2 * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
13 * 3. Neither the name of the project nor the names of its contributors
14 * may be used to endorse or promote products derived from this software
15 * without specific prior written permission.
17 * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
18 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20 * ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
21 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29 * $KAME: in6.c,v 1.259 2002/01/21 11:37:50 keiichi Exp $
33 * Copyright (c) 1982, 1986, 1991, 1993
34 * The Regents of the University of California. All rights reserved.
36 * Redistribution and use in source and binary forms, with or without
37 * modification, are permitted provided that the following conditions
39 * 1. Redistributions of source code must retain the above copyright
40 * notice, this list of conditions and the following disclaimer.
41 * 2. Redistributions in binary form must reproduce the above copyright
42 * notice, this list of conditions and the following disclaimer in the
43 * documentation and/or other materials provided with the distribution.
44 * 4. Neither the name of the University nor the names of its contributors
45 * may be used to endorse or promote products derived from this software
46 * without specific prior written permission.
48 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
49 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
50 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
51 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
52 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
53 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
54 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
55 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
56 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
57 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
60 * @(#)in.c 8.2 (Berkeley) 11/15/93
63 #include <sys/cdefs.h>
64 __FBSDID("$FreeBSD$");
66 #include "opt_compat.h"
68 #include "opt_inet6.h"
70 #include <sys/param.h>
71 #include <sys/errno.h>
73 #include <sys/malloc.h>
74 #include <sys/socket.h>
75 #include <sys/socketvar.h>
76 #include <sys/sockio.h>
77 #include <sys/systm.h>
81 #include <sys/kernel.h>
82 #include <sys/syslog.h>
85 #include <net/if_var.h>
86 #include <net/if_types.h>
87 #include <net/route.h>
88 #include <net/if_dl.h>
91 #include <netinet/in.h>
92 #include <netinet/in_var.h>
93 #include <net/if_llatbl.h>
94 #include <netinet/if_ether.h>
95 #include <netinet/in_systm.h>
96 #include <netinet/ip.h>
97 #include <netinet/in_pcb.h>
98 #include <netinet/ip_carp.h>
100 #include <netinet/ip6.h>
101 #include <netinet6/ip6_var.h>
102 #include <netinet6/nd6.h>
103 #include <netinet6/mld6_var.h>
104 #include <netinet6/ip6_mroute.h>
105 #include <netinet6/in6_ifattach.h>
106 #include <netinet6/scope6_var.h>
107 #include <netinet6/in6_pcb.h>
110 * Definitions of some costant IP6 addresses.
112 const struct in6_addr in6addr_any = IN6ADDR_ANY_INIT;
113 const struct in6_addr in6addr_loopback = IN6ADDR_LOOPBACK_INIT;
114 const struct in6_addr in6addr_nodelocal_allnodes =
115 IN6ADDR_NODELOCAL_ALLNODES_INIT;
116 const struct in6_addr in6addr_linklocal_allnodes =
117 IN6ADDR_LINKLOCAL_ALLNODES_INIT;
118 const struct in6_addr in6addr_linklocal_allrouters =
119 IN6ADDR_LINKLOCAL_ALLROUTERS_INIT;
120 const struct in6_addr in6addr_linklocal_allv2routers =
121 IN6ADDR_LINKLOCAL_ALLV2ROUTERS_INIT;
123 const struct in6_addr in6mask0 = IN6MASK0;
124 const struct in6_addr in6mask32 = IN6MASK32;
125 const struct in6_addr in6mask64 = IN6MASK64;
126 const struct in6_addr in6mask96 = IN6MASK96;
127 const struct in6_addr in6mask128 = IN6MASK128;
129 const struct sockaddr_in6 sa6_any =
130 { sizeof(sa6_any), AF_INET6, 0, 0, IN6ADDR_ANY_INIT, 0 };
132 static int in6_lifaddr_ioctl __P((struct socket *, u_long, caddr_t,
133 struct ifnet *, struct thread *));
134 static int in6_ifinit __P((struct ifnet *, struct in6_ifaddr *,
135 struct sockaddr_in6 *, int));
136 static void in6_unlink_ifa(struct in6_ifaddr *, struct ifnet *);
138 int (*faithprefix_p)(struct in6_addr *);
140 #define ifa2ia6(ifa) ((struct in6_ifaddr *)(ifa))
141 #define ia62ifa(ia6) (&((ia6)->ia_ifa))
144 in6_ifaddloop(struct ifaddr *ifa)
146 struct sockaddr_dl gateway;
147 struct sockaddr_in6 mask, addr;
149 struct in6_ifaddr *ia;
156 ifa->ifa_rtrequest = nd6_rtrequest;
157 ln = lla_lookup(LLTABLE6(ifp), (LLE_CREATE | LLE_IFADDR |
158 LLE_EXCLUSIVE), (struct sockaddr *)&ia->ia_addr);
159 IF_AFDATA_UNLOCK(ifp);
161 ln->la_expire = 0; /* for IPv6 this means permanent */
162 ln->ln_state = ND6_LLINFO_REACHABLE;
164 * initialize for rtmsg generation
166 bzero(&gateway, sizeof(gateway));
167 gateway.sdl_len = sizeof(gateway);
168 gateway.sdl_family = AF_LINK;
169 gateway.sdl_nlen = 0;
170 gateway.sdl_alen = 6;
171 memcpy(gateway.sdl_data, &ln->ll_addr.mac_aligned,
172 sizeof(ln->ll_addr));
176 bzero(&rt, sizeof(rt));
177 rt.rt_gateway = (struct sockaddr *)&gateway;
178 memcpy(&mask, &ia->ia_prefixmask, sizeof(ia->ia_prefixmask));
179 memcpy(&addr, &ia->ia_addr, sizeof(ia->ia_addr));
180 rt_mask(&rt) = (struct sockaddr *)&mask;
181 rt_key(&rt) = (struct sockaddr *)&addr;
182 rt.rt_flags = RTF_UP | RTF_HOST | RTF_STATIC;
183 rt_newaddrmsg(RTM_ADD, ifa, 0, &rt);
187 in6_ifremloop(struct ifaddr *ifa)
189 struct sockaddr_dl gateway;
190 struct sockaddr_in6 mask, addr;
192 struct in6_ifaddr *ia;
198 lla_lookup(LLTABLE6(ifp), (LLE_DELETE | LLE_IFADDR),
199 (struct sockaddr *)&ia->ia_addr);
200 IF_AFDATA_UNLOCK(ifp);
203 * initialize for rtmsg generation
205 bzero(&gateway, sizeof(gateway));
206 gateway.sdl_len = sizeof(gateway);
207 gateway.sdl_family = AF_LINK;
208 gateway.sdl_nlen = 0;
209 gateway.sdl_alen = ifp->if_addrlen;
210 bzero(&rt0, sizeof(rt0));
211 rt0.rt_gateway = (struct sockaddr *)&gateway;
212 memcpy(&mask, &ia->ia_prefixmask, sizeof(ia->ia_prefixmask));
213 memcpy(&addr, &ia->ia_addr, sizeof(ia->ia_addr));
214 rt_mask(&rt0) = (struct sockaddr *)&mask;
215 rt_key(&rt0) = (struct sockaddr *)&addr;
216 rt0.rt_flags = RTF_HOST | RTF_STATIC;
217 rt_newaddrmsg(RTM_DELETE, ifa, 0, &rt0);
221 in6_mask2len(struct in6_addr *mask, u_char *lim0)
224 u_char *lim = lim0, *p;
226 /* ignore the scope_id part */
227 if (lim0 == NULL || lim0 - (u_char *)mask > sizeof(*mask))
228 lim = (u_char *)mask + sizeof(*mask);
229 for (p = (u_char *)mask; p < lim; x++, p++) {
235 for (y = 0; y < 8; y++) {
236 if ((*p & (0x80 >> y)) == 0)
242 * when the limit pointer is given, do a stricter check on the
246 if (y != 0 && (*p & (0x00ff >> y)) != 0)
248 for (p = p + 1; p < lim; p++)
256 #ifdef COMPAT_FREEBSD32
257 struct in6_ndifreq32 {
258 char ifname[IFNAMSIZ];
261 #define SIOCGDEFIFACE32_IN6 _IOWR('i', 86, struct in6_ndifreq32)
265 in6_control(struct socket *so, u_long cmd, caddr_t data,
266 struct ifnet *ifp, struct thread *td)
268 struct in6_ifreq *ifr = (struct in6_ifreq *)data;
269 struct in6_ifaddr *ia = NULL;
270 struct in6_aliasreq *ifra = (struct in6_aliasreq *)data;
271 struct sockaddr_in6 *sa6;
272 int carp_attached = 0;
277 * Compat to make pre-10.x ifconfig(8) operable.
279 if (cmd == OSIOCAIFADDR_IN6)
280 cmd = SIOCAIFADDR_IN6;
283 case SIOCGETSGCNT_IN6:
284 case SIOCGETMIFCNT_IN6:
285 return (mrt6_ioctl ? mrt6_ioctl(cmd, data) : EOPNOTSUPP);
289 case SIOCAADDRCTL_POLICY:
290 case SIOCDADDRCTL_POLICY:
292 error = priv_check(td, PRIV_NETINET_ADDRCTRL6);
296 return (in6_src_ioctl(cmd, data));
303 case SIOCSNDFLUSH_IN6:
304 case SIOCSPFXFLUSH_IN6:
305 case SIOCSRTRFLUSH_IN6:
306 case SIOCSDEFIFACE_IN6:
307 case SIOCSIFINFO_FLAGS:
308 case SIOCSIFINFO_IN6:
310 error = priv_check(td, PRIV_NETINET_ND6);
315 case OSIOCGIFINFO_IN6:
316 case SIOCGIFINFO_IN6:
319 case SIOCGNBRINFO_IN6:
320 case SIOCGDEFIFACE_IN6:
321 return (nd6_ioctl(cmd, data, ifp));
323 #ifdef COMPAT_FREEBSD32
324 case SIOCGDEFIFACE32_IN6:
326 struct in6_ndifreq ndif;
327 struct in6_ndifreq32 *ndif32;
329 error = nd6_ioctl(SIOCGDEFIFACE_IN6, (caddr_t)&ndif,
333 ndif32 = (struct in6_ndifreq32 *)data;
334 ndif32->ifindex = ndif.ifindex;
341 case SIOCSIFPREFIX_IN6:
342 case SIOCDIFPREFIX_IN6:
343 case SIOCAIFPREFIX_IN6:
344 case SIOCCIFPREFIX_IN6:
345 case SIOCSGIFPREFIX_IN6:
346 case SIOCGIFPREFIX_IN6:
348 "prefix ioctls are now invalidated. "
349 "please use ifconfig.\n");
356 error = priv_check(td, PRIV_NETINET_SCOPE6);
360 return (scope6_set(ifp,
361 (struct scope6_id *)ifr->ifr_ifru.ifru_scope_id));
363 return (scope6_get(ifp,
364 (struct scope6_id *)ifr->ifr_ifru.ifru_scope_id));
366 return (scope6_get_default((struct scope6_id *)
367 ifr->ifr_ifru.ifru_scope_id));
373 error = priv_check(td, PRIV_NET_ADDIFADDR);
377 return in6_lifaddr_ioctl(so, cmd, data, ifp, td);
381 error = priv_check(td, PRIV_NET_DELIFADDR);
387 return in6_lifaddr_ioctl(so, cmd, data, ifp, td);
391 * Find address for this interface, if it exists.
