sys/netinet6/ip6_output.c

caf43b02SWarner Losh/*-
82cd038dSYoshinobu Inoue * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
82cd038dSYoshinobu Inoue * All rights reserved.
82cd038dSYoshinobu Inoue *
82cd038dSYoshinobu Inoue * Redistribution and use in source and binary forms, with or without
82cd038dSYoshinobu Inoue * modification, are permitted provided that the following conditions
82cd038dSYoshinobu Inoue * are met:
82cd038dSYoshinobu Inoue * 1. Redistributions of source code must retain the above copyright
82cd038dSYoshinobu Inoue *    notice, this list of conditions and the following disclaimer.
82cd038dSYoshinobu Inoue * 2. Redistributions in binary form must reproduce the above copyright
82cd038dSYoshinobu Inoue *    notice, this list of conditions and the following disclaimer in the
82cd038dSYoshinobu Inoue *    documentation and/or other materials provided with the distribution.
82cd038dSYoshinobu Inoue * 3. Neither the name of the project nor the names of its contributors
82cd038dSYoshinobu Inoue *    may be used to endorse or promote products derived from this software
82cd038dSYoshinobu Inoue *    without specific prior written permission.
82cd038dSYoshinobu Inoue *
82cd038dSYoshinobu Inoue * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
82cd038dSYoshinobu Inoue * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
82cd038dSYoshinobu Inoue * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
82cd038dSYoshinobu Inoue * ARE DISCLAIMED.  IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
82cd038dSYoshinobu Inoue * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
82cd038dSYoshinobu Inoue * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
82cd038dSYoshinobu Inoue * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
82cd038dSYoshinobu Inoue * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
82cd038dSYoshinobu Inoue * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
82cd038dSYoshinobu Inoue * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
82cd038dSYoshinobu Inoue * SUCH DAMAGE.
b48287a3SDavid E. O'Brien *
b48287a3SDavid E. O'Brien *	$KAME: ip6_output.c,v 1.279 2002/01/26 06:12:30 jinmei Exp $
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inoue
caf43b02SWarner Losh/*-
82cd038dSYoshinobu Inoue * Copyright (c) 1982, 1986, 1988, 1990, 1993
82cd038dSYoshinobu Inoue *	The Regents of the University of California.  All rights reserved.
82cd038dSYoshinobu Inoue *
82cd038dSYoshinobu Inoue * Redistribution and use in source and binary forms, with or without
82cd038dSYoshinobu Inoue * modification, are permitted provided that the following conditions
82cd038dSYoshinobu Inoue * are met:
82cd038dSYoshinobu Inoue * 1. Redistributions of source code must retain the above copyright
82cd038dSYoshinobu Inoue *    notice, this list of conditions and the following disclaimer.
82cd038dSYoshinobu Inoue * 2. Redistributions in binary form must reproduce the above copyright
82cd038dSYoshinobu Inoue *    notice, this list of conditions and the following disclaimer in the
82cd038dSYoshinobu Inoue *    documentation and/or other materials provided with the distribution.
82cd038dSYoshinobu Inoue * 4. Neither the name of the University nor the names of its contributors
82cd038dSYoshinobu Inoue *    may be used to endorse or promote products derived from this software
82cd038dSYoshinobu Inoue *    without specific prior written permission.
82cd038dSYoshinobu Inoue *
82cd038dSYoshinobu Inoue * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
82cd038dSYoshinobu Inoue * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
82cd038dSYoshinobu Inoue * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
82cd038dSYoshinobu Inoue * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
82cd038dSYoshinobu Inoue * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
82cd038dSYoshinobu Inoue * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
82cd038dSYoshinobu Inoue * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
82cd038dSYoshinobu Inoue * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
82cd038dSYoshinobu Inoue * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
82cd038dSYoshinobu Inoue * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
82cd038dSYoshinobu Inoue * SUCH DAMAGE.
82cd038dSYoshinobu Inoue *
82cd038dSYoshinobu Inoue *	@(#)ip_output.c	8.3 (Berkeley) 1/21/94
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inoue
b48287a3SDavid E. O'Brien#include <sys/cdefs.h>
b48287a3SDavid E. O'Brien__FBSDID("$FreeBSD$");
b48287a3SDavid E. O'Brien
686cdd19SJun-ichiro itojun Hagino#include "opt_inet.h"
686cdd19SJun-ichiro itojun Hagino#include "opt_inet6.h"
686cdd19SJun-ichiro itojun Hagino#include "opt_ipsec.h"
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue#include <sys/param.h>
c26fe973SBjoern A. Zeeb#include <sys/kernel.h>
82cd038dSYoshinobu Inoue#include <sys/malloc.h>
82cd038dSYoshinobu Inoue#include <sys/mbuf.h>
82cd038dSYoshinobu Inoue#include <sys/errno.h>
c2259ba4SRobert Watson#include <sys/priv.h>
c26fe973SBjoern A. Zeeb#include <sys/proc.h>
82cd038dSYoshinobu Inoue#include <sys/protosw.h>
82cd038dSYoshinobu Inoue#include <sys/socket.h>
82cd038dSYoshinobu Inoue#include <sys/socketvar.h>
c26fe973SBjoern A. Zeeb#include <sys/ucred.h>
603724d3SBjoern A. Zeeb#include <sys/vimage.h>
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue#include <net/if.h>
8195404bSBrooks Davis#include <net/netisr.h>
82cd038dSYoshinobu Inoue#include <net/route.h>
c4ac87eaSDarren Reed#include <net/pfil.h>
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue#include <netinet/in.h>
82cd038dSYoshinobu Inoue#include <netinet/in_var.h>
33841545SHajimu UMEMOTO#include <netinet6/in6_var.h>
686cdd19SJun-ichiro itojun Hagino#include <netinet/ip6.h>
686cdd19SJun-ichiro itojun Hagino#include <netinet/icmp6.h>
82cd038dSYoshinobu Inoue#include <netinet6/ip6_var.h>
686cdd19SJun-ichiro itojun Hagino#include <netinet/in_pcb.h>
97d8d152SAndre Oppermann#include <netinet/tcp_var.h>
82cd038dSYoshinobu Inoue#include <netinet6/nd6.h>
82cd038dSYoshinobu Inoue
b2630c29SGeorge V. Neville-Neil#ifdef IPSEC
b9234fafSSam Leffler#include <netipsec/ipsec.h>
b9234fafSSam Leffler#include <netipsec/ipsec6.h>
b9234fafSSam Leffler#include <netipsec/key.h>
2cb64cb2SGeorge V. Neville-Neil#include <netinet6/ip6_ipsec.h>
b2630c29SGeorge V. Neville-Neil#endif /* IPSEC */
b9234fafSSam Leffler
1469c434SHajimu UMEMOTO#include <netinet6/ip6protosw.h>
a1f7e5f8SHajimu UMEMOTO#include <netinet6/scope6_var.h>
1469c434SHajimu UMEMOTO
7ba26d99SDavid E. O'Brienstatic MALLOC_DEFINE(M_IP6MOPTS, "ip6_moptions", "internet multicast options");
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inouestruct ip6_exthdrs {
82cd038dSYoshinobu Inoue	struct mbuf *ip6e_ip6;
82cd038dSYoshinobu Inoue	struct mbuf *ip6e_hbh;
82cd038dSYoshinobu Inoue	struct mbuf *ip6e_dest1;
82cd038dSYoshinobu Inoue	struct mbuf *ip6e_rthdr;
82cd038dSYoshinobu Inoue	struct mbuf *ip6e_dest2;
82cd038dSYoshinobu Inoue};
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTOstatic int ip6_pcbopt __P((int, u_char *, int, struct ip6_pktopts **,
79ba3952SBjoern A. Zeeb			   struct ucred *, int));
82cd038dSYoshinobu Inouestatic int ip6_pcbopts __P((struct ip6_pktopts **, struct mbuf *,
7efe5d92SHajimu UMEMOTO	struct socket *, struct sockopt *));
9233d8f3SDavid E. O'Brienstatic int ip6_getpcbopt(struct ip6_pktopts *, int, struct sockopt *);
79ba3952SBjoern A. Zeebstatic int ip6_setpktopt __P((int, u_char *, int, struct ip6_pktopts *,
79ba3952SBjoern A. Zeeb	struct ucred *, int, int, int));
f95d4633SHajimu UMEMOTO
9233d8f3SDavid E. O'Brienstatic int ip6_setmoptions(int, struct ip6_moptions **, struct mbuf *);
9233d8f3SDavid E. O'Brienstatic int ip6_getmoptions(int, struct ip6_moptions *, struct mbuf **);
9233d8f3SDavid E. O'Brienstatic int ip6_copyexthdr(struct mbuf **, caddr_t, int);
82cd038dSYoshinobu Inouestatic int ip6_insertfraghdr __P((struct mbuf *, struct mbuf *, int,
82cd038dSYoshinobu Inoue	struct ip6_frag **));
9233d8f3SDavid E. O'Brienstatic int ip6_insert_jumboopt(struct ip6_exthdrs *, u_int32_t);
9233d8f3SDavid E. O'Brienstatic int ip6_splithdr(struct mbuf *, struct ip6_exthdrs *);
31b3783cSHajimu UMEMOTOstatic int ip6_getpmtu __P((struct route_in6 *, struct route_in6 *,
f95d4633SHajimu UMEMOTO	struct ifnet *, struct in6_addr *, u_long *, int *));
9233d8f3SDavid E. O'Brienstatic int copypktopts(struct ip6_pktopts *, struct ip6_pktopts *, int);
82cd038dSYoshinobu Inoue
7efe5d92SHajimu UMEMOTO
82cd038dSYoshinobu Inoue/*
2cb64cb2SGeorge V. Neville-Neil * Make an extension header from option data.  hp is the source, and
2cb64cb2SGeorge V. Neville-Neil * mp is the destination.
2cb64cb2SGeorge V. Neville-Neil */
2cb64cb2SGeorge V. Neville-Neil#define MAKE_EXTHDR(hp, mp)						\
2cb64cb2SGeorge V. Neville-Neil    do {								\
2cb64cb2SGeorge V. Neville-Neil	if (hp) {							\
2cb64cb2SGeorge V. Neville-Neil		struct ip6_ext *eh = (struct ip6_ext *)(hp);		\
2cb64cb2SGeorge V. Neville-Neil		error = ip6_copyexthdr((mp), (caddr_t)(hp),		\
2cb64cb2SGeorge V. Neville-Neil		    ((eh)->ip6e_len + 1) << 3);				\
2cb64cb2SGeorge V. Neville-Neil		if (error)						\
2cb64cb2SGeorge V. Neville-Neil			goto freehdrs;					\
2cb64cb2SGeorge V. Neville-Neil	}								\
2cb64cb2SGeorge V. Neville-Neil    } while (/*CONSTCOND*/ 0)
2cb64cb2SGeorge V. Neville-Neil
2cb64cb2SGeorge V. Neville-Neil/*
2cb64cb2SGeorge V. Neville-Neil * Form a chain of extension headers.
2cb64cb2SGeorge V. Neville-Neil * m is the extension header mbuf
2cb64cb2SGeorge V. Neville-Neil * mp is the previous mbuf in the chain
2cb64cb2SGeorge V. Neville-Neil * p is the next header
2cb64cb2SGeorge V. Neville-Neil * i is the type of option.
2cb64cb2SGeorge V. Neville-Neil */
2cb64cb2SGeorge V. Neville-Neil#define MAKE_CHAIN(m, mp, p, i)\
2cb64cb2SGeorge V. Neville-Neil    do {\
2cb64cb2SGeorge V. Neville-Neil	if (m) {\
2cb64cb2SGeorge V. Neville-Neil		if (!hdrsplit) \
2cb64cb2SGeorge V. Neville-Neil			panic("assumption failed: hdr not split"); \
2cb64cb2SGeorge V. Neville-Neil		*mtod((m), u_char *) = *(p);\
2cb64cb2SGeorge V. Neville-Neil		*(p) = (i);\
2cb64cb2SGeorge V. Neville-Neil		p = mtod((m), u_char *);\
2cb64cb2SGeorge V. Neville-Neil		(m)->m_next = (mp)->m_next;\
2cb64cb2SGeorge V. Neville-Neil		(mp)->m_next = (m);\
2cb64cb2SGeorge V. Neville-Neil		(mp) = (m);\
2cb64cb2SGeorge V. Neville-Neil	}\
2cb64cb2SGeorge V. Neville-Neil    } while (/*CONSTCOND*/ 0)
2cb64cb2SGeorge V. Neville-Neil
2cb64cb2SGeorge V. Neville-Neil/*
82cd038dSYoshinobu Inoue * IP6 output. The packet in mbuf chain m contains a skeletal IP6
82cd038dSYoshinobu Inoue * header (with pri, len, nxt, hlim, src, dst).
82cd038dSYoshinobu Inoue * This function may modify ver and hlim only.
82cd038dSYoshinobu Inoue * The mbuf chain containing the packet will be freed.
82cd038dSYoshinobu Inoue * The mbuf opt, if present, will not be freed.
33841545SHajimu UMEMOTO *
33841545SHajimu UMEMOTO * type of "mtu": rt_rmx.rmx_mtu is u_long, ifnet.ifr_mtu is int, and
33841545SHajimu UMEMOTO * nd_ifinfo.linkmtu is u_int32_t.  so we use u_long to hold largest one,
33841545SHajimu UMEMOTO * which is rt_rmx.rmx_mtu.
1272577eSXin LI *
1272577eSXin LI * ifpp - XXX: just for statistics
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inoueint
1272577eSXin LIip6_output(struct mbuf *m0, struct ip6_pktopts *opt,
1272577eSXin LI    struct route_in6 *ro, int flags, struct ip6_moptions *im6o,
1272577eSXin LI    struct ifnet **ifpp, struct inpcb *inp)
82cd038dSYoshinobu Inoue{
8b615593SMarko Zec	INIT_VNET_NET(curvnet);
8b615593SMarko Zec	INIT_VNET_INET6(curvnet);
82cd038dSYoshinobu Inoue	struct ip6_hdr *ip6, *mhip6;
686cdd19SJun-ichiro itojun Hagino	struct ifnet *ifp, *origifp;
82cd038dSYoshinobu Inoue	struct mbuf *m = m0;
2cb64cb2SGeorge V. Neville-Neil	struct mbuf *mprev = NULL;
82cd038dSYoshinobu Inoue	int hlen, tlen, len, off;
82cd038dSYoshinobu Inoue	struct route_in6 ip6route;
a1f7e5f8SHajimu UMEMOTO	struct rtentry *rt = NULL;
a1f7e5f8SHajimu UMEMOTO	struct sockaddr_in6 *dst, src_sa, dst_sa;
8195404bSBrooks Davis	struct in6_addr odst;
82cd038dSYoshinobu Inoue	int error = 0;
5da9f8faSJosef Karthauser	struct in6_ifaddr *ia = NULL;
82cd038dSYoshinobu Inoue	u_long mtu;
f95d4633SHajimu UMEMOTO	int alwaysfrag, dontfrag;
82cd038dSYoshinobu Inoue	u_int32_t optlen = 0, plen = 0, unfragpartlen = 0;
82cd038dSYoshinobu Inoue	struct ip6_exthdrs exthdrs;
a1f7e5f8SHajimu UMEMOTO	struct in6_addr finaldst, src0, dst0;
a1f7e5f8SHajimu UMEMOTO	u_int32_t zone;
82cd038dSYoshinobu Inoue	struct route_in6 *ro_pmtu = NULL;
82cd038dSYoshinobu Inoue	int hdrsplit = 0;
82cd038dSYoshinobu Inoue	int needipsec = 0;
b2630c29SGeorge V. Neville-Neil#ifdef IPSEC
2cb64cb2SGeorge V. Neville-Neil	struct ipsec_output_state state;
2cb64cb2SGeorge V. Neville-Neil	struct ip6_rthdr *rh = NULL;
b9234fafSSam Leffler	int needipsectun = 0;
2cb64cb2SGeorge V. Neville-Neil	int segleft_org = 0;
b9234fafSSam Leffler	struct secpolicy *sp = NULL;
b2630c29SGeorge V. Neville-Neil#endif /* IPSEC */
b9234fafSSam Leffler
b9234fafSSam Leffler	ip6 = mtod(m, struct ip6_hdr *);
2cb64cb2SGeorge V. Neville-Neil	if (ip6 == NULL) {
2cb64cb2SGeorge V. Neville-Neil		printf ("ip6 is NULL");
2cb64cb2SGeorge V. Neville-Neil		goto bad;
2cb64cb2SGeorge V. Neville-Neil	}
82cd038dSYoshinobu Inoue
2cb64cb2SGeorge V. Neville-Neil	finaldst = ip6->ip6_dst;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	bzero(&exthdrs, sizeof(exthdrs));
686cdd19SJun-ichiro itojun Hagino
82cd038dSYoshinobu Inoue	if (opt) {
82cd038dSYoshinobu Inoue		/* Hop-by-Hop options header */
82cd038dSYoshinobu Inoue		MAKE_EXTHDR(opt->ip6po_hbh, &exthdrs.ip6e_hbh);
82cd038dSYoshinobu Inoue		/* Destination options header(1st part) */
29bc2c48SHajimu UMEMOTO		if (opt->ip6po_rthdr) {
29bc2c48SHajimu UMEMOTO			/*
29bc2c48SHajimu UMEMOTO			 * Destination options header(1st part)
2cb64cb2SGeorge V. Neville-Neil			 * This only makes sense with a routing header.
29bc2c48SHajimu UMEMOTO			 * See Section 9.2 of RFC 3542.
29bc2c48SHajimu UMEMOTO			 * Disabling this part just for MIP6 convenience is
29bc2c48SHajimu UMEMOTO			 * a bad idea.  We need to think carefully about a
29bc2c48SHajimu UMEMOTO			 * way to make the advanced API coexist with MIP6
29bc2c48SHajimu UMEMOTO			 * options, which might automatically be inserted in
29bc2c48SHajimu UMEMOTO			 * the kernel.
29bc2c48SHajimu UMEMOTO			 */
82cd038dSYoshinobu Inoue			MAKE_EXTHDR(opt->ip6po_dest1, &exthdrs.ip6e_dest1);
29bc2c48SHajimu UMEMOTO		}
82cd038dSYoshinobu Inoue		/* Routing header */
82cd038dSYoshinobu Inoue		MAKE_EXTHDR(opt->ip6po_rthdr, &exthdrs.ip6e_rthdr);
82cd038dSYoshinobu Inoue		/* Destination options header(2nd part) */
82cd038dSYoshinobu Inoue		MAKE_EXTHDR(opt->ip6po_dest2, &exthdrs.ip6e_dest2);
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
2cb64cb2SGeorge V. Neville-Neil	 * IPSec checking which handles several cases.
2cb64cb2SGeorge V. Neville-Neil	 * FAST IPSEC: We re-injected the packet.
82cd038dSYoshinobu Inoue	 */
b2630c29SGeorge V. Neville-Neil#ifdef IPSEC
2cb64cb2SGeorge V. Neville-Neil	switch(ip6_ipsec_output(&m, inp, &flags, &error, &ifp, &sp))
2cb64cb2SGeorge V. Neville-Neil	{
2cb64cb2SGeorge V. Neville-Neil	case 1:                 /* Bad packet */
b9234fafSSam Leffler		goto freehdrs;
2cb64cb2SGeorge V. Neville-Neil	case -1:                /* Do IPSec */
b9234fafSSam Leffler		needipsec = 1;
2cb64cb2SGeorge V. Neville-Neil	case 0:                 /* No IPSec */
b9234fafSSam Leffler	default:
2cb64cb2SGeorge V. Neville-Neil		break;
b9234fafSSam Leffler	}
b2630c29SGeorge V. Neville-Neil#endif /* IPSEC */
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * Calculate the total length of the extension header chain.
82cd038dSYoshinobu Inoue	 * Keep the length of the unfragmentable part for fragmentation.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	optlen = 0;
2cb64cb2SGeorge V. Neville-Neil	if (exthdrs.ip6e_hbh)
2cb64cb2SGeorge V. Neville-Neil		optlen += exthdrs.ip6e_hbh->m_len;
2cb64cb2SGeorge V. Neville-Neil	if (exthdrs.ip6e_dest1)
2cb64cb2SGeorge V. Neville-Neil		optlen += exthdrs.ip6e_dest1->m_len;
2cb64cb2SGeorge V. Neville-Neil	if (exthdrs.ip6e_rthdr)
2cb64cb2SGeorge V. Neville-Neil		optlen += exthdrs.ip6e_rthdr->m_len;
82cd038dSYoshinobu Inoue	unfragpartlen = optlen + sizeof(struct ip6_hdr);
2cb64cb2SGeorge V. Neville-Neil
82cd038dSYoshinobu Inoue	/* NOTE: we don't add AH/ESP length here. do that later. */
2cb64cb2SGeorge V. Neville-Neil	if (exthdrs.ip6e_dest2)
2cb64cb2SGeorge V. Neville-Neil		optlen += exthdrs.ip6e_dest2->m_len;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * If we need IPsec, or there is at least one extension header,
82cd038dSYoshinobu Inoue	 * separate IP6 header from the payload.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	if ((needipsec || optlen) && !hdrsplit) {
82cd038dSYoshinobu Inoue		if ((error = ip6_splithdr(m, &exthdrs)) != 0) {
82cd038dSYoshinobu Inoue			m = NULL;
82cd038dSYoshinobu Inoue			goto freehdrs;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		m = exthdrs.ip6e_ip6;
82cd038dSYoshinobu Inoue		hdrsplit++;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/* adjust pointer */
82cd038dSYoshinobu Inoue	ip6 = mtod(m, struct ip6_hdr *);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/* adjust mbuf packet header length */
82cd038dSYoshinobu Inoue	m->m_pkthdr.len += optlen;
82cd038dSYoshinobu Inoue	plen = m->m_pkthdr.len - sizeof(*ip6);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/* If this is a jumbo payload, insert a jumbo payload option. */
82cd038dSYoshinobu Inoue	if (plen > IPV6_MAXPACKET) {
82cd038dSYoshinobu Inoue		if (!hdrsplit) {
82cd038dSYoshinobu Inoue			if ((error = ip6_splithdr(m, &exthdrs)) != 0) {
82cd038dSYoshinobu Inoue				m = NULL;
82cd038dSYoshinobu Inoue				goto freehdrs;
82cd038dSYoshinobu Inoue			}
82cd038dSYoshinobu Inoue			m = exthdrs.ip6e_ip6;
82cd038dSYoshinobu Inoue			hdrsplit++;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		/* adjust pointer */
82cd038dSYoshinobu Inoue		ip6 = mtod(m, struct ip6_hdr *);
82cd038dSYoshinobu Inoue		if ((error = ip6_insert_jumboopt(&exthdrs, plen)) != 0)
82cd038dSYoshinobu Inoue			goto freehdrs;
82cd038dSYoshinobu Inoue		ip6->ip6_plen = 0;
82cd038dSYoshinobu Inoue	} else
82cd038dSYoshinobu Inoue		ip6->ip6_plen = htons(plen);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * Concatenate headers and fill in next header fields.
82cd038dSYoshinobu Inoue	 * Here we have, on "m"
82cd038dSYoshinobu Inoue	 *	IPv6 payload
82cd038dSYoshinobu Inoue	 * and we insert headers accordingly.  Finally, we should be getting:
82cd038dSYoshinobu Inoue	 *	IPv6 hbh dest1 rthdr ah* [esp* dest2 payload]
82cd038dSYoshinobu Inoue	 *
82cd038dSYoshinobu Inoue	 * during the header composing process, "m" points to IPv6 header.
82cd038dSYoshinobu Inoue	 * "mprev" points to an extension header prior to esp.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	u_char *nexthdrp = &ip6->ip6_nxt;
2cb64cb2SGeorge V. Neville-Neil	mprev = m;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * we treat dest2 specially.  this makes IPsec processing
88ff5695SSUZUKI Shinsuke	 * much easier.  the goal here is to make mprev point the
88ff5695SSUZUKI Shinsuke	 * mbuf prior to dest2.
82cd038dSYoshinobu Inoue	 *
82cd038dSYoshinobu Inoue	 * result: IPv6 dest2 payload
82cd038dSYoshinobu Inoue	 * m and mprev will point to IPv6 header.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	if (exthdrs.ip6e_dest2) {
82cd038dSYoshinobu Inoue		if (!hdrsplit)
82cd038dSYoshinobu Inoue			panic("assumption failed: hdr not split");
82cd038dSYoshinobu Inoue		exthdrs.ip6e_dest2->m_next = m->m_next;
82cd038dSYoshinobu Inoue		m->m_next = exthdrs.ip6e_dest2;
82cd038dSYoshinobu Inoue		*mtod(exthdrs.ip6e_dest2, u_char *) = ip6->ip6_nxt;
82cd038dSYoshinobu Inoue		ip6->ip6_nxt = IPPROTO_DSTOPTS;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * result: IPv6 hbh dest1 rthdr dest2 payload
82cd038dSYoshinobu Inoue	 * m will point to IPv6 header.  mprev will point to the
82cd038dSYoshinobu Inoue	 * extension header prior to dest2 (rthdr in the above case).
82cd038dSYoshinobu Inoue	 */
7efe5d92SHajimu UMEMOTO	MAKE_CHAIN(exthdrs.ip6e_hbh, mprev, nexthdrp, IPPROTO_HOPOPTS);
7efe5d92SHajimu UMEMOTO	MAKE_CHAIN(exthdrs.ip6e_dest1, mprev, nexthdrp,
7efe5d92SHajimu UMEMOTO		   IPPROTO_DSTOPTS);
7efe5d92SHajimu UMEMOTO	MAKE_CHAIN(exthdrs.ip6e_rthdr, mprev, nexthdrp,
7efe5d92SHajimu UMEMOTO		   IPPROTO_ROUTING);
82cd038dSYoshinobu Inoue
b2630c29SGeorge V. Neville-Neil#ifdef IPSEC
82cd038dSYoshinobu Inoue	if (!needipsec)
82cd038dSYoshinobu Inoue		goto skip_ipsec2;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * pointers after IPsec headers are not valid any more.
82cd038dSYoshinobu Inoue	 * other pointers need a great care too.
