2 * SPDX-License-Identifier: BSD-3-Clause
4 * Copyright (c) 2001-2007, by Cisco Systems, Inc. All rights reserved.
5 * Copyright (c) 2008-2012, by Randall Stewart. All rights reserved.
6 * Copyright (c) 2008-2012, by Michael Tuexen. All rights reserved.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions are met:
11 * a) Redistributions of source code must retain the above copyright notice,
12 * this list of conditions and the following disclaimer.
14 * b) Redistributions in binary form must reproduce the above copyright
15 * notice, this list of conditions and the following disclaimer in
16 * the documentation and/or other materials provided with the distribution.
18 * c) Neither the name of Cisco Systems, Inc. nor the names of its
19 * contributors may be used to endorse or promote products derived
20 * from this software without specific prior written permission.
22 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
23 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,
24 * THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
25 * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE
26 * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
27 * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
28 * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
29 * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
30 * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
31 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF
32 * THE POSSIBILITY OF SUCH DAMAGE.
35 #include <sys/cdefs.h>
36 __FBSDID("$FreeBSD$");
38 #include <netinet/sctp_os.h>
39 #include <netinet/sctp_var.h>
40 #include <netinet/sctp_sysctl.h>
41 #include <netinet/sctp_pcb.h>
42 #include <netinet/sctp_header.h>
43 #include <netinet/sctputil.h>
44 #include <netinet/sctp_output.h>
45 #include <netinet/sctp_asconf.h>
46 #include <netinet/sctp_timer.h>
50 * SCTP_DEBUG_ASCONF1: protocol info, general info and errors
51 * SCTP_DEBUG_ASCONF2: detailed info
58 * An ASCONF parameter queue exists per asoc which holds the pending address
59 * operations. Lists are updated upon receipt of ASCONF-ACK.
61 * A restricted_addrs list exists per assoc to hold local addresses that are
62 * not (yet) usable by the assoc as a source address. These addresses are
63 * either pending an ASCONF operation (and exist on the ASCONF parameter
64 * queue), or they are permanently restricted (the peer has returned an
65 * ERROR indication to an ASCONF(ADD), or the peer does not support ASCONF).
67 * Deleted addresses are always immediately removed from the lists as they will
68 * (shortly) no longer exist in the kernel. We send ASCONFs as a courtesy,
73 * ASCONF parameter processing.
74 * response_required: set if a reply is required (eg. SUCCESS_REPORT).
75 * returns a mbuf to an "error" response parameter or NULL/"success" if ok.
76 * FIX: allocating this many mbufs on the fly is pretty inefficient...
79 sctp_asconf_success_response(uint32_t id)
81 struct mbuf *m_reply = NULL;
82 struct sctp_asconf_paramhdr *aph;
84 m_reply = sctp_get_mbuf_for_msg(sizeof(struct sctp_asconf_paramhdr),
85 0, M_NOWAIT, 1, MT_DATA);
86 if (m_reply == NULL) {
87 SCTPDBG(SCTP_DEBUG_ASCONF1,
88 "asconf_success_response: couldn't get mbuf!\n");
91 aph = mtod(m_reply, struct sctp_asconf_paramhdr *);
92 aph->correlation_id = id;
93 aph->ph.param_type = htons(SCTP_SUCCESS_REPORT);
94 aph->ph.param_length = sizeof(struct sctp_asconf_paramhdr);
95 SCTP_BUF_LEN(m_reply) = aph->ph.param_length;
96 aph->ph.param_length = htons(aph->ph.param_length);
102 sctp_asconf_error_response(uint32_t id, uint16_t cause, uint8_t *error_tlv,
105 struct mbuf *m_reply = NULL;
106 struct sctp_asconf_paramhdr *aph;
107 struct sctp_error_cause *error;
110 m_reply = sctp_get_mbuf_for_msg((sizeof(struct sctp_asconf_paramhdr) +
112 sizeof(struct sctp_error_cause)),
113 0, M_NOWAIT, 1, MT_DATA);
114 if (m_reply == NULL) {
115 SCTPDBG(SCTP_DEBUG_ASCONF1,
116 "asconf_error_response: couldn't get mbuf!\n");
119 aph = mtod(m_reply, struct sctp_asconf_paramhdr *);
120 error = (struct sctp_error_cause *)(aph + 1);
122 aph->correlation_id = id;
123 aph->ph.param_type = htons(SCTP_ERROR_CAUSE_IND);
124 error->code = htons(cause);
125 error->length = tlv_length + sizeof(struct sctp_error_cause);
126 aph->ph.param_length = error->length +
127 sizeof(struct sctp_asconf_paramhdr);
129 if (aph->ph.param_length > MLEN) {
130 SCTPDBG(SCTP_DEBUG_ASCONF1,
131 "asconf_error_response: tlv_length (%xh) too big\n",
133 sctp_m_freem(m_reply); /* discard */
136 if (error_tlv != NULL) {
137 tlv = (uint8_t *)(error + 1);
138 memcpy(tlv, error_tlv, tlv_length);
140 SCTP_BUF_LEN(m_reply) = aph->ph.param_length;
141 error->length = htons(error->length);
142 aph->ph.param_length = htons(aph->ph.param_length);
148 sctp_process_asconf_add_ip(struct sockaddr *src, struct sctp_asconf_paramhdr *aph,
149 struct sctp_tcb *stcb, int send_hb, int response_required)
151 struct sctp_nets *net;
152 struct mbuf *m_reply = NULL;
153 union sctp_sockstore store;
154 struct sctp_paramhdr *ph;
155 uint16_t param_type, aparam_length;
156 #if defined(INET) || defined(INET6)
157 uint16_t param_length;
160 int zero_address = 0;
163 struct sockaddr_in *sin;
164 struct sctp_ipv4addr_param *v4addr;
167 struct sockaddr_in6 *sin6;
168 struct sctp_ipv6addr_param *v6addr;
171 aparam_length = ntohs(aph->ph.param_length);
172 ph = (struct sctp_paramhdr *)(aph + 1);
173 param_type = ntohs(ph->param_type);
174 #if defined(INET) || defined(INET6)
175 param_length = ntohs(ph->param_length);
178 switch (param_type) {
180 case SCTP_IPV4_ADDRESS:
181 if (param_length != sizeof(struct sctp_ipv4addr_param)) {
182 /* invalid param size */
185 v4addr = (struct sctp_ipv4addr_param *)ph;
187 memset(sin, 0, sizeof(*sin));
188 sin->sin_family = AF_INET;
189 sin->sin_len = sizeof(struct sockaddr_in);
190 sin->sin_port = stcb->rport;
191 sin->sin_addr.s_addr = v4addr->addr;
192 if ((sin->sin_addr.s_addr == INADDR_BROADCAST) ||
193 IN_MULTICAST(ntohl(sin->sin_addr.s_addr))) {
196 if (sin->sin_addr.s_addr == INADDR_ANY)
198 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_add_ip: adding ");
199 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
203 case SCTP_IPV6_ADDRESS:
204 if (param_length != sizeof(struct sctp_ipv6addr_param)) {
205 /* invalid param size */
208 v6addr = (struct sctp_ipv6addr_param *)ph;
210 memset(sin6, 0, sizeof(*sin6));
211 sin6->sin6_family = AF_INET6;
212 sin6->sin6_len = sizeof(struct sockaddr_in6);
213 sin6->sin6_port = stcb->rport;
214 memcpy((caddr_t)&sin6->sin6_addr, v6addr->addr,
215 sizeof(struct in6_addr));
216 if (IN6_IS_ADDR_MULTICAST(&sin6->sin6_addr)) {
219 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr))
221 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_add_ip: adding ");
222 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
226 m_reply = sctp_asconf_error_response(aph->correlation_id,
227 SCTP_CAUSE_INVALID_PARAM, (uint8_t *)aph,
232 /* if 0.0.0.0/::0, add the source address instead */
233 if (zero_address && SCTP_BASE_SYSCTL(sctp_nat_friendly)) {
235 SCTPDBG(SCTP_DEBUG_ASCONF1,
236 "process_asconf_add_ip: using source addr ");
237 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, src);
239 /* add the address */
241 m_reply = sctp_asconf_error_response(aph->correlation_id,
242 SCTP_CAUSE_INVALID_PARAM, (uint8_t *)aph,
244 } else if (sctp_add_remote_addr(stcb, sa, &net, stcb->asoc.port,
246 SCTP_ADDR_DYNAMIC_ADDED) != 0) {
247 SCTPDBG(SCTP_DEBUG_ASCONF1,
248 "process_asconf_add_ip: error adding address\n");
249 m_reply = sctp_asconf_error_response(aph->correlation_id,
250 SCTP_CAUSE_RESOURCE_SHORTAGE, (uint8_t *)aph,
253 /* notify upper layer */
254 sctp_ulp_notify(SCTP_NOTIFY_ASCONF_ADD_IP, stcb, 0, sa, SCTP_SO_NOT_LOCKED);
255 if (response_required) {
257 sctp_asconf_success_response(aph->correlation_id);
259 sctp_timer_start(SCTP_TIMER_TYPE_PATHMTURAISE, stcb->sctp_ep, stcb, net);
260 sctp_timer_start(SCTP_TIMER_TYPE_HEARTBEAT, stcb->sctp_ep,
263 sctp_send_hb(stcb, net, SCTP_SO_NOT_LOCKED);
270 sctp_asconf_del_remote_addrs_except(struct sctp_tcb *stcb, struct sockaddr *src)
272 struct sctp_nets *src_net, *net;
274 /* make sure the source address exists as a destination net */
275 src_net = sctp_findnet(stcb, src);
276 if (src_net == NULL) {
281 /* delete all destination addresses except the source */
282 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
283 if (net != src_net) {
284 /* delete this address */
285 sctp_remove_net(stcb, net);
286 SCTPDBG(SCTP_DEBUG_ASCONF1,
287 "asconf_del_remote_addrs_except: deleting ");
288 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1,
289 (struct sockaddr *)&net->ro._l_addr);
290 /* notify upper layer */
291 sctp_ulp_notify(SCTP_NOTIFY_ASCONF_DELETE_IP, stcb, 0,
292 (struct sockaddr *)&net->ro._l_addr, SCTP_SO_NOT_LOCKED);
299 sctp_process_asconf_delete_ip(struct sockaddr *src,
300 struct sctp_asconf_paramhdr *aph,
301 struct sctp_tcb *stcb, int response_required)
303 struct mbuf *m_reply = NULL;
304 union sctp_sockstore store;
305 struct sctp_paramhdr *ph;
306 uint16_t param_type, aparam_length;
307 #if defined(INET) || defined(INET6)
308 uint16_t param_length;
311 int zero_address = 0;
314 struct sockaddr_in *sin;
315 struct sctp_ipv4addr_param *v4addr;
318 struct sockaddr_in6 *sin6;
319 struct sctp_ipv6addr_param *v6addr;
322 aparam_length = ntohs(aph->ph.param_length);
323 ph = (struct sctp_paramhdr *)(aph + 1);
324 param_type = ntohs(ph->param_type);
325 #if defined(INET) || defined(INET6)
326 param_length = ntohs(ph->param_length);
329 switch (param_type) {
331 case SCTP_IPV4_ADDRESS:
332 if (param_length != sizeof(struct sctp_ipv4addr_param)) {
333 /* invalid param size */
336 v4addr = (struct sctp_ipv4addr_param *)ph;
338 memset(sin, 0, sizeof(*sin));
339 sin->sin_family = AF_INET;
340 sin->sin_len = sizeof(struct sockaddr_in);
341 sin->sin_port = stcb->rport;
342 sin->sin_addr.s_addr = v4addr->addr;
343 if (sin->sin_addr.s_addr == INADDR_ANY)
345 SCTPDBG(SCTP_DEBUG_ASCONF1,
346 "process_asconf_delete_ip: deleting ");
347 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
351 case SCTP_IPV6_ADDRESS:
352 if (param_length != sizeof(struct sctp_ipv6addr_param)) {
353 /* invalid param size */
356 v6addr = (struct sctp_ipv6addr_param *)ph;
358 memset(sin6, 0, sizeof(*sin6));
359 sin6->sin6_family = AF_INET6;
360 sin6->sin6_len = sizeof(struct sockaddr_in6);
361 sin6->sin6_port = stcb->rport;
362 memcpy(&sin6->sin6_addr, v6addr->addr,
363 sizeof(struct in6_addr));
364 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr))
366 SCTPDBG(SCTP_DEBUG_ASCONF1,
367 "process_asconf_delete_ip: deleting ");
368 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
372 m_reply = sctp_asconf_error_response(aph->correlation_id,
373 SCTP_CAUSE_UNRESOLVABLE_ADDR, (uint8_t *)aph,
378 /* make sure the source address is not being deleted */
379 if (sctp_cmpaddr(sa, src)) {
380 /* trying to delete the source address! */
381 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_delete_ip: tried to delete source addr\n");
382 m_reply = sctp_asconf_error_response(aph->correlation_id,
383 SCTP_CAUSE_DELETING_SRC_ADDR, (uint8_t *)aph,
388 /* if deleting 0.0.0.0/::0, delete all addresses except src addr */
389 if (zero_address && SCTP_BASE_SYSCTL(sctp_nat_friendly)) {
390 result = sctp_asconf_del_remote_addrs_except(stcb, src);
393 /* src address did not exist? */
394 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_delete_ip: src addr does not exist?\n");
395 /* what error to reply with?? */
397 sctp_asconf_error_response(aph->correlation_id,
398 SCTP_CAUSE_REQUEST_REFUSED, (uint8_t *)aph,
400 } else if (response_required) {
402 sctp_asconf_success_response(aph->correlation_id);
407 /* delete the address */
408 result = sctp_del_remote_addr(stcb, sa);
410 * note if result == -2, the address doesn't exist in the asoc but
411 * since it's being deleted anyways, we just ack the delete -- but
412 * this probably means something has already gone awry
415 /* only one address in the asoc */
416 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_delete_ip: tried to delete last IP addr!\n");
417 m_reply = sctp_asconf_error_response(aph->correlation_id,
418 SCTP_CAUSE_DELETING_LAST_ADDR, (uint8_t *)aph,
421 if (response_required) {
422 m_reply = sctp_asconf_success_response(aph->correlation_id);
424 /* notify upper layer */
425 sctp_ulp_notify(SCTP_NOTIFY_ASCONF_DELETE_IP, stcb, 0, sa, SCTP_SO_NOT_LOCKED);
431 sctp_process_asconf_set_primary(struct sockaddr *src,
432 struct sctp_asconf_paramhdr *aph,
433 struct sctp_tcb *stcb, int response_required)
435 struct mbuf *m_reply = NULL;
436 union sctp_sockstore store;
437 struct sctp_paramhdr *ph;
438 uint16_t param_type, aparam_length;
439 #if defined(INET) || defined(INET6)
440 uint16_t param_length;
443 int zero_address = 0;
445 struct sockaddr_in *sin;
446 struct sctp_ipv4addr_param *v4addr;
449 struct sockaddr_in6 *sin6;
450 struct sctp_ipv6addr_param *v6addr;
453 aparam_length = ntohs(aph->ph.param_length);
454 ph = (struct sctp_paramhdr *)(aph + 1);
455 param_type = ntohs(ph->param_type);
456 #if defined(INET) || defined(INET6)
457 param_length = ntohs(ph->param_length);
460 switch (param_type) {
462 case SCTP_IPV4_ADDRESS:
463 if (param_length != sizeof(struct sctp_ipv4addr_param)) {
464 /* invalid param size */
