]> git.saurik.com Git - apple/xnu.git/blob - bsd/netinet/in.c
projects / apple / xnu.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
xnu-3789.60.24.tar.gz
[apple/xnu.git] / bsd / netinet / in.c
1 /*
2 * Copyright (c) 2000-2016 Apple Inc. All rights reserved.
3 *
4 * @APPLE_OSREFERENCE_LICENSE_HEADER_START@
5 *
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. The rights granted to you under the License
10 * may not be used to create, or enable the creation or redistribution of,
11 * unlawful or unlicensed copies of an Apple operating system, or to
12 * circumvent, violate, or enable the circumvention or violation of, any
13 * terms of an Apple operating system software license agreement.
14 *
15 * Please obtain a copy of the License at
16 * http://www.opensource.apple.com/apsl/ and read it before using this file.
17 *
18 * The Original Code and all software distributed under the License are
19 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
20 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
21 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
22 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
23 * Please see the License for the specific language governing rights and
24 * limitations under the License.
25 *
26 * @APPLE_OSREFERENCE_LICENSE_HEADER_END@
27 */
28 /*
29 * Copyright (c) 1982, 1986, 1991, 1993
30 * The Regents of the University of California. All rights reserved.
31 *
32 * Redistribution and use in source and binary forms, with or without
33 * modification, are permitted provided that the following conditions
34 * are met:
35 * 1. Redistributions of source code must retain the above copyright
36 * notice, this list of conditions and the following disclaimer.
37 * 2. Redistributions in binary form must reproduce the above copyright
38 * notice, this list of conditions and the following disclaimer in the
39 * documentation and/or other materials provided with the distribution.
40 * 3. All advertising materials mentioning features or use of this software
41 * must display the following acknowledgement:
42 * This product includes software developed by the University of
43 * California, Berkeley and its contributors.
44 * 4. Neither the name of the University nor the names of its contributors
45 * may be used to endorse or promote products derived from this software
46 * without specific prior written permission.
47 *
48 * THIS SOFTWARE IS PROVIDED BY THE REGENTS AND CONTRIBUTORS ``AS IS'' AND
49 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
50 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
51 * ARE DISCLAIMED. IN NO EVENT SHALL THE REGENTS OR CONTRIBUTORS BE LIABLE
52 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
53 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
54 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
55 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
56 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
57 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
58 * SUCH DAMAGE.
59 *
60 * @(#)in.c 8.4 (Berkeley) 1/9/95
61 */
62
63 #include <sys/param.h>
64 #include <sys/systm.h>
65 #include <sys/sockio.h>
66 #include <sys/socketvar.h>
67 #include <sys/malloc.h>
68 #include <sys/proc.h>
69 #include <sys/socket.h>
70 #include <sys/kernel.h>
71 #include <sys/sysctl.h>
72 #include <sys/kern_event.h>
73 #include <sys/syslog.h>
74 #include <sys/mcache.h>
75 #include <sys/protosw.h>
76 #include <sys/file.h>
77
78 #include <kern/zalloc.h>
79 #include <pexpert/pexpert.h>
80
81 #include <net/if.h>
82 #include <net/if_types.h>
83 #include <net/route.h>
84 #include <net/kpi_protocol.h>
85 #include <net/dlil.h>
86 #if PF
87 #include <net/pfvar.h>
88 #endif /* PF */
89
90 #include <netinet/in.h>
91 #include <netinet/in_var.h>
92 #include <netinet/in_pcb.h>
93 #include <netinet/igmp_var.h>
94 #include <netinet/ip_var.h>
95 #include <netinet/tcp.h>
96 #include <netinet/tcp_timer.h>
97 #include <netinet/tcp_var.h>
98
99 static int inctl_associd(struct socket *, u_long, caddr_t);
100 static int inctl_connid(struct socket *, u_long, caddr_t);
101 static int inctl_conninfo(struct socket *, u_long, caddr_t);
102 static int inctl_autoaddr(struct ifnet *, struct ifreq *);
103 static int inctl_arpipll(struct ifnet *, struct ifreq *);
104 static int inctl_setrouter(struct ifnet *, struct ifreq *);
105 static int inctl_ifaddr(struct ifnet *, struct in_ifaddr *, u_long,
106 struct ifreq *);
107 static int inctl_ifdstaddr(struct ifnet *, struct in_ifaddr *, u_long,
108 struct ifreq *);
109 static int inctl_ifbrdaddr(struct ifnet *, struct in_ifaddr *, u_long,
110 struct ifreq *);
111 static int inctl_ifnetmask(struct ifnet *, struct in_ifaddr *, u_long,
112 struct ifreq *);
113
114 static void in_socktrim(struct sockaddr_in *);
115 static int in_ifinit(struct ifnet *, struct in_ifaddr *,
116 struct sockaddr_in *, int);
117
118 #define IA_HASH_INIT(ia) { \
119 (ia)->ia_hash.tqe_next = (void *)(uintptr_t)-1; \
120 (ia)->ia_hash.tqe_prev = (void *)(uintptr_t)-1; \
121 }
122
123 #define IA_IS_HASHED(ia) \
124 (!((ia)->ia_hash.tqe_next == (void *)(uintptr_t)-1 || \
125 (ia)->ia_hash.tqe_prev == (void *)(uintptr_t)-1))
126
127 static void in_iahash_remove(struct in_ifaddr *);
128 static void in_iahash_insert(struct in_ifaddr *);
129 static void in_iahash_insert_ptp(struct in_ifaddr *);
130 static struct in_ifaddr *in_ifaddr_alloc(int);
131 static void in_ifaddr_attached(struct ifaddr *);
132 static void in_ifaddr_detached(struct ifaddr *);
133 static void in_ifaddr_free(struct ifaddr *);
134 static void in_ifaddr_trace(struct ifaddr *, int);
135
136 static int in_getassocids(struct socket *, uint32_t *, user_addr_t);
137 static int in_getconnids(struct socket *, sae_associd_t, uint32_t *, user_addr_t);
138 static int in_getconninfo(struct socket *, sae_connid_t, uint32_t *,
139 uint32_t *, int32_t *, user_addr_t, socklen_t *, user_addr_t, socklen_t *,
140 uint32_t *, user_addr_t, uint32_t *);
141
142 static int subnetsarelocal = 0;
143 SYSCTL_INT(_net_inet_ip, OID_AUTO, subnets_are_local,
144 CTLFLAG_RW | CTLFLAG_LOCKED, &subnetsarelocal, 0, "");
145
146 /* Track whether or not the SIOCARPIPLL ioctl has been called */
147 u_int32_t ipv4_ll_arp_aware = 0;
148
149 #define INIFA_TRACE_HIST_SIZE 32 /* size of trace history */
150
151 /* For gdb */
152 __private_extern__ unsigned int inifa_trace_hist_size = INIFA_TRACE_HIST_SIZE;
153
154 struct in_ifaddr_dbg {
155 struct in_ifaddr inifa; /* in_ifaddr */
156 struct in_ifaddr inifa_old; /* saved in_ifaddr */
157 u_int16_t inifa_refhold_cnt; /* # of IFA_ADDREF */
158 u_int16_t inifa_refrele_cnt; /* # of IFA_REMREF */
159 /*
160 * Alloc and free callers.
161 */
162 ctrace_t inifa_alloc;
163 ctrace_t inifa_free;
164 /*
165 * Circular lists of IFA_ADDREF and IFA_REMREF callers.
166 */
167 ctrace_t inifa_refhold[INIFA_TRACE_HIST_SIZE];
168 ctrace_t inifa_refrele[INIFA_TRACE_HIST_SIZE];
169 /*
170 * Trash list linkage
171 */
172 TAILQ_ENTRY(in_ifaddr_dbg) inifa_trash_link;
173 };
174
175 /* List of trash in_ifaddr entries protected by inifa_trash_lock */
176 static TAILQ_HEAD(, in_ifaddr_dbg) inifa_trash_head;
177 static decl_lck_mtx_data(, inifa_trash_lock);
178
179 #if DEBUG
180 static unsigned int inifa_debug = 1; /* debugging (enabled) */
181 #else
182 static unsigned int inifa_debug; /* debugging (disabled) */
183 #endif /* !DEBUG */
184 static unsigned int inifa_size; /* size of zone element */
185 static struct zone *inifa_zone; /* zone for in_ifaddr */
186
187 #define INIFA_ZONE_MAX 64 /* maximum elements in zone */
188 #define INIFA_ZONE_NAME "in_ifaddr" /* zone name */
189
190 static const unsigned int in_extra_size = sizeof (struct in_ifextra);
191 static const unsigned int in_extra_bufsize = in_extra_size +
192 sizeof (void *) + sizeof (uint64_t);
193
194 /*
195 * Return 1 if the address is
196 * - loopback
197 * - unicast or multicast link local
198 * - routed via a link level gateway
199 * - belongs to a directly connected (sub)net
200 */
201 int
202 inaddr_local(struct in_addr in)
203 {
204 struct rtentry *rt;
205 struct sockaddr_in sin;
206 int local = 0;
207
208 if (ntohl(in.s_addr) == INADDR_LOOPBACK ||
209 IN_LINKLOCAL(ntohl(in.s_addr))) {
210 local = 1;
211 } else if (ntohl(in.s_addr) >= INADDR_UNSPEC_GROUP &&
212 ntohl(in.s_addr) <= INADDR_MAX_LOCAL_GROUP) {
213 local = 1;
214 } else {
215 sin.sin_family = AF_INET;
216 sin.sin_len = sizeof (sin);
217 sin.sin_addr = in;
218 rt = rtalloc1((struct sockaddr *)&sin, 0, 0);
219
220 if (rt != NULL) {
221 RT_LOCK_SPIN(rt);
222 if (rt->rt_gateway->sa_family == AF_LINK ||
223 (rt->rt_ifp->if_flags & IFF_LOOPBACK))
224 local = 1;
225 RT_UNLOCK(rt);
226 rtfree(rt);
227 } else {
228 local = in_localaddr(in);
229 }
230 }
231 return (local);
232 }
233
234 /*
235 * Return 1 if an internet address is for a ``local'' host
236 * (one to which we have a connection). If subnetsarelocal
237 * is true, this includes other subnets of the local net,
238 * otherwise, it includes the directly-connected (sub)nets.
239 * The IPv4 link local prefix 169.254/16 is also included.
240 */
241 int
242 in_localaddr(struct in_addr in)
243 {
244 u_int32_t i = ntohl(in.s_addr);
245 struct in_ifaddr *ia;
246
247 if (IN_LINKLOCAL(i))
248 return (1);
249
250 if (subnetsarelocal) {
251 lck_rw_lock_shared(in_ifaddr_rwlock);
252 for (ia = in_ifaddrhead.tqh_first; ia != NULL;
253 ia = ia->ia_link.tqe_next) {
254 IFA_LOCK(&ia->ia_ifa);
255 if ((i & ia->ia_netmask) == ia->ia_net) {
256 IFA_UNLOCK(&ia->ia_ifa);
257 lck_rw_done(in_ifaddr_rwlock);
258 return (1);
259 }
260 IFA_UNLOCK(&ia->ia_ifa);
261 }
262 lck_rw_done(in_ifaddr_rwlock);
263 } else {
264 lck_rw_lock_shared(in_ifaddr_rwlock);
265 for (ia = in_ifaddrhead.tqh_first; ia != NULL;
266 ia = ia->ia_link.tqe_next) {
267 IFA_LOCK(&ia->ia_ifa);
268 if ((i & ia->ia_subnetmask) == ia->ia_subnet) {
269 IFA_UNLOCK(&ia->ia_ifa);
270 lck_rw_done(in_ifaddr_rwlock);
271 return (1);
272 }
273 IFA_UNLOCK(&ia->ia_ifa);
274 }
275 lck_rw_done(in_ifaddr_rwlock);
276 }
277 return (0);
278 }
279
280 /*
281 * Determine whether an IP address is in a reserved set of addresses
282 * that may not be forwarded, or whether datagrams to that destination
283 * may be forwarded.
