struct ifa6_config {
77 const struct in6_addr *pfx;
78 unsigned int plen;
79
80 u8 ifa_proto;
81
82 const struct in6_addr *peer_pfx;
83
84 u32 rt_priority;
85 u32 ifa_flags;
86 u32 preferred_lft;
87 u32 valid_lft;
88 u16 scope;
89 };
90
91 int addrconf_init(void);
92 void addrconf_cleanup(void);
93
94 int addrconf_add_ifaddr(struct net *net, void __user *arg);
95 int addrconf_del_ifaddr(struct net *net, void __user *arg);
96 int addrconf_set_dstaddr(struct net *net, void __user *arg);
97
98 int ipv6_chk_addr(struct net *net, const struct in6_addr *addr,
99 const struct net_device *dev, int strict);
100 int ipv6_chk_addr_and_flags(struct net *net, const struct in6_addr *addr,
101 const struct net_device *dev, bool skip_dev_check,
102 int strict, u32 banned_flags);
103
104 #if defined(CONFIG_IPV6_MIP6) || defined(CONFIG_IPV6_MIP6_MODULE)
105 int ipv6_chk_home_addr(struct net *net, const struct in6_addr *addr);
106 #endif
107
108 int ipv6_chk_rpl_srh_loop(struct net *net, const struct in6_addr *segs,
109 unsigned char nsegs);
110
111 bool ipv6_chk_custom_prefix(const struct in6_addr *addr,
112 const unsigned int prefix_len,
113 struct net_device *dev);
114
115 int ipv6_chk_prefix(const struct in6_addr *addr, struct net_device *dev);
116
117 struct net_device *ipv6_dev_find(struct net *net, const struct in6_addr *addr,
118 struct net_device *dev);
119
120 struct inet6_ifaddr *ipv6_get_ifaddr(struct net *net,
121 const struct in6_addr *addr,
122 struct net_device *dev, int strict);
123
124 int ipv6_dev_get_saddr(struct net *net, const struct net_device *dev,
125 const struct in6_addr *daddr, unsigned int srcprefs,
126 struct in6_addr *saddr);
127 int ipv6_get_lladdr(struct net_device *dev, struct in6_addr *addr,
128 u32 banned_flags);
129 bool inet_rcv_saddr_equal(const struct sock *sk, const struct sock *sk2,
130 bool match_wildcard);
131 bool inet_rcv_saddr_any(const struct sock *sk);
132 void addrconf_join_solict(struct net_device *dev, const struct in6_addr *addr);
133 void addrconf_leave_solict(struct inet6_dev *idev, const struct in6_addr *addr);
134
135 void addrconf_add_linklocal(struct inet6_dev *idev,
136 const struct in6_addr *addr, u32 flags);
137
138 int addrconf_prefix_rcv_add_addr(struct net *net, struct net_device *dev,
139 const struct prefix_info *pinfo,
140 struct inet6_dev *in6_dev,
141 const struct in6_addr *addr, int addr_type,
142 u32 addr_flags, bool sllao, bool tokenized,
143 __u32 valid_lft, u32 prefered_lft);
144
addrconf_addr_eui48_base(u8 * eui,const char * const addr)145 static inline void addrconf_addr_eui48_base(u8 *eui, const char *const addr)
146 {
147 memcpy(eui, addr, 3);
148 eui[3] = 0xFF;
149 eui[4] = 0xFE;
150 memcpy(eui + 5, addr + 3, 3);
151 }
152
addrconf_addr_eui48(u8 * eui,const char * const addr)153 static inline void addrconf_addr_eui48(u8 *eui, const char *const addr)
154 {
155 addrconf_addr_eui48_base(eui, addr);
156 eui[0] ^= 2;
157 }
158
addrconf_ifid_eui48(u8 * eui,struct net_device * dev)159 static inline int addrconf_ifid_eui48(u8 *eui, struct net_device *dev)
160 {
161 if (dev->addr_len != ETH_ALEN)
162 return -1;
163
164 /*
165 * The zSeries OSA network cards can be shared among various
166 * OS instances, but the OSA cards have only one MAC address.
167 * This leads to duplicate address conflicts in conjunction
168 * with IPv6 if more than one instance uses the same card.
