2 * Linux NET3: GRE over IP protocol decoder.
4 * Authors: Alexey Kuznetsov (kuznet@ms2.inr.ac.ru)
6 * This program is free software; you can redistribute it and/or
7 * modify it under the terms of the GNU General Public License
8 * as published by the Free Software Foundation; either version
9 * 2 of the License, or (at your option) any later version.
13 #include <linux/capability.h>
14 #include <linux/module.h>
15 #include <linux/types.h>
16 #include <linux/kernel.h>
17 #include <linux/slab.h>
18 #include <asm/uaccess.h>
19 #include <linux/skbuff.h>
20 #include <linux/netdevice.h>
22 #include <linux/tcp.h>
23 #include <linux/udp.h>
24 #include <linux/if_arp.h>
25 #include <linux/mroute.h>
26 #include <linux/init.h>
27 #include <linux/in6.h>
28 #include <linux/inetdevice.h>
29 #include <linux/igmp.h>
30 #include <linux/netfilter_ipv4.h>
31 #include <linux/etherdevice.h>
32 #include <linux/if_ether.h>
37 #include <net/protocol.h>
40 #include <net/checksum.h>
41 #include <net/dsfield.h>
42 #include <net/inet_ecn.h>
44 #include <net/net_namespace.h>
45 #include <net/netns/generic.h>
46 #include <net/rtnetlink.h>
49 #if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE)
51 #include <net/ip6_fib.h>
52 #include <net/ip6_route.h>
59 1. The most important issue is detecting local dead loops.
60 They would cause complete host lockup in transmit, which
61 would be "resolved" by stack overflow or, if queueing is enabled,
62 with infinite looping in net_bh.
64 We cannot track such dead loops during route installation,
65 it is infeasible task. The most general solutions would be
66 to keep skb->encapsulation counter (sort of local ttl),
67 and silently drop packet when it expires. It is a good
68 solution, but it supposes maintaing new variable in ALL
69 skb, even if no tunneling is used.
71 Current solution: xmit_recursion breaks dead loops. This is a percpu
72 counter, since when we enter the first ndo_xmit(), cpu migration is
73 forbidden. We force an exit if this counter reaches RECURSION_LIMIT
75 2. Networking dead loops would not kill routers, but would really
76 kill network. IP hop limit plays role of "t->recursion" in this case,
77 if we copy it from packet being encapsulated to upper header.
78 It is very good solution, but it introduces two problems:
80 - Routing protocols, using packets with ttl=1 (OSPF, RIP2),
81 do not work over tunnels.
82 - traceroute does not work. I planned to relay ICMP from tunnel,
83 so that this problem would be solved and traceroute output
84 would even more informative. This idea appeared to be wrong:
85 only Linux complies to rfc1812 now (yes, guys, Linux is the only
86 true router now :-)), all routers (at least, in neighbourhood of mine)
87 return only 8 bytes of payload. It is the end.
89 Hence, if we want that OSPF worked or traceroute said something reasonable,
90 we should search for another solution.
92 One of them is to parse packet trying to detect inner encapsulation
93 made by our node. It is difficult or even impossible, especially,
94 taking into account fragmentation. TO be short, tt is not solution at all.
96 Current solution: The solution was UNEXPECTEDLY SIMPLE.
97 We force DF flag on tunnels with preconfigured hop limit,
98 that is ALL. :-) Well, it does not remove the problem completely,
99 but exponential growth of network traffic is changed to linear
100 (branches, that exceed pmtu are pruned) and tunnel mtu
101 fastly degrades to value <68, where looping stops.
102 Yes, it is not good if there exists a router in the loop,
103 which does not force DF, even when encapsulating packets have DF set.
104 But it is not our problem! Nobody could accuse us, we made
105 all that we could make. Even if it is your gated who injected
106 fatal route to network, even if it were you who configured
107 fatal static route: you are innocent. :-)
111 3. Really, ipv4/ipip.c, ipv4/ip_gre.c and ipv6/sit.c contain
112 practically identical code. It would be good to glue them
113 together, but it is not very evident, how to make them modular.
114 sit is integral part of IPv6, ipip and gre are naturally modular.
115 We could extract common parts (hash table, ioctl etc)
116 to a separate module (ip_tunnel.c).
121 static struct rtnl_link_ops ipgre_link_ops __read_mostly;
122 static int ipgre_tunnel_init(struct net_device *dev);
123 static void ipgre_tunnel_setup(struct net_device *dev);
124 static int ipgre_tunnel_bind_dev(struct net_device *dev);
126 /* Fallback tunnel: no source, no destination, no key, no options */
130 static int ipgre_net_id __read_mostly;
132 struct ip_tunnel __rcu *tunnels[4][HASH_SIZE];
134 struct net_device *fb_tunnel_dev;
137 /* Tunnel hash table */
147 We require exact key match i.e. if a key is present in packet
148 it will match only tunnel with the same key; if it is not present,
149 it will match only keyless tunnel.
151 All keysless packets, if not matched configured keyless tunnels
152 will match fallback tunnel.
155 #define HASH(addr) (((__force u32)addr^((__force u32)addr>>4))&0xF)
157 #define tunnels_r_l tunnels[3]
158 #define tunnels_r tunnels[2]
159 #define tunnels_l tunnels[1]
160 #define tunnels_wc tunnels[0]
162 * Locking : hash tables are protected by RCU and RTNL
165 #define for_each_ip_tunnel_rcu(start) \
166 for (t = rcu_dereference(start); t; t = rcu_dereference(t->next))
168 /* often modified stats are per cpu, other are shared (netdev->stats) */
170 unsigned long rx_packets;
171 unsigned long rx_bytes;
172 unsigned long tx_packets;
173 unsigned long tx_bytes;
176 static struct net_device_stats *ipgre_get_stats(struct net_device *dev)
178 struct pcpu_tstats sum = { 0 };
181 for_each_possible_cpu(i) {
182 const struct pcpu_tstats *tstats = per_cpu_ptr(dev->tstats, i);
184 sum.rx_packets += tstats->rx_packets;
185 sum.rx_bytes += tstats->rx_bytes;
186 sum.tx_packets += tstats->tx_packets;
187 sum.tx_bytes += tstats->tx_bytes;
189 dev->stats.rx_packets = sum.rx_packets;
190 dev->stats.rx_bytes = sum.rx_bytes;
191 dev->stats.tx_packets = sum.tx_packets;
192 dev->stats.tx_bytes = sum.tx_bytes;
196 /* Given src, dst and key, find appropriate for input tunnel. */
198 static struct ip_tunnel * ipgre_tunnel_lookup(struct net_device *dev,
199 __be32 remote, __be32 local,
200 __be32 key, __be16 gre_proto)
202 struct net *net = dev_net(dev);
203 int link = dev->ifindex;
204 unsigned int h0 = HASH(remote);
205 unsigned int h1 = HASH(key);
206 struct ip_tunnel *t, *cand = NULL;
207 struct ipgre_net *ign = net_generic(net, ipgre_net_id);
208 int dev_type = (gre_proto == htons(ETH_P_TEB)) ?