82cd038dSYoshinobu Inoue	 * (IPsec routines should not mangle mbufs prior to AH/ESP)
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	exthdrs.ip6e_dest2 = NULL;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if (exthdrs.ip6e_rthdr) {
82cd038dSYoshinobu Inoue		rh = mtod(exthdrs.ip6e_rthdr, struct ip6_rthdr *);
82cd038dSYoshinobu Inoue		segleft_org = rh->ip6r_segleft;
82cd038dSYoshinobu Inoue		rh->ip6r_segleft = 0;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	bzero(&state, sizeof(state));
82cd038dSYoshinobu Inoue	state.m = m;
82cd038dSYoshinobu Inoue	error = ipsec6_output_trans(&state, nexthdrp, mprev, sp, flags,
82cd038dSYoshinobu Inoue				    &needipsectun);
82cd038dSYoshinobu Inoue	m = state.m;
9e3bdedeSBjoern A. Zeeb	if (error == EJUSTRETURN) {
9e3bdedeSBjoern A. Zeeb		/*
9e3bdedeSBjoern A. Zeeb		 * We had a SP with a level of 'use' and no SA. We
9e3bdedeSBjoern A. Zeeb		 * will just continue to process the packet without
9e3bdedeSBjoern A. Zeeb		 * IPsec processing.
9e3bdedeSBjoern A. Zeeb		 */
9e3bdedeSBjoern A. Zeeb		;
9e3bdedeSBjoern A. Zeeb	} else if (error) {
82cd038dSYoshinobu Inoue		/* mbuf is already reclaimed in ipsec6_output_trans. */
82cd038dSYoshinobu Inoue		m = NULL;
82cd038dSYoshinobu Inoue		switch (error) {
82cd038dSYoshinobu Inoue		case EHOSTUNREACH:
82cd038dSYoshinobu Inoue		case ENETUNREACH:
82cd038dSYoshinobu Inoue		case EMSGSIZE:
82cd038dSYoshinobu Inoue		case ENOBUFS:
82cd038dSYoshinobu Inoue		case ENOMEM:
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		default:
41aa71ddSBjoern A. Zeeb			printf("[%s:%d] (ipsec): error code %d\n",
41aa71ddSBjoern A. Zeeb			    __func__, __LINE__, error);
7efe5d92SHajimu UMEMOTO			/* FALLTHROUGH */
82cd038dSYoshinobu Inoue		case ENOENT:
82cd038dSYoshinobu Inoue			/* don't show these error codes to the user */
82cd038dSYoshinobu Inoue			error = 0;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		goto bad;
2cb64cb2SGeorge V. Neville-Neil	} else if (!needipsectun) {
2cb64cb2SGeorge V. Neville-Neil		/*
2cb64cb2SGeorge V. Neville-Neil		 * In the FAST IPSec case we have already
2cb64cb2SGeorge V. Neville-Neil		 * re-injected the packet and it has been freed
2cb64cb2SGeorge V. Neville-Neil		 * by the ipsec_done() function.  So, just clean
2cb64cb2SGeorge V. Neville-Neil		 * up after ourselves.
2cb64cb2SGeorge V. Neville-Neil		 */
2cb64cb2SGeorge V. Neville-Neil		m = NULL;
2cb64cb2SGeorge V. Neville-Neil		goto done;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue	if (exthdrs.ip6e_rthdr) {
82cd038dSYoshinobu Inoue		/* ah6_output doesn't modify mbuf chain */
82cd038dSYoshinobu Inoue		rh->ip6r_segleft = segleft_org;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoueskip_ipsec2:;
b2630c29SGeorge V. Neville-Neil#endif /* IPSEC */
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
7efe5d92SHajimu UMEMOTO	 * If there is a routing header, replace the destination address field
82cd038dSYoshinobu Inoue	 * with the first hop of the routing header.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	if (exthdrs.ip6e_rthdr) {
82cd038dSYoshinobu Inoue		struct ip6_rthdr *rh =
82cd038dSYoshinobu Inoue			(struct ip6_rthdr *)(mtod(exthdrs.ip6e_rthdr,
82cd038dSYoshinobu Inoue						  struct ip6_rthdr *));
82cd038dSYoshinobu Inoue		struct ip6_rthdr0 *rh0;
a1f7e5f8SHajimu UMEMOTO		struct in6_addr *addr;
a1f7e5f8SHajimu UMEMOTO		struct sockaddr_in6 sa;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		switch (rh->ip6r_type) {
82cd038dSYoshinobu Inoue		case IPV6_RTHDR_TYPE_0:
82cd038dSYoshinobu Inoue			 rh0 = (struct ip6_rthdr0 *)rh;
a1f7e5f8SHajimu UMEMOTO			 addr = (struct in6_addr *)(rh0 + 1);
c302f5bcSHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO			 /*
a1f7e5f8SHajimu UMEMOTO			  * construct a sockaddr_in6 form of
a1f7e5f8SHajimu UMEMOTO			  * the first hop.
a1f7e5f8SHajimu UMEMOTO			  *
a1f7e5f8SHajimu UMEMOTO			  * XXX: we may not have enough
a1f7e5f8SHajimu UMEMOTO			  * information about its scope zone;
a1f7e5f8SHajimu UMEMOTO			  * there is no standard API to pass
a1f7e5f8SHajimu UMEMOTO			  * the information from the
a1f7e5f8SHajimu UMEMOTO			  * application.
a1f7e5f8SHajimu UMEMOTO			  */
a1f7e5f8SHajimu UMEMOTO			 bzero(&sa, sizeof(sa));
a1f7e5f8SHajimu UMEMOTO			 sa.sin6_family = AF_INET6;
a1f7e5f8SHajimu UMEMOTO			 sa.sin6_len = sizeof(sa);
a1f7e5f8SHajimu UMEMOTO			 sa.sin6_addr = addr[0];
a1f7e5f8SHajimu UMEMOTO			 if ((error = sa6_embedscope(&sa,
603724d3SBjoern A. Zeeb			     V_ip6_use_defzone)) != 0) {
a1f7e5f8SHajimu UMEMOTO				 goto bad;
a1f7e5f8SHajimu UMEMOTO			 }
a1f7e5f8SHajimu UMEMOTO			 ip6->ip6_dst = sa.sin6_addr;
a1f7e5f8SHajimu UMEMOTO			 bcopy(&addr[1], &addr[0], sizeof(struct in6_addr)
a1f7e5f8SHajimu UMEMOTO			     * (rh0->ip6r0_segleft - 1));
a1f7e5f8SHajimu UMEMOTO			 addr[rh0->ip6r0_segleft - 1] = finaldst;
a1f7e5f8SHajimu UMEMOTO			 /* XXX */
a1f7e5f8SHajimu UMEMOTO			 in6_clearscope(addr + rh0->ip6r0_segleft - 1);
82cd038dSYoshinobu Inoue			 break;
82cd038dSYoshinobu Inoue		default:	/* is it possible? */
82cd038dSYoshinobu Inoue			 error = EINVAL;
82cd038dSYoshinobu Inoue			 goto bad;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/* Source address validation */
82cd038dSYoshinobu Inoue	if (IN6_IS_ADDR_UNSPECIFIED(&ip6->ip6_src) &&
4ecbe331SSUZUKI Shinsuke	    (flags & IPV6_UNSPECSRC) == 0) {
82cd038dSYoshinobu Inoue		error = EOPNOTSUPP;
603724d3SBjoern A. Zeeb		V_ip6stat.ip6s_badscope++;
82cd038dSYoshinobu Inoue		goto bad;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue	if (IN6_IS_ADDR_MULTICAST(&ip6->ip6_src)) {
82cd038dSYoshinobu Inoue		error = EOPNOTSUPP;
603724d3SBjoern A. Zeeb		V_ip6stat.ip6s_badscope++;
82cd038dSYoshinobu Inoue		goto bad;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
603724d3SBjoern A. Zeeb	V_ip6stat.ip6s_localout++;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * Route packet.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	if (ro == 0) {
82cd038dSYoshinobu Inoue		ro = &ip6route;
82cd038dSYoshinobu Inoue		bzero((caddr_t)ro, sizeof(*ro));
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue	ro_pmtu = ro;
82cd038dSYoshinobu Inoue	if (opt && opt->ip6po_rthdr)
82cd038dSYoshinobu Inoue		ro = &opt->ip6po_route;
82cd038dSYoshinobu Inoue	dst = (struct sockaddr_in6 *)&ro->ro_dst;
7efe5d92SHajimu UMEMOTO
8195404bSBrooks Davisagain:
82cd038dSYoshinobu Inoue	/*
f95d4633SHajimu UMEMOTO	 * if specified, try to fill in the traffic class field.
f95d4633SHajimu UMEMOTO	 * do not override if a non-zero value is already set.
f95d4633SHajimu UMEMOTO	 * we check the diffserv field and the ecn field separately.
f95d4633SHajimu UMEMOTO	 */
f95d4633SHajimu UMEMOTO	if (opt && opt->ip6po_tclass >= 0) {
f95d4633SHajimu UMEMOTO		int mask = 0;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if ((ip6->ip6_flow & htonl(0xfc << 20)) == 0)
f95d4633SHajimu UMEMOTO			mask |= 0xfc;
f95d4633SHajimu UMEMOTO		if ((ip6->ip6_flow & htonl(0x03 << 20)) == 0)
f95d4633SHajimu UMEMOTO			mask |= 0x03;
f95d4633SHajimu UMEMOTO		if (mask != 0)
f95d4633SHajimu UMEMOTO			ip6->ip6_flow |= htonl((opt->ip6po_tclass & mask) << 20);
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	/* fill in or override the hop limit field, if necessary. */
f95d4633SHajimu UMEMOTO	if (opt && opt->ip6po_hlim != -1)
f95d4633SHajimu UMEMOTO		ip6->ip6_hlim = opt->ip6po_hlim & 0xff;
f95d4633SHajimu UMEMOTO	else if (IN6_IS_ADDR_MULTICAST(&ip6->ip6_dst)) {
f95d4633SHajimu UMEMOTO		if (im6o != NULL)
f95d4633SHajimu UMEMOTO			ip6->ip6_hlim = im6o->im6o_multicast_hlim;
f95d4633SHajimu UMEMOTO		else
603724d3SBjoern A. Zeeb			ip6->ip6_hlim = V_ip6_defmcasthlim;
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO
b2630c29SGeorge V. Neville-Neil#ifdef IPSEC
2cb64cb2SGeorge V. Neville-Neil	/*
b2630c29SGeorge V. Neville-Neil	 * We may re-inject packets into the stack here.
2cb64cb2SGeorge V. Neville-Neil	 */
82cd038dSYoshinobu Inoue	if (needipsec && needipsectun) {
82cd038dSYoshinobu Inoue		struct ipsec_output_state state;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * All the extension headers will become inaccessible
82cd038dSYoshinobu Inoue		 * (since they can be encrypted).
82cd038dSYoshinobu Inoue		 * Don't panic, we need no more updates to extension headers
82cd038dSYoshinobu Inoue		 * on inner IPv6 packet (since they are now encapsulated).
82cd038dSYoshinobu Inoue		 *
82cd038dSYoshinobu Inoue		 * IPv6 [ESP|AH] IPv6 [extension headers] payload
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		bzero(&exthdrs, sizeof(exthdrs));
82cd038dSYoshinobu Inoue		exthdrs.ip6e_ip6 = m;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		bzero(&state, sizeof(state));
82cd038dSYoshinobu Inoue		state.m = m;
82cd038dSYoshinobu Inoue		state.ro = (struct route *)ro;
82cd038dSYoshinobu Inoue		state.dst = (struct sockaddr *)dst;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		error = ipsec6_output_tunnel(&state, sp, flags);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		m = state.m;
82cd038dSYoshinobu Inoue		ro = (struct route_in6 *)state.ro;
82cd038dSYoshinobu Inoue		dst = (struct sockaddr_in6 *)state.dst;
9e3bdedeSBjoern A. Zeeb		if (error == EJUSTRETURN) {
9e3bdedeSBjoern A. Zeeb			/*
9e3bdedeSBjoern A. Zeeb			 * We had a SP with a level of 'use' and no SA. We
9e3bdedeSBjoern A. Zeeb			 * will just continue to process the packet without
9e3bdedeSBjoern A. Zeeb			 * IPsec processing.
9e3bdedeSBjoern A. Zeeb			 */
9e3bdedeSBjoern A. Zeeb			;
9e3bdedeSBjoern A. Zeeb		} else if (error) {
82cd038dSYoshinobu Inoue			/* mbuf is already reclaimed in ipsec6_output_tunnel. */
82cd038dSYoshinobu Inoue			m0 = m = NULL;
82cd038dSYoshinobu Inoue			m = NULL;
82cd038dSYoshinobu Inoue			switch (error) {
82cd038dSYoshinobu Inoue			case EHOSTUNREACH:
82cd038dSYoshinobu Inoue			case ENETUNREACH:
82cd038dSYoshinobu Inoue			case EMSGSIZE:
82cd038dSYoshinobu Inoue			case ENOBUFS:
82cd038dSYoshinobu Inoue			case ENOMEM:
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue			default:
41aa71ddSBjoern A. Zeeb				printf("[%s:%d] (ipsec): error code %d\n",
41aa71ddSBjoern A. Zeeb				    __func__, __LINE__, error);
7efe5d92SHajimu UMEMOTO				/* FALLTHROUGH */
82cd038dSYoshinobu Inoue			case ENOENT:
82cd038dSYoshinobu Inoue				/* don't show these error codes to the user */
82cd038dSYoshinobu Inoue				error = 0;
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue			}
82cd038dSYoshinobu Inoue			goto bad;
2cb64cb2SGeorge V. Neville-Neil		} else {
2cb64cb2SGeorge V. Neville-Neil			/*
2cb64cb2SGeorge V. Neville-Neil			 * In the FAST IPSec case we have already
2cb64cb2SGeorge V. Neville-Neil			 * re-injected the packet and it has been freed
2cb64cb2SGeorge V. Neville-Neil			 * by the ipsec_done() function.  So, just clean
2cb64cb2SGeorge V. Neville-Neil			 * up after ourselves.
2cb64cb2SGeorge V. Neville-Neil			 */
2cb64cb2SGeorge V. Neville-Neil			m = NULL;
2cb64cb2SGeorge V. Neville-Neil			goto done;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		exthdrs.ip6e_ip6 = m;
82cd038dSYoshinobu Inoue	}
b2630c29SGeorge V. Neville-Neil#endif /* IPSEC */
82cd038dSYoshinobu Inoue
a1f7e5f8SHajimu UMEMOTO	/* adjust pointer */
a1f7e5f8SHajimu UMEMOTO	ip6 = mtod(m, struct ip6_hdr *);
82cd038dSYoshinobu Inoue
a1f7e5f8SHajimu UMEMOTO	bzero(&dst_sa, sizeof(dst_sa));
a1f7e5f8SHajimu UMEMOTO	dst_sa.sin6_family = AF_INET6;
a1f7e5f8SHajimu UMEMOTO	dst_sa.sin6_len = sizeof(dst_sa);
a1f7e5f8SHajimu UMEMOTO	dst_sa.sin6_addr = ip6->ip6_dst;
a1f7e5f8SHajimu UMEMOTO	if ((error = in6_selectroute(&dst_sa, opt, im6o, ro,
a1f7e5f8SHajimu UMEMOTO	    &ifp, &rt, 0)) != 0) {
a1f7e5f8SHajimu UMEMOTO		switch (error) {
a1f7e5f8SHajimu UMEMOTO		case EHOSTUNREACH:
603724d3SBjoern A. Zeeb			V_ip6stat.ip6s_noroute++;
a1f7e5f8SHajimu UMEMOTO			break;
a1f7e5f8SHajimu UMEMOTO		case EADDRNOTAVAIL:
a1f7e5f8SHajimu UMEMOTO		default:
a1f7e5f8SHajimu UMEMOTO			break; /* XXX statistics? */
82cd038dSYoshinobu Inoue		}
a1f7e5f8SHajimu UMEMOTO		if (ifp != NULL)
82cd038dSYoshinobu Inoue			in6_ifstat_inc(ifp, ifs6_out_discard);
82cd038dSYoshinobu Inoue		goto bad;
82cd038dSYoshinobu Inoue	}
a1f7e5f8SHajimu UMEMOTO	if (rt == NULL) {
a1f7e5f8SHajimu UMEMOTO		/*
a1f7e5f8SHajimu UMEMOTO		 * If in6_selectroute() does not return a route entry,
a1f7e5f8SHajimu UMEMOTO		 * dst may not have been updated.
a1f7e5f8SHajimu UMEMOTO		 */
a1f7e5f8SHajimu UMEMOTO		*dst = dst_sa;	/* XXX */
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
a1f7e5f8SHajimu UMEMOTO	/*
a1f7e5f8SHajimu UMEMOTO	 * then rt (for unicast) and ifp must be non-NULL valid values.
a1f7e5f8SHajimu UMEMOTO	 */
a1f7e5f8SHajimu UMEMOTO	if ((flags & IPV6_FORWARDING) == 0) {
a1f7e5f8SHajimu UMEMOTO		/* XXX: the FORWARDING flag can be set for mrouting. */
a1f7e5f8SHajimu UMEMOTO		in6_ifstat_inc(ifp, ifs6_out_request);
a1f7e5f8SHajimu UMEMOTO	}
a1f7e5f8SHajimu UMEMOTO	if (rt != NULL) {
a1f7e5f8SHajimu UMEMOTO		ia = (struct in6_ifaddr *)(rt->rt_ifa);
a1f7e5f8SHajimu UMEMOTO		rt->rt_use++;
a1f7e5f8SHajimu UMEMOTO	}
a1f7e5f8SHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO	/*
a1f7e5f8SHajimu UMEMOTO	 * The outgoing interface must be in the zone of source and
a1f7e5f8SHajimu UMEMOTO	 * destination addresses.  We should use ia_ifp to support the
a1f7e5f8SHajimu UMEMOTO	 * case of sending packets to an address of our own.
a1f7e5f8SHajimu UMEMOTO	 */
a1f7e5f8SHajimu UMEMOTO	if (ia != NULL && ia->ia_ifp)
a1f7e5f8SHajimu UMEMOTO		origifp = ia->ia_ifp;
a1f7e5f8SHajimu UMEMOTO	else
a1f7e5f8SHajimu UMEMOTO		origifp = ifp;
a1f7e5f8SHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO	src0 = ip6->ip6_src;
a1f7e5f8SHajimu UMEMOTO	if (in6_setscope(&src0, origifp, &zone))
a1f7e5f8SHajimu UMEMOTO		goto badscope;
a1f7e5f8SHajimu UMEMOTO	bzero(&src_sa, sizeof(src_sa));
a1f7e5f8SHajimu UMEMOTO	src_sa.sin6_family = AF_INET6;
a1f7e5f8SHajimu UMEMOTO	src_sa.sin6_len = sizeof(src_sa);
a1f7e5f8SHajimu UMEMOTO	src_sa.sin6_addr = ip6->ip6_src;
a1f7e5f8SHajimu UMEMOTO	if (sa6_recoverscope(&src_sa) || zone != src_sa.sin6_scope_id)
a1f7e5f8SHajimu UMEMOTO		goto badscope;
a1f7e5f8SHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO	dst0 = ip6->ip6_dst;
a1f7e5f8SHajimu UMEMOTO	if (in6_setscope(&dst0, origifp, &zone))
a1f7e5f8SHajimu UMEMOTO		goto badscope;
a1f7e5f8SHajimu UMEMOTO	/* re-initialize to be sure */
a1f7e5f8SHajimu UMEMOTO	bzero(&dst_sa, sizeof(dst_sa));
a1f7e5f8SHajimu UMEMOTO	dst_sa.sin6_family = AF_INET6;
a1f7e5f8SHajimu UMEMOTO	dst_sa.sin6_len = sizeof(dst_sa);
a1f7e5f8SHajimu UMEMOTO	dst_sa.sin6_addr = ip6->ip6_dst;
a1f7e5f8SHajimu UMEMOTO	if (sa6_recoverscope(&dst_sa) || zone != dst_sa.sin6_scope_id) {
a1f7e5f8SHajimu UMEMOTO		goto badscope;
a1f7e5f8SHajimu UMEMOTO	}
a1f7e5f8SHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO	/* scope check is done. */
a1f7e5f8SHajimu UMEMOTO	goto routefound;
a1f7e5f8SHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO  badscope:
603724d3SBjoern A. Zeeb	V_ip6stat.ip6s_badscope++;
a1f7e5f8SHajimu UMEMOTO	in6_ifstat_inc(origifp, ifs6_out_discard);
a1f7e5f8SHajimu UMEMOTO	if (error == 0)
a1f7e5f8SHajimu UMEMOTO		error = EHOSTUNREACH; /* XXX */
a1f7e5f8SHajimu UMEMOTO	goto bad;
a1f7e5f8SHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO  routefound:
a1f7e5f8SHajimu UMEMOTO	if (rt && !IN6_IS_ADDR_MULTICAST(&ip6->ip6_dst)) {
a1f7e5f8SHajimu UMEMOTO		if (opt && opt->ip6po_nextroute.ro_rt) {
a1f7e5f8SHajimu UMEMOTO			/*
a1f7e5f8SHajimu UMEMOTO			 * The nexthop is explicitly specified by the
a1f7e5f8SHajimu UMEMOTO			 * application.  We assume the next hop is an IPv6
a1f7e5f8SHajimu UMEMOTO			 * address.
a1f7e5f8SHajimu UMEMOTO			 */
a1f7e5f8SHajimu UMEMOTO			dst = (struct sockaddr_in6 *)opt->ip6po_nexthop;
a1f7e5f8SHajimu UMEMOTO		}
a1f7e5f8SHajimu UMEMOTO		else if ((rt->rt_flags & RTF_GATEWAY))
a1f7e5f8SHajimu UMEMOTO			dst = (struct sockaddr_in6 *)rt->rt_gateway;
a1f7e5f8SHajimu UMEMOTO	}
a1f7e5f8SHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO	if (!IN6_IS_ADDR_MULTICAST(&ip6->ip6_dst)) {
a1f7e5f8SHajimu UMEMOTO		m->m_flags &= ~(M_BCAST | M_MCAST); /* just in case */
82cd038dSYoshinobu Inoue	} else {
82cd038dSYoshinobu Inoue		struct	in6_multi *in6m;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		m->m_flags = (m->m_flags & ~M_BCAST) | M_MCAST;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		in6_ifstat_inc(ifp, ifs6_out_mcast);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Confirm that the outgoing interface supports multicast.
82cd038dSYoshinobu Inoue		 */
a1f7e5f8SHajimu UMEMOTO		if (!(ifp->if_flags & IFF_MULTICAST)) {
603724d3SBjoern A. Zeeb			V_ip6stat.ip6s_noroute++;
82cd038dSYoshinobu Inoue			in6_ifstat_inc(ifp, ifs6_out_discard);
82cd038dSYoshinobu Inoue			error = ENETUNREACH;
82cd038dSYoshinobu Inoue			goto bad;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		IN6_LOOKUP_MULTI(ip6->ip6_dst, ifp, in6m);
82cd038dSYoshinobu Inoue		if (in6m != NULL &&
82cd038dSYoshinobu Inoue		   (im6o == NULL || im6o->im6o_multicast_loop)) {
82cd038dSYoshinobu Inoue			/*
82cd038dSYoshinobu Inoue			 * If we belong to the destination multicast group
82cd038dSYoshinobu Inoue			 * on the outgoing interface, and the caller did not
82cd038dSYoshinobu Inoue			 * forbid loopback, loop back a copy.
82cd038dSYoshinobu Inoue			 */
82cd038dSYoshinobu Inoue			ip6_mloopback(ifp, m, dst);
91ec0a1eSYoshinobu Inoue		} else {
91ec0a1eSYoshinobu Inoue			/*
91ec0a1eSYoshinobu Inoue			 * If we are acting as a multicast router, perform
91ec0a1eSYoshinobu Inoue			 * multicast forwarding as if the packet had just
91ec0a1eSYoshinobu Inoue			 * arrived on the interface to which we are about
91ec0a1eSYoshinobu Inoue			 * to send.  The multicast forwarding function
91ec0a1eSYoshinobu Inoue			 * recursively calls this function, using the
91ec0a1eSYoshinobu Inoue			 * IPV6_FORWARDING flag to prevent infinite recursion.
91ec0a1eSYoshinobu Inoue			 *
91ec0a1eSYoshinobu Inoue			 * Multicasts that are looped back by ip6_mloopback(),
91ec0a1eSYoshinobu Inoue			 * above, will be forwarded by the ip6_input() routine,
91ec0a1eSYoshinobu Inoue			 * if necessary.
91ec0a1eSYoshinobu Inoue			 */
91ec0a1eSYoshinobu Inoue			if (ip6_mrouter && (flags & IPV6_FORWARDING) == 0) {
a1f7e5f8SHajimu UMEMOTO				/*
a1f7e5f8SHajimu UMEMOTO				 * XXX: ip6_mforward expects that rcvif is NULL
a1f7e5f8SHajimu UMEMOTO				 * when it is called from the originating path.
a1f7e5f8SHajimu UMEMOTO				 * However, it is not always the case, since
a1f7e5f8SHajimu UMEMOTO				 * some versions of MGETHDR() does not
a1f7e5f8SHajimu UMEMOTO				 * initialize the field.
a1f7e5f8SHajimu UMEMOTO				 */
a1f7e5f8SHajimu UMEMOTO				m->m_pkthdr.rcvif = NULL;
686cdd19SJun-ichiro itojun Hagino				if (ip6_mforward(ip6, ifp, m) != 0) {
91ec0a1eSYoshinobu Inoue					m_freem(m);
91ec0a1eSYoshinobu Inoue					goto done;
91ec0a1eSYoshinobu Inoue				}
91ec0a1eSYoshinobu Inoue			}
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Multicasts with a hoplimit of zero may be looped back,
82cd038dSYoshinobu Inoue		 * above, but must not be transmitted on a network.
82cd038dSYoshinobu Inoue		 * Also, multicasts addressed to the loopback interface
82cd038dSYoshinobu Inoue		 * are not sent -- the above call to ip6_mloopback() will
82cd038dSYoshinobu Inoue		 * loop back a copy if this host actually belongs to the
82cd038dSYoshinobu Inoue		 * destination group on the loopback interface.
