master
1/*-
2 * SPDX-License-Identifier: BSD-3-Clause
3 *
4 * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
5 * All rights reserved.
6 *
7 * Redistribution and use in source and binary forms, with or without
8 * modification, are permitted provided that the following conditions
9 * are met:
10 * 1. Redistributions of source code must retain the above copyright
11 * notice, this list of conditions and the following disclaimer.
12 * 2. Redistributions in binary form must reproduce the above copyright
13 * notice, this list of conditions and the following disclaimer in the
14 * documentation and/or other materials provided with the distribution.
15 * 3. Neither the name of the project nor the names of its contributors
16 * may be used to endorse or promote products derived from this software
17 * without specific prior written permission.
18 *
19 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
20 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
21 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
22 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
23 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
24 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
25 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
26 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
27 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
28 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29 * SUCH DAMAGE.
30 *
31 * $KAME: ip6_var.h,v 1.62 2001/05/03 14:51:48 itojun Exp $
32 */
33
34/*-
35 * Copyright (c) 1982, 1986, 1993
36 * The Regents of the University of California. All rights reserved.
37 *
38 * Redistribution and use in source and binary forms, with or without
39 * modification, are permitted provided that the following conditions
40 * are met:
41 * 1. Redistributions of source code must retain the above copyright
42 * notice, this list of conditions and the following disclaimer.
43 * 2. Redistributions in binary form must reproduce the above copyright
44 * notice, this list of conditions and the following disclaimer in the
45 * documentation and/or other materials provided with the distribution.
46 * 3. Neither the name of the University nor the names of its contributors
47 * may be used to endorse or promote products derived from this software
48 * without specific prior written permission.
49 *
50 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
51 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
52 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
53 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
54 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
55 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
56 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
57 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
58 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
59 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
60 * SUCH DAMAGE.
61 *
62 * @(#)ip_var.h 8.1 (Berkeley) 6/10/93
63 */
64
65#ifndef _NETINET6_IP6_VAR_H_
66#define _NETINET6_IP6_VAR_H_
67
68#include <sys/epoch.h>
69
70#ifdef _KERNEL
71struct ip6asfrag; /* frag6.c */
72TAILQ_HEAD(ip6fraghead, ip6asfrag);
73
74/*
75 * IP6 reassembly queue structure. Each fragment
76 * being reassembled is attached to one of these structures.
77 */
78struct ip6q {
79 struct ip6fraghead ip6q_frags;
80 u_int32_t ip6q_ident;
81 u_int8_t ip6q_nxt;
82 u_int8_t ip6q_ecn;
83 u_int16_t ip6q_ttl;
84 struct in6_addr ip6q_src, ip6q_dst;
85 TAILQ_ENTRY(ip6q) ip6q_tq;
86 int ip6q_unfrglen; /* len of unfragmentable part */
87 int ip6q_nfrag; /* # of fragments */
88 struct label *ip6q_label;
89};
90#endif /* _KERNEL */
91
92/*
93 * IP6 reinjecting structure.
94 */
95struct ip6_direct_ctx {
96 uint32_t ip6dc_nxt; /* next header to process */
97 uint32_t ip6dc_off; /* offset to next header */
98};
99
100#if defined(_NETINET6_IN6_VAR_H_) && defined(_KERNEL)
101/*
102 * Structure attached to inpcb.in6p_moptions and
103 * passed to ip6_output when IPv6 multicast options are in use.
104 * This structure is lazy-allocated.
