12874c5fdSThomas Gleixner // SPDX-License-Identifier: GPL-2.0-or-later 2f30c2269SUwe Zeisberger /* linux/net/ipv4/arp.c 31da177e4SLinus Torvalds * 41da177e4SLinus Torvalds * Copyright (C) 1994 by Florian La Roche 51da177e4SLinus Torvalds * 61da177e4SLinus Torvalds * This module implements the Address Resolution Protocol ARP (RFC 826), 71da177e4SLinus Torvalds * which is used to convert IP addresses (or in the future maybe other 81da177e4SLinus Torvalds * high-level addresses) into a low-level hardware address (like an Ethernet 91da177e4SLinus Torvalds * address). 101da177e4SLinus Torvalds * 111da177e4SLinus Torvalds * Fixes: 121da177e4SLinus Torvalds * Alan Cox : Removed the Ethernet assumptions in 131da177e4SLinus Torvalds * Florian's code 141da177e4SLinus Torvalds * Alan Cox : Fixed some small errors in the ARP 151da177e4SLinus Torvalds * logic 161da177e4SLinus Torvalds * Alan Cox : Allow >4K in /proc 171da177e4SLinus Torvalds * Alan Cox : Make ARP add its own protocol entry 181da177e4SLinus Torvalds * Ross Martin : Rewrote arp_rcv() and arp_get_info() 191da177e4SLinus Torvalds * Stephen Henson : Add AX25 support to arp_get_info() 201da177e4SLinus Torvalds * Alan Cox : Drop data when a device is downed. 211da177e4SLinus Torvalds * Alan Cox : Use init_timer(). 221da177e4SLinus Torvalds * Alan Cox : Double lock fixes. 231da177e4SLinus Torvalds * Martin Seine : Move the arphdr structure 241da177e4SLinus Torvalds * to if_arp.h for compatibility. 251da177e4SLinus Torvalds * with BSD based programs. 261da177e4SLinus Torvalds * Andrew Tridgell : Added ARP netmask code and 271da177e4SLinus Torvalds * re-arranged proxy handling. 281da177e4SLinus Torvalds * Alan Cox : Changed to use notifiers. 291da177e4SLinus Torvalds * Niibe Yutaka : Reply for this device or proxies only. 301da177e4SLinus Torvalds * Alan Cox : Don't proxy across hardware types! 311da177e4SLinus Torvalds * Jonathan Naylor : Added support for NET/ROM. 321da177e4SLinus Torvalds * Mike Shaver : RFC1122 checks. 331da177e4SLinus Torvalds * Jonathan Naylor : Only lookup the hardware address for 341da177e4SLinus Torvalds * the correct hardware type. 351da177e4SLinus Torvalds * Germano Caronni : Assorted subtle races. 361da177e4SLinus Torvalds * Craig Schlenter : Don't modify permanent entry 371da177e4SLinus Torvalds * during arp_rcv. 381da177e4SLinus Torvalds * Russ Nelson : Tidied up a few bits. 391da177e4SLinus Torvalds * Alexey Kuznetsov: Major changes to caching and behaviour, 401da177e4SLinus Torvalds * eg intelligent arp probing and 411da177e4SLinus Torvalds * generation 421da177e4SLinus Torvalds * of host down events. 431da177e4SLinus Torvalds * Alan Cox : Missing unlock in device events. 441da177e4SLinus Torvalds * Eckes : ARP ioctl control errors. 451da177e4SLinus Torvalds * Alexey Kuznetsov: Arp free fix. 461da177e4SLinus Torvalds * Manuel Rodriguez: Gratuitous ARP. 471da177e4SLinus Torvalds * Jonathan Layes : Added arpd support through kerneld 481da177e4SLinus Torvalds * message queue (960314) 491da177e4SLinus Torvalds * Mike Shaver : /proc/sys/net/ipv4/arp_* support 501da177e4SLinus Torvalds * Mike McLagan : Routing by source 511da177e4SLinus Torvalds * Stuart Cheshire : Metricom and grat arp fixes 521da177e4SLinus Torvalds * *** FOR 2.1 clean this up *** 531da177e4SLinus Torvalds * Lawrence V. Stefani: (08/12/96) Added FDDI support. 541da177e4SLinus Torvalds * Alan Cox : Took the AP1000 nasty FDDI hack and 551da177e4SLinus Torvalds * folded into the mainstream FDDI code. 561da177e4SLinus Torvalds * Ack spit, Linus how did you allow that 571da177e4SLinus Torvalds * one in... 581da177e4SLinus Torvalds * Jes Sorensen : Make FDDI work again in 2.1.x and 591da177e4SLinus Torvalds * clean up the APFDDI & gen. FDDI bits. 601da177e4SLinus Torvalds * Alexey Kuznetsov: new arp state machine; 611da177e4SLinus Torvalds * now it is in net/core/neighbour.c. 621da177e4SLinus Torvalds * Krzysztof Halasa: Added Frame Relay ARP support. 631da177e4SLinus Torvalds * Arnaldo C. Melo : convert /proc/net/arp to seq_file 641da177e4SLinus Torvalds * Shmulik Hen: Split arp_send to arp_create and 651da177e4SLinus Torvalds * arp_xmit so intermediate drivers like 661da177e4SLinus Torvalds * bonding can change the skb before 671da177e4SLinus Torvalds * sending (e.g. insert 8021q tag). 681da177e4SLinus Torvalds * Harald Welte : convert to make use of jenkins hash 6965324144SJesper Dangaard Brouer * Jesper D. Brouer: Proxy ARP PVLAN RFC 3069 support. 701da177e4SLinus Torvalds */ 711da177e4SLinus Torvalds 7291df42beSJoe Perches #define pr_fmt(fmt) KBUILD_MODNAME ": " fmt 7391df42beSJoe Perches 741da177e4SLinus Torvalds #include <linux/module.h> 751da177e4SLinus Torvalds #include <linux/types.h> 761da177e4SLinus Torvalds #include <linux/string.h> 771da177e4SLinus Torvalds #include <linux/kernel.h> 784fc268d2SRandy Dunlap #include <linux/capability.h> 791da177e4SLinus Torvalds #include <linux/socket.h> 801da177e4SLinus Torvalds #include <linux/sockios.h> 811da177e4SLinus Torvalds #include <linux/errno.h> 821da177e4SLinus Torvalds #include <linux/in.h> 831da177e4SLinus Torvalds #include <linux/mm.h> 841da177e4SLinus Torvalds #include <linux/inet.h> 8514c85021SArnaldo Carvalho de Melo #include <linux/inetdevice.h> 861da177e4SLinus Torvalds #include <linux/netdevice.h> 871da177e4SLinus Torvalds #include <linux/etherdevice.h> 881da177e4SLinus Torvalds #include <linux/fddidevice.h> 891da177e4SLinus Torvalds #include <linux/if_arp.h> 901da177e4SLinus Torvalds #include <linux/skbuff.h> 911da177e4SLinus Torvalds #include <linux/proc_fs.h> 921da177e4SLinus Torvalds #include <linux/seq_file.h> 931da177e4SLinus Torvalds #include <linux/stat.h> 941da177e4SLinus Torvalds #include <linux/init.h> 951da177e4SLinus Torvalds #include <linux/net.h> 961da177e4SLinus Torvalds #include <linux/rcupdate.h> 975a0e3ad6STejun Heo #include <linux/slab.h> 981da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 991da177e4SLinus Torvalds #include <linux/sysctl.h> 1001da177e4SLinus Torvalds #endif 1011da177e4SLinus Torvalds 102457c4cbcSEric W. Biederman #include <net/net_namespace.h> 1031da177e4SLinus Torvalds #include <net/ip.h> 1041da177e4SLinus Torvalds #include <net/icmp.h> 1051da177e4SLinus Torvalds #include <net/route.h> 1061da177e4SLinus Torvalds #include <net/protocol.h> 1071da177e4SLinus Torvalds #include <net/tcp.h> 1081da177e4SLinus Torvalds #include <net/sock.h> 1091da177e4SLinus Torvalds #include <net/arp.h> 1101da177e4SLinus Torvalds #include <net/ax25.h> 1111da177e4SLinus Torvalds #include <net/netrom.h> 11263d008a4SJiri Benc #include <net/dst_metadata.h> 11363d008a4SJiri Benc #include <net/ip_tunnels.h> 1141da177e4SLinus Torvalds 115deffd777SChangli Gao #include <linux/uaccess.h> 1161da177e4SLinus Torvalds 1171da177e4SLinus Torvalds #include <linux/netfilter_arp.h> 1181da177e4SLinus Torvalds 1191da177e4SLinus Torvalds /* 1201da177e4SLinus Torvalds * Interface to generic neighbour cache. 1211da177e4SLinus Torvalds */ 1222c2aba6cSDavid S. Miller static u32 arp_hash(const void *pkey, const struct net_device *dev, __u32 *hash_rnd); 12360395a20SEric W. Biederman static bool arp_key_eq(const struct neighbour *n, const void *pkey); 1241da177e4SLinus Torvalds static int arp_constructor(struct neighbour *neigh); 1251da177e4SLinus Torvalds static void arp_solicit(struct neighbour *neigh, struct sk_buff *skb); 1261da177e4SLinus Torvalds static void arp_error_report(struct neighbour *neigh, struct sk_buff *skb); 1271da177e4SLinus Torvalds static void parp_redo(struct sk_buff *skb); 128*8cf8821eSJeff Dike static int arp_is_multicast(const void *pkey); 1291da177e4SLinus Torvalds 13089d69d2bSStephen Hemminger static const struct neigh_ops arp_generic_ops = { 1311da177e4SLinus Torvalds .family = AF_INET, 1321da177e4SLinus Torvalds .solicit = arp_solicit, 1331da177e4SLinus Torvalds .error_report = arp_error_report, 1341da177e4SLinus Torvalds .output = neigh_resolve_output, 1351da177e4SLinus Torvalds .connected_output = neigh_connected_output, 1361da177e4SLinus Torvalds }; 1371da177e4SLinus Torvalds 13889d69d2bSStephen Hemminger static const struct neigh_ops arp_hh_ops = { 1391da177e4SLinus Torvalds .family = AF_INET, 1401da177e4SLinus Torvalds .solicit = arp_solicit, 1411da177e4SLinus Torvalds .error_report = arp_error_report, 1421da177e4SLinus Torvalds .output = neigh_resolve_output, 1431da177e4SLinus Torvalds .connected_output = neigh_resolve_output, 1441da177e4SLinus Torvalds }; 1451da177e4SLinus Torvalds 14689d69d2bSStephen Hemminger static const struct neigh_ops arp_direct_ops = { 1471da177e4SLinus Torvalds .family = AF_INET, 1488f40b161SDavid S. Miller .output = neigh_direct_output, 1498f40b161SDavid S. Miller .connected_output = neigh_direct_output, 1501da177e4SLinus Torvalds }; 1511da177e4SLinus Torvalds 1521da177e4SLinus Torvalds struct neigh_table arp_tbl = { 1531da177e4SLinus Torvalds .family = AF_INET, 1541da177e4SLinus Torvalds .key_len = 4, 155bdf53c58SEric W. Biederman .protocol = cpu_to_be16(ETH_P_IP), 1561da177e4SLinus Torvalds .hash = arp_hash, 15760395a20SEric W. Biederman .key_eq = arp_key_eq, 1581da177e4SLinus Torvalds .constructor = arp_constructor, 1591da177e4SLinus Torvalds .proxy_redo = parp_redo, 