mk-rootfs.sh

hc

2023-12-11 072de836f53be56a70cecf70b43ae43b7ce17376

 kernel/net/ipv4/route.c
..
..
@@ -1,3 +1,4 @@
1
+// SPDX-License-Identifier: GPL-2.0-or-later
1
2
 /*
2
3
  * INET		An implementation of the TCP/IP protocol suite for the LINUX
3
4
  *		operating system.  INET is implemented using the  BSD Socket
..
..
@@ -55,11 +56,6 @@
55
56
  *	Eric Dumazet		:	hashed spinlocks and rt_check_expire() fixes.
56
57
  * 	Ilia Sotnikov		:	Ignore TOS on PMTUD and Redirect
57
58
  * 	Ilia Sotnikov		:	Removed TOS from hash calculations
58
- *
59
- *		This program is free software; you can redistribute it and/or
60
- *		modify it under the terms of the GNU General Public License
61
- *		as published by the Free Software Foundation; either version
62
- *		2 of the License, or (at your option) any later version.
63
59
  */
64
60
 
65
61
 #define pr_fmt(fmt) "IPv4: " fmt
..
..
@@ -70,7 +66,7 @@
70
66
 #include <linux/types.h>
71
67
 #include <linux/kernel.h>
72
68
 #include <linux/mm.h>
73
-#include <linux/bootmem.h>
69
+#include <linux/memblock.h>
74
70
 #include <linux/string.h>
75
71
 #include <linux/socket.h>
76
72
 #include <linux/sockios.h>
..
..
@@ -100,6 +96,7 @@
100
96
 #include <net/inetpeer.h>
101
97
 #include <net/sock.h>
102
98
 #include <net/ip_fib.h>
99
+#include <net/nexthop.h>
103
100
 #include <net/arp.h>
104
101
 #include <net/tcp.h>
105
102
 #include <net/icmp.h>
..
..
@@ -241,11 +238,11 @@
241
238
 	return seq_open(file, &rt_cache_seq_ops);
242
239
 }
243
240
 
244
-static const struct file_operations rt_cache_seq_fops = {
245
-	.open	 = rt_cache_seq_open,
246
-	.read	 = seq_read,
247
-	.llseek	 = seq_lseek,
248
-	.release = seq_release,
241
+static const struct proc_ops rt_cache_proc_ops = {
242
+	.proc_open	= rt_cache_seq_open,
243
+	.proc_read	= seq_read,
244
+	.proc_lseek	= seq_lseek,
245
+	.proc_release	= seq_release,
249
246
 };
250
247
 
251
248
 
..
..
@@ -332,11 +329,11 @@
332
329
 	return seq_open(file, &rt_cpu_seq_ops);
333
330
 }
334
331
 
335
-static const struct file_operations rt_cpu_seq_fops = {
336
-	.open	 = rt_cpu_seq_open,
337
-	.read	 = seq_read,
338
-	.llseek	 = seq_lseek,
339
-	.release = seq_release,
332
+static const struct proc_ops rt_cpu_proc_ops = {
333
+	.proc_open	= rt_cpu_seq_open,
334
+	.proc_read	= seq_read,
335
+	.proc_lseek	= seq_lseek,
336
+	.proc_release	= seq_release,
340
337
 };
341
338
 
342
339
 #ifdef CONFIG_IP_ROUTE_CLASSID
..
..
@@ -370,12 +367,12 @@
370
367
 	struct proc_dir_entry *pde;
371
368
 
372
369
 	pde = proc_create("rt_cache", 0444, net->proc_net,
373
-			  &rt_cache_seq_fops);
370
+			  &rt_cache_proc_ops);
374
371
 	if (!pde)
375
372
 		goto err1;
376
373
 
377
374
 	pde = proc_create("rt_cache", 0444,
378
-			  net->proc_net_stat, &rt_cpu_seq_fops);
375
+			  net->proc_net_stat, &rt_cpu_proc_ops);
379
376
 	if (!pde)
380
377
 		goto err2;
381
378
 
..
..
@@ -437,37 +434,46 @@
437
434
 					   struct sk_buff *skb,
438
435
 					   const void *daddr)
439
436
 {
437
+	const struct rtable *rt = container_of(dst, struct rtable, dst);
440
438
 	struct net_device *dev = dst->dev;
441
-	const __be32 *pkey = daddr;
442
-	const struct rtable *rt;
443
439
 	struct neighbour *n;
444
440
 
445
-	rt = (const struct rtable *) dst;
446
-	if (rt->rt_gateway)
447
-		pkey = (const __be32 *) &rt->rt_gateway;
448
-	else if (skb)
449
-		pkey = &ip_hdr(skb)->daddr;
441
+	rcu_read_lock_bh();
450
442
 
451
-	n = __ipv4_neigh_lookup(dev, *(__force u32 *)pkey);
452
-	if (n)
453
-		return n;
454
-	return neigh_create(&arp_tbl, pkey, dev);
443
+	if (likely(rt->rt_gw_family == AF_INET)) {
444
+		n = ip_neigh_gw4(dev, rt->rt_gw4);
445
+	} else if (rt->rt_gw_family == AF_INET6) {
446
+		n = ip_neigh_gw6(dev, &rt->rt_gw6);
447
+        } else {
448
+		__be32 pkey;
449
+
450
+		pkey = skb ? ip_hdr(skb)->daddr : *((__be32 *) daddr);
451
+		n = ip_neigh_gw4(dev, pkey);
452
+	}
453
+
454
+	if (!IS_ERR(n) && !refcount_inc_not_zero(&n->refcnt))
455
+		n = NULL;
456
+
457
+	rcu_read_unlock_bh();
458
+
459
+	return n;
455
460
 }
456
461
 
457
462
 static void ipv4_confirm_neigh(const struct dst_entry *dst, const void *daddr)
458
463
 {
464
+	const struct rtable *rt = container_of(dst, struct rtable, dst);
459
465
 	struct net_device *dev = dst->dev;
460
466
 	const __be32 *pkey = daddr;
461
-	const struct rtable *rt;
462
467
 
463
-	rt = (const struct rtable *)dst;
464
-	if (rt->rt_gateway)
465
-		pkey = (const __be32 *)&rt->rt_gateway;
466
-	else if (!daddr ||
468
+	if (rt->rt_gw_family == AF_INET) {
469
+		pkey = (const __be32 *)&rt->rt_gw4;
470
+	} else if (rt->rt_gw_family == AF_INET6) {
471
+		return __ipv6_confirm_neigh_stub(dev, &rt->rt_gw6);
472
+	} else if (!daddr ||
467
473
 		 (rt->rt_flags &
468
-		  (RTCF_MULTICAST | RTCF_BROADCAST | RTCF_LOCAL)))
474
+		  (RTCF_MULTICAST | RTCF_BROADCAST | RTCF_LOCAL))) {
469
475
 		return;
470
-
476
+	}
471
477
 	__ipv4_confirm_neigh(dev, *(__force u32 *)pkey);
472
478
 }
473
479
 
..
..
@@ -522,6 +528,15 @@
522
528
 	iph->id = htons(id);
523
529
 }
524
530
 EXPORT_SYMBOL(__ip_select_ident);
531
+
532
+static void ip_rt_fix_tos(struct flowi4 *fl4)
533
+{
534
+	__u8 tos = RT_FL_TOS(fl4);
535
+
536
+	fl4->flowi4_tos = tos & IPTOS_RT_MASK;
537
+	fl4->flowi4_scope = tos & RTO_ONLINK ?
538
+			    RT_SCOPE_LINK : RT_SCOPE_UNIVERSE;
539
+}
525
540
 
526
541
 static void __build_flow_key(const struct net *net, struct flowi4 *fl4,
527
542
 			     const struct sock *sk,
..
..
@@ -643,13 +658,15 @@
643
658
 
644
659
 	if (fnhe->fnhe_gw) {
645
660
 		rt->rt_flags |= RTCF_REDIRECTED;
646
-		rt->rt_gateway = fnhe->fnhe_gw;
647
661
 		rt->rt_uses_gateway = 1;
662
+		rt->rt_gw_family = AF_INET;
663
+		rt->rt_gw4 = fnhe->fnhe_gw;
648
664
 	}
649
665
 }
650
666
 
651
-static void update_or_create_fnhe(struct fib_nh *nh, __be32 daddr, __be32 gw,
652
-				  u32 pmtu, bool lock, unsigned long expires)
667
+static void update_or_create_fnhe(struct fib_nh_common *nhc, __be32 daddr,
668
+				  __be32 gw, u32 pmtu, bool lock,
669
+				  unsigned long expires)
653
670
 {
654
671
 	struct fnhe_hash_bucket *hash;
655
672
 	struct fib_nh_exception *fnhe;
..
..
@@ -658,17 +675,17 @@
658
675
 	unsigned int i;
659
676
 	int depth;
660
677
 
661
-	genid = fnhe_genid(dev_net(nh->nh_dev));
678
+	genid = fnhe_genid(dev_net(nhc->nhc_dev));
662
679
 	hval = fnhe_hashfun(daddr);
663
680
 
664
681
 	spin_lock_bh(&fnhe_lock);
665
682
 
666
-	hash = rcu_dereference(nh->nh_exceptions);
683
+	hash = rcu_dereference(nhc->nhc_exceptions);
667
684
 	if (!hash) {
668
685
 		hash = kcalloc(FNHE_HASH_SIZE, sizeof(*hash), GFP_ATOMIC);
669
686
 		if (!hash)
670
687
 			goto out_unlock;
671
-		rcu_assign_pointer(nh->nh_exceptions, hash);
688
+		rcu_assign_pointer(nhc->nhc_exceptions, hash);
672
689
 	}
673
690
 
674
691
 	hash += hval;
..
..
@@ -727,13 +744,13 @@
727
744
 		 * stale, so anyone caching it rechecks if this exception
728
745
 		 * applies to them.
729
746
 		 */
730
-		rt = rcu_dereference(nh->nh_rth_input);
747
+		rt = rcu_dereference(nhc->nhc_rth_input);
731
748
 		if (rt)
732
749
 			rt->dst.obsolete = DST_OBSOLETE_KILL;
733
750
 
