1 /* $FreeBSD: src/sys/netinet6/in6_pcb.c,v 1.10.2.9 2003/01/24 05:11:35 sam Exp $ */
2 /* $KAME: in6_pcb.c,v 1.31 2001/05/21 05:45:10 jinmei Exp $ */
5 * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
16 * 3. Neither the name of the project nor the names of its contributors
17 * may be used to endorse or promote products derived from this software
18 * without specific prior written permission.
20 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
21 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
24 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
35 * Copyright (c) 1982, 1986, 1991, 1993
36 * The Regents of the University of California. All rights reserved.
38 * Redistribution and use in source and binary forms, with or without
39 * modification, are permitted provided that the following conditions
41 * 1. Redistributions of source code must retain the above copyright
42 * notice, this list of conditions and the following disclaimer.
43 * 2. Redistributions in binary form must reproduce the above copyright
44 * notice, this list of conditions and the following disclaimer in the
45 * documentation and/or other materials provided with the distribution.
46 * 3. Neither the name of the University nor the names of its contributors
47 * may be used to endorse or promote products derived from this software
48 * without specific prior written permission.
50 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
51 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
52 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
53 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
54 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
55 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
56 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
57 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
58 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
59 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
62 * @(#)in_pcb.c 8.2 (Berkeley) 1/4/94
66 #include "opt_inet6.h"
67 #include "opt_ipsec.h"
69 #include <sys/param.h>
70 #include <sys/systm.h>
71 #include <sys/malloc.h>
73 #include <sys/domain.h>
74 #include <sys/protosw.h>
75 #include <sys/socket.h>
76 #include <sys/socketvar.h>
77 #include <sys/sockio.h>
78 #include <sys/errno.h>
84 #include <sys/thread2.h>
85 #include <sys/msgport2.h>
87 #include <vm/vm_zone.h>
90 #include <net/if_types.h>
91 #include <net/route.h>
92 #include <net/netisr2.h>
94 #include <netinet/in.h>
95 #include <netinet/in_var.h>
96 #include <netinet/in_systm.h>
97 #include <netinet/ip6.h>
98 #include <netinet/ip_var.h>
99 #include <netinet6/ip6_var.h>
100 #include <netinet6/nd6.h>
101 #include <netinet/in_pcb.h>
102 #include <netinet6/in6_pcb.h>
105 #include <netinet6/ipsec.h>
107 #include <netinet6/ipsec6.h>
109 #include <netinet6/ah.h>
111 #include <netinet6/ah6.h>
113 #include <netproto/key/key.h>
117 #include <netproto/ipsec/ipsec.h>
118 #include <netproto/ipsec/ipsec6.h>
119 #include <netproto/ipsec/key.h>
121 #endif /* FAST_IPSEC */
123 struct in6_addr zeroin6_addr
;
126 in6_pcbbind(struct inpcb
*inp
, struct sockaddr
*nam
, struct thread
*td
)
128 struct socket
*so
= inp
->inp_socket
;
129 struct sockaddr_in6 jsin6
;
132 if (!in6_ifaddr
) /* XXX broken! */
133 return (EADDRNOTAVAIL
);
134 if (inp
->inp_lport
|| !IN6_IS_ADDR_UNSPECIFIED(&inp
->in6p_laddr
))
138 struct sockaddr_in6
*sin6
= (struct sockaddr_in6
*)nam
;
139 struct inpcbinfo
*pcbinfo
;
140 struct inpcbportinfo
*portinfo
;
141 struct inpcbporthead
*porthash
;
142 int wild
= 0, reuseport
= (so
->so_options
& SO_REUSEPORT
);
143 struct ucred
*cred
= NULL
;
145 u_short lport
, lport_ho
;
147 if ((so
->so_options
& (SO_REUSEADDR
|SO_REUSEPORT
)) == 0)
149 if (td
->td_proc
!= NULL
)
150 cred
= td
->td_proc
->p_ucred
;
152 if (nam
->sa_len
!= sizeof(*sin6
))
157 if (nam
->sa_family
!= AF_INET6
)
158 return (EAFNOSUPPORT
);
160 /* Reject v4-mapped address */
161 if (IN6_IS_ADDR_V4MAPPED(&sin6
->sin6_addr
))
162 return (EADDRNOTAVAIL
);
164 if (!prison_replace_wildcards(td
, nam
))
167 /* KAME hack: embed scopeid */
168 if (in6_embedscope(&sin6
->sin6_addr
, sin6
, inp
, NULL
) != 0)
170 /* this must be cleared for ifa_ifwithaddr() */
171 sin6
->sin6_scope_id
= 0;
173 lport
= sin6
->sin6_port
;
174 if (IN6_IS_ADDR_MULTICAST(&sin6
->sin6_addr
)) {
176 * Treat SO_REUSEADDR as SO_REUSEPORT for multicast;
177 * allow compepte duplication of binding if
178 * SO_REUSEPORT is set, or if SO_REUSEADDR is set
179 * and a multicast address is bound on both
180 * new and duplicated sockets.
