1ae326725SJun-ichiro itojun Hagino /* $FreeBSD$ */ 2fa19f9beSHajimu UMEMOTO /* $KAME: rrenum.c,v 1.12 2002/06/10 19:59:47 itojun Exp $ */ 3b26e03e9SKris Kennaway 49a4365d0SYoshinobu Inoue /* 59a4365d0SYoshinobu Inoue * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. 69a4365d0SYoshinobu Inoue * All rights reserved. 79a4365d0SYoshinobu Inoue * 89a4365d0SYoshinobu Inoue * Redistribution and use in source and binary forms, with or without 99a4365d0SYoshinobu Inoue * modification, are permitted provided that the following conditions 109a4365d0SYoshinobu Inoue * are met: 119a4365d0SYoshinobu Inoue * 1. Redistributions of source code must retain the above copyright 129a4365d0SYoshinobu Inoue * notice, this list of conditions and the following disclaimer. 139a4365d0SYoshinobu Inoue * 2. Redistributions in binary form must reproduce the above copyright 149a4365d0SYoshinobu Inoue * notice, this list of conditions and the following disclaimer in the 159a4365d0SYoshinobu Inoue * documentation and/or other materials provided with the distribution. 169a4365d0SYoshinobu Inoue * 3. Neither the name of the project nor the names of its contributors 179a4365d0SYoshinobu Inoue * may be used to endorse or promote products derived from this software 189a4365d0SYoshinobu Inoue * without specific prior written permission. 199a4365d0SYoshinobu Inoue * 209a4365d0SYoshinobu Inoue * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND 219a4365d0SYoshinobu Inoue * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 229a4365d0SYoshinobu Inoue * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 239a4365d0SYoshinobu Inoue * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE 249a4365d0SYoshinobu Inoue * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 259a4365d0SYoshinobu Inoue * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 269a4365d0SYoshinobu Inoue * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 279a4365d0SYoshinobu Inoue * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 289a4365d0SYoshinobu Inoue * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 299a4365d0SYoshinobu Inoue * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 309a4365d0SYoshinobu Inoue * SUCH DAMAGE. 319a4365d0SYoshinobu Inoue */ 3233841545SHajimu UMEMOTO #include <sys/types.h> 339a4365d0SYoshinobu Inoue #include <sys/param.h> 349a4365d0SYoshinobu Inoue #include <sys/ioctl.h> 359a4365d0SYoshinobu Inoue #include <sys/socket.h> 369a4365d0SYoshinobu Inoue #include <sys/sysctl.h> 379a4365d0SYoshinobu Inoue 389a4365d0SYoshinobu Inoue #include <net/if.h> 399a4365d0SYoshinobu Inoue #include <net/if_var.h> 409a4365d0SYoshinobu Inoue #include <net/route.h> 419a4365d0SYoshinobu Inoue #include <netinet/in.h> 429a4365d0SYoshinobu Inoue #include <netinet/in_var.h> 439a4365d0SYoshinobu Inoue #include <netinet/icmp6.h> 449a4365d0SYoshinobu Inoue 459a4365d0SYoshinobu Inoue #include <arpa/inet.h> 469a4365d0SYoshinobu Inoue 479a4365d0SYoshinobu Inoue #include <errno.h> 48*db82af41SHiroki Sato #include <netdb.h> 499a4365d0SYoshinobu Inoue #include <string.h> 509a4365d0SYoshinobu Inoue #include <stdlib.h> 519a4365d0SYoshinobu Inoue #include <syslog.h> 5233841545SHajimu UMEMOTO #include "rtadvd.h" 539a4365d0SYoshinobu Inoue #include "rrenum.h" 549a4365d0SYoshinobu