1 /* SPDX-License-Identifier: LGPL-2.1-or-later */
3 Copyright © 2017 Intel Corporation. All rights reserved.
6 #include <netinet/icmp6.h>
7 #include <netinet/in.h>
12 #include "alloc-util.h"
13 #include "dns-domain.h"
14 #include "ether-addr-util.h"
15 #include "event-util.h"
17 #include "icmp6-util.h"
18 #include "in-addr-util.h"
19 #include "iovec-util.h"
21 #include "memory-util.h"
22 #include "ndisc-router-solicit-internal.h"
23 #include "network-common.h"
24 #include "radv-internal.h"
25 #include "random-util.h"
26 #include "socket-util.h"
27 #include "string-util.h"
29 #include "unaligned.h"
31 int sd_radv_new(sd_radv
**ret
) {
32 _cleanup_(sd_radv_unrefp
) sd_radv
*ra
= NULL
;
34 assert_return(ret
, -EINVAL
);
43 .lifetime_usec
= RADV_DEFAULT_ROUTER_LIFETIME_USEC
,
51 int sd_radv_attach_event(sd_radv
*ra
, sd_event
*event
, int64_t priority
) {
54 assert_return(ra
, -EINVAL
);
55 assert_return(!ra
->event
, -EBUSY
);
58 ra
->event
= sd_event_ref(event
);
60 r
= sd_event_default(&ra
->event
);
65 ra
->event_priority
= priority
;
70 int sd_radv_detach_event(sd_radv
*ra
) {
72 assert_return(ra
, -EINVAL
);
74 ra
->event
= sd_event_unref(ra
->event
);
78 sd_event
*sd_radv_get_event(sd_radv
*ra
) {
79 assert_return(ra
, NULL
);
84 int sd_radv_is_running(sd_radv
*ra
) {
88 return ra
->state
!= RADV_STATE_IDLE
;
91 static void radv_reset(sd_radv
*ra
) {
94 (void) event_source_disable(ra
->timeout_event_source
);
96 ra
->recv_event_source
= sd_event_source_disable_unref(ra
->recv_event_source
);
101 static sd_radv
*radv_free(sd_radv
*ra
) {
105 LIST_CLEAR(prefix
, ra
->prefixes
, sd_radv_prefix_unref
);
106 LIST_CLEAR(prefix
, ra
->route_prefixes
, sd_radv_route_prefix_unref
);
107 LIST_CLEAR(prefix
, ra
->pref64_prefixes
, sd_radv_pref64_prefix_unref
);
114 sd_event_source_unref(ra
->timeout_event_source
);
115 sd_radv_detach_event(ra
);
117 ra
->fd
= safe_close(ra
->fd
);
123 DEFINE_PUBLIC_TRIVIAL_REF_UNREF_FUNC(sd_radv
, sd_radv
, radv_free
);
125 static bool router_lifetime_is_valid(usec_t lifetime_usec
) {
126 assert_cc(RADV_MAX_ROUTER_LIFETIME_USEC
<= UINT16_MAX
* USEC_PER_SEC
);
127 return lifetime_usec
== 0 ||
128 (lifetime_usec
>= RADV_MIN_ROUTER_LIFETIME_USEC
&&
129 lifetime_usec
<= RADV_MAX_ROUTER_LIFETIME_USEC
);
132 static int radv_send_router_on_stop(sd_radv
*ra
) {
133 static const struct nd_router_advert adv
= {
134 .nd_ra_type
= ND_ROUTER_ADVERT
,
137 _cleanup_set_free_ Set
*options
= NULL
;
143 r
= sd_event_now(ra
->event
, CLOCK_BOOTTIME
, &time_now
);
147 if (!ether_addr_is_null(&ra
->mac_addr
)) {
148 r
= ndisc_option_set_link_layer_address(&options
, SD_NDISC_OPTION_SOURCE_LL_ADDRESS
, &ra
->mac_addr
);
153 return ndisc_send(ra
->fd
, &IN6_ADDR_ALL_NODES_MULTICAST
, &adv
.nd_ra_hdr
, options
, time_now
);
156 static int radv_send_router(sd_radv
*ra
, const struct in6_addr
*dst
) {
159 struct sockaddr_in6 dst_addr
= {
160 .sin6_family
= AF_INET6
,
161 .sin6_addr
= IN6_ADDR_ALL_NODES_MULTICAST
,
163 struct nd_router_advert adv
= {
164 .nd_ra_type
