]> git.proxmox.com Git - mirror_ubuntu-jammy-kernel.git/blame - net/ipv4/ip_gre.c
projects / mirror_ubuntu-jammy-kernel.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge branch 'use-tc_cls_can_offload_and_chain0-throughout-the-drivers'
[mirror_ubuntu-jammy-kernel.git] / net / ipv4 / ip_gre.c
CommitLineData
1da177e4 1/*
e905a9ed 2 * Linux NET3: GRE over IP protocol decoder.
1da177e4
LT		 3 *
4 * Authors: Alexey Kuznetsov (kuznet@ms2.inr.ac.ru)
5 *
6 * This program is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU General Public License
8 * as published by the Free Software Foundation; either version
9 * 2 of the License, or (at your option) any later version.
10 *
11 */
12
afd46503
JP		 13#define pr_fmt(fmt) KBUILD_MODNAME ": " fmt
14
4fc268d2 15#include <linux/capability.h>
1da177e4
LT		 16#include <linux/module.h>
17#include <linux/types.h>
1da177e4 18#include <linux/kernel.h>
5a0e3ad6 19#include <linux/slab.h>
7c0f6ba6 20#include <linux/uaccess.h>
1da177e4
LT		 21#include <linux/skbuff.h>
22#include <linux/netdevice.h>
23#include <linux/in.h>
24#include <linux/tcp.h>
25#include <linux/udp.h>
26#include <linux/if_arp.h>
2e15ea39 27#include <linux/if_vlan.h>
1da177e4
LT		 28#include <linux/init.h>
29#include <linux/in6.h>
30#include <linux/inetdevice.h>
31#include <linux/igmp.h>
32#include <linux/netfilter_ipv4.h>
e1a80002 33#include <linux/etherdevice.h>
46f25dff 34#include <linux/if_ether.h>
1da177e4
LT		 35
36#include <net/sock.h>
37#include <net/ip.h>
38#include <net/icmp.h>
39#include <net/protocol.h>
c5441932 40#include <net/ip_tunnels.h>
1da177e4
LT		 41#include <net/arp.h>
42#include <net/checksum.h>
43#include <net/dsfield.h>
44#include <net/inet_ecn.h>
45#include <net/xfrm.h>
59a4c759
PE		 46#include <net/net_namespace.h>
47#include <net/netns/generic.h>
c19e654d 48#include <net/rtnetlink.h>
00959ade 49#include <net/gre.h>
2e15ea39 50#include <net/dst_metadata.h>
84e54fe0 51#include <net/erspan.h>
1da177e4 52
1da177e4
LT		 53/*
54 Problems & solutions
55 --------------------
56
57 1. The most important issue is detecting local dead loops.
58 They would cause complete host lockup in transmit, which
59 would be "resolved" by stack overflow or, if queueing is enabled,
60 with infinite looping in net_bh.
61
62 We cannot track such dead loops during route installation,
63 it is infeasible task. The most general solutions would be
64 to keep skb->encapsulation counter (sort of local ttl),
6d0722a2 65 and silently drop packet when it expires. It is a good
bff52857 66 solution, but it supposes maintaining new variable in ALL
1da177e4
LT		 67 skb, even if no tunneling is used.
68
6d0722a2
ED		 69 Current solution: xmit_recursion breaks dead loops. This is a percpu
70 counter, since when we enter the first ndo_xmit(), cpu migration is
71 forbidden. We force an exit if this counter reaches RECURSION_LIMIT
1da177e4
LT		 72
73 2. Networking dead loops would not kill routers, but would really
74 kill network. IP hop limit plays role of "t->recursion" in this case,
75 if we copy it from packet being encapsulated to upper header.
76 It is very good solution, but it introduces two problems:
77
78 - Routing protocols, using packets with ttl=1 (OSPF, RIP2),
79 do not work over tunnels.
80 - traceroute does not work. I planned to relay ICMP from tunnel,
81 so that this problem would be solved and traceroute output
82 would even more informative. This idea appeared to be wrong:
83 only Linux complies to rfc1812 now (yes, guys, Linux is the only
84 true router now :-)), all routers (at least, in neighbourhood of mine)
85 return only 8 bytes of payload. It is the end.
86
87 Hence, if we want that OSPF worked or traceroute said something reasonable,
88 we should search for another solution.
89
90 One of them is to parse packet trying to detect inner encapsulation
91 made by our node. It is difficult or even impossible, especially,
bff52857 92 taking into account fragmentation. TO be short, ttl is not solution at all.
1da177e4
LT		 93
94 Current solution: The solution was UNEXPECTEDLY SIMPLE.
95 We force DF flag on tunnels with preconfigured hop limit,
96 that is ALL. :-) Well, it does not remove the problem completely,
97 but exponential growth of network traffic is changed to linear
98 (branches, that exceed pmtu are pruned) and tunnel mtu
bff52857 99 rapidly degrades to value <68, where looping stops.
1da177e4
LT		 100 Yes, it is not good if there exists a router in the loop,
101 which does not force DF, even when encapsulating packets have DF set.
102 But it is not our problem! Nobody could accuse us, we made
103 all that we could make. Even if it is your gated who injected
104 fatal route to network, even if it were you who configured
105 fatal static route: you are innocent. :-)
106
1da177e4
LT		 107 Alexey Kuznetsov.
108 */
109
eccc1bb8 110static bool log_ecn_error = true;
111module_param(log_ecn_error, bool, 0644);
112MODULE_PARM_DESC(log_ecn_error, "Log packets received with corrupted ECN");
113
c19e654d 114static struct rtnl_link_ops ipgre_link_ops __read_mostly;
1da177e4 115static int ipgre_tunnel_init(struct net_device *dev);
1a66a836 116static void erspan_build_header(struct sk_buff *skb,
a3222dc9
WT		 117 __be32 id, u32 index,
118 bool truncate, bool is_ipv4);
eb8ce741 119
c7d03a00
AD		 120static unsigned int ipgre_net_id __read_mostly;
121static unsigned int gre_tap_net_id __read_mostly;
84e54fe0 122static unsigned int erspan_net_id __read_mostly;
1da177e4 123
9f57c67c
PS		 124static void ipgre_err(struct sk_buff *skb, u32 info,
125 const struct tnl_ptk_info *tpi)
1da177e4 126{
1da177e4 127
c5441932
PS		 128 /* All the routers (except for Linux) return only
129 8 bytes of packet payload. It means, that precise relaying of
130 ICMP in the real Internet is absolutely infeasible.
1da177e4 131
c5441932
PS		 132 Moreover, Cisco "wise men" put GRE key to the third word
133 in GRE header. It makes impossible maintaining even soft
134 state for keyed GRE tunnels with enabled checksum. Tell
135 them "thank you".
1da177e4 136
c5441932
PS		 137 Well, I wonder, rfc1812 was written by Cisco employee,
138 what the hell these idiots break standards established
139 by themselves???
140 */
141 struct net *net = dev_net(skb->dev);
142 struct ip_tunnel_net *itn;
96f5a846 143 const struct iphdr *iph;
88c7664f
ACM		 144 const int type = icmp_hdr(skb)->type;
145 const int code = icmp_hdr(skb)->code;
20e1954f 146 unsigned int data_len = 0;
1da177e4 147 struct ip_tunnel *t;
1da177e4 148
1da177e4
LT		 149 switch (type) {
150 default:
151 case ICMP_PARAMETERPROB:
9f57c67c 152 return;
1da177e4
LT		 153
154 case ICMP_DEST_UNREACH:
155 switch (code) {
156 case ICMP_SR_FAILED:
157 case ICMP_PORT_UNREACH:
158 /* Impossible event. */
9f57c67c 159 return;
1da177e4
LT		 160 default:
161 /* All others are translated to HOST_UNREACH.
162 rfc2003 contains "deep thoughts" about NET_UNREACH,
163 I believe they are just ether pollution. --ANK
164 */
165 break;
166 }
167 break;
9f57c67c 168
1da177e4
LT		 169 case ICMP_TIME_EXCEEDED:
170 if (code != ICMP_EXC_TTL)
9f57c67c 171 return;
20e1954f 172 data_len = icmp_hdr(skb)->un.reserved[1] * 4; /* RFC 4884 4.1 */
1da177e4 173 break;
55be7a9c
DM		 174
175 case ICMP_REDIRECT:
176 break;
1da177e4
LT		 177 }
178
bda7bb46 179 if (tpi->proto == htons(ETH_P_TEB))
c5441932
PS		 180 itn = net_generic(net, gre_tap_net_id);
181 else
182 itn = net_generic(net, ipgre_net_id);
183
c0c0c50f 184 iph = (const struct iphdr *)(icmp_hdr(skb) + 1);
bda7bb46
PS		 185 t = ip_tunnel_lookup(itn, skb->dev->ifindex, tpi->flags,
186 iph->daddr, iph->saddr, tpi->key);
d2083287 187
51456b29 188 if (!t)
9f57c67c 189 return;
36393395 190
9b8c6d7b
ED		 191#if IS_ENABLED(CONFIG_IPV6)
192 if (tpi->proto == htons(ETH_P_IPV6) &&
20e1954f
ED		 193 !ip6_err_gen_icmpv6_unreach(skb, iph->ihl * 4 + tpi->hdr_len,
194 type, data_len))
9b8c6d7b
ED		 195 return;
196#endif
197
36393395 198 if (t->parms.iph.daddr == 0 ||
f97c1e0c 199 ipv4_is_multicast(t->parms.iph.daddr))
9f57c67c 200 return;
1da177e4
LT		 201
202 if (t->parms.iph.ttl == 0 && type == ICMP_TIME_EXCEEDED)
9f57c67c 203 return;
1da177e4 204
da6185d8 205 if (time_before(jiffies, t->err_time + IPTUNNEL_ERR_TIMEO))
1da177e4
LT		 206 t->err_count++;
207 else
208 t->err_count = 1;
209 t->err_time = jiffies;
9f57c67c
PS		 210}
211
212static void gre_err(struct sk_buff *skb, u32 info)
213{
214 /* All the routers (except for Linux) return only
215 * 8 bytes of packet payload. It means, that precise relaying of
216 * ICMP in the real Internet is absolutely infeasible.
217 *
218 * Moreover, Cisco "wise men" put GRE key to the third word
219 * in GRE header. It makes impossible maintaining even soft
220 * state for keyed
221 * GRE tunnels with enabled checksum. Tell them "thank you".
