projects / linux-block.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
f2fs: Provide a splice-read wrapper
[linux-block.git] / net / ipv6 / icmp.c
CommitLineData
2874c5fd 1// SPDX-License-Identifier: GPL-2.0-or-later
1da177e4
LT		 2/*
3 * Internet Control Message Protocol (ICMPv6)
4 * Linux INET6 implementation
5 *
6 * Authors:
7 * Pedro Roque <roque@di.fc.ul.pt>
8 *
1da177e4
LT		 9 * Based on net/ipv4/icmp.c
10 *
11 * RFC 1885
1da177e4
LT		 12 */
13
14/*
15 * Changes:
16 *
17 * Andi Kleen : exception handling
18 * Andi Kleen add rate limits. never reply to a icmp.
19 * add more length checks and other fixes.
20 * yoshfuji : ensure to sent parameter problem for
21 * fragments.
22 * YOSHIFUJI Hideaki @USAGI: added sysctl for icmp rate limit.
23 * Randy Dunlap and
24 * YOSHIFUJI Hideaki @USAGI: Per-interface statistics support
25 * Kazunori MIYAZAWA @USAGI: change output process to use ip6_append_data
26 */
27
f3213831
JP		 28#define pr_fmt(fmt) "IPv6: " fmt
29
1da177e4
LT		 30#include <linux/module.h>
31#include <linux/errno.h>
32#include <linux/types.h>
33#include <linux/socket.h>
34#include <linux/in.h>
35#include <linux/kernel.h>
1da177e4
LT		 36#include <linux/sockios.h>
37#include <linux/net.h>
38#include <linux/skbuff.h>
39#include <linux/init.h>
763ecff1 40#include <linux/netfilter.h>
5a0e3ad6 41#include <linux/slab.h>
1da177e4
LT		 42
43#ifdef CONFIG_SYSCTL
44#include <linux/sysctl.h>
45#endif
46
47#include <linux/inet.h>
48#include <linux/netdevice.h>
49#include <linux/icmpv6.h>
50
51#include <net/ip.h>
52#include <net/sock.h>
53
54#include <net/ipv6.h>
55#include <net/ip6_checksum.h>
6d0bfe22 56#include <net/ping.h>
1da177e4
LT		 57#include <net/protocol.h>
58#include <net/raw.h>
59#include <net/rawv6.h>
e4129440 60#include <net/seg6.h>
1da177e4
LT		 61#include <net/transp_v6.h>
62#include <net/ip6_route.h>
63#include <net/addrconf.h>
64#include <net/icmp.h>
8b7817f3 65#include <net/xfrm.h>
1ed8516f 66#include <net/inet_common.h>
825edac4 67#include <net/dsfield.h>
ca254490 68#include <net/l3mdev.h>
1da177e4 69
7c0f6ba6 70#include <linux/uaccess.h>
1da177e4 71
6a17b961 72static DEFINE_PER_CPU(struct sock *, ipv6_icmp_sk);
1da177e4 73
32bbd879 74static int icmpv6_err(struct sk_buff *skb, struct inet6_skb_parm *opt,
6f809da2
SK		 75 u8 type, u8 code, int offset, __be32 info)
76{
6d0bfe22
LC		 77 /* icmpv6_notify checks 8 bytes can be pulled, icmp6hdr is 8 bytes */
78 struct icmp6hdr *icmp6 = (struct icmp6hdr *) (skb->data + offset);
6f809da2
SK		 79 struct net *net = dev_net(skb->dev);
80
81 if (type == ICMPV6_PKT_TOOBIG)
5f379ef5 82 ip6_update_pmtu(skb, net, info, skb->dev->ifindex, 0, sock_net_uid(net, NULL));
6f809da2 83 else if (type == NDISC_REDIRECT)
e2d118a1
LC		 84 ip6_redirect(skb, net, skb->dev->ifindex, 0,
85 sock_net_uid(net, NULL));
6d0bfe22
LC		 86
87 if (!(type & ICMPV6_INFOMSG_MASK))
88 if (icmp6->icmp6_type == ICMPV6_ECHO_REQUEST)
dcb94b88 89 ping_err(skb, offset, ntohl(info));
32bbd879
SB		 90
91 return 0;
6f809da2
SK		 92}
93
e5bbef20 94static int icmpv6_rcv(struct sk_buff *skb);
1da177e4 95
41135cc8 96static const struct inet6_protocol icmpv6_protocol = {
1da177e4 97 .handler = icmpv6_rcv,
6f809da2 98 .err_handler = icmpv6_err,
8b7817f3 99 .flags = INET6_PROTO_NOPOLICY|INET6_PROTO_FINAL,
1da177e4
LT		 100};
101
7ba91ecb 102/* Called with BH disabled */
6a17b961 103static struct sock *icmpv6_xmit_lock(struct net *net)
1da177e4 104{
fdc0bde9
DL		 105 struct sock *sk;
106
6a17b961 107 sk = this_cpu_read(ipv6_icmp_sk);
405666db 108 if (unlikely(!spin_trylock(&sk->sk_lock.slock))) {
1da177e4
LT		 109 /* This can happen if the output path (f.e. SIT or
110 * ip6ip6 tunnel) signals dst_link_failure() for an
111 * outgoing ICMP6 packet.
112 */
fdc0bde9 113 return NULL;
1da177e4 114 }
6a17b961 115 sock_net_set(sk, net);
fdc0bde9 116 return sk;
1da177e4
LT		 117}
118
6a17b961 119static void icmpv6_xmit_unlock(struct sock *sk)
1da177e4 120{
6a17b961 121 sock_net_set(sk, &init_net);
7ba91ecb 122 spin_unlock(&sk->sk_lock.slock);
1da177e4
LT		 123}
124
1da177e4
LT		 125/*
126 * Figure out, may we reply to this packet with icmp error.
127 *
128 * We do not reply, if:
129 * - it was icmp error message.
130 * - it is truncated, so that it is known, that protocol is ICMPV6
131 * (i.e. in the middle of some exthdr)
132 *
133 * --ANK (980726)
134 */
135
a50feda5 136static bool is_ineligible(const struct sk_buff *skb)
1da177e4 137{
0660e03f 138 int ptr = (u8 *)(ipv6_hdr(skb) + 1) - skb->data;
1da177e4 139 int len = skb->len - ptr;
0660e03f 140 __u8 nexthdr = ipv6_hdr(skb)->nexthdr;
75f2811c 141 __be16 frag_off;
1da177e4
LT		 142
143 if (len < 0)
a50feda5 144 return true;
1da177e4 145
75f2811c 146 ptr = ipv6_skip_exthdr(skb, ptr, &nexthdr, &frag_off);
1da177e4 147 if (ptr < 0)
a50feda5 148 return false;
1da177e4
LT		 149 if (nexthdr == IPPROTO_ICMPV6) {
150 u8 _type, *tp;
151 tp = skb_header_pointer(skb,
152 ptr+offsetof(struct icmp6hdr, icmp6_type),
153 sizeof(_type), &_type);
2efdaaaf
HL		 154
155 /* Based on RFC 8200, Section 4.5 Fragment Header, return
156 * false if this is a fragment packet with no icmp header info.
