2 * Linux NET3: IP/IP protocol decoder.
5 * Sam Lantinga (slouken@cs.ucdavis.edu) 02/01/95
8 * Alan Cox : Merged and made usable non modular (its so tiny its silly as
9 * a module taking up 2 pages).
10 * Alan Cox : Fixed bug with 1.3.18 and IPIP not working (now needs to set skb->h.iph)
11 * to keep ip_forward happy.
12 * Alan Cox : More fixes for 1.3.21, and firewall fix. Maybe this will work soon 8).
13 * Kai Schulte : Fixed #defines for IP_FIREWALL->FIREWALL
14 * David Woodhouse : Perform some basic ICMP handling.
15 * IPIP Routing without decapsulation.
16 * Carlos Picoto : GRE over IP support
17 * Alexey Kuznetsov: Reworked. Really, now it is truncated version of ipv4/ip_gre.c.
18 * I do not want to merge them together.
20 * This program is free software; you can redistribute it and/or
21 * modify it under the terms of the GNU General Public License
22 * as published by the Free Software Foundation; either version
23 * 2 of the License, or (at your option) any later version.
27 /* tunnel.c: an IP tunnel driver
29 The purpose of this driver is to provide an IP tunnel through
30 which you can tunnel network traffic transparently across subnets.
32 This was written by looking at Nick Holloway's dummy driver
33 Thanks for the great code!
35 -Sam Lantinga (slouken@cs.ucdavis.edu) 02/01/95
38 Cleaned up the code a little and added some pre-1.3.0 tweaks.
39 dev->hard_header/hard_header_len changed to use no headers.
40 Comments/bracketing tweaked.
41 Made the tunnels use dev->name not tunnel: when error reporting.
44 -Alan Cox (alan@lxorguk.ukuu.org.uk) 21 March 95
47 Changed to tunnel to destination gateway in addition to the
48 tunnel's pointopoint address
49 Almost completely rewritten
50 Note: There is currently no firewall or ICMP handling done.
52 -Sam Lantinga (slouken@cs.ucdavis.edu) 02/13/96
56 /* Things I wish I had known when writing the tunnel driver:
58 When the tunnel_xmit() function is called, the skb contains the
59 packet to be sent (plus a great deal of extra info), and dev
60 contains the tunnel device that _we_ are.
62 When we are passed a packet, we are expected to fill in the
63 source address with our source IP address.
65 What is the proper way to allocate, copy and free a buffer?
66 After you allocate it, it is a "0 length" chunk of memory
67 starting at zero. If you want to add headers to the buffer
68 later, you'll have to call "skb_reserve(skb, amount)" with
69 the amount of memory you want reserved. Then, you call
70 "skb_put(skb, amount)" with the amount of space you want in
71 the buffer. skb_put() returns a pointer to the top (#0) of
72 that buffer. skb->len is set to the amount of space you have
73 "allocated" with skb_put(). You can then write up to skb->len
74 bytes to that buffer. If you need more, you can call skb_put()
75 again with the additional amount of space you need. You can
76 find out how much more space you can allocate by calling
78 Now, to add header space, call "skb_push(skb, header_len)".
79 This creates space at the beginning of the buffer and returns
80 a pointer to this new space. If later you need to strip a
81 header from a buffer, call "skb_pull(skb, header_len)".
82 skb_headroom() will return how much space is left at the top
83 of the buffer (before the main data). Remember, this headroom
84 space must be reserved before the skb_put() function is called.
