1 /* xfrm_user.c: User interface to configure xfrm engine.
3 * Copyright (C) 2002 David S. Miller (davem@redhat.com)
7 * Kazunori MIYAZAWA @USAGI
8 * Kunihiro Ishiguro <kunihiro@ipinfusion.com>
13 #include <linux/module.h>
14 #include <linux/kernel.h>
15 #include <linux/types.h>
16 #include <linux/slab.h>
17 #include <linux/socket.h>
18 #include <linux/string.h>
19 #include <linux/net.h>
20 #include <linux/skbuff.h>
21 #include <linux/rtnetlink.h>
22 #include <linux/pfkeyv2.h>
23 #include <linux/ipsec.h>
24 #include <linux/init.h>
25 #include <linux/security.h>
28 #include <net/netlink.h>
29 #include <asm/uaccess.h>
31 static int verify_one_alg(struct rtattr **xfrma, enum xfrm_attr_type_t type)
33 struct rtattr *rt = xfrma[type - 1];
34 struct xfrm_algo *algp;
40 len = (rt->rta_len - sizeof(*rt)) - sizeof(*algp);
46 len -= (algp->alg_key_len + 7U) / 8;
52 if (!algp->alg_key_len &&
53 strcmp(algp->alg_name, "digest_null") != 0)
58 if (!algp->alg_key_len &&
59 strcmp(algp->alg_name, "cipher_null") != 0)
64 /* Zero length keys are legal. */
71 algp->alg_name[CRYPTO_MAX_ALG_NAME - 1] = '\0';
75 static int verify_encap_tmpl(struct rtattr **xfrma)
77 struct rtattr *rt = xfrma[XFRMA_ENCAP - 1];
78 struct xfrm_encap_tmpl *encap;
83 if ((rt->rta_len - sizeof(*rt)) < sizeof(*encap))
90 static inline int verify_sec_ctx_len(struct rtattr **xfrma)
92 struct rtattr *rt = xfrma[XFRMA_SEC_CTX - 1];
93 struct xfrm_user_sec_ctx *uctx;
99 if (rt->rta_len < sizeof(*uctx))
104 len += sizeof(struct xfrm_user_sec_ctx);
105 len += uctx->ctx_len;
107 if (uctx->len != len)
114 static int verify_newsa_info(struct xfrm_usersa_info *p,
115 struct rtattr **xfrma)
125 #if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE)
137 switch (p->id.proto) {
139 if (!xfrma[XFRMA_ALG_AUTH-1] ||
140 xfrma[XFRMA_ALG_CRYPT-1] ||
141 xfrma[XFRMA_ALG_COMP-1])
146 if ((!xfrma[XFRMA_ALG_AUTH-1] &&
147 !xfrma[XFRMA_ALG_CRYPT-1]) ||
148 xfrma[XFRMA_ALG_COMP-1])
153 if (!xfrma[XFRMA_ALG_COMP-1] ||
154 xfrma[XFRMA_ALG_AUTH-1] ||
155 xfrma[XFRMA_ALG_CRYPT-1])
163 if ((err = verify_one_alg(xfrma, XFRMA_ALG_AUTH)))
165 if ((err = verify_one_alg(xfrma, XFRMA_ALG_CRYPT)))
167 if ((err = verify_one_alg(xfrma, XFRMA_ALG_COMP)))
169 if ((err = verify_encap_tmpl(xfrma)))
171 if ((err = verify_sec_ctx_len(xfrma)))
190 static int attach_one_algo(struct xfrm_algo **algpp, u8 *props,
191 struct xfrm_algo_desc *(*get_byname)(char *, int),
192 struct rtattr *u_arg)
194 struct rtattr *rta = u_arg;
195 struct xfrm_algo *p, *ualg;
196 struct xfrm_algo_desc *algo;
202 ualg = RTA_DATA(rta);
204 algo = get_byname(ualg->alg_name, 1);
207 *props = algo->desc.sadb_alg_id;
209 len = sizeof(*ualg) + (ualg->alg_key_len + 7U) / 8;
210 p = kmalloc(len, GFP_KERNEL);
214 memcpy(p, ualg, len);
219 static int attach_encap_tmpl(struct xfrm_encap_tmpl **encapp, struct rtattr *u_arg)
221 struct rtattr *rta = u_arg;
222 struct xfrm_encap_tmpl *p, *uencap;
227 uencap = RTA_DATA(rta);
228 p = kmalloc(sizeof(*p), GFP_KERNEL);
232 memcpy(p, uencap, sizeof(*p));
238 static inline int xfrm_user_sec_ctx_size(struct xfrm_policy *xp)
240 struct xfrm_sec_ctx *xfrm_ctx = xp->security;
244 len += sizeof(struct xfrm_user_sec_ctx);
245 len += xfrm_ctx->ctx_len;
250 static int attach_sec_ctx(struct xfrm_state *x, struct rtattr *u_arg)
252 struct xfrm_user_sec_ctx *uctx;
257 uctx = RTA_DATA(u_arg);
258 return security_xfrm_state_alloc(x, uctx);
261 static void copy_from_user_state(struct xfrm_state *x, struct xfrm_usersa_info *p)
263 memcpy(&x->id, &p->id, sizeof(x->id));
264 memcpy(&x->sel, &p->sel, sizeof(x->sel));
265 memcpy(&x->lft, &p->lft, sizeof(x->lft));
266 x->props.mode = p->mode;
267 x->props.replay_window = p->replay_window;
268 x->props.reqid = p->reqid;
269 x->props.family = p->family;
270 x->props.saddr = p->saddr;
271 x->props.flags = p->flags;
275 * someday when pfkey also has support, we could have the code
276 * somehow made shareable and move it to xfrm_state.c - JHS
279 static int xfrm_update_ae_params(struct xfrm_state *x, struct rtattr **xfrma)
282 struct rtattr *rp = xfrma[XFRMA_REPLAY_VAL-1];
283 struct rtattr *lt = xfrma[XFRMA_LTIME_VAL-1];
284 struct rtattr *et = xfrma[XFRMA_ETIMER_THRESH-1];
285 struct rtattr *rt = xfrma[XFRMA_REPLAY_THRESH-1];
288 struct xfrm_replay_state *replay;
289 if (RTA_PAYLOAD(rp) < sizeof(*replay))
291 replay = RTA_DATA(rp);
292 memcpy(&x->replay, replay, sizeof(*replay));
293 memcpy(&x->preplay, replay, sizeof(*replay));
297 struct xfrm_lifetime_cur *ltime;
298 if (RTA_PAYLOAD(lt) < sizeof(*ltime))
300 ltime = RTA_DATA(lt);
301 x->curlft.bytes = ltime->bytes;
302 x->curlft.packets = ltime->packets;
303 x->curlft.add_time = ltime->add_time;