222 *
223 * Well, I wonder, rfc1812 was written by Cisco employee,
224 * what the hell these idiots break standards established
225 * by themselves???
226 */
227
e582615a 228 const struct iphdr *iph = (struct iphdr *)skb->data;
9f57c67c
PS		 229 const int type = icmp_hdr(skb)->type;
230 const int code = icmp_hdr(skb)->code;
231 struct tnl_ptk_info tpi;
232 bool csum_err = false;
233
e582615a
ED		 234 if (gre_parse_header(skb, &tpi, &csum_err, htons(ETH_P_IP),
235 iph->ihl * 4) < 0) {
9f57c67c
PS		 236 if (!csum_err) /* ignore csum errors. */
237 return;
238 }
239
240 if (type == ICMP_DEST_UNREACH && code == ICMP_FRAG_NEEDED) {
241 ipv4_update_pmtu(skb, dev_net(skb->dev), info,
242 skb->dev->ifindex, 0, IPPROTO_GRE, 0);
243 return;
244 }
245 if (type == ICMP_REDIRECT) {
246 ipv4_redirect(skb, dev_net(skb->dev), skb->dev->ifindex, 0,
247 IPPROTO_GRE, 0);
248 return;
249 }
250
251 ipgre_err(skb, info, &tpi);
1da177e4
LT		 252}
253
84e54fe0
WT		 254static int erspan_rcv(struct sk_buff *skb, struct tnl_ptk_info *tpi,
255 int gre_hdr_len)
256{
257 struct net *net = dev_net(skb->dev);
258 struct metadata_dst *tun_dst = NULL;
1d7e2ed2
WT		 259 struct erspan_base_hdr *ershdr;
260 struct erspan_metadata *pkt_md;
84e54fe0
WT		 261 struct ip_tunnel_net *itn;
262 struct ip_tunnel *tunnel;
84e54fe0 263 const struct iphdr *iph;
1d7e2ed2 264 int ver;
84e54fe0
WT		 265 int len;
266
267 itn = net_generic(net, erspan_net_id);
84e54fe0
WT		 268 len = gre_hdr_len + sizeof(*ershdr);
269
1d7e2ed2 270 /* Check based hdr len */
84e54fe0 271 if (unlikely(!pskb_may_pull(skb, len)))
c05fad57 272 return PACKET_REJECT;
84e54fe0
WT		 273
274 iph = ip_hdr(skb);
1d7e2ed2
WT		 275 ershdr = (struct erspan_base_hdr *)(skb->data + gre_hdr_len);
276 ver = (ntohs(ershdr->ver_vlan) & VER_MASK) >> VER_OFFSET;
84e54fe0
WT		 277
278 /* The original GRE header does not have key field,
279 * Use ERSPAN 10-bit session ID as key.
280 */
935a9749 281 tpi->key = cpu_to_be32(ntohs(ershdr->session_id) & ID_MASK);
84e54fe0
WT		 282 tunnel = ip_tunnel_lookup(itn, skb->dev->ifindex,
283 tpi->flags | TUNNEL_KEY,
284 iph->saddr, iph->daddr, tpi->key);
285
286 if (tunnel) {
1d7e2ed2
WT		 287 len = gre_hdr_len + erspan_hdr_len(ver);
288 if (unlikely(!pskb_may_pull(skb, len)))
ae3e1337 289 return PACKET_REJECT;
1d7e2ed2 290
d91e8db5
WT		 291 ershdr = (struct erspan_base_hdr *)(skb->data + gre_hdr_len);
292 pkt_md = (struct erspan_metadata *)(ershdr + 1);
293
84e54fe0 294 if (__iptunnel_pull_header(skb,
1d7e2ed2 295 len,
84e54fe0
WT		 296 htons(ETH_P_TEB),
297 false, false) < 0)
298 goto drop;
299
1a66a836
WT		 300 if (tunnel->collect_md) {
301 struct ip_tunnel_info *info;
302 struct erspan_metadata *md;
303 __be64 tun_id;
304 __be16 flags;
305
306 tpi->flags |= TUNNEL_KEY;
307 flags = tpi->flags;
308 tun_id = key32_to_tunnel_id(tpi->key);
309
310 tun_dst = ip_tun_rx_dst(skb, flags,
311 tun_id, sizeof(*md));
312 if (!tun_dst)
313 return PACKET_REJECT;
314
315 md = ip_tunnel_info_opts(&tun_dst->u.tun_info);
1d7e2ed2 316 memcpy(md, pkt_md, sizeof(*md));
f551c91d
WT		 317 md->version = ver;
318
1a66a836
WT		 319 info = &tun_dst->u.tun_info;
320 info->key.tun_flags |= TUNNEL_ERSPAN_OPT;
321 info->options_len = sizeof(*md);
322 } else {
f551c91d
WT		 323 tunnel->erspan_ver = ver;
324 if (ver == 1) {
325 tunnel->index = ntohl(pkt_md->u.index);
326 } else {
327 u16 md2_flags;
328 u16 dir, hwid;
329
330 md2_flags = ntohs(pkt_md->u.md2.flags);
331 dir = (md2_flags & DIR_MASK) >> DIR_OFFSET;
332 hwid = (md2_flags & HWID_MASK) >> HWID_OFFSET;
333 tunnel->dir = dir;
334 tunnel->hwid = hwid;
335 }
336
1a66a836
WT		 337 }
338
84e54fe0
WT		 339 skb_reset_mac_header(skb);
340 ip_tunnel_rcv(tunnel, skb, tpi, tun_dst, log_ecn_error);
341 return PACKET_RCVD;
342 }
343drop:
344 kfree_skb(skb);
345 return PACKET_RCVD;
346}
347
125372fa
JB		 348static int __ipgre_rcv(struct sk_buff *skb, const struct tnl_ptk_info *tpi,
349 struct ip_tunnel_net *itn, int hdr_len, bool raw_proto)
1da177e4 350{
2e15ea39 351 struct metadata_dst *tun_dst = NULL;
b71d1d42 352 const struct iphdr *iph;
1da177e4 353 struct ip_tunnel *tunnel;
1da177e4 354
c5441932 355 iph = ip_hdr(skb);
bda7bb46
PS		 356 tunnel = ip_tunnel_lookup(itn, skb->dev->ifindex, tpi->flags,
357 iph->saddr, iph->daddr, tpi->key);
e1a80002 358
d2083287 359 if (tunnel) {
125372fa
JB		 360 if (__iptunnel_pull_header(skb, hdr_len, tpi->proto,
361 raw_proto, false) < 0)
244a797b
JB		 362 goto drop;
363
e271c7b4
JB		 364 if (tunnel->dev->type != ARPHRD_NONE)
365 skb_pop_mac_header(skb);
366 else
367 skb_reset_mac_header(skb);
2e15ea39 368 if (tunnel->collect_md) {
c29a70d2
PS		 369 __be16 flags;
370 __be64 tun_id;
2e15ea39 371
c29a70d2 372 flags = tpi->flags & (TUNNEL_CSUM | TUNNEL_KEY);
d817f432 373 tun_id = key32_to_tunnel_id(tpi->key);
c29a70d2 374 tun_dst = ip_tun_rx_dst(skb, flags, tun_id, 0);
2e15ea39
PS		 375 if (!tun_dst)
376 return PACKET_REJECT;
2e15ea39
PS		 377 }
378
379 ip_tunnel_rcv(tunnel, skb, tpi, tun_dst, log_ecn_error);
bda7bb46 380 return PACKET_RCVD;
1da177e4 381 }
125372fa 382 return PACKET_NEXT;
244a797b
JB		 383
384drop:
385 kfree_skb(skb);
386 return PACKET_RCVD;
1da177e4
LT		 387}
388
125372fa
JB		 389static int ipgre_rcv(struct sk_buff *skb, const struct tnl_ptk_info *tpi,
390 int hdr_len)
391{
392 struct net *net = dev_net(skb->dev);
393 struct ip_tunnel_net *itn;
394 int res;
395
396 if (tpi->proto == htons(ETH_P_TEB))
397 itn = net_generic(net, gre_tap_net_id);
398 else
399 itn = net_generic(net, ipgre_net_id);
400
401 res = __ipgre_rcv(skb, tpi, itn, hdr_len, false);
402 if (res == PACKET_NEXT && tpi->proto == htons(ETH_P_TEB)) {
403 /* ipgre tunnels in collect metadata mode should receive
404 * also ETH_P_TEB traffic.