105 */
106struct ip6_moptions {
107 struct ifnet *im6o_multicast_ifp; /* ifp for outgoing multicasts */
108 u_char im6o_multicast_hlim; /* hoplimit for outgoing multicasts */
109 u_char im6o_multicast_loop; /* 1 >= hear sends if a member */
110 struct ip6_mfilter_head im6o_head; /* group membership list */
111};
112#else
113struct ip6_moptions;
114#endif
115/*
116 * Control options for outgoing packets
117 */
118
119/* Routing header related info */
120struct ip6po_rhinfo {
121 struct ip6_rthdr *ip6po_rhi_rthdr; /* Routing header */
122 struct route_in6 ip6po_rhi_route; /* Route to the 1st hop */
123};
124#define ip6po_rthdr ip6po_rhinfo.ip6po_rhi_rthdr
125#define ip6po_route ip6po_rhinfo.ip6po_rhi_route
126
127/* Nexthop related info */
128struct ip6po_nhinfo {
129 struct sockaddr *ip6po_nhi_nexthop;
130 struct route_in6 ip6po_nhi_route; /* Route to the nexthop */
131};
132#define ip6po_nexthop ip6po_nhinfo.ip6po_nhi_nexthop
133#define ip6po_nextroute ip6po_nhinfo.ip6po_nhi_route
134
135struct ip6_pktopts {
136 struct mbuf *ip6po_m; /* Pointer to mbuf storing the data */
137 int ip6po_hlim; /* Hoplimit for outgoing packets */
138
139 /* Outgoing IF/address information */
140 struct in6_pktinfo *ip6po_pktinfo;
141
142 /* Next-hop address information */
143 struct ip6po_nhinfo ip6po_nhinfo;
144
145 struct ip6_hbh *ip6po_hbh; /* Hop-by-Hop options header */
146
147 /* Destination options header (before a routing header) */
148 struct ip6_dest *ip6po_dest1;
149
150 /* Routing header related info. */
151 struct ip6po_rhinfo ip6po_rhinfo;
152
153 /* Destination options header (after a routing header) */
154 struct ip6_dest *ip6po_dest2;
155
156 int ip6po_tclass; /* traffic class */
157
158 int ip6po_minmtu; /* fragment vs PMTU discovery policy */
159#define IP6PO_MINMTU_MCASTONLY -1 /* default; send at min MTU for multicast*/
160#define IP6PO_MINMTU_DISABLE 0 /* always perform pmtu disc */
161#define IP6PO_MINMTU_ALL 1 /* always send at min MTU */
162
163 int ip6po_prefer_tempaddr; /* whether temporary addresses are
164 preferred as source address */
165#define IP6PO_TEMPADDR_SYSTEM -1 /* follow the system default */
166#define IP6PO_TEMPADDR_NOTPREFER 0 /* not prefer temporary address */
167#define IP6PO_TEMPADDR_PREFER 1 /* prefer temporary address */
168
169 int ip6po_flags;
170#if 0 /* parameters in this block is obsolete. do not reuse the values. */
171#define IP6PO_REACHCONF 0x01 /* upper-layer reachability confirmation. */
172#define IP6PO_MINMTU 0x02 /* use minimum MTU (IPV6_USE_MIN_MTU) */
173#endif
174#define IP6PO_DONTFRAG 0x04 /* disable fragmentation (IPV6_DONTFRAG) */
175#define IP6PO_USECOA 0x08 /* use care of address */
176};
177
178/*
179 * Control options for incoming packets
180 */
181
182struct ip6stat {
183 uint64_t ip6s_total; /* total packets received */
184 uint64_t ip6s_tooshort; /* packet too short */
185 uint64_t ip6s_toosmall; /* not enough data */
186 uint64_t ip6s_fragments; /* fragments received */
187 uint64_t ip6s_fragdropped; /* frags dropped(dups, out of space) */
188 uint64_t ip6s_fragtimeout; /* fragments timed out */
189 uint64_t ip6s_fragoverflow; /* fragments that exceeded limit */
190 uint64_t ip6s_forward; /* packets forwarded */
191 uint64_t ip6s_cantforward; /* packets rcvd for unreachable dest */
192 uint64_t ip6s_redirectsent; /* packets forwarded on same net */
193 uint64_t ip6s_delivered; /* datagrams delivered to upper level*/
194 uint64_t ip6s_localout; /* total ip packets generated here */
195 uint64_t ip6s_odropped; /* lost packets due to nobufs, etc. */
196 uint64_t ip6s_reassembled; /* total packets reassembled ok */
197 uint64_t ip6s_atomicfrags; /* atomic fragments */
198 uint64_t ip6s_fragmented; /* datagrams successfully fragmented */
199 uint64_t ip6s_ofragments; /* output fragments created */
200 uint64_t ip6s_cantfrag; /* don't fragment flag was set, etc. */
201 uint64_t ip6s_badoptions; /* error in option processing */
202 uint64_t ip6s_noroute; /* packets discarded due to no route */
203 uint64_t ip6s_badvers; /* ip6 version != 6 */
204 uint64_t ip6s_rawout; /* total raw ip packets generated */
205 uint64_t ip6s_badscope; /* scope error */
206 uint64_t ip6s_notmember; /* don't join this multicast group */
207#define IP6S_HDRCNT 256 /* headers count */
208 uint64_t ip6s_nxthist[IP6S_HDRCNT]; /* next header history */
209 uint64_t ip6s_m1; /* one mbuf */
210#define IP6S_M2MMAX 32
211 uint64_t ip6s_m2m[IP6S_M2MMAX]; /* two or more mbuf */
212 uint64_t ip6s_mext1; /* one ext mbuf */
213 uint64_t ip6s_mext2m; /* two or more ext mbuf */
214 uint64_t ip6s_exthdrtoolong; /* ext hdr are not contiguous */
215 uint64_t ip6s_nogif; /* no match gif found */
216 uint64_t ip6s_toomanyhdr; /* discarded due to too many headers */
217
218 /*
219 * statistics for improvement of the source address selection
220 * algorithm:
221 * XXX: hardcoded 16 = # of ip6 multicast scope types + 1
222 */
223#define IP6S_RULESMAX 16
224#define IP6S_SCOPECNT 16
225 /* number of times that address selection fails */
226 uint64_t ip6s_sources_none;
227 /* number of times that an address on the outgoing I/F is chosen */
228 uint64_t ip6s_sources_sameif[IP6S_SCOPECNT];
229 /* number of times that an address on a non-outgoing I/F is chosen */
230 uint64_t ip6s_sources_otherif[IP6S_SCOPECNT];
231 /*
232 * number of times that an address that has the same scope
233 * from the destination is chosen.
