projects / linux-block.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge tag 'arm-newsoc-5.13' of git://git.kernel.org/pub/scm/linux/kernel/git/soc/soc
[linux-block.git] / net / ipv4 / ip_tunnel.c
CommitLineData
c9422999 1// SPDX-License-Identifier: GPL-2.0-only
c5441932
PS		 2/*
3 * Copyright (c) 2013 Nicira, Inc.
c5441932
PS		 4 */
5
6#define pr_fmt(fmt) KBUILD_MODNAME ": " fmt
7
8#include <linux/capability.h>
9#include <linux/module.h>
10#include <linux/types.h>
11#include <linux/kernel.h>
12#include <linux/slab.h>
13#include <linux/uaccess.h>
14#include <linux/skbuff.h>
15#include <linux/netdevice.h>
16#include <linux/in.h>
17#include <linux/tcp.h>
18#include <linux/udp.h>
19#include <linux/if_arp.h>
c5441932
PS		 20#include <linux/init.h>
21#include <linux/in6.h>
22#include <linux/inetdevice.h>
23#include <linux/igmp.h>
24#include <linux/netfilter_ipv4.h>
25#include <linux/etherdevice.h>
26#include <linux/if_ether.h>
27#include <linux/if_vlan.h>
28#include <linux/rculist.h>
27d79f3b 29#include <linux/err.h>
c5441932
PS		 30
31#include <net/sock.h>
32#include <net/ip.h>
33#include <net/icmp.h>
34#include <net/protocol.h>
35#include <net/ip_tunnels.h>
36#include <net/arp.h>
37#include <net/checksum.h>
38#include <net/dsfield.h>
39#include <net/inet_ecn.h>
40#include <net/xfrm.h>
41#include <net/net_namespace.h>
42#include <net/netns/generic.h>
43#include <net/rtnetlink.h>
56328486 44#include <net/udp.h>
cfc7381b 45#include <net/dst_metadata.h>
63487bab 46
c5441932
PS		 47#if IS_ENABLED(CONFIG_IPV6)
48#include <net/ipv6.h>
49#include <net/ip6_fib.h>
50#include <net/ip6_route.h>
51#endif
52
967680e0 53static unsigned int ip_tunnel_hash(__be32 key, __be32 remote)
c5441932
PS		 54{
55 return hash_32((__force u32)key ^ (__force u32)remote,
56 IP_TNL_HASH_BITS);
57}
58
c5441932
PS		 59static bool ip_tunnel_key_match(const struct ip_tunnel_parm *p,
60 __be16 flags, __be32 key)
61{
62 if (p->i_flags & TUNNEL_KEY) {
63 if (flags & TUNNEL_KEY)
64 return key == p->i_key;
65 else
66 /* key expected, none present */
67 return false;
68 } else
69 return !(flags & TUNNEL_KEY);
70}
71
72/* Fallback tunnel: no source, no destination, no key, no options
73
74 Tunnel hash table:
75 We require exact key match i.e. if a key is present in packet
76 it will match only tunnel with the same key; if it is not present,
77 it will match only keyless tunnel.
78
79 All keysless packets, if not matched configured keyless tunnels
80 will match fallback tunnel.
81 Given src, dst and key, find appropriate for input tunnel.
82*/
83struct ip_tunnel *ip_tunnel_lookup(struct ip_tunnel_net *itn,
84 int link, __be16 flags,
85 __be32 remote, __be32 local,
86 __be32 key)
87{
c5441932
PS		 88 struct ip_tunnel *t, *cand = NULL;
89 struct hlist_head *head;
ba61539c
TY		 90 struct net_device *ndev;
91 unsigned int hash;
c5441932 92
967680e0 93 hash = ip_tunnel_hash(key, remote);
c5441932
PS		 94 head = &itn->tunnels[hash];
95
96 hlist_for_each_entry_rcu(t, head, hash_node) {
97 if (local != t->parms.iph.saddr ||
98 remote != t->parms.iph.daddr ||
99 !(t->dev->flags & IFF_UP))
100 continue;
101
102 if (!ip_tunnel_key_match(&t->parms, flags, key))
103 continue;
104
105 if (t->parms.link == link)
106 return t;
107 else
108 cand = t;
109 }
110
111 hlist_for_each_entry_rcu(t, head, hash_node) {
112 if (remote != t->parms.iph.daddr ||
e0056593 113 t->parms.iph.saddr != 0 ||
c5441932
PS		 114 !(t->dev->flags & IFF_UP))
115 continue;
116
117 if (!ip_tunnel_key_match(&t->parms, flags, key))
118 continue;
119
120 if (t->parms.link == link)
121 return t;
122 else if (!cand)
123 cand = t;
124 }
125
967680e0 126 hash = ip_tunnel_hash(key, 0);
c5441932
PS		 127 head = &itn->tunnels[hash];
128
129 hlist_for_each_entry_rcu(t, head, hash_node) {
e0056593
DP		 130 if ((local != t->parms.iph.saddr || t->parms.iph.daddr != 0) &&
131 (local != t->parms.iph.daddr || !ipv4_is_multicast(local)))
132 continue;
133
134 if (!(t->dev->flags & IFF_UP))
c5441932
PS		 135 continue;
136
137 if (!ip_tunnel_key_match(&t->parms, flags, key))
138 continue;
139
140 if (t->parms.link == link)
141 return t;
142 else if (!cand)
143 cand = t;
144 }
145
c5441932 146 hlist_for_each_entry_rcu(t, head, hash_node) {
25629fda 147 if ((!(flags & TUNNEL_NO_KEY) && t->parms.i_key != key) ||
e0056593
DP		 148 t->parms.iph.saddr != 0 ||
149 t->parms.iph.daddr != 0 ||
c5441932
PS		 150 !(t->dev->flags & IFF_UP))
151 continue;
152
153 if (t->parms.link == link)
154 return t;
155 else if (!cand)
156 cand = t;
157 }
158
c5441932
PS		 159 if (cand)
160 return cand;
161
2e15ea39 162 t = rcu_dereference(itn->collect_md_tun);
