2005-04-16 15:20:36 -07:00
/*
* Copyright ( C ) 2002 USAGI / WIDE Project
*
* This program is free software ; you can redistribute it and / or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation ; either version 2 of the License , or
* ( at your option ) any later version .
*
* This program is distributed in the hope that it will be useful ,
* but WITHOUT ANY WARRANTY ; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
* GNU General Public License for more details .
*
* You should have received a copy of the GNU General Public License
* along with this program ; if not , write to the Free Software
* Foundation , Inc . , 59 Temple Place , Suite 330 , Boston , MA 02111 - 1307 USA
*
* Authors
*
* Mitsuru KANDA @ USAGI : IPv6 Support
* Kazunori MIYAZAWA @ USAGI :
* Kunihiro Ishiguro < kunihiro @ ipinfusion . com >
*
* This file is derived from net / ipv4 / ah . c .
*/
# include <linux/module.h>
# include <net/ip.h>
# include <net/ah.h>
# include <linux/crypto.h>
# include <linux/pfkeyv2.h>
# include <linux/string.h>
# include <net/icmp.h>
# include <net/ipv6.h>
2005-12-27 02:43:12 -02:00
# include <net/protocol.h>
2005-04-16 15:20:36 -07:00
# include <net/xfrm.h>
# include <asm/scatterlist.h>
static int zero_out_mutable_opts ( struct ipv6_opt_hdr * opthdr )
{
u8 * opt = ( u8 * ) opthdr ;
int len = ipv6_optlen ( opthdr ) ;
int off = 0 ;
int optlen = 0 ;
off + = 2 ;
len - = 2 ;
while ( len > 0 ) {
switch ( opt [ off ] ) {
case IPV6_TLV_PAD0 :
optlen = 1 ;
break ;
default :
if ( len < 2 )
goto bad ;
optlen = opt [ off + 1 ] + 2 ;
if ( len < optlen )
goto bad ;
if ( opt [ off ] & 0x20 )
memset ( & opt [ off + 2 ] , 0 , opt [ off + 1 ] ) ;
break ;
}
off + = optlen ;
len - = optlen ;
}
if ( len = = 0 )
return 1 ;
bad :
return 0 ;
}
2006-08-23 19:29:47 -07:00
# ifdef CONFIG_IPV6_MIP6
/**
* ipv6_rearrange_destopt - rearrange IPv6 destination options header
* @ iph : IPv6 header
* @ destopt : destionation options header
*/
static void ipv6_rearrange_destopt ( struct ipv6hdr * iph , struct ipv6_opt_hdr * destopt )
{
u8 * opt = ( u8 * ) destopt ;
int len = ipv6_optlen ( destopt ) ;
int off = 0 ;
int optlen = 0 ;
off + = 2 ;
len - = 2 ;
while ( len > 0 ) {
switch ( opt [ off ] ) {
case IPV6_TLV_PAD0 :
optlen = 1 ;
break ;
default :
if ( len < 2 )
goto bad ;
optlen = opt [ off + 1 ] + 2 ;
if ( len < optlen )
goto bad ;
/* Rearrange the source address in @iph and the
* addresses in home address option for final source .
* See 11.3 .2 of RFC 3775 for details .
*/
if ( opt [ off ] = = IPV6_TLV_HAO ) {
struct in6_addr final_addr ;
struct ipv6_destopt_hao * hao ;
hao = ( struct ipv6_destopt_hao * ) & opt [ off ] ;
if ( hao - > length ! = sizeof ( hao - > addr ) ) {
if ( net_ratelimit ( ) )
printk ( KERN_WARNING " destopt hao: invalid header length: %u \n " , hao - > length ) ;
goto bad ;
}
ipv6_addr_copy ( & final_addr , & hao - > addr ) ;
ipv6_addr_copy ( & hao - > addr , & iph - > saddr ) ;
ipv6_addr_copy ( & iph - > saddr , & final_addr ) ;
}
break ;
}
off + = optlen ;
len - = optlen ;
}
2006-08-24 23:18:12 +09:00
/* Note: ok if len == 0 */
2006-08-23 19:29:47 -07:00
bad :
return ;
}
# endif
2005-04-16 15:20:36 -07:00
/**
* ipv6_rearrange_rthdr - rearrange IPv6 routing header
* @ iph : IPv6 header
* @ rthdr : routing header
*
* Rearrange the destination address in @ iph and the addresses in @ rthdr
* so that they appear in the order they will at the final destination .
