[IPV6]: inet6_dev on loopback should be kept until namespace stop.

[sfrench/cifs-2.6.git] / net / ipv6 / addrconf.c
diff --git a/net/ipv6/addrconf.c b/net/ipv6/addrconf.c

index 9b96de3ba5eb334f649040f8e6a8ca16968fc827..a65935a9afd93e983200cd10a380ffa4eb7071ba 100644 (file)
--- a/net/ipv6/addrconf.c
+++ b/net/ipv6/addrconf.c
@@ -149,7 +149,8 @@ static void ipv6_ifa_notify(int event, struct inet6_ifaddr *ifa);
  
  static void inet6_prefix_notify(int event, struct inet6_dev *idev,
                                 struct prefix_info *pinfo);
-static int ipv6_chk_same_addr(const struct in6_addr *addr, struct net_device *dev);
+static int ipv6_chk_same_addr(struct net *net, const struct in6_addr *addr,
+                             struct net_device *dev);
  
  static ATOMIC_NOTIFIER_HEAD(inet6addr_chain);
  
@@ -456,7 +457,7 @@ static void dev_forward_change(struct inet6_dev *idev)
  }
  
  
-static void addrconf_forward_change(struct net *net)
+static void addrconf_forward_change(struct net *net, __s32 newf)
  {
         struct net_device *dev;
         struct inet6_dev *idev;
@@ -466,8 +467,8 @@ static void addrconf_forward_change(struct net *net)
                 rcu_read_lock();
                 idev = __in6_dev_get(dev);
                 if (idev) {
-                       int changed = (!idev->cnf.forwarding) ^ (!ipv6_devconf.forwarding);
-                       idev->cnf.forwarding = ipv6_devconf.forwarding;
+                       int changed = (!idev->cnf.forwarding) ^ (!newf);
+                       idev->cnf.forwarding = newf;
                         if (changed)
                                 dev_forward_change(idev);
                 }
@@ -484,9 +485,10 @@ static void addrconf_fixup_forwarding(struct ctl_table *table, int *p, int old)
         if (p == &net->ipv6.devconf_dflt->forwarding)
                 return;
  
-       if (p == &ipv6_devconf.forwarding) {
-               net->ipv6.devconf_dflt->forwarding = ipv6_devconf.forwarding;
-               addrconf_forward_change(net);
+       if (p == &net->ipv6.devconf_all->forwarding) {
+               __s32 newf = net->ipv6.devconf_all->forwarding;
+               net->ipv6.devconf_dflt->forwarding = newf;
+               addrconf_forward_change(net, newf);
         } else if ((!*p) ^ (!old))
                 dev_forward_change((struct inet6_dev *)table->extra1);
  
@@ -559,7 +561,7 @@ ipv6_add_addr(struct inet6_dev *idev, const struct in6_addr *addr, int pfxlen,
         write_lock(&addrconf_hash_lock);
  
         /* Ignore adding duplicate addresses on an interface */
-       if (ipv6_chk_same_addr(addr, idev->dev)) {
+       if (ipv6_chk_same_addr(&init_net, addr, idev->dev)) {
                 ADBG(("ipv6_add_addr: already assigned\n"));
                 err = -EEXIST;
                 goto out;
@@ -774,6 +776,7 @@ static int ipv6_create_tempaddr(struct inet6_ifaddr *ifp, struct inet6_ifaddr *i
         struct inet6_dev *idev = ifp->idev;
         struct in6_addr addr, *tmpaddr;
         unsigned long tmp_prefered_lft, tmp_valid_lft, tmp_cstamp, tmp_tstamp;
+       unsigned long regen_advance;
         int tmp_plen;
         int ret = 0;
         int max_addresses;
@@ -834,8 +837,23 @@ retry:
         tmp_tstamp = ifp->tstamp;
         spin_unlock_bh(&ifp->lock);
  
+       regen_advance = idev->cnf.regen_max_retry *
+                       idev->cnf.dad_transmits *
+                       idev->nd_parms->retrans_time / HZ;
         write_unlock(&idev->lock);
  