304 x->curlft.use_time = ltime->use_time;
308 if (RTA_PAYLOAD(et) < sizeof(u32))
310 x->replay_maxage = *(u32*)RTA_DATA(et);
314 if (RTA_PAYLOAD(rt) < sizeof(u32))
316 x->replay_maxdiff = *(u32*)RTA_DATA(rt);
324 static struct xfrm_state *xfrm_state_construct(struct xfrm_usersa_info *p,
325 struct rtattr **xfrma,
328 struct xfrm_state *x = xfrm_state_alloc();
334 copy_from_user_state(x, p);
336 if ((err = attach_one_algo(&x->aalg, &x->props.aalgo,
337 xfrm_aalg_get_byname,
338 xfrma[XFRMA_ALG_AUTH-1])))
340 if ((err = attach_one_algo(&x->ealg, &x->props.ealgo,
341 xfrm_ealg_get_byname,
342 xfrma[XFRMA_ALG_CRYPT-1])))
344 if ((err = attach_one_algo(&x->calg, &x->props.calgo,
345 xfrm_calg_get_byname,
346 xfrma[XFRMA_ALG_COMP-1])))
348 if ((err = attach_encap_tmpl(&x->encap, xfrma[XFRMA_ENCAP-1])))
351 err = xfrm_init_state(x);
355 if ((err = attach_sec_ctx(x, xfrma[XFRMA_SEC_CTX-1])))
359 x->replay_maxdiff = sysctl_xfrm_aevent_rseqth;
360 /* sysctl_xfrm_aevent_etime is in 100ms units */
361 x->replay_maxage = (sysctl_xfrm_aevent_etime*HZ)/XFRM_AE_ETH_M;
362 x->preplay.bitmap = 0;
363 x->preplay.seq = x->replay.seq+x->replay_maxdiff;
364 x->preplay.oseq = x->replay.oseq +x->replay_maxdiff;
366 /* override default values from above */
368 err = xfrm_update_ae_params(x, (struct rtattr **)xfrma);
375 x->km.state = XFRM_STATE_DEAD;
382 static int xfrm_add_sa(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
384 struct xfrm_usersa_info *p = NLMSG_DATA(nlh);
385 struct xfrm_state *x;
389 err = verify_newsa_info(p, (struct rtattr **)xfrma);
393 x = xfrm_state_construct(p, (struct rtattr **)xfrma, &err);
398 if (nlh->nlmsg_type == XFRM_MSG_NEWSA)
399 err = xfrm_state_add(x);
401 err = xfrm_state_update(x);
404 x->km.state = XFRM_STATE_DEAD;
409 c.seq = nlh->nlmsg_seq;
410 c.pid = nlh->nlmsg_pid;
411 c.event = nlh->nlmsg_type;
413 km_state_notify(x, &c);
419 static int xfrm_del_sa(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
421 struct xfrm_state *x;
424 struct xfrm_usersa_id *p = NLMSG_DATA(nlh);
426 x = xfrm_state_lookup(&p->daddr, p->spi, p->proto, p->family);
430 if (xfrm_state_kern(x)) {
435 err = xfrm_state_delete(x);
441 c.seq = nlh->nlmsg_seq;
442 c.pid = nlh->nlmsg_pid;
443 c.event = nlh->nlmsg_type;
444 km_state_notify(x, &c);
450 static void copy_to_user_state(struct xfrm_state *x, struct xfrm_usersa_info *p)
452 memcpy(&p->id, &x->id, sizeof(p->id));
453 memcpy(&p->sel, &x->sel, sizeof(p->sel));
454 memcpy(&p->lft, &x->lft, sizeof(p->lft));
455 memcpy(&p->curlft, &x->curlft, sizeof(p->curlft));
456 memcpy(&p->stats, &x->stats, sizeof(p->stats));
457 p->saddr = x->props.saddr;
458 p->mode = x->props.mode;
459 p->replay_window = x->props.replay_window;
460 p->reqid = x->props.reqid;
461 p->family = x->props.family;
462 p->flags = x->props.flags;
466 struct xfrm_dump_info {
467 struct sk_buff *in_skb;
468 struct sk_buff *out_skb;
475 static int dump_one_state(struct xfrm_state *x, int count, void *ptr)
477 struct xfrm_dump_info *sp = ptr;
478 struct sk_buff *in_skb = sp->in_skb;
479 struct sk_buff *skb = sp->out_skb;
480 struct xfrm_usersa_info *p;
481 struct nlmsghdr *nlh;
482 unsigned char *b = skb->tail;
484 if (sp->this_idx < sp->start_idx)
487 nlh = NLMSG_PUT(skb, NETLINK_CB(in_skb).pid,
489 XFRM_MSG_NEWSA, sizeof(*p));
490 nlh->nlmsg_flags = sp->nlmsg_flags;
493 copy_to_user_state(x, p);
496 RTA_PUT(skb, XFRMA_ALG_AUTH,
497 sizeof(*(x->aalg))+(x->aalg->alg_key_len+7)/8, x->aalg);
499 RTA_PUT(skb, XFRMA_ALG_CRYPT,
500 sizeof(*(x->ealg))+(x->ealg->alg_key_len+7)/8, x->ealg);
502 RTA_PUT(skb, XFRMA_ALG_COMP, sizeof(*(x->calg)), x->calg);
505 RTA_PUT(skb, XFRMA_ENCAP, sizeof(*x->encap), x->encap);
508 int ctx_size = sizeof(struct xfrm_sec_ctx) +
509 x->security->ctx_len;
510 struct rtattr *rt = __RTA_PUT(skb, XFRMA_SEC_CTX, ctx_size);
511 struct xfrm_user_sec_ctx *uctx = RTA_DATA(rt);
513 uctx->exttype = XFRMA_SEC_CTX;
514 uctx->len = ctx_size;
515 uctx->ctx_doi = x->security->ctx_doi;
516 uctx->ctx_alg = x->security->ctx_alg;
517 uctx->ctx_len = x->security->ctx_len;
518 memcpy(uctx + 1, x->security->ctx_str, x->security->ctx_len);
520 nlh->nlmsg_len = skb->tail - b;
527 skb_trim(skb, b - skb->data);
531 static int xfrm_dump_sa(struct sk_buff *skb, struct netlink_callback *cb)
533 struct xfrm_dump_info info;
535 info.in_skb = cb->skb;
537 info.nlmsg_seq = cb->nlh->nlmsg_seq;
538 info.nlmsg_flags = NLM_F_MULTI;
540 info.start_idx = cb->args[0];
541 (void) xfrm_state_walk(IPSEC_PROTO_ANY, dump_one_state, &info);
542 cb->args[0] = info.this_idx;
547 static struct sk_buff *xfrm_state_netlink(struct sk_buff *in_skb,
548 struct xfrm_state *x, u32 seq)
550 struct xfrm_dump_info info;