393 * In netinet code, we have checked ifra_addr in SIOCSIF*ADDR operation
394 * only, and used the first interface address as the target of other
395 * operations (without checking ifra_addr). This was because netinet
396 * code/API assumed at most 1 interface address per interface.
397 * Since IPv6 allows a node to assign multiple addresses
398 * on a single interface, we almost always look and check the
399 * presence of ifra_addr, and reject invalid ones here.
400 * It also decreases duplicated code among SIOC*_IN6 operations.
403 case SIOCAIFADDR_IN6:
404 case SIOCSIFPHYADDR_IN6:
405 sa6 = &ifra->ifra_addr;
407 case SIOCSIFADDR_IN6:
408 case SIOCGIFADDR_IN6:
409 case SIOCSIFDSTADDR_IN6:
410 case SIOCSIFNETMASK_IN6:
411 case SIOCGIFDSTADDR_IN6:
412 case SIOCGIFNETMASK_IN6:
413 case SIOCDIFADDR_IN6:
414 case SIOCGIFPSRCADDR_IN6:
415 case SIOCGIFPDSTADDR_IN6:
416 case SIOCGIFAFLAG_IN6:
417 case SIOCSNDFLUSH_IN6:
418 case SIOCSPFXFLUSH_IN6:
419 case SIOCSRTRFLUSH_IN6:
420 case SIOCGIFALIFETIME_IN6:
421 case SIOCSIFALIFETIME_IN6:
422 case SIOCGIFSTAT_IN6:
423 case SIOCGIFSTAT_ICMP6:
424 sa6 = &ifr->ifr_addr;
430 if (sa6 && sa6->sin6_family == AF_INET6) {
431 if (sa6->sin6_scope_id != 0)
432 error = sa6_embedscope(sa6, 0);
434 error = in6_setscope(&sa6->sin6_addr, ifp, NULL);
437 if (td != NULL && (error = prison_check_ip6(td->td_ucred,
438 &sa6->sin6_addr)) != 0)
440 ia = in6ifa_ifpwithaddr(ifp, &sa6->sin6_addr);
445 case SIOCSIFADDR_IN6:
446 case SIOCSIFDSTADDR_IN6:
447 case SIOCSIFNETMASK_IN6:
449 * Since IPv6 allows a node to assign multiple addresses
450 * on a single interface, SIOCSIFxxx ioctls are deprecated.
452 /* we decided to obsolete this command (20000704) */
456 case SIOCDIFADDR_IN6:
458 * for IPv4, we look for existing in_ifaddr here to allow
459 * "ifconfig if0 delete" to remove the first IPv4 address on
460 * the interface. For IPv6, as the spec allows multiple
461 * interface address from the day one, we consider "remove the
462 * first one" semantics to be not preferable.
465 error = EADDRNOTAVAIL;
469 case SIOCAIFADDR_IN6:
471 * We always require users to specify a valid IPv6 address for
472 * the corresponding operation.
474 if (ifra->ifra_addr.sin6_family != AF_INET6 ||
475 ifra->ifra_addr.sin6_len != sizeof(struct sockaddr_in6)) {
476 error = EAFNOSUPPORT;
481 error = priv_check(td, (cmd == SIOCDIFADDR_IN6) ?
482 PRIV_NET_DELIFADDR : PRIV_NET_ADDIFADDR);
488 case SIOCGIFADDR_IN6:
489 /* This interface is basically deprecated. use SIOCGIFCONF. */
491 case SIOCGIFAFLAG_IN6:
492 case SIOCGIFNETMASK_IN6:
493 case SIOCGIFDSTADDR_IN6:
494 case SIOCGIFALIFETIME_IN6:
495 /* must think again about its semantics */
497 error = EADDRNOTAVAIL;
502 case SIOCSIFALIFETIME_IN6:
504 struct in6_addrlifetime *lt;
507 error = priv_check(td, PRIV_NETINET_ALIFETIME6);
512 error = EADDRNOTAVAIL;
515 /* sanity for overflow - beware unsigned */
516 lt = &ifr->ifr_ifru.ifru_lifetime;
517 if (lt->ia6t_vltime != ND6_INFINITE_LIFETIME &&
518 lt->ia6t_vltime + time_second < time_second) {
522 if (lt->ia6t_pltime != ND6_INFINITE_LIFETIME &&
523 lt->ia6t_pltime + time_second < time_second) {
532 case SIOCGIFADDR_IN6:
533 ifr->ifr_addr = ia->ia_addr;
534 if ((error = sa6_recoverscope(&ifr->ifr_addr)) != 0)
538 case SIOCGIFDSTADDR_IN6:
539 if ((ifp->if_flags & IFF_POINTOPOINT) == 0) {
544 * XXX: should we check if ifa_dstaddr is NULL and return
547 ifr->ifr_dstaddr = ia->ia_dstaddr;
548 if ((error = sa6_recoverscope(&ifr->ifr_dstaddr)) != 0)
552 case SIOCGIFNETMASK_IN6:
553 ifr->ifr_addr = ia->ia_prefixmask;
556 case SIOCGIFAFLAG_IN6:
557 ifr->ifr_ifru.ifru_flags6 = ia->ia6_flags;
560 case SIOCGIFSTAT_IN6:
565 bzero(&ifr->ifr_ifru.ifru_stat,
566 sizeof(ifr->ifr_ifru.ifru_stat));
567 ifr->ifr_ifru.ifru_stat =
568 *((struct in6_ifextra *)ifp->if_afdata[AF_INET6])->in6_ifstat;
571 case SIOCGIFSTAT_ICMP6:
576 bzero(&ifr->ifr_ifru.ifru_icmp6stat,
577 sizeof(ifr->ifr_ifru.ifru_icmp6stat));
578 ifr->ifr_ifru.ifru_icmp6stat =
579 *((struct in6_ifextra *)ifp->if_afdata[AF_INET6])->icmp6_ifstat;
582 case SIOCGIFALIFETIME_IN6:
583 ifr->ifr_ifru.ifru_lifetime = ia->ia6_lifetime;
584 if (ia->ia6_lifetime.ia6t_vltime != ND6_INFINITE_LIFETIME) {
586 struct in6_addrlifetime *retlt =
587 &ifr->ifr_ifru.ifru_lifetime;
590 * XXX: adjust expiration time assuming time_t is
594 ~((time_t)1 << ((sizeof(maxexpire) * 8) - 1));
595 if (ia->ia6_lifetime.ia6t_vltime <
596 maxexpire - ia->ia6_updatetime) {
597 retlt->ia6t_expire = ia->ia6_updatetime +
598 ia->ia6_lifetime.ia6t_vltime;
600 retlt->ia6t_expire = maxexpire;
602 if (ia->ia6_lifetime.ia6t_pltime != ND6_INFINITE_LIFETIME) {
604 struct in6_addrlifetime *retlt =
605 &ifr->ifr_ifru.ifru_lifetime;
608 * XXX: adjust expiration time assuming time_t is
612 ~((time_t)1 << ((sizeof(maxexpire) * 8) - 1));
613 if (ia->ia6_lifetime.ia6t_pltime <
614 maxexpire - ia->ia6_updatetime) {
615 retlt->ia6t_preferred = ia->ia6_updatetime +
616 ia->ia6_lifetime.ia6t_pltime;
618 retlt->ia6t_preferred = maxexpire;
622 case SIOCSIFALIFETIME_IN6:
623 ia->ia6_lifetime = ifr->ifr_ifru.ifru_lifetime;
625 if (ia->ia6_lifetime.ia6t_vltime != ND6_INFINITE_LIFETIME) {
626 ia->ia6_lifetime.ia6t_expire =
627 time_second + ia->ia6_lifetime.ia6t_vltime;
629 ia->ia6_lifetime.ia6t_expire = 0;
630 if (ia->ia6_lifetime.ia6t_pltime != ND6_INFINITE_LIFETIME) {
631 ia->ia6_lifetime.ia6t_preferred =
632 time_second + ia->ia6_lifetime.ia6t_pltime;
634 ia->ia6_lifetime.ia6t_preferred = 0;
637 case SIOCAIFADDR_IN6:
640 struct nd_prefixctl pr0;
641 struct nd_prefix *pr;
644 * first, make or update the interface address structure,
645 * and link it to the list.
647 if ((error = in6_update_ifa(ifp, ifra, ia, 0)) != 0)
650 ifa_free(&ia->ia_ifa);
651 if ((ia = in6ifa_ifpwithaddr(ifp, &ifra->ifra_addr.sin6_addr))
654 * this can happen when the user specify the 0 valid
660 if (cmd == ocmd && ifra->ifra_vhid > 0) {
661 if (carp_attach_p != NULL)
662 error = (*carp_attach_p)(&ia->ia_ifa,
665 error = EPROTONOSUPPORT;
673 * then, make the prefix on-link on the interface.
674 * XXX: we'd rather create the prefix before the address, but
675 * we need at least one address to install the corresponding
676 * interface route, so we configure the address first.
680 * convert mask to prefix length (prefixmask has already
681 * been validated in in6_update_ifa().
683 bzero(&pr0, sizeof(pr0));
685 pr0.ndpr_plen = in6_mask2len(&ifra->ifra_prefixmask.sin6_addr,
687 if (pr0.ndpr_plen == 128) {
688 break; /* we don't need to install a host route. */
690 pr0.ndpr_prefix = ifra->ifra_addr;
691 /* apply the mask for safety. */
692 for (i = 0; i < 4; i++) {
693 pr0.ndpr_prefix.sin6_addr.s6_addr32[i] &=
694 ifra->ifra_prefixmask.sin6_addr.s6_addr32[i];
697 * XXX: since we don't have an API to set prefix (not address)
698 * lifetimes, we just use the same lifetimes as addresses.
699 * The (temporarily) installed lifetimes can be overridden by
700 * later advertised RAs (when accept_rtadv is non 0), which is
701 * an intended behavior.
703 pr0.ndpr_raf_onlink = 1; /* should be configurable? */
705 ((ifra->ifra_flags & IN6_IFF_AUTOCONF) != 0);
706 pr0.ndpr_vltime = ifra->ifra_lifetime.ia6t_vltime;
707 pr0.ndpr_pltime = ifra->ifra_lifetime.ia6t_pltime;
709 /* add the prefix if not yet. */
710 if ((pr = nd6_prefix_lookup(&pr0)) == NULL) {
712 * nd6_prelist_add will install the corresponding
715 if ((error = nd6_prelist_add(&pr0, NULL, &pr)) != 0) {
717 (*carp_detach_p)(&ia->ia_ifa);
722 (*carp_detach_p)(&ia->ia_ifa);
723 log(LOG_ERR, "nd6_prelist_add succeeded but "
730 /* relate the address to the prefix */
731 if (ia->ia6_ndpr == NULL) {
736 * If this is the first autoconf address from the
737 * prefix, create a temporary address as well
740 if ((ia->ia6_flags & IN6_IFF_AUTOCONF) &&
741 V_ip6_use_tempaddr && pr->ndpr_refcnt == 1) {
743 if ((e = in6_tmpifadd(ia, 1, 0)) != 0) {
744 log(LOG_NOTICE, "in6_control: failed "
745 "to create a temporary address, "
752 * this might affect the status of autoconfigured addresses,
753 * that is, this address might make other addresses detached.