467 v4addr = (struct sctp_ipv4addr_param *)ph;
469 memset(sin, 0, sizeof(*sin));
470 sin->sin_family = AF_INET;
471 sin->sin_len = sizeof(struct sockaddr_in);
472 sin->sin_addr.s_addr = v4addr->addr;
473 if (sin->sin_addr.s_addr == INADDR_ANY)
475 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_set_primary: ");
476 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
480 case SCTP_IPV6_ADDRESS:
481 if (param_length != sizeof(struct sctp_ipv6addr_param)) {
482 /* invalid param size */
485 v6addr = (struct sctp_ipv6addr_param *)ph;
487 memset(sin6, 0, sizeof(*sin6));
488 sin6->sin6_family = AF_INET6;
489 sin6->sin6_len = sizeof(struct sockaddr_in6);
490 memcpy((caddr_t)&sin6->sin6_addr, v6addr->addr,
491 sizeof(struct in6_addr));
492 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr))
494 SCTPDBG(SCTP_DEBUG_ASCONF1, "process_asconf_set_primary: ");
495 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
499 m_reply = sctp_asconf_error_response(aph->correlation_id,
500 SCTP_CAUSE_UNRESOLVABLE_ADDR, (uint8_t *)aph,
505 /* if 0.0.0.0/::0, use the source address instead */
506 if (zero_address && SCTP_BASE_SYSCTL(sctp_nat_friendly)) {
508 SCTPDBG(SCTP_DEBUG_ASCONF1,
509 "process_asconf_set_primary: using source addr ");
510 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, src);
512 /* set the primary address */
513 if (sctp_set_primary_addr(stcb, sa, NULL) == 0) {
514 SCTPDBG(SCTP_DEBUG_ASCONF1,
515 "process_asconf_set_primary: primary address set\n");
516 /* notify upper layer */
517 sctp_ulp_notify(SCTP_NOTIFY_ASCONF_SET_PRIMARY, stcb, 0, sa, SCTP_SO_NOT_LOCKED);
518 if ((stcb->asoc.primary_destination->dest_state & SCTP_ADDR_REACHABLE) &&
519 (!(stcb->asoc.primary_destination->dest_state & SCTP_ADDR_PF)) &&
520 (stcb->asoc.alternate)) {
521 sctp_free_remote_addr(stcb->asoc.alternate);
522 stcb->asoc.alternate = NULL;
524 if (response_required) {
525 m_reply = sctp_asconf_success_response(aph->correlation_id);
528 * Mobility adaptation. Ideally, when the reception of SET
529 * PRIMARY with DELETE IP ADDRESS of the previous primary
530 * destination, unacknowledged DATA are retransmitted
531 * immediately to the new primary destination for seamless
532 * handover. If the destination is UNCONFIRMED and marked to
533 * REQ_PRIM, The retransmission occur when reception of the
534 * HEARTBEAT-ACK. (See sctp_handle_heartbeat_ack in
535 * sctp_input.c) Also, when change of the primary
536 * destination, it is better that all subsequent new DATA
537 * containing already queued DATA are transmitted to the new
538 * primary destination. (by micchie)
540 if ((sctp_is_mobility_feature_on(stcb->sctp_ep,
541 SCTP_MOBILITY_BASE) ||
542 sctp_is_mobility_feature_on(stcb->sctp_ep,
543 SCTP_MOBILITY_FASTHANDOFF)) &&
544 sctp_is_mobility_feature_on(stcb->sctp_ep,
545 SCTP_MOBILITY_PRIM_DELETED) &&
546 (stcb->asoc.primary_destination->dest_state &
547 SCTP_ADDR_UNCONFIRMED) == 0) {
549 sctp_timer_stop(SCTP_TIMER_TYPE_PRIM_DELETED,
550 stcb->sctp_ep, stcb, NULL,
551 SCTP_FROM_SCTP_ASCONF + SCTP_LOC_1);
552 if (sctp_is_mobility_feature_on(stcb->sctp_ep,
553 SCTP_MOBILITY_FASTHANDOFF)) {
554 sctp_assoc_immediate_retrans(stcb,
555 stcb->asoc.primary_destination);
557 if (sctp_is_mobility_feature_on(stcb->sctp_ep,
558 SCTP_MOBILITY_BASE)) {
559 sctp_move_chunks_from_net(stcb,
560 stcb->asoc.deleted_primary);
562 sctp_delete_prim_timer(stcb->sctp_ep, stcb,
563 stcb->asoc.deleted_primary);
566 /* couldn't set the requested primary address! */
567 SCTPDBG(SCTP_DEBUG_ASCONF1,
568 "process_asconf_set_primary: set primary failed!\n");
569 /* must have been an invalid address, so report */
570 m_reply = sctp_asconf_error_response(aph->correlation_id,
571 SCTP_CAUSE_UNRESOLVABLE_ADDR, (uint8_t *)aph,
579 * handles an ASCONF chunk.
580 * if all parameters are processed ok, send a plain (empty) ASCONF-ACK
583 sctp_handle_asconf(struct mbuf *m, unsigned int offset,
584 struct sockaddr *src,
585 struct sctp_asconf_chunk *cp, struct sctp_tcb *stcb,
588 struct sctp_association *asoc;
590 struct mbuf *n, *m_ack, *m_result, *m_tail;
591 struct sctp_asconf_ack_chunk *ack_cp;
592 struct sctp_asconf_paramhdr *aph;
593 struct sctp_ipv6addr_param *p_addr;
594 unsigned int asconf_limit, cnt;
595 int error = 0; /* did an error occur? */
597 /* asconf param buffer */
598 uint8_t aparam_buf[SCTP_PARAM_BUFFER_SIZE];
599 struct sctp_asconf_ack *ack, *ack_next;
601 /* verify minimum length */
602 if (ntohs(cp->ch.chunk_length) < sizeof(struct sctp_asconf_chunk)) {
603 SCTPDBG(SCTP_DEBUG_ASCONF1,
604 "handle_asconf: chunk too small = %xh\n",
605 ntohs(cp->ch.chunk_length));
609 serial_num = ntohl(cp->serial_number);
611 if (SCTP_TSN_GE(asoc->asconf_seq_in, serial_num)) {
612 /* got a duplicate ASCONF */
613 SCTPDBG(SCTP_DEBUG_ASCONF1,
614 "handle_asconf: got duplicate serial number = %xh\n",
617 } else if (serial_num != (asoc->asconf_seq_in + 1)) {
618 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: incorrect serial number = %xh (expected next = %xh)\n",
619 serial_num, asoc->asconf_seq_in + 1);
623 /* it's the expected "next" sequence number, so process it */
624 asoc->asconf_seq_in = serial_num; /* update sequence */
625 /* get length of all the param's in the ASCONF */
626 asconf_limit = offset + ntohs(cp->ch.chunk_length);
627 SCTPDBG(SCTP_DEBUG_ASCONF1,
628 "handle_asconf: asconf_limit=%u, sequence=%xh\n",
629 asconf_limit, serial_num);
632 /* delete old cache */
633 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: Now processing first ASCONF. Try to delete old cache\n");
635 TAILQ_FOREACH_SAFE(ack, &asoc->asconf_ack_sent, next, ack_next) {
636 if (ack->serial_number == serial_num)
638 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: delete old(%u) < first(%u)\n",
639 ack->serial_number, serial_num);
640 TAILQ_REMOVE(&asoc->asconf_ack_sent, ack, next);
641 if (ack->data != NULL) {
642 sctp_m_freem(ack->data);
644 SCTP_ZONE_FREE(SCTP_BASE_INFO(ipi_zone_asconf_ack), ack);
648 m_ack = sctp_get_mbuf_for_msg(sizeof(struct sctp_asconf_ack_chunk), 0,
649 M_NOWAIT, 1, MT_DATA);
651 SCTPDBG(SCTP_DEBUG_ASCONF1,
652 "handle_asconf: couldn't get mbuf!\n");
655 m_tail = m_ack; /* current reply chain's tail */
657 /* fill in ASCONF-ACK header */
658 ack_cp = mtod(m_ack, struct sctp_asconf_ack_chunk *);
659 ack_cp->ch.chunk_type = SCTP_ASCONF_ACK;
660 ack_cp->ch.chunk_flags = 0;
661 ack_cp->serial_number = htonl(serial_num);
662 /* set initial lengths (eg. just an ASCONF-ACK), ntohx at the end! */
663 SCTP_BUF_LEN(m_ack) = sizeof(struct sctp_asconf_ack_chunk);
664 ack_cp->ch.chunk_length = sizeof(struct sctp_asconf_ack_chunk);
666 /* skip the lookup address parameter */
667 offset += sizeof(struct sctp_asconf_chunk);
668 p_addr = (struct sctp_ipv6addr_param *)sctp_m_getptr(m, offset, sizeof(struct sctp_paramhdr), (uint8_t *)&aparam_buf);
669 if (p_addr == NULL) {
670 SCTPDBG(SCTP_DEBUG_ASCONF1,
671 "handle_asconf: couldn't get lookup addr!\n");
672 /* respond with a missing/invalid mandatory parameter error */
676 /* param_length is already validated in process_control... */
677 offset += ntohs(p_addr->ph.param_length); /* skip lookup addr */
678 /* get pointer to first asconf param in ASCONF */
679 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(m, offset, sizeof(struct sctp_asconf_paramhdr), (uint8_t *)&aparam_buf);
681 SCTPDBG(SCTP_DEBUG_ASCONF1, "Empty ASCONF received?\n");
684 /* process through all parameters */
686 while (aph != NULL) {
687 unsigned int param_length, param_type;
689 param_type = ntohs(aph->ph.param_type);
690 param_length = ntohs(aph->ph.param_length);
691 if (offset + param_length > asconf_limit) {
692 /* parameter goes beyond end of chunk! */
698 if (param_length > sizeof(aparam_buf)) {
699 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: param length (%u) larger than buffer size!\n", param_length);
703 if (param_length <= sizeof(struct sctp_paramhdr)) {
704 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: param length (%u) too short\n", param_length);
708 /* get the entire parameter */
709 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(m, offset, param_length, aparam_buf);
711 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: couldn't get entire param\n");
715 switch (param_type) {
716 case SCTP_ADD_IP_ADDRESS:
717 m_result = sctp_process_asconf_add_ip(src, aph, stcb,
718 (cnt < SCTP_BASE_SYSCTL(sctp_hb_maxburst)), error);
721 case SCTP_DEL_IP_ADDRESS:
722 m_result = sctp_process_asconf_delete_ip(src, aph, stcb,
725 case SCTP_ERROR_CAUSE_IND:
726 /* not valid in an ASCONF chunk */
728 case SCTP_SET_PRIM_ADDR:
729 m_result = sctp_process_asconf_set_primary(src, aph,
733 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: sees a NAT VTAG state parameter\n");
735 case SCTP_SUCCESS_REPORT:
736 /* not valid in an ASCONF chunk */
738 case SCTP_ULP_ADAPTATION:
742 if ((param_type & 0x8000) == 0) {
743 /* Been told to STOP at this param */
744 asconf_limit = offset;
746 * FIX FIX - We need to call
747 * sctp_arethere_unrecognized_parameters()
748 * to get a operr and send it for any
749 * param's with the 0x4000 bit set OR do it
750 * here ourselves... note we still must STOP
751 * if the 0x8000 bit is clear.
754 /* unknown/invalid param type */
758 /* add any (error) result to the reply mbuf chain */
759 if (m_result != NULL) {
760 SCTP_BUF_NEXT(m_tail) = m_result;
762 /* update lengths, make sure it's aligned too */
763 SCTP_BUF_LEN(m_result) = SCTP_SIZE32(SCTP_BUF_LEN(m_result));
764 ack_cp->ch.chunk_length += SCTP_BUF_LEN(m_result);
765 /* set flag to force success reports */
768 offset += SCTP_SIZE32(param_length);
769 /* update remaining ASCONF message length to process */
770 if (offset >= asconf_limit) {
771 /* no more data in the mbuf chain */
774 /* get pointer to next asconf param */
775 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(m, offset,
776 sizeof(struct sctp_asconf_paramhdr),
777 (uint8_t *)&aparam_buf);
779 /* can't get an asconf paramhdr */
780 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: can't get asconf param hdr!\n");
781 /* FIX ME - add error here... */
786 ack_cp->ch.chunk_length = htons(ack_cp->ch.chunk_length);
787 /* save the ASCONF-ACK reply */
788 ack = SCTP_ZONE_GET(SCTP_BASE_INFO(ipi_zone_asconf_ack),
789 struct sctp_asconf_ack);
794 ack->serial_number = serial_num;
795 ack->last_sent_to = NULL;
798 for (n = m_ack; n != NULL; n = SCTP_BUF_NEXT(n)) {
799 ack->len += SCTP_BUF_LEN(n);
801 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_ack_sent, ack, next);
803 /* see if last_control_chunk_from is set properly (use IP src addr) */
804 if (stcb->asoc.last_control_chunk_from == NULL) {
806 * this could happen if the source address was just newly
809 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: looking up net for IP source address\n");
810 SCTPDBG(SCTP_DEBUG_ASCONF1, "Looking for IP source: ");
811 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, src);
812 /* look up the from address */
813 stcb->asoc.last_control_chunk_from = sctp_findnet(stcb, src);
815 if (stcb->asoc.last_control_chunk_from == NULL) {
816 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf: IP source address not found?!\n");
823 * does the address match? returns 0 if not, 1 if so
826 sctp_asconf_addr_match(struct sctp_asconf_addr *aa, struct sockaddr *sa)
828 switch (sa->sa_family) {
833 struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)sa;
835 if ((aa->ap.addrp.ph.param_type == SCTP_IPV6_ADDRESS) &&
836 (memcmp(&aa->ap.addrp.addr, &sin6->sin6_addr,
837 sizeof(struct in6_addr)) == 0)) {
846 struct sockaddr_in *sin = (struct sockaddr_in *)sa;
848 if ((aa->ap.addrp.ph.param_type == SCTP_IPV4_ADDRESS) &&
849 (memcmp(&aa->ap.addrp.addr, &sin->sin_addr,
850 sizeof(struct in_addr)) == 0)) {
863 * does the address match? returns 0 if not, 1 if so
866 sctp_addr_match(struct sctp_paramhdr *ph, struct sockaddr *sa)
868 #if defined(INET) || defined(INET6)
869 uint16_t param_type, param_length;
871 param_type = ntohs(ph->param_type);
872 param_length = ntohs(ph->param_length);
874 switch (sa->sa_family) {
879 struct sockaddr_in6 *sin6 = (struct sockaddr_in6 *)sa;
880 struct sctp_ipv6addr_param *v6addr;
882 v6addr = (struct sctp_ipv6addr_param *)ph;
883 if ((param_type == SCTP_IPV6_ADDRESS) &&
884 (param_length == sizeof(struct sctp_ipv6addr_param)) &&
885 (memcmp(&v6addr->addr, &sin6->sin6_addr,
886 sizeof(struct in6_addr)) == 0)) {
895 struct sockaddr_in *sin = (struct sockaddr_in *)sa;
896 struct sctp_ipv4addr_param *v4addr;
898 v4addr = (struct sctp_ipv4addr_param *)ph;
899 if ((param_type == SCTP_IPV4_ADDRESS) &&
900 (param_length == sizeof(struct sctp_ipv4addr_param)) &&
901 (memcmp(&v4addr->addr, &sin->sin_addr,
902 sizeof(struct in_addr)) == 0)) {
915 * Cleanup for non-responded/OP ERR'd ASCONF
918 sctp_asconf_cleanup(struct sctp_tcb *stcb, struct sctp_nets *net)
921 * clear out any existing asconfs going out
923 sctp_timer_stop(SCTP_TIMER_TYPE_ASCONF, stcb->sctp_ep, stcb, net,
924 SCTP_FROM_SCTP_ASCONF + SCTP_LOC_2);
925 stcb->asoc.asconf_seq_out_acked = stcb->asoc.asconf_seq_out;
926 /* remove the old ASCONF on our outbound queue */
927 sctp_toss_old_asconf(stcb);
931 * cleanup any cached source addresses that may be topologically
932 * incorrect after a new address has been added to this interface.