284 */
285 boolean_t
286 in_canforward(struct in_addr in)
287 {
288 u_int32_t i = ntohl(in.s_addr);
289 u_int32_t net;
290
291 if (IN_EXPERIMENTAL(i) || IN_MULTICAST(i))
292 return (FALSE);
293 if (IN_CLASSA(i)) {
294 net = i & IN_CLASSA_NET;
295 if (net == 0 || net == (IN_LOOPBACKNET << IN_CLASSA_NSHIFT))
296 return (FALSE);
297 }
298 return (TRUE);
299 }
300
301 /*
302 * Trim a mask in a sockaddr
303 */
304 static void
305 in_socktrim(struct sockaddr_in *ap)
306 {
307 char *cplim = (char *)&ap->sin_addr;
308 char *cp = (char *)(&ap->sin_addr + 1);
309
310 ap->sin_len = 0;
311 while (--cp >= cplim)
312 if (*cp) {
313 (ap)->sin_len = cp - (char *)(ap) + 1;
314 break;
315 }
316 }
317
318 static int in_interfaces; /* number of external internet interfaces */
319
320 static int
321 in_domifattach(struct ifnet *ifp)
322 {
323 int error;
324
325 VERIFY(ifp != NULL);
326
327 if ((error = proto_plumb(PF_INET, ifp)) && error != EEXIST) {
328 log(LOG_ERR, "%s: proto_plumb returned %d if=%s\n",
329 __func__, error, if_name(ifp));
330 } else if (error == 0 && ifp->if_inetdata == NULL) {
331 void **pbuf, *base;
332 struct in_ifextra *ext;
333 int errorx;
334
335 if ((ext = (struct in_ifextra *)_MALLOC(in_extra_bufsize,
336 M_IFADDR, M_WAITOK|M_ZERO)) == NULL) {
337 error = ENOMEM;
338 errorx = proto_unplumb(PF_INET, ifp);
339 if (errorx != 0) {
340 log(LOG_ERR,
341 "%s: proto_unplumb returned %d if=%s%d\n",
342 __func__, errorx, ifp->if_name,
343 ifp->if_unit);
344 }
345 goto done;
346 }
347
348 /* Align on 64-bit boundary */
349 base = (void *)P2ROUNDUP((intptr_t)ext + sizeof (uint64_t),
350 sizeof (uint64_t));
351 VERIFY(((intptr_t)base + in_extra_size) <=
352 ((intptr_t)ext + in_extra_bufsize));
353 pbuf = (void **)((intptr_t)base - sizeof (void *));
354 *pbuf = ext;
355 ifp->if_inetdata = base;
356 VERIFY(IS_P2ALIGNED(ifp->if_inetdata, sizeof (uint64_t)));
357 }
358 done:
359 if (error == 0 && ifp->if_inetdata != NULL) {
360 /*
361 * Since the structure is never freed, we need to
362 * zero out its contents to avoid reusing stale data.
363 * A little redundant with allocation above, but it
364 * keeps the code simpler for all cases.
365 */
366 bzero(ifp->if_inetdata, in_extra_size);
367 }
368 return (error);
369 }
370
371 static __attribute__((noinline)) int
372 inctl_associd(struct socket *so, u_long cmd, caddr_t data)
373 {
374 int error = 0;
375 union {
376 struct so_aidreq32 a32;
377 struct so_aidreq64 a64;
378 } u;
379
380 VERIFY(so != NULL);
381
382 switch (cmd) {
383 case SIOCGASSOCIDS32: /* struct so_aidreq32 */
384 bcopy(data, &u.a32, sizeof (u.a32));
385 error = in_getassocids(so, &u.a32.sar_cnt, u.a32.sar_aidp);
386 if (error == 0)
387 bcopy(&u.a32, data, sizeof (u.a32));
388 break;
389
390 case SIOCGASSOCIDS64: /* struct so_aidreq64 */
391 bcopy(data, &u.a64, sizeof (u.a64));
392 error = in_getassocids(so, &u.a64.sar_cnt, u.a64.sar_aidp);
393 if (error == 0)
394 bcopy(&u.a64, data, sizeof (u.a64));
395 break;
396
397 default:
398 VERIFY(0);
399 /* NOTREACHED */
400 }
401
402 return (error);
403 }
404
405 static __attribute__((noinline)) int
406 inctl_connid(struct socket *so, u_long cmd, caddr_t data)
407 {
408 int error = 0;
409 union {
410 struct so_cidreq32 c32;
411 struct so_cidreq64 c64;
412 } u;
413
414 VERIFY(so != NULL);
415
416 switch (cmd) {
417 case SIOCGCONNIDS32: /* struct so_cidreq32 */
418 bcopy(data, &u.c32, sizeof (u.c32));
419 error = in_getconnids(so, u.c32.scr_aid, &u.c32.scr_cnt,
420 u.c32.scr_cidp);
421 if (error == 0)
422 bcopy(&u.c32, data, sizeof (u.c32));
423 break;
424
425 case SIOCGCONNIDS64: /* struct so_cidreq64 */
426 bcopy(data, &u.c64, sizeof (u.c64));
427 error = in_getconnids(so, u.c64.scr_aid, &u.c64.scr_cnt,
428 u.c64.scr_cidp);
429 if (error == 0)
430 bcopy(&u.c64, data, sizeof (u.c64));
431 break;
432
433 default:
434 VERIFY(0);
435 /* NOTREACHED */
436 }
437
438 return (error);
439 }
440
441 static __attribute__((noinline)) int
442 inctl_conninfo(struct socket *so, u_long cmd, caddr_t data)
443 {
444 int error = 0;
445 union {
446 struct so_cinforeq32 ci32;
447 struct so_cinforeq64 ci64;
448 } u;
449
450 VERIFY(so != NULL);
451
452 switch (cmd) {
453 case SIOCGCONNINFO32: /* struct so_cinforeq32 */
454 bcopy(data, &u.ci32, sizeof (u.ci32));
455 error = in_getconninfo(so, u.ci32.scir_cid, &u.ci32.scir_flags,
456 &u.ci32.scir_ifindex, &u.ci32.scir_error, u.ci32.scir_src,
457 &u.ci32.scir_src_len, u.ci32.scir_dst, &u.ci32.scir_dst_len,
458 &u.ci32.scir_aux_type, u.ci32.scir_aux_data,
459 &u.ci32.scir_aux_len);
460 if (error == 0)
461 bcopy(&u.ci32, data, sizeof (u.ci32));
462 break;
463
464 case SIOCGCONNINFO64: /* struct so_cinforeq64 */
465 bcopy(data, &u.ci64, sizeof (u.ci64));
466 error = in_getconninfo(so, u.ci64.scir_cid, &u.ci64.scir_flags,
467 &u.ci64.scir_ifindex, &u.ci64.scir_error, u.ci64.scir_src,
468 &u.ci64.scir_src_len, u.ci64.scir_dst, &u.ci64.scir_dst_len,
469 &u.ci64.scir_aux_type, u.ci64.scir_aux_data,
470 &u.ci64.scir_aux_len);
471 if (error == 0)
472 bcopy(&u.ci64, data, sizeof (u.ci64));
473 break;
474
475 default:
476 VERIFY(0);
477 /* NOTREACHED */
478 }
479
480 return (error);
481 }
482
483 /*
484 * Caller passes in the ioctl data pointer directly via "ifr", with the
485 * expectation that this routine always uses bcopy() or other byte-aligned
486 * memory accesses.
487 */
488 static __attribute__((noinline)) int
489 inctl_autoaddr(struct ifnet *ifp, struct ifreq *ifr)
490 {
491 int error = 0, intval;
492
493 VERIFY(ifp != NULL);
494
495 bcopy(&ifr->ifr_intval, &intval, sizeof (intval));
496
497 ifnet_lock_exclusive(ifp);
498 if (intval) {
499 /*
500 * An interface in IPv4 router mode implies that it
501 * is configured with a static IP address and should
502 * not act as a DHCP client; prevent SIOCAUTOADDR from
503 * being set in that mode.
504 */
505 if (ifp->if_eflags & IFEF_IPV4_ROUTER) {
506 intval = 0; /* be safe; clear flag if set */
507 error = EBUSY;
508 } else {
509 ifp->if_eflags |= IFEF_AUTOCONFIGURING;
510 }
511 }
512 if (!intval)
513 ifp->if_eflags &= ~IFEF_AUTOCONFIGURING;
514 ifnet_lock_done(ifp);
515
516 return (error);
517 }
518
519 /*
520 * Caller passes in the ioctl data pointer directly via "ifr", with the
521 * expectation that this routine always uses bcopy() or other byte-aligned
522 * memory accesses.
523 */
524 static __attribute__((noinline)) int
525 inctl_arpipll(struct ifnet *ifp, struct ifreq *ifr)
526 {
527 int error = 0, intval;
528
529 VERIFY(ifp != NULL);
530
531 bcopy(&ifr->ifr_intval, &intval, sizeof (intval));
532 ipv4_ll_arp_aware = 1;
533
534 ifnet_lock_exclusive(ifp);
535 if (intval) {
536 /*
537 * An interface in IPv4 router mode implies that it
538 * is configured with a static IP address and should
539 * not have to deal with IPv4 Link-Local Address;
540 * prevent SIOCARPIPLL from being set in that mode.
541 */
542 if (ifp->if_eflags & IFEF_IPV4_ROUTER) {
543 intval = 0; /* be safe; clear flag if set */
544 error = EBUSY;
545 } else {
546 ifp->if_eflags |= IFEF_ARPLL;
547 }
548 }
549 if (!intval)
550 ifp->if_eflags &= ~IFEF_ARPLL;
551 ifnet_lock_done(ifp);
552
553 return (error);
554 }
555
556 /*
557 * Handle SIOCSETROUTERMODE to set or clear the IPv4 router mode flag on
558 * the interface. When in this mode, IPv4 Link-Local Address support is
559 * disabled in ARP, and DHCP client support is disabled in IP input; turning
560 * any of them on would cause an error to be returned. Entering or exiting
561 * this mode will result in the removal of IPv4 addresses currently configured
562 * on the interface.
563 *
564 * Caller passes in the ioctl data pointer directly via "ifr", with the
565 * expectation that this routine always uses bcopy() or other byte-aligned
566 * memory accesses.
567 */
568 static __attribute__((noinline)) int
569 inctl_setrouter(struct ifnet *ifp, struct ifreq *ifr)
570 {
571 int error = 0, intval;
572
573 VERIFY(ifp != NULL);
574
575 /* Router mode isn't valid for loopback */
576 if (ifp->if_flags & IFF_LOOPBACK)
577 return (ENODEV);
578
579 bcopy(&ifr->ifr_intval, &intval, sizeof (intval));
580
581 ifnet_lock_exclusive(ifp);
582 if (intval) {
583 ifp->if_eflags |= IFEF_IPV4_ROUTER;
584 ifp->if_eflags &= ~(IFEF_ARPLL | IFEF_AUTOCONFIGURING);
585 } else {
586 ifp->if_eflags &= ~IFEF_IPV4_ROUTER;
587 }
588 ifnet_lock_done(ifp);
589
590 /* purge all IPv4 addresses configured on this interface */
591 in_purgeaddrs(ifp);
592
593 return (error);
594 }
595
596 /*
597 * Caller passes in the ioctl data pointer directly via "ifr", with the
598 * expectation that this routine always uses bcopy() or other byte-aligned
599 * memory accesses.
