xref: /freebsd/sbin/natd/icmp.c (revision b3e7694832e81d7a904a10f525f8797b753bf0d3) 
1f13f9fadSAlexander Langer /*
259a7c613SBrian Somers  * natd - Network Address Translation Daemon for FreeBSD.
359a7c613SBrian Somers  *
4a228025eSAlexander Langer  * This software is provided free of charge, with no
5a228025eSAlexander Langer  * warranty of any kind, either expressed or implied.
6a228025eSAlexander Langer  * Use at your own risk.
7a228025eSAlexander Langer  *
859a7c613SBrian Somers  * You may copy, modify and distribute this software (icmp.c) freely.
9a228025eSAlexander Langer  *
10a228025eSAlexander Langer  * Ari Suutari <suutari@iki.fi>
11f13f9fadSAlexander Langer  */
12f13f9fadSAlexander Langer 
1324084f9bSBrian Somers #include <stdlib.h>
1424084f9bSBrian Somers #include <stdio.h>
1524084f9bSBrian Somers #include <unistd.h>
1624084f9bSBrian Somers #include <string.h>
1724084f9bSBrian Somers #include <ctype.h>
1824084f9bSBrian Somers 
1924084f9bSBrian Somers #include <sys/types.h>
2024084f9bSBrian Somers #include <sys/socket.h>
2124084f9bSBrian Somers #include <sys/time.h>
2224084f9bSBrian Somers #include <errno.h>
2324084f9bSBrian Somers #include <signal.h>
2424084f9bSBrian Somers 
2524084f9bSBrian Somers #include <netdb.h>
2624084f9bSBrian Somers 
2724084f9bSBrian Somers #include <netinet/in.h>
2824084f9bSBrian Somers #include <netinet/in_systm.h>
2924084f9bSBrian Somers #include <netinet/ip.h>
3024084f9bSBrian Somers #include <netinet/ip_icmp.h>
3124084f9bSBrian Somers 
3224084f9bSBrian Somers #include <alias.h>
3324084f9bSBrian Somers 
3424084f9bSBrian Somers #include "natd.h"
3524084f9bSBrian Somers 
SendNeedFragIcmp(int sock,struct ip * failedDgram,int mtu)3624084f9bSBrian Somers int SendNeedFragIcmp (int sock, struct ip* failedDgram, int mtu)
3724084f9bSBrian Somers {
3824084f9bSBrian Somers 	char			icmpBuf[IP_MAXPACKET];
3924084f9bSBrian Somers 	struct ip*		ip;
4024084f9bSBrian Somers 	struct icmp*		icmp;
4124084f9bSBrian Somers 	int			icmpLen;
4224084f9bSBrian Somers 	int			failBytes;
4324084f9bSBrian Somers 	int			failHdrLen;
4424084f9bSBrian Somers 	struct sockaddr_in	addr;
4524084f9bSBrian Somers 	int			wrote;
4624084f9bSBrian Somers 	struct in_addr		swap;
4724084f9bSBrian Somers /*
4824084f9bSBrian Somers  * Don't send error if packet is
4924084f9bSBrian Somers  * not the first fragment.
5024084f9bSBrian Somers  */
5124084f9bSBrian Somers 	if (ntohs (failedDgram->ip_off) & ~(IP_MF | IP_DF))
5224084f9bSBrian Somers 		return 0;
5324084f9bSBrian Somers /*
5424084f9bSBrian Somers  * Dont respond if failed datagram is ICMP.
5524084f9bSBrian Somers  */
5624084f9bSBrian Somers 	if (failedDgram->ip_p == IPPROTO_ICMP)
5724084f9bSBrian Somers 		return 0;
5824084f9bSBrian Somers /*
5924084f9bSBrian Somers  * Start building the message.
6024084f9bSBrian Somers  */
6124084f9bSBrian Somers 	ip   = (struct ip*) icmpBuf;
6224084f9bSBrian Somers 	icmp = (struct icmp*) (icmpBuf + sizeof (struct ip));
6324084f9bSBrian Somers /*
6424084f9bSBrian Somers  * Complete ICMP part.