182 if (so
->so_options
& SO_REUSEADDR
)
183 reuseport
= SO_REUSEADDR
|SO_REUSEPORT
;
184 } else if (!IN6_IS_ADDR_UNSPECIFIED(&sin6
->sin6_addr
)) {
185 struct ifaddr
*ia
= NULL
;
187 sin6
->sin6_port
= 0; /* yech... */
188 if (!prison_replace_wildcards(td
, (struct sockaddr
*)sin6
)) {
189 sin6
->sin6_addr
= kin6addr_any
;
192 if ((ia
= ifa_ifwithaddr((struct sockaddr
*)sin6
)) == NULL
)
193 return (EADDRNOTAVAIL
);
196 * XXX: bind to an anycast address might accidentally
197 * cause sending a packet with anycast source address.
198 * We should allow to bind to a deprecated address, since
199 * the application dares to use it.
202 ((struct in6_ifaddr
*)ia
)->ia6_flags
&
203 (IN6_IFF_ANYCAST
|IN6_IFF_NOTREADY
|IN6_IFF_DETACHED
))
204 return (EADDRNOTAVAIL
);
207 inp
->in6p_laddr
= sin6
->sin6_addr
;
211 lport_ho
= ntohs(lport
);
214 if (lport_ho
< IPV6PORT_RESERVED
&& cred
&&
215 priv_check_cred(cred
, PRIV_NETINET_RESERVEDPORT
, 0)) {
216 inp
->in6p_laddr
= kin6addr_any
;
221 * Locate the proper portinfo based on lport
223 pcbinfo
= inp
->inp_pcbinfo
;
225 &pcbinfo
->portinfo
[lport_ho
% pcbinfo
->portinfo_cnt
];
226 KKASSERT((lport_ho
% pcbinfo
->portinfo_cnt
) ==
230 * This has to be atomic. If the porthash is shared across
231 * multiple protocol threads (aka tcp) then the token must
234 porthash
= in_pcbporthash_head(portinfo
, lport
);
235 GET_PORTHASH_TOKEN(porthash
);
237 if (so
->so_cred
->cr_uid
!= 0 &&
238 !IN6_IS_ADDR_MULTICAST(&sin6
->sin6_addr
)) {
239 t
= in6_pcblookup_local(porthash
,
240 &sin6
->sin6_addr
, lport
, INPLOOKUP_WILDCARD
, cred
);
242 (so
->so_cred
->cr_uid
!=
243 t
->inp_socket
->so_cred
->cr_uid
)) {
244 inp
->in6p_laddr
= kin6addr_any
;
249 if (cred
&& cred
->cr_prison
&&
250 !prison_replace_wildcards(td
, nam
)) {
251 inp
->in6p_laddr
= kin6addr_any
;
252 error
= EADDRNOTAVAIL
;
255 t
= in6_pcblookup_local(porthash
, &sin6
->sin6_addr
, lport
,
257 if (t
&& (reuseport
& t
->inp_socket
->so_options
) == 0) {
258 inp
->in6p_laddr
= kin6addr_any
;
263 inp
->inp_lport
= lport
;
264 in_pcbinsporthash(porthash
, inp
);
267 REL_PORTHASH_TOKEN(porthash
);
271 jsin6
.sin6_addr
= inp
->in6p_laddr
;
272 jsin6
.sin6_family
= AF_INET6
;
273 if (!prison_replace_wildcards(td
, (struct sockaddr
*)&jsin6
)) {
274 inp
->in6p_laddr
= kin6addr_any
;
279 return in6_pcbsetlport(&inp
->in6p_laddr
, inp
, td
);
284 * Transform old in6_pcbconnect() into an inner subroutine for new
285 * in6_pcbconnect(): Do some validity-checking on the remote
286 * address (in mbuf 'nam') and then determine local host address
287 * (i.e., which interface) to use to access that remote host.