833a8b40 163 if (t && t->dev->flags & IFF_UP)
2e15ea39
PS		 164 return t;
165
ba61539c
TY		 166 ndev = READ_ONCE(itn->fb_tunnel_dev);
167 if (ndev && ndev->flags & IFF_UP)
168 return netdev_priv(ndev);
c5441932 169
c5441932
PS		 170 return NULL;
171}
172EXPORT_SYMBOL_GPL(ip_tunnel_lookup);
173
174static struct hlist_head *ip_bucket(struct ip_tunnel_net *itn,
175 struct ip_tunnel_parm *parms)
176{
177 unsigned int h;
178 __be32 remote;
6d608f06 179 __be32 i_key = parms->i_key;
c5441932
PS		 180
181 if (parms->iph.daddr && !ipv4_is_multicast(parms->iph.daddr))
182 remote = parms->iph.daddr;
183 else
184 remote = 0;
185
6d608f06
SK		 186 if (!(parms->i_flags & TUNNEL_KEY) && (parms->i_flags & VTI_ISVTI))
187 i_key = 0;
188
189 h = ip_tunnel_hash(i_key, remote);
c5441932
PS		 190 return &itn->tunnels[h];
191}
192
193static void ip_tunnel_add(struct ip_tunnel_net *itn, struct ip_tunnel *t)
194{
195 struct hlist_head *head = ip_bucket(itn, &t->parms);
196
2e15ea39
PS		 197 if (t->collect_md)
198 rcu_assign_pointer(itn->collect_md_tun, t);
c5441932
PS		 199 hlist_add_head_rcu(&t->hash_node, head);
200}
201
2e15ea39 202static void ip_tunnel_del(struct ip_tunnel_net *itn, struct ip_tunnel *t)
c5441932 203{
2e15ea39
PS		 204 if (t->collect_md)
205 rcu_assign_pointer(itn->collect_md_tun, NULL);
c5441932
PS		 206 hlist_del_init_rcu(&t->hash_node);
207}
208
209static struct ip_tunnel *ip_tunnel_find(struct ip_tunnel_net *itn,
210 struct ip_tunnel_parm *parms,
211 int type)
212{
213 __be32 remote = parms->iph.daddr;
214 __be32 local = parms->iph.saddr;
215 __be32 key = parms->i_key;
5ce54af1 216 __be16 flags = parms->i_flags;
c5441932
PS		 217 int link = parms->link;
218 struct ip_tunnel *t = NULL;
219 struct hlist_head *head = ip_bucket(itn, parms);
220
221 hlist_for_each_entry_rcu(t, head, hash_node) {
222 if (local == t->parms.iph.saddr &&
223 remote == t->parms.iph.daddr &&
c5441932 224 link == t->parms.link &&
5ce54af1
DP		 225 type == t->dev->type &&
226 ip_tunnel_key_match(&t->parms, flags, key))
c5441932
PS		 227 break;
228 }
229 return t;
230}
231
232static struct net_device *__ip_tunnel_create(struct net *net,
233 const struct rtnl_link_ops *ops,
234 struct ip_tunnel_parm *parms)
235{
236 int err;
237 struct ip_tunnel *tunnel;
238 struct net_device *dev;
239 char name[IFNAMSIZ];
240
9cb726a2
ED		 241 err = -E2BIG;
242 if (parms->name[0]) {
243 if (!dev_valid_name(parms->name))
244 goto failed;
c5441932 245 strlcpy(name, parms->name, IFNAMSIZ);
9cb726a2
ED		 246 } else {
247 if (strlen(ops->kind) > (IFNAMSIZ - 3))
c5441932 248 goto failed;
000ade80
SA		 249 strcpy(name, ops->kind);
250 strcat(name, "%d");
c5441932
PS		 251 }
252
253 ASSERT_RTNL();
c835a677 254 dev = alloc_netdev(ops->priv_size, name, NET_NAME_UNKNOWN, ops->setup);
c5441932
PS		 255 if (!dev) {
256 err = -ENOMEM;
257 goto failed;
258 }
259 dev_net_set(dev, net);
260
261 dev->rtnl_link_ops = ops;
262
263 tunnel = netdev_priv(dev);
264 tunnel->parms = *parms;
5e6700b3 265 tunnel->net = net;
c5441932
PS		 266
267 err = register_netdevice(dev);
268 if (err)
269 goto failed_free;
270
271 return dev;
272
273failed_free:
274 free_netdev(dev);
275failed:
276 return ERR_PTR(err);
277}
278
c5441932
PS		 279static int ip_tunnel_bind_dev(struct net_device *dev)
280{
281 struct net_device *tdev = NULL;
282 struct ip_tunnel *tunnel = netdev_priv(dev);
283 const struct iphdr *iph;
284 int hlen = LL_MAX_HEADER;
285 int mtu = ETH_DATA_LEN;
286 int t_hlen = tunnel->hlen + sizeof(struct iphdr);
287
288 iph = &tunnel->parms.iph;
289
290 /* Guess output device to choose reasonable mtu and needed_headroom */
291 if (iph->daddr) {
292 struct flowi4 fl4;
293 struct rtable *rt;
294
b0066da5
PM		 295 ip_tunnel_init_flow(&fl4, iph->protocol, iph->daddr,
296 iph->saddr, tunnel->parms.o_key,
297 RT_TOS(iph->tos), tunnel->parms.link,
24ba1440 298 tunnel->fwmark, 0);
7d442fab
TH		 299 rt = ip_route_output_key(tunnel->net, &fl4);
300
c5441932
PS		 301 if (!IS_ERR(rt)) {
302 tdev = rt->dst.dev;
303 ip_rt_put(rt);
304 }
305 if (dev->type != ARPHRD_ETHER)
306 dev->flags |= IFF_POINTOPOINT;
f27337e1
PA		 307
308 dst_cache_reset(&tunnel->dst_cache);
c5441932
PS		 309 }
310
311 if (!tdev && tunnel->parms.link)
6c742e71 312 tdev = __dev_get_by_index(tunnel->net, tunnel->parms.link);
c5441932
PS		 313
314 if (tdev) {
315 hlen = tdev->hard_header_len + tdev->needed_headroom;
82612de1 316 mtu = min(tdev->mtu, IP_MAX_MTU);
c5441932 317 }
c5441932
PS		 318
319 dev->needed_headroom = t_hlen + hlen;
28e104d0 320 mtu -= t_hlen;
c5441932 321
b5476022
ED		 322 if (mtu < IPV4_MIN_MTU)
323 mtu = IPV4_MIN_MTU;
c5441932