82cd038dSYoshinobu Inoue		 */
f95d4633SHajimu UMEMOTO		if (ip6->ip6_hlim == 0 || (ifp->if_flags & IFF_LOOPBACK) ||
f95d4633SHajimu UMEMOTO		    IN6_IS_ADDR_MC_INTFACELOCAL(&ip6->ip6_dst)) {
82cd038dSYoshinobu Inoue			m_freem(m);
82cd038dSYoshinobu Inoue			goto done;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * Fill the outgoing inteface to tell the upper layer
82cd038dSYoshinobu Inoue	 * to increment per-interface statistics.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	if (ifpp)
82cd038dSYoshinobu Inoue		*ifpp = ifp;
82cd038dSYoshinobu Inoue
31b3783cSHajimu UMEMOTO	/* Determine path MTU. */
f95d4633SHajimu UMEMOTO	if ((error = ip6_getpmtu(ro_pmtu, ro, ifp, &finaldst, &mtu,
f95d4633SHajimu UMEMOTO	    &alwaysfrag)) != 0)
31b3783cSHajimu UMEMOTO		goto bad;
82cd038dSYoshinobu Inoue
33841545SHajimu UMEMOTO	/*
8b00e59dSHajimu UMEMOTO	 * The caller of this function may specify to use the minimum MTU
8b00e59dSHajimu UMEMOTO	 * in some cases.
8b00e59dSHajimu UMEMOTO	 * An advanced API option (IPV6_USE_MIN_MTU) can also override MTU
8b00e59dSHajimu UMEMOTO	 * setting.  The logic is a bit complicated; by default, unicast
8b00e59dSHajimu UMEMOTO	 * packets will follow path MTU while multicast packets will be sent at
8b00e59dSHajimu UMEMOTO	 * the minimum MTU.  If IP6PO_MINMTU_ALL is specified, all packets
8b00e59dSHajimu UMEMOTO	 * including unicast ones will be sent at the minimum MTU.  Multicast
8b00e59dSHajimu UMEMOTO	 * packets will always be sent at the minimum MTU unless
8b00e59dSHajimu UMEMOTO	 * IP6PO_MINMTU_DISABLE is explicitly specified.
8b00e59dSHajimu UMEMOTO	 * See RFC 3542 for more details.
33841545SHajimu UMEMOTO	 */
8b00e59dSHajimu UMEMOTO	if (mtu > IPV6_MMTU) {
8b00e59dSHajimu UMEMOTO		if ((flags & IPV6_MINMTU))
33841545SHajimu UMEMOTO			mtu = IPV6_MMTU;
8b00e59dSHajimu UMEMOTO		else if (opt && opt->ip6po_minmtu == IP6PO_MINMTU_ALL)
8b00e59dSHajimu UMEMOTO			mtu = IPV6_MMTU;
8b00e59dSHajimu UMEMOTO		else if (IN6_IS_ADDR_MULTICAST(&ip6->ip6_dst) &&
8b00e59dSHajimu UMEMOTO			 (opt == NULL ||
8b00e59dSHajimu UMEMOTO			  opt->ip6po_minmtu != IP6PO_MINMTU_DISABLE)) {
8b00e59dSHajimu UMEMOTO			mtu = IPV6_MMTU;
8b00e59dSHajimu UMEMOTO		}
8b00e59dSHajimu UMEMOTO	}
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTO	/*
33841545SHajimu UMEMOTO	 * clear embedded scope identifiers if necessary.
33841545SHajimu UMEMOTO	 * in6_clearscope will touch the addresses only when necessary.
33841545SHajimu UMEMOTO	 */
33841545SHajimu UMEMOTO	in6_clearscope(&ip6->ip6_src);
33841545SHajimu UMEMOTO	in6_clearscope(&ip6->ip6_dst);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * If the outgoing packet contains a hop-by-hop options header,
82cd038dSYoshinobu Inoue	 * it must be examined and processed even by the source node.
82cd038dSYoshinobu Inoue	 * (RFC 2460, section 4.)
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	if (exthdrs.ip6e_hbh) {
33841545SHajimu UMEMOTO		struct ip6_hbh *hbh = mtod(exthdrs.ip6e_hbh, struct ip6_hbh *);
283f9f8aSHajimu UMEMOTO		u_int32_t dummy; /* XXX unused */
283f9f8aSHajimu UMEMOTO		u_int32_t plen = 0; /* XXX: ip6_process will check the value */
82cd038dSYoshinobu Inoue
33841545SHajimu UMEMOTO#ifdef DIAGNOSTIC
33841545SHajimu UMEMOTO		if ((hbh->ip6h_len + 1) << 3 > exthdrs.ip6e_hbh->m_len)
33841545SHajimu UMEMOTO			panic("ip6e_hbh is not continuous");
33841545SHajimu UMEMOTO#endif
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 *  XXX: if we have to send an ICMPv6 error to the sender,
82cd038dSYoshinobu Inoue		 *       we need the M_LOOP flag since icmp6_error() expects
82cd038dSYoshinobu Inoue		 *       the IPv6 and the hop-by-hop options header are
82cd038dSYoshinobu Inoue		 *       continuous unless the flag is set.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		m->m_flags |= M_LOOP;
82cd038dSYoshinobu Inoue		m->m_pkthdr.rcvif = ifp;
7efe5d92SHajimu UMEMOTO		if (ip6_process_hopopts(m, (u_int8_t *)(hbh + 1),
7efe5d92SHajimu UMEMOTO		    ((hbh->ip6h_len + 1) << 3) - sizeof(struct ip6_hbh),
283f9f8aSHajimu UMEMOTO		    &dummy, &plen) < 0) {
82cd038dSYoshinobu Inoue			/* m was already freed at this point */
82cd038dSYoshinobu Inoue			error = EINVAL;/* better error? */
82cd038dSYoshinobu Inoue			goto done;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		m->m_flags &= ~M_LOOP; /* XXX */
82cd038dSYoshinobu Inoue		m->m_pkthdr.rcvif = NULL;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
c21fd232SAndre Oppermann	/* Jump over all PFIL processing if hooks are not active. */
604afec4SChristian S.J. Peron	if (!PFIL_HOOKED(&inet6_pfil_hook))
c21fd232SAndre Oppermann		goto passout;
c21fd232SAndre Oppermann
8195404bSBrooks Davis	odst = ip6->ip6_dst;
c21fd232SAndre Oppermann	/* Run through list of hooks for output packets. */
d6a8d588SMax Laier	error = pfil_run_hooks(&inet6_pfil_hook, &m, ifp, PFIL_OUT, inp);
b140bc1fSSam Leffler	if (error != 0 || m == NULL)
c4ac87eaSDarren Reed		goto done;
c4ac87eaSDarren Reed	ip6 = mtod(m, struct ip6_hdr *);
7efe5d92SHajimu UMEMOTO
8195404bSBrooks Davis	/* See if destination IP address was changed by packet filter. */
8195404bSBrooks Davis	if (!IN6_ARE_ADDR_EQUAL(&odst, &ip6->ip6_dst)) {
8195404bSBrooks Davis		m->m_flags |= M_SKIP_FIREWALL;
8195404bSBrooks Davis		/* If destination is now ourself drop to ip6_input(). */
8195404bSBrooks Davis		if (in6_localaddr(&ip6->ip6_dst)) {
8195404bSBrooks Davis			if (m->m_pkthdr.rcvif == NULL)
603724d3SBjoern A. Zeeb				m->m_pkthdr.rcvif = V_loif;
8195404bSBrooks Davis			if (m->m_pkthdr.csum_flags & CSUM_DELAY_DATA) {
8195404bSBrooks Davis				m->m_pkthdr.csum_flags |=
8195404bSBrooks Davis				    CSUM_DATA_VALID | CSUM_PSEUDO_HDR;
8195404bSBrooks Davis				m->m_pkthdr.csum_data = 0xffff;
8195404bSBrooks Davis			}
8195404bSBrooks Davis			m->m_pkthdr.csum_flags |=
8195404bSBrooks Davis			    CSUM_IP_CHECKED | CSUM_IP_VALID;
8195404bSBrooks Davis			error = netisr_queue(NETISR_IPV6, m);
8195404bSBrooks Davis			goto done;
8195404bSBrooks Davis		} else
8195404bSBrooks Davis			goto again;	/* Redo the routing table lookup. */
8195404bSBrooks Davis	}
8195404bSBrooks Davis
8195404bSBrooks Davis	/* XXX: IPFIREWALL_FORWARD */
8195404bSBrooks Davis
c21fd232SAndre Oppermannpassout:
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * Send the packet to the outgoing interface.
82cd038dSYoshinobu Inoue	 * If necessary, do IPv6 fragmentation before sending.
f95d4633SHajimu UMEMOTO	 *
f95d4633SHajimu UMEMOTO	 * the logic here is rather complex:
f95d4633SHajimu UMEMOTO	 * 1: normal case (dontfrag == 0, alwaysfrag == 0)
f95d4633SHajimu UMEMOTO	 * 1-a:	send as is if tlen <= path mtu
f95d4633SHajimu UMEMOTO	 * 1-b:	fragment if tlen > path mtu
f95d4633SHajimu UMEMOTO	 *
f95d4633SHajimu UMEMOTO	 * 2: if user asks us not to fragment (dontfrag == 1)
f95d4633SHajimu UMEMOTO	 * 2-a:	send as is if tlen <= interface mtu
f95d4633SHajimu UMEMOTO	 * 2-b:	error if tlen > interface mtu
f95d4633SHajimu UMEMOTO	 *
f95d4633SHajimu UMEMOTO	 * 3: if we always need to attach fragment header (alwaysfrag == 1)
f95d4633SHajimu UMEMOTO	 *	always fragment
f95d4633SHajimu UMEMOTO	 *
f95d4633SHajimu UMEMOTO	 * 4: if dontfrag == 1 && alwaysfrag == 1
f95d4633SHajimu UMEMOTO	 *	error, as we cannot handle this conflicting request
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	tlen = m->m_pkthdr.len;
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO	if (opt && (opt->ip6po_flags & IP6PO_DONTFRAG))
f95d4633SHajimu UMEMOTO		dontfrag = 1;
f95d4633SHajimu UMEMOTO	else
f95d4633SHajimu UMEMOTO		dontfrag = 0;
f95d4633SHajimu UMEMOTO	if (dontfrag && alwaysfrag) {	/* case 4 */
f95d4633SHajimu UMEMOTO		/* conflicting request - can't transmit */
f95d4633SHajimu UMEMOTO		error = EMSGSIZE;
f95d4633SHajimu UMEMOTO		goto bad;
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO	if (dontfrag && tlen > IN6_LINKMTU(ifp)) {	/* case 2-b */
f95d4633SHajimu UMEMOTO		/*
f95d4633SHajimu UMEMOTO		 * Even if the DONTFRAG option is specified, we cannot send the
f95d4633SHajimu UMEMOTO		 * packet when the data length is larger than the MTU of the
f95d4633SHajimu UMEMOTO		 * outgoing interface.
f95d4633SHajimu UMEMOTO		 * Notify the error by sending IPV6_PATHMTU ancillary data as
f95d4633SHajimu UMEMOTO		 * well as returning an error code (the latter is not described
f95d4633SHajimu UMEMOTO		 * in the API spec.)
f95d4633SHajimu UMEMOTO		 */
f95d4633SHajimu UMEMOTO		u_int32_t mtu32;
f95d4633SHajimu UMEMOTO		struct ip6ctlparam ip6cp;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		mtu32 = (u_int32_t)mtu;
f95d4633SHajimu UMEMOTO		bzero(&ip6cp, sizeof(ip6cp));
f95d4633SHajimu UMEMOTO		ip6cp.ip6c_cmdarg = (void *)&mtu32;
f95d4633SHajimu UMEMOTO		pfctlinput2(PRC_MSGSIZE, (struct sockaddr *)&ro_pmtu->ro_dst,
f95d4633SHajimu UMEMOTO		    (void *)&ip6cp);
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		error = EMSGSIZE;
f95d4633SHajimu UMEMOTO		goto bad;
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	/*
f95d4633SHajimu UMEMOTO	 * transmit packet without fragmentation
f95d4633SHajimu UMEMOTO	 */
f95d4633SHajimu UMEMOTO	if (dontfrag || (!alwaysfrag && tlen <= mtu)) {	/* case 1-a and 2-a */
f95d4633SHajimu UMEMOTO		struct in6_ifaddr *ia6;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		ip6 = mtod(m, struct ip6_hdr *);
f95d4633SHajimu UMEMOTO		ia6 = in6_ifawithifp(ifp, &ip6->ip6_src);
f95d4633SHajimu UMEMOTO		if (ia6) {
5da9f8faSJosef Karthauser			/* Record statistics for this interface address. */
f95d4633SHajimu UMEMOTO			ia6->ia_ifa.if_opackets++;
f95d4633SHajimu UMEMOTO			ia6->ia_ifa.if_obytes += m->m_pkthdr.len;
5da9f8faSJosef Karthauser		}
686cdd19SJun-ichiro itojun Hagino		error = nd6_output(ifp, origifp, m, dst, ro->ro_rt);
82cd038dSYoshinobu Inoue		goto done;
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO
82cd038dSYoshinobu Inoue	/*
f95d4633SHajimu UMEMOTO	 * try to fragment the packet.  case 1-b and 3
82cd038dSYoshinobu Inoue	 */
f95d4633SHajimu UMEMOTO	if (mtu < IPV6_MMTU) {
f95d4633SHajimu UMEMOTO		/* path MTU cannot be less than IPV6_MMTU */
82cd038dSYoshinobu Inoue		error = EMSGSIZE;
82cd038dSYoshinobu Inoue		in6_ifstat_inc(ifp, ifs6_out_fragfail);
82cd038dSYoshinobu Inoue		goto bad;
7efe5d92SHajimu UMEMOTO	} else if (ip6->ip6_plen == 0) {
7efe5d92SHajimu UMEMOTO		/* jumbo payload cannot be fragmented */
82cd038dSYoshinobu Inoue		error = EMSGSIZE;
82cd038dSYoshinobu Inoue		in6_ifstat_inc(ifp, ifs6_out_fragfail);
82cd038dSYoshinobu Inoue		goto bad;
82cd038dSYoshinobu Inoue	} else {
82cd038dSYoshinobu Inoue		struct mbuf **mnext, *m_frgpart;
82cd038dSYoshinobu Inoue		struct ip6_frag *ip6f;
8373d51dSHajimu UMEMOTO		u_int32_t id = htonl(ip6_randomid());
82cd038dSYoshinobu Inoue		u_char nextproto;
2cb64cb2SGeorge V. Neville-Neil
6f8aee22SBill Paul		int qslots = ifp->if_snd.ifq_maxlen - ifp->if_snd.ifq_len;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Too large for the destination or interface;
82cd038dSYoshinobu Inoue		 * fragment if possible.
82cd038dSYoshinobu Inoue		 * Must be able to put at least 8 bytes per fragment.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		hlen = unfragpartlen;
82cd038dSYoshinobu Inoue		if (mtu > IPV6_MAXPACKET)
82cd038dSYoshinobu Inoue			mtu = IPV6_MAXPACKET;
33841545SHajimu UMEMOTO
82cd038dSYoshinobu Inoue		len = (mtu - hlen - sizeof(struct ip6_frag)) & ~7;
82cd038dSYoshinobu Inoue		if (len < 8) {
82cd038dSYoshinobu Inoue			error = EMSGSIZE;
82cd038dSYoshinobu Inoue			in6_ifstat_inc(ifp, ifs6_out_fragfail);
82cd038dSYoshinobu Inoue			goto bad;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue
6f8aee22SBill Paul		/*
6f8aee22SBill Paul		 * Verify that we have any chance at all of being able to queue
6f8aee22SBill Paul		 *      the packet or packet fragments
6f8aee22SBill Paul		 */
6f8aee22SBill Paul		if (qslots <= 0 || ((u_int)qslots * (mtu - hlen)
6f8aee22SBill Paul		    < tlen  /* - hlen */)) {
6f8aee22SBill Paul			error = ENOBUFS;
603724d3SBjoern A. Zeeb			V_ip6stat.ip6s_odropped++;
6f8aee22SBill Paul			goto bad;
6f8aee22SBill Paul		}
6f8aee22SBill Paul
82cd038dSYoshinobu Inoue		mnext = &m->m_nextpkt;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Change the next header field of the last header in the
82cd038dSYoshinobu Inoue		 * unfragmentable part.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		if (exthdrs.ip6e_rthdr) {
82cd038dSYoshinobu Inoue			nextproto = *mtod(exthdrs.ip6e_rthdr, u_char *);
82cd038dSYoshinobu Inoue			*mtod(exthdrs.ip6e_rthdr, u_char *) = IPPROTO_FRAGMENT;
82cd038dSYoshinobu Inoue		} else if (exthdrs.ip6e_dest1) {
82cd038dSYoshinobu Inoue			nextproto = *mtod(exthdrs.ip6e_dest1, u_char *);
82cd038dSYoshinobu Inoue			*mtod(exthdrs.ip6e_dest1, u_char *) = IPPROTO_FRAGMENT;
82cd038dSYoshinobu Inoue		} else if (exthdrs.ip6e_hbh) {
82cd038dSYoshinobu Inoue			nextproto = *mtod(exthdrs.ip6e_hbh, u_char *);
82cd038dSYoshinobu Inoue			*mtod(exthdrs.ip6e_hbh, u_char *) = IPPROTO_FRAGMENT;
82cd038dSYoshinobu Inoue		} else {
82cd038dSYoshinobu Inoue			nextproto = ip6->ip6_nxt;
82cd038dSYoshinobu Inoue			ip6->ip6_nxt = IPPROTO_FRAGMENT;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Loop through length of segment after first fragment,
88ff5695SSUZUKI Shinsuke		 * make new header and copy data of each part and link onto
88ff5695SSUZUKI Shinsuke		 * chain.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		m0 = m;
82cd038dSYoshinobu Inoue		for (off = hlen; off < tlen; off += len) {
a163d034SWarner Losh			MGETHDR(m, M_DONTWAIT, MT_HEADER);
82cd038dSYoshinobu Inoue			if (!m) {
82cd038dSYoshinobu Inoue				error = ENOBUFS;
603724d3SBjoern A. Zeeb				V_ip6stat.ip6s_odropped++;
82cd038dSYoshinobu Inoue				goto sendorfree;
82cd038dSYoshinobu Inoue			}
33841545SHajimu UMEMOTO			m->m_pkthdr.rcvif = NULL;
82cd038dSYoshinobu Inoue			m->m_flags = m0->m_flags & M_COPYFLAGS;
82cd038dSYoshinobu Inoue			*mnext = m;
82cd038dSYoshinobu Inoue			mnext = &m->m_nextpkt;
82cd038dSYoshinobu Inoue			m->m_data += max_linkhdr;
82cd038dSYoshinobu Inoue			mhip6 = mtod(m, struct ip6_hdr *);
82cd038dSYoshinobu Inoue			*mhip6 = *ip6;
82cd038dSYoshinobu Inoue			m->m_len = sizeof(*mhip6);
82cd038dSYoshinobu Inoue			error = ip6_insertfraghdr(m0, m, hlen, &ip6f);
82cd038dSYoshinobu Inoue			if (error) {
603724d3SBjoern A. Zeeb				V_ip6stat.ip6s_odropped++;
82cd038dSYoshinobu Inoue				goto sendorfree;
82cd038dSYoshinobu Inoue			}
82cd038dSYoshinobu Inoue			ip6f->ip6f_offlg = htons((u_short)((off - hlen) & ~7));
82cd038dSYoshinobu Inoue			if (off + len >= tlen)
82cd038dSYoshinobu Inoue				len = tlen - off;
82cd038dSYoshinobu Inoue			else
82cd038dSYoshinobu Inoue				ip6f->ip6f_offlg |= IP6F_MORE_FRAG;
82cd038dSYoshinobu Inoue			mhip6->ip6_plen = htons((u_short)(len + hlen +
7efe5d92SHajimu UMEMOTO			    sizeof(*ip6f) - sizeof(struct ip6_hdr)));
82cd038dSYoshinobu Inoue			if ((m_frgpart = m_copy(m0, off, len)) == 0) {
82cd038dSYoshinobu Inoue				error = ENOBUFS;
603724d3SBjoern A. Zeeb				V_ip6stat.ip6s_odropped++;
82cd038dSYoshinobu Inoue				goto sendorfree;
82cd038dSYoshinobu Inoue			}
82cd038dSYoshinobu Inoue			m_cat(m, m_frgpart);
82cd038dSYoshinobu Inoue			m->m_pkthdr.len = len + hlen + sizeof(*ip6f);
fc74a9f9SBrooks Davis			m->m_pkthdr.rcvif = NULL;
82cd038dSYoshinobu Inoue			ip6f->ip6f_reserved = 0;
82cd038dSYoshinobu Inoue			ip6f->ip6f_ident = id;
82cd038dSYoshinobu Inoue			ip6f->ip6f_nxt = nextproto;
603724d3SBjoern A. Zeeb			V_ip6stat.ip6s_ofragments++;
82cd038dSYoshinobu Inoue			in6_ifstat_inc(ifp, ifs6_out_fragcreat);
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		in6_ifstat_inc(ifp, ifs6_out_fragok);
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * Remove leading garbages.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inouesendorfree:
82cd038dSYoshinobu Inoue	m = m0->m_nextpkt;
82cd038dSYoshinobu Inoue	m0->m_nextpkt = 0;
82cd038dSYoshinobu Inoue	m_freem(m0);
82cd038dSYoshinobu Inoue	for (m0 = m; m; m = m0) {
82cd038dSYoshinobu Inoue		m0 = m->m_nextpkt;
82cd038dSYoshinobu Inoue		m->m_nextpkt = 0;
82cd038dSYoshinobu Inoue		if (error == 0) {
fe937674SJosef Karthauser			/* Record statistics for this interface address. */
fe937674SJosef Karthauser			if (ia) {
fe937674SJosef Karthauser				ia->ia_ifa.if_opackets++;
fe937674SJosef Karthauser				ia->ia_ifa.if_obytes += m->m_pkthdr.len;
fe937674SJosef Karthauser			}
686cdd19SJun-ichiro itojun Hagino			error = nd6_output(ifp, origifp, m, dst, ro->ro_rt);
82cd038dSYoshinobu Inoue		} else
82cd038dSYoshinobu Inoue			m_freem(m);
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if (error == 0)
603724d3SBjoern A. Zeeb		V_ip6stat.ip6s_fragmented++;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inouedone:
82cd038dSYoshinobu Inoue	if (ro == &ip6route && ro->ro_rt) { /* brace necessary for RTFREE */
82cd038dSYoshinobu Inoue		RTFREE(ro->ro_rt);
82cd038dSYoshinobu Inoue	} else if (ro_pmtu == &ip6route && ro_pmtu->ro_rt) {
82cd038dSYoshinobu Inoue		RTFREE(ro_pmtu->ro_rt);
82cd038dSYoshinobu Inoue	}
8cfbd299SBjoern A. Zeeb#ifdef IPSEC
8cfbd299SBjoern A. Zeeb	if (sp != NULL)
8cfbd299SBjoern A. Zeeb		KEY_FREESP(&sp);
8cfbd299SBjoern A. Zeeb#endif
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	return (error);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inouefreehdrs:
82cd038dSYoshinobu Inoue	m_freem(exthdrs.ip6e_hbh);	/* m_freem will check if mbuf is 0 */
82cd038dSYoshinobu Inoue	m_freem(exthdrs.ip6e_dest1);
82cd038dSYoshinobu Inoue	m_freem(exthdrs.ip6e_rthdr);
82cd038dSYoshinobu Inoue	m_freem(exthdrs.ip6e_dest2);
7efe5d92SHajimu UMEMOTO	/* FALLTHROUGH */
82cd038dSYoshinobu Inouebad:
2cb64cb2SGeorge V. Neville-Neil	if (m)
82cd038dSYoshinobu Inoue		m_freem(m);
82cd038dSYoshinobu Inoue	goto done;
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inouestatic int
1272577eSXin LIip6_copyexthdr(struct mbuf **mp, caddr_t hdr, int hlen)
82cd038dSYoshinobu Inoue{
82cd038dSYoshinobu Inoue	struct mbuf *m;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if (hlen > MCLBYTES)
82cd038dSYoshinobu Inoue		return (ENOBUFS); /* XXX */
82cd038dSYoshinobu Inoue
a163d034SWarner Losh	MGET(m, M_DONTWAIT, MT_DATA);
82cd038dSYoshinobu Inoue	if (!m)
82cd038dSYoshinobu Inoue		return (ENOBUFS);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if (hlen > MLEN) {
a163d034SWarner Losh		MCLGET(m, M_DONTWAIT);
82cd038dSYoshinobu Inoue		if ((m->m_flags & M_EXT) == 0) {
82cd038dSYoshinobu Inoue			m_free(m);
82cd038dSYoshinobu Inoue			return (ENOBUFS);
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue	m->m_len = hlen;
82cd038dSYoshinobu Inoue	if (hdr)
82cd038dSYoshinobu Inoue		bcopy(hdr, mtod(m, caddr_t), hlen);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	*mp = m;
82cd038dSYoshinobu Inoue	return (0);
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue/*
82cd038dSYoshinobu Inoue * Insert jumbo payload option.
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inouestatic int
1272577eSXin LIip6_insert_jumboopt(struct ip6_exthdrs *exthdrs, u_int32_t plen)
82cd038dSYoshinobu Inoue{
82cd038dSYoshinobu Inoue	struct mbuf *mopt;
82cd038dSYoshinobu Inoue	u_char *optbuf;
33841545SHajimu UMEMOTO	u_int32_t v;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue#define JUMBOOPTLEN	8	/* length of jumbo payload option and padding */
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * If there is no hop-by-hop options header, allocate new one.
82cd038dSYoshinobu Inoue	 * If there is one but it doesn't have enough space to store the
82cd038dSYoshinobu Inoue	 * jumbo payload option, allocate a cluster to store the whole options.