160*8cf8821eSJeff Dike .is_multicast = arp_is_multicast, 1611da177e4SLinus Torvalds .id = "arp_cache", 1621da177e4SLinus Torvalds .parms = { 1631da177e4SLinus Torvalds .tbl = &arp_tbl, 1641da177e4SLinus Torvalds .reachable_time = 30 * HZ, 1651f9248e5SJiri Pirko .data = { 1661f9248e5SJiri Pirko [NEIGH_VAR_MCAST_PROBES] = 3, 1671f9248e5SJiri Pirko [NEIGH_VAR_UCAST_PROBES] = 3, 1681f9248e5SJiri Pirko [NEIGH_VAR_RETRANS_TIME] = 1 * HZ, 1691f9248e5SJiri Pirko [NEIGH_VAR_BASE_REACHABLE_TIME] = 30 * HZ, 1701f9248e5SJiri Pirko [NEIGH_VAR_DELAY_PROBE_TIME] = 5 * HZ, 1711f9248e5SJiri Pirko [NEIGH_VAR_GC_STALETIME] = 60 * HZ, 172eaa72dc4SEric Dumazet [NEIGH_VAR_QUEUE_LEN_BYTES] = SK_WMEM_MAX, 1731f9248e5SJiri Pirko [NEIGH_VAR_PROXY_QLEN] = 64, 1741f9248e5SJiri Pirko [NEIGH_VAR_ANYCAST_DELAY] = 1 * HZ, 1751f9248e5SJiri Pirko [NEIGH_VAR_PROXY_DELAY] = (8 * HZ) / 10, 1761f9248e5SJiri Pirko [NEIGH_VAR_LOCKTIME] = 1 * HZ, 1771f9248e5SJiri Pirko }, 1781da177e4SLinus Torvalds }, 1791da177e4SLinus Torvalds .gc_interval = 30 * HZ, 1801da177e4SLinus Torvalds .gc_thresh1 = 128, 1811da177e4SLinus Torvalds .gc_thresh2 = 512, 1821da177e4SLinus Torvalds .gc_thresh3 = 1024, 1831da177e4SLinus Torvalds }; 1844bc2f18bSEric Dumazet EXPORT_SYMBOL(arp_tbl); 1851da177e4SLinus Torvalds 186714e85beSAl Viro int arp_mc_map(__be32 addr, u8 *haddr, struct net_device *dev, int dir) 1871da177e4SLinus Torvalds { 1881da177e4SLinus Torvalds switch (dev->type) { 1891da177e4SLinus Torvalds case ARPHRD_ETHER: 1901da177e4SLinus Torvalds case ARPHRD_FDDI: 1911da177e4SLinus Torvalds case ARPHRD_IEEE802: 1921da177e4SLinus Torvalds ip_eth_mc_map(addr, haddr); 1931da177e4SLinus Torvalds return 0; 1941da177e4SLinus Torvalds case ARPHRD_INFINIBAND: 195a9e527e3SRolf Manderscheid ip_ib_mc_map(addr, dev->broadcast, haddr); 1961da177e4SLinus Torvalds return 0; 19793ca3bb5STimo Teräs case ARPHRD_IPGRE: 19893ca3bb5STimo Teräs ip_ipgre_mc_map(addr, dev->broadcast, haddr); 19993ca3bb5STimo Teräs return 0; 2001da177e4SLinus Torvalds default: 2011da177e4SLinus Torvalds if (dir) { 2021da177e4SLinus Torvalds memcpy(haddr, dev->broadcast, dev->addr_len); 2031da177e4SLinus Torvalds return 0; 2041da177e4SLinus Torvalds } 2051da177e4SLinus Torvalds } 2061da177e4SLinus Torvalds return -EINVAL; 2071da177e4SLinus Torvalds } 2081da177e4SLinus Torvalds 2091da177e4SLinus Torvalds 210d6bf7817SEric Dumazet static u32 arp_hash(const void *pkey, 211d6bf7817SEric Dumazet const struct net_device *dev, 2122c2aba6cSDavid S. Miller __u32 *hash_rnd) 2131da177e4SLinus Torvalds { 21460395a20SEric W. Biederman return arp_hashfn(pkey, dev, hash_rnd); 21560395a20SEric W. Biederman } 21660395a20SEric W. Biederman 21760395a20SEric W. Biederman static bool arp_key_eq(const struct neighbour *neigh, const void *pkey) 21860395a20SEric W. Biederman { 21960395a20SEric W. Biederman return neigh_key_eq32(neigh, pkey); 2201da177e4SLinus Torvalds } 2211da177e4SLinus Torvalds 2221da177e4SLinus Torvalds static int arp_constructor(struct neighbour *neigh) 2231da177e4SLinus Torvalds { 224cd9ff4deSJim Westfall __be32 addr; 2251da177e4SLinus Torvalds struct net_device *dev = neigh->dev; 2261da177e4SLinus Torvalds struct in_device *in_dev; 2271da177e4SLinus Torvalds struct neigh_parms *parms; 228cd9ff4deSJim Westfall u32 inaddr_any = INADDR_ANY; 2291da177e4SLinus Torvalds 230cd9ff4deSJim Westfall if (dev->flags & (IFF_LOOPBACK | IFF_POINTOPOINT)) 231cd9ff4deSJim Westfall memcpy(neigh->primary_key, &inaddr_any, arp_tbl.key_len); 232cd9ff4deSJim Westfall 233cd9ff4deSJim Westfall addr = *(__be32 *)neigh->primary_key; 2341da177e4SLinus Torvalds rcu_read_lock(); 235e5ed6399SHerbert Xu in_dev = __in_dev_get_rcu(dev); 23651456b29SIan Morris if (!in_dev) { 2371da177e4SLinus Torvalds rcu_read_unlock(); 2381da177e4SLinus Torvalds return -EINVAL; 2391da177e4SLinus Torvalds } 2401da177e4SLinus Torvalds 24130bbaa19SDavid Ahern neigh->type = inet_addr_type_dev_table(dev_net(dev), dev, addr); 242a79878f0SDenis V. Lunev 2431da177e4SLinus Torvalds parms = in_dev->arp_parms; 2441da177e4SLinus Torvalds __neigh_parms_put(neigh->parms); 2451da177e4SLinus Torvalds neigh->parms = neigh_parms_clone(parms); 2461da177e4SLinus Torvalds rcu_read_unlock(); 2471da177e4SLinus Torvalds 2483b04dddeSStephen Hemminger if (!dev->header_ops) { 2491da177e4SLinus Torvalds neigh->nud_state = NUD_NOARP; 2501da177e4SLinus Torvalds neigh->ops = &arp_direct_ops; 2518f40b161SDavid S. Miller neigh->output = neigh_direct_output; 2521da177e4SLinus Torvalds } else { 2531da177e4SLinus Torvalds /* Good devices (checked by reading texts, but only Ethernet is 2541da177e4SLinus Torvalds tested) 2551da177e4SLinus Torvalds 2561da177e4SLinus Torvalds ARPHRD_ETHER: (ethernet, apfddi) 2571da177e4SLinus Torvalds ARPHRD_FDDI: (fddi) 2581da177e4SLinus Torvalds ARPHRD_IEEE802: (tr) 2591da177e4SLinus Torvalds ARPHRD_METRICOM: (strip) 2601da177e4SLinus Torvalds ARPHRD_ARCNET: 2611da177e4SLinus Torvalds etc. etc. etc. 2621da177e4SLinus Torvalds 2631da177e4SLinus Torvalds ARPHRD_IPDDP will also work, if author repairs it. 2641da177e4SLinus Torvalds I did not it, because this driver does not work even 2651da177e4SLinus Torvalds in old paradigm. 2661da177e4SLinus Torvalds */ 2671da177e4SLinus Torvalds 2681da177e4SLinus Torvalds if (neigh->type == RTN_MULTICAST) { 2691da177e4SLinus Torvalds neigh->nud_state = NUD_NOARP; 2701da177e4SLinus Torvalds arp_mc_map(addr, neigh->ha, dev, 1); 2711da177e4SLinus Torvalds } else if (dev->flags & (IFF_NOARP | IFF_LOOPBACK)) { 2721da177e4SLinus Torvalds neigh->nud_state = NUD_NOARP; 2731da177e4SLinus Torvalds memcpy(neigh->ha, dev->dev_addr, dev->addr_len); 274deffd777SChangli Gao } else if (neigh->type == RTN_BROADCAST || 275deffd777SChangli Gao (dev->flags & IFF_POINTOPOINT)) { 2761da177e4SLinus Torvalds neigh->nud_state = NUD_NOARP; 2771da177e4SLinus Torvalds memcpy(neigh->ha, dev->broadcast, dev->addr_len); 2781da177e4SLinus Torvalds } 2793b04dddeSStephen Hemminger 2803b04dddeSStephen Hemminger if (dev->header_ops->cache) 2811da177e4SLinus Torvalds neigh->ops = &arp_hh_ops; 2821da177e4SLinus Torvalds else 2831da177e4SLinus Torvalds neigh->ops = &arp_generic_ops; 2843b04dddeSStephen Hemminger 2851da177e4SLinus Torvalds if (neigh->nud_state & NUD_VALID) 2861da177e4SLinus Torvalds neigh->output = neigh->ops->connected_output; 2871da177e4SLinus Torvalds else 2881da177e4SLinus Torvalds neigh->output = neigh->ops->output; 2891da177e4SLinus Torvalds } 2901da177e4SLinus Torvalds return 0; 2911da177e4SLinus Torvalds } 2921da177e4SLinus Torvalds 2931da177e4SLinus Torvalds static void arp_error_report(struct neighbour *neigh, struct sk_buff *skb) 2941da177e4SLinus Torvalds { 2951da177e4SLinus Torvalds dst_link_failure(skb); 2961da177e4SLinus Torvalds kfree_skb(skb); 2971da177e4SLinus Torvalds } 2981da177e4SLinus Torvalds 2990accfc26SThomas Graf /* Create and send an arp packet. */ 3000accfc26SThomas Graf static void arp_send_dst(int type, int ptype, __be32 dest_ip, 3010accfc26SThomas Graf struct net_device *dev, __be32 src_ip, 3020accfc26SThomas Graf const unsigned char *dest_hw, 3030accfc26SThomas Graf const unsigned char *src_hw, 30463d008a4SJiri Benc const unsigned char *target_hw, 30563d008a4SJiri Benc struct dst_entry *dst) 3060accfc26SThomas Graf { 3070accfc26SThomas Graf struct sk_buff *skb; 3080accfc26SThomas Graf 3090accfc26SThomas Graf /* arp on this interface. */ 3100accfc26SThomas Graf if (dev->flags & IFF_NOARP) 3110accfc26SThomas Graf return; 3120accfc26SThomas Graf 3130accfc26SThomas Graf skb = arp_create(type, ptype, dest_ip, dev, src_ip, 3140accfc26SThomas Graf dest_hw, src_hw, target_hw); 3150accfc26SThomas Graf if (!skb) 3160accfc26SThomas Graf return; 3170accfc26SThomas Graf 318181a4224SJiri Benc skb_dst_set(skb, dst_clone(dst)); 3190accfc26SThomas Graf arp_xmit(skb); 3200accfc26SThomas Graf } 3210accfc26SThomas Graf 3220accfc26SThomas Graf void arp_send(int type, int ptype, __be32 dest_ip, 3230accfc26SThomas Graf struct net_device *dev, __be32 src_ip, 3240accfc26SThomas Graf const unsigned char *dest_hw, const unsigned char *src_hw, 3250accfc26SThomas Graf const unsigned char *target_hw) 3260accfc26SThomas Graf { 3270accfc26SThomas Graf arp_send_dst(type, ptype, dest_ip, dev, src_ip, dest_hw, src_hw, 3280accfc26SThomas Graf target_hw, NULL); 3290accfc26SThomas Graf } 3300accfc26SThomas Graf EXPORT_SYMBOL(arp_send); 3310accfc26SThomas Graf 3321da177e4SLinus Torvalds static void arp_solicit(struct neighbour *neigh, struct sk_buff *skb) 3331da177e4SLinus Torvalds { 334a61ced5dSAl Viro __be32 saddr = 0; 335cf0be880SCong Wang u8 dst_ha[MAX_ADDR_LEN], *dst_hw = NULL; 3361da177e4SLinus Torvalds struct net_device *dev = neigh->dev; 337a61ced5dSAl Viro __be32 target = *(__be32 *)neigh->primary_key; 3381da177e4SLinus Torvalds int probes = atomic_read(&neigh->probes); 3394b4194c4SEric Dumazet struct in_device *in_dev; 34063d008a4SJiri Benc struct dst_entry *dst = NULL; 3411da177e4SLinus Torvalds 3424b4194c4SEric Dumazet rcu_read_lock(); 3434b4194c4SEric Dumazet in_dev = __in_dev_get_rcu(dev); 3444b4194c4SEric Dumazet if (!in_dev) { 3454b4194c4SEric Dumazet rcu_read_unlock(); 3461da177e4SLinus Torvalds return; 3474b4194c4SEric Dumazet } 3481da177e4SLinus Torvalds