1caf43b02SWarner Losh /*- 251369649SPedro F. Giffuni * SPDX-License-Identifier: BSD-3-Clause 351369649SPedro F. Giffuni * 482cd038dSYoshinobu Inoue * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. 582cd038dSYoshinobu Inoue * All rights reserved. 682cd038dSYoshinobu Inoue * 782cd038dSYoshinobu Inoue * Redistribution and use in source and binary forms, with or without 882cd038dSYoshinobu Inoue * modification, are permitted provided that the following conditions 982cd038dSYoshinobu Inoue * are met: 1082cd038dSYoshinobu Inoue * 1. Redistributions of source code must retain the above copyright 1182cd038dSYoshinobu Inoue * notice, this list of conditions and the following disclaimer. 1282cd038dSYoshinobu Inoue * 2. Redistributions in binary form must reproduce the above copyright 1382cd038dSYoshinobu Inoue * notice, this list of conditions and the following disclaimer in the 1482cd038dSYoshinobu Inoue * documentation and/or other materials provided with the distribution. 1582cd038dSYoshinobu Inoue * 3. Neither the name of the project nor the names of its contributors 1682cd038dSYoshinobu Inoue * may be used to endorse or promote products derived from this software 1782cd038dSYoshinobu Inoue * without specific prior written permission. 1882cd038dSYoshinobu Inoue * 1982cd038dSYoshinobu Inoue * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND 2082cd038dSYoshinobu Inoue * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 2182cd038dSYoshinobu Inoue * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 2282cd038dSYoshinobu Inoue * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE 2382cd038dSYoshinobu Inoue * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 2482cd038dSYoshinobu Inoue * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 2582cd038dSYoshinobu Inoue * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 2682cd038dSYoshinobu Inoue * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 2782cd038dSYoshinobu Inoue * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 2882cd038dSYoshinobu Inoue * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 2982cd038dSYoshinobu Inoue * SUCH DAMAGE. 30b48287a3SDavid E. O'Brien * 31b48287a3SDavid E. O'Brien * $KAME: ip6_output.c,v 1.279 2002/01/26 06:12:30 jinmei Exp $ 3282cd038dSYoshinobu Inoue */ 3382cd038dSYoshinobu Inoue 34caf43b02SWarner Losh /*- 3582cd038dSYoshinobu Inoue * Copyright (c) 1982, 1986, 1988, 1990, 1993 3682cd038dSYoshinobu Inoue * The Regents of the University of California. All rights reserved. 3782cd038dSYoshinobu Inoue * 3882cd038dSYoshinobu Inoue * Redistribution and use in source and binary forms, with or without 3982cd038dSYoshinobu Inoue * modification, are permitted provided that the following conditions 4082cd038dSYoshinobu Inoue * are met: 4182cd038dSYoshinobu Inoue * 1. Redistributions of source code must retain the above copyright 4282cd038dSYoshinobu Inoue * notice, this list of conditions and the following disclaimer. 4382cd038dSYoshinobu Inoue * 2. Redistributions in binary form must reproduce the above copyright 4482cd038dSYoshinobu Inoue * notice, this list of conditions and the following disclaimer in the 4582cd038dSYoshinobu Inoue * documentation and/or other materials provided with the distribution. 46fbbd9655SWarner Losh * 3. Neither the name of the University nor the names of its contributors 4782cd038dSYoshinobu Inoue * may be used to endorse or promote products derived from this software 4882cd038dSYoshinobu Inoue * without specific prior written permission. 4982cd038dSYoshinobu Inoue * 5082cd038dSYoshinobu Inoue * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 5182cd038dSYoshinobu Inoue * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 5282cd038dSYoshinobu Inoue * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 5382cd038dSYoshinobu Inoue * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 5482cd038dSYoshinobu Inoue * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 5582cd038dSYoshinobu Inoue * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 5682cd038dSYoshinobu Inoue * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 5782cd038dSYoshinobu Inoue * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 5882cd038dSYoshinobu Inoue * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 5982cd038dSYoshinobu Inoue * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 6082cd038dSYoshinobu Inoue * SUCH DAMAGE. 6182cd038dSYoshinobu Inoue * 6282cd038dSYoshinobu Inoue * @(#)ip_output.c 8.3 (Berkeley) 1/21/94 6382cd038dSYoshinobu Inoue */ 6482cd038dSYoshinobu Inoue 65b48287a3SDavid E. O'Brien #include <sys/cdefs.h> 66b48287a3SDavid E. O'Brien __FBSDID("$FreeBSD$"); 67b48287a3SDavid E. O'Brien 68686cdd19SJun-ichiro itojun Hagino #include "opt_inet.h" 69686cdd19SJun-ichiro itojun Hagino #include "opt_inet6.h" 70686cdd19SJun-ichiro itojun Hagino #include "opt_ipsec.h" 71b2e60773SJohn Baldwin #include "opt_kern_tls.h" 7277a01441SJohn Baldwin #include "opt_ratelimit.h" 7377931dd5SKip Macy #include "opt_route.h" 74c7c0d948SAdrian Chadd #include "opt_rss.h" 7577a01441SJohn Baldwin #include "opt_sctp.h" 7682cd038dSYoshinobu Inoue 7782cd038dSYoshinobu Inoue #include <sys/param.h> 78c26fe973SBjoern A. Zeeb #include <sys/kernel.h> 79b2e60773SJohn Baldwin #include <sys/ktls.h> 8082cd038dSYoshinobu Inoue #include <sys/malloc.h> 8182cd038dSYoshinobu Inoue #include <sys/mbuf.h> 8282cd038dSYoshinobu Inoue #include <sys/errno.h> 83c2259ba4SRobert Watson #include <sys/priv.h> 84c26fe973SBjoern A. Zeeb #include <sys/proc.h> 8582cd038dSYoshinobu Inoue #include <sys/protosw.h> 8682cd038dSYoshinobu Inoue #include <sys/socket.h> 8782cd038dSYoshinobu Inoue #include <sys/socketvar.h> 881263305fSBjoern A. Zeeb #include <sys/syslog.h> 89c26fe973SBjoern A. Zeeb #include <sys/ucred.h> 9082cd038dSYoshinobu Inoue 91e7b92e27SBjoern A. Zeeb #include <machine/in_cksum.h> 92e7b92e27SBjoern A. Zeeb 9382cd038dSYoshinobu Inoue #include <net/if.h> 9476039bc8SGleb Smirnoff #include <net/if_var.h> 95868aabb4SRichard Scheffenegger #include <net/if_vlan_var.h> 960f5687f2SMike Karels #include <net/if_llatbl.h> 97868aabb4SRichard Scheffenegger #include <net/ethernet.h> 988195404bSBrooks Davis #include <net/netisr.h> 9982cd038dSYoshinobu Inoue #include <net/route.h> 100983066f0SAlexander V. Chernikov #include <net/route/nhop.h> 101c4ac87eaSDarren Reed #include <net/pfil.h> 102b2bdc62aSAdrian Chadd #include <net/rss_config.h> 1034b79449eSBjoern A. Zeeb #include <net/vnet.h> 10482cd038dSYoshinobu Inoue 10582cd038dSYoshinobu Inoue #include <netinet/in.h> 10682cd038dSYoshinobu Inoue #include <netinet/in_var.h> 1078a006adbSBjoern A. Zeeb #include <netinet/ip_var.h> 108bacf6684SAlexander V. Chernikov #include <netinet6/in6_fib.h> 10933841545SHajimu UMEMOTO #include <netinet6/in6_var.h> 110686cdd19SJun-ichiro itojun Hagino #include <netinet/ip6.h> 111686cdd19SJun-ichiro itojun Hagino #include <netinet/icmp6.h> 11282cd038dSYoshinobu Inoue #include <netinet6/ip6_var.h> 113686cdd19SJun-ichiro itojun Hagino #include <netinet/in_pcb.h> 11497d8d152SAndre Oppermann #include <netinet/tcp_var.h> 11582cd038dSYoshinobu Inoue #include <netinet6/nd6.h> 116b2bdc62aSAdrian Chadd #include <netinet6/in6_rss.h> 11782cd038dSYoshinobu Inoue 118fcf59617SAndrey V. Elsukov #include <netipsec/ipsec_support.h> 11995033af9SMark Johnston #if defined(SCTP) || defined(SCTP_SUPPORT) 1209b03990aSRandall Stewart #include <netinet/sctp.h> 1219b03990aSRandall Stewart #include <netinet/sctp_crc32.h> 1229b03990aSRandall Stewart #endif 123b9234fafSSam Leffler 1241469c434SHajimu UMEMOTO #include <netinet6/ip6protosw.h> 125a1f7e5f8SHajimu UMEMOTO #include <netinet6/scope6_var.h> 1261469c434SHajimu UMEMOTO 12733cde130SBruce M Simpson extern int in6_mcast_loop; 12882cd038dSYoshinobu Inoue 12982cd038dSYoshinobu Inoue struct ip6_exthdrs { 13082cd038dSYoshinobu Inoue struct mbuf *ip6e_ip6; 13182cd038dSYoshinobu Inoue struct mbuf *ip6e_hbh; 13282cd038dSYoshinobu Inoue struct mbuf *ip6e_dest1; 13382cd038dSYoshinobu Inoue struct mbuf *ip6e_rthdr; 13482cd038dSYoshinobu Inoue struct mbuf *ip6e_dest2; 13582cd038dSYoshinobu Inoue }; 13682cd038dSYoshinobu Inoue 1375e0a6f31SMark Johnston static MALLOC_DEFINE(M_IP6OPT, "ip6opt", "IPv6 options"); 1385e0a6f31SMark Johnston 1396f56329aSXin LI static int ip6_pcbopt(int, u_char *, int, struct ip6_pktopts **, 1406f56329aSXin LI struct ucred *, int); 1416f56329aSXin LI static int ip6_pcbopts(struct ip6_pktopts **, struct mbuf *, 1426f56329aSXin LI struct socket *, struct sockopt *); 14306b479a6SSean Bruno static int ip6_getpcbopt(struct inpcb *, int, struct sockopt *); 1446f56329aSXin LI static int ip6_setpktopt(int, u_char *, int, struct ip6_pktopts *, 1456f56329aSXin LI struct ucred *, int, int, int); 146f95d4633SHajimu UMEMOTO 1479233d8f3SDavid E. O'Brien static int ip6_copyexthdr(struct mbuf **, caddr_t, int); 1486f56329aSXin LI static int ip6_insertfraghdr(struct mbuf *, struct mbuf *, int, 1496f56329aSXin LI struct ip6_frag **); 1509233d8f3SDavid E. O'Brien static int ip6_insert_jumboopt(struct ip6_exthdrs *, u_int32_t); 1519233d8f3SDavid E. O'Brien static int ip6_splithdr(struct mbuf *, struct ip6_exthdrs *); 1520d4df029SAlexander V. Chernikov static int ip6_getpmtu(struct route_in6 *, int, 153d4c22202SAndrew Gallatin struct ifnet *, const struct in6_addr *, u_long *, int *, u_int, 154d4c22202SAndrew Gallatin u_int); 1550d4df029SAlexander V. Chernikov static int ip6_calcmtu(struct ifnet *, const struct in6_addr *, u_long, 156d4c22202SAndrew Gallatin u_long *, int *, u_int); 157f0937b2cSAndrey V. Elsukov static int ip6_getpmtu_ctl(u_int, const struct in6_addr *, u_long *); 1589233d8f3SDavid E. O'Brien static int copypktopts(struct ip6_pktopts *, struct ip6_pktopts *, int); 15982cd038dSYoshinobu Inoue 16082cd038dSYoshinobu Inoue /* 161a1a6c01eSBjoern A. Zeeb * Make an extension header from option data. hp is the source, 162a1a6c01eSBjoern A. Zeeb * mp is the destination, and _ol is the optlen. 1632cb64cb2SGeorge V. Neville-Neil */ 164a1a6c01eSBjoern A. Zeeb #define MAKE_EXTHDR(hp, mp, _ol) \ 1652cb64cb2SGeorge V. Neville-Neil do { \ 1662cb64cb2SGeorge V. Neville-Neil if (hp) { \ 1672cb64cb2SGeorge V. Neville-Neil struct ip6_ext *eh = (struct ip6_ext *)(hp); \ 1682cb64cb2SGeorge V. Neville-Neil error = ip6_copyexthdr((mp), (caddr_t)(hp), \ 1692cb64cb2SGeorge V. Neville-Neil ((eh)->ip6e_len + 1) << 3); \ 1702cb64cb2SGeorge V. Neville-Neil if (error) \ 1712cb64cb2SGeorge V. Neville-Neil goto freehdrs; \ 172a1a6c01eSBjoern A. Zeeb (_ol) += (*(mp))->m_len; \ 1732cb64cb2SGeorge V. Neville-Neil } \ 1742cb64cb2SGeorge V. Neville-Neil } while (/*CONSTCOND*/ 0) 1752cb64cb2SGeorge V. Neville-Neil 1762cb64cb2SGeorge V. Neville-Neil /* 1772cb64cb2SGeorge V. Neville-Neil * Form a chain of extension headers. 1782cb64cb2SGeorge V. Neville-Neil * m is the extension header mbuf 1792cb64cb2SGeorge V. Neville-Neil * mp is the previous mbuf in the chain 1802cb64cb2SGeorge V. Neville-Neil * p is the next header 1812cb64cb2SGeorge V. Neville-Neil * i is the type of option. 1822cb64cb2SGeorge V. Neville-Neil */ 1832cb64cb2SGeorge V. Neville-Neil #define MAKE_CHAIN(m, mp, p, i)\ 1842cb64cb2SGeorge V. Neville-Neil do {\ 1852cb64cb2SGeorge V. Neville-Neil if (m) {\ 1862cb64cb2SGeorge V. Neville-Neil if (!hdrsplit) \ 1877c1daefeSBjoern A. Zeeb panic("%s:%d: assumption failed: "\ 1887c1daefeSBjoern A. Zeeb "hdr not split: hdrsplit %d exthdrs %p",\ 1897c1daefeSBjoern A. Zeeb __func__, __LINE__, hdrsplit, &exthdrs);\ 1902cb64cb2SGeorge V. Neville-Neil *mtod((m), u_char *) = *(p);\ 1912cb64cb2SGeorge V. Neville-Neil *(p) = (i);\ 1922cb64cb2SGeorge V. Neville-Neil p = mtod((m), u_char *);\ 1932cb64cb2SGeorge V. Neville-Neil (m)->m_next = (mp)->m_next;\ 1942cb64cb2SGeorge V. Neville-Neil (mp)->m_next = (m);\ 1952cb64cb2SGeorge V. Neville-Neil (mp) = (m);\ 1962cb64cb2SGeorge V. Neville-Neil }\ 1972cb64cb2SGeorge V. Neville-Neil } while (/*CONSTCOND*/ 0) 1982cb64cb2SGeorge V. Neville-Neil 199aaf2cfc0SVANHULLEBUS Yvan void 200e7b92e27SBjoern A. Zeeb in6_delayed_cksum(struct mbuf *m, uint32_t plen, u_short offset) 201e7b92e27SBjoern A. Zeeb { 202e7b92e27SBjoern A. Zeeb u_short csum; 203e7b92e27SBjoern A. Zeeb 204c69baa7eSBjoern A. Zeeb csum = in_cksum_skip(m, offset + plen, offset); 205356ab07eSBjoern A. Zeeb if (m->m_pkthdr.csum_flags & CSUM_UDP_IPV6 && csum == 0) 206e7b92e27SBjoern A. Zeeb csum = 0xffff; 207e7b92e27SBjoern A. Zeeb offset += m->m_pkthdr.csum_data; /* checksum offset */ 208e7b92e27SBjoern A. Zeeb 2094a089e6bSAndrey V. Elsukov if (offset + sizeof(csum) > m->m_len) 2104a089e6bSAndrey V. Elsukov m_copyback(m, offset, sizeof(csum), (caddr_t)&csum); 2114a089e6bSAndrey V. Elsukov else 2124a089e6bSAndrey V. Elsukov *(u_short *)mtodo(m, offset) = csum; 213e7b92e27SBjoern A. Zeeb } 214e7b92e27SBjoern A. Zeeb 2153459050cSBjoern A. Zeeb static int 2163459050cSBjoern A. Zeeb ip6_output_delayed_csum(struct mbuf *m, struct ifnet *ifp, int csum_flags, 2173459050cSBjoern A. Zeeb int plen, int optlen, bool frag) 2183459050cSBjoern A. Zeeb { 2193459050cSBjoern A. Zeeb 2203459050cSBjoern A. Zeeb KASSERT((plen >= optlen), ("%s:%d: plen %d < optlen %d, m %p, ifp %p " 2213459050cSBjoern A. Zeeb "csum_flags %#x frag %d\n", 2223459050cSBjoern A. Zeeb __func__, __LINE__, plen, optlen, m, ifp, csum_flags, frag)); 2233459050cSBjoern A. Zeeb 2243459050cSBjoern A. Zeeb if ((csum_flags & CSUM_DELAY_DATA_IPV6) || 22595033af9SMark Johnston #if defined(SCTP) || defined(SCTP_SUPPORT) 2263459050cSBjoern A. Zeeb (csum_flags & CSUM_SCTP_IPV6) || 2273459050cSBjoern A. Zeeb #endif 2283f43ada9SGleb Smirnoff (!frag && (ifp->if_capenable & IFCAP_MEXTPG) == 0)) { 2293459050cSBjoern A. Zeeb m = mb_unmapped_to_ext(m); 2303459050cSBjoern A. Zeeb if (m == NULL) { 2313459050cSBjoern A. Zeeb if (frag) 2323459050cSBjoern A. Zeeb in6_ifstat_inc(ifp, ifs6_out_fragfail); 2333459050cSBjoern A. Zeeb else 2343459050cSBjoern A. Zeeb IP6STAT_INC(ip6s_odropped); 2353459050cSBjoern A. Zeeb return (ENOBUFS); 2363459050cSBjoern A. Zeeb } 2373459050cSBjoern A. Zeeb if (csum_flags & CSUM_DELAY_DATA_IPV6) { 2383459050cSBjoern A. Zeeb in6_delayed_cksum(m, plen - optlen, 2393459050cSBjoern A. Zeeb sizeof(struct ip6_hdr) + optlen); 2403459050cSBjoern A. Zeeb m->m_pkthdr.csum_flags &= ~CSUM_DELAY_DATA_IPV6; 2413459050cSBjoern A. Zeeb } 24295033af9SMark Johnston #if defined(SCTP) || defined(SCTP_SUPPORT) 2433459050cSBjoern A. Zeeb if (csum_flags & CSUM_SCTP_IPV6) { 2443459050cSBjoern A. Zeeb sctp_delayed_cksum(m, sizeof(struct ip6_hdr) + optlen); 2453459050cSBjoern A. Zeeb m->m_pkthdr.csum_flags &= ~CSUM_SCTP_IPV6; 2463459050cSBjoern A. Zeeb } 2473459050cSBjoern A. Zeeb #endif 2483459050cSBjoern A. Zeeb } 2493459050cSBjoern A. Zeeb 2503459050cSBjoern A. Zeeb return (0); 2513459050cSBjoern A. Zeeb } 2523459050cSBjoern A. Zeeb 2536c269f69SGleb Smirnoff int 2546c269f69SGleb Smirnoff ip6_fragment(struct ifnet *ifp, struct mbuf *m0, int hlen, u_char nextproto, 255d78c0804SKristof Provost int fraglen , uint32_t id) 2566c269f69SGleb Smirnoff { 2576c269f69SGleb Smirnoff struct mbuf *m, **mnext, *m_frgpart; 2586c269f69SGleb Smirnoff struct ip6_hdr *ip6, *mhip6; 2596c269f69SGleb Smirnoff struct ip6_frag *ip6f; 2606c269f69SGleb Smirnoff int off; 2616c269f69SGleb Smirnoff int error; 2626c269f69SGleb Smirnoff int tlen = m0->m_pkthdr.len; 2636c269f69SGleb Smirnoff 264d78c0804SKristof Provost KASSERT((fraglen % 8 == 0), ("Fragment length must be a multiple of 8")); 26500eab743SKristof Provost 2666c269f69SGleb Smirnoff m = m0; 2676c269f69SGleb Smirnoff ip6 = mtod(m, struct ip6_hdr *); 2686c269f69SGleb Smirnoff mnext = &m->m_nextpkt; 2696c269f69SGleb Smirnoff 270d78c0804SKristof Provost for (off = hlen; off < tlen; off += fraglen) { 2716c269f69SGleb Smirnoff m = m_gethdr(M_NOWAIT, MT_DATA); 2726c269f69SGleb Smirnoff if (!m) { 2736c269f69SGleb Smirnoff IP6STAT_INC(ip6s_odropped); 2746c269f69SGleb Smirnoff return (ENOBUFS); 2756c269f69SGleb Smirnoff } 276c9d33708SJohn Baldwin 277c9d33708SJohn Baldwin /* 278c9d33708SJohn Baldwin * Make sure the complete packet header gets copied 279c9d33708SJohn Baldwin * from the originating mbuf to the newly created 280c9d33708SJohn Baldwin * mbuf. This also ensures that existing firewall 281c9d33708SJohn Baldwin * classification(s), VLAN tags and so on get copied 282c9d33708SJohn Baldwin * to the resulting fragmented packet(s): 283c9d33708SJohn Baldwin */ 284c9d33708SJohn Baldwin if (m_dup_pkthdr(m, m0, M_NOWAIT) == 0) { 285c9d33708SJohn Baldwin m_free(m); 286c9d33708SJohn Baldwin IP6STAT_INC(ip6s_odropped); 287c9d33708SJohn Baldwin return (ENOBUFS); 288c9d33708SJohn Baldwin } 289c9d33708SJohn Baldwin 2906c269f69SGleb Smirnoff *mnext = m; 2916c269f69SGleb Smirnoff mnext = &m->m_nextpkt; 2926c269f69SGleb Smirnoff m->m_data += max_linkhdr; 2936c269f69SGleb Smirnoff mhip6 = mtod(m, struct ip6_hdr *); 2946c269f69SGleb Smirnoff *mhip6 = *ip6; 2956c269f69SGleb Smirnoff m->m_len = sizeof(*mhip6); 2966c269f69SGleb Smirnoff error = ip6_insertfraghdr(m0, m, hlen, &ip6f); 2976c269f69SGleb Smirnoff if (error) { 2986c269f69SGleb Smirnoff IP6STAT_INC(ip6s_odropped); 2996c269f69SGleb Smirnoff return (error); 3006c269f69SGleb Smirnoff } 3016c269f69SGleb Smirnoff ip6f->ip6f_offlg = htons((u_short)((off - hlen) & ~7)); 302d78c0804SKristof Provost if (off + fraglen >= tlen) 303d78c0804SKristof Provost fraglen = tlen - off; 3046c269f69SGleb Smirnoff else 3056c269f69SGleb Smirnoff ip6f->ip6f_offlg |= IP6F_MORE_FRAG; 306d78c0804SKristof Provost mhip6->ip6_plen = htons((u_short)(fraglen + hlen + 3076c269f69SGleb Smirnoff sizeof(*ip6f) - sizeof(struct ip6_hdr))); 308d78c0804SKristof Provost if ((m_frgpart = m_copym(m0, off, fraglen, M_NOWAIT)) == NULL) { 3096c269f69SGleb Smirnoff IP6STAT_INC(ip6s_odropped); 3106c269f69SGleb Smirnoff return (ENOBUFS); 3116c269f69SGleb Smirnoff } 3126c269f69SGleb Smirnoff m_cat(m, m_frgpart); 313d78c0804SKristof Provost m->m_pkthdr.len = fraglen + hlen + sizeof(*ip6f); 3146c269f69SGleb Smirnoff ip6f->ip6f_reserved = 0; 3156c269f69SGleb Smirnoff ip6f->ip6f_ident = id; 3166c269f69SGleb Smirnoff ip6f->ip6f_nxt = nextproto; 3176c269f69SGleb Smirnoff IP6STAT_INC(ip6s_ofragments); 3186c269f69SGleb Smirnoff in6_ifstat_inc(ifp, ifs6_out_fragcreat); 3196c269f69SGleb Smirnoff } 3206c269f69SGleb Smirnoff 3216c269f69SGleb Smirnoff return (0); 3226c269f69SGleb Smirnoff } 3236c269f69SGleb Smirnoff 324fb3bc596SJohn Baldwin static int 325fb3bc596SJohn Baldwin ip6_output_send(struct inpcb *inp, struct ifnet *ifp, struct ifnet *origifp, 326d7452d89SAndrew Gallatin struct mbuf *m, struct sockaddr_in6 *dst, struct route_in6 *ro, 327d7452d89SAndrew Gallatin bool stamp_tag) 328fb3bc596SJohn Baldwin { 329b2e60773SJohn Baldwin #ifdef KERN_TLS 330b2e60773SJohn Baldwin struct ktls_session *tls = NULL; 331b2e60773SJohn Baldwin #endif 332fb3bc596SJohn Baldwin struct m_snd_tag *mst; 333fb3bc596SJohn Baldwin int error; 334fb3bc596SJohn Baldwin 335fb3bc596SJohn Baldwin MPASS((m->m_pkthdr.csum_flags & CSUM_SND_TAG) == 0); 336fb3bc596SJohn Baldwin mst = NULL; 337fb3bc596SJohn Baldwin 338b2e60773SJohn Baldwin #ifdef KERN_TLS 339b2e60773SJohn Baldwin /* 340b2e60773SJohn Baldwin * If this is an unencrypted TLS record, save a reference to 341b2e60773SJohn Baldwin * the record. This local reference is used to call 342b2e60773SJohn Baldwin * ktls_output_eagain after the mbuf has been freed (thus 343b2e60773SJohn Baldwin * dropping the mbuf's reference) in if_output. 344b2e60773SJohn Baldwin */ 345b2e60773SJohn Baldwin if (m->m_next != NULL && mbuf_has_tls_session(m->m_next)) { 3467b6c99d0SGleb Smirnoff tls = ktls_hold(m->m_next->m_epg_tls); 347b2e60773SJohn Baldwin mst = tls->snd_tag; 348b2e60773SJohn Baldwin 349b2e60773SJohn Baldwin /* 350b2e60773SJohn Baldwin * If a TLS session doesn't have a valid tag, it must 351b2e60773SJohn Baldwin * have had an earlier ifp mismatch, so drop this 352b2e60773SJohn Baldwin * packet. 353b2e60773SJohn Baldwin */ 354b2e60773SJohn Baldwin if (mst == NULL) { 355b2e60773SJohn Baldwin error = EAGAIN; 356b2e60773SJohn Baldwin goto done; 357b2e60773SJohn Baldwin } 358d7452d89SAndrew Gallatin /* 359d7452d89SAndrew Gallatin * Always stamp tags that include NIC ktls. 360d7452d89SAndrew Gallatin */ 361d7452d89SAndrew Gallatin stamp_tag = true; 362b2e60773SJohn Baldwin } 363b2e60773SJohn Baldwin #endif 364fb3bc596SJohn Baldwin #ifdef RATELIMIT 365b2e60773SJohn Baldwin if (inp != NULL && mst == NULL) { 366fb3bc596SJohn Baldwin if ((inp->inp_flags2 & INP_RATE_LIMIT_CHANGED) != 0 || 367fb3bc596SJohn Baldwin (inp->inp_snd_tag != NULL && 368fb3bc596SJohn Baldwin inp->inp_snd_tag->ifp != ifp)) 369fb3bc596SJohn Baldwin in_pcboutput_txrtlmt(inp, ifp, m); 370fb3bc596SJohn Baldwin 371fb3bc596SJohn Baldwin if (inp->inp_snd_tag != NULL) 372fb3bc596SJohn Baldwin mst = inp->inp_snd_tag; 373fb3bc596SJohn Baldwin } 374fb3bc596SJohn Baldwin #endif 375d7452d89SAndrew Gallatin if (stamp_tag && mst != NULL) { 376fb3bc596SJohn Baldwin KASSERT(m->m_pkthdr.rcvif == NULL, 377fb3bc596SJohn Baldwin ("trying to add a send tag to a forwarded packet")); 378fb3bc596SJohn Baldwin if (mst->ifp != ifp) { 379fb3bc596SJohn Baldwin error = EAGAIN; 380fb3bc596SJohn Baldwin goto done; 381fb3bc596SJohn Baldwin } 382fb3bc596SJohn Baldwin 383fb3bc596SJohn Baldwin /* stamp send tag on mbuf */ 384fb3bc596SJohn Baldwin m->m_pkthdr.snd_tag = m_snd_tag_ref(mst); 385fb3bc596SJohn Baldwin m->m_pkthdr.csum_flags |= CSUM_SND_TAG; 386fb3bc596SJohn Baldwin } 387fb3bc596SJohn Baldwin 388fb3bc596SJohn Baldwin error = nd6_output_ifp(ifp, origifp, m, dst, (struct route *)ro); 389fb3bc596SJohn Baldwin 390fb3bc596SJohn Baldwin done: 391fb3bc596SJohn Baldwin /* Check for route change invalidating send tags. */ 392b2e60773SJohn Baldwin #ifdef KERN_TLS 393b2e60773SJohn Baldwin if (tls != NULL) { 394b2e60773SJohn Baldwin if (error == EAGAIN) 395b2e60773SJohn Baldwin error = ktls_output_eagain(inp, tls); 396b2e60773SJohn Baldwin ktls_free(tls); 397b2e60773SJohn Baldwin } 398b2e60773SJohn Baldwin #endif 399fb3bc596SJohn Baldwin #ifdef RATELIMIT 400fb3bc596SJohn Baldwin if (error == EAGAIN) 401fb3bc596SJohn Baldwin in_pcboutput_eagain(inp); 402fb3bc596SJohn Baldwin #endif 403fb3bc596SJohn Baldwin return (error); 404fb3bc596SJohn Baldwin } 405fb3bc596SJohn Baldwin 4062cb64cb2SGeorge V. Neville-Neil /* 4077c1daefeSBjoern A. Zeeb * IP6 output. 