Inicio Explorar Ayuda
Registro Iniciar sesión
phyus
/
linux-vybrid_public
8
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Árbol: 4feb8f8f45
Ramas Etiquetas
linux-vybrid_pu...
/
net
/
ipv6
/
xfrm6_state.c

xfrm6_state.c 4.3 KB
Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153 
  1. /*
    2. 

  2.  * xfrm6_state.c: based on xfrm4_state.c
    3. 

  3.  *
    4. 

  4.  * Authors:
    5. 

  5.  *	Mitsuru KANDA @USAGI
    6. 

  6.  * 	Kazunori MIYAZAWA @USAGI
    7. 

  7.  * 	Kunihiro Ishiguro <kunihiro@ipinfusion.com>
    8. 

  8.  * 		IPv6 support
    9. 

  9.  * 	YOSHIFUJI Hideaki @USAGI
    10. 

  10.  * 		Split up af-specific portion
    11. 

  11.  * 	
    12. 

  12.  */
    13. 

  13. 

  14. #include <net/xfrm.h>
    15. 

  15. #include <linux/pfkeyv2.h>
    16. 

  16. #include <linux/ipsec.h>
    17. 

  17. #include <net/ipv6.h>
    18. 

  18. #include <net/addrconf.h>
    19. 

  19. 

  20. static struct xfrm_state_afinfo xfrm6_state_afinfo;
    21. 

  21. 

  22. static void
    23. 

  23. __xfrm6_init_tempsel(struct xfrm_state *x, struct flowi *fl,
    24. 

  24. 		     struct xfrm_tmpl *tmpl,
    25. 

  25. 		     xfrm_address_t *daddr, xfrm_address_t *saddr)
    26. 

  26. {
    27. 

  27. 	/* Initialize temporary selector matching only
    28. 

  28. 	 * to current session. */
    29. 

  29. 	ipv6_addr_copy((struct in6_addr *)&x->sel.daddr, &fl->fl6_dst);
    30. 

  30. 	ipv6_addr_copy((struct in6_addr *)&x->sel.saddr, &fl->fl6_src);
    31. 

  31. 	x->sel.dport = xfrm_flowi_dport(fl);
    32. 

  32. 	x->sel.dport_mask = ~0;
    33. 

  33. 	x->sel.sport = xfrm_flowi_sport(fl);
    34. 

  34. 	x->sel.sport_mask = ~0;
    35. 

  35. 	x->sel.prefixlen_d = 128;
    36. 

  36. 	x->sel.prefixlen_s = 128;
    37. 

  37. 	x->sel.proto = fl->proto;
    38. 

  38. 	x->sel.ifindex = fl->oif;
    39. 

  39. 	x->id = tmpl->id;
    40. 

  40. 	if (ipv6_addr_any((struct in6_addr*)&x->id.daddr))
    41. 

  41. 		memcpy(&x->id.daddr, daddr, sizeof(x->sel.daddr));
    42. 

  42. 	memcpy(&x->props.saddr, &tmpl->saddr, sizeof(x->props.saddr));
    43. 

  43. 	if (ipv6_addr_any((struct in6_addr*)&x->props.saddr))
    44. 

  44. 		memcpy(&x->props.saddr, saddr, sizeof(x->props.saddr));
    45. 

  45. 	if (tmpl->mode && ipv6_addr_any((struct in6_addr*)&x->props.saddr)) {
    46. 

  46. 		struct rt6_info *rt;
    47. 

  47. 		struct flowi fl_tunnel = {
    48. 

  48. 			.nl_u = {
    49. 

  49. 				.ip6_u = {
    50. 

  50. 					.daddr = *(struct in6_addr *)daddr,
    51. 

  51. 				}
    52. 

  52. 			}
    53. 

  53. 		};
    54. 

  54. 		if (!xfrm_dst_lookup((struct xfrm_dst **)&rt,
    55. 

  55. 		                     &fl_tunnel, AF_INET6)) {
    56. 

  56. 			ipv6_get_saddr(&rt->u.dst, (struct in6_addr *)daddr,
    57. 

  57. 			               (struct in6_addr *)&x->props.saddr);
    58. 

  58. 			dst_release(&rt->u.dst);
    59. 

  59. 		}
    60. 

  60. 	}
    61. 

  61. 	x->props.mode = tmpl->mode;
    62. 

  62. 	x->props.reqid = tmpl->reqid;
    63. 

  63. 	x->props.family = AF_INET6;
    64. 

  64. }
    65. 

  65. 

  66. static struct xfrm_state *
    67. 

  67. __xfrm6_state_lookup(xfrm_address_t *daddr, u32 spi, u8 proto)
    68. 

  68. {
    69. 

  69. 	unsigned h = __xfrm6_spi_hash(daddr, spi, proto);
    70. 

  70. 	struct xfrm_state *x;
    71. 

  71. 

  72. 	list_for_each_entry(x, xfrm6_state_afinfo.state_byspi+h, byspi) {
    73. 

  73. 		if (x->props.family == AF_INET6 &&
    74. 

