sys/netinet6/raw_ip6.c

1.86.8.2  dyoung /*	$NetBSD: raw_ip6.c,v 1.86.8.2 2007/07/19 20:48:59 dyoung Exp $	*/
1.86.8.2  dyoung /*	$KAME: raw_ip6.c,v 1.82 2001/07/23 18:57:56 jinmei Exp $	*/
1.86.8.2  dyoung
1.86.8.2  dyoung /*
1.86.8.2  dyoung  * Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
1.86.8.2  dyoung  * All rights reserved.
1.86.8.2  dyoung  *
1.86.8.2  dyoung  * Redistribution and use in source and binary forms, with or without
1.86.8.2  dyoung  * modification, are permitted provided that the following conditions
1.86.8.2  dyoung  * are met:
1.86.8.2  dyoung  * 1. Redistributions of source code must retain the above copyright
1.86.8.2  dyoung  *    notice, this list of conditions and the following disclaimer.
1.86.8.2  dyoung  * 2. Redistributions in binary form must reproduce the above copyright
1.86.8.2  dyoung  *    notice, this list of conditions and the following disclaimer in the
1.86.8.2  dyoung  *    documentation and/or other materials provided with the distribution.
1.86.8.2  dyoung  * 3. Neither the name of the project nor the names of its contributors
1.86.8.2  dyoung  *    may be used to endorse or promote products derived from this software
1.86.8.2  dyoung  *    without specific prior written permission.
1.86.8.2  dyoung  *
1.86.8.2  dyoung  * THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
1.86.8.2  dyoung  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1.86.8.2  dyoung  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
1.86.8.2  dyoung  * ARE DISCLAIMED.  IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
1.86.8.2  dyoung  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
1.86.8.2  dyoung  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
1.86.8.2  dyoung  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1.86.8.2  dyoung  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
1.86.8.2  dyoung  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
1.86.8.2  dyoung  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
1.86.8.2  dyoung  * SUCH DAMAGE.
1.86.8.2  dyoung  */
1.86.8.2  dyoung
1.86.8.2  dyoung /*
1.86.8.2  dyoung  * Copyright (c) 1982, 1986, 1988, 1993
1.86.8.2  dyoung  *	The Regents of the University of California.  All rights reserved.
1.86.8.2  dyoung  *
1.86.8.2  dyoung  * Redistribution and use in source and binary forms, with or without
1.86.8.2  dyoung  * modification, are permitted provided that the following conditions
1.86.8.2  dyoung  * are met:
1.86.8.2  dyoung  * 1. Redistributions of source code must retain the above copyright
1.86.8.2  dyoung  *    notice, this list of conditions and the following disclaimer.
1.86.8.2  dyoung  * 2. Redistributions in binary form must reproduce the above copyright
1.86.8.2  dyoung  *    notice, this list of conditions and the following disclaimer in the
1.86.8.2  dyoung  *    documentation and/or other materials provided with the distribution.
1.86.8.2  dyoung  * 3. Neither the name of the University nor the names of its contributors
1.86.8.2  dyoung  *    may be used to endorse or promote products derived from this software
1.86.8.2  dyoung  *    without specific prior written permission.
1.86.8.2  dyoung  *
1.86.8.2  dyoung  * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
1.86.8.2  dyoung  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1.86.8.2  dyoung  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
1.86.8.2  dyoung  * ARE DISCLAIMED.  IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
1.86.8.2  dyoung  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
1.86.8.2  dyoung  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
1.86.8.2  dyoung  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1.86.8.2  dyoung  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
1.86.8.2  dyoung  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
1.86.8.2  dyoung  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
1.86.8.2  dyoung  * SUCH DAMAGE.
1.86.8.2  dyoung  *
1.86.8.2  dyoung  *	@(#)raw_ip.c	8.2 (Berkeley) 1/4/94
1.86.8.2  dyoung  */
1.86.8.2  dyoung
1.86.8.2  dyoung #include <sys/cdefs.h>
1.86.8.2  dyoung __KERNEL_RCSID(0, "$NetBSD: raw_ip6.c,v 1.86.8.2 2007/07/19 20:48:59 dyoung Exp $");
1.86.8.2  dyoung
1.86.8.2  dyoung #include "opt_ipsec.h"
1.86.8.2  dyoung
1.86.8.2  dyoung #include <sys/param.h>
1.86.8.2  dyoung #include <sys/sysctl.h>
1.86.8.2  dyoung #include <sys/malloc.h>
1.86.8.2  dyoung #include <sys/mbuf.h>
1.86.8.2  dyoung #include <sys/socket.h>
1.86.8.2  dyoung #include <sys/protosw.h>
1.86.8.2  dyoung #include <sys/socketvar.h>
1.86.8.2  dyoung #include <sys/errno.h>
1.86.8.2  dyoung #include <sys/systm.h>
1.86.8.2  dyoung #include <sys/proc.h>
1.86.8.2  dyoung #include <sys/kauth.h>
1.86.8.2  dyoung
1.86.8.2  dyoung #include <net/if.h>
1.86.8.2  dyoung #include <net/route.h>
1.86.8.2  dyoung #include <net/if_types.h>
1.86.8.2  dyoung
1.86.8.2  dyoung #include <netinet/in.h>
1.86.8.2  dyoung #include <netinet/in_var.h>
1.86.8.2  dyoung #include <netinet/ip6.h>
1.86.8.2  dyoung #include <netinet6/ip6_var.h>
1.86.8.2  dyoung #include <netinet6/ip6_mroute.h>
1.86.8.2  dyoung #include <netinet/icmp6.h>
1.86.8.2  dyoung #include <netinet6/in6_pcb.h>
1.86.8.2  dyoung #include <netinet6/nd6.h>
1.86.8.2  dyoung #include <netinet6/ip6protosw.h>
1.86.8.2  dyoung #include <netinet6/scope6_var.h>
1.86.8.2  dyoung #include <netinet6/raw_ip6.h>
1.86.8.2  dyoung
1.86.8.2  dyoung #ifdef IPSEC
1.86.8.2  dyoung #include <netinet6/ipsec.h>
1.86.8.2  dyoung #endif /* IPSEC */
1.86.8.2  dyoung
1.86.8.2  dyoung #ifdef FAST_IPSEC
1.86.8.2  dyoung #include <netipsec/ipsec.h>
1.86.8.2  dyoung #include <netipsec/ipsec_var.h> /* XXX ipsecstat namespace */
1.86.8.2  dyoung #include <netipsec/ipsec6.h>
1.86.8.2  dyoung #endif
1.86.8.2  dyoung
1.86.8.2  dyoung #include "faith.h"
1.86.8.2  dyoung #if defined(NFAITH) && 0 < NFAITH
1.86.8.2  dyoung #include <net/if_faith.h>
1.86.8.2  dyoung #endif
1.86.8.2  dyoung
1.86.8.2  dyoung extern struct inpcbtable rawcbtable;
1.86.8.2  dyoung struct	inpcbtable raw6cbtable;
1.86.8.2  dyoung #define ifatoia6(ifa)	((struct in6_ifaddr *)(ifa))
1.86.8.2  dyoung
1.86.8.2  dyoung /*
1.86.8.2  dyoung  * Raw interface to IP6 protocol.
