sbin/dhcpagent/interface.c

7c478bd9Sstevel@tonic-gate/*
7c478bd9Sstevel@tonic-gate * CDDL HEADER START
7c478bd9Sstevel@tonic-gate *
7c478bd9Sstevel@tonic-gate * The contents of this file are subject to the terms of the
c2934490Sdh155122 * Common Development and Distribution License (the "License").
c2934490Sdh155122 * You may not use this file except in compliance with the License.
7c478bd9Sstevel@tonic-gate *
7c478bd9Sstevel@tonic-gate * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
7c478bd9Sstevel@tonic-gate * or http://www.opensolaris.org/os/licensing.
7c478bd9Sstevel@tonic-gate * See the License for the specific language governing permissions
7c478bd9Sstevel@tonic-gate * and limitations under the License.
7c478bd9Sstevel@tonic-gate *
7c478bd9Sstevel@tonic-gate * When distributing Covered Code, include this CDDL HEADER in each
7c478bd9Sstevel@tonic-gate * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
7c478bd9Sstevel@tonic-gate * If applicable, add the following below this CDDL HEADER, with the
7c478bd9Sstevel@tonic-gate * fields enclosed by brackets "[]" replaced with your own identifying
7c478bd9Sstevel@tonic-gate * information: Portions Copyright [yyyy] [name of copyright owner]
7c478bd9Sstevel@tonic-gate *
7c478bd9Sstevel@tonic-gate * CDDL HEADER END
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate/*
e11c3f44Smeem * Copyright 2009 Sun Microsystems, Inc.  All rights reserved.
7c478bd9Sstevel@tonic-gate * Use is subject to license terms.
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate#include <sys/types.h>
7c478bd9Sstevel@tonic-gate#include <sys/socket.h>
7c478bd9Sstevel@tonic-gate#include <net/if.h>
7c478bd9Sstevel@tonic-gate#include <stdlib.h>
7c478bd9Sstevel@tonic-gate#include <sys/sockio.h>
7c478bd9Sstevel@tonic-gate#include <netinet/in.h>
7c478bd9Sstevel@tonic-gate#include <netinet/dhcp.h>
7c478bd9Sstevel@tonic-gate#include <string.h>
7c478bd9Sstevel@tonic-gate#include <unistd.h>
d04ccbb3Scarlsonj#include <search.h>
7c478bd9Sstevel@tonic-gate#include <libdevinfo.h>
948f2876Sss150715#include <libdlpi.h>
d04ccbb3Scarlsonj#include <netinet/if_ether.h>
d04ccbb3Scarlsonj#include <arpa/inet.h>
d04ccbb3Scarlsonj#include <dhcpmsg.h>
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj#include "agent.h"
7c478bd9Sstevel@tonic-gate#include "interface.h"
7c478bd9Sstevel@tonic-gate#include "util.h"
7c478bd9Sstevel@tonic-gate#include "packet.h"
7c478bd9Sstevel@tonic-gate#include "states.h"
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjdhcp_pif_t *v4root;
d04ccbb3Scarlsonjdhcp_pif_t *v6root;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjstatic uint_t cached_v4_max_mtu, cached_v6_max_mtu;
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * Interface flags to watch: things that should be under our direct control.
7c478bd9Sstevel@tonic-gate */
5c0b7edeSseb#define	DHCP_IFF_WATCH	(IFF_DHCPRUNNING | IFF_DEPRECATED | IFF_ADDRCONF | \
5c0b7edeSseb	IFF_TEMPORARY)
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonjstatic void clear_lif_dhcp(dhcp_lif_t *);
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * insert_pif(): creates a new physical interface structure and chains it on
d04ccbb3Scarlsonj *		 the list.  Initializes state that remains consistent across
d04ccbb3Scarlsonj *		 all use of the physical interface entry.
7c478bd9Sstevel@tonic-gate *
d04ccbb3Scarlsonj *   input: const char *: the name of the physical interface
d04ccbb3Scarlsonj *	    boolean_t: if B_TRUE, this is DHCPv6
d04ccbb3Scarlsonj *	    int *: ignored on input; if insert_pif fails, set to a DHCP_IPC_E_*
7c478bd9Sstevel@tonic-gate *		   error code with the reason why
d04ccbb3Scarlsonj *  output: dhcp_pif_t *: a pointer to the new entry, or NULL on failure
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonjdhcp_pif_t *
d04ccbb3Scarlsonjinsert_pif(const char *pname, boolean_t isv6, int *error)
7c478bd9Sstevel@tonic-gate{
d04ccbb3Scarlsonj	dhcp_pif_t *pif;
d04ccbb3Scarlsonj	struct lifreq lifr;
e11c3f44Smeem	lifgroupinfo_t lifgr;
e704a8f2Smeem	dlpi_handle_t dh = NULL;
f7d61273Smeem	int fd = isv6 ? v6_sock_fd : v4_sock_fd;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	if ((pif = calloc(1, sizeof (*pif))) == NULL) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "insert_pif: cannot allocate pif entry for "
d04ccbb3Scarlsonj		    "%s", pname);
7c478bd9Sstevel@tonic-gate		*error = DHCP_IPC_E_MEMORY;
7c478bd9Sstevel@tonic-gate		return (NULL);
7c478bd9Sstevel@tonic-gate	}
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	pif->pif_isv6 = isv6;
d04ccbb3Scarlsonj	pif->pif_hold_count = 1;
d04ccbb3Scarlsonj	pif->pif_running = B_TRUE;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	if (strlcpy(pif->pif_name, pname, LIFNAMSIZ) >= LIFNAMSIZ) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERROR, "insert_pif: interface name %s is too long",
d04ccbb3Scarlsonj		    pname);
7c478bd9Sstevel@tonic-gate		*error = DHCP_IPC_E_INVIF;
7c478bd9Sstevel@tonic-gate		goto failure;
7c478bd9Sstevel@tonic-gate	}
7c478bd9Sstevel@tonic-gate
f7d61273Smeem	/*
f7d61273Smeem	 * This is a bit gross, but IP has a confused interface.  We must
f7d61273Smeem	 * assume that the zeroth LIF is plumbed, and must query there to get
f7d61273Smeem	 * the interface index number.
f7d61273Smeem	 */
f7d61273Smeem	(void) strlcpy(lifr.lifr_name, pname, LIFNAMSIZ);
f7d61273Smeem
f7d61273Smeem	if (ioctl(fd, SIOCGLIFINDEX, &lifr) == -1) {
f7d61273Smeem		*error = (errno == ENXIO) ? DHCP_IPC_E_INVIF : DHCP_IPC_E_INT;
f7d61273Smeem		dhcpmsg(MSG_ERR, "insert_pif: SIOCGLIFINDEX for %s", pname);
f7d61273Smeem		goto failure;
f7d61273Smeem	}
f7d61273Smeem	pif->pif_index = lifr.lifr_index;
f7d61273Smeem
*1cb875aeSCathy Zhou	/*
*1cb875aeSCathy Zhou	 * Check if this is a VRRP interface. If yes, its IP addresses (the
*1cb875aeSCathy Zhou	 * VRRP virtual addresses) cannot be configured using DHCP.
*1cb875aeSCathy Zhou	 */
*1cb875aeSCathy Zhou	if (ioctl(fd, SIOCGLIFFLAGS, &lifr) == -1) {
*1cb875aeSCathy Zhou		*error = (errno == ENXIO) ? DHCP_IPC_E_INVIF : DHCP_IPC_E_INT;
*1cb875aeSCathy Zhou		dhcpmsg(MSG_ERR, "insert_pif: SIOCGLIFFLAGS for %s", pname);
*1cb875aeSCathy Zhou		goto failure;
*1cb875aeSCathy Zhou	}
*1cb875aeSCathy Zhou
*1cb875aeSCathy Zhou	if (lifr.lifr_flags & IFF_VRRP) {
*1cb875aeSCathy Zhou		*error = DHCP_IPC_E_INVIF;
*1cb875aeSCathy Zhou		dhcpmsg(MSG_ERROR, "insert_pif: VRRP virtual addresses over %s "
*1cb875aeSCathy Zhou		    "cannot be configured using DHCP", pname);
*1cb875aeSCathy Zhou		goto failure;
*1cb875aeSCathy Zhou	}
*1cb875aeSCathy Zhou
f7d61273Smeem	if (ioctl(fd, SIOCGLIFMTU, &lifr) == -1) {
f7d61273Smeem		*error = (errno == ENXIO) ? DHCP_IPC_E_INVIF : DHCP_IPC_E_INT;
f7d61273Smeem		dhcpmsg(MSG_ERR, "insert_pif: SIOCGLIFMTU for %s", pname);
f7d61273Smeem		goto failure;
f7d61273Smeem	}
f7d61273Smeem	pif->pif_max = lifr.lifr_mtu;
f7d61273Smeem
f7d61273Smeem	if (pif->pif_max < DHCP_DEF_MAX_SIZE) {
f7d61273Smeem		dhcpmsg(MSG_ERROR, "insert_pif: MTU of %s is too small to "
f7d61273Smeem		    "support DHCP (%u < %u)", pname, pif->pif_max,
f7d61273Smeem		    DHCP_DEF_MAX_SIZE);
f7d61273Smeem		*error = DHCP_IPC_E_INVIF;
f7d61273Smeem		goto failure;
f7d61273Smeem	}
f7d61273Smeem
f7d61273Smeem	/*
e11c3f44Smeem	 * Check if the pif is in an IPMP group.  Interfaces using IPMP don't
e11c3f44Smeem	 * have dedicated hardware addresses, and get their hardware type from
e11c3f44Smeem	 * the SIOCGLIFGROUPINFO ioctl rather than DLPI.
f7d61273Smeem	 */
e11c3f44Smeem	if (ioctl(fd, SIOCGLIFGROUPNAME, &lifr) == -1) {
e11c3f44Smeem		*error = DHCP_IPC_E_INT;
e11c3f44Smeem		dhcpmsg(MSG_ERR, "insert_pif: SIOCGLIFGROUPNAME for %s", pname);
e11c3f44Smeem		goto failure;
e11c3f44Smeem	}
e11c3f44Smeem
e11c3f44Smeem	if (lifr.lifr_groupname[0] != '\0') {
e11c3f44Smeem		(void) strlcpy(lifgr.gi_grname, lifr.lifr_groupname,
e11c3f44Smeem		    LIFGRNAMSIZ);
e11c3f44Smeem		if (ioctl(fd, SIOCGLIFGROUPINFO, &lifgr) == -1) {
e11c3f44Smeem			*error = DHCP_IPC_E_INT;
e11c3f44Smeem			dhcpmsg(MSG_ERR, "insert_pif: SIOCGLIFGROUPINFO for %s",
e11c3f44Smeem			    lifgr.gi_grname);
e11c3f44Smeem			goto failure;
e11c3f44Smeem		}
e11c3f44Smeem
e11c3f44Smeem		pif->pif_hwtype = dlpi_arptype(lifgr.gi_mactype);
e11c3f44Smeem		pif->pif_under_ipmp = (strcmp(pname, lifgr.gi_grifname) != 0);
e11c3f44Smeem		(void) strlcpy(pif->pif_grifname, lifgr.gi_grifname, LIFNAMSIZ);
e11c3f44Smeem
e11c3f44Smeem		/*
e11c3f44Smeem		 * For IPMP underlying interfaces, stash the interface index
e11c3f44Smeem		 * of the IPMP meta-interface; we'll use it to send/receive
e11c3f44Smeem		 * traffic.  This is both necessary (since IP_BOUND_IF for
e11c3f44Smeem		 * non-unicast traffic won't work on underlying interfaces)
e11c3f44Smeem		 * and preferred (since a test address lease will be able to
e11c3f44Smeem		 * be maintained as long as another interface in the group is
e11c3f44Smeem		 * still functioning).