88 This version of net/ipv4/ipip.c is cloned of net/ipv4/ip_gre.c
90 For comments look at net/ipv4/ip_gre.c --ANK
94 #include <linux/capability.h>
95 #include <linux/module.h>
96 #include <linux/types.h>
97 #include <linux/kernel.h>
98 #include <linux/slab.h>
99 #include <asm/uaccess.h>
100 #include <linux/skbuff.h>
101 #include <linux/netdevice.h>
102 #include <linux/in.h>
103 #include <linux/tcp.h>
104 #include <linux/udp.h>
105 #include <linux/if_arp.h>
106 #include <linux/mroute.h>
107 #include <linux/init.h>
108 #include <linux/netfilter_ipv4.h>
109 #include <linux/if_ether.h>
111 #include <net/sock.h>
113 #include <net/icmp.h>
114 #include <net/ipip.h>
115 #include <net/inet_ecn.h>
116 #include <net/xfrm.h>
117 #include <net/net_namespace.h>
118 #include <net/netns/generic.h>
121 #define HASH(addr) (((__force u32)addr^((__force u32)addr>>4))&0xF)
123 static bool log_ecn_error = true;
124 module_param(log_ecn_error, bool, 0644);
125 MODULE_PARM_DESC(log_ecn_error, "Log packets received with corrupted ECN");
127 static int ipip_net_id __read_mostly;
129 struct ip_tunnel __rcu *tunnels_r_l[HASH_SIZE];
130 struct ip_tunnel __rcu *tunnels_r[HASH_SIZE];
131 struct ip_tunnel __rcu *tunnels_l[HASH_SIZE];
132 struct ip_tunnel __rcu *tunnels_wc[1];
133 struct ip_tunnel __rcu **tunnels[4];
135 struct net_device *fb_tunnel_dev;
138 static int ipip_tunnel_init(struct net_device *dev);
139 static void ipip_tunnel_setup(struct net_device *dev);
140 static void ipip_dev_free(struct net_device *dev);
141 static struct rtnl_link_ops ipip_link_ops __read_mostly;
143 static struct rtnl_link_stats64 *ipip_get_stats64(struct net_device *dev,
144 struct rtnl_link_stats64 *tot)
148 for_each_possible_cpu(i) {
149 const struct pcpu_tstats *tstats = per_cpu_ptr(dev->tstats, i);
150 u64 rx_packets, rx_bytes, tx_packets, tx_bytes;
154 start = u64_stats_fetch_begin_bh(&tstats->syncp);
155 rx_packets = tstats->rx_packets;
156 tx_packets = tstats->tx_packets;
157 rx_bytes = tstats->rx_bytes;
158 tx_bytes = tstats->tx_bytes;
159 } while (u64_stats_fetch_retry_bh(&tstats->syncp, start));
161 tot->rx_packets += rx_packets;
162 tot->tx_packets += tx_packets;
163 tot->rx_bytes += rx_bytes;
164 tot->tx_bytes += tx_bytes;
167 tot->tx_fifo_errors = dev->stats.tx_fifo_errors;
168 tot->tx_carrier_errors = dev->stats.tx_carrier_errors;
169 tot->tx_dropped = dev->stats.tx_dropped;
170 tot->tx_aborted_errors = dev->stats.tx_aborted_errors;
171 tot->tx_errors = dev->stats.tx_errors;
172 tot->collisions = dev->stats.collisions;
177 static struct ip_tunnel *ipip_tunnel_lookup(struct net *net,
178 __be32 remote, __be32 local)
180 unsigned int h0 = HASH(remote);
181 unsigned int h1 = HASH(local);
183 struct ipip_net *ipn = net_generic(net, ipip_net_id);
185 for_each_ip_tunnel_rcu(t, ipn->tunnels_r_l[h0 ^ h1])
186 if (local == t->parms.iph.saddr &&
187 remote == t->parms.iph.daddr && (t->dev->flags&IFF_UP))
190 for_each_ip_tunnel_rcu(t, ipn->tunnels_r[h0])