209 ARPHRD_ETHER : ARPHRD_IPGRE;
210 int score, cand_score = 4;
212 for_each_ip_tunnel_rcu(ign->tunnels_r_l[h0 ^ h1]) {
213 if (local != t->parms.iph.saddr ||
214 remote != t->parms.iph.daddr ||
215 key != t->parms.i_key ||
216 !(t->dev->flags & IFF_UP))
219 if (t->dev->type != ARPHRD_IPGRE &&
220 t->dev->type != dev_type)
224 if (t->parms.link != link)
226 if (t->dev->type != dev_type)
231 if (score < cand_score) {
237 for_each_ip_tunnel_rcu(ign->tunnels_r[h0 ^ h1]) {
238 if (remote != t->parms.iph.daddr ||
239 key != t->parms.i_key ||
240 !(t->dev->flags & IFF_UP))
243 if (t->dev->type != ARPHRD_IPGRE &&
244 t->dev->type != dev_type)
248 if (t->parms.link != link)
250 if (t->dev->type != dev_type)
255 if (score < cand_score) {
261 for_each_ip_tunnel_rcu(ign->tunnels_l[h1]) {
262 if ((local != t->parms.iph.saddr &&
263 (local != t->parms.iph.daddr ||
264 !ipv4_is_multicast(local))) ||
265 key != t->parms.i_key ||
266 !(t->dev->flags & IFF_UP))
269 if (t->dev->type != ARPHRD_IPGRE &&
270 t->dev->type != dev_type)
274 if (t->parms.link != link)
276 if (t->dev->type != dev_type)
281 if (score < cand_score) {
287 for_each_ip_tunnel_rcu(ign->tunnels_wc[h1]) {
288 if (t->parms.i_key != key ||
289 !(t->dev->flags & IFF_UP))
292 if (t->dev->type != ARPHRD_IPGRE &&
293 t->dev->type != dev_type)
297 if (t->parms.link != link)
299 if (t->dev->type != dev_type)
304 if (score < cand_score) {
313 dev = ign->fb_tunnel_dev;
314 if (dev->flags & IFF_UP)
315 return netdev_priv(dev);
320 static struct ip_tunnel __rcu **__ipgre_bucket(struct ipgre_net *ign,
321 struct ip_tunnel_parm *parms)
323 __be32 remote = parms->iph.daddr;
324 __be32 local = parms->iph.saddr;
325 __be32 key = parms->i_key;
326 unsigned int h = HASH(key);
331 if (remote && !ipv4_is_multicast(remote)) {
336 return &ign->tunnels[prio][h];
339 static inline struct ip_tunnel __rcu **ipgre_bucket(struct ipgre_net *ign,
342 return __ipgre_bucket(ign, &t->parms);
345 static void ipgre_tunnel_link(struct ipgre_net *ign, struct ip_tunnel *t)
347 struct ip_tunnel __rcu **tp = ipgre_bucket(ign, t);
349 rcu_assign_pointer(t->next, rtnl_dereference(*tp));
350 rcu_assign_pointer(*tp, t);
353 static void ipgre_tunnel_unlink(struct ipgre_net *ign, struct ip_tunnel *t)
355 struct ip_tunnel __rcu **tp;
356 struct ip_tunnel *iter;
358 for (tp = ipgre_bucket(ign, t);
359 (iter = rtnl_dereference(*tp)) != NULL;
362 rcu_assign_pointer(*tp, t->next);
368 static struct ip_tunnel *ipgre_tunnel_find(struct net *net,
369 struct ip_tunnel_parm *parms,
372 __be32 remote = parms->iph.daddr;
373 __be32 local = parms->iph.saddr;
374 __be32 key = parms->i_key;
375 int link = parms->link;
377 struct ip_tunnel __rcu **tp;
378 struct ipgre_net *ign = net_generic(net, ipgre_net_id);
380 for (tp = __ipgre_bucket(ign, parms);
381 (t = rtnl_dereference(*tp)) != NULL;
383 if (local == t->parms.iph.saddr &&
384 remote == t->parms.iph.daddr &&
385 key == t->parms.i_key &&
386 link == t->parms.link &&
387 type == t->dev->type)
393 static struct ip_tunnel *ipgre_tunnel_locate(struct net *net,
394 struct ip_tunnel_parm *parms, int create)
396 struct ip_tunnel *t, *nt;
397 struct net_device *dev;
399 struct ipgre_net *ign = net_generic(net, ipgre_net_id);
401 t = ipgre_tunnel_find(net, parms, ARPHRD_IPGRE);
406 strlcpy(name, parms->name, IFNAMSIZ);
408 sprintf(name, "gre%%d");
410 dev = alloc_netdev(sizeof(*t), name, ipgre_tunnel_setup);
414 dev_net_set(dev, net);
416 if (strchr(name, '%')) {
417 if (dev_alloc_name(dev, name) < 0)
421 nt = netdev_priv(dev);
423 dev->rtnl_link_ops = &ipgre_link_ops;
425 dev->mtu = ipgre_tunnel_bind_dev(dev);
427 if (register_netdevice(dev) < 0)
431 ipgre_tunnel_link(ign, nt);
439 static void ipgre_tunnel_uninit(struct net_device *dev)
441 struct net *net = dev_net(dev);
442 struct ipgre_net *ign = net_generic(net, ipgre_net_id);
444 ipgre_tunnel_unlink(ign, netdev_priv(dev));
449 static void ipgre_err(struct sk_buff *skb, u32 info)