1.86.8.2  dyoung  */
1.86.8.2  dyoung
1.86.8.2  dyoung struct rip6stat rip6stat;
1.86.8.2  dyoung
1.86.8.2  dyoung /*
1.86.8.2  dyoung  * Initialize raw connection block queue.
1.86.8.2  dyoung  */
1.86.8.2  dyoung void
1.86.8.2  dyoung rip6_init()
1.86.8.2  dyoung {
1.86.8.2  dyoung
1.86.8.2  dyoung 	in6_pcbinit(&raw6cbtable, 1, 1);
1.86.8.2  dyoung }
1.86.8.2  dyoung
1.86.8.2  dyoung /*
1.86.8.2  dyoung  * Setup generic address and protocol structures
1.86.8.2  dyoung  * for raw_input routine, then pass them along with
1.86.8.2  dyoung  * mbuf chain.
1.86.8.2  dyoung  */
1.86.8.2  dyoung int
1.86.8.2  dyoung rip6_input(struct mbuf **mp, int *offp, int proto)
1.86.8.2  dyoung {
1.86.8.2  dyoung 	struct mbuf *m = *mp;
1.86.8.2  dyoung 	struct ip6_hdr *ip6 = mtod(m, struct ip6_hdr *);
1.86.8.2  dyoung 	struct inpcb_hdr *inph;
1.86.8.2  dyoung 	struct in6pcb *in6p;
1.86.8.2  dyoung 	struct in6pcb *last = NULL;
1.86.8.2  dyoung 	struct sockaddr_in6 rip6src;
1.86.8.2  dyoung 	struct mbuf *opts = NULL;
1.86.8.2  dyoung
1.86.8.2  dyoung 	rip6stat.rip6s_ipackets++;
1.86.8.2  dyoung
1.86.8.2  dyoung #if defined(NFAITH) && 0 < NFAITH
1.86.8.2  dyoung 	if (faithprefix(&ip6->ip6_dst)) {
1.86.8.2  dyoung 		/* send icmp6 host unreach? */
1.86.8.2  dyoung 		m_freem(m);
1.86.8.2  dyoung 		return IPPROTO_DONE;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung #endif
1.86.8.2  dyoung
1.86.8.2  dyoung 	/* Be proactive about malicious use of IPv4 mapped address */
1.86.8.2  dyoung 	if (IN6_IS_ADDR_V4MAPPED(&ip6->ip6_src) ||
1.86.8.2  dyoung 	    IN6_IS_ADDR_V4MAPPED(&ip6->ip6_dst)) {
1.86.8.2  dyoung 		/* XXX stat */
1.86.8.2  dyoung 		m_freem(m);
1.86.8.2  dyoung 		return IPPROTO_DONE;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung
1.86.8.2  dyoung 	bzero(&rip6src, sizeof(rip6src));
1.86.8.2  dyoung 	rip6src.sin6_len = sizeof(struct sockaddr_in6);
1.86.8.2  dyoung 	rip6src.sin6_family = AF_INET6;
1.86.8.2  dyoung 	rip6src.sin6_addr = ip6->ip6_src;
1.86.8.2  dyoung 	if (sa6_recoverscope(&rip6src) != 0) {
1.86.8.2  dyoung 		/* XXX: should be impossible. */
1.86.8.2  dyoung 		m_freem(m);
1.86.8.2  dyoung 		return IPPROTO_DONE;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung
1.86.8.2  dyoung 	CIRCLEQ_FOREACH(inph, &raw6cbtable.inpt_queue, inph_queue) {
1.86.8.2  dyoung 		in6p = (struct in6pcb *)inph;
1.86.8.2  dyoung 		if (in6p->in6p_af != AF_INET6)
1.86.8.2  dyoung 			continue;
1.86.8.2  dyoung 		if (in6p->in6p_ip6.ip6_nxt &&
1.86.8.2  dyoung 		    in6p->in6p_ip6.ip6_nxt != proto)
1.86.8.2  dyoung 			continue;
1.86.8.2  dyoung 		if (!IN6_IS_ADDR_UNSPECIFIED(&in6p->in6p_laddr) &&
1.86.8.2  dyoung 		    !IN6_ARE_ADDR_EQUAL(&in6p->in6p_laddr, &ip6->ip6_dst))
1.86.8.2  dyoung 			continue;
1.86.8.2  dyoung 		if (!IN6_IS_ADDR_UNSPECIFIED(&in6p->in6p_faddr) &&
1.86.8.2  dyoung 		    !IN6_ARE_ADDR_EQUAL(&in6p->in6p_faddr, &ip6->ip6_src))
1.86.8.2  dyoung 			continue;
1.86.8.2  dyoung 		if (in6p->in6p_cksum != -1) {
1.86.8.2  dyoung 			rip6stat.rip6s_isum++;
1.86.8.2  dyoung 			if (in6_cksum(m, proto, *offp,
1.86.8.2  dyoung 			    m->m_pkthdr.len - *offp)) {
1.86.8.2  dyoung 				rip6stat.rip6s_badsum++;
1.86.8.2  dyoung 				continue;
1.86.8.2  dyoung 			}
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		if (last) {
1.86.8.2  dyoung 			struct	mbuf *n;
1.86.8.2  dyoung
1.86.8.2  dyoung #ifdef IPSEC
1.86.8.2  dyoung 			/*
1.86.8.2  dyoung 			 * Check AH/ESP integrity.
1.86.8.2  dyoung 			 */
1.86.8.2  dyoung 			if (ipsec6_in_reject(m, last)) {
1.86.8.2  dyoung 				ipsec6stat.in_polvio++;
1.86.8.2  dyoung 				/* do not inject data into pcb */
1.86.8.2  dyoung 			} else
1.86.8.2  dyoung #endif /* IPSEC */
1.86.8.2  dyoung #ifdef FAST_IPSEC
1.86.8.2  dyoung 			/*
1.86.8.2  dyoung 			 * Check AH/ESP integrity
1.86.8.2  dyoung 			 */
1.86.8.2  dyoung 			if (!ipsec6_in_reject(m,last))
1.86.8.2  dyoung #endif /* FAST_IPSEC */
1.86.8.2  dyoung 			if ((n = m_copy(m, 0, (int)M_COPYALL)) != NULL) {
1.86.8.2  dyoung 				if (last->in6p_flags & IN6P_CONTROLOPTS)
1.86.8.2  dyoung 					ip6_savecontrol(last, &opts, ip6, n);
1.86.8.2  dyoung 				/* strip intermediate headers */
1.86.8.2  dyoung 				m_adj(n, *offp);
1.86.8.2  dyoung 				if (sbappendaddr(&last->in6p_socket->so_rcv,
1.86.8.2  dyoung 				    (struct sockaddr *)&rip6src, n, opts) == 0) {
1.86.8.2  dyoung 					/* should notify about lost packet */
1.86.8.2  dyoung 					m_freem(n);
1.86.8.2  dyoung 					if (opts)
1.86.8.2  dyoung 						m_freem(opts);
1.86.8.2  dyoung 					rip6stat.rip6s_fullsock++;
1.86.8.2  dyoung 				} else
1.86.8.2  dyoung 					sorwakeup(last->in6p_socket);
1.86.8.2  dyoung 				opts = NULL;
1.86.8.2  dyoung 			}
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		last = in6p;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung #ifdef IPSEC
1.86.8.2  dyoung 	/*
1.86.8.2  dyoung 	 * Check AH/ESP integrity.