4087c1daefeSBjoern A. Zeeb * The packet in mbuf chain m contains a skeletal IP6 header (with pri, len, 4097c1daefeSBjoern A. Zeeb * nxt, hlim, src, dst). 41082cd038dSYoshinobu Inoue * This function may modify ver and hlim only. 41182cd038dSYoshinobu Inoue * The mbuf chain containing the packet will be freed. 41282cd038dSYoshinobu Inoue * The mbuf opt, if present, will not be freed. 413983066f0SAlexander V. Chernikov * If route_in6 ro is present and has ro_nh initialized, route lookup would be 414983066f0SAlexander V. Chernikov * skipped and ro->ro_nh would be used. If ro is present but ro->ro_nh is NULL, 415983066f0SAlexander V. Chernikov * then result of route lookup is stored in ro->ro_nh. 41633841545SHajimu UMEMOTO * 4177c1daefeSBjoern A. Zeeb * Type of "mtu": rt_mtu is u_long, ifnet.ifr_mtu is int, and nd_ifinfo.linkmtu 4187c1daefeSBjoern A. Zeeb * is uint32_t. So we use u_long to hold largest one, which is rt_mtu. 4191272577eSXin LI * 4201272577eSXin LI * ifpp - XXX: just for statistics 42182cd038dSYoshinobu Inoue */ 42282cd038dSYoshinobu Inoue int 4231272577eSXin LI ip6_output(struct mbuf *m0, struct ip6_pktopts *opt, 4241272577eSXin LI struct route_in6 *ro, int flags, struct ip6_moptions *im6o, 4251272577eSXin LI struct ifnet **ifpp, struct inpcb *inp) 42682cd038dSYoshinobu Inoue { 4276c269f69SGleb Smirnoff struct ip6_hdr *ip6; 428686cdd19SJun-ichiro itojun Hagino struct ifnet *ifp, *origifp; 42982cd038dSYoshinobu Inoue struct mbuf *m = m0; 430a1a6c01eSBjoern A. Zeeb struct mbuf *mprev; 431000c42faSBjoern A. Zeeb struct route_in6 *ro_pmtu; 432983066f0SAlexander V. Chernikov struct nhop_object *nh; 433000c42faSBjoern A. Zeeb struct sockaddr_in6 *dst, sin6, src_sa, dst_sa; 4348195404bSBrooks Davis struct in6_addr odst; 435a1a6c01eSBjoern A. Zeeb u_char *nexthdrp; 436000c42faSBjoern A. Zeeb int tlen, len; 43782cd038dSYoshinobu Inoue int error = 0; 438868aabb4SRichard Scheffenegger int vlan_pcp = -1; 4395da9f8faSJosef Karthauser struct in6_ifaddr *ia = NULL; 44082cd038dSYoshinobu Inoue u_long mtu; 441f95d4633SHajimu UMEMOTO int alwaysfrag, dontfrag; 442a1a6c01eSBjoern A. Zeeb u_int32_t optlen, plen = 0, unfragpartlen; 44382cd038dSYoshinobu Inoue struct ip6_exthdrs exthdrs; 444f0937b2cSAndrey V. Elsukov struct in6_addr src0, dst0; 445a1f7e5f8SHajimu UMEMOTO u_int32_t zone; 446a1a6c01eSBjoern A. Zeeb bool hdrsplit; 447e7b92e27SBjoern A. Zeeb int sw_csum, tso; 4489c57a5b6SHiroki Sato int needfiblookup; 4499c57a5b6SHiroki Sato uint32_t fibnum; 450f8fe3dc9SAndrey V. Elsukov struct m_tag *fwd_tag = NULL; 45179831849SKristof Provost uint32_t id; 452b9234fafSSam Leffler 453b9555453SGleb Smirnoff NET_EPOCH_ASSERT(); 4541e4f4e56SGleb Smirnoff 455b174de32SAdrian Chadd if (inp != NULL) { 456ce9ac139SNavdeep Parhar INP_LOCK_ASSERT(inp); 45781d5d46bSBjoern A. Zeeb M_SETFIB(m, inp->inp_inc.inc_fibnum); 458c2529042SHans Petter Selasky if ((flags & IP_NODEFAULTFLOWID) == 0) { 4597c1daefeSBjoern A. Zeeb /* Unconditionally set flowid. */ 460b174de32SAdrian Chadd m->m_pkthdr.flowid = inp->inp_flowid; 461c2529042SHans Petter Selasky M_HASHTYPE_SET(m, inp->inp_flowtype); 462b174de32SAdrian Chadd } 463868aabb4SRichard Scheffenegger if ((inp->inp_flags2 & INP_2PCP_SET) != 0) 464868aabb4SRichard Scheffenegger vlan_pcp = (inp->inp_flags2 & INP_2PCP_MASK) >> 465868aabb4SRichard Scheffenegger INP_2PCP_SHIFT; 46650575ce1SAndrew Gallatin #ifdef NUMA 46750575ce1SAndrew Gallatin m->m_pkthdr.numa_domain = inp->inp_numa_domain; 46850575ce1SAndrew Gallatin #endif 469b174de32SAdrian Chadd } 47081d5d46bSBjoern A. Zeeb 471fcf59617SAndrey V. Elsukov #if defined(IPSEC) || defined(IPSEC_SUPPORT) 472fcf59617SAndrey V. Elsukov /* 473fcf59617SAndrey V. Elsukov * IPSec checking which handles several cases. 474fcf59617SAndrey V. Elsukov * FAST IPSEC: We re-injected the packet. 475fcf59617SAndrey V. Elsukov * XXX: need scope argument. 476fcf59617SAndrey V. Elsukov */ 477fcf59617SAndrey V. Elsukov if (IPSEC_ENABLED(ipv6)) { 478fcf59617SAndrey V. Elsukov if ((error = IPSEC_OUTPUT(ipv6, m, inp)) != 0) { 479fcf59617SAndrey V. Elsukov if (error == EINPROGRESS) 480fcf59617SAndrey V. Elsukov error = 0; 481fcf59617SAndrey V. Elsukov goto done; 482fcf59617SAndrey V. Elsukov } 483fcf59617SAndrey V. Elsukov } 484fcf59617SAndrey V. Elsukov #endif /* IPSEC */ 485fcf59617SAndrey V. Elsukov 486a1a6c01eSBjoern A. Zeeb /* Source address validation. */ 487a1a6c01eSBjoern A. Zeeb ip6 = mtod(m, struct ip6_hdr *); 488a1a6c01eSBjoern A. Zeeb if (IN6_IS_ADDR_UNSPECIFIED(&ip6->ip6_src) && 489a1a6c01eSBjoern A. Zeeb (flags & IPV6_UNSPECSRC) == 0) { 490a1a6c01eSBjoern A. Zeeb error = EOPNOTSUPP; 491a1a6c01eSBjoern A. Zeeb IP6STAT_INC(ip6s_badscope); 492a1a6c01eSBjoern A. Zeeb goto bad; 493a1a6c01eSBjoern A. Zeeb } 494a1a6c01eSBjoern A. Zeeb if (IN6_IS_ADDR_MULTICAST(&ip6->ip6_src)) { 495a1a6c01eSBjoern A. Zeeb error = EOPNOTSUPP; 496a1a6c01eSBjoern A. Zeeb IP6STAT_INC(ip6s_badscope); 497a1a6c01eSBjoern A. Zeeb goto bad; 498a1a6c01eSBjoern A. Zeeb } 499a1a6c01eSBjoern A. Zeeb 500a1a6c01eSBjoern A. Zeeb /* 501a1a6c01eSBjoern A. Zeeb * If we are given packet options to add extension headers prepare them. 502a1a6c01eSBjoern A. Zeeb * Calculate the total length of the extension header chain. 503a1a6c01eSBjoern A. Zeeb * Keep the length of the unfragmentable part for fragmentation. 504a1a6c01eSBjoern A. Zeeb */ 50582cd038dSYoshinobu Inoue bzero(&exthdrs, sizeof(exthdrs)); 506a1a6c01eSBjoern A. Zeeb optlen = 0; 5073db60531SBjoern A. Zeeb unfragpartlen = sizeof(struct ip6_hdr); 50882cd038dSYoshinobu Inoue if (opt) { 5097c1daefeSBjoern A. Zeeb /* Hop-by-Hop options header. */ 510a1a6c01eSBjoern A. Zeeb MAKE_EXTHDR(opt->ip6po_hbh, &exthdrs.ip6e_hbh, optlen); 511a1a6c01eSBjoern A. Zeeb 5127c1daefeSBjoern A. Zeeb /* Destination options header (1st part). */ 51329bc2c48SHajimu UMEMOTO if (opt->ip6po_rthdr) { 514a1a6c01eSBjoern A. Zeeb #ifndef RTHDR_SUPPORT_IMPLEMENTED 515a1a6c01eSBjoern A. Zeeb /* 516a1a6c01eSBjoern A. Zeeb * If there is a routing header, discard the packet 517a1a6c01eSBjoern A. Zeeb * right away here. RH0/1 are obsolete and we do not 518a1a6c01eSBjoern A. Zeeb * currently support RH2/3/4. 519a1a6c01eSBjoern A. Zeeb * People trying to use RH253/254 may want to disable 520a1a6c01eSBjoern A. Zeeb * this check. 521a1a6c01eSBjoern A. Zeeb * The moment we do support any routing header (again) 522a1a6c01eSBjoern A. Zeeb * this block should check the routing type more 523a1a6c01eSBjoern A. Zeeb * selectively. 524a1a6c01eSBjoern A. Zeeb */ 525a1a6c01eSBjoern A. Zeeb error = EINVAL; 526a1a6c01eSBjoern A. Zeeb goto bad; 527a1a6c01eSBjoern A. Zeeb #endif 528a1a6c01eSBjoern A. Zeeb 52929bc2c48SHajimu UMEMOTO /* 5307c1daefeSBjoern A. Zeeb * Destination options header (1st part). 5312cb64cb2SGeorge V. Neville-Neil * This only makes sense with a routing header. 53229bc2c48SHajimu UMEMOTO * See Section 9.2 of RFC 3542. 53329bc2c48SHajimu UMEMOTO * Disabling this part just for MIP6 convenience is 53429bc2c48SHajimu UMEMOTO * a bad idea. We need to think carefully about a 53529bc2c48SHajimu UMEMOTO * way to make the advanced API coexist with MIP6 53629bc2c48SHajimu UMEMOTO * options, which might automatically be inserted in 53729bc2c48SHajimu UMEMOTO * the kernel. 53829bc2c48SHajimu UMEMOTO */ 539a1a6c01eSBjoern A. Zeeb MAKE_EXTHDR(opt->ip6po_dest1, &exthdrs.ip6e_dest1, 540a1a6c01eSBjoern A. Zeeb optlen); 54129bc2c48SHajimu UMEMOTO } 5427c1daefeSBjoern A. Zeeb /* Routing header. */ 543a1a6c01eSBjoern A. Zeeb MAKE_EXTHDR(opt->ip6po_rthdr, &exthdrs.ip6e_rthdr, optlen); 54482cd038dSYoshinobu Inoue 5453db60531SBjoern A. Zeeb unfragpartlen += optlen; 5462cb64cb2SGeorge V. Neville-Neil 547a1a6c01eSBjoern A. Zeeb /* 548a1a6c01eSBjoern A. Zeeb * NOTE: we don't add AH/ESP length here (done in 549a1a6c01eSBjoern A. Zeeb * ip6_ipsec_output()). 550a1a6c01eSBjoern A. Zeeb */ 551a1a6c01eSBjoern A. Zeeb 552a1a6c01eSBjoern A. Zeeb /* Destination options header (2nd part). */ 553a1a6c01eSBjoern A. Zeeb MAKE_EXTHDR(opt->ip6po_dest2, &exthdrs.ip6e_dest2, optlen); 554a1a6c01eSBjoern A. Zeeb } 55582cd038dSYoshinobu Inoue 55682cd038dSYoshinobu Inoue /* 557aaf2cfc0SVANHULLEBUS Yvan * If there is at least one extension header, 55882cd038dSYoshinobu Inoue * separate IP6 header from the payload. 55982cd038dSYoshinobu Inoue */ 560a1a6c01eSBjoern A. Zeeb hdrsplit = false; 561a1a6c01eSBjoern A. Zeeb if (optlen) { 56282cd038dSYoshinobu Inoue if ((error = ip6_splithdr(m, &exthdrs)) != 0) { 56382cd038dSYoshinobu Inoue m = NULL; 56482cd038dSYoshinobu Inoue goto freehdrs; 56582cd038dSYoshinobu Inoue } 56682cd038dSYoshinobu Inoue m = exthdrs.ip6e_ip6; 56782cd038dSYoshinobu Inoue ip6 = mtod(m, struct ip6_hdr *); 568a1a6c01eSBjoern A. Zeeb hdrsplit = true; 569a1a6c01eSBjoern A. Zeeb } 57082cd038dSYoshinobu Inoue 5717c1daefeSBjoern A. Zeeb /* Adjust mbuf packet header length. */ 57282cd038dSYoshinobu Inoue m->m_pkthdr.len += optlen; 57382cd038dSYoshinobu Inoue plen = m->m_pkthdr.len - sizeof(*ip6); 57482cd038dSYoshinobu Inoue 57582cd038dSYoshinobu Inoue /* If this is a jumbo payload, insert a jumbo payload option. */ 57682cd038dSYoshinobu Inoue if (plen > IPV6_MAXPACKET) { 57782cd038dSYoshinobu Inoue if (!hdrsplit) { 57882cd038dSYoshinobu Inoue if ((error = ip6_splithdr(m, &exthdrs)) != 0) { 57982cd038dSYoshinobu Inoue m = NULL; 58082cd038dSYoshinobu Inoue goto freehdrs; 58182cd038dSYoshinobu Inoue } 58282cd038dSYoshinobu Inoue m = exthdrs.ip6e_ip6; 58382cd038dSYoshinobu Inoue ip6 = mtod(m, struct ip6_hdr *); 584a1a6c01eSBjoern A. Zeeb hdrsplit = true; 585a1a6c01eSBjoern A. Zeeb } 58682cd038dSYoshinobu Inoue if ((error = ip6_insert_jumboopt(&exthdrs, plen)) != 0) 58782cd038dSYoshinobu Inoue goto freehdrs; 58882cd038dSYoshinobu Inoue ip6->ip6_plen = 0; 58982cd038dSYoshinobu Inoue } else 59082cd038dSYoshinobu Inoue ip6->ip6_plen = htons(plen); 591a1a6c01eSBjoern A. Zeeb nexthdrp = &ip6->ip6_nxt; 59282cd038dSYoshinobu Inoue 593a1a6c01eSBjoern A. Zeeb if (optlen) { 59482cd038dSYoshinobu Inoue /* 59582cd038dSYoshinobu Inoue * Concatenate headers and fill in next header fields. 59682cd038dSYoshinobu Inoue * Here we have, on "m" 59782cd038dSYoshinobu Inoue * IPv6 payload 5987c1daefeSBjoern A. Zeeb * and we insert headers accordingly. 5997c1daefeSBjoern A. Zeeb * Finally, we should be getting: 6007c1daefeSBjoern A. Zeeb * IPv6 hbh dest1 rthdr ah* [esp* dest2 payload]. 60182cd038dSYoshinobu Inoue * 6027c1daefeSBjoern A. Zeeb * During the header composing process "m" points to IPv6 6037c1daefeSBjoern A. Zeeb * header. "mprev" points to an extension header prior to esp. 60482cd038dSYoshinobu Inoue */ 6052cb64cb2SGeorge V. Neville-Neil mprev = m; 60682cd038dSYoshinobu Inoue 60782cd038dSYoshinobu Inoue /* 6087c1daefeSBjoern A. Zeeb * We treat dest2 specially. This makes IPsec processing 6097c1daefeSBjoern A. Zeeb * much easier. The goal here is to make mprev point the 61088ff5695SSUZUKI Shinsuke * mbuf prior to dest2. 61182cd038dSYoshinobu Inoue * 6127c1daefeSBjoern A. Zeeb * Result: IPv6 dest2 payload. 61382cd038dSYoshinobu Inoue * m and mprev will point to IPv6 header. 61482cd038dSYoshinobu Inoue */ 61582cd038dSYoshinobu Inoue if (exthdrs.ip6e_dest2) { 61682cd038dSYoshinobu Inoue if (!hdrsplit) 6177c1daefeSBjoern A. Zeeb panic("%s:%d: assumption failed: " 6187c1daefeSBjoern A. Zeeb "hdr not split: hdrsplit %d exthdrs %p", 6197c1daefeSBjoern A. Zeeb __func__, __LINE__, hdrsplit, &exthdrs); 62082cd038dSYoshinobu Inoue exthdrs.ip6e_dest2->m_next = m->m_next; 62182cd038dSYoshinobu Inoue m->m_next = exthdrs.ip6e_dest2; 62282cd038dSYoshinobu Inoue *mtod(exthdrs.ip6e_dest2, u_char *) = ip6->ip6_nxt; 62382cd038dSYoshinobu Inoue ip6->ip6_nxt = IPPROTO_DSTOPTS; 62482cd038dSYoshinobu Inoue } 62582cd038dSYoshinobu Inoue 62682cd038dSYoshinobu Inoue /* 6277c1daefeSBjoern A. Zeeb * Result: IPv6 hbh dest1 rthdr dest2 payload. 62882cd038dSYoshinobu Inoue * m will point to IPv6 header. mprev will point to the 62982cd038dSYoshinobu Inoue * extension header prior to dest2 (rthdr in the above case). 63082cd038dSYoshinobu Inoue */ 6317efe5d92SHajimu UMEMOTO MAKE_CHAIN(exthdrs.ip6e_hbh, mprev, nexthdrp, IPPROTO_HOPOPTS); 6327efe5d92SHajimu UMEMOTO MAKE_CHAIN(exthdrs.ip6e_dest1, mprev, nexthdrp, 6337efe5d92SHajimu UMEMOTO IPPROTO_DSTOPTS); 6347efe5d92SHajimu UMEMOTO MAKE_CHAIN(exthdrs.ip6e_rthdr, mprev, nexthdrp, 6357efe5d92SHajimu UMEMOTO IPPROTO_ROUTING); 63682cd038dSYoshinobu Inoue } 63782cd038dSYoshinobu Inoue 6389cb8d207SAndrey V. Elsukov IP6STAT_INC(ip6s_localout); 63982cd038dSYoshinobu Inoue 6407c1daefeSBjoern A. Zeeb /* Route packet. */ 64182cd038dSYoshinobu Inoue ro_pmtu = ro; 64282cd038dSYoshinobu Inoue if (opt && opt->ip6po_rthdr) 64382cd038dSYoshinobu Inoue ro = &opt->ip6po_route; 644000c42faSBjoern A. Zeeb if (ro != NULL) 64582cd038dSYoshinobu Inoue dst = (struct sockaddr_in6 *)&ro->ro_dst; 646000c42faSBjoern A. Zeeb else 647000c42faSBjoern A. Zeeb dst = &sin6; 6489c57a5b6SHiroki Sato fibnum = (inp != NULL) ? inp->inp_inc.inc_fibnum : M_GETFIB(m); 649000c42faSBjoern A. Zeeb 6508195404bSBrooks Davis again: 65182cd038dSYoshinobu Inoue /* 6527c1daefeSBjoern A. Zeeb * If specified, try to fill in the traffic class field. 6537c1daefeSBjoern A. Zeeb * Do not override if a non-zero value is already set. 6547c1daefeSBjoern A. Zeeb * We check the diffserv field and the ECN field separately. 655f95d4633SHajimu UMEMOTO */ 656f95d4633SHajimu UMEMOTO if (opt && opt->ip6po_tclass >= 0) { 657f95d4633SHajimu UMEMOTO int mask = 0; 658f95d4633SHajimu UMEMOTO 659bb4a7d94SKristof Provost if (IPV6_DSCP(ip6) == 0) 660f95d4633SHajimu UMEMOTO mask |= 0xfc; 661bb4a7d94SKristof Provost if (IPV6_ECN(ip6) == 0) 662f95d4633SHajimu UMEMOTO mask |= 0x03; 663f95d4633SHajimu UMEMOTO if (mask != 0) 664f95d4633SHajimu UMEMOTO ip6->ip6_flow |= htonl((opt->ip6po_tclass & mask) << 20); 665f95d4633SHajimu UMEMOTO } 666f95d4633SHajimu UMEMOTO 6677c1daefeSBjoern A. Zeeb /* Fill in or override the hop limit field, if necessary. */ 668f95d4633SHajimu UMEMOTO if (opt && opt->ip6po_hlim != -1) 669f95d4633SHajimu UMEMOTO ip6->ip6_hlim = opt->ip6po_hlim & 0xff; 670f95d4633SHajimu UMEMOTO else if (IN6_IS_ADDR_MULTICAST(&ip6->ip6_dst)) { 671f95d4633SHajimu UMEMOTO if (im6o != NULL) 672f95d4633SHajimu UMEMOTO ip6->ip6_hlim = im6o->im6o_multicast_hlim; 673f95d4633SHajimu UMEMOTO else 674603724d3SBjoern A. Zeeb ip6->ip6_hlim = V_ip6_defmcasthlim; 675f95d4633SHajimu UMEMOTO } 676000c42faSBjoern A. Zeeb 677983066f0SAlexander V. Chernikov if (ro == NULL || ro->ro_nh == NULL) { 678000c42faSBjoern A. Zeeb bzero(dst, sizeof(*dst)); 679000c42faSBjoern A. Zeeb dst->sin6_family = AF_INET6; 680000c42faSBjoern A. Zeeb dst->sin6_len = sizeof(*dst); 681000c42faSBjoern A. Zeeb dst->sin6_addr = ip6->ip6_dst; 682000c42faSBjoern A. Zeeb } 68384cc0778SGeorge V. Neville-Neil /* 684000c42faSBjoern A. Zeeb * Validate route against routing table changes. 6857c1daefeSBjoern A. Zeeb * Make sure that the address family is set in route. 68684cc0778SGeorge V. Neville-Neil */ 687983066f0SAlexander V. Chernikov nh = NULL; 688000c42faSBjoern A. Zeeb ifp = NULL; 689000c42faSBjoern A. Zeeb mtu = 0; 690000c42faSBjoern A. Zeeb if (ro != NULL) { 691983066f0SAlexander V. Chernikov if (ro->ro_nh != NULL && inp != NULL) { 692000c42faSBjoern A. Zeeb ro->ro_dst.sin6_family = AF_INET6; /* XXX KASSERT? */ 693983066f0SAlexander V. Chernikov NH_VALIDATE((struct route *)ro, &inp->inp_rt_cookie, 694000c42faSBjoern A. Zeeb fibnum); 69584cc0778SGeorge V. Neville-Neil } 696983066f0SAlexander V. Chernikov if (ro->ro_nh != NULL && fwd_tag == NULL && 697983066f0SAlexander V. Chernikov (!NH_IS_VALID(ro->ro_nh) || 698000c42faSBjoern A. Zeeb ro->ro_dst.sin6_family != AF_INET6 || 699000c42faSBjoern A. Zeeb !IN6_ARE_ADDR_EQUAL(&ro->ro_dst.sin6_addr, &ip6->ip6_dst))) 700000c42faSBjoern A. Zeeb RO_INVALIDATE_CACHE(ro); 701000c42faSBjoern A. Zeeb 702983066f0SAlexander V. Chernikov if (ro->ro_nh != NULL && fwd_tag == NULL && 70384cc0778SGeorge V. Neville-Neil ro->ro_dst.sin6_family == AF_INET6 && 70484cc0778SGeorge V. Neville-Neil IN6_ARE_ADDR_EQUAL(&ro->ro_dst.sin6_addr, &ip6->ip6_dst)) { 705983066f0SAlexander V. Chernikov nh = ro->ro_nh; 706983066f0SAlexander V. Chernikov ifp = nh->nh_ifp; 70716607317SAndrey V. Elsukov } else { 7080f5687f2SMike Karels if (ro->ro_lle) 7090f5687f2SMike Karels LLE_FREE(ro->ro_lle); /* zeros ro_lle */ 7100f5687f2SMike Karels ro->ro_lle = NULL; 711f8fe3dc9SAndrey V. Elsukov if (fwd_tag == NULL) { 712a1f7e5f8SHajimu UMEMOTO bzero(&dst_sa, sizeof(dst_sa)); 713a1f7e5f8SHajimu UMEMOTO dst_sa.sin6_family = AF_INET6; 714a1f7e5f8SHajimu UMEMOTO dst_sa.sin6_len = sizeof(dst_sa); 715a1f7e5f8SHajimu UMEMOTO dst_sa.sin6_addr = ip6->ip6_dst; 716f8fe3dc9SAndrey V. Elsukov } 7178483fce6SBjoern A. Zeeb error = in6_selectroute(&dst_sa, opt, im6o, ro, &ifp, 718983066f0SAlexander V. Chernikov &nh, fibnum, m->m_pkthdr.flowid); 71916607317SAndrey V. Elsukov if (error != 0) { 720000c42faSBjoern A. Zeeb IP6STAT_INC(ip6s_noroute); 721a1f7e5f8SHajimu UMEMOTO if (ifp != NULL) 72282cd038dSYoshinobu Inoue in6_ifstat_inc(ifp, ifs6_out_discard); 72382cd038dSYoshinobu Inoue goto bad; 72482cd038dSYoshinobu Inoue } 725000c42faSBjoern A. Zeeb if (ifp != NULL) 726000c42faSBjoern A. Zeeb mtu = ifp->if_mtu; 72716607317SAndrey V. Elsukov } 728983066f0SAlexander V. Chernikov if (nh == NULL) { 729a1f7e5f8SHajimu UMEMOTO /* 730983066f0SAlexander V. Chernikov * If in6_selectroute() does not return a nexthop 731a1f7e5f8SHajimu UMEMOTO * dst may not have been updated. 732a1f7e5f8SHajimu UMEMOTO */ 733a1f7e5f8SHajimu UMEMOTO *dst = dst_sa; /* XXX */ 734000c42faSBjoern A. Zeeb } else { 735983066f0SAlexander V. Chernikov if (nh->nh_flags & NHF_HOST) 736983066f0SAlexander V. Chernikov mtu = nh->nh_mtu; 737983066f0SAlexander V. Chernikov ia = (struct in6_ifaddr *)(nh->nh_ifa); 738983066f0SAlexander V. Chernikov counter_u64_add(nh->nh_pksent, 1); 739000c42faSBjoern A. Zeeb } 740000c42faSBjoern A. Zeeb } else { 7411483c1c5SAlexander V. Chernikov struct nhop_object *nh; 742000c42faSBjoern A. Zeeb struct in6_addr kdst; 743000c42faSBjoern A. Zeeb uint32_t scopeid; 744000c42faSBjoern A. Zeeb 745000c42faSBjoern A. Zeeb if (fwd_tag == NULL) { 746000c42faSBjoern A. Zeeb bzero(&dst_sa, sizeof(dst_sa)); 747000c42faSBjoern A. Zeeb dst_sa.sin6_family = AF_INET6; 748000c42faSBjoern A. Zeeb dst_sa.sin6_len = sizeof(dst_sa); 749000c42faSBjoern A. Zeeb dst_sa.sin6_addr = ip6->ip6_dst; 750000c42faSBjoern A. Zeeb } 751000c42faSBjoern A. Zeeb 752000c42faSBjoern A. Zeeb if (IN6_IS_ADDR_MULTICAST(&dst_sa.sin6_addr) && 753000c42faSBjoern A. Zeeb im6o != NULL && 754000c42faSBjoern A. Zeeb (ifp = im6o->im6o_multicast_ifp) != NULL) { 755000c42faSBjoern A. Zeeb /* We do not need a route lookup. */ 756000c42faSBjoern A. Zeeb *dst = dst_sa; /* XXX */ 757000c42faSBjoern A. Zeeb goto nonh6lookup; 758000c42faSBjoern A. Zeeb } 759000c42faSBjoern A. Zeeb 760000c42faSBjoern A. Zeeb in6_splitscope(&dst_sa.sin6_addr, &kdst, &scopeid); 761000c42faSBjoern A. Zeeb 762000c42faSBjoern A. Zeeb if (IN6_IS_ADDR_MC_LINKLOCAL(&dst_sa.sin6_addr) || 763000c42faSBjoern A. Zeeb IN6_IS_ADDR_MC_NODELOCAL(&dst_sa.sin6_addr)) { 764000c42faSBjoern A. Zeeb if (scopeid > 0) { 765000c42faSBjoern A. Zeeb ifp = in6_getlinkifnet(scopeid); 76619afc65aSMark Johnston if (ifp == NULL) { 76719afc65aSMark Johnston error = EHOSTUNREACH; 76819afc65aSMark Johnston goto bad; 76919afc65aSMark Johnston } 770000c42faSBjoern A. Zeeb *dst = dst_sa; /* XXX */ 771000c42faSBjoern A. Zeeb goto nonh6lookup; 772000c42faSBjoern A. Zeeb } 773000c42faSBjoern A. Zeeb } 774000c42faSBjoern A. Zeeb 7750c325f53SAlexander V. Chernikov nh = fib6_lookup(fibnum, &kdst, scopeid, NHR_NONE, 7760c325f53SAlexander V. Chernikov m->m_pkthdr.flowid); 7771483c1c5SAlexander V. Chernikov if (nh == NULL) { 778000c42faSBjoern A. Zeeb IP6STAT_INC(ip6s_noroute); 779000c42faSBjoern A. Zeeb /* No ifp in6_ifstat_inc(ifp, ifs6_out_discard); */ 780000c42faSBjoern A. Zeeb error = EHOSTUNREACH;; 781000c42faSBjoern A. Zeeb goto bad; 782000c42faSBjoern A. Zeeb } 783000c42faSBjoern A. Zeeb 7841483c1c5SAlexander V. Chernikov ifp = nh->nh_ifp; 7851483c1c5SAlexander V. Chernikov mtu = nh->nh_mtu; 7861483c1c5SAlexander V. Chernikov ia = ifatoia6(nh->nh_ifa); 7871483c1c5SAlexander V. Chernikov if (nh->nh_flags & NHF_GATEWAY) 7881483c1c5SAlexander V. Chernikov dst->sin6_addr = nh->gw6_sa.sin6_addr; 789000c42faSBjoern A. Zeeb nonh6lookup: 790000c42faSBjoern A. Zeeb ; 79182cd038dSYoshinobu Inoue } 79282cd038dSYoshinobu Inoue 793983066f0SAlexander V. Chernikov /* Then nh (for unicast) and ifp must be non-NULL valid values. */ 794a1f7e5f8SHajimu UMEMOTO if ((flags & IPV6_FORWARDING) == 0) { 795a1f7e5f8SHajimu UMEMOTO /* XXX: the FORWARDING flag can be set for mrouting. */ 796a1f7e5f8SHajimu UMEMOTO in6_ifstat_inc(ifp, ifs6_out_request); 797a1f7e5f8SHajimu UMEMOTO } 798a1f7e5f8SHajimu UMEMOTO 799ef0111fdSHans Petter Selasky /* Setup data structures for scope ID checks. */ 800a1f7e5f8SHajimu UMEMOTO src0 = ip6->ip6_src; 801a1f7e5f8SHajimu UMEMOTO bzero(&src_sa, sizeof(src_sa)); 802a1f7e5f8SHajimu UMEMOTO src_sa.sin6_family = AF_INET6; 803a1f7e5f8SHajimu UMEMOTO src_sa.sin6_len = sizeof(src_sa); 804a1f7e5f8SHajimu UMEMOTO src_sa.sin6_addr = ip6->ip6_src; 805a1f7e5f8SHajimu UMEMOTO 806a1f7e5f8SHajimu UMEMOTO dst0 = ip6->ip6_dst; 8077c1daefeSBjoern A. Zeeb /* Re-initialize to be sure. */ 808a1f7e5f8SHajimu UMEMOTO bzero(&dst_sa, sizeof(dst_sa)); 809a1f7e5f8SHajimu UMEMOTO dst_sa.sin6_family = AF_INET6; 810a1f7e5f8SHajimu UMEMOTO dst_sa.sin6_len = sizeof(dst_sa); 811a1f7e5f8SHajimu UMEMOTO dst_sa.sin6_addr = ip6->ip6_dst; 812a1f7e5f8SHajimu UMEMOTO 813ef0111fdSHans Petter Selasky /* Check for valid scope ID. */ 814ef0111fdSHans Petter Selasky if (in6_setscope(&src0, ifp, &zone) == 0 && 815ef0111fdSHans Petter Selasky sa6_recoverscope(&src_sa) == 0 && zone == src_sa.sin6_scope_id && 816ef0111fdSHans Petter Selasky in6_setscope(&dst0, ifp, &zone) == 0 && 817ef0111fdSHans Petter Selasky sa6_recoverscope(&dst_sa) == 0 && zone == dst_sa.sin6_scope_id) { 818ef0111fdSHans Petter Selasky /* 819ef0111fdSHans Petter Selasky * The outgoing interface is in the zone of the source 820ef0111fdSHans Petter Selasky * and destination addresses. 