169 *
170 * The driver for these cards can deliver a unique 16-bit
171 * identifier for each instance sharing the same card. It is
172 * placed instead of 0xFFFE in the interface identifier. The
173 * "u" bit of the interface identifier is not inverted in this
174 * case. Hence the resulting interface identifier has local
175 * scope according to RFC2373.
176 */
177
178 addrconf_addr_eui48_base(eui, dev->dev_addr);
179
180 if (dev->dev_id) {
181 eui[3] = (dev->dev_id >> 8) & 0xFF;
182 eui[4] = dev->dev_id & 0xFF;
183 } else {
184 eui[0] ^= 2;
185 }
186
187 return 0;
188 }
189
190 #define INFINITY_LIFE_TIME 0xFFFFFFFF
191
addrconf_timeout_fixup(u32 timeout,unsigned int unit)192 static inline unsigned long addrconf_timeout_fixup(u32 timeout,
193 unsigned int unit)
194 {
195 if (timeout == INFINITY_LIFE_TIME)
196 return ~0UL;
197
198 /*
199 * Avoid arithmetic overflow.
200 * Assuming unit is constant and non-zero, this "if" statement
201 * will go away on 64bit archs.
202 */
203 if (0xfffffffe > LONG_MAX / unit && timeout > LONG_MAX / unit)
204 return LONG_MAX / unit;
205
206 return timeout;
207 }
208
addrconf_finite_timeout(unsigned long timeout)209 static inline int addrconf_finite_timeout(unsigned long timeout)
210 {
211 return ~timeout;
212 }
213
214 /*
215 * IPv6 Address Label subsystem (addrlabel.c)
216 */
217 int ipv6_addr_label_init(void);
218 void ipv6_addr_label_cleanup(void);
219 int ipv6_addr_label_rtnl_register(void);
220 u32 ipv6_addr_label(struct net *net, const struct in6_addr *addr,
221 int type, int ifindex);
222
223 /*
224 * multicast prototypes (mcast.c)
225 */
ipv6_mc_may_pull(struct sk_buff * skb,unsigned int len)226 static inline bool ipv6_mc_may_pull(struct sk_buff *skb,
227 unsigned int len)
228 {
229 if (skb_transport_offset(skb) + ipv6_transport_len(skb) < len)
230 return false;
231
232 return pskb_may_pull(skb, len);
233 }
234
235 int ipv6_sock_mc_join(struct sock *sk, int ifindex,
236 const struct in6_addr *addr);
237 int ipv6_sock_mc_drop(struct sock *sk, int ifindex,
238 const struct in6_addr *addr);
239 void __ipv6_sock_mc_close(struct sock *sk);
240 void ipv6_sock_mc_close(struct sock *sk);
241 bool inet6_mc_check(const struct sock *sk, const struct in6_addr *mc_addr,
242 const struct in6_addr *src_addr);
243
244 int ipv6_dev_mc_inc(struct net_device *dev, const struct in6_addr *addr);
245 int __ipv6_dev_mc_dec(struct inet6_dev *idev, const struct in6_addr *addr);
246 int ipv6_dev_mc_dec(struct net_device *dev, const struct in6_addr *addr);
247 void ipv6_mc_up(struct inet6_dev *idev);
248 void ipv6_mc_down(struct inet6_dev *idev);
249 void ipv6_mc_unmap(struct inet6_dev *idev);
250 void ipv6_mc_remap(struct inet6_dev *idev);
251 void ipv6_mc_init_dev(struct inet6_dev *idev);
252 void ipv6_mc_destroy_dev(struct inet6_dev *idev);
253 int ipv6_mc_check_mld(struct sk_buff *skb);
254 void addrconf_dad_failure(struct sk_buff *skb, struct inet6_ifaddr *ifp);
255
256 bool ipv6_chk_mcast_addr(struct net_device *dev, const struct in6_addr *group,
257 const struct in6_addr *src_addr);
258
259 void ipv6_mc_dad_complete(struct inet6_dev *idev);
260
261 /*
262 * identify MLD packets for MLD filter exceptions
263 */
ipv6_is_mld(struct sk_buff * skb,int nexthdr,int offset)264 static inline bool ipv6_is_mld(struct sk_buff *skb, int nexthdr, int offset)
265 {
266 struct icmp6hdr *hdr;
267
268 if (nexthdr != IPPROTO_ICMPV6 ||
269 !pskb_network_may_pull(skb, offset + sizeof(struct icmp6hdr)))
270 return false;
271
272 hdr = (struct icmp6hdr *)(skb_network_header(skb) + offset);
273
274 switch (hdr->icmp6_type) {
275 case ICMPV6_MGM_QUERY:
276 case ICMPV6_MGM_REPORT:
277 case ICMPV6_MGM_REDUCTION:
278 case ICMPV6_MLD2_REPORT:
279 return true;
280 default:
281 break;
282 }
283 return false;
284 }
285
286 void addrconf_prefix_rcv(struct net_device *dev,
287 u8 *opt, int len, bool sllao);
288
289 /* Determines into what table to put autoconf PIO/RIO/default routes
290 * learned on this device.