+       /* A temporary address is created only if this calculated Preferred
+        * Lifetime is greater than REGEN_ADVANCE time units.  In particular,
+        * an implementation must not create a temporary address with a zero
+        * Preferred Lifetime.
+        */
+       if (tmp_prefered_lft <= regen_advance) {
+               in6_ifa_put(ifp);
+               in6_dev_put(idev);
+               ret = -1;
+               goto out;
+       }
+
         addr_flags = IFA_F_TEMPORARY;
         /* set in addrconf_prefix_rcv() */
         if (ifp->flags & IFA_F_OPTIMISTIC)
@@ -1205,13 +1223,16 @@ static int ipv6_count_addresses(struct inet6_dev *idev)
         return cnt;
  }
  
-int ipv6_chk_addr(struct in6_addr *addr, struct net_device *dev, int strict)
+int ipv6_chk_addr(struct net *net, struct in6_addr *addr,
+                 struct net_device *dev, int strict)
  {
         struct inet6_ifaddr * ifp;
         u8 hash = ipv6_addr_hash(addr);
  
         read_lock_bh(&addrconf_hash_lock);
         for(ifp = inet6_addr_lst[hash]; ifp; ifp=ifp->lst_next) {
+               if (ifp->idev->dev->nd_net != net)
+                       continue;
                 if (ipv6_addr_equal(&ifp->addr, addr) &&
                     !(ifp->flags&IFA_F_TENTATIVE)) {
                         if (dev == NULL || ifp->idev->dev == dev ||
@@ -1222,16 +1243,18 @@ int ipv6_chk_addr(struct in6_addr *addr, struct net_device *dev, int strict)
         read_unlock_bh(&addrconf_hash_lock);
         return ifp != NULL;
  }
-
  EXPORT_SYMBOL(ipv6_chk_addr);
  
  static
-int ipv6_chk_same_addr(const struct in6_addr *addr, struct net_device *dev)
+int ipv6_chk_same_addr(struct net *net, const struct in6_addr *addr,
+                      struct net_device *dev)
  {
         struct inet6_ifaddr * ifp;
         u8 hash = ipv6_addr_hash(addr);
  
         for(ifp = inet6_addr_lst[hash]; ifp; ifp=ifp->lst_next) {
+               if (ifp->idev->dev->nd_net != net)
+                       continue;
                 if (ipv6_addr_equal(&ifp->addr, addr)) {
                         if (dev == NULL || ifp->idev->dev == dev)
                                 break;
@@ -1240,13 +1263,16 @@ int ipv6_chk_same_addr(const struct in6_addr *addr, struct net_device *dev)
         return ifp != NULL;
  }
  
-struct inet6_ifaddr * ipv6_get_ifaddr(struct in6_addr *addr, struct net_device *dev, int strict)
+struct inet6_ifaddr *ipv6_get_ifaddr(struct net *net, struct in6_addr *addr,
+                                    struct net_device *dev, int strict)
  {
         struct inet6_ifaddr * ifp;
         u8 hash = ipv6_addr_hash(addr);
  
         read_lock_bh(&addrconf_hash_lock);
         for(ifp = inet6_addr_lst[hash]; ifp; ifp=ifp->lst_next) {
+               if (ifp->idev->dev->nd_net != net)
+                       continue;
                 if (ipv6_addr_equal(&ifp->addr, addr)) {
                         if (dev == NULL || ifp->idev->dev == dev ||
                             !(ifp->scope&(IFA_LINK|IFA_HOST) || strict)) {
@@ -1547,6 +1573,7 @@ addrconf_prefix_route(struct in6_addr *pfx, int plen, struct net_device *dev,
                 .fc_expires = expires,
                 .fc_dst_len = plen,
                 .fc_flags = RTF_UP | flags,
+               .fc_nlinfo.nl_net = &init_net,
         };
  
         ipv6_addr_copy(&cfg.fc_dst, pfx);
@@ -1573,6 +1600,7 @@ static void addrconf_add_mroute(struct net_device *dev)
                 .fc_ifindex = dev->ifindex,
                 .fc_dst_len = 8,
                 .fc_flags = RTF_UP,
+               .fc_nlinfo.nl_net = &init_net,
         };
  
         ipv6_addr_set(&cfg.fc_dst, htonl(0xFF000000), 0, 0, 0);
@@ -1589,6 +1617,7 @@ static void sit_route_add(struct net_device *dev)
                 .fc_ifindex = dev->ifindex,
                 .fc_dst_len = 96,
                 .fc_flags = RTF_UP | RTF_NONEXTHOP,
+               .fc_nlinfo.nl_net = &init_net,
         };
  
