4 files changed, 467 insertions, 0 deletions
diff --git a/include/linux/xfrm.h b/include/linux/xfrm.h
index 9529ea1ae39..15ca89e9961 100644
--- a/include/linux/xfrm.h
+++ b/include/linux/xfrm.h
@@ -178,6 +178,9 @@ enum {
        XFRM_MSG_REPORT,
 #define XFRM_MSG_REPORT XFRM_MSG_REPORT
+        XFRM_MSG_MIGRATE,
+#define XFRM_MSG_MIGRATE XFRM_MSG_MIGRATE
        __XFRM_MSG_MAX
 };
 #define XFRM_MSG_MAX (__XFRM_MSG_MAX - 1)
@@ -256,6 +259,7 @@ enum xfrm_attr_type_t {
        XFRMA_COADDR,           /* xfrm_address_t */
        XFRMA_LASTUSED,
        XFRMA_POLICY_TYPE,      /* struct xfrm_userpolicy_type */
+        XFRMA_MIGRATE,
        __XFRMA_MAX
 #define XFRMA_MAX (__XFRMA_MAX - 1)
@@ -351,6 +355,19 @@ struct xfrm_user_report {
        struct xfrm_selector            sel;
 };
+struct xfrm_user_migrate {
+        xfrm_address_t                  old_daddr;
+        xfrm_address_t                  old_saddr;
+        xfrm_address_t                  new_daddr;
+        xfrm_address_t                  new_saddr;
+        __u8                            proto;
+        __u8                            mode;
+        __u16                           reserved;
+        __u32                           reqid;
+        __u16                           old_family;
+        __u16                           new_family;
+};
 #ifndef __KERNEL__
 /* backwards compatibility for userspace */
 #define XFRMGRP_ACQUIRE         1
@@ -375,6 +392,8 @@ enum xfrm_nlgroups {
 #define XFRMNLGRP_AEVENTS       XFRMNLGRP_AEVENTS
        XFRMNLGRP_REPORT,
 #define XFRMNLGRP_REPORT        XFRMNLGRP_REPORT
+        XFRMNLGRP_MIGRATE,
+#define XFRMNLGRP_MIGRATE       XFRMNLGRP_MIGRATE
        __XFRMNLGRP_MAX
 };
 #define XFRMNLGRP_MAX   (__XFRMNLGRP_MAX - 1)
diff --git a/include/net/xfrm.h b/include/net/xfrm.h
index bf91d632901..16924cb772c 100644
--- a/include/net/xfrm.h
+++ b/include/net/xfrm.h
@@ -362,6 +362,19 @@ struct xfrm_policy
        struct xfrm_tmpl        xfrm_vec[XFRM_MAX_DEPTH];
 };
+struct xfrm_migrate {
+        xfrm_address_t          old_daddr;
+        xfrm_address_t          old_saddr;
+        xfrm_address_t          new_daddr;
+        xfrm_address_t          new_saddr;
+        u8                      proto;
+        u8                      mode;
+        u16                     reserved;
+        u32                     reqid;
+        u16                     old_family;
+        u16                     new_family;
+};
 #define XFRM_KM_TIMEOUT                30
 /* which seqno */
 #define XFRM_REPLAY_SEQ         1
@@ -388,6 +401,7 @@ struct xfrm_mgr
        int                     (*new_mapping)(struct xfrm_state *x, xfrm_address_t *ipaddr, __be16 sport);
        int                     (*notify_policy)(struct xfrm_policy *x, int dir, struct km_event *c);
        int                     (*report)(u8 proto, struct xfrm_selector *sel, xfrm_address_t *addr);
+        int                     (*migrate)(struct xfrm_selector *sel, u8 dir, u8 type, struct xfrm_migrate *m, int num_bundles);
 };
 extern int xfrm_register_km(struct xfrm_mgr *km);
@@ -988,6 +1002,16 @@ extern int xfrm_bundle_ok(struct xfrm_policy *pol, struct xfrm_dst *xdst,
                          struct flowi *fl, int family, int strict);
 extern void xfrm_init_pmtu(struct dst_entry *dst);
+#ifdef CONFIG_XFRM_MIGRATE
+extern int km_migrate(struct xfrm_selector *sel, u8 dir, u8 type,
+                      struct xfrm_migrate *m, int num_bundles);
+extern struct xfrm_state * xfrm_migrate_state_find(struct xfrm_migrate *m);
+extern struct xfrm_state * xfrm_state_migrate(struct xfrm_state *x,
+                                              struct xfrm_migrate *m);
+extern int xfrm_migrate(struct xfrm_selector *sel, u8 dir, u8 type,
+                        struct xfrm_migrate *m, int num_bundles);
+#endif
 extern wait_queue_head_t km_waitq;
 extern int km_new_mapping(struct xfrm_state *x, xfrm_address_t *ipaddr, __be16 sport);
 extern void km_policy_expired(struct xfrm_policy *pol, int dir, int hard, u32 pid);
@@ -1053,5 +1077,25 @@ static inline void xfrm_aevent_doreplay(struct xfrm_state *x)
                xfrm_replay_notify(x, XFRM_REPLAY_UPDATE);
 }
+#ifdef CONFIG_XFRM_MIGRATE
+static inline struct xfrm_algo *xfrm_algo_clone(struct xfrm_algo *orig)
+{
+        return (struct xfrm_algo *)kmemdup(orig, sizeof(*orig) + orig->alg_key_len, GFP_KERNEL);
+}
+static inline void xfrm_states_put(struct xfrm_state **states, int n)
+{
+        int i;
+        for (i = 0; i < n; i++)
+                xfrm_state_put(*(states + i));
+}
+static inline void xfrm_states_delete(struct xfrm_state **states, int n)
+{
+        int i;
+        for (i = 0; i < n; i++)
+                xfrm_state_delete(*(states + i));