PS		 324
325 return mtu;
326}
327
328static struct ip_tunnel *ip_tunnel_create(struct net *net,
329 struct ip_tunnel_net *itn,
330 struct ip_tunnel_parm *parms)
331{
4929fd8c 332 struct ip_tunnel *nt;
c5441932 333 struct net_device *dev;
b96f9afe 334 int t_hlen;
f6cc9c05
PM		 335 int mtu;
336 int err;
c5441932 337
79134e6c 338 dev = __ip_tunnel_create(net, itn->rtnl_link_ops, parms);
c5441932 339 if (IS_ERR(dev))
6dd3c9ec 340 return ERR_CAST(dev);
c5441932 341
f6cc9c05
PM		 342 mtu = ip_tunnel_bind_dev(dev);
343 err = dev_set_mtu(dev, mtu);
344 if (err)
345 goto err_dev_set_mtu;
c5441932
PS		 346
347 nt = netdev_priv(dev);
b96f9afe
JW		 348 t_hlen = nt->hlen + sizeof(struct iphdr);
349 dev->min_mtu = ETH_MIN_MTU;
28e104d0 350 dev->max_mtu = IP_MAX_MTU - t_hlen;
c5441932
PS		 351 ip_tunnel_add(itn, nt);
352 return nt;
f6cc9c05
PM		 353
354err_dev_set_mtu:
355 unregister_netdevice(dev);
356 return ERR_PTR(err);
c5441932
PS		 357}
358
359int ip_tunnel_rcv(struct ip_tunnel *tunnel, struct sk_buff *skb,
2e15ea39
PS		 360 const struct tnl_ptk_info *tpi, struct metadata_dst *tun_dst,
361 bool log_ecn_error)
c5441932 362{
c5441932
PS		 363 const struct iphdr *iph = ip_hdr(skb);
364 int err;
365
c5441932
PS		 366#ifdef CONFIG_NET_IPGRE_BROADCAST
367 if (ipv4_is_multicast(iph->daddr)) {
c5441932
PS		 368 tunnel->dev->stats.multicast++;
369 skb->pkt_type = PACKET_BROADCAST;
370 }
371#endif
372
373 if ((!(tpi->flags&TUNNEL_CSUM) && (tunnel->parms.i_flags&TUNNEL_CSUM)) ||
374 ((tpi->flags&TUNNEL_CSUM) && !(tunnel->parms.i_flags&TUNNEL_CSUM))) {
375 tunnel->dev->stats.rx_crc_errors++;
376 tunnel->dev->stats.rx_errors++;
377 goto drop;
378 }
379
380 if (tunnel->parms.i_flags&TUNNEL_SEQ) {
381 if (!(tpi->flags&TUNNEL_SEQ) ||
382 (tunnel->i_seqno && (s32)(ntohl(tpi->seq) - tunnel->i_seqno) < 0)) {
383 tunnel->dev->stats.rx_fifo_errors++;
384 tunnel->dev->stats.rx_errors++;
385 goto drop;
386 }
387 tunnel->i_seqno = ntohl(tpi->seq) + 1;
388 }
389
e96f2e7c
YC		 390 skb_reset_network_header(skb);
391
c5441932
PS		 392 err = IP_ECN_decapsulate(iph, skb);
393 if (unlikely(err)) {
394 if (log_ecn_error)
395 net_info_ratelimited("non-ECT from %pI4 with TOS=%#x\n",
396 &iph->saddr, iph->tos);
397 if (err > 1) {
398 ++tunnel->dev->stats.rx_frame_errors;
399 ++tunnel->dev->stats.rx_errors;
400 goto drop;
401 }
402 }
403
560b50cf 404 dev_sw_netstats_rx_add(tunnel->dev, skb->len);
81b9eab5
AS		 405 skb_scrub_packet(skb, !net_eq(tunnel->net, dev_net(tunnel->dev)));
406
3d7b46cd
PS		 407 if (tunnel->dev->type == ARPHRD_ETHER) {
408 skb->protocol = eth_type_trans(skb, tunnel->dev);
409 skb_postpull_rcsum(skb, eth_hdr(skb), ETH_HLEN);
410 } else {
411 skb->dev = tunnel->dev;
412 }
64261f23 413
2e15ea39
PS		 414 if (tun_dst)
415 skb_dst_set(skb, (struct dst_entry *)tun_dst);
416
c5441932
PS		 417 gro_cells_receive(&tunnel->gro_cells, skb);
418 return 0;
419
420drop:
469f87e1
HY		 421 if (tun_dst)
422 dst_release((struct dst_entry *)tun_dst);
c5441932
PS		 423 kfree_skb(skb);
424 return 0;
425}
426EXPORT_SYMBOL_GPL(ip_tunnel_rcv);
427
a8c5f90f
TH		 428int ip_tunnel_encap_add_ops(const struct ip_tunnel_encap_ops *ops,
429 unsigned int num)
430{
bb1553c8
TG		 431 if (num >= MAX_IPTUN_ENCAP_OPS)
432 return -ERANGE;
433
a8c5f90f
TH		 434 return !cmpxchg((const struct ip_tunnel_encap_ops **)
435 &iptun_encaps[num],
436 NULL, ops) ? 0 : -1;
56328486 437}
a8c5f90f
TH		 438EXPORT_SYMBOL(ip_tunnel_encap_add_ops);
439
440int ip_tunnel_encap_del_ops(const struct ip_tunnel_encap_ops *ops,
441 unsigned int num)
442{
443 int ret;
444
bb1553c8
TG		 445 if (num >= MAX_IPTUN_ENCAP_OPS)
446 return -ERANGE;
447
a8c5f90f
TH		 448 ret = (cmpxchg((const struct ip_tunnel_encap_ops **)
449 &iptun_encaps[num],
450 ops, NULL) == ops) ? 0 : -1;
451
452 synchronize_net();
453
454 return ret;
455}
456EXPORT_SYMBOL(ip_tunnel_encap_del_ops);
56328486
TH		 457
458int ip_tunnel_encap_setup(struct ip_tunnel *t,
459 struct ip_tunnel_encap *ipencap)
460{
461 int hlen;
462
463 memset(&t->encap, 0, sizeof(t->encap));
464
465 hlen = ip_encap_hlen(ipencap);
466 if (hlen < 0)
467 return hlen;
468
469 t->encap.type = ipencap->type;
470 t->encap.sport = ipencap->sport;
471 t->encap.dport = ipencap->dport;
472 t->encap.flags = ipencap->flags;
473
474 t->encap_hlen = hlen;
475 t->hlen = t->encap_hlen + t->tun_hlen;
476
477 return 0;
478}
479EXPORT_SYMBOL_GPL(ip_tunnel_encap_setup);
480
23a3647b 481static int tnl_update_pmtu(struct net_device *dev, struct sk_buff *skb,
fc24f2b2 482 struct rtable *rt, __be16 df,
c8b34e68 483 const struct iphdr *inner_iph,
484 int tunnel_hlen, __be32 dst, bool md)
23a3647b