734
751
 		for_each_possible_cpu(i) {
735
752
 			struct rtable __rcu **prt;
736
-			prt = per_cpu_ptr(nh->nh_pcpu_rth_output, i);
753
+			prt = per_cpu_ptr(nhc->nhc_pcpu_rth_output, i);
737
754
 			rt = rcu_dereference(*prt);
738
755
 			if (rt)
739
756
 				rt->dst.obsolete = DST_OBSOLETE_KILL;
..
..
@@ -768,7 +785,7 @@
768
785
 		return;
769
786
 	}
770
787
 
771
-	if (rt->rt_gateway != old_gw)
788
+	if (rt->rt_gw_family != AF_INET || rt->rt_gw4 != old_gw)
772
789
 		return;
773
790
 
774
791
 	in_dev = __in_dev_get_rcu(dev);
..
..
@@ -799,11 +816,11 @@
799
816
 			neigh_event_send(n, NULL);
800
817
 		} else {
801
818
 			if (fib_lookup(net, fl4, &res, 0) == 0) {
802
-				struct fib_nh *nh;
819
+				struct fib_nh_common *nhc;
803
820
 
804
821
 				fib_select_path(net, &res, fl4, skb);
805
-				nh = &FIB_RES_NH(res);
806
-				update_or_create_fnhe(nh, fl4->daddr, new_gw,
822
+				nhc = FIB_RES_NHC(res);
823
+				update_or_create_fnhe(nhc, fl4->daddr, new_gw,
807
824
 						0, false,
808
825
 						jiffies + ip_rt_gc_timeout);
809
826
 			}
..
..
@@ -845,6 +862,7 @@
845
862
 	rt = (struct rtable *) dst;
846
863
 
847
864
 	__build_flow_key(net, &fl4, sk, iph, oif, tos, prot, mark, 0);
865
+	ip_rt_fix_tos(&fl4);
848
866
 	__ip_do_redirect(rt, skb, &fl4, true);
849
867
 }
850
868
 
..
..
@@ -1029,13 +1047,14 @@
1029
1047
 {
1030
1048
 	struct dst_entry *dst = &rt->dst;
1031
1049
 	struct net *net = dev_net(dst->dev);
1032
-	u32 old_mtu = ipv4_mtu(dst);
1033
1050
 	struct fib_result res;
1034
1051
 	bool lock = false;
1052
+	u32 old_mtu;
1035
1053
 
1036
1054
 	if (ip_mtu_locked(dst))
1037
1055
 		return;
1038
1056
 
1057
+	old_mtu = ipv4_mtu(dst);
1039
1058
 	if (old_mtu < mtu)
1040
1059
 		return;
1041
1060
 
..
..
@@ -1050,11 +1069,11 @@
1050
1069
 
1051
1070
 	rcu_read_lock();
1052
1071
 	if (fib_lookup(net, fl4, &res, 0) == 0) {
1053
-		struct fib_nh *nh;
1072
+		struct fib_nh_common *nhc;
1054
1073
 
1055
1074
 		fib_select_path(net, &res, fl4, NULL);
1056
-		nh = &FIB_RES_NH(res);
1057
-		update_or_create_fnhe(nh, fl4->daddr, 0, mtu, lock,
1075
+		nhc = FIB_RES_NHC(res);
1076
+		update_or_create_fnhe(nhc, fl4->daddr, 0, mtu, lock,
1058
1077
 				      jiffies + ip_rt_mtu_expires);
1059
1078
 	}
1060
1079
 	rcu_read_unlock();
..
..
@@ -1068,21 +1087,25 @@
1068
1087
 	struct flowi4 fl4;
1069
1088
 
1070
1089
 	ip_rt_build_flow_key(&fl4, sk, skb);
1090
+	ip_rt_fix_tos(&fl4);
1091
+
1092
+	/* Don't make lookup fail for bridged encapsulations */
1093
+	if (skb && netif_is_any_bridge_port(skb->dev))
1094
+		fl4.flowi4_oif = 0;
1095
+
1071
1096
 	__ip_rt_update_pmtu(rt, &fl4, mtu);
1072
1097
 }
1073
1098
 
1074
1099
 void ipv4_update_pmtu(struct sk_buff *skb, struct net *net, u32 mtu,
1075
-		      int oif, u32 mark, u8 protocol, int flow_flags)
1100
+		      int oif, u8 protocol)
1076
1101
 {
1077
-	const struct iphdr *iph = (const struct iphdr *) skb->data;
1102
+	const struct iphdr *iph = (const struct iphdr *)skb->data;
1078
1103
 	struct flowi4 fl4;
1079
1104
 	struct rtable *rt;
1080
-
1081
-	if (!mark)
1082
-		mark = IP4_REPLY_MARK(net, skb->mark);
1105
+	u32 mark = IP4_REPLY_MARK(net, skb->mark);
1083
1106
 
1084
1107
 	__build_flow_key(net, &fl4, NULL, iph, oif,
1085
-			 RT_TOS(iph->tos), protocol, mark, flow_flags);
1108
+			 RT_TOS(iph->tos), protocol, mark, 0);
1086
1109
 	rt = __ip_route_output_key(net, &fl4);
1087
1110
 	if (!IS_ERR(rt)) {
1088
1111
 		__ip_rt_update_pmtu(rt, &fl4, mtu);
..
..
@@ -1093,7 +1116,7 @@
1093
1116
 
1094
1117
 static void __ipv4_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, u32 mtu)
1095
1118
 {
1096
-	const struct iphdr *iph = (const struct iphdr *) skb->data;
1119
+	const struct iphdr *iph = (const struct iphdr *)skb->data;
1097
1120
 	struct flowi4 fl4;
1098
1121
 	struct rtable *rt;
1099
1122
 
..
..
@@ -1111,7 +1134,7 @@
1111
1134
 
1112
1135
 void ipv4_sk_update_pmtu(struct sk_buff *skb, struct sock *sk, u32 mtu)
1113
1136
 {
1114
-	const struct iphdr *iph = (const struct iphdr *) skb->data;
1137
+	const struct iphdr *iph = (const struct iphdr *)skb->data;
1115
1138
 	struct flowi4 fl4;
1116
1139
 	struct rtable *rt;
1117
1140
 	struct dst_entry *odst = NULL;
..
..
@@ -1139,9 +1162,11 @@
1139
1162
 			goto out;
1140
1163
 
1141
1164
 		new = true;
1165
+	} else {
1166
+		ip_rt_fix_tos(&fl4);
1142
1167
 	}
1143
1168
 
1144
-	__ip_rt_update_pmtu((struct rtable *) xfrm_dst_path(&rt->dst), &fl4, mtu);
1169
+	__ip_rt_update_pmtu((struct rtable *)xfrm_dst_path(&rt->dst), &fl4, mtu);
1145
1170
 
1146
1171
 	if (!dst_check(&rt->dst, 0)) {
1147
1172
 		if (new)
..
..
@@ -1164,14 +1189,14 @@
1164
1189
 EXPORT_SYMBOL_GPL(ipv4_sk_update_pmtu);
1165
1190
 
1166
1191
 void ipv4_redirect(struct sk_buff *skb, struct net *net,
1167
-		   int oif, u32 mark, u8 protocol, int flow_flags)
1192
+		   int oif, u8 protocol)
1168
1193
 {
1169
-	const struct iphdr *iph = (const struct iphdr *) skb->data;
1194
+	const struct iphdr *iph = (const struct iphdr *)skb->data;
1170
1195
 	struct flowi4 fl4;
1171
1196
 	struct rtable *rt;
1172
1197
 
1173
1198
 	__build_flow_key(net, &fl4, NULL, iph, oif,
1174
-			 RT_TOS(iph->tos), protocol, mark, flow_flags);
1199
+			 RT_TOS(iph->tos), protocol, 0, 0);
1175
1200
 	rt = __ip_route_output_key(net, &fl4);
1176
1201
 	if (!IS_ERR(rt)) {
1177
1202
 		__ip_do_redirect(rt, skb, &fl4, false);
..
..
@@ -1182,7 +1207,7 @@
1182
1207
 
1183
1208
 void ipv4_sk_redirect(struct sk_buff *skb, struct sock *sk)
1184
1209
 {
1185
-	const struct iphdr *iph = (const struct iphdr *) skb->data;
1210
+	const struct iphdr *iph = (const struct iphdr *)skb->data;
1186
1211
 	struct flowi4 fl4;
1187
1212
 	struct rtable *rt;
1188
1213
 	struct net *net = sock_net(sk);
..
..
@@ -1206,7 +1231,7 @@
1206
1231
 	 *
1207
1232
 	 * When a PMTU/redirect information update invalidates a route,
1208
1233
 	 * this is indicated by setting obsolete to DST_OBSOLETE_KILL or
1209
-	 * DST_OBSOLETE_DEAD by dst_free().
1234
+	 * DST_OBSOLETE_DEAD.
1210
1235
 	 */
1211
1236
 	if (dst->obsolete != DST_OBSOLETE_FORCE_CHK || rt_is_expired(rt))
1212
1237
 		return NULL;
..
..
@@ -1279,22 +1304,19 @@
1279
1304
 		src = ip_hdr(skb)->saddr;
1280
1305
 	else {
1281
1306
 		struct fib_result res;
1282
-		struct flowi4 fl4;
1283
-		struct iphdr *iph;
1284
-
1285
-		iph = ip_hdr(skb);
1286
-
1287
-		memset(&fl4, 0, sizeof(fl4));
1288
-		fl4.daddr = iph->daddr;
1289
-		fl4.saddr = iph->saddr;
1290
-		fl4.flowi4_tos = RT_TOS(iph->tos);
1291
-		fl4.flowi4_oif = rt->dst.dev->ifindex;
1292
-		fl4.flowi4_iif = skb->dev->ifindex;
1293
-		fl4.flowi4_mark = skb->mark;
1307
+		struct iphdr *iph = ip_hdr(skb);
1308
+		struct flowi4 fl4 = {
1309
+			.daddr = iph->daddr,
1310
+			.saddr = iph->saddr,
1311
+			.flowi4_tos = RT_TOS(iph->tos),
1312
+			.flowi4_oif = rt->dst.dev->ifindex,
1313
+			.flowi4_iif = skb->dev->ifindex,
1314
+			.flowi4_mark = skb->mark,
1315
+		};
1294
1316
 