+}
+#endif
 #endif  /* _NET_XFRM_H */
diff --git a/net/xfrm/xfrm_policy.c b/net/xfrm/xfrm_policy.c
index b7e537fe2d7..825c60af772 100644
--- a/net/xfrm/xfrm_policy.c
+++ b/net/xfrm/xfrm_policy.c
@@ -2236,3 +2236,233 @@ void __init xfrm_init(void)
        xfrm_input_init();
 }
+#ifdef CONFIG_XFRM_MIGRATE
+static int xfrm_migrate_selector_match(struct xfrm_selector *sel_cmp,
+                                       struct xfrm_selector *sel_tgt)
+{
+        if (sel_cmp->proto == IPSEC_ULPROTO_ANY) {
+                if (sel_tgt->family == sel_cmp->family &&
+                    xfrm_addr_cmp(&sel_tgt->daddr, &sel_cmp->daddr,
+                                  sel_cmp->family) == 0 &&
+                    xfrm_addr_cmp(&sel_tgt->saddr, &sel_cmp->saddr,
+                                  sel_cmp->family) == 0 &&
+                    sel_tgt->prefixlen_d == sel_cmp->prefixlen_d &&
+                    sel_tgt->prefixlen_s == sel_cmp->prefixlen_s) {
+                        return 1;
+                }
+        } else {
+                if (memcmp(sel_tgt, sel_cmp, sizeof(*sel_tgt)) == 0) {
+                        return 1;
+                }
+        }
+        return 0;
+}
+static struct xfrm_policy * xfrm_migrate_policy_find(struct xfrm_selector *sel,
+                                                     u8 dir, u8 type)
+{
+        struct xfrm_policy *pol, *ret = NULL;
+        struct hlist_node *entry;
+        struct hlist_head *chain;
+        u32 priority = ~0U;
+        read_lock_bh(&xfrm_policy_lock);
+        chain = policy_hash_direct(&sel->daddr, &sel->saddr, sel->family, dir);
+        hlist_for_each_entry(pol, entry, chain, bydst) {
+                if (xfrm_migrate_selector_match(sel, &pol->selector) &&
+                    pol->type == type) {
+                        ret = pol;
+                        priority = ret->priority;
+                        break;
+                }
+        }
+        chain = &xfrm_policy_inexact[dir];
+        hlist_for_each_entry(pol, entry, chain, bydst) {
+                if (xfrm_migrate_selector_match(sel, &pol->selector) &&
+                    pol->type == type &&
+                    pol->priority < priority) {
+                        ret = pol;
+                        break;
+                }
+        }
+        if (ret)
+                xfrm_pol_hold(ret);
+        read_unlock_bh(&xfrm_policy_lock);
+        return ret;
+}
+static int migrate_tmpl_match(struct xfrm_migrate *m, struct xfrm_tmpl *t)
+{
+        int match = 0;
+        if (t->mode == m->mode && t->id.proto == m->proto &&
+            (m->reqid == 0 || t->reqid == m->reqid)) {
+                switch (t->mode) {
+                case XFRM_MODE_TUNNEL:
+                case XFRM_MODE_BEET:
+                        if (xfrm_addr_cmp(&t->id.daddr, &m->old_daddr,
+                                          m->old_family) == 0 &&
+                            xfrm_addr_cmp(&t->saddr, &m->old_saddr,
+                                          m->old_family) == 0) {
+                                match = 1;
+                        }
+                        break;
+                case XFRM_MODE_TRANSPORT:
+                        /* in case of transport mode, template does not store
+                           any IP addresses, hence we just compare mode and
+                           protocol */
+                        match = 1;
+                        break;
+                default:
+                        break;
+                }
+        }
+        return match;
+}
+/* update endpoint address(es) of template(s) */
+static int xfrm_policy_migrate(struct xfrm_policy *pol,
+                               struct xfrm_migrate *m, int num_migrate)
+{
+        struct xfrm_migrate *mp;
+        struct dst_entry *dst;
+        int i, j, n = 0;
+        write_lock_bh(&pol->lock);
+        if (unlikely(pol->dead)) {
+                /* target policy has been deleted */
+                write_unlock_bh(&pol->lock);
+                return -ENOENT;
+        }
+        for (i = 0; i < pol->xfrm_nr; i++) {
+                for (j = 0, mp = m; j < num_migrate; j++, mp++) {
+                        if (!migrate_tmpl_match(mp, &pol->xfrm_vec[i]))
+                                continue;
+                        n++;
+                        if (pol->xfrm_vec[i].mode != XFRM_MODE_TUNNEL)
+                                continue;
+                        /* update endpoints */
+                        memcpy(&pol->xfrm_vec[i].id.daddr, &mp->new_daddr,
+                               sizeof(pol->xfrm_vec[i].id.daddr));
+                        memcpy(&pol->xfrm_vec[i].saddr, &mp->new_saddr,
