1caf43b02SWarner Losh /*- 282cd038dSYoshinobu Inoue * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. 382cd038dSYoshinobu Inoue * All rights reserved. 482cd038dSYoshinobu Inoue * 582cd038dSYoshinobu Inoue * Redistribution and use in source and binary forms, with or without 682cd038dSYoshinobu Inoue * modification, are permitted provided that the following conditions 782cd038dSYoshinobu Inoue * are met: 882cd038dSYoshinobu Inoue * 1. Redistributions of source code must retain the above copyright 982cd038dSYoshinobu Inoue * notice, this list of conditions and the following disclaimer. 1082cd038dSYoshinobu Inoue * 2. Redistributions in binary form must reproduce the above copyright 1182cd038dSYoshinobu Inoue * notice, this list of conditions and the following disclaimer in the 1282cd038dSYoshinobu Inoue * documentation and/or other materials provided with the distribution. 1382cd038dSYoshinobu Inoue * 3. Neither the name of the project nor the names of its contributors 1482cd038dSYoshinobu Inoue * may be used to endorse or promote products derived from this software 1582cd038dSYoshinobu Inoue * without specific prior written permission. 1682cd038dSYoshinobu Inoue * 1782cd038dSYoshinobu Inoue * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND 1882cd038dSYoshinobu Inoue * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 1982cd038dSYoshinobu Inoue * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 2082cd038dSYoshinobu Inoue * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE 2182cd038dSYoshinobu Inoue * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 2282cd038dSYoshinobu Inoue * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 2382cd038dSYoshinobu Inoue * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 2482cd038dSYoshinobu Inoue * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 2582cd038dSYoshinobu Inoue * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 2682cd038dSYoshinobu Inoue * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 2782cd038dSYoshinobu Inoue * SUCH DAMAGE. 2882cd038dSYoshinobu Inoue * 29b48287a3SDavid E. O'Brien * $KAME: in6_pcb.c,v 1.31 2001/05/21 05:45:10 jinmei Exp $ 3082cd038dSYoshinobu Inoue */ 3182cd038dSYoshinobu Inoue 32caf43b02SWarner Losh /*- 3382cd038dSYoshinobu Inoue * Copyright (c) 1982, 1986, 1991, 1993 3482cd038dSYoshinobu Inoue * The Regents of the University of California. All rights reserved. 3582cd038dSYoshinobu Inoue * 3682cd038dSYoshinobu Inoue * Redistribution and use in source and binary forms, with or without 3782cd038dSYoshinobu Inoue * modification, are permitted provided that the following conditions 3882cd038dSYoshinobu Inoue * are met: 3982cd038dSYoshinobu Inoue * 1. Redistributions of source code must retain the above copyright 4082cd038dSYoshinobu Inoue * notice, this list of conditions and the following disclaimer. 4182cd038dSYoshinobu Inoue * 2. Redistributions in binary form must reproduce the above copyright 4282cd038dSYoshinobu Inoue * notice, this list of conditions and the following disclaimer in the 4382cd038dSYoshinobu Inoue * documentation and/or other materials provided with the distribution. 4482cd038dSYoshinobu Inoue * 4. Neither the name of the University nor the names of its contributors 4582cd038dSYoshinobu Inoue * may be used to endorse or promote products derived from this software 4682cd038dSYoshinobu Inoue * without specific prior written permission. 4782cd038dSYoshinobu Inoue * 4882cd038dSYoshinobu Inoue * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 4982cd038dSYoshinobu Inoue * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 5082cd038dSYoshinobu Inoue * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 5182cd038dSYoshinobu Inoue * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 5282cd038dSYoshinobu Inoue * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 5382cd038dSYoshinobu Inoue * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 5482cd038dSYoshinobu Inoue * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 5582cd038dSYoshinobu Inoue * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 5682cd038dSYoshinobu Inoue * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 5782cd038dSYoshinobu Inoue * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 5882cd038dSYoshinobu Inoue * SUCH DAMAGE. 5982cd038dSYoshinobu Inoue * 6082cd038dSYoshinobu Inoue * @(#)in_pcb.c 8.2 (Berkeley) 1/4/94 6182cd038dSYoshinobu Inoue */ 6282cd038dSYoshinobu Inoue 63b48287a3SDavid E. O'Brien #include <sys/cdefs.h> 64b48287a3SDavid E. O'Brien __FBSDID("$FreeBSD$"); 65b48287a3SDavid E. O'Brien 6633841545SHajimu UMEMOTO #include "opt_inet.h" 6733841545SHajimu UMEMOTO #include "opt_inet6.h" 686a800098SYoshinobu Inoue #include "opt_ipsec.h" 6982cd038dSYoshinobu Inoue 7082cd038dSYoshinobu Inoue #include <sys/param.h> 7182cd038dSYoshinobu Inoue #include <sys/systm.h> 7282cd038dSYoshinobu Inoue #include <sys/malloc.h> 7382cd038dSYoshinobu Inoue #include <sys/mbuf.h> 74fb59c426SYoshinobu Inoue #include <sys/domain.h> 7582cd038dSYoshinobu Inoue #include <sys/protosw.h> 7682cd038dSYoshinobu Inoue #include <sys/socket.h> 7782cd038dSYoshinobu Inoue #include <sys/socketvar.h> 7882cd038dSYoshinobu Inoue #include <sys/sockio.h> 7982cd038dSYoshinobu Inoue #include <sys/errno.h> 8082cd038dSYoshinobu Inoue #include <sys/time.h> 81acd3428bSRobert Watson #include <sys/priv.h> 8282cd038dSYoshinobu Inoue #include <sys/proc.h> 8382cd038dSYoshinobu Inoue #include <sys/jail.h> 8482cd038dSYoshinobu Inoue 8594540027SJeff Roberson #include <vm/uma.h> 8682cd038dSYoshinobu Inoue 8782cd038dSYoshinobu Inoue #include <net/if.h> 8882cd038dSYoshinobu Inoue #include <net/if_types.h> 8982cd038dSYoshinobu Inoue #include <net/route.h> 9082cd038dSYoshinobu Inoue 9182cd038dSYoshinobu Inoue #include <netinet/in.h> 9282cd038dSYoshinobu Inoue #include <netinet/in_var.h> 9382cd038dSYoshinobu Inoue #include <netinet/in_systm.h> 94f76fcf6dSJeffrey Hsu #include <netinet/tcp_var.h> 95686cdd19SJun-ichiro itojun Hagino #include <netinet/ip6.h> 96fb59c426SYoshinobu Inoue #include <netinet/ip_var.h> 97ac957cd2SJulian Elischer 9882cd038dSYoshinobu Inoue #include <netinet6/ip6_var.h> 9982cd038dSYoshinobu Inoue #include <netinet6/nd6.h> 10082cd038dSYoshinobu Inoue #include <netinet/in_pcb.h> 10182cd038dSYoshinobu Inoue #include <netinet6/in6_pcb.h> 102a1f7e5f8SHajimu UMEMOTO #include <netinet6/scope6_var.h> 10382cd038dSYoshinobu Inoue 1048b953b3fSRobert Watson #include <security/mac/mac_framework.h> 1058b953b3fSRobert Watson 10682cd038dSYoshinobu Inoue struct in6_addr zeroin6_addr; 10782cd038dSYoshinobu Inoue 10882cd038dSYoshinobu Inoue int 1091272577eSXin LI in6_pcbbind(register struct inpcb *inp, struct sockaddr *nam, 1101272577eSXin LI struct ucred *cred) 11182cd038dSYoshinobu Inoue { 11282cd038dSYoshinobu Inoue struct socket *so = inp->inp_socket; 11382cd038dSYoshinobu Inoue struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)NULL; 11482cd038dSYoshinobu Inoue struct inpcbinfo *pcbinfo = inp->inp_pcbinfo; 11582cd038dSYoshinobu Inoue u_short lport = 0; 116b89e82ddSJamie Gritton int error, wild = 0, reuseport = (so->so_options & SO_REUSEPORT); 11782cd038dSYoshinobu Inoue 11807385abdSRobert Watson INP_INFO_WLOCK_ASSERT(pcbinfo); 1198501a69cSRobert Watson INP_WLOCK_ASSERT(inp); 12007385abdSRobert Watson 12180af0152SRobert Watson if (TAILQ_EMPTY(&V_in6_ifaddrhead)) /* XXX broken! */ 12282cd038dSYoshinobu Inoue return (EADDRNOTAVAIL); 12382cd038dSYoshinobu Inoue if (inp->inp_lport || !IN6_IS_ADDR_UNSPECIFIED(&inp->in6p_laddr)) 12482cd038dSYoshinobu Inoue return (EINVAL); 12582cd038dSYoshinobu Inoue if ((so->so_options & (SO_REUSEADDR|SO_REUSEPORT)) == 0) 126421d8aa6SBjoern A. Zeeb wild = INPLOOKUP_WILDCARD; 1277c2f3cb9SJamie Gritton if (nam == NULL) { 1287c2f3cb9SJamie Gritton if ((error = prison_local_ip6(cred, &inp->in6p_laddr, 1297c2f3cb9SJamie Gritton ((inp->inp_flags & IN6P_IPV6_V6ONLY) != 0))) != 0) 1307c2f3cb9SJamie Gritton return (error); 1317c2f3cb9SJamie Gritton } else { 13282cd038dSYoshinobu Inoue sin6 = (struct sockaddr_in6 *)nam; 13382cd038dSYoshinobu Inoue if (nam->sa_len != sizeof(*sin6)) 13482cd038dSYoshinobu Inoue return (EINVAL); 13582cd038dSYoshinobu Inoue /* 13682cd038dSYoshinobu Inoue * family check. 13782cd038dSYoshinobu Inoue */ 13882cd038dSYoshinobu Inoue if (nam->sa_family != AF_INET6) 13982cd038dSYoshinobu Inoue return (EAFNOSUPPORT); 14082cd038dSYoshinobu Inoue 141603724d3SBjoern A. Zeeb if ((error = sa6_embedscope(sin6, V_ip6_use_defzone)) != 0) 142a1f7e5f8SHajimu UMEMOTO return(error); 14382cd038dSYoshinobu Inoue 144b89e82ddSJamie Gritton if ((error = prison_local_ip6(cred, &sin6->sin6_addr, 145b89e82ddSJamie Gritton ((inp->inp_flags & IN6P_IPV6_V6ONLY) != 0))) != 0) 146b89e82ddSJamie Gritton return (error); 147413628a7SBjoern A. Zeeb 14882cd038dSYoshinobu Inoue lport = sin6->sin6_port; 14982cd038dSYoshinobu Inoue if (IN6_IS_ADDR_MULTICAST(&sin6->sin6_addr)) { 15082cd038dSYoshinobu Inoue /* 15182cd038dSYoshinobu Inoue * Treat SO_REUSEADDR as SO_REUSEPORT for multicast; 15282cd038dSYoshinobu Inoue * allow compepte duplication of binding if 15382cd038dSYoshinobu Inoue * SO_REUSEPORT is set, or if SO_REUSEADDR is set 15482cd038dSYoshinobu Inoue * and a multicast address is bound on both 15582cd038dSYoshinobu Inoue * new and duplicated sockets. 15682cd038dSYoshinobu Inoue */ 15782cd038dSYoshinobu Inoue if (so->so_options & SO_REUSEADDR) 15882cd038dSYoshinobu Inoue reuseport = SO_REUSEADDR|SO_REUSEPORT; 15982cd038dSYoshinobu Inoue } else if (!IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) { 1608c0fec80SRobert Watson struct ifaddr *ifa; 16182cd038dSYoshinobu Inoue 16282cd038dSYoshinobu Inoue sin6->sin6_port = 0; /* yech... */ 1638c0fec80SRobert Watson if ((ifa = ifa_ifwithaddr((struct sockaddr *)sin6)) == 1648c0fec80SRobert Watson NULL && 165f44270e7SPawel Jakub Dawidek (inp->inp_flags & INP_BINDANY) == 0) { 16682cd038dSYoshinobu Inoue return (EADDRNOTAVAIL); 167f44270e7SPawel Jakub Dawidek } 16882cd038dSYoshinobu Inoue 16982cd038dSYoshinobu Inoue /* 17082cd038dSYoshinobu Inoue * XXX: bind to an anycast address might accidentally 17182cd038dSYoshinobu Inoue * cause sending a packet with anycast source address. 17233841545SHajimu UMEMOTO * We should allow to bind to a deprecated address, since 1737efe5d92SHajimu UMEMOTO * the application dares to use it. 17482cd038dSYoshinobu Inoue */ 1758c0fec80SRobert Watson if (ifa != NULL && 1768c0fec80SRobert Watson ((struct in6_ifaddr *)ifa)->ia6_flags & 17733841545SHajimu UMEMOTO (IN6_IFF_ANYCAST|IN6_IFF_NOTREADY|IN6_IFF_DETACHED)) { 1788c0fec80SRobert Watson ifa_free(ifa); 17982cd038dSYoshinobu Inoue return (EADDRNOTAVAIL); 18082cd038dSYoshinobu Inoue } 1818c0fec80SRobert Watson if (ifa != NULL) 1828c0fec80SRobert Watson ifa_free(ifa); 18382cd038dSYoshinobu Inoue } 18482cd038dSYoshinobu Inoue if (lport) { 18582cd038dSYoshinobu Inoue struct inpcb *t; 18682cd038dSYoshinobu Inoue 18782cd038dSYoshinobu Inoue /* GROSS */ 188603724d3SBjoern A. Zeeb if (ntohs(lport) <= V_ipport_reservedhigh && 189603724d3SBjoern A. Zeeb ntohs(lport) >= V_ipport_reservedlow && 190acd3428bSRobert Watson priv_check_cred(cred, PRIV_NETINET_RESERVEDPORT, 19132f9753cSRobert Watson 0)) 19282cd038dSYoshinobu Inoue return (EACCES); 193835d4b89SPawel Jakub Dawidek if (!IN6_IS_ADDR_MULTICAST(&sin6->sin6_addr) && 19486d02c5cSBjoern A. Zeeb priv_check_cred(inp->inp_cred, 19532f9753cSRobert Watson PRIV_NETINET_REUSEPORT, 0) != 0) { 196fb59c426SYoshinobu Inoue t = in6_pcblookup_local(pcbinfo, 19782cd038dSYoshinobu Inoue &sin6->sin6_addr, lport, 198078b7042SBjoern A. Zeeb INPLOOKUP_WILDCARD, cred); 199f66145c6SYaroslav Tykhiy if (t && 200ad71fe3cSRobert Watson ((t->inp_flags & INP_TIMEWAIT) == 0) && 201f66145c6SYaroslav Tykhiy (so->so_type != SOCK_STREAM || 202f66145c6SYaroslav Tykhiy IN6_IS_ADDR_UNSPECIFIED(&t->in6p_faddr)) && 2034cc20ab1SSeigo Tanimura (!IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr) || 20482cd038dSYoshinobu Inoue !IN6_IS_ADDR_UNSPECIFIED(&t->in6p_laddr) || 20556e6821eSOlivier Houchard (t->inp_socket->so_options & SO_REUSEPORT) 20686d02c5cSBjoern A. Zeeb == 0) && (inp->inp_cred->cr_uid != 20786d02c5cSBjoern A. Zeeb t->inp_cred->cr_uid)) 20882cd038dSYoshinobu Inoue return (EADDRINUSE); 20933841545SHajimu