switch (IN_DEV_ARP_ANNOUNCE(in_dev)) { 3491da177e4SLinus Torvalds default: 3501da177e4SLinus Torvalds case 0: /* By default announce any local IP */ 35130bbaa19SDavid Ahern if (skb && inet_addr_type_dev_table(dev_net(dev), dev, 352deffd777SChangli Gao ip_hdr(skb)->saddr) == RTN_LOCAL) 353eddc9ec5SArnaldo Carvalho de Melo saddr = ip_hdr(skb)->saddr; 3541da177e4SLinus Torvalds break; 3551da177e4SLinus Torvalds case 1: /* Restrict announcements of saddr in same subnet */ 3561da177e4SLinus Torvalds if (!skb) 3571da177e4SLinus Torvalds break; 358eddc9ec5SArnaldo Carvalho de Melo saddr = ip_hdr(skb)->saddr; 35930bbaa19SDavid Ahern if (inet_addr_type_dev_table(dev_net(dev), dev, 36030bbaa19SDavid Ahern saddr) == RTN_LOCAL) { 3611da177e4SLinus Torvalds /* saddr should be known to target */ 3621da177e4SLinus Torvalds if (inet_addr_onlink(in_dev, target, saddr)) 3631da177e4SLinus Torvalds break; 3641da177e4SLinus Torvalds } 3651da177e4SLinus Torvalds saddr = 0; 3661da177e4SLinus Torvalds break; 3671da177e4SLinus Torvalds case 2: /* Avoid secondary IPs, get a primary/preferred one */ 3681da177e4SLinus Torvalds break; 3691da177e4SLinus Torvalds } 3704b4194c4SEric Dumazet rcu_read_unlock(); 3711da177e4SLinus Torvalds 3721da177e4SLinus Torvalds if (!saddr) 3731da177e4SLinus Torvalds saddr = inet_select_addr(dev, target, RT_SCOPE_LINK); 3741da177e4SLinus Torvalds 3751f9248e5SJiri Pirko probes -= NEIGH_VAR(neigh->parms, UCAST_PROBES); 376deffd777SChangli Gao if (probes < 0) { 3771da177e4SLinus Torvalds if (!(neigh->nud_state & NUD_VALID)) 37891df42beSJoe Perches pr_debug("trying to ucast probe in NUD_INVALID\n"); 3799650388bSEric Dumazet neigh_ha_snapshot(dst_ha, neigh, dev); 380cf0be880SCong Wang dst_hw = dst_ha; 381deffd777SChangli Gao } else { 3821f9248e5SJiri Pirko probes -= NEIGH_VAR(neigh->parms, APP_PROBES); 383deffd777SChangli Gao if (probes < 0) { 3841da177e4SLinus Torvalds neigh_app_ns(neigh); 3851da177e4SLinus Torvalds return; 3861da177e4SLinus Torvalds } 387deffd777SChangli Gao } 3881da177e4SLinus Torvalds 38963d008a4SJiri Benc if (skb && !(dev->priv_flags & IFF_XMIT_DST_RELEASE)) 390181a4224SJiri Benc dst = skb_dst(skb); 3910accfc26SThomas Graf arp_send_dst(ARPOP_REQUEST, ETH_P_ARP, target, dev, saddr, 39263d008a4SJiri Benc dst_hw, dev->dev_addr, NULL, dst); 3931da177e4SLinus Torvalds } 3941da177e4SLinus Torvalds 3959bd85e32SDenis V. Lunev static int arp_ignore(struct in_device *in_dev, __be32 sip, __be32 tip) 3961da177e4SLinus Torvalds { 397b601fa19SNicolas Dichtel struct net *net = dev_net(in_dev->dev); 3981da177e4SLinus Torvalds int scope; 3991da177e4SLinus Torvalds 4001da177e4SLinus Torvalds switch (IN_DEV_ARP_IGNORE(in_dev)) { 4011da177e4SLinus Torvalds case 0: /* Reply, the tip is already validated */ 4021da177e4SLinus Torvalds return 0; 4031da177e4SLinus Torvalds case 1: /* Reply only if tip is configured on the incoming interface */ 4041da177e4SLinus Torvalds sip = 0; 4051da177e4SLinus Torvalds scope = RT_SCOPE_HOST; 4061da177e4SLinus Torvalds break; 4071da177e4SLinus Torvalds case 2: /* 4081da177e4SLinus Torvalds * Reply only if tip is configured on the incoming interface 4091da177e4SLinus Torvalds * and is in same subnet as sip 4101da177e4SLinus Torvalds */ 4111da177e4SLinus Torvalds scope = RT_SCOPE_HOST; 4121da177e4SLinus Torvalds break; 4131da177e4SLinus Torvalds case 3: /* Do not reply for scope host addresses */ 4141da177e4SLinus Torvalds sip = 0; 4151da177e4SLinus Torvalds scope = RT_SCOPE_LINK; 416b601fa19SNicolas Dichtel in_dev = NULL; 4171da177e4SLinus Torvalds break; 4181da177e4SLinus Torvalds case 4: /* Reserved */ 4191da177e4SLinus Torvalds case 5: 4201da177e4SLinus Torvalds case 6: 4211da177e4SLinus Torvalds case 7: 4221da177e4SLinus Torvalds return 0; 4231da177e4SLinus Torvalds case 8: /* Do not reply */ 4241da177e4SLinus Torvalds return 1; 4251da177e4SLinus Torvalds default: 4261da177e4SLinus Torvalds return 0; 4271da177e4SLinus Torvalds } 428b601fa19SNicolas Dichtel return !inet_confirm_addr(net, in_dev, sip, tip, scope); 4291da177e4SLinus Torvalds } 4301da177e4SLinus Torvalds 431ed9bad06SAl Viro static int arp_filter(__be32 sip, __be32 tip, struct net_device *dev) 4321da177e4SLinus Torvalds { 4331da177e4SLinus Torvalds struct rtable *rt; 4341da177e4SLinus Torvalds int flag = 0; 4351da177e4SLinus Torvalds /*unsigned long now; */ 436ca12a1a4SPavel Emelyanov struct net *net = dev_net(dev); 4371da177e4SLinus Torvalds 43858b35f27SMiguel Fadon Perlines rt = ip_route_output(net, sip, tip, 0, l3mdev_master_ifindex_rcu(dev)); 439b23dd4feSDavid S. Miller if (IS_ERR(rt)) 4401da177e4SLinus Torvalds return 1; 441d8d1f30bSChangli Gao if (rt->dst.dev != dev) { 44202a1d6e7SEric Dumazet __NET_INC_STATS(net, LINUX_MIB_ARPFILTER); 4431da177e4SLinus Torvalds flag = 1; 4441da177e4SLinus Torvalds } 4451da177e4SLinus Torvalds ip_rt_put(rt); 4461da177e4SLinus Torvalds return flag; 4471da177e4SLinus Torvalds } 4481da177e4SLinus Torvalds 4491da177e4SLinus Torvalds /* 4501da177e4SLinus Torvalds * Check if we can use proxy ARP for this path 4511da177e4SLinus Torvalds */ 45265324144SJesper Dangaard Brouer static inline int arp_fwd_proxy(struct in_device *in_dev, 45365324144SJesper Dangaard Brouer struct net_device *dev, struct rtable *rt) 4541da177e4SLinus Torvalds { 4551da177e4SLinus Torvalds struct in_device *out_dev; 4561da177e4SLinus Torvalds int imi, omi = -1; 4571da177e4SLinus Torvalds 458d8d1f30bSChangli Gao if (rt->dst.dev == dev) 45965324144SJesper Dangaard Brouer return 0; 46065324144SJesper Dangaard Brouer 4611da177e4SLinus Torvalds if (!IN_DEV_PROXY_ARP(in_dev)) 4621da177e4SLinus Torvalds return 0; 463deffd777SChangli Gao imi = IN_DEV_MEDIUM_ID(in_dev); 464deffd777SChangli Gao if (imi == 0) 4651da177e4SLinus Torvalds return 1; 4661da177e4SLinus Torvalds if (imi == -1) 4671da177e4SLinus Torvalds return 0; 4681da177e4SLinus Torvalds 4691da177e4SLinus Torvalds /* place to check for proxy_arp for routes */ 4701da177e4SLinus Torvalds 471d8d1f30bSChangli Gao out_dev = __in_dev_get_rcu(rt->dst.dev); 472faa9dcf7SEric Dumazet if (out_dev) 4731da177e4SLinus Torvalds omi = IN_DEV_MEDIUM_ID(out_dev); 474faa9dcf7SEric Dumazet 475a02cec21SEric Dumazet return omi != imi && omi != -1; 4761da177e4SLinus Torvalds } 4771da177e4SLinus Torvalds 4781da177e4SLinus Torvalds /* 47965324144SJesper Dangaard Brouer * Check for RFC3069 proxy arp private VLAN (allow to send back to same dev) 48065324144SJesper Dangaard Brouer * 48165324144SJesper Dangaard Brouer * RFC3069 supports proxy arp replies back to the same interface. This 48265324144SJesper Dangaard Brouer * is done to support (ethernet) switch features, like RFC 3069, where 48365324144SJesper Dangaard Brouer * the individual ports are not allowed to communicate with each 48465324144SJesper Dangaard Brouer * other, BUT they are allowed to talk to the upstream router. As 48565324144SJesper Dangaard Brouer * described in RFC 3069, it is possible to allow these hosts to 48665324144SJesper Dangaard Brouer * communicate through the upstream router, by proxy_arp'ing. 48765324144SJesper Dangaard Brouer * 48865324144SJesper Dangaard Brouer * RFC 3069: "VLAN Aggregation for Efficient IP Address Allocation" 48965324144SJesper Dangaard Brouer * 49065324144SJesper Dangaard Brouer * This technology is known by different names: 49165324144SJesper Dangaard Brouer * In RFC 3069 it is called VLAN Aggregation. 49265324144SJesper Dangaard Brouer * Cisco and Allied Telesyn call it Private VLAN. 49365324144SJesper Dangaard Brouer * Hewlett-Packard call it Source-Port filtering or port-isolation. 49465324144SJesper Dangaard Brouer * Ericsson call it MAC-Forced Forwarding (RFC Draft). 49565324144SJesper Dangaard Brouer * 49665324144SJesper Dangaard Brouer */ 49765324144SJesper Dangaard Brouer static inline int arp_fwd_pvlan(struct in_device *in_dev, 49865324144SJesper Dangaard Brouer struct net_device *dev, struct rtable *rt, 49965324144SJesper Dangaard Brouer __be32 sip, __be32 tip) 50065324144SJesper Dangaard Brouer { 50165324144SJesper Dangaard Brouer /* Private VLAN is only concerned about the same ethernet segment */ 502d8d1f30bSChangli Gao if (rt->dst.dev != dev) 50365324144SJesper Dangaard Brouer return 0; 50465324144SJesper Dangaard Brouer 50565324144SJesper Dangaard Brouer /* Don't reply on self probes (often done by windowz boxes)*/ 50665324144SJesper Dangaard Brouer if (sip == tip) 50765324144SJesper Dangaard Brouer return 0; 50865324144SJesper Dangaard Brouer 50965324144SJesper Dangaard Brouer if (IN_DEV_PROXY_ARP_PVLAN(in_dev)) 51065324144SJesper Dangaard Brouer return 1; 51165324144SJesper Dangaard Brouer else 51265324144SJesper Dangaard Brouer return 0; 51365324144SJesper Dangaard Brouer } 51465324144SJesper Dangaard Brouer 51565324144SJesper Dangaard Brouer /* 5161da177e4SLinus Torvalds * Interface to link layer: send routine and receive handler. 5171da177e4SLinus Torvalds */ 5181da177e4SLinus Torvalds 5191da177e4SLinus Torvalds /* 52051456b29SIan Morris * Create an arp packet. If dest_hw is not set, we create a broadcast 5211da177e4SLinus Torvalds * message. 