1295
1317
 		rcu_read_lock();
1296
1318
 		if (fib_lookup(dev_net(rt->dst.dev), &fl4, &res, 0) == 0)
1297
-			src = FIB_RES_PREFSRC(dev_net(rt->dst.dev), res);
1319
+			src = fib_result_prefsrc(dev_net(rt->dst.dev), &res);
1298
1320
 		else
1299
1321
 			src = inet_select_addr(rt->dst.dev,
1300
1322
 					       rt_nexthop(rt, iph->daddr),
..
..
@@ -1325,7 +1347,7 @@
1325
1347
 
1326
1348
 static unsigned int ipv4_mtu(const struct dst_entry *dst)
1327
1349
 {
1328
-	const struct rtable *rt = (const struct rtable *) dst;
1350
+	const struct rtable *rt = (const struct rtable *)dst;
1329
1351
 	unsigned int mtu = rt->rt_pmtu;
1330
1352
 
1331
1353
 	if (!mtu || time_after_eq(jiffies, rt->dst.expires))
..
..
@@ -1347,7 +1369,7 @@
1347
1369
 	return mtu - lwtunnel_headroom(dst->lwtstate, mtu);
1348
1370
 }
1349
1371
 
1350
-static void ip_del_fnhe(struct fib_nh *nh, __be32 daddr)
1372
+static void ip_del_fnhe(struct fib_nh_common *nhc, __be32 daddr)
1351
1373
 {
1352
1374
 	struct fnhe_hash_bucket *hash;
1353
1375
 	struct fib_nh_exception *fnhe, __rcu **fnhe_p;
..
..
@@ -1355,7 +1377,7 @@
1355
1377
 
1356
1378
 	spin_lock_bh(&fnhe_lock);
1357
1379
 
1358
-	hash = rcu_dereference_protected(nh->nh_exceptions,
1380
+	hash = rcu_dereference_protected(nhc->nhc_exceptions,
1359
1381
 					 lockdep_is_held(&fnhe_lock));
1360
1382
 	hash += hval;
1361
1383
 
..
..
@@ -1381,9 +1403,10 @@
1381
1403
 	spin_unlock_bh(&fnhe_lock);
1382
1404
 }
1383
1405
 
1384
-static struct fib_nh_exception *find_exception(struct fib_nh *nh, __be32 daddr)
1406
+static struct fib_nh_exception *find_exception(struct fib_nh_common *nhc,
1407
+					       __be32 daddr)
1385
1408
 {
1386
-	struct fnhe_hash_bucket *hash = rcu_dereference(nh->nh_exceptions);
1409
+	struct fnhe_hash_bucket *hash = rcu_dereference(nhc->nhc_exceptions);
1387
1410
 	struct fib_nh_exception *fnhe;
1388
1411
 	u32 hval;
1389
1412
 
..
..
@@ -1397,7 +1420,7 @@
1397
1420
 		if (fnhe->fnhe_daddr == daddr) {
1398
1421
 			if (fnhe->fnhe_expires &&
1399
1422
 			    time_after(jiffies, fnhe->fnhe_expires)) {
1400
-				ip_del_fnhe(nh, daddr);
1423
+				ip_del_fnhe(nhc, daddr);
1401
1424
 				break;
1402
1425
 			}
1403
1426
 			return fnhe;
..
..
@@ -1414,19 +1437,19 @@
1414
1437
 
1415
1438
 u32 ip_mtu_from_fib_result(struct fib_result *res, __be32 daddr)
1416
1439
 {
1440
+	struct fib_nh_common *nhc = res->nhc;
1441
+	struct net_device *dev = nhc->nhc_dev;
1417
1442
 	struct fib_info *fi = res->fi;
1418
-	struct fib_nh *nh = &fi->fib_nh[res->nh_sel];
1419
-	struct net_device *dev = nh->nh_dev;
1420
1443
 	u32 mtu = 0;
1421
1444
 
1422
-	if (dev_net(dev)->ipv4.sysctl_ip_fwd_use_pmtu ||
1445
+	if (READ_ONCE(dev_net(dev)->ipv4.sysctl_ip_fwd_use_pmtu) ||
1423
1446
 	    fi->fib_metrics->metrics[RTAX_LOCK - 1] & (1 << RTAX_MTU))
1424
1447
 		mtu = fi->fib_mtu;
1425
1448
 
1426
1449
 	if (likely(!mtu)) {
1427
1450
 		struct fib_nh_exception *fnhe;
1428
1451
 
1429
-		fnhe = find_exception(nh, daddr);
1452
+		fnhe = find_exception(nhc, daddr);
1430
1453
 		if (fnhe && !time_after_eq(jiffies, fnhe->fnhe_expires))
1431
1454
 			mtu = fnhe->fnhe_pmtu;
1432
1455
 	}
..
..
@@ -1434,7 +1457,7 @@
1434
1457
 	if (likely(!mtu))
1435
1458
 		mtu = min(READ_ONCE(dev->mtu), IP_MAX_MTU);
1436
1459
 
1437
-	return mtu - lwtunnel_headroom(nh->nh_lwtstate, mtu);
1460
+	return mtu - lwtunnel_headroom(nhc->nhc_lwtstate, mtu);
1438
1461
 }
1439
1462
 
1440
1463
 static bool rt_bind_exception(struct rtable *rt, struct fib_nh_exception *fnhe,
..
..
@@ -1465,8 +1488,10 @@
1465
1488
 			orig = NULL;
1466
1489
 		}
1467
1490
 		fill_route_from_fnhe(rt, fnhe);
1468
-		if (!rt->rt_gateway)
1469
-			rt->rt_gateway = daddr;
1491
+		if (!rt->rt_gw4) {
1492
+			rt->rt_gw4 = daddr;
1493
+			rt->rt_gw_family = AF_INET;
1494
+		}
1470
1495
 
1471
1496
 		if (do_cache) {
1472
1497
 			dst_hold(&rt->dst);
..
..
@@ -1485,15 +1510,15 @@
1485
1510
 	return ret;
1486
1511
 }
1487
1512
 
1488
-static bool rt_cache_route(struct fib_nh *nh, struct rtable *rt)
1513
+static bool rt_cache_route(struct fib_nh_common *nhc, struct rtable *rt)
1489
1514
 {
1490
1515
 	struct rtable *orig, *prev, **p;
1491
1516
 	bool ret = true;
1492
1517
 
1493
1518
 	if (rt_is_input_route(rt)) {
1494
-		p = (struct rtable **)&nh->nh_rth_input;
1519
+		p = (struct rtable **)&nhc->nhc_rth_input;
1495
1520
 	} else {
1496
-		p = (struct rtable **)raw_cpu_ptr(nh->nh_pcpu_rth_output);
1521
+		p = (struct rtable **)raw_cpu_ptr(nhc->nhc_pcpu_rth_output);
1497
1522
 	}
1498
1523
 	orig = *p;
1499
1524
 
..
..
@@ -1546,18 +1571,14 @@
1546
1571
 
1547
1572
 static void ipv4_dst_destroy(struct dst_entry *dst)
1548
1573
 {
1549
-	struct dst_metrics *p = (struct dst_metrics *)DST_METRICS_PTR(dst);
1550
1574
 	struct rtable *rt = (struct rtable *)dst;
1551
1575
 
1552
-	if (p != &dst_default_metrics && refcount_dec_and_test(&p->refcnt))
1553
-		kfree(p);
1554
-
1576
+	ip_dst_metrics_put(dst);
1555
1577
 	rt_del_uncached_list(rt);
1556
1578
 }
1557
1579
 
1558
1580
 void rt_flush_dev(struct net_device *dev)
1559
1581
 {
1560
-	struct net *net = dev_net(dev);
1561
1582
 	struct rtable *rt;
1562
1583
 	int cpu;
1563
1584
 
..
..
@@ -1568,7 +1589,7 @@
1568
1589
 		list_for_each_entry(rt, &ul->head, rt_uncached) {
1569
1590
 			if (rt->dst.dev != dev)
1570
1591
 				continue;
1571
-			rt->dst.dev = net->loopback_dev;
1592
+			rt->dst.dev = blackhole_netdev;
1572
1593
 			dev_hold(rt->dst.dev);
1573
1594
 			dev_put(dev);
1574
1595
 		}
..
..
@@ -1592,33 +1613,43 @@
1592
1613
 	bool cached = false;
1593
1614
 
1594
1615
 	if (fi) {
1595
-		struct fib_nh *nh = &FIB_RES_NH(*res);
1616
+		struct fib_nh_common *nhc = FIB_RES_NHC(*res);
1596
1617
 