935 sctp_asconf_nets_cleanup(struct sctp_tcb *stcb, struct sctp_ifn *ifn)
937 struct sctp_nets *net;
940 * Ideally, we want to only clear cached routes and source addresses
941 * that are topologically incorrect. But since there is no easy way
942 * to know whether the newly added address on the ifn would cause a
943 * routing change (i.e. a new egress interface would be chosen)
944 * without doing a new routing lookup and source address selection,
945 * we will (for now) just flush any cached route using a different
946 * ifn (and cached source addrs) and let output re-choose them
947 * during the next send on that net.
949 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
951 * clear any cached route (and cached source address) if the
952 * route's interface is NOT the same as the address change.
953 * If it's the same interface, just clear the cached source
956 if (SCTP_ROUTE_HAS_VALID_IFN(&net->ro) &&
958 (SCTP_GET_IF_INDEX_FROM_ROUTE(&net->ro) != ifn->ifn_index))) {
959 /* clear any cached route */
960 RTFREE(net->ro.ro_rt);
961 net->ro.ro_rt = NULL;
963 /* clear any cached source address */
964 if (net->src_addr_selected) {
965 sctp_free_ifa(net->ro._s_addr);
966 net->ro._s_addr = NULL;
967 net->src_addr_selected = 0;
974 sctp_assoc_immediate_retrans(struct sctp_tcb *stcb, struct sctp_nets *dstnet)
978 if (dstnet->dest_state & SCTP_ADDR_UNCONFIRMED) {
981 if (stcb->asoc.deleted_primary == NULL) {
985 if (!TAILQ_EMPTY(&stcb->asoc.sent_queue)) {
986 SCTPDBG(SCTP_DEBUG_ASCONF1, "assoc_immediate_retrans: Deleted primary is ");
987 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, &stcb->asoc.deleted_primary->ro._l_addr.sa);
988 SCTPDBG(SCTP_DEBUG_ASCONF1, "Current Primary is ");
989 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, &stcb->asoc.primary_destination->ro._l_addr.sa);
990 sctp_timer_stop(SCTP_TIMER_TYPE_SEND, stcb->sctp_ep, stcb,
991 stcb->asoc.deleted_primary,
992 SCTP_FROM_SCTP_ASCONF + SCTP_LOC_3);
993 stcb->asoc.num_send_timers_up--;
994 if (stcb->asoc.num_send_timers_up < 0) {
995 stcb->asoc.num_send_timers_up = 0;
997 SCTP_TCB_LOCK_ASSERT(stcb);
998 error = sctp_t3rxt_timer(stcb->sctp_ep, stcb,
999 stcb->asoc.deleted_primary);
1001 SCTP_INP_DECR_REF(stcb->sctp_ep);
1004 SCTP_TCB_LOCK_ASSERT(stcb);
1005 #ifdef SCTP_AUDITING_ENABLED
1006 sctp_auditing(4, stcb->sctp_ep, stcb, stcb->asoc.deleted_primary);
1008 sctp_chunk_output(stcb->sctp_ep, stcb, SCTP_OUTPUT_FROM_T3, SCTP_SO_NOT_LOCKED);
1009 if ((stcb->asoc.num_send_timers_up == 0) &&
1010 (stcb->asoc.sent_queue_cnt > 0)) {
1011 struct sctp_tmit_chunk *chk;
1013 chk = TAILQ_FIRST(&stcb->asoc.sent_queue);
1014 sctp_timer_start(SCTP_TIMER_TYPE_SEND, stcb->sctp_ep,
1022 sctp_asconf_queue_mgmt(struct sctp_tcb *, struct sctp_ifa *, uint16_t);
1025 sctp_net_immediate_retrans(struct sctp_tcb *stcb, struct sctp_nets *net)
1027 struct sctp_tmit_chunk *chk;
1029 SCTPDBG(SCTP_DEBUG_ASCONF1, "net_immediate_retrans: RTO is %d\n", net->RTO);
1030 sctp_timer_stop(SCTP_TIMER_TYPE_SEND, stcb->sctp_ep, stcb, net,
1031 SCTP_FROM_SCTP_ASCONF + SCTP_LOC_4);
1032 stcb->asoc.cc_functions.sctp_set_initial_cc_param(stcb, net);
1033 net->error_count = 0;
1034 TAILQ_FOREACH(chk, &stcb->asoc.sent_queue, sctp_next) {
1035 if (chk->whoTo == net) {
1036 if (chk->sent < SCTP_DATAGRAM_RESEND) {
1037 chk->sent = SCTP_DATAGRAM_RESEND;
1038 sctp_ucount_incr(stcb->asoc.sent_queue_retran_cnt);
1039 sctp_flight_size_decrease(chk);
1040 sctp_total_flight_decrease(stcb, chk);
1041 net->marked_retrans++;
1042 stcb->asoc.marked_retrans++;
1046 if (net->marked_retrans) {
1047 sctp_chunk_output(stcb->sctp_ep, stcb, SCTP_OUTPUT_FROM_T3, SCTP_SO_NOT_LOCKED);
1052 sctp_path_check_and_react(struct sctp_tcb *stcb, struct sctp_ifa *newifa)
1054 struct sctp_nets *net;
1055 int addrnum, changed;
1058 * If number of local valid addresses is 1, the valid address is
1059 * probably newly added address. Several valid addresses in this
1060 * association. A source address may not be changed. Additionally,
1061 * they can be configured on a same interface as "alias" addresses.
1064 addrnum = sctp_local_addr_count(stcb);
1065 SCTPDBG(SCTP_DEBUG_ASCONF1, "p_check_react(): %d local addresses\n",
1068 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
1069 /* clear any cached route and source address */
1070 if (net->ro.ro_rt) {
1071 RTFREE(net->ro.ro_rt);
1072 net->ro.ro_rt = NULL;
1074 if (net->src_addr_selected) {
1075 sctp_free_ifa(net->ro._s_addr);
1076 net->ro._s_addr = NULL;
1077 net->src_addr_selected = 0;
1079 /* Retransmit unacknowledged DATA chunks immediately */
1080 if (sctp_is_mobility_feature_on(stcb->sctp_ep,
1081 SCTP_MOBILITY_FASTHANDOFF)) {
1082 sctp_net_immediate_retrans(stcb, net);
1084 /* also, SET PRIMARY is maybe already sent */
1089 /* Multiple local addresses exsist in the association. */
1090 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
1091 /* clear any cached route and source address */
1092 if (net->ro.ro_rt) {
1093 RTFREE(net->ro.ro_rt);
1094 net->ro.ro_rt = NULL;
1096 if (net->src_addr_selected) {
1097 sctp_free_ifa(net->ro._s_addr);
1098 net->ro._s_addr = NULL;
1099 net->src_addr_selected = 0;
1102 * Check if the nexthop is corresponding to the new address.
1103 * If the new address is corresponding to the current
1104 * nexthop, the path will be changed. If the new address is
1105 * NOT corresponding to the current nexthop, the path will
1108 SCTP_RTALLOC((sctp_route_t *)&net->ro,
1109 stcb->sctp_ep->def_vrf_id,
1110 stcb->sctp_ep->fibnum);
1111 if (net->ro.ro_rt == NULL)
1115 switch (net->ro._l_addr.sa.sa_family) {
1118 if (sctp_v4src_match_nexthop(newifa, (sctp_route_t *)&net->ro)) {
1125 if (sctp_v6src_match_nexthop(
1126 &newifa->address.sin6, (sctp_route_t *)&net->ro)) {
1135 * if the newly added address does not relate routing
1136 * information, we skip.
1140 /* Retransmit unacknowledged DATA chunks immediately */
1141 if (sctp_is_mobility_feature_on(stcb->sctp_ep,
1142 SCTP_MOBILITY_FASTHANDOFF)) {
1143 sctp_net_immediate_retrans(stcb, net);
1145 /* Send SET PRIMARY for this new address */
1146 if (net == stcb->asoc.primary_destination) {
1147 (void)sctp_asconf_queue_mgmt(stcb, newifa,
1148 SCTP_SET_PRIM_ADDR);
1154 * process an ADD/DELETE IP ack from peer.
1155 * addr: corresponding sctp_ifa to the address being added/deleted.
1156 * type: SCTP_ADD_IP_ADDRESS or SCTP_DEL_IP_ADDRESS.
1157 * flag: 1=success, 0=failure.
1160 sctp_asconf_addr_mgmt_ack(struct sctp_tcb *stcb, struct sctp_ifa *addr, uint32_t flag)
1163 * do the necessary asoc list work- if we get a failure indication,
1164 * leave the address on the assoc's restricted list. If we get a
1165 * success indication, remove the address from the restricted list.
1168 * Note: this will only occur for ADD_IP_ADDRESS, since
1169 * DEL_IP_ADDRESS is never actually added to the list...
1172 /* success case, so remove from the restricted list */
1173 sctp_del_local_addr_restricted(stcb, addr);
1175 if (sctp_is_mobility_feature_on(stcb->sctp_ep,
1176 SCTP_MOBILITY_BASE) ||
1177 sctp_is_mobility_feature_on(stcb->sctp_ep,
1178 SCTP_MOBILITY_FASTHANDOFF)) {
1179 sctp_path_check_and_react(stcb, addr);
1182 /* clear any cached/topologically incorrect source addresses */
1183 sctp_asconf_nets_cleanup(stcb, addr->ifn_p);
1185 /* else, leave it on the list */
1189 * add an asconf add/delete/set primary IP address parameter to the queue.
1190 * type = SCTP_ADD_IP_ADDRESS, SCTP_DEL_IP_ADDRESS, SCTP_SET_PRIM_ADDR.
1191 * returns 0 if queued, -1 if not queued/removed.
1192 * NOTE: if adding, but a delete for the same address is already scheduled
1193 * (and not yet sent out), simply remove it from queue. Same for deleting
1194 * an address already scheduled for add. If a duplicate operation is found,
1195 * ignore the new one.
1198 sctp_asconf_queue_mgmt(struct sctp_tcb *stcb, struct sctp_ifa *ifa,
1201 struct sctp_asconf_addr *aa, *aa_next;
1203 /* make sure the request isn't already in the queue */
1204 TAILQ_FOREACH_SAFE(aa, &stcb->asoc.asconf_queue, next, aa_next) {
1205 /* address match? */
1206 if (sctp_asconf_addr_match(aa, &ifa->address.sa) == 0)
1209 * is the request already in queue but not sent? pass the
1210 * request already sent in order to resolve the following
1211 * case: 1. arrival of ADD, then sent 2. arrival of DEL. we
1212 * can't remove the ADD request already sent 3. arrival of
1215 if (aa->ap.aph.ph.param_type == type && aa->sent == 0) {
1218 /* is the negative request already in queue, and not sent */
1219 if ((aa->sent == 0) && (type == SCTP_ADD_IP_ADDRESS) &&
1220 (aa->ap.aph.ph.param_type == SCTP_DEL_IP_ADDRESS)) {
1221 /* add requested, delete already queued */
1222 TAILQ_REMOVE(&stcb->asoc.asconf_queue, aa, next);
1223 /* remove the ifa from the restricted list */
1224 sctp_del_local_addr_restricted(stcb, ifa);
1225 /* free the asconf param */
1226 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
1227 SCTPDBG(SCTP_DEBUG_ASCONF2, "asconf_queue_mgmt: add removes queued entry\n");
1230 if ((aa->sent == 0) && (type == SCTP_DEL_IP_ADDRESS) &&
1231 (aa->ap.aph.ph.param_type == SCTP_ADD_IP_ADDRESS)) {
1232 /* delete requested, add already queued */
1233 TAILQ_REMOVE(&stcb->asoc.asconf_queue, aa, next);
1234 /* remove the aa->ifa from the restricted list */
1235 sctp_del_local_addr_restricted(stcb, aa->ifa);
1236 /* free the asconf param */
1237 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
1238 SCTPDBG(SCTP_DEBUG_ASCONF2, "asconf_queue_mgmt: delete removes queued entry\n");
1243 /* adding new request to the queue */
1244 SCTP_MALLOC(aa, struct sctp_asconf_addr *, sizeof(*aa),
1247 /* didn't get memory */
1248 SCTPDBG(SCTP_DEBUG_ASCONF1, "asconf_queue_mgmt: failed to get memory!\n");
1251 aa->special_del = 0;
1252 /* fill in asconf address parameter fields */
1253 /* top level elements are "networked" during send */
1254 aa->ap.aph.ph.param_type = type;
1256 atomic_add_int(&ifa->refcount, 1);
1257 /* correlation_id filled in during send routine later... */
1258 switch (ifa->address.sa.sa_family) {
1262 struct sockaddr_in6 *sin6;
1264 sin6 = &ifa->address.sin6;
1265 aa->ap.addrp.ph.param_type = SCTP_IPV6_ADDRESS;
1266 aa->ap.addrp.ph.param_length = (sizeof(struct sctp_ipv6addr_param));
1267 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_paramhdr) +
1268 sizeof(struct sctp_ipv6addr_param);
1269 memcpy(&aa->ap.addrp.addr, &sin6->sin6_addr,
1270 sizeof(struct in6_addr));
1277 struct sockaddr_in *sin;
1279 sin = &ifa->address.sin;
1280 aa->ap.addrp.ph.param_type = SCTP_IPV4_ADDRESS;
1281 aa->ap.addrp.ph.param_length = (sizeof(struct sctp_ipv4addr_param));
1282 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_paramhdr) +
1283 sizeof(struct sctp_ipv4addr_param);
1284 memcpy(&aa->ap.addrp.addr, &sin->sin_addr,
1285 sizeof(struct in_addr));
1290 /* invalid family! */
1291 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
1295 aa->sent = 0; /* clear sent flag */
1297 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
1299 if (SCTP_BASE_SYSCTL(sctp_debug_on) & SCTP_DEBUG_ASCONF2) {
1300 if (type == SCTP_ADD_IP_ADDRESS) {
1301 SCTP_PRINTF("asconf_queue_mgmt: inserted asconf ADD_IP_ADDRESS: ");
1302 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF2, &ifa->address.sa);
1303 } else if (type == SCTP_DEL_IP_ADDRESS) {
1304 SCTP_PRINTF("asconf_queue_mgmt: appended asconf DEL_IP_ADDRESS: ");
1305 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF2, &ifa->address.sa);
1307 SCTP_PRINTF("asconf_queue_mgmt: appended asconf SET_PRIM_ADDR: ");
1308 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF2, &ifa->address.sa);
1318 * add an asconf operation for the given ifa and type.