5221da177e4SLinus Torvalds */ 523ed9bad06SAl Viro struct sk_buff *arp_create(int type, int ptype, __be32 dest_ip, 524ed9bad06SAl Viro struct net_device *dev, __be32 src_ip, 525abfdf1c4SJan Engelhardt const unsigned char *dest_hw, 526abfdf1c4SJan Engelhardt const unsigned char *src_hw, 527abfdf1c4SJan Engelhardt const unsigned char *target_hw) 5281da177e4SLinus Torvalds { 5291da177e4SLinus Torvalds struct sk_buff *skb; 5301da177e4SLinus Torvalds struct arphdr *arp; 5311da177e4SLinus Torvalds unsigned char *arp_ptr; 53266088243SHerbert Xu int hlen = LL_RESERVED_SPACE(dev); 53366088243SHerbert Xu int tlen = dev->needed_tailroom; 5341da177e4SLinus Torvalds 5351da177e4SLinus Torvalds /* 5361da177e4SLinus Torvalds * Allocate a buffer 5371da177e4SLinus Torvalds */ 5381da177e4SLinus Torvalds 53966088243SHerbert Xu skb = alloc_skb(arp_hdr_len(dev) + hlen + tlen, GFP_ATOMIC); 54051456b29SIan Morris if (!skb) 5411da177e4SLinus Torvalds return NULL; 5421da177e4SLinus Torvalds 54366088243SHerbert Xu skb_reserve(skb, hlen); 544c1d2bbe1SArnaldo Carvalho de Melo skb_reset_network_header(skb); 5454df864c1SJohannes Berg arp = skb_put(skb, arp_hdr_len(dev)); 5461da177e4SLinus Torvalds skb->dev = dev; 5471da177e4SLinus Torvalds skb->protocol = htons(ETH_P_ARP); 54851456b29SIan Morris if (!src_hw) 5491da177e4SLinus Torvalds src_hw = dev->dev_addr; 55051456b29SIan Morris if (!dest_hw) 5511da177e4SLinus Torvalds dest_hw = dev->broadcast; 5521da177e4SLinus Torvalds 5531da177e4SLinus Torvalds /* 5541da177e4SLinus Torvalds * Fill the device header for the ARP frame 5551da177e4SLinus Torvalds */ 5560c4e8581SStephen Hemminger if (dev_hard_header(skb, dev, ptype, dest_hw, src_hw, skb->len) < 0) 5571da177e4SLinus Torvalds goto out; 5581da177e4SLinus Torvalds 5591da177e4SLinus Torvalds /* 5601da177e4SLinus Torvalds * Fill out the arp protocol part. 5611da177e4SLinus Torvalds * 5621da177e4SLinus Torvalds * The arp hardware type should match the device type, except for FDDI, 5631da177e4SLinus Torvalds * which (according to RFC 1390) should always equal 1 (Ethernet). 5641da177e4SLinus Torvalds */ 5651da177e4SLinus Torvalds /* 5661da177e4SLinus Torvalds * Exceptions everywhere. AX.25 uses the AX.25 PID value not the 5671da177e4SLinus Torvalds * DIX code for the protocol. Make these device structure fields. 5681da177e4SLinus Torvalds */ 5691da177e4SLinus Torvalds switch (dev->type) { 5701da177e4SLinus Torvalds default: 5711da177e4SLinus Torvalds arp->ar_hrd = htons(dev->type); 5721da177e4SLinus Torvalds arp->ar_pro = htons(ETH_P_IP); 5731da177e4SLinus Torvalds break; 5741da177e4SLinus Torvalds 57540e4783eSIgor Maravic #if IS_ENABLED(CONFIG_AX25) 5761da177e4SLinus Torvalds case ARPHRD_AX25: 5771da177e4SLinus Torvalds arp->ar_hrd = htons(ARPHRD_AX25); 5781da177e4SLinus Torvalds arp->ar_pro = htons(AX25_P_IP); 5791da177e4SLinus Torvalds break; 5801da177e4SLinus Torvalds 58140e4783eSIgor Maravic #if IS_ENABLED(CONFIG_NETROM) 5821da177e4SLinus Torvalds case ARPHRD_NETROM: 5831da177e4SLinus Torvalds arp->ar_hrd = htons(ARPHRD_NETROM); 5841da177e4SLinus Torvalds arp->ar_pro = htons(AX25_P_IP); 5851da177e4SLinus Torvalds break; 5861da177e4SLinus Torvalds #endif 5871da177e4SLinus Torvalds #endif 5881da177e4SLinus Torvalds 58940e4783eSIgor Maravic #if IS_ENABLED(CONFIG_FDDI) 5901da177e4SLinus Torvalds case ARPHRD_FDDI: 5911da177e4SLinus Torvalds arp->ar_hrd = htons(ARPHRD_ETHER); 5921da177e4SLinus Torvalds arp->ar_pro = htons(ETH_P_IP); 5931da177e4SLinus Torvalds break; 5941da177e4SLinus Torvalds #endif 5951da177e4SLinus Torvalds } 5961da177e4SLinus Torvalds 5971da177e4SLinus Torvalds arp->ar_hln = dev->addr_len; 5981da177e4SLinus Torvalds arp->ar_pln = 4; 5991da177e4SLinus Torvalds arp->ar_op = htons(type); 6001da177e4SLinus Torvalds 6011da177e4SLinus Torvalds arp_ptr = (unsigned char *)(arp + 1); 6021da177e4SLinus Torvalds 6031da177e4SLinus Torvalds memcpy(arp_ptr, src_hw, dev->addr_len); 6041da177e4SLinus Torvalds arp_ptr += dev->addr_len; 6051da177e4SLinus Torvalds memcpy(arp_ptr, &src_ip, 4); 6061da177e4SLinus Torvalds arp_ptr += 4; 6076752c8dbSYOSHIFUJI Hideaki / 吉藤英明 6086752c8dbSYOSHIFUJI Hideaki / 吉藤英明 switch (dev->type) { 6096752c8dbSYOSHIFUJI Hideaki / 吉藤英明 #if IS_ENABLED(CONFIG_FIREWIRE_NET) 6106752c8dbSYOSHIFUJI Hideaki / 吉藤英明 case ARPHRD_IEEE1394: 6116752c8dbSYOSHIFUJI Hideaki / 吉藤英明 break; 6126752c8dbSYOSHIFUJI Hideaki / 吉藤英明 #endif 6136752c8dbSYOSHIFUJI Hideaki / 吉藤英明 default: 61400db4124SIan Morris if (target_hw) 6151da177e4SLinus Torvalds memcpy(arp_ptr, target_hw, dev->addr_len); 6161da177e4SLinus Torvalds else 6171da177e4SLinus Torvalds memset(arp_ptr, 0, dev->addr_len); 6181da177e4SLinus Torvalds arp_ptr += dev->addr_len; 6196752c8dbSYOSHIFUJI Hideaki / 吉藤英明 } 6201da177e4SLinus Torvalds memcpy(arp_ptr, &dest_ip, 4); 6211da177e4SLinus Torvalds 6221da177e4SLinus Torvalds return skb; 6231da177e4SLinus Torvalds 6241da177e4SLinus Torvalds out: 6251da177e4SLinus Torvalds kfree_skb(skb); 6261da177e4SLinus Torvalds return NULL; 6271da177e4SLinus Torvalds } 6284bc2f18bSEric Dumazet EXPORT_SYMBOL(arp_create); 6291da177e4SLinus Torvalds 6300c4b51f0SEric W. Biederman static int arp_xmit_finish(struct net *net, struct sock *sk, struct sk_buff *skb) 631f9e4306fSEric W. Biederman { 632f9e4306fSEric W. Biederman return dev_queue_xmit(skb); 633f9e4306fSEric W. Biederman } 634f9e4306fSEric W. Biederman 6351da177e4SLinus Torvalds /* 6361da177e4SLinus Torvalds * Send an arp packet. 6371da177e4SLinus Torvalds */ 6381da177e4SLinus Torvalds void arp_xmit(struct sk_buff *skb) 6391da177e4SLinus Torvalds { 6401da177e4SLinus Torvalds /* Send it off, maybe filter it using firewalling first. */ 64129a26a56SEric W. Biederman NF_HOOK(NFPROTO_ARP, NF_ARP_OUT, 64229a26a56SEric W. Biederman dev_net(skb->dev), NULL, skb, NULL, skb->dev, 64329a26a56SEric W. Biederman arp_xmit_finish); 6441da177e4SLinus Torvalds } 6454bc2f18bSEric Dumazet EXPORT_SYMBOL(arp_xmit); 6461da177e4SLinus Torvalds 647d9ef2e7bSIhar Hrachyshka static bool arp_is_garp(struct net *net, struct net_device *dev, 648d9ef2e7bSIhar Hrachyshka int *addr_type, __be16 ar_op, 6496fd05633SIhar Hrachyshka __be32 sip, __be32 tip, 6506fd05633SIhar Hrachyshka unsigned char *sha, unsigned char *tha) 6516fd05633SIhar Hrachyshka { 652d9ef2e7bSIhar Hrachyshka bool is_garp = tip == sip; 6536fd05633SIhar Hrachyshka 6546fd05633SIhar Hrachyshka /* Gratuitous ARP _replies_ also require target hwaddr to be 6556fd05633SIhar Hrachyshka * the same as source. 6566fd05633SIhar Hrachyshka */ 6576fd05633SIhar Hrachyshka if (is_garp && ar_op == htons(ARPOP_REPLY)) 6586fd05633SIhar Hrachyshka is_garp = 6596fd05633SIhar Hrachyshka /* IPv4 over IEEE 1394 doesn't provide target 6606fd05633SIhar Hrachyshka * hardware address field in its ARP payload. 6616fd05633SIhar Hrachyshka */ 6626fd05633SIhar Hrachyshka tha && 6636fd05633SIhar Hrachyshka !memcmp(tha, sha, dev->addr_len); 6646fd05633SIhar Hrachyshka 665d9ef2e7bSIhar Hrachyshka if (is_garp) { 666d9ef2e7bSIhar Hrachyshka *addr_type = inet_addr_type_dev_table(net, dev, sip); 667d9ef2e7bSIhar Hrachyshka if (*addr_type != RTN_UNICAST) 668d9ef2e7bSIhar Hrachyshka is_garp = false; 669d9ef2e7bSIhar Hrachyshka } 6706fd05633SIhar Hrachyshka return is_garp; 6716fd05633SIhar Hrachyshka } 6726fd05633SIhar Hrachyshka 6731da177e4SLinus Torvalds /* 6741da177e4SLinus Torvalds * Process an arp request. 6751da177e4SLinus Torvalds */ 6761da177e4SLinus Torvalds 6770c4b51f0SEric W. Biederman static int arp_process(struct net *net, struct sock *sk, struct sk_buff *skb) 6781da177e4SLinus Torvalds { 6791da177e4SLinus Torvalds struct net_device *dev = skb->dev; 680faa9dcf7SEric Dumazet struct in_device *in_dev = __in_dev_get_rcu(dev); 6811da177e4SLinus Torvalds struct arphdr *arp; 6821da177e4SLinus Torvalds unsigned char *arp_ptr; 6831da177e4SLinus Torvalds struct rtable *rt; 684e0260fedSMark Ryden unsigned char *sha; 68523d268ebSIhar Hrachyshka unsigned char *tha = NULL; 6869e12bb22SAl Viro __be32 sip, tip; 6871da177e4SLinus Torvalds u16 dev_type = dev->type; 6881da177e4SLinus Torvalds int addr_type; 6891da177e4SLinus Torvalds struct neighbour *n; 69063d008a4SJiri Benc struct dst_entry *reply_dst = NULL; 69156022a8fSSalam Noureddine bool is_garp = false; 6921da177e4SLinus Torvalds 6931da177e4SLinus Torvalds /* arp_rcv below verifies the ARP header and verifies the device 6941da177e4SLinus Torvalds * is ARP'able. 6951da177e4SLinus Torvalds */ 6961da177e4SLinus Torvalds 69751456b29SIan Morris if (!in_dev) 6988dfd329fSZhang Shengju goto out_free_skb; 6991da177e4SLinus Torvalds 700d0a92be0SArnaldo Carvalho de Melo arp = arp_hdr(skb); 7011da177e4SLinus Torvalds 7021da177e4SLinus Torvalds switch (dev_type) { 7031da177e4SLinus Torvalds default: 7041da177e4SLinus Torvalds if (arp->ar_pro != htons(ETH_P_IP) || 7051da177e4SLinus Torvalds htons(dev_type) != arp->ar_hrd) 7068dfd329fSZhang Shengju goto out_free_skb; 7071da177e4SLinus Torvalds break; 7081da177e4SLinus Torvalds case ARPHRD_ETHER: 7091da177e4SLinus Torvalds case ARPHRD_FDDI: 7101da177e4SLinus Torvalds case ARPHRD_IEEE802: 7111da177e4SLinus Torvalds /* 712211ed865SPaul Gortmaker * ETHERNET, and Fibre Channel (which are IEEE 802 7131da177e4SLinus Torvalds * devices, according to RFC 2625) devices will accept ARP 7141da177e4SLinus Torvalds * hardware types of either 1 (Ethernet) or 6 (IEEE 802.2). 