2 * Copyright (C)2002 USAGI/WIDE Project
4 * This program is free software; you can redistribute it and/or modify
5 * it under the terms of the GNU General Public License as published by
6 * the Free Software Foundation; either version 2 of the License, or
7 * (at your option) any later version.
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
14 * You should have received a copy of the GNU General Public License
15 * along with this program; if not, see <http://www.gnu.org/licenses/>.
19 * Mitsuru KANDA @USAGI : IPv6 Support
20 * Kazunori MIYAZAWA @USAGI :
21 * Kunihiro Ishiguro <kunihiro@ipinfusion.com>
23 * This file is derived from net/ipv4/ah.c.
26 #define pr_fmt(fmt) "IPv6: " fmt
28 #include <crypto/algapi.h>
29 #include <crypto/hash.h>
30 #include <linux/module.h>
31 #include <linux/slab.h>
34 #include <linux/crypto.h>
35 #include <linux/pfkeyv2.h>
36 #include <linux/string.h>
37 #include <linux/scatterlist.h>
38 #include <net/ip6_route.h>
41 #include <net/protocol.h>
44 #define IPV6HDR_BASELEN 8
47 #if IS_ENABLED(CONFIG_IPV6_MIP6)
48 struct in6_addr saddr;
50 struct in6_addr daddr;
55 struct xfrm_skb_cb xfrm;
59 #define AH_SKB_CB(__skb) ((struct ah_skb_cb *)&((__skb)->cb[0]))
61 static void *ah_alloc_tmp(struct crypto_ahash *ahash, int nfrags,
66 len = size + crypto_ahash_digestsize(ahash) +
67 (crypto_ahash_alignmask(ahash) &
68 ~(crypto_tfm_ctx_alignment() - 1));
70 len = ALIGN(len, crypto_tfm_ctx_alignment());
72 len += sizeof(struct ahash_request) + crypto_ahash_reqsize(ahash);
73 len = ALIGN(len, __alignof__(struct scatterlist));
75 len += sizeof(struct scatterlist) * nfrags;
77 return kmalloc(len, GFP_ATOMIC);
80 static inline struct tmp_ext *ah_tmp_ext(void *base)
82 return base + IPV6HDR_BASELEN;
85 static inline u8 *ah_tmp_auth(u8 *tmp, unsigned int offset)
90 static inline u8 *ah_tmp_icv(struct crypto_ahash *ahash, void *tmp,
93 return PTR_ALIGN((u8 *)tmp + offset, crypto_ahash_alignmask(ahash) + 1);
96 static inline struct ahash_request *ah_tmp_req(struct crypto_ahash *ahash,
99 struct ahash_request *req;
101 req = (void *)PTR_ALIGN(icv + crypto_ahash_digestsize(ahash),
102 crypto_tfm_ctx_alignment());
104 ahash_request_set_tfm(req, ahash);
109 static inline struct scatterlist *ah_req_sg(struct crypto_ahash *ahash,
110 struct ahash_request *req)
112 return (void *)ALIGN((unsigned long)(req + 1) +
113 crypto_ahash_reqsize(ahash),
114 __alignof__(struct scatterlist));
117 static bool zero_out_mutable_opts(struct ipv6_opt_hdr *opthdr)
119 u8 *opt = (u8 *)opthdr;
120 int len = ipv6_optlen(opthdr);
137 optlen = opt[off+1]+2;
141 memset(&opt[off+2], 0, opt[off+1]);
155 #if IS_ENABLED(CONFIG_IPV6_MIP6)
157 * ipv6_rearrange_destopt - rearrange IPv6 destination options header
159 * @destopt: destionation options header
161 static void ipv6_rearrange_destopt(struct ipv6hdr *iph, struct ipv6_opt_hdr *destopt)
163 u8 *opt = (u8 *)destopt;
164 int len = ipv6_optlen(destopt);
181 optlen = opt[off+1]+2;
185 /* Rearrange the source address in @iph and the
186 * addresses in home address option for final source.
187 * See 11.3.2 of RFC 3775 for details.