821ef0111fdSHans Petter Selasky * 822ef0111fdSHans Petter Selasky * Because the loopback interface cannot receive 823ef0111fdSHans Petter Selasky * packets with a different scope ID than its own, 8247c1daefeSBjoern A. Zeeb * there is a trick to pretend the outgoing packet 825ef0111fdSHans Petter Selasky * was received by the real network interface, by 826ef0111fdSHans Petter Selasky * setting "origifp" different from "ifp". This is 827ef0111fdSHans Petter Selasky * only allowed when "ifp" is a loopback network 828ef0111fdSHans Petter Selasky * interface. Refer to code in nd6_output_ifp() for 829ef0111fdSHans Petter Selasky * more details. 830ef0111fdSHans Petter Selasky */ 831ef0111fdSHans Petter Selasky origifp = ifp; 832ef0111fdSHans Petter Selasky 833ef0111fdSHans Petter Selasky /* 834ef0111fdSHans Petter Selasky * We should use ia_ifp to support the case of sending 835ef0111fdSHans Petter Selasky * packets to an address of our own. 8369452b0d2SQing Li */ 8379452b0d2SQing Li if (ia != NULL && ia->ia_ifp) 8389452b0d2SQing Li ifp = ia->ia_ifp; 8399452b0d2SQing Li 840ef0111fdSHans Petter Selasky } else if ((ifp->if_flags & IFF_LOOPBACK) == 0 || 841ef0111fdSHans Petter Selasky sa6_recoverscope(&src_sa) != 0 || 842ef0111fdSHans Petter Selasky sa6_recoverscope(&dst_sa) != 0 || 843ef0111fdSHans Petter Selasky dst_sa.sin6_scope_id == 0 || 844ef0111fdSHans Petter Selasky (src_sa.sin6_scope_id != 0 && 845ef0111fdSHans Petter Selasky src_sa.sin6_scope_id != dst_sa.sin6_scope_id) || 846ef0111fdSHans Petter Selasky (origifp = ifnet_byindex(dst_sa.sin6_scope_id)) == NULL) { 847ef0111fdSHans Petter Selasky /* 848ef0111fdSHans Petter Selasky * If the destination network interface is not a 849ef0111fdSHans Petter Selasky * loopback interface, or the destination network 850ef0111fdSHans Petter Selasky * address has no scope ID, or the source address has 851ef0111fdSHans Petter Selasky * a scope ID set which is different from the 852ef0111fdSHans Petter Selasky * destination address one, or there is no network 853ef0111fdSHans Petter Selasky * interface representing this scope ID, the address 854ef0111fdSHans Petter Selasky * pair is considered invalid. 855ef0111fdSHans Petter Selasky */ 8569cb8d207SAndrey V. Elsukov IP6STAT_INC(ip6s_badscope); 857ef0111fdSHans Petter Selasky in6_ifstat_inc(ifp, ifs6_out_discard); 858a1f7e5f8SHajimu UMEMOTO if (error == 0) 859a1f7e5f8SHajimu UMEMOTO error = EHOSTUNREACH; /* XXX */ 860a1f7e5f8SHajimu UMEMOTO goto bad; 861ef0111fdSHans Petter Selasky } 862ef0111fdSHans Petter Selasky /* All scope ID checks are successful. */ 863ef0111fdSHans Petter Selasky 864983066f0SAlexander V. Chernikov if (nh && !IN6_IS_ADDR_MULTICAST(&ip6->ip6_dst)) { 865983066f0SAlexander V. Chernikov if (opt && opt->ip6po_nextroute.ro_nh) { 866a1f7e5f8SHajimu UMEMOTO /* 867a1f7e5f8SHajimu UMEMOTO * The nexthop is explicitly specified by the 868a1f7e5f8SHajimu UMEMOTO * application. We assume the next hop is an IPv6 869a1f7e5f8SHajimu UMEMOTO * address. 870a1f7e5f8SHajimu UMEMOTO */ 871a1f7e5f8SHajimu UMEMOTO dst = (struct sockaddr_in6 *)opt->ip6po_nexthop; 872a1f7e5f8SHajimu UMEMOTO } 873983066f0SAlexander V. Chernikov else if ((nh->nh_flags & NHF_GATEWAY)) 874983066f0SAlexander V. Chernikov dst = &nh->gw6_sa; 875a1f7e5f8SHajimu UMEMOTO } 876a1f7e5f8SHajimu UMEMOTO 877a1f7e5f8SHajimu UMEMOTO if (!IN6_IS_ADDR_MULTICAST(&ip6->ip6_dst)) { 8787c1daefeSBjoern A. Zeeb m->m_flags &= ~(M_BCAST | M_MCAST); /* Just in case. */ 87982cd038dSYoshinobu Inoue } else { 88082cd038dSYoshinobu Inoue m->m_flags = (m->m_flags & ~M_BCAST) | M_MCAST; 88182cd038dSYoshinobu Inoue in6_ifstat_inc(ifp, ifs6_out_mcast); 8827c1daefeSBjoern A. Zeeb 8837c1daefeSBjoern A. Zeeb /* Confirm that the outgoing interface supports multicast. */ 884a1f7e5f8SHajimu UMEMOTO if (!(ifp->if_flags & IFF_MULTICAST)) { 8859cb8d207SAndrey V. Elsukov IP6STAT_INC(ip6s_noroute); 88682cd038dSYoshinobu Inoue in6_ifstat_inc(ifp, ifs6_out_discard); 88782cd038dSYoshinobu Inoue error = ENETUNREACH; 88882cd038dSYoshinobu Inoue goto bad; 88982cd038dSYoshinobu Inoue } 89033cde130SBruce M Simpson if ((im6o == NULL && in6_mcast_loop) || 89133cde130SBruce M Simpson (im6o && im6o->im6o_multicast_loop)) { 89282cd038dSYoshinobu Inoue /* 89333cde130SBruce M Simpson * Loop back multicast datagram if not expressly 89433cde130SBruce M Simpson * forbidden to do so, even if we have not joined 89533cde130SBruce M Simpson * the address; protocols will filter it later, 89633cde130SBruce M Simpson * thus deferring a hash lookup and lock acquisition 89733cde130SBruce M Simpson * at the expense of an m_copym(). 89882cd038dSYoshinobu Inoue */ 899331dff07SAlexander V. Chernikov ip6_mloopback(ifp, m); 90091ec0a1eSYoshinobu Inoue } else { 90191ec0a1eSYoshinobu Inoue /* 90291ec0a1eSYoshinobu Inoue * If we are acting as a multicast router, perform 90391ec0a1eSYoshinobu Inoue * multicast forwarding as if the packet had just 90491ec0a1eSYoshinobu Inoue * arrived on the interface to which we are about 90591ec0a1eSYoshinobu Inoue * to send. The multicast forwarding function 90691ec0a1eSYoshinobu Inoue * recursively calls this function, using the 90791ec0a1eSYoshinobu Inoue * IPV6_FORWARDING flag to prevent infinite recursion. 90891ec0a1eSYoshinobu Inoue * 90991ec0a1eSYoshinobu Inoue * Multicasts that are looped back by ip6_mloopback(), 91091ec0a1eSYoshinobu Inoue * above, will be forwarded by the ip6_input() routine, 91191ec0a1eSYoshinobu Inoue * if necessary. 91291ec0a1eSYoshinobu Inoue */ 91333cde130SBruce M Simpson if (V_ip6_mrouter && (flags & IPV6_FORWARDING) == 0) { 914a1f7e5f8SHajimu UMEMOTO /* 915a1f7e5f8SHajimu UMEMOTO * XXX: ip6_mforward expects that rcvif is NULL 916a1f7e5f8SHajimu UMEMOTO * when it is called from the originating path. 9177b07d1beSGleb Smirnoff * However, it may not always be the case. 918a1f7e5f8SHajimu UMEMOTO */ 919a1f7e5f8SHajimu UMEMOTO m->m_pkthdr.rcvif = NULL; 920686cdd19SJun-ichiro itojun Hagino if (ip6_mforward(ip6, ifp, m) != 0) { 92191ec0a1eSYoshinobu Inoue m_freem(m); 92291ec0a1eSYoshinobu Inoue goto done; 92391ec0a1eSYoshinobu Inoue } 92491ec0a1eSYoshinobu Inoue } 92582cd038dSYoshinobu Inoue } 92682cd038dSYoshinobu Inoue /* 92782cd038dSYoshinobu Inoue * Multicasts with a hoplimit of zero may be looped back, 92882cd038dSYoshinobu Inoue * above, but must not be transmitted on a network. 92982cd038dSYoshinobu Inoue * Also, multicasts addressed to the loopback interface 93082cd038dSYoshinobu Inoue * are not sent -- the above call to ip6_mloopback() will 93182cd038dSYoshinobu Inoue * loop back a copy if this host actually belongs to the 93282cd038dSYoshinobu Inoue * destination group on the loopback interface. 93382cd038dSYoshinobu Inoue */ 934f95d4633SHajimu UMEMOTO if (ip6->ip6_hlim == 0 || (ifp->if_flags & IFF_LOOPBACK) || 935f95d4633SHajimu UMEMOTO IN6_IS_ADDR_MC_INTFACELOCAL(&ip6->ip6_dst)) { 93682cd038dSYoshinobu Inoue m_freem(m); 93782cd038dSYoshinobu Inoue goto done; 93882cd038dSYoshinobu Inoue } 93982cd038dSYoshinobu Inoue } 94082cd038dSYoshinobu Inoue 94182cd038dSYoshinobu Inoue /* 94282cd038dSYoshinobu Inoue * Fill the outgoing inteface to tell the upper layer 94382cd038dSYoshinobu Inoue * to increment per-interface statistics. 94482cd038dSYoshinobu Inoue */ 94582cd038dSYoshinobu Inoue if (ifpp) 94682cd038dSYoshinobu Inoue *ifpp = ifp; 94782cd038dSYoshinobu Inoue 94831b3783cSHajimu UMEMOTO /* Determine path MTU. */ 949f0937b2cSAndrey V. Elsukov if ((error = ip6_getpmtu(ro_pmtu, ro != ro_pmtu, ifp, &ip6->ip6_dst, 950d4c22202SAndrew Gallatin &mtu, &alwaysfrag, fibnum, *nexthdrp)) != 0) 95131b3783cSHajimu UMEMOTO goto bad; 952000c42faSBjoern A. Zeeb KASSERT(mtu > 0, ("%s:%d: mtu %ld, ro_pmtu %p ro %p ifp %p " 953000c42faSBjoern A. Zeeb "alwaysfrag %d fibnum %u\n", __func__, __LINE__, mtu, ro_pmtu, ro, 954000c42faSBjoern A. Zeeb ifp, alwaysfrag, fibnum)); 95582cd038dSYoshinobu Inoue 95633841545SHajimu UMEMOTO /* 9578b00e59dSHajimu UMEMOTO * The caller of this function may specify to use the minimum MTU 9588b00e59dSHajimu UMEMOTO * in some cases. 9598b00e59dSHajimu UMEMOTO * An advanced API option (IPV6_USE_MIN_MTU) can also override MTU 9608b00e59dSHajimu UMEMOTO * setting. The logic is a bit complicated; by default, unicast 9618b00e59dSHajimu UMEMOTO * packets will follow path MTU while multicast packets will be sent at 9628b00e59dSHajimu UMEMOTO * the minimum MTU. If IP6PO_MINMTU_ALL is specified, all packets 9638b00e59dSHajimu UMEMOTO * including unicast ones will be sent at the minimum MTU. Multicast 9648b00e59dSHajimu UMEMOTO * packets will always be sent at the minimum MTU unless 9658b00e59dSHajimu UMEMOTO * IP6PO_MINMTU_DISABLE is explicitly specified. 9668b00e59dSHajimu UMEMOTO * See RFC 3542 for more details. 96733841545SHajimu UMEMOTO */ 9688b00e59dSHajimu UMEMOTO if (mtu > IPV6_MMTU) { 9698b00e59dSHajimu UMEMOTO if ((flags & IPV6_MINMTU)) 97033841545SHajimu UMEMOTO mtu = IPV6_MMTU; 9718b00e59dSHajimu UMEMOTO else if (opt && opt->ip6po_minmtu == IP6PO_MINMTU_ALL) 9728b00e59dSHajimu UMEMOTO mtu = IPV6_MMTU; 9738b00e59dSHajimu UMEMOTO else if (IN6_IS_ADDR_MULTICAST(&ip6->ip6_dst) && 9748b00e59dSHajimu UMEMOTO (opt == NULL || 9758b00e59dSHajimu UMEMOTO opt->ip6po_minmtu != IP6PO_MINMTU_DISABLE)) { 9768b00e59dSHajimu UMEMOTO mtu = IPV6_MMTU; 9778b00e59dSHajimu UMEMOTO } 9788b00e59dSHajimu UMEMOTO } 97933841545SHajimu UMEMOTO 98033841545SHajimu UMEMOTO /* 9817c1daefeSBjoern A. Zeeb * Clear embedded scope identifiers if necessary. 9827c1daefeSBjoern A. Zeeb * in6_clearscope() will touch the addresses only when necessary. 98333841545SHajimu UMEMOTO */ 98433841545SHajimu UMEMOTO in6_clearscope(&ip6->ip6_src); 98533841545SHajimu UMEMOTO in6_clearscope(&ip6->ip6_dst); 98682cd038dSYoshinobu Inoue 98782cd038dSYoshinobu Inoue /* 98882cd038dSYoshinobu Inoue * If the outgoing packet contains a hop-by-hop options header, 98982cd038dSYoshinobu Inoue * it must be examined and processed even by the source node. 99082cd038dSYoshinobu Inoue * (RFC 2460, section 4.) 99182cd038dSYoshinobu Inoue */ 99282cd038dSYoshinobu Inoue if (exthdrs.ip6e_hbh) { 99333841545SHajimu UMEMOTO struct ip6_hbh *hbh = mtod(exthdrs.ip6e_hbh, struct ip6_hbh *); 994283f9f8aSHajimu UMEMOTO u_int32_t dummy; /* XXX unused */ 995283f9f8aSHajimu UMEMOTO u_int32_t plen = 0; /* XXX: ip6_process will check the value */ 99682cd038dSYoshinobu Inoue 99733841545SHajimu UMEMOTO #ifdef DIAGNOSTIC 99833841545SHajimu UMEMOTO if ((hbh->ip6h_len + 1) << 3 > exthdrs.ip6e_hbh->m_len) 9996d79f3f6SRebecca Cran panic("ip6e_hbh is not contiguous"); 100033841545SHajimu UMEMOTO #endif 100182cd038dSYoshinobu Inoue /* 100282cd038dSYoshinobu Inoue * XXX: if we have to send an ICMPv6 error to the sender, 100382cd038dSYoshinobu Inoue * we need the M_LOOP flag since icmp6_error() expects 100482cd038dSYoshinobu Inoue * the IPv6 and the hop-by-hop options header are 10056d79f3f6SRebecca Cran * contiguous unless the flag is set. 100682cd038dSYoshinobu Inoue */ 100782cd038dSYoshinobu Inoue m->m_flags |= M_LOOP; 100882cd038dSYoshinobu Inoue m->m_pkthdr.rcvif = ifp; 10097efe5d92SHajimu UMEMOTO if (ip6_process_hopopts(m, (u_int8_t *)(hbh + 1), 10107efe5d92SHajimu UMEMOTO ((hbh->ip6h_len + 1) << 3) - sizeof(struct ip6_hbh), 1011283f9f8aSHajimu UMEMOTO &dummy, &plen) < 0) { 10127c1daefeSBjoern A. Zeeb /* m was already freed at this point. */ 101382cd038dSYoshinobu Inoue error = EINVAL;/* better error? */ 101482cd038dSYoshinobu Inoue goto done; 101582cd038dSYoshinobu Inoue } 101682cd038dSYoshinobu Inoue m->m_flags &= ~M_LOOP; /* XXX */ 101782cd038dSYoshinobu Inoue m->m_pkthdr.rcvif = NULL; 101882cd038dSYoshinobu Inoue } 101982cd038dSYoshinobu Inoue 1020c21fd232SAndre Oppermann /* Jump over all PFIL processing if hooks are not active. */ 1021b252313fSGleb Smirnoff if (!PFIL_HOOKED_OUT(V_inet6_pfil_head)) 1022c21fd232SAndre Oppermann goto passout; 1023c21fd232SAndre Oppermann 10248195404bSBrooks Davis odst = ip6->ip6_dst; 1025c21fd232SAndre Oppermann /* Run through list of hooks for output packets. */ 1026b252313fSGleb Smirnoff switch (pfil_run_hooks(V_inet6_pfil_head, &m, ifp, PFIL_OUT, inp)) { 1027b252313fSGleb Smirnoff case PFIL_PASS: 1028c4ac87eaSDarren Reed ip6 = mtod(m, struct ip6_hdr *); 1029b252313fSGleb Smirnoff break; 1030b252313fSGleb Smirnoff case PFIL_DROPPED: 1031e00ee1a9SGleb Smirnoff error = EACCES; 1032b252313fSGleb Smirnoff /* FALLTHROUGH */ 1033b252313fSGleb Smirnoff case PFIL_CONSUMED: 1034b252313fSGleb Smirnoff goto done; 1035b252313fSGleb Smirnoff } 10367efe5d92SHajimu UMEMOTO 10379c57a5b6SHiroki Sato needfiblookup = 0; 10388195404bSBrooks Davis /* See if destination IP address was changed by packet filter. */ 10398195404bSBrooks Davis if (!IN6_ARE_ADDR_EQUAL(&odst, &ip6->ip6_dst)) { 10408195404bSBrooks Davis m->m_flags |= M_SKIP_FIREWALL; 10418195404bSBrooks Davis /* If destination is now ourself drop to ip6_input(). */ 10428a006adbSBjoern A. Zeeb if (in6_localip(&ip6->ip6_dst)) { 10438a006adbSBjoern A. Zeeb m->m_flags |= M_FASTFWD_OURS; 10448195404bSBrooks Davis if (m->m_pkthdr.rcvif == NULL) 1045603724d3SBjoern A. Zeeb m->m_pkthdr.rcvif = V_loif; 1046356ab07eSBjoern A. Zeeb if (m->m_pkthdr.csum_flags & CSUM_DELAY_DATA_IPV6) { 10478195404bSBrooks Davis m->m_pkthdr.csum_flags |= 1048356ab07eSBjoern A. Zeeb CSUM_DATA_VALID_IPV6 | CSUM_PSEUDO_HDR; 10498195404bSBrooks Davis m->m_pkthdr.csum_data = 0xffff; 10508195404bSBrooks Davis } 105195033af9SMark Johnston #if defined(SCTP) || defined(SCTP_SUPPORT) 1052a6cff10fSMichael Tuexen if (m->m_pkthdr.csum_flags & CSUM_SCTP_IPV6) 10539b03990aSRandall Stewart m->m_pkthdr.csum_flags |= CSUM_SCTP_VALID; 10549b03990aSRandall Stewart #endif 10558195404bSBrooks Davis error = netisr_queue(NETISR_IPV6, m); 10568195404bSBrooks Davis goto done; 10574ee7e5a6SAndrey V. Elsukov } else { 1058000c42faSBjoern A. Zeeb if (ro != NULL) 1059ec86402eSBjoern A. Zeeb RO_INVALIDATE_CACHE(ro); 10609c57a5b6SHiroki Sato needfiblookup = 1; /* Redo the routing table lookup. */ 10618195404bSBrooks Davis } 10624ee7e5a6SAndrey V. Elsukov } 10639c57a5b6SHiroki Sato /* See if fib was changed by packet filter. */ 10649c57a5b6SHiroki Sato if (fibnum != M_GETFIB(m)) { 10659c57a5b6SHiroki Sato m->m_flags |= M_SKIP_FIREWALL; 10669c57a5b6SHiroki Sato fibnum = M_GETFIB(m); 1067000c42faSBjoern A. Zeeb if (ro != NULL) 1068ec86402eSBjoern A. Zeeb RO_INVALIDATE_CACHE(ro); 10699c57a5b6SHiroki Sato needfiblookup = 1; 10709c57a5b6SHiroki Sato } 10719c57a5b6SHiroki Sato if (needfiblookup) 10729c57a5b6SHiroki Sato goto again; 10738195404bSBrooks Davis 10748a006adbSBjoern A. Zeeb /* See if local, if yes, send it to netisr. */ 10758a006adbSBjoern A. Zeeb if (m->m_flags & M_FASTFWD_OURS) { 10768a006adbSBjoern A. Zeeb if (m->m_pkthdr.rcvif == NULL) 10778a006adbSBjoern A. Zeeb m->m_pkthdr.rcvif = V_loif; 1078356ab07eSBjoern A. Zeeb if (m->m_pkthdr.csum_flags & CSUM_DELAY_DATA_IPV6) { 10798a006adbSBjoern A. Zeeb m->m_pkthdr.csum_flags |= 1080356ab07eSBjoern A. Zeeb CSUM_DATA_VALID_IPV6 | CSUM_PSEUDO_HDR; 10818a006adbSBjoern A. Zeeb m->m_pkthdr.csum_data = 0xffff; 10828a006adbSBjoern A. Zeeb } 108395033af9SMark Johnston #if defined(SCTP) || defined(SCTP_SUPPORT) 1084a6cff10fSMichael Tuexen if (m->m_pkthdr.csum_flags & CSUM_SCTP_IPV6) 10858a006adbSBjoern A. Zeeb m->m_pkthdr.csum_flags |= CSUM_SCTP_VALID; 10868a006adbSBjoern A. Zeeb #endif 10878a006adbSBjoern A. Zeeb error = netisr_queue(NETISR_IPV6, m); 10888a006adbSBjoern A. Zeeb goto done; 10898a006adbSBjoern A. Zeeb } 10908a006adbSBjoern A. Zeeb /* Or forward to some other address? */ 1091ffdbf9daSAndrey V. Elsukov if ((m->m_flags & M_IP6_NEXTHOP) && 1092ffdbf9daSAndrey V. Elsukov (fwd_tag = m_tag_find(m, PACKET_TAG_IPFORWARD, NULL)) != NULL) { 1093000c42faSBjoern A. Zeeb if (ro != NULL) 10948a006adbSBjoern A. Zeeb dst = (struct sockaddr_in6 *)&ro->ro_dst; 1095000c42faSBjoern A. Zeeb else 1096000c42faSBjoern A. Zeeb dst = &sin6; 1097f8fe3dc9SAndrey V. Elsukov bcopy((fwd_tag+1), &dst_sa, sizeof(struct sockaddr_in6)); 10988a006adbSBjoern A. Zeeb m->m_flags |= M_SKIP_FIREWALL; 1099ffdbf9daSAndrey V. Elsukov m->m_flags &= ~M_IP6_NEXTHOP; 11008a006adbSBjoern A. Zeeb m_tag_delete(m, fwd_tag); 11018a006adbSBjoern A. Zeeb goto again; 11028a006adbSBjoern A. Zeeb } 11038195404bSBrooks Davis 1104c21fd232SAndre Oppermann passout: 1105868aabb4SRichard Scheffenegger if (vlan_pcp > -1) 1106868aabb4SRichard Scheffenegger EVL_APPLY_PRI(m, vlan_pcp); 110782cd038dSYoshinobu Inoue /* 110882cd038dSYoshinobu Inoue * Send the packet to the outgoing interface. 110982cd038dSYoshinobu Inoue * If necessary, do IPv6 fragmentation before sending. 1110f95d4633SHajimu UMEMOTO * 11117c1daefeSBjoern A. Zeeb * The logic here is rather complex: 1112f95d4633SHajimu UMEMOTO * 1: normal case (dontfrag == 0, alwaysfrag == 0) 1113f95d4633SHajimu UMEMOTO * 1-a: send as is if tlen <= path mtu 1114f95d4633SHajimu UMEMOTO * 1-b: fragment if tlen > path mtu 1115f95d4633SHajimu UMEMOTO * 1116f95d4633SHajimu UMEMOTO * 2: if user asks us not to fragment (dontfrag == 1) 1117f95d4633SHajimu UMEMOTO * 2-a: send as is if tlen <= interface mtu 1118f95d4633SHajimu UMEMOTO * 2-b: error if tlen > interface mtu 1119f95d4633SHajimu UMEMOTO * 1120f95d4633SHajimu UMEMOTO * 3: if we always need to attach fragment header (alwaysfrag == 1) 1121f95d4633SHajimu UMEMOTO * always fragment 1122f95d4633SHajimu UMEMOTO * 1123f95d4633SHajimu UMEMOTO * 4: if dontfrag == 1 && alwaysfrag == 1 11247c1daefeSBjoern A. Zeeb * error, as we cannot handle this conflicting request. 112582cd038dSYoshinobu Inoue */ 1126e7b92e27SBjoern A. Zeeb sw_csum = m->m_pkthdr.csum_flags; 1127e7b92e27SBjoern A. Zeeb if (!hdrsplit) { 1128b092fd6cSNavdeep Parhar tso = ((sw_csum & ifp->if_hwassist & 1129b092fd6cSNavdeep Parhar (CSUM_TSO | CSUM_INNER_TSO)) != 0) ? 1 : 0; 1130e7b92e27SBjoern A. Zeeb sw_csum &= ~ifp->if_hwassist; 1131e7b92e27SBjoern A. Zeeb } else 1132e7b92e27SBjoern A. Zeeb tso = 0; 1133e7b92e27SBjoern A. Zeeb /* 1134e7b92e27SBjoern A. Zeeb * If we added extension headers, we will not do TSO and calculate the 1135e7b92e27SBjoern A. Zeeb * checksums ourselves for now. 1136e7b92e27SBjoern A. Zeeb * XXX-BZ Need a framework to know when the NIC can handle it, even 1137e7b92e27SBjoern A. Zeeb * with ext. hdrs. 1138e7b92e27SBjoern A. Zeeb */ 11393459050cSBjoern A. Zeeb error = ip6_output_delayed_csum(m, ifp, sw_csum, plen, optlen, false); 11403459050cSBjoern A. Zeeb if (error != 0) 114182334850SJohn Baldwin goto bad; 11423459050cSBjoern A. Zeeb /* XXX-BZ m->m_pkthdr.csum_flags &= ~ifp->if_hwassist; */ 114382cd038dSYoshinobu Inoue tlen = m->m_pkthdr.len; 114482cd038dSYoshinobu Inoue 1145e7b92e27SBjoern A. Zeeb if ((opt && (opt->ip6po_flags & IP6PO_DONTFRAG)) || tso) 1146f95d4633SHajimu UMEMOTO dontfrag = 1; 1147f95d4633SHajimu UMEMOTO else 1148f95d4633SHajimu UMEMOTO dontfrag = 0; 11497c1daefeSBjoern A. Zeeb if (dontfrag && alwaysfrag) { /* Case 4. */ 11507c1daefeSBjoern A. Zeeb /* Conflicting request - can't transmit. */ 1151f95d4633SHajimu UMEMOTO error = EMSGSIZE; 1152f95d4633SHajimu UMEMOTO goto bad; 1153f95d4633SHajimu UMEMOTO } 11547c1daefeSBjoern A. Zeeb if (dontfrag && tlen > IN6_LINKMTU(ifp) && !tso) { /* Case 2-b. */ 1155f95d4633SHajimu UMEMOTO /* 1156f95d4633SHajimu UMEMOTO * Even if the DONTFRAG option is specified, we cannot send the 1157f95d4633SHajimu UMEMOTO * packet when the data length is larger than the MTU of the 1158f95d4633SHajimu UMEMOTO * outgoing interface. 11598f1beb88SAndrey V. Elsukov * Notify the error by sending IPV6_PATHMTU ancillary data if 11608f1beb88SAndrey V. Elsukov * application wanted to know the MTU value. Also return an 11618f1beb88SAndrey V. Elsukov * error code (this is not described in the API spec). 1162f95d4633SHajimu UMEMOTO */ 11638f1beb88SAndrey V. Elsukov if (inp != NULL) 11648f1beb88SAndrey V. Elsukov ip6_notify_pmtu(inp, &dst_sa, (u_int32_t)mtu); 1165f95d4633SHajimu UMEMOTO error = EMSGSIZE; 1166f95d4633SHajimu UMEMOTO goto bad; 1167f95d4633SHajimu UMEMOTO } 1168f95d4633SHajimu UMEMOTO 11697c1daefeSBjoern A. Zeeb /* Transmit packet without fragmentation. */ 11707c1daefeSBjoern A. Zeeb if (dontfrag || (!alwaysfrag && tlen <= mtu)) { /* Cases 1-a and 2-a. */ 1171f95d4633SHajimu UMEMOTO struct in6_ifaddr *ia6; 1172f95d4633SHajimu UMEMOTO 1173f95d4633SHajimu UMEMOTO ip6 = mtod(m, struct ip6_hdr *); 1174f95d4633SHajimu UMEMOTO ia6 = in6_ifawithifp(ifp, &ip6->ip6_src); 1175f95d4633SHajimu UMEMOTO if (ia6) { 11765da9f8faSJosef Karthauser /* Record statistics for this interface address. */ 11777caf4ab7SGleb Smirnoff counter_u64_add(ia6->ia_ifa.ifa_opackets, 1); 11787caf4ab7SGleb Smirnoff counter_u64_add(ia6->ia_ifa.ifa_obytes, 11797caf4ab7SGleb Smirnoff m->m_pkthdr.len); 11805da9f8faSJosef Karthauser } 1181d7452d89SAndrew Gallatin error = ip6_output_send(inp, ifp, origifp, m, dst, ro, 1182d7452d89SAndrew Gallatin (flags & IP_NO_SND_TAG_RL) ? false : true); 118382cd038dSYoshinobu Inoue goto done; 1184f95d4633SHajimu UMEMOTO } 1185f95d4633SHajimu UMEMOTO 11867c1daefeSBjoern A. Zeeb /* Try to fragment the packet. Cases 1-b and 3. */ 1187f95d4633SHajimu UMEMOTO if (mtu < IPV6_MMTU) { 11887c1daefeSBjoern A. Zeeb /* Path MTU cannot be less than IPV6_MMTU. */ 118982cd038dSYoshinobu Inoue error = EMSGSIZE; 119082cd038dSYoshinobu Inoue in6_ifstat_inc(ifp, ifs6_out_fragfail); 119182cd038dSYoshinobu Inoue goto bad; 11927efe5d92SHajimu UMEMOTO } else if (ip6->ip6_plen == 0) { 11937c1daefeSBjoern A. Zeeb /* Jumbo payload cannot be fragmented. */ 119482cd038dSYoshinobu Inoue error = EMSGSIZE; 119582cd038dSYoshinobu Inoue in6_ifstat_inc(ifp, ifs6_out_fragfail); 119682cd038dSYoshinobu Inoue goto bad; 119782cd038dSYoshinobu Inoue } else { 119882cd038dSYoshinobu Inoue u_char nextproto; 11992cb64cb2SGeorge V. Neville-Neil 120082cd038dSYoshinobu Inoue /* 120182cd038dSYoshinobu Inoue * Too large for the destination or interface; 120282cd038dSYoshinobu Inoue * fragment if possible. 