405 */
406 itn = net_generic(net, ipgre_net_id);
407 res = __ipgre_rcv(skb, tpi, itn, hdr_len, true);
408 }
409 return res;
410}
411
9f57c67c
PS		 412static int gre_rcv(struct sk_buff *skb)
413{
414 struct tnl_ptk_info tpi;
415 bool csum_err = false;
95f5c64c 416 int hdr_len;
9f57c67c
PS		 417
418#ifdef CONFIG_NET_IPGRE_BROADCAST
419 if (ipv4_is_multicast(ip_hdr(skb)->daddr)) {
420 /* Looped back packet, drop it! */
421 if (rt_is_output_route(skb_rtable(skb)))
422 goto drop;
423 }
424#endif
425
e582615a 426 hdr_len = gre_parse_header(skb, &tpi, &csum_err, htons(ETH_P_IP), 0);
f132ae7c 427 if (hdr_len < 0)
95f5c64c
TH		 428 goto drop;
429
f551c91d
WT		 430 if (unlikely(tpi.proto == htons(ETH_P_ERSPAN) ||
431 tpi.proto == htons(ETH_P_ERSPAN2))) {
84e54fe0
WT		 432 if (erspan_rcv(skb, &tpi, hdr_len) == PACKET_RCVD)
433 return 0;
dd8d5b8c 434 goto out;
84e54fe0
WT		 435 }
436
244a797b 437 if (ipgre_rcv(skb, &tpi, hdr_len) == PACKET_RCVD)
9f57c67c
PS		 438 return 0;
439
dd8d5b8c 440out:
9f57c67c
PS		 441 icmp_send(skb, ICMP_DEST_UNREACH, ICMP_PORT_UNREACH, 0);
442drop:
443 kfree_skb(skb);
444 return 0;
445}
446
c5441932
PS		 447static void __gre_xmit(struct sk_buff *skb, struct net_device *dev,
448 const struct iphdr *tnl_params,
449 __be16 proto)
450{
451 struct ip_tunnel *tunnel = netdev_priv(dev);
1da177e4 452
c5441932
PS		 453 if (tunnel->parms.o_flags & TUNNEL_SEQ)
454 tunnel->o_seqno++;
1da177e4 455
c5441932 456 /* Push GRE header. */
182a352d
TH		 457 gre_build_header(skb, tunnel->tun_hlen,
458 tunnel->parms.o_flags, proto, tunnel->parms.o_key,
459 htonl(tunnel->o_seqno));
54bc9bac 460
bf3d6a8f 461 ip_tunnel_xmit(skb, dev, tnl_params, tnl_params->protocol);
c5441932 462}
1da177e4 463
aed069df 464static int gre_handle_offloads(struct sk_buff *skb, bool csum)
b2acd1dc 465{
6fa79666 466 return iptunnel_handle_offloads(skb, csum ? SKB_GSO_GRE_CSUM : SKB_GSO_GRE);
b2acd1dc
PS		 467}
468
fc4099f1
PS		 469static struct rtable *gre_get_rt(struct sk_buff *skb,
470 struct net_device *dev,
471 struct flowi4 *fl,
472 const struct ip_tunnel_key *key)
473{
474 struct net *net = dev_net(dev);
475
476 memset(fl, 0, sizeof(*fl));
477 fl->daddr = key->u.ipv4.dst;
478 fl->saddr = key->u.ipv4.src;
479 fl->flowi4_tos = RT_TOS(key->tos);
480 fl->flowi4_mark = skb->mark;
481 fl->flowi4_proto = IPPROTO_GRE;
482
483 return ip_route_output_key(net, fl);
484}
485
862a03c3
WT		 486static struct rtable *prepare_fb_xmit(struct sk_buff *skb,
487 struct net_device *dev,
488 struct flowi4 *fl,
489 int tunnel_hlen)
2e15ea39
PS		 490{
491 struct ip_tunnel_info *tun_info;
2e15ea39 492 const struct ip_tunnel_key *key;
db3c6139 493 struct rtable *rt = NULL;
2e15ea39 494 int min_headroom;
db3c6139 495 bool use_cache;
2e15ea39
PS		 496 int err;
497
61adedf3 498 tun_info = skb_tunnel_info(skb);
2e15ea39 499 key = &tun_info->key;
db3c6139 500 use_cache = ip_tunnel_dst_cache_usable(skb, tun_info);
862a03c3 501
db3c6139 502 if (use_cache)
862a03c3 503 rt = dst_cache_get_ip4(&tun_info->dst_cache, &fl->saddr);
3c1cb4d2 504 if (!rt) {
862a03c3 505 rt = gre_get_rt(skb, dev, fl, key);
3c1cb4d2 506 if (IS_ERR(rt))
862a03c3 507 goto err_free_skb;
db3c6139 508 if (use_cache)
3c1cb4d2 509 dst_cache_set_ip4(&tun_info->dst_cache, &rt->dst,
862a03c3 510 fl->saddr);
3c1cb4d2 511 }
2e15ea39 512
2e15ea39
PS		 513 min_headroom = LL_RESERVED_SPACE(rt->dst.dev) + rt->dst.header_len
514 + tunnel_hlen + sizeof(struct iphdr);
515 if (skb_headroom(skb) < min_headroom || skb_header_cloned(skb)) {
516 int head_delta = SKB_DATA_ALIGN(min_headroom -
517 skb_headroom(skb) +
518 16);
519 err = pskb_expand_head(skb, max_t(int, head_delta, 0),
520 0, GFP_ATOMIC);
521 if (unlikely(err))
522 goto err_free_rt;
523 }
862a03c3
WT		 524 return rt;
525
526err_free_rt:
527 ip_rt_put(rt);
528err_free_skb:
529 kfree_skb(skb);
530 dev->stats.tx_dropped++;
531 return NULL;
532}
533
534static void gre_fb_xmit(struct sk_buff *skb, struct net_device *dev,
535 __be16 proto)
536{
537 struct ip_tunnel_info *tun_info;
538 const struct ip_tunnel_key *key;
539 struct rtable *rt = NULL;
540 struct flowi4 fl;
541 int tunnel_hlen;
542 __be16 df, flags;
543
544 tun_info = skb_tunnel_info(skb);
545 if (unlikely(!tun_info || !(tun_info->mode & IP_TUNNEL_INFO_TX) ||
546 ip_tunnel_info_af(tun_info) != AF_INET))
547 goto err_free_skb;
548
549 key = &tun_info->key;
550 tunnel_hlen = gre_calc_hlen(key->tun_flags);
551
552 rt = prepare_fb_xmit(skb, dev, &fl, tunnel_hlen);
553 if (!rt)
554 return;
2e15ea39
PS		 555
556 /* Push Tunnel header. */
aed069df 557 if (gre_handle_offloads(skb, !!(tun_info->key.tun_flags & TUNNEL_CSUM)))
2e15ea39 558 goto err_free_rt;
2e15ea39
PS		 559
560 flags = tun_info->key.tun_flags & (TUNNEL_CSUM | TUNNEL_KEY);
cba65321 561 gre_build_header(skb, tunnel_hlen, flags, proto,
d817f432 562 tunnel_id_to_key32(tun_info->key.tun_id), 0);
2e15ea39
PS		 563
564 df = key->tun_flags & TUNNEL_DONT_FRAGMENT ? htons(IP_DF) : 0;
039f5062
PS		 565
566 iptunnel_xmit(skb->sk, rt, skb, fl.saddr, key->u.ipv4.dst, IPPROTO_GRE,
567 key->tos, key->ttl, df, false);
2e15ea39
PS		 568 return;
569
570err_free_rt:
571 ip_rt_put(rt);
572err_free_skb:
573 kfree_skb(skb);
574 dev->stats.tx_dropped++;
575}
576
1a66a836
WT		 577static void erspan_fb_xmit(struct sk_buff *skb, struct net_device *dev,
578 __be16 proto)
579{
580 struct ip_tunnel *tunnel = netdev_priv(dev);
581 struct ip_tunnel_info *tun_info;
582 const struct ip_tunnel_key *key;
583 struct erspan_metadata *md;
584 struct rtable *rt = NULL;
585 bool truncate = false;
586 struct flowi4 fl;
587 int tunnel_hlen;
f551c91d 588 int version;
1a66a836
WT		 589 __be16 df;
590
591 tun_info = skb_tunnel_info(skb);
592 if (unlikely(!tun_info || !(tun_info->mode & IP_TUNNEL_INFO_TX) ||
593 ip_tunnel_info_af(tun_info) != AF_INET))
594 goto err_free_skb;
595
596 key = &tun_info->key;
f551c91d
WT		 597 md = ip_tunnel_info_opts(tun_info);
598 if (!md)
599 goto err_free_rt;
1a66a836
WT		 600
601 /* ERSPAN has fixed 8 byte GRE header */
f551c91d
WT		 602 version = md->version;
603 tunnel_hlen = 8 + erspan_hdr_len(version);
1a66a836
WT		 604
605 rt = prepare_fb_xmit(skb, dev, &fl, tunnel_hlen);
606 if (!rt)
607 return;
608
609 if (gre_handle_offloads(skb, false))
610 goto err_free_rt;
611
f192970d
WT		 612 if (skb->len > dev->mtu + dev->hard_header_len) {
613 pskb_trim(skb, dev->mtu + dev->hard_header_len);
1a66a836
WT		 614 truncate = true;
615 }
616
f551c91d
WT		 617 if (version == 1) {
618 erspan_build_header(skb, tunnel_id_to_key32(key->tun_id),
619 ntohl(md->u.index), truncate, true);
620 } else if (version == 2) {
621 u16 md2_flags;
622 u8 direction;
623 u16 hwid;
1a66a836 624
f551c91d
WT		 625 md2_flags = ntohs(md->u.md2.flags);
626 direction = (md2_flags & DIR_MASK) >> DIR_OFFSET;
627 hwid = (md2_flags & HWID_MASK) >> HWID_OFFSET;
628
629 erspan_build_header_v2(skb, tunnel_id_to_key32(key->tun_id),
630 direction, hwid, truncate, true);
631 } else {
632 goto err_free_rt;
633 }
1a66a836
WT		 634
635 gre_build_header(skb, 8, TUNNEL_SEQ,
636 htons(ETH_P_ERSPAN), 0, htonl(tunnel->o_seqno++));
637
638 df = key->tun_flags & TUNNEL_DONT_FRAGMENT ? htons(IP_DF) : 0;
639
640 iptunnel_xmit(skb->sk, rt, skb, fl.saddr, key->u.ipv4.dst, IPPROTO_GRE,
641 key->tos, key->ttl, df, false);
642 return;
643
644err_free_rt:
645 ip_rt_put(rt);
646err_free_skb:
647 kfree_skb(skb);
648 dev->stats.tx_dropped++;
649}
650
fc4099f1
PS		 651static int gre_fill_metadata_dst(struct net_device *dev, struct sk_buff *skb)
652{
653 struct ip_tunnel_info *info = skb_tunnel_info(skb);
654 struct rtable *rt;
655 struct flowi4 fl4;
656
657 if (ip_tunnel_info_af(info) != AF_INET)
658 return -EINVAL;
659
660 rt = gre_get_rt(skb, dev, &fl4, &info->key);
661 if (IS_ERR(rt))
662 return PTR_ERR(rt);
663
664 ip_rt_put(rt);
665 info->key.u.ipv4.src = fl4.saddr;
666 return 0;
667}
668
c5441932
PS		 669static netdev_tx_t ipgre_xmit(struct sk_buff *skb,
670 struct net_device *dev)
671{
672 struct ip_tunnel *tunnel = netdev_priv(dev);
673 const struct iphdr *tnl_params;
1da177e4 674
2e15ea39 675 if (tunnel->collect_md) {
2090714e 676 gre_fb_xmit(skb, dev, skb->protocol);
2e15ea39
PS		 677 return NETDEV_TX_OK;
678 }
679
c5441932
PS		 680 if (dev->header_ops) {
681 /* Need space for new headers */
682 if (skb_cow_head(skb, dev->needed_headroom -
2bac7cb3 683 (tunnel->hlen + sizeof(struct iphdr))))
c5441932 684 goto free_skb;
1da177e4 685
c5441932 686 tnl_params = (const struct iphdr *)skb->data;
1da177e4 687
c5441932
PS		 688 /* Pull skb since ip_tunnel_xmit() needs skb->data pointing
689 * to gre header.
