Received: by 2002:a05:6a10:f347:0:0:0:0 with SMTP id d7csp9223207pxu; Mon, 28 Dec 2020 09:43:17 -0800 (PST) X-Google-Smtp-Source: ABdhPJyqvOp46mcTarWsUPS2BC19Z8+hRlEbzn5oazPTmkIyY3mEJxFiwPEpzGiu+L7/hCmSeIGm X-Received: by 2002:a17:906:8051:: with SMTP id x17mr40957701ejw.430.1609177397528; Mon, 28 Dec 2020 09:43:17 -0800 (PST) ARC-Seal: i=1; a=rsa-sha256; t=1609177397; cv=none; d=google.com; s=arc-20160816; b=0I4xqW/CVIKMwLSHTloZ0SOewDeSWKdVV+rR3BV7DB1NSL5FvKJEEkYAUnfeDUYAr6 IkEd+lY0XFtYi9m10cf8gIO+GFMKMYvMed3LTVoylQj4+8wIK9sp5YoQkvsq2mnDy9OR JwBWlj2YKCB9P5y8CP6l7cvNkAIEYfuWk/xtuqRjOc81/WuBYfWV3zvH/IScaowNuSDc 9xpmNyiNjt2tmGloo3YRwXjanMI23hRliYwLeyEYouHuLsk6uv8Oc9+w9BzfnyzqeK9v r9PnEo2TuerqzR7Gr0K2b2UqXdGRG3K0nZhkWHCYg2dYNQYNf28v7QcRkbgiHm2YovMM a6fQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :user-agent:references:in-reply-to:message-id:date:subject:cc:to :from:dkim-signature; bh=5VskRy9pzDhz8mkYdhRLOdo0eiT3kTrLaHFKerm9dYc=; b=T4dvBHPiS0SZLKFyzwoRsnlGOBNBryE6IOOXv0Ogzjytt9mfMNTe63dJSLz19WfCmG 7Jmh62M0xwf+tFILssk6NsvS2YtTjQzJLtapjT3iXZzJiAGLRtT2kx9YQO4bOzhKy2aW 4nShSfqbmuPU1vH/DY62RWWUakxEQ2xJrQFK+MfJolKXJkj1RYG3RToCk+FY68bIHlxh rculc5jb/xHuHV92aYhRtCXM0EYbjtQAfXSa4+S98A0XUId8RhTqCtpiLGelfzXhysB1 4UKHEOihdc5shXVmABYEnqXld70Sxewylu9FWt5GN9BIV2Zq0RcP55XLsXNGAyETWUPg u/6A== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=pSOP5IPn; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id hs23si18419229ejc.143.2020.12.28.09.42.54; Mon, 28 Dec 2020 09:43:17 -0800 (PST) Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@linuxfoundation.org header.s=korg header.b=pSOP5IPn; spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org; dmarc=pass (p=NONE sp=NONE dis=NONE) header.from=linuxfoundation.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1731960AbgL1NMH (ORCPT + 99 others); Mon, 28 Dec 2020 08:12:07 -0500 Received: from mail.kernel.org ([198.145.29.99]:39606 "EHLO mail.kernel.org" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1731812AbgL1NLj (ORCPT ); Mon, 28 Dec 2020 08:11:39 -0500 Received: by mail.kernel.org (Postfix) with ESMTPSA id 7EB2322583; Mon, 28 Dec 2020 13:10:58 +0000 (UTC) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=linuxfoundation.org; s=korg; t=1609161059; bh=FPl1n4rY6j8/9aRcctzB8Cg//MkGQH+LPD2+M9kwdxA=; h=From:To:Cc:Subject:Date:In-Reply-To:References:From; b=pSOP5IPnBySSn1mWTdEyXUWWQAXdnzluxqd1+UkiR0XUqqdUKMd+myIieO88qjxmC h+XomksTsUmSAVCv7K8PZkFWYc9vSbn+9fPVPUgBVFGP01gh9XeYBic0C1Not2/f5h h1i82ywL65m+NAQhcdPzTRO1i5H+E3jq+gM4v8LE= From: Greg Kroah-Hartman To: linux-kernel@vger.kernel.org Cc: Greg Kroah-Hartman , stable@vger.kernel.org, Vincent Bernat , Jakub Kicinski , Sasha Levin Subject: [PATCH 4.14 087/242] net: evaluate net.ipvX.conf.all.ignore_routes_with_linkdown Date: Mon, 28 Dec 2020 13:48:12 +0100 Message-Id: <20201228124908.978501280@linuxfoundation.org> X-Mailer: git-send-email 2.29.2 In-Reply-To: <20201228124904.654293249@linuxfoundation.org> References: <20201228124904.654293249@linuxfoundation.org> User-Agent: quilt/0.66 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org From: Vincent Bernat [ Upstream commit c0c5a60f0f1311bcf08bbe735122096d6326fb5b ] Introduced in 0eeb075fad73, the "ignore_routes_with_linkdown" sysctl ignores a route whose interface is down. It is provided as a per-interface sysctl. However, while a "all" variant is exposed, it was a noop since it was never evaluated. We use the usual "or" logic for this kind of sysctls. Tested with: ip link add type veth # veth0 + veth1 ip link add type veth # veth1 + veth2 ip link set up dev veth0 ip link set up dev veth1 # link-status paired with veth0 ip link set up dev veth2 ip link set up dev veth3 # link-status paired with veth2 # First available path ip -4 addr add 203.0.113.