120382cd038dSYoshinobu Inoue * Must be able to put at least 8 bytes per fragment. 120482cd038dSYoshinobu Inoue */ 120582cd038dSYoshinobu Inoue if (mtu > IPV6_MAXPACKET) 120682cd038dSYoshinobu Inoue mtu = IPV6_MAXPACKET; 120733841545SHajimu UMEMOTO 12083459050cSBjoern A. Zeeb len = (mtu - unfragpartlen - sizeof(struct ip6_frag)) & ~7; 120982cd038dSYoshinobu Inoue if (len < 8) { 121082cd038dSYoshinobu Inoue error = EMSGSIZE; 121182cd038dSYoshinobu Inoue in6_ifstat_inc(ifp, ifs6_out_fragfail); 121282cd038dSYoshinobu Inoue goto bad; 121382cd038dSYoshinobu Inoue } 121482cd038dSYoshinobu Inoue 12156f8aee22SBill Paul /* 1216e7b92e27SBjoern A. Zeeb * If the interface will not calculate checksums on 1217e7b92e27SBjoern A. Zeeb * fragmented packets, then do it here. 1218e7b92e27SBjoern A. Zeeb * XXX-BZ handle the hw offloading case. Need flags. 1219e7b92e27SBjoern A. Zeeb */ 12203459050cSBjoern A. Zeeb error = ip6_output_delayed_csum(m, ifp, m->m_pkthdr.csum_flags, 12213459050cSBjoern A. Zeeb plen, optlen, true); 12223459050cSBjoern A. Zeeb if (error != 0) 122382334850SJohn Baldwin goto bad; 12243459050cSBjoern A. Zeeb 122582cd038dSYoshinobu Inoue /* 122682cd038dSYoshinobu Inoue * Change the next header field of the last header in the 122782cd038dSYoshinobu Inoue * unfragmentable part. 122882cd038dSYoshinobu Inoue */ 122982cd038dSYoshinobu Inoue if (exthdrs.ip6e_rthdr) { 123082cd038dSYoshinobu Inoue nextproto = *mtod(exthdrs.ip6e_rthdr, u_char *); 123182cd038dSYoshinobu Inoue *mtod(exthdrs.ip6e_rthdr, u_char *) = IPPROTO_FRAGMENT; 123282cd038dSYoshinobu Inoue } else if (exthdrs.ip6e_dest1) { 123382cd038dSYoshinobu Inoue nextproto = *mtod(exthdrs.ip6e_dest1, u_char *); 123482cd038dSYoshinobu Inoue *mtod(exthdrs.ip6e_dest1, u_char *) = IPPROTO_FRAGMENT; 123582cd038dSYoshinobu Inoue } else if (exthdrs.ip6e_hbh) { 123682cd038dSYoshinobu Inoue nextproto = *mtod(exthdrs.ip6e_hbh, u_char *); 123782cd038dSYoshinobu Inoue *mtod(exthdrs.ip6e_hbh, u_char *) = IPPROTO_FRAGMENT; 123882cd038dSYoshinobu Inoue } else { 12393459050cSBjoern A. Zeeb ip6 = mtod(m, struct ip6_hdr *); 124082cd038dSYoshinobu Inoue nextproto = ip6->ip6_nxt; 124182cd038dSYoshinobu Inoue ip6->ip6_nxt = IPPROTO_FRAGMENT; 124282cd038dSYoshinobu Inoue } 124382cd038dSYoshinobu Inoue 124482cd038dSYoshinobu Inoue /* 124582cd038dSYoshinobu Inoue * Loop through length of segment after first fragment, 124688ff5695SSUZUKI Shinsuke * make new header and copy data of each part and link onto 124788ff5695SSUZUKI Shinsuke * chain. 124882cd038dSYoshinobu Inoue */ 124982cd038dSYoshinobu Inoue m0 = m; 125079831849SKristof Provost id = htonl(ip6_randomid()); 12513459050cSBjoern A. Zeeb error = ip6_fragment(ifp, m, unfragpartlen, nextproto,len, id); 12523459050cSBjoern A. Zeeb if (error != 0) 125382cd038dSYoshinobu Inoue goto sendorfree; 125482cd038dSYoshinobu Inoue 125582cd038dSYoshinobu Inoue in6_ifstat_inc(ifp, ifs6_out_fragok); 125682cd038dSYoshinobu Inoue } 125782cd038dSYoshinobu Inoue 12587c1daefeSBjoern A. Zeeb /* Remove leading garbage. */ 125982cd038dSYoshinobu Inoue sendorfree: 126082cd038dSYoshinobu Inoue m = m0->m_nextpkt; 126182cd038dSYoshinobu Inoue m0->m_nextpkt = 0; 126282cd038dSYoshinobu Inoue m_freem(m0); 1263c187c034SJonathan T. Looney for (; m; m = m0) { 126482cd038dSYoshinobu Inoue m0 = m->m_nextpkt; 126582cd038dSYoshinobu Inoue m->m_nextpkt = 0; 126682cd038dSYoshinobu Inoue if (error == 0) { 1267fe937674SJosef Karthauser /* Record statistics for this interface address. */ 1268fe937674SJosef Karthauser if (ia) { 12697caf4ab7SGleb Smirnoff counter_u64_add(ia->ia_ifa.ifa_opackets, 1); 12707caf4ab7SGleb Smirnoff counter_u64_add(ia->ia_ifa.ifa_obytes, 12717caf4ab7SGleb Smirnoff m->m_pkthdr.len); 1272fe937674SJosef Karthauser } 1273868aabb4SRichard Scheffenegger if (vlan_pcp > -1) 1274868aabb4SRichard Scheffenegger EVL_APPLY_PRI(m, vlan_pcp); 1275d7452d89SAndrew Gallatin error = ip6_output_send(inp, ifp, origifp, m, dst, ro, 1276d7452d89SAndrew Gallatin true); 127782cd038dSYoshinobu Inoue } else 127882cd038dSYoshinobu Inoue m_freem(m); 127982cd038dSYoshinobu Inoue } 128082cd038dSYoshinobu Inoue 128182cd038dSYoshinobu Inoue if (error == 0) 12829cb8d207SAndrey V. Elsukov IP6STAT_INC(ip6s_fragmented); 128382cd038dSYoshinobu Inoue 128482cd038dSYoshinobu Inoue done: 128582cd038dSYoshinobu Inoue return (error); 128682cd038dSYoshinobu Inoue 128782cd038dSYoshinobu Inoue freehdrs: 12887c1daefeSBjoern A. Zeeb m_freem(exthdrs.ip6e_hbh); /* m_freem() checks if mbuf is NULL. */ 128982cd038dSYoshinobu Inoue m_freem(exthdrs.ip6e_dest1); 129082cd038dSYoshinobu Inoue m_freem(exthdrs.ip6e_rthdr); 129182cd038dSYoshinobu Inoue m_freem(exthdrs.ip6e_dest2); 12927efe5d92SHajimu UMEMOTO /* FALLTHROUGH */ 129382cd038dSYoshinobu Inoue bad: 12942cb64cb2SGeorge V. Neville-Neil if (m) 129582cd038dSYoshinobu Inoue m_freem(m); 129682cd038dSYoshinobu Inoue goto done; 129782cd038dSYoshinobu Inoue } 129882cd038dSYoshinobu Inoue 129982cd038dSYoshinobu Inoue static int 13001272577eSXin LI ip6_copyexthdr(struct mbuf **mp, caddr_t hdr, int hlen) 130182cd038dSYoshinobu Inoue { 130282cd038dSYoshinobu Inoue struct mbuf *m; 130382cd038dSYoshinobu Inoue 130482cd038dSYoshinobu Inoue if (hlen > MCLBYTES) 130582cd038dSYoshinobu Inoue return (ENOBUFS); /* XXX */ 130682cd038dSYoshinobu Inoue 130710e5acc3SGleb Smirnoff if (hlen > MLEN) 130810e5acc3SGleb Smirnoff m = m_getcl(M_NOWAIT, MT_DATA, 0); 130910e5acc3SGleb Smirnoff else 131010e5acc3SGleb Smirnoff m = m_get(M_NOWAIT, MT_DATA); 131110e5acc3SGleb Smirnoff if (m == NULL) 131282cd038dSYoshinobu Inoue return (ENOBUFS); 131382cd038dSYoshinobu Inoue m->m_len = hlen; 131482cd038dSYoshinobu Inoue if (hdr) 131582cd038dSYoshinobu Inoue bcopy(hdr, mtod(m, caddr_t), hlen); 131682cd038dSYoshinobu Inoue 131782cd038dSYoshinobu Inoue *mp = m; 131882cd038dSYoshinobu Inoue return (0); 131982cd038dSYoshinobu Inoue } 132082cd038dSYoshinobu Inoue 132182cd038dSYoshinobu Inoue /* 132282cd038dSYoshinobu Inoue * Insert jumbo payload option. 132382cd038dSYoshinobu Inoue */ 132482cd038dSYoshinobu Inoue static int 13251272577eSXin LI ip6_insert_jumboopt(struct ip6_exthdrs *exthdrs, u_int32_t plen) 132682cd038dSYoshinobu Inoue { 132782cd038dSYoshinobu Inoue struct mbuf *mopt; 132882cd038dSYoshinobu Inoue u_char *optbuf; 132933841545SHajimu UMEMOTO u_int32_t v; 133082cd038dSYoshinobu Inoue 133182cd038dSYoshinobu Inoue #define JUMBOOPTLEN 8 /* length of jumbo payload option and padding */ 133282cd038dSYoshinobu Inoue 133382cd038dSYoshinobu Inoue /* 133482cd038dSYoshinobu Inoue * If there is no hop-by-hop options header, allocate new one. 133582cd038dSYoshinobu Inoue * If there is one but it doesn't have enough space to store the 133682cd038dSYoshinobu Inoue * jumbo payload option, allocate a cluster to store the whole options. 133782cd038dSYoshinobu Inoue * Otherwise, use it to store the options. 133882cd038dSYoshinobu Inoue */ 1339155d72c4SPedro F. Giffuni if (exthdrs->ip6e_hbh == NULL) { 134010e5acc3SGleb Smirnoff mopt = m_get(M_NOWAIT, MT_DATA); 134110e5acc3SGleb Smirnoff if (mopt == NULL) 134282cd038dSYoshinobu Inoue return (ENOBUFS); 134382cd038dSYoshinobu Inoue mopt->m_len = JUMBOOPTLEN; 134482cd038dSYoshinobu Inoue optbuf = mtod(mopt, u_char *); 134582cd038dSYoshinobu Inoue optbuf[1] = 0; /* = ((JUMBOOPTLEN) >> 3) - 1 */ 134682cd038dSYoshinobu Inoue exthdrs->ip6e_hbh = mopt; 134782cd038dSYoshinobu Inoue } else { 134882cd038dSYoshinobu Inoue struct ip6_hbh *hbh; 134982cd038dSYoshinobu Inoue 135082cd038dSYoshinobu Inoue mopt = exthdrs->ip6e_hbh; 135182cd038dSYoshinobu Inoue if (M_TRAILINGSPACE(mopt) < JUMBOOPTLEN) { 135233841545SHajimu UMEMOTO /* 135333841545SHajimu UMEMOTO * XXX assumption: 135433841545SHajimu UMEMOTO * - exthdrs->ip6e_hbh is not referenced from places 135533841545SHajimu UMEMOTO * other than exthdrs. 135633841545SHajimu UMEMOTO * - exthdrs->ip6e_hbh is not an mbuf chain. 135733841545SHajimu UMEMOTO */ 135882cd038dSYoshinobu Inoue int oldoptlen = mopt->m_len; 135933841545SHajimu UMEMOTO struct mbuf *n; 136082cd038dSYoshinobu Inoue 136133841545SHajimu UMEMOTO /* 136233841545SHajimu UMEMOTO * XXX: give up if the whole (new) hbh header does 136333841545SHajimu UMEMOTO * not fit even in an mbuf cluster. 136433841545SHajimu UMEMOTO */ 136533841545SHajimu UMEMOTO if (oldoptlen + JUMBOOPTLEN > MCLBYTES) 136682cd038dSYoshinobu Inoue return (ENOBUFS); 136782cd038dSYoshinobu Inoue 136833841545SHajimu UMEMOTO /* 136933841545SHajimu UMEMOTO * As a consequence, we must always prepare a cluster 137033841545SHajimu UMEMOTO * at this point. 137133841545SHajimu UMEMOTO */ 137210e5acc3SGleb Smirnoff n = m_getcl(M_NOWAIT, MT_DATA, 0); 137310e5acc3SGleb Smirnoff if (n == NULL) 137433841545SHajimu UMEMOTO return (ENOBUFS); 137533841545SHajimu UMEMOTO n->m_len = oldoptlen + JUMBOOPTLEN; 137633841545SHajimu UMEMOTO bcopy(mtod(mopt, caddr_t), mtod(n, caddr_t), 137733841545SHajimu UMEMOTO oldoptlen); 137833841545SHajimu UMEMOTO optbuf = mtod(n, caddr_t) + oldoptlen; 137933841545SHajimu UMEMOTO m_freem(mopt); 138033841545SHajimu UMEMOTO mopt = exthdrs->ip6e_hbh = n; 138182cd038dSYoshinobu Inoue } else { 138282cd038dSYoshinobu Inoue optbuf = mtod(mopt, u_char *) + mopt->m_len; 138382cd038dSYoshinobu Inoue mopt->m_len += JUMBOOPTLEN; 138482cd038dSYoshinobu Inoue } 138582cd038dSYoshinobu Inoue optbuf[0] = IP6OPT_PADN; 138682cd038dSYoshinobu Inoue optbuf[1] = 1; 138782cd038dSYoshinobu Inoue 138882cd038dSYoshinobu Inoue /* 138982cd038dSYoshinobu Inoue * Adjust the header length according to the pad and 139082cd038dSYoshinobu Inoue * the jumbo payload option. 139182cd038dSYoshinobu Inoue */ 139282cd038dSYoshinobu Inoue hbh = mtod(mopt, struct ip6_hbh *); 139382cd038dSYoshinobu Inoue hbh->ip6h_len += (JUMBOOPTLEN >> 3); 139482cd038dSYoshinobu Inoue } 139582cd038dSYoshinobu Inoue 139682cd038dSYoshinobu Inoue /* fill in the option. */ 139782cd038dSYoshinobu Inoue optbuf[2] = IP6OPT_JUMBO; 139882cd038dSYoshinobu Inoue optbuf[3] = 4; 139933841545SHajimu UMEMOTO v = (u_int32_t)htonl(plen + JUMBOOPTLEN); 140033841545SHajimu UMEMOTO bcopy(&v, &optbuf[4], sizeof(u_int32_t)); 140182cd038dSYoshinobu Inoue 140282cd038dSYoshinobu Inoue /* finally, adjust the packet header length */ 140382cd038dSYoshinobu Inoue exthdrs->ip6e_ip6->m_pkthdr.len += JUMBOOPTLEN; 140482cd038dSYoshinobu Inoue 140582cd038dSYoshinobu Inoue return (0); 140682cd038dSYoshinobu Inoue #undef JUMBOOPTLEN 140782cd038dSYoshinobu Inoue } 140882cd038dSYoshinobu Inoue 140982cd038dSYoshinobu Inoue /* 141082cd038dSYoshinobu Inoue * Insert fragment header and copy unfragmentable header portions. 141182cd038dSYoshinobu Inoue */ 141282cd038dSYoshinobu Inoue static int 14131272577eSXin LI ip6_insertfraghdr(struct mbuf *m0, struct mbuf *m, int hlen, 14141272577eSXin LI struct ip6_frag **frghdrp) 141582cd038dSYoshinobu Inoue { 141682cd038dSYoshinobu Inoue struct mbuf *n, *mlast; 141782cd038dSYoshinobu Inoue 141882cd038dSYoshinobu Inoue if (hlen > sizeof(struct ip6_hdr)) { 141982cd038dSYoshinobu Inoue n = m_copym(m0, sizeof(struct ip6_hdr), 1420eb1b1807SGleb Smirnoff hlen - sizeof(struct ip6_hdr), M_NOWAIT); 1421155d72c4SPedro F. Giffuni if (n == NULL) 142282cd038dSYoshinobu Inoue return (ENOBUFS); 142382cd038dSYoshinobu Inoue m->m_next = n; 142482cd038dSYoshinobu Inoue } else 142582cd038dSYoshinobu Inoue n = m; 142682cd038dSYoshinobu Inoue 142782cd038dSYoshinobu Inoue /* Search for the last mbuf of unfragmentable part. */ 142882cd038dSYoshinobu Inoue for (mlast = n; mlast->m_next; mlast = mlast->m_next) 142982cd038dSYoshinobu Inoue ; 143082cd038dSYoshinobu Inoue 1431f0cace5dSRobert Watson if (M_WRITABLE(mlast) && 1432686cdd19SJun-ichiro itojun Hagino M_TRAILINGSPACE(mlast) >= sizeof(struct ip6_frag)) { 143382cd038dSYoshinobu Inoue /* use the trailing space of the last mbuf for the fragment hdr */ 14347efe5d92SHajimu UMEMOTO *frghdrp = (struct ip6_frag *)(mtod(mlast, caddr_t) + 14357efe5d92SHajimu UMEMOTO mlast->m_len); 143682cd038dSYoshinobu Inoue mlast->m_len += sizeof(struct ip6_frag); 143782cd038dSYoshinobu Inoue m->m_pkthdr.len += sizeof(struct ip6_frag); 143882cd038dSYoshinobu Inoue } else { 143982cd038dSYoshinobu Inoue /* allocate a new mbuf for the fragment header */ 144082cd038dSYoshinobu Inoue struct mbuf *mfrg; 144182cd038dSYoshinobu Inoue 144210e5acc3SGleb Smirnoff mfrg = m_get(M_NOWAIT, MT_DATA); 144310e5acc3SGleb Smirnoff if (mfrg == NULL) 144482cd038dSYoshinobu Inoue return (ENOBUFS); 144582cd038dSYoshinobu Inoue mfrg->m_len = sizeof(struct ip6_frag); 144682cd038dSYoshinobu Inoue *frghdrp = mtod(mfrg, struct ip6_frag *); 144782cd038dSYoshinobu Inoue mlast->m_next = mfrg; 144882cd038dSYoshinobu Inoue } 144982cd038dSYoshinobu Inoue 145082cd038dSYoshinobu Inoue return (0); 145182cd038dSYoshinobu Inoue } 145282cd038dSYoshinobu Inoue 14530d4df029SAlexander V. Chernikov /* 14540d4df029SAlexander V. Chernikov * Calculates IPv6 path mtu for destination @dst. 14550d4df029SAlexander V. Chernikov * Resulting MTU is stored in @mtup. 14560d4df029SAlexander V. Chernikov * 14570d4df029SAlexander V. Chernikov * Returns 0 on success. 14580d4df029SAlexander V. Chernikov */ 145931b3783cSHajimu UMEMOTO static int 1460f0937b2cSAndrey V. Elsukov ip6_getpmtu_ctl(u_int fibnum, const struct in6_addr *dst, u_long *mtup) 14610d4df029SAlexander V. Chernikov { 14621483c1c5SAlexander V. Chernikov struct epoch_tracker et; 14631483c1c5SAlexander V. Chernikov struct nhop_object *nh; 1464bacf6684SAlexander V. Chernikov struct in6_addr kdst; 1465bacf6684SAlexander V. Chernikov uint32_t scopeid; 1466bacf6684SAlexander V. Chernikov int error; 14670d4df029SAlexander V. Chernikov 1468bacf6684SAlexander V. Chernikov in6_splitscope(dst, &kdst, &scopeid); 14690d4df029SAlexander V. Chernikov 14701483c1c5SAlexander V. Chernikov NET_EPOCH_ENTER(et); 14711483c1c5SAlexander V. Chernikov nh = fib6_lookup(fibnum, &kdst, scopeid, NHR_NONE, 0); 14721483c1c5SAlexander V. Chernikov if (nh != NULL) 14731483c1c5SAlexander V. Chernikov error = ip6_calcmtu(nh->nh_ifp, dst, nh->nh_mtu, mtup, NULL, 0); 14741483c1c5SAlexander V. Chernikov else 14751483c1c5SAlexander V. Chernikov error = EHOSTUNREACH; 14761483c1c5SAlexander V. Chernikov NET_EPOCH_EXIT(et); 1477bacf6684SAlexander V. Chernikov 1478bacf6684SAlexander V. Chernikov return (error); 14790d4df029SAlexander V. Chernikov } 14800d4df029SAlexander V. Chernikov 14810d4df029SAlexander V. Chernikov /* 14820d4df029SAlexander V. Chernikov * Calculates IPv6 path MTU for @dst based on transmit @ifp, 14830d4df029SAlexander V. Chernikov * and cached data in @ro_pmtu. 14840d4df029SAlexander V. Chernikov * MTU from (successful) route lookup is saved (along with dst) 14850d4df029SAlexander V. Chernikov * inside @ro_pmtu to avoid subsequent route lookups after packet 14860d4df029SAlexander V. Chernikov * filter processing. 14870d4df029SAlexander V. Chernikov * 14880d4df029SAlexander V. Chernikov * Stores mtu and always-frag value into @mtup and @alwaysfragp. 14890d4df029SAlexander V. Chernikov * Returns 0 on success. 14900d4df029SAlexander V. Chernikov */ 14910d4df029SAlexander V. Chernikov static int 14920d4df029SAlexander V. Chernikov ip6_getpmtu(struct route_in6 *ro_pmtu, int do_lookup, 1493f0937b2cSAndrey V. Elsukov struct ifnet *ifp, const struct in6_addr *dst, u_long *mtup, 1494d4c22202SAndrew Gallatin int *alwaysfragp, u_int fibnum, u_int proto) 149531b3783cSHajimu UMEMOTO { 14961483c1c5SAlexander V. Chernikov struct nhop_object *nh; 1497bacf6684SAlexander V. Chernikov struct in6_addr kdst; 1498bacf6684SAlexander V. Chernikov uint32_t scopeid; 1499000c42faSBjoern A. Zeeb struct sockaddr_in6 *sa6_dst, sin6; 15000d4df029SAlexander V. Chernikov u_long mtu; 150131b3783cSHajimu UMEMOTO 15021483c1c5SAlexander V. Chernikov NET_EPOCH_ASSERT(); 15031483c1c5SAlexander V. Chernikov 15040d4df029SAlexander V. Chernikov mtu = 0; 1505000c42faSBjoern A. Zeeb if (ro_pmtu == NULL || do_lookup) { 15060d4df029SAlexander V. Chernikov /* 15070d4df029SAlexander V. Chernikov * Here ro_pmtu has final destination address, while 15080d4df029SAlexander V. Chernikov * ro might represent immediate destination. 15090d4df029SAlexander V. Chernikov * Use ro_pmtu destination since mtu might differ. 15100d4df029SAlexander V. Chernikov */ 1511000c42faSBjoern A. Zeeb if (ro_pmtu != NULL) { 15120d4df029SAlexander V. Chernikov sa6_dst = (struct sockaddr_in6 *)&ro_pmtu->ro_dst; 15130d4df029SAlexander V. Chernikov if (!IN6_ARE_ADDR_EQUAL(&sa6_dst->sin6_addr, dst)) 15140d4df029SAlexander V. Chernikov ro_pmtu->ro_mtu = 0; 1515000c42faSBjoern A. Zeeb } else 1516000c42faSBjoern A. Zeeb sa6_dst = &sin6; 15170d4df029SAlexander V. Chernikov 1518000c42faSBjoern A. Zeeb if (ro_pmtu == NULL || ro_pmtu->ro_mtu == 0) { 151931b3783cSHajimu UMEMOTO bzero(sa6_dst, sizeof(*sa6_dst)); 152031b3783cSHajimu UMEMOTO sa6_dst->sin6_family = AF_INET6; 152131b3783cSHajimu UMEMOTO sa6_dst->sin6_len = sizeof(struct sockaddr_in6); 152231b3783cSHajimu UMEMOTO sa6_dst->sin6_addr = *dst; 152331b3783cSHajimu UMEMOTO 1524bacf6684SAlexander V. Chernikov in6_splitscope(dst, &kdst, &scopeid); 15251483c1c5SAlexander V. Chernikov nh = fib6_lookup(fibnum, &kdst, scopeid, NHR_NONE, 0); 15261483c1c5SAlexander V. Chernikov if (nh != NULL) { 15271483c1c5SAlexander V. Chernikov mtu = nh->nh_mtu; 1528000c42faSBjoern A. Zeeb if (ro_pmtu != NULL) 1529000c42faSBjoern A. Zeeb ro_pmtu->ro_mtu = mtu; 15300d4df029SAlexander V. Chernikov } 1531000c42faSBjoern A. Zeeb } else 1532bacf6684SAlexander V. Chernikov mtu = ro_pmtu->ro_mtu; 15330d4df029SAlexander V. Chernikov } 15340d4df029SAlexander V. Chernikov 1535983066f0SAlexander V. Chernikov if (ro_pmtu != NULL && ro_pmtu->ro_nh != NULL) 1536983066f0SAlexander V. Chernikov mtu = ro_pmtu->ro_nh->nh_mtu; 15370d4df029SAlexander V. Chernikov 1538d4c22202SAndrew Gallatin return (ip6_calcmtu(ifp, dst, mtu, mtup, alwaysfragp, proto)); 15390d4df029SAlexander V. Chernikov } 15400d4df029SAlexander V. Chernikov 15410d4df029SAlexander V. Chernikov /* 15420d4df029SAlexander V. Chernikov * Calculate MTU based on transmit @ifp, route mtu @rt_mtu and 15430d4df029SAlexander V. Chernikov * hostcache data for @dst. 15440d4df029SAlexander V. Chernikov * Stores mtu and always-frag value into @mtup and @alwaysfragp. 15450d4df029SAlexander V. Chernikov * 15460d4df029SAlexander V. Chernikov * Returns 0 on success. 15470d4df029SAlexander V. Chernikov */ 15480d4df029SAlexander V. Chernikov static int 15490d4df029SAlexander V. Chernikov ip6_calcmtu(struct ifnet *ifp, const struct in6_addr *dst, u_long rt_mtu, 1550d4c22202SAndrew Gallatin u_long *mtup, int *alwaysfragp, u_int proto) 15510d4df029SAlexander V. Chernikov { 15520d4df029SAlexander V. Chernikov u_long mtu = 0; 15530d4df029SAlexander V. Chernikov int alwaysfrag = 0; 15540d4df029SAlexander V. Chernikov int error = 0; 15550d4df029SAlexander V. Chernikov 15560d4df029SAlexander V. Chernikov if (rt_mtu > 0) { 155731b3783cSHajimu UMEMOTO u_int32_t ifmtu; 155897d8d152SAndre Oppermann struct in_conninfo inc; 155997d8d152SAndre Oppermann 156097d8d152SAndre Oppermann bzero(&inc, sizeof(inc)); 1561dcdb4371SBjoern A. Zeeb inc.inc_flags |= INC_ISIPV6; 156297d8d152SAndre Oppermann inc.inc6_faddr = *dst; 156331b3783cSHajimu UMEMOTO 156431b3783cSHajimu UMEMOTO ifmtu = IN6_LINKMTU(ifp); 1565d4c22202SAndrew Gallatin 1566d4c22202SAndrew Gallatin /* TCP is known to react to pmtu changes so skip hc */ 1567d4c22202SAndrew Gallatin if (proto != IPPROTO_TCP) 156897d8d152SAndre Oppermann mtu = tcp_hc_getmtu(&inc); 1569d4c22202SAndrew Gallatin 157097d8d152SAndre Oppermann if (mtu) 15710d4df029SAlexander V. Chernikov mtu = min(mtu, rt_mtu); 157297d8d152SAndre Oppermann else 15730d4df029SAlexander V. Chernikov mtu = rt_mtu; 157431b3783cSHajimu UMEMOTO if (mtu == 0) 157531b3783cSHajimu UMEMOTO mtu = ifmtu; 1576f95d4633SHajimu UMEMOTO else if (mtu < IPV6_MMTU) { 1577f95d4633SHajimu UMEMOTO /* 1578f95d4633SHajimu UMEMOTO * RFC2460 section 5, last paragraph: 1579f95d4633SHajimu UMEMOTO * if we record ICMPv6 too big message with 1580f95d4633SHajimu UMEMOTO * mtu < IPV6_MMTU, transmit packets sized IPV6_MMTU 1581f95d4633SHajimu UMEMOTO * or smaller, with framgent header attached. 1582f95d4633SHajimu UMEMOTO * (fragment header is needed regardless from the 1583f95d4633SHajimu UMEMOTO * packet size, for translators to identify packets) 1584f95d4633SHajimu UMEMOTO */ 1585f95d4633SHajimu UMEMOTO alwaysfrag = 1; 1586f95d4633SHajimu UMEMOTO mtu = IPV6_MMTU; 158731b3783cSHajimu UMEMOTO } 158831b3783cSHajimu UMEMOTO } else if (ifp) { 158931b3783cSHajimu UMEMOTO mtu = IN6_LINKMTU(ifp); 159031b3783cSHajimu UMEMOTO } else 159131b3783cSHajimu UMEMOTO error = EHOSTUNREACH; /* XXX */ 159231b3783cSHajimu UMEMOTO 159331b3783cSHajimu UMEMOTO *mtup = mtu; 1594f95d4633SHajimu UMEMOTO if (alwaysfragp) 1595f95d4633SHajimu UMEMOTO *alwaysfragp = alwaysfrag; 159631b3783cSHajimu UMEMOTO return (error); 159731b3783cSHajimu UMEMOTO } 159831b3783cSHajimu UMEMOTO 159982cd038dSYoshinobu Inoue /* 160082cd038dSYoshinobu Inoue * IP6 socket option processing. 