1 /* $FreeBSD: src/sys/netinet6/udp6_output.c,v 1.1.2.6 2003/01/23 21:06:47 sam Exp $ */ 2 /* $KAME: udp6_output.c,v 1.31 2001/05/21 16:39:15 jinmei Exp $ */ 3 4 /* 5 * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project. 6 * All rights reserved. 7 * 8 * Redistribution and use in source and binary forms, with or without 9 * modification, are permitted provided that the following conditions 10 * are met: 11 * 1. Redistributions of source code must retain the above copyright 12 * notice, this list of conditions and the following disclaimer. 13 * 2. Redistributions in binary form must reproduce the above copyright 14 * notice, this list of conditions and the following disclaimer in the 15 * documentation and/or other materials provided with the distribution. 16 * 3. Neither the name of the project nor the names of its contributors 17 * may be used to endorse or promote products derived from this software 18 * without specific prior written permission. 19 * 20 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND 21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 23 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE 24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 30 * SUCH DAMAGE. 31 */ 32 33 /* 34 * Copyright (c) 1982, 1986, 1989, 1993 35 * The Regents of the University of California. All rights reserved. 36 * 37 * Redistribution and use in source and binary forms, with or without 38 * modification, are permitted provided that the following conditions 39 * are met: 40 * 1. Redistributions of source code must retain the above copyright 41 * notice, this list of conditions and the following disclaimer. 42 * 2. Redistributions in binary form must reproduce the above copyright 43 * notice, this list of conditions and the following disclaimer in the 44 * documentation and/or other materials provided with the distribution. 45 * 3. Neither the name of the University nor the names of its contributors 46 * may be used to endorse or promote products derived from this software 47 * without specific prior written permission. 48 * 49 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND 50 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 51 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 52 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE 53 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 54 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 55 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 56 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 57 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 58 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 59 * SUCH DAMAGE. 60 * 61 * @(#)udp_var.h 8.1 (Berkeley) 6/10/93 62 */ 63 64 #include "opt_ipsec.h" 65 #include "opt_inet.h" 66 #include "opt_inet6.h" 67 68 #include <sys/param.h> 69 #include <sys/malloc.h> 70 #include <sys/mbuf.h> 71 #include <sys/protosw.h> 72 #include <sys/socket.h> 73 #include <sys/socketvar.h> 74 #include <sys/sysctl.h> 75 #include <sys/errno.h> 76 #include <sys/stat.h> 77 #include <sys/systm.h> 78 #include <sys/proc.h> 79 #include <sys/priv.h> 80 #include <sys/syslog.h> 81 82 #include <net/if.h> 83 #include <net/route.h> 84 #include <net/if_types.h> 85 86 #include <netinet/in.h> 87 #include <netinet/in_var.h> 88 #include <netinet/in_systm.h> 89 #include <netinet/ip.h> 90 #include <netinet/ip_var.h> 91 #include <netinet/in_pcb.h> 92 #include <netinet/udp.h> 93 #include <netinet/udp_var.h> 94 #include <netinet/ip6.h> 95 #include <netinet6/ip6_var.h> 96 #include <netinet6/in6_pcb.h> 97 #include <netinet6/udp6_var.h> 98 #include <netinet/icmp6.h> 99 #include <netinet6/ip6protosw.h> 100 101 #ifdef IPSEC 102 #include <netinet6/ipsec.h> 103 #ifdef INET6 104 #include <netinet6/ipsec6.h> 105 #endif 106 #endif /* IPSEC */ 107 108 #include <net/net_osdep.h> 109 110 /* 111 * UDP protocol inplementation. 112 * Per RFC 768, August, 1980. 