         /* prefix length - 96 bits "::d.d.d.d" */
@@ -1732,7 +1761,7 @@ void addrconf_prefix_rcv(struct net_device *dev, u8 *opt, int len)
  
  ok:
  
-               ifp = ipv6_get_ifaddr(&addr, dev, 1);
+               ifp = ipv6_get_ifaddr(&init_net, &addr, dev, 1);
  
                 if (ifp == NULL && valid_lft) {
                         int max_addresses = in6_dev->cnf.max_addresses;
@@ -1818,6 +1847,9 @@ ok:
                                  * lifetimes of an existing temporary address
                                  * when processing a Prefix Information Option.
                                  */
+                               if (ifp != ift->ifpub)
+                                       continue;
+
                                 spin_lock(&ift->lock);
                                 flags = ift->flags;
                                 if (ift->valid_lft > valid_lft &&
@@ -1890,7 +1922,7 @@ int addrconf_set_dstaddr(void __user *arg)
                 p.iph.ihl = 5;
                 p.iph.protocol = IPPROTO_IPV6;
                 p.iph.ttl = 64;
-               ifr.ifr_ifru.ifru_data = (void __user *)&p;
+               ifr.ifr_ifru.ifru_data = (__force void __user *)&p;
  
                 oldfs = get_fs(); set_fs(KERNEL_DS);
                 err = dev->do_ioctl(dev, &ifr, SIOCADDTUNNEL);
@@ -2424,7 +2456,7 @@ static int addrconf_ifdown(struct net_device *dev, int how)
  
         ASSERT_RTNL();
  
-       if (dev == init_net.loopback_dev && how == 1)
+       if ((dev->flags & IFF_LOOPBACK) && how == 1)
                 how = 0;
  
         rt6_ifdown(dev);
@@ -2437,7 +2469,7 @@ static int addrconf_ifdown(struct net_device *dev, int how)
         /* Step 1: remove reference to ipv6 device from parent device.
                    Do not dev_put!
          */
-       if (how == 1) {
+       if (how) {
                 idev->dead = 1;
  
                 /* protected by rtnl_lock */
@@ -2469,12 +2501,12 @@ static int addrconf_ifdown(struct net_device *dev, int how)
         write_lock_bh(&idev->lock);
  
         /* Step 3: clear flags for stateless addrconf */
-       if (how != 1)
+       if (!how)
                 idev->if_flags &= ~(IF_RS_SENT|IF_RA_RCVD|IF_READY);
  
         /* Step 4: clear address list */
  #ifdef CONFIG_IPV6_PRIVACY
-       if (how == 1 && del_timer(&idev->regen_timer))
+       if (how && del_timer(&idev->regen_timer))
                 in6_dev_put(idev);
  
         /* clear tempaddr list */
@@ -2511,7 +2543,7 @@ static int addrconf_ifdown(struct net_device *dev, int how)
  
         /* Step 5: Discard multicast list */
  
-       if (how == 1)
+       if (how)
                 ipv6_mc_destroy_dev(idev);
         else
                 ipv6_mc_down(idev);
@@ -2520,7 +2552,7 @@ static int addrconf_ifdown(struct net_device *dev, int how)
  
         /* Shot the device (if unregistered) */
  
-       if (how == 1) {
+       if (how) {
                 addrconf_sysctl_unregister(idev);
                 neigh_parms_release(&nd_tbl, idev->nd_parms);
                 neigh_ifdown(&nd_tbl, dev);
@@ -2735,6 +2767,7 @@ static void addrconf_dad_run(struct inet6_dev *idev) {
  
  #ifdef CONFIG_PROC_FS
  struct if6_iter_state {
+       struct seq_net_private p;
         int bucket;
  };
  