7151da177e4SLinus Torvalds * This is the case also of FDDI, where the RFC 1390 says that 7161da177e4SLinus Torvalds * FDDI devices should accept ARP hardware of (1) Ethernet, 7171da177e4SLinus Torvalds * however, to be more robust, we'll accept both 1 (Ethernet) 7181da177e4SLinus Torvalds * or 6 (IEEE 802.2) 7191da177e4SLinus Torvalds */ 7201da177e4SLinus Torvalds if ((arp->ar_hrd != htons(ARPHRD_ETHER) && 7211da177e4SLinus Torvalds arp->ar_hrd != htons(ARPHRD_IEEE802)) || 7221da177e4SLinus Torvalds arp->ar_pro != htons(ETH_P_IP)) 7238dfd329fSZhang Shengju goto out_free_skb; 7241da177e4SLinus Torvalds break; 7251da177e4SLinus Torvalds case ARPHRD_AX25: 7261da177e4SLinus Torvalds if (arp->ar_pro != htons(AX25_P_IP) || 7271da177e4SLinus Torvalds arp->ar_hrd != htons(ARPHRD_AX25)) 7288dfd329fSZhang Shengju goto out_free_skb; 7291da177e4SLinus Torvalds break; 7301da177e4SLinus Torvalds case ARPHRD_NETROM: 7311da177e4SLinus Torvalds if (arp->ar_pro != htons(AX25_P_IP) || 7321da177e4SLinus Torvalds arp->ar_hrd != htons(ARPHRD_NETROM)) 7338dfd329fSZhang Shengju goto out_free_skb; 7341da177e4SLinus Torvalds break; 7351da177e4SLinus Torvalds } 7361da177e4SLinus Torvalds 7371da177e4SLinus Torvalds /* Understand only these message types */ 7381da177e4SLinus Torvalds 7391da177e4SLinus Torvalds if (arp->ar_op != htons(ARPOP_REPLY) && 7401da177e4SLinus Torvalds arp->ar_op != htons(ARPOP_REQUEST)) 7418dfd329fSZhang Shengju goto out_free_skb; 7421da177e4SLinus Torvalds 7431da177e4SLinus Torvalds /* 7441da177e4SLinus Torvalds * Extract fields 7451da177e4SLinus Torvalds */ 7461da177e4SLinus Torvalds arp_ptr = (unsigned char *)(arp + 1); 7471da177e4SLinus Torvalds sha = arp_ptr; 7481da177e4SLinus Torvalds arp_ptr += dev->addr_len; 7491da177e4SLinus Torvalds memcpy(&sip, arp_ptr, 4); 7501da177e4SLinus Torvalds arp_ptr += 4; 7516752c8dbSYOSHIFUJI Hideaki / 吉藤英明 switch (dev_type) { 7526752c8dbSYOSHIFUJI Hideaki / 吉藤英明 #if IS_ENABLED(CONFIG_FIREWIRE_NET) 7536752c8dbSYOSHIFUJI Hideaki / 吉藤英明 case ARPHRD_IEEE1394: 7546752c8dbSYOSHIFUJI Hideaki / 吉藤英明 break; 7556752c8dbSYOSHIFUJI Hideaki / 吉藤英明 #endif 7566752c8dbSYOSHIFUJI Hideaki / 吉藤英明 default: 75723d268ebSIhar Hrachyshka tha = arp_ptr; 7581da177e4SLinus Torvalds arp_ptr += dev->addr_len; 7596752c8dbSYOSHIFUJI Hideaki / 吉藤英明 } 7601da177e4SLinus Torvalds memcpy(&tip, arp_ptr, 4); 7611da177e4SLinus Torvalds /* 7621da177e4SLinus Torvalds * Check for bad requests for 127.x.x.x and requests for multicast 7631da177e4SLinus Torvalds * addresses. If this is one such, delete it. 7641da177e4SLinus Torvalds */ 765d0daebc3SThomas Graf if (ipv4_is_multicast(tip) || 766d0daebc3SThomas Graf (!IN_DEV_ROUTE_LOCALNET(in_dev) && ipv4_is_loopback(tip))) 7678dfd329fSZhang Shengju goto out_free_skb; 7681da177e4SLinus Torvalds 76997daf331SJohannes Berg /* 77097daf331SJohannes Berg * For some 802.11 wireless deployments (and possibly other networks), 77197daf331SJohannes Berg * there will be an ARP proxy and gratuitous ARP frames are attacks 77297daf331SJohannes Berg * and thus should not be accepted. 77397daf331SJohannes Berg */ 77497daf331SJohannes Berg if (sip == tip && IN_DEV_ORCONF(in_dev, DROP_GRATUITOUS_ARP)) 7758dfd329fSZhang Shengju goto out_free_skb; 77697daf331SJohannes Berg 7771da177e4SLinus Torvalds /* 7781da177e4SLinus Torvalds * Special case: We must set Frame Relay source Q.922 address 7791da177e4SLinus Torvalds */ 7801da177e4SLinus Torvalds if (dev_type == ARPHRD_DLCI) 7811da177e4SLinus Torvalds sha = dev->broadcast; 7821da177e4SLinus Torvalds 7831da177e4SLinus Torvalds /* 7841da177e4SLinus Torvalds * Process entry. The idea here is we want to send a reply if it is a 7851da177e4SLinus Torvalds * request for us or if it is a request for someone else that we hold 7861da177e4SLinus Torvalds * a proxy for. We want to add an entry to our cache if it is a reply 7871da177e4SLinus Torvalds * to us or if it is a request for our address. 7881da177e4SLinus Torvalds * (The assumption for this last is that if someone is requesting our 7891da177e4SLinus Torvalds * address, they are probably intending to talk to us, so it saves time 7901da177e4SLinus Torvalds * if we cache their address. Their address is also probably not in 7911da177e4SLinus Torvalds * our cache, since ours is not in their cache.) 7921da177e4SLinus Torvalds * 7931da177e4SLinus Torvalds * Putting this another way, we only care about replies if they are to 7941da177e4SLinus Torvalds * us, in which case we add them to the cache. For requests, we care 7951da177e4SLinus Torvalds * about those for us and those for our proxies. We reply to both, 7961da177e4SLinus Torvalds * and in the case of requests for us we add the requester to the arp 7971da177e4SLinus Torvalds * cache. 7981da177e4SLinus Torvalds */ 7991da177e4SLinus Torvalds 80063d008a4SJiri Benc if (arp->ar_op == htons(ARPOP_REQUEST) && skb_metadata_dst(skb)) 80163d008a4SJiri Benc reply_dst = (struct dst_entry *) 80263d008a4SJiri Benc iptunnel_metadata_reply(skb_metadata_dst(skb), 80363d008a4SJiri Benc GFP_ATOMIC); 80463d008a4SJiri Benc 805f8a68e75SEric W. Biederman /* Special case: IPv4 duplicate address detection packet (RFC2131) */ 806f8a68e75SEric W. Biederman if (sip == 0) { 8071da177e4SLinus Torvalds if (arp->ar_op == htons(ARPOP_REQUEST) && 80830bbaa19SDavid Ahern inet_addr_type_dev_table(net, dev, tip) == RTN_LOCAL && 8099bd85e32SDenis V. Lunev !arp_ignore(in_dev, sip, tip)) 81063d008a4SJiri Benc arp_send_dst(ARPOP_REPLY, ETH_P_ARP, sip, dev, tip, 81163d008a4SJiri Benc sha, dev->dev_addr, sha, reply_dst); 8128dfd329fSZhang Shengju goto out_consume_skb; 8131da177e4SLinus Torvalds } 8141da177e4SLinus Torvalds 8151da177e4SLinus Torvalds if (arp->ar_op == htons(ARPOP_REQUEST) && 816c6cffba4SDavid S. Miller ip_route_input_noref(skb, tip, sip, 0, dev) == 0) { 8171da177e4SLinus Torvalds 818511c3f92SEric Dumazet rt = skb_rtable(skb); 8191da177e4SLinus Torvalds addr_type = rt->rt_type; 8201da177e4SLinus Torvalds 8211da177e4SLinus Torvalds if (addr_type == RTN_LOCAL) { 822deffd777SChangli Gao int dont_send; 8231da177e4SLinus Torvalds 824deffd777SChangli Gao dont_send = arp_ignore(in_dev, sip, tip); 8251da177e4SLinus Torvalds if (!dont_send && IN_DEV_ARPFILTER(in_dev)) 826ae9c416dSChangli Gao dont_send = arp_filter(sip, tip, dev); 8278164f1b7SBen Greear if (!dont_send) { 8288164f1b7SBen Greear n = neigh_event_ns(&arp_tbl, sha, &sip, dev); 8298164f1b7SBen Greear if (n) { 83063d008a4SJiri Benc arp_send_dst(ARPOP_REPLY, ETH_P_ARP, 83163d008a4SJiri Benc sip, dev, tip, sha, 83263d008a4SJiri Benc dev->dev_addr, sha, 83363d008a4SJiri Benc reply_dst); 8341da177e4SLinus Torvalds neigh_release(n); 8351da177e4SLinus Torvalds } 8368164f1b7SBen Greear } 8378dfd329fSZhang Shengju goto out_consume_skb; 8381da177e4SLinus Torvalds } else if (IN_DEV_FORWARD(in_dev)) { 83965324144SJesper Dangaard Brouer if (addr_type == RTN_UNICAST && 84065324144SJesper Dangaard Brouer (arp_fwd_proxy(in_dev, dev, rt) || 84165324144SJesper Dangaard Brouer arp_fwd_pvlan(in_dev, dev, rt, sip, tip) || 84270620c46SThomas Graf (rt->dst.dev != dev && 84370620c46SThomas Graf pneigh_lookup(&arp_tbl, net, &tip, dev, 0)))) { 8441da177e4SLinus Torvalds n = neigh_event_ns(&arp_tbl, sha, &sip, dev); 8451da177e4SLinus Torvalds if (n) 8461da177e4SLinus Torvalds neigh_release(n); 8471da177e4SLinus Torvalds 848a61bbcf2SPatrick McHardy if (NEIGH_CB(skb)->flags & LOCALLY_ENQUEUED || 8491da177e4SLinus Torvalds skb->pkt_type == PACKET_HOST || 8501f9248e5SJiri Pirko NEIGH_VAR(in_dev->arp_parms, PROXY_DELAY) == 0) { 85163d008a4SJiri Benc arp_send_dst(ARPOP_REPLY, ETH_P_ARP, 85263d008a4SJiri Benc sip, dev, tip, sha, 85363d008a4SJiri Benc dev->dev_addr, sha, 85463d008a4SJiri Benc reply_dst); 8551da177e4SLinus Torvalds } else { 856deffd777SChangli Gao pneigh_enqueue(&arp_tbl, 857deffd777SChangli Gao in_dev->arp_parms, skb); 858181a4224SJiri Benc goto out_free_dst; 8591da177e4SLinus Torvalds } 8608dfd329fSZhang Shengju goto out_consume_skb; 8611da177e4SLinus Torvalds } 8621da177e4SLinus Torvalds } 8631da177e4SLinus Torvalds } 8641da177e4SLinus Torvalds 8651da177e4SLinus Torvalds /* Update our ARP tables */ 8661da177e4SLinus Torvalds 8671da177e4SLinus Torvalds n = __neigh_lookup(&arp_tbl, &sip, dev, 0); 8681da177e4SLinus Torvalds 869d9ef2e7bSIhar Hrachyshka addr_type = -1; 8705990baaaSIhar Hrachyshka if (n || IN_DEV_ARP_ACCEPT(in_dev)) { 8717d472a59SIhar Hrachyshka is_garp = arp_is_garp(net, dev, &addr_type, arp->ar_op, 8727d472a59SIhar Hrachyshka sip, tip, sha, tha); 8737d472a59SIhar Hrachyshka } 87430bbaa19SDavid Ahern 8757d472a59SIhar Hrachyshka if (IN_DEV_ARP_ACCEPT(in_dev)) { 8761da177e4SLinus Torvalds /* Unsolicited ARP is not accepted by default. 