e11c3f44Smeem		 */
e11c3f44Smeem		if (pif->pif_under_ipmp) {
e11c3f44Smeem			(void) strlcpy(lifr.lifr_name, pif->pif_grifname,
e11c3f44Smeem			    LIFNAMSIZ);
e11c3f44Smeem
e11c3f44Smeem			if (ioctl(fd, SIOCGLIFINDEX, &lifr) == -1) {
e11c3f44Smeem				*error = DHCP_IPC_E_INT;
e11c3f44Smeem				dhcpmsg(MSG_ERR, "insert_pif: SIOCGLIFINDEX "
e11c3f44Smeem				    "for %s", lifr.lifr_name);
e11c3f44Smeem				goto failure;
e11c3f44Smeem			}
e11c3f44Smeem			pif->pif_grindex = lifr.lifr_index;
e11c3f44Smeem		}
e11c3f44Smeem	}
e11c3f44Smeem
e11c3f44Smeem	/*
e11c3f44Smeem	 * For IPv4, if the hardware type is still unknown, use DLPI to
e11c3f44Smeem	 * determine it, the hardware address, and hardware address length.
e11c3f44Smeem	 */
e11c3f44Smeem	if (!isv6 && pif->pif_hwtype == 0) {
948f2876Sss150715		int			rc;
948f2876Sss150715		dlpi_info_t		dlinfo;
d04ccbb3Scarlsonj
948f2876Sss150715		if ((rc = dlpi_open(pname, &dh, 0)) != DLPI_SUCCESS) {
948f2876Sss150715			dhcpmsg(MSG_ERROR, "insert_pif: dlpi_open: %s",
948f2876Sss150715			    dlpi_strerror(rc));
948f2876Sss150715			*error = DHCP_IPC_E_INVIF;
948f2876Sss150715			goto failure;
948f2876Sss150715		}
948f2876Sss150715
948f2876Sss150715		if ((rc = dlpi_bind(dh, ETHERTYPE_IP, NULL)) != DLPI_SUCCESS) {
948f2876Sss150715			dhcpmsg(MSG_ERROR, "insert_pif: dlpi_bind: %s",
948f2876Sss150715			    dlpi_strerror(rc));
d04ccbb3Scarlsonj			*error = DHCP_IPC_E_INVIF;
d04ccbb3Scarlsonj			goto failure;
d04ccbb3Scarlsonj		}
7c478bd9Sstevel@tonic-gate
f7d61273Smeem		if ((rc = dlpi_info(dh, &dlinfo, 0)) != DLPI_SUCCESS) {
948f2876Sss150715			dhcpmsg(MSG_ERROR, "insert_pif: dlpi_info: %s",
948f2876Sss150715			    dlpi_strerror(rc));
948f2876Sss150715			*error = DHCP_IPC_E_INVIF;
948f2876Sss150715			goto failure;
948f2876Sss150715		}
948f2876Sss150715
948f2876Sss150715		pif->pif_hwtype = dlpi_arptype(dlinfo.di_mactype);
948f2876Sss150715		pif->pif_hwlen  = dlinfo.di_physaddrlen;
7c478bd9Sstevel@tonic-gate
e704a8f2Smeem		dhcpmsg(MSG_DEBUG, "insert_pif: %s: hwtype %d, hwlen %d",
e704a8f2Smeem		    pname, pif->pif_hwtype, pif->pif_hwlen);
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj		if (pif->pif_hwlen > 0) {
d04ccbb3Scarlsonj			pif->pif_hwaddr = malloc(pif->pif_hwlen);
d04ccbb3Scarlsonj			if (pif->pif_hwaddr == NULL) {
d04ccbb3Scarlsonj				dhcpmsg(MSG_ERR, "insert_pif: cannot allocate "
d04ccbb3Scarlsonj				    "pif_hwaddr for %s", pname);
7c478bd9Sstevel@tonic-gate				*error = DHCP_IPC_E_MEMORY;
7c478bd9Sstevel@tonic-gate				goto failure;
7c478bd9Sstevel@tonic-gate			}
948f2876Sss150715			(void) memcpy(pif->pif_hwaddr, dlinfo.di_physaddr,
948f2876Sss150715			    pif->pif_hwlen);
7c478bd9Sstevel@tonic-gate		}
7c478bd9Sstevel@tonic-gate
e704a8f2Smeem		dlpi_close(dh);
e704a8f2Smeem		dh = NULL;
d04ccbb3Scarlsonj	}
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	insque(pif, isv6 ? &v6root : &v4root);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	return (pif);
d04ccbb3Scarlsonjfailure:
e704a8f2Smeem	if (dh != NULL)
e704a8f2Smeem		dlpi_close(dh);
d04ccbb3Scarlsonj	release_pif(pif);
d04ccbb3Scarlsonj	return (NULL);
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * hold_pif(): acquire a hold on a physical interface structure.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_pif_t *: a pointer to the PIF structure
d04ccbb3Scarlsonj *  output: none
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjvoid
d04ccbb3Scarlsonjhold_pif(dhcp_pif_t *pif)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	pif->pif_hold_count++;
d04ccbb3Scarlsonj	dhcpmsg(MSG_DEBUG2, "hold_pif: hold count on %s: %u", pif->pif_name,
d04ccbb3Scarlsonj	    pif->pif_hold_count);
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * release_pif(): release a hold on a physical interface structure; will
d04ccbb3Scarlsonj *		  destroy the structure on the last hold removed.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_pif_t *: a pointer to the PIF structure
d04ccbb3Scarlsonj *  output: none
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjvoid
d04ccbb3Scarlsonjrelease_pif(dhcp_pif_t *pif)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	if (pif->pif_hold_count == 0) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_CRIT, "release_pif: extraneous release");
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (--pif->pif_hold_count == 0) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_DEBUG, "release_pif: freeing PIF %s",
d04ccbb3Scarlsonj		    pif->pif_name);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		remque(pif);
d04ccbb3Scarlsonj		free(pif->pif_hwaddr);
d04ccbb3Scarlsonj		free(pif);
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		dhcpmsg(MSG_DEBUG2, "release_pif: hold count on %s: %u",
d04ccbb3Scarlsonj		    pif->pif_name, pif->pif_hold_count);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * lookup_pif_by_uindex(): Looks up PIF entries given truncated index and
d04ccbb3Scarlsonj *			   previous PIF pointer (or NULL for list start).
d04ccbb3Scarlsonj *			   Caller is expected to iterate through all
d04ccbb3Scarlsonj *			   potential matches to find interface of interest.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: uint16_t: the interface index (truncated)
d04ccbb3Scarlsonj *	    dhcp_pif_t *: the previous PIF, or NULL for list start
d04ccbb3Scarlsonj *	    boolean_t: B_TRUE if using DHCPv6, B_FALSE otherwise
d04ccbb3Scarlsonj *  output: dhcp_pif_t *: the next matching PIF, or NULL if not found
d04ccbb3Scarlsonj *    note: This operates using the 'truncated' (16-bit) ifindex as seen by
d04ccbb3Scarlsonj *	    routing socket clients.  The value stored in pif_index is the
d04ccbb3Scarlsonj *	    32-bit ifindex from the ioctl interface.
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjdhcp_pif_t *
d04ccbb3Scarlsonjlookup_pif_by_uindex(uint16_t ifindex, dhcp_pif_t *pif, boolean_t isv6)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	if (pif == NULL)
d04ccbb3Scarlsonj		pif = isv6 ? v6root : v4root;
d04ccbb3Scarlsonj	else
d04ccbb3Scarlsonj		pif = pif->pif_next;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	for (; pif != NULL; pif = pif->pif_next) {
d04ccbb3Scarlsonj		if ((pif->pif_index & 0xffff) == ifindex)
d04ccbb3Scarlsonj			break;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	return (pif);
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * lookup_pif_by_name(): Looks up a physical interface entry given a name.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: const char *: the physical interface name
d04ccbb3Scarlsonj *	    boolean_t: B_TRUE if using DHCPv6, B_FALSE otherwise
d04ccbb3Scarlsonj *  output: dhcp_pif_t *: the matching PIF, or NULL if not found
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjdhcp_pif_t *
d04ccbb3Scarlsonjlookup_pif_by_name(const char *pname, boolean_t isv6)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	dhcp_pif_t *pif;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	pif = isv6 ? v6root : v4root;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	for (; pif != NULL; pif = pif->pif_next) {
d04ccbb3Scarlsonj		if (strcmp(pif->pif_name, pname) == 0)
d04ccbb3Scarlsonj			break;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	return (pif);
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * pif_status(): update the physical interface up/down status.
d04ccbb3Scarlsonj *
e704a8f2Smeem *   input: dhcp_pif_t *: the physical interface to be updated
d04ccbb3Scarlsonj *	    boolean_t: B_TRUE if the interface is going up
d04ccbb3Scarlsonj *  output: none
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjvoid
d04ccbb3Scarlsonjpif_status(dhcp_pif_t *pif, boolean_t isup)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	dhcp_lif_t *lif;
d04ccbb3Scarlsonj	dhcp_smach_t *dsmp;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	pif->pif_running = isup;
906cb642Scarlsonj	dhcpmsg(MSG_DEBUG, "interface %s has %s", pif->pif_name,
d04ccbb3Scarlsonj	    isup ? "come back up" : "gone down");
d04ccbb3Scarlsonj	for (lif = pif->pif_lifs; lif != NULL; lif = lif->lif_next) {
d04ccbb3Scarlsonj		for (dsmp = lif->lif_smachs; dsmp != NULL;
d04ccbb3Scarlsonj		    dsmp = dsmp->dsm_next) {
d04ccbb3Scarlsonj			if (isup)
d04ccbb3Scarlsonj				refresh_smach(dsmp);
d04ccbb3Scarlsonj			else
d04ccbb3Scarlsonj				remove_default_routes(dsmp);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/* Helper for insert_lif: extract addresses as defined */
d04ccbb3Scarlsonj#define	ASSIGN_ADDR(v4, v6, lf) \
d04ccbb3Scarlsonj	if (pif->pif_isv6) { \
d04ccbb3Scarlsonj		lif->v6 = ((struct sockaddr_in6 *)&lifr.lf)->sin6_addr; \
d04ccbb3Scarlsonj	} else { \
d04ccbb3Scarlsonj		lif->v4 = ((struct sockaddr_in *)&lifr.lf)->sin_addr.s_addr; \
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * insert_lif(): Creates a new logical interface structure and chains it on
d04ccbb3Scarlsonj *		 the list for a given physical interface.  Initializes state
d04ccbb3Scarlsonj *		 that remains consistent across all use of the logical
d04ccbb3Scarlsonj *		 interface entry.  Caller's PIF hold is transferred to the
d04ccbb3Scarlsonj *		 LIF on success, and is dropped on failure.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_pif_t *: pointer to the physical interface for this LIF
d04ccbb3Scarlsonj *	    const char *: the name of the logical interface
d04ccbb3Scarlsonj *	    int *: ignored on input; if insert_pif fails, set to a DHCP_IPC_E_*
d04ccbb3Scarlsonj *		   error code with the reason why
d04ccbb3Scarlsonj *  output: dhcp_lif_t *: a pointer to the new entry, or NULL on failure
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjdhcp_lif_t *
d04ccbb3Scarlsonjinsert_lif(dhcp_pif_t *pif, const char *lname, int *error)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	dhcp_lif_t *lif;
d04ccbb3Scarlsonj	int fd;
d04ccbb3Scarlsonj	struct lifreq lifr;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if ((lif = calloc(1, sizeof (*lif))) == NULL) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "insert_lif: cannot allocate lif entry for "
d04ccbb3Scarlsonj		    "%s", lname);
d04ccbb3Scarlsonj		*error = DHCP_IPC_E_MEMORY;
d04ccbb3Scarlsonj		return (NULL);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	lif->lif_sock_ip_fd = -1;
e704a8f2Smeem	lif->lif_packet_id = -1;
d04ccbb3Scarlsonj	lif->lif_iaid_id = -1;
d04ccbb3Scarlsonj	lif->lif_hold_count = 1;
d04ccbb3Scarlsonj	lif->lif_pif = pif;
d04ccbb3Scarlsonj	lif->lif_removed = B_TRUE;
d04ccbb3Scarlsonj	init_timer(&lif->lif_preferred, 0);
d04ccbb3Scarlsonj	init_timer(&lif->lif_expire, 0);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (strlcpy(lif->lif_name, lname, LIFNAMSIZ) >= LIFNAMSIZ) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERROR, "insert_lif: interface name %s is too long",
d04ccbb3Scarlsonj		    lname);
d04ccbb3Scarlsonj		*error = DHCP_IPC_E_INVIF;
d04ccbb3Scarlsonj		goto failure;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	(void) strlcpy(lifr.lifr_name, lname, LIFNAMSIZ);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	fd = pif->pif_isv6 ? v6_sock_fd : v4_sock_fd;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFMTU, &lifr) == -1)
d04ccbb3Scarlsonj		lif->lif_max = 1024;
d04ccbb3Scarlsonj	else
d04ccbb3Scarlsonj		lif->lif_max = lifr.lifr_mtu;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFADDR, &lifr) == -1) {
7c478bd9Sstevel@tonic-gate		if (errno == ENXIO)
7c478bd9Sstevel@tonic-gate			*error = DHCP_IPC_E_INVIF;
7c478bd9Sstevel@tonic-gate		else
7c478bd9Sstevel@tonic-gate			*error = DHCP_IPC_E_INT;
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "insert_lif: SIOCGLIFADDR for %s", lname);
7c478bd9Sstevel@tonic-gate		goto failure;
7c478bd9Sstevel@tonic-gate	}
d04ccbb3Scarlsonj	ASSIGN_ADDR(lif_addr, lif_v6addr, lifr_addr);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFNETMASK, &lifr) == -1) {
d04ccbb3Scarlsonj		if (errno == ENXIO)
d04ccbb3Scarlsonj			*error = DHCP_IPC_E_INVIF;
d04ccbb3Scarlsonj		else
d04ccbb3Scarlsonj			*error = DHCP_IPC_E_INT;
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "insert_lif: SIOCGLIFNETMASK for %s", lname);
d04ccbb3Scarlsonj		goto failure;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj	ASSIGN_ADDR(lif_netmask, lif_v6mask, lifr_addr);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFFLAGS, &lifr) == -1) {
d04ccbb3Scarlsonj		*error = DHCP_IPC_E_INT;
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "insert_lif: SIOCGLIFFLAGS for %s", lname);
d04ccbb3Scarlsonj		goto failure;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj	lif->lif_flags = lifr.lifr_flags;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * If we've just detected the interface going up or down, then signal
d04ccbb3Scarlsonj	 * an appropriate action.  There may be other state machines here.