553 skb = alloc_skb(NLMSG_GOODSIZE, GFP_ATOMIC);
555 return ERR_PTR(-ENOMEM);
557 NETLINK_CB(skb).dst_pid = NETLINK_CB(in_skb).pid;
558 info.in_skb = in_skb;
560 info.nlmsg_seq = seq;
561 info.nlmsg_flags = 0;
562 info.this_idx = info.start_idx = 0;
564 if (dump_one_state(x, 0, &info)) {
572 static int xfrm_get_sa(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
574 struct xfrm_usersa_id *p = NLMSG_DATA(nlh);
575 struct xfrm_state *x;
576 struct sk_buff *resp_skb;
579 x = xfrm_state_lookup(&p->daddr, p->spi, p->proto, p->family);
584 resp_skb = xfrm_state_netlink(skb, x, nlh->nlmsg_seq);
585 if (IS_ERR(resp_skb)) {
586 err = PTR_ERR(resp_skb);
588 err = netlink_unicast(xfrm_nl, resp_skb,
589 NETLINK_CB(skb).pid, MSG_DONTWAIT);
596 static int verify_userspi_info(struct xfrm_userspi_info *p)
598 switch (p->info.id.proto) {
604 /* IPCOMP spi is 16-bits. */
605 if (p->max >= 0x10000)
619 static int xfrm_alloc_userspi(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
621 struct xfrm_state *x;
622 struct xfrm_userspi_info *p;
623 struct sk_buff *resp_skb;
624 xfrm_address_t *daddr;
629 err = verify_userspi_info(p);
633 family = p->info.family;
634 daddr = &p->info.id.daddr;
638 x = xfrm_find_acq_byseq(p->info.seq);
639 if (x && xfrm_addr_cmp(&x->id.daddr, daddr, family)) {
646 x = xfrm_find_acq(p->info.mode, p->info.reqid,
647 p->info.id.proto, daddr,
654 resp_skb = ERR_PTR(-ENOENT);
656 spin_lock_bh(&x->lock);
657 if (x->km.state != XFRM_STATE_DEAD) {
658 xfrm_alloc_spi(x, htonl(p->min), htonl(p->max));
660 resp_skb = xfrm_state_netlink(skb, x, nlh->nlmsg_seq);
662 spin_unlock_bh(&x->lock);
664 if (IS_ERR(resp_skb)) {
665 err = PTR_ERR(resp_skb);
669 err = netlink_unicast(xfrm_nl, resp_skb,
670 NETLINK_CB(skb).pid, MSG_DONTWAIT);
678 static int verify_policy_dir(__u8 dir)
682 case XFRM_POLICY_OUT:
683 case XFRM_POLICY_FWD:
693 static int verify_newpolicy_info(struct xfrm_userpolicy_info *p)
697 case XFRM_SHARE_SESSION:
698 case XFRM_SHARE_USER:
699 case XFRM_SHARE_UNIQUE:
707 case XFRM_POLICY_ALLOW:
708 case XFRM_POLICY_BLOCK:
715 switch (p->sel.family) {
720 #if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE)
723 return -EAFNOSUPPORT;
730 return verify_policy_dir(p->dir);
733 static int copy_from_user_sec_ctx(struct xfrm_policy *pol, struct rtattr **xfrma)
735 struct rtattr *rt = xfrma[XFRMA_SEC_CTX-1];
736 struct xfrm_user_sec_ctx *uctx;
742 return security_xfrm_policy_alloc(pol, uctx);
745 static void copy_templates(struct xfrm_policy *xp, struct xfrm_user_tmpl *ut,
751 for (i = 0; i < nr; i++, ut++) {
752 struct xfrm_tmpl *t = &xp->xfrm_vec[i];
754 memcpy(&t->id, &ut->id, sizeof(struct xfrm_id));
755 memcpy(&t->saddr, &ut->saddr,
756 sizeof(xfrm_address_t));
757 t->reqid = ut->reqid;
759 t->share = ut->share;
760 t->optional = ut->optional;
761 t->aalgos = ut->aalgos;
762 t->ealgos = ut->ealgos;
763 t->calgos = ut->calgos;
767 static int copy_from_user_tmpl(struct xfrm_policy *pol, struct rtattr **xfrma)
769 struct rtattr *rt = xfrma[XFRMA_TMPL-1];
770 struct xfrm_user_tmpl *utmpl;
776 nr = (rt->rta_len - sizeof(*rt)) / sizeof(*utmpl);
778 if (nr > XFRM_MAX_DEPTH)
781 copy_templates(pol, RTA_DATA(rt), nr);
786 static void copy_from_user_policy(struct xfrm_policy *xp, struct xfrm_userpolicy_info *p)
788 xp->priority = p->priority;
789 xp->index = p->index;
790 memcpy(&xp->selector, &p->sel, sizeof(xp->selector));
791 memcpy(&xp->lft, &p->lft, sizeof(xp->lft));
792 xp->action = p->action;
793 xp->flags = p->flags;
794 xp->family = p->sel.family;
795 /* XXX xp->share = p->share; */
798 static void copy_to_user_policy(struct xfrm_policy *xp, struct xfrm_userpolicy_info *p, int dir)
800 memcpy(&p->sel, &xp->selector, sizeof(p->sel));
801 memcpy(&p->lft, &xp->lft, sizeof(p->lft));
802 memcpy(&p->curlft, &xp->curlft, sizeof(p->curlft));
803 p->priority = xp->priority;
804 p->index = xp->index;
805 p->sel.family = xp->family;
807 p->action = xp->action;
808 p->flags = xp->flags;
809 p->share = XFRM_SHARE_ANY; /* XXX xp->share */
812 static struct xfrm_policy *xfrm_policy_construct(struct xfrm_userpolicy_info *p, struct rtattr **xfrma, int *errp)
814 struct xfrm_policy *xp = xfrm_policy_alloc(GFP_KERNEL);
822 copy_from_user_policy(xp, p);
824 if (!(err = copy_from_user_tmpl(xp, xfrma)))
825 err = copy_from_user_sec_ctx(xp, xfrma);
836 static int xfrm_add_policy(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
838 struct xfrm_userpolicy_info *p = NLMSG_DATA(nlh);
839 struct xfrm_policy *xp;
844 err = verify_newpolicy_info(p);
847 err = verify_sec_ctx_len((struct rtattr **)xfrma);
851 xp = xfrm_policy_construct(p, (struct rtattr **)xfrma, &err);
855 /* shouldnt excl be based on nlh flags??