157 */
158 if (!tp && frag_off != 0)
159 return false;
160 else if (!tp || !(*tp & ICMPV6_INFOMSG_MASK))
a50feda5 161 return true;
1da177e4 162 }
a50feda5 163 return false;
1da177e4
LT		 164}
165
0bc19985 166static bool icmpv6_mask_allow(struct net *net, int type)
c0303efe 167{
0bc19985 168 if (type > ICMPV6_MSG_MAX)
c0303efe
JDB		 169 return true;
170
0bc19985
SS		 171 /* Limit if icmp type is set in ratemask. */
172 if (!test_bit(type, net->ipv6.sysctl.icmpv6_ratemask))
c0303efe
JDB		 173 return true;
174
175 return false;
176}
177
0bc19985 178static bool icmpv6_global_allow(struct net *net, int type)
c0303efe 179{
0bc19985 180 if (icmpv6_mask_allow(net, type))
c0303efe
JDB		 181 return true;
182
183 if (icmp_global_allow())
184 return true;
185
d0941130 186 __ICMP_INC_STATS(net, ICMP_MIB_RATELIMITGLOBAL);
c0303efe
JDB		 187 return false;
188}
189
1ab1457c
YH		 190/*
191 * Check the ICMP output rate limit
1da177e4 192 */
4cdf507d
ED		 193static bool icmpv6_xrlim_allow(struct sock *sk, u8 type,
194 struct flowi6 *fl6)
1da177e4 195{
3b1e0a65 196 struct net *net = sock_net(sk);
4cdf507d 197 struct dst_entry *dst;
92d86829 198 bool res = false;
1da177e4 199
0bc19985 200 if (icmpv6_mask_allow(net, type))
92d86829 201 return true;
1da177e4 202
1ab1457c 203 /*
1da177e4
LT		 204 * Look up the output route.
205 * XXX: perhaps the expire for routing entries cloned by
206 * this lookup should be more aggressive (not longer than timeout).
207 */
4c9483b2 208 dst = ip6_route_output(net, sk, fl6);
1da177e4 209 if (dst->error) {
3bd653c8 210 IP6_INC_STATS(net, ip6_dst_idev(dst),
a11d206d 211 IPSTATS_MIB_OUTNOROUTES);
1da177e4 212 } else if (dst->dev && (dst->dev->flags&IFF_LOOPBACK)) {
92d86829 213 res = true;
1da177e4
LT		 214 } else {
215 struct rt6_info *rt = (struct rt6_info *)dst;
9a43b709 216 int tmo = net->ipv6.sysctl.icmpv6_time;
c0303efe 217 struct inet_peer *peer;
1da177e4
LT		 218
219 /* Give more bandwidth to wider prefixes. */
220 if (rt->rt6i_dst.plen < 128)
221 tmo >>= ((128 - rt->rt6i_dst.plen)>>5);
222
c0303efe
JDB		 223 peer = inet_getpeer_v6(net->ipv6.peers, &fl6->daddr, 1);
224 res = inet_peer_xrlim_allow(peer, tmo);
225 if (peer)
226 inet_putpeer(peer);
1da177e4 227 }
d0941130
JB		 228 if (!res)
229 __ICMP6_INC_STATS(net, ip6_dst_idev(dst),
230 ICMP6_MIB_RATELIMITHOST);
1da177e4
LT		 231 dst_release(dst);
232 return res;
233}
234
b93cfb9c
TS		 235static bool icmpv6_rt_has_prefsrc(struct sock *sk, u8 type,
236 struct flowi6 *fl6)
237{
238 struct net *net = sock_net(sk);
239 struct dst_entry *dst;
240 bool res = false;
241
242 dst = ip6_route_output(net, sk, fl6);
243 if (!dst->error) {
244 struct rt6_info *rt = (struct rt6_info *)dst;
245 struct in6_addr prefsrc;
246
247 rt6_get_prefsrc(rt, &prefsrc);
248 res = !ipv6_addr_any(&prefsrc);
249 }
250 dst_release(dst);
251 return res;
252}
253
1da177e4
LT		 254/*
255 * an inline helper for the "simple" if statement below
256 * checks if parameter problem report is caused by an
1ab1457c 257 * unrecognized IPv6 option that has the Option Type
1da177e4
LT		 258 * highest-order two bits set to 10
259 */
260
a50feda5 261static bool opt_unrec(struct sk_buff *skb, __u32 offset)
1da177e4
LT		 262{
263 u8 _optval, *op;
264
bbe735e4 265 offset += skb_network_offset(skb);
1da177e4 266 op = skb_header_pointer(skb, offset, sizeof(_optval), &_optval);
63159f29 267 if (!op)
a50feda5 268 return true;
1da177e4
LT		 269 return (*op & 0xC0) == 0x80;
270}
271
4e64b1ed
JP		 272void icmpv6_push_pending_frames(struct sock *sk, struct flowi6 *fl6,
273 struct icmp6hdr *thdr, int len)
1da177e4
LT		 274{
275 struct sk_buff *skb;
276 struct icmp6hdr *icmp6h;
1da177e4 277
e5d08d71 278 skb = skb_peek(&sk->sk_write_queue);
63159f29 279 if (!skb)
4e64b1ed 280 return;
1da177e4 281
cc70ab26 282 icmp6h = icmp6_hdr(skb);
1da177e4
LT		 283 memcpy(icmp6h, thdr, sizeof(struct icmp6hdr));
284 icmp6h->icmp6_cksum = 0;
285
286 if (skb_queue_len(&sk->sk_write_queue) == 1) {
07f0757a 287 skb->csum = csum_partial(icmp6h,
1da177e4 288 sizeof(struct icmp6hdr), skb->csum);
4c9483b2
DM		 289 icmp6h->icmp6_cksum = csum_ipv6_magic(&fl6->saddr,
290 &fl6->daddr,
291 len, fl6->flowi6_proto,
1da177e4
LT		 292 skb->csum);
293 } else {
868c86bc 294 __wsum tmp_csum = 0;
1da177e4
LT		 295
296 skb_queue_walk(&sk->sk_write_queue, skb) {
297 tmp_csum = csum_add(tmp_csum, skb->csum);
298 }
299
07f0757a 300 tmp_csum = csum_partial(icmp6h,
1da177e4 301 sizeof(struct icmp6hdr), tmp_csum);
4c9483b2
DM		 302 icmp6h->icmp6_cksum = csum_ipv6_magic(&fl6->saddr,
303 &fl6->daddr,
304 len, fl6->flowi6_proto,
868c86bc 305 tmp_csum);
1da177e4 306 }
1da177e4 307 ip6_push_pending_frames(sk);
1da177e4
LT		 308}
309
310struct icmpv6_msg {
311 struct sk_buff *skb;
312 int offset;
763ecff1 313 uint8_t type;
1da177e4
LT		 314};
315
316static int icmpv6_getfrag(void *from, char *to, int offset, int len, int odd, struct sk_buff *skb)
317{
318 struct icmpv6_msg *msg = (struct icmpv6_msg *) from;
319 struct sk_buff *org_skb = msg->skb;
8d5930df 320 __wsum csum;
1da177e4
LT		 321
322 csum = skb_copy_and_csum_bits(org_skb, msg->offset + offset,
8d5930df 323 to, len);
1da177e4 324 skb->csum = csum_block_add(skb->csum, csum, odd);
763ecff1
YK		 325 if (!(msg->type & ICMPV6_INFOMSG_MASK))
326 nf_ct_attach(skb, org_skb);
1da177e4
LT		 327 return 0;
328}
329
07a93626 330#if IS_ENABLED(CONFIG_IPV6_MIP6)
ee576c47 331static void mip6_addr_swap(struct sk_buff *skb, const struct inet6_skb_parm *opt)
79383236 332{
0660e03f 333 struct ipv6hdr *iph = ipv6_hdr(skb);
79383236 334 struct ipv6_destopt_hao *hao;
79383236
MN		 335 int off;
336
337 if (opt->dsthao) {
338 off = ipv6_find_tlv(skb, opt->dsthao, IPV6_TLV_HAO);
339 if (likely(off >= 0)) {
d56f90a7
ACM		 340 hao = (struct ipv6_destopt_hao *)
341 (skb_network_header(skb) + off);
bc617613 342 swap(iph->saddr, hao->addr);
79383236
MN		 343 }
344 }
345}
346#else
ee576c47 347static inline void mip6_addr_swap(struct sk_buff *skb, const struct inet6_skb_parm *opt) {}
79383236
MN		 348#endif
349
e8243534 350static struct dst_entry *icmpv6_route_lookup(struct net *net,
351 struct sk_buff *skb,
352 struct sock *sk,
353 struct flowi6 *fl6)
b42835db
DM		 354{
355 struct dst_entry *dst, *dst2;
4c9483b2 356 struct flowi6 fl2;
b42835db
DM		 357 int err;
358
343d60aa 359 err = ip6_dst_lookup(net, sk, &dst, fl6);
b42835db
DM		 360 if (err)
361 return ERR_PTR(err);
362
363 /*
364 * We won't send icmp if the destination is known
7ab75456 365 * anycast unless we need to treat anycast as unicast.