UMEMOTO if ((inp->inp_flags & IN6P_IPV6_V6ONLY) == 0 && 210fb59c426SYoshinobu Inoue IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) { 211fb59c426SYoshinobu Inoue struct sockaddr_in sin; 212fb59c426SYoshinobu Inoue 213fb59c426SYoshinobu Inoue in6_sin6_2_sin(&sin, sin6); 214fb59c426SYoshinobu Inoue t = in_pcblookup_local(pcbinfo, 215fb59c426SYoshinobu Inoue sin.sin_addr, lport, 216078b7042SBjoern A. Zeeb INPLOOKUP_WILDCARD, cred); 217f66145c6SYaroslav Tykhiy if (t && 218ad71fe3cSRobert Watson ((t->inp_flags & 219f66145c6SYaroslav Tykhiy INP_TIMEWAIT) == 0) && 220f66145c6SYaroslav Tykhiy (so->so_type != SOCK_STREAM || 221f66145c6SYaroslav Tykhiy ntohl(t->inp_faddr.s_addr) == 222f66145c6SYaroslav Tykhiy INADDR_ANY) && 22386d02c5cSBjoern A. Zeeb (inp->inp_cred->cr_uid != 22486d02c5cSBjoern A. Zeeb t->inp_cred->cr_uid)) 225fb59c426SYoshinobu Inoue return (EADDRINUSE); 226fb59c426SYoshinobu Inoue } 22782cd038dSYoshinobu Inoue } 22882cd038dSYoshinobu Inoue t = in6_pcblookup_local(pcbinfo, &sin6->sin6_addr, 229078b7042SBjoern A. Zeeb lport, wild, cred); 230ad71fe3cSRobert Watson if (t && (reuseport & ((t->inp_flags & INP_TIMEWAIT) ? 23156e6821eSOlivier Houchard intotw(t)->tw_so_options : 23256e6821eSOlivier Houchard t->inp_socket->so_options)) == 0) 23382cd038dSYoshinobu Inoue return (EADDRINUSE); 23433841545SHajimu UMEMOTO if ((inp->inp_flags & IN6P_IPV6_V6ONLY) == 0 && 235fb59c426SYoshinobu Inoue IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) { 236fb59c426SYoshinobu Inoue struct sockaddr_in sin; 237fb59c426SYoshinobu Inoue 238fb59c426SYoshinobu Inoue in6_sin6_2_sin(&sin, sin6); 239fb59c426SYoshinobu Inoue t = in_pcblookup_local(pcbinfo, sin.sin_addr, 240078b7042SBjoern A. Zeeb lport, wild, cred); 241ad71fe3cSRobert Watson if (t && t->inp_flags & INP_TIMEWAIT) { 24256e6821eSOlivier Houchard if ((reuseport & 24356e6821eSOlivier Houchard intotw(t)->tw_so_options) == 0 && 24456e6821eSOlivier Houchard (ntohl(t->inp_laddr.s_addr) != 24556e6821eSOlivier Houchard INADDR_ANY || ((inp->inp_vflag & 24656e6821eSOlivier Houchard INP_IPV6PROTO) == 24756e6821eSOlivier Houchard (t->inp_vflag & INP_IPV6PROTO)))) 24856e6821eSOlivier Houchard return (EADDRINUSE); 24956e6821eSOlivier Houchard } 25056e6821eSOlivier Houchard else if (t && 2514cc20ab1SSeigo Tanimura (reuseport & t->inp_socket->so_options) 25256e6821eSOlivier Houchard == 0 && (ntohl(t->inp_laddr.s_addr) != 25356e6821eSOlivier Houchard INADDR_ANY || INP_SOCKAF(so) == 2544cc20ab1SSeigo Tanimura INP_SOCKAF(t->inp_socket))) 255fb59c426SYoshinobu Inoue return (EADDRINUSE); 256fb59c426SYoshinobu Inoue } 25782cd038dSYoshinobu Inoue } 25882cd038dSYoshinobu Inoue inp->in6p_laddr = sin6->sin6_addr; 25982cd038dSYoshinobu Inoue } 26082cd038dSYoshinobu Inoue if (lport == 0) { 261b89e82ddSJamie Gritton if ((error = in6_pcbsetport(&inp->in6p_laddr, inp, cred)) != 0) 262b89e82ddSJamie Gritton return (error); 26355fd3bafSBjoern A. Zeeb } else { 26482cd038dSYoshinobu Inoue inp->inp_lport = lport; 26582cd038dSYoshinobu Inoue if (in_pcbinshash(inp) != 0) { 26682cd038dSYoshinobu Inoue inp->in6p_laddr = in6addr_any; 26782cd038dSYoshinobu Inoue inp->inp_lport = 0; 26882cd038dSYoshinobu Inoue return (EAGAIN); 26982cd038dSYoshinobu Inoue } 270686cdd19SJun-ichiro itojun Hagino } 27182cd038dSYoshinobu Inoue return (0); 27282cd038dSYoshinobu Inoue } 27382cd038dSYoshinobu Inoue 27482cd038dSYoshinobu Inoue /* 27582cd038dSYoshinobu Inoue * Transform old in6_pcbconnect() into an inner subroutine for new 27682cd038dSYoshinobu Inoue * in6_pcbconnect(): Do some validity-checking on the remote 27782cd038dSYoshinobu Inoue * address (in mbuf 'nam') and then determine local host address 27882cd038dSYoshinobu Inoue * (i.e., which interface) to use to access that remote host. 27982cd038dSYoshinobu Inoue * 28082cd038dSYoshinobu Inoue * This preserves definition of in6_pcbconnect(), while supporting a 28182cd038dSYoshinobu Inoue * slightly different version for T/TCP. (This is more than 28282cd038dSYoshinobu Inoue * a bit of a kludge, but cleaning up the internal interfaces would 28382cd038dSYoshinobu Inoue * have forced minor changes in every protocol). 28482cd038dSYoshinobu Inoue */ 28582cd038dSYoshinobu Inoue int 2861272577eSXin LI in6_pcbladdr(register struct inpcb *inp, struct sockaddr *nam, 28788d166bfSBjoern A. Zeeb struct in6_addr *plocal_addr6) 28882cd038dSYoshinobu Inoue { 28982cd038dSYoshinobu Inoue register struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)nam; 29082cd038dSYoshinobu Inoue int error = 0; 291a1f7e5f8SHajimu UMEMOTO struct ifnet *ifp = NULL; 292a1f7e5f8SHajimu UMEMOTO int scope_ambiguous = 0; 29388d166bfSBjoern A. Zeeb struct in6_addr in6a; 29482cd038dSYoshinobu Inoue 2958deea4a8SRobert Watson INP_INFO_WLOCK_ASSERT(inp->inp_pcbinfo); 2968501a69cSRobert Watson INP_WLOCK_ASSERT(inp); 2978deea4a8SRobert Watson 29882cd038dSYoshinobu Inoue if (nam->sa_len != sizeof (*sin6)) 29982cd038dSYoshinobu Inoue return (EINVAL); 30082cd038dSYoshinobu Inoue if (sin6->sin6_family != AF_INET6) 30182cd038dSYoshinobu Inoue return (EAFNOSUPPORT); 30282cd038dSYoshinobu Inoue if (sin6->sin6_port == 0) 30382cd038dSYoshinobu Inoue return (EADDRNOTAVAIL); 30482cd038dSYoshinobu Inoue 305603724d3SBjoern A. Zeeb if (sin6->sin6_scope_id == 0 && !V_ip6_use_defzone) 306a1f7e5f8SHajimu UMEMOTO scope_ambiguous = 1; 307603724d3SBjoern A. Zeeb if ((error = sa6_embedscope(sin6, V_ip6_use_defzone)) != 0) 308a1f7e5f8SHajimu UMEMOTO return(error); 309a1f7e5f8SHajimu UMEMOTO 31080af0152SRobert Watson if (!TAILQ_EMPTY(&V_in6_ifaddrhead)) { 31182cd038dSYoshinobu Inoue /* 31282cd038dSYoshinobu Inoue * If the destination address is UNSPECIFIED addr, 31382cd038dSYoshinobu Inoue * use the loopback addr, e.g ::1. 