289 * This preserves definition of in6_pcbconnect(), while supporting a
290 * slightly different version for T/TCP. (This is more than
291 * a bit of a kludge, but cleaning up the internal interfaces would
292 * have forced minor changes in every protocol).
296 in6_pcbladdr(struct inpcb
*inp
, struct sockaddr
*nam
,
297 struct in6_addr
**plocal_addr6
, struct thread
*td
)
299 struct sockaddr_in6
*sin6
= (struct sockaddr_in6
*)nam
;
300 struct ifnet
*ifp
= NULL
;
303 if (nam
->sa_len
!= sizeof (*sin6
))
305 if (sin6
->sin6_family
!= AF_INET6
)
306 return (EAFNOSUPPORT
);
307 if (sin6
->sin6_port
== 0)
308 return (EADDRNOTAVAIL
);
310 /* KAME hack: embed scopeid */
311 if (in6_embedscope(&sin6
->sin6_addr
, sin6
, inp
, &ifp
) != 0)
316 * If the destination address is UNSPECIFIED addr,
317 * use the loopback addr, e.g ::1.
319 if (IN6_IS_ADDR_UNSPECIFIED(&sin6
->sin6_addr
))
320 sin6
->sin6_addr
= kin6addr_loopback
;
324 * XXX: in6_selectsrc might replace the bound local address
325 * with the address specified by setsockopt(IPV6_PKTINFO).
326 * Is it the intended behavior?
328 *plocal_addr6
= in6_selectsrc(sin6
, inp
->in6p_outputopts
,
331 &inp
->in6p_laddr
, &error
, td
);
332 if (*plocal_addr6
== NULL
) {
334 error
= EADDRNOTAVAIL
;
338 * Don't do pcblookup call here; return interface in
340 * and exit to caller, that will do the lookup.
344 if (inp
->in6p_route
.ro_rt
)
345 ifp
= inp
->in6p_route
.ro_rt
->rt_ifp
;
352 * Connect from a socket to a specified address.
353 * Both address and port must be specified in argument sin.
354 * If don't have a local address for this socket yet,
358 in6_pcbconnect(struct inpcb
*inp
, struct sockaddr
*nam
, struct thread
*td
)
360 struct in6_addr
*addr6
;
361 struct sockaddr_in6
*sin6
= (struct sockaddr_in6
*)nam
;
364 /* Reject v4-mapped address */
365 if (IN6_IS_ADDR_V4MAPPED(&sin6
->sin6_addr
))
366 return EADDRNOTAVAIL
;
369 * Call inner routine, to assign local interface address.
370 * in6_pcbladdr() may automatically fill in sin6_scope_id.