291 *
292 * - If 0, use the same table for every device. This puts routes into
293 * one of RT_TABLE_{PREFIX,INFO,DFLT} depending on the type of route
294 * (but note that these three are currently all equal to
295 * RT6_TABLE_MAIN).
296 * - If > 0, use the specified table.
297 * - If < 0, put routes into table dev->ifindex + (-rt_table).
298 */
299 u32 addrconf_rt_table(const struct net_device *dev, u32 default_table);
300
301 /*
302 * anycast prototypes (anycast.c)
303 */
304 int ipv6_sock_ac_join(struct sock *sk, int ifindex,
305 const struct in6_addr *addr);
306 int ipv6_sock_ac_drop(struct sock *sk, int ifindex,
307 const struct in6_addr *addr);
308 void __ipv6_sock_ac_close(struct sock *sk);
309 void ipv6_sock_ac_close(struct sock *sk);
310
311 int __ipv6_dev_ac_inc(struct inet6_dev *idev, const struct in6_addr *addr);
312 int __ipv6_dev_ac_dec(struct inet6_dev *idev, const struct in6_addr *addr);
313 void ipv6_ac_destroy_dev(struct inet6_dev *idev);
314 bool ipv6_chk_acast_addr(struct net *net, struct net_device *dev,
315 const struct in6_addr *addr);
316 bool ipv6_chk_acast_addr_src(struct net *net, struct net_device *dev,
317 const struct in6_addr *addr);
318 int ipv6_anycast_init(void);
319 void ipv6_anycast_cleanup(void);
320
321 /* Device notifier */
322 int register_inet6addr_notifier(struct notifier_block *nb);
323 int unregister_inet6addr_notifier(struct notifier_block *nb);
324 int inet6addr_notifier_call_chain(unsigned long val, void *v);
325
326 int register_inet6addr_validator_notifier(struct notifier_block *nb);
327 int unregister_inet6addr_validator_notifier(struct notifier_block *nb);
328 int inet6addr_validator_notifier_call_chain(unsigned long val, void *v);
329
330 void inet6_netconf_notify_devconf(struct net *net, int event, int type,
331 int ifindex, struct ipv6_devconf *devconf);
332
333 /**
334 * __in6_dev_get - get inet6_dev pointer from netdevice
335 * @dev: network device
336 *
337 * Caller must hold rcu_read_lock or RTNL, because this function
338 * does not take a reference on the inet6_dev.
339 */
__in6_dev_get(const struct net_device * dev)340 static inline struct inet6_dev *__in6_dev_get(const struct net_device *dev)
341 {
342 return rcu_dereference_rtnl(dev->ip6_ptr);
343 }
344
345 /**
346 * __in6_dev_stats_get - get inet6_dev pointer for stats
347 * @dev: network device
348 * @skb: skb for original incoming interface if needed
349 *
350 * Caller must hold rcu_read_lock or RTNL, because this function
351 * does not take a reference on the inet6_dev.