600 */
601 static __attribute__((noinline)) int
602 inctl_ifaddr(struct ifnet *ifp, struct in_ifaddr *ia, u_long cmd,
603 struct ifreq *ifr)
604 {
605 struct kev_in_data in_event_data;
606 struct kev_msg ev_msg;
607 struct sockaddr_in addr;
608 struct ifaddr *ifa;
609 int error = 0;
610
611 VERIFY(ifp != NULL);
612
613 bzero(&in_event_data, sizeof (struct kev_in_data));
614 bzero(&ev_msg, sizeof (struct kev_msg));
615
616 switch (cmd) {
617 case SIOCGIFADDR: /* struct ifreq */
618 if (ia == NULL) {
619 error = EADDRNOTAVAIL;
620 break;
621 }
622 IFA_LOCK(&ia->ia_ifa);
623 bcopy(&ia->ia_addr, &ifr->ifr_addr, sizeof (addr));
624 IFA_UNLOCK(&ia->ia_ifa);
625 break;
626
627 case SIOCSIFADDR: /* struct ifreq */
628 VERIFY(ia != NULL);
629 bcopy(&ifr->ifr_addr, &addr, sizeof (addr));
630 /*
631 * If this is a new address, the reference count for the
632 * hash table has been taken at creation time above.
633 */
634 error = in_ifinit(ifp, ia, &addr, 1);
635 if (error == 0) {
636 (void) ifnet_notify_address(ifp, AF_INET);
637 }
638 break;
639
640 case SIOCAIFADDR: { /* struct {if,in_}aliasreq */
641 struct in_aliasreq *ifra = (struct in_aliasreq *)ifr;
642 struct sockaddr_in broadaddr, mask;
643 int hostIsNew, maskIsNew;
644
645 VERIFY(ia != NULL);
646 bcopy(&ifra->ifra_addr, &addr, sizeof (addr));
647 bcopy(&ifra->ifra_broadaddr, &broadaddr, sizeof (broadaddr));
648 bcopy(&ifra->ifra_mask, &mask, sizeof (mask));
649
650 maskIsNew = 0;
651 hostIsNew = 1;
652 error = 0;
653
654 IFA_LOCK(&ia->ia_ifa);
655 if (ia->ia_addr.sin_family == AF_INET) {
656 if (addr.sin_len == 0) {
657 addr = ia->ia_addr;
658 hostIsNew = 0;
659 } else if (addr.sin_addr.s_addr ==
660 ia->ia_addr.sin_addr.s_addr) {
661 hostIsNew = 0;
662 }
663 }
664 if (mask.sin_len) {
665 IFA_UNLOCK(&ia->ia_ifa);
666 in_ifscrub(ifp, ia, 0);
667 IFA_LOCK(&ia->ia_ifa);
668 ia->ia_sockmask = mask;
669 ia->ia_subnetmask =
670 ntohl(ia->ia_sockmask.sin_addr.s_addr);
671 maskIsNew = 1;
672 }
673 if ((ifp->if_flags & IFF_POINTOPOINT) &&
674 (broadaddr.sin_family == AF_INET)) {
675 IFA_UNLOCK(&ia->ia_ifa);
676 in_ifscrub(ifp, ia, 0);
677 IFA_LOCK(&ia->ia_ifa);
678 ia->ia_dstaddr = broadaddr;
679 ia->ia_dstaddr.sin_len = sizeof (struct sockaddr_in);
680 maskIsNew = 1; /* We lie; but the effect's the same */
681 }
682 if (addr.sin_family == AF_INET && (hostIsNew || maskIsNew)) {
683 IFA_UNLOCK(&ia->ia_ifa);
684 error = in_ifinit(ifp, ia, &addr, 0);
685 } else {
686 IFA_UNLOCK(&ia->ia_ifa);
687 }
688 if (error == 0) {
689 (void) ifnet_notify_address(ifp, AF_INET);
690 }
691 IFA_LOCK(&ia->ia_ifa);
692 if ((ifp->if_flags & IFF_BROADCAST) &&
693 (broadaddr.sin_family == AF_INET))
694 ia->ia_broadaddr = broadaddr;
695
696 /*
697 * Report event.
698 */
699 if ((error == 0) || (error == EEXIST)) {
700 ev_msg.vendor_code = KEV_VENDOR_APPLE;
701 ev_msg.kev_class = KEV_NETWORK_CLASS;
702 ev_msg.kev_subclass = KEV_INET_SUBCLASS;
703
704 if (hostIsNew)
705 ev_msg.event_code = KEV_INET_NEW_ADDR;
706 else
707 ev_msg.event_code = KEV_INET_CHANGED_ADDR;
708
709 if (ia->ia_ifa.ifa_dstaddr) {
710 in_event_data.ia_dstaddr =
711 ((struct sockaddr_in *)(void *)ia->
712 ia_ifa.ifa_dstaddr)->sin_addr;
713 } else {
714 in_event_data.ia_dstaddr.s_addr = INADDR_ANY;
715 }
716 in_event_data.ia_addr = ia->ia_addr.sin_addr;
717 in_event_data.ia_net = ia->ia_net;
718 in_event_data.ia_netmask = ia->ia_netmask;
719 in_event_data.ia_subnet = ia->ia_subnet;
720 in_event_data.ia_subnetmask = ia->ia_subnetmask;
721 in_event_data.ia_netbroadcast = ia->ia_netbroadcast;
722 IFA_UNLOCK(&ia->ia_ifa);
723 (void) strlcpy(&in_event_data.link_data.if_name[0],
724 ifp->if_name, IFNAMSIZ);
725 in_event_data.link_data.if_family = ifp->if_family;
726 in_event_data.link_data.if_unit = ifp->if_unit;
727
728 ev_msg.dv[0].data_ptr = &in_event_data;
729 ev_msg.dv[0].data_length = sizeof (struct kev_in_data);
730 ev_msg.dv[1].data_length = 0;
731
732 dlil_post_complete_msg(ifp, &ev_msg);
733 } else {
734 IFA_UNLOCK(&ia->ia_ifa);
735 }
736 break;
737 }
738
739 case SIOCDIFADDR: /* struct ifreq */
740 VERIFY(ia != NULL);
741 error = ifnet_ioctl(ifp, PF_INET, SIOCDIFADDR, ia);
742 if (error == EOPNOTSUPP)
743 error = 0;
744 if (error != 0) {
745 /* Reset the detaching flag */
746 IFA_LOCK(&ia->ia_ifa);
747 ia->ia_ifa.ifa_debug &= ~IFD_DETACHING;
748 IFA_UNLOCK(&ia->ia_ifa);
749 break;
750 }
751
752 /* Fill out the kernel event information */
753 ev_msg.vendor_code = KEV_VENDOR_APPLE;
754 ev_msg.kev_class = KEV_NETWORK_CLASS;
755 ev_msg.kev_subclass = KEV_INET_SUBCLASS;
756
757 ev_msg.event_code = KEV_INET_ADDR_DELETED;
758
759 IFA_LOCK(&ia->ia_ifa);
760 if (ia->ia_ifa.ifa_dstaddr) {
761 in_event_data.ia_dstaddr = ((struct sockaddr_in *)
762 (void *)ia->ia_ifa.ifa_dstaddr)->sin_addr;
763 } else {
764 in_event_data.ia_dstaddr.s_addr = INADDR_ANY;
765 }
766 in_event_data.ia_addr = ia->ia_addr.sin_addr;
767 in_event_data.ia_net = ia->ia_net;
768 in_event_data.ia_netmask = ia->ia_netmask;
769 in_event_data.ia_subnet = ia->ia_subnet;
770 in_event_data.ia_subnetmask = ia->ia_subnetmask;
771 in_event_data.ia_netbroadcast = ia->ia_netbroadcast;
772 IFA_UNLOCK(&ia->ia_ifa);
773 (void) strlcpy(&in_event_data.link_data.if_name[0],
774 ifp->if_name, IFNAMSIZ);
775 in_event_data.link_data.if_family = ifp->if_family;
776 in_event_data.link_data.if_unit = (u_int32_t)ifp->if_unit;
777
778 ev_msg.dv[0].data_ptr = &in_event_data;
779 ev_msg.dv[0].data_length = sizeof(struct kev_in_data);
780 ev_msg.dv[1].data_length = 0;
781
782 ifa = &ia->ia_ifa;
783 lck_rw_lock_exclusive(in_ifaddr_rwlock);
784 /* Release ia_link reference */
785 IFA_REMREF(ifa);
786 TAILQ_REMOVE(&in_ifaddrhead, ia, ia_link);
787 IFA_LOCK(ifa);
788 if (IA_IS_HASHED(ia))
789 in_iahash_remove(ia);
790 IFA_UNLOCK(ifa);
791 lck_rw_done(in_ifaddr_rwlock);
792
793 /*
794 * in_ifscrub kills the interface route.
795 */
796 in_ifscrub(ifp, ia, 0);
797 ifnet_lock_exclusive(ifp);
798 IFA_LOCK(ifa);
799 /* if_detach_ifa() releases ifa_link reference */
800 if_detach_ifa(ifp, ifa);
801 /* Our reference to this address is dropped at the bottom */
802 IFA_UNLOCK(ifa);
803
804 /* invalidate route caches */
805 routegenid_inet_update();
806
807 /*
808 * If the interface supports multicast, and no address is left,
809 * remove the "all hosts" multicast group from that interface.
810 */
811 if ((ifp->if_flags & IFF_MULTICAST) ||
812 ifp->if_allhostsinm != NULL) {
813
814 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
815 IFA_LOCK(ifa);
816 if (ifa->ifa_addr->sa_family == AF_INET) {
817 IFA_UNLOCK(ifa);
818 break;
819 }
820 IFA_UNLOCK(ifa);
821 }
822 ifnet_lock_done(ifp);
823
824 lck_mtx_lock(&ifp->if_addrconfig_lock);
825 if (ifa == NULL && ifp->if_allhostsinm != NULL) {
826 struct in_multi *inm = ifp->if_allhostsinm;
827 ifp->if_allhostsinm = NULL;
828
829 in_delmulti(inm);
830 /* release the reference for allhostsinm */
831 INM_REMREF(inm);
832 }
833 lck_mtx_unlock(&ifp->if_addrconfig_lock);
834 } else {
835 ifnet_lock_done(ifp);
836 }
837
838 /* Post the kernel event */
839 dlil_post_complete_msg(ifp, &ev_msg);
840
841 /*
842 * See if there is any IPV4 address left and if so,
843 * reconfigure KDP to use current primary address.
844 */
845 ifa = ifa_ifpgetprimary(ifp, AF_INET);
846 if (ifa != NULL) {
847 /*
848 * NOTE: SIOCSIFADDR is defined with struct ifreq
849 * as parameter, but here we are sending it down
850 * to the interface with a pointer to struct ifaddr,
851 * for legacy reasons.
852 */
853 error = ifnet_ioctl(ifp, PF_INET, SIOCSIFADDR, ifa);
854 if (error == EOPNOTSUPP)
855 error = 0;
856
857 /* Release reference from ifa_ifpgetprimary() */
858 IFA_REMREF(ifa);
859 }
860 (void) ifnet_notify_address(ifp, AF_INET);
861 break;
862
863 default:
864 VERIFY(0);
865 /* NOTREACHED */
866 }
867
868 return (error);
869 }
870
871 /*
872 * Caller passes in the ioctl data pointer directly via "ifr", with the
873 * expectation that this routine always uses bcopy() or other byte-aligned
874 * memory accesses.
