1 /* SPDX-License-Identifier: GPL-2.0 */
2 #ifndef _ADDRCONF_H
3 #define _ADDRCONF_H
4 
5 #define MAX_RTR_SOLICITATIONS		-1		/* unlimited */
6 #define RTR_SOLICITATION_INTERVAL	(4*HZ)
7 #define RTR_SOLICITATION_MAX_INTERVAL	(3600*HZ)	/* 1 hour */
8 
9 #define MIN_VALID_LIFETIME		(2*3600)	/* 2 hours */
10 
11 #define TEMP_VALID_LIFETIME		(7*86400)
12 #define TEMP_PREFERRED_LIFETIME		(86400)
13 #define REGEN_MAX_RETRY			(3)
14 #define MAX_DESYNC_FACTOR		(600)
15 
16 #define ADDR_CHECK_FREQUENCY		(120*HZ)
17 
18 #define IPV6_MAX_ADDRESSES		16
19 
20 #define ADDRCONF_TIMER_FUZZ_MINUS	(HZ > 50 ? HZ / 50 : 1)
21 #define ADDRCONF_TIMER_FUZZ		(HZ / 4)
22 #define ADDRCONF_TIMER_FUZZ_MAX		(HZ)
23 
24 #define ADDRCONF_NOTIFY_PRIORITY	0
25 
26 #include <linux/in.h>
27 #include <linux/in6.h>
28 
29 struct prefix_info {
30 	__u8			type;
31 	__u8			length;
32 	__u8			prefix_len;
33 
34 #if defined(__BIG_ENDIAN_BITFIELD)
35 	__u8			onlink : 1,
36 			 	autoconf : 1,
37 				reserved : 6;
38 #elif defined(__LITTLE_ENDIAN_BITFIELD)
39 	__u8			reserved : 6,
40 				autoconf : 1,
41 				onlink : 1;
42 #else
43 #error "Please fix <asm/byteorder.h>"
44 #endif
45 	__be32			valid;
46 	__be32			prefered;
47 	__be32			reserved2;
48 
49 	struct in6_addr		prefix;
50 };
51 
52 #include <linux/netdevice.h>
53 #include <net/if_inet6.h>
54 #include <net/ipv6.h>
55 
56 struct in6_validator_info {
57 	struct in6_addr		i6vi_addr;
58 	struct inet6_dev	*i6vi_dev;
59 	struct netlink_ext_ack	*extack;
60 };
61 
62 struct ifa6_config {
63 	const struct in6_addr	*pfx;
64 	unsigned int		plen;
65 
66 	const struct in6_addr	*peer_pfx;
67 
68 	u32			rt_priority;
69 	u32			ifa_flags;
70 	u32			preferred_lft;
71 	u32			valid_lft;
72 	u16			scope;
73 };
74 
75 int addrconf_init(void);
76 void addrconf_cleanup(void);
77 
78 int addrconf_add_ifaddr(struct net *net, void __user *arg);
79 int addrconf_del_ifaddr(struct net *net, void __user *arg);
80 int addrconf_set_dstaddr(struct net *net, void __user *arg);
81 
82 int ipv6_chk_addr(struct net *net, const struct in6_addr *addr,
83 		  const struct net_device *dev, int strict);
84 int ipv6_chk_addr_and_flags(struct net *net, const struct in6_addr *addr,
85 			    const struct net_device *dev, bool skip_dev_check,
86 			    int strict, u32 banned_flags);
87 
88 #if defined(CONFIG_IPV6_MIP6) || defined(CONFIG_IPV6_MIP6_MODULE)
89 int ipv6_chk_home_addr(struct net *net, const struct in6_addr *addr);
90 #endif
91 
92 bool ipv6_chk_custom_prefix(const struct in6_addr *addr,
93 				   const unsigned int prefix_len,
94 				   struct net_device *dev);
95 
96 int ipv6_chk_prefix(const struct in6_addr *addr, struct net_device *dev);
97 
98 struct inet6_ifaddr *ipv6_get_ifaddr(struct net *net,
99 				     const struct in6_addr *addr,
100 				     struct net_device *dev, int strict);
101 
102 int ipv6_dev_get_saddr(struct net *net, const struct net_device *dev,
103 		       const struct in6_addr *daddr, unsigned int srcprefs,