856 * Aha! this is anti-netlink really i.e more pfkey derived
857 * in netlink excl is a flag and you wouldnt need
858 * a type XFRM_MSG_UPDPOLICY - JHS */
859 excl = nlh->nlmsg_type == XFRM_MSG_NEWPOLICY;
860 err = xfrm_policy_insert(p->dir, xp, excl);
862 security_xfrm_policy_free(xp);
867 c.event = nlh->nlmsg_type;
868 c.seq = nlh->nlmsg_seq;
869 c.pid = nlh->nlmsg_pid;
870 km_policy_notify(xp, p->dir, &c);
877 static int copy_to_user_tmpl(struct xfrm_policy *xp, struct sk_buff *skb)
879 struct xfrm_user_tmpl vec[XFRM_MAX_DEPTH];
882 if (xp->xfrm_nr == 0)
885 for (i = 0; i < xp->xfrm_nr; i++) {
886 struct xfrm_user_tmpl *up = &vec[i];
887 struct xfrm_tmpl *kp = &xp->xfrm_vec[i];
889 memcpy(&up->id, &kp->id, sizeof(up->id));
890 up->family = xp->family;
891 memcpy(&up->saddr, &kp->saddr, sizeof(up->saddr));
892 up->reqid = kp->reqid;
894 up->share = kp->share;
895 up->optional = kp->optional;
896 up->aalgos = kp->aalgos;
897 up->ealgos = kp->ealgos;
898 up->calgos = kp->calgos;
900 RTA_PUT(skb, XFRMA_TMPL,
901 (sizeof(struct xfrm_user_tmpl) * xp->xfrm_nr),
910 static int copy_to_user_sec_ctx(struct xfrm_policy *xp, struct sk_buff *skb)
913 int ctx_size = sizeof(struct xfrm_sec_ctx) +
914 xp->security->ctx_len;
915 struct rtattr *rt = __RTA_PUT(skb, XFRMA_SEC_CTX, ctx_size);
916 struct xfrm_user_sec_ctx *uctx = RTA_DATA(rt);
918 uctx->exttype = XFRMA_SEC_CTX;
919 uctx->len = ctx_size;
920 uctx->ctx_doi = xp->security->ctx_doi;
921 uctx->ctx_alg = xp->security->ctx_alg;
922 uctx->ctx_len = xp->security->ctx_len;
923 memcpy(uctx + 1, xp->security->ctx_str, xp->security->ctx_len);
931 static int dump_one_policy(struct xfrm_policy *xp, int dir, int count, void *ptr)
933 struct xfrm_dump_info *sp = ptr;
934 struct xfrm_userpolicy_info *p;
935 struct sk_buff *in_skb = sp->in_skb;
936 struct sk_buff *skb = sp->out_skb;
937 struct nlmsghdr *nlh;
938 unsigned char *b = skb->tail;
940 if (sp->this_idx < sp->start_idx)
943 nlh = NLMSG_PUT(skb, NETLINK_CB(in_skb).pid,
945 XFRM_MSG_NEWPOLICY, sizeof(*p));
947 nlh->nlmsg_flags = sp->nlmsg_flags;
949 copy_to_user_policy(xp, p, dir);
950 if (copy_to_user_tmpl(xp, skb) < 0)
952 if (copy_to_user_sec_ctx(xp, skb))
955 nlh->nlmsg_len = skb->tail - b;
961 skb_trim(skb, b - skb->data);
965 static int xfrm_dump_policy(struct sk_buff *skb, struct netlink_callback *cb)
967 struct xfrm_dump_info info;
969 info.in_skb = cb->skb;
971 info.nlmsg_seq = cb->nlh->nlmsg_seq;
972 info.nlmsg_flags = NLM_F_MULTI;
974 info.start_idx = cb->args[0];
975 (void) xfrm_policy_walk(dump_one_policy, &info);
976 cb->args[0] = info.this_idx;
981 static struct sk_buff *xfrm_policy_netlink(struct sk_buff *in_skb,
982 struct xfrm_policy *xp,
985 struct xfrm_dump_info info;
988 skb = alloc_skb(NLMSG_GOODSIZE, GFP_KERNEL);
990 return ERR_PTR(-ENOMEM);
992 NETLINK_CB(skb).dst_pid = NETLINK_CB(in_skb).pid;
993 info.in_skb = in_skb;
995 info.nlmsg_seq = seq;
996 info.nlmsg_flags = 0;
997 info.this_idx = info.start_idx = 0;
999 if (dump_one_policy(xp, dir, 0, &info) < 0) {
1007 static int xfrm_get_policy(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
1009 struct xfrm_policy *xp;
1010 struct xfrm_userpolicy_id *p;
1015 p = NLMSG_DATA(nlh);
1016 delete = nlh->nlmsg_type == XFRM_MSG_DELPOLICY;
1018 err = verify_policy_dir(p->dir);
1023 xp = xfrm_policy_byid(p->dir, p->index, delete);
1025 struct rtattr **rtattrs = (struct rtattr **)xfrma;
1026 struct rtattr *rt = rtattrs[XFRMA_SEC_CTX-1];
1027 struct xfrm_policy tmp;
1029 err = verify_sec_ctx_len(rtattrs);
1033 memset(&tmp, 0, sizeof(struct xfrm_policy));
1035 struct xfrm_user_sec_ctx *uctx = RTA_DATA(rt);
1037 if ((err = security_xfrm_policy_alloc(&tmp, uctx)))
1040 xp = xfrm_policy_bysel_ctx(p->dir, &p->sel, tmp.security, delete);
1041 security_xfrm_policy_free(&tmp);
1047 struct sk_buff *resp_skb;
1049 resp_skb = xfrm_policy_netlink(skb, xp, p->dir, nlh->nlmsg_seq);
1050 if (IS_ERR(resp_skb)) {
1051 err = PTR_ERR(resp_skb);
1053 err = netlink_unicast(xfrm_nl, resp_skb,
1054 NETLINK_CB(skb).pid,
1058 c.data.byid = p->index;
1059 c.event = nlh->nlmsg_type;
1060 c.seq = nlh->nlmsg_seq;
1061 c.pid = nlh->nlmsg_pid;
1062 km_policy_notify(xp, p->dir, &c);
1070 static int xfrm_flush_sa(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
1073 struct xfrm_usersa_flush *p = NLMSG_DATA(nlh);
1075 xfrm_state_flush(p->proto);
1076 c.data.proto = p->proto;
1077 c.event = nlh->nlmsg_type;
1078 c.seq = nlh->nlmsg_seq;
1079 c.pid = nlh->nlmsg_pid;
1080 km_state_notify(NULL, &c);
1086 static int build_aevent(struct sk_buff *skb, struct xfrm_state *x, struct km_event *c)
1088 struct xfrm_aevent_id *id;
1089 struct nlmsghdr *nlh;
1090 struct xfrm_lifetime_cur ltime;
1091 unsigned char *b = skb->tail;
1093 nlh = NLMSG_PUT(skb, c->pid, c->seq, XFRM_MSG_NEWAE, sizeof(*id));
1094 id = NLMSG_DATA(nlh);
1095 nlh->nlmsg_flags = 0;
1097 id->sa_id.daddr = x->id.daddr;
1098 id->sa_id.spi = x->id.spi;
1099 id->sa_id.family = x->props.family;