= ND_ROUTER_ADVERT
,
165 .nd_ra_router_lifetime
= usec_to_be16_sec(ra
->lifetime_usec
),
166 .nd_ra_retransmit
= usec_to_be32_msec(ra
->retransmit_usec
),
169 struct nd_opt_hdr opthdr
;
170 struct ether_addr slladdr
;
171 } _packed_ opt_mac
= {
173 .nd_opt_type
= ND_OPT_SOURCE_LINKADDR
,
174 .nd_opt_len
= DIV_ROUND_UP(sizeof(struct nd_opt_hdr
) + sizeof(struct ether_addr
), 8),
176 .slladdr
= ra
->mac_addr
,
178 struct nd_opt_mtu opt_mtu
= {
179 .nd_opt_mtu_type
= ND_OPT_MTU
,
181 .nd_opt_mtu_mtu
= htobe32(ra
->mtu
),
183 /* Reserve iov space for RA header, linkaddr, MTU, N prefixes, N routes, N pref64 prefixes, RDNSS,
184 * DNSSL, and home agent. */
185 struct iovec iov
[6 + ra
->n_prefixes
+ ra
->n_route_prefixes
+ ra
->n_pref64_prefixes
];
186 struct msghdr msg
= {
187 .msg_name
= &dst_addr
,
188 .msg_namelen
= sizeof(dst_addr
),
194 r
= sd_event_now(ra
->event
, CLOCK_BOOTTIME
, &time_now
);
198 if (dst
&& in6_addr_is_set(dst
))
199 dst_addr
.sin6_addr
= *dst
;
201 /* The nd_ra_curhoplimit and nd_ra_flags_reserved fields cannot specified with nd_ra_router_lifetime
202 * simultaneously in the structured initializer in the above. */
203 adv
.nd_ra_curhoplimit
= ra
->hop_limit
;
204 adv
.nd_ra_flags_reserved
= ra
->flags
;
205 iov
[msg
.msg_iovlen
++] = IOVEC_MAKE(&adv
, sizeof(adv
));
207 /* MAC address is optional, either because the link does not use L2 addresses or load sharing is
208 * desired. See RFC 4861, Section 4.2. */
209 if (!ether_addr_is_null(&ra
->mac_addr
))
210 iov
[msg
.msg_iovlen
++] = IOVEC_MAKE(&opt_mac
, sizeof(opt_mac
));
213 iov
[msg
.msg_iovlen
++] = IOVEC_MAKE(&opt_mtu
, sizeof(opt_mtu
));
215 LIST_FOREACH(prefix
, p
, ra
->prefixes
) {
216 usec_t lifetime_valid_usec
, lifetime_preferred_usec
;
218 lifetime_valid_usec
= MIN(usec_sub_unsigned(p
->valid_until
, time_now
),
219 p
->lifetime_valid_usec
);
221 lifetime_preferred_usec
= MIN3(usec_sub_unsigned(p
->preferred_until
, time_now
),
222 p
->lifetime_preferred_usec
,
223 lifetime_valid_usec
);
225 p
->opt
.lifetime_valid
= usec_to_be32_sec(lifetime_valid_usec
);
226 p
->opt
.lifetime_preferred
= usec_to_be32_sec(lifetime_preferred_usec
);
228 iov
[msg
.msg_iovlen
++] = IOVEC_MAKE(&p
->opt
, sizeof(p
->opt
));
231 LIST_FOREACH(prefix
, rt
, ra
->route_prefixes
) {
232 rt
->opt
.lifetime
= usec_to_be32_sec(MIN(usec_sub_unsigned(rt
->valid_until
, time_now
),
235 iov
[msg
.msg_iovlen
++] = IOVEC_MAKE(&rt
->opt
, sizeof(rt
->opt
));
238 LIST_FOREACH(prefix
, p
, ra
->pref64_prefixes
)
239 iov
[msg
.msg_iovlen
++] = IOVEC_MAKE(&p
->opt
, sizeof(p
->opt
));
242 iov
[msg
.msg_iovlen
++] = IOVEC_MAKE(ra
->rdnss
, ra
->rdnss
->length
* 8);
245 iov
[msg
.msg_iovlen
++] = IOVEC_MAKE(ra
->dnssl
, ra
->dnssl
->length
* 8);
247 if (FLAGS_SET(ra
->flags
, ND_RA_FLAG_HOME_AGENT
)) {
248 ra
->home_agent
.nd_opt_home_agent_info_type
= ND_OPT_HOME_AGENT_INFO
;
249 ra
->home_agent
.nd_opt_home_agent_info_len
= 1;
251 /* 0 means to place the current Router Lifetime value */
252 if (ra
->home_agent