160182cd038dSYoshinobu Inoue */ 160282cd038dSYoshinobu Inoue int 16031272577eSXin LI ip6_ctloutput(struct socket *so, struct sockopt *sopt) 160482cd038dSYoshinobu Inoue { 160579ba3952SBjoern A. Zeeb int optdatalen, uproto; 1606f95d4633SHajimu UMEMOTO void *optdata; 16070ecd976eSBjoern A. Zeeb struct inpcb *inp = sotoinpcb(so); 160882cd038dSYoshinobu Inoue int error, optval; 160982cd038dSYoshinobu Inoue int level, op, optname; 161082cd038dSYoshinobu Inoue int optlen; 1611b40ce416SJulian Elischer struct thread *td; 1612c7c0d948SAdrian Chadd #ifdef RSS 1613c7c0d948SAdrian Chadd uint32_t rss_bucket; 1614c7c0d948SAdrian Chadd int retval; 1615c7c0d948SAdrian Chadd #endif 161682cd038dSYoshinobu Inoue 1617aec9c8d5SGeorge V. Neville-Neil /* 1618aec9c8d5SGeorge V. Neville-Neil * Don't use more than a quarter of mbuf clusters. N.B.: 1619aec9c8d5SGeorge V. Neville-Neil * nmbclusters is an int, but nmbclusters * MCLBYTES may overflow 1620aec9c8d5SGeorge V. Neville-Neil * on LP64 architectures, so cast to u_long to avoid undefined 1621aec9c8d5SGeorge V. Neville-Neil * behavior. ILP32 architectures cannot have nmbclusters 1622aec9c8d5SGeorge V. Neville-Neil * large enough to overflow for other reasons. 1623aec9c8d5SGeorge V. Neville-Neil */ 1624aec9c8d5SGeorge V. Neville-Neil #define IPV6_PKTOPTIONS_MBUF_LIMIT ((u_long)nmbclusters * MCLBYTES / 4) 1625aec9c8d5SGeorge V. Neville-Neil 162682cd038dSYoshinobu Inoue level = sopt->sopt_level; 162782cd038dSYoshinobu Inoue op = sopt->sopt_dir; 162882cd038dSYoshinobu Inoue optname = sopt->sopt_name; 162982cd038dSYoshinobu Inoue optlen = sopt->sopt_valsize; 1630b40ce416SJulian Elischer td = sopt->sopt_td; 1631cc29ac7dSRobert Watson error = 0; 1632cc29ac7dSRobert Watson optval = 0; 1633f95d4633SHajimu UMEMOTO uproto = (int)so->so_proto->pr_protocol; 163482cd038dSYoshinobu Inoue 1635fc06cd42SMikolaj Golub if (level != IPPROTO_IPV6) { 1636fc06cd42SMikolaj Golub error = EINVAL; 1637fc06cd42SMikolaj Golub 1638fc06cd42SMikolaj Golub if (sopt->sopt_level == SOL_SOCKET && 1639fc06cd42SMikolaj Golub sopt->sopt_dir == SOPT_SET) { 1640fc06cd42SMikolaj Golub switch (sopt->sopt_name) { 1641fc06cd42SMikolaj Golub case SO_REUSEADDR: 16420ecd976eSBjoern A. Zeeb INP_WLOCK(inp); 1643efdf104bSMikolaj Golub if ((so->so_options & SO_REUSEADDR) != 0) 16440ecd976eSBjoern A. Zeeb inp->inp_flags2 |= INP_REUSEADDR; 1645fc06cd42SMikolaj Golub else 16460ecd976eSBjoern A. Zeeb inp->inp_flags2 &= ~INP_REUSEADDR; 16470ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 1648fc06cd42SMikolaj Golub error = 0; 1649fc06cd42SMikolaj Golub break; 1650fc06cd42SMikolaj Golub case SO_REUSEPORT: 16510ecd976eSBjoern A. Zeeb INP_WLOCK(inp); 1652fc06cd42SMikolaj Golub if ((so->so_options & SO_REUSEPORT) != 0) 16530ecd976eSBjoern A. Zeeb inp->inp_flags2 |= INP_REUSEPORT; 1654fc06cd42SMikolaj Golub else 16550ecd976eSBjoern A. Zeeb inp->inp_flags2 &= ~INP_REUSEPORT; 16560ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 1657fc06cd42SMikolaj Golub error = 0; 1658fc06cd42SMikolaj Golub break; 16591a43cff9SSean Bruno case SO_REUSEPORT_LB: 16600ecd976eSBjoern A. Zeeb INP_WLOCK(inp); 16611a43cff9SSean Bruno if ((so->so_options & SO_REUSEPORT_LB) != 0) 16620ecd976eSBjoern A. Zeeb inp->inp_flags2 |= INP_REUSEPORT_LB; 16631a43cff9SSean Bruno else 16640ecd976eSBjoern A. Zeeb inp->inp_flags2 &= ~INP_REUSEPORT_LB; 16650ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 16661a43cff9SSean Bruno error = 0; 16671a43cff9SSean Bruno break; 1668ee799639SBjoern A. Zeeb case SO_SETFIB: 16690ecd976eSBjoern A. Zeeb INP_WLOCK(inp); 16700ecd976eSBjoern A. Zeeb inp->inp_inc.inc_fibnum = so->so_fibnum; 16710ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 1672ee799639SBjoern A. Zeeb error = 0; 1673ee799639SBjoern A. Zeeb break; 1674f3e7afe2SHans Petter Selasky case SO_MAX_PACING_RATE: 1675f3e7afe2SHans Petter Selasky #ifdef RATELIMIT 16760ecd976eSBjoern A. Zeeb INP_WLOCK(inp); 16770ecd976eSBjoern A. Zeeb inp->inp_flags2 |= INP_RATE_LIMIT_CHANGED; 16780ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 1679f3e7afe2SHans Petter Selasky error = 0; 1680f3e7afe2SHans Petter Selasky #else 1681f3e7afe2SHans Petter Selasky error = EOPNOTSUPP; 1682f3e7afe2SHans Petter Selasky #endif 1683f3e7afe2SHans Petter Selasky break; 1684fc06cd42SMikolaj Golub default: 1685fc06cd42SMikolaj Golub break; 1686fc06cd42SMikolaj Golub } 1687fc06cd42SMikolaj Golub } 1688fc06cd42SMikolaj Golub } else { /* level == IPPROTO_IPV6 */ 168982cd038dSYoshinobu Inoue switch (op) { 169082cd038dSYoshinobu Inoue case SOPT_SET: 169182cd038dSYoshinobu Inoue switch (optname) { 1692f95d4633SHajimu UMEMOTO case IPV6_2292PKTOPTIONS: 1693f95d4633SHajimu UMEMOTO #ifdef IPV6_PKTOPTIONS 169482cd038dSYoshinobu Inoue case IPV6_PKTOPTIONS: 1695f95d4633SHajimu UMEMOTO #endif 169682cd038dSYoshinobu Inoue { 169782cd038dSYoshinobu Inoue struct mbuf *m; 169882cd038dSYoshinobu Inoue 1699aec9c8d5SGeorge V. Neville-Neil if (optlen > IPV6_PKTOPTIONS_MBUF_LIMIT) { 1700aec9c8d5SGeorge V. Neville-Neil printf("ip6_ctloutput: mbuf limit hit\n"); 1701aec9c8d5SGeorge V. Neville-Neil error = ENOBUFS; 1702aec9c8d5SGeorge V. Neville-Neil break; 1703aec9c8d5SGeorge V. Neville-Neil } 1704aec9c8d5SGeorge V. Neville-Neil 170582cd038dSYoshinobu Inoue error = soopt_getm(sopt, &m); /* XXX */ 1706a89ec05eSPeter Wemm if (error != 0) 170782cd038dSYoshinobu Inoue break; 170882cd038dSYoshinobu Inoue error = soopt_mcopyin(sopt, m); /* XXX */ 1709a89ec05eSPeter Wemm if (error != 0) 171082cd038dSYoshinobu Inoue break; 1711e02582d1SMark Johnston INP_WLOCK(inp); 1712e02582d1SMark Johnston error = ip6_pcbopts(&inp->in6p_outputopts, m, 1713e02582d1SMark Johnston so, sopt); 1714e02582d1SMark Johnston INP_WUNLOCK(inp); 171533841545SHajimu UMEMOTO m_freem(m); /* XXX */ 171682cd038dSYoshinobu Inoue break; 171782cd038dSYoshinobu Inoue } 171833841545SHajimu UMEMOTO 171933841545SHajimu UMEMOTO /* 172033841545SHajimu UMEMOTO * Use of some Hop-by-Hop options or some 172133841545SHajimu UMEMOTO * Destination options, might require special 172233841545SHajimu UMEMOTO * privilege. That is, normal applications 172333841545SHajimu UMEMOTO * (without special privilege) might be forbidden 172433841545SHajimu UMEMOTO * from setting certain options in outgoing packets, 172533841545SHajimu UMEMOTO * and might never see certain options in received 172633841545SHajimu UMEMOTO * packets. [RFC 2292 Section 6] 172733841545SHajimu UMEMOTO * KAME specific note: 172833841545SHajimu UMEMOTO * KAME prevents non-privileged users from sending or 172933841545SHajimu UMEMOTO * receiving ANY hbh/dst options in order to avoid 173033841545SHajimu UMEMOTO * overhead of parsing options in the kernel. 173133841545SHajimu UMEMOTO */ 1732f95d4633SHajimu UMEMOTO case IPV6_RECVHOPOPTS: 1733f95d4633SHajimu UMEMOTO case IPV6_RECVDSTOPTS: 1734f95d4633SHajimu UMEMOTO case IPV6_RECVRTHDRDSTOPTS: 173579ba3952SBjoern A. Zeeb if (td != NULL) { 173679ba3952SBjoern A. Zeeb error = priv_check(td, 173779ba3952SBjoern A. Zeeb PRIV_NETINET_SETHDROPTS); 173879ba3952SBjoern A. Zeeb if (error) 1739f95d4633SHajimu UMEMOTO break; 1740f95d4633SHajimu UMEMOTO } 1741f95d4633SHajimu UMEMOTO /* FALLTHROUGH */ 174282cd038dSYoshinobu Inoue case IPV6_UNICAST_HOPS: 1743f95d4633SHajimu UMEMOTO case IPV6_HOPLIMIT: 174433841545SHajimu UMEMOTO 1745f95d4633SHajimu UMEMOTO case IPV6_RECVPKTINFO: 1746f95d4633SHajimu UMEMOTO case IPV6_RECVHOPLIMIT: 1747f95d4633SHajimu UMEMOTO case IPV6_RECVRTHDR: 1748f95d4633SHajimu UMEMOTO case IPV6_RECVPATHMTU: 1749f95d4633SHajimu UMEMOTO case IPV6_RECVTCLASS: 175068bb8d62SAdrian Chadd case IPV6_RECVFLOWID: 175168bb8d62SAdrian Chadd #ifdef RSS 175268bb8d62SAdrian Chadd case IPV6_RECVRSSBUCKETID: 175368bb8d62SAdrian Chadd #endif 175433841545SHajimu UMEMOTO case IPV6_V6ONLY: 1755f95d4633SHajimu UMEMOTO case IPV6_AUTOFLOWLABEL: 1756dce33a45SErmal Luçi case IPV6_ORIGDSTADDR: 1757f44270e7SPawel Jakub Dawidek case IPV6_BINDANY: 1758c7c0d948SAdrian Chadd case IPV6_BINDMULTI: 1759c7c0d948SAdrian Chadd #ifdef RSS 1760c7c0d948SAdrian Chadd case IPV6_RSS_LISTEN_BUCKET: 1761c7c0d948SAdrian Chadd #endif 1762868aabb4SRichard Scheffenegger case IPV6_VLAN_PCP: 1763f44270e7SPawel Jakub Dawidek if (optname == IPV6_BINDANY && td != NULL) { 1764f44270e7SPawel Jakub Dawidek error = priv_check(td, 1765f44270e7SPawel Jakub Dawidek PRIV_NETINET_BINDANY); 1766f44270e7SPawel Jakub Dawidek if (error) 1767f44270e7SPawel Jakub Dawidek break; 1768f44270e7SPawel Jakub Dawidek } 1769f44270e7SPawel Jakub Dawidek 177033841545SHajimu UMEMOTO if (optlen != sizeof(int)) { 177182cd038dSYoshinobu Inoue error = EINVAL; 177233841545SHajimu UMEMOTO break; 177333841545SHajimu UMEMOTO } 177482cd038dSYoshinobu Inoue error = sooptcopyin(sopt, &optval, 177582cd038dSYoshinobu Inoue sizeof optval, sizeof optval); 177682cd038dSYoshinobu Inoue if (error) 177782cd038dSYoshinobu Inoue break; 177882cd038dSYoshinobu Inoue switch (optname) { 177982cd038dSYoshinobu Inoue case IPV6_UNICAST_HOPS: 178082cd038dSYoshinobu Inoue if (optval < -1 || optval >= 256) 178182cd038dSYoshinobu Inoue error = EINVAL; 178282cd038dSYoshinobu Inoue else { 178382cd038dSYoshinobu Inoue /* -1 = kernel default */ 17840ecd976eSBjoern A. Zeeb inp->in6p_hops = optval; 17850ecd976eSBjoern A. Zeeb if ((inp->inp_vflag & 178682cd038dSYoshinobu Inoue INP_IPV4) != 0) 17870ecd976eSBjoern A. Zeeb inp->inp_ip_ttl = optval; 178882cd038dSYoshinobu Inoue } 178982cd038dSYoshinobu Inoue break; 179082cd038dSYoshinobu Inoue #define OPTSET(bit) \ 179133841545SHajimu UMEMOTO do { \ 17920ecd976eSBjoern A. Zeeb INP_WLOCK(inp); \ 179382cd038dSYoshinobu Inoue if (optval) \ 17940ecd976eSBjoern A. Zeeb inp->inp_flags |= (bit); \ 179582cd038dSYoshinobu Inoue else \ 17960ecd976eSBjoern A. Zeeb inp->inp_flags &= ~(bit); \ 17970ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); \ 17987efe5d92SHajimu UMEMOTO } while (/*CONSTCOND*/ 0) 1799f95d4633SHajimu UMEMOTO #define OPTSET2292(bit) \ 1800f95d4633SHajimu UMEMOTO do { \ 18010ecd976eSBjoern A. Zeeb INP_WLOCK(inp); \ 18020ecd976eSBjoern A. Zeeb inp->inp_flags |= IN6P_RFC2292; \ 1803f95d4633SHajimu UMEMOTO if (optval) \ 18040ecd976eSBjoern A. Zeeb inp->inp_flags |= (bit); \ 1805f95d4633SHajimu UMEMOTO else \ 18060ecd976eSBjoern A. Zeeb inp->inp_flags &= ~(bit); \ 18070ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); \ 1808f95d4633SHajimu UMEMOTO } while (/*CONSTCOND*/ 0) 18090ecd976eSBjoern A. Zeeb #define OPTBIT(bit) (inp->inp_flags & (bit) ? 1 : 0) 181082cd038dSYoshinobu Inoue 181137d4fc1eSSean Bruno #define OPTSET2_N(bit, val) do { \ 1812c7c0d948SAdrian Chadd if (val) \ 18130ecd976eSBjoern A. Zeeb inp->inp_flags2 |= bit; \ 1814c7c0d948SAdrian Chadd else \ 18150ecd976eSBjoern A. Zeeb inp->inp_flags2 &= ~bit; \ 181637d4fc1eSSean Bruno } while (0) 181737d4fc1eSSean Bruno #define OPTSET2(bit, val) do { \ 18180ecd976eSBjoern A. Zeeb INP_WLOCK(inp); \ 181937d4fc1eSSean Bruno OPTSET2_N(bit, val); \ 18200ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); \ 1821c7c0d948SAdrian Chadd } while (0) 18220ecd976eSBjoern A. Zeeb #define OPTBIT2(bit) (inp->inp_flags2 & (bit) ? 1 : 0) 182337d4fc1eSSean Bruno #define OPTSET2292_EXCLUSIVE(bit) \ 182437d4fc1eSSean Bruno do { \ 18250ecd976eSBjoern A. Zeeb INP_WLOCK(inp); \ 182637d4fc1eSSean Bruno if (OPTBIT(IN6P_RFC2292)) { \ 182737d4fc1eSSean Bruno error = EINVAL; \ 182837d4fc1eSSean Bruno } else { \ 182937d4fc1eSSean Bruno if (optval) \ 18300ecd976eSBjoern A. Zeeb inp->inp_flags |= (bit); \ 183137d4fc1eSSean Bruno else \ 18320ecd976eSBjoern A. Zeeb inp->inp_flags &= ~(bit); \ 183337d4fc1eSSean Bruno } \ 18340ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); \ 183537d4fc1eSSean Bruno } while (/*CONSTCOND*/ 0) 1836c7c0d948SAdrian Chadd 1837f95d4633SHajimu UMEMOTO case IPV6_RECVPKTINFO: 183837d4fc1eSSean Bruno OPTSET2292_EXCLUSIVE(IN6P_PKTINFO); 1839f95d4633SHajimu UMEMOTO break; 1840f95d4633SHajimu UMEMOTO 1841f95d4633SHajimu UMEMOTO case IPV6_HOPLIMIT: 1842f95d4633SHajimu UMEMOTO { 1843f95d4633SHajimu UMEMOTO struct ip6_pktopts **optp; 1844f95d4633SHajimu UMEMOTO 1845f95d4633SHajimu UMEMOTO /* cannot mix with RFC2292 */ 1846f95d4633SHajimu UMEMOTO if (OPTBIT(IN6P_RFC2292)) { 1847f95d4633SHajimu UMEMOTO error = EINVAL; 1848f95d4633SHajimu UMEMOTO break; 1849f95d4633SHajimu UMEMOTO } 18500ecd976eSBjoern A. Zeeb INP_WLOCK(inp); 18510ecd976eSBjoern A. Zeeb if (inp->inp_flags & (INP_TIMEWAIT | INP_DROPPED)) { 18520ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 185356713d16SMatt Macy return (ECONNRESET); 185456713d16SMatt Macy } 18550ecd976eSBjoern A. Zeeb optp = &inp->in6p_outputopts; 1856f95d4633SHajimu UMEMOTO error = ip6_pcbopt(IPV6_HOPLIMIT, 185779ba3952SBjoern A. Zeeb (u_char *)&optval, sizeof(optval), 185879ba3952SBjoern A. Zeeb optp, (td != NULL) ? td->td_ucred : 185979ba3952SBjoern A. Zeeb NULL, uproto); 18600ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 1861f95d4633SHajimu UMEMOTO break; 1862f95d4633SHajimu UMEMOTO } 1863f95d4633SHajimu UMEMOTO 1864f95d4633SHajimu UMEMOTO case IPV6_RECVHOPLIMIT: 186537d4fc1eSSean Bruno OPTSET2292_EXCLUSIVE(IN6P_HOPLIMIT); 1866f95d4633SHajimu UMEMOTO break; 1867f95d4633SHajimu UMEMOTO 1868f95d4633SHajimu UMEMOTO case IPV6_RECVHOPOPTS: 186937d4fc1eSSean Bruno OPTSET2292_EXCLUSIVE(IN6P_HOPOPTS); 1870f95d4633SHajimu UMEMOTO break; 1871f95d4633SHajimu UMEMOTO 1872f95d4633SHajimu UMEMOTO case IPV6_RECVDSTOPTS: 187337d4fc1eSSean Bruno OPTSET2292_EXCLUSIVE(IN6P_DSTOPTS); 1874f95d4633SHajimu UMEMOTO break; 1875f95d4633SHajimu UMEMOTO 1876f95d4633SHajimu UMEMOTO case IPV6_RECVRTHDRDSTOPTS: 187737d4fc1eSSean Bruno OPTSET2292_EXCLUSIVE(IN6P_RTHDRDSTOPTS); 1878f95d4633SHajimu UMEMOTO break; 1879f95d4633SHajimu UMEMOTO 1880f95d4633SHajimu UMEMOTO case IPV6_RECVRTHDR: 188137d4fc1eSSean Bruno OPTSET2292_EXCLUSIVE(IN6P_RTHDR); 188282cd038dSYoshinobu Inoue break; 188382cd038dSYoshinobu Inoue 1884f95d4633SHajimu UMEMOTO case IPV6_RECVPATHMTU: 1885f95d4633SHajimu UMEMOTO /* 1886f95d4633SHajimu UMEMOTO * We ignore this option for TCP 1887f95d4633SHajimu UMEMOTO * sockets. 188818b35df8SHajimu UMEMOTO * (RFC3542 leaves this case 1889f95d4633SHajimu UMEMOTO * unspecified.) 1890f95d4633SHajimu UMEMOTO */ 1891f95d4633SHajimu UMEMOTO if (uproto != IPPROTO_TCP) 1892f95d4633SHajimu UMEMOTO OPTSET(IN6P_MTU); 1893f95d4633SHajimu UMEMOTO break; 1894f95d4633SHajimu UMEMOTO 189568bb8d62SAdrian Chadd case IPV6_RECVFLOWID: 189668bb8d62SAdrian Chadd OPTSET2(INP_RECVFLOWID, optval); 189768bb8d62SAdrian Chadd break; 189868bb8d62SAdrian Chadd 189968bb8d62SAdrian Chadd #ifdef RSS 190068bb8d62SAdrian Chadd case IPV6_RECVRSSBUCKETID: 190168bb8d62SAdrian Chadd OPTSET2(INP_RECVRSSBUCKETID, optval); 190268bb8d62SAdrian Chadd break; 190368bb8d62SAdrian Chadd #endif 190468bb8d62SAdrian Chadd 190533841545SHajimu UMEMOTO case IPV6_V6ONLY: 1906cb49ec54SMark Johnston INP_WLOCK(inp); 19070ecd976eSBjoern A. Zeeb if (inp->inp_lport || 19080ecd976eSBjoern A. Zeeb !IN6_IS_ADDR_UNSPECIFIED(&inp->in6p_laddr)) { 1909cb49ec54SMark Johnston /* 1910cb49ec54SMark Johnston * The socket is already bound. 1911cb49ec54SMark Johnston */ 1912cb49ec54SMark Johnston INP_WUNLOCK(inp); 19130554093bSHajimu UMEMOTO error = EINVAL; 19140554093bSHajimu UMEMOTO break; 19150554093bSHajimu UMEMOTO } 1916cb49ec54SMark Johnston if (optval) { 1917cb49ec54SMark Johnston inp->inp_flags |= IN6P_IPV6_V6ONLY; 19180ecd976eSBjoern A. Zeeb inp->inp_vflag &= ~INP_IPV4; 1919cb49ec54SMark Johnston } else { 1920cb49ec54SMark Johnston inp->inp_flags &= ~IN6P_IPV6_V6ONLY; 19210ecd976eSBjoern A. Zeeb inp->inp_vflag |= INP_IPV4; 1922cb49ec54SMark Johnston } 1923cb49ec54SMark Johnston INP_WUNLOCK(inp); 192482cd038dSYoshinobu Inoue break; 1925f95d4633SHajimu UMEMOTO case IPV6_RECVTCLASS: 1926f95d4633SHajimu UMEMOTO /* cannot mix with RFC2292 XXX */ 192737d4fc1eSSean Bruno OPTSET2292_EXCLUSIVE(IN6P_TCLASS); 1928f95d4633SHajimu UMEMOTO break; 1929f95d4633SHajimu UMEMOTO case IPV6_AUTOFLOWLABEL: 1930f95d4633SHajimu UMEMOTO OPTSET(IN6P_AUTOFLOWLABEL); 1931f95d4633SHajimu UMEMOTO break; 1932f95d4633SHajimu UMEMOTO 1933dce33a45SErmal Luçi case IPV6_ORIGDSTADDR: 1934dce33a45SErmal Luçi OPTSET2(INP_ORIGDSTADDR, optval); 1935dce33a45SErmal Luçi break; 1936f44270e7SPawel Jakub Dawidek case IPV6_BINDANY: 1937f44270e7SPawel Jakub Dawidek OPTSET(INP_BINDANY); 1938f44270e7SPawel Jakub Dawidek break; 1939c7c0d948SAdrian Chadd 1940c7c0d948SAdrian Chadd case IPV6_BINDMULTI: 1941c7c0d948SAdrian Chadd OPTSET2(INP_BINDMULTI, optval); 1942c7c0d948SAdrian Chadd break; 1943c7c0d948SAdrian Chadd #ifdef RSS 1944c7c0d948SAdrian Chadd case IPV6_RSS_LISTEN_BUCKET: 1945c7c0d948SAdrian Chadd if ((optval >= 0) && 1946c7c0d948SAdrian Chadd (optval < rss_getnumbuckets())) { 19470ecd976eSBjoern A. Zeeb INP_WLOCK(inp); 19480ecd976eSBjoern A. Zeeb inp->inp_rss_listen_bucket = optval; 194937d4fc1eSSean Bruno OPTSET2_N(INP_RSS_BUCKET_SET, 1); 19500ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 1951c7c0d948SAdrian Chadd } else { 1952c7c0d948SAdrian Chadd error = EINVAL; 1953c7c0d948SAdrian Chadd } 1954c7c0d948SAdrian Chadd break; 1955c7c0d948SAdrian Chadd #endif 1956868aabb4SRichard Scheffenegger case IPV6_VLAN_PCP: 1957868aabb4SRichard Scheffenegger if ((optval >= -1) && (optval <= 1958868aabb4SRichard Scheffenegger (INP_2PCP_MASK >> INP_2PCP_SHIFT))) { 1959868aabb4SRichard Scheffenegger if (optval == -1) { 1960868aabb4SRichard Scheffenegger INP_WLOCK(inp); 1961868aabb4SRichard Scheffenegger inp->inp_flags2 &= 1962868aabb4SRichard Scheffenegger ~(INP_2PCP_SET | 1963868aabb4SRichard Scheffenegger INP_2PCP_MASK); 1964868aabb4SRichard Scheffenegger INP_WUNLOCK(inp); 1965868aabb4SRichard Scheffenegger } else { 1966868aabb4SRichard Scheffenegger INP_WLOCK(inp); 1967868aabb4SRichard Scheffenegger inp->inp_flags2 |= 1968868aabb4SRichard Scheffenegger INP_2PCP_SET; 1969868aabb4SRichard Scheffenegger inp->inp_flags2 &= 1970868aabb4SRichard Scheffenegger ~INP_2PCP_MASK; 1971868aabb4SRichard Scheffenegger inp->inp_flags2 |= 1972868aabb4SRichard Scheffenegger optval << 1973868aabb4SRichard Scheffenegger INP_2PCP_SHIFT; 1974868aabb4SRichard Scheffenegger INP_WUNLOCK(inp); 1975868aabb4SRichard Scheffenegger } 1976868aabb4SRichard Scheffenegger } else 1977868aabb4SRichard Scheffenegger error = EINVAL; 1978868aabb4SRichard Scheffenegger break; 197982cd038dSYoshinobu Inoue } 198033841545SHajimu UMEMOTO break; 198133841545SHajimu UMEMOTO 1982f95d4633SHajimu UMEMOTO case IPV6_TCLASS: 1983f95d4633SHajimu UMEMOTO case IPV6_DONTFRAG: 1984f95d4633SHajimu UMEMOTO case IPV6_USE_MIN_MTU: 1985f95d4633SHajimu UMEMOTO case IPV6_PREFER_TEMPADDR: 1986f95d4633SHajimu UMEMOTO if (optlen != sizeof(optval)) { 1987f95d4633SHajimu UMEMOTO error = EINVAL; 1988f95d4633SHajimu UMEMOTO break; 1989f95d4633SHajimu UMEMOTO } 1990f95d4633SHajimu UMEMOTO error = sooptcopyin(sopt, &optval, 1991f95d4633SHajimu UMEMOTO sizeof optval, sizeof optval); 1992f95d4633SHajimu UMEMOTO if (error) 1993f95d4633SHajimu UMEMOTO break; 1994f95d4633SHajimu UMEMOTO { 1995f95d4633SHajimu UMEMOTO struct ip6_pktopts **optp; 19960ecd976eSBjoern A. Zeeb INP_WLOCK(inp); 19970ecd976eSBjoern A. Zeeb if (inp->inp_flags & (INP_TIMEWAIT | INP_DROPPED)) { 19980ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 199956713d16SMatt Macy return (ECONNRESET); 200056713d16SMatt Macy } 20010ecd976eSBjoern A. Zeeb optp = &inp->in6p_outputopts; 2002f95d4633SHajimu UMEMOTO error = ip6_pcbopt(optname, 200379ba3952SBjoern A. Zeeb (u_char *)&optval, sizeof(optval), 200479ba3952SBjoern A. Zeeb optp, (td != NULL) ? td->td_ucred : 200579ba3952SBjoern A. Zeeb NULL, uproto); 20060ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 2007f95d4633SHajimu UMEMOTO break; 2008f95d4633SHajimu UMEMOTO } 2009f95d4633SHajimu UMEMOTO 2010f95d4633SHajimu UMEMOTO case IPV6_2292PKTINFO: 2011f95d4633SHajimu UMEMOTO case IPV6_2292HOPLIMIT: 2012f95d4633SHajimu UMEMOTO case IPV6_2292HOPOPTS: 2013f95d4633SHajimu UMEMOTO case IPV6_2292DSTOPTS: 2014f95d4633SHajimu UMEMOTO case IPV6_2292RTHDR: 201533841545SHajimu UMEMOTO /* RFC 2292 */ 201633841545SHajimu UMEMOTO if (optlen != sizeof(int)) { 201733841545SHajimu UMEMOTO error = EINVAL; 201833841545SHajimu UMEMOTO break; 201933841545SHajimu UMEMOTO } 202033841545SHajimu UMEMOTO error = sooptcopyin(sopt, &optval, 202133841545SHajimu UMEMOTO sizeof optval, sizeof optval); 202233841545SHajimu UMEMOTO if (error) 202333841545SHajimu UMEMOTO break; 202433841545SHajimu UMEMOTO switch (optname) { 2025f95d4633SHajimu UMEMOTO case IPV6_2292PKTINFO: 2026f95d4633SHajimu UMEMOTO OPTSET2292(IN6P_PKTINFO); 202733841545SHajimu UMEMOTO break; 2028f95d4633SHajimu UMEMOTO case IPV6_2292HOPLIMIT: 2029f95d4633SHajimu UMEMOTO OPTSET2292(IN6P_HOPLIMIT); 203033841545SHajimu UMEMOTO break; 2031f95d4633SHajimu UMEMOTO case IPV6_2292HOPOPTS: 203233841545SHajimu UMEMOTO /* 203333841545SHajimu UMEMOTO * Check super-user privilege. 203433841545SHajimu UMEMOTO * See comments for IPV6_RECVHOPOPTS. 203533841545SHajimu UMEMOTO */ 203679ba3952SBjoern A. Zeeb if (td != NULL) { 203779ba3952SBjoern A. Zeeb error = priv_check(td, 203879ba3952SBjoern A. Zeeb PRIV_NETINET_SETHDROPTS); 203979ba3952SBjoern A. Zeeb if (error) 204079ba3952SBjoern A. Zeeb return (error); 204179ba3952SBjoern A. Zeeb } 2042f95d4633SHajimu UMEMOTO OPTSET2292(IN6P_HOPOPTS); 204333841545SHajimu UMEMOTO break; 2044f95d4633SHajimu UMEMOTO case IPV6_2292DSTOPTS: 204579ba3952SBjoern A. Zeeb if (td != NULL) { 204679ba3952SBjoern A. Zeeb error = priv_check(td, 204779ba3952SBjoern A. Zeeb PRIV_NETINET_SETHDROPTS); 204879ba3952SBjoern A. Zeeb if (error) 204979ba3952SBjoern A. Zeeb return (error); 205079ba3952SBjoern A. Zeeb } 2051f95d4633SHajimu UMEMOTO OPTSET2292(IN6P_DSTOPTS|IN6P_RTHDRDSTOPTS); /* XXX */ 205233841545SHajimu UMEMOTO break; 2053f95d4633SHajimu UMEMOTO case IPV6_2292RTHDR: 2054f95d4633SHajimu UMEMOTO OPTSET2292(IN6P_RTHDR); 205533841545SHajimu UMEMOTO break; 205682cd038dSYoshinobu Inoue } 205782cd038dSYoshinobu Inoue break; 2058f95d4633SHajimu UMEMOTO case IPV6_PKTINFO: 2059f95d4633SHajimu UMEMOTO case IPV6_HOPOPTS: 2060f95d4633SHajimu UMEMOTO case IPV6_RTHDR: 2061f95d4633SHajimu UMEMOTO case IPV6_DSTOPTS: 2062f95d4633SHajimu UMEMOTO case IPV6_RTHDRDSTOPTS: 2063f95d4633SHajimu UMEMOTO case IPV6_NEXTHOP: 2064f95d4633SHajimu UMEMOTO { 206518b35df8SHajimu UMEMOTO /* new advanced API (RFC3542) */ 2066f95d4633SHajimu UMEMOTO u_char *optbuf; 2067e770771aSHajimu UMEMOTO u_char optbuf_storage[MCLBYTES]; 2068f95d4633SHajimu UMEMOTO int optlen; 2069f95d4633SHajimu UMEMOTO struct ip6_pktopts **optp; 2070f95d4633SHajimu UMEMOTO 207172bfa0bfSSean Bruno /* cannot mix with RFC2292 */ 207272bfa0bfSSean Bruno if (OPTBIT(IN6P_RFC2292)) { 207372bfa0bfSSean Bruno error = EINVAL; 207472bfa0bfSSean Bruno break; 207572bfa0bfSSean Bruno } 207672bfa0bfSSean Bruno 2077e770771aSHajimu UMEMOTO /* 2078e770771aSHajimu UMEMOTO * We only ensure valsize is not too large 2079e770771aSHajimu UMEMOTO * here. Further validation will be done 2080e770771aSHajimu UMEMOTO * later. 