755 pfxlist_onlink_check();
756 if (error == 0 && ia) {
757 if (ND_IFINFO(ifp)->flags & ND6_IFF_IFDISABLED) {
759 * Try to clear the flag when a new
760 * IPv6 address is added onto an
761 * IFDISABLED interface and it
764 struct in6_ndireq nd;
766 memset(&nd, 0, sizeof(nd));
767 nd.ndi.flags = ND_IFINFO(ifp)->flags;
768 nd.ndi.flags &= ~ND6_IFF_IFDISABLED;
769 if (nd6_ioctl(SIOCSIFINFO_FLAGS,
770 (caddr_t)&nd, ifp) < 0)
771 log(LOG_NOTICE, "SIOCAIFADDR_IN6: "
772 "SIOCSIFINFO_FLAGS for -ifdisabled "
775 * Ignore failure of clearing the flag
776 * intentionally. The failure means
777 * address duplication was detected.
780 EVENTHANDLER_INVOKE(ifaddr_event, ifp);
785 case SIOCDIFADDR_IN6:
787 struct nd_prefix *pr;
790 * If the address being deleted is the only one that owns
791 * the corresponding prefix, expire the prefix as well.
792 * XXX: theoretically, we don't have to worry about such
793 * relationship, since we separate the address management
794 * and the prefix management. We do this, however, to provide
795 * as much backward compatibility as possible in terms of
796 * the ioctl operation.
797 * Note that in6_purgeaddr() will decrement ndpr_refcnt.
800 in6_purgeaddr(&ia->ia_ifa);
801 if (pr && pr->ndpr_refcnt == 0)
803 EVENTHANDLER_INVOKE(ifaddr_event, ifp);
808 if (ifp == NULL || ifp->if_ioctl == 0) {
812 error = (*ifp->if_ioctl)(ifp, cmd, data);
819 ifa_free(&ia->ia_ifa);
824 * Join necessary multicast groups. Factored out from in6_update_ifa().
825 * This entire work should only be done once, for the default FIB.
828 in6_update_ifa_join_mc(struct ifnet *ifp, struct in6_aliasreq *ifra,
829 struct in6_ifaddr *ia, int flags, struct in6_multi **in6m_sol)
831 char ip6buf[INET6_ADDRSTRLEN];
832 struct sockaddr_in6 mltaddr, mltmask;
833 struct in6_addr llsol;
834 struct in6_multi_mship *imm;
838 KASSERT(in6m_sol != NULL, ("%s: in6m_sol is NULL", __func__));
840 /* Join solicited multicast addr for new host id. */
841 bzero(&llsol, sizeof(struct in6_addr));
842 llsol.s6_addr32[0] = IPV6_ADDR_INT32_MLL;
843 llsol.s6_addr32[1] = 0;
844 llsol.s6_addr32[2] = htonl(1);
845 llsol.s6_addr32[3] = ifra->ifra_addr.sin6_addr.s6_addr32[3];
846 llsol.s6_addr8[12] = 0xff;
847 if ((error = in6_setscope(&llsol, ifp, NULL)) != 0) {
848 /* XXX: should not happen */
849 log(LOG_ERR, "%s: in6_setscope failed\n", __func__);
853 if ((flags & IN6_IFAUPDATE_DADDELAY)) {
855 * We need a random delay for DAD on the address being
856 * configured. It also means delaying transmission of the
857 * corresponding MLD report to avoid report collision.
858 * [RFC 4861, Section 6.3.7]
860 delay = arc4random() % (MAX_RTR_SOLICITATION_DELAY * hz);
862 imm = in6_joingroup(ifp, &llsol, &error, delay);
864 nd6log((LOG_WARNING, "%s: addmulti failed for %s on %s "
865 "(errno=%d)\n", __func__, ip6_sprintf(ip6buf, &llsol),
866 if_name(ifp), error));
869 LIST_INSERT_HEAD(&ia->ia6_memberships, imm, i6mm_chain);
870 *in6m_sol = imm->i6mm_maddr;
872 bzero(&mltmask, sizeof(mltmask));
873 mltmask.sin6_len = sizeof(struct sockaddr_in6);
874 mltmask.sin6_family = AF_INET6;
875 mltmask.sin6_addr = in6mask32;
876 #define MLTMASK_LEN 4 /* mltmask's masklen (=32bit=4octet) */
879 * Join link-local all-nodes address.
881 bzero(&mltaddr, sizeof(mltaddr));
882 mltaddr.sin6_len = sizeof(struct sockaddr_in6);
883 mltaddr.sin6_family = AF_INET6;
884 mltaddr.sin6_addr = in6addr_linklocal_allnodes;
885 if ((error = in6_setscope(&mltaddr.sin6_addr, ifp, NULL)) != 0)
886 goto cleanup; /* XXX: should not fail */
889 * XXX: do we really need this automatic routes? We should probably
890 * reconsider this stuff. Most applications actually do not need the
891 * routes, since they usually specify the outgoing interface.
893 rt = rtalloc1((struct sockaddr *)&mltaddr, 0, 0UL);
895 /* XXX: only works in !SCOPEDROUTING case. */
896 if (memcmp(&mltaddr.sin6_addr,
897 &((struct sockaddr_in6 *)rt_key(rt))->sin6_addr,
904 error = rtrequest(RTM_ADD, (struct sockaddr *)&mltaddr,
905 (struct sockaddr *)&ia->ia_addr,
906 (struct sockaddr *)&mltmask, RTF_UP,
907 (struct rtentry **)0);
913 imm = in6_joingroup(ifp, &mltaddr.sin6_addr, &error, 0);
915 nd6log((LOG_WARNING, "%s: addmulti failed for %s on %s "
916 "(errno=%d)\n", __func__, ip6_sprintf(ip6buf,
917 &mltaddr.sin6_addr), if_name(ifp), error));
920 LIST_INSERT_HEAD(&ia->ia6_memberships, imm, i6mm_chain);
923 * Join node information group address.
926 if ((flags & IN6_IFAUPDATE_DADDELAY)) {
928 * The spec does not say anything about delay for this group,
929 * but the same logic should apply.
931 delay = arc4random() % (MAX_RTR_SOLICITATION_DELAY * hz);
933 if (in6_nigroup(ifp, NULL, -1, &mltaddr.sin6_addr) == 0) {
935 imm = in6_joingroup(ifp, &mltaddr.sin6_addr, &error, delay);
937 nd6log((LOG_WARNING, "%s: addmulti failed for %s on %s "
938 "(errno=%d)\n", __func__, ip6_sprintf(ip6buf,
939 &mltaddr.sin6_addr), if_name(ifp), error));
940 /* XXX not very fatal, go on... */
942 LIST_INSERT_HEAD(&ia->ia6_memberships, imm, i6mm_chain);
946 * Join interface-local all-nodes address.
947 * (ff01::1%ifN, and ff01::%ifN/32)
949 mltaddr.sin6_addr = in6addr_nodelocal_allnodes;
950 if ((error = in6_setscope(&mltaddr.sin6_addr, ifp, NULL)) != 0)
951 goto cleanup; /* XXX: should not fail */
952 /* XXX: again, do we really need the route? */
953 rt = rtalloc1((struct sockaddr *)&mltaddr, 0, 0UL);
955 if (memcmp(&mltaddr.sin6_addr,
956 &((struct sockaddr_in6 *)rt_key(rt))->sin6_addr,
963 error = rtrequest(RTM_ADD, (struct sockaddr *)&mltaddr,
964 (struct sockaddr *)&ia->ia_addr,
965 (struct sockaddr *)&mltmask, RTF_UP,
966 (struct rtentry **)0);
972 imm = in6_joingroup(ifp, &mltaddr.sin6_addr, &error, 0);
974 nd6log((LOG_WARNING, "%s: addmulti failed for %s on %s "
975 "(errno=%d)\n", __func__, ip6_sprintf(ip6buf,
976 &mltaddr.sin6_addr), if_name(ifp), error));
979 LIST_INSERT_HEAD(&ia->ia6_memberships, imm, i6mm_chain);
987 * Update parameters of an IPv6 interface address.
988 * If necessary, a new entry is created and linked into address chains.
989 * This function is separated from in6_control().
990 * XXX: should this be performed under splnet()?
993 in6_update_ifa(struct ifnet *ifp, struct in6_aliasreq *ifra,
994 struct in6_ifaddr *ia, int flags)
996 int error = 0, hostIsNew = 0, plen = -1;
997 struct sockaddr_in6 dst6;
998 struct in6_addrlifetime *lt;
999 struct in6_multi *in6m_sol;
1001 char ip6buf[INET6_ADDRSTRLEN];
1003 /* Validate parameters */
1004 if (ifp == NULL || ifra == NULL) /* this maybe redundant */
1008 * The destination address for a p2p link must have a family
1009 * of AF_UNSPEC or AF_INET6.
1011 if ((ifp->if_flags & IFF_POINTOPOINT) != 0 &&
1012 ifra->ifra_dstaddr.sin6_family != AF_INET6 &&
1013 ifra->ifra_dstaddr.sin6_family != AF_UNSPEC)
1014 return (EAFNOSUPPORT);
1016 * validate ifra_prefixmask. don't check sin6_family, netmask
1017 * does not carry fields other than sin6_len.
1019 if (ifra->ifra_prefixmask.sin6_len > sizeof(struct sockaddr_in6))
1022 * Because the IPv6 address architecture is classless, we require
1023 * users to specify a (non 0) prefix length (mask) for a new address.
1024 * We also require the prefix (when specified) mask is valid, and thus
1025 * reject a non-consecutive mask.