b42835db 366 */
7ab75456
MB		 367 if (!READ_ONCE(net->ipv6.sysctl.icmpv6_error_anycast_as_unicast) &&
368 ipv6_anycast_destination(dst, &fl6->daddr)) {
ba7a46f1 369 net_dbg_ratelimited("icmp6_send: acast source\n");
b42835db
DM		 370 dst_release(dst);
371 return ERR_PTR(-EINVAL);
372 }
373
374 /* No need to clone since we're just using its address. */
375 dst2 = dst;
376
4c9483b2 377 dst = xfrm_lookup(net, dst, flowi6_to_flowi(fl6), sk, 0);
452edd59 378 if (!IS_ERR(dst)) {
b42835db
DM		 379 if (dst != dst2)
380 return dst;
452edd59
DM		 381 } else {
382 if (PTR_ERR(dst) == -EPERM)
383 dst = NULL;
384 else
385 return dst;
b42835db
DM		 386 }
387
4c9483b2 388 err = xfrm_decode_session_reverse(skb, flowi6_to_flowi(&fl2), AF_INET6);
b42835db
DM		 389 if (err)
390 goto relookup_failed;
391
343d60aa 392 err = ip6_dst_lookup(net, sk, &dst2, &fl2);
b42835db
DM		 393 if (err)
394 goto relookup_failed;
395
4c9483b2 396 dst2 = xfrm_lookup(net, dst2, flowi6_to_flowi(&fl2), sk, XFRM_LOOKUP_ICMP);
452edd59 397 if (!IS_ERR(dst2)) {
b42835db
DM		 398 dst_release(dst);
399 dst = dst2;
452edd59
DM		 400 } else {
401 err = PTR_ERR(dst2);
402 if (err == -EPERM) {
403 dst_release(dst);
404 return dst2;
405 } else
406 goto relookup_failed;
b42835db
DM		 407 }
408
409relookup_failed:
410 if (dst)
411 return dst;
412 return ERR_PTR(err);
413}
414
e1ae5c2e 415static struct net_device *icmp6_dev(const struct sk_buff *skb)
1b70d792 416{
e1ae5c2e 417 struct net_device *dev = skb->dev;
1b70d792
DA		 418
419 /* for local traffic to local address, skb dev is the loopback
420 * device. Check if there is a dst attached to the skb and if so
24b711ed
DA		 421 * get the real device index. Same is needed for replies to a link
422 * local address on a device enslaved to an L3 master device
1b70d792 423 */
e1ae5c2e 424 if (unlikely(dev->ifindex == LOOPBACK_IFINDEX || netif_is_l3_master(skb->dev))) {
1b70d792
DA		 425 const struct rt6_info *rt6 = skb_rt6_info(skb);
426
427 if (rt6)
e1ae5c2e 428 dev = rt6->rt6i_idev->dev;
1b70d792
DA		 429 }
430
e1ae5c2e
SS		 431 return dev;
432}
433
434static int icmp6_iif(const struct sk_buff *skb)
435{
436 return icmp6_dev(skb)->ifindex;
1b70d792
DA		 437}
438
1da177e4
LT		 439/*
440 * Send an ICMP message in response to a packet in error
441 */
cc7a21b6 442void icmp6_send(struct sk_buff *skb, u8 type, u8 code, __u32 info,
ee576c47
JD		 443 const struct in6_addr *force_saddr,
444 const struct inet6_skb_parm *parm)
1da177e4
LT		 445{
446 struct inet6_dev *idev = NULL;
0660e03f 447 struct ipv6hdr *hdr = ipv6_hdr(skb);
84427d53 448 struct sock *sk;
8d933670 449 struct net *net;
84427d53 450 struct ipv6_pinfo *np;
b71d1d42 451 const struct in6_addr *saddr = NULL;
1da177e4
LT		 452 struct dst_entry *dst;
453 struct icmp6hdr tmp_hdr;
4c9483b2 454 struct flowi6 fl6;
1da177e4 455 struct icmpv6_msg msg;
26879da5 456 struct ipcm6_cookie ipc6;
1da177e4
LT		 457 int iif = 0;
458 int addr_type = 0;
459 int len;
8d933670 460 u32 mark;
1da177e4 461
27a884dc 462 if ((u8 *)hdr < skb->head ||
29a3cad5 463 (skb_network_header(skb) + sizeof(*hdr)) > skb_tail_pointer(skb))
1da177e4
LT		 464 return;
465
8d933670
ED		 466 if (!skb->dev)
467 return;
468 net = dev_net(skb->dev);
469 mark = IP6_REPLY_MARK(net, skb->mark);
1da177e4 470 /*
1ab1457c 471 * Make sure we respect the rules
1da177e4 472 * i.e. RFC 1885 2.4(e)
5f5624cf 473 * Rule (e.1) is enforced by not using icmp6_send
1da177e4
LT		 474 * in any code that processes icmp errors.
475 */
476 addr_type = ipv6_addr_type(&hdr->daddr);
477
446fab59 478 if (ipv6_chk_addr(net, &hdr->daddr, skb->dev, 0) ||
d94c1f92 479 ipv6_chk_acast_addr_src(net, skb->dev, &hdr->daddr))
1da177e4
LT		 480 saddr = &hdr->daddr;
481
482 /*
483 * Dest addr check
484 */
485
9a6b4b39 486 if (addr_type & IPV6_ADDR_MULTICAST || skb->pkt_type != PACKET_HOST) {
1da177e4 487 if (type != ICMPV6_PKT_TOOBIG &&
1ab1457c
YH		 488 !(type == ICMPV6_PARAMPROB &&
489 code == ICMPV6_UNK_OPTION &&
1da177e4
LT		 490 (opt_unrec(skb, info))))
491 return;
492
493 saddr = NULL;
494 }
495
496 addr_type = ipv6_addr_type(&hdr->saddr);
497
498 /*
499 * Source addr check
500 */
501
4832c30d 502 if (__ipv6_addr_needs_scope_id(addr_type)) {
1b70d792 503 iif = icmp6_iif(skb);
4832c30d 504 } else {
272928d1
MD		 505 /*
506 * The source device is used for looking up which routing table
507 * to use for sending an ICMP error.