PS		 485{
486 struct ip_tunnel *tunnel = netdev_priv(dev);
c8b34e68 487 int pkt_size;
23a3647b
PS		 488 int mtu;
489
c8b34e68 490 tunnel_hlen = md ? tunnel_hlen : tunnel->hlen;
28e104d0 491 pkt_size = skb->len - tunnel_hlen;
c8b34e68 492
23a3647b 493 if (df)
28e104d0 494 mtu = dst_mtu(&rt->dst) - (sizeof(struct iphdr) + tunnel_hlen);
23a3647b 495 else
f4b3ec4e 496 mtu = skb_valid_dst(skb) ? dst_mtu(skb_dst(skb)) : dev->mtu;
23a3647b 497
f4b3ec4e 498 if (skb_valid_dst(skb))
7a1592bc 499 skb_dst_update_pmtu_no_confirm(skb, mtu);
23a3647b
PS		 500
501 if (skb->protocol == htons(ETH_P_IP)) {
502 if (!skb_is_gso(skb) &&
fc24f2b2
TT		 503 (inner_iph->frag_off & htons(IP_DF)) &&
504 mtu < pkt_size) {
4372339e 505 icmp_ndo_send(skb, ICMP_DEST_UNREACH, ICMP_FRAG_NEEDED, htonl(mtu));
23a3647b
PS		 506 return -E2BIG;
507 }
508 }
509#if IS_ENABLED(CONFIG_IPV6)
510 else if (skb->protocol == htons(ETH_P_IPV6)) {
f4b3ec4e 511 struct rt6_info *rt6;
c8b34e68 512 __be32 daddr;
513
f4b3ec4e
AM		 514 rt6 = skb_valid_dst(skb) ? (struct rt6_info *)skb_dst(skb) :
515 NULL;
c8b34e68 516 daddr = md ? dst : tunnel->parms.iph.daddr;
23a3647b
PS		 517
518 if (rt6 && mtu < dst_mtu(skb_dst(skb)) &&
519 mtu >= IPV6_MIN_MTU) {
c8b34e68 520 if ((daddr && !ipv4_is_multicast(daddr)) ||
23a3647b
PS		 521 rt6->rt6i_dst.plen == 128) {
522 rt6->rt6i_flags |= RTF_MODIFIED;
523 dst_metric_set(skb_dst(skb), RTAX_MTU, mtu);
524 }
525 }
526
527 if (!skb_is_gso(skb) && mtu >= IPV6_MIN_MTU &&
528 mtu < pkt_size) {
4372339e 529 icmpv6_ndo_send(skb, ICMPV6_PKT_TOOBIG, 0, mtu);
23a3647b
PS		 530 return -E2BIG;
531 }
532 }
533#endif
534 return 0;
535}
536
c8b34e68 537void ip_md_tunnel_xmit(struct sk_buff *skb, struct net_device *dev,
538 u8 proto, int tunnel_hlen)
cfc7381b
AS		 539{
540 struct ip_tunnel *tunnel = netdev_priv(dev);
541 u32 headroom = sizeof(struct iphdr);
542 struct ip_tunnel_info *tun_info;
543 const struct ip_tunnel_key *key;
544 const struct iphdr *inner_iph;
f46fe4f8 545 struct rtable *rt = NULL;
cfc7381b
AS		 546 struct flowi4 fl4;
547 __be16 df = 0;
548 u8 tos, ttl;
f46fe4f8 549 bool use_cache;
cfc7381b
AS		 550
551 tun_info = skb_tunnel_info(skb);
552 if (unlikely(!tun_info || !(tun_info->mode & IP_TUNNEL_INFO_TX) ||
553 ip_tunnel_info_af(tun_info) != AF_INET))
554 goto tx_error;
555 key = &tun_info->key;
556 memset(&(IPCB(skb)->opt), 0, sizeof(IPCB(skb)->opt));
557 inner_iph = (const struct iphdr *)skb_inner_network_header(skb);
558 tos = key->tos;
559 if (tos == 1) {
560 if (skb->protocol == htons(ETH_P_IP))
561 tos = inner_iph->tos;
562 else if (skb->protocol == htons(ETH_P_IPV6))
563 tos = ipv6_get_dsfield((const struct ipv6hdr *)inner_iph);
564 }
6e6b904a 565 ip_tunnel_init_flow(&fl4, proto, key->u.ipv4.dst, key->u.ipv4.src,
566 tunnel_id_to_key32(key->tun_id), RT_TOS(tos),
24ba1440 567 0, skb->mark, skb_get_hash(skb));
cfc7381b
AS		 568 if (tunnel->encap.type != TUNNEL_ENCAP_NONE)
569 goto tx_error;
f46fe4f8 570
571 use_cache = ip_tunnel_dst_cache_usable(skb, tun_info);
572 if (use_cache)
573 rt = dst_cache_get_ip4(&tun_info->dst_cache, &fl4.saddr);
574 if (!rt) {
575 rt = ip_route_output_key(tunnel->net, &fl4);
576 if (IS_ERR(rt)) {
577 dev->stats.tx_carrier_errors++;
578 goto tx_error;
579 }
580 if (use_cache)
581 dst_cache_set_ip4(&tun_info->dst_cache, &rt->dst,
582 fl4.saddr);
cfc7381b
AS		 583 }
584 if (rt->dst.dev == dev) {
585 ip_rt_put(rt);
586 dev->stats.collisions++;
587 goto tx_error;
588 }
c8b34e68 589
590 if (key->tun_flags & TUNNEL_DONT_FRAGMENT)
591 df = htons(IP_DF);
592 if (tnl_update_pmtu(dev, skb, rt, df, inner_iph, tunnel_hlen,
593 key->u.ipv4.dst, true)) {
594 ip_rt_put(rt);
595 goto tx_error;
596 }
597
cfc7381b
AS		 598 tos = ip_tunnel_ecn_encap(tos, inner_iph, skb);
599 ttl = key->ttl;
600 if (ttl == 0) {
601 if (skb->protocol == htons(ETH_P_IP))
602 ttl = inner_iph->ttl;
603 else if (skb->protocol == htons(ETH_P_IPV6))
604 ttl = ((const struct ipv6hdr *)inner_iph)->hop_limit;
605 else
606 ttl = ip4_dst_hoplimit(&rt->dst);
607 }
c8b34e68 608
cfc7381b
AS		 609 headroom += LL_RESERVED_SPACE(rt->dst.dev) + rt->dst.header_len;
610 if (headroom > dev->needed_headroom)
611 dev->needed_headroom = headroom;
612
613 if (skb_cow_head(skb, dev->needed_headroom)) {
614 ip_rt_put(rt);
615 goto tx_dropped;
616 }
0f693f19
HY		 617 iptunnel_xmit(NULL, rt, skb, fl4.saddr, fl4.daddr, proto, tos, ttl,
618 df, !net_eq(tunnel->net, dev_net(dev)));
cfc7381b
AS		 619 return;
620tx_error:
621 dev->stats.tx_errors++;
622 goto kfree;
623tx_dropped:
624 dev->stats.tx_dropped++;
625kfree:
626 kfree_skb(skb);
627}
628EXPORT_SYMBOL_GPL(ip_md_tunnel_xmit);
629