191 if (remote == t->parms.iph.daddr && (t->dev->flags&IFF_UP))
194 for_each_ip_tunnel_rcu(t, ipn->tunnels_l[h1])
195 if (local == t->parms.iph.saddr && (t->dev->flags&IFF_UP))
198 t = rcu_dereference(ipn->tunnels_wc[0]);
199 if (t && (t->dev->flags&IFF_UP))
204 static struct ip_tunnel __rcu **__ipip_bucket(struct ipip_net *ipn,
205 struct ip_tunnel_parm *parms)
207 __be32 remote = parms->iph.daddr;
208 __be32 local = parms->iph.saddr;
220 return &ipn->tunnels[prio][h];
223 static inline struct ip_tunnel __rcu **ipip_bucket(struct ipip_net *ipn,
226 return __ipip_bucket(ipn, &t->parms);
229 static void ipip_tunnel_unlink(struct ipip_net *ipn, struct ip_tunnel *t)
231 struct ip_tunnel __rcu **tp;
232 struct ip_tunnel *iter;
234 for (tp = ipip_bucket(ipn, t);
235 (iter = rtnl_dereference(*tp)) != NULL;
238 rcu_assign_pointer(*tp, t->next);
244 static void ipip_tunnel_link(struct ipip_net *ipn, struct ip_tunnel *t)
246 struct ip_tunnel __rcu **tp = ipip_bucket(ipn, t);
248 rcu_assign_pointer(t->next, rtnl_dereference(*tp));
249 rcu_assign_pointer(*tp, t);
252 static int ipip_tunnel_create(struct net_device *dev)
254 struct ip_tunnel *t = netdev_priv(dev);
255 struct net *net = dev_net(dev);
256 struct ipip_net *ipn = net_generic(net, ipip_net_id);
259 err = ipip_tunnel_init(dev);
263 err = register_netdevice(dev);
267 strcpy(t->parms.name, dev->name);
268 dev->rtnl_link_ops = &ipip_link_ops;
271 ipip_tunnel_link(ipn, t);
278 static struct ip_tunnel *ipip_tunnel_locate(struct net *net,
279 struct ip_tunnel_parm *parms, int create)
281 __be32 remote = parms->iph.daddr;
282 __be32 local = parms->iph.saddr;
283 struct ip_tunnel *t, *nt;
284 struct ip_tunnel __rcu **tp;
285 struct net_device *dev;
287 struct ipip_net *ipn = net_generic(net, ipip_net_id);
289 for (tp = __ipip_bucket(ipn, parms);
290 (t = rtnl_dereference(*tp)) != NULL;
292 if (local == t->parms.iph.saddr && remote == t->parms.iph.daddr)
299 strlcpy(name, parms->name, IFNAMSIZ);
301 strcpy(name, "tunl%d");
303 dev = alloc_netdev(sizeof(*t), name, ipip_tunnel_setup);
307 dev_net_set(dev, net);
309 nt = netdev_priv(dev);
312 if (ipip_tunnel_create(dev) < 0)
322 /* called with RTNL */
323 static void ipip_tunnel_uninit(struct net_device *dev)
325 struct net *net = dev_net(dev);
326 struct ipip_net *ipn = net_generic(net, ipip_net_id);
328 if (dev == ipn->fb_tunnel_dev)
329 RCU_INIT_POINTER(ipn->tunnels_wc[0], NULL);
331 ipip_tunnel_unlink(ipn, netdev_priv(dev));
335 static int ipip_err(struct sk_buff *skb, u32 info)
338 /* All the routers (except for Linux) return only
339 8 bytes of packet payload. It means, that precise relaying of
340 ICMP in the real Internet is absolutely infeasible.
342 const struct iphdr *iph = (const struct iphdr *)skb->data;
343 const int type = icmp_hdr(skb)->type;
344 const int code = icmp_hdr(skb)->code;
350 case ICMP_PARAMETERPROB:
353 case ICMP_DEST_UNREACH:
356 case ICMP_PORT_UNREACH:
357 /* Impossible event. */
360 /* All others are translated to HOST_UNREACH.