1100 id->sa_id.proto = x->id.proto;
1101 id->flags = c->data.aevent;
1103 RTA_PUT(skb, XFRMA_REPLAY_VAL, sizeof(x->replay), &x->replay);
1105 ltime.bytes = x->curlft.bytes;
1106 ltime.packets = x->curlft.packets;
1107 ltime.add_time = x->curlft.add_time;
1108 ltime.use_time = x->curlft.use_time;
1110 RTA_PUT(skb, XFRMA_LTIME_VAL, sizeof(struct xfrm_lifetime_cur), <ime);
1112 if (id->flags&XFRM_AE_RTHR) {
1113 RTA_PUT(skb,XFRMA_REPLAY_THRESH,sizeof(u32),&x->replay_maxdiff);
1116 if (id->flags&XFRM_AE_ETHR) {
1117 u32 etimer = x->replay_maxage*10/HZ;
1118 RTA_PUT(skb,XFRMA_ETIMER_THRESH,sizeof(u32),&etimer);
1121 nlh->nlmsg_len = skb->tail - b;
1126 skb_trim(skb, b - skb->data);
1130 static int xfrm_get_ae(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
1132 struct xfrm_state *x;
1133 struct sk_buff *r_skb;
1136 struct xfrm_aevent_id *p = NLMSG_DATA(nlh);
1137 int len = NLMSG_LENGTH(sizeof(struct xfrm_aevent_id));
1138 struct xfrm_usersa_id *id = &p->sa_id;
1140 len += RTA_SPACE(sizeof(struct xfrm_replay_state));
1141 len += RTA_SPACE(sizeof(struct xfrm_lifetime_cur));
1143 if (p->flags&XFRM_AE_RTHR)
1144 len+=RTA_SPACE(sizeof(u32));
1146 if (p->flags&XFRM_AE_ETHR)
1147 len+=RTA_SPACE(sizeof(u32));
1149 r_skb = alloc_skb(len, GFP_ATOMIC);
1153 x = xfrm_state_lookup(&id->daddr, id->spi, id->proto, id->family);
1160 * XXX: is this lock really needed - none of the other
1161 * gets lock (the concern is things getting updated
1162 * while we are still reading) - jhs
1164 spin_lock_bh(&x->lock);
1165 c.data.aevent = p->flags;
1166 c.seq = nlh->nlmsg_seq;
1167 c.pid = nlh->nlmsg_pid;
1169 if (build_aevent(r_skb, x, &c) < 0)
1171 err = netlink_unicast(xfrm_nl, r_skb,
1172 NETLINK_CB(skb).pid, MSG_DONTWAIT);
1173 spin_unlock_bh(&x->lock);
1178 static int xfrm_new_ae(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
1180 struct xfrm_state *x;
1183 struct xfrm_aevent_id *p = NLMSG_DATA(nlh);
1184 struct rtattr *rp = xfrma[XFRMA_REPLAY_VAL-1];
1185 struct rtattr *lt = xfrma[XFRMA_LTIME_VAL-1];
1190 /* pedantic mode - thou shalt sayeth replaceth */
1191 if (!(nlh->nlmsg_flags&NLM_F_REPLACE))
1194 x = xfrm_state_lookup(&p->sa_id.daddr, p->sa_id.spi, p->sa_id.proto, p->sa_id.family);
1198 if (x->km.state != XFRM_STATE_VALID)
1201 spin_lock_bh(&x->lock);
1202 err = xfrm_update_ae_params(x,(struct rtattr **)xfrma);
1203 spin_unlock_bh(&x->lock);
1207 c.event = nlh->nlmsg_type;
1208 c.seq = nlh->nlmsg_seq;
1209 c.pid = nlh->nlmsg_pid;
1210 c.data.aevent = XFRM_AE_CU;
1211 km_state_notify(x, &c);
1218 static int xfrm_flush_policy(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
1222 xfrm_policy_flush();
1223 c.event = nlh->nlmsg_type;
1224 c.seq = nlh->nlmsg_seq;
1225 c.pid = nlh->nlmsg_pid;
1226 km_policy_notify(NULL, 0, &c);
1230 static int xfrm_add_pol_expire(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
1232 struct xfrm_policy *xp;
1233 struct xfrm_user_polexpire *up = NLMSG_DATA(nlh);
1234 struct xfrm_userpolicy_info *p = &up->pol;
1238 xp = xfrm_policy_byid(p->dir, p->index, 0);
1240 struct rtattr **rtattrs = (struct rtattr **)xfrma;
1241 struct rtattr *rt = rtattrs[XFRMA_SEC_CTX-1];
1242 struct xfrm_policy tmp;
1244 err = verify_sec_ctx_len(rtattrs);
1248 memset(&tmp, 0, sizeof(struct xfrm_policy));
1250 struct xfrm_user_sec_ctx *uctx = RTA_DATA(rt);
1252 if ((err = security_xfrm_policy_alloc(&tmp, uctx)))
1255 xp = xfrm_policy_bysel_ctx(p->dir, &p->sel, tmp.security, 0);
1256 security_xfrm_policy_free(&tmp);
1261 read_lock(&xp->lock);
1263 read_unlock(&xp->lock);
1267 read_unlock(&xp->lock);
1270 xfrm_policy_delete(xp, p->dir);
1272 // reset the timers here?
1273 printk("Dont know what to do with soft policy expire\n");
1275 km_policy_expired(xp, p->dir, up->hard, current->pid);
1282 static int xfrm_add_sa_expire(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
1284 struct xfrm_state *x;
1286 struct xfrm_user_expire *ue = NLMSG_DATA(nlh);
1287 struct xfrm_usersa_info *p = &ue->state;
1289 x = xfrm_state_lookup(&p->id.daddr, p->id.spi, p->id.proto, p->family);
1297 spin_lock_bh(&x->lock);
1298 if (x->km.state != XFRM_STATE_VALID)
1300 km_state_expired(x, ue->hard, current->pid);
1303 __xfrm_state_delete(x);
1305 spin_unlock_bh(&x->lock);
1310 static int xfrm_add_acquire(struct sk_buff *skb, struct nlmsghdr *nlh, void **xfrma)
1312 struct xfrm_policy *xp;
1313 struct xfrm_user_tmpl *ut;
1315 struct rtattr *rt = xfrma[XFRMA_TMPL-1];
1317 struct xfrm_user_acquire *ua = NLMSG_DATA(nlh);
1318 struct xfrm_state *x = xfrm_state_alloc();
1324 err = verify_newpolicy_info(&ua->policy);
1326 printk("BAD policy passed\n");
1332 xp = xfrm_policy_construct(&ua->policy, (struct rtattr **) xfrma, &err); if (!xp) {
1337 memcpy(&x->id, &ua->id, sizeof(ua->id));
1338 memcpy(&x->props.saddr, &ua->saddr, sizeof(ua->saddr));
1339 memcpy(&x->sel, &ua->sel, sizeof(ua->sel));
1342 /* extract the templates and for each call km_key */
1343 for (i = 0; i < xp->xfrm_nr; i++, ut++) {