d04ccbb3Scarlsonj	 */
d04ccbb3Scarlsonj	if ((lifr.lifr_flags & IFF_RUNNING) && !pif->pif_running) {
d04ccbb3Scarlsonj		pif_status(pif, B_TRUE);
d04ccbb3Scarlsonj	} else if (!(lifr.lifr_flags & IFF_RUNNING) && pif->pif_running) {
d04ccbb3Scarlsonj		pif_status(pif, B_FALSE);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (lifr.lifr_flags & IFF_POINTOPOINT) {
d04ccbb3Scarlsonj		if (ioctl(fd, SIOCGLIFDSTADDR, &lifr) == -1) {
d04ccbb3Scarlsonj			*error = DHCP_IPC_E_INT;
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR, "insert_lif: SIOCGLIFDSTADDR for %s",
d04ccbb3Scarlsonj			    lname);
d04ccbb3Scarlsonj			goto failure;
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj		ASSIGN_ADDR(lif_peer, lif_v6peer, lifr_dstaddr);
d04ccbb3Scarlsonj	} else if (!pif->pif_isv6 && (lifr.lifr_flags & IFF_BROADCAST)) {
d04ccbb3Scarlsonj		if (ioctl(fd, SIOCGLIFBRDADDR, &lifr) == -1) {
d04ccbb3Scarlsonj			*error = DHCP_IPC_E_INT;
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR, "insert_lif: SIOCGLIFBRDADDR for %s",
d04ccbb3Scarlsonj			    lname);
d04ccbb3Scarlsonj			goto failure;
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj		lif->lif_broadcast =
d04ccbb3Scarlsonj		    ((struct sockaddr_in *)&lifr.lifr_broadaddr)->sin_addr.
d04ccbb3Scarlsonj		    s_addr;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (pif->pif_isv6)
d04ccbb3Scarlsonj		cached_v6_max_mtu = 0;
d04ccbb3Scarlsonj	else
d04ccbb3Scarlsonj		cached_v4_max_mtu = 0;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	lif->lif_removed = B_FALSE;
d04ccbb3Scarlsonj	insque(lif, &pif->pif_lifs);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	return (lif);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjfailure:
d04ccbb3Scarlsonj	release_lif(lif);
d04ccbb3Scarlsonj	return (NULL);
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * hold_lif(): acquire a hold on a logical interface structure.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: a pointer to the LIF structure
d04ccbb3Scarlsonj *  output: none
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjvoid
d04ccbb3Scarlsonjhold_lif(dhcp_lif_t *lif)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	lif->lif_hold_count++;
d04ccbb3Scarlsonj	dhcpmsg(MSG_DEBUG2, "hold_lif: hold count on %s: %u", lif->lif_name,
d04ccbb3Scarlsonj	    lif->lif_hold_count);
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * release_lif(): release a hold on a logical interface structure; will
d04ccbb3Scarlsonj *		  destroy the structure on the last hold removed.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: a pointer to the LIF structure
d04ccbb3Scarlsonj *  output: none
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjvoid
d04ccbb3Scarlsonjrelease_lif(dhcp_lif_t *lif)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	if (lif->lif_hold_count == 0) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_CRIT, "release_lif: extraneous release on %s",
d04ccbb3Scarlsonj		    lif->lif_name);
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (lif->lif_hold_count == 1 && !lif->lif_removed) {
d04ccbb3Scarlsonj		unplumb_lif(lif);
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (--lif->lif_hold_count == 0) {
d04ccbb3Scarlsonj		dhcp_pif_t *pif;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		dhcpmsg(MSG_DEBUG, "release_lif: freeing LIF %s",
d04ccbb3Scarlsonj		    lif->lif_name);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		if (lif->lif_lease != NULL)
d04ccbb3Scarlsonj			dhcpmsg(MSG_CRIT,
d04ccbb3Scarlsonj			    "release_lif: still holding lease at last hold!");
d04ccbb3Scarlsonj		close_ip_lif(lif);
d04ccbb3Scarlsonj		pif = lif->lif_pif;
d04ccbb3Scarlsonj		if (pif->pif_isv6)
d04ccbb3Scarlsonj			cached_v6_max_mtu = 0;
d04ccbb3Scarlsonj		else
d04ccbb3Scarlsonj			cached_v4_max_mtu = 0;
d04ccbb3Scarlsonj		release_pif(pif);
d04ccbb3Scarlsonj		free(lif);
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		dhcpmsg(MSG_DEBUG2, "release_lif: hold count on %s: %u",
d04ccbb3Scarlsonj		    lif->lif_name, lif->lif_hold_count);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * remove_lif(): remove a logical interface from its PIF and lease (if any) and
d04ccbb3Scarlsonj *		 the lease's hold on the LIF.  Assumes that we did not plumb
d04ccbb3Scarlsonj *		 the interface.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: a pointer to the LIF structure
d04ccbb3Scarlsonj *  output: none
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjvoid
d04ccbb3Scarlsonjremove_lif(dhcp_lif_t *lif)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	if (lif->lif_plumbed) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_CRIT, "remove_lif: attempted invalid removal of %s",
d04ccbb3Scarlsonj		    lif->lif_name);
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj	if (lif->lif_removed) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_CRIT, "remove_lif: extraneous removal of %s",
d04ccbb3Scarlsonj		    lif->lif_name);
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		dhcp_lif_t *lifnext;
d04ccbb3Scarlsonj		dhcp_lease_t *dlp;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		dhcpmsg(MSG_DEBUG2, "remove_lif: removing %s", lif->lif_name);
d04ccbb3Scarlsonj		lif->lif_removed = B_TRUE;
d04ccbb3Scarlsonj		lifnext = lif->lif_next;
d04ccbb3Scarlsonj		clear_lif_dhcp(lif);
d04ccbb3Scarlsonj		cancel_lif_timers(lif);
d04ccbb3Scarlsonj		if (lif->lif_iaid_id != -1 &&
d04ccbb3Scarlsonj		    iu_cancel_timer(tq, lif->lif_iaid_id, NULL) == 1) {
d04ccbb3Scarlsonj			lif->lif_iaid_id = -1;
d04ccbb3Scarlsonj			release_lif(lif);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		/* Remove from PIF list */
d04ccbb3Scarlsonj		remque(lif);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		/* If we were part of a lease, then remove ourselves */
d04ccbb3Scarlsonj		if ((dlp = lif->lif_lease) != NULL) {
d04ccbb3Scarlsonj			if (--dlp->dl_nlifs == 0)
d04ccbb3Scarlsonj				dlp->dl_lifs = NULL;
d04ccbb3Scarlsonj			else if (dlp->dl_lifs == lif)
d04ccbb3Scarlsonj				dlp->dl_lifs = lifnext;
d04ccbb3Scarlsonj			if (lif->lif_declined != NULL) {
d04ccbb3Scarlsonj				dlp->dl_smach->dsm_lif_down--;
d04ccbb3Scarlsonj				lif->lif_declined = NULL;
d04ccbb3Scarlsonj			}
42dc071eSJames Carlson			if (lif->lif_dad_wait) {
42dc071eSJames Carlson				lif->lif_dad_wait = _B_FALSE;
42dc071eSJames Carlson				dlp->dl_smach->dsm_lif_wait--;
42dc071eSJames Carlson			}
d04ccbb3Scarlsonj			lif->lif_lease = NULL;
d04ccbb3Scarlsonj			release_lif(lif);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * lookup_lif_by_name(): Looks up a logical interface entry given a name and
d04ccbb3Scarlsonj *			 a physical interface.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: const char *: the logical interface name
d04ccbb3Scarlsonj *	    const dhcp_pif_t *: the physical interface
d04ccbb3Scarlsonj *  output: dhcp_lif_t *: the matching LIF, or NULL if not found
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjdhcp_lif_t *
d04ccbb3Scarlsonjlookup_lif_by_name(const char *lname, const dhcp_pif_t *pif)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	dhcp_lif_t *lif;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	for (lif = pif->pif_lifs; lif != NULL; lif = lif->lif_next) {
d04ccbb3Scarlsonj		if (strcmp(lif->lif_name, lname) == 0)
d04ccbb3Scarlsonj			break;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	return (lif);
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * checkaddr(): checks if the given address is still set on the given LIF
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: const dhcp_lif_t *: the LIF to check
d04ccbb3Scarlsonj *	    int: the address to look up on the interface (ioctl)
d04ccbb3Scarlsonj *	    const in6_addr_t *: the address to compare to
d04ccbb3Scarlsonj *	    const char *: name of the address for logging purposes
d04ccbb3Scarlsonj *  output: boolean_t: B_TRUE if the address is still set; B_FALSE if not
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjstatic boolean_t
d04ccbb3Scarlsonjcheckaddr(const dhcp_lif_t *lif, int ioccmd, const in6_addr_t *addr,
d04ccbb3Scarlsonj    const char *aname)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	boolean_t isv6;
d04ccbb3Scarlsonj	int fd;
d04ccbb3Scarlsonj	struct lifreq lifr;
e704a8f2Smeem	char abuf1[INET6_ADDRSTRLEN];
e704a8f2Smeem	char abuf2[INET6_ADDRSTRLEN];
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	(void) memset(&lifr, 0, sizeof (struct lifreq));
d04ccbb3Scarlsonj	(void) strlcpy(lifr.lifr_name, lif->lif_name, LIFNAMSIZ);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	isv6 = lif->lif_pif->pif_isv6;
d04ccbb3Scarlsonj	fd = isv6 ? v6_sock_fd : v4_sock_fd;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (ioctl(fd, ioccmd, &lifr) == -1) {
d04ccbb3Scarlsonj		if (errno == ENXIO) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_WARNING, "checkaddr: interface %s is gone",
d04ccbb3Scarlsonj			    lif->lif_name);
d04ccbb3Scarlsonj			return (B_FALSE);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj		dhcpmsg(MSG_DEBUG,
d04ccbb3Scarlsonj		    "checkaddr: ignoring ioctl error on %s %x: %s",
d04ccbb3Scarlsonj		    lif->lif_name, ioccmd, strerror(errno));
d04ccbb3Scarlsonj	} else if (isv6) {
d04ccbb3Scarlsonj		struct sockaddr_in6 *sin6 =
d04ccbb3Scarlsonj		    (struct sockaddr_in6 *)&lifr.lifr_addr;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		if (!IN6_ARE_ADDR_EQUAL(&sin6->sin6_addr, addr)) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_WARNING,
e704a8f2Smeem			    "checkaddr: expected %s %s on %s, have %s", aname,
e704a8f2Smeem			    inet_ntop(AF_INET6, addr, abuf1, sizeof (abuf1)),
e704a8f2Smeem			    lif->lif_name, inet_ntop(AF_INET6, &sin6->sin6_addr,
e704a8f2Smeem			    abuf2, sizeof (abuf2)));
d04ccbb3Scarlsonj			return (B_FALSE);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		struct sockaddr_in *sinp =
d04ccbb3Scarlsonj		    (struct sockaddr_in *)&lifr.lifr_addr;
d04ccbb3Scarlsonj		ipaddr_t v4addr;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		IN6_V4MAPPED_TO_IPADDR(addr, v4addr);
d04ccbb3Scarlsonj		if (sinp->sin_addr.s_addr != v4addr) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_WARNING,
e704a8f2Smeem			    "checkaddr: expected %s %s on %s, have %s", aname,
e704a8f2Smeem			    inet_ntop(AF_INET, &v4addr, abuf1, sizeof (abuf1)),
e704a8f2Smeem			    lif->lif_name, inet_ntop(AF_INET, &sinp->sin_addr,
e704a8f2Smeem			    abuf2, sizeof (abuf2)));
d04ccbb3Scarlsonj			return (B_FALSE);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj	return (B_TRUE);
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * verify_lif(): verifies than a LIF is still valid (i.e., has not been
d04ccbb3Scarlsonj *		 explicitly or implicitly dropped or released)
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: const dhcp_lif_t *: the LIF to verify
d04ccbb3Scarlsonj *  output: boolean_t: B_TRUE if the LIF is still valid, B_FALSE otherwise
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjboolean_t
d04ccbb3Scarlsonjverify_lif(const dhcp_lif_t *lif)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	boolean_t isv6;
d04ccbb3Scarlsonj	int fd;
d04ccbb3Scarlsonj	struct lifreq lifr;
e11c3f44Smeem	dhcp_pif_t *pif = lif->lif_pif;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	(void) memset(&lifr, 0, sizeof (struct lifreq));
d04ccbb3Scarlsonj	(void) strlcpy(lifr.lifr_name, lif->lif_name, LIFNAMSIZ);
d04ccbb3Scarlsonj
e11c3f44Smeem	isv6 = pif->pif_isv6;
d04ccbb3Scarlsonj	fd = isv6 ? v6_sock_fd : v4_sock_fd;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFFLAGS, &lifr) == -1) {
cfb9c9abScarlsonj		if (errno != ENXIO) {
cfb9c9abScarlsonj			dhcpmsg(MSG_ERR,
cfb9c9abScarlsonj			    "verify_lif: SIOCGLIFFLAGS failed on %s",
d04ccbb3Scarlsonj			    lif->lif_name);
cfb9c9abScarlsonj		}
d04ccbb3Scarlsonj		return (B_FALSE);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * If important flags have changed, then abandon the interface.