452 /* All the routers (except for Linux) return only
453 8 bytes of packet payload. It means, that precise relaying of
454 ICMP in the real Internet is absolutely infeasible.
456 Moreover, Cisco "wise men" put GRE key to the third word
457 in GRE header. It makes impossible maintaining even soft state for keyed
458 GRE tunnels with enabled checksum. Tell them "thank you".
460 Well, I wonder, rfc1812 was written by Cisco employee,
461 what the hell these idiots break standrads established
465 struct iphdr *iph = (struct iphdr *)skb->data;
466 __be16 *p = (__be16*)(skb->data+(iph->ihl<<2));
467 int grehlen = (iph->ihl<<2) + 4;
468 const int type = icmp_hdr(skb)->type;
469 const int code = icmp_hdr(skb)->code;
474 if (flags&(GRE_CSUM|GRE_KEY|GRE_SEQ|GRE_ROUTING|GRE_VERSION)) {
475 if (flags&(GRE_VERSION|GRE_ROUTING))
484 /* If only 8 bytes returned, keyed message will be dropped here */
485 if (skb_headlen(skb) < grehlen)
490 case ICMP_PARAMETERPROB:
493 case ICMP_DEST_UNREACH:
496 case ICMP_PORT_UNREACH:
497 /* Impossible event. */
499 case ICMP_FRAG_NEEDED:
500 /* Soft state for pmtu is maintained by IP core. */
503 /* All others are translated to HOST_UNREACH.
504 rfc2003 contains "deep thoughts" about NET_UNREACH,
505 I believe they are just ether pollution. --ANK
510 case ICMP_TIME_EXCEEDED:
511 if (code != ICMP_EXC_TTL)
517 t = ipgre_tunnel_lookup(skb->dev, iph->daddr, iph->saddr,
519 *(((__be32 *)p) + (grehlen / 4) - 1) : 0,
521 if (t == NULL || t->parms.iph.daddr == 0 ||
522 ipv4_is_multicast(t->parms.iph.daddr))
525 if (t->parms.iph.ttl == 0 && type == ICMP_TIME_EXCEEDED)
528 if (time_before(jiffies, t->err_time + IPTUNNEL_ERR_TIMEO))
532 t->err_time = jiffies;
537 static inline void ipgre_ecn_decapsulate(struct iphdr *iph, struct sk_buff *skb)
539 if (INET_ECN_is_ce(iph->tos)) {
540 if (skb->protocol == htons(ETH_P_IP)) {
541 IP_ECN_set_ce(ip_hdr(skb));
542 } else if (skb->protocol == htons(ETH_P_IPV6)) {
543 IP6_ECN_set_ce(ipv6_hdr(skb));
549 ipgre_ecn_encapsulate(u8 tos, struct iphdr *old_iph, struct sk_buff *skb)
552 if (skb->protocol == htons(ETH_P_IP))
553 inner = old_iph->tos;
554 else if (skb->protocol == htons(ETH_P_IPV6))
555 inner = ipv6_get_dsfield((struct ipv6hdr *)old_iph);
556 return INET_ECN_encapsulate(tos, inner);
559 static int ipgre_rcv(struct sk_buff *skb)
567 struct ip_tunnel *tunnel;
571 if (!pskb_may_pull(skb, 16))
578 if (flags&(GRE_CSUM|GRE_KEY|GRE_ROUTING|GRE_SEQ|GRE_VERSION)) {
579 /* - Version must be 0.
580 - We do not support routing headers.
582 if (flags&(GRE_VERSION|GRE_ROUTING))
585 if (flags&GRE_CSUM) {
586 switch (skb->ip_summed) {
587 case CHECKSUM_COMPLETE:
588 csum = csum_fold(skb->csum);
594 csum = __skb_checksum_complete(skb);
595 skb->ip_summed = CHECKSUM_COMPLETE;
600 key = *(__be32*)(h + offset);
604 seqno = ntohl(*(__be32*)(h + offset));
609 gre_proto = *(__be16 *)(h + 2);
612 if ((tunnel = ipgre_tunnel_lookup(skb->dev,
613 iph->saddr, iph->daddr, key,
615 struct pcpu_tstats *tstats;
619 skb->protocol = gre_proto;
620 /* WCCP version 1 and 2 protocol decoding.
621 * - Change protocol to IP
622 * - When dealing with WCCPv2, Skip extra 4 bytes in GRE header
624 if (flags == 0 && gre_proto == htons(ETH_P_WCCP)) {
625 skb->protocol = htons(ETH_P_IP);
626 if ((*(h + offset) & 0xF0) != 0x40)
630 skb->mac_header = skb->network_header;
631 __pskb_pull(skb, offset);
632 skb_postpull_rcsum(skb, skb_transport_header(skb), offset);
633 skb->pkt_type = PACKET_HOST;
634 #ifdef CONFIG_NET_IPGRE_BROADCAST
635 if (ipv4_is_multicast(iph->daddr)) {
636 /* Looped back packet, drop it! */
637 if (skb_rtable(skb)->fl.iif == 0)
639 tunnel->dev->stats.multicast++;
640 skb->pkt_type = PACKET_BROADCAST;
644 if (((flags&GRE_CSUM) && csum) ||
645 (!(flags&GRE_CSUM) && tunnel->parms.i_flags&GRE_CSUM)) {
646 tunnel->dev->stats.rx_crc_errors++;
647 tunnel->dev->stats.rx_errors++;
650 if (tunnel->parms.i_flags&GRE_SEQ) {
651 if (!(flags&GRE_SEQ) ||
652 (tunnel->i_seqno && (s32)(seqno - tunnel->i_seqno) < 0)) {
653 tunnel->dev->stats.rx_fifo_errors++;
654 tunnel->dev->stats.rx_errors++;
657 tunnel->i_seqno = seqno + 1;
660 /* Warning: All skb pointers will be invalidated! */
661 if (tunnel->dev->type == ARPHRD_ETHER) {
662 if (!pskb_may_pull(skb, ETH_HLEN)) {
663 tunnel->dev->stats.rx_length_errors++;
664 tunnel->dev->stats.rx_errors++;
669 skb->protocol = eth_type_trans(skb, tunnel->dev);
670 skb_postpull_rcsum(skb, eth_hdr(skb), ETH_HLEN);