690 */
691 skb_pull(skb, tunnel->hlen + sizeof(struct iphdr));
8a0033a9 692 skb_reset_mac_header(skb);
c5441932
PS		 693 } else {
694 if (skb_cow_head(skb, dev->needed_headroom))
695 goto free_skb;
1da177e4 696
c5441932 697 tnl_params = &tunnel->parms.iph;
1da177e4
LT		 698 }
699
aed069df
AD		 700 if (gre_handle_offloads(skb, !!(tunnel->parms.o_flags & TUNNEL_CSUM)))
701 goto free_skb;
8a0033a9 702
c5441932 703 __gre_xmit(skb, dev, tnl_params, skb->protocol);
6ed10654 704 return NETDEV_TX_OK;
1da177e4 705
c5441932 706free_skb:
3acfa1e7 707 kfree_skb(skb);
c5441932 708 dev->stats.tx_dropped++;
6ed10654 709 return NETDEV_TX_OK;
1da177e4
LT		 710}
711
84e54fe0
WT		 712static netdev_tx_t erspan_xmit(struct sk_buff *skb,
713 struct net_device *dev)
714{
715 struct ip_tunnel *tunnel = netdev_priv(dev);
716 bool truncate = false;
717
1a66a836
WT		 718 if (tunnel->collect_md) {
719 erspan_fb_xmit(skb, dev, skb->protocol);
720 return NETDEV_TX_OK;
721 }
722
84e54fe0
WT		 723 if (gre_handle_offloads(skb, false))
724 goto free_skb;
725
726 if (skb_cow_head(skb, dev->needed_headroom))
727 goto free_skb;
728
f192970d
WT		 729 if (skb->len > dev->mtu + dev->hard_header_len) {
730 pskb_trim(skb, dev->mtu + dev->hard_header_len);
84e54fe0
WT		 731 truncate = true;
732 }
733
734 /* Push ERSPAN header */
f551c91d
WT		 735 if (tunnel->erspan_ver == 1)
736 erspan_build_header(skb, tunnel->parms.o_key, tunnel->index,
737 truncate, true);
738 else
739 erspan_build_header_v2(skb, tunnel->parms.o_key,
740 tunnel->dir, tunnel->hwid,
741 truncate, true);
742
84e54fe0
WT		 743 tunnel->parms.o_flags &= ~TUNNEL_KEY;
744 __gre_xmit(skb, dev, &tunnel->parms.iph, htons(ETH_P_ERSPAN));
745 return NETDEV_TX_OK;
746
747free_skb:
748 kfree_skb(skb);
749 dev->stats.tx_dropped++;
750 return NETDEV_TX_OK;
751}
752
c5441932
PS		 753static netdev_tx_t gre_tap_xmit(struct sk_buff *skb,
754 struct net_device *dev)
ee34c1eb 755{
c5441932 756 struct ip_tunnel *tunnel = netdev_priv(dev);
ee34c1eb 757
2e15ea39 758 if (tunnel->collect_md) {
2090714e 759 gre_fb_xmit(skb, dev, htons(ETH_P_TEB));
2e15ea39
PS		 760 return NETDEV_TX_OK;
761 }
762
aed069df
AD		 763 if (gre_handle_offloads(skb, !!(tunnel->parms.o_flags & TUNNEL_CSUM)))
764 goto free_skb;
ee34c1eb 765
c5441932
PS		 766 if (skb_cow_head(skb, dev->needed_headroom))
767 goto free_skb;
42aa9162 768
c5441932 769 __gre_xmit(skb, dev, &tunnel->parms.iph, htons(ETH_P_TEB));
c5441932 770 return NETDEV_TX_OK;
ee34c1eb 771
c5441932 772free_skb:
3acfa1e7 773 kfree_skb(skb);
c5441932
PS		 774 dev->stats.tx_dropped++;
775 return NETDEV_TX_OK;
ee34c1eb
MS		 776}
777
dd9d598c
XL		 778static void ipgre_link_update(struct net_device *dev, bool set_mtu)
779{
780 struct ip_tunnel *tunnel = netdev_priv(dev);
781 int len;
782
783 len = tunnel->tun_hlen;
784 tunnel->tun_hlen = gre_calc_hlen(tunnel->parms.o_flags);
785 len = tunnel->tun_hlen - len;
786 tunnel->hlen = tunnel->hlen + len;
787
788 dev->needed_headroom = dev->needed_headroom + len;
789 if (set_mtu)
790 dev->mtu = max_t(int, dev->mtu - len, 68);
791
792 if (!(tunnel->parms.o_flags & TUNNEL_SEQ)) {
793 if (!(tunnel->parms.o_flags & TUNNEL_CSUM) ||
794 tunnel->encap.type == TUNNEL_ENCAP_NONE) {
795 dev->features |= NETIF_F_GSO_SOFTWARE;
796 dev->hw_features |= NETIF_F_GSO_SOFTWARE;
797 }
798 dev->features |= NETIF_F_LLTX;
799 }
800}
801
c5441932
PS		 802static int ipgre_tunnel_ioctl(struct net_device *dev,
803 struct ifreq *ifr, int cmd)
1da177e4 804{
1da177e4 805 struct ip_tunnel_parm p;
a0efab67 806 int err;
1da177e4 807
c5441932
PS		 808 if (copy_from_user(&p, ifr->ifr_ifru.ifru_data, sizeof(p)))
809 return -EFAULT;
a0efab67 810
6c734fb8
CW		 811 if (cmd == SIOCADDTUNNEL || cmd == SIOCCHGTUNNEL) {
812 if (p.iph.version != 4 || p.iph.protocol != IPPROTO_GRE ||
a0efab67
XL		 813 p.iph.ihl != 5 || (p.iph.frag_off & htons(~IP_DF)) ||
814 ((p.i_flags | p.o_flags) & (GRE_VERSION | GRE_ROUTING)))
6c734fb8 815 return -EINVAL;
1da177e4 816 }
a0efab67 817
c5441932
PS		 818 p.i_flags = gre_flags_to_tnl_flags(p.i_flags);
819 p.o_flags = gre_flags_to_tnl_flags(p.o_flags);
1da177e4 820
c5441932
PS		 821 err = ip_tunnel_ioctl(dev, &p, cmd);
822 if (err)
823 return err;
1da177e4 824
a0efab67
XL		 825 if (cmd == SIOCCHGTUNNEL) {
826 struct ip_tunnel *t = netdev_priv(dev);
827
828 t->parms.i_flags = p.i_flags;
829 t->parms.o_flags = p.o_flags;
830
831 if (strcmp(dev->rtnl_link_ops->kind, "erspan"))
832 ipgre_link_update(dev, true);
833 }
834
95f5c64c
TH		 835 p.i_flags = gre_tnl_flags_to_gre_flags(p.i_flags);
836 p.o_flags = gre_tnl_flags_to_gre_flags(p.o_flags);
c5441932
PS		 837
838 if (copy_to_user(ifr->ifr_ifru.ifru_data, &p, sizeof(p)))
839 return -EFAULT;
a0efab67 840
1da177e4
LT		 841 return 0;
842}
843
1da177e4
LT		 844/* Nice toy. Unfortunately, useless in real life :-)
845 It allows to construct virtual multiprotocol broadcast "LAN"
846 over the Internet, provided multicast routing is tuned.
847
848
849 I have no idea was this bicycle invented before me,
850 so that I had to set ARPHRD_IPGRE to a random value.
851 I have an impression, that Cisco could make something similar,
852 but this feature is apparently missing in IOS<=11.2(8).
e905a9ed 853
1da177e4
LT		 854 I set up 10.66.66/24 and fec0:6666:6666::0/96 as virtual networks
855 with broadcast 224.66.66.66. If you have access to mbone, play with me :-)
856
857 ping -t 255 224.66.66.66
858
859 If nobody answers, mbone does not work.
860
861 ip tunnel add Universe mode gre remote 224.66.66.66 local <Your_real_addr> ttl 255
862 ip addr add 10.66.66.<somewhat>/24 dev Universe
863 ifconfig Universe up
864 ifconfig Universe add fe80::<Your_real_addr>/10
865 ifconfig Universe add fec0:6666:6666::<Your_real_addr>/96
866 ftp 10.66.66.66
867 ...
868 ftp fec0:6666:6666::193.233.7.65
869 ...