82cd038dSYoshinobu Inoue	 * Otherwise, use it to store the options.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	if (exthdrs->ip6e_hbh == 0) {
a163d034SWarner Losh		MGET(mopt, M_DONTWAIT, MT_DATA);
82cd038dSYoshinobu Inoue		if (mopt == 0)
82cd038dSYoshinobu Inoue			return (ENOBUFS);
82cd038dSYoshinobu Inoue		mopt->m_len = JUMBOOPTLEN;
82cd038dSYoshinobu Inoue		optbuf = mtod(mopt, u_char *);
82cd038dSYoshinobu Inoue		optbuf[1] = 0;	/* = ((JUMBOOPTLEN) >> 3) - 1 */
82cd038dSYoshinobu Inoue		exthdrs->ip6e_hbh = mopt;
82cd038dSYoshinobu Inoue	} else {
82cd038dSYoshinobu Inoue		struct ip6_hbh *hbh;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		mopt = exthdrs->ip6e_hbh;
82cd038dSYoshinobu Inoue		if (M_TRAILINGSPACE(mopt) < JUMBOOPTLEN) {
33841545SHajimu UMEMOTO			/*
33841545SHajimu UMEMOTO			 * XXX assumption:
33841545SHajimu UMEMOTO			 * - exthdrs->ip6e_hbh is not referenced from places
33841545SHajimu UMEMOTO			 *   other than exthdrs.
33841545SHajimu UMEMOTO			 * - exthdrs->ip6e_hbh is not an mbuf chain.
33841545SHajimu UMEMOTO			 */
82cd038dSYoshinobu Inoue			int oldoptlen = mopt->m_len;
33841545SHajimu UMEMOTO			struct mbuf *n;
82cd038dSYoshinobu Inoue
33841545SHajimu UMEMOTO			/*
33841545SHajimu UMEMOTO			 * XXX: give up if the whole (new) hbh header does
33841545SHajimu UMEMOTO			 * not fit even in an mbuf cluster.
33841545SHajimu UMEMOTO			 */
33841545SHajimu UMEMOTO			if (oldoptlen + JUMBOOPTLEN > MCLBYTES)
82cd038dSYoshinobu Inoue				return (ENOBUFS);
82cd038dSYoshinobu Inoue
33841545SHajimu UMEMOTO			/*
33841545SHajimu UMEMOTO			 * As a consequence, we must always prepare a cluster
33841545SHajimu UMEMOTO			 * at this point.
33841545SHajimu UMEMOTO			 */
a163d034SWarner Losh			MGET(n, M_DONTWAIT, MT_DATA);
33841545SHajimu UMEMOTO			if (n) {
a163d034SWarner Losh				MCLGET(n, M_DONTWAIT);
33841545SHajimu UMEMOTO				if ((n->m_flags & M_EXT) == 0) {
33841545SHajimu UMEMOTO					m_freem(n);
33841545SHajimu UMEMOTO					n = NULL;
33841545SHajimu UMEMOTO				}
33841545SHajimu UMEMOTO			}
33841545SHajimu UMEMOTO			if (!n)
33841545SHajimu UMEMOTO				return (ENOBUFS);
33841545SHajimu UMEMOTO			n->m_len = oldoptlen + JUMBOOPTLEN;
33841545SHajimu UMEMOTO			bcopy(mtod(mopt, caddr_t), mtod(n, caddr_t),
33841545SHajimu UMEMOTO			    oldoptlen);
33841545SHajimu UMEMOTO			optbuf = mtod(n, caddr_t) + oldoptlen;
33841545SHajimu UMEMOTO			m_freem(mopt);
33841545SHajimu UMEMOTO			mopt = exthdrs->ip6e_hbh = n;
82cd038dSYoshinobu Inoue		} else {
82cd038dSYoshinobu Inoue			optbuf = mtod(mopt, u_char *) + mopt->m_len;
82cd038dSYoshinobu Inoue			mopt->m_len += JUMBOOPTLEN;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		optbuf[0] = IP6OPT_PADN;
82cd038dSYoshinobu Inoue		optbuf[1] = 1;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Adjust the header length according to the pad and
82cd038dSYoshinobu Inoue		 * the jumbo payload option.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		hbh = mtod(mopt, struct ip6_hbh *);
82cd038dSYoshinobu Inoue		hbh->ip6h_len += (JUMBOOPTLEN >> 3);
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/* fill in the option. */
82cd038dSYoshinobu Inoue	optbuf[2] = IP6OPT_JUMBO;
82cd038dSYoshinobu Inoue	optbuf[3] = 4;
33841545SHajimu UMEMOTO	v = (u_int32_t)htonl(plen + JUMBOOPTLEN);
33841545SHajimu UMEMOTO	bcopy(&v, &optbuf[4], sizeof(u_int32_t));
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/* finally, adjust the packet header length */
82cd038dSYoshinobu Inoue	exthdrs->ip6e_ip6->m_pkthdr.len += JUMBOOPTLEN;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	return (0);
82cd038dSYoshinobu Inoue#undef JUMBOOPTLEN
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue/*
82cd038dSYoshinobu Inoue * Insert fragment header and copy unfragmentable header portions.
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inouestatic int
1272577eSXin LIip6_insertfraghdr(struct mbuf *m0, struct mbuf *m, int hlen,
1272577eSXin LI    struct ip6_frag **frghdrp)
82cd038dSYoshinobu Inoue{
82cd038dSYoshinobu Inoue	struct mbuf *n, *mlast;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if (hlen > sizeof(struct ip6_hdr)) {
82cd038dSYoshinobu Inoue		n = m_copym(m0, sizeof(struct ip6_hdr),
a163d034SWarner Losh		    hlen - sizeof(struct ip6_hdr), M_DONTWAIT);
82cd038dSYoshinobu Inoue		if (n == 0)
82cd038dSYoshinobu Inoue			return (ENOBUFS);
82cd038dSYoshinobu Inoue		m->m_next = n;
82cd038dSYoshinobu Inoue	} else
82cd038dSYoshinobu Inoue		n = m;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/* Search for the last mbuf of unfragmentable part. */
82cd038dSYoshinobu Inoue	for (mlast = n; mlast->m_next; mlast = mlast->m_next)
82cd038dSYoshinobu Inoue		;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if ((mlast->m_flags & M_EXT) == 0 &&
686cdd19SJun-ichiro itojun Hagino	    M_TRAILINGSPACE(mlast) >= sizeof(struct ip6_frag)) {
82cd038dSYoshinobu Inoue		/* use the trailing space of the last mbuf for the fragment hdr */
7efe5d92SHajimu UMEMOTO		*frghdrp = (struct ip6_frag *)(mtod(mlast, caddr_t) +
7efe5d92SHajimu UMEMOTO		    mlast->m_len);
82cd038dSYoshinobu Inoue		mlast->m_len += sizeof(struct ip6_frag);
82cd038dSYoshinobu Inoue		m->m_pkthdr.len += sizeof(struct ip6_frag);
82cd038dSYoshinobu Inoue	} else {
82cd038dSYoshinobu Inoue		/* allocate a new mbuf for the fragment header */
82cd038dSYoshinobu Inoue		struct mbuf *mfrg;
82cd038dSYoshinobu Inoue
a163d034SWarner Losh		MGET(mfrg, M_DONTWAIT, MT_DATA);
82cd038dSYoshinobu Inoue		if (mfrg == 0)
82cd038dSYoshinobu Inoue			return (ENOBUFS);
82cd038dSYoshinobu Inoue		mfrg->m_len = sizeof(struct ip6_frag);
82cd038dSYoshinobu Inoue		*frghdrp = mtod(mfrg, struct ip6_frag *);
82cd038dSYoshinobu Inoue		mlast->m_next = mfrg;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	return (0);
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
31b3783cSHajimu UMEMOTOstatic int
1272577eSXin LIip6_getpmtu(struct route_in6 *ro_pmtu, struct route_in6 *ro,
1272577eSXin LI    struct ifnet *ifp, struct in6_addr *dst, u_long *mtup,
1272577eSXin LI    int *alwaysfragp)
31b3783cSHajimu UMEMOTO{
31b3783cSHajimu UMEMOTO	u_int32_t mtu = 0;
f95d4633SHajimu UMEMOTO	int alwaysfrag = 0;
31b3783cSHajimu UMEMOTO	int error = 0;
31b3783cSHajimu UMEMOTO
31b3783cSHajimu UMEMOTO	if (ro_pmtu != ro) {
31b3783cSHajimu UMEMOTO		/* The first hop and the final destination may differ. */
31b3783cSHajimu UMEMOTO		struct sockaddr_in6 *sa6_dst =
31b3783cSHajimu UMEMOTO		    (struct sockaddr_in6 *)&ro_pmtu->ro_dst;
31b3783cSHajimu UMEMOTO		if (ro_pmtu->ro_rt &&
e5f467a2SHajimu UMEMOTO		    ((ro_pmtu->ro_rt->rt_flags & RTF_UP) == 0 ||
31b3783cSHajimu UMEMOTO		     !IN6_ARE_ADDR_EQUAL(&sa6_dst->sin6_addr, dst))) {
31b3783cSHajimu UMEMOTO			RTFREE(ro_pmtu->ro_rt);
31b3783cSHajimu UMEMOTO			ro_pmtu->ro_rt = (struct rtentry *)NULL;
31b3783cSHajimu UMEMOTO		}
31b3783cSHajimu UMEMOTO		if (ro_pmtu->ro_rt == NULL) {
31b3783cSHajimu UMEMOTO			bzero(sa6_dst, sizeof(*sa6_dst));
31b3783cSHajimu UMEMOTO			sa6_dst->sin6_family = AF_INET6;
31b3783cSHajimu UMEMOTO			sa6_dst->sin6_len = sizeof(struct sockaddr_in6);
31b3783cSHajimu UMEMOTO			sa6_dst->sin6_addr = *dst;
31b3783cSHajimu UMEMOTO
31b3783cSHajimu UMEMOTO			rtalloc((struct route *)ro_pmtu);
31b3783cSHajimu UMEMOTO		}
31b3783cSHajimu UMEMOTO	}
31b3783cSHajimu UMEMOTO	if (ro_pmtu->ro_rt) {
31b3783cSHajimu UMEMOTO		u_int32_t ifmtu;
97d8d152SAndre Oppermann		struct in_conninfo inc;
97d8d152SAndre Oppermann
97d8d152SAndre Oppermann		bzero(&inc, sizeof(inc));
97d8d152SAndre Oppermann		inc.inc_flags = 1; /* IPv6 */
97d8d152SAndre Oppermann		inc.inc6_faddr = *dst;
31b3783cSHajimu UMEMOTO
31b3783cSHajimu UMEMOTO		if (ifp == NULL)
31b3783cSHajimu UMEMOTO			ifp = ro_pmtu->ro_rt->rt_ifp;
31b3783cSHajimu UMEMOTO		ifmtu = IN6_LINKMTU(ifp);
97d8d152SAndre Oppermann		mtu = tcp_hc_getmtu(&inc);
97d8d152SAndre Oppermann		if (mtu)
97d8d152SAndre Oppermann			mtu = min(mtu, ro_pmtu->ro_rt->rt_rmx.rmx_mtu);
97d8d152SAndre Oppermann		else
31b3783cSHajimu UMEMOTO			mtu = ro_pmtu->ro_rt->rt_rmx.rmx_mtu;
31b3783cSHajimu UMEMOTO		if (mtu == 0)
31b3783cSHajimu UMEMOTO			mtu = ifmtu;
f95d4633SHajimu UMEMOTO		else if (mtu < IPV6_MMTU) {
f95d4633SHajimu UMEMOTO			/*
f95d4633SHajimu UMEMOTO			 * RFC2460 section 5, last paragraph:
f95d4633SHajimu UMEMOTO			 * if we record ICMPv6 too big message with
f95d4633SHajimu UMEMOTO			 * mtu < IPV6_MMTU, transmit packets sized IPV6_MMTU
f95d4633SHajimu UMEMOTO			 * or smaller, with framgent header attached.
f95d4633SHajimu UMEMOTO			 * (fragment header is needed regardless from the
f95d4633SHajimu UMEMOTO			 * packet size, for translators to identify packets)
f95d4633SHajimu UMEMOTO			 */
f95d4633SHajimu UMEMOTO			alwaysfrag = 1;
f95d4633SHajimu UMEMOTO			mtu = IPV6_MMTU;
f95d4633SHajimu UMEMOTO		} else if (mtu > ifmtu) {
31b3783cSHajimu UMEMOTO			/*
31b3783cSHajimu UMEMOTO			 * The MTU on the route is larger than the MTU on
31b3783cSHajimu UMEMOTO			 * the interface!  This shouldn't happen, unless the
31b3783cSHajimu UMEMOTO			 * MTU of the interface has been changed after the
31b3783cSHajimu UMEMOTO			 * interface was brought up.  Change the MTU in the
31b3783cSHajimu UMEMOTO			 * route to match the interface MTU (as long as the
31b3783cSHajimu UMEMOTO			 * field isn't locked).
31b3783cSHajimu UMEMOTO			 */
31b3783cSHajimu UMEMOTO			mtu = ifmtu;
31b3783cSHajimu UMEMOTO			ro_pmtu->ro_rt->rt_rmx.rmx_mtu = mtu;
31b3783cSHajimu UMEMOTO		}
31b3783cSHajimu UMEMOTO	} else if (ifp) {
31b3783cSHajimu UMEMOTO		mtu = IN6_LINKMTU(ifp);
31b3783cSHajimu UMEMOTO	} else
31b3783cSHajimu UMEMOTO		error = EHOSTUNREACH; /* XXX */
31b3783cSHajimu UMEMOTO
31b3783cSHajimu UMEMOTO	*mtup = mtu;
f95d4633SHajimu UMEMOTO	if (alwaysfragp)
f95d4633SHajimu UMEMOTO		*alwaysfragp = alwaysfrag;
31b3783cSHajimu UMEMOTO	return (error);
31b3783cSHajimu UMEMOTO}
31b3783cSHajimu UMEMOTO
82cd038dSYoshinobu Inoue/*
82cd038dSYoshinobu Inoue * IP6 socket option processing.
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inoueint
1272577eSXin LIip6_ctloutput(struct socket *so, struct sockopt *sopt)
82cd038dSYoshinobu Inoue{
79ba3952SBjoern A. Zeeb	int optdatalen, uproto;
f95d4633SHajimu UMEMOTO	void *optdata;
33841545SHajimu UMEMOTO	struct inpcb *in6p = sotoinpcb(so);
82cd038dSYoshinobu Inoue	int error, optval;
82cd038dSYoshinobu Inoue	int level, op, optname;
82cd038dSYoshinobu Inoue	int optlen;
b40ce416SJulian Elischer	struct thread *td;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	level = sopt->sopt_level;
82cd038dSYoshinobu Inoue	op = sopt->sopt_dir;
82cd038dSYoshinobu Inoue	optname = sopt->sopt_name;
82cd038dSYoshinobu Inoue	optlen = sopt->sopt_valsize;
b40ce416SJulian Elischer	td = sopt->sopt_td;
cc29ac7dSRobert Watson	error = 0;
cc29ac7dSRobert Watson	optval = 0;
f95d4633SHajimu UMEMOTO	uproto = (int)so->so_proto->pr_protocol;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if (level == IPPROTO_IPV6) {
82cd038dSYoshinobu Inoue		switch (op) {
33841545SHajimu UMEMOTO
82cd038dSYoshinobu Inoue		case SOPT_SET:
82cd038dSYoshinobu Inoue			switch (optname) {
f95d4633SHajimu UMEMOTO			case IPV6_2292PKTOPTIONS:
f95d4633SHajimu UMEMOTO#ifdef IPV6_PKTOPTIONS
82cd038dSYoshinobu Inoue			case IPV6_PKTOPTIONS:
f95d4633SHajimu UMEMOTO#endif
82cd038dSYoshinobu Inoue			{
82cd038dSYoshinobu Inoue				struct mbuf *m;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue				error = soopt_getm(sopt, &m); /* XXX */
a89ec05eSPeter Wemm				if (error != 0)
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue				error = soopt_mcopyin(sopt, m); /* XXX */
a89ec05eSPeter Wemm				if (error != 0)
82cd038dSYoshinobu Inoue					break;
33841545SHajimu UMEMOTO				error = ip6_pcbopts(&in6p->in6p_outputopts,
33841545SHajimu UMEMOTO						    m, so, sopt);
33841545SHajimu UMEMOTO				m_freem(m); /* XXX */
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue			}
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTO			/*
33841545SHajimu UMEMOTO			 * Use of some Hop-by-Hop options or some
33841545SHajimu UMEMOTO			 * Destination options, might require special
33841545SHajimu UMEMOTO			 * privilege.  That is, normal applications
33841545SHajimu UMEMOTO			 * (without special privilege) might be forbidden
33841545SHajimu UMEMOTO			 * from setting certain options in outgoing packets,
33841545SHajimu UMEMOTO			 * and might never see certain options in received
33841545SHajimu UMEMOTO			 * packets. [RFC 2292 Section 6]
33841545SHajimu UMEMOTO			 * KAME specific note:
33841545SHajimu UMEMOTO			 *  KAME prevents non-privileged users from sending or
33841545SHajimu UMEMOTO			 *  receiving ANY hbh/dst options in order to avoid
33841545SHajimu UMEMOTO			 *  overhead of parsing options in the kernel.
33841545SHajimu UMEMOTO			 */
f95d4633SHajimu UMEMOTO			case IPV6_RECVHOPOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_RECVDSTOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_RECVRTHDRDSTOPTS:
79ba3952SBjoern A. Zeeb				if (td != NULL) {
79ba3952SBjoern A. Zeeb					error = priv_check(td,
79ba3952SBjoern A. Zeeb					    PRIV_NETINET_SETHDROPTS);
79ba3952SBjoern A. Zeeb					if (error)
f95d4633SHajimu UMEMOTO						break;
f95d4633SHajimu UMEMOTO				}
f95d4633SHajimu UMEMOTO				/* FALLTHROUGH */
82cd038dSYoshinobu Inoue			case IPV6_UNICAST_HOPS:
f95d4633SHajimu UMEMOTO			case IPV6_HOPLIMIT:
82cd038dSYoshinobu Inoue			case IPV6_FAITH:
33841545SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO			case IPV6_RECVPKTINFO:
f95d4633SHajimu UMEMOTO			case IPV6_RECVHOPLIMIT:
f95d4633SHajimu UMEMOTO			case IPV6_RECVRTHDR:
f95d4633SHajimu UMEMOTO			case IPV6_RECVPATHMTU:
f95d4633SHajimu UMEMOTO			case IPV6_RECVTCLASS:
33841545SHajimu UMEMOTO			case IPV6_V6ONLY:
f95d4633SHajimu UMEMOTO			case IPV6_AUTOFLOWLABEL:
33841545SHajimu UMEMOTO				if (optlen != sizeof(int)) {
82cd038dSYoshinobu Inoue					error = EINVAL;
33841545SHajimu UMEMOTO					break;
33841545SHajimu UMEMOTO				}
82cd038dSYoshinobu Inoue				error = sooptcopyin(sopt, &optval,
82cd038dSYoshinobu Inoue					sizeof optval, sizeof optval);
82cd038dSYoshinobu Inoue				if (error)
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue				switch (optname) {
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue				case IPV6_UNICAST_HOPS:
82cd038dSYoshinobu Inoue					if (optval < -1 || optval >= 256)
82cd038dSYoshinobu Inoue						error = EINVAL;
82cd038dSYoshinobu Inoue					else {
82cd038dSYoshinobu Inoue						/* -1 = kernel default */
82cd038dSYoshinobu Inoue						in6p->in6p_hops = optval;
82cd038dSYoshinobu Inoue						if ((in6p->in6p_vflag &
82cd038dSYoshinobu Inoue						     INP_IPV4) != 0)
82cd038dSYoshinobu Inoue							in6p->inp_ip_ttl = optval;
82cd038dSYoshinobu Inoue					}
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue#define OPTSET(bit) \
33841545SHajimu UMEMOTOdo { \
82cd038dSYoshinobu Inoue	if (optval) \
33841545SHajimu UMEMOTO		in6p->in6p_flags |= (bit); \
82cd038dSYoshinobu Inoue	else \
33841545SHajimu UMEMOTO		in6p->in6p_flags &= ~(bit); \
7efe5d92SHajimu UMEMOTO} while (/*CONSTCOND*/ 0)
f95d4633SHajimu UMEMOTO#define OPTSET2292(bit) \
f95d4633SHajimu UMEMOTOdo { \
f95d4633SHajimu UMEMOTO	in6p->in6p_flags |= IN6P_RFC2292; \
f95d4633SHajimu UMEMOTO	if (optval) \
f95d4633SHajimu UMEMOTO		in6p->in6p_flags |= (bit); \
f95d4633SHajimu UMEMOTO	else \
f95d4633SHajimu UMEMOTO		in6p->in6p_flags &= ~(bit); \
f95d4633SHajimu UMEMOTO} while (/*CONSTCOND*/ 0)
33841545SHajimu UMEMOTO#define OPTBIT(bit) (in6p->in6p_flags & (bit) ? 1 : 0)
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO				case IPV6_RECVPKTINFO:
f95d4633SHajimu UMEMOTO					/* cannot mix with RFC2292 */
f95d4633SHajimu UMEMOTO					if (OPTBIT(IN6P_RFC2292)) {
f95d4633SHajimu UMEMOTO						error = EINVAL;
f95d4633SHajimu UMEMOTO						break;
f95d4633SHajimu UMEMOTO					}
f95d4633SHajimu UMEMOTO					OPTSET(IN6P_PKTINFO);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_HOPLIMIT:
f95d4633SHajimu UMEMOTO				{
f95d4633SHajimu UMEMOTO					struct ip6_pktopts **optp;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO					/* cannot mix with RFC2292 */
f95d4633SHajimu UMEMOTO					if (OPTBIT(IN6P_RFC2292)) {
f95d4633SHajimu UMEMOTO						error = EINVAL;
f95d4633SHajimu UMEMOTO						break;
f95d4633SHajimu UMEMOTO					}
f95d4633SHajimu UMEMOTO					optp = &in6p->in6p_outputopts;
f95d4633SHajimu UMEMOTO					error = ip6_pcbopt(IPV6_HOPLIMIT,
79ba3952SBjoern A. Zeeb					    (u_char *)&optval, sizeof(optval),
79ba3952SBjoern A. Zeeb					    optp, (td != NULL) ? td->td_ucred :
79ba3952SBjoern A. Zeeb					    NULL, uproto);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_RECVHOPLIMIT:
f95d4633SHajimu UMEMOTO					/* cannot mix with RFC2292 */
f95d4633SHajimu UMEMOTO					if (OPTBIT(IN6P_RFC2292)) {
f95d4633SHajimu UMEMOTO						error = EINVAL;
f95d4633SHajimu UMEMOTO						break;
f95d4633SHajimu UMEMOTO					}
f95d4633SHajimu UMEMOTO					OPTSET(IN6P_HOPLIMIT);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_RECVHOPOPTS:
f95d4633SHajimu UMEMOTO					/* cannot mix with RFC2292 */
f95d4633SHajimu UMEMOTO					if (OPTBIT(IN6P_RFC2292)) {
f95d4633SHajimu UMEMOTO						error = EINVAL;
f95d4633SHajimu UMEMOTO						break;
f95d4633SHajimu UMEMOTO					}
f95d4633SHajimu UMEMOTO					OPTSET(IN6P_HOPOPTS);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_RECVDSTOPTS:
f95d4633SHajimu UMEMOTO					/* cannot mix with RFC2292 */
f95d4633SHajimu UMEMOTO					if (OPTBIT(IN6P_RFC2292)) {
f95d4633SHajimu UMEMOTO						error = EINVAL;
f95d4633SHajimu UMEMOTO						break;
f95d4633SHajimu UMEMOTO					}
f95d4633SHajimu UMEMOTO					OPTSET(IN6P_DSTOPTS);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_RECVRTHDRDSTOPTS:
f95d4633SHajimu UMEMOTO					/* cannot mix with RFC2292 */
f95d4633SHajimu UMEMOTO					if (OPTBIT(IN6P_RFC2292)) {
f95d4633SHajimu UMEMOTO						error = EINVAL;
f95d4633SHajimu UMEMOTO						break;
f95d4633SHajimu UMEMOTO					}
f95d4633SHajimu UMEMOTO					OPTSET(IN6P_RTHDRDSTOPTS);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_RECVRTHDR:
f95d4633SHajimu UMEMOTO					/* cannot mix with RFC2292 */
f95d4633SHajimu UMEMOTO					if (OPTBIT(IN6P_RFC2292)) {
f95d4633SHajimu UMEMOTO						error = EINVAL;
f95d4633SHajimu UMEMOTO						break;
f95d4633SHajimu UMEMOTO					}
f95d4633SHajimu UMEMOTO					OPTSET(IN6P_RTHDR);
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue				case IPV6_FAITH:
82cd038dSYoshinobu Inoue					OPTSET(IN6P_FAITH);
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO				case IPV6_RECVPATHMTU:
f95d4633SHajimu UMEMOTO					/*
f95d4633SHajimu UMEMOTO					 * We ignore this option for TCP
f95d4633SHajimu UMEMOTO					 * sockets.
18b35df8SHajimu UMEMOTO					 * (RFC3542 leaves this case
f95d4633SHajimu UMEMOTO					 * unspecified.)
f95d4633SHajimu UMEMOTO					 */
f95d4633SHajimu UMEMOTO					if (uproto != IPPROTO_TCP)
f95d4633SHajimu UMEMOTO						OPTSET(IN6P_MTU);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
33841545SHajimu UMEMOTO				case IPV6_V6ONLY:
33841545SHajimu UMEMOTO					/*
0554093bSHajimu UMEMOTO					 * make setsockopt(IPV6_V6ONLY)
0554093bSHajimu UMEMOTO					 * available only prior to bind(2).
0554093bSHajimu UMEMOTO					 * see ipng mailing list, Jun 22 2001.