1.86.8.2  dyoung 	 */
1.86.8.2  dyoung 	if (last && ipsec6_in_reject(m, last)) {
1.86.8.2  dyoung 		m_freem(m);
1.86.8.2  dyoung 		ipsec6stat.in_polvio++;
1.86.8.2  dyoung 		ip6stat.ip6s_delivered--;
1.86.8.2  dyoung 		/* do not inject data into pcb */
1.86.8.2  dyoung 	} else
1.86.8.2  dyoung #endif /* IPSEC */
1.86.8.2  dyoung #ifdef FAST_IPSEC
1.86.8.2  dyoung 	if (last && ipsec6_in_reject(m, last)) {
1.86.8.2  dyoung 		m_freem(m);
1.86.8.2  dyoung 		/*
1.86.8.2  dyoung 		 * XXX ipsec6_in_reject update stat if there is an error
1.86.8.2  dyoung 		 * so we just need to update stats by hand in the case of last is
1.86.8.2  dyoung 		 * NULL
1.86.8.2  dyoung 		 */
1.86.8.2  dyoung 		if (!last)
1.86.8.2  dyoung 			ipsec6stat.in_polvio++;
1.86.8.2  dyoung 			ip6stat.ip6s_delivered--;
1.86.8.2  dyoung 			/* do not inject data into pcb */
1.86.8.2  dyoung 		} else
1.86.8.2  dyoung #endif /* FAST_IPSEC */
1.86.8.2  dyoung 	if (last) {
1.86.8.2  dyoung 		if (last->in6p_flags & IN6P_CONTROLOPTS)
1.86.8.2  dyoung 			ip6_savecontrol(last, &opts, ip6, m);
1.86.8.2  dyoung 		/* strip intermediate headers */
1.86.8.2  dyoung 		m_adj(m, *offp);
1.86.8.2  dyoung 		if (sbappendaddr(&last->in6p_socket->so_rcv,
1.86.8.2  dyoung 		    (struct sockaddr *)&rip6src, m, opts) == 0) {
1.86.8.2  dyoung 			m_freem(m);
1.86.8.2  dyoung 			if (opts)
1.86.8.2  dyoung 				m_freem(opts);
1.86.8.2  dyoung 			rip6stat.rip6s_fullsock++;
1.86.8.2  dyoung 		} else
1.86.8.2  dyoung 			sorwakeup(last->in6p_socket);
1.86.8.2  dyoung 	} else {
1.86.8.2  dyoung 		rip6stat.rip6s_nosock++;
1.86.8.2  dyoung 		if (m->m_flags & M_MCAST)
1.86.8.2  dyoung 			rip6stat.rip6s_nosockmcast++;
1.86.8.2  dyoung 		if (proto == IPPROTO_NONE)
1.86.8.2  dyoung 			m_freem(m);
1.86.8.2  dyoung 		else {
1.86.8.2  dyoung 			u_int8_t *prvnxtp = ip6_get_prevhdr(m, *offp); /* XXX */
1.86.8.2  dyoung 			in6_ifstat_inc(m->m_pkthdr.rcvif, ifs6_in_protounknown);
1.86.8.2  dyoung 			icmp6_error(m, ICMP6_PARAM_PROB,
1.86.8.2  dyoung 			    ICMP6_PARAMPROB_NEXTHEADER,
1.86.8.2  dyoung 			    prvnxtp - mtod(m, u_int8_t *));
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		ip6stat.ip6s_delivered--;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung 	return IPPROTO_DONE;
1.86.8.2  dyoung }
1.86.8.2  dyoung
1.86.8.2  dyoung void
1.86.8.2  dyoung rip6_ctlinput(int cmd, const struct sockaddr *sa, void *d)
1.86.8.2  dyoung {
1.86.8.2  dyoung 	struct ip6_hdr *ip6;
1.86.8.2  dyoung 	struct ip6ctlparam *ip6cp = NULL;
1.86.8.2  dyoung 	const struct sockaddr_in6 *sa6_src = NULL;
1.86.8.2  dyoung 	void *cmdarg;
1.86.8.2  dyoung 	void (*notify) __P((struct in6pcb *, int)) = in6_rtchange;
1.86.8.2  dyoung 	int nxt;
1.86.8.2  dyoung
1.86.8.2  dyoung 	if (sa->sa_family != AF_INET6 ||
1.86.8.2  dyoung 	    sa->sa_len != sizeof(struct sockaddr_in6))
1.86.8.2  dyoung 		return;
1.86.8.2  dyoung
1.86.8.2  dyoung 	if ((unsigned)cmd >= PRC_NCMDS)
1.86.8.2  dyoung 		return;
1.86.8.2  dyoung 	if (PRC_IS_REDIRECT(cmd))
1.86.8.2  dyoung 		notify = in6_rtchange, d = NULL;
1.86.8.2  dyoung 	else if (cmd == PRC_HOSTDEAD)
1.86.8.2  dyoung 		d = NULL;
1.86.8.2  dyoung 	else if (cmd == PRC_MSGSIZE)
1.86.8.2  dyoung 		; /* special code is present, see below */
1.86.8.2  dyoung 	else if (inet6ctlerrmap[cmd] == 0)
1.86.8.2  dyoung 		return;
1.86.8.2  dyoung
1.86.8.2  dyoung 	/* if the parameter is from icmp6, decode it. */
1.86.8.2  dyoung 	if (d != NULL) {
1.86.8.2  dyoung 		ip6cp = (struct ip6ctlparam *)d;
1.86.8.2  dyoung 		ip6 = ip6cp->ip6c_ip6;
1.86.8.2  dyoung 		cmdarg = ip6cp->ip6c_cmdarg;
1.86.8.2  dyoung 		sa6_src = ip6cp->ip6c_src;
1.86.8.2  dyoung 		nxt = ip6cp->ip6c_nxt;
1.86.8.2  dyoung 	} else {
1.86.8.2  dyoung 		ip6 = NULL;
1.86.8.2  dyoung 		cmdarg = NULL;
1.86.8.2  dyoung 		sa6_src = &sa6_any;
1.86.8.2  dyoung 		nxt = -1;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung
1.86.8.2  dyoung 	if (ip6 && cmd == PRC_MSGSIZE) {
1.86.8.2  dyoung 		const struct sockaddr_in6 *sa6 = (const struct sockaddr_in6 *)sa;
1.86.8.2  dyoung 		int valid = 0;
1.86.8.2  dyoung 		struct in6pcb *in6p;
1.86.8.2  dyoung
1.86.8.2  dyoung 		/*
1.86.8.2  dyoung 		 * Check to see if we have a valid raw IPv6 socket
1.86.8.2  dyoung 		 * corresponding to the address in the ICMPv6 message
1.86.8.2  dyoung 		 * payload, and the protocol (ip6_nxt) meets the socket.