1319 * type = SCTP_ADD_IP_ADDRESS, SCTP_DEL_IP_ADDRESS, SCTP_SET_PRIM_ADDR.
1320 * returns 0 if completed, -1 if not completed, 1 if immediate send is
1324 sctp_asconf_queue_add(struct sctp_tcb *stcb, struct sctp_ifa *ifa,
1328 int pending_delete_queued = 0;
1331 /* see if peer supports ASCONF */
1332 if (stcb->asoc.asconf_supported == 0) {
1337 * if this is deleting the last address from the assoc, mark it as
1340 if ((type == SCTP_DEL_IP_ADDRESS) && !stcb->asoc.asconf_del_pending) {
1341 if (stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) {
1342 last = (sctp_local_addr_count(stcb) == 0);
1344 last = (sctp_local_addr_count(stcb) == 1);
1347 /* set the pending delete info only */
1348 stcb->asoc.asconf_del_pending = 1;
1349 stcb->asoc.asconf_addr_del_pending = ifa;
1350 atomic_add_int(&ifa->refcount, 1);
1351 SCTPDBG(SCTP_DEBUG_ASCONF2,
1352 "asconf_queue_add: mark delete last address pending\n");
1357 /* queue an asconf parameter */
1358 status = sctp_asconf_queue_mgmt(stcb, ifa, type);
1361 * if this is an add, and there is a delete also pending (i.e. the
1362 * last local address is being changed), queue the pending delete
1365 if ((type == SCTP_ADD_IP_ADDRESS) && stcb->asoc.asconf_del_pending && (status == 0)) {
1366 /* queue in the pending delete */
1367 if (sctp_asconf_queue_mgmt(stcb,
1368 stcb->asoc.asconf_addr_del_pending,
1369 SCTP_DEL_IP_ADDRESS) == 0) {
1370 SCTPDBG(SCTP_DEBUG_ASCONF2, "asconf_queue_add: queuing pending delete\n");
1371 pending_delete_queued = 1;
1372 /* clear out the pending delete info */
1373 stcb->asoc.asconf_del_pending = 0;
1374 sctp_free_ifa(stcb->asoc.asconf_addr_del_pending);
1375 stcb->asoc.asconf_addr_del_pending = NULL;
1379 if (pending_delete_queued) {
1380 struct sctp_nets *net;
1383 * since we know that the only/last address is now being
1384 * changed in this case, reset the cwnd/rto on all nets to
1385 * start as a new address and path. Also clear the error
1386 * counts to give the assoc the best chance to complete the
1389 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
1390 stcb->asoc.cc_functions.sctp_set_initial_cc_param(stcb,
1393 net->error_count = 0;
1395 stcb->asoc.overall_error_count = 0;
1396 if (SCTP_BASE_SYSCTL(sctp_logging_level) & SCTP_THRESHOLD_LOGGING) {
1397 sctp_misc_ints(SCTP_THRESHOLD_CLEAR,
1398 stcb->asoc.overall_error_count,
1400 SCTP_FROM_SCTP_ASCONF,
1404 /* queue in an advisory set primary too */
1405 (void)sctp_asconf_queue_mgmt(stcb, ifa, SCTP_SET_PRIM_ADDR);
1406 /* let caller know we should send this out immediately */
1413 * add an asconf delete IP address parameter to the queue by sockaddr and
1414 * possibly with no sctp_ifa available. This is only called by the routine
1415 * that checks the addresses in an INIT-ACK against the current address list.
1416 * returns 0 if completed, non-zero if not completed.
1417 * NOTE: if an add is already scheduled (and not yet sent out), simply
1418 * remove it from queue. If a duplicate operation is found, ignore the
1422 sctp_asconf_queue_sa_delete(struct sctp_tcb *stcb, struct sockaddr *sa)
1424 struct sctp_ifa *ifa;
1425 struct sctp_asconf_addr *aa, *aa_next;
1430 /* see if peer supports ASCONF */
1431 if (stcb->asoc.asconf_supported == 0) {
1434 /* make sure the request isn't already in the queue */
1435 TAILQ_FOREACH_SAFE(aa, &stcb->asoc.asconf_queue, next, aa_next) {
1436 /* address match? */
1437 if (sctp_asconf_addr_match(aa, sa) == 0)
1439 /* is the request already in queue (sent or not) */
1440 if (aa->ap.aph.ph.param_type == SCTP_DEL_IP_ADDRESS) {
1443 /* is the negative request already in queue, and not sent */
1446 if (aa->ap.aph.ph.param_type == SCTP_ADD_IP_ADDRESS) {
1447 /* add already queued, so remove existing entry */
1448 TAILQ_REMOVE(&stcb->asoc.asconf_queue, aa, next);
1449 sctp_del_local_addr_restricted(stcb, aa->ifa);
1450 /* free the entry */
1451 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
1456 /* find any existing ifa-- NOTE ifa CAN be allowed to be NULL */
1457 ifa = sctp_find_ifa_by_addr(sa, stcb->asoc.vrf_id, SCTP_ADDR_NOT_LOCKED);
1459 /* adding new request to the queue */
1460 SCTP_MALLOC(aa, struct sctp_asconf_addr *, sizeof(*aa),
1463 /* didn't get memory */
1464 SCTPDBG(SCTP_DEBUG_ASCONF1,
1465 "sctp_asconf_queue_sa_delete: failed to get memory!\n");
1468 aa->special_del = 0;
1469 /* fill in asconf address parameter fields */
1470 /* top level elements are "networked" during send */
1471 aa->ap.aph.ph.param_type = SCTP_DEL_IP_ADDRESS;
1474 atomic_add_int(&ifa->refcount, 1);
1475 /* correlation_id filled in during send routine later... */
1476 switch (sa->sa_family) {
1481 struct sockaddr_in6 *sin6;
1483 sin6 = (struct sockaddr_in6 *)sa;
1484 aa->ap.addrp.ph.param_type = SCTP_IPV6_ADDRESS;
1485 aa->ap.addrp.ph.param_length = (sizeof(struct sctp_ipv6addr_param));
1486 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_paramhdr) + sizeof(struct sctp_ipv6addr_param);
1487 memcpy(&aa->ap.addrp.addr, &sin6->sin6_addr,
1488 sizeof(struct in6_addr));
1496 struct sockaddr_in *sin = (struct sockaddr_in *)sa;
1498 aa->ap.addrp.ph.param_type = SCTP_IPV4_ADDRESS;
1499 aa->ap.addrp.ph.param_length = (sizeof(struct sctp_ipv4addr_param));
1500 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_paramhdr) + sizeof(struct sctp_ipv4addr_param);
1501 memcpy(&aa->ap.addrp.addr, &sin->sin_addr,
1502 sizeof(struct in_addr));
1507 /* invalid family! */
1508 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
1513 aa->sent = 0; /* clear sent flag */
1515 /* delete goes to the back of the queue */
1516 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
1518 /* sa_ignore MEMLEAK {memory is put on the tailq} */
1523 * find a specific asconf param on our "sent" queue
1525 static struct sctp_asconf_addr *
1526 sctp_asconf_find_param(struct sctp_tcb *stcb, uint32_t correlation_id)
1528 struct sctp_asconf_addr *aa;
1530 TAILQ_FOREACH(aa, &stcb->asoc.asconf_queue, next) {
1531 if (aa->ap.aph.correlation_id == correlation_id &&
1537 /* didn't find it */
1542 * process an SCTP_ERROR_CAUSE_IND for a ASCONF-ACK parameter and do
1543 * notifications based on the error response
1546 sctp_asconf_process_error(struct sctp_tcb *stcb SCTP_UNUSED,
1547 struct sctp_asconf_paramhdr *aph)
1549 struct sctp_error_cause *eh;
1550 struct sctp_paramhdr *ph;
1551 uint16_t param_type;
1552 uint16_t error_code;
1554 eh = (struct sctp_error_cause *)(aph + 1);
1555 ph = (struct sctp_paramhdr *)(eh + 1);
1556 /* validate lengths */
1557 if (htons(eh->length) + sizeof(struct sctp_error_cause) >
1558 htons(aph->ph.param_length)) {
1559 /* invalid error cause length */
1560 SCTPDBG(SCTP_DEBUG_ASCONF1,
1561 "asconf_process_error: cause element too long\n");
1564 if (htons(ph->param_length) + sizeof(struct sctp_paramhdr) >
1565 htons(eh->length)) {
1566 /* invalid included TLV length */
1567 SCTPDBG(SCTP_DEBUG_ASCONF1,
1568 "asconf_process_error: included TLV too long\n");
1571 /* which error code ? */
1572 error_code = ntohs(eh->code);
1573 param_type = ntohs(aph->ph.param_type);
1574 /* FIX: this should go back up the REMOTE_ERROR ULP notify */
1575 switch (error_code) {
1576 case SCTP_CAUSE_RESOURCE_SHORTAGE:
1577 /* we allow ourselves to "try again" for this error */
1580 /* peer can't handle it... */
1581 switch (param_type) {
1582 case SCTP_ADD_IP_ADDRESS:
1583 case SCTP_DEL_IP_ADDRESS:
1584 case SCTP_SET_PRIM_ADDR:
1593 * process an asconf queue param.
1594 * aparam: parameter to process, will be removed from the queue.
1595 * flag: 1=success case, 0=failure case
1598 sctp_asconf_process_param_ack(struct sctp_tcb *stcb,
1599 struct sctp_asconf_addr *aparam, uint32_t flag)
1601 uint16_t param_type;
1603 /* process this param */
1604 param_type = aparam->ap.aph.ph.param_type;
1605 switch (param_type) {
1606 case SCTP_ADD_IP_ADDRESS:
1607 SCTPDBG(SCTP_DEBUG_ASCONF1,
1608 "process_param_ack: added IP address\n");
1609 sctp_asconf_addr_mgmt_ack(stcb, aparam->ifa, flag);
1611 case SCTP_DEL_IP_ADDRESS:
1612 SCTPDBG(SCTP_DEBUG_ASCONF1,
1613 "process_param_ack: deleted IP address\n");
1614 /* nothing really to do... lists already updated */
1616 case SCTP_SET_PRIM_ADDR:
1617 SCTPDBG(SCTP_DEBUG_ASCONF1,
1618 "process_param_ack: set primary IP address\n");
1619 /* nothing to do... peer may start using this addr */
1622 /* should NEVER happen */
1626 /* remove the param and free it */
1627 TAILQ_REMOVE(&stcb->asoc.asconf_queue, aparam, next);
1629 sctp_free_ifa(aparam->ifa);
1630 SCTP_FREE(aparam, SCTP_M_ASC_ADDR);
1634 * cleanup from a bad asconf ack parameter
1637 sctp_asconf_ack_clear(struct sctp_tcb *stcb SCTP_UNUSED)
1639 /* assume peer doesn't really know how to do asconfs */
1640 /* XXX we could free the pending queue here */
1645 sctp_handle_asconf_ack(struct mbuf *m, int offset,
1646 struct sctp_asconf_ack_chunk *cp, struct sctp_tcb *stcb,
1647 struct sctp_nets *net, int *abort_no_unlock)
1649 struct sctp_association *asoc;
1650 uint32_t serial_num;
1651 uint16_t ack_length;
1652 struct sctp_asconf_paramhdr *aph;
1653 struct sctp_asconf_addr *aa, *aa_next;
1654 uint32_t last_error_id = 0; /* last error correlation id */
1656 struct sctp_asconf_addr *ap;
1658 /* asconf param buffer */
1659 uint8_t aparam_buf[SCTP_PARAM_BUFFER_SIZE];
1661 /* verify minimum length */
1662 if (ntohs(cp->ch.chunk_length) < sizeof(struct sctp_asconf_ack_chunk)) {
1663 SCTPDBG(SCTP_DEBUG_ASCONF1,
1664 "handle_asconf_ack: chunk too small = %xh\n",
1665 ntohs(cp->ch.chunk_length));
1669 serial_num = ntohl(cp->serial_number);
1672 * NOTE: we may want to handle this differently- currently, we will
1673 * abort when we get an ack for the expected serial number + 1 (eg.
1674 * we didn't send it), process an ack normally if it is the expected
1675 * serial number, and re-send the previous ack for *ALL* other
1680 * if the serial number is the next expected, but I didn't send it,
1681 * abort the asoc, since someone probably just hijacked us...