d04ccbb3Scarlsonj	 */
d04ccbb3Scarlsonj	if ((lif->lif_flags ^ lifr.lifr_flags) & DHCP_IFF_WATCH) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_DEBUG, "verify_lif: unexpected flag change on %s: "
d04ccbb3Scarlsonj		    "%llx to %llx (%llx)", lif->lif_name, lif->lif_flags,
d04ccbb3Scarlsonj		    lifr.lifr_flags, (lif->lif_flags ^ lifr.lifr_flags) &
d04ccbb3Scarlsonj		    DHCP_IFF_WATCH);
d04ccbb3Scarlsonj		return (B_FALSE);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * Check for delete and recreate.
d04ccbb3Scarlsonj	 */
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFINDEX, &lifr) == -1) {
e11c3f44Smeem		if (errno != ENXIO) {
e11c3f44Smeem			dhcpmsg(MSG_ERR, "verify_lif: SIOCGLIFINDEX failed "
e11c3f44Smeem			    "on %s", lif->lif_name);
e11c3f44Smeem		}
d04ccbb3Scarlsonj		return (B_FALSE);
d04ccbb3Scarlsonj	}
e11c3f44Smeem	if (lifr.lifr_index != pif->pif_index) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_DEBUG,
d04ccbb3Scarlsonj		    "verify_lif: ifindex on %s changed: %u to %u",
e11c3f44Smeem		    lif->lif_name, pif->pif_index, lifr.lifr_index);
d04ccbb3Scarlsonj		return (B_FALSE);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
e11c3f44Smeem	if (pif->pif_under_ipmp) {
e11c3f44Smeem		(void) strlcpy(lifr.lifr_name, pif->pif_grifname, LIFNAMSIZ);
e11c3f44Smeem
e11c3f44Smeem		if (ioctl(fd, SIOCGLIFINDEX, &lifr) == -1) {
e11c3f44Smeem			if (errno != ENXIO) {
e11c3f44Smeem				dhcpmsg(MSG_ERR, "verify_lif: SIOCGLIFINDEX "
e11c3f44Smeem				    "failed on %s", lifr.lifr_name);
e11c3f44Smeem			}
e11c3f44Smeem			return (B_FALSE);
e11c3f44Smeem		}
e11c3f44Smeem
e11c3f44Smeem		if (lifr.lifr_index != pif->pif_grindex) {
e11c3f44Smeem			dhcpmsg(MSG_DEBUG, "verify_lif: IPMP group ifindex "
e11c3f44Smeem			    "on %s changed: %u to %u", lifr.lifr_name,
e11c3f44Smeem			    pif->pif_grindex, lifr.lifr_index);
e11c3f44Smeem			return (B_FALSE);
e11c3f44Smeem		}
e11c3f44Smeem	}
e11c3f44Smeem
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * If the IP address, netmask, or broadcast address have changed, or
d04ccbb3Scarlsonj	 * the interface has been unplumbed, then we act like there has been an
d04ccbb3Scarlsonj	 * implicit drop.  (Note that the netmask is under DHCP control for
d04ccbb3Scarlsonj	 * IPv4, but not for DHCPv6, and that IPv6 doesn't have broadcast
d04ccbb3Scarlsonj	 * addresses.)
d04ccbb3Scarlsonj	 */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (!checkaddr(lif, SIOCGLIFADDR, &lif->lif_v6addr, "local address"))
d04ccbb3Scarlsonj		return (B_FALSE);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (isv6) {
d04ccbb3Scarlsonj		/*
d04ccbb3Scarlsonj		 * If it's not point-to-point, we're done.  If it is, then
d04ccbb3Scarlsonj		 * check the peer's address as well.
d04ccbb3Scarlsonj		 */
d04ccbb3Scarlsonj		return (!(lif->lif_flags & IFF_POINTOPOINT) ||
d04ccbb3Scarlsonj		    checkaddr(lif, SIOCGLIFDSTADDR, &lif->lif_v6peer,
d04ccbb3Scarlsonj		    "peer address"));
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		if (!checkaddr(lif, SIOCGLIFNETMASK, &lif->lif_v6mask,
d04ccbb3Scarlsonj		    "netmask"))
d04ccbb3Scarlsonj			return (B_FALSE);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		return (checkaddr(lif,
d04ccbb3Scarlsonj		    (lif->lif_flags & IFF_POINTOPOINT) ? SIOCGLIFDSTADDR :
d04ccbb3Scarlsonj		    SIOCGLIFBRDADDR, &lif->lif_v6peer, "peer address"));
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * canonize_lif(): puts the interface in a canonical (zeroed) form.  This is
d04ccbb3Scarlsonj *		   used only on the "main" LIF for IPv4.  All other interfaces
d04ccbb3Scarlsonj *		   are under dhcpagent control and are removed using
d04ccbb3Scarlsonj *		   unplumb_lif().
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the interface to canonize
e704a8f2Smeem *	    boolean_t: only canonize lif if it's under DHCP control
d04ccbb3Scarlsonj *  output: none
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjstatic void
e704a8f2Smeemcanonize_lif(dhcp_lif_t *lif, boolean_t dhcponly)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	boolean_t isv6;
d04ccbb3Scarlsonj	int fd;
d04ccbb3Scarlsonj	struct lifreq lifr;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * If there's nothing here, then don't touch the interface.  This can
d04ccbb3Scarlsonj	 * happen when an already-canonized LIF is recanonized.
d04ccbb3Scarlsonj	 */
d04ccbb3Scarlsonj	if (IN6_IS_ADDR_UNSPECIFIED(&lif->lif_v6addr))
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	isv6 = lif->lif_pif->pif_isv6;
d04ccbb3Scarlsonj	dhcpmsg(MSG_VERBOSE, "canonizing IPv%d interface %s",
d04ccbb3Scarlsonj	    isv6 ? 6 : 4, lif->lif_name);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	lif->lif_v6addr = my_in6addr_any;
d04ccbb3Scarlsonj	lif->lif_v6mask = my_in6addr_any;
d04ccbb3Scarlsonj	lif->lif_v6peer = my_in6addr_any;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	(void) memset(&lifr, 0, sizeof (struct lifreq));
d04ccbb3Scarlsonj	(void) strlcpy(lifr.lifr_name, lif->lif_name, LIFNAMSIZ);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	fd = isv6 ? v6_sock_fd : v4_sock_fd;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFFLAGS, &lifr) == -1) {
cfb9c9abScarlsonj		if (errno != ENXIO) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR, "canonize_lif: can't get flags for %s",
d04ccbb3Scarlsonj			    lif->lif_name);
cfb9c9abScarlsonj		}
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj	}
7da2140cSmeem	lif->lif_flags = lifr.lifr_flags;
d04ccbb3Scarlsonj
e704a8f2Smeem	if (dhcponly && !(lifr.lifr_flags & IFF_DHCPRUNNING)) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_INFO,
d04ccbb3Scarlsonj		    "canonize_lif: cannot clear %s; flags are %llx",
d04ccbb3Scarlsonj		    lif->lif_name, lifr.lifr_flags);
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	(void) memset(&lifr.lifr_addr, 0, sizeof (lifr.lifr_addr));
d04ccbb3Scarlsonj	if (isv6) {
d04ccbb3Scarlsonj		struct sockaddr_in6 *sin6 =
d04ccbb3Scarlsonj		    (struct sockaddr_in6 *)&lifr.lifr_addr;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		sin6->sin6_family = AF_INET6;
d04ccbb3Scarlsonj		sin6->sin6_addr = my_in6addr_any;
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		struct sockaddr_in *sinv =
d04ccbb3Scarlsonj		    (struct sockaddr_in *)&lifr.lifr_addr;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		sinv->sin_family = AF_INET;
d04ccbb3Scarlsonj		sinv->sin_addr.s_addr = htonl(INADDR_ANY);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCSLIFADDR, &lifr) == -1) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR,
d04ccbb3Scarlsonj		    "canonize_lif: can't clear local address on %s",
d04ccbb3Scarlsonj		    lif->lif_name);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
42dc071eSJames Carlson	/* Clearing the address means that we're no longer waiting on DAD */
42dc071eSJames Carlson	if (lif->lif_dad_wait) {
42dc071eSJames Carlson		lif->lif_dad_wait = _B_FALSE;
42dc071eSJames Carlson		lif->lif_lease->dl_smach->dsm_lif_wait--;
42dc071eSJames Carlson	}
42dc071eSJames Carlson
d04ccbb3Scarlsonj	if (lif->lif_flags & IFF_POINTOPOINT) {
d04ccbb3Scarlsonj		if (ioctl(fd, SIOCSLIFDSTADDR, &lifr) == -1) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR,
d04ccbb3Scarlsonj			    "canonize_lif: can't clear remote address on %s",
d04ccbb3Scarlsonj			    lif->lif_name);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj	} else if (!isv6) {
d04ccbb3Scarlsonj		if (ioctl(fd, SIOCSLIFBRDADDR, &lifr) == -1) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR,
d04ccbb3Scarlsonj			    "canonize_lif: can't clear broadcast address on %s",
d04ccbb3Scarlsonj			    lif->lif_name);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj	}
103dd7a7SAnurag S. Maskey
103dd7a7SAnurag S. Maskey	/*
103dd7a7SAnurag S. Maskey	 * Clear the netmask last as it has to be refetched after clearing.
103dd7a7SAnurag S. Maskey	 * Netmask is under in.ndpd control with IPv6.