1da177e4 870 */
3b04ddde
SH		 871static int ipgre_header(struct sk_buff *skb, struct net_device *dev,
872 unsigned short type,
1507850b 873 const void *daddr, const void *saddr, unsigned int len)
1da177e4 874{
2941a486 875 struct ip_tunnel *t = netdev_priv(dev);
c5441932
PS		 876 struct iphdr *iph;
877 struct gre_base_hdr *greh;
1da177e4 878
d58ff351 879 iph = skb_push(skb, t->hlen + sizeof(*iph));
c5441932 880 greh = (struct gre_base_hdr *)(iph+1);
95f5c64c 881 greh->flags = gre_tnl_flags_to_gre_flags(t->parms.o_flags);
c5441932 882 greh->protocol = htons(type);
1da177e4 883
c5441932 884 memcpy(iph, &t->parms.iph, sizeof(struct iphdr));
e905a9ed 885
c5441932 886 /* Set the source hardware address. */
1da177e4
LT		 887 if (saddr)
888 memcpy(&iph->saddr, saddr, 4);
6d55cb91 889 if (daddr)
1da177e4 890 memcpy(&iph->daddr, daddr, 4);
6d55cb91 891 if (iph->daddr)
77a482bd 892 return t->hlen + sizeof(*iph);
e905a9ed 893
c5441932 894 return -(t->hlen + sizeof(*iph));
1da177e4
LT		 895}
896
6a5f44d7
TT		 897static int ipgre_header_parse(const struct sk_buff *skb, unsigned char *haddr)
898{
b71d1d42 899 const struct iphdr *iph = (const struct iphdr *) skb_mac_header(skb);
6a5f44d7
TT		 900 memcpy(haddr, &iph->saddr, 4);
901 return 4;
902}
903
3b04ddde
SH		 904static const struct header_ops ipgre_header_ops = {
905 .create = ipgre_header,
6a5f44d7 906 .parse = ipgre_header_parse,
3b04ddde
SH		 907};
908
6a5f44d7 909#ifdef CONFIG_NET_IPGRE_BROADCAST
1da177e4
LT		 910static int ipgre_open(struct net_device *dev)
911{
2941a486 912 struct ip_tunnel *t = netdev_priv(dev);
1da177e4 913
f97c1e0c 914 if (ipv4_is_multicast(t->parms.iph.daddr)) {
cbb1e85f
DM		 915 struct flowi4 fl4;
916 struct rtable *rt;
917
b57708ad 918 rt = ip_route_output_gre(t->net, &fl4,
cbb1e85f
DM		 919 t->parms.iph.daddr,
920 t->parms.iph.saddr,
921 t->parms.o_key,
922 RT_TOS(t->parms.iph.tos),
923 t->parms.link);
b23dd4fe 924 if (IS_ERR(rt))
1da177e4 925 return -EADDRNOTAVAIL;
d8d1f30b 926 dev = rt->dst.dev;
1da177e4 927 ip_rt_put(rt);
51456b29 928 if (!__in_dev_get_rtnl(dev))
1da177e4
LT		 929 return -EADDRNOTAVAIL;
930 t->mlink = dev->ifindex;
e5ed6399 931 ip_mc_inc_group(__in_dev_get_rtnl(dev), t->parms.iph.daddr);
1da177e4
LT		 932 }
933 return 0;
934}
935
936static int ipgre_close(struct net_device *dev)
937{
2941a486 938 struct ip_tunnel *t = netdev_priv(dev);
b8c26a33 939
f97c1e0c 940 if (ipv4_is_multicast(t->parms.iph.daddr) && t->mlink) {
7fee0ca2 941 struct in_device *in_dev;
b57708ad 942 in_dev = inetdev_by_index(t->net, t->mlink);
8723e1b4 943 if (in_dev)
1da177e4 944 ip_mc_dec_group(in_dev, t->parms.iph.daddr);
1da177e4
LT		 945 }
946 return 0;
947}
1da177e4
LT		 948#endif
949
b8c26a33
SH		 950static const struct net_device_ops ipgre_netdev_ops = {
951 .ndo_init = ipgre_tunnel_init,
c5441932 952 .ndo_uninit = ip_tunnel_uninit,
b8c26a33
SH		 953#ifdef CONFIG_NET_IPGRE_BROADCAST
954 .ndo_open = ipgre_open,
955 .ndo_stop = ipgre_close,
956#endif
c5441932 957 .ndo_start_xmit = ipgre_xmit,
b8c26a33 958 .ndo_do_ioctl = ipgre_tunnel_ioctl,
c5441932
PS		 959 .ndo_change_mtu = ip_tunnel_change_mtu,
960 .ndo_get_stats64 = ip_tunnel_get_stats64,
1e99584b 961 .ndo_get_iflink = ip_tunnel_get_iflink,
b8c26a33
SH		 962};
963
6b78f16e
ED		 964#define GRE_FEATURES (NETIF_F_SG | \
965 NETIF_F_FRAGLIST | \
966 NETIF_F_HIGHDMA | \
967 NETIF_F_HW_CSUM)
968
1da177e4
LT		 969static void ipgre_tunnel_setup(struct net_device *dev)
970{
b8c26a33 971 dev->netdev_ops = &ipgre_netdev_ops;
5a455275 972 dev->type = ARPHRD_IPGRE;
c5441932
PS		 973 ip_tunnel_setup(dev, ipgre_net_id);
974}
1da177e4 975
c5441932
PS		 976static void __gre_tunnel_init(struct net_device *dev)
977{
978 struct ip_tunnel *tunnel;
4565e991 979 int t_hlen;
c5441932
PS		 980
981 tunnel = netdev_priv(dev);
95f5c64c 982 tunnel->tun_hlen = gre_calc_hlen(tunnel->parms.o_flags);
c5441932
PS		 983 tunnel->parms.iph.protocol = IPPROTO_GRE;
984
4565e991
TH		 985 tunnel->hlen = tunnel->tun_hlen + tunnel->encap_hlen;
986
987 t_hlen = tunnel->hlen + sizeof(struct iphdr);
988
989 dev->needed_headroom = LL_MAX_HEADER + t_hlen + 4;
990 dev->mtu = ETH_DATA_LEN - t_hlen - 4;
6b78f16e 991
b57708ad 992 dev->features |= GRE_FEATURES;
6b78f16e 993 dev->hw_features |= GRE_FEATURES;
c5441932
PS		 994
995 if (!(tunnel->parms.o_flags & TUNNEL_SEQ)) {
a0ca153f
AD		 996 /* TCP offload with GRE SEQ is not supported, nor
997 * can we support 2 levels of outer headers requiring
998 * an update.
999 */
1000 if (!(tunnel->parms.o_flags & TUNNEL_CSUM) ||
1001 (tunnel->encap.type == TUNNEL_ENCAP_NONE)) {
1002 dev->features |= NETIF_F_GSO_SOFTWARE;
1003 dev->hw_features |= NETIF_F_GSO_SOFTWARE;
1004 }
1005
c5441932
PS		 1006 /* Can use a lockless transmit, unless we generate
1007 * output sequences
1008 */
1009 dev->features |= NETIF_F_LLTX;
1010 }
1da177e4
LT		 1011}
1012
1013static int ipgre_tunnel_init(struct net_device *dev)
1014{
c5441932
PS		 1015 struct ip_tunnel *tunnel = netdev_priv(dev);
1016 struct iphdr *iph = &tunnel->parms.iph;
1da177e4 1017
c5441932 1018 __gre_tunnel_init(dev);
1da177e4 1019
c5441932
PS		 1020 memcpy(dev->dev_addr, &iph->saddr, 4);
1021 memcpy(dev->broadcast, &iph->daddr, 4);
1da177e4 1022
c5441932 1023 dev->flags = IFF_NOARP;
02875878 1024 netif_keep_dst(dev);
c5441932 1025 dev->addr_len = 4;
1da177e4 1026
a64b04d8 1027 if (iph->daddr && !tunnel->collect_md) {
1da177e4 1028#ifdef CONFIG_NET_IPGRE_BROADCAST
f97c1e0c 1029 if (ipv4_is_multicast(iph->daddr)) {
1da177e4
LT		 1030 if (!iph->saddr)
1031 return -EINVAL;
1032 dev->flags = IFF_BROADCAST;
3b04ddde 1033 dev->header_ops = &ipgre_header_ops;
1da177e4
LT		 1034 }
1035#endif
a64b04d8 1036 } else if (!tunnel->collect_md) {
6a5f44d7 1037 dev->header_ops = &ipgre_header_ops;
a64b04d8 1038 }
1da177e4 1039
c5441932 1040 return ip_tunnel_init(dev);
1da177e4
LT		 1041}
1042
9f57c67c
PS		 1043static const struct gre_protocol ipgre_protocol = {
1044 .handler = gre_rcv,
1045 .err_handler = gre_err,
1da177e4
LT		 1046};
1047
2c8c1e72 1048static int __net_init ipgre_init_net(struct net *net)
59a4c759 1049{
c5441932 1050 return ip_tunnel_init_net(net, ipgre_net_id, &ipgre_link_ops, NULL);
59a4c759
PE		 1051}
1052
64bc1781 1053static void __net_exit ipgre_exit_batch_net(struct list_head *list_net)
59a4c759 1054{
64bc1781 1055 ip_tunnel_delete_nets(list_net, ipgre_net_id, &ipgre_link_ops);
59a4c759
PE		 1056}
1057
1058static struct pernet_operations ipgre_net_ops = {
1059 .init = ipgre_init_net,
64bc1781 1060 .exit_batch = ipgre_exit_batch_net,
cfb8fbf2 1061 .id = &ipgre_net_id,
c5441932 1062 .size = sizeof(struct ip_tunnel_net),
59a4c759 1063};
1da177e4 1064
a8b8a889
MS		 1065static int ipgre_tunnel_validate(struct nlattr *tb[], struct nlattr *data[],
1066 struct netlink_ext_ack *extack)
c19e654d
HX		 1067{
1068 __be16 flags;
1069
1070 if (!data)
1071 return 0;
1072
1073 flags = 0;
1074 if (data[IFLA_GRE_IFLAGS])
1075 flags |= nla_get_be16(data[IFLA_GRE_IFLAGS]);
1076 if (data[IFLA_GRE_OFLAGS])
1077 flags |= nla_get_be16(data[IFLA_GRE_OFLAGS]);
1078 if (flags & (GRE_VERSION|GRE_ROUTING))
1079 return -EINVAL;
1080
946b636f
JB		 1081 if (data[IFLA_GRE_COLLECT_METADATA] &&
1082 data[IFLA_GRE_ENCAP_TYPE] &&
1083 nla_get_u16(data[IFLA_GRE_ENCAP_TYPE]) != TUNNEL_ENCAP_NONE)
1084 return -EINVAL;
1085
c19e654d
HX		 1086 return 0;
1087}
1088
a8b8a889
MS		 1089static int ipgre_tap_validate(struct nlattr *tb[], struct nlattr *data[],
1090 struct netlink_ext_ack *extack)
e1a80002
HX		 1091{
1092 __be32 daddr;
1093
1094 if (tb[IFLA_ADDRESS]) {
1095 if (nla_len(tb[IFLA_ADDRESS]) != ETH_ALEN)
1096 return -EINVAL;
1097 if (!is_valid_ether_addr(nla_data(tb[IFLA_ADDRESS])))
1098 return -EADDRNOTAVAIL;
1099 }
1100
1101 if (!data)
1102 goto out;
1103
1104 if (data[IFLA_GRE_REMOTE]) {
1105 memcpy(&daddr, nla_data(data[IFLA_GRE_REMOTE]), 4);
1106 if (!daddr)
1107 return -EINVAL;
1108 }
1109
1110out:
a8b8a889 1111 return ipgre_tunnel_validate(tb, data, extack);
e1a80002
HX		 1112}
1113
84e54fe0
WT		 1114static int erspan_validate(struct nlattr *tb[], struct nlattr *data[],
1115 struct netlink_ext_ack *extack)
1116{
1117 __be16 flags = 0;
1118 int ret;
1119
1120 if (!data)
1121 return 0;
1122
1123 ret = ipgre_tap_validate(tb, data, extack);
1124 if (ret)
1125 return ret;
1126
1127 /* ERSPAN should only have GRE sequence and key flag */
1a66a836
WT		 1128 if (data[IFLA_GRE_OFLAGS])
1129 flags |= nla_get_be16(data[IFLA_GRE_OFLAGS]);
1130 if (data[IFLA_GRE_IFLAGS])
1131 flags |= nla_get_be16(data[IFLA_GRE_IFLAGS]);
1132 if (!data[IFLA_GRE_COLLECT_METADATA] &&
1133 flags != (GRE_SEQ | GRE_KEY))
84e54fe0
WT		 1134 return -EINVAL;
1135
1136 /* ERSPAN Session ID only has 10-bit. Since we reuse
1137 * 32-bit key field as ID, check it's range.