673 tstats = this_cpu_ptr(tunnel->dev->tstats);
674 tstats->rx_packets++;
675 tstats->rx_bytes += skb->len;
677 __skb_tunnel_rx(skb, tunnel->dev);
679 skb_reset_network_header(skb);
680 ipgre_ecn_decapsulate(iph, skb);
687 icmp_send(skb, ICMP_DEST_UNREACH, ICMP_PORT_UNREACH, 0);
696 static netdev_tx_t ipgre_tunnel_xmit(struct sk_buff *skb, struct net_device *dev)
698 struct ip_tunnel *tunnel = netdev_priv(dev);
699 struct pcpu_tstats *tstats;
700 struct iphdr *old_iph = ip_hdr(skb);
704 struct rtable *rt; /* Route to the other host */
705 struct net_device *tdev; /* Device to other host */
706 struct iphdr *iph; /* Our new IP header */
707 unsigned int max_headroom; /* The extra header space needed */
712 if (dev->type == ARPHRD_ETHER)
713 IPCB(skb)->flags = 0;
715 if (dev->header_ops && dev->type == ARPHRD_IPGRE) {
717 tiph = (struct iphdr *)skb->data;
719 gre_hlen = tunnel->hlen;
720 tiph = &tunnel->parms.iph;
723 if ((dst = tiph->daddr) == 0) {
726 if (skb_dst(skb) == NULL) {
727 dev->stats.tx_fifo_errors++;
731 if (skb->protocol == htons(ETH_P_IP)) {
732 rt = skb_rtable(skb);
733 if ((dst = rt->rt_gateway) == 0)
736 #if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE)
737 else if (skb->protocol == htons(ETH_P_IPV6)) {
738 struct in6_addr *addr6;
740 struct neighbour *neigh = skb_dst(skb)->neighbour;
745 addr6 = (struct in6_addr *)&neigh->primary_key;
746 addr_type = ipv6_addr_type(addr6);
748 if (addr_type == IPV6_ADDR_ANY) {
749 addr6 = &ipv6_hdr(skb)->daddr;
750 addr_type = ipv6_addr_type(addr6);
753 if ((addr_type & IPV6_ADDR_COMPATv4) == 0)
756 dst = addr6->s6_addr32[3];
766 if (skb->protocol == htons(ETH_P_IP))
768 else if (skb->protocol == htons(ETH_P_IPV6))
769 tos = ipv6_get_dsfield((struct ipv6hdr *)old_iph);
774 .oif = tunnel->parms.link,
778 .saddr = tiph->saddr,
785 if (ip_route_output_key(dev_net(dev), &rt, &fl)) {
786 dev->stats.tx_carrier_errors++;
794 dev->stats.collisions++;
800 mtu = dst_mtu(&rt->dst) - dev->hard_header_len - tunnel->hlen;
802 mtu = skb_dst(skb) ? dst_mtu(skb_dst(skb)) : dev->mtu;
805 skb_dst(skb)->ops->update_pmtu(skb_dst(skb), mtu);
807 if (skb->protocol == htons(ETH_P_IP)) {
808 df |= (old_iph->frag_off&htons(IP_DF));
810 if ((old_iph->frag_off&htons(IP_DF)) &&
811 mtu < ntohs(old_iph->tot_len)) {
812 icmp_send(skb, ICMP_DEST_UNREACH, ICMP_FRAG_NEEDED, htonl(mtu));
817 #if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE)
818 else if (skb->protocol == htons(ETH_P_IPV6)) {
819 struct rt6_info *rt6 = (struct rt6_info *)skb_dst(skb);
821 if (rt6 && mtu < dst_mtu(skb_dst(skb)) && mtu >= IPV6_MIN_MTU) {
822 if ((tunnel->parms.iph.daddr &&
823 !ipv4_is_multicast(tunnel->parms.iph.daddr)) ||
824 rt6->rt6i_dst.plen == 128) {
825 rt6->rt6i_flags |= RTF_MODIFIED;
826 skb_dst(skb)->metrics[RTAX_MTU-1] = mtu;
830 if (mtu >= IPV6_MIN_MTU && mtu < skb->len - tunnel->hlen + gre_hlen) {
831 icmpv6_send(skb, ICMPV6_PKT_TOOBIG, 0, mtu);
838 if (tunnel->err_count > 0) {
839 if (time_before(jiffies,
840 tunnel->err_time + IPTUNNEL_ERR_TIMEO)) {
843 dst_link_failure(skb);
845 tunnel->err_count = 0;
848 max_headroom = LL_RESERVED_SPACE(tdev) + gre_hlen + rt->dst.header_len;
850 if (skb_headroom(skb) < max_headroom || skb_shared(skb)||
851 (skb_cloned(skb) && !skb_clone_writable(skb, 0))) {
852 struct sk_buff *new_skb = skb_realloc_headroom(skb, max_headroom);
853 if (max_headroom > dev->needed_headroom)
854 dev->needed_headroom = max_headroom;
857 dev->stats.tx_dropped++;
862 skb_set_owner_w(new_skb, skb->sk);
865 old_iph = ip_hdr(skb);
868 skb_reset_transport_header(skb);
869 skb_push(skb, gre_hlen);
870 skb_reset_network_header(skb);
871 memset(&(IPCB(skb)->opt), 0, sizeof(IPCB(skb)->opt));
872 IPCB(skb)->flags &= ~(IPSKB_XFRM_TUNNEL_SIZE | IPSKB_XFRM_TRANSFORMED |
875 skb_dst_set(skb, &rt->dst);
878 * Push down and install the IPIP header.
883 iph->ihl = sizeof(struct iphdr) >> 2;
885 iph->protocol = IPPROTO_GRE;
886 iph->tos = ipgre_ecn_encapsulate(tos, old_iph, skb);
887 iph->daddr = rt->rt_dst;
888 iph->saddr = rt->rt_src;
890 if ((iph->ttl = tiph->ttl) == 0) {
891 if (skb->protocol == htons(ETH_P_IP))
892 iph->ttl = old_iph->ttl;
893 #if defined(CONFIG_IPV6) || defined(CONFIG_IPV6_MODULE)
894 else if (skb->protocol == htons(ETH_P_IPV6))
895 iph->ttl = ((struct ipv6hdr *)old_iph)->hop_limit;
898 iph->ttl = dst_metric(&rt->dst, RTAX_HOPLIMIT);
901 ((__be16 *)(iph + 1))[0] = tunnel->parms.o_flags;
902 ((__be16 *)(iph + 1))[1] = (dev->type == ARPHRD_ETHER) ?