* See Appendix A2 of RFC 2402 for details .
*/
static void ipv6_rearrange_rthdr ( struct ipv6hdr * iph , struct ipv6_rt_hdr * rthdr )
{
int segments , segments_left ;
struct in6_addr * addrs ;
struct in6_addr final_addr ;
segments_left = rthdr - > segments_left ;
if ( segments_left = = 0 )
return ;
rthdr - > segments_left = 0 ;
/* The value of rthdr->hdrlen has been verified either by the system
* call if it is locally generated , or by ipv6_rthdr_rcv ( ) for incoming
* packets . So we can assume that it is even and that segments is
* greater than or equal to segments_left .
*
* For the same reason we can assume that this option is of type 0.
*/
segments = rthdr - > hdrlen > > 1 ;
addrs = ( ( struct rt0_hdr * ) rthdr ) - > addr ;
ipv6_addr_copy ( & final_addr , addrs + segments - 1 ) ;
addrs + = segments - segments_left ;
memmove ( addrs + 1 , addrs , ( segments_left - 1 ) * sizeof ( * addrs ) ) ;
ipv6_addr_copy ( addrs , & iph - > daddr ) ;
ipv6_addr_copy ( & iph - > daddr , & final_addr ) ;
}
2006-08-23 19:29:47 -07:00
static int ipv6_clear_mutable_options ( struct ipv6hdr * iph , int len , int dir )
2005-04-16 15:20:36 -07:00
{
union {
struct ipv6hdr * iph ;
struct ipv6_opt_hdr * opth ;
struct ipv6_rt_hdr * rth ;
char * raw ;
} exthdr = { . iph = iph } ;
char * end = exthdr . raw + len ;
int nexthdr = iph - > nexthdr ;
exthdr . iph + + ;
while ( exthdr . raw < end ) {
switch ( nexthdr ) {
2006-08-23 19:29:47 -07:00
case NEXTHDR_DEST :
2006-08-24 23:18:12 +09:00
# ifdef CONFIG_IPV6_MIP6
2006-08-23 19:29:47 -07:00
if ( dir = = XFRM_POLICY_OUT )
ipv6_rearrange_destopt ( iph , exthdr . opth ) ;
2006-08-24 23:18:12 +09:00
# endif
2005-04-16 15:20:36 -07:00
case NEXTHDR_HOP :
if ( ! zero_out_mutable_opts ( exthdr . opth ) ) {
2005-08-09 20:50:53 -07:00
LIMIT_NETDEBUG (
2005-04-16 15:20:36 -07:00
KERN_WARNING " overrun %sopts \n " ,
nexthdr = = NEXTHDR_HOP ?