1.86.8.2  dyoung 		 * XXX chase extension headers, or pass final nxt value
1.86.8.2  dyoung 		 * from icmp6_notify_error()
1.86.8.2  dyoung 		 */
1.86.8.2  dyoung 		in6p = NULL;
1.86.8.2  dyoung 		in6p = in6_pcblookup_connect(&raw6cbtable, &sa6->sin6_addr, 0,
1.86.8.2  dyoung 		    (const struct in6_addr *)&sa6_src->sin6_addr, 0, 0);
1.86.8.2  dyoung #if 0
1.86.8.2  dyoung 		if (!in6p) {
1.86.8.2  dyoung 			/*
1.86.8.2  dyoung 			 * As the use of sendto(2) is fairly popular,
1.86.8.2  dyoung 			 * we may want to allow non-connected pcb too.
1.86.8.2  dyoung 			 * But it could be too weak against attacks...
1.86.8.2  dyoung 			 * We should at least check if the local
1.86.8.2  dyoung 			 * address (= s) is really ours.
1.86.8.2  dyoung 			 */
1.86.8.2  dyoung 			in6p = in6_pcblookup_bind(&raw6cbtable,
1.86.8.2  dyoung 			    &sa6->sin6_addr, 0, 0);
1.86.8.2  dyoung 		}
1.86.8.2  dyoung #endif
1.86.8.2  dyoung
1.86.8.2  dyoung 		if (in6p && in6p->in6p_ip6.ip6_nxt &&
1.86.8.2  dyoung 		    in6p->in6p_ip6.ip6_nxt == nxt)
1.86.8.2  dyoung 			valid++;
1.86.8.2  dyoung
1.86.8.2  dyoung 		/*
1.86.8.2  dyoung 		 * Depending on the value of "valid" and routing table
1.86.8.2  dyoung 		 * size (mtudisc_{hi,lo}wat), we will:
1.86.8.2  dyoung 		 * - recalculate the new MTU and create the
1.86.8.2  dyoung 		 *   corresponding routing entry, or
1.86.8.2  dyoung 		 * - ignore the MTU change notification.
1.86.8.2  dyoung 		 */
1.86.8.2  dyoung 		icmp6_mtudisc_update((struct ip6ctlparam *)d, valid);
1.86.8.2  dyoung
1.86.8.2  dyoung 		/*
1.86.8.2  dyoung 		 * regardless of if we called icmp6_mtudisc_update(),
1.86.8.2  dyoung 		 * we need to call in6_pcbnotify(), to notify path MTU
1.86.8.2  dyoung 		 * change to the userland (RFC3542), because some
1.86.8.2  dyoung 		 * unconnected sockets may share the same destination
1.86.8.2  dyoung 		 * and want to know the path MTU.
1.86.8.2  dyoung 		 */
1.86.8.2  dyoung 	}
1.86.8.2  dyoung
1.86.8.2  dyoung 	(void) in6_pcbnotify(&raw6cbtable, sa, 0,
1.86.8.2  dyoung 	    (const struct sockaddr *)sa6_src, 0, cmd, cmdarg, notify);
1.86.8.2  dyoung }
1.86.8.2  dyoung
1.86.8.2  dyoung /*
1.86.8.2  dyoung  * Generate IPv6 header and pass packet to ip6_output.
1.86.8.2  dyoung  * Tack on options user may have setup with control call.
1.86.8.2  dyoung  */
1.86.8.2  dyoung int
1.86.8.2  dyoung rip6_output(struct mbuf *m, struct socket *so, struct sockaddr_in6 *dstsock,
1.86.8.2  dyoung     struct mbuf *control)
1.86.8.2  dyoung {
1.86.8.2  dyoung 	struct in6_addr *dst;
1.86.8.2  dyoung 	struct ip6_hdr *ip6;
1.86.8.2  dyoung 	struct in6pcb *in6p;
1.86.8.2  dyoung 	u_int	plen = m->m_pkthdr.len;
1.86.8.2  dyoung 	int error = 0;
1.86.8.2  dyoung 	struct ip6_pktopts opt, *optp = NULL;
1.86.8.2  dyoung 	struct ifnet *oifp = NULL;
1.86.8.2  dyoung 	int type, code;		/* for ICMPv6 output statistics only */
1.86.8.2  dyoung 	int priv = 0;
1.86.8.2  dyoung 	int scope_ambiguous = 0;
1.86.8.2  dyoung 	struct in6_addr *in6a;
1.86.8.2  dyoung
1.86.8.2  dyoung 	in6p = sotoin6pcb(so);
1.86.8.2  dyoung
1.86.8.2  dyoung 	priv = 0;
1.86.8.2  dyoung 	if (curlwp && !kauth_authorize_generic(curlwp->l_cred,
1.86.8.2  dyoung 	    KAUTH_GENERIC_ISSUSER, NULL))
1.86.8.2  dyoung 		priv = 1;
1.86.8.2  dyoung
1.86.8.2  dyoung 	dst = &dstsock->sin6_addr;
1.86.8.2  dyoung 	if (control) {
1.86.8.2  dyoung 		if ((error = ip6_setpktopts(control, &opt,
1.86.8.2  dyoung 		    in6p->in6p_outputopts,
1.86.8.2  dyoung 		    priv, so->so_proto->pr_protocol)) != 0) {
1.86.8.2  dyoung 			goto bad;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		optp = &opt;
1.86.8.2  dyoung 	} else
1.86.8.2  dyoung 		optp = in6p->in6p_outputopts;
1.86.8.2  dyoung
1.86.8.2  dyoung 	/*
1.86.8.2  dyoung 	 * Check and convert scope zone ID into internal form.
1.86.8.2  dyoung 	 * XXX: we may still need to determine the zone later.
1.86.8.2  dyoung 	 */
1.86.8.2  dyoung 	if (!(so->so_state & SS_ISCONNECTED)) {
1.86.8.2  dyoung 		if (dstsock->sin6_scope_id == 0 && !ip6_use_defzone)
1.86.8.2  dyoung 			scope_ambiguous = 1;
1.86.8.2  dyoung 		if ((error = sa6_embedscope(dstsock, ip6_use_defzone)) != 0)
1.86.8.2  dyoung 			goto bad;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung
1.86.8.2  dyoung 	/*
1.86.8.2  dyoung 	 * For an ICMPv6 packet, we should know its type and code
1.86.8.2  dyoung 	 * to update statistics.