31482cd038dSYoshinobu Inoue */ 31582cd038dSYoshinobu Inoue if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) 31682cd038dSYoshinobu Inoue sin6->sin6_addr = in6addr_loopback; 31782cd038dSYoshinobu Inoue } 318b89e82ddSJamie Gritton if ((error = prison_remote_ip6(inp->inp_cred, &sin6->sin6_addr)) != 0) 319b89e82ddSJamie Gritton return (error); 320a1f7e5f8SHajimu UMEMOTO 32188d166bfSBjoern A. Zeeb error = in6_selectsrc(sin6, inp->in6p_outputopts, 32288d166bfSBjoern A. Zeeb inp, NULL, inp->inp_cred, &ifp, &in6a); 32388d166bfSBjoern A. Zeeb if (error) 32488d166bfSBjoern A. Zeeb return (error); 32588d166bfSBjoern A. Zeeb 326a1f7e5f8SHajimu UMEMOTO if (ifp && scope_ambiguous && 327a1f7e5f8SHajimu UMEMOTO (error = in6_setscope(&sin6->sin6_addr, ifp, NULL)) != 0) { 328a1f7e5f8SHajimu UMEMOTO return(error); 329a1f7e5f8SHajimu UMEMOTO } 330a1f7e5f8SHajimu UMEMOTO 33188d166bfSBjoern A. Zeeb /* 33288d166bfSBjoern A. Zeeb * Do not update this earlier, in case we return with an error. 33388d166bfSBjoern A. Zeeb * 33488d166bfSBjoern A. Zeeb * XXX: this in6_selectsrc result might replace the bound local 335681ffdf9SBjoern A. Zeeb * address with the address specified by setsockopt(IPV6_PKTINFO). 33688d166bfSBjoern A. Zeeb * Is it the intended behavior? 33788d166bfSBjoern A. Zeeb */ 33888d166bfSBjoern A. Zeeb *plocal_addr6 = in6a; 33988d166bfSBjoern A. Zeeb 34082cd038dSYoshinobu Inoue /* 34182cd038dSYoshinobu Inoue * Don't do pcblookup call here; return interface in 34282cd038dSYoshinobu Inoue * plocal_addr6 34382cd038dSYoshinobu Inoue * and exit to caller, that will do the lookup. 34482cd038dSYoshinobu Inoue */ 345a1f7e5f8SHajimu UMEMOTO 34682cd038dSYoshinobu Inoue return (0); 34782cd038dSYoshinobu Inoue } 34882cd038dSYoshinobu Inoue 34982cd038dSYoshinobu Inoue /* 35082cd038dSYoshinobu Inoue * Outer subroutine: 35182cd038dSYoshinobu Inoue * Connect from a socket to a specified address. 35282cd038dSYoshinobu Inoue * Both address and port must be specified in argument sin. 35382cd038dSYoshinobu Inoue * If don't have a local address for this socket yet, 35482cd038dSYoshinobu Inoue * then pick one. 35582cd038dSYoshinobu Inoue */ 35682cd038dSYoshinobu Inoue int 3571272577eSXin LI in6_pcbconnect(register struct inpcb *inp, struct sockaddr *nam, 3581272577eSXin LI struct ucred *cred) 35982cd038dSYoshinobu Inoue { 36082cd038dSYoshinobu Inoue register struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)nam; 36188d166bfSBjoern A. Zeeb struct in6_addr addr6; 36282cd038dSYoshinobu Inoue int error; 36382cd038dSYoshinobu Inoue 36407385abdSRobert Watson INP_INFO_WLOCK_ASSERT(inp->inp_pcbinfo); 3658501a69cSRobert Watson INP_WLOCK_ASSERT(inp); 36607385abdSRobert Watson 36782cd038dSYoshinobu Inoue /* 36882cd038dSYoshinobu Inoue * Call inner routine, to assign local interface address. 36988ff5695SSUZUKI Shinsuke * in6_pcbladdr() may automatically fill in sin6_scope_id. 37082cd038dSYoshinobu Inoue */ 37182cd038dSYoshinobu Inoue if ((error = in6_pcbladdr(inp, nam, &addr6)) != 0) 37282cd038dSYoshinobu Inoue return (error); 37382cd038dSYoshinobu Inoue 37482cd038dSYoshinobu Inoue if (in6_pcblookup_hash(inp->inp_pcbinfo, &sin6->sin6_addr, 37582cd038dSYoshinobu Inoue sin6->sin6_port, 37682cd038dSYoshinobu Inoue IN6_IS_ADDR_UNSPECIFIED(&inp->in6p_laddr) 37788d166bfSBjoern A. Zeeb ? &addr6 : &inp->in6p_laddr, 37882cd038dSYoshinobu Inoue inp->inp_lport, 0, NULL) != NULL) { 37982cd038dSYoshinobu Inoue return (EADDRINUSE); 38082cd038dSYoshinobu Inoue } 38182cd038dSYoshinobu Inoue if (IN6_IS_ADDR_UNSPECIFIED(&inp->in6p_laddr)) { 38282cd038dSYoshinobu Inoue if (inp->inp_lport == 0) { 383b0330ed9SPawel Jakub Dawidek error = in6_pcbbind(inp, (struct sockaddr *)0, cred); 38482cd038dSYoshinobu Inoue if (error) 38582cd038dSYoshinobu Inoue return (error); 38682cd038dSYoshinobu Inoue } 38788d166bfSBjoern A. Zeeb inp->in6p_laddr = addr6; 38882cd038dSYoshinobu Inoue } 38982cd038dSYoshinobu Inoue inp->in6p_faddr = sin6->sin6_addr; 39082cd038dSYoshinobu Inoue inp->inp_fport = sin6->sin6_port; 39133841545SHajimu UMEMOTO /* update flowinfo - draft-itojun-ipv6-flowlabel-api-00 */ 392fc384fa5SBjoern A. Zeeb inp->inp_flow &= ~IPV6_FLOWLABEL_MASK; 393fc384fa5SBjoern A. Zeeb if (inp->inp_flags & IN6P_AUTOFLOWLABEL) 394fc384fa5SBjoern A. Zeeb inp->inp_flow |= 395b79274baSHajimu UMEMOTO (htonl(ip6_randomflowlabel()) & IPV6_FLOWLABEL_MASK); 39682cd038dSYoshinobu Inoue 39782cd038dSYoshinobu Inoue in_pcbrehash(inp); 3982cb64cb2SGeorge V. Neville-Neil 39982cd038dSYoshinobu Inoue return (0); 40082cd038dSYoshinobu Inoue } 40182cd038dSYoshinobu Inoue 40282cd038dSYoshinobu Inoue void 4031272577eSXin LI in6_pcbdisconnect(struct inpcb *inp) 40482cd038dSYoshinobu Inoue { 40507385abdSRobert Watson 40607385abdSRobert Watson INP_INFO_WLOCK_ASSERT(inp->inp_pcbinfo); 4078501a69cSRobert Watson INP_WLOCK_ASSERT(inp); 40807385abdSRobert Watson 40982cd038dSYoshinobu Inoue bzero((caddr_t)&inp->in6p_faddr, sizeof(inp->in6p_faddr)); 41082cd038dSYoshinobu Inoue inp->inp_fport = 0; 41133841545SHajimu UMEMOTO /* clear flowinfo - draft-itojun-ipv6-flowlabel-api-00 */ 412fc384fa5SBjoern A. Zeeb inp->inp_flow &= ~IPV6_FLOWLABEL_MASK; 41382cd038dSYoshinobu Inoue in_pcbrehash(inp); 41482cd038dSYoshinobu Inoue } 41582cd038dSYoshinobu Inoue 41626ef6ac4SDon Lewis struct sockaddr * 4171272577eSXin LI in6_sockaddr(in_port_t port, struct in6_addr *addr_p) 41826ef6ac4SDon Lewis { 41926ef6ac4SDon Lewis struct sockaddr_in6 *sin6; 42026ef6ac4SDon Lewis 4211ede983cSDag-Erling Smørgrav sin6 = malloc(sizeof *sin6, M_SONAME, M_WAITOK); 42226ef6ac4SDon Lewis bzero(sin6, sizeof *sin6); 42326ef6ac4SDon Lewis sin6->sin6_family = AF_INET6; 42426ef6ac4SDon Lewis sin6->sin6_len = sizeof(*sin6); 42526ef6ac4SDon Lewis sin6->sin6_port = port; 42626ef6ac4SDon Lewis sin6->sin6_addr = *addr_p; 427a1f7e5f8SHajimu UMEMOTO (void)sa6_recoverscope(sin6); /* XXX: should catch errors */ 42826ef6ac4SDon Lewis 42926ef6ac4SDon Lewis return (struct sockaddr *)sin6; 43026ef6ac4SDon Lewis } 43126ef6ac4SDon Lewis 43226ef6ac4SDon Lewis struct sockaddr * 4331272577eSXin LI in6_v4mapsin6_sockaddr(in_port_t port, struct in_addr *addr_p) 43426ef6ac4SDon Lewis { 43526ef6ac4SDon Lewis struct sockaddr_in sin; 43626ef6ac4SDon Lewis struct sockaddr_in6 *sin6_p; 43726ef6ac4SDon Lewis 43826ef6ac4SDon Lewis bzero(&sin, sizeof sin); 43926ef6ac4SDon Lewis sin.sin_family = AF_INET; 44026ef6ac4SDon Lewis sin.sin_len = sizeof(sin); 44126ef6ac4SDon Lewis sin.sin_port = port; 44226ef6ac4SDon Lewis sin.sin_addr = *addr_p; 44326ef6ac4SDon Lewis 4441ede983cSDag-Erling Smørgrav