2005-08-09 20:50:53 -07:00
" hop " : " dest " ) ;
2005-04-16 15:20:36 -07:00
return - EINVAL ;
}
break ;
case NEXTHDR_ROUTING :
ipv6_rearrange_rthdr ( iph , exthdr . rth ) ;
break ;
default :
return 0 ;
}
nexthdr = exthdr . opth - > nexthdr ;
exthdr . raw + = ipv6_optlen ( exthdr . opth ) ;
}
return 0 ;
}
static int ah6_output ( struct xfrm_state * x , struct sk_buff * skb )
{
int err ;
int extlen ;
struct ipv6hdr * top_iph ;
struct ip_auth_hdr * ah ;
struct ah_data * ahp ;
u8 nexthdr ;
char tmp_base [ 8 ] ;
struct {
2006-08-23 19:29:47 -07:00
# ifdef CONFIG_IPV6_MIP6
struct in6_addr saddr ;
# endif
2005-04-16 15:20:36 -07:00
struct in6_addr daddr ;
char hdrs [ 0 ] ;
} * tmp_ext ;
top_iph = ( struct ipv6hdr * ) skb - > data ;
top_iph - > payload_len = htons ( skb - > len - sizeof ( * top_iph ) ) ;
nexthdr = * skb - > nh . raw ;
* skb - > nh . raw = IPPROTO_AH ;
/* When there are no extension headers, we only need to save the first
* 8 bytes of the base IP header .
*/
memcpy ( tmp_base , top_iph , sizeof ( tmp_base ) ) ;
tmp_ext = NULL ;
extlen = skb - > h . raw - ( unsigned char * ) ( top_iph + 1 ) ;
if ( extlen ) {
extlen + = sizeof ( * tmp_ext ) ;
tmp_ext = kmalloc ( extlen , GFP_ATOMIC ) ;
if ( ! tmp_ext ) {
err = - ENOMEM ;
goto error ;
}
2006-08-23 19:29:47 -07:00
# ifdef CONFIG_IPV6_MIP6
memcpy ( tmp_ext , & top_iph - > saddr , extlen ) ;
# else
2005-04-16 15:20:36 -07:00
memcpy ( tmp_ext , & top_iph - > daddr , extlen ) ;
2006-08-24 23:18:12 +09:00
# endif
2005-04-16 15:20:36 -07:00
err = ipv6_clear_mutable_options ( top_iph ,
extlen - sizeof ( * tmp_ext ) +
2006-08-24 23:18:12 +09:00
sizeof ( * top_iph ) ,
XFRM_POLICY_OUT ) ;
2005-04-16 15:20:36 -07:00
if ( err )
goto error_free_iph ;
}
ah = ( struct ip_auth_hdr * ) skb - > h . raw ;
ah - > nexthdr = nexthdr ;
top_iph - > priority = 0 ;
top_iph - > flow_lbl [ 0 ] = 0 ;
top_iph - > flow_lbl [ 1 ] = 0 ;
top_iph - > flow_lbl [ 2 ] = 0 ;
top_iph - > hop_limit = 0 ;
ahp = x - > data ;
ah - > hdrlen = ( XFRM_ALIGN8 ( sizeof ( struct ipv6_auth_hdr ) +
ahp - > icv_trunc_len ) > > 2 ) - 2 ;
ah - > reserved = 0 ;
ah - > spi = x - > id . spi ;
ah - > seq_no = htonl ( + + x - > replay . oseq ) ;
2006-03-20 19:15:29 -08:00
xfrm_aevent_doreplay ( x ) ;
2006-08-20 14:24:50 +10:00
err = ah_mac_digest ( ahp , skb , ah - > auth_data ) ;
if ( err )
goto error_free_iph ;
memcpy ( ah - > auth_data , ahp - > work_icv , ahp - > icv_trunc_len ) ;
2005-04-16 15:20:36 -07:00
err = 0 ;
memcpy ( top_iph , tmp_base , sizeof ( tmp_base ) ) ;
if ( tmp_ext ) {
2006-08-23 19:29:47 -07:00
# ifdef CONFIG_IPV6_MIP6
memcpy ( & top_iph - > saddr , tmp_ext , extlen ) ;
# else
2005-04-16 15:20:36 -07:00
memcpy ( & top_iph - > daddr , tmp_ext , extlen ) ;
2006-08-23 19:29:47 -07:00
# endif
2005-04-16 15:20:36 -07:00
error_free_iph :
kfree ( tmp_ext ) ;
}
error :
return err ;
}
2006-04-01 00:52:46 -08:00
static int ah6_input ( struct xfrm_state * x , struct sk_buff * skb )
2005-04-16 15:20:36 -07:00
{
/*
* Before process AH
* [ IPv6 ] [ Ext1 ] [ Ext2 ] [ AH ] [ Dest ] [ Payload ]
* | < - - - - - - - - - - - - - - > | hdr_len
*
* To erase AH :
* Keeping copy of cleared headers . After AH processing ,
* Moving the pointer of skb - > nh . raw by using skb_pull as long as AH
* header length . Then copy back the copy as long as hdr_len
* If destination header following AH exists , copy it into after [ Ext2 ] .