  74. 		    spi == x->id.spi &&
    75. 

  75. 		    ipv6_addr_equal((struct in6_addr *)daddr, (struct in6_addr *)x->id.daddr.a6) &&
    76. 

  76. 		    proto == x->id.proto) {
    77. 

  77. 			xfrm_state_hold(x);
    78. 

  78. 			return x;
    79. 

  79. 		}
    80. 

  80. 	}
    81. 

  81. 	return NULL;
    82. 

  82. }
    83. 

  83. 

  84. static struct xfrm_state *
    85. 

  85. __xfrm6_find_acq(u8 mode, u32 reqid, u8 proto, 
    86. 

  86. 		 xfrm_address_t *daddr, xfrm_address_t *saddr, 
    87. 

  87. 		 int create)
    88. 

  88. {
    89. 

  89. 	struct xfrm_state *x, *x0;
    90. 

  90. 	unsigned h = __xfrm6_dst_hash(daddr);
    91. 

  91. 

  92. 	x0 = NULL;
    93. 

  93. 

  94. 	list_for_each_entry(x, xfrm6_state_afinfo.state_bydst+h, bydst) {
    95. 

  95. 		if (x->props.family == AF_INET6 &&
    96. 

  96. 		    ipv6_addr_equal((struct in6_addr *)daddr, (struct in6_addr *)x->id.daddr.a6) &&
    97. 

  97. 		    mode == x->props.mode &&
    98. 

  98. 		    proto == x->id.proto &&
    99. 

  99. 		    ipv6_addr_equal((struct in6_addr *)saddr, (struct in6_addr *)x->props.saddr.a6) &&
    100. 

  100. 		    reqid == x->props.reqid &&
    101. 

  101. 		    x->km.state == XFRM_STATE_ACQ &&
    102. 

  102. 		    !x->id.spi) {
    103. 

  103. 			    x0 = x;
    104. 

  104. 			    break;
    105. 

  105. 		    }
    106. 

  106. 	}
    107. 

  107. 	if (!x0 && create && (x0 = xfrm_state_alloc()) != NULL) {
    108. 

  108. 		ipv6_addr_copy((struct in6_addr *)x0->sel.daddr.a6,
    109. 

  109. 			       (struct in6_addr *)daddr);
    110. 

  110. 		ipv6_addr_copy((struct in6_addr *)x0->sel.saddr.a6,
    111. 

  111. 			       (struct in6_addr *)saddr);
    112. 

  112. 		x0->sel.prefixlen_d = 128;
    113. 

  113. 		x0->sel.prefixlen_s = 128;
    114. 

  114. 		ipv6_addr_copy((struct in6_addr *)x0->props.saddr.a6,
    115. 

  115. 			       (struct in6_addr *)saddr);
    116. 

  116. 		x0->km.state = XFRM_STATE_ACQ;
    117. 

  117. 		ipv6_addr_copy((struct in6_addr *)x0->id.daddr.a6,
    118. 

  118. 			       (struct in6_addr *)daddr);
    119. 

  119. 		x0->id.proto = proto;
    120. 

  120. 		x0->props.family = AF_INET6;
    121. 

  121. 		x0->props.mode = mode;
    122. 

  122. 		x0->props.reqid = reqid;
    123. 

  123. 		x0->lft.hard_add_expires_seconds = XFRM_ACQ_EXPIRES;
    124. 

  124. 		xfrm_state_hold(x0);
    125. 

  125. 		x0->timer.expires = jiffies + XFRM_ACQ_EXPIRES*HZ;
    126. 

  126. 		add_timer(&x0->timer);
    127. 

  127. 		xfrm_state_hold(x0);
    128. 

  128. 		list_add_tail(&x0->bydst, xfrm6_state_afinfo.state_bydst+h);
    129. 

  129. 		wake_up(&km_waitq);
    130. 

  130. 	}
    131. 

  131. 	if (x0)
    132. 

  132. 		xfrm_state_hold(x0);
    133. 

  133. 	return x0;
    134. 

  134. }
    135. 

  135. 

  136. static struct xfrm_state_afinfo xfrm6_state_afinfo = {
    137. 

  137. 	.family			= AF_INET6,
    138. 

  138. 	.lock			= RW_LOCK_UNLOCKED,
    139. 

  139. 	.init_tempsel		= __xfrm6_init_tempsel,
    140. 

  140. 	.state_lookup		= __xfrm6_state_lookup,
    141. 

  141. 	.find_acq		= __xfrm6_find_acq,
    142. 

  142. };
    143. 

  143. 

  144. void __init xfrm6_state_init(void)
    145. 

  145. {
    146. 

  146. 	xfrm_state_register_afinfo(&xfrm6_state_afinfo);
    147. 

  147. }
    148. 

  148. 

  149. void xfrm6_state_fini(void)
    150. 

  150. {
    151. 

  151. 	xfrm_state_unregister_afinfo(&xfrm6_state_afinfo);
    152. 

  152. }
    153. 

  153.