.nd_opt_home_agent_info_lifetime
== 0)
253 ra
->home_agent
.nd_opt_home_agent_info_lifetime
= adv
.nd_ra_router_lifetime
;
255 iov
[msg
.msg_iovlen
++] = IOVEC_MAKE(&ra
->home_agent
, sizeof(ra
->home_agent
));
258 if (sendmsg(ra
->fd
, &msg
, 0) < 0)
264 static int radv_process_packet(sd_radv
*ra
, ICMP6Packet
*packet
) {
270 if (icmp6_packet_get_type(packet
) != ND_ROUTER_SOLICIT
)
271 return log_radv_errno(ra
, SYNTHETIC_ERRNO(EBADMSG
), "Received ICMP6 packet with unexpected type, ignoring.");
273 _cleanup_(sd_ndisc_router_solicit_unrefp
) sd_ndisc_router_solicit
*rs
= NULL
;
274 rs
= ndisc_router_solicit_new(packet
);
276 return log_oom_debug();
278 r
= ndisc_router_solicit_parse(ra
, rs
);
282 struct in6_addr src
= {};
283 r
= sd_ndisc_router_solicit_get_sender_address(rs
, &src
);
284 if (r
< 0 && r
!= -ENODATA
) /* null address is allowed */
285 return log_radv_errno(ra
, r
, "Failed to get sender address of RS, ignoring: %m");
286 if (r
>= 0 && in6_addr_equal(&src
, &ra
->ipv6ll
))
287 /* This should be definitely caused by a misconfiguration. If we send RA to ourself, the
288 * kernel complains about that. Let's ignore the packet. */
289 return log_radv_errno(ra
, SYNTHETIC_ERRNO(EADDRINUSE
), "Received RS from the same interface, ignoring.");
291 r
= radv_send_router(ra
, &src
);
293 return log_radv_errno(ra
, r
, "Unable to send solicited Router Advertisement to %s, ignoring: %m", IN6_ADDR_TO_STRING(&src
));
295 log_radv(ra
, "Sent solicited Router Advertisement to %s.", IN6_ADDR_TO_STRING(&src
));
299 static int radv_recv(sd_event_source
*s
, int fd
, uint32_t revents
, void *userdata
) {
300 _cleanup_(icmp6_packet_unrefp
) ICMP6Packet
*packet
= NULL
;
301 sd_radv
*ra
= ASSERT_PTR(userdata
);
306 r
= icmp6_packet_receive(fd
, &packet
);
308 log_radv_errno(ra
, r
, "Failed to receive ICMPv6 packet, ignoring: %m");
312 (void) radv_process_packet(ra
, packet
);
316 static int radv_timeout(sd_event_source
*s
, uint64_t usec
, void *userdata
) {
317 usec_t min_timeout
, max_timeout
, time_now
, timeout
;
318 sd_radv
*ra
= ASSERT_PTR(userdata
);
323 assert(router_lifetime_is_valid(ra
->lifetime_usec
));
325 r
= sd_event_now(ra
->event
, CLOCK_BOOTTIME
, &time_now
);
329 r
= radv_send_router(ra
, NULL
);
331 log_radv_errno(ra
, r
, "Unable to send Router Advertisement, ignoring: %m");
333 /* RFC 4861, Section 6.2.4, sending initial Router Advertisements */
334 if (ra
->ra_sent
< RADV_MAX_INITIAL_RTR_ADVERTISEMENTS
)
335 max_timeout
= RADV_MAX_INITIAL_RTR_ADVERT_INTERVAL_USEC
;
337 max_timeout
= RADV_DEFAULT_MAX_TIMEOUT_USEC
;
339 /* RFC 4861, Section 6.2.1, lifetime must be at least MaxRtrAdvInterval,
340 * so lower the interval here */
341 if (ra
->lifetime_usec
> 0)
342 max_timeout
= MIN(max_timeout
, ra
->lifetime_usec
);
344 if (max_timeout
>= 9 * USEC_PER_SEC
)
345 min_timeout
= max_timeout
/ 3;
347 min_timeout
= max_timeout
* 3 / 4;
349 /* RFC 4861, Section 6.2.1.
350 * MaxRtrAdvInterval MUST be no less than 4 seconds and no greater than 1800 seconds.