508 */
509 iif = l3mdev_master_ifindex(skb->dev);
79dc7e3f 510 }
1da177e4
LT		 511
512 /*
8de3351e
YH		 513 * Must not send error if the source does not uniquely
514 * identify a single node (RFC2463 Section 2.4).
515 * We check unspecified / multicast addresses here,
516 * and anycast addresses will be checked later.
1da177e4
LT		 517 */
518 if ((addr_type == IPV6_ADDR_ANY) || (addr_type & IPV6_ADDR_MULTICAST)) {
4b3418fb
BM		 519 net_dbg_ratelimited("icmp6_send: addr_any/mcast source [%pI6c > %pI6c]\n",
520 &hdr->saddr, &hdr->daddr);
1da177e4
LT		 521 return;
522 }
523
1ab1457c 524 /*
1da177e4
LT		 525 * Never answer to a ICMP packet.
526 */
527 if (is_ineligible(skb)) {
4b3418fb
BM		 528 net_dbg_ratelimited("icmp6_send: no reply to icmp error [%pI6c > %pI6c]\n",
529 &hdr->saddr, &hdr->daddr);
1da177e4
LT		 530 return;
531 }
532
7ba91ecb
JDB		 533 /* Needed by both icmp_global_allow and icmpv6_xmit_lock */
534 local_bh_disable();
535
536 /* Check global sysctl_icmp_msgs_per_sec ratelimit */
0bc19985 537 if (!(skb->dev->flags & IFF_LOOPBACK) && !icmpv6_global_allow(net, type))
7ba91ecb
JDB		 538 goto out_bh_enable;
539
ee576c47 540 mip6_addr_swap(skb, parm);
79383236 541
fac6fce9
FR		 542 sk = icmpv6_xmit_lock(net);
543 if (!sk)
544 goto out_bh_enable;
545
4c9483b2
DM		 546 memset(&fl6, 0, sizeof(fl6));
547 fl6.flowi6_proto = IPPROTO_ICMPV6;
4e3fd7a0 548 fl6.daddr = hdr->saddr;
b1cadc1a
ED		 549 if (force_saddr)
550 saddr = force_saddr;
fac6fce9 551 if (saddr) {
4e3fd7a0 552 fl6.saddr = *saddr;
b93cfb9c 553 } else if (!icmpv6_rt_has_prefsrc(sk, type, &fl6)) {
fac6fce9
FR		 554 /* select a more meaningful saddr from input if */
555 struct net_device *in_netdev;
556
ee576c47 557 in_netdev = dev_get_by_index(net, parm->iif);
fac6fce9
FR		 558 if (in_netdev) {
559 ipv6_dev_get_saddr(net, in_netdev, &fl6.daddr,
560 inet6_sk(sk)->srcprefs,
561 &fl6.saddr);
562 dev_put(in_netdev);
563 }
564 }
e110861f 565 fl6.flowi6_mark = mark;
4c9483b2 566 fl6.flowi6_oif = iif;
1958b856
DM		 567 fl6.fl6_icmp_type = type;
568 fl6.fl6_icmp_code = code;
e2d118a1 569 fl6.flowi6_uid = sock_net_uid(net, NULL);
b4bac172 570 fl6.mp_hash = rt6_multipath_hash(net, &fl6, skb, NULL);
3df98d79 571 security_skb_classify_flow(skb, flowi6_to_flowi_common(&fl6));
1da177e4 572
fdc0bde9 573 np = inet6_sk(sk);
405666db 574
4c9483b2 575 if (!icmpv6_xrlim_allow(sk, type, &fl6))
1da177e4
LT		 576 goto out;
577
578 tmp_hdr.icmp6_type = type;
579 tmp_hdr.icmp6_code = code;
580 tmp_hdr.icmp6_cksum = 0;
581 tmp_hdr.icmp6_pointer = htonl(info);
582
4c9483b2
DM		 583 if (!fl6.flowi6_oif && ipv6_addr_is_multicast(&fl6.daddr))
584 fl6.flowi6_oif = np->mcast_oif;
c4062dfc
EH		 585 else if (!fl6.flowi6_oif)
586 fl6.flowi6_oif = np->ucast_oif;
1da177e4 587
b515430a 588 ipcm6_init_sk(&ipc6, np);
0da7536f 589 ipc6.sockc.mark = mark;
38b7097b
HFS		 590 fl6.flowlabel = ip6_make_flowinfo(ipc6.tclass, fl6.flowlabel);
591
4c9483b2 592 dst = icmpv6_route_lookup(net, skb, sk, &fl6);
b42835db 593 if (IS_ERR(dst))
1da177e4 594 goto out;
8de3351e 595
26879da5 596 ipc6.hlimit = ip6_sk_dst_hoplimit(np, &fl6, dst);
1da177e4
LT		 597
598 msg.skb = skb;
bbe735e4 599 msg.offset = skb_network_offset(skb);
763ecff1 600 msg.type = type;
1da177e4
LT		 601
602 len = skb->len - msg.offset;
67ba4152 603 len = min_t(unsigned int, len, IPV6_MIN_MTU - sizeof(struct ipv6hdr) - sizeof(struct icmp6hdr));
1da177e4 604 if (len < 0) {
4b3418fb
BM		 605 net_dbg_ratelimited("icmp: len problem [%pI6c > %pI6c]\n",
606 &hdr->saddr, &hdr->daddr);
1da177e4
LT		 607 goto out_dst_release;
608 }
609
cfdf7647
ED		 610 rcu_read_lock();
611 idev = __in6_dev_get(skb->dev);
1da177e4 612
4e64b1ed
JP		 613 if (ip6_append_data(sk, icmpv6_getfrag, &msg,
614 len + sizeof(struct icmp6hdr),
615 sizeof(struct icmp6hdr),
616 &ipc6, &fl6, (struct rt6_info *)dst,
5fdaa88d 617 MSG_DONTWAIT)) {
43a43b60 618 ICMP6_INC_STATS(net, idev, ICMP6_MIB_OUTERRORS);
1da177e4 619 ip6_flush_pending_frames(sk);
cfdf7647 620 } else {
4e64b1ed
JP		 621 icmpv6_push_pending_frames(sk, &fl6, &tmp_hdr,
622 len + sizeof(struct icmp6hdr));
1da177e4 623 }
cfdf7647 624 rcu_read_unlock();
1da177e4
LT		 625out_dst_release:
626 dst_release(dst);
627out:
405666db 628 icmpv6_xmit_unlock(sk);
7ba91ecb
JDB		 629out_bh_enable:
630 local_bh_enable();
1da177e4 631}
cc7a21b6 632EXPORT_SYMBOL(icmp6_send);
5f5624cf 633
1ad6d548 634/* Slightly more convenient version of icmp6_send with drop reasons.