c5441932 630void ip_tunnel_xmit(struct sk_buff *skb, struct net_device *dev,
56328486 631 const struct iphdr *tnl_params, u8 protocol)
c5441932
PS		 632{
633 struct ip_tunnel *tunnel = netdev_priv(dev);
186d9366 634 struct ip_tunnel_info *tun_info = NULL;
c5441932 635 const struct iphdr *inner_iph;
c5441932 636 unsigned int max_headroom; /* The extra header space needed */
186d9366 637 struct rtable *rt = NULL; /* Route to the other host */
638 bool use_cache = false;
639 struct flowi4 fl4;
640 bool md = false;
22fb22ea 641 bool connected;
186d9366 642 u8 tos, ttl;
643 __be32 dst;
644 __be16 df;
c5441932
PS		 645
646 inner_iph = (const struct iphdr *)skb_inner_network_header(skb);
22fb22ea 647 connected = (tunnel->parms.iph.daddr != 0);
c5441932 648
5146d1f1
BH		 649 memset(&(IPCB(skb)->opt), 0, sizeof(IPCB(skb)->opt));
650
c5441932
PS		 651 dst = tnl_params->daddr;
652 if (dst == 0) {
653 /* NBMA tunnel */
654
51456b29 655 if (!skb_dst(skb)) {
c5441932
PS		 656 dev->stats.tx_fifo_errors++;
657 goto tx_error;
658 }
659
d71b5753 660 tun_info = skb_tunnel_info(skb);
661 if (tun_info && (tun_info->mode & IP_TUNNEL_INFO_TX) &&
662 ip_tunnel_info_af(tun_info) == AF_INET &&
186d9366 663 tun_info->key.u.ipv4.dst) {
d71b5753 664 dst = tun_info->key.u.ipv4.dst;
186d9366 665 md = true;
666 connected = true;
667 }
d71b5753 668 else if (skb->protocol == htons(ETH_P_IP)) {
c5441932
PS		 669 rt = skb_rtable(skb);
670 dst = rt_nexthop(rt, inner_iph->daddr);
671 }
672#if IS_ENABLED(CONFIG_IPV6)
673 else if (skb->protocol == htons(ETH_P_IPV6)) {
674 const struct in6_addr *addr6;
675 struct neighbour *neigh;
676 bool do_tx_error_icmp;
677 int addr_type;
678
679 neigh = dst_neigh_lookup(skb_dst(skb),
680 &ipv6_hdr(skb)->daddr);
51456b29 681 if (!neigh)
c5441932
PS		 682 goto tx_error;
683
684 addr6 = (const struct in6_addr *)&neigh->primary_key;
685 addr_type = ipv6_addr_type(addr6);
686
687 if (addr_type == IPV6_ADDR_ANY) {
688 addr6 = &ipv6_hdr(skb)->daddr;
689 addr_type = ipv6_addr_type(addr6);
690 }
691
692 if ((addr_type & IPV6_ADDR_COMPATv4) == 0)
693 do_tx_error_icmp = true;
694 else {
695 do_tx_error_icmp = false;
696 dst = addr6->s6_addr32[3];
697 }
698 neigh_release(neigh);
699 if (do_tx_error_icmp)
700 goto tx_error_icmp;
701 }
702#endif
703 else
704 goto tx_error;
7d442fab 705
186d9366 706 if (!md)
707 connected = false;
c5441932
PS		 708 }
709
710 tos = tnl_params->tos;
711 if (tos & 0x1) {
712 tos &= ~0x1;
7d442fab 713 if (skb->protocol == htons(ETH_P_IP)) {
c5441932 714 tos = inner_iph->tos;
7d442fab
TH		 715 connected = false;
716 } else if (skb->protocol == htons(ETH_P_IPV6)) {
c5441932 717 tos = ipv6_get_dsfield((const struct ipv6hdr *)inner_iph);
7d442fab
TH		 718 connected = false;
719 }
c5441932
PS		 720 }
721
0f3e9c97
DM		 722 ip_tunnel_init_flow(&fl4, protocol, dst, tnl_params->saddr,
723 tunnel->parms.o_key, RT_TOS(tos), tunnel->parms.link,
24ba1440 724 tunnel->fwmark, skb_get_hash(skb));
7d442fab 725
56328486
TH		 726 if (ip_tunnel_encap(skb, tunnel, &protocol, &fl4) < 0)
727 goto tx_error;
728
186d9366 729 if (connected && md) {
730 use_cache = ip_tunnel_dst_cache_usable(skb, tun_info);
731 if (use_cache)
732 rt = dst_cache_get_ip4(&tun_info->dst_cache,
733 &fl4.saddr);
734 } else {
735 rt = connected ? dst_cache_get_ip4(&tunnel->dst_cache,
736 &fl4.saddr) : NULL;
737 }
7d442fab
TH		 738
739 if (!rt) {
740 rt = ip_route_output_key(tunnel->net, &fl4);
741
742 if (IS_ERR(rt)) {
743 dev->stats.tx_carrier_errors++;
744 goto tx_error;
745 }
186d9366 746 if (use_cache)
747 dst_cache_set_ip4(&tun_info->dst_cache, &rt->dst,
748 fl4.saddr);
749 else if (!md && connected)
e09acddf
PA		 750 dst_cache_set_ip4(&tunnel->dst_cache, &rt->dst,
751 fl4.saddr);
c5441932 752 }
7d442fab 753
0e6fbc5b 754 if (rt->dst.dev == dev) {
c5441932
PS		 755 ip_rt_put(rt);
756 dev->stats.collisions++;
757 goto tx_error;
758 }
c5441932 759
50c66167
FW		 760 df = tnl_params->frag_off;
761 if (skb->protocol == htons(ETH_P_IP) && !tunnel->ignore_df)
762 df |= (inner_iph->frag_off & htons(IP_DF));
763
764 if (tnl_update_pmtu(dev, skb, rt, df, inner_iph, 0, 0, false)) {
23a3647b
PS		 765 ip_rt_put(rt);
766 goto tx_error;
c5441932 767 }
c5441932
PS		 768
769 if (tunnel->err_count > 0) {
770 if (time_before(jiffies,
771 tunnel->err_time + IPTUNNEL_ERR_TIMEO)) {
772 tunnel->err_count--;
773
774 dst_link_failure(skb);
775 } else
776 tunnel->err_count = 0;
777 }
778
d4a71b15 779 tos = ip_tunnel_ecn_encap(tos, inner_iph, skb);
c5441932
PS		 780 ttl = tnl_params->ttl;
781 if (ttl == 0) {
782 if (skb->protocol == htons(ETH_P_IP))
783 ttl = inner_iph->ttl;
784#if IS_ENABLED(CONFIG_IPV6)