372 if ((error
= in6_pcbladdr(inp
, nam
, &addr6
, td
)) != 0)
375 if (in6_pcblookup_hash(inp
->inp_pcbinfo
, &sin6
->sin6_addr
,
377 IN6_IS_ADDR_UNSPECIFIED(&inp
->in6p_laddr
)
378 ? addr6
: &inp
->in6p_laddr
,
379 inp
->inp_lport
, 0, NULL
) != NULL
) {
382 if (IN6_IS_ADDR_UNSPECIFIED(&inp
->in6p_laddr
)) {
383 if (inp
->inp_lport
== 0) {
384 error
= in6_pcbbind(inp
, NULL
, td
);
388 inp
->in6p_laddr
= *addr6
;
390 inp
->in6p_faddr
= sin6
->sin6_addr
;
391 inp
->inp_fport
= sin6
->sin6_port
;
392 /* update flowinfo - draft-itojun-ipv6-flowlabel-api-00 */
393 inp
->in6p_flowinfo
&= ~IPV6_FLOWLABEL_MASK
;
394 if (inp
->in6p_flags
& IN6P_AUTOFLOWLABEL
)
395 inp
->in6p_flowinfo
|=
396 (htonl(ip6_flow_seq
++) & IPV6_FLOWLABEL_MASK
);
398 in_pcbinsconnhash(inp
);
403 in6_pcbdisconnect(struct inpcb
*inp
)
405 bzero((caddr_t
)&inp
->in6p_faddr
, sizeof(inp
->in6p_faddr
));
407 /* clear flowinfo - draft-itojun-ipv6-flowlabel-api-00 */
408 inp
->in6p_flowinfo
&= ~IPV6_FLOWLABEL_MASK
;
409 in_pcbremconnhash(inp
);
410 if (inp
->inp_socket
->so_state
& SS_NOFDREF
)
415 in6_pcbdetach(struct inpcb
*inp
)
417 struct socket
*so
= inp
->inp_socket
;
418 struct inpcbinfo
*ipi
= inp
->inp_pcbinfo
;
421 if (inp
->in6p_sp
!= NULL
)
422 ipsec6_delete_pcbpolicy(inp
);
424 inp
->inp_gencnt
= ++ipi
->ipi_gencnt
;
427 KKASSERT((so
->so_state
& SS_ASSERTINPROG
) == 0);
428 sofree(so
); /* remove pcb ref */
430 if (inp
->in6p_options
)
431 m_freem(inp
->in6p_options
);
432 ip6_freepcbopts(inp
->in6p_outputopts
);
433 ip6_freemoptions(inp
->in6p_moptions
);
434 if (inp
->in6p_route
.ro_rt
)
435 rtfree(inp
->in6p_route
.ro_rt
);
436 /* Check and free IPv4 related resources in case of mapped addr */
437 if (inp
->inp_options
)
438 m_free(inp
->inp_options
);
439 ip_freemoptions(inp
->inp_moptions
);
445 * The socket may have an invalid PCB, i.e. NULL. For example, a TCP
446 * socket received RST.
449 in6_setsockaddr(struct socket
*so
, struct sockaddr
**nam
)
452 struct sockaddr_in6
*sin6
;
454 KASSERT(curthread
->td_type
== TD_TYPE_NETISR
, ("not in netisr"));
459 sin6
= kmalloc(sizeof *sin6
, M_SONAME
, M_WAITOK
| M_ZERO
);
460 sin6
->sin6_family
= AF_INET6
;
461 sin6
->sin6_len
= sizeof(*sin6
);
462 sin6
->sin6_port
= inp
->inp_lport
;
463 sin6
->sin6_addr
= inp
->in6p_laddr
;
464 if (IN6_IS_SCOPE_LINKLOCAL(&sin6
->sin6_addr
))
465 sin6
->sin6_scope_id
= ntohs(sin6
->sin6_addr
.s6_addr16
[1]);
467 sin6
->sin6_scope_id
= 0; /*XXX*/
468 if (IN6_IS_SCOPE_LINKLOCAL(&sin6
->sin6_addr
))
469 sin6
->sin6_addr
.s6_addr16
[1] = 0;
471 *nam
= (struct sockaddr
*)sin6
;
476 in6_setsockaddr_dispatch(netmsg_t msg
)
480 error
= in6_setsockaddr(msg
->sockaddr
.base
.nm_so
, msg
->sockaddr
.nm_nam
);
481 lwkt_replymsg(&msg
->sockaddr
.base
.lmsg
, error
);
485 in6_setpeeraddr_dispatch(netmsg_t msg
)
489 error
= in6_setpeeraddr(msg
->peeraddr
.base
.nm_so
, msg
->peeraddr
.nm_nam
);
490 lwkt_replymsg(&msg
->peeraddr
.base
.lmsg
, error
);
494 * The socket may have an invalid PCB, i.e. NULL. For example, a TCP
495 * socket received RST.