Inoue #include "if.h" 559a4365d0SYoshinobu Inoue 569a4365d0SYoshinobu Inoue #define RR_ISSET_SEGNUM(segnum_bits, segnum) \ 579a4365d0SYoshinobu Inoue ((((segnum_bits)[(segnum) >> 5]) & (1 << ((segnum) & 31))) != 0) 589a4365d0SYoshinobu Inoue #define RR_SET_SEGNUM(segnum_bits, segnum) \ 599a4365d0SYoshinobu Inoue (((segnum_bits)[(segnum) >> 5]) |= (1 << ((segnum) & 31))) 609a4365d0SYoshinobu Inoue 619a4365d0SYoshinobu Inoue struct rr_operation { 629a4365d0SYoshinobu Inoue u_long rro_seqnum; 639a4365d0SYoshinobu Inoue u_long rro_segnum_bits[8]; 649a4365d0SYoshinobu Inoue }; 659a4365d0SYoshinobu Inoue 669a4365d0SYoshinobu Inoue static struct rr_operation rro; 679a4365d0SYoshinobu Inoue static int rr_rcvifindex; 68b26e03e9SKris Kennaway static int rrcmd2pco[RPM_PCO_MAX] = { 69b26e03e9SKris Kennaway 0, 709a4365d0SYoshinobu Inoue SIOCAIFPREFIX_IN6, 719a4365d0SYoshinobu Inoue SIOCCIFPREFIX_IN6, 729a4365d0SYoshinobu Inoue SIOCSGIFPREFIX_IN6 739a4365d0SYoshinobu Inoue }; 74b26e03e9SKris Kennaway static int s = -1; 759a4365d0SYoshinobu Inoue 769a4365d0SYoshinobu Inoue /* 779a4365d0SYoshinobu Inoue * Check validity of a Prefix Control Operation(PCO). 78*db82af41SHiroki Sato * return 0 on success, 1 on failure. 799a4365d0SYoshinobu Inoue */ 809a4365d0SYoshinobu Inoue static int 819a4365d0SYoshinobu Inoue rr_pco_check(int len, struct rr_pco_match *rpm) 829a4365d0SYoshinobu Inoue { 839a4365d0SYoshinobu Inoue struct rr_pco_use *rpu, *rpulim; 849a4365d0SYoshinobu Inoue int checklen; 859a4365d0SYoshinobu Inoue 869a4365d0SYoshinobu Inoue /* rpm->rpm_len must be (4N * 3) as router-renum-05.txt */ 879a4365d0SYoshinobu Inoue if ((rpm->rpm_len - 3) < 0 || /* must be at least 3 */ 889a4365d0SYoshinobu Inoue (rpm->rpm_len - 3) & 0x3) { /* must be multiple of 4 */ 899a4365d0SYoshinobu Inoue syslog(LOG_WARNING, "<%s> rpm_len %d is not 4N * 3", 901533bed0SHajimu UMEMOTO __func__, rpm->rpm_len); 91*db82af41SHiroki Sato return (1); 929a4365d0SYoshinobu Inoue } 939a4365d0SYoshinobu Inoue /* rpm->rpm_code must be valid value */ 949a4365d0SYoshinobu Inoue switch (rpm->rpm_code) { 959a4365d0SYoshinobu Inoue case RPM_PCO_ADD: 969a4365d0SYoshinobu Inoue case RPM_PCO_CHANGE: 979a4365d0SYoshinobu Inoue case RPM_PCO_SETGLOBAL: 989a4365d0SYoshinobu Inoue break; 999a4365d0SYoshinobu Inoue default: 1001533bed0SHajimu UMEMOTO syslog(LOG_WARNING, "<%s> unknown rpm_code %d", __func__, 1019a4365d0SYoshinobu Inoue rpm->rpm_code); 102*db82af41SHiroki Sato return (1); 1039a4365d0SYoshinobu Inoue } 1049a4365d0SYoshinobu Inoue /* rpm->rpm_matchlen must be 0 to 128 inclusive */ 1059a4365d0SYoshinobu Inoue if (rpm->rpm_matchlen > 128) { 1069a4365d0SYoshinobu Inoue syslog(LOG_WARNING, "<%s> rpm_matchlen %d is over 128", 1071533bed0SHajimu UMEMOTO __func__, rpm->rpm_matchlen); 108*db82af41SHiroki Sato return (1); 1099a4365d0SYoshinobu Inoue } 1109a4365d0SYoshinobu Inoue 1119a4365d0SYoshinobu Inoue /* 1129a4365d0SYoshinobu Inoue * rpu->rpu_uselen, rpu->rpu_keeplen, and sum of them must be 1139a4365d0SYoshinobu Inoue * between 0 and 128 inclusive 1149a4365d0SYoshinobu Inoue */ 1159a4365d0SYoshinobu Inoue for (rpu = (struct rr_pco_use *)(rpm + 1), 1169a4365d0SYoshinobu Inoue rpulim = (struct rr_pco_use *)((char *)rpm + len); 1179a4365d0SYoshinobu Inoue rpu < rpulim; 