8771da177e4SLinus Torvalds It is possible, that this option should be enabled for some 8781da177e4SLinus Torvalds devices (strip is candidate) 8791da177e4SLinus Torvalds */ 88051456b29SIan Morris if (!n && 881d9ef2e7bSIhar Hrachyshka (is_garp || 882d9ef2e7bSIhar Hrachyshka (arp->ar_op == htons(ARPOP_REPLY) && 883d9ef2e7bSIhar Hrachyshka (addr_type == RTN_UNICAST || 884d9ef2e7bSIhar Hrachyshka (addr_type < 0 && 885d9ef2e7bSIhar Hrachyshka /* postpone calculation to as late as possible */ 886d9ef2e7bSIhar Hrachyshka inet_addr_type_dev_table(net, dev, sip) == 887d9ef2e7bSIhar Hrachyshka RTN_UNICAST))))) 8881b1ac759SJean Delvare n = __neigh_lookup(&arp_tbl, &sip, dev, 1); 889abd596a4SNeil Horman } 8901da177e4SLinus Torvalds 8911da177e4SLinus Torvalds if (n) { 8921da177e4SLinus Torvalds int state = NUD_REACHABLE; 8931da177e4SLinus Torvalds int override; 8941da177e4SLinus Torvalds 8951da177e4SLinus Torvalds /* If several different ARP replies follows back-to-back, 8961da177e4SLinus Torvalds use the FIRST one. It is possible, if several proxy 8971da177e4SLinus Torvalds agents are active. Taking the first reply prevents 8981da177e4SLinus Torvalds arp trashing and chooses the fastest router. 8991da177e4SLinus Torvalds */ 90056022a8fSSalam Noureddine override = time_after(jiffies, 90156022a8fSSalam Noureddine n->updated + 90256022a8fSSalam Noureddine NEIGH_VAR(n->parms, LOCKTIME)) || 90356022a8fSSalam Noureddine is_garp; 9041da177e4SLinus Torvalds 9051da177e4SLinus Torvalds /* Broadcast replies and request packets 9061da177e4SLinus Torvalds do not assert neighbour reachability. 9071da177e4SLinus Torvalds */ 9081da177e4SLinus Torvalds if (arp->ar_op != htons(ARPOP_REPLY) || 9091da177e4SLinus Torvalds skb->pkt_type != PACKET_HOST) 9101da177e4SLinus Torvalds state = NUD_STALE; 911deffd777SChangli Gao neigh_update(n, sha, state, 9127b8f7a40SRoopa Prabhu override ? NEIGH_UPDATE_F_OVERRIDE : 0, 0); 9131da177e4SLinus Torvalds neigh_release(n); 9141da177e4SLinus Torvalds } 9151da177e4SLinus Torvalds 9168dfd329fSZhang Shengju out_consume_skb: 917ead2ceb0SNeil Horman consume_skb(skb); 9188dfd329fSZhang Shengju 919181a4224SJiri Benc out_free_dst: 920181a4224SJiri Benc dst_release(reply_dst); 9218dfd329fSZhang Shengju return NET_RX_SUCCESS; 9228dfd329fSZhang Shengju 9238dfd329fSZhang Shengju out_free_skb: 9248dfd329fSZhang Shengju kfree_skb(skb); 9258dfd329fSZhang Shengju return NET_RX_DROP; 9261da177e4SLinus Torvalds } 9271da177e4SLinus Torvalds 928444fc8fcSHerbert Xu static void parp_redo(struct sk_buff *skb) 929444fc8fcSHerbert Xu { 9300c4b51f0SEric W. Biederman arp_process(dev_net(skb->dev), NULL, skb); 931444fc8fcSHerbert Xu } 932444fc8fcSHerbert Xu 933*8cf8821eSJeff Dike static int arp_is_multicast(const void *pkey) 934*8cf8821eSJeff Dike { 935*8cf8821eSJeff Dike return ipv4_is_multicast(*((__be32 *)pkey)); 936*8cf8821eSJeff Dike } 9371da177e4SLinus Torvalds 9381da177e4SLinus Torvalds /* 9391da177e4SLinus Torvalds * Receive an arp request from the device layer. 9401da177e4SLinus Torvalds */ 9411da177e4SLinus Torvalds 9426c97e72aSAdrian Bunk static int arp_rcv(struct sk_buff *skb, struct net_device *dev, 9436c97e72aSAdrian Bunk struct packet_type *pt, struct net_device *orig_dev) 9441da177e4SLinus Torvalds { 945044453b3SEric Dumazet const struct arphdr *arp; 946044453b3SEric Dumazet 947825bae5dSRick Jones /* do not tweak dropwatch on an ARP we will ignore */ 948044453b3SEric Dumazet if (dev->flags & IFF_NOARP || 949044453b3SEric Dumazet skb->pkt_type == PACKET_OTHERHOST || 950044453b3SEric Dumazet skb->pkt_type == PACKET_LOOPBACK) 951825bae5dSRick Jones goto consumeskb; 952044453b3SEric Dumazet 953044453b3SEric Dumazet skb = skb_share_check(skb, GFP_ATOMIC); 954044453b3SEric Dumazet if (!skb) 955044453b3SEric Dumazet goto out_of_mem; 9561da177e4SLinus Torvalds 9571da177e4SLinus Torvalds /* ARP header, plus 2 device addresses, plus 2 IP addresses. */ 958988b7050SPavel Emelyanov if (!pskb_may_pull(skb, arp_hdr_len(dev))) 9591da177e4SLinus Torvalds goto freeskb; 9601da177e4SLinus Torvalds 961d0a92be0SArnaldo Carvalho de Melo arp = arp_hdr(skb); 962044453b3SEric Dumazet if (arp->ar_hln != dev->addr_len || arp->ar_pln != 4) 9631da177e4SLinus Torvalds goto freeskb; 9641da177e4SLinus Torvalds 965a61bbcf2SPatrick McHardy memset(NEIGH_CB(skb), 0, sizeof(struct neighbour_cb)); 966a61bbcf2SPatrick McHardy 96729a26a56SEric W. Biederman return NF_HOOK(NFPROTO_ARP, NF_ARP_IN, 96829a26a56SEric W. Biederman dev_net(dev), NULL, skb, dev, NULL, 96929a26a56SEric W. Biederman arp_process); 9701da177e4SLinus Torvalds 971825bae5dSRick Jones consumeskb: 972825bae5dSRick Jones consume_skb(skb); 9738dfd329fSZhang Shengju return NET_RX_SUCCESS; 9741da177e4SLinus Torvalds freeskb: 9751da177e4SLinus Torvalds kfree_skb(skb); 9761da177e4SLinus Torvalds out_of_mem: 9778dfd329fSZhang Shengju return NET_RX_DROP; 9781da177e4SLinus Torvalds } 9791da177e4SLinus Torvalds 9801da177e4SLinus Torvalds /* 9811da177e4SLinus Torvalds * User level interface (ioctl) 9821da177e4SLinus Torvalds */ 9831da177e4SLinus Torvalds 9841da177e4SLinus Torvalds /* 9851da177e4SLinus Torvalds * Set (create) an ARP cache entry. 9861da177e4SLinus Torvalds */ 9871da177e4SLinus Torvalds 98832e569b7SPavel Emelyanov static int arp_req_set_proxy(struct net *net, struct net_device *dev, int on) 989f8b33fdfSPavel Emelyanov { 99051456b29SIan Morris if (!dev) { 991586f1211SPavel Emelyanov IPV4_DEVCONF_ALL(net, PROXY_ARP) = on; 992f8b33fdfSPavel Emelyanov return 0; 993f8b33fdfSPavel Emelyanov } 994c506653dSEric Dumazet if (__in_dev_get_rtnl(dev)) { 995c506653dSEric Dumazet IN_DEV_CONF_SET(__in_dev_get_rtnl(dev), PROXY_ARP, on); 996f8b33fdfSPavel Emelyanov return 0; 997f8b33fdfSPavel Emelyanov } 998f8b33fdfSPavel Emelyanov return -ENXIO; 999f8b33fdfSPavel Emelyanov } 1000f8b33fdfSPavel Emelyanov 100132e569b7SPavel Emelyanov static int arp_req_set_public(struct net *net, struct arpreq *r, 100232e569b7SPavel Emelyanov struct net_device *dev) 10031da177e4SLinus Torvalds { 1004ed9bad06SAl Viro __be32 ip = ((struct sockaddr_in *)&r->arp_pa)->sin_addr.s_addr; 1005ed9bad06SAl Viro __be32 mask = ((struct sockaddr_in *)&r->arp_netmask)->sin_addr.s_addr; 100643dc1701SPavel Emelyanov 1007ed9bad06SAl Viro if (mask && mask != htonl(0xFFFFFFFF)) 10081da177e4SLinus Torvalds return -EINVAL; 10091da177e4SLinus Torvalds if (!dev && (r->arp_flags & ATF_COM)) { 1010941666c2SEric Dumazet dev = dev_getbyhwaddr_rcu(net, r->arp_ha.sa_family, 101143dc1701SPavel Emelyanov r->arp_ha.sa_data); 10121da177e4SLinus Torvalds if (!dev) 10131da177e4SLinus Torvalds return -ENODEV; 10141da177e4SLinus Torvalds } 10151da177e4SLinus Torvalds if (mask) { 101651456b29SIan Morris if (!pneigh_lookup(&arp_tbl, net, &ip, dev, 1)) 10171da177e4SLinus Torvalds return -ENOBUFS; 10181da177e4SLinus Torvalds return 0; 10191da177e4SLinus Torvalds } 1020f8b33fdfSPavel Emelyanov 102132e569b7SPavel Emelyanov return arp_req_set_proxy(net, dev, 1); 10221da177e4SLinus Torvalds } 10231da177e4SLinus Torvalds 102432e569b7SPavel Emelyanov static int arp_req_set(struct net *net, struct arpreq *r, 102532e569b7SPavel Emelyanov struct net_device *dev) 102643dc1701SPavel Emelyanov { 102743dc1701SPavel Emelyanov __be32 ip; 102843dc1701SPavel Emelyanov struct neighbour *neigh; 102943dc1701SPavel Emelyanov int err; 103043dc1701SPavel Emelyanov 103143dc1701SPavel Emelyanov if (r->arp_flags & ATF_PUBL) 103232e569b7SPavel Emelyanov return arp_req_set_public(net, r, dev); 103343dc1701SPavel Emelyanov 103443dc1701SPavel Emelyanov ip = ((struct sockaddr_in *)&r->arp_pa)->sin_addr.s_addr; 10351da177e4SLinus Torvalds if (r->arp_flags & ATF_PERM) 10361da177e4SLinus Torvalds r->arp_flags |= ATF_COM; 103751456b29SIan Morris if (!dev) { 103878fbfd8aSDavid S. Miller struct rtable *rt = ip_route_output(net, ip, 0, RTO_ONLINK, 0); 1039b23dd4feSDavid S. Miller 1040b23dd4feSDavid S. Miller if (IS_ERR(rt)) 1041b23dd4feSDavid S. Miller return PTR_ERR(rt); 1042d8d1f30bSChangli Gao dev = rt->dst.dev; 10431da177e4SLinus Torvalds ip_rt_put(rt); 10441da177e4SLinus Torvalds if (!dev) 10451da177e4SLinus Torvalds return -EINVAL; 10461da177e4SLinus Torvalds } 10471da177e4SLinus Torvalds switch (dev->type) { 104840e4783eSIgor Maravic #if IS_ENABLED(CONFIG_FDDI) 10491da177e4SLinus Torvalds case ARPHRD_FDDI: 10501da177e4SLinus Torvalds /* 10511da177e4SLinus Torvalds * According to RFC 1390, FDDI devices should accept ARP 10521da177e4SLinus Torvalds * hardware types of 1 (Ethernet). However, to be more 10531da177e4SLinus Torvalds * robust, we'll accept hardware types of either 1 (Ethernet) 10541da177e4SLinus Torvalds * or 6 (IEEE 802.2). 10551da177e4SLinus Torvalds */ 10561da177e4SLinus Torvalds if (r->arp_ha.sa_family != ARPHRD_FDDI && 10571da177e4SLinus Torvalds r->arp_ha.sa_family != ARPHRD_ETHER && 10581da177e4SLinus Torvalds r->arp_ha.sa_family != ARPHRD_IEEE802) 10591da177e4SLinus Torvalds return -EINVAL; 10601da177e4SLinus Torvalds break; 10611da177e4SLinus Torvalds #endif 10621da177e4SLinus Torvalds default: 10631da177e4SLinus Torvalds if (r->arp_ha.sa_family != dev->type) 10641da177e4SLinus Torvalds return -EINVAL; 10651da177e4SLinus Torvalds break; 10661da177e4SLinus Torvalds } 10671da177e4SLinus Torvalds 10681da177e4SLinus Torvalds neigh = __neigh_lookup_errno(&arp_tbl, &ip, dev); 10691da177e4SLinus Torvalds err = PTR_ERR(neigh); 10701da177e4SLinus Torvalds if (!IS_ERR(neigh)) { 107195c96174SEric Dumazet unsigned int state = NUD_STALE; 10721da177e4SLinus Torvalds if (r->arp_flags & ATF_PERM) 10731da177e4SLinus Torvalds state = NUD_PERMANENT; 10741da177e4SLinus Torvalds err = neigh_update(neigh, (r->arp_flags & ATF_COM) ? 