498 in6_setpeeraddr(struct socket
*so
, struct sockaddr
**nam
)
501 struct sockaddr_in6
*sin6
;
503 KASSERT(curthread
->td_type
== TD_TYPE_NETISR
, ("not in netisr"));
508 sin6
= kmalloc(sizeof(*sin6
), M_SONAME
, M_WAITOK
| M_ZERO
);
509 sin6
->sin6_family
= AF_INET6
;
510 sin6
->sin6_len
= sizeof(struct sockaddr_in6
);
511 sin6
->sin6_port
= inp
->inp_fport
;
512 sin6
->sin6_addr
= inp
->in6p_faddr
;
513 if (IN6_IS_SCOPE_LINKLOCAL(&sin6
->sin6_addr
))
514 sin6
->sin6_scope_id
= ntohs(sin6
->sin6_addr
.s6_addr16
[1]);
516 sin6
->sin6_scope_id
= 0; /*XXX*/
517 if (IN6_IS_SCOPE_LINKLOCAL(&sin6
->sin6_addr
))
518 sin6
->sin6_addr
.s6_addr16
[1] = 0;
520 *nam
= (struct sockaddr
*)sin6
;
525 * Pass some notification to all connections of a protocol
526 * associated with address dst. The local address and/or port numbers
527 * may be specified to limit the search. The "usual action" will be
528 * taken, depending on the ctlinput cmd. The caller must filter any
529 * cmds that are uninteresting (e.g., no error in the map).
530 * Call the protocol specific routine (if any) to report
531 * any errors for each matching socket.
534 in6_pcbnotify(struct inpcbinfo
*pcbinfo
, struct sockaddr
*dst
, in_port_t fport
,
535 const struct sockaddr
*src
, in_port_t lport
, int cmd
, int arg
,
538 struct inpcb
*inp
, *marker
;
539 struct sockaddr_in6 sa6_src
, *sa6_dst
;
542 if ((unsigned)cmd
>= PRC_NCMDS
|| dst
->sa_family
!= AF_INET6
)
545 sa6_dst
= (struct sockaddr_in6
*)dst
;
546 if (IN6_IS_ADDR_UNSPECIFIED(&sa6_dst
->sin6_addr
))
550 * note that src can be NULL when we get notify by local fragmentation.
552 sa6_src
= (src
== NULL
) ? sa6_any
: *(const struct sockaddr_in6
*)src
;
553 flowinfo
= sa6_src
.sin6_flowinfo
;
556 * Redirects go to all references to the destination,
557 * and use in6_rtchange to invalidate the route cache.
558 * Dead host indications: also use in6_rtchange to invalidate
559 * the cache, and deliver the error to all the sockets.
560 * Otherwise, if we have knowledge of the local port and address,
561 * deliver only to that socket.
563 if (PRC_IS_REDIRECT(cmd
) || cmd
== PRC_HOSTDEAD
) {
566 bzero((caddr_t
)&sa6_src
.sin6_addr
, sizeof(sa6_src
.sin6_addr
));
568 if (cmd
!= PRC_HOSTDEAD
)
569 notify
= in6_rtchange
;
571 if (cmd
!= PRC_MSGSIZE
)
572 arg
= inet6ctlerrmap
[cmd
];
574 marker
= in_pcbmarker();
576 GET_PCBINFO_TOKEN(pcbinfo
);
578 LIST_INSERT_HEAD(&pcbinfo
->pcblisthead
, marker
, inp_list
);
579 while ((inp
= LIST_NEXT(marker
, inp_list
)) != NULL
) {
580 LIST_REMOVE(marker
, inp_list
);
581 LIST_INSERT_AFTER(inp
, marker
, inp_list
);
583 if (inp
->inp_flags
& INP_PLACEMARKER
)
586 if (!INP_ISIPV6(inp
))
589 * If the error designates a new path MTU for a destination
590 * and the application (associated with this socket) wanted to
591 * know the value, notify. Note that we notify for all
592 * disconnected sockets if the corresponding application
593 * wanted. This is because some UDP applications keep sending
594 * sockets disconnected.
595 * XXX: should we avoid to notify the value to TCP sockets?