1189a4365d0SYoshinobu Inoue rpu += 1) { 1199a4365d0SYoshinobu Inoue checklen = rpu->rpu_uselen; 1209a4365d0SYoshinobu Inoue checklen += rpu->rpu_keeplen; 1219a4365d0SYoshinobu Inoue /* 1229a4365d0SYoshinobu Inoue * omit these check, because either of rpu_uselen 1239a4365d0SYoshinobu Inoue * and rpu_keeplen is unsigned char 1249a4365d0SYoshinobu Inoue * (128 > rpu_uselen > 0) 1259a4365d0SYoshinobu Inoue * (128 > rpu_keeplen > 0) 1269a4365d0SYoshinobu Inoue * (rpu_uselen + rpu_keeplen > 0) 1279a4365d0SYoshinobu Inoue */ 1289a4365d0SYoshinobu Inoue if (checklen > 128) { 1299a4365d0SYoshinobu Inoue syslog(LOG_WARNING, "<%s> sum of rpu_uselen %d and" 1309a4365d0SYoshinobu Inoue " rpu_keeplen %d is %d(over 128)", 131*db82af41SHiroki Sato __func__, rpu->rpu_uselen, rpu->rpu_keeplen, 1329a4365d0SYoshinobu Inoue rpu->rpu_uselen + rpu->rpu_keeplen); 133*db82af41SHiroki Sato return (1); 1349a4365d0SYoshinobu Inoue } 1359a4365d0SYoshinobu Inoue } 136*db82af41SHiroki Sato return (0); 1379a4365d0SYoshinobu Inoue } 1389a4365d0SYoshinobu Inoue 1399a4365d0SYoshinobu Inoue static void 14033841545SHajimu UMEMOTO do_use_prefix(int len, struct rr_pco_match *rpm, 14133841545SHajimu UMEMOTO struct in6_rrenumreq *irr, int ifindex) 14233841545SHajimu UMEMOTO { 1439a4365d0SYoshinobu Inoue struct rr_pco_use *rpu, *rpulim; 14433841545SHajimu UMEMOTO struct rainfo *rai; 145*db82af41SHiroki Sato struct prefix *pfx; 1469a4365d0SYoshinobu Inoue 1479a4365d0SYoshinobu Inoue rpu = (struct rr_pco_use *)(rpm + 1); 1489a4365d0SYoshinobu Inoue rpulim = (struct rr_pco_use *)((char *)rpm + len); 1499a4365d0SYoshinobu Inoue 15033841545SHajimu UMEMOTO if (rpu == rpulim) { /* no use prefix */ 1519a4365d0SYoshinobu Inoue if (rpm->rpm_code == RPM_PCO_ADD) 1529a4365d0SYoshinobu Inoue return; 1539a4365d0SYoshinobu Inoue 1549a4365d0SYoshinobu Inoue irr->irr_u_uselen = 0; 1559a4365d0SYoshinobu Inoue irr->irr_u_keeplen = 0; 1569a4365d0SYoshinobu Inoue irr->irr_raf_mask_onlink = 0; 1579a4365d0SYoshinobu Inoue irr->irr_raf_mask_auto = 0; 1589a4365d0SYoshinobu Inoue irr->irr_vltime = 0; 1599a4365d0SYoshinobu Inoue irr->irr_pltime = 0; 1609a4365d0SYoshinobu Inoue memset(&irr->irr_flags, 0, sizeof(irr->irr_flags)); 1619a4365d0SYoshinobu Inoue irr->irr_useprefix.sin6_len = 0; /* let it mean, no addition */ 1629a4365d0SYoshinobu Inoue irr->irr_useprefix.sin6_family = 0; 1639a4365d0SYoshinobu Inoue irr->irr_useprefix.sin6_addr = in6addr_any; 1649a4365d0SYoshinobu Inoue if (ioctl(s, rrcmd2pco[rpm->rpm_code], (caddr_t)irr) < 0 && 1659a4365d0SYoshinobu Inoue errno != EADDRNOTAVAIL) 1661533bed0SHajimu UMEMOTO syslog(LOG_ERR, "<%s> ioctl: %s", __func__, 1679a4365d0SYoshinobu Inoue strerror(errno)); 1689a4365d0SYoshinobu Inoue return; 1699a4365d0SYoshinobu Inoue } 1709a4365d0SYoshinobu Inoue 1719a4365d0SYoshinobu Inoue for (rpu = (struct rr_pco_use *)(rpm + 1), 1729a4365d0SYoshinobu Inoue rpulim = (struct rr_pco_use *)((char *)rpm + len); 1739a4365d0SYoshinobu Inoue rpu < rpulim; 1749a4365d0SYoshinobu Inoue rpu += 1) { 1759a4365d0SYoshinobu Inoue /* init in6_rrenumreq fields */ 1769a4365d0SYoshinobu Inoue irr->irr_u_uselen = rpu->rpu_uselen; 1779a4365d0SYoshinobu Inoue irr->irr_u_keeplen = rpu->rpu_keeplen; 1789a4365d0SYoshinobu Inoue irr->irr_raf_mask_onlink = 1796f74a8c7SWarner Losh !!