234 */
235 uint64_t ip6s_sources_samescope[IP6S_SCOPECNT];
236 /*
237 * number of times that an address that has a different scope
238 * from the destination is chosen.
239 */
240 uint64_t ip6s_sources_otherscope[IP6S_SCOPECNT];
241 /* number of times that a deprecated address is chosen */
242 uint64_t ip6s_sources_deprecated[IP6S_SCOPECNT];
243
244 /* number of times that each rule of source selection is applied. */
245 uint64_t ip6s_sources_rule[IP6S_RULESMAX];
246};
247
248#ifdef _KERNEL
249#include <sys/counter.h>
250
251VNET_PCPUSTAT_DECLARE(struct ip6stat, ip6stat);
252#define IP6STAT_ADD(name, val) \
253 VNET_PCPUSTAT_ADD(struct ip6stat, ip6stat, name, (val))
254#define IP6STAT_SUB(name, val) IP6STAT_ADD(name, -(val))
255#define IP6STAT_INC(name) IP6STAT_ADD(name, 1)
256#define IP6STAT_DEC(name) IP6STAT_SUB(name, 1)
257#endif
258
259#ifdef _KERNEL
260/* flags passed to ip6_output as last parameter */
261#define IPV6_UNSPECSRC 0x01 /* allow :: as the source address */
262#define IPV6_FORWARDING 0x02 /* most of IPv6 header exists */
263#define IPV6_MINMTU 0x04 /* use minimum MTU (IPV6_USE_MIN_MTU) */
264
265#ifdef __NO_STRICT_ALIGNMENT
266#define IP6_HDR_ALIGNED_P(ip) 1
267#else
268#define IP6_HDR_ALIGNED_P(ip) ((((intptr_t) (ip)) & 3) == 0)
269#endif
270
271VNET_DECLARE(int, ip6_defhlim); /* default hop limit */
272VNET_DECLARE(int, ip6_defmcasthlim); /* default multicast hop limit */
273VNET_DECLARE(int, ip6_forwarding); /* act as router? */
274VNET_DECLARE(int, ip6_use_deprecated); /* allow deprecated addr as source */
275VNET_DECLARE(int, ip6_rr_prune); /* router renumbering prefix
276 * walk list every 5 sec. */
277VNET_DECLARE(int, ip6_mcast_pmtu); /* enable pMTU discovery for multicast? */
278VNET_DECLARE(int, ip6_v6only);
279#define V_ip6_defhlim VNET(ip6_defhlim)
280#define V_ip6_defmcasthlim VNET(ip6_defmcasthlim)
281#define V_ip6_forwarding VNET(ip6_forwarding)
282#define V_ip6_use_deprecated VNET(ip6_use_deprecated)
283#define V_ip6_rr_prune VNET(ip6_rr_prune)
284#define V_ip6_mcast_pmtu VNET(ip6_mcast_pmtu)
285#define V_ip6_v6only VNET(ip6_v6only)
286
287VNET_DECLARE(struct socket *, ip6_mrouter); /* multicast routing daemon */
288VNET_DECLARE(int, ip6_sendredirects); /* send IP redirects when forwarding? */
289VNET_DECLARE(int, ip6_accept_rtadv); /* Acts as a host not a router */
290VNET_DECLARE(int, ip6_no_radr); /* No defroute from RA */
291VNET_DECLARE(int, ip6_norbit_raif); /* Disable R-bit in NA on RA
292 * receiving IF. */
293VNET_DECLARE(int, ip6_rfc6204w3); /* Accept defroute from RA even when
294 forwarding enabled */
295VNET_DECLARE(int, ip6_hdrnestlimit); /* upper limit of # of extension
296 * headers */
297VNET_DECLARE(int, ip6_dad_count); /* DupAddrDetectionTransmits */
298#define V_ip6_mrouter VNET(ip6_mrouter)
299#define V_ip6_sendredirects VNET(ip6_sendredirects)
300#define V_ip6_accept_rtadv VNET(ip6_accept_rtadv)
301#define V_ip6_no_radr VNET(ip6_no_radr)
302#define V_ip6_norbit_raif VNET(ip6_norbit_raif)
303#define V_ip6_rfc6204w3 VNET(ip6_rfc6204w3)