875 */
876 static __attribute__((noinline)) int
877 inctl_ifdstaddr(struct ifnet *ifp, struct in_ifaddr *ia, u_long cmd,
878 struct ifreq *ifr)
879 {
880 struct kev_in_data in_event_data;
881 struct kev_msg ev_msg;
882 struct sockaddr_in dstaddr;
883 int error = 0;
884
885 VERIFY(ifp != NULL);
886
887 if (!(ifp->if_flags & IFF_POINTOPOINT))
888 return (EINVAL);
889
890 bzero(&in_event_data, sizeof (struct kev_in_data));
891 bzero(&ev_msg, sizeof (struct kev_msg));
892
893 switch (cmd) {
894 case SIOCGIFDSTADDR: /* struct ifreq */
895 if (ia == NULL) {
896 error = EADDRNOTAVAIL;
897 break;
898 }
899 IFA_LOCK(&ia->ia_ifa);
900 bcopy(&ia->ia_dstaddr, &ifr->ifr_dstaddr, sizeof (dstaddr));
901 IFA_UNLOCK(&ia->ia_ifa);
902 break;
903
904 case SIOCSIFDSTADDR: /* struct ifreq */
905 VERIFY(ia != NULL);
906 IFA_LOCK(&ia->ia_ifa);
907 dstaddr = ia->ia_dstaddr;
908 bcopy(&ifr->ifr_dstaddr, &ia->ia_dstaddr, sizeof (dstaddr));
909 if (ia->ia_dstaddr.sin_family == AF_INET)
910 ia->ia_dstaddr.sin_len = sizeof (struct sockaddr_in);
911 IFA_UNLOCK(&ia->ia_ifa);
912 /*
913 * NOTE: SIOCSIFDSTADDR is defined with struct ifreq
914 * as parameter, but here we are sending it down
915 * to the interface with a pointer to struct ifaddr,
916 * for legacy reasons.
917 */
918 error = ifnet_ioctl(ifp, PF_INET, SIOCSIFDSTADDR, ia);
919 IFA_LOCK(&ia->ia_ifa);
920 if (error == EOPNOTSUPP)
921 error = 0;
922 if (error != 0) {
923 ia->ia_dstaddr = dstaddr;
924 IFA_UNLOCK(&ia->ia_ifa);
925 break;
926 }
927 IFA_LOCK_ASSERT_HELD(&ia->ia_ifa);
928
929 ev_msg.vendor_code = KEV_VENDOR_APPLE;
930 ev_msg.kev_class = KEV_NETWORK_CLASS;
931 ev_msg.kev_subclass = KEV_INET_SUBCLASS;
932
933 ev_msg.event_code = KEV_INET_SIFDSTADDR;
934
935 if (ia->ia_ifa.ifa_dstaddr) {
936 in_event_data.ia_dstaddr = ((struct sockaddr_in *)
937 (void *)ia->ia_ifa.ifa_dstaddr)->sin_addr;
938 } else {
939 in_event_data.ia_dstaddr.s_addr = INADDR_ANY;
940 }
941
942 in_event_data.ia_addr = ia->ia_addr.sin_addr;
943 in_event_data.ia_net = ia->ia_net;
944 in_event_data.ia_netmask = ia->ia_netmask;
945 in_event_data.ia_subnet = ia->ia_subnet;
946 in_event_data.ia_subnetmask = ia->ia_subnetmask;
947 in_event_data.ia_netbroadcast = ia->ia_netbroadcast;
948 IFA_UNLOCK(&ia->ia_ifa);
949 (void) strlcpy(&in_event_data.link_data.if_name[0],
950 ifp->if_name, IFNAMSIZ);
951 in_event_data.link_data.if_family = ifp->if_family;
952 in_event_data.link_data.if_unit = (u_int32_t)ifp->if_unit;
953
954 ev_msg.dv[0].data_ptr = &in_event_data;
955 ev_msg.dv[0].data_length = sizeof (struct kev_in_data);
956 ev_msg.dv[1].data_length = 0;
957
958 dlil_post_complete_msg(ifp, &ev_msg);
959
960 lck_mtx_lock(rnh_lock);
961 IFA_LOCK(&ia->ia_ifa);
962 if (ia->ia_flags & IFA_ROUTE) {
963 ia->ia_ifa.ifa_dstaddr = (struct sockaddr *)&dstaddr;
964 IFA_UNLOCK(&ia->ia_ifa);
965 rtinit_locked(&(ia->ia_ifa), (int)RTM_DELETE, RTF_HOST);
966 IFA_LOCK(&ia->ia_ifa);
967 ia->ia_ifa.ifa_dstaddr =
968 (struct sockaddr *)&ia->ia_dstaddr;
969 IFA_UNLOCK(&ia->ia_ifa);
970 rtinit_locked(&(ia->ia_ifa), (int)RTM_ADD,
971 RTF_HOST|RTF_UP);
972 } else {
973 IFA_UNLOCK(&ia->ia_ifa);
974 }
975 lck_mtx_unlock(rnh_lock);
976 break;
977
978
979
980 default:
981 VERIFY(0);
982 /* NOTREACHED */
983 }
984
985 return (error);
986 }
987
988 /*
989 * Caller passes in the ioctl data pointer directly via "ifr", with the
990 * expectation that this routine always uses bcopy() or other byte-aligned
991 * memory accesses.
992 */
993 static __attribute__((noinline)) int
994 inctl_ifbrdaddr(struct ifnet *ifp, struct in_ifaddr *ia, u_long cmd,
995 struct ifreq *ifr)
996 {
997 struct kev_in_data in_event_data;
998 struct kev_msg ev_msg;
999 int error = 0;
1000
1001 VERIFY(ifp != NULL);
1002
1003 if (ia == NULL)
1004 return (EADDRNOTAVAIL);
1005
1006 if (!(ifp->if_flags & IFF_BROADCAST))
1007 return (EINVAL);
1008
1009 bzero(&in_event_data, sizeof (struct kev_in_data));
1010 bzero(&ev_msg, sizeof (struct kev_msg));
1011
1012 switch (cmd) {
1013 case SIOCGIFBRDADDR: /* struct ifreq */
1014 IFA_LOCK(&ia->ia_ifa);
1015 bcopy(&ia->ia_broadaddr, &ifr->ifr_broadaddr,
1016 sizeof (struct sockaddr_in));
1017 IFA_UNLOCK(&ia->ia_ifa);
1018 break;
1019
1020 case SIOCSIFBRDADDR: /* struct ifreq */
1021 IFA_LOCK(&ia->ia_ifa);
1022 bcopy(&ifr->ifr_broadaddr, &ia->ia_broadaddr,
1023 sizeof (struct sockaddr_in));
1024
1025 ev_msg.vendor_code = KEV_VENDOR_APPLE;
1026 ev_msg.kev_class = KEV_NETWORK_CLASS;
1027 ev_msg.kev_subclass = KEV_INET_SUBCLASS;
1028
1029 ev_msg.event_code = KEV_INET_SIFBRDADDR;
1030
1031 if (ia->ia_ifa.ifa_dstaddr) {
1032 in_event_data.ia_dstaddr = ((struct sockaddr_in *)
1033 (void *)ia->ia_ifa.ifa_dstaddr)->sin_addr;
1034 } else {
1035 in_event_data.ia_dstaddr.s_addr = INADDR_ANY;
1036 }
1037 in_event_data.ia_addr = ia->ia_addr.sin_addr;
1038 in_event_data.ia_net = ia->ia_net;
1039 in_event_data.ia_netmask = ia->ia_netmask;
1040 in_event_data.ia_subnet = ia->ia_subnet;
1041 in_event_data.ia_subnetmask = ia->ia_subnetmask;
1042 in_event_data.ia_netbroadcast = ia->ia_netbroadcast;
1043 IFA_UNLOCK(&ia->ia_ifa);
1044 (void) strlcpy(&in_event_data.link_data.if_name[0],
1045 ifp->if_name, IFNAMSIZ);
1046 in_event_data.link_data.if_family = ifp->if_family;
1047 in_event_data.link_data.if_unit = (u_int32_t)ifp->if_unit;
1048
1049 ev_msg.dv[0].data_ptr = &in_event_data;
1050 ev_msg.dv[0].data_length = sizeof (struct kev_in_data);
1051 ev_msg.dv[1].data_length = 0;
1052
1053 dlil_post_complete_msg(ifp, &ev_msg);
1054 break;
1055
1056 default:
1057 VERIFY(0);
1058 /* NOTREACHED */
1059 }
1060
1061 return (error);
1062 }
1063
1064 /*
1065 * Caller passes in the ioctl data pointer directly via "ifr", with the
1066 * expectation that this routine always uses bcopy() or other byte-aligned
1067 * memory accesses.
1068 */
1069 static __attribute__((noinline)) int
1070 inctl_ifnetmask(struct ifnet *ifp, struct in_ifaddr *ia, u_long cmd,
1071 struct ifreq *ifr)
1072 {
1073 struct kev_in_data in_event_data;
1074 struct kev_msg ev_msg;
1075 struct sockaddr_in mask;
1076 int error = 0;
1077
1078 VERIFY(ifp != NULL);
1079
1080 bzero(&in_event_data, sizeof (struct kev_in_data));
1081 bzero(&ev_msg, sizeof (struct kev_msg));
1082
1083 switch (cmd) {
1084 case SIOCGIFNETMASK: /* struct ifreq */
1085 if (ia == NULL) {
1086 error = EADDRNOTAVAIL;
1087 break;
1088 }
1089 IFA_LOCK(&ia->ia_ifa);
1090 bcopy(&ia->ia_sockmask, &ifr->ifr_addr, sizeof (mask));
1091 IFA_UNLOCK(&ia->ia_ifa);
1092 break;
1093
1094 case SIOCSIFNETMASK: { /* struct ifreq */
1095 in_addr_t i;
1096
1097 bcopy(&ifr->ifr_addr, &mask, sizeof (mask));
1098 i = mask.sin_addr.s_addr;
1099
1100 VERIFY(ia != NULL);
1101 IFA_LOCK(&ia->ia_ifa);
1102 ia->ia_subnetmask = ntohl(ia->ia_sockmask.sin_addr.s_addr = i);
1103 ev_msg.vendor_code = KEV_VENDOR_APPLE;
1104 ev_msg.kev_class = KEV_NETWORK_CLASS;
1105 ev_msg.kev_subclass = KEV_INET_SUBCLASS;
1106
1107 ev_msg.event_code = KEV_INET_SIFNETMASK;
1108
1109 if (ia->ia_ifa.ifa_dstaddr) {
1110 in_event_data.ia_dstaddr = ((struct sockaddr_in *)
1111 (void *)ia->ia_ifa.ifa_dstaddr)->sin_addr;
1112 } else {
1113 in_event_data.ia_dstaddr.s_addr = INADDR_ANY;
1114 }
1115 in_event_data.ia_addr = ia->ia_addr.sin_addr;
1116 in_event_data.ia_net = ia->ia_net;
1117 in_event_data.ia_netmask = ia->ia_netmask;
1118 in_event_data.ia_subnet = ia->ia_subnet;
1119 in_event_data.ia_subnetmask = ia->ia_subnetmask;
1120 in_event_data.ia_netbroadcast = ia->ia_netbroadcast;
1121 IFA_UNLOCK(&ia->ia_ifa);
1122 (void) strlcpy(&in_event_data.link_data.if_name[0],
1123 ifp->if_name, IFNAMSIZ);
1124 in_event_data.link_data.if_family = ifp->if_family;
1125 in_event_data.link_data.if_unit = (u_int32_t)ifp->if_unit;
1126
1127 ev_msg.dv[0].data_ptr = &in_event_data;
1128 ev_msg.dv[0].data_length = sizeof (struct kev_in_data);
1129 ev_msg.dv[1].data_length = 0;
1130
1131 dlil_post_complete_msg(ifp, &ev_msg);
1132 break;
1133 }
1134
1135 default:
1136 VERIFY(0);
1137 /* NOTREACHED */
1138 }
1139
1140 return (error);
1141 }
1142
1143 /*
1144 * Generic INET control operations (ioctl's).
1145 *
1146 * ifp is NULL if not an interface-specific ioctl.
