[mirror_ubuntu-disco-kernel.git] / net / ipv6 / ip6_input.c

/*
 *	IPv6 input
 *	Linux INET6 implementation 
 *
 *	Authors:
 *	Pedro Roque		<roque@di.fc.ul.pt>
 *	Ian P. Morris		<I.P.Morris@soton.ac.uk>
 *
 *	$Id: ip6_input.c,v 1.19 2000/12/13 18:31:50 davem Exp $
 *
 *	Based in linux/net/ipv4/ip_input.c
 *
 *	This program is free software; you can redistribute it and/or
 *      modify it under the terms of the GNU General Public License
 *      as published by the Free Software Foundation; either version
 *      2 of the License, or (at your option) any later version.
 */
/* Changes
 *
 * 	Mitsuru KANDA @USAGI and
 * 	YOSHIFUJI Hideaki @USAGI: Remove ipv6_parse_exthdrs().
 */

#include <linux/errno.h>
#include <linux/types.h>
#include <linux/socket.h>
#include <linux/sockios.h>
#include <linux/sched.h>
#include <linux/net.h>
#include <linux/netdevice.h>
#include <linux/in6.h>
#include <linux/icmpv6.h>

#include <linux/netfilter.h>
#include <linux/netfilter_ipv6.h>

#include <net/sock.h>
#include <net/snmp.h>

#include <net/ipv6.h>
#include <net/protocol.h>
#include <net/transp_v6.h>
#include <net/rawv6.h>
#include <net/ndisc.h>
#include <net/ip6_route.h>
#include <net/addrconf.h>
#include <net/xfrm.h>


inline int ip6_rcv_finish( struct sk_buff *skb) 
{
	if (skb->dst == NULL)
		ip6_route_input(skb);

	return dst_input(skb);
}

int ipv6_rcv(struct sk_buff *skb, struct net_device *dev, struct packet_type *pt, struct net_device *orig_dev)
{
	struct ipv6hdr *hdr;
	u32 		pkt_len;

	if (skb->pkt_type == PACKET_OTHERHOST)
		goto drop;

	IP6_INC_STATS_BH(IPSTATS_MIB_INRECEIVES);

	if ((skb = skb_share_check(skb, GFP_ATOMIC)) == NULL) {
		IP6_INC_STATS_BH(IPSTATS_MIB_INDISCARDS);
		goto out;
	}

	/*
	 * Store incoming device index. When the packet will
	 * be queued, we cannot refer to skb->dev anymore.
	 *
	 * BTW, when we send a packet for our own local address on a
	 * non-loopback interface (e.g. ethX), it is being delivered
	 * via the loopback interface (lo) here; skb->dev = &loopback_dev.
	 * It, however, should be considered as if it is being
	 * arrived via the sending interface (ethX), because of the
	 * nature of scoping architecture. --yoshfuji
	 */
	IP6CB(skb)->iif = skb->dst ? ((struct rt6_info *)skb->dst)->rt6i_idev->dev->ifindex : dev->ifindex;

	if (skb->len < sizeof(struct ipv6hdr))
		goto err;

	if (!pskb_may_pull(skb, sizeof(struct ipv6hdr))) {
		IP6_INC_STATS_BH(IPSTATS_MIB_INHDRERRORS);
		goto drop;
	}

	hdr = skb->nh.ipv6h;

	if (hdr->version != 6)
		goto err;

	skb->h.raw = (u8 *)(hdr + 1);
	IP6CB(skb)->nhoff = offsetof(struct ipv6hdr, nexthdr);

	pkt_len = ntohs(hdr->payload_len);