1344 struct xfrm_tmpl *t = &xp->xfrm_vec[i];
1345 memcpy(&x->id, &t->id, sizeof(x->id));
1346 x->props.mode = t->mode;
1347 x->props.reqid = t->reqid;
1348 x->props.family = ut->family;
1349 t->aalgos = ua->aalgos;
1350 t->ealgos = ua->ealgos;
1351 t->calgos = ua->calgos;
1352 err = km_query(x, t, xp);
1363 #define XMSGSIZE(type) NLMSG_LENGTH(sizeof(struct type))
1365 static const int xfrm_msg_min[XFRM_NR_MSGTYPES] = {
1366 [XFRM_MSG_NEWSA - XFRM_MSG_BASE] = XMSGSIZE(xfrm_usersa_info),
1367 [XFRM_MSG_DELSA - XFRM_MSG_BASE] = XMSGSIZE(xfrm_usersa_id),
1368 [XFRM_MSG_GETSA - XFRM_MSG_BASE] = XMSGSIZE(xfrm_usersa_id),
1369 [XFRM_MSG_NEWPOLICY - XFRM_MSG_BASE] = XMSGSIZE(xfrm_userpolicy_info),
1370 [XFRM_MSG_DELPOLICY - XFRM_MSG_BASE] = XMSGSIZE(xfrm_userpolicy_id),
1371 [XFRM_MSG_GETPOLICY - XFRM_MSG_BASE] = XMSGSIZE(xfrm_userpolicy_id),
1372 [XFRM_MSG_ALLOCSPI - XFRM_MSG_BASE] = XMSGSIZE(xfrm_userspi_info),
1373 [XFRM_MSG_ACQUIRE - XFRM_MSG_BASE] = XMSGSIZE(xfrm_user_acquire),
1374 [XFRM_MSG_EXPIRE - XFRM_MSG_BASE] = XMSGSIZE(xfrm_user_expire),
1375 [XFRM_MSG_UPDPOLICY - XFRM_MSG_BASE] = XMSGSIZE(xfrm_userpolicy_info),
1376 [XFRM_MSG_UPDSA - XFRM_MSG_BASE] = XMSGSIZE(xfrm_usersa_info),
1377 [XFRM_MSG_POLEXPIRE - XFRM_MSG_BASE] = XMSGSIZE(xfrm_user_polexpire),
1378 [XFRM_MSG_FLUSHSA - XFRM_MSG_BASE] = XMSGSIZE(xfrm_usersa_flush),
1379 [XFRM_MSG_FLUSHPOLICY - XFRM_MSG_BASE] = NLMSG_LENGTH(0),
1380 [XFRM_MSG_NEWAE - XFRM_MSG_BASE] = XMSGSIZE(xfrm_aevent_id),
1381 [XFRM_MSG_GETAE - XFRM_MSG_BASE] = XMSGSIZE(xfrm_aevent_id),
1386 static struct xfrm_link {
1387 int (*doit)(struct sk_buff *, struct nlmsghdr *, void **);
1388 int (*dump)(struct sk_buff *, struct netlink_callback *);
1389 } xfrm_dispatch[XFRM_NR_MSGTYPES] = {
1390 [XFRM_MSG_NEWSA - XFRM_MSG_BASE] = { .doit = xfrm_add_sa },
1391 [XFRM_MSG_DELSA - XFRM_MSG_BASE] = { .doit = xfrm_del_sa },
1392 [XFRM_MSG_GETSA - XFRM_MSG_BASE] = { .doit = xfrm_get_sa,
1393 .dump = xfrm_dump_sa },
1394 [XFRM_MSG_NEWPOLICY - XFRM_MSG_BASE] = { .doit = xfrm_add_policy },
1395 [XFRM_MSG_DELPOLICY - XFRM_MSG_BASE] = { .doit = xfrm_get_policy },
1396 [XFRM_MSG_GETPOLICY - XFRM_MSG_BASE] = { .doit = xfrm_get_policy,
1397 .dump = xfrm_dump_policy },
1398 [XFRM_MSG_ALLOCSPI - XFRM_MSG_BASE] = { .doit = xfrm_alloc_userspi },
1399 [XFRM_MSG_ACQUIRE - XFRM_MSG_BASE] = { .doit = xfrm_add_acquire },
1400 [XFRM_MSG_EXPIRE - XFRM_MSG_BASE] = { .doit = xfrm_add_sa_expire },
1401 [XFRM_MSG_UPDPOLICY - XFRM_MSG_BASE] = { .doit = xfrm_add_policy },
1402 [XFRM_MSG_UPDSA - XFRM_MSG_BASE] = { .doit = xfrm_add_sa },
1403 [XFRM_MSG_POLEXPIRE - XFRM_MSG_BASE] = { .doit = xfrm_add_pol_expire},
1404 [XFRM_MSG_FLUSHSA - XFRM_MSG_BASE] = { .doit = xfrm_flush_sa },
1405 [XFRM_MSG_FLUSHPOLICY - XFRM_MSG_BASE] = { .doit = xfrm_flush_policy },
1406 [XFRM_MSG_NEWAE - XFRM_MSG_BASE] = { .doit = xfrm_new_ae },
1407 [XFRM_MSG_GETAE - XFRM_MSG_BASE] = { .doit = xfrm_get_ae },
1410 static int xfrm_user_rcv_msg(struct sk_buff *skb, struct nlmsghdr *nlh, int *errp)
1412 struct rtattr *xfrma[XFRMA_MAX];
1413 struct xfrm_link *link;
1416 if (!(nlh->nlmsg_flags & NLM_F_REQUEST))
1419 type = nlh->nlmsg_type;
1421 /* A control message: ignore them */
1422 if (type < XFRM_MSG_BASE)
1425 /* Unknown message: reply with EINVAL */
1426 if (type > XFRM_MSG_MAX)
1429 type -= XFRM_MSG_BASE;
1430 link = &xfrm_dispatch[type];
1432 /* All operations require privileges, even GET */
1433 if (security_netlink_recv(skb)) {
1438 if ((type == (XFRM_MSG_GETSA - XFRM_MSG_BASE) ||
1439 type == (XFRM_MSG_GETPOLICY - XFRM_MSG_BASE)) &&
1440 (nlh->nlmsg_flags & NLM_F_DUMP)) {
1441 if (link->dump == NULL)
1444 if ((*errp = netlink_dump_start(xfrm_nl, skb, nlh,
1445 link->dump, NULL)) != 0) {
1449 netlink_queue_skip(nlh, skb);
1453 memset(xfrma, 0, sizeof(xfrma));
1455 if (nlh->nlmsg_len < (min_len = xfrm_msg_min[type]))
1458 if (nlh->nlmsg_len > min_len) {
1459 int attrlen = nlh->nlmsg_len - NLMSG_ALIGN(min_len);
1460 struct rtattr *attr = (void *) nlh + NLMSG_ALIGN(min_len);
1462 while (RTA_OK(attr, attrlen)) {
1463 unsigned short flavor = attr->rta_type;
1465 if (flavor > XFRMA_MAX)
1467 xfrma[flavor - 1] = attr;
1469 attr = RTA_NEXT(attr, attrlen);
1473 if (link->doit == NULL)
1475 *errp = link->doit(skb, nlh, (void **) &xfrma);
1484 static void xfrm_netlink_rcv(struct sock *sk, int len)
1486 unsigned int qlen = 0;
1489 mutex_lock(&xfrm_cfg_mutex);
1490 netlink_run_queue(sk, &qlen, &xfrm_user_rcv_msg);
1491 mutex_unlock(&xfrm_cfg_mutex);
1496 static int build_expire(struct sk_buff *skb, struct xfrm_state *x, struct km_event *c)
1498 struct xfrm_user_expire *ue;
1499 struct nlmsghdr *nlh;
1500 unsigned char *b = skb->tail;
1502 nlh = NLMSG_PUT(skb, c->pid, 0, XFRM_MSG_EXPIRE,
1504 ue = NLMSG_DATA(nlh);
1505 nlh->nlmsg_flags = 0;
1507 copy_to_user_state(x, &ue->state);
1508 ue->hard = (c->data.hard != 0) ? 1 : 0;
1510 nlh->nlmsg_len = skb->tail - b;
1514 skb_trim(skb, b - skb->data);