903 htons(ETH_P_TEB) : skb->protocol;
905 if (tunnel->parms.o_flags&(GRE_KEY|GRE_CSUM|GRE_SEQ)) {
906 __be32 *ptr = (__be32*)(((u8*)iph) + tunnel->hlen - 4);
908 if (tunnel->parms.o_flags&GRE_SEQ) {
910 *ptr = htonl(tunnel->o_seqno);
913 if (tunnel->parms.o_flags&GRE_KEY) {
914 *ptr = tunnel->parms.o_key;
917 if (tunnel->parms.o_flags&GRE_CSUM) {
919 *(__sum16*)ptr = ip_compute_csum((void*)(iph+1), skb->len - sizeof(struct iphdr));
924 tstats = this_cpu_ptr(dev->tstats);
925 __IPTUNNEL_XMIT(tstats, &dev->stats);
929 dst_link_failure(skb);
932 dev->stats.tx_errors++;
937 static int ipgre_tunnel_bind_dev(struct net_device *dev)
939 struct net_device *tdev = NULL;
940 struct ip_tunnel *tunnel;
942 int hlen = LL_MAX_HEADER;
943 int mtu = ETH_DATA_LEN;
944 int addend = sizeof(struct iphdr) + 4;
946 tunnel = netdev_priv(dev);
947 iph = &tunnel->parms.iph;
949 /* Guess output device to choose reasonable mtu and needed_headroom */
953 .oif = tunnel->parms.link,
958 .tos = RT_TOS(iph->tos)
965 if (!ip_route_output_key(dev_net(dev), &rt, &fl)) {
970 if (dev->type != ARPHRD_ETHER)
971 dev->flags |= IFF_POINTOPOINT;
974 if (!tdev && tunnel->parms.link)
975 tdev = __dev_get_by_index(dev_net(dev), tunnel->parms.link);
978 hlen = tdev->hard_header_len + tdev->needed_headroom;
981 dev->iflink = tunnel->parms.link;
983 /* Precalculate GRE options length */
984 if (tunnel->parms.o_flags&(GRE_CSUM|GRE_KEY|GRE_SEQ)) {
985 if (tunnel->parms.o_flags&GRE_CSUM)
987 if (tunnel->parms.o_flags&GRE_KEY)
989 if (tunnel->parms.o_flags&GRE_SEQ)
992 dev->needed_headroom = addend + hlen;
993 mtu -= dev->hard_header_len + addend;
998 tunnel->hlen = addend;
1004 ipgre_tunnel_ioctl (struct net_device *dev, struct ifreq *ifr, int cmd)
1007 struct ip_tunnel_parm p;
1008 struct ip_tunnel *t;
1009 struct net *net = dev_net(dev);
1010 struct ipgre_net *ign = net_generic(net, ipgre_net_id);
1015 if (dev == ign->fb_tunnel_dev) {
1016 if (copy_from_user(&p, ifr->ifr_ifru.ifru_data, sizeof(p))) {
1020 t = ipgre_tunnel_locate(net, &p, 0);
1023 t = netdev_priv(dev);
1024 memcpy(&p, &t->parms, sizeof(p));
1025 if (copy_to_user(ifr->ifr_ifru.ifru_data, &p, sizeof(p)))
1032 if (!capable(CAP_NET_ADMIN))
1036 if (copy_from_user(&p, ifr->ifr_ifru.ifru_data, sizeof(p)))
1040 if (p.iph.version != 4 || p.iph.protocol != IPPROTO_GRE ||
1041 p.iph.ihl != 5 || (p.iph.frag_off&htons(~IP_DF)) ||
1042 ((p.i_flags|p.o_flags)&(GRE_VERSION|GRE_ROUTING)))
1045 p.iph.frag_off |= htons(IP_DF);
1047 if (!(p.i_flags&GRE_KEY))
1049 if (!(p.o_flags&GRE_KEY))
1052 t = ipgre_tunnel_locate(net, &p, cmd == SIOCADDTUNNEL);
1054 if (dev != ign->fb_tunnel_dev && cmd == SIOCCHGTUNNEL) {
1056 if (t->dev != dev) {
1061 unsigned int nflags = 0;
1063 t = netdev_priv(dev);
1065 if (ipv4_is_multicast(p.iph.daddr))
1066 nflags = IFF_BROADCAST;
1067 else if (p.iph.daddr)
1068 nflags = IFF_POINTOPOINT;
1070 if ((dev->flags^nflags)&(IFF_POINTOPOINT|IFF_BROADCAST)) {
1074 ipgre_tunnel_unlink(ign, t);
1075 t->parms.iph.saddr = p.iph.saddr;
1076 t->parms.iph.daddr = p.iph.daddr;
1077 t->parms.i_key = p.i_key;
1078 t->parms.o_key = p.o_key;
1079 memcpy(dev->dev_addr, &p.iph.saddr, 4);
1080 memcpy(dev->broadcast, &p.iph.daddr, 4);
1081 ipgre_tunnel_link(ign, t);
1082 netdev_state_change(dev);
1088 if (cmd == SIOCCHGTUNNEL) {
1089 t->parms.iph.ttl = p.iph.ttl;
1090 t->parms.iph.tos = p.iph.tos;
1091 t->parms.iph.frag_off = p.iph.frag_off;
1092 if (t->parms.link != p.link) {
1093 t->parms.link = p.link;
1094 dev->mtu = ipgre_tunnel_bind_dev(dev);
1095 netdev_state_change(dev);
1098 if (copy_to_user(ifr->ifr_ifru.ifru_data, &t->parms, sizeof(p)))
1101 err = (cmd == SIOCADDTUNNEL ? -ENOBUFS : -ENOENT);
1106 if (!capable(CAP_NET_ADMIN))
1109 if (dev == ign->fb_tunnel_dev) {
1111 if (copy_from_user(&p, ifr->ifr_ifru.ifru_data, sizeof(p)))
1114 if ((t = ipgre_tunnel_locate(net, &p, 0)) == NULL)
1117 if (t == netdev_priv(ign->fb_tunnel_dev))
1121 unregister_netdevice(dev);
1133 static int ipgre_tunnel_change_mtu(struct net_device *dev, int new_mtu)
1135 struct ip_tunnel *tunnel = netdev_priv(dev);
1137 new_mtu > 0xFFF8 - dev->hard_header_len - tunnel->hlen)
1143 /* Nice toy. Unfortunately, useless in real life :-)
1144 It allows to construct virtual multiprotocol broadcast "LAN"
1145 over the Internet, provided multicast routing is tuned.
1148 I have no idea was this bicycle invented before me,
1149 so that I had to set ARPHRD_IPGRE to a random value.
1150 I have an impression, that Cisco could make something similar,
1151 but this feature is apparently missing in IOS<=11.2(8).