(rpu->rpu_ramask & ICMP6_RR_PCOUSE_RAFLAGS_ONLINK); 1809a4365d0SYoshinobu Inoue irr->irr_raf_mask_auto = 1816f74a8c7SWarner Losh !!(rpu->rpu_ramask & ICMP6_RR_PCOUSE_RAFLAGS_AUTO); 18233841545SHajimu UMEMOTO irr->irr_vltime = ntohl(rpu->rpu_vltime); 18333841545SHajimu UMEMOTO irr->irr_pltime = ntohl(rpu->rpu_pltime); 1849a4365d0SYoshinobu Inoue irr->irr_raf_onlink = 185*db82af41SHiroki Sato (rpu->rpu_raflags & ICMP6_RR_PCOUSE_RAFLAGS_ONLINK) == 0 ? 186*db82af41SHiroki Sato 0 : 1; 1879a4365d0SYoshinobu Inoue irr->irr_raf_auto = 188*db82af41SHiroki Sato (rpu->rpu_raflags & ICMP6_RR_PCOUSE_RAFLAGS_AUTO) == 0 ? 189*db82af41SHiroki Sato 0 : 1; 1909a4365d0SYoshinobu Inoue irr->irr_rrf_decrvalid = 191*db82af41SHiroki Sato (rpu->rpu_flags & ICMP6_RR_PCOUSE_FLAGS_DECRVLTIME) == 0 ? 192*db82af41SHiroki Sato 0 : 1; 1939a4365d0SYoshinobu Inoue irr->irr_rrf_decrprefd = 194*db82af41SHiroki Sato (rpu->rpu_flags & ICMP6_RR_PCOUSE_FLAGS_DECRPLTIME) == 0 ? 195*db82af41SHiroki Sato 0 : 1; 1969a4365d0SYoshinobu Inoue irr->irr_useprefix.sin6_len = sizeof(irr->irr_useprefix); 1979a4365d0SYoshinobu Inoue irr->irr_useprefix.sin6_family = AF_INET6; 1989a4365d0SYoshinobu Inoue irr->irr_useprefix.sin6_addr = rpu->rpu_prefix; 1999a4365d0SYoshinobu Inoue 2009a4365d0SYoshinobu Inoue if (ioctl(s, rrcmd2pco[rpm->rpm_code], (caddr_t)irr) < 0 && 2019a4365d0SYoshinobu Inoue errno != EADDRNOTAVAIL) 2021533bed0SHajimu UMEMOTO syslog(LOG_ERR, "<%s> ioctl: %s", __func__, 2039a4365d0SYoshinobu Inoue strerror(errno)); 20433841545SHajimu UMEMOTO 20533841545SHajimu UMEMOTO /* very adhoc: should be rewritten */ 20633841545SHajimu UMEMOTO if (rpm->rpm_code == RPM_PCO_CHANGE && 20733841545SHajimu UMEMOTO IN6_ARE_ADDR_EQUAL(&rpm->rpm_prefix, &rpu->rpu_prefix) && 20833841545SHajimu UMEMOTO rpm->rpm_matchlen == rpu->rpu_uselen && 20933841545SHajimu UMEMOTO rpu->rpu_uselen == rpu->rpu_keeplen) { 21033841545SHajimu UMEMOTO if ((rai = if_indextorainfo(ifindex)) == NULL) 21133841545SHajimu UMEMOTO continue; /* non-advertising IF */ 21233841545SHajimu UMEMOTO 213*db82af41SHiroki Sato TAILQ_FOREACH(pfx, &rai->rai_prefix, pfx_next) { 21433841545SHajimu UMEMOTO struct timeval now; 21533841545SHajimu UMEMOTO 216*db82af41SHiroki Sato if (prefix_match(&pfx->pfx_prefix, 217*db82af41SHiroki Sato pfx->pfx_prefixlen, &rpm->rpm_prefix, 21833841545SHajimu UMEMOTO rpm->rpm_matchlen)) { 21933841545SHajimu UMEMOTO /* change parameters */ 220*db82af41SHiroki Sato pfx->pfx_validlifetime = 221*db82af41SHiroki Sato ntohl(rpu->rpu_vltime); 222*db82af41SHiroki Sato pfx->pfx_preflifetime = 223*db82af41SHiroki Sato ntohl(rpu->rpu_pltime); 22433841545SHajimu UMEMOTO if (irr->irr_rrf_decrvalid) { 22533841545SHajimu UMEMOTO gettimeofday(&now, 0); 226*db82af41SHiroki Sato pfx->pfx_vltimeexpire = 227*db82af41SHiroki Sato now.tv_sec + 228*db82af41SHiroki Sato pfx->pfx_validlifetime; 22933841545SHajimu UMEMOTO } else 230*db82af41SHiroki Sato pfx->pfx_vltimeexpire = 0; 23133841545SHajimu UMEMOTO if (irr->irr_rrf_decrprefd) { 23233841545SHajimu UMEMOTO gettimeofday(&now, 0); 233*db82af41SHiroki Sato pfx->pfx_pltimeexpire = 234*db82af41SHiroki Sato now.tv_sec + 235*db82af41SHiroki Sato pfx->pfx_preflifetime; 23633841545SHajimu UMEMOTO } else 237*db82af41SHiroki Sato pfx->pfx_pltimeexpire = 0; 23833841545SHajimu UMEMOTO } 23933841545SHajimu UMEMOTO } 24033841545SHajimu UMEMOTO } 2419a4365d0SYoshinobu Inoue } 2429a4365d0SYoshinobu Inoue } 2439a4365d0SYoshinobu Inoue 2449a4365d0SYoshinobu Inoue /* 2459a4365d0SYoshinobu Inoue * process a Prefix Control Operation(PCO). 