10751da177e4SLinus Torvalds r->arp_ha.sa_data : NULL, state, 10761da177e4SLinus Torvalds NEIGH_UPDATE_F_OVERRIDE | 10777b8f7a40SRoopa Prabhu NEIGH_UPDATE_F_ADMIN, 0); 10781da177e4SLinus Torvalds neigh_release(neigh); 10791da177e4SLinus Torvalds } 10801da177e4SLinus Torvalds return err; 10811da177e4SLinus Torvalds } 10821da177e4SLinus Torvalds 108395c96174SEric Dumazet static unsigned int arp_state_to_flags(struct neighbour *neigh) 10841da177e4SLinus Torvalds { 10851da177e4SLinus Torvalds if (neigh->nud_state&NUD_PERMANENT) 1086deffd777SChangli Gao return ATF_PERM | ATF_COM; 10871da177e4SLinus Torvalds else if (neigh->nud_state&NUD_VALID) 1088deffd777SChangli Gao return ATF_COM; 1089deffd777SChangli Gao else 1090deffd777SChangli Gao return 0; 10911da177e4SLinus Torvalds } 10921da177e4SLinus Torvalds 10931da177e4SLinus Torvalds /* 10941da177e4SLinus Torvalds * Get an ARP cache entry. 10951da177e4SLinus Torvalds */ 10961da177e4SLinus Torvalds 10971da177e4SLinus Torvalds static int arp_req_get(struct arpreq *r, struct net_device *dev) 10981da177e4SLinus Torvalds { 1099ed9bad06SAl Viro __be32 ip = ((struct sockaddr_in *) &r->arp_pa)->sin_addr.s_addr; 11001da177e4SLinus Torvalds struct neighbour *neigh; 11011da177e4SLinus Torvalds int err = -ENXIO; 11021da177e4SLinus Torvalds 11031da177e4SLinus Torvalds neigh = neigh_lookup(&arp_tbl, &ip, dev); 11041da177e4SLinus Torvalds if (neigh) { 110511c91ef9SEric Dumazet if (!(neigh->nud_state & NUD_NOARP)) { 11061da177e4SLinus Torvalds read_lock_bh(&neigh->lock); 11071da177e4SLinus Torvalds memcpy(r->arp_ha.sa_data, neigh->ha, dev->addr_len); 11081da177e4SLinus Torvalds r->arp_flags = arp_state_to_flags(neigh); 11091da177e4SLinus Torvalds read_unlock_bh(&neigh->lock); 11101da177e4SLinus Torvalds r->arp_ha.sa_family = dev->type; 11111da177e4SLinus Torvalds strlcpy(r->arp_dev, dev->name, sizeof(r->arp_dev)); 11121da177e4SLinus Torvalds err = 0; 11131da177e4SLinus Torvalds } 111411c91ef9SEric Dumazet neigh_release(neigh); 111511c91ef9SEric Dumazet } 11161da177e4SLinus Torvalds return err; 11171da177e4SLinus Torvalds } 11181da177e4SLinus Torvalds 11197195cf72SStephen Hemminger static int arp_invalidate(struct net_device *dev, __be32 ip) 1120545ecdc3SMaxim Levitsky { 1121545ecdc3SMaxim Levitsky struct neighbour *neigh = neigh_lookup(&arp_tbl, &ip, dev); 1122545ecdc3SMaxim Levitsky int err = -ENXIO; 11235071034eSSowmini Varadhan struct neigh_table *tbl = &arp_tbl; 1124545ecdc3SMaxim Levitsky 1125545ecdc3SMaxim Levitsky if (neigh) { 1126545ecdc3SMaxim Levitsky if (neigh->nud_state & ~NUD_NOARP) 1127545ecdc3SMaxim Levitsky err = neigh_update(neigh, NULL, NUD_FAILED, 1128545ecdc3SMaxim Levitsky NEIGH_UPDATE_F_OVERRIDE| 11297b8f7a40SRoopa Prabhu NEIGH_UPDATE_F_ADMIN, 0); 11305071034eSSowmini Varadhan write_lock_bh(&tbl->lock); 1131545ecdc3SMaxim Levitsky neigh_release(neigh); 11325071034eSSowmini Varadhan neigh_remove_one(neigh, tbl); 11335071034eSSowmini Varadhan write_unlock_bh(&tbl->lock); 1134545ecdc3SMaxim Levitsky } 1135545ecdc3SMaxim Levitsky 1136545ecdc3SMaxim Levitsky return err; 1137545ecdc3SMaxim Levitsky } 1138545ecdc3SMaxim Levitsky 113932e569b7SPavel Emelyanov static int arp_req_delete_public(struct net *net, struct arpreq *r, 114032e569b7SPavel Emelyanov struct net_device *dev) 11411da177e4SLinus Torvalds { 1142ed9bad06SAl Viro __be32 ip = ((struct sockaddr_in *) &r->arp_pa)->sin_addr.s_addr; 114346479b43SPavel Emelyanov __be32 mask = ((struct sockaddr_in *)&r->arp_netmask)->sin_addr.s_addr; 11441da177e4SLinus Torvalds 1145ed9bad06SAl Viro if (mask == htonl(0xFFFFFFFF)) 11462db82b53SDenis V. Lunev return pneigh_delete(&arp_tbl, net, &ip, dev); 114746479b43SPavel Emelyanov 1148f8b33fdfSPavel Emelyanov if (mask) 11491da177e4SLinus Torvalds return -EINVAL; 1150f8b33fdfSPavel Emelyanov 115132e569b7SPavel Emelyanov return arp_req_set_proxy(net, dev, 0); 11521da177e4SLinus Torvalds } 11531da177e4SLinus Torvalds 115432e569b7SPavel Emelyanov static int arp_req_delete(struct net *net, struct arpreq *r, 115532e569b7SPavel Emelyanov struct net_device *dev) 115646479b43SPavel Emelyanov { 115746479b43SPavel Emelyanov __be32 ip; 115846479b43SPavel Emelyanov 115946479b43SPavel Emelyanov if (r->arp_flags & ATF_PUBL) 116032e569b7SPavel Emelyanov return arp_req_delete_public(net, r, dev); 116146479b43SPavel Emelyanov 116246479b43SPavel Emelyanov ip = ((struct sockaddr_in *)&r->arp_pa)->sin_addr.s_addr; 116351456b29SIan Morris if (!dev) { 116478fbfd8aSDavid S. Miller struct rtable *rt = ip_route_output(net, ip, 0, RTO_ONLINK, 0); 1165b23dd4feSDavid S. Miller if (IS_ERR(rt)) 1166b23dd4feSDavid S. Miller return PTR_ERR(rt); 1167d8d1f30bSChangli Gao dev = rt->dst.dev; 11681da177e4SLinus Torvalds ip_rt_put(rt); 11691da177e4SLinus Torvalds if (!dev) 11701da177e4SLinus Torvalds return -EINVAL; 11711da177e4SLinus Torvalds } 1172545ecdc3SMaxim Levitsky return arp_invalidate(dev, ip); 11731da177e4SLinus Torvalds } 11741da177e4SLinus Torvalds 11751da177e4SLinus Torvalds /* 11761da177e4SLinus Torvalds * Handle an ARP layer I/O control request. 11771da177e4SLinus Torvalds */ 11781da177e4SLinus Torvalds 117932e569b7SPavel Emelyanov int arp_ioctl(struct net *net, unsigned int cmd, void __user *arg) 11801da177e4SLinus Torvalds { 11811da177e4SLinus Torvalds int err; 11821da177e4SLinus Torvalds struct arpreq r; 11831da177e4SLinus Torvalds struct net_device *dev = NULL; 11841da177e4SLinus Torvalds 11851da177e4SLinus Torvalds switch (cmd) { 11861da177e4SLinus Torvalds case SIOCDARP: 11871da177e4SLinus Torvalds case SIOCSARP: 118852e804c6SEric W. Biederman if (!ns_capable(net->user_ns, CAP_NET_ADMIN)) 11891da177e4SLinus Torvalds return -EPERM; 1190a8eceea8SJoe Perches fallthrough; 11911da177e4SLinus Torvalds case SIOCGARP: 11921da177e4SLinus Torvalds err = copy_from_user(&r, arg, sizeof(struct arpreq)); 11931da177e4SLinus Torvalds if (err) 11941da177e4SLinus Torvalds return -EFAULT; 11951da177e4SLinus Torvalds break; 11961da177e4SLinus Torvalds default: 11971da177e4SLinus Torvalds return -EINVAL; 11981da177e4SLinus Torvalds } 11991da177e4SLinus Torvalds 12001da177e4SLinus Torvalds if (r.arp_pa.sa_family != AF_INET) 12011da177e4SLinus Torvalds return -EPFNOSUPPORT; 12021da177e4SLinus Torvalds 12031da177e4SLinus Torvalds if (!(r.arp_flags & ATF_PUBL) && 12041da177e4SLinus Torvalds (r.arp_flags & (ATF_NETMASK | ATF_DONTPUB))) 12051da177e4SLinus Torvalds return -EINVAL; 12061da177e4SLinus Torvalds if (!(r.arp_flags & ATF_NETMASK)) 12071da177e4SLinus Torvalds ((struct sockaddr_in *)&r.arp_netmask)->sin_addr.s_addr = 12081da177e4SLinus Torvalds htonl(0xFFFFFFFFUL); 1209c506653dSEric Dumazet rtnl_lock(); 12101da177e4SLinus Torvalds if (r.arp_dev[0]) { 12111da177e4SLinus Torvalds err = -ENODEV; 1212c506653dSEric Dumazet dev = __dev_get_by_name(net, r.arp_dev); 121351456b29SIan Morris if (!dev) 12141da177e4SLinus Torvalds goto out; 12151da177e4SLinus Torvalds 12161da177e4SLinus Torvalds /* Mmmm... It is wrong... ARPHRD_NETROM==0 */ 12171da177e4SLinus Torvalds if (!r.arp_ha.sa_family) 12181da177e4SLinus Torvalds r.arp_ha.sa_family = dev->type; 12191da177e4SLinus Torvalds err = -EINVAL; 12201da177e4SLinus Torvalds if ((r.arp_flags & ATF_COM) && r.arp_ha.sa_family != dev->type) 12211da177e4SLinus Torvalds goto out; 12221da177e4SLinus Torvalds } else if (cmd == SIOCGARP) { 12231da177e4SLinus Torvalds err = -ENODEV; 12241da177e4SLinus Torvalds goto out; 12251da177e4SLinus Torvalds } 12261da177e4SLinus Torvalds 12271da177e4SLinus Torvalds switch (cmd) { 12281da177e4SLinus Torvalds case SIOCDARP: 122932e569b7SPavel Emelyanov err = arp_req_delete(net, &r, dev); 12301da177e4SLinus Torvalds break; 12311da177e4SLinus Torvalds case SIOCSARP: 123232e569b7SPavel Emelyanov err = arp_req_set(net, &r, dev); 12331da177e4SLinus Torvalds break; 12341da177e4SLinus Torvalds case SIOCGARP: 12351da177e4SLinus Torvalds err = arp_req_get(&r, dev); 12361da177e4SLinus Torvalds break; 12371da177e4SLinus Torvalds } 12381da177e4SLinus Torvalds out: 1239c506653dSEric Dumazet rtnl_unlock(); 1240941666c2SEric Dumazet if (cmd == SIOCGARP && !err && copy_to_user(arg, &r, sizeof(r))) 1241941666c2SEric Dumazet err = -EFAULT; 12421da177e4SLinus Torvalds return err; 12431da177e4SLinus Torvalds } 12441da177e4SLinus Torvalds 1245deffd777SChangli Gao static int arp_netdev_event(struct notifier_block *this, unsigned long event, 1246deffd777SChangli Gao void *ptr) 12471da177e4SLinus Torvalds { 1248351638e7SJiri Pirko struct net_device *dev = netdev_notifier_info_to_dev(ptr); 12496c8b4e3fSTimo Teräs struct netdev_notifier_change_info *change_info; 12501da177e4SLinus Torvalds 12511da177e4SLinus Torvalds switch (event) { 12521da177e4SLinus Torvalds case NETDEV_CHANGEADDR: 12531da177e4SLinus Torvalds neigh_changeaddr(&arp_tbl, dev); 1254bafa6d9dSNicolas Dichtel rt_cache_flush(dev_net(dev)); 12551da177e4SLinus Torvalds break; 12566c8b4e3fSTimo Teräs case NETDEV_CHANGE: 12576c8b4e3fSTimo Teräs change_info = ptr; 12586c8b4e3fSTimo Teräs if (change_info->flags_changed & IFF_NOARP) 12596c8b4e3fSTimo Teräs neigh_changeaddr(&arp_tbl, dev); 1260859bd2efSDavid Ahern if (!netif_carrier_ok(dev)) 1261859bd2efSDavid Ahern neigh_carrier_down(&arp_tbl, dev); 12626c8b4e3fSTimo Teräs break; 12631da177e4SLinus Torvalds default: 12641da177e4SLinus Torvalds break; 12651da177e4SLinus Torvalds } 12661da177e4SLinus Torvalds 12671da177e4SLinus Torvalds return NOTIFY_DONE; 12681da177e4SLinus Torvalds } 12691da177e4SLinus Torvalds 12701da177e4SLinus Torvalds static struct notifier_block arp_netdev_notifier = { 12711da177e4SLinus Torvalds .notifier_call = arp_netdev_event, 12721da177e4SLinus Torvalds }; 12731da177e4SLinus Torvalds 12741da177e4SLinus Torvalds /* Note, that it is not on notifier chain. 