1153 I set up 10.66.66/24 and fec0:6666:6666::0/96 as virtual networks
1154 with broadcast 224.66.66.66. If you have access to mbone, play with me :-)
1156 ping -t 255 224.66.66.66
1158 If nobody answers, mbone does not work.
1160 ip tunnel add Universe mode gre remote 224.66.66.66 local <Your_real_addr> ttl 255
1161 ip addr add 10.66.66.<somewhat>/24 dev Universe
1162 ifconfig Universe up
1163 ifconfig Universe add fe80::<Your_real_addr>/10
1164 ifconfig Universe add fec0:6666:6666::<Your_real_addr>/96
1167 ftp fec0:6666:6666::193.233.7.65
1172 static int ipgre_header(struct sk_buff *skb, struct net_device *dev,
1173 unsigned short type,
1174 const void *daddr, const void *saddr, unsigned int len)
1176 struct ip_tunnel *t = netdev_priv(dev);
1177 struct iphdr *iph = (struct iphdr *)skb_push(skb, t->hlen);
1178 __be16 *p = (__be16*)(iph+1);
1180 memcpy(iph, &t->parms.iph, sizeof(struct iphdr));
1181 p[0] = t->parms.o_flags;
1185 * Set the source hardware address.
1189 memcpy(&iph->saddr, saddr, 4);
1191 memcpy(&iph->daddr, daddr, 4);
1198 static int ipgre_header_parse(const struct sk_buff *skb, unsigned char *haddr)
1200 struct iphdr *iph = (struct iphdr *) skb_mac_header(skb);
1201 memcpy(haddr, &iph->saddr, 4);
1205 static const struct header_ops ipgre_header_ops = {
1206 .create = ipgre_header,
1207 .parse = ipgre_header_parse,
1210 #ifdef CONFIG_NET_IPGRE_BROADCAST
1211 static int ipgre_open(struct net_device *dev)
1213 struct ip_tunnel *t = netdev_priv(dev);
1215 if (ipv4_is_multicast(t->parms.iph.daddr)) {
1217 .oif = t->parms.link,
1220 .daddr = t->parms.iph.daddr,
1221 .saddr = t->parms.iph.saddr,
1222 .tos = RT_TOS(t->parms.iph.tos)
1225 .proto = IPPROTO_GRE
1229 if (ip_route_output_key(dev_net(dev), &rt, &fl))
1230 return -EADDRNOTAVAIL;
1233 if (__in_dev_get_rtnl(dev) == NULL)
1234 return -EADDRNOTAVAIL;
1235 t->mlink = dev->ifindex;
1236 ip_mc_inc_group(__in_dev_get_rtnl(dev), t->parms.iph.daddr);
1241 static int ipgre_close(struct net_device *dev)
1243 struct ip_tunnel *t = netdev_priv(dev);
1245 if (ipv4_is_multicast(t->parms.iph.daddr) && t->mlink) {
1246 struct in_device *in_dev;
1247 in_dev = inetdev_by_index(dev_net(dev), t->mlink);
1249 ip_mc_dec_group(in_dev, t->parms.iph.daddr);
1256 static const struct net_device_ops ipgre_netdev_ops = {
1257 .ndo_init = ipgre_tunnel_init,
1258 .ndo_uninit = ipgre_tunnel_uninit,
1259 #ifdef CONFIG_NET_IPGRE_BROADCAST
1260 .ndo_open = ipgre_open,
1261 .ndo_stop = ipgre_close,
1263 .ndo_start_xmit = ipgre_tunnel_xmit,
1264 .ndo_do_ioctl = ipgre_tunnel_ioctl,
1265 .ndo_change_mtu = ipgre_tunnel_change_mtu,
1266 .ndo_get_stats = ipgre_get_stats,
1269 static void ipgre_dev_free(struct net_device *dev)
1271 free_percpu(dev->tstats);
1275 static void ipgre_tunnel_setup(struct net_device *dev)
1277 dev->netdev_ops = &ipgre_netdev_ops;
1278 dev->destructor = ipgre_dev_free;
1280 dev->type = ARPHRD_IPGRE;
1281 dev->needed_headroom = LL_MAX_HEADER + sizeof(struct iphdr) + 4;
1282 dev->mtu = ETH_DATA_LEN - sizeof(struct iphdr) - 4;
1283 dev->flags = IFF_NOARP;
1286 dev->features |= NETIF_F_NETNS_LOCAL;
1287 dev->priv_flags &= ~IFF_XMIT_DST_RELEASE;
1290 static int ipgre_tunnel_init(struct net_device *dev)
1292 struct ip_tunnel *tunnel;
1295 tunnel = netdev_priv(dev);
1296 iph = &tunnel->parms.iph;
1299 strcpy(tunnel->parms.name, dev->name);
1301 memcpy(dev->dev_addr, &tunnel->parms.iph.saddr, 4);
1302 memcpy(dev->broadcast, &tunnel->parms.iph.daddr, 4);
1305 #ifdef CONFIG_NET_IPGRE_BROADCAST
1306 if (ipv4_is_multicast(iph->daddr)) {
1309 dev->flags = IFF_BROADCAST;
1310 dev->header_ops = &ipgre_header_ops;
1314 dev->header_ops = &ipgre_header_ops;
1316 dev->tstats = alloc_percpu(struct pcpu_tstats);
1323 static void ipgre_fb_tunnel_init(struct net_device *dev)
1325 struct ip_tunnel *tunnel = netdev_priv(dev);
1326 struct iphdr *iph = &tunnel->parms.iph;
1327 struct ipgre_net *ign = net_generic(dev_net(dev), ipgre_net_id);
1330 strcpy(tunnel->parms.name, dev->name);
1333 iph->protocol = IPPROTO_GRE;
1335 tunnel->hlen = sizeof(struct iphdr) + 4;
1338 rcu_assign_pointer(ign->tunnels_wc[0], tunnel);
1342 static const struct gre_protocol ipgre_protocol = {
1343 .handler = ipgre_rcv,
1344 .err_handler = ipgre_err,
1347 static void ipgre_destroy_tunnels(struct ipgre_net *ign, struct list_head *head)
1351 for (prio = 0; prio < 4; prio++) {
1353 for (h = 0; h < HASH_SIZE; h++) {
1354 struct ip_tunnel *t;
1356 t = rtnl_dereference(ign->tunnels[prio][h]);
