1 /* 2 * CDDL HEADER START 3 * 4 * The contents of this file are subject to the terms of the 5 * Common Development and Distribution License (the "License"). 6 * You may not use this file except in compliance with the License. 7 * 8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 9 * or http://www.opensolaris.org/os/licensing. 10 * See the License for the specific language governing permissions 11 * and limitations under the License. 12 * 13 * When distributing Covered Code, include this CDDL HEADER in each 14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 15 * If applicable, add the following below this CDDL HEADER, with the 16 * fields enclosed by brackets "[]" replaced with your own identifying 17 * information: Portions Copyright [yyyy] [name of copyright owner] 18 * 19 * CDDL HEADER END 20 */ 21 /* 22 * Copyright 2009 Sun Microsystems, Inc. All rights reserved. 23 * Use is subject to license terms. 24 */ 25 26 #include <sys/types.h> 27 #include <sys/stream.h> 28 #define _SUN_TPI_VERSION 2 29 #include <sys/tihdr.h> 30 #include <sys/socket.h> 31 #include <sys/xti_xtiopt.h> 32 #include <sys/xti_inet.h> 33 34 #include <netinet/in.h> 35 #include <netinet/icmp6.h> 36 #include <inet/common.h> 37 #include <netinet/ip6.h> 38 #include <inet/ip.h> 39 /* 40 * MK_XXX Following 2 includes temporary to import ip6_rthdr_t 41 * definition. May not be needed if we fix ip6_dg_snd_attrs_t 42 * to do all extension headers in identical manner. 43 */ 44 #include <net/if.h> 45 #include <inet/ip6.h> 46 47 #include <netinet/tcp.h> 48 #include <netinet/ip_mroute.h> 49 #include <inet/optcom.h> 50 51 52 extern int icmp_opt_default(queue_t *, int, int, uchar_t *); 53 extern int icmp_tpi_opt_get(queue_t *, int, int, uchar_t *); 54 extern int icmp_tpi_opt_set(queue_t *, uint_t, int, int, uint_t, uchar_t *, 55 uint_t *, uchar_t *, void *, cred_t *, mblk_t *); 56 57 /* 58 * Table of all known options handled on a ICMP protocol stack. 59 * 60 * Note: This table contains options processed by both ICMP and IP levels 61 * and is the superset of options that can be performed on a ICMP over IP 62 * stack. 63 */ 64 opdes_t icmp_opt_arr[] = { 65 66 { SO_DEBUG, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 67 { SO_DONTROUTE, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 68 { SO_USELOOPBACK, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 69 }, 70 { SO_BROADCAST, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 71 { SO_REUSEADDR, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 72 73 #ifdef SO_PROTOTYPE 74 /* 75 * icmp will only allow IPPROTO_ICMP for non-privileged streams 76 * that check is made on an adhoc basis. 77 */ 78 { SO_PROTOTYPE, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 79 #endif 80 81 { SO_TYPE, SOL_SOCKET, OA_R, OA_R, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 82 { SO_SNDBUF, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 83 { SO_RCVBUF, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 84 { SO_SNDTIMEO, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 85 sizeof (struct timeval), 0 }, 86 { SO_RCVTIMEO, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 87 sizeof (struct timeval), 0 }, 88 { SO_DGRAM_ERRIND, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 89 0 }, 90 { SO_TIMESTAMP, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 91 }, 92 { SO_MAC_EXEMPT, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 93 0 }, 94 { SO_MAC_IMPLICIT, SOL_SOCKET, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 95 0 }, 96 97 { SO_ALLZONES, SOL_SOCKET, OA_R, OA_RW, OP_CONFIG, OP_PASSNEXT, sizeof (int), 98 0 }, 99 { SO_DOMAIN, SOL_SOCKET, OA_R, OA_R, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 100 101 { IP_OPTIONS, IPPROTO_IP, OA_RW, OA_RW, OP_NP, 