5f5624cf 635 */
1ad6d548
MD		 636void icmpv6_param_prob_reason(struct sk_buff *skb, u8 code, int pos,
637 enum skb_drop_reason reason)
5f5624cf 638{
ee576c47 639 icmp6_send(skb, ICMPV6_PARAMPROB, code, pos, NULL, IP6CB(skb));
1ad6d548 640 kfree_skb_reason(skb, reason);
5f5624cf 641}
7159039a 642
5fbba8ac
ED		 643/* Generate icmpv6 with type/code ICMPV6_DEST_UNREACH/ICMPV6_ADDR_UNREACH
644 * if sufficient data bytes are available
645 * @nhs is the size of the tunnel header(s) :
646 * Either an IPv4 header for SIT encap
647 * an IPv4 header + GRE header for GRE encap
648 */
20e1954f
ED		 649int ip6_err_gen_icmpv6_unreach(struct sk_buff *skb, int nhs, int type,
650 unsigned int data_len)
5fbba8ac 651{
2d7a3b27 652 struct in6_addr temp_saddr;
5fbba8ac
ED		 653 struct rt6_info *rt;
654 struct sk_buff *skb2;
20e1954f 655 u32 info = 0;
5fbba8ac
ED		 656
657 if (!pskb_may_pull(skb, nhs + sizeof(struct ipv6hdr) + 8))
658 return 1;
659
20e1954f
ED		 660 /* RFC 4884 (partial) support for ICMP extensions */
661 if (data_len < 128 || (data_len & 7) || skb->len < data_len)
662 data_len = 0;
663
664 skb2 = data_len ? skb_copy(skb, GFP_ATOMIC) : skb_clone(skb, GFP_ATOMIC);
5fbba8ac
ED		 665
666 if (!skb2)
667 return 1;
668
669 skb_dst_drop(skb2);
670 skb_pull(skb2, nhs);
671 skb_reset_network_header(skb2);
672
b75cc8f9
DA		 673 rt = rt6_lookup(dev_net(skb->dev), &ipv6_hdr(skb2)->saddr, NULL, 0,
674 skb, 0);
5fbba8ac
ED		 675
676 if (rt && rt->dst.dev)
677 skb2->dev = rt->dst.dev;
678
2d7a3b27 679 ipv6_addr_set_v4mapped(ip_hdr(skb)->saddr, &temp_saddr);
20e1954f
ED		 680
681 if (data_len) {
682 /* RFC 4884 (partial) support :
683 * insert 0 padding at the end, before the extensions
684 */
685 __skb_push(skb2, nhs);
686 skb_reset_network_header(skb2);
687 memmove(skb2->data, skb2->data + nhs, data_len - nhs);
688 memset(skb2->data + data_len - nhs, 0, nhs);
689 /* RFC 4884 4.5 : Length is measured in 64-bit words,
690 * and stored in reserved[0]
691 */
692 info = (data_len/8) << 24;
693 }
2d7a3b27
ED		 694 if (type == ICMP_TIME_EXCEEDED)
695 icmp6_send(skb2, ICMPV6_TIME_EXCEED, ICMPV6_EXC_HOPLIMIT,
ee576c47 696 info, &temp_saddr, IP6CB(skb2));
2d7a3b27
ED		 697 else
698 icmp6_send(skb2, ICMPV6_DEST_UNREACH, ICMPV6_ADDR_UNREACH,
ee576c47 699 info, &temp_saddr, IP6CB(skb2));
5fbba8ac
ED		 700 if (rt)
701 ip6_rt_put(rt);
702
703 kfree_skb(skb2);
704
705 return 0;
706}
707EXPORT_SYMBOL(ip6_err_gen_icmpv6_unreach);
708
ac03694b 709static enum skb_drop_reason icmpv6_echo_reply(struct sk_buff *skb)
1da177e4 710{
c346dca1 711 struct net *net = dev_net(skb->dev);
84427d53 712 struct sock *sk;
1da177e4 713 struct inet6_dev *idev;
84427d53 714 struct ipv6_pinfo *np;
b71d1d42 715 const struct in6_addr *saddr = NULL;
cc70ab26 716 struct icmp6hdr *icmph = icmp6_hdr(skb);
1da177e4 717 struct icmp6hdr tmp_hdr;
4c9483b2 718 struct flowi6 fl6;
1da177e4
LT		 719 struct icmpv6_msg msg;
720 struct dst_entry *dst;
26879da5 721 struct ipcm6_cookie ipc6;
e110861f 722 u32 mark = IP6_REPLY_MARK(net, skb->mark);
ac03694b 723 SKB_DR(reason);
0b03a5ca 724 bool acast;
1fd07f33 725 u8 type;
1da177e4 726
03f1eccc
SS		 727 if (ipv6_addr_is_multicast(&ipv6_hdr(skb)->daddr) &&
728 net->ipv6.sysctl.icmpv6_echo_ignore_multicast)
ac03694b 729 return reason;
03f1eccc 730
0660e03f 731 saddr = &ipv6_hdr(skb)->daddr;
1da177e4 732
0b03a5ca
SS		 733 acast = ipv6_anycast_destination(skb_dst(skb), saddr);
734 if (acast && net->ipv6.sysctl.icmpv6_echo_ignore_anycast)
ac03694b 735 return reason;
0b03a5ca 736
509aba3b 737 if (!ipv6_unicast_destination(skb) &&
0b03a5ca 738 !(net->ipv6.sysctl.anycast_src_echo_reply && acast))
1da177e4
LT		 739 saddr = NULL;
740
1fd07f33
AR		 741 if (icmph->icmp6_type == ICMPV6_EXT_ECHO_REQUEST)
742 type = ICMPV6_EXT_ECHO_REPLY;
743 else
744 type = ICMPV6_ECHO_REPLY;
745
1da177e4 746 memcpy(&tmp_hdr, icmph, sizeof(tmp_hdr));
1fd07f33 747 tmp_hdr.icmp6_type = type;
1da177e4 748
4c9483b2 749 memset(&fl6, 0, sizeof(fl6));
a346abe0
ED		 750 if (net->ipv6.sysctl.flowlabel_reflect & FLOWLABEL_REFLECT_ICMPV6_ECHO_REPLIES)
751 fl6.flowlabel = ip6_flowlabel(ipv6_hdr(skb));
752
4c9483b2 753 fl6.flowi6_proto = IPPROTO_ICMPV6;
4e3fd7a0 754 fl6.daddr = ipv6_hdr(skb)->saddr;
1da177e4 755 if (saddr)
4e3fd7a0 756 fl6.saddr = *saddr;
1b70d792 757 fl6.flowi6_oif = icmp6_iif(skb);
1fd07f33 758 fl6.fl6_icmp_type = type;
e110861f 759 fl6.flowi6_mark = mark;
e2d118a1 760 fl6.flowi6_uid = sock_net_uid(net, NULL);
3df98d79 761 security_skb_classify_flow(skb, flowi6_to_flowi_common(&fl6));
1da177e4 762
7ba91ecb 763 local_bh_disable();
fdc0bde9 764 sk = icmpv6_xmit_lock(net);
63159f29 765 if (!sk)
7ba91ecb 766 goto out_bh_enable;
fdc0bde9 767 np = inet6_sk(sk);
405666db 768
4c9483b2
DM		 769 if (!fl6.flowi6_oif && ipv6_addr_is_multicast(&fl6.daddr))
770 fl6.flowi6_oif = np->mcast_oif;
c4062dfc
EH		 771 else if (!fl6.flowi6_oif)
772 fl6.flowi6_oif = np->ucast_oif;
1da177e4 773
4e64b1ed 774 if (ip6_dst_lookup(net, sk, &dst, &fl6))