*
* | < > | [ IPv6 ] [ Ext1 ] [ Ext2 ] [ Dest ] [ Payload ]
* There is offset of AH before IPv6 header after the process .
*/
struct ipv6_auth_hdr * ah ;
struct ah_data * ahp ;
unsigned char * tmp_hdr = NULL ;
u16 hdr_len ;
u16 ah_hlen ;
int nexthdr ;
2006-08-20 14:24:50 +10:00
int err = - EINVAL ;
2005-04-16 15:20:36 -07:00
if ( ! pskb_may_pull ( skb , sizeof ( struct ip_auth_hdr ) ) )
goto out ;
/* We are going to _remove_ AH header to keep sockets happy,
* so . . . Later this can change . */
if ( skb_cloned ( skb ) & &
pskb_expand_head ( skb , 0 , 0 , GFP_ATOMIC ) )
goto out ;
hdr_len = skb - > data - skb - > nh . raw ;
ah = ( struct ipv6_auth_hdr * ) skb - > data ;
ahp = x - > data ;
nexthdr = ah - > nexthdr ;
ah_hlen = ( ah - > hdrlen + 2 ) < < 2 ;
if ( ah_hlen ! = XFRM_ALIGN8 ( sizeof ( struct ipv6_auth_hdr ) + ahp - > icv_full_len ) & &
ah_hlen ! = XFRM_ALIGN8 ( sizeof ( struct ipv6_auth_hdr ) + ahp - > icv_trunc_len ) )
goto out ;
if ( ! pskb_may_pull ( skb , ah_hlen ) )
goto out ;
2006-11-17 12:14:37 -02:00
tmp_hdr = kmemdup ( skb - > nh . raw , hdr_len , GFP_ATOMIC ) ;
2005-04-16 15:20:36 -07:00
if ( ! tmp_hdr )
goto out ;
2006-08-23 19:29:47 -07:00
if ( ipv6_clear_mutable_options ( skb - > nh . ipv6h , hdr_len , XFRM_POLICY_IN ) )
goto free_out ;
2005-04-16 15:20:36 -07:00
skb - > nh . ipv6h - > priority = 0 ;
skb - > nh . ipv6h - > flow_lbl [ 0 ] = 0 ;
skb - > nh . ipv6h - > flow_lbl [ 1 ] = 0 ;
skb - > nh . ipv6h - > flow_lbl [ 2 ] = 0 ;
skb - > nh . ipv6h - > hop_limit = 0 ;
{
u8 auth_data [ MAX_AH_AUTH_LEN ] ;
memcpy ( auth_data , ah - > auth_data , ahp - > icv_trunc_len ) ;
memset ( ah - > auth_data , 0 , ahp - > icv_trunc_len ) ;
2006-05-27 23:06:13 -07:00
skb_push ( skb , hdr_len ) ;
2006-08-20 14:24:50 +10:00
err = ah_mac_digest ( ahp , skb , ah - > auth_data ) ;
if ( err )
goto free_out ;
err = - EINVAL ;
if ( memcmp ( ahp - > work_icv , auth_data , ahp - > icv_trunc_len ) ) {
2005-08-09 20:50:53 -07:00
LIMIT_NETDEBUG ( KERN_WARNING " ipsec ah authentication error \n " ) ;
2005-04-16 15:20:36 -07:00
x - > stats . integrity_failed + + ;
goto free_out ;
}
}
2006-05-27 23:06:13 -07:00
skb - > h . raw = memcpy ( skb - > nh . raw + = ah_hlen , tmp_hdr , hdr_len ) ;
