1caf43b02SWarner Losh /*- 282cd038dSYoshinobu Inoue * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. 382cd038dSYoshinobu Inoue * All rights reserved. 482cd038dSYoshinobu Inoue * 582cd038dSYoshinobu Inoue * Redistribution and use in source and binary forms, with or without 682cd038dSYoshinobu Inoue * modification, are permitted provided that the following conditions 782cd038dSYoshinobu Inoue * are met: 882cd038dSYoshinobu Inoue * 1. Redistributions of source code must retain the above copyright 982cd038dSYoshinobu Inoue * notice, this list of conditions and the following disclaimer. 1082cd038dSYoshinobu Inoue * 2. Redistributions in binary form must reproduce the above copyright 1182cd038dSYoshinobu Inoue * notice, this list of conditions and the following disclaimer in the 1282cd038dSYoshinobu Inoue * documentation and/or other materials provided with the distribution. 1382cd038dSYoshinobu Inoue * 3. Neither the name of the project nor the names of its contributors 1482cd038dSYoshinobu Inoue * may be used to endorse or promote products derived from this software 1582cd038dSYoshinobu Inoue * without specific prior written permission. 1682cd038dSYoshinobu Inoue * 1782cd038dSYoshinobu Inoue * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND 1882cd038dSYoshinobu Inoue * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 1982cd038dSYoshinobu Inoue * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 2082cd038dSYoshinobu Inoue * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE 2182cd038dSYoshinobu Inoue * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 2282cd038dSYoshinobu Inoue * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 2382cd038dSYoshinobu Inoue * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 2482cd038dSYoshinobu Inoue * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 2582cd038dSYoshinobu Inoue * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 2682cd038dSYoshinobu Inoue * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 2782cd038dSYoshinobu Inoue * SUCH DAMAGE. 28b48287a3SDavid E. O'Brien * 29b48287a3SDavid E. O'Brien * $KAME: in6_ifattach.c,v 1.118 2001/05/24 07:44:00 itojun Exp $ 3082cd038dSYoshinobu Inoue */ 3182cd038dSYoshinobu Inoue 32b48287a3SDavid E. O'Brien #include <sys/cdefs.h> 33b48287a3SDavid E. O'Brien __FBSDID("$FreeBSD$"); 34b48287a3SDavid E. O'Brien 3582cd038dSYoshinobu Inoue #include <sys/param.h> 3682cd038dSYoshinobu Inoue #include <sys/systm.h> 3782cd038dSYoshinobu Inoue #include <sys/malloc.h> 3882cd038dSYoshinobu Inoue #include <sys/socket.h> 3982cd038dSYoshinobu Inoue #include <sys/sockio.h> 4076ca6f88SJamie Gritton #include <sys/jail.h> 4182cd038dSYoshinobu Inoue #include <sys/kernel.h> 42530c0060SRobert Watson #include <sys/proc.h> 4333841545SHajimu UMEMOTO #include <sys/syslog.h> 4482cd038dSYoshinobu Inoue #include <sys/md5.h> 4582cd038dSYoshinobu Inoue 4682cd038dSYoshinobu Inoue #include <net/if.h> 4782cd038dSYoshinobu Inoue #include <net/if_dl.h> 4882cd038dSYoshinobu Inoue #include <net/if_types.h> 4982cd038dSYoshinobu Inoue #include <net/route.h> 504b79449eSBjoern A. Zeeb #include <net/vnet.h> 5182cd038dSYoshinobu Inoue 5282cd038dSYoshinobu Inoue #include <netinet/in.h> 5382cd038dSYoshinobu Inoue #include <netinet/in_var.h> 5482cd038dSYoshinobu Inoue #include <netinet/if_ether.h> 55e43cc4aeSHajimu UMEMOTO #include <netinet/in_pcb.h> 56eddfbb76SRobert Watson #include <netinet/ip_var.h> 57eddfbb76SRobert Watson #include <netinet/udp.h> 58eddfbb76SRobert Watson #include <netinet/udp_var.h> 5982cd038dSYoshinobu Inoue 60686cdd19SJun-ichiro itojun Hagino #include <netinet/ip6.h> 6182cd038dSYoshinobu Inoue #include <netinet6/ip6_var.h> 6233841545SHajimu UMEMOTO #include <netinet6/in6_var.h> 63e43cc4aeSHajimu UMEMOTO #include <netinet6/in6_pcb.h> 6482cd038dSYoshinobu Inoue #include <netinet6/in6_ifattach.h> 6582cd038dSYoshinobu Inoue #include <netinet6/ip6_var.h> 6682cd038dSYoshinobu Inoue #include <netinet6/nd6.h> 6733cde130SBruce M Simpson #include <netinet6/mld6_var.h> 68686cdd19SJun-ichiro itojun Hagino #include <netinet6/scope6_var.h> 6982cd038dSYoshinobu Inoue 70eddfbb76SRobert Watson VNET_DEFINE(unsigned long, in6_maxmtu); 71eddfbb76SRobert Watson VNET_DEFINE(int, ip6_auto_linklocal); 72eddfbb76SRobert Watson VNET_DEFINE(struct callout, in6_tmpaddrtimer_ch); 73eddfbb76SRobert Watson 741e77c105SRobert Watson #define V_in6_tmpaddrtimer_ch VNET(in6_tmpaddrtimer_ch) 75eddfbb76SRobert Watson 76eddfbb76SRobert Watson VNET_DECLARE(struct inpcbinfo, ripcbinfo); 771e77c105SRobert Watson #define V_ripcbinfo VNET(ripcbinfo) 78e43cc4aeSHajimu UMEMOTO 799233d8f3SDavid E. O'Brien static int get_rand_ifid(struct ifnet *, struct in6_addr *); 809233d8f3SDavid E. O'Brien static int generate_tmp_ifid(u_int8_t *, const u_int8_t *, u_int8_t *); 819233d8f3SDavid E. O'Brien static int get_ifid(struct ifnet *, struct ifnet *, struct in6_addr *); 829233d8f3SDavid E. O'Brien static int in6_ifattach_linklocal(struct ifnet *, struct ifnet *); 839233d8f3SDavid E. O'Brien static int in6_ifattach_loopback(struct ifnet *); 849233d8f3SDavid E. O'Brien static void in6_purgemaddrs(struct ifnet *); 8582cd038dSYoshinobu Inoue 86686cdd19SJun-ichiro itojun Hagino #define EUI64_GBIT 0x01 87686cdd19SJun-ichiro itojun Hagino #define EUI64_UBIT 0x02 88686cdd19SJun-ichiro itojun Hagino #define EUI64_TO_IFID(in6) do {(in6)->s6_addr[8] ^= EUI64_UBIT; } while (0) 89686cdd19SJun-ichiro itojun Hagino #define EUI64_GROUP(in6) ((in6)->s6_addr[8] & EUI64_GBIT) 90686cdd19SJun-ichiro itojun Hagino #define EUI64_INDIVIDUAL(in6) (!EUI64_GROUP(in6)) 91686cdd19SJun-ichiro itojun Hagino #define EUI64_LOCAL(in6) ((in6)->s6_addr[8] & EUI64_UBIT) 92686cdd19SJun-ichiro itojun Hagino #define EUI64_UNIVERSAL(in6) (!EUI64_LOCAL(in6)) 9382cd038dSYoshinobu Inoue 94686cdd19SJun-ichiro itojun Hagino #define IFID_LOCAL(in6) (!EUI64_LOCAL(in6)) 95686cdd19SJun-ichiro itojun Hagino #define IFID_UNIVERSAL(in6) (!EUI64_UNIVERSAL(in6)) 9682cd038dSYoshinobu Inoue 9782cd038dSYoshinobu Inoue /* 9882cd038dSYoshinobu Inoue * Generate a last-resort interface identifier, when the machine has no 9982cd038dSYoshinobu Inoue * IEEE802/EUI64 address sources. 100686cdd19SJun-ichiro itojun Hagino * The goal here is to get an interface identifier that is 101686cdd19SJun-ichiro itojun Hagino * (1) random enough and (2) does not change across reboot. 