sin6_p = malloc(sizeof *sin6_p, M_SONAME, 445a163d034SWarner Losh M_WAITOK); 44626ef6ac4SDon Lewis in6_sin_2_v4mapsin6(&sin, sin6_p); 44726ef6ac4SDon Lewis 44826ef6ac4SDon Lewis return (struct sockaddr *)sin6_p; 44926ef6ac4SDon Lewis } 45026ef6ac4SDon Lewis 45182cd038dSYoshinobu Inoue int 4521272577eSXin LI in6_getsockaddr(struct socket *so, struct sockaddr **nam) 45382cd038dSYoshinobu Inoue { 45482cd038dSYoshinobu Inoue register struct inpcb *inp; 45526ef6ac4SDon Lewis struct in6_addr addr; 45626ef6ac4SDon Lewis in_port_t port; 45782cd038dSYoshinobu Inoue 45882cd038dSYoshinobu Inoue inp = sotoinpcb(so); 45954d642bbSRobert Watson KASSERT(inp != NULL, ("in6_getsockaddr: inp == NULL")); 46048477723SRobert Watson 4618328afb7SRobert Watson INP_RLOCK(inp); 46226ef6ac4SDon Lewis port = inp->inp_lport; 46326ef6ac4SDon Lewis addr = inp->in6p_laddr; 4648328afb7SRobert Watson INP_RUNLOCK(inp); 46582cd038dSYoshinobu Inoue 46626ef6ac4SDon Lewis *nam = in6_sockaddr(port, &addr); 46782cd038dSYoshinobu Inoue return 0; 46882cd038dSYoshinobu Inoue } 46982cd038dSYoshinobu Inoue 47082cd038dSYoshinobu Inoue int 4711272577eSXin LI in6_getpeeraddr(struct socket *so, struct sockaddr **nam) 47282cd038dSYoshinobu Inoue { 47382cd038dSYoshinobu Inoue struct inpcb *inp; 47426ef6ac4SDon Lewis struct in6_addr addr; 47526ef6ac4SDon Lewis in_port_t port; 47682cd038dSYoshinobu Inoue 47782cd038dSYoshinobu Inoue inp = sotoinpcb(so); 47854d642bbSRobert Watson KASSERT(inp != NULL, ("in6_getpeeraddr: inp == NULL")); 47948477723SRobert Watson 4808328afb7SRobert Watson INP_RLOCK(inp); 48126ef6ac4SDon Lewis port = inp->inp_fport; 48226ef6ac4SDon Lewis addr = inp->in6p_faddr; 4838328afb7SRobert Watson INP_RUNLOCK(inp); 48482cd038dSYoshinobu Inoue 48526ef6ac4SDon Lewis *nam = in6_sockaddr(port, &addr); 48682cd038dSYoshinobu Inoue return 0; 48782cd038dSYoshinobu Inoue } 48882cd038dSYoshinobu Inoue 48982cd038dSYoshinobu Inoue int 49082cd038dSYoshinobu Inoue in6_mapped_sockaddr(struct socket *so, struct sockaddr **nam) 49182cd038dSYoshinobu Inoue { 49248477723SRobert Watson struct inpcb *inp; 49382cd038dSYoshinobu Inoue int error; 49482cd038dSYoshinobu Inoue 49548477723SRobert Watson inp = sotoinpcb(so); 49648477723SRobert Watson KASSERT(inp != NULL, ("in6_mapped_sockaddr: inp == NULL")); 49748477723SRobert Watson 4985fac4178SHajimu UMEMOTO if ((inp->inp_vflag & (INP_IPV4 | INP_IPV6)) == INP_IPV4) { 49954d642bbSRobert Watson error = in_getsockaddr(so, nam); 500369dc8ceSEivind Eklund if (error == 0) 50182cd038dSYoshinobu Inoue in6_sin_2_v4mapsin6_in_sock(nam); 5027efe5d92SHajimu UMEMOTO } else { 50354d642bbSRobert Watson /* scope issues will be handled in in6_getsockaddr(). */ 50454d642bbSRobert Watson error = in6_getsockaddr(so, nam); 5057efe5d92SHajimu UMEMOTO } 50682cd038dSYoshinobu Inoue 50782cd038dSYoshinobu Inoue return error; 50882cd038dSYoshinobu Inoue } 50982cd038dSYoshinobu Inoue 51082cd038dSYoshinobu Inoue int 51182cd038dSYoshinobu Inoue in6_mapped_peeraddr(struct socket *so, struct sockaddr **nam) 51282cd038dSYoshinobu Inoue { 51348477723SRobert Watson struct inpcb *inp; 51482cd038dSYoshinobu Inoue int error; 51582cd038dSYoshinobu Inoue 51648477723SRobert Watson inp = sotoinpcb(so); 51748477723SRobert Watson KASSERT(inp != NULL, ("in6_mapped_peeraddr: inp == NULL")); 51848477723SRobert Watson 5195fac4178SHajimu UMEMOTO if ((inp->inp_vflag & (INP_IPV4 | INP_IPV6)) == INP_IPV4) { 52054d642bbSRobert Watson error = in_getpeeraddr(so, nam); 521369dc8ceSEivind Eklund if (error == 0) 52282cd038dSYoshinobu Inoue in6_sin_2_v4mapsin6_in_sock(nam); 52382cd038dSYoshinobu Inoue } else 52454d642bbSRobert Watson /* scope issues will be handled in in6_getpeeraddr(). */ 52554d642bbSRobert Watson error = in6_getpeeraddr(so, nam); 52682cd038dSYoshinobu Inoue 52782cd038dSYoshinobu Inoue return error; 52882cd038dSYoshinobu Inoue } 52982cd038dSYoshinobu Inoue 53082cd038dSYoshinobu Inoue /* 53182cd038dSYoshinobu Inoue * Pass some notification to all connections of a protocol 53282cd038dSYoshinobu Inoue * associated with address dst. The local address and/or port numbers 53382cd038dSYoshinobu Inoue * may be specified to limit the search. The "usual action" will be 53482cd038dSYoshinobu Inoue * taken, depending on the ctlinput cmd. The caller must filter any 53582cd038dSYoshinobu Inoue * cmds that are uninteresting (e.g., no error in the map). 53682cd038dSYoshinobu Inoue * Call the protocol specific routine (if any) to report 53782cd038dSYoshinobu Inoue * any errors for each matching socket. 53882cd038dSYoshinobu Inoue */ 53982cd038dSYoshinobu Inoue void 5401272577eSXin LI in6_pcbnotify(struct inpcbinfo *pcbinfo, struct sockaddr *dst, 5411272577eSXin LI u_int fport_arg, const struct sockaddr *src, u_int lport_arg, 5421272577eSXin LI int cmd, void *cmdarg, 5439233d8f3SDavid E. O'Brien struct inpcb *(*notify)(struct inpcb *, int)) 54482cd038dSYoshinobu Inoue { 545f457d580SRobert Watson struct inpcb *inp, *inp_temp; 54633841545SHajimu UMEMOTO struct sockaddr_in6 sa6_src, *sa6_dst; 54782cd038dSYoshinobu Inoue u_short fport = fport_arg, lport = lport_arg; 54833841545SHajimu UMEMOTO u_int32_t flowinfo; 54948477723SRobert Watson int errno; 55082cd038dSYoshinobu Inoue 55178f94aa9SRuslan Ermilov if ((unsigned)cmd >= PRC_NCMDS || dst->sa_family != AF_INET6) 55282cd038dSYoshinobu Inoue return; 55333841545SHajimu UMEMOTO 55433841545SHajimu UMEMOTO sa6_dst = (struct sockaddr_in6 *)dst; 55533841545SHajimu UMEMOTO if (IN6_IS_ADDR_UNSPECIFIED(&sa6_dst->sin6_addr)) 55682cd038dSYoshinobu Inoue return; 55782cd038dSYoshinobu Inoue 55882cd038dSYoshinobu Inoue /* 55933841545SHajimu UMEMOTO * note that src can be NULL when we get notify by local fragmentation. 56033841545SHajimu UMEMOTO */ 561c4c0c592SAlfred Perlstein sa6_src = (src == NULL) ? sa6_any : *(const struct sockaddr_in6 *)src; 56233841545SHajimu UMEMOTO flowinfo = sa6_src.sin6_flowinfo; 56333841545SHajimu UMEMOTO 56433841545SHajimu UMEMOTO /* 56582cd038dSYoshinobu Inoue * Redirects go to all references to the destination, 566686cdd19SJun-ichiro itojun Hagino * and use in6_rtchange to invalidate the route cache. 