103dd7a7SAnurag S. Maskey	 */
103dd7a7SAnurag S. Maskey	if (!isv6) {
103dd7a7SAnurag S. Maskey		/* Clear the netmask */
103dd7a7SAnurag S. Maskey		if (ioctl(fd, SIOCSLIFNETMASK, &lifr) == -1) {
103dd7a7SAnurag S. Maskey			dhcpmsg(MSG_ERR,
103dd7a7SAnurag S. Maskey			    "canonize_lif: can't clear netmask on %s",
103dd7a7SAnurag S. Maskey			    lif->lif_name);
103dd7a7SAnurag S. Maskey		} else  {
103dd7a7SAnurag S. Maskey			/*
103dd7a7SAnurag S. Maskey			 * When the netmask is cleared, the kernel actually sets
103dd7a7SAnurag S. Maskey			 * the netmask to 255.0.0.0.  So, refetch that netmask.
103dd7a7SAnurag S. Maskey			 */
103dd7a7SAnurag S. Maskey			if (ioctl(fd, SIOCGLIFNETMASK, &lifr) == -1) {
103dd7a7SAnurag S. Maskey				dhcpmsg(MSG_ERR,
103dd7a7SAnurag S. Maskey				    "canonize_lif: can't reload cleared "
103dd7a7SAnurag S. Maskey				    "netmask on %s", lif->lif_name);
103dd7a7SAnurag S. Maskey			} else {
103dd7a7SAnurag S. Maskey				/* Refetch succeeded, update LIF */
103dd7a7SAnurag S. Maskey				lif->lif_netmask =
103dd7a7SAnurag S. Maskey				    ((struct sockaddr_in *)&lifr.lifr_addr)->
103dd7a7SAnurag S. Maskey				    sin_addr.s_addr;
103dd7a7SAnurag S. Maskey			}
103dd7a7SAnurag S. Maskey		}
103dd7a7SAnurag S. Maskey	}
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * plumb_lif(): Adds the LIF to the system.  This is used for all
d04ccbb3Scarlsonj *		DHCPv6-derived interfaces.  The returned LIF has a hold
42dc071eSJames Carlson *		on it.  The caller (configure_v6_leases) deals with the DAD
42dc071eSJames Carlson *		wait counters.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the interface to unplumb
d04ccbb3Scarlsonj *  output: none
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjdhcp_lif_t *
d04ccbb3Scarlsonjplumb_lif(dhcp_pif_t *pif, const in6_addr_t *addr)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	dhcp_lif_t *lif;
d04ccbb3Scarlsonj	char abuf[INET6_ADDRSTRLEN];
d04ccbb3Scarlsonj	struct lifreq lifr;
d04ccbb3Scarlsonj	struct sockaddr_in6 *sin6;
d04ccbb3Scarlsonj	int error;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	(void) inet_ntop(AF_INET6, addr, abuf, sizeof (abuf));
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	for (lif = pif->pif_lifs; lif != NULL; lif = lif->lif_next) {
d04ccbb3Scarlsonj		if (IN6_ARE_ADDR_EQUAL(&lif->lif_v6addr, addr)) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR,
d04ccbb3Scarlsonj			    "plumb_lif: entry for %s already exists!", abuf);
d04ccbb3Scarlsonj			return (NULL);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/* First, create a new zero-address logical interface */
d04ccbb3Scarlsonj	(void) memset(&lifr, 0, sizeof (lifr));
d04ccbb3Scarlsonj	(void) strlcpy(lifr.lifr_name, pif->pif_name, sizeof (lifr.lifr_name));
d04ccbb3Scarlsonj	if (ioctl(v6_sock_fd, SIOCLIFADDIF, &lifr) == -1) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "plumb_lif: SIOCLIFADDIF %s", pif->pif_name);
d04ccbb3Scarlsonj		return (NULL);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/* Next, set the netmask to all ones */
d04ccbb3Scarlsonj	sin6 = (struct sockaddr_in6 *)&lifr.lifr_addr;
d04ccbb3Scarlsonj	sin6->sin6_family = AF_INET6;
d04ccbb3Scarlsonj	(void) memset(&sin6->sin6_addr, 0xff, sizeof (sin6->sin6_addr));
d04ccbb3Scarlsonj	if (ioctl(v6_sock_fd, SIOCSLIFNETMASK, &lifr) == -1) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "plumb_lif: SIOCSLIFNETMASK %s",
d04ccbb3Scarlsonj		    lifr.lifr_name);
d04ccbb3Scarlsonj		goto failure;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/* Now set the interface address */
d04ccbb3Scarlsonj	sin6->sin6_addr = *addr;
d04ccbb3Scarlsonj	if (ioctl(v6_sock_fd, SIOCSLIFADDR, &lifr) == -1) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "plumb_lif: SIOCSLIFADDR %s %s",
d04ccbb3Scarlsonj		    lifr.lifr_name, abuf);
d04ccbb3Scarlsonj		goto failure;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/* Mark the interface up */
d04ccbb3Scarlsonj	if (ioctl(v6_sock_fd, SIOCGLIFFLAGS, &lifr) == -1) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "plumb_lif: SIOCGLIFFLAGS %s",
d04ccbb3Scarlsonj		    lifr.lifr_name);
d04ccbb3Scarlsonj		goto failure;
d04ccbb3Scarlsonj	}
e11c3f44Smeem
e11c3f44Smeem	/*
e11c3f44Smeem	 * See comment in set_lif_dhcp().
e11c3f44Smeem	 */
e11c3f44Smeem	if (pif->pif_under_ipmp && !(lifr.lifr_flags & IFF_NOFAILOVER))
e11c3f44Smeem		lifr.lifr_flags |= IFF_NOFAILOVER | IFF_DEPRECATED;
e11c3f44Smeem
d04ccbb3Scarlsonj	lifr.lifr_flags |= IFF_UP | IFF_DHCPRUNNING;
d04ccbb3Scarlsonj	if (ioctl(v6_sock_fd, SIOCSLIFFLAGS, &lifr) == -1) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "plumb_lif: SIOCSLIFFLAGS %s",
d04ccbb3Scarlsonj		    lifr.lifr_name);
d04ccbb3Scarlsonj		goto failure;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/* Now we can create the internal LIF structure */
d04ccbb3Scarlsonj	hold_pif(pif);
d04ccbb3Scarlsonj	if ((lif = insert_lif(pif, lifr.lifr_name, &error)) == NULL)
d04ccbb3Scarlsonj		goto failure;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	dhcpmsg(MSG_DEBUG, "plumb_lif: plumbed up %s on %s", abuf,
d04ccbb3Scarlsonj	    lif->lif_name);
d04ccbb3Scarlsonj	lif->lif_plumbed = B_TRUE;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	return (lif);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjfailure:
d04ccbb3Scarlsonj	if (ioctl(v6_sock_fd, SIOCLIFREMOVEIF, &lifr) == -1 &&
d04ccbb3Scarlsonj	    errno != ENXIO) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "plumb_lif: SIOCLIFREMOVEIF %s",
d04ccbb3Scarlsonj		    lifr.lifr_name);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj	return (NULL);
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * unplumb_lif(): Removes the LIF from dhcpagent and the system.  This is used
d04ccbb3Scarlsonj *		  for all interfaces configured by DHCP (those in leases).
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the interface to unplumb
d04ccbb3Scarlsonj *  output: none
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjvoid
d04ccbb3Scarlsonjunplumb_lif(dhcp_lif_t *lif)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	dhcp_lease_t *dlp;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (lif->lif_plumbed) {
d04ccbb3Scarlsonj		struct lifreq lifr;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		(void) memset(&lifr, 0, sizeof (lifr));
d04ccbb3Scarlsonj		(void) strlcpy(lifr.lifr_name, lif->lif_name,
d04ccbb3Scarlsonj		    sizeof (lifr.lifr_name));
d04ccbb3Scarlsonj		if (ioctl(v6_sock_fd, SIOCLIFREMOVEIF, &lifr) == -1 &&
d04ccbb3Scarlsonj		    errno != ENXIO) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR, "unplumb_lif: SIOCLIFREMOVEIF %s",
d04ccbb3Scarlsonj			    lif->lif_name);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj		lif->lif_plumbed = B_FALSE;
d04ccbb3Scarlsonj	}
f7d61273Smeem
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * Special case: if we're "unplumbing" the main LIF for DHCPv4, then
42dc071eSJames Carlson	 * just canonize it and remove it from the lease.  The DAD wait flags
42dc071eSJames Carlson	 * are handled by canonize_lif or by remove_lif.
d04ccbb3Scarlsonj	 */
d04ccbb3Scarlsonj	if ((dlp = lif->lif_lease) != NULL && dlp->dl_smach->dsm_lif == lif) {
e704a8f2Smeem		canonize_lif(lif, B_TRUE);
d04ccbb3Scarlsonj		cancel_lif_timers(lif);
d04ccbb3Scarlsonj		if (lif->lif_declined != NULL) {
d04ccbb3Scarlsonj			dlp->dl_smach->dsm_lif_down--;
d04ccbb3Scarlsonj			lif->lif_declined = NULL;
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj		dlp->dl_nlifs = 0;
d04ccbb3Scarlsonj		dlp->dl_lifs = NULL;
d04ccbb3Scarlsonj		lif->lif_lease = NULL;
d04ccbb3Scarlsonj		release_lif(lif);
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		remove_lif(lif);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * attach_lif(): create a new logical interface, creating the physical
d04ccbb3Scarlsonj *		 interface as necessary.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: const char *: the logical interface name
d04ccbb3Scarlsonj *	    boolean_t: B_TRUE for IPv6
d04ccbb3Scarlsonj *	    int *: set to DHCP_IPC_E_* if creation fails
d04ccbb3Scarlsonj *  output: dhcp_lif_t *: pointer to new entry, or NULL on failure
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjdhcp_lif_t *
d04ccbb3Scarlsonjattach_lif(const char *lname, boolean_t isv6, int *error)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	dhcp_pif_t *pif;
d04ccbb3Scarlsonj	char pname[LIFNAMSIZ], *cp;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	(void) strlcpy(pname, lname, sizeof (pname));
d04ccbb3Scarlsonj	if ((cp = strchr(pname, ':')) != NULL)
d04ccbb3Scarlsonj		*cp = '\0';
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if ((pif = lookup_pif_by_name(pname, isv6)) != NULL)
d04ccbb3Scarlsonj		hold_pif(pif);
d04ccbb3Scarlsonj	else if ((pif = insert_pif(pname, isv6, error)) == NULL)
d04ccbb3Scarlsonj		return (NULL);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (lookup_lif_by_name(lname, pif) != NULL) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERROR, "attach_lif: entry for %s already exists!",
d04ccbb3Scarlsonj		    lname);
d04ccbb3Scarlsonj		release_pif(pif);
d04ccbb3Scarlsonj		*error = DHCP_IPC_E_INVIF;
d04ccbb3Scarlsonj		return (NULL);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/* If LIF creation fails, then insert_lif discards our PIF hold */
d04ccbb3Scarlsonj	return (insert_lif(pif, lname, error));
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * set_lif_dhcp(): Set logical interface flags to show that it's managed
d04ccbb3Scarlsonj *		   by DHCP.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the logical interface
d04ccbb3Scarlsonj *  output: int: set to DHCP_IPC_E_* if operation fails
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjint
dc918d99Smeemset_lif_dhcp(dhcp_lif_t *lif)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	int fd;
d04ccbb3Scarlsonj	int err;
d04ccbb3Scarlsonj	struct lifreq lifr;
e11c3f44Smeem	dhcp_pif_t *pif = lif->lif_pif;
d04ccbb3Scarlsonj
e11c3f44Smeem	fd = pif->pif_isv6 ? v6_sock_fd : v4_sock_fd;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	(void) strlcpy(lifr.lifr_name, lif->lif_name, LIFNAMSIZ);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFFLAGS, &lifr) == -1) {
d04ccbb3Scarlsonj		err = errno;
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "set_lif_dhcp: SIOCGLIFFLAGS for %s",
d04ccbb3Scarlsonj		    lif->lif_name);
d04ccbb3Scarlsonj		return (err == ENXIO ? DHCP_IPC_E_INVIF : DHCP_IPC_E_INT);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj	lif->lif_flags = lifr.lifr_flags;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * Check for conflicting sources of address control, and other
d04ccbb3Scarlsonj	 * unacceptable configurations.
d04ccbb3Scarlsonj	 */
5c0b7edeSseb	if (lifr.lifr_flags & (IFF_LOOPBACK|IFF_ADDRCONF|IFF_TEMPORARY|
5c0b7edeSseb	    IFF_VIRTUAL)) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "set_lif_dhcp: cannot use %s: flags are %llx",
d04ccbb3Scarlsonj		    lif->lif_name, lifr.lifr_flags);
d04ccbb3Scarlsonj		return (DHCP_IPC_E_INVIF);
d04ccbb3Scarlsonj	}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate	/*
dc918d99Smeem	 * If IFF_DHCPRUNNING is already set on the interface and we're not
dc918d99Smeem	 * adopting it, the agent probably crashed and burned.  Note it, but
dc918d99Smeem	 * don't let it stop the proceedings (we're pretty sure we're not
dc918d99Smeem	 * already running, since we were able to bind to our IPC port).
