diff options
| author | YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org> | 2006-03-20 19:55:08 -0500 |
|---|---|---|
| committer | David S. Miller <davem@davemloft.net> | 2006-03-20 19:55:08 -0500 |
| commit | 65f5c7c1143fb8eed5bc7e7d8c926346e00fe3c0 (patch) | |
| tree | fb61c9f73577a7fec29b11039d1434b972796d8b | |
| parent | 073a8e0e154c1c440e0b33aaa887473d5cc843f4 (diff) | |
[IPV6]: ROUTE: Add accept_ra_defrtr sysctl.
This controls whether we accept default router information
in RAs.
Signed-off-by: YOSHIFUJI Hideaki <yoshfuji@linux-ipv6.org>
Signed-off-by: David S. Miller <davem@davemloft.net>
| -rw-r--r-- | Documentation/networking/ip-sysctl.txt | 6 | ||||
| -rw-r--r-- | include/linux/ipv6.h | 2 | ||||
| -rw-r--r-- | include/linux/sysctl.h | 1 | ||||
| -rw-r--r-- | net/ipv6/addrconf.c | 11 | ||||
| -rw-r--r-- | net/ipv6/ndisc.c | 7 |
5 files changed, 26 insertions, 1 deletions
diff --git a/Documentation/networking/ip-sysctl.txt b/Documentation/networking/ip-sysctl.txt index 26364d06ae92..8001faa76ea2 100644 --- a/Documentation/networking/ip-sysctl.txt +++ b/Documentation/networking/ip-sysctl.txt | |||
| @@ -717,6 +717,12 @@ accept_ra - BOOLEAN | |||
| 717 | Functional default: enabled if local forwarding is disabled. | 717 | Functional default: enabled if local forwarding is disabled. |
| 718 | disabled if local forwarding is enabled. | 718 | disabled if local forwarding is enabled. |
| 719 | 719 | ||
| 720 | accept_ra_defrtr - BOOLEAN | ||
| 721 | Learn default router in Router Advertisement. | ||
| 722 | |||
| 723 | Functional default: enabled if accept_ra is enabled. | ||
| 724 | disabled if accept_ra is disabled. | ||
| 725 | |||
| 720 | accept_redirects - BOOLEAN | 726 | accept_redirects - BOOLEAN |
| 721 | Accept Redirects. | 727 | Accept Redirects. |
| 722 | 728 | ||
diff --git a/include/linux/ipv6.h b/include/linux/ipv6.h index 9c8f4c9ed429..c5131a02869a 100644 --- a/include/linux/ipv6.h +++ b/include/linux/ipv6.h | |||
| @@ -145,6 +145,7 @@ struct ipv6_devconf { | |||
| 145 | __s32 max_desync_factor; | 145 | __s32 max_desync_factor; |
| 146 | #endif | 146 | #endif |
| 147 | __s32 max_addresses; | 147 | __s32 max_addresses; |
| 148 | __s32 accept_ra_defrtr; | ||
| 148 | void *sysctl; | 149 | void *sysctl; |
| 149 | }; | 150 | }; |
| 150 | 151 | ||
| @@ -167,6 +168,7 @@ enum { | |||
| 167 | DEVCONF_MAX_DESYNC_FACTOR, | 168 | DEVCONF_MAX_DESYNC_FACTOR, |
| 168 | DEVCONF_MAX_ADDRESSES, | 169 | DEVCONF_MAX_ADDRESSES, |
| 169 | DEVCONF_FORCE_MLD_VERSION, | 170 | DEVCONF_FORCE_MLD_VERSION, |
| 171 | DEVCONF_ACCEPT_RA_DEFRTR, | ||
| 170 | DEVCONF_MAX | 172 | DEVCONF_MAX |
| 171 | }; | 173 | }; |
| 172 | 174 | ||
diff --git a/include/linux/sysctl.h b/include/linux/sysctl.h index bac61db26456..0f494137d037 100644 --- a/include/linux/sysctl.h +++ b/include/linux/sysctl.h | |||
| @@ -531,6 +531,7 @@ enum { | |||
| 531 | NET_IPV6_MAX_DESYNC_FACTOR=15, | 531 | NET_IPV6_MAX_DESYNC_FACTOR=15, |
| 532 | NET_IPV6_MAX_ADDRESSES=16, | 532 | NET_IPV6_MAX_ADDRESSES=16, |
| 533 | NET_IPV6_FORCE_MLD_VERSION=17, | 533 | NET_IPV6_FORCE_MLD_VERSION=17, |
| 534 | NET_IPV6_ACCEPT_RA_DEFRTR=18, | ||
| 534 | __NET_IPV6_MAX | 535 | __NET_IPV6_MAX |
| 535 | }; | 536 | }; |
| 536 | 537 | ||
diff --git a/net/ipv6/addrconf.c b/net/ipv6/addrconf.c index 8a8895ef09a7..fbcdcc6ba93b 100644 --- a/net/ipv6/addrconf.c +++ b/net/ipv6/addrconf.c | |||
| @@ -165,6 +165,7 @@ struct ipv6_devconf ipv6_devconf = { | |||
| 165 | .max_desync_factor = MAX_DESYNC_FACTOR, | 165 | .max_desync_factor = MAX_DESYNC_FACTOR, |
| 166 | #endif | 166 | #endif |
| 167 | .max_addresses = IPV6_MAX_ADDRESSES, | 167 | .max_addresses = IPV6_MAX_ADDRESSES, |
| 168 | .accept_ra_defrtr = 1, | ||
| 168 | }; | 169 | }; |
| 169 | 170 | ||