189 if (opt[off] == IPV6_TLV_HAO) {
190 struct in6_addr final_addr;
191 struct ipv6_destopt_hao *hao;
193 hao = (struct ipv6_destopt_hao *)&opt[off];
194 if (hao->length != sizeof(hao->addr)) {
195 net_warn_ratelimited("destopt hao: invalid header length: %u\n",
199 final_addr = hao->addr;
200 hao->addr = iph->saddr;
201 iph->saddr = final_addr;
209 /* Note: ok if len == 0 */
214 static void ipv6_rearrange_destopt(struct ipv6hdr *iph, struct ipv6_opt_hdr *destopt) {}
218 * ipv6_rearrange_rthdr - rearrange IPv6 routing header
220 * @rthdr: routing header
222 * Rearrange the destination address in @iph and the addresses in @rthdr
223 * so that they appear in the order they will at the final destination.
224 * See Appendix A2 of RFC 2402 for details.
226 static void ipv6_rearrange_rthdr(struct ipv6hdr *iph, struct ipv6_rt_hdr *rthdr)
228 int segments, segments_left;
229 struct in6_addr *addrs;
230 struct in6_addr final_addr;
232 segments_left = rthdr->segments_left;
233 if (segments_left == 0)
235 rthdr->segments_left = 0;
237 /* The value of rthdr->hdrlen has been verified either by the system
238 * call if it is locally generated, or by ipv6_rthdr_rcv() for incoming
239 * packets. So we can assume that it is even and that segments is
240 * greater than or equal to segments_left.
242 * For the same reason we can assume that this option is of type 0.
244 segments = rthdr->hdrlen >> 1;
246 addrs = ((struct rt0_hdr *)rthdr)->addr;
247 final_addr = addrs[segments - 1];
249 addrs += segments - segments_left;
250 memmove(addrs + 1, addrs, (segments_left - 1) * sizeof(*addrs));
252 addrs[0] = iph->daddr;
253 iph->daddr = final_addr;
256 static int ipv6_clear_mutable_options(struct ipv6hdr *iph, int len, int dir)
260 struct ipv6_opt_hdr *opth;
261 struct ipv6_rt_hdr *rth;
263 } exthdr = { .iph = iph };
264 char *end = exthdr.raw + len;
265 int nexthdr = iph->nexthdr;
269 while (exthdr.raw < end) {
272 if (dir == XFRM_POLICY_OUT)
273 ipv6_rearrange_destopt(iph, exthdr.opth);
276 if (!zero_out_mutable_opts(exthdr.opth)) {
277 net_dbg_ratelimited("overrun %sopts\n",
278 nexthdr == NEXTHDR_HOP ?
284 case NEXTHDR_ROUTING:
285 ipv6_rearrange_rthdr(iph, exthdr.rth);
292 nexthdr = exthdr.opth->nexthdr;
293 exthdr.raw += ipv6_optlen(exthdr.opth);
299 static void ah6_output_done(struct crypto_async_request *base, int err)
304 struct sk_buff *skb = base->data;
305 struct xfrm_state *x = skb_dst(skb)->xfrm;
306 struct ah_data *ahp = x->data;
307 struct ipv6hdr *top_iph = ipv6_hdr(skb);
308 struct ip_auth_hdr *ah = ip_auth_hdr(skb);
309 struct tmp_ext *iph_ext;
311 extlen = skb_network_header_len(skb) - sizeof(struct ipv6hdr);
313 extlen += sizeof(*iph_ext);
315 iph_base = AH_SKB_CB(skb)->tmp;
316 iph_ext = ah_tmp_ext(iph_base);
317 icv = ah_tmp_icv(ahp->ahash, iph_ext, extlen);
319 memcpy(ah->auth_data, icv, ahp->icv_trunc_len);
320 memcpy(top_iph, iph_base, IPV6HDR_BASELEN);
323 #if IS_ENABLED(CONFIG_IPV6_MIP6)
324 memcpy(&top_iph->saddr, iph_ext, extlen);
326 memcpy(&top_iph->daddr, iph_ext, extlen);
330 kfree(AH_SKB_CB(skb)->tmp);
331 xfrm_output_resume(skb, err);
334 static int ah6_output(struct xfrm_state *x, struct sk_buff *skb)
342 struct sk_buff *trailer;
343 struct crypto_ahash *ahash;
344 struct ahash_request *req;
345 struct scatterlist *sg;
346 struct ipv6hdr *top_iph;
347 struct ip_auth_hdr *ah;
349 struct tmp_ext *iph_ext;
353 struct scatterlist *seqhisg;
358 err = skb_cow_data(skb, 0, &trailer);
363 skb_push(skb, -skb_network_offset(skb));
364 extlen = skb_network_header_len(skb) - sizeof(struct ipv6hdr);
366 extlen += sizeof(*iph_ext);
368 if (x->props.flags & XFRM_STATE_ESN) {
370 seqhi_len = sizeof(*seqhi);
373 iph_base = ah_alloc_tmp(ahash, nfrags + sglists, IPV6HDR_BASELEN +
378 iph_ext = ah_tmp_ext(iph_base);
379 seqhi = (__be32 *)((char *)iph_ext + extlen);
380 icv = ah_tmp_icv(ahash, seqhi, seqhi_len);
381 req = ah_tmp_req(ahash, icv);
382 sg = ah_req_sg(ahash, req);
383 seqhisg = sg + nfrags;
385 ah = ip_auth_hdr(skb);
386 memset(ah->auth_data, 0, ahp->icv_trunc_len);
388 top_iph = ipv6_hdr(skb);
389 top_iph->payload_len = htons(skb->len - sizeof(*top_iph));
391 nexthdr = *skb_mac_header(skb);
392 *skb_mac_header(skb) = IPPROTO_AH;
394 /* When there are no extension headers, we only need to save the first
395 * 8 bytes of the base IP header.