__skb_pull ( skb , ah_hlen + hdr_len ) ;
2005-04-16 15:20:36 -07:00
kfree ( tmp_hdr ) ;
return nexthdr ;
free_out :
kfree ( tmp_hdr ) ;
out :
2006-08-20 14:24:50 +10:00
return err ;
2005-04-16 15:20:36 -07:00
}
static void ah6_err ( struct sk_buff * skb , struct inet6_skb_parm * opt ,
2006-11-08 00:21:01 -08:00
int type , int code , int offset , __be32 info )
2005-04-16 15:20:36 -07:00
{
struct ipv6hdr * iph = ( struct ipv6hdr * ) skb - > data ;
struct ip_auth_hdr * ah = ( struct ip_auth_hdr * ) ( skb - > data + offset ) ;
struct xfrm_state * x ;
if ( type ! = ICMPV6_DEST_UNREACH & &
type ! = ICMPV6_PKT_TOOBIG )
return ;
x = xfrm_state_lookup ( ( xfrm_address_t * ) & iph - > daddr , ah - > spi , IPPROTO_AH , AF_INET6 ) ;
if ( ! x )
return ;
2006-01-13 14:29:07 -08:00
NETDEBUG ( KERN_DEBUG " pmtu discovery on SA AH/%08x/ " NIP6_FMT " \n " ,
2005-08-09 20:50:53 -07:00
ntohl ( ah - > spi ) , NIP6 ( iph - > daddr ) ) ;
2005-04-16 15:20:36 -07:00
xfrm_state_put ( x ) ;
}
2005-06-20 13:18:08 -07:00
static int ah6_init_state ( struct xfrm_state * x )
2005-04-16 15:20:36 -07:00
{
struct ah_data * ahp = NULL ;
struct xfrm_algo_desc * aalg_desc ;
2006-08-20 14:24:50 +10:00
struct crypto_hash * tfm ;
2005-04-16 15:20:36 -07:00
if ( ! x - > aalg )
goto error ;
/* null auth can use a zero length key */
if ( x - > aalg - > alg_key_len > 512 )
goto error ;
if ( x - > encap )
goto error ;
2006-03-20 23:01:32 -08:00
ahp = kzalloc ( sizeof ( * ahp ) , GFP_KERNEL ) ;
2005-04-16 15:20:36 -07:00
if ( ahp = = NULL )
return - ENOMEM ;
ahp - > key = x - > aalg - > alg_key ;
ahp - > key_len = ( x - > aalg - > alg_key_len + 7 ) / 8 ;
2006-08-20 14:24:50 +10:00
tfm = crypto_alloc_hash ( x - > aalg - > alg_name , 0 , CRYPTO_ALG_ASYNC ) ;
if ( IS_ERR ( tfm ) )
goto error ;
ahp - > tfm = tfm ;
if ( crypto_hash_setkey ( tfm , ahp - > key , ahp - > key_len ) )
2005-04-16 15:20:36 -07:00
goto error ;
/*
* Lookup the algorithm description maintained by xfrm_algo ,
* verify crypto transform properties , and store information
* we need for AH processing . This lookup cannot fail here
2006-08-20 14:24:50 +10:00
* after a successful crypto_alloc_hash ( ) .