352 */
__in6_dev_stats_get(const struct net_device * dev,const struct sk_buff * skb)353 static inline struct inet6_dev *__in6_dev_stats_get(const struct net_device *dev,
354 const struct sk_buff *skb)
355 {
356 if (netif_is_l3_master(dev))
357 dev = dev_get_by_index_rcu(dev_net(dev), inet6_iif(skb));
358 return __in6_dev_get(dev);
359 }
360
361 /**
362 * __in6_dev_get_safely - get inet6_dev pointer from netdevice
363 * @dev: network device
364 *
365 * This is a safer version of __in6_dev_get
366 */
__in6_dev_get_safely(const struct net_device * dev)367 static inline struct inet6_dev *__in6_dev_get_safely(const struct net_device *dev)
368 {
369 if (likely(dev))
370 return rcu_dereference_rtnl(dev->ip6_ptr);
371 else
372 return NULL;
373 }
374
375 /**
376 * in6_dev_get - get inet6_dev pointer from netdevice
377 * @dev: network device
378 *
379 * This version can be used in any context, and takes a reference
380 * on the inet6_dev. Callers must use in6_dev_put() later to
381 * release this reference.
382 */
in6_dev_get(const struct net_device * dev)383 static inline struct inet6_dev *in6_dev_get(const struct net_device *dev)
384 {
385 struct inet6_dev *idev;
386
387 rcu_read_lock();
388 idev = rcu_dereference(dev->ip6_ptr);
389 if (idev)
390 refcount_inc(&idev->refcnt);
391 rcu_read_unlock();
392 return idev;
393 }
394
__in6_dev_nd_parms_get_rcu(const struct net_device * dev)395 static inline struct neigh_parms *__in6_dev_nd_parms_get_rcu(const struct net_device *dev)
396 {
397 struct inet6_dev *idev = __in6_dev_get(dev);
398
399 return idev ? idev->nd_parms : NULL;
400 }
401
402 void in6_dev_finish_destroy(struct inet6_dev *idev);
403
in6_dev_put(struct inet6_dev * idev)404 static inline void in6_dev_put(struct inet6_dev *idev)
405 {
406 if (refcount_dec_and_test(&idev->refcnt))
407 in6_dev_finish_destroy(idev);
408 }
409
in6_dev_put_clear(struct inet6_dev ** pidev)410 static inline void in6_dev_put_clear(struct inet6_dev **pidev)
411 {
412 struct inet6_dev *idev = *pidev;
413
414 if (idev) {
415 in6_dev_put(idev);
416 *pidev = NULL;
417 }
418 }
419
__in6_dev_put(struct inet6_dev * idev)420 static inline void __in6_dev_put(struct inet6_dev *idev)
421 {
422 refcount_dec(&idev->refcnt);
423 }
424
in6_dev_hold(struct inet6_dev * idev)425 static inline void in6_dev_hold(struct inet6_dev *idev)
426 {
427 refcount_inc(&idev->refcnt);
428 }
429
430 /* called with rcu_read_lock held */
ip6_ignore_linkdown(const struct net_device * dev)431 static inline bool ip6_ignore_linkdown(const struct net_device *dev)
432 {
433 const struct inet6_dev *idev = __in6_dev_get(dev);
434
435 if (unlikely(!idev))
436 return true;
437
438 return !!READ_ONCE(idev->cnf.ignore_routes_with_linkdown);
439 }
440
441 void inet6_ifa_finish_destroy(struct inet6_ifaddr *ifp);
442
in6_ifa_put(struct inet6_ifaddr * ifp)443 static inline void in6_ifa_put(struct inet6_ifaddr *ifp)
444 {
445 if (refcount_dec_and_test(&ifp->refcnt))
446 inet6_ifa_finish_destroy(ifp);
447 }
448
__in6_ifa_put(struct inet6_ifaddr * ifp)449 static inline void __in6_ifa_put(struct inet6_ifaddr *ifp)
450 {
451 refcount_dec(&ifp->refcnt);
452 }
453
in6_ifa_hold(struct inet6_ifaddr * ifp)454 static inline void in6_ifa_hold(struct inet6_ifaddr *ifp)