397 memcpy(iph_base, top_iph, IPV6HDR_BASELEN);
400 #if IS_ENABLED(CONFIG_IPV6_MIP6)
401 memcpy(iph_ext, &top_iph->saddr, extlen);
403 memcpy(iph_ext, &top_iph->daddr, extlen);
405 err = ipv6_clear_mutable_options(top_iph,
406 extlen - sizeof(*iph_ext) +
413 ah->nexthdr = nexthdr;
415 top_iph->priority = 0;
416 top_iph->flow_lbl[0] = 0;
417 top_iph->flow_lbl[1] = 0;
418 top_iph->flow_lbl[2] = 0;
419 top_iph->hop_limit = 0;
421 ah->hdrlen = (XFRM_ALIGN8(sizeof(*ah) + ahp->icv_trunc_len) >> 2) - 2;
425 ah->seq_no = htonl(XFRM_SKB_CB(skb)->seq.output.low);
427 sg_init_table(sg, nfrags + sglists);
428 err = skb_to_sgvec_nomark(skb, sg, 0, skb->len);
429 if (unlikely(err < 0))
432 if (x->props.flags & XFRM_STATE_ESN) {
433 /* Attach seqhi sg right after packet payload */
434 *seqhi = htonl(XFRM_SKB_CB(skb)->seq.output.hi);
435 sg_set_buf(seqhisg, seqhi, seqhi_len);
437 ahash_request_set_crypt(req, sg, icv, skb->len + seqhi_len);
438 ahash_request_set_callback(req, 0, ah6_output_done, skb);
440 AH_SKB_CB(skb)->tmp = iph_base;
442 err = crypto_ahash_digest(req);
444 if (err == -EINPROGRESS)
452 memcpy(ah->auth_data, icv, ahp->icv_trunc_len);
453 memcpy(top_iph, iph_base, IPV6HDR_BASELEN);
456 #if IS_ENABLED(CONFIG_IPV6_MIP6)
457 memcpy(&top_iph->saddr, iph_ext, extlen);
459 memcpy(&top_iph->daddr, iph_ext, extlen);
469 static void ah6_input_done(struct crypto_async_request *base, int err)
474 struct sk_buff *skb = base->data;
475 struct xfrm_state *x = xfrm_input_state(skb);
476 struct ah_data *ahp = x->data;
477 struct ip_auth_hdr *ah = ip_auth_hdr(skb);
478 int hdr_len = skb_network_header_len(skb);
479 int ah_hlen = (ah->hdrlen + 2) << 2;
484 work_iph = AH_SKB_CB(skb)->tmp;
485 auth_data = ah_tmp_auth(work_iph, hdr_len);
486 icv = ah_tmp_icv(ahp->ahash, auth_data, ahp->icv_trunc_len);
488 err = crypto_memneq(icv, auth_data, ahp->icv_trunc_len) ? -EBADMSG : 0;
494 skb->network_header += ah_hlen;
495 memcpy(skb_network_header(skb), work_iph, hdr_len);
496 __skb_pull(skb, ah_hlen + hdr_len);
497 if (x->props.mode == XFRM_MODE_TUNNEL)
498 skb_reset_transport_header(skb);
500 skb_set_transport_header(skb, -hdr_len);
502 kfree(AH_SKB_CB(skb)->tmp);
503 xfrm_input_resume(skb, err);
508 static int ah6_input(struct xfrm_state *x, struct sk_buff *skb)
512 * [IPv6][Ext1][Ext2][AH][Dest][Payload]
513 * |<-------------->| hdr_len
516 * Keeping copy of cleared headers. After AH processing,
517 * Moving the pointer of skb->network_header by using skb_pull as long
518 * as AH header length. Then copy back the copy as long as hdr_len
519 * If destination header following AH exists, copy it into after [Ext2].