1.86.8.2  dyoung 	 */
1.86.8.2  dyoung 	if (so->so_proto->pr_protocol == IPPROTO_ICMPV6) {
1.86.8.2  dyoung 		struct icmp6_hdr *icmp6;
1.86.8.2  dyoung 		if (m->m_len < sizeof(struct icmp6_hdr) &&
1.86.8.2  dyoung 		    (m = m_pullup(m, sizeof(struct icmp6_hdr))) == NULL) {
1.86.8.2  dyoung 			error = ENOBUFS;
1.86.8.2  dyoung 			goto bad;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		icmp6 = mtod(m, struct icmp6_hdr *);
1.86.8.2  dyoung 		type = icmp6->icmp6_type;
1.86.8.2  dyoung 		code = icmp6->icmp6_code;
1.86.8.2  dyoung 	} else {
1.86.8.2  dyoung 		type = 0;
1.86.8.2  dyoung 		code = 0;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung
1.86.8.2  dyoung 	M_PREPEND(m, sizeof(*ip6), M_DONTWAIT);
1.86.8.2  dyoung 	if (!m) {
1.86.8.2  dyoung 		error = ENOBUFS;
1.86.8.2  dyoung 		goto bad;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung 	ip6 = mtod(m, struct ip6_hdr *);
1.86.8.2  dyoung
1.86.8.2  dyoung 	/*
1.86.8.2  dyoung 	 * Next header might not be ICMP6 but use its pseudo header anyway.
1.86.8.2  dyoung 	 */
1.86.8.2  dyoung 	ip6->ip6_dst = *dst;
1.86.8.2  dyoung
1.86.8.2  dyoung 	/*
1.86.8.2  dyoung 	 * Source address selection.
1.86.8.2  dyoung 	 */
1.86.8.2  dyoung 	if ((in6a = in6_selectsrc(dstsock, optp, in6p->in6p_moptions,
1.86.8.2  dyoung 	    (struct route *)&in6p->in6p_route, &in6p->in6p_laddr, &oifp,
1.86.8.2  dyoung 	    &error)) == 0) {
1.86.8.2  dyoung 		if (error == 0)
1.86.8.2  dyoung 			error = EADDRNOTAVAIL;
1.86.8.2  dyoung 		goto bad;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung 	ip6->ip6_src = *in6a;
1.86.8.2  dyoung
1.86.8.2  dyoung 	if (oifp && scope_ambiguous) {
1.86.8.2  dyoung 		/*
1.86.8.2  dyoung 		 * Application should provide a proper zone ID or the use of
1.86.8.2  dyoung 		 * default zone IDs should be enabled.  Unfortunately, some
1.86.8.2  dyoung 		 * applications do not behave as it should, so we need a
1.86.8.2  dyoung 		 * workaround.  Even if an appropriate ID is not determined
1.86.8.2  dyoung 		 * (when it's required), if we can determine the outgoing
1.86.8.2  dyoung 		 * interface. determine the zone ID based on the interface.
1.86.8.2  dyoung 		 */
1.86.8.2  dyoung 		error = in6_setscope(&dstsock->sin6_addr, oifp, NULL);
1.86.8.2  dyoung 		if (error != 0)
1.86.8.2  dyoung 			goto bad;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung 	ip6->ip6_dst = dstsock->sin6_addr;
1.86.8.2  dyoung
1.86.8.2  dyoung 	/* fill in the rest of the IPv6 header fields */
1.86.8.2  dyoung 	ip6->ip6_flow = in6p->in6p_flowinfo & IPV6_FLOWINFO_MASK;
1.86.8.2  dyoung 	ip6->ip6_vfc  &= ~IPV6_VERSION_MASK;
1.86.8.2  dyoung 	ip6->ip6_vfc  |= IPV6_VERSION;
1.86.8.2  dyoung 	/* ip6_plen will be filled in ip6_output, so not fill it here. */
1.86.8.2  dyoung 	ip6->ip6_nxt   = in6p->in6p_ip6.ip6_nxt;
1.86.8.2  dyoung 	ip6->ip6_hlim = in6_selecthlim(in6p, oifp);
1.86.8.2  dyoung
1.86.8.2  dyoung 	if (so->so_proto->pr_protocol == IPPROTO_ICMPV6 ||
1.86.8.2  dyoung 	    in6p->in6p_cksum != -1) {
1.86.8.2  dyoung 		int off;
1.86.8.2  dyoung 		u_int16_t sum;
1.86.8.2  dyoung
1.86.8.2  dyoung 		/* compute checksum */
1.86.8.2  dyoung 		if (so->so_proto->pr_protocol == IPPROTO_ICMPV6)
1.86.8.2  dyoung 			off = offsetof(struct icmp6_hdr, icmp6_cksum);
1.86.8.2  dyoung 		else
1.86.8.2  dyoung 			off = in6p->in6p_cksum;
1.86.8.2  dyoung 		if (plen < off + 1) {
1.86.8.2  dyoung 			error = EINVAL;
1.86.8.2  dyoung 			goto bad;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		off += sizeof(struct ip6_hdr);
1.86.8.2  dyoung
1.86.8.2  dyoung 		sum = 0;
1.86.8.2  dyoung 		m = m_copyback_cow(m, off, sizeof(sum), (void *)&sum,
1.86.8.2  dyoung 		    M_DONTWAIT);
1.86.8.2  dyoung 		if (m == NULL) {
1.86.8.2  dyoung 			error = ENOBUFS;
1.86.8.2  dyoung 			goto bad;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		sum = in6_cksum(m, ip6->ip6_nxt, sizeof(*ip6), plen);
1.86.8.2  dyoung 		m = m_copyback_cow(m, off, sizeof(sum), (void *)&sum,
1.86.8.2  dyoung 		    M_DONTWAIT);
1.86.8.2  dyoung 		if (m == NULL) {
1.86.8.2  dyoung 			error = ENOBUFS;
1.86.8.2  dyoung 			goto bad;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 	}
1.86.8.2  dyoung
1.86.8.2  dyoung 	error = ip6_output(m, optp, &in6p->in6p_route, 0,
1.86.8.2  dyoung 	    in6p->in6p_moptions, so, &oifp);
1.86.8.2  dyoung 	if (so->so_proto->pr_protocol == IPPROTO_ICMPV6) {
1.86.8.2  dyoung 		if (oifp)
1.86.8.2  dyoung 			icmp6_ifoutstat_inc(oifp, type, code);
1.86.8.2  dyoung 		icmp6stat.icp6s_outhist[type]++;
1.86.8.2  dyoung 	} else
1.86.8.2  dyoung 		rip6stat.rip6s_opackets++;
1.86.8.2  dyoung
1.86.8.2  dyoung 	goto freectl;
1.86.8.2  dyoung
1.86.8.2  dyoung  bad:
1.86.8.2  dyoung 	if (m)
1.86.8.2  dyoung 		m_freem(m);
1.86.8.2  dyoung
1.86.8.2  dyoung  freectl:
1.86.8.2  dyoung 	if (control) {
1.86.8.2  dyoung 		ip6_clearpktopts(&opt, -1);
1.86.8.2  dyoung 		m_freem(control);
1.86.8.2  dyoung 	}
1.86.8.2  dyoung 	return error;
1.86.8.2  dyoung }
1.86.8.2  dyoung
1.86.8.2  dyoung /*
1.86.8.2  dyoung  * Raw IPv6 socket option processing.