597 if (cmd
== PRC_MSGSIZE
&& (inp
->inp_flags
& IN6P_MTU
) != 0 &&
598 (IN6_IS_ADDR_UNSPECIFIED(&inp
->in6p_faddr
) ||
599 IN6_ARE_ADDR_EQUAL(&inp
->in6p_faddr
, &sa6_dst
->sin6_addr
))) {
600 ip6_notify_pmtu(inp
, (struct sockaddr_in6
*)dst
, &arg
);
604 * Detect if we should notify the error. If no source and
605 * destination ports are specifed, but non-zero flowinfo and
606 * local address match, notify the error. This is the case
607 * when the error is delivered with an encrypted buffer
608 * by ESP. Otherwise, just compare addresses and ports
611 if (lport
== 0 && fport
== 0 && flowinfo
&&
612 inp
->inp_socket
!= NULL
&&
613 flowinfo
== (inp
->in6p_flowinfo
& IPV6_FLOWLABEL_MASK
) &&
614 IN6_ARE_ADDR_EQUAL(&inp
->in6p_laddr
, &sa6_src
.sin6_addr
))
616 else if (!IN6_ARE_ADDR_EQUAL(&inp
->in6p_faddr
,
617 &sa6_dst
->sin6_addr
) ||
618 inp
->inp_socket
== 0 ||
619 (lport
&& inp
->inp_lport
!= lport
) ||
620 (!IN6_IS_ADDR_UNSPECIFIED(&sa6_src
.sin6_addr
) &&
621 !IN6_ARE_ADDR_EQUAL(&inp
->in6p_laddr
,
622 &sa6_src
.sin6_addr
)) ||
623 (fport
&& inp
->inp_fport
!= fport
))
630 LIST_REMOVE(marker
, inp_list
);
632 REL_PCBINFO_TOKEN(pcbinfo
);
636 * Lookup a PCB based on the local address and port.
639 in6_pcblookup_local(struct inpcbporthead
*porthash
,
640 const struct in6_addr
*laddr
, u_int lport_arg
, int wild_okay
,
644 int matchwild
= 3, wildcard
;
645 u_short lport
= lport_arg
;
646 struct inpcbport
*phd
;
647 struct inpcb
*match
= NULL
;
650 * If the porthashbase is shared across several cpus, it must
653 ASSERT_PORTHASH_TOKEN_HELD(porthash
);
656 * Best fit PCB lookup.
658 * First see if this local port is in use by looking on the
661 LIST_FOREACH(phd
, porthash
, phd_hash
) {
662 if (phd
->phd_port
== lport
)
668 * Port is in use by one or more PCBs. Look for best
671 LIST_FOREACH(inp
, &phd
->phd_pcblist
, inp_portlist
) {
673 if (!INP_ISIPV6(inp
))
675 if (!IN6_IS_ADDR_UNSPECIFIED(&inp
->in6p_faddr
))
677 if (!IN6_IS_ADDR_UNSPECIFIED(&inp
->in6p_laddr
)) {
678 if (IN6_IS_ADDR_UNSPECIFIED(laddr
))
680 else if (!IN6_ARE_ADDR_EQUAL(
681 &inp
->in6p_laddr
, laddr
))
684 if (!IN6_IS_ADDR_UNSPECIFIED(laddr
))
687 if (wildcard
&& !wild_okay
)
689 if (wildcard
< matchwild
&&
692 inp
->inp_socket
->so_cred
->cr_prison
)) {
694 matchwild
= wildcard
;
698 matchwild
= wildcard
;
706 in6_pcbpurgeif0(struct inpcbinfo
*pcbinfo
, struct ifnet
*ifp
)
708 struct in6pcb
*in6p
, *marker
;
709 struct ip6_moptions
*im6o
;
710 struct in6_multi_mship
*imm
, *nimm
;
713 * We only need to make sure that we are in netisr0, where all
714 * multicast operation happen. We could check inpcbinfo which
715 * does not belong to netisr0 by holding the inpcbinfo's token.
716 * In this case, the pcbinfo must be able to be shared, i.e.
717 * pcbinfo->infotoken is not NULL.
720 KASSERT(pcbinfo
->cpu
== 0 || pcbinfo
->infotoken
!= NULL
,
721 ("pcbinfo could not be shared"));
724 * Get a marker for the current netisr (netisr0).
726 * It is possible that the multicast address deletion blocks,
727 * which could cause temporary token releasing. So we use
728 * inpcb marker here to get a coherent view of the inpcb list.