7c478bd9Sstevel@tonic-gate	 */
d04ccbb3Scarlsonj	if (lifr.lifr_flags & IFF_DHCPRUNNING) {
dc918d99Smeem		dhcpmsg(MSG_VERBOSE, "set_lif_dhcp: IFF_DHCPRUNNING already set"
dc918d99Smeem		    " on %s", lif->lif_name);
7c478bd9Sstevel@tonic-gate	} else {
e11c3f44Smeem		/*
e11c3f44Smeem		 * If the lif is on an interface under IPMP, IFF_NOFAILOVER
e11c3f44Smeem		 * must be set or the kernel will prevent us from setting
e11c3f44Smeem		 * IFF_DHCPRUNNING (since the subsequent IFF_UP would lead to
e11c3f44Smeem		 * migration).  We set IFF_DEPRECATED too since the kernel
e11c3f44Smeem		 * will set it automatically when setting IFF_NOFAILOVER,
e11c3f44Smeem		 * causing our lif_flags value to grow stale.
e11c3f44Smeem		 */
e11c3f44Smeem		if (pif->pif_under_ipmp && !(lifr.lifr_flags & IFF_NOFAILOVER))
e11c3f44Smeem			lifr.lifr_flags |= IFF_NOFAILOVER | IFF_DEPRECATED;
e11c3f44Smeem
d04ccbb3Scarlsonj		lifr.lifr_flags |= IFF_DHCPRUNNING;
d04ccbb3Scarlsonj		if (ioctl(fd, SIOCSLIFFLAGS, &lifr) == -1) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR, "set_lif_dhcp: SIOCSLIFFLAGS for %s",
d04ccbb3Scarlsonj			    lif->lif_name);
d04ccbb3Scarlsonj			return (DHCP_IPC_E_INT);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj		lif->lif_flags = lifr.lifr_flags;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj	return (DHCP_IPC_SUCCESS);
7c478bd9Sstevel@tonic-gate}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * clear_lif_dhcp(): Clear logical interface flags to show that it's no longer
d04ccbb3Scarlsonj *		     managed by DHCP.
7c478bd9Sstevel@tonic-gate *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the logical interface
d04ccbb3Scarlsonj *  output: none
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gatestatic void
d04ccbb3Scarlsonjclear_lif_dhcp(dhcp_lif_t *lif)
7c478bd9Sstevel@tonic-gate{
d04ccbb3Scarlsonj	int fd;
d04ccbb3Scarlsonj	struct lifreq lifr;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	fd = lif->lif_pif->pif_isv6 ? v6_sock_fd : v4_sock_fd;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	(void) strlcpy(lifr.lifr_name, lif->lif_name, LIFNAMSIZ);
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFFLAGS, &lifr) == -1)
d04ccbb3Scarlsonj		return;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	if (!(lifr.lifr_flags & IFF_DHCPRUNNING))
d04ccbb3Scarlsonj		return;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	lif->lif_flags = lifr.lifr_flags &= ~IFF_DHCPRUNNING;
d04ccbb3Scarlsonj	(void) ioctl(fd, SIOCSLIFFLAGS, &lifr);
7c478bd9Sstevel@tonic-gate}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * set_lif_deprecated(): Set the "deprecated" flag to tell users that this
d04ccbb3Scarlsonj *			 address will be going away.  As the interface is
d04ccbb3Scarlsonj *			 going away, we don't care if there are errors.
7c478bd9Sstevel@tonic-gate *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the logical interface
d04ccbb3Scarlsonj *  output: none
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gatevoid
d04ccbb3Scarlsonjset_lif_deprecated(dhcp_lif_t *lif)
7c478bd9Sstevel@tonic-gate{
d04ccbb3Scarlsonj	int fd;
d04ccbb3Scarlsonj	struct lifreq lifr;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	if (lif->lif_flags & IFF_DEPRECATED)
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	fd = lif->lif_pif->pif_isv6 ? v6_sock_fd : v4_sock_fd;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	(void) strlcpy(lifr.lifr_name, lif->lif_name, LIFNAMSIZ);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFFLAGS, &lifr) == -1)
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (lifr.lifr_flags & IFF_DEPRECATED)
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	lifr.lifr_flags |= IFF_DEPRECATED;
d04ccbb3Scarlsonj	(void) ioctl(fd, SIOCSLIFFLAGS, &lifr);
d04ccbb3Scarlsonj	lif->lif_flags = lifr.lifr_flags;
7c478bd9Sstevel@tonic-gate}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * clear_lif_deprecated(): Clear the "deprecated" flag to tell users that this
d04ccbb3Scarlsonj *			   address will not be going away.  This happens if we
d04ccbb3Scarlsonj *			   get a renewal after preferred lifetime but before
d04ccbb3Scarlsonj *			   the valid lifetime.
7c478bd9Sstevel@tonic-gate *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the logical interface
d04ccbb3Scarlsonj *  output: boolean_t: B_TRUE on success.
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonjboolean_t
d04ccbb3Scarlsonjclear_lif_deprecated(dhcp_lif_t *lif)
7c478bd9Sstevel@tonic-gate{
d04ccbb3Scarlsonj	int fd;
d04ccbb3Scarlsonj	struct lifreq lifr;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	fd = lif->lif_pif->pif_isv6 ? v6_sock_fd : v4_sock_fd;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	(void) strlcpy(lifr.lifr_name, lif->lif_name, LIFNAMSIZ);
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCGLIFFLAGS, &lifr) == -1) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "clear_lif_deprecated: SIOCGLIFFLAGS for %s",
d04ccbb3Scarlsonj		    lif->lif_name);
7c478bd9Sstevel@tonic-gate		return (B_FALSE);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * Check for conflicting sources of address control, and other
d04ccbb3Scarlsonj	 * unacceptable configurations.
d04ccbb3Scarlsonj	 */
5c0b7edeSseb	if (lifr.lifr_flags & (IFF_LOOPBACK|IFF_ADDRCONF|IFF_TEMPORARY|
5c0b7edeSseb	    IFF_VIRTUAL)) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "clear_lif_deprecated: cannot use %s: flags "
d04ccbb3Scarlsonj		    "are %llx", lif->lif_name, lifr.lifr_flags);
7c478bd9Sstevel@tonic-gate		return (B_FALSE);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
e11c3f44Smeem	/*
e11c3f44Smeem	 * Don't try to clear IFF_DEPRECATED if this is a test address,
e11c3f44Smeem	 * since IPMP's use of IFF_DEPRECATED is not compatible with ours.
e11c3f44Smeem	 */
e11c3f44Smeem	if (lifr.lifr_flags & IFF_NOFAILOVER)
e11c3f44Smeem		return (B_TRUE);
e11c3f44Smeem
d04ccbb3Scarlsonj	if (!(lifr.lifr_flags & IFF_DEPRECATED))
d04ccbb3Scarlsonj		return (B_TRUE);
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	lifr.lifr_flags &= ~IFF_DEPRECATED;
d04ccbb3Scarlsonj	if (ioctl(fd, SIOCSLIFFLAGS, &lifr) == -1) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR, "clear_lif_deprecated: SIOCSLIFFLAGS for %s",
d04ccbb3Scarlsonj		    lif->lif_name);
d04ccbb3Scarlsonj		return (B_FALSE);
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		lif->lif_flags = lifr.lifr_flags;
d04ccbb3Scarlsonj		return (B_TRUE);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * open_ip_lif(): open up an IP socket for I/O on a given LIF (v4 only).
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the logical interface to operate on
e704a8f2Smeem *	    in_addr_t: the address the socket will be bound to (in hbo)
e11c3f44Smeem *	    boolean_t: B_TRUE if the address should be brought up (if needed)
d04ccbb3Scarlsonj *  output: boolean_t: B_TRUE if the socket was opened successfully.
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjboolean_t
e11c3f44Smeemopen_ip_lif(dhcp_lif_t *lif, in_addr_t addr_hbo, boolean_t bringup)
d04ccbb3Scarlsonj{
e704a8f2Smeem	const char *errmsg;
e704a8f2Smeem	struct lifreq lifr;
e704a8f2Smeem	int on = 1;
a7107231Smeem	uchar_t ttl = 255;
e11c3f44Smeem	uint32_t ifindex;
e11c3f44Smeem	dhcp_pif_t *pif = lif->lif_pif;
e704a8f2Smeem
d04ccbb3Scarlsonj	if (lif->lif_sock_ip_fd != -1) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_WARNING, "open_ip_lif: socket already open on %s",
d04ccbb3Scarlsonj		    lif->lif_name);
d04ccbb3Scarlsonj		return (B_FALSE);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	lif->lif_sock_ip_fd = socket(AF_INET, SOCK_DGRAM, 0);
d04ccbb3Scarlsonj	if (lif->lif_sock_ip_fd == -1) {
e704a8f2Smeem		errmsg = "cannot create v4 socket";
e704a8f2Smeem		goto failure;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
e704a8f2Smeem	if (!bind_sock(lif->lif_sock_ip_fd, IPPORT_BOOTPC, addr_hbo)) {
e704a8f2Smeem		errmsg = "cannot bind v4 socket";
e704a8f2Smeem		goto failure;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
e704a8f2Smeem	/*
e704a8f2Smeem	 * If we bound to INADDR_ANY, we have no IFF_UP source address to use.
e704a8f2Smeem	 * Thus, enable IP_UNSPEC_SRC so that we can send packets with an
e704a8f2Smeem	 * unspecified (0.0.0.0) address.  Also, enable IP_DHCPINIT_IF so that
e704a8f2Smeem	 * the IP module will accept unicast DHCP traffic regardless of the IP
e704a8f2Smeem	 * address it's sent to.  (We'll then figure out which packets are
e704a8f2Smeem	 * ours based on the xid.)
e704a8f2Smeem	 */
e704a8f2Smeem	if (addr_hbo == INADDR_ANY) {
e704a8f2Smeem		if (setsockopt(lif->lif_sock_ip_fd, IPPROTO_IP, IP_UNSPEC_SRC,
e704a8f2Smeem		    &on, sizeof (int)) == -1) {
e704a8f2Smeem			errmsg = "cannot set IP_UNSPEC_SRC";
e704a8f2Smeem			goto failure;
e704a8f2Smeem		}
e704a8f2Smeem
e704a8f2Smeem		if (setsockopt(lif->lif_sock_ip_fd, IPPROTO_IP, IP_DHCPINIT_IF,
e11c3f44Smeem		    &pif->pif_index, sizeof (int)) == -1) {
e704a8f2Smeem			errmsg = "cannot set IP_DHCPINIT_IF";
e704a8f2Smeem			goto failure;
e704a8f2Smeem		}
e704a8f2Smeem	}
e704a8f2Smeem
a7107231Smeem	/*
a7107231Smeem	 * Unfortunately, some hardware (such as the Linksys WRT54GC)
a7107231Smeem	 * decrements the TTL *prior* to accepting DHCP traffic destined
a7107231Smeem	 * for it.  To workaround this, tell IP to use a TTL of 255 for
a7107231Smeem	 * broadcast packets sent from this socket.