351 * MinRtrAdvInterval MUST be no less than 3 seconds and no greater than .75 * MaxRtrAdvInterval. */
352 assert(max_timeout
>= RADV_MIN_MAX_TIMEOUT_USEC
);
353 assert(max_timeout
<= RADV_MAX_MAX_TIMEOUT_USEC
);
354 assert(min_timeout
>= RADV_MIN_MIN_TIMEOUT_USEC
);
355 assert(min_timeout
<= max_timeout
* 3 / 4);
357 timeout
= min_timeout
+ random_u64_range(max_timeout
- min_timeout
);
358 log_radv(ra
, "Next Router Advertisement in %s", FORMAT_TIMESPAN(timeout
, USEC_PER_SEC
));
360 r
= event_reset_time(ra
->event
, &ra
->timeout_event_source
,
362 usec_add(time_now
, timeout
), MSEC_PER_SEC
,
364 ra
->event_priority
, "radv-timeout", true);
378 int sd_radv_stop(sd_radv
*ra
) {
384 if (ra
->state
== RADV_STATE_IDLE
)
387 log_radv(ra
, "Stopping IPv6 Router Advertisement daemon");
389 /* RFC 4861, Section 6.2.5:
390 * the router SHOULD transmit one or more (but not more than MAX_FINAL_RTR_ADVERTISEMENTS) final
391 * multicast Router Advertisements on the interface with a Router Lifetime field of zero. */
392 r
= radv_send_router_on_stop(ra
);
394 log_radv_errno(ra
, r
, "Unable to send last Router Advertisement with router lifetime set to zero, ignoring: %m");
397 ra
->fd
= safe_close(ra
->fd
);
398 ra
->state
= RADV_STATE_IDLE
;
403 static int radv_setup_recv_event(sd_radv
*ra
) {
408 assert(ra
->ifindex
> 0);
410 _cleanup_close_
int fd
= -EBADF
;
411 fd
= icmp6_bind(ra
->ifindex
, /* is_router = */ true);
415 _cleanup_(sd_event_source_unrefp
) sd_event_source
*s
= NULL
;
416 r
= sd_event_add_io(ra
->event
, &s
, fd
, EPOLLIN
, radv_recv
, ra
);
420 r
= sd_event_source_set_priority(s
, ra
->event_priority
);
424 (void) sd_event_source_set_description(s
, "radv-receive-message");
426 ra
->fd
= TAKE_FD(fd
);
427 ra
->recv_event_source
= TAKE_PTR(s
);
431 int sd_radv_start(sd_radv
*ra
) {
434 assert_return(ra
, -EINVAL
);
435 assert_return(ra
->event
, -EINVAL
);
436 assert_return(ra
->ifindex
> 0, -EINVAL
);
438 if (ra
->state
!= RADV_STATE_IDLE
)
441 r
= radv_setup_recv_event(ra
);
445 r
= event_reset_time(ra
->event
, &ra
->timeout_event_source
,
449 ra
->event_priority
, "radv-timeout", true);
453 ra
->state
= RADV_STATE_ADVERTISING
;
455 log_radv(ra
, "Started IPv6 Router Advertisement daemon");
465 int sd_radv_set_ifindex(sd_radv
*ra
, int ifindex
) {
466 assert_return(ra
, -EINVAL
);
467 assert_return(ifindex
> 0, -EINVAL
);
469 if (ra
->state
!= RADV_STATE_IDLE
)
472 ra
->ifindex
= ifindex
;
477 int sd_radv_set_ifname(sd_radv
*ra
, const char *ifname
) {
478 assert_return(ra
, -EINVAL
);
479 assert_return(ifname
, -EINVAL
);
481 if (!ifname_valid_full(ifname
, IFNAME_VALID_ALTERNATIVE
))
484 return free_and_strdup(&ra
->ifname
, ifname
);
487 int sd_radv_get_ifname(sd_radv
*ra
, const char **ret
) {
490 assert_return(ra
, -EINVAL
);
492 r
= get_ifname(ra
->ifindex
, &ra
->ifname
);
502 int sd_radv_set_link_local_address(sd_radv
*ra
, const struct in6_addr
*addr
) {
503 assert_return(ra
, -EINVAL
);
504 assert_return(!addr
|| in6_addr_is_link_local(addr
), -EINVAL
);
514 int sd_radv_set_mac(sd_radv
*ra
, const struct ether_addr
*mac_addr
) {
515 assert_return(ra
, -EINVAL
);
517 if (ra
->state
!= RADV_STATE_IDLE
)
521 ra
->mac_addr
= *mac_addr
;
528 int sd_radv_set_mtu(sd_radv
*ra
, uint32_t mtu
) {
529 assert_return(ra
, -EINVAL
);
530 assert_return(mtu
>= 1280, -EINVAL
);
537 int sd_radv_set_hop_limit(sd_radv
*ra
, uint8_t hop_limit
) {
538 assert_return(ra
, -EINVAL
);
540 ra
->hop_limit
= hop_limit
;
544 int sd_radv_set_retransmit(sd_radv
*ra
, uint64_t usec
) {