1147 *
1148 * Most of the routines called to handle the ioctls would end up being
1149 * tail-call optimized, which unfortunately causes this routine to
1150 * consume too much stack space; this is the reason for the "noinline"
1151 * attribute used on those routines.
1152 *
1153 * If called directly from within the networking stack (as opposed to via
1154 * pru_control), the socket parameter may be NULL.
1155 */
1156 int
1157 in_control(struct socket *so, u_long cmd, caddr_t data, struct ifnet *ifp,
1158 struct proc *p)
1159 {
1160 struct ifreq *ifr = (struct ifreq *)(void *)data;
1161 struct sockaddr_in addr, dstaddr;
1162 struct sockaddr_in sin, *sa = NULL;
1163 boolean_t privileged = (proc_suser(p) == 0);
1164 boolean_t so_unlocked = FALSE;
1165 struct in_ifaddr *ia = NULL;
1166 struct ifaddr *ifa;
1167 int error = 0;
1168
1169 /* In case it's NULL, make sure it came from the kernel */
1170 VERIFY(so != NULL || p == kernproc);
1171
1172 /*
1173 * ioctls which don't require ifp, but require socket.
1174 */
1175 switch (cmd) {
1176 case SIOCGASSOCIDS32: /* struct so_aidreq32 */
1177 case SIOCGASSOCIDS64: /* struct so_aidreq64 */
1178 return (inctl_associd(so, cmd, data));
1179 /* NOTREACHED */
1180
1181 case SIOCGCONNIDS32: /* struct so_cidreq32 */
1182 case SIOCGCONNIDS64: /* struct so_cidreq64 */
1183 return (inctl_connid(so, cmd, data));
1184 /* NOTREACHED */
1185
1186 case SIOCGCONNINFO32: /* struct so_cinforeq32 */
1187 case SIOCGCONNINFO64: /* struct so_cinforeq64 */
1188 return (inctl_conninfo(so, cmd, data));
1189 /* NOTREACHED */
1190 }
1191
1192 /*
1193 * The rest of ioctls require ifp; reject if we don't have one;
1194 * return ENXIO to be consistent with ifioctl().
1195 */
1196 if (ifp == NULL)
1197 return (ENXIO);
1198
1199 /*
1200 * ioctls which require ifp but not interface address.
1201 */
1202 switch (cmd) {
1203 case SIOCAUTOADDR: /* struct ifreq */
1204 if (!privileged)
1205 return (EPERM);
1206 return (inctl_autoaddr(ifp, ifr));
1207 /* NOTREACHED */
1208
1209 case SIOCARPIPLL: /* struct ifreq */
1210 if (!privileged)
1211 return (EPERM);
1212 return (inctl_arpipll(ifp, ifr));
1213 /* NOTREACHED */
1214
1215 case SIOCSETROUTERMODE: /* struct ifreq */
1216 if (!privileged)
1217 return (EPERM);
1218 return (inctl_setrouter(ifp, ifr));
1219 /* NOTREACHED */
1220
1221 case SIOCPROTOATTACH: /* struct ifreq */
1222 if (!privileged)
1223 return (EPERM);
1224 return (in_domifattach(ifp));
1225 /* NOTREACHED */
1226
1227 case SIOCPROTODETACH: /* struct ifreq */
1228 if (!privileged)
1229 return (EPERM);
1230
1231 /*
1232 * If an IPv4 address is still present, refuse to detach.
1233 */
1234 ifnet_lock_shared(ifp);
1235 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
1236 IFA_LOCK(ifa);
1237 if (ifa->ifa_addr->sa_family == AF_INET) {
1238 IFA_UNLOCK(ifa);
1239 break;
1240 }
1241 IFA_UNLOCK(ifa);
1242 }
1243 ifnet_lock_done(ifp);
1244 return ((ifa == NULL) ? proto_unplumb(PF_INET, ifp) : EBUSY);
1245 /* NOTREACHED */
1246 }
1247
1248 /*
1249 * ioctls which require interface address; obtain sockaddr_in.
1250 */
1251 switch (cmd) {
1252 case SIOCAIFADDR: /* struct {if,in_}aliasreq */
1253 if (!privileged)
1254 return (EPERM);
1255 bcopy(&((struct in_aliasreq *)(void *)data)->ifra_addr,
1256 &sin, sizeof (sin));
1257 sa = &sin;
1258 break;
1259
1260 case SIOCDIFADDR: /* struct ifreq */
1261 case SIOCSIFADDR: /* struct ifreq */
1262 case SIOCSIFDSTADDR: /* struct ifreq */
1263 case SIOCSIFNETMASK: /* struct ifreq */
1264 case SIOCSIFBRDADDR: /* struct ifreq */
1265 if (!privileged)
1266 return (EPERM);
1267 /* FALLTHRU */
1268 case SIOCGIFADDR: /* struct ifreq */
1269 case SIOCGIFDSTADDR: /* struct ifreq */
1270 case SIOCGIFNETMASK: /* struct ifreq */
1271 case SIOCGIFBRDADDR: /* struct ifreq */
1272 bcopy(&ifr->ifr_addr, &sin, sizeof (sin));
1273 sa = &sin;
1274 break;
1275 }
1276
1277 /*
1278 * Find address for this interface, if it exists.
1279 *
1280 * If an alias address was specified, find that one instead of
1281 * the first one on the interface, if possible.
1282 */
1283 VERIFY(ia == NULL);
1284 if (sa != NULL) {
1285 struct in_ifaddr *iap;
1286
1287 /*
1288 * Any failures from this point on must take into account
1289 * a non-NULL "ia" with an outstanding reference count, and
1290 * therefore requires IFA_REMREF. Jump to "done" label
1291 * instead of calling return if "ia" is valid.
1292 */
1293 lck_rw_lock_shared(in_ifaddr_rwlock);
1294 TAILQ_FOREACH(iap, INADDR_HASH(sa->sin_addr.s_addr), ia_hash) {
1295 IFA_LOCK(&iap->ia_ifa);
1296 if (iap->ia_ifp == ifp &&
1297 iap->ia_addr.sin_addr.s_addr ==
1298 sa->sin_addr.s_addr) {
1299 /*
1300 * Avoid the race condition seen when two
1301 * threads process SIOCDIFADDR command
1302 * at the same time (radar 28942007)
1303 */
1304 if (cmd == SIOCDIFADDR) {
1305 if (iap->ia_ifa.ifa_debug &
1306 IFD_DETACHING) {
1307 IFA_UNLOCK(&iap->ia_ifa);
1308 continue;
1309 } else {
1310 iap->ia_ifa.ifa_debug |=
1311 IFD_DETACHING;
1312 }
1313 }
1314 ia = iap;
1315 IFA_ADDREF_LOCKED(&iap->ia_ifa);
1316 IFA_UNLOCK(&iap->ia_ifa);
1317 break;
1318 }
1319 IFA_UNLOCK(&iap->ia_ifa);
1320 }
1321 lck_rw_done(in_ifaddr_rwlock);
1322
1323 if (ia == NULL) {
1324 ifnet_lock_shared(ifp);
1325 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
1326 iap = ifatoia(ifa);
1327 IFA_LOCK(&iap->ia_ifa);
1328 if (iap->ia_addr.sin_family == AF_INET) {
1329 ia = iap;
1330 IFA_UNLOCK(&iap->ia_ifa);
1331 break;
1332 }
1333 IFA_UNLOCK(&iap->ia_ifa);
1334 }
1335 /* take a reference on ia before releasing lock */
1336 if (ia != NULL)
1337 IFA_ADDREF(&ia->ia_ifa);
1338 ifnet_lock_done(ifp);
1339 }
1340 }
1341
1342 /*
1343 * Unlock the socket since ifnet_ioctl() may be invoked by
1344 * one of the ioctl handlers below. Socket will be re-locked
1345 * prior to returning.
1346 */
1347 if (so != NULL) {
1348 socket_unlock(so, 0);
1349 so_unlocked = TRUE;
1350 }
1351
1352 switch (cmd) {
1353 case SIOCAIFADDR: /* struct {if,in_}aliasreq */
1354 case SIOCDIFADDR: /* struct ifreq */
1355 if (cmd == SIOCAIFADDR) {
1356 bcopy(&((struct in_aliasreq *)(void *)data)->
1357 ifra_addr, &addr, sizeof (addr));
1358 bcopy(&((struct in_aliasreq *)(void *)data)->
1359 ifra_dstaddr, &dstaddr, sizeof (dstaddr));
1360 } else {
1361 VERIFY(cmd == SIOCDIFADDR);
1362 bcopy(&((struct ifreq *)(void *)data)->ifr_addr,
1363 &addr, sizeof (addr));
1364 bzero(&dstaddr, sizeof (dstaddr));
1365 }
1366
1367 if (addr.sin_family == AF_INET) {
1368 struct in_ifaddr *oia;
1369
1370 lck_rw_lock_shared(in_ifaddr_rwlock);
1371 for (oia = ia; ia; ia = ia->ia_link.tqe_next) {
1372 IFA_LOCK(&ia->ia_ifa);
1373 if (ia->ia_ifp == ifp &&
1374 ia->ia_addr.sin_addr.s_addr ==
1375 addr.sin_addr.s_addr) {
1376 IFA_ADDREF_LOCKED(&ia->ia_ifa);
1377 IFA_UNLOCK(&ia->ia_ifa);
1378 break;
1379 }
1380 IFA_UNLOCK(&ia->ia_ifa);
1381 }
1382 lck_rw_done(in_ifaddr_rwlock);
1383 if (oia != NULL)
1384 IFA_REMREF(&oia->ia_ifa);
1385 if ((ifp->if_flags & IFF_POINTOPOINT) &&
1386 (cmd == SIOCAIFADDR) &&
1387 (dstaddr.sin_addr.s_addr == INADDR_ANY)) {
1388 error = EDESTADDRREQ;
1389 goto done;
1390 }
1391 } else if (cmd == SIOCAIFADDR) {
1392 error = EINVAL;
1393 goto done;
1394 }
1395 if (cmd == SIOCDIFADDR && ia == NULL) {
1396 error = EADDRNOTAVAIL;
1397 goto done;
1398 }
1399 /* FALLTHROUGH */
1400 case SIOCSIFADDR: /* struct ifreq */
1401 case SIOCSIFDSTADDR: /* struct ifreq */
1402 case SIOCSIFNETMASK: /* struct ifreq */
1403 if (cmd == SIOCAIFADDR) {
1404 /* fell thru from above; just repeat it */
1405 bcopy(&((struct in_aliasreq *)(void *)data)->
1406 ifra_addr, &addr, sizeof (addr));
1407 } else {
1408 VERIFY(cmd == SIOCDIFADDR || cmd == SIOCSIFADDR ||
1409 cmd == SIOCSIFNETMASK || cmd == SIOCSIFDSTADDR);
1410 bcopy(&((struct ifreq *)(void *)data)->ifr_addr,
1411 &addr, sizeof (addr));
1412 }
1413
1414 if (addr.sin_family != AF_INET && cmd == SIOCSIFADDR) {
1415 error = EINVAL;
1416 goto done;
1417 }
1418 if (ia == NULL) {
1419 ia = in_ifaddr_alloc(M_WAITOK);
1420 if (ia == NULL) {
1421 error = ENOBUFS;
1422 goto done;
1423 }
1424 ifnet_lock_exclusive(ifp);
1425 ifa = &ia->ia_ifa;
1426 IFA_LOCK(ifa);
1427 /* Hold a reference for this routine */
1428 IFA_ADDREF_LOCKED(ifa);
1429 IA_HASH_INIT(ia);
1430 ifa->ifa_addr = (struct sockaddr *)&ia->ia_addr;
1431 ifa->ifa_dstaddr = (struct sockaddr *)&ia->ia_dstaddr;
1432 ifa->ifa_netmask = (struct sockaddr *)&ia->ia_sockmask;
1433 ia->ia_sockmask.sin_len = 8;
1434 if (ifp->if_flags & IFF_BROADCAST) {
1435 ia->ia_broadaddr.sin_len = sizeof (ia->ia_addr);
1436 ia->ia_broadaddr.sin_family = AF_INET;
1437 }
1438 ia->ia_ifp = ifp;
1439 if (!(ifp->if_flags & IFF_LOOPBACK))
1440 in_interfaces++;
1441 /* if_attach_ifa() holds a reference for ifa_link */
1442 if_attach_ifa(ifp, ifa);
1443 /*
1444 * If we have to go through in_ifinit(), make sure
1445 * to avoid installing route(s) based on this address
1446 * via PFC_IFUP event, before the link resolver (ARP)
1447 * initializes it.