104 		       struct in6_addr *saddr);
105 int __ipv6_get_lladdr(struct inet6_dev *idev, struct in6_addr *addr,
106 		      u32 banned_flags);
107 int ipv6_get_lladdr(struct net_device *dev, struct in6_addr *addr,
108 		    u32 banned_flags);
109 bool inet_rcv_saddr_equal(const struct sock *sk, const struct sock *sk2,
110 			  bool match_wildcard);
111 bool inet_rcv_saddr_any(const struct sock *sk);
112 void addrconf_join_solict(struct net_device *dev, const struct in6_addr *addr);
113 void addrconf_leave_solict(struct inet6_dev *idev, const struct in6_addr *addr);
114 
115 void addrconf_add_linklocal(struct inet6_dev *idev,
116 			    const struct in6_addr *addr, u32 flags);
117 
118 int addrconf_prefix_rcv_add_addr(struct net *net, struct net_device *dev,
119 				 const struct prefix_info *pinfo,
120 				 struct inet6_dev *in6_dev,
121 				 const struct in6_addr *addr, int addr_type,
122 				 u32 addr_flags, bool sllao, bool tokenized,
123 				 __u32 valid_lft, u32 prefered_lft);
124 
addrconf_addr_eui48_base(u8 * eui,const char * const addr)125 static inline void addrconf_addr_eui48_base(u8 *eui, const char *const addr)
126 {
127 	memcpy(eui, addr, 3);
128 	eui[3] = 0xFF;
129 	eui[4] = 0xFE;
130 	memcpy(eui + 5, addr + 3, 3);
131 }
132 
addrconf_addr_eui48(u8 * eui,const char * const addr)133 static inline void addrconf_addr_eui48(u8 *eui, const char *const addr)
134 {
135 	addrconf_addr_eui48_base(eui, addr);
136 	eui[0] ^= 2;
137 }
138 
addrconf_ifid_eui48(u8 * eui,struct net_device * dev)139 static inline int addrconf_ifid_eui48(u8 *eui, struct net_device *dev)
140 {
141 	if (dev->addr_len != ETH_ALEN)
142 		return -1;
143 
144 	/*
145 	 * The zSeries OSA network cards can be shared among various
146 	 * OS instances, but the OSA cards have only one MAC address.
147 	 * This leads to duplicate address conflicts in conjunction
148 	 * with IPv6 if more than one instance uses the same card.
149 	 *
150 	 * The driver for these cards can deliver a unique 16-bit
151 	 * identifier for each instance sharing the same card.  It is
152 	 * placed instead of 0xFFFE in the interface identifier.  The
153 	 * "u" bit of the interface identifier is not inverted in this
154 	 * case.  Hence the resulting interface identifier has local
155 	 * scope according to RFC2373.
156 	 */
157 
158 	addrconf_addr_eui48_base(eui, dev->dev_addr);
159 
160 	if (dev->dev_id) {
161 		eui[3] = (dev->dev_id >> 8) & 0xFF;
162 		eui[4] = dev->dev_id & 0xFF;
163 	} else {
164 		eui[0] ^= 2;
165 	}
166 
167 	return 0;
168 }
169 
addrconf_timeout_fixup(u32 timeout,unsigned int unit)170 static inline unsigned long addrconf_timeout_fixup(u32 timeout,
171 						   unsigned int unit)
172 {
173 	if (timeout == 0xffffffff)
174 		return ~0UL;
175 
176 	/*
177 	 * Avoid arithmetic overflow.
178 	 * Assuming unit is constant and non-zero, this "if" statement
179 	 * will go away on 64bit archs.