455 {
456 refcount_inc(&ifp->refcnt);
457 }
458
in6_ifa_hold_safe(struct inet6_ifaddr * ifp)459 static inline bool in6_ifa_hold_safe(struct inet6_ifaddr *ifp)
460 {
461 return refcount_inc_not_zero(&ifp->refcnt);
462 }
463
464 /*
465 * compute link-local solicited-node multicast address
466 */
467
addrconf_addr_solict_mult(const struct in6_addr * addr,struct in6_addr * solicited)468 static inline void addrconf_addr_solict_mult(const struct in6_addr *addr,
469 struct in6_addr *solicited)
470 {
471 ipv6_addr_set(solicited,
472 htonl(0xFF020000), 0,
473 htonl(0x1),
474 htonl(0xFF000000) | addr->s6_addr32[3]);
475 }
476
ipv6_addr_is_ll_all_nodes(const struct in6_addr * addr)477 static inline bool ipv6_addr_is_ll_all_nodes(const struct in6_addr *addr)
478 {
479 #if defined(CONFIG_HAVE_EFFICIENT_UNALIGNED_ACCESS) && BITS_PER_LONG == 64
480 __be64 *p = (__force __be64 *)addr;
481 return ((p[0] ^ cpu_to_be64(0xff02000000000000UL)) | (p[1] ^ cpu_to_be64(1))) == 0UL;
482 #else
483 return ((addr->s6_addr32[0] ^ htonl(0xff020000)) |
484 addr->s6_addr32[1] | addr->s6_addr32[2] |
485 (addr->s6_addr32[3] ^ htonl(0x00000001))) == 0;
486 #endif
487 }
488
ipv6_addr_is_ll_all_routers(const struct in6_addr * addr)489 static inline bool ipv6_addr_is_ll_all_routers(const struct in6_addr *addr)
490 {
491 #if defined(CONFIG_HAVE_EFFICIENT_UNALIGNED_ACCESS) && BITS_PER_LONG == 64
492 __be64 *p = (__force __be64 *)addr;
493 return ((p[0] ^ cpu_to_be64(0xff02000000000000UL)) | (p[1] ^ cpu_to_be64(2))) == 0UL;
494 #else
495 return ((addr->s6_addr32[0] ^ htonl(0xff020000)) |
496 addr->s6_addr32[1] | addr->s6_addr32[2] |
497 (addr->s6_addr32[3] ^ htonl(0x00000002))) == 0;
498 #endif
499 }
500
ipv6_addr_is_isatap(const struct in6_addr * addr)501 static inline bool ipv6_addr_is_isatap(const struct in6_addr *addr)
502 {
503 return (addr->s6_addr32[2] | htonl(0x02000000)) == htonl(0x02005EFE);
504 }
505
ipv6_addr_is_solict_mult(const struct in6_addr * addr)506 static inline bool ipv6_addr_is_solict_mult(const struct in6_addr *addr)
507 {
508 #if defined(CONFIG_HAVE_EFFICIENT_UNALIGNED_ACCESS) && BITS_PER_LONG == 64
509 __be64 *p = (__force __be64 *)addr;
510 return ((p[0] ^ cpu_to_be64(0xff02000000000000UL)) |
511 ((p[1] ^ cpu_to_be64(0x00000001ff000000UL)) &
512 cpu_to_be64(0xffffffffff000000UL))) == 0UL;
513 #else
514 return ((addr->s6_addr32[0] ^ htonl(0xff020000)) |
515 addr->s6_addr32[1] |
516 (addr->s6_addr32[2] ^ htonl(0x00000001)) |
517 (addr->s6_addr[12] ^ 0xff)) == 0;
518 #endif
519 }
520
ipv6_addr_is_all_snoopers(const struct in6_addr * addr)521 static inline bool ipv6_addr_is_all_snoopers(const struct in6_addr *addr)
522 {
523 #if defined(CONFIG_HAVE_EFFICIENT_UNALIGNED_ACCESS) && BITS_PER_LONG == 64
524 __be64 *p = (__force __be64 *)addr;
525
526 return ((p[0] ^ cpu_to_be64(0xff02000000000000UL)) |
527 (p[1] ^ cpu_to_be64(0x6a))) == 0UL;
528 #else
529 return ((addr->s6_addr32[0] ^ htonl(0xff020000)) |
530 addr->s6_addr32[1] | addr->s6_addr32[2] |
531 (addr->s6_addr32[3] ^ htonl(0x0000006a))) == 0;
532 #endif
533 }
534
535 #ifdef CONFIG_PROC_FS
536 int if6_proc_init(void);
537 void if6_proc_exit(void);
538 #endif
539
540 #endif
541