1448 */
1449 if (cmd == SIOCAIFADDR || cmd == SIOCSIFADDR)
1450 ifa->ifa_debug |= IFD_NOTREADY;
1451 IFA_UNLOCK(ifa);
1452 ifnet_lock_done(ifp);
1453 lck_rw_lock_exclusive(in_ifaddr_rwlock);
1454 /* Hold a reference for ia_link */
1455 IFA_ADDREF(ifa);
1456 TAILQ_INSERT_TAIL(&in_ifaddrhead, ia, ia_link);
1457 lck_rw_done(in_ifaddr_rwlock);
1458 /* discard error */
1459 (void) in_domifattach(ifp);
1460 error = 0;
1461 }
1462 break;
1463 }
1464
1465 switch (cmd) {
1466 case SIOCGIFDSTADDR: /* struct ifreq */
1467 case SIOCSIFDSTADDR: /* struct ifreq */
1468 error = inctl_ifdstaddr(ifp, ia, cmd, ifr);
1469 break;
1470
1471 case SIOCGIFBRDADDR: /* struct ifreq */
1472 case SIOCSIFBRDADDR: /* struct ifreq */
1473 error = inctl_ifbrdaddr(ifp, ia, cmd, ifr);
1474 break;
1475
1476 case SIOCGIFNETMASK: /* struct ifreq */
1477 case SIOCSIFNETMASK: /* struct ifreq */
1478 error = inctl_ifnetmask(ifp, ia, cmd, ifr);
1479 break;
1480
1481 case SIOCGIFADDR: /* struct ifreq */
1482 case SIOCSIFADDR: /* struct ifreq */
1483 case SIOCAIFADDR: /* struct {if,in_}aliasreq */
1484 case SIOCDIFADDR: /* struct ifreq */
1485 error = inctl_ifaddr(ifp, ia, cmd, ifr);
1486 break;
1487
1488 default:
1489 error = EOPNOTSUPP;
1490 break;
1491 }
1492 done:
1493 if (ia != NULL)
1494 IFA_REMREF(&ia->ia_ifa);
1495 if (so_unlocked)
1496 socket_lock(so, 0);
1497
1498 return (error);
1499 }
1500
1501 /*
1502 * Delete any existing route for an interface.
1503 */
1504 void
1505 in_ifscrub(struct ifnet *ifp, struct in_ifaddr *ia, int locked)
1506 {
1507 IFA_LOCK(&ia->ia_ifa);
1508 if ((ia->ia_flags & IFA_ROUTE) == 0) {
1509 IFA_UNLOCK(&ia->ia_ifa);
1510 return;
1511 }
1512 IFA_UNLOCK(&ia->ia_ifa);
1513 if (!locked)
1514 lck_mtx_lock(rnh_lock);
1515 if (ifp->if_flags & (IFF_LOOPBACK|IFF_POINTOPOINT))
1516 rtinit_locked(&(ia->ia_ifa), (int)RTM_DELETE, RTF_HOST);
1517 else
1518 rtinit_locked(&(ia->ia_ifa), (int)RTM_DELETE, 0);
1519 IFA_LOCK(&ia->ia_ifa);
1520 ia->ia_flags &= ~IFA_ROUTE;
1521 IFA_UNLOCK(&ia->ia_ifa);
1522 if (!locked)
1523 lck_mtx_unlock(rnh_lock);
1524 }
1525
1526 /*
1527 * Caller must hold in_ifaddr_rwlock as writer.
1528 */
1529 static void
1530 in_iahash_remove(struct in_ifaddr *ia)
1531 {
1532 lck_rw_assert(in_ifaddr_rwlock, LCK_RW_ASSERT_EXCLUSIVE);
1533 IFA_LOCK_ASSERT_HELD(&ia->ia_ifa);
1534
1535 if (!IA_IS_HASHED(ia)) {
1536 panic("attempt to remove wrong ia %p from hash table\n", ia);
1537 /* NOTREACHED */
1538 }
1539 TAILQ_REMOVE(INADDR_HASH(ia->ia_addr.sin_addr.s_addr), ia, ia_hash);
1540 IA_HASH_INIT(ia);
1541 if (IFA_REMREF_LOCKED(&ia->ia_ifa) == NULL) {
1542 panic("%s: unexpected (missing) refcnt ifa=%p", __func__,
1543 &ia->ia_ifa);
1544 /* NOTREACHED */
1545 }
1546 }
1547
1548 /*
1549 * Caller must hold in_ifaddr_rwlock as writer.
1550 */
1551 static void
1552 in_iahash_insert(struct in_ifaddr *ia)
1553 {
1554 lck_rw_assert(in_ifaddr_rwlock, LCK_RW_ASSERT_EXCLUSIVE);
1555 IFA_LOCK_ASSERT_HELD(&ia->ia_ifa);
1556
1557 if (ia->ia_addr.sin_family != AF_INET) {
1558 panic("attempt to insert wrong ia %p into hash table\n", ia);
1559 /* NOTREACHED */
1560 } else if (IA_IS_HASHED(ia)) {
1561 panic("attempt to double-insert ia %p into hash table\n", ia);
1562 /* NOTREACHED */
1563 }
1564 TAILQ_INSERT_HEAD(INADDR_HASH(ia->ia_addr.sin_addr.s_addr),
1565 ia, ia_hash);
1566 IFA_ADDREF_LOCKED(&ia->ia_ifa);
1567 }
1568
1569 /*
1570 * Some point to point interfaces that are tunnels borrow the address from
1571 * an underlying interface (e.g. VPN server). In order for source address
1572 * selection logic to find the underlying interface first, we add the address
1573 * of borrowing point to point interfaces at the end of the list.
1574 * (see rdar://6733789)
1575 *
1576 * Caller must hold in_ifaddr_rwlock as writer.
1577 */
1578 static void
1579 in_iahash_insert_ptp(struct in_ifaddr *ia)
1580 {
1581 struct in_ifaddr *tmp_ifa;
1582 struct ifnet *tmp_ifp;
1583
1584 lck_rw_assert(in_ifaddr_rwlock, LCK_RW_ASSERT_EXCLUSIVE);
1585 IFA_LOCK_ASSERT_HELD(&ia->ia_ifa);
1586
1587 if (ia->ia_addr.sin_family != AF_INET) {
1588 panic("attempt to insert wrong ia %p into hash table\n", ia);
1589 /* NOTREACHED */
1590 } else if (IA_IS_HASHED(ia)) {
1591 panic("attempt to double-insert ia %p into hash table\n", ia);
1592 /* NOTREACHED */
1593 }
1594 IFA_UNLOCK(&ia->ia_ifa);
1595 TAILQ_FOREACH(tmp_ifa, INADDR_HASH(ia->ia_addr.sin_addr.s_addr),
1596 ia_hash) {
1597 IFA_LOCK(&tmp_ifa->ia_ifa);
1598 /* ia->ia_addr won't change, so check without lock */
1599 if (IA_SIN(tmp_ifa)->sin_addr.s_addr ==
1600 ia->ia_addr.sin_addr.s_addr) {
1601 IFA_UNLOCK(&tmp_ifa->ia_ifa);
1602 break;
1603 }
1604 IFA_UNLOCK(&tmp_ifa->ia_ifa);
1605 }
1606 tmp_ifp = (tmp_ifa == NULL) ? NULL : tmp_ifa->ia_ifp;
1607
1608 IFA_LOCK(&ia->ia_ifa);
1609 if (tmp_ifp == NULL) {
1610 TAILQ_INSERT_HEAD(INADDR_HASH(ia->ia_addr.sin_addr.s_addr),
1611 ia, ia_hash);
1612 } else {
1613 TAILQ_INSERT_TAIL(INADDR_HASH(ia->ia_addr.sin_addr.s_addr),
1614 ia, ia_hash);
1615 }
1616 IFA_ADDREF_LOCKED(&ia->ia_ifa);
1617 }
1618
1619 /*
1620 * Initialize an interface's internet address
1621 * and routing table entry.
1622 */
1623 static int
1624 in_ifinit(struct ifnet *ifp, struct in_ifaddr *ia, struct sockaddr_in *sin,
1625 int scrub)
1626 {
1627 u_int32_t i = ntohl(sin->sin_addr.s_addr);
1628 struct sockaddr_in oldaddr;
1629 int flags = RTF_UP, error;
1630 struct ifaddr *ifa0;
1631 unsigned int cmd;
1632 int oldremoved = 0;
1633
1634 /* Take an extra reference for this routine */
1635 IFA_ADDREF(&ia->ia_ifa);
1636
1637 lck_rw_lock_exclusive(in_ifaddr_rwlock);
1638 IFA_LOCK(&ia->ia_ifa);
1639 oldaddr = ia->ia_addr;
1640 if (IA_IS_HASHED(ia)) {
1641 oldremoved = 1;
1642 in_iahash_remove(ia);
1643 }
1644 ia->ia_addr = *sin;
1645 /*
1646 * Interface addresses should not contain port or sin_zero information.
1647 */
1648 SIN(&ia->ia_addr)->sin_family = AF_INET;
1649 SIN(&ia->ia_addr)->sin_len = sizeof (struct sockaddr_in);
1650 SIN(&ia->ia_addr)->sin_port = 0;
1651 bzero(&SIN(&ia->ia_addr)->sin_zero, sizeof (sin->sin_zero));
1652 if ((ifp->if_flags & IFF_POINTOPOINT))
1653 in_iahash_insert_ptp(ia);
1654 else
1655 in_iahash_insert(ia);
1656 IFA_UNLOCK(&ia->ia_ifa);
1657 lck_rw_done(in_ifaddr_rwlock);
1658
1659 /*
1660 * Give the interface a chance to initialize if this is its first
1661 * address, and to validate the address if necessary. Send down
1662 * SIOCSIFADDR for first address, and SIOCAIFADDR for alias(es).
1663 * We find the first IPV4 address assigned to it and check if this
1664 * is the same as the one passed into this routine.
1665 */
1666 ifa0 = ifa_ifpgetprimary(ifp, AF_INET);
1667 cmd = (&ia->ia_ifa == ifa0) ? SIOCSIFADDR : SIOCAIFADDR;
1668 error = ifnet_ioctl(ifp, PF_INET, cmd, ia);
1669 if (error == EOPNOTSUPP)
1670 error = 0;
1671 /*
1672 * If we've just sent down SIOCAIFADDR, send another ioctl down
1673 * for SIOCSIFADDR for the first IPV4 address of the interface,
1674 * because an address change on one of the addresses will result
1675 * in the removal of the previous first IPV4 address. KDP needs
1676 * be reconfigured with the current primary IPV4 address.
1677 */
1678 if (error == 0 && cmd == SIOCAIFADDR) {
1679 /*
1680 * NOTE: SIOCSIFADDR is defined with struct ifreq
1681 * as parameter, but here we are sending it down
1682 * to the interface with a pointer to struct ifaddr,
1683 * for legacy reasons.