785 else if (skb->protocol == htons(ETH_P_IPV6))
786 ttl = ((const struct ipv6hdr *)inner_iph)->hop_limit;
787#endif
788 else
789 ttl = ip4_dst_hoplimit(&rt->dst);
790 }
791
0e6fbc5b 792 max_headroom = LL_RESERVED_SPACE(rt->dst.dev) + sizeof(struct iphdr)
7371e022 793 + rt->dst.header_len + ip_encap_hlen(&tunnel->encap);
3e08f4a7 794 if (max_headroom > dev->needed_headroom)
c5441932 795 dev->needed_headroom = max_headroom;
3e08f4a7
SK		 796
797 if (skb_cow_head(skb, dev->needed_headroom)) {
586d5fc8 798 ip_rt_put(rt);
3e08f4a7 799 dev->stats.tx_dropped++;
3acfa1e7 800 kfree_skb(skb);
3e08f4a7 801 return;
c5441932
PS		 802 }
803
039f5062
PS		 804 iptunnel_xmit(NULL, rt, skb, fl4.saddr, fl4.daddr, protocol, tos, ttl,
805 df, !net_eq(tunnel->net, dev_net(dev)));
c5441932
PS		 806 return;
807
808#if IS_ENABLED(CONFIG_IPV6)
809tx_error_icmp:
810 dst_link_failure(skb);
811#endif
812tx_error:
813 dev->stats.tx_errors++;
3acfa1e7 814 kfree_skb(skb);
c5441932
PS		 815}
816EXPORT_SYMBOL_GPL(ip_tunnel_xmit);
817
818static void ip_tunnel_update(struct ip_tunnel_net *itn,
819 struct ip_tunnel *t,
820 struct net_device *dev,
821 struct ip_tunnel_parm *p,
9830ad4c
CG		 822 bool set_mtu,
823 __u32 fwmark)
c5441932 824{
2e15ea39 825 ip_tunnel_del(itn, t);
c5441932
PS		 826 t->parms.iph.saddr = p->iph.saddr;
827 t->parms.iph.daddr = p->iph.daddr;
828 t->parms.i_key = p->i_key;
829 t->parms.o_key = p->o_key;
830 if (dev->type != ARPHRD_ETHER) {
831 memcpy(dev->dev_addr, &p->iph.saddr, 4);
832 memcpy(dev->broadcast, &p->iph.daddr, 4);
833 }
834 ip_tunnel_add(itn, t);
835
836 t->parms.iph.ttl = p->iph.ttl;
837 t->parms.iph.tos = p->iph.tos;
838 t->parms.iph.frag_off = p->iph.frag_off;
839
9830ad4c 840 if (t->parms.link != p->link || t->fwmark != fwmark) {
c5441932
PS		 841 int mtu;
842
843 t->parms.link = p->link;
9830ad4c 844 t->fwmark = fwmark;
c5441932
PS		 845 mtu = ip_tunnel_bind_dev(dev);
846 if (set_mtu)
847 dev->mtu = mtu;
848 }
e09acddf 849 dst_cache_reset(&t->dst_cache);
c5441932
PS		 850 netdev_state_change(dev);
851}
852
607259a6 853int ip_tunnel_ctl(struct net_device *dev, struct ip_tunnel_parm *p, int cmd)
c5441932
PS		 854{
855 int err = 0;
8c923ce2
ND		 856 struct ip_tunnel *t = netdev_priv(dev);
857 struct net *net = t->net;
858 struct ip_tunnel_net *itn = net_generic(net, t->ip_tnl_net_id);
c5441932 859
c5441932
PS		 860 switch (cmd) {
861 case SIOCGETTUNNEL:
8c923ce2 862 if (dev == itn->fb_tunnel_dev) {
c5441932 863 t = ip_tunnel_find(itn, p, itn->fb_tunnel_dev->type);
51456b29 864 if (!t)
8c923ce2
ND		 865 t = netdev_priv(dev);
866 }
c5441932
PS		 867 memcpy(p, &t->parms, sizeof(*p));
868 break;
869
870 case SIOCADDTUNNEL:
871 case SIOCCHGTUNNEL:
872 err = -EPERM;
873 if (!ns_capable(net->user_ns, CAP_NET_ADMIN))
874 goto done;
875 if (p->iph.ttl)
876 p->iph.frag_off |= htons(IP_DF);
7c8e6b9c
DP		 877 if (!(p->i_flags & VTI_ISVTI)) {
878 if (!(p->i_flags & TUNNEL_KEY))
879 p->i_key = 0;
880 if (!(p->o_flags & TUNNEL_KEY))
881 p->o_key = 0;
882 }
c5441932 883
79134e6c 884 t = ip_tunnel_find(itn, p, itn->type);
c5441932 885
d61746b2
SK		 886 if (cmd == SIOCADDTUNNEL) {
887 if (!t) {
888 t = ip_tunnel_create(net, itn, p);
889 err = PTR_ERR_OR_ZERO(t);
890 break;
891 }
892
893 err = -EEXIST;
ee30ef4d 894 break;
6dd3c9ec 895 }
c5441932 896 if (dev != itn->fb_tunnel_dev && cmd == SIOCCHGTUNNEL) {
00db4124 897 if (t) {
c5441932
PS		 898 if (t->dev != dev) {
899 err = -EEXIST;
900 break;
901 }
902 } else {
903 unsigned int nflags = 0;
904
905 if (ipv4_is_multicast(p->iph.daddr))
906 nflags = IFF_BROADCAST;
907 else if (p->iph.daddr)
908 nflags = IFF_POINTOPOINT;
909
910 if ((dev->flags^nflags)&(IFF_POINTOPOINT|IFF_BROADCAST)) {
911 err = -EINVAL;
912 break;
913 }
914
915 t = netdev_priv(dev);
916 }
917 }
918
919 if (t) {
920 err = 0;
9830ad4c 921 ip_tunnel_update(itn, t, dev, p, true, 0);
6dd3c9ec
FW		 922 } else {
923 err = -ENOENT;
924 }
c5441932
PS		 925 break;
926
927 case SIOCDELTUNNEL:
928 err = -EPERM;
929 if (!ns_capable(net->user_ns, CAP_NET_ADMIN))
930 goto done;
931
932 if (dev == itn->fb_tunnel_dev) {
933 err = -ENOENT;
934 t = ip_tunnel_find(itn, p, itn->fb_tunnel_dev->type);
51456b29 935 if (!t)
c5441932
PS		 936 goto done;
937 err = -EPERM;
938 if (t == netdev_priv(itn->fb_tunnel_dev))
939 goto done;
940 dev = t->dev;
941 }
942 unregister_netdevice(dev);
943 err = 0;
944 break;
945
946 default:
947 err = -EINVAL;
948 }
949
950done:
951 return err;
952}
607259a6
CH		 953EXPORT_SYMBOL_GPL(ip_tunnel_ctl);
954
955int ip_tunnel_ioctl(struct net_device *dev, struct ifreq *ifr, int cmd)
956{
957 struct ip_tunnel_parm p;
