[Midnightbsd-cvs] src [9018] trunk/sys/net: fix long standing issue with interface routes being unprotected.
laffer1 at midnightbsd.org
laffer1 at midnightbsd.org
Thu Sep 29 21:54:53 EDT 2016
Revision: 9018
http://svnweb.midnightbsd.org/src/?rev=9018
Author: laffer1
Date: 2016-09-29 21:54:53 -0400 (Thu, 29 Sep 2016)
Log Message:
-----------
fix long standing issue with interface routes being unprotected.
Modified Paths:
--------------
trunk/sys/net/if.c
trunk/sys/net/route.c
trunk/sys/net/route.h
Modified: trunk/sys/net/if.c
===================================================================
--- trunk/sys/net/if.c 2016-09-30 01:54:00 UTC (rev 9017)
+++ trunk/sys/net/if.c 2016-09-30 01:54:53 UTC (rev 9018)
@@ -27,7 +27,7 @@
* SUCH DAMAGE.
*
* @(#)if.c 8.5 (Berkeley) 1/9/95
- * $MidnightBSD: src/sys/net/if.c,v 1.6 2013/01/17 23:29:37 laffer1 Exp $
+ * $MidnightBSD$
*/
#include "opt_compat.h"
@@ -1379,7 +1379,8 @@
return (0);
err = rtrequest_fib(RTM_DELETE, rt_key(rt), rt->rt_gateway,
- rt_mask(rt), rt->rt_flags|RTF_RNH_LOCKED,
+ rt_mask(rt),
+ rt->rt_flags|RTF_RNH_LOCKED|RTF_PINNED,
(struct rtentry **) NULL, rt->rt_fibnum);
if (err) {
log(LOG_WARNING, "if_rtdel: error %d\n", err);
Modified: trunk/sys/net/route.c
===================================================================
--- trunk/sys/net/route.c 2016-09-30 01:54:00 UTC (rev 9017)
+++ trunk/sys/net/route.c 2016-09-30 01:54:53 UTC (rev 9018)
@@ -1104,6 +1104,14 @@
error = 0;
}
#endif
+ if ((flags & RTF_PINNED) == 0) {
+ /* Check if target route can be deleted */
+ rt = (struct rtentry *)rnh->rnh_lookup(dst,
+ netmask, rnh);
+ if ((rt != NULL) && (rt->rt_flags & RTF_PINNED))
+ senderr(EADDRINUSE);
+ }
+
/*
* Remove the item from the tree and return it.
* Complain if it is not there and do no more processing.
@@ -1427,6 +1435,7 @@
int didwork = 0;
int a_failure = 0;
static struct sockaddr_dl null_sdl = {sizeof(null_sdl), AF_LINK};
+ struct radix_node_head *rnh;
if (flags & RTF_HOST) {
dst = ifa->ifa_dstaddr;
@@ -1485,7 +1494,6 @@
*/
for ( fibnum = startfib; fibnum <= endfib; fibnum++) {
if (cmd == RTM_DELETE) {
- struct radix_node_head *rnh;
struct radix_node *rn;
/*
* Look up an rtentry that is in the routing tree and
@@ -1535,7 +1543,8 @@
*/
bzero((caddr_t)&info, sizeof(info));
info.rti_ifa = ifa;
- info.rti_flags = flags | (ifa->ifa_flags & ~IFA_RTSELF);
+ info.rti_flags = flags |
+ (ifa->ifa_flags & ~IFA_RTSELF) | RTF_PINNED;
info.rti_info[RTAX_DST] = dst;
/*
* doing this for compatibility reasons
@@ -1547,6 +1556,33 @@
info.rti_info[RTAX_GATEWAY] = ifa->ifa_addr;
info.rti_info[RTAX_NETMASK] = netmask;
error = rtrequest1_fib(cmd, &info, &rt, fibnum);
+
+ if ((error == EEXIST) && (cmd == RTM_ADD)) {
+ /*
+ * Interface route addition failed.
+ * Atomically delete current prefix generating
+ * RTM_DELETE message, and retry adding
+ * interface prefix.
+ */
+ rnh = rt_tables_get_rnh(fibnum, dst->sa_family);
+ RADIX_NODE_HEAD_LOCK(rnh);
+
+ /* Delete old prefix */
+ info.rti_ifa = NULL;
+ info.rti_flags = RTF_RNH_LOCKED;
+
+ error = rtrequest1_fib(RTM_DELETE, &info, &rt, fibnum);
+ if (error == 0) {
+ info.rti_ifa = ifa;
+ info.rti_flags = flags | RTF_RNH_LOCKED |
+ (ifa->ifa_flags & ~IFA_RTSELF) | RTF_PINNED;
+ error = rtrequest1_fib(cmd, &info, &rt, fibnum);
+ }
+
+ RADIX_NODE_HEAD_UNLOCK(rnh);
+ }
+
+
if (error == 0 && rt != NULL) {
/*
* notify any listening routing agents of the change
Modified: trunk/sys/net/route.h
===================================================================
--- trunk/sys/net/route.h 2016-09-30 01:54:00 UTC (rev 9017)
+++ trunk/sys/net/route.h 2016-09-30 01:54:53 UTC (rev 9018)
@@ -176,7 +176,7 @@
/* 0x20000 unused, was RTF_WASCLONED */
#define RTF_PROTO3 0x40000 /* protocol specific routing flag */
/* 0x80000 unused */
-#define RTF_PINNED 0x100000 /* future use */
+#define RTF_PINNED 0x100000 /* route is immutable */
#define RTF_LOCAL 0x200000 /* route represents a local address */
#define RTF_BROADCAST 0x400000 /* route represents a bcast address */
#define RTF_MULTICAST 0x800000 /* route represents a mcast address */
More information about the Midnightbsd-cvs
mailing list