545 assert_return(ra
, -EINVAL
);
547 ra
->retransmit_usec
= usec
;
551 int sd_radv_set_router_lifetime(sd_radv
*ra
, uint64_t usec
) {
552 assert_return(ra
, -EINVAL
);
554 if (!router_lifetime_is_valid(usec
))
557 /* RFC 4191, Section 2.2, "...If the Router Lifetime is zero, the preference value MUST be set
558 * to (00) by the sender..." */
560 (ra
->flags
& (0x3 << 3)) != (SD_NDISC_PREFERENCE_MEDIUM
<< 3))
563 ra
->lifetime_usec
= usec
;
567 int sd_radv_set_managed_information(sd_radv
*ra
, int b
) {
568 assert_return(ra
, -EINVAL
);
570 SET_FLAG(ra
->flags
, ND_RA_FLAG_MANAGED
, b
);
574 int sd_radv_set_other_information(sd_radv
*ra
, int b
) {
575 assert_return(ra
, -EINVAL
);
577 SET_FLAG(ra
->flags
, ND_RA_FLAG_OTHER
, b
);
581 int sd_radv_set_preference(sd_radv
*ra
, unsigned preference
) {
582 assert_return(ra
, -EINVAL
);
583 assert_return(IN_SET(preference
,
584 SD_NDISC_PREFERENCE_LOW
,
585 SD_NDISC_PREFERENCE_MEDIUM
,
586 SD_NDISC_PREFERENCE_HIGH
), -EINVAL
);
588 /* RFC 4191, Section 2.2, "...If the Router Lifetime is zero, the preference value MUST be set
589 * to (00) by the sender..." */
590 if (ra
->lifetime_usec
== 0 && preference
!= SD_NDISC_PREFERENCE_MEDIUM
)
593 ra
->flags
= (ra
->flags
& ~(0x3 << 3)) | (preference
<< 3);
598 int sd_radv_set_home_agent_information(sd_radv
*ra
, int home_agent
) {
599 assert_return(ra
, -EINVAL
);
601 if (ra
->state
!= RADV_STATE_IDLE
)
604 SET_FLAG(ra
->flags
, ND_RA_FLAG_HOME_AGENT
, home_agent
);
609 int sd_radv_set_home_agent_preference(sd_radv
*ra
, uint16_t preference
) {
610 assert_return(ra
, -EINVAL
);
612 if (ra
->state
!= RADV_STATE_IDLE
)
615 ra
->home_agent
.nd_opt_home_agent_info_preference
= htobe16(preference
);
620 int sd_radv_set_home_agent_lifetime(sd_radv
*ra
, uint64_t lifetime_usec
) {
621 assert_return(ra
, -EINVAL
);
623 if (ra
->state
!= RADV_STATE_IDLE
)
626 if (lifetime_usec
> RADV_HOME_AGENT_MAX_LIFETIME_USEC
)
629 ra
->home_agent
.nd_opt_home_agent_info_lifetime
= usec_to_be16_sec(lifetime_usec
);
633 int sd_radv_add_prefix(sd_radv
*ra
, sd_radv_prefix
*p
) {
634 sd_radv_prefix
*found
= NULL
;
637 assert_return(ra
, -EINVAL
);
638 assert_return(p
, -EINVAL
);
640 /* Refuse prefixes that don't have a prefix set */
641 if (in6_addr_is_null(&p
->opt
.in6_addr
))
644 const char *addr_p
= IN6_ADDR_PREFIX_TO_STRING(&p
->opt
.in6_addr
, p
->opt
.prefixlen
);
646 LIST_FOREACH(prefix
, cur
, ra
->prefixes
) {
647 r
= in_addr_prefix_intersect(AF_INET6
,
648 (const union in_addr_union
*) &cur
->opt
.in6_addr
,
650 (const union in_addr_union
*) &p
->opt
.in6_addr
,
657 if (cur
->opt
.prefixlen
== p
->opt
.prefixlen
) {
662 return log_radv_errno(ra
, SYNTHETIC_ERRNO(EEXIST
),
663 "IPv6 prefix %s conflicts with %s, ignoring.",
665 IN6_ADDR_PREFIX_TO_STRING(&cur
->opt
.in6_addr
, cur
->opt
.prefixlen
));
669 /* p and cur may be equivalent. First increment the reference counter. */
670 sd_radv_prefix_ref(p
);
672 /* Then, remove the old entry. */
673 LIST_REMOVE(prefix
, ra
->prefixes
, found
);
674 sd_radv_prefix_unref(found
);
676 /* Finally, add the new entry. */
677 LIST_APPEND(prefix
, ra
->prefixes
, p
);
679 log_radv(ra
, "Updated/replaced IPv6 prefix %s (preferred: %s, valid: %s)",
681 FORMAT_TIMESPAN(p
->lifetime_preferred_usec
, USEC_PER_SEC
),
682 FORMAT_TIMESPAN(p
->lifetime_valid_usec
, USEC_PER_SEC
));
684 /* The prefix is new. Let's simply add it. */
686 sd_radv_prefix_ref(p
);
687 LIST_APPEND(prefix
, ra
->prefixes
, p
);
690 log_radv(ra
, "Added prefix %s", addr_p
);
693 if (ra
->state