113 */ 114 115 #define in6pcb inpcb 116 #define udp6stat udp_stat 117 #define udp6s_opackets udps_opackets 118 119 int 120 udp6_output(struct in6pcb *in6p, struct mbuf *m, struct sockaddr *addr6, 121 struct mbuf *control, struct thread *td) 122 { 123 u_int32_t ulen = m->m_pkthdr.len; 124 u_int32_t plen = sizeof(struct udphdr) + ulen; 125 struct ip6_hdr *ip6; 126 struct udphdr *udp6; 127 struct in6_addr *laddr, *faddr; 128 u_short fport; 129 int error = 0; 130 struct ip6_pktopts opt, *stickyopt = in6p->in6p_outputopts; 131 int priv; 132 int hlen = sizeof(struct ip6_hdr); 133 struct sockaddr_in6 tmp; 134 135 priv = !priv_check(td, PRIV_ROOT); /* 1 if privileged, 0 if not */ 136 if (control) { 137 if ((error = ip6_setpktoptions(control, &opt, 138 in6p->in6p_outputopts, 139 IPPROTO_UDP, priv)) != 0) 140 goto release; 141 in6p->in6p_outputopts = &opt; 142 } 143 144 if (addr6) { 145 /* 146 * IPv4 version of udp_output calls in_pcbconnect in this case, 147 * which needs splnet and affects performance. 148 * Since we saw no essential reason for calling in_pcbconnect, 149 * we get rid of such kind of logic, and call in6_selectsrc 150 * and in6_pcbsetlport in order to fill in the local address 151 * and the local port. 152 */ 153 struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)addr6; 154 155 /* Caller should have rejected the v4-mapped address */ 156 KASSERT(!IN6_IS_ADDR_V4MAPPED(&sin6->sin6_addr), 157 ("v4-mapped address")); 158 159 if (sin6->sin6_port == 0) { 160 error = EADDRNOTAVAIL; 161 goto release; 162 } 163 164 if (!IN6_IS_ADDR_UNSPECIFIED(&in6p->in6p_faddr)) { 165 /* how about ::ffff:0.0.0.0 case? */ 166 error = EISCONN; 167 goto release; 168 } 169 if (!prison_remote_ip(td, addr6)) { 170 error = EAFNOSUPPORT; /* IPv4 only jail */ 171 goto release; 172 } 173 174 /* protect *sin6 from overwrites */ 175 tmp = *sin6; 176 sin6 = &tmp; 177 178 faddr = &sin6->sin6_addr; 179 fport = sin6->sin6_port; /* allow 0 port */ 180 181 /* KAME hack: embed scopeid */ 182 if (in6_embedscope(&sin6->sin6_addr, sin6, in6p, NULL) != 0) { 183 error = EINVAL; 184 goto release; 185 } 186 187 laddr = in6_selectsrc(sin6, in6p->in6p_outputopts, 188 in6p->in6p_moptions, 189 &in6p->in6p_route, 190 &in6p->in6p_laddr, &error, NULL); 191 if (laddr == NULL) { 192 if (error == 0) 193 error = EADDRNOTAVAIL; 194 goto release; 195 } 196 if (in6p->in6p_lport == 0 && 197 (error = in6_pcbsetlport(laddr, in6p, td)) != 0) 198 goto release; 199 } else { 200 if (IN6_IS_ADDR_UNSPECIFIED(&in6p->in6p_faddr)) { 201 error = ENOTCONN; 202 goto release; 203 } 204 205 /* Connection to v4-mapped address should have been rejected */ 206 KASSERT(!IN6_IS_ADDR_V4MAPPED(&in6p->in6p_faddr), 207 ("bound to v4-mapped address")); 208 209 laddr = &in6p->in6p_laddr; 210 faddr = &in6p->in6p_faddr; 211 fport = in6p->in6p_fport; 212 } 213 214 /* 215 * Calculate data length and get a mbuf 216 * for UDP and IP6 headers. 217 */ 218 M_PREPEND(m, hlen + sizeof(struct udphdr), M_NOWAIT); 219 if (m == NULL) { 220 error = ENOBUFS; 221 goto release; 222 } 223 224 /* 225 * Stuff checksum and output datagram. 226 */ 227 udp6 = (struct udphdr *)(mtod(m, caddr_t) + hlen); 228 udp6->uh_sport = in6p->in6p_lport; /* lport is always set in the PCB */ 229 udp6->uh_dport = fport; 230 if (plen <= 0xffff) 231 udp6->uh_ulen = htons((u_short)plen); 232 else 233 udp6->uh_ulen = 0; 234 udp6->uh_sum = 0; 235 236 ip6 = mtod(m, struct ip6_hdr *); 237 ip6->ip6_flow = in6p->in6p_flowinfo & IPV6_FLOWINFO_MASK; 238 ip6->ip6_vfc &= ~IPV6_VERSION_MASK; 239 ip6->ip6_vfc |= IPV6_VERSION; 240 #if 0 /* ip6_plen will be filled in ip6_output. */ 241 ip6->ip6_plen = htons((u_short)plen); 242 #endif 243 ip6->ip6_nxt = IPPROTO_UDP; 244 ip6->ip6_hlim = in6_selecthlim(in6p, 245 in6p->in6p_route.ro_rt ? 246 in6p->in6p_route.ro_rt->rt_ifp : NULL); 247 ip6->ip6_src = *laddr; 248 ip6->ip6_dst = *faddr; 249 250 if ((udp6->uh_sum = in6_cksum(m, IPPROTO_UDP, 251 sizeof(struct ip6_hdr), plen)) == 0) { 252 udp6->uh_sum = 0xffff; 253 } 254 255 udp6stat.udp6s_opackets++; 256 error = ip6_output(m, in6p->in6p_outputopts, &in6p->in6p_route, 0, 257 in6p->in6p_moptions, NULL, in6p); 258 goto releaseopt; 259 260 release: 261 m_freem(m); 262 263 releaseopt: 264 if (control) { 265 ip6_clearpktopts(in6p->in6p_outputopts, -1); 266 in6p->in6p_outputopts = stickyopt; 267 m_freem(control); 268 } 269 return (error); 270 } 271