1597
-		if (nh->nh_gw && nh->nh_scope == RT_SCOPE_LINK) {
1598
-			rt->rt_gateway = nh->nh_gw;
1618
+		if (nhc->nhc_gw_family && nhc->nhc_scope == RT_SCOPE_LINK) {
1599
1619
 			rt->rt_uses_gateway = 1;
1620
+			rt->rt_gw_family = nhc->nhc_gw_family;
1621
+			/* only INET and INET6 are supported */
1622
+			if (likely(nhc->nhc_gw_family == AF_INET))
1623
+				rt->rt_gw4 = nhc->nhc_gw.ipv4;
1624
+			else
1625
+				rt->rt_gw6 = nhc->nhc_gw.ipv6;
1600
1626
 		}
1601
-		dst_init_metrics(&rt->dst, fi->fib_metrics->metrics, true);
1602
-		if (fi->fib_metrics != &dst_default_metrics) {
1603
-			rt->dst._metrics |= DST_METRICS_REFCOUNTED;
1604
-			refcount_inc(&fi->fib_metrics->refcnt);
1605
-		}
1627
+
1628
+		ip_dst_init_metrics(&rt->dst, fi->fib_metrics);
1629
+
1606
1630
 #ifdef CONFIG_IP_ROUTE_CLASSID
1607
-		rt->dst.tclassid = nh->nh_tclassid;
1631
+		if (nhc->nhc_family == AF_INET) {
1632
+			struct fib_nh *nh;
1633
+
1634
+			nh = container_of(nhc, struct fib_nh, nh_common);
1635
+			rt->dst.tclassid = nh->nh_tclassid;
1636
+		}
1608
1637
 #endif
1609
-		rt->dst.lwtstate = lwtstate_get(nh->nh_lwtstate);
1638
+		rt->dst.lwtstate = lwtstate_get(nhc->nhc_lwtstate);
1610
1639
 		if (unlikely(fnhe))
1611
1640
 			cached = rt_bind_exception(rt, fnhe, daddr, do_cache);
1612
1641
 		else if (do_cache)
1613
-			cached = rt_cache_route(nh, rt);
1642
+			cached = rt_cache_route(nhc, rt);
1614
1643
 		if (unlikely(!cached)) {
1615
1644
 			/* Routes we intend to cache in nexthop exception or
1616
1645
 			 * FIB nexthop have the DST_NOCACHE bit clear.
1617
1646
 			 * However, if we are unsuccessful at storing this
1618
1647
 			 * route into the cache we really need to set it.
1619
1648
 			 */
1620
-			if (!rt->rt_gateway)
1621
-				rt->rt_gateway = daddr;
1649
+			if (!rt->rt_gw4) {
1650
+				rt->rt_gw_family = AF_INET;
1651
+				rt->rt_gw4 = daddr;
1652
+			}
1622
1653
 			rt_add_uncached_list(rt);
1623
1654
 		}
1624
1655
 	} else
..
..
@@ -1634,12 +1665,11 @@
1634
1665
 
1635
1666
 struct rtable *rt_dst_alloc(struct net_device *dev,
1636
1667
 			    unsigned int flags, u16 type,
1637
-			    bool nopolicy, bool noxfrm, bool will_cache)
1668
+			    bool nopolicy, bool noxfrm)
1638
1669
 {
1639
1670
 	struct rtable *rt;
1640
1671
 
1641
1672
 	rt = dst_alloc(&ipv4_dst_ops, dev, 1, DST_OBSOLETE_FORCE_CHK,
1642
-		       (will_cache ? 0 : DST_HOST) |
1643
1673
 		       (nopolicy ? DST_NOPOLICY : 0) |
1644
1674
 		       (noxfrm ? DST_NOXFRM : 0));
1645
1675
 
..
..
@@ -1651,8 +1681,9 @@
1651
1681
 		rt->rt_iif = 0;
1652
1682
 		rt->rt_pmtu = 0;
1653
1683
 		rt->rt_mtu_locked = 0;
1654
-		rt->rt_gateway = 0;
1655
1684
 		rt->rt_uses_gateway = 0;
1685
+		rt->rt_gw_family = 0;
1686
+		rt->rt_gw4 = 0;
1656
1687
 		INIT_LIST_HEAD(&rt->rt_uncached);
1657
1688
 
1658
1689
 		rt->dst.output = ip_output;
..
..
@@ -1663,6 +1694,38 @@
1663
1694
 	return rt;
1664
1695
 }
1665
1696
 EXPORT_SYMBOL(rt_dst_alloc);
1697
+
1698
+struct rtable *rt_dst_clone(struct net_device *dev, struct rtable *rt)
1699
+{
1700
+	struct rtable *new_rt;
1701
+
1702
+	new_rt = dst_alloc(&ipv4_dst_ops, dev, 1, DST_OBSOLETE_FORCE_CHK,
1703
+			   rt->dst.flags);
1704
+
1705
+	if (new_rt) {
1706
+		new_rt->rt_genid = rt_genid_ipv4(dev_net(dev));
1707
+		new_rt->rt_flags = rt->rt_flags;
1708
+		new_rt->rt_type = rt->rt_type;
1709
+		new_rt->rt_is_input = rt->rt_is_input;
1710
+		new_rt->rt_iif = rt->rt_iif;
1711
+		new_rt->rt_pmtu = rt->rt_pmtu;
1712
+		new_rt->rt_mtu_locked = rt->rt_mtu_locked;
1713
+		new_rt->rt_gw_family = rt->rt_gw_family;
1714
+		if (rt->rt_gw_family == AF_INET)
1715
+			new_rt->rt_gw4 = rt->rt_gw4;
1716
+		else if (rt->rt_gw_family == AF_INET6)
1717
+			new_rt->rt_gw6 = rt->rt_gw6;
1718
+		INIT_LIST_HEAD(&new_rt->rt_uncached);
1719
+
1720
+		new_rt->dst.input = rt->dst.input;
1721
+		new_rt->dst.output = rt->dst.output;
1722
+		new_rt->dst.error = rt->dst.error;
1723
+		new_rt->dst.lastuse = jiffies;
1724
+		new_rt->dst.lwtstate = lwtstate_get(rt->dst.lwtstate);
1725
+	}
1726
+	return new_rt;
1727
+}
1728
+EXPORT_SYMBOL(rt_dst_clone);
1666
1729
 
1667
1730
 /* called in rcu_read_lock() section */
1668
1731
 int ip_mc_validate_source(struct sk_buff *skb, __be32 daddr, __be32 saddr,
..
..
@@ -1683,7 +1746,8 @@
1683
1746
 		return -EINVAL;
1684
1747
 
1685
1748
 	if (ipv4_is_zeronet(saddr)) {
1686
-		if (!ipv4_is_local_multicast(daddr))
1749
+		if (!ipv4_is_local_multicast(daddr) &&
1750
+		    ip_hdr(skb)->protocol != IPPROTO_IGMP)
1687
1751
 			return -EINVAL;
1688
1752
 	} else {
1689
1753
 		err = fib_validate_source(skb, saddr, 0, tos, 0, dev,
..
..
@@ -1712,7 +1776,7 @@
1712
1776
 		flags |= RTCF_LOCAL;
1713
1777
 
1714
1778
 	rth = rt_dst_alloc(dev_net(dev)->loopback_dev, flags, RTN_MULTICAST,
1715
-			   IN_DEV_CONF_GET(in_dev, NOPOLICY), false, false);
1779
+			   IN_DEV_ORCONF(in_dev, NOPOLICY), false);
1716
1780
 	if (!rth)
1717
1781
 		return -ENOBUFS;
1718
1782
 
..
..
@@ -1728,6 +1792,7 @@
1728
1792
 #endif
1729
1793
 	RT_CACHE_STAT_INC(in_slow_mc);
1730
1794
 
1795
+	skb_dst_drop(skb);
1731
1796
 	skb_dst_set(skb, &rth->dst);
1732
1797
 	return 0;
1733
1798
 }
..
..
@@ -1752,7 +1817,7 @@
1752
1817
 			print_hex_dump(KERN_WARNING, "ll header: ",
1753
1818
 				       DUMP_PREFIX_OFFSET, 16, 1,
1754
1819
 				       skb_mac_header(skb),
1755
-				       dev->hard_header_len, true);
1820
+				       dev->hard_header_len, false);
1756
1821
 		}
1757
1822
 	}
1758
1823
 #endif
..
..
@@ -1764,6 +1829,8 @@
1764
1829
 			   struct in_device *in_dev,
1765
1830
 			   __be32 daddr, __be32 saddr, u32 tos)
1766
1831
 {
1832
+	struct fib_nh_common *nhc = FIB_RES_NHC(*res);
1833
+	struct net_device *dev = nhc->nhc_dev;
1767
1834
 	struct fib_nh_exception *fnhe;
1768
1835
 	struct rtable *rth;
1769
1836
 	int err;
..
..
@@ -1772,7 +1839,7 @@
1772
1839
 	u32 itag = 0;
1773
1840
 
1774
1841
 	/* get a working reference to the output device */
1775
-	out_dev = __in_dev_get_rcu(FIB_RES_DEV(*res));
1842
+	out_dev = __in_dev_get_rcu(dev);
1776
1843
 	if (!out_dev) {
1777
1844
 		net_crit_ratelimited("Bug in ip_route_input_slow(). Please report.\n");
1778
1845
 		return -EINVAL;
..
..
@@ -1789,10 +1856,14 @@
1789
1856
 
1790
1857
 	do_cache = res->fi && !itag;
1791
1858
 	if (out_dev == in_dev && err && IN_DEV_TX_REDIRECTS(out_dev) &&
1792
-	    skb->protocol == htons(ETH_P_IP) &&
1793
-	    (IN_DEV_SHARED_MEDIA(out_dev) ||
1794
-	     inet_addr_onlink(out_dev, saddr, FIB_RES_GW(*res))))
1795
-		IPCB(skb)->flags |= IPSKB_DOREDIRECT;
1859
+	    skb->protocol == htons(ETH_P_IP)) {
1860
+		__be32 gw;
1861
+
1862
+		gw = nhc->nhc_gw_family == AF_INET ? nhc->nhc_gw.ipv4 : 0;
1863
+		if (IN_DEV_SHARED_MEDIA(out_dev) ||
1864
+		    inet_addr_onlink(out_dev, saddr, gw))
1865
+			IPCB(skb)->flags |= IPSKB_DOREDIRECT;
1866
+	}
1796
1867
 
1797
1868
 	if (skb->protocol != htons(ETH_P_IP)) {
1798
1869
 		/* Not IP (i.e. ARP). Do not create route, if it is
..
..
@@ -1809,12 +1880,12 @@
1809
1880
 		}
1810
1881
 	}
1811
1882
 