730 * While, on the other hand, moptions are only added and deleted
731 * in netisr0, so we would not see staled moption or miss moption
732 * even if the token was released due to the blocking multicast
735 marker
= in_pcbmarker();
737 GET_PCBINFO_TOKEN(pcbinfo
);
739 LIST_INSERT_HEAD(&pcbinfo
->pcblisthead
, marker
, inp_list
);
740 while ((in6p
= LIST_NEXT(marker
, inp_list
)) != NULL
) {
741 LIST_REMOVE(marker
, inp_list
);
742 LIST_INSERT_AFTER(in6p
, marker
, inp_list
);
744 if (in6p
->in6p_flags
& INP_PLACEMARKER
)
746 im6o
= in6p
->in6p_moptions
;
747 if (INP_ISIPV6(in6p
) && im6o
) {
749 * Unselect the outgoing interface if it is being
752 if (im6o
->im6o_multicast_ifp
== ifp
)
753 im6o
->im6o_multicast_ifp
= NULL
;
756 * Drop multicast group membership if we joined
757 * through the interface being detached.
758 * XXX controversial - is it really legal for kernel
761 for (imm
= im6o
->im6o_memberships
.lh_first
;
762 imm
!= NULL
; imm
= nimm
) {
763 nimm
= imm
->i6mm_chain
.le_next
;
764 if (imm
->i6mm_maddr
->in6m_ifp
== ifp
) {
765 LIST_REMOVE(imm
, i6mm_chain
);
766 in6_delmulti(imm
->i6mm_maddr
);
767 kfree(imm
, M_IPMADDR
);
772 LIST_REMOVE(marker
, inp_list
);
774 REL_PCBINFO_TOKEN(pcbinfo
);
778 * Check for alternatives when higher level complains
779 * about service problems. For now, invalidate cached
780 * routing information. If the route was created dynamically
781 * (by a redirect), time to try a default gateway again.
784 in6_losing(struct inpcb
*in6p
)
787 struct rt_addrinfo info
;
789 if ((rt
= in6p
->in6p_route
.ro_rt
) != NULL
) {
790 bzero((caddr_t
)&info
, sizeof(info
));
791 info
.rti_flags
= rt
->rt_flags
;
792 info
.rti_info
[RTAX_DST
] = rt_key(rt
);
793 info
.rti_info
[RTAX_GATEWAY
] = rt
->rt_gateway
;
794 info
.rti_info
[RTAX_NETMASK
] = rt_mask(rt
);
795 rt_missmsg(RTM_LOSING
, &info
, rt
->rt_flags
, 0);
796 if (rt
->rt_flags
& RTF_DYNAMIC
) {
797 rtrequest(RTM_DELETE
, rt_key(rt
), rt
->rt_gateway
,
798 rt_mask(rt
), rt
->rt_flags
, NULL
);
800 in6p
->in6p_route
.ro_rt
= NULL
;
803 * A new route can be allocated
804 * the next time output is attempted.
810 * After a routing change, flush old routing
811 * and allocate a (hopefully) better one.
814 in6_rtchange(struct inpcb
*inp
, int error
)
816 if (inp
->in6p_route
.ro_rt
) {
817 rtfree(inp
->in6p_route
.ro_rt
);
818 inp
->in6p_route
.ro_rt
= 0;
820 * A new route can be allocated the next time
821 * output is attempted.
827 * Lookup PCB in hash list.
830 in6_pcblookup_hash(struct inpcbinfo
*pcbinfo
, struct in6_addr
*faddr
,
831 u_int fport_arg
, struct in6_addr
*laddr
, u_int lport_arg
,
832 int wildcard
, struct ifnet
*ifp
)
834 struct inpcbhead
*head
;
836 struct inpcb
*jinp
= NULL
;
837 u_short fport
= fport_arg
, lport
= lport_arg
;
840 if (faithprefix_p
!= NULL
)
841 faith
= (*faithprefix_p
)(laddr
);
846 * First look for an exact match.
848 head
= &pcbinfo
->hashbase
[INP_PCBCONNHASH(faddr
->s6_addr32
[3] /* XXX */,
850 laddr
->s6_addr32
[3], /* XXX JH */
853 LIST_FOREACH(inp
, head
, inp_hash
) {
854 if (!INP_ISIPV6(inp
))
856 if (IN6_ARE_ADDR_EQUAL(&inp
->in6p_faddr
, faddr
) &&
857 IN6_ARE_ADDR_EQUAL(&inp
->in6p_laddr
, laddr
) &&
858 inp
->inp_fport
== fport
&&
859 inp
->inp_lport
== lport
) {
863 if (inp
->inp_socket
== NULL
||
864 inp
->inp_socket
->so_cred
->cr_prison
== NULL
) {
876 struct inpcontainerhead
*chead
;
877 struct inpcontainer
*ic
;
878 struct inpcb
*local_wild
= NULL
;
879 struct inpcb
*jinp_wild
= NULL
;
880 struct sockaddr_in6 jsin6
;
884 * Order of socket selection:
885 * 1. non-jailed, non-wild.