567686cdd19SJun-ichiro itojun Hagino * Dead host indications: also use in6_rtchange to invalidate 568686cdd19SJun-ichiro itojun Hagino * the cache, and deliver the error to all the sockets. 56982cd038dSYoshinobu Inoue * Otherwise, if we have knowledge of the local port and address, 57082cd038dSYoshinobu Inoue * deliver only to that socket. 57182cd038dSYoshinobu Inoue */ 57282cd038dSYoshinobu Inoue if (PRC_IS_REDIRECT(cmd) || cmd == PRC_HOSTDEAD) { 57382cd038dSYoshinobu Inoue fport = 0; 57482cd038dSYoshinobu Inoue lport = 0; 57533841545SHajimu UMEMOTO bzero((caddr_t)&sa6_src.sin6_addr, sizeof(sa6_src.sin6_addr)); 576686cdd19SJun-ichiro itojun Hagino 57733841545SHajimu UMEMOTO if (cmd != PRC_HOSTDEAD) 57833841545SHajimu UMEMOTO notify = in6_rtchange; 57982cd038dSYoshinobu Inoue } 58082cd038dSYoshinobu Inoue errno = inet6ctlerrmap[cmd]; 581f31f65a7SRobert Watson INP_INFO_WLOCK(pcbinfo); 582f457d580SRobert Watson LIST_FOREACH_SAFE(inp, pcbinfo->ipi_listhead, inp_list, inp_temp) { 5838501a69cSRobert Watson INP_WLOCK(inp); 584f31f65a7SRobert Watson if ((inp->inp_vflag & INP_IPV6) == 0) { 5858501a69cSRobert Watson INP_WUNLOCK(inp); 58682cd038dSYoshinobu Inoue continue; 587f31f65a7SRobert Watson } 588686cdd19SJun-ichiro itojun Hagino 589686cdd19SJun-ichiro itojun Hagino /* 590efddf5c6SHajimu UMEMOTO * If the error designates a new path MTU for a destination 591efddf5c6SHajimu UMEMOTO * and the application (associated with this socket) wanted to 592efddf5c6SHajimu UMEMOTO * know the value, notify. Note that we notify for all 593efddf5c6SHajimu UMEMOTO * disconnected sockets if the corresponding application 594efddf5c6SHajimu UMEMOTO * wanted. This is because some UDP applications keep sending 595efddf5c6SHajimu UMEMOTO * sockets disconnected. 596efddf5c6SHajimu UMEMOTO * XXX: should we avoid to notify the value to TCP sockets? 597efddf5c6SHajimu UMEMOTO */ 598efddf5c6SHajimu UMEMOTO if (cmd == PRC_MSGSIZE && (inp->inp_flags & IN6P_MTU) != 0 && 599efddf5c6SHajimu UMEMOTO (IN6_IS_ADDR_UNSPECIFIED(&inp->in6p_faddr) || 600efddf5c6SHajimu UMEMOTO IN6_ARE_ADDR_EQUAL(&inp->in6p_faddr, &sa6_dst->sin6_addr))) { 601efddf5c6SHajimu UMEMOTO ip6_notify_pmtu(inp, (struct sockaddr_in6 *)dst, 602efddf5c6SHajimu UMEMOTO (u_int32_t *)cmdarg); 603efddf5c6SHajimu UMEMOTO } 604efddf5c6SHajimu UMEMOTO 605efddf5c6SHajimu UMEMOTO /* 60633841545SHajimu UMEMOTO * Detect if we should notify the error. If no source and 60733841545SHajimu UMEMOTO * destination ports are specifed, but non-zero flowinfo and 60833841545SHajimu UMEMOTO * local address match, notify the error. This is the case 60933841545SHajimu UMEMOTO * when the error is delivered with an encrypted buffer 61033841545SHajimu UMEMOTO * by ESP. Otherwise, just compare addresses and ports 61133841545SHajimu UMEMOTO * as usual. 612686cdd19SJun-ichiro itojun Hagino */ 61333841545SHajimu UMEMOTO if (lport == 0 && fport == 0 && flowinfo && 61433841545SHajimu UMEMOTO inp->inp_socket != NULL && 615fc384fa5SBjoern A. Zeeb flowinfo == (inp->inp_flow & IPV6_FLOWLABEL_MASK) && 61633841545SHajimu UMEMOTO IN6_ARE_ADDR_EQUAL(&inp->in6p_laddr, &sa6_src.sin6_addr)) 61733841545SHajimu UMEMOTO goto do_notify; 61833841545SHajimu UMEMOTO else if (!IN6_ARE_ADDR_EQUAL(&inp->in6p_faddr, 61933841545SHajimu UMEMOTO &sa6_dst->sin6_addr) || 62082cd038dSYoshinobu Inoue inp->inp_socket == 0 || 62182cd038dSYoshinobu Inoue (lport && inp->inp_lport != lport) || 62233841545SHajimu UMEMOTO (!IN6_IS_ADDR_UNSPECIFIED(&sa6_src.sin6_addr) && 62333841545SHajimu UMEMOTO !IN6_ARE_ADDR_EQUAL(&inp->in6p_laddr, 62433841545SHajimu UMEMOTO &sa6_src.sin6_addr)) || 625f31f65a7SRobert Watson (fport && inp->inp_fport != fport)) { 6268501a69cSRobert Watson INP_WUNLOCK(inp); 62782cd038dSYoshinobu Inoue continue; 628f31f65a7SRobert Watson } 629686cdd19SJun-ichiro itojun Hagino 63033841545SHajimu UMEMOTO do_notify: 6315a019265SRobert Watson if (notify) { 6325a019265SRobert Watson if ((*notify)(inp, errno)) 6338501a69cSRobert Watson INP_WUNLOCK(inp); 6345a019265SRobert Watson } else 6358501a69cSRobert Watson INP_WUNLOCK(inp); 63682cd038dSYoshinobu Inoue } 637f31f65a7SRobert Watson INP_INFO_WUNLOCK(pcbinfo); 63882cd038dSYoshinobu Inoue } 63982cd038dSYoshinobu Inoue 64082cd038dSYoshinobu Inoue /* 64182cd038dSYoshinobu Inoue * Lookup a PCB based on the local address and port. 64282cd038dSYoshinobu Inoue */ 64382cd038dSYoshinobu Inoue struct inpcb * 6441272577eSXin LI in6_pcblookup_local(struct inpcbinfo *pcbinfo, struct in6_addr *laddr, 645078b7042SBjoern A. Zeeb u_short lport, int wild_okay, struct ucred *cred) 64682cd038dSYoshinobu Inoue { 64782cd038dSYoshinobu Inoue register struct inpcb *inp; 64882cd038dSYoshinobu Inoue int matchwild = 3, wildcard; 64982cd038dSYoshinobu Inoue 6508deea4a8SRobert Watson INP_INFO_WLOCK_ASSERT(pcbinfo); 6518deea4a8SRobert Watson 65282cd038dSYoshinobu Inoue if (!wild_okay) { 65382cd038dSYoshinobu Inoue struct inpcbhead *head; 65482cd038dSYoshinobu Inoue /* 65582cd038dSYoshinobu Inoue * Look for an unconnected (wildcard foreign addr) PCB that 65682cd038dSYoshinobu Inoue * matches the local address and port we're looking for. 65782cd038dSYoshinobu Inoue */ 658712fc218SRobert Watson head = &pcbinfo->ipi_hashbase[INP_PCBHASH(INADDR_ANY, lport, 659712fc218SRobert Watson 0, pcbinfo->ipi_hashmask)]; 66082cd038dSYoshinobu Inoue LIST_FOREACH(inp, head, inp_hash) { 661413628a7SBjoern A. Zeeb /* XXX inp locking */ 662369dc8ceSEivind Eklund if ((inp->inp_vflag & INP_IPV6) == 0) 66382cd038dSYoshinobu Inoue continue; 66482cd038dSYoshinobu Inoue if (IN6_IS_ADDR_UNSPECIFIED(&inp->in6p_faddr) && 66582cd038dSYoshinobu Inoue IN6_ARE_ADDR_EQUAL(&inp->in6p_laddr, laddr) && 66682cd038dSYoshinobu Inoue inp->inp_lport == lport) { 667413628a7SBjoern A. Zeeb /* Found. */ 668413628a7SBjoern A. Zeeb if (cred == NULL || 6690304c731SJamie Gritton prison_equal_ip6(cred->cr_prison, 6700304c731SJamie Gritton inp->inp_cred->cr_prison)) 67182cd038dSYoshinobu Inoue return (inp); 67282cd038dSYoshinobu Inoue } 67382cd038dSYoshinobu Inoue } 67482cd038dSYoshinobu Inoue /* 67582cd038dSYoshinobu Inoue * Not found. 