a7107231Smeem	 */
a7107231Smeem	if (setsockopt(lif->lif_sock_ip_fd, IPPROTO_IP, IP_BROADCAST_TTL, &ttl,
a7107231Smeem	    sizeof (uchar_t)) == -1) {
a7107231Smeem		errmsg = "cannot set IP_BROADCAST_TTL";
a7107231Smeem		goto failure;
a7107231Smeem	}
a7107231Smeem
e11c3f44Smeem	ifindex = pif->pif_under_ipmp ? pif->pif_grindex : pif->pif_index;
e11c3f44Smeem	if (setsockopt(lif->lif_sock_ip_fd, IPPROTO_IP, IP_BOUND_IF, &ifindex,
e11c3f44Smeem	    sizeof (int)) == -1) {
e704a8f2Smeem		errmsg = "cannot set IP_BOUND_IF";
e704a8f2Smeem		goto failure;
e704a8f2Smeem	}
e704a8f2Smeem
e704a8f2Smeem	(void) strlcpy(lifr.lifr_name, lif->lif_name, LIFNAMSIZ);
e704a8f2Smeem	if (ioctl(v4_sock_fd, SIOCGLIFFLAGS, &lifr) == -1) {
e704a8f2Smeem		errmsg = "cannot get interface flags";
e704a8f2Smeem		goto failure;
e704a8f2Smeem	}
e704a8f2Smeem
e11c3f44Smeem	/*
e11c3f44Smeem	 * If the lif is part of an interface under IPMP, IFF_NOFAILOVER must
e11c3f44Smeem	 * be set or the kernel will prevent us from setting IFF_DHCPRUNNING
e11c3f44Smeem	 * (since the subsequent IFF_UP would lead to migration).  We set
e11c3f44Smeem	 * IFF_DEPRECATED too since the kernel will set it automatically when
e11c3f44Smeem	 * setting IFF_NOFAILOVER, causing our lif_flags value to grow stale.
e11c3f44Smeem	 */
e11c3f44Smeem	if (pif->pif_under_ipmp && !(lifr.lifr_flags & IFF_NOFAILOVER)) {
e11c3f44Smeem		lifr.lifr_flags |= IFF_NOFAILOVER | IFF_DEPRECATED;
e11c3f44Smeem		if (ioctl(v4_sock_fd, SIOCSLIFFLAGS, &lifr) == -1) {
e11c3f44Smeem			errmsg = "cannot set IFF_NOFAILOVER";
e11c3f44Smeem			goto failure;
e11c3f44Smeem		}
e11c3f44Smeem	}
e11c3f44Smeem	lif->lif_flags = lifr.lifr_flags;
e11c3f44Smeem
e11c3f44Smeem	/*
e11c3f44Smeem	 * If this is initial bringup, make sure the address we're acquiring a
e11c3f44Smeem	 * lease on is IFF_UP.
e11c3f44Smeem	 */
e11c3f44Smeem	if (bringup && !(lifr.lifr_flags & IFF_UP)) {
e704a8f2Smeem		/*
e704a8f2Smeem		 * Start from a clean slate.
e704a8f2Smeem		 */
e704a8f2Smeem		canonize_lif(lif, B_FALSE);
e704a8f2Smeem
e704a8f2Smeem		lifr.lifr_flags |= IFF_UP;
e704a8f2Smeem		if (ioctl(v4_sock_fd, SIOCSLIFFLAGS, &lifr) == -1) {
e704a8f2Smeem			errmsg = "cannot bring up";
e704a8f2Smeem			goto failure;
e704a8f2Smeem		}
10e672b7Smeem		lif->lif_flags = lifr.lifr_flags;
e704a8f2Smeem
e704a8f2Smeem		/*
e704a8f2Smeem		 * When bringing 0.0.0.0 IFF_UP, the kernel changes the
e704a8f2Smeem		 * netmask to 255.0.0.0, so re-fetch our expected netmask.
e704a8f2Smeem		 */
e704a8f2Smeem		if (ioctl(v4_sock_fd, SIOCGLIFNETMASK, &lifr) == -1) {
e704a8f2Smeem			errmsg = "cannot get netmask";
e704a8f2Smeem			goto failure;
e704a8f2Smeem		}
e704a8f2Smeem
e704a8f2Smeem		lif->lif_netmask =
e704a8f2Smeem		    ((struct sockaddr_in *)&lifr.lifr_addr)->sin_addr.s_addr;
e704a8f2Smeem	}
e704a8f2Smeem
e11c3f44Smeem	/*
e11c3f44Smeem	 * Usually, bringing up the address we're acquiring a lease on is
e11c3f44Smeem	 * sufficient to allow packets to be sent and received via the
e11c3f44Smeem	 * IP_BOUND_IF we did earlier.  However, if we're acquiring a lease on
e11c3f44Smeem	 * an underlying IPMP interface, the group interface will be used for
e11c3f44Smeem	 * sending and receiving IP packets via IP_BOUND_IF.  Thus, ensure at
e11c3f44Smeem	 * least one address on the group interface is IFF_UP.
e11c3f44Smeem	 */
e11c3f44Smeem	if (bringup && pif->pif_under_ipmp) {
e11c3f44Smeem		(void) strlcpy(lifr.lifr_name, pif->pif_grifname, LIFNAMSIZ);
e11c3f44Smeem		if (ioctl(v4_sock_fd, SIOCGLIFFLAGS, &lifr) == -1) {
e11c3f44Smeem			errmsg = "cannot get IPMP group interface flags";
e11c3f44Smeem			goto failure;
e11c3f44Smeem		}
e11c3f44Smeem
e11c3f44Smeem		if (!(lifr.lifr_flags & IFF_UP)) {
e11c3f44Smeem			lifr.lifr_flags |= IFF_UP;
e11c3f44Smeem			if (ioctl(v4_sock_fd, SIOCSLIFFLAGS, &lifr) == -1) {
e11c3f44Smeem				errmsg = "cannot bring up IPMP group interface";
e11c3f44Smeem				goto failure;
e11c3f44Smeem			}
e11c3f44Smeem		}
e11c3f44Smeem	}
e11c3f44Smeem
e704a8f2Smeem	lif->lif_packet_id = iu_register_event(eh, lif->lif_sock_ip_fd, POLLIN,
e704a8f2Smeem	    dhcp_packet_lif, lif);
e704a8f2Smeem	if (lif->lif_packet_id == -1) {
e704a8f2Smeem		errmsg = "cannot register to receive DHCP packets";
e704a8f2Smeem		goto failure;
e704a8f2Smeem	}
e704a8f2Smeem
e704a8f2Smeem	return (B_TRUE);
e704a8f2Smeemfailure:
e704a8f2Smeem	dhcpmsg(MSG_ERR, "open_ip_lif: %s: %s", lif->lif_name, errmsg);
d04ccbb3Scarlsonj	close_ip_lif(lif);
d04ccbb3Scarlsonj	return (B_FALSE);
7c478bd9Sstevel@tonic-gate}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * close_ip_lif(): close an IP socket for I/O on a given LIF.
7c478bd9Sstevel@tonic-gate *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the logical interface to operate on
d04ccbb3Scarlsonj *  output: none
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gatevoid
d04ccbb3Scarlsonjclose_ip_lif(dhcp_lif_t *lif)
7c478bd9Sstevel@tonic-gate{
e704a8f2Smeem	if (lif->lif_packet_id != -1) {
e704a8f2Smeem		(void) iu_unregister_event(eh, lif->lif_packet_id, NULL);
e704a8f2Smeem		lif->lif_packet_id = -1;
7c478bd9Sstevel@tonic-gate	}
d04ccbb3Scarlsonj	if (lif->lif_sock_ip_fd != -1) {
d04ccbb3Scarlsonj		(void) close(lif->lif_sock_ip_fd);
d04ccbb3Scarlsonj		lif->lif_sock_ip_fd = -1;
7c478bd9Sstevel@tonic-gate	}
7c478bd9Sstevel@tonic-gate}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * lif_mark_decline(): mark a LIF as having been declined due to a duplicate
d04ccbb3Scarlsonj *		       address or some other conflict.  This is used in
d04ccbb3Scarlsonj *		       send_declines() to report failure back to the server.
7c478bd9Sstevel@tonic-gate *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the logical interface to operate on
d04ccbb3Scarlsonj *	    const char *: text string explaining why the address is declined
d04ccbb3Scarlsonj *  output: none
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gatevoid
d04ccbb3Scarlsonjlif_mark_decline(dhcp_lif_t *lif, const char *reason)
7c478bd9Sstevel@tonic-gate{
d04ccbb3Scarlsonj	if (lif->lif_declined == NULL) {
d04ccbb3Scarlsonj		dhcp_lease_t *dlp;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj		lif->lif_declined = reason;
d04ccbb3Scarlsonj		if ((dlp = lif->lif_lease) != NULL)
d04ccbb3Scarlsonj			dlp->dl_smach->dsm_lif_down++;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * schedule_lif_timer(): schedules the LIF-related timer
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the logical interface to operate on
d04ccbb3Scarlsonj *	    dhcp_timer_t *: the timer to schedule
d04ccbb3Scarlsonj *	    iu_tq_callback_t *: the callback to call upon firing
d04ccbb3Scarlsonj *  output: boolean_t: B_TRUE if the timer was scheduled successfully
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonjboolean_t
d04ccbb3Scarlsonjschedule_lif_timer(dhcp_lif_t *lif, dhcp_timer_t *dt, iu_tq_callback_t *expire)
7c478bd9Sstevel@tonic-gate{
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * If there's a timer running, cancel it and release its lease
d04ccbb3Scarlsonj	 * reference.
d04ccbb3Scarlsonj	 */
d04ccbb3Scarlsonj	if (dt->dt_id != -1) {
d04ccbb3Scarlsonj		if (!cancel_timer(dt))
d04ccbb3Scarlsonj			return (B_FALSE);
d04ccbb3Scarlsonj		release_lif(lif);
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	if (schedule_timer(dt, expire, lif)) {
d04ccbb3Scarlsonj		hold_lif(lif);
d04ccbb3Scarlsonj		return (B_TRUE);
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		dhcpmsg(MSG_WARNING,
d04ccbb3Scarlsonj		    "schedule_lif_timer: cannot schedule timer");
d04ccbb3Scarlsonj		return (B_FALSE);
d04ccbb3Scarlsonj	}
7c478bd9Sstevel@tonic-gate}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * cancel_lif_timer(): cancels a LIF-related timer
7c478bd9Sstevel@tonic-gate *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the logical interface to operate on
d04ccbb3Scarlsonj *	    dhcp_timer_t *: the timer to cancel
d04ccbb3Scarlsonj *  output: none
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gatestatic void
d04ccbb3Scarlsonjcancel_lif_timer(dhcp_lif_t *lif, dhcp_timer_t *dt)
7c478bd9Sstevel@tonic-gate{
d04ccbb3Scarlsonj	if (dt->dt_id == -1)
d04ccbb3Scarlsonj		return;
d04ccbb3Scarlsonj	if (cancel_timer(dt)) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_DEBUG2,
d04ccbb3Scarlsonj		    "cancel_lif_timer: canceled expiry timer on %s",
d04ccbb3Scarlsonj		    lif->lif_name);
d04ccbb3Scarlsonj		release_lif(lif);
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		dhcpmsg(MSG_WARNING,
d04ccbb3Scarlsonj		    "cancel_lif_timer: cannot cancel timer on %s",
d04ccbb3Scarlsonj		    lif->lif_name);
7c478bd9Sstevel@tonic-gate	}
7c478bd9Sstevel@tonic-gate}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * cancel_lif_timers(): cancels the LIF-related timers
7c478bd9Sstevel@tonic-gate *
d04ccbb3Scarlsonj *   input: dhcp_lif_t *: the logical interface to operate on
d04ccbb3Scarlsonj *  output: none
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gatevoid
d04ccbb3Scarlsonjcancel_lif_timers(dhcp_lif_t *lif)
7c478bd9Sstevel@tonic-gate{
d04ccbb3Scarlsonj	cancel_lif_timer(lif, &lif->lif_preferred);
d04ccbb3Scarlsonj	cancel_lif_timer(lif, &lif->lif_expire);
7c478bd9Sstevel@tonic-gate}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * get_max_mtu(): find the maximum MTU of all interfaces for I/O on common
d04ccbb3Scarlsonj *		  file descriptors (v4_sock_fd and v6_sock_fd).