	/* pkt_len may be zero if Jumbo payload option is present */
	if (pkt_len || hdr->nexthdr != NEXTHDR_HOP) {
		if (pkt_len + sizeof(struct ipv6hdr) > skb->len)
			goto truncated;
		if (pskb_trim_rcsum(skb, pkt_len + sizeof(struct ipv6hdr))) {
			IP6_INC_STATS_BH(IPSTATS_MIB_INHDRERRORS);
			goto drop;
		}
		hdr = skb->nh.ipv6h;
	}

	if (hdr->nexthdr == NEXTHDR_HOP) {
		if (ipv6_parse_hopopts(skb) < 0) {
			IP6_INC_STATS_BH(IPSTATS_MIB_INHDRERRORS);
			return 0;
		}
	}

	return NF_HOOK(PF_INET6,NF_IP6_PRE_ROUTING, skb, dev, NULL, ip6_rcv_finish);
truncated:
	IP6_INC_STATS_BH(IPSTATS_MIB_INTRUNCATEDPKTS);
err:
	IP6_INC_STATS_BH(IPSTATS_MIB_INHDRERRORS);
drop:
	kfree_skb(skb);
out:
	return 0;
}

/*
 *	Deliver the packet to the host
 */


static inline int ip6_input_finish(struct sk_buff *skb)
{
	struct inet6_protocol *ipprot;
	struct sock *raw_sk;
	unsigned int nhoff;
	int nexthdr;
	u8 hash;

	/*
	 *	Parse extension headers
	 */

	rcu_read_lock();
resubmit:
	if (!pskb_pull(skb, skb->h.raw - skb->data))
		goto discard;
	nhoff = IP6CB(skb)->nhoff;
	nexthdr = skb->nh.raw[nhoff];

	raw_sk = sk_head(&raw_v6_htable[nexthdr & (MAX_INET_PROTOS - 1)]);
	if (raw_sk && !ipv6_raw_deliver(skb, nexthdr))
		raw_sk = NULL;

	hash = nexthdr & (MAX_INET_PROTOS - 1);
	if ((ipprot = rcu_dereference(inet6_protos[hash])) != NULL) {
		int ret;
		
		if (ipprot->flags & INET6_PROTO_FINAL) {
			struct ipv6hdr *hdr;	

			/* Free reference early: we don't need it any more,
			   and it may hold ip_conntrack module loaded
			   indefinitely. */
			nf_reset(skb);

			skb_postpull_rcsum(skb, skb->nh.raw,
					   skb->h.raw - skb->nh.raw);
			hdr = skb->nh.ipv6h;
			if (ipv6_addr_is_multicast(&hdr->daddr) &&
			    !ipv6_chk_mcast_addr(skb->dev, &hdr->daddr,
			    &hdr->saddr) &&
			    !ipv6_is_mld(skb, nexthdr))
				goto discard;
		}
		if (!(ipprot->flags & INET6_PROTO_NOPOLICY) &&
		    !xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb)) 
			goto discard;
		
		ret = ipprot->handler(&skb);
		if (ret > 0)
			goto resubmit;
		else if (ret == 0)
			IP6_INC_STATS_BH(IPSTATS_MIB_INDELIVERS);
	} else {
		if (!raw_sk) {
			if (xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb)) {
				IP6_INC_STATS_BH(IPSTATS_MIB_INUNKNOWNPROTOS);
				icmpv6_send(skb, ICMPV6_PARAMPROB,
				            ICMPV6_UNK_NEXTHDR, nhoff,
				            skb->dev);
			}
		} else
			IP6_INC_STATS_BH(IPSTATS_MIB_INDELIVERS);
		kfree_skb(skb);
	}
	rcu_read_unlock();
	return 0;

discard:
	IP6_INC_STATS_BH(IPSTATS_MIB_INDISCARDS);
	rcu_read_unlock();
	kfree_skb(skb);
	return 0;
}


int ip6_input(struct sk_buff *skb)
{
	return NF_HOOK(PF_INET6,NF_IP6_LOCAL_IN, skb, skb->dev, NULL, ip6_input_finish);
}

int ip6_mc_input(struct sk_buff *skb)
{
	struct ipv6hdr *hdr;
	int deliver;