== RADV_STATE_IDLE
)
696 if (ra
->ra_sent
== 0)
699 /* If RAs have already been sent, send an RA immediately to announce the newly-added prefix */
700 r
= radv_send_router(ra
, NULL
);
702 log_radv_errno(ra
, r
, "Unable to send Router Advertisement for added prefix %s, ignoring: %m", addr_p
);
704 log_radv(ra
, "Sent Router Advertisement for added/updated prefix %s.", addr_p
);
709 void sd_radv_remove_prefix(
711 const struct in6_addr
*prefix
,
712 unsigned char prefixlen
) {
720 LIST_FOREACH(prefix
, cur
, ra
->prefixes
) {
721 if (prefixlen
!= cur
->opt
.prefixlen
)
724 if (!in6_addr_equal(prefix
, &cur
->opt
.in6_addr
))
727 LIST_REMOVE(prefix
, ra
->prefixes
, cur
);
729 sd_radv_prefix_unref(cur
);
734 int sd_radv_add_route_prefix(sd_radv
*ra
, sd_radv_route_prefix
*p
) {
735 sd_radv_route_prefix
*found
= NULL
;
738 assert_return(ra
, -EINVAL
);
739 assert_return(p
, -EINVAL
);
741 const char *addr_p
= IN6_ADDR_PREFIX_TO_STRING(&p
->opt
.in6_addr
, p
->opt
.prefixlen
);
743 LIST_FOREACH(prefix
, cur
, ra
->route_prefixes
) {
744 r
= in_addr_prefix_intersect(AF_INET6
,
745 (const union in_addr_union
*) &cur
->opt
.in6_addr
,
747 (const union in_addr_union
*) &p
->opt
.in6_addr
,
754 if (cur
->opt
.prefixlen
== p
->opt
.prefixlen
) {
759 return log_radv_errno(ra
, SYNTHETIC_ERRNO(EEXIST
),
760 "IPv6 route prefix %s conflicts with %s, ignoring.",
762 IN6_ADDR_PREFIX_TO_STRING(&cur
->opt
.in6_addr
, cur
->opt
.prefixlen
));
766 /* p and cur may be equivalent. First increment the reference counter. */
767 sd_radv_route_prefix_ref(p
);
769 /* Then, remove the old entry. */
770 LIST_REMOVE(prefix
, ra
->route_prefixes
, found
);
771 sd_radv_route_prefix_unref(found
);
773 /* Finally, add the new entry. */
774 LIST_APPEND(prefix
, ra
->route_prefixes
, p
);
776 log_radv(ra
, "Updated/replaced IPv6 route prefix %s (lifetime: %s)",
778 FORMAT_TIMESPAN(p
->lifetime_usec
, USEC_PER_SEC
));
780 /* The route prefix is new. Let's simply add it. */
782 sd_radv_route_prefix_ref(p
);
783 LIST_APPEND(prefix
, ra
->route_prefixes
, p
);
784 ra
->n_route_prefixes
++;
786 log_radv(ra
, "Added route prefix %s", strna(addr_p
));
789 if (ra
->state
== RADV_STATE_IDLE
)
792 if (ra
->ra_sent
== 0)
795 /* If RAs have already been sent, send an RA immediately to announce the newly-added route prefix */
796 r
= radv_send_router(ra
, NULL
);
798 log_radv_errno(ra
, r
, "Unable to send Router Advertisement for added route prefix %s, ignoring: %m",
801 log_radv(ra
, "Sent Router Advertisement for added route prefix %s.", strna(addr_p
));
806 int sd_radv_add_pref64_prefix(sd_radv
*ra
, sd_radv_pref64_prefix
*p
) {
807 sd_radv_pref64_prefix
*found
= NULL
;
810 assert_return(ra
, -EINVAL
);
811 assert_return(p
, -EINVAL
);
813 const char *addr_p
= IN6_ADDR_PREFIX_TO_STRING(&p
->in6_addr
, p
->prefixlen
);
815 LIST_FOREACH(prefix
, cur
, ra
->pref64_prefixes
) {
816 r
= in_addr_prefix_intersect(AF_INET6
,
817 (const union in_addr_union
*) &cur
->in6_addr
,
819 (const union in_addr_union
*) &p
->in6_addr
,
826 if (cur
->prefixlen
== p
->prefixlen
) {
831 return log_radv_errno(ra
, SYNTHETIC_ERRNO(EEXIST
),
832 "IPv6 PREF64 prefix %s conflicts with %s, ignoring.",
834 IN6_ADDR_PREFIX_TO_STRING(&cur
->in6_addr
, cur
->prefixlen
));
838 /* p and cur may be equivalent. First increment the reference counter. */
839 sd_radv_pref64_prefix_ref(p
);
841 /* Then, remove the old entry. */
842 LIST_REMOVE(prefix
, ra
->pref64_prefixes
, found
);
843 sd_radv_pref64_prefix_unref(found
);
845 /* Finally, add the new entry. */