7c478bd9Sstevel@tonic-gate *
d04ccbb3Scarlsonj *   input: boolean_t: B_TRUE for IPv6, B_FALSE for IPv4
d04ccbb3Scarlsonj *  output: none
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonjuint_t
d04ccbb3Scarlsonjget_max_mtu(boolean_t isv6)
7c478bd9Sstevel@tonic-gate{
d04ccbb3Scarlsonj	uint_t *mtup = isv6 ? &cached_v6_max_mtu : &cached_v4_max_mtu;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	if (*mtup == 0) {
d04ccbb3Scarlsonj		dhcp_pif_t *pif;
d04ccbb3Scarlsonj		dhcp_lif_t *lif;
d04ccbb3Scarlsonj		struct lifreq lifr;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj		/* Set an arbitrary lower bound */
d04ccbb3Scarlsonj		*mtup = 1024;
d04ccbb3Scarlsonj		pif = isv6 ? v6root : v4root;
d04ccbb3Scarlsonj		for (; pif != NULL; pif = pif->pif_next) {
d04ccbb3Scarlsonj			for (lif = pif->pif_lifs; lif != NULL;
d04ccbb3Scarlsonj			    lif = lif->lif_next) {
d04ccbb3Scarlsonj				(void) strlcpy(lifr.lifr_name, lif->lif_name,
d04ccbb3Scarlsonj				    LIFNAMSIZ);
d04ccbb3Scarlsonj				if (ioctl(v4_sock_fd, SIOCGLIFMTU, &lifr) !=
d04ccbb3Scarlsonj				    -1 && lifr.lifr_mtu > *mtup) {
d04ccbb3Scarlsonj					*mtup = lifr.lifr_mtu;
7c478bd9Sstevel@tonic-gate				}
d04ccbb3Scarlsonj			}
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj	return (*mtup);
7c478bd9Sstevel@tonic-gate}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * expired_lif_state(): summarize the state of expired LIFs on a given state
d04ccbb3Scarlsonj *			machine.
7c478bd9Sstevel@tonic-gate *
d04ccbb3Scarlsonj *   input: dhcp_smach_t *: the state machine to scan
d04ccbb3Scarlsonj *  output: dhcp_expire_t: overall state
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonjdhcp_expire_t
d04ccbb3Scarlsonjexpired_lif_state(dhcp_smach_t *dsmp)
7c478bd9Sstevel@tonic-gate{
d04ccbb3Scarlsonj	dhcp_lease_t *dlp;
d04ccbb3Scarlsonj	dhcp_lif_t *lif;
d04ccbb3Scarlsonj	uint_t nlifs;
d04ccbb3Scarlsonj	uint_t numlifs;
d04ccbb3Scarlsonj	uint_t numexp;
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	numlifs = numexp = 0;
d04ccbb3Scarlsonj	for (dlp = dsmp->dsm_leases; dlp != NULL; dlp = dlp->dl_next) {
d04ccbb3Scarlsonj		lif = dlp->dl_lifs;
d04ccbb3Scarlsonj		nlifs = dlp->dl_nlifs;
d04ccbb3Scarlsonj		numlifs += nlifs;
d04ccbb3Scarlsonj		for (; nlifs > 0; nlifs--, lif = lif->lif_next) {
d04ccbb3Scarlsonj			if (lif->lif_expired)
d04ccbb3Scarlsonj				numexp++;
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj	if (numlifs == 0)
d04ccbb3Scarlsonj		return (DHCP_EXP_NOLIFS);
d04ccbb3Scarlsonj	else if (numexp == 0)
d04ccbb3Scarlsonj		return (DHCP_EXP_NOEXP);
d04ccbb3Scarlsonj	else if (numlifs == numexp)
d04ccbb3Scarlsonj		return (DHCP_EXP_ALLEXP);
d04ccbb3Scarlsonj	else
d04ccbb3Scarlsonj		return (DHCP_EXP_SOMEEXP);
7c478bd9Sstevel@tonic-gate}
7c478bd9Sstevel@tonic-gate
7c478bd9Sstevel@tonic-gate/*
d04ccbb3Scarlsonj * find_expired_lif(): find the first expired LIF on a given state machine
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: dhcp_smach_t *: the state machine to scan
d04ccbb3Scarlsonj *  output: dhcp_lif_t *: the first expired LIF, or NULL if none.
7c478bd9Sstevel@tonic-gate */
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonjdhcp_lif_t *
d04ccbb3Scarlsonjfind_expired_lif(dhcp_smach_t *dsmp)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	dhcp_lease_t *dlp;
d04ccbb3Scarlsonj	dhcp_lif_t *lif;
d04ccbb3Scarlsonj	uint_t nlifs;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	for (dlp = dsmp->dsm_leases; dlp != NULL; dlp = dlp->dl_next) {
d04ccbb3Scarlsonj		lif = dlp->dl_lifs;
d04ccbb3Scarlsonj		nlifs = dlp->dl_nlifs;
d04ccbb3Scarlsonj		for (; nlifs > 0; nlifs--, lif = lif->lif_next) {
d04ccbb3Scarlsonj			if (lif->lif_expired)
d04ccbb3Scarlsonj				return (lif);
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj	return (NULL);
d04ccbb3Scarlsonj}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj/*
d04ccbb3Scarlsonj * remove_v6_strays(): remove any stray interfaces marked as DHCPRUNNING.  Used
d04ccbb3Scarlsonj *		       only for DHCPv6.
d04ccbb3Scarlsonj *
d04ccbb3Scarlsonj *   input: none
d04ccbb3Scarlsonj *  output: none
d04ccbb3Scarlsonj */
d04ccbb3Scarlsonj
d04ccbb3Scarlsonjvoid
d04ccbb3Scarlsonjremove_v6_strays(void)
d04ccbb3Scarlsonj{
d04ccbb3Scarlsonj	struct lifnum lifn;
d04ccbb3Scarlsonj	struct lifconf lifc;
d04ccbb3Scarlsonj	struct lifreq *lifrp, *lifrmax;
d04ccbb3Scarlsonj	uint_t numifs;
d04ccbb3Scarlsonj	uint64_t flags;
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * Get the approximate number of interfaces in the system.  It's only
d04ccbb3Scarlsonj	 * approximate because the system is dynamic -- interfaces may be
d04ccbb3Scarlsonj	 * plumbed or unplumbed at any time.  This is also the reason for the
d04ccbb3Scarlsonj	 * "+ 10" fudge factor: we're trying to avoid unnecessary looping.
d04ccbb3Scarlsonj	 */
d04ccbb3Scarlsonj	(void) memset(&lifn, 0, sizeof (lifn));
d04ccbb3Scarlsonj	lifn.lifn_family = AF_INET6;
d04ccbb3Scarlsonj	lifn.lifn_flags = LIFC_ALLZONES | LIFC_NOXMIT | LIFC_TEMPORARY;
d04ccbb3Scarlsonj	if (ioctl(v6_sock_fd, SIOCGLIFNUM, &lifn) == -1) {
d04ccbb3Scarlsonj		dhcpmsg(MSG_ERR,
d04ccbb3Scarlsonj		    "remove_v6_strays: cannot read number of interfaces");
d04ccbb3Scarlsonj		numifs = 10;
d04ccbb3Scarlsonj	} else {
d04ccbb3Scarlsonj		numifs = lifn.lifn_count + 10;
d04ccbb3Scarlsonj	}
d04ccbb3Scarlsonj
d04ccbb3Scarlsonj	/*
d04ccbb3Scarlsonj	 * Get the interface information.  We do this in a loop so that we can
d04ccbb3Scarlsonj	 * recover from EINVAL from the kernel -- delivered when the buffer is
d04ccbb3Scarlsonj	 * too small.
d04ccbb3Scarlsonj	 */
d04ccbb3Scarlsonj	(void) memset(&lifc, 0, sizeof (lifc));
d04ccbb3Scarlsonj	lifc.lifc_family = AF_INET6;
d04ccbb3Scarlsonj	lifc.lifc_flags = LIFC_ALLZONES | LIFC_NOXMIT | LIFC_TEMPORARY;
d04ccbb3Scarlsonj	for (;;) {
d04ccbb3Scarlsonj		lifc.lifc_len = numifs * sizeof (*lifrp);
d04ccbb3Scarlsonj		lifrp = realloc(lifc.lifc_buf, lifc.lifc_len);
d04ccbb3Scarlsonj		if (lifrp == NULL) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR,
d04ccbb3Scarlsonj			    "remove_v6_strays: cannot allocate memory");
d04ccbb3Scarlsonj			free(lifc.lifc_buf);
d04ccbb3Scarlsonj			return;
d04ccbb3Scarlsonj		}
d04ccbb3Scarlsonj		lifc.lifc_buf = (caddr_t)lifrp;
d04ccbb3Scarlsonj		errno = 0;
d04ccbb3Scarlsonj		if (ioctl(v6_sock_fd, SIOCGLIFCONF, &lifc) == 0 &&
d04ccbb3Scarlsonj		    lifc.lifc_len < numifs * sizeof (*lifrp))
7c478bd9Sstevel@tonic-gate			break;
d04ccbb3Scarlsonj		if (errno == 0 || errno == EINVAL) {
d04ccbb3Scarlsonj			numifs <<= 1;
d04ccbb3Scarlsonj		} else {
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR, "remove_v6_strays: SIOCGLIFCONF");
d04ccbb3Scarlsonj			free(lifc.lifc_buf);
d04ccbb3Scarlsonj			return;
7c478bd9Sstevel@tonic-gate		}
7c478bd9Sstevel@tonic-gate	}
7c478bd9Sstevel@tonic-gate
d04ccbb3Scarlsonj	lifrmax = lifrp + lifc.lifc_len / sizeof (*lifrp);
d04ccbb3Scarlsonj	for (; lifrp < lifrmax; lifrp++) {
7c478bd9Sstevel@tonic-gate		/*
d04ccbb3Scarlsonj		 * Get the interface flags; we're interested in the DHCP ones.
7c478bd9Sstevel@tonic-gate		 */
d04ccbb3Scarlsonj		if (ioctl(v6_sock_fd, SIOCGLIFFLAGS, lifrp) == -1)
d04ccbb3Scarlsonj			continue;
d04ccbb3Scarlsonj		flags = lifrp->lifr_flags;
d04ccbb3Scarlsonj		if (!(flags & IFF_DHCPRUNNING))
d04ccbb3Scarlsonj			continue;
7c478bd9Sstevel@tonic-gate		/*
d04ccbb3Scarlsonj		 * If the interface has a link-local address, then we don't
d04ccbb3Scarlsonj		 * control it.  Just remove the flag.
7c478bd9Sstevel@tonic-gate		 */
d04ccbb3Scarlsonj		if (ioctl(v6_sock_fd, SIOCGLIFADDR, lifrp) == -1)
d04ccbb3Scarlsonj			continue;
d04ccbb3Scarlsonj		if (IN6_IS_ADDR_LINKLOCAL(&((struct sockaddr_in6 *)&lifrp->
d04ccbb3Scarlsonj		    lifr_addr)->sin6_addr)) {
d04ccbb3Scarlsonj			lifrp->lifr_flags = flags & ~IFF_DHCPRUNNING;
d04ccbb3Scarlsonj			(void) ioctl(v6_sock_fd, SIOCSLIFFLAGS, lifrp);
d04ccbb3Scarlsonj			continue;
d04ccbb3Scarlsonj		}
7c478bd9Sstevel@tonic-gate		/*
d04ccbb3Scarlsonj		 * All others are (or were) under our control.  Clean up by
d04ccbb3Scarlsonj		 * removing them.
7c478bd9Sstevel@tonic-gate		 */
d04ccbb3Scarlsonj		if (ioctl(v6_sock_fd, SIOCLIFREMOVEIF, lifrp) == 0) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_DEBUG, "remove_v6_strays: removed %s",
d04ccbb3Scarlsonj			    lifrp->lifr_name);
d04ccbb3Scarlsonj		} else if (errno != ENXIO) {
d04ccbb3Scarlsonj			dhcpmsg(MSG_ERR,
d04ccbb3Scarlsonj			    "remove_v6_strays: SIOCLIFREMOVEIF %s",
d04ccbb3Scarlsonj			    lifrp->lifr_name);
7c478bd9Sstevel@tonic-gate		}
7c478bd9Sstevel@tonic-gate	}
d04ccbb3Scarlsonj	free(lifc.lifc_buf);
7c478bd9Sstevel@tonic-gate}