886 * 2. non-jailed, wild.
887 * 3. jailed, non-wild.
890 jsin6
.sin6_family
= AF_INET6
;
891 chead
= &pcbinfo
->wildcardhashbase
[INP_PCBWILDCARDHASH(lport
,
892 pcbinfo
->wildcardhashmask
)];
894 GET_PCBINFO_TOKEN(pcbinfo
);
895 LIST_FOREACH(ic
, chead
, ic_list
) {
897 if (inp
->inp_flags
& INP_PLACEMARKER
)
900 if (!INP_ISIPV6(inp
))
902 if (inp
->inp_socket
!= NULL
)
903 cred
= inp
->inp_socket
->so_cred
;
907 if (cred
!= NULL
&& jailed(cred
)) {
911 jsin6
.sin6_addr
= *laddr
;
912 if (!jailed_ip(cred
->cr_prison
,
913 (struct sockaddr
*)&jsin6
))
917 if (IN6_IS_ADDR_UNSPECIFIED(&inp
->in6p_faddr
) &&
918 inp
->inp_lport
== lport
) {
919 if (faith
&& (inp
->inp_flags
& INP_FAITH
) == 0)
921 if (IN6_ARE_ADDR_EQUAL(&inp
->in6p_laddr
,
923 if (cred
!= NULL
&& jailed(cred
)) {
926 REL_PCBINFO_TOKEN(pcbinfo
);
929 } else if (IN6_IS_ADDR_UNSPECIFIED(&inp
->in6p_laddr
)) {
930 if (cred
!= NULL
&& jailed(cred
))
937 REL_PCBINFO_TOKEN(pcbinfo
);
939 if (local_wild
!= NULL
)
953 init_sin6(struct sockaddr_in6
*sin6
, struct mbuf
*m
)
957 ip
= mtod(m
, struct ip6_hdr
*);
958 bzero(sin6
, sizeof(*sin6
));
959 sin6
->sin6_len
= sizeof(*sin6
);
960 sin6
->sin6_family
= AF_INET6
;
961 sin6
->sin6_addr
= ip
->ip6_src
;
962 if (IN6_IS_SCOPE_LINKLOCAL(&sin6
->sin6_addr
))
963 sin6
->sin6_addr
.s6_addr16
[1] = 0;
964 sin6
->sin6_scope_id
=
965 (m
->m_pkthdr
.rcvif
&& IN6_IS_SCOPE_LINKLOCAL(&sin6
->sin6_addr
))
966 ? m
->m_pkthdr
.rcvif
->if_index
: 0;
972 in6_savefaddr(struct socket
*so
, const struct sockaddr
*faddr
)
974 struct sockaddr_in6
*sin6
;
976 KASSERT(faddr
->sa_family
== AF_INET6
,
977 ("not AF_INET6 faddr %d", faddr
->sa_family
));
979 sin6
= kmalloc(sizeof(*sin6
), M_SONAME
, M_WAITOK
| M_ZERO
);
980 sin6
->sin6_family
= AF_INET6
;
981 sin6
->sin6_len
= sizeof(*sin6
);
983 sin6
->sin6_port
= ((const struct sockaddr_in6
*)faddr
)->sin6_port
;
984 sin6
->sin6_addr
= ((const struct sockaddr_in6
*)faddr
)->sin6_addr
;
986 if (IN6_IS_SCOPE_LINKLOCAL(&sin6
->sin6_addr
))
987 sin6
->sin6_scope_id
= ntohs(sin6
->sin6_addr
.s6_addr16
[1]);
989 sin6
->sin6_scope_id
= 0; /*XXX*/
990 if (IN6_IS_SCOPE_LINKLOCAL(&sin6
->sin6_addr
))
991 sin6
->sin6_addr
.s6_addr16
[1] = 0;
993 so
->so_faddr
= (struct sockaddr
*)sin6
;