${uts#H}/24 dev veth0 ip -6 addr add 2001:db8:1::${uts#H}/64 dev veth0 # Second available path ip -4 addr add 192.0.2.${uts#H}/24 dev veth2 ip -6 addr add 2001:db8:2::${uts#H}/64 dev veth2 # More specific route through first path ip -4 route add 198.51.100.0/25 via 203.0.113.254 # via veth0 ip -6 route add 2001:db8:3::/56 via 2001:db8:1::ff # via veth0 # Less specific route through second path ip -4 route add 198.51.100.0/24 via 192.0.2.254 # via veth2 ip -6 route add 2001:db8:3::/48 via 2001:db8:2::ff # via veth2 # H1: enable on "all" # H2: enable on "veth0" for v in ipv4 ipv6; do case $uts in H1) sysctl -qw net.${v}.conf.all.ignore_routes_with_linkdown=1 ;; H2) sysctl -qw net.${v}.conf.veth0.ignore_routes_with_linkdown=1 ;; esac done set -xe # When veth0 is up, best route is through veth0 ip -o route get 198.51.100.1 | grep -Fw veth0 ip -o route get 2001:db8:3::1 | grep -Fw veth0 # When veth0 is down, best route should be through veth2 on H1/H2, # but on veth0 on H2 ip link set down dev veth1 # down veth0 ip route show [ $uts != H3 ] || ip -o route get 198.51.100.1 | grep -Fw veth0 [ $uts != H3 ] || ip -o route get 2001:db8:3::1 | grep -Fw veth0 [ $uts = H3 ] || ip -o route get 198.51.100.1 | grep -Fw veth2 [ $uts = H3 ] || ip -o route get 2001:db8:3::1 | grep -Fw veth2 Without this patch, the two last lines would fail on H1 (the one using the "all" sysctl). With the patch, everything succeeds as expected. Also document the sysctl in `ip-sysctl.rst`. Fixes: 0eeb075fad73 ("net: ipv4 sysctl option to ignore routes when nexthop link is down") Signed-off-by: Vincent Bernat Signed-off-by: Jakub Kicinski Signed-off-by: Sasha Levin --- Documentation/networking/ip-sysctl.txt | 3 +++ include/linux/inetdevice.h | 2 +- 2 files changed, 4 insertions(+), 1 deletion(-) diff --git a/Documentation/networking/ip-sysctl.txt b/Documentation/networking/ip-sysctl.txt index 5f1e3dc567f1d..fe0e46418f6db 100644 --- a/Documentation/networking/ip-sysctl.txt +++ b/Documentation/networking/ip-sysctl.txt @@ -1271,6 +1271,9 @@ igmpv3_unsolicited_report_interval - INTEGER IGMPv3 report retransmit will take place. Default: 1000 (1 seconds) +ignore_routes_with_linkdown - BOOLEAN + Ignore routes whose link is down when performing a FIB lookup. + promote_secondaries - BOOLEAN When a primary IP address is removed from this interface promote a corresponding secondary IP address instead of diff --git a/include/linux/inetdevice.h b/include/linux/inetdevice.h index 5058f061cb2bd..ff876bf66cf25 100644 --- a/include/linux/inetdevice.h +++ b/include/linux/inetdevice.h @@ -123,7 +123,7 @@ static inline void ipv4_devconf_setall(struct in_device *in_dev) IN_DEV_ORCONF((in_dev), ACCEPT_REDIRECTS))) #define IN_DEV_IGNORE_ROUTES_WITH_LINKDOWN(in_dev) \ - IN_DEV_CONF_GET((in_dev), IGNORE_ROUTES_WITH_LINKDOWN) + IN_DEV_ORCONF((in_dev), IGNORE_ROUTES_WITH_LINKDOWN) #define IN_DEV_ARPFILTER(in_dev) IN_DEV_ORCONF((in_dev), ARPFILTER) #define IN_DEV_ARP_ACCEPT(in_dev) IN_DEV_ORCONF((in_dev), ARP_ACCEPT) -- 2.27.0