+                               sizeof(pol->xfrm_vec[i].saddr));
+                        pol->xfrm_vec[i].encap_family = mp->new_family;
+                        /* flush bundles */
+                        while ((dst = pol->bundles) != NULL) {
+                                pol->bundles = dst->next;
+                                dst_free(dst);
+                        }
+                }
+        }
+        write_unlock_bh(&pol->lock);
+        if (!n)
+                return -ENODATA;
+        return 0;
+}
+static int xfrm_migrate_check(struct xfrm_migrate *m, int num_migrate)
+{
+        int i, j;
+        if (num_migrate < 1 || num_migrate > XFRM_MAX_DEPTH)
+                return -EINVAL;
+        for (i = 0; i < num_migrate; i++) {
+                if ((xfrm_addr_cmp(&m[i].old_daddr, &m[i].new_daddr,
+                                   m[i].old_family) == 0) &&
+                    (xfrm_addr_cmp(&m[i].old_saddr, &m[i].new_saddr,
+                                   m[i].old_family) == 0))
+                        return -EINVAL;
+                if (xfrm_addr_any(&m[i].new_daddr, m[i].new_family) ||
+                    xfrm_addr_any(&m[i].new_saddr, m[i].new_family))
+                        return -EINVAL;
+                /* check if there is any duplicated entry */
+                for (j = i + 1; j < num_migrate; j++) {
+                        if (!memcmp(&m[i].old_daddr, &m[j].old_daddr,
+                                    sizeof(m[i].old_daddr)) &&
+                            !memcmp(&m[i].old_saddr, &m[j].old_saddr,
+                                    sizeof(m[i].old_saddr)) &&
+                            m[i].proto == m[j].proto &&
+                            m[i].mode == m[j].mode &&
+                            m[i].reqid == m[j].reqid &&
+                            m[i].old_family == m[j].old_family)
+                                return -EINVAL;
+                }
+        }
+        return 0;
+}
+int xfrm_migrate(struct xfrm_selector *sel, u8 dir, u8 type,
+                 struct xfrm_migrate *m, int num_migrate)
+{
+        int i, err, nx_cur = 0, nx_new = 0;
+        struct xfrm_policy *pol = NULL;
+        struct xfrm_state *x, *xc;
+        struct xfrm_state *x_cur[XFRM_MAX_DEPTH];
+        struct xfrm_state *x_new[XFRM_MAX_DEPTH];
+        struct xfrm_migrate *mp;
+        if ((err = xfrm_migrate_check(m, num_migrate)) < 0)
+                goto out;
+        /* Stage 1 - find policy */
+        if ((pol = xfrm_migrate_policy_find(sel, dir, type)) == NULL) {
+                err = -ENOENT;
+                goto out;
+        }
+        /* Stage 2 - find and update state(s) */
+        for (i = 0, mp = m; i < num_migrate; i++, mp++) {
+                if ((x = xfrm_migrate_state_find(mp))) {
+                        x_cur[nx_cur] = x;
+                        nx_cur++;
+                        if ((xc = xfrm_state_migrate(x, mp))) {
+                                x_new[nx_new] = xc;
+                                nx_new++;
+                        } else {
+                                err = -ENODATA;
+                                goto restore_state;
+                        }
+                }
+        }
+        /* Stage 3 - update policy */
+        if ((err = xfrm_policy_migrate(pol, m, num_migrate)) < 0)
+                goto restore_state;
+        /* Stage 4 - delete old state(s) */
+        if (nx_cur) {
+                xfrm_states_put(x_cur, nx_cur);
+                xfrm_states_delete(x_cur, nx_cur);
+        }
+        /* Stage 5 - announce */
+        km_migrate(sel, dir, type, m, num_migrate);
+        xfrm_pol_put(pol);
+        return 0;
+out:
+        return err;
+restore_state:
+        if (pol)
+                xfrm_pol_put(pol);
+        if (nx_cur)
+                xfrm_states_put(x_cur, nx_cur);
+        if (nx_new)
+                xfrm_states_delete(x_new, nx_new);
+        return err;
+}
+#endif
diff --git a/net/xfrm/xfrm_state.c b/net/xfrm/xfrm_state.c
index 24f7bfd07af..91b02687db5 100644
--- a/net/xfrm/xfrm_state.c
+++ b/net/xfrm/xfrm_state.c
@@ -828,6 +828,160 @@ out:
 }
 EXPORT_SYMBOL(xfrm_state_add);
+#ifdef CONFIG_XFRM_MIGRATE
+struct xfrm_state *xfrm_state_clone(struct xfrm_state *orig, int *errp)
+{
+        int err = -ENOMEM;
+        struct xfrm_state *x = xfrm_state_alloc();
+        if (!x)
+                goto error;
+        memcpy(&x->id, &orig->id, sizeof(x->id));
+        memcpy(&x->sel, &orig->sel, sizeof(x->sel));
+        memcpy(&x->lft, &orig->lft, sizeof(x->lft));
+        x->props.mode = orig->props.mode;
+        x->props.replay_window = orig->props.replay_window;
+        x->props.reqid = orig->props.reqid;
+        x->props.family = orig->props.family;