1.86.8.2  dyoung  */
1.86.8.2  dyoung int
1.86.8.2  dyoung rip6_ctloutput(int op, struct socket *so, int level, int optname,
1.86.8.2  dyoung     struct mbuf **mp)
1.86.8.2  dyoung {
1.86.8.2  dyoung 	int error = 0;
1.86.8.2  dyoung
1.86.8.2  dyoung 	switch (level) {
1.86.8.2  dyoung 	case IPPROTO_IPV6:
1.86.8.2  dyoung 		switch (optname) {
1.86.8.2  dyoung 		case MRT6_INIT:
1.86.8.2  dyoung 		case MRT6_DONE:
1.86.8.2  dyoung 		case MRT6_ADD_MIF:
1.86.8.2  dyoung 		case MRT6_DEL_MIF:
1.86.8.2  dyoung 		case MRT6_ADD_MFC:
1.86.8.2  dyoung 		case MRT6_DEL_MFC:
1.86.8.2  dyoung 		case MRT6_PIM:
1.86.8.2  dyoung 			if (op == PRCO_SETOPT) {
1.86.8.2  dyoung 				error = ip6_mrouter_set(optname, so, *mp);
1.86.8.2  dyoung 				if (*mp)
1.86.8.2  dyoung 					(void)m_free(*mp);
1.86.8.2  dyoung 			} else if (op == PRCO_GETOPT)
1.86.8.2  dyoung 				error = ip6_mrouter_get(optname, so, mp);
1.86.8.2  dyoung 			else
1.86.8.2  dyoung 				error = EINVAL;
1.86.8.2  dyoung 			return error;
1.86.8.2  dyoung 		case IPV6_CHECKSUM:
1.86.8.2  dyoung 			return ip6_raw_ctloutput(op, so, level, optname, mp);
1.86.8.2  dyoung 		default:
1.86.8.2  dyoung 			return ip6_ctloutput(op, so, level, optname, mp);
1.86.8.2  dyoung 		}
1.86.8.2  dyoung
1.86.8.2  dyoung 	case IPPROTO_ICMPV6:
1.86.8.2  dyoung 		/*
1.86.8.2  dyoung 		 * XXX: is it better to call icmp6_ctloutput() directly
1.86.8.2  dyoung 		 * from protosw?
1.86.8.2  dyoung 		 */
1.86.8.2  dyoung 		return icmp6_ctloutput(op, so, level, optname, mp);
1.86.8.2  dyoung
1.86.8.2  dyoung 	default:
1.86.8.2  dyoung 		if (op == PRCO_SETOPT && *mp)
1.86.8.2  dyoung 			m_free(*mp);
1.86.8.2  dyoung 		return EINVAL;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung }
1.86.8.2  dyoung
1.86.8.2  dyoung extern	u_long rip6_sendspace;
1.86.8.2  dyoung extern	u_long rip6_recvspace;
1.86.8.2  dyoung
1.86.8.2  dyoung int
1.86.8.2  dyoung rip6_usrreq(struct socket *so, int req, struct mbuf *m,
1.86.8.2  dyoung 	struct mbuf *nam, struct mbuf *control, struct lwp *l)
1.86.8.2  dyoung {
1.86.8.2  dyoung 	struct in6pcb *in6p = sotoin6pcb(so);
1.86.8.2  dyoung 	int s;
1.86.8.2  dyoung 	int error = 0;
1.86.8.2  dyoung 	int priv;
1.86.8.2  dyoung
1.86.8.2  dyoung 	priv = 0;
1.86.8.2  dyoung 	if (l && !kauth_authorize_generic(l->l_cred,
1.86.8.2  dyoung 	    KAUTH_GENERIC_ISSUSER, NULL))
1.86.8.2  dyoung 		priv++;
1.86.8.2  dyoung
1.86.8.2  dyoung 	if (req == PRU_CONTROL)
1.86.8.2  dyoung 		return in6_control(so, (u_long)m, (void *)nam,
1.86.8.2  dyoung 		    (struct ifnet *)control, l);
1.86.8.2  dyoung
1.86.8.2  dyoung 	if (req == PRU_PURGEIF) {
1.86.8.2  dyoung 		in6_pcbpurgeif0(&raw6cbtable, (struct ifnet *)control);
1.86.8.2  dyoung 		in6_purgeif((struct ifnet *)control);
1.86.8.2  dyoung 		in6_pcbpurgeif(&raw6cbtable, (struct ifnet *)control);
1.86.8.2  dyoung 		return 0;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung
1.86.8.2  dyoung 	switch (req) {
1.86.8.2  dyoung 	case PRU_ATTACH:
1.86.8.2  dyoung 		if (in6p != NULL)
1.86.8.2  dyoung 			panic("rip6_attach");
1.86.8.2  dyoung 		if (!priv) {
1.86.8.2  dyoung 			error = EACCES;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		s = splsoftnet();
1.86.8.2  dyoung 		error = soreserve(so, rip6_sendspace, rip6_recvspace);
1.86.8.2  dyoung 		if (error != 0) {
1.86.8.2  dyoung 			splx(s);
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		if ((error = in6_pcballoc(so, &raw6cbtable)) != 0) {
1.86.8.2  dyoung 			splx(s);
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		splx(s);
1.86.8.2  dyoung 		in6p = sotoin6pcb(so);
1.86.8.2  dyoung 		in6p->in6p_ip6.ip6_nxt = (long)nam;
1.86.8.2  dyoung 		in6p->in6p_cksum = -1;
1.86.8.2  dyoung
1.86.8.2  dyoung 		MALLOC(in6p->in6p_icmp6filt, struct icmp6_filter *,
1.86.8.2  dyoung 		    sizeof(struct icmp6_filter), M_PCB, M_NOWAIT);
1.86.8.2  dyoung 		if (in6p->in6p_icmp6filt == NULL) {
1.86.8.2  dyoung 			in6_pcbdetach(in6p);
1.86.8.2  dyoung 			error = ENOMEM;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		ICMP6_FILTER_SETPASSALL(in6p->in6p_icmp6filt);
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung
1.86.8.2  dyoung 	case PRU_DISCONNECT:
1.86.8.2  dyoung 		if ((so->so_state & SS_ISCONNECTED) == 0) {
1.86.8.2  dyoung 			error = ENOTCONN;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		in6p->in6p_faddr = in6addr_any;
1.86.8.2  dyoung 		so->so_state &= ~SS_ISCONNECTED;	/* XXX */
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung
1.86.8.2  dyoung 	case PRU_ABORT:
1.86.8.2  dyoung 		soisdisconnected(so);
1.86.8.2  dyoung 		/* Fallthrough */
1.86.8.2  dyoung 	case PRU_DETACH:
1.86.8.2  dyoung 		if (in6p == NULL)
1.86.8.2  dyoung 			panic("rip6_detach");
1.86.8.2  dyoung 		if (so == ip6_mrouter)