1027 if (ia == NULL && ifra->ifra_prefixmask.sin6_len == 0)
1029 if (ifra->ifra_prefixmask.sin6_len != 0) {
1030 plen = in6_mask2len(&ifra->ifra_prefixmask.sin6_addr,
1031 (u_char *)&ifra->ifra_prefixmask +
1032 ifra->ifra_prefixmask.sin6_len);
1037 * In this case, ia must not be NULL. We just use its prefix
1040 plen = in6_mask2len(&ia->ia_prefixmask.sin6_addr, NULL);
1043 * If the destination address on a p2p interface is specified,
1044 * and the address is a scoped one, validate/set the scope
1047 dst6 = ifra->ifra_dstaddr;
1048 if ((ifp->if_flags & (IFF_POINTOPOINT|IFF_LOOPBACK)) != 0 &&
1049 (dst6.sin6_family == AF_INET6)) {
1050 struct in6_addr in6_tmp;
1053 in6_tmp = dst6.sin6_addr;
1054 if (in6_setscope(&in6_tmp, ifp, &zoneid))
1055 return (EINVAL); /* XXX: should be impossible */
1057 if (dst6.sin6_scope_id != 0) {
1058 if (dst6.sin6_scope_id != zoneid)
1060 } else /* user omit to specify the ID. */
1061 dst6.sin6_scope_id = zoneid;
1063 /* convert into the internal form */
1064 if (sa6_embedscope(&dst6, 0))
1065 return (EINVAL); /* XXX: should be impossible */
1068 * The destination address can be specified only for a p2p or a
1069 * loopback interface. If specified, the corresponding prefix length
1072 if (ifra->ifra_dstaddr.sin6_family == AF_INET6) {
1073 if ((ifp->if_flags & (IFF_POINTOPOINT|IFF_LOOPBACK)) == 0) {
1074 /* XXX: noisy message */
1075 nd6log((LOG_INFO, "in6_update_ifa: a destination can "
1076 "be specified for a p2p or a loopback IF only\n"));
1080 nd6log((LOG_INFO, "in6_update_ifa: prefixlen should "
1081 "be 128 when dstaddr is specified\n"));
1085 /* lifetime consistency check */
1086 lt = &ifra->ifra_lifetime;
1087 if (lt->ia6t_pltime > lt->ia6t_vltime)
1089 if (lt->ia6t_vltime == 0) {
1091 * the following log might be noisy, but this is a typical
1092 * configuration mistake or a tool's bug.
1095 "in6_update_ifa: valid lifetime is 0 for %s\n",
1096 ip6_sprintf(ip6buf, &ifra->ifra_addr.sin6_addr)));
1099 return (0); /* there's nothing to do */
1103 * If this is a new address, allocate a new ifaddr and link it
1109 * When in6_update_ifa() is called in a process of a received
1110 * RA, it is called under an interrupt context. So, we should
1111 * call malloc with M_NOWAIT.
1113 ia = (struct in6_ifaddr *) malloc(sizeof(*ia), M_IFADDR,
1117 bzero((caddr_t)ia, sizeof(*ia));
1118 ifa_init(&ia->ia_ifa);
1119 LIST_INIT(&ia->ia6_memberships);
1120 /* Initialize the address and masks, and put time stamp */
1121 ia->ia_ifa.ifa_addr = (struct sockaddr *)&ia->ia_addr;
1122 ia->ia_addr.sin6_family = AF_INET6;
1123 ia->ia_addr.sin6_len = sizeof(ia->ia_addr);
1124 ia->ia6_createtime = time_second;
1125 if ((ifp->if_flags & (IFF_POINTOPOINT | IFF_LOOPBACK)) != 0) {
1127 * XXX: some functions expect that ifa_dstaddr is not
1128 * NULL for p2p interfaces.
1130 ia->ia_ifa.ifa_dstaddr =
1131 (struct sockaddr *)&ia->ia_dstaddr;
1133 ia->ia_ifa.ifa_dstaddr = NULL;
1135 ia->ia_ifa.ifa_netmask = (struct sockaddr *)&ia->ia_prefixmask;
1137 ifa_ref(&ia->ia_ifa); /* if_addrhead */
1139 TAILQ_INSERT_TAIL(&ifp->if_addrhead, &ia->ia_ifa, ifa_link);
1140 IF_ADDR_WUNLOCK(ifp);
1142 ifa_ref(&ia->ia_ifa); /* in6_ifaddrhead */
1144 TAILQ_INSERT_TAIL(&V_in6_ifaddrhead, ia, ia_link);
1145 IN6_IFADDR_WUNLOCK();
1148 /* update timestamp */
1149 ia->ia6_updatetime = time_second;
1151 /* set prefix mask */
1152 if (ifra->ifra_prefixmask.sin6_len) {
1154 * We prohibit changing the prefix length of an existing
1156 * + such an operation should be rare in IPv6, and
1157 * + the operation would confuse prefix management.
1159 if (ia->ia_prefixmask.sin6_len &&
1160 in6_mask2len(&ia->ia_prefixmask.sin6_addr, NULL) != plen) {
1161 nd6log((LOG_INFO, "in6_update_ifa: the prefix length of an"
1162 " existing (%s) address should not be changed\n",
1163 ip6_sprintf(ip6buf, &ia->ia_addr.sin6_addr)));
1167 ia->ia_prefixmask = ifra->ifra_prefixmask;
1171 * If a new destination address is specified, scrub the old one and
1172 * install the new destination. Note that the interface must be
1173 * p2p or loopback (see the check above.)
1175 if (dst6.sin6_family == AF_INET6 &&
1176 !IN6_ARE_ADDR_EQUAL(&dst6.sin6_addr, &ia->ia_dstaddr.sin6_addr)) {
1179 if ((ia->ia_flags & IFA_ROUTE) != 0 &&
1180 (e = rtinit(&(ia->ia_ifa), (int)RTM_DELETE, RTF_HOST)) != 0) {
1181 nd6log((LOG_ERR, "in6_update_ifa: failed to remove "
1182 "a route to the old destination: %s\n",
1183 ip6_sprintf(ip6buf, &ia->ia_addr.sin6_addr)));
1184 /* proceed anyway... */
1186 ia->ia_flags &= ~IFA_ROUTE;
1187 ia->ia_dstaddr = dst6;
1191 * Set lifetimes. We do not refer to ia6t_expire and ia6t_preferred
1192 * to see if the address is deprecated or invalidated, but initialize
1193 * these members for applications.
1195 ia->ia6_lifetime = ifra->ifra_lifetime;
1196 if (ia->ia6_lifetime.ia6t_vltime != ND6_INFINITE_LIFETIME) {
1197 ia->ia6_lifetime.ia6t_expire =
1198 time_second + ia->ia6_lifetime.ia6t_vltime;
1200 ia->ia6_lifetime.ia6t_expire = 0;
1201 if (ia->ia6_lifetime.ia6t_pltime != ND6_INFINITE_LIFETIME) {
1202 ia->ia6_lifetime.ia6t_preferred =
1203 time_second + ia->ia6_lifetime.ia6t_pltime;
1205 ia->ia6_lifetime.ia6t_preferred = 0;
1207 /* reset the interface and routing table appropriately. */
1208 if ((error = in6_ifinit(ifp, ia, &ifra->ifra_addr, hostIsNew)) != 0)
1212 * configure address flags.
1214 ia->ia6_flags = ifra->ifra_flags;
1216 * backward compatibility - if IN6_IFF_DEPRECATED is set from the
1217 * userland, make it deprecated.
1219 if ((ifra->ifra_flags & IN6_IFF_DEPRECATED) != 0) {
1220 ia->ia6_lifetime.ia6t_pltime = 0;
1221 ia->ia6_lifetime.ia6t_preferred = time_second;
1224 * Make the address tentative before joining multicast addresses,
1225 * so that corresponding MLD responses would not have a tentative
1228 ia->ia6_flags &= ~IN6_IFF_DUPLICATED; /* safety */
1229 if (hostIsNew && in6if_do_dad(ifp))
1230 ia->ia6_flags |= IN6_IFF_TENTATIVE;
1232 /* DAD should be performed after ND6_IFF_IFDISABLED is cleared. */
1233 if (ND_IFINFO(ifp)->flags & ND6_IFF_IFDISABLED)
1234 ia->ia6_flags |= IN6_IFF_TENTATIVE;
1237 * We are done if we have simply modified an existing address.
1243 * Beyond this point, we should call in6_purgeaddr upon an error,
1244 * not just go to unlink.
1247 /* Join necessary multicast groups. */
1249 if ((ifp->if_flags & IFF_MULTICAST) != 0) {
1250 error = in6_update_ifa_join_mc(ifp, ifra, ia, flags, &in6m_sol);
1256 * Perform DAD, if needed.
1257 * XXX It may be of use, if we can administratively
1260 if (in6if_do_dad(ifp) && ((ifra->ifra_flags & IN6_IFF_NODAD) == 0) &&
1261 (ia->ia6_flags & IN6_IFF_TENTATIVE))
1263 int mindelay, maxdelay;
1266 if ((flags & IN6_IFAUPDATE_DADDELAY)) {
1268 * We need to impose a delay before sending an NS
1269 * for DAD. Check if we also needed a delay for the
1270 * corresponding MLD message. If we did, the delay
1271 * should be larger than the MLD delay (this could be
1272 * relaxed a bit, but this simple logic is at least
1274 * XXX: Break data hiding guidelines and look at
1275 * state for the solicited multicast group.
1278 if (in6m_sol != NULL &&
1279 in6m_sol->in6m_state == MLD_REPORTING_MEMBER) {
1280 mindelay = in6m_sol->in6m_timer;
1282 maxdelay = MAX_RTR_SOLICITATION_DELAY * hz;
1283 if (maxdelay - mindelay == 0)
1287 (arc4random() % (maxdelay - mindelay)) +
1291 nd6_dad_start((struct ifaddr *)ia, delay);
1294 KASSERT(hostIsNew, ("in6_update_ifa: !hostIsNew"));
1295 ifa_free(&ia->ia_ifa);
1300 * XXX: if a change of an existing address failed, keep the entry
1304 in6_unlink_ifa(ia, ifp);
1305 ifa_free(&ia->ia_ifa);
1310 KASSERT(hostIsNew, ("in6_update_ifa: cleanup: !hostIsNew"));
1311 ifa_free(&ia->ia_ifa);
1312 in6_purgeaddr(&ia->ia_ifa);
1317 * Leave multicast groups. Factored out from in6_purgeaddr().
1318 * This entire work should only be done once, for the default FIB.
1321 in6_purgeaddr_mc(struct ifnet *ifp, struct in6_ifaddr *ia, struct ifaddr *ifa0)
1323 struct sockaddr_in6 mltaddr, mltmask;
1324 struct in6_multi_mship *imm;
1329 * Leave from multicast groups we have joined for the interface.
1331 while ((imm = LIST_FIRST(&ia->ia6_memberships)) != NULL) {
1332 LIST_REMOVE(imm, i6mm_chain);
1333 in6_leavegroup(imm);
1337 * Remove the link-local all-nodes address.
1339 bzero(&mltmask, sizeof(mltmask));
1340 mltmask.sin6_len = sizeof(struct sockaddr_in6);
1341 mltmask.sin6_family = AF_INET6;
1342 mltmask.sin6_addr = in6mask32;
1344 bzero(&mltaddr, sizeof(mltaddr));
1345 mltaddr.sin6_len = sizeof(struct sockaddr_in6);
1346 mltaddr.sin6_family = AF_INET6;
1347 mltaddr.sin6_addr = in6addr_linklocal_allnodes;
1349 if ((error = in6_setscope(&mltaddr.sin6_addr, ifp, NULL)) != 0)
1352 rt = rtalloc1((struct sockaddr *)&mltaddr, 0, 0UL);
1353 if (rt != NULL && rt->rt_gateway != NULL &&
1354 (memcmp(&satosin6(rt->rt_gateway)->sin6_addr,
1355 &ia->ia_addr.sin6_addr,
1356 sizeof(ia->ia_addr.sin6_addr)) == 0)) {
1358 * If no more IPv6 address exists on this interface then
1359 * remove the multicast address route.