@@ -2742,9 +2775,13 @@ static struct inet6_ifaddr *if6_get_first(struct seq_file *seq)
  {
         struct inet6_ifaddr *ifa = NULL;
         struct if6_iter_state *state = seq->private;
+       struct net *net = state->p.net;
  
         for (state->bucket = 0; state->bucket < IN6_ADDR_HSIZE; ++state->bucket) {
                 ifa = inet6_addr_lst[state->bucket];
+
+               while (ifa && ifa->idev->dev->nd_net != net)
+                       ifa = ifa->lst_next;
                 if (ifa)
                         break;
         }
@@ -2754,13 +2791,22 @@ static struct inet6_ifaddr *if6_get_first(struct seq_file *seq)
  static struct inet6_ifaddr *if6_get_next(struct seq_file *seq, struct inet6_ifaddr *ifa)
  {
         struct if6_iter_state *state = seq->private;
+       struct net *net = state->p.net;
  
         ifa = ifa->lst_next;
  try_again:
+       if (ifa) {
+               if (ifa->idev->dev->nd_net != net) {
+                       ifa = ifa->lst_next;
+                       goto try_again;
+               }
+       }
+
         if (!ifa && ++state->bucket < IN6_ADDR_HSIZE) {
                 ifa = inet6_addr_lst[state->bucket];
                 goto try_again;
         }
+
         return ifa;
  }
  
@@ -2775,6 +2821,7 @@ static struct inet6_ifaddr *if6_get_idx(struct seq_file *seq, loff_t pos)
  }
  
  static void *if6_seq_start(struct seq_file *seq, loff_t *pos)
+       __acquires(addrconf_hash_lock)
  {
         read_lock_bh(&addrconf_hash_lock);
         return if6_get_idx(seq, *pos);
@@ -2790,6 +2837,7 @@ static void *if6_seq_next(struct seq_file *seq, void *v, loff_t *pos)
  }
  
  static void if6_seq_stop(struct seq_file *seq, void *v)
+       __releases(addrconf_hash_lock)
  {
         read_unlock_bh(&addrconf_hash_lock);
  }
@@ -2817,8 +2865,8 @@ static const struct seq_operations if6_seq_ops = {
  
  static int if6_seq_open(struct inode *inode, struct file *file)
  {
-       return seq_open_private(file, &if6_seq_ops,
-                       sizeof(struct if6_iter_state));
+       return seq_open_net(inode, file, &if6_seq_ops,
+                           sizeof(struct if6_iter_state));
  }
  
  static const struct file_operations if6_fops = {
@@ -2826,31 +2874,48 @@ static const struct file_operations if6_fops = {
         .open           = if6_seq_open,
         .read           = seq_read,
         .llseek         = seq_lseek,
-       .release        = seq_release_private,
+       .release        = seq_release_net,
  };
  
-int __init if6_proc_init(void)
+static int if6_proc_net_init(struct net *net)
  {
-       if (!proc_net_fops_create(&init_net, "if_inet6", S_IRUGO, &if6_fops))
+       if (!proc_net_fops_create(net, "if_inet6", S_IRUGO, &if6_fops))
                 return -ENOMEM;
         return 0;
  }
  
+static void if6_proc_net_exit(struct net *net)
+{
+       proc_net_remove(net, "if_inet6");
+}
+
+static struct pernet_operations if6_proc_net_ops = {
+       .init = if6_proc_net_init,
+       .exit = if6_proc_net_exit,
+};
+
+int __init if6_proc_init(void)
+{
+       return register_pernet_subsys(&if6_proc_net_ops);
+}
+
  void if6_proc_exit(void)
  {
-       proc_net_remove(&init_net, "if_inet6");
+       unregister_pernet_subsys(&if6_proc_net_ops);
  }
  #endif /* CONFIG_PROC_FS */
  
  #if defined(CONFIG_IPV6_MIP6) || defined(CONFIG_IPV6_MIP6_MODULE)
  /* Check if address is a home address configured on any interface. */
-int ipv6_chk_home_addr(struct in6_addr *addr)
+int ipv6_chk_home_addr(struct net *net, struct in6_addr *addr)
  {
         int ret = 0;
         struct inet6_ifaddr * ifp;
         u8 hash = ipv6_addr_hash(addr);
         read_lock_bh(&addrconf_hash_lock);
         for (ifp = inet6_addr_lst[hash]; ifp; ifp = ifp->lst_next) {
+               if (ifp->idev->dev->nd_net != net)
+                       continue;
                 if (ipv6_addr_cmp(&ifp->addr, addr) == 0 &&
                     (ifp->flags & IFA_F_HOMEADDRESS)) {
                         ret = 1;
@@ -3099,7 +3164,7 @@ inet6_rtm_newaddr(struct sk_buff *skb, struct nlmsghdr *nlh, void *arg)
         /* We ignore other flags so far. */
         ifa_flags = ifm->ifa_flags & (IFA_F_NODAD | IFA_F_HOMEADDRESS);
  