361 rfc2003 contains "deep thoughts" about NET_UNREACH,
362 I believe they are just ether pollution. --ANK
367 case ICMP_TIME_EXCEEDED:
368 if (code != ICMP_EXC_TTL)
376 t = ipip_tunnel_lookup(dev_net(skb->dev), iph->daddr, iph->saddr);
380 if (type == ICMP_DEST_UNREACH && code == ICMP_FRAG_NEEDED) {
381 ipv4_update_pmtu(skb, dev_net(skb->dev), info,
382 t->dev->ifindex, 0, IPPROTO_IPIP, 0);
387 if (type == ICMP_REDIRECT) {
388 ipv4_redirect(skb, dev_net(skb->dev), t->dev->ifindex, 0,
394 if (t->parms.iph.daddr == 0)
398 if (t->parms.iph.ttl == 0 && type == ICMP_TIME_EXCEEDED)
401 if (time_before(jiffies, t->err_time + IPTUNNEL_ERR_TIMEO))
405 t->err_time = jiffies;
411 static int ipip_rcv(struct sk_buff *skb)
413 struct ip_tunnel *tunnel;
414 const struct iphdr *iph = ip_hdr(skb);
417 tunnel = ipip_tunnel_lookup(dev_net(skb->dev), iph->saddr, iph->daddr);
418 if (tunnel != NULL) {
419 struct pcpu_tstats *tstats;
421 if (!xfrm4_policy_check(NULL, XFRM_POLICY_IN, skb))
426 skb->mac_header = skb->network_header;
427 skb_reset_network_header(skb);
428 skb->protocol = htons(ETH_P_IP);
429 skb->pkt_type = PACKET_HOST;
431 __skb_tunnel_rx(skb, tunnel->dev);
433 err = IP_ECN_decapsulate(iph, skb);
436 net_info_ratelimited("non-ECT from %pI4 with TOS=%#x\n",
437 &iph->saddr, iph->tos);
439 ++tunnel->dev->stats.rx_frame_errors;
440 ++tunnel->dev->stats.rx_errors;
445 tstats = this_cpu_ptr(tunnel->dev->tstats);
446 u64_stats_update_begin(&tstats->syncp);
447 tstats->rx_packets++;
448 tstats->rx_bytes += skb->len;
449 u64_stats_update_end(&tstats->syncp);
463 * This function assumes it is being called from dev_queue_xmit()
464 * and that skb is filled properly by that function.
467 static netdev_tx_t ipip_tunnel_xmit(struct sk_buff *skb, struct net_device *dev)
469 struct ip_tunnel *tunnel = netdev_priv(dev);
470 const struct iphdr *tiph = &tunnel->parms.iph;
471 u8 tos = tunnel->parms.iph.tos;
472 __be16 df = tiph->frag_off;
473 struct rtable *rt; /* Route to the other host */
474 struct net_device *tdev; /* Device to other host */
475 const struct iphdr *old_iph = ip_hdr(skb);
476 struct iphdr *iph; /* Our new IP header */
477 unsigned int max_headroom; /* The extra header space needed */
478 __be32 dst = tiph->daddr;
482 if (skb->protocol != htons(ETH_P_IP))
485 if (skb->ip_summed == CHECKSUM_PARTIAL &&
486 skb_checksum_help(skb))
494 if ((rt = skb_rtable(skb)) == NULL) {
495 dev->stats.tx_fifo_errors++;
498 dst = rt_nexthop(rt, old_iph->daddr);
501 rt = ip_route_output_ports(dev_net(dev), &fl4, NULL,
504 IPPROTO_IPIP, RT_TOS(tos),
507 dev->stats.tx_carrier_errors++;
514 dev->stats.collisions++;
518 df |= old_iph->frag_off & htons(IP_DF);
521 mtu = dst_mtu(&rt->dst) - sizeof(struct iphdr);
524 dev->stats.collisions++;
530 skb_dst(skb)->ops->update_pmtu(skb_dst(skb), NULL, skb, mtu);
532 if ((old_iph->frag_off & htons(IP_DF)) &&
533 mtu < ntohs(old_iph->tot_len)) {
534 icmp_send(skb, ICMP_DEST_UNREACH, ICMP_FRAG_NEEDED,
541 if (tunnel->err_count > 0) {
542 if (time_before(jiffies,
543 tunnel->err_time + IPTUNNEL_ERR_TIMEO)) {
545 dst_link_failure(skb);
547 tunnel->err_count = 0;
551 * Okay, now see if we can stuff it in the buffer as-is.