846 LIST_APPEND(prefix
, ra
->pref64_prefixes
, p
);
848 log_radv(ra
, "Updated/replaced IPv6 PREF64 prefix %s (lifetime: %s)",
850 FORMAT_TIMESPAN(p
->lifetime_usec
, USEC_PER_SEC
));
852 /* The route prefix is new. Let's simply add it. */
854 sd_radv_pref64_prefix_ref(p
);
855 LIST_APPEND(prefix
, ra
->pref64_prefixes
, p
);
856 ra
->n_pref64_prefixes
++;
858 log_radv(ra
, "Added PREF64 prefix %s", strna(addr_p
));
861 if (ra
->state
== RADV_STATE_IDLE
)
864 if (ra
->ra_sent
== 0)
867 /* If RAs have already been sent, send an RA immediately to announce the newly-added route prefix */
868 r
= radv_send_router(ra
, NULL
);
870 log_radv_errno(ra
, r
, "Unable to send Router Advertisement for added PREF64 prefix %s, ignoring: %m",
873 log_radv(ra
, "Sent Router Advertisement for added PREF64 prefix %s.", strna(addr_p
));
878 int sd_radv_set_rdnss(
880 uint64_t lifetime_usec
,
881 const struct in6_addr
*dns
,
884 _cleanup_free_
struct sd_radv_opt_dns
*opt_rdnss
= NULL
;
887 assert_return(ra
, -EINVAL
);
888 assert_return(n_dns
< 128, -EINVAL
);
890 if (lifetime_usec
> RADV_RDNSS_MAX_LIFETIME_USEC
)
893 if (!dns
|| n_dns
== 0) {
894 ra
->rdnss
= mfree(ra
->rdnss
);
900 len
= sizeof(struct sd_radv_opt_dns
) + sizeof(struct in6_addr
) * n_dns
;
902 opt_rdnss
= malloc0(len
);
906 opt_rdnss
->type
= RADV_OPT_RDNSS
;
907 opt_rdnss
->length
= len
/ 8;
908 opt_rdnss
->lifetime
= usec_to_be32_sec(lifetime_usec
);
910 memcpy(opt_rdnss
+ 1, dns
, n_dns
* sizeof(struct in6_addr
));
912 free_and_replace(ra
->rdnss
, opt_rdnss
);
919 int sd_radv_set_dnssl(
921 uint64_t lifetime_usec
,
922 char **search_list
) {
924 _cleanup_free_
struct sd_radv_opt_dns
*opt_dnssl
= NULL
;
928 assert_return(ra
, -EINVAL
);
930 if (lifetime_usec
> RADV_DNSSL_MAX_LIFETIME_USEC
)
933 if (strv_isempty(search_list
)) {
934 ra
->dnssl
= mfree(ra
->dnssl
);
938 STRV_FOREACH(s
, search_list
)
939 len
+= strlen(*s
) + 2;
941 len
= (sizeof(struct sd_radv_opt_dns
) + len
+ 7) & ~0x7;
943 opt_dnssl
= malloc0(len
);
947 opt_dnssl
->type
= RADV_OPT_DNSSL
;
948 opt_dnssl
->length
= len
/ 8;
949 opt_dnssl
->lifetime
= usec_to_be32_sec(lifetime_usec
);
951 p
= (uint8_t *)(opt_dnssl
+ 1);
952 len
-= sizeof(struct sd_radv_opt_dns
);
954 STRV_FOREACH(s
, search_list
) {
957 r
= dns_name_to_wire_format(*s
, p
, len
, false);
968 free_and_replace(ra
->dnssl
, opt_dnssl
);
973 int sd_radv_prefix_new(sd_radv_prefix
**ret
) {
976 assert_return(ret
, -EINVAL
);
978 p
= new(sd_radv_prefix
, 1);
982 *p
= (sd_radv_prefix
) {
985 .opt
.type
= ND_OPT_PREFIX_INFORMATION
,
986 .opt
.length
= (sizeof(p
->opt
) - 1)/8 + 1,
989 /* RFC 4861, Section 6.2.1 */
990 .opt
.flags
= ND_OPT_PI_FLAG_ONLINK
|ND_OPT_PI_FLAG_AUTO
,
992 .lifetime_valid_usec
= RADV_DEFAULT_VALID_LIFETIME_USEC
,
993 .lifetime_preferred_usec
= RADV_DEFAULT_PREFERRED_LIFETIME_USEC
,
994 .valid_until
= USEC_INFINITY
,
995 .preferred_until
= USEC_INFINITY
,
1002 DEFINE_PUBLIC_TRIVIAL_REF_UNREF_FUNC(sd_radv_prefix
, sd_radv_prefix
, mfree
);
1004 int sd_radv_prefix_set_prefix(
1006 const struct in6_addr
*in6_addr
,
1007 unsigned char prefixlen
) {
1009 assert_return(p
, -EINVAL
);
1010 assert_return(in6_addr
, -EINVAL
);
1012 if (prefixlen
< 3 || prefixlen
> 128)
1016 /* unusual but allowed, log it */
1017 log_radv(NULL
, "Unusual prefix length %d greater than 64", prefixlen
);
1019 p
->opt
.in6_addr
= *in6_addr
;
1020 p
->opt
.prefixlen
= prefixlen
;
1025 int sd_radv_prefix_get_prefix(
1027 struct in6_addr
*ret_in6_addr
,
1028 unsigned char *ret_prefixlen
) {