0554093bSHajimu UMEMOTO					 */
0554093bSHajimu UMEMOTO					if (in6p->in6p_lport ||
7efe5d92SHajimu UMEMOTO					    !IN6_IS_ADDR_UNSPECIFIED(&in6p->in6p_laddr)) {
0554093bSHajimu UMEMOTO						error = EINVAL;
0554093bSHajimu UMEMOTO						break;
0554093bSHajimu UMEMOTO					}
33841545SHajimu UMEMOTO					OPTSET(IN6P_IPV6_V6ONLY);
12253795SHajimu UMEMOTO					if (optval)
12253795SHajimu UMEMOTO						in6p->in6p_vflag &= ~INP_IPV4;
12253795SHajimu UMEMOTO					else
12253795SHajimu UMEMOTO						in6p->in6p_vflag |= INP_IPV4;
82cd038dSYoshinobu Inoue					break;
f95d4633SHajimu UMEMOTO				case IPV6_RECVTCLASS:
f95d4633SHajimu UMEMOTO					/* cannot mix with RFC2292 XXX */
f95d4633SHajimu UMEMOTO					if (OPTBIT(IN6P_RFC2292)) {
f95d4633SHajimu UMEMOTO						error = EINVAL;
f95d4633SHajimu UMEMOTO						break;
f95d4633SHajimu UMEMOTO					}
f95d4633SHajimu UMEMOTO					OPTSET(IN6P_TCLASS);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				case IPV6_AUTOFLOWLABEL:
f95d4633SHajimu UMEMOTO					OPTSET(IN6P_AUTOFLOWLABEL);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
82cd038dSYoshinobu Inoue				}
33841545SHajimu UMEMOTO				break;
33841545SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO			case IPV6_TCLASS:
f95d4633SHajimu UMEMOTO			case IPV6_DONTFRAG:
f95d4633SHajimu UMEMOTO			case IPV6_USE_MIN_MTU:
f95d4633SHajimu UMEMOTO			case IPV6_PREFER_TEMPADDR:
f95d4633SHajimu UMEMOTO				if (optlen != sizeof(optval)) {
f95d4633SHajimu UMEMOTO					error = EINVAL;
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				}
f95d4633SHajimu UMEMOTO				error = sooptcopyin(sopt, &optval,
f95d4633SHajimu UMEMOTO					sizeof optval, sizeof optval);
f95d4633SHajimu UMEMOTO				if (error)
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				{
f95d4633SHajimu UMEMOTO					struct ip6_pktopts **optp;
f95d4633SHajimu UMEMOTO					optp = &in6p->in6p_outputopts;
f95d4633SHajimu UMEMOTO					error = ip6_pcbopt(optname,
79ba3952SBjoern A. Zeeb					    (u_char *)&optval, sizeof(optval),
79ba3952SBjoern A. Zeeb					    optp, (td != NULL) ? td->td_ucred :
79ba3952SBjoern A. Zeeb					    NULL, uproto);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO			case IPV6_2292PKTINFO:
f95d4633SHajimu UMEMOTO			case IPV6_2292HOPLIMIT:
f95d4633SHajimu UMEMOTO			case IPV6_2292HOPOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_2292DSTOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_2292RTHDR:
33841545SHajimu UMEMOTO				/* RFC 2292 */
33841545SHajimu UMEMOTO				if (optlen != sizeof(int)) {
33841545SHajimu UMEMOTO					error = EINVAL;
33841545SHajimu UMEMOTO					break;
33841545SHajimu UMEMOTO				}
33841545SHajimu UMEMOTO				error = sooptcopyin(sopt, &optval,
33841545SHajimu UMEMOTO					sizeof optval, sizeof optval);
33841545SHajimu UMEMOTO				if (error)
33841545SHajimu UMEMOTO					break;
33841545SHajimu UMEMOTO				switch (optname) {
f95d4633SHajimu UMEMOTO				case IPV6_2292PKTINFO:
f95d4633SHajimu UMEMOTO					OPTSET2292(IN6P_PKTINFO);
33841545SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				case IPV6_2292HOPLIMIT:
f95d4633SHajimu UMEMOTO					OPTSET2292(IN6P_HOPLIMIT);
33841545SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				case IPV6_2292HOPOPTS:
33841545SHajimu UMEMOTO					/*
33841545SHajimu UMEMOTO					 * Check super-user privilege.
33841545SHajimu UMEMOTO					 * See comments for IPV6_RECVHOPOPTS.
33841545SHajimu UMEMOTO					 */
79ba3952SBjoern A. Zeeb					if (td != NULL) {
79ba3952SBjoern A. Zeeb						error = priv_check(td,
79ba3952SBjoern A. Zeeb						    PRIV_NETINET_SETHDROPTS);
79ba3952SBjoern A. Zeeb						if (error)
79ba3952SBjoern A. Zeeb							return (error);
79ba3952SBjoern A. Zeeb					}
f95d4633SHajimu UMEMOTO					OPTSET2292(IN6P_HOPOPTS);
33841545SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				case IPV6_2292DSTOPTS:
79ba3952SBjoern A. Zeeb					if (td != NULL) {
79ba3952SBjoern A. Zeeb						error = priv_check(td,
79ba3952SBjoern A. Zeeb						    PRIV_NETINET_SETHDROPTS);
79ba3952SBjoern A. Zeeb						if (error)
79ba3952SBjoern A. Zeeb							return (error);
79ba3952SBjoern A. Zeeb					}
f95d4633SHajimu UMEMOTO					OPTSET2292(IN6P_DSTOPTS|IN6P_RTHDRDSTOPTS); /* XXX */
33841545SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				case IPV6_2292RTHDR:
f95d4633SHajimu UMEMOTO					OPTSET2292(IN6P_RTHDR);
33841545SHajimu UMEMOTO					break;
82cd038dSYoshinobu Inoue				}
82cd038dSYoshinobu Inoue				break;
f95d4633SHajimu UMEMOTO			case IPV6_PKTINFO:
f95d4633SHajimu UMEMOTO			case IPV6_HOPOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_RTHDR:
f95d4633SHajimu UMEMOTO			case IPV6_DSTOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_RTHDRDSTOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_NEXTHOP:
f95d4633SHajimu UMEMOTO			{
18b35df8SHajimu UMEMOTO				/* new advanced API (RFC3542) */
f95d4633SHajimu UMEMOTO				u_char *optbuf;
e770771aSHajimu UMEMOTO				u_char optbuf_storage[MCLBYTES];
f95d4633SHajimu UMEMOTO				int optlen;
f95d4633SHajimu UMEMOTO				struct ip6_pktopts **optp;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				/* cannot mix with RFC2292 */
f95d4633SHajimu UMEMOTO				if (OPTBIT(IN6P_RFC2292)) {
f95d4633SHajimu UMEMOTO					error = EINVAL;
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				}
f95d4633SHajimu UMEMOTO
e770771aSHajimu UMEMOTO				/*
e770771aSHajimu UMEMOTO				 * We only ensure valsize is not too large
e770771aSHajimu UMEMOTO				 * here.  Further validation will be done
e770771aSHajimu UMEMOTO				 * later.
e770771aSHajimu UMEMOTO				 */
e770771aSHajimu UMEMOTO				error = sooptcopyin(sopt, optbuf_storage,
e770771aSHajimu UMEMOTO				    sizeof(optbuf_storage), 0);
a5d1aae3SHajimu UMEMOTO				if (error)
a5d1aae3SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				optlen = sopt->sopt_valsize;
e770771aSHajimu UMEMOTO				optbuf = optbuf_storage;
f95d4633SHajimu UMEMOTO				optp = &in6p->in6p_outputopts;
79ba3952SBjoern A. Zeeb				error = ip6_pcbopt(optname, optbuf, optlen,
79ba3952SBjoern A. Zeeb				    optp, (td != NULL) ? td->td_ucred : NULL,
79ba3952SBjoern A. Zeeb				    uproto);
f95d4633SHajimu UMEMOTO				break;
f95d4633SHajimu UMEMOTO			}
82cd038dSYoshinobu Inoue#undef OPTSET
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue			case IPV6_MULTICAST_IF:
82cd038dSYoshinobu Inoue			case IPV6_MULTICAST_HOPS:
82cd038dSYoshinobu Inoue			case IPV6_MULTICAST_LOOP:
82cd038dSYoshinobu Inoue			case IPV6_JOIN_GROUP:
82cd038dSYoshinobu Inoue			case IPV6_LEAVE_GROUP:
82cd038dSYoshinobu Inoue			    {
82cd038dSYoshinobu Inoue				if (sopt->sopt_valsize > MLEN) {
82cd038dSYoshinobu Inoue					error = EMSGSIZE;
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue				}
82cd038dSYoshinobu Inoue				/* XXX */
f95d4633SHajimu UMEMOTO			    }
f95d4633SHajimu UMEMOTO			    /* FALLTHROUGH */
f95d4633SHajimu UMEMOTO			    {
f95d4633SHajimu UMEMOTO				struct mbuf *m;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				if (sopt->sopt_valsize > MCLBYTES) {
f95d4633SHajimu UMEMOTO					error = EMSGSIZE;
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				}
f95d4633SHajimu UMEMOTO				/* XXX */
e0aec682SAndre Oppermann				MGET(m, sopt->sopt_td ? M_WAIT : M_DONTWAIT, MT_DATA);
82cd038dSYoshinobu Inoue				if (m == 0) {
82cd038dSYoshinobu Inoue					error = ENOBUFS;
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue				}
f95d4633SHajimu UMEMOTO				if (sopt->sopt_valsize > MLEN) {
f95d4633SHajimu UMEMOTO					MCLGET(m, sopt->sopt_td ? M_WAIT : M_DONTWAIT);
f95d4633SHajimu UMEMOTO					if ((m->m_flags & M_EXT) == 0) {
f95d4633SHajimu UMEMOTO						m_free(m);
f95d4633SHajimu UMEMOTO						error = ENOBUFS;
f95d4633SHajimu UMEMOTO						break;
f95d4633SHajimu UMEMOTO					}
f95d4633SHajimu UMEMOTO				}
82cd038dSYoshinobu Inoue				m->m_len = sopt->sopt_valsize;
82cd038dSYoshinobu Inoue				error = sooptcopyin(sopt, mtod(m, char *),
82cd038dSYoshinobu Inoue						    m->m_len, m->m_len);
f95d4633SHajimu UMEMOTO				if (error) {
f95d4633SHajimu UMEMOTO					(void)m_free(m);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				}
82cd038dSYoshinobu Inoue				error =	ip6_setmoptions(sopt->sopt_name,
82cd038dSYoshinobu Inoue							&in6p->in6p_moptions,
82cd038dSYoshinobu Inoue							m);
82cd038dSYoshinobu Inoue				(void)m_free(m);
82cd038dSYoshinobu Inoue			    }
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue			case IPV6_PORTRANGE:
686cdd19SJun-ichiro itojun Hagino				error = sooptcopyin(sopt, &optval,
686cdd19SJun-ichiro itojun Hagino				    sizeof optval, sizeof optval);
82cd038dSYoshinobu Inoue				if (error)
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue				switch (optval) {
82cd038dSYoshinobu Inoue				case IPV6_PORTRANGE_DEFAULT:
82cd038dSYoshinobu Inoue					in6p->in6p_flags &= ~(IN6P_LOWPORT);
82cd038dSYoshinobu Inoue					in6p->in6p_flags &= ~(IN6P_HIGHPORT);
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue				case IPV6_PORTRANGE_HIGH:
82cd038dSYoshinobu Inoue					in6p->in6p_flags &= ~(IN6P_LOWPORT);
82cd038dSYoshinobu Inoue					in6p->in6p_flags |= IN6P_HIGHPORT;
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue				case IPV6_PORTRANGE_LOW:
82cd038dSYoshinobu Inoue					in6p->in6p_flags &= ~(IN6P_HIGHPORT);
82cd038dSYoshinobu Inoue					in6p->in6p_flags |= IN6P_LOWPORT;
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue				default:
82cd038dSYoshinobu Inoue					error = EINVAL;
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue				}
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue
b2630c29SGeorge V. Neville-Neil#ifdef IPSEC
82cd038dSYoshinobu Inoue			case IPV6_IPSEC_POLICY:
82cd038dSYoshinobu Inoue			{
c26fe973SBjoern A. Zeeb				caddr_t req;
82cd038dSYoshinobu Inoue				struct mbuf *m;
82cd038dSYoshinobu Inoue
686cdd19SJun-ichiro itojun Hagino				if ((error = soopt_getm(sopt, &m)) != 0) /* XXX */
82cd038dSYoshinobu Inoue					break;
686cdd19SJun-ichiro itojun Hagino				if ((error = soopt_mcopyin(sopt, m)) != 0) /* XXX */
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue				req = mtod(m, caddr_t);
82cd038dSYoshinobu Inoue				error = ipsec6_set_policy(in6p, optname, req,
c26fe973SBjoern A. Zeeb				    m->m_len, (sopt->sopt_td != NULL) ?
c26fe973SBjoern A. Zeeb				    sopt->sopt_td->td_ucred : NULL);
82cd038dSYoshinobu Inoue				m_freem(m);
82cd038dSYoshinobu Inoue				break;
c26fe973SBjoern A. Zeeb			}
b2630c29SGeorge V. Neville-Neil#endif /* IPSEC */
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue			default:
82cd038dSYoshinobu Inoue				error = ENOPROTOOPT;
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue			}
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		case SOPT_GET:
82cd038dSYoshinobu Inoue			switch (optname) {
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO			case IPV6_2292PKTOPTIONS:
f95d4633SHajimu UMEMOTO#ifdef IPV6_PKTOPTIONS
82cd038dSYoshinobu Inoue			case IPV6_PKTOPTIONS:
f95d4633SHajimu UMEMOTO#endif
f95d4633SHajimu UMEMOTO				/*
f95d4633SHajimu UMEMOTO				 * RFC3542 (effectively) deprecated the
f95d4633SHajimu UMEMOTO				 * semantics of the 2292-style pktoptions.
f95d4633SHajimu UMEMOTO				 * Since it was not reliable in nature (i.e.,
f95d4633SHajimu UMEMOTO				 * applications had to expect the lack of some
f95d4633SHajimu UMEMOTO				 * information after all), it would make sense
f95d4633SHajimu UMEMOTO				 * to simplify this part by always returning
f95d4633SHajimu UMEMOTO				 * empty data.
f95d4633SHajimu UMEMOTO				 */
82cd038dSYoshinobu Inoue				sopt->sopt_valsize = 0;
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO			case IPV6_RECVHOPOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_RECVDSTOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_RECVRTHDRDSTOPTS:
82cd038dSYoshinobu Inoue			case IPV6_UNICAST_HOPS:
f95d4633SHajimu UMEMOTO			case IPV6_RECVPKTINFO:
f95d4633SHajimu UMEMOTO			case IPV6_RECVHOPLIMIT:
f95d4633SHajimu UMEMOTO			case IPV6_RECVRTHDR:
f95d4633SHajimu UMEMOTO			case IPV6_RECVPATHMTU:
33841545SHajimu UMEMOTO
82cd038dSYoshinobu Inoue			case IPV6_FAITH:
33841545SHajimu UMEMOTO			case IPV6_V6ONLY:
fa310a7eSYoshinobu Inoue			case IPV6_PORTRANGE:
f95d4633SHajimu UMEMOTO			case IPV6_RECVTCLASS:
f95d4633SHajimu UMEMOTO			case IPV6_AUTOFLOWLABEL:
82cd038dSYoshinobu Inoue				switch (optname) {
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO				case IPV6_RECVHOPOPTS:
f95d4633SHajimu UMEMOTO					optval = OPTBIT(IN6P_HOPOPTS);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_RECVDSTOPTS:
f95d4633SHajimu UMEMOTO					optval = OPTBIT(IN6P_DSTOPTS);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_RECVRTHDRDSTOPTS:
f95d4633SHajimu UMEMOTO					optval = OPTBIT(IN6P_RTHDRDSTOPTS);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
82cd038dSYoshinobu Inoue				case IPV6_UNICAST_HOPS:
82cd038dSYoshinobu Inoue					optval = in6p->in6p_hops;
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO				case IPV6_RECVPKTINFO:
f95d4633SHajimu UMEMOTO					optval = OPTBIT(IN6P_PKTINFO);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_RECVHOPLIMIT:
f95d4633SHajimu UMEMOTO					optval = OPTBIT(IN6P_HOPLIMIT);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_RECVRTHDR:
f95d4633SHajimu UMEMOTO					optval = OPTBIT(IN6P_RTHDR);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_RECVPATHMTU:
f95d4633SHajimu UMEMOTO					optval = OPTBIT(IN6P_MTU);
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue				case IPV6_FAITH:
82cd038dSYoshinobu Inoue					optval = OPTBIT(IN6P_FAITH);
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue
33841545SHajimu UMEMOTO				case IPV6_V6ONLY:
854d3b19SHajimu UMEMOTO					optval = OPTBIT(IN6P_IPV6_V6ONLY);
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue				case IPV6_PORTRANGE:
82cd038dSYoshinobu Inoue				    {
82cd038dSYoshinobu Inoue					int flags;
82cd038dSYoshinobu Inoue					flags = in6p->in6p_flags;
82cd038dSYoshinobu Inoue					if (flags & IN6P_HIGHPORT)
82cd038dSYoshinobu Inoue						optval = IPV6_PORTRANGE_HIGH;
82cd038dSYoshinobu Inoue					else if (flags & IN6P_LOWPORT)
82cd038dSYoshinobu Inoue						optval = IPV6_PORTRANGE_LOW;
82cd038dSYoshinobu Inoue					else
82cd038dSYoshinobu Inoue						optval = 0;
82cd038dSYoshinobu Inoue					break;
82cd038dSYoshinobu Inoue				    }
f95d4633SHajimu UMEMOTO				case IPV6_RECVTCLASS:
f95d4633SHajimu UMEMOTO					optval = OPTBIT(IN6P_TCLASS);
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				case IPV6_AUTOFLOWLABEL:
f95d4633SHajimu UMEMOTO					optval = OPTBIT(IN6P_AUTOFLOWLABEL);
f95d4633SHajimu UMEMOTO					break;
82cd038dSYoshinobu Inoue				}
f95d4633SHajimu UMEMOTO				if (error)
f95d4633SHajimu UMEMOTO					break;
82cd038dSYoshinobu Inoue				error = sooptcopyout(sopt, &optval,
82cd038dSYoshinobu Inoue					sizeof optval);
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO			case IPV6_PATHMTU:
f95d4633SHajimu UMEMOTO			{
f95d4633SHajimu UMEMOTO				u_long pmtu = 0;
f95d4633SHajimu UMEMOTO				struct ip6_mtuinfo mtuinfo;
97d8d152SAndre Oppermann				struct route_in6 sro;
97d8d152SAndre Oppermann
97d8d152SAndre Oppermann				bzero(&sro, sizeof(sro));
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				if (!(so->so_state & SS_ISCONNECTED))
f95d4633SHajimu UMEMOTO					return (ENOTCONN);
f95d4633SHajimu UMEMOTO				/*
f95d4633SHajimu UMEMOTO				 * XXX: we dot not consider the case of source
f95d4633SHajimu UMEMOTO				 * routing, or optional information to specify
f95d4633SHajimu UMEMOTO				 * the outgoing interface.
f95d4633SHajimu UMEMOTO				 */
97d8d152SAndre Oppermann				error = ip6_getpmtu(&sro, NULL, NULL,
f95d4633SHajimu UMEMOTO				    &in6p->in6p_faddr, &pmtu, NULL);
97d8d152SAndre Oppermann				if (sro.ro_rt)
97d8d152SAndre Oppermann					RTFREE(sro.ro_rt);
f95d4633SHajimu UMEMOTO				if (error)
f95d4633SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				if (pmtu > IPV6_MAXPACKET)
f95d4633SHajimu UMEMOTO					pmtu = IPV6_MAXPACKET;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO				bzero(&mtuinfo, sizeof(mtuinfo));
f95d4633SHajimu UMEMOTO				mtuinfo.ip6m_mtu = (u_int32_t)pmtu;
f95d4633SHajimu UMEMOTO				optdata = (void *)&mtuinfo;
f95d4633SHajimu UMEMOTO				optdatalen = sizeof(mtuinfo);
f95d4633SHajimu UMEMOTO				error = sooptcopyout(sopt, optdata,
f95d4633SHajimu UMEMOTO				    optdatalen);
f95d4633SHajimu UMEMOTO				break;
f95d4633SHajimu UMEMOTO			}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO			case IPV6_2292PKTINFO:
f95d4633SHajimu UMEMOTO			case IPV6_2292HOPLIMIT:
f95d4633SHajimu UMEMOTO			case IPV6_2292HOPOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_2292RTHDR:
f95d4633SHajimu UMEMOTO			case IPV6_2292DSTOPTS:
33841545SHajimu UMEMOTO				switch (optname) {
f95d4633SHajimu UMEMOTO				case IPV6_2292PKTINFO:
33841545SHajimu UMEMOTO					optval = OPTBIT(IN6P_PKTINFO);
33841545SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				case IPV6_2292HOPLIMIT:
33841545SHajimu UMEMOTO					optval = OPTBIT(IN6P_HOPLIMIT);
33841545SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				case IPV6_2292HOPOPTS:
33841545SHajimu UMEMOTO					optval = OPTBIT(IN6P_HOPOPTS);
33841545SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				case IPV6_2292RTHDR:
33841545SHajimu UMEMOTO					optval = OPTBIT(IN6P_RTHDR);
33841545SHajimu UMEMOTO					break;
f95d4633SHajimu UMEMOTO				case IPV6_2292DSTOPTS:
33841545SHajimu UMEMOTO					optval = OPTBIT(IN6P_DSTOPTS|IN6P_RTHDRDSTOPTS);
33841545SHajimu UMEMOTO					break;
33841545SHajimu UMEMOTO				}
33841545SHajimu UMEMOTO				error = sooptcopyout(sopt, &optval,
33841545SHajimu UMEMOTO				    sizeof optval);
33841545SHajimu UMEMOTO				break;
f95d4633SHajimu UMEMOTO			case IPV6_PKTINFO:
f95d4633SHajimu UMEMOTO			case IPV6_HOPOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_RTHDR:
f95d4633SHajimu UMEMOTO			case IPV6_DSTOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_RTHDRDSTOPTS:
f95d4633SHajimu UMEMOTO			case IPV6_NEXTHOP:
f95d4633SHajimu UMEMOTO			case IPV6_TCLASS:
f95d4633SHajimu UMEMOTO			case IPV6_DONTFRAG:
f95d4633SHajimu UMEMOTO			case IPV6_USE_MIN_MTU:
f95d4633SHajimu UMEMOTO			case IPV6_PREFER_TEMPADDR:
f95d4633SHajimu UMEMOTO				error = ip6_getpcbopt(in6p->in6p_outputopts,
f95d4633SHajimu UMEMOTO				    optname, sopt);
f95d4633SHajimu UMEMOTO				break;
33841545SHajimu UMEMOTO
82cd038dSYoshinobu Inoue			case IPV6_MULTICAST_IF:
82cd038dSYoshinobu Inoue			case IPV6_MULTICAST_HOPS:
82cd038dSYoshinobu Inoue			case IPV6_MULTICAST_LOOP:
82cd038dSYoshinobu Inoue			case IPV6_JOIN_GROUP:
82cd038dSYoshinobu Inoue			case IPV6_LEAVE_GROUP:
82cd038dSYoshinobu Inoue			    {
82cd038dSYoshinobu Inoue				struct mbuf *m;
82cd038dSYoshinobu Inoue				error = ip6_getmoptions(sopt->sopt_name,
82cd038dSYoshinobu Inoue				    in6p->in6p_moptions, &m);
82cd038dSYoshinobu Inoue				if (error == 0)
82cd038dSYoshinobu Inoue					error = sooptcopyout(sopt,
82cd038dSYoshinobu Inoue					    mtod(m, char *), m->m_len);
82cd038dSYoshinobu Inoue				m_freem(m);
82cd038dSYoshinobu Inoue			    }
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue
b2630c29SGeorge V. Neville-Neil#ifdef IPSEC
82cd038dSYoshinobu Inoue			case IPV6_IPSEC_POLICY:
82cd038dSYoshinobu Inoue			  {
f63e7634SYoshinobu Inoue				caddr_t req = NULL;
686cdd19SJun-ichiro itojun Hagino				size_t len = 0;
686cdd19SJun-ichiro itojun Hagino				struct mbuf *m = NULL;
686cdd19SJun-ichiro itojun Hagino				struct mbuf **mp = &m;
f95d4633SHajimu UMEMOTO				size_t ovalsize = sopt->sopt_valsize;
f95d4633SHajimu UMEMOTO				caddr_t oval = (caddr_t)sopt->sopt_val;
f63e7634SYoshinobu Inoue
686cdd19SJun-ichiro itojun Hagino				error = soopt_getm(sopt, &m); /* XXX */
a46f7e7cSHajimu UMEMOTO				if (error != 0)
686cdd19SJun-ichiro itojun Hagino					break;
686cdd19SJun-ichiro itojun Hagino				error = soopt_mcopyin(sopt, m); /* XXX */
a46f7e7cSHajimu UMEMOTO				if (error != 0)
686cdd19SJun-ichiro itojun Hagino					break;
f95d4633SHajimu UMEMOTO				sopt->sopt_valsize = ovalsize;
f95d4633SHajimu UMEMOTO				sopt->sopt_val = oval;
686cdd19SJun-ichiro itojun Hagino				if (m) {
82cd038dSYoshinobu Inoue					req = mtod(m, caddr_t);
686cdd19SJun-ichiro itojun Hagino					len = m->m_len;
686cdd19SJun-ichiro itojun Hagino				}
686cdd19SJun-ichiro itojun Hagino				error = ipsec6_get_policy(in6p, req, len, mp);
82cd038dSYoshinobu Inoue				if (error == 0)
82cd038dSYoshinobu Inoue					error = soopt_mcopyout(sopt, m); /* XXX */
33841545SHajimu UMEMOTO				if (error == 0 && m)
82cd038dSYoshinobu Inoue					m_freem(m);
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue			  }
b2630c29SGeorge V. Neville-Neil#endif /* IPSEC */
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue			default:
82cd038dSYoshinobu Inoue				error = ENOPROTOOPT;
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue			}
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
f95d4633SHajimu UMEMOTO	} else {		/* level != IPPROTO_IPV6 */
82cd038dSYoshinobu Inoue		error = EINVAL;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue	return (error);
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
02b9a206SHajimu UMEMOTOint
1272577eSXin LIip6_raw_ctloutput(struct socket *so, struct sockopt *sopt)
02b9a206SHajimu UMEMOTO{
02b9a206SHajimu UMEMOTO	int error = 0, optval, optlen;
02b9a206SHajimu UMEMOTO	const int icmp6off = offsetof(struct icmp6_hdr, icmp6_cksum);
02b9a206SHajimu UMEMOTO	struct in6pcb *in6p = sotoin6pcb(so);
02b9a206SHajimu UMEMOTO	int level, op, optname;
02b9a206SHajimu UMEMOTO
02b9a206SHajimu UMEMOTO	level = sopt->sopt_level;
02b9a206SHajimu UMEMOTO	op = sopt->sopt_dir;
02b9a206SHajimu UMEMOTO	optname = sopt->sopt_name;
02b9a206SHajimu UMEMOTO	optlen = sopt->sopt_valsize;
02b9a206SHajimu UMEMOTO
02b9a206SHajimu UMEMOTO	if (level != IPPROTO_IPV6) {
02b9a206SHajimu UMEMOTO		return (EINVAL);
02b9a206SHajimu UMEMOTO	}
02b9a206SHajimu UMEMOTO
02b9a206SHajimu UMEMOTO	switch (optname) {
02b9a206SHajimu UMEMOTO	case IPV6_CHECKSUM:
02b9a206SHajimu UMEMOTO		/*
02b9a206SHajimu UMEMOTO		 * For ICMPv6 sockets, no modification allowed for checksum
02b9a206SHajimu UMEMOTO		 * offset, permit "no change" values to help existing apps.