1138 */
1139 if (data[IFLA_GRE_IKEY] &&
1140 (ntohl(nla_get_be32(data[IFLA_GRE_IKEY])) & ~ID_MASK))
1141 return -EINVAL;
1142
1143 if (data[IFLA_GRE_OKEY] &&
1144 (ntohl(nla_get_be32(data[IFLA_GRE_OKEY])) & ~ID_MASK))
1145 return -EINVAL;
1146
1147 return 0;
1148}
1149
22a59be8 1150static int ipgre_netlink_parms(struct net_device *dev,
2e15ea39
PS		 1151 struct nlattr *data[],
1152 struct nlattr *tb[],
9830ad4c
CG		 1153 struct ip_tunnel_parm *parms,
1154 __u32 *fwmark)
c19e654d 1155{
22a59be8
PP		 1156 struct ip_tunnel *t = netdev_priv(dev);
1157
7bb82d92 1158 memset(parms, 0, sizeof(*parms));
c19e654d
HX		 1159
1160 parms->iph.protocol = IPPROTO_GRE;
1161
1162 if (!data)
22a59be8 1163 return 0;
c19e654d
HX		 1164
1165 if (data[IFLA_GRE_LINK])
1166 parms->link = nla_get_u32(data[IFLA_GRE_LINK]);
1167
1168 if (data[IFLA_GRE_IFLAGS])
c5441932 1169 parms->i_flags = gre_flags_to_tnl_flags(nla_get_be16(data[IFLA_GRE_IFLAGS]));
c19e654d
HX		 1170
1171 if (data[IFLA_GRE_OFLAGS])
c5441932 1172 parms->o_flags = gre_flags_to_tnl_flags(nla_get_be16(data[IFLA_GRE_OFLAGS]));
c19e654d
HX		 1173
1174 if (data[IFLA_GRE_IKEY])
1175 parms->i_key = nla_get_be32(data[IFLA_GRE_IKEY]);
1176
1177 if (data[IFLA_GRE_OKEY])
1178 parms->o_key = nla_get_be32(data[IFLA_GRE_OKEY]);
1179
1180 if (data[IFLA_GRE_LOCAL])
67b61f6c 1181 parms->iph.saddr = nla_get_in_addr(data[IFLA_GRE_LOCAL]);
c19e654d
HX		 1182
1183 if (data[IFLA_GRE_REMOTE])
67b61f6c 1184 parms->iph.daddr = nla_get_in_addr(data[IFLA_GRE_REMOTE]);
c19e654d
HX		 1185
1186 if (data[IFLA_GRE_TTL])
1187 parms->iph.ttl = nla_get_u8(data[IFLA_GRE_TTL]);
1188
1189 if (data[IFLA_GRE_TOS])
1190 parms->iph.tos = nla_get_u8(data[IFLA_GRE_TOS]);
1191
22a59be8
PP		 1192 if (!data[IFLA_GRE_PMTUDISC] || nla_get_u8(data[IFLA_GRE_PMTUDISC])) {
1193 if (t->ignore_df)
1194 return -EINVAL;
c19e654d 1195 parms->iph.frag_off = htons(IP_DF);
22a59be8 1196 }
2e15ea39
PS		 1197
1198 if (data[IFLA_GRE_COLLECT_METADATA]) {
2e15ea39 1199 t->collect_md = true;
e271c7b4
JB		 1200 if (dev->type == ARPHRD_IPGRE)
1201 dev->type = ARPHRD_NONE;
2e15ea39 1202 }
22a59be8
PP		 1203
1204 if (data[IFLA_GRE_IGNORE_DF]) {
1205 if (nla_get_u8(data[IFLA_GRE_IGNORE_DF])
1206 && (parms->iph.frag_off & htons(IP_DF)))
1207 return -EINVAL;
1208 t->ignore_df = !!nla_get_u8(data[IFLA_GRE_IGNORE_DF]);
1209 }
1210
9830ad4c
CG		 1211 if (data[IFLA_GRE_FWMARK])
1212 *fwmark = nla_get_u32(data[IFLA_GRE_FWMARK]);
1213
f551c91d
WT		 1214 if (data[IFLA_GRE_ERSPAN_VER]) {
1215 t->erspan_ver = nla_get_u8(data[IFLA_GRE_ERSPAN_VER]);
84e54fe0 1216
f551c91d 1217 if (t->erspan_ver != 1 && t->erspan_ver != 2)
84e54fe0
WT		 1218 return -EINVAL;
1219 }
1220
f551c91d
WT		 1221 if (t->erspan_ver == 1) {
1222 if (data[IFLA_GRE_ERSPAN_INDEX]) {
1223 t->index = nla_get_u32(data[IFLA_GRE_ERSPAN_INDEX]);
1224 if (t->index & ~INDEX_MASK)
1225 return -EINVAL;
1226 }
1227 } else if (t->erspan_ver == 2) {
1228 if (data[IFLA_GRE_ERSPAN_DIR]) {
1229 t->dir = nla_get_u8(data[IFLA_GRE_ERSPAN_DIR]);
1230 if (t->dir & ~(DIR_MASK >> DIR_OFFSET))
1231 return -EINVAL;
1232 }
1233 if (data[IFLA_GRE_ERSPAN_HWID]) {
1234 t->hwid = nla_get_u16(data[IFLA_GRE_ERSPAN_HWID]);
1235 if (t->hwid & ~(HWID_MASK >> HWID_OFFSET))
1236 return -EINVAL;
1237 }
1238 }
1239
22a59be8 1240 return 0;
c19e654d
HX		 1241}
1242
4565e991
TH		 1243/* This function returns true when ENCAP attributes are present in the nl msg */
1244static bool ipgre_netlink_encap_parms(struct nlattr *data[],
1245 struct ip_tunnel_encap *ipencap)
1246{
1247 bool ret = false;
1248
1249 memset(ipencap, 0, sizeof(*ipencap));
1250
1251 if (!data)
1252 return ret;
1253
1254 if (data[IFLA_GRE_ENCAP_TYPE]) {
1255 ret = true;
1256 ipencap->type = nla_get_u16(data[IFLA_GRE_ENCAP_TYPE]);
1257 }
1258
1259 if (data[IFLA_GRE_ENCAP_FLAGS]) {
1260 ret = true;
1261 ipencap->flags = nla_get_u16(data[IFLA_GRE_ENCAP_FLAGS]);
1262 }
1263
1264 if (data[IFLA_GRE_ENCAP_SPORT]) {
1265 ret = true;
3e97fa70 1266 ipencap->sport = nla_get_be16(data[IFLA_GRE_ENCAP_SPORT]);
4565e991
TH		 1267 }
1268
1269 if (data[IFLA_GRE_ENCAP_DPORT]) {
1270 ret = true;
3e97fa70 1271 ipencap->dport = nla_get_be16(data[IFLA_GRE_ENCAP_DPORT]);
4565e991
TH		 1272 }
1273
1274 return ret;
1275}
1276
c5441932 1277static int gre_tap_init(struct net_device *dev)
e1a80002 1278{
c5441932 1279 __gre_tunnel_init(dev);
bec94d43 1280 dev->priv_flags |= IFF_LIVE_ADDR_CHANGE;
d51711c0 1281 netif_keep_dst(dev);
e1a80002 1282
c5441932 1283 return ip_tunnel_init(dev);
e1a80002
HX		 1284}
1285
c5441932
PS		 1286static const struct net_device_ops gre_tap_netdev_ops = {
1287 .ndo_init = gre_tap_init,
1288 .ndo_uninit = ip_tunnel_uninit,
1289 .ndo_start_xmit = gre_tap_xmit,
b8c26a33
SH		 1290 .ndo_set_mac_address = eth_mac_addr,
1291 .ndo_validate_addr = eth_validate_addr,
c5441932
PS		 1292 .ndo_change_mtu = ip_tunnel_change_mtu,
1293 .ndo_get_stats64 = ip_tunnel_get_stats64,
1e99584b 1294 .ndo_get_iflink = ip_tunnel_get_iflink,
fc4099f1 1295 .ndo_fill_metadata_dst = gre_fill_metadata_dst,
b8c26a33
SH		 1296};
1297
84e54fe0
WT		 1298static int erspan_tunnel_init(struct net_device *dev)
1299{
1300 struct ip_tunnel *tunnel = netdev_priv(dev);
1301 int t_hlen;
1302
1303 tunnel->tun_hlen = 8;
1304 tunnel->parms.iph.protocol = IPPROTO_GRE;
c122fda2 1305 tunnel->hlen = tunnel->tun_hlen + tunnel->encap_hlen +
f551c91d 1306 erspan_hdr_len(tunnel->erspan_ver);
c122fda2 1307 t_hlen = tunnel->hlen + sizeof(struct iphdr);
84e54fe0
WT		 1308
1309 dev->needed_headroom = LL_MAX_HEADER + t_hlen + 4;
1310 dev->mtu = ETH_DATA_LEN - t_hlen - 4;
1311 dev->features |= GRE_FEATURES;
1312 dev->hw_features |= GRE_FEATURES;
1313 dev->priv_flags |= IFF_LIVE_ADDR_CHANGE;
c84bed44 1314 netif_keep_dst(dev);
84e54fe0
WT		 1315
1316 return ip_tunnel_init(dev);
1317}
1318
1319static const struct net_device_ops erspan_netdev_ops = {
1320 .ndo_init = erspan_tunnel_init,
1321 .ndo_uninit = ip_tunnel_uninit,
1322 .ndo_start_xmit = erspan_xmit,
1323 .ndo_set_mac_address = eth_mac_addr,
1324 .ndo_validate_addr = eth_validate_addr,
1325 .ndo_change_mtu = ip_tunnel_change_mtu,
1326 .ndo_get_stats64 = ip_tunnel_get_stats64,
1327 .ndo_get_iflink = ip_tunnel_get_iflink,
1328 .ndo_fill_metadata_dst = gre_fill_metadata_dst,
1329};
1330
e1a80002
HX		 1331static void ipgre_tap_setup(struct net_device *dev)
1332{
e1a80002 1333 ether_setup(dev);
cfddd4c3 1334 dev->max_mtu = 0;
d13b161c
JB		 1335 dev->netdev_ops = &gre_tap_netdev_ops;
1336 dev->priv_flags &= ~IFF_TX_SKB_SHARING;
1337 dev->priv_flags |= IFF_LIVE_ADDR_CHANGE;
c5441932 1338 ip_tunnel_setup(dev, gre_tap_net_id);
e1a80002
HX		 1339}
1340
c5441932 1341static int ipgre_newlink(struct net *src_net, struct net_device *dev,
7a3f4a18