1683 if (serial_num == (asoc->asconf_seq_out + 1)) {
1684 struct mbuf *op_err;
1685 char msg[SCTP_DIAG_INFO_LEN];
1687 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf_ack: got unexpected next serial number! Aborting asoc!\n");
1688 snprintf(msg, sizeof(msg), "Never sent serial number %8.8x",
1690 op_err = sctp_generate_cause(SCTP_CAUSE_PROTOCOL_VIOLATION, msg);
1691 sctp_abort_an_association(stcb->sctp_ep, stcb, op_err, SCTP_SO_NOT_LOCKED);
1692 *abort_no_unlock = 1;
1695 if (serial_num != asoc->asconf_seq_out_acked + 1) {
1696 /* got a duplicate/unexpected ASCONF-ACK */
1697 SCTPDBG(SCTP_DEBUG_ASCONF1, "handle_asconf_ack: got duplicate/unexpected serial number = %xh (expected = %xh)\n",
1698 serial_num, asoc->asconf_seq_out_acked + 1);
1702 if (serial_num == asoc->asconf_seq_out - 1) {
1703 /* stop our timer */
1704 sctp_timer_stop(SCTP_TIMER_TYPE_ASCONF, stcb->sctp_ep, stcb, net,
1705 SCTP_FROM_SCTP_ASCONF + SCTP_LOC_5);
1708 /* process the ASCONF-ACK contents */
1709 ack_length = ntohs(cp->ch.chunk_length) -
1710 sizeof(struct sctp_asconf_ack_chunk);
1711 offset += sizeof(struct sctp_asconf_ack_chunk);
1712 /* process through all parameters */
1713 while (ack_length >= sizeof(struct sctp_asconf_paramhdr)) {
1714 unsigned int param_length, param_type;
1716 /* get pointer to next asconf parameter */
1717 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(m, offset,
1718 sizeof(struct sctp_asconf_paramhdr), aparam_buf);
1720 /* can't get an asconf paramhdr */
1721 sctp_asconf_ack_clear(stcb);
1724 param_type = ntohs(aph->ph.param_type);
1725 param_length = ntohs(aph->ph.param_length);
1726 if (param_length > ack_length) {
1727 sctp_asconf_ack_clear(stcb);
1730 if (param_length < sizeof(struct sctp_paramhdr)) {
1731 sctp_asconf_ack_clear(stcb);
1734 /* get the complete parameter... */
1735 if (param_length > sizeof(aparam_buf)) {
1736 SCTPDBG(SCTP_DEBUG_ASCONF1,
1737 "param length (%u) larger than buffer size!\n", param_length);
1738 sctp_asconf_ack_clear(stcb);
1741 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(m, offset, param_length, aparam_buf);
1743 sctp_asconf_ack_clear(stcb);
1746 /* correlation_id is transparent to peer, no ntohl needed */
1747 id = aph->correlation_id;
1749 switch (param_type) {
1750 case SCTP_ERROR_CAUSE_IND:
1752 /* find the corresponding asconf param in our queue */
1753 ap = sctp_asconf_find_param(stcb, id);
1755 /* hmm... can't find this in our queue! */
1758 /* process the parameter, failed flag */
1759 sctp_asconf_process_param_ack(stcb, ap, 0);
1760 /* process the error response */
1761 sctp_asconf_process_error(stcb, aph);
1763 case SCTP_SUCCESS_REPORT:
1764 /* find the corresponding asconf param in our queue */
1765 ap = sctp_asconf_find_param(stcb, id);
1767 /* hmm... can't find this in our queue! */
1770 /* process the parameter, success flag */
1771 sctp_asconf_process_param_ack(stcb, ap, 1);
1777 /* update remaining ASCONF-ACK message length to process */
1778 ack_length -= SCTP_SIZE32(param_length);
1779 if (ack_length <= 0) {
1780 /* no more data in the mbuf chain */
1783 offset += SCTP_SIZE32(param_length);
1787 * if there are any "sent" params still on the queue, these are
1788 * implicitly "success", or "failed" (if we got an error back) ...
1789 * so process these appropriately
1791 * we assume that the correlation_id's are monotonically increasing
1792 * beginning from 1 and that we don't have *that* many outstanding
1795 if (last_error_id == 0)
1796 last_error_id--; /* set to "max" value */
1797 TAILQ_FOREACH_SAFE(aa, &stcb->asoc.asconf_queue, next, aa_next) {
1798 if (aa->sent == 1) {
1800 * implicitly successful or failed if correlation_id
1801 * < last_error_id, then success else, failure
1803 if (aa->ap.aph.correlation_id < last_error_id)
1804 sctp_asconf_process_param_ack(stcb, aa, 1);
1806 sctp_asconf_process_param_ack(stcb, aa, 0);
1809 * since we always process in order (FIFO queue) if
1810 * we reach one that hasn't been sent, the rest
1811 * should not have been sent either. so, we're
1818 /* update the next sequence number to use */
1819 asoc->asconf_seq_out_acked++;
1820 /* remove the old ASCONF on our outbound queue */
1821 sctp_toss_old_asconf(stcb);
1822 if (!TAILQ_EMPTY(&stcb->asoc.asconf_queue)) {
1823 #ifdef SCTP_TIMER_BASED_ASCONF
1824 /* we have more params, so restart our timer */
1825 sctp_timer_start(SCTP_TIMER_TYPE_ASCONF, stcb->sctp_ep,
1828 /* we have more params, so send out more */
1829 sctp_send_asconf(stcb, net, SCTP_ADDR_NOT_LOCKED);
1836 sctp_is_scopeid_in_nets(struct sctp_tcb *stcb, struct sockaddr *sa)
1838 struct sockaddr_in6 *sin6, *net6;
1839 struct sctp_nets *net;
1841 if (sa->sa_family != AF_INET6) {
1845 sin6 = (struct sockaddr_in6 *)sa;
1846 if (IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr) == 0) {
1847 /* not link local address */
1850 /* hunt through our destination nets list for this scope_id */
1851 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
1852 if (((struct sockaddr *)(&net->ro._l_addr))->sa_family !=
1855 net6 = (struct sockaddr_in6 *)&net->ro._l_addr;
1856 if (IN6_IS_ADDR_LINKLOCAL(&net6->sin6_addr) == 0)
1858 if (sctp_is_same_scope(sin6, net6)) {
1863 /* didn't find one */
1869 * address management functions
1872 sctp_addr_mgmt_assoc(struct sctp_inpcb *inp, struct sctp_tcb *stcb,
1873 struct sctp_ifa *ifa, uint16_t type, int addr_locked)
1877 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) == 0 ||
1878 sctp_is_feature_off(inp, SCTP_PCB_FLAGS_DO_ASCONF)) {
1879 /* subset bound, no ASCONF allowed case, so ignore */
1883 * note: we know this is not the subset bound, no ASCONF case eg.
1884 * this is boundall or subset bound w/ASCONF allowed
1887 /* first, make sure that the address is IPv4 or IPv6 and not jailed */
1888 switch (ifa->address.sa.sa_family) {
1891 if (prison_check_ip6(inp->ip_inp.inp.inp_cred,
1892 &ifa->address.sin6.sin6_addr) != 0) {
1899 if (prison_check_ip4(inp->ip_inp.inp.inp_cred,
1900 &ifa->address.sin.sin_addr) != 0) {
1909 /* make sure we're "allowed" to add this type of addr */
1910 if (ifa->address.sa.sa_family == AF_INET6) {
1911 /* invalid if we're not a v6 endpoint */
1912 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) == 0)
1914 /* is the v6 addr really valid ? */
1915 if (ifa->localifa_flags & SCTP_ADDR_IFA_UNUSEABLE) {
1920 /* put this address on the "pending/do not use yet" list */
1921 sctp_add_local_addr_restricted(stcb, ifa);
1923 * check address scope if address is out of scope, don't queue
1924 * anything... note: this would leave the address on both inp and
1927 switch (ifa->address.sa.sa_family) {
1931 struct sockaddr_in6 *sin6;
1933 sin6 = &ifa->address.sin6;
1934 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) {
1935 /* we skip unspecifed addresses */
1938 if (IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr)) {
1939 if (stcb->asoc.scope.local_scope == 0) {
1942 /* is it the right link local scope? */
1943 if (sctp_is_scopeid_in_nets(stcb, &ifa->address.sa) == 0) {
1947 if (stcb->asoc.scope.site_scope == 0 &&
1948 IN6_IS_ADDR_SITELOCAL(&sin6->sin6_addr)) {
1957 struct sockaddr_in *sin;
1959 /* invalid if we are a v6 only endpoint */
1960 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) &&
1961 SCTP_IPV6_V6ONLY(inp))
1964 sin = &ifa->address.sin;
1965 if (sin->sin_addr.s_addr == 0) {
1966 /* we skip unspecifed addresses */
1969 if (stcb->asoc.scope.ipv4_local_scope == 0 &&
1970 IN4_ISPRIVATE_ADDRESS(&sin->sin_addr)) {
1977 /* else, not AF_INET or AF_INET6, so skip */
1981 /* queue an asconf for this address add/delete */
1982 if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_DO_ASCONF)) {
1983 /* does the peer do asconf? */
1984 if (stcb->asoc.asconf_supported) {
1985 /* queue an asconf for this addr */
1986 status = sctp_asconf_queue_add(stcb, ifa, type);
1989 * if queued ok, and in the open state, send out the
1990 * ASCONF. If in the non-open state, these will be
1991 * sent when the state goes open.
1994 ((SCTP_GET_STATE(stcb) == SCTP_STATE_OPEN) ||
1995 (SCTP_GET_STATE(stcb) == SCTP_STATE_SHUTDOWN_RECEIVED))) {
1996 #ifdef SCTP_TIMER_BASED_ASCONF
1997 sctp_timer_start(SCTP_TIMER_TYPE_ASCONF, inp,
1998 stcb, stcb->asoc.primary_destination);
2000 sctp_send_asconf(stcb, NULL, addr_locked);
2009 sctp_asconf_iterator_ep(struct sctp_inpcb *inp, void *ptr, uint32_t val SCTP_UNUSED)
2011 struct sctp_asconf_iterator *asc;
2012 struct sctp_ifa *ifa;
2013 struct sctp_laddr *l;
2014 int cnt_invalid = 0;
2016 asc = (struct sctp_asconf_iterator *)ptr;
2017 LIST_FOREACH(l, &asc->list_of_work, sctp_nxt_addr) {
2019 switch (ifa->address.sa.sa_family) {
2022 /* invalid if we're not a v6 endpoint */
2023 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) == 0) {
2025 if (asc->cnt == cnt_invalid)
2033 /* invalid if we are a v6 only endpoint */
2034 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) &&
2035 SCTP_IPV6_V6ONLY(inp)) {
2037 if (asc->cnt == cnt_invalid)
2044 /* invalid address family */
2046 if (asc->cnt == cnt_invalid)
2054 sctp_asconf_iterator_ep_end(struct sctp_inpcb *inp, void *ptr, uint32_t val SCTP_UNUSED)
2056 struct sctp_ifa *ifa;
2057 struct sctp_asconf_iterator *asc;
2058 struct sctp_laddr *laddr, *nladdr, *l;
2060 /* Only for specific case not bound all */
2061 asc = (struct sctp_asconf_iterator *)ptr;
2062 LIST_FOREACH(l, &asc->list_of_work, sctp_nxt_addr) {
2064 if (l->action == SCTP_ADD_IP_ADDRESS) {
2065 LIST_FOREACH(laddr, &inp->sctp_addr_list,
2067 if (laddr->ifa == ifa) {
2073 } else if (l->action == SCTP_DEL_IP_ADDRESS) {
2074 LIST_FOREACH_SAFE(laddr, &inp->sctp_addr_list, sctp_nxt_addr, nladdr) {
2075 /* remove only after all guys are done */
2076 if (laddr->ifa == ifa) {
2077 sctp_del_local_addr_ep(inp, ifa);
2086 sctp_asconf_iterator_stcb(struct sctp_inpcb *inp, struct sctp_tcb *stcb,
2087 void *ptr, uint32_t val SCTP_UNUSED)
2089 struct sctp_asconf_iterator *asc;
2090 struct sctp_ifa *ifa;
2091 struct sctp_laddr *l;
2092 int cnt_invalid = 0;
2096 asc = (struct sctp_asconf_iterator *)ptr;
2097 LIST_FOREACH(l, &asc->list_of_work, sctp_nxt_addr) {
2101 /* address's vrf_id must be the vrf_id of the assoc */
2102 if (ifa->vrf_id != stcb->asoc.vrf_id) {
2106 /* Same checks again for assoc */
2107 switch (ifa->address.sa.sa_family) {
2111 /* invalid if we're not a v6 endpoint */
2112 struct sockaddr_in6 *sin6;
2114 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) == 0) {
2116 if (asc->cnt == cnt_invalid)
2121 sin6 = &ifa->address.sin6;
2122 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) {
2123 /* we skip unspecifed addresses */
2126 if (prison_check_ip6(inp->ip_inp.inp.inp_cred,
2127 &sin6->sin6_addr) != 0) {
2130 if (IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr)) {
2131 if (stcb->asoc.scope.local_scope == 0) {
2134 /* is it the right link local scope? */
2135 if (sctp_is_scopeid_in_nets(stcb, &ifa->address.sa) == 0) {
2145 /* invalid if we are a v6 only endpoint */
2146 struct sockaddr_in *sin;
2148 /* invalid if we are a v6 only endpoint */
2149 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) &&
2150 SCTP_IPV6_V6ONLY(inp))
2153 sin = &ifa->address.sin;
2154 if (sin->sin_addr.s_addr == 0) {
2155 /* we skip unspecifed addresses */
2158 if (prison_check_ip4(inp->ip_inp.inp.inp_cred,
2159 &sin->sin_addr) != 0) {
2162 if (stcb->asoc.scope.ipv4_local_scope == 0 &&
2163 IN4_ISPRIVATE_ADDRESS(&sin->sin_addr)) {
2166 if ((inp->sctp_flags & SCTP_PCB_FLAGS_BOUND_V6) &&
2167 SCTP_IPV6_V6ONLY(inp)) {
2169 if (asc->cnt == cnt_invalid)
2178 /* invalid address family */
2180 if (asc->cnt == cnt_invalid)
2187 if (type == SCTP_ADD_IP_ADDRESS) {
2188 /* prevent this address from being used as a source */
2189 sctp_add_local_addr_restricted(stcb, ifa);
2190 } else if (type == SCTP_DEL_IP_ADDRESS) {
2191 struct sctp_nets *net;
2193 TAILQ_FOREACH(net, &stcb->asoc.nets, sctp_next) {
2196 /* delete this address if cached */
2197 if (net->ro._s_addr == ifa) {
2198 sctp_free_ifa(net->ro._s_addr);
2199 net->ro._s_addr = NULL;
2200 net->src_addr_selected = 0;
2204 net->ro.ro_rt = NULL;
2207 * Now we deleted our src address,
2208 * should we not also now reset the
2209 * cwnd/rto to start as if its a new
2212 stcb->asoc.cc_functions.sctp_set_initial_cc_param(stcb, net);
2217 } else if (type == SCTP_SET_PRIM_ADDR) {
2218 if ((stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) == 0) {
2219 /* must validate the ifa is in the ep */
2220 if (sctp_is_addr_in_ep(stcb->sctp_ep, ifa) == 0) {
2224 /* Need to check scopes for this guy */
2225 if (sctp_is_address_in_scope(ifa, &stcb->asoc.scope, 0) == 0) {
2230 /* queue an asconf for this address add/delete */
2231 if (sctp_is_feature_on(inp, SCTP_PCB_FLAGS_DO_ASCONF) &&
2232 stcb->asoc.asconf_supported == 1) {
2233 /* queue an asconf for this addr */
2234 status = sctp_asconf_queue_add(stcb, ifa, type);
2236 * if queued ok, and in the open state, update the
2237 * count of queued params. If in the non-open
2238 * state, these get sent when the assoc goes open.