958 int err;
959
960 if (copy_from_user(&p, ifr->ifr_ifru.ifru_data, sizeof(p)))
961 return -EFAULT;
962 err = dev->netdev_ops->ndo_tunnel_ctl(dev, &p, cmd);
963 if (!err && copy_to_user(ifr->ifr_ifru.ifru_data, &p, sizeof(p)))
964 return -EFAULT;
965 return err;
966}
c5441932
PS		 967EXPORT_SYMBOL_GPL(ip_tunnel_ioctl);
968
7e059158 969int __ip_tunnel_change_mtu(struct net_device *dev, int new_mtu, bool strict)
c5441932
PS		 970{
971 struct ip_tunnel *tunnel = netdev_priv(dev);
972 int t_hlen = tunnel->hlen + sizeof(struct iphdr);
28e104d0 973 int max_mtu = IP_MAX_MTU - t_hlen;
c5441932 974
b96f9afe 975 if (new_mtu < ETH_MIN_MTU)
c5441932 976 return -EINVAL;
7e059158
DW		 977
978 if (new_mtu > max_mtu) {
979 if (strict)
980 return -EINVAL;
981
982 new_mtu = max_mtu;
983 }
984
c5441932
PS		 985 dev->mtu = new_mtu;
986 return 0;
987}
7e059158
DW		 988EXPORT_SYMBOL_GPL(__ip_tunnel_change_mtu);
989
990int ip_tunnel_change_mtu(struct net_device *dev, int new_mtu)
991{
992 return __ip_tunnel_change_mtu(dev, new_mtu, true);
993}
c5441932
PS		 994EXPORT_SYMBOL_GPL(ip_tunnel_change_mtu);
995
996static void ip_tunnel_dev_free(struct net_device *dev)
997{
998 struct ip_tunnel *tunnel = netdev_priv(dev);
999
1000 gro_cells_destroy(&tunnel->gro_cells);
e09acddf 1001 dst_cache_destroy(&tunnel->dst_cache);
c5441932 1002 free_percpu(dev->tstats);
c5441932
PS		 1003}
1004
1005void ip_tunnel_dellink(struct net_device *dev, struct list_head *head)
1006{
c5441932
PS		 1007 struct ip_tunnel *tunnel = netdev_priv(dev);
1008 struct ip_tunnel_net *itn;
1009
6c742e71 1010 itn = net_generic(tunnel->net, tunnel->ip_tnl_net_id);
c5441932
PS		 1011
1012 if (itn->fb_tunnel_dev != dev) {
2e15ea39 1013 ip_tunnel_del(itn, netdev_priv(dev));
c5441932
PS		 1014 unregister_netdevice_queue(dev, head);
1015 }
1016}
1017EXPORT_SYMBOL_GPL(ip_tunnel_dellink);
1018
1728d4fa
ND		 1019struct net *ip_tunnel_get_link_net(const struct net_device *dev)
1020{
1021 struct ip_tunnel *tunnel = netdev_priv(dev);
1022
1023 return tunnel->net;
1024}
1025EXPORT_SYMBOL(ip_tunnel_get_link_net);
1026
1e99584b
ND		 1027int ip_tunnel_get_iflink(const struct net_device *dev)
1028{
1029 struct ip_tunnel *tunnel = netdev_priv(dev);
1030
1031 return tunnel->parms.link;
1032}
1033EXPORT_SYMBOL(ip_tunnel_get_iflink);
1034
c7d03a00 1035int ip_tunnel_init_net(struct net *net, unsigned int ip_tnl_net_id,
c5441932
PS		 1036 struct rtnl_link_ops *ops, char *devname)
1037{
1038 struct ip_tunnel_net *itn = net_generic(net, ip_tnl_net_id);
1039 struct ip_tunnel_parm parms;
6261d983 1040 unsigned int i;
c5441932 1041
79134e6c 1042 itn->rtnl_link_ops = ops;
6261d983 1043 for (i = 0; i < IP_TNL_HASH_SIZE; i++)
1044 INIT_HLIST_HEAD(&itn->tunnels[i]);
c5441932 1045
79134e6c
ED		 1046 if (!ops || !net_has_fallback_tunnels(net)) {
1047 struct ip_tunnel_net *it_init_net;
1048
1049 it_init_net = net_generic(&init_net, ip_tnl_net_id);
1050 itn->type = it_init_net->type;
c5441932
PS		 1051 itn->fb_tunnel_dev = NULL;
1052 return 0;
1053 }
6261d983 1054
c5441932
PS		 1055 memset(&parms, 0, sizeof(parms));
1056 if (devname)
1057 strlcpy(parms.name, devname, IFNAMSIZ);
1058
1059 rtnl_lock();
1060 itn->fb_tunnel_dev = __ip_tunnel_create(net, ops, &parms);
ea857f28
DC		 1061 /* FB netdevice is special: we have one, and only one per netns.
1062 * Allowing to move it to another netns is clearly unsafe.
1063 */
67013282 1064 if (!IS_ERR(itn->fb_tunnel_dev)) {
b4de77ad 1065 itn->fb_tunnel_dev->features |= NETIF_F_NETNS_LOCAL;
78ff4be4 1066 itn->fb_tunnel_dev->mtu = ip_tunnel_bind_dev(itn->fb_tunnel_dev);
67013282 1067 ip_tunnel_add(itn, netdev_priv(itn->fb_tunnel_dev));
79134e6c 1068 itn->type = itn->fb_tunnel_dev->type;
67013282 1069 }
b4de77ad 1070 rtnl_unlock();
c5441932 1071
27d79f3b 1072 return PTR_ERR_OR_ZERO(itn->fb_tunnel_dev);
c5441932
PS		 1073}
1074EXPORT_SYMBOL_GPL(ip_tunnel_init_net);
1075
79134e6c
ED		 1076static void ip_tunnel_destroy(struct net *net, struct ip_tunnel_net *itn,
1077 struct list_head *head,
6c742e71 1078 struct rtnl_link_ops *ops)
c5441932 1079{
6c742e71 1080 struct net_device *dev, *aux;
c5441932
PS		 1081 int h;
1082
6c742e71
ND		 1083 for_each_netdev_safe(net, dev, aux)
1084 if (dev->rtnl_link_ops == ops)
1085 unregister_netdevice_queue(dev, head);
1086
c5441932
PS		 1087 for (h = 0; h < IP_TNL_HASH_SIZE; h++) {
1088 struct ip_tunnel *t;
1089 struct hlist_node *n;
1090 struct hlist_head *thead = &itn->tunnels[h];
1091
1092 hlist_for_each_entry_safe(t, n, thead, hash_node)
6c742e71
ND		 1093 /* If dev is in the same netns, it has already
1094 * been added to the list by the previous loop.