1.86.8.2  dyoung 			ip6_mrouter_done();
1.86.8.2  dyoung 		/* xxx: RSVP */
1.86.8.2  dyoung 		if (in6p->in6p_icmp6filt != NULL) {
1.86.8.2  dyoung 			FREE(in6p->in6p_icmp6filt, M_PCB);
1.86.8.2  dyoung 			in6p->in6p_icmp6filt = NULL;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		in6_pcbdetach(in6p);
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung
1.86.8.2  dyoung 	case PRU_BIND:
1.86.8.2  dyoung 	    {
1.86.8.2  dyoung 		struct sockaddr_in6 *addr = mtod(nam, struct sockaddr_in6 *);
1.86.8.2  dyoung 		struct ifaddr *ia = NULL;
1.86.8.2  dyoung
1.86.8.2  dyoung 		if (nam->m_len != sizeof(*addr)) {
1.86.8.2  dyoung 			error = EINVAL;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		if (TAILQ_EMPTY(&ifnet) || addr->sin6_family != AF_INET6) {
1.86.8.2  dyoung 			error = EADDRNOTAVAIL;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		if ((error = sa6_embedscope(addr, ip6_use_defzone)) != 0)
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung
1.86.8.2  dyoung 		/*
1.86.8.2  dyoung 		 * we don't support mapped address here, it would confuse
1.86.8.2  dyoung 		 * users so reject it
1.86.8.2  dyoung 		 */
1.86.8.2  dyoung 		if (IN6_IS_ADDR_V4MAPPED(&addr->sin6_addr)) {
1.86.8.2  dyoung 			error = EADDRNOTAVAIL;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		if (!IN6_IS_ADDR_UNSPECIFIED(&addr->sin6_addr) &&
1.86.8.2  dyoung 		    (ia = ifa_ifwithaddr((struct sockaddr *)addr)) == 0) {
1.86.8.2  dyoung 			error = EADDRNOTAVAIL;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		if (ia && ((struct in6_ifaddr *)ia)->ia6_flags &
1.86.8.2  dyoung 		    (IN6_IFF_ANYCAST|IN6_IFF_NOTREADY|
1.86.8.2  dyoung 		     IN6_IFF_DETACHED|IN6_IFF_DEPRECATED)) {
1.86.8.2  dyoung 			error = EADDRNOTAVAIL;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		in6p->in6p_laddr = addr->sin6_addr;
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung 	    }
1.86.8.2  dyoung
1.86.8.2  dyoung 	case PRU_CONNECT:
1.86.8.2  dyoung 	{
1.86.8.2  dyoung 		struct sockaddr_in6 *addr = mtod(nam, struct sockaddr_in6 *);
1.86.8.2  dyoung 		struct in6_addr *in6a = NULL;
1.86.8.2  dyoung 		struct ifnet *ifp = NULL;
1.86.8.2  dyoung 		int scope_ambiguous = 0;
1.86.8.2  dyoung
1.86.8.2  dyoung 		if (nam->m_len != sizeof(*addr)) {
1.86.8.2  dyoung 			error = EINVAL;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		if (TAILQ_EMPTY(&ifnet)) {
1.86.8.2  dyoung 			error = EADDRNOTAVAIL;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		if (addr->sin6_family != AF_INET6) {
1.86.8.2  dyoung 			error = EAFNOSUPPORT;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung
1.86.8.2  dyoung 		/*
1.86.8.2  dyoung 		 * Application should provide a proper zone ID or the use of
1.86.8.2  dyoung 		 * default zone IDs should be enabled.  Unfortunately, some
1.86.8.2  dyoung 		 * applications do not behave as it should, so we need a
1.86.8.2  dyoung 		 * workaround.  Even if an appropriate ID is not determined,
1.86.8.2  dyoung 		 * we'll see if we can determine the outgoing interface.  If we
1.86.8.2  dyoung 		 * can, determine the zone ID based on the interface below.
1.86.8.2  dyoung 		 */
1.86.8.2  dyoung 		if (addr->sin6_scope_id == 0 && !ip6_use_defzone)
1.86.8.2  dyoung 			scope_ambiguous = 1;
1.86.8.2  dyoung 		if ((error = sa6_embedscope(addr, ip6_use_defzone)) != 0)
1.86.8.2  dyoung 			return error;
1.86.8.2  dyoung
1.86.8.2  dyoung 		/* Source address selection. XXX: need pcblookup? */
1.86.8.2  dyoung 		in6a = in6_selectsrc(addr, in6p->in6p_outputopts,
1.86.8.2  dyoung 		    in6p->in6p_moptions, (struct route *)&in6p->in6p_route,
1.86.8.2  dyoung 		    &in6p->in6p_laddr, &ifp, &error);
1.86.8.2  dyoung 		if (in6a == NULL) {
1.86.8.2  dyoung 			if (error == 0)
1.86.8.2  dyoung 				error = EADDRNOTAVAIL;
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		/* XXX: see above */
1.86.8.2  dyoung 		if (ifp && scope_ambiguous &&
1.86.8.2  dyoung 		    (error = in6_setscope(&addr->sin6_addr, ifp, NULL)) != 0) {
1.86.8.2  dyoung 			break;
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		in6p->in6p_laddr = *in6a;
1.86.8.2  dyoung 		in6p->in6p_faddr = addr->sin6_addr;
1.86.8.2  dyoung 		soisconnected(so);
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung
1.86.8.2  dyoung 	case PRU_CONNECT2:
1.86.8.2  dyoung 		error = EOPNOTSUPP;
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung
1.86.8.2  dyoung 	/*
1.86.8.2  dyoung 	 * Mark the connection as being incapable of futther input.
1.86.8.2  dyoung 	 */
1.86.8.2  dyoung 	case PRU_SHUTDOWN:
1.86.8.2  dyoung 		socantsendmore(so);
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung 	/*
1.86.8.2  dyoung 	 * Ship a packet out. The appropriate raw output
1.86.8.2  dyoung 	 * routine handles any messaging necessary.