	IP6_INC_STATS_BH(IPSTATS_MIB_INMCASTPKTS);

	hdr = skb->nh.ipv6h;
	deliver = likely(!(skb->dev->flags & (IFF_PROMISC|IFF_ALLMULTI))) ||
	    ipv6_chk_mcast_addr(skb->dev, &hdr->daddr, NULL);

	/*
	 *	IPv6 multicast router mode isnt currently supported.
	 */
#if 0
	if (ipv6_config.multicast_route) {
		int addr_type;

		addr_type = ipv6_addr_type(&hdr->daddr);

		if (!(addr_type & (IPV6_ADDR_LOOPBACK | IPV6_ADDR_LINKLOCAL))) {
			struct sk_buff *skb2;
			struct dst_entry *dst;

			dst = skb->dst;
			
			if (deliver) {
				skb2 = skb_clone(skb, GFP_ATOMIC);
				dst_output(skb2);
			} else {
				dst_output(skb);
				return 0;
			}
		}
	}
#endif

	if (likely(deliver)) {
		ip6_input(skb);
		return 0;
	}
	/* discard */
	kfree_skb(skb);

	return 0;
}
Commit	Line	Data
1da177e4 LT	1	/*
	2	* IPv6 input
	3	* Linux INET6 implementation
	4	*
	5	* Authors:
	6	* Pedro Roque <roque@di.fc.ul.pt>
	7	* Ian P. Morris <I.P.Morris@soton.ac.uk>
	8	*
	9	* $Id: ip6_input.c,v 1.19 2000/12/13 18:31:50 davem Exp $
	10	*
	11	* Based in linux/net/ipv4/ip_input.c
	12	*
	13	* This program is free software; you can redistribute it and/or
	14	* modify it under the terms of the GNU General Public License
	15	* as published by the Free Software Foundation; either version
	16	* 2 of the License, or (at your option) any later version.
	17	*/
	18	/* Changes
	19	*
	20	* Mitsuru KANDA @USAGI and
	21	* YOSHIFUJI Hideaki @USAGI: Remove ipv6_parse_exthdrs().
	22	*/
	23
	24	#include <linux/errno.h>
	25	#include <linux/types.h>
	26	#include <linux/socket.h>
	27	#include <linux/sockios.h>
	28	#include <linux/sched.h>
	29	#include <linux/net.h>
	30	#include <linux/netdevice.h>
	31	#include <linux/in6.h>
	32	#include <linux/icmpv6.h>
	33
	34	#include <linux/netfilter.h>
	35	#include <linux/netfilter_ipv6.h>
	36
	37	#include <net/sock.h>
	38	#include <net/snmp.h>
	39
	40	#include <net/ipv6.h>
	41	#include <net/protocol.h>
	42	#include <net/transp_v6.h>
	43	#include <net/rawv6.h>
	44	#include <net/ndisc.h>
	45	#include <net/ip6_route.h>
	46	#include <net/addrconf.h>
	47	#include <net/xfrm.h>
	48
	49
	50
b05e1066	51	inline int ip6_rcv_finish( struct sk_buff *skb)
1da177e4 LT	52	{
	53	if (skb->dst == NULL)
	54	ip6_route_input(skb);
	55
	56	return dst_input(skb);
	57	}
	58
f2ccd8fa	59	int ipv6_rcv(struct sk_buff skb, struct net_device dev, struct packet_type pt, struct net_device orig_dev)
1da177e4 LT	60	{
	61	struct ipv6hdr *hdr;
	62	u32 pkt_len;
	63
	64	if (skb->pkt_type == PACKET_OTHERHOST)
	65	goto drop;
	66
	67	IP6_INC_STATS_BH(IPSTATS_MIB_INRECEIVES);
	68
	69	if ((skb = skb_share_check(skb, GFP_ATOMIC)) == NULL) {
	70	IP6_INC_STATS_BH(IPSTATS_MIB_INDISCARDS);