12751da177e4SLinus Torvalds It is necessary, that this routine was called after route cache will be 12761da177e4SLinus Torvalds flushed. 12771da177e4SLinus Torvalds */ 12781da177e4SLinus Torvalds void arp_ifdown(struct net_device *dev) 12791da177e4SLinus Torvalds { 12801da177e4SLinus Torvalds neigh_ifdown(&arp_tbl, dev); 12811da177e4SLinus Torvalds } 12821da177e4SLinus Torvalds 12831da177e4SLinus Torvalds 12841da177e4SLinus Torvalds /* 12851da177e4SLinus Torvalds * Called once on startup. 12861da177e4SLinus Torvalds */ 12871da177e4SLinus Torvalds 12887546dd97SStephen Hemminger static struct packet_type arp_packet_type __read_mostly = { 128909640e63SHarvey Harrison .type = cpu_to_be16(ETH_P_ARP), 12901da177e4SLinus Torvalds .func = arp_rcv, 12911da177e4SLinus Torvalds }; 12921da177e4SLinus Torvalds 12931da177e4SLinus Torvalds static int arp_proc_init(void); 12941da177e4SLinus Torvalds 12951da177e4SLinus Torvalds void __init arp_init(void) 12961da177e4SLinus Torvalds { 1297d7480fd3SWANG Cong neigh_table_init(NEIGH_ARP_TABLE, &arp_tbl); 12981da177e4SLinus Torvalds 12991da177e4SLinus Torvalds dev_add_pack(&arp_packet_type); 13001da177e4SLinus Torvalds arp_proc_init(); 13011da177e4SLinus Torvalds #ifdef CONFIG_SYSCTL 130273af614aSJiri Pirko neigh_sysctl_register(NULL, &arp_tbl.parms, NULL); 13031da177e4SLinus Torvalds #endif 13041da177e4SLinus Torvalds register_netdevice_notifier(&arp_netdev_notifier); 13051da177e4SLinus Torvalds } 13061da177e4SLinus Torvalds 13071da177e4SLinus Torvalds #ifdef CONFIG_PROC_FS 130840e4783eSIgor Maravic #if IS_ENABLED(CONFIG_AX25) 13091da177e4SLinus Torvalds 13101da177e4SLinus Torvalds /* ------------------------------------------------------------------------ */ 13111da177e4SLinus Torvalds /* 13121da177e4SLinus Torvalds * ax25 -> ASCII conversion 13131da177e4SLinus Torvalds */ 13144872e57cSRalf Baechle static void ax2asc2(ax25_address *a, char *buf) 13151da177e4SLinus Torvalds { 13161da177e4SLinus Torvalds char c, *s; 13171da177e4SLinus Torvalds int n; 13181da177e4SLinus Torvalds 13191da177e4SLinus Torvalds for (n = 0, s = buf; n < 6; n++) { 13201da177e4SLinus Torvalds c = (a->ax25_call[n] >> 1) & 0x7F; 13211da177e4SLinus Torvalds 1322deffd777SChangli Gao if (c != ' ') 1323deffd777SChangli Gao *s++ = c; 13241da177e4SLinus Torvalds } 13251da177e4SLinus Torvalds 13261da177e4SLinus Torvalds *s++ = '-'; 1327deffd777SChangli Gao n = (a->ax25_call[6] >> 1) & 0x0F; 1328deffd777SChangli Gao if (n > 9) { 13291da177e4SLinus Torvalds *s++ = '1'; 13301da177e4SLinus Torvalds n -= 10; 13311da177e4SLinus Torvalds } 13321da177e4SLinus Torvalds 13331da177e4SLinus Torvalds *s++ = n + '0'; 13341da177e4SLinus Torvalds *s++ = '\0'; 13351da177e4SLinus Torvalds 13364872e57cSRalf Baechle if (*buf == '\0' || *buf == '-') { 13374872e57cSRalf Baechle buf[0] = '*'; 13384872e57cSRalf Baechle buf[1] = '\0'; 13394872e57cSRalf Baechle } 13401da177e4SLinus Torvalds } 13411da177e4SLinus Torvalds #endif /* CONFIG_AX25 */ 13421da177e4SLinus Torvalds 13431da177e4SLinus Torvalds #define HBUFFERLEN 30 13441da177e4SLinus Torvalds 13451da177e4SLinus Torvalds static void arp_format_neigh_entry(struct seq_file *seq, 13461da177e4SLinus Torvalds struct neighbour *n) 13471da177e4SLinus Torvalds { 13481da177e4SLinus Torvalds char hbuffer[HBUFFERLEN]; 13491da177e4SLinus Torvalds int k, j; 13501da177e4SLinus Torvalds char tbuf[16]; 13511da177e4SLinus Torvalds struct net_device *dev = n->dev; 13521da177e4SLinus Torvalds int hatype = dev->type; 13531da177e4SLinus Torvalds 13541da177e4SLinus Torvalds read_lock(&n->lock); 13551da177e4SLinus Torvalds /* Convert hardware address to XX:XX:XX:XX ... form. */ 135640e4783eSIgor Maravic #if IS_ENABLED(CONFIG_AX25) 13571da177e4SLinus Torvalds if (hatype == ARPHRD_AX25 || hatype == ARPHRD_NETROM) 13581da177e4SLinus Torvalds ax2asc2((ax25_address *)n->ha, hbuffer); 13591da177e4SLinus Torvalds else { 13601da177e4SLinus Torvalds #endif 13611da177e4SLinus Torvalds for (k = 0, j = 0; k < HBUFFERLEN - 3 && j < dev->addr_len; j++) { 136251f82a2bSDenis Cheng hbuffer[k++] = hex_asc_hi(n->ha[j]); 136351f82a2bSDenis Cheng hbuffer[k++] = hex_asc_lo(n->ha[j]); 13641da177e4SLinus Torvalds hbuffer[k++] = ':'; 13651da177e4SLinus Torvalds } 1366a3e8ee68Sroel kluin if (k != 0) 1367a3e8ee68Sroel kluin --k; 1368a3e8ee68Sroel kluin hbuffer[k] = 0; 136940e4783eSIgor Maravic #if IS_ENABLED(CONFIG_AX25) 13701da177e4SLinus Torvalds } 13711da177e4SLinus Torvalds #endif 1372673d57e7SHarvey Harrison sprintf(tbuf, "%pI4", n->primary_key); 13734872e57cSRalf Baechle seq_printf(seq, "%-16s 0x%-10x0x%-10x%-17s * %s\n", 13741da177e4SLinus Torvalds tbuf, hatype, arp_state_to_flags(n), hbuffer, dev->name); 13751da177e4SLinus Torvalds read_unlock(&n->lock); 13761da177e4SLinus Torvalds } 13771da177e4SLinus Torvalds 13781da177e4SLinus Torvalds static void arp_format_pneigh_entry(struct seq_file *seq, 13791da177e4SLinus Torvalds struct pneigh_entry *n) 13801da177e4SLinus Torvalds { 13811da177e4SLinus Torvalds struct net_device *dev = n->dev; 13821da177e4SLinus Torvalds int hatype = dev ? dev->type : 0; 13831da177e4SLinus Torvalds char tbuf[16]; 13841da177e4SLinus Torvalds 1385673d57e7SHarvey Harrison sprintf(tbuf, "%pI4", n->key); 13861da177e4SLinus Torvalds seq_printf(seq, "%-16s 0x%-10x0x%-10x%s * %s\n", 13871da177e4SLinus Torvalds tbuf, hatype, ATF_PUBL | ATF_PERM, "00:00:00:00:00:00", 13881da177e4SLinus Torvalds dev ? dev->name : "*"); 13891da177e4SLinus Torvalds } 13901da177e4SLinus Torvalds 13911da177e4SLinus Torvalds static int arp_seq_show(struct seq_file *seq, void *v) 13921da177e4SLinus Torvalds { 13931da177e4SLinus Torvalds if (v == SEQ_START_TOKEN) { 13941da177e4SLinus Torvalds seq_puts(seq, "IP address HW type Flags " 13951da177e4SLinus Torvalds "HW address Mask Device\n"); 13961da177e4SLinus Torvalds } else { 13971da177e4SLinus Torvalds struct neigh_seq_state *state = seq->private; 13981da177e4SLinus Torvalds 13991da177e4SLinus Torvalds if (state->flags & NEIGH_SEQ_IS_PNEIGH) 14001da177e4SLinus Torvalds arp_format_pneigh_entry(seq, v); 14011da177e4SLinus Torvalds else 14021da177e4SLinus Torvalds arp_format_neigh_entry(seq, v); 14031da177e4SLinus Torvalds } 14041da177e4SLinus Torvalds 14051da177e4SLinus Torvalds return 0; 14061da177e4SLinus Torvalds } 14071da177e4SLinus Torvalds 14081da177e4SLinus Torvalds static void *arp_seq_start(struct seq_file *seq, loff_t *pos) 14091da177e4SLinus Torvalds { 14101da177e4SLinus Torvalds /* Don't want to confuse "arp -a" w/ magic entries, 14111da177e4SLinus Torvalds * so we tell the generic iterator to skip NUD_NOARP. 14121da177e4SLinus Torvalds */ 14131da177e4SLinus Torvalds return neigh_seq_start(seq, pos, &arp_tbl, NEIGH_SEQ_SKIP_NOARP); 14141da177e4SLinus Torvalds } 14151da177e4SLinus Torvalds 14161da177e4SLinus Torvalds /* ------------------------------------------------------------------------ */ 14171da177e4SLinus Torvalds 1418f690808eSStephen Hemminger static const struct seq_operations arp_seq_ops = { 14191da177e4SLinus Torvalds .start = arp_seq_start, 14201da177e4SLinus Torvalds .next = neigh_seq_next, 14211da177e4SLinus Torvalds .stop = neigh_seq_stop, 14221da177e4SLinus Torvalds .show = arp_seq_show, 14231da177e4SLinus Torvalds }; 14241da177e4SLinus Torvalds 1425c3506372SChristoph Hellwig /* ------------------------------------------------------------------------ */ 1426ffc31d3dSDenis V. Lunev 1427ffc31d3dSDenis V. Lunev static int __net_init arp_net_init(struct net *net) 14281da177e4SLinus Torvalds { 1429c3506372SChristoph Hellwig if (!proc_create_net("arp", 0444, net->proc_net, &arp_seq_ops, 1430c3506372SChristoph Hellwig sizeof(struct neigh_seq_state))) 14311da177e4SLinus Torvalds return -ENOMEM; 14321da177e4SLinus Torvalds return 0; 14331da177e4SLinus Torvalds } 14341da177e4SLinus Torvalds 1435ffc31d3dSDenis V. Lunev static void __net_exit arp_net_exit(struct net *net) 1436ffc31d3dSDenis V. Lunev { 1437ece31ffdSGao feng remove_proc_entry("arp", net->proc_net); 1438ffc31d3dSDenis V. Lunev } 1439ffc31d3dSDenis V. Lunev 1440ffc31d3dSDenis V. Lunev static struct pernet_operations arp_net_ops = { 1441ffc31d3dSDenis V. Lunev .init = arp_net_init, 1442ffc31d3dSDenis V. Lunev .exit = arp_net_exit, 1443ffc31d3dSDenis V. Lunev }; 1444ffc31d3dSDenis V. Lunev 1445ffc31d3dSDenis V. Lunev static int __init arp_proc_init(void) 1446ffc31d3dSDenis V. Lunev { 1447ffc31d3dSDenis V. Lunev return register_pernet_subsys(&arp_net_ops); 1448ffc31d3dSDenis V. Lunev } 1449ffc31d3dSDenis V. Lunev 14501da177e4SLinus Torvalds #else /* CONFIG_PROC_FS */ 14511da177e4SLinus Torvalds 14521da177e4SLinus Torvalds static int __init arp_proc_init(void) 14531da177e4SLinus Torvalds { 14541da177e4SLinus Torvalds return 0; 14551da177e4SLinus Torvalds } 14561da177e4SLinus Torvalds 14571da177e4SLinus Torvalds #endif /* CONFIG_PROC_FS */ 1458