MS		 1342 struct nlattr *tb[], struct nlattr *data[],
1343 struct netlink_ext_ack *extack)
c19e654d 1344{
c5441932 1345 struct ip_tunnel_parm p;
4565e991 1346 struct ip_tunnel_encap ipencap;
9830ad4c 1347 __u32 fwmark = 0;
22a59be8 1348 int err;
4565e991
TH		 1349
1350 if (ipgre_netlink_encap_parms(data, &ipencap)) {
1351 struct ip_tunnel *t = netdev_priv(dev);
22a59be8 1352 err = ip_tunnel_encap_setup(t, &ipencap);
4565e991
TH		 1353
1354 if (err < 0)
1355 return err;
1356 }
c19e654d 1357
9830ad4c 1358 err = ipgre_netlink_parms(dev, data, tb, &p, &fwmark);
22a59be8
PP		 1359 if (err < 0)
1360 return err;
9830ad4c 1361 return ip_tunnel_newlink(dev, tb, &p, fwmark);
c19e654d
HX		 1362}
1363
1364static int ipgre_changelink(struct net_device *dev, struct nlattr *tb[],
ad744b22
MS		 1365 struct nlattr *data[],
1366 struct netlink_ext_ack *extack)
c19e654d 1367{
9830ad4c 1368 struct ip_tunnel *t = netdev_priv(dev);
4565e991 1369 struct ip_tunnel_encap ipencap;
9830ad4c 1370 __u32 fwmark = t->fwmark;
dd9d598c 1371 struct ip_tunnel_parm p;
22a59be8 1372 int err;
4565e991
TH		 1373
1374 if (ipgre_netlink_encap_parms(data, &ipencap)) {
22a59be8 1375 err = ip_tunnel_encap_setup(t, &ipencap);
4565e991
TH		 1376
1377 if (err < 0)
1378 return err;
1379 }
c19e654d 1380
9830ad4c 1381 err = ipgre_netlink_parms(dev, data, tb, &p, &fwmark);
22a59be8
PP		 1382 if (err < 0)
1383 return err;
dd9d598c
XL		 1384
1385 err = ip_tunnel_changelink(dev, tb, &p, fwmark);
1386 if (err < 0)
1387 return err;
1388
1389 t->parms.i_flags = p.i_flags;
1390 t->parms.o_flags = p.o_flags;
1391
1392 if (strcmp(dev->rtnl_link_ops->kind, "erspan"))
1393 ipgre_link_update(dev, !tb[IFLA_MTU]);
1394
1395 return 0;
c19e654d
HX		 1396}
1397
1398static size_t ipgre_get_size(const struct net_device *dev)
1399{
1400 return
1401 /* IFLA_GRE_LINK */
1402 nla_total_size(4) +
1403 /* IFLA_GRE_IFLAGS */
1404 nla_total_size(2) +
1405 /* IFLA_GRE_OFLAGS */
1406 nla_total_size(2) +
1407 /* IFLA_GRE_IKEY */
1408 nla_total_size(4) +
1409 /* IFLA_GRE_OKEY */
1410 nla_total_size(4) +
1411 /* IFLA_GRE_LOCAL */
1412 nla_total_size(4) +
1413 /* IFLA_GRE_REMOTE */
1414 nla_total_size(4) +
1415 /* IFLA_GRE_TTL */
1416 nla_total_size(1) +
1417 /* IFLA_GRE_TOS */
1418 nla_total_size(1) +
1419 /* IFLA_GRE_PMTUDISC */
1420 nla_total_size(1) +
4565e991
TH		 1421 /* IFLA_GRE_ENCAP_TYPE */
1422 nla_total_size(2) +
1423 /* IFLA_GRE_ENCAP_FLAGS */
1424 nla_total_size(2) +
1425 /* IFLA_GRE_ENCAP_SPORT */
1426 nla_total_size(2) +
1427 /* IFLA_GRE_ENCAP_DPORT */
1428 nla_total_size(2) +
2e15ea39
PS		 1429 /* IFLA_GRE_COLLECT_METADATA */
1430 nla_total_size(0) +
22a59be8
PP		 1431 /* IFLA_GRE_IGNORE_DF */
1432 nla_total_size(1) +
9830ad4c
CG		 1433 /* IFLA_GRE_FWMARK */
1434 nla_total_size(4) +
84e54fe0
WT		 1435 /* IFLA_GRE_ERSPAN_INDEX */
1436 nla_total_size(4) +
f551c91d
WT		 1437 /* IFLA_GRE_ERSPAN_VER */
1438 nla_total_size(1) +
1439 /* IFLA_GRE_ERSPAN_DIR */
1440 nla_total_size(1) +
1441 /* IFLA_GRE_ERSPAN_HWID */
1442 nla_total_size(2) +
c19e654d
HX		 1443 0;
1444}
1445
1446static int ipgre_fill_info(struct sk_buff *skb, const struct net_device *dev)
1447{
1448 struct ip_tunnel *t = netdev_priv(dev);
1449 struct ip_tunnel_parm *p = &t->parms;
1450
f3756b79 1451 if (nla_put_u32(skb, IFLA_GRE_LINK, p->link) ||
95f5c64c
TH		 1452 nla_put_be16(skb, IFLA_GRE_IFLAGS,
1453 gre_tnl_flags_to_gre_flags(p->i_flags)) ||
1454 nla_put_be16(skb, IFLA_GRE_OFLAGS,
1455 gre_tnl_flags_to_gre_flags(p->o_flags)) ||
f3756b79
DM		 1456 nla_put_be32(skb, IFLA_GRE_IKEY, p->i_key) ||
1457 nla_put_be32(skb, IFLA_GRE_OKEY, p->o_key) ||
930345ea
JB		 1458 nla_put_in_addr(skb, IFLA_GRE_LOCAL, p->iph.saddr) ||
1459 nla_put_in_addr(skb, IFLA_GRE_REMOTE, p->iph.daddr) ||
f3756b79
DM		 1460 nla_put_u8(skb, IFLA_GRE_TTL, p->iph.ttl) ||
1461 nla_put_u8(skb, IFLA_GRE_TOS, p->iph.tos) ||
1462 nla_put_u8(skb, IFLA_GRE_PMTUDISC,
9830ad4c
CG		 1463 !!(p->iph.frag_off & htons(IP_DF))) ||
1464 nla_put_u32(skb, IFLA_GRE_FWMARK, t->fwmark))
f3756b79 1465 goto nla_put_failure;
4565e991
TH		 1466
1467 if (nla_put_u16(skb, IFLA_GRE_ENCAP_TYPE,
1468 t->encap.type) ||
3e97fa70
SD		 1469 nla_put_be16(skb, IFLA_GRE_ENCAP_SPORT,
1470 t->encap.sport) ||
1471 nla_put_be16(skb, IFLA_GRE_ENCAP_DPORT,
1472 t->encap.dport) ||
4565e991 1473 nla_put_u16(skb, IFLA_GRE_ENCAP_FLAGS,
e1b2cb65 1474 t->encap.flags))
4565e991
TH		 1475 goto nla_put_failure;
1476
22a59be8
PP		 1477 if (nla_put_u8(skb, IFLA_GRE_IGNORE_DF, t->ignore_df))
1478 goto nla_put_failure;
1479
2e15ea39
PS		 1480 if (t->collect_md) {
1481 if (nla_put_flag(skb, IFLA_GRE_COLLECT_METADATA))
1482 goto nla_put_failure;
1483 }
1484
f551c91d
WT		 1485 if (nla_put_u8(skb, IFLA_GRE_ERSPAN_VER, t->erspan_ver))
1486 goto nla_put_failure;
1487
1488 if (t->erspan_ver == 1) {
84e54fe0
WT		 1489 if (nla_put_u32(skb, IFLA_GRE_ERSPAN_INDEX, t->index))
1490 goto nla_put_failure;
f551c91d
WT		 1491 } else if (t->erspan_ver == 2) {
1492 if (nla_put_u8(skb, IFLA_GRE_ERSPAN_DIR, t->dir))
1493 goto nla_put_failure;
1494 if (nla_put_u16(skb, IFLA_GRE_ERSPAN_HWID, t->hwid))
1495 goto nla_put_failure;
1496 }
84e54fe0 1497
c19e654d
HX		 1498 return 0;
1499
1500nla_put_failure:
1501 return -EMSGSIZE;
1502}
1503
84e54fe0
WT		 1504static void erspan_setup(struct net_device *dev)
1505{
1506 ether_setup(dev);
1507 dev->netdev_ops = &erspan_netdev_ops;
1508 dev->priv_flags &= ~IFF_TX_SKB_SHARING;
1509 dev->priv_flags |= IFF_LIVE_ADDR_CHANGE;
1510 ip_tunnel_setup(dev, erspan_net_id);
1511}
1512
c19e654d
HX		 1513static const struct nla_policy ipgre_policy[IFLA_GRE_MAX + 1] = {
1514 [IFLA_GRE_LINK] = { .type = NLA_U32 },
1515 [IFLA_GRE_IFLAGS] = { .type = NLA_U16 },
1516 [IFLA_GRE_OFLAGS] = { .type = NLA_U16 },
1517 [IFLA_GRE_IKEY] = { .type = NLA_U32 },
1518 [IFLA_GRE_OKEY] = { .type = NLA_U32 },
4d74f8ba
PM		 1519 [IFLA_GRE_LOCAL] = { .len = FIELD_SIZEOF(struct iphdr, saddr) },
1520 [IFLA_GRE_REMOTE] = { .len = FIELD_SIZEOF(struct iphdr, daddr) },
c19e654d
HX		 1521 [IFLA_GRE_TTL] = { .type = NLA_U8 },
1522 [IFLA_GRE_TOS] = { .type = NLA_U8 },
1523 [IFLA_GRE_PMTUDISC] = { .type = NLA_U8 },
4565e991
TH		 1524 [IFLA_GRE_ENCAP_TYPE] = { .type = NLA_U16 },
1525 [IFLA_GRE_ENCAP_FLAGS] = { .type = NLA_U16 },
1526 [IFLA_GRE_ENCAP_SPORT] = { .type = NLA_U16 },
1527 [IFLA_GRE_ENCAP_DPORT] = { .type = NLA_U16 },
2e15ea39 1528 [IFLA_GRE_COLLECT_METADATA] = { .type = NLA_FLAG },
22a59be8 1529 [IFLA_GRE_IGNORE_DF] = { .type = NLA_U8 },
9830ad4c 1530 [IFLA_GRE_FWMARK] = { .type = NLA_U32 },
84e54fe0 1531 [IFLA_GRE_ERSPAN_INDEX] = { .type = NLA_U32 },
f551c91d
WT		 1532 [IFLA_GRE_ERSPAN_VER] = { .type = NLA_U8 },
1533 [IFLA_GRE_ERSPAN_DIR] = { .type = NLA_U8 },
1534 [IFLA_GRE_ERSPAN_HWID] = { .type = NLA_U16 },