553 max_headroom = (LL_RESERVED_SPACE(tdev)+sizeof(struct iphdr));
555 if (skb_headroom(skb) < max_headroom || skb_shared(skb) ||
556 (skb_cloned(skb) && !skb_clone_writable(skb, 0))) {
557 struct sk_buff *new_skb = skb_realloc_headroom(skb, max_headroom);
560 dev->stats.tx_dropped++;
565 skb_set_owner_w(new_skb, skb->sk);
568 old_iph = ip_hdr(skb);
571 skb->transport_header = skb->network_header;
572 skb_push(skb, sizeof(struct iphdr));
573 skb_reset_network_header(skb);
574 memset(&(IPCB(skb)->opt), 0, sizeof(IPCB(skb)->opt));
575 IPCB(skb)->flags &= ~(IPSKB_XFRM_TUNNEL_SIZE | IPSKB_XFRM_TRANSFORMED |
578 skb_dst_set(skb, &rt->dst);
581 * Push down and install the IPIP header.
586 iph->ihl = sizeof(struct iphdr)>>2;
588 iph->protocol = IPPROTO_IPIP;
589 iph->tos = INET_ECN_encapsulate(tos, old_iph->tos);
590 iph->daddr = fl4.daddr;
591 iph->saddr = fl4.saddr;
593 if ((iph->ttl = tiph->ttl) == 0)
594 iph->ttl = old_iph->ttl;
596 iptunnel_xmit(skb, dev);
600 dst_link_failure(skb);
602 dev->stats.tx_errors++;
607 static void ipip_tunnel_bind_dev(struct net_device *dev)
609 struct net_device *tdev = NULL;
610 struct ip_tunnel *tunnel;
611 const struct iphdr *iph;
613 tunnel = netdev_priv(dev);
614 iph = &tunnel->parms.iph;
620 rt = ip_route_output_ports(dev_net(dev), &fl4, NULL,
621 iph->daddr, iph->saddr,
630 dev->flags |= IFF_POINTOPOINT;
633 if (!tdev && tunnel->parms.link)
634 tdev = __dev_get_by_index(dev_net(dev), tunnel->parms.link);
637 dev->hard_header_len = tdev->hard_header_len + sizeof(struct iphdr);
638 dev->mtu = tdev->mtu - sizeof(struct iphdr);
640 dev->iflink = tunnel->parms.link;
643 static void ipip_tunnel_update(struct ip_tunnel *t, struct ip_tunnel_parm *p)
645 struct net *net = dev_net(t->dev);
646 struct ipip_net *ipn = net_generic(net, ipip_net_id);
648 ipip_tunnel_unlink(ipn, t);
650 t->parms.iph.saddr = p->iph.saddr;
651 t->parms.iph.daddr = p->iph.daddr;
652 memcpy(t->dev->dev_addr, &p->iph.saddr, 4);
653 memcpy(t->dev->broadcast, &p->iph.daddr, 4);
654 ipip_tunnel_link(ipn, t);
655 t->parms.iph.ttl = p->iph.ttl;
656 t->parms.iph.tos = p->iph.tos;
657 t->parms.iph.frag_off = p->iph.frag_off;
658 if (t->parms.link != p->link) {
659 t->parms.link = p->link;
660 ipip_tunnel_bind_dev(t->dev);
662 netdev_state_change(t->dev);
666 ipip_tunnel_ioctl (struct net_device *dev, struct ifreq *ifr, int cmd)
669 struct ip_tunnel_parm p;
671 struct net *net = dev_net(dev);
672 struct ipip_net *ipn = net_generic(net, ipip_net_id);
677 if (dev == ipn->fb_tunnel_dev) {
678 if (copy_from_user(&p, ifr->ifr_ifru.ifru_data, sizeof(p))) {
682 t = ipip_tunnel_locate(net, &p, 0);
685 t = netdev_priv(dev);
686 memcpy(&p, &t->parms, sizeof(p));
687 if (copy_to_user(ifr->ifr_ifru.ifru_data, &p, sizeof(p)))