+        x->props.saddr = orig->props.saddr;
+        if (orig->aalg) {
+                x->aalg = xfrm_algo_clone(orig->aalg);
+                if (!x->aalg)
+                        goto error;
+        }
+        x->props.aalgo = orig->props.aalgo;
+        if (orig->ealg) {
+                x->ealg = xfrm_algo_clone(orig->ealg);
+                if (!x->ealg)
+                        goto error;
+        }
+        x->props.ealgo = orig->props.ealgo;
+        if (orig->calg) {
+                x->calg = xfrm_algo_clone(orig->calg);
+                if (!x->calg)
+                        goto error;
+        }
+        x->props.calgo = orig->props.calgo;
+        if (orig->encap) {
+                x->encap = kmemdup(orig->encap, sizeof(*x->encap), GFP_KERNEL);
+                if (!x->encap)
+                        goto error;
+        }
+        if (orig->coaddr) {
+                x->coaddr = kmemdup(orig->coaddr, sizeof(*x->coaddr),
+                                    GFP_KERNEL);
+                if (!x->coaddr)
+                        goto error;
+        }
+        err = xfrm_init_state(x);
+        if (err)
+                goto error;
+        x->props.flags = orig->props.flags;
+        x->curlft.add_time = orig->curlft.add_time;
+        x->km.state = orig->km.state;
+        x->km.seq = orig->km.seq;
+        return x;
+ error:
+        if (errp)
+                *errp = err;
+        if (x) {
+                kfree(x->aalg);
+                kfree(x->ealg);
+                kfree(x->calg);
+                kfree(x->encap);
+                kfree(x->coaddr);
+        }
+        kfree(x);
+        return NULL;
+}
+EXPORT_SYMBOL(xfrm_state_clone);
+/* xfrm_state_lock is held */
+struct xfrm_state * xfrm_migrate_state_find(struct xfrm_migrate *m)
+{
+        unsigned int h;
+        struct xfrm_state *x;
+        struct hlist_node *entry;
+        if (m->reqid) {
+                h = xfrm_dst_hash(&m->old_daddr, &m->old_saddr,
+                                  m->reqid, m->old_family);
+                hlist_for_each_entry(x, entry, xfrm_state_bydst+h, bydst) {
+                        if (x->props.mode != m->mode ||
+                            x->id.proto != m->proto)
+                                continue;
+                        if (m->reqid && x->props.reqid != m->reqid)
+                                continue;
+                        if (xfrm_addr_cmp(&x->id.daddr, &m->old_daddr,
+                                          m->old_family) ||
+                            xfrm_addr_cmp(&x->props.saddr, &m->old_saddr,
+                                          m->old_family))
+                                continue;
+                        xfrm_state_hold(x);
+                        return x;
+                }
+        } else {
+                h = xfrm_src_hash(&m->old_daddr, &m->old_saddr,
+                                  m->old_family);
+                hlist_for_each_entry(x, entry, xfrm_state_bysrc+h, bysrc) {
+                        if (x->props.mode != m->mode ||
+                            x->id.proto != m->proto)
+                                continue;
+                        if (xfrm_addr_cmp(&x->id.daddr, &m->old_daddr,
+                                          m->old_family) ||
+                            xfrm_addr_cmp(&x->props.saddr, &m->old_saddr,
+                                          m->old_family))
+                                continue;
+                        xfrm_state_hold(x);
+                        return x;
+                }
+        }
+        return NULL;
+}
+EXPORT_SYMBOL(xfrm_migrate_state_find);
+struct xfrm_state * xfrm_state_migrate(struct xfrm_state *x,
+                                       struct xfrm_migrate *m)
+{
+        struct xfrm_state *xc;
+        int err;
+        xc = xfrm_state_clone(x, &err);
+        if (!xc)
+                return NULL;
+        memcpy(&xc->id.daddr, &m->new_daddr, sizeof(xc->id.daddr));
+        memcpy(&xc->props.saddr, &m->new_saddr, sizeof(xc->props.saddr));
+        /* add state */
+        if (!xfrm_addr_cmp(&x->id.daddr, &m->new_daddr, m->new_family)) {
+                /* a care is needed when the destination address of the
+                   state is to be updated as it is a part of triplet */
+                xfrm_state_insert(xc);
+        } else {
+                if ((err = xfrm_state_add(xc)) < 0)
+                        goto error;
+        }
+        return xc;
+error:
+        kfree(xc);
+        return NULL;
+}
+EXPORT_SYMBOL(xfrm_state_migrate);
+#endif
 int xfrm_state_update(struct xfrm_state *x)
 {
        struct xfrm_state *x1;
@@ -1342,6 +1496,26 @@ void km_policy_expired(struct xfrm_policy *pol, int dir, int hard, u32 pid)