180 	 */
181 	if (0xfffffffe > LONG_MAX / unit && timeout > LONG_MAX / unit)
182 		return LONG_MAX / unit;
183 
184 	return timeout;
185 }
186 
addrconf_finite_timeout(unsigned long timeout)187 static inline int addrconf_finite_timeout(unsigned long timeout)
188 {
189 	return ~timeout;
190 }
191 
192 /*
193  *	IPv6 Address Label subsystem (addrlabel.c)
194  */
195 int ipv6_addr_label_init(void);
196 void ipv6_addr_label_cleanup(void);
197 int ipv6_addr_label_rtnl_register(void);
198 u32 ipv6_addr_label(struct net *net, const struct in6_addr *addr,
199 		    int type, int ifindex);
200 
201 /*
202  *	multicast prototypes (mcast.c)
203  */
204 int ipv6_sock_mc_join(struct sock *sk, int ifindex,
205 		      const struct in6_addr *addr);
206 int ipv6_sock_mc_drop(struct sock *sk, int ifindex,
207 		      const struct in6_addr *addr);
208 void __ipv6_sock_mc_close(struct sock *sk);
209 void ipv6_sock_mc_close(struct sock *sk);
210 bool inet6_mc_check(struct sock *sk, const struct in6_addr *mc_addr,
211 		    const struct in6_addr *src_addr);
212 
213 int ipv6_dev_mc_inc(struct net_device *dev, const struct in6_addr *addr);
214 int __ipv6_dev_mc_dec(struct inet6_dev *idev, const struct in6_addr *addr);
215 int ipv6_dev_mc_dec(struct net_device *dev, const struct in6_addr *addr);
216 void ipv6_mc_up(struct inet6_dev *idev);
217 void ipv6_mc_down(struct inet6_dev *idev);
218 void ipv6_mc_unmap(struct inet6_dev *idev);
219 void ipv6_mc_remap(struct inet6_dev *idev);
220 void ipv6_mc_init_dev(struct inet6_dev *idev);
221 void ipv6_mc_destroy_dev(struct inet6_dev *idev);
222 int ipv6_mc_check_mld(struct sk_buff *skb, struct sk_buff **skb_trimmed);
223 void addrconf_dad_failure(struct sk_buff *skb, struct inet6_ifaddr *ifp);
224 
225 bool ipv6_chk_mcast_addr(struct net_device *dev, const struct in6_addr *group,
226 			 const struct in6_addr *src_addr);
227 
228 void ipv6_mc_dad_complete(struct inet6_dev *idev);
229 
230 /* A stub used by vxlan module. This is ugly, ideally these
231  * symbols should be built into the core kernel.
232  */
233 struct ipv6_stub {
234 	int (*ipv6_sock_mc_join)(struct sock *sk, int ifindex,
235 				 const struct in6_addr *addr);
236 	int (*ipv6_sock_mc_drop)(struct sock *sk, int ifindex,
237 				 const struct in6_addr *addr);
238 	int (*ipv6_dst_lookup)(struct net *net, struct sock *sk,
239 			       struct dst_entry **dst, struct flowi6 *fl6);
240 
241 	struct fib6_table *(*fib6_get_table)(struct net *net, u32 id);
242 	struct fib6_info *(*fib6_lookup)(struct net *net, int oif,
243 					 struct flowi6 *fl6, int flags);
244 	struct fib6_info *(*fib6_table_lookup)(struct net *net,
245 					      struct fib6_table *table,
246 					      int oif, struct flowi6 *fl6,
247 					      int flags);
248 	struct fib6_info *(*fib6_multipath_select)(const struct net *net,
249 						   struct fib6_info *f6i,
250 						   struct flowi6 *fl6, int oif,
251 						   const struct sk_buff *skb,
252 						   int strict);
253 	u32 (*ip6_mtu_from_fib6)(struct fib6_info *f6i, struct in6_addr *daddr,
254 				 struct in6_addr *saddr);
255 
256 	void (*udpv6_encap_enable)(void);
257 	void (*ndisc_send_na)(struct net_device *dev, const struct in6_addr *daddr,
258 			      const struct in6_addr *solicited_addr,
259 			      bool router, bool solicited, bool override, bool inc_opt);
260 	struct neigh_table *nd_tbl;
261 };
262 extern const struct ipv6_stub *ipv6_stub __read_mostly;
263 
264 /* A stub used by bpf helpers. Similarly ugly as ipv6_stub */
265 struct ipv6_bpf_stub {
266 	int (*inet6_bind)(struct sock *sk, struct sockaddr *uaddr, int addr_len,
267 			  bool force_bind_address_no_port, bool with_lock);
268 };
269 extern const struct ipv6_bpf_stub *ipv6_bpf_stub __read_mostly;
270 
271 /*
272  * identify MLD packets for MLD filter exceptions