694 if (!ns_capable(net->user_ns, CAP_NET_ADMIN))
698 if (copy_from_user(&p, ifr->ifr_ifru.ifru_data, sizeof(p)))
702 if (p.iph.version != 4 || p.iph.protocol != IPPROTO_IPIP ||
703 p.iph.ihl != 5 || (p.iph.frag_off&htons(~IP_DF)))
706 p.iph.frag_off |= htons(IP_DF);
708 t = ipip_tunnel_locate(net, &p, cmd == SIOCADDTUNNEL);
710 if (dev != ipn->fb_tunnel_dev && cmd == SIOCCHGTUNNEL) {
717 if (((dev->flags&IFF_POINTOPOINT) && !p.iph.daddr) ||
718 (!(dev->flags&IFF_POINTOPOINT) && p.iph.daddr)) {
722 t = netdev_priv(dev);
725 ipip_tunnel_update(t, &p);
730 if (copy_to_user(ifr->ifr_ifru.ifru_data, &t->parms, sizeof(p)))
733 err = (cmd == SIOCADDTUNNEL ? -ENOBUFS : -ENOENT);
738 if (!ns_capable(net->user_ns, CAP_NET_ADMIN))
741 if (dev == ipn->fb_tunnel_dev) {
743 if (copy_from_user(&p, ifr->ifr_ifru.ifru_data, sizeof(p)))
746 if ((t = ipip_tunnel_locate(net, &p, 0)) == NULL)
749 if (t->dev == ipn->fb_tunnel_dev)
753 unregister_netdevice(dev);
765 static int ipip_tunnel_change_mtu(struct net_device *dev, int new_mtu)
767 if (new_mtu < 68 || new_mtu > 0xFFF8 - sizeof(struct iphdr))
773 static const struct net_device_ops ipip_netdev_ops = {
774 .ndo_uninit = ipip_tunnel_uninit,
775 .ndo_start_xmit = ipip_tunnel_xmit,
776 .ndo_do_ioctl = ipip_tunnel_ioctl,
777 .ndo_change_mtu = ipip_tunnel_change_mtu,
778 .ndo_get_stats64 = ipip_get_stats64,
781 static void ipip_dev_free(struct net_device *dev)
783 free_percpu(dev->tstats);
787 #define IPIP_FEATURES (NETIF_F_SG | \
792 static void ipip_tunnel_setup(struct net_device *dev)
794 dev->netdev_ops = &ipip_netdev_ops;
795 dev->destructor = ipip_dev_free;
797 dev->type = ARPHRD_TUNNEL;
798 dev->hard_header_len = LL_MAX_HEADER + sizeof(struct iphdr);
799 dev->mtu = ETH_DATA_LEN - sizeof(struct iphdr);
800 dev->flags = IFF_NOARP;
803 dev->features |= NETIF_F_NETNS_LOCAL;
804 dev->features |= NETIF_F_LLTX;
805 dev->priv_flags &= ~IFF_XMIT_DST_RELEASE;
807 dev->features |= IPIP_FEATURES;
808 dev->hw_features |= IPIP_FEATURES;
811 static int ipip_tunnel_init(struct net_device *dev)
813 struct ip_tunnel *tunnel = netdev_priv(dev);
817 memcpy(dev->dev_addr, &tunnel->parms.iph.saddr, 4);
818 memcpy(dev->broadcast, &tunnel->parms.iph.daddr, 4);
820 ipip_tunnel_bind_dev(dev);
822 dev->tstats = alloc_percpu(struct pcpu_tstats);
829 static int __net_init ipip_fb_tunnel_init(struct net_device *dev)
831 struct ip_tunnel *tunnel = netdev_priv(dev);
832 struct iphdr *iph = &tunnel->parms.iph;
833 struct ipip_net *ipn = net_generic(dev_net(dev), ipip_net_id);
836 strcpy(tunnel->parms.name, dev->name);
839 iph->protocol = IPPROTO_IPIP;
842 dev->tstats = alloc_percpu(struct pcpu_tstats);
847 rcu_assign_pointer(ipn->tunnels_wc[0], tunnel);