2240 if ((SCTP_GET_STATE(stcb) == SCTP_STATE_OPEN) ||
2241 (SCTP_GET_STATE(stcb) == SCTP_STATE_SHUTDOWN_RECEIVED)) {
2249 * If we have queued params in the open state, send out an ASCONF.
2251 if (num_queued > 0) {
2252 sctp_send_asconf(stcb, NULL, SCTP_ADDR_NOT_LOCKED);
2257 sctp_asconf_iterator_end(void *ptr, uint32_t val SCTP_UNUSED)
2259 struct sctp_asconf_iterator *asc;
2260 struct sctp_ifa *ifa;
2261 struct sctp_laddr *l, *nl;
2263 asc = (struct sctp_asconf_iterator *)ptr;
2264 LIST_FOREACH_SAFE(l, &asc->list_of_work, sctp_nxt_addr, nl) {
2266 if (l->action == SCTP_ADD_IP_ADDRESS) {
2267 /* Clear the defer use flag */
2268 ifa->localifa_flags &= ~SCTP_ADDR_DEFER_USE;
2271 SCTP_ZONE_FREE(SCTP_BASE_INFO(ipi_zone_laddr), l);
2272 SCTP_DECR_LADDR_COUNT();
2274 SCTP_FREE(asc, SCTP_M_ASC_IT);
2278 * sa is the sockaddr to ask the peer to set primary to.
2279 * returns: 0 = completed, -1 = error
2282 sctp_set_primary_ip_address_sa(struct sctp_tcb *stcb, struct sockaddr *sa)
2285 struct sctp_ifa *ifa;
2287 /* find the ifa for the desired set primary */
2288 vrf_id = stcb->asoc.vrf_id;
2289 ifa = sctp_find_ifa_by_addr(sa, vrf_id, SCTP_ADDR_NOT_LOCKED);
2291 /* Invalid address */
2295 /* queue an ASCONF:SET_PRIM_ADDR to be sent */
2296 if (!sctp_asconf_queue_add(stcb, ifa, SCTP_SET_PRIM_ADDR)) {
2297 /* set primary queuing succeeded */
2298 SCTPDBG(SCTP_DEBUG_ASCONF1,
2299 "set_primary_ip_address_sa: queued on tcb=%p, ",
2301 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
2302 if ((SCTP_GET_STATE(stcb) == SCTP_STATE_OPEN) ||
2303 (SCTP_GET_STATE(stcb) == SCTP_STATE_SHUTDOWN_RECEIVED)) {
2304 #ifdef SCTP_TIMER_BASED_ASCONF
2305 sctp_timer_start(SCTP_TIMER_TYPE_ASCONF,
2306 stcb->sctp_ep, stcb,
2307 stcb->asoc.primary_destination);
2309 sctp_send_asconf(stcb, NULL, SCTP_ADDR_NOT_LOCKED);
2313 SCTPDBG(SCTP_DEBUG_ASCONF1, "set_primary_ip_address_sa: failed to add to queue on tcb=%p, ",
2315 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF1, sa);
2322 sctp_is_addr_pending(struct sctp_tcb *stcb, struct sctp_ifa *sctp_ifa)
2324 struct sctp_tmit_chunk *chk, *nchk;
2325 unsigned int offset, asconf_limit;
2326 struct sctp_asconf_chunk *acp;
2327 struct sctp_asconf_paramhdr *aph;
2328 uint8_t aparam_buf[SCTP_PARAM_BUFFER_SIZE];
2329 struct sctp_paramhdr *ph;
2330 int add_cnt, del_cnt;
2331 uint16_t last_param_type;
2333 add_cnt = del_cnt = 0;
2334 last_param_type = 0;
2335 TAILQ_FOREACH_SAFE(chk, &stcb->asoc.asconf_send_queue, sctp_next, nchk) {
2336 if (chk->data == NULL) {
2337 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: No mbuf data?\n");
2341 acp = mtod(chk->data, struct sctp_asconf_chunk *);
2342 offset += sizeof(struct sctp_asconf_chunk);
2343 asconf_limit = ntohs(acp->ch.chunk_length);
2344 ph = (struct sctp_paramhdr *)sctp_m_getptr(chk->data, offset, sizeof(struct sctp_paramhdr), aparam_buf);
2346 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: couldn't get lookup addr!\n");
2349 offset += ntohs(ph->param_length);
2351 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(chk->data, offset, sizeof(struct sctp_asconf_paramhdr), aparam_buf);
2353 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: Empty ASCONF will be sent?\n");
2356 while (aph != NULL) {
2357 unsigned int param_length, param_type;
2359 param_type = ntohs(aph->ph.param_type);
2360 param_length = ntohs(aph->ph.param_length);
2361 if (offset + param_length > asconf_limit) {
2362 /* parameter goes beyond end of chunk! */
2365 if (param_length > sizeof(aparam_buf)) {
2366 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: param length (%u) larger than buffer size!\n", param_length);
2369 if (param_length <= sizeof(struct sctp_paramhdr)) {
2370 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: param length(%u) too short\n", param_length);
2374 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(chk->data, offset, param_length, aparam_buf);
2376 SCTPDBG(SCTP_DEBUG_ASCONF1, "is_addr_pending: couldn't get entire param\n");
2380 ph = (struct sctp_paramhdr *)(aph + 1);
2381 if (sctp_addr_match(ph, &sctp_ifa->address.sa) != 0) {
2382 switch (param_type) {
2383 case SCTP_ADD_IP_ADDRESS:
2386 case SCTP_DEL_IP_ADDRESS:
2392 last_param_type = param_type;
2395 offset += SCTP_SIZE32(param_length);
2396 if (offset >= asconf_limit) {
2397 /* no more data in the mbuf chain */
2400 /* get pointer to next asconf param */
2401 aph = (struct sctp_asconf_paramhdr *)sctp_m_getptr(chk->data, offset, sizeof(struct sctp_asconf_paramhdr), aparam_buf);
2406 * we want to find the sequences which consist of ADD -> DEL -> ADD
2409 if (add_cnt > del_cnt ||
2410 (add_cnt == del_cnt && last_param_type == SCTP_ADD_IP_ADDRESS)) {
2416 static struct sockaddr *
2417 sctp_find_valid_localaddr(struct sctp_tcb *stcb, int addr_locked)
2419 struct sctp_vrf *vrf = NULL;
2420 struct sctp_ifn *sctp_ifn;
2421 struct sctp_ifa *sctp_ifa;
2423 if (addr_locked == SCTP_ADDR_NOT_LOCKED)
2424 SCTP_IPI_ADDR_RLOCK();
2425 vrf = sctp_find_vrf(stcb->asoc.vrf_id);
2427 if (addr_locked == SCTP_ADDR_NOT_LOCKED)
2428 SCTP_IPI_ADDR_RUNLOCK();
2431 LIST_FOREACH(sctp_ifn, &vrf->ifnlist, next_ifn) {
2432 if (stcb->asoc.scope.loopback_scope == 0 &&
2433 SCTP_IFN_IS_IFT_LOOP(sctp_ifn)) {
2434 /* Skip if loopback_scope not set */
2437 LIST_FOREACH(sctp_ifa, &sctp_ifn->ifalist, next_ifa) {
2438 switch (sctp_ifa->address.sa.sa_family) {
2441 if (stcb->asoc.scope.ipv4_addr_legal) {
2442 struct sockaddr_in *sin;
2444 sin = &sctp_ifa->address.sin;
2445 if (sin->sin_addr.s_addr == 0) {
2446 /* skip unspecifed addresses */
2449 if (prison_check_ip4(stcb->sctp_ep->ip_inp.inp.inp_cred,
2450 &sin->sin_addr) != 0) {
2453 if (stcb->asoc.scope.ipv4_local_scope == 0 &&
2454 IN4_ISPRIVATE_ADDRESS(&sin->sin_addr))
2457 if (sctp_is_addr_restricted(stcb, sctp_ifa) &&
2458 (!sctp_is_addr_pending(stcb, sctp_ifa)))
2461 * found a valid local v4 address to
2464 if (addr_locked == SCTP_ADDR_NOT_LOCKED)
2465 SCTP_IPI_ADDR_RUNLOCK();
2466 return (&sctp_ifa->address.sa);
2472 if (stcb->asoc.scope.ipv6_addr_legal) {
2473 struct sockaddr_in6 *sin6;
2475 if (sctp_ifa->localifa_flags & SCTP_ADDR_IFA_UNUSEABLE) {
2479 sin6 = &sctp_ifa->address.sin6;
2480 if (IN6_IS_ADDR_UNSPECIFIED(&sin6->sin6_addr)) {
2482 * we skip unspecifed
2487 if (prison_check_ip6(stcb->sctp_ep->ip_inp.inp.inp_cred,
2488 &sin6->sin6_addr) != 0) {
2491 if (stcb->asoc.scope.local_scope == 0 &&
2492 IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr))
2494 if (stcb->asoc.scope.site_scope == 0 &&
2495 IN6_IS_ADDR_SITELOCAL(&sin6->sin6_addr))
2498 if (sctp_is_addr_restricted(stcb, sctp_ifa) &&
2499 (!sctp_is_addr_pending(stcb, sctp_ifa)))
2502 * found a valid local v6 address to
2505 if (addr_locked == SCTP_ADDR_NOT_LOCKED)
2506 SCTP_IPI_ADDR_RUNLOCK();
2507 return (&sctp_ifa->address.sa);
2516 /* no valid addresses found */
2517 if (addr_locked == SCTP_ADDR_NOT_LOCKED)
2518 SCTP_IPI_ADDR_RUNLOCK();
2522 static struct sockaddr *
2523 sctp_find_valid_localaddr_ep(struct sctp_tcb *stcb)
2525 struct sctp_laddr *laddr;
2527 LIST_FOREACH(laddr, &stcb->sctp_ep->sctp_addr_list, sctp_nxt_addr) {
2528 if (laddr->ifa == NULL) {
2531 /* is the address restricted ? */
2532 if (sctp_is_addr_restricted(stcb, laddr->ifa) &&
2533 (!sctp_is_addr_pending(stcb, laddr->ifa)))
2536 /* found a valid local address to use */
2537 return (&laddr->ifa->address.sa);
2539 /* no valid addresses found */
2544 * builds an ASCONF chunk from queued ASCONF params.
2545 * returns NULL on error (no mbuf, no ASCONF params queued, etc).