102686cdd19SJun-ichiro itojun Hagino * We currently use MD5(hostname) for it. 1031272577eSXin LI * 1041272577eSXin LI * in6 - upper 64bits are preserved 10582cd038dSYoshinobu Inoue */ 10682cd038dSYoshinobu Inoue static int 1071272577eSXin LI get_rand_ifid(struct ifnet *ifp, struct in6_addr *in6) 10882cd038dSYoshinobu Inoue { 10982cd038dSYoshinobu Inoue MD5_CTX ctxt; 11076ca6f88SJamie Gritton struct prison *pr; 11182cd038dSYoshinobu Inoue u_int8_t digest[16]; 1124f7d1876SRobert Watson int hostnamelen; 11382cd038dSYoshinobu Inoue 11476ca6f88SJamie Gritton pr = curthread->td_ucred->cr_prison; 11576ca6f88SJamie Gritton mtx_lock(&pr->pr_mtx); 116c1f19219SJamie Gritton hostnamelen = strlen(pr->pr_hostname); 117686cdd19SJun-ichiro itojun Hagino #if 0 118686cdd19SJun-ichiro itojun Hagino /* we need at least several letters as seed for ifid */ 11976ca6f88SJamie Gritton if (hostnamelen < 3) { 12076ca6f88SJamie Gritton mtx_unlock(&pr->pr_mtx); 121686cdd19SJun-ichiro itojun Hagino return -1; 12276ca6f88SJamie Gritton } 123686cdd19SJun-ichiro itojun Hagino #endif 124686cdd19SJun-ichiro itojun Hagino 12582cd038dSYoshinobu Inoue /* generate 8 bytes of pseudo-random value. */ 12682cd038dSYoshinobu Inoue bzero(&ctxt, sizeof(ctxt)); 12782cd038dSYoshinobu Inoue MD5Init(&ctxt); 128c1f19219SJamie Gritton MD5Update(&ctxt, pr->pr_hostname, hostnamelen); 12976ca6f88SJamie Gritton mtx_unlock(&pr->pr_mtx); 13082cd038dSYoshinobu Inoue MD5Final(digest, &ctxt); 13182cd038dSYoshinobu Inoue 132686cdd19SJun-ichiro itojun Hagino /* assumes sizeof(digest) > sizeof(ifid) */ 133686cdd19SJun-ichiro itojun Hagino bcopy(digest, &in6->s6_addr[8], 8); 13482cd038dSYoshinobu Inoue 13582cd038dSYoshinobu Inoue /* make sure to set "u" bit to local, and "g" bit to individual. */ 136686cdd19SJun-ichiro itojun Hagino in6->s6_addr[8] &= ~EUI64_GBIT; /* g bit to "individual" */ 137686cdd19SJun-ichiro itojun Hagino in6->s6_addr[8] |= EUI64_UBIT; /* u bit to "local" */ 138686cdd19SJun-ichiro itojun Hagino 139686cdd19SJun-ichiro itojun Hagino /* convert EUI64 into IPv6 interface identifier */ 140686cdd19SJun-ichiro itojun Hagino EUI64_TO_IFID(in6); 14182cd038dSYoshinobu Inoue 14282cd038dSYoshinobu Inoue return 0; 14382cd038dSYoshinobu Inoue } 14482cd038dSYoshinobu Inoue 14533841545SHajimu UMEMOTO static int 1461272577eSXin LI generate_tmp_ifid(u_int8_t *seed0, const u_int8_t *seed1, u_int8_t *ret) 14733841545SHajimu UMEMOTO { 14833841545SHajimu UMEMOTO MD5_CTX ctxt; 14933841545SHajimu UMEMOTO u_int8_t seed[16], digest[16], nullbuf[8]; 15033841545SHajimu UMEMOTO u_int32_t val32; 15133841545SHajimu UMEMOTO 1521272577eSXin LI /* If there's no history, start with a random seed. */ 15333841545SHajimu UMEMOTO bzero(nullbuf, sizeof(nullbuf)); 15433841545SHajimu UMEMOTO if (bcmp(nullbuf, seed0, sizeof(nullbuf)) == 0) { 15533841545SHajimu UMEMOTO int i; 15633841545SHajimu UMEMOTO 15733841545SHajimu UMEMOTO for (i = 0; i < 2; i++) { 158a02e1e2bSHajimu UMEMOTO val32 = arc4random(); 15933841545SHajimu UMEMOTO bcopy(&val32, seed + sizeof(val32) * i, sizeof(val32)); 16033841545SHajimu UMEMOTO } 1617efe5d92SHajimu UMEMOTO } else 16233841545SHajimu UMEMOTO bcopy(seed0, seed, 8); 16333841545SHajimu UMEMOTO 16433841545SHajimu UMEMOTO /* copy the right-most 64-bits of the given address */ 16533841545SHajimu UMEMOTO /* XXX assumption on the size of IFID */ 16633841545SHajimu UMEMOTO bcopy(seed1, &seed[8], 8); 16733841545SHajimu UMEMOTO 16833841545SHajimu UMEMOTO if (0) { /* for debugging purposes only */ 16933841545SHajimu UMEMOTO int i; 17033841545SHajimu UMEMOTO 17133841545SHajimu UMEMOTO printf("generate_tmp_ifid: new randomized ID from: "); 17233841545SHajimu UMEMOTO for (i = 0; i < 16; i++) 17333841545SHajimu UMEMOTO printf("%02x", seed[i]); 17433841545SHajimu UMEMOTO printf(" "); 17533841545SHajimu UMEMOTO } 17633841545SHajimu UMEMOTO 17733841545SHajimu UMEMOTO /* generate 16 bytes of pseudo-random value. */ 17833841545SHajimu UMEMOTO bzero(&ctxt, sizeof(ctxt)); 17933841545SHajimu UMEMOTO MD5Init(&ctxt); 18033841545SHajimu UMEMOTO MD5Update(&ctxt, seed, sizeof(seed)); 18133841545SHajimu UMEMOTO MD5Final(digest, &ctxt); 18233841545SHajimu UMEMOTO 18333841545SHajimu UMEMOTO /* 18433841545SHajimu UMEMOTO * RFC 3041 3.2.1. (3) 18533841545SHajimu UMEMOTO * Take the left-most 64-bits of the MD5 digest and set bit 6 (the 18633841545SHajimu UMEMOTO * left-most bit is numbered 0) to zero. 18733841545SHajimu UMEMOTO */ 18833841545SHajimu UMEMOTO bcopy(digest, ret, 8); 18933841545SHajimu UMEMOTO ret[0] &= ~EUI64_UBIT; 19033841545SHajimu UMEMOTO 19133841545SHajimu UMEMOTO /* 19233841545SHajimu UMEMOTO * XXX: we'd like to ensure that the generated value is not zero 19333841545SHajimu UMEMOTO * for simplicity. If the caclculated digest happens to be zero, 19433841545SHajimu UMEMOTO * use a random non-zero value as the last resort. 19533841545SHajimu UMEMOTO */ 19633841545SHajimu UMEMOTO if (bcmp(nullbuf, ret, sizeof(nullbuf)) == 0) { 1972ce62dceSSUZUKI Shinsuke nd6log((LOG_INFO, 1982ce62dceSSUZUKI Shinsuke "generate_tmp_ifid: computed MD5 value is zero.\n")); 19933841545SHajimu UMEMOTO 200a02e1e2bSHajimu UMEMOTO val32 = arc4random(); 20133841545SHajimu UMEMOTO val32 = 1 + (val32 % (0xffffffff - 1)); 20233841545SHajimu UMEMOTO } 20333841545SHajimu UMEMOTO 20433841545SHajimu UMEMOTO /* 20533841545SHajimu UMEMOTO * RFC 3041 3.2.1. (4) 20633841545SHajimu UMEMOTO * Take the rightmost 64-bits of the MD5 digest and save them in 20733841545SHajimu UMEMOTO * stable storage as the history value to be used in the next 20833841545SHajimu UMEMOTO * iteration of the algorithm. 20933841545SHajimu UMEMOTO */ 21033841545SHajimu UMEMOTO bcopy(&digest[8], seed0, 8); 21133841545SHajimu UMEMOTO 21233841545SHajimu UMEMOTO if (0) { /* for debugging purposes only */ 21333841545SHajimu UMEMOTO int i; 21433841545SHajimu UMEMOTO 21533841545SHajimu UMEMOTO printf("to: "); 21633841545SHajimu UMEMOTO for (i = 0; i < 16; i++) 21733841545SHajimu UMEMOTO printf("%02x", digest[i]); 21833841545SHajimu UMEMOTO printf("\n"); 21933841545SHajimu UMEMOTO } 22033841545SHajimu UMEMOTO 22133841545SHajimu UMEMOTO return 0; 22233841545SHajimu UMEMOTO } 22333841545SHajimu UMEMOTO 22482cd038dSYoshinobu Inoue /* 225686cdd19SJun-ichiro itojun Hagino * Get interface identifier for the specified interface. 