2469a4365d0SYoshinobu Inoue * return 0 on success, 1 on failure 2479a4365d0SYoshinobu Inoue */ 2489a4365d0SYoshinobu Inoue static int 2499a4365d0SYoshinobu Inoue do_pco(struct icmp6_router_renum *rr, int len, struct rr_pco_match *rpm) 2509a4365d0SYoshinobu Inoue { 2519a4365d0SYoshinobu Inoue int ifindex = 0; 2529a4365d0SYoshinobu Inoue struct in6_rrenumreq irr; 2539a4365d0SYoshinobu Inoue 254c88f8102SBruce Evans if ((rr_pco_check(len, rpm) != 0)) 255*db82af41SHiroki Sato return (1); 2569a4365d0SYoshinobu Inoue 257b26e03e9SKris Kennaway if (s == -1 && (s = socket(AF_INET6, SOCK_DGRAM, 0)) < 0) { 2581533bed0SHajimu UMEMOTO syslog(LOG_ERR, "<%s> socket: %s", __func__, 259b26e03e9SKris Kennaway strerror(errno)); 260b26e03e9SKris Kennaway exit(1); 261b26e03e9SKris Kennaway } 262b26e03e9SKris Kennaway 2639a4365d0SYoshinobu Inoue memset(&irr, 0, sizeof(irr)); 2649a4365d0SYoshinobu Inoue irr.irr_origin = PR_ORIG_RR; 2659a4365d0SYoshinobu Inoue irr.irr_m_len = rpm->rpm_matchlen; 2669a4365d0SYoshinobu Inoue irr.irr_m_minlen = rpm->rpm_minlen; 2679a4365d0SYoshinobu Inoue irr.irr_m_maxlen = rpm->rpm_maxlen; 2689a4365d0SYoshinobu Inoue irr.irr_matchprefix.sin6_len = sizeof(irr.irr_matchprefix); 2699a4365d0SYoshinobu Inoue irr.irr_matchprefix.sin6_family = AF_INET6; 2709a4365d0SYoshinobu Inoue irr.irr_matchprefix.sin6_addr = rpm->rpm_prefix; 2719a4365d0SYoshinobu Inoue 2729a4365d0SYoshinobu Inoue while (if_indextoname(++ifindex, irr.irr_name)) { 2739a4365d0SYoshinobu Inoue /* 274*db82af41SHiroki Sato * if ICMP6_RR_FLAGS_FORCEAPPLY(A flag) is 0 and 275*db82af41SHiroki Sato * IFF_UP is off, the interface is not applied 2769a4365d0SYoshinobu Inoue */ 2779a4365d0SYoshinobu Inoue if ((rr->rr_flags & ICMP6_RR_FLAGS_FORCEAPPLY) == 0 && 2789a4365d0SYoshinobu Inoue (iflist[ifindex]->ifm_flags & IFF_UP) == 0) 2799a4365d0SYoshinobu Inoue continue; 2809a4365d0SYoshinobu Inoue /* TODO: interface scope check */ 28133841545SHajimu UMEMOTO do_use_prefix(len, rpm, &irr, ifindex); 2829a4365d0SYoshinobu Inoue } 2839a4365d0SYoshinobu Inoue if (errno == ENXIO) 284*db82af41SHiroki Sato return (0); 2859a4365d0SYoshinobu Inoue else if (errno) { 2861533bed0SHajimu UMEMOTO syslog(LOG_ERR, "<%s> if_indextoname: %s", __func__, 2879a4365d0SYoshinobu Inoue strerror(errno)); 288*db82af41SHiroki Sato return (1); 2899a4365d0SYoshinobu Inoue } 290*db82af41SHiroki Sato return (0); 2919a4365d0SYoshinobu Inoue } 2929a4365d0SYoshinobu Inoue 2939a4365d0SYoshinobu Inoue /* 2949a4365d0SYoshinobu Inoue * call do_pco() for each Prefix Control Operations(PCOs) in a received 2959a4365d0SYoshinobu Inoue * Router Renumbering Command packet. 