67682cd038dSYoshinobu Inoue */ 67782cd038dSYoshinobu Inoue return (NULL); 67882cd038dSYoshinobu Inoue } else { 67982cd038dSYoshinobu Inoue struct inpcbporthead *porthash; 68082cd038dSYoshinobu Inoue struct inpcbport *phd; 68182cd038dSYoshinobu Inoue struct inpcb *match = NULL; 68282cd038dSYoshinobu Inoue /* 68382cd038dSYoshinobu Inoue * Best fit PCB lookup. 68482cd038dSYoshinobu Inoue * 68582cd038dSYoshinobu Inoue * First see if this local port is in use by looking on the 68682cd038dSYoshinobu Inoue * port hash list. 68782cd038dSYoshinobu Inoue */ 688712fc218SRobert Watson porthash = &pcbinfo->ipi_porthashbase[INP_PCBPORTHASH(lport, 689712fc218SRobert Watson pcbinfo->ipi_porthashmask)]; 69082cd038dSYoshinobu Inoue LIST_FOREACH(phd, porthash, phd_hash) { 69182cd038dSYoshinobu Inoue if (phd->phd_port == lport) 69282cd038dSYoshinobu Inoue break; 69382cd038dSYoshinobu Inoue } 69482cd038dSYoshinobu Inoue if (phd != NULL) { 69582cd038dSYoshinobu Inoue /* 69682cd038dSYoshinobu Inoue * Port is in use by one or more PCBs. Look for best 69782cd038dSYoshinobu Inoue * fit. 69882cd038dSYoshinobu Inoue */ 69982cd038dSYoshinobu Inoue LIST_FOREACH(inp, &phd->phd_pcblist, inp_portlist) { 70082cd038dSYoshinobu Inoue wildcard = 0; 701413628a7SBjoern A. Zeeb if (cred != NULL && 7020304c731SJamie Gritton !prison_equal_ip6(cred->cr_prison, 7030304c731SJamie Gritton inp->inp_cred->cr_prison)) 704413628a7SBjoern A. Zeeb continue; 705413628a7SBjoern A. Zeeb /* XXX inp locking */ 706369dc8ceSEivind Eklund if ((inp->inp_vflag & INP_IPV6) == 0) 70782cd038dSYoshinobu Inoue continue; 70882cd038dSYoshinobu Inoue if (!IN6_IS_ADDR_UNSPECIFIED(&inp->in6p_faddr)) 70982cd038dSYoshinobu Inoue wildcard++; 71082cd038dSYoshinobu Inoue if (!IN6_IS_ADDR_UNSPECIFIED( 71182cd038dSYoshinobu Inoue &inp->in6p_laddr)) { 71282cd038dSYoshinobu Inoue if (IN6_IS_ADDR_UNSPECIFIED(laddr)) 71382cd038dSYoshinobu Inoue wildcard++; 71482cd038dSYoshinobu Inoue else if (!IN6_ARE_ADDR_EQUAL( 71582cd038dSYoshinobu Inoue &inp->in6p_laddr, laddr)) 71682cd038dSYoshinobu Inoue continue; 71782cd038dSYoshinobu Inoue } else { 71882cd038dSYoshinobu Inoue if (!IN6_IS_ADDR_UNSPECIFIED(laddr)) 71982cd038dSYoshinobu Inoue wildcard++; 72082cd038dSYoshinobu Inoue } 72182cd038dSYoshinobu Inoue if (wildcard < matchwild) { 72282cd038dSYoshinobu Inoue match = inp; 72382cd038dSYoshinobu Inoue matchwild = wildcard; 724413628a7SBjoern A. Zeeb if (matchwild == 0) 72582cd038dSYoshinobu Inoue break; 72682cd038dSYoshinobu Inoue } 72782cd038dSYoshinobu Inoue } 72882cd038dSYoshinobu Inoue } 72982cd038dSYoshinobu Inoue return (match); 73082cd038dSYoshinobu Inoue } 73182cd038dSYoshinobu Inoue } 73282cd038dSYoshinobu Inoue 733e43cc4aeSHajimu UMEMOTO void 7341272577eSXin LI in6_pcbpurgeif0(struct inpcbinfo *pcbinfo, struct ifnet *ifp) 735e43cc4aeSHajimu UMEMOTO { 736fc384fa5SBjoern A. Zeeb struct inpcb *in6p; 737e43cc4aeSHajimu UMEMOTO struct ip6_moptions *im6o; 73833cde130SBruce M Simpson int i, gap; 739e43cc4aeSHajimu UMEMOTO 74004f20737SRobert Watson INP_INFO_RLOCK(pcbinfo); 741712fc218SRobert Watson LIST_FOREACH(in6p, pcbinfo->ipi_listhead, inp_list) { 7428501a69cSRobert Watson INP_WLOCK(in6p); 743e43cc4aeSHajimu UMEMOTO im6o = in6p->in6p_moptions; 74433cde130SBruce M Simpson if ((in6p->inp_vflag & INP_IPV6) && im6o != NULL) { 745e43cc4aeSHajimu UMEMOTO /* 74633cde130SBruce M Simpson * Unselect the outgoing ifp for multicast if it 74733cde130SBruce M Simpson * is being detached. 748e43cc4aeSHajimu UMEMOTO */ 749e43cc4aeSHajimu UMEMOTO if (im6o->im6o_multicast_ifp == ifp) 750e43cc4aeSHajimu UMEMOTO im6o->im6o_multicast_ifp = NULL; 751e43cc4aeSHajimu UMEMOTO /* 752e43cc4aeSHajimu UMEMOTO * Drop multicast group membership if we joined 753e43cc4aeSHajimu UMEMOTO * through the interface being detached. 754e43cc4aeSHajimu UMEMOTO */ 75533cde130SBruce M Simpson gap = 0; 75633cde130SBruce M Simpson for (i = 0; i < im6o->im6o_num_memberships; i++) { 75733cde130SBruce M Simpson if (im6o->im6o_membership[i]->in6m_ifp == 75833cde130SBruce M Simpson ifp) { 75933cde130SBruce M Simpson in6_mc_leave(im6o->im6o_membership[i], 76033cde130SBruce M Simpson NULL); 76133cde130SBruce M Simpson gap++; 76233cde130SBruce M Simpson } else if (gap != 0) { 76333cde130SBruce M Simpson im6o->im6o_membership[i - gap] = 76433cde130SBruce M Simpson im6o->im6o_membership[i]; 765e43cc4aeSHajimu UMEMOTO } 766e43cc4aeSHajimu UMEMOTO } 76733cde130SBruce M Simpson im6o->im6o_num_memberships -= gap; 768e43cc4aeSHajimu UMEMOTO } 7698501a69cSRobert Watson INP_WUNLOCK(in6p); 770e43cc4aeSHajimu UMEMOTO } 77104f20737SRobert Watson INP_INFO_RUNLOCK(pcbinfo); 772e43cc4aeSHajimu UMEMOTO } 773e43cc4aeSHajimu UMEMOTO 77482cd038dSYoshinobu Inoue /* 77582cd038dSYoshinobu Inoue * Check for alternatives when higher level complains 77682cd038dSYoshinobu Inoue * about service problems. For now, invalidate cached 77782cd038dSYoshinobu Inoue * routing information. If the route was created dynamically 77882cd038dSYoshinobu Inoue * (by a redirect), time to try a default gateway again. 77982cd038dSYoshinobu Inoue */ 78082cd038dSYoshinobu Inoue void 7811272577eSXin LI in6_losing(struct inpcb *in6p) 78282cd038dSYoshinobu Inoue { 7831272577eSXin LI 78482cd038dSYoshinobu Inoue /* 78597d8d152SAndre Oppermann * We don't store route pointers in the routing table anymore 78682cd038dSYoshinobu Inoue */ 78797d8d152SAndre Oppermann return; 78882cd038dSYoshinobu Inoue } 78982cd038dSYoshinobu Inoue 79082cd038dSYoshinobu Inoue /* 79182cd038dSYoshinobu Inoue * After a routing change, flush old routing 79282cd038dSYoshinobu Inoue * and allocate a (hopefully) better one. 79382cd038dSYoshinobu Inoue */ 7943ce144eaSJeffrey Hsu struct inpcb * 7951272577eSXin LI in6_rtchange(struct inpcb *inp, int errno) 79682cd038dSYoshinobu Inoue { 79782cd038dSYoshinobu Inoue /* 79897d8d152SAndre Oppermann * We don't store route pointers in the routing table anymore 79982cd038dSYoshinobu Inoue */ 8003ce144eaSJeffrey Hsu return inp; 80182cd038dSYoshinobu Inoue } 80282cd038dSYoshinobu Inoue 80382cd038dSYoshinobu Inoue /* 80482cd038dSYoshinobu Inoue * Lookup PCB in hash list. 80582cd038dSYoshinobu Inoue */ 80682cd038dSYoshinobu Inoue struct inpcb * 8071272577eSXin LI in6_pcblookup_hash(struct inpcbinfo *pcbinfo, struct in6_addr *faddr, 808413628a7SBjoern A. Zeeb u_int fport_arg, struct in6_addr *laddr, u_int lport_arg, int wildcard, 809413628a7SBjoern A. Zeeb struct ifnet *ifp) 81082cd038dSYoshinobu Inoue { 81182cd038dSYoshinobu Inoue struct inpcbhead *head; 812413628a7SBjoern A. Zeeb struct inpcb *inp, *tmpinp; 81382cd038dSYoshinobu Inoue u_short fport = fport_arg, lport = lport_arg; 81433841545SHajimu UMEMOTO int faith; 81533841545SHajimu UMEMOTO 8168501a69cSRobert Watson INP_INFO_LOCK_ASSERT(pcbinfo); 8178deea4a8SRobert Watson 8189494d596SBrooks Davis if (faithprefix_p != NULL) 8199494d596SBrooks Davis faith = (*faithprefix_p)(laddr); 8209494d596SBrooks Davis else 82133841545SHajimu UMEMOTO faith = 0; 82282cd038dSYoshinobu Inoue 82382cd038dSYoshinobu Inoue /* 82482cd038dSYoshinobu Inoue * First look for an exact match. 