226686cdd19SJun-ichiro itojun Hagino * XXX assumes single sockaddr_dl (AF_LINK address) per an interface 2271272577eSXin LI * 2281272577eSXin LI * in6 - upper 64bits are preserved 22982cd038dSYoshinobu Inoue */ 230d28bde66SSUZUKI Shinsuke int 2311272577eSXin LI in6_get_hw_ifid(struct ifnet *ifp, struct in6_addr *in6) 23282cd038dSYoshinobu Inoue { 233686cdd19SJun-ichiro itojun Hagino struct ifaddr *ifa; 234686cdd19SJun-ichiro itojun Hagino struct sockaddr_dl *sdl; 235686cdd19SJun-ichiro itojun Hagino u_int8_t *addr; 236686cdd19SJun-ichiro itojun Hagino size_t addrlen; 237686cdd19SJun-ichiro itojun Hagino static u_int8_t allzero[8] = { 0, 0, 0, 0, 0, 0, 0, 0 }; 238686cdd19SJun-ichiro itojun Hagino static u_int8_t allone[8] = 239686cdd19SJun-ichiro itojun Hagino { 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff, 0xff }; 240686cdd19SJun-ichiro itojun Hagino 2411e6a4139SRobert Watson IF_ADDR_LOCK(ifp); 242c4dd3fe1SRobert Watson TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) { 24382cd038dSYoshinobu Inoue if (ifa->ifa_addr->sa_family != AF_LINK) 24482cd038dSYoshinobu Inoue continue; 24582cd038dSYoshinobu Inoue sdl = (struct sockaddr_dl *)ifa->ifa_addr; 24682cd038dSYoshinobu Inoue if (sdl == NULL) 24782cd038dSYoshinobu Inoue continue; 24882cd038dSYoshinobu Inoue if (sdl->sdl_alen == 0) 24982cd038dSYoshinobu Inoue continue; 250686cdd19SJun-ichiro itojun Hagino 251686cdd19SJun-ichiro itojun Hagino goto found; 252686cdd19SJun-ichiro itojun Hagino } 2531e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 254686cdd19SJun-ichiro itojun Hagino 255686cdd19SJun-ichiro itojun Hagino return -1; 256686cdd19SJun-ichiro itojun Hagino 257686cdd19SJun-ichiro itojun Hagino found: 2588c0fec80SRobert Watson IF_ADDR_LOCK_ASSERT(ifp); 259686cdd19SJun-ichiro itojun Hagino addr = LLADDR(sdl); 260686cdd19SJun-ichiro itojun Hagino addrlen = sdl->sdl_alen; 261686cdd19SJun-ichiro itojun Hagino 262686cdd19SJun-ichiro itojun Hagino /* get EUI64 */ 26382cd038dSYoshinobu Inoue switch (ifp->if_type) { 26482cd038dSYoshinobu Inoue case IFT_ETHER: 26582cd038dSYoshinobu Inoue case IFT_FDDI: 2662049fdeeSMatthew N. Dodd case IFT_ISO88025: 26782cd038dSYoshinobu Inoue case IFT_ATM: 26833841545SHajimu UMEMOTO case IFT_IEEE1394: 26933841545SHajimu UMEMOTO #ifdef IFT_IEEE80211 27033841545SHajimu UMEMOTO case IFT_IEEE80211: 27133841545SHajimu UMEMOTO #endif 27282cd038dSYoshinobu Inoue /* IEEE802/EUI64 cases - what others? */ 27333841545SHajimu UMEMOTO /* IEEE1394 uses 16byte length address starting with EUI64 */ 27433841545SHajimu UMEMOTO if (addrlen > 8) 27533841545SHajimu UMEMOTO addrlen = 8; 276686cdd19SJun-ichiro itojun Hagino 277686cdd19SJun-ichiro itojun Hagino /* look at IEEE802/EUI64 only */ 2781e6a4139SRobert Watson if (addrlen != 8 && addrlen != 6) { 2791e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 280686cdd19SJun-ichiro itojun Hagino return -1; 2811e6a4139SRobert Watson } 282686cdd19SJun-ichiro itojun Hagino 28382cd038dSYoshinobu Inoue /* 284686cdd19SJun-ichiro itojun Hagino * check for invalid MAC address - on bsdi, we see it a lot 285686cdd19SJun-ichiro itojun Hagino * since wildboar configures all-zero MAC on pccard before 286686cdd19SJun-ichiro itojun Hagino * card insertion. 28782cd038dSYoshinobu Inoue */ 2881e6a4139SRobert Watson if (bcmp(addr, allzero, addrlen) == 0) { 2891e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 290686cdd19SJun-ichiro itojun Hagino return -1; 2911e6a4139SRobert Watson } 2921e6a4139SRobert Watson if (bcmp(addr, allone, addrlen) == 0) { 2931e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 294686cdd19SJun-ichiro itojun Hagino return -1; 2951e6a4139SRobert Watson } 296686cdd19SJun-ichiro itojun Hagino 297686cdd19SJun-ichiro itojun Hagino /* make EUI64 address */ 298686cdd19SJun-ichiro itojun Hagino if (addrlen == 8) 299686cdd19SJun-ichiro itojun Hagino bcopy(addr, &in6->s6_addr[8], 8); 300686cdd19SJun-ichiro itojun Hagino else if (addrlen == 6) { 301686cdd19SJun-ichiro itojun Hagino in6->s6_addr[8] = addr[0]; 302686cdd19SJun-ichiro itojun Hagino in6->s6_addr[9] = addr[1]; 303686cdd19SJun-ichiro itojun Hagino in6->s6_addr[10] = addr[2]; 304686cdd19SJun-ichiro itojun Hagino in6->s6_addr[11] = 0xff; 305686cdd19SJun-ichiro itojun Hagino in6->s6_addr[12] = 0xfe; 306686cdd19SJun-ichiro itojun Hagino in6->s6_addr[13] = addr[3]; 307686cdd19SJun-ichiro itojun Hagino in6->s6_addr[14] = addr[4]; 308686cdd19SJun-ichiro itojun Hagino in6->s6_addr[15] = addr[5]; 309686cdd19SJun-ichiro itojun Hagino } 31082cd038dSYoshinobu Inoue break; 311686cdd19SJun-ichiro itojun Hagino 31282cd038dSYoshinobu Inoue case IFT_ARCNET: 3131e6a4139SRobert Watson if (addrlen != 1) { 3141e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 315686cdd19SJun-ichiro itojun Hagino return -1; 3161e6a4139SRobert Watson } 3171e6a4139SRobert Watson if (!addr[0]) { 3181e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 319686cdd19SJun-ichiro itojun Hagino return -1; 3201e6a4139SRobert Watson } 321686cdd19SJun-ichiro itojun Hagino 322686cdd19SJun-ichiro itojun Hagino bzero(&in6->s6_addr[8], 8); 323686cdd19SJun-ichiro itojun Hagino in6->s6_addr[15] = addr[0]; 324686cdd19SJun-ichiro itojun Hagino 32582cd038dSYoshinobu Inoue /* 326686cdd19SJun-ichiro itojun Hagino * due to insufficient bitwidth, we mark it local. 32782cd038dSYoshinobu Inoue */ 328686cdd19SJun-ichiro itojun Hagino in6->s6_addr[8] &= ~EUI64_GBIT; /* g bit to "individual" */ 329686cdd19SJun-ichiro itojun Hagino in6->s6_addr[8] |= EUI64_UBIT; /* u bit to "local" */ 33082cd038dSYoshinobu Inoue break; 331686cdd19SJun-ichiro itojun Hagino 332686cdd19SJun-ichiro itojun Hagino case IFT_GIF: 333686cdd19SJun-ichiro itojun Hagino #ifdef IFT_STF 334686cdd19SJun-ichiro itojun Hagino case IFT_STF: 33582cd038dSYoshinobu Inoue #endif 336686cdd19SJun-ichiro itojun Hagino /* 33733841545SHajimu UMEMOTO * RFC2893 says: "SHOULD use IPv4 address as ifid source". 338686cdd19SJun-ichiro itojun Hagino * however, IPv4 address is not very suitable as unique 339686cdd19SJun-ichiro itojun Hagino * identifier source (can be renumbered). 340686cdd19SJun-ichiro itojun Hagino * we don't do this. 341686cdd19SJun-ichiro itojun Hagino */ 3421e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 343686cdd19SJun-ichiro itojun Hagino return -1; 34482cd038dSYoshinobu Inoue 345686cdd19SJun-ichiro itojun Hagino default: 3461e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 347686cdd19SJun-ichiro itojun Hagino return -1; 348686cdd19SJun-ichiro itojun Hagino } 34982cd038dSYoshinobu Inoue 350686cdd19SJun-ichiro itojun Hagino /* sanity check: g bit must not indicate "group" */ 3511e6a4139SRobert Watson if (EUI64_GROUP(in6)) { 3521e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 353686cdd19SJun-ichiro itojun Hagino return -1; 3541e6a4139SRobert Watson } 35582cd038dSYoshinobu Inoue 356686cdd19SJun-ichiro itojun Hagino /* convert EUI64 into IPv6 interface identifier */ 357686cdd19SJun-ichiro itojun Hagino EUI64_TO_IFID(in6); 358686cdd19SJun-ichiro itojun Hagino 359686cdd19SJun-ichiro itojun Hagino /* 360686cdd19SJun-ichiro itojun Hagino * sanity check: ifid must not be all zero, avoid conflict with 361686cdd19SJun-ichiro itojun Hagino * subnet router anycast 362686cdd19SJun-ichiro itojun Hagino */ 363686cdd19SJun-ichiro itojun Hagino if ((in6->s6_addr[8] & ~(EUI64_GBIT | EUI64_UBIT)) == 0x00 && 364686cdd19SJun-ichiro itojun Hagino bcmp(&in6->s6_addr[9], allzero, 7) == 0) { 3651e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 366686cdd19SJun-ichiro itojun Hagino return -1; 367686cdd19SJun-ichiro itojun Hagino } 36882cd038dSYoshinobu Inoue 3691e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 37082cd038dSYoshinobu Inoue return 0; 371686cdd19SJun-ichiro itojun Hagino } 372686cdd19SJun-ichiro itojun Hagino 373686cdd19SJun-ichiro itojun Hagino /* 374686cdd19SJun-ichiro itojun Hagino * Get interface identifier for the specified interface. If it is not 375686cdd19SJun-ichiro itojun Hagino * available on ifp0, borrow interface identifier from other information 376686cdd19SJun-ichiro itojun Hagino * sources. 