	71	goto out;
	72	}
	73
	74	/*
	75	* Store incoming device index. When the packet will
	76	* be queued, we cannot refer to skb->dev anymore.
	77	*
	78	* BTW, when we send a packet for our own local address on a
	79	* non-loopback interface (e.g. ethX), it is being delivered
	80	* via the loopback interface (lo) here; skb->dev = &loopback_dev.
	81	* It, however, should be considered as if it is being
	82	* arrived via the sending interface (ethX), because of the
	83	* nature of scoping architecture. --yoshfuji
	84	*/
	85	IP6CB(skb)->iif = skb->dst ? ((struct rt6_info *)skb->dst)->rt6i_idev->dev->ifindex : dev->ifindex;
	86
	87	if (skb->len < sizeof(struct ipv6hdr))
	88	goto err;
	89
	90	if (!pskb_may_pull(skb, sizeof(struct ipv6hdr))) {
	91	IP6_INC_STATS_BH(IPSTATS_MIB_INHDRERRORS);
	92	goto drop;
	93	}
	94
	95	hdr = skb->nh.ipv6h;
	96
	97	if (hdr->version != 6)
	98	goto err;
	99
951dbc8a PM	100	skb->h.raw = (u8 *)(hdr + 1);
	101	IP6CB(skb)->nhoff = offsetof(struct ipv6hdr, nexthdr);
	102
1da177e4 LT	103	pkt_len = ntohs(hdr->payload_len);
	104
	105	/* pkt_len may be zero if Jumbo payload option is present */
	106	if (pkt_len \|\| hdr->nexthdr != NEXTHDR_HOP) {
	107	if (pkt_len + sizeof(struct ipv6hdr) > skb->len)
	108	goto truncated;
	109	if (pskb_trim_rcsum(skb, pkt_len + sizeof(struct ipv6hdr))) {
	110	IP6_INC_STATS_BH(IPSTATS_MIB_INHDRERRORS);
	111	goto drop;
	112	}
	113	hdr = skb->nh.ipv6h;
	114	}
	115
	116	if (hdr->nexthdr == NEXTHDR_HOP) {
b809739a	117	if (ipv6_parse_hopopts(skb) < 0) {
1da177e4 LT	118	IP6_INC_STATS_BH(IPSTATS_MIB_INHDRERRORS);
	119	return 0;
	120	}
1da177e4 LT	121	}
	122
	123	return NF_HOOK(PF_INET6,NF_IP6_PRE_ROUTING, skb, dev, NULL, ip6_rcv_finish);
	124	truncated:
	125	IP6_INC_STATS_BH(IPSTATS_MIB_INTRUNCATEDPKTS);
	126	err:
	127	IP6_INC_STATS_BH(IPSTATS_MIB_INHDRERRORS);
	128	drop:
	129	kfree_skb(skb);
	130	out:
	131	return 0;
	132	}
	133
	134	/*
	135	* Deliver the packet to the host
	136	*/
	137
	138
	139	static inline int ip6_input_finish(struct sk_buff *skb)
	140	{
	141	struct inet6_protocol *ipprot;
	142	struct sock *raw_sk;
	143	unsigned int nhoff;
	144	int nexthdr;
	145	u8 hash;
	146
1da177e4 LT	147	/*
	148	* Parse extension headers
	149	*/
	150
1da177e4 LT	151	rcu_read_lock();
	152	resubmit:
	153	if (!pskb_pull(skb, skb->h.raw - skb->data))
	154	goto discard;
951dbc8a	155	nhoff = IP6CB(skb)->nhoff;
1da177e4 LT	156	nexthdr = skb->nh.raw[nhoff];
	157
	158	raw_sk = sk_head(&raw_v6_htable[nexthdr & (MAX_INET_PROTOS - 1)]);
d13964f4 PM	159	if (raw_sk && !ipv6_raw_deliver(skb, nexthdr))
d13964f4 PM	160	raw_sk = NULL;
1da177e4 LT	161