| 170 | static struct ipv6_devconf ipv6_devconf_dflt = { | 171 | static struct ipv6_devconf ipv6_devconf_dflt = { |
| @@ -186,6 +187,7 @@ static struct ipv6_devconf ipv6_devconf_dflt = { | |||
| 186 | .max_desync_factor = MAX_DESYNC_FACTOR, | 187 | .max_desync_factor = MAX_DESYNC_FACTOR, |
| 187 | #endif | 188 | #endif |
| 188 | .max_addresses = IPV6_MAX_ADDRESSES, | 189 | .max_addresses = IPV6_MAX_ADDRESSES, |
| 190 | .accept_ra_defrtr = 1, | ||
| 189 | }; | 191 | }; |
| 190 | 192 | ||
| 191 | /* IPv6 Wildcard Address and Loopback Address defined by RFC2553 */ | 193 | /* IPv6 Wildcard Address and Loopback Address defined by RFC2553 */ |
| @@ -3116,6 +3118,7 @@ static void inline ipv6_store_devconf(struct ipv6_devconf *cnf, | |||
| 3116 | array[DEVCONF_MAX_DESYNC_FACTOR] = cnf->max_desync_factor; | 3118 | array[DEVCONF_MAX_DESYNC_FACTOR] = cnf->max_desync_factor; |
| 3117 | #endif | 3119 | #endif |
| 3118 | array[DEVCONF_MAX_ADDRESSES] = cnf->max_addresses; | 3120 | array[DEVCONF_MAX_ADDRESSES] = cnf->max_addresses; |
| 3121 | array[DEVCONF_ACCEPT_RA_DEFRTR] = cnf->accept_ra_defrtr; | ||
| 3119 | } | 3122 | } |
| 3120 | 3123 | ||
| 3121 | static int inet6_fill_ifinfo(struct sk_buff *skb, struct inet6_dev *idev, | 3124 | static int inet6_fill_ifinfo(struct sk_buff *skb, struct inet6_dev *idev, |
| @@ -3569,6 +3572,14 @@ static struct addrconf_sysctl_table | |||
| 3569 | .proc_handler = &proc_dointvec, | 3572 | .proc_handler = &proc_dointvec, |
| 3570 | }, | 3573 | }, |
| 3571 | { | 3574 | { |
| 3575 | .ctl_name = NET_IPV6_ACCEPT_RA_DEFRTR, | ||
| 3576 | .procname = "accept_ra_defrtr", | ||
| 3577 | .data = &ipv6_devconf.accept_ra_defrtr, | ||
| 3578 | .maxlen = sizeof(int), | ||
| 3579 | .mode = 0644, | ||
| 3580 | .proc_handler = &proc_dointvec, | ||
| 3581 | }, | ||
| 3582 | { | ||
| 3572 | .ctl_name = 0, /* sentinel */ | 3583 | .ctl_name = 0, /* sentinel */ |
| 3573 | } | 3584 | } |
| 3574 | }, | 3585 | }, |
diff --git a/net/ipv6/ndisc.c b/net/ipv6/ndisc.c index cb8856b1d951..e17116796059 100644 --- a/net/ipv6/ndisc.c +++ b/net/ipv6/ndisc.c | |||
| @@ -1019,7 +1019,7 @@ static void ndisc_router_discovery(struct sk_buff *skb) | |||
| 1019 | struct ra_msg *ra_msg = (struct ra_msg *) skb->h.raw; | 1019 | struct ra_msg *ra_msg = (struct ra_msg *) skb->h.raw; |
| 1020 | struct neighbour *neigh = NULL; | 1020 | struct neighbour *neigh = NULL; |
| 1021 | struct inet6_dev *in6_dev; | 1021 | struct inet6_dev *in6_dev; |
| 1022 | struct rt6_info *rt; | 1022 | struct rt6_info *rt = NULL; |
| 1023 | int lifetime; | 1023 | int lifetime; |
| 1024 | struct ndisc_options ndopts; | 1024 | struct ndisc_options ndopts; |
| 1025 | int optlen; | 1025 | int optlen; |
| @@ -1081,6 +1081,9 @@ static void ndisc_router_discovery(struct sk_buff *skb) | |||
| 1081 | (ra_msg->icmph.icmp6_addrconf_other ? | 1081 | (ra_msg->icmph.icmp6_addrconf_other ? |
| 1082 | IF_RA_OTHERCONF : 0); | 1082 | IF_RA_OTHERCONF : 0); |
| 1083 | 1083 | ||
| 1084 | if (!in6_dev->cnf.accept_ra_defrtr) | ||
| 1085 | goto skip_defrtr; | ||
| 1086 | |||
| 1084 | lifetime = ntohs(ra_msg->icmph.icmp6_rt_lifetime); | 1087 | lifetime = ntohs(ra_msg->icmph.icmp6_rt_lifetime); |
| 1085 | 1088 | ||
| 1086 | rt = rt6_get_dflt_router(&skb->nh.ipv6h->saddr, skb->dev); | 1089 | rt = rt6_get_dflt_router(&skb->nh.ipv6h->saddr, skb->dev); |
| @@ -1128,6 +1131,8 @@ static void ndisc_router_discovery(struct sk_buff *skb) | |||
| 1128 | rt->u.dst.metrics[RTAX_HOPLIMIT-1] = ra_msg->icmph.icmp6_hop_limit; | 1131 | rt->u.dst.metrics[RTAX_HOPLIMIT-1] = ra_msg->icmph.icmp6_hop_limit; |
| 1129 | } | 1132 | } |
| 1130 | 1133 | ||
| 1134 | skip_defrtr: | ||
| 1135 | |||
| 1131 | /* | 1136 | /* |
| 1132 | * Update Reachable Time and Retrans Timer | 1137 | * Update Reachable Time and Retrans Timer |
| 1133 | */ | 1138 | */ |