851 static void ipip_netlink_parms(struct nlattr *data[],
852 struct ip_tunnel_parm *parms)
854 memset(parms, 0, sizeof(*parms));
856 parms->iph.version = 4;
857 parms->iph.protocol = IPPROTO_IPIP;
863 if (data[IFLA_IPTUN_LINK])
864 parms->link = nla_get_u32(data[IFLA_IPTUN_LINK]);
866 if (data[IFLA_IPTUN_LOCAL])
867 parms->iph.saddr = nla_get_be32(data[IFLA_IPTUN_LOCAL]);
869 if (data[IFLA_IPTUN_REMOTE])
870 parms->iph.daddr = nla_get_be32(data[IFLA_IPTUN_REMOTE]);
872 if (data[IFLA_IPTUN_TTL]) {
873 parms->iph.ttl = nla_get_u8(data[IFLA_IPTUN_TTL]);
875 parms->iph.frag_off = htons(IP_DF);
878 if (data[IFLA_IPTUN_TOS])
879 parms->iph.tos = nla_get_u8(data[IFLA_IPTUN_TOS]);
881 if (!data[IFLA_IPTUN_PMTUDISC] || nla_get_u8(data[IFLA_IPTUN_PMTUDISC]))
882 parms->iph.frag_off = htons(IP_DF);
885 static int ipip_newlink(struct net *src_net, struct net_device *dev,
886 struct nlattr *tb[], struct nlattr *data[])
888 struct net *net = dev_net(dev);
889 struct ip_tunnel *nt;
891 nt = netdev_priv(dev);
892 ipip_netlink_parms(data, &nt->parms);
894 if (ipip_tunnel_locate(net, &nt->parms, 0))
897 return ipip_tunnel_create(dev);
900 static int ipip_changelink(struct net_device *dev, struct nlattr *tb[],
901 struct nlattr *data[])
904 struct ip_tunnel_parm p;
905 struct net *net = dev_net(dev);
906 struct ipip_net *ipn = net_generic(net, ipip_net_id);
908 if (dev == ipn->fb_tunnel_dev)
911 ipip_netlink_parms(data, &p);
913 if (((dev->flags & IFF_POINTOPOINT) && !p.iph.daddr) ||
914 (!(dev->flags & IFF_POINTOPOINT) && p.iph.daddr))
917 t = ipip_tunnel_locate(net, &p, 0);
923 t = netdev_priv(dev);
925 ipip_tunnel_update(t, &p);
929 static size_t ipip_get_size(const struct net_device *dev)
932 /* IFLA_IPTUN_LINK */
934 /* IFLA_IPTUN_LOCAL */
936 /* IFLA_IPTUN_REMOTE */
942 /* IFLA_IPTUN_PMTUDISC */
947 static int ipip_fill_info(struct sk_buff *skb, const struct net_device *dev)
949 struct ip_tunnel *tunnel = netdev_priv(dev);
950 struct ip_tunnel_parm *parm = &tunnel->parms;
952 if (nla_put_u32(skb, IFLA_IPTUN_LINK, parm->link) ||
953 nla_put_be32(skb, IFLA_IPTUN_LOCAL, parm->iph.saddr) ||
954 nla_put_be32(skb, IFLA_IPTUN_REMOTE, parm->iph.daddr) ||
955 nla_put_u8(skb, IFLA_IPTUN_TTL, parm->iph.ttl) ||
956 nla_put_u8(skb, IFLA_IPTUN_TOS, parm->iph.tos) ||
957 nla_put_u8(skb, IFLA_IPTUN_PMTUDISC,
958 !!(parm->iph.frag_off & htons(IP_DF))))
959 goto nla_put_failure;
966 static const struct nla_policy ipip_policy[IFLA_IPTUN_MAX + 1] = {
967 [IFLA_IPTUN_LINK] = { .type = NLA_U32 },
968 [IFLA_IPTUN_LOCAL] = { .type = NLA_U32 },
969 [IFLA_IPTUN_REMOTE] = { .type = NLA_U32 },
970 [IFLA_IPTUN_TTL] = { .type = NLA_U8 },
971 [IFLA_IPTUN_TOS] = { .type = NLA_U8 },
972 [IFLA_IPTUN_PMTUDISC] = { .type = NLA_U8 },