1812
-	fnhe = find_exception(&FIB_RES_NH(*res), daddr);
1883
+	fnhe = find_exception(nhc, daddr);
1813
1884
 	if (do_cache) {
1814
1885
 		if (fnhe)
1815
1886
 			rth = rcu_dereference(fnhe->fnhe_rth_input);
1816
1887
 		else
1817
-			rth = rcu_dereference(FIB_RES_NH(*res).nh_rth_input);
1888
+			rth = rcu_dereference(nhc->nhc_rth_input);
1818
1889
 		if (rt_cache_valid(rth)) {
1819
1890
 			skb_dst_set_noref(skb, &rth->dst);
1820
1891
 			goto out;
..
..
@@ -1822,8 +1893,8 @@
1822
1893
 	}
1823
1894
 
1824
1895
 	rth = rt_dst_alloc(out_dev->dev, 0, res->type,
1825
-			   IN_DEV_CONF_GET(in_dev, NOPOLICY),
1826
-			   IN_DEV_CONF_GET(out_dev, NOXFRM), do_cache);
1896
+			   IN_DEV_ORCONF(in_dev, NOPOLICY),
1897
+			   IN_DEV_ORCONF(out_dev, NOXFRM));
1827
1898
 	if (!rth) {
1828
1899
 		err = -ENOBUFS;
1829
1900
 		goto cleanup;
..
..
@@ -1869,10 +1940,7 @@
1869
1940
 	if (!icmph)
1870
1941
 		goto out;
1871
1942
 
1872
-	if (icmph->type != ICMP_DEST_UNREACH &&
1873
-	    icmph->type != ICMP_REDIRECT &&
1874
-	    icmph->type != ICMP_TIME_EXCEEDED &&
1875
-	    icmph->type != ICMP_PARAMETERPROB)
1943
+	if (!icmp_is_err(icmph->type))
1876
1944
 		goto out;
1877
1945
 
1878
1946
 	inner_iph = skb_header_pointer(skb,
..
..
@@ -1891,6 +1959,7 @@
1891
1959
 int fib_multipath_hash(const struct net *net, const struct flowi4 *fl4,
1892
1960
 		       const struct sk_buff *skb, struct flow_keys *flkeys)
1893
1961
 {
1962
+	u32 multipath_hash = fl4 ? fl4->flowi4_multipath_hash : 0;
1894
1963
 	struct flow_keys hash_keys;
1895
1964
 	u32 mhash;
1896
1965
 
..
..
@@ -1938,8 +2007,41 @@
1938
2007
 			hash_keys.basic.ip_proto = fl4->flowi4_proto;
1939
2008
 		}
1940
2009
 		break;
2010
+	case 2:
2011
+		memset(&hash_keys, 0, sizeof(hash_keys));
2012
+		/* skb is currently provided only when forwarding */
2013
+		if (skb) {
2014
+			struct flow_keys keys;
2015
+
2016
+			skb_flow_dissect_flow_keys(skb, &keys, 0);
2017
+			/* Inner can be v4 or v6 */
2018
+			if (keys.control.addr_type == FLOW_DISSECTOR_KEY_IPV4_ADDRS) {
2019
+				hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV4_ADDRS;
2020
+				hash_keys.addrs.v4addrs.src = keys.addrs.v4addrs.src;
2021
+				hash_keys.addrs.v4addrs.dst = keys.addrs.v4addrs.dst;
2022
+			} else if (keys.control.addr_type == FLOW_DISSECTOR_KEY_IPV6_ADDRS) {
2023
+				hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV6_ADDRS;
2024
+				hash_keys.addrs.v6addrs.src = keys.addrs.v6addrs.src;
2025
+				hash_keys.addrs.v6addrs.dst = keys.addrs.v6addrs.dst;
2026
+				hash_keys.tags.flow_label = keys.tags.flow_label;
2027
+				hash_keys.basic.ip_proto = keys.basic.ip_proto;
2028
+			} else {
2029
+				/* Same as case 0 */
2030
+				hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV4_ADDRS;
2031
+				ip_multipath_l3_keys(skb, &hash_keys);
2032
+			}
2033
+		} else {
2034
+			/* Same as case 0 */
2035
+			hash_keys.control.addr_type = FLOW_DISSECTOR_KEY_IPV4_ADDRS;
2036
+			hash_keys.addrs.v4addrs.src = fl4->saddr;
2037
+			hash_keys.addrs.v4addrs.dst = fl4->daddr;
2038
+		}
2039
+		break;
1941
2040
 	}
1942
2041
 	mhash = flow_hash_from_keys(&hash_keys);
2042
+
2043
+	if (multipath_hash)
2044
+		mhash = jhash_2words(mhash, multipath_hash, 0);
1943
2045
 
1944
2046
 	return mhash >> 1;
1945
2047
 }
..
..
@@ -1952,7 +2054,7 @@
1952
2054
 			    struct flow_keys *hkeys)
1953
2055
 {
1954
2056
 #ifdef CONFIG_IP_ROUTE_MULTIPATH
1955
-	if (res->fi && res->fi->fib_nhs > 1) {
2057
+	if (res->fi && fib_info_num_path(res->fi) > 1) {
1956
2058
 		int h = fib_multipath_hash(res->fi->fib_net, NULL, skb, hkeys);
1957
2059
 
1958
2060
 		fib_select_multipath(res, h);
..
..
@@ -1963,10 +2065,65 @@
1963
2065
 	return __mkroute_input(skb, res, in_dev, daddr, saddr, tos);
1964
2066
 }
1965
2067
 
2068
+/* Implements all the saddr-related checks as ip_route_input_slow(),
2069
+ * assuming daddr is valid and the destination is not a local broadcast one.
2070
+ * Uses the provided hint instead of performing a route lookup.
2071
+ */
2072
+int ip_route_use_hint(struct sk_buff *skb, __be32 daddr, __be32 saddr,
2073
+		      u8 tos, struct net_device *dev,
2074
+		      const struct sk_buff *hint)
2075
+{
2076
+	struct in_device *in_dev = __in_dev_get_rcu(dev);
2077
+	struct rtable *rt = skb_rtable(hint);
2078
+	struct net *net = dev_net(dev);
2079
+	int err = -EINVAL;
2080
+	u32 tag = 0;
2081
+
2082
+	if (ipv4_is_multicast(saddr) || ipv4_is_lbcast(saddr))
2083
+		goto martian_source;
2084
+
2085
+	if (ipv4_is_zeronet(saddr))
2086
+		goto martian_source;
2087
+
2088
+	if (ipv4_is_loopback(saddr) && !IN_DEV_NET_ROUTE_LOCALNET(in_dev, net))
2089
+		goto martian_source;
2090
+
2091
+	if (rt->rt_type != RTN_LOCAL)
2092
+		goto skip_validate_source;
2093
+
2094
+	tos &= IPTOS_RT_MASK;
2095
+	err = fib_validate_source(skb, saddr, daddr, tos, 0, dev, in_dev, &tag);
2096
+	if (err < 0)
2097
+		goto martian_source;
2098
+
2099
+skip_validate_source:
2100
+	skb_dst_copy(skb, hint);
2101
+	return 0;
2102
+
2103
+martian_source:
2104
+	ip_handle_martian_source(dev, in_dev, skb, daddr, saddr);
2105
+	return err;
2106
+}
2107
+
2108
+/* get device for dst_alloc with local routes */
2109
+static struct net_device *ip_rt_get_dev(struct net *net,
2110
+					const struct fib_result *res)
2111
+{
2112
+	struct fib_nh_common *nhc = res->fi ? res->nhc : NULL;
2113
+	struct net_device *dev = NULL;
2114
+
2115
+	if (nhc)
2116
+		dev = l3mdev_master_dev_rcu(nhc->nhc_dev);
2117
+
2118
+	return dev ? : net->loopback_dev;
2119
+}
2120
+
1966
2121
 /*
1967
2122
  *	NOTE. We drop all the packets that has local source
1968
2123
  *	addresses, because every properly looped back packet
1969
2124
  *	must have correct destination already attached by output routine.
2125
+ *	Changes in the enforced policies must be applied also to
2126
+ *	ip_route_use_hint().
1970
2127
  *
1971
2128
  *	Such approach solves two big problems:
1972
2129
  *	1. Not simplex devices are handled properly.
..
..
@@ -2045,6 +2202,7 @@
2045
2202
 	fl4.daddr = daddr;
2046
2203
 	fl4.saddr = saddr;
2047
2204
 	fl4.flowi4_uid = sock_net_uid(net, NULL);
2205
+	fl4.flowi4_multipath_hash = 0;
2048
2206
 
2049
2207
 	if (fib4_rules_early_flow_dissect(net, skb, &fl4, &_flkeys)) {
2050
2208
 		flkeys = &_flkeys;
..
..
@@ -2106,7 +2264,9 @@
2106
2264
 local_input:
2107
2265
 	do_cache &= res->fi && !itag;
2108
2266
 	if (do_cache) {
2109
-		rth = rcu_dereference(FIB_RES_NH(*res).nh_rth_input);
2267
+		struct fib_nh_common *nhc = FIB_RES_NHC(*res);
2268
+
2269
+		rth = rcu_dereference(nhc->nhc_rth_input);
2110
2270
 		if (rt_cache_valid(rth)) {
2111
2271
 			skb_dst_set_noref(skb, &rth->dst);
2112
2272
 			err = 0;
..
..
@@ -2114,9 +2274,9 @@
2114
2274
 		}
2115
2275
 	}
2116
2276
 
2117
-	rth = rt_dst_alloc(l3mdev_master_dev_rcu(dev) ? : net->loopback_dev,
2277
+	rth = rt_dst_alloc(ip_rt_get_dev(net, res),
2118
2278
 			   flags | RTCF_LOCAL, res->type,
2119
-			   IN_DEV_CONF_GET(in_dev, NOPOLICY), false, do_cache);
2279
+			   IN_DEV_ORCONF(in_dev, NOPOLICY), false);
2120
2280
 	if (!rth)
2121
2281
 		goto e_nobufs;
2122
2282
 