6524084f9bSBrian Somers  */
6624084f9bSBrian Somers 	icmp->icmp_type  	= ICMP_UNREACH;
6724084f9bSBrian Somers 	icmp->icmp_code		= ICMP_UNREACH_NEEDFRAG;
6824084f9bSBrian Somers 	icmp->icmp_cksum	= 0;
6924084f9bSBrian Somers 	icmp->icmp_void		= 0;
7024084f9bSBrian Somers 	icmp->icmp_nextmtu	= htons (mtu);
7124084f9bSBrian Somers /*
7224084f9bSBrian Somers  * Copy header + 64 bits of original datagram.
7324084f9bSBrian Somers  */
7424084f9bSBrian Somers 	failHdrLen = (failedDgram->ip_hl << 2);
7524084f9bSBrian Somers 	failBytes  = failedDgram->ip_len - failHdrLen;
7624084f9bSBrian Somers 	if (failBytes > 8)
7724084f9bSBrian Somers 		failBytes = 8;
7824084f9bSBrian Somers 
7924084f9bSBrian Somers 	failBytes += failHdrLen;
8024084f9bSBrian Somers 	icmpLen    = ICMP_MINLEN + failBytes;
8124084f9bSBrian Somers 
8224084f9bSBrian Somers 	memcpy (&icmp->icmp_ip, failedDgram, failBytes);
8324084f9bSBrian Somers /*
8424084f9bSBrian Somers  * Calculate checksum.
8524084f9bSBrian Somers  */
8622c62477SPoul-Henning Kamp 	icmp->icmp_cksum = LibAliasInternetChecksum (mla, (u_short*) icmp,
87fb994b07SBrian Somers 							icmpLen);
8824084f9bSBrian Somers /*
8924084f9bSBrian Somers  * Add IP header using old IP header as template.
9024084f9bSBrian Somers  */
9124084f9bSBrian Somers 	memcpy (ip, failedDgram, sizeof (struct ip));
9224084f9bSBrian Somers 
9324084f9bSBrian Somers 	ip->ip_v	= 4;
9424084f9bSBrian Somers 	ip->ip_hl	= 5;
9524084f9bSBrian Somers 	ip->ip_len	= htons (sizeof (struct ip) + icmpLen);
9624084f9bSBrian Somers 	ip->ip_p	= IPPROTO_ICMP;
9724084f9bSBrian Somers 	ip->ip_tos	= 0;
9824084f9bSBrian Somers 
9924084f9bSBrian Somers 	swap = ip->ip_dst;
10024084f9bSBrian Somers 	ip->ip_dst = ip->ip_src;
10124084f9bSBrian Somers 	ip->ip_src = swap;
10224084f9bSBrian Somers 
10322c62477SPoul-Henning Kamp 	LibAliasIn (mla, (char*) ip, IP_MAXPACKET);
10424084f9bSBrian Somers 
10524084f9bSBrian Somers 	addr.sin_family		= AF_INET;
10624084f9bSBrian Somers 	addr.sin_addr		= ip->ip_dst;
10724084f9bSBrian Somers 	addr.sin_port		= 0;
10824084f9bSBrian Somers /*
10924084f9bSBrian Somers  * Put packet into processing queue.
11024084f9bSBrian Somers  */
11124084f9bSBrian Somers 	wrote = sendto (sock,
11224084f9bSBrian Somers 		        icmp,
11324084f9bSBrian Somers 	    		icmpLen,
11424084f9bSBrian Somers 	    		0,
11524084f9bSBrian Somers 	    		(struct sockaddr*) &addr,
11624084f9bSBrian Somers 	    		sizeof addr);
11724084f9bSBrian Somers 
11824084f9bSBrian Somers 	if (wrote != icmpLen)
11924084f9bSBrian Somers 		Warn ("Cannot send ICMP message.");
12024084f9bSBrian Somers 
12124084f9bSBrian Somers 	return 1;
12224084f9bSBrian Somers }
12324084f9bSBrian Somers 
12424084f9bSBrian Somers 
125