304#define V_ip6_hdrnestlimit VNET(ip6_hdrnestlimit)
305#define V_ip6_dad_count VNET(ip6_dad_count)
306
307VNET_DECLARE(int, ip6_auto_flowlabel);
308VNET_DECLARE(int, ip6_auto_linklocal);
309#define V_ip6_auto_flowlabel VNET(ip6_auto_flowlabel)
310#define V_ip6_auto_linklocal VNET(ip6_auto_linklocal)
311
312VNET_DECLARE(int, ip6_use_tempaddr); /* Whether to use temporary addresses */
313VNET_DECLARE(int, ip6_prefer_tempaddr); /* Whether to prefer temporary
314 * addresses in the source address
315 * selection */
316#define V_ip6_use_tempaddr VNET(ip6_use_tempaddr)
317#define V_ip6_prefer_tempaddr VNET(ip6_prefer_tempaddr)
318
319VNET_DECLARE(int, ip6_use_defzone); /* Whether to use the default scope
320 * zone when unspecified */
321#define V_ip6_use_defzone VNET(ip6_use_defzone)
322
323VNET_DECLARE(struct pfil_head *, inet6_pfil_head);
324#define V_inet6_pfil_head VNET(inet6_pfil_head)
325#define PFIL_INET6_NAME "inet6"
326
327VNET_DECLARE(struct pfil_head *, inet6_local_pfil_head);
328#define V_inet6_local_pfil_head VNET(inet6_local_pfil_head)
329#define PFIL_INET6_LOCAL_NAME "inet6-local"
330
331#ifdef IPSTEALTH
332VNET_DECLARE(int, ip6stealth);
333#define V_ip6stealth VNET(ip6stealth)
334#endif
335
336VNET_DECLARE(bool, ip6_log_cannot_forward);
337#define V_ip6_log_cannot_forward VNET(ip6_log_cannot_forward)
338
339extern struct pr_usrreqs rip6_usrreqs;
340struct sockopt;
341
342struct inpcb;
343struct ucred;
344
345int icmp6_ctloutput(struct socket *, struct sockopt *sopt);
346
347void ip6_input(struct mbuf *);
348void ip6_direct_input(struct mbuf *);
349void ip6_freepcbopts(struct ip6_pktopts *);
350
351int ip6_unknown_opt(u_int8_t *, struct mbuf *, int);
352int ip6_get_prevhdr(const struct mbuf *, int);
353int ip6_nexthdr(const struct mbuf *, int, int, int *);
354int ip6_lasthdr(const struct mbuf *, int, int, int *);
355
356extern int (*ip6_mforward)(struct ip6_hdr *, struct ifnet *,
357 struct mbuf *);
358
359int ip6_process_hopopts(struct mbuf *, u_int8_t *, int, u_int32_t *,
360 u_int32_t *);
361struct mbuf **ip6_savecontrol_v4(struct inpcb *, struct mbuf *,
362 struct mbuf **, int *);
363void ip6_savecontrol(struct inpcb *, struct mbuf *, struct mbuf **);
364void ip6_notify_pmtu(struct inpcb *, struct sockaddr_in6 *, u_int32_t);
365int ip6_sysctl(int *, u_int, void *, size_t *, void *, size_t);
366
367void ip6_forward(struct mbuf *, int);
368
369void ip6_mloopback(struct ifnet *, struct mbuf *);
370int ip6_output(struct mbuf *, struct ip6_pktopts *,
371 struct route_in6 *,
372 int,
373 struct ip6_moptions *, struct ifnet **,
374 struct inpcb *);
375int ip6_ctloutput(struct socket *, struct sockopt *);
376int ip6_raw_ctloutput(struct socket *, struct sockopt *);
377void ip6_initpktopts(struct ip6_pktopts *);
378int ip6_setpktopts(struct mbuf *, struct ip6_pktopts *,
379 struct ip6_pktopts *, struct ucred *, int);
380void ip6_clearpktopts(struct ip6_pktopts *, int);
381struct ip6_pktopts *ip6_copypktopts(struct ip6_pktopts *, int);