1359 unregister_netdevice_queue(t->dev, head);
1360 t = rtnl_dereference(t->next);
1366 static int __net_init ipgre_init_net(struct net *net)
1368 struct ipgre_net *ign = net_generic(net, ipgre_net_id);
1371 ign->fb_tunnel_dev = alloc_netdev(sizeof(struct ip_tunnel), "gre0",
1372 ipgre_tunnel_setup);
1373 if (!ign->fb_tunnel_dev) {
1377 dev_net_set(ign->fb_tunnel_dev, net);
1379 ipgre_fb_tunnel_init(ign->fb_tunnel_dev);
1380 ign->fb_tunnel_dev->rtnl_link_ops = &ipgre_link_ops;
1382 if ((err = register_netdev(ign->fb_tunnel_dev)))
1388 free_netdev(ign->fb_tunnel_dev);
1393 static void __net_exit ipgre_exit_net(struct net *net)
1395 struct ipgre_net *ign;
1398 ign = net_generic(net, ipgre_net_id);
1400 ipgre_destroy_tunnels(ign, &list);
1401 unregister_netdevice_many(&list);
1405 static struct pernet_operations ipgre_net_ops = {
1406 .init = ipgre_init_net,
1407 .exit = ipgre_exit_net,
1408 .id = &ipgre_net_id,
1409 .size = sizeof(struct ipgre_net),
1412 static int ipgre_tunnel_validate(struct nlattr *tb[], struct nlattr *data[])
1420 if (data[IFLA_GRE_IFLAGS])
1421 flags |= nla_get_be16(data[IFLA_GRE_IFLAGS]);
1422 if (data[IFLA_GRE_OFLAGS])
1423 flags |= nla_get_be16(data[IFLA_GRE_OFLAGS]);
1424 if (flags & (GRE_VERSION|GRE_ROUTING))
1430 static int ipgre_tap_validate(struct nlattr *tb[], struct nlattr *data[])
1434 if (tb[IFLA_ADDRESS]) {
1435 if (nla_len(tb[IFLA_ADDRESS]) != ETH_ALEN)
1437 if (!is_valid_ether_addr(nla_data(tb[IFLA_ADDRESS])))
1438 return -EADDRNOTAVAIL;
1444 if (data[IFLA_GRE_REMOTE]) {
1445 memcpy(&daddr, nla_data(data[IFLA_GRE_REMOTE]), 4);
1451 return ipgre_tunnel_validate(tb, data);
1454 static void ipgre_netlink_parms(struct nlattr *data[],
1455 struct ip_tunnel_parm *parms)
1457 memset(parms, 0, sizeof(*parms));
1459 parms->iph.protocol = IPPROTO_GRE;
1464 if (data[IFLA_GRE_LINK])
1465 parms->link = nla_get_u32(data[IFLA_GRE_LINK]);
1467 if (data[IFLA_GRE_IFLAGS])
1468 parms->i_flags = nla_get_be16(data[IFLA_GRE_IFLAGS]);
1470 if (data[IFLA_GRE_OFLAGS])
1471 parms->o_flags = nla_get_be16(data[IFLA_GRE_OFLAGS]);
1473 if (data[IFLA_GRE_IKEY])
1474 parms->i_key = nla_get_be32(data[IFLA_GRE_IKEY]);
1476 if (data[IFLA_GRE_OKEY])
1477 parms->o_key = nla_get_be32(data[IFLA_GRE_OKEY]);
1479 if (data[IFLA_GRE_LOCAL])
1480 parms->iph.saddr = nla_get_be32(data[IFLA_GRE_LOCAL]);
1482 if (data[IFLA_GRE_REMOTE])
1483 parms->iph.daddr = nla_get_be32(data[IFLA_GRE_REMOTE]);
1485 if (data[IFLA_GRE_TTL])
1486 parms->iph.ttl = nla_get_u8(data[IFLA_GRE_TTL]);
1488 if (data[IFLA_GRE_TOS])
1489 parms->iph.tos = nla_get_u8(data[IFLA_GRE_TOS]);
1491 if (!data[IFLA_GRE_PMTUDISC] || nla_get_u8(data[IFLA_GRE_PMTUDISC]))
1492 parms->iph.frag_off = htons(IP_DF);
1495 static int ipgre_tap_init(struct net_device *dev)
1497 struct ip_tunnel *tunnel;
1499 tunnel = netdev_priv(dev);
1502 strcpy(tunnel->parms.name, dev->name);
1504 ipgre_tunnel_bind_dev(dev);
1506 dev->tstats = alloc_percpu(struct pcpu_tstats);
1513 static const struct net_device_ops ipgre_tap_netdev_ops = {
1514 .ndo_init = ipgre_tap_init,
1515 .ndo_uninit = ipgre_tunnel_uninit,
1516 .ndo_start_xmit = ipgre_tunnel_xmit,
1517 .ndo_set_mac_address = eth_mac_addr,
1518 .ndo_validate_addr = eth_validate_addr,
1519 .ndo_change_mtu = ipgre_tunnel_change_mtu,
1520 .ndo_get_stats = ipgre_get_stats,
1523 static void ipgre_tap_setup(struct net_device *dev)
1528 dev->netdev_ops = &ipgre_tap_netdev_ops;
1529 dev->destructor = ipgre_dev_free;
1532 dev->features |= NETIF_F_NETNS_LOCAL;
1535 static int ipgre_newlink(struct net *src_net, struct net_device *dev, struct nlattr *tb[],
1536 struct nlattr *data[])
1538 struct ip_tunnel *nt;
1539 struct net *net = dev_net(dev);
1540 struct ipgre_net *ign = net_generic(net, ipgre_net_id);
1544 nt = netdev_priv(dev);
1545 ipgre_netlink_parms(data, &nt->parms);
1547 if (ipgre_tunnel_find(net, &nt->parms, dev->type))
1550 if (dev->type == ARPHRD_ETHER && !tb[IFLA_ADDRESS])
1551 random_ether_addr(dev->dev_addr);
1553 mtu = ipgre_tunnel_bind_dev(dev);
1557 /* Can use a lockless transmit, unless we generate output sequences */
1558 if (!(nt->parms.o_flags & GRE_SEQ))
1559 dev->features |= NETIF_F_LLTX;
1561 err = register_netdevice(dev);
1566 ipgre_tunnel_link(ign, nt);
1572 static int ipgre_changelink(struct net_device *dev, struct nlattr *tb[],
1573 struct nlattr *data[])
1575 struct ip_tunnel *t, *nt;
1576 struct net *net = dev_net(dev);
1577 struct ipgre_net *ign = net_generic(net, ipgre_net_id);