1684 */
1685 error = ifnet_ioctl(ifp, PF_INET, SIOCSIFADDR, ifa0);
1686 if (error == EOPNOTSUPP)
1687 error = 0;
1688 }
1689
1690 /* Release reference from ifa_ifpgetprimary() */
1691 IFA_REMREF(ifa0);
1692
1693 if (error) {
1694 lck_rw_lock_exclusive(in_ifaddr_rwlock);
1695 IFA_LOCK(&ia->ia_ifa);
1696 if (IA_IS_HASHED(ia))
1697 in_iahash_remove(ia);
1698 ia->ia_addr = oldaddr;
1699 if (oldremoved) {
1700 if ((ifp->if_flags & IFF_POINTOPOINT))
1701 in_iahash_insert_ptp(ia);
1702 else
1703 in_iahash_insert(ia);
1704 }
1705 IFA_UNLOCK(&ia->ia_ifa);
1706 lck_rw_done(in_ifaddr_rwlock);
1707 /* Release extra reference taken above */
1708 IFA_REMREF(&ia->ia_ifa);
1709 return (error);
1710 }
1711 lck_mtx_lock(rnh_lock);
1712 IFA_LOCK(&ia->ia_ifa);
1713 /*
1714 * Address has been initialized by the link resolver (ARP)
1715 * via ifnet_ioctl() above; it may now generate route(s).
1716 */
1717 ia->ia_ifa.ifa_debug &= ~IFD_NOTREADY;
1718 if (scrub) {
1719 ia->ia_ifa.ifa_addr = (struct sockaddr *)&oldaddr;
1720 IFA_UNLOCK(&ia->ia_ifa);
1721 in_ifscrub(ifp, ia, 1);
1722 IFA_LOCK(&ia->ia_ifa);
1723 ia->ia_ifa.ifa_addr = (struct sockaddr *)&ia->ia_addr;
1724 }
1725 IFA_LOCK_ASSERT_HELD(&ia->ia_ifa);
1726 if (IN_CLASSA(i))
1727 ia->ia_netmask = IN_CLASSA_NET;
1728 else if (IN_CLASSB(i))
1729 ia->ia_netmask = IN_CLASSB_NET;
1730 else
1731 ia->ia_netmask = IN_CLASSC_NET;
1732 /*
1733 * The subnet mask usually includes at least the standard network part,
1734 * but may may be smaller in the case of supernetting.
1735 * If it is set, we believe it.
1736 */
1737 if (ia->ia_subnetmask == 0) {
1738 ia->ia_subnetmask = ia->ia_netmask;
1739 ia->ia_sockmask.sin_addr.s_addr = htonl(ia->ia_subnetmask);
1740 } else
1741 ia->ia_netmask &= ia->ia_subnetmask;
1742 ia->ia_net = i & ia->ia_netmask;
1743 ia->ia_subnet = i & ia->ia_subnetmask;
1744 in_socktrim(&ia->ia_sockmask);
1745 /*
1746 * Add route for the network.
1747 */
1748 ia->ia_ifa.ifa_metric = ifp->if_metric;
1749 if (ifp->if_flags & IFF_BROADCAST) {
1750 ia->ia_broadaddr.sin_addr.s_addr =
1751 htonl(ia->ia_subnet | ~ia->ia_subnetmask);
1752 ia->ia_netbroadcast.s_addr =
1753 htonl(ia->ia_net | ~ ia->ia_netmask);
1754 } else if (ifp->if_flags & IFF_LOOPBACK) {
1755 ia->ia_ifa.ifa_dstaddr = ia->ia_ifa.ifa_addr;
1756 flags |= RTF_HOST;
1757 } else if (ifp->if_flags & IFF_POINTOPOINT) {
1758 if (ia->ia_dstaddr.sin_family != AF_INET) {
1759 IFA_UNLOCK(&ia->ia_ifa);
1760 lck_mtx_unlock(rnh_lock);
1761 /* Release extra reference taken above */
1762 IFA_REMREF(&ia->ia_ifa);
1763 return (0);
1764 }
1765 ia->ia_dstaddr.sin_len = sizeof (struct sockaddr_in);
1766 flags |= RTF_HOST;
1767 }
1768 IFA_UNLOCK(&ia->ia_ifa);
1769
1770 if ((error = rtinit_locked(&(ia->ia_ifa), (int)RTM_ADD, flags)) == 0) {
1771 IFA_LOCK(&ia->ia_ifa);
1772 ia->ia_flags |= IFA_ROUTE;
1773 IFA_UNLOCK(&ia->ia_ifa);
1774 }
1775 lck_mtx_unlock(rnh_lock);
1776
1777 /* XXX check if the subnet route points to the same interface */
1778 if (error == EEXIST)
1779 error = 0;
1780
1781 /*
1782 * If the interface supports multicast, join the "all hosts"
1783 * multicast group on that interface.
1784 */
1785 if (ifp->if_flags & IFF_MULTICAST) {
1786 struct in_addr addr;
1787
1788 lck_mtx_lock(&ifp->if_addrconfig_lock);
1789 addr.s_addr = htonl(INADDR_ALLHOSTS_GROUP);
1790 if (ifp->if_allhostsinm == NULL) {
1791 struct in_multi *inm;
1792 inm = in_addmulti(&addr, ifp);
1793
1794 if (inm != NULL) {
1795 /*
1796 * Keep the reference on inm added by
1797 * in_addmulti above for storing the
1798 * pointer in allhostsinm.
1799 */
1800 ifp->if_allhostsinm = inm;
1801 } else {
1802 printf("%s: failed to add membership to "
1803 "all-hosts multicast address on %s\n",
1804 __func__, if_name(ifp));
1805 }
1806 }
1807 lck_mtx_unlock(&ifp->if_addrconfig_lock);
1808 }
1809
1810 /* Release extra reference taken above */
1811 IFA_REMREF(&ia->ia_ifa);
1812
1813 if (error == 0) {
1814 /* invalidate route caches */
1815 routegenid_inet_update();
1816 }
1817
1818 return (error);
1819 }
1820
1821 /*
1822 * Return TRUE if the address might be a local broadcast address.
1823 */
1824 boolean_t
1825 in_broadcast(struct in_addr in, struct ifnet *ifp)
1826 {
1827 struct ifaddr *ifa;
1828 u_int32_t t;
1829
1830 if (in.s_addr == INADDR_BROADCAST || in.s_addr == INADDR_ANY)
1831 return (TRUE);
1832 if (!(ifp->if_flags & IFF_BROADCAST))
1833 return (FALSE);
1834 t = ntohl(in.s_addr);
1835
1836 /*
1837 * Look through the list of addresses for a match
1838 * with a broadcast address.
1839 */
1840 #define ia ((struct in_ifaddr *)ifa)
1841 ifnet_lock_shared(ifp);
1842 TAILQ_FOREACH(ifa, &ifp->if_addrhead, ifa_link) {
1843 IFA_LOCK(ifa);
1844 if (ifa->ifa_addr->sa_family == AF_INET &&
1845 (in.s_addr == ia->ia_broadaddr.sin_addr.s_addr ||
1846 in.s_addr == ia->ia_netbroadcast.s_addr ||
1847 /*
1848 * Check for old-style (host 0) broadcast.
1849 */
1850 t == ia->ia_subnet || t == ia->ia_net) &&
1851 /*
1852 * Check for an all one subnetmask. These
1853 * only exist when an interface gets a secondary
1854 * address.
1855 */
1856 ia->ia_subnetmask != (u_int32_t)0xffffffff) {
1857 IFA_UNLOCK(ifa);
1858 ifnet_lock_done(ifp);
1859 return (TRUE);
1860 }
1861 IFA_UNLOCK(ifa);
1862 }
1863 ifnet_lock_done(ifp);
1864 return (FALSE);
1865 #undef ia
1866 }
1867
1868 void
1869 in_purgeaddrs(struct ifnet *ifp)
1870 {
1871 struct ifaddr **ifap;
1872 int err, i;
1873
1874 VERIFY(ifp != NULL);
1875
1876 /*
1877 * Be nice, and try the civilized way first. If we can't get
1878 * rid of them this way, then do it the rough way. We must
1879 * only get here during detach time, after the ifnet has been
1880 * removed from the global list and arrays.
1881 */
1882 err = ifnet_get_address_list_family_internal(ifp, &ifap, AF_INET, 1,
1883 M_WAITOK, 0);
1884 if (err == 0 && ifap != NULL) {
1885 struct ifreq ifr;
1886
1887 bzero(&ifr, sizeof (ifr));
1888 (void) snprintf(ifr.ifr_name, sizeof (ifr.ifr_name),
1889 "%s", if_name(ifp));
1890
1891 for (i = 0; ifap[i] != NULL; i++) {
1892 struct ifaddr *ifa;
1893
1894 ifa = ifap[i];
1895 IFA_LOCK(ifa);
1896 bcopy(ifa->ifa_addr, &ifr.ifr_addr,
1897 sizeof (struct sockaddr_in));
1898 IFA_UNLOCK(ifa);
1899 err = in_control(NULL, SIOCDIFADDR, (caddr_t)&ifr, ifp,
1900 kernproc);
1901 /* if we lost the race, ignore it */
1902 if (err == EADDRNOTAVAIL)
1903 err = 0;
1904 if (err != 0) {
1905 char s_addr[MAX_IPv4_STR_LEN];
1906 char s_dstaddr[MAX_IPv4_STR_LEN];
1907 struct in_addr *s, *d;
1908
1909 IFA_LOCK(ifa);
1910 s = &((struct sockaddr_in *)
1911 (void *)ifa->ifa_addr)->sin_addr;
1912 d = &((struct sockaddr_in *)
1913 (void *)ifa->ifa_dstaddr)->sin_addr;
1914 (void) inet_ntop(AF_INET, &s->s_addr, s_addr,
1915 sizeof (s_addr));
1916 (void) inet_ntop(AF_INET, &d->s_addr, s_dstaddr,
1917 sizeof (s_dstaddr));
1918 IFA_UNLOCK(ifa);
1919
1920 printf("%s: SIOCDIFADDR ifp=%s ifa_addr=%s "
1921 "ifa_dstaddr=%s (err=%d)\n", __func__,
1922 ifp->if_xname, s_addr, s_dstaddr, err);
1923 }
1924 }
1925 ifnet_free_address_list(ifap);
1926 } else if (err != 0 && err != ENXIO) {
1927 printf("%s: error retrieving list of AF_INET addresses for "
1928 "ifp=%s (err=%d)\n", __func__, ifp->if_xname, err);
1929 }
1930 }
1931
1932 /*
1933 * Called as part of ip_init
1934 */
1935 void
1936 in_ifaddr_init(void)
1937 {
1938 in_multi_init();
1939
1940 PE_parse_boot_argn("ifa_debug", &inifa_debug, sizeof (inifa_debug));
1941
1942 inifa_size = (inifa_debug == 0) ? sizeof (struct in_ifaddr) :
1943 sizeof (struct in_ifaddr_dbg);
1944
1945 inifa_zone = zinit(inifa_size, INIFA_ZONE_MAX * inifa_size,
1946 0, INIFA_ZONE_NAME);
1947 if (inifa_zone == NULL) {
1948 panic("%s: failed allocating %s", __func__, INIFA_ZONE_NAME);
1949 /* NOTREACHED */
1950 }
1951 zone_change(inifa_zone, Z_EXPAND, TRUE);
1952 zone_change(inifa_zone, Z_CALLERACCT, FALSE);
1953
1954 lck_mtx_init(&inifa_trash_lock, ifa_mtx_grp, ifa_mtx_attr);
1955 TAILQ_INIT(&inifa_trash_head);
1956 }
1957