3771272577eSXin LI * 3781272577eSXin LI * altifp - secondary EUI64 source 379686cdd19SJun-ichiro itojun Hagino */ 380686cdd19SJun-ichiro itojun Hagino static int 3811272577eSXin LI get_ifid(struct ifnet *ifp0, struct ifnet *altifp, 3821272577eSXin LI struct in6_addr *in6) 383686cdd19SJun-ichiro itojun Hagino { 384686cdd19SJun-ichiro itojun Hagino struct ifnet *ifp; 385686cdd19SJun-ichiro itojun Hagino 386686cdd19SJun-ichiro itojun Hagino /* first, try to get it from the interface itself */ 387d28bde66SSUZUKI Shinsuke if (in6_get_hw_ifid(ifp0, in6) == 0) { 38833841545SHajimu UMEMOTO nd6log((LOG_DEBUG, "%s: got interface identifier from itself\n", 38933841545SHajimu UMEMOTO if_name(ifp0))); 390686cdd19SJun-ichiro itojun Hagino goto success; 391686cdd19SJun-ichiro itojun Hagino } 392686cdd19SJun-ichiro itojun Hagino 393686cdd19SJun-ichiro itojun Hagino /* try secondary EUI64 source. this basically is for ATM PVC */ 394d28bde66SSUZUKI Shinsuke if (altifp && in6_get_hw_ifid(altifp, in6) == 0) { 39533841545SHajimu UMEMOTO nd6log((LOG_DEBUG, "%s: got interface identifier from %s\n", 39633841545SHajimu UMEMOTO if_name(ifp0), if_name(altifp))); 397686cdd19SJun-ichiro itojun Hagino goto success; 398686cdd19SJun-ichiro itojun Hagino } 399686cdd19SJun-ichiro itojun Hagino 400686cdd19SJun-ichiro itojun Hagino /* next, try to get it from some other hardware interface */ 40177dfcdc4SRobert Watson IFNET_RLOCK_NOSLEEP(); 402603724d3SBjoern A. Zeeb for (ifp = V_ifnet.tqh_first; ifp; ifp = ifp->if_list.tqe_next) { 403686cdd19SJun-ichiro itojun Hagino if (ifp == ifp0) 404686cdd19SJun-ichiro itojun Hagino continue; 405d28bde66SSUZUKI Shinsuke if (in6_get_hw_ifid(ifp, in6) != 0) 406686cdd19SJun-ichiro itojun Hagino continue; 407686cdd19SJun-ichiro itojun Hagino 408686cdd19SJun-ichiro itojun Hagino /* 409686cdd19SJun-ichiro itojun Hagino * to borrow ifid from other interface, ifid needs to be 410686cdd19SJun-ichiro itojun Hagino * globally unique 411686cdd19SJun-ichiro itojun Hagino */ 412686cdd19SJun-ichiro itojun Hagino if (IFID_UNIVERSAL(in6)) { 41333841545SHajimu UMEMOTO nd6log((LOG_DEBUG, 41433841545SHajimu UMEMOTO "%s: borrow interface identifier from %s\n", 41533841545SHajimu UMEMOTO if_name(ifp0), if_name(ifp))); 41677dfcdc4SRobert Watson IFNET_RUNLOCK_NOSLEEP(); 417686cdd19SJun-ichiro itojun Hagino goto success; 418686cdd19SJun-ichiro itojun Hagino } 419686cdd19SJun-ichiro itojun Hagino } 42077dfcdc4SRobert Watson IFNET_RUNLOCK_NOSLEEP(); 421686cdd19SJun-ichiro itojun Hagino 422686cdd19SJun-ichiro itojun Hagino /* last resort: get from random number source */ 423686cdd19SJun-ichiro itojun Hagino if (get_rand_ifid(ifp, in6) == 0) { 42433841545SHajimu UMEMOTO nd6log((LOG_DEBUG, 42533841545SHajimu UMEMOTO "%s: interface identifier generated by random number\n", 42633841545SHajimu UMEMOTO if_name(ifp0))); 427686cdd19SJun-ichiro itojun Hagino goto success; 428686cdd19SJun-ichiro itojun Hagino } 429686cdd19SJun-ichiro itojun Hagino 430de9c893eSJun-ichiro itojun Hagino printf("%s: failed to get interface identifier\n", if_name(ifp0)); 431686cdd19SJun-ichiro itojun Hagino return -1; 432686cdd19SJun-ichiro itojun Hagino 433686cdd19SJun-ichiro itojun Hagino success: 4347efe5d92SHajimu UMEMOTO nd6log((LOG_INFO, "%s: ifid: %02x:%02x:%02x:%02x:%02x:%02x:%02x:%02x\n", 4357efe5d92SHajimu UMEMOTO if_name(ifp0), in6->s6_addr[8], in6->s6_addr[9], in6->s6_addr[10], 4367efe5d92SHajimu UMEMOTO in6->s6_addr[11], in6->s6_addr[12], in6->s6_addr[13], 43733841545SHajimu UMEMOTO in6->s6_addr[14], in6->s6_addr[15])); 438686cdd19SJun-ichiro itojun Hagino return 0; 439686cdd19SJun-ichiro itojun Hagino } 440686cdd19SJun-ichiro itojun Hagino 4411272577eSXin LI /* 4421272577eSXin LI * altifp - secondary EUI64 source 4431272577eSXin LI */ 444686cdd19SJun-ichiro itojun Hagino static int 4451272577eSXin LI in6_ifattach_linklocal(struct ifnet *ifp, struct ifnet *altifp) 446686cdd19SJun-ichiro itojun Hagino { 447686cdd19SJun-ichiro itojun Hagino struct in6_ifaddr *ia; 44833841545SHajimu UMEMOTO struct in6_aliasreq ifra; 449743eee66SSUZUKI Shinsuke struct nd_prefixctl pr0; 45033841545SHajimu UMEMOTO int i, error; 451686cdd19SJun-ichiro itojun Hagino 452686cdd19SJun-ichiro itojun Hagino /* 45333841545SHajimu UMEMOTO * configure link-local address. 454686cdd19SJun-ichiro itojun Hagino */ 45533841545SHajimu UMEMOTO bzero(&ifra, sizeof(ifra)); 456686cdd19SJun-ichiro itojun Hagino 45733841545SHajimu UMEMOTO /* 45833841545SHajimu UMEMOTO * in6_update_ifa() does not use ifra_name, but we accurately set it 45933841545SHajimu UMEMOTO * for safety. 46033841545SHajimu UMEMOTO */ 46133841545SHajimu UMEMOTO strncpy(ifra.ifra_name, if_name(ifp), sizeof(ifra.ifra_name)); 46233841545SHajimu UMEMOTO 46333841545SHajimu UMEMOTO ifra.ifra_addr.sin6_family = AF_INET6; 46433841545SHajimu UMEMOTO ifra.ifra_addr.sin6_len = sizeof(struct sockaddr_in6); 465a1f7e5f8SHajimu UMEMOTO ifra.ifra_addr.sin6_addr.s6_addr32[0] = htonl(0xfe800000); 46633841545SHajimu UMEMOTO ifra.ifra_addr.sin6_addr.s6_addr32[1] = 0; 46733841545SHajimu UMEMOTO if ((ifp->if_flags & IFF_LOOPBACK) != 0) { 46833841545SHajimu UMEMOTO ifra.ifra_addr.sin6_addr.s6_addr32[2] = 0; 46933841545SHajimu UMEMOTO ifra.ifra_addr.sin6_addr.s6_addr32[3] = htonl(1); 47033841545SHajimu UMEMOTO } else { 47133841545SHajimu UMEMOTO if (get_ifid(ifp, altifp, &ifra.ifra_addr.sin6_addr) != 0) { 47233841545SHajimu UMEMOTO nd6log((LOG_ERR, 47333841545SHajimu UMEMOTO "%s: no ifid available\n", if_name(ifp))); 4747efe5d92SHajimu UMEMOTO return (-1); 47533841545SHajimu UMEMOTO } 47633841545SHajimu UMEMOTO } 477a1f7e5f8SHajimu UMEMOTO if (in6_setscope(&ifra.ifra_addr.sin6_addr, ifp, NULL)) 478a1f7e5f8SHajimu UMEMOTO return (-1); 47933841545SHajimu UMEMOTO 48033841545SHajimu UMEMOTO ifra.ifra_prefixmask.sin6_len = sizeof(struct sockaddr_in6); 48133841545SHajimu UMEMOTO ifra.ifra_prefixmask.sin6_family = AF_INET6; 48233841545SHajimu UMEMOTO ifra.ifra_prefixmask.sin6_addr = in6mask64; 48333841545SHajimu UMEMOTO /* link-local addresses should NEVER expire. */ 48433841545SHajimu UMEMOTO ifra.ifra_lifetime.ia6t_vltime = ND6_INFINITE_LIFETIME; 48533841545SHajimu UMEMOTO ifra.ifra_lifetime.ia6t_pltime = ND6_INFINITE_LIFETIME; 486686cdd19SJun-ichiro itojun Hagino 48733841545SHajimu UMEMOTO /* 48833841545SHajimu UMEMOTO * Now call in6_update_ifa() to do a bunch of procedures to configure 4892ce62dceSSUZUKI Shinsuke * a link-local address. We can set the 3rd argument to NULL, because 49088ff5695SSUZUKI Shinsuke * we know there's no other link-local address on the interface 49188ff5695SSUZUKI Shinsuke * and therefore we are adding one (instead of updating one). 