 }
 EXPORT_SYMBOL(km_policy_expired);
+int km_migrate(struct xfrm_selector *sel, u8 dir, u8 type,
+               struct xfrm_migrate *m, int num_migrate)
+{
+        int err = -EINVAL;
+        int ret;
+        struct xfrm_mgr *km;
+        read_lock(&xfrm_km_lock);
+        list_for_each_entry(km, &xfrm_km_list, list) {
+                if (km->migrate) {
+                        ret = km->migrate(sel, dir, type, m, num_migrate);
+                        if (!ret)
+                                err = ret;
+                }
+        }
+        read_unlock(&xfrm_km_lock);
+        return err;
+}
+EXPORT_SYMBOL(km_migrate);
 int km_report(u8 proto, struct xfrm_selector *sel, xfrm_address_t *addr)
 {
        int err = -EINVAL;

diff --git a/include/linux/xfrm.h b/include/linux/xfrm.h index 9529ea1ae39..15ca89e9961 100644 --- a/include/linux/xfrm.h +++ b/include/linux/xfrm.h
@@ -178,6 +178,9 @@ enum {
178	XFRM_MSG_REPORT,	178	XFRM_MSG_REPORT,
179	#define XFRM_MSG_REPORT XFRM_MSG_REPORT	179	#define XFRM_MSG_REPORT XFRM_MSG_REPORT
180		180
		181	XFRM_MSG_MIGRATE,
		182	#define XFRM_MSG_MIGRATE XFRM_MSG_MIGRATE
		183
181	__XFRM_MSG_MAX	184	__XFRM_MSG_MAX
182	};	185	};
183	#define XFRM_MSG_MAX (__XFRM_MSG_MAX - 1)	186	#define XFRM_MSG_MAX (__XFRM_MSG_MAX - 1)
@@ -256,6 +259,7 @@ enum xfrm_attr_type_t {
256	XFRMA_COADDR, /* xfrm_address_t */	259	XFRMA_COADDR, /* xfrm_address_t */
257	XFRMA_LASTUSED,	260	XFRMA_LASTUSED,
258	XFRMA_POLICY_TYPE, /* struct xfrm_userpolicy_type */	261	XFRMA_POLICY_TYPE, /* struct xfrm_userpolicy_type */
		262	XFRMA_MIGRATE,
259	__XFRMA_MAX	263	__XFRMA_MAX
260		264
261	#define XFRMA_MAX (__XFRMA_MAX - 1)	265	#define XFRMA_MAX (__XFRMA_MAX - 1)
@@ -351,6 +355,19 @@ struct xfrm_user_report {
351	struct xfrm_selector sel;	355	struct xfrm_selector sel;
352	};	356	};
353		357
		358	struct xfrm_user_migrate {
		359	xfrm_address_t old_daddr;
		360	xfrm_address_t old_saddr;
		361	xfrm_address_t new_daddr;
		362	xfrm_address_t new_saddr;
		363	__u8 proto;
		364	__u8 mode;
		365	__u16 reserved;
		366	__u32 reqid;
		367	__u16 old_family;
		368	__u16 new_family;
		369	};
		370
354	#ifndef __KERNEL__	371	#ifndef __KERNEL__
355	/* backwards compatibility for userspace */	372	/* backwards compatibility for userspace */
356	#define XFRMGRP_ACQUIRE 1	373	#define XFRMGRP_ACQUIRE 1
@@ -375,6 +392,8 @@ enum xfrm_nlgroups {
375	#define XFRMNLGRP_AEVENTS XFRMNLGRP_AEVENTS	392	#define XFRMNLGRP_AEVENTS XFRMNLGRP_AEVENTS
376	XFRMNLGRP_REPORT,	393	XFRMNLGRP_REPORT,
377	#define XFRMNLGRP_REPORT XFRMNLGRP_REPORT	394	#define XFRMNLGRP_REPORT XFRMNLGRP_REPORT
		395	XFRMNLGRP_MIGRATE,
		396	#define XFRMNLGRP_MIGRATE XFRMNLGRP_MIGRATE
378	__XFRMNLGRP_MAX	397	__XFRMNLGRP_MAX
379	};	398	};
380	#define XFRMNLGRP_MAX (__XFRMNLGRP_MAX - 1)	399	#define XFRMNLGRP_MAX (__XFRMNLGRP_MAX - 1)


diff --git a/include/net/xfrm.h b/include/net/xfrm.h index bf91d632901..16924cb772c 100644 --- a/include/net/xfrm.h +++ b/include/net/xfrm.h
@@ -362,6 +362,19 @@ struct xfrm_policy
362	struct xfrm_tmpl xfrm_vec[XFRM_MAX_DEPTH];	362	struct xfrm_tmpl xfrm_vec[XFRM_MAX_DEPTH];
363	};	363	};
364		364
		365	struct xfrm_migrate {
		366	xfrm_address_t old_daddr;
		367	xfrm_address_t old_saddr;
		368	xfrm_address_t new_daddr;
		369	xfrm_address_t new_saddr;
		370	u8 proto;
		371	u8 mode;
		372	u16 reserved;
		373	u32 reqid;
		374	u16 old_family;
		375	u16 new_family;
		376	};
		377
365	#define XFRM_KM_TIMEOUT 30	378	#define XFRM_KM_TIMEOUT 30
366	/* which seqno */	379	/* which seqno */
367	#define XFRM_REPLAY_SEQ 1	380	#define XFRM_REPLAY_SEQ 1
@@ -388,6 +401,7 @@ struct xfrm_mgr
388	int (new_mapping)(struct xfrm_state x, xfrm_address_t *ipaddr, __be16 sport);	401	int (new_mapping)(struct xfrm_state x, xfrm_address_t *ipaddr, __be16 sport);
389	int (notify_policy)(struct xfrm_policy x, int dir, struct km_event *c);	402	int (notify_policy)(struct xfrm_policy x, int dir, struct km_event *c);
390	int (report)(u8 proto, struct xfrm_selector sel, xfrm_address_t *addr);	403	int (report)(u8 proto, struct xfrm_selector sel, xfrm_address_t *addr);
		404	int (migrate)(struct xfrm_selector sel, u8 dir, u8 type, struct xfrm_migrate *m, int num_bundles);
391	};	405	};
392		406
393	extern int xfrm_register_km(struct xfrm_mgr *km);	407	extern int xfrm_register_km(struct xfrm_mgr *km);
@@ -988,6 +1002,16 @@ extern int xfrm_bundle_ok(struct xfrm_policy pol, struct xfrm_dst xdst,
988	struct flowi *fl, int family, int strict);	1002	struct flowi *fl, int family, int strict);
989	extern void xfrm_init_pmtu(struct dst_entry *dst);	1003	extern void xfrm_init_pmtu(struct dst_entry *dst);
990		1004
		1005	#ifdef CONFIG_XFRM_MIGRATE