102 (OP_PASSNEXT|OP_VARLEN|OP_NODEFAULT), 103 IP_MAX_OPT_LENGTH + IP_ADDR_LEN, -1 /* not initialized */ }, 104 { T_IP_OPTIONS, IPPROTO_IP, OA_RW, OA_RW, OP_NP, 105 (OP_PASSNEXT|OP_VARLEN|OP_NODEFAULT), 106 IP_MAX_OPT_LENGTH + IP_ADDR_LEN, -1 /* not initialized */ }, 107 108 { IP_HDRINCL, IPPROTO_IP, OA_R, OA_RW, OP_RAW, OP_PASSNEXT, 109 sizeof (int), 0 }, 110 { IP_TOS, IPPROTO_IP, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 111 { T_IP_TOS, IPPROTO_IP, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 112 { IP_TTL, IPPROTO_IP, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 113 114 { IP_MULTICAST_IF, IPPROTO_IP, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 115 sizeof (struct in_addr), 0 /* INADDR_ANY */ }, 116 117 { IP_MULTICAST_LOOP, IPPROTO_IP, OA_RW, OA_RW, OP_NP, (OP_PASSNEXT|OP_DEF_FN), 118 sizeof (uchar_t), -1 /* not initialized */}, 119 120 { IP_MULTICAST_TTL, IPPROTO_IP, OA_RW, OA_RW, OP_NP, (OP_PASSNEXT|OP_DEF_FN), 121 sizeof (uchar_t), -1 /* not initialized */ }, 122 123 { IP_ADD_MEMBERSHIP, IPPROTO_IP, OA_X, OA_X, OP_NP, (OP_PASSNEXT|OP_NODEFAULT), 124 sizeof (struct ip_mreq), -1 /* not initialized */ }, 125 126 { IP_DROP_MEMBERSHIP, IPPROTO_IP, OA_X, OA_X, OP_NP, (OP_PASSNEXT|OP_NODEFAULT), 127 sizeof (struct ip_mreq), 0 }, 128 129 { IP_BLOCK_SOURCE, IPPROTO_IP, OA_X, OA_X, OP_NP, (OP_PASSNEXT|OP_NODEFAULT), 130 sizeof (struct ip_mreq_source), -1 }, 131 132 { IP_UNBLOCK_SOURCE, IPPROTO_IP, OA_X, OA_X, OP_NP, (OP_PASSNEXT|OP_NODEFAULT), 133 sizeof (struct ip_mreq_source), -1 }, 134 135 { IP_ADD_SOURCE_MEMBERSHIP, IPPROTO_IP, OA_X, OA_X, OP_NP, 136 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct ip_mreq_source), -1 }, 137 138 { IP_DROP_SOURCE_MEMBERSHIP, IPPROTO_IP, OA_X, OA_X, OP_NP, 139 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct ip_mreq_source), -1 }, 140 141 { IP_SEC_OPT, IPPROTO_IP, OA_RW, OA_RW, OP_NP, (OP_PASSNEXT|OP_NODEFAULT), 142 sizeof (ipsec_req_t), -1 /* not initialized */ }, 143 144 { IP_BOUND_IF, IPPROTO_IP, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 145 sizeof (int), 0 /* no ifindex */ }, 146 147 { IP_UNSPEC_SRC, IPPROTO_IP, OA_R, OA_RW, OP_RAW, OP_PASSNEXT, 148 sizeof (int), 0 }, 149 150 { IP_BROADCAST_TTL, IPPROTO_IP, OA_R, OA_RW, OP_RAW, 0, sizeof (uchar_t), 151 0 /* disabled */ }, 152 153 { IP_RECVIF, IPPROTO_IP, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 0 }, 154 155 { IP_PKTINFO, IPPROTO_IP, OA_RW, OA_RW, OP_NP, 156 (OP_PASSNEXT|OP_NODEFAULT|OP_VARLEN), 157 sizeof (struct in_pktinfo), -1 /* not initialized */ }, 158 159 { IP_NEXTHOP, IPPROTO_IP, OA_R, OA_RW, OP_CONFIG, OP_PASSNEXT, 160 sizeof (in_addr_t), -1 /* not initialized */ }, 161 162 { MRT_INIT, IPPROTO_IP, 0, OA_X, OP_CONFIG, 163 (OP_PASSNEXT|OP_NODEFAULT), sizeof (int), 164 -1 /* not initialized */ }, 165 166 { MRT_DONE, IPPROTO_IP, 0, OA_X, OP_CONFIG, 167 (OP_PASSNEXT|OP_NODEFAULT), 0, -1 /* not initialized */ }, 168 169 { MRT_ADD_VIF, IPPROTO_IP, 0, OA_X, OP_CONFIG, (OP_PASSNEXT|OP_NODEFAULT), 170 sizeof (struct vifctl), -1 /* not initialized */ }, 171 172 { MRT_DEL_VIF, IPPROTO_IP, 0, OA_X, OP_CONFIG, (OP_PASSNEXT|OP_NODEFAULT), 173 sizeof (vifi_t), -1 /* not initialized */ }, 174 175 { MRT_ADD_MFC, IPPROTO_IP, 0, OA_X, OP_CONFIG, (OP_PASSNEXT|OP_NODEFAULT), 176 sizeof (struct mfcctl), -1 /* not initialized */ }, 177 178 { MRT_DEL_MFC, IPPROTO_IP, 0, OA_X, OP_CONFIG, (OP_PASSNEXT|OP_NODEFAULT), 179 sizeof (struct mfcctl), -1 /* not initialized */ }, 180 181 { MRT_VERSION, IPPROTO_IP, OA_R, OA_R, OP_NP, (OP_PASSNEXT|OP_NODEFAULT), 182 sizeof (int), -1 /* not initialized */ }, 183 184 { MRT_ASSERT, IPPROTO_IP, 0, OA_RW, OP_CONFIG, 185 (OP_PASSNEXT|OP_NODEFAULT), 186 sizeof (int), -1 /* not initialized */ }, 187 188 { MCAST_JOIN_GROUP, IPPROTO_IP, OA_X, OA_X, OP_NP, 189 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_req), 190 -1 /* not initialized */ }, 191 { MCAST_LEAVE_GROUP, IPPROTO_IP, OA_X, OA_X, OP_NP, 192 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_req), 193 -1 /* not initialized */ }, 194 { MCAST_BLOCK_SOURCE, IPPROTO_IP, OA_X, OA_X, OP_NP, 195 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_source_req), 196 -1 /* not initialized */ }, 197 { MCAST_UNBLOCK_SOURCE, IPPROTO_IP, OA_X, OA_X, OP_NP, 198 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_source_req), 199 -1 /* not initialized */ }, 200 { MCAST_JOIN_SOURCE_GROUP, IPPROTO_IP, OA_X, OA_X, OP_NP, 201 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_source_req), 202 -1 /* not initialized */ }, 203 { MCAST_LEAVE_SOURCE_GROUP, IPPROTO_IP, OA_X, OA_X, OP_NP, 204 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_source_req), 205 -1 /* not initialized */ }, 206 207 { IPV6_MULTICAST_IF, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 208 sizeof (int), 0 }, 209 210 { IPV6_MULTICAST_HOPS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, 211 (OP_PASSNEXT|OP_DEF_FN), sizeof (int), -1 /* not initialized */ }, 212 213 { IPV6_MULTICAST_LOOP, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, 214 (OP_PASSNEXT|OP_DEF_FN), sizeof (int), -1 /* not initialized */}, 215 216 { IPV6_JOIN_GROUP, IPPROTO_IPV6, OA_X, OA_X, OP_NP, (OP_PASSNEXT|OP_NODEFAULT), 217 sizeof (struct ipv6_mreq), -1 /* not initialized */ }, 218 219 { IPV6_LEAVE_GROUP, IPPROTO_IPV6, OA_X, OA_X, OP_NP, (OP_PASSNEXT|OP_NODEFAULT), 220 sizeof (struct ipv6_mreq), -1 /* not initialized */ }, 221 222 { IPV6_UNICAST_HOPS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, (OP_PASSNEXT|OP_DEF_FN), 223 sizeof (int), -1 /* not initialized */ }, 224 225 { IPV6_BOUND_IF, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 226 sizeof (int), 0 /* no ifindex */ }, 227 228 { IPV6_UNSPEC_SRC, IPPROTO_IPV6, OA_R, OA_RW, OP_RAW, OP_PASSNEXT, 229 sizeof (int), 0 }, 230 231 { IPV6_CHECKSUM, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, sizeof (int), 232 -1 }, 233 234 { ICMP6_FILTER, IPPROTO_ICMPV6, OA_RW, OA_RW, OP_NP, OP_DEF_FN|OP_VARLEN, 235 sizeof (icmp6_filter_t), 0 }, 236 { IPV6_PKTINFO, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, 237 (OP_PASSNEXT|OP_NODEFAULT|OP_VARLEN), 238 sizeof (struct in6_pktinfo), -1 /* not initialized */ }, 239 { IPV6_HOPLIMIT, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, 240 (OP_PASSNEXT|OP_NODEFAULT|OP_VARLEN), 241 sizeof (int), -1 /* not initialized */ }, 242 { IPV6_NEXTHOP, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, 243 (OP_PASSNEXT|OP_NODEFAULT|OP_VARLEN), 244 sizeof (sin6_t), -1 /* not initialized */ }, 245 { IPV6_HOPOPTS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, 246 (OP_PASSNEXT|OP_VARLEN|OP_NODEFAULT), 247 MAX_EHDR_LEN, -1 /* not initialized */ }, 248 { IPV6_DSTOPTS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, 249 (OP_PASSNEXT|OP_VARLEN|OP_NODEFAULT), 250 MAX_EHDR_LEN, -1 /* not initialized */ }, 251 { IPV6_RTHDRDSTOPTS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, 252 (OP_PASSNEXT|OP_VARLEN|OP_NODEFAULT), 253 MAX_EHDR_LEN, -1 /* not initialized */ }, 254 { IPV6_RTHDR, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, 255 (OP_PASSNEXT|OP_VARLEN|OP_NODEFAULT), 256 MAX_EHDR_LEN, -1 /* not initialized */ }, 257 { IPV6_TCLASS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, 258 (OP_PASSNEXT|OP_NODEFAULT|OP_VARLEN), 259 sizeof (int), -1 /* not initialized */ }, 260 { IPV6_PATHMTU, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 261 sizeof (struct ip6_mtuinfo), -1 }, 262 { IPV6_DONTFRAG, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 263 sizeof (int), 0 }, 264 { IPV6_USE_MIN_MTU, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 265 sizeof (int), 0 }, 266 { IPV6_V6ONLY, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 267 sizeof (int), 0 }, 268 269 { IPV6_RECVPKTINFO, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 270 sizeof (int), 0 }, 271 { IPV6_RECVHOPLIMIT, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 272 sizeof (int), 0 }, 273 { IPV6_RECVHOPOPTS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 274 sizeof (int), 0 }, 275 { _OLD_IPV6_RECVDSTOPTS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 276 sizeof (int), 0 }, 277 { IPV6_RECVDSTOPTS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 278 sizeof (int), 0 }, 279 { IPV6_RECVRTHDR, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 280 sizeof (int), 0 }, 281 { IPV6_RECVRTHDRDSTOPTS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 282 sizeof (int), 0 }, 283 { IPV6_RECVPATHMTU, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 284 sizeof (int), 0 }, 285 { IPV6_RECVTCLASS, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 286 sizeof (int), 0 }, 287 288 { IPV6_SEC_OPT, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, (OP_PASSNEXT|OP_NODEFAULT), 289 sizeof (ipsec_req_t), -1 /* not initialized */ }, 290 { IPV6_SRC_PREFERENCES, IPPROTO_IPV6, OA_RW, OA_RW, OP_NP, OP_PASSNEXT, 291 sizeof (uint32_t), IPV6_PREFER_SRC_DEFAULT }, 292 293 { MCAST_JOIN_GROUP, IPPROTO_IPV6, OA_X, OA_X, OP_NP, 294 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_req), 295 -1 /* not initialized */ }, 296 { MCAST_LEAVE_GROUP, IPPROTO_IPV6, OA_X, OA_X, OP_NP, 297 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_req), 298 -1 /* not initialized */ }, 299 { MCAST_BLOCK_SOURCE, IPPROTO_IPV6, OA_X, OA_X, OP_NP, 300 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_source_req), 301 -1 /* not initialized */ }, 302 { MCAST_UNBLOCK_SOURCE, IPPROTO_IPV6, OA_X, OA_X, OP_NP, 303 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_source_req), 304 -1 /* not initialized */ }, 305 { MCAST_JOIN_SOURCE_GROUP, IPPROTO_IPV6, OA_X, OA_X, OP_NP, 306 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_source_req), 307 -1 /* not initialized */ }, 308 { MCAST_LEAVE_SOURCE_GROUP, IPPROTO_IPV6, OA_X, OA_X, OP_NP, 309 (OP_PASSNEXT|OP_NODEFAULT), sizeof (struct group_source_req), 310 -1 /* not initialized */ }, 311 }; 312 313 /* 314 * Table of all supported levels 315 * Note: Some levels (e.g. XTI_GENERIC) may be valid but may not have 316 * any supported options so we need this info separately. 317 * 318 * This is needed only for topmost tpi providers and is used only by 319 * XTI interfaces. 320 */ 321 optlevel_t icmp_valid_levels_arr[] = { 322 XTI_GENERIC, 323 SOL_SOCKET, 324 IPPROTO_ICMP, 325 IPPROTO_IP, 326 IPPROTO_IPV6, 327 IPPROTO_ICMPV6 328 }; 329 330 #define ICMP_VALID_LEVELS_CNT A_CNT(icmp_valid_levels_arr) 331 #define ICMP_OPT_ARR_CNT A_CNT(icmp_opt_arr) 332 333 uint_t icmp_max_optsize; /* initialized when ICMP driver is loaded */ 334 335 /* 336 * Initialize option database object for ICMP 337 * 338 * This object represents database of options to search passed to 339 * {sock,tpi}optcom_req() interface routine to take care of option 340 * management and associated methods. 341 */ 342 343 optdb_obj_t icmp_opt_obj = { 344 icmp_opt_default, /* ICMP default value function pointer */ 345 icmp_tpi_opt_get, /* ICMP get function pointer */ 346 icmp_tpi_opt_set, /* ICMP set function pointer */ 347 B_TRUE, /* ICMP is tpi provider */ 348 ICMP_OPT_ARR_CNT, /* ICMP option database count of entries */ 349 icmp_opt_arr, /* ICMP option database */ 350 ICMP_VALID_LEVELS_CNT, /* ICMP valid level count of entries */ 351 icmp_valid_levels_arr /* ICMP valid level array */ 352 }; 353