1518 static int xfrm_exp_state_notify(struct xfrm_state *x, struct km_event *c)
1520 struct sk_buff *skb;
1521 int len = NLMSG_LENGTH(sizeof(struct xfrm_user_expire));
1523 skb = alloc_skb(len, GFP_ATOMIC);
1527 if (build_expire(skb, x, c) < 0)
1530 NETLINK_CB(skb).dst_group = XFRMNLGRP_EXPIRE;
1531 return netlink_broadcast(xfrm_nl, skb, 0, XFRMNLGRP_EXPIRE, GFP_ATOMIC);
1534 static int xfrm_aevent_state_notify(struct xfrm_state *x, struct km_event *c)
1536 struct sk_buff *skb;
1537 int len = NLMSG_LENGTH(sizeof(struct xfrm_aevent_id));
1539 len += RTA_SPACE(sizeof(struct xfrm_replay_state));
1540 len += RTA_SPACE(sizeof(struct xfrm_lifetime_cur));
1541 skb = alloc_skb(len, GFP_ATOMIC);
1545 if (build_aevent(skb, x, c) < 0)
1548 NETLINK_CB(skb).dst_group = XFRMNLGRP_AEVENTS;
1549 return netlink_broadcast(xfrm_nl, skb, 0, XFRMNLGRP_AEVENTS, GFP_ATOMIC);
1552 static int xfrm_notify_sa_flush(struct km_event *c)
1554 struct xfrm_usersa_flush *p;
1555 struct nlmsghdr *nlh;
1556 struct sk_buff *skb;
1558 int len = NLMSG_LENGTH(sizeof(struct xfrm_usersa_flush));
1560 skb = alloc_skb(len, GFP_ATOMIC);
1565 nlh = NLMSG_PUT(skb, c->pid, c->seq,
1566 XFRM_MSG_FLUSHSA, sizeof(*p));
1567 nlh->nlmsg_flags = 0;
1569 p = NLMSG_DATA(nlh);
1570 p->proto = c->data.proto;
1572 nlh->nlmsg_len = skb->tail - b;
1574 NETLINK_CB(skb).dst_group = XFRMNLGRP_SA;
1575 return netlink_broadcast(xfrm_nl, skb, 0, XFRMNLGRP_SA, GFP_ATOMIC);
1582 static int inline xfrm_sa_len(struct xfrm_state *x)
1586 l += RTA_SPACE(sizeof(*x->aalg) + (x->aalg->alg_key_len+7)/8);
1588 l += RTA_SPACE(sizeof(*x->ealg) + (x->ealg->alg_key_len+7)/8);
1590 l += RTA_SPACE(sizeof(*x->calg));
1592 l += RTA_SPACE(sizeof(*x->encap));
1597 static int xfrm_notify_sa(struct xfrm_state *x, struct km_event *c)
1599 struct xfrm_usersa_info *p;
1600 struct xfrm_usersa_id *id;
1601 struct nlmsghdr *nlh;
1602 struct sk_buff *skb;
1604 int len = xfrm_sa_len(x);
1607 headlen = sizeof(*p);
1608 if (c->event == XFRM_MSG_DELSA) {
1609 len += RTA_SPACE(headlen);
1610 headlen = sizeof(*id);
1612 len += NLMSG_SPACE(headlen);
1614 skb = alloc_skb(len, GFP_ATOMIC);
1619 nlh = NLMSG_PUT(skb, c->pid, c->seq, c->event, headlen);
1620 nlh->nlmsg_flags = 0;
1622 p = NLMSG_DATA(nlh);
1623 if (c->event == XFRM_MSG_DELSA) {
1624 id = NLMSG_DATA(nlh);
1625 memcpy(&id->daddr, &x->id.daddr, sizeof(id->daddr));
1626 id->spi = x->id.spi;
1627 id->family = x->props.family;
1628 id->proto = x->id.proto;
1630 p = RTA_DATA(__RTA_PUT(skb, XFRMA_SA, sizeof(*p)));
1633 copy_to_user_state(x, p);
1636 RTA_PUT(skb, XFRMA_ALG_AUTH,
1637 sizeof(*(x->aalg))+(x->aalg->alg_key_len+7)/8, x->aalg);
1639 RTA_PUT(skb, XFRMA_ALG_CRYPT,
1640 sizeof(*(x->ealg))+(x->ealg->alg_key_len+7)/8, x->ealg);
1642 RTA_PUT(skb, XFRMA_ALG_COMP, sizeof(*(x->calg)), x->calg);
1645 RTA_PUT(skb, XFRMA_ENCAP, sizeof(*x->encap), x->encap);
1647 nlh->nlmsg_len = skb->tail - b;
1649 NETLINK_CB(skb).dst_group = XFRMNLGRP_SA;
1650 return netlink_broadcast(xfrm_nl, skb, 0, XFRMNLGRP_SA, GFP_ATOMIC);
1658 static int xfrm_send_state_notify(struct xfrm_state *x, struct km_event *c)
1662 case XFRM_MSG_EXPIRE:
1663 return xfrm_exp_state_notify(x, c);
1664 case XFRM_MSG_NEWAE:
1665 return xfrm_aevent_state_notify(x, c);
1666 case XFRM_MSG_DELSA:
1667 case XFRM_MSG_UPDSA:
1668 case XFRM_MSG_NEWSA:
1669 return xfrm_notify_sa(x, c);
1670 case XFRM_MSG_FLUSHSA:
1671 return xfrm_notify_sa_flush(c);
1673 printk("xfrm_user: Unknown SA event %d\n", c->event);
1681 static int build_acquire(struct sk_buff *skb, struct xfrm_state *x,
1682 struct xfrm_tmpl *xt, struct xfrm_policy *xp,
1685 struct xfrm_user_acquire *ua;
1686 struct nlmsghdr *nlh;
1687 unsigned char *b = skb->tail;
1688 __u32 seq = xfrm_get_acqseq();
1690 nlh = NLMSG_PUT(skb, 0, 0, XFRM_MSG_ACQUIRE,
1692 ua = NLMSG_DATA(nlh);
1693 nlh->nlmsg_flags = 0;
1695 memcpy(&ua->id, &x->id, sizeof(ua->id));
1696 memcpy(&ua->saddr, &x->props.saddr, sizeof(ua->saddr));
1697 memcpy(&ua->sel, &x->sel, sizeof(ua->sel));
1698 copy_to_user_policy(xp, &ua->policy, dir);
1699 ua->aalgos = xt->aalgos;
1700 ua->ealgos = xt->ealgos;
1701 ua->calgos = xt->calgos;
1702 ua->seq = x->km.seq = seq;
1704 if (copy_to_user_tmpl(xp, skb) < 0)
1706 if (copy_to_user_sec_ctx(xp, skb))
1709 nlh->nlmsg_len = skb->tail - b;
1713 skb_trim(skb, b - skb->data);
1717 static int xfrm_send_acquire(struct xfrm_state *x, struct xfrm_tmpl *xt,
1718 struct xfrm_policy *xp, int dir)
1720 struct sk_buff *skb;
1723 len = RTA_SPACE(sizeof(struct xfrm_user_tmpl) * xp->xfrm_nr);
1724 len += NLMSG_SPACE(sizeof(struct xfrm_user_acquire));
1725 len += RTA_SPACE(xfrm_user_sec_ctx_size(xp));
1726 skb = alloc_skb(len, GFP_ATOMIC);
1730 if (build_acquire(skb, x, xt, xp, dir) < 0)
1733 NETLINK_CB(skb).dst_group = XFRMNLGRP_ACQUIRE;
1734 return netlink_broadcast(xfrm_nl, skb, 0, XFRMNLGRP_ACQUIRE, GFP_ATOMIC);
1737 /* User gives us xfrm_user_policy_info followed by an array of 0
1738 * or more templates.