2081e770771aSHajimu UMEMOTO */ 2082e770771aSHajimu UMEMOTO error = sooptcopyin(sopt, optbuf_storage, 2083e770771aSHajimu UMEMOTO sizeof(optbuf_storage), 0); 2084a5d1aae3SHajimu UMEMOTO if (error) 2085a5d1aae3SHajimu UMEMOTO break; 2086f95d4633SHajimu UMEMOTO optlen = sopt->sopt_valsize; 2087e770771aSHajimu UMEMOTO optbuf = optbuf_storage; 20880ecd976eSBjoern A. Zeeb INP_WLOCK(inp); 20890ecd976eSBjoern A. Zeeb if (inp->inp_flags & (INP_TIMEWAIT | INP_DROPPED)) { 20900ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 209156713d16SMatt Macy return (ECONNRESET); 209256713d16SMatt Macy } 20930ecd976eSBjoern A. Zeeb optp = &inp->in6p_outputopts; 209479ba3952SBjoern A. Zeeb error = ip6_pcbopt(optname, optbuf, optlen, 209579ba3952SBjoern A. Zeeb optp, (td != NULL) ? td->td_ucred : NULL, 209679ba3952SBjoern A. Zeeb uproto); 20970ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 2098f95d4633SHajimu UMEMOTO break; 2099f95d4633SHajimu UMEMOTO } 210082cd038dSYoshinobu Inoue #undef OPTSET 210182cd038dSYoshinobu Inoue 210282cd038dSYoshinobu Inoue case IPV6_MULTICAST_IF: 210382cd038dSYoshinobu Inoue case IPV6_MULTICAST_HOPS: 210482cd038dSYoshinobu Inoue case IPV6_MULTICAST_LOOP: 210582cd038dSYoshinobu Inoue case IPV6_JOIN_GROUP: 210682cd038dSYoshinobu Inoue case IPV6_LEAVE_GROUP: 210733cde130SBruce M Simpson case IPV6_MSFILTER: 210833cde130SBruce M Simpson case MCAST_BLOCK_SOURCE: 210933cde130SBruce M Simpson case MCAST_UNBLOCK_SOURCE: 211033cde130SBruce M Simpson case MCAST_JOIN_GROUP: 211133cde130SBruce M Simpson case MCAST_LEAVE_GROUP: 211233cde130SBruce M Simpson case MCAST_JOIN_SOURCE_GROUP: 211333cde130SBruce M Simpson case MCAST_LEAVE_SOURCE_GROUP: 21140ecd976eSBjoern A. Zeeb error = ip6_setmoptions(inp, sopt); 211582cd038dSYoshinobu Inoue break; 211682cd038dSYoshinobu Inoue 211782cd038dSYoshinobu Inoue case IPV6_PORTRANGE: 2118686cdd19SJun-ichiro itojun Hagino error = sooptcopyin(sopt, &optval, 2119686cdd19SJun-ichiro itojun Hagino sizeof optval, sizeof optval); 212082cd038dSYoshinobu Inoue if (error) 212182cd038dSYoshinobu Inoue break; 212282cd038dSYoshinobu Inoue 21230ecd976eSBjoern A. Zeeb INP_WLOCK(inp); 212482cd038dSYoshinobu Inoue switch (optval) { 212582cd038dSYoshinobu Inoue case IPV6_PORTRANGE_DEFAULT: 21260ecd976eSBjoern A. Zeeb inp->inp_flags &= ~(INP_LOWPORT); 21270ecd976eSBjoern A. Zeeb inp->inp_flags &= ~(INP_HIGHPORT); 212882cd038dSYoshinobu Inoue break; 212982cd038dSYoshinobu Inoue 213082cd038dSYoshinobu Inoue case IPV6_PORTRANGE_HIGH: 21310ecd976eSBjoern A. Zeeb inp->inp_flags &= ~(INP_LOWPORT); 21320ecd976eSBjoern A. Zeeb inp->inp_flags |= INP_HIGHPORT; 213382cd038dSYoshinobu Inoue break; 213482cd038dSYoshinobu Inoue 213582cd038dSYoshinobu Inoue case IPV6_PORTRANGE_LOW: 21360ecd976eSBjoern A. Zeeb inp->inp_flags &= ~(INP_HIGHPORT); 21370ecd976eSBjoern A. Zeeb inp->inp_flags |= INP_LOWPORT; 213882cd038dSYoshinobu Inoue break; 213982cd038dSYoshinobu Inoue 214082cd038dSYoshinobu Inoue default: 214182cd038dSYoshinobu Inoue error = EINVAL; 214282cd038dSYoshinobu Inoue break; 214382cd038dSYoshinobu Inoue } 21440ecd976eSBjoern A. Zeeb INP_WUNLOCK(inp); 214582cd038dSYoshinobu Inoue break; 214682cd038dSYoshinobu Inoue 2147fcf59617SAndrey V. Elsukov #if defined(IPSEC) || defined(IPSEC_SUPPORT) 214882cd038dSYoshinobu Inoue case IPV6_IPSEC_POLICY: 2149fcf59617SAndrey V. Elsukov if (IPSEC_ENABLED(ipv6)) { 21500ecd976eSBjoern A. Zeeb error = IPSEC_PCBCTL(ipv6, inp, sopt); 215182cd038dSYoshinobu Inoue break; 2152c26fe973SBjoern A. Zeeb } 2153fcf59617SAndrey V. Elsukov /* FALLTHROUGH */ 2154b2630c29SGeorge V. Neville-Neil #endif /* IPSEC */ 215582cd038dSYoshinobu Inoue 215682cd038dSYoshinobu Inoue default: 215782cd038dSYoshinobu Inoue error = ENOPROTOOPT; 215882cd038dSYoshinobu Inoue break; 215982cd038dSYoshinobu Inoue } 216082cd038dSYoshinobu Inoue break; 216182cd038dSYoshinobu Inoue 216282cd038dSYoshinobu Inoue case SOPT_GET: 216382cd038dSYoshinobu Inoue switch (optname) { 2164f95d4633SHajimu UMEMOTO case IPV6_2292PKTOPTIONS: 2165f95d4633SHajimu UMEMOTO #ifdef IPV6_PKTOPTIONS 216682cd038dSYoshinobu Inoue case IPV6_PKTOPTIONS: 2167f95d4633SHajimu UMEMOTO #endif 2168f95d4633SHajimu UMEMOTO /* 2169f95d4633SHajimu UMEMOTO * RFC3542 (effectively) deprecated the 2170f95d4633SHajimu UMEMOTO * semantics of the 2292-style pktoptions. 2171f95d4633SHajimu UMEMOTO * Since it was not reliable in nature (i.e., 2172f95d4633SHajimu UMEMOTO * applications had to expect the lack of some 2173f95d4633SHajimu UMEMOTO * information after all), it would make sense 2174f95d4633SHajimu UMEMOTO * to simplify this part by always returning 2175f95d4633SHajimu UMEMOTO * empty data. 2176f95d4633SHajimu UMEMOTO */ 217782cd038dSYoshinobu Inoue sopt->sopt_valsize = 0; 217882cd038dSYoshinobu Inoue break; 217982cd038dSYoshinobu Inoue 2180f95d4633SHajimu UMEMOTO case IPV6_RECVHOPOPTS: 2181f95d4633SHajimu UMEMOTO case IPV6_RECVDSTOPTS: 2182f95d4633SHajimu UMEMOTO case IPV6_RECVRTHDRDSTOPTS: 218382cd038dSYoshinobu Inoue case IPV6_UNICAST_HOPS: 2184f95d4633SHajimu UMEMOTO case IPV6_RECVPKTINFO: 2185f95d4633SHajimu UMEMOTO case IPV6_RECVHOPLIMIT: 2186f95d4633SHajimu UMEMOTO case IPV6_RECVRTHDR: 2187f95d4633SHajimu UMEMOTO case IPV6_RECVPATHMTU: 218833841545SHajimu UMEMOTO 218933841545SHajimu UMEMOTO case IPV6_V6ONLY: 2190fa310a7eSYoshinobu Inoue case IPV6_PORTRANGE: 2191f95d4633SHajimu UMEMOTO case IPV6_RECVTCLASS: 2192f95d4633SHajimu UMEMOTO case IPV6_AUTOFLOWLABEL: 21935f6bf451SAttilio Rao case IPV6_BINDANY: 2194c7c0d948SAdrian Chadd case IPV6_FLOWID: 2195c7c0d948SAdrian Chadd case IPV6_FLOWTYPE: 219668bb8d62SAdrian Chadd case IPV6_RECVFLOWID: 2197c7c0d948SAdrian Chadd #ifdef RSS 2198c7c0d948SAdrian Chadd case IPV6_RSSBUCKETID: 219968bb8d62SAdrian Chadd case IPV6_RECVRSSBUCKETID: 2200c7c0d948SAdrian Chadd #endif 2201912568c8SJonathan T. Looney case IPV6_BINDMULTI: 2202868aabb4SRichard Scheffenegger case IPV6_VLAN_PCP: 220382cd038dSYoshinobu Inoue switch (optname) { 2204f95d4633SHajimu UMEMOTO case IPV6_RECVHOPOPTS: 2205f95d4633SHajimu UMEMOTO optval = OPTBIT(IN6P_HOPOPTS); 2206f95d4633SHajimu UMEMOTO break; 2207f95d4633SHajimu UMEMOTO 2208f95d4633SHajimu UMEMOTO case IPV6_RECVDSTOPTS: 2209f95d4633SHajimu UMEMOTO optval = OPTBIT(IN6P_DSTOPTS); 2210f95d4633SHajimu UMEMOTO break; 2211f95d4633SHajimu UMEMOTO 2212f95d4633SHajimu UMEMOTO case IPV6_RECVRTHDRDSTOPTS: 2213f95d4633SHajimu UMEMOTO optval = OPTBIT(IN6P_RTHDRDSTOPTS); 2214f95d4633SHajimu UMEMOTO break; 2215f95d4633SHajimu UMEMOTO 221682cd038dSYoshinobu Inoue case IPV6_UNICAST_HOPS: 22170ecd976eSBjoern A. Zeeb optval = inp->in6p_hops; 221882cd038dSYoshinobu Inoue break; 221982cd038dSYoshinobu Inoue 2220f95d4633SHajimu UMEMOTO case IPV6_RECVPKTINFO: 2221f95d4633SHajimu UMEMOTO optval = OPTBIT(IN6P_PKTINFO); 2222f95d4633SHajimu UMEMOTO break; 2223f95d4633SHajimu UMEMOTO 2224f95d4633SHajimu UMEMOTO case IPV6_RECVHOPLIMIT: 2225f95d4633SHajimu UMEMOTO optval = OPTBIT(IN6P_HOPLIMIT); 2226f95d4633SHajimu UMEMOTO break; 2227f95d4633SHajimu UMEMOTO 2228f95d4633SHajimu UMEMOTO case IPV6_RECVRTHDR: 2229f95d4633SHajimu UMEMOTO optval = OPTBIT(IN6P_RTHDR); 2230f95d4633SHajimu UMEMOTO break; 2231f95d4633SHajimu UMEMOTO 2232f95d4633SHajimu UMEMOTO case IPV6_RECVPATHMTU: 2233f95d4633SHajimu UMEMOTO optval = OPTBIT(IN6P_MTU); 223482cd038dSYoshinobu Inoue break; 223582cd038dSYoshinobu Inoue 223633841545SHajimu UMEMOTO case IPV6_V6ONLY: 2237854d3b19SHajimu UMEMOTO optval = OPTBIT(IN6P_IPV6_V6ONLY); 223882cd038dSYoshinobu Inoue break; 223982cd038dSYoshinobu Inoue 224082cd038dSYoshinobu Inoue case IPV6_PORTRANGE: 224182cd038dSYoshinobu Inoue { 224282cd038dSYoshinobu Inoue int flags; 22430ecd976eSBjoern A. Zeeb flags = inp->inp_flags; 224497590249SBjoern A. Zeeb if (flags & INP_HIGHPORT) 224582cd038dSYoshinobu Inoue optval = IPV6_PORTRANGE_HIGH; 224697590249SBjoern A. Zeeb else if (flags & INP_LOWPORT) 224782cd038dSYoshinobu Inoue optval = IPV6_PORTRANGE_LOW; 224882cd038dSYoshinobu Inoue else 224982cd038dSYoshinobu Inoue optval = 0; 225082cd038dSYoshinobu Inoue break; 225182cd038dSYoshinobu Inoue } 2252f95d4633SHajimu UMEMOTO case IPV6_RECVTCLASS: 2253f95d4633SHajimu UMEMOTO optval = OPTBIT(IN6P_TCLASS); 2254f95d4633SHajimu UMEMOTO break; 2255f95d4633SHajimu UMEMOTO 2256f95d4633SHajimu UMEMOTO case IPV6_AUTOFLOWLABEL: 2257f95d4633SHajimu UMEMOTO optval = OPTBIT(IN6P_AUTOFLOWLABEL); 2258f95d4633SHajimu UMEMOTO break; 2259f44270e7SPawel Jakub Dawidek 2260dce33a45SErmal Luçi case IPV6_ORIGDSTADDR: 2261dce33a45SErmal Luçi optval = OPTBIT2(INP_ORIGDSTADDR); 2262dce33a45SErmal Luçi break; 2263dce33a45SErmal Luçi 2264f44270e7SPawel Jakub Dawidek case IPV6_BINDANY: 2265f44270e7SPawel Jakub Dawidek optval = OPTBIT(INP_BINDANY); 2266f44270e7SPawel Jakub Dawidek break; 2267c7c0d948SAdrian Chadd 2268c7c0d948SAdrian Chadd case IPV6_FLOWID: 22690ecd976eSBjoern A. Zeeb optval = inp->inp_flowid; 2270c7c0d948SAdrian Chadd break; 2271c7c0d948SAdrian Chadd 2272c7c0d948SAdrian Chadd case IPV6_FLOWTYPE: 22730ecd976eSBjoern A. Zeeb optval = inp->inp_flowtype; 2274c7c0d948SAdrian Chadd break; 227568bb8d62SAdrian Chadd 227668bb8d62SAdrian Chadd case IPV6_RECVFLOWID: 227768bb8d62SAdrian Chadd optval = OPTBIT2(INP_RECVFLOWID); 227868bb8d62SAdrian Chadd break; 2279c7c0d948SAdrian Chadd #ifdef RSS 2280c7c0d948SAdrian Chadd case IPV6_RSSBUCKETID: 2281c7c0d948SAdrian Chadd retval = 22820ecd976eSBjoern A. Zeeb rss_hash2bucket(inp->inp_flowid, 22830ecd976eSBjoern A. Zeeb inp->inp_flowtype, 2284c7c0d948SAdrian Chadd &rss_bucket); 2285c7c0d948SAdrian Chadd if (retval == 0) 2286c7c0d948SAdrian Chadd optval = rss_bucket; 2287c7c0d948SAdrian Chadd else 2288c7c0d948SAdrian Chadd error = EINVAL; 2289c7c0d948SAdrian Chadd break; 229068bb8d62SAdrian Chadd 229168bb8d62SAdrian Chadd case IPV6_RECVRSSBUCKETID: 229268bb8d62SAdrian Chadd optval = OPTBIT2(INP_RECVRSSBUCKETID); 229368bb8d62SAdrian Chadd break; 2294c7c0d948SAdrian Chadd #endif 2295c7c0d948SAdrian Chadd 2296c7c0d948SAdrian Chadd case IPV6_BINDMULTI: 2297c7c0d948SAdrian Chadd optval = OPTBIT2(INP_BINDMULTI); 2298c7c0d948SAdrian Chadd break; 2299868aabb4SRichard Scheffenegger 2300868aabb4SRichard Scheffenegger case IPV6_VLAN_PCP: 2301868aabb4SRichard Scheffenegger if (OPTBIT2(INP_2PCP_SET)) { 2302868aabb4SRichard Scheffenegger optval = (inp->inp_flags2 & 2303868aabb4SRichard Scheffenegger INP_2PCP_MASK) >> 2304868aabb4SRichard Scheffenegger INP_2PCP_SHIFT; 2305868aabb4SRichard Scheffenegger } else { 2306868aabb4SRichard Scheffenegger optval = -1; 230782cd038dSYoshinobu Inoue } 2308868aabb4SRichard Scheffenegger break; 2309868aabb4SRichard Scheffenegger } 2310868aabb4SRichard Scheffenegger 2311f95d4633SHajimu UMEMOTO if (error) 2312f95d4633SHajimu UMEMOTO break; 231382cd038dSYoshinobu Inoue error = sooptcopyout(sopt, &optval, 231482cd038dSYoshinobu Inoue sizeof optval); 231582cd038dSYoshinobu Inoue break; 231682cd038dSYoshinobu Inoue 2317f95d4633SHajimu UMEMOTO case IPV6_PATHMTU: 2318f95d4633SHajimu UMEMOTO { 2319f95d4633SHajimu UMEMOTO u_long pmtu = 0; 2320f95d4633SHajimu UMEMOTO struct ip6_mtuinfo mtuinfo; 23215cbeca44SSean Bruno struct in6_addr addr; 2322f95d4633SHajimu UMEMOTO 2323f95d4633SHajimu UMEMOTO if (!(so->so_state & SS_ISCONNECTED)) 2324f95d4633SHajimu UMEMOTO return (ENOTCONN); 2325f95d4633SHajimu UMEMOTO /* 2326f95d4633SHajimu UMEMOTO * XXX: we dot not consider the case of source 2327f95d4633SHajimu UMEMOTO * routing, or optional information to specify 2328f95d4633SHajimu UMEMOTO * the outgoing interface. 23290ecd976eSBjoern A. Zeeb * Copy faddr out of inp to avoid holding lock 23305cbeca44SSean Bruno * on inp during route lookup. 2331f95d4633SHajimu UMEMOTO */ 23320ecd976eSBjoern A. Zeeb INP_RLOCK(inp); 23330ecd976eSBjoern A. Zeeb bcopy(&inp->in6p_faddr, &addr, sizeof(addr)); 23340ecd976eSBjoern A. Zeeb INP_RUNLOCK(inp); 23350d4df029SAlexander V. Chernikov error = ip6_getpmtu_ctl(so->so_fibnum, 23365cbeca44SSean Bruno &addr, &pmtu); 2337f95d4633SHajimu UMEMOTO if (error) 2338f95d4633SHajimu UMEMOTO break; 2339f95d4633SHajimu UMEMOTO if (pmtu > IPV6_MAXPACKET) 2340f95d4633SHajimu UMEMOTO pmtu = IPV6_MAXPACKET; 2341f95d4633SHajimu UMEMOTO 2342f95d4633SHajimu UMEMOTO bzero(&mtuinfo, sizeof(mtuinfo)); 2343f95d4633SHajimu UMEMOTO mtuinfo.ip6m_mtu = (u_int32_t)pmtu; 2344f95d4633SHajimu UMEMOTO optdata = (void *)&mtuinfo; 2345f95d4633SHajimu UMEMOTO optdatalen = sizeof(mtuinfo); 2346f95d4633SHajimu UMEMOTO error = sooptcopyout(sopt, optdata, 2347f95d4633SHajimu UMEMOTO optdatalen); 2348f95d4633SHajimu UMEMOTO break; 2349f95d4633SHajimu UMEMOTO } 2350f95d4633SHajimu UMEMOTO 2351f95d4633SHajimu UMEMOTO case IPV6_2292PKTINFO: 2352f95d4633SHajimu UMEMOTO case IPV6_2292HOPLIMIT: 2353f95d4633SHajimu UMEMOTO case IPV6_2292HOPOPTS: 2354f95d4633SHajimu UMEMOTO case IPV6_2292RTHDR: 2355f95d4633SHajimu UMEMOTO case IPV6_2292DSTOPTS: 235633841545SHajimu UMEMOTO switch (optname) { 2357f95d4633SHajimu UMEMOTO case IPV6_2292PKTINFO: 235833841545SHajimu UMEMOTO optval = OPTBIT(IN6P_PKTINFO); 235933841545SHajimu UMEMOTO break; 2360f95d4633SHajimu UMEMOTO case IPV6_2292HOPLIMIT: 236133841545SHajimu UMEMOTO optval = OPTBIT(IN6P_HOPLIMIT); 236233841545SHajimu UMEMOTO break; 2363f95d4633SHajimu UMEMOTO case IPV6_2292HOPOPTS: 236433841545SHajimu UMEMOTO optval = OPTBIT(IN6P_HOPOPTS); 236533841545SHajimu UMEMOTO break; 2366f95d4633SHajimu UMEMOTO case IPV6_2292RTHDR: 236733841545SHajimu UMEMOTO optval = OPTBIT(IN6P_RTHDR); 236833841545SHajimu UMEMOTO break; 2369f95d4633SHajimu UMEMOTO case IPV6_2292DSTOPTS: 237033841545SHajimu UMEMOTO optval = OPTBIT(IN6P_DSTOPTS|IN6P_RTHDRDSTOPTS); 237133841545SHajimu UMEMOTO break; 237233841545SHajimu UMEMOTO } 237333841545SHajimu UMEMOTO error = sooptcopyout(sopt, &optval, 237433841545SHajimu UMEMOTO sizeof optval); 237533841545SHajimu UMEMOTO break; 2376f95d4633SHajimu UMEMOTO case IPV6_PKTINFO: 2377f95d4633SHajimu UMEMOTO case IPV6_HOPOPTS: 2378f95d4633SHajimu UMEMOTO case IPV6_RTHDR: 2379f95d4633SHajimu UMEMOTO case IPV6_DSTOPTS: 2380f95d4633SHajimu UMEMOTO case IPV6_RTHDRDSTOPTS: 2381f95d4633SHajimu UMEMOTO case IPV6_NEXTHOP: 2382f95d4633SHajimu UMEMOTO case IPV6_TCLASS: 2383f95d4633SHajimu UMEMOTO case IPV6_DONTFRAG: 2384f95d4633SHajimu UMEMOTO case IPV6_USE_MIN_MTU: 2385f95d4633SHajimu UMEMOTO case IPV6_PREFER_TEMPADDR: 23860ecd976eSBjoern A. Zeeb error = ip6_getpcbopt(inp, optname, sopt); 2387f95d4633SHajimu UMEMOTO break; 238833841545SHajimu UMEMOTO 238982cd038dSYoshinobu Inoue case IPV6_MULTICAST_IF: 239082cd038dSYoshinobu Inoue case IPV6_MULTICAST_HOPS: 239182cd038dSYoshinobu Inoue case IPV6_MULTICAST_LOOP: 239233cde130SBruce M Simpson case IPV6_MSFILTER: 23930ecd976eSBjoern A. Zeeb error = ip6_getmoptions(inp, sopt); 239482cd038dSYoshinobu Inoue break; 239582cd038dSYoshinobu Inoue 2396fcf59617SAndrey V. Elsukov #if defined(IPSEC) || defined(IPSEC_SUPPORT) 239782cd038dSYoshinobu Inoue case IPV6_IPSEC_POLICY: 2398fcf59617SAndrey V. Elsukov if (IPSEC_ENABLED(ipv6)) { 23990ecd976eSBjoern A. Zeeb error = IPSEC_PCBCTL(ipv6, inp, sopt); 240082cd038dSYoshinobu Inoue break; 240182cd038dSYoshinobu Inoue } 2402fcf59617SAndrey V. Elsukov /* FALLTHROUGH */ 2403b2630c29SGeorge V. Neville-Neil #endif /* IPSEC */ 240482cd038dSYoshinobu Inoue default: 240582cd038dSYoshinobu Inoue error = ENOPROTOOPT; 240682cd038dSYoshinobu Inoue break; 240782cd038dSYoshinobu Inoue } 240882cd038dSYoshinobu Inoue break; 240982cd038dSYoshinobu Inoue } 241082cd038dSYoshinobu Inoue } 241182cd038dSYoshinobu Inoue return (error); 241282cd038dSYoshinobu Inoue } 241382cd038dSYoshinobu Inoue 241402b9a206SHajimu UMEMOTO int 24151272577eSXin LI ip6_raw_ctloutput(struct socket *so, struct sockopt *sopt) 241602b9a206SHajimu UMEMOTO { 241702b9a206SHajimu UMEMOTO int error = 0, optval, optlen; 241802b9a206SHajimu UMEMOTO const int icmp6off = offsetof(struct icmp6_hdr, icmp6_cksum); 24190ecd976eSBjoern A. Zeeb struct inpcb *inp = sotoinpcb(so); 242002b9a206SHajimu UMEMOTO int level, op, optname; 242102b9a206SHajimu UMEMOTO 242202b9a206SHajimu UMEMOTO level = sopt->sopt_level; 242302b9a206SHajimu UMEMOTO op = sopt->sopt_dir; 242402b9a206SHajimu UMEMOTO optname = sopt->sopt_name; 242502b9a206SHajimu UMEMOTO optlen = sopt->sopt_valsize; 242602b9a206SHajimu UMEMOTO 242702b9a206SHajimu UMEMOTO if (level != IPPROTO_IPV6) { 242802b9a206SHajimu UMEMOTO return (EINVAL); 242902b9a206SHajimu UMEMOTO } 243002b9a206SHajimu UMEMOTO 243102b9a206SHajimu UMEMOTO switch (optname) { 243202b9a206SHajimu UMEMOTO case IPV6_CHECKSUM: 243302b9a206SHajimu UMEMOTO /* 243402b9a206SHajimu UMEMOTO * For ICMPv6 sockets, no modification allowed for checksum 243502b9a206SHajimu UMEMOTO * offset, permit "no change" values to help existing apps. 243602b9a206SHajimu UMEMOTO * 243718b35df8SHajimu UMEMOTO * RFC3542 says: "An attempt to set IPV6_CHECKSUM 243802b9a206SHajimu UMEMOTO * for an ICMPv6 socket will fail." 243918b35df8SHajimu UMEMOTO * The current behavior does not meet RFC3542. 244002b9a206SHajimu UMEMOTO */ 244102b9a206SHajimu UMEMOTO switch (op) { 244202b9a206SHajimu UMEMOTO case SOPT_SET: 244302b9a206SHajimu UMEMOTO if (optlen != sizeof(int)) { 244402b9a206SHajimu UMEMOTO error = EINVAL; 244502b9a206SHajimu UMEMOTO break; 244602b9a206SHajimu UMEMOTO } 244702b9a206SHajimu UMEMOTO error = sooptcopyin(sopt, &optval, sizeof(optval), 244802b9a206SHajimu UMEMOTO sizeof(optval)); 244902b9a206SHajimu UMEMOTO if (error) 245002b9a206SHajimu UMEMOTO break; 24512f041b74SMichael Tuexen if (optval < -1 || (optval % 2) != 0) { 24522f041b74SMichael Tuexen /* 24532f041b74SMichael Tuexen * The API assumes non-negative even offset 24542f041b74SMichael Tuexen * values or -1 as a special value. 24552f041b74SMichael Tuexen */ 245602b9a206SHajimu UMEMOTO error = EINVAL; 245702b9a206SHajimu UMEMOTO } else if (so->so_proto->pr_protocol == 245802b9a206SHajimu UMEMOTO IPPROTO_ICMPV6) { 245902b9a206SHajimu UMEMOTO if (optval != icmp6off) 246002b9a206SHajimu UMEMOTO error = EINVAL; 246102b9a206SHajimu UMEMOTO } else 24620ecd976eSBjoern A. Zeeb inp->in6p_cksum = optval; 246302b9a206SHajimu UMEMOTO break; 246402b9a206SHajimu UMEMOTO 246502b9a206SHajimu UMEMOTO case SOPT_GET: 246602b9a206SHajimu UMEMOTO if (so->so_proto->pr_protocol == IPPROTO_ICMPV6) 246702b9a206SHajimu UMEMOTO optval = icmp6off; 246802b9a206SHajimu UMEMOTO else 24690ecd976eSBjoern A. Zeeb optval = inp->in6p_cksum; 247002b9a206SHajimu UMEMOTO 247102b9a206SHajimu UMEMOTO error = sooptcopyout(sopt, &optval, sizeof(optval)); 247202b9a206SHajimu UMEMOTO break; 247302b9a206SHajimu UMEMOTO 247402b9a206SHajimu UMEMOTO default: 247502b9a206SHajimu UMEMOTO error = EINVAL; 247602b9a206SHajimu UMEMOTO break; 247702b9a206SHajimu UMEMOTO } 247802b9a206SHajimu UMEMOTO break; 247902b9a206SHajimu UMEMOTO 248002b9a206SHajimu UMEMOTO default: 248102b9a206SHajimu UMEMOTO error = ENOPROTOOPT; 248202b9a206SHajimu UMEMOTO break; 248302b9a206SHajimu UMEMOTO } 248402b9a206SHajimu UMEMOTO 248502b9a206SHajimu UMEMOTO return (error); 248602b9a206SHajimu UMEMOTO } 248702b9a206SHajimu UMEMOTO 248882cd038dSYoshinobu Inoue /* 248933841545SHajimu UMEMOTO * Set up IP6 options in pcb for insertion in output packets or 249033841545SHajimu UMEMOTO * specifying behavior of outgoing packets. 249182cd038dSYoshinobu Inoue */ 249282cd038dSYoshinobu Inoue static int 24931272577eSXin LI ip6_pcbopts(struct ip6_pktopts **pktopt, struct mbuf *m, 24941272577eSXin LI struct socket *so, struct sockopt *sopt) 249582cd038dSYoshinobu Inoue { 249633841545SHajimu UMEMOTO struct ip6_pktopts *opt = *pktopt; 249782cd038dSYoshinobu Inoue int error = 0; 2498b40ce416SJulian Elischer struct thread *td = sopt->sopt_td; 2499*2290dfb4SRyan Stone struct epoch_tracker et; 250082cd038dSYoshinobu Inoue 250182cd038dSYoshinobu Inoue /* turn off any old options. */ 250282cd038dSYoshinobu Inoue if (opt) { 250333841545SHajimu UMEMOTO #ifdef DIAGNOSTIC 250433841545SHajimu UMEMOTO if (opt->ip6po_pktinfo || opt->ip6po_nexthop || 250533841545SHajimu UMEMOTO opt->ip6po_hbh || opt->ip6po_dest1 || opt->ip6po_dest2 || 250633841545SHajimu UMEMOTO opt->ip6po_rhinfo.ip6po_rhi_rthdr) 250733841545SHajimu UMEMOTO printf("ip6_pcbopts: all specified options are cleared.\n"); 250833841545SHajimu UMEMOTO #endif 2509f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, -1); 2510e02582d1SMark Johnston } else { 2511e02582d1SMark Johnston opt = malloc(sizeof(*opt), M_IP6OPT, M_NOWAIT); 2512e02582d1SMark Johnston if (opt == NULL) 2513e02582d1SMark Johnston return (ENOMEM); 2514e02582d1SMark Johnston } 251533841545SHajimu UMEMOTO *pktopt = NULL; 251682cd038dSYoshinobu Inoue 251782cd038dSYoshinobu Inoue if (!m || m->m_len == 0) { 251882cd038dSYoshinobu Inoue /* 251935f6695bSHajimu UMEMOTO * Only turning off any previous options, regardless of 252035f6695bSHajimu UMEMOTO * whether the opt is just created or given. 252182cd038dSYoshinobu Inoue */ 252282cd038dSYoshinobu Inoue free(opt, M_IP6OPT); 252382cd038dSYoshinobu Inoue return (0); 252482cd038dSYoshinobu Inoue } 252582cd038dSYoshinobu Inoue 252682cd038dSYoshinobu Inoue /* set options specified by user. */ 2527*2290dfb4SRyan Stone NET_EPOCH_ENTER(et); 252879ba3952SBjoern A. Zeeb if ((error = ip6_setpktopts(m, opt, NULL, (td != NULL) ? 