1da177e4 775 goto out;
4c9483b2 776 dst = xfrm_lookup(net, dst, flowi6_to_flowi(&fl6), sk, 0);
452edd59 777 if (IS_ERR(dst))
e104411b 778 goto out;
1da177e4 779
0bc19985
SS		 780 /* Check the ratelimit */
781 if ((!(skb->dev->flags & IFF_LOOPBACK) && !icmpv6_global_allow(net, ICMPV6_ECHO_REPLY)) ||
782 !icmpv6_xrlim_allow(sk, ICMPV6_ECHO_REPLY, &fl6))
783 goto out_dst_release;
784
cfdf7647 785 idev = __in6_dev_get(skb->dev);
1da177e4
LT		 786
787 msg.skb = skb;
788 msg.offset = 0;
1fd07f33 789 msg.type = type;
1da177e4 790
b515430a 791 ipcm6_init_sk(&ipc6, np);
26879da5
WW		 792 ipc6.hlimit = ip6_sk_dst_hoplimit(np, &fl6, dst);
793 ipc6.tclass = ipv6_get_dsfield(ipv6_hdr(skb));
0da7536f 794 ipc6.sockc.mark = mark;
26879da5 795
1fd07f33
AR		 796 if (icmph->icmp6_type == ICMPV6_EXT_ECHO_REQUEST)
797 if (!icmp_build_probe(skb, (struct icmphdr *)&tmp_hdr))
798 goto out_dst_release;
799
4e64b1ed
JP		 800 if (ip6_append_data(sk, icmpv6_getfrag, &msg,
801 skb->len + sizeof(struct icmp6hdr),
802 sizeof(struct icmp6hdr), &ipc6, &fl6,
5fdaa88d 803 (struct rt6_info *)dst, MSG_DONTWAIT)) {
a16292a0 804 __ICMP6_INC_STATS(net, idev, ICMP6_MIB_OUTERRORS);
1da177e4 805 ip6_flush_pending_frames(sk);
cfdf7647 806 } else {
4e64b1ed
JP		 807 icmpv6_push_pending_frames(sk, &fl6, &tmp_hdr,
808 skb->len + sizeof(struct icmp6hdr));
ac03694b 809 reason = SKB_CONSUMED;
1da177e4 810 }
0bc19985 811out_dst_release:
1da177e4 812 dst_release(dst);
1ab1457c 813out:
405666db 814 icmpv6_xmit_unlock(sk);
7ba91ecb
JDB		 815out_bh_enable:
816 local_bh_enable();
ac03694b 817 return reason;
1da177e4
LT		 818}
819
30c89bad
ED		 820enum skb_drop_reason icmpv6_notify(struct sk_buff *skb, u8 type,
821 u8 code, __be32 info)
1da177e4 822{
e4129440 823 struct inet6_skb_parm *opt = IP6CB(skb);
30c89bad 824 struct net *net = dev_net(skb->dev);
41135cc8 825 const struct inet6_protocol *ipprot;
30c89bad 826 enum skb_drop_reason reason;
1da177e4 827 int inner_offset;
75f2811c 828 __be16 frag_off;
f9242b6b 829 u8 nexthdr;
1da177e4 830
30c89bad
ED		 831 reason = pskb_may_pull_reason(skb, sizeof(struct ipv6hdr));
832 if (reason != SKB_NOT_DROPPED_YET)
7304fe46 833 goto out;
1da177e4 834
e4129440
AL		 835 seg6_icmp_srh(skb, opt);
836
1da177e4
LT		 837 nexthdr = ((struct ipv6hdr *)skb->data)->nexthdr;
838 if (ipv6_ext_hdr(nexthdr)) {
839 /* now skip over extension headers */
75f2811c
JG		 840 inner_offset = ipv6_skip_exthdr(skb, sizeof(struct ipv6hdr),
841 &nexthdr, &frag_off);
30c89bad
ED		 842 if (inner_offset < 0) {
843 SKB_DR_SET(reason, IPV6_BAD_EXTHDR);
7304fe46 844 goto out;
30c89bad 845 }
1da177e4
LT		 846 } else {
847 inner_offset = sizeof(struct ipv6hdr);
848 }
849
850 /* Checkin header including 8 bytes of inner protocol header. */
30c89bad
ED		 851 reason = pskb_may_pull_reason(skb, inner_offset + 8);
852 if (reason != SKB_NOT_DROPPED_YET)
7304fe46 853 goto out;
1da177e4 854
1da177e4
LT		 855 /* BUGGG_FUTURE: we should try to parse exthdrs in this packet.
856 Without this we will not able f.e. to make source routed
857 pmtu discovery.
858 Corresponding argument (opt) to notifiers is already added.
859 --ANK (980726)
860 */
861
f9242b6b 862 ipprot = rcu_dereference(inet6_protos[nexthdr]);
1da177e4 863 if (ipprot && ipprot->err_handler)
e4129440 864 ipprot->err_handler(skb, opt, type, code, inner_offset, info);
1da177e4 865
69d6da0b 866 raw6_icmp_error(skb, nexthdr, type, code, inner_offset, info);
30c89bad 867 return SKB_CONSUMED;
7304fe46
DJ		 868
869out:
a16292a0 870 __ICMP6_INC_STATS(net, __in6_dev_get(skb->dev), ICMP6_MIB_INERRORS);
30c89bad 871 return reason;
1da177e4 872}
1ab1457c 873
1da177e4
LT		 874/*
875 * Handle icmp messages
876 */
877
e5bbef20 878static int icmpv6_rcv(struct sk_buff *skb)
1da177e4 879{
b384c95a 880 enum skb_drop_reason reason = SKB_DROP_REASON_NOT_SPECIFIED;
e6f86b0f 881 struct net *net = dev_net(skb->dev);
e1ae5c2e 882 struct net_device *dev = icmp6_dev(skb);
1da177e4 883 struct inet6_dev *idev = __in6_dev_get(dev);
b71d1d42 884 const struct in6_addr *saddr, *daddr;
1da177e4 885 struct icmp6hdr *hdr;
d5fdd6ba 886 u8 type;
1da177e4 887
aebcf82c 888 if (!xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb)) {
def8b4fa 889 struct sec_path *sp = skb_sec_path(skb);
8b7817f3
HX		 890 int nh;
891
def8b4fa 892 if (!(sp && sp->xvec[sp->len - 1]->props.flags &
b384c95a
MD		 893 XFRM_STATE_ICMP)) {
894 reason = SKB_DROP_REASON_XFRM_POLICY;
aebcf82c 895 goto drop_no_count;
b384c95a 896 }
aebcf82c 897
81aded24 898 if (!pskb_may_pull(skb, sizeof(*hdr) + sizeof(struct ipv6hdr)))
8b7817f3
HX		 899 goto drop_no_count;
900
901 nh = skb_network_offset(skb);
902 skb_set_network_header(skb, sizeof(*hdr));
903
b384c95a
MD		 904 if (!xfrm6_policy_check_reverse(NULL, XFRM_POLICY_IN,
905 skb)) {
906 reason = SKB_DROP_REASON_XFRM_POLICY;
8b7817f3 907 goto drop_no_count;
b384c95a 908 }
8b7817f3
HX		 909
910 skb_set_network_header(skb, nh);
911 }
912