1362 memcpy(&mltaddr.sin6_addr, &satosin6(rt_key(rt))->sin6_addr,
1363 sizeof(mltaddr.sin6_addr));
1365 error = rtrequest(RTM_DELETE,
1366 (struct sockaddr *)&mltaddr,
1367 (struct sockaddr *)&ia->ia_addr,
1368 (struct sockaddr *)&mltmask, RTF_UP,
1369 (struct rtentry **)0);
1371 log(LOG_INFO, "%s: link-local all-nodes "
1372 "multicast address deletion error\n",
1376 * Replace the gateway of the route.
1378 struct sockaddr_in6 sa;
1380 bzero(&sa, sizeof(sa));
1381 sa.sin6_len = sizeof(struct sockaddr_in6);
1382 sa.sin6_family = AF_INET6;
1383 memcpy(&sa.sin6_addr, &satosin6(ifa0->ifa_addr)->sin6_addr,
1384 sizeof(sa.sin6_addr));
1385 in6_setscope(&sa.sin6_addr, ifa0->ifa_ifp, NULL);
1386 memcpy(rt->rt_gateway, &sa, sizeof(sa));
1395 * Remove the node-local all-nodes address.
1397 mltaddr.sin6_addr = in6addr_nodelocal_allnodes;
1398 if ((error = in6_setscope(&mltaddr.sin6_addr, ifp, NULL)) != 0)
1401 rt = rtalloc1((struct sockaddr *)&mltaddr, 0, 0UL);
1402 if (rt != NULL && rt->rt_gateway != NULL &&
1403 (memcmp(&satosin6(rt->rt_gateway)->sin6_addr,
1404 &ia->ia_addr.sin6_addr,
1405 sizeof(ia->ia_addr.sin6_addr)) == 0)) {
1407 * If no more IPv6 address exists on this interface then
1408 * remove the multicast address route.
1411 memcpy(&mltaddr.sin6_addr, &satosin6(rt_key(rt))->sin6_addr,
1412 sizeof(mltaddr.sin6_addr));
1415 error = rtrequest(RTM_DELETE,
1416 (struct sockaddr *)&mltaddr,
1417 (struct sockaddr *)&ia->ia_addr,
1418 (struct sockaddr *)&mltmask, RTF_UP,
1419 (struct rtentry **)0);
1421 log(LOG_INFO, "%s: node-local all-nodes"
1422 "multicast address deletion error\n",
1426 * Replace the gateway of the route.
1428 struct sockaddr_in6 sa;
1430 bzero(&sa, sizeof(sa));
1431 sa.sin6_len = sizeof(struct sockaddr_in6);
1432 sa.sin6_family = AF_INET6;
1433 memcpy(&sa.sin6_addr, &satosin6(ifa0->ifa_addr)->sin6_addr,
1434 sizeof(sa.sin6_addr));
1435 in6_setscope(&sa.sin6_addr, ifa0->ifa_ifp, NULL);
1436 memcpy(rt->rt_gateway, &sa, sizeof(sa));
1448 in6_purgeaddr(struct ifaddr *ifa)
1450 struct ifnet *ifp = ifa->ifa_ifp;
1451 struct in6_ifaddr *ia = (struct in6_ifaddr *) ifa;
1453 struct ifaddr *ifa0;
1456 (*carp_detach_p)(ifa);
1459 * find another IPv6 address as the gateway for the
1460 * link-local and node-local all-nodes multicast
1464 TAILQ_FOREACH(ifa0, &ifp->if_addrhead, ifa_link) {
1465 if ((ifa0->ifa_addr->sa_family != AF_INET6) ||
1466 memcmp(&satosin6(ifa0->ifa_addr)->sin6_addr,
1467 &ia->ia_addr.sin6_addr,
1468 sizeof(struct in6_addr)) == 0)
1475 IF_ADDR_RUNLOCK(ifp);
1478 * Remove the loopback route to the interface address.
1479 * The check for the current setting of "nd6_useloopback"
1482 if (ia->ia_flags & IFA_RTSELF) {
1483 error = ifa_del_loopback_route((struct ifaddr *)ia,
1484 (struct sockaddr *)&ia->ia_addr);
1486 ia->ia_flags &= ~IFA_RTSELF;
1489 /* stop DAD processing */
1494 /* Leave multicast groups. */
1495 error = in6_purgeaddr_mc(ifp, ia, ifa0);
1500 plen = in6_mask2len(&ia->ia_prefixmask.sin6_addr, NULL); /* XXX */
1501 if ((ia->ia_flags & IFA_ROUTE) && plen == 128) {
1503 struct sockaddr *dstaddr;
1506 * use the interface address if configuring an
1507 * interface address with a /128 prefix len
1509 if (ia->ia_dstaddr.sin6_family == AF_INET6)
1510 dstaddr = (struct sockaddr *)&ia->ia_dstaddr;
1512 dstaddr = (struct sockaddr *)&ia->ia_addr;
1514 error = rtrequest(RTM_DELETE,
1515 (struct sockaddr *)dstaddr,
1516 (struct sockaddr *)&ia->ia_addr,
1517 (struct sockaddr *)&ia->ia_prefixmask,
1518 ia->ia_flags | RTF_HOST, NULL);
1521 ia->ia_flags &= ~IFA_ROUTE;
1524 in6_unlink_ifa(ia, ifp);
1528 in6_unlink_ifa(struct in6_ifaddr *ia, struct ifnet *ifp)
1533 TAILQ_REMOVE(&ifp->if_addrhead, &ia->ia_ifa, ifa_link);
1534 IF_ADDR_WUNLOCK(ifp);
1535 ifa_free(&ia->ia_ifa); /* if_addrhead */
1538 * Defer the release of what might be the last reference to the
1539 * in6_ifaddr so that it can't be freed before the remainder of the
1543 TAILQ_REMOVE(&V_in6_ifaddrhead, ia, ia_link);
1544 IN6_IFADDR_WUNLOCK();
1547 * Release the reference to the base prefix. There should be a
1548 * positive reference.
1550 if (ia->ia6_ndpr == NULL) {
1552 "in6_unlink_ifa: autoconf'ed address "
1553 "%p has no prefix\n", ia));
1555 ia->ia6_ndpr->ndpr_refcnt--;
1556 ia->ia6_ndpr = NULL;
1560 * Also, if the address being removed is autoconf'ed, call
1561 * pfxlist_onlink_check() since the release might affect the status of
1562 * other (detached) addresses.
1564 if ((ia->ia6_flags & IN6_IFF_AUTOCONF)) {
1565 pfxlist_onlink_check();
1567 ifa_free(&ia->ia_ifa); /* in6_ifaddrhead */
1572 in6_purgeif(struct ifnet *ifp)
1574 struct ifaddr *ifa, *nifa;
1576 TAILQ_FOREACH_SAFE(ifa, &ifp->if_addrhead, ifa_link, nifa) {
1577 if (ifa->ifa_addr->sa_family != AF_INET6)
1587 * SIOCGLIFADDR: get first address. (?)
1588 * SIOCGLIFADDR with IFLR_PREFIX:
1589 * get first address that matches the specified prefix.
1590 * SIOCALIFADDR: add the specified address.
1591 * SIOCALIFADDR with IFLR_PREFIX:
1592 * add the specified prefix, filling hostid part from
1593 * the first link-local address. prefixlen must be <= 64.
1594 * SIOCDLIFADDR: delete the specified address.
1595 * SIOCDLIFADDR with IFLR_PREFIX:
1596 * delete the first address that matches the specified prefix.
1598 * EINVAL on invalid parameters
1599 * EADDRNOTAVAIL on prefix match failed/specified address not found
1600 * other values may be returned from in6_ioctl()
1602 * NOTE: SIOCALIFADDR(with IFLR_PREFIX set) allows prefixlen less than 64.
1603 * this is to accomodate address naming scheme other than RFC2374,
1605 * RFC2373 defines interface id to be 64bit, but it allows non-RFC2374
1606 * address encoding scheme. (see figure on page 8)
1609 in6_lifaddr_ioctl(struct socket *so, u_long cmd, caddr_t data,
1610 struct ifnet *ifp, struct thread *td)
1612 struct if_laddrreq *iflr = (struct if_laddrreq *)data;
1614 struct sockaddr *sa;
1617 if (!data || !ifp) {
1618 panic("invalid argument to in6_lifaddr_ioctl");
1624 /* address must be specified on GET with IFLR_PREFIX */
1625 if ((iflr->flags & IFLR_PREFIX) == 0)
1630 /* address must be specified on ADD and DELETE */
1631 sa = (struct sockaddr *)&iflr->addr;
1632 if (sa->sa_family != AF_INET6)
1634 if (sa->sa_len != sizeof(struct sockaddr_in6))
1636 /* XXX need improvement */
1637 sa = (struct sockaddr *)&iflr->dstaddr;
1638 if (sa->sa_family && sa->sa_family != AF_INET6)
1640 if (sa->sa_len && sa->sa_len != sizeof(struct sockaddr_in6))
1643 default: /* shouldn't happen */
1645 panic("invalid cmd to in6_lifaddr_ioctl");
1651 if (sizeof(struct in6_addr) * 8 < iflr->prefixlen)
1657 struct in6_aliasreq ifra;
1658 struct in6_addr *hostid = NULL;
1662 if ((iflr->flags & IFLR_PREFIX) != 0) {
1663 struct sockaddr_in6 *sin6;
1666 * hostid is to fill in the hostid part of the
1667 * address. hostid points to the first link-local
1668 * address attached to the interface.