1095 */
1096 if (!net_eq(dev_net(t->dev), net))
1097 unregister_netdevice_queue(t->dev, head);
c5441932 1098 }
c5441932
PS		 1099}
1100
64bc1781
ED		 1101void ip_tunnel_delete_nets(struct list_head *net_list, unsigned int id,
1102 struct rtnl_link_ops *ops)
c5441932 1103{
64bc1781
ED		 1104 struct ip_tunnel_net *itn;
1105 struct net *net;
c5441932
PS		 1106 LIST_HEAD(list);
1107
1108 rtnl_lock();
64bc1781
ED		 1109 list_for_each_entry(net, net_list, exit_list) {
1110 itn = net_generic(net, id);
79134e6c 1111 ip_tunnel_destroy(net, itn, &list, ops);
64bc1781 1112 }
c5441932
PS		 1113 unregister_netdevice_many(&list);
1114 rtnl_unlock();
c5441932 1115}
64bc1781 1116EXPORT_SYMBOL_GPL(ip_tunnel_delete_nets);
c5441932
PS		 1117
1118int ip_tunnel_newlink(struct net_device *dev, struct nlattr *tb[],
9830ad4c 1119 struct ip_tunnel_parm *p, __u32 fwmark)
c5441932
PS		 1120{
1121 struct ip_tunnel *nt;
1122 struct net *net = dev_net(dev);
1123 struct ip_tunnel_net *itn;
1124 int mtu;
1125 int err;
1126
1127 nt = netdev_priv(dev);
1128 itn = net_generic(net, nt->ip_tnl_net_id);
1129
2e15ea39
PS		 1130 if (nt->collect_md) {
1131 if (rtnl_dereference(itn->collect_md_tun))
1132 return -EEXIST;
1133 } else {
1134 if (ip_tunnel_find(itn, p, dev->type))
1135 return -EEXIST;
1136 }
c5441932 1137
5e6700b3 1138 nt->net = net;
c5441932 1139 nt->parms = *p;
9830ad4c 1140 nt->fwmark = fwmark;
c5441932
PS		 1141 err = register_netdevice(dev);
1142 if (err)
f6cc9c05 1143 goto err_register_netdevice;
c5441932
PS		 1144
1145 if (dev->type == ARPHRD_ETHER && !tb[IFLA_ADDRESS])
1146 eth_hw_addr_random(dev);
1147
1148 mtu = ip_tunnel_bind_dev(dev);
24fc7979 1149 if (tb[IFLA_MTU]) {
28e104d0 1150 unsigned int max = IP_MAX_MTU - (nt->hlen + sizeof(struct iphdr));
24fc7979 1151
28e104d0 1152 mtu = clamp(dev->mtu, (unsigned int)ETH_MIN_MTU, max);
f6cc9c05 1153 }
c5441932 1154
5568cdc3
DM		 1155 err = dev_set_mtu(dev, mtu);
1156 if (err)
1157 goto err_dev_set_mtu;
c5441932
PS		 1158
1159 ip_tunnel_add(itn, nt);
f6cc9c05
PM		 1160 return 0;
1161
1162err_dev_set_mtu:
1163 unregister_netdevice(dev);
1164err_register_netdevice:
c5441932
PS		 1165 return err;
1166}
1167EXPORT_SYMBOL_GPL(ip_tunnel_newlink);
1168
1169int ip_tunnel_changelink(struct net_device *dev, struct nlattr *tb[],
9830ad4c 1170 struct ip_tunnel_parm *p, __u32 fwmark)
c5441932 1171{
6c742e71 1172 struct ip_tunnel *t;
c5441932 1173 struct ip_tunnel *tunnel = netdev_priv(dev);
6c742e71 1174 struct net *net = tunnel->net;
c5441932
PS		 1175 struct ip_tunnel_net *itn = net_generic(net, tunnel->ip_tnl_net_id);
1176
1177 if (dev == itn->fb_tunnel_dev)
1178 return -EINVAL;
1179
c5441932
PS		 1180 t = ip_tunnel_find(itn, p, dev->type);
1181
1182 if (t) {
1183 if (t->dev != dev)
1184 return -EEXIST;
1185 } else {
6c742e71 1186 t = tunnel;
c5441932
PS		 1187
1188 if (dev->type != ARPHRD_ETHER) {
1189 unsigned int nflags = 0;
1190
1191 if (ipv4_is_multicast(p->iph.daddr))
1192 nflags = IFF_BROADCAST;
1193 else if (p->iph.daddr)
1194 nflags = IFF_POINTOPOINT;
1195
1196 if ((dev->flags ^ nflags) &
1197 (IFF_POINTOPOINT | IFF_BROADCAST))
1198 return -EINVAL;
1199 }
1200 }
1201
9830ad4c 1202 ip_tunnel_update(itn, t, dev, p, !tb[IFLA_MTU], fwmark);
c5441932
PS		 1203 return 0;
1204}
1205EXPORT_SYMBOL_GPL(ip_tunnel_changelink);
1206
1207int ip_tunnel_init(struct net_device *dev)
1208{
1209 struct ip_tunnel *tunnel = netdev_priv(dev);
1210 struct iphdr *iph = &tunnel->parms.iph;
1c213bd2 1211 int err;
c5441932 1212
cf124db5
DM		 1213 dev->needs_free_netdev = true;
1214 dev->priv_destructor = ip_tunnel_dev_free;
1c213bd2 1215 dev->tstats = netdev_alloc_pcpu_stats(struct pcpu_sw_netstats);
c5441932
PS		 1216 if (!dev->tstats)
1217 return -ENOMEM;
1218
e09acddf
PA		 1219 err = dst_cache_init(&tunnel->dst_cache, GFP_KERNEL);
1220 if (err) {
9a4aa9af 1221 free_percpu(dev->tstats);
e09acddf 1222 return err;
9a4aa9af
TH		 1223 }
1224
c5441932
PS		 1225 err = gro_cells_init(&tunnel->gro_cells, dev);
1226 if (err) {
e09acddf 1227 dst_cache_destroy(&tunnel->dst_cache);
c5441932
PS		 1228 free_percpu(dev->tstats);
1229 return err;
1230 }
1231
1232 tunnel->dev = dev;
6c742e71 1233 tunnel->net = dev_net(dev);
c5441932
PS		 1234 strcpy(tunnel->parms.name, dev->name);
1235 iph->version = 4;
1236 iph->ihl = 5;
1237
d0f41851 1238 if (tunnel->collect_md)
2e15ea39 1239 netif_keep_dst(dev);
c5441932
PS		 1240 return 0;
1241}
1242EXPORT_SYMBOL_GPL(ip_tunnel_init);
1243
1244void ip_tunnel_uninit(struct net_device *dev)
1245{
c5441932 1246 struct ip_tunnel *tunnel = netdev_priv(dev);
6c742e71 1247 struct net *net = tunnel->net;
c5441932
PS		 1248 struct ip_tunnel_net *itn;
1249
1250 itn = net_generic(net, tunnel->ip_tnl_net_id);
ba61539c
TY		 1251 ip_tunnel_del(itn, netdev_priv(dev));
1252 if (itn->fb_tunnel_dev == dev)
1253 WRITE_ONCE(itn->fb_tunnel_dev, NULL);
7d442fab 1254
e09acddf 1255 dst_cache_reset(&tunnel->dst_cache);
c5441932
PS		 1256}
1257EXPORT_SYMBOL_GPL(ip_tunnel_uninit);
1258
1259/* Do least required initialization, rest of init is done in tunnel_init call */
c7d03a00 1260void ip_tunnel_setup(struct net_device *dev, unsigned int net_id)
c5441932
PS		 1261{
1262 struct ip_tunnel *tunnel = netdev_priv(dev);
1263 tunnel->ip_tnl_net_id = net_id;
1264}
1265EXPORT_SYMBOL_GPL(ip_tunnel_setup);
1266
1267MODULE_LICENSE("GPL");
Linux 6.x block layer and io_uring tree(s)