a16292a0 913 __ICMP6_INC_STATS(dev_net(dev), idev, ICMP6_MIB_INMSGS);
1da177e4 914
0660e03f
ACM		 915 saddr = &ipv6_hdr(skb)->saddr;
916 daddr = &ipv6_hdr(skb)->daddr;
1da177e4 917
39471ac8 918 if (skb_checksum_validate(skb, IPPROTO_ICMPV6, ip6_compute_pseudo)) {
ba7a46f1
JP		 919 net_dbg_ratelimited("ICMPv6 checksum failed [%pI6c > %pI6c]\n",
920 saddr, daddr);
39471ac8 921 goto csum_error;
1da177e4
LT		 922 }
923
8cf22943
HX		 924 if (!pskb_pull(skb, sizeof(*hdr)))
925 goto discard_it;
1da177e4 926
cc70ab26 927 hdr = icmp6_hdr(skb);
1da177e4
LT		 928
929 type = hdr->icmp6_type;
930
f3832ed2 931 ICMP6MSGIN_INC_STATS(dev_net(dev), idev, type);
1da177e4
LT		 932
933 switch (type) {
934 case ICMPV6_ECHO_REQUEST:
e6f86b0f 935 if (!net->ipv6.sysctl.icmpv6_echo_ignore_all)
ac03694b 936 reason = icmpv6_echo_reply(skb);
1da177e4 937 break;
1fd07f33
AR		 938 case ICMPV6_EXT_ECHO_REQUEST:
939 if (!net->ipv6.sysctl.icmpv6_echo_ignore_all &&
4a2f7083 940 READ_ONCE(net->ipv4.sysctl_icmp_echo_enable_probe))
ac03694b 941 reason = icmpv6_echo_reply(skb);
1fd07f33 942 break;
1da177e4
LT		 943
944 case ICMPV6_ECHO_REPLY:
b384c95a 945 reason = ping_rcv(skb);
1da177e4
LT		 946 break;
947
31433202 948 case ICMPV6_EXT_ECHO_REPLY:
b384c95a 949 reason = ping_rcv(skb);
31433202
AR		 950 break;
951
1da177e4
LT		 952 case ICMPV6_PKT_TOOBIG:
953 /* BUGGG_FUTURE: if packet contains rthdr, we cannot update
954 standard destination cache. Seems, only "advanced"
955 destination cache will allow to solve this problem
956 --ANK (980726)
957 */
958 if (!pskb_may_pull(skb, sizeof(struct ipv6hdr)))
959 goto discard_it;
cc70ab26 960 hdr = icmp6_hdr(skb);
1da177e4 961
275757e6 962 /* to notify */
a8eceea8 963 fallthrough;
1da177e4
LT		 964 case ICMPV6_DEST_UNREACH:
965 case ICMPV6_TIME_EXCEED:
966 case ICMPV6_PARAMPROB:
30c89bad
ED		 967 reason = icmpv6_notify(skb, type, hdr->icmp6_code,
968 hdr->icmp6_mtu);
1da177e4
LT		 969 break;
970
971 case NDISC_ROUTER_SOLICITATION:
972 case NDISC_ROUTER_ADVERTISEMENT:
973 case NDISC_NEIGHBOUR_SOLICITATION:
974 case NDISC_NEIGHBOUR_ADVERTISEMENT:
975 case NDISC_REDIRECT:
545dbcd1 976 reason = ndisc_rcv(skb);
1da177e4
LT		 977 break;
978
979 case ICMPV6_MGM_QUERY:
980 igmp6_event_query(skb);
f185de28 981 return 0;
1da177e4
LT		 982
983 case ICMPV6_MGM_REPORT:
984 igmp6_event_report(skb);
f185de28 985 return 0;
1da177e4
LT		 986
987 case ICMPV6_MGM_REDUCTION:
988 case ICMPV6_NI_QUERY:
989 case ICMPV6_NI_REPLY:
990 case ICMPV6_MLD2_REPORT:
991 case ICMPV6_DHAAD_REQUEST:
992 case ICMPV6_DHAAD_REPLY:
993 case ICMPV6_MOBILE_PREFIX_SOL:
994 case ICMPV6_MOBILE_PREFIX_ADV:
995 break;
996
997 default:
1da177e4
LT		 998 /* informational */
999 if (type & ICMPV6_INFOMSG_MASK)
1000 break;
1001
4b3418fb
BM		 1002 net_dbg_ratelimited("icmpv6: msg of unknown type [%pI6c > %pI6c]\n",
1003 saddr, daddr);
ea85a0a2 1004
1ab1457c
YH		 1005 /*
1006 * error of unknown type.
1007 * must pass to upper level
1da177e4
LT		 1008 */
1009
30c89bad
ED		 1010 reason = icmpv6_notify(skb, type, hdr->icmp6_code,
1011 hdr->icmp6_mtu);
3ff50b79
SH		 1012 }
1013
e3e32170
RJ		 1014 /* until the v6 path can be better sorted assume failure and
1015 * preserve the status quo behaviour for the rest of the paths to here
1016 */
b384c95a
MD		 1017 if (reason)
1018 kfree_skb_reason(skb, reason);
e3e32170 1019 else
b384c95a 1020 consume_skb(skb);
e3e32170 1021
1da177e4
LT		 1022 return 0;
1023
6a5dc9e5 1024csum_error:
b384c95a 1025 reason = SKB_DROP_REASON_ICMP_CSUM;
a16292a0 1026 __ICMP6_INC_STATS(dev_net(dev), idev, ICMP6_MIB_CSUMERRORS);
1da177e4 1027discard_it:
a16292a0 1028 __ICMP6_INC_STATS(dev_net(dev), idev, ICMP6_MIB_INERRORS);
8b7817f3 1029drop_no_count:
b384c95a 1030 kfree_skb_reason(skb, reason);
1da177e4
LT		 1031 return 0;
1032}
1033
4c9483b2 1034void icmpv6_flow_init(struct sock *sk, struct flowi6 *fl6,
95e41e93
YH		 1035 u8 type,
1036 const struct in6_addr *saddr,
1037 const struct in6_addr *daddr,
1038 int oif)
1039{
4c9483b2 1040 memset(fl6, 0, sizeof(*fl6));
4e3fd7a0
AD		 1041 fl6->saddr = *saddr;
1042 fl6->daddr = *daddr;
67ba4152 1043 fl6->flowi6_proto = IPPROTO_ICMPV6;
1958b856
DM		 1044 fl6->fl6_icmp_type = type;
1045 fl6->fl6_icmp_code = 0;
4c9483b2 1046 fl6->flowi6_oif = oif;
3df98d79 1047 security_sk_classify_flow(sk, flowi6_to_flowi_common(fl6));
95e41e93
YH		 1048}
1049
6a17b961 1050int __init icmpv6_init(void)
1da177e4
LT		 1051{
1052 struct sock *sk;
3232a1ef 1053 int err, i;
1da177e4 1054
6f912042 1055 for_each_possible_cpu(i) {
1ed8516f 1056 err = inet_ctl_sock_create(&sk, PF_INET6,
6a17b961 1057 SOCK_RAW, IPPROTO_ICMPV6, &init_net);
1da177e4 1058 if (err < 0) {
f3213831 1059 pr_err("Failed to initialize the ICMP6 control socket (err %d)\n",
1da177e4 1060 err);
6a17b961 1061 return err;
1da177e4
LT		 1062 }
1063
6a17b961 1064 per_cpu(ipv6_icmp_sk, i) = sk;
5c8cafd6 1065
1da177e4
LT		 1066 /* Enough space for 2 64K ICMP packets, including
1067 * sk_buff struct overhead.