1670 ifa = (struct ifaddr *)in6ifa_ifpforlinklocal(ifp, 0);
1672 return EADDRNOTAVAIL;
1673 hostid = IFA_IN6(ifa);
1675 /* prefixlen must be <= 64. */
1676 if (64 < iflr->prefixlen)
1678 prefixlen = iflr->prefixlen;
1680 /* hostid part must be zero. */
1681 sin6 = (struct sockaddr_in6 *)&iflr->addr;
1682 if (sin6->sin6_addr.s6_addr32[2] != 0 ||
1683 sin6->sin6_addr.s6_addr32[3] != 0) {
1687 prefixlen = iflr->prefixlen;
1689 /* copy args to in6_aliasreq, perform ioctl(SIOCAIFADDR_IN6). */
1690 bzero(&ifra, sizeof(ifra));
1691 bcopy(iflr->iflr_name, ifra.ifra_name, sizeof(ifra.ifra_name));
1693 bcopy(&iflr->addr, &ifra.ifra_addr,
1694 ((struct sockaddr *)&iflr->addr)->sa_len);
1696 /* fill in hostid part */
1697 ifra.ifra_addr.sin6_addr.s6_addr32[2] =
1698 hostid->s6_addr32[2];
1699 ifra.ifra_addr.sin6_addr.s6_addr32[3] =
1700 hostid->s6_addr32[3];
1703 if (((struct sockaddr *)&iflr->dstaddr)->sa_family) { /* XXX */
1704 bcopy(&iflr->dstaddr, &ifra.ifra_dstaddr,
1705 ((struct sockaddr *)&iflr->dstaddr)->sa_len);
1707 ifra.ifra_dstaddr.sin6_addr.s6_addr32[2] =
1708 hostid->s6_addr32[2];
1709 ifra.ifra_dstaddr.sin6_addr.s6_addr32[3] =
1710 hostid->s6_addr32[3];
1716 ifra.ifra_prefixmask.sin6_len = sizeof(struct sockaddr_in6);
1717 in6_prefixlen2mask(&ifra.ifra_prefixmask.sin6_addr, prefixlen);
1719 ifra.ifra_flags = iflr->flags & ~IFLR_PREFIX;
1720 return in6_control(so, SIOCAIFADDR_IN6, (caddr_t)&ifra, ifp, td);
1725 struct in6_ifaddr *ia;
1726 struct in6_addr mask, candidate, match;
1727 struct sockaddr_in6 *sin6;
1730 bzero(&mask, sizeof(mask));
1731 if (iflr->flags & IFLR_PREFIX) {
1732 /* lookup a prefix rather than address. */
1733 in6_prefixlen2mask(&mask, iflr->prefixlen);
1735 sin6 = (struct sockaddr_in6 *)&iflr->addr;
1736 bcopy(&sin6->sin6_addr, &match, sizeof(match));
1737 match.s6_addr32[0] &= mask.s6_addr32[0];
1738 match.s6_addr32[1] &= mask.s6_addr32[1];
1739 match.s6_addr32[2] &= mask.s6_addr32[2];
1740 match.s6_addr32[3] &= mask.s6_addr32[3];
1742 /* if you set extra bits, that's wrong */
1743 if (bcmp(&match, &sin6->sin6_addr, sizeof(match)))
1748 if (cmd == SIOCGLIFADDR) {
1749 /* on getting an address, take the 1st match */
1752 /* on deleting an address, do exact match */
1753 in6_prefixlen2mask(&mask, 128);
1754 sin6 = (struct sockaddr_in6 *)&iflr->addr;
1755 bcopy(&sin6->sin6_addr, &match, sizeof(match));
1762 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
1763 if (ifa->ifa_addr->sa_family != AF_INET6)
1769 * XXX: this is adhoc, but is necessary to allow
1770 * a user to specify fe80::/64 (not /10) for a
1771 * link-local address.
1773 bcopy(IFA_IN6(ifa), &candidate, sizeof(candidate));
1774 in6_clearscope(&candidate);
1775 candidate.s6_addr32[0] &= mask.s6_addr32[0];
1776 candidate.s6_addr32[1] &= mask.s6_addr32[1];
1777 candidate.s6_addr32[2] &= mask.s6_addr32[2];
1778 candidate.s6_addr32[3] &= mask.s6_addr32[3];
1779 if (IN6_ARE_ADDR_EQUAL(&candidate, &match))
1784 IF_ADDR_RUNLOCK(ifp);
1786 return EADDRNOTAVAIL;
1789 if (cmd == SIOCGLIFADDR) {
1792 /* fill in the if_laddrreq structure */
1793 bcopy(&ia->ia_addr, &iflr->addr, ia->ia_addr.sin6_len);
1794 error = sa6_recoverscope(
1795 (struct sockaddr_in6 *)&iflr->addr);
1801 if ((ifp->if_flags & IFF_POINTOPOINT) != 0) {
1802 bcopy(&ia->ia_dstaddr, &iflr->dstaddr,
1803 ia->ia_dstaddr.sin6_len);
1804 error = sa6_recoverscope(
1805 (struct sockaddr_in6 *)&iflr->dstaddr);
1811 bzero(&iflr->dstaddr, sizeof(iflr->dstaddr));
1814 in6_mask2len(&ia->ia_prefixmask.sin6_addr, NULL);
1816 iflr->flags = ia->ia6_flags; /* XXX */
1821 struct in6_aliasreq ifra;
1823 /* fill in6_aliasreq and do ioctl(SIOCDIFADDR_IN6) */
1824 bzero(&ifra, sizeof(ifra));
1825 bcopy(iflr->iflr_name, ifra.ifra_name,
1826 sizeof(ifra.ifra_name));
1828 bcopy(&ia->ia_addr, &ifra.ifra_addr,
1829 ia->ia_addr.sin6_len);
1830 if ((ifp->if_flags & IFF_POINTOPOINT) != 0) {
1831 bcopy(&ia->ia_dstaddr, &ifra.ifra_dstaddr,
1832 ia->ia_dstaddr.sin6_len);
1834 bzero(&ifra.ifra_dstaddr,
1835 sizeof(ifra.ifra_dstaddr));
1837 bcopy(&ia->ia_prefixmask, &ifra.ifra_dstaddr,
1838 ia->ia_prefixmask.sin6_len);
1840 ifra.ifra_flags = ia->ia6_flags;
1842 return in6_control(so, SIOCDIFADDR_IN6, (caddr_t)&ifra,
1848 return EOPNOTSUPP; /* just for safety */
1852 * Initialize an interface's intetnet6 address
1853 * and routing table entry.
1856 in6_ifinit(struct ifnet *ifp, struct in6_ifaddr *ia,
1857 struct sockaddr_in6 *sin6, int newhost)
1859 int error = 0, plen, ifacount = 0;
1864 * Give the interface a chance to initialize
1865 * if this is its first address,
1866 * and to validate the address if necessary.
1869 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
1870 if (ifa->ifa_addr->sa_family != AF_INET6)
1874 IF_ADDR_RUNLOCK(ifp);
1876 ia->ia_addr = *sin6;
1878 if (ifacount <= 1 && ifp->if_ioctl) {
1879 error = (*ifp->if_ioctl)(ifp, SIOCSIFADDR, (caddr_t)ia);
1887 ia->ia_ifa.ifa_metric = ifp->if_metric;
1889 /* we could do in(6)_socktrim here, but just omit it at this moment. */
1893 * If a new destination address is specified for a point-to-point
1894 * interface, install a route to the destination as an interface
1896 * XXX: the logic below rejects assigning multiple addresses on a p2p
1897 * interface that share the same destination.
1899 plen = in6_mask2len(&ia->ia_prefixmask.sin6_addr, NULL); /* XXX */
1900 if (!(ia->ia_flags & IFA_ROUTE) && plen == 128 &&
1901 ia->ia_dstaddr.sin6_family == AF_INET6) {
1902 int rtflags = RTF_UP | RTF_HOST;
1904 error = rtrequest(RTM_ADD,
1905 (struct sockaddr *)&ia->ia_dstaddr,
1906 (struct sockaddr *)&ia->ia_addr,
1907 (struct sockaddr *)&ia->ia_prefixmask,
1908 ia->ia_flags | rtflags, NULL);
1911 ia->ia_flags |= IFA_ROUTE;
1913 * Handle the case for ::1 .
1915 if (ifp->if_flags & IFF_LOOPBACK)
1916 ia->ia_flags |= IFA_RTSELF;
1920 * add a loopback route to self
1922 if (!(ia->ia_flags & IFA_RTSELF) && V_nd6_useloopback) {
1923 error = ifa_add_loopback_route((struct ifaddr *)ia,
1924 (struct sockaddr *)&ia->ia_addr);
1926 ia->ia_flags |= IFA_RTSELF;
1929 /* Add ownaddr as loopback rtentry, if necessary (ex. on p2p link). */
1931 in6_ifaddloop(&(ia->ia_ifa));
1937 * Find an IPv6 interface link-local address specific to an interface.
1938 * ifaddr is returned referenced.
1941 in6ifa_ifpforlinklocal(struct ifnet *ifp, int ignoreflags)
1946 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
1947 if (ifa->ifa_addr->sa_family != AF_INET6)
1949 if (IN6_IS_ADDR_LINKLOCAL(IFA_IN6(ifa))) {
1950 if ((((struct in6_ifaddr *)ifa)->ia6_flags &
1957 IF_ADDR_RUNLOCK(ifp);
1959 return ((struct in6_ifaddr *)ifa);
1964 * find the internet address corresponding to a given interface and address.
1965 * ifaddr is returned referenced.
1968 in6ifa_ifpwithaddr(struct ifnet *ifp, struct in6_addr *addr)
1973 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
1974 if (ifa->ifa_addr->sa_family != AF_INET6)
1976 if (IN6_ARE_ADDR_EQUAL(addr, IFA_IN6(ifa))) {
1981 IF_ADDR_RUNLOCK(ifp);
1983 return ((struct in6_ifaddr *)ifa);
1987 * Convert IP6 address to printable (loggable) representation. Caller
1988 * has to make sure that ip6buf is at least INET6_ADDRSTRLEN long.
1990 static char digits[] = "0123456789abcdef";
1992 ip6_sprintf(char *ip6buf, const struct in6_addr *addr)
1994 int i, cnt = 0, maxcnt = 0, idx = 0, index = 0;
1996 const u_int16_t *a = (const u_int16_t *)addr;
1998 int dcolon = 0, zero = 0;
2002 for (i = 0; i < 8; i++) {
2003 if (*(a + i) == 0) {
2008 else if (maxcnt < cnt) {
2019 for (i = 0; i < 8; i++) {
2030 if (dcolon == 0 && *(a + 1) == 0 && i == index) {
2042 d = (const u_char *)a;
2043 /* Try to eliminate leading zeros in printout like in :0001. */
2045 *cp = digits[*d >> 4];
2050 *cp = digits[*d++ & 0xf];
2051 if (zero == 0 || (*cp != '0')) {
2055 *cp = digits[*d >> 4];
2056 if (zero == 0 || (*cp != '0')) {
2060 *cp++ = digits[*d & 0xf];
2069 in6_localaddr(struct in6_addr *in6)
2071 struct in6_ifaddr *ia;
2073 if (IN6_IS_ADDR_LOOPBACK(in6) || IN6_IS_ADDR_LINKLOCAL(in6))
2077 TAILQ_FOREACH(ia, &V_in6_ifaddrhead, ia_link) {
2078 if (IN6_ARE_MASKED_ADDR_EQUAL(in6, &ia->ia_addr.sin6_addr,
2079 &ia->ia_prefixmask.sin6_addr)) {
2080 IN6_IFADDR_RUNLOCK();
2084 IN6_IFADDR_RUNLOCK();
2090 * Return 1 if an internet address is for the local host and configured
2091 * on one of its interfaces.