82582cd038dSYoshinobu Inoue */ 826413628a7SBjoern A. Zeeb tmpinp = NULL; 827712fc218SRobert Watson head = &pcbinfo->ipi_hashbase[ 828712fc218SRobert Watson INP_PCBHASH(faddr->s6_addr32[3] /* XXX */, lport, fport, 829712fc218SRobert Watson pcbinfo->ipi_hashmask)]; 830cfa1ca9dSYoshinobu Inoue LIST_FOREACH(inp, head, inp_hash) { 831413628a7SBjoern A. Zeeb /* XXX inp locking */ 832369dc8ceSEivind Eklund if ((inp->inp_vflag & INP_IPV6) == 0) 83382cd038dSYoshinobu Inoue continue; 83482cd038dSYoshinobu Inoue if (IN6_ARE_ADDR_EQUAL(&inp->in6p_faddr, faddr) && 83582cd038dSYoshinobu Inoue IN6_ARE_ADDR_EQUAL(&inp->in6p_laddr, laddr) && 83682cd038dSYoshinobu Inoue inp->inp_fport == fport && 83782cd038dSYoshinobu Inoue inp->inp_lport == lport) { 83882cd038dSYoshinobu Inoue /* 839413628a7SBjoern A. Zeeb * XXX We should be able to directly return 840413628a7SBjoern A. Zeeb * the inp here, without any checks. 841413628a7SBjoern A. Zeeb * Well unless both bound with SO_REUSEPORT? 84282cd038dSYoshinobu Inoue */ 8430304c731SJamie Gritton if (prison_flag(inp->inp_cred, PR_IP6)) 84482cd038dSYoshinobu Inoue return (inp); 845413628a7SBjoern A. Zeeb if (tmpinp == NULL) 846413628a7SBjoern A. Zeeb tmpinp = inp; 84782cd038dSYoshinobu Inoue } 84882cd038dSYoshinobu Inoue } 849413628a7SBjoern A. Zeeb if (tmpinp != NULL) 850413628a7SBjoern A. Zeeb return (tmpinp); 85182cd038dSYoshinobu Inoue 852413628a7SBjoern A. Zeeb /* 853413628a7SBjoern A. Zeeb * Then look for a wildcard match, if requested. 854413628a7SBjoern A. Zeeb */ 855413628a7SBjoern A. Zeeb if (wildcard == INPLOOKUP_WILDCARD) { 856413628a7SBjoern A. Zeeb struct inpcb *local_wild = NULL, *local_exact = NULL; 857413628a7SBjoern A. Zeeb struct inpcb *jail_wild = NULL; 858413628a7SBjoern A. Zeeb int injail; 859413628a7SBjoern A. Zeeb 860413628a7SBjoern A. Zeeb /* 861413628a7SBjoern A. Zeeb * Order of socket selection - we always prefer jails. 862413628a7SBjoern A. Zeeb * 1. jailed, non-wild. 863413628a7SBjoern A. Zeeb * 2. jailed, wild. 864413628a7SBjoern A. Zeeb * 3. non-jailed, non-wild. 865413628a7SBjoern A. Zeeb * 4. non-jailed, wild. 866413628a7SBjoern A. Zeeb */ 867712fc218SRobert Watson head = &pcbinfo->ipi_hashbase[INP_PCBHASH(INADDR_ANY, lport, 868712fc218SRobert Watson 0, pcbinfo->ipi_hashmask)]; 869cfa1ca9dSYoshinobu Inoue LIST_FOREACH(inp, head, inp_hash) { 870413628a7SBjoern A. Zeeb /* XXX inp locking */ 871369dc8ceSEivind Eklund if ((inp->inp_vflag & INP_IPV6) == 0) 87282cd038dSYoshinobu Inoue continue; 873413628a7SBjoern A. Zeeb 874413628a7SBjoern A. Zeeb if (!IN6_IS_ADDR_UNSPECIFIED(&inp->in6p_faddr) || 875413628a7SBjoern A. Zeeb inp->inp_lport != lport) { 876413628a7SBjoern A. Zeeb continue; 877413628a7SBjoern A. Zeeb } 878413628a7SBjoern A. Zeeb 879413628a7SBjoern A. Zeeb /* XXX inp locking */ 88033841545SHajimu UMEMOTO if (faith && (inp->inp_flags & INP_FAITH) == 0) 88182cd038dSYoshinobu Inoue continue; 882413628a7SBjoern A. Zeeb 8830304c731SJamie Gritton injail = prison_flag(inp->inp_cred, PR_IP6); 884413628a7SBjoern A. Zeeb if (injail) { 885b89e82ddSJamie Gritton if (prison_check_ip6(inp->inp_cred, 886b89e82ddSJamie Gritton laddr) != 0) 887413628a7SBjoern A. Zeeb continue; 888413628a7SBjoern A. Zeeb } else { 889413628a7SBjoern A. Zeeb if (local_exact != NULL) 890413628a7SBjoern A. Zeeb continue; 891413628a7SBjoern A. Zeeb } 892413628a7SBjoern A. Zeeb 893413628a7SBjoern A. Zeeb if (IN6_ARE_ADDR_EQUAL(&inp->in6p_laddr, laddr)) { 894413628a7SBjoern A. Zeeb if (injail) 89582cd038dSYoshinobu Inoue return (inp); 896413628a7SBjoern A. Zeeb else 897413628a7SBjoern A. Zeeb local_exact = inp; 898413628a7SBjoern A. Zeeb } else if (IN6_IS_ADDR_UNSPECIFIED(&inp->in6p_laddr)) { 899413628a7SBjoern A. Zeeb if (injail) 900413628a7SBjoern A. Zeeb jail_wild = inp; 901413628a7SBjoern A. Zeeb else 90282cd038dSYoshinobu Inoue local_wild = inp; 90382cd038dSYoshinobu Inoue } 904413628a7SBjoern A. Zeeb } /* LIST_FOREACH */ 905413628a7SBjoern A. Zeeb 906413628a7SBjoern A. Zeeb if (jail_wild != NULL) 907413628a7SBjoern A. Zeeb return (jail_wild); 908413628a7SBjoern A. Zeeb if (local_exact != NULL) 909413628a7SBjoern A. Zeeb return (local_exact); 910413628a7SBjoern A. Zeeb if (local_wild != NULL) 91182cd038dSYoshinobu Inoue return (local_wild); 912413628a7SBjoern A. Zeeb } /* if (wildcard == INPLOOKUP_WILDCARD) */ 91382cd038dSYoshinobu Inoue 91482cd038dSYoshinobu Inoue /* 91582cd038dSYoshinobu Inoue * Not found. 91682cd038dSYoshinobu Inoue */ 91782cd038dSYoshinobu Inoue return (NULL); 91882cd038dSYoshinobu Inoue } 91982cd038dSYoshinobu Inoue 92082cd038dSYoshinobu Inoue void 92182cd038dSYoshinobu Inoue init_sin6(struct sockaddr_in6 *sin6, struct mbuf *m) 92282cd038dSYoshinobu Inoue { 92382cd038dSYoshinobu Inoue struct ip6_hdr *ip; 92482cd038dSYoshinobu Inoue 92582cd038dSYoshinobu Inoue ip = mtod(m, struct ip6_hdr *); 92682cd038dSYoshinobu Inoue bzero(sin6, sizeof(*sin6)); 92782cd038dSYoshinobu Inoue sin6->sin6_len = sizeof(*sin6); 92882cd038dSYoshinobu Inoue sin6->sin6_family = AF_INET6; 92982cd038dSYoshinobu Inoue sin6->sin6_addr = ip->ip6_src; 930a1f7e5f8SHajimu UMEMOTO 931a1f7e5f8SHajimu UMEMOTO (void)sa6_recoverscope(sin6); /* XXX: should catch errors... */ 93282cd038dSYoshinobu Inoue 93382cd038dSYoshinobu Inoue return; 93482cd038dSYoshinobu Inoue } 935