252979ba3952SBjoern A. Zeeb td->td_ucred : NULL, so->so_proto->pr_protocol)) != 0) { 2530f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, -1); /* XXX: discard all options */ 253135f6695bSHajimu UMEMOTO free(opt, M_IP6OPT); 2532*2290dfb4SRyan Stone NET_EPOCH_EXIT(et); 253382cd038dSYoshinobu Inoue return (error); 253482cd038dSYoshinobu Inoue } 2535*2290dfb4SRyan Stone NET_EPOCH_EXIT(et); 253682cd038dSYoshinobu Inoue *pktopt = opt; 253782cd038dSYoshinobu Inoue return (0); 253882cd038dSYoshinobu Inoue } 253982cd038dSYoshinobu Inoue 254082cd038dSYoshinobu Inoue /* 254133841545SHajimu UMEMOTO * initialize ip6_pktopts. beware that there are non-zero default values in 254233841545SHajimu UMEMOTO * the struct. 254333841545SHajimu UMEMOTO */ 254433841545SHajimu UMEMOTO void 25451272577eSXin LI ip6_initpktopts(struct ip6_pktopts *opt) 254633841545SHajimu UMEMOTO { 254733841545SHajimu UMEMOTO 254833841545SHajimu UMEMOTO bzero(opt, sizeof(*opt)); 254933841545SHajimu UMEMOTO opt->ip6po_hlim = -1; /* -1 means default hop limit */ 2550f95d4633SHajimu UMEMOTO opt->ip6po_tclass = -1; /* -1 means default traffic class */ 2551f95d4633SHajimu UMEMOTO opt->ip6po_minmtu = IP6PO_MINMTU_MCASTONLY; 2552f95d4633SHajimu UMEMOTO opt->ip6po_prefer_tempaddr = IP6PO_TEMPADDR_SYSTEM; 2553f95d4633SHajimu UMEMOTO } 2554f95d4633SHajimu UMEMOTO 2555f95d4633SHajimu UMEMOTO static int 25561272577eSXin LI ip6_pcbopt(int optname, u_char *buf, int len, struct ip6_pktopts **pktopt, 255779ba3952SBjoern A. Zeeb struct ucred *cred, int uproto) 2558f95d4633SHajimu UMEMOTO { 2559f95d4633SHajimu UMEMOTO struct ip6_pktopts *opt; 2560f95d4633SHajimu UMEMOTO 2561f95d4633SHajimu UMEMOTO if (*pktopt == NULL) { 2562f95d4633SHajimu UMEMOTO *pktopt = malloc(sizeof(struct ip6_pktopts), M_IP6OPT, 256356713d16SMatt Macy M_NOWAIT); 256456713d16SMatt Macy if (*pktopt == NULL) 256556713d16SMatt Macy return (ENOBUFS); 2566d5e3406dSHajimu UMEMOTO ip6_initpktopts(*pktopt); 2567f95d4633SHajimu UMEMOTO } 2568f95d4633SHajimu UMEMOTO opt = *pktopt; 2569f95d4633SHajimu UMEMOTO 257079ba3952SBjoern A. Zeeb return (ip6_setpktopt(optname, buf, len, opt, cred, 1, 0, uproto)); 2571f95d4633SHajimu UMEMOTO } 2572f95d4633SHajimu UMEMOTO 257306b479a6SSean Bruno #define GET_PKTOPT_VAR(field, lenexpr) do { \ 257406b479a6SSean Bruno if (pktopt && pktopt->field) { \ 25750ecd976eSBjoern A. Zeeb INP_RUNLOCK(inp); \ 257606b479a6SSean Bruno optdata = malloc(sopt->sopt_valsize, M_TEMP, M_WAITOK); \ 257706b479a6SSean Bruno malloc_optdata = true; \ 25780ecd976eSBjoern A. Zeeb INP_RLOCK(inp); \ 25790ecd976eSBjoern A. Zeeb if (inp->inp_flags & (INP_TIMEWAIT | INP_DROPPED)) { \ 25800ecd976eSBjoern A. Zeeb INP_RUNLOCK(inp); \ 258106b479a6SSean Bruno free(optdata, M_TEMP); \ 258206b479a6SSean Bruno return (ECONNRESET); \ 258306b479a6SSean Bruno } \ 25840ecd976eSBjoern A. Zeeb pktopt = inp->in6p_outputopts; \ 258506b479a6SSean Bruno if (pktopt && pktopt->field) { \ 258606b479a6SSean Bruno optdatalen = min(lenexpr, sopt->sopt_valsize); \ 258706b479a6SSean Bruno bcopy(&pktopt->field, optdata, optdatalen); \ 258806b479a6SSean Bruno } else { \ 258906b479a6SSean Bruno free(optdata, M_TEMP); \ 259006b479a6SSean Bruno optdata = NULL; \ 259106b479a6SSean Bruno malloc_optdata = false; \ 259206b479a6SSean Bruno } \ 259306b479a6SSean Bruno } \ 259406b479a6SSean Bruno } while(0) 259506b479a6SSean Bruno 259606b479a6SSean Bruno #define GET_PKTOPT_EXT_HDR(field) GET_PKTOPT_VAR(field, \ 259706b479a6SSean Bruno (((struct ip6_ext *)pktopt->field)->ip6e_len + 1) << 3) 259806b479a6SSean Bruno 259906b479a6SSean Bruno #define GET_PKTOPT_SOCKADDR(field) GET_PKTOPT_VAR(field, \ 260006b479a6SSean Bruno pktopt->field->sa_len) 260106b479a6SSean Bruno 2602f95d4633SHajimu UMEMOTO static int 26030ecd976eSBjoern A. Zeeb ip6_getpcbopt(struct inpcb *inp, int optname, struct sockopt *sopt) 2604f95d4633SHajimu UMEMOTO { 2605f95d4633SHajimu UMEMOTO void *optdata = NULL; 260606b479a6SSean Bruno bool malloc_optdata = false; 2607f95d4633SHajimu UMEMOTO int optdatalen = 0; 2608f95d4633SHajimu UMEMOTO int error = 0; 2609f95d4633SHajimu UMEMOTO struct in6_pktinfo null_pktinfo; 2610f95d4633SHajimu UMEMOTO int deftclass = 0, on; 2611f95d4633SHajimu UMEMOTO int defminmtu = IP6PO_MINMTU_MCASTONLY; 2612f95d4633SHajimu UMEMOTO int defpreftemp = IP6PO_TEMPADDR_SYSTEM; 261306b479a6SSean Bruno struct ip6_pktopts *pktopt; 261406b479a6SSean Bruno 26150ecd976eSBjoern A. Zeeb INP_RLOCK(inp); 26160ecd976eSBjoern A. Zeeb pktopt = inp->in6p_outputopts; 2617f95d4633SHajimu UMEMOTO 2618f95d4633SHajimu UMEMOTO switch (optname) { 2619f95d4633SHajimu UMEMOTO case IPV6_PKTINFO: 2620cb207f93SAndrey V. Elsukov optdata = (void *)&null_pktinfo; 2621cb207f93SAndrey V. Elsukov if (pktopt && pktopt->ip6po_pktinfo) { 2622cb207f93SAndrey V. Elsukov bcopy(pktopt->ip6po_pktinfo, &null_pktinfo, 2623cb207f93SAndrey V. Elsukov sizeof(null_pktinfo)); 2624cb207f93SAndrey V. Elsukov in6_clearscope(&null_pktinfo.ipi6_addr); 2625cb207f93SAndrey V. Elsukov } else { 2626f95d4633SHajimu UMEMOTO /* XXX: we don't have to do this every time... */ 2627f95d4633SHajimu UMEMOTO bzero(&null_pktinfo, sizeof(null_pktinfo)); 2628f95d4633SHajimu UMEMOTO } 2629f95d4633SHajimu UMEMOTO optdatalen = sizeof(struct in6_pktinfo); 2630f95d4633SHajimu UMEMOTO break; 2631f95d4633SHajimu UMEMOTO case IPV6_TCLASS: 2632f95d4633SHajimu UMEMOTO if (pktopt && pktopt->ip6po_tclass >= 0) 263306b479a6SSean Bruno deftclass = pktopt->ip6po_tclass; 2634f95d4633SHajimu UMEMOTO optdata = (void *)&deftclass; 2635f95d4633SHajimu UMEMOTO optdatalen = sizeof(int); 2636f95d4633SHajimu UMEMOTO break; 2637f95d4633SHajimu UMEMOTO case IPV6_HOPOPTS: 263806b479a6SSean Bruno GET_PKTOPT_EXT_HDR(ip6po_hbh); 2639f95d4633SHajimu UMEMOTO break; 2640f95d4633SHajimu UMEMOTO case IPV6_RTHDR: 264106b479a6SSean Bruno GET_PKTOPT_EXT_HDR(ip6po_rthdr); 2642f95d4633SHajimu UMEMOTO break; 2643f95d4633SHajimu UMEMOTO case IPV6_RTHDRDSTOPTS: 264406b479a6SSean Bruno GET_PKTOPT_EXT_HDR(ip6po_dest1); 2645f95d4633SHajimu UMEMOTO break; 2646f95d4633SHajimu UMEMOTO case IPV6_DSTOPTS: 264706b479a6SSean Bruno GET_PKTOPT_EXT_HDR(ip6po_dest2); 2648f95d4633SHajimu UMEMOTO break; 2649f95d4633SHajimu UMEMOTO case IPV6_NEXTHOP: 265006b479a6SSean Bruno GET_PKTOPT_SOCKADDR(ip6po_nexthop); 2651f95d4633SHajimu UMEMOTO break; 2652f95d4633SHajimu UMEMOTO case IPV6_USE_MIN_MTU: 2653f95d4633SHajimu UMEMOTO if (pktopt) 265406b479a6SSean Bruno defminmtu = pktopt->ip6po_minmtu; 2655f95d4633SHajimu UMEMOTO optdata = (void *)&defminmtu; 2656f95d4633SHajimu UMEMOTO optdatalen = sizeof(int); 2657f95d4633SHajimu UMEMOTO break; 2658f95d4633SHajimu UMEMOTO case IPV6_DONTFRAG: 2659f95d4633SHajimu UMEMOTO if (pktopt && ((pktopt->ip6po_flags) & IP6PO_DONTFRAG)) 2660f95d4633SHajimu UMEMOTO on = 1; 2661f95d4633SHajimu UMEMOTO else 2662f95d4633SHajimu UMEMOTO on = 0; 2663f95d4633SHajimu UMEMOTO optdata = (void *)&on; 2664f95d4633SHajimu UMEMOTO optdatalen = sizeof(on); 2665f95d4633SHajimu UMEMOTO break; 2666f95d4633SHajimu UMEMOTO case IPV6_PREFER_TEMPADDR: 2667f95d4633SHajimu UMEMOTO if (pktopt) 266806b479a6SSean Bruno defpreftemp = pktopt->ip6po_prefer_tempaddr; 2669f95d4633SHajimu UMEMOTO optdata = (void *)&defpreftemp; 2670f95d4633SHajimu UMEMOTO optdatalen = sizeof(int); 2671f95d4633SHajimu UMEMOTO break; 2672f95d4633SHajimu UMEMOTO default: /* should not happen */ 2673f95d4633SHajimu UMEMOTO #ifdef DIAGNOSTIC 2674f95d4633SHajimu UMEMOTO panic("ip6_getpcbopt: unexpected option\n"); 2675f95d4633SHajimu UMEMOTO #endif 26760ecd976eSBjoern A. Zeeb INP_RUNLOCK(inp); 2677f95d4633SHajimu UMEMOTO return (ENOPROTOOPT); 2678f95d4633SHajimu UMEMOTO } 26790ecd976eSBjoern A. Zeeb INP_RUNLOCK(inp); 2680f95d4633SHajimu UMEMOTO 2681f95d4633SHajimu UMEMOTO error = sooptcopyout(sopt, optdata, optdatalen); 268206b479a6SSean Bruno if (malloc_optdata) 268306b479a6SSean Bruno free(optdata, M_TEMP); 2684f95d4633SHajimu UMEMOTO 2685f95d4633SHajimu UMEMOTO return (error); 268633841545SHajimu UMEMOTO } 268733841545SHajimu UMEMOTO 268833841545SHajimu UMEMOTO void 26891272577eSXin LI ip6_clearpktopts(struct ip6_pktopts *pktopt, int optname) 269033841545SHajimu UMEMOTO { 2691289b28bdSHajimu UMEMOTO if (pktopt == NULL) 2692289b28bdSHajimu UMEMOTO return; 2693289b28bdSHajimu UMEMOTO 2694f95d4633SHajimu UMEMOTO if (optname == -1 || optname == IPV6_PKTINFO) { 2695885adbfaSHajimu UMEMOTO if (pktopt->ip6po_pktinfo) 269633841545SHajimu UMEMOTO free(pktopt->ip6po_pktinfo, M_IP6OPT); 269733841545SHajimu UMEMOTO pktopt->ip6po_pktinfo = NULL; 269833841545SHajimu UMEMOTO } 2699f95d4633SHajimu UMEMOTO if (optname == -1 || optname == IPV6_HOPLIMIT) 270033841545SHajimu UMEMOTO pktopt->ip6po_hlim = -1; 2701f95d4633SHajimu UMEMOTO if (optname == -1 || optname == IPV6_TCLASS) 2702f95d4633SHajimu UMEMOTO pktopt->ip6po_tclass = -1; 2703f95d4633SHajimu UMEMOTO if (optname == -1 || optname == IPV6_NEXTHOP) { 2704983066f0SAlexander V. Chernikov if (pktopt->ip6po_nextroute.ro_nh) { 2705983066f0SAlexander V. Chernikov NH_FREE(pktopt->ip6po_nextroute.ro_nh); 2706983066f0SAlexander V. Chernikov pktopt->ip6po_nextroute.ro_nh = NULL; 2707f95d4633SHajimu UMEMOTO } 2708885adbfaSHajimu UMEMOTO if (pktopt->ip6po_nexthop) 270933841545SHajimu UMEMOTO free(pktopt->ip6po_nexthop, M_IP6OPT); 271033841545SHajimu UMEMOTO pktopt->ip6po_nexthop = NULL; 271133841545SHajimu UMEMOTO } 2712f95d4633SHajimu UMEMOTO if (optname == -1 || optname == IPV6_HOPOPTS) { 2713885adbfaSHajimu UMEMOTO if (pktopt->ip6po_hbh) 271433841545SHajimu UMEMOTO free(pktopt->ip6po_hbh, M_IP6OPT); 271533841545SHajimu UMEMOTO pktopt->ip6po_hbh = NULL; 271633841545SHajimu UMEMOTO } 2717f95d4633SHajimu UMEMOTO if (optname == -1 || optname == IPV6_RTHDRDSTOPTS) { 2718885adbfaSHajimu UMEMOTO if (pktopt->ip6po_dest1) 271933841545SHajimu UMEMOTO free(pktopt->ip6po_dest1, M_IP6OPT); 272033841545SHajimu UMEMOTO pktopt->ip6po_dest1 = NULL; 272133841545SHajimu UMEMOTO } 2722f95d4633SHajimu UMEMOTO if (optname == -1 || optname == IPV6_RTHDR) { 2723885adbfaSHajimu UMEMOTO if (pktopt->ip6po_rhinfo.ip6po_rhi_rthdr) 272433841545SHajimu UMEMOTO free(pktopt->ip6po_rhinfo.ip6po_rhi_rthdr, M_IP6OPT); 272533841545SHajimu UMEMOTO pktopt->ip6po_rhinfo.ip6po_rhi_rthdr = NULL; 2726983066f0SAlexander V. Chernikov if (pktopt->ip6po_route.ro_nh) { 2727983066f0SAlexander V. Chernikov NH_FREE(pktopt->ip6po_route.ro_nh); 2728983066f0SAlexander V. Chernikov pktopt->ip6po_route.ro_nh = NULL; 272933841545SHajimu UMEMOTO } 273033841545SHajimu UMEMOTO } 2731f95d4633SHajimu UMEMOTO if (optname == -1 || optname == IPV6_DSTOPTS) { 2732885adbfaSHajimu UMEMOTO if (pktopt->ip6po_dest2) 273333841545SHajimu UMEMOTO free(pktopt->ip6po_dest2, M_IP6OPT); 273433841545SHajimu UMEMOTO pktopt->ip6po_dest2 = NULL; 273533841545SHajimu UMEMOTO } 273633841545SHajimu UMEMOTO } 273733841545SHajimu UMEMOTO 273833841545SHajimu UMEMOTO #define PKTOPT_EXTHDRCPY(type) \ 273933841545SHajimu UMEMOTO do {\ 274033841545SHajimu UMEMOTO if (src->type) {\ 27417efe5d92SHajimu UMEMOTO int hlen = (((struct ip6_ext *)src->type)->ip6e_len + 1) << 3;\ 274233841545SHajimu UMEMOTO dst->type = malloc(hlen, M_IP6OPT, canwait);\ 27438b07e00eSJonathan T. Looney if (dst->type == NULL)\ 274433841545SHajimu UMEMOTO goto bad;\ 274533841545SHajimu UMEMOTO bcopy(src->type, dst->type, hlen);\ 274633841545SHajimu UMEMOTO }\ 27477efe5d92SHajimu UMEMOTO } while (/*CONSTCOND*/ 0) 274833841545SHajimu UMEMOTO 2749885adbfaSHajimu UMEMOTO static int 27501272577eSXin LI copypktopts(struct ip6_pktopts *dst, struct ip6_pktopts *src, int canwait) 275133841545SHajimu UMEMOTO { 2752885adbfaSHajimu UMEMOTO if (dst == NULL || src == NULL) { 275333841545SHajimu UMEMOTO printf("ip6_clearpktopts: invalid argument\n"); 2754885adbfaSHajimu UMEMOTO return (EINVAL); 275533841545SHajimu UMEMOTO } 275633841545SHajimu UMEMOTO 275733841545SHajimu UMEMOTO dst->ip6po_hlim = src->ip6po_hlim; 2758f95d4633SHajimu UMEMOTO dst->ip6po_tclass = src->ip6po_tclass; 2759f95d4633SHajimu UMEMOTO dst->ip6po_flags = src->ip6po_flags; 27606090ab8bSHiroki Sato dst->ip6po_minmtu = src->ip6po_minmtu; 27616090ab8bSHiroki Sato dst->ip6po_prefer_tempaddr = src->ip6po_prefer_tempaddr; 276233841545SHajimu UMEMOTO if (src->ip6po_pktinfo) { 276333841545SHajimu UMEMOTO dst->ip6po_pktinfo = malloc(sizeof(*dst->ip6po_pktinfo), 276433841545SHajimu UMEMOTO M_IP6OPT, canwait); 27652cb64cb2SGeorge V. Neville-Neil if (dst->ip6po_pktinfo == NULL) 276633841545SHajimu UMEMOTO goto bad; 276733841545SHajimu UMEMOTO *dst->ip6po_pktinfo = *src->ip6po_pktinfo; 276833841545SHajimu UMEMOTO } 276933841545SHajimu UMEMOTO if (src->ip6po_nexthop) { 277033841545SHajimu UMEMOTO dst->ip6po_nexthop = malloc(src->ip6po_nexthop->sa_len, 277133841545SHajimu UMEMOTO M_IP6OPT, canwait); 2772403cbcf5SGeorge V. Neville-Neil if (dst->ip6po_nexthop == NULL) 277333841545SHajimu UMEMOTO goto bad; 277433841545SHajimu UMEMOTO bcopy(src->ip6po_nexthop, dst->ip6po_nexthop, 277533841545SHajimu UMEMOTO src->ip6po_nexthop->sa_len); 277633841545SHajimu UMEMOTO } 277733841545SHajimu UMEMOTO PKTOPT_EXTHDRCPY(ip6po_hbh); 277833841545SHajimu UMEMOTO PKTOPT_EXTHDRCPY(ip6po_dest1); 277933841545SHajimu UMEMOTO PKTOPT_EXTHDRCPY(ip6po_dest2); 278033841545SHajimu UMEMOTO PKTOPT_EXTHDRCPY(ip6po_rthdr); /* not copy the cached route */ 2781885adbfaSHajimu UMEMOTO return (0); 278233841545SHajimu UMEMOTO 278333841545SHajimu UMEMOTO bad: 2784016fb9d9SMike Makonnen ip6_clearpktopts(dst, -1); 2785885adbfaSHajimu UMEMOTO return (ENOBUFS); 2786885adbfaSHajimu UMEMOTO } 2787885adbfaSHajimu UMEMOTO #undef PKTOPT_EXTHDRCPY 2788885adbfaSHajimu UMEMOTO 2789885adbfaSHajimu UMEMOTO struct ip6_pktopts * 27901272577eSXin LI ip6_copypktopts(struct ip6_pktopts *src, int canwait) 2791885adbfaSHajimu UMEMOTO { 2792885adbfaSHajimu UMEMOTO int error; 2793885adbfaSHajimu UMEMOTO struct ip6_pktopts *dst; 2794885adbfaSHajimu UMEMOTO 2795885adbfaSHajimu UMEMOTO dst = malloc(sizeof(*dst), M_IP6OPT, canwait); 27962cb64cb2SGeorge V. Neville-Neil if (dst == NULL) 2797885adbfaSHajimu UMEMOTO return (NULL); 2798885adbfaSHajimu UMEMOTO ip6_initpktopts(dst); 2799885adbfaSHajimu UMEMOTO 2800885adbfaSHajimu UMEMOTO if ((error = copypktopts(dst, src, canwait)) != 0) { 280135f6695bSHajimu UMEMOTO free(dst, M_IP6OPT); 280233841545SHajimu UMEMOTO return (NULL); 280333841545SHajimu UMEMOTO } 2804885adbfaSHajimu UMEMOTO 2805885adbfaSHajimu UMEMOTO return (dst); 2806885adbfaSHajimu UMEMOTO } 280733841545SHajimu UMEMOTO 280833841545SHajimu UMEMOTO void 28091272577eSXin LI ip6_freepcbopts(struct ip6_pktopts *pktopt) 281033841545SHajimu UMEMOTO { 281133841545SHajimu UMEMOTO if (pktopt == NULL) 281233841545SHajimu UMEMOTO return; 281333841545SHajimu UMEMOTO 2814f95d4633SHajimu UMEMOTO ip6_clearpktopts(pktopt, -1); 281533841545SHajimu UMEMOTO 281633841545SHajimu UMEMOTO free(pktopt, M_IP6OPT); 281733841545SHajimu UMEMOTO } 281833841545SHajimu UMEMOTO 281933841545SHajimu UMEMOTO /* 282082cd038dSYoshinobu Inoue * Set IPv6 outgoing packet options based on advanced API. 282182cd038dSYoshinobu Inoue */ 282282cd038dSYoshinobu Inoue int 28231272577eSXin LI ip6_setpktopts(struct mbuf *control, struct ip6_pktopts *opt, 282479ba3952SBjoern A. Zeeb struct ip6_pktopts *stickyopt, struct ucred *cred, int uproto) 282582cd038dSYoshinobu Inoue { 2826155d72c4SPedro F. Giffuni struct cmsghdr *cm = NULL; 282782cd038dSYoshinobu Inoue 28288507acb1SHajimu UMEMOTO if (control == NULL || opt == NULL) 282982cd038dSYoshinobu Inoue return (EINVAL); 283082cd038dSYoshinobu Inoue 2831*2290dfb4SRyan Stone /* 2832*2290dfb4SRyan Stone * ip6_setpktopt can call ifnet_by_index(), so it's imperative that we are 2833*2290dfb4SRyan Stone * in the net epoch here. 2834*2290dfb4SRyan Stone */ 2835*2290dfb4SRyan Stone NET_EPOCH_ASSERT(); 2836*2290dfb4SRyan Stone 2837885adbfaSHajimu UMEMOTO ip6_initpktopts(opt); 2838f95d4633SHajimu UMEMOTO if (stickyopt) { 2839885adbfaSHajimu UMEMOTO int error; 2840885adbfaSHajimu UMEMOTO 2841f95d4633SHajimu UMEMOTO /* 2842f95d4633SHajimu UMEMOTO * If stickyopt is provided, make a local copy of the options 2843f95d4633SHajimu UMEMOTO * for this particular packet, then override them by ancillary 2844f95d4633SHajimu UMEMOTO * objects. 2845885adbfaSHajimu UMEMOTO * XXX: copypktopts() does not copy the cached route to a next 2846885adbfaSHajimu UMEMOTO * hop (if any). This is not very good in terms of efficiency, 2847885adbfaSHajimu UMEMOTO * but we can allow this since this option should be rarely 2848885adbfaSHajimu UMEMOTO * used. 2849f95d4633SHajimu UMEMOTO */ 2850885adbfaSHajimu UMEMOTO if ((error = copypktopts(opt, stickyopt, M_NOWAIT)) != 0) 2851885adbfaSHajimu UMEMOTO return (error); 2852f95d4633SHajimu UMEMOTO } 285382cd038dSYoshinobu Inoue 285482cd038dSYoshinobu Inoue /* 285582cd038dSYoshinobu Inoue * XXX: Currently, we assume all the optional information is stored 285682cd038dSYoshinobu Inoue * in a single mbuf. 285782cd038dSYoshinobu Inoue */ 285882cd038dSYoshinobu Inoue if (control->m_next) 285982cd038dSYoshinobu Inoue return (EINVAL); 286082cd038dSYoshinobu Inoue 28616f4da201SBjoern A. Zeeb for (; control->m_len > 0; control->m_data += CMSG_ALIGN(cm->cmsg_len), 286233841545SHajimu UMEMOTO control->m_len -= CMSG_ALIGN(cm->cmsg_len)) { 2863f95d4633SHajimu UMEMOTO int error; 2864f95d4633SHajimu UMEMOTO 2865f95d4633SHajimu UMEMOTO if (control->m_len < CMSG_LEN(0)) 2866f95d4633SHajimu UMEMOTO return (EINVAL); 2867f95d4633SHajimu UMEMOTO 286882cd038dSYoshinobu Inoue cm = mtod(control, struct cmsghdr *); 286982cd038dSYoshinobu Inoue if (cm->cmsg_len == 0 || cm->cmsg_len > control->m_len) 287082cd038dSYoshinobu Inoue return (EINVAL); 287182cd038dSYoshinobu Inoue if (cm->cmsg_level != IPPROTO_IPV6) 287282cd038dSYoshinobu Inoue continue; 287382cd038dSYoshinobu Inoue 2874d5e3406dSHajimu UMEMOTO error = ip6_setpktopt(cm->cmsg_type, CMSG_DATA(cm), 287579ba3952SBjoern A. Zeeb cm->cmsg_len - CMSG_LEN(0), opt, cred, 0, 1, uproto); 2876f95d4633SHajimu UMEMOTO if (error) 2877f95d4633SHajimu UMEMOTO return (error); 2878f95d4633SHajimu UMEMOTO } 287982cd038dSYoshinobu Inoue 2880f95d4633SHajimu UMEMOTO return (0); 2881f95d4633SHajimu UMEMOTO } 2882f95d4633SHajimu UMEMOTO 2883f95d4633SHajimu UMEMOTO /* 2884f95d4633SHajimu UMEMOTO * Set a particular packet option, as a sticky option or an ancillary data 2885f95d4633SHajimu UMEMOTO * item. "len" can be 0 only when it's a sticky option. 2886f95d4633SHajimu UMEMOTO * We have 4 cases of combination of "sticky" and "cmsg": 2887f95d4633SHajimu UMEMOTO * "sticky=0, cmsg=0": impossible 288818b35df8SHajimu UMEMOTO * "sticky=0, cmsg=1": RFC2292 or RFC3542 ancillary data 288918b35df8SHajimu UMEMOTO * "sticky=1, cmsg=0": RFC3542 socket option 2890f95d4633SHajimu UMEMOTO * "sticky=1, cmsg=1": RFC2292 socket option 2891f95d4633SHajimu UMEMOTO */ 2892f95d4633SHajimu UMEMOTO static int 28931272577eSXin LI ip6_setpktopt(int optname, u_char *buf, int len, struct ip6_pktopts *opt, 289479ba3952SBjoern A. Zeeb struct ucred *cred, int sticky, int cmsg, int uproto) 2895f95d4633SHajimu UMEMOTO { 2896f95d4633SHajimu UMEMOTO int minmtupolicy, preftemp; 289779ba3952SBjoern A. Zeeb int error; 2898f95d4633SHajimu UMEMOTO 2899f95d4633SHajimu UMEMOTO if (!sticky && !cmsg) { 2900f95d4633SHajimu UMEMOTO #ifdef DIAGNOSTIC 2901d5e3406dSHajimu UMEMOTO printf("ip6_setpktopt: impossible case\n"); 2902f95d4633SHajimu UMEMOTO #endif 2903f95d4633SHajimu UMEMOTO return (EINVAL); 2904f95d4633SHajimu UMEMOTO } 2905f95d4633SHajimu UMEMOTO 2906f95d4633SHajimu UMEMOTO /* 2907f95d4633SHajimu UMEMOTO * IPV6_2292xxx is for backward compatibility to RFC2292, and should 290818b35df8SHajimu UMEMOTO * not be specified in the context of RFC3542. Conversely, 290918b35df8SHajimu UMEMOTO * RFC3542 types should not be specified in the context of RFC2292. 2910f95d4633SHajimu UMEMOTO */ 2911f95d4633SHajimu UMEMOTO if (!cmsg) { 2912f95d4633SHajimu UMEMOTO switch (optname) { 2913f95d4633SHajimu UMEMOTO case IPV6_2292PKTINFO: 2914f95d4633SHajimu UMEMOTO case IPV6_2292HOPLIMIT: 2915f95d4633SHajimu UMEMOTO case IPV6_2292NEXTHOP: 2916f95d4633SHajimu UMEMOTO case IPV6_2292HOPOPTS: 2917f95d4633SHajimu UMEMOTO case IPV6_2292DSTOPTS: 2918f95d4633SHajimu UMEMOTO case IPV6_2292RTHDR: 2919f95d4633SHajimu UMEMOTO case IPV6_2292PKTOPTIONS: 2920f95d4633SHajimu UMEMOTO return (ENOPROTOOPT); 2921f95d4633SHajimu UMEMOTO } 2922f95d4633SHajimu UMEMOTO } 2923f95d4633SHajimu UMEMOTO if (sticky && cmsg) { 2924f95d4633SHajimu UMEMOTO switch (optname) { 2925f95d4633SHajimu UMEMOTO case IPV6_PKTINFO: 2926f95d4633SHajimu UMEMOTO case IPV6_HOPLIMIT: 2927f95d4633SHajimu UMEMOTO case IPV6_NEXTHOP: 2928f95d4633SHajimu UMEMOTO case IPV6_HOPOPTS: 2929f95d4633SHajimu UMEMOTO case IPV6_DSTOPTS: 2930f95d4633SHajimu UMEMOTO case IPV6_RTHDRDSTOPTS: 2931f95d4633SHajimu UMEMOTO case IPV6_RTHDR: 2932f95d4633SHajimu UMEMOTO case IPV6_USE_MIN_MTU: 2933f95d4633SHajimu UMEMOTO case IPV6_DONTFRAG: 2934f95d4633SHajimu UMEMOTO case IPV6_TCLASS: 293518b35df8SHajimu UMEMOTO case IPV6_PREFER_TEMPADDR: /* XXX: not an RFC3542 option */ 2936f95d4633SHajimu UMEMOTO return (ENOPROTOOPT); 2937f95d4633SHajimu UMEMOTO } 2938f95d4633SHajimu UMEMOTO } 2939f95d4633SHajimu UMEMOTO 2940f95d4633SHajimu UMEMOTO switch (optname) { 2941f95d4633SHajimu UMEMOTO case IPV6_2292PKTINFO: 2942f95d4633SHajimu UMEMOTO case IPV6_PKTINFO: 2943f95d4633SHajimu UMEMOTO { 2944f95d4633SHajimu UMEMOTO struct ifnet *ifp = NULL; 2945f95d4633SHajimu UMEMOTO struct in6_pktinfo *pktinfo; 2946f95d4633SHajimu UMEMOTO 2947f95d4633SHajimu UMEMOTO if (len != sizeof(struct in6_pktinfo)) 2948f95d4633SHajimu UMEMOTO return (EINVAL); 2949f95d4633SHajimu UMEMOTO 2950f95d4633SHajimu UMEMOTO pktinfo = (struct in6_pktinfo *)buf; 2951f95d4633SHajimu UMEMOTO 2952f95d4633SHajimu UMEMOTO /* 2953f95d4633SHajimu UMEMOTO * An application can clear any sticky IPV6_PKTINFO option by 2954f95d4633SHajimu UMEMOTO * doing a "regular" setsockopt with ipi6_addr being 2955f95d4633SHajimu UMEMOTO * in6addr_any and ipi6_ifindex being zero. 2956f95d4633SHajimu UMEMOTO * [RFC 3542, Section 6] 2957f95d4633SHajimu UMEMOTO */ 2958f95d4633SHajimu UMEMOTO if (optname == IPV6_PKTINFO && opt->ip6po_pktinfo && 2959f95d4633SHajimu UMEMOTO pktinfo->ipi6_ifindex == 0 && 2960f95d4633SHajimu UMEMOTO IN6_IS_ADDR_UNSPECIFIED(&pktinfo->ipi6_addr)) { 2961f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, optname); 2962f95d4633SHajimu UMEMOTO break; 2963f95d4633SHajimu UMEMOTO } 2964f95d4633SHajimu UMEMOTO 2965f95d4633SHajimu UMEMOTO if (uproto == IPPROTO_TCP && optname == IPV6_PKTINFO && 2966f95d4633SHajimu UMEMOTO sticky && !IN6_IS_ADDR_UNSPECIFIED(&pktinfo->ipi6_addr)) { 2967f95d4633SHajimu UMEMOTO return (EINVAL); 2968f95d4633SHajimu UMEMOTO } 29699196891fSAndrey V. Elsukov if (IN6_IS_ADDR_MULTICAST(&pktinfo->ipi6_addr)) 29709196891fSAndrey V. Elsukov return (EINVAL); 2971f95d4633SHajimu UMEMOTO /* validate the interface index if specified. */ 29723fa98cf9SGleb Smirnoff if (pktinfo->ipi6_ifindex > V_if_index) 2973f95d4633SHajimu UMEMOTO return (ENXIO); 2974f95d4633SHajimu UMEMOTO if (pktinfo->ipi6_ifindex) { 2975f95d4633SHajimu UMEMOTO ifp = ifnet_byindex(pktinfo->ipi6_ifindex); 2976f95d4633SHajimu UMEMOTO if (ifp == NULL) 297782cd038dSYoshinobu Inoue return (ENXIO); 297882cd038dSYoshinobu Inoue } 2979be393491SDimitry Andric if (ifp != NULL && (ifp->if_afdata[AF_INET6] == NULL || 2980be393491SDimitry Andric (ND_IFINFO(ifp)->flags & ND6_IFF_IFDISABLED) != 0)) 29819196891fSAndrey V. Elsukov return (ENETDOWN); 298282cd038dSYoshinobu Inoue 29839196891fSAndrey V. Elsukov if (ifp != NULL && 29849196891fSAndrey V. Elsukov !IN6_IS_ADDR_UNSPECIFIED(&pktinfo->ipi6_addr)) { 29859196891fSAndrey V. Elsukov struct in6_ifaddr *ia; 29869196891fSAndrey V. Elsukov 2987cb207f93SAndrey V. Elsukov in6_setscope(&pktinfo->ipi6_addr, ifp, NULL); 29889196891fSAndrey V. Elsukov ia = in6ifa_ifpwithaddr(ifp, &pktinfo->ipi6_addr); 29899196891fSAndrey V. Elsukov if (ia == NULL) 29909196891fSAndrey V. Elsukov return (EADDRNOTAVAIL); 29919196891fSAndrey V. Elsukov ifa_free(&ia->ia_ifa); 29929196891fSAndrey V. Elsukov } 299333841545SHajimu UMEMOTO /* 2994f95d4633SHajimu UMEMOTO * We store the address anyway, and let in6_selectsrc() 2995f95d4633SHajimu UMEMOTO * validate the specified address. This is because ipi6_addr 2996f95d4633SHajimu UMEMOTO * may not have enough information about its scope zone, and 2997f95d4633SHajimu UMEMOTO * we may need additional information (such as outgoing 2998f95d4633SHajimu UMEMOTO * interface or the scope zone of a destination address) to 2999f95d4633SHajimu UMEMOTO * disambiguate the scope. 