		1006	extern int km_migrate(struct xfrm_selector *sel, u8 dir, u8 type,
		1007	struct xfrm_migrate *m, int num_bundles);
		1008	extern struct xfrm_state * xfrm_migrate_state_find(struct xfrm_migrate *m);
		1009	extern struct xfrm_state * xfrm_state_migrate(struct xfrm_state *x,
		1010	struct xfrm_migrate *m);
		1011	extern int xfrm_migrate(struct xfrm_selector *sel, u8 dir, u8 type,
		1012	struct xfrm_migrate *m, int num_bundles);
		1013	#endif
		1014
991	extern wait_queue_head_t km_waitq;	1015	extern wait_queue_head_t km_waitq;
992	extern int km_new_mapping(struct xfrm_state x, xfrm_address_t ipaddr, __be16 sport);	1016	extern int km_new_mapping(struct xfrm_state x, xfrm_address_t ipaddr, __be16 sport);
993	extern void km_policy_expired(struct xfrm_policy *pol, int dir, int hard, u32 pid);	1017	extern void km_policy_expired(struct xfrm_policy *pol, int dir, int hard, u32 pid);
@@ -1053,5 +1077,25 @@ static inline void xfrm_aevent_doreplay(struct xfrm_state *x)
1053	xfrm_replay_notify(x, XFRM_REPLAY_UPDATE);	1077	xfrm_replay_notify(x, XFRM_REPLAY_UPDATE);
1054	}	1078	}
1055		1079
		1080	#ifdef CONFIG_XFRM_MIGRATE
		1081	static inline struct xfrm_algo xfrm_algo_clone(struct xfrm_algo orig)
		1082	{
		1083	return (struct xfrm_algo )kmemdup(orig, sizeof(orig) + orig->alg_key_len, GFP_KERNEL);
		1084	}
		1085
		1086	static inline void xfrm_states_put(struct xfrm_state **states, int n)
		1087	{
		1088	int i;
		1089	for (i = 0; i < n; i++)
		1090	xfrm_state_put(*(states + i));
		1091	}
		1092
		1093	static inline void xfrm_states_delete(struct xfrm_state **states, int n)
		1094	{
		1095	int i;
		1096	for (i = 0; i < n; i++)
		1097	xfrm_state_delete(*(states + i));
		1098	}
		1099	#endif
1056		1100
1057	#endif /* _NET_XFRM_H */	1101	#endif /* _NET_XFRM_H */


diff --git a/net/xfrm/xfrm_policy.c b/net/xfrm/xfrm_policy.c index b7e537fe2d7..825c60af772 100644 --- a/net/xfrm/xfrm_policy.c +++ b/net/xfrm/xfrm_policy.c
@@ -2236,3 +2236,233 @@ void __init xfrm_init(void)
2236	xfrm_input_init();	2236	xfrm_input_init();
2237	}	2237	}
2238		2238
		2239	#ifdef CONFIG_XFRM_MIGRATE
		2240	static int xfrm_migrate_selector_match(struct xfrm_selector *sel_cmp,
		2241	struct xfrm_selector *sel_tgt)
		2242	{
		2243	if (sel_cmp->proto == IPSEC_ULPROTO_ANY) {
		2244	if (sel_tgt->family == sel_cmp->family &&
		2245	xfrm_addr_cmp(&sel_tgt->daddr, &sel_cmp->daddr,
		2246	sel_cmp->family) == 0 &&
		2247	xfrm_addr_cmp(&sel_tgt->saddr, &sel_cmp->saddr,
		2248	sel_cmp->family) == 0 &&
		2249	sel_tgt->prefixlen_d == sel_cmp->prefixlen_d &&
		2250	sel_tgt->prefixlen_s == sel_cmp->prefixlen_s) {
		2251	return 1;
		2252	}
		2253	} else {
		2254	if (memcmp(sel_tgt, sel_cmp, sizeof(*sel_tgt)) == 0) {
		2255	return 1;
		2256	}
		2257	}
		2258	return 0;
		2259	}
		2260
		2261	static struct xfrm_policy * xfrm_migrate_policy_find(struct xfrm_selector *sel,
		2262	u8 dir, u8 type)
		2263	{
		2264	struct xfrm_policy pol, ret = NULL;
		2265	struct hlist_node *entry;
		2266	struct hlist_head *chain;
		2267	u32 priority = ~0U;
		2268
		2269	read_lock_bh(&xfrm_policy_lock);
		2270	chain = policy_hash_direct(&sel->daddr, &sel->saddr, sel->family, dir);
		2271	hlist_for_each_entry(pol, entry, chain, bydst) {
		2272	if (xfrm_migrate_selector_match(sel, &pol->selector) &&
		2273	pol->type == type) {
		2274	ret = pol;
		2275	priority = ret->priority;
		2276	break;
		2277	}
		2278	}
		2279	chain = &xfrm_policy_inexact[dir];
		2280	hlist_for_each_entry(pol, entry, chain, bydst) {
		2281	if (xfrm_migrate_selector_match(sel, &pol->selector) &&
		2282	pol->type == type &&
		2283	pol->priority < priority) {
		2284	ret = pol;
		2285	break;
		2286	}
		2287	}
		2288
		2289	if (ret)
		2290	xfrm_pol_hold(ret);
		2291
		2292	read_unlock_bh(&xfrm_policy_lock);
		2293
		2294	return ret;
		2295	}
		2296
		2297	static int migrate_tmpl_match(struct xfrm_migrate m, struct xfrm_tmpl t)
		2298	{
		2299	int match = 0;
		2300
		2301	if (t->mode == m->mode && t->id.proto == m->proto &&
		2302	(m->reqid == 0 \|\| t->reqid == m->reqid)) {
		2303	switch (t->mode) {
		2304	case XFRM_MODE_TUNNEL:
		2305	case XFRM_MODE_BEET:
		2306	if (xfrm_addr_cmp(&t->id.daddr, &m->old_daddr,
		2307	m->old_family) == 0 &&
		2308	xfrm_addr_cmp(&t->saddr, &m->old_saddr,
		2309	m->old_family) == 0) {
		2310	match = 1;
		2311	}
		2312	break;
		2313	case XFRM_MODE_TRANSPORT:
		2314	/* in case of transport mode, template does not store
		2315	any IP addresses, hence we just compare mode and
		2316	protocol */
		2317	match = 1;
		2318	break;
		2319	default:
		2320	break;
		2321	}
		2322	}
		2323	return match;
		2324	}
		2325
		2326	/* update endpoint address(es) of template(s) */
		2327	static int xfrm_policy_migrate(struct xfrm_policy *pol,