2969a4365d0SYoshinobu Inoue * return 0 on success, 1 on failure 2979a4365d0SYoshinobu Inoue */ 2989a4365d0SYoshinobu Inoue static int 2999a4365d0SYoshinobu Inoue do_rr(int len, struct icmp6_router_renum *rr) 3009a4365d0SYoshinobu Inoue { 3019a4365d0SYoshinobu Inoue struct rr_pco_match *rpm; 3029a4365d0SYoshinobu Inoue char *cp, *lim; 3039a4365d0SYoshinobu Inoue 3049a4365d0SYoshinobu Inoue lim = (char *)rr + len; 3059a4365d0SYoshinobu Inoue cp = (char *)(rr + 1); 3069a4365d0SYoshinobu Inoue len -= sizeof(struct icmp6_router_renum); 3079a4365d0SYoshinobu Inoue 3089a4365d0SYoshinobu Inoue /* get iflist block from kernel again, to get up-to-date information */ 3099a4365d0SYoshinobu Inoue init_iflist(); 3109a4365d0SYoshinobu Inoue 3119a4365d0SYoshinobu Inoue while (cp < lim) { 3129a4365d0SYoshinobu Inoue int rpmlen; 3139a4365d0SYoshinobu Inoue 3149a4365d0SYoshinobu Inoue rpm = (struct rr_pco_match *)cp; 315*db82af41SHiroki Sato if ((size_t)len < sizeof(struct rr_pco_match)) { 3169a4365d0SYoshinobu Inoue tooshort: 3179a4365d0SYoshinobu Inoue syslog(LOG_ERR, "<%s> pkt too short. left len = %d. " 3181533bed0SHajimu UMEMOTO "gabage at end of pkt?", __func__, len); 319*db82af41SHiroki Sato return (1); 3209a4365d0SYoshinobu Inoue } 3219a4365d0SYoshinobu Inoue rpmlen = rpm->rpm_len << 3; 3229a4365d0SYoshinobu Inoue if (len < rpmlen) 3239a4365d0SYoshinobu Inoue goto tooshort; 3249a4365d0SYoshinobu Inoue 3259a4365d0SYoshinobu Inoue if (do_pco(rr, rpmlen, rpm)) { 3261533bed0SHajimu UMEMOTO syslog(LOG_WARNING, "<%s> invalid PCO", __func__); 3279a4365d0SYoshinobu Inoue goto next; 3289a4365d0SYoshinobu Inoue } 3299a4365d0SYoshinobu Inoue 3309a4365d0SYoshinobu Inoue next: 3319a4365d0SYoshinobu Inoue cp += rpmlen; 3329a4365d0SYoshinobu Inoue len -= rpmlen; 3339a4365d0SYoshinobu Inoue } 334b26e03e9SKris Kennaway 335*db82af41SHiroki Sato return (0); 3369a4365d0SYoshinobu Inoue } 3379a4365d0SYoshinobu Inoue 3389a4365d0SYoshinobu Inoue /* 3399a4365d0SYoshinobu Inoue * check validity of a router renumbering command packet 3409a4365d0SYoshinobu Inoue * return 0 on success, 1 on failure 3419a4365d0SYoshinobu Inoue */ 3429a4365d0SYoshinobu Inoue static int 3439a4365d0SYoshinobu Inoue rr_command_check(int len, struct icmp6_router_renum *rr, struct in6_addr *from, 3449a4365d0SYoshinobu Inoue struct in6_addr *dst) 3459a4365d0SYoshinobu Inoue { 3469a4365d0SYoshinobu Inoue u_char ntopbuf[INET6_ADDRSTRLEN]; 3479a4365d0SYoshinobu Inoue 3489a4365d0SYoshinobu Inoue /* omit rr minimal length check. hope kernel have done it. */ 3499a4365d0SYoshinobu Inoue /* rr_command length check */ 350*db82af41SHiroki Sato if ((size_t)len < (sizeof(struct icmp6_router_renum) + 3519a4365d0SYoshinobu Inoue sizeof(struct rr_pco_match))) { 3529a4365d0SYoshinobu Inoue syslog(LOG_ERR, "<%s> rr_command len %d is too short", 3531533bed0SHajimu UMEMOTO __func__, len); 354*db82af41SHiroki Sato return (1); 3559a4365d0SYoshinobu Inoue } 3569a4365d0SYoshinobu Inoue 3579a4365d0SYoshinobu Inoue /* destination check. only for multicast. omit unicast check. */ 3589a4365d0SYoshinobu Inoue if (IN6_IS_ADDR_MULTICAST(dst) && !IN6_IS_ADDR_MC_LINKLOCAL(dst) && 3599a4365d0SYoshinobu Inoue !IN6_IS_ADDR_MC_SITELOCAL(dst)) { 3609a4365d0SYoshinobu Inoue syslog(LOG_ERR, "<%s> dst mcast addr %s is illegal", 3611533bed0SHajimu UMEMOTO __func__, 362*db82af41SHiroki Sato inet_ntop(AF_INET6, dst, ntopbuf, sizeof(ntopbuf))); 363*db82af41SHiroki Sato return (1); 3649a4365d0SYoshinobu Inoue } 3659a4365d0SYoshinobu Inoue 3669a4365d0SYoshinobu Inoue /* seqnum and segnum check */ 3679a4365d0SYoshinobu Inoue if (rro.rro_seqnum > rr->rr_seqnum) { 3689a4365d0SYoshinobu Inoue syslog(LOG_WARNING, 