-       ifa = ipv6_get_ifaddr(pfx, dev, 1);
+       ifa = ipv6_get_ifaddr(net, pfx, dev, 1);
         if (ifa == NULL) {
                 /*
                  * It would be best to check for !NLM_F_CREATE here but
@@ -3292,11 +3357,11 @@ static int inet6_dump_addr(struct sk_buff *skb, struct netlink_callback *cb,
                              ifa = ifa->if_next, ip_idx++) {
                                 if (ip_idx < s_ip_idx)
                                         continue;
-                               if ((err = inet6_fill_ifaddr(skb, ifa,
-                                   NETLINK_CB(cb->skb).pid,
-                                   cb->nlh->nlmsg_seq, RTM_NEWADDR,
-                                   NLM_F_MULTI)) <= 0)
-                                       goto done;
+                               err = inet6_fill_ifaddr(skb, ifa,
+                                                       NETLINK_CB(cb->skb).pid,
+                                                       cb->nlh->nlmsg_seq,
+                                                       RTM_NEWADDR,
+                                                       NLM_F_MULTI);
                         }
                         break;
                 case MULTICAST_ADDR:
@@ -3305,11 +3370,11 @@ static int inet6_dump_addr(struct sk_buff *skb, struct netlink_callback *cb,
                              ifmca = ifmca->next, ip_idx++) {
                                 if (ip_idx < s_ip_idx)
                                         continue;
-                               if ((err = inet6_fill_ifmcaddr(skb, ifmca,
-                                   NETLINK_CB(cb->skb).pid,
-                                   cb->nlh->nlmsg_seq, RTM_GETMULTICAST,
-                                   NLM_F_MULTI)) <= 0)
-                                       goto done;
+                               err = inet6_fill_ifmcaddr(skb, ifmca,
+                                                         NETLINK_CB(cb->skb).pid,
+                                                         cb->nlh->nlmsg_seq,
+                                                         RTM_GETMULTICAST,
+                                                         NLM_F_MULTI);
                         }
                         break;
                 case ANYCAST_ADDR:
@@ -3318,11 +3383,11 @@ static int inet6_dump_addr(struct sk_buff *skb, struct netlink_callback *cb,
                              ifaca = ifaca->aca_next, ip_idx++) {
                                 if (ip_idx < s_ip_idx)
                                         continue;
-                               if ((err = inet6_fill_ifacaddr(skb, ifaca,
-                                   NETLINK_CB(cb->skb).pid,
-                                   cb->nlh->nlmsg_seq, RTM_GETANYCAST,
-                                   NLM_F_MULTI)) <= 0)
-                                       goto done;
+                               err = inet6_fill_ifacaddr(skb, ifaca,
+                                                         NETLINK_CB(cb->skb).pid,
+                                                         cb->nlh->nlmsg_seq,
+                                                         RTM_GETANYCAST,
+                                                         NLM_F_MULTI);
                         }
                         break;
                 default:
@@ -3330,14 +3395,12 @@ static int inet6_dump_addr(struct sk_buff *skb, struct netlink_callback *cb,
                 }
                 read_unlock_bh(&idev->lock);
                 in6_dev_put(idev);
+
+               if (err <= 0)
+                       break;
  cont:
                 idx++;
         }
-done:
-       if (err <= 0) {
-               read_unlock_bh(&idev->lock);
-               in6_dev_put(idev);
-       }
         cb->args[0] = idx;
         cb->args[1] = ip_idx;
         return skb->len;
@@ -3406,7 +3469,7 @@ static int inet6_rtm_getaddr(struct sk_buff *in_skb, struct nlmsghdr* nlh,
         if (ifm->ifa_index)
                 dev = __dev_get_by_index(&init_net, ifm->ifa_index);
  
-       if ((ifa = ipv6_get_ifaddr(addr, dev, 1)) == NULL) {
+       if ((ifa = ipv6_get_ifaddr(net, addr, dev, 1)) == NULL) {
                 err = -EADDRNOTAVAIL;
                 goto errout;
         }