382int ip6_optlen(struct inpcb *);
383int ip6_deletefraghdr(struct mbuf *, int, int);
384int ip6_fragment(struct ifnet *, struct mbuf *, int, u_char, int,
385 uint32_t);
386
387int route6_input(struct mbuf **, int *, int);
388
389void frag6_init(void);
390void frag6_destroy(void);
391int frag6_input(struct mbuf **, int *, int);
392void frag6_drain(void);
393
394void rip6_init(void);
395int rip6_ctloutput(struct socket *, struct sockopt *);
396int rip6_usrreq(struct socket *,
397 int, struct mbuf *, struct mbuf *, struct mbuf *, struct thread *);
398
399int dest6_input(struct mbuf **, int *, int);
400int none_input(struct mbuf **, int *, int);
401
402int in6_selectsrc_socket(struct sockaddr_in6 *, struct ip6_pktopts *,
403 struct inpcb *, struct ucred *, int, struct in6_addr *, int *);
404int in6_selectsrc_addr(uint32_t, const struct in6_addr *,
405 uint32_t, struct ifnet *, struct in6_addr *, int *);
406int in6_selectroute(struct sockaddr_in6 *, struct ip6_pktopts *,
407 struct ip6_moptions *, struct route_in6 *, struct ifnet **,
408 struct nhop_object **, u_int, uint32_t);
409u_int32_t ip6_randomid(void);
410u_int32_t ip6_randomflowlabel(void);
411void in6_delayed_cksum(struct mbuf *m, uint32_t plen, u_short offset);
412
413int ip6_log_ratelimit(void);
414
415/*
416 * Argument type for the last arg of ip6proto_ctlinput_t().
417 *
418 * IPv6 ICMP IPv6 [exthdrs] finalhdr payload
419 * ^ ^ ^ ^
420 * | | ip6c_ip6 ip6c_off
421 * | ip6c_icmp6
422 * ip6c_m
423 *
424 * ip6c_finaldst's sin6_addr usually points to ip6c_ip6->ip6_dst. If the
425 * original * (internal) packet carries a routing header, it may point the
426 * final * destination address in the routing header.
427 *
428 * ip6c_src: ip6c_ip6->ip6_src + scope info + flowlabel in ip6c_ip6
429 * (beware of flowlabel, if you try to compare it against others)
430 * ip6c_dst: ip6c_finaldst + scope info
431 */
432struct ip6ctlparam {
433 struct mbuf *ip6c_m; /* start of mbuf chain */
434 struct icmp6_hdr *ip6c_icmp6; /* icmp6 header of target packet */
435 struct ip6_hdr *ip6c_ip6; /* ip6 header of target packet */
436 int ip6c_off; /* offset of the target proto header */
437 struct sockaddr_in6 *ip6c_src; /* srcaddr w/ additional info */
438 struct sockaddr_in6 *ip6c_dst; /* (final) dstaddr w/ additional info */
439 struct sockaddr_in6 *ip6c_finaldst; /* final destination address */
440 void *ip6c_cmdarg; /* control command dependent data */
441 u_int8_t ip6c_nxt; /* final next header field */
442};
443
444typedef int ip6proto_input_t(struct mbuf **, int *, int);
445typedef void ip6proto_ctlinput_t(struct ip6ctlparam *);
446int ip6proto_register(uint8_t, ip6proto_input_t, ip6proto_ctlinput_t);
447int ip6proto_unregister(uint8_t);
448#define IP6PROTO_REGISTER(prot, input, ctl) do { \
449 int error __diagused; \
450 error = ip6proto_register(prot, input, ctl); \
451 MPASS(error == 0); \
452} while (0)
453
454ip6proto_input_t rip6_input;
455ip6proto_ctlinput_t rip6_ctlinput;
456
457#endif /* _KERNEL */
458
459#endif /* !_NETINET6_IP6_VAR_H_ */