2548 sctp_compose_asconf(struct sctp_tcb *stcb, int *retlen, int addr_locked)
2550 struct mbuf *m_asconf, *m_asconf_chk;
2551 struct sctp_asconf_addr *aa;
2552 struct sctp_asconf_chunk *acp;
2553 struct sctp_asconf_paramhdr *aph;
2554 struct sctp_asconf_addr_param *aap;
2556 uint32_t correlation_id = 1; /* 0 is reserved... */
2557 caddr_t ptr, lookup_ptr;
2558 uint8_t lookup_used = 0;
2560 /* are there any asconf params to send? */
2561 TAILQ_FOREACH(aa, &stcb->asoc.asconf_queue, next) {
2569 * get a chunk header mbuf and a cluster for the asconf params since
2570 * it's simpler to fill in the asconf chunk header lookup address on
2573 m_asconf_chk = sctp_get_mbuf_for_msg(sizeof(struct sctp_asconf_chunk), 0, M_NOWAIT, 1, MT_DATA);
2574 if (m_asconf_chk == NULL) {
2576 SCTPDBG(SCTP_DEBUG_ASCONF1,
2577 "compose_asconf: couldn't get chunk mbuf!\n");
2580 m_asconf = sctp_get_mbuf_for_msg(MCLBYTES, 0, M_NOWAIT, 1, MT_DATA);
2581 if (m_asconf == NULL) {
2583 SCTPDBG(SCTP_DEBUG_ASCONF1,
2584 "compose_asconf: couldn't get mbuf!\n");
2585 sctp_m_freem(m_asconf_chk);
2588 SCTP_BUF_LEN(m_asconf_chk) = sizeof(struct sctp_asconf_chunk);
2589 SCTP_BUF_LEN(m_asconf) = 0;
2590 acp = mtod(m_asconf_chk, struct sctp_asconf_chunk *);
2591 memset(acp, 0, sizeof(struct sctp_asconf_chunk));
2592 /* save pointers to lookup address and asconf params */
2593 lookup_ptr = (caddr_t)(acp + 1); /* after the header */
2594 ptr = mtod(m_asconf, caddr_t); /* beginning of cluster */
2596 /* fill in chunk header info */
2597 acp->ch.chunk_type = SCTP_ASCONF;
2598 acp->ch.chunk_flags = 0;
2599 acp->serial_number = htonl(stcb->asoc.asconf_seq_out);
2600 stcb->asoc.asconf_seq_out++;
2602 /* add parameters... up to smallest MTU allowed */
2603 TAILQ_FOREACH(aa, &stcb->asoc.asconf_queue, next) {
2606 /* get the parameter length */
2607 p_length = SCTP_SIZE32(aa->ap.aph.ph.param_length);
2608 /* will it fit in current chunk? */
2609 if ((SCTP_BUF_LEN(m_asconf) + p_length > stcb->asoc.smallest_mtu) ||
2610 (SCTP_BUF_LEN(m_asconf) + p_length > MCLBYTES)) {
2611 /* won't fit, so we're done with this chunk */
2614 /* assign (and store) a correlation id */
2615 aa->ap.aph.correlation_id = correlation_id++;
2618 * fill in address if we're doing a delete this is a simple
2619 * way for us to fill in the correlation address, which
2620 * should only be used by the peer if we're deleting our
2621 * source address and adding a new address (e.g. renumbering
2624 if (lookup_used == 0 &&
2625 (aa->special_del == 0) &&
2626 aa->ap.aph.ph.param_type == SCTP_DEL_IP_ADDRESS) {
2627 struct sctp_ipv6addr_param *lookup;
2628 uint16_t p_size, addr_size;
2630 lookup = (struct sctp_ipv6addr_param *)lookup_ptr;
2631 lookup->ph.param_type =
2632 htons(aa->ap.addrp.ph.param_type);
2633 if (aa->ap.addrp.ph.param_type == SCTP_IPV6_ADDRESS) {
2634 /* copy IPv6 address */
2635 p_size = sizeof(struct sctp_ipv6addr_param);
2636 addr_size = sizeof(struct in6_addr);
2638 /* copy IPv4 address */
2639 p_size = sizeof(struct sctp_ipv4addr_param);
2640 addr_size = sizeof(struct in_addr);
2642 lookup->ph.param_length = htons(SCTP_SIZE32(p_size));
2643 memcpy(lookup->addr, &aa->ap.addrp.addr, addr_size);
2644 SCTP_BUF_LEN(m_asconf_chk) += SCTP_SIZE32(p_size);
2647 /* copy into current space */
2648 memcpy(ptr, &aa->ap, p_length);
2650 /* network elements and update lengths */
2651 aph = (struct sctp_asconf_paramhdr *)ptr;
2652 aap = (struct sctp_asconf_addr_param *)ptr;
2653 /* correlation_id is transparent to peer, no htonl needed */
2654 aph->ph.param_type = htons(aph->ph.param_type);
2655 aph->ph.param_length = htons(aph->ph.param_length);
2656 aap->addrp.ph.param_type = htons(aap->addrp.ph.param_type);
2657 aap->addrp.ph.param_length = htons(aap->addrp.ph.param_length);
2659 SCTP_BUF_LEN(m_asconf) += SCTP_SIZE32(p_length);
2660 ptr += SCTP_SIZE32(p_length);
2663 * these params are removed off the pending list upon
2664 * getting an ASCONF-ACK back from the peer, just set flag
2668 /* check to see if the lookup addr has been populated yet */
2669 if (lookup_used == 0) {
2670 /* NOTE: if the address param is optional, can skip this... */
2671 /* add any valid (existing) address... */
2672 struct sctp_ipv6addr_param *lookup;
2673 uint16_t p_size, addr_size;
2674 struct sockaddr *found_addr;
2677 if (stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL)
2678 found_addr = sctp_find_valid_localaddr(stcb,
2681 found_addr = sctp_find_valid_localaddr_ep(stcb);
2683 lookup = (struct sctp_ipv6addr_param *)lookup_ptr;
2684 if (found_addr != NULL) {
2685 switch (found_addr->sa_family) {
2688 /* copy IPv6 address */
2689 lookup->ph.param_type =
2690 htons(SCTP_IPV6_ADDRESS);
2691 p_size = sizeof(struct sctp_ipv6addr_param);
2692 addr_size = sizeof(struct in6_addr);
2693 addr_ptr = (caddr_t)&((struct sockaddr_in6 *)
2694 found_addr)->sin6_addr;
2699 /* copy IPv4 address */
2700 lookup->ph.param_type =
2701 htons(SCTP_IPV4_ADDRESS);
2702 p_size = sizeof(struct sctp_ipv4addr_param);
2703 addr_size = sizeof(struct in_addr);
2704 addr_ptr = (caddr_t)&((struct sockaddr_in *)
2705 found_addr)->sin_addr;
2714 lookup->ph.param_length = htons(SCTP_SIZE32(p_size));
2715 memcpy(lookup->addr, addr_ptr, addr_size);
2716 SCTP_BUF_LEN(m_asconf_chk) += SCTP_SIZE32(p_size);
2718 /* uh oh... don't have any address?? */
2719 SCTPDBG(SCTP_DEBUG_ASCONF1,
2720 "compose_asconf: no lookup addr!\n");
2721 /* XXX for now, we send a IPv4 address of 0.0.0.0 */
2722 lookup->ph.param_type = htons(SCTP_IPV4_ADDRESS);
2723 lookup->ph.param_length = htons(SCTP_SIZE32(sizeof(struct sctp_ipv4addr_param)));
2724 memset(lookup->addr, 0, sizeof(struct in_addr));
2725 SCTP_BUF_LEN(m_asconf_chk) += SCTP_SIZE32(sizeof(struct sctp_ipv4addr_param));
2728 /* chain it all together */
2729 SCTP_BUF_NEXT(m_asconf_chk) = m_asconf;
2730 *retlen = SCTP_BUF_LEN(m_asconf_chk) + SCTP_BUF_LEN(m_asconf);
2731 acp->ch.chunk_length = htons(*retlen);
2733 return (m_asconf_chk);
2737 * section to handle address changes before an association is up eg. changes
2738 * during INIT/INIT-ACK/COOKIE-ECHO handshake
2742 * processes the (local) addresses in the INIT-ACK chunk
2745 sctp_process_initack_addresses(struct sctp_tcb *stcb, struct mbuf *m,
2746 unsigned int offset, unsigned int length)
2748 struct sctp_paramhdr tmp_param, *ph;
2749 uint16_t plen, ptype;
2750 struct sctp_ifa *sctp_ifa;
2751 union sctp_sockstore store;
2753 struct sctp_ipv6addr_param addr6_store;
2756 struct sctp_ipv4addr_param addr4_store;
2759 SCTPDBG(SCTP_DEBUG_ASCONF2, "processing init-ack addresses\n");
2760 if (stcb == NULL) /* Un-needed check for SA */
2763 /* convert to upper bound */
2766 if ((offset + sizeof(struct sctp_paramhdr)) > length) {
2769 /* go through the addresses in the init-ack */
2770 ph = (struct sctp_paramhdr *)
2771 sctp_m_getptr(m, offset, sizeof(struct sctp_paramhdr),
2772 (uint8_t *)&tmp_param);
2773 while (ph != NULL) {
2774 ptype = ntohs(ph->param_type);
2775 plen = ntohs(ph->param_length);
2778 case SCTP_IPV6_ADDRESS:
2780 struct sctp_ipv6addr_param *a6p;
2782 /* get the entire IPv6 address param */
2783 a6p = (struct sctp_ipv6addr_param *)
2784 sctp_m_getptr(m, offset,
2785 sizeof(struct sctp_ipv6addr_param),
2786 (uint8_t *)&addr6_store);
2787 if (plen != sizeof(struct sctp_ipv6addr_param) ||
2791 memset(&store, 0, sizeof(union sctp_sockstore));
2792 store.sin6.sin6_family = AF_INET6;
2793 store.sin6.sin6_len = sizeof(struct sockaddr_in6);
2794 store.sin6.sin6_port = stcb->rport;
2795 memcpy(&store.sin6.sin6_addr, a6p->addr, sizeof(struct in6_addr));
2800 case SCTP_IPV4_ADDRESS:
2802 struct sctp_ipv4addr_param *a4p;
2804 /* get the entire IPv4 address param */
2805 a4p = (struct sctp_ipv4addr_param *)sctp_m_getptr(m, offset,
2806 sizeof(struct sctp_ipv4addr_param),
2807 (uint8_t *)&addr4_store);
2808 if (plen != sizeof(struct sctp_ipv4addr_param) ||
2812 memset(&store, 0, sizeof(union sctp_sockstore));
2813 store.sin.sin_family = AF_INET;
2814 store.sin.sin_len = sizeof(struct sockaddr_in);
2815 store.sin.sin_port = stcb->rport;
2816 store.sin.sin_addr.s_addr = a4p->addr;
2824 /* see if this address really (still) exists */
2825 sctp_ifa = sctp_find_ifa_by_addr(&store.sa, stcb->asoc.vrf_id,
2826 SCTP_ADDR_NOT_LOCKED);
2827 if (sctp_ifa == NULL) {
2828 /* address doesn't exist anymore */
2831 /* are ASCONFs allowed ? */
2832 if ((sctp_is_feature_on(stcb->sctp_ep,
2833 SCTP_PCB_FLAGS_DO_ASCONF)) &&
2834 stcb->asoc.asconf_supported) {
2835 /* queue an ASCONF DEL_IP_ADDRESS */
2836 status = sctp_asconf_queue_sa_delete(stcb, &store.sa);
2838 * if queued ok, and in correct state, send
2842 SCTP_GET_STATE(stcb) == SCTP_STATE_OPEN) {
2843 #ifdef SCTP_TIMER_BASED_ASCONF
2844 sctp_timer_start(SCTP_TIMER_TYPE_ASCONF,
2845 stcb->sctp_ep, stcb,
2846 stcb->asoc.primary_destination);
2848 sctp_send_asconf(stcb, NULL, SCTP_ADDR_NOT_LOCKED);
2856 * Sanity check: Make sure the length isn't 0, otherwise
2857 * we'll be stuck in this loop for a long time...
2859 if (SCTP_SIZE32(plen) == 0) {
2860 SCTP_PRINTF("process_initack_addrs: bad len (%d) type=%xh\n",
2864 /* get next parameter */
2865 offset += SCTP_SIZE32(plen);
2866 if ((offset + sizeof(struct sctp_paramhdr)) > length)
2868 ph = (struct sctp_paramhdr *)sctp_m_getptr(m, offset,
2869 sizeof(struct sctp_paramhdr), (uint8_t *)&tmp_param);
2873 /* FIX ME: need to verify return result for v6 address type if v6 disabled */
2875 * checks to see if a specific address is in the initack address list returns
2876 * 1 if found, 0 if not
2879 sctp_addr_in_initack(struct mbuf *m, uint32_t offset, uint32_t length, struct sockaddr *sa)
2881 struct sctp_paramhdr tmp_param, *ph;
2882 uint16_t plen, ptype;
2884 struct sockaddr_in *sin;
2885 struct sctp_ipv4addr_param *a4p;
2886 struct sctp_ipv6addr_param addr4_store;
2889 struct sockaddr_in6 *sin6;
2890 struct sctp_ipv6addr_param *a6p;
2891 struct sctp_ipv6addr_param addr6_store;
2892 struct sockaddr_in6 sin6_tmp;
2895 switch (sa->sa_family) {
2908 SCTPDBG(SCTP_DEBUG_ASCONF2, "find_initack_addr: starting search for ");
2909 SCTPDBG_ADDR(SCTP_DEBUG_ASCONF2, sa);
2910 /* convert to upper bound */
2913 if ((offset + sizeof(struct sctp_paramhdr)) > length) {
2914 SCTPDBG(SCTP_DEBUG_ASCONF1,
2915 "find_initack_addr: invalid offset?\n");
2918 /* go through the addresses in the init-ack */
2919 ph = (struct sctp_paramhdr *)sctp_m_getptr(m, offset,
2920 sizeof(struct sctp_paramhdr), (uint8_t *)&tmp_param);
2921 while (ph != NULL) {
2922 ptype = ntohs(ph->param_type);
2923 plen = ntohs(ph->param_length);
2926 case SCTP_IPV6_ADDRESS:
2927 if (sa->sa_family == AF_INET6) {
2928 /* get the entire IPv6 address param */
2929 if (plen != sizeof(struct sctp_ipv6addr_param)) {
2932 /* get the entire IPv6 address param */
2933 a6p = (struct sctp_ipv6addr_param *)
2934 sctp_m_getptr(m, offset,
2935 sizeof(struct sctp_ipv6addr_param),
2936 (uint8_t *)&addr6_store);
2940 sin6 = (struct sockaddr_in6 *)sa;
2941 if (IN6_IS_SCOPE_LINKLOCAL(&sin6->sin6_addr)) {
2942 /* create a copy and clear scope */
2943 memcpy(&sin6_tmp, sin6,
2944 sizeof(struct sockaddr_in6));
2946 in6_clearscope(&sin6->sin6_addr);
2948 if (memcmp(&sin6->sin6_addr, a6p->addr,
2949 sizeof(struct in6_addr)) == 0) {
2957 case SCTP_IPV4_ADDRESS:
2958 if (sa->sa_family == AF_INET) {
2959 if (plen != sizeof(struct sctp_ipv4addr_param)) {
2962 /* get the entire IPv4 address param */
2963 a4p = (struct sctp_ipv4addr_param *)
2964 sctp_m_getptr(m, offset,
2965 sizeof(struct sctp_ipv4addr_param),
2966 (uint8_t *)&addr4_store);
2970 sin = (struct sockaddr_in *)sa;
2971 if (sin->sin_addr.s_addr == a4p->addr) {
2981 /* get next parameter */
2982 offset += SCTP_SIZE32(plen);
2983 if (offset + sizeof(struct sctp_paramhdr) > length) {
2986 ph = (struct sctp_paramhdr *)
2987 sctp_m_getptr(m, offset, sizeof(struct sctp_paramhdr),
2988 (uint8_t *)&tmp_param);
2995 * makes sure that the current endpoint local addr list is consistent with
2996 * the new association (eg. subset bound, asconf allowed) adds addresses as
3000 sctp_check_address_list_ep(struct sctp_tcb *stcb, struct mbuf *m, int offset,
3001 int length, struct sockaddr *init_addr)