1068 */
87fb4b7b 1069 sk->sk_sndbuf = 2 * SKB_TRUESIZE(64 * 1024);
1da177e4 1070 }
98c6d1b2
DL		 1071
1072 err = -EAGAIN;
1073 if (inet6_add_protocol(&icmpv6_protocol, IPPROTO_ICMPV6) < 0)
1074 goto fail;
5f5624cf
PS		 1075
1076 err = inet6_register_icmp_sender(icmp6_send);
1077 if (err)
1078 goto sender_reg_err;
98c6d1b2
DL		 1079 return 0;
1080
5f5624cf
PS		 1081sender_reg_err:
1082 inet6_del_protocol(&icmpv6_protocol, IPPROTO_ICMPV6);
98c6d1b2 1083fail:
f3213831 1084 pr_err("Failed to register ICMP6 protocol\n");
98c6d1b2
DL		 1085 return err;
1086}
1087
8ed7edce 1088void icmpv6_cleanup(void)
98c6d1b2 1089{
5f5624cf 1090 inet6_unregister_icmp_sender(icmp6_send);
1da177e4
LT		 1091 inet6_del_protocol(&icmpv6_protocol, IPPROTO_ICMPV6);
1092}
1093
98c6d1b2 1094
9b5b5cff 1095static const struct icmp6_err {
1da177e4
LT		 1096 int err;
1097 int fatal;
1098} tab_unreach[] = {
1099 { /* NOROUTE */
1100 .err = ENETUNREACH,
1101 .fatal = 0,
1102 },
1103 { /* ADM_PROHIBITED */
1104 .err = EACCES,
1105 .fatal = 1,
1106 },
1107 { /* Was NOT_NEIGHBOUR, now reserved */
1108 .err = EHOSTUNREACH,
1109 .fatal = 0,
1110 },
1111 { /* ADDR_UNREACH */
1112 .err = EHOSTUNREACH,
1113 .fatal = 0,
1114 },
1115 { /* PORT_UNREACH */
1116 .err = ECONNREFUSED,
1117 .fatal = 1,
1118 },
61e76b17
JB		 1119 { /* POLICY_FAIL */
1120 .err = EACCES,
1121 .fatal = 1,
1122 },
1123 { /* REJECT_ROUTE */
1124 .err = EACCES,
1125 .fatal = 1,
1126 },
1da177e4
LT		 1127};
1128
d5fdd6ba 1129int icmpv6_err_convert(u8 type, u8 code, int *err)
1da177e4
LT		 1130{
1131 int fatal = 0;
1132
1133 *err = EPROTO;
1134
1135 switch (type) {
1136 case ICMPV6_DEST_UNREACH:
1137 fatal = 1;
61e76b17 1138 if (code < ARRAY_SIZE(tab_unreach)) {
1da177e4
LT		 1139 *err = tab_unreach[code].err;
1140 fatal = tab_unreach[code].fatal;
1141 }
1142 break;
1143
1144 case ICMPV6_PKT_TOOBIG:
1145 *err = EMSGSIZE;
1146 break;
1ab1457c 1147
1da177e4
LT		 1148 case ICMPV6_PARAMPROB:
1149 *err = EPROTO;
1150 fatal = 1;
1151 break;
1152
1153 case ICMPV6_TIME_EXCEED:
1154 *err = EHOSTUNREACH;
1155 break;
3ff50b79 1156 }
1da177e4
LT		 1157
1158 return fatal;
1159}
7159039a
YH		 1160EXPORT_SYMBOL(icmpv6_err_convert);
1161
1da177e4 1162#ifdef CONFIG_SYSCTL
e8243534 1163static struct ctl_table ipv6_icmp_table_template[] = {
1da177e4 1164 {
1da177e4 1165 .procname = "ratelimit",
41a76906 1166 .data = &init_net.ipv6.sysctl.icmpv6_time,
1da177e4
LT		 1167 .maxlen = sizeof(int),
1168 .mode = 0644,
6d9f239a 1169 .proc_handler = proc_dointvec_ms_jiffies,
1da177e4 1170 },
e6f86b0f
VJ		 1171 {
1172 .procname = "echo_ignore_all",
1173 .data = &init_net.ipv6.sysctl.icmpv6_echo_ignore_all,
a6175633 1174 .maxlen = sizeof(u8),
e6f86b0f 1175 .mode = 0644,
a6175633 1176 .proc_handler = proc_dou8vec_minmax,
e6f86b0f 1177 },
03f1eccc
SS		 1178 {
1179 .procname = "echo_ignore_multicast",
1180 .data = &init_net.ipv6.sysctl.icmpv6_echo_ignore_multicast,
a6175633 1181 .maxlen = sizeof(u8),
03f1eccc 1182 .mode = 0644,
a6175633 1183 .proc_handler = proc_dou8vec_minmax,
03f1eccc 1184 },
0b03a5ca
SS		 1185 {
1186 .procname = "echo_ignore_anycast",
1187 .data = &init_net.ipv6.sysctl.icmpv6_echo_ignore_anycast,
a6175633 1188 .maxlen = sizeof(u8),
0b03a5ca 1189 .mode = 0644,
a6175633 1190 .proc_handler = proc_dou8vec_minmax,
0b03a5ca 1191 },
0bc19985
SS		 1192 {
1193 .procname = "ratemask",
1194 .data = &init_net.ipv6.sysctl.icmpv6_ratemask_ptr,
1195 .maxlen = ICMPV6_MSG_MAX + 1,
1196 .mode = 0644,
1197 .proc_handler = proc_do_large_bitmap,
1198 },
7ab75456
MB		 1199 {
1200 .procname = "error_anycast_as_unicast",
1201 .data = &init_net.ipv6.sysctl.icmpv6_error_anycast_as_unicast,
1202 .maxlen = sizeof(u8),
1203 .mode = 0644,
1204 .proc_handler = proc_dou8vec_minmax,
1205 .extra1 = SYSCTL_ZERO,
1206 .extra2 = SYSCTL_ONE,
1207 },
f8572d8f 1208 { },
1da177e4 1209};
760f2d01 1210
2c8c1e72 1211struct ctl_table * __net_init ipv6_icmp_sysctl_init(struct net *net)
760f2d01
DL		 1212{
1213 struct ctl_table *table;
1214
1215 table = kmemdup(ipv6_icmp_table_template,
1216 sizeof(ipv6_icmp_table_template),
1217 GFP_KERNEL);
5ee09105 1218
e6f86b0f 1219 if (table) {
5ee09105 1220 table[0].data = &net->ipv6.sysctl.icmpv6_time;
e6f86b0f 1221 table[1].data = &net->ipv6.sysctl.icmpv6_echo_ignore_all;
03f1eccc 1222 table[2].data = &net->ipv6.sysctl.icmpv6_echo_ignore_multicast;
0b03a5ca 1223 table[3].data = &net->ipv6.sysctl.icmpv6_echo_ignore_anycast;
0bc19985 1224 table[4].data = &net->ipv6.sysctl.icmpv6_ratemask_ptr;
7ab75456 1225 table[5].data = &net->ipv6.sysctl.icmpv6_error_anycast_as_unicast;
e6f86b0f 1226 }
760f2d01
DL		 1227 return table;
1228}
1da177e4 1229#endif
Linux 6.x block layer and io_uring tree(s)