..
..
@@ -2134,16 +2294,16 @@
2134
2294
 	}
2135
2295
 
2136
2296
 	if (do_cache) {
2137
-		struct fib_nh *nh = &FIB_RES_NH(*res);
2297
+		struct fib_nh_common *nhc = FIB_RES_NHC(*res);
2138
2298
 
2139
-		rth->dst.lwtstate = lwtstate_get(nh->nh_lwtstate);
2299
+		rth->dst.lwtstate = lwtstate_get(nhc->nhc_lwtstate);
2140
2300
 		if (lwtunnel_input_redirect(rth->dst.lwtstate)) {
2141
2301
 			WARN_ON(rth->dst.input == lwtunnel_input);
2142
2302
 			rth->dst.lwtstate->orig_input = rth->dst.input;
2143
2303
 			rth->dst.input = lwtunnel_input;
2144
2304
 		}
2145
2305
 
2146
-		if (unlikely(!rt_cache_route(nh, rth)))
2306
+		if (unlikely(!rt_cache_route(nhc, rth)))
2147
2307
 			rt_add_uncached_list(rth);
2148
2308
 	}
2149
2309
 	skb_dst_set(skb, &rth->dst);
..
..
@@ -2314,10 +2474,10 @@
2314
2474
 	fnhe = NULL;
2315
2475
 	do_cache &= fi != NULL;
2316
2476
 	if (fi) {
2477
+		struct fib_nh_common *nhc = FIB_RES_NHC(*res);
2317
2478
 		struct rtable __rcu **prth;
2318
-		struct fib_nh *nh = &FIB_RES_NH(*res);
2319
2479
 
2320
-		fnhe = find_exception(nh, fl4->daddr);
2480
+		fnhe = find_exception(nhc, fl4->daddr);
2321
2481
 		if (!do_cache)
2322
2482
 			goto add;
2323
2483
 		if (fnhe) {
..
..
@@ -2325,12 +2485,12 @@
2325
2485
 		} else {
2326
2486
 			if (unlikely(fl4->flowi4_flags &
2327
2487
 				     FLOWI_FLAG_KNOWN_NH &&
2328
-				     !(nh->nh_gw &&
2329
-				       nh->nh_scope == RT_SCOPE_LINK))) {
2488
+				     !(nhc->nhc_gw_family &&
2489
+				       nhc->nhc_scope == RT_SCOPE_LINK))) {
2330
2490
 				do_cache = false;
2331
2491
 				goto add;
2332
2492
 			}
2333
-			prth = raw_cpu_ptr(nh->nh_pcpu_rth_output);
2493
+			prth = raw_cpu_ptr(nhc->nhc_pcpu_rth_output);
2334
2494
 		}
2335
2495
 		rth = rcu_dereference(*prth);
2336
2496
 		if (rt_cache_valid(rth) && dst_hold_safe(&rth->dst))
..
..
@@ -2339,9 +2499,8 @@
2339
2499
 
2340
2500
 add:
2341
2501
 	rth = rt_dst_alloc(dev_out, flags, type,
2342
-			   IN_DEV_CONF_GET(in_dev, NOPOLICY),
2343
-			   IN_DEV_CONF_GET(in_dev, NOXFRM),
2344
-			   do_cache);
2502
+			   IN_DEV_ORCONF(in_dev, NOPOLICY),
2503
+			   IN_DEV_ORCONF(in_dev, NOXFRM));
2345
2504
 	if (!rth)
2346
2505
 		return ERR_PTR(-ENOBUFS);
2347
2506
 
..
..
@@ -2379,7 +2538,6 @@
2379
2538
 struct rtable *ip_route_output_key_hash(struct net *net, struct flowi4 *fl4,
2380
2539
 					const struct sk_buff *skb)
2381
2540
 {
2382
-	__u8 tos = RT_FL_TOS(fl4);
2383
2541
 	struct fib_result res = {
2384
2542
 		.type		= RTN_UNSPEC,
2385
2543
 		.fi		= NULL,
..
..
@@ -2389,9 +2547,7 @@
2389
2547
 	struct rtable *rth;
2390
2548
 
2391
2549
 	fl4->flowi4_iif = LOOPBACK_IFINDEX;
2392
-	fl4->flowi4_tos = tos & IPTOS_RT_MASK;
2393
-	fl4->flowi4_scope = ((tos & RTO_ONLINK) ?
2394
-			 RT_SCOPE_LINK : RT_SCOPE_UNIVERSE);
2550
+	ip_rt_fix_tos(fl4);
2395
2551
 
2396
2552
 	rcu_read_lock();
2397
2553
 	rth = ip_route_output_key_hash_rcu(net, fl4, &res, skb);
..
..
@@ -2572,44 +2728,15 @@
2572
2728
 	return rth;
2573
2729
 }
2574
2730
 
2575
-static struct dst_entry *ipv4_blackhole_dst_check(struct dst_entry *dst, u32 cookie)
2576
-{
2577
-	return NULL;
2578
-}
2579
-
2580
-static unsigned int ipv4_blackhole_mtu(const struct dst_entry *dst)
2581
-{
2582
-	unsigned int mtu = dst_metric_raw(dst, RTAX_MTU);
2583
-
2584
-	return mtu ? : dst->dev->mtu;
2585
-}
2586
-
2587
-static void ipv4_rt_blackhole_update_pmtu(struct dst_entry *dst, struct sock *sk,
2588
-					  struct sk_buff *skb, u32 mtu,
2589
-					  bool confirm_neigh)
2590
-{
2591
-}
2592
-
2593
-static void ipv4_rt_blackhole_redirect(struct dst_entry *dst, struct sock *sk,
2594
-				       struct sk_buff *skb)
2595
-{
2596
-}
2597
-
2598
-static u32 *ipv4_rt_blackhole_cow_metrics(struct dst_entry *dst,
2599
-					  unsigned long old)
2600
-{
2601
-	return NULL;
2602
-}
2603
-
2604
2731
 static struct dst_ops ipv4_dst_blackhole_ops = {
2605
-	.family			=	AF_INET,
2606
-	.check			=	ipv4_blackhole_dst_check,
2607
-	.mtu			=	ipv4_blackhole_mtu,
2608
-	.default_advmss		=	ipv4_default_advmss,
2609
-	.update_pmtu		=	ipv4_rt_blackhole_update_pmtu,
2610
-	.redirect		=	ipv4_rt_blackhole_redirect,
2611
-	.cow_metrics		=	ipv4_rt_blackhole_cow_metrics,
2612
-	.neigh_lookup		=	ipv4_neigh_lookup,
2732
+	.family			= AF_INET,
2733
+	.default_advmss		= ipv4_default_advmss,
2734
+	.neigh_lookup		= ipv4_neigh_lookup,
2735
+	.check			= dst_blackhole_check,
2736
+	.cow_metrics		= dst_blackhole_cow_metrics,
2737
+	.update_pmtu		= dst_blackhole_update_pmtu,
2738
+	.redirect		= dst_blackhole_redirect,
2739
+	.mtu			= dst_blackhole_mtu,
2613
2740
 };
2614
2741
 
2615
2742
 struct dst_entry *ipv4_blackhole_route(struct net *net, struct dst_entry *dst_orig)
..
..
@@ -2637,8 +2764,12 @@
2637
2764
 		rt->rt_genid = rt_genid_ipv4(net);
2638
2765
 		rt->rt_flags = ort->rt_flags;
2639
2766
 		rt->rt_type = ort->rt_type;
2640
-		rt->rt_gateway = ort->rt_gateway;
2641
2767
 		rt->rt_uses_gateway = ort->rt_uses_gateway;
2768
+		rt->rt_gw_family = ort->rt_gw_family;
2769
+		if (rt->rt_gw_family == AF_INET)
2770
+			rt->rt_gw4 = ort->rt_gw4;
2771
+		else if (rt->rt_gw_family == AF_INET6)
2772
+			rt->rt_gw6 = ort->rt_gw6;
2642
2773
 
2643
2774
 		INIT_LIST_HEAD(&rt->rt_uncached);
2644
2775
 	}
..
..
@@ -2667,10 +2798,59 @@
2667
2798
 }
2668
2799
 EXPORT_SYMBOL_GPL(ip_route_output_flow);
2669
2800
 
2801
+struct rtable *ip_route_output_tunnel(struct sk_buff *skb,
2802
+				      struct net_device *dev,
2803
+				      struct net *net, __be32 *saddr,
2804
+				      const struct ip_tunnel_info *info,
2805
+				      u8 protocol, bool use_cache)
2806
+{
2807
+#ifdef CONFIG_DST_CACHE
2808
+	struct dst_cache *dst_cache;
2809
+#endif
2810
+	struct rtable *rt = NULL;
2811
+	struct flowi4 fl4;
2812
+	__u8 tos;
2813
+
2814
+#ifdef CONFIG_DST_CACHE
2815
+	dst_cache = (struct dst_cache *)&info->dst_cache;
2816
+	if (use_cache) {
2817
+		rt = dst_cache_get_ip4(dst_cache, saddr);
2818
+		if (rt)
2819
+			return rt;
2820
+	}
2821
+#endif
2822
+	memset(&fl4, 0, sizeof(fl4));
2823
+	fl4.flowi4_mark = skb->mark;
2824
+	fl4.flowi4_proto = protocol;
2825
+	fl4.daddr = info->key.u.ipv4.dst;
2826
+	fl4.saddr = info->key.u.ipv4.src;
2827
+	tos = info->key.tos;
2828
+	fl4.flowi4_tos = RT_TOS(tos);
2829
+
2830
+	rt = ip_route_output_key(net, &fl4);
2831
+	if (IS_ERR(rt)) {
2832
+		netdev_dbg(dev, "no route to %pI4\n", &fl4.daddr);
2833
+		return ERR_PTR(-ENETUNREACH);
2834
+	}
2835
+	if (rt->dst.dev == dev) { /* is this necessary? */
2836
+		netdev_dbg(dev, "circular route to %pI4\n", &fl4.daddr);
2837
+		ip_rt_put(rt);
2838
+		return ERR_PTR(-ELOOP);
2839
+	}
2840
+#ifdef CONFIG_DST_CACHE
2841
+	if (use_cache)
2842
+		dst_cache_set_ip4(dst_cache, &rt->dst, fl4.saddr);
2843
+#endif
2844
+	*saddr = fl4.saddr;
2845
+	return rt;
2846
+}
2847
+EXPORT_SYMBOL_GPL(ip_route_output_tunnel);
2848
+
2670
2849
 /* called with rcu_read_lock held */
2671
2850
 static int rt_fill_info(struct net *net, __be32 dst, __be32 src,
2672
2851
 			struct rtable *rt, u32 table_id, struct flowi4 *fl4,
2673
-			struct sk_buff *skb, u32 portid, u32 seq)
2852
+			struct sk_buff *skb, u32 portid, u32 seq,
2853
+			unsigned int flags)
2674
2854
 {
2675
2855
 	struct rtmsg *r;
2676
2856
 	struct nlmsghdr *nlh;
..
..
@@ -2678,7 +2858,7 @@
2678
2858
 	u32 error;
2679
2859
 	u32 metrics[RTAX_MAX];
2680
2860
 