1958 static struct in_ifaddr *
1959 in_ifaddr_alloc(int how)
1960 {
1961 struct in_ifaddr *inifa;
1962
1963 inifa = (how == M_WAITOK) ? zalloc(inifa_zone) :
1964 zalloc_noblock(inifa_zone);
1965 if (inifa != NULL) {
1966 bzero(inifa, inifa_size);
1967 inifa->ia_ifa.ifa_free = in_ifaddr_free;
1968 inifa->ia_ifa.ifa_debug |= IFD_ALLOC;
1969 ifa_lock_init(&inifa->ia_ifa);
1970 if (inifa_debug != 0) {
1971 struct in_ifaddr_dbg *inifa_dbg =
1972 (struct in_ifaddr_dbg *)inifa;
1973 inifa->ia_ifa.ifa_debug |= IFD_DEBUG;
1974 inifa->ia_ifa.ifa_trace = in_ifaddr_trace;
1975 inifa->ia_ifa.ifa_attached = in_ifaddr_attached;
1976 inifa->ia_ifa.ifa_detached = in_ifaddr_detached;
1977 ctrace_record(&inifa_dbg->inifa_alloc);
1978 }
1979 }
1980 return (inifa);
1981 }
1982
1983 static void
1984 in_ifaddr_free(struct ifaddr *ifa)
1985 {
1986 IFA_LOCK_ASSERT_HELD(ifa);
1987
1988 if (ifa->ifa_refcnt != 0) {
1989 panic("%s: ifa %p bad ref cnt", __func__, ifa);
1990 /* NOTREACHED */
1991 } if (!(ifa->ifa_debug & IFD_ALLOC)) {
1992 panic("%s: ifa %p cannot be freed", __func__, ifa);
1993 /* NOTREACHED */
1994 }
1995 if (ifa->ifa_debug & IFD_DEBUG) {
1996 struct in_ifaddr_dbg *inifa_dbg = (struct in_ifaddr_dbg *)ifa;
1997 ctrace_record(&inifa_dbg->inifa_free);
1998 bcopy(&inifa_dbg->inifa, &inifa_dbg->inifa_old,
1999 sizeof (struct in_ifaddr));
2000 if (ifa->ifa_debug & IFD_TRASHED) {
2001 /* Become a regular mutex, just in case */
2002 IFA_CONVERT_LOCK(ifa);
2003 lck_mtx_lock(&inifa_trash_lock);
2004 TAILQ_REMOVE(&inifa_trash_head, inifa_dbg,
2005 inifa_trash_link);
2006 lck_mtx_unlock(&inifa_trash_lock);
2007 ifa->ifa_debug &= ~IFD_TRASHED;
2008 }
2009 }
2010 IFA_UNLOCK(ifa);
2011 ifa_lock_destroy(ifa);
2012 bzero(ifa, sizeof (struct in_ifaddr));
2013 zfree(inifa_zone, ifa);
2014 }
2015
2016 static void
2017 in_ifaddr_attached(struct ifaddr *ifa)
2018 {
2019 struct in_ifaddr_dbg *inifa_dbg = (struct in_ifaddr_dbg *)ifa;
2020
2021 IFA_LOCK_ASSERT_HELD(ifa);
2022
2023 if (!(ifa->ifa_debug & IFD_DEBUG)) {
2024 panic("%s: ifa %p has no debug structure", __func__, ifa);
2025 /* NOTREACHED */
2026 }
2027 if (ifa->ifa_debug & IFD_TRASHED) {
2028 /* Become a regular mutex, just in case */
2029 IFA_CONVERT_LOCK(ifa);
2030 lck_mtx_lock(&inifa_trash_lock);
2031 TAILQ_REMOVE(&inifa_trash_head, inifa_dbg, inifa_trash_link);
2032 lck_mtx_unlock(&inifa_trash_lock);
2033 ifa->ifa_debug &= ~IFD_TRASHED;
2034 }
2035 }
2036
2037 static void
2038 in_ifaddr_detached(struct ifaddr *ifa)
2039 {
2040 struct in_ifaddr_dbg *inifa_dbg = (struct in_ifaddr_dbg *)ifa;
2041
2042 IFA_LOCK_ASSERT_HELD(ifa);
2043
2044 if (!(ifa->ifa_debug & IFD_DEBUG)) {
2045 panic("%s: ifa %p has no debug structure", __func__, ifa);
2046 /* NOTREACHED */
2047 } else if (ifa->ifa_debug & IFD_TRASHED) {
2048 panic("%s: ifa %p is already in trash list", __func__, ifa);
2049 /* NOTREACHED */
2050 }
2051 ifa->ifa_debug |= IFD_TRASHED;
2052 /* Become a regular mutex, just in case */
2053 IFA_CONVERT_LOCK(ifa);
2054 lck_mtx_lock(&inifa_trash_lock);
2055 TAILQ_INSERT_TAIL(&inifa_trash_head, inifa_dbg, inifa_trash_link);
2056 lck_mtx_unlock(&inifa_trash_lock);
2057 }
2058
2059 static void
2060 in_ifaddr_trace(struct ifaddr *ifa, int refhold)
2061 {
2062 struct in_ifaddr_dbg *inifa_dbg = (struct in_ifaddr_dbg *)ifa;
2063 ctrace_t *tr;
2064 u_int32_t idx;
2065 u_int16_t *cnt;
2066
2067 if (!(ifa->ifa_debug & IFD_DEBUG)) {
2068 panic("%s: ifa %p has no debug structure", __func__, ifa);
2069 /* NOTREACHED */
2070 }
2071 if (refhold) {
2072 cnt = &inifa_dbg->inifa_refhold_cnt;
2073 tr = inifa_dbg->inifa_refhold;
2074 } else {
2075 cnt = &inifa_dbg->inifa_refrele_cnt;
2076 tr = inifa_dbg->inifa_refrele;
2077 }
2078
2079 idx = atomic_add_16_ov(cnt, 1) % INIFA_TRACE_HIST_SIZE;
2080 ctrace_record(&tr[idx]);
2081 }
2082
2083 /*
2084 * Handle SIOCGASSOCIDS ioctl for PF_INET domain.
2085 */
2086 static int
2087 in_getassocids(struct socket *so, uint32_t *cnt, user_addr_t aidp)
2088 {
2089 struct inpcb *inp = sotoinpcb(so);
2090 sae_associd_t aid;
2091
2092 if (inp == NULL || inp->inp_state == INPCB_STATE_DEAD)
2093 return (EINVAL);
2094
2095 /* INPCB has no concept of association */
2096 aid = SAE_ASSOCID_ANY;
2097 *cnt = 0;
2098
2099 /* just asking how many there are? */
2100 if (aidp == USER_ADDR_NULL)
2101 return (0);
2102
2103 return (copyout(&aid, aidp, sizeof (aid)));
2104 }
2105
2106 /*
2107 * Handle SIOCGCONNIDS ioctl for PF_INET domain.
2108 */
2109 static int
2110 in_getconnids(struct socket *so, sae_associd_t aid, uint32_t *cnt,
2111 user_addr_t cidp)
2112 {
2113 struct inpcb *inp = sotoinpcb(so);
2114 sae_connid_t cid;
2115
2116 if (inp == NULL || inp->inp_state == INPCB_STATE_DEAD)
2117 return (EINVAL);
2118
2119 if (aid != SAE_ASSOCID_ANY && aid != SAE_ASSOCID_ALL)
2120 return (EINVAL);
2121
2122 /* if connected, return 1 connection count */
2123 *cnt = ((so->so_state & SS_ISCONNECTED) ? 1 : 0);
2124
2125 /* just asking how many there are? */
2126 if (cidp == USER_ADDR_NULL)
2127 return (0);
2128
2129 /* if INPCB is connected, assign it connid 1 */
2130 cid = ((*cnt != 0) ? 1 : SAE_CONNID_ANY);
2131
2132 return (copyout(&cid, cidp, sizeof (cid)));
2133 }
2134
2135 /*
2136 * Handle SIOCGCONNINFO ioctl for PF_INET domain.
2137 */
2138 static int
2139 in_getconninfo(struct socket *so, sae_connid_t cid, uint32_t *flags,
2140 uint32_t *ifindex, int32_t *soerror, user_addr_t src, socklen_t *src_len,
2141 user_addr_t dst, socklen_t *dst_len, uint32_t *aux_type,
2142 user_addr_t aux_data, uint32_t *aux_len)
2143 {
2144 #pragma unused(aux_data)
2145 struct inpcb *inp = sotoinpcb(so);
2146 struct sockaddr_in sin;
2147 struct ifnet *ifp = NULL;
2148 int error = 0;
2149 u_int32_t copy_len = 0;
2150
2151 /*
2152 * Don't test for INPCB_STATE_DEAD since this may be called
2153 * after SOF_PCBCLEARING is set, e.g. after tcp_close().
2154 */
2155 if (inp == NULL) {
2156 error = EINVAL;
2157 goto out;
2158 }
2159
2160 if (cid != SAE_CONNID_ANY && cid != SAE_CONNID_ALL && cid != 1) {
2161 error = EINVAL;
2162 goto out;
2163 }
2164
2165 ifp = inp->inp_last_outifp;
2166 *ifindex = ((ifp != NULL) ? ifp->if_index : 0);
2167 *soerror = so->so_error;
2168 *flags = 0;
2169 if (so->so_state & SS_ISCONNECTED)
2170 *flags |= (CIF_CONNECTED | CIF_PREFERRED);
2171 if (inp->inp_flags & INP_BOUND_IF)
2172 *flags |= CIF_BOUND_IF;
2173 if (!(inp->inp_flags & INP_INADDR_ANY))
2174 *flags |= CIF_BOUND_IP;
2175 if (!(inp->inp_flags & INP_ANONPORT))
2176 *flags |= CIF_BOUND_PORT;
2177
2178 bzero(&sin, sizeof (sin));
2179 sin.sin_len = sizeof (sin);
2180 sin.sin_family = AF_INET;
2181
2182 /* source address and port */
2183 sin.sin_port = inp->inp_lport;
2184 sin.sin_addr.s_addr = inp->inp_laddr.s_addr;
2185 if (*src_len == 0) {
2186 *src_len = sin.sin_len;
2187 } else {
2188 if (src != USER_ADDR_NULL) {
2189 copy_len = min(*src_len, sizeof (sin));
2190 error = copyout(&sin, src, copy_len);
2191 if (error != 0)
2192 goto out;
2193 *src_len = copy_len;
2194 }
2195 }
2196
2197 /* destination address and port */
2198 sin.sin_port = inp->inp_fport;
2199 sin.sin_addr.s_addr = inp->inp_faddr.s_addr;
2200 if (*dst_len == 0) {
2201 *dst_len = sin.sin_len;
2202 } else {
2203 if (dst != USER_ADDR_NULL) {
2204 copy_len = min(*dst_len, sizeof (sin));
2205 error = copyout(&sin, dst, copy_len);
2206 if (error != 0)
2207 goto out;
2208 *dst_len = copy_len;
2209 }
2210 }
2211
2212 *aux_type = 0;
2213 *aux_len = 0;
2214 if (SOCK_PROTO(so) == IPPROTO_TCP) {
2215 struct conninfo_tcp tcp_ci;
2216
2217 *aux_type = CIAUX_TCP;
2218 if (*aux_len == 0) {
2219 *aux_len = sizeof (tcp_ci);
2220 } else {
2221 if (aux_data != USER_ADDR_NULL) {
2222 copy_len = min(*aux_len, sizeof (tcp_ci));
2223 bzero(&tcp_ci, sizeof (tcp_ci));
2224 tcp_getconninfo(so, &tcp_ci);
2225 error = copyout(&tcp_ci, aux_data, copy_len);
2226 if (error != 0)
2227 goto out;
2228 *aux_len = copy_len;
2229 }
2230 }
2231 }
2232
2233 out:
2234 return (error);
2235 }
mirror of XNU