3003 struct sctp_laddr *laddr;
3005 /* go through the endpoint list */
3006 LIST_FOREACH(laddr, &stcb->sctp_ep->sctp_addr_list, sctp_nxt_addr) {
3007 /* be paranoid and validate the laddr */
3008 if (laddr->ifa == NULL) {
3009 SCTPDBG(SCTP_DEBUG_ASCONF1,
3010 "check_addr_list_ep: laddr->ifa is NULL");
3013 if (laddr->ifa == NULL) {
3014 SCTPDBG(SCTP_DEBUG_ASCONF1, "check_addr_list_ep: laddr->ifa->ifa_addr is NULL");
3017 /* do i have it implicitly? */
3018 if (sctp_cmpaddr(&laddr->ifa->address.sa, init_addr)) {
3021 /* check to see if in the init-ack */
3022 if (!sctp_addr_in_initack(m, offset, length, &laddr->ifa->address.sa)) {
3024 sctp_addr_mgmt_assoc(stcb->sctp_ep, stcb, laddr->ifa,
3025 SCTP_ADD_IP_ADDRESS, SCTP_ADDR_NOT_LOCKED);
3031 * makes sure that the current kernel address list is consistent with the new
3032 * association (with all addrs bound) adds addresses as necessary
3035 sctp_check_address_list_all(struct sctp_tcb *stcb, struct mbuf *m, int offset,
3036 int length, struct sockaddr *init_addr,
3037 uint16_t local_scope, uint16_t site_scope,
3038 uint16_t ipv4_scope, uint16_t loopback_scope)
3040 struct sctp_vrf *vrf = NULL;
3041 struct sctp_ifn *sctp_ifn;
3042 struct sctp_ifa *sctp_ifa;
3045 struct sockaddr_in *sin;
3048 struct sockaddr_in6 *sin6;
3052 vrf_id = stcb->asoc.vrf_id;
3056 SCTP_IPI_ADDR_RLOCK();
3057 vrf = sctp_find_vrf(vrf_id);
3059 SCTP_IPI_ADDR_RUNLOCK();
3062 /* go through all our known interfaces */
3063 LIST_FOREACH(sctp_ifn, &vrf->ifnlist, next_ifn) {
3064 if (loopback_scope == 0 && SCTP_IFN_IS_IFT_LOOP(sctp_ifn)) {
3065 /* skip loopback interface */
3068 /* go through each interface address */
3069 LIST_FOREACH(sctp_ifa, &sctp_ifn->ifalist, next_ifa) {
3070 /* do i have it implicitly? */
3071 if (sctp_cmpaddr(&sctp_ifa->address.sa, init_addr)) {
3074 switch (sctp_ifa->address.sa.sa_family) {
3077 sin = &sctp_ifa->address.sin;
3078 if (prison_check_ip4(stcb->sctp_ep->ip_inp.inp.inp_cred,
3079 &sin->sin_addr) != 0) {
3082 if ((ipv4_scope == 0) &&
3083 (IN4_ISPRIVATE_ADDRESS(&sin->sin_addr))) {
3084 /* private address not in scope */
3091 sin6 = &sctp_ifa->address.sin6;
3092 if (prison_check_ip6(stcb->sctp_ep->ip_inp.inp.inp_cred,
3093 &sin6->sin6_addr) != 0) {
3096 if ((local_scope == 0) &&
3097 (IN6_IS_ADDR_LINKLOCAL(&sin6->sin6_addr))) {
3100 if ((site_scope == 0) &&
3101 (IN6_IS_ADDR_SITELOCAL(&sin6->sin6_addr))) {
3109 /* check to see if in the init-ack */
3110 if (!sctp_addr_in_initack(m, offset, length, &sctp_ifa->address.sa)) {
3112 sctp_addr_mgmt_assoc(stcb->sctp_ep, stcb,
3113 sctp_ifa, SCTP_ADD_IP_ADDRESS,
3116 } /* end foreach ifa */
3117 } /* end foreach ifn */
3118 SCTP_IPI_ADDR_RUNLOCK();
3122 * validates an init-ack chunk (from a cookie-echo) with current addresses
3123 * adds addresses from the init-ack into our local address list, if needed
3124 * queues asconf adds/deletes addresses as needed and makes appropriate list
3125 * changes for source address selection m, offset: points to the start of the
3126 * address list in an init-ack chunk length: total length of the address
3127 * params only init_addr: address where my INIT-ACK was sent from
3130 sctp_check_address_list(struct sctp_tcb *stcb, struct mbuf *m, int offset,
3131 int length, struct sockaddr *init_addr,
3132 uint16_t local_scope, uint16_t site_scope,
3133 uint16_t ipv4_scope, uint16_t loopback_scope)
3135 /* process the local addresses in the initack */
3136 sctp_process_initack_addresses(stcb, m, offset, length);
3138 if (stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) {
3139 /* bound all case */
3140 sctp_check_address_list_all(stcb, m, offset, length, init_addr,
3141 local_scope, site_scope, ipv4_scope, loopback_scope);
3143 /* subset bound case */
3144 if (sctp_is_feature_on(stcb->sctp_ep,
3145 SCTP_PCB_FLAGS_DO_ASCONF)) {
3146 /* asconf's allowed */
3147 sctp_check_address_list_ep(stcb, m, offset, length,
3150 /* else, no asconfs allowed, so what we sent is what we get */
3155 * sctp_bindx() support
3158 sctp_addr_mgmt_ep_sa(struct sctp_inpcb *inp, struct sockaddr *sa,
3159 uint32_t type, uint32_t vrf_id, struct sctp_ifa *sctp_ifap)
3161 struct sctp_ifa *ifa;
3162 struct sctp_laddr *laddr, *nladdr;
3164 if (sa->sa_len == 0) {
3165 SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_ASCONF, EINVAL);
3170 } else if (type == SCTP_ADD_IP_ADDRESS) {
3171 /* For an add the address MUST be on the system */
3172 ifa = sctp_find_ifa_by_addr(sa, vrf_id, SCTP_ADDR_NOT_LOCKED);
3173 } else if (type == SCTP_DEL_IP_ADDRESS) {
3174 /* For a delete we need to find it in the inp */
3175 ifa = sctp_find_ifa_in_ep(inp, sa, SCTP_ADDR_NOT_LOCKED);
3180 if (type == SCTP_ADD_IP_ADDRESS) {
3181 sctp_add_local_addr_ep(inp, ifa, type);
3182 } else if (type == SCTP_DEL_IP_ADDRESS) {
3183 if (inp->laddr_count < 2) {
3184 /* can't delete the last local address */
3185 SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_ASCONF, EINVAL);
3188 LIST_FOREACH(laddr, &inp->sctp_addr_list,
3190 if (ifa == laddr->ifa) {
3191 /* Mark in the delete */
3192 laddr->action = type;
3196 if (LIST_EMPTY(&inp->sctp_asoc_list)) {
3198 * There is no need to start the iterator if the inp
3199 * has no associations.
3201 if (type == SCTP_DEL_IP_ADDRESS) {
3202 LIST_FOREACH_SAFE(laddr, &inp->sctp_addr_list, sctp_nxt_addr, nladdr) {
3203 if (laddr->ifa == ifa) {
3204 sctp_del_local_addr_ep(inp, ifa);
3209 struct sctp_asconf_iterator *asc;
3210 struct sctp_laddr *wi;
3213 SCTP_MALLOC(asc, struct sctp_asconf_iterator *,
3214 sizeof(struct sctp_asconf_iterator),
3217 SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_ASCONF, ENOMEM);
3220 wi = SCTP_ZONE_GET(SCTP_BASE_INFO(ipi_zone_laddr), struct sctp_laddr);
3222 SCTP_FREE(asc, SCTP_M_ASC_IT);
3223 SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_ASCONF, ENOMEM);
3226 LIST_INIT(&asc->list_of_work);
3228 SCTP_INCR_LADDR_COUNT();
3231 atomic_add_int(&ifa->refcount, 1);
3232 LIST_INSERT_HEAD(&asc->list_of_work, wi, sctp_nxt_addr);
3233 ret = sctp_initiate_iterator(sctp_asconf_iterator_ep,
3234 sctp_asconf_iterator_stcb,
3235 sctp_asconf_iterator_ep_end,
3237 SCTP_PCB_ANY_FEATURES,
3238 SCTP_ASOC_ANY_STATE,
3240 sctp_asconf_iterator_end, inp, 0);
3242 SCTP_PRINTF("Failed to initiate iterator for addr_mgmt_ep_sa\n");
3243 SCTP_LTRACE_ERR_RET(inp, NULL, NULL, SCTP_FROM_SCTP_ASCONF, EFAULT);
3244 sctp_asconf_iterator_end(asc, 0);
3250 /* invalid address! */
3251 SCTP_LTRACE_ERR_RET(NULL, NULL, NULL, SCTP_FROM_SCTP_ASCONF, EADDRNOTAVAIL);
3252 return (EADDRNOTAVAIL);
3257 sctp_asconf_send_nat_state_update(struct sctp_tcb *stcb,
3258 struct sctp_nets *net)
3260 struct sctp_asconf_addr *aa;
3261 struct sctp_ifa *sctp_ifap;
3262 struct sctp_asconf_tag_param *vtag;
3264 struct sockaddr_in *to;
3267 struct sockaddr_in6 *to6;
3270 SCTPDBG(SCTP_DEBUG_ASCONF1, "sctp_asconf_send_nat_state_update: Missing net\n");
3274 SCTPDBG(SCTP_DEBUG_ASCONF1, "sctp_asconf_send_nat_state_update: Missing stcb\n");
3278 * Need to have in the asconf: - vtagparam(my_vtag/peer_vtag) -
3279 * add(0.0.0.0) - del(0.0.0.0) - Any global addresses add(addr)
3281 SCTP_MALLOC(aa, struct sctp_asconf_addr *, sizeof(*aa),
3284 /* didn't get memory */
3285 SCTPDBG(SCTP_DEBUG_ASCONF1,
3286 "sctp_asconf_send_nat_state_update: failed to get memory!\n");
3289 aa->special_del = 0;
3290 /* fill in asconf address parameter fields */
3291 /* top level elements are "networked" during send */
3293 aa->sent = 0; /* clear sent flag */
3294 vtag = (struct sctp_asconf_tag_param *)&aa->ap.aph;
3295 vtag->aph.ph.param_type = SCTP_NAT_VTAGS;
3296 vtag->aph.ph.param_length = sizeof(struct sctp_asconf_tag_param);
3297 vtag->local_vtag = htonl(stcb->asoc.my_vtag);
3298 vtag->remote_vtag = htonl(stcb->asoc.peer_vtag);
3299 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
3301 SCTP_MALLOC(aa, struct sctp_asconf_addr *, sizeof(*aa),
3304 /* didn't get memory */
3305 SCTPDBG(SCTP_DEBUG_ASCONF1,
3306 "sctp_asconf_send_nat_state_update: failed to get memory!\n");
3309 memset(aa, 0, sizeof(struct sctp_asconf_addr));
3310 /* fill in asconf address parameter fields */
3312 switch (net->ro._l_addr.sa.sa_family) {
3315 aa->ap.aph.ph.param_type = SCTP_ADD_IP_ADDRESS;
3316 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_addrv4_param);
3317 aa->ap.addrp.ph.param_type = SCTP_IPV4_ADDRESS;
3318 aa->ap.addrp.ph.param_length = sizeof(struct sctp_ipv4addr_param);
3319 /* No need to add an address, we are using 0.0.0.0 */
3320 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
3325 aa->ap.aph.ph.param_type = SCTP_ADD_IP_ADDRESS;
3326 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_addr_param);
3327 aa->ap.addrp.ph.param_type = SCTP_IPV6_ADDRESS;
3328 aa->ap.addrp.ph.param_length = sizeof(struct sctp_ipv6addr_param);
3329 /* No need to add an address, we are using 0.0.0.0 */
3330 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
3334 SCTPDBG(SCTP_DEBUG_ASCONF1,
3335 "sctp_asconf_send_nat_state_update: unknown address family\n");
3336 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
3339 SCTP_MALLOC(aa, struct sctp_asconf_addr *, sizeof(*aa),
3342 /* didn't get memory */
3343 SCTPDBG(SCTP_DEBUG_ASCONF1,
3344 "sctp_asconf_send_nat_state_update: failed to get memory!\n");
3347 memset(aa, 0, sizeof(struct sctp_asconf_addr));
3348 /* fill in asconf address parameter fields */
3350 switch (net->ro._l_addr.sa.sa_family) {
3353 aa->ap.aph.ph.param_type = SCTP_ADD_IP_ADDRESS;
3354 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_addrv4_param);
3355 aa->ap.addrp.ph.param_type = SCTP_IPV4_ADDRESS;
3356 aa->ap.addrp.ph.param_length = sizeof(struct sctp_ipv4addr_param);
3357 /* No need to add an address, we are using 0.0.0.0 */
3358 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
3363 aa->ap.aph.ph.param_type = SCTP_DEL_IP_ADDRESS;
3364 aa->ap.aph.ph.param_length = sizeof(struct sctp_asconf_addr_param);
3365 aa->ap.addrp.ph.param_type = SCTP_IPV6_ADDRESS;
3366 aa->ap.addrp.ph.param_length = sizeof(struct sctp_ipv6addr_param);
3367 /* No need to add an address, we are using 0.0.0.0 */
3368 TAILQ_INSERT_TAIL(&stcb->asoc.asconf_queue, aa, next);
3372 SCTPDBG(SCTP_DEBUG_ASCONF1,
3373 "sctp_asconf_send_nat_state_update: unknown address family\n");
3374 SCTP_FREE(aa, SCTP_M_ASC_ADDR);
3377 /* Now we must hunt the addresses and add all global addresses */
3378 if (stcb->sctp_ep->sctp_flags & SCTP_PCB_FLAGS_BOUNDALL) {
3379 struct sctp_vrf *vrf = NULL;
3380 struct sctp_ifn *sctp_ifnp;
3383 vrf_id = stcb->sctp_ep->def_vrf_id;
3384 vrf = sctp_find_vrf(vrf_id);
3389 SCTP_IPI_ADDR_RLOCK();
3390 LIST_FOREACH(sctp_ifnp, &vrf->ifnlist, next_ifn) {
3391 LIST_FOREACH(sctp_ifap, &sctp_ifnp->ifalist, next_ifa) {
3392 switch (sctp_ifap->address.sa.sa_family) {
3395 to = &sctp_ifap->address.sin;
3396 if (prison_check_ip4(stcb->sctp_ep->ip_inp.inp.inp_cred,
3397 &to->sin_addr) != 0) {
3400 if (IN4_ISPRIVATE_ADDRESS(&to->sin_addr)) {
3403 if (IN4_ISLOOPBACK_ADDRESS(&to->sin_addr)) {
3410 to6 = &sctp_ifap->address.sin6;
3411 if (prison_check_ip6(stcb->sctp_ep->ip_inp.inp.inp_cred,
3412 &to6->sin6_addr) != 0) {
3415 if (IN6_IS_ADDR_LOOPBACK(&to6->sin6_addr)) {
3418 if (IN6_IS_ADDR_LINKLOCAL(&to6->sin6_addr)) {
3426 sctp_asconf_queue_mgmt(stcb, sctp_ifap, SCTP_ADD_IP_ADDRESS);
3429 SCTP_IPI_ADDR_RUNLOCK();
3431 struct sctp_laddr *laddr;
3433 LIST_FOREACH(laddr, &stcb->sctp_ep->sctp_addr_list, sctp_nxt_addr) {
3434 if (laddr->ifa == NULL) {
3437 if (laddr->ifa->localifa_flags & SCTP_BEING_DELETED)
3439 * Address being deleted by the system, dont
3443 if (laddr->action == SCTP_DEL_IP_ADDRESS) {
3445 * Address being deleted on this ep don't
3450 sctp_ifap = laddr->ifa;
3451 switch (sctp_ifap->address.sa.sa_family) {
3454 to = &sctp_ifap->address.sin;
3455 if (IN4_ISPRIVATE_ADDRESS(&to->sin_addr)) {
3458 if (IN4_ISLOOPBACK_ADDRESS(&to->sin_addr)) {
3465 to6 = &sctp_ifap->address.sin6;
3466 if (IN6_IS_ADDR_LOOPBACK(&to6->sin6_addr)) {
3469 if (IN6_IS_ADDR_LINKLOCAL(&to6->sin6_addr)) {
3477 sctp_asconf_queue_mgmt(stcb, sctp_ifap, SCTP_ADD_IP_ADDRESS);
3481 /* Now we must send the asconf into the queue */
3482 sctp_send_asconf(stcb, net, SCTP_ADDR_NOT_LOCKED);