02b9a206SHajimu UMEMOTO		 *
18b35df8SHajimu UMEMOTO		 * RFC3542 says: "An attempt to set IPV6_CHECKSUM
02b9a206SHajimu UMEMOTO		 * for an ICMPv6 socket will fail."
18b35df8SHajimu UMEMOTO		 * The current behavior does not meet RFC3542.
02b9a206SHajimu UMEMOTO		 */
02b9a206SHajimu UMEMOTO		switch (op) {
02b9a206SHajimu UMEMOTO		case SOPT_SET:
02b9a206SHajimu UMEMOTO			if (optlen != sizeof(int)) {
02b9a206SHajimu UMEMOTO				error = EINVAL;
02b9a206SHajimu UMEMOTO				break;
02b9a206SHajimu UMEMOTO			}
02b9a206SHajimu UMEMOTO			error = sooptcopyin(sopt, &optval, sizeof(optval),
02b9a206SHajimu UMEMOTO					    sizeof(optval));
02b9a206SHajimu UMEMOTO			if (error)
02b9a206SHajimu UMEMOTO				break;
02b9a206SHajimu UMEMOTO			if ((optval % 2) != 0) {
02b9a206SHajimu UMEMOTO				/* the API assumes even offset values */
02b9a206SHajimu UMEMOTO				error = EINVAL;
02b9a206SHajimu UMEMOTO			} else if (so->so_proto->pr_protocol ==
02b9a206SHajimu UMEMOTO			    IPPROTO_ICMPV6) {
02b9a206SHajimu UMEMOTO				if (optval != icmp6off)
02b9a206SHajimu UMEMOTO					error = EINVAL;
02b9a206SHajimu UMEMOTO			} else
02b9a206SHajimu UMEMOTO				in6p->in6p_cksum = optval;
02b9a206SHajimu UMEMOTO			break;
02b9a206SHajimu UMEMOTO
02b9a206SHajimu UMEMOTO		case SOPT_GET:
02b9a206SHajimu UMEMOTO			if (so->so_proto->pr_protocol == IPPROTO_ICMPV6)
02b9a206SHajimu UMEMOTO				optval = icmp6off;
02b9a206SHajimu UMEMOTO			else
02b9a206SHajimu UMEMOTO				optval = in6p->in6p_cksum;
02b9a206SHajimu UMEMOTO
02b9a206SHajimu UMEMOTO			error = sooptcopyout(sopt, &optval, sizeof(optval));
02b9a206SHajimu UMEMOTO			break;
02b9a206SHajimu UMEMOTO
02b9a206SHajimu UMEMOTO		default:
02b9a206SHajimu UMEMOTO			error = EINVAL;
02b9a206SHajimu UMEMOTO			break;
02b9a206SHajimu UMEMOTO		}
02b9a206SHajimu UMEMOTO		break;
02b9a206SHajimu UMEMOTO
02b9a206SHajimu UMEMOTO	default:
02b9a206SHajimu UMEMOTO		error = ENOPROTOOPT;
02b9a206SHajimu UMEMOTO		break;
02b9a206SHajimu UMEMOTO	}
02b9a206SHajimu UMEMOTO
02b9a206SHajimu UMEMOTO	return (error);
02b9a206SHajimu UMEMOTO}
02b9a206SHajimu UMEMOTO
82cd038dSYoshinobu Inoue/*
33841545SHajimu UMEMOTO * Set up IP6 options in pcb for insertion in output packets or
33841545SHajimu UMEMOTO * specifying behavior of outgoing packets.
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inouestatic int
1272577eSXin LIip6_pcbopts(struct ip6_pktopts **pktopt, struct mbuf *m,
1272577eSXin LI    struct socket *so, struct sockopt *sopt)
82cd038dSYoshinobu Inoue{
33841545SHajimu UMEMOTO	struct ip6_pktopts *opt = *pktopt;
82cd038dSYoshinobu Inoue	int error = 0;
b40ce416SJulian Elischer	struct thread *td = sopt->sopt_td;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/* turn off any old options. */
82cd038dSYoshinobu Inoue	if (opt) {
33841545SHajimu UMEMOTO#ifdef DIAGNOSTIC
33841545SHajimu UMEMOTO		if (opt->ip6po_pktinfo || opt->ip6po_nexthop ||
33841545SHajimu UMEMOTO		    opt->ip6po_hbh || opt->ip6po_dest1 || opt->ip6po_dest2 ||
33841545SHajimu UMEMOTO		    opt->ip6po_rhinfo.ip6po_rhi_rthdr)
33841545SHajimu UMEMOTO			printf("ip6_pcbopts: all specified options are cleared.\n");
33841545SHajimu UMEMOTO#endif
f95d4633SHajimu UMEMOTO		ip6_clearpktopts(opt, -1);
82cd038dSYoshinobu Inoue	} else
a163d034SWarner Losh		opt = malloc(sizeof(*opt), M_IP6OPT, M_WAITOK);
33841545SHajimu UMEMOTO	*pktopt = NULL;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if (!m || m->m_len == 0) {
82cd038dSYoshinobu Inoue		/*
35f6695bSHajimu UMEMOTO		 * Only turning off any previous options, regardless of
35f6695bSHajimu UMEMOTO		 * whether the opt is just created or given.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		free(opt, M_IP6OPT);
82cd038dSYoshinobu Inoue		return (0);
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*  set options specified by user. */
79ba3952SBjoern A. Zeeb	if ((error = ip6_setpktopts(m, opt, NULL, (td != NULL) ?
79ba3952SBjoern A. Zeeb	    td->td_ucred : NULL, so->so_proto->pr_protocol)) != 0) {
f95d4633SHajimu UMEMOTO		ip6_clearpktopts(opt, -1); /* XXX: discard all options */
35f6695bSHajimu UMEMOTO		free(opt, M_IP6OPT);
82cd038dSYoshinobu Inoue		return (error);
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue	*pktopt = opt;
82cd038dSYoshinobu Inoue	return (0);
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue/*
33841545SHajimu UMEMOTO * initialize ip6_pktopts.  beware that there are non-zero default values in
33841545SHajimu UMEMOTO * the struct.
33841545SHajimu UMEMOTO */
33841545SHajimu UMEMOTOvoid
1272577eSXin LIip6_initpktopts(struct ip6_pktopts *opt)
33841545SHajimu UMEMOTO{
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTO	bzero(opt, sizeof(*opt));
33841545SHajimu UMEMOTO	opt->ip6po_hlim = -1;	/* -1 means default hop limit */
f95d4633SHajimu UMEMOTO	opt->ip6po_tclass = -1;	/* -1 means default traffic class */
f95d4633SHajimu UMEMOTO	opt->ip6po_minmtu = IP6PO_MINMTU_MCASTONLY;
f95d4633SHajimu UMEMOTO	opt->ip6po_prefer_tempaddr = IP6PO_TEMPADDR_SYSTEM;
f95d4633SHajimu UMEMOTO}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTOstatic int
1272577eSXin LIip6_pcbopt(int optname, u_char *buf, int len, struct ip6_pktopts **pktopt,
79ba3952SBjoern A. Zeeb    struct ucred *cred, int uproto)
f95d4633SHajimu UMEMOTO{
f95d4633SHajimu UMEMOTO	struct ip6_pktopts *opt;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	if (*pktopt == NULL) {
f95d4633SHajimu UMEMOTO		*pktopt = malloc(sizeof(struct ip6_pktopts), M_IP6OPT,
f95d4633SHajimu UMEMOTO		    M_WAITOK);
d5e3406dSHajimu UMEMOTO		ip6_initpktopts(*pktopt);
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO	opt = *pktopt;
f95d4633SHajimu UMEMOTO
79ba3952SBjoern A. Zeeb	return (ip6_setpktopt(optname, buf, len, opt, cred, 1, 0, uproto));
f95d4633SHajimu UMEMOTO}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTOstatic int
1272577eSXin LIip6_getpcbopt(struct ip6_pktopts *pktopt, int optname, struct sockopt *sopt)
f95d4633SHajimu UMEMOTO{
f95d4633SHajimu UMEMOTO	void *optdata = NULL;
f95d4633SHajimu UMEMOTO	int optdatalen = 0;
f95d4633SHajimu UMEMOTO	struct ip6_ext *ip6e;
f95d4633SHajimu UMEMOTO	int error = 0;
f95d4633SHajimu UMEMOTO	struct in6_pktinfo null_pktinfo;
f95d4633SHajimu UMEMOTO	int deftclass = 0, on;
f95d4633SHajimu UMEMOTO	int defminmtu = IP6PO_MINMTU_MCASTONLY;
f95d4633SHajimu UMEMOTO	int defpreftemp = IP6PO_TEMPADDR_SYSTEM;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	switch (optname) {
f95d4633SHajimu UMEMOTO	case IPV6_PKTINFO:
f95d4633SHajimu UMEMOTO		if (pktopt && pktopt->ip6po_pktinfo)
f95d4633SHajimu UMEMOTO			optdata = (void *)pktopt->ip6po_pktinfo;
f95d4633SHajimu UMEMOTO		else {
f95d4633SHajimu UMEMOTO			/* XXX: we don't have to do this every time... */
f95d4633SHajimu UMEMOTO			bzero(&null_pktinfo, sizeof(null_pktinfo));
f95d4633SHajimu UMEMOTO			optdata = (void *)&null_pktinfo;
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO		optdatalen = sizeof(struct in6_pktinfo);
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	case IPV6_TCLASS:
f95d4633SHajimu UMEMOTO		if (pktopt && pktopt->ip6po_tclass >= 0)
f95d4633SHajimu UMEMOTO			optdata = (void *)&pktopt->ip6po_tclass;
f95d4633SHajimu UMEMOTO		else
f95d4633SHajimu UMEMOTO			optdata = (void *)&deftclass;
f95d4633SHajimu UMEMOTO		optdatalen = sizeof(int);
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	case IPV6_HOPOPTS:
f95d4633SHajimu UMEMOTO		if (pktopt && pktopt->ip6po_hbh) {
f95d4633SHajimu UMEMOTO			optdata = (void *)pktopt->ip6po_hbh;
f95d4633SHajimu UMEMOTO			ip6e = (struct ip6_ext *)pktopt->ip6po_hbh;
f95d4633SHajimu UMEMOTO			optdatalen = (ip6e->ip6e_len + 1) << 3;
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	case IPV6_RTHDR:
f95d4633SHajimu UMEMOTO		if (pktopt && pktopt->ip6po_rthdr) {
f95d4633SHajimu UMEMOTO			optdata = (void *)pktopt->ip6po_rthdr;
f95d4633SHajimu UMEMOTO			ip6e = (struct ip6_ext *)pktopt->ip6po_rthdr;
f95d4633SHajimu UMEMOTO			optdatalen = (ip6e->ip6e_len + 1) << 3;
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	case IPV6_RTHDRDSTOPTS:
f95d4633SHajimu UMEMOTO		if (pktopt && pktopt->ip6po_dest1) {
f95d4633SHajimu UMEMOTO			optdata = (void *)pktopt->ip6po_dest1;
f95d4633SHajimu UMEMOTO			ip6e = (struct ip6_ext *)pktopt->ip6po_dest1;
f95d4633SHajimu UMEMOTO			optdatalen = (ip6e->ip6e_len + 1) << 3;
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	case IPV6_DSTOPTS:
f95d4633SHajimu UMEMOTO		if (pktopt && pktopt->ip6po_dest2) {
f95d4633SHajimu UMEMOTO			optdata = (void *)pktopt->ip6po_dest2;
f95d4633SHajimu UMEMOTO			ip6e = (struct ip6_ext *)pktopt->ip6po_dest2;
f95d4633SHajimu UMEMOTO			optdatalen = (ip6e->ip6e_len + 1) << 3;
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	case IPV6_NEXTHOP:
f95d4633SHajimu UMEMOTO		if (pktopt && pktopt->ip6po_nexthop) {
f95d4633SHajimu UMEMOTO			optdata = (void *)pktopt->ip6po_nexthop;
f95d4633SHajimu UMEMOTO			optdatalen = pktopt->ip6po_nexthop->sa_len;
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	case IPV6_USE_MIN_MTU:
f95d4633SHajimu UMEMOTO		if (pktopt)
f95d4633SHajimu UMEMOTO			optdata = (void *)&pktopt->ip6po_minmtu;
f95d4633SHajimu UMEMOTO		else
f95d4633SHajimu UMEMOTO			optdata = (void *)&defminmtu;
f95d4633SHajimu UMEMOTO		optdatalen = sizeof(int);
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	case IPV6_DONTFRAG:
f95d4633SHajimu UMEMOTO		if (pktopt && ((pktopt->ip6po_flags) & IP6PO_DONTFRAG))
f95d4633SHajimu UMEMOTO			on = 1;
f95d4633SHajimu UMEMOTO		else
f95d4633SHajimu UMEMOTO			on = 0;
f95d4633SHajimu UMEMOTO		optdata = (void *)&on;
f95d4633SHajimu UMEMOTO		optdatalen = sizeof(on);
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	case IPV6_PREFER_TEMPADDR:
f95d4633SHajimu UMEMOTO		if (pktopt)
f95d4633SHajimu UMEMOTO			optdata = (void *)&pktopt->ip6po_prefer_tempaddr;
f95d4633SHajimu UMEMOTO		else
f95d4633SHajimu UMEMOTO			optdata = (void *)&defpreftemp;
f95d4633SHajimu UMEMOTO		optdatalen = sizeof(int);
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	default:		/* should not happen */
f95d4633SHajimu UMEMOTO#ifdef DIAGNOSTIC
f95d4633SHajimu UMEMOTO		panic("ip6_getpcbopt: unexpected option\n");
f95d4633SHajimu UMEMOTO#endif
f95d4633SHajimu UMEMOTO		return (ENOPROTOOPT);
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	error = sooptcopyout(sopt, optdata, optdatalen);
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	return (error);
33841545SHajimu UMEMOTO}
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTOvoid
1272577eSXin LIip6_clearpktopts(struct ip6_pktopts *pktopt, int optname)
33841545SHajimu UMEMOTO{
289b28bdSHajimu UMEMOTO	if (pktopt == NULL)
289b28bdSHajimu UMEMOTO		return;
289b28bdSHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	if (optname == -1 || optname == IPV6_PKTINFO) {
885adbfaSHajimu UMEMOTO		if (pktopt->ip6po_pktinfo)
33841545SHajimu UMEMOTO			free(pktopt->ip6po_pktinfo, M_IP6OPT);
33841545SHajimu UMEMOTO		pktopt->ip6po_pktinfo = NULL;
33841545SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO	if (optname == -1 || optname == IPV6_HOPLIMIT)
33841545SHajimu UMEMOTO		pktopt->ip6po_hlim = -1;
f95d4633SHajimu UMEMOTO	if (optname == -1 || optname == IPV6_TCLASS)
f95d4633SHajimu UMEMOTO		pktopt->ip6po_tclass = -1;
f95d4633SHajimu UMEMOTO	if (optname == -1 || optname == IPV6_NEXTHOP) {
f95d4633SHajimu UMEMOTO		if (pktopt->ip6po_nextroute.ro_rt) {
f95d4633SHajimu UMEMOTO			RTFREE(pktopt->ip6po_nextroute.ro_rt);
f95d4633SHajimu UMEMOTO			pktopt->ip6po_nextroute.ro_rt = NULL;
f95d4633SHajimu UMEMOTO		}
885adbfaSHajimu UMEMOTO		if (pktopt->ip6po_nexthop)
33841545SHajimu UMEMOTO			free(pktopt->ip6po_nexthop, M_IP6OPT);
33841545SHajimu UMEMOTO		pktopt->ip6po_nexthop = NULL;
33841545SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO	if (optname == -1 || optname == IPV6_HOPOPTS) {
885adbfaSHajimu UMEMOTO		if (pktopt->ip6po_hbh)
33841545SHajimu UMEMOTO			free(pktopt->ip6po_hbh, M_IP6OPT);
33841545SHajimu UMEMOTO		pktopt->ip6po_hbh = NULL;
33841545SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO	if (optname == -1 || optname == IPV6_RTHDRDSTOPTS) {
885adbfaSHajimu UMEMOTO		if (pktopt->ip6po_dest1)
33841545SHajimu UMEMOTO			free(pktopt->ip6po_dest1, M_IP6OPT);
33841545SHajimu UMEMOTO		pktopt->ip6po_dest1 = NULL;
33841545SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO	if (optname == -1 || optname == IPV6_RTHDR) {
885adbfaSHajimu UMEMOTO		if (pktopt->ip6po_rhinfo.ip6po_rhi_rthdr)
33841545SHajimu UMEMOTO			free(pktopt->ip6po_rhinfo.ip6po_rhi_rthdr, M_IP6OPT);
33841545SHajimu UMEMOTO		pktopt->ip6po_rhinfo.ip6po_rhi_rthdr = NULL;
33841545SHajimu UMEMOTO		if (pktopt->ip6po_route.ro_rt) {
33841545SHajimu UMEMOTO			RTFREE(pktopt->ip6po_route.ro_rt);
33841545SHajimu UMEMOTO			pktopt->ip6po_route.ro_rt = NULL;
33841545SHajimu UMEMOTO		}
33841545SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO	if (optname == -1 || optname == IPV6_DSTOPTS) {
885adbfaSHajimu UMEMOTO		if (pktopt->ip6po_dest2)
33841545SHajimu UMEMOTO			free(pktopt->ip6po_dest2, M_IP6OPT);
33841545SHajimu UMEMOTO		pktopt->ip6po_dest2 = NULL;
33841545SHajimu UMEMOTO	}
33841545SHajimu UMEMOTO}
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTO#define PKTOPT_EXTHDRCPY(type) \
33841545SHajimu UMEMOTOdo {\
33841545SHajimu UMEMOTO	if (src->type) {\
7efe5d92SHajimu UMEMOTO		int hlen = (((struct ip6_ext *)src->type)->ip6e_len + 1) << 3;\
33841545SHajimu UMEMOTO		dst->type = malloc(hlen, M_IP6OPT, canwait);\
33841545SHajimu UMEMOTO		if (dst->type == NULL && canwait == M_NOWAIT)\
33841545SHajimu UMEMOTO			goto bad;\
33841545SHajimu UMEMOTO		bcopy(src->type, dst->type, hlen);\
33841545SHajimu UMEMOTO	}\
7efe5d92SHajimu UMEMOTO} while (/*CONSTCOND*/ 0)
33841545SHajimu UMEMOTO
885adbfaSHajimu UMEMOTOstatic int
1272577eSXin LIcopypktopts(struct ip6_pktopts *dst, struct ip6_pktopts *src, int canwait)
33841545SHajimu UMEMOTO{
885adbfaSHajimu UMEMOTO	if (dst == NULL || src == NULL)  {
33841545SHajimu UMEMOTO		printf("ip6_clearpktopts: invalid argument\n");
885adbfaSHajimu UMEMOTO		return (EINVAL);
33841545SHajimu UMEMOTO	}
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTO	dst->ip6po_hlim = src->ip6po_hlim;
f95d4633SHajimu UMEMOTO	dst->ip6po_tclass = src->ip6po_tclass;
f95d4633SHajimu UMEMOTO	dst->ip6po_flags = src->ip6po_flags;
33841545SHajimu UMEMOTO	if (src->ip6po_pktinfo) {
33841545SHajimu UMEMOTO		dst->ip6po_pktinfo = malloc(sizeof(*dst->ip6po_pktinfo),
33841545SHajimu UMEMOTO		    M_IP6OPT, canwait);
2cb64cb2SGeorge V. Neville-Neil		if (dst->ip6po_pktinfo == NULL)
33841545SHajimu UMEMOTO			goto bad;
33841545SHajimu UMEMOTO		*dst->ip6po_pktinfo = *src->ip6po_pktinfo;
33841545SHajimu UMEMOTO	}
33841545SHajimu UMEMOTO	if (src->ip6po_nexthop) {
33841545SHajimu UMEMOTO		dst->ip6po_nexthop = malloc(src->ip6po_nexthop->sa_len,
33841545SHajimu UMEMOTO		    M_IP6OPT, canwait);
403cbcf5SGeorge V. Neville-Neil		if (dst->ip6po_nexthop == NULL)
33841545SHajimu UMEMOTO			goto bad;
33841545SHajimu UMEMOTO		bcopy(src->ip6po_nexthop, dst->ip6po_nexthop,
33841545SHajimu UMEMOTO		    src->ip6po_nexthop->sa_len);
33841545SHajimu UMEMOTO	}
33841545SHajimu UMEMOTO	PKTOPT_EXTHDRCPY(ip6po_hbh);
33841545SHajimu UMEMOTO	PKTOPT_EXTHDRCPY(ip6po_dest1);
33841545SHajimu UMEMOTO	PKTOPT_EXTHDRCPY(ip6po_dest2);
33841545SHajimu UMEMOTO	PKTOPT_EXTHDRCPY(ip6po_rthdr); /* not copy the cached route */
885adbfaSHajimu UMEMOTO	return (0);
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTO  bad:
016fb9d9SMike Makonnen	ip6_clearpktopts(dst, -1);
885adbfaSHajimu UMEMOTO	return (ENOBUFS);
885adbfaSHajimu UMEMOTO}
885adbfaSHajimu UMEMOTO#undef PKTOPT_EXTHDRCPY
885adbfaSHajimu UMEMOTO
885adbfaSHajimu UMEMOTOstruct ip6_pktopts *
1272577eSXin LIip6_copypktopts(struct ip6_pktopts *src, int canwait)
885adbfaSHajimu UMEMOTO{
885adbfaSHajimu UMEMOTO	int error;
885adbfaSHajimu UMEMOTO	struct ip6_pktopts *dst;
885adbfaSHajimu UMEMOTO
885adbfaSHajimu UMEMOTO	dst = malloc(sizeof(*dst), M_IP6OPT, canwait);
2cb64cb2SGeorge V. Neville-Neil	if (dst == NULL)
885adbfaSHajimu UMEMOTO		return (NULL);
885adbfaSHajimu UMEMOTO	ip6_initpktopts(dst);
885adbfaSHajimu UMEMOTO
885adbfaSHajimu UMEMOTO	if ((error = copypktopts(dst, src, canwait)) != 0) {
35f6695bSHajimu UMEMOTO		free(dst, M_IP6OPT);
33841545SHajimu UMEMOTO		return (NULL);
33841545SHajimu UMEMOTO	}
885adbfaSHajimu UMEMOTO
885adbfaSHajimu UMEMOTO	return (dst);
885adbfaSHajimu UMEMOTO}
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTOvoid
1272577eSXin LIip6_freepcbopts(struct ip6_pktopts *pktopt)
33841545SHajimu UMEMOTO{
33841545SHajimu UMEMOTO	if (pktopt == NULL)
33841545SHajimu UMEMOTO		return;
33841545SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	ip6_clearpktopts(pktopt, -1);
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTO	free(pktopt, M_IP6OPT);
33841545SHajimu UMEMOTO}
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTO/*
82cd038dSYoshinobu Inoue * Set the IP6 multicast options in response to user setsockopt().
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inouestatic int
1272577eSXin LIip6_setmoptions(int optname, struct ip6_moptions **im6op, struct mbuf *m)
82cd038dSYoshinobu Inoue{
8b615593SMarko Zec	INIT_VNET_NET(curvnet);
8b615593SMarko Zec	INIT_VNET_INET6(curvnet);
82cd038dSYoshinobu Inoue	int error = 0;
82cd038dSYoshinobu Inoue	u_int loop, ifindex;
82cd038dSYoshinobu Inoue	struct ipv6_mreq *mreq;
82cd038dSYoshinobu Inoue	struct ifnet *ifp;
82cd038dSYoshinobu Inoue	struct ip6_moptions *im6o = *im6op;
82cd038dSYoshinobu Inoue	struct route_in6 ro;
82cd038dSYoshinobu Inoue	struct in6_multi_mship *imm;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if (im6o == NULL) {
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * No multicast option buffer attached to the pcb;
82cd038dSYoshinobu Inoue		 * allocate one and initialize to default values.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		im6o = (struct ip6_moptions *)
7ba26d99SDavid E. O'Brien			malloc(sizeof(*im6o), M_IP6MOPTS, M_WAITOK);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		if (im6o == NULL)
82cd038dSYoshinobu Inoue			return (ENOBUFS);
82cd038dSYoshinobu Inoue		*im6op = im6o;
82cd038dSYoshinobu Inoue		im6o->im6o_multicast_ifp = NULL;
603724d3SBjoern A. Zeeb		im6o->im6o_multicast_hlim = V_ip6_defmcasthlim;
82cd038dSYoshinobu Inoue		im6o->im6o_multicast_loop = IPV6_DEFAULT_MULTICAST_LOOP;
82cd038dSYoshinobu Inoue		LIST_INIT(&im6o->im6o_memberships);
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	switch (optname) {
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	case IPV6_MULTICAST_IF:
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Select the interface for outgoing multicast packets.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		if (m == NULL || m->m_len != sizeof(u_int)) {
82cd038dSYoshinobu Inoue			error = EINVAL;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
33841545SHajimu UMEMOTO		bcopy(mtod(m, u_int *), &ifindex, sizeof(ifindex));
603724d3SBjoern A. Zeeb		if (ifindex < 0 || V_if_index < ifindex) {
82cd038dSYoshinobu Inoue			error = ENXIO;	/* XXX EINVAL? */
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
f9132cebSJonathan Lemon		ifp = ifnet_byindex(ifindex);
82cd038dSYoshinobu Inoue		if (ifp == NULL || (ifp->if_flags & IFF_MULTICAST) == 0) {
82cd038dSYoshinobu Inoue			error = EADDRNOTAVAIL;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		im6o->im6o_multicast_ifp = ifp;
82cd038dSYoshinobu Inoue		break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	case IPV6_MULTICAST_HOPS:
82cd038dSYoshinobu Inoue	    {
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Set the IP6 hoplimit for outgoing multicast packets.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		int optval;
82cd038dSYoshinobu Inoue		if (m == NULL || m->m_len != sizeof(int)) {
82cd038dSYoshinobu Inoue			error = EINVAL;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
33841545SHajimu UMEMOTO		bcopy(mtod(m, u_int *), &optval, sizeof(optval));
82cd038dSYoshinobu Inoue		if (optval < -1 || optval >= 256)
82cd038dSYoshinobu Inoue			error = EINVAL;
82cd038dSYoshinobu Inoue		else if (optval == -1)
603724d3SBjoern A. Zeeb			im6o->im6o_multicast_hlim = V_ip6_defmcasthlim;
82cd038dSYoshinobu Inoue		else
82cd038dSYoshinobu Inoue			im6o->im6o_multicast_hlim = optval;
82cd038dSYoshinobu Inoue		break;
82cd038dSYoshinobu Inoue	    }
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	case IPV6_MULTICAST_LOOP:
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Set the loopback flag for outgoing multicast packets.