c19e654d
HX		 1535};
1536
1537static struct rtnl_link_ops ipgre_link_ops __read_mostly = {
1538 .kind = "gre",
1539 .maxtype = IFLA_GRE_MAX,
1540 .policy = ipgre_policy,
1541 .priv_size = sizeof(struct ip_tunnel),
1542 .setup = ipgre_tunnel_setup,
1543 .validate = ipgre_tunnel_validate,
1544 .newlink = ipgre_newlink,
1545 .changelink = ipgre_changelink,
c5441932 1546 .dellink = ip_tunnel_dellink,
c19e654d
HX		 1547 .get_size = ipgre_get_size,
1548 .fill_info = ipgre_fill_info,
1728d4fa 1549 .get_link_net = ip_tunnel_get_link_net,
c19e654d
HX		 1550};
1551
e1a80002
HX		 1552static struct rtnl_link_ops ipgre_tap_ops __read_mostly = {
1553 .kind = "gretap",
1554 .maxtype = IFLA_GRE_MAX,
1555 .policy = ipgre_policy,
1556 .priv_size = sizeof(struct ip_tunnel),
1557 .setup = ipgre_tap_setup,
1558 .validate = ipgre_tap_validate,
1559 .newlink = ipgre_newlink,
1560 .changelink = ipgre_changelink,
c5441932 1561 .dellink = ip_tunnel_dellink,
e1a80002
HX		 1562 .get_size = ipgre_get_size,
1563 .fill_info = ipgre_fill_info,
1728d4fa 1564 .get_link_net = ip_tunnel_get_link_net,
e1a80002
HX		 1565};
1566
84e54fe0
WT		 1567static struct rtnl_link_ops erspan_link_ops __read_mostly = {
1568 .kind = "erspan",
1569 .maxtype = IFLA_GRE_MAX,
1570 .policy = ipgre_policy,
1571 .priv_size = sizeof(struct ip_tunnel),
1572 .setup = erspan_setup,
1573 .validate = erspan_validate,
1574 .newlink = ipgre_newlink,
1575 .changelink = ipgre_changelink,
1576 .dellink = ip_tunnel_dellink,
1577 .get_size = ipgre_get_size,
1578 .fill_info = ipgre_fill_info,
1579 .get_link_net = ip_tunnel_get_link_net,
1580};
1581
b2acd1dc
PS		 1582struct net_device *gretap_fb_dev_create(struct net *net, const char *name,
1583 u8 name_assign_type)
1584{
1585 struct nlattr *tb[IFLA_MAX + 1];
1586 struct net_device *dev;
106da663 1587 LIST_HEAD(list_kill);
b2acd1dc
PS		 1588 struct ip_tunnel *t;
1589 int err;
1590
1591 memset(&tb, 0, sizeof(tb));
1592
1593 dev = rtnl_create_link(net, name, name_assign_type,
1594 &ipgre_tap_ops, tb);
1595 if (IS_ERR(dev))
1596 return dev;
1597
1598 /* Configure flow based GRE device. */
1599 t = netdev_priv(dev);
1600 t->collect_md = true;
1601
7a3f4a18 1602 err = ipgre_newlink(net, dev, tb, NULL, NULL);
106da663
ND		 1603 if (err < 0) {
1604 free_netdev(dev);
1605 return ERR_PTR(err);
1606 }
7e059158
DW		 1607
1608 /* openvswitch users expect packet sizes to be unrestricted,
1609 * so set the largest MTU we can.
1610 */
1611 err = __ip_tunnel_change_mtu(dev, IP_MAX_MTU, false);
1612 if (err)
1613 goto out;
1614
da6f1da8
ND		 1615 err = rtnl_configure_link(dev, NULL);
1616 if (err < 0)
1617 goto out;
1618
b2acd1dc
PS		 1619 return dev;
1620out:
106da663
ND		 1621 ip_tunnel_dellink(dev, &list_kill);
1622 unregister_netdevice_many(&list_kill);
b2acd1dc
PS		 1623 return ERR_PTR(err);
1624}
1625EXPORT_SYMBOL_GPL(gretap_fb_dev_create);
1626
c5441932
PS		 1627static int __net_init ipgre_tap_init_net(struct net *net)
1628{
2e15ea39 1629 return ip_tunnel_init_net(net, gre_tap_net_id, &ipgre_tap_ops, "gretap0");
c5441932
PS		 1630}
1631
64bc1781 1632static void __net_exit ipgre_tap_exit_batch_net(struct list_head *list_net)
c5441932 1633{
64bc1781 1634 ip_tunnel_delete_nets(list_net, gre_tap_net_id, &ipgre_tap_ops);
c5441932
PS		 1635}
1636
1637static struct pernet_operations ipgre_tap_net_ops = {
1638 .init = ipgre_tap_init_net,
64bc1781 1639 .exit_batch = ipgre_tap_exit_batch_net,
c5441932
PS		 1640 .id = &gre_tap_net_id,
1641 .size = sizeof(struct ip_tunnel_net),
1642};
1da177e4 1643
84e54fe0
WT		 1644static int __net_init erspan_init_net(struct net *net)
1645{
1646 return ip_tunnel_init_net(net, erspan_net_id,
1647 &erspan_link_ops, "erspan0");
1648}
1649
64bc1781 1650static void __net_exit erspan_exit_batch_net(struct list_head *net_list)
84e54fe0 1651{
64bc1781 1652 ip_tunnel_delete_nets(net_list, erspan_net_id, &erspan_link_ops);
84e54fe0
WT		 1653}
1654
1655static struct pernet_operations erspan_net_ops = {
1656 .init = erspan_init_net,
64bc1781 1657 .exit_batch = erspan_exit_batch_net,
84e54fe0
WT		 1658 .id = &erspan_net_id,
1659 .size = sizeof(struct ip_tunnel_net),
1660};
1661
1da177e4
LT		 1662static int __init ipgre_init(void)
1663{
1664 int err;
1665
058bd4d2 1666 pr_info("GRE over IPv4 tunneling driver\n");
1da177e4 1667
cfb8fbf2 1668 err = register_pernet_device(&ipgre_net_ops);
59a4c759 1669 if (err < 0)
c2892f02
AD		 1670 return err;
1671
c5441932
PS		 1672 err = register_pernet_device(&ipgre_tap_net_ops);
1673 if (err < 0)
e3d0328c 1674 goto pnet_tap_failed;
c5441932 1675
84e54fe0
WT		 1676 err = register_pernet_device(&erspan_net_ops);
1677 if (err < 0)
1678 goto pnet_erspan_failed;
1679
9f57c67c 1680 err = gre_add_protocol(&ipgre_protocol, GREPROTO_CISCO);
c2892f02 1681 if (err < 0) {
058bd4d2 1682 pr_info("%s: can't add protocol\n", __func__);
c2892f02
AD		 1683 goto add_proto_failed;
1684 }
7daa0004 1685
c19e654d
HX		 1686 err = rtnl_link_register(&ipgre_link_ops);
1687 if (err < 0)
1688 goto rtnl_link_failed;
1689
e1a80002
HX		 1690 err = rtnl_link_register(&ipgre_tap_ops);
1691 if (err < 0)
1692 goto tap_ops_failed;
1693
84e54fe0
WT		 1694 err = rtnl_link_register(&erspan_link_ops);
1695 if (err < 0)
1696 goto erspan_link_failed;
1697
c5441932 1698 return 0;
c19e654d 1699
84e54fe0
WT		 1700erspan_link_failed:
1701 rtnl_link_unregister(&ipgre_tap_ops);
e1a80002
HX		 1702tap_ops_failed:
1703 rtnl_link_unregister(&ipgre_link_ops);
c19e654d 1704rtnl_link_failed:
9f57c67c 1705 gre_del_protocol(&ipgre_protocol, GREPROTO_CISCO);
c2892f02 1706add_proto_failed:
84e54fe0
WT		 1707 unregister_pernet_device(&erspan_net_ops);
1708pnet_erspan_failed:
c5441932 1709 unregister_pernet_device(&ipgre_tap_net_ops);
e3d0328c 1710pnet_tap_failed:
c2892f02 1711 unregister_pernet_device(&ipgre_net_ops);
c5441932 1712 return err;
1da177e4
LT		 1713}
1714
db44575f 1715static void __exit ipgre_fini(void)
1da177e4 1716{
e1a80002 1717 rtnl_link_unregister(&ipgre_tap_ops);
c19e654d 1718 rtnl_link_unregister(&ipgre_link_ops);
84e54fe0 1719 rtnl_link_unregister(&erspan_link_ops);
9f57c67c 1720 gre_del_protocol(&ipgre_protocol, GREPROTO_CISCO);
c5441932 1721 unregister_pernet_device(&ipgre_tap_net_ops);
c2892f02 1722 unregister_pernet_device(&ipgre_net_ops);
84e54fe0 1723 unregister_pernet_device(&erspan_net_ops);
1da177e4
LT		 1724}
1725
1726module_init(ipgre_init);
1727module_exit(ipgre_fini);
1728MODULE_LICENSE("GPL");
4d74f8ba
PM		 1729MODULE_ALIAS_RTNL_LINK("gre");
1730MODULE_ALIAS_RTNL_LINK("gretap");
84e54fe0 1731MODULE_ALIAS_RTNL_LINK("erspan");
8909c9ad 1732MODULE_ALIAS_NETDEV("gre0");
c5441932 1733MODULE_ALIAS_NETDEV("gretap0");
84e54fe0 1734MODULE_ALIAS_NETDEV("erspan0");
Ubuntu Jammy Linux kernel mirror