	162	hash = nexthdr & (MAX_INET_PROTOS - 1);
	163	if ((ipprot = rcu_dereference(inet6_protos[hash])) != NULL) {
	164	int ret;
	165
	166	if (ipprot->flags & INET6_PROTO_FINAL) {
	167	struct ipv6hdr *hdr;
	168
9fb9cbb1 YK	169	/* Free reference early: we don't need it any more,
	170	and it may hold ip_conntrack module loaded
	171	indefinitely. */
	172	nf_reset(skb);
	173
1da177e4 LT	174	skb_postpull_rcsum(skb, skb->nh.raw,
	175	skb->h.raw - skb->nh.raw);
	176	hdr = skb->nh.ipv6h;
	177	if (ipv6_addr_is_multicast(&hdr->daddr) &&
	178	!ipv6_chk_mcast_addr(skb->dev, &hdr->daddr,
	179	&hdr->saddr) &&
	180	!ipv6_is_mld(skb, nexthdr))
	181	goto discard;
	182	}
	183	if (!(ipprot->flags & INET6_PROTO_NOPOLICY) &&
	184	!xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb))
	185	goto discard;
	186
951dbc8a	187	ret = ipprot->handler(&skb);
1da177e4 LT	188	if (ret > 0)
	189	goto resubmit;
	190	else if (ret == 0)
	191	IP6_INC_STATS_BH(IPSTATS_MIB_INDELIVERS);
	192	} else {
	193	if (!raw_sk) {
	194	if (xfrm6_policy_check(NULL, XFRM_POLICY_IN, skb)) {
	195	IP6_INC_STATS_BH(IPSTATS_MIB_INUNKNOWNPROTOS);
fad87aca PM	196	icmpv6_send(skb, ICMPV6_PARAMPROB,
	197	ICMPV6_UNK_NEXTHDR, nhoff,
	198	skb->dev);
1da177e4	199	}
fad87aca	200	} else
1da177e4	201	IP6_INC_STATS_BH(IPSTATS_MIB_INDELIVERS);
fad87aca	202	kfree_skb(skb);
1da177e4 LT	203	}
	204	rcu_read_unlock();
	205	return 0;
	206
	207	discard:
	208	IP6_INC_STATS_BH(IPSTATS_MIB_INDISCARDS);
	209	rcu_read_unlock();
	210	kfree_skb(skb);
	211	return 0;
	212	}
	213
	214
	215	int ip6_input(struct sk_buff *skb)
	216	{
	217	return NF_HOOK(PF_INET6,NF_IP6_LOCAL_IN, skb, skb->dev, NULL, ip6_input_finish);
	218	}
	219
	220	int ip6_mc_input(struct sk_buff *skb)
	221	{
	222	struct ipv6hdr *hdr;
	223	int deliver;
	224
	225	IP6_INC_STATS_BH(IPSTATS_MIB_INMCASTPKTS);
	226
	227	hdr = skb->nh.ipv6h;
	228	deliver = likely(!(skb->dev->flags & (IFF_PROMISC\|IFF_ALLMULTI))) \|\|
	229	ipv6_chk_mcast_addr(skb->dev, &hdr->daddr, NULL);
	230
	231	/*
	232	* IPv6 multicast router mode isnt currently supported.
	233	*/
	234	#if 0
	235	if (ipv6_config.multicast_route) {
	236	int addr_type;
	237
	238	addr_type = ipv6_addr_type(&hdr->daddr);
	239
	240	if (!(addr_type & (IPV6_ADDR_LOOPBACK \| IPV6_ADDR_LINKLOCAL))) {
	241	struct sk_buff *skb2;
	242	struct dst_entry *dst;
	243
	244	dst = skb->dst;
	245
	246	if (deliver) {
	247	skb2 = skb_clone(skb, GFP_ATOMIC);
	248	dst_output(skb2);
	249	} else {
	250	dst_output(skb);
	251	return 0;
	252	}
	253	}
	254	}
	255	#endif
	256
	257	if (likely(deliver)) {
	258	ip6_input(skb);
	259	return 0;
	260	}
	261	/* discard */
	262	kfree_skb(skb);
	263
	264	return 0;
	265	}