49233841545SHajimu UMEMOTO */ 493743eee66SSUZUKI Shinsuke if ((error = in6_update_ifa(ifp, &ifra, NULL, 494743eee66SSUZUKI Shinsuke IN6_IFAUPDATE_DADDELAY)) != 0) { 49533841545SHajimu UMEMOTO /* 49633841545SHajimu UMEMOTO * XXX: When the interface does not support IPv6, this call 49733841545SHajimu UMEMOTO * would fail in the SIOCSIFADDR ioctl. I believe the 49833841545SHajimu UMEMOTO * notification is rather confusing in this case, so just 4997efe5d92SHajimu UMEMOTO * suppress it. (jinmei@kame.net 20010130) 50033841545SHajimu UMEMOTO */ 50133841545SHajimu UMEMOTO if (error != EAFNOSUPPORT) 5022ce62dceSSUZUKI Shinsuke nd6log((LOG_NOTICE, "in6_ifattach_linklocal: failed to " 50333841545SHajimu UMEMOTO "configure a link-local address on %s " 50433841545SHajimu UMEMOTO "(errno=%d)\n", 5052ce62dceSSUZUKI Shinsuke if_name(ifp), error)); 50633841545SHajimu UMEMOTO return (-1); 507686cdd19SJun-ichiro itojun Hagino } 50833841545SHajimu UMEMOTO 50933841545SHajimu UMEMOTO ia = in6ifa_ifpforlinklocal(ifp, 0); /* ia must not be NULL */ 51033841545SHajimu UMEMOTO #ifdef DIAGNOSTIC 51133841545SHajimu UMEMOTO if (!ia) { 51233841545SHajimu UMEMOTO panic("ia == NULL in in6_ifattach_linklocal"); 51333841545SHajimu UMEMOTO /* NOTREACHED */ 514686cdd19SJun-ichiro itojun Hagino } 515686cdd19SJun-ichiro itojun Hagino #endif 5168c0fec80SRobert Watson ifa_free(&ia->ia_ifa); 517686cdd19SJun-ichiro itojun Hagino 51833841545SHajimu UMEMOTO /* 5197efe5d92SHajimu UMEMOTO * Make the link-local prefix (fe80::%link/64) as on-link. 52033841545SHajimu UMEMOTO * Since we'd like to manage prefixes separately from addresses, 52133841545SHajimu UMEMOTO * we make an ND6 prefix structure for the link-local prefix, 52233841545SHajimu UMEMOTO * and add it to the prefix list as a never-expire prefix. 52333841545SHajimu UMEMOTO * XXX: this change might affect some existing code base... 52433841545SHajimu UMEMOTO */ 52533841545SHajimu UMEMOTO bzero(&pr0, sizeof(pr0)); 52633841545SHajimu UMEMOTO pr0.ndpr_ifp = ifp; 52733841545SHajimu UMEMOTO /* this should be 64 at this moment. */ 52833841545SHajimu UMEMOTO pr0.ndpr_plen = in6_mask2len(&ifra.ifra_prefixmask.sin6_addr, NULL); 52933841545SHajimu UMEMOTO pr0.ndpr_prefix = ifra.ifra_addr; 53033841545SHajimu UMEMOTO /* apply the mask for safety. (nd6_prelist_add will apply it again) */ 53133841545SHajimu UMEMOTO for (i = 0; i < 4; i++) { 53233841545SHajimu UMEMOTO pr0.ndpr_prefix.sin6_addr.s6_addr32[i] &= 53333841545SHajimu UMEMOTO in6mask64.s6_addr32[i]; 53433841545SHajimu UMEMOTO } 53533841545SHajimu UMEMOTO /* 53633841545SHajimu UMEMOTO * Initialize parameters. The link-local prefix must always be 53733841545SHajimu UMEMOTO * on-link, and its lifetimes never expire. 53833841545SHajimu UMEMOTO */ 53933841545SHajimu UMEMOTO pr0.ndpr_raf_onlink = 1; 54033841545SHajimu UMEMOTO pr0.ndpr_raf_auto = 1; /* probably meaningless */ 54133841545SHajimu UMEMOTO pr0.ndpr_vltime = ND6_INFINITE_LIFETIME; 54233841545SHajimu UMEMOTO pr0.ndpr_pltime = ND6_INFINITE_LIFETIME; 54333841545SHajimu UMEMOTO /* 54433841545SHajimu UMEMOTO * Since there is no other link-local addresses, nd6_prefix_lookup() 54533841545SHajimu UMEMOTO * probably returns NULL. However, we cannot always expect the result. 54633841545SHajimu UMEMOTO * For example, if we first remove the (only) existing link-local 54733841545SHajimu UMEMOTO * address, and then reconfigure another one, the prefix is still 54833841545SHajimu UMEMOTO * valid with referring to the old link-local address. 54933841545SHajimu UMEMOTO */ 55033841545SHajimu UMEMOTO if (nd6_prefix_lookup(&pr0) == NULL) { 55133841545SHajimu UMEMOTO if ((error = nd6_prelist_add(&pr0, NULL, NULL)) != 0) 55233841545SHajimu UMEMOTO return (error); 553686cdd19SJun-ichiro itojun Hagino } 554686cdd19SJun-ichiro itojun Hagino 555686cdd19SJun-ichiro itojun Hagino return 0; 556686cdd19SJun-ichiro itojun Hagino } 557686cdd19SJun-ichiro itojun Hagino 5581272577eSXin LI /* 5591272577eSXin LI * ifp - must be IFT_LOOP 5601272577eSXin LI */ 561686cdd19SJun-ichiro itojun Hagino static int 5621272577eSXin LI in6_ifattach_loopback(struct ifnet *ifp) 563686cdd19SJun-ichiro itojun Hagino { 56433841545SHajimu UMEMOTO struct in6_aliasreq ifra; 56533841545SHajimu UMEMOTO int error; 56633841545SHajimu UMEMOTO 56733841545SHajimu UMEMOTO bzero(&ifra, sizeof(ifra)); 568686cdd19SJun-ichiro itojun Hagino 569686cdd19SJun-ichiro itojun Hagino /* 57033841545SHajimu UMEMOTO * in6_update_ifa() does not use ifra_name, but we accurately set it 57133841545SHajimu UMEMOTO * for safety. 572686cdd19SJun-ichiro itojun Hagino */ 57333841545SHajimu UMEMOTO strncpy(ifra.ifra_name, if_name(ifp), sizeof(ifra.ifra_name)); 574686cdd19SJun-ichiro itojun Hagino 57533841545SHajimu UMEMOTO ifra.ifra_prefixmask.sin6_len = sizeof(struct sockaddr_in6); 57633841545SHajimu UMEMOTO ifra.ifra_prefixmask.sin6_family = AF_INET6; 57733841545SHajimu UMEMOTO ifra.ifra_prefixmask.sin6_addr = in6mask128; 578686cdd19SJun-ichiro itojun Hagino 579686cdd19SJun-ichiro itojun Hagino /* 580686cdd19SJun-ichiro itojun Hagino * Always initialize ia_dstaddr (= broadcast address) to loopback 58133841545SHajimu UMEMOTO * address. Follows IPv4 practice - see in_ifinit(). 