2094 in6_localip(struct in6_addr *in6)
2096 struct in6_ifaddr *ia;
2099 TAILQ_FOREACH(ia, &V_in6_ifaddrhead, ia_link) {
2100 if (IN6_ARE_ADDR_EQUAL(in6, &ia->ia_addr.sin6_addr)) {
2101 IN6_IFADDR_RUNLOCK();
2105 IN6_IFADDR_RUNLOCK();
2111 in6_is_addr_deprecated(struct sockaddr_in6 *sa6)
2113 struct in6_ifaddr *ia;
2116 TAILQ_FOREACH(ia, &V_in6_ifaddrhead, ia_link) {
2117 if (IN6_ARE_ADDR_EQUAL(&ia->ia_addr.sin6_addr,
2119 (ia->ia6_flags & IN6_IFF_DEPRECATED) != 0) {
2120 IN6_IFADDR_RUNLOCK();
2121 return (1); /* true */
2124 /* XXX: do we still have to go thru the rest of the list? */
2126 IN6_IFADDR_RUNLOCK();
2128 return (0); /* false */
2132 * return length of part which dst and src are equal
2136 in6_matchlen(struct in6_addr *src, struct in6_addr *dst)
2139 u_char *s = (u_char *)src, *d = (u_char *)dst;
2140 u_char *lim = s + 16, r;
2143 if ((r = (*d++ ^ *s++)) != 0) {
2154 /* XXX: to be scope conscious */
2156 in6_are_prefix_equal(struct in6_addr *p1, struct in6_addr *p2, int len)
2158 int bytelen, bitlen;
2161 if (0 > len || len > 128) {
2162 log(LOG_ERR, "in6_are_prefix_equal: invalid prefix length(%d)\n",
2170 if (bcmp(&p1->s6_addr, &p2->s6_addr, bytelen))
2173 p1->s6_addr[bytelen] >> (8 - bitlen) !=
2174 p2->s6_addr[bytelen] >> (8 - bitlen))
2181 in6_prefixlen2mask(struct in6_addr *maskp, int len)
2183 u_char maskarray[8] = {0x80, 0xc0, 0xe0, 0xf0, 0xf8, 0xfc, 0xfe, 0xff};
2184 int bytelen, bitlen, i;
2187 if (0 > len || len > 128) {
2188 log(LOG_ERR, "in6_prefixlen2mask: invalid prefix length(%d)\n",
2193 bzero(maskp, sizeof(*maskp));
2196 for (i = 0; i < bytelen; i++)
2197 maskp->s6_addr[i] = 0xff;
2199 maskp->s6_addr[bytelen] = maskarray[bitlen - 1];
2203 * return the best address out of the same scope. if no address was
2204 * found, return the first valid address from designated IF.
2207 in6_ifawithifp(struct ifnet *ifp, struct in6_addr *dst)
2209 int dst_scope = in6_addrscope(dst), blen = -1, tlen;
2211 struct in6_ifaddr *besta = 0;
2212 struct in6_ifaddr *dep[2]; /* last-resort: deprecated */
2214 dep[0] = dep[1] = NULL;
2217 * We first look for addresses in the same scope.
2218 * If there is one, return it.
2219 * If two or more, return one which matches the dst longest.
2220 * If none, return one of global addresses assigned other ifs.
2223 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
2224 if (ifa->ifa_addr->sa_family != AF_INET6)
2226 if (((struct in6_ifaddr *)ifa)->ia6_flags & IN6_IFF_ANYCAST)
2227 continue; /* XXX: is there any case to allow anycast? */
2228 if (((struct in6_ifaddr *)ifa)->ia6_flags & IN6_IFF_NOTREADY)
2229 continue; /* don't use this interface */
2230 if (((struct in6_ifaddr *)ifa)->ia6_flags & IN6_IFF_DETACHED)
2232 if (((struct in6_ifaddr *)ifa)->ia6_flags & IN6_IFF_DEPRECATED) {
2233 if (V_ip6_use_deprecated)
2234 dep[0] = (struct in6_ifaddr *)ifa;
2238 if (dst_scope == in6_addrscope(IFA_IN6(ifa))) {
2240 * call in6_matchlen() as few as possible
2244 blen = in6_matchlen(&besta->ia_addr.sin6_addr, dst);
2245 tlen = in6_matchlen(IFA_IN6(ifa), dst);
2248 besta = (struct in6_ifaddr *)ifa;
2251 besta = (struct in6_ifaddr *)ifa;
2255 ifa_ref(&besta->ia_ifa);
2256 IF_ADDR_RUNLOCK(ifp);
2260 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
2261 if (ifa->ifa_addr->sa_family != AF_INET6)
2263 if (((struct in6_ifaddr *)ifa)->ia6_flags & IN6_IFF_ANYCAST)
2264 continue; /* XXX: is there any case to allow anycast? */
2265 if (((struct in6_ifaddr *)ifa)->ia6_flags & IN6_IFF_NOTREADY)
2266 continue; /* don't use this interface */
2267 if (((struct in6_ifaddr *)ifa)->ia6_flags & IN6_IFF_DETACHED)
2269 if (((struct in6_ifaddr *)ifa)->ia6_flags & IN6_IFF_DEPRECATED) {
2270 if (V_ip6_use_deprecated)
2271 dep[1] = (struct in6_ifaddr *)ifa;
2277 IF_ADDR_RUNLOCK(ifp);
2278 return (struct in6_ifaddr *)ifa;
2280 IF_ADDR_RUNLOCK(ifp);
2282 /* use the last-resort values, that are, deprecated addresses */
2292 * perform DAD when interface becomes IFF_UP.
2295 in6_if_up(struct ifnet *ifp)
2298 struct in6_ifaddr *ia;
2301 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
2302 if (ifa->ifa_addr->sa_family != AF_INET6)
2304 ia = (struct in6_ifaddr *)ifa;
2305 if (ia->ia6_flags & IN6_IFF_TENTATIVE) {
2307 * The TENTATIVE flag was likely set by hand
2308 * beforehand, implicitly indicating the need for DAD.
2309 * We may be able to skip the random delay in this
2310 * case, but we impose delays just in case.
2313 arc4random() % (MAX_RTR_SOLICITATION_DELAY * hz));
2316 IF_ADDR_RUNLOCK(ifp);
2319 * special cases, like 6to4, are handled in in6_ifattach
2321 in6_ifattach(ifp, NULL);
2325 in6if_do_dad(struct ifnet *ifp)
2327 if ((ifp->if_flags & IFF_LOOPBACK) != 0)
2330 if (ND_IFINFO(ifp)->flags & ND6_IFF_IFDISABLED)
2333 switch (ifp->if_type) {
2339 * These interfaces do not have the IFF_LOOPBACK flag,
2340 * but loop packets back. We do not have to do DAD on such
2341 * interfaces. We should even omit it, because loop-backed
2342 * NS would confuse the DAD procedure.
2347 * Our DAD routine requires the interface up and running.
2348 * However, some interfaces can be up before the RUNNING
2349 * status. Additionaly, users may try to assign addresses
2350 * before the interface becomes up (or running).
2351 * We simply skip DAD in such a case as a work around.
2352 * XXX: we should rather mark "tentative" on such addresses,
2353 * and do DAD after the interface becomes ready.
2355 if (!((ifp->if_flags & IFF_UP) &&
2356 (ifp->if_drv_flags & IFF_DRV_RUNNING)))
2364 * Calculate max IPv6 MTU through all the interfaces and store it
2370 unsigned long maxmtu = 0;
2373 IFNET_RLOCK_NOSLEEP();
2374 TAILQ_FOREACH(ifp, &V_ifnet, if_list) {
2375 /* this function can be called during ifnet initialization */
2376 if (!ifp->if_afdata[AF_INET6])
2378 if ((ifp->if_flags & IFF_LOOPBACK) == 0 &&
2379 IN6_LINKMTU(ifp) > maxmtu)
2380 maxmtu = IN6_LINKMTU(ifp);
2382 IFNET_RUNLOCK_NOSLEEP();
2383 if (maxmtu) /* update only when maxmtu is positive */
2384 V_in6_maxmtu = maxmtu;
2388 * Provide the length of interface identifiers to be used for the link attached
2389 * to the given interface. The length should be defined in "IPv6 over
2390 * xxx-link" document. Note that address architecture might also define
2391 * the length for a particular set of address prefixes, regardless of the
2392 * link type. As clarified in rfc2462bis, those two definitions should be
2393 * consistent, and those really are as of August 2004.
2396 in6_if2idlen(struct ifnet *ifp)
2398 switch (ifp->if_type) {
2399 case IFT_ETHER: /* RFC2464 */
2400 #ifdef IFT_PROPVIRTUAL
2401 case IFT_PROPVIRTUAL: /* XXX: no RFC. treat it as ether */
2404 case IFT_L2VLAN: /* ditto */
2406 #ifdef IFT_IEEE80211
2407 case IFT_IEEE80211: /* ditto */
2410 case IFT_MIP: /* ditto */
2412 case IFT_INFINIBAND:
2414 case IFT_FDDI: /* RFC2467 */
2416 case IFT_ISO88025: /* RFC2470 (IPv6 over Token Ring) */
2418 case IFT_PPP: /* RFC2472 */
2420 case IFT_ARCNET: /* RFC2497 */
2422 case IFT_FRELAY: /* RFC2590 */
2424 case IFT_IEEE1394: /* RFC3146 */
2427 return (64); /* draft-ietf-v6ops-mech-v2-07 */
2429 return (64); /* XXX: is this really correct? */
2432 * Unknown link type:
2433 * It might be controversial to use the today's common constant
2434 * of 64 for these cases unconditionally. For full compliance,
2435 * we should return an error in this case. On the other hand,
2436 * if we simply miss the standard for the link type or a new
2437 * standard is defined for a new link type, the IFID length
2438 * is very likely to be the common constant. As a compromise,
2439 * we always use the constant, but make an explicit notice
2440 * indicating the "unknown" case.
2442 printf("in6_if2idlen: unknown link type (%d)\n", ifp->if_type);
2447 #include <sys/sysctl.h>
2449 struct in6_llentry {
2450 struct llentry base;
2451 struct sockaddr_in6 l3_addr6;
2454 static struct llentry *
2455 in6_lltable_new(const struct sockaddr *l3addr, u_int flags)
2457 struct in6_llentry *lle;
2459 lle = malloc(sizeof(struct in6_llentry), M_LLTABLE,
2460 M_DONTWAIT | M_ZERO);
2461 if (lle == NULL) /* NB: caller generates msg */
2464 lle->l3_addr6 = *(const struct sockaddr_in6 *)l3addr;
2465 lle->base.lle_refcnt = 1;
2466 LLE_LOCK_INIT(&lle->base);
2467 callout_init_rw(&lle->base.ln_timer_ch, &lle->base.lle_lock,
2468 CALLOUT_RETURNUNLOCKED);
2474 * Deletes an address from the address table.
2475 * This function is called by the timer functions
2476 * such as arptimer() and nd6_llinfo_timer(), and
2477 * the caller does the locking.