273  */
ipv6_is_mld(struct sk_buff * skb,int nexthdr,int offset)274 static inline bool ipv6_is_mld(struct sk_buff *skb, int nexthdr, int offset)
275 {
276 	struct icmp6hdr *hdr;
277 
278 	if (nexthdr != IPPROTO_ICMPV6 ||
279 	    !pskb_network_may_pull(skb, offset + sizeof(struct icmp6hdr)))
280 		return false;
281 
282 	hdr = (struct icmp6hdr *)(skb_network_header(skb) + offset);
283 
284 	switch (hdr->icmp6_type) {
285 	case ICMPV6_MGM_QUERY:
286 	case ICMPV6_MGM_REPORT:
287 	case ICMPV6_MGM_REDUCTION:
288 	case ICMPV6_MLD2_REPORT:
289 		return true;
290 	default:
291 		break;
292 	}
293 	return false;
294 }
295 
296 void addrconf_prefix_rcv(struct net_device *dev,
297 			 u8 *opt, int len, bool sllao);
298 
299 /*
300  *	anycast prototypes (anycast.c)
301  */
302 int ipv6_sock_ac_join(struct sock *sk, int ifindex,
303 		      const struct in6_addr *addr);
304 int ipv6_sock_ac_drop(struct sock *sk, int ifindex,
305 		      const struct in6_addr *addr);
306 void ipv6_sock_ac_close(struct sock *sk);
307 
308 int __ipv6_dev_ac_inc(struct inet6_dev *idev, const struct in6_addr *addr);
309 int __ipv6_dev_ac_dec(struct inet6_dev *idev, const struct in6_addr *addr);
310 void ipv6_ac_destroy_dev(struct inet6_dev *idev);
311 bool ipv6_chk_acast_addr(struct net *net, struct net_device *dev,
312 			 const struct in6_addr *addr);
313 bool ipv6_chk_acast_addr_src(struct net *net, struct net_device *dev,
314 			     const struct in6_addr *addr);
315 
316 /* Device notifier */
317 int register_inet6addr_notifier(struct notifier_block *nb);
318 int unregister_inet6addr_notifier(struct notifier_block *nb);
319 int inet6addr_notifier_call_chain(unsigned long val, void *v);
320 
321 int register_inet6addr_validator_notifier(struct notifier_block *nb);
322 int unregister_inet6addr_validator_notifier(struct notifier_block *nb);
323 int inet6addr_validator_notifier_call_chain(unsigned long val, void *v);
324 
325 void inet6_netconf_notify_devconf(struct net *net, int event, int type,
326 				  int ifindex, struct ipv6_devconf *devconf);
327 
328 /**
329  * __in6_dev_get - get inet6_dev pointer from netdevice
330  * @dev: network device
331  *
332  * Caller must hold rcu_read_lock or RTNL, because this function
333  * does not take a reference on the inet6_dev.
334  */
__in6_dev_get(const struct net_device * dev)335 static inline struct inet6_dev *__in6_dev_get(const struct net_device *dev)
336 {
337 	return rcu_dereference_rtnl(dev->ip6_ptr);
338 }
339 
340 /**
341  * __in6_dev_get_safely - get inet6_dev pointer from netdevice
342  * @dev: network device
343  *
344  * This is a safer version of __in6_dev_get
345  */
__in6_dev_get_safely(const struct net_device * dev)346 static inline struct inet6_dev *__in6_dev_get_safely(const struct net_device *dev)
347 {
348 	if (likely(dev))
349 		return rcu_dereference_rtnl(dev->ip6_ptr);
350 	else
351 		return NULL;
352 }
353 
354 /**
355  * in6_dev_get - get inet6_dev pointer from netdevice
356  * @dev: network device
357  *
358  * This version can be used in any context, and takes a reference
359  * on the inet6_dev. Callers must use in6_dev_put() later to
360  * release this reference.
361  */
in6_dev_get(const struct net_device * dev)362 static inline struct inet6_dev *in6_dev_get(const struct net_device *dev)
363 {
364 	struct inet6_dev *idev;
365 
366 	rcu_read_lock();
367 	idev = rcu_dereference(dev->ip6_ptr);
368 	if (idev)
369 		refcount_inc(&idev->refcnt);
370 	rcu_read_unlock();
371 	return idev;
372 }
373 
__in6_dev_nd_parms_get_rcu(const struct net_device * dev)374 static inline struct neigh_parms *__in6_dev_nd_parms_get_rcu(const struct net_device *dev)
375 {
376 	struct inet6_dev *idev = __in6_dev_get(dev);
377 
378 	return idev ? idev->nd_parms : NULL;
379 }
380 