582686cdd19SJun-ichiro itojun Hagino */ 58333841545SHajimu UMEMOTO ifra.ifra_dstaddr.sin6_len = sizeof(struct sockaddr_in6); 58433841545SHajimu UMEMOTO ifra.ifra_dstaddr.sin6_family = AF_INET6; 58533841545SHajimu UMEMOTO ifra.ifra_dstaddr.sin6_addr = in6addr_loopback; 586686cdd19SJun-ichiro itojun Hagino 58733841545SHajimu UMEMOTO ifra.ifra_addr.sin6_len = sizeof(struct sockaddr_in6); 58833841545SHajimu UMEMOTO ifra.ifra_addr.sin6_family = AF_INET6; 58933841545SHajimu UMEMOTO ifra.ifra_addr.sin6_addr = in6addr_loopback; 590686cdd19SJun-ichiro itojun Hagino 59133841545SHajimu UMEMOTO /* the loopback address should NEVER expire. */ 59233841545SHajimu UMEMOTO ifra.ifra_lifetime.ia6t_vltime = ND6_INFINITE_LIFETIME; 59333841545SHajimu UMEMOTO ifra.ifra_lifetime.ia6t_pltime = ND6_INFINITE_LIFETIME; 594686cdd19SJun-ichiro itojun Hagino 59588ff5695SSUZUKI Shinsuke /* we don't need to perform DAD on loopback interfaces. */ 59633841545SHajimu UMEMOTO ifra.ifra_flags |= IN6_IFF_NODAD; 59733841545SHajimu UMEMOTO 59833841545SHajimu UMEMOTO /* skip registration to the prefix list. XXX should be temporary. */ 59933841545SHajimu UMEMOTO ifra.ifra_flags |= IN6_IFF_NOPFX; 60033841545SHajimu UMEMOTO 60133841545SHajimu UMEMOTO /* 60288ff5695SSUZUKI Shinsuke * We are sure that this is a newly assigned address, so we can set 60388ff5695SSUZUKI Shinsuke * NULL to the 3rd arg. 60433841545SHajimu UMEMOTO */ 605743eee66SSUZUKI Shinsuke if ((error = in6_update_ifa(ifp, &ifra, NULL, 0)) != 0) { 6062ce62dceSSUZUKI Shinsuke nd6log((LOG_ERR, "in6_ifattach_loopback: failed to configure " 60733841545SHajimu UMEMOTO "the loopback address on %s (errno=%d)\n", 6082ce62dceSSUZUKI Shinsuke if_name(ifp), error)); 60933841545SHajimu UMEMOTO return (-1); 610686cdd19SJun-ichiro itojun Hagino } 611686cdd19SJun-ichiro itojun Hagino 612686cdd19SJun-ichiro itojun Hagino return 0; 613686cdd19SJun-ichiro itojun Hagino } 614686cdd19SJun-ichiro itojun Hagino 615686cdd19SJun-ichiro itojun Hagino /* 616686cdd19SJun-ichiro itojun Hagino * compute NI group address, based on the current hostname setting. 617686cdd19SJun-ichiro itojun Hagino * see draft-ietf-ipngwg-icmp-name-lookup-* (04 and later). 618686cdd19SJun-ichiro itojun Hagino * 619686cdd19SJun-ichiro itojun Hagino * when ifp == NULL, the caller is responsible for filling scopeid. 620686cdd19SJun-ichiro itojun Hagino */ 62133841545SHajimu UMEMOTO int 6221272577eSXin LI in6_nigroup(struct ifnet *ifp, const char *name, int namelen, 6231272577eSXin LI struct in6_addr *in6) 624686cdd19SJun-ichiro itojun Hagino { 62576ca6f88SJamie Gritton struct prison *pr; 626686cdd19SJun-ichiro itojun Hagino const char *p; 62733841545SHajimu UMEMOTO u_char *q; 628686cdd19SJun-ichiro itojun Hagino MD5_CTX ctxt; 629686cdd19SJun-ichiro itojun Hagino u_int8_t digest[16]; 630686cdd19SJun-ichiro itojun Hagino char l; 63133841545SHajimu UMEMOTO char n[64]; /* a single label must not exceed 63 chars */ 632686cdd19SJun-ichiro itojun Hagino 6330304c731SJamie Gritton /* 6340304c731SJamie Gritton * If no name is given and namelen is -1, 6350304c731SJamie Gritton * we try to do the hostname lookup ourselves. 6360304c731SJamie Gritton */ 6370304c731SJamie Gritton if (!name && namelen == -1) { 63876ca6f88SJamie Gritton pr = curthread->td_ucred->cr_prison; 63976ca6f88SJamie Gritton mtx_lock(&pr->pr_mtx); 640c1f19219SJamie Gritton name = pr->pr_hostname; 6410304c731SJamie Gritton namelen = strlen(name); 6420304c731SJamie Gritton } else 64376ca6f88SJamie Gritton pr = NULL; 6440304c731SJamie Gritton if (!name || !namelen) { 64576ca6f88SJamie Gritton if (pr != NULL) 64676ca6f88SJamie Gritton mtx_unlock(&pr->pr_mtx); 647686cdd19SJun-ichiro itojun Hagino return -1; 6480304c731SJamie Gritton } 649686cdd19SJun-ichiro itojun Hagino 650686cdd19SJun-ichiro itojun Hagino p = name; 651686cdd19SJun-ichiro itojun Hagino while (p && *p && *p != '.' && p - name < namelen) 652686cdd19SJun-ichiro itojun Hagino p++; 6530304c731SJamie Gritton if (p == name || p - name > sizeof(n) - 1) { 65476ca6f88SJamie Gritton if (pr != NULL) 65576ca6f88SJamie Gritton mtx_unlock(&pr->pr_mtx); 656686cdd19SJun-ichiro itojun Hagino return -1; /* label too long */ 6570304c731SJamie Gritton } 658686cdd19SJun-ichiro itojun Hagino l = p - name; 65933841545SHajimu UMEMOTO strncpy(n, name, l); 66076ca6f88SJamie Gritton if (pr != NULL) 66176ca6f88SJamie Gritton mtx_unlock(&pr->pr_mtx); 66233841545SHajimu UMEMOTO n[(int)l] = '\0'; 66333841545SHajimu UMEMOTO for (q = n; *q; q++) { 66433841545SHajimu UMEMOTO if ('A' <= *q && *q <= 'Z') 66533841545SHajimu UMEMOTO *q = *q - 'A' + 'a'; 66633841545SHajimu UMEMOTO } 667686cdd19SJun-ichiro itojun Hagino 668686cdd19SJun-ichiro itojun Hagino /* generate 8 bytes of pseudo-random value. */ 669686cdd19SJun-ichiro itojun Hagino bzero(&ctxt, sizeof(ctxt)); 670686cdd19SJun-ichiro itojun Hagino MD5Init(&ctxt); 671686cdd19SJun-ichiro itojun Hagino MD5Update(&ctxt, &l, sizeof(l)); 67233841545SHajimu UMEMOTO MD5Update(&ctxt, n, l); 673686cdd19SJun-ichiro itojun Hagino MD5Final(digest, &ctxt); 674686cdd19SJun-ichiro itojun Hagino 675686cdd19SJun-ichiro itojun Hagino bzero(in6, sizeof(*in6)); 6762ce62dceSSUZUKI Shinsuke in6->s6_addr16[0] = IPV6_ADDR_INT16_MLL; 677686cdd19SJun-ichiro itojun Hagino in6->s6_addr8[11] = 2; 678686cdd19SJun-ichiro itojun Hagino bcopy(digest, &in6->s6_addr32[3], sizeof(in6->s6_addr32[3])); 679a1f7e5f8SHajimu UMEMOTO if (in6_setscope(in6, ifp, NULL)) 680a1f7e5f8SHajimu UMEMOTO return (-1); /* XXX: should not fail */ 681686cdd19SJun-ichiro itojun Hagino 682686cdd19SJun-ichiro itojun Hagino return 0; 683686cdd19SJun-ichiro itojun Hagino } 684686cdd19SJun-ichiro itojun Hagino 68582cd038dSYoshinobu Inoue /* 686686cdd19SJun-ichiro itojun Hagino * XXX multiple loopback interface needs more care. for instance, 687686cdd19SJun-ichiro itojun Hagino * nodelocal address needs to be configured onto only one of them. 688686cdd19SJun-ichiro itojun Hagino * XXX multiple link-local address case 6891272577eSXin LI * 6901272577eSXin LI * altifp - secondary EUI64 source 69182cd038dSYoshinobu Inoue */ 69282cd038dSYoshinobu Inoue void 6931272577eSXin LI in6_ifattach(struct ifnet *ifp, struct ifnet *altifp) 69482cd038dSYoshinobu Inoue { 695686cdd19SJun-ichiro itojun Hagino struct in6_ifaddr *ia; 696686cdd19SJun-ichiro itojun Hagino struct in6_addr in6; 69733841545SHajimu UMEMOTO 69833841545SHajimu UMEMOTO /* some of the interfaces are inherently not IPv6 capable */ 69933841545SHajimu UMEMOTO switch (ifp->if_type) { 700cc5934f5SMax Laier case IFT_PFLOG: 701cc5934f5SMax Laier case IFT_PFSYNC: 702a9771948SGleb Smirnoff case IFT_CARP: 703cc5934f5SMax Laier return; 70433841545SHajimu UMEMOTO } 70582cd038dSYoshinobu Inoue 70682cd038dSYoshinobu Inoue /* 707686cdd19SJun-ichiro itojun Hagino * quirks based on interface type 70882cd038dSYoshinobu Inoue */ 709686cdd19SJun-ichiro itojun Hagino switch (ifp->if_type) { 710686cdd19SJun-ichiro itojun Hagino #ifdef IFT_STF 711686cdd19SJun-ichiro itojun Hagino case IFT_STF: 71282cd038dSYoshinobu Inoue /* 71388ff5695SSUZUKI Shinsuke * 6to4 interface is a very special kind of beast. 