		2328	struct xfrm_migrate *m, int num_migrate)
		2329	{
		2330	struct xfrm_migrate *mp;
		2331	struct dst_entry *dst;
		2332	int i, j, n = 0;
		2333
		2334	write_lock_bh(&pol->lock);
		2335	if (unlikely(pol->dead)) {
		2336	/* target policy has been deleted */
		2337	write_unlock_bh(&pol->lock);
		2338	return -ENOENT;
		2339	}
		2340
		2341	for (i = 0; i < pol->xfrm_nr; i++) {
		2342	for (j = 0, mp = m; j < num_migrate; j++, mp++) {
		2343	if (!migrate_tmpl_match(mp, &pol->xfrm_vec[i]))
		2344	continue;
		2345	n++;
		2346	if (pol->xfrm_vec[i].mode != XFRM_MODE_TUNNEL)
		2347	continue;
		2348	/* update endpoints */
		2349	memcpy(&pol->xfrm_vec[i].id.daddr, &mp->new_daddr,
		2350	sizeof(pol->xfrm_vec[i].id.daddr));
		2351	memcpy(&pol->xfrm_vec[i].saddr, &mp->new_saddr,
		2352	sizeof(pol->xfrm_vec[i].saddr));
		2353	pol->xfrm_vec[i].encap_family = mp->new_family;
		2354	/* flush bundles */
		2355	while ((dst = pol->bundles) != NULL) {
		2356	pol->bundles = dst->next;
		2357	dst_free(dst);
		2358	}
		2359	}
		2360	}
		2361
		2362	write_unlock_bh(&pol->lock);
		2363
		2364	if (!n)
		2365	return -ENODATA;
		2366
		2367	return 0;
		2368	}
		2369
		2370	static int xfrm_migrate_check(struct xfrm_migrate *m, int num_migrate)
		2371	{
		2372	int i, j;
		2373
		2374	if (num_migrate < 1 \|\| num_migrate > XFRM_MAX_DEPTH)
		2375	return -EINVAL;
		2376
		2377	for (i = 0; i < num_migrate; i++) {
		2378	if ((xfrm_addr_cmp(&m[i].old_daddr, &m[i].new_daddr,
		2379	m[i].old_family) == 0) &&
		2380	(xfrm_addr_cmp(&m[i].old_saddr, &m[i].new_saddr,
		2381	m[i].old_family) == 0))
		2382	return -EINVAL;
		2383	if (xfrm_addr_any(&m[i].new_daddr, m[i].new_family) \|\|
		2384	xfrm_addr_any(&m[i].new_saddr, m[i].new_family))
		2385	return -EINVAL;
		2386
		2387	/* check if there is any duplicated entry */
		2388	for (j = i + 1; j < num_migrate; j++) {
		2389	if (!memcmp(&m[i].old_daddr, &m[j].old_daddr,
		2390	sizeof(m[i].old_daddr)) &&
		2391	!memcmp(&m[i].old_saddr, &m[j].old_saddr,
		2392	sizeof(m[i].old_saddr)) &&
		2393	m[i].proto == m[j].proto &&
		2394	m[i].mode == m[j].mode &&
		2395	m[i].reqid == m[j].reqid &&
		2396	m[i].old_family == m[j].old_family)
		2397	return -EINVAL;
		2398	}
		2399	}
		2400
		2401	return 0;
		2402	}
		2403
		2404	int xfrm_migrate(struct xfrm_selector *sel, u8 dir, u8 type,
		2405	struct xfrm_migrate *m, int num_migrate)
		2406	{
		2407	int i, err, nx_cur = 0, nx_new = 0;
		2408	struct xfrm_policy *pol = NULL;
		2409	struct xfrm_state x, xc;
		2410	struct xfrm_state *x_cur[XFRM_MAX_DEPTH];
		2411	struct xfrm_state *x_new[XFRM_MAX_DEPTH];
		2412	struct xfrm_migrate *mp;
		2413
		2414	if ((err = xfrm_migrate_check(m, num_migrate)) < 0)
		2415	goto out;
		2416
		2417	/* Stage 1 - find policy */
		2418	if ((pol = xfrm_migrate_policy_find(sel, dir, type)) == NULL) {
		2419	err = -ENOENT;
		2420	goto out;
		2421	}
		2422
		2423	/* Stage 2 - find and update state(s) */
		2424	for (i = 0, mp = m; i < num_migrate; i++, mp++) {
		2425	if ((x = xfrm_migrate_state_find(mp))) {
		2426	x_cur[nx_cur] = x;
		2427	nx_cur++;
		2428	if ((xc = xfrm_state_migrate(x, mp))) {
		2429	x_new[nx_new] = xc;
		2430	nx_new++;
		2431	} else {
		2432	err = -ENODATA;
		2433	goto restore_state;
		2434	}
		2435	}
		2436	}
		2437
		2438	/* Stage 3 - update policy */
		2439	if ((err = xfrm_policy_migrate(pol, m, num_migrate)) < 0)
		2440	goto restore_state;
		2441
		2442	/* Stage 4 - delete old state(s) */
		2443	if (nx_cur) {
		2444	xfrm_states_put(x_cur, nx_cur);
		2445	xfrm_states_delete(x_cur, nx_cur);
		2446	}
		2447
		2448	/* Stage 5 - announce */
		2449	km_migrate(sel, dir, type, m, num_migrate);
		2450
		2451	xfrm_pol_put(pol);
		2452
		2453	return 0;
		2454	out:
		2455	return err;
		2456
		2457	restore_state:
		2458	if (pol)
		2459	xfrm_pol_put(pol);
		2460	if (nx_cur)
		2461	xfrm_states_put(x_cur, nx_cur);
		2462	if (nx_new)
		2463	xfrm_states_delete(x_new, nx_new);
		2464
		2465	return err;
		2466	}
		2467	#endif
		2468


diff --git a/net/xfrm/xfrm_state.c b/net/xfrm/xfrm_state.c index 24f7bfd07af..91b02687db5 100644 --- a/net/xfrm/xfrm_state.c +++ b/net/xfrm/xfrm_state.c
@@ -828,6 +828,160 @@ out:
828	}	828	}
829	EXPORT_SYMBOL(xfrm_state_add);	829	EXPORT_SYMBOL(xfrm_state_add);
830		830
		831	#ifdef CONFIG_XFRM_MIGRATE
		832	struct xfrm_state xfrm_state_clone(struct xfrm_state orig, int *errp)
		833	{
		834	int err = -ENOMEM;
		835	struct xfrm_state *x = xfrm_state_alloc();
		836	if (!x)
		837	goto error;
		838
		839	memcpy(&x->id, &orig->id, sizeof(x->id));
		840	memcpy(&x->sel, &orig->sel, sizeof(x->sel));
		841	memcpy(&x->lft, &orig->lft, sizeof(x->lft));
		842	x->props.mode = orig->props.mode;
		843	x->props.replay_window = orig->props.replay_window;