1740 static struct xfrm_policy *xfrm_compile_policy(u16 family, int opt,
1741 u8 *data, int len, int *dir)
1743 struct xfrm_userpolicy_info *p = (struct xfrm_userpolicy_info *)data;
1744 struct xfrm_user_tmpl *ut = (struct xfrm_user_tmpl *) (p + 1);
1745 struct xfrm_policy *xp;
1750 if (opt != IP_XFRM_POLICY) {
1755 #if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE)
1757 if (opt != IPV6_XFRM_POLICY) {
1770 if (len < sizeof(*p) ||
1771 verify_newpolicy_info(p))
1774 nr = ((len - sizeof(*p)) / sizeof(*ut));
1775 if (nr > XFRM_MAX_DEPTH)
1778 if (p->dir > XFRM_POLICY_OUT)
1781 xp = xfrm_policy_alloc(GFP_KERNEL);
1787 copy_from_user_policy(xp, p);
1788 copy_templates(xp, ut, nr);
1795 static int build_polexpire(struct sk_buff *skb, struct xfrm_policy *xp,
1796 int dir, struct km_event *c)
1798 struct xfrm_user_polexpire *upe;
1799 struct nlmsghdr *nlh;
1800 int hard = c->data.hard;
1801 unsigned char *b = skb->tail;
1803 nlh = NLMSG_PUT(skb, c->pid, 0, XFRM_MSG_POLEXPIRE, sizeof(*upe));
1804 upe = NLMSG_DATA(nlh);
1805 nlh->nlmsg_flags = 0;
1807 copy_to_user_policy(xp, &upe->pol, dir);
1808 if (copy_to_user_tmpl(xp, skb) < 0)
1810 if (copy_to_user_sec_ctx(xp, skb))
1814 nlh->nlmsg_len = skb->tail - b;
1818 skb_trim(skb, b - skb->data);
1822 static int xfrm_exp_policy_notify(struct xfrm_policy *xp, int dir, struct km_event *c)
1824 struct sk_buff *skb;
1827 len = RTA_SPACE(sizeof(struct xfrm_user_tmpl) * xp->xfrm_nr);
1828 len += NLMSG_SPACE(sizeof(struct xfrm_user_polexpire));
1829 len += RTA_SPACE(xfrm_user_sec_ctx_size(xp));
1830 skb = alloc_skb(len, GFP_ATOMIC);
1834 if (build_polexpire(skb, xp, dir, c) < 0)
1837 NETLINK_CB(skb).dst_group = XFRMNLGRP_EXPIRE;
1838 return netlink_broadcast(xfrm_nl, skb, 0, XFRMNLGRP_EXPIRE, GFP_ATOMIC);
1841 static int xfrm_notify_policy(struct xfrm_policy *xp, int dir, struct km_event *c)
1843 struct xfrm_userpolicy_info *p;
1844 struct xfrm_userpolicy_id *id;
1845 struct nlmsghdr *nlh;
1846 struct sk_buff *skb;
1848 int len = RTA_SPACE(sizeof(struct xfrm_user_tmpl) * xp->xfrm_nr);
1851 headlen = sizeof(*p);
1852 if (c->event == XFRM_MSG_DELPOLICY) {
1853 len += RTA_SPACE(headlen);
1854 headlen = sizeof(*id);
1856 len += NLMSG_SPACE(headlen);
1858 skb = alloc_skb(len, GFP_ATOMIC);
1863 nlh = NLMSG_PUT(skb, c->pid, c->seq, c->event, headlen);
1865 p = NLMSG_DATA(nlh);
1866 if (c->event == XFRM_MSG_DELPOLICY) {
1867 id = NLMSG_DATA(nlh);
1868 memset(id, 0, sizeof(*id));
1871 id->index = xp->index;
1873 memcpy(&id->sel, &xp->selector, sizeof(id->sel));
1875 p = RTA_DATA(__RTA_PUT(skb, XFRMA_POLICY, sizeof(*p)));
1878 nlh->nlmsg_flags = 0;
1880 copy_to_user_policy(xp, p, dir);
1881 if (copy_to_user_tmpl(xp, skb) < 0)
1884 nlh->nlmsg_len = skb->tail - b;
1886 NETLINK_CB(skb).dst_group = XFRMNLGRP_POLICY;
1887 return netlink_broadcast(xfrm_nl, skb, 0, XFRMNLGRP_POLICY, GFP_ATOMIC);
1895 static int xfrm_notify_policy_flush(struct km_event *c)
1897 struct nlmsghdr *nlh;
1898 struct sk_buff *skb;
1900 int len = NLMSG_LENGTH(0);
1902 skb = alloc_skb(len, GFP_ATOMIC);
1908 nlh = NLMSG_PUT(skb, c->pid, c->seq, XFRM_MSG_FLUSHPOLICY, 0);
1910 nlh->nlmsg_len = skb->tail - b;
1912 NETLINK_CB(skb).dst_group = XFRMNLGRP_POLICY;
1913 return netlink_broadcast(xfrm_nl, skb, 0, XFRMNLGRP_POLICY, GFP_ATOMIC);
1920 static int xfrm_send_policy_notify(struct xfrm_policy *xp, int dir, struct km_event *c)
1924 case XFRM_MSG_NEWPOLICY:
1925 case XFRM_MSG_UPDPOLICY:
1926 case XFRM_MSG_DELPOLICY:
1927 return xfrm_notify_policy(xp, dir, c);
1928 case XFRM_MSG_FLUSHPOLICY:
1929 return xfrm_notify_policy_flush(c);
1930 case XFRM_MSG_POLEXPIRE:
1931 return xfrm_exp_policy_notify(xp, dir, c);
1933 printk("xfrm_user: Unknown Policy event %d\n", c->event);
1940 static struct xfrm_mgr netlink_mgr = {
1942 .notify = xfrm_send_state_notify,
1943 .acquire = xfrm_send_acquire,
1944 .compile_policy = xfrm_compile_policy,
1945 .notify_policy = xfrm_send_policy_notify,
1948 static int __init xfrm_user_init(void)
1952 printk(KERN_INFO "Initializing IPsec netlink socket\n");
1954 nlsk = netlink_kernel_create(NETLINK_XFRM, XFRMNLGRP_MAX,
1955 xfrm_netlink_rcv, THIS_MODULE);
1958 rcu_assign_pointer(xfrm_nl, nlsk);
1960 xfrm_register_km(&netlink_mgr);
1965 static void __exit xfrm_user_exit(void)
1967 struct sock *nlsk = xfrm_nl;
1969 xfrm_unregister_km(&netlink_mgr);
1970 rcu_assign_pointer(xfrm_nl, NULL);
1972 sock_release(nlsk->sk_socket);
1975 module_init(xfrm_user_init);
1976 module_exit(xfrm_user_exit);
1977 MODULE_LICENSE("GPL");
1978 MODULE_ALIAS_NET_PF_PROTO(PF_NETLINK, NETLINK_XFRM);
git://git.onelab.eu / linux-2.6.git / blob