1030 assert_return(p
, -EINVAL
);
1031 assert_return(ret_in6_addr
, -EINVAL
);
1032 assert_return(ret_prefixlen
, -EINVAL
);
1034 *ret_in6_addr
= p
->opt
.in6_addr
;
1035 *ret_prefixlen
= p
->opt
.prefixlen
;
1040 int sd_radv_prefix_set_onlink(sd_radv_prefix
*p
, int onlink
) {
1041 assert_return(p
, -EINVAL
);
1043 SET_FLAG(p
->opt
.flags
, ND_OPT_PI_FLAG_ONLINK
, onlink
);
1048 int sd_radv_prefix_set_address_autoconfiguration(sd_radv_prefix
*p
, int address_autoconfiguration
) {
1049 assert_return(p
, -EINVAL
);
1051 SET_FLAG(p
->opt
.flags
, ND_OPT_PI_FLAG_AUTO
, address_autoconfiguration
);
1056 int sd_radv_prefix_set_valid_lifetime(sd_radv_prefix
*p
, uint64_t lifetime_usec
, uint64_t valid_until
) {
1057 assert_return(p
, -EINVAL
);
1059 p
->lifetime_valid_usec
= lifetime_usec
;
1060 p
->valid_until
= valid_until
;
1065 int sd_radv_prefix_set_preferred_lifetime(sd_radv_prefix
*p
, uint64_t lifetime_usec
, uint64_t valid_until
) {
1066 assert_return(p
, -EINVAL
);
1068 p
->lifetime_preferred_usec
= lifetime_usec
;
1069 p
->preferred_until
= valid_until
;
1074 int sd_radv_route_prefix_new(sd_radv_route_prefix
**ret
) {
1075 sd_radv_route_prefix
*p
;
1077 assert_return(ret
, -EINVAL
);
1079 p
= new(sd_radv_route_prefix
, 1);
1083 *p
= (sd_radv_route_prefix
) {
1086 .opt
.type
= RADV_OPT_ROUTE_INFORMATION
,
1087 .opt
.length
= DIV_ROUND_UP(sizeof(p
->opt
), 8),
1088 .opt
.prefixlen
= 64,
1090 .lifetime_usec
= RADV_DEFAULT_VALID_LIFETIME_USEC
,
1091 .valid_until
= USEC_INFINITY
,
1098 DEFINE_PUBLIC_TRIVIAL_REF_UNREF_FUNC(sd_radv_route_prefix
, sd_radv_route_prefix
, mfree
);
1100 int sd_radv_route_prefix_set_prefix(
1101 sd_radv_route_prefix
*p
,
1102 const struct in6_addr
*in6_addr
,
1103 unsigned char prefixlen
) {
1105 assert_return(p
, -EINVAL
);
1106 assert_return(in6_addr
, -EINVAL
);
1108 if (prefixlen
> 128)
1112 /* unusual but allowed, log it */
1113 log_radv(NULL
, "Unusual prefix length %u greater than 64", prefixlen
);
1115 p
->opt
.in6_addr
= *in6_addr
;
1116 p
->opt
.prefixlen
= prefixlen
;
1121 int sd_radv_route_prefix_set_lifetime(sd_radv_route_prefix
*p
, uint64_t lifetime_usec
, uint64_t valid_until
) {
1122 assert_return(p
, -EINVAL
);
1124 p
->lifetime_usec
= lifetime_usec
;
1125 p
->valid_until
= valid_until
;
1130 int sd_radv_pref64_prefix_new(sd_radv_pref64_prefix
**ret
) {
1131 sd_radv_pref64_prefix
*p
;
1133 assert_return(ret
, -EINVAL
);
1135 p
= new(sd_radv_pref64_prefix
, 1);
1139 *p
= (sd_radv_pref64_prefix
) {
1142 .opt
.type
= RADV_OPT_PREF64
,
1150 DEFINE_PUBLIC_TRIVIAL_REF_UNREF_FUNC(sd_radv_pref64_prefix
, sd_radv_pref64_prefix
, mfree
);
1152 int sd_radv_pref64_prefix_set_prefix(
1153 sd_radv_pref64_prefix
*p
,
1154 const struct in6_addr
*prefix
,
1156 uint64_t lifetime_usec
) {
1158 uint16_t pref64_lifetime
;
1159 uint8_t prefixlen_code
;
1162 assert_return(p
, -EINVAL
);
1163 assert_return(prefix
, -EINVAL
);
1165 r
= pref64_prefix_length_to_plc(prefixlen
, &prefixlen_code
);
1167 return log_radv_errno(NULL
, r
,
1168 "Unsupported PREF64 prefix length %u. Valid lengths are 32, 40, 48, 56, 64 and 96", prefixlen
);
1170 if (lifetime_usec
> PREF64_MAX_LIFETIME_USEC
)
1173 /* RFC 8781 - 4.1 rounding up lifetime to multiply of 8 */
1174 pref64_lifetime
= DIV_ROUND_UP(lifetime_usec
, 8 * USEC_PER_SEC
) << 3;
1175 pref64_lifetime
|= prefixlen_code
;
1177 unaligned_write_be16(&p
->opt
.lifetime_and_plc
, pref64_lifetime
);
1178 memcpy(&p
->opt
.prefix
, prefix
, sizeof(p
->opt
.prefix
));
1180 p
->in6_addr
= *prefix
;
1181 p
->prefixlen
= prefixlen
;