		844	x->props.reqid = orig->props.reqid;
		845	x->props.family = orig->props.family;
		846	x->props.saddr = orig->props.saddr;
		847
		848	if (orig->aalg) {
		849	x->aalg = xfrm_algo_clone(orig->aalg);
		850	if (!x->aalg)
		851	goto error;
		852	}
		853	x->props.aalgo = orig->props.aalgo;
		854
		855	if (orig->ealg) {
		856	x->ealg = xfrm_algo_clone(orig->ealg);
		857	if (!x->ealg)
		858	goto error;
		859	}
		860	x->props.ealgo = orig->props.ealgo;
		861
		862	if (orig->calg) {
		863	x->calg = xfrm_algo_clone(orig->calg);
		864	if (!x->calg)
		865	goto error;
		866	}
		867	x->props.calgo = orig->props.calgo;
		868
		869	if (orig->encap) {
		870	x->encap = kmemdup(orig->encap, sizeof(*x->encap), GFP_KERNEL);
		871	if (!x->encap)
		872	goto error;
		873	}
		874
		875	if (orig->coaddr) {
		876	x->coaddr = kmemdup(orig->coaddr, sizeof(*x->coaddr),
		877	GFP_KERNEL);
		878	if (!x->coaddr)
		879	goto error;
		880	}
		881
		882	err = xfrm_init_state(x);
		883	if (err)
		884	goto error;
		885
		886	x->props.flags = orig->props.flags;
		887
		888	x->curlft.add_time = orig->curlft.add_time;
		889	x->km.state = orig->km.state;
		890	x->km.seq = orig->km.seq;
		891
		892	return x;
		893
		894	error:
		895	if (errp)
		896	*errp = err;
		897	if (x) {
		898	kfree(x->aalg);
		899	kfree(x->ealg);
		900	kfree(x->calg);
		901	kfree(x->encap);
		902	kfree(x->coaddr);
		903	}
		904	kfree(x);
		905	return NULL;
		906	}
		907	EXPORT_SYMBOL(xfrm_state_clone);
		908
		909	/* xfrm_state_lock is held */
		910	struct xfrm_state * xfrm_migrate_state_find(struct xfrm_migrate *m)
		911	{
		912	unsigned int h;
		913	struct xfrm_state *x;
		914	struct hlist_node *entry;
		915
		916	if (m->reqid) {
		917	h = xfrm_dst_hash(&m->old_daddr, &m->old_saddr,
		918	m->reqid, m->old_family);
		919	hlist_for_each_entry(x, entry, xfrm_state_bydst+h, bydst) {
		920	if (x->props.mode != m->mode \|\|
		921	x->id.proto != m->proto)
		922	continue;
		923	if (m->reqid && x->props.reqid != m->reqid)
		924	continue;
		925	if (xfrm_addr_cmp(&x->id.daddr, &m->old_daddr,
		926	m->old_family) \|\|
		927	xfrm_addr_cmp(&x->props.saddr, &m->old_saddr,
		928	m->old_family))
		929	continue;
		930	xfrm_state_hold(x);
		931	return x;
		932	}
		933	} else {
		934	h = xfrm_src_hash(&m->old_daddr, &m->old_saddr,
		935	m->old_family);
		936	hlist_for_each_entry(x, entry, xfrm_state_bysrc+h, bysrc) {
		937	if (x->props.mode != m->mode \|\|
		938	x->id.proto != m->proto)
		939	continue;
		940	if (xfrm_addr_cmp(&x->id.daddr, &m->old_daddr,
		941	m->old_family) \|\|
		942	xfrm_addr_cmp(&x->props.saddr, &m->old_saddr,
		943	m->old_family))
		944	continue;
		945	xfrm_state_hold(x);
		946	return x;
		947	}
		948	}
		949
		950	return NULL;
		951	}
		952	EXPORT_SYMBOL(xfrm_migrate_state_find);
		953
		954	struct xfrm_state * xfrm_state_migrate(struct xfrm_state *x,
		955	struct xfrm_migrate *m)
		956	{
		957	struct xfrm_state *xc;
		958	int err;
		959
		960	xc = xfrm_state_clone(x, &err);
		961	if (!xc)
		962	return NULL;
		963
		964	memcpy(&xc->id.daddr, &m->new_daddr, sizeof(xc->id.daddr));
		965	memcpy(&xc->props.saddr, &m->new_saddr, sizeof(xc->props.saddr));
		966
		967	/* add state */
		968	if (!xfrm_addr_cmp(&x->id.daddr, &m->new_daddr, m->new_family)) {
		969	/* a care is needed when the destination address of the
		970	state is to be updated as it is a part of triplet */
		971	xfrm_state_insert(xc);
		972	} else {
		973	if ((err = xfrm_state_add(xc)) < 0)
		974	goto error;
		975	}
		976
		977	return xc;
		978	error:
		979	kfree(xc);
		980	return NULL;
		981	}
		982	EXPORT_SYMBOL(xfrm_state_migrate);
		983	#endif
		984
831	int xfrm_state_update(struct xfrm_state *x)	985	int xfrm_state_update(struct xfrm_state *x)
832	{	986	{
833	struct xfrm_state *x1;	987	struct xfrm_state *x1;
@@ -1342,6 +1496,26 @@ void km_policy_expired(struct xfrm_policy *pol, int dir, int hard, u32 pid)
1342	}	1496	}
1343	EXPORT_SYMBOL(km_policy_expired);	1497	EXPORT_SYMBOL(km_policy_expired);
1344		1498
		1499	int km_migrate(struct xfrm_selector *sel, u8 dir, u8 type,
		1500	struct xfrm_migrate *m, int num_migrate)
		1501	{
		1502	int err = -EINVAL;
		1503	int ret;
		1504	struct xfrm_mgr *km;
		1505
		1506	read_lock(&xfrm_km_lock);
		1507	list_for_each_entry(km, &xfrm_km_list, list) {
		1508	if (km->migrate) {
		1509	ret = km->migrate(sel, dir, type, m, num_migrate);
		1510	if (!ret)
		1511	err = ret;
		1512	}
		1513	}
		1514	read_unlock(&xfrm_km_lock);
		1515	return err;
		1516	}
		1517	EXPORT_SYMBOL(km_migrate);
		1518
1345	int km_report(u8 proto, struct xfrm_selector sel, xfrm_address_t addr)	1519	int km_report(u8 proto, struct xfrm_selector sel, xfrm_address_t addr)
1346	{	1520	{
1347	int err = -EINVAL;	1521	int err = -EINVAL;