2005-04-16 15:20:36 -07:00
*/
aalg_desc = xfrm_aalg_get_byname ( x - > aalg - > alg_name , 0 ) ;
BUG_ON ( ! aalg_desc ) ;
if ( aalg_desc - > uinfo . auth . icv_fullbits / 8 ! =
2006-08-20 14:24:50 +10:00
crypto_hash_digestsize ( tfm ) ) {
2005-04-16 15:20:36 -07:00
printk ( KERN_INFO " AH: %s digestsize %u != %hu \n " ,
2006-08-20 14:24:50 +10:00
x - > aalg - > alg_name , crypto_hash_digestsize ( tfm ) ,
2005-04-16 15:20:36 -07:00
aalg_desc - > uinfo . auth . icv_fullbits / 8 ) ;
goto error ;
}
ahp - > icv_full_len = aalg_desc - > uinfo . auth . icv_fullbits / 8 ;
ahp - > icv_trunc_len = aalg_desc - > uinfo . auth . icv_truncbits / 8 ;
BUG_ON ( ahp - > icv_trunc_len > MAX_AH_AUTH_LEN ) ;
ahp - > work_icv = kmalloc ( ahp - > icv_full_len , GFP_KERNEL ) ;
if ( ! ahp - > work_icv )
goto error ;
x - > props . header_len = XFRM_ALIGN8 ( sizeof ( struct ipv6_auth_hdr ) + ahp - > icv_trunc_len ) ;
2006-09-22 15:05:15 -07:00
if ( x - > props . mode = = XFRM_MODE_TUNNEL )
2005-04-16 15:20:36 -07:00
x - > props . header_len + = sizeof ( struct ipv6hdr ) ;
x - > data = ahp ;
return 0 ;
error :
if ( ahp ) {
2005-09-01 17:44:29 -07:00
kfree ( ahp - > work_icv ) ;
2006-08-20 14:24:50 +10:00
crypto_free_hash ( ahp - > tfm ) ;
2005-04-16 15:20:36 -07:00
kfree ( ahp ) ;
}
return - EINVAL ;
}
static void ah6_destroy ( struct xfrm_state * x )
{
struct ah_data * ahp = x - > data ;
if ( ! ahp )
return ;
2005-09-01 17:44:29 -07:00
kfree ( ahp - > work_icv ) ;
ahp - > work_icv = NULL ;
2006-08-20 14:24:50 +10:00
crypto_free_hash ( ahp - > tfm ) ;
2005-09-01 17:44:29 -07:00
ahp - > tfm = NULL ;
2005-04-16 15:20:36 -07:00
kfree ( ahp ) ;
}
static struct xfrm_type ah6_type =
{
. description = " AH6 " ,
. owner = THIS_MODULE ,
. proto = IPPROTO_AH ,
. init_state = ah6_init_state ,
. destructor = ah6_destroy ,
. input = ah6_input ,
2006-08-23 17:57:28 -07:00
. output = ah6_output ,
. hdr_offset = xfrm6_find_1stfragopt ,
2005-04-16 15:20:36 -07:00
} ;
static struct inet6_protocol ah6_protocol = {
. handler = xfrm6_rcv ,
. err_handler = ah6_err ,
. flags = INET6_PROTO_NOPOLICY ,
} ;
static int __init ah6_init ( void )
{
if ( xfrm_register_type ( & ah6_type , AF_INET6 ) < 0 ) {
printk ( KERN_INFO " ipv6 ah init: can't add xfrm type \n " ) ;
return - EAGAIN ;
}
if ( inet6_add_protocol ( & ah6_protocol , IPPROTO_AH ) < 0 ) {
printk ( KERN_INFO " ipv6 ah init: can't add protocol \n " ) ;
xfrm_unregister_type ( & ah6_type , AF_INET6 ) ;
return - EAGAIN ;
}
return 0 ;
}
static void __exit ah6_fini ( void )
{
if ( inet6_del_protocol ( & ah6_protocol , IPPROTO_AH ) < 0 )
printk ( KERN_INFO " ipv6 ah close: can't remove protocol \n " ) ;
if ( xfrm_unregister_type ( & ah6_type , AF_INET6 ) < 0 )
printk ( KERN_INFO " ipv6 ah close: can't remove xfrm type \n " ) ;
}
module_init ( ah6_init ) ;
module_exit ( ah6_fini ) ;
MODULE_LICENSE ( " GPL " ) ;