3699a4365d0SYoshinobu Inoue "<%s> rcvd old seqnum %d from %s", 3701533bed0SHajimu UMEMOTO __func__, (u_int32_t)ntohl(rr->rr_seqnum), 371*db82af41SHiroki Sato inet_ntop(AF_INET6, from, ntopbuf, sizeof(ntopbuf))); 372*db82af41SHiroki Sato return (1); 3739a4365d0SYoshinobu Inoue } 3749a4365d0SYoshinobu Inoue if (rro.rro_seqnum == rr->rr_seqnum && 3759a4365d0SYoshinobu Inoue (rr->rr_flags & ICMP6_RR_FLAGS_TEST) == 0 && 3769a4365d0SYoshinobu Inoue RR_ISSET_SEGNUM(rro.rro_segnum_bits, rr->rr_segnum)) { 3779a4365d0SYoshinobu Inoue if ((rr->rr_flags & ICMP6_RR_FLAGS_REQRESULT) != 0) 3789a4365d0SYoshinobu Inoue syslog(LOG_WARNING, 3799a4365d0SYoshinobu Inoue "<%s> rcvd duped segnum %d from %s", 380*db82af41SHiroki Sato __func__, rr->rr_segnum, inet_ntop(AF_INET6, from, 381*db82af41SHiroki Sato ntopbuf, sizeof(ntopbuf))); 382*db82af41SHiroki Sato return (0); 3839a4365d0SYoshinobu Inoue } 3849a4365d0SYoshinobu Inoue 3859a4365d0SYoshinobu Inoue /* update seqnum */ 3869a4365d0SYoshinobu Inoue if (rro.rro_seqnum != rr->rr_seqnum) { 3879a4365d0SYoshinobu Inoue /* then must be "<" */ 3889a4365d0SYoshinobu Inoue 3899a4365d0SYoshinobu Inoue /* init rro_segnum_bits */ 3909a4365d0SYoshinobu Inoue memset(rro.rro_segnum_bits, 0, 3919a4365d0SYoshinobu Inoue sizeof(rro.rro_segnum_bits)); 3929a4365d0SYoshinobu Inoue } 3939a4365d0SYoshinobu Inoue rro.rro_seqnum = rr->rr_seqnum; 3949a4365d0SYoshinobu Inoue 395*db82af41SHiroki Sato return (0); 3969a4365d0SYoshinobu Inoue } 3979a4365d0SYoshinobu Inoue 3989a4365d0SYoshinobu Inoue static void 3999a4365d0SYoshinobu Inoue rr_command_input(int len, struct icmp6_router_renum *rr, 4009a4365d0SYoshinobu Inoue struct in6_addr *from, struct in6_addr *dst) 4019a4365d0SYoshinobu Inoue { 4029a4365d0SYoshinobu Inoue /* rr_command validity check */ 4039a4365d0SYoshinobu Inoue if (rr_command_check(len, rr, from, dst)) 4049a4365d0SYoshinobu Inoue goto failed; 4059a4365d0SYoshinobu Inoue if ((rr->rr_flags & (ICMP6_RR_FLAGS_TEST|ICMP6_RR_FLAGS_REQRESULT)) == 4069a4365d0SYoshinobu Inoue ICMP6_RR_FLAGS_TEST) 4079a4365d0SYoshinobu Inoue return; 4089a4365d0SYoshinobu Inoue 4099a4365d0SYoshinobu Inoue /* do router renumbering */ 410*db82af41SHiroki Sato if (do_rr(len, rr)) 4119a4365d0SYoshinobu Inoue goto failed; 4129a4365d0SYoshinobu Inoue 4139a4365d0SYoshinobu Inoue /* update segnum */ 4149a4365d0SYoshinobu Inoue RR_SET_SEGNUM(rro.rro_segnum_bits, rr->rr_segnum); 4159a4365d0SYoshinobu Inoue 4169a4365d0SYoshinobu Inoue return; 4179a4365d0SYoshinobu Inoue 4189a4365d0SYoshinobu Inoue failed: 4191533bed0SHajimu UMEMOTO syslog(LOG_ERR, "<%s> received RR was invalid", __func__); 4209a4365d0SYoshinobu Inoue return; 4219a4365d0SYoshinobu Inoue } 4229a4365d0SYoshinobu Inoue 4239a4365d0SYoshinobu Inoue void 4249a4365d0SYoshinobu Inoue rr_input(int len, struct icmp6_router_renum *rr, struct in6_pktinfo *pi, 4259a4365d0SYoshinobu Inoue struct sockaddr_in6 *from, struct in6_addr *dst) 4269a4365d0SYoshinobu Inoue { 4279a4365d0SYoshinobu Inoue u_char ntopbuf[2][INET6_ADDRSTRLEN], ifnamebuf[IFNAMSIZ]; 4289a4365d0SYoshinobu Inoue 4299a4365d0SYoshinobu Inoue syslog(LOG_DEBUG, 4309a4365d0SYoshinobu Inoue "<%s> RR received from %s to %s on %s", 4311533bed0SHajimu UMEMOTO __func__, 432*db82af41SHiroki Sato inet_ntop(AF_INET6, &from->sin6_addr, ntopbuf[0] ,sizeof(ntopbuf[0])), 