82cd038dSYoshinobu Inoue		 * Must be zero or one.
82cd038dSYoshinobu Inoue		 */
33841545SHajimu UMEMOTO		if (m == NULL || m->m_len != sizeof(u_int)) {
33841545SHajimu UMEMOTO			error = EINVAL;
33841545SHajimu UMEMOTO			break;
33841545SHajimu UMEMOTO		}
33841545SHajimu UMEMOTO		bcopy(mtod(m, u_int *), &loop, sizeof(loop));
33841545SHajimu UMEMOTO		if (loop > 1) {
82cd038dSYoshinobu Inoue			error = EINVAL;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		im6o->im6o_multicast_loop = loop;
82cd038dSYoshinobu Inoue		break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	case IPV6_JOIN_GROUP:
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Add a multicast group membership.
82cd038dSYoshinobu Inoue		 * Group must be a valid IP6 multicast address.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		if (m == NULL || m->m_len != sizeof(struct ipv6_mreq)) {
82cd038dSYoshinobu Inoue			error = EINVAL;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		mreq = mtod(m, struct ipv6_mreq *);
a1f7e5f8SHajimu UMEMOTO
82cd038dSYoshinobu Inoue		if (IN6_IS_ADDR_UNSPECIFIED(&mreq->ipv6mr_multiaddr)) {
82cd038dSYoshinobu Inoue			/*
82cd038dSYoshinobu Inoue			 * We use the unspecified address to specify to accept
82cd038dSYoshinobu Inoue			 * all multicast addresses. Only super user is allowed
82cd038dSYoshinobu Inoue			 * to do this.
82cd038dSYoshinobu Inoue			 */
79ba3952SBjoern A. Zeeb			/* XXX-BZ might need a better PRIV_NETINET_x for this */
79ba3952SBjoern A. Zeeb			error = priv_check(curthread, PRIV_NETINET_MROUTE);
79ba3952SBjoern A. Zeeb			if (error)
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue		} else if (!IN6_IS_ADDR_MULTICAST(&mreq->ipv6mr_multiaddr)) {
82cd038dSYoshinobu Inoue			error = EINVAL;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * If no interface was explicitly specified, choose an
82cd038dSYoshinobu Inoue		 * appropriate one according to the given multicast address.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		if (mreq->ipv6mr_interface == 0) {
a1f7e5f8SHajimu UMEMOTO			struct sockaddr_in6 *dst;
a1f7e5f8SHajimu UMEMOTO
82cd038dSYoshinobu Inoue			/*
a1f7e5f8SHajimu UMEMOTO			 * Look up the routing table for the
82cd038dSYoshinobu Inoue			 * address, and choose the outgoing interface.
82cd038dSYoshinobu Inoue			 *   XXX: is it a good approach?
82cd038dSYoshinobu Inoue			 */
82cd038dSYoshinobu Inoue			ro.ro_rt = NULL;
82cd038dSYoshinobu Inoue			dst = (struct sockaddr_in6 *)&ro.ro_dst;
82cd038dSYoshinobu Inoue			bzero(dst, sizeof(*dst));
82cd038dSYoshinobu Inoue			dst->sin6_family = AF_INET6;
a1f7e5f8SHajimu UMEMOTO			dst->sin6_len = sizeof(*dst);
82cd038dSYoshinobu Inoue			dst->sin6_addr = mreq->ipv6mr_multiaddr;
82cd038dSYoshinobu Inoue			rtalloc((struct route *)&ro);
82cd038dSYoshinobu Inoue			if (ro.ro_rt == NULL) {
82cd038dSYoshinobu Inoue				error = EADDRNOTAVAIL;
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue			}
82cd038dSYoshinobu Inoue			ifp = ro.ro_rt->rt_ifp;
d1dd20beSSam Leffler			RTFREE(ro.ro_rt);
a1f7e5f8SHajimu UMEMOTO		} else {
a1f7e5f8SHajimu UMEMOTO			/*
a1f7e5f8SHajimu UMEMOTO			 * If the interface is specified, validate it.
a1f7e5f8SHajimu UMEMOTO			 */
a1f7e5f8SHajimu UMEMOTO			if (mreq->ipv6mr_interface < 0 ||
603724d3SBjoern A. Zeeb			    V_if_index < mreq->ipv6mr_interface) {
a1f7e5f8SHajimu UMEMOTO				error = ENXIO;	/* XXX EINVAL? */
a1f7e5f8SHajimu UMEMOTO				break;
82cd038dSYoshinobu Inoue			}
f9132cebSJonathan Lemon			ifp = ifnet_byindex(mreq->ipv6mr_interface);
a1f7e5f8SHajimu UMEMOTO			if (!ifp) {
a1f7e5f8SHajimu UMEMOTO				error = ENXIO;	/* XXX EINVAL? */
a1f7e5f8SHajimu UMEMOTO				break;
a1f7e5f8SHajimu UMEMOTO			}
a1f7e5f8SHajimu UMEMOTO		}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * See if we found an interface, and confirm that it
82cd038dSYoshinobu Inoue		 * supports multicast
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		if (ifp == NULL || (ifp->if_flags & IFF_MULTICAST) == 0) {
82cd038dSYoshinobu Inoue			error = EADDRNOTAVAIL;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
a1f7e5f8SHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO		if (in6_setscope(&mreq->ipv6mr_multiaddr, ifp, NULL)) {
a1f7e5f8SHajimu UMEMOTO			error = EADDRNOTAVAIL; /* XXX: should not happen */
a1f7e5f8SHajimu UMEMOTO			break;
82cd038dSYoshinobu Inoue		}
a1f7e5f8SHajimu UMEMOTO
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * See if the membership already exists.
82cd038dSYoshinobu Inoue		 */
686cdd19SJun-ichiro itojun Hagino		for (imm = im6o->im6o_memberships.lh_first;
686cdd19SJun-ichiro itojun Hagino		     imm != NULL; imm = imm->i6mm_chain.le_next)
82cd038dSYoshinobu Inoue			if (imm->i6mm_maddr->in6m_ifp == ifp &&
82cd038dSYoshinobu Inoue			    IN6_ARE_ADDR_EQUAL(&imm->i6mm_maddr->in6m_addr,
82cd038dSYoshinobu Inoue					       &mreq->ipv6mr_multiaddr))
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue		if (imm != NULL) {
82cd038dSYoshinobu Inoue			error = EADDRINUSE;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Everything looks good; add a new record to the multicast
82cd038dSYoshinobu Inoue		 * address list for the given interface.
82cd038dSYoshinobu Inoue		 */
743eee66SSUZUKI Shinsuke		imm = in6_joingroup(ifp, &mreq->ipv6mr_multiaddr,  &error, 0);
743eee66SSUZUKI Shinsuke		if (imm == NULL)
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		LIST_INSERT_HEAD(&im6o->im6o_memberships, imm, i6mm_chain);
82cd038dSYoshinobu Inoue		break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	case IPV6_LEAVE_GROUP:
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Drop a multicast group membership.
82cd038dSYoshinobu Inoue		 * Group must be a valid IP6 multicast address.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		if (m == NULL || m->m_len != sizeof(struct ipv6_mreq)) {
82cd038dSYoshinobu Inoue			error = EINVAL;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		mreq = mtod(m, struct ipv6_mreq *);
a1f7e5f8SHajimu UMEMOTO
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * If an interface address was specified, get a pointer
82cd038dSYoshinobu Inoue		 * to its ifnet structure.
82cd038dSYoshinobu Inoue		 */
a1f7e5f8SHajimu UMEMOTO		if (mreq->ipv6mr_interface < 0 ||
603724d3SBjoern A. Zeeb		    V_if_index < mreq->ipv6mr_interface) {
82cd038dSYoshinobu Inoue			error = ENXIO;	/* XXX EINVAL? */
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
a1f7e5f8SHajimu UMEMOTO		if (mreq->ipv6mr_interface == 0)
a1f7e5f8SHajimu UMEMOTO			ifp = NULL;
a1f7e5f8SHajimu UMEMOTO		else
f9132cebSJonathan Lemon			ifp = ifnet_byindex(mreq->ipv6mr_interface);
a1f7e5f8SHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO		/* Fill in the scope zone ID */
a1f7e5f8SHajimu UMEMOTO		if (ifp) {
a1f7e5f8SHajimu UMEMOTO			if (in6_setscope(&mreq->ipv6mr_multiaddr, ifp, NULL)) {
a1f7e5f8SHajimu UMEMOTO				/* XXX: should not happen */
a1f7e5f8SHajimu UMEMOTO				error = EADDRNOTAVAIL;
a1f7e5f8SHajimu UMEMOTO				break;
a1f7e5f8SHajimu UMEMOTO			}
a1f7e5f8SHajimu UMEMOTO		} else if (mreq->ipv6mr_interface != 0) {
82cd038dSYoshinobu Inoue			/*
a1f7e5f8SHajimu UMEMOTO			 * This case happens when the (positive) index is in
a1f7e5f8SHajimu UMEMOTO			 * the valid range, but the corresponding interface has
a1f7e5f8SHajimu UMEMOTO			 * been detached dynamically (XXX).
82cd038dSYoshinobu Inoue			 */
a1f7e5f8SHajimu UMEMOTO			error = EADDRNOTAVAIL;
a1f7e5f8SHajimu UMEMOTO			break;
a1f7e5f8SHajimu UMEMOTO		} else {	/* ipv6mr_interface == 0 */
a1f7e5f8SHajimu UMEMOTO			struct sockaddr_in6 sa6_mc;
a1f7e5f8SHajimu UMEMOTO
a1f7e5f8SHajimu UMEMOTO			/*
a1f7e5f8SHajimu UMEMOTO			 * The API spec says as follows:
a1f7e5f8SHajimu UMEMOTO			 *  If the interface index is specified as 0, the
a1f7e5f8SHajimu UMEMOTO			 *  system may choose a multicast group membership to
a1f7e5f8SHajimu UMEMOTO			 *  drop by matching the multicast address only.
a1f7e5f8SHajimu UMEMOTO			 * On the other hand, we cannot disambiguate the scope
a1f7e5f8SHajimu UMEMOTO			 * zone unless an interface is provided.  Thus, we
a1f7e5f8SHajimu UMEMOTO			 * check if there's ambiguity with the default scope
a1f7e5f8SHajimu UMEMOTO			 * zone as the last resort.
a1f7e5f8SHajimu UMEMOTO			 */
a1f7e5f8SHajimu UMEMOTO			bzero(&sa6_mc, sizeof(sa6_mc));
a1f7e5f8SHajimu UMEMOTO			sa6_mc.sin6_family = AF_INET6;
a1f7e5f8SHajimu UMEMOTO			sa6_mc.sin6_len = sizeof(sa6_mc);
a1f7e5f8SHajimu UMEMOTO			sa6_mc.sin6_addr = mreq->ipv6mr_multiaddr;
603724d3SBjoern A. Zeeb			error = sa6_embedscope(&sa6_mc, V_ip6_use_defzone);
a1f7e5f8SHajimu UMEMOTO			if (error != 0)
a1f7e5f8SHajimu UMEMOTO				break;
a1f7e5f8SHajimu UMEMOTO			mreq->ipv6mr_multiaddr = sa6_mc.sin6_addr;
82cd038dSYoshinobu Inoue		}
7efe5d92SHajimu UMEMOTO
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Find the membership in the membership list.
82cd038dSYoshinobu Inoue		 */
686cdd19SJun-ichiro itojun Hagino		for (imm = im6o->im6o_memberships.lh_first;
686cdd19SJun-ichiro itojun Hagino		     imm != NULL; imm = imm->i6mm_chain.le_next) {
7efe5d92SHajimu UMEMOTO			if ((ifp == NULL || imm->i6mm_maddr->in6m_ifp == ifp) &&
82cd038dSYoshinobu Inoue			    IN6_ARE_ADDR_EQUAL(&imm->i6mm_maddr->in6m_addr,
82cd038dSYoshinobu Inoue			    &mreq->ipv6mr_multiaddr))
82cd038dSYoshinobu Inoue				break;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		if (imm == NULL) {
82cd038dSYoshinobu Inoue			/* Unable to resolve interface */
82cd038dSYoshinobu Inoue			error = EADDRNOTAVAIL;
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue		/*
82cd038dSYoshinobu Inoue		 * Give up the multicast address record to which the
82cd038dSYoshinobu Inoue		 * membership points.
82cd038dSYoshinobu Inoue		 */
82cd038dSYoshinobu Inoue		LIST_REMOVE(imm, i6mm_chain);
82cd038dSYoshinobu Inoue		in6_delmulti(imm->i6mm_maddr);
7ba26d99SDavid E. O'Brien		free(imm, M_IP6MADDR);
82cd038dSYoshinobu Inoue		break;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	default:
82cd038dSYoshinobu Inoue		error = EOPNOTSUPP;
82cd038dSYoshinobu Inoue		break;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * If all options have default values, no need to keep the mbuf.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	if (im6o->im6o_multicast_ifp == NULL &&
603724d3SBjoern A. Zeeb	    im6o->im6o_multicast_hlim == V_ip6_defmcasthlim &&
82cd038dSYoshinobu Inoue	    im6o->im6o_multicast_loop == IPV6_DEFAULT_MULTICAST_LOOP &&
686cdd19SJun-ichiro itojun Hagino	    im6o->im6o_memberships.lh_first == NULL) {
7ba26d99SDavid E. O'Brien		free(*im6op, M_IP6MOPTS);
82cd038dSYoshinobu Inoue		*im6op = NULL;
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	return (error);
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue/*
82cd038dSYoshinobu Inoue * Return the IP6 multicast options in response to user getsockopt().
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inouestatic int
1272577eSXin LIip6_getmoptions(int optname, struct ip6_moptions *im6o, struct mbuf **mp)
82cd038dSYoshinobu Inoue{
8b615593SMarko Zec	INIT_VNET_INET6(curvnet);
82cd038dSYoshinobu Inoue	u_int *hlim, *loop, *ifindex;
82cd038dSYoshinobu Inoue
ea26d587SRuslan Ermilov	*mp = m_get(M_WAIT, MT_HEADER);		/* XXX */
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	switch (optname) {
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	case IPV6_MULTICAST_IF:
82cd038dSYoshinobu Inoue		ifindex = mtod(*mp, u_int *);
82cd038dSYoshinobu Inoue		(*mp)->m_len = sizeof(u_int);
82cd038dSYoshinobu Inoue		if (im6o == NULL || im6o->im6o_multicast_ifp == NULL)
82cd038dSYoshinobu Inoue			*ifindex = 0;
82cd038dSYoshinobu Inoue		else
82cd038dSYoshinobu Inoue			*ifindex = im6o->im6o_multicast_ifp->if_index;
82cd038dSYoshinobu Inoue		return (0);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	case IPV6_MULTICAST_HOPS:
82cd038dSYoshinobu Inoue		hlim = mtod(*mp, u_int *);
82cd038dSYoshinobu Inoue		(*mp)->m_len = sizeof(u_int);
82cd038dSYoshinobu Inoue		if (im6o == NULL)
603724d3SBjoern A. Zeeb			*hlim = V_ip6_defmcasthlim;
82cd038dSYoshinobu Inoue		else
82cd038dSYoshinobu Inoue			*hlim = im6o->im6o_multicast_hlim;
82cd038dSYoshinobu Inoue		return (0);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	case IPV6_MULTICAST_LOOP:
82cd038dSYoshinobu Inoue		loop = mtod(*mp, u_int *);
82cd038dSYoshinobu Inoue		(*mp)->m_len = sizeof(u_int);
82cd038dSYoshinobu Inoue		if (im6o == NULL)
603724d3SBjoern A. Zeeb			*loop = V_ip6_defmcasthlim;
82cd038dSYoshinobu Inoue		else
82cd038dSYoshinobu Inoue			*loop = im6o->im6o_multicast_loop;
82cd038dSYoshinobu Inoue		return (0);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	default:
82cd038dSYoshinobu Inoue		return (EOPNOTSUPP);
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue/*
82cd038dSYoshinobu Inoue * Discard the IP6 multicast options.
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inouevoid
1272577eSXin LIip6_freemoptions(struct ip6_moptions *im6o)
82cd038dSYoshinobu Inoue{
82cd038dSYoshinobu Inoue	struct in6_multi_mship *imm;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if (im6o == NULL)
82cd038dSYoshinobu Inoue		return;
82cd038dSYoshinobu Inoue
686cdd19SJun-ichiro itojun Hagino	while ((imm = im6o->im6o_memberships.lh_first) != NULL) {
82cd038dSYoshinobu Inoue		LIST_REMOVE(imm, i6mm_chain);
82cd038dSYoshinobu Inoue		if (imm->i6mm_maddr)
82cd038dSYoshinobu Inoue			in6_delmulti(imm->i6mm_maddr);
7ba26d99SDavid E. O'Brien		free(imm, M_IP6MADDR);
82cd038dSYoshinobu Inoue	}
7ba26d99SDavid E. O'Brien	free(im6o, M_IP6MOPTS);
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue/*
82cd038dSYoshinobu Inoue * Set IPv6 outgoing packet options based on advanced API.
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inoueint
1272577eSXin LIip6_setpktopts(struct mbuf *control, struct ip6_pktopts *opt,
79ba3952SBjoern A. Zeeb    struct ip6_pktopts *stickyopt, struct ucred *cred, int uproto)
82cd038dSYoshinobu Inoue{
33841545SHajimu UMEMOTO	struct cmsghdr *cm = 0;
82cd038dSYoshinobu Inoue
8507acb1SHajimu UMEMOTO	if (control == NULL || opt == NULL)
82cd038dSYoshinobu Inoue		return (EINVAL);
82cd038dSYoshinobu Inoue
885adbfaSHajimu UMEMOTO	ip6_initpktopts(opt);
f95d4633SHajimu UMEMOTO	if (stickyopt) {
885adbfaSHajimu UMEMOTO		int error;
885adbfaSHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/*
f95d4633SHajimu UMEMOTO		 * If stickyopt is provided, make a local copy of the options
f95d4633SHajimu UMEMOTO		 * for this particular packet, then override them by ancillary
f95d4633SHajimu UMEMOTO		 * objects.
885adbfaSHajimu UMEMOTO		 * XXX: copypktopts() does not copy the cached route to a next
885adbfaSHajimu UMEMOTO		 * hop (if any).  This is not very good in terms of efficiency,
885adbfaSHajimu UMEMOTO		 * but we can allow this since this option should be rarely
885adbfaSHajimu UMEMOTO		 * used.
f95d4633SHajimu UMEMOTO		 */
885adbfaSHajimu UMEMOTO		if ((error = copypktopts(opt, stickyopt, M_NOWAIT)) != 0)
885adbfaSHajimu UMEMOTO			return (error);
f95d4633SHajimu UMEMOTO	}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	/*
82cd038dSYoshinobu Inoue	 * XXX: Currently, we assume all the optional information is stored
82cd038dSYoshinobu Inoue	 * in a single mbuf.
82cd038dSYoshinobu Inoue	 */
82cd038dSYoshinobu Inoue	if (control->m_next)
82cd038dSYoshinobu Inoue		return (EINVAL);
82cd038dSYoshinobu Inoue
6f4da201SBjoern A. Zeeb	for (; control->m_len > 0; control->m_data += CMSG_ALIGN(cm->cmsg_len),
33841545SHajimu UMEMOTO	    control->m_len -= CMSG_ALIGN(cm->cmsg_len)) {
f95d4633SHajimu UMEMOTO		int error;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if (control->m_len < CMSG_LEN(0))
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO
82cd038dSYoshinobu Inoue		cm = mtod(control, struct cmsghdr *);
82cd038dSYoshinobu Inoue		if (cm->cmsg_len == 0 || cm->cmsg_len > control->m_len)
82cd038dSYoshinobu Inoue			return (EINVAL);
82cd038dSYoshinobu Inoue		if (cm->cmsg_level != IPPROTO_IPV6)
82cd038dSYoshinobu Inoue			continue;
82cd038dSYoshinobu Inoue
d5e3406dSHajimu UMEMOTO		error = ip6_setpktopt(cm->cmsg_type, CMSG_DATA(cm),
79ba3952SBjoern A. Zeeb		    cm->cmsg_len - CMSG_LEN(0), opt, cred, 0, 1, uproto);
f95d4633SHajimu UMEMOTO		if (error)
f95d4633SHajimu UMEMOTO			return (error);
f95d4633SHajimu UMEMOTO	}
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO	return (0);
f95d4633SHajimu UMEMOTO}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO/*
f95d4633SHajimu UMEMOTO * Set a particular packet option, as a sticky option or an ancillary data
f95d4633SHajimu UMEMOTO * item.  "len" can be 0 only when it's a sticky option.
f95d4633SHajimu UMEMOTO * We have 4 cases of combination of "sticky" and "cmsg":
f95d4633SHajimu UMEMOTO * "sticky=0, cmsg=0": impossible
18b35df8SHajimu UMEMOTO * "sticky=0, cmsg=1": RFC2292 or RFC3542 ancillary data
18b35df8SHajimu UMEMOTO * "sticky=1, cmsg=0": RFC3542 socket option
f95d4633SHajimu UMEMOTO * "sticky=1, cmsg=1": RFC2292 socket option
f95d4633SHajimu UMEMOTO */
f95d4633SHajimu UMEMOTOstatic int
1272577eSXin LIip6_setpktopt(int optname, u_char *buf, int len, struct ip6_pktopts *opt,
79ba3952SBjoern A. Zeeb    struct ucred *cred, int sticky, int cmsg, int uproto)
f95d4633SHajimu UMEMOTO{
8b615593SMarko Zec	INIT_VNET_NET(curvnet);
8b615593SMarko Zec	INIT_VNET_INET6(curvnet);
f95d4633SHajimu UMEMOTO	int minmtupolicy, preftemp;
79ba3952SBjoern A. Zeeb	int error;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	if (!sticky && !cmsg) {
f95d4633SHajimu UMEMOTO#ifdef DIAGNOSTIC
d5e3406dSHajimu UMEMOTO		printf("ip6_setpktopt: impossible case\n");
f95d4633SHajimu UMEMOTO#endif
f95d4633SHajimu UMEMOTO		return (EINVAL);
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	/*
f95d4633SHajimu UMEMOTO	 * IPV6_2292xxx is for backward compatibility to RFC2292, and should
18b35df8SHajimu UMEMOTO	 * not be specified in the context of RFC3542.  Conversely,
18b35df8SHajimu UMEMOTO	 * RFC3542 types should not be specified in the context of RFC2292.
f95d4633SHajimu UMEMOTO	 */
f95d4633SHajimu UMEMOTO	if (!cmsg) {
f95d4633SHajimu UMEMOTO		switch (optname) {
f95d4633SHajimu UMEMOTO		case IPV6_2292PKTINFO:
f95d4633SHajimu UMEMOTO		case IPV6_2292HOPLIMIT:
f95d4633SHajimu UMEMOTO		case IPV6_2292NEXTHOP:
f95d4633SHajimu UMEMOTO		case IPV6_2292HOPOPTS:
f95d4633SHajimu UMEMOTO		case IPV6_2292DSTOPTS:
f95d4633SHajimu UMEMOTO		case IPV6_2292RTHDR:
f95d4633SHajimu UMEMOTO		case IPV6_2292PKTOPTIONS:
f95d4633SHajimu UMEMOTO			return (ENOPROTOOPT);
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO	if (sticky && cmsg) {
f95d4633SHajimu UMEMOTO		switch (optname) {
f95d4633SHajimu UMEMOTO		case IPV6_PKTINFO:
f95d4633SHajimu UMEMOTO		case IPV6_HOPLIMIT:
f95d4633SHajimu UMEMOTO		case IPV6_NEXTHOP:
f95d4633SHajimu UMEMOTO		case IPV6_HOPOPTS:
f95d4633SHajimu UMEMOTO		case IPV6_DSTOPTS:
f95d4633SHajimu UMEMOTO		case IPV6_RTHDRDSTOPTS:
f95d4633SHajimu UMEMOTO		case IPV6_RTHDR:
f95d4633SHajimu UMEMOTO		case IPV6_USE_MIN_MTU:
f95d4633SHajimu UMEMOTO		case IPV6_DONTFRAG:
f95d4633SHajimu UMEMOTO		case IPV6_TCLASS:
18b35df8SHajimu UMEMOTO		case IPV6_PREFER_TEMPADDR: /* XXX: not an RFC3542 option */
f95d4633SHajimu UMEMOTO			return (ENOPROTOOPT);
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	switch (optname) {
f95d4633SHajimu UMEMOTO	case IPV6_2292PKTINFO:
f95d4633SHajimu UMEMOTO	case IPV6_PKTINFO:
f95d4633SHajimu UMEMOTO	{
f95d4633SHajimu UMEMOTO		struct ifnet *ifp = NULL;
f95d4633SHajimu UMEMOTO		struct in6_pktinfo *pktinfo;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if (len != sizeof(struct in6_pktinfo))
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		pktinfo = (struct in6_pktinfo *)buf;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/*
f95d4633SHajimu UMEMOTO		 * An application can clear any sticky IPV6_PKTINFO option by
f95d4633SHajimu UMEMOTO		 * doing a "regular" setsockopt with ipi6_addr being
f95d4633SHajimu UMEMOTO		 * in6addr_any and ipi6_ifindex being zero.
f95d4633SHajimu UMEMOTO		 * [RFC 3542, Section 6]
f95d4633SHajimu UMEMOTO		 */
f95d4633SHajimu UMEMOTO		if (optname == IPV6_PKTINFO && opt->ip6po_pktinfo &&
f95d4633SHajimu UMEMOTO		    pktinfo->ipi6_ifindex == 0 &&
f95d4633SHajimu UMEMOTO		    IN6_IS_ADDR_UNSPECIFIED(&pktinfo->ipi6_addr)) {
f95d4633SHajimu UMEMOTO			ip6_clearpktopts(opt, optname);
f95d4633SHajimu UMEMOTO			break;
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if (uproto == IPPROTO_TCP && optname == IPV6_PKTINFO &&
f95d4633SHajimu UMEMOTO		    sticky && !IN6_IS_ADDR_UNSPECIFIED(&pktinfo->ipi6_addr)) {
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/* validate the interface index if specified. */
603724d3SBjoern A. Zeeb		if (pktinfo->ipi6_ifindex > V_if_index ||
f95d4633SHajimu UMEMOTO		    pktinfo->ipi6_ifindex < 0) {
f95d4633SHajimu UMEMOTO			 return (ENXIO);
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO		if (pktinfo->ipi6_ifindex) {
f95d4633SHajimu UMEMOTO			ifp = ifnet_byindex(pktinfo->ipi6_ifindex);
f95d4633SHajimu UMEMOTO			if (ifp == NULL)
82cd038dSYoshinobu Inoue				return (ENXIO);
82cd038dSYoshinobu Inoue		}
82cd038dSYoshinobu Inoue
33841545SHajimu UMEMOTO		/*
f95d4633SHajimu UMEMOTO		 * We store the address anyway, and let in6_selectsrc()
f95d4633SHajimu UMEMOTO		 * validate the specified address.  This is because ipi6_addr
f95d4633SHajimu UMEMOTO		 * may not have enough information about its scope zone, and
f95d4633SHajimu UMEMOTO		 * we may need additional information (such as outgoing
f95d4633SHajimu UMEMOTO		 * interface or the scope zone of a destination address) to
f95d4633SHajimu UMEMOTO		 * disambiguate the scope.
f95d4633SHajimu UMEMOTO		 * XXX: the delay of the validation may confuse the
f95d4633SHajimu UMEMOTO		 * application when it is used as a sticky option.