521 * |<>|[IPv6][Ext1][Ext2][Dest][Payload]
522 * There is offset of AH before IPv6 header after the process.
528 struct sk_buff *trailer;
529 struct crypto_ahash *ahash;
530 struct ahash_request *req;
531 struct scatterlist *sg;
532 struct ip_auth_hdr *ah;
533 struct ipv6hdr *ip6h;
543 struct scatterlist *seqhisg;
545 if (!pskb_may_pull(skb, sizeof(struct ip_auth_hdr)))
548 /* We are going to _remove_ AH header to keep sockets happy,
549 * so... Later this can change. */
550 if (skb_unclone(skb, GFP_ATOMIC))
553 skb->ip_summed = CHECKSUM_NONE;
555 hdr_len = skb_network_header_len(skb);
556 ah = (struct ip_auth_hdr *)skb->data;
560 nexthdr = ah->nexthdr;
561 ah_hlen = (ah->hdrlen + 2) << 2;
563 if (ah_hlen != XFRM_ALIGN8(sizeof(*ah) + ahp->icv_full_len) &&
564 ah_hlen != XFRM_ALIGN8(sizeof(*ah) + ahp->icv_trunc_len))
567 if (!pskb_may_pull(skb, ah_hlen))
570 err = skb_cow_data(skb, 0, &trailer);
575 ah = (struct ip_auth_hdr *)skb->data;
576 ip6h = ipv6_hdr(skb);
578 skb_push(skb, hdr_len);
580 if (x->props.flags & XFRM_STATE_ESN) {
582 seqhi_len = sizeof(*seqhi);
585 work_iph = ah_alloc_tmp(ahash, nfrags + sglists, hdr_len +
586 ahp->icv_trunc_len + seqhi_len);
592 auth_data = ah_tmp_auth((u8 *)work_iph, hdr_len);
593 seqhi = (__be32 *)(auth_data + ahp->icv_trunc_len);
594 icv = ah_tmp_icv(ahash, seqhi, seqhi_len);
595 req = ah_tmp_req(ahash, icv);
596 sg = ah_req_sg(ahash, req);
597 seqhisg = sg + nfrags;
599 memcpy(work_iph, ip6h, hdr_len);
600 memcpy(auth_data, ah->auth_data, ahp->icv_trunc_len);
601 memset(ah->auth_data, 0, ahp->icv_trunc_len);
603 if (ipv6_clear_mutable_options(ip6h, hdr_len, XFRM_POLICY_IN))
607 ip6h->flow_lbl[0] = 0;
608 ip6h->flow_lbl[1] = 0;
609 ip6h->flow_lbl[2] = 0;
612 sg_init_table(sg, nfrags + sglists);
613 err = skb_to_sgvec_nomark(skb, sg, 0, skb->len);
614 if (unlikely(err < 0))
617 if (x->props.flags & XFRM_STATE_ESN) {
618 /* Attach seqhi sg right after packet payload */
619 *seqhi = XFRM_SKB_CB(skb)->seq.input.hi;
620 sg_set_buf(seqhisg, seqhi, seqhi_len);
623 ahash_request_set_crypt(req, sg, icv, skb->len + seqhi_len);
624 ahash_request_set_callback(req, 0, ah6_input_done, skb);
626 AH_SKB_CB(skb)->tmp = work_iph;
628 err = crypto_ahash_digest(req);
630 if (err == -EINPROGRESS)
636 err = crypto_memneq(icv, auth_data, ahp->icv_trunc_len) ? -EBADMSG : 0;
640 skb->network_header += ah_hlen;
641 memcpy(skb_network_header(skb), work_iph, hdr_len);
642 __skb_pull(skb, ah_hlen + hdr_len);
644 if (x->props.mode == XFRM_MODE_TUNNEL)
645 skb_reset_transport_header(skb);
647 skb_set_transport_header(skb, -hdr_len);
657 static int ah6_err(struct sk_buff *skb, struct inet6_skb_parm *opt,
658 u8 type, u8 code, int offset, __be32 info)
660 struct net *net = dev_net(skb->dev);
661 struct ipv6hdr *iph = (struct ipv6hdr *)skb->data;
662 struct ip_auth_hdr *ah = (struct ip_auth_hdr *)(skb->data+offset);
663 struct xfrm_state *x;
