Blame view

kernel/linux-rt-4.4.41/net/ipv4/xfrm4_tunnel.c 2.7 KB
5113f6f70   김현기   kernel add
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
  /* xfrm4_tunnel.c: Generic IP tunnel transformer.
   *
   * Copyright (C) 2003 David S. Miller (davem@redhat.com)
   */
  
  #define pr_fmt(fmt) "IPsec: " fmt
  
  #include <linux/skbuff.h>
  #include <linux/module.h>
  #include <linux/mutex.h>
  #include <net/xfrm.h>
  #include <net/ip.h>
  #include <net/protocol.h>
  
  static int ipip_output(struct xfrm_state *x, struct sk_buff *skb)
  {
  	skb_push(skb, -skb_network_offset(skb));
  	return 0;
  }
  
  static int ipip_xfrm_rcv(struct xfrm_state *x, struct sk_buff *skb)
  {
  	return ip_hdr(skb)->protocol;
  }
  
  static int ipip_init_state(struct xfrm_state *x)
  {
  	if (x->props.mode != XFRM_MODE_TUNNEL)
  		return -EINVAL;
  
  	if (x->encap)
  		return -EINVAL;
  
  	x->props.header_len = sizeof(struct iphdr);
  
  	return 0;
  }
  
  static void ipip_destroy(struct xfrm_state *x)
  {
  }
  
  static const struct xfrm_type ipip_type = {
  	.description	= "IPIP",
  	.owner		= THIS_MODULE,
  	.proto	     	= IPPROTO_IPIP,
  	.init_state	= ipip_init_state,
  	.destructor	= ipip_destroy,
  	.input		= ipip_xfrm_rcv,
  	.output		= ipip_output
  };
  
  static int xfrm_tunnel_rcv(struct sk_buff *skb)
  {
  	return xfrm4_rcv_spi(skb, IPPROTO_IPIP, ip_hdr(skb)->saddr);
  }
  
  static int xfrm_tunnel_err(struct sk_buff *skb, u32 info)
  {
  	return -ENOENT;
  }
  
  static struct xfrm_tunnel xfrm_tunnel_handler __read_mostly = {
  	.handler	=	xfrm_tunnel_rcv,
  	.err_handler	=	xfrm_tunnel_err,
  	.priority	=	3,
  };
  
  #if IS_ENABLED(CONFIG_IPV6)
  static struct xfrm_tunnel xfrm64_tunnel_handler __read_mostly = {
  	.handler	=	xfrm_tunnel_rcv,
  	.err_handler	=	xfrm_tunnel_err,
  	.priority	=	2,
  };
  #endif
  
  static int __init ipip_init(void)
  {
  	if (xfrm_register_type(&ipip_type, AF_INET) < 0) {
  		pr_info("%s: can't add xfrm type
  ", __func__);
  		return -EAGAIN;
  	}
  
  	if (xfrm4_tunnel_register(&xfrm_tunnel_handler, AF_INET)) {
  		pr_info("%s: can't add xfrm handler for AF_INET
  ", __func__);
  		xfrm_unregister_type(&ipip_type, AF_INET);
  		return -EAGAIN;
  	}
  #if IS_ENABLED(CONFIG_IPV6)
  	if (xfrm4_tunnel_register(&xfrm64_tunnel_handler, AF_INET6)) {
  		pr_info("%s: can't add xfrm handler for AF_INET6
  ", __func__);
  		xfrm4_tunnel_deregister(&xfrm_tunnel_handler, AF_INET);
  		xfrm_unregister_type(&ipip_type, AF_INET);
  		return -EAGAIN;
  	}
  #endif
  	return 0;
  }
  
  static void __exit ipip_fini(void)
  {
  #if IS_ENABLED(CONFIG_IPV6)
  	if (xfrm4_tunnel_deregister(&xfrm64_tunnel_handler, AF_INET6))
  		pr_info("%s: can't remove xfrm handler for AF_INET6
  ",
  			__func__);
  #endif
  	if (xfrm4_tunnel_deregister(&xfrm_tunnel_handler, AF_INET))
  		pr_info("%s: can't remove xfrm handler for AF_INET
  ",
  			__func__);
  	if (xfrm_unregister_type(&ipip_type, AF_INET) < 0)
  		pr_info("%s: can't remove xfrm type
  ", __func__);
  }
  
  module_init(ipip_init);
  module_exit(ipip_fini);
  MODULE_LICENSE("GPL");
  MODULE_ALIAS_XFRM_TYPE(AF_INET, XFRM_PROTO_IPIP);