433*db82af41SHiroki Sato inet_ntop(AF_INET6, &dst, ntopbuf[1], sizeof(ntopbuf[1])), 4349a4365d0SYoshinobu Inoue if_indextoname(pi->ipi6_ifindex, ifnamebuf)); 4359a4365d0SYoshinobu Inoue 43633841545SHajimu UMEMOTO /* packet validation based on Section 4.1 of RFC2894 */ 437*db82af41SHiroki Sato if ((size_t)len < sizeof(struct icmp6_router_renum)) { 43833841545SHajimu UMEMOTO syslog(LOG_NOTICE, 43933841545SHajimu UMEMOTO "<%s>: RR short message (size %d) from %s to %s on %s", 4401533bed0SHajimu UMEMOTO __func__, len, 441*db82af41SHiroki Sato inet_ntop(AF_INET6, &from->sin6_addr, ntopbuf[0], 442*db82af41SHiroki Sato sizeof(ntopbuf[0])), 443*db82af41SHiroki Sato inet_ntop(AF_INET6, &dst, ntopbuf[1], sizeof(ntopbuf[1])), 44433841545SHajimu UMEMOTO if_indextoname(pi->ipi6_ifindex, ifnamebuf)); 44533841545SHajimu UMEMOTO return; 44633841545SHajimu UMEMOTO } 4479a4365d0SYoshinobu Inoue 44833841545SHajimu UMEMOTO /* 44933841545SHajimu UMEMOTO * If the IPv6 destination address is neither an All Routers multicast 45033841545SHajimu UMEMOTO * address [AARCH] nor one of the receiving router's unicast addresses, 45133841545SHajimu UMEMOTO * the message MUST be discarded and SHOULD be logged to network 45233841545SHajimu UMEMOTO * management. 45333841545SHajimu UMEMOTO * We rely on the kernel input routine for unicast addresses, and thus 45433841545SHajimu UMEMOTO * check multicast destinations only. 45533841545SHajimu UMEMOTO */ 456*db82af41SHiroki Sato if (IN6_IS_ADDR_MULTICAST(&pi->ipi6_addr) && !IN6_ARE_ADDR_EQUAL( 457*db82af41SHiroki Sato &sin6_sitelocal_allrouters.sin6_addr, &pi->ipi6_addr)) { 45833841545SHajimu UMEMOTO syslog(LOG_NOTICE, 45933841545SHajimu UMEMOTO "<%s>: RR message with invalid destination (%s) " 46033841545SHajimu UMEMOTO "from %s on %s", 4611533bed0SHajimu UMEMOTO __func__, 462*db82af41SHiroki Sato inet_ntop(AF_INET6, &dst, ntopbuf[0], sizeof(ntopbuf[0])), 463*db82af41SHiroki Sato inet_ntop(AF_INET6, &from->sin6_addr, ntopbuf[1], 464*db82af41SHiroki Sato sizeof(ntopbuf[1])), 46533841545SHajimu UMEMOTO if_indextoname(pi->ipi6_ifindex, ifnamebuf)); 46633841545SHajimu UMEMOTO return; 46733841545SHajimu UMEMOTO } 46833841545SHajimu UMEMOTO 46933841545SHajimu UMEMOTO rr_rcvifindex = pi->ipi6_ifindex; 4709a4365d0SYoshinobu Inoue 4719a4365d0SYoshinobu Inoue switch (rr->rr_code) { 4729a4365d0SYoshinobu Inoue case ICMP6_ROUTER_RENUMBERING_COMMAND: 4739a4365d0SYoshinobu Inoue rr_command_input(len, rr, &from->sin6_addr, dst); 4749a4365d0SYoshinobu Inoue /* TODO: send reply msg */ 4759a4365d0SYoshinobu Inoue break; 4769a4365d0SYoshinobu Inoue case ICMP6_ROUTER_RENUMBERING_RESULT: 4779a4365d0SYoshinobu Inoue /* RESULT will be processed by rrenumd */ 4789a4365d0SYoshinobu Inoue break; 4799a4365d0SYoshinobu Inoue case ICMP6_ROUTER_RENUMBERING_SEQNUM_RESET: 4809a4365d0SYoshinobu Inoue /* TODO: sequence number reset */ 4819a4365d0SYoshinobu Inoue break; 4829a4365d0SYoshinobu Inoue default: 4839a4365d0SYoshinobu Inoue syslog(LOG_ERR, "<%s> received unknown code %d", 4841533bed0SHajimu UMEMOTO __func__, rr->rr_code); 4859a4365d0SYoshinobu Inoue break; 4869a4365d0SYoshinobu Inoue 4879a4365d0SYoshinobu Inoue } 4889a4365d0SYoshinobu Inoue 4899a4365d0SYoshinobu Inoue return; 4909a4365d0SYoshinobu Inoue } 491