381 void in6_dev_finish_destroy(struct inet6_dev *idev);
382 
in6_dev_put(struct inet6_dev * idev)383 static inline void in6_dev_put(struct inet6_dev *idev)
384 {
385 	if (refcount_dec_and_test(&idev->refcnt))
386 		in6_dev_finish_destroy(idev);
387 }
388 
in6_dev_put_clear(struct inet6_dev ** pidev)389 static inline void in6_dev_put_clear(struct inet6_dev **pidev)
390 {
391 	struct inet6_dev *idev = *pidev;
392 
393 	if (idev) {
394 		in6_dev_put(idev);
395 		*pidev = NULL;
396 	}
397 }
398 
__in6_dev_put(struct inet6_dev * idev)399 static inline void __in6_dev_put(struct inet6_dev *idev)
400 {
401 	refcount_dec(&idev->refcnt);
402 }
403 
in6_dev_hold(struct inet6_dev * idev)404 static inline void in6_dev_hold(struct inet6_dev *idev)
405 {
406 	refcount_inc(&idev->refcnt);
407 }
408 
409 void inet6_ifa_finish_destroy(struct inet6_ifaddr *ifp);
410 
in6_ifa_put(struct inet6_ifaddr * ifp)411 static inline void in6_ifa_put(struct inet6_ifaddr *ifp)
412 {
413 	if (refcount_dec_and_test(&ifp->refcnt))
414 		inet6_ifa_finish_destroy(ifp);
415 }
416 
__in6_ifa_put(struct inet6_ifaddr * ifp)417 static inline void __in6_ifa_put(struct inet6_ifaddr *ifp)
418 {
419 	refcount_dec(&ifp->refcnt);
420 }
421 
in6_ifa_hold(struct inet6_ifaddr * ifp)422 static inline void in6_ifa_hold(struct inet6_ifaddr *ifp)
423 {
424 	refcount_inc(&ifp->refcnt);
425 }
426 
427 
428 /*
429  *	compute link-local solicited-node multicast address
430  */
431 
addrconf_addr_solict_mult(const struct in6_addr * addr,struct in6_addr * solicited)432 static inline void addrconf_addr_solict_mult(const struct in6_addr *addr,
433 					     struct in6_addr *solicited)
434 {
435 	ipv6_addr_set(solicited,
436 		      htonl(0xFF020000), 0,
437 		      htonl(0x1),
438 		      htonl(0xFF000000) | addr->s6_addr32[3]);
439 }
440 
ipv6_addr_is_ll_all_nodes(const struct in6_addr * addr)441 static inline bool ipv6_addr_is_ll_all_nodes(const struct in6_addr *addr)
442 {
443 #if defined(CONFIG_HAVE_EFFICIENT_UNALIGNED_ACCESS) && BITS_PER_LONG == 64
444 	__be64 *p = (__be64 *)addr;
445 	return ((p[0] ^ cpu_to_be64(0xff02000000000000UL)) | (p[1] ^ cpu_to_be64(1))) == 0UL;
446 #else
447 	return ((addr->s6_addr32[0] ^ htonl(0xff020000)) |
448 		addr->s6_addr32[1] | addr->s6_addr32[2] |
449 		(addr->s6_addr32[3] ^ htonl(0x00000001))) == 0;
450 #endif
451 }
452 
ipv6_addr_is_ll_all_routers(const struct in6_addr * addr)453 static inline bool ipv6_addr_is_ll_all_routers(const struct in6_addr *addr)
454 {
455 #if defined(CONFIG_HAVE_EFFICIENT_UNALIGNED_ACCESS) && BITS_PER_LONG == 64
456 	__be64 *p = (__be64 *)addr;
457 	return ((p[0] ^ cpu_to_be64(0xff02000000000000UL)) | (p[1] ^ cpu_to_be64(2))) == 0UL;
458 #else
459 	return ((addr->s6_addr32[0] ^ htonl(0xff020000)) |
460 		addr->s6_addr32[1] | addr->s6_addr32[2] |
461 		(addr->s6_addr32[3] ^ htonl(0x00000002))) == 0;
462 #endif
463 }
464 
ipv6_addr_is_isatap(const struct in6_addr * addr)465 static inline bool ipv6_addr_is_isatap(const struct in6_addr *addr)
466 {
467 	return (addr->s6_addr32[2] | htonl(0x02000000)) == htonl(0x02005EFE);
468 }
469 
ipv6_addr_is_solict_mult(const struct in6_addr * addr)470 static inline bool ipv6_addr_is_solict_mult(const struct in6_addr *addr)
471 {
472 #if defined(CONFIG_HAVE_EFFICIENT_UNALIGNED_ACCESS) && BITS_PER_LONG == 64
473 	__be64 *p = (__be64 *)addr;
474 	return ((p[0] ^ cpu_to_be64(0xff02000000000000UL)) |
475 		((p[1] ^ cpu_to_be64(0x00000001ff000000UL)) &
476 		 cpu_to_be64(0xffffffffff000000UL))) == 0UL;
477 #else
478 	return ((addr->s6_addr32[0] ^ htonl(0xff020000)) |
479 		addr->s6_addr32[1] |
480 		(addr->s6_addr32[2] ^ htonl(0x00000001)) |
481 		(addr->s6_addr[12] ^ 0xff)) == 0;
482 #endif
483 }
484 
485 #ifdef CONFIG_PROC_FS
486 int if6_proc_init(void);
487 void if6_proc_exit(void);
488 #endif
489 
490 #endif
491