2480 in6_lltable_free(struct lltable *llt, struct llentry *lle)
2483 LLE_LOCK_DESTROY(lle);
2484 free(lle, M_LLTABLE);
2488 in6_lltable_prefix_free(struct lltable *llt,
2489 const struct sockaddr *prefix,
2490 const struct sockaddr *mask,
2493 const struct sockaddr_in6 *pfx = (const struct sockaddr_in6 *)prefix;
2494 const struct sockaddr_in6 *msk = (const struct sockaddr_in6 *)mask;
2495 struct llentry *lle, *next;
2499 * (flags & LLE_STATIC) means deleting all entries
2500 * including static ND6 entries
2502 for (i=0; i < LLTBL_HASHTBL_SIZE; i++) {
2503 LIST_FOREACH_SAFE(lle, &llt->lle_head[i], lle_next, next) {
2504 if (IN6_ARE_MASKED_ADDR_EQUAL(
2505 &((struct sockaddr_in6 *)L3_ADDR(lle))->sin6_addr,
2508 ((flags & LLE_STATIC) || !(lle->la_flags & LLE_STATIC))) {
2511 canceled = callout_drain(&lle->la_timer);
2522 in6_lltable_rtcheck(struct ifnet *ifp,
2524 const struct sockaddr *l3addr)
2527 char ip6buf[INET6_ADDRSTRLEN];
2529 KASSERT(l3addr->sa_family == AF_INET6,
2530 ("sin_family %d", l3addr->sa_family));
2532 /* XXX rtalloc1 should take a const param */
2533 rt = rtalloc1(__DECONST(struct sockaddr *, l3addr), 0, 0);
2534 if (rt == NULL || (rt->rt_flags & RTF_GATEWAY) || rt->rt_ifp != ifp) {
2537 * Create an ND6 cache for an IPv6 neighbor
2538 * that is not covered by our own prefix.
2540 /* XXX ifaof_ifpforaddr should take a const param */
2541 ifa = ifaof_ifpforaddr(__DECONST(struct sockaddr *, l3addr), ifp);
2548 log(LOG_INFO, "IPv6 address: \"%s\" is not on the network\n",
2549 ip6_sprintf(ip6buf, &((const struct sockaddr_in6 *)l3addr)->sin6_addr));
2558 static struct llentry *
2559 in6_lltable_lookup(struct lltable *llt, u_int flags,
2560 const struct sockaddr *l3addr)
2562 const struct sockaddr_in6 *sin6 = (const struct sockaddr_in6 *)l3addr;
2563 struct ifnet *ifp = llt->llt_ifp;
2564 struct llentry *lle;
2565 struct llentries *lleh;
2568 IF_AFDATA_LOCK_ASSERT(ifp);
2569 KASSERT(l3addr->sa_family == AF_INET6,
2570 ("sin_family %d", l3addr->sa_family));
2572 hashkey = sin6->sin6_addr.s6_addr32[3];
2573 lleh = &llt->lle_head[LLATBL_HASH(hashkey, LLTBL_HASHMASK)];
2574 LIST_FOREACH(lle, lleh, lle_next) {
2575 struct sockaddr_in6 *sa6 = (struct sockaddr_in6 *)L3_ADDR(lle);
2576 if (lle->la_flags & LLE_DELETED)
2578 if (bcmp(&sa6->sin6_addr, &sin6->sin6_addr,
2579 sizeof(struct in6_addr)) == 0)
2584 if (!(flags & LLE_CREATE))
2587 * A route that covers the given address must have
2588 * been installed 1st because we are doing a resolution,
2591 if (!(flags & LLE_IFADDR) &&
2592 in6_lltable_rtcheck(ifp, flags, l3addr) != 0)
2595 lle = in6_lltable_new(l3addr, flags);
2597 log(LOG_INFO, "lla_lookup: new lle malloc failed\n");
2600 lle->la_flags = flags & ~LLE_CREATE;
2601 if ((flags & (LLE_CREATE | LLE_IFADDR)) == (LLE_CREATE | LLE_IFADDR)) {
2602 bcopy(IF_LLADDR(ifp), &lle->ll_addr, ifp->if_addrlen);
2603 lle->la_flags |= (LLE_VALID | LLE_STATIC);
2607 lle->lle_head = lleh;
2608 LIST_INSERT_HEAD(lleh, lle, lle_next);
2609 } else if (flags & LLE_DELETE) {
2610 if (!(lle->la_flags & LLE_IFADDR) || (flags & LLE_IFADDR)) {
2612 lle->la_flags = LLE_DELETED;
2615 log(LOG_INFO, "ifaddr cache = %p is deleted\n", lle);
2620 if (LLE_IS_VALID(lle)) {
2621 if (flags & LLE_EXCLUSIVE)
2630 in6_lltable_dump(struct lltable *llt, struct sysctl_req *wr)
2632 struct ifnet *ifp = llt->llt_ifp;
2633 struct llentry *lle;
2636 struct rt_msghdr rtm;
2637 struct sockaddr_in6 sin6;
2639 * ndp.c assumes that sdl is word aligned
2644 struct sockaddr_dl sdl;
2648 if (ifp->if_flags & IFF_LOOPBACK)
2651 LLTABLE_LOCK_ASSERT();
2654 for (i = 0; i < LLTBL_HASHTBL_SIZE; i++) {
2655 LIST_FOREACH(lle, &llt->lle_head[i], lle_next) {
2656 struct sockaddr_dl *sdl;
2658 /* skip deleted or invalid entries */
2659 if ((lle->la_flags & (LLE_DELETED|LLE_VALID)) != LLE_VALID)
2661 /* Skip if jailed and not a valid IP of the prison. */
2662 if (prison_if(wr->td->td_ucred, L3_ADDR(lle)) != 0)
2665 * produce a msg made of:
2667 * struct sockaddr_in6 (IPv6)
2668 * struct sockaddr_dl;
2670 bzero(&ndpc, sizeof(ndpc));
2671 ndpc.rtm.rtm_msglen = sizeof(ndpc);
2672 ndpc.rtm.rtm_version = RTM_VERSION;
2673 ndpc.rtm.rtm_type = RTM_GET;
2674 ndpc.rtm.rtm_flags = RTF_UP;
2675 ndpc.rtm.rtm_addrs = RTA_DST | RTA_GATEWAY;
2676 ndpc.sin6.sin6_family = AF_INET6;
2677 ndpc.sin6.sin6_len = sizeof(ndpc.sin6);
2678 bcopy(L3_ADDR(lle), &ndpc.sin6, L3_ADDR_LEN(lle));
2681 if (lle->la_flags & LLE_PUB)
2682 ndpc.rtm.rtm_flags |= RTF_ANNOUNCE;
2685 sdl->sdl_family = AF_LINK;
2686 sdl->sdl_len = sizeof(*sdl);
2687 sdl->sdl_alen = ifp->if_addrlen;
2688 sdl->sdl_index = ifp->if_index;
2689 sdl->sdl_type = ifp->if_type;
2690 bcopy(&lle->ll_addr, LLADDR(sdl), ifp->if_addrlen);
2691 ndpc.rtm.rtm_rmx.rmx_expire =
2692 lle->la_flags & LLE_STATIC ? 0 : lle->la_expire;
2693 ndpc.rtm.rtm_flags |= (RTF_HOST | RTF_LLDATA);
2694 if (lle->la_flags & LLE_STATIC)
2695 ndpc.rtm.rtm_flags |= RTF_STATIC;
2696 ndpc.rtm.rtm_index = ifp->if_index;
2697 error = SYSCTL_OUT(wr, &ndpc, sizeof(ndpc));
2706 in6_domifattach(struct ifnet *ifp)
2708 struct in6_ifextra *ext;
2710 ext = (struct in6_ifextra *)malloc(sizeof(*ext), M_IFADDR, M_WAITOK);
2711 bzero(ext, sizeof(*ext));
2713 ext->in6_ifstat = (struct in6_ifstat *)malloc(sizeof(struct in6_ifstat),
2714 M_IFADDR, M_WAITOK);
2715 bzero(ext->in6_ifstat, sizeof(*ext->in6_ifstat));
2718 (struct icmp6_ifstat *)malloc(sizeof(struct icmp6_ifstat),
2719 M_IFADDR, M_WAITOK);
2720 bzero(ext->icmp6_ifstat, sizeof(*ext->icmp6_ifstat));
2722 ext->nd_ifinfo = nd6_ifattach(ifp);
2723 ext->scope6_id = scope6_ifattach(ifp);
2724 ext->lltable = lltable_init(ifp, AF_INET6);
2725 if (ext->lltable != NULL) {
2726 ext->lltable->llt_free = in6_lltable_free;
2727 ext->lltable->llt_prefix_free = in6_lltable_prefix_free;
2728 ext->lltable->llt_lookup = in6_lltable_lookup;
2729 ext->lltable->llt_dump = in6_lltable_dump;
2732 ext->mld_ifinfo = mld_domifattach(ifp);
2738 in6_domifdetach(struct ifnet *ifp, void *aux)
2740 struct in6_ifextra *ext = (struct in6_ifextra *)aux;
2742 mld_domifdetach(ifp);
2743 scope6_ifdetach(ext->scope6_id);
2744 nd6_ifdetach(ext->nd_ifinfo);
2745 lltable_free(ext->lltable);
2746 free(ext->in6_ifstat, M_IFADDR);
2747 free(ext->icmp6_ifstat, M_IFADDR);
2748 free(ext, M_IFADDR);
2752 * Convert sockaddr_in6 to sockaddr_in. Original sockaddr_in6 must be
2753 * v4 mapped addr or v4 compat addr
2756 in6_sin6_2_sin(struct sockaddr_in *sin, struct sockaddr_in6 *sin6)
2759 bzero(sin, sizeof(*sin));
2760 sin->sin_len = sizeof(struct sockaddr_in);
2761 sin->sin_family = AF_INET;
2762 sin->sin_port = sin6->sin6_port;
2763 sin->sin_addr.s_addr = sin6->sin6_addr.s6_addr32[3];
2766 /* Convert sockaddr_in to sockaddr_in6 in v4 mapped addr format. */
2768 in6_sin_2_v4mapsin6(struct sockaddr_in *sin, struct sockaddr_in6 *sin6)
2770 bzero(sin6, sizeof(*sin6));
2771 sin6->sin6_len = sizeof(struct sockaddr_in6);
2772 sin6->sin6_family = AF_INET6;
2773 sin6->sin6_port = sin->sin_port;
2774 sin6->sin6_addr.s6_addr32[0] = 0;
2775 sin6->sin6_addr.s6_addr32[1] = 0;
2776 sin6->sin6_addr.s6_addr32[2] = IPV6_ADDR_INT32_SMP;
2777 sin6->sin6_addr.s6_addr32[3] = sin->sin_addr.s_addr;
2780 /* Convert sockaddr_in6 into sockaddr_in. */
2782 in6_sin6_2_sin_in_sock(struct sockaddr *nam)
2784 struct sockaddr_in *sin_p;
2785 struct sockaddr_in6 sin6;
2788 * Save original sockaddr_in6 addr and convert it
2791 sin6 = *(struct sockaddr_in6 *)nam;
2792 sin_p = (struct sockaddr_in *)nam;
2793 in6_sin6_2_sin(sin_p, &sin6);
2796 /* Convert sockaddr_in into sockaddr_in6 in v4 mapped addr format. */
2798 in6_sin_2_v4mapsin6_in_sock(struct sockaddr **nam)
2800 struct sockaddr_in *sin_p;
2801 struct sockaddr_in6 *sin6_p;
2803 sin6_p = malloc(sizeof *sin6_p, M_SONAME,
2805 sin_p = (struct sockaddr_in *)*nam;
2806 in6_sin_2_v4mapsin6(sin_p, sin6_p);
2807 free(*nam, M_SONAME);
2808 *nam = (struct sockaddr *)sin6_p;