1578 struct ip_tunnel_parm p;
1581 if (dev == ign->fb_tunnel_dev)
1584 nt = netdev_priv(dev);
1585 ipgre_netlink_parms(data, &p);
1587 t = ipgre_tunnel_locate(net, &p, 0);
1595 if (dev->type != ARPHRD_ETHER) {
1596 unsigned int nflags = 0;
1598 if (ipv4_is_multicast(p.iph.daddr))
1599 nflags = IFF_BROADCAST;
1600 else if (p.iph.daddr)
1601 nflags = IFF_POINTOPOINT;
1603 if ((dev->flags ^ nflags) &
1604 (IFF_POINTOPOINT | IFF_BROADCAST))
1608 ipgre_tunnel_unlink(ign, t);
1609 t->parms.iph.saddr = p.iph.saddr;
1610 t->parms.iph.daddr = p.iph.daddr;
1611 t->parms.i_key = p.i_key;
1612 if (dev->type != ARPHRD_ETHER) {
1613 memcpy(dev->dev_addr, &p.iph.saddr, 4);
1614 memcpy(dev->broadcast, &p.iph.daddr, 4);
1616 ipgre_tunnel_link(ign, t);
1617 netdev_state_change(dev);
1620 t->parms.o_key = p.o_key;
1621 t->parms.iph.ttl = p.iph.ttl;
1622 t->parms.iph.tos = p.iph.tos;
1623 t->parms.iph.frag_off = p.iph.frag_off;
1625 if (t->parms.link != p.link) {
1626 t->parms.link = p.link;
1627 mtu = ipgre_tunnel_bind_dev(dev);
1630 netdev_state_change(dev);
1636 static size_t ipgre_get_size(const struct net_device *dev)
1641 /* IFLA_GRE_IFLAGS */
1643 /* IFLA_GRE_OFLAGS */
1649 /* IFLA_GRE_LOCAL */
1651 /* IFLA_GRE_REMOTE */
1657 /* IFLA_GRE_PMTUDISC */
1662 static int ipgre_fill_info(struct sk_buff *skb, const struct net_device *dev)
1664 struct ip_tunnel *t = netdev_priv(dev);
1665 struct ip_tunnel_parm *p = &t->parms;
1667 NLA_PUT_U32(skb, IFLA_GRE_LINK, p->link);
1668 NLA_PUT_BE16(skb, IFLA_GRE_IFLAGS, p->i_flags);
1669 NLA_PUT_BE16(skb, IFLA_GRE_OFLAGS, p->o_flags);
1670 NLA_PUT_BE32(skb, IFLA_GRE_IKEY, p->i_key);
1671 NLA_PUT_BE32(skb, IFLA_GRE_OKEY, p->o_key);
1672 NLA_PUT_BE32(skb, IFLA_GRE_LOCAL, p->iph.saddr);
1673 NLA_PUT_BE32(skb, IFLA_GRE_REMOTE, p->iph.daddr);
1674 NLA_PUT_U8(skb, IFLA_GRE_TTL, p->iph.ttl);
1675 NLA_PUT_U8(skb, IFLA_GRE_TOS, p->iph.tos);
1676 NLA_PUT_U8(skb, IFLA_GRE_PMTUDISC, !!(p->iph.frag_off & htons(IP_DF)));
1684 static const struct nla_policy ipgre_policy[IFLA_GRE_MAX + 1] = {
1685 [IFLA_GRE_LINK] = { .type = NLA_U32 },
1686 [IFLA_GRE_IFLAGS] = { .type = NLA_U16 },
1687 [IFLA_GRE_OFLAGS] = { .type = NLA_U16 },
1688 [IFLA_GRE_IKEY] = { .type = NLA_U32 },
1689 [IFLA_GRE_OKEY] = { .type = NLA_U32 },
1690 [IFLA_GRE_LOCAL] = { .len = FIELD_SIZEOF(struct iphdr, saddr) },
1691 [IFLA_GRE_REMOTE] = { .len = FIELD_SIZEOF(struct iphdr, daddr) },
1692 [IFLA_GRE_TTL] = { .type = NLA_U8 },
1693 [IFLA_GRE_TOS] = { .type = NLA_U8 },
1694 [IFLA_GRE_PMTUDISC] = { .type = NLA_U8 },
1697 static struct rtnl_link_ops ipgre_link_ops __read_mostly = {
1699 .maxtype = IFLA_GRE_MAX,
1700 .policy = ipgre_policy,
1701 .priv_size = sizeof(struct ip_tunnel),
1702 .setup = ipgre_tunnel_setup,
1703 .validate = ipgre_tunnel_validate,
1704 .newlink = ipgre_newlink,
1705 .changelink = ipgre_changelink,
1706 .get_size = ipgre_get_size,
1707 .fill_info = ipgre_fill_info,
1710 static struct rtnl_link_ops ipgre_tap_ops __read_mostly = {
1712 .maxtype = IFLA_GRE_MAX,
1713 .policy = ipgre_policy,
1714 .priv_size = sizeof(struct ip_tunnel),
1715 .setup = ipgre_tap_setup,
1716 .validate = ipgre_tap_validate,
1717 .newlink = ipgre_newlink,
1718 .changelink = ipgre_changelink,
1719 .get_size = ipgre_get_size,
1720 .fill_info = ipgre_fill_info,
1724 * And now the modules code and kernel interface.
1727 static int __init ipgre_init(void)
1731 printk(KERN_INFO "GRE over IPv4 tunneling driver\n");
1733 err = register_pernet_device(&ipgre_net_ops);
1737 err = gre_add_protocol(&ipgre_protocol, GREPROTO_CISCO);
1739 printk(KERN_INFO "ipgre init: can't add protocol\n");
1740 goto add_proto_failed;
1743 err = rtnl_link_register(&ipgre_link_ops);
1745 goto rtnl_link_failed;
1747 err = rtnl_link_register(&ipgre_tap_ops);
1749 goto tap_ops_failed;
1755 rtnl_link_unregister(&ipgre_link_ops);
1757 gre_del_protocol(&ipgre_protocol, GREPROTO_CISCO);
1759 unregister_pernet_device(&ipgre_net_ops);
1763 static void __exit ipgre_fini(void)
1765 rtnl_link_unregister(&ipgre_tap_ops);
1766 rtnl_link_unregister(&ipgre_link_ops);
1767 if (gre_del_protocol(&ipgre_protocol, GREPROTO_CISCO) < 0)
1768 printk(KERN_INFO "ipgre close: can't remove protocol\n");
1769 unregister_pernet_device(&ipgre_net_ops);
1772 module_init(ipgre_init);
1773 module_exit(ipgre_fini);
1774 MODULE_LICENSE("GPL");
1775 MODULE_ALIAS_RTNL_LINK("gre");
1776 MODULE_ALIAS_RTNL_LINK("gretap");
git://bbs.cooldavid.org / net-next-2.6.git / blob