3000f95d4633SHajimu UMEMOTO * XXX: the delay of the validation may confuse the 3001f95d4633SHajimu UMEMOTO * application when it is used as a sticky option. 300233841545SHajimu UMEMOTO */ 3003f95d4633SHajimu UMEMOTO if (opt->ip6po_pktinfo == NULL) { 3004f95d4633SHajimu UMEMOTO opt->ip6po_pktinfo = malloc(sizeof(*pktinfo), 3005885adbfaSHajimu UMEMOTO M_IP6OPT, M_NOWAIT); 3006885adbfaSHajimu UMEMOTO if (opt->ip6po_pktinfo == NULL) 3007885adbfaSHajimu UMEMOTO return (ENOBUFS); 300882cd038dSYoshinobu Inoue } 3009f95d4633SHajimu UMEMOTO bcopy(pktinfo, opt->ip6po_pktinfo, sizeof(*pktinfo)); 301082cd038dSYoshinobu Inoue break; 3011f95d4633SHajimu UMEMOTO } 301282cd038dSYoshinobu Inoue 3013f95d4633SHajimu UMEMOTO case IPV6_2292HOPLIMIT: 301482cd038dSYoshinobu Inoue case IPV6_HOPLIMIT: 3015f95d4633SHajimu UMEMOTO { 3016f95d4633SHajimu UMEMOTO int *hlimp; 3017f95d4633SHajimu UMEMOTO 3018f95d4633SHajimu UMEMOTO /* 3019f95d4633SHajimu UMEMOTO * RFC 3542 deprecated the usage of sticky IPV6_HOPLIMIT 3020f95d4633SHajimu UMEMOTO * to simplify the ordering among hoplimit options. 3021f95d4633SHajimu UMEMOTO */ 3022f95d4633SHajimu UMEMOTO if (optname == IPV6_HOPLIMIT && sticky) 3023f95d4633SHajimu UMEMOTO return (ENOPROTOOPT); 3024f95d4633SHajimu UMEMOTO 3025f95d4633SHajimu UMEMOTO if (len != sizeof(int)) 3026f95d4633SHajimu UMEMOTO return (EINVAL); 3027f95d4633SHajimu UMEMOTO hlimp = (int *)buf; 3028f95d4633SHajimu UMEMOTO if (*hlimp < -1 || *hlimp > 255) 302982cd038dSYoshinobu Inoue return (EINVAL); 303082cd038dSYoshinobu Inoue 3031f95d4633SHajimu UMEMOTO opt->ip6po_hlim = *hlimp; 303282cd038dSYoshinobu Inoue break; 3033f95d4633SHajimu UMEMOTO } 303482cd038dSYoshinobu Inoue 3035f95d4633SHajimu UMEMOTO case IPV6_TCLASS: 3036f95d4633SHajimu UMEMOTO { 3037f95d4633SHajimu UMEMOTO int tclass; 3038f95d4633SHajimu UMEMOTO 3039f95d4633SHajimu UMEMOTO if (len != sizeof(int)) 3040f95d4633SHajimu UMEMOTO return (EINVAL); 3041f95d4633SHajimu UMEMOTO tclass = *(int *)buf; 3042f95d4633SHajimu UMEMOTO if (tclass < -1 || tclass > 255) 3043f95d4633SHajimu UMEMOTO return (EINVAL); 3044f95d4633SHajimu UMEMOTO 3045f95d4633SHajimu UMEMOTO opt->ip6po_tclass = tclass; 3046f95d4633SHajimu UMEMOTO break; 3047f95d4633SHajimu UMEMOTO } 3048f95d4633SHajimu UMEMOTO 3049f95d4633SHajimu UMEMOTO case IPV6_2292NEXTHOP: 305082cd038dSYoshinobu Inoue case IPV6_NEXTHOP: 305179ba3952SBjoern A. Zeeb if (cred != NULL) { 3052cc426dd3SMateusz Guzik error = priv_check_cred(cred, PRIV_NETINET_SETHDROPTS); 305379ba3952SBjoern A. Zeeb if (error) 305479ba3952SBjoern A. Zeeb return (error); 305579ba3952SBjoern A. Zeeb } 305633841545SHajimu UMEMOTO 3057f95d4633SHajimu UMEMOTO if (len == 0) { /* just remove the option */ 3058f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, IPV6_NEXTHOP); 3059f95d4633SHajimu UMEMOTO break; 3060f95d4633SHajimu UMEMOTO } 3061f95d4633SHajimu UMEMOTO 306233841545SHajimu UMEMOTO /* check if cmsg_len is large enough for sa_len */ 3063f95d4633SHajimu UMEMOTO if (len < sizeof(struct sockaddr) || len < *buf) 306482cd038dSYoshinobu Inoue return (EINVAL); 306582cd038dSYoshinobu Inoue 3066f95d4633SHajimu UMEMOTO switch (((struct sockaddr *)buf)->sa_family) { 3067f95d4633SHajimu UMEMOTO case AF_INET6: 3068f95d4633SHajimu UMEMOTO { 3069f95d4633SHajimu UMEMOTO struct sockaddr_in6 *sa6 = (struct sockaddr_in6 *)buf; 3070f95d4633SHajimu UMEMOTO int error; 3071f95d4633SHajimu UMEMOTO 3072f95d4633SHajimu UMEMOTO if (sa6->sin6_len != sizeof(struct sockaddr_in6)) 3073f95d4633SHajimu UMEMOTO return (EINVAL); 3074f95d4633SHajimu UMEMOTO 3075f95d4633SHajimu UMEMOTO if (IN6_IS_ADDR_UNSPECIFIED(&sa6->sin6_addr) || 3076f95d4633SHajimu UMEMOTO IN6_IS_ADDR_MULTICAST(&sa6->sin6_addr)) { 3077f95d4633SHajimu UMEMOTO return (EINVAL); 3078f95d4633SHajimu UMEMOTO } 3079603724d3SBjoern A. Zeeb if ((error = sa6_embedscope(sa6, V_ip6_use_defzone)) 3080f95d4633SHajimu UMEMOTO != 0) { 3081f95d4633SHajimu UMEMOTO return (error); 3082f95d4633SHajimu UMEMOTO } 3083f95d4633SHajimu UMEMOTO break; 3084f95d4633SHajimu UMEMOTO } 3085f95d4633SHajimu UMEMOTO case AF_LINK: /* should eventually be supported */ 3086f95d4633SHajimu UMEMOTO default: 3087f95d4633SHajimu UMEMOTO return (EAFNOSUPPORT); 3088f95d4633SHajimu UMEMOTO } 3089f95d4633SHajimu UMEMOTO 3090f95d4633SHajimu UMEMOTO /* turn off the previous option, then set the new option. */ 3091f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, IPV6_NEXTHOP); 3092743eee66SSUZUKI Shinsuke opt->ip6po_nexthop = malloc(*buf, M_IP6OPT, M_NOWAIT); 3093743eee66SSUZUKI Shinsuke if (opt->ip6po_nexthop == NULL) 3094743eee66SSUZUKI Shinsuke return (ENOBUFS); 3095f95d4633SHajimu UMEMOTO bcopy(buf, opt->ip6po_nexthop, *buf); 309682cd038dSYoshinobu Inoue break; 309782cd038dSYoshinobu Inoue 3098f95d4633SHajimu UMEMOTO case IPV6_2292HOPOPTS: 309982cd038dSYoshinobu Inoue case IPV6_HOPOPTS: 310033841545SHajimu UMEMOTO { 310133841545SHajimu UMEMOTO struct ip6_hbh *hbh; 310233841545SHajimu UMEMOTO int hbhlen; 310333841545SHajimu UMEMOTO 3104f95d4633SHajimu UMEMOTO /* 3105f95d4633SHajimu UMEMOTO * XXX: We don't allow a non-privileged user to set ANY HbH 3106f95d4633SHajimu UMEMOTO * options, since per-option restriction has too much 3107f95d4633SHajimu UMEMOTO * overhead. 3108f95d4633SHajimu UMEMOTO */ 310979ba3952SBjoern A. Zeeb if (cred != NULL) { 3110cc426dd3SMateusz Guzik error = priv_check_cred(cred, PRIV_NETINET_SETHDROPTS); 311179ba3952SBjoern A. Zeeb if (error) 311279ba3952SBjoern A. Zeeb return (error); 311379ba3952SBjoern A. Zeeb } 3114f95d4633SHajimu UMEMOTO 3115f95d4633SHajimu UMEMOTO if (len == 0) { 3116f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, IPV6_HOPOPTS); 3117f95d4633SHajimu UMEMOTO break; /* just remove the option */ 3118f95d4633SHajimu UMEMOTO } 3119f95d4633SHajimu UMEMOTO 3120f95d4633SHajimu UMEMOTO /* message length validation */ 3121f95d4633SHajimu UMEMOTO if (len < sizeof(struct ip6_hbh)) 312282cd038dSYoshinobu Inoue return (EINVAL); 3123f95d4633SHajimu UMEMOTO hbh = (struct ip6_hbh *)buf; 312433841545SHajimu UMEMOTO hbhlen = (hbh->ip6h_len + 1) << 3; 3125f95d4633SHajimu UMEMOTO if (len != hbhlen) 312682cd038dSYoshinobu Inoue return (EINVAL); 312733841545SHajimu UMEMOTO 3128f95d4633SHajimu UMEMOTO /* turn off the previous option, then set the new option. */ 3129f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, IPV6_HOPOPTS); 3130743eee66SSUZUKI Shinsuke opt->ip6po_hbh = malloc(hbhlen, M_IP6OPT, M_NOWAIT); 3131743eee66SSUZUKI Shinsuke if (opt->ip6po_hbh == NULL) 3132743eee66SSUZUKI Shinsuke return (ENOBUFS); 313333841545SHajimu UMEMOTO bcopy(hbh, opt->ip6po_hbh, hbhlen); 3134f95d4633SHajimu UMEMOTO 313582cd038dSYoshinobu Inoue break; 313633841545SHajimu UMEMOTO } 313782cd038dSYoshinobu Inoue 3138f95d4633SHajimu UMEMOTO case IPV6_2292DSTOPTS: 313982cd038dSYoshinobu Inoue case IPV6_DSTOPTS: 3140f95d4633SHajimu UMEMOTO case IPV6_RTHDRDSTOPTS: 314133841545SHajimu UMEMOTO { 3142f95d4633SHajimu UMEMOTO struct ip6_dest *dest, **newdest = NULL; 314333841545SHajimu UMEMOTO int destlen; 314433841545SHajimu UMEMOTO 314579ba3952SBjoern A. Zeeb if (cred != NULL) { /* XXX: see the comment for IPV6_HOPOPTS */ 3146cc426dd3SMateusz Guzik error = priv_check_cred(cred, PRIV_NETINET_SETHDROPTS); 314779ba3952SBjoern A. Zeeb if (error) 314879ba3952SBjoern A. Zeeb return (error); 314979ba3952SBjoern A. Zeeb } 3150f95d4633SHajimu UMEMOTO 3151f95d4633SHajimu UMEMOTO if (len == 0) { 3152f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, optname); 3153f95d4633SHajimu UMEMOTO break; /* just remove the option */ 3154f95d4633SHajimu UMEMOTO } 3155f95d4633SHajimu UMEMOTO 3156f95d4633SHajimu UMEMOTO /* message length validation */ 3157f95d4633SHajimu UMEMOTO if (len < sizeof(struct ip6_dest)) 315882cd038dSYoshinobu Inoue return (EINVAL); 3159f95d4633SHajimu UMEMOTO dest = (struct ip6_dest *)buf; 316033841545SHajimu UMEMOTO destlen = (dest->ip6d_len + 1) << 3; 3161f95d4633SHajimu UMEMOTO if (len != destlen) 316233841545SHajimu UMEMOTO return (EINVAL); 316382cd038dSYoshinobu Inoue 316482cd038dSYoshinobu Inoue /* 3165f95d4633SHajimu UMEMOTO * Determine the position that the destination options header 3166f95d4633SHajimu UMEMOTO * should be inserted; before or after the routing header. 3167f95d4633SHajimu UMEMOTO */ 3168f95d4633SHajimu UMEMOTO switch (optname) { 3169f95d4633SHajimu UMEMOTO case IPV6_2292DSTOPTS: 3170f95d4633SHajimu UMEMOTO /* 3171f95d4633SHajimu UMEMOTO * The old advacned API is ambiguous on this point. 3172f95d4633SHajimu UMEMOTO * Our approach is to determine the position based 3173f95d4633SHajimu UMEMOTO * according to the existence of a routing header. 3174f95d4633SHajimu UMEMOTO * Note, however, that this depends on the order of the 3175f95d4633SHajimu UMEMOTO * extension headers in the ancillary data; the 1st 3176f95d4633SHajimu UMEMOTO * part of the destination options header must appear 3177f95d4633SHajimu UMEMOTO * before the routing header in the ancillary data, 3178f95d4633SHajimu UMEMOTO * too. 317918b35df8SHajimu UMEMOTO * RFC3542 solved the ambiguity by introducing 3180f95d4633SHajimu UMEMOTO * separate ancillary data or option types. 318182cd038dSYoshinobu Inoue */ 318233841545SHajimu UMEMOTO if (opt->ip6po_rthdr == NULL) 318333841545SHajimu UMEMOTO newdest = &opt->ip6po_dest1; 318433841545SHajimu UMEMOTO else 318533841545SHajimu UMEMOTO newdest = &opt->ip6po_dest2; 3186f95d4633SHajimu UMEMOTO break; 3187f95d4633SHajimu UMEMOTO case IPV6_RTHDRDSTOPTS: 3188f95d4633SHajimu UMEMOTO newdest = &opt->ip6po_dest1; 3189f95d4633SHajimu UMEMOTO break; 3190f95d4633SHajimu UMEMOTO case IPV6_DSTOPTS: 3191f95d4633SHajimu UMEMOTO newdest = &opt->ip6po_dest2; 3192f95d4633SHajimu UMEMOTO break; 3193f95d4633SHajimu UMEMOTO } 319433841545SHajimu UMEMOTO 3195f95d4633SHajimu UMEMOTO /* turn off the previous option, then set the new option. */ 3196f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, optname); 3197743eee66SSUZUKI Shinsuke *newdest = malloc(destlen, M_IP6OPT, M_NOWAIT); 3198fc4c8258SRobert Watson if (*newdest == NULL) 3199743eee66SSUZUKI Shinsuke return (ENOBUFS); 320033841545SHajimu UMEMOTO bcopy(dest, *newdest, destlen); 320133841545SHajimu UMEMOTO 320282cd038dSYoshinobu Inoue break; 320333841545SHajimu UMEMOTO } 320482cd038dSYoshinobu Inoue 3205f95d4633SHajimu UMEMOTO case IPV6_2292RTHDR: 320682cd038dSYoshinobu Inoue case IPV6_RTHDR: 320733841545SHajimu UMEMOTO { 320833841545SHajimu UMEMOTO struct ip6_rthdr *rth; 320933841545SHajimu UMEMOTO int rthlen; 321033841545SHajimu UMEMOTO 3211f95d4633SHajimu UMEMOTO if (len == 0) { 3212f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, IPV6_RTHDR); 3213f95d4633SHajimu UMEMOTO break; /* just remove the option */ 3214f95d4633SHajimu UMEMOTO } 3215f95d4633SHajimu UMEMOTO 3216f95d4633SHajimu UMEMOTO /* message length validation */ 3217f95d4633SHajimu UMEMOTO if (len < sizeof(struct ip6_rthdr)) 321882cd038dSYoshinobu Inoue return (EINVAL); 3219f95d4633SHajimu UMEMOTO rth = (struct ip6_rthdr *)buf; 322033841545SHajimu UMEMOTO rthlen = (rth->ip6r_len + 1) << 3; 3221f95d4633SHajimu UMEMOTO if (len != rthlen) 322282cd038dSYoshinobu Inoue return (EINVAL); 322333841545SHajimu UMEMOTO 322433841545SHajimu UMEMOTO switch (rth->ip6r_type) { 322582cd038dSYoshinobu Inoue case IPV6_RTHDR_TYPE_0: 3226f95d4633SHajimu UMEMOTO if (rth->ip6r_len == 0) /* must contain one addr */ 322733841545SHajimu UMEMOTO return (EINVAL); 3228f95d4633SHajimu UMEMOTO if (rth->ip6r_len % 2) /* length must be even */ 322933841545SHajimu UMEMOTO return (EINVAL); 323033841545SHajimu UMEMOTO if (rth->ip6r_len / 2 != rth->ip6r_segleft) 323182cd038dSYoshinobu Inoue return (EINVAL); 323282cd038dSYoshinobu Inoue break; 323382cd038dSYoshinobu Inoue default: 323433841545SHajimu UMEMOTO return (EINVAL); /* not supported */ 323582cd038dSYoshinobu Inoue } 323633841545SHajimu UMEMOTO 3237f95d4633SHajimu UMEMOTO /* turn off the previous option */ 3238f95d4633SHajimu UMEMOTO ip6_clearpktopts(opt, IPV6_RTHDR); 3239743eee66SSUZUKI Shinsuke opt->ip6po_rthdr = malloc(rthlen, M_IP6OPT, M_NOWAIT); 3240743eee66SSUZUKI Shinsuke if (opt->ip6po_rthdr == NULL) 3241743eee66SSUZUKI Shinsuke return (ENOBUFS); 324233841545SHajimu UMEMOTO bcopy(rth, opt->ip6po_rthdr, rthlen); 324333841545SHajimu UMEMOTO 324482cd038dSYoshinobu Inoue break; 324533841545SHajimu UMEMOTO } 324682cd038dSYoshinobu Inoue 3247f95d4633SHajimu UMEMOTO case IPV6_USE_MIN_MTU: 3248f95d4633SHajimu UMEMOTO if (len != sizeof(int)) 3249f95d4633SHajimu UMEMOTO return (EINVAL); 3250f95d4633SHajimu UMEMOTO minmtupolicy = *(int *)buf; 3251f95d4633SHajimu UMEMOTO if (minmtupolicy != IP6PO_MINMTU_MCASTONLY && 3252f95d4633SHajimu UMEMOTO minmtupolicy != IP6PO_MINMTU_DISABLE && 3253f95d4633SHajimu UMEMOTO minmtupolicy != IP6PO_MINMTU_ALL) { 3254f95d4633SHajimu UMEMOTO return (EINVAL); 3255f95d4633SHajimu UMEMOTO } 3256f95d4633SHajimu UMEMOTO opt->ip6po_minmtu = minmtupolicy; 3257f95d4633SHajimu UMEMOTO break; 3258f95d4633SHajimu UMEMOTO 3259f95d4633SHajimu UMEMOTO case IPV6_DONTFRAG: 3260f95d4633SHajimu UMEMOTO if (len != sizeof(int)) 3261f95d4633SHajimu UMEMOTO return (EINVAL); 3262f95d4633SHajimu UMEMOTO 3263f95d4633SHajimu UMEMOTO if (uproto == IPPROTO_TCP || *(int *)buf == 0) { 3264f95d4633SHajimu UMEMOTO /* 3265f95d4633SHajimu UMEMOTO * we ignore this option for TCP sockets. 326618b35df8SHajimu UMEMOTO * (RFC3542 leaves this case unspecified.) 3267f95d4633SHajimu UMEMOTO */ 3268f95d4633SHajimu UMEMOTO opt->ip6po_flags &= ~IP6PO_DONTFRAG; 3269f95d4633SHajimu UMEMOTO } else 3270f95d4633SHajimu UMEMOTO opt->ip6po_flags |= IP6PO_DONTFRAG; 3271f95d4633SHajimu UMEMOTO break; 3272f95d4633SHajimu UMEMOTO 3273f95d4633SHajimu UMEMOTO case IPV6_PREFER_TEMPADDR: 3274f95d4633SHajimu UMEMOTO if (len != sizeof(int)) 3275f95d4633SHajimu UMEMOTO return (EINVAL); 3276f95d4633SHajimu UMEMOTO preftemp = *(int *)buf; 3277f95d4633SHajimu UMEMOTO if (preftemp != IP6PO_TEMPADDR_SYSTEM && 3278f95d4633SHajimu UMEMOTO preftemp != IP6PO_TEMPADDR_NOTPREFER && 3279f95d4633SHajimu UMEMOTO preftemp != IP6PO_TEMPADDR_PREFER) { 3280f95d4633SHajimu UMEMOTO return (EINVAL); 3281f95d4633SHajimu UMEMOTO } 3282f95d4633SHajimu UMEMOTO opt->ip6po_prefer_tempaddr = preftemp; 3283f95d4633SHajimu UMEMOTO break; 3284f95d4633SHajimu UMEMOTO 328582cd038dSYoshinobu Inoue default: 328682cd038dSYoshinobu Inoue return (ENOPROTOOPT); 3287f95d4633SHajimu UMEMOTO } /* end of switch */ 328882cd038dSYoshinobu Inoue 328982cd038dSYoshinobu Inoue return (0); 329082cd038dSYoshinobu Inoue } 329182cd038dSYoshinobu Inoue 329282cd038dSYoshinobu Inoue /* 329382cd038dSYoshinobu Inoue * Routine called from ip6_output() to loop back a copy of an IP6 multicast 329482cd038dSYoshinobu Inoue * packet to the input queue of a specified interface. Note that this 329582cd038dSYoshinobu Inoue * calls the output routine of the loopback "driver", but with an interface 329682cd038dSYoshinobu Inoue * pointer that might NOT be &loif -- easier than replicating that code here. 329782cd038dSYoshinobu Inoue */ 329882cd038dSYoshinobu Inoue void 329956a5f52eSGleb Smirnoff ip6_mloopback(struct ifnet *ifp, struct mbuf *m) 330082cd038dSYoshinobu Inoue { 330182cd038dSYoshinobu Inoue struct mbuf *copym; 3302686cdd19SJun-ichiro itojun Hagino struct ip6_hdr *ip6; 330382cd038dSYoshinobu Inoue 3304c3bef61eSKevin Lo copym = m_copym(m, 0, M_COPYALL, M_NOWAIT); 3305686cdd19SJun-ichiro itojun Hagino if (copym == NULL) 3306686cdd19SJun-ichiro itojun Hagino return; 3307686cdd19SJun-ichiro itojun Hagino 3308686cdd19SJun-ichiro itojun Hagino /* 3309686cdd19SJun-ichiro itojun Hagino * Make sure to deep-copy IPv6 header portion in case the data 3310686cdd19SJun-ichiro itojun Hagino * is in an mbuf cluster, so that we can safely override the IPv6 3311686cdd19SJun-ichiro itojun Hagino * header portion later. 3312686cdd19SJun-ichiro itojun Hagino */ 3313f0cace5dSRobert Watson if (!M_WRITABLE(copym) || 3314686cdd19SJun-ichiro itojun Hagino copym->m_len < sizeof(struct ip6_hdr)) { 3315686cdd19SJun-ichiro itojun Hagino copym = m_pullup(copym, sizeof(struct ip6_hdr)); 3316686cdd19SJun-ichiro itojun Hagino if (copym == NULL) 3317686cdd19SJun-ichiro itojun Hagino return; 331882cd038dSYoshinobu Inoue } 3319686cdd19SJun-ichiro itojun Hagino ip6 = mtod(copym, struct ip6_hdr *); 332033841545SHajimu UMEMOTO /* 332133841545SHajimu UMEMOTO * clear embedded scope identifiers if necessary. 332233841545SHajimu UMEMOTO * in6_clearscope will touch the addresses only when necessary. 332333841545SHajimu UMEMOTO */ 332433841545SHajimu UMEMOTO in6_clearscope(&ip6->ip6_src); 332533841545SHajimu UMEMOTO in6_clearscope(&ip6->ip6_dst); 3326654bdb5aSAndrey V. Elsukov if (copym->m_pkthdr.csum_flags & CSUM_DELAY_DATA_IPV6) { 3327654bdb5aSAndrey V. Elsukov copym->m_pkthdr.csum_flags |= CSUM_DATA_VALID_IPV6 | 3328654bdb5aSAndrey V. Elsukov CSUM_PSEUDO_HDR; 3329654bdb5aSAndrey V. Elsukov copym->m_pkthdr.csum_data = 0xffff; 3330654bdb5aSAndrey V. Elsukov } 3331331dff07SAlexander V. Chernikov if_simloop(ifp, copym, AF_INET6, 0); 333282cd038dSYoshinobu Inoue } 333382cd038dSYoshinobu Inoue 333482cd038dSYoshinobu Inoue /* 333582cd038dSYoshinobu Inoue * Chop IPv6 header off from the payload. 333682cd038dSYoshinobu Inoue */ 333782cd038dSYoshinobu Inoue static int 33381272577eSXin LI ip6_splithdr(struct mbuf *m, struct ip6_exthdrs *exthdrs) 333982cd038dSYoshinobu Inoue { 334082cd038dSYoshinobu Inoue struct mbuf *mh; 334182cd038dSYoshinobu Inoue struct ip6_hdr *ip6; 334282cd038dSYoshinobu Inoue 334382cd038dSYoshinobu Inoue ip6 = mtod(m, struct ip6_hdr *); 334482cd038dSYoshinobu Inoue if (m->m_len > sizeof(*ip6)) { 33457b07d1beSGleb Smirnoff mh = m_gethdr(M_NOWAIT, MT_DATA); 33467b07d1beSGleb Smirnoff if (mh == NULL) { 334782cd038dSYoshinobu Inoue m_freem(m); 334882cd038dSYoshinobu Inoue return ENOBUFS; 334982cd038dSYoshinobu Inoue } 335010e5acc3SGleb Smirnoff m_move_pkthdr(mh, m); 3351ed6a66caSRobert Watson M_ALIGN(mh, sizeof(*ip6)); 335282cd038dSYoshinobu Inoue m->m_len -= sizeof(*ip6); 335382cd038dSYoshinobu Inoue m->m_data += sizeof(*ip6); 335482cd038dSYoshinobu Inoue mh->m_next = m; 335582cd038dSYoshinobu Inoue m = mh; 335682cd038dSYoshinobu Inoue m->m_len = sizeof(*ip6); 335782cd038dSYoshinobu Inoue bcopy((caddr_t)ip6, mtod(m, caddr_t), sizeof(*ip6)); 335882cd038dSYoshinobu Inoue } 335982cd038dSYoshinobu Inoue exthdrs->ip6e_ip6 = m; 336082cd038dSYoshinobu Inoue return 0; 336182cd038dSYoshinobu Inoue } 336282cd038dSYoshinobu Inoue 336382cd038dSYoshinobu Inoue /* 336482cd038dSYoshinobu Inoue * Compute IPv6 extension header length. 336582cd038dSYoshinobu Inoue */ 336682cd038dSYoshinobu Inoue int 33670ecd976eSBjoern A. Zeeb ip6_optlen(struct inpcb *inp) 336882cd038dSYoshinobu Inoue { 336982cd038dSYoshinobu Inoue int len; 337082cd038dSYoshinobu Inoue 33710ecd976eSBjoern A. Zeeb if (!inp->in6p_outputopts) 337282cd038dSYoshinobu Inoue return 0; 337382cd038dSYoshinobu Inoue 337482cd038dSYoshinobu Inoue len = 0; 337582cd038dSYoshinobu Inoue #define elen(x) \ 337682cd038dSYoshinobu Inoue (((struct ip6_ext *)(x)) ? (((struct ip6_ext *)(x))->ip6e_len + 1) << 3 : 0) 337782cd038dSYoshinobu Inoue 33780ecd976eSBjoern A. Zeeb len += elen(inp->in6p_outputopts->ip6po_hbh); 33790ecd976eSBjoern A. Zeeb if (inp->in6p_outputopts->ip6po_rthdr) 338033841545SHajimu UMEMOTO /* dest1 is valid with rthdr only */ 33810ecd976eSBjoern A. Zeeb len += elen(inp->in6p_outputopts->ip6po_dest1); 33820ecd976eSBjoern A. Zeeb len += elen(inp->in6p_outputopts->ip6po_rthdr); 33830ecd976eSBjoern A. Zeeb len += elen(inp->in6p_outputopts->ip6po_dest2); 338482cd038dSYoshinobu Inoue return len; 338582cd038dSYoshinobu Inoue #undef elen 338682cd038dSYoshinobu Inoue } 3387