2681
-	nlh = nlmsg_put(skb, portid, seq, RTM_NEWROUTE, sizeof(*r), 0);
2861
+	nlh = nlmsg_put(skb, portid, seq, RTM_NEWROUTE, sizeof(*r), flags);
2682
2862
 	if (!nlh)
2683
2863
 		return -EMSGSIZE;
2684
2864
 
..
..
@@ -2686,7 +2866,7 @@
2686
2866
 	r->rtm_family	 = AF_INET;
2687
2867
 	r->rtm_dst_len	= 32;
2688
2868
 	r->rtm_src_len	= 0;
2689
-	r->rtm_tos	= fl4->flowi4_tos;
2869
+	r->rtm_tos	= fl4 ? fl4->flowi4_tos : 0;
2690
2870
 	r->rtm_table	= table_id < 256 ? table_id : RT_TABLE_COMPAT;
2691
2871
 	if (nla_put_u32(skb, RTA_TABLE, table_id))
2692
2872
 		goto nla_put_failure;
..
..
@@ -2714,14 +2894,29 @@
2714
2894
 	    nla_put_u32(skb, RTA_FLOW, rt->dst.tclassid))
2715
2895
 		goto nla_put_failure;
2716
2896
 #endif
2717
-	if (!rt_is_input_route(rt) &&
2897
+	if (fl4 && !rt_is_input_route(rt) &&
2718
2898
 	    fl4->saddr != src) {
2719
2899
 		if (nla_put_in_addr(skb, RTA_PREFSRC, fl4->saddr))
2720
2900
 			goto nla_put_failure;
2721
2901
 	}
2722
-	if (rt->rt_uses_gateway &&
2723
-	    nla_put_in_addr(skb, RTA_GATEWAY, rt->rt_gateway))
2724
-		goto nla_put_failure;
2902
+	if (rt->rt_uses_gateway) {
2903
+		if (rt->rt_gw_family == AF_INET &&
2904
+		    nla_put_in_addr(skb, RTA_GATEWAY, rt->rt_gw4)) {
2905
+			goto nla_put_failure;
2906
+		} else if (rt->rt_gw_family == AF_INET6) {
2907
+			int alen = sizeof(struct in6_addr);
2908
+			struct nlattr *nla;
2909
+			struct rtvia *via;
2910
+
2911
+			nla = nla_reserve(skb, RTA_VIA, alen + 2);
2912
+			if (!nla)
2913
+				goto nla_put_failure;
2914
+
2915
+			via = nla_data(nla);
2916
+			via->rtvia_family = AF_INET6;
2917
+			memcpy(via->rtvia_addr, &rt->rt_gw6, alen);
2918
+		}
2919
+	}
2725
2920
 
2726
2921
 	expires = rt->dst.expires;
2727
2922
 	if (expires) {
..
..
@@ -2741,35 +2936,39 @@
2741
2936
 	if (rtnetlink_put_metrics(skb, metrics) < 0)
2742
2937
 		goto nla_put_failure;
2743
2938
 
2744
-	if (fl4->flowi4_mark &&
2745
-	    nla_put_u32(skb, RTA_MARK, fl4->flowi4_mark))
2746
-		goto nla_put_failure;
2939
+	if (fl4) {
2940
+		if (fl4->flowi4_mark &&
2941
+		    nla_put_u32(skb, RTA_MARK, fl4->flowi4_mark))
2942
+			goto nla_put_failure;
2747
2943
 
2748
-	if (!uid_eq(fl4->flowi4_uid, INVALID_UID) &&
2749
-	    nla_put_u32(skb, RTA_UID,
2750
-			from_kuid_munged(current_user_ns(), fl4->flowi4_uid)))
2751
-		goto nla_put_failure;
2944
+		if (!uid_eq(fl4->flowi4_uid, INVALID_UID) &&
2945
+		    nla_put_u32(skb, RTA_UID,
2946
+				from_kuid_munged(current_user_ns(),
2947
+						 fl4->flowi4_uid)))
2948
+			goto nla_put_failure;
2949
+
2950
+		if (rt_is_input_route(rt)) {
2951
+#ifdef CONFIG_IP_MROUTE
2952
+			if (ipv4_is_multicast(dst) &&
2953
+			    !ipv4_is_local_multicast(dst) &&
2954
+			    IPV4_DEVCONF_ALL(net, MC_FORWARDING)) {
2955
+				int err = ipmr_get_route(net, skb,
2956
+							 fl4->saddr, fl4->daddr,
2957
+							 r, portid);
2958
+
2959
+				if (err <= 0) {
2960
+					if (err == 0)
2961
+						return 0;
2962
+					goto nla_put_failure;
2963
+				}
2964
+			} else
2965
+#endif
2966
+				if (nla_put_u32(skb, RTA_IIF, fl4->flowi4_iif))
2967
+					goto nla_put_failure;
2968
+		}
2969
+	}
2752
2970
 
2753
2971
 	error = rt->dst.error;
2754
-
2755
-	if (rt_is_input_route(rt)) {
2756
-#ifdef CONFIG_IP_MROUTE
2757
-		if (ipv4_is_multicast(dst) && !ipv4_is_local_multicast(dst) &&
2758
-		    IPV4_DEVCONF_ALL(net, MC_FORWARDING)) {
2759
-			int err = ipmr_get_route(net, skb,
2760
-						 fl4->saddr, fl4->daddr,
2761
-						 r, portid);
2762
-
2763
-			if (err <= 0) {
2764
-				if (err == 0)
2765
-					return 0;
2766
-				goto nla_put_failure;
2767
-			}
2768
-		} else
2769
-#endif
2770
-			if (nla_put_u32(skb, RTA_IIF, fl4->flowi4_iif))
2771
-				goto nla_put_failure;
2772
-	}
2773
2972
 
2774
2973
 	if (rtnl_put_cacheinfo(skb, &rt->dst, 0, expires, error) < 0)
2775
2974
 		goto nla_put_failure;
..
..
@@ -2780,6 +2979,81 @@
2780
2979
 nla_put_failure:
2781
2980
 	nlmsg_cancel(skb, nlh);
2782
2981
 	return -EMSGSIZE;
2982
+}
2983
+
2984
+static int fnhe_dump_bucket(struct net *net, struct sk_buff *skb,
2985
+			    struct netlink_callback *cb, u32 table_id,
2986
+			    struct fnhe_hash_bucket *bucket, int genid,
2987
+			    int *fa_index, int fa_start, unsigned int flags)
2988
+{
2989
+	int i;
2990
+
2991
+	for (i = 0; i < FNHE_HASH_SIZE; i++) {
2992
+		struct fib_nh_exception *fnhe;
2993
+
2994
+		for (fnhe = rcu_dereference(bucket[i].chain); fnhe;
2995
+		     fnhe = rcu_dereference(fnhe->fnhe_next)) {
2996
+			struct rtable *rt;
2997
+			int err;
2998
+
2999
+			if (*fa_index < fa_start)
3000
+				goto next;
3001
+
3002
+			if (fnhe->fnhe_genid != genid)
3003
+				goto next;
3004
+
3005
+			if (fnhe->fnhe_expires &&
3006
+			    time_after(jiffies, fnhe->fnhe_expires))
3007
+				goto next;
3008
+
3009
+			rt = rcu_dereference(fnhe->fnhe_rth_input);
3010
+			if (!rt)
3011
+				rt = rcu_dereference(fnhe->fnhe_rth_output);
3012
+			if (!rt)
3013
+				goto next;
3014
+
3015
+			err = rt_fill_info(net, fnhe->fnhe_daddr, 0, rt,
3016
+					   table_id, NULL, skb,
3017
+					   NETLINK_CB(cb->skb).portid,
3018
+					   cb->nlh->nlmsg_seq, flags);
3019
+			if (err)
3020
+				return err;
3021
+next:
3022
+			(*fa_index)++;
3023
+		}
3024
+	}
3025
+
3026
+	return 0;
3027
+}
3028
+
3029
+int fib_dump_info_fnhe(struct sk_buff *skb, struct netlink_callback *cb,
3030
+		       u32 table_id, struct fib_info *fi,
3031
+		       int *fa_index, int fa_start, unsigned int flags)
3032
+{
3033
+	struct net *net = sock_net(cb->skb->sk);
3034
+	int nhsel, genid = fnhe_genid(net);
3035
+
3036
+	for (nhsel = 0; nhsel < fib_info_num_path(fi); nhsel++) {
3037
+		struct fib_nh_common *nhc = fib_info_nhc(fi, nhsel);
3038
+		struct fnhe_hash_bucket *bucket;
3039
+		int err;
3040
+
3041
+		if (nhc->nhc_flags & RTNH_F_DEAD)
3042
+			continue;
3043
+
3044
+		rcu_read_lock();
3045
+		bucket = rcu_dereference(nhc->nhc_exceptions);
3046
+		err = 0;
3047
+		if (bucket)
3048
+			err = fnhe_dump_bucket(net, skb, cb, table_id, bucket,
3049
+					       genid, fa_index, fa_start,
3050
+					       flags);
3051
+		rcu_read_unlock();
3052
+		if (err)
3053
+			return err;
3054
+	}
3055
+
3056
+	return 0;
2783
3057
 }
2784
3058
 