33841545SHajimu UMEMOTO		 */
f95d4633SHajimu UMEMOTO		if (opt->ip6po_pktinfo == NULL) {
f95d4633SHajimu UMEMOTO			opt->ip6po_pktinfo = malloc(sizeof(*pktinfo),
885adbfaSHajimu UMEMOTO			    M_IP6OPT, M_NOWAIT);
885adbfaSHajimu UMEMOTO			if (opt->ip6po_pktinfo == NULL)
885adbfaSHajimu UMEMOTO				return (ENOBUFS);
82cd038dSYoshinobu Inoue		}
f95d4633SHajimu UMEMOTO		bcopy(pktinfo, opt->ip6po_pktinfo, sizeof(*pktinfo));
82cd038dSYoshinobu Inoue		break;
f95d4633SHajimu UMEMOTO	}
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO	case IPV6_2292HOPLIMIT:
82cd038dSYoshinobu Inoue	case IPV6_HOPLIMIT:
f95d4633SHajimu UMEMOTO	{
f95d4633SHajimu UMEMOTO		int *hlimp;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/*
f95d4633SHajimu UMEMOTO		 * RFC 3542 deprecated the usage of sticky IPV6_HOPLIMIT
f95d4633SHajimu UMEMOTO		 * to simplify the ordering among hoplimit options.
f95d4633SHajimu UMEMOTO		 */
f95d4633SHajimu UMEMOTO		if (optname == IPV6_HOPLIMIT && sticky)
f95d4633SHajimu UMEMOTO			return (ENOPROTOOPT);
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if (len != sizeof(int))
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO		hlimp = (int *)buf;
f95d4633SHajimu UMEMOTO		if (*hlimp < -1 || *hlimp > 255)
82cd038dSYoshinobu Inoue			return (EINVAL);
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO		opt->ip6po_hlim = *hlimp;
82cd038dSYoshinobu Inoue		break;
f95d4633SHajimu UMEMOTO	}
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO	case IPV6_TCLASS:
f95d4633SHajimu UMEMOTO	{
f95d4633SHajimu UMEMOTO		int tclass;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if (len != sizeof(int))
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO		tclass = *(int *)buf;
f95d4633SHajimu UMEMOTO		if (tclass < -1 || tclass > 255)
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		opt->ip6po_tclass = tclass;
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO	}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	case IPV6_2292NEXTHOP:
82cd038dSYoshinobu Inoue	case IPV6_NEXTHOP:
79ba3952SBjoern A. Zeeb		if (cred != NULL) {
79ba3952SBjoern A. Zeeb			error = priv_check_cred(cred,
79ba3952SBjoern A. Zeeb			    PRIV_NETINET_SETHDROPTS, 0);
79ba3952SBjoern A. Zeeb			if (error)
79ba3952SBjoern A. Zeeb				return (error);
79ba3952SBjoern A. Zeeb		}
33841545SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if (len == 0) {	/* just remove the option */
f95d4633SHajimu UMEMOTO			ip6_clearpktopts(opt, IPV6_NEXTHOP);
f95d4633SHajimu UMEMOTO			break;
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO
33841545SHajimu UMEMOTO		/* check if cmsg_len is large enough for sa_len */
f95d4633SHajimu UMEMOTO		if (len < sizeof(struct sockaddr) || len < *buf)
82cd038dSYoshinobu Inoue			return (EINVAL);
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO		switch (((struct sockaddr *)buf)->sa_family) {
f95d4633SHajimu UMEMOTO		case AF_INET6:
f95d4633SHajimu UMEMOTO		{
f95d4633SHajimu UMEMOTO			struct sockaddr_in6 *sa6 = (struct sockaddr_in6 *)buf;
f95d4633SHajimu UMEMOTO			int error;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO			if (sa6->sin6_len != sizeof(struct sockaddr_in6))
f95d4633SHajimu UMEMOTO				return (EINVAL);
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO			if (IN6_IS_ADDR_UNSPECIFIED(&sa6->sin6_addr) ||
f95d4633SHajimu UMEMOTO			    IN6_IS_ADDR_MULTICAST(&sa6->sin6_addr)) {
f95d4633SHajimu UMEMOTO				return (EINVAL);
f95d4633SHajimu UMEMOTO			}
603724d3SBjoern A. Zeeb			if ((error = sa6_embedscope(sa6, V_ip6_use_defzone))
f95d4633SHajimu UMEMOTO			    != 0) {
f95d4633SHajimu UMEMOTO				return (error);
f95d4633SHajimu UMEMOTO			}
f95d4633SHajimu UMEMOTO			break;
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO		case AF_LINK:	/* should eventually be supported */
f95d4633SHajimu UMEMOTO		default:
f95d4633SHajimu UMEMOTO			return (EAFNOSUPPORT);
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/* turn off the previous option, then set the new option. */
f95d4633SHajimu UMEMOTO		ip6_clearpktopts(opt, IPV6_NEXTHOP);
743eee66SSUZUKI Shinsuke		opt->ip6po_nexthop = malloc(*buf, M_IP6OPT, M_NOWAIT);
743eee66SSUZUKI Shinsuke		if (opt->ip6po_nexthop == NULL)
743eee66SSUZUKI Shinsuke			return (ENOBUFS);
f95d4633SHajimu UMEMOTO		bcopy(buf, opt->ip6po_nexthop, *buf);
82cd038dSYoshinobu Inoue		break;
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO	case IPV6_2292HOPOPTS:
82cd038dSYoshinobu Inoue	case IPV6_HOPOPTS:
33841545SHajimu UMEMOTO	{
33841545SHajimu UMEMOTO		struct ip6_hbh *hbh;
33841545SHajimu UMEMOTO		int hbhlen;
33841545SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/*
f95d4633SHajimu UMEMOTO		 * XXX: We don't allow a non-privileged user to set ANY HbH
f95d4633SHajimu UMEMOTO		 * options, since per-option restriction has too much
f95d4633SHajimu UMEMOTO		 * overhead.
f95d4633SHajimu UMEMOTO		 */
79ba3952SBjoern A. Zeeb		if (cred != NULL) {
79ba3952SBjoern A. Zeeb			error = priv_check_cred(cred,
79ba3952SBjoern A. Zeeb			    PRIV_NETINET_SETHDROPTS, 0);
79ba3952SBjoern A. Zeeb			if (error)
79ba3952SBjoern A. Zeeb				return (error);
79ba3952SBjoern A. Zeeb		}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if (len == 0) {
f95d4633SHajimu UMEMOTO			ip6_clearpktopts(opt, IPV6_HOPOPTS);
f95d4633SHajimu UMEMOTO			break;	/* just remove the option */
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/* message length validation */
f95d4633SHajimu UMEMOTO		if (len < sizeof(struct ip6_hbh))
82cd038dSYoshinobu Inoue			return (EINVAL);
f95d4633SHajimu UMEMOTO		hbh = (struct ip6_hbh *)buf;
33841545SHajimu UMEMOTO		hbhlen = (hbh->ip6h_len + 1) << 3;
f95d4633SHajimu UMEMOTO		if (len != hbhlen)
82cd038dSYoshinobu Inoue			return (EINVAL);
33841545SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/* turn off the previous option, then set the new option. */
f95d4633SHajimu UMEMOTO		ip6_clearpktopts(opt, IPV6_HOPOPTS);
743eee66SSUZUKI Shinsuke		opt->ip6po_hbh = malloc(hbhlen, M_IP6OPT, M_NOWAIT);
743eee66SSUZUKI Shinsuke		if (opt->ip6po_hbh == NULL)
743eee66SSUZUKI Shinsuke			return (ENOBUFS);
33841545SHajimu UMEMOTO		bcopy(hbh, opt->ip6po_hbh, hbhlen);
f95d4633SHajimu UMEMOTO
82cd038dSYoshinobu Inoue		break;
33841545SHajimu UMEMOTO	}
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO	case IPV6_2292DSTOPTS:
82cd038dSYoshinobu Inoue	case IPV6_DSTOPTS:
f95d4633SHajimu UMEMOTO	case IPV6_RTHDRDSTOPTS:
33841545SHajimu UMEMOTO	{
f95d4633SHajimu UMEMOTO		struct ip6_dest *dest, **newdest = NULL;
33841545SHajimu UMEMOTO		int destlen;
33841545SHajimu UMEMOTO
79ba3952SBjoern A. Zeeb		if (cred != NULL) { /* XXX: see the comment for IPV6_HOPOPTS */
79ba3952SBjoern A. Zeeb			error = priv_check_cred(cred,
79ba3952SBjoern A. Zeeb			    PRIV_NETINET_SETHDROPTS, 0);
79ba3952SBjoern A. Zeeb			if (error)
79ba3952SBjoern A. Zeeb				return (error);
79ba3952SBjoern A. Zeeb		}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if (len == 0) {
f95d4633SHajimu UMEMOTO			ip6_clearpktopts(opt, optname);
f95d4633SHajimu UMEMOTO			break;	/* just remove the option */
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/* message length validation */
f95d4633SHajimu UMEMOTO		if (len < sizeof(struct ip6_dest))
82cd038dSYoshinobu Inoue			return (EINVAL);
f95d4633SHajimu UMEMOTO		dest = (struct ip6_dest *)buf;
33841545SHajimu UMEMOTO		destlen = (dest->ip6d_len + 1) << 3;
f95d4633SHajimu UMEMOTO		if (len != destlen)
33841545SHajimu UMEMOTO			return (EINVAL);
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue		/*
f95d4633SHajimu UMEMOTO		 * Determine the position that the destination options header
f95d4633SHajimu UMEMOTO		 * should be inserted; before or after the routing header.
f95d4633SHajimu UMEMOTO		 */
f95d4633SHajimu UMEMOTO		switch (optname) {
f95d4633SHajimu UMEMOTO		case IPV6_2292DSTOPTS:
f95d4633SHajimu UMEMOTO			/*
f95d4633SHajimu UMEMOTO			 * The old advacned API is ambiguous on this point.
f95d4633SHajimu UMEMOTO			 * Our approach is to determine the position based
f95d4633SHajimu UMEMOTO			 * according to the existence of a routing header.
f95d4633SHajimu UMEMOTO			 * Note, however, that this depends on the order of the
f95d4633SHajimu UMEMOTO			 * extension headers in the ancillary data; the 1st
f95d4633SHajimu UMEMOTO			 * part of the destination options header must appear
f95d4633SHajimu UMEMOTO			 * before the routing header in the ancillary data,
f95d4633SHajimu UMEMOTO			 * too.
18b35df8SHajimu UMEMOTO			 * RFC3542 solved the ambiguity by introducing
f95d4633SHajimu UMEMOTO			 * separate ancillary data or option types.
82cd038dSYoshinobu Inoue			 */
33841545SHajimu UMEMOTO			if (opt->ip6po_rthdr == NULL)
33841545SHajimu UMEMOTO				newdest = &opt->ip6po_dest1;
33841545SHajimu UMEMOTO			else
33841545SHajimu UMEMOTO				newdest = &opt->ip6po_dest2;
f95d4633SHajimu UMEMOTO			break;
f95d4633SHajimu UMEMOTO		case IPV6_RTHDRDSTOPTS:
f95d4633SHajimu UMEMOTO			newdest = &opt->ip6po_dest1;
f95d4633SHajimu UMEMOTO			break;
f95d4633SHajimu UMEMOTO		case IPV6_DSTOPTS:
f95d4633SHajimu UMEMOTO			newdest = &opt->ip6po_dest2;
f95d4633SHajimu UMEMOTO			break;
f95d4633SHajimu UMEMOTO		}
33841545SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/* turn off the previous option, then set the new option. */
f95d4633SHajimu UMEMOTO		ip6_clearpktopts(opt, optname);
743eee66SSUZUKI Shinsuke		*newdest = malloc(destlen, M_IP6OPT, M_NOWAIT);
fc4c8258SRobert Watson		if (*newdest == NULL)
743eee66SSUZUKI Shinsuke			return (ENOBUFS);
33841545SHajimu UMEMOTO		bcopy(dest, *newdest, destlen);
33841545SHajimu UMEMOTO
82cd038dSYoshinobu Inoue		break;
33841545SHajimu UMEMOTO	}
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO	case IPV6_2292RTHDR:
82cd038dSYoshinobu Inoue	case IPV6_RTHDR:
33841545SHajimu UMEMOTO	{
33841545SHajimu UMEMOTO		struct ip6_rthdr *rth;
33841545SHajimu UMEMOTO		int rthlen;
33841545SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if (len == 0) {
f95d4633SHajimu UMEMOTO			ip6_clearpktopts(opt, IPV6_RTHDR);
f95d4633SHajimu UMEMOTO			break;	/* just remove the option */
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/* message length validation */
f95d4633SHajimu UMEMOTO		if (len < sizeof(struct ip6_rthdr))
82cd038dSYoshinobu Inoue			return (EINVAL);
f95d4633SHajimu UMEMOTO		rth = (struct ip6_rthdr *)buf;
33841545SHajimu UMEMOTO		rthlen = (rth->ip6r_len + 1) << 3;
f95d4633SHajimu UMEMOTO		if (len != rthlen)
82cd038dSYoshinobu Inoue			return (EINVAL);
33841545SHajimu UMEMOTO
33841545SHajimu UMEMOTO		switch (rth->ip6r_type) {
82cd038dSYoshinobu Inoue		case IPV6_RTHDR_TYPE_0:
f95d4633SHajimu UMEMOTO			if (rth->ip6r_len == 0)	/* must contain one addr */
33841545SHajimu UMEMOTO				return (EINVAL);
f95d4633SHajimu UMEMOTO			if (rth->ip6r_len % 2) /* length must be even */
33841545SHajimu UMEMOTO				return (EINVAL);
33841545SHajimu UMEMOTO			if (rth->ip6r_len / 2 != rth->ip6r_segleft)
82cd038dSYoshinobu Inoue				return (EINVAL);
82cd038dSYoshinobu Inoue			break;
82cd038dSYoshinobu Inoue		default:
33841545SHajimu UMEMOTO			return (EINVAL);	/* not supported */
82cd038dSYoshinobu Inoue		}
33841545SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		/* turn off the previous option */
f95d4633SHajimu UMEMOTO		ip6_clearpktopts(opt, IPV6_RTHDR);
743eee66SSUZUKI Shinsuke		opt->ip6po_rthdr = malloc(rthlen, M_IP6OPT, M_NOWAIT);
743eee66SSUZUKI Shinsuke		if (opt->ip6po_rthdr == NULL)
743eee66SSUZUKI Shinsuke			return (ENOBUFS);
33841545SHajimu UMEMOTO		bcopy(rth, opt->ip6po_rthdr, rthlen);
33841545SHajimu UMEMOTO
82cd038dSYoshinobu Inoue		break;
33841545SHajimu UMEMOTO	}
82cd038dSYoshinobu Inoue
f95d4633SHajimu UMEMOTO	case IPV6_USE_MIN_MTU:
f95d4633SHajimu UMEMOTO		if (len != sizeof(int))
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO		minmtupolicy = *(int *)buf;
f95d4633SHajimu UMEMOTO		if (minmtupolicy != IP6PO_MINMTU_MCASTONLY &&
f95d4633SHajimu UMEMOTO		    minmtupolicy != IP6PO_MINMTU_DISABLE &&
f95d4633SHajimu UMEMOTO		    minmtupolicy != IP6PO_MINMTU_ALL) {
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO		opt->ip6po_minmtu = minmtupolicy;
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	case IPV6_DONTFRAG:
f95d4633SHajimu UMEMOTO		if (len != sizeof(int))
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO		if (uproto == IPPROTO_TCP || *(int *)buf == 0) {
f95d4633SHajimu UMEMOTO			/*
f95d4633SHajimu UMEMOTO			 * we ignore this option for TCP sockets.
18b35df8SHajimu UMEMOTO			 * (RFC3542 leaves this case unspecified.)
f95d4633SHajimu UMEMOTO			 */
f95d4633SHajimu UMEMOTO			opt->ip6po_flags &= ~IP6PO_DONTFRAG;
f95d4633SHajimu UMEMOTO		} else
f95d4633SHajimu UMEMOTO			opt->ip6po_flags |= IP6PO_DONTFRAG;
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO
f95d4633SHajimu UMEMOTO	case IPV6_PREFER_TEMPADDR:
f95d4633SHajimu UMEMOTO		if (len != sizeof(int))
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO		preftemp = *(int *)buf;
f95d4633SHajimu UMEMOTO		if (preftemp != IP6PO_TEMPADDR_SYSTEM &&
f95d4633SHajimu UMEMOTO		    preftemp != IP6PO_TEMPADDR_NOTPREFER &&
f95d4633SHajimu UMEMOTO		    preftemp != IP6PO_TEMPADDR_PREFER) {
f95d4633SHajimu UMEMOTO			return (EINVAL);
f95d4633SHajimu UMEMOTO		}
f95d4633SHajimu UMEMOTO		opt->ip6po_prefer_tempaddr = preftemp;
f95d4633SHajimu UMEMOTO		break;
f95d4633SHajimu UMEMOTO
82cd038dSYoshinobu Inoue	default:
82cd038dSYoshinobu Inoue		return (ENOPROTOOPT);
f95d4633SHajimu UMEMOTO	} /* end of switch */
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	return (0);
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue/*
82cd038dSYoshinobu Inoue * Routine called from ip6_output() to loop back a copy of an IP6 multicast
82cd038dSYoshinobu Inoue * packet to the input queue of a specified interface.  Note that this
82cd038dSYoshinobu Inoue * calls the output routine of the loopback "driver", but with an interface
82cd038dSYoshinobu Inoue * pointer that might NOT be &loif -- easier than replicating that code here.
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inouevoid
1272577eSXin LIip6_mloopback(struct ifnet *ifp, struct mbuf *m, struct sockaddr_in6 *dst)
82cd038dSYoshinobu Inoue{
82cd038dSYoshinobu Inoue	struct mbuf *copym;
686cdd19SJun-ichiro itojun Hagino	struct ip6_hdr *ip6;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	copym = m_copy(m, 0, M_COPYALL);
686cdd19SJun-ichiro itojun Hagino	if (copym == NULL)
686cdd19SJun-ichiro itojun Hagino		return;
686cdd19SJun-ichiro itojun Hagino
686cdd19SJun-ichiro itojun Hagino	/*
686cdd19SJun-ichiro itojun Hagino	 * Make sure to deep-copy IPv6 header portion in case the data
686cdd19SJun-ichiro itojun Hagino	 * is in an mbuf cluster, so that we can safely override the IPv6
686cdd19SJun-ichiro itojun Hagino	 * header portion later.
686cdd19SJun-ichiro itojun Hagino	 */
686cdd19SJun-ichiro itojun Hagino	if ((copym->m_flags & M_EXT) != 0 ||
686cdd19SJun-ichiro itojun Hagino	    copym->m_len < sizeof(struct ip6_hdr)) {
686cdd19SJun-ichiro itojun Hagino		copym = m_pullup(copym, sizeof(struct ip6_hdr));
686cdd19SJun-ichiro itojun Hagino		if (copym == NULL)
686cdd19SJun-ichiro itojun Hagino			return;
82cd038dSYoshinobu Inoue	}
686cdd19SJun-ichiro itojun Hagino
686cdd19SJun-ichiro itojun Hagino#ifdef DIAGNOSTIC
686cdd19SJun-ichiro itojun Hagino	if (copym->m_len < sizeof(*ip6)) {
686cdd19SJun-ichiro itojun Hagino		m_freem(copym);
686cdd19SJun-ichiro itojun Hagino		return;
686cdd19SJun-ichiro itojun Hagino	}
686cdd19SJun-ichiro itojun Hagino#endif
686cdd19SJun-ichiro itojun Hagino
686cdd19SJun-ichiro itojun Hagino	ip6 = mtod(copym, struct ip6_hdr *);
33841545SHajimu UMEMOTO	/*
33841545SHajimu UMEMOTO	 * clear embedded scope identifiers if necessary.
33841545SHajimu UMEMOTO	 * in6_clearscope will touch the addresses only when necessary.
33841545SHajimu UMEMOTO	 */
33841545SHajimu UMEMOTO	in6_clearscope(&ip6->ip6_src);
33841545SHajimu UMEMOTO	in6_clearscope(&ip6->ip6_dst);
686cdd19SJun-ichiro itojun Hagino
a89ec05eSPeter Wemm	(void)if_simloop(ifp, copym, dst->sin6_family, 0);
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue/*
82cd038dSYoshinobu Inoue * Chop IPv6 header off from the payload.
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inouestatic int
1272577eSXin LIip6_splithdr(struct mbuf *m, struct ip6_exthdrs *exthdrs)
82cd038dSYoshinobu Inoue{
82cd038dSYoshinobu Inoue	struct mbuf *mh;
82cd038dSYoshinobu Inoue	struct ip6_hdr *ip6;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	ip6 = mtod(m, struct ip6_hdr *);
82cd038dSYoshinobu Inoue	if (m->m_len > sizeof(*ip6)) {
a163d034SWarner Losh		MGETHDR(mh, M_DONTWAIT, MT_HEADER);
82cd038dSYoshinobu Inoue		if (mh == 0) {
82cd038dSYoshinobu Inoue			m_freem(m);
82cd038dSYoshinobu Inoue			return ENOBUFS;
82cd038dSYoshinobu Inoue		}
9967cafcSSam Leffler		M_MOVE_PKTHDR(mh, m);
82cd038dSYoshinobu Inoue		MH_ALIGN(mh, sizeof(*ip6));
82cd038dSYoshinobu Inoue		m->m_len -= sizeof(*ip6);
82cd038dSYoshinobu Inoue		m->m_data += sizeof(*ip6);
82cd038dSYoshinobu Inoue		mh->m_next = m;
82cd038dSYoshinobu Inoue		m = mh;
82cd038dSYoshinobu Inoue		m->m_len = sizeof(*ip6);
82cd038dSYoshinobu Inoue		bcopy((caddr_t)ip6, mtod(m, caddr_t), sizeof(*ip6));
82cd038dSYoshinobu Inoue	}
82cd038dSYoshinobu Inoue	exthdrs->ip6e_ip6 = m;
82cd038dSYoshinobu Inoue	return 0;
82cd038dSYoshinobu Inoue}
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue/*
82cd038dSYoshinobu Inoue * Compute IPv6 extension header length.
82cd038dSYoshinobu Inoue */
82cd038dSYoshinobu Inoueint
1272577eSXin LIip6_optlen(struct in6pcb *in6p)
82cd038dSYoshinobu Inoue{
82cd038dSYoshinobu Inoue	int len;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	if (!in6p->in6p_outputopts)
82cd038dSYoshinobu Inoue		return 0;
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	len = 0;
82cd038dSYoshinobu Inoue#define elen(x) \
82cd038dSYoshinobu Inoue    (((struct ip6_ext *)(x)) ? (((struct ip6_ext *)(x))->ip6e_len + 1) << 3 : 0)
82cd038dSYoshinobu Inoue
82cd038dSYoshinobu Inoue	len += elen(in6p->in6p_outputopts->ip6po_hbh);
33841545SHajimu UMEMOTO	if (in6p->in6p_outputopts->ip6po_rthdr)
33841545SHajimu UMEMOTO		/* dest1 is valid with rthdr only */
82cd038dSYoshinobu Inoue		len += elen(in6p->in6p_outputopts->ip6po_dest1);
82cd038dSYoshinobu Inoue	len += elen(in6p->in6p_outputopts->ip6po_rthdr);
82cd038dSYoshinobu Inoue	len += elen(in6p->in6p_outputopts->ip6po_dest2);
82cd038dSYoshinobu Inoue	return len;
82cd038dSYoshinobu Inoue#undef elen
82cd038dSYoshinobu Inoue}