665 if (type != ICMPV6_PKT_TOOBIG &&
666 type != NDISC_REDIRECT)
669 x = xfrm_state_lookup(net, skb->mark, (xfrm_address_t *)&iph->daddr, ah->spi, IPPROTO_AH, AF_INET6);
673 if (type == NDISC_REDIRECT)
674 ip6_redirect(skb, net, skb->dev->ifindex, 0,
675 sock_net_uid(net, NULL));
677 ip6_update_pmtu(skb, net, info, 0, 0, sock_net_uid(net, NULL));
683 static int ah6_init_state(struct xfrm_state *x)
685 struct ah_data *ahp = NULL;
686 struct xfrm_algo_desc *aalg_desc;
687 struct crypto_ahash *ahash;
695 ahp = kzalloc(sizeof(*ahp), GFP_KERNEL);
699 ahash = crypto_alloc_ahash(x->aalg->alg_name, 0, 0);
704 if (crypto_ahash_setkey(ahash, x->aalg->alg_key,
705 (x->aalg->alg_key_len + 7) / 8))
709 * Lookup the algorithm description maintained by xfrm_algo,
710 * verify crypto transform properties, and store information
711 * we need for AH processing. This lookup cannot fail here
712 * after a successful crypto_alloc_hash().
714 aalg_desc = xfrm_aalg_get_byname(x->aalg->alg_name, 0);
717 if (aalg_desc->uinfo.auth.icv_fullbits/8 !=
718 crypto_ahash_digestsize(ahash)) {
719 pr_info("AH: %s digestsize %u != %hu\n",
720 x->aalg->alg_name, crypto_ahash_digestsize(ahash),
721 aalg_desc->uinfo.auth.icv_fullbits/8);
725 ahp->icv_full_len = aalg_desc->uinfo.auth.icv_fullbits/8;
726 ahp->icv_trunc_len = x->aalg->alg_trunc_len/8;
728 x->props.header_len = XFRM_ALIGN8(sizeof(struct ip_auth_hdr) +
730 switch (x->props.mode) {
732 case XFRM_MODE_TRANSPORT:
734 case XFRM_MODE_TUNNEL:
735 x->props.header_len += sizeof(struct ipv6hdr);
746 crypto_free_ahash(ahp->ahash);
752 static void ah6_destroy(struct xfrm_state *x)
754 struct ah_data *ahp = x->data;
759 crypto_free_ahash(ahp->ahash);
763 static int ah6_rcv_cb(struct sk_buff *skb, int err)
768 static const struct xfrm_type ah6_type = {
769 .description = "AH6",
770 .owner = THIS_MODULE,
772 .flags = XFRM_TYPE_REPLAY_PROT,
773 .init_state = ah6_init_state,
774 .destructor = ah6_destroy,
776 .output = ah6_output,
777 .hdr_offset = xfrm6_find_1stfragopt,
780 static struct xfrm6_protocol ah6_protocol = {
781 .handler = xfrm6_rcv,
782 .cb_handler = ah6_rcv_cb,
783 .err_handler = ah6_err,
787 static int __init ah6_init(void)
789 if (xfrm_register_type(&ah6_type, AF_INET6) < 0) {
790 pr_info("%s: can't add xfrm type\n", __func__);
794 if (xfrm6_protocol_register(&ah6_protocol, IPPROTO_AH) < 0) {
795 pr_info("%s: can't add protocol\n", __func__);
796 xfrm_unregister_type(&ah6_type, AF_INET6);
803 static void __exit ah6_fini(void)
805 if (xfrm6_protocol_deregister(&ah6_protocol, IPPROTO_AH) < 0)
806 pr_info("%s: can't remove protocol\n", __func__);
808 if (xfrm_unregister_type(&ah6_type, AF_INET6) < 0)
809 pr_info("%s: can't remove xfrm type\n", __func__);
813 module_init(ah6_init);
814 module_exit(ah6_fini);
816 MODULE_LICENSE("GPL");
817 MODULE_ALIAS_XFRM_TYPE(AF_INET6, XFRM_PROTO_AH);
projects / platform / kernel / linux-rpi.git / blob