2785
3059
 static struct sk_buff *inet_rtm_getroute_build_skb(__be32 src, __be32 dst,
..
..
@@ -2843,6 +3117,75 @@
2843
3117
 	return skb;
2844
3118
 }
2845
3119
 
3120
+static int inet_rtm_valid_getroute_req(struct sk_buff *skb,
3121
+				       const struct nlmsghdr *nlh,
3122
+				       struct nlattr **tb,
3123
+				       struct netlink_ext_ack *extack)
3124
+{
3125
+	struct rtmsg *rtm;
3126
+	int i, err;
3127
+
3128
+	if (nlh->nlmsg_len < nlmsg_msg_size(sizeof(*rtm))) {
3129
+		NL_SET_ERR_MSG(extack,
3130
+			       "ipv4: Invalid header for route get request");
3131
+		return -EINVAL;
3132
+	}
3133
+
3134
+	if (!netlink_strict_get_check(skb))
3135
+		return nlmsg_parse_deprecated(nlh, sizeof(*rtm), tb, RTA_MAX,
3136
+					      rtm_ipv4_policy, extack);
3137
+
3138
+	rtm = nlmsg_data(nlh);
3139
+	if ((rtm->rtm_src_len && rtm->rtm_src_len != 32) ||
3140
+	    (rtm->rtm_dst_len && rtm->rtm_dst_len != 32) ||
3141
+	    rtm->rtm_table || rtm->rtm_protocol ||
3142
+	    rtm->rtm_scope || rtm->rtm_type) {
3143
+		NL_SET_ERR_MSG(extack, "ipv4: Invalid values in header for route get request");
3144
+		return -EINVAL;
3145
+	}
3146
+
3147
+	if (rtm->rtm_flags & ~(RTM_F_NOTIFY |
3148
+			       RTM_F_LOOKUP_TABLE |
3149
+			       RTM_F_FIB_MATCH)) {
3150
+		NL_SET_ERR_MSG(extack, "ipv4: Unsupported rtm_flags for route get request");
3151
+		return -EINVAL;
3152
+	}
3153
+
3154
+	err = nlmsg_parse_deprecated_strict(nlh, sizeof(*rtm), tb, RTA_MAX,
3155
+					    rtm_ipv4_policy, extack);
3156
+	if (err)
3157
+		return err;
3158
+
3159
+	if ((tb[RTA_SRC] && !rtm->rtm_src_len) ||
3160
+	    (tb[RTA_DST] && !rtm->rtm_dst_len)) {
3161
+		NL_SET_ERR_MSG(extack, "ipv4: rtm_src_len and rtm_dst_len must be 32 for IPv4");
3162
+		return -EINVAL;
3163
+	}
3164
+
3165
+	for (i = 0; i <= RTA_MAX; i++) {
3166
+		if (!tb[i])
3167
+			continue;
3168
+
3169
+		switch (i) {
3170
+		case RTA_IIF:
3171
+		case RTA_OIF:
3172
+		case RTA_SRC:
3173
+		case RTA_DST:
3174
+		case RTA_IP_PROTO:
3175
+		case RTA_SPORT:
3176
+		case RTA_DPORT:
3177
+		case RTA_MARK:
3178
+		case RTA_UID:
3179
+			break;
3180
+		default:
3181
+			NL_SET_ERR_MSG(extack, "ipv4: Unsupported attribute in route get request");
3182
+			return -EINVAL;
3183
+		}
3184
+	}
3185
+
3186
+	return 0;
3187
+}
3188
+
2846
3189
 static int inet_rtm_getroute(struct sk_buff *in_skb, struct nlmsghdr *nlh,
2847
3190
 			     struct netlink_ext_ack *extack)
2848
3191
 {
..
..
@@ -2855,7 +3198,7 @@
2855
3198
 	struct rtable *rt = NULL;
2856
3199
 	struct sk_buff *skb;
2857
3200
 	struct rtmsg *rtm;
2858
-	struct flowi4 fl4;
3201
+	struct flowi4 fl4 = {};
2859
3202
 	__be32 dst = 0;
2860
3203
 	__be32 src = 0;
2861
3204
 	kuid_t uid;
..
..
@@ -2863,8 +3206,7 @@
2863
3206
 	int err;
2864
3207
 	int mark;
2865
3208
 
2866
-	err = nlmsg_parse(nlh, sizeof(*rtm), tb, RTA_MAX, rtm_ipv4_policy,
2867
-			  extack);
3209
+	err = inet_rtm_valid_getroute_req(in_skb, nlh, tb, extack);
2868
3210
 	if (err < 0)
2869
3211
 		return err;
2870
3212
 
..
..
@@ -2895,7 +3237,6 @@
2895
3237
 	if (!skb)
2896
3238
 		return -ENOBUFS;
2897
3239
 
2898
-	memset(&fl4, 0, sizeof(fl4));
2899
3240
 	fl4.daddr = dst;
2900
3241
 	fl4.saddr = src;
2901
3242
 	fl4.flowi4_tos = rtm->rtm_tos & IPTOS_RT_MASK;
..
..
@@ -2931,6 +3272,7 @@
2931
3272
 			err = -rt->dst.error;
2932
3273
 	} else {
2933
3274
 		fl4.flowi4_iif = LOOPBACK_IFINDEX;
3275
+		skb->dev = net->loopback_dev;
2934
3276
 		rt = ip_route_output_key_hash_rcu(net, &fl4, &res, skb);
2935
3277
 		err = 0;
2936
3278
 		if (IS_ERR(rt))
..
..
@@ -2955,19 +3297,45 @@
2955
3297
 	skb_reset_mac_header(skb);
2956
3298
 
2957
3299
 	if (rtm->rtm_flags & RTM_F_FIB_MATCH) {
3300
+		struct fib_rt_info fri;
3301
+
2958
3302
 		if (!res.fi) {
2959
3303
 			err = fib_props[res.type].error;
2960
3304
 			if (!err)
2961
3305
 				err = -EHOSTUNREACH;
2962
3306
 			goto errout_rcu;
2963
3307
 		}
3308
+		fri.fi = res.fi;
3309
+		fri.tb_id = table_id;
3310
+		fri.dst = res.prefix;
3311
+		fri.dst_len = res.prefixlen;
3312
+		fri.tos = fl4.flowi4_tos;
3313
+		fri.type = rt->rt_type;
3314
+		fri.offload = 0;
3315
+		fri.trap = 0;
3316
+		if (res.fa_head) {
3317
+			struct fib_alias *fa;
3318
+
3319
+			hlist_for_each_entry_rcu(fa, res.fa_head, fa_list) {
3320
+				u8 slen = 32 - fri.dst_len;
3321
+
3322
+				if (fa->fa_slen == slen &&
3323
+				    fa->tb_id == fri.tb_id &&
3324
+				    fa->fa_tos == fri.tos &&
3325
+				    fa->fa_info == res.fi &&
3326
+				    fa->fa_type == fri.type) {
3327
+					fri.offload = fa->offload;
3328
+					fri.trap = fa->trap;
3329
+					break;
3330
+				}
3331
+			}
3332
+		}
2964
3333
 		err = fib_dump_info(skb, NETLINK_CB(in_skb).portid,
2965
-				    nlh->nlmsg_seq, RTM_NEWROUTE, table_id,
2966
-				    rt->rt_type, res.prefix, res.prefixlen,
2967
-				    fl4.flowi4_tos, res.fi, 0);
3334
+				    nlh->nlmsg_seq, RTM_NEWROUTE, &fri, 0);
2968
3335
 	} else {
2969
3336
 		err = rt_fill_info(net, dst, src, rt, table_id, &fl4, skb,
2970
-				   NETLINK_CB(in_skb).portid, nlh->nlmsg_seq);
3337
+				   NETLINK_CB(in_skb).portid,
3338
+				   nlh->nlmsg_seq, 0);
2971
3339
 	}
2972
3340
 	if (err < 0)
2973
3341
 		goto errout_rcu;
..
..
@@ -2996,8 +3364,7 @@
2996
3364
 static int ip_min_valid_pmtu __read_mostly	= IPV4_MIN_MTU;
2997
3365
 
2998
3366
 static int ipv4_sysctl_rtcache_flush(struct ctl_table *__ctl, int write,
2999
-					void __user *buffer,
3000
-					size_t *lenp, loff_t *ppos)
3367
+		void *buffer, size_t *lenp, loff_t *ppos)
3001
3368
 {
3002
3369
 	struct net *net = (struct net *)__ctl->extra1;
3003
3370
 
..
..
@@ -3122,9 +3489,11 @@
3122
3489
 	{ }
3123
3490
 };
3124
3491
 
3492
+static const char ipv4_route_flush_procname[] = "flush";
3493
+
3125
3494
 static struct ctl_table ipv4_route_flush_table[] = {
3126
3495
 	{
3127
-		.procname	= "flush",
3496
+		.procname	= ipv4_route_flush_procname,
3128
3497
 		.maxlen		= sizeof(int),
3129
3498
 		.mode		= 0200,
3130
3499
 		.proc_handler	= ipv4_sysctl_rtcache_flush,
..
..
@@ -3142,9 +3511,11 @@
3142
3511
 		if (!tbl)
3143
3512
 			goto err_dup;
3144
3513
 
3145
-		/* Don't export sysctls to unprivileged users */
3146
-		if (net->user_ns != &init_user_ns)
3147
-			tbl[0].procname = NULL;
3514
+		/* Don't export non-whitelisted sysctls to unprivileged users */
3515
+		if (net->user_ns != &init_user_ns) {
3516
+			if (tbl[0].procname != ipv4_route_flush_procname)
3517
+				tbl[0].procname = NULL;
3518
+		}
3148
3519
 	}
3149
3520
 	tbl[0].extra1 = net;
3150
3521