975 static struct rtnl_link_ops ipip_link_ops __read_mostly = {
977 .maxtype = IFLA_IPTUN_MAX,
978 .policy = ipip_policy,
979 .priv_size = sizeof(struct ip_tunnel),
980 .setup = ipip_tunnel_setup,
981 .newlink = ipip_newlink,
982 .changelink = ipip_changelink,
983 .get_size = ipip_get_size,
984 .fill_info = ipip_fill_info,
987 static struct xfrm_tunnel ipip_handler __read_mostly = {
989 .err_handler = ipip_err,
993 static const char banner[] __initconst =
994 KERN_INFO "IPv4 over IPv4 tunneling driver\n";
996 static void ipip_destroy_tunnels(struct ipip_net *ipn, struct list_head *head)
1000 for (prio = 1; prio < 4; prio++) {
1002 for (h = 0; h < HASH_SIZE; h++) {
1003 struct ip_tunnel *t;
1005 t = rtnl_dereference(ipn->tunnels[prio][h]);
1007 unregister_netdevice_queue(t->dev, head);
1008 t = rtnl_dereference(t->next);
1014 static int __net_init ipip_init_net(struct net *net)
1016 struct ipip_net *ipn = net_generic(net, ipip_net_id);
1017 struct ip_tunnel *t;
1020 ipn->tunnels[0] = ipn->tunnels_wc;
1021 ipn->tunnels[1] = ipn->tunnels_l;
1022 ipn->tunnels[2] = ipn->tunnels_r;
1023 ipn->tunnels[3] = ipn->tunnels_r_l;
1025 ipn->fb_tunnel_dev = alloc_netdev(sizeof(struct ip_tunnel),
1028 if (!ipn->fb_tunnel_dev) {
1032 dev_net_set(ipn->fb_tunnel_dev, net);
1034 err = ipip_fb_tunnel_init(ipn->fb_tunnel_dev);
1038 if ((err = register_netdev(ipn->fb_tunnel_dev)))
1041 t = netdev_priv(ipn->fb_tunnel_dev);
1043 strcpy(t->parms.name, ipn->fb_tunnel_dev->name);
1047 ipip_dev_free(ipn->fb_tunnel_dev);
1053 static void __net_exit ipip_exit_net(struct net *net)
1055 struct ipip_net *ipn = net_generic(net, ipip_net_id);
1059 ipip_destroy_tunnels(ipn, &list);
1060 unregister_netdevice_queue(ipn->fb_tunnel_dev, &list);
1061 unregister_netdevice_many(&list);
1065 static struct pernet_operations ipip_net_ops = {
1066 .init = ipip_init_net,
1067 .exit = ipip_exit_net,
1069 .size = sizeof(struct ipip_net),
1072 static int __init ipip_init(void)
1078 err = register_pernet_device(&ipip_net_ops);
1081 err = xfrm4_tunnel_register(&ipip_handler, AF_INET);
1083 pr_info("%s: can't register tunnel\n", __func__);
1084 goto xfrm_tunnel_failed;
1086 err = rtnl_link_register(&ipip_link_ops);
1088 goto rtnl_link_failed;
1094 xfrm4_tunnel_deregister(&ipip_handler, AF_INET);
1096 unregister_pernet_device(&ipip_net_ops);
1100 static void __exit ipip_fini(void)
1102 rtnl_link_unregister(&ipip_link_ops);
1103 if (xfrm4_tunnel_deregister(&ipip_handler, AF_INET))
1104 pr_info("%s: can't deregister tunnel\n", __func__);
1106 unregister_pernet_device(&ipip_net_ops);
1109 module_init(ipip_init);
1110 module_exit(ipip_fini);
1111 MODULE_LICENSE("GPL");
1112 MODULE_ALIAS_NETDEV("tunl0");
projects / can-eth-gw-linux.git / blob