71488ff5695SSUZUKI Shinsuke * no multicast, no linklocal. RFC2529 specifies how to make 71588ff5695SSUZUKI Shinsuke * linklocals for 6to4 interface, but there's no use and 71688ff5695SSUZUKI Shinsuke * it is rather harmful to have one. 71782cd038dSYoshinobu Inoue */ 718686cdd19SJun-ichiro itojun Hagino goto statinit; 719686cdd19SJun-ichiro itojun Hagino #endif 72082cd038dSYoshinobu Inoue default: 72182cd038dSYoshinobu Inoue break; 72282cd038dSYoshinobu Inoue } 72382cd038dSYoshinobu Inoue 724686cdd19SJun-ichiro itojun Hagino /* 725686cdd19SJun-ichiro itojun Hagino * usually, we require multicast capability to the interface 726686cdd19SJun-ichiro itojun Hagino */ 727686cdd19SJun-ichiro itojun Hagino if ((ifp->if_flags & IFF_MULTICAST) == 0) { 7282ce62dceSSUZUKI Shinsuke nd6log((LOG_INFO, "in6_ifattach: " 72933841545SHajimu UMEMOTO "%s is not multicast capable, IPv6 not enabled\n", 7302ce62dceSSUZUKI Shinsuke if_name(ifp))); 73182cd038dSYoshinobu Inoue return; 73282cd038dSYoshinobu Inoue } 733686cdd19SJun-ichiro itojun Hagino 734686cdd19SJun-ichiro itojun Hagino /* 73533841545SHajimu UMEMOTO * assign loopback address for loopback interface. 73633841545SHajimu UMEMOTO * XXX multiple loopback interface case. 737686cdd19SJun-ichiro itojun Hagino */ 73833841545SHajimu UMEMOTO if ((ifp->if_flags & IFF_LOOPBACK) != 0) { 7398c0fec80SRobert Watson struct ifaddr *ifa; 7408c0fec80SRobert Watson 741686cdd19SJun-ichiro itojun Hagino in6 = in6addr_loopback; 7428c0fec80SRobert Watson ifa = (struct ifaddr *)in6ifa_ifpwithaddr(ifp, &in6); 7438c0fec80SRobert Watson if (ifa == NULL) { 744686cdd19SJun-ichiro itojun Hagino if (in6_ifattach_loopback(ifp) != 0) 745686cdd19SJun-ichiro itojun Hagino return; 7468c0fec80SRobert Watson } else 7478c0fec80SRobert Watson ifa_free(ifa); 748686cdd19SJun-ichiro itojun Hagino } 749686cdd19SJun-ichiro itojun Hagino 75033841545SHajimu UMEMOTO /* 75133841545SHajimu UMEMOTO * assign a link-local address, if there's none. 75233841545SHajimu UMEMOTO */ 753a283298cSHiroki Sato if (ifp->if_type != IFT_BRIDGE && 754a283298cSHiroki Sato !(ND_IFINFO(ifp)->flags & ND6_IFF_IFDISABLED) && 755a283298cSHiroki Sato ND_IFINFO(ifp)->flags & ND6_IFF_AUTO_LINKLOCAL) { 756a283298cSHiroki Sato int error; 757a283298cSHiroki Sato 75833841545SHajimu UMEMOTO ia = in6ifa_ifpforlinklocal(ifp, 0); 75933841545SHajimu UMEMOTO if (ia == NULL) { 760a283298cSHiroki Sato error = in6_ifattach_linklocal(ifp, altifp); 761a283298cSHiroki Sato if (error) 762a283298cSHiroki Sato log(LOG_NOTICE, "in6_ifattach_linklocal: " 763a283298cSHiroki Sato "failed to add a link-local addr to %s\n", 764a283298cSHiroki Sato if_name(ifp)); 7658c0fec80SRobert Watson } else 7668c0fec80SRobert Watson ifa_free(&ia->ia_ifa); 76733841545SHajimu UMEMOTO } 76833841545SHajimu UMEMOTO 76933841545SHajimu UMEMOTO #ifdef IFT_STF /* XXX */ 77033841545SHajimu UMEMOTO statinit: 771686cdd19SJun-ichiro itojun Hagino #endif 77282cd038dSYoshinobu Inoue 77382cd038dSYoshinobu Inoue /* update dynamically. */ 774603724d3SBjoern A. Zeeb if (V_in6_maxmtu < ifp->if_mtu) 775603724d3SBjoern A. Zeeb V_in6_maxmtu = ifp->if_mtu; 77682cd038dSYoshinobu Inoue } 77782cd038dSYoshinobu Inoue 778686cdd19SJun-ichiro itojun Hagino /* 779686cdd19SJun-ichiro itojun Hagino * NOTE: in6_ifdetach() does not support loopback if at this moment. 78033841545SHajimu UMEMOTO * We don't need this function in bsdi, because interfaces are never removed 78133841545SHajimu UMEMOTO * from the ifnet list in bsdi. 782686cdd19SJun-ichiro itojun Hagino */ 78382cd038dSYoshinobu Inoue void 7841272577eSXin LI in6_ifdetach(struct ifnet *ifp) 78582cd038dSYoshinobu Inoue { 78680af0152SRobert Watson struct in6_ifaddr *ia; 787686cdd19SJun-ichiro itojun Hagino struct ifaddr *ifa, *next; 788c2c2a7c1SBjoern A. Zeeb struct radix_node_head *rnh; 78982cd038dSYoshinobu Inoue struct rtentry *rt; 79082cd038dSYoshinobu Inoue short rtflags; 791686cdd19SJun-ichiro itojun Hagino struct sockaddr_in6 sin6; 79209a52a55SJINMEI Tatuya struct in6_multi_mship *imm; 79382cd038dSYoshinobu Inoue 794686cdd19SJun-ichiro itojun Hagino /* remove neighbor management table */ 795686cdd19SJun-ichiro itojun Hagino nd6_purge(ifp); 796686cdd19SJun-ichiro itojun Hagino 797686cdd19SJun-ichiro itojun Hagino /* nuke any of IPv6 addresses we have */ 798c4dd3fe1SRobert Watson TAILQ_FOREACH_SAFE(ifa, &ifp->if_addrhead, ifa_link, next) { 799686cdd19SJun-ichiro itojun Hagino if (ifa->ifa_addr->sa_family != AF_INET6) 800686cdd19SJun-ichiro itojun Hagino continue; 80133841545SHajimu UMEMOTO in6_purgeaddr(ifa); 802686cdd19SJun-ichiro itojun Hagino } 803686cdd19SJun-ichiro itojun Hagino 804686cdd19SJun-ichiro itojun Hagino /* undo everything done by in6_ifattach(), just in case */ 805c4dd3fe1SRobert Watson TAILQ_FOREACH_SAFE(ifa, &ifp->if_addrhead, ifa_link, next) { 80682cd038dSYoshinobu Inoue if (ifa->ifa_addr->sa_family != AF_INET6 80782cd038dSYoshinobu Inoue || !IN6_IS_ADDR_LINKLOCAL(&satosin6(&ifa->ifa_addr)->sin6_addr)) { 80882cd038dSYoshinobu Inoue continue; 80982cd038dSYoshinobu Inoue } 81082cd038dSYoshinobu Inoue 81182cd038dSYoshinobu Inoue ia = (struct in6_ifaddr *)ifa; 81282cd038dSYoshinobu Inoue 81309a52a55SJINMEI Tatuya /* 81409a52a55SJINMEI Tatuya * leave from multicast groups we have joined for the interface 81509a52a55SJINMEI Tatuya */ 81609a52a55SJINMEI Tatuya while ((imm = ia->ia6_memberships.lh_first) != NULL) { 81709a52a55SJINMEI Tatuya LIST_REMOVE(imm, i6mm_chain); 81809a52a55SJINMEI Tatuya in6_leavegroup(imm); 81909a52a55SJINMEI Tatuya } 82009a52a55SJINMEI Tatuya 82182cd038dSYoshinobu Inoue /* remove from the routing table */ 8227efe5d92SHajimu UMEMOTO if ((ia->ia_flags & IFA_ROUTE) && 8237efe5d92SHajimu UMEMOTO (rt = rtalloc1((struct sockaddr *)&ia->ia_addr, 0, 0UL))) { 82482cd038dSYoshinobu Inoue rtflags = rt->rt_flags; 8252e730beaSBjoern A. Zeeb RTFREE_LOCKED(rt); 8267efe5d92SHajimu UMEMOTO rtrequest(RTM_DELETE, (struct sockaddr *)&ia->ia_addr, 82782cd038dSYoshinobu Inoue (struct sockaddr *)&ia->ia_addr, 82882cd038dSYoshinobu Inoue (struct sockaddr *)&ia->ia_prefixmask, 82982cd038dSYoshinobu Inoue rtflags, (struct rtentry **)0); 83082cd038dSYoshinobu Inoue } 83182cd038dSYoshinobu Inoue 83282cd038dSYoshinobu Inoue /* remove from the linked list */ 8331e6a4139SRobert Watson IF_ADDR_LOCK(ifp); 83480af0152SRobert Watson TAILQ_REMOVE(&ifp->if_addrhead, ifa, ifa_link); 8351e6a4139SRobert Watson IF_ADDR_UNLOCK(ifp); 83680af0152SRobert Watson ifa_free(ifa); /* if_addrhead */ 83782cd038dSYoshinobu Inoue 838d1da0a06SRobert Watson IN6_IFADDR_WLOCK(); 83980af0152SRobert Watson TAILQ_REMOVE(&V_in6_ifaddrhead, ia, ia_link); 840d1da0a06SRobert Watson IN6_IFADDR_WUNLOCK(); 84180af0152SRobert Watson ifa_free(ifa); 842686cdd19SJun-ichiro itojun Hagino } 843686cdd19SJun-ichiro itojun Hagino 844603724d3SBjoern A. Zeeb in6_pcbpurgeif0(&V_udbinfo, ifp); 845603724d3SBjoern A. Zeeb in6_pcbpurgeif0(&V_ripcbinfo, ifp); 84671498f30SBruce M Simpson /* leave from all multicast groups joined */ 84771498f30SBruce M Simpson in6_purgemaddrs(ifp); 848686cdd19SJun-ichiro itojun Hagino 84933841545SHajimu UMEMOTO /* 85033841545SHajimu UMEMOTO * remove neighbor management table. we call it twice just to make 85133841545SHajimu UMEMOTO * sure we nuke everything. maybe we need just one call. 85233841545SHajimu UMEMOTO * XXX: since the first call did not release addresses, some prefixes 85333841545SHajimu UMEMOTO * might remain. We should call nd6_purge() again to release the 85433841545SHajimu UMEMOTO * prefixes after removing all addresses above. 