1.86.8.2  dyoung 	 */
1.86.8.2  dyoung 	case PRU_SEND:
1.86.8.2  dyoung 	{
1.86.8.2  dyoung 		struct sockaddr_in6 tmp;
1.86.8.2  dyoung 		struct sockaddr_in6 *dst;
1.86.8.2  dyoung
1.86.8.2  dyoung 		/* always copy sockaddr to avoid overwrites */
1.86.8.2  dyoung 		if (so->so_state & SS_ISCONNECTED) {
1.86.8.2  dyoung 			if (nam) {
1.86.8.2  dyoung 				error = EISCONN;
1.86.8.2  dyoung 				break;
1.86.8.2  dyoung 			}
1.86.8.2  dyoung 			/* XXX */
1.86.8.2  dyoung 			bzero(&tmp, sizeof(tmp));
1.86.8.2  dyoung 			tmp.sin6_family = AF_INET6;
1.86.8.2  dyoung 			tmp.sin6_len = sizeof(struct sockaddr_in6);
1.86.8.2  dyoung 			bcopy(&in6p->in6p_faddr, &tmp.sin6_addr,
1.86.8.2  dyoung 			    sizeof(struct in6_addr));
1.86.8.2  dyoung 			dst = &tmp;
1.86.8.2  dyoung 		} else {
1.86.8.2  dyoung 			if (nam == NULL) {
1.86.8.2  dyoung 				error = ENOTCONN;
1.86.8.2  dyoung 				break;
1.86.8.2  dyoung 			}
1.86.8.2  dyoung 			if (nam->m_len != sizeof(tmp)) {
1.86.8.2  dyoung 				error = EINVAL;
1.86.8.2  dyoung 				break;
1.86.8.2  dyoung 			}
1.86.8.2  dyoung
1.86.8.2  dyoung 			tmp = *mtod(nam, struct sockaddr_in6 *);
1.86.8.2  dyoung 			dst = &tmp;
1.86.8.2  dyoung
1.86.8.2  dyoung 			if (dst->sin6_family != AF_INET6) {
1.86.8.2  dyoung 				error = EAFNOSUPPORT;
1.86.8.2  dyoung 				break;
1.86.8.2  dyoung 			}
1.86.8.2  dyoung 		}
1.86.8.2  dyoung 		error = rip6_output(m, so, dst, control);
1.86.8.2  dyoung 		m = NULL;
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung 	}
1.86.8.2  dyoung
1.86.8.2  dyoung 	case PRU_SENSE:
1.86.8.2  dyoung 		/*
1.86.8.2  dyoung 		 * stat: don't bother with a blocksize
1.86.8.2  dyoung 		 */
1.86.8.2  dyoung 		return 0;
1.86.8.2  dyoung 	/*
1.86.8.2  dyoung 	 * Not supported.
1.86.8.2  dyoung 	 */
1.86.8.2  dyoung 	case PRU_RCVOOB:
1.86.8.2  dyoung 	case PRU_RCVD:
1.86.8.2  dyoung 	case PRU_LISTEN:
1.86.8.2  dyoung 	case PRU_ACCEPT:
1.86.8.2  dyoung 	case PRU_SENDOOB:
1.86.8.2  dyoung 		error = EOPNOTSUPP;
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung
1.86.8.2  dyoung 	case PRU_SOCKADDR:
1.86.8.2  dyoung 		in6_setsockaddr(in6p, nam);
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung
1.86.8.2  dyoung 	case PRU_PEERADDR:
1.86.8.2  dyoung 		in6_setpeeraddr(in6p, nam);
1.86.8.2  dyoung 		break;
1.86.8.2  dyoung
1.86.8.2  dyoung 	default:
1.86.8.2  dyoung 		panic("rip6_usrreq");
1.86.8.2  dyoung 	}
1.86.8.2  dyoung 	if (m != NULL)
1.86.8.2  dyoung 		m_freem(m);
1.86.8.2  dyoung 	return error;
1.86.8.2  dyoung }
1.86.8.2  dyoung
1.86.8.2  dyoung SYSCTL_SETUP(sysctl_net_inet6_raw6_setup, "sysctl net.inet6.raw6 subtree setup")
1.86.8.2  dyoung {
1.86.8.2  dyoung
1.86.8.2  dyoung 	sysctl_createv(clog, 0, NULL, NULL,
1.86.8.2  dyoung 		       CTLFLAG_PERMANENT,
1.86.8.2  dyoung 		       CTLTYPE_NODE, "net", NULL,
1.86.8.2  dyoung 		       NULL, 0, NULL, 0,
1.86.8.2  dyoung 		       CTL_NET, CTL_EOL);
1.86.8.2  dyoung 	sysctl_createv(clog, 0, NULL, NULL,
1.86.8.2  dyoung 		       CTLFLAG_PERMANENT,
1.86.8.2  dyoung 		       CTLTYPE_NODE, "inet6", NULL,
1.86.8.2  dyoung 		       NULL, 0, NULL, 0,
1.86.8.2  dyoung 		       CTL_NET, PF_INET6, CTL_EOL);
1.86.8.2  dyoung 	sysctl_createv(clog, 0, NULL, NULL,
1.86.8.2  dyoung 		       CTLFLAG_PERMANENT,
1.86.8.2  dyoung 		       CTLTYPE_NODE, "raw6",
1.86.8.2  dyoung 		       SYSCTL_DESCR("Raw IPv6 settings"),
1.86.8.2  dyoung 		       NULL, 0, NULL, 0,
1.86.8.2  dyoung 		       CTL_NET, PF_INET6, IPPROTO_RAW, CTL_EOL);
1.86.8.2  dyoung
1.86.8.2  dyoung 	sysctl_createv(clog, 0, NULL, NULL,
1.86.8.2  dyoung 		       CTLFLAG_PERMANENT,
1.86.8.2  dyoung 		       CTLTYPE_STRUCT, "pcblist",
1.86.8.2  dyoung 		       SYSCTL_DESCR("Raw IPv6 control block list"),
1.86.8.2  dyoung 		       sysctl_inpcblist, 0, &raw6cbtable, 0,
1.86.8.2  dyoung 		       CTL_NET, PF_INET6, IPPROTO_RAW,
1.86.8.2  dyoung 		       CTL_CREATE, CTL_EOL);
1.86.8.2  dyoung 	sysctl_createv(clog, 0, NULL, NULL,
1.86.8.2  dyoung 		       CTLFLAG_PERMANENT,
1.86.8.2  dyoung 		       CTLTYPE_STRUCT, "stats",
1.86.8.2  dyoung 		       SYSCTL_DESCR("Raw IPv6 statistics"),
1.86.8.2  dyoung 		       NULL, 0, &rip6stat, sizeof(rip6stat),
1.86.8.2  dyoung 		       CTL_NET, PF_INET6, IPPROTO_RAW, RAW6CTL_STATS,
1.86.8.2  dyoung 		       CTL_EOL);
1.86.8.2  dyoung }