85533841545SHajimu UMEMOTO * (Or can we just delay calling nd6_purge until at this point?) 85633841545SHajimu UMEMOTO */ 857686cdd19SJun-ichiro itojun Hagino nd6_purge(ifp); 858686cdd19SJun-ichiro itojun Hagino 859686cdd19SJun-ichiro itojun Hagino /* remove route to link-local allnodes multicast (ff02::1) */ 860686cdd19SJun-ichiro itojun Hagino bzero(&sin6, sizeof(sin6)); 861686cdd19SJun-ichiro itojun Hagino sin6.sin6_len = sizeof(struct sockaddr_in6); 862686cdd19SJun-ichiro itojun Hagino sin6.sin6_family = AF_INET6; 863686cdd19SJun-ichiro itojun Hagino sin6.sin6_addr = in6addr_linklocal_allnodes; 864a1f7e5f8SHajimu UMEMOTO if (in6_setscope(&sin6.sin6_addr, ifp, NULL)) 865a1f7e5f8SHajimu UMEMOTO /* XXX: should not fail */ 866a1f7e5f8SHajimu UMEMOTO return; 8679c63e9dbSSam Leffler /* XXX grab lock first to avoid LOR */ 868c2c2a7c1SBjoern A. Zeeb rnh = rt_tables_get_rnh(0, AF_INET6); 869c2c2a7c1SBjoern A. Zeeb if (rnh != NULL) { 870c2c2a7c1SBjoern A. Zeeb RADIX_NODE_HEAD_LOCK(rnh); 8717b5ba4e7SKip Macy rt = rtalloc1((struct sockaddr *)&sin6, 0, RTF_RNH_LOCKED); 872d1dd20beSSam Leffler if (rt) { 8739c63e9dbSSam Leffler if (rt->rt_ifp == ifp) 8749c63e9dbSSam Leffler rtexpunge(rt); 8759c63e9dbSSam Leffler RTFREE_LOCKED(rt); 87682cd038dSYoshinobu Inoue } 877c2c2a7c1SBjoern A. Zeeb RADIX_NODE_HEAD_UNLOCK(rnh); 87882cd038dSYoshinobu Inoue } 8793f02eaf3SDon Lewis } 88033841545SHajimu UMEMOTO 881743eee66SSUZUKI Shinsuke int 8821272577eSXin LI in6_get_tmpifid(struct ifnet *ifp, u_int8_t *retbuf, 8831272577eSXin LI const u_int8_t *baseid, int generate) 88433841545SHajimu UMEMOTO { 88533841545SHajimu UMEMOTO u_int8_t nullbuf[8]; 88631b1bfe1SHajimu UMEMOTO struct nd_ifinfo *ndi = ND_IFINFO(ifp); 88733841545SHajimu UMEMOTO 88833841545SHajimu UMEMOTO bzero(nullbuf, sizeof(nullbuf)); 88933841545SHajimu UMEMOTO if (bcmp(ndi->randomid, nullbuf, sizeof(nullbuf)) == 0) { 89033841545SHajimu UMEMOTO /* we've never created a random ID. Create a new one. */ 89133841545SHajimu UMEMOTO generate = 1; 89233841545SHajimu UMEMOTO } 89333841545SHajimu UMEMOTO 89433841545SHajimu UMEMOTO if (generate) { 89533841545SHajimu UMEMOTO bcopy(baseid, ndi->randomseed1, sizeof(ndi->randomseed1)); 89633841545SHajimu UMEMOTO 89733841545SHajimu UMEMOTO /* generate_tmp_ifid will update seedn and buf */ 89833841545SHajimu UMEMOTO (void)generate_tmp_ifid(ndi->randomseed0, ndi->randomseed1, 89933841545SHajimu UMEMOTO ndi->randomid); 90033841545SHajimu UMEMOTO } 90133841545SHajimu UMEMOTO bcopy(ndi->randomid, retbuf, 8); 902743eee66SSUZUKI Shinsuke 903743eee66SSUZUKI Shinsuke return (0); 90433841545SHajimu UMEMOTO } 90533841545SHajimu UMEMOTO 90633841545SHajimu UMEMOTO void 907f6dfe47aSMarko Zec in6_tmpaddrtimer(void *arg) 90833841545SHajimu UMEMOTO { 909f6dfe47aSMarko Zec CURVNET_SET((struct vnet *) arg); 91033841545SHajimu UMEMOTO struct nd_ifinfo *ndi; 91133841545SHajimu UMEMOTO u_int8_t nullbuf[8]; 91231b1bfe1SHajimu UMEMOTO struct ifnet *ifp; 91333841545SHajimu UMEMOTO 914603724d3SBjoern A. Zeeb callout_reset(&V_in6_tmpaddrtimer_ch, 915603724d3SBjoern A. Zeeb (V_ip6_temp_preferred_lifetime - V_ip6_desync_factor - 916f6dfe47aSMarko Zec V_ip6_temp_regen_advance) * hz, in6_tmpaddrtimer, curvnet); 91733841545SHajimu UMEMOTO 91833841545SHajimu UMEMOTO bzero(nullbuf, sizeof(nullbuf)); 919ac957cd2SJulian Elischer for (ifp = TAILQ_FIRST(&V_ifnet); ifp; 920ac957cd2SJulian Elischer ifp = TAILQ_NEXT(ifp, if_list)) { 92131b1bfe1SHajimu UMEMOTO ndi = ND_IFINFO(ifp); 92233841545SHajimu UMEMOTO if (bcmp(ndi->randomid, nullbuf, sizeof(nullbuf)) != 0) { 92333841545SHajimu UMEMOTO /* 92433841545SHajimu UMEMOTO * We've been generating a random ID on this interface. 92533841545SHajimu UMEMOTO * Create a new one. 92633841545SHajimu UMEMOTO */ 92733841545SHajimu UMEMOTO (void)generate_tmp_ifid(ndi->randomseed0, 9287efe5d92SHajimu UMEMOTO ndi->randomseed1, ndi->randomid); 92933841545SHajimu UMEMOTO } 93033841545SHajimu UMEMOTO } 93133841545SHajimu UMEMOTO 932f6dfe47aSMarko Zec CURVNET_RESTORE(); 93333841545SHajimu UMEMOTO } 93471498f30SBruce M Simpson 93571498f30SBruce M Simpson static void 9361272577eSXin LI in6_purgemaddrs(struct ifnet *ifp) 93771498f30SBruce M Simpson { 93833cde130SBruce M Simpson LIST_HEAD(,in6_multi) purgeinms; 93933cde130SBruce M Simpson struct in6_multi *inm, *tinm; 94033cde130SBruce M Simpson struct ifmultiaddr *ifma; 94171498f30SBruce M Simpson 94233cde130SBruce M Simpson LIST_INIT(&purgeinms); 94333cde130SBruce M Simpson IN6_MULTI_LOCK(); 94433cde130SBruce M Simpson 94533cde130SBruce M Simpson /* 94633cde130SBruce M Simpson * Extract list of in6_multi associated with the detaching ifp 94733cde130SBruce M Simpson * which the PF_INET6 layer is about to release. 94833cde130SBruce M Simpson * We need to do this as IF_ADDR_LOCK() may be re-acquired 94933cde130SBruce M Simpson * by code further down. 95033cde130SBruce M Simpson */ 95133cde130SBruce M Simpson IF_ADDR_LOCK(ifp); 95233cde130SBruce M Simpson TAILQ_FOREACH(ifma, &ifp->if_multiaddrs, ifma_link) { 95333cde130SBruce M Simpson if (ifma->ifma_addr->sa_family != AF_INET6 || 95433cde130SBruce M Simpson ifma->ifma_protospec == NULL) 95533cde130SBruce M Simpson continue; 95633cde130SBruce M Simpson inm = (struct in6_multi *)ifma->ifma_protospec; 95733cde130SBruce M Simpson LIST_INSERT_HEAD(&purgeinms, inm, in6m_entry); 95871498f30SBruce M Simpson } 95933cde130SBruce M Simpson IF_ADDR_UNLOCK(ifp); 96033cde130SBruce M Simpson 96133cde130SBruce M Simpson LIST_FOREACH_SAFE(inm, &purgeinms, in6m_entry, tinm) { 96233cde130SBruce M Simpson LIST_REMOVE(inm, in6m_entry); 96333cde130SBruce M Simpson in6m_release_locked(inm); 96433cde130SBruce M Simpson } 96533cde130SBruce M Simpson mld_ifdetach(ifp); 96633cde130SBruce M Simpson 96733cde130SBruce M Simpson IN6_MULTI_UNLOCK(); 96871498f30SBruce M Simpson } 969